| ofs | hex dump | ascii |
|---|---|---|
| 0000 | de 12 04 95 00 00 00 00 09 17 00 00 1c 00 00 00 64 b8 00 00 bb 1e 00 00 ac 70 01 00 00 00 00 00 | ................d........p...... |
| 0020 | 98 eb 01 00 43 00 00 00 99 eb 01 00 52 00 00 00 dd eb 01 00 42 00 00 00 30 ec 01 00 3b 00 00 00 | ....C.......R.......B...0...;... |
| 0040 | 73 ec 01 00 42 00 00 00 af ec 01 00 3a 00 00 00 f2 ec 01 00 24 00 00 00 2d ed 01 00 1a 00 00 00 | s...B.......:.......$...-....... |
| 0060 | 52 ed 01 00 66 00 00 00 6d ed 01 00 6f 00 00 00 d4 ed 01 00 89 00 00 00 44 ee 01 00 5d 01 00 00 | R...f...m...o...........D...]... |
| 0080 | ce ee 01 00 48 00 00 00 2c f0 01 00 46 00 00 00 75 f0 01 00 31 00 00 00 bc f0 01 00 31 00 00 00 | ....H...,...F...u...1.......1... |
| 00a0 | ee f0 01 00 3e 00 00 00 20 f1 01 00 23 00 00 00 5f f1 01 00 18 00 00 00 83 f1 01 00 7d 00 00 00 | ....>.......#..._...........}... |
| 00c0 | 9c f1 01 00 92 00 00 00 1a f2 01 00 23 00 00 00 ad f2 01 00 90 00 00 00 d1 f2 01 00 20 00 00 00 | ............#................... |
| 00e0 | 62 f3 01 00 21 00 00 00 83 f3 01 00 21 00 00 00 a5 f3 01 00 3f 00 00 00 c7 f3 01 00 78 00 00 00 | b...!.......!.......?.......x... |
| 0100 | 07 f4 01 00 7f 00 00 00 80 f4 01 00 36 00 00 00 00 f5 01 00 15 00 00 00 37 f5 01 00 2d 00 00 00 | ............6...........7...-... |
| 0120 | 4d f5 01 00 27 00 00 00 7b f5 01 00 1d 00 00 00 a3 f5 01 00 5c 00 00 00 c1 f5 01 00 46 01 00 00 | M...'...{...........\.......F... |
| 0140 | 1e f6 01 00 60 00 00 00 65 f7 01 00 1c 00 00 00 c6 f7 01 00 0c 00 00 00 e3 f7 01 00 21 00 00 00 | ....`...e...................!... |
| 0160 | f0 f7 01 00 4e 00 00 00 12 f8 01 00 e8 00 00 00 61 f8 01 00 e0 00 00 00 4a f9 01 00 e0 00 00 00 | ....N...........a.......J....... |
| 0180 | 2b fa 01 00 23 00 00 00 0c fb 01 00 29 00 00 00 30 fb 01 00 3e 00 00 00 5a fb 01 00 0c 00 00 00 | +...#.......)...0...>...Z....... |
| 01a0 | 99 fb 01 00 12 00 00 00 a6 fb 01 00 56 00 00 00 b9 fb 01 00 56 00 00 00 10 fc 01 00 11 00 00 00 | ............V.......V........... |
| 01c0 | 67 fc 01 00 b4 00 00 00 79 fc 01 00 4d 00 00 00 2e fd 01 00 b4 00 00 00 7c fd 01 00 6c 00 00 00 | g.......y...M...........|...l... |
| 01e0 | 31 fe 01 00 6b 00 00 00 9e fe 01 00 6c 00 00 00 0a ff 01 00 81 00 00 00 77 ff 01 00 3b 00 00 00 | 1...k.......l...........w...;... |
| 0200 | f9 ff 01 00 12 00 00 00 35 00 02 00 8b 00 00 00 48 00 02 00 98 00 00 00 d4 00 02 00 8c 00 00 00 | ........5.......H............... |
| 0220 | 6d 01 02 00 30 01 00 00 fa 01 02 00 fc 00 00 00 2b 03 02 00 01 01 00 00 28 04 02 00 fb 00 00 00 | m...0...........+.......(....... |
| 0240 | 2a 05 02 00 fc 00 00 00 26 06 02 00 d5 00 00 00 23 07 02 00 94 00 00 00 f9 07 02 00 00 01 00 00 | *.......&.......#............... |
| 0260 | 8e 08 02 00 04 01 00 00 8f 09 02 00 2c 01 00 00 94 0a 02 00 f6 01 00 00 c1 0b 02 00 67 00 00 00 | ............,...............g... |
| 0280 | b8 0d 02 00 67 00 00 00 20 0e 02 00 66 00 00 00 88 0e 02 00 da 00 00 00 ef 0e 02 00 d9 00 00 00 | ....g.......f................... |
| 02a0 | ca 0f 02 00 12 00 00 00 a4 10 02 00 08 00 00 00 b7 10 02 00 b8 00 00 00 c0 10 02 00 14 01 00 00 | ................................ |
| 02c0 | 79 11 02 00 18 00 00 00 8e 12 02 00 18 00 00 00 a7 12 02 00 1b 00 00 00 c0 12 02 00 1a 00 00 00 | y............................... |
| 02e0 | dc 12 02 00 15 00 00 00 f7 12 02 00 0d 00 00 00 0d 13 02 00 14 00 00 00 1b 13 02 00 0a 00 00 00 | ................................ |
| 0300 | 30 13 02 00 0b 00 00 00 3b 13 02 00 0a 00 00 00 47 13 02 00 0b 00 00 00 52 13 02 00 0a 00 00 00 | 0.......;.......G.......R....... |
| 0320 | 5e 13 02 00 0a 00 00 00 69 13 02 00 4d 00 00 00 74 13 02 00 7e 03 00 00 c2 13 02 00 10 00 00 00 | ^.......i...M...t...~........... |
| 0340 | 41 17 02 00 10 00 00 00 52 17 02 00 6f 00 00 00 63 17 02 00 44 00 00 00 d3 17 02 00 8c 00 00 00 | A.......R...o...c...D........... |
| 0360 | 18 18 02 00 8c 00 00 00 a5 18 02 00 ba 00 00 00 32 19 02 00 ae 00 00 00 ed 19 02 00 ae 00 00 00 | ................2............... |
| 0380 | 9c 1a 02 00 a0 01 00 00 4b 1b 02 00 99 01 00 00 ec 1c 02 00 ab 01 00 00 86 1e 02 00 98 01 00 00 | ........K....................... |
| 03a0 | 32 20 02 00 99 01 00 00 cb 21 02 00 ae 01 00 00 65 23 02 00 10 00 00 00 14 25 02 00 8b 00 00 00 | 2........!......e#.......%...... |
| 03c0 | 25 25 02 00 4a 00 00 00 b1 25 02 00 16 00 00 00 fc 25 02 00 9d 00 00 00 13 26 02 00 32 00 00 00 | %%..J....%.......%.......&..2... |
| 03e0 | b1 26 02 00 93 00 00 00 e4 26 02 00 6b 01 00 00 78 27 02 00 1f 01 00 00 e4 28 02 00 c2 01 00 00 | .&.......&..k...x'.......(...... |
| 0400 | 04 2a 02 00 ce 01 00 00 c7 2b 02 00 2f 01 00 00 96 2d 02 00 2e 01 00 00 c6 2e 02 00 0b 00 00 00 | .*.......+../....-.............. |
| 0420 | f5 2f 02 00 2e 00 00 00 01 30 02 00 2d 00 00 00 30 30 02 00 26 00 00 00 5e 30 02 00 37 00 00 00 | ./.......0..-...00..&...^0..7... |
| 0440 | 85 30 02 00 33 00 00 00 bd 30 02 00 29 00 00 00 f1 30 02 00 3b 00 00 00 1b 31 02 00 1e 00 00 00 | .0..3....0..)....0..;....1...... |
| 0460 | 57 31 02 00 3b 00 00 00 76 31 02 00 2e 00 00 00 b2 31 02 00 2d 00 00 00 e1 31 02 00 4e 00 00 00 | W1..;...v1.......1..-....1..N... |
| 0480 | 0f 32 02 00 0f 00 00 00 5e 32 02 00 11 00 00 00 6e 32 02 00 06 00 00 00 80 32 02 00 0f 00 00 00 | .2......^2......n2.......2...... |
| 04a0 | 87 32 02 00 11 00 00 00 97 32 02 00 06 00 00 00 a9 32 02 00 2d 00 00 00 b0 32 02 00 25 00 00 00 | .2.......2.......2..-....2..%... |
| 04c0 | de 32 02 00 09 00 00 00 04 33 02 00 b9 00 00 00 0e 33 02 00 0c 00 00 00 c8 33 02 00 0c 00 00 00 | .2.......3.......3.......3...... |
| 04e0 | d5 33 02 00 0c 00 00 00 e2 33 02 00 13 00 00 00 ef 33 02 00 30 00 00 00 03 34 02 00 31 00 00 00 | .3.......3.......3..0....4..1... |
| 0500 | 34 34 02 00 07 00 00 00 66 34 02 00 07 00 00 00 6e 34 02 00 70 00 00 00 76 34 02 00 0d 00 00 00 | 44......f4......n4..p...v4...... |
| 0520 | e7 34 02 00 14 00 00 00 f5 34 02 00 1d 00 00 00 0a 35 02 00 49 00 00 00 28 35 02 00 19 00 00 00 | .4.......4.......5..I...(5...... |
| 0540 | 72 35 02 00 0a 00 00 00 8c 35 02 00 24 00 00 00 97 35 02 00 1a 00 00 00 bc 35 02 00 9d 00 00 00 | r5.......5..$....5.......5...... |
| 0560 | d7 35 02 00 27 00 00 00 75 36 02 00 0b 00 00 00 9d 36 02 00 10 00 00 00 a9 36 02 00 10 00 00 00 | .5..'...u6.......6.......6...... |
| 0580 | ba 36 02 00 70 00 00 00 cb 36 02 00 57 00 00 00 3c 37 02 00 42 00 00 00 94 37 02 00 32 00 00 00 | .6..p....6..W...<7..B....7..2... |
| 05a0 | d7 37 02 00 37 00 00 00 0a 38 02 00 5a 00 00 00 42 38 02 00 a3 00 00 00 9d 38 02 00 74 00 00 00 | .7..7....8..Z...B8.......8..t... |
| 05c0 | 41 39 02 00 35 01 00 00 b6 39 02 00 73 00 00 00 ec 3a 02 00 16 01 00 00 60 3b 02 00 7e 00 00 00 | A9..5....9..s....:......`;..~... |
| 05e0 | 77 3c 02 00 49 00 00 00 f6 3c 02 00 2f 02 00 00 40 3d 02 00 6f 00 00 00 70 3f 02 00 39 01 00 00 | w<..I....<../...@=..o...p?..9... |
| 0600 | e0 3f 02 00 dd 00 00 00 1a 41 02 00 20 00 00 00 f8 41 02 00 30 00 00 00 19 42 02 00 14 00 00 00 | .?.......A.......A..0....B...... |
| 0620 | 4a 42 02 00 2c 00 00 00 5f 42 02 00 90 00 00 00 8c 42 02 00 52 00 00 00 1d 43 02 00 58 00 00 00 | JB..,..._B.......B..R....C..X... |
| 0640 | 70 43 02 00 26 00 00 00 c9 43 02 00 58 00 00 00 f0 43 02 00 e4 00 00 00 49 44 02 00 68 00 00 00 | pC..&....C..X....C......ID..h... |
| 0660 | 2e 45 02 00 5d 00 00 00 97 45 02 00 6c 00 00 00 f5 45 02 00 5a 00 00 00 62 46 02 00 a4 00 00 00 | .E..]....E..l....E..Z...bF...... |
| 0680 | bd 46 02 00 eb 00 00 00 62 47 02 00 41 00 00 00 4e 48 02 00 52 00 00 00 90 48 02 00 34 00 00 00 | .F......bG..A...NH..R....H..4... |
| 06a0 | e3 48 02 00 6d 00 00 00 18 49 02 00 c7 00 00 00 86 49 02 00 f1 00 00 00 4e 4a 02 00 08 00 00 00 | .H..m....I.......I......NJ...... |
| 06c0 | 40 4b 02 00 35 00 00 00 49 4b 02 00 32 00 00 00 7f 4b 02 00 4c 00 00 00 b2 4b 02 00 30 00 00 00 | @K..5...IK..2....K..L....K..0... |
| 06e0 | ff 4b 02 00 38 00 00 00 30 4c 02 00 36 00 00 00 69 4c 02 00 19 00 00 00 a0 4c 02 00 3a 00 00 00 | .K..8...0L..6...iL.......L..:... |
| 0700 | ba 4c 02 00 37 00 00 00 f5 4c 02 00 7b 01 00 00 2d 4d 02 00 14 00 00 00 a9 4e 02 00 16 00 00 00 | .L..7....L..{...-M.......N...... |
| 0720 | be 4e 02 00 36 00 00 00 d5 4e 02 00 47 00 00 00 0c 4f 02 00 55 00 00 00 54 4f 02 00 35 00 00 00 | .N..6....N..G....O..U...TO..5... |
| 0740 | aa 4f 02 00 29 00 00 00 e0 4f 02 00 23 00 00 00 0a 50 02 00 24 00 00 00 2e 50 02 00 af 00 00 00 | .O..)....O..#....P..$....P...... |
| 0760 | 53 50 02 00 6c 00 00 00 03 51 02 00 29 00 00 00 70 51 02 00 a7 00 00 00 9a 51 02 00 ee 00 00 00 | SP..l....Q..)...pQ.......Q...... |
| 0780 | 42 52 02 00 47 00 00 00 31 53 02 00 47 00 00 00 79 53 02 00 3a 00 00 00 c1 53 02 00 4b 00 00 00 | BR..G...1S..G...yS..:....S..K... |
| 07a0 | fc 53 02 00 4d 00 00 00 48 54 02 00 5a 01 00 00 96 54 02 00 9f 01 00 00 f1 55 02 00 b5 00 00 00 | .S..M...HT..Z....T.......U...... |
| 07c0 | 91 57 02 00 1d 00 00 00 47 58 02 00 51 00 00 00 65 58 02 00 31 00 00 00 b7 58 02 00 32 00 00 00 | .W......GX..Q...eX..1....X..2... |
| 07e0 | e9 58 02 00 1a 00 00 00 1c 59 02 00 4c 00 00 00 37 59 02 00 80 00 00 00 84 59 02 00 25 00 00 00 | .X.......Y..L...7Y.......Y..%... |
| 0800 | 05 5a 02 00 26 00 00 00 2b 5a 02 00 26 00 00 00 52 5a 02 00 40 00 00 00 79 5a 02 00 17 00 00 00 | .Z..&...+Z..&...RZ..@...yZ...... |
| 0820 | ba 5a 02 00 09 00 00 00 d2 5a 02 00 2d 00 00 00 dc 5a 02 00 3c 00 00 00 0a 5b 02 00 42 00 00 00 | .Z.......Z..-....Z..<....[..B... |
| 0840 | 47 5b 02 00 b1 00 00 00 8a 5b 02 00 54 00 00 00 3c 5c 02 00 55 00 00 00 91 5c 02 00 2c 00 00 00 | G[.......[..T...<\..U....\..,... |
| 0860 | e7 5c 02 00 47 00 00 00 14 5d 02 00 bc 00 00 00 5c 5d 02 00 bf 00 00 00 19 5e 02 00 1e 00 00 00 | .\..G....]......\].......^...... |
| 0880 | d9 5e 02 00 37 00 00 00 f8 5e 02 00 33 00 00 00 30 5f 02 00 9a 00 00 00 64 5f 02 00 01 00 00 00 | .^..7....^..3...0_......d_...... |
| 08a0 | ff 5f 02 00 2c 00 00 00 01 60 02 00 11 00 00 00 2e 60 02 00 06 00 00 00 40 60 02 00 06 00 00 00 | ._..,....`.......`......@`...... |
| 08c0 | 47 60 02 00 06 00 00 00 4e 60 02 00 06 00 00 00 55 60 02 00 06 00 00 00 5c 60 02 00 06 00 00 00 | G`......N`......U`......\`...... |
| 08e0 | 63 60 02 00 06 00 00 00 6a 60 02 00 06 00 00 00 71 60 02 00 06 00 00 00 78 60 02 00 06 00 00 00 | c`......j`......q`......x`...... |
| 0900 | 7f 60 02 00 0e 00 00 00 86 60 02 00 01 00 00 00 95 60 02 00 11 00 00 00 97 60 02 00 0a 00 00 00 | .`.......`.......`.......`...... |
| 0920 | a9 60 02 00 1a 00 00 00 b4 60 02 00 b7 00 00 00 cf 60 02 00 b7 00 00 00 87 61 02 00 bc 00 00 00 | .`.......`.......`.......a...... |
| 0940 | 3f 62 02 00 85 00 00 00 fc 62 02 00 02 00 00 00 82 63 02 00 0e 00 00 00 85 63 02 00 2d 00 00 00 | ?b.......b.......c.......c..-... |
| 0960 | 94 63 02 00 10 00 00 00 c2 63 02 00 0f 00 00 00 d3 63 02 00 11 00 00 00 e3 63 02 00 13 00 00 00 | .c.......c.......c.......c...... |
| 0980 | f5 63 02 00 06 00 00 00 09 64 02 00 06 00 00 00 10 64 02 00 06 00 00 00 17 64 02 00 06 00 00 00 | .c.......d.......d.......d...... |
| 09a0 | 1e 64 02 00 02 00 00 00 25 64 02 00 03 00 00 00 28 64 02 00 02 00 00 00 2c 64 02 00 08 00 00 00 | .d......%d......(d......,d...... |
| 09c0 | 2f 64 02 00 02 00 00 00 38 64 02 00 02 00 00 00 3b 64 02 00 02 00 00 00 3e 64 02 00 02 00 00 00 | /d......8d......;d......>d...... |
| 09e0 | 41 64 02 00 02 00 00 00 44 64 02 00 32 00 00 00 47 64 02 00 02 00 00 00 7a 64 02 00 02 00 00 00 | Ad......Dd..2...Gd......zd...... |
| 0a00 | 7d 64 02 00 35 00 00 00 80 64 02 00 17 00 00 00 b6 64 02 00 01 00 00 00 ce 64 02 00 1a 00 00 00 | }d..5....d.......d.......d...... |
| 0a20 | d0 64 02 00 85 00 00 00 eb 64 02 00 80 00 00 00 71 65 02 00 02 00 00 00 f2 65 02 00 02 00 00 00 | .d.......d......qe.......e...... |
| 0a40 | f5 65 02 00 02 00 00 00 f8 65 02 00 02 00 00 00 fb 65 02 00 11 00 00 00 fe 65 02 00 11 00 00 00 | .e.......e.......e.......e...... |
| 0a60 | 10 66 02 00 03 00 00 00 22 66 02 00 02 00 00 00 26 66 02 00 02 00 00 00 29 66 02 00 63 00 00 00 | .f......"f......&f......)f..c... |
| 0a80 | 2c 66 02 00 0f 00 00 00 90 66 02 00 01 00 00 00 a0 66 02 00 20 00 00 00 a2 66 02 00 87 00 00 00 | ,f.......f.......f.......f...... |
| 0aa0 | c3 66 02 00 02 00 00 00 4b 67 02 00 02 00 00 00 4e 67 02 00 02 00 00 00 51 67 02 00 02 00 00 00 | .f......Kg......Ng......Qg...... |
| 0ac0 | 54 67 02 00 01 00 00 00 57 67 02 00 1a 00 00 00 59 67 02 00 a5 00 00 00 74 67 02 00 a2 00 00 00 | Tg......Wg......Yg......tg...... |
| 0ae0 | 1a 68 02 00 a2 00 00 00 bd 68 02 00 e6 00 00 00 60 69 02 00 11 00 00 00 47 6a 02 00 02 00 00 00 | .h.......h......`i......Gj...... |
| 0b00 | 59 6a 02 00 02 00 00 00 5c 6a 02 00 02 00 00 00 5f 6a 02 00 01 00 00 00 62 6a 02 00 11 00 00 00 | Yj......\j......_j......bj...... |
| 0b20 | 64 6a 02 00 c3 00 00 00 76 6a 02 00 c7 00 00 00 3a 6b 02 00 0f 00 00 00 02 6c 02 00 11 00 00 00 | dj......vj......:k.......l...... |
| 0b40 | 12 6c 02 00 02 00 00 00 24 6c 02 00 01 00 00 00 27 6c 02 00 6b 00 00 00 29 6c 02 00 69 00 00 00 | .l......$l......'l..k...)l..i... |
| 0b60 | 95 6c 02 00 6e 00 00 00 ff 6c 02 00 2d 00 00 00 6e 6d 02 00 02 00 00 00 9c 6d 02 00 3b 00 00 00 | .l..n....l..-...nm.......m..;... |
| 0b80 | 9f 6d 02 00 02 00 00 00 db 6d 02 00 02 00 00 00 de 6d 02 00 0a 00 00 00 e1 6d 02 00 6b 02 00 00 | .m.......m.......m.......m..k... |
| 0ba0 | ec 6d 02 00 01 00 00 00 58 70 02 00 02 00 00 00 5a 70 02 00 01 00 00 00 5d 70 02 00 6c 00 00 00 | .m......Xp......Zp......]p..l... |
| 0bc0 | 5f 70 02 00 01 00 00 00 cc 70 02 00 76 00 00 00 ce 70 02 00 7b 00 00 00 45 71 02 00 61 01 00 00 | _p.......p..v....p..{...Eq..a... |
| 0be0 | c1 71 02 00 8b 00 00 00 23 73 02 00 10 01 00 00 af 73 02 00 8a 01 00 00 c0 74 02 00 36 00 00 00 | .q......#s.......s.......t..6... |
| 0c00 | 4b 76 02 00 22 01 00 00 82 76 02 00 26 02 00 00 a5 77 02 00 ec 00 00 00 cc 79 02 00 8b 00 00 00 | Kv.."....v..&....w.......y...... |
| 0c20 | b9 7a 02 00 8c 01 00 00 45 7b 02 00 bd 00 00 00 d2 7c 02 00 08 02 00 00 90 7d 02 00 53 01 00 00 | .z......E{.......|.......}..S... |
| 0c40 | 99 7f 02 00 dc 00 00 00 ed 80 02 00 4f 00 00 00 ca 81 02 00 aa 03 00 00 1a 82 02 00 aa 03 00 00 | ............O................... |
| 0c60 | c5 85 02 00 8b 01 00 00 70 89 02 00 80 01 00 00 fc 8a 02 00 b5 01 00 00 7d 8c 02 00 4c 02 00 00 | ........p...............}...L... |
| 0c80 | 33 8e 02 00 3f 00 00 00 80 90 02 00 61 00 00 00 c0 90 02 00 8f 05 00 00 22 91 02 00 32 02 00 00 | 3...?.......a..........."...2... |
| 0ca0 | b2 96 02 00 0b 01 00 00 e5 98 02 00 3d 02 00 00 f1 99 02 00 7e 00 00 00 2f 9c 02 00 37 00 00 00 | ............=.......~.../...7... |
| 0cc0 | ae 9c 02 00 8f 01 00 00 e6 9c 02 00 01 01 00 00 76 9e 02 00 da 01 00 00 78 9f 02 00 3e 01 00 00 | ................v.......x...>... |
| 0ce0 | 53 a1 02 00 8e 02 00 00 92 a2 02 00 a6 00 00 00 21 a5 02 00 e3 01 00 00 c8 a5 02 00 af 01 00 00 | S...............!............... |
| 0d00 | ac a7 02 00 87 01 00 00 5c a9 02 00 f6 01 00 00 e4 aa 02 00 17 02 00 00 db ac 02 00 d9 01 00 00 | ........\....................... |
| 0d20 | f3 ae 02 00 8e 00 00 00 cd b0 02 00 57 01 00 00 5c b1 02 00 82 00 00 00 b4 b2 02 00 fb 00 00 00 | ............W...\............... |
| 0d40 | 37 b3 02 00 b4 01 00 00 33 b4 02 00 d6 01 00 00 e8 b5 02 00 59 01 00 00 bf b7 02 00 50 01 00 00 | 7.......3...........Y.......P... |
| 0d60 | 19 b9 02 00 be 01 00 00 6a ba 02 00 68 01 00 00 29 bc 02 00 04 02 00 00 92 bd 02 00 89 00 00 00 | ........j...h...)............... |
| 0d80 | 97 bf 02 00 84 00 00 00 21 c0 02 00 f9 00 00 00 a6 c0 02 00 a4 00 00 00 a0 c1 02 00 b5 00 00 00 | ........!....................... |
| 0da0 | 45 c2 02 00 43 00 00 00 fb c2 02 00 5c 00 00 00 3f c3 02 00 52 00 00 00 9c c3 02 00 46 00 00 00 | E...C.......\...?...R.......F... |
| 0dc0 | ef c3 02 00 50 00 00 00 36 c4 02 00 48 00 00 00 87 c4 02 00 4c 00 00 00 d0 c4 02 00 47 00 00 00 | ....P...6...H.......L.......G... |
| 0de0 | 1d c5 02 00 48 00 00 00 65 c5 02 00 41 00 00 00 ae c5 02 00 44 00 00 00 f0 c5 02 00 61 00 00 00 | ....H...e...A.......D.......a... |
| 0e00 | 35 c6 02 00 61 00 00 00 97 c6 02 00 62 00 00 00 f9 c6 02 00 64 00 00 00 5c c7 02 00 5f 00 00 00 | 5...a.......b.......d...\..._... |
| 0e20 | c1 c7 02 00 60 00 00 00 21 c8 02 00 19 00 00 00 82 c8 02 00 29 00 00 00 9c c8 02 00 12 00 00 00 | ....`...!...........)........... |
| 0e40 | c6 c8 02 00 3d 00 00 00 d9 c8 02 00 13 00 00 00 17 c9 02 00 3f 00 00 00 2b c9 02 00 13 00 00 00 | ....=...............?...+....... |
| 0e60 | 6b c9 02 00 3f 00 00 00 7f c9 02 00 15 00 00 00 bf c9 02 00 43 00 00 00 d5 c9 02 00 15 00 00 00 | k...?...............C........... |
| 0e80 | 19 ca 02 00 43 00 00 00 2f ca 02 00 31 01 00 00 73 ca 02 00 11 00 00 00 a5 cb 02 00 80 01 00 00 | ....C.../...1...s............... |
| 0ea0 | b7 cb 02 00 40 00 00 00 38 cd 02 00 24 00 00 00 79 cd 02 00 41 01 00 00 9e cd 02 00 19 00 00 00 | ....@...8...$...y...A........... |
| 0ec0 | e0 ce 02 00 37 00 00 00 fa ce 02 00 2a 00 00 00 32 cf 02 00 39 00 00 00 5d cf 02 00 29 00 00 00 | ....7.......*...2...9...]...)... |
| 0ee0 | 97 cf 02 00 07 00 00 00 c1 cf 02 00 4d 00 00 00 c9 cf 02 00 18 00 00 00 17 d0 02 00 81 00 00 00 | ............M................... |
| 0f00 | 30 d0 02 00 b6 00 00 00 b2 d0 02 00 40 00 00 00 69 d1 02 00 2f 00 00 00 aa d1 02 00 32 00 00 00 | 0...........@...i.../.......2... |
| 0f20 | da d1 02 00 35 00 00 00 0d d2 02 00 1d 00 00 00 43 d2 02 00 27 00 00 00 61 d2 02 00 1f 00 00 00 | ....5...........C...'...a....... |
| 0f40 | 89 d2 02 00 36 00 00 00 a9 d2 02 00 39 00 00 00 e0 d2 02 00 18 01 00 00 1a d3 02 00 1e 00 00 00 | ....6.......9................... |
| 0f60 | 33 d4 02 00 2d 00 00 00 52 d4 02 00 5c 00 00 00 80 d4 02 00 37 01 00 00 dd d4 02 00 cb 01 00 00 | 3...-...R...\.......7........... |
| 0f80 | 15 d6 02 00 ab 01 00 00 e1 d7 02 00 59 01 00 00 8d d9 02 00 3a 01 00 00 e7 da 02 00 2d 00 00 00 | ............Y.......:.......-... |
| 0fa0 | 22 dc 02 00 3a 00 00 00 50 dc 02 00 6d 00 00 00 8b dc 02 00 77 00 00 00 f9 dc 02 00 8b 00 00 00 | "...:...P...m.......w........... |
| 0fc0 | 71 dd 02 00 cc 01 00 00 fd dd 02 00 ba 00 00 00 ca df 02 00 16 00 00 00 85 e0 02 00 33 00 00 00 | q...........................3... |
| 0fe0 | 9c e0 02 00 28 00 00 00 d0 e0 02 00 77 01 00 00 f9 e0 02 00 51 00 00 00 71 e2 02 00 74 00 00 00 | ....(.......w.......Q...q...t... |
| 1000 | c3 e2 02 00 26 00 00 00 38 e3 02 00 85 00 00 00 5f e3 02 00 8b 00 00 00 e5 e3 02 00 8b 00 00 00 | ....&...8......._............... |
| 1020 | 71 e4 02 00 cf 00 00 00 fd e4 02 00 34 01 00 00 cd e5 02 00 2f 00 00 00 02 e7 02 00 72 00 00 00 | q...........4......./.......r... |
| 1040 | 32 e7 02 00 65 00 00 00 a5 e7 02 00 31 00 00 00 0b e8 02 00 01 01 00 00 3d e8 02 00 33 00 00 00 | 2...e.......1...........=...3... |
| 1060 | 3f e9 02 00 3c 00 00 00 73 e9 02 00 42 00 00 00 b0 e9 02 00 93 01 00 00 f3 e9 02 00 93 01 00 00 | ?...<...s...B................... |
| 1080 | 87 eb 02 00 e4 01 00 00 1b ed 02 00 63 00 00 00 00 ef 02 00 50 00 00 00 64 ef 02 00 d4 00 00 00 | ............c.......P...d....... |
| 10a0 | b5 ef 02 00 ed 00 00 00 8a f0 02 00 78 00 00 00 78 f1 02 00 90 00 00 00 f1 f1 02 00 c0 01 00 00 | ............x...x............... |
| 10c0 | 82 f2 02 00 a2 00 00 00 43 f4 02 00 88 00 00 00 e6 f4 02 00 4e 00 00 00 6f f5 02 00 44 00 00 00 | ........C...........N...o...D... |
| 10e0 | be f5 02 00 58 00 00 00 03 f6 02 00 08 01 00 00 5c f6 02 00 65 00 00 00 65 f7 02 00 7e 00 00 00 | ....X...........\...e...e...~... |
| 1100 | cb f7 02 00 48 01 00 00 4a f8 02 00 35 01 00 00 93 f9 02 00 90 00 00 00 c9 fa 02 00 a3 00 00 00 | ....H...J...5................... |
| 1120 | 5a fb 02 00 02 01 00 00 fe fb 02 00 3f 00 00 00 01 fd 02 00 42 00 00 00 41 fd 02 00 24 00 00 00 | Z...........?.......B...A...$... |
| 1140 | 84 fd 02 00 22 01 00 00 a9 fd 02 00 1c 00 00 00 cc fe 02 00 2c 00 00 00 e9 fe 02 00 43 00 00 00 | ...."...............,.......C... |
| 1160 | 16 ff 02 00 c8 00 00 00 5a ff 02 00 b8 00 00 00 23 00 03 00 b1 01 00 00 dc 00 03 00 4f 00 00 00 | ........Z.......#...........O... |
| 1180 | 8e 02 03 00 37 00 00 00 de 02 03 00 26 00 00 00 16 03 03 00 0a 02 00 00 3d 03 03 00 62 00 00 00 | ....7.......&...........=...b... |
| 11a0 | 48 05 03 00 41 00 00 00 ab 05 03 00 3d 00 00 00 ed 05 03 00 5e 00 00 00 2b 06 03 00 35 00 00 00 | H...A.......=.......^...+...5... |
| 11c0 | 8a 06 03 00 77 00 00 00 c0 06 03 00 04 00 00 00 38 07 03 00 1c 00 00 00 3d 07 03 00 03 00 00 00 | ....w...........8.......=....... |
| 11e0 | 5a 07 03 00 03 00 00 00 5e 07 03 00 5c 00 00 00 62 07 03 00 a7 01 00 00 bf 07 03 00 0c 00 00 00 | Z.......^...\...b............... |
| 1200 | 67 09 03 00 a8 00 00 00 74 09 03 00 70 00 00 00 1d 0a 03 00 3c 00 00 00 8e 0a 03 00 41 00 00 00 | g.......t...p.......<.......A... |
| 1220 | cb 0a 03 00 33 00 00 00 0d 0b 03 00 12 00 00 00 41 0b 03 00 0c 00 00 00 54 0b 03 00 79 00 00 00 | ....3...........A.......T...y... |
| 1240 | 61 0b 03 00 45 00 00 00 db 0b 03 00 07 00 00 00 21 0c 03 00 10 00 00 00 29 0c 03 00 22 00 00 00 | a...E...........!.......)..."... |
| 1260 | 3a 0c 03 00 68 00 00 00 5d 0c 03 00 41 00 00 00 c6 0c 03 00 40 00 00 00 08 0d 03 00 23 00 00 00 | :...h...]...A.......@.......#... |
| 1280 | 49 0d 03 00 c5 00 00 00 6d 0d 03 00 9f 00 00 00 33 0e 03 00 3c 00 00 00 d3 0e 03 00 23 00 00 00 | I.......m.......3...<.......#... |
| 12a0 | 10 0f 03 00 48 00 00 00 34 0f 03 00 26 00 00 00 7d 0f 03 00 35 00 00 00 a4 0f 03 00 4e 00 00 00 | ....H...4...&...}...5.......N... |
| 12c0 | da 0f 03 00 86 00 00 00 29 10 03 00 68 00 00 00 b0 10 03 00 63 00 00 00 19 11 03 00 2f 00 00 00 | ........)...h.......c......./... |
| 12e0 | 7d 11 03 00 48 00 00 00 ad 11 03 00 43 00 00 00 f6 11 03 00 a3 00 00 00 3a 12 03 00 b8 00 00 00 | }...H.......C...........:....... |
| 1300 | de 12 03 00 81 00 00 00 97 13 03 00 46 00 00 00 19 14 03 00 1c 00 00 00 60 14 03 00 2a 00 00 00 | ............F...........`...*... |
| 1320 | 7d 14 03 00 7d 00 00 00 a8 14 03 00 60 00 00 00 26 15 03 00 ee 00 00 00 87 15 03 00 09 01 00 00 | }...}.......`...&............... |
| 1340 | 76 16 03 00 02 01 00 00 80 17 03 00 68 00 00 00 83 18 03 00 07 00 00 00 ec 18 03 00 12 00 00 00 | v...........h................... |
| 1360 | f4 18 03 00 10 00 00 00 07 19 03 00 0e 00 00 00 18 19 03 00 4c 01 00 00 27 19 03 00 42 00 00 00 | ....................L...'...B... |
| 1380 | 74 1a 03 00 0d 00 00 00 b7 1a 03 00 24 00 00 00 c5 1a 03 00 c6 00 00 00 ea 1a 03 00 ba 00 00 00 | t...........$................... |
| 13a0 | b1 1b 03 00 52 00 00 00 6c 1c 03 00 17 00 00 00 bf 1c 03 00 1a 00 00 00 d7 1c 03 00 10 00 00 00 | ....R...l....................... |
| 13c0 | f2 1c 03 00 c7 00 00 00 03 1d 03 00 13 00 00 00 cb 1d 03 00 1a 00 00 00 df 1d 03 00 3c 00 00 00 | ............................<... |
| 13e0 | fa 1d 03 00 7f 00 00 00 37 1e 03 00 1a 00 00 00 b7 1e 03 00 14 00 00 00 d2 1e 03 00 7e 00 00 00 | ........7...................~... |
| 1400 | e7 1e 03 00 74 00 00 00 66 1f 03 00 7c 01 00 00 db 1f 03 00 26 01 00 00 58 21 03 00 40 01 00 00 | ....t...f...|.......&...X!..@... |
| 1420 | 7f 22 03 00 74 00 00 00 c0 23 03 00 61 01 00 00 35 24 03 00 63 01 00 00 97 25 03 00 2e 00 00 00 | ."..t....#..a...5$..c....%...... |
| 1440 | fb 26 03 00 05 00 00 00 2a 27 03 00 09 00 00 00 30 27 03 00 07 00 00 00 3a 27 03 00 66 00 00 00 | .&......*'......0'......:'..f... |
| 1460 | 42 27 03 00 4f 00 00 00 a9 27 03 00 9a 00 00 00 f9 27 03 00 8e 00 00 00 94 28 03 00 b1 00 00 00 | B'..O....'.......'.......(...... |
| 1480 | 23 29 03 00 0e 00 00 00 d5 29 03 00 67 00 00 00 e4 29 03 00 ae 00 00 00 4c 2a 03 00 89 00 00 00 | #).......)..g....)......L*...... |
| 14a0 | fb 2a 03 00 28 00 00 00 85 2b 03 00 3a 00 00 00 ae 2b 03 00 ac 00 00 00 e9 2b 03 00 ab 00 00 00 | .*..(....+..:....+.......+...... |
| 14c0 | 96 2c 03 00 74 00 00 00 42 2d 03 00 97 00 00 00 b7 2d 03 00 3a 00 00 00 4f 2e 03 00 40 00 00 00 | .,..t...B-.......-..:...O...@... |
| 14e0 | 8a 2e 03 00 27 00 00 00 cb 2e 03 00 e3 00 00 00 f3 2e 03 00 29 00 00 00 d7 2f 03 00 21 00 00 00 | ....'...............)..../..!... |
| 1500 | 01 30 03 00 08 01 00 00 23 30 03 00 61 01 00 00 2c 31 03 00 2c 00 00 00 8e 32 03 00 2e 00 00 00 | .0......#0..a...,1..,....2...... |
| 1520 | bb 32 03 00 80 00 00 00 ea 32 03 00 7b 00 00 00 6b 33 03 00 30 00 00 00 e7 33 03 00 c8 00 00 00 | .2.......2..{...k3..0....3...... |
| 1540 | 18 34 03 00 c8 00 00 00 e1 34 03 00 9c 00 00 00 aa 35 03 00 40 00 00 00 47 36 03 00 b7 00 00 00 | .4.......4.......5..@...G6...... |
| 1560 | 88 36 03 00 b7 00 00 00 40 37 03 00 5a 00 00 00 f8 37 03 00 c4 00 00 00 53 38 03 00 c4 00 00 00 | .6......@7..Z....7......S8...... |
| 1580 | 18 39 03 00 6e 00 00 00 dd 39 03 00 a5 00 00 00 4c 3a 03 00 83 00 00 00 f2 3a 03 00 c3 00 00 00 | .9..n....9......L:.......:...... |
| 15a0 | 76 3b 03 00 61 01 00 00 3a 3c 03 00 68 01 00 00 9c 3d 03 00 18 00 00 00 05 3f 03 00 54 00 00 00 | v;..a...:<..h....=.......?..T... |
| 15c0 | 1e 3f 03 00 89 00 00 00 73 3f 03 00 8b 00 00 00 fd 3f 03 00 6b 00 00 00 89 40 03 00 3d 00 00 00 | .?......s?.......?..k....@..=... |
| 15e0 | f5 40 03 00 91 00 00 00 33 41 03 00 96 00 00 00 c5 41 03 00 81 00 00 00 5c 42 03 00 39 00 00 00 | .@......3A.......A......\B..9... |
| 1600 | de 42 03 00 3e 01 00 00 18 43 03 00 58 00 00 00 57 44 03 00 c2 00 00 00 b0 44 03 00 ba 00 00 00 | .B..>....C..X...WD.......D...... |
| 1620 | 73 45 03 00 6a 00 00 00 2e 46 03 00 8c 02 00 00 99 46 03 00 85 02 00 00 26 49 03 00 cb 00 00 00 | sE..j....F.......F......&I...... |
| 1640 | ac 4b 03 00 40 00 00 00 78 4c 03 00 5f 00 00 00 b9 4c 03 00 9e 01 00 00 19 4d 03 00 9f 01 00 00 | .K..@...xL.._....L.......M...... |
| 1660 | b8 4e 03 00 85 01 00 00 58 50 03 00 84 01 00 00 de 51 03 00 bb 00 00 00 63 53 03 00 56 00 00 00 | .N......XP.......Q......cS..V... |
| 1680 | 1f 54 03 00 39 00 00 00 76 54 03 00 1d 00 00 00 b0 54 03 00 4b 00 00 00 ce 54 03 00 0b 00 00 00 | .T..9...vT.......T..K....T...... |
| 16a0 | 1a 55 03 00 02 01 00 00 26 55 03 00 30 00 00 00 29 56 03 00 93 00 00 00 5a 56 03 00 5d 00 00 00 | .U......&U..0...)V......ZV..]... |
| 16c0 | ee 56 03 00 5d 00 00 00 4c 57 03 00 9a 00 00 00 aa 57 03 00 1a 00 00 00 45 58 03 00 0d 00 00 00 | .V..]...LW.......W......EX...... |
| 16e0 | 60 58 03 00 a1 00 00 00 6e 58 03 00 3b 00 00 00 10 59 03 00 15 00 00 00 4c 59 03 00 97 00 00 00 | `X......nX..;....Y......LY...... |
| 1700 | 62 59 03 00 97 00 00 00 fa 59 03 00 34 00 00 00 92 5a 03 00 2c 00 00 00 c7 5a 03 00 2f 00 00 00 | bY.......Y..4....Z..,....Z../... |
| 1720 | f4 5a 03 00 c8 00 00 00 24 5b 03 00 43 01 00 00 ed 5b 03 00 18 00 00 00 31 5d 03 00 9c 00 00 00 | .Z......$[..C....[......1]...... |
| 1740 | 4a 5d 03 00 3e 00 00 00 e7 5d 03 00 ad 00 00 00 26 5e 03 00 aa 00 00 00 d4 5e 03 00 44 00 00 00 | J]..>....]......&^.......^..D... |
| 1760 | 7f 5f 03 00 1d 00 00 00 c4 5f 03 00 23 00 00 00 e2 5f 03 00 19 00 00 00 06 60 03 00 12 00 00 00 | ._......._..#...._.......`...... |
| 1780 | 20 60 03 00 43 00 00 00 33 60 03 00 42 00 00 00 77 60 03 00 47 00 00 00 ba 60 03 00 31 00 00 00 | .`..C...3`..B...w`..G....`..1... |
| 17a0 | 02 61 03 00 0a 00 00 00 34 61 03 00 08 00 00 00 3f 61 03 00 28 01 00 00 48 61 03 00 81 00 00 00 | .a......4a......?a..(...Ha...... |
| 17c0 | 71 62 03 00 75 00 00 00 f3 62 03 00 aa 00 00 00 69 63 03 00 d5 00 00 00 14 64 03 00 a5 01 00 00 | qb..u....b......ic.......d...... |
| 17e0 | ea 64 03 00 71 00 00 00 90 66 03 00 6c 00 00 00 02 67 03 00 78 00 00 00 6f 67 03 00 99 00 00 00 | .d..q....f..l....g..x...og...... |
| 1800 | e8 67 03 00 1d 01 00 00 82 68 03 00 74 00 00 00 a0 69 03 00 49 01 00 00 15 6a 03 00 18 01 00 00 | .g.......h..t....i..I....j...... |
| 1820 | 5f 6b 03 00 17 01 00 00 78 6c 03 00 1e 01 00 00 90 6d 03 00 1a 01 00 00 af 6e 03 00 39 01 00 00 | _k......xl.......m.......n..9... |
| 1840 | ca 6f 03 00 5f 00 00 00 04 71 03 00 32 01 00 00 64 71 03 00 82 00 00 00 97 72 03 00 a2 00 00 00 | .o.._....q..2...dq.......r...... |
| 1860 | 1a 73 03 00 93 00 00 00 bd 73 03 00 af 00 00 00 51 74 03 00 7e 00 00 00 01 75 03 00 47 00 00 00 | .s.......s......Qt..~....u..G... |
| 1880 | 80 75 03 00 83 00 00 00 c8 75 03 00 6e 00 00 00 4c 76 03 00 91 00 00 00 bb 76 03 00 59 00 00 00 | .u.......u..n...Lv.......v..Y... |
| 18a0 | 4d 77 03 00 96 00 00 00 a7 77 03 00 8e 00 00 00 3e 78 03 00 c1 00 00 00 cd 78 03 00 ca 00 00 00 | Mw.......w......>x.......x...... |
| 18c0 | 8f 79 03 00 59 01 00 00 5a 7a 03 00 23 00 00 00 b4 7b 03 00 2f 00 00 00 d8 7b 03 00 43 00 00 00 | .y..Y...Zz..#....{../....{..C... |
| 18e0 | 08 7c 03 00 27 00 00 00 4c 7c 03 00 2d 00 00 00 74 7c 03 00 3b 00 00 00 a2 7c 03 00 6e 00 00 00 | .|..'...L|..-...t|..;....|..n... |
| 1900 | de 7c 03 00 82 00 00 00 4d 7d 03 00 68 00 00 00 d0 7d 03 00 19 00 00 00 39 7e 03 00 19 00 00 00 | .|......M}..h....}......9~...... |
| 1920 | 53 7e 03 00 19 00 00 00 6d 7e 03 00 19 00 00 00 87 7e 03 00 19 00 00 00 a1 7e 03 00 19 00 00 00 | S~......m~.......~.......~...... |
| 1940 | bb 7e 03 00 19 00 00 00 d5 7e 03 00 19 00 00 00 ef 7e 03 00 19 00 00 00 09 7f 03 00 19 00 00 00 | .~.......~.......~.............. |
| 1960 | 23 7f 03 00 19 00 00 00 3d 7f 03 00 19 00 00 00 57 7f 03 00 7b 00 00 00 71 7f 03 00 c2 00 00 00 | #.......=.......W...{...q....... |
| 1980 | ed 7f 03 00 41 00 00 00 b0 80 03 00 c0 00 00 00 f2 80 03 00 68 00 00 00 b3 81 03 00 0e 00 00 00 | ....A...............h........... |
| 19a0 | 1c 82 03 00 16 00 00 00 2b 82 03 00 1f 00 00 00 42 82 03 00 25 00 00 00 62 82 03 00 29 00 00 00 | ........+.......B...%...b...)... |
| 19c0 | 88 82 03 00 24 00 00 00 b2 82 03 00 e6 00 00 00 d7 82 03 00 20 00 00 00 be 83 03 00 14 00 00 00 | ....$........................... |
| 19e0 | df 83 03 00 45 00 00 00 f4 83 03 00 13 00 00 00 3a 84 03 00 13 00 00 00 4e 84 03 00 17 00 00 00 | ....E...........:.......N....... |
| 1a00 | 62 84 03 00 17 00 00 00 7a 84 03 00 e7 00 00 00 92 84 03 00 3d 00 00 00 7a 85 03 00 12 00 00 00 | b.......z...........=...z....... |
| 1a20 | b8 85 03 00 21 00 00 00 cb 85 03 00 14 00 00 00 ed 85 03 00 13 00 00 00 02 86 03 00 03 00 00 00 | ....!........................... |
| 1a40 | 16 86 03 00 1b 00 00 00 1a 86 03 00 59 00 00 00 36 86 03 00 03 00 00 00 90 86 03 00 14 00 00 00 | ............Y...6............... |
| 1a60 | 94 86 03 00 14 00 00 00 a9 86 03 00 1d 00 00 00 be 86 03 00 1a 00 00 00 dc 86 03 00 0b 00 00 00 | ................................ |
| 1a80 | f7 86 03 00 18 00 00 00 03 87 03 00 19 00 00 00 1c 87 03 00 44 00 00 00 36 87 03 00 1a 00 00 00 | ....................D...6....... |
| 1aa0 | 7b 87 03 00 1f 00 00 00 96 87 03 00 1c 00 00 00 b6 87 03 00 20 00 00 00 d3 87 03 00 65 01 00 00 | {...........................e... |
| 1ac0 | f4 87 03 00 54 01 00 00 5a 89 03 00 c3 02 00 00 af 8a 03 00 56 00 00 00 73 8d 03 00 e4 00 00 00 | ....T...Z...........V...s....... |
| 1ae0 | ca 8d 03 00 05 00 00 00 af 8e 03 00 67 00 00 00 b5 8e 03 00 81 01 00 00 1d 8f 03 00 07 00 00 00 | ............g................... |
| 1b00 | 9f 90 03 00 89 00 00 00 a7 90 03 00 13 00 00 00 31 91 03 00 0f 00 00 00 45 91 03 00 1e 00 00 00 | ................1.......E....... |
| 1b20 | 55 91 03 00 21 00 00 00 74 91 03 00 11 00 00 00 96 91 03 00 21 00 00 00 a8 91 03 00 4c 00 00 00 | U...!...t...........!.......L... |
| 1b40 | ca 91 03 00 50 00 00 00 17 92 03 00 69 00 00 00 68 92 03 00 53 00 00 00 d2 92 03 00 53 00 00 00 | ....P.......i...h...S.......S... |
| 1b60 | 26 93 03 00 55 00 00 00 7a 93 03 00 55 00 00 00 d0 93 03 00 17 00 00 00 26 94 03 00 0e 00 00 00 | &...U...z...U...........&....... |
| 1b80 | 3e 94 03 00 0e 00 00 00 4d 94 03 00 3f 00 00 00 5c 94 03 00 36 00 00 00 9c 94 03 00 0b 00 00 00 | >.......M...?...\...6........... |
| 1ba0 | d3 94 03 00 d1 00 00 00 df 94 03 00 41 00 00 00 b1 95 03 00 19 00 00 00 f3 95 03 00 87 00 00 00 | ............A................... |
| 1bc0 | 0d 96 03 00 89 00 00 00 95 96 03 00 db 00 00 00 1f 97 03 00 38 00 00 00 fb 97 03 00 3c 00 00 00 | ....................8.......<... |
| 1be0 | 34 98 03 00 55 00 00 00 71 98 03 00 78 00 00 00 c7 98 03 00 75 00 00 00 40 99 03 00 27 00 00 00 | 4...U...q...x.......u...@...'... |
| 1c00 | b6 99 03 00 1c 00 00 00 de 99 03 00 7d 01 00 00 fb 99 03 00 11 00 00 00 79 9b 03 00 0c 00 00 00 | ............}...........y....... |
| 1c20 | 8b 9b 03 00 2f 00 00 00 98 9b 03 00 3f 00 00 00 c8 9b 03 00 63 00 00 00 08 9c 03 00 09 00 00 00 | ..../.......?.......c........... |
| 1c40 | 6c 9c 03 00 5d 00 00 00 76 9c 03 00 58 00 00 00 d4 9c 03 00 59 00 00 00 2d 9d 03 00 34 00 00 00 | l...]...v...X.......Y...-...4... |
| 1c60 | 87 9d 03 00 17 00 00 00 bc 9d 03 00 0c 00 00 00 d4 9d 03 00 25 00 00 00 e1 9d 03 00 13 00 00 00 | ....................%........... |
| 1c80 | 07 9e 03 00 29 00 00 00 1b 9e 03 00 83 00 00 00 45 9e 03 00 6e 00 00 00 c9 9e 03 00 31 00 00 00 | ....)...........E...n.......1... |
| 1ca0 | 38 9f 03 00 06 00 00 00 6a 9f 03 00 1d 00 00 00 71 9f 03 00 0e 00 00 00 8f 9f 03 00 0c 00 00 00 | 8.......j.......q............... |
| 1cc0 | 9e 9f 03 00 3f 00 00 00 ab 9f 03 00 37 00 00 00 eb 9f 03 00 07 00 00 00 23 a0 03 00 0b 00 00 00 | ....?.......7...........#....... |
| 1ce0 | 2b a0 03 00 0e 00 00 00 37 a0 03 00 d0 00 00 00 46 a0 03 00 9c 00 00 00 17 a1 03 00 51 00 00 00 | +.......7.......F...........Q... |
| 1d00 | b4 a1 03 00 9c 00 00 00 06 a2 03 00 ef 00 00 00 a3 a2 03 00 8d 01 00 00 93 a3 03 00 37 01 00 00 | ............................7... |
| 1d20 | 21 a5 03 00 38 01 00 00 59 a6 03 00 ce 00 00 00 92 a7 03 00 d9 00 00 00 61 a8 03 00 eb 00 00 00 | !...8...Y...............a....... |
| 1d40 | 3b a9 03 00 3b 00 00 00 27 aa 03 00 63 00 00 00 63 aa 03 00 78 00 00 00 c7 aa 03 00 9d 00 00 00 | ;...;...'...c...c...x........... |
| 1d60 | 40 ab 03 00 97 00 00 00 de ab 03 00 25 00 00 00 76 ac 03 00 a1 00 00 00 9c ac 03 00 a3 00 00 00 | @...........%...v............... |
| 1d80 | 3e ad 03 00 3a 01 00 00 e2 ad 03 00 16 00 00 00 1d af 03 00 1a 00 00 00 34 af 03 00 04 00 00 00 | >...:...................4....... |
| 1da0 | 4f af 03 00 05 00 00 00 54 af 03 00 0b 01 00 00 5a af 03 00 0a 00 00 00 66 b0 03 00 27 00 00 00 | O.......T.......Z.......f...'... |
| 1dc0 | 71 b0 03 00 16 00 00 00 99 b0 03 00 c8 00 00 00 b0 b0 03 00 1a 00 00 00 79 b1 03 00 2a 00 00 00 | q.......................y...*... |
| 1de0 | 94 b1 03 00 0c 00 00 00 bf b1 03 00 30 00 00 00 cc b1 03 00 2c 00 00 00 fd b1 03 00 0b 01 00 00 | ............0.......,........... |
| 1e00 | 2a b2 03 00 76 00 00 00 36 b3 03 00 bc 00 00 00 ad b3 03 00 91 00 00 00 6a b4 03 00 c4 00 00 00 | *...v...6...............j....... |
| 1e20 | fc b4 03 00 c7 00 00 00 c1 b5 03 00 3e 00 00 00 89 b6 03 00 0c 00 00 00 c8 b6 03 00 46 00 00 00 | ............>...............F... |
| 1e40 | d5 b6 03 00 06 00 00 00 1c b7 03 00 14 00 00 00 23 b7 03 00 06 00 00 00 38 b7 03 00 c4 00 00 00 | ................#.......8....... |
| 1e60 | 3f b7 03 00 9f 00 00 00 04 b8 03 00 0e 00 00 00 a4 b8 03 00 2d 00 00 00 b3 b8 03 00 1b 00 00 00 | ?...................-........... |
| 1e80 | e1 b8 03 00 0f 00 00 00 fd b8 03 00 07 00 00 00 0d b9 03 00 16 00 00 00 15 b9 03 00 1d 00 00 00 | ................................ |
| 1ea0 | 2c b9 03 00 06 00 00 00 4a b9 03 00 14 00 00 00 51 b9 03 00 15 00 00 00 66 b9 03 00 14 00 00 00 | ,.......J.......Q.......f....... |
| 1ec0 | 7c b9 03 00 1f 00 00 00 91 b9 03 00 3d 00 00 00 b1 b9 03 00 0b 00 00 00 ef b9 03 00 0d 00 00 00 | |...........=................... |
| 1ee0 | fb b9 03 00 14 00 00 00 09 ba 03 00 12 00 00 00 1e ba 03 00 14 00 00 00 31 ba 03 00 6c 00 00 00 | ........................1...l... |
| 1f00 | 46 ba 03 00 07 00 00 00 b3 ba 03 00 6a 00 00 00 bb ba 03 00 98 00 00 00 26 bb 03 00 0c 00 00 00 | F...........j...........&....... |
| 1f20 | bf bb 03 00 96 00 00 00 cc bb 03 00 3e 00 00 00 63 bc 03 00 77 00 00 00 a2 bc 03 00 38 00 00 00 | ............>...c...w.......8... |
| 1f40 | 1a bd 03 00 08 00 00 00 53 bd 03 00 20 00 00 00 5c bd 03 00 40 00 00 00 7d bd 03 00 1e 00 00 00 | ........S.......\...@...}....... |
| 1f60 | be bd 03 00 11 00 00 00 dd bd 03 00 97 00 00 00 ef bd 03 00 0a 00 00 00 87 be 03 00 1b 00 00 00 | ................................ |
| 1f80 | 92 be 03 00 58 00 00 00 ae be 03 00 0b 00 00 00 07 bf 03 00 0d 00 00 00 13 bf 03 00 15 00 00 00 | ....X........................... |
| 1fa0 | 21 bf 03 00 16 00 00 00 37 bf 03 00 13 00 00 00 4e bf 03 00 15 00 00 00 62 bf 03 00 2f 00 00 00 | !.......7.......N.......b.../... |
| 1fc0 | 78 bf 03 00 0b 01 00 00 a8 bf 03 00 af 00 00 00 b4 c0 03 00 16 00 00 00 64 c1 03 00 59 00 00 00 | x.......................d...Y... |
| 1fe0 | 7b c1 03 00 26 00 00 00 d5 c1 03 00 20 00 00 00 fc c1 03 00 25 00 00 00 1d c2 03 00 a5 00 00 00 | {...&...............%........... |
| 2000 | 43 c2 03 00 22 00 00 00 e9 c2 03 00 7d 00 00 00 0c c3 03 00 9e 00 00 00 8a c3 03 00 09 00 00 00 | C...".......}................... |
| 2020 | 29 c4 03 00 94 00 00 00 33 c4 03 00 0d 00 00 00 c8 c4 03 00 51 00 00 00 d6 c4 03 00 25 00 00 00 | ).......3...........Q.......%... |
| 2040 | 28 c5 03 00 37 00 00 00 4e c5 03 00 c0 00 00 00 86 c5 03 00 71 00 00 00 47 c6 03 00 24 00 00 00 | (...7...N...........q...G...$... |
| 2060 | b9 c6 03 00 52 00 00 00 de c6 03 00 4e 00 00 00 31 c7 03 00 68 00 00 00 80 c7 03 00 55 00 00 00 | ....R.......N...1...h.......U... |
| 2080 | e9 c7 03 00 22 00 00 00 3f c8 03 00 22 00 00 00 62 c8 03 00 4c 00 00 00 85 c8 03 00 57 00 00 00 | ...."...?..."...b...L.......W... |
| 20a0 | d2 c8 03 00 75 00 00 00 2a c9 03 00 70 00 00 00 a0 c9 03 00 75 00 00 00 11 ca 03 00 a4 00 00 00 | ....u...*...p.......u........... |
| 20c0 | 87 ca 03 00 37 00 00 00 2c cb 03 00 fc 00 00 00 64 cb 03 00 bb 00 00 00 61 cc 03 00 7a 00 00 00 | ....7...,.......d.......a...z... |
| 20e0 | 1d cd 03 00 77 00 00 00 98 cd 03 00 71 00 00 00 10 ce 03 00 aa 00 00 00 82 ce 03 00 3a 00 00 00 | ....w.......q...............:... |
| 2100 | 2d cf 03 00 2b 00 00 00 68 cf 03 00 48 00 00 00 94 cf 03 00 3a 00 00 00 dd cf 03 00 60 00 00 00 | -...+...h...H.......:.......`... |
| 2120 | 18 d0 03 00 62 00 00 00 79 d0 03 00 26 00 00 00 dc d0 03 00 2b 00 00 00 03 d1 03 00 43 00 00 00 | ....b...y...&.......+.......C... |
| 2140 | 2f d1 03 00 2b 00 00 00 73 d1 03 00 5b 00 00 00 9f d1 03 00 61 00 00 00 fb d1 03 00 27 00 00 00 | /...+...s...[.......a.......'... |
| 2160 | 5d d2 03 00 5b 00 00 00 85 d2 03 00 2e 00 00 00 e1 d2 03 00 47 00 00 00 10 d3 03 00 9a 00 00 00 | ]...[...............G........... |
| 2180 | 58 d3 03 00 31 00 00 00 f3 d3 03 00 31 00 00 00 25 d4 03 00 3e 00 00 00 57 d4 03 00 41 00 00 00 | X...1.......1...%...>...W...A... |
| 21a0 | 96 d4 03 00 84 00 00 00 d8 d4 03 00 5f 00 00 00 5d d5 03 00 5f 00 00 00 bd d5 03 00 3c 00 00 00 | ............_...]..._.......<... |
| 21c0 | 1d d6 03 00 3c 00 00 00 5a d6 03 00 39 00 00 00 97 d6 03 00 89 00 00 00 d1 d6 03 00 58 00 00 00 | ....<...Z...9...............X... |
| 21e0 | 5b d7 03 00 2c 00 00 00 b4 d7 03 00 2b 00 00 00 e1 d7 03 00 64 00 00 00 0d d8 03 00 65 00 00 00 | [...,.......+.......d.......e... |
| 2200 | 72 d8 03 00 2f 00 00 00 d8 d8 03 00 4b 00 00 00 08 d9 03 00 4c 00 00 00 54 d9 03 00 5f 00 00 00 | r.../.......K.......L...T..._... |
| 2220 | a1 d9 03 00 42 00 00 00 01 da 03 00 70 00 00 00 44 da 03 00 64 00 00 00 b5 da 03 00 2a 00 00 00 | ....B.......p...D...d.......*... |
| 2240 | 1a db 03 00 3b 00 00 00 45 db 03 00 2b 00 00 00 81 db 03 00 34 00 00 00 ad db 03 00 42 00 00 00 | ....;...E...+.......4.......B... |
| 2260 | e2 db 03 00 36 00 00 00 25 dc 03 00 99 00 00 00 5c dc 03 00 3f 00 00 00 f6 dc 03 00 3f 00 00 00 | ....6...%.......\...?.......?... |
| 2280 | 36 dd 03 00 50 00 00 00 76 dd 03 00 2a 00 00 00 c7 dd 03 00 b2 00 00 00 f2 dd 03 00 2d 00 00 00 | 6...P...v...*...............-... |
| 22a0 | a5 de 03 00 5d 00 00 00 d3 de 03 00 49 00 00 00 31 df 03 00 49 00 00 00 7b df 03 00 36 00 00 00 | ....].......I...1...I...{...6... |
| 22c0 | c5 df 03 00 3c 00 00 00 fc df 03 00 3e 00 00 00 39 e0 03 00 2c 00 00 00 78 e0 03 00 1f 00 00 00 | ....<.......>...9...,...x....... |
| 22e0 | a5 e0 03 00 59 00 00 00 c5 e0 03 00 95 00 00 00 1f e1 03 00 38 00 00 00 b5 e1 03 00 10 00 00 00 | ....Y...............8........... |
| 2300 | ee e1 03 00 a6 00 00 00 ff e1 03 00 92 00 00 00 a6 e2 03 00 43 00 00 00 39 e3 03 00 31 00 00 00 | ....................C...9...1... |
| 2320 | 7d e3 03 00 51 00 00 00 af e3 03 00 17 00 00 00 01 e4 03 00 11 00 00 00 19 e4 03 00 17 00 00 00 | }...Q........................... |
| 2340 | 2b e4 03 00 25 00 00 00 43 e4 03 00 18 00 00 00 69 e4 03 00 17 00 00 00 82 e4 03 00 1d 00 00 00 | +...%...C.......i............... |
| 2360 | 9a e4 03 00 21 00 00 00 b8 e4 03 00 17 00 00 00 da e4 03 00 17 00 00 00 f2 e4 03 00 b2 00 00 00 | ....!........................... |
| 2380 | 0a e5 03 00 42 00 00 00 bd e5 03 00 12 00 00 00 00 e6 03 00 b7 00 00 00 13 e6 03 00 b8 00 00 00 | ....B........................... |
| 23a0 | cb e6 03 00 44 01 00 00 84 e7 03 00 3c 01 00 00 c9 e8 03 00 c4 01 00 00 06 ea 03 00 09 00 00 00 | ....D.......<................... |
| 23c0 | cb eb 03 00 0e 00 00 00 d5 eb 03 00 16 00 00 00 e4 eb 03 00 16 00 00 00 fb eb 03 00 0d 00 00 00 | ................................ |
| 23e0 | 12 ec 03 00 0e 00 00 00 20 ec 03 00 07 00 00 00 2f ec 03 00 0e 00 00 00 37 ec 03 00 30 00 00 00 | ................/.......7...0... |
| 2400 | 46 ec 03 00 09 00 00 00 77 ec 03 00 12 00 00 00 81 ec 03 00 12 00 00 00 94 ec 03 00 11 00 00 00 | F.......w....................... |
| 2420 | a7 ec 03 00 49 00 00 00 b9 ec 03 00 49 00 00 00 03 ed 03 00 c9 00 00 00 4d ed 03 00 b3 00 00 00 | ....I.......I...........M....... |
| 2440 | 17 ee 03 00 b4 00 00 00 cb ee 03 00 36 00 00 00 80 ef 03 00 39 00 00 00 b7 ef 03 00 81 00 00 00 | ............6.......9........... |
| 2460 | f1 ef 03 00 82 00 00 00 73 f0 03 00 92 00 00 00 f6 f0 03 00 64 00 00 00 89 f1 03 00 8a 00 00 00 | ........s...........d........... |
| 2480 | ee f1 03 00 27 00 00 00 79 f2 03 00 15 00 00 00 a1 f2 03 00 5f 00 00 00 b7 f2 03 00 44 00 00 00 | ....'...y..........._.......D... |
| 24a0 | 17 f3 03 00 69 00 00 00 5c f3 03 00 92 00 00 00 c6 f3 03 00 75 00 00 00 59 f4 03 00 66 00 00 00 | ....i...\...........u...Y...f... |
| 24c0 | cf f4 03 00 75 00 00 00 36 f5 03 00 4e 00 00 00 ac f5 03 00 8c 00 00 00 fb f5 03 00 56 00 00 00 | ....u...6...N...............V... |
| 24e0 | 88 f6 03 00 76 00 00 00 df f6 03 00 73 00 00 00 56 f7 03 00 c3 00 00 00 ca f7 03 00 c0 00 00 00 | ....v.......s...V............... |
| 2500 | 8e f8 03 00 6b 00 00 00 4f f9 03 00 30 00 00 00 bb f9 03 00 7b 00 00 00 ec f9 03 00 45 00 00 00 | ....k...O...0.......{.......E... |
| 2520 | 68 fa 03 00 7f 00 00 00 ae fa 03 00 6d 00 00 00 2e fb 03 00 3d 00 00 00 9c fb 03 00 d9 00 00 00 | h...........m.......=........... |
| 2540 | da fb 03 00 a0 00 00 00 b4 fc 03 00 68 00 00 00 55 fd 03 00 9c 00 00 00 be fd 03 00 54 00 00 00 | ............h...U...........T... |
| 2560 | 5b fe 03 00 2b 00 00 00 b0 fe 03 00 21 00 00 00 dc fe 03 00 5a 00 00 00 fe fe 03 00 70 00 00 00 | [...+.......!.......Z.......p... |
| 2580 | 59 ff 03 00 4a 00 00 00 ca ff 03 00 16 00 00 00 15 00 04 00 19 00 00 00 2c 00 04 00 25 00 00 00 | Y...J...................,...%... |
| 25a0 | 46 00 04 00 62 00 00 00 6c 00 04 00 08 00 00 00 cf 00 04 00 2d 00 00 00 d8 00 04 00 14 00 00 00 | F...b...l...........-........... |
| 25c0 | 06 01 04 00 14 00 00 00 1b 01 04 00 14 00 00 00 30 01 04 00 14 00 00 00 45 01 04 00 0d 00 00 00 | ................0.......E....... |
| 25e0 | 5a 01 04 00 39 00 00 00 68 01 04 00 43 00 00 00 a2 01 04 00 0b 00 00 00 e6 01 04 00 da 00 00 00 | Z...9...h...C................... |
| 2600 | f2 01 04 00 db 00 00 00 cd 02 04 00 e0 00 00 00 a9 03 04 00 f3 00 00 00 8a 04 04 00 dc 00 00 00 | ................................ |
| 2620 | 7e 05 04 00 dd 00 00 00 5b 06 04 00 dc 00 00 00 39 07 04 00 dd 00 00 00 16 08 04 00 43 00 00 00 | ~.......[.......9...........C... |
| 2640 | f4 08 04 00 3d 00 00 00 38 09 04 00 00 01 00 00 76 09 04 00 00 01 00 00 77 0a 04 00 b3 00 00 00 | ....=...8.......v.......w....... |
| 2660 | 78 0b 04 00 0f 00 00 00 2c 0c 04 00 0b 00 00 00 3c 0c 04 00 61 00 00 00 48 0c 04 00 0a 00 00 00 | x.......,.......<...a...H....... |
| 2680 | aa 0c 04 00 0b 00 00 00 b5 0c 04 00 18 00 00 00 c1 0c 04 00 10 00 00 00 da 0c 04 00 3a 00 00 00 | ............................:... |
| 26a0 | eb 0c 04 00 12 00 00 00 26 0d 04 00 3c 00 00 00 39 0d 04 00 84 00 00 00 76 0d 04 00 14 00 00 00 | ........&...<...9.......v....... |
| 26c0 | fb 0d 04 00 4c 00 00 00 10 0e 04 00 05 00 00 00 5d 0e 04 00 15 00 00 00 63 0e 04 00 0d 00 00 00 | ....L...........].......c....... |
| 26e0 | 79 0e 04 00 b6 00 00 00 87 0e 04 00 04 00 00 00 3e 0f 04 00 bf 00 00 00 43 0f 04 00 52 00 00 00 | y...............>.......C...R... |
| 2700 | 03 10 04 00 06 00 00 00 56 10 04 00 0e 00 00 00 5d 10 04 00 10 00 00 00 6c 10 04 00 1c 00 00 00 | ........V.......].......l....... |
| 2720 | 7d 10 04 00 17 00 00 00 9a 10 04 00 2b 00 00 00 b2 10 04 00 05 00 00 00 de 10 04 00 2f 00 00 00 | }...........+.............../... |
| 2740 | e4 10 04 00 34 00 00 00 14 11 04 00 01 01 00 00 49 11 04 00 05 00 00 00 4b 12 04 00 67 00 00 00 | ....4...........I.......K...g... |
| 2760 | 51 12 04 00 07 00 00 00 b9 12 04 00 0a 00 00 00 c1 12 04 00 15 00 00 00 cc 12 04 00 19 00 00 00 | Q............................... |
| 2780 | e2 12 04 00 a4 00 00 00 fc 12 04 00 ac 00 00 00 a1 13 04 00 b2 00 00 00 4e 14 04 00 32 00 00 00 | ........................N...2... |
| 27a0 | 01 15 04 00 ab 00 00 00 34 15 04 00 0f 00 00 00 e0 15 04 00 31 00 00 00 f0 15 04 00 1d 00 00 00 | ........4...........1........... |
| 27c0 | 22 16 04 00 14 00 00 00 40 16 04 00 32 00 00 00 55 16 04 00 15 00 00 00 88 16 04 00 0a 00 00 00 | ".......@...2...U............... |
| 27e0 | 9e 16 04 00 0c 00 00 00 a9 16 04 00 11 00 00 00 b6 16 04 00 17 00 00 00 c8 16 04 00 13 00 00 00 | ................................ |
| 2800 | e0 16 04 00 19 00 00 00 f4 16 04 00 64 00 00 00 0e 17 04 00 74 00 00 00 73 17 04 00 98 00 00 00 | ............d.......t...s....... |
| 2820 | e8 17 04 00 24 00 00 00 81 18 04 00 25 00 00 00 a6 18 04 00 0d 00 00 00 cc 18 04 00 42 00 00 00 | ....$.......%...............B... |
| 2840 | da 18 04 00 16 00 00 00 1d 19 04 00 13 00 00 00 34 19 04 00 55 00 00 00 48 19 04 00 95 00 00 00 | ................4...U...H....... |
| 2860 | 9e 19 04 00 35 00 00 00 34 1a 04 00 8e 00 00 00 6a 1a 04 00 8e 00 00 00 f9 1a 04 00 68 00 00 00 | ....5...4.......j...........h... |
| 2880 | 88 1b 04 00 77 00 00 00 f1 1b 04 00 81 00 00 00 69 1c 04 00 21 00 00 00 eb 1c 04 00 22 00 00 00 | ....w...........i...!......."... |
| 28a0 | 0d 1d 04 00 2e 00 00 00 30 1d 04 00 31 00 00 00 5f 1d 04 00 7e 00 00 00 91 1d 04 00 83 00 00 00 | ........0...1..._...~........... |
| 28c0 | 10 1e 04 00 4b 00 00 00 94 1e 04 00 38 00 00 00 e0 1e 04 00 39 00 00 00 19 1f 04 00 95 00 00 00 | ....K.......8.......9........... |
| 28e0 | 53 1f 04 00 70 00 00 00 e9 1f 04 00 85 00 00 00 5a 20 04 00 51 00 00 00 e0 20 04 00 9a 00 00 00 | S...p...........Z...Q........... |
| 2900 | 32 21 04 00 9e 00 00 00 cd 21 04 00 32 00 00 00 6c 22 04 00 69 00 00 00 9f 22 04 00 7b 00 00 00 | 2!.......!..2...l"..i...."..{... |
| 2920 | 09 23 04 00 2a 00 00 00 85 23 04 00 62 00 00 00 b0 23 04 00 4b 01 00 00 13 24 04 00 a6 00 00 00 | .#..*....#..b....#..K....$...... |
| 2940 | 5f 25 04 00 89 00 00 00 06 26 04 00 af 00 00 00 90 26 04 00 88 00 00 00 40 27 04 00 31 00 00 00 | _%.......&.......&......@'..1... |
| 2960 | c9 27 04 00 2d 00 00 00 fb 27 04 00 7a 00 00 00 29 28 04 00 92 00 00 00 a4 28 04 00 b3 00 00 00 | .'..-....'..z...)(.......(...... |
| 2980 | 37 29 04 00 6d 00 00 00 eb 29 04 00 6b 00 00 00 59 2a 04 00 1f 00 00 00 c5 2a 04 00 0e 00 00 00 | 7)..m....)..k...Y*.......*...... |
| 29a0 | e5 2a 04 00 77 00 00 00 f4 2a 04 00 4b 00 00 00 6c 2b 04 00 33 00 00 00 b8 2b 04 00 39 00 00 00 | .*..w....*..K...l+..3....+..9... |
| 29c0 | ec 2b 04 00 0b 00 00 00 26 2c 04 00 6d 00 00 00 32 2c 04 00 1a 00 00 00 a0 2c 04 00 20 00 00 00 | .+......&,..m...2,.......,...... |
| 29e0 | bb 2c 04 00 25 00 00 00 dc 2c 04 00 4d 00 00 00 02 2d 04 00 4e 00 00 00 50 2d 04 00 0b 00 00 00 | .,..%....,..M....-..N...P-...... |
| 2a00 | 9f 2d 04 00 f6 00 00 00 ab 2d 04 00 2e 00 00 00 a2 2e 04 00 13 00 00 00 d1 2e 04 00 0f 00 00 00 | .-.......-...................... |
| 2a20 | e5 2e 04 00 12 00 00 00 f5 2e 04 00 71 01 00 00 08 2f 04 00 fe 00 00 00 7a 30 04 00 4e 00 00 00 | ............q..../......z0..N... |
| 2a40 | 79 31 04 00 c9 00 00 00 c8 31 04 00 13 00 00 00 92 32 04 00 19 00 00 00 a6 32 04 00 7c 00 00 00 | y1.......1.......2.......2..|... |
| 2a60 | c0 32 04 00 38 00 00 00 3d 33 04 00 3b 00 00 00 76 33 04 00 46 00 00 00 b2 33 04 00 2f 00 00 00 | .2..8...=3..;...v3..F....3../... |
| 2a80 | f9 33 04 00 19 00 00 00 29 34 04 00 12 00 00 00 43 34 04 00 14 00 00 00 56 34 04 00 22 00 00 00 | .3......)4......C4......V4.."... |
| 2aa0 | 6b 34 04 00 84 00 00 00 8e 34 04 00 26 00 00 00 13 35 04 00 24 00 00 00 3a 35 04 00 1b 00 00 00 | k4.......4..&....5..$...:5...... |
| 2ac0 | 5f 35 04 00 1d 00 00 00 7b 35 04 00 58 00 00 00 99 35 04 00 5b 00 00 00 f2 35 04 00 43 00 00 00 | _5......{5..X....5..[....5..C... |
| 2ae0 | 4e 36 04 00 56 00 00 00 92 36 04 00 43 00 00 00 e9 36 04 00 3f 00 00 00 2d 37 04 00 75 00 00 00 | N6..V....6..C....6..?...-7..u... |
| 2b00 | 6d 37 04 00 1e 00 00 00 e3 37 04 00 25 00 00 00 02 38 04 00 25 00 00 00 28 38 04 00 15 00 00 00 | m7.......7..%....8..%...(8...... |
| 2b20 | 4e 38 04 00 86 00 00 00 64 38 04 00 2e 00 00 00 eb 38 04 00 95 00 00 00 1a 39 04 00 43 00 00 00 | N8......d8.......8.......9..C... |
| 2b40 | b0 39 04 00 2b 00 00 00 f4 39 04 00 2b 00 00 00 20 3a 04 00 37 01 00 00 4c 3a 04 00 38 00 00 00 | .9..+....9..+....:..7...L:..8... |
| 2b60 | 84 3b 04 00 3b 00 00 00 bd 3b 04 00 18 00 00 00 f9 3b 04 00 16 00 00 00 12 3c 04 00 7a 00 00 00 | .;..;....;.......;.......<..z... |
| 2b80 | 29 3c 04 00 12 00 00 00 a4 3c 04 00 67 00 00 00 b7 3c 04 00 3a 00 00 00 1f 3d 04 00 3a 00 00 00 | )<.......<..g....<..:....=..:... |
| 2ba0 | 5a 3d 04 00 0c 00 00 00 95 3d 04 00 18 00 00 00 a2 3d 04 00 39 00 00 00 bb 3d 04 00 47 00 00 00 | Z=.......=.......=..9....=..G... |
| 2bc0 | f5 3d 04 00 42 00 00 00 3d 3e 04 00 4c 00 00 00 80 3e 04 00 3f 00 00 00 cd 3e 04 00 3b 00 00 00 | .=..B...=>..L....>..?....>..;... |
| 2be0 | 0d 3f 04 00 41 00 00 00 49 3f 04 00 11 01 00 00 8b 3f 04 00 12 01 00 00 9d 40 04 00 3d 00 00 00 | .?..A...I?.......?.......@..=... |
| 2c00 | b0 41 04 00 31 00 00 00 ee 41 04 00 26 01 00 00 20 42 04 00 e2 00 00 00 47 43 04 00 9f 00 00 00 | .A..1....A..&....B......GC...... |
| 2c20 | 2a 44 04 00 9f 00 00 00 ca 44 04 00 3a 00 00 00 6a 45 04 00 f8 00 00 00 a5 45 04 00 48 00 00 00 | *D.......D..:...jE.......E..H... |
| 2c40 | 9e 46 04 00 e2 00 00 00 e7 46 04 00 88 00 00 00 ca 47 04 00 31 00 00 00 53 48 04 00 06 00 00 00 | .F.......F.......G..1...SH...... |
| 2c60 | 85 48 04 00 0d 00 00 00 8c 48 04 00 0b 00 00 00 9a 48 04 00 2e 00 00 00 a6 48 04 00 67 00 00 00 | .H.......H.......H.......H..g... |
| 2c80 | d5 48 04 00 3e 00 00 00 3d 49 04 00 13 00 00 00 7c 49 04 00 ab 00 00 00 90 49 04 00 b5 00 00 00 | .H..>...=I......|I.......I...... |
| 2ca0 | 3c 4a 04 00 b5 00 00 00 f2 4a 04 00 90 00 00 00 a8 4b 04 00 30 00 00 00 39 4c 04 00 47 00 00 00 | <J.......J.......K..0...9L..G... |
| 2cc0 | 6a 4c 04 00 22 00 00 00 b2 4c 04 00 22 00 00 00 d5 4c 04 00 24 00 00 00 f8 4c 04 00 09 00 00 00 | jL.."....L.."....L..$....L...... |
| 2ce0 | 1d 4d 04 00 09 00 00 00 27 4d 04 00 92 00 00 00 31 4d 04 00 38 00 00 00 c4 4d 04 00 f2 00 00 00 | .M......'M......1M..8....M...... |
| 2d00 | fd 4d 04 00 05 00 00 00 f0 4e 04 00 0f 00 00 00 f6 4e 04 00 88 00 00 00 06 4f 04 00 bd 00 00 00 | .M.......N.......N.......O...... |
| 2d20 | 8f 4f 04 00 c2 00 00 00 4d 50 04 00 7e 00 00 00 10 51 04 00 0b 00 00 00 8f 51 04 00 0e 00 00 00 | .O......MP..~....Q.......Q...... |
| 2d40 | 9b 51 04 00 80 00 00 00 aa 51 04 00 12 00 00 00 2b 52 04 00 6a 00 00 00 3e 52 04 00 2f 00 00 00 | .Q.......Q......+R..j...>R../... |
| 2d60 | a9 52 04 00 0a 00 00 00 d9 52 04 00 f4 00 00 00 e4 52 04 00 10 00 00 00 d9 53 04 00 f7 00 00 00 | .R.......R.......R.......S...... |
| 2d80 | ea 53 04 00 d2 01 00 00 e2 54 04 00 ad 01 00 00 b5 56 04 00 dd 00 00 00 63 58 04 00 91 01 00 00 | .S.......T.......V......cX...... |
| 2da0 | 41 59 04 00 7f 00 00 00 d3 5a 04 00 af 00 00 00 53 5b 04 00 2a 03 00 00 03 5c 04 00 6b 00 00 00 | AY.......Z......S[..*....\..k... |
| 2dc0 | 2e 5f 04 00 a3 00 00 00 9a 5f 04 00 9a 00 00 00 3e 60 04 00 50 00 00 00 d9 60 04 00 81 00 00 00 | ._......._......>`..P....`...... |
| 2de0 | 2a 61 04 00 2c 00 00 00 ac 61 04 00 51 00 00 00 d9 61 04 00 7a 00 00 00 2b 62 04 00 2b 00 00 00 | *a..,....a..Q....a..z...+b..+... |
| 2e00 | a6 62 04 00 31 00 00 00 d2 62 04 00 25 00 00 00 04 63 04 00 09 00 00 00 2a 63 04 00 34 00 00 00 | .b..1....b..%....c......*c..4... |
| 2e20 | 34 63 04 00 23 00 00 00 69 63 04 00 23 00 00 00 8d 63 04 00 25 00 00 00 b1 63 04 00 11 00 00 00 | 4c..#...ic..#....c..%....c...... |
| 2e40 | d7 63 04 00 12 00 00 00 e9 63 04 00 12 00 00 00 fc 63 04 00 1e 00 00 00 0f 64 04 00 23 00 00 00 | .c.......c.......c.......d..#... |
| 2e60 | 2e 64 04 00 39 00 00 00 52 64 04 00 24 00 00 00 8c 64 04 00 2c 00 00 00 b1 64 04 00 2d 00 00 00 | .d..9...Rd..$....d..,....d..-... |
| 2e80 | de 64 04 00 1c 00 00 00 0c 65 04 00 1d 00 00 00 29 65 04 00 1e 00 00 00 47 65 04 00 0c 00 00 00 | .d.......e......)e......Ge...... |
| 2ea0 | 66 65 04 00 28 00 00 00 73 65 04 00 3a 00 00 00 9c 65 04 00 30 00 00 00 d7 65 04 00 27 00 00 00 | fe..(...se..:....e..0....e..'... |
| 2ec0 | 08 66 04 00 38 00 00 00 30 66 04 00 1d 00 00 00 69 66 04 00 13 00 00 00 87 66 04 00 0b 00 00 00 | .f..8...0f......if.......f...... |
| 2ee0 | 9b 66 04 00 28 00 00 00 a7 66 04 00 30 00 00 00 d0 66 04 00 4c 00 00 00 01 67 04 00 74 00 00 00 | .f..(....f..0....f..L....g..t... |
| 2f00 | 4e 67 04 00 11 00 00 00 c3 67 04 00 55 00 00 00 d5 67 04 00 30 00 00 00 2b 68 04 00 0f 00 00 00 | Ng.......g..U....g..0...+h...... |
| 2f20 | 5c 68 04 00 0b 00 00 00 6c 68 04 00 28 00 00 00 78 68 04 00 35 00 00 00 a1 68 04 00 0a 00 00 00 | \h......lh..(...xh..5....h...... |
| 2f40 | d7 68 04 00 56 00 00 00 e2 68 04 00 1f 00 00 00 39 69 04 00 18 00 00 00 59 69 04 00 2d 00 00 00 | .h..V....h......9i......Yi..-... |
| 2f60 | 72 69 04 00 23 00 00 00 a0 69 04 00 3f 00 00 00 c4 69 04 00 4d 00 00 00 04 6a 04 00 20 00 00 00 | ri..#....i..?....i..M....j...... |
| 2f80 | 52 6a 04 00 6d 00 00 00 73 6a 04 00 71 00 00 00 e1 6a 04 00 33 00 00 00 53 6b 04 00 61 00 00 00 | Rj..m...sj..q....j..3...Sk..a... |
| 2fa0 | 87 6b 04 00 64 00 00 00 e9 6b 04 00 63 00 00 00 4e 6c 04 00 7d 00 00 00 b2 6c 04 00 6d 00 00 00 | .k..d....k..c...Nl..}....l..m... |
| 2fc0 | 30 6d 04 00 64 00 00 00 9e 6d 04 00 31 00 00 00 03 6e 04 00 66 00 00 00 35 6e 04 00 34 00 00 00 | 0m..d....m..1....n..f...5n..4... |
| 2fe0 | 9c 6e 04 00 1b 01 00 00 d1 6e 04 00 3a 00 00 00 ed 6f 04 00 4a 00 00 00 28 70 04 00 38 00 00 00 | .n.......n..:....o..J...(p..8... |
| 3000 | 73 70 04 00 40 01 00 00 ac 70 04 00 3a 00 00 00 ed 71 04 00 4f 00 00 00 28 72 04 00 2e 00 00 00 | sp..@....p..:....q..O...(r...... |
| 3020 | 78 72 04 00 86 00 00 00 a7 72 04 00 bb 01 00 00 2e 73 04 00 06 01 00 00 ea 74 04 00 80 00 00 00 | xr.......r.......s.......t...... |
| 3040 | f1 75 04 00 bf 00 00 00 72 76 04 00 49 00 00 00 32 77 04 00 25 00 00 00 7c 77 04 00 4b 00 00 00 | .u......rv..I...2w..%...|w..K... |
| 3060 | a2 77 04 00 79 00 00 00 ee 77 04 00 d6 00 00 00 68 78 04 00 22 00 00 00 3f 79 04 00 64 00 00 00 | .w..y....w......hx.."...?y..d... |
| 3080 | 62 79 04 00 16 00 00 00 c7 79 04 00 14 00 00 00 de 79 04 00 79 00 00 00 f3 79 04 00 42 00 00 00 | by.......y.......y..y....y..B... |
| 30a0 | 6d 7a 04 00 1c 00 00 00 b0 7a 04 00 1d 00 00 00 cd 7a 04 00 33 00 00 00 eb 7a 04 00 a7 00 00 00 | mz.......z.......z..3....z...... |
| 30c0 | 1f 7b 04 00 c1 00 00 00 c7 7b 04 00 32 00 00 00 89 7c 04 00 05 00 00 00 bc 7c 04 00 10 00 00 00 | .{.......{..2....|.......|...... |
| 30e0 | c2 7c 04 00 5e 00 00 00 d3 7c 04 00 08 00 00 00 32 7d 04 00 dc 00 00 00 3b 7d 04 00 10 00 00 00 | .|..^....|......2}......;}...... |
| 3100 | 18 7e 04 00 5d 00 00 00 29 7e 04 00 0d 00 00 00 87 7e 04 00 21 00 00 00 95 7e 04 00 21 00 00 00 | .~..]...)~.......~..!....~..!... |
| 3120 | b7 7e 04 00 d4 00 00 00 d9 7e 04 00 14 00 00 00 ae 7f 04 00 38 00 00 00 c3 7f 04 00 a3 00 00 00 | .~.......~..........8........... |
| 3140 | fc 7f 04 00 a7 00 00 00 a0 80 04 00 23 00 00 00 48 81 04 00 91 00 00 00 6c 81 04 00 59 00 00 00 | ............#...H.......l...Y... |
| 3160 | fe 81 04 00 a6 01 00 00 58 82 04 00 ca 00 00 00 ff 83 04 00 75 01 00 00 ca 84 04 00 70 01 00 00 | ........X...........u.......p... |
| 3180 | 40 86 04 00 63 01 00 00 b1 87 04 00 07 00 00 00 15 89 04 00 15 00 00 00 1d 89 04 00 27 00 00 00 | @...c.......................'... |
| 31a0 | 33 89 04 00 26 00 00 00 5b 89 04 00 12 00 00 00 82 89 04 00 0f 00 00 00 95 89 04 00 16 00 00 00 | 3...&...[....................... |
| 31c0 | a5 89 04 00 2f 00 00 00 bc 89 04 00 2f 00 00 00 ec 89 04 00 77 00 00 00 1c 8a 04 00 17 00 00 00 | ..../......./.......w........... |
| 31e0 | 94 8a 04 00 92 00 00 00 ac 8a 04 00 10 00 00 00 3f 8b 04 00 51 00 00 00 50 8b 04 00 08 00 00 00 | ................?...Q...P....... |
| 3200 | a2 8b 04 00 6c 00 00 00 ab 8b 04 00 bf 00 00 00 18 8c 04 00 58 00 00 00 d8 8c 04 00 e0 00 00 00 | ....l...............X........... |
| 3220 | 31 8d 04 00 3d 00 00 00 12 8e 04 00 3b 00 00 00 50 8e 04 00 3c 00 00 00 8c 8e 04 00 3e 00 00 00 | 1...=.......;...P...<.......>... |
| 3240 | c9 8e 04 00 3c 00 00 00 08 8f 04 00 3d 00 00 00 45 8f 04 00 15 00 00 00 83 8f 04 00 34 00 00 00 | ....<.......=...E...........4... |
| 3260 | 99 8f 04 00 36 00 00 00 ce 8f 04 00 33 00 00 00 05 90 04 00 a3 00 00 00 39 90 04 00 08 00 00 00 | ....6.......3...........9....... |
| 3280 | dd 90 04 00 1b 00 00 00 e6 90 04 00 09 00 00 00 02 91 04 00 c5 00 00 00 0c 91 04 00 2e 00 00 00 | ................................ |
| 32a0 | d2 91 04 00 0f 00 00 00 01 92 04 00 0f 00 00 00 11 92 04 00 31 00 00 00 21 92 04 00 2a 00 00 00 | ....................1...!...*... |
| 32c0 | 53 92 04 00 19 00 00 00 7e 92 04 00 0b 00 00 00 98 92 04 00 40 00 00 00 a4 92 04 00 28 00 00 00 | S.......~...........@.......(... |
| 32e0 | e5 92 04 00 1c 00 00 00 0e 93 04 00 1a 00 00 00 2b 93 04 00 8e 00 00 00 46 93 04 00 08 00 00 00 | ................+.......F....... |
| 3300 | d5 93 04 00 c1 00 00 00 de 93 04 00 9a 00 00 00 a0 94 04 00 dc 00 00 00 3b 95 04 00 a5 01 00 00 | ........................;....... |
| 3320 | 18 96 04 00 03 00 00 00 be 97 04 00 98 00 00 00 c2 97 04 00 46 01 00 00 5b 98 04 00 0a 00 00 00 | ....................F...[....... |
| 3340 | a2 99 04 00 0a 00 00 00 ad 99 04 00 39 00 00 00 b8 99 04 00 0d 00 00 00 f2 99 04 00 08 00 00 00 | ............9................... |
| 3360 | 00 9a 04 00 0f 00 00 00 09 9a 04 00 2d 00 00 00 19 9a 04 00 e5 00 00 00 47 9a 04 00 ea 00 00 00 | ............-...........G....... |
| 3380 | 2d 9b 04 00 0a 00 00 00 18 9c 04 00 57 01 00 00 23 9c 04 00 31 01 00 00 7b 9d 04 00 0a 00 00 00 | -...........W...#...1...{....... |
| 33a0 | ad 9e 04 00 69 01 00 00 b8 9e 04 00 26 00 00 00 22 a0 04 00 05 00 00 00 49 a0 04 00 71 00 00 00 | ....i.......&...".......I...q... |
| 33c0 | 4f a0 04 00 5c 00 00 00 c1 a0 04 00 90 00 00 00 1e a1 04 00 33 00 00 00 af a1 04 00 33 00 00 00 | O...\...............3.......3... |
| 33e0 | e3 a1 04 00 51 00 00 00 17 a2 04 00 95 00 00 00 69 a2 04 00 09 00 00 00 ff a2 04 00 c1 00 00 00 | ....Q...........i............... |
| 3400 | 09 a3 04 00 53 00 00 00 cb a3 04 00 08 00 00 00 1f a4 04 00 15 00 00 00 28 a4 04 00 15 00 00 00 | ....S...................(....... |
| 3420 | 3e a4 04 00 16 00 00 00 54 a4 04 00 23 00 00 00 6b a4 04 00 14 00 00 00 8f a4 04 00 13 00 00 00 | >.......T...#...k............... |
| 3440 | a4 a4 04 00 0d 00 00 00 b8 a4 04 00 0e 00 00 00 c6 a4 04 00 b0 00 00 00 d5 a4 04 00 b0 00 00 00 | ................................ |
| 3460 | 86 a5 04 00 e9 00 00 00 37 a6 04 00 0f 00 00 00 21 a7 04 00 4f 01 00 00 31 a7 04 00 20 01 00 00 | ........7.......!...O...1....... |
| 3480 | 81 a8 04 00 23 01 00 00 a2 a9 04 00 4d 00 00 00 c6 aa 04 00 95 00 00 00 14 ab 04 00 89 00 00 00 | ....#.......M................... |
| 34a0 | aa ab 04 00 22 00 00 00 34 ac 04 00 0f 00 00 00 57 ac 04 00 0f 00 00 00 67 ac 04 00 28 00 00 00 | ...."...4.......W.......g...(... |
| 34c0 | 77 ac 04 00 78 01 00 00 a0 ac 04 00 60 00 00 00 19 ae 04 00 1d 01 00 00 7a ae 04 00 0b 00 00 00 | w...x.......`...........z....... |
| 34e0 | 98 af 04 00 53 00 00 00 a4 af 04 00 cd 00 00 00 f8 af 04 00 ca 00 00 00 c6 b0 04 00 dd 00 00 00 | ....S........................... |
| 3500 | 91 b1 04 00 f4 00 00 00 6f b2 04 00 60 00 00 00 64 b3 04 00 98 00 00 00 c5 b3 04 00 98 00 00 00 | ........o...`...d............... |
| 3520 | 5e b4 04 00 00 01 00 00 f7 b4 04 00 30 00 00 00 f8 b5 04 00 aa 00 00 00 29 b6 04 00 05 00 00 00 | ^...........0...........)....... |
| 3540 | d4 b6 04 00 0e 00 00 00 da b6 04 00 2a 02 00 00 e9 b6 04 00 0f 00 00 00 14 b9 04 00 0b 00 00 00 | ............*................... |
| 3560 | 24 b9 04 00 1f 00 00 00 30 b9 04 00 33 00 00 00 50 b9 04 00 73 00 00 00 84 b9 04 00 6e 00 00 00 | $.......0...3...P...s.......n... |
| 3580 | f8 b9 04 00 87 00 00 00 67 ba 04 00 2e 00 00 00 ef ba 04 00 29 00 00 00 1e bb 04 00 b1 00 00 00 | ........g...........)........... |
| 35a0 | 48 bb 04 00 17 00 00 00 fa bb 04 00 a7 00 00 00 12 bc 04 00 21 00 00 00 ba bc 04 00 a5 00 00 00 | H...................!........... |
| 35c0 | dc bc 04 00 90 00 00 00 82 bd 04 00 26 00 00 00 13 be 04 00 1a 00 00 00 3a be 04 00 44 00 00 00 | ............&...........:...D... |
| 35e0 | 55 be 04 00 48 00 00 00 9a be 04 00 2a 00 00 00 e3 be 04 00 6e 00 00 00 0e bf 04 00 90 00 00 00 | U...H.......*.......n........... |
| 3600 | 7d bf 04 00 cf 00 00 00 0e c0 04 00 0f 00 00 00 de c0 04 00 0c 00 00 00 ee c0 04 00 69 01 00 00 | }...........................i... |
| 3620 | fb c0 04 00 93 00 00 00 65 c2 04 00 0f 00 00 00 f9 c2 04 00 f1 00 00 00 09 c3 04 00 10 00 00 00 | ........e....................... |
| 3640 | fb c3 04 00 3e 00 00 00 0c c4 04 00 81 00 00 00 4b c4 04 00 8b 00 00 00 cd c4 04 00 bd 00 00 00 | ....>...........K............... |
| 3660 | 59 c5 04 00 30 01 00 00 17 c6 04 00 96 00 00 00 48 c7 04 00 8a 00 00 00 df c7 04 00 69 01 00 00 | Y...0...........H...........i... |
| 3680 | 6a c8 04 00 0c 00 00 00 d4 c9 04 00 5a 00 00 00 e1 c9 04 00 3b 01 00 00 3c ca 04 00 3c 01 00 00 | j...........Z.......;...<...<... |
| 36a0 | 78 cb 04 00 db 00 00 00 b5 cc 04 00 52 00 00 00 91 cd 04 00 2f 00 00 00 e4 cd 04 00 ac 00 00 00 | x...........R......./........... |
| 36c0 | 14 ce 04 00 09 00 00 00 c1 ce 04 00 eb 00 00 00 cb ce 04 00 d8 00 00 00 b7 cf 04 00 5c 00 00 00 | ............................\... |
| 36e0 | 90 d0 04 00 63 00 00 00 ed d0 04 00 22 01 00 00 51 d1 04 00 4a 01 00 00 74 d2 04 00 af 00 00 00 | ....c......."...Q...J...t....... |
| 3700 | bf d3 04 00 30 00 00 00 6f d4 04 00 4b 00 00 00 a0 d4 04 00 66 00 00 00 ec d4 04 00 52 00 00 00 | ....0...o...K.......f.......R... |
| 3720 | 53 d5 04 00 49 00 00 00 a6 d5 04 00 1b 01 00 00 f0 d5 04 00 bb 00 00 00 0c d7 04 00 60 00 00 00 | S...I.......................`... |
| 3740 | c8 d7 04 00 62 00 00 00 29 d8 04 00 52 01 00 00 8c d8 04 00 43 00 00 00 df d9 04 00 f3 00 00 00 | ....b...)...R.......C........... |
| 3760 | 23 da 04 00 bd 00 00 00 17 db 04 00 bc 00 00 00 d5 db 04 00 da 00 00 00 92 dc 04 00 77 00 00 00 | #...........................w... |
| 3780 | 6d dd 04 00 e7 00 00 00 e5 dd 04 00 af 00 00 00 cd de 04 00 e8 00 00 00 7d df 04 00 e3 00 00 00 | m.......................}....... |
| 37a0 | 66 e0 04 00 76 00 00 00 4a e1 04 00 3c 01 00 00 c1 e1 04 00 3a 01 00 00 fe e2 04 00 42 01 00 00 | f...v...J...<.......:.......B... |
| 37c0 | 39 e4 04 00 97 00 00 00 7c e5 04 00 a2 00 00 00 14 e6 04 00 a6 00 00 00 b7 e6 04 00 7b 00 00 00 | 9.......|...................{... |
| 37e0 | 5e e7 04 00 d3 00 00 00 da e7 04 00 62 00 00 00 ae e8 04 00 0e 00 00 00 11 e9 04 00 cc 00 00 00 | ^...........b................... |
| 3800 | 20 e9 04 00 32 00 00 00 ed e9 04 00 11 00 00 00 20 ea 04 00 14 01 00 00 32 ea 04 00 b9 00 00 00 | ....2...................2....... |
| 3820 | 47 eb 04 00 bd 00 00 00 01 ec 04 00 0f 00 00 00 bf ec 04 00 06 00 00 00 cf ec 04 00 06 00 00 00 | G............................... |
| 3840 | d6 ec 04 00 5d 02 00 00 dd ec 04 00 5c 02 00 00 3b ef 04 00 0e 00 00 00 98 f1 04 00 80 01 00 00 | ....].......\...;............... |
| 3860 | a7 f1 04 00 23 01 00 00 28 f3 04 00 0c 01 00 00 4c f4 04 00 8b 00 00 00 59 f5 04 00 06 00 00 00 | ....#...(.......L.......Y....... |
| 3880 | e5 f5 04 00 59 00 00 00 ec f5 04 00 59 00 00 00 46 f6 04 00 07 00 00 00 a0 f6 04 00 15 00 00 00 | ....Y.......Y...F............... |
| 38a0 | a8 f6 04 00 44 00 00 00 be f6 04 00 44 00 00 00 03 f7 04 00 0f 00 00 00 48 f7 04 00 4d 00 00 00 | ....D.......D...........H...M... |
| 38c0 | 58 f7 04 00 3d 00 00 00 a6 f7 04 00 10 00 00 00 e4 f7 04 00 45 00 00 00 f5 f7 04 00 58 00 00 00 | X...=...............E.......X... |
| 38e0 | 3b f8 04 00 59 00 00 00 94 f8 04 00 7c 00 00 00 ee f8 04 00 ac 00 00 00 6b f9 04 00 89 00 00 00 | ;...Y.......|...........k....... |
| 3900 | 18 fa 04 00 8a 00 00 00 a2 fa 04 00 86 00 00 00 2d fb 04 00 23 00 00 00 b4 fb 04 00 0e 00 00 00 | ................-...#........... |
| 3920 | d8 fb 04 00 26 00 00 00 e7 fb 04 00 2d 00 00 00 0e fc 04 00 2e 00 00 00 3c fc 04 00 2d 00 00 00 | ....&.......-...........<...-... |
| 3940 | 6b fc 04 00 0f 00 00 00 99 fc 04 00 1d 01 00 00 a9 fc 04 00 19 01 00 00 c7 fd 04 00 1f 01 00 00 | k............................... |
| 3960 | e1 fe 04 00 07 00 00 00 01 00 05 00 06 00 00 00 09 00 05 00 17 00 00 00 10 00 05 00 0e 00 00 00 | ................................ |
| 3980 | 28 00 05 00 25 00 00 00 37 00 05 00 0e 00 00 00 5d 00 05 00 11 00 00 00 6c 00 05 00 0f 00 00 00 | (...%...7.......].......l....... |
| 39a0 | 7e 00 05 00 10 00 00 00 8e 00 05 00 07 00 00 00 9f 00 05 00 0e 00 00 00 a7 00 05 00 06 00 00 00 | ~............................... |
| 39c0 | b6 00 05 00 d0 00 00 00 bd 00 05 00 2c 00 00 00 8e 01 05 00 5c 00 00 00 bb 01 05 00 53 00 00 00 | ............,.......\.......S... |
| 39e0 | 18 02 05 00 1b 00 00 00 6c 02 05 00 57 00 00 00 88 02 05 00 2b 00 00 00 e0 02 05 00 08 00 00 00 | ........l...W.......+........... |
| 3a00 | 0c 03 05 00 13 00 00 00 15 03 05 00 22 00 00 00 29 03 05 00 1a 00 00 00 4c 03 05 00 0b 00 00 00 | ............"...).......L....... |
| 3a20 | 67 03 05 00 0b 00 00 00 73 03 05 00 11 00 00 00 7f 03 05 00 08 00 00 00 91 03 05 00 1a 00 00 00 | g.......s....................... |
| 3a40 | 9a 03 05 00 87 00 00 00 b5 03 05 00 6d 00 00 00 3d 04 05 00 17 00 00 00 ab 04 05 00 07 00 00 00 | ............m...=............... |
| 3a60 | c3 04 05 00 9c 00 00 00 cb 04 05 00 24 00 00 00 68 05 05 00 c5 00 00 00 8d 05 05 00 47 01 00 00 | ............$...h...........G... |
| 3a80 | 53 06 05 00 14 00 00 00 9b 07 05 00 0d 00 00 00 b0 07 05 00 85 00 00 00 be 07 05 00 0c 00 00 00 | S............................... |
| 3aa0 | 44 08 05 00 3e 00 00 00 51 08 05 00 78 00 00 00 90 08 05 00 3c 00 00 00 09 09 05 00 23 00 00 00 | D...>...Q...x.......<.......#... |
| 3ac0 | 46 09 05 00 df 00 00 00 6a 09 05 00 34 00 00 00 4a 0a 05 00 4d 00 00 00 7f 0a 05 00 3e 00 00 00 | F.......j...4...J...M.......>... |
| 3ae0 | cd 0a 05 00 64 00 00 00 0c 0b 05 00 db 00 00 00 71 0b 05 00 3b 00 00 00 4d 0c 05 00 28 00 00 00 | ....d...........q...;...M...(... |
| 3b00 | 89 0c 05 00 18 00 00 00 b2 0c 05 00 12 00 00 00 cb 0c 05 00 3f 00 00 00 de 0c 05 00 04 00 00 00 | ....................?........... |
| 3b20 | 1e 0d 05 00 11 00 00 00 23 0d 05 00 11 00 00 00 35 0d 05 00 0a 00 00 00 47 0d 05 00 2a 00 00 00 | ........#.......5.......G...*... |
| 3b40 | 52 0d 05 00 10 00 00 00 7d 0d 05 00 09 00 00 00 8e 0d 05 00 30 00 00 00 98 0d 05 00 08 00 00 00 | R.......}...........0........... |
| 3b60 | c9 0d 05 00 05 01 00 00 d2 0d 05 00 1e 00 00 00 d8 0e 05 00 13 00 00 00 f7 0e 05 00 c5 00 00 00 | ................................ |
| 3b80 | 0b 0f 05 00 6a 00 00 00 d1 0f 05 00 c0 00 00 00 3c 10 05 00 25 00 00 00 fd 10 05 00 25 00 00 00 | ....j...........<...%.......%... |
| 3ba0 | 23 11 05 00 03 00 00 00 49 11 05 00 d3 00 00 00 4d 11 05 00 a8 00 00 00 21 12 05 00 90 01 00 00 | #.......I.......M.......!....... |
| 3bc0 | ca 12 05 00 d4 01 00 00 5b 14 05 00 23 01 00 00 30 16 05 00 2a 00 00 00 54 17 05 00 0a 00 00 00 | ........[...#...0...*...T....... |
| 3be0 | 7f 17 05 00 26 00 00 00 8a 17 05 00 0a 00 00 00 b1 17 05 00 96 01 00 00 bc 17 05 00 05 00 00 00 | ....&........................... |
| 3c00 | 53 19 05 00 05 00 00 00 59 19 05 00 2b 00 00 00 5f 19 05 00 02 00 00 00 8b 19 05 00 0a 00 00 00 | S.......Y...+..._............... |
| 3c20 | 8e 19 05 00 53 00 00 00 99 19 05 00 1d 00 00 00 ed 19 05 00 25 00 00 00 0b 1a 05 00 18 00 00 00 | ....S...............%........... |
| 3c40 | 31 1a 05 00 19 00 00 00 4a 1a 05 00 19 00 00 00 64 1a 05 00 33 00 00 00 7e 1a 05 00 33 00 00 00 | 1.......J.......d...3...~...3... |
| 3c60 | b2 1a 05 00 ea 00 00 00 e6 1a 05 00 2b 00 00 00 d1 1b 05 00 4d 00 00 00 fd 1b 05 00 15 00 00 00 | ............+.......M........... |
| 3c80 | 4b 1c 05 00 14 02 00 00 61 1c 05 00 34 00 00 00 76 1e 05 00 33 00 00 00 ab 1e 05 00 36 00 00 00 | K.......a...4...v...3.......6... |
| 3ca0 | df 1e 05 00 34 00 00 00 16 1f 05 00 2d 00 00 00 4b 1f 05 00 27 00 00 00 79 1f 05 00 1b 00 00 00 | ....4.......-...K...'...y....... |
| 3cc0 | a1 1f 05 00 38 00 00 00 bd 1f 05 00 38 00 00 00 f6 1f 05 00 06 00 00 00 2f 20 05 00 04 00 00 00 | ....8.......8.........../....... |
| 3ce0 | 36 20 05 00 05 00 00 00 3b 20 05 00 11 00 00 00 41 20 05 00 19 00 00 00 53 20 05 00 1d 00 00 00 | 6.......;.......A.......S....... |
| 3d00 | 6d 20 05 00 19 00 00 00 8b 20 05 00 41 00 00 00 a5 20 05 00 11 00 00 00 e7 20 05 00 12 00 00 00 | m...........A................... |
| 3d20 | f9 20 05 00 06 00 00 00 0c 21 05 00 0b 00 00 00 13 21 05 00 f7 00 00 00 1f 21 05 00 f9 00 00 00 | .........!.......!.......!...... |
| 3d40 | 17 22 05 00 24 01 00 00 11 23 05 00 39 00 00 00 36 24 05 00 05 00 00 00 70 24 05 00 19 00 00 00 | ."..$....#..9...6$......p$...... |
| 3d60 | 76 24 05 00 04 00 00 00 90 24 05 00 1b 00 00 00 95 24 05 00 25 00 00 00 b1 24 05 00 2d 00 00 00 | v$.......$.......$..%....$..-... |
| 3d80 | d7 24 05 00 2e 00 00 00 05 25 05 00 0c 00 00 00 34 25 05 00 0a 00 00 00 41 25 05 00 7a 00 00 00 | .$.......%......4%......A%..z... |
| 3da0 | 4c 25 05 00 50 00 00 00 c7 25 05 00 0b 00 00 00 18 26 05 00 76 00 00 00 24 26 05 00 7c 00 00 00 | L%..P....%.......&..v...$&..|... |
| 3dc0 | 9b 26 05 00 04 00 00 00 18 27 05 00 10 00 00 00 1d 27 05 00 15 00 00 00 2e 27 05 00 16 00 00 00 | .&.......'.......'.......'...... |
| 3de0 | 44 27 05 00 20 00 00 00 5b 27 05 00 1b 00 00 00 7c 27 05 00 0e 00 00 00 98 27 05 00 16 00 00 00 | D'......['......|'.......'...... |
| 3e00 | a7 27 05 00 11 00 00 00 be 27 05 00 14 00 00 00 d0 27 05 00 87 00 00 00 e5 27 05 00 39 00 00 00 | .'.......'.......'.......'..9... |
| 3e20 | 6d 28 05 00 3a 00 00 00 a7 28 05 00 3a 00 00 00 e2 28 05 00 ec 00 00 00 1d 29 05 00 14 00 00 00 | m(..:....(..:....(.......)...... |
| 3e40 | 0a 2a 05 00 1f 00 00 00 1f 2a 05 00 25 00 00 00 3f 2a 05 00 0c 00 00 00 65 2a 05 00 3e 00 00 00 | .*.......*..%...?*......e*..>... |
| 3e60 | 72 2a 05 00 0c 00 00 00 b1 2a 05 00 0a 00 00 00 be 2a 05 00 54 00 00 00 c9 2a 05 00 0b 00 00 00 | r*.......*.......*..T....*...... |
| 3e80 | 1e 2b 05 00 0c 00 00 00 2a 2b 05 00 05 00 00 00 37 2b 05 00 1a 00 00 00 3d 2b 05 00 16 00 00 00 | .+......*+......7+......=+...... |
| 3ea0 | 58 2b 05 00 14 00 00 00 6f 2b 05 00 1c 00 00 00 84 2b 05 00 75 00 00 00 a1 2b 05 00 07 01 00 00 | X+......o+.......+..u....+...... |
| 3ec0 | 17 2c 05 00 78 01 00 00 1f 2d 05 00 45 00 00 00 98 2e 05 00 39 00 00 00 de 2e 05 00 ec 00 00 00 | .,..x....-..E.......9........... |
| 3ee0 | 18 2f 05 00 e6 00 00 00 05 30 05 00 4a 00 00 00 ec 30 05 00 57 00 00 00 37 31 05 00 69 00 00 00 | ./.......0..J....0..W...71..i... |
| 3f00 | 8f 31 05 00 d2 00 00 00 f9 31 05 00 c2 00 00 00 cc 32 05 00 b8 00 00 00 8f 33 05 00 98 00 00 00 | .1.......1.......2.......3...... |
| 3f20 | 48 34 05 00 8d 00 00 00 e1 34 05 00 93 00 00 00 6f 35 05 00 b5 00 00 00 03 36 05 00 65 00 00 00 | H4.......4......o5.......6..e... |
| 3f40 | b9 36 05 00 ff 00 00 00 1f 37 05 00 7f 00 00 00 1f 38 05 00 c3 00 00 00 9f 38 05 00 c3 00 00 00 | .6.......7.......8.......8...... |
| 3f60 | 63 39 05 00 bf 00 00 00 27 3a 05 00 bf 00 00 00 e7 3a 05 00 cc 00 00 00 a7 3b 05 00 cc 00 00 00 | c9......':.......:.......;...... |
| 3f80 | 74 3c 05 00 d0 00 00 00 41 3d 05 00 d0 00 00 00 12 3e 05 00 83 00 00 00 e3 3e 05 00 5a 00 00 00 | t<......A=.......>.......>..Z... |
| 3fa0 | 67 3f 05 00 69 00 00 00 c2 3f 05 00 0d 02 00 00 2c 40 05 00 b8 00 00 00 3a 42 05 00 22 00 00 00 | g?..i....?......,@......:B.."... |
| 3fc0 | f3 42 05 00 a4 00 00 00 16 43 05 00 b1 01 00 00 bb 43 05 00 ad 00 00 00 6d 45 05 00 6f 00 00 00 | .B.......C.......C......mE..o... |
| 3fe0 | 1b 46 05 00 e9 00 00 00 8b 46 05 00 89 00 00 00 75 47 05 00 ae 00 00 00 ff 47 05 00 38 01 00 00 | .F.......F......uG.......G..8... |
| 4000 | ae 48 05 00 46 01 00 00 e7 49 05 00 5f 01 00 00 2e 4b 05 00 f0 00 00 00 8e 4c 05 00 57 00 00 00 | .H..F....I.._....K.......L..W... |
| 4020 | 7f 4d 05 00 83 00 00 00 d7 4d 05 00 32 00 00 00 5b 4e 05 00 25 01 00 00 8e 4e 05 00 6c 00 00 00 | .M.......M..2...[N..%....N..l... |
| 4040 | b4 4f 05 00 6a 01 00 00 21 50 05 00 95 00 00 00 8c 51 05 00 5d 00 00 00 22 52 05 00 9b 00 00 00 | .O..j...!P.......Q..]..."R...... |
| 4060 | 80 52 05 00 6c 00 00 00 1c 53 05 00 73 00 00 00 89 53 05 00 2a 00 00 00 fd 53 05 00 78 00 00 00 | .R..l....S..s....S..*....S..x... |
| 4080 | 28 54 05 00 a3 00 00 00 a1 54 05 00 94 00 00 00 45 55 05 00 93 00 00 00 da 55 05 00 51 00 00 00 | (T.......T......EU.......U..Q... |
| 40a0 | 6e 56 05 00 92 00 00 00 c0 56 05 00 c0 00 00 00 53 57 05 00 c4 00 00 00 14 58 05 00 bb 00 00 00 | nV.......V......SW.......X...... |
| 40c0 | d9 58 05 00 ba 00 00 00 95 59 05 00 bd 00 00 00 50 5a 05 00 b2 00 00 00 0e 5b 05 00 97 00 00 00 | .X.......Y......PZ.......[...... |
| 40e0 | c1 5b 05 00 a0 00 00 00 59 5c 05 00 b5 00 00 00 fa 5c 05 00 b9 00 00 00 b0 5d 05 00 55 00 00 00 | .[......Y\.......\.......]..U... |
| 4100 | 6a 5e 05 00 6e 00 00 00 c0 5e 05 00 a6 00 00 00 2f 5f 05 00 a7 00 00 00 d6 5f 05 00 ac 00 00 00 | j^..n....^....../_......._...... |
| 4120 | 7e 60 05 00 79 00 00 00 2b 61 05 00 74 00 00 00 a5 61 05 00 73 00 00 00 1a 62 05 00 68 00 00 00 | ~`..y...+a..t....a..s....b..h... |
| 4140 | 8e 62 05 00 42 01 00 00 f7 62 05 00 d4 00 00 00 3a 64 05 00 d1 00 00 00 0f 65 05 00 b3 00 00 00 | .b..B....b......:d.......e...... |
| 4160 | e1 65 05 00 38 00 00 00 95 66 05 00 87 00 00 00 ce 66 05 00 8f 00 00 00 56 67 05 00 79 00 00 00 | .e..8....f.......f......Vg..y... |
| 4180 | e6 67 05 00 6f 00 00 00 60 68 05 00 97 00 00 00 d0 68 05 00 8a 00 00 00 68 69 05 00 a3 00 00 00 | .g..o...`h.......h......hi...... |
| 41a0 | f3 69 05 00 60 00 00 00 97 6a 05 00 66 00 00 00 f8 6a 05 00 ab 00 00 00 5f 6b 05 00 45 00 00 00 | .i..`....j..f....j......_k..E... |
| 41c0 | 0b 6c 05 00 d3 00 00 00 51 6c 05 00 d3 00 00 00 25 6d 05 00 8e 00 00 00 f9 6d 05 00 61 00 00 00 | .l......Ql......%m.......m..a... |
| 41e0 | 88 6e 05 00 7f 00 00 00 ea 6e 05 00 69 01 00 00 6a 6f 05 00 9d 01 00 00 d4 70 05 00 9e 01 00 00 | .n.......n..i...jo.......p...... |
| 4200 | 72 72 05 00 b6 00 00 00 11 74 05 00 cd 00 00 00 c8 74 05 00 bf 00 00 00 96 75 05 00 b9 00 00 00 | rr.......t.......t.......u...... |
| 4220 | 56 76 05 00 a8 00 00 00 10 77 05 00 5f 00 00 00 b9 77 05 00 e5 00 00 00 19 78 05 00 55 00 00 00 | Vv.......w.._....w.......x..U... |
| 4240 | ff 78 05 00 69 00 00 00 55 79 05 00 74 00 00 00 bf 79 05 00 57 01 00 00 34 7a 05 00 8a 00 00 00 | .x..i...Uy..t....y..W...4z...... |
| 4260 | 8c 7b 05 00 9b 00 00 00 17 7c 05 00 8d 00 00 00 b3 7c 05 00 74 00 00 00 41 7d 05 00 97 00 00 00 | .{.......|.......|..t...A}...... |
| 4280 | b6 7d 05 00 5c 00 00 00 4e 7e 05 00 8e 00 00 00 ab 7e 05 00 92 00 00 00 3a 7f 05 00 69 00 00 00 | .}..\...N~.......~......:...i... |
| 42a0 | cd 7f 05 00 6d 00 00 00 37 80 05 00 db 00 00 00 a5 80 05 00 74 01 00 00 81 81 05 00 55 00 00 00 | ....m...7...........t.......U... |
| 42c0 | f6 82 05 00 87 00 00 00 4c 83 05 00 3e 00 00 00 d4 83 05 00 d5 00 00 00 13 84 05 00 91 00 00 00 | ........L...>................... |
| 42e0 | e9 84 05 00 bf 00 00 00 7b 85 05 00 37 01 00 00 3b 86 05 00 55 01 00 00 73 87 05 00 55 00 00 00 | ........{...7...;...U...s...U... |
| 4300 | c9 88 05 00 2c 00 00 00 1f 89 05 00 21 00 00 00 4c 89 05 00 9d 00 00 00 6e 89 05 00 1e 00 00 00 | ....,.......!...L.......n....... |
| 4320 | 0c 8a 05 00 09 00 00 00 2b 8a 05 00 34 00 00 00 35 8a 05 00 1a 00 00 00 6a 8a 05 00 b7 00 00 00 | ........+...4...5.......j....... |
| 4340 | 85 8a 05 00 40 00 00 00 3d 8b 05 00 31 00 00 00 7e 8b 05 00 80 00 00 00 b0 8b 05 00 43 00 00 00 | ....@...=...1...~...........C... |
| 4360 | 31 8c 05 00 38 00 00 00 75 8c 05 00 2c 00 00 00 ae 8c 05 00 9f 00 00 00 db 8c 05 00 58 01 00 00 | 1...8...u...,...............X... |
| 4380 | 7b 8d 05 00 7e 00 00 00 d4 8e 05 00 a3 00 00 00 53 8f 05 00 a4 00 00 00 f7 8f 05 00 55 00 00 00 | {...~...........S...........U... |
| 43a0 | 9c 90 05 00 3a 00 00 00 f2 90 05 00 39 00 00 00 2d 91 05 00 70 00 00 00 67 91 05 00 70 00 00 00 | ....:.......9...-...p...g...p... |
| 43c0 | d8 91 05 00 4e 00 00 00 49 92 05 00 3b 00 00 00 98 92 05 00 6b 01 00 00 d4 92 05 00 4a 00 00 00 | ....N...I...;.......k.......J... |
| 43e0 | 40 94 05 00 b5 00 00 00 8b 94 05 00 71 00 00 00 41 95 05 00 c2 00 00 00 b3 95 05 00 67 00 00 00 | @...........q...A...........g... |
| 4400 | 76 96 05 00 70 00 00 00 de 96 05 00 dd 00 00 00 4f 97 05 00 dc 00 00 00 2d 98 05 00 4a 00 00 00 | v...p...........O.......-...J... |
| 4420 | 0a 99 05 00 4b 00 00 00 55 99 05 00 4d 00 00 00 a1 99 05 00 32 00 00 00 ef 99 05 00 6f 00 00 00 | ....K...U...M.......2.......o... |
| 4440 | 22 9a 05 00 68 00 00 00 92 9a 05 00 e3 00 00 00 fb 9a 05 00 01 03 00 00 df 9b 05 00 2c 00 00 00 | "...h.......................,... |
| 4460 | e1 9e 05 00 bc 01 00 00 0e 9f 05 00 da 00 00 00 cb a0 05 00 8e 00 00 00 a6 a1 05 00 d0 00 00 00 | ................................ |
| 4480 | 35 a2 05 00 81 00 00 00 06 a3 05 00 b0 01 00 00 88 a3 05 00 94 00 00 00 39 a5 05 00 f7 00 00 00 | 5.......................9....... |
| 44a0 | ce a5 05 00 49 00 00 00 c6 a6 05 00 56 02 00 00 10 a7 05 00 85 00 00 00 67 a9 05 00 08 01 00 00 | ....I.......V...........g....... |
| 44c0 | ed a9 05 00 1d 02 00 00 f6 aa 05 00 c5 00 00 00 14 ad 05 00 5d 00 00 00 da ad 05 00 5b 00 00 00 | ....................].......[... |
| 44e0 | 38 ae 05 00 46 00 00 00 94 ae 05 00 5b 00 00 00 db ae 05 00 b4 00 00 00 37 af 05 00 33 00 00 00 | 8...F.......[...........7...3... |
| 4500 | ec af 05 00 60 00 00 00 20 b0 05 00 fe 00 00 00 81 b0 05 00 61 00 00 00 80 b1 05 00 9d 00 00 00 | ....`...............a........... |
| 4520 | e2 b1 05 00 23 01 00 00 80 b2 05 00 9c 00 00 00 a4 b3 05 00 13 01 00 00 41 b4 05 00 bb 00 00 00 | ....#...................A....... |
| 4540 | 55 b5 05 00 3d 00 00 00 11 b6 05 00 c2 00 00 00 4f b6 05 00 db 00 00 00 12 b7 05 00 d2 00 00 00 | U...=...........O............... |
| 4560 | ee b7 05 00 77 00 00 00 c1 b8 05 00 08 01 00 00 39 b9 05 00 96 00 00 00 42 ba 05 00 2e 01 00 00 | ....w...........9.......B....... |
| 4580 | d9 ba 05 00 68 00 00 00 08 bc 05 00 3c 00 00 00 71 bc 05 00 45 01 00 00 ae bc 05 00 c1 01 00 00 | ....h.......<...q...E........... |
| 45a0 | f4 bd 05 00 4e 00 00 00 b6 bf 05 00 62 00 00 00 05 c0 05 00 ae 00 00 00 68 c0 05 00 dd 00 00 00 | ....N.......b...........h....... |
| 45c0 | 17 c1 05 00 77 00 00 00 f5 c1 05 00 b7 00 00 00 6d c2 05 00 a2 00 00 00 25 c3 05 00 bb 00 00 00 | ....w...........m.......%....... |
| 45e0 | c8 c3 05 00 5c 00 00 00 84 c4 05 00 85 00 00 00 e1 c4 05 00 6a 01 00 00 67 c5 05 00 62 00 00 00 | ....\...............j...g...b... |
| 4600 | d2 c6 05 00 c3 00 00 00 35 c7 05 00 11 00 00 00 f9 c7 05 00 ba 00 00 00 0b c8 05 00 bb 00 00 00 | ........5....................... |
| 4620 | c6 c8 05 00 ba 00 00 00 82 c9 05 00 bb 00 00 00 3d ca 05 00 bc 00 00 00 f9 ca 05 00 bd 00 00 00 | ................=............... |
| 4640 | b6 cb 05 00 6e 00 00 00 74 cc 05 00 6f 00 00 00 e3 cc 05 00 a0 00 00 00 53 cd 05 00 bb 00 00 00 | ....n...t...o...........S....... |
| 4660 | f4 cd 05 00 bb 00 00 00 b0 ce 05 00 be 00 00 00 6c cf 05 00 6f 00 00 00 2b d0 05 00 a4 00 00 00 | ................l...o...+....... |
| 4680 | 9b d0 05 00 42 00 00 00 40 d1 05 00 d2 00 00 00 83 d1 05 00 1d 01 00 00 56 d2 05 00 9b 01 00 00 | ....B...@...............V....... |
| 46a0 | 74 d3 05 00 9b 01 00 00 10 d5 05 00 6b 00 00 00 ac d6 05 00 98 00 00 00 18 d7 05 00 4a 00 00 00 | t...........k...............J... |
| 46c0 | b1 d7 05 00 0a 00 00 00 fc d7 05 00 18 00 00 00 07 d8 05 00 3e 00 00 00 20 d8 05 00 67 01 00 00 | ....................>.......g... |
| 46e0 | 5f d8 05 00 0d 00 00 00 c7 d9 05 00 16 00 00 00 d5 d9 05 00 23 00 00 00 ec d9 05 00 0d 00 00 00 | _...................#........... |
| 4700 | 10 da 05 00 58 00 00 00 1e da 05 00 67 00 00 00 77 da 05 00 ef 00 00 00 df da 05 00 6e 00 00 00 | ....X.......g...w...........n... |
| 4720 | cf db 05 00 4c 00 00 00 3e dc 05 00 98 00 00 00 8b dc 05 00 0b 00 00 00 24 dd 05 00 0b 00 00 00 | ....L...>...............$....... |
| 4740 | 30 dd 05 00 4c 00 00 00 3c dd 05 00 2f 00 00 00 89 dd 05 00 17 00 00 00 b9 dd 05 00 10 00 00 00 | 0...L...<.../................... |
| 4760 | d1 dd 05 00 10 00 00 00 e2 dd 05 00 90 00 00 00 f3 dd 05 00 17 00 00 00 84 de 05 00 37 00 00 00 | ............................7... |
| 4780 | 9c de 05 00 36 00 00 00 d4 de 05 00 1b 00 00 00 0b df 05 00 2f 00 00 00 27 df 05 00 97 00 00 00 | ....6.............../...'....... |
| 47a0 | 57 df 05 00 10 00 00 00 ef df 05 00 0a 00 00 00 00 e0 05 00 18 00 00 00 0b e0 05 00 72 01 00 00 | W...........................r... |
| 47c0 | 24 e0 05 00 40 00 00 00 97 e1 05 00 7f 01 00 00 d8 e1 05 00 c0 00 00 00 58 e3 05 00 48 01 00 00 | $...@...................X...H... |
| 47e0 | 19 e4 05 00 54 01 00 00 62 e5 05 00 9e 01 00 00 b7 e6 05 00 14 00 00 00 56 e8 05 00 08 00 00 00 | ....T...b...............V....... |
| 4800 | 6b e8 05 00 77 00 00 00 74 e8 05 00 18 00 00 00 ec e8 05 00 31 00 00 00 05 e9 05 00 8f 01 00 00 | k...w...t...........1........... |
| 4820 | 37 e9 05 00 19 02 00 00 c7 ea 05 00 f7 00 00 00 e1 ec 05 00 e9 00 00 00 d9 ed 05 00 89 00 00 00 | 7............................... |
| 4840 | c3 ee 05 00 4c 00 00 00 4d ef 05 00 38 00 00 00 9a ef 05 00 8f 00 00 00 d3 ef 05 00 37 00 00 00 | ....L...M...8...............7... |
| 4860 | 63 f0 05 00 1b 00 00 00 9b f0 05 00 1c 00 00 00 b7 f0 05 00 25 01 00 00 d4 f0 05 00 cb 00 00 00 | c...................%........... |
| 4880 | fa f1 05 00 db 00 00 00 c6 f2 05 00 d7 00 00 00 a2 f3 05 00 a5 00 00 00 7a f4 05 00 93 00 00 00 | ........................z....... |
| 48a0 | 20 f5 05 00 e3 00 00 00 b4 f5 05 00 02 02 00 00 98 f6 05 00 c4 00 00 00 9b f8 05 00 a6 00 00 00 | ................................ |
| 48c0 | 60 f9 05 00 e6 00 00 00 07 fa 05 00 e5 00 00 00 ee fa 05 00 4f 00 00 00 d4 fb 05 00 a4 00 00 00 | `...................O........... |
| 48e0 | 24 fc 05 00 28 01 00 00 c9 fc 05 00 9d 00 00 00 f2 fd 05 00 3b 00 00 00 90 fe 05 00 4a 00 00 00 | $...(...............;.......J... |
| 4900 | cc fe 05 00 81 00 00 00 17 ff 05 00 68 00 00 00 99 ff 05 00 71 00 00 00 02 00 06 00 49 00 00 00 | ............h.......q.......I... |
| 4920 | 74 00 06 00 36 00 00 00 be 00 06 00 11 00 00 00 f5 00 06 00 06 00 00 00 07 01 06 00 8f 00 00 00 | t...6........................... |
| 4940 | 0e 01 06 00 0f 00 00 00 9e 01 06 00 18 00 00 00 ae 01 06 00 0e 00 00 00 c7 01 06 00 0e 00 00 00 | ................................ |
| 4960 | d6 01 06 00 0f 00 00 00 e5 01 06 00 0b 00 00 00 f5 01 06 00 6c 01 00 00 01 02 06 00 3a 01 00 00 | ....................l.......:... |
| 4980 | 6e 03 06 00 0f 00 00 00 a9 04 06 00 0f 00 00 00 b9 04 06 00 08 00 00 00 c9 04 06 00 07 00 00 00 | n............................... |
| 49a0 | d2 04 06 00 0c 00 00 00 da 04 06 00 04 00 00 00 e7 04 06 00 0f 00 00 00 ec 04 06 00 06 00 00 00 | ................................ |
| 49c0 | fc 04 06 00 ff 00 00 00 03 05 06 00 23 00 00 00 03 06 06 00 23 00 00 00 27 06 06 00 0e 00 00 00 | ............#.......#...'....... |
| 49e0 | 4b 06 06 00 07 00 00 00 5a 06 06 00 0a 00 00 00 62 06 06 00 04 00 00 00 6d 06 06 00 36 00 00 00 | K.......Z.......b.......m...6... |
| 4a00 | 72 06 06 00 b5 00 00 00 a9 06 06 00 04 00 00 00 5f 07 06 00 f5 00 00 00 64 07 06 00 19 00 00 00 | r..............._.......d....... |
| 4a20 | 5a 08 06 00 42 00 00 00 74 08 06 00 1b 00 00 00 b7 08 06 00 36 00 00 00 d3 08 06 00 50 00 00 00 | Z...B...t...........6.......P... |
| 4a40 | 0a 09 06 00 34 01 00 00 5b 09 06 00 3e 00 00 00 90 0a 06 00 29 00 00 00 cf 0a 06 00 0f 00 00 00 | ....4...[...>.......)........... |
| 4a60 | f9 0a 06 00 33 00 00 00 09 0b 06 00 14 02 00 00 3d 0b 06 00 15 02 00 00 52 0d 06 00 40 00 00 00 | ....3...........=.......R...@... |
| 4a80 | 68 0f 06 00 3d 00 00 00 a9 0f 06 00 07 01 00 00 e7 0f 06 00 23 00 00 00 ef 10 06 00 11 00 00 00 | h...=...............#........... |
| 4aa0 | 13 11 06 00 3f 00 00 00 25 11 06 00 20 00 00 00 65 11 06 00 6f 00 00 00 86 11 06 00 78 00 00 00 | ....?...%.......e...o.......x... |
| 4ac0 | f6 11 06 00 3d 00 00 00 6f 12 06 00 68 00 00 00 ad 12 06 00 6b 00 00 00 16 13 06 00 23 00 00 00 | ....=...o...h.......k.......#... |
| 4ae0 | 82 13 06 00 07 00 00 00 a6 13 06 00 7d 00 00 00 ae 13 06 00 06 00 00 00 2c 14 06 00 16 00 00 00 | ............}...........,....... |
| 4b00 | 33 14 06 00 36 00 00 00 4a 14 06 00 35 00 00 00 81 14 06 00 10 00 00 00 b7 14 06 00 69 02 00 00 | 3...6...J...5...............i... |
| 4b20 | c8 14 06 00 1b 00 00 00 32 17 06 00 52 01 00 00 4e 17 06 00 4a 00 00 00 a1 18 06 00 e8 01 00 00 | ........2...R...N...J........... |
| 4b40 | ec 18 06 00 9d 01 00 00 d5 1a 06 00 cb 02 00 00 73 1c 06 00 d7 00 00 00 3f 1f 06 00 1e 00 00 00 | ................s.......?....... |
| 4b60 | 17 20 06 00 2f 00 00 00 36 20 06 00 21 00 00 00 66 20 06 00 0c 00 00 00 88 20 06 00 0e 00 00 00 | ..../...6...!...f............... |
| 4b80 | 95 20 06 00 24 00 00 00 a4 20 06 00 0e 00 00 00 c9 20 06 00 59 00 00 00 d8 20 06 00 59 00 00 00 | ....$...............Y.......Y... |
| 4ba0 | 32 21 06 00 22 00 00 00 8c 21 06 00 05 00 00 00 af 21 06 00 20 00 00 00 b5 21 06 00 14 00 00 00 | 2!.."....!.......!.......!...... |
| 4bc0 | d6 21 06 00 3c 00 00 00 eb 21 06 00 42 00 00 00 28 22 06 00 1f 00 00 00 6b 22 06 00 2e 00 00 00 | .!..<....!..B...("......k"...... |
| 4be0 | 8b 22 06 00 10 00 00 00 ba 22 06 00 10 00 00 00 cb 22 06 00 12 00 00 00 dc 22 06 00 12 00 00 00 | ."......."......."......."...... |
| 4c00 | ef 22 06 00 2e 00 00 00 02 23 06 00 3c 00 00 00 31 23 06 00 3b 00 00 00 6e 23 06 00 0b 00 00 00 | .".......#..<...1#..;...n#...... |
| 4c20 | aa 23 06 00 38 00 00 00 b6 23 06 00 2c 00 00 00 ef 23 06 00 09 00 00 00 1c 24 06 00 09 00 00 00 | .#..8....#..,....#.......$...... |
| 4c40 | 26 24 06 00 1f 00 00 00 30 24 06 00 0e 00 00 00 50 24 06 00 63 00 00 00 5f 24 06 00 9c 00 00 00 | &$......0$......P$..c..._$...... |
| 4c60 | c3 24 06 00 ab 00 00 00 60 25 06 00 eb 00 00 00 0c 26 06 00 30 00 00 00 f8 26 06 00 2c 00 00 00 | .$......`%.......&..0....&..,... |
| 4c80 | 29 27 06 00 07 00 00 00 56 27 06 00 63 00 00 00 5e 27 06 00 0c 01 00 00 c2 27 06 00 0c 00 00 00 | )'......V'..c...^'.......'...... |
| 4ca0 | cf 28 06 00 0c 00 00 00 dc 28 06 00 15 00 00 00 e9 28 06 00 04 00 00 00 ff 28 06 00 19 00 00 00 | .(.......(.......(.......(...... |
| 4cc0 | 04 29 06 00 08 00 00 00 1e 29 06 00 8c 00 00 00 27 29 06 00 03 00 00 00 b4 29 06 00 0a 00 00 00 | .).......)......').......)...... |
| 4ce0 | b8 29 06 00 35 00 00 00 c3 29 06 00 13 00 00 00 f9 29 06 00 19 00 00 00 0d 2a 06 00 06 00 00 00 | .)..5....).......).......*...... |
| 4d00 | 27 2a 06 00 3b 02 00 00 2e 2a 06 00 5f 01 00 00 6a 2c 06 00 85 00 00 00 ca 2d 06 00 0e 00 00 00 | '*..;....*.._...j,.......-...... |
| 4d20 | 50 2e 06 00 0f 00 00 00 5f 2e 06 00 09 00 00 00 6f 2e 06 00 10 00 00 00 79 2e 06 00 35 00 00 00 | P......._.......o.......y...5... |
| 4d40 | 8a 2e 06 00 04 00 00 00 c0 2e 06 00 e8 01 00 00 c5 2e 06 00 5f 00 00 00 ae 30 06 00 61 00 00 00 | ...................._....0..a... |
| 4d60 | 0e 31 06 00 03 00 00 00 70 31 06 00 0b 00 00 00 74 31 06 00 4c 00 00 00 80 31 06 00 2f 00 00 00 | .1......p1......t1..L....1../... |
| 4d80 | cd 31 06 00 1d 00 00 00 fd 31 06 00 10 00 00 00 1b 32 06 00 3d 00 00 00 2c 32 06 00 4d 00 00 00 | .1.......1.......2..=...,2..M... |
| 4da0 | 6a 32 06 00 38 00 00 00 b8 32 06 00 10 00 00 00 f1 32 06 00 0f 00 00 00 02 33 06 00 3b 00 00 00 | j2..8....2.......2.......3..;... |
| 4dc0 | 12 33 06 00 12 00 00 00 4e 33 06 00 1d 00 00 00 61 33 06 00 44 00 00 00 7f 33 06 00 51 00 00 00 | .3......N3......a3..D....3..Q... |
| 4de0 | c4 33 06 00 41 00 00 00 16 34 06 00 6a 00 00 00 58 34 06 00 66 00 00 00 c3 34 06 00 1c 00 00 00 | .3..A....4..j...X4..f....4...... |
| 4e00 | 2a 35 06 00 8d 00 00 00 47 35 06 00 d1 00 00 00 d5 35 06 00 1d 00 00 00 a7 36 06 00 e3 00 00 00 | *5......G5.......5.......6...... |
| 4e20 | c5 36 06 00 e4 00 00 00 a9 37 06 00 24 00 00 00 8e 38 06 00 38 00 00 00 b3 38 06 00 52 00 00 00 | .6.......7..$....8..8....8..R... |
| 4e40 | ec 38 06 00 1f 00 00 00 3f 39 06 00 8d 00 00 00 5f 39 06 00 5a 00 00 00 ed 39 06 00 1a 00 00 00 | .8......?9......_9..Z....9...... |
| 4e60 | 48 3a 06 00 21 00 00 00 63 3a 06 00 1d 00 00 00 85 3a 06 00 22 00 00 00 a3 3a 06 00 70 00 00 00 | H:..!...c:.......:.."....:..p... |
| 4e80 | c6 3a 06 00 67 00 00 00 37 3b 06 00 72 00 00 00 9f 3b 06 00 69 00 00 00 12 3c 06 00 29 00 00 00 | .:..g...7;..r....;..i....<..)... |
| 4ea0 | 7c 3c 06 00 77 00 00 00 a6 3c 06 00 73 00 00 00 1e 3d 06 00 90 00 00 00 92 3d 06 00 91 00 00 00 | |<..w....<..s....=.......=...... |
| 4ec0 | 23 3e 06 00 53 00 00 00 b5 3e 06 00 b6 00 00 00 09 3f 06 00 b8 00 00 00 c0 3f 06 00 bd 00 00 00 | #>..S....>.......?.......?...... |
| 4ee0 | 79 40 06 00 5c 00 00 00 37 41 06 00 1e 00 00 00 94 41 06 00 15 00 00 00 b3 41 06 00 25 00 00 00 | y@..\...7A.......A.......A..%... |
| 4f00 | c9 41 06 00 91 00 00 00 ef 41 06 00 92 00 00 00 81 42 06 00 97 00 00 00 14 43 06 00 54 00 00 00 | .A.......A.......B.......C..T... |
| 4f20 | ac 43 06 00 b7 00 00 00 01 44 06 00 b9 00 00 00 b9 44 06 00 be 00 00 00 73 45 06 00 60 00 00 00 | .C.......D.......D......sE..`... |
| 4f40 | 32 46 06 00 24 00 00 00 93 46 06 00 cc 00 00 00 b8 46 06 00 25 00 00 00 85 47 06 00 95 00 00 00 | 2F..$....F.......F..%....G...... |
| 4f60 | ab 47 06 00 46 00 00 00 41 48 06 00 2f 00 00 00 88 48 06 00 9a 00 00 00 b8 48 06 00 61 00 00 00 | .G..F...AH../....H.......H..a... |
| 4f80 | 53 49 06 00 48 00 00 00 b5 49 06 00 5b 00 00 00 fe 49 06 00 1f 00 00 00 5a 4a 06 00 30 00 00 00 | SI..H....I..[....I......ZJ..0... |
| 4fa0 | 7a 4a 06 00 3b 00 00 00 ab 4a 06 00 25 00 00 00 e7 4a 06 00 28 00 00 00 0d 4b 06 00 2e 00 00 00 | zJ..;....J..%....J..(....K...... |
| 4fc0 | 36 4b 06 00 9e 00 00 00 65 4b 06 00 3e 00 00 00 04 4c 06 00 11 00 00 00 43 4c 06 00 19 00 00 00 | 6K......eK..>....L......CL...... |
| 4fe0 | 55 4c 06 00 7a 00 00 00 6f 4c 06 00 17 00 00 00 ea 4c 06 00 13 00 00 00 02 4d 06 00 7e 00 00 00 | UL..z...oL.......L.......M..~... |
| 5000 | 16 4d 06 00 81 00 00 00 95 4d 06 00 7d 00 00 00 17 4e 06 00 83 00 00 00 95 4e 06 00 11 00 00 00 | .M.......M..}....N.......N...... |
| 5020 | 19 4f 06 00 10 00 00 00 2b 4f 06 00 33 00 00 00 3c 4f 06 00 33 00 00 00 70 4f 06 00 33 00 00 00 | .O......+O..3...<O..3...pO..3... |
| 5040 | a4 4f 06 00 33 00 00 00 d8 4f 06 00 35 00 00 00 0c 50 06 00 6a 00 00 00 42 50 06 00 22 00 00 00 | .O..3....O..5....P..j...BP.."... |
| 5060 | ad 50 06 00 1e 01 00 00 d0 50 06 00 33 00 00 00 ef 51 06 00 dd 00 00 00 23 52 06 00 17 01 00 00 | .P.......P..3....Q......#R...... |
| 5080 | 01 53 06 00 49 00 00 00 19 54 06 00 06 00 00 00 63 54 06 00 11 00 00 00 6a 54 06 00 38 00 00 00 | .S..I....T......cT......jT..8... |
| 50a0 | 7c 54 06 00 28 00 00 00 b5 54 06 00 24 00 00 00 de 54 06 00 17 00 00 00 03 55 06 00 9d 00 00 00 | |T..(....T..$....T.......U...... |
| 50c0 | 1b 55 06 00 37 00 00 00 b9 55 06 00 8a 00 00 00 f1 55 06 00 89 00 00 00 7c 56 06 00 5c 00 00 00 | .U..7....U.......U......|V..\... |
| 50e0 | 06 57 06 00 cd 01 00 00 63 57 06 00 c2 00 00 00 31 59 06 00 65 00 00 00 f4 59 06 00 3f 00 00 00 | .W......cW......1Y..e....Y..?... |
| 5100 | 5a 5a 06 00 43 00 00 00 9a 5a 06 00 0a 00 00 00 de 5a 06 00 b3 00 00 00 e9 5a 06 00 8c 00 00 00 | ZZ..C....Z.......Z.......Z...... |
| 5120 | 9d 5b 06 00 e8 00 00 00 2a 5c 06 00 21 00 00 00 13 5d 06 00 05 00 00 00 35 5d 06 00 89 01 00 00 | .[......*\..!....]......5]...... |
| 5140 | 3b 5d 06 00 8d 01 00 00 c5 5e 06 00 1b 00 00 00 53 60 06 00 ae 01 00 00 6f 60 06 00 27 00 00 00 | ;].......^......S`......o`..'... |
| 5160 | 1e 62 06 00 09 00 00 00 46 62 06 00 fc 00 00 00 50 62 06 00 79 01 00 00 4d 63 06 00 0f 00 00 00 | .b......Fb......Pb..y...Mc...... |
| 5180 | c7 64 06 00 6c 00 00 00 d7 64 06 00 70 00 00 00 44 65 06 00 35 00 00 00 b5 65 06 00 d4 00 00 00 | .d..l....d..p...De..5....e...... |
| 51a0 | eb 65 06 00 d4 00 00 00 c0 66 06 00 f4 00 00 00 95 67 06 00 24 00 00 00 8a 68 06 00 6f 00 00 00 | .e.......f.......g..$....h..o... |
| 51c0 | af 68 06 00 10 00 00 00 1f 69 06 00 c6 00 00 00 30 69 06 00 30 00 00 00 f7 69 06 00 30 00 00 00 | .h.......i......0i..0....i..0... |
| 51e0 | 28 6a 06 00 a3 00 00 00 59 6a 06 00 a4 00 00 00 fd 6a 06 00 1b 00 00 00 a2 6b 06 00 25 00 00 00 | (j......Yj.......j.......k..%... |
| 5200 | be 6b 06 00 38 00 00 00 e4 6b 06 00 22 00 00 00 1d 6c 06 00 65 00 00 00 40 6c 06 00 80 00 00 00 | .k..8....k.."....l..e...@l...... |
| 5220 | a6 6c 06 00 74 00 00 00 27 6d 06 00 6a 00 00 00 9c 6d 06 00 a9 00 00 00 07 6e 06 00 01 00 00 00 | .l..t...'m..j....m.......n...... |
| 5240 | b1 6e 06 00 03 00 00 00 b3 6e 06 00 1f 00 00 00 b7 6e 06 00 11 00 00 00 d7 6e 06 00 10 00 00 00 | .n.......n.......n.......n...... |
| 5260 | e9 6e 06 00 37 01 00 00 fa 6e 06 00 0b 00 00 00 32 70 06 00 0e 00 00 00 3e 70 06 00 17 00 00 00 | .n..7....n......2p......>p...... |
| 5280 | 4d 70 06 00 22 00 00 00 65 70 06 00 05 00 00 00 88 70 06 00 05 00 00 00 8e 70 06 00 1b 00 00 00 | Mp.."...ep.......p.......p...... |
| 52a0 | 94 70 06 00 40 00 00 00 b0 70 06 00 1b 00 00 00 f1 70 06 00 0c 00 00 00 0d 71 06 00 eb 00 00 00 | .p..@....p.......p.......q...... |
| 52c0 | 1a 71 06 00 03 00 00 00 06 72 06 00 41 02 00 00 0a 72 06 00 ad 00 00 00 4c 74 06 00 1d 01 00 00 | .q.......r..A....r......Lt...... |
| 52e0 | fa 74 06 00 0d 00 00 00 18 76 06 00 91 00 00 00 26 76 06 00 0b 00 00 00 b8 76 06 00 34 00 00 00 | .t.......v......&v.......v..4... |
| 5300 | c4 76 06 00 25 00 00 00 f9 76 06 00 16 00 00 00 1f 77 06 00 40 00 00 00 36 77 06 00 23 00 00 00 | .v..%....v.......w..@...6w..#... |
| 5320 | 77 77 06 00 1f 00 00 00 9b 77 06 00 07 00 00 00 bb 77 06 00 0f 00 00 00 c3 77 06 00 4b 00 00 00 | ww.......w.......w.......w..K... |
| 5340 | d3 77 06 00 ab 01 00 00 1f 78 06 00 a3 00 00 00 cb 79 06 00 13 00 00 00 6f 7a 06 00 0f 00 00 00 | .w.......x.......y......oz...... |
| 5360 | 83 7a 06 00 1c 00 00 00 93 7a 06 00 18 00 00 00 b0 7a 06 00 23 00 00 00 c9 7a 06 00 0f 00 00 00 | .z.......z.......z..#....z...... |
| 5380 | ed 7a 06 00 10 00 00 00 fd 7a 06 00 0e 00 00 00 0e 7b 06 00 25 00 00 00 1d 7b 06 00 1a 00 00 00 | .z.......z.......{..%....{...... |
| 53a0 | 43 7b 06 00 1d 00 00 00 5e 7b 06 00 18 00 00 00 7c 7b 06 00 45 00 00 00 95 7b 06 00 16 00 00 00 | C{......^{......|{..E....{...... |
| 53c0 | db 7b 06 00 43 00 00 00 f2 7b 06 00 25 00 00 00 36 7c 06 00 38 00 00 00 5c 7c 06 00 36 00 00 00 | .{..C....{..%...6|..8...\|..6... |
| 53e0 | 95 7c 06 00 20 00 00 00 cc 7c 06 00 13 00 00 00 ed 7c 06 00 1e 00 00 00 01 7d 06 00 15 00 00 00 | .|.......|.......|.......}...... |
| 5400 | 20 7d 06 00 10 00 00 00 36 7d 06 00 ec 00 00 00 47 7d 06 00 eb 00 00 00 34 7e 06 00 ba 00 00 00 | .}......6}......G}......4~...... |
| 5420 | 20 7f 06 00 ba 00 00 00 db 7f 06 00 25 00 00 00 96 80 06 00 89 00 00 00 bc 80 06 00 13 00 00 00 | ............%................... |
| 5440 | 46 81 06 00 1a 00 00 00 5a 81 06 00 3a 00 00 00 75 81 06 00 81 01 00 00 b0 81 06 00 47 00 00 00 | F.......Z...:...u...........G... |
| 5460 | 32 83 06 00 74 00 00 00 7a 83 06 00 3a 00 00 00 ef 83 06 00 9d 00 00 00 2a 84 06 00 7b 01 00 00 | 2...t...z...:...........*...{... |
| 5480 | c8 84 06 00 61 00 00 00 44 86 06 00 6c 00 00 00 a6 86 06 00 06 00 00 00 13 87 06 00 47 00 00 00 | ....a...D...l...............G... |
| 54a0 | 1a 87 06 00 44 00 00 00 62 87 06 00 50 00 00 00 a7 87 06 00 4c 00 00 00 f8 87 06 00 37 00 00 00 | ....D...b...P.......L.......7... |
| 54c0 | 45 88 06 00 07 01 00 00 7d 88 06 00 57 00 00 00 85 89 06 00 31 00 00 00 dd 89 06 00 5b 00 00 00 | E.......}...W.......1.......[... |
| 54e0 | 0f 8a 06 00 1f 00 00 00 6b 8a 06 00 62 00 00 00 8b 8a 06 00 2b 00 00 00 ee 8a 06 00 04 00 00 00 | ........k...b.......+........... |
| 5500 | 1a 8b 06 00 16 00 00 00 1f 8b 06 00 37 00 00 00 36 8b 06 00 38 01 00 00 6e 8b 06 00 0d 00 00 00 | ............7...6...8...n....... |
| 5520 | a7 8c 06 00 0d 00 00 00 b5 8c 06 00 12 00 00 00 c3 8c 06 00 0a 00 00 00 d6 8c 06 00 4e 00 00 00 | ............................N... |
| 5540 | e1 8c 06 00 08 01 00 00 30 8d 06 00 24 01 00 00 39 8e 06 00 15 00 00 00 5e 8f 06 00 9c 01 00 00 | ........0...$...9.......^....... |
| 5560 | 74 8f 06 00 5c 00 00 00 11 91 06 00 a4 00 00 00 6e 91 06 00 16 00 00 00 13 92 06 00 8a 02 00 00 | t...\...........n............... |
| 5580 | 2a 92 06 00 1d 00 00 00 b5 94 06 00 0c 00 00 00 d3 94 06 00 1f 00 00 00 e0 94 06 00 43 00 00 00 | *...........................C... |
| 55a0 | 00 95 06 00 0d 00 00 00 44 95 06 00 c1 00 00 00 52 95 06 00 77 00 00 00 14 96 06 00 69 00 00 00 | ........D.......R...w.......i... |
| 55c0 | 8c 96 06 00 62 00 00 00 f6 96 06 00 76 00 00 00 59 97 06 00 0e 01 00 00 d0 97 06 00 cb 00 00 00 | ....b.......v...Y............... |
| 55e0 | df 98 06 00 19 01 00 00 ab 99 06 00 43 00 00 00 c5 9a 06 00 03 01 00 00 09 9b 06 00 ab 00 00 00 | ............C................... |
| 5600 | 0d 9c 06 00 7b 00 00 00 b9 9c 06 00 9a 00 00 00 35 9d 06 00 a6 00 00 00 d0 9d 06 00 6e 01 00 00 | ....{...........5...........n... |
| 5620 | 77 9e 06 00 17 01 00 00 e6 9f 06 00 6f 00 00 00 fe a0 06 00 7b 00 00 00 6e a1 06 00 7d 00 00 00 | w...........o.......{...n...}... |
| 5640 | ea a1 06 00 12 01 00 00 68 a2 06 00 e6 00 00 00 7b a3 06 00 b6 00 00 00 62 a4 06 00 3c 01 00 00 | ........h.......{.......b...<... |
| 5660 | 19 a5 06 00 b1 00 00 00 56 a6 06 00 fb 00 00 00 08 a7 06 00 20 00 00 00 04 a8 06 00 a0 01 00 00 | ........V....................... |
| 5680 | 25 a8 06 00 53 00 00 00 c6 a9 06 00 39 00 00 00 1a aa 06 00 28 00 00 00 54 aa 06 00 4a 00 00 00 | %...S.......9.......(...T...J... |
| 56a0 | 7d aa 06 00 3b 00 00 00 c8 aa 06 00 34 00 00 00 04 ab 06 00 52 00 00 00 39 ab 06 00 53 00 00 00 | }...;.......4.......R...9...S... |
| 56c0 | 8c ab 06 00 52 00 00 00 e0 ab 06 00 80 01 00 00 33 ac 06 00 36 00 00 00 b4 ad 06 00 23 00 00 00 | ....R...........3...6.......#... |
| 56e0 | eb ad 06 00 0b 00 00 00 0f ae 06 00 ad 00 00 00 1b ae 06 00 91 00 00 00 c9 ae 06 00 1b 02 00 00 | ................................ |
| 5700 | 5b af 06 00 f1 01 00 00 77 b1 06 00 e8 01 00 00 69 b3 06 00 0a 00 00 00 52 b5 06 00 1f 00 00 00 | [.......w.......i.......R....... |
| 5720 | 5d b5 06 00 71 00 00 00 7d b5 06 00 04 01 00 00 ef b5 06 00 07 00 00 00 f4 b6 06 00 df 00 00 00 | ]...q...}....................... |
| 5740 | fc b6 06 00 4a 01 00 00 dc b7 06 00 45 01 00 00 27 b9 06 00 22 00 00 00 6d ba 06 00 79 01 00 00 | ....J.......E...'..."...m...y... |
| 5760 | 90 ba 06 00 0c 00 00 00 0a bc 06 00 a6 00 00 00 17 bc 06 00 e9 00 00 00 be bc 06 00 83 00 00 00 | ................................ |
| 5780 | a8 bd 06 00 19 00 00 00 2c be 06 00 0f 00 00 00 46 be 06 00 09 00 00 00 56 be 06 00 12 00 00 00 | ........,.......F.......V....... |
| 57a0 | 60 be 06 00 0e 00 00 00 73 be 06 00 12 00 00 00 82 be 06 00 21 00 00 00 95 be 06 00 0e 00 00 00 | `.......s...........!........... |
| 57c0 | b7 be 06 00 17 00 00 00 c6 be 06 00 14 00 00 00 de be 06 00 19 00 00 00 f3 be 06 00 14 00 00 00 | ................................ |
| 57e0 | 0d bf 06 00 06 00 00 00 22 bf 06 00 13 00 00 00 29 bf 06 00 12 00 00 00 3d bf 06 00 0d 00 00 00 | ........".......).......=....... |
| 5800 | 50 bf 06 00 6a 00 00 00 5e bf 06 00 17 00 00 00 c9 bf 06 00 2e 00 00 00 e1 bf 06 00 2d 00 00 00 | P...j...^...................-... |
| 5820 | 10 c0 06 00 08 00 00 00 3e c0 06 00 16 00 00 00 47 c0 06 00 ea 00 00 00 5e c0 06 00 59 00 00 00 | ........>.......G.......^...Y... |
| 5840 | 49 c1 06 00 19 00 00 00 a3 c1 06 00 7e 00 00 00 bd c1 06 00 07 00 00 00 3c c2 06 00 2a 00 00 00 | I...........~...........<...*... |
| 5860 | 44 c2 06 00 4f 00 00 00 6f c2 06 00 17 00 00 00 bf c2 06 00 3b 00 00 00 d7 c2 06 00 60 00 00 00 | D...O...o...........;.......`... |
| 5880 | 13 c3 06 00 87 01 00 00 74 c3 06 00 6e 00 00 00 fc c4 06 00 24 00 00 00 6b c5 06 00 54 00 00 00 | ........t...n.......$...k...T... |
| 58a0 | 90 c5 06 00 a4 01 00 00 e5 c5 06 00 8f 01 00 00 8a c7 06 00 24 00 00 00 1a c9 06 00 1f 00 00 00 | ....................$........... |
| 58c0 | 3f c9 06 00 07 00 00 00 5f c9 06 00 1b 00 00 00 67 c9 06 00 08 00 00 00 83 c9 06 00 5c 00 00 00 | ?......._.......g...........\... |
| 58e0 | 8c c9 06 00 3c 00 00 00 e9 c9 06 00 3f 00 00 00 26 ca 06 00 08 00 00 00 66 ca 06 00 1b 00 00 00 | ....<.......?...&.......f....... |
| 5900 | 6f ca 06 00 bc 00 00 00 8b ca 06 00 57 00 00 00 48 cb 06 00 36 00 00 00 a0 cb 06 00 14 00 00 00 | o...........W...H...6........... |
| 5920 | d7 cb 06 00 3f 00 00 00 ec cb 06 00 3a 00 00 00 2c cc 06 00 75 00 00 00 67 cc 06 00 69 00 00 00 | ....?.......:...,...u...g...i... |
| 5940 | dd cc 06 00 32 01 00 00 47 cd 06 00 36 01 00 00 7a ce 06 00 0c 00 00 00 b1 cf 06 00 26 00 00 00 | ....2...G...6...z...........&... |
| 5960 | be cf 06 00 18 00 00 00 e5 cf 06 00 2e 00 00 00 fe cf 06 00 41 01 00 00 2d d0 06 00 03 00 00 00 | ....................A...-....... |
| 5980 | 6f d1 06 00 04 00 00 00 73 d1 06 00 14 00 00 00 78 d1 06 00 0c 00 00 00 8d d1 06 00 05 00 00 00 | o.......s.......x............... |
| 59a0 | 9a d1 06 00 0c 00 00 00 a0 d1 06 00 0d 00 00 00 ad d1 06 00 0b 00 00 00 bb d1 06 00 1c 00 00 00 | ................................ |
| 59c0 | c7 d1 06 00 14 00 00 00 e4 d1 06 00 ae 00 00 00 f9 d1 06 00 25 00 00 00 a8 d2 06 00 46 00 00 00 | ....................%.......F... |
| 59e0 | ce d2 06 00 31 01 00 00 15 d3 06 00 4f 00 00 00 47 d4 06 00 ca 00 00 00 97 d4 06 00 43 00 00 00 | ....1.......O...G...........C... |
| 5a00 | 62 d5 06 00 46 00 00 00 a6 d5 06 00 0b 00 00 00 ed d5 06 00 0b 00 00 00 f9 d5 06 00 19 00 00 00 | b...F........................... |
| 5a20 | 05 d6 06 00 0f 00 00 00 1f d6 06 00 ba 01 00 00 2f d6 06 00 6a 00 00 00 ea d7 06 00 13 00 00 00 | ................/...j........... |
| 5a40 | 55 d8 06 00 e4 00 00 00 69 d8 06 00 46 00 00 00 4e d9 06 00 88 01 00 00 95 d9 06 00 89 01 00 00 | U.......i...F...N............... |
| 5a60 | 1e db 06 00 38 00 00 00 a8 dc 06 00 0b 00 00 00 e1 dc 06 00 ce 00 00 00 ed dc 06 00 6c 00 00 00 | ....8.......................l... |
| 5a80 | bc dd 06 00 10 01 00 00 29 de 06 00 6e 00 00 00 3a df 06 00 26 00 00 00 a9 df 06 00 40 00 00 00 | ........)...n...:...&.......@... |
| 5aa0 | d0 df 06 00 a0 00 00 00 11 e0 06 00 b9 00 00 00 b2 e0 06 00 58 00 00 00 6c e1 06 00 64 00 00 00 | ....................X...l...d... |
| 5ac0 | c5 e1 06 00 39 00 00 00 2a e2 06 00 45 00 00 00 64 e2 06 00 4a 00 00 00 aa e2 06 00 4b 00 00 00 | ....9...*...E...d...J.......K... |
| 5ae0 | f5 e2 06 00 56 00 00 00 41 e3 06 00 57 00 00 00 98 e3 06 00 96 00 00 00 f0 e3 06 00 37 00 00 00 | ....V...A...W...............7... |
| 5b00 | 87 e4 06 00 8f 00 00 00 bf e4 06 00 06 00 00 00 4f e5 06 00 0f 00 00 00 56 e5 06 00 1b 00 00 00 | ................O.......V....... |
| 5b20 | 66 e5 06 00 33 00 00 00 82 e5 06 00 56 00 00 00 b6 e5 06 00 0b 00 00 00 0d e6 06 00 12 00 00 00 | f...3.......V................... |
| 5b40 | 19 e6 06 00 10 00 00 00 2c e6 06 00 38 00 00 00 3d e6 06 00 48 01 00 00 76 e6 06 00 15 00 00 00 | ........,...8...=...H...v....... |
| 5b60 | bf e7 06 00 19 00 00 00 d5 e7 06 00 33 00 00 00 ef e7 06 00 1f 00 00 00 23 e8 06 00 2e 00 00 00 | ............3...........#....... |
| 5b80 | 43 e8 06 00 93 01 00 00 72 e8 06 00 0f 00 00 00 06 ea 06 00 0a 00 00 00 16 ea 06 00 0a 00 00 00 | C.......r....................... |
| 5ba0 | 21 ea 06 00 63 00 00 00 2c ea 06 00 2f 00 00 00 90 ea 06 00 32 00 00 00 c0 ea 06 00 4c 00 00 00 | !...c...,.../.......2.......L... |
| 5bc0 | f3 ea 06 00 23 00 00 00 40 eb 06 00 64 00 00 00 64 eb 06 00 65 00 00 00 c9 eb 06 00 6e 00 00 00 | ....#...@...d...d...e.......n... |
| 5be0 | 2f ec 06 00 29 00 00 00 9e ec 06 00 dd 00 00 00 c8 ec 06 00 2d 00 00 00 a6 ed 06 00 11 00 00 00 | /...)...............-........... |
| 5c00 | d4 ed 06 00 11 00 00 00 e6 ed 06 00 12 00 00 00 f8 ed 06 00 0c 00 00 00 0b ee 06 00 30 00 00 00 | ............................0... |
| 5c20 | 18 ee 06 00 3f 00 00 00 49 ee 06 00 40 00 00 00 89 ee 06 00 04 01 00 00 ca ee 06 00 a9 00 00 00 | ....?...I...@................... |
| 5c40 | cf ef 06 00 18 00 00 00 79 f0 06 00 08 00 00 00 92 f0 06 00 46 00 00 00 9b f0 06 00 4d 00 00 00 | ........y...........F.......M... |
| 5c60 | e2 f0 06 00 1f 00 00 00 30 f1 06 00 4f 00 00 00 50 f1 06 00 3d 00 00 00 a0 f1 06 00 2e 00 00 00 | ........0...O...P...=........... |
| 5c80 | de f1 06 00 35 00 00 00 0d f2 06 00 08 00 00 00 43 f2 06 00 0e 00 00 00 4c f2 06 00 84 01 00 00 | ....5...........C.......L....... |
| 5ca0 | 5b f2 06 00 8c 00 00 00 e0 f3 06 00 fb 00 00 00 6d f4 06 00 11 00 00 00 69 f5 06 00 0e 01 00 00 | [...............m.......i....... |
| 5cc0 | 7b f5 06 00 3a 00 00 00 8a f6 06 00 09 00 00 00 c5 f6 06 00 38 00 00 00 cf f6 06 00 bd 00 00 00 | {...:...............8........... |
| 5ce0 | 08 f7 06 00 30 00 00 00 c6 f7 06 00 31 00 00 00 f7 f7 06 00 24 00 00 00 29 f8 06 00 28 00 00 00 | ....0.......1.......$...)...(... |
| 5d00 | 4e f8 06 00 23 00 00 00 77 f8 06 00 20 00 00 00 9b f8 06 00 21 00 00 00 bc f8 06 00 3a 00 00 00 | N...#...w...........!.......:... |
| 5d20 | de f8 06 00 1f 00 00 00 19 f9 06 00 32 00 00 00 39 f9 06 00 26 00 00 00 6c f9 06 00 13 00 00 00 | ............2...9...&...l....... |
| 5d40 | 93 f9 06 00 41 00 00 00 a7 f9 06 00 a0 00 00 00 e9 f9 06 00 3e 00 00 00 8a fa 06 00 1f 00 00 00 | ....A...............>........... |
| 5d60 | c9 fa 06 00 ce 00 00 00 e9 fa 06 00 4c 01 00 00 b8 fb 06 00 36 01 00 00 05 fd 06 00 21 00 00 00 | ............L.......6.......!... |
| 5d80 | 3c fe 06 00 1e 00 00 00 5e fe 06 00 0e 00 00 00 7d fe 06 00 03 00 00 00 8c fe 06 00 39 00 00 00 | <.......^.......}...........9... |
| 5da0 | 90 fe 06 00 2f 00 00 00 ca fe 06 00 b8 00 00 00 fa fe 06 00 24 00 00 00 b3 ff 06 00 49 00 00 00 | ..../...............$.......I... |
| 5dc0 | d8 ff 06 00 03 00 00 00 22 00 07 00 24 00 00 00 26 00 07 00 03 00 00 00 4b 00 07 00 06 00 00 00 | ........"...$...&.......K....... |
| 5de0 | 4f 00 07 00 0c 00 00 00 56 00 07 00 18 00 00 00 63 00 07 00 17 00 00 00 7c 00 07 00 15 00 00 00 | O.......V.......c.......|....... |
| 5e00 | 94 00 07 00 22 00 00 00 aa 00 07 00 4c 00 00 00 cd 00 07 00 45 00 00 00 1a 01 07 00 98 00 00 00 | ....".......L.......E........... |
| 5e20 | 60 01 07 00 15 00 00 00 f9 01 07 00 05 01 00 00 0f 02 07 00 73 00 00 00 15 03 07 00 8b 00 00 00 | `...................s........... |
| 5e40 | 89 03 07 00 04 00 00 00 15 04 07 00 b5 00 00 00 1a 04 07 00 53 01 00 00 d0 04 07 00 20 00 00 00 | ....................S........... |
| 5e60 | 24 06 07 00 03 00 00 00 45 06 07 00 21 00 00 00 49 06 07 00 21 00 00 00 6b 06 07 00 04 00 00 00 | $.......E...!...I...!...k....... |
| 5e80 | 8d 06 07 00 15 00 00 00 92 06 07 00 e1 00 00 00 a8 06 07 00 08 00 00 00 8a 07 07 00 0d 00 00 00 | ................................ |
| 5ea0 | 93 07 07 00 c3 00 00 00 a1 07 07 00 20 00 00 00 65 08 07 00 21 00 00 00 86 08 07 00 0c 00 00 00 | ................e...!........... |
| 5ec0 | a8 08 07 00 0a 00 00 00 b5 08 07 00 47 00 00 00 c0 08 07 00 44 00 00 00 08 09 07 00 45 00 00 00 | ............G.......D.......E... |
| 5ee0 | 4d 09 07 00 72 00 00 00 93 09 07 00 dc 00 00 00 06 0a 07 00 0e 00 00 00 e3 0a 07 00 4f 00 00 00 | M...r.......................O... |
| 5f00 | f2 0a 07 00 6a 00 00 00 42 0b 07 00 50 00 00 00 ad 0b 07 00 0e 00 00 00 fe 0b 07 00 0b 00 00 00 | ....j...B...P................... |
| 5f20 | 0d 0c 07 00 1f 00 00 00 19 0c 07 00 41 00 00 00 39 0c 07 00 13 04 00 00 7b 0c 07 00 87 00 00 00 | ............A...9.......{....... |
| 5f40 | 8f 10 07 00 25 00 00 00 17 11 07 00 0c 00 00 00 3d 11 07 00 16 00 00 00 4a 11 07 00 2f 01 00 00 | ....%...........=.......J.../... |
| 5f60 | 61 11 07 00 96 00 00 00 91 12 07 00 1e 00 00 00 28 13 07 00 1c 00 00 00 47 13 07 00 ad 01 00 00 | a...............(.......G....... |
| 5f80 | 64 13 07 00 45 00 00 00 12 15 07 00 16 00 00 00 58 15 07 00 35 00 00 00 6f 15 07 00 3b 00 00 00 | d...E...........X...5...o...;... |
| 5fa0 | a5 15 07 00 4a 00 00 00 e1 15 07 00 54 00 00 00 2c 16 07 00 73 00 00 00 81 16 07 00 4c 00 00 00 | ....J.......T...,...s.......L... |
| 5fc0 | f5 16 07 00 0d 00 00 00 42 17 07 00 23 00 00 00 50 17 07 00 23 00 00 00 74 17 07 00 21 00 00 00 | ........B...#...P...#...t...!... |
| 5fe0 | 98 17 07 00 15 00 00 00 ba 17 07 00 0b 00 00 00 d0 17 07 00 10 00 00 00 dc 17 07 00 0f 00 00 00 | ................................ |
| 6000 | ed 17 07 00 0a 00 00 00 fd 17 07 00 1e 00 00 00 08 18 07 00 0b 00 00 00 27 18 07 00 1f 00 00 00 | ........................'....... |
| 6020 | 33 18 07 00 15 00 00 00 53 18 07 00 48 00 00 00 69 18 07 00 4e 00 00 00 b2 18 07 00 0b 00 00 00 | 3.......S...H...i...N........... |
| 6040 | 01 19 07 00 3d 00 00 00 0d 19 07 00 25 00 00 00 4b 19 07 00 29 00 00 00 71 19 07 00 11 00 00 00 | ....=.......%...K...)...q....... |
| 6060 | 9b 19 07 00 76 00 00 00 ad 19 07 00 43 00 00 00 24 1a 07 00 6b 00 00 00 68 1a 07 00 0c 00 00 00 | ....v.......C...$...k...h....... |
| 6080 | d4 1a 07 00 20 00 00 00 e1 1a 07 00 0d 00 00 00 02 1b 07 00 63 00 00 00 10 1b 07 00 05 00 00 00 | ....................c........... |
| 60a0 | 74 1b 07 00 0d 00 00 00 7a 1b 07 00 6c 00 00 00 88 1b 07 00 8a 00 00 00 f5 1b 07 00 0e 00 00 00 | t.......z...l................... |
| 60c0 | 80 1c 07 00 81 00 00 00 8f 1c 07 00 07 00 00 00 11 1d 07 00 1a 00 00 00 19 1d 07 00 27 00 00 00 | ............................'... |
| 60e0 | 34 1d 07 00 19 00 00 00 5c 1d 07 00 1e 00 00 00 76 1d 07 00 17 00 00 00 95 1d 07 00 1f 00 00 00 | 4.......\.......v............... |
| 6100 | ad 1d 07 00 40 00 00 00 cd 1d 07 00 6d 00 00 00 0e 1e 07 00 58 00 00 00 7c 1e 07 00 e4 00 00 00 | ....@.......m.......X...|....... |
| 6120 | d5 1e 07 00 0c 00 00 00 ba 1f 07 00 0b 00 00 00 c7 1f 07 00 10 00 00 00 d3 1f 07 00 3d 00 00 00 | ............................=... |
| 6140 | e4 1f 07 00 39 00 00 00 22 20 07 00 40 00 00 00 5c 20 07 00 0d 00 00 00 9d 20 07 00 0b 00 00 00 | ....9..."...@...\............... |
| 6160 | ab 20 07 00 1f 00 00 00 b7 20 07 00 0f 00 00 00 d7 20 07 00 0f 00 00 00 e7 20 07 00 1d 00 00 00 | ................................ |
| 6180 | f7 20 07 00 09 00 00 00 15 21 07 00 10 00 00 00 1f 21 07 00 14 00 00 00 30 21 07 00 1d 00 00 00 | .........!.......!......0!...... |
| 61a0 | 45 21 07 00 0f 00 00 00 63 21 07 00 1d 00 00 00 73 21 07 00 17 00 00 00 91 21 07 00 d0 01 00 00 | E!......c!......s!.......!...... |
| 61c0 | a9 21 07 00 2e 00 00 00 7a 23 07 00 7d 00 00 00 a9 23 07 00 c1 00 00 00 27 24 07 00 0c 00 00 00 | .!......z#..}....#......'$...... |
| 61e0 | e9 24 07 00 13 00 00 00 f6 24 07 00 15 00 00 00 0a 25 07 00 0f 00 00 00 20 25 07 00 67 00 00 00 | .$.......$.......%.......%..g... |
| 6200 | 30 25 07 00 56 00 00 00 98 25 07 00 11 00 00 00 ef 25 07 00 c1 00 00 00 01 26 07 00 59 00 00 00 | 0%..V....%.......%.......&..Y... |
| 6220 | c3 26 07 00 c6 00 00 00 1d 27 07 00 07 00 00 00 e4 27 07 00 07 00 00 00 ec 27 07 00 35 00 00 00 | .&.......'.......'.......'..5... |
| 6240 | f4 27 07 00 69 00 00 00 2a 28 07 00 6c 00 00 00 94 28 07 00 2b 00 00 00 01 29 07 00 7c 00 00 00 | .'..i...*(..l....(..+....)..|... |
| 6260 | 2d 29 07 00 69 00 00 00 aa 29 07 00 0b 00 00 00 14 2a 07 00 09 00 00 00 20 2a 07 00 11 00 00 00 | -)..i....).......*.......*...... |
| 6280 | 2a 2a 07 00 05 00 00 00 3c 2a 07 00 ad 00 00 00 42 2a 07 00 4c 00 00 00 f0 2a 07 00 12 00 00 00 | **......<*......B*..L....*...... |
| 62a0 | 3d 2b 07 00 04 00 00 00 50 2b 07 00 06 00 00 00 55 2b 07 00 06 00 00 00 5c 2b 07 00 04 00 00 00 | =+......P+......U+......\+...... |
| 62c0 | 63 2b 07 00 0f 00 00 00 68 2b 07 00 16 00 00 00 78 2b 07 00 d7 00 00 00 8f 2b 07 00 fd 00 00 00 | c+......h+......x+.......+...... |
| 62e0 | 67 2c 07 00 65 01 00 00 65 2d 07 00 06 00 00 00 cb 2e 07 00 f4 00 00 00 d2 2e 07 00 00 01 00 00 | g,..e...e-...................... |
| 6300 | c7 2f 07 00 06 00 00 00 c8 30 07 00 0b 02 00 00 cf 30 07 00 e3 01 00 00 db 32 07 00 e2 01 00 00 | ./.......0.......0.......2...... |
| 6320 | bf 34 07 00 03 00 00 00 a2 36 07 00 27 00 00 00 a6 36 07 00 18 00 00 00 ce 36 07 00 0a 00 00 00 | .4.......6..'....6.......6...... |
| 6340 | e7 36 07 00 7b 01 00 00 f2 36 07 00 40 00 00 00 6e 38 07 00 a9 01 00 00 af 38 07 00 30 00 00 00 | .6..{....6..@...n8.......8..0... |
| 6360 | 59 3a 07 00 0c 00 00 00 8a 3a 07 00 10 00 00 00 97 3a 07 00 1b 00 00 00 a8 3a 07 00 2e 00 00 00 | Y:.......:.......:.......:...... |
| 6380 | c4 3a 07 00 0b 00 00 00 f3 3a 07 00 13 00 00 00 ff 3a 07 00 0b 00 00 00 13 3b 07 00 2e 00 00 00 | .:.......:.......:.......;...... |
| 63a0 | 1f 3b 07 00 46 00 00 00 4e 3b 07 00 0d 00 00 00 95 3b 07 00 0b 00 00 00 a3 3b 07 00 58 01 00 00 | .;..F...N;.......;.......;..X... |
| 63c0 | af 3b 07 00 88 00 00 00 08 3d 07 00 62 00 00 00 91 3d 07 00 45 00 00 00 f4 3d 07 00 29 00 00 00 | .;.......=..b....=..E....=..)... |
| 63e0 | 3a 3e 07 00 96 00 00 00 64 3e 07 00 10 00 00 00 fb 3e 07 00 2f 00 00 00 0c 3f 07 00 33 00 00 00 | :>......d>.......>../....?..3... |
| 6400 | 3c 3f 07 00 43 00 00 00 70 3f 07 00 37 00 00 00 b4 3f 07 00 49 00 00 00 ec 3f 07 00 3b 00 00 00 | <?..C...p?..7....?..I....?..;... |
| 6420 | 36 40 07 00 3e 00 00 00 72 40 07 00 4a 00 00 00 b1 40 07 00 4d 00 00 00 fc 40 07 00 09 00 00 00 | 6@..>...r@..J....@..M....@...... |
| 6440 | 4a 41 07 00 a8 00 00 00 54 41 07 00 6b 00 00 00 fd 41 07 00 3a 00 00 00 69 42 07 00 08 00 00 00 | JA......TA..k....A..:...iB...... |
| 6460 | a4 42 07 00 20 00 00 00 ad 42 07 00 28 00 00 00 ce 42 07 00 4b 00 00 00 f7 42 07 00 0f 00 00 00 | .B.......B..(....B..K....B...... |
| 6480 | 43 43 07 00 26 01 00 00 53 43 07 00 5b 01 00 00 7a 44 07 00 87 00 00 00 d6 45 07 00 86 00 00 00 | CC..&...SC..[...zD.......E...... |
| 64a0 | 5e 46 07 00 ce 01 00 00 e5 46 07 00 18 00 00 00 b4 48 07 00 51 00 00 00 cd 48 07 00 f2 00 00 00 | ^F.......F.......H..Q....H...... |
| 64c0 | 1f 49 07 00 0e 00 00 00 12 4a 07 00 34 00 00 00 21 4a 07 00 36 00 00 00 56 4a 07 00 bd 00 00 00 | .I.......J..4...!J..6...VJ...... |
| 64e0 | 8d 4a 07 00 7e 00 00 00 4b 4b 07 00 82 00 00 00 ca 4b 07 00 33 00 00 00 4d 4c 07 00 0e 00 00 00 | .J..~...KK.......K..3...ML...... |
| 6500 | 81 4c 07 00 dd 00 00 00 90 4c 07 00 06 00 00 00 6e 4d 07 00 12 00 00 00 75 4d 07 00 14 00 00 00 | .L.......L......nM......uM...... |
| 6520 | 88 4d 07 00 0b 00 00 00 9d 4d 07 00 0c 00 00 00 a9 4d 07 00 0d 00 00 00 b6 4d 07 00 14 00 00 00 | .M.......M.......M.......M...... |
| 6540 | c4 4d 07 00 42 00 00 00 d9 4d 07 00 07 00 00 00 1c 4e 07 00 07 00 00 00 24 4e 07 00 c7 00 00 00 | .M..B....M.......N......$N...... |
| 6560 | 2c 4e 07 00 29 00 00 00 f4 4e 07 00 28 00 00 00 1e 4f 07 00 23 00 00 00 47 4f 07 00 14 00 00 00 | ,N..)....N..(....O..#...GO...... |
| 6580 | 6b 4f 07 00 20 00 00 00 80 4f 07 00 18 00 00 00 a1 4f 07 00 28 00 00 00 ba 4f 07 00 1d 00 00 00 | kO.......O.......O..(....O...... |
| 65a0 | e3 4f 07 00 29 00 00 00 01 50 07 00 1e 00 00 00 2b 50 07 00 30 00 00 00 4a 50 07 00 4b 00 00 00 | .O..)....P......+P..0...JP..K... |
| 65c0 | 7b 50 07 00 6e 00 00 00 c7 50 07 00 2d 00 00 00 36 51 07 00 2d 00 00 00 64 51 07 00 35 00 00 00 | {P..n....P..-...6Q..-...dQ..5... |
| 65e0 | 92 51 07 00 16 00 00 00 c8 51 07 00 1c 00 00 00 df 51 07 00 1b 00 00 00 fc 51 07 00 21 00 00 00 | .Q.......Q.......Q.......Q..!... |
| 6600 | 18 52 07 00 41 00 00 00 3a 52 07 00 35 00 00 00 7c 52 07 00 97 00 00 00 b2 52 07 00 4e 00 00 00 | .R..A...:R..5...|R.......R..N... |
| 6620 | 4a 53 07 00 1d 00 00 00 99 53 07 00 4c 00 00 00 b7 53 07 00 17 00 00 00 04 54 07 00 1f 00 00 00 | JS.......S..L....S.......T...... |
| 6640 | 1c 54 07 00 21 00 00 00 3c 54 07 00 1b 00 00 00 5e 54 07 00 41 00 00 00 7a 54 07 00 24 00 00 00 | .T..!...<T......^T..A...zT..$... |
| 6660 | bc 54 07 00 31 00 00 00 e1 54 07 00 47 00 00 00 13 55 07 00 4f 00 00 00 5b 55 07 00 45 00 00 00 | .T..1....T..G....U..O...[U..E... |
| 6680 | ab 55 07 00 7c 00 00 00 f1 55 07 00 26 00 00 00 6e 56 07 00 43 00 00 00 95 56 07 00 4c 00 00 00 | .U..|....U..&...nV..C....V..L... |
| 66a0 | d9 56 07 00 3c 00 00 00 26 57 07 00 39 00 00 00 63 57 07 00 4a 00 00 00 9d 57 07 00 82 00 00 00 | .V..<...&W..9...cW..J....W...... |
| 66c0 | e8 57 07 00 5a 00 00 00 6b 58 07 00 1a 00 00 00 c6 58 07 00 2a 00 00 00 e1 58 07 00 1c 00 00 00 | .W..Z...kX.......X..*....X...... |
| 66e0 | 0c 59 07 00 37 00 00 00 29 59 07 00 49 00 00 00 61 59 07 00 3f 00 00 00 ab 59 07 00 47 00 00 00 | .Y..7...)Y..I...aY..?....Y..G... |
| 6700 | eb 59 07 00 42 00 00 00 33 5a 07 00 28 00 00 00 76 5a 07 00 2a 00 00 00 9f 5a 07 00 2d 00 00 00 | .Y..B...3Z..(...vZ..*....Z..-... |
| 6720 | ca 5a 07 00 30 00 00 00 f8 5a 07 00 2d 00 00 00 29 5b 07 00 2c 00 00 00 57 5b 07 00 19 00 00 00 | .Z..0....Z..-...)[..,...W[...... |
| 6740 | 84 5b 07 00 29 00 00 00 9e 5b 07 00 30 00 00 00 c8 5b 07 00 24 00 00 00 f9 5b 07 00 2b 00 00 00 | .[..)....[..0....[..$....[..+... |
| 6760 | 1e 5c 07 00 29 00 00 00 4a 5c 07 00 35 00 00 00 74 5c 07 00 2a 00 00 00 aa 5c 07 00 10 00 00 00 | .\..)...J\..5...t\..*....\...... |
| 6780 | d5 5c 07 00 2b 00 00 00 e6 5c 07 00 55 00 00 00 12 5d 07 00 3c 00 00 00 68 5d 07 00 90 00 00 00 | .\..+....\..U....]..<...h]...... |
| 67a0 | a5 5d 07 00 1a 00 00 00 36 5e 07 00 72 00 00 00 51 5e 07 00 14 00 00 00 c4 5e 07 00 4c 00 00 00 | .]......6^..r...Q^.......^..L... |
| 67c0 | d9 5e 07 00 1f 00 00 00 26 5f 07 00 71 00 00 00 46 5f 07 00 6b 00 00 00 b8 5f 07 00 5b 00 00 00 | .^......&_..q...F_..k...._..[... |
| 67e0 | 24 60 07 00 2c 00 00 00 80 60 07 00 4e 00 00 00 ad 60 07 00 2a 00 00 00 fc 60 07 00 a0 00 00 00 | $`..,....`..N....`..*....`...... |
| 6800 | 27 61 07 00 65 00 00 00 c8 61 07 00 27 01 00 00 2e 62 07 00 d0 00 00 00 56 63 07 00 d8 00 00 00 | 'a..e....a..'....b......Vc...... |
| 6820 | 27 64 07 00 3f 00 00 00 00 65 07 00 38 00 00 00 40 65 07 00 46 00 00 00 79 65 07 00 40 00 00 00 | 'd..?....e..8...@e..F...ye..@... |
| 6840 | c0 65 07 00 53 00 00 00 01 66 07 00 45 00 00 00 55 66 07 00 26 01 00 00 9b 66 07 00 f1 00 00 00 | .e..S....f..E...Uf..&....f...... |
| 6860 | c2 67 07 00 48 00 00 00 b4 68 07 00 49 00 00 00 fd 68 07 00 d0 00 00 00 47 69 07 00 24 00 00 00 | .g..H....h..I....h......Gi..$... |
| 6880 | 18 6a 07 00 16 00 00 00 3d 6a 07 00 60 00 00 00 54 6a 07 00 50 00 00 00 b5 6a 07 00 27 00 00 00 | .j......=j..`...Tj..P....j..'... |
| 68a0 | 06 6b 07 00 18 00 00 00 2e 6b 07 00 49 00 00 00 47 6b 07 00 52 00 00 00 91 6b 07 00 58 00 00 00 | .k.......k..I...Gk..R....k..X... |
| 68c0 | e4 6b 07 00 3d 00 00 00 3d 6c 07 00 25 00 00 00 7b 6c 07 00 26 00 00 00 a1 6c 07 00 2a 00 00 00 | .k..=...=l..%...{l..&....l..*... |
| 68e0 | c8 6c 07 00 23 00 00 00 f3 6c 07 00 47 00 00 00 17 6d 07 00 a4 00 00 00 5f 6d 07 00 aa 00 00 00 | .l..#....l..G....m......_m...... |
| 6900 | 04 6e 07 00 55 00 00 00 af 6e 07 00 f4 00 00 00 05 6f 07 00 44 00 00 00 fa 6f 07 00 61 00 00 00 | .n..U....n.......o..D....o..a... |
| 6920 | 3f 70 07 00 54 00 00 00 a1 70 07 00 3c 00 00 00 f6 70 07 00 6d 00 00 00 33 71 07 00 6a 00 00 00 | ?p..T....p..<....p..m...3q..j... |
| 6940 | a1 71 07 00 43 00 00 00 0c 72 07 00 5c 00 00 00 50 72 07 00 34 00 00 00 ad 72 07 00 a4 00 00 00 | .q..C....r..\...Pr..4....r...... |
| 6960 | e2 72 07 00 a8 00 00 00 87 73 07 00 e8 00 00 00 30 74 07 00 ec 00 00 00 19 75 07 00 3e 00 00 00 | .r.......s......0t.......u..>... |
| 6980 | 06 76 07 00 39 00 00 00 45 76 07 00 21 00 00 00 7f 76 07 00 2c 00 00 00 a1 76 07 00 34 00 00 00 | .v..9...Ev..!....v..,....v..4... |
| 69a0 | ce 76 07 00 23 00 00 00 03 77 07 00 55 00 00 00 27 77 07 00 56 00 00 00 7d 77 07 00 35 00 00 00 | .v..#....w..U...'w..V...}w..5... |
| 69c0 | d4 77 07 00 2a 00 00 00 0a 78 07 00 66 00 00 00 35 78 07 00 7b 00 00 00 9c 78 07 00 41 00 00 00 | .w..*....x..f...5x..{....x..A... |
| 69e0 | 18 79 07 00 42 00 00 00 5a 79 07 00 41 00 00 00 9d 79 07 00 56 00 00 00 df 79 07 00 35 00 00 00 | .y..B...Zy..A....y..V....y..5... |
| 6a00 | 36 7a 07 00 2b 00 00 00 6c 7a 07 00 2f 00 00 00 98 7a 07 00 22 00 00 00 c8 7a 07 00 44 00 00 00 | 6z..+...lz../....z.."....z..D... |
| 6a20 | eb 7a 07 00 63 00 00 00 30 7b 07 00 56 00 00 00 94 7b 07 00 4d 00 00 00 eb 7b 07 00 34 00 00 00 | .z..c...0{..V....{..M....{..4... |
| 6a40 | 39 7c 07 00 3f 00 00 00 6e 7c 07 00 79 01 00 00 ae 7c 07 00 df 00 00 00 28 7e 07 00 f0 00 00 00 | 9|..?...n|..y....|......(~...... |
| 6a60 | 08 7f 07 00 df 00 00 00 f9 7f 07 00 54 00 00 00 d9 80 07 00 32 00 00 00 2e 81 07 00 0c 01 00 00 | ............T.......2........... |
| 6a80 | 61 81 07 00 59 00 00 00 6e 82 07 00 4e 00 00 00 c8 82 07 00 26 01 00 00 17 83 07 00 4a 00 00 00 | a...Y...n...N.......&.......J... |
| 6aa0 | 3e 84 07 00 1a 00 00 00 89 84 07 00 2f 00 00 00 a4 84 07 00 a4 00 00 00 d4 84 07 00 3a 00 00 00 | >.........../...............:... |
| 6ac0 | 79 85 07 00 81 00 00 00 b4 85 07 00 3a 00 00 00 36 86 07 00 2a 00 00 00 71 86 07 00 1d 01 00 00 | y...........:...6...*...q....... |
| 6ae0 | 9c 86 07 00 2d 00 00 00 ba 87 07 00 21 00 00 00 e8 87 07 00 26 00 00 00 0a 88 07 00 af 00 00 00 | ....-.......!.......&........... |
| 6b00 | 31 88 07 00 63 00 00 00 e1 88 07 00 ce 00 00 00 45 89 07 00 53 00 00 00 14 8a 07 00 44 00 00 00 | 1...c...........E...S.......D... |
| 6b20 | 68 8a 07 00 33 00 00 00 ad 8a 07 00 45 00 00 00 e1 8a 07 00 34 00 00 00 27 8b 07 00 7a 00 00 00 | h...3.......E.......4...'...z... |
| 6b40 | 5c 8b 07 00 32 00 00 00 d7 8b 07 00 27 00 00 00 0a 8c 07 00 46 00 00 00 32 8c 07 00 2e 00 00 00 | \...2.......'.......F...2....... |
| 6b60 | 79 8c 07 00 44 00 00 00 a8 8c 07 00 60 00 00 00 ed 8c 07 00 27 00 00 00 4e 8d 07 00 5b 00 00 00 | y...D.......`.......'...N...[... |
| 6b80 | 76 8d 07 00 78 00 00 00 d2 8d 07 00 5f 00 00 00 4b 8e 07 00 5b 00 00 00 ab 8e 07 00 1b 00 00 00 | v...x......._...K...[........... |
| 6ba0 | 07 8f 07 00 0c 00 00 00 23 8f 07 00 b4 01 00 00 30 8f 07 00 11 00 00 00 e5 90 07 00 12 00 00 00 | ........#.......0............... |
| 6bc0 | f7 90 07 00 ed 00 00 00 0a 91 07 00 17 00 00 00 f8 91 07 00 18 00 00 00 10 92 07 00 12 00 00 00 | ................................ |
| 6be0 | 29 92 07 00 35 00 00 00 3c 92 07 00 26 00 00 00 72 92 07 00 2c 00 00 00 99 92 07 00 75 00 00 00 | )...5...<...&...r...,.......u... |
| 6c00 | c6 92 07 00 41 00 00 00 3c 93 07 00 41 00 00 00 7e 93 07 00 6f 00 00 00 c0 93 07 00 9f 00 00 00 | ....A...<...A...~...o........... |
| 6c20 | 30 94 07 00 a1 00 00 00 d0 94 07 00 7f 00 00 00 72 95 07 00 77 00 00 00 f2 95 07 00 08 00 00 00 | 0...............r...w........... |
| 6c40 | 6a 96 07 00 0e 00 00 00 73 96 07 00 06 00 00 00 82 96 07 00 15 00 00 00 89 96 07 00 27 00 00 00 | j.......s...................'... |
| 6c60 | 9f 96 07 00 ee 00 00 00 c7 96 07 00 eb 00 00 00 b6 97 07 00 04 00 00 00 a2 98 07 00 16 00 00 00 | ................................ |
| 6c80 | a7 98 07 00 20 00 00 00 be 98 07 00 22 00 00 00 df 98 07 00 11 00 00 00 02 99 07 00 3a 00 00 00 | ............"...............:... |
| 6ca0 | 14 99 07 00 20 00 00 00 4f 99 07 00 14 00 00 00 70 99 07 00 55 00 00 00 85 99 07 00 28 00 00 00 | ........O.......p...U.......(... |
| 6cc0 | db 99 07 00 88 00 00 00 04 9a 07 00 16 00 00 00 8d 9a 07 00 16 00 00 00 a4 9a 07 00 18 00 00 00 | ................................ |
| 6ce0 | bb 9a 07 00 26 00 00 00 d4 9a 07 00 1a 00 00 00 fb 9a 07 00 27 00 00 00 16 9b 07 00 23 00 00 00 | ....&...............'.......#... |
| 6d00 | 3e 9b 07 00 17 00 00 00 62 9b 07 00 21 00 00 00 7a 9b 07 00 5d 00 00 00 9c 9b 07 00 28 00 00 00 | >.......b...!...z...].......(... |
| 6d20 | fa 9b 07 00 49 00 00 00 23 9c 07 00 44 00 00 00 6d 9c 07 00 25 00 00 00 b2 9c 07 00 21 00 00 00 | ....I...#...D...m...%.......!... |
| 6d40 | d8 9c 07 00 12 00 00 00 fa 9c 07 00 30 00 00 00 0d 9d 07 00 2f 00 00 00 3e 9d 07 00 2f 00 00 00 | ............0......./...>.../... |
| 6d60 | 6e 9d 07 00 4d 00 00 00 9e 9d 07 00 56 00 00 00 ec 9d 07 00 34 00 00 00 43 9e 07 00 2f 00 00 00 | n...M.......V.......4...C.../... |
| 6d80 | 78 9e 07 00 3a 00 00 00 a8 9e 07 00 32 00 00 00 e3 9e 07 00 3f 00 00 00 16 9f 07 00 a2 00 00 00 | x...:.......2.......?........... |
| 6da0 | 56 9f 07 00 21 00 00 00 f9 9f 07 00 0d 00 00 00 1b a0 07 00 4a 00 00 00 29 a0 07 00 2e 00 00 00 | V...!...............J...)....... |
| 6dc0 | 74 a0 07 00 2e 00 00 00 a3 a0 07 00 2e 00 00 00 d2 a0 07 00 1f 00 00 00 01 a1 07 00 41 00 00 00 | t...........................A... |
| 6de0 | 21 a1 07 00 3c 00 00 00 63 a1 07 00 5b 00 00 00 a0 a1 07 00 30 00 00 00 fc a1 07 00 3f 00 00 00 | !...<...c...[.......0.......?... |
| 6e00 | 2d a2 07 00 38 00 00 00 6d a2 07 00 2d 00 00 00 a6 a2 07 00 52 00 00 00 d4 a2 07 00 39 00 00 00 | -...8...m...-.......R.......9... |
| 6e20 | 27 a3 07 00 3b 00 00 00 61 a3 07 00 4a 00 00 00 9d a3 07 00 2d 00 00 00 e8 a3 07 00 3d 00 00 00 | '...;...a...J.......-.......=... |
| 6e40 | 16 a4 07 00 13 00 00 00 54 a4 07 00 24 00 00 00 68 a4 07 00 20 00 00 00 8d a4 07 00 29 00 00 00 | ........T...$...h...........)... |
| 6e60 | ae a4 07 00 2b 00 00 00 d8 a4 07 00 38 00 00 00 04 a5 07 00 3a 00 00 00 3d a5 07 00 3a 00 00 00 | ....+.......8.......:...=...:... |
| 6e80 | 78 a5 07 00 30 00 00 00 b3 a5 07 00 27 00 00 00 e4 a5 07 00 8d 00 00 00 0c a6 07 00 8d 00 00 00 | x...0.......'................... |
| 6ea0 | 9a a6 07 00 2f 00 00 00 28 a7 07 00 2a 00 00 00 58 a7 07 00 19 00 00 00 83 a7 07 00 5e 00 00 00 | ..../...(...*...X...........^... |
| 6ec0 | 9d a7 07 00 23 00 00 00 fc a7 07 00 37 00 00 00 20 a8 07 00 20 00 00 00 58 a8 07 00 1c 00 00 00 | ....#.......7...........X....... |
| 6ee0 | 79 a8 07 00 3b 00 00 00 96 a8 07 00 30 00 00 00 d2 a8 07 00 27 00 00 00 03 a9 07 00 20 00 00 00 | y...;.......0.......'........... |
| 6f00 | 2b a9 07 00 25 00 00 00 4c a9 07 00 dd 00 00 00 72 a9 07 00 da 00 00 00 50 aa 07 00 da 00 00 00 | +...%...L.......r.......P....... |
| 6f20 | 2b ab 07 00 0e 00 00 00 06 ac 07 00 38 00 00 00 15 ac 07 00 40 00 00 00 4e ac 07 00 23 00 00 00 | +...........8.......@...N...#... |
| 6f40 | 8f ac 07 00 24 00 00 00 b3 ac 07 00 07 00 00 00 d8 ac 07 00 07 00 00 00 e0 ac 07 00 33 00 00 00 | ....$.......................3... |
| 6f60 | e8 ac 07 00 33 00 00 00 1c ad 07 00 33 00 00 00 50 ad 07 00 33 00 00 00 84 ad 07 00 40 00 00 00 | ....3.......3...P...3.......@... |
| 6f80 | b8 ad 07 00 8c 00 00 00 f9 ad 07 00 51 00 00 00 86 ae 07 00 4f 00 00 00 d8 ae 07 00 3d 00 00 00 | ............Q.......O.......=... |
| 6fa0 | 28 af 07 00 64 00 00 00 66 af 07 00 6f 00 00 00 cb af 07 00 94 00 00 00 3b b0 07 00 92 00 00 00 | (...d...f...o...........;....... |
| 6fc0 | d0 b0 07 00 cd 00 00 00 63 b1 07 00 ce 00 00 00 31 b2 07 00 82 00 00 00 00 b3 07 00 8f 00 00 00 | ........c.......1............... |
| 6fe0 | 83 b3 07 00 e1 00 00 00 13 b4 07 00 c3 00 00 00 f5 b4 07 00 8a 00 00 00 b9 b5 07 00 8b 00 00 00 | ................................ |
| 7000 | 44 b6 07 00 19 00 00 00 d0 b6 07 00 17 00 00 00 ea b6 07 00 10 00 00 00 02 b7 07 00 0c 00 00 00 | D............................... |
| 7020 | 13 b7 07 00 ac 00 00 00 20 b7 07 00 e2 00 00 00 cd b7 07 00 14 00 00 00 b0 b8 07 00 c3 00 00 00 | ................................ |
| 7040 | c5 b8 07 00 95 00 00 00 89 b9 07 00 13 01 00 00 1f ba 07 00 31 00 00 00 33 bb 07 00 0a 00 00 00 | ....................1...3....... |
| 7060 | 65 bb 07 00 21 01 00 00 70 bb 07 00 d8 00 00 00 92 bc 07 00 8b 00 00 00 6b bd 07 00 8c 00 00 00 | e...!...p...............k....... |
| 7080 | f7 bd 07 00 f8 00 00 00 84 be 07 00 39 00 00 00 7d bf 07 00 49 00 00 00 b7 bf 07 00 b6 00 00 00 | ............9...}...I........... |
| 70a0 | 01 c0 07 00 93 00 00 00 b8 c0 07 00 80 00 00 00 4c c1 07 00 1b 00 00 00 cd c1 07 00 79 00 00 00 | ................L...........y... |
| 70c0 | e9 c1 07 00 79 00 00 00 63 c2 07 00 53 01 00 00 dd c2 07 00 7f 00 00 00 31 c4 07 00 a9 00 00 00 | ....y...c...S...........1....... |
| 70e0 | b1 c4 07 00 b6 00 00 00 5b c5 07 00 83 00 00 00 12 c6 07 00 86 00 00 00 96 c6 07 00 0e 00 00 00 | ........[....................... |
| 7100 | 1d c7 07 00 5d 00 00 00 2c c7 07 00 36 00 00 00 8a c7 07 00 10 00 00 00 c1 c7 07 00 0d 00 00 00 | ....]...,...6................... |
| 7120 | d2 c7 07 00 45 00 00 00 e0 c7 07 00 45 00 00 00 26 c8 07 00 19 00 00 00 6c c8 07 00 22 00 00 00 | ....E.......E...&.......l..."... |
| 7140 | 86 c8 07 00 1c 00 00 00 a9 c8 07 00 45 00 00 00 c6 c8 07 00 50 00 00 00 0c c9 07 00 65 00 00 00 | ............E.......P.......e... |
| 7160 | 5d c9 07 00 2f 00 00 00 c3 c9 07 00 60 00 00 00 f3 c9 07 00 54 00 00 00 54 ca 07 00 55 00 00 00 | ].../.......`.......T...T...U... |
| 7180 | a9 ca 07 00 48 00 00 00 ff ca 07 00 26 00 00 00 48 cb 07 00 26 00 00 00 6f cb 07 00 b2 00 00 00 | ....H.......&...H...&...o....... |
| 71a0 | 96 cb 07 00 eb 00 00 00 49 cc 07 00 75 00 00 00 35 cd 07 00 77 00 00 00 ab cd 07 00 4d 00 00 00 | ........I...u...5...w.......M... |
| 71c0 | 23 ce 07 00 e2 00 00 00 71 ce 07 00 5b 00 00 00 54 cf 07 00 78 00 00 00 b0 cf 07 00 1d 01 00 00 | #.......q...[...T...x........... |
| 71e0 | 29 d0 07 00 29 01 00 00 47 d1 07 00 53 00 00 00 71 d2 07 00 42 00 00 00 c5 d2 07 00 8b 00 00 00 | )...)...G...S...q...B........... |
| 7200 | 08 d3 07 00 1e 00 00 00 94 d3 07 00 56 00 00 00 b3 d3 07 00 d2 00 00 00 0a d4 07 00 36 00 00 00 | ............V...............6... |
| 7220 | dd d4 07 00 ce 00 00 00 14 d5 07 00 00 01 00 00 e3 d5 07 00 c1 00 00 00 e4 d6 07 00 38 00 00 00 | ............................8... |
| 7240 | a6 d7 07 00 27 00 00 00 df d7 07 00 57 00 00 00 07 d8 07 00 bd 00 00 00 5f d8 07 00 85 00 00 00 | ....'.......W..........._....... |
| 7260 | 1d d9 07 00 4f 00 00 00 a3 d9 07 00 ba 01 00 00 f3 d9 07 00 b6 00 00 00 ae db 07 00 47 00 00 00 | ....O.......................G... |
| 7280 | 65 dc 07 00 63 00 00 00 ad dc 07 00 4c 00 00 00 11 dd 07 00 d5 00 00 00 5e dd 07 00 66 00 00 00 | e...c.......L...........^...f... |
| 72a0 | 34 de 07 00 45 01 00 00 9b de 07 00 56 00 00 00 e1 df 07 00 64 00 00 00 38 e0 07 00 57 00 00 00 | 4...E.......V.......d...8...W... |
| 72c0 | 9d e0 07 00 64 00 00 00 f5 e0 07 00 bf 00 00 00 5a e1 07 00 a4 00 00 00 1a e2 07 00 bc 00 00 00 | ....d...........Z............... |
| 72e0 | bf e2 07 00 65 00 00 00 7c e3 07 00 3f 00 00 00 e2 e3 07 00 c0 01 00 00 22 e4 07 00 72 00 00 00 | ....e...|...?..........."...r... |
| 7300 | e3 e5 07 00 74 00 00 00 56 e6 07 00 58 00 00 00 cb e6 07 00 45 00 00 00 24 e7 07 00 41 00 00 00 | ....t...V...X.......E...$...A... |
| 7320 | 6a e7 07 00 52 00 00 00 ac e7 07 00 81 00 00 00 ff e7 07 00 75 00 00 00 81 e8 07 00 7f 00 00 00 | j...R...............u........... |
| 7340 | f7 e8 07 00 30 00 00 00 77 e9 07 00 31 00 00 00 a8 e9 07 00 7e 00 00 00 da e9 07 00 50 00 00 00 | ....0...w...1.......~.......P... |
| 7360 | 59 ea 07 00 36 00 00 00 aa ea 07 00 50 01 00 00 e1 ea 07 00 69 00 00 00 32 ec 07 00 a3 00 00 00 | Y...6.......P.......i...2....... |
| 7380 | 9c ec 07 00 5d 00 00 00 40 ed 07 00 8e 00 00 00 9e ed 07 00 4a 00 00 00 2d ee 07 00 57 00 00 00 | ....]...@...........J...-...W... |
| 73a0 | 78 ee 07 00 6d 00 00 00 d0 ee 07 00 64 00 00 00 3e ef 07 00 64 00 00 00 a3 ef 07 00 99 00 00 00 | x...m.......d...>...d........... |
| 73c0 | 08 f0 07 00 26 00 00 00 a2 f0 07 00 b1 00 00 00 c9 f0 07 00 ad 00 00 00 7b f1 07 00 81 00 00 00 | ....&...................{....... |
| 73e0 | 29 f2 07 00 33 00 00 00 ab f2 07 00 c0 00 00 00 df f2 07 00 90 00 00 00 a0 f3 07 00 a3 00 00 00 | )...3........................... |
| 7400 | 31 f4 07 00 a2 00 00 00 d5 f4 07 00 83 00 00 00 78 f5 07 00 41 00 00 00 fc f5 07 00 3a 00 00 00 | 1...............x...A.......:... |
| 7420 | 3e f6 07 00 4b 00 00 00 79 f6 07 00 65 00 00 00 c5 f6 07 00 65 00 00 00 2b f7 07 00 06 00 00 00 | >...K...y...e.......e...+....... |
| 7440 | 91 f7 07 00 05 00 00 00 98 f7 07 00 e3 01 00 00 9e f7 07 00 1e 00 00 00 82 f9 07 00 1d 00 00 00 | ................................ |
| 7460 | a1 f9 07 00 3d 00 00 00 bf f9 07 00 a4 00 00 00 fd f9 07 00 9d 01 00 00 a2 fa 07 00 60 02 00 00 | ....=.......................`... |
| 7480 | 40 fc 07 00 5b 02 00 00 a1 fe 07 00 4b 02 00 00 fd 00 08 00 5a 02 00 00 49 03 08 00 6d 00 00 00 | @...[.......K.......Z...I...m... |
| 74a0 | a4 05 08 00 a8 00 00 00 12 06 08 00 bf 00 00 00 bb 06 08 00 b2 00 00 00 7b 07 08 00 06 00 00 00 | ........................{....... |
| 74c0 | 2e 08 08 00 4b 01 00 00 35 08 08 00 4c 01 00 00 81 09 08 00 17 00 00 00 ce 0a 08 00 0b 00 00 00 | ....K...5...L................... |
| 74e0 | e6 0a 08 00 0d 00 00 00 f2 0a 08 00 55 00 00 00 00 0b 08 00 0f 00 00 00 56 0b 08 00 0f 00 00 00 | ............U...........V....... |
| 7500 | 66 0b 08 00 5c 00 00 00 76 0b 08 00 ff 02 00 00 d3 0b 08 00 b1 00 00 00 d3 0e 08 00 52 00 00 00 | f...\...v...................R... |
| 7520 | 85 0f 08 00 37 00 00 00 d8 0f 08 00 06 00 00 00 10 10 08 00 12 00 00 00 17 10 08 00 9a 00 00 00 | ....7........................... |
| 7540 | 2a 10 08 00 08 00 00 00 c5 10 08 00 38 00 00 00 ce 10 08 00 11 00 00 00 07 11 08 00 1c 00 00 00 | *...........8................... |
| 7560 | 19 11 08 00 12 00 00 00 36 11 08 00 1a 00 00 00 49 11 08 00 49 00 00 00 64 11 08 00 1e 00 00 00 | ........6.......I...I...d....... |
| 7580 | ae 11 08 00 2f 00 00 00 cd 11 08 00 73 00 00 00 fd 11 08 00 ae 00 00 00 71 12 08 00 af 00 00 00 | ..../.......s...........q....... |
| 75a0 | 20 13 08 00 11 00 00 00 d0 13 08 00 d5 00 00 00 e2 13 08 00 d0 00 00 00 b8 14 08 00 0b 00 00 00 | ................................ |
| 75c0 | 89 15 08 00 4a 00 00 00 95 15 08 00 08 00 00 00 e0 15 08 00 14 00 00 00 e9 15 08 00 4a 00 00 00 | ....J.......................J... |
| 75e0 | fe 15 08 00 60 00 00 00 49 16 08 00 06 00 00 00 aa 16 08 00 06 00 00 00 b1 16 08 00 da 00 00 00 | ....`...I....................... |
| 7600 | b8 16 08 00 99 00 00 00 93 17 08 00 98 00 00 00 2d 18 08 00 bc 00 00 00 c6 18 08 00 06 00 00 00 | ................-............... |
| 7620 | 83 19 08 00 0a 00 00 00 8a 19 08 00 14 00 00 00 95 19 08 00 1b 00 00 00 aa 19 08 00 0c 00 00 00 | ................................ |
| 7640 | c6 19 08 00 19 00 00 00 d3 19 08 00 2e 00 00 00 ed 19 08 00 1d 00 00 00 1c 1a 08 00 0e 00 00 00 | ................................ |
| 7660 | 3a 1a 08 00 00 02 00 00 49 1a 08 00 ff 01 00 00 4a 1c 08 00 26 00 00 00 4a 1e 08 00 0e 00 00 00 | :.......I.......J...&...J....... |
| 7680 | 71 1e 08 00 21 00 00 00 80 1e 08 00 98 00 00 00 a2 1e 08 00 07 00 00 00 3b 1f 08 00 03 00 00 00 | q...!...................;....... |
| 76a0 | 43 1f 08 00 91 00 00 00 47 1f 08 00 0a 00 00 00 d9 1f 08 00 0b 00 00 00 e4 1f 08 00 6a 00 00 00 | C.......G...................j... |
| 76c0 | f0 1f 08 00 0e 00 00 00 5b 20 08 00 08 00 00 00 6a 20 08 00 3f 00 00 00 73 20 08 00 2b 00 00 00 | ........[.......j...?...s...+... |
| 76e0 | b3 20 08 00 29 00 00 00 df 20 08 00 35 00 00 00 09 21 08 00 54 00 00 00 3f 21 08 00 5c 00 00 00 | ....).......5....!..T...?!..\... |
| 7700 | 94 21 08 00 7b 00 00 00 f1 21 08 00 56 00 00 00 6d 22 08 00 67 00 00 00 c4 22 08 00 25 00 00 00 | .!..{....!..V...m"..g...."..%... |
| 7720 | 2c 23 08 00 3a 00 00 00 52 23 08 00 3a 00 00 00 8d 23 08 00 0d 00 00 00 c8 23 08 00 64 00 00 00 | ,#..:...R#..:....#.......#..d... |
| 7740 | d6 23 08 00 64 00 00 00 3b 24 08 00 67 00 00 00 a0 24 08 00 67 00 00 00 08 25 08 00 1f 00 00 00 | .#..d...;$..g....$..g....%...... |
| 7760 | 70 25 08 00 0c 00 00 00 90 25 08 00 16 00 00 00 9d 25 08 00 44 01 00 00 b4 25 08 00 41 00 00 00 | p%.......%.......%..D....%..A... |
| 7780 | f9 26 08 00 47 00 00 00 3b 27 08 00 d3 00 00 00 83 27 08 00 3a 02 00 00 57 28 08 00 d7 00 00 00 | .&..G...;'.......'..:...W(...... |
| 77a0 | 92 2a 08 00 fe 00 00 00 6a 2b 08 00 93 00 00 00 69 2c 08 00 4e 01 00 00 fd 2c 08 00 30 00 00 00 | .*......j+......i,..N....,..0... |
| 77c0 | 4c 2e 08 00 c8 00 00 00 7d 2e 08 00 ab 00 00 00 46 2f 08 00 31 00 00 00 f2 2f 08 00 29 00 00 00 | L.......}.......F/..1..../..)... |
| 77e0 | 24 30 08 00 68 01 00 00 4e 30 08 00 39 00 00 00 b7 31 08 00 3b 01 00 00 f1 31 08 00 b2 00 00 00 | $0..h...N0..9....1..;....1...... |
| 7800 | 2d 33 08 00 27 00 00 00 e0 33 08 00 44 00 00 00 08 34 08 00 d2 00 00 00 4d 34 08 00 73 00 00 00 | -3..'....3..D....4......M4..s... |
| 7820 | 20 35 08 00 d7 00 00 00 94 35 08 00 9f 00 00 00 6c 36 08 00 2d 01 00 00 0c 37 08 00 af 00 00 00 | .5.......5......l6..-....7...... |
| 7840 | 3a 38 08 00 cc 00 00 00 ea 38 08 00 4f 00 00 00 b7 39 08 00 3f 01 00 00 07 3a 08 00 c1 00 00 00 | :8.......8..O....9..?....:...... |
| 7860 | 47 3b 08 00 59 00 00 00 09 3c 08 00 59 00 00 00 63 3c 08 00 21 01 00 00 bd 3c 08 00 59 00 00 00 | G;..Y....<..Y...c<..!....<..Y... |
| 7880 | df 3d 08 00 29 01 00 00 39 3e 08 00 6f 00 00 00 63 3f 08 00 8f 00 00 00 d3 3f 08 00 8d 00 00 00 | .=..)...9>..o...c?.......?...... |
| 78a0 | 63 40 08 00 9e 00 00 00 f1 40 08 00 6e 00 00 00 90 41 08 00 6c 00 00 00 ff 41 08 00 3a 00 00 00 | c@.......@..n....A..l....A..:... |
| 78c0 | 6c 42 08 00 95 00 00 00 a7 42 08 00 68 00 00 00 3d 43 08 00 58 00 00 00 a6 43 08 00 15 01 00 00 | lB.......B..h...=C..X....C...... |
| 78e0 | ff 43 08 00 96 00 00 00 15 45 08 00 52 00 00 00 ac 45 08 00 52 00 00 00 ff 45 08 00 99 00 00 00 | .C.......E..R....E..R....E...... |
| 7900 | 52 46 08 00 96 00 00 00 ec 46 08 00 ec 00 00 00 83 47 08 00 94 00 00 00 70 48 08 00 9e 00 00 00 | RF.......F.......G......pH...... |
| 7920 | 05 49 08 00 79 00 00 00 a4 49 08 00 78 00 00 00 1e 4a 08 00 50 00 00 00 97 4a 08 00 9e 00 00 00 | .I..y....I..x....J..P....J...... |
| 7940 | e8 4a 08 00 13 00 00 00 87 4b 08 00 40 00 00 00 9b 4b 08 00 3a 00 00 00 dc 4b 08 00 98 01 00 00 | .J.......K..@....K..:....K...... |
| 7960 | 17 4c 08 00 2d 00 00 00 b0 4d 08 00 39 00 00 00 de 4d 08 00 e0 00 00 00 18 4e 08 00 18 00 00 00 | .L..-....M..9....M.......N...... |
| 7980 | f9 4e 08 00 26 00 00 00 12 4f 08 00 57 00 00 00 39 4f 08 00 57 00 00 00 91 4f 08 00 ad 00 00 00 | .N..&....O..W...9O..W....O...... |
| 79a0 | e9 4f 08 00 ad 00 00 00 97 50 08 00 b5 00 00 00 45 51 08 00 70 01 00 00 fb 51 08 00 1b 00 00 00 | .O.......P......EQ..p....Q...... |
| 79c0 | 6c 53 08 00 ab 01 00 00 88 53 08 00 eb 00 00 00 34 55 08 00 bb 00 00 00 20 56 08 00 bb 00 00 00 | lS.......S......4U.......V...... |
| 79e0 | dc 56 08 00 fd 00 00 00 98 57 08 00 85 00 00 00 96 58 08 00 b5 00 00 00 1c 59 08 00 b5 00 00 00 | .V.......W.......X.......Y...... |
| 7a00 | d2 59 08 00 5b 00 00 00 88 5a 08 00 83 00 00 00 e4 5a 08 00 4b 00 00 00 68 5b 08 00 47 00 00 00 | .Y..[....Z.......Z..K...h[..G... |
| 7a20 | b4 5b 08 00 45 00 00 00 fc 5b 08 00 45 00 00 00 42 5c 08 00 59 01 00 00 88 5c 08 00 27 00 00 00 | .[..E....[..E...B\..Y....\..'... |
| 7a40 | e2 5d 08 00 f8 00 00 00 0a 5e 08 00 0c 01 00 00 03 5f 08 00 28 02 00 00 10 60 08 00 ff 00 00 00 | .].......^......._..(....`...... |
| 7a60 | 39 62 08 00 61 00 00 00 39 63 08 00 c8 00 00 00 9b 63 08 00 5a 00 00 00 64 64 08 00 5c 00 00 00 | 9b..a...9c.......c..Z...dd..\... |
| 7a80 | bf 64 08 00 a9 00 00 00 1c 65 08 00 b6 00 00 00 c6 65 08 00 5e 00 00 00 7d 66 08 00 d3 00 00 00 | .d.......e.......e..^...}f...... |
| 7aa0 | dc 66 08 00 24 00 00 00 b0 67 08 00 14 00 00 00 d5 67 08 00 1a 00 00 00 ea 67 08 00 bc 00 00 00 | .f..$....g.......g.......g...... |
| 7ac0 | 05 68 08 00 68 00 00 00 c2 68 08 00 1f 00 00 00 2b 69 08 00 24 00 00 00 4b 69 08 00 bd 00 00 00 | .h..h....h......+i..$...Ki...... |
| 7ae0 | 70 69 08 00 1f 00 00 00 2e 6a 08 00 17 00 00 00 4e 6a 08 00 21 00 00 00 66 6a 08 00 21 00 00 00 | pi.......j......Nj..!...fj..!... |
| 7b00 | 88 6a 08 00 22 00 00 00 aa 6a 08 00 40 00 00 00 cd 6a 08 00 1a 00 00 00 0e 6b 08 00 45 00 00 00 | .j.."....j..@....j.......k..E... |
| 7b20 | 29 6b 08 00 17 01 00 00 6f 6b 08 00 54 00 00 00 87 6c 08 00 c0 01 00 00 dc 6c 08 00 d2 01 00 00 | )k......ok..T....l.......l...... |
| 7b40 | 9d 6e 08 00 a2 00 00 00 70 70 08 00 d1 00 00 00 13 71 08 00 e4 00 00 00 e5 71 08 00 bf 00 00 00 | .n......pp.......q.......q...... |
| 7b60 | ca 72 08 00 dc 00 00 00 8a 73 08 00 4e 01 00 00 67 74 08 00 45 00 00 00 b6 75 08 00 34 00 00 00 | .r.......s..N...gt..E....u..4... |
| 7b80 | fc 75 08 00 b4 00 00 00 31 76 08 00 f9 00 00 00 e6 76 08 00 f9 00 00 00 e0 77 08 00 c5 00 00 00 | .u......1v.......v.......w...... |
| 7ba0 | da 78 08 00 27 00 00 00 a0 79 08 00 b7 00 00 00 c8 79 08 00 ae 00 00 00 80 7a 08 00 52 00 00 00 | .x..'....y.......y.......z..R... |
| 7bc0 | 2f 7b 08 00 ab 00 00 00 82 7b 08 00 c8 00 00 00 2e 7c 08 00 5b 00 00 00 f7 7c 08 00 6d 00 00 00 | /{.......{.......|..[....|..m... |
| 7be0 | 53 7d 08 00 ab 00 00 00 c1 7d 08 00 30 00 00 00 6d 7e 08 00 35 00 00 00 9e 7e 08 00 68 00 00 00 | S}.......}..0...m~..5....~..h... |
| 7c00 | d4 7e 08 00 53 00 00 00 3d 7f 08 00 33 00 00 00 91 7f 08 00 2d 00 00 00 c5 7f 08 00 4e 00 00 00 | .~..S...=...3.......-.......N... |
| 7c20 | f3 7f 08 00 70 00 00 00 42 80 08 00 6c 00 00 00 b3 80 08 00 c5 00 00 00 20 81 08 00 b7 00 00 00 | ....p...B...l................... |
| 7c40 | e6 81 08 00 38 00 00 00 9e 82 08 00 39 00 00 00 d7 82 08 00 21 01 00 00 11 83 08 00 dd 00 00 00 | ....8.......9.......!........... |
| 7c60 | 33 84 08 00 1e 01 00 00 11 85 08 00 5f 01 00 00 30 86 08 00 dc 00 00 00 90 87 08 00 c8 00 00 00 | 3..........._...0............... |
| 7c80 | 6d 88 08 00 36 00 00 00 36 89 08 00 6e 00 00 00 6d 89 08 00 91 00 00 00 dc 89 08 00 8e 00 00 00 | m...6...6...n...m............... |
| 7ca0 | 6e 8a 08 00 60 00 00 00 fd 8a 08 00 b0 00 00 00 5e 8b 08 00 6e 00 00 00 0f 8c 08 00 6b 00 00 00 | n...`...........^...n.......k... |
| 7cc0 | 7e 8c 08 00 35 00 00 00 ea 8c 08 00 33 00 00 00 20 8d 08 00 f1 00 00 00 54 8d 08 00 2b 00 00 00 | ~...5.......3...........T...+... |
| 7ce0 | 46 8e 08 00 38 00 00 00 72 8e 08 00 3a 01 00 00 ab 8e 08 00 4b 00 00 00 e6 8f 08 00 53 01 00 00 | F...8...r...:.......K.......S... |
| 7d00 | 32 90 08 00 92 01 00 00 86 91 08 00 a1 00 00 00 19 93 08 00 28 00 00 00 bb 93 08 00 35 01 00 00 | 2...................(.......5... |
| 7d20 | e4 93 08 00 9a 00 00 00 1a 95 08 00 10 01 00 00 b5 95 08 00 3d 00 00 00 c6 96 08 00 2b 00 00 00 | ....................=.......+... |
| 7d40 | 04 97 08 00 a6 00 00 00 30 97 08 00 2e 00 00 00 d7 97 08 00 3f 00 00 00 06 98 08 00 ec 00 00 00 | ........0...........?........... |
| 7d60 | 46 98 08 00 ee 00 00 00 33 99 08 00 7c 00 00 00 22 9a 08 00 9a 01 00 00 9f 9a 08 00 42 00 00 00 | F.......3...|..."...........B... |
| 7d80 | 3a 9c 08 00 82 00 00 00 7d 9c 08 00 9b 00 00 00 00 9d 08 00 31 00 00 00 9c 9d 08 00 b4 00 00 00 | :.......}...........1........... |
| 7da0 | ce 9d 08 00 b8 00 00 00 83 9e 08 00 63 00 00 00 3c 9f 08 00 33 00 00 00 a0 9f 08 00 3a 00 00 00 | ............c...<...3.......:... |
| 7dc0 | d4 9f 08 00 5e 00 00 00 0f a0 08 00 25 01 00 00 6e a0 08 00 42 00 00 00 94 a1 08 00 5c 00 00 00 | ....^.......%...n...B.......\... |
| 7de0 | d7 a1 08 00 56 00 00 00 34 a2 08 00 fe 00 00 00 8b a2 08 00 79 00 00 00 8a a3 08 00 55 00 00 00 | ....V...4...........y.......U... |
| 7e00 | 04 a4 08 00 58 00 00 00 5a a4 08 00 cd 01 00 00 b3 a4 08 00 3d 00 00 00 81 a6 08 00 e8 01 00 00 | ....X...Z...........=........... |
| 7e20 | bf a6 08 00 40 00 00 00 a8 a8 08 00 7f 00 00 00 e9 a8 08 00 6c 00 00 00 69 a9 08 00 6e 00 00 00 | ....@...............l...i...n... |
| 7e40 | d6 a9 08 00 e8 00 00 00 45 aa 08 00 a5 00 00 00 2e ab 08 00 6b 00 00 00 d4 ab 08 00 69 01 00 00 | ........E...........k.......i... |
| 7e60 | 40 ac 08 00 34 00 00 00 aa ad 08 00 79 00 00 00 df ad 08 00 3d 00 00 00 59 ae 08 00 54 00 00 00 | @...4.......y.......=...Y...T... |
| 7e80 | 97 ae 08 00 4c 00 00 00 ec ae 08 00 bc 00 00 00 39 af 08 00 ea 00 00 00 f6 af 08 00 6d 00 00 00 | ....L...........9...........m... |
| 7ea0 | e1 b0 08 00 e6 00 00 00 4f b1 08 00 36 00 00 00 36 b2 08 00 5b 00 00 00 6d b2 08 00 6a 00 00 00 | ........O...6...6...[...m...j... |
| 7ec0 | c9 b2 08 00 82 00 00 00 34 b3 08 00 73 00 00 00 b7 b3 08 00 49 00 00 00 2b b4 08 00 29 00 00 00 | ........4...s.......I...+...)... |
| 7ee0 | 75 b4 08 00 2a 01 00 00 9f b4 08 00 47 00 00 00 ca b5 08 00 46 00 00 00 12 b6 08 00 49 00 00 00 | u...*.......G.......F.......I... |
| 7f00 | 59 b6 08 00 49 00 00 00 a3 b6 08 00 22 00 00 00 ed b6 08 00 54 00 00 00 10 b7 08 00 65 00 00 00 | Y...I.......".......T.......e... |
| 7f20 | 65 b7 08 00 32 00 00 00 cb b7 08 00 9d 00 00 00 fe b7 08 00 77 00 00 00 9c b8 08 00 2c 00 00 00 | e...2...............w.......,... |
| 7f40 | 14 b9 08 00 42 00 00 00 41 b9 08 00 2b 00 00 00 84 b9 08 00 86 01 00 00 b0 b9 08 00 c4 00 00 00 | ....B...A...+................... |
| 7f60 | 37 bb 08 00 c6 00 00 00 fc bb 08 00 80 00 00 00 c3 bc 08 00 49 01 00 00 44 bd 08 00 90 00 00 00 | 7...................I...D....... |
| 7f80 | 8e be 08 00 38 00 00 00 1f bf 08 00 9f 00 00 00 58 bf 08 00 1c 01 00 00 f8 bf 08 00 d5 00 00 00 | ....8...........X............... |
| 7fa0 | 15 c1 08 00 38 00 00 00 eb c1 08 00 28 00 00 00 24 c2 08 00 5c 00 00 00 4d c2 08 00 29 00 00 00 | ....8.......(...$...\...M...)... |
| 7fc0 | aa c2 08 00 71 00 00 00 d4 c2 08 00 41 00 00 00 46 c3 08 00 0f 01 00 00 88 c3 08 00 26 00 00 00 | ....q.......A...F...........&... |
| 7fe0 | 98 c4 08 00 5c 00 00 00 bf c4 08 00 b6 00 00 00 1c c5 08 00 fc 00 00 00 d3 c5 08 00 89 00 00 00 | ....\........................... |
| 8000 | d0 c6 08 00 25 00 00 00 5a c7 08 00 5f 00 00 00 80 c7 08 00 ec 00 00 00 e0 c7 08 00 4e 00 00 00 | ....%...Z..._...............N... |
| 8020 | cd c8 08 00 84 00 00 00 1c c9 08 00 55 00 00 00 a1 c9 08 00 12 01 00 00 f7 c9 08 00 75 00 00 00 | ............U...............u... |
| 8040 | 0a cb 08 00 65 00 00 00 80 cb 08 00 e2 00 00 00 e6 cb 08 00 2f 00 00 00 c9 cc 08 00 29 00 00 00 | ....e.............../.......)... |
| 8060 | f9 cc 08 00 a0 01 00 00 23 cd 08 00 9f 01 00 00 c4 ce 08 00 e1 00 00 00 64 d0 08 00 ff 00 00 00 | ........#...............d....... |
| 8080 | 46 d1 08 00 db 00 00 00 46 d2 08 00 dc 00 00 00 22 d3 08 00 36 00 00 00 ff d3 08 00 40 00 00 00 | F.......F......."...6.......@... |
| 80a0 | 36 d4 08 00 1f 00 00 00 77 d4 08 00 40 00 00 00 97 d4 08 00 4d 00 00 00 d8 d4 08 00 4c 00 00 00 | 6.......w...@.......M.......L... |
| 80c0 | 26 d5 08 00 d8 00 00 00 73 d5 08 00 92 00 00 00 4c d6 08 00 43 00 00 00 df d6 08 00 af 00 00 00 | &.......s.......L...C........... |
| 80e0 | 23 d7 08 00 65 00 00 00 d3 d7 08 00 a8 00 00 00 39 d8 08 00 38 00 00 00 e2 d8 08 00 3e 01 00 00 | #...e...........9...8.......>... |
| 8100 | 1b d9 08 00 3c 00 00 00 5a da 08 00 90 00 00 00 97 da 08 00 58 00 00 00 28 db 08 00 95 00 00 00 | ....<...Z...........X...(....... |
| 8120 | 81 db 08 00 50 00 00 00 17 dc 08 00 64 00 00 00 68 dc 08 00 50 00 00 00 cd dc 08 00 6d 00 00 00 | ....P.......d...h...P.......m... |
| 8140 | 1e dd 08 00 3a 00 00 00 8c dd 08 00 29 00 00 00 c7 dd 08 00 6d 00 00 00 f1 dd 08 00 94 00 00 00 | ....:.......).......m........... |
| 8160 | 5f de 08 00 c0 00 00 00 f4 de 08 00 b8 01 00 00 b5 df 08 00 51 00 00 00 6e e1 08 00 21 00 00 00 | _...................Q...n...!... |
| 8180 | c0 e1 08 00 26 00 00 00 e2 e1 08 00 25 00 00 00 09 e2 08 00 71 00 00 00 2f e2 08 00 24 00 00 00 | ....&.......%.......q.../...$... |
| 81a0 | a1 e2 08 00 bc 01 00 00 c6 e2 08 00 55 00 00 00 83 e4 08 00 a9 00 00 00 d9 e4 08 00 4c 00 00 00 | ............U...............L... |
| 81c0 | 83 e5 08 00 ee 00 00 00 d0 e5 08 00 43 00 00 00 bf e6 08 00 39 00 00 00 03 e7 08 00 a9 00 00 00 | ............C.......9........... |
| 81e0 | 3d e7 08 00 a9 00 00 00 e7 e7 08 00 50 00 00 00 91 e8 08 00 53 01 00 00 e2 e8 08 00 46 00 00 00 | =...........P.......S.......F... |
| 8200 | 36 ea 08 00 44 00 00 00 7d ea 08 00 43 00 00 00 c2 ea 08 00 de 00 00 00 06 eb 08 00 83 00 00 00 | 6...D...}...C................... |
| 8220 | e5 eb 08 00 83 00 00 00 69 ec 08 00 39 01 00 00 ed ec 08 00 a0 00 00 00 27 ee 08 00 d1 00 00 00 | ........i...9...........'....... |
| 8240 | c8 ee 08 00 61 00 00 00 9a ef 08 00 b4 00 00 00 fc ef 08 00 b7 00 00 00 b1 f0 08 00 b6 00 00 00 | ....a........................... |
| 8260 | 69 f1 08 00 bb 00 00 00 20 f2 08 00 a1 00 00 00 dc f2 08 00 5c 00 00 00 7e f3 08 00 58 00 00 00 | i...................\...~...X... |
| 8280 | db f3 08 00 5c 00 00 00 34 f4 08 00 58 00 00 00 91 f4 08 00 71 00 00 00 ea f4 08 00 5e 00 00 00 | ....\...4...X.......q.......^... |
| 82a0 | 5c f5 08 00 21 01 00 00 bb f5 08 00 13 01 00 00 dd f6 08 00 12 01 00 00 f1 f7 08 00 09 01 00 00 | \...!........................... |
| 82c0 | 04 f9 08 00 40 00 00 00 0e fa 08 00 a3 00 00 00 4f fa 08 00 a3 00 00 00 f3 fa 08 00 9f 00 00 00 | ....@...........O............... |
| 82e0 | 97 fb 08 00 9f 00 00 00 37 fc 08 00 bb 00 00 00 d7 fc 08 00 b4 00 00 00 93 fd 08 00 54 00 00 00 | ........7...................T... |
| 8300 | 48 fe 08 00 bc 00 00 00 9d fe 08 00 56 00 00 00 5a ff 08 00 be 00 00 00 b1 ff 08 00 4e 00 00 00 | H...........V...Z...........N... |
| 8320 | 70 00 09 00 cf 01 00 00 bf 00 09 00 29 01 00 00 8f 02 09 00 63 00 00 00 b9 03 09 00 46 00 00 00 | p...........).......c.......F... |
| 8340 | 1d 04 09 00 7e 00 00 00 64 04 09 00 3c 00 00 00 e3 04 09 00 db 00 00 00 20 05 09 00 42 00 00 00 | ....~...d...<...............B... |
| 8360 | fc 05 09 00 4e 00 00 00 3f 06 09 00 4e 00 00 00 8e 06 09 00 49 00 00 00 dd 06 09 00 49 00 00 00 | ....N...?...N.......I.......I... |
| 8380 | 27 07 09 00 43 00 00 00 71 07 09 00 4b 00 00 00 b5 07 09 00 64 00 00 00 01 08 09 00 46 00 00 00 | '...C...q...K.......d.......F... |
| 83a0 | 66 08 09 00 84 00 00 00 ad 08 09 00 7c 00 00 00 32 09 09 00 86 00 00 00 af 09 09 00 2f 00 00 00 | f...........|...2.........../... |
| 83c0 | 36 0a 09 00 79 00 00 00 66 0a 09 00 76 00 00 00 e0 0a 09 00 81 00 00 00 57 0b 09 00 46 01 00 00 | 6...y...f...v...........W...F... |
| 83e0 | d9 0b 09 00 71 00 00 00 20 0d 09 00 66 00 00 00 92 0d 09 00 3f 00 00 00 f9 0d 09 00 88 00 00 00 | ....q.......f.......?........... |
| 8400 | 39 0e 09 00 da 00 00 00 c2 0e 09 00 19 00 00 00 9d 0f 09 00 90 01 00 00 b7 0f 09 00 a5 00 00 00 | 9............................... |
| 8420 | 48 11 09 00 43 00 00 00 ee 11 09 00 2a 00 00 00 32 12 09 00 4c 00 00 00 5d 12 09 00 3a 00 00 00 | H...C.......*...2...L...]...:... |
| 8440 | aa 12 09 00 4e 00 00 00 e5 12 09 00 b0 00 00 00 34 13 09 00 2a 00 00 00 e5 13 09 00 21 00 00 00 | ....N...........4...*.......!... |
| 8460 | 10 14 09 00 51 00 00 00 32 14 09 00 45 00 00 00 84 14 09 00 5f 00 00 00 ca 14 09 00 37 00 00 00 | ....Q...2...E......._.......7... |
| 8480 | 2a 15 09 00 41 00 00 00 62 15 09 00 44 00 00 00 a4 15 09 00 6a 00 00 00 e9 15 09 00 3c 00 00 00 | *...A...b...D.......j.......<... |
| 84a0 | 54 16 09 00 56 00 00 00 91 16 09 00 4a 00 00 00 e8 16 09 00 ee 00 00 00 33 17 09 00 47 00 00 00 | T...V.......J...........3...G... |
| 84c0 | 22 18 09 00 7a 00 00 00 6a 18 09 00 d2 00 00 00 e5 18 09 00 5f 00 00 00 b8 19 09 00 d5 00 00 00 | "...z...j..........._........... |
| 84e0 | 18 1a 09 00 39 00 00 00 ee 1a 09 00 70 00 00 00 28 1b 09 00 5d 00 00 00 99 1b 09 00 55 00 00 00 | ....9.......p...(...].......U... |
| 8500 | f7 1b 09 00 2b 00 00 00 4d 1c 09 00 38 00 00 00 79 1c 09 00 46 00 00 00 b2 1c 09 00 4c 00 00 00 | ....+...M...8...y...F.......L... |
| 8520 | f9 1c 09 00 62 00 00 00 46 1d 09 00 41 00 00 00 a9 1d 09 00 55 01 00 00 eb 1d 09 00 c0 00 00 00 | ....b...F...A.......U........... |
| 8540 | 41 1f 09 00 b6 00 00 00 02 20 09 00 94 00 00 00 b9 20 09 00 8d 00 00 00 4e 21 09 00 d5 00 00 00 | A.......................N!...... |
| 8560 | dc 21 09 00 7e 00 00 00 b2 22 09 00 a4 00 00 00 31 23 09 00 a6 00 00 00 d6 23 09 00 a2 00 00 00 | .!..~...."......1#.......#...... |
| 8580 | 7d 24 09 00 a2 00 00 00 20 25 09 00 c7 01 00 00 c3 25 09 00 39 00 00 00 8b 27 09 00 32 01 00 00 | }$.......%.......%..9....'..2... |
| 85a0 | c5 27 09 00 a8 00 00 00 f8 28 09 00 79 00 00 00 a1 29 09 00 33 00 00 00 1b 2a 09 00 90 00 00 00 | .'.......(..y....)..3....*...... |
| 85c0 | 4f 2a 09 00 b0 00 00 00 e0 2a 09 00 63 00 00 00 91 2b 09 00 b3 00 00 00 f5 2b 09 00 d6 00 00 00 | O*.......*..c....+.......+...... |
| 85e0 | a9 2c 09 00 2c 00 00 00 80 2d 09 00 52 00 00 00 ad 2d 09 00 6e 00 00 00 00 2e 09 00 4d 01 00 00 | .,..,....-..R....-..n.......M... |
| 8600 | 6f 2e 09 00 3b 00 00 00 bd 2f 09 00 ad 00 00 00 f9 2f 09 00 7b 02 00 00 a7 30 09 00 54 01 00 00 | o...;..../......./..{....0..T... |
| 8620 | 23 33 09 00 53 00 00 00 78 34 09 00 4b 00 00 00 cc 34 09 00 04 01 00 00 18 35 09 00 eb 00 00 00 | #3..S...x4..K....4.......5...... |
| 8640 | 1d 36 09 00 c8 00 00 00 09 37 09 00 c8 00 00 00 d2 37 09 00 b6 00 00 00 9b 38 09 00 bb 00 00 00 | .6.......7.......7.......8...... |
| 8660 | 52 39 09 00 60 00 00 00 0e 3a 09 00 b5 00 00 00 6f 3a 09 00 b9 00 00 00 25 3b 09 00 9b 00 00 00 | R9..`....:......o:......%;...... |
| 8680 | df 3b 09 00 0a 01 00 00 7b 3c 09 00 01 01 00 00 86 3d 09 00 38 00 00 00 88 3e 09 00 3b 00 00 00 | .;......{<.......=..8....>..;... |
| 86a0 | c1 3e 09 00 45 00 00 00 fd 3e 09 00 2c 00 00 00 43 3f 09 00 70 00 00 00 70 3f 09 00 4e 00 00 00 | .>..E....>..,...C?..p...p?..N... |
| 86c0 | e1 3f 09 00 6e 00 00 00 30 40 09 00 7c 01 00 00 9f 40 09 00 7c 01 00 00 1c 42 09 00 71 01 00 00 | .?..n...0@..|....@..|....B..q... |
| 86e0 | 99 43 09 00 54 00 00 00 0b 45 09 00 90 00 00 00 60 45 09 00 4b 00 00 00 f1 45 09 00 6d 00 00 00 | .C..T....E......`E..K....E..m... |
| 8700 | 3d 46 09 00 11 01 00 00 ab 46 09 00 4e 00 00 00 bd 47 09 00 7b 00 00 00 0c 48 09 00 50 00 00 00 | =F.......F..N....G..{....H..P... |
| 8720 | 88 48 09 00 58 00 00 00 d9 48 09 00 b1 00 00 00 32 49 09 00 a9 00 00 00 e4 49 09 00 74 00 00 00 | .H..X....H......2I.......I..t... |
| 8740 | 8e 4a 09 00 72 00 00 00 03 4b 09 00 88 00 00 00 76 4b 09 00 6c 00 00 00 ff 4b 09 00 60 00 00 00 | .J..r....K......vK..l....K..`... |
| 8760 | 6c 4c 09 00 44 00 00 00 cd 4c 09 00 17 01 00 00 12 4d 09 00 ff 00 00 00 2a 4e 09 00 44 00 00 00 | lL..D....L.......M......*N..D... |
| 8780 | 2a 4f 09 00 87 00 00 00 6f 4f 09 00 50 00 00 00 f7 4f 09 00 70 00 00 00 48 50 09 00 87 00 00 00 | *O......oO..P....O..p...HP...... |
| 87a0 | b9 50 09 00 65 00 00 00 41 51 09 00 40 00 00 00 a7 51 09 00 6e 00 00 00 e8 51 09 00 64 00 00 00 | .P..e...AQ..@....Q..n....Q..d... |
| 87c0 | 57 52 09 00 59 02 00 00 bc 52 09 00 88 00 00 00 16 55 09 00 25 00 00 00 9f 55 09 00 88 00 00 00 | WR..Y....R.......U..%....U...... |
| 87e0 | c5 55 09 00 a5 00 00 00 4e 56 09 00 57 01 00 00 f4 56 09 00 32 01 00 00 4c 58 09 00 49 01 00 00 | .U......NV..W....V..2...LX..I... |
| 8800 | 7f 59 09 00 51 01 00 00 c9 5a 09 00 fb 00 00 00 1b 5c 09 00 28 00 00 00 17 5d 09 00 95 00 00 00 | .Y..Q....Z.......\..(....]...... |
| 8820 | 40 5d 09 00 af 00 00 00 d6 5d 09 00 af 00 00 00 86 5e 09 00 76 00 00 00 36 5f 09 00 a6 00 00 00 | @].......].......^..v...6_...... |
| 8840 | ad 5f 09 00 84 01 00 00 54 60 09 00 6a 00 00 00 d9 61 09 00 b9 00 00 00 44 62 09 00 0f 01 00 00 | ._......T`..j....a......Db...... |
| 8860 | fe 62 09 00 36 00 00 00 0e 64 09 00 a5 00 00 00 45 64 09 00 a7 00 00 00 eb 64 09 00 7b 00 00 00 | .b..6....d......Ed.......d..{... |
| 8880 | 93 65 09 00 67 00 00 00 0f 66 09 00 32 00 00 00 77 66 09 00 fe 00 00 00 aa 66 09 00 9d 00 00 00 | .e..g....f..2...wf.......f...... |
| 88a0 | a9 67 09 00 bb 00 00 00 47 68 09 00 77 00 00 00 03 69 09 00 bf 00 00 00 7b 69 09 00 c7 00 00 00 | .g......Gh..w....i......{i...... |
| 88c0 | 3b 6a 09 00 cc 00 00 00 03 6b 09 00 d1 00 00 00 d0 6b 09 00 2d 04 00 00 a2 6c 09 00 5d 00 00 00 | ;j.......k.......k..-....l..]... |
| 88e0 | d0 70 09 00 e3 00 00 00 2e 71 09 00 cf 00 00 00 12 72 09 00 07 01 00 00 e2 72 09 00 10 01 00 00 | .p.......q.......r.......r...... |
| 8900 | ea 73 09 00 9c 00 00 00 fb 74 09 00 8a 00 00 00 98 75 09 00 97 00 00 00 23 76 09 00 40 00 00 00 | .s.......t.......u......#v..@... |
| 8920 | bb 76 09 00 f0 00 00 00 fc 76 09 00 0b 01 00 00 ed 77 09 00 37 01 00 00 f9 78 09 00 75 01 00 00 | .v.......v.......w..7....x..u... |
| 8940 | 31 7a 09 00 97 01 00 00 a7 7b 09 00 f0 00 00 00 3f 7d 09 00 01 01 00 00 30 7e 09 00 aa 00 00 00 | 1z.......{......?}......0~...... |
| 8960 | 32 7f 09 00 69 00 00 00 dd 7f 09 00 6b 00 00 00 47 80 09 00 df 00 00 00 b3 80 09 00 44 00 00 00 | 2...i.......k...G...........D... |
| 8980 | 93 81 09 00 ec 00 00 00 d8 81 09 00 86 00 00 00 c5 82 09 00 d5 00 00 00 4c 83 09 00 b9 00 00 00 | ........................L....... |
| 89a0 | 22 84 09 00 a6 00 00 00 dc 84 09 00 c8 00 00 00 83 85 09 00 71 00 00 00 4c 86 09 00 2c 01 00 00 | "...................q...L...,... |
| 89c0 | be 86 09 00 84 00 00 00 eb 87 09 00 00 01 00 00 70 88 09 00 e5 00 00 00 71 89 09 00 2d 01 00 00 | ................p.......q...-... |
| 89e0 | 57 8a 09 00 12 01 00 00 85 8b 09 00 f2 00 00 00 98 8c 09 00 a4 00 00 00 8b 8d 09 00 90 01 00 00 | W............................... |
| 8a00 | 30 8e 09 00 a2 00 00 00 c1 8f 09 00 b3 01 00 00 64 90 09 00 53 00 00 00 18 92 09 00 5f 00 00 00 | 0...............d...S......._... |
| 8a20 | 6c 92 09 00 80 00 00 00 cc 92 09 00 81 00 00 00 4d 93 09 00 8f 00 00 00 cf 93 09 00 7b 00 00 00 | l...............M...........{... |
| 8a40 | 5f 94 09 00 7a 00 00 00 db 94 09 00 f3 00 00 00 56 95 09 00 f2 00 00 00 4a 96 09 00 3a 00 00 00 | _...z...........V.......J...:... |
| 8a60 | 3d 97 09 00 3a 00 00 00 78 97 09 00 41 00 00 00 b3 97 09 00 67 00 00 00 f5 97 09 00 42 00 00 00 | =...:...x...A.......g.......B... |
| 8a80 | 5d 98 09 00 38 00 00 00 a0 98 09 00 53 00 00 00 d9 98 09 00 5c 00 00 00 2d 99 09 00 e1 01 00 00 | ]...8.......S.......\...-....... |
| 8aa0 | 8a 99 09 00 bb 00 00 00 6c 9b 09 00 41 00 00 00 28 9c 09 00 e7 00 00 00 6a 9c 09 00 21 01 00 00 | ........l...A...(.......j...!... |
| 8ac0 | 52 9d 09 00 4d 00 00 00 74 9e 09 00 96 00 00 00 c2 9e 09 00 80 00 00 00 59 9f 09 00 e5 00 00 00 | R...M...t...............Y....... |
| 8ae0 | da 9f 09 00 da 00 00 00 c0 a0 09 00 a4 00 00 00 9b a1 09 00 66 00 00 00 40 a2 09 00 ad 00 00 00 | ....................f...@....... |
| 8b00 | a7 a2 09 00 17 00 00 00 55 a3 09 00 16 00 00 00 6d a3 09 00 16 00 00 00 84 a3 09 00 1c 00 00 00 | ........U.......m............... |
| 8b20 | 9b a3 09 00 1d 00 00 00 b8 a3 09 00 14 00 00 00 d6 a3 09 00 13 00 00 00 eb a3 09 00 14 00 00 00 | ................................ |
| 8b40 | ff a3 09 00 22 00 00 00 14 a4 09 00 3f 00 00 00 37 a4 09 00 16 00 00 00 77 a4 09 00 52 00 00 00 | ....".......?...7.......w...R... |
| 8b60 | 8e a4 09 00 89 00 00 00 e1 a4 09 00 4b 00 00 00 6b a5 09 00 0d 01 00 00 b7 a5 09 00 41 00 00 00 | ............K...k...........A... |
| 8b80 | c5 a6 09 00 6d 00 00 00 07 a7 09 00 8d 00 00 00 75 a7 09 00 6a 00 00 00 03 a8 09 00 32 00 00 00 | ....m...........u...j.......2... |
| 8ba0 | 6e a8 09 00 61 00 00 00 a1 a8 09 00 8d 00 00 00 03 a9 09 00 8e 00 00 00 91 a9 09 00 47 00 00 00 | n...a.......................G... |
| 8bc0 | 20 aa 09 00 40 00 00 00 68 aa 09 00 6c 00 00 00 a9 aa 09 00 4c 00 00 00 16 ab 09 00 3f 00 00 00 | ....@...h...l.......L.......?... |
| 8be0 | 63 ab 09 00 2a 00 00 00 a3 ab 09 00 00 01 00 00 ce ab 09 00 1c 01 00 00 cf ac 09 00 a2 00 00 00 | c...*........................... |
| 8c00 | ec ad 09 00 97 00 00 00 8f ae 09 00 59 00 00 00 27 af 09 00 62 00 00 00 81 af 09 00 1a 00 00 00 | ............Y...'...b........... |
| 8c20 | e4 af 09 00 1c 00 00 00 ff af 09 00 bb 00 00 00 1c b0 09 00 32 00 00 00 d8 b0 09 00 73 00 00 00 | ....................2.......s... |
| 8c40 | 0b b1 09 00 61 00 00 00 7f b1 09 00 76 00 00 00 e1 b1 09 00 47 00 00 00 58 b2 09 00 43 01 00 00 | ....a.......v.......G...X...C... |
| 8c60 | a0 b2 09 00 7d 00 00 00 e4 b3 09 00 e5 00 00 00 62 b4 09 00 11 00 00 00 48 b5 09 00 63 00 00 00 | ....}...........b.......H...c... |
| 8c80 | 5a b5 09 00 c6 00 00 00 be b5 09 00 8e 00 00 00 85 b6 09 00 2a 00 00 00 14 b7 09 00 98 00 00 00 | Z...................*........... |
| 8ca0 | 3f b7 09 00 bd 00 00 00 d8 b7 09 00 44 00 00 00 96 b8 09 00 a0 00 00 00 db b8 09 00 ca 00 00 00 | ?...........D................... |
| 8cc0 | 7c b9 09 00 c9 00 00 00 47 ba 09 00 41 00 00 00 11 bb 09 00 76 00 00 00 53 bb 09 00 c7 00 00 00 | |.......G...A.......v...S....... |
| 8ce0 | ca bb 09 00 58 00 00 00 92 bc 09 00 23 00 00 00 eb bc 09 00 76 00 00 00 0f bd 09 00 36 00 00 00 | ....X.......#.......v.......6... |
| 8d00 | 86 bd 09 00 97 00 00 00 bd bd 09 00 c0 00 00 00 55 be 09 00 8b 00 00 00 16 bf 09 00 2c 00 00 00 | ................U...........,... |
| 8d20 | a2 bf 09 00 2b 00 00 00 cf bf 09 00 2e 00 00 00 fb bf 09 00 33 00 00 00 2a c0 09 00 fc 00 00 00 | ....+...............3...*....... |
| 8d40 | 5e c0 09 00 e9 00 00 00 5b c1 09 00 31 00 00 00 45 c2 09 00 26 00 00 00 77 c2 09 00 4d 00 00 00 | ^.......[...1...E...&...w...M... |
| 8d60 | 9e c2 09 00 60 00 00 00 ec c2 09 00 20 01 00 00 4d c3 09 00 1d 00 00 00 6e c4 09 00 89 00 00 00 | ....`...........M.......n....... |
| 8d80 | 8c c4 09 00 be 00 00 00 16 c5 09 00 60 01 00 00 d5 c5 09 00 80 00 00 00 36 c7 09 00 78 00 00 00 | ............`...........6...x... |
| 8da0 | b7 c7 09 00 7e 00 00 00 30 c8 09 00 7b 00 00 00 af c8 09 00 29 00 00 00 2b c9 09 00 e9 00 00 00 | ....~...0...{.......)...+....... |
| 8dc0 | 55 c9 09 00 3d 00 00 00 3f ca 09 00 6f 00 00 00 7d ca 09 00 3b 00 00 00 ed ca 09 00 a5 00 00 00 | U...=...?...o...}...;........... |
| 8de0 | 29 cb 09 00 2d 01 00 00 cf cb 09 00 2c 01 00 00 fd cc 09 00 dd 00 00 00 2a ce 09 00 64 00 00 00 | )...-.......,...........*...d... |
| 8e00 | 08 cf 09 00 d6 00 00 00 6d cf 09 00 42 01 00 00 44 d0 09 00 41 01 00 00 87 d1 09 00 be 00 00 00 | ........m...B...D...A........... |
| 8e20 | c9 d2 09 00 40 00 00 00 88 d3 09 00 77 00 00 00 c9 d3 09 00 79 00 00 00 41 d4 09 00 76 00 00 00 | ....@.......w.......y...A...v... |
| 8e40 | bb d4 09 00 79 00 00 00 32 d5 09 00 6f 00 00 00 ac d5 09 00 d3 00 00 00 1c d6 09 00 41 00 00 00 | ....y...2...o...............A... |
| 8e60 | f0 d6 09 00 14 00 00 00 32 d7 09 00 23 01 00 00 47 d7 09 00 9d 01 00 00 6b d8 09 00 48 00 00 00 | ........2...#...G.......k...H... |
| 8e80 | 09 da 09 00 2c 00 00 00 52 da 09 00 bb 00 00 00 7f da 09 00 23 00 00 00 3b db 09 00 3d 00 00 00 | ....,...R...........#...;...=... |
| 8ea0 | 5f db 09 00 42 00 00 00 9d db 09 00 5b 00 00 00 e0 db 09 00 6b 00 00 00 3c dc 09 00 30 00 00 00 | _...B.......[.......k...<...0... |
| 8ec0 | a8 dc 09 00 3d 00 00 00 d9 dc 09 00 2c 00 00 00 17 dd 09 00 56 00 00 00 44 dd 09 00 56 00 00 00 | ....=.......,.......V...D...V... |
| 8ee0 | 9b dd 09 00 54 00 00 00 f2 dd 09 00 38 00 00 00 47 de 09 00 3d 00 00 00 80 de 09 00 3a 00 00 00 | ....T.......8...G...=.......:... |
| 8f00 | be de 09 00 3c 00 00 00 f9 de 09 00 44 00 00 00 36 df 09 00 34 00 00 00 7b df 09 00 32 01 00 00 | ....<.......D...6...4...{...2... |
| 8f20 | b0 df 09 00 30 00 00 00 e3 e0 09 00 dd 00 00 00 14 e1 09 00 09 00 00 00 f2 e1 09 00 d6 00 00 00 | ....0........................... |
| 8f40 | fc e1 09 00 49 00 00 00 d3 e2 09 00 47 00 00 00 1d e3 09 00 44 00 00 00 65 e3 09 00 4a 00 00 00 | ....I.......G.......D...e...J... |
| 8f60 | aa e3 09 00 26 00 00 00 f5 e3 09 00 1f 00 00 00 1c e4 09 00 74 00 00 00 3c e4 09 00 3d 00 00 00 | ....&...............t...<...=... |
| 8f80 | b1 e4 09 00 12 00 00 00 ef e4 09 00 30 00 00 00 02 e5 09 00 45 00 00 00 33 e5 09 00 2e 00 00 00 | ............0.......E...3....... |
| 8fa0 | 79 e5 09 00 06 00 00 00 a8 e5 09 00 65 00 00 00 af e5 09 00 4e 00 00 00 15 e6 09 00 b1 00 00 00 | y...........e.......N........... |
| 8fc0 | 64 e6 09 00 9b 00 00 00 16 e7 09 00 91 00 00 00 b2 e7 09 00 ae 00 00 00 44 e8 09 00 22 00 00 00 | d.......................D..."... |
| 8fe0 | f3 e8 09 00 aa 00 00 00 16 e9 09 00 39 01 00 00 c1 e9 09 00 5c 00 00 00 fb ea 09 00 75 00 00 00 | ............9.......\.......u... |
| 9000 | 58 eb 09 00 7d 00 00 00 ce eb 09 00 74 00 00 00 4c ec 09 00 58 00 00 00 c1 ec 09 00 5c 00 00 00 | X...}.......t...L...X.......\... |
| 9020 | 1a ed 09 00 6f 00 00 00 77 ed 09 00 99 00 00 00 e7 ed 09 00 9d 00 00 00 81 ee 09 00 80 00 00 00 | ....o...w....................... |
| 9040 | 1f ef 09 00 84 00 00 00 a0 ef 09 00 54 00 00 00 25 f0 09 00 4c 00 00 00 7a f0 09 00 51 00 00 00 | ............T...%...L...z...Q... |
| 9060 | c7 f0 09 00 d7 00 00 00 19 f1 09 00 68 00 00 00 f1 f1 09 00 62 00 00 00 5a f2 09 00 5e 00 00 00 | ............h.......b...Z...^... |
| 9080 | bd f2 09 00 3c 00 00 00 1c f3 09 00 77 00 00 00 59 f3 09 00 40 00 00 00 d1 f3 09 00 d7 00 00 00 | ....<.......w...Y...@........... |
| 90a0 | 12 f4 09 00 b3 00 00 00 ea f4 09 00 66 00 00 00 9e f5 09 00 37 00 00 00 05 f6 09 00 6a 00 00 00 | ............f.......7.......j... |
| 90c0 | 3d f6 09 00 42 00 00 00 a8 f6 09 00 3d 00 00 00 eb f6 09 00 38 00 00 00 29 f7 09 00 3d 00 00 00 | =...B.......=.......8...)...=... |
| 90e0 | 62 f7 09 00 40 00 00 00 a0 f7 09 00 48 01 00 00 e1 f7 09 00 4a 01 00 00 2a f9 09 00 52 00 00 00 | b...@.......H.......J...*...R... |
| 9100 | 75 fa 09 00 51 00 00 00 c8 fa 09 00 d9 00 00 00 1a fb 09 00 c9 00 00 00 f4 fb 09 00 4f 00 00 00 | u...Q.......................O... |
| 9120 | be fc 09 00 67 00 00 00 0e fd 09 00 8d 00 00 00 76 fd 09 00 49 00 00 00 04 fe 09 00 a0 01 00 00 | ....g...........v...I........... |
| 9140 | 4e fe 09 00 87 00 00 00 ef ff 09 00 5f 00 00 00 77 00 0a 00 fa 00 00 00 d7 00 0a 00 54 00 00 00 | N..........._...w...........T... |
| 9160 | d2 01 0a 00 25 00 00 00 27 02 0a 00 49 00 00 00 4d 02 0a 00 92 00 00 00 97 02 0a 00 54 00 00 00 | ....%...'...I...M...........T... |
| 9180 | 2a 03 0a 00 96 00 00 00 7f 03 0a 00 d0 00 00 00 16 04 0a 00 2a 00 00 00 e7 04 0a 00 1c 00 00 00 | *...................*........... |
| 91a0 | 12 05 0a 00 1f 00 00 00 2f 05 0a 00 32 00 00 00 4f 05 0a 00 12 01 00 00 82 05 0a 00 71 00 00 00 | ......../...2...O...........q... |
| 91c0 | 95 06 0a 00 5f 00 00 00 07 07 0a 00 69 00 00 00 67 07 0a 00 a5 00 00 00 d1 07 0a 00 a7 00 00 00 | ...._.......i...g............... |
| 91e0 | 77 08 0a 00 45 00 00 00 1f 09 0a 00 09 00 00 00 65 09 0a 00 2c 00 00 00 6f 09 0a 00 1f 00 00 00 | w...E...........e...,...o....... |
| 9200 | 9c 09 0a 00 0e 00 00 00 bc 09 0a 00 05 00 00 00 cb 09 0a 00 83 00 00 00 d1 09 0a 00 44 02 00 00 | ............................D... |
| 9220 | 55 0a 0a 00 dc 00 00 00 9a 0c 0a 00 8a 01 00 00 77 0d 0a 00 8e 01 00 00 02 0f 0a 00 0f 00 00 00 | U...............w............... |
| 9240 | 91 10 0a 00 93 00 00 00 a1 10 0a 00 13 00 00 00 35 11 0a 00 0e 00 00 00 49 11 0a 00 60 00 00 00 | ................5.......I...`... |
| 9260 | 58 11 0a 00 5e 00 00 00 b9 11 0a 00 a6 00 00 00 18 12 0a 00 9e 00 00 00 bf 12 0a 00 97 00 00 00 | X...^........................... |
| 9280 | 5e 13 0a 00 19 00 00 00 f6 13 0a 00 b8 00 00 00 10 14 0a 00 71 01 00 00 c9 14 0a 00 12 00 00 00 | ^...................q........... |
| 92a0 | 3b 16 0a 00 60 01 00 00 4e 16 0a 00 11 00 00 00 af 17 0a 00 0f 00 00 00 c1 17 0a 00 0f 00 00 00 | ;...`...N....................... |
| 92c0 | d1 17 0a 00 06 00 00 00 e1 17 0a 00 0b 00 00 00 e8 17 0a 00 35 00 00 00 f4 17 0a 00 27 00 00 00 | ....................5.......'... |
| 92e0 | 2a 18 0a 00 28 00 00 00 52 18 0a 00 44 00 00 00 7b 18 0a 00 60 00 00 00 c0 18 0a 00 63 00 00 00 | *...(...R...D...{...`.......c... |
| 9300 | 21 19 0a 00 3f 00 00 00 85 19 0a 00 5f 00 00 00 c5 19 0a 00 25 01 00 00 25 1a 0a 00 e1 00 00 00 | !...?......._.......%...%....... |
| 9320 | 4b 1b 0a 00 7c 00 00 00 2d 1c 0a 00 13 00 00 00 aa 1c 0a 00 1f 00 00 00 be 1c 0a 00 17 00 00 00 | K...|...-....................... |
| 9340 | de 1c 0a 00 15 00 00 00 f6 1c 0a 00 12 00 00 00 0c 1d 0a 00 29 00 00 00 1f 1d 0a 00 0d 00 00 00 | ....................)........... |
| 9360 | 49 1d 0a 00 38 00 00 00 57 1d 0a 00 af 00 00 00 90 1d 0a 00 0e 00 00 00 40 1e 0a 00 a3 01 00 00 | I...8...W...............@....... |
| 9380 | 4f 1e 0a 00 07 00 00 00 f3 1f 0a 00 0c 00 00 00 fb 1f 0a 00 0d 00 00 00 08 20 0a 00 1b 00 00 00 | O............................... |
| 93a0 | 16 20 0a 00 05 00 00 00 32 20 0a 00 46 01 00 00 38 20 0a 00 9b 01 00 00 7f 21 0a 00 06 00 00 00 | ........2...F...8........!...... |
| 93c0 | 1b 23 0a 00 16 00 00 00 22 23 0a 00 15 00 00 00 39 23 0a 00 07 00 00 00 4f 23 0a 00 9c 00 00 00 | .#......"#......9#......O#...... |
| 93e0 | 57 23 0a 00 15 00 00 00 f4 23 0a 00 2e 00 00 00 0a 24 0a 00 49 00 00 00 39 24 0a 00 e2 00 00 00 | W#.......#.......$..I...9$...... |
| 9400 | 83 24 0a 00 58 00 00 00 66 25 0a 00 23 00 00 00 bf 25 0a 00 22 00 00 00 e3 25 0a 00 15 00 00 00 | .$..X...f%..#....%.."....%...... |
| 9420 | 06 26 0a 00 14 00 00 00 1c 26 0a 00 66 00 00 00 31 26 0a 00 25 00 00 00 98 26 0a 00 26 00 00 00 | .&.......&..f...1&..%....&..&... |
| 9440 | be 26 0a 00 0f 00 00 00 e5 26 0a 00 20 00 00 00 f5 26 0a 00 13 00 00 00 16 27 0a 00 39 00 00 00 | .&.......&.......&.......'..9... |
| 9460 | 2a 27 0a 00 59 00 00 00 64 27 0a 00 3e 00 00 00 be 27 0a 00 00 01 00 00 fd 27 0a 00 55 00 00 00 | *'..Y...d'..>....'.......'..U... |
| 9480 | fe 28 0a 00 6f 00 00 00 54 29 0a 00 54 00 00 00 c4 29 0a 00 6e 00 00 00 19 2a 0a 00 5d 00 00 00 | .(..o...T)..T....)..n....*..]... |
| 94a0 | 88 2a 0a 00 77 00 00 00 e6 2a 0a 00 51 00 00 00 5e 2b 0a 00 6b 00 00 00 b0 2b 0a 00 55 00 00 00 | .*..w....*..Q...^+..k....+..U... |
| 94c0 | 1c 2c 0a 00 6f 00 00 00 72 2c 0a 00 52 00 00 00 e2 2c 0a 00 6c 00 00 00 35 2d 0a 00 1a 00 00 00 | .,..o...r,..R....,..l...5-...... |
| 94e0 | a2 2d 0a 00 44 00 00 00 bd 2d 0a 00 36 00 00 00 02 2e 0a 00 46 00 00 00 39 2e 0a 00 2c 00 00 00 | .-..D....-..6.......F...9...,... |
| 9500 | 80 2e 0a 00 22 00 00 00 ad 2e 0a 00 88 00 00 00 d0 2e 0a 00 30 00 00 00 59 2f 0a 00 43 00 00 00 | ...."...............0...Y/..C... |
| 9520 | 8a 2f 0a 00 18 00 00 00 ce 2f 0a 00 28 00 00 00 e7 2f 0a 00 2f 00 00 00 10 30 0a 00 7f 00 00 00 | ./......./..(..../../....0...... |
| 9540 | 40 30 0a 00 68 00 00 00 c0 30 0a 00 8c 00 00 00 29 31 0a 00 9a 00 00 00 b6 31 0a 00 8a 00 00 00 | @0..h....0......)1.......1...... |
| 9560 | 51 32 0a 00 78 00 00 00 dc 32 0a 00 59 00 00 00 55 33 0a 00 4f 00 00 00 af 33 0a 00 19 01 00 00 | Q2..x....2..Y...U3..O....3...... |
| 9580 | ff 33 0a 00 24 01 00 00 19 35 0a 00 22 01 00 00 3e 36 0a 00 08 01 00 00 61 37 0a 00 f8 00 00 00 | .3..$....5.."...>6......a7...... |
| 95a0 | 6a 38 0a 00 f7 00 00 00 63 39 0a 00 f9 00 00 00 5b 3a 0a 00 f7 00 00 00 55 3b 0a 00 fc 00 00 00 | j8......c9......[:......U;...... |
| 95c0 | 4d 3c 0a 00 f7 00 00 00 4a 3d 0a 00 fc 00 00 00 42 3e 0a 00 f7 00 00 00 3f 3f 0a 00 c4 00 00 00 | M<......J=......B>......??...... |
| 95e0 | 37 40 0a 00 a1 00 00 00 fc 40 0a 00 73 00 00 00 9e 41 0a 00 f8 00 00 00 12 42 0a 00 4e 00 00 00 | 7@.......@..s....A.......B..N... |
| 9600 | 0b 43 0a 00 99 00 00 00 5a 43 0a 00 4b 00 00 00 f4 43 0a 00 5b 00 00 00 40 44 0a 00 40 00 00 00 | .C......ZC..K....C..[...@D..@... |
| 9620 | 9c 44 0a 00 99 00 00 00 dd 44 0a 00 4a 00 00 00 77 45 0a 00 4a 00 00 00 c2 45 0a 00 50 00 00 00 | .D.......D..J...wE..J....E..P... |
| 9640 | 0d 46 0a 00 47 00 00 00 5e 46 0a 00 44 01 00 00 a6 46 0a 00 45 01 00 00 eb 47 0a 00 44 01 00 00 | .F..G...^F..D....F..E....G..D... |
| 9660 | 31 49 0a 00 49 01 00 00 76 4a 0a 00 44 01 00 00 c0 4b 0a 00 45 01 00 00 05 4d 0a 00 44 01 00 00 | 1I..I...vJ..D....K..E....M..D... |
| 9680 | 4b 4e 0a 00 3c 01 00 00 90 4f 0a 00 a0 00 00 00 cd 50 0a 00 30 01 00 00 6e 51 0a 00 50 01 00 00 | KN..<....O.......P..0...nQ..P... |
| 96a0 | 9f 52 0a 00 d1 00 00 00 f0 53 0a 00 23 01 00 00 c2 54 0a 00 08 01 00 00 e6 55 0a 00 29 01 00 00 | .R.......S..#....T.......U..)... |
| 96c0 | ef 56 0a 00 2f 01 00 00 19 58 0a 00 da 00 00 00 49 59 0a 00 34 01 00 00 24 5a 0a 00 89 00 00 00 | .V../....X......IY..4...$Z...... |
| 96e0 | 59 5b 0a 00 66 00 00 00 e3 5b 0a 00 88 00 00 00 4a 5c 0a 00 a5 00 00 00 d3 5c 0a 00 70 00 00 00 | Y[..f....[......J\.......\..p... |
| 9700 | 79 5d 0a 00 6f 00 00 00 ea 5d 0a 00 8e 00 00 00 5a 5e 0a 00 b0 00 00 00 e9 5e 0a 00 0f 01 00 00 | y]..o....]......Z^.......^...... |
| 9720 | 9a 5f 0a 00 c3 00 00 00 aa 60 0a 00 84 00 00 00 6e 61 0a 00 be 00 00 00 f3 61 0a 00 db 00 00 00 | ._.......`......na.......a...... |
| 9740 | b2 62 0a 00 85 00 00 00 8e 63 0a 00 7d 00 00 00 14 64 0a 00 9a 00 00 00 92 64 0a 00 92 00 00 00 | .b.......c..}....d.......d...... |
| 9760 | 2d 65 0a 00 91 00 00 00 c0 65 0a 00 d5 00 00 00 52 66 0a 00 93 00 00 00 28 67 0a 00 8e 00 00 00 | -e.......e......Rf......(g...... |
| 9780 | bc 67 0a 00 fa 00 00 00 4b 68 0a 00 bd 00 00 00 46 69 0a 00 f5 00 00 00 04 6a 0a 00 a6 00 00 00 | .g......Kh......Fi.......j...... |
| 97a0 | fa 6a 0a 00 a1 00 00 00 a1 6b 0a 00 7b 00 00 00 43 6c 0a 00 fc 00 00 00 bf 6c 0a 00 fd 00 00 00 | .j.......k..{...Cl.......l...... |
| 97c0 | bc 6d 0a 00 19 01 00 00 ba 6e 0a 00 9d 00 00 00 d4 6f 0a 00 be 01 00 00 72 70 0a 00 b1 00 00 00 | .m.......n.......o......rp...... |
| 97e0 | 31 72 0a 00 5b 00 00 00 e3 72 0a 00 63 00 00 00 3f 73 0a 00 33 01 00 00 a3 73 0a 00 3b 00 00 00 | 1r..[....r..c...?s..3....s..;... |
| 9800 | d7 74 0a 00 98 00 00 00 13 75 0a 00 54 00 00 00 ac 75 0a 00 59 00 00 00 01 76 0a 00 de 00 00 00 | .t.......u..T....u..Y....v...... |
| 9820 | 5b 76 0a 00 9a 00 00 00 3a 77 0a 00 2b 00 00 00 d5 77 0a 00 c0 00 00 00 01 78 0a 00 c5 00 00 00 | [v......:w..+....w.......x...... |
| 9840 | c2 78 0a 00 3a 00 00 00 88 79 0a 00 35 00 00 00 c3 79 0a 00 87 00 00 00 f9 79 0a 00 5c 00 00 00 | .x..:....y..5....y.......y..\... |
| 9860 | 81 7a 0a 00 74 00 00 00 de 7a 0a 00 da 00 00 00 53 7b 0a 00 f0 00 00 00 2e 7c 0a 00 84 00 00 00 | .z..t....z......S{.......|...... |
| 9880 | 1f 7d 0a 00 f0 00 00 00 a4 7d 0a 00 f0 00 00 00 95 7e 0a 00 f0 00 00 00 86 7f 0a 00 f1 00 00 00 | .}.......}.......~.............. |
| 98a0 | 77 80 0a 00 5f 00 00 00 69 81 0a 00 83 00 00 00 c9 81 0a 00 bd 00 00 00 4d 82 0a 00 79 00 00 00 | w..._...i...............M...y... |
| 98c0 | 0b 83 0a 00 7e 00 00 00 85 83 0a 00 36 00 00 00 04 84 0a 00 78 00 00 00 3b 84 0a 00 85 00 00 00 | ....~.......6.......x...;....... |
| 98e0 | b4 84 0a 00 51 00 00 00 3a 85 0a 00 3e 00 00 00 8c 85 0a 00 3e 00 00 00 cb 85 0a 00 75 00 00 00 | ....Q...:...>.......>.......u... |
| 9900 | 0a 86 0a 00 53 00 00 00 80 86 0a 00 df 00 00 00 d4 86 0a 00 a1 00 00 00 b4 87 0a 00 ac 00 00 00 | ....S........................... |
| 9920 | 56 88 0a 00 3b 00 00 00 03 89 0a 00 47 00 00 00 3f 89 0a 00 67 00 00 00 87 89 0a 00 d8 00 00 00 | V...;.......G...?...g........... |
| 9940 | ef 89 0a 00 5a 00 00 00 c8 8a 0a 00 38 00 00 00 23 8b 0a 00 88 01 00 00 5c 8b 0a 00 c5 00 00 00 | ....Z.......8...#.......\....... |
| 9960 | e5 8c 0a 00 a1 00 00 00 ab 8d 0a 00 6d 00 00 00 4d 8e 0a 00 4e 00 00 00 bb 8e 0a 00 54 00 00 00 | ............m...M...N.......T... |
| 9980 | 0a 8f 0a 00 3d 00 00 00 5f 8f 0a 00 8a 00 00 00 9d 8f 0a 00 6f 00 00 00 28 90 0a 00 2e 00 00 00 | ....=..._...........o...(....... |
| 99a0 | 98 90 0a 00 31 00 00 00 c7 90 0a 00 3c 00 00 00 f9 90 0a 00 17 01 00 00 36 91 0a 00 db 00 00 00 | ....1.......<...........6....... |
| 99c0 | 4e 92 0a 00 49 00 00 00 2a 93 0a 00 4a 00 00 00 74 93 0a 00 49 00 00 00 bf 93 0a 00 49 00 00 00 | N...I...*...J...t...I.......I... |
| 99e0 | 09 94 0a 00 0b 01 00 00 53 94 0a 00 51 00 00 00 5f 95 0a 00 96 00 00 00 b1 95 0a 00 5d 00 00 00 | ........S...Q..._...........]... |
| 9a00 | 48 96 0a 00 49 00 00 00 a6 96 0a 00 46 00 00 00 f0 96 0a 00 37 00 00 00 37 97 0a 00 38 01 00 00 | H...I.......F.......7...7...8... |
| 9a20 | 6f 97 0a 00 31 00 00 00 a8 98 0a 00 30 00 00 00 da 98 0a 00 39 00 00 00 0b 99 0a 00 33 00 00 00 | o...1.......0.......9.......3... |
| 9a40 | 45 99 0a 00 33 00 00 00 79 99 0a 00 49 00 00 00 ad 99 0a 00 d9 00 00 00 f7 99 0a 00 78 00 00 00 | E...3...y...I...............x... |
| 9a60 | d1 9a 0a 00 79 00 00 00 4a 9b 0a 00 8c 00 00 00 c4 9b 0a 00 47 00 00 00 51 9c 0a 00 fb 00 00 00 | ....y...J...........G...Q....... |
| 9a80 | 99 9c 0a 00 b7 00 00 00 95 9d 0a 00 5b 00 00 00 4d 9e 0a 00 b7 00 00 00 a9 9e 0a 00 42 00 00 00 | ............[...M...........B... |
| 9aa0 | 61 9f 0a 00 46 00 00 00 a4 9f 0a 00 30 00 00 00 eb 9f 0a 00 39 00 00 00 1c a0 0a 00 25 00 00 00 | a...F.......0.......9.......%... |
| 9ac0 | 56 a0 0a 00 2e 00 00 00 7c a0 0a 00 2e 00 00 00 ab a0 0a 00 39 00 00 00 da a0 0a 00 c1 00 00 00 | V.......|...........9........... |
| 9ae0 | 14 a1 0a 00 8c 00 00 00 d6 a1 0a 00 b5 00 00 00 63 a2 0a 00 42 00 00 00 19 a3 0a 00 a5 00 00 00 | ................c...B........... |
| 9b00 | 5c a3 0a 00 b9 00 00 00 02 a4 0a 00 3e 00 00 00 bc a4 0a 00 74 00 00 00 fb a4 0a 00 6c 00 00 00 | \...........>.......t.......l... |
| 9b20 | 70 a5 0a 00 81 00 00 00 dd a5 0a 00 19 00 00 00 5f a6 0a 00 23 00 00 00 79 a6 0a 00 b7 00 00 00 | p..............._...#...y....... |
| 9b40 | 9d a6 0a 00 dc 00 00 00 55 a7 0a 00 13 00 00 00 32 a8 0a 00 54 00 00 00 46 a8 0a 00 5f 01 00 00 | ........U.......2...T...F..._... |
| 9b60 | 9b a8 0a 00 63 01 00 00 fb a9 0a 00 17 00 00 00 5f ab 0a 00 1a 00 00 00 77 ab 0a 00 1d 00 00 00 | ....c..........._.......w....... |
| 9b80 | 92 ab 0a 00 a2 00 00 00 b0 ab 0a 00 17 00 00 00 53 ac 0a 00 86 01 00 00 6b ac 0a 00 8a 00 00 00 | ................S.......k....... |
| 9ba0 | f2 ad 0a 00 5b 00 00 00 7d ae 0a 00 3b 00 00 00 d9 ae 0a 00 dd 00 00 00 15 af 0a 00 1d 01 00 00 | ....[...}...;................... |
| 9bc0 | f3 af 0a 00 32 00 00 00 11 b1 0a 00 20 00 00 00 44 b1 0a 00 5d 00 00 00 65 b1 0a 00 54 00 00 00 | ....2...........D...]...e...T... |
| 9be0 | c3 b1 0a 00 04 00 00 00 18 b2 0a 00 30 00 00 00 1d b2 0a 00 0c 00 00 00 4e b2 0a 00 0c 00 00 00 | ............0...........N....... |
| 9c00 | 5b b2 0a 00 60 00 00 00 68 b2 0a 00 09 00 00 00 c9 b2 0a 00 35 01 00 00 d3 b2 0a 00 33 01 00 00 | [...`...h...........5.......3... |
| 9c20 | 09 b4 0a 00 70 00 00 00 3d b5 0a 00 03 00 00 00 ae b5 0a 00 62 00 00 00 b2 b5 0a 00 03 00 00 00 | ....p...=...........b........... |
| 9c40 | 15 b6 0a 00 11 00 00 00 19 b6 0a 00 0b 00 00 00 2b b6 0a 00 16 00 00 00 37 b6 0a 00 19 00 00 00 | ................+.......7....... |
| 9c60 | 4e b6 0a 00 15 00 00 00 68 b6 0a 00 11 00 00 00 7e b6 0a 00 14 00 00 00 90 b6 0a 00 6a 02 00 00 | N.......h.......~...........j... |
| 9c80 | a5 b6 0a 00 3d 01 00 00 10 b9 0a 00 85 01 00 00 4e ba 0a 00 95 00 00 00 d4 bb 0a 00 d5 01 00 00 | ....=...........N............... |
| 9ca0 | 6a bc 0a 00 32 00 00 00 40 be 0a 00 1e 00 00 00 73 be 0a 00 05 00 00 00 92 be 0a 00 45 01 00 00 | j...2...@.......s...........E... |
| 9cc0 | 98 be 0a 00 16 00 00 00 de bf 0a 00 3b 00 00 00 f5 bf 0a 00 18 00 00 00 31 c0 0a 00 16 00 00 00 | ............;...........1....... |
| 9ce0 | 4a c0 0a 00 05 00 00 00 61 c0 0a 00 8e 00 00 00 67 c0 0a 00 60 00 00 00 f6 c0 0a 00 0c 00 00 00 | J.......a.......g...`........... |
| 9d00 | 57 c1 0a 00 0d 00 00 00 64 c1 0a 00 3d 00 00 00 72 c1 0a 00 3b 00 00 00 b0 c1 0a 00 07 00 00 00 | W.......d...=...r...;........... |
| 9d20 | ec c1 0a 00 10 00 00 00 f4 c1 0a 00 6c 00 00 00 05 c2 0a 00 0e 00 00 00 72 c2 0a 00 4b 00 00 00 | ............l...........r...K... |
| 9d40 | 81 c2 0a 00 47 00 00 00 cd c2 0a 00 65 00 00 00 15 c3 0a 00 a1 00 00 00 7b c3 0a 00 3f 00 00 00 | ....G.......e...........{...?... |
| 9d60 | 1d c4 0a 00 4b 01 00 00 5d c4 0a 00 4a 01 00 00 a9 c5 0a 00 44 01 00 00 f4 c6 0a 00 15 00 00 00 | ....K...]...J.......D........... |
| 9d80 | 39 c8 0a 00 24 00 00 00 4f c8 0a 00 0a 00 00 00 74 c8 0a 00 24 00 00 00 7f c8 0a 00 09 00 00 00 | 9...$...O.......t...$........... |
| 9da0 | a4 c8 0a 00 29 00 00 00 ae c8 0a 00 1b 00 00 00 d8 c8 0a 00 c9 00 00 00 f4 c8 0a 00 0b 00 00 00 | ....)........................... |
| 9dc0 | be c9 0a 00 85 00 00 00 ca c9 0a 00 26 00 00 00 50 ca 0a 00 3d 00 00 00 77 ca 0a 00 52 00 00 00 | ............&...P...=...w...R... |
| 9de0 | b5 ca 0a 00 b4 00 00 00 08 cb 0a 00 a9 00 00 00 bd cb 0a 00 26 00 00 00 67 cc 0a 00 b0 00 00 00 | ....................&...g....... |
| 9e00 | 8e cc 0a 00 de 00 00 00 3f cd 0a 00 df 00 00 00 1e ce 0a 00 1c 00 00 00 fe ce 0a 00 8f 00 00 00 | ........?....................... |
| 9e20 | 1b cf 0a 00 8c 00 00 00 ab cf 0a 00 90 00 00 00 38 d0 0a 00 5d 00 00 00 c9 d0 0a 00 44 00 00 00 | ................8...].......D... |
| 9e40 | 27 d1 0a 00 2f 00 00 00 6c d1 0a 00 b0 00 00 00 9c d1 0a 00 50 00 00 00 4d d2 0a 00 a6 00 00 00 | '.../...l...........P...M....... |
| 9e60 | 9e d2 0a 00 ec 00 00 00 45 d3 0a 00 64 00 00 00 32 d4 0a 00 53 00 00 00 97 d4 0a 00 df 00 00 00 | ........E...d...2...S........... |
| 9e80 | eb d4 0a 00 86 00 00 00 cb d5 0a 00 63 00 00 00 52 d6 0a 00 68 00 00 00 b6 d6 0a 00 d1 00 00 00 | ............c...R...h........... |
| 9ea0 | 1f d7 0a 00 6f 00 00 00 f1 d7 0a 00 8d 00 00 00 61 d8 0a 00 78 00 00 00 ef d8 0a 00 7a 00 00 00 | ....o...........a...x.......z... |
| 9ec0 | 68 d9 0a 00 7d 00 00 00 e3 d9 0a 00 80 00 00 00 61 da 0a 00 33 00 00 00 e2 da 0a 00 71 00 00 00 | h...}...........a...3.......q... |
| 9ee0 | 16 db 0a 00 db 00 00 00 88 db 0a 00 a5 00 00 00 64 dc 0a 00 75 00 00 00 0a dd 0a 00 59 00 00 00 | ................d...u.......Y... |
| 9f00 | 80 dd 0a 00 58 00 00 00 da dd 0a 00 9b 00 00 00 33 de 0a 00 c3 00 00 00 cf de 0a 00 b6 00 00 00 | ....X...........3............... |
| 9f20 | 93 df 0a 00 ba 00 00 00 4a e0 0a 00 29 00 00 00 05 e1 0a 00 9c 00 00 00 2f e1 0a 00 e3 00 00 00 | ........J...).........../....... |
| 9f40 | cc e1 0a 00 9e 00 00 00 b0 e2 0a 00 44 00 00 00 4f e3 0a 00 44 00 00 00 94 e3 0a 00 ed 00 00 00 | ............D...O...D........... |
| 9f60 | d9 e3 0a 00 3c 00 00 00 c7 e4 0a 00 bd 00 00 00 04 e5 0a 00 bf 00 00 00 c2 e5 0a 00 88 00 00 00 | ....<........................... |
| 9f80 | 82 e6 0a 00 85 00 00 00 0b e7 0a 00 6f 00 00 00 91 e7 0a 00 cf 00 00 00 01 e8 0a 00 17 00 00 00 | ............o................... |
| 9fa0 | d1 e8 0a 00 12 00 00 00 e9 e8 0a 00 18 00 00 00 fc e8 0a 00 39 00 00 00 15 e9 0a 00 1b 00 00 00 | ....................9........... |
| 9fc0 | 4f e9 0a 00 31 00 00 00 6b e9 0a 00 21 00 00 00 9d e9 0a 00 07 00 00 00 bf e9 0a 00 12 00 00 00 | O...1...k...!................... |
| 9fe0 | c7 e9 0a 00 79 00 00 00 da e9 0a 00 e5 00 00 00 54 ea 0a 00 e5 00 00 00 3a eb 0a 00 ac 00 00 00 | ....y...........T.......:....... |
| a000 | 20 ec 0a 00 84 00 00 00 cd ec 0a 00 36 01 00 00 52 ed 0a 00 5a 00 00 00 89 ee 0a 00 c4 00 00 00 | ............6...R...Z........... |
| a020 | e4 ee 0a 00 4b 00 00 00 a9 ef 0a 00 a7 00 00 00 f5 ef 0a 00 17 00 00 00 9d f0 0a 00 e8 00 00 00 | ....K........................... |
| a040 | b5 f0 0a 00 48 00 00 00 9e f1 0a 00 41 00 00 00 e7 f1 0a 00 2e 00 00 00 29 f2 0a 00 47 00 00 00 | ....H.......A...........)...G... |
| a060 | 58 f2 0a 00 3f 00 00 00 a0 f2 0a 00 9b 00 00 00 e0 f2 0a 00 9c 00 00 00 7c f3 0a 00 68 00 00 00 | X...?...................|...h... |
| a080 | 19 f4 0a 00 1b 01 00 00 82 f4 0a 00 22 00 00 00 9e f5 0a 00 08 00 00 00 c1 f5 0a 00 2a 00 00 00 | ............"...............*... |
| a0a0 | ca f5 0a 00 34 00 00 00 f5 f5 0a 00 ae 00 00 00 2a f6 0a 00 17 01 00 00 d9 f6 0a 00 79 00 00 00 | ....4...........*...........y... |
| a0c0 | f1 f7 0a 00 73 00 00 00 6b f8 0a 00 bf 00 00 00 df f8 0a 00 dc 00 00 00 9f f9 0a 00 7b 01 00 00 | ....s...k...................{... |
| a0e0 | 7c fa 0a 00 90 01 00 00 f8 fb 0a 00 13 01 00 00 89 fd 0a 00 a0 00 00 00 9d fe 0a 00 36 01 00 00 | |...........................6... |
| a100 | 3e ff 0a 00 04 02 00 00 75 00 0b 00 a7 00 00 00 7a 02 0b 00 b6 00 00 00 22 03 0b 00 ad 00 00 00 | >.......u.......z......."....... |
| a120 | d9 03 0b 00 67 00 00 00 87 04 0b 00 71 00 00 00 ef 04 0b 00 fe 00 00 00 61 05 0b 00 7d 00 00 00 | ....g.......q...........a...}... |
| a140 | 60 06 0b 00 7e 00 00 00 de 06 0b 00 6d 01 00 00 5d 07 0b 00 7a 00 00 00 cb 08 0b 00 e2 00 00 00 | `...~.......m...]...z........... |
| a160 | 46 09 0b 00 1e 01 00 00 29 0a 0b 00 56 00 00 00 48 0b 0b 00 89 00 00 00 9f 0b 0b 00 16 01 00 00 | F.......)...V...H............... |
| a180 | 29 0c 0b 00 06 01 00 00 40 0d 0b 00 b1 00 00 00 47 0e 0b 00 58 00 00 00 f9 0e 0b 00 92 00 00 00 | ).......@.......G...X........... |
| a1a0 | 52 0f 0b 00 80 00 00 00 e5 0f 0b 00 7d 00 00 00 66 10 0b 00 98 00 00 00 e4 10 0b 00 b5 00 00 00 | R...........}...f............... |
| a1c0 | 7d 11 0b 00 a2 00 00 00 33 12 0b 00 00 01 00 00 d6 12 0b 00 37 00 00 00 d7 13 0b 00 42 00 00 00 | }.......3...........7.......B... |
| a1e0 | 0f 14 0b 00 d0 00 00 00 52 14 0b 00 cf 00 00 00 23 15 0b 00 fd 00 00 00 f3 15 0b 00 3c 01 00 00 | ........R.......#...........<... |
| a200 | f1 16 0b 00 fb 00 00 00 2e 18 0b 00 bf 00 00 00 2a 19 0b 00 9e 00 00 00 ea 19 0b 00 9b 01 00 00 | ................*............... |
| a220 | 89 1a 0b 00 a4 00 00 00 25 1c 0b 00 fb 00 00 00 ca 1c 0b 00 18 01 00 00 c6 1d 0b 00 20 01 00 00 | ........%....................... |
| a240 | df 1e 0b 00 5d 00 00 00 00 20 0b 00 4b 00 00 00 5e 20 0b 00 97 00 00 00 aa 20 0b 00 57 00 00 00 | ....].......K...^...........W... |
| a260 | 42 21 0b 00 3e 00 00 00 9a 21 0b 00 b0 00 00 00 d9 21 0b 00 f1 00 00 00 8a 22 0b 00 b6 00 00 00 | B!..>....!.......!......."...... |
| a280 | 7c 23 0b 00 b8 00 00 00 33 24 0b 00 b6 00 00 00 ec 24 0b 00 b8 00 00 00 a3 25 0b 00 5d 00 00 00 | |#......3$.......$.......%..]... |
| a2a0 | 5c 26 0b 00 4a 00 00 00 ba 26 0b 00 34 00 00 00 05 27 0b 00 2c 00 00 00 3a 27 0b 00 24 00 00 00 | \&..J....&..4....'..,...:'..$... |
| a2c0 | 67 27 0b 00 41 00 00 00 8c 27 0b 00 d6 00 00 00 ce 27 0b 00 d9 00 00 00 a5 28 0b 00 ae 00 00 00 | g'..A....'.......'.......(...... |
| a2e0 | 7f 29 0b 00 cf 00 00 00 2e 2a 0b 00 59 00 00 00 fe 2a 0b 00 14 00 00 00 58 2b 0b 00 b5 00 00 00 | .).......*..Y....*......X+...... |
| a300 | 6d 2b 0b 00 c3 00 00 00 23 2c 0b 00 48 00 00 00 e7 2c 0b 00 95 00 00 00 30 2d 0b 00 62 00 00 00 | m+......#,..H....,......0-..b... |
| a320 | c6 2d 0b 00 86 00 00 00 29 2e 0b 00 fe 00 00 00 b0 2e 0b 00 41 00 00 00 af 2f 0b 00 93 00 00 00 | .-......)...........A..../...... |
| a340 | f1 2f 0b 00 09 00 00 00 85 30 0b 00 18 00 00 00 8f 30 0b 00 33 00 00 00 a8 30 0b 00 99 00 00 00 | ./.......0.......0..3....0...... |
| a360 | dc 30 0b 00 9a 00 00 00 76 31 0b 00 22 00 00 00 11 32 0b 00 16 00 00 00 34 32 0b 00 1f 00 00 00 | .0......v1.."....2......42...... |
| a380 | 4b 32 0b 00 27 00 00 00 6b 32 0b 00 30 00 00 00 93 32 0b 00 10 00 00 00 c4 32 0b 00 21 00 00 00 | K2..'...k2..0....2.......2..!... |
| a3a0 | d5 32 0b 00 1c 00 00 00 f7 32 0b 00 aa 01 00 00 14 33 0b 00 82 00 00 00 bf 34 0b 00 ac 00 00 00 | .2.......2.......3.......4...... |
| a3c0 | 42 35 0b 00 fe 00 00 00 ef 35 0b 00 60 00 00 00 ee 36 0b 00 55 00 00 00 4f 37 0b 00 51 00 00 00 | B5.......5..`....6..U...O7..Q... |
| a3e0 | a5 37 0b 00 90 01 00 00 f7 37 0b 00 86 01 00 00 88 39 0b 00 85 01 00 00 0f 3b 0b 00 01 00 00 00 | .7.......7.......9.......;...... |
| a400 | 95 3c 0b 00 76 00 00 00 97 3c 0b 00 6b 00 00 00 0e 3d 0b 00 60 00 00 00 7a 3d 0b 00 a9 00 00 00 | .<..v....<..k....=..`...z=...... |
| a420 | db 3d 0b 00 c9 00 00 00 85 3e 0b 00 9b 00 00 00 4f 3f 0b 00 c3 00 00 00 eb 3f 0b 00 3c 00 00 00 | .=.......>......O?.......?..<... |
| a440 | af 40 0b 00 38 00 00 00 ec 40 0b 00 95 00 00 00 25 41 0b 00 2e 00 00 00 bb 41 0b 00 57 00 00 00 | .@..8....@......%A.......A..W... |
| a460 | ea 41 0b 00 61 00 00 00 42 42 0b 00 69 00 00 00 a4 42 0b 00 4b 00 00 00 0e 43 0b 00 a4 00 00 00 | .A..a...BB..i....B..K....C...... |
| a480 | 5a 43 0b 00 52 00 00 00 ff 43 0b 00 53 00 00 00 52 44 0b 00 51 00 00 00 a6 44 0b 00 52 00 00 00 | ZC..R....C..S...RD..Q....D..R... |
| a4a0 | f8 44 0b 00 65 00 00 00 4b 45 0b 00 c4 00 00 00 b1 45 0b 00 35 00 00 00 76 46 0b 00 51 00 00 00 | .D..e...KE.......E..5...vF..Q... |
| a4c0 | ac 46 0b 00 a7 00 00 00 fe 46 0b 00 8a 00 00 00 a6 47 0b 00 96 00 00 00 31 48 0b 00 81 00 00 00 | .F.......F.......G......1H...... |
| a4e0 | c8 48 0b 00 7f 00 00 00 4a 49 0b 00 33 00 00 00 ca 49 0b 00 88 00 00 00 fe 49 0b 00 e3 00 00 00 | .H......JI..3....I.......I...... |
| a500 | 87 4a 0b 00 c3 00 00 00 6b 4b 0b 00 3a 00 00 00 2f 4c 0b 00 5a 00 00 00 6a 4c 0b 00 65 00 00 00 | .J......kK..:.../L..Z...jL..e... |
| a520 | c5 4c 0b 00 c3 00 00 00 2b 4d 0b 00 db 00 00 00 ef 4d 0b 00 50 00 00 00 cb 4e 0b 00 4d 00 00 00 | .L......+M.......M..P....N..M... |
| a540 | 1c 4f 0b 00 06 01 00 00 6a 4f 0b 00 1d 01 00 00 71 50 0b 00 f2 00 00 00 8f 51 0b 00 48 00 00 00 | .O......jO......qP.......Q..H... |
| a560 | 82 52 0b 00 b0 00 00 00 cb 52 0b 00 9f 00 00 00 7c 53 0b 00 1f 00 00 00 1c 54 0b 00 71 00 00 00 | .R.......R......|S.......T..q... |
| a580 | 3c 54 0b 00 75 00 00 00 ae 54 0b 00 75 00 00 00 24 55 0b 00 dc 00 00 00 9a 55 0b 00 3f 00 00 00 | <T..u....T..u...$U.......U..?... |
| a5a0 | 77 56 0b 00 6d 00 00 00 b7 56 0b 00 d9 00 00 00 25 57 0b 00 da 00 00 00 ff 57 0b 00 1c 00 00 00 | wV..m....V......%W.......W...... |
| a5c0 | da 58 0b 00 13 00 00 00 f7 58 0b 00 20 00 00 00 0b 59 0b 00 14 00 00 00 2c 59 0b 00 13 00 00 00 | .X.......X.......Y......,Y...... |
| a5e0 | 41 59 0b 00 03 01 00 00 55 59 0b 00 1d 00 00 00 59 5a 0b 00 1d 00 00 00 77 5a 0b 00 23 00 00 00 | AY......UY......YZ......wZ..#... |
| a600 | 95 5a 0b 00 1d 00 00 00 b9 5a 0b 00 29 00 00 00 d7 5a 0b 00 3f 01 00 00 01 5b 0b 00 31 00 00 00 | .Z.......Z..)....Z..?....[..1... |
| a620 | 41 5c 0b 00 31 00 00 00 73 5c 0b 00 33 00 00 00 a5 5c 0b 00 33 00 00 00 d9 5c 0b 00 10 00 00 00 | A\..1...s\..3....\..3....\...... |
| a640 | 0d 5d 0b 00 0c 00 00 00 1e 5d 0b 00 2d 00 00 00 2b 5d 0b 00 2c 00 00 00 59 5d 0b 00 12 00 00 00 | .].......]..-...+]..,...Y]...... |
| a660 | 86 5d 0b 00 2c 00 00 00 99 5d 0b 00 12 00 00 00 c6 5d 0b 00 25 00 00 00 d9 5d 0b 00 3c 00 00 00 | .]..,....].......]..%....]..<... |
| a680 | ff 5d 0b 00 12 00 00 00 3c 5e 0b 00 35 00 00 00 4f 5e 0b 00 13 00 00 00 85 5e 0b 00 1e 00 00 00 | .]......<^..5...O^.......^...... |
| a6a0 | 99 5e 0b 00 25 00 00 00 b8 5e 0b 00 1e 00 00 00 de 5e 0b 00 25 00 00 00 fd 5e 0b 00 1e 00 00 00 | .^..%....^.......^..%....^...... |
| a6c0 | 23 5f 0b 00 25 00 00 00 42 5f 0b 00 1f 00 00 00 68 5f 0b 00 26 00 00 00 88 5f 0b 00 21 00 00 00 | #_..%...B_......h_..&...._..!... |
| a6e0 | af 5f 0b 00 28 00 00 00 d1 5f 0b 00 34 00 00 00 fa 5f 0b 00 16 00 00 00 2f 60 0b 00 1c 00 00 00 | ._..(...._..4...._....../`...... |
| a700 | 46 60 0b 00 12 00 00 00 63 60 0b 00 12 00 00 00 76 60 0b 00 34 00 00 00 89 60 0b 00 13 00 00 00 | F`......c`......v`..4....`...... |
| a720 | be 60 0b 00 1d 00 00 00 d2 60 0b 00 13 00 00 00 f0 60 0b 00 30 00 00 00 04 61 0b 00 1f 00 00 00 | .`.......`.......`..0....a...... |
| a740 | 35 61 0b 00 1f 00 00 00 55 61 0b 00 13 00 00 00 75 61 0b 00 16 00 00 00 89 61 0b 00 25 01 00 00 | 5a......Ua......ua.......a..%... |
| a760 | a0 61 0b 00 d3 00 00 00 c6 62 0b 00 26 00 00 00 9a 63 0b 00 55 00 00 00 c1 63 0b 00 55 00 00 00 | .a.......b..&....c..U....c..U... |
| a780 | 17 64 0b 00 13 00 00 00 6d 64 0b 00 38 00 00 00 81 64 0b 00 41 00 00 00 ba 64 0b 00 16 00 00 00 | .d......md..8....d..A....d...... |
| a7a0 | fc 64 0b 00 9d 00 00 00 13 65 0b 00 41 00 00 00 b1 65 0b 00 38 00 00 00 f3 65 0b 00 1e 00 00 00 | .d.......e..A....e..8....e...... |
| a7c0 | 2c 66 0b 00 22 00 00 00 4b 66 0b 00 5d 00 00 00 6e 66 0b 00 55 00 00 00 cc 66 0b 00 1e 00 00 00 | ,f.."...Kf..]...nf..U....f...... |
| a7e0 | 22 67 0b 00 44 00 00 00 41 67 0b 00 25 00 00 00 86 67 0b 00 08 01 00 00 ac 67 0b 00 76 00 00 00 | "g..D...Ag..%....g.......g..v... |
| a800 | b5 68 0b 00 fd 01 00 00 2c 69 0b 00 21 00 00 00 2a 6b 0b 00 87 00 00 00 4c 6b 0b 00 54 00 00 00 | .h......,i..!...*k......Lk..T... |
| a820 | d4 6b 0b 00 2b 00 00 00 29 6c 0b 00 5b 00 00 00 55 6c 0b 00 45 00 00 00 b1 6c 0b 00 87 02 00 00 | .k..+...)l..[...Ul..E....l...... |
| a840 | f7 6c 0b 00 c3 00 00 00 7f 6f 0b 00 59 00 00 00 43 70 0b 00 25 00 00 00 9d 70 0b 00 1e 00 00 00 | .l.......o..Y...Cp..%....p...... |
| a860 | c3 70 0b 00 2a 00 00 00 e2 70 0b 00 2f 00 00 00 0d 71 0b 00 27 00 00 00 3d 71 0b 00 37 00 00 00 | .p..*....p../....q..'...=q..7... |
| a880 | 65 71 0b 00 54 00 00 00 9d 71 0b 00 4f 00 00 00 f2 71 0b 00 59 00 00 00 42 72 0b 00 4d 00 00 00 | eq..T....q..O....q..Y...Br..M... |
| a8a0 | 9c 72 0b 00 5f 00 00 00 ea 72 0b 00 33 00 00 00 4a 73 0b 00 64 00 00 00 7e 73 0b 00 7b 00 00 00 | .r.._....r..3...Js..d...~s..{... |
| a8c0 | e3 73 0b 00 49 00 00 00 5f 74 0b 00 1e 00 00 00 a9 74 0b 00 f3 00 00 00 c8 74 0b 00 f1 00 00 00 | .s..I..._t.......t.......t...... |
| a8e0 | bc 75 0b 00 5e 00 00 00 ae 76 0b 00 79 00 00 00 0d 77 0b 00 54 00 00 00 87 77 0b 00 43 00 00 00 | .u..^....v..y....w..T....w..C... |
| a900 | dc 77 0b 00 4f 00 00 00 20 78 0b 00 29 00 00 00 70 78 0b 00 82 00 00 00 9a 78 0b 00 22 00 00 00 | .w..O....x..)...px.......x.."... |
| a920 | 1d 79 0b 00 47 02 00 00 40 79 0b 00 47 02 00 00 88 7b 0b 00 fc 00 00 00 d0 7d 0b 00 9c 00 00 00 | .y..G...@y..G....{.......}...... |
| a940 | cd 7e 0b 00 2c 00 00 00 6a 7f 0b 00 16 00 00 00 97 7f 0b 00 53 00 00 00 ae 7f 0b 00 7d 00 00 00 | .~..,...j...........S.......}... |
| a960 | 02 80 0b 00 66 00 00 00 80 80 0b 00 68 00 00 00 e7 80 0b 00 b4 00 00 00 50 81 0b 00 4b 00 00 00 | ....f.......h...........P...K... |
| a980 | 05 82 0b 00 55 00 00 00 51 82 0b 00 22 00 00 00 a7 82 0b 00 18 00 00 00 ca 82 0b 00 31 00 00 00 | ....U...Q..."...............1... |
| a9a0 | e3 82 0b 00 1b 00 00 00 15 83 0b 00 1a 00 00 00 31 83 0b 00 17 00 00 00 4c 83 0b 00 17 00 00 00 | ................1.......L....... |
| a9c0 | 64 83 0b 00 17 00 00 00 7c 83 0b 00 35 00 00 00 94 83 0b 00 41 00 00 00 ca 83 0b 00 25 00 00 00 | d.......|...5.......A.......%... |
| a9e0 | 0c 84 0b 00 2d 00 00 00 32 84 0b 00 3e 00 00 00 60 84 0b 00 24 00 00 00 9f 84 0b 00 28 00 00 00 | ....-...2...>...`...$.......(... |
| aa00 | c4 84 0b 00 4d 00 00 00 ed 84 0b 00 50 00 00 00 3b 85 0b 00 33 00 00 00 8c 85 0b 00 35 00 00 00 | ....M.......P...;...3.......5... |
| aa20 | c0 85 0b 00 20 00 00 00 f6 85 0b 00 2b 00 00 00 17 86 0b 00 39 00 00 00 43 86 0b 00 73 02 00 00 | ............+.......9...C...s... |
| aa40 | 7d 86 0b 00 49 00 00 00 f1 88 0b 00 74 02 00 00 3b 89 0b 00 c9 00 00 00 b0 8b 0b 00 28 00 00 00 | }...I.......t...;...........(... |
| aa60 | 7a 8c 0b 00 5c 00 00 00 a3 8c 0b 00 19 00 00 00 00 8d 0b 00 16 00 00 00 1a 8d 0b 00 9e 00 00 00 | z...\........................... |
| aa80 | 31 8d 0b 00 23 00 00 00 d0 8d 0b 00 27 00 00 00 f4 8d 0b 00 18 00 00 00 1c 8e 0b 00 25 00 00 00 | 1...#.......'...............%... |
| aaa0 | 35 8e 0b 00 1c 00 00 00 5b 8e 0b 00 1f 00 00 00 78 8e 0b 00 53 00 00 00 98 8e 0b 00 53 00 00 00 | 5.......[.......x...S.......S... |
| aac0 | ec 8e 0b 00 16 00 00 00 40 8f 0b 00 7e 00 00 00 57 8f 0b 00 33 00 00 00 d6 8f 0b 00 25 00 00 00 | ........@...~...W...3.......%... |
| aae0 | 0a 90 0b 00 af 00 00 00 30 90 0b 00 d0 00 00 00 e0 90 0b 00 7e 00 00 00 b1 91 0b 00 25 00 00 00 | ........0...........~.......%... |
| ab00 | 30 92 0b 00 3d 00 00 00 56 92 0b 00 51 00 00 00 94 92 0b 00 04 01 00 00 e6 92 0b 00 49 00 00 00 | 0...=...V...Q...............I... |
| ab20 | eb 93 0b 00 47 00 00 00 35 94 0b 00 bd 00 00 00 7d 94 0b 00 78 00 00 00 3b 95 0b 00 aa 00 00 00 | ....G...5.......}...x...;....... |
| ab40 | b4 95 0b 00 41 00 00 00 5f 96 0b 00 43 00 00 00 a1 96 0b 00 3d 00 00 00 e5 96 0b 00 27 00 00 00 | ....A..._...C.......=.......'... |
| ab60 | 23 97 0b 00 1a 00 00 00 4b 97 0b 00 d2 00 00 00 66 97 0b 00 5b 00 00 00 39 98 0b 00 3d 00 00 00 | #.......K.......f...[...9...=... |
| ab80 | 95 98 0b 00 ab 00 00 00 d3 98 0b 00 1d 00 00 00 7f 99 0b 00 5a 00 00 00 9d 99 0b 00 5a 00 00 00 | ....................Z.......Z... |
| aba0 | f8 99 0b 00 77 00 00 00 53 9a 0b 00 7d 00 00 00 cb 9a 0b 00 dd 00 00 00 49 9b 0b 00 3f 00 00 00 | ....w...S...}...........I...?... |
| abc0 | 27 9c 0b 00 40 00 00 00 67 9c 0b 00 55 00 00 00 a8 9c 0b 00 af 00 00 00 fe 9c 0b 00 5e 00 00 00 | '...@...g...U...............^... |
| abe0 | ae 9d 0b 00 72 00 00 00 0d 9e 0b 00 3b 00 00 00 80 9e 0b 00 65 00 00 00 bc 9e 0b 00 37 00 00 00 | ....r.......;.......e.......7... |
| ac00 | 22 9f 0b 00 25 00 00 00 5a 9f 0b 00 51 00 00 00 80 9f 0b 00 55 00 00 00 d2 9f 0b 00 38 00 00 00 | "...%...Z...Q.......U.......8... |
| ac20 | 28 a0 0b 00 13 00 00 00 61 a0 0b 00 45 00 00 00 75 a0 0b 00 40 00 00 00 bb a0 0b 00 26 00 00 00 | (.......a...E...u...@.......&... |
| ac40 | fc a0 0b 00 24 00 00 00 23 a1 0b 00 44 00 00 00 48 a1 0b 00 4a 00 00 00 8d a1 0b 00 4b 00 00 00 | ....$...#...D...H...J.......K... |
| ac60 | d8 a1 0b 00 4a 00 00 00 24 a2 0b 00 4b 00 00 00 6f a2 0b 00 1f 00 00 00 bb a2 0b 00 1f 00 00 00 | ....J...$...K...o............... |
| ac80 | db a2 0b 00 96 00 00 00 fb a2 0b 00 26 00 00 00 92 a3 0b 00 29 00 00 00 b9 a3 0b 00 22 00 00 00 | ............&.......)......."... |
| aca0 | e3 a3 0b 00 1f 00 00 00 06 a4 0b 00 24 00 00 00 26 a4 0b 00 28 00 00 00 4b a4 0b 00 18 00 00 00 | ............$...&...(...K....... |
| acc0 | 74 a4 0b 00 1b 00 00 00 8d a4 0b 00 26 00 00 00 a9 a4 0b 00 29 00 00 00 d0 a4 0b 00 57 00 00 00 | t...........&.......).......W... |
| ace0 | fa a4 0b 00 54 00 00 00 52 a5 0b 00 52 00 00 00 a7 a5 0b 00 51 00 00 00 fa a5 0b 00 40 00 00 00 | ....T...R...R.......Q.......@... |
| ad00 | 4c a6 0b 00 28 00 00 00 8d a6 0b 00 70 00 00 00 b6 a6 0b 00 26 00 00 00 27 a7 0b 00 79 00 00 00 | L...(.......p.......&...'...y... |
| ad20 | 4e a7 0b 00 62 00 00 00 c8 a7 0b 00 56 00 00 00 2b a8 0b 00 0b 00 00 00 82 a8 0b 00 2c 00 00 00 | N...b.......V...+...........,... |
| ad40 | 8e a8 0b 00 35 00 00 00 bb a8 0b 00 3f 00 00 00 f1 a8 0b 00 77 00 00 00 31 a9 0b 00 2d 00 00 00 | ....5.......?.......w...1...-... |
| ad60 | a9 a9 0b 00 33 00 00 00 d7 a9 0b 00 31 00 00 00 0b aa 0b 00 69 00 00 00 3d aa 0b 00 69 00 00 00 | ....3.......1.......i...=...i... |
| ad80 | a7 aa 0b 00 9c 00 00 00 11 ab 0b 00 89 00 00 00 ae ab 0b 00 24 00 00 00 38 ac 0b 00 56 00 00 00 | ....................$...8...V... |
| ada0 | 5d ac 0b 00 16 00 00 00 b4 ac 0b 00 4c 00 00 00 cb ac 0b 00 3c 00 00 00 18 ad 0b 00 9e 00 00 00 | ]...........L.......<........... |
| adc0 | 55 ad 0b 00 26 00 00 00 f4 ad 0b 00 27 00 00 00 1b ae 0b 00 1f 00 00 00 43 ae 0b 00 5c 00 00 00 | U...&.......'...........C...\... |
| ade0 | 63 ae 0b 00 3f 00 00 00 c0 ae 0b 00 36 00 00 00 00 af 0b 00 38 00 00 00 37 af 0b 00 66 00 00 00 | c...?.......6.......8...7...f... |
| ae00 | 70 af 0b 00 24 00 00 00 d7 af 0b 00 4d 00 00 00 fc af 0b 00 27 00 00 00 4a b0 0b 00 27 00 00 00 | p...$.......M.......'...J...'... |
| ae20 | 72 b0 0b 00 ee 00 00 00 9a b0 0b 00 1f 00 00 00 89 b1 0b 00 1e 00 00 00 a9 b1 0b 00 24 01 00 00 | r...........................$... |
| ae40 | c8 b1 0b 00 a1 00 00 00 ed b2 0b 00 3c 00 00 00 8f b3 0b 00 6e 00 00 00 cc b3 0b 00 83 00 00 00 | ............<.......n........... |
| ae60 | 3b b4 0b 00 3e 00 00 00 bf b4 0b 00 55 00 00 00 fe b4 0b 00 27 01 00 00 54 b5 0b 00 50 00 00 00 | ;...>.......U.......'...T...P... |
| ae80 | 7c b6 0b 00 22 00 00 00 cd b6 0b 00 5a 00 00 00 f0 b6 0b 00 2c 00 00 00 4b b7 0b 00 47 00 00 00 | |...".......Z.......,...K...G... |
| aea0 | 78 b7 0b 00 7b 00 00 00 c0 b7 0b 00 77 00 00 00 3c b8 0b 00 65 00 00 00 b4 b8 0b 00 65 00 00 00 | x...{.......w...<...e.......e... |
| aec0 | 1a b9 0b 00 5a 00 00 00 80 b9 0b 00 5a 00 00 00 db b9 0b 00 72 00 00 00 36 ba 0b 00 2e 00 00 00 | ....Z.......Z.......r...6....... |
| aee0 | a9 ba 0b 00 24 00 00 00 d8 ba 0b 00 61 00 00 00 fd ba 0b 00 55 00 00 00 5f bb 0b 00 2b 00 00 00 | ....$.......a.......U..._...+... |
| af00 | b5 bb 0b 00 29 00 00 00 e1 bb 0b 00 2a 00 00 00 0b bc 0b 00 2e 00 00 00 36 bc 0b 00 29 00 00 00 | ....).......*...........6...)... |
| af20 | 65 bc 0b 00 27 00 00 00 8f bc 0b 00 28 00 00 00 b7 bc 0b 00 29 00 00 00 e0 bc 0b 00 27 00 00 00 | e...'.......(.......).......'... |
| af40 | 0a bd 0b 00 28 00 00 00 32 bd 0b 00 4c 00 00 00 5b bd 0b 00 4c 00 00 00 a8 bd 0b 00 1d 00 00 00 | ....(...2...L...[...L........... |
| af60 | f5 bd 0b 00 38 00 00 00 13 be 0b 00 54 00 00 00 4c be 0b 00 0b 00 00 00 a1 be 0b 00 0f 00 00 00 | ....8.......T...L............... |
| af80 | ad be 0b 00 49 00 00 00 bd be 0b 00 0b 00 00 00 07 bf 0b 00 43 00 00 00 13 bf 0b 00 43 00 00 00 | ....I...............C.......C... |
| afa0 | 57 bf 0b 00 36 00 00 00 9b bf 0b 00 29 00 00 00 d2 bf 0b 00 2e 00 00 00 fc bf 0b 00 38 00 00 00 | W...6.......)...............8... |
| afc0 | 2b c0 0b 00 2c 00 00 00 64 c0 0b 00 46 00 00 00 91 c0 0b 00 22 00 00 00 d8 c0 0b 00 77 00 00 00 | +...,...d...F.......".......w... |
| afe0 | fb c0 0b 00 28 00 00 00 73 c1 0b 00 3e 00 00 00 9c c1 0b 00 28 00 00 00 db c1 0b 00 3e 00 00 00 | ....(...s...>.......(.......>... |
| b000 | 04 c2 0b 00 29 00 00 00 43 c2 0b 00 5d 00 00 00 6d c2 0b 00 c9 00 00 00 cb c2 0b 00 3f 00 00 00 | ....)...C...]...m...........?... |
| b020 | 95 c3 0b 00 dd 00 00 00 d5 c3 0b 00 12 00 00 00 b3 c4 0b 00 12 00 00 00 c6 c4 0b 00 12 00 00 00 | ................................ |
| b040 | d9 c4 0b 00 4c 00 00 00 ec c4 0b 00 19 00 00 00 39 c5 0b 00 7f 00 00 00 53 c5 0b 00 1d 00 00 00 | ....L...........9.......S....... |
| b060 | d3 c5 0b 00 73 00 00 00 f1 c5 0b 00 31 00 00 00 65 c6 0b 00 d7 00 00 00 97 c6 0b 00 1e 00 00 00 | ....s.......1...e............... |
| b080 | 6f c7 0b 00 24 00 00 00 8e c7 0b 00 5c 00 00 00 b3 c7 0b 00 21 00 00 00 10 c8 0b 00 14 00 00 00 | o...$.......\.......!........... |
| b0a0 | 32 c8 0b 00 52 00 00 00 47 c8 0b 00 5c 00 00 00 9a c8 0b 00 b7 00 00 00 f7 c8 0b 00 44 01 00 00 | 2...R...G...\...............D... |
| b0c0 | af c9 0b 00 47 00 00 00 f4 ca 0b 00 a5 01 00 00 3c cb 0b 00 27 00 00 00 e2 cc 0b 00 88 01 00 00 | ....G...........<...'........... |
| b0e0 | 0a cd 0b 00 72 00 00 00 93 ce 0b 00 74 00 00 00 06 cf 0b 00 6d 00 00 00 7b cf 0b 00 33 00 00 00 | ....r.......t.......m...{...3... |
| b100 | e9 cf 0b 00 30 00 00 00 1d d0 0b 00 3e 00 00 00 4e d0 0b 00 33 01 00 00 8d d0 0b 00 41 00 00 00 | ....0.......>...N...3.......A... |
| b120 | c1 d1 0b 00 30 00 00 00 03 d2 0b 00 d1 00 00 00 34 d2 0b 00 8f 00 00 00 06 d3 0b 00 3f 00 00 00 | ....0...........4...........?... |
| b140 | 96 d3 0b 00 df 00 00 00 d6 d3 0b 00 c2 01 00 00 b6 d4 0b 00 49 00 00 00 79 d6 0b 00 e7 00 00 00 | ....................I...y....... |
| b160 | c3 d6 0b 00 65 01 00 00 ab d7 0b 00 1f 00 00 00 11 d9 0b 00 30 00 00 00 31 d9 0b 00 33 00 00 00 | ....e...............0...1...3... |
| b180 | 62 d9 0b 00 11 00 00 00 96 d9 0b 00 05 00 00 00 a8 d9 0b 00 03 00 00 00 ae d9 0b 00 0e 00 00 00 | b............................... |
| b1a0 | b2 d9 0b 00 1b 00 00 00 c1 d9 0b 00 1d 00 00 00 dd d9 0b 00 1f 00 00 00 fb d9 0b 00 04 00 00 00 | ................................ |
| b1c0 | 1b da 0b 00 0d 00 00 00 20 da 0b 00 32 00 00 00 2e da 0b 00 29 00 00 00 61 da 0b 00 04 00 00 00 | ............2.......)...a....... |
| b1e0 | 8b da 0b 00 07 00 00 00 90 da 0b 00 09 00 00 00 98 da 0b 00 0d 00 00 00 a2 da 0b 00 17 00 00 00 | ................................ |
| b200 | b0 da 0b 00 0f 00 00 00 c8 da 0b 00 0d 00 00 00 d8 da 0b 00 06 00 00 00 e6 da 0b 00 19 00 00 00 | ................................ |
| b220 | ed da 0b 00 14 00 00 00 07 db 0b 00 05 00 00 00 1c db 0b 00 15 00 00 00 22 db 0b 00 04 00 00 00 | ........................"....... |
| b240 | 38 db 0b 00 04 00 00 00 3d db 0b 00 06 00 00 00 42 db 0b 00 51 00 00 00 49 db 0b 00 4a 01 00 00 | 8.......=.......B...Q...I...J... |
| b260 | 9b db 0b 00 50 01 00 00 e6 dc 0b 00 4d 00 00 00 37 de 0b 00 05 00 00 00 85 de 0b 00 12 00 00 00 | ....P.......M...7............... |
| b280 | 8b de 0b 00 15 00 00 00 9e de 0b 00 22 00 00 00 b4 de 0b 00 10 00 00 00 d7 de 0b 00 12 00 00 00 | ............"................... |
| b2a0 | e8 de 0b 00 0e 00 00 00 fb de 0b 00 10 00 00 00 0a df 0b 00 13 00 00 00 1b df 0b 00 16 00 00 00 | ................................ |
| b2c0 | 2f df 0b 00 06 00 00 00 46 df 0b 00 09 00 00 00 4d df 0b 00 1d 00 00 00 57 df 0b 00 05 00 00 00 | /.......F.......M.......W....... |
| b2e0 | 75 df 0b 00 0b 00 00 00 7b df 0b 00 13 00 00 00 87 df 0b 00 0d 00 00 00 9b df 0b 00 05 00 00 00 | u.......{....................... |
| b300 | a9 df 0b 00 68 00 00 00 af df 0b 00 67 00 00 00 18 e0 0b 00 79 00 00 00 80 e0 0b 00 66 00 00 00 | ....h.......g.......y.......f... |
| b320 | fa e0 0b 00 03 00 00 00 61 e1 0b 00 08 00 00 00 65 e1 0b 00 31 00 00 00 6e e1 0b 00 07 00 00 00 | ........a.......e...1...n....... |
| b340 | a0 e1 0b 00 08 00 00 00 a8 e1 0b 00 38 00 00 00 b1 e1 0b 00 10 00 00 00 ea e1 0b 00 0b 00 00 00 | ............8................... |
| b360 | fb e1 0b 00 03 00 00 00 07 e2 0b 00 1d 00 00 00 0b e2 0b 00 06 00 00 00 29 e2 0b 00 1d 00 00 00 | ........................)....... |
| b380 | 30 e2 0b 00 09 00 00 00 4e e2 0b 00 26 00 00 00 58 e2 0b 00 6d 00 00 00 7f e2 0b 00 46 00 00 00 | 0.......N...&...X...m.......F... |
| b3a0 | ed e2 0b 00 36 00 00 00 34 e3 0b 00 32 00 00 00 6b e3 0b 00 46 00 00 00 9e e3 0b 00 04 00 00 00 | ....6...4...2...k...F........... |
| b3c0 | e5 e3 0b 00 22 00 00 00 ea e3 0b 00 08 00 00 00 0d e4 0b 00 07 00 00 00 16 e4 0b 00 46 00 00 00 | ....".......................F... |
| b3e0 | 1e e4 0b 00 0d 00 00 00 65 e4 0b 00 05 00 00 00 73 e4 0b 00 1b 00 00 00 79 e4 0b 00 1c 00 00 00 | ........e.......s.......y....... |
| b400 | 95 e4 0b 00 73 00 00 00 b2 e4 0b 00 71 00 00 00 26 e5 0b 00 04 00 00 00 98 e5 0b 00 06 00 00 00 | ....s.......q...&............... |
| b420 | 9d e5 0b 00 04 00 00 00 a4 e5 0b 00 05 00 00 00 a9 e5 0b 00 10 00 00 00 af e5 0b 00 3c 00 00 00 | ............................<... |
| b440 | c0 e5 0b 00 32 00 00 00 fd e5 0b 00 1c 00 00 00 30 e6 0b 00 6d 00 00 00 4d e6 0b 00 08 00 00 00 | ....2...........0...m...M....... |
| b460 | bb e6 0b 00 14 00 00 00 c4 e6 0b 00 14 00 00 00 d9 e6 0b 00 14 00 00 00 ee e6 0b 00 14 00 00 00 | ................................ |
| b480 | 03 e7 0b 00 14 00 00 00 18 e7 0b 00 14 00 00 00 2d e7 0b 00 14 00 00 00 42 e7 0b 00 06 00 00 00 | ................-.......B....... |
| b4a0 | 57 e7 0b 00 06 00 00 00 5e e7 0b 00 06 00 00 00 65 e7 0b 00 06 00 00 00 6c e7 0b 00 06 00 00 00 | W.......^.......e.......l....... |
| b4c0 | 73 e7 0b 00 06 00 00 00 7a e7 0b 00 06 00 00 00 81 e7 0b 00 06 00 00 00 88 e7 0b 00 1f 00 00 00 | s.......z....................... |
| b4e0 | 8f e7 0b 00 08 00 00 00 af e7 0b 00 08 00 00 00 b8 e7 0b 00 a4 00 00 00 c1 e7 0b 00 03 00 00 00 | ................................ |
| b500 | 66 e8 0b 00 0d 00 00 00 6a e8 0b 00 74 00 00 00 78 e8 0b 00 9a 00 00 00 ed e8 0b 00 4c 00 00 00 | f.......j...t...x...........L... |
| b520 | 88 e9 0b 00 04 00 00 00 d5 e9 0b 00 0c 00 00 00 da e9 0b 00 3f 00 00 00 e7 e9 0b 00 29 00 00 00 | ....................?.......)... |
| b540 | 27 ea 0b 00 37 00 00 00 51 ea 0b 00 2c 00 00 00 89 ea 0b 00 0e 00 00 00 b6 ea 0b 00 33 00 00 00 | '...7...Q...,...............3... |
| b560 | c5 ea 0b 00 33 00 00 00 f9 ea 0b 00 0b 00 00 00 2d eb 0b 00 14 00 00 00 39 eb 0b 00 71 00 00 00 | ....3...........-.......9...q... |
| b580 | 4e eb 0b 00 46 00 00 00 c0 eb 0b 00 09 00 00 00 07 ec 0b 00 04 00 00 00 11 ec 0b 00 0b 00 00 00 | N...F........................... |
| b5a0 | 16 ec 0b 00 12 00 00 00 22 ec 0b 00 0f 00 00 00 35 ec 0b 00 08 00 00 00 45 ec 0b 00 06 00 00 00 | ........".......5.......E....... |
| b5c0 | 4e ec 0b 00 03 00 00 00 55 ec 0b 00 0a 00 00 00 59 ec 0b 00 0b 00 00 00 64 ec 0b 00 40 00 00 00 | N.......U.......Y.......d...@... |
| b5e0 | 70 ec 0b 00 07 00 00 00 b1 ec 0b 00 06 00 00 00 b9 ec 0b 00 05 00 00 00 c0 ec 0b 00 9b 00 00 00 | p............................... |
| b600 | c6 ec 0b 00 11 00 00 00 62 ed 0b 00 0d 00 00 00 74 ed 0b 00 13 00 00 00 82 ed 0b 00 15 00 00 00 | ........b.......t............... |
| b620 | 96 ed 0b 00 18 00 00 00 ac ed 0b 00 1b 00 00 00 c5 ed 0b 00 0a 00 00 00 e1 ed 0b 00 12 00 00 00 | ................................ |
| b640 | ec ed 0b 00 1c 00 00 00 ff ed 0b 00 0f 00 00 00 1c ee 0b 00 05 00 00 00 2c ee 0b 00 0e 00 00 00 | ........................,....... |
| b660 | 32 ee 0b 00 0e 00 00 00 41 ee 0b 00 0d 00 00 00 50 ee 0b 00 2a 00 00 00 5e ee 0b 00 15 00 00 00 | 2.......A.......P...*...^....... |
| b680 | 89 ee 0b 00 31 00 00 00 9f ee 0b 00 39 00 00 00 d1 ee 0b 00 34 00 00 00 0b ef 0b 00 04 00 00 00 | ....1.......9.......4........... |
| b6a0 | 40 ef 0b 00 0b 00 00 00 45 ef 0b 00 09 00 00 00 51 ef 0b 00 07 00 00 00 5b ef 0b 00 05 00 00 00 | @.......E.......Q.......[....... |
| b6c0 | 63 ef 0b 00 72 00 00 00 69 ef 0b 00 08 00 00 00 dc ef 0b 00 62 01 00 00 e5 ef 0b 00 0e 00 00 00 | c...r...i...........b........... |
| b6e0 | 48 f1 0b 00 11 00 00 00 57 f1 0b 00 38 00 00 00 69 f1 0b 00 0d 00 00 00 a2 f1 0b 00 0d 00 00 00 | H.......W...8...i............... |
| b700 | b0 f1 0b 00 06 00 00 00 be f1 0b 00 3a 00 00 00 c5 f1 0b 00 0b 00 00 00 00 f2 0b 00 3f 00 00 00 | ............:...............?... |
| b720 | 0c f2 0b 00 40 00 00 00 4c f2 0b 00 0e 00 00 00 8d f2 0b 00 0f 00 00 00 9c f2 0b 00 07 00 00 00 | ....@...L....................... |
| b740 | ac f2 0b 00 0e 00 00 00 b4 f2 0b 00 0c 00 00 00 c3 f2 0b 00 ad 00 00 00 d0 f2 0b 00 0b 00 00 00 | ................................ |
| b760 | 7e f3 0b 00 08 00 00 00 8a f3 0b 00 06 00 00 00 93 f3 0b 00 04 00 00 00 9a f3 0b 00 d7 00 00 00 | ~............................... |
| b780 | 9f f3 0b 00 10 00 00 00 77 f4 0b 00 ed 01 00 00 88 f4 0b 00 0b 00 00 00 76 f6 0b 00 0b 00 00 00 | ........w...............v....... |
| b7a0 | 82 f6 0b 00 0c 00 00 00 8e f6 0b 00 06 00 00 00 9b f6 0b 00 0e 00 00 00 a2 f6 0b 00 58 00 00 00 | ............................X... |
| b7c0 | b1 f6 0b 00 04 00 00 00 0a f7 0b 00 04 00 00 00 0f f7 0b 00 05 00 00 00 14 f7 0b 00 0e 00 00 00 | ................................ |
| b7e0 | 1a f7 0b 00 47 00 00 00 29 f7 0b 00 75 00 00 00 71 f7 0b 00 05 00 00 00 e7 f7 0b 00 07 00 00 00 | ....G...)...u...q............... |
| b800 | ed f7 0b 00 68 00 00 00 f5 f7 0b 00 19 00 00 00 5e f8 0b 00 14 00 00 00 78 f8 0b 00 2c 00 00 00 | ....h...........^.......x...,... |
| b820 | 8d f8 0b 00 0b 00 00 00 ba f8 0b 00 09 00 00 00 c6 f8 0b 00 08 00 00 00 d0 f8 0b 00 53 00 00 00 | ............................S... |
| b840 | d9 f8 0b 00 08 00 00 00 2d f9 0b 00 22 00 00 00 36 f9 0b 00 04 00 00 00 59 f9 0b 00 05 00 00 00 | ........-..."...6.......Y....... |
| b860 | 5e f9 0b 00 e2 00 00 00 64 f9 0b 00 43 00 00 00 47 fa 0b 00 52 00 00 00 8b fa 0b 00 42 00 00 00 | ^.......d...C...G...R.......B... |
| b880 | de fa 0b 00 3b 00 00 00 21 fb 0b 00 42 00 00 00 5d fb 0b 00 3a 00 00 00 a0 fb 0b 00 24 00 00 00 | ....;...!...B...]...:.......$... |
| b8a0 | db fb 0b 00 1a 00 00 00 00 fc 0b 00 66 00 00 00 1b fc 0b 00 6f 00 00 00 82 fc 0b 00 89 00 00 00 | ............f.......o........... |
| b8c0 | f2 fc 0b 00 5d 01 00 00 7c fd 0b 00 48 00 00 00 da fe 0b 00 46 00 00 00 23 ff 0b 00 31 00 00 00 | ....]...|...H.......F...#...1... |
| b8e0 | 6a ff 0b 00 31 00 00 00 9c ff 0b 00 3e 00 00 00 ce ff 0b 00 23 00 00 00 0d 00 0c 00 18 00 00 00 | j...1.......>.......#........... |
| b900 | 31 00 0c 00 7d 00 00 00 4a 00 0c 00 92 00 00 00 c8 00 0c 00 23 00 00 00 5b 01 0c 00 90 00 00 00 | 1...}...J...........#...[....... |
| b920 | 7f 01 0c 00 20 00 00 00 10 02 0c 00 21 00 00 00 31 02 0c 00 21 00 00 00 53 02 0c 00 3f 00 00 00 | ............!...1...!...S...?... |
| b940 | 75 02 0c 00 78 00 00 00 b5 02 0c 00 7f 00 00 00 2e 03 0c 00 36 00 00 00 ae 03 0c 00 15 00 00 00 | u...x...............6........... |
| b960 | e5 03 0c 00 2d 00 00 00 fb 03 0c 00 27 00 00 00 29 04 0c 00 1d 00 00 00 51 04 0c 00 5c 00 00 00 | ....-.......'...).......Q...\... |
| b980 | 6f 04 0c 00 46 01 00 00 cc 04 0c 00 60 00 00 00 13 06 0c 00 1c 00 00 00 74 06 0c 00 0c 00 00 00 | o...F.......`...........t....... |
| b9a0 | 91 06 0c 00 21 00 00 00 9e 06 0c 00 4e 00 00 00 c0 06 0c 00 e8 00 00 00 0f 07 0c 00 e0 00 00 00 | ....!.......N................... |
| b9c0 | f8 07 0c 00 e0 00 00 00 d9 08 0c 00 23 00 00 00 ba 09 0c 00 29 00 00 00 de 09 0c 00 3e 00 00 00 | ............#.......).......>... |
| b9e0 | 08 0a 0c 00 0c 00 00 00 47 0a 0c 00 12 00 00 00 54 0a 0c 00 56 00 00 00 67 0a 0c 00 56 00 00 00 | ........G.......T...V...g...V... |
| ba00 | be 0a 0c 00 11 00 00 00 15 0b 0c 00 b4 00 00 00 27 0b 0c 00 4d 00 00 00 dc 0b 0c 00 b4 00 00 00 | ................'...M........... |
| ba20 | 2a 0c 0c 00 6c 00 00 00 df 0c 0c 00 6b 00 00 00 4c 0d 0c 00 6c 00 00 00 b8 0d 0c 00 81 00 00 00 | *...l.......k...L...l........... |
| ba40 | 25 0e 0c 00 3b 00 00 00 a7 0e 0c 00 12 00 00 00 e3 0e 0c 00 8b 00 00 00 f6 0e 0c 00 98 00 00 00 | %...;........................... |
| ba60 | 82 0f 0c 00 8c 00 00 00 1b 10 0c 00 30 01 00 00 a8 10 0c 00 fc 00 00 00 d9 11 0c 00 01 01 00 00 | ............0................... |
| ba80 | d6 12 0c 00 fb 00 00 00 d8 13 0c 00 fc 00 00 00 d4 14 0c 00 d5 00 00 00 d1 15 0c 00 94 00 00 00 | ................................ |
| baa0 | a7 16 0c 00 00 01 00 00 3c 17 0c 00 04 01 00 00 3d 18 0c 00 2c 01 00 00 42 19 0c 00 f6 01 00 00 | ........<.......=...,...B....... |
| bac0 | 6f 1a 0c 00 67 00 00 00 66 1c 0c 00 67 00 00 00 ce 1c 0c 00 66 00 00 00 36 1d 0c 00 da 00 00 00 | o...g...f...g.......f...6....... |
| bae0 | 9d 1d 0c 00 d9 00 00 00 78 1e 0c 00 12 00 00 00 52 1f 0c 00 08 00 00 00 65 1f 0c 00 b8 00 00 00 | ........x.......R.......e....... |
| bb00 | 6e 1f 0c 00 14 01 00 00 27 20 0c 00 18 00 00 00 3c 21 0c 00 18 00 00 00 55 21 0c 00 1b 00 00 00 | n.......'.......<!......U!...... |
| bb20 | 6e 21 0c 00 1a 00 00 00 8a 21 0c 00 15 00 00 00 a5 21 0c 00 0d 00 00 00 bb 21 0c 00 14 00 00 00 | n!.......!.......!.......!...... |
| bb40 | c9 21 0c 00 0a 00 00 00 de 21 0c 00 0b 00 00 00 e9 21 0c 00 0a 00 00 00 f5 21 0c 00 0b 00 00 00 | .!.......!.......!.......!...... |
| bb60 | 00 22 0c 00 0a 00 00 00 0c 22 0c 00 0a 00 00 00 17 22 0c 00 4d 00 00 00 22 22 0c 00 7e 03 00 00 | ."......."......."..M...""..~... |
| bb80 | 70 22 0c 00 10 00 00 00 ef 25 0c 00 10 00 00 00 00 26 0c 00 6f 00 00 00 11 26 0c 00 44 00 00 00 | p".......%.......&..o....&..D... |
| bba0 | 81 26 0c 00 8c 00 00 00 c6 26 0c 00 8c 00 00 00 53 27 0c 00 ba 00 00 00 e0 27 0c 00 ae 00 00 00 | .&.......&......S'.......'...... |
| bbc0 | 9b 28 0c 00 ae 00 00 00 4a 29 0c 00 a0 01 00 00 f9 29 0c 00 99 01 00 00 9a 2b 0c 00 ab 01 00 00 | .(......J).......).......+...... |
| bbe0 | 34 2d 0c 00 98 01 00 00 e0 2e 0c 00 99 01 00 00 79 30 0c 00 ae 01 00 00 13 32 0c 00 10 00 00 00 | 4-..............y0.......2...... |
| bc00 | c2 33 0c 00 8b 00 00 00 d3 33 0c 00 4a 00 00 00 5f 34 0c 00 16 00 00 00 aa 34 0c 00 9d 00 00 00 | .3.......3..J..._4.......4...... |
| bc20 | c1 34 0c 00 32 00 00 00 5f 35 0c 00 93 00 00 00 92 35 0c 00 6b 01 00 00 26 36 0c 00 1f 01 00 00 | .4..2..._5.......5..k...&6...... |
| bc40 | 92 37 0c 00 c2 01 00 00 b2 38 0c 00 ce 01 00 00 75 3a 0c 00 2f 01 00 00 44 3c 0c 00 2e 01 00 00 | .7.......8......u:../...D<...... |
| bc60 | 74 3d 0c 00 0b 00 00 00 a3 3e 0c 00 2e 00 00 00 af 3e 0c 00 2d 00 00 00 de 3e 0c 00 26 00 00 00 | t=.......>.......>..-....>..&... |
| bc80 | 0c 3f 0c 00 37 00 00 00 33 3f 0c 00 33 00 00 00 6b 3f 0c 00 29 00 00 00 9f 3f 0c 00 3b 00 00 00 | .?..7...3?..3...k?..)....?..;... |
| bca0 | c9 3f 0c 00 1e 00 00 00 05 40 0c 00 3b 00 00 00 24 40 0c 00 2e 00 00 00 60 40 0c 00 2d 00 00 00 | .?.......@..;...$@......`@..-... |
| bcc0 | 8f 40 0c 00 4e 00 00 00 bd 40 0c 00 0f 00 00 00 0c 41 0c 00 11 00 00 00 1c 41 0c 00 06 00 00 00 | .@..N....@.......A.......A...... |
| bce0 | 2e 41 0c 00 0f 00 00 00 35 41 0c 00 11 00 00 00 45 41 0c 00 06 00 00 00 57 41 0c 00 2d 00 00 00 | .A......5A......EA......WA..-... |
| bd00 | 5e 41 0c 00 25 00 00 00 8c 41 0c 00 09 00 00 00 b2 41 0c 00 b9 00 00 00 bc 41 0c 00 0c 00 00 00 | ^A..%....A.......A.......A...... |
| bd20 | 76 42 0c 00 0c 00 00 00 83 42 0c 00 0c 00 00 00 90 42 0c 00 13 00 00 00 9d 42 0c 00 30 00 00 00 | vB.......B.......B.......B..0... |
| bd40 | b1 42 0c 00 31 00 00 00 e2 42 0c 00 07 00 00 00 14 43 0c 00 07 00 00 00 1c 43 0c 00 70 00 00 00 | .B..1....B.......C.......C..p... |
| bd60 | 24 43 0c 00 0d 00 00 00 95 43 0c 00 14 00 00 00 a3 43 0c 00 1d 00 00 00 b8 43 0c 00 49 00 00 00 | $C.......C.......C.......C..I... |
| bd80 | d6 43 0c 00 19 00 00 00 20 44 0c 00 0a 00 00 00 3a 44 0c 00 24 00 00 00 45 44 0c 00 1a 00 00 00 | .C.......D......:D..$...ED...... |
| bda0 | 6a 44 0c 00 9d 00 00 00 85 44 0c 00 27 00 00 00 23 45 0c 00 0b 00 00 00 4b 45 0c 00 10 00 00 00 | jD.......D..'...#E......KE...... |
| bdc0 | 57 45 0c 00 10 00 00 00 68 45 0c 00 70 00 00 00 79 45 0c 00 57 00 00 00 ea 45 0c 00 42 00 00 00 | WE......hE..p...yE..W....E..B... |
| bde0 | 42 46 0c 00 32 00 00 00 85 46 0c 00 37 00 00 00 b8 46 0c 00 5a 00 00 00 f0 46 0c 00 a3 00 00 00 | BF..2....F..7....F..Z....F...... |
| be00 | 4b 47 0c 00 74 00 00 00 ef 47 0c 00 35 01 00 00 64 48 0c 00 73 00 00 00 9a 49 0c 00 16 01 00 00 | KG..t....G..5...dH..s....I...... |
| be20 | 0e 4a 0c 00 7e 00 00 00 25 4b 0c 00 49 00 00 00 a4 4b 0c 00 2f 02 00 00 ee 4b 0c 00 6f 00 00 00 | .J..~...%K..I....K../....K..o... |
| be40 | 1e 4e 0c 00 39 01 00 00 8e 4e 0c 00 dd 00 00 00 c8 4f 0c 00 20 00 00 00 a6 50 0c 00 30 00 00 00 | .N..9....N.......O.......P..0... |
| be60 | c7 50 0c 00 14 00 00 00 f8 50 0c 00 2c 00 00 00 0d 51 0c 00 90 00 00 00 3a 51 0c 00 52 00 00 00 | .P.......P..,....Q......:Q..R... |
| be80 | cb 51 0c 00 58 00 00 00 1e 52 0c 00 26 00 00 00 77 52 0c 00 58 00 00 00 9e 52 0c 00 e4 00 00 00 | .Q..X....R..&...wR..X....R...... |
| bea0 | f7 52 0c 00 68 00 00 00 dc 53 0c 00 5d 00 00 00 45 54 0c 00 6c 00 00 00 a3 54 0c 00 5a 00 00 00 | .R..h....S..]...ET..l....T..Z... |
| bec0 | 10 55 0c 00 a4 00 00 00 6b 55 0c 00 eb 00 00 00 10 56 0c 00 41 00 00 00 fc 56 0c 00 52 00 00 00 | .U......kU.......V..A....V..R... |
| bee0 | 3e 57 0c 00 34 00 00 00 91 57 0c 00 6d 00 00 00 c6 57 0c 00 c7 00 00 00 34 58 0c 00 f1 00 00 00 | >W..4....W..m....W......4X...... |
| bf00 | fc 58 0c 00 08 00 00 00 ee 59 0c 00 35 00 00 00 f7 59 0c 00 32 00 00 00 2d 5a 0c 00 4c 00 00 00 | .X.......Y..5....Y..2...-Z..L... |
| bf20 | 60 5a 0c 00 30 00 00 00 ad 5a 0c 00 38 00 00 00 de 5a 0c 00 36 00 00 00 17 5b 0c 00 19 00 00 00 | `Z..0....Z..8....Z..6....[...... |
| bf40 | 4e 5b 0c 00 3a 00 00 00 68 5b 0c 00 37 00 00 00 a3 5b 0c 00 7b 01 00 00 db 5b 0c 00 14 00 00 00 | N[..:...h[..7....[..{....[...... |
| bf60 | 57 5d 0c 00 16 00 00 00 6c 5d 0c 00 36 00 00 00 83 5d 0c 00 47 00 00 00 ba 5d 0c 00 55 00 00 00 | W]......l]..6....]..G....]..U... |
| bf80 | 02 5e 0c 00 35 00 00 00 58 5e 0c 00 29 00 00 00 8e 5e 0c 00 23 00 00 00 b8 5e 0c 00 24 00 00 00 | .^..5...X^..)....^..#....^..$... |
| bfa0 | dc 5e 0c 00 af 00 00 00 01 5f 0c 00 6c 00 00 00 b1 5f 0c 00 29 00 00 00 1e 60 0c 00 a7 00 00 00 | .^......._..l...._..)....`...... |
| bfc0 | 48 60 0c 00 ee 00 00 00 f0 60 0c 00 47 00 00 00 df 61 0c 00 47 00 00 00 27 62 0c 00 3a 00 00 00 | H`.......`..G....a..G...'b..:... |
| bfe0 | 6f 62 0c 00 4b 00 00 00 aa 62 0c 00 4d 00 00 00 f6 62 0c 00 5a 01 00 00 44 63 0c 00 9f 01 00 00 | ob..K....b..M....b..Z...Dc...... |
| c000 | 9f 64 0c 00 b5 00 00 00 3f 66 0c 00 1d 00 00 00 f5 66 0c 00 51 00 00 00 13 67 0c 00 31 00 00 00 | .d......?f.......f..Q....g..1... |
| c020 | 65 67 0c 00 32 00 00 00 97 67 0c 00 1a 00 00 00 ca 67 0c 00 4c 00 00 00 e5 67 0c 00 80 00 00 00 | eg..2....g.......g..L....g...... |
| c040 | 32 68 0c 00 25 00 00 00 b3 68 0c 00 26 00 00 00 d9 68 0c 00 26 00 00 00 00 69 0c 00 40 00 00 00 | 2h..%....h..&....h..&....i..@... |
| c060 | 27 69 0c 00 17 00 00 00 68 69 0c 00 09 00 00 00 80 69 0c 00 2d 00 00 00 8a 69 0c 00 3c 00 00 00 | 'i......hi.......i..-....i..<... |
| c080 | b8 69 0c 00 42 00 00 00 f5 69 0c 00 b1 00 00 00 38 6a 0c 00 54 00 00 00 ea 6a 0c 00 55 00 00 00 | .i..B....i......8j..T....j..U... |
| c0a0 | 3f 6b 0c 00 2c 00 00 00 95 6b 0c 00 47 00 00 00 c2 6b 0c 00 bc 00 00 00 0a 6c 0c 00 bf 00 00 00 | ?k..,....k..G....k.......l...... |
| c0c0 | c7 6c 0c 00 1e 00 00 00 87 6d 0c 00 37 00 00 00 a6 6d 0c 00 33 00 00 00 de 6d 0c 00 9a 00 00 00 | .l.......m..7....m..3....m...... |
| c0e0 | 12 6e 0c 00 01 00 00 00 ad 6e 0c 00 2c 00 00 00 af 6e 0c 00 11 00 00 00 dc 6e 0c 00 06 00 00 00 | .n.......n..,....n.......n...... |
| c100 | ee 6e 0c 00 06 00 00 00 f5 6e 0c 00 06 00 00 00 fc 6e 0c 00 06 00 00 00 03 6f 0c 00 06 00 00 00 | .n.......n.......n.......o...... |
| c120 | 0a 6f 0c 00 06 00 00 00 11 6f 0c 00 06 00 00 00 18 6f 0c 00 06 00 00 00 1f 6f 0c 00 06 00 00 00 | .o.......o.......o.......o...... |
| c140 | 26 6f 0c 00 06 00 00 00 2d 6f 0c 00 0e 00 00 00 34 6f 0c 00 01 00 00 00 43 6f 0c 00 11 00 00 00 | &o......-o......4o......Co...... |
| c160 | 45 6f 0c 00 0a 00 00 00 57 6f 0c 00 1a 00 00 00 62 6f 0c 00 b7 00 00 00 7d 6f 0c 00 b7 00 00 00 | Eo......Wo......bo......}o...... |
| c180 | 35 70 0c 00 bc 00 00 00 ed 70 0c 00 85 00 00 00 aa 71 0c 00 02 00 00 00 30 72 0c 00 0e 00 00 00 | 5p.......p.......q......0r...... |
| c1a0 | 33 72 0c 00 2d 00 00 00 42 72 0c 00 10 00 00 00 70 72 0c 00 0f 00 00 00 81 72 0c 00 11 00 00 00 | 3r..-...Br......pr.......r...... |
| c1c0 | 91 72 0c 00 13 00 00 00 a3 72 0c 00 06 00 00 00 b7 72 0c 00 06 00 00 00 be 72 0c 00 06 00 00 00 | .r.......r.......r.......r...... |
| c1e0 | c5 72 0c 00 06 00 00 00 cc 72 0c 00 02 00 00 00 d3 72 0c 00 03 00 00 00 d6 72 0c 00 02 00 00 00 | .r.......r.......r.......r...... |
| c200 | da 72 0c 00 08 00 00 00 dd 72 0c 00 02 00 00 00 e6 72 0c 00 02 00 00 00 e9 72 0c 00 02 00 00 00 | .r.......r.......r.......r...... |
| c220 | ec 72 0c 00 02 00 00 00 ef 72 0c 00 02 00 00 00 f2 72 0c 00 32 00 00 00 f5 72 0c 00 02 00 00 00 | .r.......r.......r..2....r...... |
| c240 | 28 73 0c 00 02 00 00 00 2b 73 0c 00 35 00 00 00 2e 73 0c 00 17 00 00 00 64 73 0c 00 01 00 00 00 | (s......+s..5....s......ds...... |
| c260 | 7c 73 0c 00 1a 00 00 00 7e 73 0c 00 85 00 00 00 99 73 0c 00 80 00 00 00 1f 74 0c 00 02 00 00 00 | |s......~s.......s.......t...... |
| c280 | a0 74 0c 00 02 00 00 00 a3 74 0c 00 02 00 00 00 a6 74 0c 00 02 00 00 00 a9 74 0c 00 11 00 00 00 | .t.......t.......t.......t...... |
| c2a0 | ac 74 0c 00 11 00 00 00 be 74 0c 00 03 00 00 00 d0 74 0c 00 02 00 00 00 d4 74 0c 00 02 00 00 00 | .t.......t.......t.......t...... |
| c2c0 | d7 74 0c 00 63 00 00 00 da 74 0c 00 0f 00 00 00 3e 75 0c 00 01 00 00 00 4e 75 0c 00 20 00 00 00 | .t..c....t......>u......Nu...... |
| c2e0 | 50 75 0c 00 87 00 00 00 71 75 0c 00 02 00 00 00 f9 75 0c 00 02 00 00 00 fc 75 0c 00 02 00 00 00 | Pu......qu.......u.......u...... |
| c300 | ff 75 0c 00 02 00 00 00 02 76 0c 00 01 00 00 00 05 76 0c 00 1a 00 00 00 07 76 0c 00 a5 00 00 00 | .u.......v.......v.......v...... |
| c320 | 22 76 0c 00 a2 00 00 00 c8 76 0c 00 a2 00 00 00 6b 77 0c 00 e6 00 00 00 0e 78 0c 00 11 00 00 00 | "v.......v......kw.......x...... |
| c340 | f5 78 0c 00 02 00 00 00 07 79 0c 00 02 00 00 00 0a 79 0c 00 02 00 00 00 0d 79 0c 00 01 00 00 00 | .x.......y.......y.......y...... |
| c360 | 10 79 0c 00 11 00 00 00 12 79 0c 00 c3 00 00 00 24 79 0c 00 c7 00 00 00 e8 79 0c 00 0f 00 00 00 | .y.......y......$y.......y...... |
| c380 | b0 7a 0c 00 11 00 00 00 c0 7a 0c 00 02 00 00 00 d2 7a 0c 00 01 00 00 00 d5 7a 0c 00 6b 00 00 00 | .z.......z.......z.......z..k... |
| c3a0 | d7 7a 0c 00 69 00 00 00 43 7b 0c 00 6e 00 00 00 ad 7b 0c 00 2d 00 00 00 1c 7c 0c 00 02 00 00 00 | .z..i...C{..n....{..-....|...... |
| c3c0 | 4a 7c 0c 00 3b 00 00 00 4d 7c 0c 00 02 00 00 00 89 7c 0c 00 02 00 00 00 8c 7c 0c 00 0a 00 00 00 | J|..;...M|.......|.......|...... |
| c3e0 | 8f 7c 0c 00 6b 02 00 00 9a 7c 0c 00 01 00 00 00 06 7f 0c 00 02 00 00 00 08 7f 0c 00 01 00 00 00 | .|..k....|...................... |
| c400 | 0b 7f 0c 00 6c 00 00 00 0d 7f 0c 00 01 00 00 00 7a 7f 0c 00 76 00 00 00 7c 7f 0c 00 7b 00 00 00 | ....l...........z...v...|...{... |
| c420 | f3 7f 0c 00 61 01 00 00 6f 80 0c 00 8b 00 00 00 d1 81 0c 00 10 01 00 00 5d 82 0c 00 8a 01 00 00 | ....a...o...............]....... |
| c440 | 6e 83 0c 00 36 00 00 00 f9 84 0c 00 22 01 00 00 30 85 0c 00 26 02 00 00 53 86 0c 00 ec 00 00 00 | n...6......."...0...&...S....... |
| c460 | 7a 88 0c 00 8b 00 00 00 67 89 0c 00 8c 01 00 00 f3 89 0c 00 bd 00 00 00 80 8b 0c 00 08 02 00 00 | z.......g....................... |
| c480 | 3e 8c 0c 00 53 01 00 00 47 8e 0c 00 dc 00 00 00 9b 8f 0c 00 4f 00 00 00 78 90 0c 00 aa 03 00 00 | >...S...G...........O...x....... |
| c4a0 | c8 90 0c 00 aa 03 00 00 73 94 0c 00 8b 01 00 00 1e 98 0c 00 80 01 00 00 aa 99 0c 00 b5 01 00 00 | ........s....................... |
| c4c0 | 2b 9b 0c 00 4c 02 00 00 e1 9c 0c 00 3f 00 00 00 2e 9f 0c 00 61 00 00 00 6e 9f 0c 00 8f 05 00 00 | +...L.......?.......a...n....... |
| c4e0 | d0 9f 0c 00 32 02 00 00 60 a5 0c 00 0b 01 00 00 93 a7 0c 00 3d 02 00 00 9f a8 0c 00 7e 00 00 00 | ....2...`...........=.......~... |
| c500 | dd aa 0c 00 37 00 00 00 5c ab 0c 00 8f 01 00 00 94 ab 0c 00 01 01 00 00 24 ad 0c 00 da 01 00 00 | ....7...\...............$....... |
| c520 | 26 ae 0c 00 3e 01 00 00 01 b0 0c 00 8e 02 00 00 40 b1 0c 00 a6 00 00 00 cf b3 0c 00 e3 01 00 00 | &...>...........@............... |
| c540 | 76 b4 0c 00 af 01 00 00 5a b6 0c 00 87 01 00 00 0a b8 0c 00 f6 01 00 00 92 b9 0c 00 17 02 00 00 | v.......Z....................... |
| c560 | 89 bb 0c 00 d9 01 00 00 a1 bd 0c 00 8e 00 00 00 7b bf 0c 00 57 01 00 00 0a c0 0c 00 82 00 00 00 | ................{...W........... |
| c580 | 62 c1 0c 00 fb 00 00 00 e5 c1 0c 00 b4 01 00 00 e1 c2 0c 00 d6 01 00 00 96 c4 0c 00 59 01 00 00 | b...........................Y... |
| c5a0 | 6d c6 0c 00 50 01 00 00 c7 c7 0c 00 be 01 00 00 18 c9 0c 00 68 01 00 00 d7 ca 0c 00 04 02 00 00 | m...P...............h........... |
| c5c0 | 40 cc 0c 00 89 00 00 00 45 ce 0c 00 84 00 00 00 cf ce 0c 00 f9 00 00 00 54 cf 0c 00 a4 00 00 00 | @.......E...............T....... |
| c5e0 | 4e d0 0c 00 b5 00 00 00 f3 d0 0c 00 43 00 00 00 a9 d1 0c 00 5c 00 00 00 ed d1 0c 00 52 00 00 00 | N...........C.......\.......R... |
| c600 | 4a d2 0c 00 46 00 00 00 9d d2 0c 00 50 00 00 00 e4 d2 0c 00 48 00 00 00 35 d3 0c 00 4c 00 00 00 | J...F.......P.......H...5...L... |
| c620 | 7e d3 0c 00 47 00 00 00 cb d3 0c 00 48 00 00 00 13 d4 0c 00 41 00 00 00 5c d4 0c 00 44 00 00 00 | ~...G.......H.......A...\...D... |
| c640 | 9e d4 0c 00 61 00 00 00 e3 d4 0c 00 61 00 00 00 45 d5 0c 00 62 00 00 00 a7 d5 0c 00 64 00 00 00 | ....a.......a...E...b.......d... |
| c660 | 0a d6 0c 00 5f 00 00 00 6f d6 0c 00 60 00 00 00 cf d6 0c 00 19 00 00 00 30 d7 0c 00 29 00 00 00 | ...._...o...`...........0...)... |
| c680 | 4a d7 0c 00 12 00 00 00 74 d7 0c 00 3d 00 00 00 87 d7 0c 00 13 00 00 00 c5 d7 0c 00 3f 00 00 00 | J.......t...=...............?... |
| c6a0 | d9 d7 0c 00 13 00 00 00 19 d8 0c 00 3f 00 00 00 2d d8 0c 00 15 00 00 00 6d d8 0c 00 43 00 00 00 | ............?...-.......m...C... |
| c6c0 | 83 d8 0c 00 15 00 00 00 c7 d8 0c 00 43 00 00 00 dd d8 0c 00 31 01 00 00 21 d9 0c 00 11 00 00 00 | ............C.......1...!....... |
| c6e0 | 53 da 0c 00 80 01 00 00 65 da 0c 00 40 00 00 00 e6 db 0c 00 24 00 00 00 27 dc 0c 00 41 01 00 00 | S.......e...@.......$...'...A... |
| c700 | 4c dc 0c 00 19 00 00 00 8e dd 0c 00 37 00 00 00 a8 dd 0c 00 2a 00 00 00 e0 dd 0c 00 39 00 00 00 | L...........7.......*.......9... |
| c720 | 0b de 0c 00 29 00 00 00 45 de 0c 00 07 00 00 00 6f de 0c 00 4d 00 00 00 77 de 0c 00 18 00 00 00 | ....)...E.......o...M...w....... |
| c740 | c5 de 0c 00 81 00 00 00 de de 0c 00 b6 00 00 00 60 df 0c 00 40 00 00 00 17 e0 0c 00 2f 00 00 00 | ................`...@......./... |
| c760 | 58 e0 0c 00 32 00 00 00 88 e0 0c 00 35 00 00 00 bb e0 0c 00 1d 00 00 00 f1 e0 0c 00 27 00 00 00 | X...2.......5...............'... |
| c780 | 0f e1 0c 00 1f 00 00 00 37 e1 0c 00 36 00 00 00 57 e1 0c 00 39 00 00 00 8e e1 0c 00 18 01 00 00 | ........7...6...W...9........... |
| c7a0 | c8 e1 0c 00 1e 00 00 00 e1 e2 0c 00 2d 00 00 00 00 e3 0c 00 5c 00 00 00 2e e3 0c 00 37 01 00 00 | ............-.......\.......7... |
| c7c0 | 8b e3 0c 00 cb 01 00 00 c3 e4 0c 00 ab 01 00 00 8f e6 0c 00 59 01 00 00 3b e8 0c 00 3a 01 00 00 | ....................Y...;...:... |
| c7e0 | 95 e9 0c 00 2d 00 00 00 d0 ea 0c 00 3a 00 00 00 fe ea 0c 00 6d 00 00 00 39 eb 0c 00 77 00 00 00 | ....-.......:.......m...9...w... |
| c800 | a7 eb 0c 00 8b 00 00 00 1f ec 0c 00 cc 01 00 00 ab ec 0c 00 ba 00 00 00 78 ee 0c 00 16 00 00 00 | ........................x....... |
| c820 | 33 ef 0c 00 33 00 00 00 4a ef 0c 00 28 00 00 00 7e ef 0c 00 77 01 00 00 a7 ef 0c 00 51 00 00 00 | 3...3...J...(...~...w.......Q... |
| c840 | 1f f1 0c 00 74 00 00 00 71 f1 0c 00 26 00 00 00 e6 f1 0c 00 85 00 00 00 0d f2 0c 00 8b 00 00 00 | ....t...q...&................... |
| c860 | 93 f2 0c 00 8b 00 00 00 1f f3 0c 00 cf 00 00 00 ab f3 0c 00 34 01 00 00 7b f4 0c 00 2f 00 00 00 | ....................4...{.../... |
| c880 | b0 f5 0c 00 72 00 00 00 e0 f5 0c 00 65 00 00 00 53 f6 0c 00 31 00 00 00 b9 f6 0c 00 01 01 00 00 | ....r.......e...S...1........... |
| c8a0 | eb f6 0c 00 33 00 00 00 ed f7 0c 00 3c 00 00 00 21 f8 0c 00 42 00 00 00 5e f8 0c 00 93 01 00 00 | ....3.......<...!...B...^....... |
| c8c0 | a1 f8 0c 00 93 01 00 00 35 fa 0c 00 e4 01 00 00 c9 fb 0c 00 63 00 00 00 ae fd 0c 00 50 00 00 00 | ........5...........c.......P... |
| c8e0 | 12 fe 0c 00 d4 00 00 00 63 fe 0c 00 ed 00 00 00 38 ff 0c 00 78 00 00 00 26 00 0d 00 90 00 00 00 | ........c.......8...x...&....... |
| c900 | 9f 00 0d 00 c0 01 00 00 30 01 0d 00 a2 00 00 00 f1 02 0d 00 88 00 00 00 94 03 0d 00 4e 00 00 00 | ........0...................N... |
| c920 | 1d 04 0d 00 44 00 00 00 6c 04 0d 00 58 00 00 00 b1 04 0d 00 08 01 00 00 0a 05 0d 00 65 00 00 00 | ....D...l...X...............e... |
| c940 | 13 06 0d 00 7e 00 00 00 79 06 0d 00 48 01 00 00 f8 06 0d 00 35 01 00 00 41 08 0d 00 90 00 00 00 | ....~...y...H.......5...A....... |
| c960 | 77 09 0d 00 a3 00 00 00 08 0a 0d 00 02 01 00 00 ac 0a 0d 00 3f 00 00 00 af 0b 0d 00 42 00 00 00 | w...................?.......B... |
| c980 | ef 0b 0d 00 24 00 00 00 32 0c 0d 00 22 01 00 00 57 0c 0d 00 1c 00 00 00 7a 0d 0d 00 2c 00 00 00 | ....$...2..."...W.......z...,... |
| c9a0 | 97 0d 0d 00 43 00 00 00 c4 0d 0d 00 c8 00 00 00 08 0e 0d 00 b8 00 00 00 d1 0e 0d 00 b1 01 00 00 | ....C........................... |
| c9c0 | 8a 0f 0d 00 4f 00 00 00 3c 11 0d 00 37 00 00 00 8c 11 0d 00 26 00 00 00 c4 11 0d 00 0a 02 00 00 | ....O...<...7.......&........... |
| c9e0 | eb 11 0d 00 62 00 00 00 f6 13 0d 00 41 00 00 00 59 14 0d 00 3d 00 00 00 9b 14 0d 00 5e 00 00 00 | ....b.......A...Y...=.......^... |
| ca00 | d9 14 0d 00 35 00 00 00 38 15 0d 00 77 00 00 00 6e 15 0d 00 04 00 00 00 e6 15 0d 00 1c 00 00 00 | ....5...8...w...n............... |
| ca20 | eb 15 0d 00 03 00 00 00 08 16 0d 00 03 00 00 00 0c 16 0d 00 5c 00 00 00 10 16 0d 00 a7 01 00 00 | ....................\........... |
| ca40 | 6d 16 0d 00 0c 00 00 00 15 18 0d 00 a8 00 00 00 22 18 0d 00 70 00 00 00 cb 18 0d 00 3c 00 00 00 | m..............."...p.......<... |
| ca60 | 3c 19 0d 00 41 00 00 00 79 19 0d 00 33 00 00 00 bb 19 0d 00 12 00 00 00 ef 19 0d 00 0c 00 00 00 | <...A...y...3................... |
| ca80 | 02 1a 0d 00 79 00 00 00 0f 1a 0d 00 45 00 00 00 89 1a 0d 00 07 00 00 00 cf 1a 0d 00 10 00 00 00 | ....y.......E................... |
| caa0 | d7 1a 0d 00 22 00 00 00 e8 1a 0d 00 68 00 00 00 0b 1b 0d 00 41 00 00 00 74 1b 0d 00 40 00 00 00 | ....".......h.......A...t...@... |
| cac0 | b6 1b 0d 00 23 00 00 00 f7 1b 0d 00 c5 00 00 00 1b 1c 0d 00 9f 00 00 00 e1 1c 0d 00 3c 00 00 00 | ....#.......................<... |
| cae0 | 81 1d 0d 00 23 00 00 00 be 1d 0d 00 48 00 00 00 e2 1d 0d 00 26 00 00 00 2b 1e 0d 00 35 00 00 00 | ....#.......H.......&...+...5... |
| cb00 | 52 1e 0d 00 4e 00 00 00 88 1e 0d 00 86 00 00 00 d7 1e 0d 00 68 00 00 00 5e 1f 0d 00 63 00 00 00 | R...N...............h...^...c... |
| cb20 | c7 1f 0d 00 2f 00 00 00 2b 20 0d 00 48 00 00 00 5b 20 0d 00 43 00 00 00 a4 20 0d 00 a3 00 00 00 | ..../...+...H...[...C........... |
| cb40 | e8 20 0d 00 b8 00 00 00 8c 21 0d 00 81 00 00 00 45 22 0d 00 46 00 00 00 c7 22 0d 00 1c 00 00 00 | .........!......E"..F...."...... |
| cb60 | 0e 23 0d 00 2a 00 00 00 2b 23 0d 00 7d 00 00 00 56 23 0d 00 60 00 00 00 d4 23 0d 00 ee 00 00 00 | .#..*...+#..}...V#..`....#...... |
| cb80 | 35 24 0d 00 09 01 00 00 24 25 0d 00 02 01 00 00 2e 26 0d 00 68 00 00 00 31 27 0d 00 07 00 00 00 | 5$......$%.......&..h...1'...... |
| cba0 | 9a 27 0d 00 12 00 00 00 a2 27 0d 00 10 00 00 00 b5 27 0d 00 0e 00 00 00 c6 27 0d 00 4c 01 00 00 | .'.......'.......'.......'..L... |
| cbc0 | d5 27 0d 00 42 00 00 00 22 29 0d 00 0d 00 00 00 65 29 0d 00 24 00 00 00 73 29 0d 00 c6 00 00 00 | .'..B...")......e)..$...s)...... |
| cbe0 | 98 29 0d 00 ba 00 00 00 5f 2a 0d 00 52 00 00 00 1a 2b 0d 00 17 00 00 00 6d 2b 0d 00 1a 00 00 00 | .)......_*..R....+......m+...... |
| cc00 | 85 2b 0d 00 10 00 00 00 a0 2b 0d 00 c7 00 00 00 b1 2b 0d 00 13 00 00 00 79 2c 0d 00 1a 00 00 00 | .+.......+.......+......y,...... |
| cc20 | 8d 2c 0d 00 3c 00 00 00 a8 2c 0d 00 7f 00 00 00 e5 2c 0d 00 1a 00 00 00 65 2d 0d 00 14 00 00 00 | .,..<....,.......,......e-...... |
| cc40 | 80 2d 0d 00 7e 00 00 00 95 2d 0d 00 74 00 00 00 14 2e 0d 00 7c 01 00 00 89 2e 0d 00 26 01 00 00 | .-..~....-..t.......|.......&... |
| cc60 | 06 30 0d 00 40 01 00 00 2d 31 0d 00 74 00 00 00 6e 32 0d 00 61 01 00 00 e3 32 0d 00 63 01 00 00 | .0..@...-1..t...n2..a....2..c... |
| cc80 | 45 34 0d 00 2e 00 00 00 a9 35 0d 00 05 00 00 00 d8 35 0d 00 09 00 00 00 de 35 0d 00 07 00 00 00 | E4.......5.......5.......5...... |
| cca0 | e8 35 0d 00 66 00 00 00 f0 35 0d 00 4f 00 00 00 57 36 0d 00 9a 00 00 00 a7 36 0d 00 8e 00 00 00 | .5..f....5..O...W6.......6...... |
| ccc0 | 42 37 0d 00 b1 00 00 00 d1 37 0d 00 0e 00 00 00 83 38 0d 00 67 00 00 00 92 38 0d 00 ae 00 00 00 | B7.......7.......8..g....8...... |
| cce0 | fa 38 0d 00 89 00 00 00 a9 39 0d 00 28 00 00 00 33 3a 0d 00 3a 00 00 00 5c 3a 0d 00 ac 00 00 00 | .8.......9..(...3:..:...\:...... |
| cd00 | 97 3a 0d 00 ab 00 00 00 44 3b 0d 00 74 00 00 00 f0 3b 0d 00 97 00 00 00 65 3c 0d 00 3a 00 00 00 | .:......D;..t....;......e<..:... |
| cd20 | fd 3c 0d 00 40 00 00 00 38 3d 0d 00 27 00 00 00 79 3d 0d 00 e3 00 00 00 a1 3d 0d 00 29 00 00 00 | .<..@...8=..'...y=.......=..)... |
| cd40 | 85 3e 0d 00 21 00 00 00 af 3e 0d 00 08 01 00 00 d1 3e 0d 00 61 01 00 00 da 3f 0d 00 2c 00 00 00 | .>..!....>.......>..a....?..,... |
| cd60 | 3c 41 0d 00 2e 00 00 00 69 41 0d 00 80 00 00 00 98 41 0d 00 7b 00 00 00 19 42 0d 00 30 00 00 00 | <A......iA.......A..{....B..0... |
| cd80 | 95 42 0d 00 c8 00 00 00 c6 42 0d 00 c8 00 00 00 8f 43 0d 00 9c 00 00 00 58 44 0d 00 40 00 00 00 | .B.......B.......C......XD..@... |
| cda0 | f5 44 0d 00 b7 00 00 00 36 45 0d 00 b7 00 00 00 ee 45 0d 00 5a 00 00 00 a6 46 0d 00 c4 00 00 00 | .D......6E.......E..Z....F...... |
| cdc0 | 01 47 0d 00 c4 00 00 00 c6 47 0d 00 6e 00 00 00 8b 48 0d 00 a5 00 00 00 fa 48 0d 00 83 00 00 00 | .G.......G..n....H.......H...... |
| cde0 | a0 49 0d 00 c3 00 00 00 24 4a 0d 00 61 01 00 00 e8 4a 0d 00 68 01 00 00 4a 4c 0d 00 18 00 00 00 | .I......$J..a....J..h...JL...... |
| ce00 | b3 4d 0d 00 54 00 00 00 cc 4d 0d 00 89 00 00 00 21 4e 0d 00 8b 00 00 00 ab 4e 0d 00 6b 00 00 00 | .M..T....M......!N.......N..k... |
| ce20 | 37 4f 0d 00 3d 00 00 00 a3 4f 0d 00 91 00 00 00 e1 4f 0d 00 96 00 00 00 73 50 0d 00 81 00 00 00 | 7O..=....O.......O......sP...... |
| ce40 | 0a 51 0d 00 39 00 00 00 8c 51 0d 00 3e 01 00 00 c6 51 0d 00 58 00 00 00 05 53 0d 00 c2 00 00 00 | .Q..9....Q..>....Q..X....S...... |
| ce60 | 5e 53 0d 00 ba 00 00 00 21 54 0d 00 6a 00 00 00 dc 54 0d 00 8c 02 00 00 47 55 0d 00 85 02 00 00 | ^S......!T..j....T......GU...... |
| ce80 | d4 57 0d 00 cb 00 00 00 5a 5a 0d 00 40 00 00 00 26 5b 0d 00 5f 00 00 00 67 5b 0d 00 9e 01 00 00 | .W......ZZ..@...&[.._...g[...... |
| cea0 | c7 5b 0d 00 9f 01 00 00 66 5d 0d 00 85 01 00 00 06 5f 0d 00 84 01 00 00 8c 60 0d 00 bb 00 00 00 | .[......f]......._.......`...... |
| cec0 | 11 62 0d 00 56 00 00 00 cd 62 0d 00 39 00 00 00 24 63 0d 00 1d 00 00 00 5e 63 0d 00 4b 00 00 00 | .b..V....b..9...$c......^c..K... |
| cee0 | 7c 63 0d 00 0b 00 00 00 c8 63 0d 00 02 01 00 00 d4 63 0d 00 30 00 00 00 d7 64 0d 00 93 00 00 00 | |c.......c.......c..0....d...... |
| cf00 | 08 65 0d 00 5d 00 00 00 9c 65 0d 00 5d 00 00 00 fa 65 0d 00 9a 00 00 00 58 66 0d 00 1a 00 00 00 | .e..]....e..]....e......Xf...... |
| cf20 | f3 66 0d 00 0d 00 00 00 0e 67 0d 00 a1 00 00 00 1c 67 0d 00 3b 00 00 00 be 67 0d 00 15 00 00 00 | .f.......g.......g..;....g...... |
| cf40 | fa 67 0d 00 97 00 00 00 10 68 0d 00 97 00 00 00 a8 68 0d 00 34 00 00 00 40 69 0d 00 2c 00 00 00 | .g.......h.......h..4...@i..,... |
| cf60 | 75 69 0d 00 2f 00 00 00 a2 69 0d 00 c8 00 00 00 d2 69 0d 00 43 01 00 00 9b 6a 0d 00 18 00 00 00 | ui../....i.......i..C....j...... |
| cf80 | df 6b 0d 00 9c 00 00 00 f8 6b 0d 00 3e 00 00 00 95 6c 0d 00 ad 00 00 00 d4 6c 0d 00 aa 00 00 00 | .k.......k..>....l.......l...... |
| cfa0 | 82 6d 0d 00 44 00 00 00 2d 6e 0d 00 1d 00 00 00 72 6e 0d 00 23 00 00 00 90 6e 0d 00 19 00 00 00 | .m..D...-n......rn..#....n...... |
| cfc0 | b4 6e 0d 00 12 00 00 00 ce 6e 0d 00 43 00 00 00 e1 6e 0d 00 42 00 00 00 25 6f 0d 00 47 00 00 00 | .n.......n..C....n..B...%o..G... |
| cfe0 | 68 6f 0d 00 31 00 00 00 b0 6f 0d 00 0a 00 00 00 e2 6f 0d 00 08 00 00 00 ed 6f 0d 00 28 01 00 00 | ho..1....o.......o.......o..(... |
| d000 | f6 6f 0d 00 81 00 00 00 1f 71 0d 00 75 00 00 00 a1 71 0d 00 aa 00 00 00 17 72 0d 00 d5 00 00 00 | .o.......q..u....q.......r...... |
| d020 | c2 72 0d 00 a5 01 00 00 98 73 0d 00 71 00 00 00 3e 75 0d 00 6c 00 00 00 b0 75 0d 00 78 00 00 00 | .r.......s..q...>u..l....u..x... |
| d040 | 1d 76 0d 00 99 00 00 00 96 76 0d 00 1d 01 00 00 30 77 0d 00 74 00 00 00 4e 78 0d 00 49 01 00 00 | .v.......v......0w..t...Nx..I... |
| d060 | c3 78 0d 00 18 01 00 00 0d 7a 0d 00 17 01 00 00 26 7b 0d 00 1e 01 00 00 3e 7c 0d 00 1a 01 00 00 | .x.......z......&{......>|...... |
| d080 | 5d 7d 0d 00 39 01 00 00 78 7e 0d 00 5f 00 00 00 b2 7f 0d 00 32 01 00 00 12 80 0d 00 82 00 00 00 | ]}..9...x~.._.......2........... |
| d0a0 | 45 81 0d 00 a2 00 00 00 c8 81 0d 00 93 00 00 00 6b 82 0d 00 af 00 00 00 ff 82 0d 00 7e 00 00 00 | E...............k...........~... |
| d0c0 | af 83 0d 00 47 00 00 00 2e 84 0d 00 83 00 00 00 76 84 0d 00 6e 00 00 00 fa 84 0d 00 91 00 00 00 | ....G...........v...n........... |
| d0e0 | 69 85 0d 00 59 00 00 00 fb 85 0d 00 96 00 00 00 55 86 0d 00 8e 00 00 00 ec 86 0d 00 c1 00 00 00 | i...Y...........U............... |
| d100 | 7b 87 0d 00 ca 00 00 00 3d 88 0d 00 59 01 00 00 08 89 0d 00 23 00 00 00 62 8a 0d 00 2f 00 00 00 | {.......=...Y.......#...b.../... |
| d120 | 86 8a 0d 00 43 00 00 00 b6 8a 0d 00 27 00 00 00 fa 8a 0d 00 2d 00 00 00 22 8b 0d 00 3b 00 00 00 | ....C.......'.......-..."...;... |
| d140 | 50 8b 0d 00 6e 00 00 00 8c 8b 0d 00 82 00 00 00 fb 8b 0d 00 68 00 00 00 7e 8c 0d 00 19 00 00 00 | P...n...............h...~....... |
| d160 | e7 8c 0d 00 19 00 00 00 01 8d 0d 00 19 00 00 00 1b 8d 0d 00 19 00 00 00 35 8d 0d 00 19 00 00 00 | ........................5....... |
| d180 | 4f 8d 0d 00 19 00 00 00 69 8d 0d 00 19 00 00 00 83 8d 0d 00 19 00 00 00 9d 8d 0d 00 19 00 00 00 | O.......i....................... |
| d1a0 | b7 8d 0d 00 19 00 00 00 d1 8d 0d 00 19 00 00 00 eb 8d 0d 00 19 00 00 00 05 8e 0d 00 7b 00 00 00 | ............................{... |
| d1c0 | 1f 8e 0d 00 c2 00 00 00 9b 8e 0d 00 41 00 00 00 5e 8f 0d 00 c0 00 00 00 a0 8f 0d 00 68 00 00 00 | ............A...^...........h... |
| d1e0 | 61 90 0d 00 0e 00 00 00 ca 90 0d 00 16 00 00 00 d9 90 0d 00 1f 00 00 00 f0 90 0d 00 25 00 00 00 | a...........................%... |
| d200 | 10 91 0d 00 29 00 00 00 36 91 0d 00 24 00 00 00 60 91 0d 00 e6 00 00 00 85 91 0d 00 20 00 00 00 | ....)...6...$...`............... |
| d220 | 6c 92 0d 00 14 00 00 00 8d 92 0d 00 45 00 00 00 a2 92 0d 00 13 00 00 00 e8 92 0d 00 13 00 00 00 | l...........E................... |
| d240 | fc 92 0d 00 17 00 00 00 10 93 0d 00 17 00 00 00 28 93 0d 00 e7 00 00 00 40 93 0d 00 3d 00 00 00 | ................(.......@...=... |
| d260 | 28 94 0d 00 12 00 00 00 66 94 0d 00 21 00 00 00 79 94 0d 00 14 00 00 00 9b 94 0d 00 13 00 00 00 | (.......f...!...y............... |
| d280 | b0 94 0d 00 03 00 00 00 c4 94 0d 00 1b 00 00 00 c8 94 0d 00 59 00 00 00 e4 94 0d 00 03 00 00 00 | ....................Y........... |
| d2a0 | 3e 95 0d 00 14 00 00 00 42 95 0d 00 14 00 00 00 57 95 0d 00 1d 00 00 00 6c 95 0d 00 1a 00 00 00 | >.......B.......W.......l....... |
| d2c0 | 8a 95 0d 00 0b 00 00 00 a5 95 0d 00 18 00 00 00 b1 95 0d 00 19 00 00 00 ca 95 0d 00 44 00 00 00 | ............................D... |
| d2e0 | e4 95 0d 00 1a 00 00 00 29 96 0d 00 1f 00 00 00 44 96 0d 00 1c 00 00 00 64 96 0d 00 20 00 00 00 | ........).......D.......d....... |
| d300 | 81 96 0d 00 65 01 00 00 a2 96 0d 00 54 01 00 00 08 98 0d 00 c3 02 00 00 5d 99 0d 00 56 00 00 00 | ....e.......T...........]...V... |
| d320 | 21 9c 0d 00 e4 00 00 00 78 9c 0d 00 05 00 00 00 5d 9d 0d 00 67 00 00 00 63 9d 0d 00 81 01 00 00 | !.......x.......]...g...c....... |
| d340 | cb 9d 0d 00 07 00 00 00 4d 9f 0d 00 89 00 00 00 55 9f 0d 00 13 00 00 00 df 9f 0d 00 0f 00 00 00 | ........M.......U............... |
| d360 | f3 9f 0d 00 1e 00 00 00 03 a0 0d 00 21 00 00 00 22 a0 0d 00 11 00 00 00 44 a0 0d 00 21 00 00 00 | ............!...".......D...!... |
| d380 | 56 a0 0d 00 4c 00 00 00 78 a0 0d 00 50 00 00 00 c5 a0 0d 00 69 00 00 00 16 a1 0d 00 53 00 00 00 | V...L...x...P.......i.......S... |
| d3a0 | 80 a1 0d 00 53 00 00 00 d4 a1 0d 00 55 00 00 00 28 a2 0d 00 55 00 00 00 7e a2 0d 00 17 00 00 00 | ....S.......U...(...U...~....... |
| d3c0 | d4 a2 0d 00 0e 00 00 00 ec a2 0d 00 0e 00 00 00 fb a2 0d 00 3f 00 00 00 0a a3 0d 00 36 00 00 00 | ....................?.......6... |
| d3e0 | 4a a3 0d 00 0b 00 00 00 81 a3 0d 00 d1 00 00 00 8d a3 0d 00 41 00 00 00 5f a4 0d 00 19 00 00 00 | J...................A..._....... |
| d400 | a1 a4 0d 00 87 00 00 00 bb a4 0d 00 89 00 00 00 43 a5 0d 00 db 00 00 00 cd a5 0d 00 38 00 00 00 | ................C...........8... |
| d420 | a9 a6 0d 00 3c 00 00 00 e2 a6 0d 00 55 00 00 00 1f a7 0d 00 78 00 00 00 75 a7 0d 00 75 00 00 00 | ....<.......U.......x...u...u... |
| d440 | ee a7 0d 00 27 00 00 00 64 a8 0d 00 1c 00 00 00 8c a8 0d 00 7d 01 00 00 a9 a8 0d 00 11 00 00 00 | ....'...d...........}........... |
| d460 | 27 aa 0d 00 0c 00 00 00 39 aa 0d 00 2f 00 00 00 46 aa 0d 00 3f 00 00 00 76 aa 0d 00 63 00 00 00 | '.......9.../...F...?...v...c... |
| d480 | b6 aa 0d 00 09 00 00 00 1a ab 0d 00 5d 00 00 00 24 ab 0d 00 58 00 00 00 82 ab 0d 00 59 00 00 00 | ............]...$...X.......Y... |
| d4a0 | db ab 0d 00 34 00 00 00 35 ac 0d 00 17 00 00 00 6a ac 0d 00 0c 00 00 00 82 ac 0d 00 25 00 00 00 | ....4...5.......j...........%... |
| d4c0 | 8f ac 0d 00 13 00 00 00 b5 ac 0d 00 29 00 00 00 c9 ac 0d 00 83 00 00 00 f3 ac 0d 00 6e 00 00 00 | ............)...............n... |
| d4e0 | 77 ad 0d 00 31 00 00 00 e6 ad 0d 00 06 00 00 00 18 ae 0d 00 1d 00 00 00 1f ae 0d 00 0e 00 00 00 | w...1........................... |
| d500 | 3d ae 0d 00 0c 00 00 00 4c ae 0d 00 3f 00 00 00 59 ae 0d 00 37 00 00 00 99 ae 0d 00 07 00 00 00 | =.......L...?...Y...7........... |
| d520 | d1 ae 0d 00 0b 00 00 00 d9 ae 0d 00 0e 00 00 00 e5 ae 0d 00 d0 00 00 00 f4 ae 0d 00 9c 00 00 00 | ................................ |
| d540 | c5 af 0d 00 51 00 00 00 62 b0 0d 00 9c 00 00 00 b4 b0 0d 00 ef 00 00 00 51 b1 0d 00 8d 01 00 00 | ....Q...b...............Q....... |
| d560 | 41 b2 0d 00 37 01 00 00 cf b3 0d 00 38 01 00 00 07 b5 0d 00 ce 00 00 00 40 b6 0d 00 d9 00 00 00 | A...7.......8...........@....... |
| d580 | 0f b7 0d 00 eb 00 00 00 e9 b7 0d 00 3b 00 00 00 d5 b8 0d 00 63 00 00 00 11 b9 0d 00 78 00 00 00 | ............;.......c.......x... |
| d5a0 | 75 b9 0d 00 9d 00 00 00 ee b9 0d 00 97 00 00 00 8c ba 0d 00 25 00 00 00 24 bb 0d 00 a1 00 00 00 | u...................%...$....... |
| d5c0 | 4a bb 0d 00 a3 00 00 00 ec bb 0d 00 3a 01 00 00 90 bc 0d 00 16 00 00 00 cb bd 0d 00 1a 00 00 00 | J...........:................... |
| d5e0 | e2 bd 0d 00 04 00 00 00 fd bd 0d 00 05 00 00 00 02 be 0d 00 0b 01 00 00 08 be 0d 00 0a 00 00 00 | ................................ |
| d600 | 14 bf 0d 00 27 00 00 00 1f bf 0d 00 16 00 00 00 47 bf 0d 00 c8 00 00 00 5e bf 0d 00 1a 00 00 00 | ....'...........G.......^....... |
| d620 | 27 c0 0d 00 2a 00 00 00 42 c0 0d 00 0c 00 00 00 6d c0 0d 00 30 00 00 00 7a c0 0d 00 2c 00 00 00 | '...*...B.......m...0...z...,... |
| d640 | ab c0 0d 00 0b 01 00 00 d8 c0 0d 00 76 00 00 00 e4 c1 0d 00 bc 00 00 00 5b c2 0d 00 91 00 00 00 | ............v...........[....... |
| d660 | 18 c3 0d 00 c4 00 00 00 aa c3 0d 00 c7 00 00 00 6f c4 0d 00 3e 00 00 00 37 c5 0d 00 0c 00 00 00 | ................o...>...7....... |
| d680 | 76 c5 0d 00 46 00 00 00 83 c5 0d 00 06 00 00 00 ca c5 0d 00 14 00 00 00 d1 c5 0d 00 06 00 00 00 | v...F........................... |
| d6a0 | e6 c5 0d 00 c4 00 00 00 ed c5 0d 00 9f 00 00 00 b2 c6 0d 00 0e 00 00 00 52 c7 0d 00 2d 00 00 00 | ........................R...-... |
| d6c0 | 61 c7 0d 00 1b 00 00 00 8f c7 0d 00 0f 00 00 00 ab c7 0d 00 07 00 00 00 bb c7 0d 00 16 00 00 00 | a............................... |
| d6e0 | c3 c7 0d 00 1d 00 00 00 da c7 0d 00 06 00 00 00 f8 c7 0d 00 14 00 00 00 ff c7 0d 00 15 00 00 00 | ................................ |
| d700 | 14 c8 0d 00 14 00 00 00 2a c8 0d 00 1f 00 00 00 3f c8 0d 00 3d 00 00 00 5f c8 0d 00 0b 00 00 00 | ........*.......?...=..._....... |
| d720 | 9d c8 0d 00 0d 00 00 00 a9 c8 0d 00 14 00 00 00 b7 c8 0d 00 12 00 00 00 cc c8 0d 00 14 00 00 00 | ................................ |
| d740 | df c8 0d 00 6c 00 00 00 f4 c8 0d 00 07 00 00 00 61 c9 0d 00 6a 00 00 00 69 c9 0d 00 98 00 00 00 | ....l...........a...j...i....... |
| d760 | d4 c9 0d 00 0c 00 00 00 6d ca 0d 00 96 00 00 00 7a ca 0d 00 3e 00 00 00 11 cb 0d 00 77 00 00 00 | ........m.......z...>.......w... |
| d780 | 50 cb 0d 00 38 00 00 00 c8 cb 0d 00 08 00 00 00 01 cc 0d 00 20 00 00 00 0a cc 0d 00 40 00 00 00 | P...8.......................@... |
| d7a0 | 2b cc 0d 00 1e 00 00 00 6c cc 0d 00 11 00 00 00 8b cc 0d 00 97 00 00 00 9d cc 0d 00 0a 00 00 00 | +.......l....................... |
| d7c0 | 35 cd 0d 00 1b 00 00 00 40 cd 0d 00 58 00 00 00 5c cd 0d 00 0b 00 00 00 b5 cd 0d 00 0d 00 00 00 | 5.......@...X...\............... |
| d7e0 | c1 cd 0d 00 15 00 00 00 cf cd 0d 00 16 00 00 00 e5 cd 0d 00 13 00 00 00 fc cd 0d 00 15 00 00 00 | ................................ |
| d800 | 10 ce 0d 00 2f 00 00 00 26 ce 0d 00 0b 01 00 00 56 ce 0d 00 af 00 00 00 62 cf 0d 00 16 00 00 00 | ..../...&.......V.......b....... |
| d820 | 12 d0 0d 00 59 00 00 00 29 d0 0d 00 26 00 00 00 83 d0 0d 00 20 00 00 00 aa d0 0d 00 25 00 00 00 | ....Y...)...&...............%... |
| d840 | cb d0 0d 00 a5 00 00 00 f1 d0 0d 00 22 00 00 00 97 d1 0d 00 7d 00 00 00 ba d1 0d 00 9e 00 00 00 | ............".......}........... |
| d860 | 38 d2 0d 00 09 00 00 00 d7 d2 0d 00 94 00 00 00 e1 d2 0d 00 0d 00 00 00 76 d3 0d 00 51 00 00 00 | 8.......................v...Q... |
| d880 | 84 d3 0d 00 25 00 00 00 d6 d3 0d 00 37 00 00 00 fc d3 0d 00 c0 00 00 00 34 d4 0d 00 71 00 00 00 | ....%.......7...........4...q... |
| d8a0 | f5 d4 0d 00 24 00 00 00 67 d5 0d 00 52 00 00 00 8c d5 0d 00 4e 00 00 00 df d5 0d 00 68 00 00 00 | ....$...g...R.......N.......h... |
| d8c0 | 2e d6 0d 00 55 00 00 00 97 d6 0d 00 22 00 00 00 ed d6 0d 00 22 00 00 00 10 d7 0d 00 4c 00 00 00 | ....U.......".......".......L... |
| d8e0 | 33 d7 0d 00 57 00 00 00 80 d7 0d 00 75 00 00 00 d8 d7 0d 00 70 00 00 00 4e d8 0d 00 75 00 00 00 | 3...W.......u.......p...N...u... |
| d900 | bf d8 0d 00 a4 00 00 00 35 d9 0d 00 37 00 00 00 da d9 0d 00 fc 00 00 00 12 da 0d 00 bb 00 00 00 | ........5...7................... |
| d920 | 0f db 0d 00 7a 00 00 00 cb db 0d 00 77 00 00 00 46 dc 0d 00 71 00 00 00 be dc 0d 00 aa 00 00 00 | ....z.......w...F...q........... |
| d940 | 30 dd 0d 00 3a 00 00 00 db dd 0d 00 2b 00 00 00 16 de 0d 00 48 00 00 00 42 de 0d 00 3a 00 00 00 | 0...:.......+.......H...B...:... |
| d960 | 8b de 0d 00 60 00 00 00 c6 de 0d 00 62 00 00 00 27 df 0d 00 26 00 00 00 8a df 0d 00 2b 00 00 00 | ....`.......b...'...&.......+... |
| d980 | b1 df 0d 00 43 00 00 00 dd df 0d 00 2b 00 00 00 21 e0 0d 00 5b 00 00 00 4d e0 0d 00 61 00 00 00 | ....C.......+...!...[...M...a... |
| d9a0 | a9 e0 0d 00 27 00 00 00 0b e1 0d 00 5b 00 00 00 33 e1 0d 00 2e 00 00 00 8f e1 0d 00 47 00 00 00 | ....'.......[...3...........G... |
| d9c0 | be e1 0d 00 9a 00 00 00 06 e2 0d 00 31 00 00 00 a1 e2 0d 00 31 00 00 00 d3 e2 0d 00 3e 00 00 00 | ............1.......1.......>... |
| d9e0 | 05 e3 0d 00 41 00 00 00 44 e3 0d 00 84 00 00 00 86 e3 0d 00 5f 00 00 00 0b e4 0d 00 5f 00 00 00 | ....A...D..........._......._... |
| da00 | 6b e4 0d 00 3c 00 00 00 cb e4 0d 00 3c 00 00 00 08 e5 0d 00 39 00 00 00 45 e5 0d 00 89 00 00 00 | k...<.......<.......9...E....... |
| da20 | 7f e5 0d 00 58 00 00 00 09 e6 0d 00 2c 00 00 00 62 e6 0d 00 2b 00 00 00 8f e6 0d 00 64 00 00 00 | ....X.......,...b...+.......d... |
| da40 | bb e6 0d 00 65 00 00 00 20 e7 0d 00 2f 00 00 00 86 e7 0d 00 4b 00 00 00 b6 e7 0d 00 4c 00 00 00 | ....e......./.......K.......L... |
| da60 | 02 e8 0d 00 5f 00 00 00 4f e8 0d 00 42 00 00 00 af e8 0d 00 70 00 00 00 f2 e8 0d 00 64 00 00 00 | ...._...O...B.......p.......d... |
| da80 | 63 e9 0d 00 2a 00 00 00 c8 e9 0d 00 3b 00 00 00 f3 e9 0d 00 2b 00 00 00 2f ea 0d 00 34 00 00 00 | c...*.......;.......+.../...4... |
| daa0 | 5b ea 0d 00 42 00 00 00 90 ea 0d 00 36 00 00 00 d3 ea 0d 00 99 00 00 00 0a eb 0d 00 3f 00 00 00 | [...B.......6...............?... |
| dac0 | a4 eb 0d 00 3f 00 00 00 e4 eb 0d 00 50 00 00 00 24 ec 0d 00 2a 00 00 00 75 ec 0d 00 b2 00 00 00 | ....?.......P...$...*...u....... |
| dae0 | a0 ec 0d 00 2d 00 00 00 53 ed 0d 00 5d 00 00 00 81 ed 0d 00 49 00 00 00 df ed 0d 00 49 00 00 00 | ....-...S...].......I.......I... |
| db00 | 29 ee 0d 00 36 00 00 00 73 ee 0d 00 3c 00 00 00 aa ee 0d 00 3e 00 00 00 e7 ee 0d 00 2c 00 00 00 | )...6...s...<.......>.......,... |
| db20 | 26 ef 0d 00 1f 00 00 00 53 ef 0d 00 59 00 00 00 73 ef 0d 00 95 00 00 00 cd ef 0d 00 38 00 00 00 | &.......S...Y...s...........8... |
| db40 | 63 f0 0d 00 10 00 00 00 9c f0 0d 00 a6 00 00 00 ad f0 0d 00 92 00 00 00 54 f1 0d 00 43 00 00 00 | c.......................T...C... |
| db60 | e7 f1 0d 00 31 00 00 00 2b f2 0d 00 51 00 00 00 5d f2 0d 00 17 00 00 00 af f2 0d 00 11 00 00 00 | ....1...+...Q...]............... |
| db80 | c7 f2 0d 00 17 00 00 00 d9 f2 0d 00 25 00 00 00 f1 f2 0d 00 18 00 00 00 17 f3 0d 00 17 00 00 00 | ............%................... |
| dba0 | 30 f3 0d 00 1d 00 00 00 48 f3 0d 00 21 00 00 00 66 f3 0d 00 17 00 00 00 88 f3 0d 00 17 00 00 00 | 0.......H...!...f............... |
| dbc0 | a0 f3 0d 00 b2 00 00 00 b8 f3 0d 00 42 00 00 00 6b f4 0d 00 12 00 00 00 ae f4 0d 00 b7 00 00 00 | ............B...k............... |
| dbe0 | c1 f4 0d 00 b8 00 00 00 79 f5 0d 00 44 01 00 00 32 f6 0d 00 3c 01 00 00 77 f7 0d 00 c4 01 00 00 | ........y...D...2...<...w....... |
| dc00 | b4 f8 0d 00 09 00 00 00 79 fa 0d 00 0e 00 00 00 83 fa 0d 00 16 00 00 00 92 fa 0d 00 16 00 00 00 | ........y....................... |
| dc20 | a9 fa 0d 00 0d 00 00 00 c0 fa 0d 00 0e 00 00 00 ce fa 0d 00 07 00 00 00 dd fa 0d 00 0e 00 00 00 | ................................ |
| dc40 | e5 fa 0d 00 30 00 00 00 f4 fa 0d 00 09 00 00 00 25 fb 0d 00 12 00 00 00 2f fb 0d 00 12 00 00 00 | ....0...........%......./....... |
| dc60 | 42 fb 0d 00 11 00 00 00 55 fb 0d 00 49 00 00 00 67 fb 0d 00 49 00 00 00 b1 fb 0d 00 c9 00 00 00 | B.......U...I...g...I........... |
| dc80 | fb fb 0d 00 b3 00 00 00 c5 fc 0d 00 b4 00 00 00 79 fd 0d 00 36 00 00 00 2e fe 0d 00 39 00 00 00 | ................y...6.......9... |
| dca0 | 65 fe 0d 00 81 00 00 00 9f fe 0d 00 82 00 00 00 21 ff 0d 00 92 00 00 00 a4 ff 0d 00 64 00 00 00 | e...............!...........d... |
| dcc0 | 37 00 0e 00 8a 00 00 00 9c 00 0e 00 27 00 00 00 27 01 0e 00 15 00 00 00 4f 01 0e 00 5f 00 00 00 | 7...........'...'.......O..._... |
| dce0 | 65 01 0e 00 44 00 00 00 c5 01 0e 00 69 00 00 00 0a 02 0e 00 92 00 00 00 74 02 0e 00 75 00 00 00 | e...D.......i...........t...u... |
| dd00 | 07 03 0e 00 66 00 00 00 7d 03 0e 00 75 00 00 00 e4 03 0e 00 4e 00 00 00 5a 04 0e 00 8c 00 00 00 | ....f...}...u.......N...Z....... |
| dd20 | a9 04 0e 00 56 00 00 00 36 05 0e 00 76 00 00 00 8d 05 0e 00 73 00 00 00 04 06 0e 00 c3 00 00 00 | ....V...6...v.......s........... |
| dd40 | 78 06 0e 00 c0 00 00 00 3c 07 0e 00 6b 00 00 00 fd 07 0e 00 30 00 00 00 69 08 0e 00 7b 00 00 00 | x.......<...k.......0...i...{... |
| dd60 | 9a 08 0e 00 45 00 00 00 16 09 0e 00 7f 00 00 00 5c 09 0e 00 6d 00 00 00 dc 09 0e 00 3d 00 00 00 | ....E...........\...m.......=... |
| dd80 | 4a 0a 0e 00 d9 00 00 00 88 0a 0e 00 a0 00 00 00 62 0b 0e 00 68 00 00 00 03 0c 0e 00 9c 00 00 00 | J...............b...h........... |
| dda0 | 6c 0c 0e 00 54 00 00 00 09 0d 0e 00 2b 00 00 00 5e 0d 0e 00 21 00 00 00 8a 0d 0e 00 5a 00 00 00 | l...T.......+...^...!.......Z... |
| ddc0 | ac 0d 0e 00 70 00 00 00 07 0e 0e 00 4a 00 00 00 78 0e 0e 00 16 00 00 00 c3 0e 0e 00 19 00 00 00 | ....p.......J...x............... |
| dde0 | da 0e 0e 00 25 00 00 00 f4 0e 0e 00 62 00 00 00 1a 0f 0e 00 08 00 00 00 7d 0f 0e 00 2d 00 00 00 | ....%.......b...........}...-... |
| de00 | 86 0f 0e 00 14 00 00 00 b4 0f 0e 00 14 00 00 00 c9 0f 0e 00 14 00 00 00 de 0f 0e 00 14 00 00 00 | ................................ |
| de20 | f3 0f 0e 00 0d 00 00 00 08 10 0e 00 39 00 00 00 16 10 0e 00 43 00 00 00 50 10 0e 00 0b 00 00 00 | ............9.......C...P....... |
| de40 | 94 10 0e 00 da 00 00 00 a0 10 0e 00 db 00 00 00 7b 11 0e 00 e0 00 00 00 57 12 0e 00 f3 00 00 00 | ................{.......W....... |
| de60 | 38 13 0e 00 dc 00 00 00 2c 14 0e 00 dd 00 00 00 09 15 0e 00 dc 00 00 00 e7 15 0e 00 dd 00 00 00 | 8.......,....................... |
| de80 | c4 16 0e 00 43 00 00 00 a2 17 0e 00 3d 00 00 00 e6 17 0e 00 00 01 00 00 24 18 0e 00 00 01 00 00 | ....C.......=...........$....... |
| dea0 | 25 19 0e 00 b3 00 00 00 26 1a 0e 00 0f 00 00 00 da 1a 0e 00 0b 00 00 00 ea 1a 0e 00 61 00 00 00 | %.......&...................a... |
| dec0 | f6 1a 0e 00 0a 00 00 00 58 1b 0e 00 0b 00 00 00 63 1b 0e 00 18 00 00 00 6f 1b 0e 00 10 00 00 00 | ........X.......c.......o....... |
| dee0 | 88 1b 0e 00 3a 00 00 00 99 1b 0e 00 12 00 00 00 d4 1b 0e 00 3c 00 00 00 e7 1b 0e 00 84 00 00 00 | ....:...............<........... |
| df00 | 24 1c 0e 00 14 00 00 00 a9 1c 0e 00 4c 00 00 00 be 1c 0e 00 05 00 00 00 0b 1d 0e 00 15 00 00 00 | $...........L................... |
| df20 | 11 1d 0e 00 0d 00 00 00 27 1d 0e 00 b6 00 00 00 35 1d 0e 00 04 00 00 00 ec 1d 0e 00 bf 00 00 00 | ........'.......5............... |
| df40 | f1 1d 0e 00 52 00 00 00 b1 1e 0e 00 06 00 00 00 04 1f 0e 00 0e 00 00 00 0b 1f 0e 00 10 00 00 00 | ....R........................... |
| df60 | 1a 1f 0e 00 1c 00 00 00 2b 1f 0e 00 17 00 00 00 48 1f 0e 00 2b 00 00 00 60 1f 0e 00 05 00 00 00 | ........+.......H...+...`....... |
| df80 | 8c 1f 0e 00 2f 00 00 00 92 1f 0e 00 34 00 00 00 c2 1f 0e 00 01 01 00 00 f7 1f 0e 00 05 00 00 00 | ..../.......4................... |
| dfa0 | f9 20 0e 00 67 00 00 00 ff 20 0e 00 07 00 00 00 67 21 0e 00 0a 00 00 00 6f 21 0e 00 15 00 00 00 | ....g...........g!......o!...... |
| dfc0 | 7a 21 0e 00 19 00 00 00 90 21 0e 00 a4 00 00 00 aa 21 0e 00 ac 00 00 00 4f 22 0e 00 b2 00 00 00 | z!.......!.......!......O"...... |
| dfe0 | fc 22 0e 00 32 00 00 00 af 23 0e 00 ab 00 00 00 e2 23 0e 00 0f 00 00 00 8e 24 0e 00 31 00 00 00 | ."..2....#.......#.......$..1... |
| e000 | 9e 24 0e 00 1d 00 00 00 d0 24 0e 00 14 00 00 00 ee 24 0e 00 32 00 00 00 03 25 0e 00 15 00 00 00 | .$.......$.......$..2....%...... |
| e020 | 36 25 0e 00 0a 00 00 00 4c 25 0e 00 0c 00 00 00 57 25 0e 00 11 00 00 00 64 25 0e 00 17 00 00 00 | 6%......L%......W%......d%...... |
| e040 | 76 25 0e 00 13 00 00 00 8e 25 0e 00 19 00 00 00 a2 25 0e 00 64 00 00 00 bc 25 0e 00 74 00 00 00 | v%.......%.......%..d....%..t... |
| e060 | 21 26 0e 00 98 00 00 00 96 26 0e 00 24 00 00 00 2f 27 0e 00 25 00 00 00 54 27 0e 00 0d 00 00 00 | !&.......&..$.../'..%...T'...... |
| e080 | 7a 27 0e 00 42 00 00 00 88 27 0e 00 16 00 00 00 cb 27 0e 00 13 00 00 00 e2 27 0e 00 55 00 00 00 | z'..B....'.......'.......'..U... |
| e0a0 | f6 27 0e 00 95 00 00 00 4c 28 0e 00 35 00 00 00 e2 28 0e 00 8e 00 00 00 18 29 0e 00 8e 00 00 00 | .'......L(..5....(.......)...... |
| e0c0 | a7 29 0e 00 68 00 00 00 36 2a 0e 00 77 00 00 00 9f 2a 0e 00 81 00 00 00 17 2b 0e 00 21 00 00 00 | .)..h...6*..w....*.......+..!... |
| e0e0 | 99 2b 0e 00 22 00 00 00 bb 2b 0e 00 2e 00 00 00 de 2b 0e 00 31 00 00 00 0d 2c 0e 00 7e 00 00 00 | .+.."....+.......+..1....,..~... |
| e100 | 3f 2c 0e 00 83 00 00 00 be 2c 0e 00 4b 00 00 00 42 2d 0e 00 38 00 00 00 8e 2d 0e 00 39 00 00 00 | ?,.......,..K...B-..8....-..9... |
| e120 | c7 2d 0e 00 95 00 00 00 01 2e 0e 00 70 00 00 00 97 2e 0e 00 85 00 00 00 08 2f 0e 00 51 00 00 00 | .-..........p............/..Q... |
| e140 | 8e 2f 0e 00 9a 00 00 00 e0 2f 0e 00 9e 00 00 00 7b 30 0e 00 32 00 00 00 1a 31 0e 00 69 00 00 00 | ./......./......{0..2....1..i... |
| e160 | 4d 31 0e 00 7b 00 00 00 b7 31 0e 00 2a 00 00 00 33 32 0e 00 62 00 00 00 5e 32 0e 00 4b 01 00 00 | M1..{....1..*...32..b...^2..K... |
| e180 | c1 32 0e 00 a6 00 00 00 0d 34 0e 00 89 00 00 00 b4 34 0e 00 af 00 00 00 3e 35 0e 00 88 00 00 00 | .2.......4.......4......>5...... |
| e1a0 | ee 35 0e 00 31 00 00 00 77 36 0e 00 2d 00 00 00 a9 36 0e 00 7a 00 00 00 d7 36 0e 00 92 00 00 00 | .5..1...w6..-....6..z....6...... |
| e1c0 | 52 37 0e 00 b3 00 00 00 e5 37 0e 00 6d 00 00 00 99 38 0e 00 6b 00 00 00 07 39 0e 00 1f 00 00 00 | R7.......7..m....8..k....9...... |
| e1e0 | 73 39 0e 00 0e 00 00 00 93 39 0e 00 77 00 00 00 a2 39 0e 00 4b 00 00 00 1a 3a 0e 00 33 00 00 00 | s9.......9..w....9..K....:..3... |
| e200 | 66 3a 0e 00 39 00 00 00 9a 3a 0e 00 0b 00 00 00 d4 3a 0e 00 6d 00 00 00 e0 3a 0e 00 1a 00 00 00 | f:..9....:.......:..m....:...... |
| e220 | 4e 3b 0e 00 20 00 00 00 69 3b 0e 00 25 00 00 00 8a 3b 0e 00 4d 00 00 00 b0 3b 0e 00 4e 00 00 00 | N;......i;..%....;..M....;..N... |
| e240 | fe 3b 0e 00 0b 00 00 00 4d 3c 0e 00 f6 00 00 00 59 3c 0e 00 2e 00 00 00 50 3d 0e 00 13 00 00 00 | .;......M<......Y<......P=...... |
| e260 | 7f 3d 0e 00 0f 00 00 00 93 3d 0e 00 12 00 00 00 a3 3d 0e 00 71 01 00 00 b6 3d 0e 00 fe 00 00 00 | .=.......=.......=..q....=...... |
| e280 | 28 3f 0e 00 4e 00 00 00 27 40 0e 00 c9 00 00 00 76 40 0e 00 13 00 00 00 40 41 0e 00 19 00 00 00 | (?..N...'@......v@......@A...... |
| e2a0 | 54 41 0e 00 7c 00 00 00 6e 41 0e 00 38 00 00 00 eb 41 0e 00 3b 00 00 00 24 42 0e 00 46 00 00 00 | TA..|...nA..8....A..;...$B..F... |
| e2c0 | 60 42 0e 00 2f 00 00 00 a7 42 0e 00 19 00 00 00 d7 42 0e 00 12 00 00 00 f1 42 0e 00 14 00 00 00 | `B../....B.......B.......B...... |
| e2e0 | 04 43 0e 00 22 00 00 00 19 43 0e 00 84 00 00 00 3c 43 0e 00 26 00 00 00 c1 43 0e 00 24 00 00 00 | .C.."....C......<C..&....C..$... |
| e300 | e8 43 0e 00 1b 00 00 00 0d 44 0e 00 1d 00 00 00 29 44 0e 00 58 00 00 00 47 44 0e 00 5b 00 00 00 | .C.......D......)D..X...GD..[... |
| e320 | a0 44 0e 00 43 00 00 00 fc 44 0e 00 56 00 00 00 40 45 0e 00 43 00 00 00 97 45 0e 00 3f 00 00 00 | .D..C....D..V...@E..C....E..?... |
| e340 | db 45 0e 00 75 00 00 00 1b 46 0e 00 1e 00 00 00 91 46 0e 00 25 00 00 00 b0 46 0e 00 25 00 00 00 | .E..u....F.......F..%....F..%... |
| e360 | d6 46 0e 00 15 00 00 00 fc 46 0e 00 86 00 00 00 12 47 0e 00 2e 00 00 00 99 47 0e 00 95 00 00 00 | .F.......F.......G.......G...... |
| e380 | c8 47 0e 00 43 00 00 00 5e 48 0e 00 2b 00 00 00 a2 48 0e 00 2b 00 00 00 ce 48 0e 00 37 01 00 00 | .G..C...^H..+....H..+....H..7... |
| e3a0 | fa 48 0e 00 38 00 00 00 32 4a 0e 00 3b 00 00 00 6b 4a 0e 00 18 00 00 00 a7 4a 0e 00 16 00 00 00 | .H..8...2J..;...kJ.......J...... |
| e3c0 | c0 4a 0e 00 7a 00 00 00 d7 4a 0e 00 12 00 00 00 52 4b 0e 00 67 00 00 00 65 4b 0e 00 3a 00 00 00 | .J..z....J......RK..g...eK..:... |
| e3e0 | cd 4b 0e 00 3a 00 00 00 08 4c 0e 00 0c 00 00 00 43 4c 0e 00 18 00 00 00 50 4c 0e 00 39 00 00 00 | .K..:....L......CL......PL..9... |
| e400 | 69 4c 0e 00 47 00 00 00 a3 4c 0e 00 42 00 00 00 eb 4c 0e 00 4c 00 00 00 2e 4d 0e 00 3f 00 00 00 | iL..G....L..B....L..L....M..?... |
| e420 | 7b 4d 0e 00 3b 00 00 00 bb 4d 0e 00 41 00 00 00 f7 4d 0e 00 11 01 00 00 39 4e 0e 00 12 01 00 00 | {M..;....M..A....M......9N...... |
| e440 | 4b 4f 0e 00 3d 00 00 00 5e 50 0e 00 31 00 00 00 9c 50 0e 00 26 01 00 00 ce 50 0e 00 e2 00 00 00 | KO..=...^P..1....P..&....P...... |
| e460 | f5 51 0e 00 9f 00 00 00 d8 52 0e 00 9f 00 00 00 78 53 0e 00 3a 00 00 00 18 54 0e 00 f8 00 00 00 | .Q.......R......xS..:....T...... |
| e480 | 53 54 0e 00 48 00 00 00 4c 55 0e 00 e2 00 00 00 95 55 0e 00 88 00 00 00 78 56 0e 00 31 00 00 00 | ST..H...LU.......U......xV..1... |
| e4a0 | 01 57 0e 00 06 00 00 00 33 57 0e 00 0d 00 00 00 3a 57 0e 00 0b 00 00 00 48 57 0e 00 2e 00 00 00 | .W......3W......:W......HW...... |
| e4c0 | 54 57 0e 00 67 00 00 00 83 57 0e 00 3e 00 00 00 eb 57 0e 00 13 00 00 00 2a 58 0e 00 ab 00 00 00 | TW..g....W..>....W......*X...... |
| e4e0 | 3e 58 0e 00 b5 00 00 00 ea 58 0e 00 b5 00 00 00 a0 59 0e 00 90 00 00 00 56 5a 0e 00 30 00 00 00 | >X.......X.......Y......VZ..0... |
| e500 | e7 5a 0e 00 47 00 00 00 18 5b 0e 00 22 00 00 00 60 5b 0e 00 22 00 00 00 83 5b 0e 00 24 00 00 00 | .Z..G....[.."...`[.."....[..$... |
| e520 | a6 5b 0e 00 09 00 00 00 cb 5b 0e 00 09 00 00 00 d5 5b 0e 00 92 00 00 00 df 5b 0e 00 38 00 00 00 | .[.......[.......[.......[..8... |
| e540 | 72 5c 0e 00 f2 00 00 00 ab 5c 0e 00 05 00 00 00 9e 5d 0e 00 0f 00 00 00 a4 5d 0e 00 88 00 00 00 | r\.......\.......].......]...... |
| e560 | b4 5d 0e 00 bd 00 00 00 3d 5e 0e 00 c2 00 00 00 fb 5e 0e 00 7e 00 00 00 be 5f 0e 00 0b 00 00 00 | .]......=^.......^..~...._...... |
| e580 | 3d 60 0e 00 0e 00 00 00 49 60 0e 00 80 00 00 00 58 60 0e 00 12 00 00 00 d9 60 0e 00 6a 00 00 00 | =`......I`......X`.......`..j... |
| e5a0 | ec 60 0e 00 2f 00 00 00 57 61 0e 00 0a 00 00 00 87 61 0e 00 f4 00 00 00 92 61 0e 00 10 00 00 00 | .`../...Wa.......a.......a...... |
| e5c0 | 87 62 0e 00 f7 00 00 00 98 62 0e 00 d2 01 00 00 90 63 0e 00 ad 01 00 00 63 65 0e 00 dd 00 00 00 | .b.......b.......c......ce...... |
| e5e0 | 11 67 0e 00 91 01 00 00 ef 67 0e 00 7f 00 00 00 81 69 0e 00 af 00 00 00 01 6a 0e 00 2a 03 00 00 | .g.......g.......i.......j..*... |
| e600 | b1 6a 0e 00 6b 00 00 00 dc 6d 0e 00 a3 00 00 00 48 6e 0e 00 9a 00 00 00 ec 6e 0e 00 50 00 00 00 | .j..k....m......Hn.......n..P... |
| e620 | 87 6f 0e 00 81 00 00 00 d8 6f 0e 00 2c 00 00 00 5a 70 0e 00 51 00 00 00 87 70 0e 00 7a 00 00 00 | .o.......o..,...Zp..Q....p..z... |
| e640 | d9 70 0e 00 2b 00 00 00 54 71 0e 00 31 00 00 00 80 71 0e 00 25 00 00 00 b2 71 0e 00 09 00 00 00 | .p..+...Tq..1....q..%....q...... |
| e660 | d8 71 0e 00 34 00 00 00 e2 71 0e 00 23 00 00 00 17 72 0e 00 23 00 00 00 3b 72 0e 00 25 00 00 00 | .q..4....q..#....r..#...;r..%... |
| e680 | 5f 72 0e 00 11 00 00 00 85 72 0e 00 12 00 00 00 97 72 0e 00 12 00 00 00 aa 72 0e 00 1e 00 00 00 | _r.......r.......r.......r...... |
| e6a0 | bd 72 0e 00 23 00 00 00 dc 72 0e 00 39 00 00 00 00 73 0e 00 24 00 00 00 3a 73 0e 00 2c 00 00 00 | .r..#....r..9....s..$...:s..,... |
| e6c0 | 5f 73 0e 00 2d 00 00 00 8c 73 0e 00 1c 00 00 00 ba 73 0e 00 1d 00 00 00 d7 73 0e 00 1e 00 00 00 | _s..-....s.......s.......s...... |
| e6e0 | f5 73 0e 00 0c 00 00 00 14 74 0e 00 28 00 00 00 21 74 0e 00 3a 00 00 00 4a 74 0e 00 30 00 00 00 | .s.......t..(...!t..:...Jt..0... |
| e700 | 85 74 0e 00 27 00 00 00 b6 74 0e 00 38 00 00 00 de 74 0e 00 1d 00 00 00 17 75 0e 00 13 00 00 00 | .t..'....t..8....t.......u...... |
| e720 | 35 75 0e 00 0b 00 00 00 49 75 0e 00 28 00 00 00 55 75 0e 00 30 00 00 00 7e 75 0e 00 4c 00 00 00 | 5u......Iu..(...Uu..0...~u..L... |
| e740 | af 75 0e 00 74 00 00 00 fc 75 0e 00 11 00 00 00 71 76 0e 00 55 00 00 00 83 76 0e 00 30 00 00 00 | .u..t....u......qv..U....v..0... |
| e760 | d9 76 0e 00 0f 00 00 00 0a 77 0e 00 0b 00 00 00 1a 77 0e 00 28 00 00 00 26 77 0e 00 35 00 00 00 | .v.......w.......w..(...&w..5... |
| e780 | 4f 77 0e 00 0a 00 00 00 85 77 0e 00 56 00 00 00 90 77 0e 00 1f 00 00 00 e7 77 0e 00 18 00 00 00 | Ow.......w..V....w.......w...... |
| e7a0 | 07 78 0e 00 2d 00 00 00 20 78 0e 00 23 00 00 00 4e 78 0e 00 3f 00 00 00 72 78 0e 00 4d 00 00 00 | .x..-....x..#...Nx..?...rx..M... |
| e7c0 | b2 78 0e 00 20 00 00 00 00 79 0e 00 6d 00 00 00 21 79 0e 00 71 00 00 00 8f 79 0e 00 33 00 00 00 | .x.......y..m...!y..q....y..3... |
| e7e0 | 01 7a 0e 00 61 00 00 00 35 7a 0e 00 64 00 00 00 97 7a 0e 00 63 00 00 00 fc 7a 0e 00 7d 00 00 00 | .z..a...5z..d....z..c....z..}... |
| e800 | 60 7b 0e 00 6d 00 00 00 de 7b 0e 00 64 00 00 00 4c 7c 0e 00 31 00 00 00 b1 7c 0e 00 66 00 00 00 | `{..m....{..d...L|..1....|..f... |
| e820 | e3 7c 0e 00 34 00 00 00 4a 7d 0e 00 1b 01 00 00 7f 7d 0e 00 3a 00 00 00 9b 7e 0e 00 4a 00 00 00 | .|..4...J}.......}..:....~..J... |
| e840 | d6 7e 0e 00 38 00 00 00 21 7f 0e 00 40 01 00 00 5a 7f 0e 00 3a 00 00 00 9b 80 0e 00 4f 00 00 00 | .~..8...!...@...Z...:.......O... |
| e860 | d6 80 0e 00 2e 00 00 00 26 81 0e 00 86 00 00 00 55 81 0e 00 bb 01 00 00 dc 81 0e 00 06 01 00 00 | ........&.......U............... |
| e880 | 98 83 0e 00 80 00 00 00 9f 84 0e 00 bf 00 00 00 20 85 0e 00 49 00 00 00 e0 85 0e 00 25 00 00 00 | ....................I.......%... |
| e8a0 | 2a 86 0e 00 4b 00 00 00 50 86 0e 00 79 00 00 00 9c 86 0e 00 d6 00 00 00 16 87 0e 00 22 00 00 00 | *...K...P...y..............."... |
| e8c0 | ed 87 0e 00 64 00 00 00 10 88 0e 00 16 00 00 00 75 88 0e 00 14 00 00 00 8c 88 0e 00 79 00 00 00 | ....d...........u...........y... |
| e8e0 | a1 88 0e 00 42 00 00 00 1b 89 0e 00 1c 00 00 00 5e 89 0e 00 1d 00 00 00 7b 89 0e 00 33 00 00 00 | ....B...........^.......{...3... |
| e900 | 99 89 0e 00 a7 00 00 00 cd 89 0e 00 c1 00 00 00 75 8a 0e 00 32 00 00 00 37 8b 0e 00 05 00 00 00 | ................u...2...7....... |
| e920 | 6a 8b 0e 00 10 00 00 00 70 8b 0e 00 5e 00 00 00 81 8b 0e 00 08 00 00 00 e0 8b 0e 00 dc 00 00 00 | j.......p...^................... |
| e940 | e9 8b 0e 00 10 00 00 00 c6 8c 0e 00 5d 00 00 00 d7 8c 0e 00 0d 00 00 00 35 8d 0e 00 21 00 00 00 | ............]...........5...!... |
| e960 | 43 8d 0e 00 21 00 00 00 65 8d 0e 00 d4 00 00 00 87 8d 0e 00 14 00 00 00 5c 8e 0e 00 38 00 00 00 | C...!...e...............\...8... |
| e980 | 71 8e 0e 00 a3 00 00 00 aa 8e 0e 00 a7 00 00 00 4e 8f 0e 00 23 00 00 00 f6 8f 0e 00 91 00 00 00 | q...............N...#........... |
| e9a0 | 1a 90 0e 00 59 00 00 00 ac 90 0e 00 a6 01 00 00 06 91 0e 00 ca 00 00 00 ad 92 0e 00 75 01 00 00 | ....Y.......................u... |
| e9c0 | 78 93 0e 00 70 01 00 00 ee 94 0e 00 63 01 00 00 5f 96 0e 00 07 00 00 00 c3 97 0e 00 15 00 00 00 | x...p.......c..._............... |
| e9e0 | cb 97 0e 00 27 00 00 00 e1 97 0e 00 26 00 00 00 09 98 0e 00 12 00 00 00 30 98 0e 00 0f 00 00 00 | ....'.......&...........0....... |
| ea00 | 43 98 0e 00 16 00 00 00 53 98 0e 00 2f 00 00 00 6a 98 0e 00 2f 00 00 00 9a 98 0e 00 77 00 00 00 | C.......S.../...j.../.......w... |
| ea20 | ca 98 0e 00 17 00 00 00 42 99 0e 00 92 00 00 00 5a 99 0e 00 10 00 00 00 ed 99 0e 00 51 00 00 00 | ........B.......Z...........Q... |
| ea40 | fe 99 0e 00 08 00 00 00 50 9a 0e 00 6c 00 00 00 59 9a 0e 00 bf 00 00 00 c6 9a 0e 00 58 00 00 00 | ........P...l...Y...........X... |
| ea60 | 86 9b 0e 00 e0 00 00 00 df 9b 0e 00 3d 00 00 00 c0 9c 0e 00 3b 00 00 00 fe 9c 0e 00 3c 00 00 00 | ............=.......;.......<... |
| ea80 | 3a 9d 0e 00 3e 00 00 00 77 9d 0e 00 3c 00 00 00 b6 9d 0e 00 3d 00 00 00 f3 9d 0e 00 15 00 00 00 | :...>...w...<.......=........... |
| eaa0 | 31 9e 0e 00 34 00 00 00 47 9e 0e 00 36 00 00 00 7c 9e 0e 00 33 00 00 00 b3 9e 0e 00 a3 00 00 00 | 1...4...G...6...|...3........... |
| eac0 | e7 9e 0e 00 08 00 00 00 8b 9f 0e 00 1b 00 00 00 94 9f 0e 00 09 00 00 00 b0 9f 0e 00 c5 00 00 00 | ................................ |
| eae0 | ba 9f 0e 00 2e 00 00 00 80 a0 0e 00 0f 00 00 00 af a0 0e 00 0f 00 00 00 bf a0 0e 00 31 00 00 00 | ............................1... |
| eb00 | cf a0 0e 00 2a 00 00 00 01 a1 0e 00 19 00 00 00 2c a1 0e 00 0b 00 00 00 46 a1 0e 00 40 00 00 00 | ....*...........,.......F...@... |
| eb20 | 52 a1 0e 00 28 00 00 00 93 a1 0e 00 1c 00 00 00 bc a1 0e 00 1a 00 00 00 d9 a1 0e 00 8e 00 00 00 | R...(........................... |
| eb40 | f4 a1 0e 00 08 00 00 00 83 a2 0e 00 c1 00 00 00 8c a2 0e 00 9a 00 00 00 4e a3 0e 00 dc 00 00 00 | ........................N....... |
| eb60 | e9 a3 0e 00 a5 01 00 00 c6 a4 0e 00 03 00 00 00 6c a6 0e 00 98 00 00 00 70 a6 0e 00 46 01 00 00 | ................l.......p...F... |
| eb80 | 09 a7 0e 00 0a 00 00 00 50 a8 0e 00 0a 00 00 00 5b a8 0e 00 39 00 00 00 66 a8 0e 00 0d 00 00 00 | ........P.......[...9...f....... |
| eba0 | a0 a8 0e 00 08 00 00 00 ae a8 0e 00 0f 00 00 00 b7 a8 0e 00 2d 00 00 00 c7 a8 0e 00 e5 00 00 00 | ....................-........... |
| ebc0 | f5 a8 0e 00 ea 00 00 00 db a9 0e 00 0a 00 00 00 c6 aa 0e 00 57 01 00 00 d1 aa 0e 00 31 01 00 00 | ....................W.......1... |
| ebe0 | 29 ac 0e 00 0a 00 00 00 5b ad 0e 00 69 01 00 00 66 ad 0e 00 26 00 00 00 d0 ae 0e 00 05 00 00 00 | ).......[...i...f...&........... |
| ec00 | f7 ae 0e 00 71 00 00 00 fd ae 0e 00 5c 00 00 00 6f af 0e 00 90 00 00 00 cc af 0e 00 33 00 00 00 | ....q.......\...o...........3... |
| ec20 | 5d b0 0e 00 33 00 00 00 91 b0 0e 00 51 00 00 00 c5 b0 0e 00 95 00 00 00 17 b1 0e 00 09 00 00 00 | ]...3.......Q................... |
| ec40 | ad b1 0e 00 c1 00 00 00 b7 b1 0e 00 53 00 00 00 79 b2 0e 00 08 00 00 00 cd b2 0e 00 15 00 00 00 | ............S...y............... |
| ec60 | d6 b2 0e 00 15 00 00 00 ec b2 0e 00 16 00 00 00 02 b3 0e 00 23 00 00 00 19 b3 0e 00 14 00 00 00 | ....................#........... |
| ec80 | 3d b3 0e 00 13 00 00 00 52 b3 0e 00 0d 00 00 00 66 b3 0e 00 0e 00 00 00 74 b3 0e 00 b0 00 00 00 | =.......R.......f.......t....... |
| eca0 | 83 b3 0e 00 b0 00 00 00 34 b4 0e 00 e9 00 00 00 e5 b4 0e 00 0f 00 00 00 cf b5 0e 00 4f 01 00 00 | ........4...................O... |
| ecc0 | df b5 0e 00 20 01 00 00 2f b7 0e 00 23 01 00 00 50 b8 0e 00 4d 00 00 00 74 b9 0e 00 95 00 00 00 | ......../...#...P...M...t....... |
| ece0 | c2 b9 0e 00 89 00 00 00 58 ba 0e 00 22 00 00 00 e2 ba 0e 00 0f 00 00 00 05 bb 0e 00 0f 00 00 00 | ........X..."................... |
| ed00 | 15 bb 0e 00 28 00 00 00 25 bb 0e 00 78 01 00 00 4e bb 0e 00 60 00 00 00 c7 bc 0e 00 1d 01 00 00 | ....(...%...x...N...`........... |
| ed20 | 28 bd 0e 00 0b 00 00 00 46 be 0e 00 53 00 00 00 52 be 0e 00 cd 00 00 00 a6 be 0e 00 ca 00 00 00 | (.......F...S...R............... |
| ed40 | 74 bf 0e 00 dd 00 00 00 3f c0 0e 00 f4 00 00 00 1d c1 0e 00 60 00 00 00 12 c2 0e 00 98 00 00 00 | t.......?...........`........... |
| ed60 | 73 c2 0e 00 98 00 00 00 0c c3 0e 00 00 01 00 00 a5 c3 0e 00 30 00 00 00 a6 c4 0e 00 aa 00 00 00 | s...................0........... |
| ed80 | d7 c4 0e 00 05 00 00 00 82 c5 0e 00 0e 00 00 00 88 c5 0e 00 2a 02 00 00 97 c5 0e 00 0f 00 00 00 | ....................*........... |
| eda0 | c2 c7 0e 00 0b 00 00 00 d2 c7 0e 00 1f 00 00 00 de c7 0e 00 33 00 00 00 fe c7 0e 00 73 00 00 00 | ....................3.......s... |
| edc0 | 32 c8 0e 00 6e 00 00 00 a6 c8 0e 00 87 00 00 00 15 c9 0e 00 2e 00 00 00 9d c9 0e 00 29 00 00 00 | 2...n.......................)... |
| ede0 | cc c9 0e 00 b1 00 00 00 f6 c9 0e 00 17 00 00 00 a8 ca 0e 00 a7 00 00 00 c0 ca 0e 00 21 00 00 00 | ............................!... |
| ee00 | 68 cb 0e 00 a5 00 00 00 8a cb 0e 00 90 00 00 00 30 cc 0e 00 26 00 00 00 c1 cc 0e 00 1a 00 00 00 | h...............0...&........... |
| ee20 | e8 cc 0e 00 44 00 00 00 03 cd 0e 00 48 00 00 00 48 cd 0e 00 2a 00 00 00 91 cd 0e 00 6e 00 00 00 | ....D.......H...H...*.......n... |
| ee40 | bc cd 0e 00 90 00 00 00 2b ce 0e 00 cf 00 00 00 bc ce 0e 00 0f 00 00 00 8c cf 0e 00 0c 00 00 00 | ........+....................... |
| ee60 | 9c cf 0e 00 69 01 00 00 a9 cf 0e 00 93 00 00 00 13 d1 0e 00 0f 00 00 00 a7 d1 0e 00 f1 00 00 00 | ....i........................... |
| ee80 | b7 d1 0e 00 10 00 00 00 a9 d2 0e 00 3e 00 00 00 ba d2 0e 00 81 00 00 00 f9 d2 0e 00 8b 00 00 00 | ............>................... |
| eea0 | 7b d3 0e 00 bd 00 00 00 07 d4 0e 00 30 01 00 00 c5 d4 0e 00 96 00 00 00 f6 d5 0e 00 8a 00 00 00 | {...........0................... |
| eec0 | 8d d6 0e 00 69 01 00 00 18 d7 0e 00 0c 00 00 00 82 d8 0e 00 5a 00 00 00 8f d8 0e 00 3b 01 00 00 | ....i...............Z.......;... |
| eee0 | ea d8 0e 00 3c 01 00 00 26 da 0e 00 db 00 00 00 63 db 0e 00 52 00 00 00 3f dc 0e 00 2f 00 00 00 | ....<...&.......c...R...?.../... |
| ef00 | 92 dc 0e 00 ac 00 00 00 c2 dc 0e 00 09 00 00 00 6f dd 0e 00 eb 00 00 00 79 dd 0e 00 d8 00 00 00 | ................o.......y....... |
| ef20 | 65 de 0e 00 5c 00 00 00 3e df 0e 00 63 00 00 00 9b df 0e 00 22 01 00 00 ff df 0e 00 4a 01 00 00 | e...\...>...c.......".......J... |
| ef40 | 22 e1 0e 00 af 00 00 00 6d e2 0e 00 30 00 00 00 1d e3 0e 00 4b 00 00 00 4e e3 0e 00 66 00 00 00 | ".......m...0.......K...N...f... |
| ef60 | 9a e3 0e 00 52 00 00 00 01 e4 0e 00 49 00 00 00 54 e4 0e 00 1b 01 00 00 9e e4 0e 00 bb 00 00 00 | ....R.......I...T............... |
| ef80 | ba e5 0e 00 60 00 00 00 76 e6 0e 00 62 00 00 00 d7 e6 0e 00 52 01 00 00 3a e7 0e 00 43 00 00 00 | ....`...v...b.......R...:...C... |
| efa0 | 8d e8 0e 00 f3 00 00 00 d1 e8 0e 00 bd 00 00 00 c5 e9 0e 00 bc 00 00 00 83 ea 0e 00 da 00 00 00 | ................................ |
| efc0 | 40 eb 0e 00 77 00 00 00 1b ec 0e 00 e7 00 00 00 93 ec 0e 00 af 00 00 00 7b ed 0e 00 e8 00 00 00 | @...w...................{....... |
| efe0 | 2b ee 0e 00 e3 00 00 00 14 ef 0e 00 76 00 00 00 f8 ef 0e 00 3c 01 00 00 6f f0 0e 00 3a 01 00 00 | +...........v.......<...o...:... |
| f000 | ac f1 0e 00 42 01 00 00 e7 f2 0e 00 97 00 00 00 2a f4 0e 00 a2 00 00 00 c2 f4 0e 00 a6 00 00 00 | ....B...........*............... |
| f020 | 65 f5 0e 00 7b 00 00 00 0c f6 0e 00 d3 00 00 00 88 f6 0e 00 62 00 00 00 5c f7 0e 00 0e 00 00 00 | e...{...............b...\....... |
| f040 | bf f7 0e 00 cc 00 00 00 ce f7 0e 00 32 00 00 00 9b f8 0e 00 11 00 00 00 ce f8 0e 00 14 01 00 00 | ............2................... |
| f060 | e0 f8 0e 00 b9 00 00 00 f5 f9 0e 00 bd 00 00 00 af fa 0e 00 0f 00 00 00 6d fb 0e 00 06 00 00 00 | ........................m....... |
| f080 | 7d fb 0e 00 06 00 00 00 84 fb 0e 00 5d 02 00 00 8b fb 0e 00 5c 02 00 00 e9 fd 0e 00 0e 00 00 00 | }...........].......\........... |
| f0a0 | 46 00 0f 00 80 01 00 00 55 00 0f 00 23 01 00 00 d6 01 0f 00 0c 01 00 00 fa 02 0f 00 8b 00 00 00 | F.......U...#................... |
| f0c0 | 07 04 0f 00 06 00 00 00 93 04 0f 00 59 00 00 00 9a 04 0f 00 59 00 00 00 f4 04 0f 00 07 00 00 00 | ............Y.......Y........... |
| f0e0 | 4e 05 0f 00 15 00 00 00 56 05 0f 00 44 00 00 00 6c 05 0f 00 44 00 00 00 b1 05 0f 00 0f 00 00 00 | N.......V...D...l...D........... |
| f100 | f6 05 0f 00 4d 00 00 00 06 06 0f 00 3d 00 00 00 54 06 0f 00 10 00 00 00 92 06 0f 00 45 00 00 00 | ....M.......=...T...........E... |
| f120 | a3 06 0f 00 58 00 00 00 e9 06 0f 00 59 00 00 00 42 07 0f 00 7c 00 00 00 9c 07 0f 00 ac 00 00 00 | ....X.......Y...B...|........... |
| f140 | 19 08 0f 00 89 00 00 00 c6 08 0f 00 8a 00 00 00 50 09 0f 00 86 00 00 00 db 09 0f 00 23 00 00 00 | ................P...........#... |
| f160 | 62 0a 0f 00 0e 00 00 00 86 0a 0f 00 26 00 00 00 95 0a 0f 00 2d 00 00 00 bc 0a 0f 00 2e 00 00 00 | b...........&.......-........... |
| f180 | ea 0a 0f 00 2d 00 00 00 19 0b 0f 00 0f 00 00 00 47 0b 0f 00 1d 01 00 00 57 0b 0f 00 19 01 00 00 | ....-...........G.......W....... |
| f1a0 | 75 0c 0f 00 1f 01 00 00 8f 0d 0f 00 07 00 00 00 af 0e 0f 00 06 00 00 00 b7 0e 0f 00 17 00 00 00 | u............................... |
| f1c0 | be 0e 0f 00 0e 00 00 00 d6 0e 0f 00 25 00 00 00 e5 0e 0f 00 0e 00 00 00 0b 0f 0f 00 11 00 00 00 | ............%................... |
| f1e0 | 1a 0f 0f 00 0f 00 00 00 2c 0f 0f 00 10 00 00 00 3c 0f 0f 00 07 00 00 00 4d 0f 0f 00 0e 00 00 00 | ........,.......<.......M....... |
| f200 | 55 0f 0f 00 06 00 00 00 64 0f 0f 00 d0 00 00 00 6b 0f 0f 00 2c 00 00 00 3c 10 0f 00 5c 00 00 00 | U.......d.......k...,...<...\... |
| f220 | 69 10 0f 00 53 00 00 00 c6 10 0f 00 1b 00 00 00 1a 11 0f 00 57 00 00 00 36 11 0f 00 2b 00 00 00 | i...S...............W...6...+... |
| f240 | 8e 11 0f 00 08 00 00 00 ba 11 0f 00 13 00 00 00 c3 11 0f 00 22 00 00 00 d7 11 0f 00 1a 00 00 00 | ...................."........... |
| f260 | fa 11 0f 00 0b 00 00 00 15 12 0f 00 0b 00 00 00 21 12 0f 00 11 00 00 00 2d 12 0f 00 08 00 00 00 | ................!.......-....... |
| f280 | 3f 12 0f 00 1a 00 00 00 48 12 0f 00 87 00 00 00 63 12 0f 00 6d 00 00 00 eb 12 0f 00 17 00 00 00 | ?.......H.......c...m........... |
| f2a0 | 59 13 0f 00 07 00 00 00 71 13 0f 00 9c 00 00 00 79 13 0f 00 24 00 00 00 16 14 0f 00 c5 00 00 00 | Y.......q.......y...$........... |
| f2c0 | 3b 14 0f 00 47 01 00 00 01 15 0f 00 14 00 00 00 49 16 0f 00 0d 00 00 00 5e 16 0f 00 85 00 00 00 | ;...G...........I.......^....... |
| f2e0 | 6c 16 0f 00 0c 00 00 00 f2 16 0f 00 3e 00 00 00 ff 16 0f 00 78 00 00 00 3e 17 0f 00 3c 00 00 00 | l...........>.......x...>...<... |
| f300 | b7 17 0f 00 23 00 00 00 f4 17 0f 00 df 00 00 00 18 18 0f 00 34 00 00 00 f8 18 0f 00 4d 00 00 00 | ....#...............4.......M... |
| f320 | 2d 19 0f 00 3e 00 00 00 7b 19 0f 00 64 00 00 00 ba 19 0f 00 db 00 00 00 1f 1a 0f 00 3b 00 00 00 | -...>...{...d...............;... |
| f340 | fb 1a 0f 00 28 00 00 00 37 1b 0f 00 18 00 00 00 60 1b 0f 00 12 00 00 00 79 1b 0f 00 3f 00 00 00 | ....(...7.......`.......y...?... |
| f360 | 8c 1b 0f 00 04 00 00 00 cc 1b 0f 00 11 00 00 00 d1 1b 0f 00 11 00 00 00 e3 1b 0f 00 0a 00 00 00 | ................................ |
| f380 | f5 1b 0f 00 2a 00 00 00 00 1c 0f 00 10 00 00 00 2b 1c 0f 00 09 00 00 00 3c 1c 0f 00 30 00 00 00 | ....*...........+.......<...0... |
| f3a0 | 46 1c 0f 00 08 00 00 00 77 1c 0f 00 05 01 00 00 80 1c 0f 00 1e 00 00 00 86 1d 0f 00 13 00 00 00 | F.......w....................... |
| f3c0 | a5 1d 0f 00 c5 00 00 00 b9 1d 0f 00 6a 00 00 00 7f 1e 0f 00 c0 00 00 00 ea 1e 0f 00 25 00 00 00 | ............j...............%... |
| f3e0 | ab 1f 0f 00 25 00 00 00 d1 1f 0f 00 03 00 00 00 f7 1f 0f 00 d3 00 00 00 fb 1f 0f 00 a8 00 00 00 | ....%........................... |
| f400 | cf 20 0f 00 90 01 00 00 78 21 0f 00 d4 01 00 00 09 23 0f 00 23 01 00 00 de 24 0f 00 2a 00 00 00 | ........x!.......#..#....$..*... |
| f420 | 02 26 0f 00 0a 00 00 00 2d 26 0f 00 26 00 00 00 38 26 0f 00 0a 00 00 00 5f 26 0f 00 96 01 00 00 | .&......-&..&...8&......_&...... |
| f440 | 6a 26 0f 00 05 00 00 00 01 28 0f 00 05 00 00 00 07 28 0f 00 2b 00 00 00 0d 28 0f 00 02 00 00 00 | j&.......(.......(..+....(...... |
| f460 | 39 28 0f 00 0a 00 00 00 3c 28 0f 00 53 00 00 00 47 28 0f 00 1d 00 00 00 9b 28 0f 00 25 00 00 00 | 9(......<(..S...G(.......(..%... |
| f480 | b9 28 0f 00 18 00 00 00 df 28 0f 00 19 00 00 00 f8 28 0f 00 19 00 00 00 12 29 0f 00 33 00 00 00 | .(.......(.......(.......)..3... |
| f4a0 | 2c 29 0f 00 33 00 00 00 60 29 0f 00 ea 00 00 00 94 29 0f 00 2b 00 00 00 7f 2a 0f 00 4d 00 00 00 | ,)..3...`).......)..+....*..M... |
| f4c0 | ab 2a 0f 00 15 00 00 00 f9 2a 0f 00 14 02 00 00 0f 2b 0f 00 34 00 00 00 24 2d 0f 00 33 00 00 00 | .*.......*.......+..4...$-..3... |
| f4e0 | 59 2d 0f 00 36 00 00 00 8d 2d 0f 00 34 00 00 00 c4 2d 0f 00 2d 00 00 00 f9 2d 0f 00 27 00 00 00 | Y-..6....-..4....-..-....-..'... |
| f500 | 27 2e 0f 00 1b 00 00 00 4f 2e 0f 00 38 00 00 00 6b 2e 0f 00 38 00 00 00 a4 2e 0f 00 06 00 00 00 | '.......O...8...k...8........... |
| f520 | dd 2e 0f 00 04 00 00 00 e4 2e 0f 00 05 00 00 00 e9 2e 0f 00 11 00 00 00 ef 2e 0f 00 19 00 00 00 | ................................ |
| f540 | 01 2f 0f 00 1d 00 00 00 1b 2f 0f 00 19 00 00 00 39 2f 0f 00 41 00 00 00 53 2f 0f 00 11 00 00 00 | ./......./......9/..A...S/...... |
| f560 | 95 2f 0f 00 12 00 00 00 a7 2f 0f 00 06 00 00 00 ba 2f 0f 00 0b 00 00 00 c1 2f 0f 00 f7 00 00 00 | ./......./......./......./...... |
| f580 | cd 2f 0f 00 f9 00 00 00 c5 30 0f 00 24 01 00 00 bf 31 0f 00 39 00 00 00 e4 32 0f 00 05 00 00 00 | ./.......0..$....1..9....2...... |
| f5a0 | 1e 33 0f 00 19 00 00 00 24 33 0f 00 04 00 00 00 3e 33 0f 00 1b 00 00 00 43 33 0f 00 25 00 00 00 | .3......$3......>3......C3..%... |
| f5c0 | 5f 33 0f 00 2d 00 00 00 85 33 0f 00 2e 00 00 00 b3 33 0f 00 0c 00 00 00 e2 33 0f 00 0a 00 00 00 | _3..-....3.......3.......3...... |
| f5e0 | ef 33 0f 00 7a 00 00 00 fa 33 0f 00 50 00 00 00 75 34 0f 00 0b 00 00 00 c6 34 0f 00 76 00 00 00 | .3..z....3..P...u4.......4..v... |
| f600 | d2 34 0f 00 7c 00 00 00 49 35 0f 00 04 00 00 00 c6 35 0f 00 10 00 00 00 cb 35 0f 00 15 00 00 00 | .4..|...I5.......5.......5...... |
| f620 | dc 35 0f 00 16 00 00 00 f2 35 0f 00 20 00 00 00 09 36 0f 00 1b 00 00 00 2a 36 0f 00 0e 00 00 00 | .5.......5.......6......*6...... |
| f640 | 46 36 0f 00 16 00 00 00 55 36 0f 00 11 00 00 00 6c 36 0f 00 14 00 00 00 7e 36 0f 00 87 00 00 00 | F6......U6......l6......~6...... |
| f660 | 93 36 0f 00 39 00 00 00 1b 37 0f 00 3a 00 00 00 55 37 0f 00 3a 00 00 00 90 37 0f 00 ec 00 00 00 | .6..9....7..:...U7..:....7...... |
| f680 | cb 37 0f 00 14 00 00 00 b8 38 0f 00 1f 00 00 00 cd 38 0f 00 25 00 00 00 ed 38 0f 00 0c 00 00 00 | .7.......8.......8..%....8...... |
| f6a0 | 13 39 0f 00 3e 00 00 00 20 39 0f 00 0c 00 00 00 5f 39 0f 00 0a 00 00 00 6c 39 0f 00 54 00 00 00 | .9..>....9......_9......l9..T... |
| f6c0 | 77 39 0f 00 0b 00 00 00 cc 39 0f 00 0c 00 00 00 d8 39 0f 00 05 00 00 00 e5 39 0f 00 1a 00 00 00 | w9.......9.......9.......9...... |
| f6e0 | eb 39 0f 00 16 00 00 00 06 3a 0f 00 14 00 00 00 1d 3a 0f 00 1c 00 00 00 32 3a 0f 00 75 00 00 00 | .9.......:.......:......2:..u... |
| f700 | 4f 3a 0f 00 07 01 00 00 c5 3a 0f 00 78 01 00 00 cd 3b 0f 00 45 00 00 00 46 3d 0f 00 39 00 00 00 | O:.......:..x....;..E...F=..9... |
| f720 | 8c 3d 0f 00 ec 00 00 00 c6 3d 0f 00 e6 00 00 00 b3 3e 0f 00 4a 00 00 00 9a 3f 0f 00 57 00 00 00 | .=.......=.......>..J....?..W... |
| f740 | e5 3f 0f 00 69 00 00 00 3d 40 0f 00 d2 00 00 00 a7 40 0f 00 c2 00 00 00 7a 41 0f 00 b8 00 00 00 | .?..i...=@.......@......zA...... |
| f760 | 3d 42 0f 00 98 00 00 00 f6 42 0f 00 8d 00 00 00 8f 43 0f 00 93 00 00 00 1d 44 0f 00 b5 00 00 00 | =B.......B.......C.......D...... |
| f780 | b1 44 0f 00 65 00 00 00 67 45 0f 00 ff 00 00 00 cd 45 0f 00 7f 00 00 00 cd 46 0f 00 c3 00 00 00 | .D..e...gE.......E.......F...... |
| f7a0 | 4d 47 0f 00 c3 00 00 00 11 48 0f 00 bf 00 00 00 d5 48 0f 00 bf 00 00 00 95 49 0f 00 cc 00 00 00 | MG.......H.......H.......I...... |
| f7c0 | 55 4a 0f 00 cc 00 00 00 22 4b 0f 00 d0 00 00 00 ef 4b 0f 00 d0 00 00 00 c0 4c 0f 00 83 00 00 00 | UJ......"K.......K.......L...... |
| f7e0 | 91 4d 0f 00 5a 00 00 00 15 4e 0f 00 69 00 00 00 70 4e 0f 00 0d 02 00 00 da 4e 0f 00 b8 00 00 00 | .M..Z....N..i...pN.......N...... |
| f800 | e8 50 0f 00 22 00 00 00 a1 51 0f 00 a4 00 00 00 c4 51 0f 00 b1 01 00 00 69 52 0f 00 ad 00 00 00 | .P.."....Q.......Q......iR...... |
| f820 | 1b 54 0f 00 6f 00 00 00 c9 54 0f 00 e9 00 00 00 39 55 0f 00 89 00 00 00 23 56 0f 00 ae 00 00 00 | .T..o....T......9U......#V...... |
| f840 | ad 56 0f 00 38 01 00 00 5c 57 0f 00 46 01 00 00 95 58 0f 00 5f 01 00 00 dc 59 0f 00 f0 00 00 00 | .V..8...\W..F....X.._....Y...... |
| f860 | 3c 5b 0f 00 57 00 00 00 2d 5c 0f 00 83 00 00 00 85 5c 0f 00 32 00 00 00 09 5d 0f 00 25 01 00 00 | <[..W...-\.......\..2....]..%... |
| f880 | 3c 5d 0f 00 6c 00 00 00 62 5e 0f 00 6a 01 00 00 cf 5e 0f 00 95 00 00 00 3a 60 0f 00 5d 00 00 00 | <]..l...b^..j....^......:`..]... |
| f8a0 | d0 60 0f 00 9b 00 00 00 2e 61 0f 00 6c 00 00 00 ca 61 0f 00 73 00 00 00 37 62 0f 00 2a 00 00 00 | .`.......a..l....a..s...7b..*... |
| f8c0 | ab 62 0f 00 78 00 00 00 d6 62 0f 00 a3 00 00 00 4f 63 0f 00 94 00 00 00 f3 63 0f 00 93 00 00 00 | .b..x....b......Oc.......c...... |
| f8e0 | 88 64 0f 00 51 00 00 00 1c 65 0f 00 92 00 00 00 6e 65 0f 00 c0 00 00 00 01 66 0f 00 c4 00 00 00 | .d..Q....e......ne.......f...... |
| f900 | c2 66 0f 00 bb 00 00 00 87 67 0f 00 ba 00 00 00 43 68 0f 00 bd 00 00 00 fe 68 0f 00 b2 00 00 00 | .f.......g......Ch.......h...... |
| f920 | bc 69 0f 00 97 00 00 00 6f 6a 0f 00 a0 00 00 00 07 6b 0f 00 b5 00 00 00 a8 6b 0f 00 b9 00 00 00 | .i......oj.......k.......k...... |
| f940 | 5e 6c 0f 00 55 00 00 00 18 6d 0f 00 6e 00 00 00 6e 6d 0f 00 a6 00 00 00 dd 6d 0f 00 a7 00 00 00 | ^l..U....m..n...nm.......m...... |
| f960 | 84 6e 0f 00 ac 00 00 00 2c 6f 0f 00 79 00 00 00 d9 6f 0f 00 74 00 00 00 53 70 0f 00 73 00 00 00 | .n......,o..y....o..t...Sp..s... |
| f980 | c8 70 0f 00 68 00 00 00 3c 71 0f 00 42 01 00 00 a5 71 0f 00 d4 00 00 00 e8 72 0f 00 d1 00 00 00 | .p..h...<q..B....q.......r...... |
| f9a0 | bd 73 0f 00 b3 00 00 00 8f 74 0f 00 38 00 00 00 43 75 0f 00 87 00 00 00 7c 75 0f 00 8f 00 00 00 | .s.......t..8...Cu......|u...... |
| f9c0 | 04 76 0f 00 79 00 00 00 94 76 0f 00 6f 00 00 00 0e 77 0f 00 97 00 00 00 7e 77 0f 00 8a 00 00 00 | .v..y....v..o....w......~w...... |
| f9e0 | 16 78 0f 00 a3 00 00 00 a1 78 0f 00 60 00 00 00 45 79 0f 00 66 00 00 00 a6 79 0f 00 ab 00 00 00 | .x.......x..`...Ey..f....y...... |
| fa00 | 0d 7a 0f 00 45 00 00 00 b9 7a 0f 00 d3 00 00 00 ff 7a 0f 00 d3 00 00 00 d3 7b 0f 00 8e 00 00 00 | .z..E....z.......z.......{...... |
| fa20 | a7 7c 0f 00 61 00 00 00 36 7d 0f 00 7f 00 00 00 98 7d 0f 00 69 01 00 00 18 7e 0f 00 9d 01 00 00 | .|..a...6}.......}..i....~...... |
| fa40 | 82 7f 0f 00 9e 01 00 00 20 81 0f 00 b6 00 00 00 bf 82 0f 00 cd 00 00 00 76 83 0f 00 bf 00 00 00 | ........................v....... |
| fa60 | 44 84 0f 00 b9 00 00 00 04 85 0f 00 a8 00 00 00 be 85 0f 00 5f 00 00 00 67 86 0f 00 e5 00 00 00 | D..................._...g....... |
| fa80 | c7 86 0f 00 55 00 00 00 ad 87 0f 00 69 00 00 00 03 88 0f 00 74 00 00 00 6d 88 0f 00 57 01 00 00 | ....U.......i.......t...m...W... |
| faa0 | e2 88 0f 00 8a 00 00 00 3a 8a 0f 00 9b 00 00 00 c5 8a 0f 00 8d 00 00 00 61 8b 0f 00 74 00 00 00 | ........:...............a...t... |
| fac0 | ef 8b 0f 00 97 00 00 00 64 8c 0f 00 5c 00 00 00 fc 8c 0f 00 8e 00 00 00 59 8d 0f 00 92 00 00 00 | ........d...\...........Y....... |
| fae0 | e8 8d 0f 00 69 00 00 00 7b 8e 0f 00 6d 00 00 00 e5 8e 0f 00 db 00 00 00 53 8f 0f 00 74 01 00 00 | ....i...{...m...........S...t... |
| fb00 | 2f 90 0f 00 55 00 00 00 a4 91 0f 00 87 00 00 00 fa 91 0f 00 3e 00 00 00 82 92 0f 00 d5 00 00 00 | /...U...............>........... |
| fb20 | c1 92 0f 00 91 00 00 00 97 93 0f 00 bf 00 00 00 29 94 0f 00 37 01 00 00 e9 94 0f 00 55 01 00 00 | ................)...7.......U... |
| fb40 | 21 96 0f 00 55 00 00 00 77 97 0f 00 2c 00 00 00 cd 97 0f 00 21 00 00 00 fa 97 0f 00 9d 00 00 00 | !...U...w...,.......!........... |
| fb60 | 1c 98 0f 00 1e 00 00 00 ba 98 0f 00 09 00 00 00 d9 98 0f 00 34 00 00 00 e3 98 0f 00 1a 00 00 00 | ....................4........... |
| fb80 | 18 99 0f 00 b7 00 00 00 33 99 0f 00 40 00 00 00 eb 99 0f 00 31 00 00 00 2c 9a 0f 00 80 00 00 00 | ........3...@.......1...,....... |
| fba0 | 5e 9a 0f 00 43 00 00 00 df 9a 0f 00 38 00 00 00 23 9b 0f 00 2c 00 00 00 5c 9b 0f 00 9f 00 00 00 | ^...C.......8...#...,...\....... |
| fbc0 | 89 9b 0f 00 58 01 00 00 29 9c 0f 00 7e 00 00 00 82 9d 0f 00 a3 00 00 00 01 9e 0f 00 a4 00 00 00 | ....X...)...~................... |
| fbe0 | a5 9e 0f 00 55 00 00 00 4a 9f 0f 00 3a 00 00 00 a0 9f 0f 00 39 00 00 00 db 9f 0f 00 70 00 00 00 | ....U...J...:.......9.......p... |
| fc00 | 15 a0 0f 00 70 00 00 00 86 a0 0f 00 4e 00 00 00 f7 a0 0f 00 3b 00 00 00 46 a1 0f 00 6b 01 00 00 | ....p.......N.......;...F...k... |
| fc20 | 82 a1 0f 00 4a 00 00 00 ee a2 0f 00 b5 00 00 00 39 a3 0f 00 71 00 00 00 ef a3 0f 00 c2 00 00 00 | ....J...........9...q........... |
| fc40 | 61 a4 0f 00 67 00 00 00 24 a5 0f 00 70 00 00 00 8c a5 0f 00 dd 00 00 00 fd a5 0f 00 dc 00 00 00 | a...g...$...p................... |
| fc60 | db a6 0f 00 4a 00 00 00 b8 a7 0f 00 4b 00 00 00 03 a8 0f 00 4d 00 00 00 4f a8 0f 00 32 00 00 00 | ....J.......K.......M...O...2... |
| fc80 | 9d a8 0f 00 6f 00 00 00 d0 a8 0f 00 68 00 00 00 40 a9 0f 00 e3 00 00 00 a9 a9 0f 00 01 03 00 00 | ....o.......h...@............... |
| fca0 | 8d aa 0f 00 2c 00 00 00 8f ad 0f 00 bc 01 00 00 bc ad 0f 00 da 00 00 00 79 af 0f 00 8e 00 00 00 | ....,...................y....... |
| fcc0 | 54 b0 0f 00 d0 00 00 00 e3 b0 0f 00 81 00 00 00 b4 b1 0f 00 b0 01 00 00 36 b2 0f 00 94 00 00 00 | T.......................6....... |
| fce0 | e7 b3 0f 00 f7 00 00 00 7c b4 0f 00 49 00 00 00 74 b5 0f 00 56 02 00 00 be b5 0f 00 85 00 00 00 | ........|...I...t...V........... |
| fd00 | 15 b8 0f 00 08 01 00 00 9b b8 0f 00 1d 02 00 00 a4 b9 0f 00 c5 00 00 00 c2 bb 0f 00 5d 00 00 00 | ............................]... |
| fd20 | 88 bc 0f 00 5b 00 00 00 e6 bc 0f 00 46 00 00 00 42 bd 0f 00 5b 00 00 00 89 bd 0f 00 b4 00 00 00 | ....[.......F...B...[........... |
| fd40 | e5 bd 0f 00 33 00 00 00 9a be 0f 00 60 00 00 00 ce be 0f 00 fe 00 00 00 2f bf 0f 00 61 00 00 00 | ....3.......`.........../...a... |
| fd60 | 2e c0 0f 00 9d 00 00 00 90 c0 0f 00 23 01 00 00 2e c1 0f 00 9c 00 00 00 52 c2 0f 00 13 01 00 00 | ............#...........R....... |
| fd80 | ef c2 0f 00 bb 00 00 00 03 c4 0f 00 3d 00 00 00 bf c4 0f 00 c2 00 00 00 fd c4 0f 00 db 00 00 00 | ............=................... |
| fda0 | c0 c5 0f 00 d2 00 00 00 9c c6 0f 00 77 00 00 00 6f c7 0f 00 08 01 00 00 e7 c7 0f 00 96 00 00 00 | ............w...o............... |
| fdc0 | f0 c8 0f 00 2e 01 00 00 87 c9 0f 00 68 00 00 00 b6 ca 0f 00 3c 00 00 00 1f cb 0f 00 45 01 00 00 | ............h.......<.......E... |
| fde0 | 5c cb 0f 00 c1 01 00 00 a2 cc 0f 00 4e 00 00 00 64 ce 0f 00 62 00 00 00 b3 ce 0f 00 ae 00 00 00 | \...........N...d...b........... |
| fe00 | 16 cf 0f 00 dd 00 00 00 c5 cf 0f 00 77 00 00 00 a3 d0 0f 00 b7 00 00 00 1b d1 0f 00 a2 00 00 00 | ............w................... |
| fe20 | d3 d1 0f 00 bb 00 00 00 76 d2 0f 00 5c 00 00 00 32 d3 0f 00 85 00 00 00 8f d3 0f 00 6a 01 00 00 | ........v...\...2...........j... |
| fe40 | 15 d4 0f 00 62 00 00 00 80 d5 0f 00 c3 00 00 00 e3 d5 0f 00 11 00 00 00 a7 d6 0f 00 ba 00 00 00 | ....b........................... |
| fe60 | b9 d6 0f 00 bb 00 00 00 74 d7 0f 00 ba 00 00 00 30 d8 0f 00 bb 00 00 00 eb d8 0f 00 bc 00 00 00 | ........t.......0............... |
| fe80 | a7 d9 0f 00 bd 00 00 00 64 da 0f 00 6e 00 00 00 22 db 0f 00 6f 00 00 00 91 db 0f 00 a0 00 00 00 | ........d...n..."...o........... |
| fea0 | 01 dc 0f 00 bb 00 00 00 a2 dc 0f 00 bb 00 00 00 5e dd 0f 00 be 00 00 00 1a de 0f 00 6f 00 00 00 | ................^...........o... |
| fec0 | d9 de 0f 00 a4 00 00 00 49 df 0f 00 42 00 00 00 ee df 0f 00 d2 00 00 00 31 e0 0f 00 1d 01 00 00 | ........I...B...........1....... |
| fee0 | 04 e1 0f 00 9b 01 00 00 22 e2 0f 00 9b 01 00 00 be e3 0f 00 6b 00 00 00 5a e5 0f 00 98 00 00 00 | ........"...........k...Z....... |
| ff00 | c6 e5 0f 00 4a 00 00 00 5f e6 0f 00 0a 00 00 00 aa e6 0f 00 18 00 00 00 b5 e6 0f 00 3e 00 00 00 | ....J..._...................>... |
| ff20 | ce e6 0f 00 67 01 00 00 0d e7 0f 00 0d 00 00 00 75 e8 0f 00 16 00 00 00 83 e8 0f 00 23 00 00 00 | ....g...........u...........#... |
| ff40 | 9a e8 0f 00 0d 00 00 00 be e8 0f 00 58 00 00 00 cc e8 0f 00 67 00 00 00 25 e9 0f 00 ef 00 00 00 | ............X.......g...%....... |
| ff60 | 8d e9 0f 00 6e 00 00 00 7d ea 0f 00 4c 00 00 00 ec ea 0f 00 98 00 00 00 39 eb 0f 00 0b 00 00 00 | ....n...}...L...........9....... |
| ff80 | d2 eb 0f 00 0b 00 00 00 de eb 0f 00 4c 00 00 00 ea eb 0f 00 2f 00 00 00 37 ec 0f 00 17 00 00 00 | ............L......./...7....... |
| ffa0 | 67 ec 0f 00 10 00 00 00 7f ec 0f 00 10 00 00 00 90 ec 0f 00 90 00 00 00 a1 ec 0f 00 17 00 00 00 | g............................... |
| ffc0 | 32 ed 0f 00 37 00 00 00 4a ed 0f 00 36 00 00 00 82 ed 0f 00 1b 00 00 00 b9 ed 0f 00 2f 00 00 00 | 2...7...J...6.............../... |
| ffe0 | d5 ed 0f 00 97 00 00 00 05 ee 0f 00 10 00 00 00 9d ee 0f 00 0a 00 00 00 ae ee 0f 00 18 00 00 00 | ................................ |
| 10000 | b9 ee 0f 00 72 01 00 00 d2 ee 0f 00 40 00 00 00 45 f0 0f 00 7f 01 00 00 86 f0 0f 00 c0 00 00 00 | ....r.......@...E............... |
| 10020 | 06 f2 0f 00 48 01 00 00 c7 f2 0f 00 54 01 00 00 10 f4 0f 00 9e 01 00 00 65 f5 0f 00 14 00 00 00 | ....H.......T...........e....... |
| 10040 | 04 f7 0f 00 08 00 00 00 19 f7 0f 00 77 00 00 00 22 f7 0f 00 18 00 00 00 9a f7 0f 00 31 00 00 00 | ............w..."...........1... |
| 10060 | b3 f7 0f 00 8f 01 00 00 e5 f7 0f 00 19 02 00 00 75 f9 0f 00 f7 00 00 00 8f fb 0f 00 e9 00 00 00 | ................u............... |
| 10080 | 87 fc 0f 00 89 00 00 00 71 fd 0f 00 4c 00 00 00 fb fd 0f 00 38 00 00 00 48 fe 0f 00 8f 00 00 00 | ........q...L.......8...H....... |
| 100a0 | 81 fe 0f 00 37 00 00 00 11 ff 0f 00 1b 00 00 00 49 ff 0f 00 1c 00 00 00 65 ff 0f 00 25 01 00 00 | ....7...........I.......e...%... |
| 100c0 | 82 ff 0f 00 cb 00 00 00 a8 00 10 00 db 00 00 00 74 01 10 00 d7 00 00 00 50 02 10 00 a5 00 00 00 | ................t.......P....... |
| 100e0 | 28 03 10 00 93 00 00 00 ce 03 10 00 e3 00 00 00 62 04 10 00 02 02 00 00 46 05 10 00 c4 00 00 00 | (...............b.......F....... |
| 10100 | 49 07 10 00 a6 00 00 00 0e 08 10 00 e6 00 00 00 b5 08 10 00 e5 00 00 00 9c 09 10 00 4f 00 00 00 | I...........................O... |
| 10120 | 82 0a 10 00 a4 00 00 00 d2 0a 10 00 28 01 00 00 77 0b 10 00 9d 00 00 00 a0 0c 10 00 3b 00 00 00 | ............(...w...........;... |
| 10140 | 3e 0d 10 00 4a 00 00 00 7a 0d 10 00 81 00 00 00 c5 0d 10 00 68 00 00 00 47 0e 10 00 71 00 00 00 | >...J...z...........h...G...q... |
| 10160 | b0 0e 10 00 49 00 00 00 22 0f 10 00 36 00 00 00 6c 0f 10 00 11 00 00 00 a3 0f 10 00 06 00 00 00 | ....I..."...6...l............... |
| 10180 | b5 0f 10 00 8f 00 00 00 bc 0f 10 00 0f 00 00 00 4c 10 10 00 18 00 00 00 5c 10 10 00 0e 00 00 00 | ................L.......\....... |
| 101a0 | 75 10 10 00 0e 00 00 00 84 10 10 00 0f 00 00 00 93 10 10 00 0b 00 00 00 a3 10 10 00 6c 01 00 00 | u...........................l... |
| 101c0 | af 10 10 00 3a 01 00 00 1c 12 10 00 0f 00 00 00 57 13 10 00 0f 00 00 00 67 13 10 00 08 00 00 00 | ....:...........W.......g....... |
| 101e0 | 77 13 10 00 07 00 00 00 80 13 10 00 0c 00 00 00 88 13 10 00 04 00 00 00 95 13 10 00 0f 00 00 00 | w............................... |
| 10200 | 9a 13 10 00 06 00 00 00 aa 13 10 00 ff 00 00 00 b1 13 10 00 23 00 00 00 b1 14 10 00 23 00 00 00 | ....................#.......#... |
| 10220 | d5 14 10 00 0e 00 00 00 f9 14 10 00 07 00 00 00 08 15 10 00 0a 00 00 00 10 15 10 00 04 00 00 00 | ................................ |
| 10240 | 1b 15 10 00 36 00 00 00 20 15 10 00 b5 00 00 00 57 15 10 00 04 00 00 00 0d 16 10 00 f5 00 00 00 | ....6...........W............... |
| 10260 | 12 16 10 00 19 00 00 00 08 17 10 00 42 00 00 00 22 17 10 00 1b 00 00 00 65 17 10 00 36 00 00 00 | ............B...".......e...6... |
| 10280 | 81 17 10 00 50 00 00 00 b8 17 10 00 34 01 00 00 09 18 10 00 3e 00 00 00 3e 19 10 00 29 00 00 00 | ....P.......4.......>...>...)... |
| 102a0 | 7d 19 10 00 0f 00 00 00 a7 19 10 00 33 00 00 00 b7 19 10 00 14 02 00 00 eb 19 10 00 15 02 00 00 | }...........3................... |
| 102c0 | 00 1c 10 00 40 00 00 00 16 1e 10 00 3d 00 00 00 57 1e 10 00 07 01 00 00 95 1e 10 00 23 00 00 00 | ....@.......=...W...........#... |
| 102e0 | 9d 1f 10 00 11 00 00 00 c1 1f 10 00 3f 00 00 00 d3 1f 10 00 20 00 00 00 13 20 10 00 6f 00 00 00 | ............?...............o... |
| 10300 | 34 20 10 00 78 00 00 00 a4 20 10 00 3d 00 00 00 1d 21 10 00 68 00 00 00 5b 21 10 00 6b 00 00 00 | 4...x.......=....!..h...[!..k... |
| 10320 | c4 21 10 00 23 00 00 00 30 22 10 00 07 00 00 00 54 22 10 00 7d 00 00 00 5c 22 10 00 06 00 00 00 | .!..#...0"......T"..}...\"...... |
| 10340 | da 22 10 00 16 00 00 00 e1 22 10 00 36 00 00 00 f8 22 10 00 35 00 00 00 2f 23 10 00 10 00 00 00 | ."......."..6...."..5.../#...... |
| 10360 | 65 23 10 00 69 02 00 00 76 23 10 00 1b 00 00 00 e0 25 10 00 52 01 00 00 fc 25 10 00 4a 00 00 00 | e#..i...v#.......%..R....%..J... |
| 10380 | 4f 27 10 00 e8 01 00 00 9a 27 10 00 9d 01 00 00 83 29 10 00 cb 02 00 00 21 2b 10 00 d7 00 00 00 | O'.......'.......)......!+...... |
| 103a0 | ed 2d 10 00 1e 00 00 00 c5 2e 10 00 2f 00 00 00 e4 2e 10 00 21 00 00 00 14 2f 10 00 0c 00 00 00 | .-........../.......!..../...... |
| 103c0 | 36 2f 10 00 0e 00 00 00 43 2f 10 00 24 00 00 00 52 2f 10 00 0e 00 00 00 77 2f 10 00 59 00 00 00 | 6/......C/..$...R/......w/..Y... |
| 103e0 | 86 2f 10 00 59 00 00 00 e0 2f 10 00 22 00 00 00 3a 30 10 00 05 00 00 00 5d 30 10 00 20 00 00 00 | ./..Y..../.."...:0......]0...... |
| 10400 | 63 30 10 00 14 00 00 00 84 30 10 00 3c 00 00 00 99 30 10 00 42 00 00 00 d6 30 10 00 1f 00 00 00 | c0.......0..<....0..B....0...... |
| 10420 | 19 31 10 00 2e 00 00 00 39 31 10 00 10 00 00 00 68 31 10 00 10 00 00 00 79 31 10 00 12 00 00 00 | .1......91......h1......y1...... |
| 10440 | 8a 31 10 00 12 00 00 00 9d 31 10 00 2e 00 00 00 b0 31 10 00 3c 00 00 00 df 31 10 00 3b 00 00 00 | .1.......1.......1..<....1..;... |
| 10460 | 1c 32 10 00 0b 00 00 00 58 32 10 00 38 00 00 00 64 32 10 00 2c 00 00 00 9d 32 10 00 09 00 00 00 | .2......X2..8...d2..,....2...... |
| 10480 | ca 32 10 00 09 00 00 00 d4 32 10 00 1f 00 00 00 de 32 10 00 0e 00 00 00 fe 32 10 00 63 00 00 00 | .2.......2.......2.......2..c... |
| 104a0 | 0d 33 10 00 9c 00 00 00 71 33 10 00 ab 00 00 00 0e 34 10 00 eb 00 00 00 ba 34 10 00 30 00 00 00 | .3......q3.......4.......4..0... |
| 104c0 | a6 35 10 00 2c 00 00 00 d7 35 10 00 07 00 00 00 04 36 10 00 63 00 00 00 0c 36 10 00 0c 01 00 00 | .5..,....5.......6..c....6...... |
| 104e0 | 70 36 10 00 0c 00 00 00 7d 37 10 00 0c 00 00 00 8a 37 10 00 15 00 00 00 97 37 10 00 04 00 00 00 | p6......}7.......7.......7...... |
| 10500 | ad 37 10 00 19 00 00 00 b2 37 10 00 08 00 00 00 cc 37 10 00 8c 00 00 00 d5 37 10 00 03 00 00 00 | .7.......7.......7.......7...... |
| 10520 | 62 38 10 00 0a 00 00 00 66 38 10 00 35 00 00 00 71 38 10 00 13 00 00 00 a7 38 10 00 19 00 00 00 | b8......f8..5...q8.......8...... |
| 10540 | bb 38 10 00 06 00 00 00 d5 38 10 00 3b 02 00 00 dc 38 10 00 5f 01 00 00 18 3b 10 00 85 00 00 00 | .8.......8..;....8.._....;...... |
| 10560 | 78 3c 10 00 0e 00 00 00 fe 3c 10 00 0f 00 00 00 0d 3d 10 00 09 00 00 00 1d 3d 10 00 10 00 00 00 | x<.......<.......=.......=...... |
| 10580 | 27 3d 10 00 35 00 00 00 38 3d 10 00 04 00 00 00 6e 3d 10 00 e8 01 00 00 73 3d 10 00 5f 00 00 00 | '=..5...8=......n=......s=.._... |
| 105a0 | 5c 3f 10 00 61 00 00 00 bc 3f 10 00 03 00 00 00 1e 40 10 00 0b 00 00 00 22 40 10 00 4c 00 00 00 | \?..a....?.......@......"@..L... |
| 105c0 | 2e 40 10 00 2f 00 00 00 7b 40 10 00 1d 00 00 00 ab 40 10 00 10 00 00 00 c9 40 10 00 3d 00 00 00 | .@../...{@.......@.......@..=... |
| 105e0 | da 40 10 00 4d 00 00 00 18 41 10 00 38 00 00 00 66 41 10 00 10 00 00 00 9f 41 10 00 0f 00 00 00 | .@..M....A..8...fA.......A...... |
| 10600 | b0 41 10 00 3b 00 00 00 c0 41 10 00 12 00 00 00 fc 41 10 00 1d 00 00 00 0f 42 10 00 44 00 00 00 | .A..;....A.......A.......B..D... |
| 10620 | 2d 42 10 00 51 00 00 00 72 42 10 00 41 00 00 00 c4 42 10 00 6a 00 00 00 06 43 10 00 66 00 00 00 | -B..Q...rB..A....B..j....C..f... |
| 10640 | 71 43 10 00 1c 00 00 00 d8 43 10 00 8d 00 00 00 f5 43 10 00 d1 00 00 00 83 44 10 00 1d 00 00 00 | qC.......C.......C.......D...... |
| 10660 | 55 45 10 00 e3 00 00 00 73 45 10 00 e4 00 00 00 57 46 10 00 24 00 00 00 3c 47 10 00 38 00 00 00 | UE......sE......WF..$...<G..8... |
| 10680 | 61 47 10 00 52 00 00 00 9a 47 10 00 1f 00 00 00 ed 47 10 00 8d 00 00 00 0d 48 10 00 5a 00 00 00 | aG..R....G.......G.......H..Z... |
| 106a0 | 9b 48 10 00 1a 00 00 00 f6 48 10 00 21 00 00 00 11 49 10 00 1d 00 00 00 33 49 10 00 22 00 00 00 | .H.......H..!....I......3I.."... |
| 106c0 | 51 49 10 00 70 00 00 00 74 49 10 00 67 00 00 00 e5 49 10 00 72 00 00 00 4d 4a 10 00 69 00 00 00 | QI..p...tI..g....I..r...MJ..i... |
| 106e0 | c0 4a 10 00 29 00 00 00 2a 4b 10 00 77 00 00 00 54 4b 10 00 73 00 00 00 cc 4b 10 00 90 00 00 00 | .J..)...*K..w...TK..s....K...... |
| 10700 | 40 4c 10 00 91 00 00 00 d1 4c 10 00 53 00 00 00 63 4d 10 00 b6 00 00 00 b7 4d 10 00 b8 00 00 00 | @L.......L..S...cM.......M...... |
| 10720 | 6e 4e 10 00 bd 00 00 00 27 4f 10 00 5c 00 00 00 e5 4f 10 00 1e 00 00 00 42 50 10 00 15 00 00 00 | nN......'O..\....O......BP...... |
| 10740 | 61 50 10 00 25 00 00 00 77 50 10 00 91 00 00 00 9d 50 10 00 92 00 00 00 2f 51 10 00 97 00 00 00 | aP..%...wP.......P....../Q...... |
| 10760 | c2 51 10 00 54 00 00 00 5a 52 10 00 b7 00 00 00 af 52 10 00 b9 00 00 00 67 53 10 00 be 00 00 00 | .Q..T...ZR.......R......gS...... |
| 10780 | 21 54 10 00 60 00 00 00 e0 54 10 00 24 00 00 00 41 55 10 00 cc 00 00 00 66 55 10 00 25 00 00 00 | !T..`....T..$...AU......fU..%... |
| 107a0 | 33 56 10 00 95 00 00 00 59 56 10 00 46 00 00 00 ef 56 10 00 2f 00 00 00 36 57 10 00 9a 00 00 00 | 3V......YV..F....V../...6W...... |
| 107c0 | 66 57 10 00 61 00 00 00 01 58 10 00 48 00 00 00 63 58 10 00 5b 00 00 00 ac 58 10 00 1f 00 00 00 | fW..a....X..H...cX..[....X...... |
| 107e0 | 08 59 10 00 30 00 00 00 28 59 10 00 3b 00 00 00 59 59 10 00 25 00 00 00 95 59 10 00 28 00 00 00 | .Y..0...(Y..;...YY..%....Y..(... |
| 10800 | bb 59 10 00 2e 00 00 00 e4 59 10 00 9e 00 00 00 13 5a 10 00 3e 00 00 00 b2 5a 10 00 11 00 00 00 | .Y.......Y.......Z..>....Z...... |
| 10820 | f1 5a 10 00 19 00 00 00 03 5b 10 00 7a 00 00 00 1d 5b 10 00 17 00 00 00 98 5b 10 00 13 00 00 00 | .Z.......[..z....[.......[...... |
| 10840 | b0 5b 10 00 7e 00 00 00 c4 5b 10 00 81 00 00 00 43 5c 10 00 7d 00 00 00 c5 5c 10 00 83 00 00 00 | .[..~....[......C\..}....\...... |
| 10860 | 43 5d 10 00 11 00 00 00 c7 5d 10 00 10 00 00 00 d9 5d 10 00 33 00 00 00 ea 5d 10 00 33 00 00 00 | C].......].......]..3....]..3... |
| 10880 | 1e 5e 10 00 33 00 00 00 52 5e 10 00 33 00 00 00 86 5e 10 00 35 00 00 00 ba 5e 10 00 6a 00 00 00 | .^..3...R^..3....^..5....^..j... |
| 108a0 | f0 5e 10 00 22 00 00 00 5b 5f 10 00 1e 01 00 00 7e 5f 10 00 33 00 00 00 9d 60 10 00 dd 00 00 00 | .^.."...[_......~_..3....`...... |
| 108c0 | d1 60 10 00 17 01 00 00 af 61 10 00 49 00 00 00 c7 62 10 00 06 00 00 00 11 63 10 00 11 00 00 00 | .`.......a..I....b.......c...... |
| 108e0 | 18 63 10 00 38 00 00 00 2a 63 10 00 28 00 00 00 63 63 10 00 24 00 00 00 8c 63 10 00 17 00 00 00 | .c..8...*c..(...cc..$....c...... |
| 10900 | b1 63 10 00 9d 00 00 00 c9 63 10 00 37 00 00 00 67 64 10 00 8a 00 00 00 9f 64 10 00 89 00 00 00 | .c.......c..7...gd.......d...... |
| 10920 | 2a 65 10 00 5c 00 00 00 b4 65 10 00 cd 01 00 00 11 66 10 00 c2 00 00 00 df 67 10 00 65 00 00 00 | *e..\....e.......f.......g..e... |
| 10940 | a2 68 10 00 3f 00 00 00 08 69 10 00 43 00 00 00 48 69 10 00 0a 00 00 00 8c 69 10 00 b3 00 00 00 | .h..?....i..C...Hi.......i...... |
| 10960 | 97 69 10 00 8c 00 00 00 4b 6a 10 00 e8 00 00 00 d8 6a 10 00 21 00 00 00 c1 6b 10 00 05 00 00 00 | .i......Kj.......j..!....k...... |
| 10980 | e3 6b 10 00 89 01 00 00 e9 6b 10 00 8d 01 00 00 73 6d 10 00 1b 00 00 00 01 6f 10 00 ae 01 00 00 | .k.......k......sm.......o...... |
| 109a0 | 1d 6f 10 00 27 00 00 00 cc 70 10 00 09 00 00 00 f4 70 10 00 fc 00 00 00 fe 70 10 00 79 01 00 00 | .o..'....p.......p.......p..y... |
| 109c0 | fb 71 10 00 0f 00 00 00 75 73 10 00 6c 00 00 00 85 73 10 00 70 00 00 00 f2 73 10 00 35 00 00 00 | .q......us..l....s..p....s..5... |
| 109e0 | 63 74 10 00 d4 00 00 00 99 74 10 00 d4 00 00 00 6e 75 10 00 f4 00 00 00 43 76 10 00 24 00 00 00 | ct.......t......nu......Cv..$... |
| 10a00 | 38 77 10 00 6f 00 00 00 5d 77 10 00 10 00 00 00 cd 77 10 00 c6 00 00 00 de 77 10 00 30 00 00 00 | 8w..o...]w.......w.......w..0... |
| 10a20 | a5 78 10 00 30 00 00 00 d6 78 10 00 a3 00 00 00 07 79 10 00 a4 00 00 00 ab 79 10 00 1b 00 00 00 | .x..0....x.......y.......y...... |
| 10a40 | 50 7a 10 00 25 00 00 00 6c 7a 10 00 38 00 00 00 92 7a 10 00 22 00 00 00 cb 7a 10 00 65 00 00 00 | Pz..%...lz..8....z.."....z..e... |
| 10a60 | ee 7a 10 00 80 00 00 00 54 7b 10 00 74 00 00 00 d5 7b 10 00 6a 00 00 00 4a 7c 10 00 a9 00 00 00 | .z......T{..t....{..j...J|...... |
| 10a80 | b5 7c 10 00 01 00 00 00 5f 7d 10 00 03 00 00 00 61 7d 10 00 1f 00 00 00 65 7d 10 00 11 00 00 00 | .|......_}......a}......e}...... |
| 10aa0 | 85 7d 10 00 10 00 00 00 97 7d 10 00 37 01 00 00 a8 7d 10 00 0b 00 00 00 e0 7e 10 00 0e 00 00 00 | .}.......}..7....}.......~...... |
| 10ac0 | ec 7e 10 00 17 00 00 00 fb 7e 10 00 22 00 00 00 13 7f 10 00 05 00 00 00 36 7f 10 00 05 00 00 00 | .~.......~.."...........6....... |
| 10ae0 | 3c 7f 10 00 1b 00 00 00 42 7f 10 00 40 00 00 00 5e 7f 10 00 1b 00 00 00 9f 7f 10 00 0c 00 00 00 | <.......B...@...^............... |
| 10b00 | bb 7f 10 00 eb 00 00 00 c8 7f 10 00 03 00 00 00 b4 80 10 00 41 02 00 00 b8 80 10 00 ad 00 00 00 | ....................A........... |
| 10b20 | fa 82 10 00 1d 01 00 00 a8 83 10 00 0d 00 00 00 c6 84 10 00 91 00 00 00 d4 84 10 00 0b 00 00 00 | ................................ |
| 10b40 | 66 85 10 00 34 00 00 00 72 85 10 00 25 00 00 00 a7 85 10 00 16 00 00 00 cd 85 10 00 40 00 00 00 | f...4...r...%...............@... |
| 10b60 | e4 85 10 00 23 00 00 00 25 86 10 00 1f 00 00 00 49 86 10 00 07 00 00 00 69 86 10 00 0f 00 00 00 | ....#...%.......I.......i....... |
| 10b80 | 71 86 10 00 4b 00 00 00 81 86 10 00 ab 01 00 00 cd 86 10 00 a3 00 00 00 79 88 10 00 13 00 00 00 | q...K...................y....... |
| 10ba0 | 1d 89 10 00 0f 00 00 00 31 89 10 00 1c 00 00 00 41 89 10 00 18 00 00 00 5e 89 10 00 23 00 00 00 | ........1.......A.......^...#... |
| 10bc0 | 77 89 10 00 0f 00 00 00 9b 89 10 00 10 00 00 00 ab 89 10 00 0e 00 00 00 bc 89 10 00 25 00 00 00 | w...........................%... |
| 10be0 | cb 89 10 00 1a 00 00 00 f1 89 10 00 1d 00 00 00 0c 8a 10 00 18 00 00 00 2a 8a 10 00 45 00 00 00 | ........................*...E... |
| 10c00 | 43 8a 10 00 16 00 00 00 89 8a 10 00 43 00 00 00 a0 8a 10 00 25 00 00 00 e4 8a 10 00 38 00 00 00 | C...........C.......%.......8... |
| 10c20 | 0a 8b 10 00 36 00 00 00 43 8b 10 00 20 00 00 00 7a 8b 10 00 13 00 00 00 9b 8b 10 00 1e 00 00 00 | ....6...C.......z............... |
| 10c40 | af 8b 10 00 15 00 00 00 ce 8b 10 00 10 00 00 00 e4 8b 10 00 ec 00 00 00 f5 8b 10 00 eb 00 00 00 | ................................ |
| 10c60 | e2 8c 10 00 ba 00 00 00 ce 8d 10 00 ba 00 00 00 89 8e 10 00 25 00 00 00 44 8f 10 00 89 00 00 00 | ....................%...D....... |
| 10c80 | 6a 8f 10 00 13 00 00 00 f4 8f 10 00 1a 00 00 00 08 90 10 00 3a 00 00 00 23 90 10 00 81 01 00 00 | j...................:...#....... |
| 10ca0 | 5e 90 10 00 47 00 00 00 e0 91 10 00 74 00 00 00 28 92 10 00 3a 00 00 00 9d 92 10 00 9d 00 00 00 | ^...G.......t...(...:........... |
| 10cc0 | d8 92 10 00 7b 01 00 00 76 93 10 00 61 00 00 00 f2 94 10 00 6c 00 00 00 54 95 10 00 06 00 00 00 | ....{...v...a.......l...T....... |
| 10ce0 | c1 95 10 00 47 00 00 00 c8 95 10 00 44 00 00 00 10 96 10 00 50 00 00 00 55 96 10 00 4c 00 00 00 | ....G.......D.......P...U...L... |
| 10d00 | a6 96 10 00 37 00 00 00 f3 96 10 00 07 01 00 00 2b 97 10 00 57 00 00 00 33 98 10 00 31 00 00 00 | ....7...........+...W...3...1... |
| 10d20 | 8b 98 10 00 5b 00 00 00 bd 98 10 00 1f 00 00 00 19 99 10 00 62 00 00 00 39 99 10 00 2b 00 00 00 | ....[...............b...9...+... |
| 10d40 | 9c 99 10 00 04 00 00 00 c8 99 10 00 16 00 00 00 cd 99 10 00 37 00 00 00 e4 99 10 00 38 01 00 00 | ....................7.......8... |
| 10d60 | 1c 9a 10 00 0d 00 00 00 55 9b 10 00 0d 00 00 00 63 9b 10 00 12 00 00 00 71 9b 10 00 0a 00 00 00 | ........U.......c.......q....... |
| 10d80 | 84 9b 10 00 4e 00 00 00 8f 9b 10 00 08 01 00 00 de 9b 10 00 24 01 00 00 e7 9c 10 00 15 00 00 00 | ....N...............$........... |
| 10da0 | 0c 9e 10 00 9c 01 00 00 22 9e 10 00 5c 00 00 00 bf 9f 10 00 a4 00 00 00 1c a0 10 00 16 00 00 00 | ........"...\................... |
| 10dc0 | c1 a0 10 00 8a 02 00 00 d8 a0 10 00 1d 00 00 00 63 a3 10 00 0c 00 00 00 81 a3 10 00 1f 00 00 00 | ................c............... |
| 10de0 | 8e a3 10 00 43 00 00 00 ae a3 10 00 0d 00 00 00 f2 a3 10 00 c1 00 00 00 00 a4 10 00 77 00 00 00 | ....C.......................w... |
| 10e00 | c2 a4 10 00 69 00 00 00 3a a5 10 00 62 00 00 00 a4 a5 10 00 76 00 00 00 07 a6 10 00 0e 01 00 00 | ....i...:...b.......v........... |
| 10e20 | 7e a6 10 00 cb 00 00 00 8d a7 10 00 19 01 00 00 59 a8 10 00 43 00 00 00 73 a9 10 00 03 01 00 00 | ~...............Y...C...s....... |
| 10e40 | b7 a9 10 00 ab 00 00 00 bb aa 10 00 7b 00 00 00 67 ab 10 00 9a 00 00 00 e3 ab 10 00 a6 00 00 00 | ............{...g............... |
| 10e60 | 7e ac 10 00 6e 01 00 00 25 ad 10 00 17 01 00 00 94 ae 10 00 6f 00 00 00 ac af 10 00 7b 00 00 00 | ~...n...%...........o.......{... |
| 10e80 | 1c b0 10 00 7d 00 00 00 98 b0 10 00 12 01 00 00 16 b1 10 00 e6 00 00 00 29 b2 10 00 b6 00 00 00 | ....}...................)....... |
| 10ea0 | 10 b3 10 00 3c 01 00 00 c7 b3 10 00 b1 00 00 00 04 b5 10 00 fb 00 00 00 b6 b5 10 00 20 00 00 00 | ....<........................... |
| 10ec0 | b2 b6 10 00 a0 01 00 00 d3 b6 10 00 53 00 00 00 74 b8 10 00 39 00 00 00 c8 b8 10 00 28 00 00 00 | ............S...t...9.......(... |
| 10ee0 | 02 b9 10 00 4a 00 00 00 2b b9 10 00 3b 00 00 00 76 b9 10 00 34 00 00 00 b2 b9 10 00 52 00 00 00 | ....J...+...;...v...4.......R... |
| 10f00 | e7 b9 10 00 53 00 00 00 3a ba 10 00 52 00 00 00 8e ba 10 00 80 01 00 00 e1 ba 10 00 36 00 00 00 | ....S...:...R...............6... |
| 10f20 | 62 bc 10 00 23 00 00 00 99 bc 10 00 0b 00 00 00 bd bc 10 00 ad 00 00 00 c9 bc 10 00 91 00 00 00 | b...#........................... |
| 10f40 | 77 bd 10 00 1b 02 00 00 09 be 10 00 f1 01 00 00 25 c0 10 00 e8 01 00 00 17 c2 10 00 0a 00 00 00 | w...............%............... |
| 10f60 | 00 c4 10 00 1f 00 00 00 0b c4 10 00 71 00 00 00 2b c4 10 00 04 01 00 00 9d c4 10 00 07 00 00 00 | ............q...+............... |
| 10f80 | a2 c5 10 00 df 00 00 00 aa c5 10 00 4a 01 00 00 8a c6 10 00 45 01 00 00 d5 c7 10 00 22 00 00 00 | ............J.......E......."... |
| 10fa0 | 1b c9 10 00 79 01 00 00 3e c9 10 00 0c 00 00 00 b8 ca 10 00 a6 00 00 00 c5 ca 10 00 e9 00 00 00 | ....y...>....................... |
| 10fc0 | 6c cb 10 00 83 00 00 00 56 cc 10 00 19 00 00 00 da cc 10 00 0f 00 00 00 f4 cc 10 00 09 00 00 00 | l.......V....................... |
| 10fe0 | 04 cd 10 00 12 00 00 00 0e cd 10 00 0e 00 00 00 21 cd 10 00 12 00 00 00 30 cd 10 00 21 00 00 00 | ................!.......0...!... |
| 11000 | 43 cd 10 00 0e 00 00 00 65 cd 10 00 17 00 00 00 74 cd 10 00 14 00 00 00 8c cd 10 00 19 00 00 00 | C.......e.......t............... |
| 11020 | a1 cd 10 00 14 00 00 00 bb cd 10 00 06 00 00 00 d0 cd 10 00 13 00 00 00 d7 cd 10 00 12 00 00 00 | ................................ |
| 11040 | eb cd 10 00 0d 00 00 00 fe cd 10 00 6a 00 00 00 0c ce 10 00 17 00 00 00 77 ce 10 00 2e 00 00 00 | ............j...........w....... |
| 11060 | 8f ce 10 00 2d 00 00 00 be ce 10 00 08 00 00 00 ec ce 10 00 16 00 00 00 f5 ce 10 00 ea 00 00 00 | ....-........................... |
| 11080 | 0c cf 10 00 59 00 00 00 f7 cf 10 00 19 00 00 00 51 d0 10 00 7e 00 00 00 6b d0 10 00 07 00 00 00 | ....Y...........Q...~...k....... |
| 110a0 | ea d0 10 00 2a 00 00 00 f2 d0 10 00 4f 00 00 00 1d d1 10 00 17 00 00 00 6d d1 10 00 3b 00 00 00 | ....*.......O...........m...;... |
| 110c0 | 85 d1 10 00 60 00 00 00 c1 d1 10 00 87 01 00 00 22 d2 10 00 6e 00 00 00 aa d3 10 00 24 00 00 00 | ....`..........."...n.......$... |
| 110e0 | 19 d4 10 00 54 00 00 00 3e d4 10 00 a4 01 00 00 93 d4 10 00 8f 01 00 00 38 d6 10 00 24 00 00 00 | ....T...>...............8...$... |
| 11100 | c8 d7 10 00 1f 00 00 00 ed d7 10 00 07 00 00 00 0d d8 10 00 1b 00 00 00 15 d8 10 00 08 00 00 00 | ................................ |
| 11120 | 31 d8 10 00 5c 00 00 00 3a d8 10 00 3c 00 00 00 97 d8 10 00 3f 00 00 00 d4 d8 10 00 08 00 00 00 | 1...\...:...<.......?........... |
| 11140 | 14 d9 10 00 1b 00 00 00 1d d9 10 00 bc 00 00 00 39 d9 10 00 57 00 00 00 f6 d9 10 00 36 00 00 00 | ................9...W.......6... |
| 11160 | 4e da 10 00 14 00 00 00 85 da 10 00 3f 00 00 00 9a da 10 00 3a 00 00 00 da da 10 00 75 00 00 00 | N...........?.......:.......u... |
| 11180 | 15 db 10 00 69 00 00 00 8b db 10 00 32 01 00 00 f5 db 10 00 36 01 00 00 28 dd 10 00 0c 00 00 00 | ....i.......2.......6...(....... |
| 111a0 | 5f de 10 00 26 00 00 00 6c de 10 00 18 00 00 00 93 de 10 00 2e 00 00 00 ac de 10 00 41 01 00 00 | _...&...l...................A... |
| 111c0 | db de 10 00 03 00 00 00 1d e0 10 00 04 00 00 00 21 e0 10 00 14 00 00 00 26 e0 10 00 0c 00 00 00 | ................!.......&....... |
| 111e0 | 3b e0 10 00 05 00 00 00 48 e0 10 00 0c 00 00 00 4e e0 10 00 0d 00 00 00 5b e0 10 00 0b 00 00 00 | ;.......H.......N.......[....... |
| 11200 | 69 e0 10 00 1c 00 00 00 75 e0 10 00 14 00 00 00 92 e0 10 00 ae 00 00 00 a7 e0 10 00 25 00 00 00 | i.......u...................%... |
| 11220 | 56 e1 10 00 46 00 00 00 7c e1 10 00 31 01 00 00 c3 e1 10 00 4f 00 00 00 f5 e2 10 00 ca 00 00 00 | V...F...|...1.......O........... |
| 11240 | 45 e3 10 00 43 00 00 00 10 e4 10 00 46 00 00 00 54 e4 10 00 0b 00 00 00 9b e4 10 00 0b 00 00 00 | E...C.......F...T............... |
| 11260 | a7 e4 10 00 19 00 00 00 b3 e4 10 00 0f 00 00 00 cd e4 10 00 ba 01 00 00 dd e4 10 00 6a 00 00 00 | ............................j... |
| 11280 | 98 e6 10 00 13 00 00 00 03 e7 10 00 e4 00 00 00 17 e7 10 00 46 00 00 00 fc e7 10 00 88 01 00 00 | ....................F........... |
| 112a0 | 43 e8 10 00 89 01 00 00 cc e9 10 00 38 00 00 00 56 eb 10 00 0b 00 00 00 8f eb 10 00 ce 00 00 00 | C...........8...V............... |
| 112c0 | 9b eb 10 00 6c 00 00 00 6a ec 10 00 10 01 00 00 d7 ec 10 00 6e 00 00 00 e8 ed 10 00 26 00 00 00 | ....l...j...........n.......&... |
| 112e0 | 57 ee 10 00 40 00 00 00 7e ee 10 00 a0 00 00 00 bf ee 10 00 b9 00 00 00 60 ef 10 00 58 00 00 00 | W...@...~...............`...X... |
| 11300 | 1a f0 10 00 64 00 00 00 73 f0 10 00 39 00 00 00 d8 f0 10 00 45 00 00 00 12 f1 10 00 4a 00 00 00 | ....d...s...9.......E.......J... |
| 11320 | 58 f1 10 00 4b 00 00 00 a3 f1 10 00 56 00 00 00 ef f1 10 00 57 00 00 00 46 f2 10 00 96 00 00 00 | X...K.......V.......W...F....... |
| 11340 | 9e f2 10 00 37 00 00 00 35 f3 10 00 8f 00 00 00 6d f3 10 00 06 00 00 00 fd f3 10 00 0f 00 00 00 | ....7...5.......m............... |
| 11360 | 04 f4 10 00 1b 00 00 00 14 f4 10 00 33 00 00 00 30 f4 10 00 56 00 00 00 64 f4 10 00 0b 00 00 00 | ............3...0...V...d....... |
| 11380 | bb f4 10 00 12 00 00 00 c7 f4 10 00 10 00 00 00 da f4 10 00 38 00 00 00 eb f4 10 00 48 01 00 00 | ....................8.......H... |
| 113a0 | 24 f5 10 00 15 00 00 00 6d f6 10 00 19 00 00 00 83 f6 10 00 33 00 00 00 9d f6 10 00 1f 00 00 00 | $.......m...........3........... |
| 113c0 | d1 f6 10 00 2e 00 00 00 f1 f6 10 00 93 01 00 00 20 f7 10 00 0f 00 00 00 b4 f8 10 00 0a 00 00 00 | ................................ |
| 113e0 | c4 f8 10 00 0a 00 00 00 cf f8 10 00 63 00 00 00 da f8 10 00 2f 00 00 00 3e f9 10 00 32 00 00 00 | ............c......./...>...2... |
| 11400 | 6e f9 10 00 4c 00 00 00 a1 f9 10 00 23 00 00 00 ee f9 10 00 64 00 00 00 12 fa 10 00 65 00 00 00 | n...L.......#.......d.......e... |
| 11420 | 77 fa 10 00 6e 00 00 00 dd fa 10 00 29 00 00 00 4c fb 10 00 dd 00 00 00 76 fb 10 00 2d 00 00 00 | w...n.......)...L.......v...-... |
| 11440 | 54 fc 10 00 11 00 00 00 82 fc 10 00 11 00 00 00 94 fc 10 00 12 00 00 00 a6 fc 10 00 0c 00 00 00 | T............................... |
| 11460 | b9 fc 10 00 30 00 00 00 c6 fc 10 00 3f 00 00 00 f7 fc 10 00 40 00 00 00 37 fd 10 00 04 01 00 00 | ....0.......?.......@...7....... |
| 11480 | 78 fd 10 00 a9 00 00 00 7d fe 10 00 18 00 00 00 27 ff 10 00 08 00 00 00 40 ff 10 00 46 00 00 00 | x.......}.......'.......@...F... |
| 114a0 | 49 ff 10 00 4d 00 00 00 90 ff 10 00 1f 00 00 00 de ff 10 00 4f 00 00 00 fe ff 10 00 3d 00 00 00 | I...M...............O.......=... |
| 114c0 | 4e 00 11 00 2e 00 00 00 8c 00 11 00 35 00 00 00 bb 00 11 00 08 00 00 00 f1 00 11 00 0e 00 00 00 | N...........5................... |
| 114e0 | fa 00 11 00 84 01 00 00 09 01 11 00 8c 00 00 00 8e 02 11 00 fb 00 00 00 1b 03 11 00 11 00 00 00 | ................................ |
| 11500 | 17 04 11 00 0e 01 00 00 29 04 11 00 3a 00 00 00 38 05 11 00 09 00 00 00 73 05 11 00 38 00 00 00 | ........)...:...8.......s...8... |
| 11520 | 7d 05 11 00 bd 00 00 00 b6 05 11 00 30 00 00 00 74 06 11 00 31 00 00 00 a5 06 11 00 24 00 00 00 | }...........0...t...1.......$... |
| 11540 | d7 06 11 00 28 00 00 00 fc 06 11 00 23 00 00 00 25 07 11 00 20 00 00 00 49 07 11 00 21 00 00 00 | ....(.......#...%.......I...!... |
| 11560 | 6a 07 11 00 3a 00 00 00 8c 07 11 00 1f 00 00 00 c7 07 11 00 32 00 00 00 e7 07 11 00 26 00 00 00 | j...:...............2.......&... |
| 11580 | 1a 08 11 00 13 00 00 00 41 08 11 00 41 00 00 00 55 08 11 00 a0 00 00 00 97 08 11 00 3e 00 00 00 | ........A...A...U...........>... |
| 115a0 | 38 09 11 00 1f 00 00 00 77 09 11 00 ce 00 00 00 97 09 11 00 4c 01 00 00 66 0a 11 00 36 01 00 00 | 8.......w...........L...f...6... |
| 115c0 | b3 0b 11 00 21 00 00 00 ea 0c 11 00 1e 00 00 00 0c 0d 11 00 0e 00 00 00 2b 0d 11 00 03 00 00 00 | ....!...................+....... |
| 115e0 | 3a 0d 11 00 39 00 00 00 3e 0d 11 00 2f 00 00 00 78 0d 11 00 b8 00 00 00 a8 0d 11 00 24 00 00 00 | :...9...>.../...x...........$... |
| 11600 | 61 0e 11 00 49 00 00 00 86 0e 11 00 03 00 00 00 d0 0e 11 00 24 00 00 00 d4 0e 11 00 03 00 00 00 | a...I...............$........... |
| 11620 | f9 0e 11 00 06 00 00 00 fd 0e 11 00 0c 00 00 00 04 0f 11 00 18 00 00 00 11 0f 11 00 17 00 00 00 | ................................ |
| 11640 | 2a 0f 11 00 15 00 00 00 42 0f 11 00 22 00 00 00 58 0f 11 00 4c 00 00 00 7b 0f 11 00 45 00 00 00 | *.......B..."...X...L...{...E... |
| 11660 | c8 0f 11 00 98 00 00 00 0e 10 11 00 15 00 00 00 a7 10 11 00 05 01 00 00 bd 10 11 00 73 00 00 00 | ............................s... |
| 11680 | c3 11 11 00 8b 00 00 00 37 12 11 00 04 00 00 00 c3 12 11 00 b5 00 00 00 c8 12 11 00 53 01 00 00 | ........7...................S... |
| 116a0 | 7e 13 11 00 20 00 00 00 d2 14 11 00 03 00 00 00 f3 14 11 00 21 00 00 00 f7 14 11 00 21 00 00 00 | ~...................!.......!... |
| 116c0 | 19 15 11 00 04 00 00 00 3b 15 11 00 15 00 00 00 40 15 11 00 e1 00 00 00 56 15 11 00 08 00 00 00 | ........;.......@.......V....... |
| 116e0 | 38 16 11 00 0d 00 00 00 41 16 11 00 c3 00 00 00 4f 16 11 00 20 00 00 00 13 17 11 00 21 00 00 00 | 8.......A.......O...........!... |
| 11700 | 34 17 11 00 0c 00 00 00 56 17 11 00 0a 00 00 00 63 17 11 00 47 00 00 00 6e 17 11 00 44 00 00 00 | 4.......V.......c...G...n...D... |
| 11720 | b6 17 11 00 45 00 00 00 fb 17 11 00 72 00 00 00 41 18 11 00 dc 00 00 00 b4 18 11 00 0e 00 00 00 | ....E.......r...A............... |
| 11740 | 91 19 11 00 4f 00 00 00 a0 19 11 00 6a 00 00 00 f0 19 11 00 50 00 00 00 5b 1a 11 00 0e 00 00 00 | ....O.......j.......P...[....... |
| 11760 | ac 1a 11 00 0b 00 00 00 bb 1a 11 00 1f 00 00 00 c7 1a 11 00 41 00 00 00 e7 1a 11 00 13 04 00 00 | ....................A........... |
| 11780 | 29 1b 11 00 87 00 00 00 3d 1f 11 00 25 00 00 00 c5 1f 11 00 0c 00 00 00 eb 1f 11 00 16 00 00 00 | ).......=...%................... |
| 117a0 | f8 1f 11 00 2f 01 00 00 0f 20 11 00 96 00 00 00 3f 21 11 00 1e 00 00 00 d6 21 11 00 1c 00 00 00 | ..../...........?!.......!...... |
| 117c0 | f5 21 11 00 ad 01 00 00 12 22 11 00 45 00 00 00 c0 23 11 00 16 00 00 00 06 24 11 00 35 00 00 00 | .!......."..E....#.......$..5... |
| 117e0 | 1d 24 11 00 3b 00 00 00 53 24 11 00 4a 00 00 00 8f 24 11 00 54 00 00 00 da 24 11 00 73 00 00 00 | .$..;...S$..J....$..T....$..s... |
| 11800 | 2f 25 11 00 4c 00 00 00 a3 25 11 00 0d 00 00 00 f0 25 11 00 23 00 00 00 fe 25 11 00 23 00 00 00 | /%..L....%.......%..#....%..#... |
| 11820 | 22 26 11 00 21 00 00 00 46 26 11 00 15 00 00 00 68 26 11 00 0b 00 00 00 7e 26 11 00 10 00 00 00 | "&..!...F&......h&......~&...... |
| 11840 | 8a 26 11 00 0f 00 00 00 9b 26 11 00 0a 00 00 00 ab 26 11 00 1e 00 00 00 b6 26 11 00 0b 00 00 00 | .&.......&.......&.......&...... |
| 11860 | d5 26 11 00 1f 00 00 00 e1 26 11 00 15 00 00 00 01 27 11 00 48 00 00 00 17 27 11 00 4e 00 00 00 | .&.......&.......'..H....'..N... |
| 11880 | 60 27 11 00 0b 00 00 00 af 27 11 00 3d 00 00 00 bb 27 11 00 25 00 00 00 f9 27 11 00 29 00 00 00 | `'.......'..=....'..%....'..)... |
| 118a0 | 1f 28 11 00 11 00 00 00 49 28 11 00 76 00 00 00 5b 28 11 00 43 00 00 00 d2 28 11 00 6b 00 00 00 | .(......I(..v...[(..C....(..k... |
| 118c0 | 16 29 11 00 0c 00 00 00 82 29 11 00 20 00 00 00 8f 29 11 00 0d 00 00 00 b0 29 11 00 63 00 00 00 | .).......).......).......)..c... |
| 118e0 | be 29 11 00 05 00 00 00 22 2a 11 00 0d 00 00 00 28 2a 11 00 6c 00 00 00 36 2a 11 00 8a 00 00 00 | .)......"*......(*..l...6*...... |
| 11900 | a3 2a 11 00 0e 00 00 00 2e 2b 11 00 81 00 00 00 3d 2b 11 00 07 00 00 00 bf 2b 11 00 1a 00 00 00 | .*.......+......=+.......+...... |
| 11920 | c7 2b 11 00 27 00 00 00 e2 2b 11 00 19 00 00 00 0a 2c 11 00 1e 00 00 00 24 2c 11 00 17 00 00 00 | .+..'....+.......,......$,...... |
| 11940 | 43 2c 11 00 1f 00 00 00 5b 2c 11 00 40 00 00 00 7b 2c 11 00 6d 00 00 00 bc 2c 11 00 58 00 00 00 | C,......[,..@...{,..m....,..X... |
| 11960 | 2a 2d 11 00 e4 00 00 00 83 2d 11 00 0c 00 00 00 68 2e 11 00 0b 00 00 00 75 2e 11 00 10 00 00 00 | *-.......-......h.......u....... |
| 11980 | 81 2e 11 00 3d 00 00 00 92 2e 11 00 39 00 00 00 d0 2e 11 00 40 00 00 00 0a 2f 11 00 0d 00 00 00 | ....=.......9.......@..../...... |
| 119a0 | 4b 2f 11 00 0b 00 00 00 59 2f 11 00 1f 00 00 00 65 2f 11 00 0f 00 00 00 85 2f 11 00 0f 00 00 00 | K/......Y/......e/......./...... |
| 119c0 | 95 2f 11 00 1d 00 00 00 a5 2f 11 00 09 00 00 00 c3 2f 11 00 10 00 00 00 cd 2f 11 00 14 00 00 00 | ./......./......./......./...... |
| 119e0 | de 2f 11 00 1d 00 00 00 f3 2f 11 00 0f 00 00 00 11 30 11 00 1d 00 00 00 21 30 11 00 17 00 00 00 | ./......./.......0......!0...... |
| 11a00 | 3f 30 11 00 d0 01 00 00 57 30 11 00 2e 00 00 00 28 32 11 00 7d 00 00 00 57 32 11 00 c1 00 00 00 | ?0......W0......(2..}...W2...... |
| 11a20 | d5 32 11 00 0c 00 00 00 97 33 11 00 13 00 00 00 a4 33 11 00 15 00 00 00 b8 33 11 00 0f 00 00 00 | .2.......3.......3.......3...... |
| 11a40 | ce 33 11 00 67 00 00 00 de 33 11 00 56 00 00 00 46 34 11 00 11 00 00 00 9d 34 11 00 c1 00 00 00 | .3..g....3..V...F4.......4...... |
| 11a60 | af 34 11 00 59 00 00 00 71 35 11 00 c6 00 00 00 cb 35 11 00 07 00 00 00 92 36 11 00 07 00 00 00 | .4..Y...q5.......5.......6...... |
| 11a80 | 9a 36 11 00 35 00 00 00 a2 36 11 00 69 00 00 00 d8 36 11 00 6c 00 00 00 42 37 11 00 2b 00 00 00 | .6..5....6..i....6..l...B7..+... |
| 11aa0 | af 37 11 00 7c 00 00 00 db 37 11 00 69 00 00 00 58 38 11 00 0b 00 00 00 c2 38 11 00 09 00 00 00 | .7..|....7..i...X8.......8...... |
| 11ac0 | ce 38 11 00 11 00 00 00 d8 38 11 00 05 00 00 00 ea 38 11 00 ad 00 00 00 f0 38 11 00 4c 00 00 00 | .8.......8.......8.......8..L... |
| 11ae0 | 9e 39 11 00 12 00 00 00 eb 39 11 00 04 00 00 00 fe 39 11 00 06 00 00 00 03 3a 11 00 06 00 00 00 | .9.......9.......9.......:...... |
| 11b00 | 0a 3a 11 00 04 00 00 00 11 3a 11 00 0f 00 00 00 16 3a 11 00 16 00 00 00 26 3a 11 00 d7 00 00 00 | .:.......:.......:......&:...... |
| 11b20 | 3d 3a 11 00 fd 00 00 00 15 3b 11 00 65 01 00 00 13 3c 11 00 06 00 00 00 79 3d 11 00 f4 00 00 00 | =:.......;..e....<......y=...... |
| 11b40 | 80 3d 11 00 00 01 00 00 75 3e 11 00 06 00 00 00 76 3f 11 00 0b 02 00 00 7d 3f 11 00 e3 01 00 00 | .=......u>......v?......}?...... |
| 11b60 | 89 41 11 00 e2 01 00 00 6d 43 11 00 03 00 00 00 50 45 11 00 27 00 00 00 54 45 11 00 18 00 00 00 | .A......mC......PE..'...TE...... |
| 11b80 | 7c 45 11 00 0a 00 00 00 95 45 11 00 7b 01 00 00 a0 45 11 00 40 00 00 00 1c 47 11 00 a9 01 00 00 | |E.......E..{....E..@....G...... |
| 11ba0 | 5d 47 11 00 30 00 00 00 07 49 11 00 0c 00 00 00 38 49 11 00 10 00 00 00 45 49 11 00 1b 00 00 00 | ]G..0....I......8I......EI...... |
| 11bc0 | 56 49 11 00 2e 00 00 00 72 49 11 00 0b 00 00 00 a1 49 11 00 13 00 00 00 ad 49 11 00 0b 00 00 00 | VI......rI.......I.......I...... |
| 11be0 | c1 49 11 00 2e 00 00 00 cd 49 11 00 46 00 00 00 fc 49 11 00 0d 00 00 00 43 4a 11 00 0b 00 00 00 | .I.......I..F....I......CJ...... |
| 11c00 | 51 4a 11 00 58 01 00 00 5d 4a 11 00 88 00 00 00 b6 4b 11 00 62 00 00 00 3f 4c 11 00 45 00 00 00 | QJ..X...]J.......K..b...?L..E... |
| 11c20 | a2 4c 11 00 29 00 00 00 e8 4c 11 00 96 00 00 00 12 4d 11 00 10 00 00 00 a9 4d 11 00 2f 00 00 00 | .L..)....L.......M.......M../... |
| 11c40 | ba 4d 11 00 33 00 00 00 ea 4d 11 00 43 00 00 00 1e 4e 11 00 37 00 00 00 62 4e 11 00 49 00 00 00 | .M..3....M..C....N..7...bN..I... |
| 11c60 | 9a 4e 11 00 3b 00 00 00 e4 4e 11 00 3e 00 00 00 20 4f 11 00 4a 00 00 00 5f 4f 11 00 4d 00 00 00 | .N..;....N..>....O..J..._O..M... |
| 11c80 | aa 4f 11 00 09 00 00 00 f8 4f 11 00 a8 00 00 00 02 50 11 00 6b 00 00 00 ab 50 11 00 3a 00 00 00 | .O.......O.......P..k....P..:... |
| 11ca0 | 17 51 11 00 08 00 00 00 52 51 11 00 20 00 00 00 5b 51 11 00 28 00 00 00 7c 51 11 00 4b 00 00 00 | .Q......RQ......[Q..(...|Q..K... |
| 11cc0 | a5 51 11 00 0f 00 00 00 f1 51 11 00 26 01 00 00 01 52 11 00 5b 01 00 00 28 53 11 00 87 00 00 00 | .Q.......Q..&....R..[...(S...... |
| 11ce0 | 84 54 11 00 86 00 00 00 0c 55 11 00 ce 01 00 00 93 55 11 00 18 00 00 00 62 57 11 00 51 00 00 00 | .T.......U.......U......bW..Q... |
| 11d00 | 7b 57 11 00 f2 00 00 00 cd 57 11 00 0e 00 00 00 c0 58 11 00 34 00 00 00 cf 58 11 00 36 00 00 00 | {W.......W.......X..4....X..6... |
| 11d20 | 04 59 11 00 bd 00 00 00 3b 59 11 00 7e 00 00 00 f9 59 11 00 82 00 00 00 78 5a 11 00 33 00 00 00 | .Y......;Y..~....Y......xZ..3... |
| 11d40 | fb 5a 11 00 0e 00 00 00 2f 5b 11 00 dd 00 00 00 3e 5b 11 00 06 00 00 00 1c 5c 11 00 12 00 00 00 | .Z....../[......>[.......\...... |
| 11d60 | 23 5c 11 00 14 00 00 00 36 5c 11 00 0b 00 00 00 4b 5c 11 00 0c 00 00 00 57 5c 11 00 0d 00 00 00 | #\......6\......K\......W\...... |
| 11d80 | 64 5c 11 00 14 00 00 00 72 5c 11 00 42 00 00 00 87 5c 11 00 07 00 00 00 ca 5c 11 00 07 00 00 00 | d\......r\..B....\.......\...... |
| 11da0 | d2 5c 11 00 c7 00 00 00 da 5c 11 00 29 00 00 00 a2 5d 11 00 28 00 00 00 cc 5d 11 00 23 00 00 00 | .\.......\..)....]..(....]..#... |
| 11dc0 | f5 5d 11 00 14 00 00 00 19 5e 11 00 20 00 00 00 2e 5e 11 00 18 00 00 00 4f 5e 11 00 28 00 00 00 | .].......^.......^......O^..(... |
| 11de0 | 68 5e 11 00 1d 00 00 00 91 5e 11 00 29 00 00 00 af 5e 11 00 1e 00 00 00 d9 5e 11 00 30 00 00 00 | h^.......^..)....^.......^..0... |
| 11e00 | f8 5e 11 00 4b 00 00 00 29 5f 11 00 6e 00 00 00 75 5f 11 00 2d 00 00 00 e4 5f 11 00 2d 00 00 00 | .^..K...)_..n...u_..-...._..-... |
| 11e20 | 12 60 11 00 35 00 00 00 40 60 11 00 16 00 00 00 76 60 11 00 1c 00 00 00 8d 60 11 00 1b 00 00 00 | .`..5...@`......v`.......`...... |
| 11e40 | aa 60 11 00 21 00 00 00 c6 60 11 00 41 00 00 00 e8 60 11 00 35 00 00 00 2a 61 11 00 97 00 00 00 | .`..!....`..A....`..5...*a...... |
| 11e60 | 60 61 11 00 4e 00 00 00 f8 61 11 00 1d 00 00 00 47 62 11 00 4c 00 00 00 65 62 11 00 17 00 00 00 | `a..N....a......Gb..L...eb...... |
| 11e80 | b2 62 11 00 1f 00 00 00 ca 62 11 00 21 00 00 00 ea 62 11 00 1b 00 00 00 0c 63 11 00 41 00 00 00 | .b.......b..!....b.......c..A... |
| 11ea0 | 28 63 11 00 24 00 00 00 6a 63 11 00 31 00 00 00 8f 63 11 00 47 00 00 00 c1 63 11 00 4f 00 00 00 | (c..$...jc..1....c..G....c..O... |
| 11ec0 | 09 64 11 00 45 00 00 00 59 64 11 00 7c 00 00 00 9f 64 11 00 26 00 00 00 1c 65 11 00 43 00 00 00 | .d..E...Yd..|....d..&....e..C... |
| 11ee0 | 43 65 11 00 4c 00 00 00 87 65 11 00 3c 00 00 00 d4 65 11 00 39 00 00 00 11 66 11 00 4a 00 00 00 | Ce..L....e..<....e..9....f..J... |
| 11f00 | 4b 66 11 00 82 00 00 00 96 66 11 00 5a 00 00 00 19 67 11 00 1a 00 00 00 74 67 11 00 2a 00 00 00 | Kf.......f..Z....g......tg..*... |
| 11f20 | 8f 67 11 00 1c 00 00 00 ba 67 11 00 37 00 00 00 d7 67 11 00 49 00 00 00 0f 68 11 00 3f 00 00 00 | .g.......g..7....g..I....h..?... |
| 11f40 | 59 68 11 00 47 00 00 00 99 68 11 00 42 00 00 00 e1 68 11 00 28 00 00 00 24 69 11 00 2a 00 00 00 | Yh..G....h..B....h..(...$i..*... |
| 11f60 | 4d 69 11 00 2d 00 00 00 78 69 11 00 30 00 00 00 a6 69 11 00 2d 00 00 00 d7 69 11 00 2c 00 00 00 | Mi..-...xi..0....i..-....i..,... |
| 11f80 | 05 6a 11 00 19 00 00 00 32 6a 11 00 29 00 00 00 4c 6a 11 00 30 00 00 00 76 6a 11 00 24 00 00 00 | .j......2j..)...Lj..0...vj..$... |
| 11fa0 | a7 6a 11 00 2b 00 00 00 cc 6a 11 00 29 00 00 00 f8 6a 11 00 35 00 00 00 22 6b 11 00 2a 00 00 00 | .j..+....j..)....j..5..."k..*... |
| 11fc0 | 58 6b 11 00 10 00 00 00 83 6b 11 00 2b 00 00 00 94 6b 11 00 55 00 00 00 c0 6b 11 00 3c 00 00 00 | Xk.......k..+....k..U....k..<... |
| 11fe0 | 16 6c 11 00 90 00 00 00 53 6c 11 00 1a 00 00 00 e4 6c 11 00 72 00 00 00 ff 6c 11 00 14 00 00 00 | .l......Sl.......l..r....l...... |
| 12000 | 72 6d 11 00 4c 00 00 00 87 6d 11 00 1f 00 00 00 d4 6d 11 00 71 00 00 00 f4 6d 11 00 6b 00 00 00 | rm..L....m.......m..q....m..k... |
| 12020 | 66 6e 11 00 5b 00 00 00 d2 6e 11 00 2c 00 00 00 2e 6f 11 00 4e 00 00 00 5b 6f 11 00 2a 00 00 00 | fn..[....n..,....o..N...[o..*... |
| 12040 | aa 6f 11 00 a0 00 00 00 d5 6f 11 00 65 00 00 00 76 70 11 00 27 01 00 00 dc 70 11 00 d0 00 00 00 | .o.......o..e...vp..'....p...... |
| 12060 | 04 72 11 00 d8 00 00 00 d5 72 11 00 3f 00 00 00 ae 73 11 00 38 00 00 00 ee 73 11 00 46 00 00 00 | .r.......r..?....s..8....s..F... |
| 12080 | 27 74 11 00 40 00 00 00 6e 74 11 00 53 00 00 00 af 74 11 00 45 00 00 00 03 75 11 00 26 01 00 00 | 't..@...nt..S....t..E....u..&... |
| 120a0 | 49 75 11 00 f1 00 00 00 70 76 11 00 48 00 00 00 62 77 11 00 49 00 00 00 ab 77 11 00 d0 00 00 00 | Iu......pv..H...bw..I....w...... |
| 120c0 | f5 77 11 00 24 00 00 00 c6 78 11 00 16 00 00 00 eb 78 11 00 60 00 00 00 02 79 11 00 50 00 00 00 | .w..$....x.......x..`....y..P... |
| 120e0 | 63 79 11 00 27 00 00 00 b4 79 11 00 18 00 00 00 dc 79 11 00 49 00 00 00 f5 79 11 00 52 00 00 00 | cy..'....y.......y..I....y..R... |
| 12100 | 3f 7a 11 00 58 00 00 00 92 7a 11 00 3d 00 00 00 eb 7a 11 00 25 00 00 00 29 7b 11 00 26 00 00 00 | ?z..X....z..=....z..%...){..&... |
| 12120 | 4f 7b 11 00 2a 00 00 00 76 7b 11 00 23 00 00 00 a1 7b 11 00 47 00 00 00 c5 7b 11 00 a4 00 00 00 | O{..*...v{..#....{..G....{...... |
| 12140 | 0d 7c 11 00 aa 00 00 00 b2 7c 11 00 55 00 00 00 5d 7d 11 00 f4 00 00 00 b3 7d 11 00 44 00 00 00 | .|.......|..U...]}.......}..D... |
| 12160 | a8 7e 11 00 61 00 00 00 ed 7e 11 00 54 00 00 00 4f 7f 11 00 3c 00 00 00 a4 7f 11 00 6d 00 00 00 | .~..a....~..T...O...<.......m... |
| 12180 | e1 7f 11 00 6a 00 00 00 4f 80 11 00 43 00 00 00 ba 80 11 00 5c 00 00 00 fe 80 11 00 34 00 00 00 | ....j...O...C.......\.......4... |
| 121a0 | 5b 81 11 00 a4 00 00 00 90 81 11 00 a8 00 00 00 35 82 11 00 e8 00 00 00 de 82 11 00 ec 00 00 00 | [...............5............... |
| 121c0 | c7 83 11 00 3e 00 00 00 b4 84 11 00 39 00 00 00 f3 84 11 00 21 00 00 00 2d 85 11 00 2c 00 00 00 | ....>.......9.......!...-...,... |
| 121e0 | 4f 85 11 00 34 00 00 00 7c 85 11 00 23 00 00 00 b1 85 11 00 55 00 00 00 d5 85 11 00 56 00 00 00 | O...4...|...#.......U.......V... |
| 12200 | 2b 86 11 00 35 00 00 00 82 86 11 00 2a 00 00 00 b8 86 11 00 66 00 00 00 e3 86 11 00 7b 00 00 00 | +...5.......*.......f.......{... |
| 12220 | 4a 87 11 00 41 00 00 00 c6 87 11 00 42 00 00 00 08 88 11 00 41 00 00 00 4b 88 11 00 56 00 00 00 | J...A.......B.......A...K...V... |
| 12240 | 8d 88 11 00 35 00 00 00 e4 88 11 00 2b 00 00 00 1a 89 11 00 2f 00 00 00 46 89 11 00 22 00 00 00 | ....5.......+......./...F..."... |
| 12260 | 76 89 11 00 44 00 00 00 99 89 11 00 63 00 00 00 de 89 11 00 56 00 00 00 42 8a 11 00 4d 00 00 00 | v...D.......c.......V...B...M... |
| 12280 | 99 8a 11 00 34 00 00 00 e7 8a 11 00 3f 00 00 00 1c 8b 11 00 79 01 00 00 5c 8b 11 00 df 00 00 00 | ....4.......?.......y...\....... |
| 122a0 | d6 8c 11 00 f0 00 00 00 b6 8d 11 00 df 00 00 00 a7 8e 11 00 54 00 00 00 87 8f 11 00 32 00 00 00 | ....................T.......2... |
| 122c0 | dc 8f 11 00 0c 01 00 00 0f 90 11 00 59 00 00 00 1c 91 11 00 4e 00 00 00 76 91 11 00 26 01 00 00 | ............Y.......N...v...&... |
| 122e0 | c5 91 11 00 4a 00 00 00 ec 92 11 00 1a 00 00 00 37 93 11 00 2f 00 00 00 52 93 11 00 a4 00 00 00 | ....J...........7.../...R....... |
| 12300 | 82 93 11 00 3a 00 00 00 27 94 11 00 81 00 00 00 62 94 11 00 3a 00 00 00 e4 94 11 00 2a 00 00 00 | ....:...'.......b...:.......*... |
| 12320 | 1f 95 11 00 1d 01 00 00 4a 95 11 00 2d 00 00 00 68 96 11 00 21 00 00 00 96 96 11 00 26 00 00 00 | ........J...-...h...!.......&... |
| 12340 | b8 96 11 00 af 00 00 00 df 96 11 00 63 00 00 00 8f 97 11 00 ce 00 00 00 f3 97 11 00 53 00 00 00 | ............c...............S... |
| 12360 | c2 98 11 00 44 00 00 00 16 99 11 00 33 00 00 00 5b 99 11 00 45 00 00 00 8f 99 11 00 34 00 00 00 | ....D.......3...[...E.......4... |
| 12380 | d5 99 11 00 7a 00 00 00 0a 9a 11 00 32 00 00 00 85 9a 11 00 27 00 00 00 b8 9a 11 00 46 00 00 00 | ....z.......2.......'.......F... |
| 123a0 | e0 9a 11 00 2e 00 00 00 27 9b 11 00 44 00 00 00 56 9b 11 00 60 00 00 00 9b 9b 11 00 27 00 00 00 | ........'...D...V...`.......'... |
| 123c0 | fc 9b 11 00 5b 00 00 00 24 9c 11 00 78 00 00 00 80 9c 11 00 5f 00 00 00 f9 9c 11 00 5b 00 00 00 | ....[...$...x......._.......[... |
| 123e0 | 59 9d 11 00 1b 00 00 00 b5 9d 11 00 0c 00 00 00 d1 9d 11 00 b4 01 00 00 de 9d 11 00 11 00 00 00 | Y............................... |
| 12400 | 93 9f 11 00 12 00 00 00 a5 9f 11 00 ed 00 00 00 b8 9f 11 00 17 00 00 00 a6 a0 11 00 18 00 00 00 | ................................ |
| 12420 | be a0 11 00 12 00 00 00 d7 a0 11 00 35 00 00 00 ea a0 11 00 26 00 00 00 20 a1 11 00 2c 00 00 00 | ............5.......&.......,... |
| 12440 | 47 a1 11 00 75 00 00 00 74 a1 11 00 41 00 00 00 ea a1 11 00 41 00 00 00 2c a2 11 00 6f 00 00 00 | G...u...t...A.......A...,...o... |
| 12460 | 6e a2 11 00 9f 00 00 00 de a2 11 00 a1 00 00 00 7e a3 11 00 7f 00 00 00 20 a4 11 00 77 00 00 00 | n...............~...........w... |
| 12480 | a0 a4 11 00 08 00 00 00 18 a5 11 00 0e 00 00 00 21 a5 11 00 06 00 00 00 30 a5 11 00 15 00 00 00 | ................!.......0....... |
| 124a0 | 37 a5 11 00 27 00 00 00 4d a5 11 00 ee 00 00 00 75 a5 11 00 eb 00 00 00 64 a6 11 00 04 00 00 00 | 7...'...M.......u.......d....... |
| 124c0 | 50 a7 11 00 16 00 00 00 55 a7 11 00 20 00 00 00 6c a7 11 00 22 00 00 00 8d a7 11 00 11 00 00 00 | P.......U.......l..."........... |
| 124e0 | b0 a7 11 00 3a 00 00 00 c2 a7 11 00 20 00 00 00 fd a7 11 00 14 00 00 00 1e a8 11 00 55 00 00 00 | ....:.......................U... |
| 12500 | 33 a8 11 00 28 00 00 00 89 a8 11 00 88 00 00 00 b2 a8 11 00 16 00 00 00 3b a9 11 00 16 00 00 00 | 3...(...................;....... |
| 12520 | 52 a9 11 00 18 00 00 00 69 a9 11 00 26 00 00 00 82 a9 11 00 1a 00 00 00 a9 a9 11 00 27 00 00 00 | R.......i...&...............'... |
| 12540 | c4 a9 11 00 23 00 00 00 ec a9 11 00 17 00 00 00 10 aa 11 00 21 00 00 00 28 aa 11 00 5d 00 00 00 | ....#...............!...(...]... |
| 12560 | 4a aa 11 00 28 00 00 00 a8 aa 11 00 49 00 00 00 d1 aa 11 00 44 00 00 00 1b ab 11 00 25 00 00 00 | J...(.......I.......D.......%... |
| 12580 | 60 ab 11 00 21 00 00 00 86 ab 11 00 12 00 00 00 a8 ab 11 00 30 00 00 00 bb ab 11 00 2f 00 00 00 | `...!...............0......./... |
| 125a0 | ec ab 11 00 2f 00 00 00 1c ac 11 00 4d 00 00 00 4c ac 11 00 56 00 00 00 9a ac 11 00 34 00 00 00 | ..../.......M...L...V.......4... |
| 125c0 | f1 ac 11 00 2f 00 00 00 26 ad 11 00 3a 00 00 00 56 ad 11 00 32 00 00 00 91 ad 11 00 3f 00 00 00 | ..../...&...:...V...2.......?... |
| 125e0 | c4 ad 11 00 a2 00 00 00 04 ae 11 00 21 00 00 00 a7 ae 11 00 0d 00 00 00 c9 ae 11 00 4a 00 00 00 | ............!...............J... |
| 12600 | d7 ae 11 00 2e 00 00 00 22 af 11 00 2e 00 00 00 51 af 11 00 2e 00 00 00 80 af 11 00 1f 00 00 00 | ........".......Q............... |
| 12620 | af af 11 00 41 00 00 00 cf af 11 00 3c 00 00 00 11 b0 11 00 5b 00 00 00 4e b0 11 00 30 00 00 00 | ....A.......<.......[...N...0... |
| 12640 | aa b0 11 00 3f 00 00 00 db b0 11 00 38 00 00 00 1b b1 11 00 2d 00 00 00 54 b1 11 00 52 00 00 00 | ....?.......8.......-...T...R... |
| 12660 | 82 b1 11 00 39 00 00 00 d5 b1 11 00 3b 00 00 00 0f b2 11 00 4a 00 00 00 4b b2 11 00 2d 00 00 00 | ....9.......;.......J...K...-... |
| 12680 | 96 b2 11 00 3d 00 00 00 c4 b2 11 00 13 00 00 00 02 b3 11 00 24 00 00 00 16 b3 11 00 20 00 00 00 | ....=...............$........... |
| 126a0 | 3b b3 11 00 29 00 00 00 5c b3 11 00 2b 00 00 00 86 b3 11 00 38 00 00 00 b2 b3 11 00 3a 00 00 00 | ;...)...\...+.......8.......:... |
| 126c0 | eb b3 11 00 3a 00 00 00 26 b4 11 00 30 00 00 00 61 b4 11 00 27 00 00 00 92 b4 11 00 8d 00 00 00 | ....:...&...0...a...'........... |
| 126e0 | ba b4 11 00 8d 00 00 00 48 b5 11 00 2f 00 00 00 d6 b5 11 00 2a 00 00 00 06 b6 11 00 19 00 00 00 | ........H.../.......*........... |
| 12700 | 31 b6 11 00 5e 00 00 00 4b b6 11 00 23 00 00 00 aa b6 11 00 37 00 00 00 ce b6 11 00 20 00 00 00 | 1...^...K...#.......7........... |
| 12720 | 06 b7 11 00 1c 00 00 00 27 b7 11 00 3b 00 00 00 44 b7 11 00 30 00 00 00 80 b7 11 00 27 00 00 00 | ........'...;...D...0.......'... |
| 12740 | b1 b7 11 00 20 00 00 00 d9 b7 11 00 25 00 00 00 fa b7 11 00 dd 00 00 00 20 b8 11 00 da 00 00 00 | ............%................... |
| 12760 | fe b8 11 00 da 00 00 00 d9 b9 11 00 0e 00 00 00 b4 ba 11 00 38 00 00 00 c3 ba 11 00 40 00 00 00 | ....................8.......@... |
| 12780 | fc ba 11 00 23 00 00 00 3d bb 11 00 24 00 00 00 61 bb 11 00 07 00 00 00 86 bb 11 00 07 00 00 00 | ....#...=...$...a............... |
| 127a0 | 8e bb 11 00 33 00 00 00 96 bb 11 00 33 00 00 00 ca bb 11 00 33 00 00 00 fe bb 11 00 33 00 00 00 | ....3.......3.......3.......3... |
| 127c0 | 32 bc 11 00 40 00 00 00 66 bc 11 00 8c 00 00 00 a7 bc 11 00 51 00 00 00 34 bd 11 00 4f 00 00 00 | 2...@...f...........Q...4...O... |
| 127e0 | 86 bd 11 00 3d 00 00 00 d6 bd 11 00 64 00 00 00 14 be 11 00 6f 00 00 00 79 be 11 00 94 00 00 00 | ....=.......d.......o...y....... |
| 12800 | e9 be 11 00 92 00 00 00 7e bf 11 00 cd 00 00 00 11 c0 11 00 ce 00 00 00 df c0 11 00 82 00 00 00 | ........~....................... |
| 12820 | ae c1 11 00 8f 00 00 00 31 c2 11 00 e1 00 00 00 c1 c2 11 00 c3 00 00 00 a3 c3 11 00 8a 00 00 00 | ........1....................... |
| 12840 | 67 c4 11 00 8b 00 00 00 f2 c4 11 00 19 00 00 00 7e c5 11 00 17 00 00 00 98 c5 11 00 10 00 00 00 | g...............~............... |
| 12860 | b0 c5 11 00 0c 00 00 00 c1 c5 11 00 ac 00 00 00 ce c5 11 00 e2 00 00 00 7b c6 11 00 14 00 00 00 | ........................{....... |
| 12880 | 5e c7 11 00 c3 00 00 00 73 c7 11 00 95 00 00 00 37 c8 11 00 13 01 00 00 cd c8 11 00 31 00 00 00 | ^.......s.......7...........1... |
| 128a0 | e1 c9 11 00 0a 00 00 00 13 ca 11 00 21 01 00 00 1e ca 11 00 d8 00 00 00 40 cb 11 00 8b 00 00 00 | ............!...........@....... |
| 128c0 | 19 cc 11 00 8c 00 00 00 a5 cc 11 00 f8 00 00 00 32 cd 11 00 39 00 00 00 2b ce 11 00 49 00 00 00 | ................2...9...+...I... |
| 128e0 | 65 ce 11 00 b6 00 00 00 af ce 11 00 93 00 00 00 66 cf 11 00 80 00 00 00 fa cf 11 00 1b 00 00 00 | e...............f............... |
| 12900 | 7b d0 11 00 79 00 00 00 97 d0 11 00 79 00 00 00 11 d1 11 00 53 01 00 00 8b d1 11 00 7f 00 00 00 | {...y.......y.......S........... |
| 12920 | df d2 11 00 a9 00 00 00 5f d3 11 00 b6 00 00 00 09 d4 11 00 83 00 00 00 c0 d4 11 00 86 00 00 00 | ........_....................... |
| 12940 | 44 d5 11 00 0e 00 00 00 cb d5 11 00 5d 00 00 00 da d5 11 00 36 00 00 00 38 d6 11 00 10 00 00 00 | D...........].......6...8....... |
| 12960 | 6f d6 11 00 0d 00 00 00 80 d6 11 00 45 00 00 00 8e d6 11 00 45 00 00 00 d4 d6 11 00 19 00 00 00 | o...........E.......E........... |
| 12980 | 1a d7 11 00 22 00 00 00 34 d7 11 00 1c 00 00 00 57 d7 11 00 45 00 00 00 74 d7 11 00 50 00 00 00 | ...."...4.......W...E...t...P... |
| 129a0 | ba d7 11 00 65 00 00 00 0b d8 11 00 2f 00 00 00 71 d8 11 00 60 00 00 00 a1 d8 11 00 54 00 00 00 | ....e......./...q...`.......T... |
| 129c0 | 02 d9 11 00 55 00 00 00 57 d9 11 00 48 00 00 00 ad d9 11 00 26 00 00 00 f6 d9 11 00 26 00 00 00 | ....U...W...H.......&.......&... |
| 129e0 | 1d da 11 00 b2 00 00 00 44 da 11 00 eb 00 00 00 f7 da 11 00 75 00 00 00 e3 db 11 00 77 00 00 00 | ........D...........u.......w... |
| 12a00 | 59 dc 11 00 4d 00 00 00 d1 dc 11 00 e2 00 00 00 1f dd 11 00 5b 00 00 00 02 de 11 00 78 00 00 00 | Y...M...............[.......x... |
| 12a20 | 5e de 11 00 1d 01 00 00 d7 de 11 00 29 01 00 00 f5 df 11 00 53 00 00 00 1f e1 11 00 42 00 00 00 | ^...........).......S.......B... |
| 12a40 | 73 e1 11 00 8b 00 00 00 b6 e1 11 00 1e 00 00 00 42 e2 11 00 56 00 00 00 61 e2 11 00 d2 00 00 00 | s...............B...V...a....... |
| 12a60 | b8 e2 11 00 36 00 00 00 8b e3 11 00 ce 00 00 00 c2 e3 11 00 00 01 00 00 91 e4 11 00 c1 00 00 00 | ....6........................... |
| 12a80 | 92 e5 11 00 38 00 00 00 54 e6 11 00 27 00 00 00 8d e6 11 00 57 00 00 00 b5 e6 11 00 bd 00 00 00 | ....8...T...'.......W........... |
| 12aa0 | 0d e7 11 00 85 00 00 00 cb e7 11 00 4f 00 00 00 51 e8 11 00 ba 01 00 00 a1 e8 11 00 b6 00 00 00 | ............O...Q............... |
| 12ac0 | 5c ea 11 00 47 00 00 00 13 eb 11 00 63 00 00 00 5b eb 11 00 4c 00 00 00 bf eb 11 00 d5 00 00 00 | \...G.......c...[...L........... |
| 12ae0 | 0c ec 11 00 66 00 00 00 e2 ec 11 00 45 01 00 00 49 ed 11 00 56 00 00 00 8f ee 11 00 64 00 00 00 | ....f.......E...I...V.......d... |
| 12b00 | e6 ee 11 00 57 00 00 00 4b ef 11 00 64 00 00 00 a3 ef 11 00 bf 00 00 00 08 f0 11 00 a4 00 00 00 | ....W...K...d................... |
| 12b20 | c8 f0 11 00 bc 00 00 00 6d f1 11 00 65 00 00 00 2a f2 11 00 3f 00 00 00 90 f2 11 00 c0 01 00 00 | ........m...e...*...?........... |
| 12b40 | d0 f2 11 00 72 00 00 00 91 f4 11 00 74 00 00 00 04 f5 11 00 58 00 00 00 79 f5 11 00 45 00 00 00 | ....r.......t.......X...y...E... |
| 12b60 | d2 f5 11 00 41 00 00 00 18 f6 11 00 52 00 00 00 5a f6 11 00 81 00 00 00 ad f6 11 00 75 00 00 00 | ....A.......R...Z...........u... |
| 12b80 | 2f f7 11 00 7f 00 00 00 a5 f7 11 00 30 00 00 00 25 f8 11 00 31 00 00 00 56 f8 11 00 7e 00 00 00 | /...........0...%...1...V...~... |
| 12ba0 | 88 f8 11 00 50 00 00 00 07 f9 11 00 36 00 00 00 58 f9 11 00 50 01 00 00 8f f9 11 00 69 00 00 00 | ....P.......6...X...P.......i... |
| 12bc0 | e0 fa 11 00 a3 00 00 00 4a fb 11 00 5d 00 00 00 ee fb 11 00 8e 00 00 00 4c fc 11 00 4a 00 00 00 | ........J...]...........L...J... |
| 12be0 | db fc 11 00 57 00 00 00 26 fd 11 00 6d 00 00 00 7e fd 11 00 64 00 00 00 ec fd 11 00 64 00 00 00 | ....W...&...m...~...d.......d... |
| 12c00 | 51 fe 11 00 99 00 00 00 b6 fe 11 00 26 00 00 00 50 ff 11 00 b1 00 00 00 77 ff 11 00 ad 00 00 00 | Q...........&...P.......w....... |
| 12c20 | 29 00 12 00 81 00 00 00 d7 00 12 00 33 00 00 00 59 01 12 00 c0 00 00 00 8d 01 12 00 90 00 00 00 | )...........3...Y............... |
| 12c40 | 4e 02 12 00 a3 00 00 00 df 02 12 00 a2 00 00 00 83 03 12 00 83 00 00 00 26 04 12 00 41 00 00 00 | N.......................&...A... |
| 12c60 | aa 04 12 00 3a 00 00 00 ec 04 12 00 4b 00 00 00 27 05 12 00 65 00 00 00 73 05 12 00 65 00 00 00 | ....:.......K...'...e...s...e... |
| 12c80 | d9 05 12 00 06 00 00 00 3f 06 12 00 05 00 00 00 46 06 12 00 e3 01 00 00 4c 06 12 00 1e 00 00 00 | ........?.......F.......L....... |
| 12ca0 | 30 08 12 00 1d 00 00 00 4f 08 12 00 3d 00 00 00 6d 08 12 00 a4 00 00 00 ab 08 12 00 9d 01 00 00 | 0.......O...=...m............... |
| 12cc0 | 50 09 12 00 60 02 00 00 ee 0a 12 00 5b 02 00 00 4f 0d 12 00 4b 02 00 00 ab 0f 12 00 5a 02 00 00 | P...`.......[...O...K.......Z... |
| 12ce0 | f7 11 12 00 6d 00 00 00 52 14 12 00 a8 00 00 00 c0 14 12 00 bf 00 00 00 69 15 12 00 b2 00 00 00 | ....m...R...............i....... |
| 12d00 | 29 16 12 00 06 00 00 00 dc 16 12 00 4b 01 00 00 e3 16 12 00 4c 01 00 00 2f 18 12 00 17 00 00 00 | )...........K.......L.../....... |
| 12d20 | 7c 19 12 00 0b 00 00 00 94 19 12 00 0d 00 00 00 a0 19 12 00 55 00 00 00 ae 19 12 00 0f 00 00 00 | |...................U........... |
| 12d40 | 04 1a 12 00 0f 00 00 00 14 1a 12 00 5c 00 00 00 24 1a 12 00 ff 02 00 00 81 1a 12 00 b1 00 00 00 | ............\...$............... |
| 12d60 | 81 1d 12 00 52 00 00 00 33 1e 12 00 37 00 00 00 86 1e 12 00 06 00 00 00 be 1e 12 00 12 00 00 00 | ....R...3...7................... |
| 12d80 | c5 1e 12 00 9a 00 00 00 d8 1e 12 00 08 00 00 00 73 1f 12 00 38 00 00 00 7c 1f 12 00 11 00 00 00 | ................s...8...|....... |
| 12da0 | b5 1f 12 00 1c 00 00 00 c7 1f 12 00 12 00 00 00 e4 1f 12 00 1a 00 00 00 f7 1f 12 00 49 00 00 00 | ............................I... |
| 12dc0 | 12 20 12 00 1e 00 00 00 5c 20 12 00 2f 00 00 00 7b 20 12 00 73 00 00 00 ab 20 12 00 ae 00 00 00 | ........\.../...{...s........... |
| 12de0 | 1f 21 12 00 af 00 00 00 ce 21 12 00 11 00 00 00 7e 22 12 00 d5 00 00 00 90 22 12 00 d0 00 00 00 | .!.......!......~"......."...... |
| 12e00 | 66 23 12 00 0b 00 00 00 37 24 12 00 4a 00 00 00 43 24 12 00 08 00 00 00 8e 24 12 00 14 00 00 00 | f#......7$..J...C$.......$...... |
| 12e20 | 97 24 12 00 4a 00 00 00 ac 24 12 00 60 00 00 00 f7 24 12 00 06 00 00 00 58 25 12 00 06 00 00 00 | .$..J....$..`....$......X%...... |
| 12e40 | 5f 25 12 00 da 00 00 00 66 25 12 00 99 00 00 00 41 26 12 00 98 00 00 00 db 26 12 00 bc 00 00 00 | _%......f%......A&.......&...... |
| 12e60 | 74 27 12 00 06 00 00 00 31 28 12 00 0a 00 00 00 38 28 12 00 14 00 00 00 43 28 12 00 1b 00 00 00 | t'......1(......8(......C(...... |
| 12e80 | 58 28 12 00 0c 00 00 00 74 28 12 00 19 00 00 00 81 28 12 00 2e 00 00 00 9b 28 12 00 1d 00 00 00 | X(......t(.......(.......(...... |
| 12ea0 | ca 28 12 00 0e 00 00 00 e8 28 12 00 00 02 00 00 f7 28 12 00 ff 01 00 00 f8 2a 12 00 26 00 00 00 | .(.......(.......(.......*..&... |
| 12ec0 | f8 2c 12 00 0e 00 00 00 1f 2d 12 00 21 00 00 00 2e 2d 12 00 98 00 00 00 50 2d 12 00 07 00 00 00 | .,.......-..!....-......P-...... |
| 12ee0 | e9 2d 12 00 03 00 00 00 f1 2d 12 00 91 00 00 00 f5 2d 12 00 0a 00 00 00 87 2e 12 00 0b 00 00 00 | .-.......-.......-.............. |
| 12f00 | 92 2e 12 00 6a 00 00 00 9e 2e 12 00 0e 00 00 00 09 2f 12 00 08 00 00 00 18 2f 12 00 3f 00 00 00 | ....j............/......./..?... |
| 12f20 | 21 2f 12 00 2b 00 00 00 61 2f 12 00 29 00 00 00 8d 2f 12 00 35 00 00 00 b7 2f 12 00 54 00 00 00 | !/..+...a/..)..../..5..../..T... |
| 12f40 | ed 2f 12 00 5c 00 00 00 42 30 12 00 7b 00 00 00 9f 30 12 00 56 00 00 00 1b 31 12 00 67 00 00 00 | ./..\...B0..{....0..V....1..g... |
| 12f60 | 72 31 12 00 25 00 00 00 da 31 12 00 3a 00 00 00 00 32 12 00 3a 00 00 00 3b 32 12 00 0d 00 00 00 | r1..%....1..:....2..:...;2...... |
| 12f80 | 76 32 12 00 64 00 00 00 84 32 12 00 64 00 00 00 e9 32 12 00 67 00 00 00 4e 33 12 00 67 00 00 00 | v2..d....2..d....2..g...N3..g... |
| 12fa0 | b6 33 12 00 1f 00 00 00 1e 34 12 00 0c 00 00 00 3e 34 12 00 16 00 00 00 4b 34 12 00 44 01 00 00 | .3.......4......>4......K4..D... |
| 12fc0 | 62 34 12 00 41 00 00 00 a7 35 12 00 47 00 00 00 e9 35 12 00 d3 00 00 00 31 36 12 00 3a 02 00 00 | b4..A....5..G....5......16..:... |
| 12fe0 | 05 37 12 00 d7 00 00 00 40 39 12 00 fe 00 00 00 18 3a 12 00 93 00 00 00 17 3b 12 00 4e 01 00 00 | .7......@9.......:.......;..N... |
| 13000 | ab 3b 12 00 30 00 00 00 fa 3c 12 00 c8 00 00 00 2b 3d 12 00 ab 00 00 00 f4 3d 12 00 31 00 00 00 | .;..0....<......+=.......=..1... |
| 13020 | a0 3e 12 00 29 00 00 00 d2 3e 12 00 68 01 00 00 fc 3e 12 00 39 00 00 00 65 40 12 00 3b 01 00 00 | .>..)....>..h....>..9...e@..;... |
| 13040 | 9f 40 12 00 b2 00 00 00 db 41 12 00 27 00 00 00 8e 42 12 00 44 00 00 00 b6 42 12 00 d2 00 00 00 | .@.......A..'....B..D....B...... |
| 13060 | fb 42 12 00 73 00 00 00 ce 43 12 00 d7 00 00 00 42 44 12 00 9f 00 00 00 1a 45 12 00 2d 01 00 00 | .B..s....C......BD.......E..-... |
| 13080 | ba 45 12 00 af 00 00 00 e8 46 12 00 cc 00 00 00 98 47 12 00 4f 00 00 00 65 48 12 00 3f 01 00 00 | .E.......F.......G..O...eH..?... |
| 130a0 | b5 48 12 00 c1 00 00 00 f5 49 12 00 59 00 00 00 b7 4a 12 00 59 00 00 00 11 4b 12 00 21 01 00 00 | .H.......I..Y....J..Y....K..!... |
| 130c0 | 6b 4b 12 00 59 00 00 00 8d 4c 12 00 29 01 00 00 e7 4c 12 00 6f 00 00 00 11 4e 12 00 8f 00 00 00 | kK..Y....L..)....L..o....N...... |
| 130e0 | 81 4e 12 00 8d 00 00 00 11 4f 12 00 9e 00 00 00 9f 4f 12 00 6e 00 00 00 3e 50 12 00 6c 00 00 00 | .N.......O.......O..n...>P..l... |
| 13100 | ad 50 12 00 3a 00 00 00 1a 51 12 00 95 00 00 00 55 51 12 00 68 00 00 00 eb 51 12 00 58 00 00 00 | .P..:....Q......UQ..h....Q..X... |
| 13120 | 54 52 12 00 15 01 00 00 ad 52 12 00 96 00 00 00 c3 53 12 00 52 00 00 00 5a 54 12 00 52 00 00 00 | TR.......R.......S..R...ZT..R... |
| 13140 | ad 54 12 00 99 00 00 00 00 55 12 00 96 00 00 00 9a 55 12 00 ec 00 00 00 31 56 12 00 94 00 00 00 | .T.......U.......U......1V...... |
| 13160 | 1e 57 12 00 9e 00 00 00 b3 57 12 00 79 00 00 00 52 58 12 00 78 00 00 00 cc 58 12 00 50 00 00 00 | .W.......W..y...RX..x....X..P... |
| 13180 | 45 59 12 00 9e 00 00 00 96 59 12 00 13 00 00 00 35 5a 12 00 40 00 00 00 49 5a 12 00 3a 00 00 00 | EY.......Y......5Z..@...IZ..:... |
| 131a0 | 8a 5a 12 00 98 01 00 00 c5 5a 12 00 2d 00 00 00 5e 5c 12 00 39 00 00 00 8c 5c 12 00 e0 00 00 00 | .Z.......Z..-...^\..9....\...... |
| 131c0 | c6 5c 12 00 18 00 00 00 a7 5d 12 00 26 00 00 00 c0 5d 12 00 57 00 00 00 e7 5d 12 00 57 00 00 00 | .\.......]..&....]..W....]..W... |
| 131e0 | 3f 5e 12 00 ad 00 00 00 97 5e 12 00 ad 00 00 00 45 5f 12 00 b5 00 00 00 f3 5f 12 00 70 01 00 00 | ?^.......^......E_......._..p... |
| 13200 | a9 60 12 00 1b 00 00 00 1a 62 12 00 ab 01 00 00 36 62 12 00 eb 00 00 00 e2 63 12 00 bb 00 00 00 | .`.......b......6b.......c...... |
| 13220 | ce 64 12 00 bb 00 00 00 8a 65 12 00 fd 00 00 00 46 66 12 00 85 00 00 00 44 67 12 00 b5 00 00 00 | .d.......e......Ff......Dg...... |
| 13240 | ca 67 12 00 b5 00 00 00 80 68 12 00 5b 00 00 00 36 69 12 00 83 00 00 00 92 69 12 00 4b 00 00 00 | .g.......h..[...6i.......i..K... |
| 13260 | 16 6a 12 00 47 00 00 00 62 6a 12 00 45 00 00 00 aa 6a 12 00 45 00 00 00 f0 6a 12 00 59 01 00 00 | .j..G...bj..E....j..E....j..Y... |
| 13280 | 36 6b 12 00 27 00 00 00 90 6c 12 00 f8 00 00 00 b8 6c 12 00 0c 01 00 00 b1 6d 12 00 28 02 00 00 | 6k..'....l.......l.......m..(... |
| 132a0 | be 6e 12 00 ff 00 00 00 e7 70 12 00 61 00 00 00 e7 71 12 00 c8 00 00 00 49 72 12 00 5a 00 00 00 | .n.......p..a....q......Ir..Z... |
| 132c0 | 12 73 12 00 5c 00 00 00 6d 73 12 00 a9 00 00 00 ca 73 12 00 b6 00 00 00 74 74 12 00 5e 00 00 00 | .s..\...ms.......s......tt..^... |
| 132e0 | 2b 75 12 00 d3 00 00 00 8a 75 12 00 24 00 00 00 5e 76 12 00 14 00 00 00 83 76 12 00 1a 00 00 00 | +u.......u..$...^v.......v...... |
| 13300 | 98 76 12 00 bc 00 00 00 b3 76 12 00 68 00 00 00 70 77 12 00 1f 00 00 00 d9 77 12 00 24 00 00 00 | .v.......v..h...pw.......w..$... |
| 13320 | f9 77 12 00 bd 00 00 00 1e 78 12 00 1f 00 00 00 dc 78 12 00 17 00 00 00 fc 78 12 00 21 00 00 00 | .w.......x.......x.......x..!... |
| 13340 | 14 79 12 00 21 00 00 00 36 79 12 00 22 00 00 00 58 79 12 00 40 00 00 00 7b 79 12 00 1a 00 00 00 | .y..!...6y.."...Xy..@...{y...... |
| 13360 | bc 79 12 00 45 00 00 00 d7 79 12 00 17 01 00 00 1d 7a 12 00 54 00 00 00 35 7b 12 00 c0 01 00 00 | .y..E....y.......z..T...5{...... |
| 13380 | 8a 7b 12 00 d2 01 00 00 4b 7d 12 00 a2 00 00 00 1e 7f 12 00 d1 00 00 00 c1 7f 12 00 e4 00 00 00 | .{......K}...................... |
| 133a0 | 93 80 12 00 bf 00 00 00 78 81 12 00 dc 00 00 00 38 82 12 00 4e 01 00 00 15 83 12 00 45 00 00 00 | ........x.......8...N.......E... |
| 133c0 | 64 84 12 00 34 00 00 00 aa 84 12 00 b4 00 00 00 df 84 12 00 f9 00 00 00 94 85 12 00 f9 00 00 00 | d...4........................... |
| 133e0 | 8e 86 12 00 c5 00 00 00 88 87 12 00 27 00 00 00 4e 88 12 00 b7 00 00 00 76 88 12 00 ae 00 00 00 | ............'...N.......v....... |
| 13400 | 2e 89 12 00 52 00 00 00 dd 89 12 00 ab 00 00 00 30 8a 12 00 c8 00 00 00 dc 8a 12 00 5b 00 00 00 | ....R...........0...........[... |
| 13420 | a5 8b 12 00 6d 00 00 00 01 8c 12 00 ab 00 00 00 6f 8c 12 00 30 00 00 00 1b 8d 12 00 35 00 00 00 | ....m...........o...0.......5... |
| 13440 | 4c 8d 12 00 68 00 00 00 82 8d 12 00 53 00 00 00 eb 8d 12 00 33 00 00 00 3f 8e 12 00 2d 00 00 00 | L...h.......S.......3...?...-... |
| 13460 | 73 8e 12 00 4e 00 00 00 a1 8e 12 00 70 00 00 00 f0 8e 12 00 6c 00 00 00 61 8f 12 00 c5 00 00 00 | s...N.......p.......l...a....... |
| 13480 | ce 8f 12 00 b7 00 00 00 94 90 12 00 38 00 00 00 4c 91 12 00 39 00 00 00 85 91 12 00 21 01 00 00 | ............8...L...9.......!... |
| 134a0 | bf 91 12 00 dd 00 00 00 e1 92 12 00 1e 01 00 00 bf 93 12 00 5f 01 00 00 de 94 12 00 dc 00 00 00 | ...................._........... |
| 134c0 | 3e 96 12 00 c8 00 00 00 1b 97 12 00 36 00 00 00 e4 97 12 00 6e 00 00 00 1b 98 12 00 91 00 00 00 | >...........6.......n........... |
| 134e0 | 8a 98 12 00 8e 00 00 00 1c 99 12 00 60 00 00 00 ab 99 12 00 b0 00 00 00 0c 9a 12 00 6e 00 00 00 | ............`...............n... |
| 13500 | bd 9a 12 00 6b 00 00 00 2c 9b 12 00 35 00 00 00 98 9b 12 00 33 00 00 00 ce 9b 12 00 f1 00 00 00 | ....k...,...5.......3........... |
| 13520 | 02 9c 12 00 2b 00 00 00 f4 9c 12 00 38 00 00 00 20 9d 12 00 3a 01 00 00 59 9d 12 00 4b 00 00 00 | ....+.......8.......:...Y...K... |
| 13540 | 94 9e 12 00 53 01 00 00 e0 9e 12 00 92 01 00 00 34 a0 12 00 a1 00 00 00 c7 a1 12 00 28 00 00 00 | ....S...........4...........(... |
| 13560 | 69 a2 12 00 35 01 00 00 92 a2 12 00 9a 00 00 00 c8 a3 12 00 10 01 00 00 63 a4 12 00 3d 00 00 00 | i...5...................c...=... |
| 13580 | 74 a5 12 00 2b 00 00 00 b2 a5 12 00 a6 00 00 00 de a5 12 00 2e 00 00 00 85 a6 12 00 3f 00 00 00 | t...+.......................?... |
| 135a0 | b4 a6 12 00 ec 00 00 00 f4 a6 12 00 ee 00 00 00 e1 a7 12 00 7c 00 00 00 d0 a8 12 00 9a 01 00 00 | ....................|........... |
| 135c0 | 4d a9 12 00 42 00 00 00 e8 aa 12 00 82 00 00 00 2b ab 12 00 9b 00 00 00 ae ab 12 00 31 00 00 00 | M...B...........+...........1... |
| 135e0 | 4a ac 12 00 b4 00 00 00 7c ac 12 00 b8 00 00 00 31 ad 12 00 63 00 00 00 ea ad 12 00 33 00 00 00 | J.......|.......1...c.......3... |
| 13600 | 4e ae 12 00 3a 00 00 00 82 ae 12 00 5e 00 00 00 bd ae 12 00 25 01 00 00 1c af 12 00 42 00 00 00 | N...:.......^.......%.......B... |
| 13620 | 42 b0 12 00 5c 00 00 00 85 b0 12 00 56 00 00 00 e2 b0 12 00 fe 00 00 00 39 b1 12 00 79 00 00 00 | B...\.......V...........9...y... |
| 13640 | 38 b2 12 00 55 00 00 00 b2 b2 12 00 58 00 00 00 08 b3 12 00 cd 01 00 00 61 b3 12 00 3d 00 00 00 | 8...U.......X...........a...=... |
| 13660 | 2f b5 12 00 e8 01 00 00 6d b5 12 00 40 00 00 00 56 b7 12 00 7f 00 00 00 97 b7 12 00 6c 00 00 00 | /.......m...@...V...........l... |
| 13680 | 17 b8 12 00 6e 00 00 00 84 b8 12 00 e8 00 00 00 f3 b8 12 00 a5 00 00 00 dc b9 12 00 6b 00 00 00 | ....n.......................k... |
| 136a0 | 82 ba 12 00 69 01 00 00 ee ba 12 00 34 00 00 00 58 bc 12 00 79 00 00 00 8d bc 12 00 3d 00 00 00 | ....i.......4...X...y.......=... |
| 136c0 | 07 bd 12 00 54 00 00 00 45 bd 12 00 4c 00 00 00 9a bd 12 00 bc 00 00 00 e7 bd 12 00 ea 00 00 00 | ....T...E...L................... |
| 136e0 | a4 be 12 00 6d 00 00 00 8f bf 12 00 e6 00 00 00 fd bf 12 00 36 00 00 00 e4 c0 12 00 5b 00 00 00 | ....m...............6.......[... |
| 13700 | 1b c1 12 00 6a 00 00 00 77 c1 12 00 82 00 00 00 e2 c1 12 00 73 00 00 00 65 c2 12 00 49 00 00 00 | ....j...w...........s...e...I... |
| 13720 | d9 c2 12 00 29 00 00 00 23 c3 12 00 2a 01 00 00 4d c3 12 00 47 00 00 00 78 c4 12 00 46 00 00 00 | ....)...#...*...M...G...x...F... |
| 13740 | c0 c4 12 00 49 00 00 00 07 c5 12 00 49 00 00 00 51 c5 12 00 22 00 00 00 9b c5 12 00 54 00 00 00 | ....I.......I...Q...".......T... |
| 13760 | be c5 12 00 65 00 00 00 13 c6 12 00 32 00 00 00 79 c6 12 00 9d 00 00 00 ac c6 12 00 77 00 00 00 | ....e.......2...y...........w... |
| 13780 | 4a c7 12 00 2c 00 00 00 c2 c7 12 00 42 00 00 00 ef c7 12 00 2b 00 00 00 32 c8 12 00 86 01 00 00 | J...,.......B.......+...2....... |
| 137a0 | 5e c8 12 00 c4 00 00 00 e5 c9 12 00 c6 00 00 00 aa ca 12 00 80 00 00 00 71 cb 12 00 49 01 00 00 | ^.......................q...I... |
| 137c0 | f2 cb 12 00 90 00 00 00 3c cd 12 00 38 00 00 00 cd cd 12 00 9f 00 00 00 06 ce 12 00 1c 01 00 00 | ........<...8................... |
| 137e0 | a6 ce 12 00 d5 00 00 00 c3 cf 12 00 38 00 00 00 99 d0 12 00 28 00 00 00 d2 d0 12 00 5c 00 00 00 | ............8.......(.......\... |
| 13800 | fb d0 12 00 29 00 00 00 58 d1 12 00 71 00 00 00 82 d1 12 00 41 00 00 00 f4 d1 12 00 0f 01 00 00 | ....)...X...q.......A........... |
| 13820 | 36 d2 12 00 26 00 00 00 46 d3 12 00 5c 00 00 00 6d d3 12 00 b6 00 00 00 ca d3 12 00 fc 00 00 00 | 6...&...F...\...m............... |
| 13840 | 81 d4 12 00 89 00 00 00 7e d5 12 00 25 00 00 00 08 d6 12 00 5f 00 00 00 2e d6 12 00 ec 00 00 00 | ........~...%......._........... |
| 13860 | 8e d6 12 00 4e 00 00 00 7b d7 12 00 84 00 00 00 ca d7 12 00 55 00 00 00 4f d8 12 00 12 01 00 00 | ....N...{...........U...O....... |
| 13880 | a5 d8 12 00 75 00 00 00 b8 d9 12 00 65 00 00 00 2e da 12 00 e2 00 00 00 94 da 12 00 2f 00 00 00 | ....u.......e.............../... |
| 138a0 | 77 db 12 00 29 00 00 00 a7 db 12 00 a0 01 00 00 d1 db 12 00 9f 01 00 00 72 dd 12 00 e1 00 00 00 | w...)...................r....... |
| 138c0 | 12 df 12 00 ff 00 00 00 f4 df 12 00 db 00 00 00 f4 e0 12 00 dc 00 00 00 d0 e1 12 00 36 00 00 00 | ............................6... |
| 138e0 | ad e2 12 00 40 00 00 00 e4 e2 12 00 1f 00 00 00 25 e3 12 00 40 00 00 00 45 e3 12 00 4d 00 00 00 | ....@...........%...@...E...M... |
| 13900 | 86 e3 12 00 4c 00 00 00 d4 e3 12 00 d8 00 00 00 21 e4 12 00 92 00 00 00 fa e4 12 00 43 00 00 00 | ....L...........!...........C... |
| 13920 | 8d e5 12 00 af 00 00 00 d1 e5 12 00 65 00 00 00 81 e6 12 00 a8 00 00 00 e7 e6 12 00 38 00 00 00 | ............e...............8... |
| 13940 | 90 e7 12 00 3e 01 00 00 c9 e7 12 00 3c 00 00 00 08 e9 12 00 90 00 00 00 45 e9 12 00 58 00 00 00 | ....>.......<...........E...X... |
| 13960 | d6 e9 12 00 95 00 00 00 2f ea 12 00 50 00 00 00 c5 ea 12 00 64 00 00 00 16 eb 12 00 50 00 00 00 | ......../...P.......d.......P... |
| 13980 | 7b eb 12 00 6d 00 00 00 cc eb 12 00 3a 00 00 00 3a ec 12 00 29 00 00 00 75 ec 12 00 6d 00 00 00 | {...m.......:...:...)...u...m... |
| 139a0 | 9f ec 12 00 94 00 00 00 0d ed 12 00 c0 00 00 00 a2 ed 12 00 b8 01 00 00 63 ee 12 00 51 00 00 00 | ........................c...Q... |
| 139c0 | 1c f0 12 00 21 00 00 00 6e f0 12 00 26 00 00 00 90 f0 12 00 25 00 00 00 b7 f0 12 00 71 00 00 00 | ....!...n...&.......%.......q... |
| 139e0 | dd f0 12 00 24 00 00 00 4f f1 12 00 bc 01 00 00 74 f1 12 00 55 00 00 00 31 f3 12 00 a9 00 00 00 | ....$...O.......t...U...1....... |
| 13a00 | 87 f3 12 00 4c 00 00 00 31 f4 12 00 ee 00 00 00 7e f4 12 00 43 00 00 00 6d f5 12 00 39 00 00 00 | ....L...1.......~...C...m...9... |
| 13a20 | b1 f5 12 00 a9 00 00 00 eb f5 12 00 a9 00 00 00 95 f6 12 00 50 00 00 00 3f f7 12 00 53 01 00 00 | ....................P...?...S... |
| 13a40 | 90 f7 12 00 46 00 00 00 e4 f8 12 00 44 00 00 00 2b f9 12 00 43 00 00 00 70 f9 12 00 de 00 00 00 | ....F.......D...+...C...p....... |
| 13a60 | b4 f9 12 00 83 00 00 00 93 fa 12 00 83 00 00 00 17 fb 12 00 39 01 00 00 9b fb 12 00 a0 00 00 00 | ....................9........... |
| 13a80 | d5 fc 12 00 d1 00 00 00 76 fd 12 00 61 00 00 00 48 fe 12 00 b4 00 00 00 aa fe 12 00 b7 00 00 00 | ........v...a...H............... |
| 13aa0 | 5f ff 12 00 b6 00 00 00 17 00 13 00 bb 00 00 00 ce 00 13 00 a1 00 00 00 8a 01 13 00 5c 00 00 00 | _...........................\... |
| 13ac0 | 2c 02 13 00 58 00 00 00 89 02 13 00 5c 00 00 00 e2 02 13 00 58 00 00 00 3f 03 13 00 71 00 00 00 | ,...X.......\.......X...?...q... |
| 13ae0 | 98 03 13 00 5e 00 00 00 0a 04 13 00 21 01 00 00 69 04 13 00 13 01 00 00 8b 05 13 00 12 01 00 00 | ....^.......!...i............... |
| 13b00 | 9f 06 13 00 09 01 00 00 b2 07 13 00 40 00 00 00 bc 08 13 00 a3 00 00 00 fd 08 13 00 a3 00 00 00 | ............@................... |
| 13b20 | a1 09 13 00 9f 00 00 00 45 0a 13 00 9f 00 00 00 e5 0a 13 00 bb 00 00 00 85 0b 13 00 b4 00 00 00 | ........E....................... |
| 13b40 | 41 0c 13 00 54 00 00 00 f6 0c 13 00 bc 00 00 00 4b 0d 13 00 56 00 00 00 08 0e 13 00 be 00 00 00 | A...T...........K...V........... |
| 13b60 | 5f 0e 13 00 4e 00 00 00 1e 0f 13 00 cf 01 00 00 6d 0f 13 00 29 01 00 00 3d 11 13 00 63 00 00 00 | _...N...........m...)...=...c... |
| 13b80 | 67 12 13 00 46 00 00 00 cb 12 13 00 7e 00 00 00 12 13 13 00 3c 00 00 00 91 13 13 00 db 00 00 00 | g...F.......~.......<........... |
| 13ba0 | ce 13 13 00 42 00 00 00 aa 14 13 00 4e 00 00 00 ed 14 13 00 4e 00 00 00 3c 15 13 00 49 00 00 00 | ....B.......N.......N...<...I... |
| 13bc0 | 8b 15 13 00 49 00 00 00 d5 15 13 00 43 00 00 00 1f 16 13 00 4b 00 00 00 63 16 13 00 64 00 00 00 | ....I.......C.......K...c...d... |
| 13be0 | af 16 13 00 46 00 00 00 14 17 13 00 84 00 00 00 5b 17 13 00 7c 00 00 00 e0 17 13 00 86 00 00 00 | ....F...........[...|........... |
| 13c00 | 5d 18 13 00 2f 00 00 00 e4 18 13 00 79 00 00 00 14 19 13 00 76 00 00 00 8e 19 13 00 81 00 00 00 | ].../.......y.......v........... |
| 13c20 | 05 1a 13 00 46 01 00 00 87 1a 13 00 71 00 00 00 ce 1b 13 00 66 00 00 00 40 1c 13 00 3f 00 00 00 | ....F.......q.......f...@...?... |
| 13c40 | a7 1c 13 00 88 00 00 00 e7 1c 13 00 da 00 00 00 70 1d 13 00 19 00 00 00 4b 1e 13 00 90 01 00 00 | ................p.......K....... |
| 13c60 | 65 1e 13 00 a5 00 00 00 f6 1f 13 00 43 00 00 00 9c 20 13 00 2a 00 00 00 e0 20 13 00 4c 00 00 00 | e...........C.......*.......L... |
| 13c80 | 0b 21 13 00 3a 00 00 00 58 21 13 00 4e 00 00 00 93 21 13 00 b0 00 00 00 e2 21 13 00 2a 00 00 00 | .!..:...X!..N....!.......!..*... |
| 13ca0 | 93 22 13 00 21 00 00 00 be 22 13 00 51 00 00 00 e0 22 13 00 45 00 00 00 32 23 13 00 5f 00 00 00 | ."..!...."..Q...."..E...2#.._... |
| 13cc0 | 78 23 13 00 37 00 00 00 d8 23 13 00 41 00 00 00 10 24 13 00 44 00 00 00 52 24 13 00 6a 00 00 00 | x#..7....#..A....$..D...R$..j... |
| 13ce0 | 97 24 13 00 3c 00 00 00 02 25 13 00 56 00 00 00 3f 25 13 00 4a 00 00 00 96 25 13 00 ee 00 00 00 | .$..<....%..V...?%..J....%...... |
| 13d00 | e1 25 13 00 47 00 00 00 d0 26 13 00 7a 00 00 00 18 27 13 00 d2 00 00 00 93 27 13 00 5f 00 00 00 | .%..G....&..z....'.......'.._... |
| 13d20 | 66 28 13 00 d5 00 00 00 c6 28 13 00 39 00 00 00 9c 29 13 00 70 00 00 00 d6 29 13 00 5d 00 00 00 | f(.......(..9....)..p....)..]... |
| 13d40 | 47 2a 13 00 55 00 00 00 a5 2a 13 00 2b 00 00 00 fb 2a 13 00 38 00 00 00 27 2b 13 00 46 00 00 00 | G*..U....*..+....*..8...'+..F... |
| 13d60 | 60 2b 13 00 4c 00 00 00 a7 2b 13 00 62 00 00 00 f4 2b 13 00 41 00 00 00 57 2c 13 00 55 01 00 00 | `+..L....+..b....+..A...W,..U... |
| 13d80 | 99 2c 13 00 c0 00 00 00 ef 2d 13 00 b6 00 00 00 b0 2e 13 00 94 00 00 00 67 2f 13 00 8d 00 00 00 | .,.......-..............g/...... |
| 13da0 | fc 2f 13 00 d5 00 00 00 8a 30 13 00 7e 00 00 00 60 31 13 00 a4 00 00 00 df 31 13 00 a6 00 00 00 | ./.......0..~...`1.......1...... |
| 13dc0 | 84 32 13 00 a2 00 00 00 2b 33 13 00 a2 00 00 00 ce 33 13 00 c7 01 00 00 71 34 13 00 39 00 00 00 | .2......+3.......3......q4..9... |
| 13de0 | 39 36 13 00 32 01 00 00 73 36 13 00 a8 00 00 00 a6 37 13 00 79 00 00 00 4f 38 13 00 33 00 00 00 | 96..2...s6.......7..y...O8..3... |
| 13e00 | c9 38 13 00 90 00 00 00 fd 38 13 00 b0 00 00 00 8e 39 13 00 63 00 00 00 3f 3a 13 00 b3 00 00 00 | .8.......8.......9..c...?:...... |
| 13e20 | a3 3a 13 00 d6 00 00 00 57 3b 13 00 2c 00 00 00 2e 3c 13 00 52 00 00 00 5b 3c 13 00 6e 00 00 00 | .:......W;..,....<..R...[<..n... |
| 13e40 | ae 3c 13 00 4d 01 00 00 1d 3d 13 00 3b 00 00 00 6b 3e 13 00 ad 00 00 00 a7 3e 13 00 7b 02 00 00 | .<..M....=..;...k>.......>..{... |
| 13e60 | 55 3f 13 00 54 01 00 00 d1 41 13 00 53 00 00 00 26 43 13 00 4b 00 00 00 7a 43 13 00 04 01 00 00 | U?..T....A..S...&C..K...zC...... |
| 13e80 | c6 43 13 00 eb 00 00 00 cb 44 13 00 c8 00 00 00 b7 45 13 00 c8 00 00 00 80 46 13 00 b6 00 00 00 | .C.......D.......E.......F...... |
| 13ea0 | 49 47 13 00 bb 00 00 00 00 48 13 00 60 00 00 00 bc 48 13 00 b5 00 00 00 1d 49 13 00 b9 00 00 00 | IG.......H..`....H.......I...... |
| 13ec0 | d3 49 13 00 9b 00 00 00 8d 4a 13 00 0a 01 00 00 29 4b 13 00 01 01 00 00 34 4c 13 00 38 00 00 00 | .I.......J......)K......4L..8... |
| 13ee0 | 36 4d 13 00 3b 00 00 00 6f 4d 13 00 45 00 00 00 ab 4d 13 00 2c 00 00 00 f1 4d 13 00 70 00 00 00 | 6M..;...oM..E....M..,....M..p... |
| 13f00 | 1e 4e 13 00 4e 00 00 00 8f 4e 13 00 6e 00 00 00 de 4e 13 00 7c 01 00 00 4d 4f 13 00 7c 01 00 00 | .N..N....N..n....N..|...MO..|... |
| 13f20 | ca 50 13 00 71 01 00 00 47 52 13 00 54 00 00 00 b9 53 13 00 90 00 00 00 0e 54 13 00 4b 00 00 00 | .P..q...GR..T....S.......T..K... |
| 13f40 | 9f 54 13 00 6d 00 00 00 eb 54 13 00 11 01 00 00 59 55 13 00 4e 00 00 00 6b 56 13 00 7b 00 00 00 | .T..m....T......YU..N...kV..{... |
| 13f60 | ba 56 13 00 50 00 00 00 36 57 13 00 58 00 00 00 87 57 13 00 b1 00 00 00 e0 57 13 00 a9 00 00 00 | .V..P...6W..X....W.......W...... |
| 13f80 | 92 58 13 00 74 00 00 00 3c 59 13 00 72 00 00 00 b1 59 13 00 88 00 00 00 24 5a 13 00 6c 00 00 00 | .X..t...<Y..r....Y......$Z..l... |
| 13fa0 | ad 5a 13 00 60 00 00 00 1a 5b 13 00 44 00 00 00 7b 5b 13 00 17 01 00 00 c0 5b 13 00 ff 00 00 00 | .Z..`....[..D...{[.......[...... |
| 13fc0 | d8 5c 13 00 44 00 00 00 d8 5d 13 00 87 00 00 00 1d 5e 13 00 50 00 00 00 a5 5e 13 00 70 00 00 00 | .\..D....].......^..P....^..p... |
| 13fe0 | f6 5e 13 00 87 00 00 00 67 5f 13 00 65 00 00 00 ef 5f 13 00 40 00 00 00 55 60 13 00 6e 00 00 00 | .^......g_..e...._..@...U`..n... |
| 14000 | 96 60 13 00 64 00 00 00 05 61 13 00 59 02 00 00 6a 61 13 00 88 00 00 00 c4 63 13 00 25 00 00 00 | .`..d....a..Y...ja.......c..%... |
| 14020 | 4d 64 13 00 88 00 00 00 73 64 13 00 a5 00 00 00 fc 64 13 00 57 01 00 00 a2 65 13 00 32 01 00 00 | Md......sd.......d..W....e..2... |
| 14040 | fa 66 13 00 49 01 00 00 2d 68 13 00 51 01 00 00 77 69 13 00 fb 00 00 00 c9 6a 13 00 28 00 00 00 | .f..I...-h..Q...wi.......j..(... |
| 14060 | c5 6b 13 00 95 00 00 00 ee 6b 13 00 af 00 00 00 84 6c 13 00 af 00 00 00 34 6d 13 00 76 00 00 00 | .k.......k.......l......4m..v... |
| 14080 | e4 6d 13 00 a6 00 00 00 5b 6e 13 00 84 01 00 00 02 6f 13 00 6a 00 00 00 87 70 13 00 b9 00 00 00 | .m......[n.......o..j....p...... |
| 140a0 | f2 70 13 00 0f 01 00 00 ac 71 13 00 36 00 00 00 bc 72 13 00 a5 00 00 00 f3 72 13 00 a7 00 00 00 | .p.......q..6....r.......r...... |
| 140c0 | 99 73 13 00 7b 00 00 00 41 74 13 00 67 00 00 00 bd 74 13 00 32 00 00 00 25 75 13 00 fe 00 00 00 | .s..{...At..g....t..2...%u...... |
| 140e0 | 58 75 13 00 9d 00 00 00 57 76 13 00 bb 00 00 00 f5 76 13 00 77 00 00 00 b1 77 13 00 bf 00 00 00 | Xu......Wv.......v..w....w...... |
| 14100 | 29 78 13 00 c7 00 00 00 e9 78 13 00 cc 00 00 00 b1 79 13 00 d1 00 00 00 7e 7a 13 00 2d 04 00 00 | )x.......x.......y......~z..-... |
| 14120 | 50 7b 13 00 5d 00 00 00 7e 7f 13 00 e3 00 00 00 dc 7f 13 00 cf 00 00 00 c0 80 13 00 07 01 00 00 | P{..]...~....................... |
| 14140 | 90 81 13 00 10 01 00 00 98 82 13 00 9c 00 00 00 a9 83 13 00 8a 00 00 00 46 84 13 00 97 00 00 00 | ........................F....... |
| 14160 | d1 84 13 00 40 00 00 00 69 85 13 00 f0 00 00 00 aa 85 13 00 0b 01 00 00 9b 86 13 00 37 01 00 00 | ....@...i...................7... |
| 14180 | a7 87 13 00 75 01 00 00 df 88 13 00 97 01 00 00 55 8a 13 00 f0 00 00 00 ed 8b 13 00 01 01 00 00 | ....u...........U............... |
| 141a0 | de 8c 13 00 aa 00 00 00 e0 8d 13 00 69 00 00 00 8b 8e 13 00 6b 00 00 00 f5 8e 13 00 df 00 00 00 | ............i.......k........... |
| 141c0 | 61 8f 13 00 44 00 00 00 41 90 13 00 ec 00 00 00 86 90 13 00 86 00 00 00 73 91 13 00 d5 00 00 00 | a...D...A...............s....... |
| 141e0 | fa 91 13 00 b9 00 00 00 d0 92 13 00 a6 00 00 00 8a 93 13 00 c8 00 00 00 31 94 13 00 71 00 00 00 | ........................1...q... |
| 14200 | fa 94 13 00 2c 01 00 00 6c 95 13 00 84 00 00 00 99 96 13 00 00 01 00 00 1e 97 13 00 e5 00 00 00 | ....,...l....................... |
| 14220 | 1f 98 13 00 2d 01 00 00 05 99 13 00 12 01 00 00 33 9a 13 00 f2 00 00 00 46 9b 13 00 a4 00 00 00 | ....-...........3.......F....... |
| 14240 | 39 9c 13 00 90 01 00 00 de 9c 13 00 a2 00 00 00 6f 9e 13 00 b3 01 00 00 12 9f 13 00 53 00 00 00 | 9...............o...........S... |
| 14260 | c6 a0 13 00 5f 00 00 00 1a a1 13 00 80 00 00 00 7a a1 13 00 81 00 00 00 fb a1 13 00 8f 00 00 00 | ...._...........z............... |
| 14280 | 7d a2 13 00 7b 00 00 00 0d a3 13 00 7a 00 00 00 89 a3 13 00 f3 00 00 00 04 a4 13 00 f2 00 00 00 | }...{.......z................... |
| 142a0 | f8 a4 13 00 3a 00 00 00 eb a5 13 00 3a 00 00 00 26 a6 13 00 41 00 00 00 61 a6 13 00 67 00 00 00 | ....:.......:...&...A...a...g... |
| 142c0 | a3 a6 13 00 42 00 00 00 0b a7 13 00 38 00 00 00 4e a7 13 00 53 00 00 00 87 a7 13 00 5c 00 00 00 | ....B.......8...N...S.......\... |
| 142e0 | db a7 13 00 e1 01 00 00 38 a8 13 00 bb 00 00 00 1a aa 13 00 41 00 00 00 d6 aa 13 00 e7 00 00 00 | ........8...........A........... |
| 14300 | 18 ab 13 00 21 01 00 00 00 ac 13 00 4d 00 00 00 22 ad 13 00 96 00 00 00 70 ad 13 00 80 00 00 00 | ....!.......M...".......p....... |
| 14320 | 07 ae 13 00 e5 00 00 00 88 ae 13 00 da 00 00 00 6e af 13 00 a4 00 00 00 49 b0 13 00 66 00 00 00 | ................n.......I...f... |
| 14340 | ee b0 13 00 ad 00 00 00 55 b1 13 00 17 00 00 00 03 b2 13 00 16 00 00 00 1b b2 13 00 16 00 00 00 | ........U....................... |
| 14360 | 32 b2 13 00 1c 00 00 00 49 b2 13 00 1d 00 00 00 66 b2 13 00 14 00 00 00 84 b2 13 00 13 00 00 00 | 2.......I.......f............... |
| 14380 | 99 b2 13 00 14 00 00 00 ad b2 13 00 22 00 00 00 c2 b2 13 00 3f 00 00 00 e5 b2 13 00 16 00 00 00 | ............".......?........... |
| 143a0 | 25 b3 13 00 52 00 00 00 3c b3 13 00 89 00 00 00 8f b3 13 00 4b 00 00 00 19 b4 13 00 0d 01 00 00 | %...R...<...........K........... |
| 143c0 | 65 b4 13 00 41 00 00 00 73 b5 13 00 6d 00 00 00 b5 b5 13 00 8d 00 00 00 23 b6 13 00 6a 00 00 00 | e...A...s...m...........#...j... |
| 143e0 | b1 b6 13 00 32 00 00 00 1c b7 13 00 61 00 00 00 4f b7 13 00 8d 00 00 00 b1 b7 13 00 8e 00 00 00 | ....2.......a...O............... |
| 14400 | 3f b8 13 00 47 00 00 00 ce b8 13 00 40 00 00 00 16 b9 13 00 6c 00 00 00 57 b9 13 00 4c 00 00 00 | ?...G.......@.......l...W...L... |
| 14420 | c4 b9 13 00 3f 00 00 00 11 ba 13 00 2a 00 00 00 51 ba 13 00 00 01 00 00 7c ba 13 00 1c 01 00 00 | ....?.......*...Q.......|....... |
| 14440 | 7d bb 13 00 a2 00 00 00 9a bc 13 00 97 00 00 00 3d bd 13 00 59 00 00 00 d5 bd 13 00 62 00 00 00 | }...............=...Y.......b... |
| 14460 | 2f be 13 00 1a 00 00 00 92 be 13 00 1c 00 00 00 ad be 13 00 bb 00 00 00 ca be 13 00 32 00 00 00 | /...........................2... |
| 14480 | 86 bf 13 00 73 00 00 00 b9 bf 13 00 61 00 00 00 2d c0 13 00 76 00 00 00 8f c0 13 00 47 00 00 00 | ....s.......a...-...v.......G... |
| 144a0 | 06 c1 13 00 43 01 00 00 4e c1 13 00 7d 00 00 00 92 c2 13 00 e5 00 00 00 10 c3 13 00 11 00 00 00 | ....C...N...}................... |
| 144c0 | f6 c3 13 00 63 00 00 00 08 c4 13 00 c6 00 00 00 6c c4 13 00 8e 00 00 00 33 c5 13 00 2a 00 00 00 | ....c...........l.......3...*... |
| 144e0 | c2 c5 13 00 98 00 00 00 ed c5 13 00 bd 00 00 00 86 c6 13 00 44 00 00 00 44 c7 13 00 a0 00 00 00 | ....................D...D....... |
| 14500 | 89 c7 13 00 ca 00 00 00 2a c8 13 00 c9 00 00 00 f5 c8 13 00 41 00 00 00 bf c9 13 00 76 00 00 00 | ........*...........A.......v... |
| 14520 | 01 ca 13 00 c7 00 00 00 78 ca 13 00 58 00 00 00 40 cb 13 00 23 00 00 00 99 cb 13 00 76 00 00 00 | ........x...X...@...#.......v... |
| 14540 | bd cb 13 00 36 00 00 00 34 cc 13 00 97 00 00 00 6b cc 13 00 c0 00 00 00 03 cd 13 00 8b 00 00 00 | ....6...4.......k............... |
| 14560 | c4 cd 13 00 2c 00 00 00 50 ce 13 00 2b 00 00 00 7d ce 13 00 2e 00 00 00 a9 ce 13 00 33 00 00 00 | ....,...P...+...}...........3... |
| 14580 | d8 ce 13 00 fc 00 00 00 0c cf 13 00 e9 00 00 00 09 d0 13 00 31 00 00 00 f3 d0 13 00 26 00 00 00 | ....................1.......&... |
| 145a0 | 25 d1 13 00 4d 00 00 00 4c d1 13 00 60 00 00 00 9a d1 13 00 20 01 00 00 fb d1 13 00 1d 00 00 00 | %...M...L...`................... |
| 145c0 | 1c d3 13 00 89 00 00 00 3a d3 13 00 be 00 00 00 c4 d3 13 00 60 01 00 00 83 d4 13 00 80 00 00 00 | ........:...........`........... |
| 145e0 | e4 d5 13 00 78 00 00 00 65 d6 13 00 7e 00 00 00 de d6 13 00 7b 00 00 00 5d d7 13 00 29 00 00 00 | ....x...e...~.......{...]...)... |
| 14600 | d9 d7 13 00 e9 00 00 00 03 d8 13 00 3d 00 00 00 ed d8 13 00 6f 00 00 00 2b d9 13 00 3b 00 00 00 | ............=.......o...+...;... |
| 14620 | 9b d9 13 00 a5 00 00 00 d7 d9 13 00 2d 01 00 00 7d da 13 00 2c 01 00 00 ab db 13 00 dd 00 00 00 | ............-...}...,........... |
| 14640 | d8 dc 13 00 64 00 00 00 b6 dd 13 00 d6 00 00 00 1b de 13 00 42 01 00 00 f2 de 13 00 41 01 00 00 | ....d...............B.......A... |
| 14660 | 35 e0 13 00 be 00 00 00 77 e1 13 00 40 00 00 00 36 e2 13 00 77 00 00 00 77 e2 13 00 79 00 00 00 | 5.......w...@...6...w...w...y... |
| 14680 | ef e2 13 00 76 00 00 00 69 e3 13 00 79 00 00 00 e0 e3 13 00 6f 00 00 00 5a e4 13 00 d3 00 00 00 | ....v...i...y.......o...Z....... |
| 146a0 | ca e4 13 00 41 00 00 00 9e e5 13 00 14 00 00 00 e0 e5 13 00 23 01 00 00 f5 e5 13 00 9d 01 00 00 | ....A...............#........... |
| 146c0 | 19 e7 13 00 48 00 00 00 b7 e8 13 00 2c 00 00 00 00 e9 13 00 bb 00 00 00 2d e9 13 00 23 00 00 00 | ....H.......,...........-...#... |
| 146e0 | e9 e9 13 00 3d 00 00 00 0d ea 13 00 42 00 00 00 4b ea 13 00 5b 00 00 00 8e ea 13 00 6b 00 00 00 | ....=.......B...K...[.......k... |
| 14700 | ea ea 13 00 30 00 00 00 56 eb 13 00 3d 00 00 00 87 eb 13 00 2c 00 00 00 c5 eb 13 00 56 00 00 00 | ....0...V...=.......,.......V... |
| 14720 | f2 eb 13 00 56 00 00 00 49 ec 13 00 54 00 00 00 a0 ec 13 00 38 00 00 00 f5 ec 13 00 3d 00 00 00 | ....V...I...T.......8.......=... |
| 14740 | 2e ed 13 00 3a 00 00 00 6c ed 13 00 3c 00 00 00 a7 ed 13 00 44 00 00 00 e4 ed 13 00 34 00 00 00 | ....:...l...<.......D.......4... |
| 14760 | 29 ee 13 00 32 01 00 00 5e ee 13 00 30 00 00 00 91 ef 13 00 dd 00 00 00 c2 ef 13 00 09 00 00 00 | )...2...^...0................... |
| 14780 | a0 f0 13 00 d6 00 00 00 aa f0 13 00 49 00 00 00 81 f1 13 00 47 00 00 00 cb f1 13 00 44 00 00 00 | ............I.......G.......D... |
| 147a0 | 13 f2 13 00 4a 00 00 00 58 f2 13 00 26 00 00 00 a3 f2 13 00 1f 00 00 00 ca f2 13 00 74 00 00 00 | ....J...X...&...............t... |
| 147c0 | ea f2 13 00 3d 00 00 00 5f f3 13 00 12 00 00 00 9d f3 13 00 30 00 00 00 b0 f3 13 00 45 00 00 00 | ....=..._...........0.......E... |
| 147e0 | e1 f3 13 00 2e 00 00 00 27 f4 13 00 06 00 00 00 56 f4 13 00 65 00 00 00 5d f4 13 00 4e 00 00 00 | ........'.......V...e...]...N... |
| 14800 | c3 f4 13 00 b1 00 00 00 12 f5 13 00 9b 00 00 00 c4 f5 13 00 91 00 00 00 60 f6 13 00 ae 00 00 00 | ........................`....... |
| 14820 | f2 f6 13 00 22 00 00 00 a1 f7 13 00 aa 00 00 00 c4 f7 13 00 39 01 00 00 6f f8 13 00 5c 00 00 00 | ...."...............9...o...\... |
| 14840 | a9 f9 13 00 75 00 00 00 06 fa 13 00 7d 00 00 00 7c fa 13 00 74 00 00 00 fa fa 13 00 58 00 00 00 | ....u.......}...|...t.......X... |
| 14860 | 6f fb 13 00 5c 00 00 00 c8 fb 13 00 6f 00 00 00 25 fc 13 00 99 00 00 00 95 fc 13 00 9d 00 00 00 | o...\.......o...%............... |
| 14880 | 2f fd 13 00 80 00 00 00 cd fd 13 00 84 00 00 00 4e fe 13 00 54 00 00 00 d3 fe 13 00 4c 00 00 00 | /...............N...T.......L... |
| 148a0 | 28 ff 13 00 51 00 00 00 75 ff 13 00 d7 00 00 00 c7 ff 13 00 68 00 00 00 9f 00 14 00 62 00 00 00 | (...Q...u...........h.......b... |
| 148c0 | 08 01 14 00 5e 00 00 00 6b 01 14 00 3c 00 00 00 ca 01 14 00 77 00 00 00 07 02 14 00 40 00 00 00 | ....^...k...<.......w.......@... |
| 148e0 | 7f 02 14 00 d7 00 00 00 c0 02 14 00 b3 00 00 00 98 03 14 00 66 00 00 00 4c 04 14 00 37 00 00 00 | ....................f...L...7... |
| 14900 | b3 04 14 00 6a 00 00 00 eb 04 14 00 42 00 00 00 56 05 14 00 3d 00 00 00 99 05 14 00 38 00 00 00 | ....j.......B...V...=.......8... |
| 14920 | d7 05 14 00 3d 00 00 00 10 06 14 00 40 00 00 00 4e 06 14 00 48 01 00 00 8f 06 14 00 4a 01 00 00 | ....=.......@...N...H.......J... |
| 14940 | d8 07 14 00 52 00 00 00 23 09 14 00 51 00 00 00 76 09 14 00 d9 00 00 00 c8 09 14 00 c9 00 00 00 | ....R...#...Q...v............... |
| 14960 | a2 0a 14 00 4f 00 00 00 6c 0b 14 00 67 00 00 00 bc 0b 14 00 8d 00 00 00 24 0c 14 00 49 00 00 00 | ....O...l...g...........$...I... |
| 14980 | b2 0c 14 00 a0 01 00 00 fc 0c 14 00 87 00 00 00 9d 0e 14 00 5f 00 00 00 25 0f 14 00 fa 00 00 00 | ...................._...%....... |
| 149a0 | 85 0f 14 00 54 00 00 00 80 10 14 00 25 00 00 00 d5 10 14 00 49 00 00 00 fb 10 14 00 92 00 00 00 | ....T.......%.......I........... |
| 149c0 | 45 11 14 00 54 00 00 00 d8 11 14 00 96 00 00 00 2d 12 14 00 d0 00 00 00 c4 12 14 00 2a 00 00 00 | E...T...........-...........*... |
| 149e0 | 95 13 14 00 1c 00 00 00 c0 13 14 00 1f 00 00 00 dd 13 14 00 32 00 00 00 fd 13 14 00 12 01 00 00 | ....................2........... |
| 14a00 | 30 14 14 00 71 00 00 00 43 15 14 00 5f 00 00 00 b5 15 14 00 69 00 00 00 15 16 14 00 a5 00 00 00 | 0...q...C..._.......i........... |
| 14a20 | 7f 16 14 00 a7 00 00 00 25 17 14 00 45 00 00 00 cd 17 14 00 09 00 00 00 13 18 14 00 2c 00 00 00 | ........%...E...............,... |
| 14a40 | 1d 18 14 00 1f 00 00 00 4a 18 14 00 0e 00 00 00 6a 18 14 00 05 00 00 00 79 18 14 00 83 00 00 00 | ........J.......j.......y....... |
| 14a60 | 7f 18 14 00 44 02 00 00 03 19 14 00 dc 00 00 00 48 1b 14 00 8a 01 00 00 25 1c 14 00 8e 01 00 00 | ....D...........H.......%....... |
| 14a80 | b0 1d 14 00 0f 00 00 00 3f 1f 14 00 93 00 00 00 4f 1f 14 00 13 00 00 00 e3 1f 14 00 0e 00 00 00 | ........?.......O............... |
| 14aa0 | f7 1f 14 00 60 00 00 00 06 20 14 00 5e 00 00 00 67 20 14 00 a6 00 00 00 c6 20 14 00 9e 00 00 00 | ....`.......^...g............... |
| 14ac0 | 6d 21 14 00 97 00 00 00 0c 22 14 00 19 00 00 00 a4 22 14 00 b8 00 00 00 be 22 14 00 71 01 00 00 | m!......."......."......."..q... |
| 14ae0 | 77 23 14 00 12 00 00 00 e9 24 14 00 60 01 00 00 fc 24 14 00 11 00 00 00 5d 26 14 00 0f 00 00 00 | w#.......$..`....$......]&...... |
| 14b00 | 6f 26 14 00 0f 00 00 00 7f 26 14 00 06 00 00 00 8f 26 14 00 0b 00 00 00 96 26 14 00 35 00 00 00 | o&.......&.......&.......&..5... |
| 14b20 | a2 26 14 00 27 00 00 00 d8 26 14 00 28 00 00 00 00 27 14 00 44 00 00 00 29 27 14 00 60 00 00 00 | .&..'....&..(....'..D...)'..`... |
| 14b40 | 6e 27 14 00 63 00 00 00 cf 27 14 00 3f 00 00 00 33 28 14 00 5f 00 00 00 73 28 14 00 25 01 00 00 | n'..c....'..?...3(.._...s(..%... |
| 14b60 | d3 28 14 00 e1 00 00 00 f9 29 14 00 7c 00 00 00 db 2a 14 00 13 00 00 00 58 2b 14 00 1f 00 00 00 | .(.......)..|....*......X+...... |
| 14b80 | 6c 2b 14 00 17 00 00 00 8c 2b 14 00 15 00 00 00 a4 2b 14 00 12 00 00 00 ba 2b 14 00 29 00 00 00 | l+.......+.......+.......+..)... |
| 14ba0 | cd 2b 14 00 0d 00 00 00 f7 2b 14 00 38 00 00 00 05 2c 14 00 af 00 00 00 3e 2c 14 00 0e 00 00 00 | .+.......+..8....,......>,...... |
| 14bc0 | ee 2c 14 00 a3 01 00 00 fd 2c 14 00 07 00 00 00 a1 2e 14 00 0c 00 00 00 a9 2e 14 00 0d 00 00 00 | .,.......,...................... |
| 14be0 | b6 2e 14 00 1b 00 00 00 c4 2e 14 00 05 00 00 00 e0 2e 14 00 46 01 00 00 e6 2e 14 00 9b 01 00 00 | ....................F........... |
| 14c00 | 2d 30 14 00 06 00 00 00 c9 31 14 00 16 00 00 00 d0 31 14 00 15 00 00 00 e7 31 14 00 07 00 00 00 | -0.......1.......1.......1...... |
| 14c20 | fd 31 14 00 9c 00 00 00 05 32 14 00 15 00 00 00 a2 32 14 00 2e 00 00 00 b8 32 14 00 49 00 00 00 | .1.......2.......2.......2..I... |
| 14c40 | e7 32 14 00 e2 00 00 00 31 33 14 00 58 00 00 00 14 34 14 00 23 00 00 00 6d 34 14 00 22 00 00 00 | .2......13..X....4..#...m4.."... |
| 14c60 | 91 34 14 00 15 00 00 00 b4 34 14 00 14 00 00 00 ca 34 14 00 66 00 00 00 df 34 14 00 25 00 00 00 | .4.......4.......4..f....4..%... |
| 14c80 | 46 35 14 00 26 00 00 00 6c 35 14 00 0f 00 00 00 93 35 14 00 20 00 00 00 a3 35 14 00 13 00 00 00 | F5..&...l5.......5.......5...... |
| 14ca0 | c4 35 14 00 39 00 00 00 d8 35 14 00 59 00 00 00 12 36 14 00 3e 00 00 00 6c 36 14 00 00 01 00 00 | .5..9....5..Y....6..>...l6...... |
| 14cc0 | ab 36 14 00 55 00 00 00 ac 37 14 00 6f 00 00 00 02 38 14 00 54 00 00 00 72 38 14 00 6e 00 00 00 | .6..U....7..o....8..T...r8..n... |
| 14ce0 | c7 38 14 00 5d 00 00 00 36 39 14 00 77 00 00 00 94 39 14 00 51 00 00 00 0c 3a 14 00 6b 00 00 00 | .8..]...69..w....9..Q....:..k... |
| 14d00 | 5e 3a 14 00 55 00 00 00 ca 3a 14 00 6f 00 00 00 20 3b 14 00 52 00 00 00 90 3b 14 00 6c 00 00 00 | ^:..U....:..o....;..R....;..l... |
| 14d20 | e3 3b 14 00 1a 00 00 00 50 3c 14 00 44 00 00 00 6b 3c 14 00 36 00 00 00 b0 3c 14 00 46 00 00 00 | .;......P<..D...k<..6....<..F... |
| 14d40 | e7 3c 14 00 2c 00 00 00 2e 3d 14 00 22 00 00 00 5b 3d 14 00 88 00 00 00 7e 3d 14 00 30 00 00 00 | .<..,....=.."...[=......~=..0... |
| 14d60 | 07 3e 14 00 43 00 00 00 38 3e 14 00 18 00 00 00 7c 3e 14 00 28 00 00 00 95 3e 14 00 2f 00 00 00 | .>..C...8>......|>..(....>../... |
| 14d80 | be 3e 14 00 7f 00 00 00 ee 3e 14 00 68 00 00 00 6e 3f 14 00 8c 00 00 00 d7 3f 14 00 9a 00 00 00 | .>.......>..h...n?.......?...... |
| 14da0 | 64 40 14 00 8a 00 00 00 ff 40 14 00 78 00 00 00 8a 41 14 00 59 00 00 00 03 42 14 00 4f 00 00 00 | d@.......@..x....A..Y....B..O... |
| 14dc0 | 5d 42 14 00 19 01 00 00 ad 42 14 00 24 01 00 00 c7 43 14 00 22 01 00 00 ec 44 14 00 08 01 00 00 | ]B.......B..$....C.."....D...... |
| 14de0 | 0f 46 14 00 f8 00 00 00 18 47 14 00 f7 00 00 00 11 48 14 00 f9 00 00 00 09 49 14 00 f7 00 00 00 | .F.......G.......H.......I...... |
| 14e00 | 03 4a 14 00 fc 00 00 00 fb 4a 14 00 f7 00 00 00 f8 4b 14 00 fc 00 00 00 f0 4c 14 00 f7 00 00 00 | .J.......J.......K.......L...... |
| 14e20 | ed 4d 14 00 c4 00 00 00 e5 4e 14 00 a1 00 00 00 aa 4f 14 00 73 00 00 00 4c 50 14 00 f8 00 00 00 | .M.......N.......O..s...LP...... |
| 14e40 | c0 50 14 00 4e 00 00 00 b9 51 14 00 99 00 00 00 08 52 14 00 4b 00 00 00 a2 52 14 00 5b 00 00 00 | .P..N....Q.......R..K....R..[... |
| 14e60 | ee 52 14 00 40 00 00 00 4a 53 14 00 99 00 00 00 8b 53 14 00 4a 00 00 00 25 54 14 00 4a 00 00 00 | .R..@...JS.......S..J...%T..J... |
| 14e80 | 70 54 14 00 50 00 00 00 bb 54 14 00 47 00 00 00 0c 55 14 00 44 01 00 00 54 55 14 00 45 01 00 00 | pT..P....T..G....U..D...TU..E... |
| 14ea0 | 99 56 14 00 44 01 00 00 df 57 14 00 49 01 00 00 24 59 14 00 44 01 00 00 6e 5a 14 00 45 01 00 00 | .V..D....W..I...$Y..D...nZ..E... |
| 14ec0 | b3 5b 14 00 44 01 00 00 f9 5c 14 00 3c 01 00 00 3e 5e 14 00 a0 00 00 00 7b 5f 14 00 30 01 00 00 | .[..D....\..<...>^......{_..0... |
| 14ee0 | 1c 60 14 00 50 01 00 00 4d 61 14 00 d1 00 00 00 9e 62 14 00 23 01 00 00 70 63 14 00 08 01 00 00 | .`..P...Ma.......b..#...pc...... |
| 14f00 | 94 64 14 00 29 01 00 00 9d 65 14 00 2f 01 00 00 c7 66 14 00 da 00 00 00 f7 67 14 00 34 01 00 00 | .d..)....e../....f.......g..4... |
| 14f20 | d2 68 14 00 89 00 00 00 07 6a 14 00 66 00 00 00 91 6a 14 00 88 00 00 00 f8 6a 14 00 a5 00 00 00 | .h.......j..f....j.......j...... |
| 14f40 | 81 6b 14 00 70 00 00 00 27 6c 14 00 6f 00 00 00 98 6c 14 00 8e 00 00 00 08 6d 14 00 b0 00 00 00 | .k..p...'l..o....l.......m...... |
| 14f60 | 97 6d 14 00 0f 01 00 00 48 6e 14 00 c3 00 00 00 58 6f 14 00 84 00 00 00 1c 70 14 00 be 00 00 00 | .m......Hn......Xo.......p...... |
| 14f80 | a1 70 14 00 db 00 00 00 60 71 14 00 85 00 00 00 3c 72 14 00 7d 00 00 00 c2 72 14 00 9a 00 00 00 | .p......`q......<r..}....r...... |
| 14fa0 | 40 73 14 00 92 00 00 00 db 73 14 00 91 00 00 00 6e 74 14 00 d5 00 00 00 00 75 14 00 93 00 00 00 | @s.......s......nt.......u...... |
| 14fc0 | d6 75 14 00 8e 00 00 00 6a 76 14 00 fa 00 00 00 f9 76 14 00 bd 00 00 00 f4 77 14 00 f5 00 00 00 | .u......jv.......v.......w...... |
| 14fe0 | b2 78 14 00 a6 00 00 00 a8 79 14 00 a1 00 00 00 4f 7a 14 00 7b 00 00 00 f1 7a 14 00 fc 00 00 00 | .x.......y......Oz..{....z...... |
| 15000 | 6d 7b 14 00 fd 00 00 00 6a 7c 14 00 19 01 00 00 68 7d 14 00 9d 00 00 00 82 7e 14 00 be 01 00 00 | m{......j|......h}.......~...... |
| 15020 | 20 7f 14 00 b1 00 00 00 df 80 14 00 5b 00 00 00 91 81 14 00 63 00 00 00 ed 81 14 00 33 01 00 00 | ............[.......c.......3... |
| 15040 | 51 82 14 00 3b 00 00 00 85 83 14 00 98 00 00 00 c1 83 14 00 54 00 00 00 5a 84 14 00 59 00 00 00 | Q...;...............T...Z...Y... |
| 15060 | af 84 14 00 de 00 00 00 09 85 14 00 9a 00 00 00 e8 85 14 00 2b 00 00 00 83 86 14 00 c0 00 00 00 | ....................+........... |
| 15080 | af 86 14 00 c5 00 00 00 70 87 14 00 3a 00 00 00 36 88 14 00 35 00 00 00 71 88 14 00 87 00 00 00 | ........p...:...6...5...q....... |
| 150a0 | a7 88 14 00 5c 00 00 00 2f 89 14 00 74 00 00 00 8c 89 14 00 da 00 00 00 01 8a 14 00 f0 00 00 00 | ....\.../...t................... |
| 150c0 | dc 8a 14 00 84 00 00 00 cd 8b 14 00 f0 00 00 00 52 8c 14 00 f0 00 00 00 43 8d 14 00 f0 00 00 00 | ................R.......C....... |
| 150e0 | 34 8e 14 00 f1 00 00 00 25 8f 14 00 5f 00 00 00 17 90 14 00 83 00 00 00 77 90 14 00 bd 00 00 00 | 4.......%..._...........w....... |
| 15100 | fb 90 14 00 79 00 00 00 b9 91 14 00 7e 00 00 00 33 92 14 00 36 00 00 00 b2 92 14 00 78 00 00 00 | ....y.......~...3...6.......x... |
| 15120 | e9 92 14 00 85 00 00 00 62 93 14 00 51 00 00 00 e8 93 14 00 3e 00 00 00 3a 94 14 00 3e 00 00 00 | ........b...Q.......>...:...>... |
| 15140 | 79 94 14 00 75 00 00 00 b8 94 14 00 53 00 00 00 2e 95 14 00 df 00 00 00 82 95 14 00 a1 00 00 00 | y...u.......S................... |
| 15160 | 62 96 14 00 ac 00 00 00 04 97 14 00 3b 00 00 00 b1 97 14 00 47 00 00 00 ed 97 14 00 67 00 00 00 | b...........;.......G.......g... |
| 15180 | 35 98 14 00 d8 00 00 00 9d 98 14 00 5a 00 00 00 76 99 14 00 38 00 00 00 d1 99 14 00 88 01 00 00 | 5...........Z...v...8........... |
| 151a0 | 0a 9a 14 00 c5 00 00 00 93 9b 14 00 a1 00 00 00 59 9c 14 00 6d 00 00 00 fb 9c 14 00 4e 00 00 00 | ................Y...m.......N... |
| 151c0 | 69 9d 14 00 54 00 00 00 b8 9d 14 00 3d 00 00 00 0d 9e 14 00 8a 00 00 00 4b 9e 14 00 6f 00 00 00 | i...T.......=...........K...o... |
| 151e0 | d6 9e 14 00 2e 00 00 00 46 9f 14 00 31 00 00 00 75 9f 14 00 3c 00 00 00 a7 9f 14 00 17 01 00 00 | ........F...1...u...<........... |
| 15200 | e4 9f 14 00 db 00 00 00 fc a0 14 00 49 00 00 00 d8 a1 14 00 4a 00 00 00 22 a2 14 00 49 00 00 00 | ............I.......J..."...I... |
| 15220 | 6d a2 14 00 49 00 00 00 b7 a2 14 00 0b 01 00 00 01 a3 14 00 51 00 00 00 0d a4 14 00 96 00 00 00 | m...I...............Q........... |
| 15240 | 5f a4 14 00 5d 00 00 00 f6 a4 14 00 49 00 00 00 54 a5 14 00 46 00 00 00 9e a5 14 00 37 00 00 00 | _...].......I...T...F.......7... |
| 15260 | e5 a5 14 00 38 01 00 00 1d a6 14 00 31 00 00 00 56 a7 14 00 30 00 00 00 88 a7 14 00 39 00 00 00 | ....8.......1...V...0.......9... |
| 15280 | b9 a7 14 00 33 00 00 00 f3 a7 14 00 33 00 00 00 27 a8 14 00 49 00 00 00 5b a8 14 00 d9 00 00 00 | ....3.......3...'...I...[....... |
| 152a0 | a5 a8 14 00 78 00 00 00 7f a9 14 00 79 00 00 00 f8 a9 14 00 8c 00 00 00 72 aa 14 00 47 00 00 00 | ....x.......y...........r...G... |
| 152c0 | ff aa 14 00 fb 00 00 00 47 ab 14 00 b7 00 00 00 43 ac 14 00 5b 00 00 00 fb ac 14 00 b7 00 00 00 | ........G.......C...[........... |
| 152e0 | 57 ad 14 00 42 00 00 00 0f ae 14 00 46 00 00 00 52 ae 14 00 30 00 00 00 99 ae 14 00 39 00 00 00 | W...B.......F...R...0.......9... |
| 15300 | ca ae 14 00 25 00 00 00 04 af 14 00 2e 00 00 00 2a af 14 00 2e 00 00 00 59 af 14 00 39 00 00 00 | ....%...........*.......Y...9... |
| 15320 | 88 af 14 00 c1 00 00 00 c2 af 14 00 8c 00 00 00 84 b0 14 00 b5 00 00 00 11 b1 14 00 42 00 00 00 | ............................B... |
| 15340 | c7 b1 14 00 a5 00 00 00 0a b2 14 00 b9 00 00 00 b0 b2 14 00 3e 00 00 00 6a b3 14 00 74 00 00 00 | ....................>...j...t... |
| 15360 | a9 b3 14 00 6c 00 00 00 1e b4 14 00 81 00 00 00 8b b4 14 00 19 00 00 00 0d b5 14 00 23 00 00 00 | ....l.......................#... |
| 15380 | 27 b5 14 00 b7 00 00 00 4b b5 14 00 dc 00 00 00 03 b6 14 00 13 00 00 00 e0 b6 14 00 54 00 00 00 | '.......K...................T... |
| 153a0 | f4 b6 14 00 5f 01 00 00 49 b7 14 00 63 01 00 00 a9 b8 14 00 17 00 00 00 0d ba 14 00 1a 00 00 00 | ...._...I...c................... |
| 153c0 | 25 ba 14 00 1d 00 00 00 40 ba 14 00 a2 00 00 00 5e ba 14 00 17 00 00 00 01 bb 14 00 86 01 00 00 | %.......@.......^............... |
| 153e0 | 19 bb 14 00 8a 00 00 00 a0 bc 14 00 5b 00 00 00 2b bd 14 00 3b 00 00 00 87 bd 14 00 dd 00 00 00 | ............[...+...;........... |
| 15400 | c3 bd 14 00 1d 01 00 00 a1 be 14 00 32 00 00 00 bf bf 14 00 20 00 00 00 f2 bf 14 00 5d 00 00 00 | ............2...............]... |
| 15420 | 13 c0 14 00 54 00 00 00 71 c0 14 00 04 00 00 00 c6 c0 14 00 30 00 00 00 cb c0 14 00 0c 00 00 00 | ....T...q...........0........... |
| 15440 | fc c0 14 00 0c 00 00 00 09 c1 14 00 60 00 00 00 16 c1 14 00 09 00 00 00 77 c1 14 00 35 01 00 00 | ............`...........w...5... |
| 15460 | 81 c1 14 00 33 01 00 00 b7 c2 14 00 70 00 00 00 eb c3 14 00 03 00 00 00 5c c4 14 00 62 00 00 00 | ....3.......p...........\...b... |
| 15480 | 60 c4 14 00 03 00 00 00 c3 c4 14 00 11 00 00 00 c7 c4 14 00 0b 00 00 00 d9 c4 14 00 16 00 00 00 | `............................... |
| 154a0 | e5 c4 14 00 19 00 00 00 fc c4 14 00 15 00 00 00 16 c5 14 00 11 00 00 00 2c c5 14 00 14 00 00 00 | ........................,....... |
| 154c0 | 3e c5 14 00 6a 02 00 00 53 c5 14 00 3d 01 00 00 be c7 14 00 85 01 00 00 fc c8 14 00 95 00 00 00 | >...j...S...=................... |
| 154e0 | 82 ca 14 00 d5 01 00 00 18 cb 14 00 32 00 00 00 ee cc 14 00 1e 00 00 00 21 cd 14 00 05 00 00 00 | ............2...........!....... |
| 15500 | 40 cd 14 00 45 01 00 00 46 cd 14 00 16 00 00 00 8c ce 14 00 3b 00 00 00 a3 ce 14 00 18 00 00 00 | @...E...F...........;........... |
| 15520 | df ce 14 00 16 00 00 00 f8 ce 14 00 05 00 00 00 0f cf 14 00 8e 00 00 00 15 cf 14 00 60 00 00 00 | ............................`... |
| 15540 | a4 cf 14 00 0c 00 00 00 05 d0 14 00 0d 00 00 00 12 d0 14 00 3d 00 00 00 20 d0 14 00 3b 00 00 00 | ....................=.......;... |
| 15560 | 5e d0 14 00 07 00 00 00 9a d0 14 00 10 00 00 00 a2 d0 14 00 6c 00 00 00 b3 d0 14 00 0e 00 00 00 | ^...................l........... |
| 15580 | 20 d1 14 00 4b 00 00 00 2f d1 14 00 47 00 00 00 7b d1 14 00 65 00 00 00 c3 d1 14 00 a1 00 00 00 | ....K.../...G...{...e........... |
| 155a0 | 29 d2 14 00 3f 00 00 00 cb d2 14 00 4b 01 00 00 0b d3 14 00 4a 01 00 00 57 d4 14 00 44 01 00 00 | )...?.......K.......J...W...D... |
| 155c0 | a2 d5 14 00 15 00 00 00 e7 d6 14 00 24 00 00 00 fd d6 14 00 0a 00 00 00 22 d7 14 00 24 00 00 00 | ............$..........."...$... |
| 155e0 | 2d d7 14 00 09 00 00 00 52 d7 14 00 29 00 00 00 5c d7 14 00 1b 00 00 00 86 d7 14 00 c9 00 00 00 | -.......R...)...\............... |
| 15600 | a2 d7 14 00 0b 00 00 00 6c d8 14 00 85 00 00 00 78 d8 14 00 26 00 00 00 fe d8 14 00 3d 00 00 00 | ........l.......x...&.......=... |
| 15620 | 25 d9 14 00 52 00 00 00 63 d9 14 00 b4 00 00 00 b6 d9 14 00 a9 00 00 00 6b da 14 00 26 00 00 00 | %...R...c...............k...&... |
| 15640 | 15 db 14 00 b0 00 00 00 3c db 14 00 de 00 00 00 ed db 14 00 df 00 00 00 cc dc 14 00 1c 00 00 00 | ........<....................... |
| 15660 | ac dd 14 00 8f 00 00 00 c9 dd 14 00 8c 00 00 00 59 de 14 00 90 00 00 00 e6 de 14 00 5d 00 00 00 | ................Y...........]... |
| 15680 | 77 df 14 00 44 00 00 00 d5 df 14 00 2f 00 00 00 1a e0 14 00 b0 00 00 00 4a e0 14 00 50 00 00 00 | w...D......./...........J...P... |
| 156a0 | fb e0 14 00 a6 00 00 00 4c e1 14 00 ec 00 00 00 f3 e1 14 00 64 00 00 00 e0 e2 14 00 53 00 00 00 | ........L...........d.......S... |
| 156c0 | 45 e3 14 00 df 00 00 00 99 e3 14 00 86 00 00 00 79 e4 14 00 63 00 00 00 00 e5 14 00 68 00 00 00 | E...............y...c.......h... |
| 156e0 | 64 e5 14 00 d1 00 00 00 cd e5 14 00 6f 00 00 00 9f e6 14 00 8d 00 00 00 0f e7 14 00 78 00 00 00 | d...........o...............x... |
| 15700 | 9d e7 14 00 7a 00 00 00 16 e8 14 00 7d 00 00 00 91 e8 14 00 80 00 00 00 0f e9 14 00 33 00 00 00 | ....z.......}...............3... |
| 15720 | 90 e9 14 00 71 00 00 00 c4 e9 14 00 db 00 00 00 36 ea 14 00 a5 00 00 00 12 eb 14 00 75 00 00 00 | ....q...........6...........u... |
| 15740 | b8 eb 14 00 59 00 00 00 2e ec 14 00 58 00 00 00 88 ec 14 00 9b 00 00 00 e1 ec 14 00 c3 00 00 00 | ....Y.......X................... |
| 15760 | 7d ed 14 00 b6 00 00 00 41 ee 14 00 ba 00 00 00 f8 ee 14 00 29 00 00 00 b3 ef 14 00 9c 00 00 00 | }.......A...........)........... |
| 15780 | dd ef 14 00 e3 00 00 00 7a f0 14 00 9e 00 00 00 5e f1 14 00 44 00 00 00 fd f1 14 00 44 00 00 00 | ........z.......^...D.......D... |
| 157a0 | 42 f2 14 00 ed 00 00 00 87 f2 14 00 3c 00 00 00 75 f3 14 00 bd 00 00 00 b2 f3 14 00 bf 00 00 00 | B...........<...u............... |
| 157c0 | 70 f4 14 00 88 00 00 00 30 f5 14 00 85 00 00 00 b9 f5 14 00 6f 00 00 00 3f f6 14 00 cf 00 00 00 | p.......0...........o...?....... |
| 157e0 | af f6 14 00 17 00 00 00 7f f7 14 00 12 00 00 00 97 f7 14 00 18 00 00 00 aa f7 14 00 39 00 00 00 | ............................9... |
| 15800 | c3 f7 14 00 1b 00 00 00 fd f7 14 00 31 00 00 00 19 f8 14 00 21 00 00 00 4b f8 14 00 07 00 00 00 | ............1.......!...K....... |
| 15820 | 6d f8 14 00 12 00 00 00 75 f8 14 00 79 00 00 00 88 f8 14 00 e5 00 00 00 02 f9 14 00 e5 00 00 00 | m.......u...y................... |
| 15840 | e8 f9 14 00 ac 00 00 00 ce fa 14 00 84 00 00 00 7b fb 14 00 36 01 00 00 00 fc 14 00 5a 00 00 00 | ................{...6.......Z... |
| 15860 | 37 fd 14 00 c4 00 00 00 92 fd 14 00 4b 00 00 00 57 fe 14 00 a7 00 00 00 a3 fe 14 00 17 00 00 00 | 7...........K...W............... |
| 15880 | 4b ff 14 00 e8 00 00 00 63 ff 14 00 48 00 00 00 4c 00 15 00 41 00 00 00 95 00 15 00 2e 00 00 00 | K.......c...H...L...A........... |
| 158a0 | d7 00 15 00 47 00 00 00 06 01 15 00 3f 00 00 00 4e 01 15 00 9b 00 00 00 8e 01 15 00 9c 00 00 00 | ....G.......?...N............... |
| 158c0 | 2a 02 15 00 68 00 00 00 c7 02 15 00 1b 01 00 00 30 03 15 00 22 00 00 00 4c 04 15 00 08 00 00 00 | *...h...........0..."...L....... |
| 158e0 | 6f 04 15 00 2a 00 00 00 78 04 15 00 34 00 00 00 a3 04 15 00 ae 00 00 00 d8 04 15 00 17 01 00 00 | o...*...x...4................... |
| 15900 | 87 05 15 00 79 00 00 00 9f 06 15 00 73 00 00 00 19 07 15 00 bf 00 00 00 8d 07 15 00 dc 00 00 00 | ....y.......s................... |
| 15920 | 4d 08 15 00 7b 01 00 00 2a 09 15 00 90 01 00 00 a6 0a 15 00 13 01 00 00 37 0c 15 00 a0 00 00 00 | M...{...*...............7....... |
| 15940 | 4b 0d 15 00 36 01 00 00 ec 0d 15 00 04 02 00 00 23 0f 15 00 a7 00 00 00 28 11 15 00 b6 00 00 00 | K...6...........#.......(....... |
| 15960 | d0 11 15 00 ad 00 00 00 87 12 15 00 67 00 00 00 35 13 15 00 71 00 00 00 9d 13 15 00 fe 00 00 00 | ............g...5...q........... |
| 15980 | 0f 14 15 00 7d 00 00 00 0e 15 15 00 7e 00 00 00 8c 15 15 00 6d 01 00 00 0b 16 15 00 7a 00 00 00 | ....}.......~.......m.......z... |
| 159a0 | 79 17 15 00 e2 00 00 00 f4 17 15 00 1e 01 00 00 d7 18 15 00 56 00 00 00 f6 19 15 00 89 00 00 00 | y...................V........... |
| 159c0 | 4d 1a 15 00 16 01 00 00 d7 1a 15 00 06 01 00 00 ee 1b 15 00 b1 00 00 00 f5 1c 15 00 58 00 00 00 | M...........................X... |
| 159e0 | a7 1d 15 00 92 00 00 00 00 1e 15 00 80 00 00 00 93 1e 15 00 7d 00 00 00 14 1f 15 00 98 00 00 00 | ....................}........... |
| 15a00 | 92 1f 15 00 b5 00 00 00 2b 20 15 00 a2 00 00 00 e1 20 15 00 00 01 00 00 84 21 15 00 37 00 00 00 | ........+................!..7... |
| 15a20 | 85 22 15 00 42 00 00 00 bd 22 15 00 d0 00 00 00 00 23 15 00 cf 00 00 00 d1 23 15 00 fd 00 00 00 | ."..B....".......#.......#...... |
| 15a40 | a1 24 15 00 3c 01 00 00 9f 25 15 00 fb 00 00 00 dc 26 15 00 bf 00 00 00 d8 27 15 00 9e 00 00 00 | .$..<....%.......&.......'...... |
| 15a60 | 98 28 15 00 9b 01 00 00 37 29 15 00 a4 00 00 00 d3 2a 15 00 fb 00 00 00 78 2b 15 00 18 01 00 00 | .(......7).......*......x+...... |
| 15a80 | 74 2c 15 00 20 01 00 00 8d 2d 15 00 5d 00 00 00 ae 2e 15 00 4b 00 00 00 0c 2f 15 00 97 00 00 00 | t,.......-..].......K..../...... |
| 15aa0 | 58 2f 15 00 57 00 00 00 f0 2f 15 00 3e 00 00 00 48 30 15 00 b0 00 00 00 87 30 15 00 f1 00 00 00 | X/..W..../..>...H0.......0...... |
| 15ac0 | 38 31 15 00 b6 00 00 00 2a 32 15 00 b8 00 00 00 e1 32 15 00 b6 00 00 00 9a 33 15 00 b8 00 00 00 | 81......*2.......2.......3...... |
| 15ae0 | 51 34 15 00 5d 00 00 00 0a 35 15 00 4a 00 00 00 68 35 15 00 34 00 00 00 b3 35 15 00 2c 00 00 00 | Q4..]....5..J...h5..4....5..,... |
| 15b00 | e8 35 15 00 24 00 00 00 15 36 15 00 41 00 00 00 3a 36 15 00 d6 00 00 00 7c 36 15 00 d9 00 00 00 | .5..$....6..A...:6......|6...... |
| 15b20 | 53 37 15 00 ae 00 00 00 2d 38 15 00 cf 00 00 00 dc 38 15 00 59 00 00 00 ac 39 15 00 14 00 00 00 | S7......-8.......8..Y....9...... |
| 15b40 | 06 3a 15 00 b5 00 00 00 1b 3a 15 00 c3 00 00 00 d1 3a 15 00 48 00 00 00 95 3b 15 00 95 00 00 00 | .:.......:.......:..H....;...... |
| 15b60 | de 3b 15 00 62 00 00 00 74 3c 15 00 86 00 00 00 d7 3c 15 00 fe 00 00 00 5e 3d 15 00 41 00 00 00 | .;..b...t<.......<......^=..A... |
| 15b80 | 5d 3e 15 00 93 00 00 00 9f 3e 15 00 09 00 00 00 33 3f 15 00 18 00 00 00 3d 3f 15 00 33 00 00 00 | ]>.......>......3?......=?..3... |
| 15ba0 | 56 3f 15 00 99 00 00 00 8a 3f 15 00 9a 00 00 00 24 40 15 00 22 00 00 00 bf 40 15 00 16 00 00 00 | V?.......?......$@.."....@...... |
| 15bc0 | e2 40 15 00 1f 00 00 00 f9 40 15 00 27 00 00 00 19 41 15 00 30 00 00 00 41 41 15 00 10 00 00 00 | .@.......@..'....A..0...AA...... |
| 15be0 | 72 41 15 00 21 00 00 00 83 41 15 00 1c 00 00 00 a5 41 15 00 aa 01 00 00 c2 41 15 00 82 00 00 00 | rA..!....A.......A.......A...... |
| 15c00 | 6d 43 15 00 ac 00 00 00 f0 43 15 00 fe 00 00 00 9d 44 15 00 60 00 00 00 9c 45 15 00 55 00 00 00 | mC.......C.......D..`....E..U... |
| 15c20 | fd 45 15 00 51 00 00 00 53 46 15 00 90 01 00 00 a5 46 15 00 86 01 00 00 36 48 15 00 85 01 00 00 | .E..Q...SF.......F......6H...... |
| 15c40 | bd 49 15 00 01 00 00 00 43 4b 15 00 76 00 00 00 45 4b 15 00 6b 00 00 00 bc 4b 15 00 60 00 00 00 | .I......CK..v...EK..k....K..`... |
| 15c60 | 28 4c 15 00 a9 00 00 00 89 4c 15 00 c9 00 00 00 33 4d 15 00 9b 00 00 00 fd 4d 15 00 c3 00 00 00 | (L.......L......3M.......M...... |
| 15c80 | 99 4e 15 00 3c 00 00 00 5d 4f 15 00 38 00 00 00 9a 4f 15 00 95 00 00 00 d3 4f 15 00 2e 00 00 00 | .N..<...]O..8....O.......O...... |
| 15ca0 | 69 50 15 00 57 00 00 00 98 50 15 00 61 00 00 00 f0 50 15 00 69 00 00 00 52 51 15 00 4b 00 00 00 | iP..W....P..a....P..i...RQ..K... |
| 15cc0 | bc 51 15 00 a4 00 00 00 08 52 15 00 52 00 00 00 ad 52 15 00 53 00 00 00 00 53 15 00 51 00 00 00 | .Q.......R..R....R..S....S..Q... |
| 15ce0 | 54 53 15 00 52 00 00 00 a6 53 15 00 65 00 00 00 f9 53 15 00 c4 00 00 00 5f 54 15 00 35 00 00 00 | TS..R....S..e....S......_T..5... |
| 15d00 | 24 55 15 00 51 00 00 00 5a 55 15 00 a7 00 00 00 ac 55 15 00 8a 00 00 00 54 56 15 00 96 00 00 00 | $U..Q...ZU.......U......TV...... |
| 15d20 | df 56 15 00 81 00 00 00 76 57 15 00 7f 00 00 00 f8 57 15 00 33 00 00 00 78 58 15 00 88 00 00 00 | .V......vW.......W..3...xX...... |
| 15d40 | ac 58 15 00 e3 00 00 00 35 59 15 00 c3 00 00 00 19 5a 15 00 3a 00 00 00 dd 5a 15 00 5a 00 00 00 | .X......5Y.......Z..:....Z..Z... |
| 15d60 | 18 5b 15 00 65 00 00 00 73 5b 15 00 c3 00 00 00 d9 5b 15 00 db 00 00 00 9d 5c 15 00 50 00 00 00 | .[..e...s[.......[.......\..P... |
| 15d80 | 79 5d 15 00 4d 00 00 00 ca 5d 15 00 06 01 00 00 18 5e 15 00 1d 01 00 00 1f 5f 15 00 f2 00 00 00 | y]..M....].......^......._...... |
| 15da0 | 3d 60 15 00 48 00 00 00 30 61 15 00 b0 00 00 00 79 61 15 00 9f 00 00 00 2a 62 15 00 1f 00 00 00 | =`..H...0a......ya......*b...... |
| 15dc0 | ca 62 15 00 71 00 00 00 ea 62 15 00 75 00 00 00 5c 63 15 00 75 00 00 00 d2 63 15 00 dc 00 00 00 | .b..q....b..u...\c..u....c...... |
| 15de0 | 48 64 15 00 3f 00 00 00 25 65 15 00 6d 00 00 00 65 65 15 00 d9 00 00 00 d3 65 15 00 da 00 00 00 | Hd..?...%e..m...ee.......e...... |
| 15e00 | ad 66 15 00 1c 00 00 00 88 67 15 00 13 00 00 00 a5 67 15 00 20 00 00 00 b9 67 15 00 14 00 00 00 | .f.......g.......g.......g...... |
| 15e20 | da 67 15 00 13 00 00 00 ef 67 15 00 03 01 00 00 03 68 15 00 1d 00 00 00 07 69 15 00 1d 00 00 00 | .g.......g.......h.......i...... |
| 15e40 | 25 69 15 00 23 00 00 00 43 69 15 00 1d 00 00 00 67 69 15 00 29 00 00 00 85 69 15 00 3f 01 00 00 | %i..#...Ci......gi..)....i..?... |
| 15e60 | af 69 15 00 31 00 00 00 ef 6a 15 00 31 00 00 00 21 6b 15 00 33 00 00 00 53 6b 15 00 33 00 00 00 | .i..1....j..1...!k..3...Sk..3... |
| 15e80 | 87 6b 15 00 10 00 00 00 bb 6b 15 00 0c 00 00 00 cc 6b 15 00 2d 00 00 00 d9 6b 15 00 2c 00 00 00 | .k.......k.......k..-....k..,... |
| 15ea0 | 07 6c 15 00 12 00 00 00 34 6c 15 00 2c 00 00 00 47 6c 15 00 12 00 00 00 74 6c 15 00 25 00 00 00 | .l......4l..,...Gl......tl..%... |
| 15ec0 | 87 6c 15 00 3c 00 00 00 ad 6c 15 00 12 00 00 00 ea 6c 15 00 35 00 00 00 fd 6c 15 00 13 00 00 00 | .l..<....l.......l..5....l...... |
| 15ee0 | 33 6d 15 00 1e 00 00 00 47 6d 15 00 25 00 00 00 66 6d 15 00 1e 00 00 00 8c 6d 15 00 25 00 00 00 | 3m......Gm..%...fm.......m..%... |
| 15f00 | ab 6d 15 00 1e 00 00 00 d1 6d 15 00 25 00 00 00 f0 6d 15 00 1f 00 00 00 16 6e 15 00 26 00 00 00 | .m.......m..%....m.......n..&... |
| 15f20 | 36 6e 15 00 21 00 00 00 5d 6e 15 00 28 00 00 00 7f 6e 15 00 34 00 00 00 a8 6e 15 00 16 00 00 00 | 6n..!...]n..(....n..4....n...... |
| 15f40 | dd 6e 15 00 1c 00 00 00 f4 6e 15 00 12 00 00 00 11 6f 15 00 12 00 00 00 24 6f 15 00 34 00 00 00 | .n.......n.......o......$o..4... |
| 15f60 | 37 6f 15 00 13 00 00 00 6c 6f 15 00 1d 00 00 00 80 6f 15 00 13 00 00 00 9e 6f 15 00 30 00 00 00 | 7o......lo.......o.......o..0... |
| 15f80 | b2 6f 15 00 1f 00 00 00 e3 6f 15 00 1f 00 00 00 03 70 15 00 13 00 00 00 23 70 15 00 16 00 00 00 | .o.......o.......p......#p...... |
| 15fa0 | 37 70 15 00 25 01 00 00 4e 70 15 00 d3 00 00 00 74 71 15 00 26 00 00 00 48 72 15 00 55 00 00 00 | 7p..%...Np......tq..&...Hr..U... |
| 15fc0 | 6f 72 15 00 55 00 00 00 c5 72 15 00 13 00 00 00 1b 73 15 00 38 00 00 00 2f 73 15 00 41 00 00 00 | or..U....r.......s..8.../s..A... |
| 15fe0 | 68 73 15 00 16 00 00 00 aa 73 15 00 9d 00 00 00 c1 73 15 00 41 00 00 00 5f 74 15 00 38 00 00 00 | hs.......s.......s..A..._t..8... |
| 16000 | a1 74 15 00 1e 00 00 00 da 74 15 00 22 00 00 00 f9 74 15 00 5d 00 00 00 1c 75 15 00 55 00 00 00 | .t.......t.."....t..]....u..U... |
| 16020 | 7a 75 15 00 1e 00 00 00 d0 75 15 00 44 00 00 00 ef 75 15 00 25 00 00 00 34 76 15 00 08 01 00 00 | zu.......u..D....u..%...4v...... |
| 16040 | 5a 76 15 00 76 00 00 00 63 77 15 00 fd 01 00 00 da 77 15 00 21 00 00 00 d8 79 15 00 87 00 00 00 | Zv..v...cw.......w..!....y...... |
| 16060 | fa 79 15 00 54 00 00 00 82 7a 15 00 2b 00 00 00 d7 7a 15 00 5b 00 00 00 03 7b 15 00 45 00 00 00 | .y..T....z..+....z..[....{..E... |
| 16080 | 5f 7b 15 00 87 02 00 00 a5 7b 15 00 c3 00 00 00 2d 7e 15 00 59 00 00 00 f1 7e 15 00 25 00 00 00 | _{.......{......-~..Y....~..%... |
| 160a0 | 4b 7f 15 00 1e 00 00 00 71 7f 15 00 2a 00 00 00 90 7f 15 00 2f 00 00 00 bb 7f 15 00 27 00 00 00 | K.......q...*......./.......'... |
| 160c0 | eb 7f 15 00 37 00 00 00 13 80 15 00 54 00 00 00 4b 80 15 00 4f 00 00 00 a0 80 15 00 59 00 00 00 | ....7.......T...K...O.......Y... |
| 160e0 | f0 80 15 00 4d 00 00 00 4a 81 15 00 5f 00 00 00 98 81 15 00 33 00 00 00 f8 81 15 00 64 00 00 00 | ....M...J..._.......3.......d... |
| 16100 | 2c 82 15 00 7b 00 00 00 91 82 15 00 49 00 00 00 0d 83 15 00 1e 00 00 00 57 83 15 00 f3 00 00 00 | ,...{.......I...........W....... |
| 16120 | 76 83 15 00 f1 00 00 00 6a 84 15 00 5e 00 00 00 5c 85 15 00 79 00 00 00 bb 85 15 00 54 00 00 00 | v.......j...^...\...y.......T... |
| 16140 | 35 86 15 00 43 00 00 00 8a 86 15 00 4f 00 00 00 ce 86 15 00 29 00 00 00 1e 87 15 00 82 00 00 00 | 5...C.......O.......)........... |
| 16160 | 48 87 15 00 22 00 00 00 cb 87 15 00 47 02 00 00 ee 87 15 00 47 02 00 00 36 8a 15 00 fc 00 00 00 | H...".......G.......G...6....... |
| 16180 | 7e 8c 15 00 9c 00 00 00 7b 8d 15 00 2c 00 00 00 18 8e 15 00 16 00 00 00 45 8e 15 00 53 00 00 00 | ~.......{...,...........E...S... |
| 161a0 | 5c 8e 15 00 7d 00 00 00 b0 8e 15 00 66 00 00 00 2e 8f 15 00 68 00 00 00 95 8f 15 00 b4 00 00 00 | \...}.......f.......h........... |
| 161c0 | fe 8f 15 00 4b 00 00 00 b3 90 15 00 55 00 00 00 ff 90 15 00 22 00 00 00 55 91 15 00 18 00 00 00 | ....K.......U......."...U....... |
| 161e0 | 78 91 15 00 31 00 00 00 91 91 15 00 1b 00 00 00 c3 91 15 00 1a 00 00 00 df 91 15 00 17 00 00 00 | x...1........................... |
| 16200 | fa 91 15 00 17 00 00 00 12 92 15 00 17 00 00 00 2a 92 15 00 35 00 00 00 42 92 15 00 41 00 00 00 | ................*...5...B...A... |
| 16220 | 78 92 15 00 25 00 00 00 ba 92 15 00 2d 00 00 00 e0 92 15 00 3e 00 00 00 0e 93 15 00 24 00 00 00 | x...%.......-.......>.......$... |
| 16240 | 4d 93 15 00 28 00 00 00 72 93 15 00 4d 00 00 00 9b 93 15 00 50 00 00 00 e9 93 15 00 33 00 00 00 | M...(...r...M.......P.......3... |
| 16260 | 3a 94 15 00 35 00 00 00 6e 94 15 00 20 00 00 00 a4 94 15 00 2b 00 00 00 c5 94 15 00 39 00 00 00 | :...5...n...........+.......9... |
| 16280 | f1 94 15 00 73 02 00 00 2b 95 15 00 49 00 00 00 9f 97 15 00 74 02 00 00 e9 97 15 00 c9 00 00 00 | ....s...+...I.......t........... |
| 162a0 | 5e 9a 15 00 28 00 00 00 28 9b 15 00 5c 00 00 00 51 9b 15 00 19 00 00 00 ae 9b 15 00 16 00 00 00 | ^...(...(...\...Q............... |
| 162c0 | c8 9b 15 00 9e 00 00 00 df 9b 15 00 23 00 00 00 7e 9c 15 00 27 00 00 00 a2 9c 15 00 18 00 00 00 | ............#...~...'........... |
| 162e0 | ca 9c 15 00 25 00 00 00 e3 9c 15 00 1c 00 00 00 09 9d 15 00 1f 00 00 00 26 9d 15 00 53 00 00 00 | ....%...................&...S... |
| 16300 | 46 9d 15 00 53 00 00 00 9a 9d 15 00 16 00 00 00 ee 9d 15 00 7e 00 00 00 05 9e 15 00 33 00 00 00 | F...S...............~.......3... |
| 16320 | 84 9e 15 00 25 00 00 00 b8 9e 15 00 af 00 00 00 de 9e 15 00 d0 00 00 00 8e 9f 15 00 7e 00 00 00 | ....%.......................~... |
| 16340 | 5f a0 15 00 25 00 00 00 de a0 15 00 3d 00 00 00 04 a1 15 00 51 00 00 00 42 a1 15 00 04 01 00 00 | _...%.......=.......Q...B....... |
| 16360 | 94 a1 15 00 49 00 00 00 99 a2 15 00 47 00 00 00 e3 a2 15 00 bd 00 00 00 2b a3 15 00 78 00 00 00 | ....I.......G...........+...x... |
| 16380 | e9 a3 15 00 aa 00 00 00 62 a4 15 00 41 00 00 00 0d a5 15 00 43 00 00 00 4f a5 15 00 3d 00 00 00 | ........b...A.......C...O...=... |
| 163a0 | 93 a5 15 00 27 00 00 00 d1 a5 15 00 1a 00 00 00 f9 a5 15 00 d2 00 00 00 14 a6 15 00 5b 00 00 00 | ....'.......................[... |
| 163c0 | e7 a6 15 00 3d 00 00 00 43 a7 15 00 ab 00 00 00 81 a7 15 00 1d 00 00 00 2d a8 15 00 5a 00 00 00 | ....=...C...............-...Z... |
| 163e0 | 4b a8 15 00 5a 00 00 00 a6 a8 15 00 77 00 00 00 01 a9 15 00 7d 00 00 00 79 a9 15 00 dd 00 00 00 | K...Z.......w.......}...y....... |
| 16400 | f7 a9 15 00 3f 00 00 00 d5 aa 15 00 40 00 00 00 15 ab 15 00 55 00 00 00 56 ab 15 00 af 00 00 00 | ....?.......@.......U...V....... |
| 16420 | ac ab 15 00 5e 00 00 00 5c ac 15 00 72 00 00 00 bb ac 15 00 3b 00 00 00 2e ad 15 00 65 00 00 00 | ....^...\...r.......;.......e... |
| 16440 | 6a ad 15 00 37 00 00 00 d0 ad 15 00 25 00 00 00 08 ae 15 00 51 00 00 00 2e ae 15 00 55 00 00 00 | j...7.......%.......Q.......U... |
| 16460 | 80 ae 15 00 38 00 00 00 d6 ae 15 00 13 00 00 00 0f af 15 00 45 00 00 00 23 af 15 00 40 00 00 00 | ....8...............E...#...@... |
| 16480 | 69 af 15 00 26 00 00 00 aa af 15 00 24 00 00 00 d1 af 15 00 44 00 00 00 f6 af 15 00 4a 00 00 00 | i...&.......$.......D.......J... |
| 164a0 | 3b b0 15 00 4b 00 00 00 86 b0 15 00 4a 00 00 00 d2 b0 15 00 4b 00 00 00 1d b1 15 00 1f 00 00 00 | ;...K.......J.......K........... |
| 164c0 | 69 b1 15 00 1f 00 00 00 89 b1 15 00 96 00 00 00 a9 b1 15 00 26 00 00 00 40 b2 15 00 29 00 00 00 | i...................&...@...)... |
| 164e0 | 67 b2 15 00 22 00 00 00 91 b2 15 00 1f 00 00 00 b4 b2 15 00 24 00 00 00 d4 b2 15 00 28 00 00 00 | g..."...............$.......(... |
| 16500 | f9 b2 15 00 18 00 00 00 22 b3 15 00 1b 00 00 00 3b b3 15 00 26 00 00 00 57 b3 15 00 29 00 00 00 | ........".......;...&...W...)... |
| 16520 | 7e b3 15 00 57 00 00 00 a8 b3 15 00 54 00 00 00 00 b4 15 00 52 00 00 00 55 b4 15 00 51 00 00 00 | ~...W.......T.......R...U...Q... |
| 16540 | a8 b4 15 00 40 00 00 00 fa b4 15 00 28 00 00 00 3b b5 15 00 70 00 00 00 64 b5 15 00 26 00 00 00 | ....@.......(...;...p...d...&... |
| 16560 | d5 b5 15 00 79 00 00 00 fc b5 15 00 62 00 00 00 76 b6 15 00 56 00 00 00 d9 b6 15 00 0b 00 00 00 | ....y.......b...v...V........... |
| 16580 | 30 b7 15 00 2c 00 00 00 3c b7 15 00 35 00 00 00 69 b7 15 00 3f 00 00 00 9f b7 15 00 77 00 00 00 | 0...,...<...5...i...?.......w... |
| 165a0 | df b7 15 00 2d 00 00 00 57 b8 15 00 33 00 00 00 85 b8 15 00 31 00 00 00 b9 b8 15 00 69 00 00 00 | ....-...W...3.......1.......i... |
| 165c0 | eb b8 15 00 69 00 00 00 55 b9 15 00 9c 00 00 00 bf b9 15 00 89 00 00 00 5c ba 15 00 24 00 00 00 | ....i...U...............\...$... |
| 165e0 | e6 ba 15 00 56 00 00 00 0b bb 15 00 16 00 00 00 62 bb 15 00 4c 00 00 00 79 bb 15 00 3c 00 00 00 | ....V...........b...L...y...<... |
| 16600 | c6 bb 15 00 9e 00 00 00 03 bc 15 00 26 00 00 00 a2 bc 15 00 27 00 00 00 c9 bc 15 00 1f 00 00 00 | ............&.......'........... |
| 16620 | f1 bc 15 00 5c 00 00 00 11 bd 15 00 3f 00 00 00 6e bd 15 00 36 00 00 00 ae bd 15 00 38 00 00 00 | ....\.......?...n...6.......8... |
| 16640 | e5 bd 15 00 66 00 00 00 1e be 15 00 24 00 00 00 85 be 15 00 4d 00 00 00 aa be 15 00 27 00 00 00 | ....f.......$.......M.......'... |
| 16660 | f8 be 15 00 27 00 00 00 20 bf 15 00 ee 00 00 00 48 bf 15 00 1f 00 00 00 37 c0 15 00 1e 00 00 00 | ....'...........H.......7....... |
| 16680 | 57 c0 15 00 24 01 00 00 76 c0 15 00 a1 00 00 00 9b c1 15 00 3c 00 00 00 3d c2 15 00 6e 00 00 00 | W...$...v...........<...=...n... |
| 166a0 | 7a c2 15 00 83 00 00 00 e9 c2 15 00 3e 00 00 00 6d c3 15 00 55 00 00 00 ac c3 15 00 27 01 00 00 | z...........>...m...U.......'... |
| 166c0 | 02 c4 15 00 50 00 00 00 2a c5 15 00 22 00 00 00 7b c5 15 00 5a 00 00 00 9e c5 15 00 2c 00 00 00 | ....P...*..."...{...Z.......,... |
| 166e0 | f9 c5 15 00 47 00 00 00 26 c6 15 00 7b 00 00 00 6e c6 15 00 77 00 00 00 ea c6 15 00 65 00 00 00 | ....G...&...{...n...w.......e... |
| 16700 | 62 c7 15 00 65 00 00 00 c8 c7 15 00 5a 00 00 00 2e c8 15 00 5a 00 00 00 89 c8 15 00 72 00 00 00 | b...e.......Z.......Z.......r... |
| 16720 | e4 c8 15 00 2e 00 00 00 57 c9 15 00 24 00 00 00 86 c9 15 00 61 00 00 00 ab c9 15 00 55 00 00 00 | ........W...$.......a.......U... |
| 16740 | 0d ca 15 00 2b 00 00 00 63 ca 15 00 29 00 00 00 8f ca 15 00 2a 00 00 00 b9 ca 15 00 2e 00 00 00 | ....+...c...).......*........... |
| 16760 | e4 ca 15 00 29 00 00 00 13 cb 15 00 27 00 00 00 3d cb 15 00 28 00 00 00 65 cb 15 00 29 00 00 00 | ....).......'...=...(...e...)... |
| 16780 | 8e cb 15 00 27 00 00 00 b8 cb 15 00 28 00 00 00 e0 cb 15 00 4c 00 00 00 09 cc 15 00 4c 00 00 00 | ....'.......(.......L.......L... |
| 167a0 | 56 cc 15 00 1d 00 00 00 a3 cc 15 00 38 00 00 00 c1 cc 15 00 54 00 00 00 fa cc 15 00 0b 00 00 00 | V...........8.......T........... |
| 167c0 | 4f cd 15 00 0f 00 00 00 5b cd 15 00 49 00 00 00 6b cd 15 00 0b 00 00 00 b5 cd 15 00 43 00 00 00 | O.......[...I...k...........C... |
| 167e0 | c1 cd 15 00 43 00 00 00 05 ce 15 00 36 00 00 00 49 ce 15 00 29 00 00 00 80 ce 15 00 2e 00 00 00 | ....C.......6...I...)........... |
| 16800 | aa ce 15 00 38 00 00 00 d9 ce 15 00 2c 00 00 00 12 cf 15 00 46 00 00 00 3f cf 15 00 22 00 00 00 | ....8.......,.......F...?..."... |
| 16820 | 86 cf 15 00 77 00 00 00 a9 cf 15 00 28 00 00 00 21 d0 15 00 3e 00 00 00 4a d0 15 00 28 00 00 00 | ....w.......(...!...>...J...(... |
| 16840 | 89 d0 15 00 3e 00 00 00 b2 d0 15 00 29 00 00 00 f1 d0 15 00 5d 00 00 00 1b d1 15 00 c9 00 00 00 | ....>.......).......]........... |
| 16860 | 79 d1 15 00 3f 00 00 00 43 d2 15 00 dd 00 00 00 83 d2 15 00 12 00 00 00 61 d3 15 00 12 00 00 00 | y...?...C...............a....... |
| 16880 | 74 d3 15 00 12 00 00 00 87 d3 15 00 4c 00 00 00 9a d3 15 00 19 00 00 00 e7 d3 15 00 7f 00 00 00 | t...........L................... |
| 168a0 | 01 d4 15 00 1d 00 00 00 81 d4 15 00 73 00 00 00 9f d4 15 00 31 00 00 00 13 d5 15 00 d7 00 00 00 | ............s.......1........... |
| 168c0 | 45 d5 15 00 1e 00 00 00 1d d6 15 00 24 00 00 00 3c d6 15 00 5c 00 00 00 61 d6 15 00 21 00 00 00 | E...........$...<...\...a...!... |
| 168e0 | be d6 15 00 14 00 00 00 e0 d6 15 00 52 00 00 00 f5 d6 15 00 5c 00 00 00 48 d7 15 00 b7 00 00 00 | ............R.......\...H....... |
| 16900 | a5 d7 15 00 44 01 00 00 5d d8 15 00 47 00 00 00 a2 d9 15 00 a5 01 00 00 ea d9 15 00 27 00 00 00 | ....D...]...G...............'... |
| 16920 | 90 db 15 00 88 01 00 00 b8 db 15 00 72 00 00 00 41 dd 15 00 74 00 00 00 b4 dd 15 00 6d 00 00 00 | ............r...A...t.......m... |
| 16940 | 29 de 15 00 33 00 00 00 97 de 15 00 30 00 00 00 cb de 15 00 3e 00 00 00 fc de 15 00 33 01 00 00 | )...3.......0.......>.......3... |
| 16960 | 3b df 15 00 41 00 00 00 6f e0 15 00 30 00 00 00 b1 e0 15 00 d1 00 00 00 e2 e0 15 00 8f 00 00 00 | ;...A...o...0................... |
| 16980 | b4 e1 15 00 3f 00 00 00 44 e2 15 00 df 00 00 00 84 e2 15 00 c2 01 00 00 64 e3 15 00 49 00 00 00 | ....?...D...............d...I... |
| 169a0 | 27 e5 15 00 e7 00 00 00 71 e5 15 00 65 01 00 00 59 e6 15 00 1f 00 00 00 bf e7 15 00 30 00 00 00 | '.......q...e...Y...........0... |
| 169c0 | df e7 15 00 33 00 00 00 10 e8 15 00 11 00 00 00 44 e8 15 00 05 00 00 00 56 e8 15 00 03 00 00 00 | ....3...........D.......V....... |
| 169e0 | 5c e8 15 00 0e 00 00 00 60 e8 15 00 1b 00 00 00 6f e8 15 00 1d 00 00 00 8b e8 15 00 1f 00 00 00 | \.......`.......o............... |
| 16a00 | a9 e8 15 00 04 00 00 00 c9 e8 15 00 0d 00 00 00 ce e8 15 00 32 00 00 00 dc e8 15 00 29 00 00 00 | ....................2.......)... |
| 16a20 | 0f e9 15 00 04 00 00 00 39 e9 15 00 07 00 00 00 3e e9 15 00 09 00 00 00 46 e9 15 00 0d 00 00 00 | ........9.......>.......F....... |
| 16a40 | 50 e9 15 00 17 00 00 00 5e e9 15 00 0f 00 00 00 76 e9 15 00 0d 00 00 00 86 e9 15 00 06 00 00 00 | P.......^.......v............... |
| 16a60 | 94 e9 15 00 19 00 00 00 9b e9 15 00 14 00 00 00 b5 e9 15 00 05 00 00 00 ca e9 15 00 15 00 00 00 | ................................ |
| 16a80 | d0 e9 15 00 04 00 00 00 e6 e9 15 00 04 00 00 00 eb e9 15 00 06 00 00 00 f0 e9 15 00 51 00 00 00 | ............................Q... |
| 16aa0 | f7 e9 15 00 4a 01 00 00 49 ea 15 00 50 01 00 00 94 eb 15 00 4d 00 00 00 e5 ec 15 00 05 00 00 00 | ....J...I...P.......M........... |
| 16ac0 | 33 ed 15 00 12 00 00 00 39 ed 15 00 15 00 00 00 4c ed 15 00 22 00 00 00 62 ed 15 00 10 00 00 00 | 3.......9.......L..."...b....... |
| 16ae0 | 85 ed 15 00 12 00 00 00 96 ed 15 00 0e 00 00 00 a9 ed 15 00 10 00 00 00 b8 ed 15 00 13 00 00 00 | ................................ |
| 16b00 | c9 ed 15 00 16 00 00 00 dd ed 15 00 06 00 00 00 f4 ed 15 00 09 00 00 00 fb ed 15 00 1d 00 00 00 | ................................ |
| 16b20 | 05 ee 15 00 05 00 00 00 23 ee 15 00 0b 00 00 00 29 ee 15 00 13 00 00 00 35 ee 15 00 0d 00 00 00 | ........#.......).......5....... |
| 16b40 | 49 ee 15 00 05 00 00 00 57 ee 15 00 68 00 00 00 5d ee 15 00 67 00 00 00 c6 ee 15 00 79 00 00 00 | I.......W...h...]...g.......y... |
| 16b60 | 2e ef 15 00 66 00 00 00 a8 ef 15 00 03 00 00 00 0f f0 15 00 08 00 00 00 13 f0 15 00 31 00 00 00 | ....f.......................1... |
| 16b80 | 1c f0 15 00 07 00 00 00 4e f0 15 00 08 00 00 00 56 f0 15 00 38 00 00 00 5f f0 15 00 10 00 00 00 | ........N.......V...8..._....... |
| 16ba0 | 98 f0 15 00 0b 00 00 00 a9 f0 15 00 03 00 00 00 b5 f0 15 00 1d 00 00 00 b9 f0 15 00 06 00 00 00 | ................................ |
| 16bc0 | d7 f0 15 00 1d 00 00 00 de f0 15 00 09 00 00 00 fc f0 15 00 26 00 00 00 06 f1 15 00 6d 00 00 00 | ....................&.......m... |
| 16be0 | 2d f1 15 00 46 00 00 00 9b f1 15 00 36 00 00 00 e2 f1 15 00 32 00 00 00 19 f2 15 00 46 00 00 00 | -...F.......6.......2.......F... |
| 16c00 | 4c f2 15 00 04 00 00 00 93 f2 15 00 22 00 00 00 98 f2 15 00 08 00 00 00 bb f2 15 00 07 00 00 00 | L..........."................... |
| 16c20 | c4 f2 15 00 46 00 00 00 cc f2 15 00 0d 00 00 00 13 f3 15 00 05 00 00 00 21 f3 15 00 1b 00 00 00 | ....F...................!....... |
| 16c40 | 27 f3 15 00 1c 00 00 00 43 f3 15 00 73 00 00 00 60 f3 15 00 71 00 00 00 d4 f3 15 00 04 00 00 00 | '.......C...s...`...q........... |
| 16c60 | 46 f4 15 00 06 00 00 00 4b f4 15 00 04 00 00 00 52 f4 15 00 05 00 00 00 57 f4 15 00 10 00 00 00 | F.......K.......R.......W....... |
| 16c80 | 5d f4 15 00 3c 00 00 00 6e f4 15 00 32 00 00 00 ab f4 15 00 1c 00 00 00 de f4 15 00 6d 00 00 00 | ]...<...n...2...............m... |
| 16ca0 | fb f4 15 00 08 00 00 00 69 f5 15 00 14 00 00 00 72 f5 15 00 14 00 00 00 87 f5 15 00 14 00 00 00 | ........i.......r............... |
| 16cc0 | 9c f5 15 00 14 00 00 00 b1 f5 15 00 14 00 00 00 c6 f5 15 00 14 00 00 00 db f5 15 00 14 00 00 00 | ................................ |
| 16ce0 | f0 f5 15 00 06 00 00 00 05 f6 15 00 06 00 00 00 0c f6 15 00 06 00 00 00 13 f6 15 00 06 00 00 00 | ................................ |
| 16d00 | 1a f6 15 00 06 00 00 00 21 f6 15 00 06 00 00 00 28 f6 15 00 06 00 00 00 2f f6 15 00 06 00 00 00 | ........!.......(......./....... |
| 16d20 | 36 f6 15 00 1f 00 00 00 3d f6 15 00 08 00 00 00 5d f6 15 00 08 00 00 00 66 f6 15 00 a4 00 00 00 | 6.......=.......].......f....... |
| 16d40 | 6f f6 15 00 03 00 00 00 14 f7 15 00 0d 00 00 00 18 f7 15 00 74 00 00 00 26 f7 15 00 9a 00 00 00 | o...................t...&....... |
| 16d60 | 9b f7 15 00 4c 00 00 00 36 f8 15 00 04 00 00 00 83 f8 15 00 0c 00 00 00 88 f8 15 00 3f 00 00 00 | ....L...6...................?... |
| 16d80 | 95 f8 15 00 29 00 00 00 d5 f8 15 00 37 00 00 00 ff f8 15 00 2c 00 00 00 37 f9 15 00 0e 00 00 00 | ....).......7.......,...7....... |
| 16da0 | 64 f9 15 00 33 00 00 00 73 f9 15 00 33 00 00 00 a7 f9 15 00 0b 00 00 00 db f9 15 00 14 00 00 00 | d...3...s...3................... |
| 16dc0 | e7 f9 15 00 71 00 00 00 fc f9 15 00 46 00 00 00 6e fa 15 00 09 00 00 00 b5 fa 15 00 04 00 00 00 | ....q.......F...n............... |
| 16de0 | bf fa 15 00 0b 00 00 00 c4 fa 15 00 12 00 00 00 d0 fa 15 00 0f 00 00 00 e3 fa 15 00 08 00 00 00 | ................................ |
| 16e00 | f3 fa 15 00 06 00 00 00 fc fa 15 00 03 00 00 00 03 fb 15 00 0a 00 00 00 07 fb 15 00 0b 00 00 00 | ................................ |
| 16e20 | 12 fb 15 00 40 00 00 00 1e fb 15 00 07 00 00 00 5f fb 15 00 06 00 00 00 67 fb 15 00 05 00 00 00 | ....@..........._.......g....... |
| 16e40 | 6e fb 15 00 9b 00 00 00 74 fb 15 00 11 00 00 00 10 fc 15 00 0d 00 00 00 22 fc 15 00 13 00 00 00 | n.......t..............."....... |
| 16e60 | 30 fc 15 00 15 00 00 00 44 fc 15 00 18 00 00 00 5a fc 15 00 1b 00 00 00 73 fc 15 00 0a 00 00 00 | 0.......D.......Z.......s....... |
| 16e80 | 8f fc 15 00 12 00 00 00 9a fc 15 00 1c 00 00 00 ad fc 15 00 0f 00 00 00 ca fc 15 00 05 00 00 00 | ................................ |
| 16ea0 | da fc 15 00 0e 00 00 00 e0 fc 15 00 0e 00 00 00 ef fc 15 00 0d 00 00 00 fe fc 15 00 2a 00 00 00 | ............................*... |
| 16ec0 | 0c fd 15 00 15 00 00 00 37 fd 15 00 31 00 00 00 4d fd 15 00 39 00 00 00 7f fd 15 00 34 00 00 00 | ........7...1...M...9.......4... |
| 16ee0 | b9 fd 15 00 04 00 00 00 ee fd 15 00 0b 00 00 00 f3 fd 15 00 09 00 00 00 ff fd 15 00 07 00 00 00 | ................................ |
| 16f00 | 09 fe 15 00 05 00 00 00 11 fe 15 00 72 00 00 00 17 fe 15 00 08 00 00 00 8a fe 15 00 62 01 00 00 | ............r...............b... |
| 16f20 | 93 fe 15 00 0e 00 00 00 f6 ff 15 00 11 00 00 00 05 00 16 00 38 00 00 00 17 00 16 00 0d 00 00 00 | ....................8........... |
| 16f40 | 50 00 16 00 0d 00 00 00 5e 00 16 00 06 00 00 00 6c 00 16 00 3a 00 00 00 73 00 16 00 0b 00 00 00 | P.......^.......l...:...s....... |
| 16f60 | ae 00 16 00 3f 00 00 00 ba 00 16 00 40 00 00 00 fa 00 16 00 0e 00 00 00 3b 01 16 00 0f 00 00 00 | ....?.......@...........;....... |
| 16f80 | 4a 01 16 00 07 00 00 00 5a 01 16 00 0e 00 00 00 62 01 16 00 0c 00 00 00 71 01 16 00 ad 00 00 00 | J.......Z.......b.......q....... |
| 16fa0 | 7e 01 16 00 0b 00 00 00 2c 02 16 00 08 00 00 00 38 02 16 00 06 00 00 00 41 02 16 00 04 00 00 00 | ~.......,.......8.......A....... |
| 16fc0 | 48 02 16 00 d7 00 00 00 4d 02 16 00 10 00 00 00 25 03 16 00 ed 01 00 00 36 03 16 00 0b 00 00 00 | H.......M.......%.......6....... |
| 16fe0 | 24 05 16 00 0b 00 00 00 30 05 16 00 0c 00 00 00 3c 05 16 00 06 00 00 00 49 05 16 00 0e 00 00 00 | $.......0.......<.......I....... |
| 17000 | 50 05 16 00 58 00 00 00 5f 05 16 00 04 00 00 00 b8 05 16 00 04 00 00 00 bd 05 16 00 05 00 00 00 | P...X..._....................... |
| 17020 | c2 05 16 00 0e 00 00 00 c8 05 16 00 47 00 00 00 d7 05 16 00 75 00 00 00 1f 06 16 00 05 00 00 00 | ............G.......u........... |
| 17040 | 95 06 16 00 07 00 00 00 9b 06 16 00 68 00 00 00 a3 06 16 00 19 00 00 00 0c 07 16 00 14 00 00 00 | ............h................... |
| 17060 | 26 07 16 00 2c 00 00 00 3b 07 16 00 0b 00 00 00 68 07 16 00 09 00 00 00 74 07 16 00 08 00 00 00 | &...,...;.......h.......t....... |
| 17080 | 7e 07 16 00 53 00 00 00 87 07 16 00 08 00 00 00 db 07 16 00 22 00 00 00 e4 07 16 00 04 00 00 00 | ~...S..............."........... |
| 170a0 | 07 08 16 00 05 00 00 00 0c 08 16 00 01 00 00 00 ec 04 00 00 00 00 00 00 dc 05 00 00 86 09 00 00 | ................................ |
| 170c0 | 84 0c 00 00 43 11 00 00 24 0f 00 00 00 00 00 00 9b 01 00 00 5b 00 00 00 00 00 00 00 9c 10 00 00 | ....C...$...........[........... |
| 170e0 | 00 00 00 00 00 00 00 00 2a 10 00 00 5c 09 00 00 bd 04 00 00 6d 0c 00 00 01 17 00 00 be 0a 00 00 | ........*...\.......m........... |
| 17100 | 82 12 00 00 46 16 00 00 a9 0f 00 00 4b 12 00 00 4f 05 00 00 2f 10 00 00 86 12 00 00 16 04 00 00 | ....F.......K...O.../........... |
| 17120 | 00 00 00 00 55 03 00 00 00 00 00 00 8d 00 00 00 28 14 00 00 c5 01 00 00 00 00 00 00 35 08 00 00 | ....U...........(...........5... |
| 17140 | 98 10 00 00 9c 16 00 00 33 00 00 00 bf 14 00 00 74 0b 00 00 00 00 00 00 6e 02 00 00 b2 11 00 00 | ........3.......t.......n....... |
| 17160 | 94 13 00 00 ff 0c 00 00 9a 06 00 00 11 01 00 00 1f 01 00 00 40 01 00 00 4f 01 00 00 56 01 00 00 | ....................@...O...V... |
| 17180 | 60 01 00 00 01 01 00 00 72 01 00 00 74 01 00 00 76 01 00 00 00 00 00 00 a5 13 00 00 dd 12 00 00 | `.......r...t...v............... |
| 171a0 | eb 04 00 00 00 00 00 00 9e 0b 00 00 da 0d 00 00 00 00 00 00 fb 15 00 00 25 08 00 00 47 0a 00 00 | ........................%...G... |
| 171c0 | 3d 0a 00 00 00 00 00 00 49 02 00 00 43 0f 00 00 29 16 00 00 79 0a 00 00 1a 0d 00 00 00 00 00 00 | =.......I...C...)...y........... |
| 171e0 | 95 11 00 00 45 0a 00 00 e8 13 00 00 84 08 00 00 00 00 00 00 da 05 00 00 08 0f 00 00 00 00 00 00 | ....E........................... |
| 17200 | e8 10 00 00 e6 00 00 00 73 08 00 00 b2 0e 00 00 7d 14 00 00 47 11 00 00 00 00 00 00 a5 10 00 00 | ........s.......}...G........... |
| 17220 | 78 0e 00 00 00 00 00 00 17 02 00 00 ca 0a 00 00 0a 07 00 00 43 03 00 00 00 00 00 00 00 00 00 00 | x...................C........... |
| 17240 | e2 0a 00 00 00 00 00 00 00 00 00 00 b9 15 00 00 fb 0d 00 00 00 00 00 00 49 07 00 00 6e 15 00 00 | ........................I...n... |
| 17260 | 67 01 00 00 1a 07 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ae 0f 00 00 43 0a 00 00 8d 0a 00 00 | g.......................C....... |
| 17280 | c6 05 00 00 98 0e 00 00 58 0c 00 00 52 08 00 00 4a 05 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | ........X...R...J............... |
| 172a0 | 00 00 00 00 5e 03 00 00 00 00 00 00 41 08 00 00 46 03 00 00 ea 0f 00 00 08 05 00 00 29 0c 00 00 | ....^.......A...F...........)... |
| 172c0 | c7 16 00 00 de 03 00 00 3d 07 00 00 00 00 00 00 11 03 00 00 84 00 00 00 34 05 00 00 f4 14 00 00 | ........=...............4....... |
| 172e0 | 10 11 00 00 10 14 00 00 b1 0a 00 00 24 10 00 00 00 00 00 00 da 10 00 00 61 0a 00 00 00 00 00 00 | ............$...........a....... |
| 17300 | 7d 0a 00 00 46 0f 00 00 00 00 00 00 7c 06 00 00 00 00 00 00 00 00 00 00 cb 11 00 00 0c 0b 00 00 | }...F.......|................... |
| 17320 | 9d 0a 00 00 62 00 00 00 00 00 00 00 e8 15 00 00 71 15 00 00 6f 0b 00 00 6a 02 00 00 52 05 00 00 | ....b...........q...o...j...R... |
| 17340 | db 00 00 00 25 0c 00 00 53 06 00 00 b4 0d 00 00 5e 0d 00 00 47 0b 00 00 83 01 00 00 00 00 00 00 | ....%...S.......^...G........... |
| 17360 | e6 02 00 00 1d 0a 00 00 ef 06 00 00 94 16 00 00 00 00 00 00 e5 01 00 00 00 00 00 00 6f 04 00 00 | ............................o... |
| 17380 | 60 13 00 00 00 04 00 00 93 05 00 00 00 00 00 00 44 08 00 00 d4 13 00 00 00 00 00 00 19 0b 00 00 | `...............D............... |
| 173a0 | 6a 12 00 00 3b 14 00 00 34 15 00 00 6c 0e 00 00 af 0a 00 00 00 00 00 00 00 00 00 00 72 0c 00 00 | j...;...4...l...............r... |
| 173c0 | e1 00 00 00 7e 0a 00 00 c2 07 00 00 24 09 00 00 00 00 00 00 cb 0b 00 00 8c 03 00 00 99 09 00 00 | ....~.......$................... |
| 173e0 | 00 00 00 00 df 12 00 00 bb 02 00 00 00 00 00 00 00 00 00 00 a7 0a 00 00 43 0e 00 00 2b 0b 00 00 | ........................C...+... |
| 17400 | fb 04 00 00 00 00 00 00 00 00 00 00 00 00 00 00 cd 0e 00 00 bb 10 00 00 00 00 00 00 00 00 00 00 | ................................ |
| 17420 | 0b 01 00 00 05 04 00 00 51 10 00 00 a6 16 00 00 a9 0d 00 00 a3 14 00 00 00 00 00 00 52 14 00 00 | ........Q...................R... |
| 17440 | 00 00 00 00 00 00 00 00 00 00 00 00 ef 02 00 00 69 05 00 00 00 00 00 00 20 0e 00 00 b9 13 00 00 | ................i............... |
| 17460 | f9 0e 00 00 75 0b 00 00 9f 10 00 00 00 00 00 00 37 05 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | ....u...........7............... |
| 17480 | 00 00 00 00 a6 03 00 00 40 02 00 00 66 0e 00 00 20 00 00 00 91 00 00 00 00 00 00 00 00 00 00 00 | ........@...f................... |
| 174a0 | 72 0e 00 00 a8 0a 00 00 00 00 00 00 a7 06 00 00 45 0e 00 00 14 04 00 00 00 00 00 00 00 00 00 00 | r...............E............... |
| 174c0 | 00 00 00 00 f0 07 00 00 00 00 00 00 65 11 00 00 00 00 00 00 70 07 00 00 3a 15 00 00 00 00 00 00 | ............e.......p...:....... |
| 174e0 | 4b 11 00 00 de 02 00 00 00 00 00 00 56 06 00 00 00 00 00 00 cc 0f 00 00 ca 05 00 00 c0 13 00 00 | K...........V................... |
| 17500 | 00 00 00 00 28 0c 00 00 23 0d 00 00 00 00 00 00 00 00 00 00 b2 12 00 00 88 0f 00 00 00 00 00 00 | ....(...#....................... |
| 17520 | d5 13 00 00 69 0f 00 00 ee 06 00 00 00 00 00 00 00 00 00 00 d6 01 00 00 40 16 00 00 93 06 00 00 | ....i...................@....... |
| 17540 | 61 04 00 00 bf 00 00 00 b0 09 00 00 31 15 00 00 ad 10 00 00 a1 08 00 00 63 01 00 00 e3 0b 00 00 | a...........1...........c....... |
| 17560 | 5d 06 00 00 12 02 00 00 c8 13 00 00 99 16 00 00 12 0e 00 00 00 00 00 00 00 00 00 00 b8 01 00 00 | ]............................... |
| 17580 | ac 06 00 00 00 00 00 00 00 00 00 00 ea 01 00 00 00 00 00 00 36 14 00 00 00 00 00 00 00 00 00 00 | ....................6........... |
| 175a0 | df 11 00 00 00 00 00 00 13 05 00 00 93 10 00 00 3b 0c 00 00 00 00 00 00 70 04 00 00 6b 0b 00 00 | ................;.......p...k... |
| 175c0 | d6 11 00 00 7c 02 00 00 9f 0f 00 00 8a 09 00 00 74 11 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | ....|...........t............... |
| 175e0 | e4 0e 00 00 e7 0c 00 00 a3 0c 00 00 c2 16 00 00 d1 06 00 00 a0 08 00 00 e8 0c 00 00 33 10 00 00 | ............................3... |
| 17600 | 00 00 00 00 cd 13 00 00 28 0e 00 00 00 00 00 00 5b 0e 00 00 16 13 00 00 2f 0e 00 00 5b 0b 00 00 | ........(.......[......./...[... |
| 17620 | ab 01 00 00 01 0d 00 00 5b 14 00 00 af 12 00 00 00 00 00 00 0d 13 00 00 00 00 00 00 00 00 00 00 | ........[....................... |
| 17640 | 00 00 00 00 5f 11 00 00 13 04 00 00 f5 0d 00 00 00 00 00 00 4f 0b 00 00 a9 04 00 00 18 08 00 00 | ...._...............O........... |
| 17660 | 64 0b 00 00 c6 12 00 00 c4 11 00 00 ae 0c 00 00 e4 00 00 00 e5 07 00 00 0f 15 00 00 e4 0b 00 00 | d............................... |
| 17680 | 60 14 00 00 58 11 00 00 df 02 00 00 84 02 00 00 00 00 00 00 00 00 00 00 00 00 00 00 b0 13 00 00 | `...X........................... |
| 176a0 | 00 00 00 00 00 00 00 00 1a 05 00 00 f3 07 00 00 00 00 00 00 00 00 00 00 ca 11 00 00 de 04 00 00 | ................................ |
| 176c0 | 63 14 00 00 00 00 00 00 39 00 00 00 75 12 00 00 00 00 00 00 18 10 00 00 83 0e 00 00 02 13 00 00 | c.......9...u................... |
| 176e0 | 80 02 00 00 8d 06 00 00 00 00 00 00 ac 0b 00 00 46 07 00 00 1e 16 00 00 af 0d 00 00 a6 11 00 00 | ................F............... |
| 17700 | 00 00 00 00 f9 11 00 00 7a 14 00 00 73 12 00 00 01 13 00 00 53 0e 00 00 93 0a 00 00 f1 0b 00 00 | ........z...s.......S........... |
| 17720 | 06 0d 00 00 6b 16 00 00 bc 09 00 00 7b 0c 00 00 00 00 00 00 89 11 00 00 47 16 00 00 9b 07 00 00 | ....k.......{...........G....... |
| 17740 | 00 00 00 00 b3 0c 00 00 00 00 00 00 65 07 00 00 e8 11 00 00 8a 05 00 00 87 0a 00 00 b9 0b 00 00 | ............e................... |
| 17760 | 4b 00 00 00 a6 0d 00 00 00 00 00 00 00 00 00 00 00 00 00 00 57 0b 00 00 0e 10 00 00 00 00 00 00 | K...................W........... |
| 17780 | 00 00 00 00 19 00 00 00 6e 0e 00 00 4e 0f 00 00 50 16 00 00 00 00 00 00 83 06 00 00 c7 0e 00 00 | ........n...N...P............... |
| 177a0 | 1d 0d 00 00 00 00 00 00 8c 14 00 00 21 11 00 00 1d 13 00 00 c0 08 00 00 00 00 00 00 f8 14 00 00 | ............!................... |
| 177c0 | fe 12 00 00 e9 03 00 00 e2 0e 00 00 00 00 00 00 fb 02 00 00 00 00 00 00 40 11 00 00 95 09 00 00 | ........................@....... |
| 177e0 | 8a 0d 00 00 6f 00 00 00 a5 00 00 00 47 0e 00 00 51 01 00 00 7c 0b 00 00 00 00 00 00 00 00 00 00 | ....o.......G...Q...|........... |
| 17800 | dc 11 00 00 5b 09 00 00 18 13 00 00 d7 0e 00 00 ab 15 00 00 00 00 00 00 18 00 00 00 12 0a 00 00 | ....[........................... |
| 17820 | ff 11 00 00 46 00 00 00 e1 14 00 00 74 0e 00 00 48 06 00 00 02 0a 00 00 00 00 00 00 f1 05 00 00 | ....F.......t...H............... |
| 17840 | 00 00 00 00 d4 02 00 00 60 0a 00 00 00 00 00 00 00 00 00 00 37 0f 00 00 bf 06 00 00 00 00 00 00 | ........`...........7........... |
| 17860 | 6e 13 00 00 00 00 00 00 48 0d 00 00 00 00 00 00 d9 0c 00 00 8b 12 00 00 ce 16 00 00 b3 05 00 00 | n.......H....................... |
| 17880 | 00 00 00 00 13 16 00 00 00 00 00 00 6d 09 00 00 00 00 00 00 11 12 00 00 fd 12 00 00 00 00 00 00 | ............m................... |
| 178a0 | 64 05 00 00 00 00 00 00 cd 12 00 00 00 00 00 00 00 00 00 00 9e 09 00 00 6c 0b 00 00 87 0e 00 00 | d.......................l....... |
| 178c0 | 21 0d 00 00 90 12 00 00 b7 13 00 00 1b 09 00 00 66 14 00 00 00 00 00 00 d5 0c 00 00 00 00 00 00 | !...............f............... |
| 178e0 | 00 00 00 00 5d 0b 00 00 06 0c 00 00 3d 15 00 00 34 14 00 00 f2 07 00 00 d5 0b 00 00 c5 09 00 00 | ....].......=...4............... |
| 17900 | 31 13 00 00 cf 05 00 00 b8 08 00 00 43 09 00 00 00 00 00 00 0f 02 00 00 c8 10 00 00 00 00 00 00 | 1...........C................... |
| 17920 | ab 07 00 00 08 12 00 00 00 00 00 00 e8 0e 00 00 30 11 00 00 50 0b 00 00 63 07 00 00 75 02 00 00 | ................0...P...c...u... |
| 17940 | 00 00 00 00 c4 0b 00 00 00 00 00 00 00 00 00 00 a7 03 00 00 00 00 00 00 00 00 00 00 d3 07 00 00 | ................................ |
| 17960 | 00 00 00 00 34 12 00 00 04 02 00 00 00 00 00 00 17 14 00 00 13 09 00 00 76 04 00 00 00 00 00 00 | ....4...................v....... |
| 17980 | be 05 00 00 78 0f 00 00 40 0d 00 00 bd 0d 00 00 3c 0e 00 00 ce 03 00 00 1d 0c 00 00 d2 07 00 00 | ....x...@.......<............... |
| 179a0 | 05 0b 00 00 f9 01 00 00 00 00 00 00 ac 07 00 00 12 08 00 00 89 0c 00 00 79 16 00 00 c4 16 00 00 | ........................y....... |
| 179c0 | fa 01 00 00 78 02 00 00 f6 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 16 08 00 00 00 00 00 00 | ....x........................... |
| 179e0 | c9 0a 00 00 00 00 00 00 5e 12 00 00 7b 0b 00 00 ad 01 00 00 20 12 00 00 57 16 00 00 66 00 00 00 | ........^...{...........W...f... |
| 17a00 | 75 10 00 00 00 00 00 00 c8 07 00 00 46 05 00 00 00 00 00 00 d9 00 00 00 00 00 00 00 22 06 00 00 | u...........F..............."... |
| 17a20 | 68 0c 00 00 ae 10 00 00 00 00 00 00 37 13 00 00 44 16 00 00 10 09 00 00 00 00 00 00 00 00 00 00 | h...........7...D............... |
| 17a40 | 09 16 00 00 20 06 00 00 00 00 00 00 87 01 00 00 00 00 00 00 ca 00 00 00 42 09 00 00 84 09 00 00 | ........................B....... |
| 17a60 | 27 16 00 00 09 02 00 00 00 00 00 00 70 03 00 00 06 01 00 00 bb 13 00 00 00 00 00 00 a9 15 00 00 | '...........p................... |
| 17a80 | 6b 12 00 00 00 00 00 00 18 0b 00 00 08 03 00 00 dc 00 00 00 f1 04 00 00 ce 08 00 00 00 00 00 00 | k............................... |
| 17aa0 | 10 02 00 00 00 00 00 00 b7 15 00 00 2d 0e 00 00 0a 05 00 00 9c 12 00 00 fb 03 00 00 a8 0e 00 00 | ............-................... |
| 17ac0 | b6 0e 00 00 cb 0a 00 00 1d 06 00 00 22 0b 00 00 09 03 00 00 4e 02 00 00 4d 08 00 00 f6 08 00 00 | ............".......N...M....... |
| 17ae0 | 19 07 00 00 00 00 00 00 00 00 00 00 7e 12 00 00 bd 0f 00 00 00 00 00 00 39 0e 00 00 34 0b 00 00 | ............~...........9...4... |
| 17b00 | 00 00 00 00 00 00 00 00 58 12 00 00 83 05 00 00 00 00 00 00 5d 03 00 00 00 00 00 00 32 04 00 00 | ........X...........].......2... |
| 17b20 | 64 04 00 00 66 0d 00 00 ab 0a 00 00 f5 13 00 00 00 00 00 00 db 04 00 00 d7 0b 00 00 2d 01 00 00 | d...f.......................-... |
| 17b40 | 00 00 00 00 cf 15 00 00 00 00 00 00 43 06 00 00 00 00 00 00 00 00 00 00 57 06 00 00 00 00 00 00 | ............C...........W....... |
| 17b60 | 5b 0f 00 00 41 0a 00 00 3f 13 00 00 c3 11 00 00 00 00 00 00 43 08 00 00 1a 0f 00 00 a8 0d 00 00 | [...A...?...........C........... |
| 17b80 | 00 00 00 00 00 00 00 00 a8 11 00 00 dd 0b 00 00 00 00 00 00 a9 09 00 00 00 00 00 00 00 00 00 00 | ................................ |
| 17ba0 | 00 02 00 00 13 12 00 00 27 08 00 00 49 0c 00 00 d0 15 00 00 c1 0d 00 00 ab 0f 00 00 f0 16 00 00 | ........'...I................... |
| 17bc0 | 00 00 00 00 00 00 00 00 00 00 00 00 fe 00 00 00 00 00 00 00 e9 02 00 00 f2 08 00 00 fe 09 00 00 | ................................ |
| 17be0 | e3 01 00 00 00 00 00 00 00 00 00 00 7b 0a 00 00 00 00 00 00 a7 16 00 00 33 0e 00 00 00 00 00 00 | ............{...........3....... |
| 17c00 | 5e 05 00 00 c6 11 00 00 f9 03 00 00 19 16 00 00 0c 10 00 00 00 00 00 00 da 09 00 00 08 07 00 00 | ^............................... |
| 17c20 | 81 0f 00 00 00 00 00 00 10 00 00 00 7b 0d 00 00 23 07 00 00 00 00 00 00 cf 07 00 00 5f 0c 00 00 | ............{...#..........._... |
| 17c40 | d7 06 00 00 d8 12 00 00 09 15 00 00 35 15 00 00 ab 14 00 00 a8 14 00 00 a7 09 00 00 3d 08 00 00 | ............5...............=... |
| 17c60 | f0 02 00 00 00 00 00 00 0a 01 00 00 c2 05 00 00 00 00 00 00 34 09 00 00 01 16 00 00 ed 14 00 00 | ....................4........... |
| 17c80 | 7d 13 00 00 c7 03 00 00 be 10 00 00 3f 0b 00 00 2a 13 00 00 e3 05 00 00 00 00 00 00 2e 08 00 00 | }...........?...*............... |
| 17ca0 | 3d 12 00 00 00 00 00 00 66 0b 00 00 00 00 00 00 91 15 00 00 00 00 00 00 24 07 00 00 f1 10 00 00 | =.......f...............$....... |
| 17cc0 | 92 15 00 00 00 00 00 00 00 00 00 00 9b 0a 00 00 00 00 00 00 00 00 00 00 00 00 00 00 58 10 00 00 | ............................X... |
| 17ce0 | 00 00 00 00 00 00 00 00 00 00 00 00 87 15 00 00 79 14 00 00 00 00 00 00 53 10 00 00 9a 05 00 00 | ................y.......S....... |
| 17d00 | 34 0c 00 00 a2 10 00 00 00 00 00 00 e4 05 00 00 00 00 00 00 57 15 00 00 3b 0f 00 00 98 02 00 00 | 4...................W...;....... |
| 17d20 | 4d 14 00 00 bc 16 00 00 b1 12 00 00 00 00 00 00 00 00 00 00 00 00 00 00 60 15 00 00 00 00 00 00 | M.......................`....... |
| 17d40 | b9 04 00 00 00 00 00 00 e6 15 00 00 8e 0c 00 00 00 00 00 00 00 00 00 00 00 00 00 00 4e 11 00 00 | ............................N... |
| 17d60 | 68 16 00 00 6f 13 00 00 00 00 00 00 4f 0e 00 00 c0 0b 00 00 51 03 00 00 86 0f 00 00 0a 0e 00 00 | h...o.......O.......Q........... |
| 17d80 | 17 0c 00 00 ef 00 00 00 00 00 00 00 4d 0e 00 00 00 00 00 00 48 13 00 00 ae 07 00 00 97 0e 00 00 | ............M.......H........... |
| 17da0 | 8e 0d 00 00 8d 0e 00 00 00 00 00 00 27 01 00 00 32 01 00 00 34 01 00 00 36 01 00 00 37 01 00 00 | ............'...2...4...6...7... |
| 17dc0 | 38 01 00 00 39 01 00 00 3a 01 00 00 3c 01 00 00 3d 01 00 00 00 00 00 00 35 0e 00 00 00 00 00 00 | 8...9...:...<...=.......5....... |
| 17de0 | 00 00 00 00 00 00 00 00 00 00 00 00 c1 00 00 00 45 01 00 00 46 01 00 00 47 01 00 00 48 0f 00 00 | ................E...F...G...H... |
| 17e00 | f2 0a 00 00 4b 01 00 00 50 01 00 00 4c 01 00 00 af 0c 00 00 f0 0c 00 00 7f 15 00 00 9b 0d 00 00 | ....K...P...L................... |
| 17e20 | ab 0c 00 00 f8 0c 00 00 4f 14 00 00 52 01 00 00 b3 0f 00 00 da 0b 00 00 01 05 00 00 53 01 00 00 | ........O...R...............S... |
| 17e40 | 07 06 00 00 54 01 00 00 eb 01 00 00 55 01 00 00 00 00 00 00 9b 0c 00 00 9e 16 00 00 00 00 00 00 | ....T.......U................... |
| 17e60 | 71 0a 00 00 2e 0e 00 00 70 06 00 00 00 00 00 00 93 03 00 00 5d 01 00 00 00 00 00 00 5e 01 00 00 | q.......p...........].......^... |
| 17e80 | 0a 15 00 00 5f 01 00 00 75 00 00 00 69 14 00 00 f8 15 00 00 00 00 00 00 a4 09 00 00 59 0d 00 00 | ...._...u...i...............Y... |
| 17ea0 | 32 05 00 00 c7 0f 00 00 3d 00 00 00 00 00 00 00 22 00 00 00 e7 15 00 00 5d 05 00 00 66 01 00 00 | 2.......=.......".......]...f... |
| 17ec0 | fa 03 00 00 00 00 00 00 00 00 00 00 00 00 00 00 04 11 00 00 09 0f 00 00 00 00 00 00 00 00 00 00 | ................................ |
| 17ee0 | 7d 0e 00 00 c7 07 00 00 ce 13 00 00 41 10 00 00 bc 0e 00 00 2c 11 00 00 00 00 00 00 00 00 00 00 | }...........A.......,........... |
| 17f00 | 15 0f 00 00 6c 01 00 00 6e 01 00 00 b7 10 00 00 6f 01 00 00 00 00 00 00 89 16 00 00 f5 0f 00 00 | ....l...n.......o............... |
| 17f20 | 98 07 00 00 48 0a 00 00 ba 12 00 00 73 01 00 00 00 00 00 00 ab 16 00 00 29 14 00 00 f3 0e 00 00 | ....H.......s...........)....... |
| 17f40 | c6 0b 00 00 00 00 00 00 dd 05 00 00 5c 00 00 00 d7 08 00 00 53 16 00 00 00 00 00 00 d1 04 00 00 | ............\.......S........... |
| 17f60 | 25 00 00 00 eb 16 00 00 02 0d 00 00 50 0e 00 00 22 12 00 00 d5 01 00 00 03 04 00 00 26 11 00 00 | %...........P..."...........&... |
| 17f80 | ef 0f 00 00 00 00 00 00 51 00 00 00 c5 02 00 00 79 07 00 00 ae 0b 00 00 50 0f 00 00 4a 11 00 00 | ........Q.......y.......P...J... |
| 17fa0 | 01 11 00 00 49 15 00 00 d5 08 00 00 dc 0d 00 00 52 12 00 00 00 00 00 00 b3 07 00 00 82 0f 00 00 | ....I...........R............... |
| 17fc0 | 4d 12 00 00 61 09 00 00 00 00 00 00 00 00 00 00 5b 06 00 00 00 00 00 00 7f 11 00 00 ec 07 00 00 | M...a...........[............... |
| 17fe0 | a4 08 00 00 cb 07 00 00 a5 02 00 00 00 00 00 00 2a 04 00 00 a2 11 00 00 00 00 00 00 4a 08 00 00 | ................*...........J... |
| 18000 | ef 0e 00 00 5c 04 00 00 0f 09 00 00 01 06 00 00 00 00 00 00 00 00 00 00 63 0e 00 00 8f 0e 00 00 | ....\...................c....... |
| 18020 | 00 00 00 00 00 00 00 00 64 02 00 00 fc 04 00 00 22 08 00 00 5b 13 00 00 93 12 00 00 6e 00 00 00 | ........d......."...[.......n... |
| 18040 | 61 07 00 00 72 15 00 00 f5 0b 00 00 30 0d 00 00 08 10 00 00 be 02 00 00 b3 06 00 00 00 00 00 00 | a...r.......0................... |
| 18060 | 60 12 00 00 f4 06 00 00 00 00 00 00 5a 04 00 00 04 03 00 00 de 14 00 00 24 0a 00 00 3e 02 00 00 | `...........Z...........$...>... |
| 18080 | 00 00 00 00 6d 16 00 00 16 10 00 00 50 0c 00 00 84 0a 00 00 1a 15 00 00 00 00 00 00 69 0d 00 00 | ....m.......P...............i... |
| 180a0 | ea 0d 00 00 bf 09 00 00 00 00 00 00 00 00 00 00 66 0f 00 00 00 00 00 00 a2 0e 00 00 d8 13 00 00 | ................f............... |
| 180c0 | 00 00 00 00 bc 06 00 00 1e 02 00 00 c2 14 00 00 67 02 00 00 e5 05 00 00 00 00 00 00 d6 0f 00 00 | ................g............... |
| 180e0 | 00 00 00 00 4f 03 00 00 43 0d 00 00 37 03 00 00 ea 06 00 00 e2 03 00 00 87 0b 00 00 87 08 00 00 | ....O...C...7................... |
| 18100 | 33 08 00 00 00 00 00 00 c6 02 00 00 ef 0a 00 00 af 00 00 00 2e 0a 00 00 00 00 00 00 86 15 00 00 | 3............................... |
| 18120 | 7a 02 00 00 59 04 00 00 ac 03 00 00 00 00 00 00 93 0e 00 00 0f 0c 00 00 90 08 00 00 00 00 00 00 | z...Y........................... |
| 18140 | 00 00 00 00 00 00 00 00 f4 0e 00 00 52 15 00 00 00 00 00 00 71 04 00 00 00 00 00 00 81 00 00 00 | ............R.......q........... |
| 18160 | 3d 03 00 00 4a 04 00 00 00 00 00 00 94 00 00 00 ec 0e 00 00 cf 06 00 00 bc 07 00 00 06 14 00 00 | =...J........................... |
| 18180 | 00 00 00 00 0e 06 00 00 d6 06 00 00 36 02 00 00 70 09 00 00 00 00 00 00 90 0f 00 00 1b 05 00 00 | ............6...p............... |
| 181a0 | 49 06 00 00 00 00 00 00 00 00 00 00 5b 11 00 00 61 13 00 00 80 0d 00 00 bd 06 00 00 6b 06 00 00 | I...........[...a...........k... |
| 181c0 | 04 13 00 00 52 09 00 00 07 03 00 00 76 08 00 00 00 00 00 00 66 07 00 00 48 05 00 00 34 0a 00 00 | ....R.......v.......f...H...4... |
| 181e0 | c8 14 00 00 08 15 00 00 4f 09 00 00 77 04 00 00 04 15 00 00 00 00 00 00 08 01 00 00 00 00 00 00 | ........O...w................... |
| 18200 | fa 05 00 00 89 09 00 00 af 07 00 00 0d 05 00 00 93 0f 00 00 fc 01 00 00 2c 08 00 00 9f 05 00 00 | ........................,....... |
| 18220 | f6 07 00 00 3e 16 00 00 76 03 00 00 a4 03 00 00 00 00 00 00 99 0f 00 00 00 00 00 00 00 00 00 00 | ....>...v....................... |
| 18240 | 00 00 00 00 00 05 00 00 9c 08 00 00 a6 06 00 00 00 00 00 00 26 0a 00 00 00 00 00 00 78 07 00 00 | ....................&.......x... |
| 18260 | d0 13 00 00 7a 04 00 00 ae 11 00 00 74 16 00 00 28 12 00 00 56 0c 00 00 00 00 00 00 e8 0a 00 00 | ....z.......t...(...V........... |
| 18280 | 95 10 00 00 00 0c 00 00 77 08 00 00 00 00 00 00 1d 14 00 00 b9 14 00 00 ee 00 00 00 61 0d 00 00 | ........w...................a... |
| 182a0 | 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 dd 01 00 00 3a 14 00 00 dd 10 00 00 e1 0f 00 00 | ....................:........... |
| 182c0 | 00 00 00 00 13 0e 00 00 d2 0c 00 00 31 10 00 00 35 04 00 00 21 0f 00 00 3c 07 00 00 d8 0d 00 00 | ............1...5...!...<....... |
| 182e0 | 00 00 00 00 00 00 00 00 11 05 00 00 27 09 00 00 00 00 00 00 00 00 00 00 e3 14 00 00 fe 0b 00 00 | ............'................... |
| 18300 | 07 12 00 00 fd 0e 00 00 82 00 00 00 0c 00 00 00 00 00 00 00 00 00 00 00 b0 02 00 00 00 00 00 00 | ................................ |
| 18320 | 00 00 00 00 0b 16 00 00 6d 03 00 00 c3 13 00 00 dc 0b 00 00 71 0b 00 00 4a 13 00 00 a9 10 00 00 | ........m...........q...J....... |
| 18340 | 00 00 00 00 31 0b 00 00 00 00 00 00 f1 09 00 00 3f 0e 00 00 4d 0a 00 00 b0 0a 00 00 21 0c 00 00 | ....1...........?...M.......!... |
| 18360 | 20 10 00 00 68 03 00 00 a4 00 00 00 60 16 00 00 fa 13 00 00 00 00 00 00 bb 0b 00 00 00 00 00 00 | ....h.......`................... |
| 18380 | 1a 02 00 00 c3 14 00 00 80 15 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | ................................ |
| 183a0 | 00 00 00 00 a1 14 00 00 00 00 00 00 bc 03 00 00 fa 02 00 00 aa 13 00 00 30 15 00 00 2e 05 00 00 | ........................0....... |
| 183c0 | bb 07 00 00 b0 01 00 00 08 02 00 00 63 10 00 00 8b 0c 00 00 02 02 00 00 00 00 00 00 00 00 00 00 | ............c................... |
| 183e0 | 00 00 00 00 01 14 00 00 00 00 00 00 30 00 00 00 00 00 00 00 00 00 00 00 e1 15 00 00 00 00 00 00 | ............0................... |
| 18400 | 7d 11 00 00 04 05 00 00 16 16 00 00 d1 01 00 00 00 00 00 00 c3 0d 00 00 86 01 00 00 8d 03 00 00 | }............................... |
| 18420 | d0 03 00 00 33 02 00 00 4e 07 00 00 80 07 00 00 00 00 00 00 08 17 00 00 00 00 00 00 00 00 00 00 | ....3...N....................... |
| 18440 | 75 08 00 00 63 00 00 00 8a 13 00 00 00 00 00 00 04 0f 00 00 4d 03 00 00 49 00 00 00 00 00 00 00 | u...c...............M...I....... |
| 18460 | 00 00 00 00 96 00 00 00 99 08 00 00 27 0f 00 00 aa 05 00 00 00 00 00 00 a5 09 00 00 ff 06 00 00 | ............'................... |
| 18480 | bd 11 00 00 3a 05 00 00 2e 04 00 00 00 00 00 00 00 00 00 00 cc 0e 00 00 d2 0a 00 00 00 00 00 00 | ....:........................... |
| 184a0 | 29 0f 00 00 da 01 00 00 5e 14 00 00 1d 08 00 00 9c 05 00 00 6f 15 00 00 00 00 00 00 5c 0a 00 00 | ).......^...........o.......\... |
| 184c0 | 00 00 00 00 d7 01 00 00 00 00 00 00 00 00 00 00 23 11 00 00 08 13 00 00 75 0f 00 00 ca 12 00 00 | ................#.......u....... |
| 184e0 | 17 16 00 00 d4 04 00 00 23 13 00 00 e0 06 00 00 d9 08 00 00 00 00 00 00 5a 05 00 00 88 16 00 00 | ........#...............Z....... |
| 18500 | 03 07 00 00 33 0c 00 00 00 00 00 00 ef 10 00 00 94 05 00 00 6f 0e 00 00 1b 0b 00 00 27 0b 00 00 | ....3...............o.......'... |
| 18520 | 00 00 00 00 1f 00 00 00 67 08 00 00 dd 16 00 00 a2 07 00 00 32 08 00 00 fd 01 00 00 57 0c 00 00 | ........g...........2.......W... |
| 18540 | 00 00 00 00 66 0c 00 00 00 00 00 00 7f 0a 00 00 74 15 00 00 9c 02 00 00 00 00 00 00 6d 0b 00 00 | ....f...........t...........m... |
| 18560 | 59 0b 00 00 c9 09 00 00 5f 02 00 00 c5 13 00 00 56 0f 00 00 90 0a 00 00 7f 04 00 00 a3 03 00 00 | Y......._.......V............... |
| 18580 | 00 00 00 00 e3 11 00 00 00 00 00 00 c0 04 00 00 89 0b 00 00 00 00 00 00 bd 0b 00 00 6f 06 00 00 | ............................o... |
| 185a0 | ad 08 00 00 00 00 00 00 c7 05 00 00 03 00 00 00 f3 0d 00 00 f2 11 00 00 d9 0d 00 00 51 12 00 00 | ............................Q... |
| 185c0 | 26 0d 00 00 c1 11 00 00 e1 0a 00 00 00 00 00 00 aa 01 00 00 00 00 00 00 74 09 00 00 9d 0e 00 00 | &.......................t....... |
| 185e0 | 1e 05 00 00 29 04 00 00 69 00 00 00 d5 06 00 00 00 00 00 00 1e 07 00 00 3f 05 00 00 bb 08 00 00 | ....)...i...............?....... |
| 18600 | 52 10 00 00 e1 06 00 00 2a 07 00 00 ba 0d 00 00 00 00 00 00 84 07 00 00 00 00 00 00 9e 05 00 00 | R.......*....................... |
| 18620 | 00 00 00 00 3f 16 00 00 c4 09 00 00 31 07 00 00 6b 07 00 00 00 00 00 00 ad 00 00 00 70 0e 00 00 | ....?.......1...k...........p... |
| 18640 | d8 09 00 00 01 12 00 00 00 00 00 00 83 03 00 00 00 00 00 00 c1 0b 00 00 c2 12 00 00 95 0b 00 00 | ................................ |
| 18660 | 00 00 00 00 32 00 00 00 00 00 00 00 05 0e 00 00 00 00 00 00 6a 0c 00 00 46 0c 00 00 d2 03 00 00 | ....2...............j...F....... |
| 18680 | 02 16 00 00 58 0a 00 00 00 00 00 00 00 00 00 00 ab 10 00 00 37 15 00 00 10 07 00 00 0d 10 00 00 | ....X...............7........... |
| 186a0 | f1 16 00 00 38 04 00 00 42 03 00 00 61 12 00 00 b3 0a 00 00 00 00 00 00 55 0f 00 00 ac 11 00 00 | ....8...B...a...........U....... |
| 186c0 | 71 01 00 00 e1 10 00 00 39 0f 00 00 88 0e 00 00 4d 04 00 00 00 00 00 00 70 0f 00 00 22 07 00 00 | q.......9.......M.......p..."... |
| 186e0 | 64 01 00 00 ba 09 00 00 00 00 00 00 84 0e 00 00 0a 08 00 00 e0 12 00 00 62 13 00 00 71 0f 00 00 | d.......................b...q... |
| 18700 | 0f 0e 00 00 de 0d 00 00 e8 09 00 00 e0 0c 00 00 da 0e 00 00 e5 0b 00 00 7c 07 00 00 e0 01 00 00 | ........................|....... |
| 18720 | 1d 05 00 00 5a 08 00 00 00 00 00 00 00 00 00 00 2e 09 00 00 71 0c 00 00 83 12 00 00 65 0f 00 00 | ....Z...............q.......e... |
| 18740 | 00 00 00 00 31 01 00 00 02 17 00 00 00 00 00 00 b0 14 00 00 00 00 00 00 03 16 00 00 00 00 00 00 | ....1........................... |
| 18760 | 00 00 00 00 75 15 00 00 a4 06 00 00 bb 0d 00 00 fb 10 00 00 4b 04 00 00 5e 0b 00 00 b0 12 00 00 | ....u...............K...^....... |
| 18780 | f3 11 00 00 56 10 00 00 00 00 00 00 00 00 00 00 af 05 00 00 6c 04 00 00 7d 04 00 00 e2 01 00 00 | ....V...............l...}....... |
| 187a0 | 1d 04 00 00 00 00 00 00 78 03 00 00 00 00 00 00 18 07 00 00 72 07 00 00 85 0e 00 00 72 00 00 00 | ........x...........r.......r... |
| 187c0 | 82 06 00 00 00 00 00 00 5c 0c 00 00 ad 13 00 00 37 02 00 00 bd 00 00 00 c3 02 00 00 00 00 00 00 | ........\.......7............... |
| 187e0 | 77 0d 00 00 db 0d 00 00 00 00 00 00 6f 14 00 00 00 00 00 00 7a 11 00 00 a1 06 00 00 61 16 00 00 | w...........o.......z.......a... |
| 18800 | b2 06 00 00 ca 06 00 00 51 0f 00 00 73 0e 00 00 00 00 00 00 91 0f 00 00 00 00 00 00 5a 10 00 00 | ........Q...s...............Z... |
| 18820 | 0d 11 00 00 b1 07 00 00 00 00 00 00 17 13 00 00 98 06 00 00 d4 06 00 00 b1 08 00 00 00 00 00 00 | ................................ |
| 18840 | 64 12 00 00 dc 16 00 00 00 00 00 00 86 00 00 00 00 00 00 00 71 12 00 00 05 17 00 00 86 05 00 00 | d...................q........... |
| 18860 | 00 00 00 00 c3 15 00 00 37 00 00 00 b9 09 00 00 00 00 00 00 f6 01 00 00 ed 02 00 00 db 0e 00 00 | ........7....................... |
| 18880 | 1b 01 00 00 00 00 00 00 5c 0f 00 00 c4 02 00 00 f7 0a 00 00 f2 0d 00 00 fb 0f 00 00 5b 10 00 00 | ........\...................[... |
| 188a0 | 4a 14 00 00 8a 12 00 00 00 00 00 00 2f 0b 00 00 7a 0a 00 00 b9 08 00 00 a8 10 00 00 00 00 00 00 | J.........../...z............... |
| 188c0 | 00 00 00 00 00 00 00 00 00 00 00 00 bc 04 00 00 00 00 00 00 3e 0a 00 00 eb 15 00 00 f1 13 00 00 | ....................>........... |
| 188e0 | 63 05 00 00 00 00 00 00 d9 10 00 00 19 06 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | c............................... |
| 18900 | 8f 0d 00 00 7a 01 00 00 a3 0f 00 00 09 12 00 00 3d 0e 00 00 06 06 00 00 61 14 00 00 00 00 00 00 | ....z...........=.......a....... |
| 18920 | 72 02 00 00 00 00 00 00 6a 13 00 00 38 07 00 00 a0 0a 00 00 2a 06 00 00 00 00 00 00 13 11 00 00 | r.......j...8.......*........... |
| 18940 | 7f 06 00 00 af 06 00 00 00 00 00 00 00 00 00 00 32 03 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | ................2............... |
| 18960 | 3e 03 00 00 00 00 00 00 3c 14 00 00 00 00 00 00 00 00 00 00 00 00 00 00 2d 06 00 00 27 04 00 00 | >.......<...............-...'... |
| 18980 | b6 0a 00 00 f5 0c 00 00 1c 07 00 00 91 07 00 00 00 00 00 00 86 13 00 00 50 08 00 00 00 00 00 00 | ........................P....... |
| 189a0 | 8a 02 00 00 1d 15 00 00 73 03 00 00 d7 0f 00 00 99 0d 00 00 d7 16 00 00 a2 06 00 00 00 00 00 00 | ........s....................... |
| 189c0 | 23 06 00 00 70 0a 00 00 00 00 00 00 9f 07 00 00 74 14 00 00 21 02 00 00 6b 09 00 00 d7 0c 00 00 | #...p...........t...!...k....... |
| 189e0 | 4b 13 00 00 6f 10 00 00 c7 0b 00 00 bc 0f 00 00 00 00 00 00 fc 15 00 00 00 00 00 00 c9 13 00 00 | K...o........................... |
| 18a00 | 41 12 00 00 00 00 00 00 00 00 00 00 f9 02 00 00 00 00 00 00 9c 15 00 00 58 0d 00 00 eb 12 00 00 | A.......................X....... |
| 18a20 | 00 00 00 00 00 00 00 00 db 01 00 00 09 13 00 00 c8 06 00 00 31 02 00 00 e4 14 00 00 2a 02 00 00 | ....................1.......*... |
| 18a40 | d5 16 00 00 00 00 00 00 e7 0e 00 00 59 0c 00 00 8b 06 00 00 4f 16 00 00 95 0d 00 00 91 05 00 00 | ............Y.......O........... |
| 18a60 | 6e 04 00 00 dc 14 00 00 20 11 00 00 95 07 00 00 d0 09 00 00 00 00 00 00 0e 01 00 00 3d 02 00 00 | n...........................=... |
| 18a80 | 00 00 00 00 cf 08 00 00 00 00 00 00 00 00 00 00 fd 0b 00 00 dc 06 00 00 1a 0b 00 00 79 05 00 00 | ............................y... |
| 18aa0 | 74 10 00 00 1b 13 00 00 d9 13 00 00 b2 15 00 00 00 00 00 00 be 15 00 00 00 00 00 00 8a 04 00 00 | t............................... |
| 18ac0 | 00 00 00 00 d4 0e 00 00 ad 16 00 00 10 15 00 00 12 12 00 00 99 06 00 00 00 00 00 00 ce 05 00 00 | ................................ |
| 18ae0 | fd 06 00 00 29 0d 00 00 e8 02 00 00 17 0a 00 00 e2 16 00 00 d6 02 00 00 2e 12 00 00 df 08 00 00 | ....)........................... |
| 18b00 | 4f 11 00 00 5f 0b 00 00 7f 03 00 00 12 06 00 00 ee 15 00 00 d3 11 00 00 00 00 00 00 00 00 00 00 | O..._........................... |
| 18b20 | 1a 0e 00 00 04 0d 00 00 00 00 00 00 00 00 00 00 44 01 00 00 90 0d 00 00 00 00 00 00 da 0f 00 00 | ................D............... |
| 18b40 | df 00 00 00 00 00 00 00 69 08 00 00 24 0e 00 00 1c 05 00 00 5a 16 00 00 c7 06 00 00 00 00 00 00 | ........i...$.......Z........... |
| 18b60 | 23 01 00 00 00 00 00 00 84 03 00 00 5c 06 00 00 00 00 00 00 00 00 00 00 38 12 00 00 fd 05 00 00 | #...........\...........8....... |
| 18b80 | 00 00 00 00 5e 0a 00 00 00 00 00 00 07 07 00 00 00 00 00 00 6a 0b 00 00 3b 07 00 00 61 0f 00 00 | ....^...............j...;...a... |
| 18ba0 | 67 09 00 00 00 00 00 00 00 00 00 00 12 0b 00 00 93 11 00 00 dd 00 00 00 0e 05 00 00 2d 08 00 00 | g...........................-... |
| 18bc0 | 5e 0c 00 00 ed 10 00 00 50 12 00 00 00 00 00 00 00 00 00 00 7b 03 00 00 08 00 00 00 60 0b 00 00 | ^.......P...........{.......`... |
| 18be0 | 39 11 00 00 84 13 00 00 00 00 00 00 86 04 00 00 00 00 00 00 00 00 00 00 b6 0d 00 00 a3 16 00 00 | 9............................... |
| 18c00 | 64 0a 00 00 ac 04 00 00 00 00 00 00 6b 11 00 00 00 00 00 00 00 00 00 00 00 00 00 00 11 0f 00 00 | d...........k................... |
| 18c20 | fb 16 00 00 00 00 00 00 d0 01 00 00 20 01 00 00 45 09 00 00 00 00 00 00 2c 0e 00 00 00 00 00 00 | ................E.......,....... |
| 18c40 | 1c 01 00 00 69 11 00 00 00 00 00 00 28 08 00 00 8e 15 00 00 3a 0d 00 00 a1 15 00 00 ab 04 00 00 | ....i.......(.......:........... |
| 18c60 | 00 00 00 00 d7 04 00 00 f0 01 00 00 4b 14 00 00 a7 01 00 00 ea 09 00 00 7e 06 00 00 00 00 00 00 | ............K...........~....... |
| 18c80 | 1d 01 00 00 eb 10 00 00 34 06 00 00 1c 00 00 00 65 09 00 00 40 0b 00 00 2c 05 00 00 ae 04 00 00 | ........4.......e...@...,....... |
| 18ca0 | 66 15 00 00 91 04 00 00 a2 05 00 00 00 00 00 00 ad 0e 00 00 00 00 00 00 15 15 00 00 03 0e 00 00 | f............................... |
| 18cc0 | 4c 00 00 00 de 06 00 00 69 06 00 00 a4 0b 00 00 87 0f 00 00 53 13 00 00 1b 16 00 00 01 03 00 00 | L.......i...........S........... |
| 18ce0 | a7 10 00 00 00 00 00 00 10 03 00 00 c5 05 00 00 f8 08 00 00 f3 15 00 00 ac 01 00 00 7c 09 00 00 | ............................|... |
| 18d00 | 38 10 00 00 54 07 00 00 d7 0d 00 00 e1 0c 00 00 d9 15 00 00 6e 0c 00 00 00 00 00 00 b2 07 00 00 | 8...T...............n........... |
| 18d20 | c7 09 00 00 7f 16 00 00 3e 15 00 00 74 13 00 00 20 0c 00 00 0c 04 00 00 00 00 00 00 0f 05 00 00 | ........>...t................... |
| 18d40 | 18 09 00 00 00 00 00 00 92 02 00 00 6e 08 00 00 2f 02 00 00 ec 08 00 00 f0 06 00 00 20 0f 00 00 | ............n.../............... |
| 18d60 | 00 00 00 00 56 0b 00 00 06 05 00 00 ea 13 00 00 e1 0d 00 00 11 08 00 00 00 00 00 00 c7 0a 00 00 | ....V........................... |
| 18d80 | 43 0b 00 00 00 00 00 00 8f 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 13 13 00 00 7a 0b 00 00 | C...........................z... |
| 18da0 | 78 15 00 00 7d 0b 00 00 00 00 00 00 ac 05 00 00 00 00 00 00 04 09 00 00 94 12 00 00 dd 11 00 00 | x...}........................... |
| 18dc0 | f9 06 00 00 a3 07 00 00 00 00 00 00 99 12 00 00 17 07 00 00 e8 08 00 00 17 09 00 00 00 00 00 00 | ................................ |
| 18de0 | 4c 06 00 00 3e 11 00 00 b0 15 00 00 97 11 00 00 9b 03 00 00 e2 08 00 00 00 00 00 00 00 00 00 00 | L...>........................... |
| 18e00 | 1a 14 00 00 08 0d 00 00 16 11 00 00 c6 15 00 00 5a 14 00 00 bb 0a 00 00 3f 0a 00 00 c7 11 00 00 | ................Z.......?....... |
| 18e20 | 95 0c 00 00 3d 0b 00 00 2d 05 00 00 39 15 00 00 00 00 00 00 38 15 00 00 28 10 00 00 00 00 00 00 | ....=...-...9.......8...(....... |
| 18e40 | 00 00 00 00 e5 08 00 00 57 0d 00 00 f5 02 00 00 07 0b 00 00 00 00 00 00 00 00 00 00 0a 13 00 00 | ........W....................... |
| 18e60 | 2e 15 00 00 84 12 00 00 57 04 00 00 00 00 00 00 b1 15 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | ........W....................... |
| 18e80 | 80 16 00 00 0f 10 00 00 2c 06 00 00 00 00 00 00 b0 00 00 00 f8 05 00 00 cf 09 00 00 9c 07 00 00 | ........,....................... |
| 18ea0 | 9d 05 00 00 e2 07 00 00 00 00 00 00 1f 0b 00 00 ae 15 00 00 7b 06 00 00 e6 10 00 00 7c 05 00 00 | ....................{.......|... |
| 18ec0 | 0f 11 00 00 45 06 00 00 00 00 00 00 00 00 00 00 a3 04 00 00 00 00 00 00 00 00 00 00 f0 00 00 00 | ....E........................... |
| 18ee0 | b9 07 00 00 00 00 00 00 7f 0e 00 00 53 14 00 00 86 02 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | ............S................... |
| 18f00 | 30 0a 00 00 39 16 00 00 22 0f 00 00 9e 0f 00 00 fd 10 00 00 00 00 00 00 98 08 00 00 2b 0f 00 00 | 0...9..."...................+... |
| 18f20 | 00 00 00 00 4b 10 00 00 43 07 00 00 00 13 00 00 29 0a 00 00 00 00 00 00 49 14 00 00 00 00 00 00 | ....K...C.......).......I....... |
| 18f40 | 85 0a 00 00 00 07 00 00 00 00 00 00 00 00 00 00 2c 16 00 00 a2 01 00 00 00 00 00 00 ad 11 00 00 | ................,............... |
| 18f60 | bb 11 00 00 fd 15 00 00 a9 02 00 00 44 10 00 00 b5 0a 00 00 38 13 00 00 85 05 00 00 38 14 00 00 | ............D.......8.......8... |
| 18f80 | 00 00 00 00 00 00 00 00 be 00 00 00 00 00 00 00 79 08 00 00 6c 09 00 00 53 0a 00 00 14 03 00 00 | ................y...l...S....... |
| 18fa0 | e4 06 00 00 63 13 00 00 e0 00 00 00 8e 0e 00 00 00 00 00 00 d8 0b 00 00 00 00 00 00 42 10 00 00 | ....c.......................B... |
| 18fc0 | 00 00 00 00 c2 09 00 00 19 12 00 00 a4 13 00 00 06 09 00 00 00 00 00 00 31 11 00 00 6f 16 00 00 | ........................1...o... |
| 18fe0 | e7 11 00 00 40 0f 00 00 00 00 00 00 7e 0c 00 00 00 00 00 00 00 00 00 00 c1 10 00 00 c3 16 00 00 | ....@.......~................... |
| 19000 | 00 00 00 00 14 0b 00 00 00 00 00 00 44 11 00 00 be 0c 00 00 43 15 00 00 82 05 00 00 68 07 00 00 | ............D.......C.......h... |
| 19020 | 00 00 00 00 00 00 00 00 00 00 00 00 ec 10 00 00 f7 03 00 00 00 00 00 00 28 02 00 00 ac 0c 00 00 | ........................(....... |
| 19040 | 33 05 00 00 bd 05 00 00 a0 10 00 00 97 09 00 00 cf 13 00 00 00 00 00 00 a8 09 00 00 4c 11 00 00 | 3...........................L... |
| 19060 | 0b 07 00 00 00 00 00 00 5c 11 00 00 06 08 00 00 86 0e 00 00 00 00 00 00 53 0f 00 00 b4 08 00 00 | ........\...............S....... |
| 19080 | fe 14 00 00 4b 15 00 00 0c 11 00 00 e7 10 00 00 87 05 00 00 fb 0b 00 00 76 0d 00 00 98 12 00 00 | ....K...................v....... |
| 190a0 | 7e 16 00 00 00 00 00 00 00 00 00 00 91 0e 00 00 00 00 00 00 00 00 00 00 a3 08 00 00 21 14 00 00 | ~...........................!... |
| 190c0 | 00 00 00 00 63 04 00 00 ef 11 00 00 66 02 00 00 e6 0d 00 00 fe 0c 00 00 00 00 00 00 8a 07 00 00 | ....c.......f................... |
| 190e0 | 84 0d 00 00 d3 06 00 00 4d 0b 00 00 00 00 00 00 05 10 00 00 57 0a 00 00 88 0a 00 00 9f 16 00 00 | ........M...........W........... |
| 19100 | 00 00 00 00 36 0e 00 00 00 00 00 00 00 00 00 00 79 0b 00 00 16 06 00 00 49 16 00 00 e0 14 00 00 | ....6...........y.......I....... |
| 19120 | b4 0f 00 00 00 00 00 00 0c 0f 00 00 00 00 00 00 ce 12 00 00 1b 02 00 00 67 0c 00 00 40 07 00 00 | ........................g...@... |
| 19140 | 73 15 00 00 00 00 00 00 00 00 00 00 54 14 00 00 00 00 00 00 00 00 00 00 59 02 00 00 2f 04 00 00 | s...........T...........Y.../... |
| 19160 | 88 00 00 00 63 0c 00 00 b4 01 00 00 46 0d 00 00 1b 12 00 00 0d 03 00 00 d9 16 00 00 a0 03 00 00 | ....c.......F................... |
| 19180 | 6b 05 00 00 93 0d 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 d6 15 00 00 1a 12 00 00 | k............................... |
| 191a0 | bb 06 00 00 00 00 00 00 ce 0a 00 00 00 00 00 00 ba 04 00 00 5d 09 00 00 00 00 00 00 5e 07 00 00 | ....................].......^... |
| 191c0 | cd 11 00 00 12 13 00 00 00 00 00 00 00 00 00 00 01 04 00 00 a8 02 00 00 4c 15 00 00 9d 04 00 00 | ........................L....... |
| 191e0 | 64 16 00 00 50 06 00 00 4e 0d 00 00 e2 0d 00 00 db 16 00 00 9d 03 00 00 ba 10 00 00 00 00 00 00 | d...P...N....................... |
| 19200 | 2f 05 00 00 00 00 00 00 7b 12 00 00 7e 02 00 00 7c 08 00 00 b8 0e 00 00 aa 04 00 00 0c 14 00 00 | /.......{...~...|............... |
| 19220 | 00 00 00 00 00 00 00 00 c8 0f 00 00 24 0d 00 00 76 0c 00 00 48 0c 00 00 ac 00 00 00 ec 06 00 00 | ............$...v...H........... |
| 19240 | 54 11 00 00 00 00 00 00 57 13 00 00 e9 15 00 00 00 00 00 00 01 02 00 00 00 00 00 00 18 0d 00 00 | T.......W....................... |
| 19260 | 00 00 00 00 49 01 00 00 9d 15 00 00 4f 10 00 00 11 0b 00 00 12 03 00 00 ac 0f 00 00 d1 05 00 00 | ....I.......O................... |
| 19280 | 00 00 00 00 7b 10 00 00 79 04 00 00 79 0c 00 00 00 00 00 00 20 0a 00 00 0a 0c 00 00 00 00 00 00 | ....{...y...y................... |
| 192a0 | 62 03 00 00 00 00 00 00 7c 0c 00 00 00 00 00 00 65 01 00 00 00 00 00 00 2f 06 00 00 0c 03 00 00 | b.......|.......e......./....... |
| 192c0 | 00 00 00 00 24 13 00 00 00 00 00 00 b0 16 00 00 00 00 00 00 44 09 00 00 00 00 00 00 00 00 00 00 | ....$...............D........... |
| 192e0 | 00 00 00 00 e1 02 00 00 df 0c 00 00 ff 12 00 00 00 00 00 00 38 00 00 00 c0 10 00 00 44 06 00 00 | ....................8.......D... |
| 19300 | 60 09 00 00 88 03 00 00 60 0e 00 00 a5 01 00 00 9d 0f 00 00 10 0c 00 00 00 00 00 00 81 15 00 00 | `.......`....................... |
| 19320 | 00 00 00 00 be 16 00 00 7d 10 00 00 3f 00 00 00 b3 15 00 00 71 06 00 00 00 00 00 00 44 0e 00 00 | ........}...?.......q.......D... |
| 19340 | d1 0b 00 00 9f 04 00 00 4c 0d 00 00 00 00 00 00 0b 13 00 00 00 00 00 00 48 02 00 00 00 00 00 00 | ........L...............H....... |
| 19360 | 1b 04 00 00 b1 16 00 00 00 00 00 00 00 00 00 00 07 02 00 00 49 03 00 00 00 00 00 00 9d 06 00 00 | ....................I........... |
| 19380 | 0f 0a 00 00 51 0c 00 00 00 00 00 00 00 00 00 00 02 0c 00 00 ad 12 00 00 3e 09 00 00 00 00 00 00 | ....Q...................>....... |
| 193a0 | 78 0c 00 00 5c 05 00 00 34 03 00 00 aa 0f 00 00 d7 00 00 00 cd 0f 00 00 fb 0a 00 00 00 00 00 00 | x...\...4....................... |
| 193c0 | 56 16 00 00 7e 01 00 00 53 08 00 00 8f 16 00 00 a2 16 00 00 05 07 00 00 6c 03 00 00 00 00 00 00 | V...~...S...............l....... |
| 193e0 | 00 00 00 00 00 00 00 00 96 12 00 00 a1 0f 00 00 96 08 00 00 94 0a 00 00 39 02 00 00 00 00 00 00 | ........................9....... |
| 19400 | 00 00 00 00 8c 04 00 00 1d 10 00 00 00 00 00 00 72 09 00 00 35 01 00 00 d0 04 00 00 9e 01 00 00 | ................r...5........... |
| 19420 | 00 00 00 00 b6 01 00 00 f1 01 00 00 00 00 00 00 36 0b 00 00 2b 13 00 00 00 00 00 00 0a 04 00 00 | ................6...+........... |
| 19440 | 1c 16 00 00 68 0e 00 00 ed 06 00 00 b6 14 00 00 00 00 00 00 4f 0d 00 00 00 00 00 00 50 14 00 00 | ....h...............O.......P... |
| 19460 | 3f 0d 00 00 48 08 00 00 ec 0f 00 00 00 00 00 00 4f 15 00 00 ea 16 00 00 00 00 00 00 3d 05 00 00 | ?...H...........O...........=... |
| 19480 | 03 09 00 00 00 00 00 00 00 00 00 00 00 00 00 00 c7 04 00 00 3a 02 00 00 00 00 00 00 97 0c 00 00 | ....................:........... |
| 194a0 | 00 00 00 00 00 00 00 00 b5 04 00 00 00 00 00 00 37 0c 00 00 de 09 00 00 00 00 00 00 39 0d 00 00 | ................7...........9... |
| 194c0 | 90 13 00 00 00 00 00 00 c1 14 00 00 bb 00 00 00 fa 12 00 00 54 03 00 00 d1 16 00 00 66 08 00 00 | ....................T.......f... |
| 194e0 | 31 03 00 00 00 00 00 00 0c 0a 00 00 56 05 00 00 00 16 00 00 81 10 00 00 00 00 00 00 00 00 00 00 | 1...........V................... |
| 19500 | 16 0b 00 00 6f 11 00 00 69 0e 00 00 c8 00 00 00 67 0a 00 00 46 06 00 00 00 00 00 00 4c 02 00 00 | ....o...i.......g...F.......L... |
| 19520 | 29 05 00 00 cc 15 00 00 00 00 00 00 68 00 00 00 52 13 00 00 f0 10 00 00 00 00 00 00 00 00 00 00 | )...........h...R............... |
| 19540 | 10 01 00 00 00 00 00 00 ab 02 00 00 bd 0e 00 00 00 00 00 00 f4 01 00 00 22 0a 00 00 00 00 00 00 | ........................"....... |
| 19560 | ea 10 00 00 47 00 00 00 00 00 00 00 00 00 00 00 0d 15 00 00 00 00 00 00 f8 04 00 00 35 14 00 00 | ....G.......................5... |
| 19580 | 7b 15 00 00 00 00 00 00 6f 05 00 00 00 00 00 00 00 00 00 00 ff 05 00 00 fb 06 00 00 86 14 00 00 | {.......o....................... |
| 195a0 | 84 05 00 00 9c 0d 00 00 fa 0d 00 00 9b 00 00 00 b4 04 00 00 f7 04 00 00 fe 10 00 00 41 0b 00 00 | ............................A... |
| 195c0 | 4d 0d 00 00 af 04 00 00 00 00 00 00 a8 06 00 00 f1 08 00 00 cd 00 00 00 00 00 00 00 76 02 00 00 | M...........................v... |
| 195e0 | a6 08 00 00 26 05 00 00 1c 0b 00 00 c7 14 00 00 00 00 00 00 2f 0f 00 00 63 09 00 00 ff 0b 00 00 | ....&.............../...c....... |
| 19600 | 42 12 00 00 fb 01 00 00 00 00 00 00 9a 0b 00 00 00 00 00 00 20 07 00 00 5d 13 00 00 72 03 00 00 | B.......................]...r... |
| 19620 | 3b 12 00 00 00 00 00 00 8c 13 00 00 fc 0c 00 00 f0 0b 00 00 00 00 00 00 a1 07 00 00 10 0a 00 00 | ;............................... |
| 19640 | 5a 06 00 00 82 0d 00 00 12 11 00 00 00 00 00 00 d8 03 00 00 83 0d 00 00 74 0a 00 00 91 0b 00 00 | Z.......................t....... |
| 19660 | 0e 04 00 00 00 00 00 00 bf 08 00 00 88 0d 00 00 15 05 00 00 2a 0a 00 00 f2 06 00 00 00 00 00 00 | ....................*........... |
| 19680 | 00 00 00 00 72 08 00 00 37 0e 00 00 d5 10 00 00 00 00 00 00 be 06 00 00 2c 10 00 00 00 00 00 00 | ....r...7...............,....... |
| 196a0 | 20 0d 00 00 8e 05 00 00 e5 14 00 00 e4 09 00 00 d7 0a 00 00 00 00 00 00 a8 0b 00 00 00 00 00 00 | ................................ |
| 196c0 | 51 05 00 00 03 14 00 00 00 00 00 00 df 04 00 00 1d 0e 00 00 c0 0e 00 00 5b 03 00 00 00 00 00 00 | Q.......................[....... |
| 196e0 | 00 00 00 00 32 0c 00 00 00 00 00 00 00 00 00 00 6a 15 00 00 11 16 00 00 82 14 00 00 14 05 00 00 | ....2...........j............... |
| 19700 | 06 00 00 00 b4 00 00 00 00 00 00 00 16 03 00 00 00 00 00 00 c1 08 00 00 00 00 00 00 2d 10 00 00 | ............................-... |
| 19720 | 5e 13 00 00 00 00 00 00 00 00 00 00 00 00 00 00 0f 12 00 00 e4 13 00 00 00 00 00 00 00 00 00 00 | ^............................... |
| 19740 | 00 00 00 00 67 0e 00 00 d9 0e 00 00 9b 11 00 00 93 01 00 00 2e 11 00 00 d6 05 00 00 5c 15 00 00 | ....g.......................\... |
| 19760 | c0 07 00 00 26 0e 00 00 05 0c 00 00 1d 07 00 00 ff 10 00 00 00 00 00 00 00 00 00 00 75 0c 00 00 | ....&.......................u... |
| 19780 | 11 13 00 00 02 0b 00 00 00 00 00 00 85 11 00 00 8f 0b 00 00 12 15 00 00 4c 0a 00 00 00 00 00 00 | ........................L....... |
| 197a0 | 00 00 00 00 00 00 00 00 00 00 00 00 e9 16 00 00 00 00 00 00 4d 15 00 00 c4 0f 00 00 a3 13 00 00 | ....................M........... |
| 197c0 | 2e 14 00 00 a1 0a 00 00 eb 08 00 00 21 00 00 00 cb 03 00 00 f4 16 00 00 00 00 00 00 71 07 00 00 | ............!...............q... |
| 197e0 | a6 12 00 00 26 01 00 00 00 00 00 00 00 00 00 00 f8 11 00 00 45 0b 00 00 8f 0c 00 00 00 00 00 00 | ....&...............E........... |
| 19800 | b2 0f 00 00 a2 0a 00 00 aa 12 00 00 b8 0c 00 00 5f 0f 00 00 00 00 00 00 2c 0f 00 00 00 00 00 00 | ................_.......,....... |
| 19820 | 0b 14 00 00 46 09 00 00 3c 04 00 00 ae 14 00 00 49 12 00 00 03 0d 00 00 a9 0e 00 00 22 16 00 00 | ....F...<.......I..........."... |
| 19840 | 9b 0f 00 00 05 13 00 00 57 12 00 00 fc 08 00 00 74 06 00 00 8e 10 00 00 a9 01 00 00 92 16 00 00 | ........W.......t............... |
| 19860 | 0e 09 00 00 77 10 00 00 79 01 00 00 6b 04 00 00 8c 10 00 00 9a 07 00 00 00 00 00 00 31 05 00 00 | ....w...y...k...............1... |
| 19880 | c0 11 00 00 54 02 00 00 a6 0b 00 00 00 00 00 00 00 00 00 00 38 03 00 00 aa 10 00 00 87 13 00 00 | ....T...............8........... |
| 198a0 | b6 04 00 00 00 00 00 00 b7 04 00 00 a9 14 00 00 b8 04 00 00 0a 11 00 00 60 04 00 00 a3 15 00 00 | ........................`....... |
| 198c0 | 13 0d 00 00 08 08 00 00 00 00 00 00 d3 15 00 00 e8 0b 00 00 30 0c 00 00 0e 0a 00 00 45 0f 00 00 | ....................0.......E... |
| 198e0 | 69 01 00 00 00 00 00 00 f4 04 00 00 0a 09 00 00 0c 0c 00 00 40 08 00 00 95 05 00 00 2b 07 00 00 | i...................@.......+... |
| 19900 | 6b 15 00 00 00 00 00 00 2c 0b 00 00 bc 00 00 00 9f 08 00 00 0f 14 00 00 18 0e 00 00 fc 00 00 00 | k.......,....................... |
| 19920 | 75 03 00 00 c5 0c 00 00 7d 12 00 00 04 0e 00 00 bf 0a 00 00 00 00 00 00 00 00 00 00 17 10 00 00 | u.......}....................... |
| 19940 | 81 06 00 00 3b 11 00 00 5c 02 00 00 00 00 00 00 00 00 00 00 c8 09 00 00 d3 08 00 00 ee 12 00 00 | ....;...\....................... |
| 19960 | cb 09 00 00 f2 04 00 00 8d 14 00 00 8b 00 00 00 5c 10 00 00 3e 04 00 00 c0 06 00 00 00 00 00 00 | ................\...>........... |
| 19980 | 13 10 00 00 ba 02 00 00 00 00 00 00 4d 16 00 00 ba 01 00 00 e9 13 00 00 5e 08 00 00 00 00 00 00 | ............M...........^....... |
| 199a0 | a3 00 00 00 00 00 00 00 fe 11 00 00 9e 02 00 00 56 04 00 00 f6 14 00 00 00 00 00 00 00 00 00 00 | ................V............... |
| 199c0 | 3b 00 00 00 0e 16 00 00 33 14 00 00 88 15 00 00 4d 0f 00 00 17 06 00 00 b2 14 00 00 0d 01 00 00 | ;.......3.......M............... |
| 199e0 | 15 14 00 00 2b 16 00 00 46 11 00 00 cd 16 00 00 00 00 00 00 9e 03 00 00 00 00 00 00 00 00 00 00 | ....+...F....................... |
| 19a00 | 45 08 00 00 00 00 00 00 41 16 00 00 f4 0f 00 00 39 0c 00 00 55 06 00 00 fe 0e 00 00 91 0d 00 00 | E.......A.......9...U........... |
| 19a20 | ac 12 00 00 f5 15 00 00 15 0b 00 00 b3 16 00 00 77 01 00 00 eb 13 00 00 00 00 00 00 d2 12 00 00 | ................w............... |
| 19a40 | e6 09 00 00 95 12 00 00 fa 00 00 00 91 13 00 00 00 00 00 00 00 00 00 00 f3 06 00 00 e6 11 00 00 | ................................ |
| 19a60 | 8a 00 00 00 00 00 00 00 b6 03 00 00 3e 05 00 00 09 17 00 00 f5 08 00 00 5f 16 00 00 00 00 00 00 | ............>..........._....... |
| 19a80 | 00 00 00 00 db 03 00 00 aa 15 00 00 14 01 00 00 00 00 00 00 27 00 00 00 3d 14 00 00 1e 0c 00 00 | ....................'...=....... |
| 19aa0 | 5e 15 00 00 c4 13 00 00 42 0e 00 00 00 00 00 00 51 13 00 00 00 00 00 00 c2 0b 00 00 7b 14 00 00 | ^.......B.......Q...........{... |
| 19ac0 | 00 00 00 00 fc 0b 00 00 3f 02 00 00 12 09 00 00 00 00 00 00 73 09 00 00 a0 13 00 00 14 15 00 00 | ........?...........s........... |
| 19ae0 | 0d 07 00 00 24 01 00 00 aa 02 00 00 1b 0e 00 00 f0 0f 00 00 59 03 00 00 7c 0e 00 00 a2 0c 00 00 | ....$...............Y...|....... |
| 19b00 | 53 09 00 00 fd 14 00 00 00 00 00 00 00 11 00 00 c5 16 00 00 50 00 00 00 6a 03 00 00 68 02 00 00 | S...................P...j...h... |
| 19b20 | b4 0b 00 00 69 12 00 00 00 00 00 00 2c 14 00 00 97 0b 00 00 62 09 00 00 39 14 00 00 4e 09 00 00 | ....i.......,.......b...9...N... |
| 19b40 | 0e 08 00 00 00 00 00 00 00 00 00 00 cb 13 00 00 ed 07 00 00 9c 11 00 00 c7 10 00 00 9e 11 00 00 | ................................ |
| 19b60 | 21 09 00 00 00 00 00 00 00 00 00 00 ac 0a 00 00 47 08 00 00 34 13 00 00 00 00 00 00 00 00 00 00 | !...............G...4........... |
| 19b80 | 9f 0a 00 00 c0 0a 00 00 c4 0c 00 00 25 16 00 00 58 13 00 00 00 00 00 00 00 00 00 00 ab 00 00 00 | ............%...X............... |
| 19ba0 | 9d 12 00 00 78 04 00 00 00 00 00 00 c3 03 00 00 e0 0e 00 00 c2 10 00 00 00 00 00 00 00 00 00 00 | ....x........................... |
| 19bc0 | 00 00 00 00 98 0d 00 00 0b 12 00 00 4f 02 00 00 a5 0b 00 00 7f 0f 00 00 20 14 00 00 d6 13 00 00 | ............O................... |
| 19be0 | d7 12 00 00 e2 05 00 00 fd 11 00 00 c2 13 00 00 e5 10 00 00 90 00 00 00 00 00 00 00 00 00 00 00 | ................................ |
| 19c00 | d6 0b 00 00 00 00 00 00 68 13 00 00 f4 10 00 00 3d 0c 00 00 39 05 00 00 ae 16 00 00 c8 0c 00 00 | ........h.......=...9........... |
| 19c20 | 54 09 00 00 00 00 00 00 96 07 00 00 00 00 00 00 ba 0c 00 00 cc 11 00 00 00 00 00 00 cf 04 00 00 | T............................... |
| 19c40 | f0 05 00 00 7b 09 00 00 87 03 00 00 00 00 00 00 eb 14 00 00 d4 15 00 00 e7 00 00 00 00 00 00 00 | ....{........................... |
| 19c60 | 00 00 00 00 00 00 00 00 f7 0b 00 00 00 00 00 00 f7 12 00 00 72 0f 00 00 b1 01 00 00 ee 0d 00 00 | ....................r........... |
| 19c80 | b5 07 00 00 0a 10 00 00 29 07 00 00 a1 10 00 00 00 00 00 00 f6 0f 00 00 6b 03 00 00 00 00 00 00 | ........)...............k....... |
| 19ca0 | 9e 0e 00 00 c9 14 00 00 4f 0c 00 00 1f 15 00 00 00 00 00 00 5f 08 00 00 f0 13 00 00 80 0e 00 00 | ........O..........._........... |
| 19cc0 | 00 00 00 00 d9 01 00 00 10 05 00 00 c4 15 00 00 fd 00 00 00 14 11 00 00 51 0e 00 00 36 0d 00 00 | ........................Q...6... |
| 19ce0 | 5f 07 00 00 80 01 00 00 85 08 00 00 44 0b 00 00 d0 08 00 00 13 07 00 00 81 01 00 00 00 00 00 00 | _...........D................... |
| 19d00 | 6e 16 00 00 00 00 00 00 41 14 00 00 00 00 00 00 25 12 00 00 00 00 00 00 57 05 00 00 32 13 00 00 | n.......A.......%.......W...2... |
| 19d20 | 23 0e 00 00 00 00 00 00 14 13 00 00 00 00 00 00 00 00 00 00 27 0e 00 00 56 00 00 00 f7 06 00 00 | #...................'...V....... |
| 19d40 | 3f 07 00 00 42 16 00 00 bf 16 00 00 4c 0e 00 00 e3 07 00 00 15 0d 00 00 00 00 00 00 af 16 00 00 | ?...B.......L................... |
| 19d60 | 01 09 00 00 ab 0b 00 00 cb 0e 00 00 00 00 00 00 48 07 00 00 e5 12 00 00 32 14 00 00 b4 16 00 00 | ................H.......2....... |
| 19d80 | 00 00 00 00 66 03 00 00 8c 0b 00 00 00 00 00 00 6d 07 00 00 6e 12 00 00 3e 0c 00 00 c5 0b 00 00 | ....f...........m...n...>....... |
| 19da0 | a7 02 00 00 6c 0a 00 00 68 05 00 00 00 00 00 00 21 0a 00 00 25 14 00 00 d0 02 00 00 f5 11 00 00 | ....l...h.......!...%........... |
| 19dc0 | 00 00 00 00 8a 10 00 00 0b 11 00 00 00 00 00 00 92 0f 00 00 e2 15 00 00 f2 00 00 00 bf 11 00 00 | ................................ |
| 19de0 | 53 0c 00 00 87 02 00 00 54 0c 00 00 65 10 00 00 f5 03 00 00 45 02 00 00 8c 0c 00 00 00 00 00 00 | S.......T...e.......E........... |
| 19e00 | 16 02 00 00 ab 12 00 00 00 00 00 00 00 00 00 00 53 11 00 00 f0 0a 00 00 a9 07 00 00 00 00 00 00 | ................S............... |
| 19e20 | 2e 0f 00 00 0a 02 00 00 00 00 00 00 de 08 00 00 b7 09 00 00 20 16 00 00 00 00 00 00 f2 12 00 00 | ................................ |
| 19e40 | 03 0b 00 00 00 00 00 00 32 06 00 00 2d 03 00 00 8f 07 00 00 10 06 00 00 00 00 00 00 0c 0d 00 00 | ........2...-................... |
| 19e60 | 98 0b 00 00 41 0d 00 00 07 00 00 00 10 12 00 00 d1 00 00 00 00 00 00 00 3e 0e 00 00 05 05 00 00 | ....A...................>....... |
| 19e80 | 1f 0e 00 00 00 00 00 00 81 04 00 00 00 00 00 00 4b 0a 00 00 16 0f 00 00 00 00 00 00 c3 00 00 00 | ................K............... |
| 19ea0 | 5c 16 00 00 fd 07 00 00 42 00 00 00 9a 04 00 00 46 0e 00 00 2b 0a 00 00 3f 08 00 00 e7 09 00 00 | \.......B.......F...+...?....... |
| 19ec0 | 93 0c 00 00 d5 0e 00 00 00 00 00 00 22 02 00 00 00 00 00 00 d9 07 00 00 ef 01 00 00 00 00 00 00 | ............"................... |
| 19ee0 | be 04 00 00 61 06 00 00 00 00 00 00 58 02 00 00 9b 0b 00 00 0a 0d 00 00 00 00 00 00 00 00 00 00 | ....a.......X................... |
| 19f00 | e9 01 00 00 e9 0d 00 00 00 00 00 00 ac 0e 00 00 25 06 00 00 00 00 00 00 4c 16 00 00 00 00 00 00 | ................%.......L....... |
| 19f20 | 33 09 00 00 00 00 00 00 8f 05 00 00 35 11 00 00 da 14 00 00 36 07 00 00 94 08 00 00 57 14 00 00 | 3...........5.......6.......W... |
| 19f40 | 07 08 00 00 4a 0c 00 00 c9 0e 00 00 8f 03 00 00 29 08 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | ....J...........)............... |
| 19f60 | 18 06 00 00 00 00 00 00 86 0d 00 00 8e 08 00 00 00 00 00 00 c4 14 00 00 00 00 00 00 00 00 00 00 | ................................ |
| 19f80 | 4d 01 00 00 e5 16 00 00 28 01 00 00 92 14 00 00 38 0f 00 00 0e 0e 00 00 a0 0e 00 00 61 15 00 00 | M.......(.......8...........a... |
| 19fa0 | a8 0f 00 00 5a 0b 00 00 1e 11 00 00 00 00 00 00 00 00 00 00 00 00 00 00 d3 16 00 00 3e 10 00 00 | ....Z.......................>... |
| 19fc0 | 24 14 00 00 66 10 00 00 19 11 00 00 9a 09 00 00 5d 0f 00 00 57 10 00 00 00 00 00 00 92 06 00 00 | $...f...........]...W........... |
| 19fe0 | 13 0b 00 00 da 08 00 00 80 12 00 00 99 13 00 00 f2 05 00 00 93 00 00 00 00 00 00 00 00 00 00 00 | ................................ |
| 1a000 | 00 00 00 00 ff 0e 00 00 e3 15 00 00 d1 07 00 00 d0 07 00 00 00 00 00 00 2a 15 00 00 b0 11 00 00 | ........................*....... |
| 1a020 | 87 12 00 00 d4 10 00 00 00 00 00 00 00 00 00 00 94 06 00 00 00 00 00 00 4b 16 00 00 00 00 00 00 | ........................K....... |
| 1a040 | ef 05 00 00 be 0e 00 00 00 00 00 00 00 00 00 00 32 0f 00 00 51 0a 00 00 c2 0d 00 00 e9 07 00 00 | ................2...Q........... |
| 1a060 | 25 07 00 00 00 00 00 00 71 10 00 00 d5 12 00 00 de 13 00 00 8d 16 00 00 9b 16 00 00 00 00 00 00 | %.......q....................... |
| 1a080 | 59 16 00 00 0d 09 00 00 00 00 00 00 93 13 00 00 57 09 00 00 da 07 00 00 16 07 00 00 0b 08 00 00 | Y...............W............... |
| 1a0a0 | 14 02 00 00 00 00 00 00 00 00 00 00 65 13 00 00 fc 10 00 00 55 10 00 00 00 00 00 00 23 12 00 00 | ............e.......U.......#... |
| 1a0c0 | 00 00 00 00 63 0a 00 00 11 06 00 00 00 00 00 00 7a 13 00 00 f9 0f 00 00 69 07 00 00 54 06 00 00 | ....c...........z.......i...T... |
| 1a0e0 | f3 03 00 00 1b 0c 00 00 23 08 00 00 26 08 00 00 83 0b 00 00 ca 10 00 00 0d 0c 00 00 00 00 00 00 | ........#...&................... |
| 1a100 | 08 11 00 00 00 00 00 00 e7 12 00 00 11 0d 00 00 3f 09 00 00 e8 01 00 00 d1 02 00 00 f4 08 00 00 | ................?............... |
| 1a120 | e2 10 00 00 00 00 00 00 00 00 00 00 8b 08 00 00 cf 00 00 00 d0 11 00 00 32 09 00 00 6e 0d 00 00 | ........................2...n... |
| 1a140 | 7c 04 00 00 bc 0a 00 00 f9 14 00 00 00 00 00 00 00 00 00 00 df 09 00 00 80 06 00 00 12 0f 00 00 | |............................... |
| 1a160 | 00 00 00 00 3f 15 00 00 00 00 00 00 c8 02 00 00 b2 0b 00 00 00 00 00 00 c9 05 00 00 00 00 00 00 | ....?........................... |
| 1a180 | 00 00 00 00 14 09 00 00 2f 08 00 00 65 14 00 00 ff 16 00 00 84 14 00 00 00 00 00 00 73 0f 00 00 | ......../...e...............s... |
| 1a1a0 | b6 06 00 00 89 05 00 00 ff 14 00 00 ea 14 00 00 f5 10 00 00 82 10 00 00 00 00 00 00 aa 11 00 00 | ................................ |
| 1a1c0 | 1e 08 00 00 e8 0d 00 00 8d 04 00 00 07 0e 00 00 0f 0d 00 00 8a 11 00 00 cd 10 00 00 eb 11 00 00 | ................................ |
| 1a1e0 | f1 0f 00 00 cb 01 00 00 df 06 00 00 2b 15 00 00 6c 05 00 00 2a 0c 00 00 6e 03 00 00 5e 06 00 00 | ............+...l...*...n...^... |
| 1a200 | 00 00 00 00 54 10 00 00 00 00 00 00 41 01 00 00 9f 03 00 00 4e 08 00 00 00 00 00 00 00 00 00 00 | ....T.......A.......N........... |
| 1a220 | 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 47 04 00 00 ba 07 00 00 00 00 00 00 | ....................G........... |
| 1a240 | 96 01 00 00 1a 09 00 00 f5 06 00 00 57 08 00 00 a5 03 00 00 00 00 00 00 42 06 00 00 3a 0c 00 00 | ............W...........B...:... |
| 1a260 | 5c 13 00 00 00 00 00 00 30 0e 00 00 65 06 00 00 2e 0b 00 00 c8 0a 00 00 00 00 00 00 a5 0f 00 00 | \.......0...e................... |
| 1a280 | 8e 11 00 00 ad 03 00 00 60 02 00 00 cb 00 00 00 77 06 00 00 6c 12 00 00 1c 15 00 00 46 15 00 00 | ........`.......w...l.......F... |
| 1a2a0 | 4c 10 00 00 1f 13 00 00 ef 16 00 00 0b 06 00 00 93 07 00 00 00 00 00 00 6a 10 00 00 ed 0e 00 00 | L.......................j....... |
| 1a2c0 | 00 00 00 00 00 00 00 00 d4 12 00 00 00 00 00 00 aa 00 00 00 4f 06 00 00 da 00 00 00 15 12 00 00 | ....................O........... |
| 1a2e0 | a2 12 00 00 00 00 00 00 b1 06 00 00 22 13 00 00 75 13 00 00 d5 02 00 00 00 00 00 00 00 00 00 00 | ............"...u............... |
| 1a300 | bb 01 00 00 00 00 00 00 d7 11 00 00 76 0e 00 00 00 00 00 00 00 00 00 00 cb 05 00 00 09 0d 00 00 | ............v................... |
| 1a320 | 67 07 00 00 b7 03 00 00 51 16 00 00 e9 11 00 00 8d 0f 00 00 f3 08 00 00 91 0c 00 00 00 00 00 00 | g.......Q....................... |
| 1a340 | a8 16 00 00 85 02 00 00 30 0f 00 00 00 00 00 00 00 00 00 00 70 08 00 00 00 00 00 00 e0 0f 00 00 | ........0...........p........... |
| 1a360 | 57 03 00 00 c9 12 00 00 cf 16 00 00 47 05 00 00 bf 12 00 00 00 12 00 00 fa 0e 00 00 00 00 00 00 | W...........G................... |
| 1a380 | d2 0b 00 00 1e 0e 00 00 2d 0a 00 00 00 00 00 00 90 09 00 00 9b 05 00 00 9d 07 00 00 28 00 00 00 | ........-...................(... |
| 1a3a0 | e3 06 00 00 82 02 00 00 39 07 00 00 11 15 00 00 47 10 00 00 38 0a 00 00 00 00 00 00 ab 11 00 00 | ........9.......G...8........... |
| 1a3c0 | 00 00 00 00 00 00 00 00 32 11 00 00 49 10 00 00 37 08 00 00 00 00 00 00 00 00 00 00 b6 08 00 00 | ........2...I...7............... |
| 1a3e0 | 9c 09 00 00 c0 0c 00 00 f5 01 00 00 55 07 00 00 b5 00 00 00 a6 0a 00 00 82 0b 00 00 00 00 00 00 | ............U................... |
| 1a400 | 1d 0f 00 00 00 00 00 00 e9 05 00 00 3f 14 00 00 97 05 00 00 fc 02 00 00 f1 03 00 00 00 14 00 00 | ............?................... |
| 1a420 | f7 05 00 00 41 0e 00 00 00 00 00 00 3a 13 00 00 02 06 00 00 6d 15 00 00 00 00 00 00 ce 15 00 00 | ....A.......:.......m........... |
| 1a440 | 6f 02 00 00 5d 15 00 00 61 08 00 00 00 00 00 00 a2 0d 00 00 00 00 00 00 e1 12 00 00 25 10 00 00 | o...]...a...................%... |
| 1a460 | 24 0c 00 00 00 00 00 00 00 00 00 00 ac 08 00 00 66 05 00 00 f5 14 00 00 00 00 00 00 e4 07 00 00 | $...............f............... |
| 1a480 | 00 17 00 00 aa 08 00 00 d6 00 00 00 31 04 00 00 d4 14 00 00 10 0d 00 00 62 01 00 00 00 00 00 00 | ............1...........b....... |
| 1a4a0 | 06 17 00 00 25 04 00 00 07 0c 00 00 50 02 00 00 00 00 00 00 00 00 00 00 8c 11 00 00 a0 06 00 00 | ....%.......P................... |
| 1a4c0 | 00 00 00 00 00 00 00 00 15 10 00 00 d6 03 00 00 00 00 00 00 9e 14 00 00 1c 13 00 00 76 14 00 00 | ............................v... |
| 1a4e0 | 99 15 00 00 00 00 00 00 00 0a 00 00 95 0f 00 00 45 10 00 00 54 0d 00 00 27 0d 00 00 00 00 00 00 | ................E...T...'....... |
| 1a500 | ce 0f 00 00 e0 09 00 00 00 00 00 00 00 00 00 00 4c 04 00 00 00 00 00 00 55 13 00 00 e1 0b 00 00 | ................L.......U....... |
| 1a520 | 00 00 00 00 28 15 00 00 ad 15 00 00 a0 00 00 00 c5 07 00 00 eb 09 00 00 c2 11 00 00 d3 0c 00 00 | ....(........................... |
| 1a540 | 00 00 00 00 00 00 00 00 b7 16 00 00 00 00 00 00 00 00 00 00 0c 09 00 00 dd 08 00 00 64 0e 00 00 | ............................d... |
| 1a560 | c2 08 00 00 c9 10 00 00 67 12 00 00 e9 0f 00 00 00 00 00 00 5b 0c 00 00 ed 15 00 00 ac 13 00 00 | ........g...........[........... |
| 1a580 | 00 00 00 00 00 00 00 00 00 00 00 00 0c 13 00 00 00 00 00 00 62 07 00 00 00 00 00 00 b5 03 00 00 | ....................b........... |
| 1a5a0 | 00 00 00 00 00 00 00 00 84 0b 00 00 00 00 00 00 ce 0c 00 00 93 04 00 00 de 0f 00 00 00 09 00 00 | ................................ |
| 1a5c0 | 00 00 00 00 36 04 00 00 68 14 00 00 1c 11 00 00 00 00 00 00 41 0c 00 00 25 02 00 00 6d 08 00 00 | ....6...h...........A...%...m... |
| 1a5e0 | 79 15 00 00 73 0b 00 00 00 00 00 00 e3 0c 00 00 3f 11 00 00 2b 06 00 00 00 00 00 00 b8 0f 00 00 | y...s...........?...+........... |
| 1a600 | 00 00 00 00 00 00 00 00 b7 0d 00 00 00 00 00 00 2b 11 00 00 00 00 00 00 f7 0c 00 00 6c 00 00 00 | ................+...........l... |
| 1a620 | d8 0e 00 00 b1 10 00 00 00 00 00 00 db 0c 00 00 0e 0f 00 00 00 00 00 00 cc 06 00 00 00 00 00 00 | ................................ |
| 1a640 | a4 0e 00 00 c6 09 00 00 f9 00 00 00 00 00 00 00 8a 06 00 00 ed 0c 00 00 3b 08 00 00 00 00 00 00 | ........................;....... |
| 1a660 | b4 05 00 00 37 0a 00 00 bc 05 00 00 00 00 00 00 00 00 00 00 87 10 00 00 06 04 00 00 c1 16 00 00 | ....7........................... |
| 1a680 | 4d 05 00 00 e5 15 00 00 0f 0f 00 00 35 03 00 00 97 0f 00 00 ad 0d 00 00 00 00 00 00 91 10 00 00 | M...........5................... |
| 1a6a0 | e4 11 00 00 f0 11 00 00 e2 13 00 00 62 0f 00 00 17 00 00 00 54 0f 00 00 00 00 00 00 47 0f 00 00 | ............b.......T.......G... |
| 1a6c0 | a8 00 00 00 eb 03 00 00 00 00 00 00 78 13 00 00 00 00 00 00 00 00 00 00 0b 03 00 00 b3 00 00 00 | ............x................... |
| 1a6e0 | 00 00 00 00 00 00 00 00 00 00 00 00 aa 0d 00 00 00 00 00 00 1c 10 00 00 01 0c 00 00 28 05 00 00 | ............................(... |
| 1a700 | 00 00 00 00 54 05 00 00 00 00 00 00 3a 03 00 00 00 00 00 00 00 00 00 00 00 00 00 00 69 0b 00 00 | ....T.......:...............i... |
| 1a720 | 00 00 00 00 00 00 00 00 d5 14 00 00 00 00 00 00 00 00 00 00 2a 05 00 00 b7 11 00 00 e4 15 00 00 | ....................*........... |
| 1a740 | b4 11 00 00 4c 14 00 00 68 0f 00 00 00 00 00 00 72 06 00 00 ca 04 00 00 00 00 00 00 65 0d 00 00 | ....L...h.......r...........e... |
| 1a760 | 40 04 00 00 ed 0a 00 00 00 00 00 00 00 00 00 00 81 0b 00 00 a5 04 00 00 3c 11 00 00 65 08 00 00 | @.......................<...e... |
| 1a780 | f8 0a 00 00 bc 02 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ff 03 00 00 54 15 00 00 2b 08 00 00 | ........................T...+... |
| 1a7a0 | 2d 12 00 00 52 0e 00 00 94 14 00 00 5d 16 00 00 00 00 00 00 9e 15 00 00 85 07 00 00 5d 0a 00 00 | -...R.......]...............]... |
| 1a7c0 | 41 07 00 00 00 00 00 00 b0 0c 00 00 00 00 00 00 a0 16 00 00 fa 06 00 00 f2 16 00 00 a9 00 00 00 | A............................... |
| 1a7e0 | 51 04 00 00 3e 13 00 00 28 16 00 00 00 00 00 00 eb 06 00 00 d0 05 00 00 00 00 00 00 a0 14 00 00 | Q...>...(....................... |
| 1a800 | 35 00 00 00 00 00 00 00 c4 0a 00 00 b7 0c 00 00 00 00 00 00 00 00 00 00 11 02 00 00 ce 11 00 00 | 5............................... |
| 1a820 | 00 00 00 00 00 00 00 00 18 02 00 00 aa 14 00 00 cb 15 00 00 00 00 00 00 b8 10 00 00 d1 10 00 00 | ................................ |
| 1a840 | cc 0b 00 00 19 10 00 00 00 00 00 00 60 08 00 00 00 00 00 00 75 14 00 00 a8 05 00 00 7b 02 00 00 | ............`.......u.......{... |
| 1a860 | 65 12 00 00 79 0d 00 00 d8 01 00 00 b8 00 00 00 00 00 00 00 da 13 00 00 41 02 00 00 ef 03 00 00 | e...y...................A....... |
| 1a880 | 1c 0d 00 00 0d 14 00 00 c3 12 00 00 23 14 00 00 b1 00 00 00 00 00 00 00 75 05 00 00 62 06 00 00 | ............#...........u...b... |
| 1a8a0 | 00 00 00 00 ec 13 00 00 00 00 00 00 75 0d 00 00 cd 15 00 00 8d 11 00 00 c9 00 00 00 00 00 00 00 | ............u................... |
| 1a8c0 | c8 16 00 00 00 00 00 00 30 05 00 00 88 12 00 00 96 0a 00 00 00 00 00 00 f3 0a 00 00 68 08 00 00 | ........0...................h... |
| 1a8e0 | 00 00 00 00 5d 0d 00 00 6c 0d 00 00 28 0a 00 00 02 04 00 00 af 11 00 00 00 00 00 00 d9 03 00 00 | ....]...l...(................... |
| 1a900 | f8 01 00 00 19 14 00 00 1d 03 00 00 8c 09 00 00 00 00 00 00 cd 0b 00 00 b5 0f 00 00 4e 03 00 00 | ............................N... |
| 1a920 | 31 06 00 00 f8 0e 00 00 19 13 00 00 00 00 00 00 f3 10 00 00 ea 0e 00 00 00 00 00 00 a4 11 00 00 | 1............................... |
| 1a940 | 00 00 00 00 7a 0d 00 00 fd 0f 00 00 a4 12 00 00 09 07 00 00 00 00 00 00 1a 0a 00 00 74 12 00 00 | ....z.......................t... |
| 1a960 | 85 0b 00 00 00 00 00 00 6b 0e 00 00 00 00 00 00 7c 00 00 00 b8 14 00 00 19 15 00 00 0c 08 00 00 | ........k.......|............... |
| 1a980 | 8d 09 00 00 f3 16 00 00 98 11 00 00 87 11 00 00 3f 0f 00 00 ac 02 00 00 00 00 00 00 00 00 00 00 | ................?............... |
| 1a9a0 | cd 07 00 00 06 10 00 00 78 14 00 00 00 00 00 00 b5 08 00 00 00 00 00 00 03 08 00 00 e1 01 00 00 | ........x....................... |
| 1a9c0 | ec 12 00 00 19 0f 00 00 53 0d 00 00 ec 03 00 00 ae 05 00 00 00 00 00 00 00 00 00 00 02 00 00 00 | ........S....................... |
| 1a9e0 | c3 05 00 00 c3 06 00 00 00 00 00 00 b1 0c 00 00 00 00 00 00 00 00 00 00 00 00 00 00 cd 02 00 00 | ................................ |
| 1aa00 | f0 04 00 00 ed 0d 00 00 00 00 00 00 a1 11 00 00 06 11 00 00 4f 0a 00 00 e0 16 00 00 00 00 00 00 | ....................O........... |
| 1aa20 | c1 15 00 00 e5 11 00 00 29 00 00 00 08 0a 00 00 92 13 00 00 de 0e 00 00 ca 02 00 00 18 12 00 00 | ........)....................... |
| 1aa40 | 00 00 00 00 00 00 00 00 00 00 00 00 ad 0c 00 00 e6 12 00 00 07 0d 00 00 f3 0c 00 00 f7 07 00 00 | ................................ |
| 1aa60 | c1 12 00 00 42 0f 00 00 be 13 00 00 f7 09 00 00 40 12 00 00 65 0c 00 00 2c 0d 00 00 34 0e 00 00 | ....B...........@...e...,...4... |
| 1aa80 | 1b 03 00 00 00 00 00 00 d0 0e 00 00 e4 0d 00 00 21 0e 00 00 50 0a 00 00 95 03 00 00 f7 15 00 00 | ................!...P........... |
| 1aaa0 | 8f 04 00 00 db 0f 00 00 00 00 00 00 00 00 00 00 78 06 00 00 00 00 00 00 00 00 00 00 fe 13 00 00 | ................x............... |
| 1aac0 | 5c 0b 00 00 09 0b 00 00 25 13 00 00 2a 08 00 00 c5 0d 00 00 1e 15 00 00 b4 06 00 00 00 00 00 00 | \.......%...*................... |
| 1aae0 | 6c 0f 00 00 2b 12 00 00 00 00 00 00 32 16 00 00 b3 11 00 00 00 00 00 00 1b 15 00 00 29 0b 00 00 | l...+.......2...............)... |
| 1ab00 | bf 07 00 00 be 12 00 00 bd 14 00 00 00 00 00 00 b2 05 00 00 a9 0c 00 00 d7 03 00 00 26 09 00 00 | ............................&... |
| 1ab20 | c9 0d 00 00 17 0f 00 00 00 00 00 00 a7 14 00 00 f6 0d 00 00 00 00 00 00 21 16 00 00 da 12 00 00 | ........................!....... |
| 1ab40 | 24 08 00 00 02 05 00 00 05 0d 00 00 45 16 00 00 12 00 00 00 6d 10 00 00 00 00 00 00 00 00 00 00 | $...........E.......m........... |
| 1ab60 | 00 00 00 00 1f 05 00 00 a1 16 00 00 e9 0a 00 00 ae 0a 00 00 b3 13 00 00 4a 12 00 00 00 00 00 00 | ........................J....... |
| 1ab80 | 5b 0a 00 00 47 15 00 00 cb 12 00 00 35 0a 00 00 e2 11 00 00 61 0b 00 00 00 00 00 00 16 0a 00 00 | [...G.......5.......a........... |
| 1aba0 | ec 00 00 00 24 12 00 00 c8 0d 00 00 f4 12 00 00 97 14 00 00 97 07 00 00 9e 07 00 00 52 0a 00 00 | ....$.......................R... |
| 1abc0 | 71 11 00 00 1d 09 00 00 17 11 00 00 e2 0b 00 00 42 13 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | q...............B............... |
| 1abe0 | 72 0d 00 00 00 00 00 00 b2 0a 00 00 bf 0f 00 00 00 00 00 00 ae 09 00 00 00 00 00 00 5b 0d 00 00 | r...........................[... |
| 1ac00 | 00 00 00 00 00 00 00 00 b7 05 00 00 ae 0d 00 00 0b 00 00 00 0c 15 00 00 00 00 00 00 99 0c 00 00 | ................................ |
| 1ac20 | f9 12 00 00 b8 05 00 00 ad 0f 00 00 b4 03 00 00 20 15 00 00 39 10 00 00 f8 07 00 00 00 00 00 00 | ....................9........... |
| 1ac40 | a8 13 00 00 00 00 00 00 c7 01 00 00 00 00 00 00 da 02 00 00 77 00 00 00 77 0c 00 00 4e 06 00 00 | ....................w...w...N... |
| 1ac60 | 5a 09 00 00 72 12 00 00 08 0b 00 00 02 11 00 00 4b 0d 00 00 ff 13 00 00 7f 01 00 00 75 01 00 00 | Z...r...........K...........u... |
| 1ac80 | 15 07 00 00 59 14 00 00 fb 14 00 00 d2 16 00 00 f4 03 00 00 00 00 00 00 a3 0a 00 00 83 10 00 00 | ....Y........................... |
| 1aca0 | 52 02 00 00 25 15 00 00 00 00 00 00 b5 05 00 00 00 00 00 00 a4 02 00 00 ca 0c 00 00 79 11 00 00 | R...%.......................y... |
| 1acc0 | 8c 15 00 00 30 03 00 00 c0 05 00 00 b2 02 00 00 8c 05 00 00 cc 02 00 00 04 10 00 00 15 02 00 00 | ....0........................... |
| 1ace0 | 34 0f 00 00 dd 15 00 00 01 0e 00 00 30 09 00 00 ed 01 00 00 d3 14 00 00 4d 10 00 00 2b 14 00 00 | 4...........0...........M...+... |
| 1ad00 | b6 16 00 00 00 00 00 00 96 05 00 00 b2 04 00 00 cd 06 00 00 39 04 00 00 00 00 00 00 2a 01 00 00 | ....................9.......*... |
| 1ad20 | e9 10 00 00 00 00 00 00 a7 15 00 00 29 06 00 00 e3 00 00 00 80 11 00 00 00 00 00 00 f2 10 00 00 | ............)................... |
| 1ad40 | bd 03 00 00 15 03 00 00 00 00 00 00 42 04 00 00 00 00 00 00 28 0f 00 00 d3 0e 00 00 00 00 00 00 | ............B.......(........... |
| 1ad60 | 2e 10 00 00 4d 09 00 00 00 00 00 00 60 0f 00 00 e8 06 00 00 d6 0e 00 00 06 02 00 00 00 00 00 00 | ....M.......`................... |
| 1ad80 | e3 16 00 00 77 09 00 00 00 00 00 00 50 03 00 00 8b 07 00 00 5f 05 00 00 9d 01 00 00 00 00 00 00 | ....w.......P......._........... |
| 1ada0 | a5 05 00 00 00 00 00 00 82 0e 00 00 00 00 00 00 04 0b 00 00 89 04 00 00 00 00 00 00 a7 11 00 00 | ................................ |
| 1adc0 | bf 04 00 00 b9 03 00 00 09 00 00 00 00 00 00 00 00 00 00 00 cc 0c 00 00 00 00 00 00 9f 11 00 00 | ................................ |
| 1ade0 | 86 11 00 00 00 00 00 00 00 00 00 00 00 00 00 00 02 09 00 00 b1 0f 00 00 00 00 00 00 0d 0b 00 00 | ................................ |
| 1ae00 | e0 04 00 00 2c 00 00 00 37 04 00 00 a1 05 00 00 61 00 00 00 06 07 00 00 44 13 00 00 f2 14 00 00 | ....,...7.......a.......D....... |
| 1ae20 | e8 04 00 00 ee 0a 00 00 00 00 00 00 b1 03 00 00 00 00 00 00 5f 14 00 00 82 03 00 00 ed 13 00 00 | ...................._........... |
| 1ae40 | 12 04 00 00 2f 07 00 00 d0 0d 00 00 1b 0f 00 00 ae 06 00 00 48 15 00 00 00 00 00 00 2c 09 00 00 | ..../...............H.......,... |
| 1ae60 | 89 14 00 00 4f 12 00 00 00 00 00 00 00 00 00 00 5e 00 00 00 b1 0b 00 00 00 00 00 00 00 00 00 00 | ....O...........^............... |
| 1ae80 | ec 0a 00 00 00 00 00 00 d3 0f 00 00 4e 15 00 00 d3 10 00 00 4e 13 00 00 ac 09 00 00 d9 09 00 00 | ............N.......N........... |
| 1aea0 | 11 00 00 00 b5 06 00 00 09 05 00 00 3c 13 00 00 00 00 00 00 15 0a 00 00 00 00 00 00 d9 0f 00 00 | ............<................... |
| 1aec0 | b2 00 00 00 2d 07 00 00 00 00 00 00 b9 11 00 00 66 04 00 00 dc 07 00 00 61 11 00 00 f4 07 00 00 | ....-...........f.......a....... |
| 1aee0 | 35 02 00 00 ce 0b 00 00 e4 02 00 00 69 0c 00 00 41 09 00 00 e7 0b 00 00 57 0e 00 00 00 00 00 00 | 5...........i...A.......W....... |
| 1af00 | 83 09 00 00 d1 0e 00 00 40 0a 00 00 1f 0d 00 00 aa 03 00 00 00 00 00 00 8b 10 00 00 36 00 00 00 | ........@...................6... |
| 1af20 | 93 15 00 00 7f 10 00 00 00 00 00 00 da 16 00 00 28 09 00 00 dd 13 00 00 6e 11 00 00 3c 0d 00 00 | ................(.......n...<... |
| 1af40 | 00 00 00 00 5c 0e 00 00 00 00 00 00 a8 08 00 00 17 08 00 00 0f 01 00 00 89 07 00 00 7c 0f 00 00 | ....\.......................|... |
| 1af60 | 13 0c 00 00 00 00 00 00 00 00 00 00 b4 07 00 00 f6 0c 00 00 53 05 00 00 03 0c 00 00 db 05 00 00 | ....................S........... |
| 1af80 | 49 13 00 00 00 00 00 00 00 00 00 00 b3 0d 00 00 4a 0d 00 00 6e 14 00 00 00 00 00 00 00 00 00 00 | I...............J...n........... |
| 1afa0 | 8d 12 00 00 3e 08 00 00 71 09 00 00 00 00 00 00 00 00 00 00 f6 12 00 00 00 00 00 00 92 01 00 00 | ....>...q....................... |
| 1afc0 | 46 04 00 00 00 00 00 00 ca 0e 00 00 01 15 00 00 47 14 00 00 d5 04 00 00 5e 16 00 00 17 03 00 00 | F...............G.......^....... |
| 1afe0 | 00 00 00 00 9d 16 00 00 00 00 00 00 72 16 00 00 cc 09 00 00 94 11 00 00 83 11 00 00 a9 06 00 00 | ............r................... |
| 1b000 | b8 02 00 00 00 00 00 00 e7 04 00 00 00 00 00 00 db 06 00 00 37 0d 00 00 00 00 00 00 24 16 00 00 | ....................7.......$... |
| 1b020 | c4 01 00 00 00 00 00 00 00 00 00 00 d8 06 00 00 9c 04 00 00 86 06 00 00 6a 05 00 00 ba 0b 00 00 | ........................j....... |
| 1b040 | b5 0e 00 00 00 00 00 00 8d 0d 00 00 00 00 00 00 4a 15 00 00 00 00 00 00 89 15 00 00 a7 00 00 00 | ................J............... |
| 1b060 | d2 15 00 00 00 00 00 00 20 02 00 00 73 06 00 00 73 05 00 00 00 00 00 00 7c 12 00 00 a0 15 00 00 | ............s...s.......|....... |
| 1b080 | 00 00 00 00 00 00 00 00 cd 09 00 00 d9 12 00 00 70 01 00 00 e5 0e 00 00 d0 0f 00 00 33 13 00 00 | ................p...........3... |
| 1b0a0 | ac 0d 00 00 1b 11 00 00 00 00 00 00 17 05 00 00 f7 0e 00 00 00 00 00 00 d1 0d 00 00 b4 14 00 00 | ................................ |
| 1b0c0 | f9 0c 00 00 f8 09 00 00 7a 12 00 00 eb 00 00 00 00 00 00 00 70 0c 00 00 11 0a 00 00 97 08 00 00 | ........z...........p........... |
| 1b0e0 | 00 00 00 00 13 00 00 00 00 00 00 00 80 13 00 00 00 00 00 00 8d 08 00 00 d5 05 00 00 00 00 00 00 | ................................ |
| 1b100 | 00 00 00 00 a7 13 00 00 00 00 00 00 23 0c 00 00 f9 16 00 00 00 00 00 00 a6 13 00 00 00 00 00 00 | ............#................... |
| 1b120 | c9 03 00 00 69 03 00 00 b7 02 00 00 00 00 00 00 51 15 00 00 58 06 00 00 04 00 00 00 bf 0b 00 00 | ....i...........Q...X........... |
| 1b140 | ba 14 00 00 71 0e 00 00 2f 0c 00 00 c5 0f 00 00 00 00 00 00 c5 15 00 00 3a 08 00 00 00 00 00 00 | ....q.../...............:....... |
| 1b160 | 00 00 00 00 00 00 00 00 06 16 00 00 c3 0c 00 00 00 00 00 00 00 00 00 00 00 00 00 00 9f 13 00 00 | ................................ |
| 1b180 | f0 14 00 00 8a 0a 00 00 4f 00 00 00 88 05 00 00 00 00 00 00 ec 14 00 00 00 00 00 00 a7 0c 00 00 | ........O....................... |
| 1b1a0 | 00 00 00 00 9d 0c 00 00 00 00 00 00 8b 02 00 00 00 00 00 00 00 00 00 00 00 00 00 00 55 09 00 00 | ............................U... |
| 1b1c0 | f7 00 00 00 5d 0e 00 00 00 00 00 00 00 00 00 00 44 12 00 00 00 00 00 00 84 01 00 00 00 00 00 00 | ....]...........D............... |
| 1b1e0 | a3 05 00 00 00 00 00 00 b9 0c 00 00 2d 0b 00 00 00 00 00 00 6d 0a 00 00 ea 02 00 00 aa 0c 00 00 | ............-.......m........... |
| 1b200 | d3 0a 00 00 f1 0d 00 00 d2 05 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | ................................ |
| 1b220 | 00 00 00 00 e1 04 00 00 76 16 00 00 e5 0c 00 00 e9 12 00 00 c8 15 00 00 f7 01 00 00 00 00 00 00 | ........v....................... |
| 1b240 | 00 00 00 00 91 11 00 00 68 0a 00 00 54 13 00 00 25 0b 00 00 84 15 00 00 00 00 00 00 2e 03 00 00 | ........h...T...%............... |
| 1b260 | 00 00 00 00 5b 01 00 00 b9 0f 00 00 aa 0e 00 00 d8 10 00 00 7a 05 00 00 d5 03 00 00 32 10 00 00 | ....[...............z.......2... |
| 1b280 | 00 00 00 00 94 0e 00 00 c1 0a 00 00 cc 0a 00 00 e3 10 00 00 00 00 00 00 b3 03 00 00 00 00 00 00 | ................................ |
| 1b2a0 | 8d 15 00 00 00 00 00 00 28 0d 00 00 eb 0c 00 00 e3 04 00 00 00 00 00 00 2d 02 00 00 96 06 00 00 | ........(...............-....... |
| 1b2c0 | 00 00 00 00 31 0a 00 00 00 00 00 00 a9 13 00 00 ea 11 00 00 00 00 00 00 41 11 00 00 00 00 00 00 | ....1...................A....... |
| 1b2e0 | 52 04 00 00 00 00 00 00 68 15 00 00 d0 0c 00 00 b9 05 00 00 00 00 00 00 da 03 00 00 00 00 00 00 | R.......h....................... |
| 1b300 | 6d 12 00 00 00 00 00 00 0a 0f 00 00 77 0b 00 00 77 15 00 00 3c 0f 00 00 16 0c 00 00 00 00 00 00 | m...........w...w...<........... |
| 1b320 | 3c 0c 00 00 81 03 00 00 00 00 00 00 16 14 00 00 45 11 00 00 b7 00 00 00 c0 03 00 00 81 07 00 00 | <...............E............... |
| 1b340 | e8 03 00 00 7b 13 00 00 00 00 00 00 98 14 00 00 42 0d 00 00 64 08 00 00 00 00 00 00 00 00 00 00 | ....{...........B...d........... |
| 1b360 | 88 13 00 00 00 00 00 00 5c 03 00 00 b1 11 00 00 f5 00 00 00 09 10 00 00 32 0b 00 00 00 00 00 00 | ........\...............2....... |
| 1b380 | 00 00 00 00 00 00 00 00 a5 11 00 00 00 00 00 00 fb 05 00 00 00 00 00 00 6b 02 00 00 e7 06 00 00 | ........................k....... |
| 1b3a0 | b7 0a 00 00 99 11 00 00 5f 10 00 00 00 00 00 00 00 00 00 00 94 0c 00 00 c1 0f 00 00 92 07 00 00 | ........_....................... |
| 1b3c0 | 61 01 00 00 b7 0e 00 00 e6 14 00 00 00 00 00 00 df 0f 00 00 8f 10 00 00 cf 0b 00 00 00 00 00 00 | a............................... |
| 1b3e0 | 77 0e 00 00 56 07 00 00 6d 06 00 00 e0 03 00 00 00 00 00 00 f2 02 00 00 ce 01 00 00 ff 01 00 00 | w...V...m....................... |
| 1b400 | 95 13 00 00 65 0b 00 00 00 00 00 00 4d 0c 00 00 56 03 00 00 09 0a 00 00 69 13 00 00 9c 06 00 00 | ....e.......M...V.......i....... |
| 1b420 | 00 00 00 00 22 11 00 00 fd 0a 00 00 8c 12 00 00 7a 00 00 00 3d 0d 00 00 00 00 00 00 00 00 00 00 | ...."...........z...=........... |
| 1b440 | c6 01 00 00 76 0f 00 00 48 01 00 00 71 13 00 00 00 00 00 00 f6 03 00 00 82 07 00 00 04 0c 00 00 | ....v...H...q................... |
| 1b460 | 7e 08 00 00 de 16 00 00 92 04 00 00 25 11 00 00 00 00 00 00 02 03 00 00 87 04 00 00 51 0b 00 00 | ~...........%...............Q... |
| 1b480 | 00 00 00 00 bb 0e 00 00 00 00 00 00 05 15 00 00 7f 12 00 00 00 00 00 00 90 16 00 00 f5 05 00 00 | ................................ |
| 1b4a0 | ea 05 00 00 c2 03 00 00 00 00 00 00 16 15 00 00 0a 03 00 00 81 16 00 00 06 0b 00 00 85 0d 00 00 | ................................ |
| 1b4c0 | 00 00 00 00 49 0d 00 00 b0 08 00 00 13 01 00 00 65 15 00 00 00 00 00 00 ba 05 00 00 a9 05 00 00 | ....I...........e............... |
| 1b4e0 | 91 16 00 00 a0 12 00 00 5d 14 00 00 36 11 00 00 6e 0b 00 00 00 00 00 00 52 00 00 00 0d 0f 00 00 | ........]...6...n.......R....... |
| 1b500 | 09 06 00 00 81 0c 00 00 1f 04 00 00 70 02 00 00 14 08 00 00 00 00 00 00 f1 06 00 00 00 00 00 00 | ............p................... |
| 1b520 | 92 11 00 00 ee 08 00 00 6a 14 00 00 6f 03 00 00 d4 16 00 00 83 00 00 00 5e 02 00 00 23 0f 00 00 | ........j...o...........^...#... |
| 1b540 | 00 00 00 00 9a 14 00 00 00 00 00 00 b5 01 00 00 df 0d 00 00 62 0a 00 00 00 00 00 00 76 00 00 00 | ....................b.......v... |
| 1b560 | ff 02 00 00 17 12 00 00 7e 0b 00 00 00 00 00 00 fa 07 00 00 00 00 00 00 65 16 00 00 00 00 00 00 | ........~...............e....... |
| 1b580 | ed 00 00 00 35 16 00 00 e2 0f 00 00 51 02 00 00 9c 03 00 00 33 0b 00 00 71 0d 00 00 a1 0c 00 00 | ....5.......Q.......3...q....... |
| 1b5a0 | 5a 12 00 00 ea 0c 00 00 99 05 00 00 f3 12 00 00 1c 0f 00 00 73 07 00 00 81 13 00 00 00 00 00 00 | Z...................s........... |
| 1b5c0 | 41 05 00 00 0a 0b 00 00 a2 04 00 00 23 05 00 00 f5 04 00 00 56 15 00 00 a7 0d 00 00 1e 0b 00 00 | A...........#.......V........... |
| 1b5e0 | 00 00 00 00 a0 0b 00 00 00 00 00 00 a0 01 00 00 00 00 00 00 00 00 00 00 a2 02 00 00 8c 0f 00 00 | ................................ |
| 1b600 | 24 04 00 00 43 04 00 00 e6 0e 00 00 fc 07 00 00 19 0a 00 00 7c 03 00 00 21 08 00 00 68 04 00 00 | $...C...............|...!...h... |
| 1b620 | 00 00 00 00 2d 13 00 00 00 00 00 00 54 0b 00 00 ee 13 00 00 00 00 00 00 85 15 00 00 00 00 00 00 | ....-.......T................... |
| 1b640 | 00 00 00 00 20 13 00 00 05 0f 00 00 92 0b 00 00 00 00 00 00 d9 05 00 00 3d 13 00 00 00 00 00 00 | ........................=....... |
| 1b660 | 7d 06 00 00 00 00 00 00 2a 14 00 00 cf 0e 00 00 00 00 00 00 7a 08 00 00 00 00 00 00 00 00 00 00 | }.......*...........z........... |
| 1b680 | 00 00 00 00 fa 16 00 00 1e 0a 00 00 00 00 00 00 a0 07 00 00 00 00 00 00 86 07 00 00 cf 0d 00 00 | ................................ |
| 1b6a0 | b2 0d 00 00 6a 09 00 00 6a 16 00 00 c0 02 00 00 96 04 00 00 e1 08 00 00 cb 10 00 00 70 15 00 00 | ....j...j...................p... |
| 1b6c0 | 86 03 00 00 c9 0f 00 00 29 03 00 00 2a 03 00 00 2b 03 00 00 d1 0a 00 00 ac 16 00 00 00 00 00 00 | ........)...*...+............... |
| 1b6e0 | 38 11 00 00 62 05 00 00 00 00 00 00 00 00 00 00 88 0b 00 00 28 11 00 00 e7 16 00 00 27 10 00 00 | 8...b...............(.......'... |
| 1b700 | c8 05 00 00 33 04 00 00 26 03 00 00 0f 03 00 00 28 03 00 00 fd 13 00 00 00 00 00 00 00 00 00 00 | ....3...&.......(............... |
| 1b720 | 14 07 00 00 00 00 00 00 80 04 00 00 67 06 00 00 00 00 00 00 85 09 00 00 7f 08 00 00 71 00 00 00 | ............g...............q... |
| 1b740 | 9d 11 00 00 00 00 00 00 9c 01 00 00 24 03 00 00 25 03 00 00 9f 0b 00 00 d6 10 00 00 48 10 00 00 | ............$...%...........H... |
| 1b760 | 4e 16 00 00 41 0f 00 00 d0 00 00 00 9e 00 00 00 a5 0a 00 00 ed 0b 00 00 59 08 00 00 bc 10 00 00 | N...A...................Y....... |
| 1b780 | b3 02 00 00 00 00 00 00 20 03 00 00 21 03 00 00 22 03 00 00 26 0f 00 00 00 00 00 00 4e 0c 00 00 | ............!..."...&.......N... |
| 1b7a0 | bf 05 00 00 14 16 00 00 45 13 00 00 00 00 00 00 14 0c 00 00 71 03 00 00 00 0b 00 00 d1 13 00 00 | ........E...........q........... |
| 1b7c0 | b7 14 00 00 9d 08 00 00 ed 08 00 00 ba 0f 00 00 c2 0a 00 00 53 07 00 00 5f 0a 00 00 f8 10 00 00 | ....................S..._....... |
| 1b7e0 | f3 13 00 00 e3 12 00 00 00 00 00 00 fc 11 00 00 e6 06 00 00 97 12 00 00 00 00 00 00 9c 0e 00 00 | ................................ |
| 1b800 | 48 04 00 00 00 00 00 00 ab 0e 00 00 3a 16 00 00 c1 06 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | H...........:................... |
| 1b820 | 8c 00 00 00 00 00 00 00 0a 06 00 00 34 0d 00 00 00 00 00 00 ce 00 00 00 33 03 00 00 34 02 00 00 | ............4...........3...4... |
| 1b840 | db 15 00 00 00 00 00 00 66 06 00 00 64 07 00 00 00 00 00 00 00 00 00 00 36 0c 00 00 00 00 00 00 | ........f...d...........6....... |
| 1b860 | 00 00 00 00 00 00 00 00 e1 13 00 00 76 07 00 00 25 0e 00 00 cd 0d 00 00 da 0c 00 00 00 00 00 00 | ............v...%............... |
| 1b880 | b6 12 00 00 3a 00 00 00 00 00 00 00 bf 03 00 00 00 00 00 00 00 00 00 00 28 0b 00 00 75 06 00 00 | ....:...................(...u... |
| 1b8a0 | 42 14 00 00 3e 01 00 00 00 00 00 00 a2 14 00 00 89 03 00 00 77 03 00 00 da 15 00 00 00 00 00 00 | B...>...............w........... |
| 1b8c0 | c6 14 00 00 97 10 00 00 00 00 00 00 7a 0e 00 00 14 0f 00 00 0d 0d 00 00 1e 00 00 00 7b 0f 00 00 | ............z...............{... |
| 1b8e0 | 00 00 00 00 db 11 00 00 00 00 00 00 72 13 00 00 b3 01 00 00 cc 04 00 00 8f 0a 00 00 54 16 00 00 | ............r...............T... |
| 1b900 | e0 0d 00 00 02 12 00 00 50 0d 00 00 0c 07 00 00 d9 0b 00 00 50 10 00 00 00 00 00 00 8d 10 00 00 | ........P...........P........... |
| 1b920 | 5c 14 00 00 e9 0b 00 00 00 00 00 00 00 00 00 00 00 00 00 00 06 15 00 00 c8 01 00 00 a6 05 00 00 | \............................... |
| 1b940 | 64 13 00 00 00 00 00 00 b0 04 00 00 f3 02 00 00 d8 15 00 00 78 09 00 00 ad 07 00 00 fe 06 00 00 | d...................x........... |
| 1b960 | 9a 01 00 00 3c 0b 00 00 00 00 00 00 1f 0c 00 00 f8 0d 00 00 c4 07 00 00 00 00 00 00 8b 03 00 00 | ....<........................... |
| 1b980 | b8 0d 00 00 3d 09 00 00 00 00 00 00 00 00 00 00 b1 0d 00 00 00 00 00 00 00 00 00 00 f7 02 00 00 | ....=........................... |
| 1b9a0 | dc 12 00 00 16 05 00 00 00 00 00 00 9a 0c 00 00 c0 00 00 00 00 00 00 00 54 0a 00 00 6b 08 00 00 | ........................T...k... |
| 1b9c0 | 2b 00 00 00 ba 16 00 00 00 00 00 00 d8 04 00 00 70 14 00 00 dd 0e 00 00 2e 0c 00 00 ce 06 00 00 | +...............p............... |
| 1b9e0 | 00 00 00 00 6e 09 00 00 fc 03 00 00 48 12 00 00 bc 13 00 00 cd 04 00 00 ce 0e 00 00 89 0f 00 00 | ....n.......H................... |
| 1ba00 | 6d 05 00 00 00 00 00 00 3d 10 00 00 bc 15 00 00 80 0f 00 00 4f 13 00 00 07 10 00 00 13 08 00 00 | m.......=...........O........... |
| 1ba20 | c1 0e 00 00 2f 0a 00 00 c5 00 00 00 67 11 00 00 45 03 00 00 0a 0a 00 00 36 15 00 00 04 17 00 00 | ..../.......g...E.......6....... |
| 1ba40 | 00 00 00 00 9f 09 00 00 00 00 00 00 24 02 00 00 ef 07 00 00 00 00 00 00 7c 01 00 00 00 00 00 00 | ............$...........|....... |
| 1ba60 | 80 0c 00 00 00 00 00 00 e9 04 00 00 27 02 00 00 86 0a 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | ............'................... |
| 1ba80 | 68 0d 00 00 62 02 00 00 00 00 00 00 e0 0a 00 00 00 00 00 00 00 00 00 00 0e 0b 00 00 e5 03 00 00 | h...b........................... |
| 1baa0 | 18 05 00 00 00 00 00 00 76 12 00 00 96 09 00 00 00 00 00 00 00 00 00 00 00 00 00 00 43 12 00 00 | ........v...................C... |
| 1bac0 | 4c 0c 00 00 40 0c 00 00 ac 15 00 00 00 00 00 00 83 14 00 00 5b 12 00 00 7e 03 00 00 00 00 00 00 | L...@...............[...~....... |
| 1bae0 | 3c 08 00 00 19 0d 00 00 9b 06 00 00 00 00 00 00 b1 09 00 00 00 00 00 00 73 02 00 00 00 00 00 00 | <.......................s....... |
| 1bb00 | 38 0e 00 00 00 00 00 00 d8 0a 00 00 6a 04 00 00 48 03 00 00 ff 0f 00 00 00 00 00 00 d0 16 00 00 | 8...........j...H............... |
| 1bb20 | b9 00 00 00 4a 0b 00 00 00 00 00 00 8e 12 00 00 00 00 00 00 c3 10 00 00 00 00 00 00 85 03 00 00 | ....J........................... |
| 1bb40 | 40 15 00 00 41 00 00 00 d4 0d 00 00 00 00 00 00 59 13 00 00 04 0a 00 00 80 05 00 00 00 00 00 00 | @...A...........Y............... |
| 1bb60 | 44 02 00 00 a4 0a 00 00 94 03 00 00 9f 00 00 00 b9 02 00 00 0a 00 00 00 2d 16 00 00 05 16 00 00 | D.......................-....... |
| 1bb80 | 77 02 00 00 82 13 00 00 5b 05 00 00 0d 0e 00 00 3e 14 00 00 00 00 00 00 21 0b 00 00 12 0c 00 00 | w.......[.......>.......!....... |
| 1bba0 | 5e 10 00 00 04 14 00 00 00 00 00 00 ff 0d 00 00 63 02 00 00 a4 10 00 00 3f 01 00 00 90 15 00 00 | ^...............c.......?....... |
| 1bbc0 | 00 00 00 00 00 00 00 00 00 00 00 00 08 06 00 00 3b 13 00 00 fc 16 00 00 00 00 00 00 83 0c 00 00 | ................;............... |
| 1bbe0 | d6 0d 00 00 c0 0d 00 00 89 06 00 00 20 05 00 00 58 0b 00 00 00 00 00 00 00 00 00 00 84 11 00 00 | ................X............... |
| 1bc00 | c7 15 00 00 75 11 00 00 00 00 00 00 00 00 00 00 bf 01 00 00 0e 14 00 00 ad 0a 00 00 8c 07 00 00 | ....u........................... |
| 1bc20 | 44 0a 00 00 00 00 00 00 00 00 00 00 00 00 00 00 b2 16 00 00 9b 0e 00 00 2c 13 00 00 00 00 00 00 | D.......................,....... |
| 1bc40 | 48 0e 00 00 84 04 00 00 70 05 00 00 a6 0f 00 00 a8 04 00 00 35 06 00 00 b1 13 00 00 d6 08 00 00 | H.......p...........5........... |
| 1bc60 | 7d 08 00 00 03 03 00 00 2a 0b 00 00 fb 12 00 00 e6 01 00 00 0b 0e 00 00 d2 00 00 00 00 00 00 00 | }.......*....................... |
| 1bc80 | 00 00 00 00 24 15 00 00 44 14 00 00 00 00 00 00 cd 0a 00 00 54 00 00 00 07 17 00 00 89 0a 00 00 | ....$...D...........T........... |
| 1bca0 | 72 14 00 00 00 00 00 00 bd 12 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | r............................... |
| 1bcc0 | 6c 06 00 00 e7 07 00 00 00 00 00 00 33 0f 00 00 20 04 00 00 00 00 00 00 23 0b 00 00 b4 02 00 00 | l...........3...........#....... |
| 1bce0 | 9b 15 00 00 d2 02 00 00 00 00 00 00 05 02 00 00 62 0b 00 00 81 0a 00 00 34 10 00 00 10 13 00 00 | ................b.......4....... |
| 1bd00 | d4 08 00 00 c7 0d 00 00 c9 11 00 00 00 00 00 00 42 08 00 00 38 09 00 00 00 00 00 00 00 00 00 00 | ................B...8........... |
| 1bd20 | 02 01 00 00 00 00 00 00 00 00 00 00 df 0e 00 00 62 10 00 00 2b 09 00 00 5a 15 00 00 0c 12 00 00 | ................b...+...Z....... |
| 1bd40 | 04 01 00 00 fa 04 00 00 8c 02 00 00 00 00 00 00 ed 12 00 00 00 00 00 00 5e 11 00 00 d3 0b 00 00 | ........................^....... |
| 1bd60 | 04 16 00 00 8e 0a 00 00 14 12 00 00 bd 0a 00 00 8f 13 00 00 05 06 00 00 00 00 00 00 00 00 00 00 | ................................ |
| 1bd80 | 5f 0e 00 00 d2 09 00 00 00 00 00 00 7d 0c 00 00 d6 12 00 00 fc 05 00 00 ea 15 00 00 1f 11 00 00 | _...........}................... |
| 1bda0 | 00 00 00 00 15 00 00 00 00 00 00 00 00 00 00 00 49 0a 00 00 04 04 00 00 00 00 00 00 36 08 00 00 | ................I...........6... |
| 1bdc0 | 00 00 00 00 ff 07 00 00 a2 15 00 00 cc 10 00 00 16 12 00 00 58 05 00 00 76 06 00 00 48 14 00 00 | ....................X...v...H... |
| 1bde0 | 0e 0d 00 00 be 0d 00 00 3d 0f 00 00 43 02 00 00 f1 15 00 00 90 0b 00 00 3c 10 00 00 00 00 00 00 | ........=...C...........<....... |
| 1be00 | 00 00 00 00 00 00 00 00 c7 02 00 00 ea 08 00 00 6e 06 00 00 dd 04 00 00 32 02 00 00 46 08 00 00 | ................n.......2...F... |
| 1be20 | 00 00 00 00 a1 0e 00 00 f9 08 00 00 5d 12 00 00 2e 01 00 00 b8 07 00 00 90 0c 00 00 9e 0d 00 00 | ............]................... |
| 1be40 | da 0a 00 00 e3 02 00 00 00 00 00 00 eb 0f 00 00 58 15 00 00 ee 04 00 00 00 00 00 00 f6 02 00 00 | ................X............... |
| 1be60 | c4 08 00 00 f3 0f 00 00 a8 12 00 00 74 0f 00 00 e4 01 00 00 01 0a 00 00 60 0d 00 00 2c 0a 00 00 | ............t...........`...,... |
| 1be80 | 2d 04 00 00 00 00 00 00 06 0a 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ba 13 00 00 ed 04 00 00 | -............................... |
| 1bea0 | c5 03 00 00 52 16 00 00 26 13 00 00 00 00 00 00 e7 01 00 00 8a 15 00 00 c4 03 00 00 98 15 00 00 | ....R...&....................... |
| 1bec0 | 8b 14 00 00 06 03 00 00 00 00 00 00 58 04 00 00 89 12 00 00 3e 06 00 00 00 00 00 00 04 07 00 00 | ............X.......>........... |
| 1bee0 | 87 0d 00 00 cd 0c 00 00 00 00 00 00 ba 08 00 00 9f 12 00 00 79 06 00 00 48 16 00 00 f9 10 00 00 | ....................y...H....... |
| 1bf00 | 00 00 00 00 00 00 00 00 3b 0e 00 00 00 00 00 00 93 16 00 00 62 0c 00 00 b9 01 00 00 96 0b 00 00 | ........;...........b........... |
| 1bf20 | 00 00 00 00 00 00 00 00 59 09 00 00 00 00 00 00 d0 10 00 00 00 00 00 00 f1 14 00 00 46 0b 00 00 | ........Y...................F... |
| 1bf40 | 55 12 00 00 00 00 00 00 b1 05 00 00 00 00 00 00 a1 0d 00 00 55 05 00 00 28 13 00 00 27 15 00 00 | U...................U...(...'... |
| 1bf60 | c6 00 00 00 19 0e 00 00 d7 10 00 00 f2 01 00 00 b2 01 00 00 00 00 00 00 f1 07 00 00 13 02 00 00 | ................................ |
| 1bf80 | 28 06 00 00 fe 03 00 00 e1 05 00 00 f9 0b 00 00 d6 16 00 00 00 00 00 00 08 14 00 00 ca 01 00 00 | (............................... |
| 1bfa0 | 8c 01 00 00 21 12 00 00 ff 0a 00 00 e2 12 00 00 c4 00 00 00 45 14 00 00 63 11 00 00 00 00 00 00 | ....!...............E...c....... |
| 1bfc0 | f6 06 00 00 2b 0c 00 00 b8 03 00 00 57 01 00 00 80 14 00 00 00 00 00 00 00 00 00 00 6c 08 00 00 | ....+.......W...............l... |
| 1bfe0 | 13 0a 00 00 00 00 00 00 97 04 00 00 1a 04 00 00 4d 07 00 00 29 0e 00 00 ef 0d 00 00 9c 14 00 00 | ................M...)........... |
| 1c000 | 99 04 00 00 76 13 00 00 8b 13 00 00 a3 12 00 00 b9 12 00 00 40 09 00 00 72 11 00 00 37 12 00 00 | ....v...............@...r...7... |
| 1c020 | 00 00 00 00 92 0a 00 00 00 00 00 00 aa 0b 00 00 5a 01 00 00 03 05 00 00 44 07 00 00 02 10 00 00 | ................Z.......D....... |
| 1c040 | db 0b 00 00 9b 12 00 00 00 00 00 00 00 00 00 00 8b 01 00 00 f9 04 00 00 36 12 00 00 6b 0c 00 00 | ........................6...k... |
| 1c060 | e0 07 00 00 00 00 00 00 f6 0a 00 00 00 00 00 00 00 00 00 00 e8 00 00 00 11 0c 00 00 00 00 00 00 | ................................ |
| 1c080 | e2 02 00 00 21 07 00 00 a8 0c 00 00 59 15 00 00 ff 15 00 00 b3 14 00 00 1e 12 00 00 57 00 00 00 | ....!.......Y...............W... |
| 1c0a0 | 1a 06 00 00 00 00 00 00 29 09 00 00 c6 08 00 00 00 00 00 00 a4 0c 00 00 b6 00 00 00 6c 02 00 00 | ........)...................l... |
| 1c0c0 | 31 0d 00 00 4e 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 60 07 00 00 | 1...N.......................`... |
| 1c0e0 | 98 13 00 00 da 04 00 00 f9 15 00 00 75 0a 00 00 ea 0b 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | ............u................... |
| 1c100 | 58 03 00 00 49 04 00 00 00 00 00 00 de 0a 00 00 ca 16 00 00 29 11 00 00 4f 04 00 00 de 01 00 00 | X...I...............)...O....... |
| 1c120 | 94 02 00 00 01 07 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 d6 04 00 00 db 09 00 00 | ................................ |
| 1c140 | 8c 08 00 00 38 0d 00 00 00 00 00 00 25 0d 00 00 25 0a 00 00 11 14 00 00 00 00 00 00 70 11 00 00 | ....8.......%...%...........p... |
| 1c160 | c5 0e 00 00 2c 04 00 00 8d 02 00 00 e4 10 00 00 fe 0d 00 00 c0 0f 00 00 98 01 00 00 ee 01 00 00 | ....,........................... |
| 1c180 | 00 00 00 00 53 15 00 00 1d 0b 00 00 00 00 00 00 28 04 00 00 00 00 00 00 05 12 00 00 97 03 00 00 | ....S...........(............... |
| 1c1a0 | 0a 12 00 00 2b 0d 00 00 5a 0a 00 00 00 00 00 00 1c 04 00 00 c2 0e 00 00 00 00 00 00 00 00 00 00 | ....+...Z....................... |
| 1c1c0 | 97 13 00 00 00 00 00 00 00 00 00 00 12 10 00 00 7d 03 00 00 bb 05 00 00 26 0c 00 00 79 10 00 00 | ................}.......&...y... |
| 1c1e0 | 00 00 00 00 ea 12 00 00 00 00 00 00 08 09 00 00 2f 01 00 00 35 0d 00 00 1c 08 00 00 9d 0d 00 00 | ................/...5........... |
| 1c200 | 92 09 00 00 e1 0e 00 00 00 00 00 00 00 00 00 00 94 0d 00 00 95 04 00 00 00 00 00 00 59 07 00 00 | ............................Y... |
| 1c220 | b8 06 00 00 00 00 00 00 85 00 00 00 7d 02 00 00 30 01 00 00 9a 03 00 00 62 14 00 00 6d 13 00 00 | ............}...0.......b...m... |
| 1c240 | a0 0d 00 00 50 04 00 00 00 00 00 00 00 00 00 00 46 12 00 00 a5 15 00 00 b5 09 00 00 a9 16 00 00 | ....P...........F............... |
| 1c260 | 3a 06 00 00 64 00 00 00 a7 07 00 00 00 00 00 00 c6 06 00 00 00 00 00 00 00 00 00 00 3d 16 00 00 | :...d.......................=... |
| 1c280 | d8 14 00 00 c0 12 00 00 b0 06 00 00 b5 10 00 00 fc 0d 00 00 db 02 00 00 fd 09 00 00 8b 05 00 00 | ................................ |
| 1c2a0 | a6 15 00 00 7d 07 00 00 7e 07 00 00 6f 0a 00 00 5a 0d 00 00 7e 14 00 00 64 03 00 00 12 05 00 00 | ....}...~...o...Z...~...d....... |
| 1c2c0 | 08 0c 00 00 00 00 00 00 38 08 00 00 6a 08 00 00 00 00 00 00 00 00 00 00 b7 0b 00 00 00 00 00 00 | ........8...j................... |
| 1c2e0 | 00 00 00 00 69 15 00 00 00 00 00 00 1a 13 00 00 83 07 00 00 f6 16 00 00 00 00 00 00 ab 06 00 00 | ....i........................... |
| 1c300 | 00 00 00 00 00 00 00 00 e4 12 00 00 b6 0f 00 00 63 03 00 00 00 00 00 00 00 00 00 00 a2 13 00 00 | ................c............... |
| 1c320 | 3a 0b 00 00 d0 06 00 00 67 15 00 00 00 00 00 00 00 00 00 00 00 00 00 00 5b 16 00 00 14 0e 00 00 | :.......g...............[....... |
| 1c340 | 9e 06 00 00 00 00 00 00 07 04 00 00 1a 03 00 00 df 0b 00 00 e0 02 00 00 00 00 00 00 00 00 00 00 | ................................ |
| 1c360 | 6b 01 00 00 05 0a 00 00 00 00 00 00 18 01 00 00 df 07 00 00 16 00 00 00 00 00 00 00 00 00 00 00 | k............................... |
| 1c380 | 83 08 00 00 00 00 00 00 ba 0a 00 00 bb 14 00 00 6d 00 00 00 e1 16 00 00 f1 02 00 00 4c 0f 00 00 | ................m...........L... |
| 1c3a0 | b6 05 00 00 00 00 00 00 e0 15 00 00 a8 15 00 00 c3 01 00 00 4a 07 00 00 00 00 00 00 0b 09 00 00 | ....................J........... |
| 1c3c0 | d4 07 00 00 00 00 00 00 00 00 00 00 73 0a 00 00 44 00 00 00 ef 08 00 00 d3 04 00 00 1f 02 00 00 | ............s...D............... |
| 1c3e0 | 5e 04 00 00 ef 12 00 00 00 00 00 00 48 00 00 00 63 0d 00 00 00 00 00 00 ec 0d 00 00 83 02 00 00 | ^...........H...c............... |
| 1c400 | cb 16 00 00 7f 09 00 00 0f 08 00 00 b0 10 00 00 c7 08 00 00 73 13 00 00 86 0b 00 00 c6 0a 00 00 | ....................s........... |
| 1c420 | 1f 03 00 00 51 0d 00 00 00 00 00 00 59 0e 00 00 59 01 00 00 49 0f 00 00 88 04 00 00 00 00 00 00 | ....Q.......Y...Y...I........... |
| 1c440 | 1c 0a 00 00 45 0d 00 00 6e 10 00 00 20 08 00 00 26 07 00 00 00 00 00 00 ee 0b 00 00 ca 15 00 00 | ....E...n.......&............... |
| 1c460 | 00 00 00 00 46 0a 00 00 39 06 00 00 0b 0f 00 00 68 10 00 00 0b 0d 00 00 3d 11 00 00 00 00 00 00 | ....F...9.......h.......=....... |
| 1c480 | 42 0a 00 00 60 03 00 00 27 03 00 00 f3 14 00 00 a6 00 00 00 aa 06 00 00 ed 05 00 00 83 16 00 00 | B...`...'....................... |
| 1c4a0 | 00 00 00 00 8a 01 00 00 92 0d 00 00 07 01 00 00 5a 0e 00 00 3e 07 00 00 2b 02 00 00 79 13 00 00 | ................Z...>...+...y... |
| 1c4c0 | 5a 07 00 00 51 06 00 00 cf 02 00 00 8d 0c 00 00 e7 02 00 00 a1 01 00 00 ed 16 00 00 3f 04 00 00 | Z...Q.......................?... |
| 1c4e0 | 7d 0f 00 00 00 00 00 00 3f 06 00 00 fe 05 00 00 46 14 00 00 9f 0d 00 00 72 0b 00 00 7e 0d 00 00 | }.......?.......F.......r...~... |
| 1c500 | 23 03 00 00 00 00 00 00 00 00 00 00 e3 0f 00 00 68 01 00 00 36 10 00 00 6e 0a 00 00 2d 00 00 00 | #...............h...6...n...-... |
| 1c520 | 9c 0c 00 00 59 05 00 00 aa 09 00 00 78 0b 00 00 8f 06 00 00 e3 09 00 00 c2 04 00 00 6f 0f 00 00 | ....Y.......x...............o... |
| 1c540 | 60 11 00 00 82 08 00 00 75 0e 00 00 e8 07 00 00 7e 13 00 00 70 00 00 00 50 07 00 00 00 00 00 00 | `.......u.......~...p...P....... |
| 1c560 | 12 16 00 00 00 00 00 00 00 00 00 00 f7 14 00 00 44 04 00 00 ce 02 00 00 42 01 00 00 00 00 00 00 | ................D.......B....... |
| 1c580 | 00 00 00 00 0e 12 00 00 b9 06 00 00 0e 0c 00 00 cc 01 00 00 00 00 00 00 55 02 00 00 8c 0d 00 00 | ........................U....... |
| 1c5a0 | 9f 0c 00 00 00 00 00 00 9a 13 00 00 af 0b 00 00 19 05 00 00 d2 06 00 00 00 00 00 00 00 00 00 00 | ................................ |
| 1c5c0 | 7d 0d 00 00 ca 09 00 00 00 00 00 00 95 15 00 00 3b 01 00 00 59 00 00 00 55 08 00 00 6e 07 00 00 | }...............;...Y...U...n... |
| 1c5e0 | 34 04 00 00 e3 0a 00 00 58 07 00 00 8d 01 00 00 00 00 00 00 90 04 00 00 00 00 00 00 22 09 00 00 | 4.......X..................."... |
| 1c600 | 04 06 00 00 c6 03 00 00 00 00 00 00 00 00 00 00 7d 15 00 00 1e 10 00 00 0c 01 00 00 00 00 00 00 | ................}............... |
| 1c620 | 00 00 00 00 11 09 00 00 57 0f 00 00 ab 0d 00 00 9b 04 00 00 00 00 00 00 c4 12 00 00 00 00 00 00 | ........W....................... |
| 1c640 | 00 00 00 00 2e 16 00 00 85 12 00 00 77 0f 00 00 19 08 00 00 74 02 00 00 4a 10 00 00 c3 0f 00 00 | ............w.......t...J....... |
| 1c660 | a7 05 00 00 f8 0f 00 00 00 00 00 00 00 00 00 00 00 00 00 00 0b 05 00 00 00 00 00 00 19 0c 00 00 | ................................ |
| 1c680 | 5b 07 00 00 58 09 00 00 21 06 00 00 85 14 00 00 9f 14 00 00 00 00 00 00 07 13 00 00 00 00 00 00 | [...X...!....................... |
| 1c6a0 | 39 0a 00 00 be 07 00 00 8e 03 00 00 00 00 00 00 d7 05 00 00 e2 06 00 00 df 15 00 00 00 00 00 00 | 9............................... |
| 1c6c0 | 01 08 00 00 c1 0c 00 00 00 00 00 00 fd 02 00 00 80 00 00 00 df 14 00 00 6f 0d 00 00 00 00 00 00 | ........................o....... |
| 1c6e0 | eb 02 00 00 33 01 00 00 c8 03 00 00 50 11 00 00 34 08 00 00 00 10 00 00 36 06 00 00 00 00 00 00 | ....3.......P...4.......6....... |
| 1c700 | fa 0f 00 00 19 03 00 00 f4 00 00 00 e2 09 00 00 91 14 00 00 00 00 00 00 46 10 00 00 f7 08 00 00 | ........................F....... |
| 1c720 | 8d 05 00 00 1f 16 00 00 55 00 00 00 19 01 00 00 35 0b 00 00 1e 0f 00 00 00 00 00 00 b4 13 00 00 | ........U.......5............... |
| 1c740 | fb 11 00 00 00 00 00 00 d2 11 00 00 a7 08 00 00 8a 0f 00 00 3e 12 00 00 00 00 00 00 92 05 00 00 | ....................>........... |
| 1c760 | cd 03 00 00 b0 0f 00 00 c4 06 00 00 1a 01 00 00 e0 13 00 00 a1 00 00 00 7c 14 00 00 1c 02 00 00 | ........................|....... |
| 1c780 | 31 09 00 00 2e 07 00 00 56 09 00 00 4c 12 00 00 5f 06 00 00 95 16 00 00 49 0e 00 00 72 05 00 00 | 1.......V...L..._.......I...r... |
| 1c7a0 | 98 16 00 00 bd 16 00 00 88 06 00 00 ca 07 00 00 f2 03 00 00 da 11 00 00 52 0d 00 00 00 00 00 00 | ........................R....... |
| 1c7c0 | 00 00 00 00 a1 12 00 00 b0 0e 00 00 3e 0b 00 00 dd 02 00 00 f5 0a 00 00 54 0e 00 00 cb 14 00 00 | ............>...........T....... |
| 1c7e0 | c6 0f 00 00 d5 11 00 00 a3 11 00 00 00 00 00 00 00 00 00 00 00 00 00 00 d4 01 00 00 c5 14 00 00 | ................................ |
| 1c800 | 82 0a 00 00 69 09 00 00 00 00 00 00 1e 13 00 00 b6 09 00 00 00 00 00 00 3c 15 00 00 30 07 00 00 | ....i...................<...0... |
| 1c820 | 07 16 00 00 00 00 00 00 76 15 00 00 24 05 00 00 f0 12 00 00 2a 12 00 00 00 00 00 00 4b 06 00 00 | ........v...$.......*.......K... |
| 1c840 | fb 08 00 00 e0 05 00 00 6b 10 00 00 8b 0f 00 00 88 14 00 00 e6 05 00 00 00 00 00 00 ae 01 00 00 | ........k....................... |
| 1c860 | b5 12 00 00 8a 16 00 00 11 11 00 00 51 11 00 00 98 09 00 00 ee 02 00 00 ba 00 00 00 f7 10 00 00 | ............Q................... |
| 1c880 | 27 11 00 00 d2 0e 00 00 92 08 00 00 3e 00 00 00 fb 07 00 00 9b 08 00 00 9e 13 00 00 00 00 00 00 | '...........>................... |
| 1c8a0 | 81 05 00 00 ad 09 00 00 34 00 00 00 9c 00 00 00 ad 0b 00 00 a2 0b 00 00 8a 14 00 00 02 0e 00 00 | ........4....................... |
| 1c8c0 | 40 00 00 00 ee 07 00 00 7c 13 00 00 00 00 00 00 d3 0d 00 00 00 00 00 00 1b 08 00 00 00 00 00 00 | @.......|....................... |
| 1c8e0 | 1f 12 00 00 cc 12 00 00 76 0b 00 00 00 00 00 00 00 00 00 00 f0 15 00 00 0c 06 00 00 f2 15 00 00 | ........v....................... |
| 1c900 | 00 00 00 00 00 00 00 00 cd 08 00 00 00 00 00 00 23 02 00 00 56 0a 00 00 bd 13 00 00 37 0b 00 00 | ................#...V.......7... |
| 1c920 | e6 07 00 00 09 0e 00 00 d5 00 00 00 f7 0f 00 00 7b 16 00 00 bb 16 00 00 68 11 00 00 00 00 00 00 | ................{.......h....... |
| 1c940 | 2f 13 00 00 00 00 00 00 00 00 00 00 e1 03 00 00 00 00 00 00 00 00 00 00 89 0d 00 00 3b 0d 00 00 | /...........................;... |
| 1c960 | a2 03 00 00 63 15 00 00 6a 11 00 00 82 0c 00 00 7f 05 00 00 5a 11 00 00 cc 05 00 00 c7 0c 00 00 | ....c...j...........Z........... |
| 1c980 | 00 00 00 00 fb 13 00 00 00 00 00 00 00 00 00 00 fd 04 00 00 00 00 00 00 00 00 00 00 e6 0c 00 00 | ................................ |
| 1c9a0 | eb 0d 00 00 00 00 00 00 74 04 00 00 00 00 00 00 47 0d 00 00 00 00 00 00 5a 03 00 00 7e 05 00 00 | ........t.......G.......Z...~... |
| 1c9c0 | 00 00 00 00 6c 15 00 00 e4 0c 00 00 00 00 00 00 00 00 00 00 00 00 00 00 82 16 00 00 00 00 00 00 | ....l........................... |
| 1c9e0 | 10 16 00 00 00 00 00 00 3b 05 00 00 00 00 00 00 2b 0e 00 00 98 0a 00 00 c6 0e 00 00 b1 0e 00 00 | ........;.......+............... |
| 1ca00 | 9b 13 00 00 00 00 00 00 7a 07 00 00 3b 0a 00 00 70 12 00 00 f4 0b 00 00 41 15 00 00 f4 02 00 00 | ........z...;...p.......A....... |
| 1ca20 | 2e 00 00 00 dd 0a 00 00 7b 07 00 00 e2 00 00 00 00 00 00 00 0c 0e 00 00 91 01 00 00 cd 05 00 00 | ........{....................... |
| 1ca40 | 5a 0c 00 00 35 09 00 00 02 07 00 00 01 10 00 00 00 00 00 00 45 15 00 00 c0 15 00 00 1d 00 00 00 | Z...5...............E........... |
| 1ca60 | 00 00 00 00 06 13 00 00 9d 0b 00 00 1c 12 00 00 24 11 00 00 9f 15 00 00 11 10 00 00 06 12 00 00 | ................$............... |
| 1ca80 | 90 11 00 00 cf 14 00 00 00 00 00 00 db 0a 00 00 16 09 00 00 7c 0a 00 00 00 00 00 00 4f 07 00 00 | ....................|.......O... |
| 1caa0 | 54 08 00 00 00 00 00 00 07 05 00 00 55 14 00 00 2a 0e 00 00 c9 01 00 00 00 00 00 00 c6 07 00 00 | T...........U...*............... |
| 1cac0 | 81 11 00 00 00 00 00 00 00 00 00 00 09 09 00 00 fe 01 00 00 00 00 00 00 00 00 00 00 51 14 00 00 | ............................Q... |
| 1cae0 | 87 06 00 00 ba 11 00 00 00 00 00 00 b2 10 00 00 f8 02 00 00 18 14 00 00 00 00 00 00 1f 0a 00 00 | ................................ |
| 1cb00 | d8 0c 00 00 3c 12 00 00 87 09 00 00 00 00 00 00 dc 0e 00 00 00 00 00 00 d2 01 00 00 eb 0e 00 00 | ....<........................... |
| 1cb20 | d6 07 00 00 a4 16 00 00 00 15 00 00 62 16 00 00 af 03 00 00 6c 10 00 00 00 00 00 00 b9 0d 00 00 | ............b.......l........... |
| 1cb40 | de 0c 00 00 41 13 00 00 a2 08 00 00 00 00 00 00 3e 0f 00 00 8e 14 00 00 e7 03 00 00 4e 14 00 00 | ....A...........>...........N... |
| 1cb60 | 8d 13 00 00 46 02 00 00 00 00 00 00 00 00 00 00 6e 05 00 00 95 0e 00 00 42 07 00 00 a8 07 00 00 | ....F...........n.......B....... |
| 1cb80 | 00 00 00 00 2f 15 00 00 00 00 00 00 fe 0f 00 00 00 00 00 00 d8 00 00 00 e7 0f 00 00 00 00 00 00 | ..../........................... |
| 1cba0 | 00 00 00 00 00 00 00 00 47 12 00 00 00 00 00 00 1b 0a 00 00 db 07 00 00 00 00 00 00 f8 00 00 00 | ........G....................... |
| 1cbc0 | 6a 0e 00 00 bd 07 00 00 4a 01 00 00 4b 0c 00 00 19 02 00 00 95 08 00 00 62 0d 00 00 c3 0e 00 00 | j.......J...K...........b....... |
| 1cbe0 | 4c 08 00 00 c8 0e 00 00 3c 06 00 00 b6 02 00 00 00 00 00 00 f4 15 00 00 d4 11 00 00 1a 11 00 00 | L.......<....................... |
| 1cc00 | 7d 01 00 00 00 00 00 00 d3 05 00 00 b0 03 00 00 ed 09 00 00 00 00 00 00 2e 02 00 00 37 09 00 00 | }...........................7... |
| 1cc20 | 00 00 00 00 88 09 00 00 b5 16 00 00 00 00 00 00 90 10 00 00 5c 0d 00 00 d3 01 00 00 b0 0b 00 00 | ....................\........... |
| 1cc40 | ed 11 00 00 5f 13 00 00 00 00 00 00 d0 14 00 00 4b 05 00 00 00 00 00 00 a0 05 00 00 00 00 00 00 | ...._...........K............... |
| 1cc60 | 7c 16 00 00 64 0c 00 00 97 0d 00 00 00 00 00 00 bf 10 00 00 95 0a 00 00 65 0e 00 00 00 00 00 00 | |...d...................e....... |
| 1cc80 | 50 13 00 00 a4 04 00 00 19 04 00 00 9b 02 00 00 6f 0c 00 00 8a 0b 00 00 1c 09 00 00 1c 06 00 00 | P...............o............... |
| 1cca0 | 00 00 00 00 bb 04 00 00 e0 08 00 00 9d 09 00 00 84 16 00 00 9c 0f 00 00 00 00 00 00 1b 06 00 00 | ................................ |
| 1ccc0 | f8 16 00 00 00 00 00 00 a9 12 00 00 bd 09 00 00 6f 07 00 00 0d 16 00 00 00 00 00 00 4e 12 00 00 | ................o...........N... |
| 1cce0 | fe 04 00 00 ee 09 00 00 6a 0f 00 00 00 00 00 00 00 00 00 00 cf 10 00 00 00 00 00 00 3a 10 00 00 | ........j...................:... |
| 1cd00 | 6d 01 00 00 00 00 00 00 b4 10 00 00 00 00 00 00 72 04 00 00 4f 08 00 00 5f 00 00 00 d3 03 00 00 | m...............r...O..._....... |
| 1cd20 | 97 01 00 00 0b 0b 00 00 6b 00 00 00 00 00 00 00 3f 10 00 00 00 00 00 00 dc 10 00 00 73 10 00 00 | ........k.......?...........s... |
| 1cd40 | 27 06 00 00 bc 0d 00 00 4c 03 00 00 b6 13 00 00 14 00 00 00 94 0f 00 00 14 14 00 00 c2 0c 00 00 | '.......L....................... |
| 1cd60 | e4 08 00 00 96 03 00 00 00 00 00 00 00 00 00 00 7a 10 00 00 e8 05 00 00 6e 0f 00 00 00 00 00 00 | ................z.......n....... |
| 1cd80 | cc 03 00 00 00 00 00 00 b7 12 00 00 b7 07 00 00 00 00 00 00 e9 09 00 00 ad 05 00 00 35 12 00 00 | ............................5... |
| 1cda0 | 09 14 00 00 1d 16 00 00 c8 04 00 00 96 0c 00 00 30 06 00 00 fa 0b 00 00 00 00 00 00 e8 12 00 00 | ................0............... |
| 1cdc0 | d8 08 00 00 00 00 00 00 43 01 00 00 7a 15 00 00 25 05 00 00 00 00 00 00 8f 11 00 00 96 15 00 00 | ........C...z...%............... |
| 1cde0 | 16 0e 00 00 76 0a 00 00 fc 14 00 00 00 00 00 00 00 00 00 00 68 06 00 00 00 00 00 00 3c 03 00 00 | ....v...............h.......<... |
| 1ce00 | 8e 02 00 00 54 04 00 00 16 0d 00 00 9f 02 00 00 ba 03 00 00 ef 13 00 00 00 00 00 00 00 00 00 00 | ....T........................... |
| 1ce20 | 0f 13 00 00 67 10 00 00 b9 16 00 00 94 01 00 00 26 00 00 00 b7 08 00 00 99 00 00 00 b3 12 00 00 | ....g...........&............... |
| 1ce40 | 14 06 00 00 00 00 00 00 3b 02 00 00 e7 05 00 00 00 00 00 00 0e 00 00 00 00 00 00 00 00 00 00 00 | ........;....................... |
| 1ce60 | 00 00 00 00 d9 14 00 00 c0 16 00 00 00 00 00 00 00 00 00 00 1d 02 00 00 5b 08 00 00 00 00 00 00 | ........................[....... |
| 1ce80 | 00 00 00 00 00 00 00 00 67 0b 00 00 00 00 00 00 d4 03 00 00 2d 0f 00 00 e9 14 00 00 f6 0b 00 00 | ........g...........-........... |
| 1cea0 | 1f 10 00 00 1d 12 00 00 11 04 00 00 0b 10 00 00 f8 06 00 00 a3 0e 00 00 fc 09 00 00 d6 0c 00 00 | ................................ |
| 1cec0 | 5a 02 00 00 00 00 00 00 82 11 00 00 f8 03 00 00 00 00 00 00 90 06 00 00 b3 10 00 00 00 00 00 00 | Z............................... |
| 1cee0 | 9d 02 00 00 af 09 00 00 56 13 00 00 21 13 00 00 1d 11 00 00 cf 0f 00 00 8c 16 00 00 90 03 00 00 | ........V...!................... |
| 1cf00 | 00 00 00 00 e5 0d 00 00 8c 0a 00 00 00 00 00 00 8a 0e 00 00 39 12 00 00 a1 13 00 00 88 0c 00 00 | ....................9........... |
| 1cf20 | ab 05 00 00 b5 13 00 00 6c 14 00 00 d2 0f 00 00 34 07 00 00 a5 06 00 00 00 00 00 00 ea 04 00 00 | ........l.......4............... |
| 1cf40 | 90 0e 00 00 7d 00 00 00 f4 0a 00 00 99 07 00 00 00 00 00 00 78 00 00 00 ee 14 00 00 67 05 00 00 | ....}...............x.......g... |
| 1cf60 | d6 09 00 00 00 00 00 00 00 00 00 00 ae 0e 00 00 cb 04 00 00 e3 08 00 00 95 14 00 00 7b 01 00 00 | ............................{... |
| 1cf80 | 73 11 00 00 fd 08 00 00 6c 0c 00 00 00 00 00 00 39 09 00 00 79 12 00 00 00 00 00 00 00 00 00 00 | s.......l.......9...y........... |
| 1cfa0 | f1 0c 00 00 99 10 00 00 59 10 00 00 95 06 00 00 00 00 00 00 5f 0d 00 00 60 06 00 00 f6 0e 00 00 | ........Y..........._...`....... |
| 1cfc0 | 98 05 00 00 a7 12 00 00 d0 12 00 00 e6 04 00 00 a4 01 00 00 2d 14 00 00 ec 15 00 00 be 11 00 00 | ....................-........... |
| 1cfe0 | 53 12 00 00 b4 0e 00 00 18 0a 00 00 00 00 00 00 8d 07 00 00 dc 0c 00 00 10 0f 00 00 b6 0b 00 00 | S............................... |
| 1d000 | db 12 00 00 f9 0a 00 00 e8 0f 00 00 00 00 00 00 79 00 00 00 ea 03 00 00 00 00 00 00 00 00 00 00 | ................y............... |
| 1d020 | f0 08 00 00 f3 00 00 00 43 16 00 00 37 16 00 00 5f 15 00 00 80 09 00 00 ee 0c 00 00 b8 0b 00 00 | ........C...7..._............... |
| 1d040 | 00 00 00 00 b3 0b 00 00 00 00 00 00 40 13 00 00 00 00 00 00 10 0e 00 00 00 00 00 00 ca 0d 00 00 | ............@................... |
| 1d060 | ec 01 00 00 00 00 00 00 93 0b 00 00 00 00 00 00 db 13 00 00 cc 07 00 00 63 08 00 00 00 00 00 00 | ........................c....... |
| 1d080 | 0d 04 00 00 32 0a 00 00 a6 14 00 00 70 16 00 00 00 00 00 00 b7 01 00 00 00 00 00 00 78 11 00 00 | ....2.......p...............x... |
| 1d0a0 | 25 0f 00 00 4e 04 00 00 f4 0c 00 00 a0 0c 00 00 00 00 00 00 e3 0e 00 00 00 00 00 00 d8 0f 00 00 | %...N........................... |
| 1d0c0 | 59 06 00 00 00 00 00 00 00 00 00 00 7a 06 00 00 70 0b 00 00 00 00 00 00 9e 10 00 00 e9 08 00 00 | Y...........z...p............... |
| 1d0e0 | 42 02 00 00 00 00 00 00 00 00 00 00 fc 0e 00 00 00 00 00 00 44 0f 00 00 83 04 00 00 00 00 00 00 | B...................D........... |
| 1d100 | 3b 06 00 00 30 0b 00 00 00 00 00 00 4a 0e 00 00 15 0c 00 00 00 00 00 00 5d 00 00 00 c8 0b 00 00 | ;...0.......J...........]....... |
| 1d120 | de 0b 00 00 9a 0a 00 00 00 00 00 00 dd 06 00 00 e7 14 00 00 6c 11 00 00 00 00 00 00 7a 0c 00 00 | ....................l.......z... |
| 1d140 | 81 09 00 00 a5 08 00 00 a5 12 00 00 b6 15 00 00 56 0d 00 00 00 00 00 00 6b 14 00 00 00 00 00 00 | ................V.......k....... |
| 1d160 | f3 04 00 00 09 04 00 00 a5 0c 00 00 78 0a 00 00 ab 09 00 00 91 09 00 00 81 0d 00 00 9c 13 00 00 | ............x................... |
| 1d180 | 62 08 00 00 87 0c 00 00 df 03 00 00 e7 13 00 00 12 14 00 00 00 00 00 00 c9 15 00 00 de 10 00 00 | b............................... |
| 1d1a0 | 23 10 00 00 00 00 00 00 7c 15 00 00 b1 14 00 00 1b 14 00 00 91 12 00 00 03 13 00 00 a1 0b 00 00 | #.......|....................... |
| 1d1c0 | 00 0f 00 00 64 14 00 00 6d 0d 00 00 40 06 00 00 7b 11 00 00 dc 13 00 00 ec 09 00 00 21 15 00 00 | ....d...m...@...{...........!... |
| 1d1e0 | b2 03 00 00 d9 06 00 00 4b 08 00 00 00 00 00 00 00 00 00 00 00 00 00 00 de 12 00 00 c7 12 00 00 | ........K....................... |
| 1d200 | cf 01 00 00 fc 0f 00 00 06 0f 00 00 29 10 00 00 5a 00 00 00 89 00 00 00 a6 0c 00 00 00 00 00 00 | ............)...Z............... |
| 1d220 | df 10 00 00 65 04 00 00 3b 16 00 00 77 05 00 00 d5 0a 00 00 67 0f 00 00 9a 00 00 00 91 0a 00 00 | ....e...;...w.......g........... |
| 1d240 | 2f 00 00 00 00 00 00 00 d2 04 00 00 a2 0f 00 00 a6 0e 00 00 00 00 00 00 63 0b 00 00 fe 16 00 00 | /.......................c....... |
| 1d260 | d0 0a 00 00 1b 10 00 00 55 11 00 00 ef 04 00 00 00 00 00 00 74 07 00 00 00 00 00 00 d7 14 00 00 | ........U...........t........... |
| 1d280 | 6d 04 00 00 b8 09 00 00 a5 07 00 00 76 11 00 00 fa 09 00 00 7a 03 00 00 e2 0c 00 00 22 04 00 00 | m...........v.......z......."... |
| 1d2a0 | 2c 12 00 00 06 0e 00 00 cc 13 00 00 39 08 00 00 1f 06 00 00 38 16 00 00 4a 09 00 00 cc 16 00 00 | ,...........9.......8...J....... |
| 1d2c0 | d4 00 00 00 63 12 00 00 cc 00 00 00 2b 01 00 00 a4 15 00 00 00 00 00 00 00 00 00 00 47 09 00 00 | ....c.......+...............G... |
| 1d2e0 | 4c 13 00 00 3e 0d 00 00 eb 05 00 00 00 00 00 00 36 16 00 00 f0 0e 00 00 49 05 00 00 00 00 00 00 | L...>...........6.......I....... |
| 1d300 | 9a 11 00 00 9b 14 00 00 d9 02 00 00 53 04 00 00 00 00 00 00 2c 07 00 00 0e 02 00 00 00 00 00 00 | ............S.......,........... |
| 1d320 | 00 00 00 00 2b 05 00 00 17 15 00 00 0b 0a 00 00 00 00 00 00 15 0e 00 00 cf 03 00 00 00 00 00 00 | ....+........................... |
| 1d340 | 00 00 00 00 c2 02 00 00 f6 04 00 00 be 03 00 00 d3 13 00 00 d6 14 00 00 1e 03 00 00 00 00 00 00 | ................................ |
| 1d360 | dc 03 00 00 30 02 00 00 00 00 00 00 00 00 00 00 8f 14 00 00 94 04 00 00 c3 07 00 00 00 00 00 00 | ....0........................... |
| 1d380 | 00 00 00 00 dd 14 00 00 1f 0f 00 00 8e 16 00 00 5e 0f 00 00 00 00 00 00 71 02 00 00 cb 0d 00 00 | ................^.......q....... |
| 1d3a0 | 03 01 00 00 00 00 00 00 2f 09 00 00 5d 10 00 00 e2 14 00 00 f8 0b 00 00 54 12 00 00 8e 13 00 00 | ......../...]...........T....... |
| 1d3c0 | f6 15 00 00 08 04 00 00 30 12 00 00 bd 15 00 00 00 00 00 00 40 14 00 00 86 0c 00 00 d9 0a 00 00 | ........0...........@........... |
| 1d3e0 | b3 09 00 00 3f 03 00 00 00 00 00 00 2c 0c 00 00 27 13 00 00 5b 04 00 00 f9 09 00 00 b4 12 00 00 | ....?.......,...'...[........... |
| 1d400 | 43 10 00 00 d2 08 00 00 00 00 00 00 00 00 00 00 72 0a 00 00 4a 16 00 00 32 12 00 00 c0 01 00 00 | C...............r...J...2....... |
| 1d420 | 00 00 00 00 1f 14 00 00 00 00 00 00 00 00 00 00 35 13 00 00 00 00 00 00 d1 09 00 00 00 00 00 00 | ................5............... |
| 1d440 | 26 0b 00 00 18 15 00 00 79 09 00 00 88 07 00 00 00 00 00 00 75 04 00 00 ed 0f 00 00 cf 11 00 00 | &.......y...........u........... |
| 1d460 | fd 0d 00 00 00 00 00 00 38 02 00 00 cc 08 00 00 d7 13 00 00 07 0a 00 00 01 0f 00 00 00 00 00 00 | ........8....................... |
| 1d480 | fa 15 00 00 6a 00 00 00 00 00 00 00 00 00 00 00 d5 09 00 00 00 00 00 00 00 00 00 00 fa 0a 00 00 | ....j........................... |
| 1d4a0 | 40 0e 00 00 ae 03 00 00 64 06 00 00 fc 0a 00 00 77 11 00 00 bf 13 00 00 39 03 00 00 63 16 00 00 | @.......d.......w.......9...c... |
| 1d4c0 | d1 12 00 00 57 02 00 00 00 00 00 00 00 00 00 00 61 02 00 00 00 00 00 00 5c 08 00 00 14 0a 00 00 | ....W...........a.......\....... |
| 1d4e0 | 00 00 00 00 2a 09 00 00 f5 12 00 00 b8 16 00 00 00 00 00 00 2a 16 00 00 72 10 00 00 0a 14 00 00 | ....*...............*...r....... |
| 1d500 | ba 15 00 00 27 0c 00 00 31 0f 00 00 cb 0f 00 00 37 14 00 00 03 06 00 00 c2 01 00 00 f1 0a 00 00 | ....'...1.......7............... |
| 1d520 | 36 13 00 00 ab 03 00 00 d4 0a 00 00 bc 0c 00 00 35 0f 00 00 80 03 00 00 03 02 00 00 00 00 00 00 | 6...............5............... |
| 1d540 | f5 07 00 00 26 15 00 00 00 00 00 00 8a 0c 00 00 ec 0c 00 00 dd 07 00 00 00 00 00 00 4e 10 00 00 | ....&.......................N... |
| 1d560 | 8b 0a 00 00 0d 0a 00 00 b5 11 00 00 75 07 00 00 00 00 00 00 82 15 00 00 37 06 00 00 22 10 00 00 | ............u...........7..."... |
| 1d580 | 42 11 00 00 cb 08 00 00 00 00 00 00 00 00 00 00 fb 00 00 00 60 05 00 00 00 00 00 00 00 00 00 00 | B...................`........... |
| 1d5a0 | d9 04 00 00 27 07 00 00 9d 00 00 00 ee 0e 00 00 7d 05 00 00 00 00 00 00 c1 01 00 00 ee 05 00 00 | ....'...........}............... |
| 1d5c0 | c5 0a 00 00 6d 11 00 00 00 00 00 00 5a 0f 00 00 45 00 00 00 cc 14 00 00 04 12 00 00 f7 11 00 00 | ....m.......Z...E............... |
| 1d5e0 | 29 13 00 00 52 07 00 00 b2 08 00 00 73 00 00 00 92 03 00 00 47 03 00 00 0b 0c 00 00 0d 02 00 00 | )...R.......s.......G........... |
| 1d600 | 9e 08 00 00 e8 14 00 00 6c 13 00 00 e5 06 00 00 27 12 00 00 f0 03 00 00 00 00 00 00 5d 04 00 00 | ........l.......'...........]... |
| 1d620 | 88 10 00 00 65 00 00 00 18 0f 00 00 de 11 00 00 74 03 00 00 66 13 00 00 00 00 00 00 77 12 00 00 | ....e...........t...f.......w... |
| 1d640 | 12 01 00 00 51 09 00 00 56 0e 00 00 00 00 00 00 cf 0a 00 00 ca 0b 00 00 00 00 00 00 03 15 00 00 | ....Q...V....................... |
| 1d660 | 00 00 00 00 a9 08 00 00 00 00 00 00 fb 09 00 00 4c 09 00 00 c1 02 00 00 00 00 00 00 00 00 00 00 | ................L............... |
| 1d680 | a1 03 00 00 db 10 00 00 a7 0f 00 00 85 0f 00 00 bc 12 00 00 2d 15 00 00 cd 01 00 00 02 14 00 00 | ....................-........... |
| 1d6a0 | 85 16 00 00 f1 0e 00 00 8e 06 00 00 c0 14 00 00 00 00 00 00 a6 01 00 00 00 00 00 00 00 00 00 00 | ................................ |
| 1d6c0 | dc 0a 00 00 00 00 00 00 c9 02 00 00 00 00 00 00 00 00 00 00 05 08 00 00 69 04 00 00 00 00 00 00 | ........................i....... |
| 1d6e0 | 00 00 00 00 00 00 00 00 00 00 00 00 5d 08 00 00 99 14 00 00 00 00 00 00 85 10 00 00 00 00 00 00 | ............]................... |
| 1d700 | 00 00 00 00 6f 09 00 00 8f 08 00 00 00 00 00 00 52 06 00 00 0d 00 00 00 8e 0f 00 00 71 14 00 00 | ....o...........R...........q... |
| 1d720 | a1 09 00 00 de 00 00 00 6b 13 00 00 63 06 00 00 a5 0e 00 00 c2 06 00 00 3a 11 00 00 d7 09 00 00 | ........k...c...........:....... |
| 1d740 | 00 00 00 00 66 09 00 00 f9 05 00 00 03 0a 00 00 00 00 00 00 2c 02 00 00 c5 12 00 00 00 08 00 00 | ....f...............,........... |
| 1d760 | 25 09 00 00 00 00 00 00 7e 00 00 00 00 00 00 00 00 00 00 00 49 09 00 00 00 00 00 00 00 00 00 00 | %.......~...........I........... |
| 1d780 | 6a 0d 00 00 ca 13 00 00 94 09 00 00 df 01 00 00 48 09 00 00 dc 08 00 00 00 00 00 00 a4 07 00 00 | j...............H............... |
| 1d7a0 | 00 00 00 00 ba 0e 00 00 94 10 00 00 58 0e 00 00 45 0c 00 00 fe 0a 00 00 00 00 00 00 00 00 00 00 | ............X...E............... |
| 1d7c0 | fd 0c 00 00 00 00 00 00 93 09 00 00 09 11 00 00 7e 11 00 00 00 00 00 00 00 00 00 00 89 13 00 00 | ................~............... |
| 1d7e0 | c6 04 00 00 85 0c 00 00 c8 12 00 00 b3 08 00 00 53 03 00 00 9e 0c 00 00 c9 16 00 00 7e 0e 00 00 | ................S...........~... |
| 1d800 | 4d 02 00 00 e9 06 00 00 00 00 00 00 1b 0d 00 00 00 00 00 00 0b 15 00 00 43 14 00 00 3c 0a 00 00 | M.......................C...<... |
| 1d820 | c4 0e 00 00 00 00 00 00 96 0e 00 00 00 00 00 00 30 08 00 00 22 0d 00 00 7d 09 00 00 c2 0f 00 00 | ................0..."...}....... |
| 1d840 | 9b 10 00 00 00 00 00 00 e0 0b 00 00 69 0a 00 00 c2 15 00 00 00 0d 00 00 00 00 00 00 35 10 00 00 | ............i...............5... |
| 1d860 | d1 0c 00 00 00 00 00 00 6d 0f 00 00 e5 0f 00 00 18 03 00 00 9f 0e 00 00 00 00 00 00 00 00 00 00 | ........m....................... |
| 1d880 | da 06 00 00 00 00 00 00 dd 0c 00 00 99 02 00 00 07 0f 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | ................................ |
| 1d8a0 | 00 00 00 00 af 15 00 00 00 00 00 00 b9 0e 00 00 42 0b 00 00 c6 0c 00 00 6c 16 00 00 58 00 00 00 | ................B.......l...X... |
| 1d8c0 | ca 03 00 00 45 12 00 00 00 00 00 00 f2 13 00 00 00 00 00 00 34 11 00 00 00 00 00 00 9e 04 00 00 | ....E...............4........... |
| 1d8e0 | 00 00 00 00 8e 09 00 00 00 00 00 00 7c 10 00 00 40 05 00 00 c9 0c 00 00 6a 07 00 00 46 13 00 00 | ............|...@.......j...F... |
| 1d900 | d3 09 00 00 b5 02 00 00 00 00 00 00 04 08 00 00 65 05 00 00 00 00 00 00 00 00 00 00 12 07 00 00 | ................e............... |
| 1d920 | ce 0d 00 00 f4 11 00 00 3a 0f 00 00 60 10 00 00 05 11 00 00 55 0c 00 00 43 05 00 00 00 00 00 00 | ........:...`.......U...C....... |
| 1d940 | 00 00 00 00 3f 12 00 00 00 00 00 00 f3 01 00 00 0f 04 00 00 00 00 00 00 89 10 00 00 b8 15 00 00 | ....?........................... |
| 1d960 | fc 06 00 00 bd 10 00 00 f6 13 00 00 00 00 00 00 11 07 00 00 30 10 00 00 5b 15 00 00 be 08 00 00 | ....................0...[....... |
| 1d980 | 4e 0b 00 00 00 00 00 00 53 0b 00 00 5c 12 00 00 6d 02 00 00 0c 02 00 00 81 12 00 00 a2 09 00 00 | N.......S...\...m............... |
| 1d9a0 | 2f 11 00 00 8c 0e 00 00 4b 09 00 00 7e 10 00 00 b5 0b 00 00 c0 09 00 00 9a 0d 00 00 00 00 00 00 | /.......K...~................... |
| 1d9c0 | 22 15 00 00 00 00 00 00 00 00 00 00 69 02 00 00 bf 15 00 00 d2 0d 00 00 a5 16 00 00 55 04 00 00 | "...........i...............U... |
| 1d9e0 | 49 11 00 00 00 00 00 00 9c 0a 00 00 00 00 00 00 92 0e 00 00 00 00 00 00 00 00 00 00 44 03 00 00 | I...........................D... |
| 1da00 | 59 0a 00 00 00 00 00 00 8a 03 00 00 00 00 00 00 33 06 00 00 df 13 00 00 00 00 00 00 aa 07 00 00 | Y...............3............... |
| 1da20 | 00 00 00 00 b6 07 00 00 84 06 00 00 ae 08 00 00 13 14 00 00 89 08 00 00 98 00 00 00 7f 0b 00 00 | ................................ |
| 1da40 | a6 09 00 00 e8 16 00 00 80 10 00 00 00 00 00 00 00 00 00 00 93 08 00 00 00 00 00 00 00 00 00 00 | ................................ |
| 1da60 | ce 04 00 00 dc 15 00 00 77 07 00 00 e6 08 00 00 7b 04 00 00 1e 06 00 00 88 02 00 00 8a 08 00 00 | ........w.......{............... |
| 1da80 | e7 0d 00 00 74 0d 00 00 8c 06 00 00 fa 14 00 00 c9 07 00 00 27 0a 00 00 62 12 00 00 0d 08 00 00 | ....t...............'...b....... |
| 1daa0 | 0f 07 00 00 e5 04 00 00 8f 02 00 00 ad 06 00 00 03 0f 00 00 00 00 00 00 3b 04 00 00 b6 10 00 00 | ........................;....... |
| 1dac0 | 00 00 00 00 95 02 00 00 00 00 00 00 15 01 00 00 26 02 00 00 80 0b 00 00 87 14 00 00 84 0f 00 00 | ................&............... |
| 1dae0 | 26 06 00 00 00 00 00 00 29 15 00 00 70 0d 00 00 00 00 00 00 82 01 00 00 0e 11 00 00 2f 16 00 00 | &.......)...p.............../... |
| 1db00 | 53 02 00 00 00 00 00 00 2d 09 00 00 a7 0e 00 00 f5 0e 00 00 f2 0f 00 00 00 00 00 00 05 14 00 00 | S.......-....................... |
| 1db20 | 49 08 00 00 6b 0f 00 00 67 03 00 00 00 00 00 00 bd 08 00 00 7f 00 00 00 ea 07 00 00 2b 04 00 00 | I...k...g...................+... |
| 1db40 | 00 00 00 00 ca 08 00 00 62 11 00 00 dd 09 00 00 55 0d 00 00 9f 01 00 00 00 00 00 00 c9 06 00 00 | ........b.......U............... |
| 1db60 | 27 05 00 00 bd 01 00 00 30 13 00 00 87 07 00 00 00 00 00 00 47 0c 00 00 c3 09 00 00 96 02 00 00 | '.......0...........G........... |
| 1db80 | 23 15 00 00 9e 12 00 00 2f 03 00 00 00 00 00 00 c8 08 00 00 15 11 00 00 00 00 00 00 a3 0b 00 00 | #......./....................... |
| 1dba0 | 38 05 00 00 92 12 00 00 94 0b 00 00 1c 0e 00 00 ee 0f 00 00 d4 09 00 00 f4 0d 00 00 66 11 00 00 | 8...........................f... |
| 1dbc0 | 50 05 00 00 79 03 00 00 c2 00 00 00 c8 11 00 00 f9 13 00 00 4b 0f 00 00 10 04 00 00 00 00 00 00 | P...y...............K........... |
| 1dbe0 | 79 02 00 00 13 0f 00 00 eb 0b 00 00 1e 04 00 00 6d 0e 00 00 f2 0e 00 00 af 01 00 00 fe 07 00 00 | y...............m............... |
| 1dc00 | 9a 10 00 00 b9 0a 00 00 aa 16 00 00 bf 0c 00 00 cf 0c 00 00 00 00 00 00 a3 0d 00 00 dd 0d 00 00 | ................................ |
| 1dc20 | 2d 0c 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 7f 02 00 00 17 0d 00 00 88 08 00 00 | -............................... |
| 1dc40 | 31 12 00 00 22 0e 00 00 4a 06 00 00 75 09 00 00 ba 06 00 00 02 15 00 00 43 0c 00 00 00 00 00 00 | 1..."...J...u...........C....... |
| 1dc60 | 05 01 00 00 1b 07 00 00 ee 03 00 00 1e 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 6f 12 00 00 | ............................o... |
| 1dc80 | 00 00 00 00 ff 00 00 00 9a 16 00 00 58 0f 00 00 cc 0d 00 00 a9 0b 00 00 3a 09 00 00 e4 16 00 00 | ............X...........:....... |
| 1dca0 | 00 00 00 00 92 10 00 00 00 00 00 00 43 00 00 00 44 0d 00 00 af 08 00 00 0e 15 00 00 14 10 00 00 | ............C...D............... |
| 1dcc0 | 00 00 00 00 00 00 00 00 a8 03 00 00 61 0e 00 00 94 15 00 00 3a 12 00 00 f8 13 00 00 00 00 00 00 | ............a.......:........... |
| 1dce0 | 0e 07 00 00 2a 11 00 00 38 06 00 00 cb 06 00 00 57 07 00 00 74 00 00 00 99 03 00 00 00 00 00 00 | ....*...8.......W...t........... |
| 1dd00 | a5 14 00 00 bf 02 00 00 00 00 00 00 00 00 00 00 90 01 00 00 00 0e 00 00 58 08 00 00 31 0e 00 00 | ........................X...1... |
| 1dd20 | 71 08 00 00 66 12 00 00 3a 0a 00 00 90 07 00 00 44 0c 00 00 00 00 00 00 ce 07 00 00 26 12 00 00 | q...f...:.......D...........&... |
| 1dd40 | e6 0b 00 00 8f 12 00 00 bc 0b 00 00 00 00 00 00 80 08 00 00 32 0e 00 00 03 10 00 00 4e 01 00 00 | ....................2.......N... |
| 1dd60 | c6 16 00 00 00 00 00 00 00 03 00 00 2d 0d 00 00 3c 16 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | ............-...<............... |
| 1dd80 | d1 15 00 00 1c 0c 00 00 67 04 00 00 7c 0d 00 00 00 00 00 00 00 00 00 00 00 00 00 00 7a 0f 00 00 | ........g...|...............z... |
| 1dda0 | 23 04 00 00 59 0f 00 00 00 00 00 00 82 04 00 00 87 00 00 00 00 00 00 00 fc 13 00 00 22 05 00 00 | #...Y......................."... |
| 1ddc0 | 41 04 00 00 28 07 00 00 24 0b 00 00 37 07 00 00 81 0e 00 00 52 11 00 00 fd 16 00 00 c3 08 00 00 | A...(...$...7.......R........... |
| 1dde0 | 31 08 00 00 6c 07 00 00 9a 12 00 00 00 00 00 00 33 15 00 00 bb 09 00 00 1a 08 00 00 76 05 00 00 | 1...l...........3...........v... |
| 1de00 | 5c 07 00 00 00 00 00 00 52 0f 00 00 bf 0e 00 00 fd 03 00 00 48 11 00 00 01 0b 00 00 64 0f 00 00 | \.......R...........H.......d... |
| 1de20 | bb 03 00 00 65 02 00 00 a3 02 00 00 00 00 00 00 fe 08 00 00 24 06 00 00 00 00 00 00 4a 0a 00 00 | ....e...............$.......J... |
| 1de40 | 56 14 00 00 c6 10 00 00 00 00 00 00 36 09 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | V...........6................... |
| 1de60 | 0f 0b 00 00 42 0c 00 00 ff 04 00 00 00 00 00 00 00 00 00 00 80 0a 00 00 d3 02 00 00 7b 05 00 00 | ....B.......................{... |
| 1de80 | bb 0c 00 00 00 00 00 00 78 05 00 00 16 01 00 00 e6 16 00 00 eb 0a 00 00 61 10 00 00 51 07 00 00 | ........x...............a...Q... |
| 1dea0 | 00 00 00 00 e6 0f 00 00 ab 13 00 00 29 12 00 00 78 16 00 00 a2 00 00 00 00 00 00 00 2c 15 00 00 | ............)...x...........,... |
| 1dec0 | 52 0c 00 00 0b 02 00 00 4a 02 00 00 17 01 00 00 e7 08 00 00 2e 0d 00 00 6a 06 00 00 89 01 00 00 | R.......J...............j....... |
| 1dee0 | 5f 04 00 00 00 00 00 00 a1 02 00 00 40 10 00 00 55 16 00 00 78 01 00 00 00 00 00 00 00 00 00 00 | _...........@...U...x........... |
| 1df00 | 00 00 00 00 00 00 00 00 d5 0f 00 00 00 00 00 00 1c 03 00 00 13 15 00 00 00 00 00 00 03 17 00 00 | ................................ |
| 1df20 | 96 0d 00 00 33 0d 00 00 68 0b 00 00 be 01 00 00 0f 00 00 00 e5 0a 00 00 00 00 00 00 6b 0a 00 00 | ....3...h...................k... |
| 1df40 | 00 00 00 00 00 00 00 00 c9 08 00 00 91 06 00 00 e1 07 00 00 00 00 00 00 2a 00 00 00 a4 0f 00 00 | ........................*....... |
| 1df60 | 8b 0e 00 00 e9 0c 00 00 9a 0e 00 00 00 00 00 00 32 0d 00 00 f2 0b 00 00 17 0e 00 00 a9 03 00 00 | ................2............... |
| 1df80 | ff 08 00 00 32 07 00 00 00 00 00 00 3a 04 00 00 00 00 00 00 7c 11 00 00 91 03 00 00 be 09 00 00 | ....2.......:.......|........... |
| 1dfa0 | 9a 08 00 00 00 00 00 00 4b 07 00 00 fe 02 00 00 00 00 00 00 fb 0e 00 00 7f 13 00 00 8b 09 00 00 | ........K....................... |
| 1dfc0 | 64 10 00 00 36 03 00 00 dc 04 00 00 9f 06 00 00 07 14 00 00 00 00 00 00 e2 04 00 00 00 00 00 00 | d...6........................... |
| 1dfe0 | 68 09 00 00 ae 02 00 00 00 00 00 00 00 00 00 00 59 11 00 00 b4 09 00 00 00 00 00 00 e9 00 00 00 | h...............Y............... |
| 1e000 | cb 0c 00 00 d8 16 00 00 bc 11 00 00 18 0c 00 00 fb 0c 00 00 ad 14 00 00 00 00 00 00 30 16 00 00 | ............................0... |
| 1e020 | 0c 05 00 00 f2 0c 00 00 f6 10 00 00 ca 0f 00 00 50 15 00 00 8b 15 00 00 00 00 00 00 00 06 00 00 | ................P............... |
| 1e040 | 52 03 00 00 b3 0e 00 00 00 00 00 00 31 14 00 00 d4 0b 00 00 00 00 00 00 6d 14 00 00 f2 09 00 00 | R...........1...........m....... |
| 1e060 | 47 06 00 00 96 14 00 00 e0 11 00 00 00 00 00 00 18 16 00 00 00 00 00 00 f4 13 00 00 ff 09 00 00 | G............................... |
| 1e080 | a4 14 00 00 e5 02 00 00 00 00 00 00 f8 12 00 00 00 00 00 00 24 00 00 00 1f 09 00 00 b0 07 00 00 | ....................$........... |
| 1e0a0 | 48 0b 00 00 08 0e 00 00 bc 14 00 00 0f 06 00 00 00 00 00 00 00 00 00 00 ee 10 00 00 29 02 00 00 | H...........................)... |
| 1e0c0 | b0 0d 00 00 bd 0c 00 00 c7 13 00 00 10 10 00 00 af 10 00 00 30 14 00 00 00 00 00 00 00 00 00 00 | ....................0........... |
| 1e0e0 | 4c 07 00 00 00 00 00 00 31 16 00 00 8e 0b 00 00 3b 15 00 00 00 00 00 00 5d 02 00 00 ca 14 00 00 | L.......1.......;.......]....... |
| 1e100 | 15 16 00 00 00 00 00 00 00 00 00 00 3b 09 00 00 14 0d 00 00 ec 0b 00 00 ac 10 00 00 00 00 00 00 | ............;................... |
| 1e120 | 00 00 00 00 8f 00 00 00 1e 14 00 00 00 00 00 00 88 01 00 00 61 03 00 00 bf 0d 00 00 b1 02 00 00 | ....................a........... |
| 1e140 | af 0f 00 00 77 0a 00 00 2d 11 00 00 7f 0d 00 00 2f 0d 00 00 b7 0f 00 00 c1 05 00 00 4a 00 00 00 | ....w...-......./...........J... |
| 1e160 | c5 08 00 00 db 14 00 00 a3 10 00 00 76 09 00 00 07 11 00 00 a1 04 00 00 f5 09 00 00 32 15 00 00 | ............v...............2... |
| 1e180 | 37 10 00 00 9c 0b 00 00 91 02 00 00 13 06 00 00 73 0d 00 00 1c 14 00 00 d5 15 00 00 8e 00 00 00 | 7...............s............... |
| 1e1a0 | 5f 09 00 00 20 0b 00 00 44 05 00 00 7b 08 00 00 d0 0b 00 00 b8 12 00 00 00 00 00 00 21 04 00 00 | _.......D...{...............!... |
| 1e1c0 | 9e 0a 00 00 71 05 00 00 00 00 00 00 2c 01 00 00 c1 13 00 00 23 00 00 00 67 13 00 00 8e 04 00 00 | ....q.......,.......#...g....... |
| 1e1e0 | af 02 00 00 44 15 00 00 e7 0a 00 00 9d 13 00 00 00 00 00 00 00 00 00 00 00 00 00 00 33 12 00 00 | ....D.......................3... |
| 1e200 | f1 00 00 00 fa 11 00 00 1a 0c 00 00 2e 13 00 00 dc 01 00 00 00 00 00 00 66 0a 00 00 57 11 00 00 | ........................f...W... |
| 1e220 | 39 13 00 00 97 02 00 00 56 12 00 00 71 16 00 00 d7 07 00 00 00 00 00 00 f9 0d 00 00 4a 0f 00 00 | 9.......V...q...............J... |
| 1e240 | 88 11 00 00 a0 02 00 00 26 04 00 00 36 0f 00 00 af 14 00 00 00 00 00 00 13 03 00 00 91 08 00 00 | ........&...6................... |
| 1e260 | 3c 09 00 00 2b 10 00 00 00 00 00 00 00 00 00 00 8e 01 00 00 e3 03 00 00 c5 04 00 00 00 00 00 00 | <...+........................... |
| 1e280 | 29 01 00 00 e3 0d 00 00 8b 16 00 00 4d 11 00 00 99 0a 00 00 8b 11 00 00 eb 07 00 00 ad 02 00 00 | )...........M................... |
| 1e2a0 | 97 00 00 00 c6 0d 00 00 3a 0e 00 00 95 01 00 00 35 0c 00 00 3d 04 00 00 1b 00 00 00 1a 16 00 00 | ........:.......5...=........... |
| 1e2c0 | 50 09 00 00 5d 0c 00 00 00 00 00 00 fa 08 00 00 4e 0e 00 00 ce 10 00 00 90 14 00 00 78 12 00 00 | P...]...........N...........x... |
| 1e2e0 | 36 05 00 00 92 00 00 00 7e 09 00 00 0c 16 00 00 31 00 00 00 00 00 00 00 93 02 00 00 c7 00 00 00 | 6.......~.......1............... |
| 1e300 | 05 03 00 00 c1 09 00 00 9a 0f 00 00 00 00 00 00 00 00 00 00 21 05 00 00 74 0c 00 00 d8 02 00 00 | ....................!...t....... |
| 1e320 | 00 00 00 00 7f 0c 00 00 a3 01 00 00 a3 06 00 00 00 00 00 00 4b 02 00 00 53 00 00 00 97 15 00 00 | ....................K...S....... |
| 1e340 | 34 16 00 00 7a 16 00 00 17 04 00 00 5e 0e 00 00 47 07 00 00 00 00 00 00 10 08 00 00 00 00 00 00 | 4...z.......^...G............... |
| 1e360 | 66 16 00 00 00 00 00 00 ed 03 00 00 d1 03 00 00 81 08 00 00 0d 12 00 00 96 11 00 00 9a 15 00 00 | f............................... |
| 1e380 | f6 09 00 00 00 00 00 00 00 00 00 00 97 06 00 00 00 00 00 00 42 15 00 00 15 06 00 00 59 12 00 00 | ....................B.......Y... |
| 1e3a0 | 70 13 00 00 a7 0b 00 00 56 11 00 00 98 03 00 00 de 15 00 00 56 08 00 00 5f 03 00 00 64 11 00 00 | p.......V...........V..._...d... |
| 1e3c0 | 00 00 00 00 00 00 00 00 b7 06 00 00 e5 13 00 00 76 10 00 00 8e 07 00 00 a6 02 00 00 4c 0b 00 00 | ................v...........L... |
| 1e3e0 | f3 0b 00 00 60 0c 00 00 6b 0d 00 00 77 16 00 00 26 10 00 00 6a 0a 00 00 00 00 00 00 00 00 00 00 | ....`...k...w...&...j........... |
| 1e400 | c9 0b 00 00 00 00 00 00 00 00 00 00 96 13 00 00 ef 14 00 00 e9 0e 00 00 86 10 00 00 a4 0d 00 00 | ................................ |
| 1e420 | 9b 09 00 00 38 0c 00 00 e1 09 00 00 f7 16 00 00 03 11 00 00 65 0a 00 00 bd 02 00 00 00 00 00 00 | ....8...............e........... |
| 1e440 | 00 00 00 00 09 01 00 00 3b 03 00 00 96 16 00 00 00 00 00 00 a0 09 00 00 97 16 00 00 dc 0f 00 00 | ........;....................... |
| 1e460 | 00 00 00 00 00 00 00 00 00 00 00 00 95 00 00 00 55 15 00 00 58 01 00 00 55 0e 00 00 51 08 00 00 | ................U...X...U...Q... |
| 1e480 | d5 0d 00 00 33 16 00 00 00 00 00 00 d7 15 00 00 fa 0c 00 00 d3 00 00 00 00 00 00 00 00 00 00 00 | ....3........................... |
| 1e4a0 | 07 15 00 00 00 00 00 00 a0 0f 00 00 ec 16 00 00 4d 00 00 00 00 00 00 00 7e 0f 00 00 00 00 00 00 | ................M.......~....... |
| 1e4c0 | 00 00 00 00 00 00 00 00 e0 10 00 00 b2 0c 00 00 bb 12 00 00 a6 07 00 00 62 15 00 00 d6 0a 00 00 | ........................b....... |
| 1e4e0 | 9a 02 00 00 25 01 00 00 e6 13 00 00 00 00 00 00 4d 13 00 00 49 0b 00 00 ce 09 00 00 00 00 00 00 | ....%...........M...I........... |
| 1e500 | 00 00 00 00 00 00 00 00 d1 11 00 00 00 00 00 00 0e 13 00 00 00 00 00 00 00 00 00 00 10 0b 00 00 | ................................ |
| 1e520 | d2 14 00 00 c4 10 00 00 00 00 00 00 ea 0a 00 00 d7 02 00 00 61 05 00 00 1f 08 00 00 d5 07 00 00 | ....................a........... |
| 1e540 | ef 15 00 00 0a 16 00 00 5b 02 00 00 00 00 00 00 7b 0e 00 00 23 16 00 00 4b 0e 00 00 ae 00 00 00 | ........[.......{...#...K....... |
| 1e560 | 00 00 00 00 7e 04 00 00 4f 0f 00 00 be 0b 00 00 41 06 00 00 5a 13 00 00 70 10 00 00 e6 03 00 00 | ....~...O.......A...Z...p....... |
| 1e580 | 43 13 00 00 45 07 00 00 47 13 00 00 ac 14 00 00 e6 0a 00 00 ec 05 00 00 00 00 00 00 c4 05 00 00 | C...E...G....................... |
| 1e5a0 | 00 00 00 00 8b 04 00 00 00 00 00 00 84 10 00 00 f4 09 00 00 1f 07 00 00 00 00 00 00 00 00 00 00 | ................................ |
| 1e5c0 | dc 09 00 00 00 00 00 00 00 00 00 00 b6 0c 00 00 b8 0a 00 00 00 00 00 00 00 00 00 00 ef 0b 00 00 | ................................ |
| 1e5e0 | c5 11 00 00 09 0c 00 00 0f 16 00 00 23 0a 00 00 b3 04 00 00 09 08 00 00 79 0e 00 00 b0 05 00 00 | ............#...........y....... |
| 1e600 | 00 00 00 00 6a 01 00 00 75 16 00 00 08 16 00 00 00 00 00 00 3c 02 00 00 ce 14 00 00 00 00 00 00 | ....j...u...........<........... |
| 1e620 | 31 0c 00 00 dd 03 00 00 fc 12 00 00 cb 02 00 00 21 01 00 00 00 00 00 00 63 0f 00 00 b2 13 00 00 | 1...............!.......c....... |
| 1e640 | 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | ................................ |
| 1e660 | f1 12 00 00 4d 06 00 00 73 04 00 00 af 13 00 00 00 00 00 00 11 0e 00 00 47 02 00 00 45 05 00 00 | ....M...s...............G...E... |
| 1e680 | ae 13 00 00 5d 11 00 00 65 03 00 00 00 00 00 00 00 00 00 00 00 00 00 00 f9 07 00 00 f7 13 00 00 | ....]...e....................... |
| 1e6a0 | 22 0c 00 00 b4 15 00 00 26 16 00 00 ae 12 00 00 de 07 00 00 78 0d 00 00 c4 04 00 00 15 09 00 00 | ".......&...........x........... |
| 1e6c0 | 35 07 00 00 df 16 00 00 62 0e 00 00 00 00 00 00 d2 10 00 00 52 0b 00 00 5c 01 00 00 2a 0f 00 00 | 5.......b...........R...\...*... |
| 1e6e0 | 58 16 00 00 89 02 00 00 ec 11 00 00 8f 15 00 00 a3 09 00 00 00 00 00 00 00 00 00 00 b1 04 00 00 | X............................... |
| 1e700 | a5 0d 00 00 b4 0a 00 00 00 00 00 00 00 00 00 00 b5 14 00 00 99 01 00 00 98 0c 00 00 a9 0a 00 00 | ................................ |
| 1e720 | be 0f 00 00 d1 14 00 00 94 07 00 00 6f 08 00 00 e4 04 00 00 27 14 00 00 2a 0d 00 00 c5 10 00 00 | ............o.......'...*....... |
| 1e740 | 45 04 00 00 00 00 00 00 35 05 00 00 5d 07 00 00 22 01 00 00 00 00 00 00 67 0d 00 00 d1 0f 00 00 | E.......5...]...".......g....... |
| 1e760 | 69 16 00 00 00 00 00 00 f7 0d 00 00 00 00 00 00 93 14 00 00 73 16 00 00 00 00 00 00 17 0b 00 00 | i...................s........... |
| 1e780 | 3d 06 00 00 99 0e 00 00 30 04 00 00 00 00 00 00 15 13 00 00 00 00 00 00 64 15 00 00 73 0c 00 00 | =.......0...............d...s... |
| 1e7a0 | ec 02 00 00 00 00 00 00 db 08 00 00 c1 03 00 00 87 16 00 00 00 00 00 00 7e 15 00 00 83 15 00 00 | ........................~....... |
| 1e7c0 | bc 08 00 00 85 06 00 00 00 00 00 00 3c 05 00 00 00 00 00 00 00 00 00 00 15 04 00 00 fe 15 00 00 | ............<................... |
| 1e7e0 | 00 00 00 00 4b 0b 00 00 b9 10 00 00 96 10 00 00 b6 11 00 00 a7 04 00 00 b5 0d 00 00 df 0a 00 00 | ....K........................... |
| 1e800 | 07 09 00 00 4e 0a 00 00 00 00 00 00 83 13 00 00 00 00 00 00 00 00 00 00 cd 14 00 00 b5 0c 00 00 | ....N........................... |
| 1e820 | 74 08 00 00 d8 07 00 00 33 0a 00 00 00 00 00 00 1e 0d 00 00 39 0b 00 00 00 00 00 00 00 00 00 00 | t.......3...........9........... |
| 1e840 | 00 00 00 00 00 00 00 00 f1 11 00 00 ea 00 00 00 8b 0b 00 00 00 00 00 00 96 0f 00 00 a8 01 00 00 | ................................ |
| 1e860 | 97 0a 00 00 00 00 00 00 00 00 00 00 85 13 00 00 d4 0c 00 00 f0 0d 00 00 d1 08 00 00 67 00 00 00 | ............................g... |
| 1e880 | 37 11 00 00 26 14 00 00 8d 0b 00 00 78 10 00 00 3a 07 00 00 c9 04 00 00 8b 0d 00 00 9d 10 00 00 | 7...&.......x...:............... |
| 1e8a0 | 98 0f 00 00 bb 0f 00 00 be 14 00 00 00 00 00 00 00 00 00 00 c3 04 00 00 00 00 00 00 cf 12 00 00 | ................................ |
| 1e8c0 | 00 00 00 00 c5 06 00 00 f3 09 00 00 fa 10 00 00 00 00 00 00 00 00 00 00 12 0d 00 00 c1 07 00 00 | ................................ |
| 1e8e0 | a6 10 00 00 00 00 00 00 df 05 00 00 00 00 00 00 ee 16 00 00 81 14 00 00 b8 13 00 00 d4 05 00 00 | ................................ |
| 1e900 | 61 0c 00 00 2f 14 00 00 4e 05 00 00 85 04 00 00 00 00 00 00 92 0c 00 00 00 00 00 00 b4 0c 00 00 | a.../...N....................... |
| 1e920 | 9d 14 00 00 f6 11 00 00 36 0a 00 00 22 14 00 00 00 00 00 00 00 00 00 00 f0 09 00 00 21 10 00 00 | ........6..."...............!... |
| 1e940 | 05 00 00 00 d8 11 00 00 d8 05 00 00 d9 11 00 00 ad 04 00 00 5e 09 00 00 05 09 00 00 60 00 00 00 | ....................^.......`... |
| 1e960 | 00 00 00 00 00 01 00 00 00 00 00 00 ee 11 00 00 0e 03 00 00 00 00 00 00 00 00 00 00 77 13 00 00 | ............................w... |
| 1e980 | 00 00 00 00 00 00 00 00 00 00 00 00 98 04 00 00 00 00 00 00 8f 09 00 00 00 00 00 00 15 08 00 00 | ................................ |
| 1e9a0 | ab 08 00 00 41 03 00 00 67 14 00 00 c4 0d 00 00 00 00 00 00 f3 05 00 00 00 00 00 00 2c 03 00 00 | ....A...g...................,... |
| 1e9c0 | 33 11 00 00 a6 04 00 00 00 00 00 00 1a 10 00 00 2f 12 00 00 d3 12 00 00 c3 0b 00 00 c3 0a 00 00 | 3.............../............... |
| 1e9e0 | d2 13 00 00 90 02 00 00 4b 03 00 00 00 00 00 00 00 00 00 00 68 12 00 00 55 0a 00 00 83 0a 00 00 | ........K...........h...U....... |
| 1ea00 | 00 00 00 00 00 00 00 00 e4 0f 00 00 00 00 00 00 3f 0c 00 00 7b 00 00 00 69 10 00 00 af 0e 00 00 | ................?...{...i....... |
| 1ea20 | 64 09 00 00 a0 04 00 00 f4 05 00 00 86 08 00 00 7f 07 00 00 00 00 00 00 d4 0f 00 00 02 08 00 00 | d............................... |
| 1ea40 | 0d 06 00 00 2e 06 00 00 a9 11 00 00 b5 15 00 00 73 14 00 00 62 04 00 00 f5 16 00 00 33 07 00 00 | ................s...b.......3... |
| 1ea60 | ef 0c 00 00 89 0e 00 00 3b 0b 00 00 de 05 00 00 18 04 00 00 00 00 00 00 81 02 00 00 82 09 00 00 | ........;....................... |
| 1ea80 | 40 03 00 00 7f 14 00 00 00 00 00 00 bc 01 00 00 00 00 00 00 00 00 00 00 02 0f 00 00 00 00 00 00 | @............................... |
| 1eaa0 | 55 0b 00 00 00 00 00 00 86 16 00 00 20 09 00 00 78 08 00 00 4c 05 00 00 1a 00 00 00 23 09 00 00 | U...............x...L.......#... |
| 1eac0 | 74 05 00 00 3c 00 00 00 77 14 00 00 c1 04 00 00 1e 09 00 00 79 0f 00 00 5f 12 00 00 03 12 00 00 | t...<...w...........y..._....... |
| 1eae0 | 00 00 00 00 58 14 00 00 b2 09 00 00 83 0f 00 00 dc 02 00 00 85 01 00 00 0b 04 00 00 56 02 00 00 | ....X.......................V... |
| 1eb00 | 7a 09 00 00 ef 09 00 00 19 09 00 00 38 0b 00 00 a0 11 00 00 e3 13 00 00 64 0d 00 00 4a 03 00 00 | z...........8...........d...J... |
| 1eb20 | 00 00 00 00 e4 0a 00 00 c6 13 00 00 bb 15 00 00 e5 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | ................................ |
| 1eb40 | f6 05 00 00 00 00 00 00 00 00 00 00 b8 11 00 00 e1 11 00 00 3b 10 00 00 e4 03 00 00 00 00 00 00 | ....................;........... |
| 1eb60 | aa 0a 00 00 dd 0f 00 00 7d 16 00 00 00 00 00 00 a4 05 00 00 18 11 00 00 99 0b 00 00 42 05 00 00 | ........}...................B... |
| 1eb80 | 67 16 00 00 e5 09 00 00 8f 0f 00 00 00 00 00 00 90 05 00 00 00 00 00 00 00 21 3c 68 3a 68 3a 68 | g........................!<h:h:h |
| 1eba0 | 3a 68 3a 68 3a 68 3a 68 3a 68 2f 78 3e 3a 20 4d 61 74 63 68 20 65 76 65 72 79 74 68 69 6e 67 20 | :h:h:h:h:h/x>:.Match.everything. |
| 1ebc0 | 65 78 63 65 70 74 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 70 72 65 66 69 78 2e 00 21 3c 68 | except.the.specified.prefix..!<h |
| 1ebe0 | 3a 68 3a 68 3a 68 3a 68 3a 68 3a 68 3a 68 3e 2d 3c 68 3a 68 3a 68 3a 68 3a 68 3a 68 3a 68 3a 68 | :h:h:h:h:h:h:h>-<h:h:h:h:h:h:h:h |
| 1ec00 | 3e 3a 20 4d 61 74 63 68 20 65 76 65 72 79 74 68 69 6e 67 20 65 78 63 65 70 74 20 74 68 65 20 73 | >:.Match.everything.except.the.s |
| 1ec20 | 70 65 63 69 66 69 65 64 20 72 61 6e 67 65 2e 00 21 3c 68 3a 68 3a 68 3a 68 3a 68 3a 68 3a 68 3a | pecified.range..!<h:h:h:h:h:h:h: |
| 1ec40 | 68 3e 3a 20 4d 61 74 63 68 20 65 76 65 72 79 74 68 69 6e 67 20 65 78 63 65 70 74 20 74 68 65 20 | h>:.Match.everything.except.the. |
| 1ec60 | 73 70 65 63 69 66 69 65 64 20 61 64 64 72 65 73 73 2e 00 21 3c 78 2e 78 2e 78 2e 78 2f 78 3e 3a | specified.address..!<x.x.x.x/x>: |
| 1ec80 | 20 4d 61 74 63 68 20 65 76 65 72 79 74 68 69 6e 67 20 65 78 63 65 70 74 20 74 68 65 20 73 70 65 | .Match.everything.except.the.spe |
| 1eca0 | 63 69 66 69 65 64 20 73 75 62 6e 65 74 2e 00 21 3c 78 2e 78 2e 78 2e 78 3e 2d 3c 78 2e 78 2e 78 | cified.subnet..!<x.x.x.x>-<x.x.x |
| 1ecc0 | 2e 78 3e 3a 20 4d 61 74 63 68 20 65 76 65 72 79 74 68 69 6e 67 20 65 78 63 65 70 74 20 74 68 65 | .x>:.Match.everything.except.the |
| 1ece0 | 20 73 70 65 63 69 66 69 65 64 20 72 61 6e 67 65 2e 00 21 3c 78 2e 78 2e 78 2e 78 3e 3a 20 4d 61 | .specified.range..!<x.x.x.x>:.Ma |
| 1ed00 | 74 63 68 20 65 76 65 72 79 74 68 69 6e 67 20 65 78 63 65 70 74 20 74 68 65 20 73 70 65 63 69 66 | tch.everything.except.the.specif |
| 1ed20 | 69 65 64 20 61 64 64 72 65 73 73 2e 00 22 4d 61 6e 61 67 65 64 20 61 64 64 72 65 73 73 20 63 6f | ied.address.."Managed.address.co |
| 1ed40 | 6e 66 69 67 75 72 61 74 69 6f 6e 22 20 66 6c 61 67 00 22 4f 74 68 65 72 20 63 6f 6e 66 69 67 75 | nfiguration".flag."Other.configu |
| 1ed60 | 72 61 74 69 6f 6e 22 20 66 6c 61 67 00 23 23 23 23 23 23 23 23 23 23 23 23 23 23 23 23 23 23 23 | ration".flag.################### |
| 1ed80 | c3 a4 23 23 23 23 23 23 23 23 23 23 23 23 23 20 46 6c 6f 77 74 61 62 6c 65 73 20 46 69 72 65 77 | ..#############.Flowtables.Firew |
| 1eda0 | 61 6c 6c 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 23 23 23 23 23 23 23 23 23 23 23 23 23 23 | all.Configuration.############## |
| 1edc0 | 23 23 23 23 23 23 23 23 23 23 23 23 23 23 23 23 23 23 23 00 28 54 68 69 73 20 63 61 6e 20 62 65 | ###################.(This.can.be |
| 1ede0 | 20 75 73 65 66 75 6c 20 77 68 65 6e 20 61 20 63 61 6c 6c 65 64 20 73 65 72 76 69 63 65 20 68 61 | .useful.when.a.called.service.ha |
| 1ee00 | 73 20 6d 61 6e 79 20 61 6e 64 2f 6f 72 20 6f 66 74 65 6e 20 63 68 61 6e 67 69 6e 67 20 64 65 73 | s.many.and/or.often.changing.des |
| 1ee20 | 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 65 73 20 2d 20 65 2e 67 2e 20 4e 65 74 66 6c 69 | tination.addresses.-.e.g..Netfli |
| 1ee40 | 78 2e 29 00 2a 2a 28 44 65 66 61 75 6c 74 29 2a 2a 20 46 6c 6f 77 73 20 61 72 65 20 64 65 66 69 | x.).**(Default)**.Flows.are.defi |
| 1ee60 | 6e 65 64 20 62 79 20 74 68 65 20 35 2d 74 75 70 6c 65 2c 20 66 61 69 72 6e 65 73 73 20 69 73 20 | ned.by.the.5-tuple,.fairness.is. |
| 1ee80 | 61 70 70 6c 69 65 64 20 6f 76 65 72 20 73 6f 75 72 63 65 20 61 6e 64 20 64 65 73 74 69 6e 61 74 | applied.over.source.and.destinat |
| 1eea0 | 69 6f 6e 20 61 64 64 72 65 73 73 65 73 20 61 6e 64 20 61 6c 73 6f 20 6f 76 65 72 20 69 6e 64 69 | ion.addresses.and.also.over.indi |
| 1eec0 | 76 69 64 75 61 6c 20 66 6c 6f 77 73 2e 00 2a 2a 31 2d 32 35 34 2a 2a 20 e2 80 93 20 69 6e 74 65 | vidual.flows..**1-254**.....inte |
| 1eee0 | 72 66 61 63 65 73 20 77 69 74 68 20 61 20 63 68 61 6e 6e 65 6c 20 6e 75 6d 62 65 72 20 69 6e 74 | rfaces.with.a.channel.number.int |
| 1ef00 | 65 72 66 65 72 65 20 77 69 74 68 20 69 6e 74 65 72 66 65 72 69 6e 67 20 69 6e 74 65 72 66 61 63 | erfere.with.interfering.interfac |
| 1ef20 | 65 73 20 61 6e 64 20 69 6e 74 65 72 66 61 63 65 73 20 77 69 74 68 20 74 68 65 20 73 61 6d 65 20 | es.and.interfaces.with.the.same. |
| 1ef40 | 63 68 61 6e 6e 65 6c 20 6e 75 6d 62 65 72 2e 20 2a 2a 69 6e 74 65 72 66 65 72 69 6e 67 2a 2a 20 | channel.number..**interfering**. |
| 1ef60 | e2 80 93 20 69 6e 74 65 72 66 65 72 69 6e 67 20 69 6e 74 65 72 66 61 63 65 73 20 61 72 65 20 61 | ....interfering.interfaces.are.a |
| 1ef80 | 73 73 75 6d 65 64 20 74 6f 20 69 6e 74 65 72 66 65 72 65 20 77 69 74 68 20 61 6c 6c 20 6f 74 68 | ssumed.to.interfere.with.all.oth |
| 1efa0 | 65 72 20 63 68 61 6e 6e 65 6c 73 20 65 78 63 65 70 74 20 6e 6f 6e 69 6e 74 65 72 66 65 72 69 6e | er.channels.except.noninterferin |
| 1efc0 | 67 20 63 68 61 6e 6e 65 6c 73 2e 20 2a 2a 6e 6f 6e 69 6e 74 65 72 66 65 72 69 6e 67 2a 2a 20 e2 | g.channels..**noninterfering**.. |
| 1efe0 | 80 93 20 6e 6f 6e 69 6e 74 65 72 66 65 72 69 6e 67 20 69 6e 74 65 72 66 61 63 65 73 20 61 72 65 | ...noninterfering.interfaces.are |
| 1f000 | 20 61 73 73 75 6d 65 64 20 74 6f 20 6f 6e 6c 79 20 69 6e 74 65 72 66 65 72 65 20 77 69 74 68 20 | .assumed.to.only.interfere.with. |
| 1f020 | 74 68 65 6d 73 65 6c 76 65 73 2e 00 2a 2a 31 2e 20 43 6f 6e 66 69 72 6d 20 49 50 20 63 6f 6e 6e | themselves..**1..Confirm.IP.conn |
| 1f040 | 65 63 74 69 76 69 74 79 20 62 65 74 77 65 65 6e 20 74 75 6e 6e 65 6c 20 73 6f 75 72 63 65 2d 61 | ectivity.between.tunnel.source-a |
| 1f060 | 64 64 72 65 73 73 20 61 6e 64 20 72 65 6d 6f 74 65 3a 2a 2a 00 2a 2a 31 30 2a 2a 20 2d 20 3a 61 | ddress.and.remote:**.**10**.-.:a |
| 1f080 | 62 62 72 3a 60 49 50 46 49 58 20 28 49 50 20 46 6c 6f 77 20 49 6e 66 6f 72 6d 61 74 69 6f 6e 20 | bbr:`IPFIX.(IP.Flow.Information. |
| 1f0a0 | 45 78 70 6f 72 74 29 60 20 61 73 20 70 65 72 20 3a 72 66 63 3a 60 33 39 31 37 60 00 2a 2a 32 2e | Export)`.as.per.:rfc:`3917`.**2. |
| 1f0c0 | 20 43 6f 6e 66 69 72 6d 20 74 68 65 20 6c 69 6e 6b 20 74 79 70 65 20 68 61 73 20 62 65 65 6e 20 | .Confirm.the.link.type.has.been. |
| 1f0e0 | 73 65 74 20 74 6f 20 47 52 45 3a 2a 2a 00 2a 2a 33 2e 20 43 6f 6e 66 69 72 6d 20 49 50 20 63 6f | set.to.GRE:**.**3..Confirm.IP.co |
| 1f100 | 6e 6e 65 63 74 69 76 69 74 79 20 61 63 72 6f 73 73 20 74 68 65 20 74 75 6e 6e 65 6c 3a 2a 2a 00 | nnectivity.across.the.tunnel:**. |
| 1f120 | 2a 2a 35 2a 2a 20 2d 20 4d 6f 73 74 20 63 6f 6d 6d 6f 6e 20 76 65 72 73 69 6f 6e 2c 20 62 75 74 | **5**.-.Most.common.version,.but |
| 1f140 | 20 72 65 73 74 72 69 63 74 65 64 20 74 6f 20 49 50 76 34 20 66 6c 6f 77 73 20 6f 6e 6c 79 00 2a | .restricted.to.IPv4.flows.only.* |
| 1f160 | 2a 39 2a 2a 20 2d 20 4e 65 74 46 6c 6f 77 20 76 65 72 73 69 6f 6e 20 39 20 28 64 65 66 61 75 6c | *9**.-.NetFlow.version.9.(defaul |
| 1f180 | 74 29 00 2a 2a 41 53 20 70 61 74 68 20 6c 65 6e 67 74 68 20 63 68 65 63 6b 2a 2a 00 2a 2a 41 63 | t).**AS.path.length.check**.**Ac |
| 1f1a0 | 74 69 76 65 2d 61 63 74 69 76 65 2a 2a 3a 20 62 6f 74 68 20 44 48 43 50 20 73 65 72 76 65 72 73 | tive-active**:.both.DHCP.servers |
| 1f1c0 | 20 77 69 6c 6c 20 72 65 73 70 6f 6e 64 20 74 6f 20 44 48 43 50 20 72 65 71 75 65 73 74 73 2e 20 | .will.respond.to.DHCP.requests.. |
| 1f1e0 | 49 66 20 60 60 6d 6f 64 65 60 60 20 69 73 20 6e 6f 74 20 64 65 66 69 6e 65 64 2c 20 74 68 69 73 | If.``mode``.is.not.defined,.this |
| 1f200 | 20 69 73 20 74 68 65 20 64 65 66 61 75 6c 74 20 62 65 68 61 76 69 6f 72 2e 00 2a 2a 41 63 74 69 | .is.the.default.behavior..**Acti |
| 1f220 | 76 65 2d 70 61 73 73 69 76 65 2a 2a 3a 20 6f 6e 6c 79 20 60 60 70 72 69 6d 61 72 79 60 60 20 73 | ve-passive**:.only.``primary``.s |
| 1f240 | 65 72 76 65 72 20 77 69 6c 6c 20 72 65 73 70 6f 6e 64 20 74 6f 20 44 48 43 50 20 72 65 71 75 65 | erver.will.respond.to.DHCP.reque |
| 1f260 | 73 74 73 2e 20 49 66 20 74 68 69 73 20 73 65 72 76 65 72 20 67 6f 65 73 20 6f 66 66 6c 69 6e 65 | sts..If.this.server.goes.offline |
| 1f280 | 2c 20 74 68 65 6e 20 60 60 73 65 63 6f 6e 64 61 72 79 60 60 20 73 65 72 76 65 72 20 77 69 6c 6c | ,.then.``secondary``.server.will |
| 1f2a0 | 20 74 61 6b 65 20 70 6c 61 63 65 2e 00 2a 2a 41 6c 72 65 61 64 79 2d 73 65 6c 65 63 74 65 64 20 | .take.place..**Already-selected. |
| 1f2c0 | 65 78 74 65 72 6e 61 6c 20 63 68 65 63 6b 2a 2a 00 2a 2a 41 70 70 6c 69 63 61 74 69 6f 6e 20 43 | external.check**.**Application.C |
| 1f2e0 | 6f 6d 70 61 74 69 62 69 6c 69 74 79 2a 2a 3a 20 53 6f 6d 65 20 61 70 70 6c 69 63 61 74 69 6f 6e | ompatibility**:.Some.application |
| 1f300 | 73 20 61 6e 64 20 70 72 6f 74 6f 63 6f 6c 73 20 6d 61 79 20 6e 6f 74 20 77 6f 72 6b 20 77 65 6c | s.and.protocols.may.not.work.wel |
| 1f320 | 6c 20 77 69 74 68 20 43 47 4e 41 54 20 64 75 65 20 74 6f 20 74 68 65 69 72 20 72 65 6c 69 61 6e | l.with.CGNAT.due.to.their.relian |
| 1f340 | 63 65 20 6f 6e 20 75 6e 69 71 75 65 20 70 75 62 6c 69 63 20 49 50 20 61 64 64 72 65 73 73 65 73 | ce.on.unique.public.IP.addresses |
| 1f360 | 2e 00 2a 2a 41 70 70 6c 69 65 73 20 74 6f 3a 2a 2a 20 49 6e 62 6f 75 6e 64 20 74 72 61 66 66 69 | ..**Applies.to:**.Inbound.traffi |
| 1f380 | 63 2e 00 2a 2a 41 70 70 6c 69 65 73 20 74 6f 3a 2a 2a 20 4f 75 74 62 6f 75 6e 64 20 54 72 61 66 | c..**Applies.to:**.Outbound.Traf |
| 1f3a0 | 66 69 63 2e 00 2a 2a 41 70 70 6c 69 65 73 20 74 6f 3a 2a 2a 20 4f 75 74 62 6f 75 6e 64 20 74 72 | fic..**Applies.to:**.Outbound.tr |
| 1f3c0 | 61 66 66 69 63 2e 00 2a 2a 41 70 70 6c 79 20 74 68 65 20 74 72 61 66 66 69 63 20 70 6f 6c 69 63 | affic..**Apply.the.traffic.polic |
| 1f3e0 | 79 20 74 6f 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 69 6e 67 72 65 73 73 20 6f 72 20 65 67 72 | y.to.an.interface.ingress.or.egr |
| 1f400 | 65 73 73 2a 2a 2e 00 2a 2a 42 72 69 64 67 65 20 50 6f 72 74 3f 2a 2a 3a 20 63 68 6f 6f 73 65 20 | ess**..**Bridge.Port?**:.choose. |
| 1f420 | 61 70 70 72 6f 70 69 61 74 65 20 70 61 74 68 20 62 61 73 65 64 20 6f 6e 20 69 66 20 69 6e 74 65 | appropiate.path.based.on.if.inte |
| 1f440 | 72 66 61 63 65 20 77 65 72 65 20 74 68 65 20 70 61 63 6b 65 74 20 77 61 73 20 72 65 63 65 69 76 | rface.were.the.packet.was.receiv |
| 1f460 | 65 64 20 69 73 20 70 61 72 74 20 6f 66 20 61 20 62 72 69 64 67 65 2c 20 6f 72 20 6e 6f 74 2e 00 | ed.is.part.of.a.bridge,.or.not.. |
| 1f480 | 2a 2a 42 72 69 64 67 65 20 50 6f 72 74 3f 2a 2a 3a 20 63 68 6f 6f 73 65 20 61 70 70 72 6f 70 72 | **Bridge.Port?**:.choose.appropr |
| 1f4a0 | 69 61 74 65 20 70 61 74 68 20 62 61 73 65 64 20 6f 6e 20 77 68 65 74 68 65 72 20 69 6e 74 65 72 | iate.path.based.on.whether.inter |
| 1f4c0 | 66 61 63 65 20 77 68 65 72 65 20 74 68 65 20 70 61 63 6b 65 74 20 77 61 73 20 72 65 63 65 69 76 | face.where.the.packet.was.receiv |
| 1f4e0 | 65 64 20 69 73 20 70 61 72 74 20 6f 66 20 61 20 62 72 69 64 67 65 2c 20 6f 72 20 6e 6f 74 2e 00 | ed.is.part.of.a.bridge,.or.not.. |
| 1f500 | 2a 2a 43 61 6c 63 75 6c 61 74 65 20 74 68 65 20 4e 75 6d 62 65 72 20 6f 66 20 53 75 62 73 63 72 | **Calculate.the.Number.of.Subscr |
| 1f520 | 69 62 65 72 73 20 70 65 72 20 50 75 62 6c 69 63 20 49 50 2a 2a 3a 00 2a 2a 43 69 73 63 6f 20 49 | ibers.per.Public.IP**:.**Cisco.I |
| 1f540 | 4f 53 20 52 6f 75 74 65 72 3a 2a 2a 00 2a 2a 43 6c 69 65 6e 74 20 49 50 20 61 64 64 72 65 73 73 | OS.Router:**.**Client.IP.address |
| 1f560 | 20 76 69 61 20 49 50 20 72 61 6e 67 65 20 64 65 66 69 6e 69 74 69 6f 6e 2a 2a 00 2a 2a 43 6c 69 | .via.IP.range.definition**.**Cli |
| 1f580 | 65 6e 74 20 49 50 20 73 75 62 6e 65 74 73 20 76 69 61 20 43 49 44 52 20 6e 6f 74 61 74 69 6f 6e | ent.IP.subnets.via.CIDR.notation |
| 1f5a0 | 2a 2a 00 2a 2a 43 6c 75 73 74 65 72 2d 4c 69 73 74 20 6c 65 6e 67 74 68 20 63 68 65 63 6b 2a 2a | **.**Cluster-List.length.check** |
| 1f5c0 | 00 2a 2a 43 6f 6e 6e 74 72 61 63 6b 20 49 67 6e 6f 72 65 2a 2a 3a 20 72 75 6c 65 73 20 64 65 66 | .**Conntrack.Ignore**:.rules.def |
| 1f5e0 | 69 6e 65 64 20 75 6e 64 65 72 20 60 60 73 65 74 20 73 79 73 74 65 6d 20 63 6f 6e 6e 74 72 61 63 | ined.under.``set.system.conntrac |
| 1f600 | 6b 20 69 67 6e 6f 72 65 20 5b 69 70 76 34 20 7c 20 69 70 76 36 5d 20 2e 2e 2e 60 60 2e 00 2a 2a | k.ignore.[ipv4.|.ipv6]....``..** |
| 1f620 | 43 6f 6e 6e 74 72 61 63 6b 20 49 67 6e 6f 72 65 2a 2a 3a 20 72 75 6c 65 73 20 64 65 66 69 6e 65 | Conntrack.Ignore**:.rules.define |
| 1f640 | 64 20 75 6e 64 65 72 20 60 60 73 65 74 20 73 79 73 74 65 6d 20 63 6f 6e 6e 74 72 61 63 6b 20 69 | d.under.``set.system.conntrack.i |
| 1f660 | 67 6e 6f 72 65 20 5b 69 70 76 34 20 7c 20 69 70 76 36 5d 20 2e 2e 2e 60 60 2e 20 53 74 61 72 74 | gnore.[ipv4.|.ipv6]....``..Start |
| 1f680 | 69 6e 67 20 66 72 6f 6d 20 76 79 6f 73 2d 31 2e 35 2d 72 6f 6c 6c 69 6e 67 2d 32 30 32 34 30 36 | ing.from.vyos-1.5-rolling-202406 |
| 1f6a0 | 31 32 30 30 32 30 2c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 64 6f 6e 65 20 69 6e 20 74 68 | 120020,.configuration.done.in.th |
| 1f6c0 | 69 73 20 73 65 63 74 69 6f 6e 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 69 6e 20 60 60 66 69 72 65 | is.section.can.be.done.in.``fire |
| 1f6e0 | 77 61 6c 6c 20 5b 69 70 76 34 20 7c 20 69 70 76 36 5d 20 70 72 65 72 6f 75 74 69 6e 67 20 2e 2e | wall.[ipv4.|.ipv6].prerouting... |
| 1f700 | 2e 60 60 2e 20 46 6f 72 20 63 6f 6d 70 61 74 69 62 69 6c 69 74 79 20 72 65 61 73 6f 6e 73 2c 20 | .``..For.compatibility.reasons,. |
| 1f720 | 74 68 69 73 20 66 65 61 74 75 72 65 20 69 73 20 73 74 69 6c 6c 20 70 72 65 73 65 6e 74 2c 20 62 | this.feature.is.still.present,.b |
| 1f740 | 75 74 20 69 74 20 77 69 6c 6c 20 62 65 20 72 65 6d 6f 76 65 64 20 69 6e 20 74 68 65 20 66 75 74 | ut.it.will.be.removed.in.the.fut |
| 1f760 | 75 72 65 2e 00 2a 2a 43 6f 73 74 2d 45 66 66 65 63 74 69 76 65 2a 2a 3a 20 52 65 64 75 63 65 73 | ure..**Cost-Effective**:.Reduces |
| 1f780 | 20 74 68 65 20 63 6f 73 74 20 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 61 63 71 75 69 72 | .the.cost.associated.with.acquir |
| 1f7a0 | 69 6e 67 20 61 64 64 69 74 69 6f 6e 61 6c 20 70 75 62 6c 69 63 20 49 50 76 34 20 61 64 64 72 65 | ing.additional.public.IPv4.addre |
| 1f7c0 | 73 73 65 73 2e 00 2a 2a 43 72 65 61 74 65 20 61 20 74 72 61 66 66 69 63 20 70 6f 6c 69 63 79 2a | sses..**Create.a.traffic.policy* |
| 1f7e0 | 2a 2e 00 2a 2a 44 48 43 50 28 76 36 29 2a 2a 00 2a 2a 44 48 43 50 76 36 20 50 72 65 66 69 78 20 | *..**DHCP(v6)**.**DHCPv6.Prefix. |
| 1f800 | 44 65 6c 65 67 61 74 69 6f 6e 20 28 50 44 29 2a 2a 00 2a 2a 44 65 73 74 69 6e 61 74 69 6f 6e 20 | Delegation.(PD)**.**Destination. |
| 1f820 | 4e 41 54 2a 2a 3a 20 72 75 6c 65 73 20 64 65 66 69 6e 65 64 20 75 6e 64 65 72 20 60 60 73 65 74 | NAT**:.rules.defined.under.``set |
| 1f840 | 20 5b 6e 61 74 20 7c 20 6e 61 74 36 36 5d 20 64 65 73 74 69 6e 61 74 69 6f 6e 2e 2e 2e 60 60 2e | .[nat.|.nat66].destination...``. |
| 1f860 | 00 2a 2a 44 65 73 74 69 6e 61 74 69 6f 6e 20 69 73 20 74 68 65 20 72 6f 75 74 65 72 3f 2a 2a 3a | .**Destination.is.the.router?**: |
| 1f880 | 20 63 68 6f 6f 73 65 20 61 6e 20 61 70 70 72 6f 70 72 69 61 74 65 20 70 61 74 68 20 62 61 73 65 | .choose.an.appropriate.path.base |
| 1f8a0 | 64 20 6f 6e 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 49 50 20 61 64 64 72 65 73 73 2e 20 54 72 61 | d.on.destination.IP.address..Tra |
| 1f8c0 | 6e 73 69 74 20 66 6f 72 77 61 72 64 20 63 6f 6e 74 69 6e 75 65 73 20 74 6f 20 2a 2a 66 6f 72 77 | nsit.forward.continues.to.**forw |
| 1f8e0 | 61 72 64 2a 2a 2c 20 77 68 69 6c 65 20 74 72 61 66 66 69 63 20 77 68 65 72 65 20 74 68 65 20 64 | ard**,.while.traffic.where.the.d |
| 1f900 | 65 73 74 69 6e 61 74 69 6f 6e 20 49 50 20 61 64 64 72 65 73 73 20 69 73 20 63 6f 6e 66 69 67 75 | estination.IP.address.is.configu |
| 1f920 | 72 65 64 20 6f 6e 20 74 68 65 20 72 6f 75 74 65 72 20 63 6f 6e 74 69 6e 75 65 73 20 74 6f 20 2a | red.on.the.router.continues.to.* |
| 1f940 | 2a 69 6e 70 75 74 2a 2a 2e 00 2a 2a 44 65 73 74 69 6e 61 74 69 6f 6e 20 69 73 20 74 68 65 20 72 | *input**..**Destination.is.the.r |
| 1f960 | 6f 75 74 65 72 3f 2a 2a 3a 20 63 68 6f 6f 73 65 20 61 70 70 72 6f 70 69 61 74 65 20 70 61 74 68 | outer?**:.choose.appropiate.path |
| 1f980 | 20 62 61 73 65 64 20 6f 6e 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 49 50 20 61 64 64 72 65 73 73 | .based.on.destination.IP.address |
| 1f9a0 | 2e 20 54 72 61 6e 73 69 74 20 66 6f 72 77 61 72 64 20 63 6f 6e 74 69 6e 75 6e 65 73 20 74 6f 20 | ..Transit.forward.continunes.to. |
| 1f9c0 | 2a 2a 66 6f 72 77 61 72 64 2a 2a 2c 20 77 68 69 6c 65 20 74 72 61 66 66 69 63 20 74 68 61 74 20 | **forward**,.while.traffic.that. |
| 1f9e0 | 64 65 73 74 69 6e 61 74 69 6f 6e 20 49 50 20 61 64 64 72 65 73 73 20 69 73 20 63 6f 6e 66 69 67 | destination.IP.address.is.config |
| 1fa00 | 75 72 65 64 20 6f 6e 20 74 68 65 20 72 6f 75 74 65 72 20 63 6f 6e 74 69 6e 75 65 73 20 74 6f 20 | ured.on.the.router.continues.to. |
| 1fa20 | 2a 2a 69 6e 70 75 74 2a 2a 2e 00 2a 2a 44 65 73 74 69 6e 61 74 69 6f 6e 20 69 73 20 74 68 65 20 | **input**..**Destination.is.the. |
| 1fa40 | 72 6f 75 74 65 72 3f 2a 2a 3a 20 63 68 6f 6f 73 65 20 61 70 70 72 6f 70 72 69 61 74 65 20 70 61 | router?**:.choose.appropriate.pa |
| 1fa60 | 74 68 20 62 61 73 65 64 20 6f 6e 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 49 50 20 61 64 64 72 65 | th.based.on.destination.IP.addre |
| 1fa80 | 73 73 2e 20 54 72 61 6e 73 69 74 20 66 6f 72 77 61 72 64 20 63 6f 6e 74 69 6e 75 65 73 20 74 6f | ss..Transit.forward.continues.to |
| 1faa0 | 20 2a 2a 66 6f 72 77 61 72 64 2a 2a 2c 20 77 68 69 6c 65 20 74 72 61 66 66 69 63 20 74 68 61 74 | .**forward**,.while.traffic.that |
| 1fac0 | 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 49 50 20 61 64 64 72 65 73 73 20 69 73 20 63 6f 6e 66 69 | .destination.IP.address.is.confi |
| 1fae0 | 67 75 72 65 64 20 6f 6e 20 74 68 65 20 72 6f 75 74 65 72 20 63 6f 6e 74 69 6e 75 65 73 20 74 6f | gured.on.the.router.continues.to |
| 1fb00 | 20 2a 2a 69 6e 70 75 74 2a 2a 2e 00 2a 2a 44 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 75 6e 64 65 | .**input**..**Documentation.unde |
| 1fb20 | 72 20 64 65 76 65 6c 6f 70 6d 65 6e 74 2a 2a 00 2a 2a 45 73 74 69 6d 61 74 65 20 50 6f 72 74 73 | r.development**.**Estimate.Ports |
| 1fb40 | 20 4e 65 65 64 65 64 20 70 65 72 20 53 75 62 73 63 72 69 62 65 72 2a 2a 3a 00 2a 2a 45 74 68 65 | .Needed.per.Subscriber**:.**Ethe |
| 1fb60 | 72 6e 65 74 20 28 70 72 6f 74 6f 63 6f 6c 2c 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 | rnet.(protocol,.destination.addr |
| 1fb80 | 65 73 73 20 6f 72 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 29 2a 2a 00 2a 2a 45 78 61 6d 70 | ess.or.source.address)**.**Examp |
| 1fba0 | 6c 65 3a 2a 2a 00 2a 2a 45 78 74 65 72 6e 61 6c 20 63 68 65 63 6b 2a 2a 00 2a 2a 46 69 72 65 77 | le:**.**External.check**.**Firew |
| 1fbc0 | 61 6c 6c 20 50 72 65 72 6f 75 74 69 6e 67 2a 2a 3a 20 63 6f 6d 6d 61 6e 64 73 20 66 6f 75 6e 64 | all.Prerouting**:.commands.found |
| 1fbe0 | 20 75 6e 64 65 72 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 70 72 65 72 6f | .under.``set.firewall.ipv4.prero |
| 1fc00 | 75 74 69 6e 67 20 72 61 77 20 2e 2e 2e 60 60 00 2a 2a 46 69 72 65 77 61 6c 6c 20 50 72 65 72 6f | uting.raw....``.**Firewall.Prero |
| 1fc20 | 75 74 69 6e 67 2a 2a 3a 20 63 6f 6d 6d 61 6e 64 73 20 66 6f 75 6e 64 20 75 6e 64 65 72 20 60 60 | uting**:.commands.found.under.`` |
| 1fc40 | 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 70 72 65 72 6f 75 74 69 6e 67 20 72 61 77 | set.firewall.ipv6.prerouting.raw |
| 1fc60 | 20 2e 2e 2e 60 60 00 2a 2a 46 69 72 65 77 61 6c 6c 20 6d 61 72 6b 2a 2a 00 2a 2a 46 69 72 65 77 | ....``.**Firewall.mark**.**Firew |
| 1fc80 | 61 6c 6c 20 70 72 65 72 6f 75 74 69 6e 67 2a 2a 3a 20 72 75 6c 65 73 20 64 65 66 69 6e 65 64 20 | all.prerouting**:.rules.defined. |
| 1fca0 | 75 6e 64 65 72 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 5b 69 70 76 34 20 7c 20 69 70 76 | under.``set.firewall.[ipv4.|.ipv |
| 1fcc0 | 36 5d 20 70 72 65 72 6f 75 74 69 6e 67 20 72 61 77 2e 2e 2e 60 60 2e 20 41 6c 6c 20 72 75 6c 65 | 6].prerouting.raw...``..All.rule |
| 1fce0 | 73 20 64 65 66 69 6e 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 61 72 65 20 70 72 | s.defined.in.this.section.are.pr |
| 1fd00 | 6f 63 65 73 73 65 64 20 62 65 66 6f 72 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 | ocessed.before.connection.tracki |
| 1fd20 | 6e 67 20 73 75 62 73 79 73 74 65 6d 2e 00 2a 2a 46 6c 6f 77 74 61 62 6c 65 20 52 65 66 65 72 65 | ng.subsystem..**Flowtable.Refere |
| 1fd40 | 6e 63 65 3a 2a 2a 20 68 74 74 70 73 3a 2f 2f 64 6f 63 73 2e 6b 65 72 6e 65 6c 2e 6f 72 67 2f 6e | nce:**.https://docs.kernel.org/n |
| 1fd60 | 65 74 77 6f 72 6b 69 6e 67 2f 6e 66 5f 66 6c 6f 77 74 61 62 6c 65 2e 68 74 6d 6c 00 2a 2a 46 6f | etworking/nf_flowtable.html.**Fo |
| 1fd80 | 72 20 6d 6f 72 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2a 2a 20 6f 66 20 4e 65 74 66 69 6c 74 65 | r.more.information**.of.Netfilte |
| 1fda0 | 72 20 68 6f 6f 6b 73 20 61 6e 64 20 4c 69 6e 75 78 20 6e 65 74 77 6f 72 6b 69 6e 67 20 70 61 63 | r.hooks.and.Linux.networking.pac |
| 1fdc0 | 6b 65 74 20 66 6c 6f 77 73 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 69 6e 20 60 4e 65 74 66 69 | ket.flows.can.be.found.in.`Netfi |
| 1fde0 | 6c 74 65 72 2d 48 6f 6f 6b 73 20 3c 68 74 74 70 73 3a 2f 2f 77 69 6b 69 2e 6e 66 74 61 62 6c 65 | lter-Hooks.<https://wiki.nftable |
| 1fe00 | 73 2e 6f 72 67 2f 77 69 6b 69 2d 6e 66 74 61 62 6c 65 73 2f 69 6e 64 65 78 2e 70 68 70 2f 4e 65 | s.org/wiki-nftables/index.php/Ne |
| 1fe20 | 74 66 69 6c 74 65 72 5f 68 6f 6f 6b 73 3e 60 5f 00 2a 2a 46 6f 72 77 61 72 64 20 28 42 72 69 64 | tfilter_hooks>`_.**Forward.(Brid |
| 1fe40 | 67 65 29 2a 2a 3a 20 73 74 61 67 65 20 77 68 65 72 65 20 74 72 61 66 66 69 63 20 74 68 61 74 20 | ge)**:.stage.where.traffic.that. |
| 1fe60 | 69 73 20 74 72 61 73 73 70 61 73 69 6e 67 20 74 68 72 6f 75 67 68 20 74 68 65 20 62 72 69 64 67 | is.trasspasing.through.the.bridg |
| 1fe80 | 65 20 69 73 20 66 69 6c 74 65 72 65 64 20 61 6e 64 20 63 6f 6e 74 72 6f 6c 6c 65 64 3a 00 2a 2a | e.is.filtered.and.controlled:.** |
| 1fea0 | 46 6f 72 77 61 72 64 20 28 42 72 69 64 67 65 29 2a 2a 3a 20 73 74 61 67 65 20 77 68 65 72 65 20 | Forward.(Bridge)**:.stage.where. |
| 1fec0 | 74 72 61 66 66 69 63 20 74 68 61 74 20 69 73 20 74 72 65 73 70 61 73 69 6e 67 20 74 68 72 6f 75 | traffic.that.is.trespasing.throu |
| 1fee0 | 67 68 20 74 68 65 20 62 72 69 64 67 65 20 69 73 20 66 69 6c 74 65 72 65 64 20 61 6e 64 20 63 6f | gh.the.bridge.is.filtered.and.co |
| 1ff00 | 6e 74 72 6f 6c 6c 65 64 3a 00 2a 2a 46 6f 72 77 61 72 64 20 28 42 72 69 64 67 65 29 2a 2a 3a 20 | ntrolled:.**Forward.(Bridge)**:. |
| 1ff20 | 73 74 61 67 65 20 77 68 65 72 65 20 74 72 61 66 66 69 63 20 74 68 61 74 20 69 73 20 74 72 65 73 | stage.where.traffic.that.is.tres |
| 1ff40 | 70 61 73 73 69 6e 67 20 74 68 72 6f 75 67 68 20 74 68 65 20 62 72 69 64 67 65 20 69 73 20 66 69 | passing.through.the.bridge.is.fi |
| 1ff60 | 6c 74 65 72 65 64 20 61 6e 64 20 63 6f 6e 74 72 6f 6c 6c 65 64 3a 00 2a 2a 46 6f 72 77 61 72 64 | ltered.and.controlled:.**Forward |
| 1ff80 | 2a 2a 3a 20 73 74 61 67 65 20 77 68 65 72 65 20 74 72 61 6e 73 69 74 20 74 72 61 66 66 69 63 20 | **:.stage.where.transit.traffic. |
| 1ffa0 | 63 61 6e 20 62 65 20 66 69 6c 74 65 72 65 64 20 61 6e 64 20 63 6f 6e 74 72 6f 6c 6c 65 64 2e 20 | can.be.filtered.and.controlled.. |
| 1ffc0 | 54 68 69 73 20 69 6e 63 6c 75 64 65 73 20 69 70 76 34 20 61 6e 64 20 69 70 76 36 20 66 69 6c 74 | This.includes.ipv4.and.ipv6.filt |
| 1ffe0 | 65 72 69 6e 67 20 72 75 6c 65 73 2c 20 64 65 66 69 6e 65 64 20 69 6e 3a 00 2a 2a 48 61 72 64 77 | ering.rules,.defined.in:.**Hardw |
| 20000 | 61 72 65 20 6f 66 66 6c 6f 61 64 3a 2a 2a 20 73 68 6f 75 6c 64 20 62 65 20 73 75 70 70 6f 72 74 | are.offload:**.should.be.support |
| 20020 | 65 64 20 62 79 20 74 68 65 20 4e 49 43 73 20 75 73 65 64 2e 00 2a 2a 49 47 50 20 63 6f 73 74 20 | ed.by.the.NICs.used..**IGP.cost. |
| 20040 | 63 68 65 63 6b 2a 2a 00 2a 2a 49 50 76 34 20 28 44 53 43 50 20 76 61 6c 75 65 2c 20 6d 61 78 69 | check**.**IPv4.(DSCP.value,.maxi |
| 20060 | 6d 75 6d 20 70 61 63 6b 65 74 20 6c 65 6e 67 74 68 2c 20 70 72 6f 74 6f 63 6f 6c 2c 20 73 6f 75 | mum.packet.length,.protocol,.sou |
| 20080 | 72 63 65 20 61 64 64 72 65 73 73 2c 2a 2a 20 2a 2a 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 | rce.address,**.**destination.add |
| 200a0 | 72 65 73 73 2c 20 73 6f 75 72 63 65 20 70 6f 72 74 2c 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 70 | ress,.source.port,.destination.p |
| 200c0 | 6f 72 74 20 6f 72 20 54 43 50 20 66 6c 61 67 73 29 2a 2a 00 2a 2a 49 50 76 34 20 41 64 64 72 65 | ort.or.TCP.flags)**.**IPv4.Addre |
| 200e0 | 73 73 20 43 6f 6e 73 65 72 76 61 74 69 6f 6e 2a 2a 3a 20 43 47 4e 41 54 20 68 65 6c 70 73 20 6d | ss.Conservation**:.CGNAT.helps.m |
| 20100 | 69 74 69 67 61 74 65 20 74 68 65 20 65 78 68 61 75 73 74 69 6f 6e 20 6f 66 20 49 50 76 34 20 61 | itigate.the.exhaustion.of.IPv4.a |
| 20120 | 64 64 72 65 73 73 65 73 20 62 79 20 61 6c 6c 6f 77 69 6e 67 20 6d 75 6c 74 69 70 6c 65 20 63 75 | ddresses.by.allowing.multiple.cu |
| 20140 | 73 74 6f 6d 65 72 73 20 74 6f 20 73 68 61 72 65 20 61 20 73 69 6e 67 6c 65 20 70 75 62 6c 69 63 | stomers.to.share.a.single.public |
| 20160 | 20 49 50 20 61 64 64 72 65 73 73 2e 00 2a 2a 49 50 76 36 20 28 44 53 43 50 20 76 61 6c 75 65 2c | .IP.address..**IPv6.(DSCP.value, |
| 20180 | 20 6d 61 78 69 6d 75 6d 20 70 61 79 6c 6f 61 64 20 6c 65 6e 67 74 68 2c 20 70 72 6f 74 6f 63 6f | .maximum.payload.length,.protoco |
| 201a0 | 6c 2c 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 2c 2a 2a 20 2a 2a 64 65 73 74 69 6e 61 74 69 | l,.source.address,**.**destinati |
| 201c0 | 6f 6e 20 61 64 64 72 65 73 73 2c 20 73 6f 75 72 63 65 20 70 6f 72 74 2c 20 64 65 73 74 69 6e 61 | on.address,.source.port,.destina |
| 201e0 | 74 69 6f 6e 20 70 6f 72 74 20 6f 72 20 54 43 50 20 66 6c 61 67 73 29 2a 2a 00 2a 2a 49 66 20 79 | tion.port.or.TCP.flags)**.**If.y |
| 20200 | 6f 75 20 61 72 65 20 6c 6f 6f 6b 69 6e 67 20 66 6f 72 20 61 20 70 6f 6c 69 63 79 20 66 6f 72 20 | ou.are.looking.for.a.policy.for. |
| 20220 | 79 6f 75 72 20 6f 75 74 62 6f 75 6e 64 20 74 72 61 66 66 69 63 2a 2a 20 62 75 74 20 79 6f 75 20 | your.outbound.traffic**.but.you. |
| 20240 | 64 6f 6e 27 74 20 6b 6e 6f 77 20 77 68 69 63 68 20 6f 6e 65 20 79 6f 75 20 6e 65 65 64 20 61 6e | don't.know.which.one.you.need.an |
| 20260 | 64 20 79 6f 75 20 64 6f 6e 27 74 20 77 61 6e 74 20 74 6f 20 67 6f 20 74 68 72 6f 75 67 68 20 65 | d.you.don't.want.to.go.through.e |
| 20280 | 76 65 72 79 20 70 6f 73 73 69 62 6c 65 20 70 6f 6c 69 63 79 20 73 68 6f 77 6e 20 68 65 72 65 2c | very.possible.policy.shown.here, |
| 202a0 | 20 2a 2a 6f 75 72 20 62 65 74 20 69 73 20 74 68 61 74 20 68 69 67 68 6c 79 20 6c 69 6b 65 6c 79 | .**our.bet.is.that.highly.likely |
| 202c0 | 20 79 6f 75 20 61 72 65 20 6c 6f 6f 6b 69 6e 67 20 66 6f 72 20 61 2a 2a 20 53 68 61 70 65 72 5f | .you.are.looking.for.a**.Shaper_ |
| 202e0 | 20 2a 2a 70 6f 6c 69 63 79 20 61 6e 64 20 79 6f 75 20 77 61 6e 74 20 74 6f 2a 2a 20 3a 72 65 66 | .**policy.and.you.want.to**.:ref |
| 20300 | 3a 60 73 65 74 20 69 74 73 20 71 75 65 75 65 73 20 3c 65 6d 62 65 64 3e 60 20 2a 2a 61 73 20 46 | :`set.its.queues.<embed>`.**as.F |
| 20320 | 51 2d 43 6f 44 65 6c 2a 2a 2e 00 2a 2a 49 6d 70 6f 72 74 61 6e 74 20 6e 6f 74 65 20 61 62 6f 75 | Q-CoDel**..**Important.note.abou |
| 20340 | 74 20 63 6f 6e 6e 74 72 61 63 6b 20 69 67 6e 6f 72 65 20 72 75 6c 65 73 3a 2a 2a 20 53 74 61 72 | t.conntrack.ignore.rules:**.Star |
| 20360 | 74 69 6e 67 20 66 72 6f 6d 20 76 79 6f 73 2d 31 2e 35 2d 72 6f 6c 6c 69 6e 67 2d 32 30 32 34 30 | ting.from.vyos-1.5-rolling-20240 |
| 20380 | 36 31 32 30 30 32 30 2c 20 69 67 6e 6f 72 65 20 72 75 6c 65 73 20 63 61 6e 20 62 65 20 64 65 66 | 6120020,.ignore.rules.can.be.def |
| 203a0 | 69 6e 65 64 20 69 6e 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 5b 69 70 76 34 20 7c 20 69 | ined.in.``set.firewall.[ipv4.|.i |
| 203c0 | 70 76 36 5d 20 70 72 65 72 6f 75 74 69 6e 67 20 72 61 77 20 2e 2e 2e 60 60 2e 20 49 74 27 73 20 | pv6].prerouting.raw....``..It's. |
| 203e0 | 65 78 70 65 63 74 65 64 20 74 68 61 74 20 69 6e 20 74 68 65 20 66 75 74 75 72 65 20 74 68 65 20 | expected.that.in.the.future.the. |
| 20400 | 63 6f 6e 6e 74 72 61 63 6b 20 69 67 6e 6f 72 65 20 72 75 6c 65 73 20 77 69 6c 6c 20 62 65 20 72 | conntrack.ignore.rules.will.be.r |
| 20420 | 65 6d 6f 76 65 64 2e 00 2a 2a 49 6d 70 6f 72 74 61 6e 74 20 6e 6f 74 65 20 61 62 6f 75 74 20 64 | emoved..**Important.note.about.d |
| 20440 | 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 73 3a 2a 2a 20 49 66 20 61 20 64 65 66 61 75 6c 74 20 61 | efault-actions:**.If.a.default.a |
| 20460 | 63 74 69 6f 6e 20 66 6f 72 20 61 6e 79 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 20 6e 6f 74 20 | ction.for.any.base.chain.is.not. |
| 20480 | 64 65 66 69 6e 65 64 2c 20 74 68 65 6e 20 74 68 65 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e | defined,.then.the.default.action |
| 204a0 | 20 69 73 20 73 65 74 20 74 6f 20 2a 2a 61 63 63 65 70 74 2a 2a 20 66 6f 72 20 74 68 61 74 20 63 | .is.set.to.**accept**.for.that.c |
| 204c0 | 68 61 69 6e 2e 20 46 6f 72 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 73 2c 20 69 66 20 74 68 65 20 | hain..For.custom.chains,.if.the. |
| 204e0 | 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 69 73 20 6e 6f 74 20 64 65 66 69 6e 65 64 2c 20 74 | default.action.is.not.defined,.t |
| 20500 | 68 65 6e 20 74 68 65 20 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f | hen.the.default-action.is.set.to |
| 20520 | 20 2a 2a 64 72 6f 70 2a 2a 00 2a 2a 49 6d 70 6f 72 74 61 6e 74 20 6e 6f 74 65 20 61 62 6f 75 74 | .**drop**.**Important.note.about |
| 20540 | 20 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 73 3a 2a 2a 20 49 66 20 64 65 66 61 75 6c 74 20 61 | .default-actions:**.If.default.a |
| 20560 | 63 74 69 6f 6e 20 66 6f 72 20 61 6e 79 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 20 6e 6f 74 20 | ction.for.any.base.chain.is.not. |
| 20580 | 64 65 66 69 6e 65 64 2c 20 74 68 65 6e 20 74 68 65 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e | defined,.then.the.default.action |
| 205a0 | 20 69 73 20 73 65 74 20 74 6f 20 2a 2a 61 63 63 65 70 74 2a 2a 20 66 6f 72 20 74 68 61 74 20 63 | .is.set.to.**accept**.for.that.c |
| 205c0 | 68 61 69 6e 2e 20 46 6f 72 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 73 2c 20 69 66 20 64 65 66 61 | hain..For.custom.chains,.if.defa |
| 205e0 | 75 6c 74 20 61 63 74 69 6f 6e 20 69 73 20 6e 6f 74 20 64 65 66 69 6e 65 64 2c 20 74 68 65 6e 20 | ult.action.is.not.defined,.then. |
| 20600 | 74 68 65 20 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 2a 2a 64 | the.default-action.is.set.to.**d |
| 20620 | 72 6f 70 2a 2a 00 2a 2a 49 6d 70 6f 72 74 61 6e 74 20 6e 6f 74 65 20 61 62 6f 75 74 20 64 65 66 | rop**.**Important.note.about.def |
| 20640 | 61 75 6c 74 2d 61 63 74 69 6f 6e 73 3a 2a 2a 20 49 66 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f | ault-actions:**.If.default.actio |
| 20660 | 6e 20 66 6f 72 20 61 6e 79 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 20 6e 6f 74 20 64 65 66 69 | n.for.any.base.chain.is.not.defi |
| 20680 | 6e 65 64 2c 20 74 68 65 6e 20 74 68 65 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 69 73 20 | ned,.then.the.default.action.is. |
| 206a0 | 73 65 74 20 74 6f 20 2a 2a 61 63 63 65 70 74 2a 2a 20 66 6f 72 20 74 68 61 74 20 63 68 61 69 6e | set.to.**accept**.for.that.chain |
| 206c0 | 2e 20 46 6f 72 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 73 2c 20 69 66 20 64 65 66 61 75 6c 74 20 | ..For.custom.chains,.if.default. |
| 206e0 | 61 63 74 69 6f 6e 20 69 73 20 6e 6f 74 20 64 65 66 69 6e 65 64 2c 20 74 68 65 6e 20 74 68 65 20 | action.is.not.defined,.then.the. |
| 20700 | 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 2a 2a 64 72 6f 70 2a | default-action.is.set.to.**drop* |
| 20720 | 2a 2e 00 2a 2a 49 6d 70 6f 72 74 61 6e 74 20 6e 6f 74 65 20 61 62 6f 75 74 20 64 65 66 61 75 6c | *..**Important.note.about.defaul |
| 20740 | 74 2d 61 63 74 69 6f 6e 73 3a 2a 2a 20 49 66 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 66 | t-actions:**.If.default.action.f |
| 20760 | 6f 72 20 61 6e 79 20 63 68 61 69 6e 20 69 73 20 6e 6f 74 20 64 65 66 69 6e 65 64 2c 20 74 68 65 | or.any.chain.is.not.defined,.the |
| 20780 | 6e 20 74 68 65 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 2a | n.the.default.action.is.set.to.* |
| 207a0 | 2a 61 63 63 65 70 74 2a 2a 20 66 6f 72 20 74 68 61 74 20 63 68 61 69 6e 2e 20 4f 6e 6c 79 20 66 | *accept**.for.that.chain..Only.f |
| 207c0 | 6f 72 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 73 2c 20 74 68 65 20 64 65 66 61 75 6c 74 20 61 63 | or.custom.chains,.the.default.ac |
| 207e0 | 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 2a 2a 64 72 6f 70 2a 2a 2e 00 2a 2a 49 6d 70 6f 72 | tion.is.set.to.**drop**..**Impor |
| 20800 | 74 61 6e 74 20 6e 6f 74 65 20 61 62 6f 75 74 20 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 73 3a | tant.note.about.default-actions: |
| 20820 | 2a 2a 20 49 66 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 66 6f 72 20 61 6e 79 20 63 68 61 | **.If.default.action.for.any.cha |
| 20840 | 69 6e 20 69 73 20 6e 6f 74 20 64 65 66 69 6e 65 64 2c 20 74 68 65 6e 20 74 68 65 20 64 65 66 61 | in.is.not.defined,.then.the.defa |
| 20860 | 75 6c 74 20 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 2a 2a 64 72 6f 70 2a 2a 20 66 6f | ult.action.is.set.to.**drop**.fo |
| 20880 | 72 20 74 68 61 74 20 63 68 61 69 6e 2e 00 2a 2a 49 6d 70 6f 72 74 61 6e 74 20 6e 6f 74 65 20 61 | r.that.chain..**Important.note.a |
| 208a0 | 62 6f 75 74 20 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 73 3a 2a 2a 20 49 66 20 74 68 65 20 64 | bout.default-actions:**.If.the.d |
| 208c0 | 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 66 6f 72 20 61 6e 79 20 62 61 73 65 20 63 68 61 69 6e | efault.action.for.any.base.chain |
| 208e0 | 20 69 73 20 6e 6f 74 20 64 65 66 69 6e 65 64 2c 20 74 68 65 6e 20 74 68 65 20 64 65 66 61 75 6c | .is.not.defined,.then.the.defaul |
| 20900 | 74 20 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 2a 2a 61 63 63 65 70 74 2a 2a 20 66 6f | t.action.is.set.to.**accept**.fo |
| 20920 | 72 20 74 68 61 74 20 63 68 61 69 6e 2e 20 46 6f 72 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 73 20 | r.that.chain..For.custom.chains. |
| 20940 | 69 66 20 61 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 69 73 20 6e 6f 74 20 64 65 66 69 6e | if.a.default.action.is.not.defin |
| 20960 | 65 64 20 74 68 65 6e 20 74 68 65 20 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 20 69 73 20 73 65 | ed.then.the.default-action.is.se |
| 20980 | 74 20 74 6f 20 2a 2a 64 72 6f 70 2a 2a 2e 00 2a 2a 49 6d 70 6f 72 74 61 6e 74 20 6e 6f 74 65 20 | t.to.**drop**..**Important.note. |
| 209a0 | 61 62 6f 75 74 20 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 73 3a 2a 2a 20 49 66 20 74 68 65 20 | about.default-actions:**.If.the. |
| 209c0 | 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 66 6f 72 20 61 6e 79 20 62 61 73 65 20 63 68 61 69 | default.action.for.any.base.chai |
| 209e0 | 6e 20 69 73 20 6e 6f 74 20 64 65 66 69 6e 65 64 2c 20 74 68 65 6e 20 74 68 65 20 64 65 66 61 75 | n.is.not.defined,.then.the.defau |
| 20a00 | 6c 74 20 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 2a 2a 61 63 63 65 70 74 2a 2a 20 66 | lt.action.is.set.to.**accept**.f |
| 20a20 | 6f 72 20 74 68 61 74 20 63 68 61 69 6e 2e 20 46 6f 72 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 73 | or.that.chain..For.custom.chains |
| 20a40 | 2c 20 69 66 20 74 68 65 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 69 73 20 6e 6f 74 20 64 | ,.if.the.default.action.is.not.d |
| 20a60 | 65 66 69 6e 65 64 2c 20 74 68 65 6e 20 74 68 65 20 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 20 | efined,.then.the.default-action. |
| 20a80 | 69 73 20 73 65 74 20 74 6f 20 2a 2a 64 72 6f 70 2a 2a 2e 00 2a 2a 49 6d 70 6f 72 74 61 6e 74 20 | is.set.to.**drop**..**Important. |
| 20aa0 | 6e 6f 74 65 20 6f 6e 20 75 73 61 67 65 20 6f 66 20 74 65 72 6d 73 3a 2a 2a 20 54 68 65 20 66 69 | note.on.usage.of.terms:**.The.fi |
| 20ac0 | 72 65 77 61 6c 6c 20 6d 61 6b 65 73 20 75 73 65 20 6f 66 20 74 68 65 20 74 65 72 6d 73 20 60 66 | rewall.makes.use.of.the.terms.`f |
| 20ae0 | 6f 72 77 61 72 64 60 2c 20 60 69 6e 70 75 74 60 2c 20 61 6e 64 20 60 6f 75 74 70 75 74 60 20 66 | orward`,.`input`,.and.`output`.f |
| 20b00 | 6f 72 20 66 69 72 65 77 61 6c 6c 20 70 6f 6c 69 63 79 2e 20 4d 6f 72 65 20 69 6e 66 6f 72 6d 61 | or.firewall.policy..More.informa |
| 20b20 | 74 69 6f 6e 20 6f 66 20 4e 65 74 66 69 6c 74 65 72 20 68 6f 6f 6b 73 20 61 6e 64 20 4c 69 6e 75 | tion.of.Netfilter.hooks.and.Linu |
| 20b40 | 78 20 6e 65 74 77 6f 72 6b 69 6e 67 20 70 61 63 6b 65 74 20 66 6c 6f 77 73 20 63 61 6e 20 62 65 | x.networking.packet.flows.can.be |
| 20b60 | 20 66 6f 75 6e 64 20 69 6e 20 60 4e 65 74 66 69 6c 74 65 72 2d 48 6f 6f 6b 73 20 3c 68 74 74 70 | .found.in.`Netfilter-Hooks.<http |
| 20b80 | 73 3a 2f 2f 77 69 6b 69 2e 6e 66 74 61 62 6c 65 73 2e 6f 72 67 2f 77 69 6b 69 2d 6e 66 74 61 62 | s://wiki.nftables.org/wiki-nftab |
| 20ba0 | 6c 65 73 2f 69 6e 64 65 78 2e 70 68 70 2f 4e 65 74 66 69 6c 74 65 72 5f 68 6f 6f 6b 73 3e 60 5f | les/index.php/Netfilter_hooks>`_ |
| 20bc0 | 00 2a 2a 49 6d 70 6f 72 74 61 6e 74 20 6e 6f 74 65 20 6f 6e 20 75 73 61 67 65 20 6f 66 20 74 65 | .**Important.note.on.usage.of.te |
| 20be0 | 72 6d 73 3a 2a 2a 20 54 68 65 20 66 69 72 65 77 61 6c 6c 20 6d 61 6b 65 73 20 75 73 65 20 6f 66 | rms:**.The.firewall.makes.use.of |
| 20c00 | 20 74 68 65 20 74 65 72 6d 73 20 60 69 6e 60 2c 20 60 6f 75 74 60 2c 20 61 6e 64 20 60 6c 6f 63 | .the.terms.`in`,.`out`,.and.`loc |
| 20c20 | 61 6c 60 20 66 6f 72 20 66 69 72 65 77 61 6c 6c 20 70 6f 6c 69 63 79 2e 20 55 73 65 72 73 20 65 | al`.for.firewall.policy..Users.e |
| 20c40 | 78 70 65 72 69 65 6e 63 65 64 20 77 69 74 68 20 6e 65 74 66 69 6c 74 65 72 20 6f 66 74 65 6e 20 | xperienced.with.netfilter.often. |
| 20c60 | 63 6f 6e 66 75 73 65 20 60 69 6e 60 20 74 6f 20 62 65 20 61 20 72 65 66 65 72 65 6e 63 65 20 74 | confuse.`in`.to.be.a.reference.t |
| 20c80 | 6f 20 74 68 65 20 60 49 4e 50 55 54 60 20 63 68 61 69 6e 2c 20 61 6e 64 20 60 6f 75 74 60 20 74 | o.the.`INPUT`.chain,.and.`out`.t |
| 20ca0 | 68 65 20 60 4f 55 54 50 55 54 60 20 63 68 61 69 6e 20 66 72 6f 6d 20 6e 65 74 66 69 6c 74 65 72 | he.`OUTPUT`.chain.from.netfilter |
| 20cc0 | 2e 20 54 68 69 73 20 69 73 20 6e 6f 74 20 74 68 65 20 63 61 73 65 2e 20 54 68 65 73 65 20 69 6e | ..This.is.not.the.case..These.in |
| 20ce0 | 73 74 65 61 64 20 69 6e 64 69 63 61 74 65 20 74 68 65 20 75 73 65 20 6f 66 20 74 68 65 20 60 46 | stead.indicate.the.use.of.the.`F |
| 20d00 | 4f 52 57 41 52 44 60 20 63 68 61 69 6e 20 61 6e 64 20 65 69 74 68 65 72 20 74 68 65 20 69 6e 70 | ORWARD`.chain.and.either.the.inp |
| 20d20 | 75 74 20 6f 72 20 6f 75 74 70 75 74 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 65 20 60 49 4e 50 | ut.or.output.interface..The.`INP |
| 20d40 | 55 54 60 20 63 68 61 69 6e 2c 20 77 68 69 63 68 20 69 73 20 75 73 65 64 20 66 6f 72 20 6c 6f 63 | UT`.chain,.which.is.used.for.loc |
| 20d60 | 61 6c 20 74 72 61 66 66 69 63 20 74 6f 20 74 68 65 20 4f 53 2c 20 69 73 20 61 20 72 65 66 65 72 | al.traffic.to.the.OS,.is.a.refer |
| 20d80 | 65 6e 63 65 20 74 6f 20 61 73 20 60 6c 6f 63 61 6c 60 20 77 69 74 68 20 72 65 73 70 65 63 74 20 | ence.to.as.`local`.with.respect. |
| 20da0 | 74 6f 20 69 74 73 20 69 6e 70 75 74 20 69 6e 74 65 72 66 61 63 65 2e 00 2a 2a 49 6d 70 6f 72 74 | to.its.input.interface..**Import |
| 20dc0 | 61 6e 74 20 6e 6f 74 65 3a 2a 2a 20 54 68 69 73 20 64 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 69 | ant.note:**.This.documentation.i |
| 20de0 | 73 20 76 61 6c 69 64 20 6f 6e 6c 79 20 66 6f 72 20 56 79 4f 53 20 53 61 67 69 74 74 61 20 70 72 | s.valid.only.for.VyOS.Sagitta.pr |
| 20e00 | 69 6f 72 20 74 6f 20 31 2e 34 2d 72 6f 6c 6c 69 6e 67 2d 32 30 32 33 30 38 30 34 30 35 35 37 00 | ior.to.1.4-rolling-202308040557. |
| 20e20 | 2a 2a 49 6d 70 6f 72 74 61 6e 74 20 6e 6f 74 65 3a 2a 2a 20 54 68 69 73 20 64 6f 63 75 6d 65 6e | **Important.note:**.This.documen |
| 20e40 | 74 61 74 69 6f 6e 20 69 73 20 76 61 6c 69 64 20 6f 6e 6c 79 20 66 6f 72 20 56 79 4f 53 20 53 61 | tation.is.valid.only.for.VyOS.Sa |
| 20e60 | 67 69 74 74 61 20 70 72 69 6f 72 20 74 6f 20 31 2e 34 2d 72 6f 6c 6c 69 6e 67 2d 59 59 59 59 4d | gitta.prior.to.1.4-rolling-YYYYM |
| 20e80 | 4d 44 44 48 48 6d 6d 00 2a 2a 49 6e 70 75 74 20 28 42 72 69 64 67 65 29 2a 2a 3a 20 73 74 61 67 | MDDHHmm.**Input.(Bridge)**:.stag |
| 20ea0 | 65 20 77 68 65 72 65 20 74 72 61 66 66 69 63 20 64 65 73 74 69 6e 65 64 20 66 6f 72 20 74 68 65 | e.where.traffic.destined.for.the |
| 20ec0 | 20 62 72 69 64 67 65 20 69 74 73 65 6c 66 20 63 61 6e 20 62 65 20 66 69 6c 74 65 72 65 64 20 61 | .bridge.itself.can.be.filtered.a |
| 20ee0 | 6e 64 20 63 6f 6e 74 72 6f 6c 6c 65 64 3a 00 2a 2a 49 6e 70 75 74 2a 2a 3a 20 73 74 61 67 65 20 | nd.controlled:.**Input**:.stage. |
| 20f00 | 77 68 65 72 65 20 74 72 61 66 66 69 63 20 64 65 73 74 69 6e 61 74 65 64 20 74 6f 20 74 68 65 20 | where.traffic.destinated.to.the. |
| 20f20 | 72 6f 75 74 65 72 20 69 74 73 65 6c 66 20 63 61 6e 20 62 65 20 66 69 6c 74 65 72 65 64 20 61 6e | router.itself.can.be.filtered.an |
| 20f40 | 64 20 63 6f 6e 74 72 6f 6c 6c 65 64 2e 20 54 68 69 73 20 69 73 20 77 68 65 72 65 20 61 6c 6c 20 | d.controlled..This.is.where.all. |
| 20f60 | 72 75 6c 65 73 20 66 6f 72 20 73 65 63 75 72 69 6e 67 20 74 68 65 20 72 6f 75 74 65 72 20 73 68 | rules.for.securing.the.router.sh |
| 20f80 | 6f 75 6c 64 20 74 61 6b 65 20 70 6c 61 63 65 2e 20 54 68 69 73 20 69 6e 63 6c 75 64 65 73 20 69 | ould.take.place..This.includes.i |
| 20fa0 | 70 76 34 20 61 6e 64 20 69 70 76 36 20 66 69 6c 74 65 72 69 6e 67 20 72 75 6c 65 73 2c 20 64 65 | pv4.and.ipv6.filtering.rules,.de |
| 20fc0 | 66 69 6e 65 64 20 69 6e 3a 00 2a 2a 49 6e 70 75 74 2a 2a 3a 20 73 74 61 67 65 20 77 68 65 72 65 | fined.in:.**Input**:.stage.where |
| 20fe0 | 20 74 72 61 66 66 69 63 20 64 65 73 74 69 6e 65 64 20 66 6f 72 20 74 68 65 20 72 6f 75 74 65 72 | .traffic.destined.for.the.router |
| 21000 | 20 69 74 73 65 6c 66 20 63 61 6e 20 62 65 20 66 69 6c 74 65 72 65 64 20 61 6e 64 20 63 6f 6e 74 | .itself.can.be.filtered.and.cont |
| 21020 | 72 6f 6c 6c 65 64 2e 20 54 68 69 73 20 69 73 20 77 68 65 72 65 20 61 6c 6c 20 72 75 6c 65 73 20 | rolled..This.is.where.all.rules. |
| 21040 | 66 6f 72 20 73 65 63 75 72 69 6e 67 20 74 68 65 20 72 6f 75 74 65 72 20 73 68 6f 75 6c 64 20 74 | for.securing.the.router.should.t |
| 21060 | 61 6b 65 20 70 6c 61 63 65 2e 20 54 68 69 73 20 69 6e 63 6c 75 64 65 73 20 69 70 76 34 20 61 6e | ake.place..This.includes.ipv4.an |
| 21080 | 64 20 69 70 76 36 20 66 69 6c 74 65 72 69 6e 67 20 72 75 6c 65 73 2c 20 64 65 66 69 6e 65 64 20 | d.ipv6.filtering.rules,.defined. |
| 210a0 | 69 6e 3a 00 2a 2a 49 6e 74 65 72 66 61 63 65 20 6e 61 6d 65 2a 2a 00 2a 2a 4c 45 46 54 2a 2a 00 | in:.**Interface.name**.**LEFT**. |
| 210c0 | 2a 2a 4c 45 46 54 3a 2a 2a 20 2a 20 57 41 4e 20 69 6e 74 65 72 66 61 63 65 20 6f 6e 20 60 65 74 | **LEFT:**.*.WAN.interface.on.`et |
| 210e0 | 68 30 2e 32 30 31 60 20 2a 20 60 65 74 68 30 2e 32 30 31 60 20 69 6e 74 65 72 66 61 63 65 20 49 | h0.201`.*.`eth0.201`.interface.I |
| 21100 | 50 3a 20 60 31 37 32 2e 31 38 2e 32 30 31 2e 31 30 2f 32 34 60 20 2a 20 60 76 74 69 31 30 60 20 | P:.`172.18.201.10/24`.*.`vti10`. |
| 21120 | 69 6e 74 65 72 66 61 63 65 20 49 50 3a 20 60 31 30 2e 30 2e 30 2e 32 2f 33 31 60 20 2a 20 60 64 | interface.IP:.`10.0.0.2/31`.*.`d |
| 21140 | 75 6d 30 60 20 69 6e 74 65 72 66 61 63 65 20 49 50 3a 20 60 31 30 2e 30 2e 31 31 2e 31 2f 32 34 | um0`.interface.IP:.`10.0.11.1/24 |
| 21160 | 60 20 28 66 6f 72 20 74 65 73 74 69 6e 67 20 70 75 72 70 6f 73 65 73 29 00 2a 2a 4c 61 79 65 72 | `.(for.testing.purposes).**Layer |
| 21180 | 20 33 20 62 72 69 64 67 65 2a 2a 3a 20 57 68 65 6e 20 61 6e 20 49 50 20 61 64 64 72 65 73 73 20 | .3.bridge**:.When.an.IP.address. |
| 211a0 | 69 73 20 61 73 73 69 67 6e 65 64 20 74 6f 20 74 68 65 20 62 72 69 64 67 65 20 69 6e 74 65 72 66 | is.assigned.to.the.bridge.interf |
| 211c0 | 61 63 65 2c 20 61 6e 64 20 69 66 20 74 72 61 66 66 69 63 20 69 73 20 73 65 6e 74 20 74 6f 20 74 | ace,.and.if.traffic.is.sent.to.t |
| 211e0 | 68 65 20 72 6f 75 74 65 72 20 74 6f 20 74 68 69 73 20 49 50 20 28 66 6f 72 20 65 78 61 6d 70 6c | he.router.to.this.IP.(for.exampl |
| 21200 | 65 20 75 73 69 6e 67 20 73 75 63 68 20 49 50 20 61 73 20 64 65 66 61 75 6c 74 20 67 61 74 65 77 | e.using.such.IP.as.default.gatew |
| 21220 | 61 79 29 2c 20 74 68 65 6e 20 72 75 6c 65 73 20 64 65 66 69 6e 65 64 20 66 6f 72 20 2a 2a 62 72 | ay),.then.rules.defined.for.**br |
| 21240 | 69 64 67 65 20 66 69 72 65 77 61 6c 6c 2a 2a 20 77 6f 6e 27 74 20 6d 61 74 63 68 2c 20 61 6e 64 | idge.firewall**.won't.match,.and |
| 21260 | 20 66 69 72 65 77 61 6c 6c 20 61 6e 61 6c 79 73 69 73 20 63 6f 6e 74 69 6e 75 65 73 20 61 74 20 | .firewall.analysis.continues.at. |
| 21280 | 2a 2a 49 50 20 6c 61 79 65 72 2a 2a 2e 00 2a 2a 4c 65 61 66 32 20 63 6f 6e 66 69 67 75 72 61 74 | **IP.layer**..**Leaf2.configurat |
| 212a0 | 69 6f 6e 3a 2a 2a 00 2a 2a 4c 65 61 66 33 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 2a 2a 00 | ion:**.**Leaf3.configuration:**. |
| 212c0 | 2a 2a 4c 69 6e 75 78 20 73 79 73 74 65 6d 64 2d 6e 65 74 77 6f 72 6b 64 3a 2a 2a 00 2a 2a 4c 6f | **Linux.systemd-networkd:**.**Lo |
| 212e0 | 63 61 6c 20 70 72 65 66 65 72 65 6e 63 65 20 63 68 65 63 6b 2a 2a 00 2a 2a 4c 6f 63 61 6c 20 72 | cal.preference.check**.**Local.r |
| 21300 | 6f 75 74 65 20 63 68 65 63 6b 2a 2a 00 2a 2a 4d 45 44 20 63 68 65 63 6b 2a 2a 00 2a 2a 4d 75 6c | oute.check**.**MED.check**.**Mul |
| 21320 | 74 69 2d 70 61 74 68 20 63 68 65 63 6b 2a 2a 00 2a 2a 4e 6f 64 65 20 31 2a 2a 00 2a 2a 4e 6f 64 | ti-path.check**.**Node.1**.**Nod |
| 21340 | 65 20 31 3a 2a 2a 00 2a 2a 4e 6f 64 65 20 32 2a 2a 00 2a 2a 4e 6f 64 65 20 32 3a 2a 2a 00 2a 2a | e.1:**.**Node.2**.**Node.2:**.** |
| 21360 | 4e 6f 64 65 31 3a 2a 2a 00 2a 2a 4e 6f 64 65 32 3a 2a 2a 00 2a 2a 4f 50 54 49 4f 4e 41 4c 3a 2a | Node1:**.**Node2:**.**OPTIONAL:* |
| 21380 | 2a 20 45 78 63 6c 75 64 65 20 49 6e 74 65 72 2d 56 4c 41 4e 20 74 72 61 66 66 69 63 20 28 62 65 | *.Exclude.Inter-VLAN.traffic.(be |
| 213a0 | 74 77 65 65 6e 20 56 4c 41 4e 31 30 20 61 6e 64 20 56 4c 41 4e 31 31 29 20 66 72 6f 6d 20 50 42 | tween.VLAN10.and.VLAN11).from.PB |
| 213c0 | 52 00 2a 2a 4f 53 50 46 20 6e 65 74 77 6f 72 6b 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 2a 2a | R.**OSPF.network.routing.table** |
| 213e0 | 20 e2 80 93 20 69 6e 63 6c 75 64 65 73 20 61 20 6c 69 73 74 20 6f 66 20 61 63 71 75 69 72 65 64 | .....includes.a.list.of.acquired |
| 21400 | 20 72 6f 75 74 65 73 20 66 6f 72 20 61 6c 6c 20 61 63 63 65 73 73 69 62 6c 65 20 6e 65 74 77 6f | .routes.for.all.accessible.netwo |
| 21420 | 72 6b 73 20 28 6f 72 20 61 67 67 72 65 67 61 74 65 64 20 61 72 65 61 20 72 61 6e 67 65 73 29 20 | rks.(or.aggregated.area.ranges). |
| 21440 | 6f 66 20 4f 53 50 46 20 73 79 73 74 65 6d 2e 20 22 49 41 22 20 66 6c 61 67 20 6d 65 61 6e 73 20 | of.OSPF.system.."IA".flag.means. |
| 21460 | 74 68 61 74 20 72 6f 75 74 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 69 73 20 69 6e 20 74 68 65 | that.route.destination.is.in.the |
| 21480 | 20 61 72 65 61 20 74 6f 20 77 68 69 63 68 20 74 68 65 20 72 6f 75 74 65 72 20 69 73 20 6e 6f 74 | .area.to.which.the.router.is.not |
| 214a0 | 20 63 6f 6e 6e 65 63 74 65 64 2c 20 69 2e 65 2e 20 69 74 e2 80 99 73 20 61 6e 20 69 6e 74 65 72 | .connected,.i.e..it...s.an.inter |
| 214c0 | 2d 61 72 65 61 20 70 61 74 68 2e 20 49 6e 20 73 71 75 61 72 65 20 62 72 61 63 6b 65 74 73 20 61 | -area.path..In.square.brackets.a |
| 214e0 | 20 73 75 6d 6d 61 72 79 20 6d 65 74 72 69 63 20 66 6f 72 20 61 6c 6c 20 6c 69 6e 6b 73 20 74 68 | .summary.metric.for.all.links.th |
| 21500 | 72 6f 75 67 68 20 77 68 69 63 68 20 61 20 70 61 74 68 20 6c 69 65 73 20 74 6f 20 74 68 69 73 20 | rough.which.a.path.lies.to.this. |
| 21520 | 6e 65 74 77 6f 72 6b 20 69 73 20 73 70 65 63 69 66 69 65 64 2e 20 22 76 69 61 22 20 70 72 65 66 | network.is.specified.."via".pref |
| 21540 | 69 78 20 64 65 66 69 6e 65 73 20 61 20 72 6f 75 74 65 72 2d 67 61 74 65 77 61 79 2c 20 69 2e 65 | ix.defines.a.router-gateway,.i.e |
| 21560 | 2e 20 74 68 65 20 66 69 72 73 74 20 72 6f 75 74 65 72 20 6f 6e 20 74 68 65 20 77 61 79 20 74 6f | ..the.first.router.on.the.way.to |
| 21580 | 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 28 6e 65 78 74 20 68 6f 70 29 2e 20 2a 2a 4f | .the.destination.(next.hop)..**O |
| 215a0 | 53 50 46 20 72 6f 75 74 65 72 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 2a 2a 20 e2 80 93 20 69 | SPF.router.routing.table**.....i |
| 215c0 | 6e 63 6c 75 64 65 73 20 61 20 6c 69 73 74 20 6f 66 20 61 63 71 75 69 72 65 64 20 72 6f 75 74 65 | ncludes.a.list.of.acquired.route |
| 215e0 | 73 20 74 6f 20 61 6c 6c 20 61 63 63 65 73 73 69 62 6c 65 20 41 42 52 73 20 61 6e 64 20 41 53 42 | s.to.all.accessible.ABRs.and.ASB |
| 21600 | 52 73 2e 20 2a 2a 4f 53 50 46 20 65 78 74 65 72 6e 61 6c 20 72 6f 75 74 69 6e 67 20 74 61 62 6c | Rs..**OSPF.external.routing.tabl |
| 21620 | 65 2a 2a 20 e2 80 93 20 69 6e 63 6c 75 64 65 73 20 61 20 6c 69 73 74 20 6f 66 20 61 63 71 75 69 | e**.....includes.a.list.of.acqui |
| 21640 | 72 65 64 20 72 6f 75 74 65 73 20 74 68 61 74 20 61 72 65 20 65 78 74 65 72 6e 61 6c 20 74 6f 20 | red.routes.that.are.external.to. |
| 21660 | 74 68 65 20 4f 53 50 46 20 70 72 6f 63 65 73 73 2e 20 22 45 22 20 66 6c 61 67 20 70 6f 69 6e 74 | the.OSPF.process.."E".flag.point |
| 21680 | 73 20 74 6f 20 74 68 65 20 65 78 74 65 72 6e 61 6c 20 6c 69 6e 6b 20 6d 65 74 72 69 63 20 74 79 | s.to.the.external.link.metric.ty |
| 216a0 | 70 65 20 28 45 31 20 e2 80 93 20 6d 65 74 72 69 63 20 74 79 70 65 20 31 2c 20 45 32 20 e2 80 93 | pe.(E1.....metric.type.1,.E2.... |
| 216c0 | 20 6d 65 74 72 69 63 20 74 79 70 65 20 32 29 2e 20 45 78 74 65 72 6e 61 6c 20 6c 69 6e 6b 20 6d | .metric.type.2)..External.link.m |
| 216e0 | 65 74 72 69 63 20 69 73 20 70 72 69 6e 74 65 64 20 69 6e 20 74 68 65 20 22 3c 6d 65 74 72 69 63 | etric.is.printed.in.the."<metric |
| 21700 | 20 6f 66 20 74 68 65 20 72 6f 75 74 65 72 20 77 68 69 63 68 20 61 64 76 65 72 74 69 73 65 64 20 | .of.the.router.which.advertised. |
| 21720 | 74 68 65 20 6c 69 6e 6b 3e 2f 3c 6c 69 6e 6b 20 6d 65 74 72 69 63 3e 22 20 66 6f 72 6d 61 74 2e | the.link>/<link.metric>".format. |
| 21740 | 00 2a 2a 4f 6e 65 20 67 61 74 65 77 61 79 3a 2a 2a 00 2a 2a 4f 72 69 67 69 6e 20 63 68 65 63 6b | .**One.gateway:**.**Origin.check |
| 21760 | 2a 2a 00 2a 2a 4f 75 74 70 75 74 20 28 42 72 69 64 67 65 29 2a 2a 3a 20 73 74 61 67 65 20 77 68 | **.**Output.(Bridge)**:.stage.wh |
| 21780 | 65 72 65 20 74 72 61 66 66 69 63 20 74 68 61 74 20 6f 72 69 67 69 6e 61 74 65 73 20 66 72 6f 6d | ere.traffic.that.originates.from |
| 217a0 | 20 74 68 65 20 62 72 69 64 67 65 20 69 74 73 65 6c 66 20 63 61 6e 20 62 65 20 66 69 6c 74 65 72 | .the.bridge.itself.can.be.filter |
| 217c0 | 65 64 20 61 6e 64 20 63 6f 6e 74 72 6f 6c 6c 65 64 3a 00 2a 2a 4f 75 74 70 75 74 20 46 69 6c 74 | ed.and.controlled:.**Output.Filt |
| 217e0 | 65 72 2a 2a 3a 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 5b 69 70 76 34 20 7c 20 69 70 76 | er**:.``set.firewall.[ipv4.|.ipv |
| 21800 | 36 5d 20 6f 75 74 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2e 00 2a 2a 4f 75 74 70 75 74 | 6].output.filter....``..**Output |
| 21820 | 20 46 69 6c 74 65 72 2a 2a 3a 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 6f | .Filter**:.``set.firewall.ipv4.o |
| 21840 | 75 74 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2e 20 52 75 6c 65 73 20 64 65 66 69 6e 65 | utput.filter....``..Rules.define |
| 21860 | 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 61 72 65 20 70 72 6f 63 65 73 73 65 64 20 | d.in.this.section.are.processed. |
| 21880 | 61 66 74 65 72 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 73 75 62 73 79 73 | after.connection.tracking.subsys |
| 218a0 | 74 65 6d 2e 00 2a 2a 4f 75 74 70 75 74 20 46 69 6c 74 65 72 2a 2a 3a 20 60 60 73 65 74 20 66 69 | tem..**Output.Filter**:.``set.fi |
| 218c0 | 72 65 77 61 6c 6c 20 69 70 76 36 20 6f 75 74 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2e | rewall.ipv6.output.filter....``. |
| 218e0 | 20 52 75 6c 65 73 20 64 65 66 69 6e 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 61 | .Rules.defined.in.this.section.a |
| 21900 | 72 65 20 70 72 6f 63 65 73 73 65 64 20 61 66 74 65 72 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 | re.processed.after.connection.tr |
| 21920 | 61 63 6b 69 6e 67 20 73 75 62 73 79 73 74 65 6d 2e 00 2a 2a 4f 75 74 70 75 74 20 50 72 65 72 6f | acking.subsystem..**Output.Prero |
| 21940 | 75 74 69 6e 67 2a 2a 3a 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 5b 69 70 76 34 20 7c 20 | uting**:.``set.firewall.[ipv4.|. |
| 21960 | 69 70 76 36 5d 20 6f 75 74 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2e 20 41 73 20 64 65 | ipv6].output.filter....``..As.de |
| 21980 | 73 63 72 69 62 65 64 20 69 6e 20 2a 2a 50 72 65 72 6f 75 74 69 6e 67 2a 2a 2c 20 72 75 6c 65 73 | scribed.in.**Prerouting**,.rules |
| 219a0 | 20 64 65 66 69 6e 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 61 72 65 20 70 72 6f | .defined.in.this.section.are.pro |
| 219c0 | 63 65 73 73 65 64 20 62 65 66 6f 72 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e | cessed.before.connection.trackin |
| 219e0 | 67 20 73 75 62 73 79 73 74 65 6d 2e 00 2a 2a 4f 75 74 70 75 74 20 50 72 65 72 6f 75 74 69 6e 67 | g.subsystem..**Output.Prerouting |
| 21a00 | 2a 2a 3a 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 6f 75 74 70 75 74 20 72 | **:.``set.firewall.ipv4.output.r |
| 21a20 | 61 77 20 2e 2e 2e 60 60 2e 20 41 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 2a 2a 50 72 65 72 | aw....``..As.described.in.**Prer |
| 21a40 | 6f 75 74 69 6e 67 2a 2a 2c 20 72 75 6c 65 73 20 64 65 66 69 6e 65 64 20 69 6e 20 74 68 69 73 20 | outing**,.rules.defined.in.this. |
| 21a60 | 73 65 63 74 69 6f 6e 20 61 72 65 20 70 72 6f 63 65 73 73 65 64 20 62 65 66 6f 72 65 20 63 6f 6e | section.are.processed.before.con |
| 21a80 | 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 73 75 62 73 79 73 74 65 6d 2e 00 2a 2a 4f 75 | nection.tracking.subsystem..**Ou |
| 21aa0 | 74 70 75 74 20 50 72 65 72 6f 75 74 69 6e 67 2a 2a 3a 20 60 60 73 65 74 20 66 69 72 65 77 61 6c | tput.Prerouting**:.``set.firewal |
| 21ac0 | 6c 20 69 70 76 36 20 6f 75 74 70 75 74 20 72 61 77 20 2e 2e 2e 60 60 2e 20 41 73 20 64 65 73 63 | l.ipv6.output.raw....``..As.desc |
| 21ae0 | 72 69 62 65 64 20 69 6e 20 2a 2a 50 72 65 72 6f 75 74 69 6e 67 2a 2a 2c 20 72 75 6c 65 73 20 64 | ribed.in.**Prerouting**,.rules.d |
| 21b00 | 65 66 69 6e 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 61 72 65 20 70 72 6f 63 65 | efined.in.this.section.are.proce |
| 21b20 | 73 73 65 64 20 62 65 66 6f 72 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 | ssed.before.connection.tracking. |
| 21b40 | 73 75 62 73 79 73 74 65 6d 2e 00 2a 2a 4f 75 74 70 75 74 2a 2a 3a 20 73 74 61 67 65 20 77 68 65 | subsystem..**Output**:.stage.whe |
| 21b60 | 72 65 20 74 72 61 66 66 69 63 20 74 68 61 74 20 69 73 20 6f 72 69 67 69 6e 61 74 65 64 20 62 79 | re.traffic.that.is.originated.by |
| 21b80 | 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 20 63 61 6e 20 62 65 20 66 69 6c 74 65 72 | .the.router.itself.can.be.filter |
| 21ba0 | 65 64 20 61 6e 64 20 63 6f 6e 74 72 6f 6c 6c 65 64 2e 20 42 61 72 65 20 69 6e 20 6d 69 6e 64 20 | ed.and.controlled..Bare.in.mind. |
| 21bc0 | 74 68 61 74 20 74 68 69 73 20 74 72 61 66 66 69 63 20 63 61 6e 20 62 65 20 61 20 6e 65 77 20 63 | that.this.traffic.can.be.a.new.c |
| 21be0 | 6f 6e 6e 65 63 74 69 6f 6e 20 6f 72 69 67 69 6e 74 65 64 20 62 79 20 61 20 69 6e 74 65 72 6e 61 | onnection.originted.by.a.interna |
| 21c00 | 6c 20 70 72 6f 63 65 73 73 20 72 75 6e 6e 69 6e 67 20 6f 6e 20 56 79 4f 53 20 72 6f 75 74 65 72 | l.process.running.on.VyOS.router |
| 21c20 | 2c 20 73 75 63 68 20 61 73 20 4e 54 50 2c 20 6f 72 20 63 61 6e 20 62 65 20 61 20 72 65 73 70 6f | ,.such.as.NTP,.or.can.be.a.respo |
| 21c40 | 6e 73 65 20 74 6f 20 74 72 61 66 66 69 63 20 72 65 63 65 69 76 65 64 20 65 78 74 65 72 6e 61 6c | nse.to.traffic.received.external |
| 21c60 | 79 20 74 68 72 6f 75 67 68 20 2a 2a 69 6e 70 75 74 74 2a 2a 20 28 66 6f 72 20 65 78 61 6d 70 6c | y.through.**inputt**.(for.exampl |
| 21c80 | 65 20 72 65 73 70 6f 6e 73 65 20 74 6f 20 61 6e 20 73 73 68 20 6c 6f 67 69 6e 20 61 74 74 65 6d | e.response.to.an.ssh.login.attem |
| 21ca0 | 70 74 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 29 2e 20 54 68 69 73 20 69 6e 63 6c 75 64 65 73 | pt.to.the.router)..This.includes |
| 21cc0 | 20 69 70 76 34 20 61 6e 64 20 69 70 76 36 20 66 69 6c 74 65 72 69 6e 67 20 72 75 6c 65 73 2c 20 | .ipv4.and.ipv6.filtering.rules,. |
| 21ce0 | 64 65 66 69 6e 65 64 20 69 6e 3a 00 2a 2a 4f 75 74 70 75 74 2a 2a 3a 20 73 74 61 67 65 20 77 68 | defined.in:.**Output**:.stage.wh |
| 21d00 | 65 72 65 20 74 72 61 66 66 69 63 20 74 68 61 74 20 6f 72 69 67 69 6e 61 74 65 73 20 66 72 6f 6d | ere.traffic.that.originates.from |
| 21d20 | 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 20 63 61 6e 20 62 65 20 66 69 6c 74 65 72 | .the.router.itself.can.be.filter |
| 21d40 | 65 64 20 61 6e 64 20 63 6f 6e 74 72 6f 6c 6c 65 64 2e 20 42 65 61 72 20 69 6e 20 6d 69 6e 64 20 | ed.and.controlled..Bear.in.mind. |
| 21d60 | 74 68 61 74 20 74 68 69 73 20 74 72 61 66 66 69 63 20 63 61 6e 20 62 65 20 61 20 6e 65 77 20 63 | that.this.traffic.can.be.a.new.c |
| 21d80 | 6f 6e 6e 65 63 74 69 6f 6e 20 6f 72 69 67 69 6e 61 74 65 64 20 62 79 20 61 20 69 6e 74 65 72 6e | onnection.originated.by.a.intern |
| 21da0 | 61 6c 20 70 72 6f 63 65 73 73 20 72 75 6e 6e 69 6e 67 20 6f 6e 20 56 79 4f 53 20 72 6f 75 74 65 | al.process.running.on.VyOS.route |
| 21dc0 | 72 2c 20 73 75 63 68 20 61 73 20 4e 54 50 2c 20 6f 72 20 61 20 72 65 73 70 6f 6e 73 65 20 74 6f | r,.such.as.NTP,.or.a.response.to |
| 21de0 | 20 74 72 61 66 66 69 63 20 72 65 63 65 69 76 65 64 20 65 78 74 65 72 6e 61 6c 6c 79 20 74 68 72 | .traffic.received.externally.thr |
| 21e00 | 6f 75 67 68 20 2a 2a 69 6e 70 75 74 2a 2a 20 28 66 6f 72 20 65 78 61 6d 70 6c 65 20 72 65 73 70 | ough.**input**.(for.example.resp |
| 21e20 | 6f 6e 73 65 20 74 6f 20 61 6e 20 73 73 68 20 6c 6f 67 69 6e 20 61 74 74 65 6d 70 74 20 74 6f 20 | onse.to.an.ssh.login.attempt.to. |
| 21e40 | 74 68 65 20 72 6f 75 74 65 72 29 2e 20 54 68 69 73 20 69 6e 63 6c 75 64 65 73 20 69 70 76 34 20 | the.router)..This.includes.ipv4. |
| 21e60 | 61 6e 64 20 69 70 76 36 20 66 69 6c 74 65 72 69 6e 67 20 72 75 6c 65 73 2c 20 64 65 66 69 6e 65 | and.ipv6.filtering.rules,.define |
| 21e80 | 64 20 69 6e 3a 00 2a 2a 4f 75 74 70 75 74 2a 2a 3a 20 73 74 61 67 65 20 77 68 65 72 65 20 74 72 | d.in:.**Output**:.stage.where.tr |
| 21ea0 | 61 66 66 69 63 20 74 68 61 74 20 6f 72 69 67 69 6e 61 74 65 73 20 66 72 6f 6d 20 74 68 65 20 72 | affic.that.originates.from.the.r |
| 21ec0 | 6f 75 74 65 72 20 69 74 73 65 6c 66 20 63 61 6e 20 62 65 20 66 69 6c 74 65 72 65 64 20 61 6e 64 | outer.itself.can.be.filtered.and |
| 21ee0 | 20 63 6f 6e 74 72 6f 6c 6c 65 64 2e 20 42 65 61 72 20 69 6e 20 6d 69 6e 64 20 74 68 61 74 20 74 | .controlled..Bear.in.mind.that.t |
| 21f00 | 68 69 73 20 74 72 61 66 66 69 63 20 63 61 6e 20 62 65 20 61 20 6e 65 77 20 63 6f 6e 6e 65 63 74 | his.traffic.can.be.a.new.connect |
| 21f20 | 69 6f 6e 20 6f 72 69 67 69 6e 61 74 65 64 20 62 79 20 61 20 69 6e 74 65 72 6e 61 6c 20 70 72 6f | ion.originated.by.a.internal.pro |
| 21f40 | 63 65 73 73 20 72 75 6e 6e 69 6e 67 20 6f 6e 20 56 79 4f 53 20 72 6f 75 74 65 72 2c 20 73 75 63 | cess.running.on.VyOS.router,.suc |
| 21f60 | 68 20 61 73 20 4e 54 50 2c 20 6f 72 20 61 20 72 65 73 70 6f 6e 73 65 20 74 6f 20 74 72 61 66 66 | h.as.NTP,.or.a.response.to.traff |
| 21f80 | 69 63 20 72 65 63 65 69 76 65 64 20 65 78 74 65 72 6e 61 6c 6c 79 20 74 68 72 6f 75 67 68 20 2a | ic.received.externally.through.* |
| 21fa0 | 2a 69 6e 70 75 74 2a 2a 20 28 66 6f 72 20 65 78 61 6d 70 6c 65 20 72 65 73 70 6f 6e 73 65 20 74 | *input**.(for.example.response.t |
| 21fc0 | 6f 20 61 6e 20 73 73 68 20 6c 6f 67 69 6e 20 61 74 74 65 6d 70 74 20 74 6f 20 74 68 65 20 72 6f | o.an.ssh.login.attempt.to.the.ro |
| 21fe0 | 75 74 65 72 29 2e 20 54 68 69 73 20 69 6e 63 6c 75 64 65 73 20 69 70 76 34 20 61 6e 64 20 69 70 | uter)..This.includes.ipv4.and.ip |
| 22000 | 76 36 20 72 75 6c 65 73 2c 20 61 6e 64 20 74 77 6f 20 64 69 66 66 65 72 65 6e 74 20 73 65 63 74 | v6.rules,.and.two.different.sect |
| 22020 | 69 6f 6e 73 20 61 72 65 20 70 72 65 73 65 6e 74 3a 00 2a 2a 4f 75 74 70 75 74 2a 2a 3a 20 73 74 | ions.are.present:.**Output**:.st |
| 22040 | 61 67 65 20 77 68 65 72 65 20 74 72 61 66 66 69 63 20 74 68 61 74 20 6f 72 69 67 69 6e 61 74 65 | age.where.traffic.that.originate |
| 22060 | 73 20 66 72 6f 6d 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 20 63 61 6e 20 62 65 20 | s.from.the.router.itself.can.be. |
| 22080 | 66 69 6c 74 65 72 65 64 20 61 6e 64 20 63 6f 6e 74 72 6f 6c 6c 65 64 2e 20 42 65 61 72 20 69 6e | filtered.and.controlled..Bear.in |
| 220a0 | 20 6d 69 6e 64 20 74 68 61 74 20 74 68 69 73 20 74 72 61 66 66 69 63 20 63 61 6e 20 62 65 20 61 | .mind.that.this.traffic.can.be.a |
| 220c0 | 20 6e 65 77 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 6f 72 69 67 69 6e 61 74 65 64 20 62 79 20 61 20 | .new.connection.originated.by.a. |
| 220e0 | 69 6e 74 65 72 6e 61 6c 20 70 72 6f 63 65 73 73 20 72 75 6e 6e 69 6e 67 20 6f 6e 20 56 79 4f 53 | internal.process.running.on.VyOS |
| 22100 | 20 72 6f 75 74 65 72 2c 20 73 75 63 68 20 61 73 20 4e 54 50 2c 20 6f 72 20 61 20 72 65 73 70 6f | .router,.such.as.NTP,.or.a.respo |
| 22120 | 6e 73 65 20 74 6f 20 74 72 61 66 66 69 63 20 72 65 63 65 69 76 65 64 20 65 78 74 65 72 6e 61 6c | nse.to.traffic.received.external |
| 22140 | 79 20 74 68 72 6f 75 67 68 20 2a 2a 69 6e 70 75 74 2a 2a 20 28 66 6f 72 20 65 78 61 6d 70 6c 65 | y.through.**input**.(for.example |
| 22160 | 20 72 65 73 70 6f 6e 73 65 20 74 6f 20 61 6e 20 73 73 68 20 6c 6f 67 69 6e 20 61 74 74 65 6d 70 | .response.to.an.ssh.login.attemp |
| 22180 | 74 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 29 2e 20 54 68 69 73 20 69 6e 63 6c 75 64 65 73 20 | t.to.the.router)..This.includes. |
| 221a0 | 69 70 76 34 20 61 6e 64 20 69 70 76 36 20 66 69 6c 74 65 72 69 6e 67 20 72 75 6c 65 73 2c 20 64 | ipv4.and.ipv6.filtering.rules,.d |
| 221c0 | 65 66 69 6e 65 64 20 69 6e 3a 00 2a 2a 4f 75 74 70 75 74 2a 2a 3a 20 73 74 61 67 65 20 77 68 65 | efined.in:.**Output**:.stage.whe |
| 221e0 | 72 65 20 74 72 61 66 66 69 63 20 74 68 61 74 20 6f 72 69 67 69 6e 61 74 65 73 20 66 72 6f 6d 20 | re.traffic.that.originates.from. |
| 22200 | 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 20 63 61 6e 20 62 65 20 66 69 6c 74 65 72 65 | the.router.itself.can.be.filtere |
| 22220 | 64 20 61 6e 64 20 63 6f 6e 74 72 6f 6c 6c 65 64 2e 20 42 65 61 72 20 69 6e 20 6d 69 6e 64 20 74 | d.and.controlled..Bear.in.mind.t |
| 22240 | 68 61 74 20 74 68 69 73 20 74 72 61 66 66 69 63 20 63 61 6e 20 62 65 20 61 20 6e 65 77 20 63 6f | hat.this.traffic.can.be.a.new.co |
| 22260 | 6e 6e 65 63 74 69 6f 6e 20 6f 72 69 67 69 6e 61 74 65 64 20 62 79 20 61 20 69 6e 74 65 72 6e 61 | nnection.originated.by.a.interna |
| 22280 | 6c 20 70 72 6f 63 65 73 73 20 72 75 6e 6e 69 6e 67 20 6f 6e 20 56 79 4f 53 20 72 6f 75 74 65 72 | l.process.running.on.VyOS.router |
| 222a0 | 2c 20 73 75 63 68 20 61 73 20 4e 54 50 2c 20 6f 72 20 61 20 72 65 73 70 6f 6e 73 65 20 74 6f 20 | ,.such.as.NTP,.or.a.response.to. |
| 222c0 | 74 72 61 66 66 69 63 20 72 65 63 65 69 76 65 64 20 65 78 74 65 72 6e 61 6c 79 20 74 68 72 6f 75 | traffic.received.externaly.throu |
| 222e0 | 67 68 20 2a 2a 69 6e 70 75 74 74 2a 2a 20 28 66 6f 72 20 65 78 61 6d 70 6c 65 20 72 65 73 70 6f | gh.**inputt**.(for.example.respo |
| 22300 | 6e 73 65 20 74 6f 20 61 6e 20 73 73 68 20 6c 6f 67 69 6e 20 61 74 74 65 6d 70 74 20 74 6f 20 74 | nse.to.an.ssh.login.attempt.to.t |
| 22320 | 68 65 20 72 6f 75 74 65 72 29 2e 20 54 68 69 73 20 69 6e 63 6c 75 64 65 73 20 69 70 76 34 20 61 | he.router)..This.includes.ipv4.a |
| 22340 | 6e 64 20 69 70 76 36 20 66 69 6c 74 65 72 69 6e 67 20 72 75 6c 65 73 2c 20 64 65 66 69 6e 65 64 | nd.ipv6.filtering.rules,.defined |
| 22360 | 20 69 6e 3a 00 2a 2a 4f 75 74 70 75 74 2a 2a 3a 20 73 74 61 67 65 20 77 68 65 72 65 20 74 72 61 | .in:.**Output**:.stage.where.tra |
| 22380 | 66 66 69 63 20 74 68 61 74 20 6f 72 69 67 69 6e 61 74 65 73 20 66 72 6f 6d 20 74 68 65 20 72 6f | ffic.that.originates.from.the.ro |
| 223a0 | 75 74 65 72 20 69 74 73 65 6c 66 20 63 61 6e 20 62 65 20 66 69 6c 74 65 72 65 64 20 61 6e 64 20 | uter.itself.can.be.filtered.and. |
| 223c0 | 63 6f 6e 74 72 6f 6c 6c 65 64 2e 20 42 65 61 72 20 69 6e 20 6d 69 6e 64 20 74 68 61 74 20 74 68 | controlled..Bear.in.mind.that.th |
| 223e0 | 69 73 20 74 72 61 66 66 69 63 20 63 61 6e 20 62 65 20 61 20 6e 65 77 20 63 6f 6e 6e 65 63 74 69 | is.traffic.can.be.a.new.connecti |
| 22400 | 6f 6e 20 6f 72 69 67 69 6e 61 74 65 64 20 62 79 20 61 20 69 6e 74 65 72 6e 61 6c 20 70 72 6f 63 | on.originated.by.a.internal.proc |
| 22420 | 65 73 73 20 72 75 6e 6e 69 6e 67 20 6f 6e 20 74 68 65 20 56 79 4f 53 20 72 6f 75 74 65 72 20 73 | ess.running.on.the.VyOS.router.s |
| 22440 | 75 63 68 20 61 73 20 4e 54 50 2c 20 6f 72 20 61 20 72 65 73 70 6f 6e 73 65 20 74 6f 20 74 72 61 | uch.as.NTP,.or.a.response.to.tra |
| 22460 | 66 66 69 63 20 72 65 63 65 69 76 65 64 20 65 78 74 65 72 6e 61 6c 6c 79 20 74 68 72 6f 75 67 68 | ffic.received.externally.through |
| 22480 | 20 2a 2a 69 6e 70 75 74 2a 2a 20 28 66 6f 72 20 65 78 61 6d 70 6c 65 20 72 65 73 70 6f 6e 73 65 | .**input**.(for.example.response |
| 224a0 | 20 74 6f 20 61 6e 20 73 73 68 20 6c 6f 67 69 6e 20 61 74 74 65 6d 70 74 20 74 6f 20 74 68 65 20 | .to.an.ssh.login.attempt.to.the. |
| 224c0 | 72 6f 75 74 65 72 29 2e 20 54 68 69 73 20 69 6e 63 6c 75 64 65 73 20 69 70 76 34 20 61 6e 64 20 | router)..This.includes.ipv4.and. |
| 224e0 | 69 70 76 36 20 72 75 6c 65 73 2c 20 61 6e 64 20 74 77 6f 20 64 69 66 66 65 72 65 6e 74 20 73 65 | ipv6.rules,.and.two.different.se |
| 22500 | 63 74 69 6f 6e 73 20 61 72 65 20 70 72 65 73 65 6e 74 3a 00 2a 2a 50 65 65 72 20 61 64 64 72 65 | ctions.are.present:.**Peer.addre |
| 22520 | 73 73 2a 2a 00 2a 2a 50 65 72 66 6f 72 6d 61 6e 63 65 20 4f 76 65 72 68 65 61 64 73 2a 2a 3a 20 | ss**.**Performance.Overheads**:. |
| 22540 | 54 68 65 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 70 72 6f 63 65 73 73 20 63 61 6e 20 69 6e 74 72 | The.translation.process.can.intr |
| 22560 | 6f 64 75 63 65 20 6c 61 74 65 6e 63 79 20 61 6e 64 20 70 6f 74 65 6e 74 69 61 6c 20 70 65 72 66 | oduce.latency.and.potential.perf |
| 22580 | 6f 72 6d 61 6e 63 65 20 62 6f 74 74 6c 65 6e 65 63 6b 73 2c 20 65 73 70 65 63 69 61 6c 6c 79 20 | ormance.bottlenecks,.especially. |
| 225a0 | 75 6e 64 65 72 20 68 69 67 68 20 6c 6f 61 64 2e 00 2a 2a 50 6f 6c 69 63 79 20 52 6f 75 74 65 2a | under.high.load..**Policy.Route* |
| 225c0 | 2a 3a 20 72 75 6c 65 73 20 64 65 66 69 6e 65 64 20 75 6e 64 65 72 20 60 60 73 65 74 20 70 6f 6c | *:.rules.defined.under.``set.pol |
| 225e0 | 69 63 79 20 5b 72 6f 75 74 65 20 7c 20 72 6f 75 74 65 36 5d 20 2e 2e 2e 60 60 2e 00 2a 2a 50 6f | icy.[route.|.route6]....``..**Po |
| 22600 | 6c 69 63 79 20 64 65 66 69 6e 69 74 69 6f 6e 3a 2a 2a 00 2a 2a 50 6f 72 74 20 41 6c 6c 6f 63 61 | licy.definition:**.**Port.Alloca |
| 22620 | 74 69 6f 6e 20 4c 69 6d 69 74 73 2a 2a 3a 20 45 61 63 68 20 70 75 62 6c 69 63 20 49 50 20 61 64 | tion.Limits**:.Each.public.IP.ad |
| 22640 | 64 72 65 73 73 20 68 61 73 20 61 20 6c 69 6d 69 74 65 64 20 6e 75 6d 62 65 72 20 6f 66 20 70 6f | dress.has.a.limited.number.of.po |
| 22660 | 72 74 73 2c 20 77 68 69 63 68 20 63 61 6e 20 62 65 20 65 78 68 61 75 73 74 65 64 2c 20 61 66 66 | rts,.which.can.be.exhausted,.aff |
| 22680 | 65 63 74 69 6e 67 20 74 68 65 20 61 62 69 6c 69 74 79 20 74 6f 20 65 73 74 61 62 6c 69 73 68 20 | ecting.the.ability.to.establish. |
| 226a0 | 6e 65 77 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2e 00 2a 2a 50 6f 72 74 20 43 6f 6e 74 72 6f 6c 20 | new.connections..**Port.Control. |
| 226c0 | 50 72 6f 74 6f 63 6f 6c 2a 2a 3a 20 50 43 50 20 69 73 20 6e 6f 74 20 69 6d 70 6c 65 6d 65 6e 74 | Protocol**:.PCP.is.not.implement |
| 226e0 | 65 64 2e 00 2a 2a 50 6f 73 74 72 6f 75 74 69 6e 67 2a 2a 3a 20 61 73 20 69 6e 20 2a 2a 50 72 65 | ed..**Postrouting**:.as.in.**Pre |
| 22700 | 72 6f 75 74 69 6e 67 2a 2a 2c 20 73 65 76 65 72 61 6c 20 61 63 74 69 6f 6e 73 20 64 65 66 69 6e | routing**,.several.actions.defin |
| 22720 | 65 64 20 69 6e 20 64 69 66 66 65 72 65 6e 74 20 70 61 72 74 73 20 6f 66 20 56 79 4f 53 20 63 6f | ed.in.different.parts.of.VyOS.co |
| 22740 | 6e 66 69 67 75 72 61 74 69 6f 6e 20 61 72 65 20 70 65 72 66 6f 72 6d 65 64 20 69 6e 20 74 68 69 | nfiguration.are.performed.in.thi |
| 22760 | 73 20 73 74 61 67 65 2e 20 54 68 69 73 20 69 6e 63 6c 75 64 65 73 3a 00 2a 2a 50 72 65 72 6f 75 | s.stage..This.includes:.**Prerou |
| 22780 | 74 69 6e 67 20 28 42 72 69 64 67 65 29 2a 2a 3a 20 61 6c 6c 20 70 61 63 6b 65 74 73 20 74 68 61 | ting.(Bridge)**:.all.packets.tha |
| 227a0 | 74 20 61 72 65 20 72 65 63 65 69 76 65 64 20 62 79 20 74 68 65 20 62 72 69 64 67 65 20 61 72 65 | t.are.received.by.the.bridge.are |
| 227c0 | 20 70 72 6f 63 65 73 73 65 64 20 69 6e 20 74 68 69 73 20 73 74 61 67 65 2c 20 72 65 67 61 72 64 | .processed.in.this.stage,.regard |
| 227e0 | 6c 65 73 73 20 6f 66 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 6f 66 20 74 68 65 20 70 | less.of.the.destination.of.the.p |
| 22800 | 61 63 6b 65 74 2e 20 46 69 72 73 74 20 66 69 6c 74 65 72 73 20 63 61 6e 20 62 65 20 61 70 70 6c | acket..First.filters.can.be.appl |
| 22820 | 69 65 64 20 68 65 72 65 2c 20 61 6e 64 2f 6f 72 20 61 6c 73 6f 20 63 6f 6e 66 69 67 75 72 65 20 | ied.here,.and/or.also.configure. |
| 22840 | 72 75 6c 65 73 20 66 6f 72 20 69 67 6e 6f 72 69 6e 67 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 | rules.for.ignoring.connection.tr |
| 22860 | 61 63 6b 69 6e 67 20 73 79 73 74 65 6d 2c 20 61 6e 64 20 61 6c 73 6f 20 61 70 70 6c 79 20 70 6f | acking.system,.and.also.apply.po |
| 22880 | 6c 69 63 79 20 72 6f 75 74 69 6e 67 20 75 73 69 6e 67 20 60 60 73 65 74 60 60 20 6f 70 74 69 6f | licy.routing.using.``set``.optio |
| 228a0 | 6e 20 77 68 69 6c 65 20 64 65 66 69 6e 69 6e 67 20 74 68 65 20 72 75 6c 65 2e 20 54 68 65 20 72 | n.while.defining.the.rule..The.r |
| 228c0 | 65 6c 65 76 61 6e 74 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 61 63 74 73 20 | elevant.configuration.that.acts. |
| 228e0 | 69 6e 3a 00 2a 2a 50 72 65 72 6f 75 74 69 6e 67 20 28 42 72 69 64 67 65 29 2a 2a 3a 20 61 6c 6c | in:.**Prerouting.(Bridge)**:.all |
| 22900 | 20 70 61 63 6b 65 74 73 20 74 68 61 74 20 61 72 65 20 72 65 63 65 69 76 65 64 20 62 79 20 74 68 | .packets.that.are.received.by.th |
| 22920 | 65 20 62 72 69 64 67 65 20 61 72 65 20 70 72 6f 63 65 73 73 65 64 20 69 6e 20 74 68 69 73 20 73 | e.bridge.are.processed.in.this.s |
| 22940 | 74 61 67 65 2c 20 72 65 67 61 72 64 6c 65 73 73 20 6f 66 20 74 68 65 20 64 65 73 74 69 6e 61 74 | tage,.regardless.of.the.destinat |
| 22960 | 69 6f 6e 20 6f 66 20 74 68 65 20 70 61 63 6b 65 74 2e 20 46 69 72 73 74 20 66 69 6c 74 65 72 73 | ion.of.the.packet..First.filters |
| 22980 | 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 64 20 68 65 72 65 2c 20 61 6e 64 2f 6f 72 20 61 6c 73 | .can.be.applied.here,.and/or.als |
| 229a0 | 6f 20 63 6f 6e 66 69 67 75 72 65 20 72 75 6c 65 73 20 66 6f 72 20 69 67 6e 6f 72 69 6e 67 20 63 | o.configure.rules.for.ignoring.c |
| 229c0 | 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 73 79 73 74 65 6d 2e 20 54 68 65 20 72 | onnection.tracking.system..The.r |
| 229e0 | 65 6c 65 76 61 6e 74 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 61 63 74 73 20 | elevant.configuration.that.acts. |
| 22a00 | 69 6e 3a 00 2a 2a 50 72 65 72 6f 75 74 69 6e 67 2a 2a 3a 20 41 6c 6c 20 70 61 63 6b 65 74 73 20 | in:.**Prerouting**:.All.packets. |
| 22a20 | 74 68 61 74 20 61 72 65 20 72 65 63 65 69 76 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 20 | that.are.received.by.the.router. |
| 22a40 | 61 72 65 20 70 72 6f 63 65 73 73 65 64 20 69 6e 20 74 68 69 73 20 73 74 61 67 65 2c 20 72 65 67 | are.processed.in.this.stage,.reg |
| 22a60 | 61 72 64 6c 65 73 73 20 6f 66 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 6f 66 20 74 68 | ardless.of.the.destination.of.th |
| 22a80 | 65 20 70 61 63 6b 65 74 2e 20 53 74 61 72 74 69 6e 67 20 66 72 6f 6d 20 76 79 6f 73 2d 31 2e 35 | e.packet..Starting.from.vyos-1.5 |
| 22aa0 | 2d 72 6f 6c 6c 69 6e 67 2d 32 30 32 34 30 36 31 32 30 30 32 30 2c 20 61 20 6e 65 77 20 73 65 63 | -rolling-202406120020,.a.new.sec |
| 22ac0 | 74 69 6f 6e 20 77 61 73 20 61 64 64 65 64 20 74 6f 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 | tion.was.added.to.firewall.confi |
| 22ae0 | 67 75 72 61 74 69 6f 6e 2e 20 54 68 65 72 65 20 61 72 65 20 73 65 76 65 72 61 6c 20 61 63 74 69 | guration..There.are.several.acti |
| 22b00 | 6f 6e 73 20 74 68 61 74 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 69 6e 20 74 68 69 73 20 73 74 61 | ons.that.can.be.done.in.this.sta |
| 22b20 | 67 65 2c 20 61 6e 64 20 63 75 72 72 65 6e 74 6c 79 20 74 68 65 73 65 20 61 63 74 69 6f 6e 73 20 | ge,.and.currently.these.actions. |
| 22b40 | 61 72 65 20 61 6c 73 6f 20 64 65 66 69 6e 65 64 20 69 6e 20 64 69 66 66 65 72 65 6e 74 20 70 61 | are.also.defined.in.different.pa |
| 22b60 | 72 74 73 20 69 6e 20 56 79 4f 53 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 20 4f 72 64 65 72 | rts.in.VyOS.configuration..Order |
| 22b80 | 20 69 73 20 69 6d 70 6f 72 74 61 6e 74 2c 20 61 6e 64 20 72 65 6c 65 76 61 6e 74 20 63 6f 6e 66 | .is.important,.and.relevant.conf |
| 22ba0 | 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 61 63 74 73 20 69 6e 20 74 68 69 73 20 73 74 61 67 | iguration.that.acts.in.this.stag |
| 22bc0 | 65 20 61 72 65 3a 00 2a 2a 50 72 65 72 6f 75 74 69 6e 67 2a 2a 3a 20 41 6c 6c 20 70 61 63 6b 65 | e.are:.**Prerouting**:.All.packe |
| 22be0 | 74 73 20 74 68 61 74 20 61 72 65 20 72 65 63 65 69 76 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 | ts.that.are.received.by.the.rout |
| 22c00 | 65 72 20 61 72 65 20 70 72 6f 63 65 73 73 65 64 20 69 6e 20 74 68 69 73 20 73 74 61 67 65 2c 20 | er.are.processed.in.this.stage,. |
| 22c20 | 72 65 67 61 72 64 6c 65 73 73 20 6f 66 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 6f 66 | regardless.of.the.destination.of |
| 22c40 | 20 74 68 65 20 70 61 63 6b 65 74 2e 20 53 74 61 72 74 69 6e 67 20 66 72 6f 6d 20 76 79 6f 73 2d | .the.packet..Starting.from.vyos- |
| 22c60 | 31 2e 35 2d 72 6f 6c 6c 69 6e 67 2d 32 30 32 34 30 36 31 32 30 30 32 30 2c 20 61 20 6e 65 77 20 | 1.5-rolling-202406120020,.a.new. |
| 22c80 | 73 65 63 74 69 6f 6e 20 77 61 73 20 61 64 64 65 64 20 74 6f 20 74 68 65 20 66 69 72 65 77 61 6c | section.was.added.to.the.firewal |
| 22ca0 | 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 20 54 68 65 72 65 20 61 72 65 20 73 65 76 65 72 | l.configuration..There.are.sever |
| 22cc0 | 61 6c 20 61 63 74 69 6f 6e 73 20 74 68 61 74 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 69 6e 20 74 | al.actions.that.can.be.done.in.t |
| 22ce0 | 68 69 73 20 73 74 61 67 65 2c 20 61 6e 64 20 63 75 72 72 65 6e 74 6c 79 20 74 68 65 73 65 20 61 | his.stage,.and.currently.these.a |
| 22d00 | 63 74 69 6f 6e 73 20 61 72 65 20 61 6c 73 6f 20 64 65 66 69 6e 65 64 20 69 6e 20 64 69 66 66 65 | ctions.are.also.defined.in.diffe |
| 22d20 | 72 65 6e 74 20 70 61 72 74 73 20 6f 66 20 74 68 65 20 56 79 4f 53 20 63 6f 6e 66 69 67 75 72 61 | rent.parts.of.the.VyOS.configura |
| 22d40 | 74 69 6f 6e 2e 20 4f 72 64 65 72 20 69 73 20 69 6d 70 6f 72 74 61 6e 74 2c 20 61 6e 64 20 74 68 | tion..Order.is.important,.and.th |
| 22d60 | 65 20 72 65 6c 65 76 61 6e 74 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 61 63 | e.relevant.configuration.that.ac |
| 22d80 | 74 73 20 69 6e 20 74 68 69 73 20 73 74 61 67 65 20 61 72 65 3a 00 2a 2a 50 72 65 72 6f 75 74 69 | ts.in.this.stage.are:.**Prerouti |
| 22da0 | 6e 67 2a 2a 3a 20 73 65 76 65 72 61 6c 20 61 63 74 69 6f 6e 73 20 63 61 6e 20 62 65 20 64 6f 6e | ng**:.several.actions.can.be.don |
| 22dc0 | 65 20 69 6e 20 74 68 69 73 20 73 74 61 67 65 2c 20 61 6e 64 20 63 75 72 72 65 6e 74 6c 79 20 74 | e.in.this.stage,.and.currently.t |
| 22de0 | 68 65 73 65 20 61 63 74 69 6f 6e 73 20 61 72 65 20 64 65 66 69 6e 65 64 20 69 6e 20 64 69 66 66 | hese.actions.are.defined.in.diff |
| 22e00 | 65 72 65 6e 74 20 70 61 72 74 73 20 69 6e 20 56 79 4f 53 20 63 6f 6e 66 69 67 75 72 61 74 69 6f | erent.parts.in.VyOS.configuratio |
| 22e20 | 6e 2e 20 4f 72 64 65 72 20 69 73 20 69 6d 70 6f 72 74 61 6e 74 2c 20 61 6e 64 20 61 6c 6c 20 74 | n..Order.is.important,.and.all.t |
| 22e40 | 68 65 73 65 20 61 63 74 69 6f 6e 73 20 61 72 65 20 70 65 72 66 6f 72 6d 65 64 20 62 65 66 6f 72 | hese.actions.are.performed.befor |
| 22e60 | 65 20 61 6e 79 20 61 63 74 69 6f 6e 73 20 64 65 66 69 6e 65 64 20 75 6e 64 65 72 20 60 60 66 69 | e.any.actions.defined.under.``fi |
| 22e80 | 72 65 77 61 6c 6c 60 60 20 73 65 63 74 69 6f 6e 2e 20 52 65 6c 65 76 61 6e 74 20 63 6f 6e 66 69 | rewall``.section..Relevant.confi |
| 22ea0 | 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 61 63 74 73 20 69 6e 20 74 68 69 73 20 73 74 61 67 65 | guration.that.acts.in.this.stage |
| 22ec0 | 20 61 72 65 3a 00 2a 2a 50 72 65 72 6f 75 74 69 6e 67 2a 2a 3a 20 73 65 76 65 72 61 6c 20 61 63 | .are:.**Prerouting**:.several.ac |
| 22ee0 | 74 69 6f 6e 73 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 69 6e 20 74 68 69 73 20 73 74 61 67 65 2c | tions.can.be.done.in.this.stage, |
| 22f00 | 20 61 6e 64 20 63 75 72 72 65 6e 74 6c 79 20 74 68 65 73 65 20 61 63 74 69 6f 6e 73 20 61 72 65 | .and.currently.these.actions.are |
| 22f20 | 20 64 65 66 69 6e 65 64 20 69 6e 20 64 69 66 66 65 72 65 6e 74 20 70 61 72 74 73 20 69 6e 20 76 | .defined.in.different.parts.in.v |
| 22f40 | 79 6f 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 20 4f 72 64 65 72 20 69 73 20 69 6d 70 6f | yos.configuration..Order.is.impo |
| 22f60 | 72 74 61 6e 74 2c 20 61 6e 64 20 61 6c 6c 20 74 68 65 73 65 20 61 63 74 69 6f 6e 73 20 61 72 65 | rtant,.and.all.these.actions.are |
| 22f80 | 20 70 65 72 66 6f 72 6d 65 64 20 62 65 66 6f 72 65 20 61 6e 79 20 61 63 74 69 6f 6e 73 20 64 65 | .performed.before.any.actions.de |
| 22fa0 | 66 69 6e 65 20 75 6e 64 65 72 20 60 60 66 69 72 65 77 61 6c 6c 60 60 20 73 65 63 74 69 6f 6e 2e | fine.under.``firewall``.section. |
| 22fc0 | 20 52 65 6c 65 76 61 6e 74 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 61 63 74 | .Relevant.configuration.that.act |
| 22fe0 | 73 20 69 6e 20 74 68 69 73 20 73 74 61 67 65 20 61 72 65 3a 00 2a 2a 50 72 69 6d 61 72 79 2a 2a | s.in.this.stage.are:.**Primary** |
| 23000 | 00 2a 2a 51 75 65 75 65 69 6e 67 20 64 69 73 63 69 70 6c 69 6e 65 2a 2a 20 46 61 69 72 2f 46 6c | .**Queueing.discipline**.Fair/Fl |
| 23020 | 6f 77 20 51 75 65 75 65 20 43 6f 44 65 6c 2e 00 2a 2a 51 75 65 75 65 69 6e 67 20 64 69 73 63 69 | ow.Queue.CoDel..**Queueing.disci |
| 23040 | 70 6c 69 6e 65 3a 2a 2a 20 44 65 66 69 63 69 74 20 52 6f 75 6e 64 20 52 6f 62 69 6e 2e 00 2a 2a | pline:**.Deficit.Round.Robin..** |
| 23060 | 51 75 65 75 65 69 6e 67 20 64 69 73 63 69 70 6c 69 6e 65 3a 2a 2a 20 44 65 66 69 63 69 74 20 6d | Queueing.discipline:**.Deficit.m |
| 23080 | 6f 64 65 2e 00 2a 2a 51 75 65 75 65 69 6e 67 20 64 69 73 63 69 70 6c 69 6e 65 3a 2a 2a 20 47 65 | ode..**Queueing.discipline:**.Ge |
| 230a0 | 6e 65 72 61 6c 69 7a 65 64 20 52 61 6e 64 6f 6d 20 45 61 72 6c 79 20 44 72 6f 70 2e 00 2a 2a 51 | neralized.Random.Early.Drop..**Q |
| 230c0 | 75 65 75 65 69 6e 67 20 64 69 73 63 69 70 6c 69 6e 65 3a 2a 2a 20 48 69 65 72 61 72 63 68 69 63 | ueueing.discipline:**.Hierarchic |
| 230e0 | 61 6c 20 54 6f 6b 65 6e 20 42 75 63 6b 65 74 2e 00 2a 2a 51 75 65 75 65 69 6e 67 20 64 69 73 63 | al.Token.Bucket..**Queueing.disc |
| 23100 | 69 70 6c 69 6e 65 3a 2a 2a 20 49 6e 67 72 65 73 73 20 70 6f 6c 69 63 65 72 2e 00 2a 2a 51 75 65 | ipline:**.Ingress.policer..**Que |
| 23120 | 75 65 69 6e 67 20 64 69 73 63 69 70 6c 69 6e 65 3a 2a 2a 20 50 46 49 46 4f 20 28 50 61 63 6b 65 | ueing.discipline:**.PFIFO.(Packe |
| 23140 | 74 20 46 69 72 73 74 20 49 6e 20 46 69 72 73 74 20 4f 75 74 29 2e 00 2a 2a 51 75 65 75 65 69 6e | t.First.In.First.Out)..**Queuein |
| 23160 | 67 20 64 69 73 63 69 70 6c 69 6e 65 3a 2a 2a 20 50 52 49 4f 2e 00 2a 2a 51 75 65 75 65 69 6e 67 | g.discipline:**.PRIO..**Queueing |
| 23180 | 20 64 69 73 63 69 70 6c 69 6e 65 3a 2a 2a 20 53 46 51 20 28 53 74 6f 63 68 61 73 74 69 63 20 46 | .discipline:**.SFQ.(Stochastic.F |
| 231a0 | 61 69 72 6e 65 73 73 20 51 75 65 75 69 6e 67 29 2e 00 2a 2a 51 75 65 75 65 69 6e 67 20 64 69 73 | airness.Queuing)..**Queueing.dis |
| 231c0 | 63 69 70 6c 69 6e 65 3a 2a 2a 20 54 6f 63 6b 65 6e 20 42 75 63 6b 65 74 20 46 69 6c 74 65 72 2e | cipline:**.Tocken.Bucket.Filter. |
| 231e0 | 00 2a 2a 51 75 65 75 65 69 6e 67 20 64 69 73 63 69 70 6c 69 6e 65 3a 2a 2a 20 54 6f 6b 65 6e 20 | .**Queueing.discipline:**.Token. |
| 23200 | 42 75 63 6b 65 74 20 46 69 6c 74 65 72 2e 00 2a 2a 51 75 65 75 65 69 6e 67 20 64 69 73 63 69 70 | Bucket.Filter..**Queueing.discip |
| 23220 | 6c 69 6e 65 3a 2a 2a 20 6e 65 74 65 6d 20 28 4e 65 74 77 6f 72 6b 20 45 6d 75 6c 61 74 6f 72 29 | line:**.netem.(Network.Emulator) |
| 23240 | 20 2b 20 54 42 46 20 28 54 6f 6b 65 6e 20 42 75 63 6b 65 74 20 46 69 6c 74 65 72 29 2e 00 2a 2a | .+.TBF.(Token.Bucket.Filter)..** |
| 23260 | 52 31 20 4d 41 43 73 65 63 30 31 2a 2a 00 2a 2a 52 31 20 53 74 61 74 69 63 20 4b 65 79 2a 2a 00 | R1.MACsec01**.**R1.Static.Key**. |
| 23280 | 2a 2a 52 31 2a 2a 00 2a 2a 52 32 20 4d 41 43 73 65 63 30 32 2a 2a 00 2a 2a 52 32 20 53 74 61 74 | **R1**.**R2.MACsec02**.**R2.Stat |
| 232a0 | 69 63 20 4b 65 79 2a 2a 00 2a 2a 52 32 2a 2a 00 2a 2a 52 41 44 49 55 53 20 62 61 73 65 64 20 49 | ic.Key**.**R2**.**RADIUS.based.I |
| 232c0 | 50 20 70 6f 6f 6c 73 20 28 46 72 61 6d 65 64 2d 49 50 2d 41 64 64 72 65 73 73 29 2a 2a 00 2a 2a | P.pools.(Framed-IP-Address)**.** |
| 232e0 | 52 41 44 49 55 53 20 73 65 73 73 69 6f 6e 73 20 6d 61 6e 61 67 65 6d 65 6e 74 20 44 4d 2f 43 6f | RADIUS.sessions.management.DM/Co |
| 23300 | 41 2a 2a 00 2a 2a 52 49 47 48 54 2a 2a 00 2a 2a 52 49 47 48 54 3a 2a 2a 20 2a 20 57 41 4e 20 69 | A**.**RIGHT**.**RIGHT:**.*.WAN.i |
| 23320 | 6e 74 65 72 66 61 63 65 20 6f 6e 20 60 65 74 68 30 2e 32 30 32 60 20 2a 20 60 65 74 68 30 2e 32 | nterface.on.`eth0.202`.*.`eth0.2 |
| 23340 | 30 31 60 20 69 6e 74 65 72 66 61 63 65 20 49 50 3a 20 60 31 37 32 2e 31 38 2e 32 30 32 2e 31 30 | 01`.interface.IP:.`172.18.202.10 |
| 23360 | 2f 32 34 60 20 2a 20 60 76 74 69 31 30 60 20 69 6e 74 65 72 66 61 63 65 20 49 50 3a 20 60 31 30 | /24`.*.`vti10`.interface.IP:.`10 |
| 23380 | 2e 30 2e 30 2e 33 2f 33 31 60 20 2a 20 60 64 75 6d 30 60 20 69 6e 74 65 72 66 61 63 65 20 49 50 | .0.0.3/31`.*.`dum0`.interface.IP |
| 233a0 | 3a 20 60 31 30 2e 30 2e 31 32 2e 31 2f 32 34 60 20 28 66 6f 72 20 74 65 73 74 69 6e 67 20 70 75 | :.`10.0.12.1/24`.(for.testing.pu |
| 233c0 | 72 70 6f 73 65 73 29 00 2a 2a 52 6f 75 74 65 72 20 31 2a 2a 00 2a 2a 52 6f 75 74 65 72 20 32 2a | rposes).**Router.1**.**Router.2* |
| 233e0 | 2a 00 2a 2a 52 6f 75 74 65 72 20 33 2a 2a 00 2a 2a 52 6f 75 74 65 72 2d 49 44 20 63 68 65 63 6b | *.**Router.3**.**Router-ID.check |
| 23400 | 2a 2a 00 2a 2a 52 6f 75 74 65 73 20 6c 65 61 72 6e 65 64 20 61 66 74 65 72 20 72 6f 75 74 69 6e | **.**Routes.learned.after.routin |
| 23420 | 67 20 70 6f 6c 69 63 79 20 61 70 70 6c 69 65 64 3a 2a 2a 00 2a 2a 52 6f 75 74 65 73 20 6c 65 61 | g.policy.applied:**.**Routes.lea |
| 23440 | 72 6e 65 64 20 62 65 66 6f 72 65 20 72 6f 75 74 69 6e 67 20 70 6f 6c 69 63 79 20 61 70 70 6c 69 | rned.before.routing.policy.appli |
| 23460 | 65 64 3a 2a 2a 00 2a 2a 53 57 31 2a 2a 00 2a 2a 53 57 32 2a 2a 00 2a 2a 53 63 61 6c 61 62 69 6c | ed:**.**SW1**.**SW2**.**Scalabil |
| 23480 | 69 74 79 2a 2a 3a 20 49 53 50 73 20 63 61 6e 20 73 75 70 70 6f 72 74 20 6d 6f 72 65 20 63 75 73 | ity**:.ISPs.can.support.more.cus |
| 234a0 | 74 6f 6d 65 72 73 20 77 69 74 68 6f 75 74 20 6e 65 65 64 69 6e 67 20 61 20 70 72 6f 70 6f 72 74 | tomers.without.needing.a.proport |
| 234c0 | 69 6f 6e 61 6c 20 69 6e 63 72 65 61 73 65 20 69 6e 20 70 75 62 6c 69 63 20 49 50 20 61 64 64 72 | ional.increase.in.public.IP.addr |
| 234e0 | 65 73 73 65 73 2e 00 2a 2a 53 65 63 6f 6e 64 61 72 79 2a 2a 00 2a 2a 53 65 74 74 69 6e 67 20 75 | esses..**Secondary**.**Setting.u |
| 23500 | 70 20 49 50 53 65 63 2a 2a 00 2a 2a 53 65 74 74 69 6e 67 20 75 70 20 74 68 65 20 47 52 45 20 74 | p.IPSec**.**Setting.up.the.GRE.t |
| 23520 | 75 6e 6e 65 6c 2a 2a 00 2a 2a 53 6f 75 72 63 65 20 4e 41 54 2a 2a 3a 20 72 75 6c 65 73 20 64 65 | unnel**.**Source.NAT**:.rules.de |
| 23540 | 66 69 6e 65 64 20 75 6e 64 65 72 20 60 60 73 65 74 20 5b 6e 61 74 20 7c 20 6e 61 74 36 36 5d 20 | fined.under.``set.[nat.|.nat66]. |
| 23560 | 64 65 73 74 69 6e 61 74 69 6f 6e 2e 2e 2e 60 60 2e 00 2a 2a 53 70 69 6e 65 31 20 43 6f 6e 66 69 | destination...``..**Spine1.Confi |
| 23580 | 67 75 72 61 74 69 6f 6e 3a 2a 2a 00 2a 2a 53 74 61 74 75 73 2a 2a 00 2a 2a 54 6f 20 73 65 65 20 | guration:**.**Status**.**To.see. |
| 235a0 | 74 68 65 20 72 65 64 69 73 74 72 69 62 75 74 65 64 20 72 6f 75 74 65 73 3a 2a 2a 00 2a 2a 54 6f | the.redistributed.routes:**.**To |
| 235c0 | 74 61 6c 20 50 6f 72 74 73 20 41 76 61 69 6c 61 62 6c 65 2a 2a 3a 00 2a 2a 54 72 61 63 65 61 62 | tal.Ports.Available**:.**Traceab |
| 235e0 | 69 6c 69 74 79 20 49 73 73 75 65 73 2a 2a 3a 20 53 69 6e 63 65 20 6d 75 6c 74 69 70 6c 65 20 75 | ility.Issues**:.Since.multiple.u |
| 23600 | 73 65 72 73 20 73 68 61 72 65 20 74 68 65 20 73 61 6d 65 20 70 75 62 6c 69 63 20 49 50 20 61 64 | sers.share.the.same.public.IP.ad |
| 23620 | 64 72 65 73 73 2c 20 74 72 61 63 6b 69 6e 67 20 69 6e 64 69 76 69 64 75 61 6c 20 75 73 65 72 73 | dress,.tracking.individual.users |
| 23640 | 20 66 6f 72 20 73 65 63 75 72 69 74 79 20 61 6e 64 20 6c 65 67 61 6c 20 70 75 72 70 6f 73 65 73 | .for.security.and.legal.purposes |
| 23660 | 20 63 61 6e 20 62 65 20 63 68 61 6c 6c 65 6e 67 69 6e 67 2e 00 2a 2a 54 77 6f 20 67 61 74 65 77 | .can.be.challenging..**Two.gatew |
| 23680 | 61 79 73 20 61 6e 64 20 64 69 66 66 65 72 65 6e 74 20 6d 65 74 72 69 63 73 3a 2a 2a 00 2a 2a 56 | ays.and.different.metrics:**.**V |
| 236a0 | 4c 41 4e 20 49 44 2a 2a 00 2a 2a 56 79 4f 53 20 52 6f 75 74 65 72 3a 2a 2a 00 2a 2a 57 65 69 67 | LAN.ID**.**VyOS.Router:**.**Weig |
| 236c0 | 68 74 20 63 68 65 63 6b 2a 2a 00 2a 2a 61 64 64 72 65 73 73 2a 2a 20 63 61 6e 20 62 65 20 73 70 | ht.check**.**address**.can.be.sp |
| 236e0 | 65 63 69 66 69 65 64 20 6d 75 6c 74 69 70 6c 65 20 74 69 6d 65 73 20 61 73 20 49 50 76 34 20 61 | ecified.multiple.times.as.IPv4.a |
| 23700 | 6e 64 2f 6f 72 20 49 50 76 36 20 61 64 64 72 65 73 73 2c 20 65 2e 67 2e 20 31 39 32 2e 30 2e 32 | nd/or.IPv6.address,.e.g..192.0.2 |
| 23720 | 2e 31 2f 32 34 20 61 6e 64 2f 6f 72 20 32 30 30 31 3a 64 62 38 3a 3a 31 2f 36 34 00 2a 2a 61 64 | .1/24.and/or.2001:db8::1/64.**ad |
| 23740 | 64 72 65 73 73 2a 2a 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 20 6d 75 6c 74 69 70 6c | dress**.can.be.specified.multipl |
| 23760 | 65 20 74 69 6d 65 73 2c 20 65 2e 67 2e 20 31 39 32 2e 31 36 38 2e 31 30 30 2e 31 20 61 6e 64 2f | e.times,.e.g..192.168.100.1.and/ |
| 23780 | 6f 72 20 31 39 32 2e 31 36 38 2e 31 30 30 2e 30 2f 32 34 00 2a 2a 61 6c 6c 6f 77 2a 2a 20 2d 20 | or.192.168.100.0/24.**allow**.-. |
| 237a0 | 4e 65 67 6f 74 69 61 74 65 20 49 50 76 34 20 6f 6e 6c 79 20 69 66 20 63 6c 69 65 6e 74 20 72 65 | Negotiate.IPv4.only.if.client.re |
| 237c0 | 71 75 65 73 74 73 20 28 44 65 66 61 75 6c 74 20 76 61 6c 75 65 29 00 2a 2a 61 6c 6c 6f 77 2a 2a | quests.(Default.value).**allow** |
| 237e0 | 20 2d 20 4e 65 67 6f 74 69 61 74 65 20 49 50 76 36 20 6f 6e 6c 79 20 69 66 20 63 6c 69 65 6e 74 | .-.Negotiate.IPv6.only.if.client |
| 23800 | 20 72 65 71 75 65 73 74 73 00 2a 2a 61 6c 6c 6f 77 2d 68 6f 73 74 2d 6e 65 74 77 6f 72 6b 73 2a | .requests.**allow-host-networks* |
| 23820 | 2a 20 63 61 6e 6e 6f 74 20 62 65 20 75 73 65 64 20 77 69 74 68 20 2a 2a 6e 65 74 77 6f 72 6b 2a | *.cannot.be.used.with.**network* |
| 23840 | 2a 00 2a 2a 61 6c 77 61 79 73 2a 2a 3a 20 52 65 73 74 61 72 74 20 63 6f 6e 74 61 69 6e 65 72 73 | *.**always**:.Restart.containers |
| 23860 | 20 77 68 65 6e 20 74 68 65 79 20 65 78 69 74 2c 20 72 65 67 61 72 64 6c 65 73 73 20 6f 66 20 73 | .when.they.exit,.regardless.of.s |
| 23880 | 74 61 74 75 73 2c 20 72 65 74 72 79 69 6e 67 20 69 6e 64 65 66 69 6e 69 74 65 6c 79 00 2a 2a 61 | tatus,.retrying.indefinitely.**a |
| 238a0 | 70 70 65 6e 64 3a 2a 2a 20 54 68 65 20 72 65 6c 61 79 20 61 67 65 6e 74 20 69 73 20 61 6c 6c 6f | ppend:**.The.relay.agent.is.allo |
| 238c0 | 77 65 64 20 74 6f 20 61 70 70 65 6e 64 20 69 74 73 20 6f 77 6e 20 72 65 6c 61 79 20 69 6e 66 6f | wed.to.append.its.own.relay.info |
| 238e0 | 72 6d 61 74 69 6f 6e 20 74 6f 20 61 20 72 65 63 65 69 76 65 64 20 44 48 43 50 20 70 61 63 6b 65 | rmation.to.a.received.DHCP.packe |
| 23900 | 74 2c 20 64 69 73 72 65 67 61 72 64 69 6e 67 20 72 65 6c 61 79 20 69 6e 66 6f 72 6d 61 74 69 6f | t,.disregarding.relay.informatio |
| 23920 | 6e 20 61 6c 72 65 61 64 79 20 70 72 65 73 65 6e 74 20 69 6e 20 74 68 65 20 70 61 63 6b 65 74 2e | n.already.present.in.the.packet. |
| 23940 | 00 2a 2a 61 70 70 6c 69 63 61 74 69 6f 6e 2a 2a 3a 20 61 6e 61 6c 79 7a 65 73 20 72 65 63 65 69 | .**application**:.analyzes.recei |
| 23960 | 76 65 64 20 66 6c 6f 77 20 64 61 74 61 20 69 6e 20 74 68 65 20 63 6f 6e 74 65 78 74 20 6f 66 20 | ved.flow.data.in.the.context.of. |
| 23980 | 69 6e 74 72 75 73 69 6f 6e 20 64 65 74 65 63 74 69 6f 6e 20 6f 72 20 74 72 61 66 66 69 63 20 70 | intrusion.detection.or.traffic.p |
| 239a0 | 72 6f 66 69 6c 69 6e 67 2c 20 66 6f 72 20 65 78 61 6d 70 6c 65 00 2a 2a 61 75 74 6f 2a 2a 20 e2 | rofiling,.for.example.**auto**.. |
| 239c0 | 80 93 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 64 65 74 65 72 6d 69 6e 65 73 20 74 68 65 20 | ...automatically.determines.the. |
| 239e0 | 69 6e 74 65 72 66 61 63 65 20 74 79 70 65 2e 20 2a 2a 77 69 72 65 64 2a 2a 20 e2 80 93 20 65 6e | interface.type..**wired**.....en |
| 23a00 | 61 62 6c 65 73 20 6f 70 74 69 6d 69 73 61 74 69 6f 6e 73 20 66 6f 72 20 77 69 72 65 64 20 69 6e | ables.optimisations.for.wired.in |
| 23a20 | 74 65 72 66 61 63 65 73 2e 20 2a 2a 77 69 72 65 6c 65 73 73 2a 2a 20 e2 80 93 20 64 69 73 61 62 | terfaces..**wireless**.....disab |
| 23a40 | 6c 65 73 20 61 20 6e 75 6d 62 65 72 20 6f 66 20 6f 70 74 69 6d 69 73 61 74 69 6f 6e 73 20 74 68 | les.a.number.of.optimisations.th |
| 23a60 | 61 74 20 61 72 65 20 6f 6e 6c 79 20 63 6f 72 72 65 63 74 20 6f 6e 20 77 69 72 65 64 20 69 6e 74 | at.are.only.correct.on.wired.int |
| 23a80 | 65 72 66 61 63 65 73 2e 20 53 70 65 63 69 66 79 69 6e 67 20 77 69 72 65 6c 65 73 73 20 69 73 20 | erfaces..Specifying.wireless.is. |
| 23aa0 | 61 6c 77 61 79 73 20 63 6f 72 72 65 63 74 2c 20 62 75 74 20 6d 61 79 20 63 61 75 73 65 20 73 6c | always.correct,.but.may.cause.sl |
| 23ac0 | 6f 77 65 72 20 63 6f 6e 76 65 72 67 65 6e 63 65 20 61 6e 64 20 65 78 74 72 61 20 72 6f 75 74 69 | ower.convergence.and.extra.routi |
| 23ae0 | 6e 67 20 74 72 61 66 66 69 63 2e 00 2a 2a 62 61 6e 2d 74 69 6d 65 2a 2a 20 61 6e 64 20 2a 2a 74 | ng.traffic..**ban-time**.and.**t |
| 23b00 | 68 72 65 73 68 6f 6c 64 2a 2a 3a 20 74 68 65 73 65 20 76 61 6c 75 65 73 20 61 72 65 20 6b 65 70 | hreshold**:.these.values.are.kep |
| 23b20 | 74 20 76 65 72 79 20 6c 6f 77 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 65 61 73 69 6c 79 20 69 64 | t.very.low.in.order.to.easily.id |
| 23b40 | 65 6e 74 69 66 79 20 61 6e 64 20 67 65 6e 65 72 61 74 65 20 61 6e 64 20 61 74 74 61 63 6b 2e 00 | entify.and.generate.and.attack.. |
| 23b60 | 2a 2a 62 72 6f 61 64 63 61 73 74 2a 2a 20 e2 80 93 20 62 72 6f 61 64 63 61 73 74 20 49 50 20 61 | **broadcast**.....broadcast.IP.a |
| 23b80 | 64 64 72 65 73 73 65 73 20 64 69 73 74 72 69 62 75 74 69 6f 6e 2e 20 2a 2a 6e 6f 6e 2d 62 72 6f | ddresses.distribution..**non-bro |
| 23ba0 | 61 64 63 61 73 74 2a 2a 20 e2 80 93 20 61 64 64 72 65 73 73 20 64 69 73 74 72 69 62 75 74 69 6f | adcast**.....address.distributio |
| 23bc0 | 6e 20 69 6e 20 4e 42 4d 41 20 6e 65 74 77 6f 72 6b 73 20 74 6f 70 6f 6c 6f 67 79 2e 20 2a 2a 70 | n.in.NBMA.networks.topology..**p |
| 23be0 | 6f 69 6e 74 2d 74 6f 2d 6d 75 6c 74 69 70 6f 69 6e 74 2a 2a 20 e2 80 93 20 61 64 64 72 65 73 73 | oint-to-multipoint**.....address |
| 23c00 | 20 64 69 73 74 72 69 62 75 74 69 6f 6e 20 69 6e 20 70 6f 69 6e 74 2d 74 6f 2d 6d 75 6c 74 69 70 | .distribution.in.point-to-multip |
| 23c20 | 6f 69 6e 74 20 6e 65 74 77 6f 72 6b 73 2e 20 2a 2a 70 6f 69 6e 74 2d 74 6f 2d 70 6f 69 6e 74 2a | oint.networks..**point-to-point* |
| 23c40 | 2a 20 e2 80 93 20 61 64 64 72 65 73 73 20 64 69 73 74 72 69 62 75 74 69 6f 6e 20 69 6e 20 70 6f | *.....address.distribution.in.po |
| 23c60 | 69 6e 74 2d 74 6f 2d 70 6f 69 6e 74 20 6e 65 74 77 6f 72 6b 73 2e 00 2a 2a 62 72 6f 61 64 63 61 | int-to-point.networks..**broadca |
| 23c80 | 73 74 2a 2a 20 e2 80 93 20 62 72 6f 61 64 63 61 73 74 20 49 50 20 61 64 64 72 65 73 73 65 73 20 | st**.....broadcast.IP.addresses. |
| 23ca0 | 64 69 73 74 72 69 62 75 74 69 6f 6e 2e 20 2a 2a 70 6f 69 6e 74 2d 74 6f 2d 70 6f 69 6e 74 2a 2a | distribution..**point-to-point** |
| 23cc0 | 20 e2 80 93 20 61 64 64 72 65 73 73 20 64 69 73 74 72 69 62 75 74 69 6f 6e 20 69 6e 20 70 6f 69 | .....address.distribution.in.poi |
| 23ce0 | 6e 74 2d 74 6f 2d 70 6f 69 6e 74 20 6e 65 74 77 6f 72 6b 73 2e 00 2a 2a 63 61 6c 6c 69 6e 67 2d | nt-to-point.networks..**calling- |
| 23d00 | 73 69 64 2a 2a 20 2d 20 43 61 6c 63 75 6c 61 74 65 20 69 6e 74 65 72 66 61 63 65 20 69 64 65 6e | sid**.-.Calculate.interface.iden |
| 23d20 | 74 69 66 69 65 72 20 66 72 6f 6d 20 63 61 6c 6c 69 6e 67 2d 73 74 61 74 69 6f 6e 2d 69 64 2e 00 | tifier.from.calling-station-id.. |
| 23d40 | 2a 2a 63 69 73 63 6f 2a 2a 20 e2 80 93 20 61 20 72 6f 75 74 65 72 20 77 69 6c 6c 20 62 65 20 63 | **cisco**.....a.router.will.be.c |
| 23d60 | 6f 6e 73 69 64 65 72 65 64 20 61 73 20 41 42 52 20 69 66 20 69 74 20 68 61 73 20 73 65 76 65 72 | onsidered.as.ABR.if.it.has.sever |
| 23d80 | 61 6c 20 63 6f 6e 66 69 67 75 72 65 64 20 6c 69 6e 6b 73 20 74 6f 20 74 68 65 20 6e 65 74 77 6f | al.configured.links.to.the.netwo |
| 23da0 | 72 6b 73 20 69 6e 20 64 69 66 66 65 72 65 6e 74 20 61 72 65 61 73 20 6f 6e 65 20 6f 66 20 77 68 | rks.in.different.areas.one.of.wh |
| 23dc0 | 69 63 68 20 69 73 20 61 20 62 61 63 6b 62 6f 6e 65 20 61 72 65 61 2e 20 4d 6f 72 65 6f 76 65 72 | ich.is.a.backbone.area..Moreover |
| 23de0 | 2c 20 74 68 65 20 6c 69 6e 6b 20 74 6f 20 74 68 65 20 62 61 63 6b 62 6f 6e 65 20 61 72 65 61 20 | ,.the.link.to.the.backbone.area. |
| 23e00 | 73 68 6f 75 6c 64 20 62 65 20 61 63 74 69 76 65 20 28 77 6f 72 6b 69 6e 67 29 2e 20 2a 2a 69 62 | should.be.active.(working)..**ib |
| 23e20 | 6d 2a 2a 20 e2 80 93 20 69 64 65 6e 74 69 63 61 6c 20 74 6f 20 22 63 69 73 63 6f 22 20 6d 6f 64 | m**.....identical.to."cisco".mod |
| 23e40 | 65 6c 20 62 75 74 20 69 6e 20 74 68 69 73 20 63 61 73 65 20 61 20 62 61 63 6b 62 6f 6e 65 20 61 | el.but.in.this.case.a.backbone.a |
| 23e60 | 72 65 61 20 6c 69 6e 6b 20 6d 61 79 20 6e 6f 74 20 62 65 20 61 63 74 69 76 65 2e 20 2a 2a 73 74 | rea.link.may.not.be.active..**st |
| 23e80 | 61 6e 64 61 72 64 2a 2a 20 e2 80 93 20 72 6f 75 74 65 72 20 68 61 73 20 73 65 76 65 72 61 6c 20 | andard**.....router.has.several. |
| 23ea0 | 61 63 74 69 76 65 20 6c 69 6e 6b 73 20 74 6f 20 64 69 66 66 65 72 65 6e 74 20 61 72 65 61 73 2e | active.links.to.different.areas. |
| 23ec0 | 20 2a 2a 73 68 6f 72 74 63 75 74 2a 2a 20 e2 80 93 20 69 64 65 6e 74 69 63 61 6c 20 74 6f 20 22 | .**shortcut**.....identical.to." |
| 23ee0 | 73 74 61 6e 64 61 72 64 22 20 62 75 74 20 69 6e 20 74 68 69 73 20 6d 6f 64 65 6c 20 61 20 72 6f | standard".but.in.this.model.a.ro |
| 23f00 | 75 74 65 72 20 69 73 20 61 6c 6c 6f 77 65 64 20 74 6f 20 75 73 65 20 61 20 63 6f 6e 6e 65 63 74 | uter.is.allowed.to.use.a.connect |
| 23f20 | 65 64 20 61 72 65 61 73 20 74 6f 70 6f 6c 6f 67 79 20 77 69 74 68 6f 75 74 20 69 6e 76 6f 6c 76 | ed.areas.topology.without.involv |
| 23f40 | 69 6e 67 20 61 20 62 61 63 6b 62 6f 6e 65 20 61 72 65 61 20 66 6f 72 20 69 6e 74 65 72 2d 61 72 | ing.a.backbone.area.for.inter-ar |
| 23f60 | 65 61 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2e 00 2a 2a 63 6f 6c 6c 65 63 74 6f 72 2a 2a 3a 20 72 | ea.connections..**collector**:.r |
| 23f80 | 65 73 70 6f 6e 73 69 62 6c 65 20 66 6f 72 20 72 65 63 65 70 74 69 6f 6e 2c 20 73 74 6f 72 61 67 | esponsible.for.reception,.storag |
| 23fa0 | 65 20 61 6e 64 20 70 72 65 2d 70 72 6f 63 65 73 73 69 6e 67 20 6f 66 20 66 6c 6f 77 20 64 61 74 | e.and.pre-processing.of.flow.dat |
| 23fc0 | 61 20 72 65 63 65 69 76 65 64 20 66 72 6f 6d 20 61 20 66 6c 6f 77 20 65 78 70 6f 72 74 65 72 00 | a.received.from.a.flow.exporter. |
| 23fe0 | 2a 2a 64 65 66 61 75 6c 74 2a 2a 20 e2 80 93 20 20 74 68 69 73 20 61 72 65 61 20 77 69 6c 6c 20 | **default**......this.area.will. |
| 24000 | 62 65 20 75 73 65 64 20 66 6f 72 20 73 68 6f 72 74 63 75 74 74 69 6e 67 20 6f 6e 6c 79 20 69 66 | be.used.for.shortcutting.only.if |
| 24020 | 20 41 42 52 20 64 6f 65 73 20 6e 6f 74 20 68 61 76 65 20 61 20 6c 69 6e 6b 20 74 6f 20 74 68 65 | .ABR.does.not.have.a.link.to.the |
| 24040 | 20 62 61 63 6b 62 6f 6e 65 20 61 72 65 61 20 6f 72 20 74 68 69 73 20 6c 69 6e 6b 20 77 61 73 20 | .backbone.area.or.this.link.was. |
| 24060 | 6c 6f 73 74 2e 20 2a 2a 65 6e 61 62 6c 65 2a 2a 20 e2 80 93 20 74 68 65 20 61 72 65 61 20 77 69 | lost..**enable**.....the.area.wi |
| 24080 | 6c 6c 20 62 65 20 75 73 65 64 20 66 6f 72 20 73 68 6f 72 74 63 75 74 74 69 6e 67 20 65 76 65 72 | ll.be.used.for.shortcutting.ever |
| 240a0 | 79 20 74 69 6d 65 20 74 68 65 20 72 6f 75 74 65 20 74 68 61 74 20 67 6f 65 73 20 74 68 72 6f 75 | y.time.the.route.that.goes.throu |
| 240c0 | 67 68 20 69 74 20 69 73 20 63 68 65 61 70 65 72 2e 20 2a 2a 64 69 73 61 62 6c 65 2a 2a 20 e2 80 | gh.it.is.cheaper..**disable**... |
| 240e0 | 93 20 74 68 69 73 20 61 72 65 61 20 69 73 20 6e 65 76 65 72 20 75 73 65 64 20 62 79 20 41 42 52 | ..this.area.is.never.used.by.ABR |
| 24100 | 20 66 6f 72 20 72 6f 75 74 65 73 20 73 68 6f 72 74 63 75 74 74 69 6e 67 2e 00 2a 2a 64 65 66 61 | .for.routes.shortcutting..**defa |
| 24120 | 75 6c 74 2a 2a 20 e2 80 93 20 65 6e 61 62 6c 65 20 73 70 6c 69 74 2d 68 6f 72 69 7a 6f 6e 20 6f | ult**.....enable.split-horizon.o |
| 24140 | 6e 20 77 69 72 65 64 20 69 6e 74 65 72 66 61 63 65 73 2c 20 61 6e 64 20 64 69 73 61 62 6c 65 20 | n.wired.interfaces,.and.disable. |
| 24160 | 73 70 6c 69 74 2d 68 6f 72 69 7a 6f 6e 20 6f 6e 20 77 69 72 65 6c 65 73 73 20 69 6e 74 65 72 66 | split-horizon.on.wireless.interf |
| 24180 | 61 63 65 73 2e 20 2a 2a 65 6e 61 62 6c 65 2a 2a 20 e2 80 93 20 65 6e 61 62 6c 65 20 73 70 6c 69 | aces..**enable**.....enable.spli |
| 241a0 | 74 2d 68 6f 72 69 7a 6f 6e 20 6f 6e 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 73 2e 20 2a 2a | t-horizon.on.this.interfaces..** |
| 241c0 | 64 69 73 61 62 6c 65 2a 2a 20 e2 80 93 20 64 69 73 61 62 6c 65 20 73 70 6c 69 74 2d 68 6f 72 69 | disable**.....disable.split-hori |
| 241e0 | 7a 6f 6e 20 6f 6e 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 73 2e 00 2a 2a 64 65 6e 79 2a 2a | zon.on.this.interfaces..**deny** |
| 24200 | 20 2d 20 44 6f 20 6e 6f 74 20 6e 65 67 6f 74 69 61 74 65 20 49 50 76 34 00 2a 2a 64 65 6e 79 2a | .-.Do.not.negotiate.IPv4.**deny* |
| 24220 | 2a 20 2d 20 44 6f 20 6e 6f 74 20 6e 65 67 6f 74 69 61 74 65 20 49 50 76 36 20 28 64 65 66 61 75 | *.-.Do.not.negotiate.IPv6.(defau |
| 24240 | 6c 74 20 76 61 6c 75 65 29 00 2a 2a 64 65 6e 79 2a 2a 20 2d 20 64 65 6e 79 20 6d 70 70 65 00 2a | lt.value).**deny**.-.deny.mppe.* |
| 24260 | 2a 64 65 6e 79 2a 2a 3a 20 44 65 6e 79 20 73 65 63 6f 6e 64 20 73 65 73 73 69 6f 6e 20 61 75 74 | *deny**:.Deny.second.session.aut |
| 24280 | 68 6f 72 69 7a 61 74 69 6f 6e 2e 00 2a 2a 64 65 73 74 69 6e 61 74 69 6f 6e 2a 2a 20 2d 20 73 70 | horization..**destination**.-.sp |
| 242a0 | 65 63 69 66 79 20 77 68 69 63 68 20 70 61 63 6b 65 74 73 20 74 68 65 20 74 72 61 6e 73 6c 61 74 | ecify.which.packets.the.translat |
| 242c0 | 69 6f 6e 20 77 69 6c 6c 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 2c 20 6f 6e 6c 79 20 62 61 73 | ion.will.be.applied.to,.only.bas |
| 242e0 | 65 64 20 6f 6e 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 61 6e | ed.on.the.destination.address.an |
| 24300 | 64 2f 6f 72 20 70 6f 72 74 20 6e 75 6d 62 65 72 20 63 6f 6e 66 69 67 75 72 65 64 2e 00 2a 2a 64 | d/or.port.number.configured..**d |
| 24320 | 68 63 70 2a 2a 20 69 6e 74 65 72 66 61 63 65 20 61 64 64 72 65 73 73 20 69 73 20 72 65 63 65 69 | hcp**.interface.address.is.recei |
| 24340 | 76 65 64 20 62 79 20 44 48 43 50 20 66 72 6f 6d 20 61 20 44 48 43 50 20 73 65 72 76 65 72 20 6f | ved.by.DHCP.from.a.DHCP.server.o |
| 24360 | 6e 20 74 68 69 73 20 73 65 67 6d 65 6e 74 2e 00 2a 2a 64 68 63 70 76 36 2a 2a 20 69 6e 74 65 72 | n.this.segment..**dhcpv6**.inter |
| 24380 | 66 61 63 65 20 61 64 64 72 65 73 73 20 69 73 20 72 65 63 65 69 76 65 64 20 62 79 20 44 48 43 50 | face.address.is.received.by.DHCP |
| 243a0 | 76 36 20 66 72 6f 6d 20 61 20 44 48 43 50 76 36 20 73 65 72 76 65 72 20 6f 6e 20 74 68 69 73 20 | v6.from.a.DHCPv6.server.on.this. |
| 243c0 | 73 65 67 6d 65 6e 74 2e 00 2a 2a 64 69 73 61 62 6c 65 2a 2a 3a 20 44 69 73 61 62 6c 65 73 20 73 | segment..**disable**:.Disables.s |
| 243e0 | 65 73 73 69 6f 6e 20 63 6f 6e 74 72 6f 6c 2e 00 2a 2a 64 69 73 63 61 72 64 3a 2a 2a 20 52 65 63 | ession.control..**discard:**.Rec |
| 24400 | 65 69 76 65 64 20 70 61 63 6b 65 74 73 20 77 68 69 63 68 20 61 6c 72 65 61 64 79 20 63 6f 6e 74 | eived.packets.which.already.cont |
| 24420 | 61 69 6e 20 72 65 6c 61 79 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 77 69 6c 6c 20 62 65 20 64 69 | ain.relay.information.will.be.di |
| 24440 | 73 63 61 72 64 65 64 2e 00 2a 2a 64 6f 77 6e 73 74 72 65 61 6d 3a 2a 2a 20 44 6f 77 6e 73 74 72 | scarded..**downstream:**.Downstr |
| 24460 | 65 61 6d 20 6e 65 74 77 6f 72 6b 20 69 6e 74 65 72 66 61 63 65 73 20 61 72 65 20 74 68 65 20 64 | eam.network.interfaces.are.the.d |
| 24480 | 69 73 74 72 69 62 75 74 69 6f 6e 20 69 6e 74 65 72 66 61 63 65 73 20 74 6f 20 74 68 65 20 64 65 | istribution.interfaces.to.the.de |
| 244a0 | 73 74 69 6e 61 74 69 6f 6e 20 6e 65 74 77 6f 72 6b 73 2c 20 77 68 65 72 65 20 6d 75 6c 74 69 63 | stination.networks,.where.multic |
| 244c0 | 61 73 74 20 63 6c 69 65 6e 74 73 20 63 61 6e 20 6a 6f 69 6e 20 67 72 6f 75 70 73 20 61 6e 64 20 | ast.clients.can.join.groups.and. |
| 244e0 | 72 65 63 65 69 76 65 20 6d 75 6c 74 69 63 61 73 74 20 64 61 74 61 2e 20 4f 6e 65 20 6f 72 20 6d | receive.multicast.data..One.or.m |
| 24500 | 6f 72 65 20 64 6f 77 6e 73 74 72 65 61 6d 20 69 6e 74 65 72 66 61 63 65 73 20 6d 75 73 74 20 62 | ore.downstream.interfaces.must.b |
| 24520 | 65 20 63 6f 6e 66 69 67 75 72 65 64 2e 00 2a 2a 65 78 70 6f 72 74 65 72 2a 2a 3a 20 61 67 67 72 | e.configured..**exporter**:.aggr |
| 24540 | 65 67 61 74 65 73 20 70 61 63 6b 65 74 73 20 69 6e 74 6f 20 66 6c 6f 77 73 20 61 6e 64 20 65 78 | egates.packets.into.flows.and.ex |
| 24560 | 70 6f 72 74 73 20 66 6c 6f 77 20 72 65 63 6f 72 64 73 20 74 6f 77 61 72 64 73 20 6f 6e 65 20 6f | ports.flow.records.towards.one.o |
| 24580 | 72 20 6d 6f 72 65 20 66 6c 6f 77 20 63 6f 6c 6c 65 63 74 6f 72 73 00 2a 2a 66 69 72 65 77 61 6c | r.more.flow.collectors.**firewal |
| 245a0 | 6c 20 61 6c 6c 2d 70 69 6e 67 2a 2a 20 61 66 66 65 63 74 73 20 6f 6e 6c 79 20 74 6f 20 4c 4f 43 | l.all-ping**.affects.only.to.LOC |
| 245c0 | 41 4c 20 61 6e 64 20 69 74 20 61 6c 77 61 79 73 20 62 65 68 61 76 65 73 20 69 6e 20 74 68 65 20 | AL.and.it.always.behaves.in.the. |
| 245e0 | 6d 6f 73 74 20 72 65 73 74 72 69 63 74 69 76 65 20 77 61 79 00 2a 2a 66 69 72 65 77 61 6c 6c 20 | most.restrictive.way.**firewall. |
| 24600 | 67 6c 6f 62 61 6c 2d 6f 70 74 69 6f 6e 73 20 61 6c 6c 2d 70 69 6e 67 2a 2a 20 61 66 66 65 63 74 | global-options.all-ping**.affect |
| 24620 | 73 20 6f 6e 6c 79 20 74 6f 20 4c 4f 43 41 4c 20 61 6e 64 20 69 74 20 61 6c 77 61 79 73 20 62 65 | s.only.to.LOCAL.and.it.always.be |
| 24640 | 68 61 76 65 73 20 69 6e 20 74 68 65 20 6d 6f 73 74 20 72 65 73 74 72 69 63 74 69 76 65 20 77 61 | haves.in.the.most.restrictive.wa |
| 24660 | 79 00 2a 2a 66 6f 72 77 61 72 64 3a 2a 2a 20 41 6c 6c 20 70 61 63 6b 65 74 73 20 61 72 65 20 66 | y.**forward:**.All.packets.are.f |
| 24680 | 6f 72 77 61 72 64 65 64 2c 20 72 65 6c 61 79 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 6c 72 65 | orwarded,.relay.information.alre |
| 246a0 | 61 64 79 20 70 72 65 73 65 6e 74 20 77 69 6c 6c 20 62 65 20 69 67 6e 6f 72 65 64 2e 00 2a 2a 69 | ady.present.will.be.ignored..**i |
| 246c0 | 6e 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 2a 2a 20 2d 20 61 70 70 6c 69 63 61 62 6c 65 20 | nbound-interface**.-.applicable. |
| 246e0 | 6f 6e 6c 79 20 74 6f 20 3a 72 65 66 3a 60 64 65 73 74 69 6e 61 74 69 6f 6e 2d 6e 61 74 60 2e 20 | only.to.:ref:`destination-nat`.. |
| 24700 | 49 74 20 63 6f 6e 66 69 67 75 72 65 73 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 77 68 69 63 | It.configures.the.interface.whic |
| 24720 | 68 20 69 73 20 75 73 65 64 20 66 6f 72 20 74 68 65 20 69 6e 73 69 64 65 20 74 72 61 66 66 69 63 | h.is.used.for.the.inside.traffic |
| 24740 | 20 74 68 65 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 72 75 6c 65 20 61 70 70 6c 69 65 73 20 74 6f | .the.translation.rule.applies.to |
| 24760 | 2e 00 2a 2a 69 6e 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 2a 2a 20 2d 20 61 70 70 6c 69 63 | ..**inbound-interface**.-.applic |
| 24780 | 61 62 6c 65 20 6f 6e 6c 79 20 74 6f 20 3a 72 65 66 3a 60 64 65 73 74 69 6e 61 74 69 6f 6e 2d 6e | able.only.to.:ref:`destination-n |
| 247a0 | 61 74 60 2e 20 49 74 20 63 6f 6e 66 69 67 75 72 65 73 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 | at`..It.configures.the.interface |
| 247c0 | 20 77 68 69 63 68 20 69 73 20 75 73 65 64 20 66 6f 72 20 74 68 65 20 69 6e 73 69 64 65 20 74 72 | .which.is.used.for.the.inside.tr |
| 247e0 | 61 66 66 69 63 20 74 68 65 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 72 75 6c 65 20 61 70 70 6c 69 | affic.the.translation.rule.appli |
| 24800 | 65 73 20 74 6f 2e 20 49 6e 74 65 72 66 61 63 65 20 67 72 6f 75 70 73 2c 20 69 6e 76 65 72 74 65 | es.to..Interface.groups,.inverte |
| 24820 | 64 20 73 65 6c 65 63 74 69 6f 6e 20 61 6e 64 20 77 69 6c 64 63 61 72 64 2c 20 61 72 65 20 61 6c | d.selection.and.wildcard,.are.al |
| 24840 | 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 00 2a 2a 69 70 76 34 2d 61 64 64 72 2a 2a 20 2d 20 43 61 | so.supported..**ipv4-addr**.-.Ca |
| 24860 | 6c 63 75 6c 61 74 65 20 69 6e 74 65 72 66 61 63 65 20 69 64 65 6e 74 69 66 69 65 72 20 66 72 6f | lculate.interface.identifier.fro |
| 24880 | 6d 20 49 50 76 34 20 61 64 64 72 65 73 73 2e 00 2a 2a 6c 32 2a 2a 3a 20 49 74 20 6d 65 61 6e 73 | m.IPv4.address..**l2**:.It.means |
| 248a0 | 20 74 68 61 74 20 63 6c 69 65 6e 74 73 20 61 72 65 20 6f 6e 20 73 61 6d 65 20 6e 65 74 77 6f 72 | .that.clients.are.on.same.networ |
| 248c0 | 6b 20 77 68 65 72 65 20 69 6e 74 65 72 66 61 63 65 20 69 73 2e 2a 2a 28 64 65 66 61 75 6c 74 29 | k.where.interface.is.**(default) |
| 248e0 | 2a 2a 00 2a 2a 6c 33 2a 2a 3a 20 49 74 20 6d 65 61 6e 73 20 74 68 61 74 20 63 6c 69 65 6e 74 20 | **.**l3**:.It.means.that.client. |
| 24900 | 61 72 65 20 62 65 68 69 6e 64 20 73 6f 6d 65 20 72 6f 75 74 65 72 2e 00 2a 2a 6c 61 79 65 72 32 | are.behind.some.router..**layer2 |
| 24920 | 2a 2a 20 2d 20 55 73 65 73 20 58 4f 52 20 6f 66 20 68 61 72 64 77 61 72 65 20 4d 41 43 20 61 64 | **.-.Uses.XOR.of.hardware.MAC.ad |
| 24940 | 64 72 65 73 73 65 73 20 61 6e 64 20 70 61 63 6b 65 74 20 74 79 70 65 20 49 44 20 66 69 65 6c 64 | dresses.and.packet.type.ID.field |
| 24960 | 20 74 6f 20 67 65 6e 65 72 61 74 65 20 74 68 65 20 68 61 73 68 2e 20 54 68 65 20 66 6f 72 6d 75 | .to.generate.the.hash..The.formu |
| 24980 | 6c 61 20 69 73 00 2a 2a 6c 61 79 65 72 32 2b 33 2a 2a 20 2d 20 54 68 69 73 20 70 6f 6c 69 63 79 | la.is.**layer2+3**.-.This.policy |
| 249a0 | 20 75 73 65 73 20 61 20 63 6f 6d 62 69 6e 61 74 69 6f 6e 20 6f 66 20 6c 61 79 65 72 32 20 61 6e | .uses.a.combination.of.layer2.an |
| 249c0 | 64 20 6c 61 79 65 72 33 20 70 72 6f 74 6f 63 6f 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 6f | d.layer3.protocol.information.to |
| 249e0 | 20 67 65 6e 65 72 61 74 65 20 74 68 65 20 68 61 73 68 2e 20 55 73 65 73 20 58 4f 52 20 6f 66 20 | .generate.the.hash..Uses.XOR.of. |
| 24a00 | 68 61 72 64 77 61 72 65 20 4d 41 43 20 61 64 64 72 65 73 73 65 73 20 61 6e 64 20 49 50 20 61 64 | hardware.MAC.addresses.and.IP.ad |
| 24a20 | 64 72 65 73 73 65 73 20 74 6f 20 67 65 6e 65 72 61 74 65 20 74 68 65 20 68 61 73 68 2e 20 54 68 | dresses.to.generate.the.hash..Th |
| 24a40 | 65 20 66 6f 72 6d 75 6c 61 20 69 73 3a 00 2a 2a 6c 61 79 65 72 33 2b 34 2a 2a 20 2d 20 54 68 69 | e.formula.is:.**layer3+4**.-.Thi |
| 24a60 | 73 20 70 6f 6c 69 63 79 20 75 73 65 73 20 75 70 70 65 72 20 6c 61 79 65 72 20 70 72 6f 74 6f 63 | s.policy.uses.upper.layer.protoc |
| 24a80 | 6f 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2c 20 77 68 65 6e 20 61 76 61 69 6c 61 62 6c 65 2c 20 | ol.information,.when.available,. |
| 24aa0 | 74 6f 20 67 65 6e 65 72 61 74 65 20 74 68 65 20 68 61 73 68 2e 20 54 68 69 73 20 61 6c 6c 6f 77 | to.generate.the.hash..This.allow |
| 24ac0 | 73 20 66 6f 72 20 74 72 61 66 66 69 63 20 74 6f 20 61 20 70 61 72 74 69 63 75 6c 61 72 20 6e 65 | s.for.traffic.to.a.particular.ne |
| 24ae0 | 74 77 6f 72 6b 20 70 65 65 72 20 74 6f 20 73 70 61 6e 20 6d 75 6c 74 69 70 6c 65 20 73 6c 61 76 | twork.peer.to.span.multiple.slav |
| 24b00 | 65 73 2c 20 61 6c 74 68 6f 75 67 68 20 61 20 73 69 6e 67 6c 65 20 63 6f 6e 6e 65 63 74 69 6f 6e | es,.although.a.single.connection |
| 24b20 | 20 77 69 6c 6c 20 6e 6f 74 20 73 70 61 6e 20 6d 75 6c 74 69 70 6c 65 20 73 6c 61 76 65 73 2e 00 | .will.not.span.multiple.slaves.. |
| 24b40 | 2a 2a 6c 65 66 74 2a 2a 00 2a 2a 6c 65 76 65 6c 2d 31 2a 2a 20 2d 20 41 63 74 20 61 73 20 61 20 | **left**.**level-1**.-.Act.as.a. |
| 24b60 | 73 74 61 74 69 6f 6e 20 28 4c 65 76 65 6c 20 31 29 20 72 6f 75 74 65 72 20 6f 6e 6c 79 2e 00 2a | station.(Level.1).router.only..* |
| 24b80 | 2a 6c 65 76 65 6c 2d 31 2a 2a 20 2d 20 4c 65 76 65 6c 2d 31 20 6f 6e 6c 79 20 61 64 6a 61 63 65 | *level-1**.-.Level-1.only.adjace |
| 24ba0 | 6e 63 69 65 73 20 61 72 65 20 66 6f 72 6d 65 64 2e 00 2a 2a 6c 65 76 65 6c 2d 31 2d 32 2a 2a 20 | ncies.are.formed..**level-1-2**. |
| 24bc0 | 2d 20 41 63 74 20 61 73 20 61 20 73 74 61 74 69 6f 6e 20 28 4c 65 76 65 6c 20 31 29 20 72 6f 75 | -.Act.as.a.station.(Level.1).rou |
| 24be0 | 74 65 72 20 61 6e 64 20 61 72 65 61 20 28 4c 65 76 65 6c 20 32 29 20 72 6f 75 74 65 72 2e 00 2a | ter.and.area.(Level.2).router..* |
| 24c00 | 2a 6c 65 76 65 6c 2d 31 2d 32 2a 2a 20 2d 20 4c 65 76 65 6c 2d 31 2d 32 20 61 64 6a 61 63 65 6e | *level-1-2**.-.Level-1-2.adjacen |
| 24c20 | 63 69 65 73 20 61 72 65 20 66 6f 72 6d 65 64 00 2a 2a 6c 65 76 65 6c 2d 32 2d 6f 6e 6c 79 2a 2a | cies.are.formed.**level-2-only** |
| 24c40 | 20 2d 20 41 63 74 20 61 73 20 61 6e 20 61 72 65 61 20 28 4c 65 76 65 6c 20 32 29 20 72 6f 75 74 | .-.Act.as.an.area.(Level.2).rout |
| 24c60 | 65 72 20 6f 6e 6c 79 2e 00 2a 2a 6c 65 76 65 6c 2d 32 2d 6f 6e 6c 79 2a 2a 20 2d 20 4c 65 76 65 | er.only..**level-2-only**.-.Leve |
| 24c80 | 6c 2d 32 20 6f 6e 6c 79 20 61 64 6a 61 63 65 6e 63 69 65 73 20 61 72 65 20 66 6f 72 6d 65 64 00 | l-2.only.adjacencies.are.formed. |
| 24ca0 | 2a 2a 6c 6f 63 61 6c 20 73 69 64 65 20 2d 20 63 6f 6d 6d 61 6e 64 73 2a 2a 00 2a 2a 6c 6f 63 61 | **local.side.-.commands**.**loca |
| 24cc0 | 6c 2a 2a 3a 20 41 6c 6c 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 71 75 65 72 69 65 73 20 | l**:.All.authentication.queries. |
| 24ce0 | 61 72 65 20 68 61 6e 64 6c 65 64 20 6c 6f 63 61 6c 6c 79 2e 00 2a 2a 6c 6f 63 61 6c 2a 2a 3a 20 | are.handled.locally..**local**:. |
| 24d00 | 49 74 20 6d 65 61 6e 73 20 74 68 61 74 20 63 6c 69 65 6e 74 20 61 72 65 20 62 65 68 69 6e 64 20 | It.means.that.client.are.behind. |
| 24d20 | 73 6f 6d 65 20 72 6f 75 74 65 72 2e 00 2a 2a 6c 6f 67 2d 66 61 69 6c 2a 2a 20 49 6e 20 74 68 69 | some.router..**log-fail**.In.thi |
| 24d40 | 73 20 6d 6f 64 65 2c 20 74 68 65 20 72 65 63 75 72 73 6f 72 20 77 69 6c 6c 20 61 74 74 65 6d 70 | s.mode,.the.recursor.will.attemp |
| 24d60 | 74 20 74 6f 20 76 61 6c 69 64 61 74 65 20 61 6c 6c 20 64 61 74 61 20 69 74 20 72 65 74 72 69 65 | t.to.validate.all.data.it.retrie |
| 24d80 | 76 65 73 20 66 72 6f 6d 20 61 75 74 68 6f 72 69 74 61 74 69 76 65 20 73 65 72 76 65 72 73 2c 20 | ves.from.authoritative.servers,. |
| 24da0 | 72 65 67 61 72 64 6c 65 73 73 20 6f 66 20 74 68 65 20 63 6c 69 65 6e 74 27 73 20 44 4e 53 53 45 | regardless.of.the.client's.DNSSE |
| 24dc0 | 43 20 64 65 73 69 72 65 73 2c 20 61 6e 64 20 77 69 6c 6c 20 6c 6f 67 20 74 68 65 20 76 61 6c 69 | C.desires,.and.will.log.the.vali |
| 24de0 | 64 61 74 69 6f 6e 20 72 65 73 75 6c 74 2e 20 54 68 69 73 20 6d 6f 64 65 20 63 61 6e 20 62 65 20 | dation.result..This.mode.can.be. |
| 24e00 | 75 73 65 64 20 74 6f 20 64 65 74 65 72 6d 69 6e 65 20 74 68 65 20 65 78 74 72 61 20 6c 6f 61 64 | used.to.determine.the.extra.load |
| 24e20 | 20 61 6e 64 20 61 6d 6f 75 6e 74 20 6f 66 20 70 6f 73 73 69 62 6c 79 20 62 6f 67 75 73 20 61 6e | .and.amount.of.possibly.bogus.an |
| 24e40 | 73 77 65 72 73 20 62 65 66 6f 72 65 20 74 75 72 6e 69 6e 67 20 6f 6e 20 66 75 6c 6c 2d 62 6c 6f | swers.before.turning.on.full-blo |
| 24e60 | 77 6e 20 76 61 6c 69 64 61 74 69 6f 6e 2e 20 52 65 73 70 6f 6e 73 65 73 20 74 6f 20 63 6c 69 65 | wn.validation..Responses.to.clie |
| 24e80 | 6e 74 20 71 75 65 72 69 65 73 20 61 72 65 20 74 68 65 20 73 61 6d 65 20 61 73 20 77 69 74 68 20 | nt.queries.are.the.same.as.with. |
| 24ea0 | 70 72 6f 63 65 73 73 2e 00 2a 2a 6c 6f 6f 6b 75 70 2d 61 2a 2a 20 41 20 46 6c 61 67 2e 00 2a 2a | process..**lookup-a**.A.Flag..** |
| 24ec0 | 6c 6f 6f 6b 75 70 2d 73 72 76 2a 2a 20 53 20 66 6c 61 67 2e 00 2a 2a 6e 61 72 72 6f 77 2a 2a 20 | lookup-srv**.S.flag..**narrow**. |
| 24ee0 | 2d 20 55 73 65 20 6f 6c 64 20 73 74 79 6c 65 20 6f 66 20 54 4c 56 73 20 77 69 74 68 20 6e 61 72 | -.Use.old.style.of.TLVs.with.nar |
| 24f00 | 72 6f 77 20 6d 65 74 72 69 63 2e 00 2a 2a 6e 65 74 2d 61 64 6d 69 6e 2a 2a 3a 20 4e 65 74 77 6f | row.metric..**net-admin**:.Netwo |
| 24f20 | 72 6b 20 6f 70 65 72 61 74 69 6f 6e 73 20 28 69 6e 74 65 72 66 61 63 65 2c 20 66 69 72 65 77 61 | rk.operations.(interface,.firewa |
| 24f40 | 6c 6c 2c 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 73 29 00 2a 2a 6e 65 74 2d 62 69 6e 64 2d 73 | ll,.routing.tables).**net-bind-s |
| 24f60 | 65 72 76 69 63 65 2a 2a 3a 20 42 69 6e 64 20 61 20 73 6f 63 6b 65 74 20 74 6f 20 70 72 69 76 69 | ervice**:.Bind.a.socket.to.privi |
| 24f80 | 6c 65 67 65 64 20 70 6f 72 74 73 20 28 70 6f 72 74 20 6e 75 6d 62 65 72 73 20 6c 65 73 73 20 74 | leged.ports.(port.numbers.less.t |
| 24fa0 | 68 61 6e 20 31 30 32 34 29 00 2a 2a 6e 65 74 2d 72 61 77 2a 2a 3a 20 50 65 72 6d 69 73 73 69 6f | han.1024).**net-raw**:.Permissio |
| 24fc0 | 6e 20 74 6f 20 63 72 65 61 74 65 20 72 61 77 20 6e 65 74 77 6f 72 6b 20 73 6f 63 6b 65 74 73 00 | n.to.create.raw.network.sockets. |
| 24fe0 | 2a 2a 6e 6f 2a 2a 3a 20 44 6f 20 6e 6f 74 20 72 65 73 74 61 72 74 20 63 6f 6e 74 61 69 6e 65 72 | **no**:.Do.not.restart.container |
| 25000 | 73 20 6f 6e 20 65 78 69 74 00 2a 2a 6e 6f 61 75 74 68 2a 2a 3a 20 41 75 74 68 65 6e 74 69 63 61 | s.on.exit.**noauth**:.Authentica |
| 25020 | 74 69 6f 6e 20 64 69 73 61 62 6c 65 64 00 2a 2a 6e 6f 61 75 74 68 2a 2a 3a 20 41 75 74 68 65 6e | tion.disabled.**noauth**:.Authen |
| 25040 | 74 69 63 61 74 69 6f 6e 20 64 69 73 61 62 6c 65 64 2e 00 2a 2a 6f 66 66 2a 2a 20 49 6e 20 74 68 | tication.disabled..**off**.In.th |
| 25060 | 69 73 20 6d 6f 64 65 2c 20 6e 6f 20 44 4e 53 53 45 43 20 70 72 6f 63 65 73 73 69 6e 67 20 74 61 | is.mode,.no.DNSSEC.processing.ta |
| 25080 | 6b 65 73 20 70 6c 61 63 65 2e 20 54 68 65 20 72 65 63 75 72 73 6f 72 20 77 69 6c 6c 20 6e 6f 74 | kes.place..The.recursor.will.not |
| 250a0 | 20 73 65 74 20 74 68 65 20 44 4e 53 53 45 43 20 4f 4b 20 28 44 4f 29 20 62 69 74 20 69 6e 20 74 | .set.the.DNSSEC.OK.(DO).bit.in.t |
| 250c0 | 68 65 20 6f 75 74 67 6f 69 6e 67 20 71 75 65 72 69 65 73 20 61 6e 64 20 77 69 6c 6c 20 69 67 6e | he.outgoing.queries.and.will.ign |
| 250e0 | 6f 72 65 20 74 68 65 20 44 4f 20 61 6e 64 20 41 44 20 62 69 74 73 20 69 6e 20 71 75 65 72 69 65 | ore.the.DO.and.AD.bits.in.querie |
| 25100 | 73 2e 00 2a 2a 6f 6e 2d 66 61 69 6c 75 72 65 2a 2a 3a 20 52 65 73 74 61 72 74 20 63 6f 6e 74 61 | s..**on-failure**:.Restart.conta |
| 25120 | 69 6e 65 72 73 20 77 68 65 6e 20 74 68 65 79 20 65 78 69 74 20 77 69 74 68 20 61 20 6e 6f 6e 2d | iners.when.they.exit.with.a.non- |
| 25140 | 7a 65 72 6f 20 65 78 69 74 20 63 6f 64 65 2c 20 72 65 74 72 79 69 6e 67 20 69 6e 64 65 66 69 6e | zero.exit.code,.retrying.indefin |
| 25160 | 69 74 65 6c 79 20 28 64 65 66 61 75 6c 74 29 00 2a 2a 6f 72 64 65 72 2a 2a 20 52 75 6c 65 20 6f | itely.(default).**order**.Rule.o |
| 25180 | 72 64 65 72 2e 20 52 65 71 75 69 72 65 73 20 60 3c 76 61 6c 75 65 3e 60 2e 00 2a 2a 6f 75 74 62 | rder..Requires.`<value>`..**outb |
| 251a0 | 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 2a 2a 20 2d 20 61 70 70 6c 69 63 61 62 6c 65 20 6f 6e | ound-interface**.-.applicable.on |
| 251c0 | 6c 79 20 74 6f 20 3a 72 65 66 3a 60 73 6f 75 72 63 65 2d 6e 61 74 60 2e 20 49 74 20 63 6f 6e 66 | ly.to.:ref:`source-nat`..It.conf |
| 251e0 | 69 67 75 72 65 73 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 77 68 69 63 68 20 69 73 20 75 73 | igures.the.interface.which.is.us |
| 25200 | 65 64 20 66 6f 72 20 74 68 65 20 6f 75 74 73 69 64 65 20 74 72 61 66 66 69 63 20 74 68 61 74 20 | ed.for.the.outside.traffic.that. |
| 25220 | 74 68 69 73 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 72 75 6c 65 20 61 70 70 6c 69 65 73 20 74 6f | this.translation.rule.applies.to |
| 25240 | 2e 00 2a 2a 6f 75 74 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 2a 2a 20 2d 20 61 70 70 6c 69 | ..**outbound-interface**.-.appli |
| 25260 | 63 61 62 6c 65 20 6f 6e 6c 79 20 74 6f 20 3a 72 65 66 3a 60 73 6f 75 72 63 65 2d 6e 61 74 60 2e | cable.only.to.:ref:`source-nat`. |
| 25280 | 20 49 74 20 63 6f 6e 66 69 67 75 72 65 73 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 77 68 69 | .It.configures.the.interface.whi |
| 252a0 | 63 68 20 69 73 20 75 73 65 64 20 66 6f 72 20 74 68 65 20 6f 75 74 73 69 64 65 20 74 72 61 66 66 | ch.is.used.for.the.outside.traff |
| 252c0 | 69 63 20 74 68 61 74 20 74 68 69 73 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 72 75 6c 65 20 61 70 | ic.that.this.translation.rule.ap |
| 252e0 | 70 6c 69 65 73 20 74 6f 2e 20 49 6e 74 65 72 66 61 63 65 20 67 72 6f 75 70 73 2c 20 69 6e 76 65 | plies.to..Interface.groups,.inve |
| 25300 | 72 74 65 64 20 73 65 6c 65 63 74 69 6f 6e 20 61 6e 64 20 77 69 6c 64 63 61 72 64 2c 20 61 72 65 | rted.selection.and.wildcard,.are |
| 25320 | 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 00 2a 2a 70 72 65 66 65 72 2a 2a 20 2d 20 41 73 | .also.supported..**prefer**.-.As |
| 25340 | 6b 20 63 6c 69 65 6e 74 20 66 6f 72 20 49 50 76 34 20 6e 65 67 6f 74 69 61 74 69 6f 6e 2c 20 64 | k.client.for.IPv4.negotiation,.d |
| 25360 | 6f 20 6e 6f 74 20 66 61 69 6c 20 69 66 20 69 74 20 72 65 6a 65 63 74 73 00 2a 2a 70 72 65 66 65 | o.not.fail.if.it.rejects.**prefe |
| 25380 | 72 2a 2a 20 2d 20 41 73 6b 20 63 6c 69 65 6e 74 20 66 6f 72 20 49 50 76 36 20 6e 65 67 6f 74 69 | r**.-.Ask.client.for.IPv6.negoti |
| 253a0 | 61 74 69 6f 6e 2c 20 64 6f 20 6e 6f 74 20 66 61 69 6c 20 69 66 20 69 74 20 72 65 6a 65 63 74 73 | ation,.do.not.fail.if.it.rejects |
| 253c0 | 00 2a 2a 70 72 65 66 65 72 2a 2a 20 2d 20 61 73 6b 20 63 6c 69 65 6e 74 20 66 6f 72 20 6d 70 70 | .**prefer**.-.ask.client.for.mpp |
| 253e0 | 65 2c 20 69 66 20 69 74 20 72 65 6a 65 63 74 73 20 64 6f 6e 27 74 20 66 61 69 6c 00 2a 2a 70 72 | e,.if.it.rejects.don't.fail.**pr |
| 25400 | 65 66 65 72 2a 2a 20 2d 20 61 73 6b 20 63 6c 69 65 6e 74 20 66 6f 72 20 6d 70 70 65 2c 20 69 66 | efer**.-.ask.client.for.mppe,.if |
| 25420 | 20 69 74 20 72 65 6a 65 63 74 73 20 64 6f 6e 27 74 20 66 61 69 6c 2e 20 28 44 65 66 61 75 6c 74 | .it.rejects.don't.fail..(Default |
| 25440 | 20 76 61 6c 75 65 29 00 2a 2a 70 72 65 66 65 72 65 6e 63 65 2a 2a 20 52 75 6c 65 20 70 72 65 66 | .value).**preference**.Rule.pref |
| 25460 | 65 72 65 6e 63 65 2e 20 52 65 71 75 69 72 65 73 20 60 3c 76 61 6c 75 65 3e 60 2e 20 44 65 66 61 | erence..Requires.`<value>`..Defa |
| 25480 | 75 6c 74 73 20 74 6f 20 30 20 69 66 20 6e 6f 74 20 73 65 74 2e 00 2a 2a 70 72 6f 63 65 73 73 2a | ults.to.0.if.not.set..**process* |
| 254a0 | 2a 20 57 68 65 6e 20 64 6e 73 73 65 63 20 69 73 20 73 65 74 20 74 6f 20 70 72 6f 63 65 73 73 20 | *.When.dnssec.is.set.to.process. |
| 254c0 | 74 68 65 20 62 65 68 61 76 69 6f 72 20 69 73 20 73 69 6d 69 6c 61 72 20 74 6f 20 70 72 6f 63 65 | the.behavior.is.similar.to.proce |
| 254e0 | 73 73 2d 6e 6f 2d 76 61 6c 69 64 61 74 65 2e 20 48 6f 77 65 76 65 72 2c 20 74 68 65 20 72 65 63 | ss-no-validate..However,.the.rec |
| 25500 | 75 72 73 6f 72 20 77 69 6c 6c 20 74 72 79 20 74 6f 20 76 61 6c 69 64 61 74 65 20 74 68 65 20 64 | ursor.will.try.to.validate.the.d |
| 25520 | 61 74 61 20 69 66 20 61 74 20 6c 65 61 73 74 20 6f 6e 65 20 6f 66 20 74 68 65 20 44 4f 20 6f 72 | ata.if.at.least.one.of.the.DO.or |
| 25540 | 20 41 44 20 62 69 74 73 20 69 73 20 73 65 74 20 69 6e 20 74 68 65 20 71 75 65 72 79 3b 20 69 6e | .AD.bits.is.set.in.the.query;.in |
| 25560 | 20 74 68 61 74 20 63 61 73 65 2c 20 69 74 20 77 69 6c 6c 20 73 65 74 20 74 68 65 20 41 44 2d 62 | .that.case,.it.will.set.the.AD-b |
| 25580 | 69 74 20 69 6e 20 74 68 65 20 72 65 73 70 6f 6e 73 65 20 77 68 65 6e 20 74 68 65 20 64 61 74 61 | it.in.the.response.when.the.data |
| 255a0 | 20 69 73 20 76 61 6c 69 64 61 74 65 64 20 73 75 63 63 65 73 73 66 75 6c 6c 79 2c 20 6f 72 20 73 | .is.validated.successfully,.or.s |
| 255c0 | 65 6e 64 20 53 45 52 56 46 41 49 4c 20 77 68 65 6e 20 74 68 65 20 76 61 6c 69 64 61 74 69 6f 6e | end.SERVFAIL.when.the.validation |
| 255e0 | 20 63 6f 6d 65 73 20 75 70 20 62 6f 67 75 73 2e 00 2a 2a 70 72 6f 63 65 73 73 2d 6e 6f 2d 76 61 | .comes.up.bogus..**process-no-va |
| 25600 | 6c 69 64 61 74 65 2a 2a 20 49 6e 20 74 68 69 73 20 6d 6f 64 65 20 74 68 65 20 72 65 63 75 72 73 | lidate**.In.this.mode.the.recurs |
| 25620 | 6f 72 20 61 63 74 73 20 61 73 20 61 20 22 73 65 63 75 72 69 74 79 20 61 77 61 72 65 2c 20 6e 6f | or.acts.as.a."security.aware,.no |
| 25640 | 6e 2d 76 61 6c 69 64 61 74 69 6e 67 22 20 6e 61 6d 65 73 65 72 76 65 72 2c 20 6d 65 61 6e 69 6e | n-validating".nameserver,.meanin |
| 25660 | 67 20 69 74 20 77 69 6c 6c 20 73 65 74 20 74 68 65 20 44 4f 2d 62 69 74 20 6f 6e 20 6f 75 74 67 | g.it.will.set.the.DO-bit.on.outg |
| 25680 | 6f 69 6e 67 20 71 75 65 72 69 65 73 20 61 6e 64 20 77 69 6c 6c 20 70 72 6f 76 69 64 65 20 44 4e | oing.queries.and.will.provide.DN |
| 256a0 | 53 53 45 43 20 72 65 6c 61 74 65 64 20 52 52 73 65 74 73 20 28 4e 53 45 43 2c 20 52 52 53 49 47 | SSEC.related.RRsets.(NSEC,.RRSIG |
| 256c0 | 29 20 74 6f 20 63 6c 69 65 6e 74 73 20 74 68 61 74 20 61 73 6b 20 66 6f 72 20 74 68 65 6d 20 28 | ).to.clients.that.ask.for.them.( |
| 256e0 | 62 79 20 6d 65 61 6e 73 20 6f 66 20 61 20 44 4f 2d 62 69 74 20 69 6e 20 74 68 65 20 71 75 65 72 | by.means.of.a.DO-bit.in.the.quer |
| 25700 | 79 29 2c 20 65 78 63 65 70 74 20 66 6f 72 20 7a 6f 6e 65 73 20 70 72 6f 76 69 64 65 64 20 74 68 | y),.except.for.zones.provided.th |
| 25720 | 72 6f 75 67 68 20 74 68 65 20 61 75 74 68 2d 7a 6f 6e 65 73 20 73 65 74 74 69 6e 67 2e 20 49 74 | rough.the.auth-zones.setting..It |
| 25740 | 20 77 69 6c 6c 20 6e 6f 74 20 64 6f 20 61 6e 79 20 76 61 6c 69 64 61 74 69 6f 6e 20 69 6e 20 74 | .will.not.do.any.validation.in.t |
| 25760 | 68 69 73 20 6d 6f 64 65 2c 20 6e 6f 74 20 65 76 65 6e 20 77 68 65 6e 20 72 65 71 75 65 73 74 65 | his.mode,.not.even.when.requeste |
| 25780 | 64 20 62 79 20 74 68 65 20 63 6c 69 65 6e 74 2e 00 2a 2a 70 72 6f 74 6f 63 6f 6c 2a 2a 20 2d 20 | d.by.the.client..**protocol**.-. |
| 257a0 | 73 70 65 63 69 66 79 20 77 68 69 63 68 20 74 79 70 65 73 20 6f 66 20 70 72 6f 74 6f 63 6f 6c 73 | specify.which.types.of.protocols |
| 257c0 | 20 74 68 69 73 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 72 75 6c 65 20 61 70 70 6c 69 65 73 20 74 | .this.translation.rule.applies.t |
| 257e0 | 6f 2e 20 4f 6e 6c 79 20 70 61 63 6b 65 74 73 20 6d 61 74 63 68 69 6e 67 20 74 68 65 20 73 70 65 | o..Only.packets.matching.the.spe |
| 25800 | 63 69 66 69 65 64 20 70 72 6f 74 6f 63 6f 6c 20 61 72 65 20 4e 41 54 65 64 2e 20 42 79 20 64 65 | cified.protocol.are.NATed..By.de |
| 25820 | 66 61 75 6c 74 20 74 68 69 73 20 61 70 70 6c 69 65 73 20 74 6f 20 60 61 6c 6c 60 20 70 72 6f 74 | fault.this.applies.to.`all`.prot |
| 25840 | 6f 63 6f 6c 73 2e 00 2a 2a 70 72 6f 74 6f 63 6f 6c 2d 73 70 65 63 69 66 69 63 2a 2a 20 50 20 66 | ocols..**protocol-specific**.P.f |
| 25860 | 6c 61 67 2e 00 2a 2a 72 61 64 69 75 73 2a 2a 3a 20 41 6c 6c 20 61 75 74 68 65 6e 74 69 63 61 74 | lag..**radius**:.All.authenticat |
| 25880 | 69 6f 6e 20 71 75 65 72 69 65 73 20 61 72 65 20 68 61 6e 64 6c 65 64 20 62 79 20 61 20 63 6f 6e | ion.queries.are.handled.by.a.con |
| 258a0 | 66 69 67 75 72 65 64 20 52 41 44 49 55 53 20 73 65 72 76 65 72 2e 00 2a 2a 72 61 6e 64 6f 6d 2a | figured.RADIUS.server..**random* |
| 258c0 | 2a 20 2d 20 52 61 6e 64 6f 6d 20 69 6e 74 65 72 66 61 63 65 20 69 64 65 6e 74 69 66 69 65 72 20 | *.-.Random.interface.identifier. |
| 258e0 | 66 6f 72 20 49 50 76 36 00 2a 2a 72 65 67 65 78 70 2a 2a 20 52 65 67 75 6c 61 72 20 65 78 70 72 | for.IPv6.**regexp**.Regular.expr |
| 25900 | 65 73 73 69 6f 6e 2e 20 52 65 71 75 69 72 65 73 20 60 3c 76 61 6c 75 65 3e 60 2e 00 2a 2a 72 65 | ession..Requires.`<value>`..**re |
| 25920 | 6d 6f 74 65 20 73 69 64 65 20 2d 20 63 6f 6d 6d 61 6e 64 73 2a 2a 00 2a 2a 72 65 70 6c 61 63 65 | mote.side.-.commands**.**replace |
| 25940 | 2a 2a 3a 20 54 65 72 6d 69 6e 61 74 65 20 66 69 72 73 74 20 73 65 73 73 69 6f 6e 20 77 68 65 6e | **:.Terminate.first.session.when |
| 25960 | 20 73 65 63 6f 6e 64 20 69 73 20 61 75 74 68 6f 72 69 7a 65 64 20 2a 2a 28 64 65 66 61 75 6c 74 | .second.is.authorized.**(default |
| 25980 | 29 2a 2a 00 2a 2a 72 65 70 6c 61 63 65 3a 2a 2a 20 52 65 6c 61 79 20 69 6e 66 6f 72 6d 61 74 69 | )**.**replace:**.Relay.informati |
| 259a0 | 6f 6e 20 61 6c 72 65 61 64 79 20 70 72 65 73 65 6e 74 20 69 6e 20 61 20 70 61 63 6b 65 74 20 69 | on.already.present.in.a.packet.i |
| 259c0 | 73 20 73 74 72 69 70 70 65 64 20 61 6e 64 20 72 65 70 6c 61 63 65 64 20 77 69 74 68 20 74 68 65 | s.stripped.and.replaced.with.the |
| 259e0 | 20 72 6f 75 74 65 72 27 73 20 6f 77 6e 20 72 65 6c 61 79 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 | .router's.own.relay.information. |
| 25a00 | 73 65 74 2e 00 2a 2a 72 65 70 6c 61 63 65 6d 65 6e 74 2a 2a 20 52 65 70 6c 61 63 65 6d 65 6e 74 | set..**replacement**.Replacement |
| 25a20 | 20 44 4e 53 20 6e 61 6d 65 2e 00 2a 2a 72 65 71 75 69 72 65 2a 2a 20 2d 20 52 65 71 75 69 72 65 | .DNS.name..**require**.-.Require |
| 25a40 | 20 49 50 76 34 20 6e 65 67 6f 74 69 61 74 69 6f 6e 00 2a 2a 72 65 71 75 69 72 65 2a 2a 20 2d 20 | .IPv4.negotiation.**require**.-. |
| 25a60 | 52 65 71 75 69 72 65 20 49 50 76 36 20 6e 65 67 6f 74 69 61 74 69 6f 6e 00 2a 2a 72 65 71 75 69 | Require.IPv6.negotiation.**requi |
| 25a80 | 72 65 2a 2a 20 2d 20 61 73 6b 20 63 6c 69 65 6e 74 20 66 6f 72 20 6d 70 70 65 2c 20 69 66 20 69 | re**.-.ask.client.for.mppe,.if.i |
| 25aa0 | 74 20 72 65 6a 65 63 74 73 20 64 72 6f 70 20 63 6f 6e 6e 65 63 74 69 6f 6e 00 2a 2a 72 65 73 6f | t.rejects.drop.connection.**reso |
| 25ac0 | 6c 76 65 2d 75 72 69 2a 2a 20 55 20 66 6c 61 67 2e 00 2a 2a 72 69 67 68 74 2a 2a 00 2a 2a 73 65 | lve-uri**.U.flag..**right**.**se |
| 25ae0 | 72 76 69 63 65 2a 2a 20 53 65 72 76 69 63 65 20 74 79 70 65 2e 20 52 65 71 75 69 72 65 73 20 60 | rvice**.Service.type..Requires.` |
| 25b00 | 3c 76 61 6c 75 65 3e 60 2e 00 2a 2a 73 65 74 70 63 61 70 2a 2a 3a 20 43 61 70 61 62 69 6c 69 74 | <value>`..**setpcap**:.Capabilit |
| 25b20 | 79 20 73 65 74 73 20 28 66 72 6f 6d 20 62 6f 75 6e 64 65 64 20 6f 72 20 69 6e 68 65 72 69 74 65 | y.sets.(from.bounded.or.inherite |
| 25b40 | 64 20 73 65 74 29 00 2a 2a 73 68 61 72 65 64 2a 2a 3a 20 4d 75 6c 74 69 70 6c 65 20 63 6c 69 65 | d.set).**shared**:.Multiple.clie |
| 25b60 | 6e 74 73 20 73 68 61 72 65 20 74 68 65 20 73 61 6d 65 20 6e 65 74 77 6f 72 6b 2e 20 2a 2a 28 64 | nts.share.the.same.network..**(d |
| 25b80 | 65 66 61 75 6c 74 29 2a 2a 00 2a 2a 73 6f 75 72 63 65 2a 2a 20 2d 20 73 70 65 63 69 66 69 65 73 | efault)**.**source**.-.specifies |
| 25ba0 | 20 77 68 69 63 68 20 70 61 63 6b 65 74 73 20 74 68 65 20 4e 41 54 20 74 72 61 6e 73 6c 61 74 69 | .which.packets.the.NAT.translati |
| 25bc0 | 6f 6e 20 72 75 6c 65 20 61 70 70 6c 69 65 73 20 74 6f 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 | on.rule.applies.to.based.on.the. |
| 25be0 | 70 61 63 6b 65 74 73 20 73 6f 75 72 63 65 20 49 50 20 61 64 64 72 65 73 73 20 61 6e 64 2f 6f 72 | packets.source.IP.address.and/or |
| 25c00 | 20 73 6f 75 72 63 65 20 70 6f 72 74 2e 20 4f 6e 6c 79 20 6d 61 74 63 68 69 6e 67 20 70 61 63 6b | .source.port..Only.matching.pack |
| 25c20 | 65 74 73 20 61 72 65 20 63 6f 6e 73 69 64 65 72 65 64 20 66 6f 72 20 4e 41 54 2e 00 2a 2a 73 79 | ets.are.considered.for.NAT..**sy |
| 25c40 | 73 2d 61 64 6d 69 6e 2a 2a 3a 20 41 64 6d 69 6e 69 73 74 61 74 69 6f 6e 20 6f 70 65 72 61 74 69 | s-admin**:.Administation.operati |
| 25c60 | 6f 6e 73 20 28 71 75 6f 74 61 63 74 6c 2c 20 6d 6f 75 6e 74 2c 20 73 65 74 68 6f 73 74 6e 61 6d | ons.(quotactl,.mount,.sethostnam |
| 25c80 | 65 2c 20 73 65 74 64 6f 6d 61 69 6e 61 6d 65 29 00 2a 2a 73 79 73 2d 61 64 6d 69 6e 2a 2a 3a 20 | e,.setdomainame).**sys-admin**:. |
| 25ca0 | 41 64 6d 69 6e 69 73 74 72 61 74 69 6f 6e 20 6f 70 65 72 61 74 69 6f 6e 73 20 28 71 75 6f 74 61 | Administration.operations.(quota |
| 25cc0 | 63 74 6c 2c 20 6d 6f 75 6e 74 2c 20 73 65 74 68 6f 73 74 6e 61 6d 65 2c 20 73 65 74 64 6f 6d 61 | ctl,.mount,.sethostname,.setdoma |
| 25ce0 | 69 6e 61 6d 65 29 00 2a 2a 73 79 73 2d 74 69 6d 65 2a 2a 3a 20 50 65 72 6d 69 73 73 69 6f 6e 20 | iname).**sys-time**:.Permission. |
| 25d00 | 74 6f 20 73 65 74 20 73 79 73 74 65 6d 20 63 6c 6f 63 6b 00 2a 2a 74 72 61 6e 73 69 74 69 6f 6e | to.set.system.clock.**transition |
| 25d20 | 2a 2a 20 2d 20 53 65 6e 64 20 61 6e 64 20 61 63 63 65 70 74 20 62 6f 74 68 20 73 74 79 6c 65 73 | **.-.Send.and.accept.both.styles |
| 25d40 | 20 6f 66 20 54 4c 56 73 20 64 75 72 69 6e 67 20 74 72 61 6e 73 69 74 69 6f 6e 2e 00 2a 2a 75 70 | .of.TLVs.during.transition..**up |
| 25d60 | 73 74 72 65 61 6d 3a 2a 2a 20 54 68 65 20 75 70 73 74 72 65 61 6d 20 6e 65 74 77 6f 72 6b 20 69 | stream:**.The.upstream.network.i |
| 25d80 | 6e 74 65 72 66 61 63 65 20 69 73 20 74 68 65 20 6f 75 74 67 6f 69 6e 67 20 69 6e 74 65 72 66 61 | nterface.is.the.outgoing.interfa |
| 25da0 | 63 65 20 77 68 69 63 68 20 69 73 20 72 65 73 70 6f 6e 73 69 62 6c 65 20 66 6f 72 20 63 6f 6d 6d | ce.which.is.responsible.for.comm |
| 25dc0 | 75 6e 69 63 61 74 69 6e 67 20 74 6f 20 61 76 61 69 6c 61 62 6c 65 20 6d 75 6c 74 69 63 61 73 74 | unicating.to.available.multicast |
| 25de0 | 20 64 61 74 61 20 73 6f 75 72 63 65 73 2e 20 54 68 65 72 65 20 63 61 6e 20 6f 6e 6c 79 20 62 65 | .data.sources..There.can.only.be |
| 25e00 | 20 6f 6e 65 20 75 70 73 74 72 65 61 6d 20 69 6e 74 65 72 66 61 63 65 2e 00 2a 2a 76 61 6c 69 64 | .one.upstream.interface..**valid |
| 25e20 | 61 74 65 2a 2a 20 54 68 65 20 68 69 67 68 65 73 74 20 6d 6f 64 65 20 6f 66 20 44 4e 53 53 45 43 | ate**.The.highest.mode.of.DNSSEC |
| 25e40 | 20 70 72 6f 63 65 73 73 69 6e 67 2e 20 49 6e 20 74 68 69 73 20 6d 6f 64 65 2c 20 61 6c 6c 20 71 | .processing..In.this.mode,.all.q |
| 25e60 | 75 65 72 69 65 73 20 77 69 6c 6c 20 62 65 20 76 61 6c 69 64 61 74 65 64 20 61 6e 64 20 77 69 6c | ueries.will.be.validated.and.wil |
| 25e80 | 6c 20 62 65 20 61 6e 73 77 65 72 65 64 20 77 69 74 68 20 61 20 53 45 52 56 46 41 49 4c 20 69 6e | l.be.answered.with.a.SERVFAIL.in |
| 25ea0 | 20 63 61 73 65 20 6f 66 20 62 6f 67 75 73 20 64 61 74 61 2c 20 72 65 67 61 72 64 6c 65 73 73 20 | .case.of.bogus.data,.regardless. |
| 25ec0 | 6f 66 20 74 68 65 20 63 6c 69 65 6e 74 27 73 20 72 65 71 75 65 73 74 2e 00 2a 2a 76 6c 61 6e 2a | of.the.client's.request..**vlan* |
| 25ee0 | 2a 3a 20 4f 6e 65 20 56 4c 41 4e 20 70 65 72 20 63 6c 69 65 6e 74 2e 00 2a 2a 77 69 64 65 2a 2a | *:.One.VLAN.per.client..**wide** |
| 25f00 | 20 2d 20 55 73 65 20 6e 65 77 20 73 74 79 6c 65 20 6f 66 20 54 4c 56 73 20 74 6f 20 63 61 72 72 | .-.Use.new.style.of.TLVs.to.carr |
| 25f20 | 79 20 77 69 64 65 72 20 6d 65 74 72 69 63 2e 00 2a 2a 78 3a 78 3a 78 3a 78 2a 2a 20 2d 20 53 70 | y.wider.metric..**x:x:x:x**.-.Sp |
| 25f40 | 65 63 69 66 79 20 69 6e 74 65 72 66 61 63 65 20 69 64 65 6e 74 69 66 69 65 72 20 66 6f 72 20 49 | ecify.interface.identifier.for.I |
| 25f60 | 50 76 36 00 2a 62 67 70 64 2a 20 73 75 70 70 6f 72 74 73 20 4d 75 6c 74 69 70 72 6f 74 6f 63 6f | Pv6.*bgpd*.supports.Multiprotoco |
| 25f80 | 6c 20 45 78 74 65 6e 73 69 6f 6e 20 66 6f 72 20 42 47 50 2e 20 53 6f 20 69 66 20 61 20 72 65 6d | l.Extension.for.BGP..So.if.a.rem |
| 25fa0 | 6f 74 65 20 70 65 65 72 20 73 75 70 70 6f 72 74 73 20 74 68 65 20 70 72 6f 74 6f 63 6f 6c 2c 20 | ote.peer.supports.the.protocol,. |
| 25fc0 | 2a 62 67 70 64 2a 20 63 61 6e 20 65 78 63 68 61 6e 67 65 20 49 50 76 36 20 61 6e 64 2f 6f 72 20 | *bgpd*.can.exchange.IPv6.and/or. |
| 25fe0 | 6d 75 6c 74 69 63 61 73 74 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2e 00 30 | multicast.routing.information..0 |
| 26000 | 00 30 20 69 66 20 6e 6f 74 20 64 65 66 69 6e 65 64 2c 20 77 68 69 63 68 20 6d 65 61 6e 73 20 6e | .0.if.not.defined,.which.means.n |
| 26020 | 6f 20 72 65 66 72 65 73 68 69 6e 67 2e 00 30 20 69 66 20 6e 6f 74 20 64 65 66 69 6e 65 64 2e 00 | o.refreshing..0.if.not.defined.. |
| 26040 | 30 30 30 30 30 30 00 30 30 31 30 31 30 00 30 30 31 31 30 30 00 30 30 31 31 31 30 00 30 31 30 30 | 000000.001010.001100.001110.0100 |
| 26060 | 31 30 00 30 31 30 31 30 30 00 30 31 30 31 31 30 00 30 31 31 30 31 30 00 30 31 31 31 30 30 00 30 | 10.010100.010110.011010.011100.0 |
| 26080 | 31 31 31 31 30 00 30 3a 20 44 69 73 61 62 6c 65 20 44 41 44 00 31 00 31 20 69 66 20 6e 6f 74 20 | 11110.0:.Disable.DAD.1.1.if.not. |
| 260a0 | 64 65 66 69 6e 65 64 2e 00 31 2d 74 6f 2d 31 20 4e 41 54 00 31 2e 20 43 72 65 61 74 65 20 61 6e | defined..1-to-1.NAT.1..Create.an |
| 260c0 | 20 65 76 65 6e 74 20 68 61 6e 64 6c 65 72 00 31 2e 20 46 69 72 73 74 20 70 61 63 6b 65 74 20 69 | .event.handler.1..First.packet.i |
| 260e0 | 73 20 72 65 63 65 69 76 65 64 20 6f 6e 20 65 68 74 30 2c 20 77 69 74 68 20 64 65 73 74 69 6e 61 | s.received.on.eht0,.with.destina |
| 26100 | 74 69 6f 6e 20 61 64 64 72 65 73 73 20 31 39 32 2e 30 2e 32 2e 31 30 30 2c 20 70 72 6f 74 6f 63 | tion.address.192.0.2.100,.protoc |
| 26120 | 6f 6c 20 74 63 70 20 61 6e 64 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 70 6f 72 74 20 31 31 32 32 | ol.tcp.and.destination.port.1122 |
| 26140 | 2e 20 41 73 73 75 6d 65 20 73 75 63 68 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 | ..Assume.such.destination.addres |
| 26160 | 73 20 69 73 20 72 65 61 63 68 61 62 6c 65 20 74 68 72 6f 75 67 68 20 69 6e 74 65 72 66 61 63 65 | s.is.reachable.through.interface |
| 26180 | 20 65 74 68 31 2e 00 31 2e 20 46 69 72 73 74 20 70 61 63 6b 65 74 20 69 73 20 72 65 63 65 69 76 | .eth1..1..First.packet.is.receiv |
| 261a0 | 65 64 20 6f 6e 20 65 74 68 30 2c 20 77 69 74 68 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 | ed.on.eth0,.with.destination.add |
| 261c0 | 72 65 73 73 20 31 39 32 2e 30 2e 32 2e 31 30 30 2c 20 70 72 6f 74 6f 63 6f 6c 20 74 63 70 20 61 | ress.192.0.2.100,.protocol.tcp.a |
| 261e0 | 6e 64 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 70 6f 72 74 20 31 31 32 32 2e 20 41 73 73 75 6d 65 | nd.destination.port.1122..Assume |
| 26200 | 20 73 75 63 68 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 69 73 20 72 65 61 | .such.destination.address.is.rea |
| 26220 | 63 68 61 62 6c 65 20 74 68 72 6f 75 67 68 20 69 6e 74 65 72 66 61 63 65 20 65 74 68 31 2e 00 31 | chable.through.interface.eth1..1 |
| 26240 | 2e 20 46 69 72 73 74 6c 79 2c 20 61 20 70 61 63 6b 65 74 20 69 73 20 72 65 63 65 69 76 65 64 20 | ..Firstly,.a.packet.is.received. |
| 26260 | 6f 6e 20 65 74 68 30 2c 20 77 69 74 68 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 | on.eth0,.with.destination.addres |
| 26280 | 73 20 31 39 32 2e 30 2e 32 2e 31 30 30 2c 20 70 72 6f 74 6f 63 6f 6c 20 74 63 70 20 61 6e 64 20 | s.192.0.2.100,.protocol.tcp.and. |
| 262a0 | 64 65 73 74 69 6e 61 74 69 6f 6e 20 70 6f 72 74 20 31 31 32 32 2e 20 41 73 73 75 6d 65 20 73 75 | destination.port.1122..Assume.su |
| 262c0 | 63 68 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 69 73 20 72 65 61 63 68 61 | ch.destination.address.is.reacha |
| 262e0 | 62 6c 65 20 74 68 72 6f 75 67 68 20 69 6e 74 65 72 66 61 63 65 20 65 74 68 31 2e 00 31 2e 20 47 | ble.through.interface.eth1..1..G |
| 26300 | 65 6e 65 72 61 74 65 20 61 20 6e 65 77 20 54 43 50 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 77 69 74 | enerate.a.new.TCP.connection.wit |
| 26320 | 68 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 70 6f 72 74 20 39 39 39 30 2e 20 41 73 20 73 68 6f 77 | h.destination.port.9990..As.show |
| 26340 | 6e 20 6e 65 78 74 2c 20 61 20 6e 65 77 20 65 6e 74 72 79 20 77 61 73 20 61 64 64 65 64 20 74 6f | n.next,.a.new.entry.was.added.to |
| 26360 | 20 64 79 6e 61 6d 69 63 20 66 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 20 2a 2a 50 4e 5f 30 31 2a | .dynamic.firewall.group.**PN_01* |
| 26380 | 2a 00 31 30 00 31 30 20 2d 20 31 30 20 4d 42 69 74 2f 73 00 31 30 2e 30 2e 30 2e 30 20 74 6f 20 | *.10.10.-.10.MBit/s.10.0.0.0.to. |
| 263a0 | 31 30 2e 32 35 35 2e 32 35 35 2e 32 35 35 20 28 43 49 44 52 3a 20 31 30 2e 30 2e 30 2e 30 2f 38 | 10.255.255.255.(CIDR:.10.0.0.0/8 |
| 263c0 | 29 00 31 30 30 20 2d 20 31 30 30 20 4d 42 69 74 2f 73 00 31 30 30 30 20 2d 20 31 20 47 42 69 74 | ).100.-.100.MBit/s.1000.-.1.GBit |
| 263e0 | 2f 73 00 31 30 30 30 30 20 2d 20 31 30 20 47 42 69 74 2f 73 00 31 30 30 30 30 30 20 2d 20 31 30 | /s.10000.-.10.GBit/s.100000.-.10 |
| 26400 | 30 20 47 42 69 74 2f 73 00 31 30 30 30 31 30 00 31 30 30 31 30 30 00 31 30 30 31 31 30 00 31 30 | 0.GBit/s.100010.100100.100110.10 |
| 26420 | 31 31 31 30 00 31 31 00 31 31 39 00 31 32 00 31 32 31 2c 20 32 34 39 00 31 33 00 31 34 00 31 35 | 1110.11.119.12.121,.249.13.14.15 |
| 26440 | 00 31 36 00 31 37 00 31 37 32 2e 31 36 2e 30 2e 30 20 74 6f 20 31 37 32 2e 33 31 2e 32 35 35 2e | .16.17.172.16.0.0.to.172.31.255. |
| 26460 | 32 35 35 20 28 43 49 44 52 3a 20 31 37 32 2e 31 36 2e 30 2e 30 2f 31 32 29 00 31 38 00 31 39 00 | 255.(CIDR:.172.16.0.0/12).18.19. |
| 26480 | 31 39 32 2e 31 36 38 2e 30 2e 30 20 74 6f 20 31 39 32 2e 31 36 38 2e 32 35 35 2e 32 35 35 20 28 | 192.168.0.0.to.192.168.255.255.( |
| 264a0 | 43 49 44 52 3a 20 31 39 32 2e 31 36 38 2e 30 2e 30 2f 31 36 29 00 31 3a 20 45 6e 61 62 6c 65 20 | CIDR:.192.168.0.0/16).1:.Enable. |
| 264c0 | 44 41 44 20 28 64 65 66 61 75 6c 74 29 00 32 00 32 2e 20 41 64 64 20 72 65 67 65 78 20 74 6f 20 | DAD.(default).2.2..Add.regex.to. |
| 264e0 | 74 68 65 20 73 63 72 69 70 74 00 32 2e 20 47 65 6e 65 72 61 74 65 20 61 20 6e 65 77 20 54 43 50 | the.script.2..Generate.a.new.TCP |
| 26500 | 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 77 69 74 68 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 70 6f 72 | .connection.with.destination.por |
| 26520 | 74 20 39 39 39 31 2e 20 41 73 20 73 68 6f 77 6e 20 6e 65 78 74 2c 20 61 20 6e 65 77 20 65 6e 74 | t.9991..As.shown.next,.a.new.ent |
| 26540 | 72 79 20 77 61 73 20 61 64 64 65 64 20 74 6f 20 64 79 6e 61 6d 69 63 20 66 69 72 65 77 61 6c 6c | ry.was.added.to.dynamic.firewall |
| 26560 | 20 67 72 6f 75 70 20 2a 2a 50 4e 5f 30 32 2a 2a 00 32 2e 20 53 69 6e 63 65 20 74 68 69 73 20 69 | .group.**PN_02**.2..Since.this.i |
| 26580 | 73 20 74 68 65 20 66 69 72 73 74 20 70 61 63 6b 65 74 2c 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 73 | s.the.first.packet,.connection.s |
| 265a0 | 74 61 74 75 73 20 6f 66 20 74 68 69 73 20 63 6f 6e 6e 65 63 74 69 6f 6e 2c 20 73 6f 20 66 61 72 | tatus.of.this.connection,.so.far |
| 265c0 | 20 69 73 20 2a 2a 6e 65 77 2a 2a 2e 20 53 6f 20 6e 65 69 74 68 65 72 20 72 75 6c 65 20 31 30 20 | .is.**new**..So.neither.rule.10. |
| 265e0 | 6e 6f 72 20 32 30 20 61 72 65 20 76 61 6c 69 64 2e 00 32 30 00 32 31 00 32 32 00 32 33 00 32 35 | nor.20.are.valid..20.21.22.23.25 |
| 26600 | 30 30 20 2d 20 32 2e 35 20 47 42 69 74 2f 73 00 32 35 30 30 30 20 2d 20 32 35 20 47 42 69 74 2f | 00.-.2.5.GBit/s.25000.-.25.GBit/ |
| 26620 | 73 00 32 35 32 00 32 36 00 32 38 00 32 3a 20 45 6e 61 62 6c 65 20 44 41 44 2c 20 61 6e 64 20 64 | s.252.26.28.2:.Enable.DAD,.and.d |
| 26640 | 69 73 61 62 6c 65 20 49 50 76 36 20 6f 70 65 72 61 74 69 6f 6e 20 69 66 20 4d 41 43 2d 62 61 73 | isable.IPv6.operation.if.MAC-bas |
| 26660 | 65 64 20 64 75 70 6c 69 63 61 74 65 20 6c 69 6e 6b 2d 6c 6f 63 61 6c 20 61 64 64 72 65 73 73 20 | ed.duplicate.link-local.address. |
| 26680 | 68 61 73 20 62 65 65 6e 20 66 6f 75 6e 64 2e 00 32 46 41 20 4f 54 50 20 73 75 70 70 6f 72 74 00 | has.been.found..2FA.OTP.support. |
| 266a0 | 33 00 33 2e 20 41 64 64 20 61 20 66 75 6c 6c 20 70 61 74 68 20 74 6f 20 74 68 65 20 73 63 72 69 | 3.3..Add.a.full.path.to.the.scri |
| 266c0 | 70 74 00 33 2e 20 47 65 6e 65 72 61 74 65 20 61 20 6e 65 77 20 54 43 50 20 63 6f 6e 6e 65 63 74 | pt.3..Generate.a.new.TCP.connect |
| 266e0 | 69 6f 6e 20 77 69 74 68 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 70 6f 72 74 20 39 39 39 32 2e 20 | ion.with.destination.port.9992.. |
| 26700 | 41 73 20 73 68 6f 77 6e 20 6e 65 78 74 2c 20 61 20 6e 65 77 20 65 6e 74 72 79 20 77 61 73 20 61 | As.shown.next,.a.new.entry.was.a |
| 26720 | 64 64 65 64 20 74 6f 20 64 79 6e 61 6d 69 63 20 66 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 20 2a | dded.to.dynamic.firewall.group.* |
| 26740 | 2a 41 4c 4c 4f 57 45 44 2a 2a 00 33 30 00 33 34 00 33 36 00 33 38 00 34 00 34 2e 20 41 64 64 20 | *ALLOWED**.30.34.36.38.4.4..Add. |
| 26760 | 6f 70 74 69 6f 6e 61 6c 20 70 61 72 61 6d 65 74 65 72 73 00 34 2e 20 4f 6e 63 65 20 61 6e 20 61 | optional.parameters.4..Once.an.a |
| 26780 | 6e 73 77 65 72 20 66 72 6f 6d 20 73 65 72 76 65 72 20 31 39 32 2e 30 2e 32 2e 31 30 30 20 69 73 | nswer.from.server.192.0.2.100.is |
| 267a0 | 20 73 65 65 6e 20 69 6e 20 6f 70 70 6f 73 69 74 65 20 64 69 72 65 63 74 69 6f 6e 2c 20 63 6f 6e | .seen.in.opposite.direction,.con |
| 267c0 | 6e 65 63 74 69 6f 6e 20 73 74 61 74 65 20 77 69 6c 6c 20 62 65 20 74 72 69 67 67 65 72 65 64 20 | nection.state.will.be.triggered. |
| 267e0 | 74 6f 20 2a 2a 65 73 74 61 62 6c 69 73 68 65 64 2a 2a 2c 20 73 6f 20 74 68 69 73 20 72 65 70 6c | to.**established**,.so.this.repl |
| 26800 | 79 20 69 73 20 61 63 63 65 70 74 65 64 20 69 6e 20 72 75 6c 65 20 32 30 2e 00 34 2e 20 4f 6e 63 | y.is.accepted.in.rule.20..4..Onc |
| 26820 | 65 20 61 6e 73 77 65 72 20 66 72 6f 6d 20 73 65 72 76 65 72 20 31 39 32 2e 30 2e 32 2e 31 30 30 | e.answer.from.server.192.0.2.100 |
| 26840 | 20 69 73 20 73 65 65 6e 20 69 6e 20 6f 70 70 6f 73 69 74 65 20 64 69 72 65 63 74 69 6f 6e 2c 20 | .is.seen.in.opposite.direction,. |
| 26860 | 63 6f 6e 6e 65 63 74 69 6f 6e 20 73 74 61 74 65 20 77 69 6c 6c 20 62 65 20 74 72 69 67 67 65 72 | connection.state.will.be.trigger |
| 26880 | 65 64 20 74 6f 20 2a 2a 65 73 74 61 62 6c 69 73 68 65 64 2a 2a 2c 20 73 6f 20 74 68 69 73 20 72 | ed.to.**established**,.so.this.r |
| 268a0 | 65 70 6c 79 20 69 73 20 61 63 63 65 70 74 65 64 20 69 6e 20 72 75 6c 65 20 31 30 2e 00 34 2e 20 | eply.is.accepted.in.rule.10..4.. |
| 268c0 | 4f 6e 63 65 20 61 6e 73 77 65 72 20 66 72 6f 6d 20 73 65 72 76 65 72 20 31 39 32 2e 30 2e 32 2e | Once.answer.from.server.192.0.2. |
| 268e0 | 31 30 30 20 69 73 20 73 65 65 6e 20 69 6e 20 6f 70 70 6f 73 69 74 65 20 64 69 72 65 63 74 69 6f | 100.is.seen.in.opposite.directio |
| 26900 | 6e 2c 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 73 74 61 74 65 20 77 69 6c 6c 20 62 65 20 74 72 69 67 | n,.connection.state.will.be.trig |
| 26920 | 67 65 72 65 64 20 74 6f 20 2a 2a 65 73 74 61 62 6c 69 73 68 65 64 2a 2a 2c 20 73 6f 20 74 68 69 | gered.to.**established**,.so.thi |
| 26940 | 73 20 72 65 70 6c 79 20 69 73 20 61 63 63 65 70 74 65 64 20 69 6e 20 72 75 6c 65 20 32 30 2e 00 | s.reply.is.accepted.in.rule.20.. |
| 26960 | 34 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 73 20 6d 61 79 20 73 77 69 74 63 68 20 74 68 65 69 72 | 40.MHz.channels.may.switch.their |
| 26980 | 20 70 72 69 6d 61 72 79 20 61 6e 64 20 73 65 63 6f 6e 64 61 72 79 20 63 68 61 6e 6e 65 6c 73 20 | .primary.and.secondary.channels. |
| 269a0 | 69 66 20 6e 65 65 64 65 64 20 6f 72 20 63 72 65 61 74 69 6f 6e 20 6f 66 20 34 30 20 4d 48 7a 20 | if.needed.or.creation.of.40.MHz. |
| 269c0 | 63 68 61 6e 6e 65 6c 20 6d 61 79 62 65 20 72 65 6a 65 63 74 65 64 20 62 61 73 65 64 20 6f 6e 20 | channel.maybe.rejected.based.on. |
| 269e0 | 6f 76 65 72 6c 61 70 70 69 6e 67 20 42 53 53 65 73 2e 20 54 68 65 73 65 20 63 68 61 6e 67 65 73 | overlapping.BSSes..These.changes |
| 26a00 | 20 61 72 65 20 64 6f 6e 65 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 77 68 65 6e 20 68 6f 73 | .are.done.automatically.when.hos |
| 26a20 | 74 61 70 64 20 69 73 20 73 65 74 74 69 6e 67 20 75 70 20 74 68 65 20 34 30 20 4d 48 7a 20 63 68 | tapd.is.setting.up.the.40.MHz.ch |
| 26a40 | 61 6e 6e 65 6c 2e 00 34 30 30 30 30 20 2d 20 34 30 20 47 42 69 74 2f 73 00 34 32 00 34 34 00 34 | annel..40000.-.40.GBit/s.42.44.4 |
| 26a60 | 36 00 35 00 35 20 69 66 20 6e 6f 74 20 64 65 66 69 6e 65 64 2e 00 35 2e 20 53 65 63 6f 6e 64 20 | 6.5.5.if.not.defined..5..Second. |
| 26a80 | 70 61 63 6b 65 74 20 66 6f 72 20 74 68 69 73 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 69 73 20 72 65 | packet.for.this.connection.is.re |
| 26aa0 | 63 65 69 76 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 2e 20 53 69 6e 63 65 20 63 6f 6e 6e | ceived.by.the.router..Since.conn |
| 26ac0 | 65 63 74 69 6f 6e 20 73 74 61 74 65 20 69 73 20 2a 2a 65 73 74 61 62 6c 69 73 68 65 64 2a 2a 2c | ection.state.is.**established**, |
| 26ae0 | 20 74 68 65 6e 20 72 75 6c 65 20 31 30 20 69 73 20 68 69 74 2c 20 61 6e 64 20 61 20 6e 65 77 20 | .then.rule.10.is.hit,.and.a.new. |
| 26b00 | 65 6e 74 72 79 20 69 6e 20 74 68 65 20 66 6c 6f 77 74 61 62 6c 65 20 46 54 30 31 20 69 73 20 61 | entry.in.the.flowtable.FT01.is.a |
| 26b20 | 64 64 65 64 20 66 6f 72 20 74 68 69 73 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 35 2e 20 54 68 65 | dded.for.this.connection..5..The |
| 26b40 | 20 73 65 63 6f 6e 64 20 70 61 63 6b 65 74 20 66 6f 72 20 74 68 69 73 20 63 6f 6e 6e 65 63 74 69 | .second.packet.for.this.connecti |
| 26b60 | 6f 6e 20 69 73 20 72 65 63 65 69 76 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 2e 20 53 69 | on.is.received.by.the.router..Si |
| 26b80 | 6e 63 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 73 74 61 74 65 20 69 73 20 2a 2a 65 73 74 61 62 6c | nce.connection.state.is.**establ |
| 26ba0 | 69 73 68 65 64 2a 2a 2c 20 74 68 65 6e 20 72 75 6c 65 20 31 30 20 69 73 20 68 69 74 2c 20 61 6e | ished**,.then.rule.10.is.hit,.an |
| 26bc0 | 64 20 61 20 6e 65 77 20 65 6e 74 72 79 20 69 6e 20 74 68 65 20 66 6c 6f 77 74 61 62 6c 65 20 46 | d.a.new.entry.in.the.flowtable.F |
| 26be0 | 54 30 31 20 69 73 20 61 64 64 65 64 20 66 6f 72 20 74 68 69 73 20 63 6f 6e 6e 65 63 74 69 6f 6e | T01.is.added.for.this.connection |
| 26c00 | 2e 00 35 30 30 30 20 2d 20 35 20 47 42 69 74 2f 73 00 35 30 30 30 30 20 2d 20 35 30 20 47 42 69 | ..5000.-.5.GBit/s.50000.-.50.GBi |
| 26c20 | 74 2f 73 00 35 34 00 36 00 36 2e 20 41 6c 6c 20 73 75 62 73 65 63 75 65 6e 74 20 70 61 63 6b 65 | t/s.54.6.6..All.subsecuent.packe |
| 26c40 | 74 73 20 77 69 6c 6c 20 73 6b 69 70 20 74 72 61 64 69 74 69 6f 6e 61 6c 20 70 61 74 68 2c 20 61 | ts.will.skip.traditional.path,.a |
| 26c60 | 6e 64 20 77 69 6c 6c 20 62 65 20 6f 66 66 6c 6f 61 64 65 64 20 61 6e 64 20 77 69 6c 6c 20 75 73 | nd.will.be.offloaded.and.will.us |
| 26c80 | 65 20 74 68 65 20 2a 2a 46 61 73 74 20 50 61 74 68 2a 2a 2e 00 36 2e 20 41 6c 6c 20 74 68 65 20 | e.the.**Fast.Path**..6..All.the. |
| 26ca0 | 66 6f 6c 6c 6f 77 69 6e 67 20 70 61 63 6b 65 74 73 20 77 69 6c 6c 20 73 6b 69 70 20 74 68 65 20 | following.packets.will.skip.the. |
| 26cc0 | 74 72 61 64 69 74 69 6f 6e 61 6c 20 70 61 74 68 2c 20 77 69 6c 6c 20 62 65 20 6f 66 66 6c 6f 61 | traditional.path,.will.be.offloa |
| 26ce0 | 64 65 64 20 61 6e 64 20 75 73 65 20 74 68 65 20 2a 2a 46 61 73 74 20 50 61 74 68 2a 2a 2e 00 36 | ded.and.use.the.**Fast.Path**..6 |
| 26d00 | 2e 20 41 6c 6c 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 70 61 63 6b 65 74 73 20 77 69 6c 6c | ..All.the.following.packets.will |
| 26d20 | 20 73 6b 69 70 20 74 72 61 64 69 74 69 6f 6e 61 6c 20 70 61 74 68 2c 20 61 6e 64 20 77 69 6c 6c | .skip.traditional.path,.and.will |
| 26d40 | 20 62 65 20 6f 66 66 6c 6f 61 64 65 64 20 61 6e 64 20 77 69 6c 6c 20 75 73 65 20 74 68 65 20 2a | .be.offloaded.and.will.use.the.* |
| 26d60 | 2a 46 61 73 74 20 50 61 74 68 2a 2a 2e 00 36 34 35 31 32 20 2f 20 31 30 30 30 20 e2 89 88 20 36 | *Fast.Path**..64512./.1000.....6 |
| 26d80 | 34 20 73 75 62 73 63 72 69 62 65 72 73 20 70 65 72 20 70 75 62 6c 69 63 20 49 50 00 36 36 00 36 | 4.subscribers.per.public.IP.66.6 |
| 26da0 | 36 25 20 6f 66 20 74 72 61 66 66 69 63 20 69 73 20 72 6f 75 74 65 64 20 74 6f 20 65 74 68 30 2c | 6%.of.traffic.is.routed.to.eth0, |
| 26dc0 | 20 65 74 68 31 20 67 65 74 73 20 33 33 25 20 6f 66 20 74 72 61 66 66 69 63 2e 00 36 37 00 36 39 | .eth1.gets.33%.of.traffic..67.69 |
| 26de0 | 00 36 69 6e 34 20 28 53 49 54 29 00 36 69 6e 34 20 75 73 65 73 20 74 75 6e 6e 65 6c 69 6e 67 20 | .6in4.(SIT).6in4.uses.tunneling. |
| 26e00 | 74 6f 20 65 6e 63 61 70 73 75 6c 61 74 65 20 49 50 76 36 20 74 72 61 66 66 69 63 20 6f 76 65 72 | to.encapsulate.IPv6.traffic.over |
| 26e20 | 20 49 50 76 34 20 6c 69 6e 6b 73 20 61 73 20 64 65 66 69 6e 65 64 20 69 6e 20 3a 72 66 63 3a 60 | .IPv4.links.as.defined.in.:rfc:` |
| 26e40 | 34 32 31 33 60 2e 20 54 68 65 20 36 69 6e 34 20 74 72 61 66 66 69 63 20 69 73 20 73 65 6e 74 20 | 4213`..The.6in4.traffic.is.sent. |
| 26e60 | 6f 76 65 72 20 49 50 76 34 20 69 6e 73 69 64 65 20 49 50 76 34 20 70 61 63 6b 65 74 73 20 77 68 | over.IPv4.inside.IPv4.packets.wh |
| 26e80 | 6f 73 65 20 49 50 20 68 65 61 64 65 72 73 20 68 61 76 65 20 74 68 65 20 49 50 20 70 72 6f 74 6f | ose.IP.headers.have.the.IP.proto |
| 26ea0 | 63 6f 6c 20 6e 75 6d 62 65 72 20 73 65 74 20 74 6f 20 34 31 2e 20 54 68 69 73 20 70 72 6f 74 6f | col.number.set.to.41..This.proto |
| 26ec0 | 63 6f 6c 20 6e 75 6d 62 65 72 20 69 73 20 73 70 65 63 69 66 69 63 61 6c 6c 79 20 64 65 73 69 67 | col.number.is.specifically.desig |
| 26ee0 | 6e 61 74 65 64 20 66 6f 72 20 49 50 76 36 20 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e 2c 20 74 68 | nated.for.IPv6.encapsulation,.th |
| 26f00 | 65 20 49 50 76 34 20 70 61 63 6b 65 74 20 68 65 61 64 65 72 20 69 73 20 69 6d 6d 65 64 69 61 74 | e.IPv4.packet.header.is.immediat |
| 26f20 | 65 6c 79 20 66 6f 6c 6c 6f 77 65 64 20 62 79 20 74 68 65 20 49 50 76 36 20 70 61 63 6b 65 74 20 | ely.followed.by.the.IPv6.packet. |
| 26f40 | 62 65 69 6e 67 20 63 61 72 72 69 65 64 2e 20 54 68 65 20 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e | being.carried..The.encapsulation |
| 26f60 | 20 6f 76 65 72 68 65 61 64 20 69 73 20 74 68 65 20 73 69 7a 65 20 6f 66 20 74 68 65 20 49 50 76 | .overhead.is.the.size.of.the.IPv |
| 26f80 | 34 20 68 65 61 64 65 72 20 6f 66 20 32 30 20 62 79 74 65 73 2c 20 74 68 65 72 65 66 6f 72 65 20 | 4.header.of.20.bytes,.therefore. |
| 26fa0 | 77 69 74 68 20 61 6e 20 4d 54 55 20 6f 66 20 31 35 30 30 20 62 79 74 65 73 2c 20 49 50 76 36 20 | with.an.MTU.of.1500.bytes,.IPv6. |
| 26fc0 | 70 61 63 6b 65 74 73 20 6f 66 20 31 34 38 30 20 62 79 74 65 73 20 63 61 6e 20 62 65 20 73 65 6e | packets.of.1480.bytes.can.be.sen |
| 26fe0 | 74 20 77 69 74 68 6f 75 74 20 66 72 61 67 6d 65 6e 74 61 74 69 6f 6e 2e 20 54 68 69 73 20 74 75 | t.without.fragmentation..This.tu |
| 27000 | 6e 6e 65 6c 69 6e 67 20 74 65 63 68 6e 69 71 75 65 20 69 73 20 66 72 65 71 75 65 6e 74 6c 79 20 | nneling.technique.is.frequently. |
| 27020 | 75 73 65 64 20 62 79 20 49 50 76 36 20 74 75 6e 6e 65 6c 20 62 72 6f 6b 65 72 73 20 6c 69 6b 65 | used.by.IPv6.tunnel.brokers.like |
| 27040 | 20 60 48 75 72 72 69 63 61 6e 65 20 45 6c 65 63 74 72 69 63 60 5f 2e 00 37 00 37 30 00 38 00 38 | .`Hurricane.Electric`_..7.70.8.8 |
| 27060 | 30 32 2e 31 71 20 56 4c 41 4e 20 69 6e 74 65 72 66 61 63 65 73 20 61 72 65 20 72 65 70 72 65 73 | 02.1q.VLAN.interfaces.are.repres |
| 27080 | 65 6e 74 65 64 20 61 73 20 76 69 72 74 75 61 6c 20 73 75 62 2d 69 6e 74 65 72 66 61 63 65 73 20 | ented.as.virtual.sub-interfaces. |
| 270a0 | 69 6e 20 56 79 4f 53 2e 20 54 68 65 20 74 65 72 6d 20 75 73 65 64 20 66 6f 72 20 74 68 69 73 20 | in.VyOS..The.term.used.for.this. |
| 270c0 | 69 73 20 60 60 76 69 66 60 60 2e 00 39 00 3a 61 62 62 72 3a 60 41 46 49 20 28 41 64 64 72 65 73 | is.``vif``..9.:abbr:`AFI.(Addres |
| 270e0 | 73 20 66 61 6d 69 6c 79 20 61 75 74 68 6f 72 69 74 79 20 69 64 65 6e 74 69 66 69 65 72 29 60 20 | s.family.authority.identifier)`. |
| 27100 | 2d 20 60 60 34 39 60 60 20 54 68 65 20 41 46 49 20 76 61 6c 75 65 20 34 39 20 69 73 20 77 68 61 | -.``49``.The.AFI.value.49.is.wha |
| 27120 | 74 20 49 53 2d 49 53 20 75 73 65 73 20 66 6f 72 20 70 72 69 76 61 74 65 20 61 64 64 72 65 73 73 | t.IS-IS.uses.for.private.address |
| 27140 | 69 6e 67 2e 00 3a 61 62 62 72 3a 60 41 46 49 20 28 41 64 64 72 65 73 73 20 66 61 6d 69 6c 79 20 | ing..:abbr:`AFI.(Address.family. |
| 27160 | 61 75 74 68 6f 72 69 74 79 20 69 64 65 6e 74 69 66 69 65 72 29 60 20 2d 20 60 60 34 39 60 60 20 | authority.identifier)`.-.``49``. |
| 27180 | 54 68 65 20 41 46 49 20 76 61 6c 75 65 20 34 39 20 69 73 20 77 68 61 74 20 4f 70 65 6e 46 61 62 | The.AFI.value.49.is.what.OpenFab |
| 271a0 | 72 69 63 20 75 73 65 73 20 66 6f 72 20 70 72 69 76 61 74 65 20 61 64 64 72 65 73 73 69 6e 67 2e | ric.uses.for.private.addressing. |
| 271c0 | 00 3a 61 62 62 72 3a 60 41 52 50 20 28 41 64 64 72 65 73 73 20 52 65 73 6f 6c 75 74 69 6f 6e 20 | .:abbr:`ARP.(Address.Resolution. |
| 271e0 | 50 72 6f 74 6f 63 6f 6c 29 60 20 69 73 20 61 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6f 6e 20 70 72 | Protocol)`.is.a.communication.pr |
| 27200 | 6f 74 6f 63 6f 6c 20 75 73 65 64 20 66 6f 72 20 64 69 73 63 6f 76 65 72 69 6e 67 20 74 68 65 20 | otocol.used.for.discovering.the. |
| 27220 | 6c 69 6e 6b 20 6c 61 79 65 72 20 61 64 64 72 65 73 73 2c 20 73 75 63 68 20 61 73 20 61 20 4d 41 | link.layer.address,.such.as.a.MA |
| 27240 | 43 20 61 64 64 72 65 73 73 2c 20 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 61 20 67 69 76 | C.address,.associated.with.a.giv |
| 27260 | 65 6e 20 69 6e 74 65 72 6e 65 74 20 6c 61 79 65 72 20 61 64 64 72 65 73 73 2c 20 74 79 70 69 63 | en.internet.layer.address,.typic |
| 27280 | 61 6c 6c 79 20 61 6e 20 49 50 76 34 20 61 64 64 72 65 73 73 2e 20 54 68 69 73 20 6d 61 70 70 69 | ally.an.IPv4.address..This.mappi |
| 272a0 | 6e 67 20 69 73 20 61 20 63 72 69 74 69 63 61 6c 20 66 75 6e 63 74 69 6f 6e 20 69 6e 20 74 68 65 | ng.is.a.critical.function.in.the |
| 272c0 | 20 49 6e 74 65 72 6e 65 74 20 70 72 6f 74 6f 63 6f 6c 20 73 75 69 74 65 2e 20 41 52 50 20 77 61 | .Internet.protocol.suite..ARP.wa |
| 272e0 | 73 20 64 65 66 69 6e 65 64 20 69 6e 20 31 39 38 32 20 62 79 20 3a 72 66 63 3a 60 38 32 36 60 20 | s.defined.in.1982.by.:rfc:`826`. |
| 27300 | 77 68 69 63 68 20 69 73 20 49 6e 74 65 72 6e 65 74 20 53 74 61 6e 64 61 72 64 20 53 54 44 20 33 | which.is.Internet.Standard.STD.3 |
| 27320 | 37 2e 00 3a 61 62 62 72 3a 60 42 46 44 20 28 42 69 64 69 72 65 63 74 69 6f 6e 61 6c 20 46 6f 72 | 7..:abbr:`BFD.(Bidirectional.For |
| 27340 | 77 61 72 64 69 6e 67 20 44 65 74 65 63 74 69 6f 6e 29 60 20 69 73 20 64 65 73 63 72 69 62 65 64 | warding.Detection)`.is.described |
| 27360 | 20 61 6e 64 20 65 78 74 65 6e 64 65 64 20 62 79 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 52 | .and.extended.by.the.following.R |
| 27380 | 46 43 73 3a 20 3a 72 66 63 3a 60 35 38 38 30 60 2c 20 3a 72 66 63 3a 60 35 38 38 31 60 20 61 6e | FCs:.:rfc:`5880`,.:rfc:`5881`.an |
| 273a0 | 64 20 3a 72 66 63 3a 60 35 38 38 33 60 2e 00 3a 61 62 62 72 3a 60 42 47 50 20 28 42 6f 72 64 65 | d.:rfc:`5883`..:abbr:`BGP.(Borde |
| 273c0 | 72 20 47 61 74 65 77 61 79 20 50 72 6f 74 6f 63 6f 6c 29 60 20 69 73 20 6f 6e 65 20 6f 66 20 74 | r.Gateway.Protocol)`.is.one.of.t |
| 273e0 | 68 65 20 45 78 74 65 72 69 6f 72 20 47 61 74 65 77 61 79 20 50 72 6f 74 6f 63 6f 6c 73 20 61 6e | he.Exterior.Gateway.Protocols.an |
| 27400 | 64 20 74 68 65 20 64 65 20 66 61 63 74 6f 20 73 74 61 6e 64 61 72 64 20 69 6e 74 65 72 64 6f 6d | d.the.de.facto.standard.interdom |
| 27420 | 61 69 6e 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 2e 20 54 68 65 20 6c 61 74 65 73 74 | ain.routing.protocol..The.latest |
| 27440 | 20 42 47 50 20 76 65 72 73 69 6f 6e 20 69 73 20 34 2e 20 42 47 50 2d 34 20 69 73 20 64 65 73 63 | .BGP.version.is.4..BGP-4.is.desc |
| 27460 | 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 31 37 37 31 60 20 61 6e 64 20 75 70 64 61 74 65 64 | ribed.in.:rfc:`1771`.and.updated |
| 27480 | 20 62 79 20 3a 72 66 63 3a 60 34 32 37 31 60 2e 20 3a 72 66 63 3a 60 32 38 35 38 60 20 61 64 64 | .by.:rfc:`4271`..:rfc:`2858`.add |
| 274a0 | 73 20 6d 75 6c 74 69 70 72 6f 74 6f 63 6f 6c 20 73 75 70 70 6f 72 74 20 74 6f 20 42 47 50 2e 00 | s.multiprotocol.support.to.BGP.. |
| 274c0 | 3a 61 62 62 72 3a 60 43 47 4e 41 54 20 28 43 61 72 72 69 65 72 2d 47 72 61 64 65 20 4e 65 74 77 | :abbr:`CGNAT.(Carrier-Grade.Netw |
| 274e0 | 6f 72 6b 20 41 64 64 72 65 73 73 20 54 72 61 6e 73 6c 61 74 69 6f 6e 29 60 20 2c 20 61 6c 73 6f | ork.Address.Translation)`.,.also |
| 27500 | 20 6b 6e 6f 77 6e 20 61 73 20 4c 61 72 67 65 2d 53 63 61 6c 65 20 4e 41 54 20 28 4c 53 4e 29 2c | .known.as.Large-Scale.NAT.(LSN), |
| 27520 | 20 69 73 20 61 20 74 79 70 65 20 6f 66 20 6e 65 74 77 6f 72 6b 20 61 64 64 72 65 73 73 20 74 72 | .is.a.type.of.network.address.tr |
| 27540 | 61 6e 73 6c 61 74 69 6f 6e 20 75 73 65 64 20 62 79 20 49 6e 74 65 72 6e 65 74 20 53 65 72 76 69 | anslation.used.by.Internet.Servi |
| 27560 | 63 65 20 50 72 6f 76 69 64 65 72 73 20 28 49 53 50 73 29 20 74 6f 20 65 6e 61 62 6c 65 20 6d 75 | ce.Providers.(ISPs).to.enable.mu |
| 27580 | 6c 74 69 70 6c 65 20 70 72 69 76 61 74 65 20 49 50 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 73 | ltiple.private.IP.addresses.to.s |
| 275a0 | 68 61 72 65 20 61 20 73 69 6e 67 6c 65 20 70 75 62 6c 69 63 20 49 50 20 61 64 64 72 65 73 73 2e | hare.a.single.public.IP.address. |
| 275c0 | 20 54 68 69 73 20 74 65 63 68 6e 69 71 75 65 20 68 65 6c 70 73 20 74 6f 20 63 6f 6e 73 65 72 76 | .This.technique.helps.to.conserv |
| 275e0 | 65 20 74 68 65 20 6c 69 6d 69 74 65 64 20 49 50 76 34 20 61 64 64 72 65 73 73 20 73 70 61 63 65 | e.the.limited.IPv4.address.space |
| 27600 | 2e 20 54 68 65 20 31 30 30 2e 36 34 2e 30 2e 30 2f 31 30 20 61 64 64 72 65 73 73 20 62 6c 6f 63 | ..The.100.64.0.0/10.address.bloc |
| 27620 | 6b 20 69 73 20 72 65 73 65 72 76 65 64 20 66 6f 72 20 75 73 65 20 69 6e 20 63 61 72 72 69 65 72 | k.is.reserved.for.use.in.carrier |
| 27640 | 2d 67 72 61 64 65 20 4e 41 54 00 3a 61 62 62 72 3a 60 43 4b 4e 20 28 4d 41 43 73 65 63 20 63 6f | -grade.NAT.:abbr:`CKN.(MACsec.co |
| 27660 | 6e 6e 65 63 74 69 76 69 74 79 20 61 73 73 6f 63 69 61 74 69 6f 6e 20 6e 61 6d 65 29 60 20 6b 65 | nnectivity.association.name)`.ke |
| 27680 | 79 00 3a 61 62 62 72 3a 60 44 4d 56 50 4e 20 28 44 79 6e 61 6d 69 63 20 4d 75 6c 74 69 70 6f 69 | y.:abbr:`DMVPN.(Dynamic.Multipoi |
| 276a0 | 6e 74 20 56 69 72 74 75 61 6c 20 50 72 69 76 61 74 65 20 4e 65 74 77 6f 72 6b 29 60 20 69 73 20 | nt.Virtual.Private.Network)`.is. |
| 276c0 | 61 20 64 79 6e 61 6d 69 63 20 3a 61 62 62 72 3a 60 56 50 4e 20 28 56 69 72 74 75 61 6c 20 50 72 | a.dynamic.:abbr:`VPN.(Virtual.Pr |
| 276e0 | 69 76 61 74 65 20 4e 65 74 77 6f 72 6b 29 60 20 74 65 63 68 6e 6f 6c 6f 67 79 20 6f 72 69 67 69 | ivate.Network)`.technology.origi |
| 27700 | 6e 61 6c 6c 79 20 64 65 76 65 6c 6f 70 65 64 20 62 79 20 43 69 73 63 6f 2e 20 57 68 69 6c 65 20 | nally.developed.by.Cisco..While. |
| 27720 | 74 68 65 69 72 20 69 6d 70 6c 65 6d 65 6e 74 61 74 69 6f 6e 20 77 61 73 20 73 6f 6d 65 77 68 61 | their.implementation.was.somewha |
| 27740 | 74 20 70 72 6f 70 72 69 65 74 61 72 79 2c 20 74 68 65 20 75 6e 64 65 72 6c 79 69 6e 67 20 74 65 | t.proprietary,.the.underlying.te |
| 27760 | 63 68 6e 6f 6c 6f 67 69 65 73 20 61 72 65 20 61 63 74 75 61 6c 6c 79 20 73 74 61 6e 64 61 72 64 | chnologies.are.actually.standard |
| 27780 | 73 20 62 61 73 65 64 2e 20 54 68 65 20 74 68 72 65 65 20 74 65 63 68 6e 6f 6c 6f 67 69 65 73 20 | s.based..The.three.technologies. |
| 277a0 | 61 72 65 3a 00 3a 61 62 62 72 3a 60 44 4e 41 54 20 28 44 65 73 74 69 6e 61 74 69 6f 6e 20 4e 65 | are:.:abbr:`DNAT.(Destination.Ne |
| 277c0 | 74 77 6f 72 6b 20 41 64 64 72 65 73 73 20 54 72 61 6e 73 6c 61 74 69 6f 6e 29 60 20 63 68 61 6e | twork.Address.Translation)`.chan |
| 277e0 | 67 65 73 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 6f 66 20 70 | ges.the.destination.address.of.p |
| 27800 | 61 63 6b 65 74 73 20 70 61 73 73 69 6e 67 20 74 68 72 6f 75 67 68 20 74 68 65 20 72 6f 75 74 65 | ackets.passing.through.the.route |
| 27820 | 72 2c 20 77 68 69 6c 65 20 3a 72 65 66 3a 60 73 6f 75 72 63 65 2d 6e 61 74 60 20 63 68 61 6e 67 | r,.while.:ref:`source-nat`.chang |
| 27840 | 65 73 20 74 68 65 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 6f 66 20 70 61 63 6b 65 74 73 | es.the.source.address.of.packets |
| 27860 | 2e 20 44 4e 41 54 20 69 73 20 74 79 70 69 63 61 6c 6c 79 20 75 73 65 64 20 77 68 65 6e 20 61 6e | ..DNAT.is.typically.used.when.an |
| 27880 | 20 65 78 74 65 72 6e 61 6c 20 28 70 75 62 6c 69 63 29 20 68 6f 73 74 20 6e 65 65 64 73 20 74 6f | .external.(public).host.needs.to |
| 278a0 | 20 69 6e 69 74 69 61 74 65 20 61 20 73 65 73 73 69 6f 6e 20 77 69 74 68 20 61 6e 20 69 6e 74 65 | .initiate.a.session.with.an.inte |
| 278c0 | 72 6e 61 6c 20 28 70 72 69 76 61 74 65 29 20 68 6f 73 74 2e 20 41 20 63 75 73 74 6f 6d 65 72 20 | rnal.(private).host..A.customer. |
| 278e0 | 6e 65 65 64 73 20 74 6f 20 61 63 63 65 73 73 20 61 20 70 72 69 76 61 74 65 20 73 65 72 76 69 63 | needs.to.access.a.private.servic |
| 27900 | 65 20 62 65 68 69 6e 64 20 74 68 65 20 72 6f 75 74 65 72 73 20 70 75 62 6c 69 63 20 49 50 2e 20 | e.behind.the.routers.public.IP.. |
| 27920 | 41 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 69 73 20 65 73 74 61 62 6c 69 73 68 65 64 20 77 69 74 68 | A.connection.is.established.with |
| 27940 | 20 74 68 65 20 72 6f 75 74 65 72 73 20 70 75 62 6c 69 63 20 49 50 20 61 64 64 72 65 73 73 20 6f | .the.routers.public.IP.address.o |
| 27960 | 6e 20 61 20 77 65 6c 6c 20 6b 6e 6f 77 6e 20 70 6f 72 74 20 61 6e 64 20 74 68 75 73 20 61 6c 6c | n.a.well.known.port.and.thus.all |
| 27980 | 20 74 72 61 66 66 69 63 20 66 6f 72 20 74 68 69 73 20 70 6f 72 74 20 69 73 20 72 65 77 72 69 74 | .traffic.for.this.port.is.rewrit |
| 279a0 | 74 65 6e 20 74 6f 20 61 64 64 72 65 73 73 20 74 68 65 20 69 6e 74 65 72 6e 61 6c 20 28 70 72 69 | ten.to.address.the.internal.(pri |
| 279c0 | 76 61 74 65 29 20 68 6f 73 74 2e 00 3a 61 62 62 72 3a 60 45 41 50 20 28 45 78 74 65 6e 73 69 62 | vate).host..:abbr:`EAP.(Extensib |
| 279e0 | 6c 65 20 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c 29 60 20 6f 76 65 | le.Authentication.Protocol)`.ove |
| 27a00 | 72 20 4c 41 4e 20 28 45 41 50 6f 4c 29 20 69 73 20 61 20 6e 65 74 77 6f 72 6b 20 70 6f 72 74 20 | r.LAN.(EAPoL).is.a.network.port. |
| 27a20 | 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 70 72 6f 74 6f 63 6f 6c 20 75 73 65 64 20 69 6e 20 | authentication.protocol.used.in. |
| 27a40 | 49 45 45 45 20 38 30 32 2e 31 58 20 28 50 6f 72 74 20 42 61 73 65 64 20 4e 65 74 77 6f 72 6b 20 | IEEE.802.1X.(Port.Based.Network. |
| 27a60 | 41 63 63 65 73 73 20 43 6f 6e 74 72 6f 6c 29 20 64 65 76 65 6c 6f 70 65 64 20 74 6f 20 67 69 76 | Access.Control).developed.to.giv |
| 27a80 | 65 20 61 20 67 65 6e 65 72 69 63 20 6e 65 74 77 6f 72 6b 20 73 69 67 6e 2d 6f 6e 20 74 6f 20 61 | e.a.generic.network.sign-on.to.a |
| 27aa0 | 63 63 65 73 73 20 6e 65 74 77 6f 72 6b 20 72 65 73 6f 75 72 63 65 73 2e 00 3a 61 62 62 72 3a 60 | ccess.network.resources..:abbr:` |
| 27ac0 | 45 55 49 2d 36 34 20 28 36 34 2d 42 69 74 20 45 78 74 65 6e 64 65 64 20 55 6e 69 71 75 65 20 49 | EUI-64.(64-Bit.Extended.Unique.I |
| 27ae0 | 64 65 6e 74 69 66 69 65 72 29 60 20 61 73 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 3a 72 66 63 | dentifier)`.as.specified.in.:rfc |
| 27b00 | 3a 60 34 32 39 31 60 20 61 6c 6c 6f 77 73 20 61 20 68 6f 73 74 20 74 6f 20 61 73 73 69 67 6e 20 | :`4291`.allows.a.host.to.assign. |
| 27b20 | 69 74 65 73 6c 66 20 61 20 75 6e 69 71 75 65 20 36 34 2d 42 69 74 20 49 50 76 36 20 61 64 64 72 | iteslf.a.unique.64-Bit.IPv6.addr |
| 27b40 | 65 73 73 2e 00 3a 61 62 62 72 3a 60 47 45 4e 45 56 45 20 28 47 65 6e 65 72 69 63 20 4e 65 74 77 | ess..:abbr:`GENEVE.(Generic.Netw |
| 27b60 | 6f 72 6b 20 56 69 72 74 75 61 6c 69 7a 61 74 69 6f 6e 20 45 6e 63 61 70 73 75 6c 61 74 69 6f 6e | ork.Virtualization.Encapsulation |
| 27b80 | 29 60 20 73 75 70 70 6f 72 74 73 20 61 6c 6c 20 6f 66 20 74 68 65 20 63 61 70 61 62 69 6c 69 74 | )`.supports.all.of.the.capabilit |
| 27ba0 | 69 65 73 20 6f 66 20 3a 61 62 62 72 3a 60 56 58 4c 41 4e 20 28 56 69 72 74 75 61 6c 20 45 78 74 | ies.of.:abbr:`VXLAN.(Virtual.Ext |
| 27bc0 | 65 6e 73 69 62 6c 65 20 4c 41 4e 29 60 2c 20 3a 61 62 62 72 3a 60 4e 56 47 52 45 20 28 4e 65 74 | ensible.LAN)`,.:abbr:`NVGRE.(Net |
| 27be0 | 77 6f 72 6b 20 56 69 72 74 75 61 6c 69 7a 61 74 69 6f 6e 20 75 73 69 6e 67 20 47 65 6e 65 72 69 | work.Virtualization.using.Generi |
| 27c00 | 63 20 52 6f 75 74 69 6e 67 20 45 6e 63 61 70 73 75 6c 61 74 69 6f 6e 29 60 2c 20 61 6e 64 20 3a | c.Routing.Encapsulation)`,.and.: |
| 27c20 | 61 62 62 72 3a 60 53 54 54 20 28 53 74 61 74 65 6c 65 73 73 20 54 72 61 6e 73 70 6f 72 74 20 54 | abbr:`STT.(Stateless.Transport.T |
| 27c40 | 75 6e 6e 65 6c 69 6e 67 29 60 20 61 6e 64 20 77 61 73 20 64 65 73 69 67 6e 65 64 20 74 6f 20 6f | unneling)`.and.was.designed.to.o |
| 27c60 | 76 65 72 63 6f 6d 65 20 74 68 65 69 72 20 70 65 72 63 65 69 76 65 64 20 6c 69 6d 69 74 61 74 69 | vercome.their.perceived.limitati |
| 27c80 | 6f 6e 73 2e 20 4d 61 6e 79 20 62 65 6c 69 65 76 65 20 47 45 4e 45 56 45 20 63 6f 75 6c 64 20 65 | ons..Many.believe.GENEVE.could.e |
| 27ca0 | 76 65 6e 74 75 61 6c 6c 79 20 72 65 70 6c 61 63 65 20 74 68 65 73 65 20 65 61 72 6c 69 65 72 20 | ventually.replace.these.earlier. |
| 27cc0 | 66 6f 72 6d 61 74 73 20 65 6e 74 69 72 65 6c 79 2e 00 3a 61 62 62 72 3a 60 47 52 45 20 28 47 65 | formats.entirely..:abbr:`GRE.(Ge |
| 27ce0 | 6e 65 72 69 63 20 52 6f 75 74 69 6e 67 20 45 6e 63 61 70 73 75 6c 61 74 69 6f 6e 29 60 2c 20 47 | neric.Routing.Encapsulation)`,.G |
| 27d00 | 52 45 2f 49 50 73 65 63 20 28 6f 72 20 49 50 49 50 2f 49 50 73 65 63 2c 20 53 49 54 2f 49 50 73 | RE/IPsec.(or.IPIP/IPsec,.SIT/IPs |
| 27d20 | 65 63 2c 20 6f 72 20 61 6e 79 20 6f 74 68 65 72 20 73 74 61 74 65 6c 65 73 73 20 74 75 6e 6e 65 | ec,.or.any.other.stateless.tunne |
| 27d40 | 6c 20 70 72 6f 74 6f 63 6f 6c 20 6f 76 65 72 20 49 50 73 65 63 29 20 69 73 20 74 68 65 20 75 73 | l.protocol.over.IPsec).is.the.us |
| 27d60 | 75 61 6c 20 77 61 79 20 74 6f 20 70 72 6f 74 65 63 74 20 74 68 65 20 74 72 61 66 66 69 63 20 69 | ual.way.to.protect.the.traffic.i |
| 27d80 | 6e 73 69 64 65 20 61 20 74 75 6e 6e 65 6c 2e 00 3a 61 62 62 72 3a 60 47 52 4f 20 28 47 65 6e 65 | nside.a.tunnel..:abbr:`GRO.(Gene |
| 27da0 | 72 69 63 20 72 65 63 65 69 76 65 20 6f 66 66 6c 6f 61 64 29 60 20 69 73 20 74 68 65 20 63 6f 6d | ric.receive.offload)`.is.the.com |
| 27dc0 | 70 6c 65 6d 65 6e 74 20 74 6f 20 47 53 4f 2e 20 49 64 65 61 6c 6c 79 20 61 6e 79 20 66 72 61 6d | plement.to.GSO..Ideally.any.fram |
| 27de0 | 65 20 61 73 73 65 6d 62 6c 65 64 20 62 79 20 47 52 4f 20 73 68 6f 75 6c 64 20 62 65 20 73 65 67 | e.assembled.by.GRO.should.be.seg |
| 27e00 | 6d 65 6e 74 65 64 20 74 6f 20 63 72 65 61 74 65 20 61 6e 20 69 64 65 6e 74 69 63 61 6c 20 73 65 | mented.to.create.an.identical.se |
| 27e20 | 71 75 65 6e 63 65 20 6f 66 20 66 72 61 6d 65 73 20 75 73 69 6e 67 20 47 53 4f 2c 20 61 6e 64 20 | quence.of.frames.using.GSO,.and. |
| 27e40 | 61 6e 79 20 73 65 71 75 65 6e 63 65 20 6f 66 20 66 72 61 6d 65 73 20 73 65 67 6d 65 6e 74 65 64 | any.sequence.of.frames.segmented |
| 27e60 | 20 62 79 20 47 53 4f 20 73 68 6f 75 6c 64 20 62 65 20 61 62 6c 65 20 74 6f 20 62 65 20 72 65 61 | .by.GSO.should.be.able.to.be.rea |
| 27e80 | 73 73 65 6d 62 6c 65 64 20 62 61 63 6b 20 74 6f 20 74 68 65 20 6f 72 69 67 69 6e 61 6c 20 62 79 | ssembled.back.to.the.original.by |
| 27ea0 | 20 47 52 4f 2e 20 54 68 65 20 6f 6e 6c 79 20 65 78 63 65 70 74 69 6f 6e 20 74 6f 20 74 68 69 73 | .GRO..The.only.exception.to.this |
| 27ec0 | 20 69 73 20 49 50 76 34 20 49 44 20 69 6e 20 74 68 65 20 63 61 73 65 20 74 68 61 74 20 74 68 65 | .is.IPv4.ID.in.the.case.that.the |
| 27ee0 | 20 44 46 20 62 69 74 20 69 73 20 73 65 74 20 66 6f 72 20 61 20 67 69 76 65 6e 20 49 50 20 68 65 | .DF.bit.is.set.for.a.given.IP.he |
| 27f00 | 61 64 65 72 2e 20 49 66 20 74 68 65 20 76 61 6c 75 65 20 6f 66 20 74 68 65 20 49 50 76 34 20 49 | ader..If.the.value.of.the.IPv4.I |
| 27f20 | 44 20 69 73 20 6e 6f 74 20 73 65 71 75 65 6e 74 69 61 6c 6c 79 20 69 6e 63 72 65 6d 65 6e 74 69 | D.is.not.sequentially.incrementi |
| 27f40 | 6e 67 20 69 74 20 77 69 6c 6c 20 62 65 20 61 6c 74 65 72 65 64 20 73 6f 20 74 68 61 74 20 69 74 | ng.it.will.be.altered.so.that.it |
| 27f60 | 20 69 73 20 77 68 65 6e 20 61 20 66 72 61 6d 65 20 61 73 73 65 6d 62 6c 65 64 20 76 69 61 20 47 | .is.when.a.frame.assembled.via.G |
| 27f80 | 52 4f 20 69 73 20 73 65 67 6d 65 6e 74 65 64 20 76 69 61 20 47 53 4f 2e 00 3a 61 62 62 72 3a 60 | RO.is.segmented.via.GSO..:abbr:` |
| 27fa0 | 47 53 4f 20 28 47 65 6e 65 72 69 63 20 53 65 67 6d 65 6e 74 61 74 69 6f 6e 20 4f 66 66 6c 6f 61 | GSO.(Generic.Segmentation.Offloa |
| 27fc0 | 64 29 60 20 69 73 20 61 20 70 75 72 65 20 73 6f 66 74 77 61 72 65 20 6f 66 66 6c 6f 61 64 20 74 | d)`.is.a.pure.software.offload.t |
| 27fe0 | 68 61 74 20 69 73 20 6d 65 61 6e 74 20 74 6f 20 64 65 61 6c 20 77 69 74 68 20 63 61 73 65 73 20 | hat.is.meant.to.deal.with.cases. |
| 28000 | 77 68 65 72 65 20 64 65 76 69 63 65 20 64 72 69 76 65 72 73 20 63 61 6e 6e 6f 74 20 70 65 72 66 | where.device.drivers.cannot.perf |
| 28020 | 6f 72 6d 20 74 68 65 20 6f 66 66 6c 6f 61 64 73 20 64 65 73 63 72 69 62 65 64 20 61 62 6f 76 65 | orm.the.offloads.described.above |
| 28040 | 2e 20 57 68 61 74 20 6f 63 63 75 72 73 20 69 6e 20 47 53 4f 20 69 73 20 74 68 61 74 20 61 20 67 | ..What.occurs.in.GSO.is.that.a.g |
| 28060 | 69 76 65 6e 20 73 6b 62 75 66 66 20 77 69 6c 6c 20 68 61 76 65 20 69 74 73 20 64 61 74 61 20 62 | iven.skbuff.will.have.its.data.b |
| 28080 | 72 6f 6b 65 6e 20 6f 75 74 20 6f 76 65 72 20 6d 75 6c 74 69 70 6c 65 20 73 6b 62 75 66 66 73 20 | roken.out.over.multiple.skbuffs. |
| 280a0 | 74 68 61 74 20 68 61 76 65 20 62 65 65 6e 20 72 65 73 69 7a 65 64 20 74 6f 20 6d 61 74 63 68 20 | that.have.been.resized.to.match. |
| 280c0 | 74 68 65 20 4d 53 53 20 70 72 6f 76 69 64 65 64 20 76 69 61 20 73 6b 62 5f 73 68 69 6e 66 6f 28 | the.MSS.provided.via.skb_shinfo( |
| 280e0 | 29 2d 3e 67 73 6f 5f 73 69 7a 65 2e 00 3a 61 62 62 72 3a 60 49 47 4d 50 20 28 49 6e 74 65 72 6e | )->gso_size..:abbr:`IGMP.(Intern |
| 28100 | 65 74 20 47 72 6f 75 70 20 4d 61 6e 61 67 65 6d 65 6e 74 20 50 72 6f 74 6f 63 6f 6c 29 60 20 70 | et.Group.Management.Protocol)`.p |
| 28120 | 72 6f 78 79 20 73 65 6e 64 73 20 49 47 4d 50 20 68 6f 73 74 20 6d 65 73 73 61 67 65 73 20 6f 6e | roxy.sends.IGMP.host.messages.on |
| 28140 | 20 62 65 68 61 6c 66 20 6f 66 20 61 20 63 6f 6e 6e 65 63 74 65 64 20 63 6c 69 65 6e 74 2e 20 54 | .behalf.of.a.connected.client..T |
| 28160 | 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d 75 73 74 20 64 65 66 69 6e 65 20 6f 6e 65 | he.configuration.must.define.one |
| 28180 | 2c 20 61 6e 64 20 6f 6e 6c 79 20 6f 6e 65 20 75 70 73 74 72 65 61 6d 20 69 6e 74 65 72 66 61 63 | ,.and.only.one.upstream.interfac |
| 281a0 | 65 2c 20 61 6e 64 20 6f 6e 65 20 6f 72 20 6d 6f 72 65 20 64 6f 77 6e 73 74 72 65 61 6d 20 69 6e | e,.and.one.or.more.downstream.in |
| 281c0 | 74 65 72 66 61 63 65 73 2e 00 3a 61 62 62 72 3a 60 49 50 53 65 63 20 28 49 50 20 53 65 63 75 72 | terfaces..:abbr:`IPSec.(IP.Secur |
| 281e0 | 69 74 79 29 60 20 2d 20 74 6f 6f 20 6d 61 6e 79 20 52 46 43 73 20 74 6f 20 6c 69 73 74 2c 20 62 | ity)`.-.too.many.RFCs.to.list,.b |
| 28200 | 75 74 20 73 74 61 72 74 20 77 69 74 68 20 3a 72 66 63 3a 60 34 33 30 31 60 00 3a 61 62 62 72 3a | ut.start.with.:rfc:`4301`.:abbr: |
| 28220 | 60 49 53 2d 49 53 20 28 49 6e 74 65 72 6d 65 64 69 61 74 65 20 53 79 73 74 65 6d 20 74 6f 20 49 | `IS-IS.(Intermediate.System.to.I |
| 28240 | 6e 74 65 72 6d 65 64 69 61 74 65 20 53 79 73 74 65 6d 29 60 20 69 73 20 61 20 6c 69 6e 6b 2d 73 | ntermediate.System)`.is.a.link-s |
| 28260 | 74 61 74 65 20 69 6e 74 65 72 69 6f 72 20 67 61 74 65 77 61 79 20 70 72 6f 74 6f 63 6f 6c 20 28 | tate.interior.gateway.protocol.( |
| 28280 | 49 47 50 29 20 77 68 69 63 68 20 69 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 49 53 4f 31 30 | IGP).which.is.described.in.ISO10 |
| 282a0 | 35 38 39 2c 20 3a 72 66 63 3a 60 31 31 39 35 60 2c 20 3a 72 66 63 3a 60 35 33 30 38 60 2e 20 49 | 589,.:rfc:`1195`,.:rfc:`5308`..I |
| 282c0 | 53 2d 49 53 20 72 75 6e 73 20 74 68 65 20 44 69 6a 6b 73 74 72 61 20 73 68 6f 72 74 65 73 74 2d | S-IS.runs.the.Dijkstra.shortest- |
| 282e0 | 70 61 74 68 20 66 69 72 73 74 20 28 53 50 46 29 20 61 6c 67 6f 72 69 74 68 6d 20 74 6f 20 63 72 | path.first.(SPF).algorithm.to.cr |
| 28300 | 65 61 74 65 20 61 20 64 61 74 61 62 61 73 65 20 6f 66 20 74 68 65 20 6e 65 74 77 6f 72 6b e2 80 | eate.a.database.of.the.network.. |
| 28320 | 99 73 20 74 6f 70 6f 6c 6f 67 79 2c 20 61 6e 64 20 66 72 6f 6d 20 74 68 61 74 20 64 61 74 61 62 | .s.topology,.and.from.that.datab |
| 28340 | 61 73 65 20 74 6f 20 64 65 74 65 72 6d 69 6e 65 20 74 68 65 20 62 65 73 74 20 28 74 68 61 74 20 | ase.to.determine.the.best.(that. |
| 28360 | 69 73 2c 20 6c 6f 77 65 73 74 20 63 6f 73 74 29 20 70 61 74 68 20 74 6f 20 61 20 64 65 73 74 69 | is,.lowest.cost).path.to.a.desti |
| 28380 | 6e 61 74 69 6f 6e 2e 20 54 68 65 20 69 6e 74 65 72 6d 65 64 69 61 74 65 20 73 79 73 74 65 6d 73 | nation..The.intermediate.systems |
| 283a0 | 20 28 74 68 65 20 6e 61 6d 65 20 66 6f 72 20 72 6f 75 74 65 72 73 29 20 65 78 63 68 61 6e 67 65 | .(the.name.for.routers).exchange |
| 283c0 | 20 74 6f 70 6f 6c 6f 67 79 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 77 69 74 68 20 74 68 65 69 72 | .topology.information.with.their |
| 283e0 | 20 64 69 72 65 63 74 6c 79 20 63 6f 6e 65 6e 63 74 65 64 20 6e 65 69 67 68 62 6f 72 73 2e 20 49 | .directly.conencted.neighbors..I |
| 28400 | 53 2d 49 53 20 72 75 6e 73 20 64 69 72 65 63 74 6c 79 20 6f 6e 20 74 68 65 20 64 61 74 61 20 6c | S-IS.runs.directly.on.the.data.l |
| 28420 | 69 6e 6b 20 6c 61 79 65 72 20 28 4c 61 79 65 72 20 32 29 2e 20 49 53 2d 49 53 20 61 64 64 72 65 | ink.layer.(Layer.2)..IS-IS.addre |
| 28440 | 73 73 65 73 20 61 72 65 20 63 61 6c 6c 65 64 20 3a 61 62 62 72 3a 60 4e 45 54 73 20 28 4e 65 74 | sses.are.called.:abbr:`NETs.(Net |
| 28460 | 77 6f 72 6b 20 45 6e 74 69 74 79 20 54 69 74 6c 65 73 29 60 20 61 6e 64 20 63 61 6e 20 62 65 20 | work.Entity.Titles)`.and.can.be. |
| 28480 | 38 20 74 6f 20 32 30 20 62 79 74 65 73 20 6c 6f 6e 67 2c 20 62 75 74 20 61 72 65 20 67 65 6e 65 | 8.to.20.bytes.long,.but.are.gene |
| 284a0 | 72 61 6c 6c 79 20 31 30 20 62 79 74 65 73 20 6c 6f 6e 67 2e 20 54 68 65 20 74 72 65 65 20 64 61 | rally.10.bytes.long..The.tree.da |
| 284c0 | 74 61 62 61 73 65 20 74 68 61 74 20 69 73 20 63 72 65 61 74 65 64 20 77 69 74 68 20 49 53 2d 49 | tabase.that.is.created.with.IS-I |
| 284e0 | 53 20 69 73 20 73 69 6d 69 6c 61 72 20 74 6f 20 74 68 65 20 6f 6e 65 20 74 68 61 74 20 69 73 20 | S.is.similar.to.the.one.that.is. |
| 28500 | 63 72 65 61 74 65 64 20 77 69 74 68 20 4f 53 50 46 20 69 6e 20 74 68 61 74 20 74 68 65 20 70 61 | created.with.OSPF.in.that.the.pa |
| 28520 | 74 68 73 20 63 68 6f 73 65 6e 20 73 68 6f 75 6c 64 20 62 65 20 73 69 6d 69 6c 61 72 2e 20 43 6f | ths.chosen.should.be.similar..Co |
| 28540 | 6d 70 61 72 69 73 6f 6e 73 20 74 6f 20 4f 53 50 46 20 61 72 65 20 69 6e 65 76 69 74 61 62 6c 65 | mparisons.to.OSPF.are.inevitable |
| 28560 | 20 61 6e 64 20 6f 66 74 65 6e 20 61 72 65 20 72 65 61 73 6f 6e 61 62 6c 65 20 6f 6e 65 73 20 74 | .and.often.are.reasonable.ones.t |
| 28580 | 6f 20 6d 61 6b 65 20 69 6e 20 72 65 67 61 72 64 73 20 74 6f 20 74 68 65 20 77 61 79 20 61 20 6e | o.make.in.regards.to.the.way.a.n |
| 285a0 | 65 74 77 6f 72 6b 20 77 69 6c 6c 20 72 65 73 70 6f 6e 64 20 77 69 74 68 20 65 69 74 68 65 72 20 | etwork.will.respond.with.either. |
| 285c0 | 49 47 50 2e 00 3a 61 62 62 72 3a 60 49 53 2d 49 53 20 28 49 6e 74 65 72 6d 65 64 69 61 74 65 20 | IGP..:abbr:`IS-IS.(Intermediate. |
| 285e0 | 53 79 73 74 65 6d 20 74 6f 20 49 6e 74 65 72 6d 65 64 69 61 74 65 20 53 79 73 74 65 6d 29 60 20 | System.to.Intermediate.System)`. |
| 28600 | 69 73 20 61 20 6c 69 6e 6b 2d 73 74 61 74 65 20 69 6e 74 65 72 69 6f 72 20 67 61 74 65 77 61 79 | is.a.link-state.interior.gateway |
| 28620 | 20 70 72 6f 74 6f 63 6f 6c 20 28 49 47 50 29 20 77 68 69 63 68 20 69 73 20 64 65 73 63 72 69 62 | .protocol.(IGP).which.is.describ |
| 28640 | 65 64 20 69 6e 20 49 53 4f 31 30 35 38 39 2c 20 3a 72 66 63 3a 60 31 31 39 35 60 2c 20 3a 72 66 | ed.in.ISO10589,.:rfc:`1195`,.:rf |
| 28660 | 63 3a 60 35 33 30 38 60 2e 20 49 53 2d 49 53 20 72 75 6e 73 20 74 68 65 20 44 69 6a 6b 73 74 72 | c:`5308`..IS-IS.runs.the.Dijkstr |
| 28680 | 61 20 73 68 6f 72 74 65 73 74 2d 70 61 74 68 20 66 69 72 73 74 20 28 53 50 46 29 20 61 6c 67 6f | a.shortest-path.first.(SPF).algo |
| 286a0 | 72 69 74 68 6d 20 74 6f 20 63 72 65 61 74 65 20 61 20 64 61 74 61 62 61 73 65 20 6f 66 20 74 68 | rithm.to.create.a.database.of.th |
| 286c0 | 65 20 6e 65 74 77 6f 72 6b e2 80 99 73 20 74 6f 70 6f 6c 6f 67 79 2c 20 61 6e 64 20 66 72 6f 6d | e.network...s.topology,.and.from |
| 286e0 | 20 74 68 61 74 20 64 61 74 61 62 61 73 65 20 74 6f 20 64 65 74 65 72 6d 69 6e 65 20 74 68 65 20 | .that.database.to.determine.the. |
| 28700 | 62 65 73 74 20 28 74 68 61 74 20 69 73 2c 20 6c 6f 77 65 73 74 20 63 6f 73 74 29 20 70 61 74 68 | best.(that.is,.lowest.cost).path |
| 28720 | 20 74 6f 20 61 20 64 65 73 74 69 6e 61 74 69 6f 6e 2e 20 54 68 65 20 69 6e 74 65 72 6d 65 64 69 | .to.a.destination..The.intermedi |
| 28740 | 61 74 65 20 73 79 73 74 65 6d 73 20 28 74 68 65 20 6e 61 6d 65 20 66 6f 72 20 72 6f 75 74 65 72 | ate.systems.(the.name.for.router |
| 28760 | 73 29 20 65 78 63 68 61 6e 67 65 20 74 6f 70 6f 6c 6f 67 79 20 69 6e 66 6f 72 6d 61 74 69 6f 6e | s).exchange.topology.information |
| 28780 | 20 77 69 74 68 20 74 68 65 69 72 20 64 69 72 65 63 74 6c 79 20 63 6f 6e 6e 65 63 74 65 64 20 6e | .with.their.directly.connected.n |
| 287a0 | 65 69 67 68 62 6f 72 73 2e 20 49 53 2d 49 53 20 72 75 6e 73 20 64 69 72 65 63 74 6c 79 20 6f 6e | eighbors..IS-IS.runs.directly.on |
| 287c0 | 20 74 68 65 20 64 61 74 61 20 6c 69 6e 6b 20 6c 61 79 65 72 20 28 4c 61 79 65 72 20 32 29 2e 20 | .the.data.link.layer.(Layer.2).. |
| 287e0 | 49 53 2d 49 53 20 61 64 64 72 65 73 73 65 73 20 61 72 65 20 63 61 6c 6c 65 64 20 3a 61 62 62 72 | IS-IS.addresses.are.called.:abbr |
| 28800 | 3a 60 4e 45 54 73 20 28 4e 65 74 77 6f 72 6b 20 45 6e 74 69 74 79 20 54 69 74 6c 65 73 29 60 20 | :`NETs.(Network.Entity.Titles)`. |
| 28820 | 61 6e 64 20 63 61 6e 20 62 65 20 38 20 74 6f 20 32 30 20 62 79 74 65 73 20 6c 6f 6e 67 2c 20 62 | and.can.be.8.to.20.bytes.long,.b |
| 28840 | 75 74 20 61 72 65 20 67 65 6e 65 72 61 6c 6c 79 20 31 30 20 62 79 74 65 73 20 6c 6f 6e 67 2e 20 | ut.are.generally.10.bytes.long.. |
| 28860 | 54 68 65 20 74 72 65 65 20 64 61 74 61 62 61 73 65 20 74 68 61 74 20 69 73 20 63 72 65 61 74 65 | The.tree.database.that.is.create |
| 28880 | 64 20 77 69 74 68 20 49 53 2d 49 53 20 69 73 20 73 69 6d 69 6c 61 72 20 74 6f 20 74 68 65 20 6f | d.with.IS-IS.is.similar.to.the.o |
| 288a0 | 6e 65 20 74 68 61 74 20 69 73 20 63 72 65 61 74 65 64 20 77 69 74 68 20 4f 53 50 46 20 69 6e 20 | ne.that.is.created.with.OSPF.in. |
| 288c0 | 74 68 61 74 20 74 68 65 20 70 61 74 68 73 20 63 68 6f 73 65 6e 20 73 68 6f 75 6c 64 20 62 65 20 | that.the.paths.chosen.should.be. |
| 288e0 | 73 69 6d 69 6c 61 72 2e 20 43 6f 6d 70 61 72 69 73 6f 6e 73 20 74 6f 20 4f 53 50 46 20 61 72 65 | similar..Comparisons.to.OSPF.are |
| 28900 | 20 69 6e 65 76 69 74 61 62 6c 65 20 61 6e 64 20 6f 66 74 65 6e 20 61 72 65 20 72 65 61 73 6f 6e | .inevitable.and.often.are.reason |
| 28920 | 61 62 6c 65 20 6f 6e 65 73 20 74 6f 20 6d 61 6b 65 20 69 6e 20 72 65 67 61 72 64 73 20 74 6f 20 | able.ones.to.make.in.regards.to. |
| 28940 | 74 68 65 20 77 61 79 20 61 20 6e 65 74 77 6f 72 6b 20 77 69 6c 6c 20 72 65 73 70 6f 6e 64 20 77 | the.way.a.network.will.respond.w |
| 28960 | 69 74 68 20 65 69 74 68 65 72 20 49 47 50 2e 00 3a 61 62 62 72 3a 60 4c 33 56 50 4e 20 56 52 46 | ith.either.IGP..:abbr:`L3VPN.VRF |
| 28980 | 73 20 28 20 4c 61 79 65 72 20 33 20 56 69 72 74 75 61 6c 20 50 72 69 76 61 74 65 20 4e 65 74 77 | s.(.Layer.3.Virtual.Private.Netw |
| 289a0 | 6f 72 6b 73 20 29 60 20 62 67 70 64 20 73 75 70 70 6f 72 74 73 20 66 6f 72 20 49 50 76 34 20 52 | orks.)`.bgpd.supports.for.IPv4.R |
| 289c0 | 46 43 20 34 33 36 34 20 61 6e 64 20 49 50 76 36 20 52 46 43 20 34 36 35 39 2e 20 4c 33 56 50 4e | FC.4364.and.IPv6.RFC.4659..L3VPN |
| 289e0 | 20 72 6f 75 74 65 73 2c 20 61 6e 64 20 74 68 65 69 72 20 61 73 73 6f 63 69 61 74 65 64 20 56 52 | .routes,.and.their.associated.VR |
| 28a00 | 46 20 4d 50 4c 53 20 6c 61 62 65 6c 73 2c 20 63 61 6e 20 62 65 20 64 69 73 74 72 69 62 75 74 65 | F.MPLS.labels,.can.be.distribute |
| 28a20 | 64 20 74 6f 20 56 50 4e 20 53 41 46 49 20 6e 65 69 67 68 62 6f 72 73 20 69 6e 20 74 68 65 20 64 | d.to.VPN.SAFI.neighbors.in.the.d |
| 28a40 | 65 66 61 75 6c 74 2c 20 69 2e 65 2e 2c 20 6e 6f 6e 20 56 52 46 2c 20 42 47 50 20 69 6e 73 74 61 | efault,.i.e.,.non.VRF,.BGP.insta |
| 28a60 | 6e 63 65 2e 20 56 52 46 20 4d 50 4c 53 20 6c 61 62 65 6c 73 20 61 72 65 20 72 65 61 63 68 65 64 | nce..VRF.MPLS.labels.are.reached |
| 28a80 | 20 75 73 69 6e 67 20 63 6f 72 65 20 4d 50 4c 53 20 6c 61 62 65 6c 73 20 77 68 69 63 68 20 61 72 | .using.core.MPLS.labels.which.ar |
| 28aa0 | 65 20 64 69 73 74 72 69 62 75 74 65 64 20 75 73 69 6e 67 20 4c 44 50 20 6f 72 20 42 47 50 20 6c | e.distributed.using.LDP.or.BGP.l |
| 28ac0 | 61 62 65 6c 65 64 20 75 6e 69 63 61 73 74 2e 20 62 67 70 64 20 61 6c 73 6f 20 73 75 70 70 6f 72 | abeled.unicast..bgpd.also.suppor |
| 28ae0 | 74 73 20 69 6e 74 65 72 2d 56 52 46 20 72 6f 75 74 65 20 6c 65 61 6b 69 6e 67 2e 00 3a 61 62 62 | ts.inter-VRF.route.leaking..:abb |
| 28b00 | 72 3a 60 4c 44 50 20 28 4c 61 62 65 6c 20 44 69 73 74 72 69 62 75 74 69 6f 6e 20 50 72 6f 74 6f | r:`LDP.(Label.Distribution.Proto |
| 28b20 | 63 6f 6c 29 60 20 69 73 20 61 20 54 43 50 20 62 61 73 65 64 20 4d 50 4c 53 20 73 69 67 6e 61 6c | col)`.is.a.TCP.based.MPLS.signal |
| 28b40 | 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 20 74 68 61 74 20 64 69 73 74 72 69 62 75 74 65 73 20 6c 61 | ing.protocol.that.distributes.la |
| 28b60 | 62 65 6c 73 20 63 72 65 61 74 69 6e 67 20 4d 50 4c 53 20 6c 61 62 65 6c 20 73 77 69 74 63 68 65 | bels.creating.MPLS.label.switche |
| 28b80 | 64 20 70 61 74 68 73 20 69 6e 20 61 20 64 79 6e 61 6d 69 63 20 6d 61 6e 6e 65 72 2e 20 4c 44 50 | d.paths.in.a.dynamic.manner..LDP |
| 28ba0 | 20 69 73 20 6e 6f 74 20 61 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 2c 20 61 73 20 69 | .is.not.a.routing.protocol,.as.i |
| 28bc0 | 74 20 72 65 6c 69 65 73 20 6f 6e 20 6f 74 68 65 72 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 | t.relies.on.other.routing.protoc |
| 28be0 | 6f 6c 73 20 66 6f 72 20 66 6f 72 77 61 72 64 69 6e 67 20 64 65 63 69 73 69 6f 6e 73 2e 20 4c 44 | ols.for.forwarding.decisions..LD |
| 28c00 | 50 20 63 61 6e 6e 6f 74 20 62 6f 6f 74 73 74 72 61 70 20 69 74 73 65 6c 66 2c 20 61 6e 64 20 74 | P.cannot.bootstrap.itself,.and.t |
| 28c20 | 68 65 72 65 66 6f 72 65 20 72 65 6c 69 65 73 20 6f 6e 20 73 61 69 64 20 72 6f 75 74 69 6e 67 20 | herefore.relies.on.said.routing. |
| 28c40 | 70 72 6f 74 6f 63 6f 6c 73 20 66 6f 72 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6f 6e 20 77 69 74 68 | protocols.for.communication.with |
| 28c60 | 20 6f 74 68 65 72 20 72 6f 75 74 65 72 73 20 74 68 61 74 20 75 73 65 20 4c 44 50 2e 00 3a 61 62 | .other.routers.that.use.LDP..:ab |
| 28c80 | 62 72 3a 60 4c 4c 44 50 20 28 4c 69 6e 6b 20 4c 61 79 65 72 20 44 69 73 63 6f 76 65 72 79 20 50 | br:`LLDP.(Link.Layer.Discovery.P |
| 28ca0 | 72 6f 74 6f 63 6f 6c 29 60 20 69 73 20 61 20 76 65 6e 64 6f 72 2d 6e 65 75 74 72 61 6c 20 6c 69 | rotocol)`.is.a.vendor-neutral.li |
| 28cc0 | 6e 6b 20 6c 61 79 65 72 20 70 72 6f 74 6f 63 6f 6c 20 69 6e 20 74 68 65 20 49 6e 74 65 72 6e 65 | nk.layer.protocol.in.the.Interne |
| 28ce0 | 74 20 50 72 6f 74 6f 63 6f 6c 20 53 75 69 74 65 20 75 73 65 64 20 62 79 20 6e 65 74 77 6f 72 6b | t.Protocol.Suite.used.by.network |
| 28d00 | 20 64 65 76 69 63 65 73 20 66 6f 72 20 61 64 76 65 72 74 69 73 69 6e 67 20 74 68 65 69 72 20 69 | .devices.for.advertising.their.i |
| 28d20 | 64 65 6e 74 69 74 79 2c 20 63 61 70 61 62 69 6c 69 74 69 65 73 2c 20 61 6e 64 20 6e 65 69 67 68 | dentity,.capabilities,.and.neigh |
| 28d40 | 62 6f 72 73 20 6f 6e 20 61 6e 20 49 45 45 45 20 38 30 32 20 6c 6f 63 61 6c 20 61 72 65 61 20 6e | bors.on.an.IEEE.802.local.area.n |
| 28d60 | 65 74 77 6f 72 6b 2c 20 70 72 69 6e 63 69 70 61 6c 6c 79 20 77 69 72 65 64 20 45 74 68 65 72 6e | etwork,.principally.wired.Ethern |
| 28d80 | 65 74 2e 20 54 68 65 20 70 72 6f 74 6f 63 6f 6c 20 69 73 20 66 6f 72 6d 61 6c 6c 79 20 72 65 66 | et..The.protocol.is.formally.ref |
| 28da0 | 65 72 72 65 64 20 74 6f 20 62 79 20 74 68 65 20 49 45 45 45 20 61 73 20 53 74 61 74 69 6f 6e 20 | erred.to.by.the.IEEE.as.Station. |
| 28dc0 | 61 6e 64 20 4d 65 64 69 61 20 41 63 63 65 73 73 20 43 6f 6e 74 72 6f 6c 20 43 6f 6e 6e 65 63 74 | and.Media.Access.Control.Connect |
| 28de0 | 69 76 69 74 79 20 44 69 73 63 6f 76 65 72 79 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 49 45 45 | ivity.Discovery.specified.in.IEE |
| 28e00 | 45 20 38 30 32 2e 31 41 42 20 61 6e 64 20 49 45 45 45 20 38 30 32 2e 33 2d 32 30 31 32 20 73 65 | E.802.1AB.and.IEEE.802.3-2012.se |
| 28e20 | 63 74 69 6f 6e 20 36 20 63 6c 61 75 73 65 20 37 39 2e 00 3a 61 62 62 72 3a 60 4c 52 4f 20 28 4c | ction.6.clause.79..:abbr:`LRO.(L |
| 28e40 | 61 72 67 65 20 52 65 63 65 69 76 65 20 4f 66 66 6c 6f 61 64 29 60 20 69 73 20 61 20 74 65 63 68 | arge.Receive.Offload)`.is.a.tech |
| 28e60 | 6e 69 71 75 65 20 64 65 73 69 67 6e 65 64 20 74 6f 20 62 6f 6f 73 74 20 74 68 65 20 65 66 66 69 | nique.designed.to.boost.the.effi |
| 28e80 | 63 69 65 6e 63 79 20 6f 66 20 68 6f 77 20 79 6f 75 72 20 63 6f 6d 70 75 74 65 72 27 73 20 6e 65 | ciency.of.how.your.computer's.ne |
| 28ea0 | 74 77 6f 72 6b 20 69 6e 74 65 72 66 61 63 65 20 63 61 72 64 20 28 4e 49 43 29 20 70 72 6f 63 65 | twork.interface.card.(NIC).proce |
| 28ec0 | 73 73 65 73 20 69 6e 63 6f 6d 69 6e 67 20 6e 65 74 77 6f 72 6b 20 74 72 61 66 66 69 63 2e 20 54 | sses.incoming.network.traffic..T |
| 28ee0 | 79 70 69 63 61 6c 6c 79 2c 20 6e 65 74 77 6f 72 6b 20 64 61 74 61 20 61 72 72 69 76 65 73 20 69 | ypically,.network.data.arrives.i |
| 28f00 | 6e 20 73 6d 61 6c 6c 65 72 20 63 68 75 6e 6b 73 20 63 61 6c 6c 65 64 20 70 61 63 6b 65 74 73 2e | n.smaller.chunks.called.packets. |
| 28f20 | 20 50 72 6f 63 65 73 73 69 6e 67 20 65 61 63 68 20 70 61 63 6b 65 74 20 69 6e 64 69 76 69 64 75 | .Processing.each.packet.individu |
| 28f40 | 61 6c 6c 79 20 63 6f 6e 73 75 6d 65 73 20 43 50 55 20 28 63 65 6e 74 72 61 6c 20 70 72 6f 63 65 | ally.consumes.CPU.(central.proce |
| 28f60 | 73 73 69 6e 67 20 75 6e 69 74 29 20 72 65 73 6f 75 72 63 65 73 2e 20 4c 6f 74 73 20 6f 66 20 73 | ssing.unit).resources..Lots.of.s |
| 28f80 | 6d 61 6c 6c 20 70 61 63 6b 65 74 73 20 63 61 6e 20 6c 65 61 64 20 74 6f 20 61 20 70 65 72 66 6f | mall.packets.can.lead.to.a.perfo |
| 28fa0 | 72 6d 61 6e 63 65 20 62 6f 74 74 6c 65 6e 65 63 6b 2e 20 49 6e 73 74 65 61 64 20 6f 66 20 68 61 | rmance.bottleneck..Instead.of.ha |
| 28fc0 | 6e 64 69 6e 67 20 74 68 65 20 43 50 55 20 65 61 63 68 20 70 61 63 6b 65 74 20 61 73 20 69 74 20 | nding.the.CPU.each.packet.as.it. |
| 28fe0 | 63 6f 6d 65 73 20 69 6e 2c 20 4c 52 4f 20 69 6e 73 74 72 75 63 74 73 20 74 68 65 20 4e 49 43 20 | comes.in,.LRO.instructs.the.NIC. |
| 29000 | 74 6f 20 63 6f 6d 62 69 6e 65 20 6d 75 6c 74 69 70 6c 65 20 69 6e 63 6f 6d 69 6e 67 20 70 61 63 | to.combine.multiple.incoming.pac |
| 29020 | 6b 65 74 73 20 69 6e 74 6f 20 61 20 73 69 6e 67 6c 65 2c 20 6c 61 72 67 65 72 20 70 61 63 6b 65 | kets.into.a.single,.larger.packe |
| 29040 | 74 2e 20 54 68 69 73 20 6c 61 72 67 65 72 20 70 61 63 6b 65 74 20 69 73 20 74 68 65 6e 20 70 61 | t..This.larger.packet.is.then.pa |
| 29060 | 73 73 65 64 20 74 6f 20 74 68 65 20 43 50 55 20 66 6f 72 20 70 72 6f 63 65 73 73 69 6e 67 2e 00 | ssed.to.the.CPU.for.processing.. |
| 29080 | 3a 61 62 62 72 3a 60 4d 46 50 20 28 4d 61 6e 61 67 65 6d 65 6e 74 20 46 72 61 6d 65 20 50 72 6f | :abbr:`MFP.(Management.Frame.Pro |
| 290a0 | 74 65 63 74 69 6f 6e 29 60 20 69 73 20 72 65 71 75 69 72 65 64 20 66 6f 72 20 57 50 41 33 2e 00 | tection)`.is.required.for.WPA3.. |
| 290c0 | 3a 61 62 62 72 3a 60 4d 4b 41 20 28 4d 41 43 73 65 63 20 4b 65 79 20 41 67 72 65 65 6d 65 6e 74 | :abbr:`MKA.(MACsec.Key.Agreement |
| 290e0 | 20 70 72 6f 74 6f 63 6f 6c 29 60 20 69 73 20 75 73 65 64 20 74 6f 20 73 79 6e 63 68 72 6f 6e 69 | .protocol)`.is.used.to.synchroni |
| 29100 | 7a 65 20 6b 65 79 73 20 62 65 74 77 65 65 6e 20 69 6e 64 69 76 69 64 75 61 6c 20 70 65 65 72 73 | ze.keys.between.individual.peers |
| 29120 | 2e 00 3a 61 62 62 72 3a 60 4d 50 4c 53 20 28 4d 75 6c 74 69 2d 50 72 6f 74 6f 63 6f 6c 20 4c 61 | ..:abbr:`MPLS.(Multi-Protocol.La |
| 29140 | 62 65 6c 20 53 77 69 74 63 68 69 6e 67 29 60 20 69 73 20 61 20 70 61 63 6b 65 74 20 66 6f 72 77 | bel.Switching)`.is.a.packet.forw |
| 29160 | 61 72 64 69 6e 67 20 70 61 72 61 64 69 67 6d 20 77 68 69 63 68 20 64 69 66 66 65 72 73 20 66 72 | arding.paradigm.which.differs.fr |
| 29180 | 6f 6d 20 72 65 67 75 6c 61 72 20 49 50 20 66 6f 72 77 61 72 64 69 6e 67 2e 20 49 6e 73 74 65 61 | om.regular.IP.forwarding..Instea |
| 291a0 | 64 20 6f 66 20 49 50 20 61 64 64 72 65 73 73 65 73 20 62 65 69 6e 67 20 75 73 65 64 20 74 6f 20 | d.of.IP.addresses.being.used.to. |
| 291c0 | 6d 61 6b 65 20 74 68 65 20 64 65 63 69 73 69 6f 6e 20 6f 6e 20 66 69 6e 64 69 6e 67 20 74 68 65 | make.the.decision.on.finding.the |
| 291e0 | 20 65 78 69 74 20 69 6e 74 65 72 66 61 63 65 2c 20 61 20 72 6f 75 74 65 72 20 77 69 6c 6c 20 69 | .exit.interface,.a.router.will.i |
| 29200 | 6e 73 74 65 61 64 20 75 73 65 20 61 6e 20 65 78 61 63 74 20 6d 61 74 63 68 20 6f 6e 20 61 20 33 | nstead.use.an.exact.match.on.a.3 |
| 29220 | 32 20 62 69 74 2f 34 20 62 79 74 65 20 68 65 61 64 65 72 20 63 61 6c 6c 65 64 20 74 68 65 20 4d | 2.bit/4.byte.header.called.the.M |
| 29240 | 50 4c 53 20 6c 61 62 65 6c 2e 20 54 68 69 73 20 6c 61 62 65 6c 20 69 73 20 69 6e 73 65 72 74 65 | PLS.label..This.label.is.inserte |
| 29260 | 64 20 62 65 74 77 65 65 6e 20 74 68 65 20 65 74 68 65 72 6e 65 74 20 28 6c 61 79 65 72 20 32 29 | d.between.the.ethernet.(layer.2) |
| 29280 | 20 68 65 61 64 65 72 20 61 6e 64 20 74 68 65 20 49 50 20 28 6c 61 79 65 72 20 33 29 20 68 65 61 | .header.and.the.IP.(layer.3).hea |
| 292a0 | 64 65 72 2e 20 4f 6e 65 20 63 61 6e 20 73 74 61 74 69 63 61 6c 6c 79 20 6f 72 20 64 79 6e 61 6d | der..One.can.statically.or.dynam |
| 292c0 | 69 63 61 6c 6c 79 20 61 73 73 69 67 6e 20 6c 61 62 65 6c 20 61 6c 6c 6f 63 61 74 69 6f 6e 73 2c | ically.assign.label.allocations, |
| 292e0 | 20 62 75 74 20 77 65 20 77 69 6c 6c 20 66 6f 63 75 73 20 6f 6e 20 64 79 6e 61 6d 69 63 20 61 6c | .but.we.will.focus.on.dynamic.al |
| 29300 | 6c 6f 63 61 74 69 6f 6e 20 6f 66 20 6c 61 62 65 6c 73 20 75 73 69 6e 67 20 73 6f 6d 65 20 73 6f | location.of.labels.using.some.so |
| 29320 | 72 74 20 6f 66 20 6c 61 62 65 6c 20 64 69 73 74 72 69 62 75 74 69 6f 6e 20 70 72 6f 74 6f 63 6f | rt.of.label.distribution.protoco |
| 29340 | 6c 20 28 73 75 63 68 20 61 73 20 74 68 65 20 61 70 74 6c 79 20 6e 61 6d 65 64 20 4c 61 62 65 6c | l.(such.as.the.aptly.named.Label |
| 29360 | 20 44 69 73 74 72 69 62 75 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c 20 2f 20 4c 44 50 2c 20 52 65 | .Distribution.Protocol./.LDP,.Re |
| 29380 | 73 6f 75 72 63 65 20 52 65 73 65 72 76 61 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c 20 2f 20 52 53 | source.Reservation.Protocol./.RS |
| 293a0 | 56 50 2c 20 6f 72 20 53 65 67 6d 65 6e 74 20 52 6f 75 74 69 6e 67 20 74 68 72 6f 75 67 68 20 4f | VP,.or.Segment.Routing.through.O |
| 293c0 | 53 50 46 2f 49 53 49 53 29 2e 20 54 68 65 73 65 20 70 72 6f 74 6f 63 6f 6c 73 20 61 6c 6c 6f 77 | SPF/ISIS)..These.protocols.allow |
| 293e0 | 20 66 6f 72 20 74 68 65 20 63 72 65 61 74 69 6f 6e 20 6f 66 20 61 20 75 6e 69 64 69 72 65 63 74 | .for.the.creation.of.a.unidirect |
| 29400 | 69 6f 6e 61 6c 2f 75 6e 69 63 61 73 74 20 70 61 74 68 20 63 61 6c 6c 65 64 20 61 20 6c 61 62 65 | ional/unicast.path.called.a.labe |
| 29420 | 6c 65 64 20 73 77 69 74 63 68 65 64 20 70 61 74 68 20 28 69 6e 69 74 69 61 6c 69 7a 65 64 20 61 | led.switched.path.(initialized.a |
| 29440 | 73 20 4c 53 50 29 20 74 68 72 6f 75 67 68 6f 75 74 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 74 68 | s.LSP).throughout.the.network.th |
| 29460 | 61 74 20 6f 70 65 72 61 74 65 73 20 76 65 72 79 20 6d 75 63 68 20 6c 69 6b 65 20 61 20 74 75 6e | at.operates.very.much.like.a.tun |
| 29480 | 6e 65 6c 20 74 68 72 6f 75 67 68 20 74 68 65 20 6e 65 74 77 6f 72 6b 2e 20 41 6e 20 65 61 73 79 | nel.through.the.network..An.easy |
| 294a0 | 20 77 61 79 20 6f 66 20 74 68 69 6e 6b 69 6e 67 20 61 62 6f 75 74 20 68 6f 77 20 61 6e 20 4d 50 | .way.of.thinking.about.how.an.MP |
| 294c0 | 4c 53 20 4c 53 50 20 61 63 74 75 61 6c 6c 79 20 66 6f 72 77 61 72 64 73 20 74 72 61 66 66 69 63 | LS.LSP.actually.forwards.traffic |
| 294e0 | 20 74 68 72 6f 75 67 68 6f 75 74 20 61 20 6e 65 74 77 6f 72 6b 20 69 73 20 74 6f 20 74 68 69 6e | .throughout.a.network.is.to.thin |
| 29500 | 6b 20 6f 66 20 61 20 47 52 45 20 74 75 6e 6e 65 6c 2e 20 54 68 65 79 20 61 72 65 20 6e 6f 74 20 | k.of.a.GRE.tunnel..They.are.not. |
| 29520 | 74 68 65 20 73 61 6d 65 20 69 6e 20 68 6f 77 20 74 68 65 79 20 6f 70 65 72 61 74 65 2c 20 62 75 | the.same.in.how.they.operate,.bu |
| 29540 | 74 20 74 68 65 79 20 61 72 65 20 74 68 65 20 73 61 6d 65 20 69 6e 20 68 6f 77 20 74 68 65 79 20 | t.they.are.the.same.in.how.they. |
| 29560 | 68 61 6e 64 6c 65 20 74 68 65 20 74 75 6e 6e 65 6c 65 64 20 70 61 63 6b 65 74 2e 20 49 74 20 77 | handle.the.tunneled.packet..It.w |
| 29580 | 6f 75 6c 64 20 62 65 20 67 6f 6f 64 20 74 6f 20 74 68 69 6e 6b 20 6f 66 20 4d 50 4c 53 20 61 73 | ould.be.good.to.think.of.MPLS.as |
| 295a0 | 20 61 20 74 75 6e 6e 65 6c 69 6e 67 20 74 65 63 68 6e 6f 6c 6f 67 79 20 74 68 61 74 20 63 61 6e | .a.tunneling.technology.that.can |
| 295c0 | 20 62 65 20 75 73 65 64 20 74 6f 20 74 72 61 6e 73 70 6f 72 74 20 6d 61 6e 79 20 64 69 66 66 65 | .be.used.to.transport.many.diffe |
| 295e0 | 72 65 6e 74 20 74 79 70 65 73 20 6f 66 20 70 61 63 6b 65 74 73 2c 20 74 6f 20 61 69 64 20 69 6e | rent.types.of.packets,.to.aid.in |
| 29600 | 20 74 72 61 66 66 69 63 20 65 6e 67 69 6e 65 65 72 69 6e 67 20 62 79 20 61 6c 6c 6f 77 69 6e 67 | .traffic.engineering.by.allowing |
| 29620 | 20 6f 6e 65 20 74 6f 20 73 70 65 63 69 66 79 20 70 61 74 68 73 20 74 68 72 6f 75 67 68 6f 75 74 | .one.to.specify.paths.throughout |
| 29640 | 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 28 75 73 69 6e 67 20 52 53 56 50 20 6f 72 20 53 52 29 2c | .the.network.(using.RSVP.or.SR), |
| 29660 | 20 61 6e 64 20 74 6f 20 67 65 6e 65 72 61 6c 6c 79 20 61 6c 6c 6f 77 20 66 6f 72 20 65 61 73 69 | .and.to.generally.allow.for.easi |
| 29680 | 65 72 20 69 6e 74 72 61 2f 69 6e 74 65 72 20 6e 65 74 77 6f 72 6b 20 74 72 61 6e 73 70 6f 72 74 | er.intra/inter.network.transport |
| 296a0 | 20 6f 66 20 64 61 74 61 20 70 61 63 6b 65 74 73 2e 00 3a 61 62 62 72 3a 60 4e 41 54 20 28 4e 65 | .of.data.packets..:abbr:`NAT.(Ne |
| 296c0 | 74 77 6f 72 6b 20 41 64 64 72 65 73 73 20 54 72 61 6e 73 6c 61 74 69 6f 6e 29 60 20 69 73 20 61 | twork.Address.Translation)`.is.a |
| 296e0 | 20 63 6f 6d 6d 6f 6e 20 6d 65 74 68 6f 64 20 6f 66 20 72 65 6d 61 70 70 69 6e 67 20 6f 6e 65 20 | .common.method.of.remapping.one. |
| 29700 | 49 50 20 61 64 64 72 65 73 73 20 73 70 61 63 65 20 69 6e 74 6f 20 61 6e 6f 74 68 65 72 20 62 79 | IP.address.space.into.another.by |
| 29720 | 20 6d 6f 64 69 66 79 69 6e 67 20 6e 65 74 77 6f 72 6b 20 61 64 64 72 65 73 73 20 69 6e 66 6f 72 | .modifying.network.address.infor |
| 29740 | 6d 61 74 69 6f 6e 20 69 6e 20 74 68 65 20 49 50 20 68 65 61 64 65 72 20 6f 66 20 70 61 63 6b 65 | mation.in.the.IP.header.of.packe |
| 29760 | 74 73 20 77 68 69 6c 65 20 74 68 65 79 20 61 72 65 20 69 6e 20 74 72 61 6e 73 69 74 20 61 63 72 | ts.while.they.are.in.transit.acr |
| 29780 | 6f 73 73 20 61 20 74 72 61 66 66 69 63 20 72 6f 75 74 69 6e 67 20 64 65 76 69 63 65 2e 20 54 68 | oss.a.traffic.routing.device..Th |
| 297a0 | 65 20 74 65 63 68 6e 69 71 75 65 20 77 61 73 20 6f 72 69 67 69 6e 61 6c 6c 79 20 75 73 65 64 20 | e.technique.was.originally.used. |
| 297c0 | 61 73 20 61 20 73 68 6f 72 74 63 75 74 20 74 6f 20 61 76 6f 69 64 20 74 68 65 20 6e 65 65 64 20 | as.a.shortcut.to.avoid.the.need. |
| 297e0 | 74 6f 20 72 65 61 64 64 72 65 73 73 20 65 76 65 72 79 20 68 6f 73 74 20 77 68 65 6e 20 61 20 6e | to.readdress.every.host.when.a.n |
| 29800 | 65 74 77 6f 72 6b 20 77 61 73 20 6d 6f 76 65 64 2e 20 49 74 20 68 61 73 20 62 65 63 6f 6d 65 20 | etwork.was.moved..It.has.become. |
| 29820 | 61 20 70 6f 70 75 6c 61 72 20 61 6e 64 20 65 73 73 65 6e 74 69 61 6c 20 74 6f 6f 6c 20 69 6e 20 | a.popular.and.essential.tool.in. |
| 29840 | 63 6f 6e 73 65 72 76 69 6e 67 20 67 6c 6f 62 61 6c 20 61 64 64 72 65 73 73 20 73 70 61 63 65 20 | conserving.global.address.space. |
| 29860 | 69 6e 20 74 68 65 20 66 61 63 65 20 6f 66 20 49 50 76 34 20 61 64 64 72 65 73 73 20 65 78 68 61 | in.the.face.of.IPv4.address.exha |
| 29880 | 75 73 74 69 6f 6e 2e 20 4f 6e 65 20 49 6e 74 65 72 6e 65 74 2d 72 6f 75 74 61 62 6c 65 20 49 50 | ustion..One.Internet-routable.IP |
| 298a0 | 20 61 64 64 72 65 73 73 20 6f 66 20 61 20 4e 41 54 20 67 61 74 65 77 61 79 20 63 61 6e 20 62 65 | .address.of.a.NAT.gateway.can.be |
| 298c0 | 20 75 73 65 64 20 66 6f 72 20 61 6e 20 65 6e 74 69 72 65 20 70 72 69 76 61 74 65 20 6e 65 74 77 | .used.for.an.entire.private.netw |
| 298e0 | 6f 72 6b 2e 00 3a 61 62 62 72 3a 60 4e 41 54 20 28 4e 65 74 77 6f 72 6b 20 41 64 64 72 65 73 73 | ork..:abbr:`NAT.(Network.Address |
| 29900 | 20 54 72 61 6e 73 6c 61 74 69 6f 6e 29 60 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 20 65 6e 74 | .Translation)`.is.configured.ent |
| 29920 | 69 72 65 6c 79 20 6f 6e 20 61 20 73 65 72 69 65 73 20 6f 66 20 73 6f 20 63 61 6c 6c 65 64 20 60 | irely.on.a.series.of.so.called.` |
| 29940 | 72 75 6c 65 73 60 2e 20 52 75 6c 65 73 20 61 72 65 20 6e 75 6d 62 65 72 65 64 20 61 6e 64 20 65 | rules`..Rules.are.numbered.and.e |
| 29960 | 76 61 6c 75 61 74 65 64 20 62 79 20 74 68 65 20 75 6e 64 65 72 6c 79 69 6e 67 20 4f 53 20 69 6e | valuated.by.the.underlying.OS.in |
| 29980 | 20 6e 75 6d 65 72 69 63 61 6c 20 6f 72 64 65 72 21 20 54 68 65 20 72 75 6c 65 20 6e 75 6d 62 65 | .numerical.order!.The.rule.numbe |
| 299a0 | 72 73 20 63 61 6e 20 62 65 20 63 68 61 6e 67 65 73 20 62 79 20 75 74 69 6c 69 7a 69 6e 67 20 74 | rs.can.be.changes.by.utilizing.t |
| 299c0 | 68 65 20 3a 63 66 67 63 6d 64 3a 60 72 65 6e 61 6d 65 60 20 61 6e 64 20 3a 63 66 67 63 6d 64 3a | he.:cfgcmd:`rename`.and.:cfgcmd: |
| 299e0 | 60 63 6f 70 79 60 20 63 6f 6d 6d 61 6e 64 73 2e 00 3a 61 62 62 72 3a 60 4e 41 54 36 34 20 28 49 | `copy`.commands..:abbr:`NAT64.(I |
| 29a00 | 50 76 36 2d 74 6f 2d 49 50 76 34 20 50 72 65 66 69 78 20 54 72 61 6e 73 6c 61 74 69 6f 6e 29 60 | Pv6-to-IPv4.Prefix.Translation)` |
| 29a20 | 20 69 73 20 61 20 63 72 69 74 69 63 61 6c 20 63 6f 6d 70 6f 6e 65 6e 74 20 69 6e 20 6d 6f 64 65 | .is.a.critical.component.in.mode |
| 29a40 | 72 6e 20 6e 65 74 77 6f 72 6b 69 6e 67 2c 20 66 61 63 69 6c 69 74 61 74 69 6e 67 20 63 6f 6d 6d | rn.networking,.facilitating.comm |
| 29a60 | 75 6e 69 63 61 74 69 6f 6e 20 62 65 74 77 65 65 6e 20 49 50 76 36 20 61 6e 64 20 49 50 76 34 20 | unication.between.IPv6.and.IPv4. |
| 29a80 | 6e 65 74 77 6f 72 6b 73 2e 20 54 68 69 73 20 64 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 6f 75 74 | networks..This.documentation.out |
| 29aa0 | 6c 69 6e 65 73 20 74 68 65 20 73 65 74 75 70 2c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2c 20 | lines.the.setup,.configuration,. |
| 29ac0 | 61 6e 64 20 75 73 61 67 65 20 6f 66 20 74 68 65 20 4e 41 54 36 34 20 66 65 61 74 75 72 65 20 69 | and.usage.of.the.NAT64.feature.i |
| 29ae0 | 6e 20 79 6f 75 72 20 70 72 6f 6a 65 63 74 2e 20 57 68 65 74 68 65 72 20 79 6f 75 20 61 72 65 20 | n.your.project..Whether.you.are. |
| 29b00 | 74 72 61 6e 73 69 74 69 6f 6e 69 6e 67 20 74 6f 20 49 50 76 36 20 6f 72 20 6e 65 65 64 20 74 6f | transitioning.to.IPv6.or.need.to |
| 29b20 | 20 73 65 61 6d 6c 65 73 73 6c 79 20 63 6f 6e 6e 65 63 74 20 49 50 76 34 20 61 6e 64 20 49 50 76 | .seamlessly.connect.IPv4.and.IPv |
| 29b40 | 36 20 64 65 76 69 63 65 73 2e 20 4e 41 54 36 34 20 69 73 20 61 20 73 74 61 74 65 66 75 6c 20 74 | 6.devices..NAT64.is.a.stateful.t |
| 29b60 | 72 61 6e 73 6c 61 74 69 6f 6e 20 6d 65 63 68 61 6e 69 73 6d 20 74 68 61 74 20 74 72 61 6e 73 6c | ranslation.mechanism.that.transl |
| 29b80 | 61 74 65 73 20 49 50 76 36 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 49 50 76 34 20 61 64 64 72 | ates.IPv6.addresses.to.IPv4.addr |
| 29ba0 | 65 73 73 65 73 20 61 6e 64 20 49 50 76 34 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 49 50 76 36 | esses.and.IPv4.addresses.to.IPv6 |
| 29bc0 | 20 61 64 64 72 65 73 73 65 73 2e 20 4e 41 54 36 34 20 69 73 20 75 73 65 64 20 74 6f 20 65 6e 61 | .addresses..NAT64.is.used.to.ena |
| 29be0 | 62 6c 65 20 49 50 76 36 2d 6f 6e 6c 79 20 63 6c 69 65 6e 74 73 20 74 6f 20 63 6f 6e 74 61 63 74 | ble.IPv6-only.clients.to.contact |
| 29c00 | 20 49 50 76 34 20 73 65 72 76 65 72 73 20 75 73 69 6e 67 20 75 6e 69 63 61 73 74 20 55 44 50 2c | .IPv4.servers.using.unicast.UDP, |
| 29c20 | 20 54 43 50 2c 20 6f 72 20 49 43 4d 50 2e 00 3a 61 62 62 72 3a 60 4e 45 54 20 28 4e 65 74 77 6f | .TCP,.or.ICMP..:abbr:`NET.(Netwo |
| 29c40 | 72 6b 20 45 6e 74 69 74 79 20 54 69 74 6c 65 29 60 20 73 65 6c 65 63 74 6f 72 3a 20 60 60 30 30 | rk.Entity.Title)`.selector:.``00 |
| 29c60 | 60 60 20 4d 75 73 74 20 61 6c 77 61 79 73 20 62 65 20 30 30 2e 20 54 68 69 73 20 73 65 74 74 69 | ``.Must.always.be.00..This.setti |
| 29c80 | 6e 67 20 69 6e 64 69 63 61 74 65 73 20 22 74 68 69 73 20 73 79 73 74 65 6d 22 20 6f 72 20 22 6c | ng.indicates."this.system".or."l |
| 29ca0 | 6f 63 61 6c 20 73 79 73 74 65 6d 2e 22 00 3a 61 62 62 72 3a 60 4e 48 52 50 20 28 4e 65 78 74 20 | ocal.system.".:abbr:`NHRP.(Next. |
| 29cc0 | 48 6f 70 20 52 65 73 6f 6c 75 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c 29 60 20 3a 72 66 63 3a 60 | Hop.Resolution.Protocol)`.:rfc:` |
| 29ce0 | 32 33 33 32 60 00 3a 61 62 62 72 3a 60 4e 50 54 76 36 20 28 49 50 76 36 2d 74 6f 2d 49 50 76 36 | 2332`.:abbr:`NPTv6.(IPv6-to-IPv6 |
| 29d00 | 20 4e 65 74 77 6f 72 6b 20 50 72 65 66 69 78 20 54 72 61 6e 73 6c 61 74 69 6f 6e 29 60 20 69 73 | .Network.Prefix.Translation)`.is |
| 29d20 | 20 61 6e 20 61 64 64 72 65 73 73 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 74 65 63 68 6e 6f 6c 6f | .an.address.translation.technolo |
| 29d40 | 67 79 20 62 61 73 65 64 20 6f 6e 20 49 50 76 36 20 6e 65 74 77 6f 72 6b 73 2c 20 75 73 65 64 20 | gy.based.on.IPv6.networks,.used. |
| 29d60 | 74 6f 20 63 6f 6e 76 65 72 74 20 61 6e 20 49 50 76 36 20 61 64 64 72 65 73 73 20 70 72 65 66 69 | to.convert.an.IPv6.address.prefi |
| 29d80 | 78 20 69 6e 20 61 6e 20 49 50 76 36 20 6d 65 73 73 61 67 65 20 69 6e 74 6f 20 61 6e 6f 74 68 65 | x.in.an.IPv6.message.into.anothe |
| 29da0 | 72 20 49 50 76 36 20 61 64 64 72 65 73 73 20 70 72 65 66 69 78 2e 20 57 65 20 63 61 6c 6c 20 74 | r.IPv6.address.prefix..We.call.t |
| 29dc0 | 68 69 73 20 61 64 64 72 65 73 73 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 6d 65 74 68 6f 64 20 4e | his.address.translation.method.N |
| 29de0 | 41 54 36 36 2e 20 44 65 76 69 63 65 73 20 74 68 61 74 20 73 75 70 70 6f 72 74 20 74 68 65 20 4e | AT66..Devices.that.support.the.N |
| 29e00 | 41 54 36 36 20 66 75 6e 63 74 69 6f 6e 20 61 72 65 20 63 61 6c 6c 65 64 20 4e 41 54 36 36 20 64 | AT66.function.are.called.NAT66.d |
| 29e20 | 65 76 69 63 65 73 2c 20 77 68 69 63 68 20 63 61 6e 20 70 72 6f 76 69 64 65 20 4e 41 54 36 36 20 | evices,.which.can.provide.NAT66. |
| 29e40 | 73 6f 75 72 63 65 20 61 6e 64 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 74 | source.and.destination.address.t |
| 29e60 | 72 61 6e 73 6c 61 74 69 6f 6e 20 66 75 6e 63 74 69 6f 6e 73 2e 00 3a 61 62 62 72 3a 60 4e 54 50 | ranslation.functions..:abbr:`NTP |
| 29e80 | 20 28 4e 65 74 77 6f 72 6b 20 54 69 6d 65 20 50 72 6f 74 6f 63 6f 6c 60 29 20 69 73 20 61 20 6e | .(Network.Time.Protocol`).is.a.n |
| 29ea0 | 65 74 77 6f 72 6b 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 20 66 6f 72 20 63 6c 6f 63 6b 20 73 79 6e | etworking.protocol.for.clock.syn |
| 29ec0 | 63 68 72 6f 6e 69 7a 61 74 69 6f 6e 20 62 65 74 77 65 65 6e 20 63 6f 6d 70 75 74 65 72 20 73 79 | chronization.between.computer.sy |
| 29ee0 | 73 74 65 6d 73 20 6f 76 65 72 20 70 61 63 6b 65 74 2d 73 77 69 74 63 68 65 64 2c 20 76 61 72 69 | stems.over.packet-switched,.vari |
| 29f00 | 61 62 6c 65 2d 6c 61 74 65 6e 63 79 20 64 61 74 61 20 6e 65 74 77 6f 72 6b 73 2e 20 49 6e 20 6f | able-latency.data.networks..In.o |
| 29f20 | 70 65 72 61 74 69 6f 6e 20 73 69 6e 63 65 20 62 65 66 6f 72 65 20 31 39 38 35 2c 20 4e 54 50 20 | peration.since.before.1985,.NTP. |
| 29f40 | 69 73 20 6f 6e 65 20 6f 66 20 74 68 65 20 6f 6c 64 65 73 74 20 49 6e 74 65 72 6e 65 74 20 70 72 | is.one.of.the.oldest.Internet.pr |
| 29f60 | 6f 74 6f 63 6f 6c 73 20 69 6e 20 63 75 72 72 65 6e 74 20 75 73 65 2e 00 3a 61 62 62 72 3a 60 4f | otocols.in.current.use..:abbr:`O |
| 29f80 | 53 50 46 20 28 4f 70 65 6e 20 53 68 6f 72 74 65 73 74 20 50 61 74 68 20 46 69 72 73 74 29 60 20 | SPF.(Open.Shortest.Path.First)`. |
| 29fa0 | 69 73 20 61 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 20 66 6f 72 20 49 6e 74 65 72 6e | is.a.routing.protocol.for.Intern |
| 29fc0 | 65 74 20 50 72 6f 74 6f 63 6f 6c 20 28 49 50 29 20 6e 65 74 77 6f 72 6b 73 2e 20 49 74 20 75 73 | et.Protocol.(IP).networks..It.us |
| 29fe0 | 65 73 20 61 20 6c 69 6e 6b 20 73 74 61 74 65 20 72 6f 75 74 69 6e 67 20 28 4c 53 52 29 20 61 6c | es.a.link.state.routing.(LSR).al |
| 2a000 | 67 6f 72 69 74 68 6d 20 61 6e 64 20 66 61 6c 6c 73 20 69 6e 74 6f 20 74 68 65 20 67 72 6f 75 70 | gorithm.and.falls.into.the.group |
| 2a020 | 20 6f 66 20 69 6e 74 65 72 69 6f 72 20 67 61 74 65 77 61 79 20 70 72 6f 74 6f 63 6f 6c 73 20 28 | .of.interior.gateway.protocols.( |
| 2a040 | 49 47 50 73 29 2c 20 6f 70 65 72 61 74 69 6e 67 20 77 69 74 68 69 6e 20 61 20 73 69 6e 67 6c 65 | IGPs),.operating.within.a.single |
| 2a060 | 20 61 75 74 6f 6e 6f 6d 6f 75 73 20 73 79 73 74 65 6d 20 28 41 53 29 2e 20 49 74 20 69 73 20 64 | .autonomous.system.(AS)..It.is.d |
| 2a080 | 65 66 69 6e 65 64 20 61 73 20 4f 53 50 46 20 56 65 72 73 69 6f 6e 20 32 20 69 6e 20 3a 72 66 63 | efined.as.OSPF.Version.2.in.:rfc |
| 2a0a0 | 3a 60 32 33 32 38 60 20 28 31 39 39 38 29 20 66 6f 72 20 49 50 76 34 2e 20 55 70 64 61 74 65 73 | :`2328`.(1998).for.IPv4..Updates |
| 2a0c0 | 20 66 6f 72 20 49 50 76 36 20 61 72 65 20 73 70 65 63 69 66 69 65 64 20 61 73 20 4f 53 50 46 20 | .for.IPv6.are.specified.as.OSPF. |
| 2a0e0 | 56 65 72 73 69 6f 6e 20 33 20 69 6e 20 3a 72 66 63 3a 60 35 33 34 30 60 20 28 32 30 30 38 29 2e | Version.3.in.:rfc:`5340`.(2008). |
| 2a100 | 20 4f 53 50 46 20 73 75 70 70 6f 72 74 73 20 74 68 65 20 3a 61 62 62 72 3a 60 43 49 44 52 20 28 | .OSPF.supports.the.:abbr:`CIDR.( |
| 2a120 | 43 6c 61 73 73 6c 65 73 73 20 49 6e 74 65 72 2d 44 6f 6d 61 69 6e 20 52 6f 75 74 69 6e 67 29 60 | Classless.Inter-Domain.Routing)` |
| 2a140 | 20 61 64 64 72 65 73 73 69 6e 67 20 6d 6f 64 65 6c 2e 00 3a 61 62 62 72 3a 60 50 49 4d 20 28 50 | .addressing.model..:abbr:`PIM.(P |
| 2a160 | 72 6f 74 6f 63 6f 6c 20 49 6e 64 65 70 65 6e 64 65 6e 74 20 4d 75 6c 74 69 63 61 73 74 29 60 20 | rotocol.Independent.Multicast)`. |
| 2a180 | 6d 75 73 74 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 69 6e 20 65 76 65 72 79 20 69 6e 74 65 | must.be.configured.in.every.inte |
| 2a1a0 | 72 66 61 63 65 20 6f 66 20 65 76 65 72 79 20 70 61 72 74 69 63 69 70 61 74 69 6e 67 20 72 6f 75 | rface.of.every.participating.rou |
| 2a1c0 | 74 65 72 2e 20 45 76 65 72 79 20 72 6f 75 74 65 72 20 6d 75 73 74 20 61 6c 73 6f 20 68 61 76 65 | ter..Every.router.must.also.have |
| 2a1e0 | 20 74 68 65 20 6c 6f 63 61 74 69 6f 6e 20 6f 66 20 74 68 65 20 52 65 6e 64 65 76 6f 75 7a 20 50 | .the.location.of.the.Rendevouz.P |
| 2a200 | 6f 69 6e 74 20 6d 61 6e 75 61 6c 6c 79 20 63 6f 6e 66 69 67 75 72 65 64 2e 20 54 68 65 6e 2c 20 | oint.manually.configured..Then,. |
| 2a220 | 75 6e 69 64 69 72 65 63 74 69 6f 6e 61 6c 20 73 68 61 72 65 64 20 74 72 65 65 73 20 72 6f 6f 74 | unidirectional.shared.trees.root |
| 2a240 | 65 64 20 61 74 20 74 68 65 20 52 65 6e 64 65 76 6f 75 7a 20 50 6f 69 6e 74 20 77 69 6c 6c 20 61 | ed.at.the.Rendevouz.Point.will.a |
| 2a260 | 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 62 65 20 62 75 69 6c 74 20 66 6f 72 20 6d 75 6c 74 69 63 | utomatically.be.built.for.multic |
| 2a280 | 61 73 74 20 64 69 73 74 72 69 62 75 74 69 6f 6e 2e 00 3a 61 62 62 72 3a 60 50 50 50 6f 45 20 28 | ast.distribution..:abbr:`PPPoE.( |
| 2a2a0 | 50 6f 69 6e 74 2d 74 6f 2d 50 6f 69 6e 74 20 50 72 6f 74 6f 63 6f 6c 20 6f 76 65 72 20 45 74 68 | Point-to-Point.Protocol.over.Eth |
| 2a2c0 | 65 72 6e 65 74 29 60 20 69 73 20 61 20 6e 65 74 77 6f 72 6b 20 70 72 6f 74 6f 63 6f 6c 20 66 6f | ernet)`.is.a.network.protocol.fo |
| 2a2e0 | 72 20 65 6e 63 61 70 73 75 6c 61 74 69 6e 67 20 50 50 50 20 66 72 61 6d 65 73 20 69 6e 73 69 64 | r.encapsulating.PPP.frames.insid |
| 2a300 | 65 20 45 74 68 65 72 6e 65 74 20 66 72 61 6d 65 73 2e 20 49 74 20 61 70 70 65 61 72 65 64 20 69 | e.Ethernet.frames..It.appeared.i |
| 2a320 | 6e 20 31 39 39 39 2c 20 69 6e 20 74 68 65 20 63 6f 6e 74 65 78 74 20 6f 66 20 74 68 65 20 62 6f | n.1999,.in.the.context.of.the.bo |
| 2a340 | 6f 6d 20 6f 66 20 44 53 4c 20 61 73 20 74 68 65 20 73 6f 6c 75 74 69 6f 6e 20 66 6f 72 20 74 75 | om.of.DSL.as.the.solution.for.tu |
| 2a360 | 6e 6e 65 6c 69 6e 67 20 70 61 63 6b 65 74 73 20 6f 76 65 72 20 74 68 65 20 44 53 4c 20 63 6f 6e | nneling.packets.over.the.DSL.con |
| 2a380 | 6e 65 63 74 69 6f 6e 20 74 6f 20 74 68 65 20 3a 61 62 62 72 3a 60 49 53 50 73 20 28 49 6e 74 65 | nection.to.the.:abbr:`ISPs.(Inte |
| 2a3a0 | 72 6e 65 74 20 53 65 72 76 69 63 65 20 50 72 6f 76 69 64 65 72 73 29 60 20 49 50 20 6e 65 74 77 | rnet.Service.Providers)`.IP.netw |
| 2a3c0 | 6f 72 6b 2c 20 61 6e 64 20 66 72 6f 6d 20 74 68 65 72 65 20 74 6f 20 74 68 65 20 72 65 73 74 20 | ork,.and.from.there.to.the.rest. |
| 2a3e0 | 6f 66 20 74 68 65 20 49 6e 74 65 72 6e 65 74 2e 20 41 20 32 30 30 35 20 6e 65 74 77 6f 72 6b 69 | of.the.Internet..A.2005.networki |
| 2a400 | 6e 67 20 62 6f 6f 6b 20 6e 6f 74 65 64 20 74 68 61 74 20 22 4d 6f 73 74 20 44 53 4c 20 70 72 6f | ng.book.noted.that."Most.DSL.pro |
| 2a420 | 76 69 64 65 72 73 20 75 73 65 20 50 50 50 6f 45 2c 20 77 68 69 63 68 20 70 72 6f 76 69 64 65 73 | viders.use.PPPoE,.which.provides |
| 2a440 | 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2c 20 65 6e 63 72 79 70 74 69 6f 6e 2c 20 61 6e 64 | .authentication,.encryption,.and |
| 2a460 | 20 63 6f 6d 70 72 65 73 73 69 6f 6e 2e 22 20 54 79 70 69 63 61 6c 20 75 73 65 20 6f 66 20 50 50 | .compression.".Typical.use.of.PP |
| 2a480 | 50 6f 45 20 69 6e 76 6f 6c 76 65 73 20 6c 65 76 65 72 61 67 69 6e 67 20 74 68 65 20 50 50 50 20 | PoE.involves.leveraging.the.PPP. |
| 2a4a0 | 66 61 63 69 6c 69 74 69 65 73 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6e 67 20 74 68 | facilities.for.authenticating.th |
| 2a4c0 | 65 20 75 73 65 72 20 77 69 74 68 20 61 20 75 73 65 72 6e 61 6d 65 20 61 6e 64 20 70 61 73 73 77 | e.user.with.a.username.and.passw |
| 2a4e0 | 6f 72 64 2c 20 70 72 65 64 6f 6d 69 6e 61 74 65 6c 79 20 76 69 61 20 74 68 65 20 50 41 50 20 70 | ord,.predominately.via.the.PAP.p |
| 2a500 | 72 6f 74 6f 63 6f 6c 20 61 6e 64 20 6c 65 73 73 20 6f 66 74 65 6e 20 76 69 61 20 43 48 41 50 2e | rotocol.and.less.often.via.CHAP. |
| 2a520 | 00 3a 61 62 62 72 3a 60 52 41 73 20 28 52 6f 75 74 65 72 20 61 64 76 65 72 74 69 73 65 6d 65 6e | .:abbr:`RAs.(Router.advertisemen |
| 2a540 | 74 73 29 60 20 61 72 65 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 34 38 36 31 | ts)`.are.described.in.:rfc:`4861 |
| 2a560 | 23 73 65 63 74 69 6f 6e 2d 34 2e 36 2e 32 60 2e 20 54 68 65 79 20 61 72 65 20 70 61 72 74 20 6f | #section-4.6.2`..They.are.part.o |
| 2a580 | 66 20 77 68 61 74 20 69 73 20 6b 6e 6f 77 6e 20 61 73 20 3a 61 62 62 72 3a 60 53 4c 41 41 43 20 | f.what.is.known.as.:abbr:`SLAAC. |
| 2a5a0 | 28 53 74 61 74 65 6c 65 73 73 20 41 64 64 72 65 73 73 20 41 75 74 6f 63 6f 6e 66 69 67 75 72 61 | (Stateless.Address.Autoconfigura |
| 2a5c0 | 74 69 6f 6e 29 60 2e 00 3a 61 62 62 72 3a 60 52 49 50 20 28 52 6f 75 74 69 6e 67 20 49 6e 66 6f | tion)`..:abbr:`RIP.(Routing.Info |
| 2a5e0 | 72 6d 61 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c 29 60 20 69 73 20 61 20 77 69 64 65 6c 79 20 64 | rmation.Protocol)`.is.a.widely.d |
| 2a600 | 65 70 6c 6f 79 65 64 20 69 6e 74 65 72 69 6f 72 20 67 61 74 65 77 61 79 20 70 72 6f 74 6f 63 6f | eployed.interior.gateway.protoco |
| 2a620 | 6c 2e 20 52 49 50 20 77 61 73 20 64 65 76 65 6c 6f 70 65 64 20 69 6e 20 74 68 65 20 31 39 37 30 | l..RIP.was.developed.in.the.1970 |
| 2a640 | 73 20 61 74 20 58 65 72 6f 78 20 4c 61 62 73 20 61 73 20 70 61 72 74 20 6f 66 20 74 68 65 20 58 | s.at.Xerox.Labs.as.part.of.the.X |
| 2a660 | 4e 53 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 2e 20 52 49 50 20 69 73 20 61 20 64 69 | NS.routing.protocol..RIP.is.a.di |
| 2a680 | 73 74 61 6e 63 65 2d 76 65 63 74 6f 72 20 70 72 6f 74 6f 63 6f 6c 20 61 6e 64 20 69 73 20 62 61 | stance-vector.protocol.and.is.ba |
| 2a6a0 | 73 65 64 20 6f 6e 20 74 68 65 20 42 65 6c 6c 6d 61 6e 2d 46 6f 72 64 20 61 6c 67 6f 72 69 74 68 | sed.on.the.Bellman-Ford.algorith |
| 2a6c0 | 6d 73 2e 20 41 73 20 61 20 64 69 73 74 61 6e 63 65 2d 76 65 63 74 6f 72 20 70 72 6f 74 6f 63 6f | ms..As.a.distance-vector.protoco |
| 2a6e0 | 6c 2c 20 52 49 50 20 72 6f 75 74 65 72 20 73 65 6e 64 20 75 70 64 61 74 65 73 20 74 6f 20 69 74 | l,.RIP.router.send.updates.to.it |
| 2a700 | 73 20 6e 65 69 67 68 62 6f 72 73 20 70 65 72 69 6f 64 69 63 61 6c 6c 79 2c 20 74 68 75 73 20 61 | s.neighbors.periodically,.thus.a |
| 2a720 | 6c 6c 6f 77 69 6e 67 20 74 68 65 20 63 6f 6e 76 65 72 67 65 6e 63 65 20 74 6f 20 61 20 6b 6e 6f | llowing.the.convergence.to.a.kno |
| 2a740 | 77 6e 20 74 6f 70 6f 6c 6f 67 79 2e 20 49 6e 20 65 61 63 68 20 75 70 64 61 74 65 2c 20 74 68 65 | wn.topology..In.each.update,.the |
| 2a760 | 20 64 69 73 74 61 6e 63 65 20 74 6f 20 61 6e 79 20 67 69 76 65 6e 20 6e 65 74 77 6f 72 6b 20 77 | .distance.to.any.given.network.w |
| 2a780 | 69 6c 6c 20 62 65 20 62 72 6f 61 64 63 61 73 74 20 74 6f 20 69 74 73 20 6e 65 69 67 68 62 6f 72 | ill.be.broadcast.to.its.neighbor |
| 2a7a0 | 69 6e 67 20 72 6f 75 74 65 72 2e 00 3a 61 62 62 72 3a 60 52 50 4b 49 20 28 52 65 73 6f 75 72 63 | ing.router..:abbr:`RPKI.(Resourc |
| 2a7c0 | 65 20 50 75 62 6c 69 63 20 4b 65 79 20 49 6e 66 72 61 73 74 72 75 63 74 75 72 65 29 60 20 69 73 | e.Public.Key.Infrastructure)`.is |
| 2a7e0 | 20 61 20 66 72 61 6d 65 77 6f 72 6b 20 3a 61 62 62 72 3a 60 50 4b 49 20 28 50 75 62 6c 69 63 20 | .a.framework.:abbr:`PKI.(Public. |
| 2a800 | 4b 65 79 20 49 6e 66 72 61 73 74 72 75 63 74 75 72 65 29 60 20 64 65 73 69 67 6e 65 64 20 74 6f | Key.Infrastructure)`.designed.to |
| 2a820 | 20 73 65 63 75 72 65 20 74 68 65 20 49 6e 74 65 72 6e 65 74 20 72 6f 75 74 69 6e 67 20 69 6e 66 | .secure.the.Internet.routing.inf |
| 2a840 | 72 61 73 74 72 75 63 74 75 72 65 2e 20 49 74 20 61 73 73 6f 63 69 61 74 65 73 20 42 47 50 20 72 | rastructure..It.associates.BGP.r |
| 2a860 | 6f 75 74 65 20 61 6e 6e 6f 75 6e 63 65 6d 65 6e 74 73 20 77 69 74 68 20 74 68 65 20 63 6f 72 72 | oute.announcements.with.the.corr |
| 2a880 | 65 63 74 20 6f 72 69 67 69 6e 61 74 69 6e 67 20 3a 61 62 62 72 3a 60 41 53 4e 20 28 41 75 74 6f | ect.originating.:abbr:`ASN.(Auto |
| 2a8a0 | 6e 6f 6d 75 73 20 53 79 73 74 65 6d 20 4e 75 6d 62 65 72 29 60 20 77 68 69 63 68 20 42 47 50 20 | nomus.System.Number)`.which.BGP. |
| 2a8c0 | 72 6f 75 74 65 72 73 20 63 61 6e 20 74 68 65 6e 20 75 73 65 20 74 6f 20 63 68 65 63 6b 20 65 61 | routers.can.then.use.to.check.ea |
| 2a8e0 | 63 68 20 72 6f 75 74 65 20 61 67 61 69 6e 73 74 20 74 68 65 20 63 6f 72 72 65 73 70 6f 6e 64 69 | ch.route.against.the.correspondi |
| 2a900 | 6e 67 20 3a 61 62 62 72 3a 60 52 4f 41 20 28 52 6f 75 74 65 20 4f 72 69 67 69 6e 20 41 75 74 68 | ng.:abbr:`ROA.(Route.Origin.Auth |
| 2a920 | 6f 72 69 73 61 74 69 6f 6e 29 60 20 66 6f 72 20 76 61 6c 69 64 69 74 79 2e 20 52 50 4b 49 20 69 | orisation)`.for.validity..RPKI.i |
| 2a940 | 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 36 34 38 30 60 2e 00 3a 61 62 62 | s.described.in.:rfc:`6480`..:abb |
| 2a960 | 72 3a 60 52 50 4b 49 20 28 52 65 73 6f 75 72 63 65 20 50 75 62 6c 69 63 20 4b 65 79 20 49 6e 66 | r:`RPKI.(Resource.Public.Key.Inf |
| 2a980 | 72 61 73 74 72 75 63 74 75 72 65 29 60 20 69 73 20 61 20 66 72 61 6d 65 77 6f 72 6b 20 64 65 73 | rastructure)`.is.a.framework.des |
| 2a9a0 | 69 67 6e 65 64 20 74 6f 20 73 65 63 75 72 65 20 74 68 65 20 49 6e 74 65 72 6e 65 74 20 72 6f 75 | igned.to.secure.the.Internet.rou |
| 2a9c0 | 74 69 6e 67 20 69 6e 66 72 61 73 74 72 75 63 74 75 72 65 2e 20 49 74 20 61 73 73 6f 63 69 61 74 | ting.infrastructure..It.associat |
| 2a9e0 | 65 73 20 42 47 50 20 72 6f 75 74 65 20 61 6e 6e 6f 75 6e 63 65 6d 65 6e 74 73 20 77 69 74 68 20 | es.BGP.route.announcements.with. |
| 2aa00 | 74 68 65 20 63 6f 72 72 65 63 74 20 6f 72 69 67 69 6e 61 74 69 6e 67 20 3a 61 62 62 72 3a 60 41 | the.correct.originating.:abbr:`A |
| 2aa20 | 53 4e 20 28 41 75 74 6f 6e 6f 6d 75 73 20 53 79 73 74 65 6d 20 4e 75 6d 62 65 72 29 60 20 77 68 | SN.(Autonomus.System.Number)`.wh |
| 2aa40 | 69 63 68 20 42 47 50 20 72 6f 75 74 65 72 73 20 63 61 6e 20 74 68 65 6e 20 75 73 65 20 74 6f 20 | ich.BGP.routers.can.then.use.to. |
| 2aa60 | 63 68 65 63 6b 20 65 61 63 68 20 72 6f 75 74 65 20 61 67 61 69 6e 73 74 20 74 68 65 20 63 6f 72 | check.each.route.against.the.cor |
| 2aa80 | 72 65 73 70 6f 6e 64 69 6e 67 20 3a 61 62 62 72 3a 60 52 4f 41 20 28 52 6f 75 74 65 20 4f 72 69 | responding.:abbr:`ROA.(Route.Ori |
| 2aaa0 | 67 69 6e 20 41 75 74 68 6f 72 69 73 61 74 69 6f 6e 29 60 20 66 6f 72 20 76 61 6c 69 64 69 74 79 | gin.Authorisation)`.for.validity |
| 2aac0 | 2e 20 52 50 4b 49 20 69 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 36 34 38 | ..RPKI.is.described.in.:rfc:`648 |
| 2aae0 | 30 60 2e 00 3a 61 62 62 72 3a 60 52 50 53 20 28 52 65 63 65 69 76 65 20 50 61 63 6b 65 74 20 53 | 0`..:abbr:`RPS.(Receive.Packet.S |
| 2ab00 | 74 65 65 72 69 6e 67 29 60 20 69 73 20 6c 6f 67 69 63 61 6c 6c 79 20 61 20 73 6f 66 74 77 61 72 | teering)`.is.logically.a.softwar |
| 2ab20 | 65 20 69 6d 70 6c 65 6d 65 6e 74 61 74 69 6f 6e 20 6f 66 20 3a 61 62 62 72 3a 60 52 53 53 20 28 | e.implementation.of.:abbr:`RSS.( |
| 2ab40 | 52 65 63 65 69 76 65 20 53 69 64 65 20 53 63 61 6c 69 6e 67 29 60 2e 20 42 65 69 6e 67 20 69 6e | Receive.Side.Scaling)`..Being.in |
| 2ab60 | 20 73 6f 66 74 77 61 72 65 2c 20 69 74 20 69 73 20 6e 65 63 65 73 73 61 72 69 6c 79 20 63 61 6c | .software,.it.is.necessarily.cal |
| 2ab80 | 6c 65 64 20 6c 61 74 65 72 20 69 6e 20 74 68 65 20 64 61 74 61 70 61 74 68 2e 20 57 68 65 72 65 | led.later.in.the.datapath..Where |
| 2aba0 | 61 73 20 52 53 53 20 73 65 6c 65 63 74 73 20 74 68 65 20 71 75 65 75 65 20 61 6e 64 20 68 65 6e | as.RSS.selects.the.queue.and.hen |
| 2abc0 | 63 65 20 43 50 55 20 74 68 61 74 20 77 69 6c 6c 20 72 75 6e 20 74 68 65 20 68 61 72 64 77 61 72 | ce.CPU.that.will.run.the.hardwar |
| 2abe0 | 65 20 69 6e 74 65 72 72 75 70 74 20 68 61 6e 64 6c 65 72 2c 20 52 50 53 20 73 65 6c 65 63 74 73 | e.interrupt.handler,.RPS.selects |
| 2ac00 | 20 74 68 65 20 43 50 55 20 74 6f 20 70 65 72 66 6f 72 6d 20 70 72 6f 74 6f 63 6f 6c 20 70 72 6f | .the.CPU.to.perform.protocol.pro |
| 2ac20 | 63 65 73 73 69 6e 67 20 61 62 6f 76 65 20 74 68 65 20 69 6e 74 65 72 72 75 70 74 20 68 61 6e 64 | cessing.above.the.interrupt.hand |
| 2ac40 | 6c 65 72 2e 20 54 68 69 73 20 69 73 20 61 63 63 6f 6d 70 6c 69 73 68 65 64 20 62 79 20 70 6c 61 | ler..This.is.accomplished.by.pla |
| 2ac60 | 63 69 6e 67 20 74 68 65 20 70 61 63 6b 65 74 20 6f 6e 20 74 68 65 20 64 65 73 69 72 65 64 20 43 | cing.the.packet.on.the.desired.C |
| 2ac80 | 50 55 27 73 20 62 61 63 6b 6c 6f 67 20 71 75 65 75 65 20 61 6e 64 20 77 61 6b 69 6e 67 20 75 70 | PU's.backlog.queue.and.waking.up |
| 2aca0 | 20 74 68 65 20 43 50 55 20 66 6f 72 20 70 72 6f 63 65 73 73 69 6e 67 2e 20 52 50 53 20 68 61 73 | .the.CPU.for.processing..RPS.has |
| 2acc0 | 20 73 6f 6d 65 20 61 64 76 61 6e 74 61 67 65 73 20 6f 76 65 72 20 52 53 53 3a 00 3a 61 62 62 72 | .some.advantages.over.RSS:.:abbr |
| 2ace0 | 3a 60 53 4c 41 41 43 20 28 53 74 61 74 65 6c 65 73 73 20 41 64 64 72 65 73 73 20 41 75 74 6f 63 | :`SLAAC.(Stateless.Address.Autoc |
| 2ad00 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 29 60 20 3a 72 66 63 3a 60 34 38 36 32 60 2e 20 49 50 76 36 | onfiguration)`.:rfc:`4862`..IPv6 |
| 2ad20 | 20 68 6f 73 74 73 20 63 61 6e 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 6d 73 65 6c 76 65 73 20 | .hosts.can.configure.themselves. |
| 2ad40 | 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 77 68 65 6e 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 | automatically.when.connected.to. |
| 2ad60 | 61 6e 20 49 50 76 36 20 6e 65 74 77 6f 72 6b 20 75 73 69 6e 67 20 74 68 65 20 4e 65 69 67 68 62 | an.IPv6.network.using.the.Neighb |
| 2ad80 | 6f 72 20 44 69 73 63 6f 76 65 72 79 20 50 72 6f 74 6f 63 6f 6c 20 76 69 61 20 3a 61 62 62 72 3a | or.Discovery.Protocol.via.:abbr: |
| 2ada0 | 60 49 43 4d 50 76 36 20 28 49 6e 74 65 72 6e 65 74 20 43 6f 6e 74 72 6f 6c 20 4d 65 73 73 61 67 | `ICMPv6.(Internet.Control.Messag |
| 2adc0 | 65 20 50 72 6f 74 6f 63 6f 6c 20 76 65 72 73 69 6f 6e 20 36 29 60 20 72 6f 75 74 65 72 20 64 69 | e.Protocol.version.6)`.router.di |
| 2ade0 | 73 63 6f 76 65 72 79 20 6d 65 73 73 61 67 65 73 2e 20 57 68 65 6e 20 66 69 72 73 74 20 63 6f 6e | scovery.messages..When.first.con |
| 2ae00 | 6e 65 63 74 65 64 20 74 6f 20 61 20 6e 65 74 77 6f 72 6b 2c 20 61 20 68 6f 73 74 20 73 65 6e 64 | nected.to.a.network,.a.host.send |
| 2ae20 | 73 20 61 20 6c 69 6e 6b 2d 6c 6f 63 61 6c 20 72 6f 75 74 65 72 20 73 6f 6c 69 63 69 74 61 74 69 | s.a.link-local.router.solicitati |
| 2ae40 | 6f 6e 20 6d 75 6c 74 69 63 61 73 74 20 72 65 71 75 65 73 74 20 66 6f 72 20 69 74 73 20 63 6f 6e | on.multicast.request.for.its.con |
| 2ae60 | 66 69 67 75 72 61 74 69 6f 6e 20 70 61 72 61 6d 65 74 65 72 73 3b 20 72 6f 75 74 65 72 73 20 72 | figuration.parameters;.routers.r |
| 2ae80 | 65 73 70 6f 6e 64 20 74 6f 20 73 75 63 68 20 61 20 72 65 71 75 65 73 74 20 77 69 74 68 20 61 20 | espond.to.such.a.request.with.a. |
| 2aea0 | 72 6f 75 74 65 72 20 61 64 76 65 72 74 69 73 65 6d 65 6e 74 20 70 61 63 6b 65 74 20 74 68 61 74 | router.advertisement.packet.that |
| 2aec0 | 20 63 6f 6e 74 61 69 6e 73 20 49 6e 74 65 72 6e 65 74 20 4c 61 79 65 72 20 63 6f 6e 66 69 67 75 | .contains.Internet.Layer.configu |
| 2aee0 | 72 61 74 69 6f 6e 20 70 61 72 61 6d 65 74 65 72 73 2e 00 3a 61 62 62 72 3a 60 53 4e 41 54 20 28 | ration.parameters..:abbr:`SNAT.( |
| 2af00 | 53 6f 75 72 63 65 20 4e 65 74 77 6f 72 6b 20 41 64 64 72 65 73 73 20 54 72 61 6e 73 6c 61 74 69 | Source.Network.Address.Translati |
| 2af20 | 6f 6e 29 60 20 69 73 20 74 68 65 20 6d 6f 73 74 20 63 6f 6d 6d 6f 6e 20 66 6f 72 6d 20 6f 66 20 | on)`.is.the.most.common.form.of. |
| 2af40 | 3a 61 62 62 72 3a 60 4e 41 54 20 28 4e 65 74 77 6f 72 6b 20 41 64 64 72 65 73 73 20 54 72 61 6e | :abbr:`NAT.(Network.Address.Tran |
| 2af60 | 73 6c 61 74 69 6f 6e 29 60 20 61 6e 64 20 69 73 20 74 79 70 69 63 61 6c 6c 79 20 72 65 66 65 72 | slation)`.and.is.typically.refer |
| 2af80 | 72 65 64 20 74 6f 20 73 69 6d 70 6c 79 20 61 73 20 4e 41 54 2e 20 54 6f 20 62 65 20 6d 6f 72 65 | red.to.simply.as.NAT..To.be.more |
| 2afa0 | 20 63 6f 72 72 65 63 74 2c 20 77 68 61 74 20 6d 6f 73 74 20 70 65 6f 70 6c 65 20 72 65 66 65 72 | .correct,.what.most.people.refer |
| 2afc0 | 20 74 6f 20 61 73 20 3a 61 62 62 72 3a 60 4e 41 54 20 28 4e 65 74 77 6f 72 6b 20 41 64 64 72 65 | .to.as.:abbr:`NAT.(Network.Addre |
| 2afe0 | 73 73 20 54 72 61 6e 73 6c 61 74 69 6f 6e 29 60 20 69 73 20 61 63 74 75 61 6c 6c 79 20 74 68 65 | ss.Translation)`.is.actually.the |
| 2b000 | 20 70 72 6f 63 65 73 73 20 6f 66 20 3a 61 62 62 72 3a 60 50 41 54 20 28 50 6f 72 74 20 41 64 64 | .process.of.:abbr:`PAT.(Port.Add |
| 2b020 | 72 65 73 73 20 54 72 61 6e 73 6c 61 74 69 6f 6e 29 60 2c 20 6f 72 20 4e 41 54 20 6f 76 65 72 6c | ress.Translation)`,.or.NAT.overl |
| 2b040 | 6f 61 64 2e 20 53 4e 41 54 20 69 73 20 74 79 70 69 63 61 6c 6c 79 20 75 73 65 64 20 62 79 20 69 | oad..SNAT.is.typically.used.by.i |
| 2b060 | 6e 74 65 72 6e 61 6c 20 75 73 65 72 73 2f 70 72 69 76 61 74 65 20 68 6f 73 74 73 20 74 6f 20 61 | nternal.users/private.hosts.to.a |
| 2b080 | 63 63 65 73 73 20 74 68 65 20 49 6e 74 65 72 6e 65 74 20 2d 20 74 68 65 20 73 6f 75 72 63 65 20 | ccess.the.Internet.-.the.source. |
| 2b0a0 | 61 64 64 72 65 73 73 20 69 73 20 74 72 61 6e 73 6c 61 74 65 64 20 61 6e 64 20 74 68 75 73 20 6b | address.is.translated.and.thus.k |
| 2b0c0 | 65 70 74 20 70 72 69 76 61 74 65 2e 00 3a 61 62 62 72 3a 60 53 4e 41 54 36 34 20 28 49 50 76 36 | ept.private..:abbr:`SNAT64.(IPv6 |
| 2b0e0 | 2d 74 6f 2d 49 50 76 34 20 53 6f 75 72 63 65 20 41 64 64 72 65 73 73 20 54 72 61 6e 73 6c 61 74 | -to-IPv4.Source.Address.Translat |
| 2b100 | 69 6f 6e 29 60 20 69 73 20 61 20 73 74 61 74 65 66 75 6c 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 | ion)`.is.a.stateful.translation. |
| 2b120 | 6d 65 63 68 61 6e 69 73 6d 20 74 68 61 74 20 74 72 61 6e 73 6c 61 74 65 73 20 49 50 76 36 20 61 | mechanism.that.translates.IPv6.a |
| 2b140 | 64 64 72 65 73 73 65 73 20 74 6f 20 49 50 76 34 20 61 64 64 72 65 73 73 65 73 2e 00 3a 61 62 62 | ddresses.to.IPv4.addresses..:abb |
| 2b160 | 72 3a 60 53 4e 4d 50 20 28 53 69 6d 70 6c 65 20 4e 65 74 77 6f 72 6b 20 4d 61 6e 61 67 65 6d 65 | r:`SNMP.(Simple.Network.Manageme |
| 2b180 | 6e 74 20 50 72 6f 74 6f 63 6f 6c 29 60 20 69 73 20 61 6e 20 49 6e 74 65 72 6e 65 74 20 53 74 61 | nt.Protocol)`.is.an.Internet.Sta |
| 2b1a0 | 6e 64 61 72 64 20 70 72 6f 74 6f 63 6f 6c 20 66 6f 72 20 63 6f 6c 6c 65 63 74 69 6e 67 20 61 6e | ndard.protocol.for.collecting.an |
| 2b1c0 | 64 20 6f 72 67 61 6e 69 7a 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 6d | d.organizing.information.about.m |
| 2b1e0 | 61 6e 61 67 65 64 20 64 65 76 69 63 65 73 20 6f 6e 20 49 50 20 6e 65 74 77 6f 72 6b 73 20 61 6e | anaged.devices.on.IP.networks.an |
| 2b200 | 64 20 66 6f 72 20 6d 6f 64 69 66 79 69 6e 67 20 74 68 61 74 20 69 6e 66 6f 72 6d 61 74 69 6f 6e | d.for.modifying.that.information |
| 2b220 | 20 74 6f 20 63 68 61 6e 67 65 20 64 65 76 69 63 65 20 62 65 68 61 76 69 6f 72 2e 20 44 65 76 69 | .to.change.device.behavior..Devi |
| 2b240 | 63 65 73 20 74 68 61 74 20 74 79 70 69 63 61 6c 6c 79 20 73 75 70 70 6f 72 74 20 53 4e 4d 50 20 | ces.that.typically.support.SNMP. |
| 2b260 | 69 6e 63 6c 75 64 65 20 63 61 62 6c 65 20 6d 6f 64 65 6d 73 2c 20 72 6f 75 74 65 72 73 2c 20 73 | include.cable.modems,.routers,.s |
| 2b280 | 77 69 74 63 68 65 73 2c 20 73 65 72 76 65 72 73 2c 20 77 6f 72 6b 73 74 61 74 69 6f 6e 73 2c 20 | witches,.servers,.workstations,. |
| 2b2a0 | 70 72 69 6e 74 65 72 73 2c 20 61 6e 64 20 6d 6f 72 65 2e 00 3a 61 62 62 72 3a 60 53 4e 50 54 76 | printers,.and.more..:abbr:`SNPTv |
| 2b2c0 | 36 20 28 53 6f 75 72 63 65 20 49 50 76 36 2d 74 6f 2d 49 50 76 36 20 4e 65 74 77 6f 72 6b 20 50 | 6.(Source.IPv6-to-IPv6.Network.P |
| 2b2e0 | 72 65 66 69 78 20 54 72 61 6e 73 6c 61 74 69 6f 6e 29 60 20 54 68 65 20 63 6f 6e 76 65 72 73 69 | refix.Translation)`.The.conversi |
| 2b300 | 6f 6e 20 66 75 6e 63 74 69 6f 6e 20 69 73 20 6d 61 69 6e 6c 79 20 75 73 65 64 20 69 6e 20 74 68 | on.function.is.mainly.used.in.th |
| 2b320 | 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 63 65 6e 61 72 69 6f 73 3a 00 3a 61 62 62 72 3a 60 53 53 | e.following.scenarios:.:abbr:`SS |
| 2b340 | 48 20 28 53 65 63 75 72 65 20 53 68 65 6c 6c 29 60 20 69 73 20 61 20 63 72 79 70 74 6f 67 72 61 | H.(Secure.Shell)`.is.a.cryptogra |
| 2b360 | 70 68 69 63 20 6e 65 74 77 6f 72 6b 20 70 72 6f 74 6f 63 6f 6c 20 66 6f 72 20 6f 70 65 72 61 74 | phic.network.protocol.for.operat |
| 2b380 | 69 6e 67 20 6e 65 74 77 6f 72 6b 20 73 65 72 76 69 63 65 73 20 73 65 63 75 72 65 6c 79 20 6f 76 | ing.network.services.securely.ov |
| 2b3a0 | 65 72 20 61 6e 20 75 6e 73 65 63 75 72 65 64 20 6e 65 74 77 6f 72 6b 2e 20 54 68 65 20 73 74 61 | er.an.unsecured.network..The.sta |
| 2b3c0 | 6e 64 61 72 64 20 54 43 50 20 70 6f 72 74 20 66 6f 72 20 53 53 48 20 69 73 20 32 32 2e 20 54 68 | ndard.TCP.port.for.SSH.is.22..Th |
| 2b3e0 | 65 20 62 65 73 74 20 6b 6e 6f 77 6e 20 65 78 61 6d 70 6c 65 20 61 70 70 6c 69 63 61 74 69 6f 6e | e.best.known.example.application |
| 2b400 | 20 69 73 20 66 6f 72 20 72 65 6d 6f 74 65 20 6c 6f 67 69 6e 20 74 6f 20 63 6f 6d 70 75 74 65 72 | .is.for.remote.login.to.computer |
| 2b420 | 20 73 79 73 74 65 6d 73 20 62 79 20 75 73 65 72 73 2e 00 3a 61 62 62 72 3a 60 53 53 54 50 20 28 | .systems.by.users..:abbr:`SSTP.( |
| 2b440 | 53 65 63 75 72 65 20 53 6f 63 6b 65 74 20 54 75 6e 6e 65 6c 69 6e 67 20 50 72 6f 74 6f 63 6f 6c | Secure.Socket.Tunneling.Protocol |
| 2b460 | 29 60 20 69 73 20 61 20 66 6f 72 6d 20 6f 66 20 3a 61 62 62 72 3a 60 56 50 4e 20 28 56 69 72 74 | )`.is.a.form.of.:abbr:`VPN.(Virt |
| 2b480 | 75 61 6c 20 50 72 69 76 61 74 65 20 4e 65 74 77 6f 72 6b 29 60 20 74 75 6e 6e 65 6c 20 74 68 61 | ual.Private.Network)`.tunnel.tha |
| 2b4a0 | 74 20 70 72 6f 76 69 64 65 73 20 61 20 6d 65 63 68 61 6e 69 73 6d 20 74 6f 20 74 72 61 6e 73 70 | t.provides.a.mechanism.to.transp |
| 2b4c0 | 6f 72 74 20 50 50 50 20 74 72 61 66 66 69 63 20 74 68 72 6f 75 67 68 20 61 6e 20 53 53 4c 2f 54 | ort.PPP.traffic.through.an.SSL/T |
| 2b4e0 | 4c 53 20 63 68 61 6e 6e 65 6c 2e 20 53 53 4c 2f 54 4c 53 20 70 72 6f 76 69 64 65 73 20 74 72 61 | LS.channel..SSL/TLS.provides.tra |
| 2b500 | 6e 73 70 6f 72 74 2d 6c 65 76 65 6c 20 73 65 63 75 72 69 74 79 20 77 69 74 68 20 6b 65 79 20 6e | nsport-level.security.with.key.n |
| 2b520 | 65 67 6f 74 69 61 74 69 6f 6e 2c 20 65 6e 63 72 79 70 74 69 6f 6e 20 61 6e 64 20 74 72 61 66 66 | egotiation,.encryption.and.traff |
| 2b540 | 69 63 20 69 6e 74 65 67 72 69 74 79 20 63 68 65 63 6b 69 6e 67 2e 20 54 68 65 20 75 73 65 20 6f | ic.integrity.checking..The.use.o |
| 2b560 | 66 20 53 53 4c 2f 54 4c 53 20 6f 76 65 72 20 54 43 50 20 70 6f 72 74 20 34 34 33 20 61 6c 6c 6f | f.SSL/TLS.over.TCP.port.443.allo |
| 2b580 | 77 73 20 53 53 54 50 20 74 6f 20 70 61 73 73 20 74 68 72 6f 75 67 68 20 76 69 72 74 75 61 6c 6c | ws.SSTP.to.pass.through.virtuall |
| 2b5a0 | 79 20 61 6c 6c 20 66 69 72 65 77 61 6c 6c 73 20 61 6e 64 20 70 72 6f 78 79 20 73 65 72 76 65 72 | y.all.firewalls.and.proxy.server |
| 2b5c0 | 73 20 65 78 63 65 70 74 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 65 64 20 77 65 62 20 70 | s.except.for.authenticated.web.p |
| 2b5e0 | 72 6f 78 69 65 73 2e 00 3a 61 62 62 72 3a 60 53 53 54 50 20 28 53 65 63 75 72 65 20 53 6f 63 6b | roxies..:abbr:`SSTP.(Secure.Sock |
| 2b600 | 65 74 20 54 75 6e 6e 65 6c 69 6e 67 20 50 72 6f 74 6f 63 6f 6c 29 60 20 69 73 20 61 20 66 6f 72 | et.Tunneling.Protocol)`.is.a.for |
| 2b620 | 6d 20 6f 66 20 3a 61 62 62 72 3a 60 56 54 50 20 28 56 69 72 74 75 61 6c 20 50 72 69 76 61 74 65 | m.of.:abbr:`VTP.(Virtual.Private |
| 2b640 | 20 4e 65 74 77 6f 72 6b 29 60 20 74 75 6e 6e 65 6c 20 74 68 61 74 20 70 72 6f 76 69 64 65 73 20 | .Network)`.tunnel.that.provides. |
| 2b660 | 61 20 6d 65 63 68 61 6e 69 73 6d 20 74 6f 20 74 72 61 6e 73 70 6f 72 74 20 50 50 50 20 74 72 61 | a.mechanism.to.transport.PPP.tra |
| 2b680 | 66 66 69 63 20 74 68 72 6f 75 67 68 20 61 6e 20 53 53 4c 2f 54 4c 53 20 63 68 61 6e 6e 65 6c 2e | ffic.through.an.SSL/TLS.channel. |
| 2b6a0 | 20 53 53 4c 2f 54 4c 53 20 70 72 6f 76 69 64 65 73 20 74 72 61 6e 73 70 6f 72 74 2d 6c 65 76 65 | .SSL/TLS.provides.transport-leve |
| 2b6c0 | 6c 20 73 65 63 75 72 69 74 79 20 77 69 74 68 20 6b 65 79 20 6e 65 67 6f 74 69 61 74 69 6f 6e 2c | l.security.with.key.negotiation, |
| 2b6e0 | 20 65 6e 63 72 79 70 74 69 6f 6e 20 61 6e 64 20 74 72 61 66 66 69 63 20 69 6e 74 65 67 72 69 74 | .encryption.and.traffic.integrit |
| 2b700 | 79 20 63 68 65 63 6b 69 6e 67 2e 20 54 68 65 20 75 73 65 20 6f 66 20 53 53 4c 2f 54 4c 53 20 6f | y.checking..The.use.of.SSL/TLS.o |
| 2b720 | 76 65 72 20 54 43 50 20 70 6f 72 74 20 34 34 33 20 28 62 79 20 64 65 66 61 75 6c 74 2c 20 70 6f | ver.TCP.port.443.(by.default,.po |
| 2b740 | 72 74 20 63 61 6e 20 62 65 20 63 68 61 6e 67 65 64 29 20 61 6c 6c 6f 77 73 20 53 53 54 50 20 74 | rt.can.be.changed).allows.SSTP.t |
| 2b760 | 6f 20 70 61 73 73 20 74 68 72 6f 75 67 68 20 76 69 72 74 75 61 6c 6c 79 20 61 6c 6c 20 66 69 72 | o.pass.through.virtually.all.fir |
| 2b780 | 65 77 61 6c 6c 73 20 61 6e 64 20 70 72 6f 78 79 20 73 65 72 76 65 72 73 20 65 78 63 65 70 74 20 | ewalls.and.proxy.servers.except. |
| 2b7a0 | 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 65 64 20 77 65 62 20 70 72 6f 78 69 65 73 2e 00 3a | for.authenticated.web.proxies..: |
| 2b7c0 | 61 62 62 72 3a 60 53 54 50 20 28 53 70 61 6e 6e 69 6e 67 20 54 72 65 65 20 50 72 6f 74 6f 63 6f | abbr:`STP.(Spanning.Tree.Protoco |
| 2b7e0 | 6c 29 60 20 69 73 20 61 20 6e 65 74 77 6f 72 6b 20 70 72 6f 74 6f 63 6f 6c 20 74 68 61 74 20 62 | l)`.is.a.network.protocol.that.b |
| 2b800 | 75 69 6c 64 73 20 61 20 6c 6f 6f 70 2d 66 72 65 65 20 6c 6f 67 69 63 61 6c 20 74 6f 70 6f 6c 6f | uilds.a.loop-free.logical.topolo |
| 2b820 | 67 79 20 66 6f 72 20 45 74 68 65 72 6e 65 74 20 6e 65 74 77 6f 72 6b 73 2e 20 54 68 65 20 62 61 | gy.for.Ethernet.networks..The.ba |
| 2b840 | 73 69 63 20 66 75 6e 63 74 69 6f 6e 20 6f 66 20 53 54 50 20 69 73 20 74 6f 20 70 72 65 76 65 6e | sic.function.of.STP.is.to.preven |
| 2b860 | 74 20 62 72 69 64 67 65 20 6c 6f 6f 70 73 20 61 6e 64 20 74 68 65 20 62 72 6f 61 64 63 61 73 74 | t.bridge.loops.and.the.broadcast |
| 2b880 | 20 72 61 64 69 61 74 69 6f 6e 20 74 68 61 74 20 72 65 73 75 6c 74 73 20 66 72 6f 6d 20 74 68 65 | .radiation.that.results.from.the |
| 2b8a0 | 6d 2e 20 53 70 61 6e 6e 69 6e 67 20 74 72 65 65 20 61 6c 73 6f 20 61 6c 6c 6f 77 73 20 61 20 6e | m..Spanning.tree.also.allows.a.n |
| 2b8c0 | 65 74 77 6f 72 6b 20 64 65 73 69 67 6e 20 74 6f 20 69 6e 63 6c 75 64 65 20 62 61 63 6b 75 70 20 | etwork.design.to.include.backup. |
| 2b8e0 | 6c 69 6e 6b 73 20 70 72 6f 76 69 64 69 6e 67 20 66 61 75 6c 74 20 74 6f 6c 65 72 61 6e 63 65 20 | links.providing.fault.tolerance. |
| 2b900 | 69 66 20 61 6e 20 61 63 74 69 76 65 20 6c 69 6e 6b 20 66 61 69 6c 73 2e 00 3a 61 62 62 72 3a 60 | if.an.active.link.fails..:abbr:` |
| 2b920 | 54 46 54 50 20 28 54 72 69 76 69 61 6c 20 46 69 6c 65 20 54 72 61 6e 73 66 65 72 20 50 72 6f 74 | TFTP.(Trivial.File.Transfer.Prot |
| 2b940 | 6f 63 6f 6c 29 60 20 69 73 20 61 20 73 69 6d 70 6c 65 2c 20 6c 6f 63 6b 73 74 65 70 20 66 69 6c | ocol)`.is.a.simple,.lockstep.fil |
| 2b960 | 65 20 74 72 61 6e 73 66 65 72 20 70 72 6f 74 6f 63 6f 6c 20 77 68 69 63 68 20 61 6c 6c 6f 77 73 | e.transfer.protocol.which.allows |
| 2b980 | 20 61 20 63 6c 69 65 6e 74 20 74 6f 20 67 65 74 20 61 20 66 69 6c 65 20 66 72 6f 6d 20 6f 72 20 | .a.client.to.get.a.file.from.or. |
| 2b9a0 | 70 75 74 20 61 20 66 69 6c 65 20 6f 6e 74 6f 20 61 20 72 65 6d 6f 74 65 20 68 6f 73 74 2e 20 4f | put.a.file.onto.a.remote.host..O |
| 2b9c0 | 6e 65 20 6f 66 20 69 74 73 20 70 72 69 6d 61 72 79 20 75 73 65 73 20 69 73 20 69 6e 20 74 68 65 | ne.of.its.primary.uses.is.in.the |
| 2b9e0 | 20 65 61 72 6c 79 20 73 74 61 67 65 73 20 6f 66 20 6e 6f 64 65 73 20 62 6f 6f 74 69 6e 67 20 66 | .early.stages.of.nodes.booting.f |
| 2ba00 | 72 6f 6d 20 61 20 6c 6f 63 61 6c 20 61 72 65 61 20 6e 65 74 77 6f 72 6b 2e 20 54 46 54 50 20 68 | rom.a.local.area.network..TFTP.h |
| 2ba20 | 61 73 20 62 65 65 6e 20 75 73 65 64 20 66 6f 72 20 74 68 69 73 20 61 70 70 6c 69 63 61 74 69 6f | as.been.used.for.this.applicatio |
| 2ba40 | 6e 20 62 65 63 61 75 73 65 20 69 74 20 69 73 20 76 65 72 79 20 73 69 6d 70 6c 65 20 74 6f 20 69 | n.because.it.is.very.simple.to.i |
| 2ba60 | 6d 70 6c 65 6d 65 6e 74 2e 00 3a 61 62 62 72 3a 60 56 4e 49 20 28 56 69 72 74 75 61 6c 20 4e 65 | mplement..:abbr:`VNI.(Virtual.Ne |
| 2ba80 | 74 77 6f 72 6b 20 49 64 65 6e 74 69 66 69 65 72 29 60 20 69 73 20 61 6e 20 69 64 65 6e 74 69 66 | twork.Identifier)`.is.an.identif |
| 2baa0 | 69 65 72 20 66 6f 72 20 61 20 75 6e 69 71 75 65 20 65 6c 65 6d 65 6e 74 20 6f 66 20 61 20 76 69 | ier.for.a.unique.element.of.a.vi |
| 2bac0 | 72 74 75 61 6c 20 6e 65 74 77 6f 72 6b 2e 20 20 49 6e 20 6d 61 6e 79 20 73 69 74 75 61 74 69 6f | rtual.network...In.many.situatio |
| 2bae0 | 6e 73 20 74 68 69 73 20 6d 61 79 20 72 65 70 72 65 73 65 6e 74 20 61 6e 20 4c 32 20 73 65 67 6d | ns.this.may.represent.an.L2.segm |
| 2bb00 | 65 6e 74 2c 20 68 6f 77 65 76 65 72 2c 20 74 68 65 20 63 6f 6e 74 72 6f 6c 20 70 6c 61 6e 65 20 | ent,.however,.the.control.plane. |
| 2bb20 | 64 65 66 69 6e 65 73 20 74 68 65 20 66 6f 72 77 61 72 64 69 6e 67 20 73 65 6d 61 6e 74 69 63 73 | defines.the.forwarding.semantics |
| 2bb40 | 20 6f 66 20 64 65 63 61 70 73 75 6c 61 74 65 64 20 70 61 63 6b 65 74 73 2e 20 54 68 65 20 56 4e | .of.decapsulated.packets..The.VN |
| 2bb60 | 49 20 4d 41 59 20 62 65 20 75 73 65 64 20 61 73 20 70 61 72 74 20 6f 66 20 45 43 4d 50 20 66 6f | I.MAY.be.used.as.part.of.ECMP.fo |
| 2bb80 | 72 77 61 72 64 69 6e 67 20 64 65 63 69 73 69 6f 6e 73 20 6f 72 20 4d 41 59 20 62 65 20 75 73 65 | rwarding.decisions.or.MAY.be.use |
| 2bba0 | 64 20 61 73 20 61 20 6d 65 63 68 61 6e 69 73 6d 20 74 6f 20 64 69 73 74 69 6e 67 75 69 73 68 20 | d.as.a.mechanism.to.distinguish. |
| 2bbc0 | 62 65 74 77 65 65 6e 20 6f 76 65 72 6c 61 70 70 69 6e 67 20 61 64 64 72 65 73 73 20 73 70 61 63 | between.overlapping.address.spac |
| 2bbe0 | 65 73 20 63 6f 6e 74 61 69 6e 65 64 20 69 6e 20 74 68 65 20 65 6e 63 61 70 73 75 6c 61 74 65 64 | es.contained.in.the.encapsulated |
| 2bc00 | 20 70 61 63 6b 65 74 20 77 68 65 6e 20 6c 6f 61 64 20 62 61 6c 61 6e 63 69 6e 67 20 61 63 72 6f | .packet.when.load.balancing.acro |
| 2bc20 | 73 73 20 43 50 55 73 2e 00 3a 61 62 62 72 3a 60 56 52 46 20 28 56 69 72 74 75 61 6c 20 52 6f 75 | ss.CPUs..:abbr:`VRF.(Virtual.Rou |
| 2bc40 | 74 69 6e 67 20 61 6e 64 20 46 6f 72 77 61 72 64 69 6e 67 29 60 20 64 65 76 69 63 65 73 20 63 6f | ting.and.Forwarding)`.devices.co |
| 2bc60 | 6d 62 69 6e 65 64 20 77 69 74 68 20 69 70 20 72 75 6c 65 73 20 70 72 6f 76 69 64 65 73 20 74 68 | mbined.with.ip.rules.provides.th |
| 2bc80 | 65 20 61 62 69 6c 69 74 79 20 74 6f 20 63 72 65 61 74 65 20 76 69 72 74 75 61 6c 20 72 6f 75 74 | e.ability.to.create.virtual.rout |
| 2bca0 | 69 6e 67 20 61 6e 64 20 66 6f 72 77 61 72 64 69 6e 67 20 64 6f 6d 61 69 6e 73 20 28 61 6b 61 20 | ing.and.forwarding.domains.(aka. |
| 2bcc0 | 56 52 46 73 2c 20 56 52 46 2d 6c 69 74 65 20 74 6f 20 62 65 20 73 70 65 63 69 66 69 63 29 20 69 | VRFs,.VRF-lite.to.be.specific).i |
| 2bce0 | 6e 20 74 68 65 20 4c 69 6e 75 78 20 6e 65 74 77 6f 72 6b 20 73 74 61 63 6b 2e 20 4f 6e 65 20 75 | n.the.Linux.network.stack..One.u |
| 2bd00 | 73 65 20 63 61 73 65 20 69 73 20 74 68 65 20 6d 75 6c 74 69 2d 74 65 6e 61 6e 63 79 20 70 72 6f | se.case.is.the.multi-tenancy.pro |
| 2bd20 | 62 6c 65 6d 20 77 68 65 72 65 20 65 61 63 68 20 74 65 6e 61 6e 74 20 68 61 73 20 74 68 65 69 72 | blem.where.each.tenant.has.their |
| 2bd40 | 20 6f 77 6e 20 75 6e 69 71 75 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 73 20 61 6e 64 20 69 | .own.unique.routing.tables.and.i |
| 2bd60 | 6e 20 74 68 65 20 76 65 72 79 20 6c 65 61 73 74 20 6e 65 65 64 20 64 69 66 66 65 72 65 6e 74 20 | n.the.very.least.need.different. |
| 2bd80 | 64 65 66 61 75 6c 74 20 67 61 74 65 77 61 79 73 2e 00 3a 61 62 62 72 3a 60 56 58 4c 41 4e 20 28 | default.gateways..:abbr:`VXLAN.( |
| 2bda0 | 56 69 72 74 75 61 6c 20 45 78 74 65 6e 73 69 62 6c 65 20 4c 41 4e 29 60 20 69 73 20 61 20 6e 65 | Virtual.Extensible.LAN)`.is.a.ne |
| 2bdc0 | 74 77 6f 72 6b 20 76 69 72 74 75 61 6c 69 7a 61 74 69 6f 6e 20 74 65 63 68 6e 6f 6c 6f 67 79 20 | twork.virtualization.technology. |
| 2bde0 | 74 68 61 74 20 61 74 74 65 6d 70 74 73 20 74 6f 20 61 64 64 72 65 73 73 20 74 68 65 20 73 63 61 | that.attempts.to.address.the.sca |
| 2be00 | 6c 61 62 69 6c 69 74 79 20 70 72 6f 62 6c 65 6d 73 20 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 | lability.problems.associated.wit |
| 2be20 | 68 20 6c 61 72 67 65 20 63 6c 6f 75 64 20 63 6f 6d 70 75 74 69 6e 67 20 64 65 70 6c 6f 79 6d 65 | h.large.cloud.computing.deployme |
| 2be40 | 6e 74 73 2e 20 49 74 20 75 73 65 73 20 61 20 56 4c 41 4e 2d 6c 69 6b 65 20 65 6e 63 61 70 73 75 | nts..It.uses.a.VLAN-like.encapsu |
| 2be60 | 6c 61 74 69 6f 6e 20 74 65 63 68 6e 69 71 75 65 20 74 6f 20 65 6e 63 61 70 73 75 6c 61 74 65 20 | lation.technique.to.encapsulate. |
| 2be80 | 4f 53 49 20 6c 61 79 65 72 20 32 20 45 74 68 65 72 6e 65 74 20 66 72 61 6d 65 73 20 77 69 74 68 | OSI.layer.2.Ethernet.frames.with |
| 2bea0 | 69 6e 20 6c 61 79 65 72 20 34 20 55 44 50 20 64 61 74 61 67 72 61 6d 73 2c 20 75 73 69 6e 67 20 | in.layer.4.UDP.datagrams,.using. |
| 2bec0 | 34 37 38 39 20 61 73 20 74 68 65 20 64 65 66 61 75 6c 74 20 49 41 4e 41 2d 61 73 73 69 67 6e 65 | 4789.as.the.default.IANA-assigne |
| 2bee0 | 64 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 55 44 50 20 70 6f 72 74 20 6e 75 6d 62 65 72 2e 20 56 | d.destination.UDP.port.number..V |
| 2bf00 | 58 4c 41 4e 20 65 6e 64 70 6f 69 6e 74 73 2c 20 77 68 69 63 68 20 74 65 72 6d 69 6e 61 74 65 20 | XLAN.endpoints,.which.terminate. |
| 2bf20 | 56 58 4c 41 4e 20 74 75 6e 6e 65 6c 73 20 61 6e 64 20 6d 61 79 20 62 65 20 65 69 74 68 65 72 20 | VXLAN.tunnels.and.may.be.either. |
| 2bf40 | 76 69 72 74 75 61 6c 20 6f 72 20 70 68 79 73 69 63 61 6c 20 73 77 69 74 63 68 20 70 6f 72 74 73 | virtual.or.physical.switch.ports |
| 2bf60 | 2c 20 61 72 65 20 6b 6e 6f 77 6e 20 61 73 20 3a 61 62 62 72 3a 60 56 54 45 50 73 20 28 56 58 4c | ,.are.known.as.:abbr:`VTEPs.(VXL |
| 2bf80 | 41 4e 20 74 75 6e 6e 65 6c 20 65 6e 64 70 6f 69 6e 74 73 29 60 2e 00 3a 61 62 62 72 3a 60 57 41 | AN.tunnel.endpoints)`..:abbr:`WA |
| 2bfa0 | 50 20 28 57 69 72 65 6c 65 73 73 20 41 63 63 65 73 73 2d 50 6f 69 6e 74 29 60 20 6d 6f 64 65 20 | P.(Wireless.Access-Point)`.mode. |
| 2bfc0 | 70 72 6f 76 69 64 65 73 20 6e 65 74 77 6f 72 6b 20 61 63 63 65 73 73 20 74 6f 20 63 6f 6e 6e 65 | provides.network.access.to.conne |
| 2bfe0 | 63 74 69 6e 67 20 73 74 61 74 69 6f 6e 73 20 69 66 20 74 68 65 20 70 68 79 73 69 63 61 6c 20 68 | cting.stations.if.the.physical.h |
| 2c000 | 61 72 64 77 61 72 65 20 73 75 70 70 6f 72 74 73 20 61 63 74 69 6e 67 20 61 73 20 61 20 57 41 50 | ardware.supports.acting.as.a.WAP |
| 2c020 | 00 3a 61 62 62 72 3a 60 57 41 50 20 28 57 69 72 65 6c 65 73 73 20 41 63 63 65 73 73 2d 50 6f 69 | .:abbr:`WAP.(Wireless.Access-Poi |
| 2c040 | 6e 74 29 60 20 70 72 6f 76 69 64 65 73 20 6e 65 74 77 6f 72 6b 20 61 63 63 65 73 73 20 74 6f 20 | nt)`.provides.network.access.to. |
| 2c060 | 63 6f 6e 6e 65 63 74 69 6e 67 20 73 74 61 74 69 6f 6e 73 20 69 66 20 74 68 65 20 70 68 79 73 69 | connecting.stations.if.the.physi |
| 2c080 | 63 61 6c 20 68 61 72 64 77 61 72 65 20 73 75 70 70 6f 72 74 73 20 61 63 74 69 6e 67 20 61 73 20 | cal.hardware.supports.acting.as. |
| 2c0a0 | 61 20 57 41 50 00 3a 61 62 62 72 3a 60 57 4c 41 4e 20 28 57 69 72 65 6c 65 73 73 20 4c 41 4e 29 | a.WAP.:abbr:`WLAN.(Wireless.LAN) |
| 2c0c0 | 60 20 69 6e 74 65 72 66 61 63 65 20 70 72 6f 76 69 64 65 20 38 30 32 2e 31 31 20 28 61 2f 62 2f | `.interface.provide.802.11.(a/b/ |
| 2c0e0 | 67 2f 6e 2f 61 63 29 20 77 69 72 65 6c 65 73 73 20 73 75 70 70 6f 72 74 20 28 63 6f 6d 6d 6f 6e | g/n/ac).wireless.support.(common |
| 2c100 | 6c 79 20 72 65 66 65 72 72 65 64 20 74 6f 20 61 73 20 57 69 2d 46 69 29 20 62 79 20 6d 65 61 6e | ly.referred.to.as.Wi-Fi).by.mean |
| 2c120 | 73 20 6f 66 20 63 6f 6d 70 61 74 69 62 6c 65 20 68 61 72 64 77 61 72 65 2e 20 49 66 20 79 6f 75 | s.of.compatible.hardware..If.you |
| 2c140 | 72 20 68 61 72 64 77 61 72 65 20 73 75 70 70 6f 72 74 73 20 69 74 2c 20 56 79 4f 53 20 73 75 70 | r.hardware.supports.it,.VyOS.sup |
| 2c160 | 70 6f 72 74 73 20 6d 75 6c 74 69 70 6c 65 20 6c 6f 67 69 63 61 6c 20 77 69 72 65 6c 65 73 73 20 | ports.multiple.logical.wireless. |
| 2c180 | 69 6e 74 65 72 66 61 63 65 73 20 70 65 72 20 70 68 79 73 69 63 61 6c 20 64 65 76 69 63 65 2e 00 | interfaces.per.physical.device.. |
| 2c1a0 | 3a 61 62 62 72 3a 60 57 50 41 20 28 57 69 2d 46 69 20 50 72 6f 74 65 63 74 65 64 20 41 63 63 65 | :abbr:`WPA.(Wi-Fi.Protected.Acce |
| 2c1c0 | 73 73 29 60 20 61 6e 64 20 57 50 41 32 20 45 6e 74 65 72 70 72 69 73 65 20 69 6e 20 63 6f 6d 62 | ss)`.and.WPA2.Enterprise.in.comb |
| 2c1e0 | 69 6e 61 74 69 6f 6e 20 77 69 74 68 20 38 30 32 2e 31 78 20 62 61 73 65 64 20 61 75 74 68 65 6e | ination.with.802.1x.based.authen |
| 2c200 | 74 69 63 61 74 69 6f 6e 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 61 75 74 68 65 6e 74 69 | tication.can.be.used.to.authenti |
| 2c220 | 63 61 74 65 20 75 73 65 72 73 20 6f 72 20 63 6f 6d 70 75 74 65 72 73 20 69 6e 20 61 20 64 6f 6d | cate.users.or.computers.in.a.dom |
| 2c240 | 61 69 6e 2e 00 3a 61 62 62 72 3a 60 57 50 41 20 28 57 69 2d 46 69 20 50 72 6f 74 65 63 74 65 64 | ain..:abbr:`WPA.(Wi-Fi.Protected |
| 2c260 | 20 41 63 63 65 73 73 29 60 2c 20 57 50 41 32 20 45 6e 74 65 72 70 72 69 73 65 20 61 6e 64 20 57 | .Access)`,.WPA2.Enterprise.and.W |
| 2c280 | 50 41 33 20 45 6e 74 65 72 70 72 69 73 65 20 69 6e 20 63 6f 6d 62 69 6e 61 74 69 6f 6e 20 77 69 | PA3.Enterprise.in.combination.wi |
| 2c2a0 | 74 68 20 38 30 32 2e 31 78 20 62 61 73 65 64 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 63 | th.802.1x.based.authentication.c |
| 2c2c0 | 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 61 75 74 68 65 6e 74 69 63 61 74 65 20 75 73 65 72 73 | an.be.used.to.authenticate.users |
| 2c2e0 | 20 6f 72 20 63 6f 6d 70 75 74 65 72 73 20 69 6e 20 61 20 64 6f 6d 61 69 6e 2e 00 3a 61 62 62 72 | .or.computers.in.a.domain..:abbr |
| 2c300 | 3a 60 6d 47 52 45 20 28 4d 75 6c 74 69 70 6f 69 6e 74 20 47 65 6e 65 72 69 63 20 52 6f 75 74 69 | :`mGRE.(Multipoint.Generic.Routi |
| 2c320 | 6e 67 20 45 6e 63 61 70 73 75 6c 61 74 69 6f 6e 29 60 20 3a 72 66 63 3a 60 31 37 30 32 60 00 3a | ng.Encapsulation)`.:rfc:`1702`.: |
| 2c340 | 63 66 67 63 6d 64 3a 60 61 64 76 2d 72 6f 75 74 65 72 20 3c 41 2e 42 2e 43 2e 44 3e 60 20 e2 80 | cfgcmd:`adv-router.<A.B.C.D>`... |
| 2c360 | 93 20 72 6f 75 74 65 72 20 69 64 2c 20 77 68 69 63 68 20 6c 69 6e 6b 20 61 64 76 65 72 74 69 73 | ..router.id,.which.link.advertis |
| 2c380 | 65 6d 65 6e 74 73 20 6e 65 65 64 20 74 6f 20 62 65 20 72 65 76 69 65 77 65 64 2e 00 3a 63 66 67 | ements.need.to.be.reviewed..:cfg |
| 2c3a0 | 63 6d 64 3a 60 73 65 6c 66 2d 6f 72 69 67 69 6e 61 74 65 60 20 64 69 73 70 6c 61 79 73 20 6f 6e | cmd:`self-originate`.displays.on |
| 2c3c0 | 6c 79 20 73 65 6c 66 2d 6f 72 69 67 69 6e 61 74 65 64 20 4c 53 41 73 20 66 72 6f 6d 20 74 68 65 | ly.self-originated.LSAs.from.the |
| 2c3e0 | 20 6c 6f 63 61 6c 20 72 6f 75 74 65 72 2e 00 3a 63 66 67 63 6d 64 3a 60 73 65 74 20 73 65 72 76 | .local.router..:cfgcmd:`set.serv |
| 2c400 | 69 63 65 20 63 6f 6e 6e 74 72 61 63 6b 2d 73 79 6e 63 20 69 6e 74 65 72 66 61 63 65 20 65 74 68 | ice.conntrack-sync.interface.eth |
| 2c420 | 30 20 70 65 65 72 20 31 39 32 2e 31 36 38 2e 30 2e 32 35 30 60 00 3a 63 6f 64 65 3a 60 73 65 74 | 0.peer.192.168.0.250`.:code:`set |
| 2c440 | 20 73 65 72 76 69 63 65 20 77 65 62 70 72 6f 78 79 20 75 72 6c 2d 66 69 6c 74 65 72 69 6e 67 20 | .service.webproxy.url-filtering. |
| 2c460 | 73 71 75 69 64 67 75 61 72 64 20 61 75 74 6f 2d 75 70 64 61 74 65 20 75 70 64 61 74 65 2d 68 6f | squidguard.auto-update.update-ho |
| 2c480 | 75 72 20 32 33 60 00 3a 63 6f 64 65 3a 60 73 65 74 20 73 65 72 76 69 63 65 20 77 65 62 70 72 6f | ur.23`.:code:`set.service.webpro |
| 2c4a0 | 78 79 20 75 72 6c 2d 66 69 6c 74 65 72 69 6e 67 20 73 71 75 69 64 67 75 61 72 64 20 62 6c 6f 63 | xy.url-filtering.squidguard.bloc |
| 2c4c0 | 6b 2d 63 61 74 65 67 6f 72 79 20 61 64 73 60 00 3a 63 6f 64 65 3a 60 73 65 74 20 73 65 72 76 69 | k-category.ads`.:code:`set.servi |
| 2c4e0 | 63 65 20 77 65 62 70 72 6f 78 79 20 75 72 6c 2d 66 69 6c 74 65 72 69 6e 67 20 73 71 75 69 64 67 | ce.webproxy.url-filtering.squidg |
| 2c500 | 75 61 72 64 20 62 6c 6f 63 6b 2d 63 61 74 65 67 6f 72 79 20 6d 61 6c 77 61 72 65 60 00 3a 63 6f | uard.block-category.malware`.:co |
| 2c520 | 64 65 3a 60 73 65 74 20 73 65 72 76 69 63 65 20 77 65 62 70 72 6f 78 79 20 77 68 69 74 65 6c 69 | de:`set.service.webproxy.whiteli |
| 2c540 | 73 74 20 64 65 73 74 69 6e 61 74 69 6f 6e 2d 61 64 64 72 65 73 73 20 31 39 32 2e 30 2e 32 2e 30 | st.destination-address.192.0.2.0 |
| 2c560 | 2f 32 34 60 00 3a 63 6f 64 65 3a 60 73 65 74 20 73 65 72 76 69 63 65 20 77 65 62 70 72 6f 78 79 | /24`.:code:`set.service.webproxy |
| 2c580 | 20 77 68 69 74 65 6c 69 73 74 20 64 65 73 74 69 6e 61 74 69 6f 6e 2d 61 64 64 72 65 73 73 20 31 | .whitelist.destination-address.1 |
| 2c5a0 | 39 38 2e 35 31 2e 31 30 30 2e 33 33 60 00 3a 63 6f 64 65 3a 60 73 65 74 20 73 65 72 76 69 63 65 | 98.51.100.33`.:code:`set.service |
| 2c5c0 | 20 77 65 62 70 72 6f 78 79 20 77 68 69 74 65 6c 69 73 74 20 73 6f 75 72 63 65 2d 61 64 64 72 65 | .webproxy.whitelist.source-addre |
| 2c5e0 | 73 73 20 31 39 32 2e 31 36 38 2e 31 2e 32 60 00 3a 63 6f 64 65 3a 60 73 65 74 20 73 65 72 76 69 | ss.192.168.1.2`.:code:`set.servi |
| 2c600 | 63 65 20 77 65 62 70 72 6f 78 79 20 77 68 69 74 65 6c 69 73 74 20 73 6f 75 72 63 65 2d 61 64 64 | ce.webproxy.whitelist.source-add |
| 2c620 | 72 65 73 73 20 31 39 32 2e 31 36 38 2e 32 2e 30 2f 32 34 60 00 3a 64 6f 63 3a 60 43 6f 6e 6e 74 | ress.192.168.2.0/24`.:doc:`Connt |
| 2c640 | 72 61 63 6b 20 49 67 6e 6f 72 65 3c 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 73 79 73 74 65 | rack.Ignore</configuration/syste |
| 2c660 | 6d 2f 63 6f 6e 6e 74 72 61 63 6b 3e 60 3a 20 60 60 73 65 74 20 73 79 73 74 65 6d 20 63 6f 6e 6e | m/conntrack>`:.``set.system.conn |
| 2c680 | 74 72 61 63 6b 20 69 67 6e 6f 72 65 20 69 70 76 34 2e 2e 2e 60 60 00 3a 64 6f 63 3a 60 43 6f 6e | track.ignore.ipv4...``.:doc:`Con |
| 2c6a0 | 6e 74 72 61 63 6b 20 49 67 6e 6f 72 65 3c 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 73 79 73 | ntrack.Ignore</configuration/sys |
| 2c6c0 | 74 65 6d 2f 63 6f 6e 6e 74 72 61 63 6b 3e 60 3a 20 60 60 73 65 74 20 73 79 73 74 65 6d 20 63 6f | tem/conntrack>`:.``set.system.co |
| 2c6e0 | 6e 6e 74 72 61 63 6b 20 69 67 6e 6f 72 65 20 69 70 76 36 2e 2e 2e 60 60 00 3a 64 6f 63 3a 60 44 | nntrack.ignore.ipv6...``.:doc:`D |
| 2c700 | 65 73 74 69 6e 61 74 69 6f 6e 20 4e 41 54 3c 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 6e 61 | estination.NAT</configuration/na |
| 2c720 | 74 2f 6e 61 74 34 34 3e 60 3a 20 63 6f 6d 6d 61 6e 64 73 20 66 6f 75 6e 64 20 75 6e 64 65 72 20 | t/nat44>`:.commands.found.under. |
| 2c740 | 60 60 73 65 74 20 6e 61 74 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 2e 2e 2e 60 60 00 3a 64 6f 63 | ``set.nat.destination....``.:doc |
| 2c760 | 3a 60 44 65 73 74 69 6e 61 74 69 6f 6e 20 4e 41 54 3c 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e | :`Destination.NAT</configuration |
| 2c780 | 2f 6e 61 74 2f 6e 61 74 34 34 3e 60 3a 20 63 6f 6d 6d 61 6e 64 73 20 66 6f 75 6e 64 20 75 6e 64 | /nat/nat44>`:.commands.found.und |
| 2c7a0 | 65 72 20 60 60 73 65 74 20 6e 61 74 36 36 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 2e 2e 2e 60 60 | er.``set.nat66.destination....`` |
| 2c7c0 | 00 3a 64 6f 63 3a 60 50 6f 6c 69 63 79 20 52 6f 75 74 65 3c 2f 63 6f 6e 66 69 67 75 72 61 74 69 | .:doc:`Policy.Route</configurati |
| 2c7e0 | 6f 6e 2f 70 6f 6c 69 63 79 2f 72 6f 75 74 65 3e 60 3a 20 63 6f 6d 6d 61 6e 64 73 20 66 6f 75 6e | on/policy/route>`:.commands.foun |
| 2c800 | 64 20 75 6e 64 65 72 20 60 60 73 65 74 20 70 6f 6c 69 63 79 20 72 6f 75 74 65 20 2e 2e 2e 60 60 | d.under.``set.policy.route....`` |
| 2c820 | 00 3a 64 6f 63 3a 60 50 6f 6c 69 63 79 20 52 6f 75 74 65 3c 2f 63 6f 6e 66 69 67 75 72 61 74 69 | .:doc:`Policy.Route</configurati |
| 2c840 | 6f 6e 2f 70 6f 6c 69 63 79 2f 72 6f 75 74 65 3e 60 3a 20 63 6f 6d 6d 61 6e 64 73 20 66 6f 75 6e | on/policy/route>`:.commands.foun |
| 2c860 | 64 20 75 6e 64 65 72 20 60 60 73 65 74 20 70 6f 6c 69 63 79 20 72 6f 75 74 65 36 20 2e 2e 2e 60 | d.under.``set.policy.route6....` |
| 2c880 | 60 00 3a 6c 61 73 74 70 72 6f 6f 66 72 65 61 64 3a 32 30 32 31 2d 30 37 2d 31 32 00 3a 6f 70 63 | `.:lastproofread:2021-07-12.:opc |
| 2c8a0 | 6d 64 3a 60 67 65 6e 65 72 61 74 65 20 70 6b 69 20 77 69 72 65 67 75 61 72 64 20 6b 65 79 2d 70 | md:`generate.pki.wireguard.key-p |
| 2c8c0 | 61 69 72 60 2e 00 3a 72 65 66 3a 60 72 6f 75 74 69 6e 67 2d 62 67 70 60 00 3a 72 65 66 3a 60 72 | air`..:ref:`routing-bgp`.:ref:`r |
| 2c8e0 | 6f 75 74 69 6e 67 2d 62 67 70 60 3a 20 60 60 73 65 74 20 76 72 66 20 6e 61 6d 65 20 3c 6e 61 6d | outing-bgp`:.``set.vrf.name.<nam |
| 2c900 | 65 3e 20 70 72 6f 74 6f 63 6f 6c 73 20 62 67 70 20 2e 2e 2e 60 60 00 3a 72 65 66 3a 60 72 6f 75 | e>.protocols.bgp....``.:ref:`rou |
| 2c920 | 74 69 6e 67 2d 69 73 69 73 60 00 3a 72 65 66 3a 60 72 6f 75 74 69 6e 67 2d 69 73 69 73 60 3a 20 | ting-isis`.:ref:`routing-isis`:. |
| 2c940 | 60 60 73 65 74 20 76 72 66 20 6e 61 6d 65 20 3c 6e 61 6d 65 3e 20 70 72 6f 74 6f 63 6f 6c 73 20 | ``set.vrf.name.<name>.protocols. |
| 2c960 | 69 73 69 73 20 2e 2e 2e 60 60 00 3a 72 65 66 3a 60 72 6f 75 74 69 6e 67 2d 6f 73 70 66 60 00 3a | isis....``.:ref:`routing-ospf`.: |
| 2c980 | 72 65 66 3a 60 72 6f 75 74 69 6e 67 2d 6f 73 70 66 60 3a 20 60 60 73 65 74 20 76 72 66 20 6e 61 | ref:`routing-ospf`:.``set.vrf.na |
| 2c9a0 | 6d 65 20 3c 6e 61 6d 65 3e 20 70 72 6f 74 6f 63 6f 6c 73 20 6f 73 70 66 20 2e 2e 2e 60 60 00 3a | me.<name>.protocols.ospf....``.: |
| 2c9c0 | 72 65 66 3a 60 72 6f 75 74 69 6e 67 2d 6f 73 70 66 76 33 60 00 3a 72 65 66 3a 60 72 6f 75 74 69 | ref:`routing-ospfv3`.:ref:`routi |
| 2c9e0 | 6e 67 2d 6f 73 70 66 76 33 60 3a 20 60 60 73 65 74 20 76 72 66 20 6e 61 6d 65 20 3c 6e 61 6d 65 | ng-ospfv3`:.``set.vrf.name.<name |
| 2ca00 | 3e 20 70 72 6f 74 6f 63 6f 6c 73 20 6f 73 70 66 76 33 20 2e 2e 2e 60 60 00 3a 72 65 66 3a 60 72 | >.protocols.ospfv3....``.:ref:`r |
| 2ca20 | 6f 75 74 69 6e 67 2d 73 74 61 74 69 63 60 00 3a 72 65 66 3a 60 72 6f 75 74 69 6e 67 2d 73 74 61 | outing-static`.:ref:`routing-sta |
| 2ca40 | 74 69 63 60 3a 20 60 60 73 65 74 20 76 72 66 20 6e 61 6d 65 20 3c 6e 61 6d 65 3e 20 70 72 6f 74 | tic`:.``set.vrf.name.<name>.prot |
| 2ca60 | 6f 63 6f 6c 73 20 73 74 61 74 69 63 20 2e 2e 2e 60 60 00 3a 72 66 63 3a 60 32 31 33 31 60 20 73 | ocols.static....``.:rfc:`2131`.s |
| 2ca80 | 74 61 74 65 73 3a 20 54 68 65 20 63 6c 69 65 6e 74 20 4d 41 59 20 63 68 6f 6f 73 65 20 74 6f 20 | tates:.The.client.MAY.choose.to. |
| 2caa0 | 65 78 70 6c 69 63 69 74 6c 79 20 70 72 6f 76 69 64 65 20 74 68 65 20 69 64 65 6e 74 69 66 69 65 | explicitly.provide.the.identifie |
| 2cac0 | 72 20 74 68 72 6f 75 67 68 20 74 68 65 20 27 63 6c 69 65 6e 74 20 69 64 65 6e 74 69 66 69 65 72 | r.through.the.'client.identifier |
| 2cae0 | 27 20 6f 70 74 69 6f 6e 2e 20 49 66 20 74 68 65 20 63 6c 69 65 6e 74 20 73 75 70 70 6c 69 65 73 | '.option..If.the.client.supplies |
| 2cb00 | 20 61 20 27 63 6c 69 65 6e 74 20 69 64 65 6e 74 69 66 69 65 72 27 2c 20 74 68 65 20 63 6c 69 65 | .a.'client.identifier',.the.clie |
| 2cb20 | 6e 74 20 4d 55 53 54 20 75 73 65 20 74 68 65 20 73 61 6d 65 20 27 63 6c 69 65 6e 74 20 69 64 65 | nt.MUST.use.the.same.'client.ide |
| 2cb40 | 6e 74 69 66 69 65 72 27 20 69 6e 20 61 6c 6c 20 73 75 62 73 65 71 75 65 6e 74 20 6d 65 73 73 61 | ntifier'.in.all.subsequent.messa |
| 2cb60 | 67 65 73 2c 20 61 6e 64 20 74 68 65 20 73 65 72 76 65 72 20 4d 55 53 54 20 75 73 65 20 74 68 61 | ges,.and.the.server.MUST.use.tha |
| 2cb80 | 74 20 69 64 65 6e 74 69 66 69 65 72 20 74 6f 20 69 64 65 6e 74 69 66 79 20 74 68 65 20 63 6c 69 | t.identifier.to.identify.the.cli |
| 2cba0 | 65 6e 74 2e 00 3a 72 66 63 3a 60 32 31 33 36 60 20 42 61 73 65 64 00 3a 72 66 63 3a 60 32 33 32 | ent..:rfc:`2136`.Based.:rfc:`232 |
| 2cbc0 | 38 60 2c 20 74 68 65 20 73 75 63 63 65 73 73 6f 72 20 74 6f 20 3a 72 66 63 3a 60 31 35 38 33 60 | 8`,.the.successor.to.:rfc:`1583` |
| 2cbe0 | 2c 20 73 75 67 67 65 73 74 73 20 61 63 63 6f 72 64 69 6e 67 20 74 6f 20 73 65 63 74 69 6f 6e 20 | ,.suggests.according.to.section. |
| 2cc00 | 47 2e 32 20 28 63 68 61 6e 67 65 73 29 20 69 6e 20 73 65 63 74 69 6f 6e 20 31 36 2e 34 2e 31 20 | G.2.(changes).in.section.16.4.1. |
| 2cc20 | 61 20 63 68 61 6e 67 65 20 74 6f 20 74 68 65 20 70 61 74 68 20 70 72 65 66 65 72 65 6e 63 65 20 | a.change.to.the.path.preference. |
| 2cc40 | 61 6c 67 6f 72 69 74 68 6d 20 74 68 61 74 20 70 72 65 76 65 6e 74 73 20 70 6f 73 73 69 62 6c 65 | algorithm.that.prevents.possible |
| 2cc60 | 20 72 6f 75 74 69 6e 67 20 6c 6f 6f 70 73 20 74 68 61 74 20 77 65 72 65 20 70 6f 73 73 69 62 6c | .routing.loops.that.were.possibl |
| 2cc80 | 65 20 69 6e 20 74 68 65 20 6f 6c 64 20 76 65 72 73 69 6f 6e 20 6f 66 20 4f 53 50 46 76 32 2e 20 | e.in.the.old.version.of.OSPFv2.. |
| 2cca0 | 4d 6f 72 65 20 73 70 65 63 69 66 69 63 61 6c 6c 79 20 69 74 20 64 65 6d 61 6e 64 73 20 74 68 61 | More.specifically.it.demands.tha |
| 2ccc0 | 74 20 69 6e 74 65 72 2d 61 72 65 61 20 70 61 74 68 73 20 61 6e 64 20 69 6e 74 72 61 2d 61 72 65 | t.inter-area.paths.and.intra-are |
| 2cce0 | 61 20 62 61 63 6b 62 6f 6e 65 20 70 61 74 68 20 61 72 65 20 6e 6f 77 20 6f 66 20 65 71 75 61 6c | a.backbone.path.are.now.of.equal |
| 2cd00 | 20 70 72 65 66 65 72 65 6e 63 65 20 62 75 74 20 73 74 69 6c 6c 20 62 6f 74 68 20 70 72 65 66 65 | .preference.but.still.both.prefe |
| 2cd20 | 72 72 65 64 20 74 6f 20 65 78 74 65 72 6e 61 6c 20 70 61 74 68 73 2e 00 3a 72 66 63 3a 60 36 35 | rred.to.external.paths..:rfc:`65 |
| 2cd40 | 39 38 60 20 2d 20 49 41 4e 41 2d 52 65 73 65 72 76 65 64 20 49 50 76 34 20 50 72 65 66 69 78 20 | 98`.-.IANA-Reserved.IPv4.Prefix. |
| 2cd60 | 66 6f 72 20 53 68 61 72 65 64 20 41 64 64 72 65 73 73 20 53 70 61 63 65 00 3a 72 66 63 3a 60 36 | for.Shared.Address.Space.:rfc:`6 |
| 2cd80 | 38 38 38 60 20 2d 20 52 65 71 75 69 72 65 6d 65 6e 74 73 20 66 6f 72 20 43 47 4e 41 54 00 3a 76 | 888`.-.Requirements.for.CGNAT.:v |
| 2cda0 | 79 74 61 73 6b 3a 60 54 33 36 34 32 60 20 64 65 73 63 72 69 62 65 73 20 61 20 6e 65 77 20 43 4c | ytask:`T3642`.describes.a.new.CL |
| 2cdc0 | 49 20 73 75 62 73 79 73 74 65 6d 20 74 68 61 74 20 73 65 72 76 65 73 20 61 73 20 61 20 22 63 65 | I.subsystem.that.serves.as.a."ce |
| 2cde0 | 72 74 73 74 6f 72 65 22 20 74 6f 20 61 6c 6c 20 73 65 72 76 69 63 65 73 20 72 65 71 75 69 72 69 | rtstore".to.all.services.requiri |
| 2ce00 | 6e 67 20 61 6e 79 20 6b 69 6e 64 20 6f 66 20 65 6e 63 72 79 70 74 69 6f 6e 20 6b 65 79 28 73 29 | ng.any.kind.of.encryption.key(s) |
| 2ce20 | 2e 20 49 6e 20 73 68 6f 72 74 2c 20 70 75 62 6c 69 63 20 61 6e 64 20 70 72 69 76 61 74 65 20 63 | ..In.short,.public.and.private.c |
| 2ce40 | 65 72 74 69 66 69 63 61 74 65 73 20 61 72 65 20 6e 6f 77 20 73 74 6f 72 65 64 20 69 6e 20 50 4b | ertificates.are.now.stored.in.PK |
| 2ce60 | 43 53 23 38 20 66 6f 72 6d 61 74 20 69 6e 20 74 68 65 20 72 65 67 75 6c 61 72 20 56 79 4f 53 20 | CS#8.format.in.the.regular.VyOS. |
| 2ce80 | 43 4c 49 2e 20 4b 65 79 73 20 63 61 6e 20 6e 6f 77 20 62 65 20 61 64 64 65 64 2c 20 65 64 69 74 | CLI..Keys.can.now.be.added,.edit |
| 2cea0 | 65 64 2c 20 61 6e 64 20 64 65 6c 65 74 65 64 20 75 73 69 6e 67 20 74 68 65 20 72 65 67 75 6c 61 | ed,.and.deleted.using.the.regula |
| 2cec0 | 72 20 73 65 74 2f 65 64 69 74 2f 64 65 6c 65 74 65 20 43 4c 49 20 63 6f 6d 6d 61 6e 64 73 2e 00 | r.set/edit/delete.CLI.commands.. |
| 2cee0 | 3c 31 2d 36 35 35 33 35 3e 3a 20 4e 75 6d 62 65 72 65 64 20 70 6f 72 74 2e 00 3c 61 61 3a 6e 6e | <1-65535>:.Numbered.port..<aa:nn |
| 2cf00 | 3a 6e 6e 3e 3a 20 45 78 74 65 6e 64 65 64 20 63 6f 6d 6d 75 6e 69 74 79 20 6c 69 73 74 20 72 65 | :nn>:.Extended.community.list.re |
| 2cf20 | 67 75 6c 61 72 20 65 78 70 72 65 73 73 69 6f 6e 2e 00 3c 68 3a 68 3a 68 3a 68 3a 68 3a 68 3a 68 | gular.expression..<h:h:h:h:h:h:h |
| 2cf40 | 3a 68 2f 78 3e 3a 20 49 50 76 36 20 70 72 65 66 69 78 20 74 6f 20 6d 61 74 63 68 2e 00 3c 68 3a | :h/x>:.IPv6.prefix.to.match..<h: |
| 2cf60 | 68 3a 68 3a 68 3a 68 3a 68 3a 68 3a 68 3e 2d 3c 68 3a 68 3a 68 3a 68 3a 68 3a 68 3a 68 3a 68 3e | h:h:h:h:h:h:h>-<h:h:h:h:h:h:h:h> |
| 2cf80 | 3a 20 49 50 76 36 20 72 61 6e 67 65 20 74 6f 20 6d 61 74 63 68 2e 00 3c 68 3a 68 3a 68 3a 68 3a | :.IPv6.range.to.match..<h:h:h:h: |
| 2cfa0 | 68 3a 68 3a 68 3a 68 3e 3a 20 49 50 76 36 20 61 64 64 72 65 73 73 20 74 6f 20 6d 61 74 63 68 2e | h:h:h:h>:.IPv6.address.to.match. |
| 2cfc0 | 00 3c 6c 69 6e 65 73 3e 00 3c 6e 75 6d 62 65 72 3e 20 6d 75 73 74 20 62 65 20 66 72 6f 6d 20 33 | .<lines>.<number>.must.be.from.3 |
| 2cfe0 | 34 20 2d 20 31 37 33 2e 20 46 6f 72 20 38 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 73 20 69 74 20 | 4.-.173..For.80.MHz.channels.it. |
| 2d000 | 73 68 6f 75 6c 64 20 62 65 20 63 68 61 6e 6e 65 6c 20 2b 20 36 2e 00 3c 6e 75 6d 62 65 72 3e 20 | should.be.channel.+.6..<number>. |
| 2d020 | 6d 75 73 74 20 62 65 20 6f 6e 65 20 6f 66 3a 00 3c 6e 75 6d 62 65 72 3e 20 6d 75 73 74 20 62 65 | must.be.one.of:.<number>.must.be |
| 2d040 | 20 77 69 74 68 69 6e 20 31 2e 2e 32 33 33 2e 20 46 6f 72 20 38 30 20 4d 48 7a 20 63 68 61 6e 6e | .within.1..233..For.80.MHz.chann |
| 2d060 | 65 6c 73 20 69 74 20 73 68 6f 75 6c 64 20 62 65 20 63 68 61 6e 6e 65 6c 20 2b 20 36 20 61 6e 64 | els.it.should.be.channel.+.6.and |
| 2d080 | 20 66 6f 72 20 31 36 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 73 2c 20 69 74 20 73 68 6f 75 6c 64 | .for.160.MHz.channels,.it.should |
| 2d0a0 | 20 62 65 20 63 68 61 6e 6e 65 6c 20 2b 20 31 34 2e 00 3c 6e 75 6d 62 65 72 3e 20 e2 80 93 20 61 | .be.channel.+.14..<number>.....a |
| 2d0c0 | 72 65 61 20 69 64 65 6e 74 69 66 69 65 72 20 74 68 72 6f 75 67 68 20 77 68 69 63 68 20 61 20 76 | rea.identifier.through.which.a.v |
| 2d0e0 | 69 72 74 75 61 6c 20 6c 69 6e 6b 20 67 6f 65 73 2e 20 3c 41 2e 42 2e 43 2e 44 3e 20 e2 80 93 20 | irtual.link.goes..<A.B.C.D>..... |
| 2d100 | 41 42 52 20 72 6f 75 74 65 72 2d 69 64 20 77 69 74 68 20 77 68 69 63 68 20 61 20 76 69 72 74 75 | ABR.router-id.with.which.a.virtu |
| 2d120 | 61 6c 20 6c 69 6e 6b 20 69 73 20 65 73 74 61 62 6c 69 73 68 65 64 2e 20 56 69 72 74 75 61 6c 20 | al.link.is.established..Virtual. |
| 2d140 | 6c 69 6e 6b 20 6d 75 73 74 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 62 6f 74 68 20 | link.must.be.configured.on.both. |
| 2d160 | 72 6f 75 74 65 72 73 2e 00 3c 70 6f 72 74 20 6e 61 6d 65 3e 3a 20 4e 61 6d 65 64 20 70 6f 72 74 | routers..<port.name>:.Named.port |
| 2d180 | 20 28 61 6e 79 20 6e 61 6d 65 20 69 6e 20 2f 65 74 63 2f 73 65 72 76 69 63 65 73 2c 20 65 2e 67 | .(any.name.in./etc/services,.e.g |
| 2d1a0 | 2e 2c 20 68 74 74 70 29 2e 00 3c 72 74 20 61 61 3a 6e 6e 3a 6e 6e 3e 3a 20 52 6f 75 74 65 20 54 | .,.http)..<rt.aa:nn:nn>:.Route.T |
| 2d1c0 | 61 72 67 65 74 20 72 65 67 75 6c 61 72 20 65 78 70 72 65 73 73 69 6f 6e 2e 00 3c 73 6f 6f 20 61 | arget.regular.expression..<soo.a |
| 2d1e0 | 61 3a 6e 6e 3a 6e 6e 3e 3a 20 53 69 74 65 20 6f 66 20 4f 72 69 67 69 6e 20 72 65 67 75 6c 61 72 | a:nn:nn>:.Site.of.Origin.regular |
| 2d200 | 20 65 78 70 72 65 73 73 69 6f 6e 2e 00 3c 73 74 61 72 74 3e 2d 3c 65 6e 64 3e 3a 20 4e 75 6d 62 | .expression..<start>-<end>:.Numb |
| 2d220 | 65 72 65 64 20 70 6f 72 74 20 72 61 6e 67 65 20 28 65 2e 67 2e 2c 20 31 30 30 31 2d 31 30 30 35 | ered.port.range.(e.g.,.1001-1005 |
| 2d240 | 29 2e 00 3c 78 2e 78 2e 78 2e 78 2f 78 3e 3a 20 53 75 62 6e 65 74 20 74 6f 20 6d 61 74 63 68 2e | )..<x.x.x.x/x>:.Subnet.to.match. |
| 2d260 | 00 3c 78 2e 78 2e 78 2e 78 3e 2d 3c 78 2e 78 2e 78 2e 78 3e 3a 20 49 50 20 72 61 6e 67 65 20 74 | .<x.x.x.x>-<x.x.x.x>:.IP.range.t |
| 2d280 | 6f 20 6d 61 74 63 68 2e 00 3c 78 2e 78 2e 78 2e 78 3e 3a 20 49 50 20 61 64 64 72 65 73 73 20 74 | o.match..<x.x.x.x>:.IP.address.t |
| 2d2a0 | 6f 20 6d 61 74 63 68 2e 00 41 20 2a 2a 64 6f 6d 61 69 6e 20 67 72 6f 75 70 2a 2a 20 72 65 70 72 | o.match..A.**domain.group**.repr |
| 2d2c0 | 65 73 65 6e 74 73 20 61 20 63 6f 6c 6c 65 63 74 69 6f 6e 20 6f 66 20 64 6f 6d 61 69 6e 73 2e 00 | esents.a.collection.of.domains.. |
| 2d2e0 | 41 20 2a 2a 6d 61 63 20 67 72 6f 75 70 2a 2a 20 72 65 70 72 65 73 65 6e 74 73 20 61 20 63 6f 6c | A.**mac.group**.represents.a.col |
| 2d300 | 6c 65 63 74 69 6f 6e 20 6f 66 20 6d 61 63 20 61 64 64 72 65 73 73 65 73 2e 00 41 20 2a 2a 70 6f | lection.of.mac.addresses..A.**po |
| 2d320 | 72 74 20 67 72 6f 75 70 2a 2a 20 72 65 70 72 65 73 65 6e 74 73 20 6f 6e 6c 79 20 70 6f 72 74 20 | rt.group**.represents.only.port. |
| 2d340 | 6e 75 6d 62 65 72 73 2c 20 6e 6f 74 20 74 68 65 20 70 72 6f 74 6f 63 6f 6c 2e 20 50 6f 72 74 20 | numbers,.not.the.protocol..Port. |
| 2d360 | 67 72 6f 75 70 73 20 63 61 6e 20 62 65 20 72 65 66 65 72 65 6e 63 65 64 20 66 6f 72 20 65 69 74 | groups.can.be.referenced.for.eit |
| 2d380 | 68 65 72 20 54 43 50 20 6f 72 20 55 44 50 2e 20 49 74 20 69 73 20 72 65 63 6f 6d 6d 65 6e 64 65 | her.TCP.or.UDP..It.is.recommende |
| 2d3a0 | 64 20 74 68 61 74 20 54 43 50 20 61 6e 64 20 55 44 50 20 67 72 6f 75 70 73 20 61 72 65 20 63 72 | d.that.TCP.and.UDP.groups.are.cr |
| 2d3c0 | 65 61 74 65 64 20 73 65 70 61 72 61 74 65 6c 79 20 74 6f 20 61 76 6f 69 64 20 61 63 63 69 64 65 | eated.separately.to.avoid.accide |
| 2d3e0 | 6e 74 61 6c 6c 79 20 66 69 6c 74 65 72 69 6e 67 20 75 6e 6e 65 63 65 73 73 61 72 79 20 70 6f 72 | ntally.filtering.unnecessary.por |
| 2d400 | 74 73 2e 20 52 61 6e 67 65 73 20 6f 66 20 70 6f 72 74 73 20 63 61 6e 20 62 65 20 73 70 65 63 69 | ts..Ranges.of.ports.can.be.speci |
| 2d420 | 66 69 65 64 20 62 79 20 75 73 69 6e 67 20 60 2d 60 2e 00 41 20 2a 62 69 74 2a 20 69 73 20 77 72 | fied.by.using.`-`..A.*bit*.is.wr |
| 2d440 | 69 74 74 65 6e 20 61 73 20 2a 2a 62 69 74 2a 2a 2c 00 41 20 34 20 73 74 65 70 20 70 6f 72 74 20 | itten.as.**bit**,.A.4.step.port. |
| 2d460 | 6b 6e 6f 63 6b 69 6e 67 20 65 78 61 6d 70 6c 65 20 69 73 20 73 68 6f 77 6e 20 6e 65 78 74 3a 00 | knocking.example.is.shown.next:. |
| 2d480 | 41 20 3a 61 62 62 72 3a 60 4e 49 53 20 28 4e 65 74 77 6f 72 6b 20 49 6e 66 6f 72 6d 61 74 69 6f | A.:abbr:`NIS.(Network.Informatio |
| 2d4a0 | 6e 20 53 65 72 76 69 63 65 29 60 20 64 6f 6d 61 69 6e 20 63 61 6e 20 62 65 20 73 65 74 20 74 6f | n.Service)`.domain.can.be.set.to |
| 2d4c0 | 20 62 65 20 75 73 65 64 20 66 6f 72 20 44 48 43 50 76 36 20 63 6c 69 65 6e 74 73 2e 00 41 20 42 | .be.used.for.DHCPv6.clients..A.B |
| 2d4e0 | 47 50 20 63 6f 6e 66 65 64 65 72 61 74 69 6f 6e 20 64 69 76 69 64 65 73 20 6f 75 72 20 41 53 20 | GP.confederation.divides.our.AS. |
| 2d500 | 69 6e 74 6f 20 73 75 62 2d 41 53 65 73 20 74 6f 20 72 65 64 75 63 65 20 74 68 65 20 6e 75 6d 62 | into.sub-ASes.to.reduce.the.numb |
| 2d520 | 65 72 20 6f 66 20 72 65 71 75 69 72 65 64 20 49 42 47 50 20 70 65 65 72 69 6e 67 73 2e 20 57 69 | er.of.required.IBGP.peerings..Wi |
| 2d540 | 74 68 69 6e 20 61 20 73 75 62 2d 41 53 20 77 65 20 73 74 69 6c 6c 20 72 65 71 75 69 72 65 20 66 | thin.a.sub-AS.we.still.require.f |
| 2d560 | 75 6c 6c 2d 6d 65 73 68 20 49 42 47 50 20 62 75 74 20 62 65 74 77 65 65 6e 20 74 68 65 73 65 20 | ull-mesh.IBGP.but.between.these. |
| 2d580 | 73 75 62 2d 41 53 65 73 20 77 65 20 75 73 65 20 73 6f 6d 65 74 68 69 6e 67 20 74 68 61 74 20 6c | sub-ASes.we.use.something.that.l |
| 2d5a0 | 6f 6f 6b 73 20 6c 69 6b 65 20 45 42 47 50 20 62 75 74 20 62 65 68 61 76 65 73 20 6c 69 6b 65 20 | ooks.like.EBGP.but.behaves.like. |
| 2d5c0 | 49 42 47 50 20 28 63 61 6c 6c 65 64 20 63 6f 6e 66 65 64 65 72 61 74 69 6f 6e 20 42 47 50 29 2e | IBGP.(called.confederation.BGP). |
| 2d5e0 | 20 43 6f 6e 66 65 64 65 72 61 74 69 6f 6e 20 6d 65 63 68 61 6e 69 73 6d 20 69 73 20 64 65 73 63 | .Confederation.mechanism.is.desc |
| 2d600 | 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 35 30 36 35 60 00 41 20 42 47 50 2d 73 70 65 61 6b | ribed.in.:rfc:`5065`.A.BGP-speak |
| 2d620 | 69 6e 67 20 72 6f 75 74 65 72 20 6c 69 6b 65 20 56 79 4f 53 20 63 61 6e 20 72 65 74 72 69 65 76 | ing.router.like.VyOS.can.retriev |
| 2d640 | 65 20 52 4f 41 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 72 6f 6d 20 52 50 4b 49 20 22 52 65 6c | e.ROA.information.from.RPKI."Rel |
| 2d660 | 79 69 6e 67 20 50 61 72 74 79 20 73 6f 66 74 77 61 72 65 22 20 28 6f 66 74 65 6e 20 6a 75 73 74 | ying.Party.software".(often.just |
| 2d680 | 20 63 61 6c 6c 65 64 20 61 6e 20 22 52 50 4b 49 20 73 65 72 76 65 72 22 20 6f 72 20 22 52 50 4b | .called.an."RPKI.server".or."RPK |
| 2d6a0 | 49 20 76 61 6c 69 64 61 74 6f 72 22 29 20 62 79 20 75 73 69 6e 67 20 3a 61 62 62 72 3a 60 52 54 | I.validator").by.using.:abbr:`RT |
| 2d6c0 | 52 20 28 52 50 4b 49 20 74 6f 20 52 6f 75 74 65 72 29 60 20 70 72 6f 74 6f 63 6f 6c 2e 20 54 68 | R.(RPKI.to.Router)`.protocol..Th |
| 2d6e0 | 65 72 65 20 61 72 65 20 73 65 76 65 72 61 6c 20 6f 70 65 6e 20 73 6f 75 72 63 65 20 69 6d 70 6c | ere.are.several.open.source.impl |
| 2d700 | 65 6d 65 6e 74 61 74 69 6f 6e 73 20 74 6f 20 63 68 6f 6f 73 65 20 66 72 6f 6d 2c 20 73 75 63 68 | ementations.to.choose.from,.such |
| 2d720 | 20 61 73 20 4e 4c 4e 65 74 4c 61 62 73 27 20 52 6f 75 74 69 6e 61 74 6f 72 5f 20 28 77 72 69 74 | .as.NLNetLabs'.Routinator_.(writ |
| 2d740 | 74 65 6e 20 69 6e 20 52 75 73 74 29 2c 20 43 6c 6f 75 64 66 6c 61 72 65 27 73 20 47 6f 52 54 52 | ten.in.Rust),.Cloudflare's.GoRTR |
| 2d760 | 5f 20 61 6e 64 20 4f 63 74 6f 52 50 4b 49 5f 20 28 77 72 69 74 74 65 6e 20 69 6e 20 47 6f 29 2c | _.and.OctoRPKI_.(written.in.Go), |
| 2d780 | 20 61 6e 64 20 52 49 50 45 20 4e 43 43 27 73 20 52 50 4b 49 20 56 61 6c 69 64 61 74 6f 72 5f 20 | .and.RIPE.NCC's.RPKI.Validator_. |
| 2d7a0 | 28 77 72 69 74 74 65 6e 20 69 6e 20 4a 61 76 61 29 2e 20 54 68 65 20 52 54 52 20 70 72 6f 74 6f | (written.in.Java)..The.RTR.proto |
| 2d7c0 | 63 6f 6c 20 69 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 38 32 31 30 60 2e | col.is.described.in.:rfc:`8210`. |
| 2d7e0 | 00 41 20 42 47 50 2d 73 70 65 61 6b 69 6e 67 20 72 6f 75 74 65 72 20 6c 69 6b 65 20 56 79 4f 53 | .A.BGP-speaking.router.like.VyOS |
| 2d800 | 20 63 61 6e 20 72 65 74 72 69 65 76 65 20 52 4f 41 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 72 | .can.retrieve.ROA.information.fr |
| 2d820 | 6f 6d 20 52 50 4b 49 20 22 52 65 6c 79 69 6e 67 20 50 61 72 74 79 20 73 6f 66 74 77 61 72 65 22 | om.RPKI."Relying.Party.software" |
| 2d840 | 20 28 6f 66 74 65 6e 20 6a 75 73 74 20 63 61 6c 6c 65 64 20 61 6e 20 22 52 50 4b 49 20 73 65 72 | .(often.just.called.an."RPKI.ser |
| 2d860 | 76 65 72 22 20 6f 72 20 22 52 50 4b 49 20 76 61 6c 69 64 61 74 6f 72 22 29 20 62 79 20 75 73 69 | ver".or."RPKI.validator").by.usi |
| 2d880 | 6e 67 20 3a 61 62 62 72 3a 60 52 54 52 20 28 52 50 4b 49 20 74 6f 20 52 6f 75 74 65 72 29 60 20 | ng.:abbr:`RTR.(RPKI.to.Router)`. |
| 2d8a0 | 70 72 6f 74 6f 63 6f 6c 2e 20 54 68 65 72 65 20 61 72 65 20 73 65 76 65 72 61 6c 20 6f 70 65 6e | protocol..There.are.several.open |
| 2d8c0 | 20 73 6f 75 72 63 65 20 69 6d 70 6c 65 6d 65 6e 74 61 74 69 6f 6e 73 20 74 6f 20 63 68 6f 6f 73 | .source.implementations.to.choos |
| 2d8e0 | 65 20 66 72 6f 6d 2c 20 73 75 63 68 20 61 73 20 4e 4c 4e 65 74 4c 61 62 73 27 20 52 6f 75 74 69 | e.from,.such.as.NLNetLabs'.Routi |
| 2d900 | 6e 61 74 6f 72 5f 20 28 77 72 69 74 74 65 6e 20 69 6e 20 52 75 73 74 29 2c 20 4f 70 65 6e 42 53 | nator_.(written.in.Rust),.OpenBS |
| 2d920 | 44 27 73 20 72 70 6b 69 2d 63 6c 69 65 6e 74 5f 20 28 77 72 69 74 74 65 6e 20 69 6e 20 43 29 2c | D's.rpki-client_.(written.in.C), |
| 2d940 | 20 61 6e 64 20 53 74 61 79 52 54 52 5f 20 28 77 72 69 74 74 65 6e 20 69 6e 20 47 6f 29 2e 20 54 | .and.StayRTR_.(written.in.Go)..T |
| 2d960 | 68 65 20 52 54 52 20 70 72 6f 74 6f 63 6f 6c 20 69 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 | he.RTR.protocol.is.described.in. |
| 2d980 | 3a 72 66 63 3a 60 38 32 31 30 60 2e 00 41 20 42 72 69 64 67 65 20 69 73 20 61 20 77 61 79 20 74 | :rfc:`8210`..A.Bridge.is.a.way.t |
| 2d9a0 | 6f 20 63 6f 6e 6e 65 63 74 20 74 77 6f 20 45 74 68 65 72 6e 65 74 20 73 65 67 6d 65 6e 74 73 20 | o.connect.two.Ethernet.segments. |
| 2d9c0 | 74 6f 67 65 74 68 65 72 20 69 6e 20 61 20 70 72 6f 74 6f 63 6f 6c 20 69 6e 64 65 70 65 6e 64 65 | together.in.a.protocol.independe |
| 2d9e0 | 6e 74 20 77 61 79 2e 20 50 61 63 6b 65 74 73 20 61 72 65 20 66 6f 72 77 61 72 64 65 64 20 62 61 | nt.way..Packets.are.forwarded.ba |
| 2da00 | 73 65 64 20 6f 6e 20 45 74 68 65 72 6e 65 74 20 61 64 64 72 65 73 73 2c 20 72 61 74 68 65 72 20 | sed.on.Ethernet.address,.rather. |
| 2da20 | 74 68 61 6e 20 49 50 20 61 64 64 72 65 73 73 20 28 6c 69 6b 65 20 61 20 72 6f 75 74 65 72 29 2e | than.IP.address.(like.a.router). |
| 2da40 | 20 53 69 6e 63 65 20 66 6f 72 77 61 72 64 69 6e 67 20 69 73 20 64 6f 6e 65 20 61 74 20 4c 61 79 | .Since.forwarding.is.done.at.Lay |
| 2da60 | 65 72 20 32 2c 20 61 6c 6c 20 70 72 6f 74 6f 63 6f 6c 73 20 63 61 6e 20 67 6f 20 74 72 61 6e 73 | er.2,.all.protocols.can.go.trans |
| 2da80 | 70 61 72 65 6e 74 6c 79 20 74 68 72 6f 75 67 68 20 61 20 62 72 69 64 67 65 2e 20 54 68 65 20 4c | parently.through.a.bridge..The.L |
| 2daa0 | 69 6e 75 78 20 62 72 69 64 67 65 20 63 6f 64 65 20 69 6d 70 6c 65 6d 65 6e 74 73 20 61 20 73 75 | inux.bridge.code.implements.a.su |
| 2dac0 | 62 73 65 74 20 6f 66 20 74 68 65 20 41 4e 53 49 2f 49 45 45 45 20 38 30 32 2e 31 64 20 73 74 61 | bset.of.the.ANSI/IEEE.802.1d.sta |
| 2dae0 | 6e 64 61 72 64 2e 00 41 20 47 52 45 20 74 75 6e 6e 65 6c 20 6f 70 65 72 61 74 65 73 20 61 74 20 | ndard..A.GRE.tunnel.operates.at. |
| 2db00 | 6c 61 79 65 72 20 33 20 6f 66 20 74 68 65 20 4f 53 49 20 6d 6f 64 65 6c 20 61 6e 64 20 69 73 20 | layer.3.of.the.OSI.model.and.is. |
| 2db20 | 72 65 70 72 65 73 65 6e 74 65 64 20 62 79 20 49 50 20 70 72 6f 74 6f 63 6f 6c 20 34 37 2e 20 54 | represented.by.IP.protocol.47..T |
| 2db40 | 68 65 20 6d 61 69 6e 20 62 65 6e 65 66 69 74 20 6f 66 20 61 20 47 52 45 20 74 75 6e 6e 65 6c 20 | he.main.benefit.of.a.GRE.tunnel. |
| 2db60 | 69 73 20 74 68 61 74 20 79 6f 75 20 61 72 65 20 61 62 6c 65 20 74 6f 20 63 61 72 72 79 20 6d 75 | is.that.you.are.able.to.carry.mu |
| 2db80 | 6c 74 69 70 6c 65 20 70 72 6f 74 6f 63 6f 6c 73 20 69 6e 73 69 64 65 20 74 68 65 20 73 61 6d 65 | ltiple.protocols.inside.the.same |
| 2dba0 | 20 74 75 6e 6e 65 6c 2e 20 47 52 45 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 73 20 6d 75 6c 74 69 | .tunnel..GRE.also.supports.multi |
| 2dbc0 | 63 61 73 74 20 74 72 61 66 66 69 63 20 61 6e 64 20 73 75 70 70 6f 72 74 73 20 72 6f 75 74 69 6e | cast.traffic.and.supports.routin |
| 2dbe0 | 67 20 70 72 6f 74 6f 63 6f 6c 73 20 74 68 61 74 20 6c 65 76 65 72 61 67 65 20 6d 75 6c 74 69 63 | g.protocols.that.leverage.multic |
| 2dc00 | 61 73 74 20 74 6f 20 66 6f 72 6d 20 6e 65 69 67 68 62 6f 72 20 61 64 6a 61 63 65 6e 63 69 65 73 | ast.to.form.neighbor.adjacencies |
| 2dc20 | 2e 00 41 20 52 75 6c 65 2d 53 65 74 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 65 | ..A.Rule-Set.can.be.applied.to.e |
| 2dc40 | 76 65 72 79 20 69 6e 74 65 72 66 61 63 65 3a 00 41 20 53 4e 54 50 20 73 65 72 76 65 72 20 61 64 | very.interface:.A.SNTP.server.ad |
| 2dc60 | 64 72 65 73 73 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 20 66 6f 72 20 44 48 43 50 76 | dress.can.be.specified.for.DHCPv |
| 2dc80 | 36 20 63 6c 69 65 6e 74 73 2e 00 41 20 56 52 46 20 64 65 76 69 63 65 20 69 73 20 63 72 65 61 74 | 6.clients..A.VRF.device.is.creat |
| 2dca0 | 65 64 20 77 69 74 68 20 61 6e 20 61 73 73 6f 63 69 61 74 65 64 20 72 6f 75 74 65 20 74 61 62 6c | ed.with.an.associated.route.tabl |
| 2dcc0 | 65 2e 20 4e 65 74 77 6f 72 6b 20 69 6e 74 65 72 66 61 63 65 73 20 61 72 65 20 74 68 65 6e 20 65 | e..Network.interfaces.are.then.e |
| 2dce0 | 6e 73 6c 61 76 65 64 20 74 6f 20 61 20 56 52 46 20 64 65 76 69 63 65 2e 00 41 20 56 79 4f 53 20 | nslaved.to.a.VRF.device..A.VyOS. |
| 2dd00 | 47 52 45 20 74 75 6e 6e 65 6c 20 63 61 6e 20 63 61 72 72 79 20 62 6f 74 68 20 49 50 76 34 20 61 | GRE.tunnel.can.carry.both.IPv4.a |
| 2dd20 | 6e 64 20 49 50 76 36 20 74 72 61 66 66 69 63 20 61 6e 64 20 63 61 6e 20 61 6c 73 6f 20 62 65 20 | nd.IPv6.traffic.and.can.also.be. |
| 2dd40 | 63 72 65 61 74 65 64 20 6f 76 65 72 20 65 69 74 68 65 72 20 49 50 76 34 20 28 67 72 65 29 20 6f | created.over.either.IPv4.(gre).o |
| 2dd60 | 72 20 49 50 76 36 20 28 69 70 36 67 72 65 29 2e 00 41 20 56 79 4f 53 20 72 6f 75 74 65 72 20 77 | r.IPv6.(ip6gre)..A.VyOS.router.w |
| 2dd80 | 69 74 68 20 74 77 6f 20 69 6e 74 65 72 66 61 63 65 73 20 2d 20 65 74 68 30 20 28 57 41 4e 29 20 | ith.two.interfaces.-.eth0.(WAN). |
| 2dda0 | 61 6e 64 20 65 74 68 31 20 28 4c 41 4e 29 20 2d 20 69 73 20 72 65 71 75 69 72 65 64 20 74 6f 20 | and.eth1.(LAN).-.is.required.to. |
| 2ddc0 | 69 6d 70 6c 65 6d 65 6e 74 20 61 20 73 70 6c 69 74 2d 68 6f 72 69 7a 6f 6e 20 44 4e 53 20 63 6f | implement.a.split-horizon.DNS.co |
| 2dde0 | 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 6f 72 20 65 78 61 6d 70 6c 65 2e 63 6f 6d 2e 00 41 20 62 | nfiguration.for.example.com..A.b |
| 2de00 | 61 73 69 63 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 72 65 71 75 69 72 65 73 20 61 20 74 75 | asic.configuration.requires.a.tu |
| 2de20 | 6e 6e 65 6c 20 73 6f 75 72 63 65 20 28 73 6f 75 72 63 65 2d 61 64 64 72 65 73 73 29 2c 20 61 20 | nnel.source.(source-address),.a. |
| 2de40 | 74 75 6e 6e 65 6c 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 28 72 65 6d 6f 74 65 29 2c 20 61 6e 20 | tunnel.destination.(remote),.an. |
| 2de60 | 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e 20 74 79 70 65 20 28 67 72 65 29 2c 20 61 6e 64 20 61 6e | encapsulation.type.(gre),.and.an |
| 2de80 | 20 61 64 64 72 65 73 73 20 28 69 70 76 34 2f 69 70 76 36 29 2e 20 42 65 6c 6f 77 20 69 73 20 61 | .address.(ipv4/ipv6)..Below.is.a |
| 2dea0 | 20 62 61 73 69 63 20 49 50 76 34 20 6f 6e 6c 79 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 65 | .basic.IPv4.only.configuration.e |
| 2dec0 | 78 61 6d 70 6c 65 20 74 61 6b 65 6e 20 66 72 6f 6d 20 61 20 56 79 4f 53 20 72 6f 75 74 65 72 20 | xample.taken.from.a.VyOS.router. |
| 2dee0 | 61 6e 64 20 61 20 43 69 73 63 6f 20 49 4f 53 20 72 6f 75 74 65 72 2e 20 54 68 65 20 6d 61 69 6e | and.a.Cisco.IOS.router..The.main |
| 2df00 | 20 64 69 66 66 65 72 65 6e 63 65 20 62 65 74 77 65 65 6e 20 74 68 65 73 65 20 74 77 6f 20 63 6f | .difference.between.these.two.co |
| 2df20 | 6e 66 69 67 75 72 61 74 69 6f 6e 73 20 69 73 20 74 68 61 74 20 56 79 4f 53 20 72 65 71 75 69 72 | nfigurations.is.that.VyOS.requir |
| 2df40 | 65 73 20 79 6f 75 20 65 78 70 6c 69 63 69 74 6c 79 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 | es.you.explicitly.configure.the. |
| 2df60 | 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e 20 74 79 70 65 2e 20 54 68 65 20 43 69 73 63 6f 20 72 6f | encapsulation.type..The.Cisco.ro |
| 2df80 | 75 74 65 72 20 64 65 66 61 75 6c 74 73 20 74 6f 20 47 52 45 20 49 50 20 6f 74 68 65 72 77 69 73 | uter.defaults.to.GRE.IP.otherwis |
| 2dfa0 | 65 20 69 74 20 77 6f 75 6c 64 20 68 61 76 65 20 74 6f 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 | e.it.would.have.to.be.configured |
| 2dfc0 | 20 61 73 20 77 65 6c 6c 2e 00 41 20 62 61 73 69 63 20 69 6e 74 72 6f 64 75 63 74 69 6f 6e 20 74 | .as.well..A.basic.introduction.t |
| 2dfe0 | 6f 20 7a 6f 6e 65 2d 62 61 73 65 64 20 66 69 72 65 77 61 6c 6c 73 20 63 61 6e 20 62 65 20 66 6f | o.zone-based.firewalls.can.be.fo |
| 2e000 | 75 6e 64 20 60 68 65 72 65 20 3c 68 74 74 70 73 3a 2f 2f 73 75 70 70 6f 72 74 2e 76 79 6f 73 2e | und.`here.<https://support.vyos. |
| 2e020 | 69 6f 2f 65 6e 2f 6b 62 2f 61 72 74 69 63 6c 65 73 2f 61 2d 70 72 69 6d 65 72 2d 74 6f 2d 7a 6f | io/en/kb/articles/a-primer-to-zo |
| 2e040 | 6e 65 2d 62 61 73 65 64 2d 66 69 72 65 77 61 6c 6c 3e 60 5f 2c 20 61 6e 64 20 61 6e 20 65 78 61 | ne-based-firewall>`_,.and.an.exa |
| 2e060 | 6d 70 6c 65 20 61 74 20 3a 72 65 66 3a 60 65 78 61 6d 70 6c 65 73 2d 7a 6f 6e 65 2d 70 6f 6c 69 | mple.at.:ref:`examples-zone-poli |
| 2e080 | 63 79 60 2e 00 41 20 62 72 69 64 67 65 20 6e 61 6d 65 64 20 60 62 72 31 30 30 60 00 41 20 62 72 | cy`..A.bridge.named.`br100`.A.br |
| 2e0a0 | 69 65 66 20 64 65 73 63 72 69 70 74 69 6f 6e 20 77 68 61 74 20 74 68 69 73 20 6e 65 74 77 6f 72 | ief.description.what.this.networ |
| 2e0c0 | 6b 20 69 73 20 61 6c 6c 20 61 62 6f 75 74 2e 00 41 20 63 6c 61 73 73 20 63 61 6e 20 68 61 76 65 | k.is.all.about..A.class.can.have |
| 2e0e0 | 20 6d 75 6c 74 69 70 6c 65 20 6d 61 74 63 68 20 66 69 6c 74 65 72 73 3a 00 41 20 63 6f 6d 6d 6f | .multiple.match.filters:.A.commo |
| 2e100 | 6e 20 65 78 61 6d 70 6c 65 20 69 73 20 74 68 65 20 63 61 73 65 20 6f 66 20 73 6f 6d 65 20 70 6f | n.example.is.the.case.of.some.po |
| 2e120 | 6c 69 63 69 65 73 20 77 68 69 63 68 2c 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 62 65 20 65 66 66 | licies.which,.in.order.to.be.eff |
| 2e140 | 65 63 74 69 76 65 2c 20 74 68 65 79 20 6e 65 65 64 20 74 6f 20 62 65 20 61 70 70 6c 69 65 64 20 | ective,.they.need.to.be.applied. |
| 2e160 | 74 6f 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 74 68 61 74 20 69 73 20 64 69 72 65 63 74 6c 79 | to.an.interface.that.is.directly |
| 2e180 | 20 63 6f 6e 6e 65 63 74 65 64 20 77 68 65 72 65 20 74 68 65 20 62 6f 74 74 6c 65 6e 65 63 6b 20 | .connected.where.the.bottleneck. |
| 2e1a0 | 69 73 2e 20 49 66 20 79 6f 75 72 20 72 6f 75 74 65 72 20 69 73 20 6e 6f 74 20 64 69 72 65 63 74 | is..If.your.router.is.not.direct |
| 2e1c0 | 6c 79 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 74 68 65 20 62 6f 74 74 6c 65 6e 65 63 6b 2c 20 | ly.connected.to.the.bottleneck,. |
| 2e1e0 | 62 75 74 20 73 6f 6d 65 20 68 6f 70 20 62 65 66 6f 72 65 20 69 74 2c 20 79 6f 75 20 63 61 6e 20 | but.some.hop.before.it,.you.can. |
| 2e200 | 65 6d 75 6c 61 74 65 20 74 68 65 20 62 6f 74 74 6c 65 6e 65 63 6b 20 62 79 20 65 6d 62 65 64 64 | emulate.the.bottleneck.by.embedd |
| 2e220 | 69 6e 67 20 79 6f 75 72 20 6e 6f 6e 2d 73 68 61 70 69 6e 67 20 70 6f 6c 69 63 79 20 69 6e 74 6f | ing.your.non-shaping.policy.into |
| 2e240 | 20 61 20 63 6c 61 73 73 66 75 6c 20 73 68 61 70 69 6e 67 20 6f 6e 65 20 73 6f 20 74 68 61 74 20 | .a.classful.shaping.one.so.that. |
| 2e260 | 69 74 20 74 61 6b 65 73 20 65 66 66 65 63 74 2e 00 41 20 63 6f 6d 70 6c 65 74 65 20 4c 44 41 50 | it.takes.effect..A.complete.LDAP |
| 2e280 | 20 61 75 74 68 20 4f 70 65 6e 56 50 4e 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f 75 6c | .auth.OpenVPN.configuration.coul |
| 2e2a0 | 64 20 6c 6f 6f 6b 20 6c 69 6b 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 6c | d.look.like.the.following.exampl |
| 2e2c0 | 65 3a 00 41 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 65 78 61 6d 70 6c 65 20 63 61 6e 20 62 | e:.A.configuration.example.can.b |
| 2e2e0 | 65 20 66 6f 75 6e 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 2e 20 49 6e 20 74 68 69 73 | e.found.in.this.section..In.this |
| 2e300 | 20 73 69 6d 70 6c 69 66 69 65 64 20 73 63 65 6e 61 72 69 6f 2c 20 6d 61 69 6e 20 74 68 69 6e 67 | .simplified.scenario,.main.thing |
| 2e320 | 73 20 74 6f 20 62 65 20 63 6f 6e 73 69 64 65 72 65 64 20 61 72 65 3a 00 41 20 63 6f 6e 6e 65 63 | s.to.be.considered.are:.A.connec |
| 2e340 | 74 69 6f 6e 20 61 74 74 65 6d 70 74 20 77 69 6c 6c 20 62 65 20 73 68 6f 77 6e 20 61 73 3a 00 41 | tion.attempt.will.be.shown.as:.A |
| 2e360 | 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 20 69 73 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 | .default.route.is.automatically. |
| 2e380 | 69 6e 73 74 61 6c 6c 65 64 20 6f 6e 63 65 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 | installed.once.the.interface.is. |
| 2e3a0 | 75 70 2e 20 54 6f 20 63 68 61 6e 67 65 20 74 68 69 73 20 62 65 68 61 76 69 6f 72 20 75 73 65 20 | up..To.change.this.behavior.use. |
| 2e3c0 | 74 68 65 20 60 60 6e 6f 2d 64 65 66 61 75 6c 74 2d 72 6f 75 74 65 60 60 20 43 4c 49 20 6f 70 74 | the.``no-default-route``.CLI.opt |
| 2e3e0 | 69 6f 6e 2e 00 41 20 64 65 73 63 72 69 70 74 69 6f 6e 20 63 61 6e 20 62 65 20 61 64 64 65 64 20 | ion..A.description.can.be.added. |
| 2e400 | 66 6f 72 20 65 61 63 68 20 61 6e 64 20 65 76 65 72 79 20 75 6e 69 71 75 65 20 72 65 6c 61 79 20 | for.each.and.every.unique.relay. |
| 2e420 | 49 44 2e 20 54 68 69 73 20 69 73 20 75 73 65 66 75 6c 20 74 6f 20 64 69 73 74 69 6e 67 75 69 73 | ID..This.is.useful.to.distinguis |
| 2e440 | 68 20 62 65 74 77 65 65 6e 20 6d 75 6c 74 69 70 6c 65 20 64 69 66 66 65 72 65 6e 74 20 70 6f 72 | h.between.multiple.different.por |
| 2e460 | 74 73 2f 61 70 70 6c 69 61 63 74 69 6f 6e 73 2e 00 41 20 64 65 73 63 72 69 70 74 69 6f 6e 20 63 | ts/appliactions..A.description.c |
| 2e480 | 61 6e 20 62 65 20 61 64 64 65 64 20 66 6f 72 20 65 61 63 68 20 61 6e 64 20 65 76 65 72 79 20 75 | an.be.added.for.each.and.every.u |
| 2e4a0 | 6e 69 71 75 65 20 72 65 6c 61 79 20 49 44 2e 20 54 68 69 73 20 69 73 20 75 73 65 66 75 6c 20 74 | nique.relay.ID..This.is.useful.t |
| 2e4c0 | 6f 20 64 69 73 74 69 6e 67 75 69 73 68 20 62 65 74 77 65 65 6e 20 6d 75 6c 74 69 70 6c 65 20 64 | o.distinguish.between.multiple.d |
| 2e4e0 | 69 66 66 65 72 65 6e 74 20 70 6f 72 74 73 2f 61 70 70 6c 69 63 61 74 69 6f 6e 73 2e 00 41 20 64 | ifferent.ports/applications..A.d |
| 2e500 | 69 73 61 62 6c 65 64 20 67 72 6f 75 70 20 77 69 6c 6c 20 62 65 20 72 65 6d 6f 76 65 64 20 66 72 | isabled.group.will.be.removed.fr |
| 2e520 | 6f 6d 20 74 68 65 20 56 52 52 50 20 70 72 6f 63 65 73 73 20 61 6e 64 20 79 6f 75 72 20 72 6f 75 | om.the.VRRP.process.and.your.rou |
| 2e540 | 74 65 72 20 77 69 6c 6c 20 6e 6f 74 20 70 61 72 74 69 63 69 70 61 74 65 20 69 6e 20 56 52 52 50 | ter.will.not.participate.in.VRRP |
| 2e560 | 20 66 6f 72 20 74 68 61 74 20 56 52 49 44 2e 20 49 74 20 77 69 6c 6c 20 64 69 73 61 70 70 65 61 | .for.that.VRID..It.will.disappea |
| 2e580 | 72 20 66 72 6f 6d 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 6d 6f 64 65 20 63 6f 6d 6d 61 6e 64 73 | r.from.operational.mode.commands |
| 2e5a0 | 20 6f 75 74 70 75 74 2c 20 72 61 74 68 65 72 20 74 68 61 6e 20 65 6e 74 65 72 20 74 68 65 20 62 | .output,.rather.than.enter.the.b |
| 2e5c0 | 61 63 6b 75 70 20 73 74 61 74 65 2e 00 41 20 64 6f 6d 61 69 6e 20 6e 61 6d 65 20 69 73 20 74 68 | ackup.state..A.domain.name.is.th |
| 2e5e0 | 65 20 6c 61 62 65 6c 20 28 6e 61 6d 65 29 20 61 73 73 69 67 6e 65 64 20 74 6f 20 61 20 63 6f 6d | e.label.(name).assigned.to.a.com |
| 2e600 | 70 75 74 65 72 20 6e 65 74 77 6f 72 6b 20 61 6e 64 20 69 73 20 74 68 75 73 20 75 6e 69 71 75 65 | puter.network.and.is.thus.unique |
| 2e620 | 2e 20 56 79 4f 53 20 61 70 70 65 6e 64 73 20 74 68 65 20 64 6f 6d 61 69 6e 20 6e 61 6d 65 20 61 | ..VyOS.appends.the.domain.name.a |
| 2e640 | 73 20 61 20 73 75 66 66 69 78 20 74 6f 20 61 6e 79 20 75 6e 71 75 61 6c 69 66 69 65 64 20 6e 61 | s.a.suffix.to.any.unqualified.na |
| 2e660 | 6d 65 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 2c 20 69 66 20 79 6f 75 20 73 65 74 20 74 68 65 20 | me..For.example,.if.you.set.the. |
| 2e680 | 64 6f 6d 61 69 6e 20 6e 61 6d 65 20 60 65 78 61 6d 70 6c 65 2e 63 6f 6d 60 2c 20 61 6e 64 20 79 | domain.name.`example.com`,.and.y |
| 2e6a0 | 6f 75 20 77 6f 75 6c 64 20 70 69 6e 67 20 74 68 65 20 75 6e 71 75 61 6c 69 66 69 65 64 20 6e 61 | ou.would.ping.the.unqualified.na |
| 2e6c0 | 6d 65 20 6f 66 20 60 63 72 75 78 60 2c 20 74 68 65 6e 20 56 79 4f 53 20 71 75 61 6c 69 66 69 65 | me.of.`crux`,.then.VyOS.qualifie |
| 2e6e0 | 73 20 74 68 65 20 6e 61 6d 65 20 74 6f 20 60 63 72 75 78 2e 65 78 61 6d 70 6c 65 2e 63 6f 6d 60 | s.the.name.to.`crux.example.com` |
| 2e700 | 2e 00 41 20 64 75 6d 6d 79 20 69 6e 74 65 72 66 61 63 65 20 66 6f 72 20 74 68 65 20 70 72 6f 76 | ..A.dummy.interface.for.the.prov |
| 2e720 | 69 64 65 72 2d 61 73 73 69 67 6e 65 64 20 49 50 3b 00 41 20 66 69 72 65 77 61 6c 6c 20 6d 61 72 | ider-assigned.IP;.A.firewall.mar |
| 2e740 | 6b 20 60 60 66 77 6d 61 72 6b 60 60 20 61 6c 6c 6f 77 73 20 75 73 69 6e 67 20 6d 75 6c 74 69 70 | k.``fwmark``.allows.using.multip |
| 2e760 | 6c 65 20 70 6f 72 74 73 20 66 6f 72 20 68 69 67 68 2d 61 76 61 69 6c 61 62 69 6c 69 74 79 20 76 | le.ports.for.high-availability.v |
| 2e780 | 69 72 74 75 61 6c 2d 73 65 72 76 65 72 2e 20 49 74 20 75 73 65 73 20 66 77 6d 61 72 6b 20 76 61 | irtual-server..It.uses.fwmark.va |
| 2e7a0 | 6c 75 65 2e 00 41 20 66 75 6c 6c 20 65 78 61 6d 70 6c 65 20 6f 66 20 61 20 54 75 6e 6e 65 6c 62 | lue..A.full.example.of.a.Tunnelb |
| 2e7c0 | 72 6f 6b 65 72 2e 6e 65 74 20 63 6f 6e 66 69 67 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 61 74 | roker.net.config.can.be.found.at |
| 2e7e0 | 20 3a 72 65 66 3a 60 68 65 72 65 20 3c 65 78 61 6d 70 6c 65 73 2d 74 75 6e 6e 65 6c 62 72 6f 6b | .:ref:`here.<examples-tunnelbrok |
| 2e800 | 65 72 2d 69 70 76 36 3e 60 2e 00 41 20 67 65 6e 65 72 69 63 20 60 3c 6e 61 6d 65 3e 60 20 72 65 | er-ipv6>`..A.generic.`<name>`.re |
| 2e820 | 66 65 72 65 6e 63 69 6e 67 20 74 68 69 73 20 73 79 6e 63 20 73 65 72 76 69 63 65 2e 00 41 20 68 | ferencing.this.sync.service..A.h |
| 2e840 | 6f 73 74 6e 61 6d 65 20 69 73 20 74 68 65 20 6c 61 62 65 6c 20 28 6e 61 6d 65 29 20 61 73 73 69 | ostname.is.the.label.(name).assi |
| 2e860 | 67 6e 65 64 20 74 6f 20 61 20 6e 65 74 77 6f 72 6b 20 64 65 76 69 63 65 20 28 61 20 68 6f 73 74 | gned.to.a.network.device.(a.host |
| 2e880 | 29 20 6f 6e 20 61 20 6e 65 74 77 6f 72 6b 20 61 6e 64 20 69 73 20 75 73 65 64 20 74 6f 20 64 69 | ).on.a.network.and.is.used.to.di |
| 2e8a0 | 73 74 69 6e 67 75 69 73 68 20 6f 6e 65 20 64 65 76 69 63 65 20 66 72 6f 6d 20 61 6e 6f 74 68 65 | stinguish.one.device.from.anothe |
| 2e8c0 | 72 20 6f 6e 20 73 70 65 63 69 66 69 63 20 6e 65 74 77 6f 72 6b 73 20 6f 72 20 6f 76 65 72 20 74 | r.on.specific.networks.or.over.t |
| 2e8e0 | 68 65 20 69 6e 74 65 72 6e 65 74 2e 20 4f 6e 20 74 68 65 20 6f 74 68 65 72 20 68 61 6e 64 20 74 | he.internet..On.the.other.hand.t |
| 2e900 | 68 69 73 20 77 69 6c 6c 20 62 65 20 74 68 65 20 6e 61 6d 65 20 77 68 69 63 68 20 61 70 70 65 61 | his.will.be.the.name.which.appea |
| 2e920 | 72 73 20 6f 6e 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 6c 69 6e 65 20 70 72 6f 6d 70 74 2e 00 41 | rs.on.the.command.line.prompt..A |
| 2e940 | 20 68 75 6d 61 6e 20 72 65 61 64 61 62 6c 65 20 64 65 73 63 72 69 70 74 69 6f 6e 20 77 68 61 74 | .human.readable.description.what |
| 2e960 | 20 74 68 69 73 20 43 41 20 69 73 20 61 62 6f 75 74 2e 00 41 20 68 75 6d 61 6e 20 72 65 61 64 61 | .this.CA.is.about..A.human.reada |
| 2e980 | 62 6c 65 20 64 65 73 63 72 69 70 74 69 6f 6e 20 77 68 61 74 20 74 68 69 73 20 63 65 72 74 69 66 | ble.description.what.this.certif |
| 2e9a0 | 69 63 61 74 65 20 69 73 20 61 62 6f 75 74 2e 00 41 20 6c 69 6e 6b 20 63 61 6e 20 62 65 20 73 65 | icate.is.about..A.link.can.be.se |
| 2e9c0 | 74 75 70 20 66 6f 72 20 75 70 6c 69 6e 6b 20 74 72 61 63 6b 69 6e 67 20 76 69 61 20 74 68 65 20 | tup.for.uplink.tracking.via.the. |
| 2e9e0 | 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 6c 65 3a 00 41 20 6c 6f 6f 6b 62 61 63 6b 20 69 6e | following.example:.A.lookback.in |
| 2ea00 | 74 65 72 66 61 63 65 20 69 73 20 61 6c 77 61 79 73 20 75 70 2c 20 74 68 75 73 20 69 74 20 63 6f | terface.is.always.up,.thus.it.co |
| 2ea20 | 75 6c 64 20 62 65 20 75 73 65 64 20 66 6f 72 20 6d 61 6e 61 67 65 6d 65 6e 74 20 74 72 61 66 66 | uld.be.used.for.management.traff |
| 2ea40 | 69 63 20 6f 72 20 61 73 20 73 6f 75 72 63 65 2f 64 65 73 74 69 6e 61 74 69 6f 6e 20 66 6f 72 20 | ic.or.as.source/destination.for. |
| 2ea60 | 61 6e 64 20 3a 61 62 62 72 3a 60 49 47 50 20 28 49 6e 74 65 72 69 6f 72 20 47 61 74 65 77 61 79 | and.:abbr:`IGP.(Interior.Gateway |
| 2ea80 | 20 50 72 6f 74 6f 63 6f 6c 29 60 20 6c 69 6b 65 20 3a 72 65 66 3a 60 72 6f 75 74 69 6e 67 2d 62 | .Protocol)`.like.:ref:`routing-b |
| 2eaa0 | 67 70 60 20 73 6f 20 79 6f 75 72 20 69 6e 74 65 72 6e 61 6c 20 42 47 50 20 6c 69 6e 6b 20 69 73 | gp`.so.your.internal.BGP.link.is |
| 2eac0 | 20 6e 6f 74 20 64 65 70 65 6e 64 65 6e 74 20 6f 6e 20 70 68 79 73 69 63 61 6c 20 6c 69 6e 6b 20 | .not.dependent.on.physical.link. |
| 2eae0 | 73 74 61 74 65 73 20 61 6e 64 20 6d 75 6c 74 69 70 6c 65 20 72 6f 75 74 65 73 20 63 61 6e 20 62 | states.and.multiple.routes.can.b |
| 2eb00 | 65 20 63 68 6f 73 65 6e 20 74 6f 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 2e 20 41 20 3a | e.chosen.to.the.destination..A.: |
| 2eb20 | 72 65 66 3a 60 64 75 6d 6d 79 2d 69 6e 74 65 72 66 61 63 65 60 20 49 6e 74 65 72 66 61 63 65 20 | ref:`dummy-interface`.Interface. |
| 2eb40 | 73 68 6f 75 6c 64 20 61 6c 77 61 79 73 20 62 65 20 70 72 65 66 65 72 72 65 64 20 6f 76 65 72 20 | should.always.be.preferred.over. |
| 2eb60 | 61 20 3a 72 65 66 3a 60 6c 6f 6f 70 62 61 63 6b 2d 69 6e 74 65 72 66 61 63 65 60 20 69 6e 74 65 | a.:ref:`loopback-interface`.inte |
| 2eb80 | 72 66 61 63 65 2e 00 41 20 6c 6f 6f 70 62 61 63 6b 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 61 | rface..A.loopback.interface.is.a |
| 2eba0 | 6c 77 61 79 73 20 75 70 2c 20 74 68 75 73 20 69 74 20 63 6f 75 6c 64 20 62 65 20 75 73 65 64 20 | lways.up,.thus.it.could.be.used. |
| 2ebc0 | 66 6f 72 20 6d 61 6e 61 67 65 6d 65 6e 74 20 74 72 61 66 66 69 63 20 6f 72 20 61 73 20 73 6f 75 | for.management.traffic.or.as.sou |
| 2ebe0 | 72 63 65 2f 64 65 73 74 69 6e 61 74 69 6f 6e 20 66 6f 72 20 61 6e 64 20 3a 61 62 62 72 3a 60 49 | rce/destination.for.and.:abbr:`I |
| 2ec00 | 47 50 20 28 49 6e 74 65 72 69 6f 72 20 47 61 74 65 77 61 79 20 50 72 6f 74 6f 63 6f 6c 29 60 20 | GP.(Interior.Gateway.Protocol)`. |
| 2ec20 | 6c 69 6b 65 20 3a 72 65 66 3a 60 72 6f 75 74 69 6e 67 2d 62 67 70 60 20 73 6f 20 79 6f 75 72 20 | like.:ref:`routing-bgp`.so.your. |
| 2ec40 | 69 6e 74 65 72 6e 61 6c 20 42 47 50 20 6c 69 6e 6b 20 69 73 20 6e 6f 74 20 64 65 70 65 6e 64 65 | internal.BGP.link.is.not.depende |
| 2ec60 | 6e 74 20 6f 6e 20 70 68 79 73 69 63 61 6c 20 6c 69 6e 6b 20 73 74 61 74 65 73 20 61 6e 64 20 6d | nt.on.physical.link.states.and.m |
| 2ec80 | 75 6c 74 69 70 6c 65 20 72 6f 75 74 65 73 20 63 61 6e 20 62 65 20 63 68 6f 73 65 6e 20 74 6f 20 | ultiple.routes.can.be.chosen.to. |
| 2eca0 | 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 2e 20 41 20 3a 72 65 66 3a 60 64 75 6d 6d 79 2d 69 | the.destination..A.:ref:`dummy-i |
| 2ecc0 | 6e 74 65 72 66 61 63 65 60 20 49 6e 74 65 72 66 61 63 65 20 73 68 6f 75 6c 64 20 61 6c 77 61 79 | nterface`.Interface.should.alway |
| 2ece0 | 73 20 62 65 20 70 72 65 66 65 72 72 65 64 20 6f 76 65 72 20 61 20 3a 72 65 66 3a 60 6c 6f 6f 70 | s.be.preferred.over.a.:ref:`loop |
| 2ed00 | 62 61 63 6b 2d 69 6e 74 65 72 66 61 63 65 60 20 69 6e 74 65 72 66 61 63 65 2e 00 41 20 6d 61 6e | back-interface`.interface..A.man |
| 2ed20 | 61 67 65 64 20 64 65 76 69 63 65 20 69 73 20 61 20 6e 65 74 77 6f 72 6b 20 6e 6f 64 65 20 74 68 | aged.device.is.a.network.node.th |
| 2ed40 | 61 74 20 69 6d 70 6c 65 6d 65 6e 74 73 20 61 6e 20 53 4e 4d 50 20 69 6e 74 65 72 66 61 63 65 20 | at.implements.an.SNMP.interface. |
| 2ed60 | 74 68 61 74 20 61 6c 6c 6f 77 73 20 75 6e 69 64 69 72 65 63 74 69 6f 6e 61 6c 20 28 72 65 61 64 | that.allows.unidirectional.(read |
| 2ed80 | 2d 6f 6e 6c 79 29 20 6f 72 20 62 69 64 69 72 65 63 74 69 6f 6e 61 6c 20 28 72 65 61 64 20 61 6e | -only).or.bidirectional.(read.an |
| 2eda0 | 64 20 77 72 69 74 65 29 20 61 63 63 65 73 73 20 74 6f 20 6e 6f 64 65 2d 73 70 65 63 69 66 69 63 | d.write).access.to.node-specific |
| 2edc0 | 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2e 20 4d 61 6e 61 67 65 64 20 64 65 76 69 63 65 73 20 65 78 | .information..Managed.devices.ex |
| 2ede0 | 63 68 61 6e 67 65 20 6e 6f 64 65 2d 73 70 65 63 69 66 69 63 20 69 6e 66 6f 72 6d 61 74 69 6f 6e | change.node-specific.information |
| 2ee00 | 20 77 69 74 68 20 74 68 65 20 4e 4d 53 73 2e 20 53 6f 6d 65 74 69 6d 65 73 20 63 61 6c 6c 65 64 | .with.the.NMSs..Sometimes.called |
| 2ee20 | 20 6e 65 74 77 6f 72 6b 20 65 6c 65 6d 65 6e 74 73 2c 20 74 68 65 20 6d 61 6e 61 67 65 64 20 64 | .network.elements,.the.managed.d |
| 2ee40 | 65 76 69 63 65 73 20 63 61 6e 20 62 65 20 61 6e 79 20 74 79 70 65 20 6f 66 20 64 65 76 69 63 65 | evices.can.be.any.type.of.device |
| 2ee60 | 2c 20 69 6e 63 6c 75 64 69 6e 67 2c 20 62 75 74 20 6e 6f 74 20 6c 69 6d 69 74 65 64 20 74 6f 2c | ,.including,.but.not.limited.to, |
| 2ee80 | 20 72 6f 75 74 65 72 73 2c 20 61 63 63 65 73 73 20 73 65 72 76 65 72 73 2c 20 73 77 69 74 63 68 | .routers,.access.servers,.switch |
| 2eea0 | 65 73 2c 20 63 61 62 6c 65 20 6d 6f 64 65 6d 73 2c 20 62 72 69 64 67 65 73 2c 20 68 75 62 73 2c | es,.cable.modems,.bridges,.hubs, |
| 2eec0 | 20 49 50 20 74 65 6c 65 70 68 6f 6e 65 73 2c 20 49 50 20 76 69 64 65 6f 20 63 61 6d 65 72 61 73 | .IP.telephones,.IP.video.cameras |
| 2eee0 | 2c 20 63 6f 6d 70 75 74 65 72 20 68 6f 73 74 73 2c 20 61 6e 64 20 70 72 69 6e 74 65 72 73 2e 00 | ,.computer.hosts,.and.printers.. |
| 2ef00 | 41 20 6d 61 74 63 68 20 66 69 6c 74 65 72 20 63 61 6e 20 63 6f 6e 74 61 69 6e 20 6d 75 6c 74 69 | A.match.filter.can.contain.multi |
| 2ef20 | 70 6c 65 20 63 72 69 74 65 72 69 61 20 61 6e 64 20 77 69 6c 6c 20 6d 61 74 63 68 20 74 72 61 66 | ple.criteria.and.will.match.traf |
| 2ef40 | 66 69 63 20 69 66 20 61 6c 6c 20 74 68 6f 73 65 20 63 72 69 74 65 72 69 61 20 61 72 65 20 74 72 | fic.if.all.those.criteria.are.tr |
| 2ef60 | 75 65 2e 00 41 20 6d 61 74 63 68 20 67 72 6f 75 70 20 63 61 6e 20 63 6f 6e 74 61 69 6e 20 6d 75 | ue..A.match.group.can.contain.mu |
| 2ef80 | 6c 74 69 70 6c 65 20 63 72 69 74 65 72 69 61 20 61 6e 64 20 69 6e 68 65 72 69 74 20 74 68 65 6d | ltiple.criteria.and.inherit.them |
| 2efa0 | 20 69 6e 20 74 68 65 20 73 61 6d 65 20 70 6f 6c 69 63 79 2e 00 41 20 6d 6f 6e 69 74 6f 72 65 64 | .in.the.same.policy..A.monitored |
| 2efc0 | 20 73 74 61 74 69 63 20 72 6f 75 74 65 20 63 6f 6e 64 69 74 69 6f 6e 73 20 74 68 65 20 69 6e 73 | .static.route.conditions.the.ins |
| 2efe0 | 74 61 6c 6c 61 74 69 6f 6e 20 74 6f 20 74 68 65 20 52 49 42 20 6f 6e 20 74 68 65 20 42 46 44 20 | tallation.to.the.RIB.on.the.BFD. |
| 2f000 | 73 65 73 73 69 6f 6e 20 72 75 6e 6e 69 6e 67 20 73 74 61 74 65 3a 20 77 68 65 6e 20 42 46 44 20 | session.running.state:.when.BFD. |
| 2f020 | 73 65 73 73 69 6f 6e 20 69 73 20 75 70 20 74 68 65 20 72 6f 75 74 65 20 69 73 20 69 6e 73 74 61 | session.is.up.the.route.is.insta |
| 2f040 | 6c 6c 65 64 20 74 6f 20 52 49 42 2c 20 62 75 74 20 77 68 65 6e 20 74 68 65 20 42 46 44 20 73 65 | lled.to.RIB,.but.when.the.BFD.se |
| 2f060 | 73 73 69 6f 6e 20 69 73 20 64 6f 77 6e 20 69 74 20 69 73 20 72 65 6d 6f 76 65 64 20 66 72 6f 6d | ssion.is.down.it.is.removed.from |
| 2f080 | 20 74 68 65 20 52 49 42 2e 00 41 20 6e 65 74 77 6f 72 6b 20 6d 61 6e 61 67 65 6d 65 6e 74 20 73 | .the.RIB..A.network.management.s |
| 2f0a0 | 74 61 74 69 6f 6e 20 65 78 65 63 75 74 65 73 20 61 70 70 6c 69 63 61 74 69 6f 6e 73 20 74 68 61 | tation.executes.applications.tha |
| 2f0c0 | 74 20 6d 6f 6e 69 74 6f 72 20 61 6e 64 20 63 6f 6e 74 72 6f 6c 20 6d 61 6e 61 67 65 64 20 64 65 | t.monitor.and.control.managed.de |
| 2f0e0 | 76 69 63 65 73 2e 20 4e 4d 53 73 20 70 72 6f 76 69 64 65 20 74 68 65 20 62 75 6c 6b 20 6f 66 20 | vices..NMSs.provide.the.bulk.of. |
| 2f100 | 74 68 65 20 70 72 6f 63 65 73 73 69 6e 67 20 61 6e 64 20 6d 65 6d 6f 72 79 20 72 65 73 6f 75 72 | the.processing.and.memory.resour |
| 2f120 | 63 65 73 20 72 65 71 75 69 72 65 64 20 66 6f 72 20 6e 65 74 77 6f 72 6b 20 6d 61 6e 61 67 65 6d | ces.required.for.network.managem |
| 2f140 | 65 6e 74 2e 20 4f 6e 65 20 6f 72 20 6d 6f 72 65 20 4e 4d 53 73 20 6d 61 79 20 65 78 69 73 74 20 | ent..One.or.more.NMSs.may.exist. |
| 2f160 | 6f 6e 20 61 6e 79 20 6d 61 6e 61 67 65 64 20 6e 65 74 77 6f 72 6b 2e 00 41 20 6e 65 77 20 69 6e | on.any.managed.network..A.new.in |
| 2f180 | 74 65 72 66 61 63 65 20 62 65 63 6f 6d 65 73 20 70 72 65 73 65 6e 74 20 60 60 50 6f 72 74 2d 63 | terface.becomes.present.``Port-c |
| 2f1a0 | 68 61 6e 6e 65 6c 31 60 60 2c 20 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6c 69 6b | hannel1``,.all.configuration.lik |
| 2f1c0 | 65 20 61 6c 6c 6f 77 65 64 20 56 4c 41 4e 20 69 6e 74 65 72 66 61 63 65 73 2c 20 53 54 50 20 77 | e.allowed.VLAN.interfaces,.STP.w |
| 2f1e0 | 69 6c 6c 20 68 61 70 70 65 6e 20 68 65 72 65 2e 00 41 20 70 61 63 6b 65 74 20 72 61 74 65 20 6c | ill.happen.here..A.packet.rate.l |
| 2f200 | 69 6d 69 74 20 63 61 6e 20 62 65 20 73 65 74 20 66 6f 72 20 61 20 72 75 6c 65 20 74 6f 20 61 70 | imit.can.be.set.for.a.rule.to.ap |
| 2f220 | 70 6c 79 20 74 68 65 20 72 75 6c 65 20 74 6f 20 74 72 61 66 66 69 63 20 61 62 6f 76 65 20 6f 72 | ply.the.rule.to.traffic.above.or |
| 2f240 | 20 62 65 6c 6f 77 20 61 20 73 70 65 63 69 66 69 65 64 20 74 68 72 65 73 68 6f 6c 64 2e 20 54 6f | .below.a.specified.threshold..To |
| 2f260 | 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 72 61 74 65 20 6c 69 6d 69 74 69 6e 67 20 75 73 65 | .configure.the.rate.limiting.use |
| 2f280 | 3a 00 41 20 70 61 63 6b 65 74 20 74 68 61 74 20 66 69 6e 64 73 20 61 20 6d 61 74 63 68 69 6e 67 | :.A.packet.that.finds.a.matching |
| 2f2a0 | 20 65 6e 74 72 79 20 69 6e 20 74 68 65 20 66 6c 6f 77 74 61 62 6c 65 20 28 66 6c 6f 77 74 61 62 | .entry.in.the.flowtable.(flowtab |
| 2f2c0 | 6c 65 20 68 69 74 29 20 69 73 20 74 72 61 6e 73 6d 69 74 74 65 64 20 74 6f 20 74 68 65 20 6f 75 | le.hit).is.transmitted.to.the.ou |
| 2f2e0 | 74 70 75 74 20 6e 65 74 64 65 76 69 63 65 2c 20 68 65 6e 63 65 2c 20 70 61 63 6b 65 74 73 20 62 | tput.netdevice,.hence,.packets.b |
| 2f300 | 79 70 61 73 73 20 74 68 65 20 63 6c 61 73 73 69 63 20 49 50 20 66 6f 72 77 61 72 64 69 6e 67 20 | ypass.the.classic.IP.forwarding. |
| 2f320 | 70 61 74 68 20 61 6e 64 20 75 73 65 73 20 74 68 65 20 2a 2a 46 61 73 74 20 50 61 74 68 2a 2a 20 | path.and.uses.the.**Fast.Path**. |
| 2f340 | 28 6f 72 61 6e 67 65 20 63 69 72 63 6c 65 73 20 70 61 74 68 29 2e 20 54 68 65 20 76 69 73 69 62 | (orange.circles.path)..The.visib |
| 2f360 | 6c 65 20 65 66 66 65 63 74 20 69 73 20 74 68 61 74 20 79 6f 75 20 64 6f 20 6e 6f 74 20 73 65 65 | le.effect.is.that.you.do.not.see |
| 2f380 | 20 74 68 65 73 65 20 70 61 63 6b 65 74 73 20 66 72 6f 6d 20 61 6e 79 20 6f 66 20 74 68 65 20 4e | .these.packets.from.any.of.the.N |
| 2f3a0 | 65 74 66 69 6c 74 65 72 20 68 6f 6f 6b 73 20 63 6f 6d 69 6e 67 20 61 66 74 65 72 20 69 6e 67 72 | etfilter.hooks.coming.after.ingr |
| 2f3c0 | 65 73 73 2e 20 49 6e 20 63 61 73 65 20 74 68 61 74 20 74 68 65 72 65 20 69 73 20 6e 6f 20 6d 61 | ess..In.case.that.there.is.no.ma |
| 2f3e0 | 74 63 68 69 6e 67 20 65 6e 74 72 79 20 69 6e 20 74 68 65 20 66 6c 6f 77 74 61 62 6c 65 20 28 66 | tching.entry.in.the.flowtable.(f |
| 2f400 | 6c 6f 77 74 61 62 6c 65 20 6d 69 73 73 29 2c 20 74 68 65 20 70 61 63 6b 65 74 20 66 6f 6c 6c 6f | lowtable.miss),.the.packet.follo |
| 2f420 | 77 73 20 74 68 65 20 63 6c 61 73 73 69 63 20 49 50 20 66 6f 72 77 61 72 64 69 6e 67 20 70 61 74 | ws.the.classic.IP.forwarding.pat |
| 2f440 | 68 2e 00 41 20 70 65 6e 61 6c 74 79 20 6f 66 20 31 30 30 30 20 69 73 20 61 73 73 65 73 73 65 64 | h..A.penalty.of.1000.is.assessed |
| 2f460 | 20 65 61 63 68 20 74 69 6d 65 20 74 68 65 20 72 6f 75 74 65 20 66 61 69 6c 73 2e 20 57 68 65 6e | .each.time.the.route.fails..When |
| 2f480 | 20 74 68 65 20 70 65 6e 61 6c 74 69 65 73 20 72 65 61 63 68 20 61 20 70 72 65 64 65 66 69 6e 65 | .the.penalties.reach.a.predefine |
| 2f4a0 | 64 20 74 68 72 65 73 68 6f 6c 64 20 28 73 75 70 70 72 65 73 73 2d 76 61 6c 75 65 29 2c 20 74 68 | d.threshold.(suppress-value),.th |
| 2f4c0 | 65 20 72 6f 75 74 65 72 20 73 74 6f 70 73 20 61 64 76 65 72 74 69 73 69 6e 67 20 74 68 65 20 72 | e.router.stops.advertising.the.r |
| 2f4e0 | 6f 75 74 65 2e 00 41 20 70 68 79 73 69 63 61 6c 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 72 65 | oute..A.physical.interface.is.re |
| 2f500 | 71 75 69 72 65 64 20 74 6f 20 63 6f 6e 6e 65 63 74 20 74 68 69 73 20 4d 41 43 73 65 63 20 69 6e | quired.to.connect.this.MACsec.in |
| 2f520 | 73 74 61 6e 63 65 20 74 6f 2e 20 54 72 61 66 66 69 63 20 6c 65 61 76 69 6e 67 20 74 68 69 73 20 | stance.to..Traffic.leaving.this. |
| 2f540 | 69 6e 74 65 72 66 61 63 65 20 77 69 6c 6c 20 6e 6f 77 20 62 65 20 61 75 74 68 65 6e 74 69 63 61 | interface.will.now.be.authentica |
| 2f560 | 74 65 64 2f 65 6e 63 72 79 70 74 65 64 2e 00 41 20 70 6f 6f 6c 20 6f 66 20 61 64 64 72 65 73 73 | ted/encrypted..A.pool.of.address |
| 2f580 | 65 73 20 63 61 6e 20 62 65 20 64 65 66 69 6e 65 64 20 62 79 20 75 73 69 6e 67 20 61 20 68 79 70 | es.can.be.defined.by.using.a.hyp |
| 2f5a0 | 68 65 6e 20 62 65 74 77 65 65 6e 20 74 77 6f 20 49 50 20 61 64 64 72 65 73 73 65 73 3a 00 41 20 | hen.between.two.IP.addresses:.A. |
| 2f5c0 | 70 6f 72 74 20 63 61 6e 20 62 65 20 73 65 74 20 62 79 20 6e 75 6d 62 65 72 20 6f 72 20 6e 61 6d | port.can.be.set.by.number.or.nam |
| 2f5e0 | 65 20 61 73 20 64 65 66 69 6e 65 64 20 69 6e 20 60 60 2f 65 74 63 2f 73 65 72 76 69 63 65 73 60 | e.as.defined.in.``/etc/services` |
| 2f600 | 60 2e 00 41 20 70 6f 72 74 20 63 61 6e 20 62 65 20 73 65 74 20 77 69 74 68 20 61 20 70 6f 72 74 | `..A.port.can.be.set.with.a.port |
| 2f620 | 20 6e 75 6d 62 65 72 20 6f 72 20 61 20 6e 61 6d 65 20 77 68 69 63 68 20 69 73 20 68 65 72 65 20 | .number.or.a.name.which.is.here. |
| 2f640 | 64 65 66 69 6e 65 64 3a 20 60 60 2f 65 74 63 2f 73 65 72 76 69 63 65 73 60 60 2e 00 41 20 71 75 | defined:.``/etc/services``..A.qu |
| 2f660 | 65 72 79 20 66 6f 72 20 77 68 69 63 68 20 74 68 65 72 65 20 69 73 20 61 75 74 68 6f 72 69 74 61 | ery.for.which.there.is.authorita |
| 2f680 | 74 69 76 65 6c 79 20 6e 6f 20 61 6e 73 77 65 72 20 69 73 20 63 61 63 68 65 64 20 74 6f 20 71 75 | tively.no.answer.is.cached.to.qu |
| 2f6a0 | 69 63 6b 6c 79 20 64 65 6e 79 20 61 20 72 65 63 6f 72 64 27 73 20 65 78 69 73 74 65 6e 63 65 20 | ickly.deny.a.record's.existence. |
| 2f6c0 | 6c 61 74 65 72 20 6f 6e 2c 20 77 69 74 68 6f 75 74 20 70 75 74 74 69 6e 67 20 61 20 68 65 61 76 | later.on,.without.putting.a.heav |
| 2f6e0 | 79 20 6c 6f 61 64 20 6f 6e 20 74 68 65 20 72 65 6d 6f 74 65 20 73 65 72 76 65 72 2e 20 49 6e 20 | y.load.on.the.remote.server..In. |
| 2f700 | 70 72 61 63 74 69 63 65 2c 20 63 61 63 68 65 73 20 63 61 6e 20 62 65 63 6f 6d 65 20 73 61 74 75 | practice,.caches.can.become.satu |
| 2f720 | 72 61 74 65 64 20 77 69 74 68 20 68 75 6e 64 72 65 64 73 20 6f 66 20 74 68 6f 75 73 61 6e 64 73 | rated.with.hundreds.of.thousands |
| 2f740 | 20 6f 66 20 68 6f 73 74 73 20 77 68 69 63 68 20 61 72 65 20 74 72 69 65 64 20 6f 6e 6c 79 20 6f | .of.hosts.which.are.tried.only.o |
| 2f760 | 6e 63 65 2e 00 41 20 72 65 63 65 69 76 65 64 20 4e 48 52 50 20 54 72 61 66 66 69 63 20 49 6e 64 | nce..A.received.NHRP.Traffic.Ind |
| 2f780 | 69 63 61 74 69 6f 6e 20 77 69 6c 6c 20 74 72 69 67 67 65 72 20 74 68 65 20 72 65 73 6f 6c 75 74 | ication.will.trigger.the.resolut |
| 2f7a0 | 69 6f 6e 20 61 6e 64 20 65 73 74 61 62 6c 69 73 68 6d 65 6e 74 20 6f 66 20 61 20 73 68 6f 72 74 | ion.and.establishment.of.a.short |
| 2f7c0 | 63 75 74 20 72 6f 75 74 65 2e 00 41 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 49 44 20 63 61 | cut.route..A.routing.table.ID.ca |
| 2f7e0 | 6e 20 6e 6f 74 20 62 65 20 6d 6f 64 69 66 69 65 64 20 6f 6e 63 65 20 69 74 20 69 73 20 61 73 73 | n.not.be.modified.once.it.is.ass |
| 2f800 | 69 67 6e 65 64 2e 20 49 74 20 63 61 6e 20 6f 6e 6c 79 20 62 65 20 63 68 61 6e 67 65 64 20 62 79 | igned..It.can.only.be.changed.by |
| 2f820 | 20 64 65 6c 65 74 69 6e 67 20 61 6e 64 20 72 65 2d 61 64 64 69 6e 67 20 74 68 65 20 56 52 46 20 | .deleting.and.re-adding.the.VRF. |
| 2f840 | 69 6e 73 74 61 6e 63 65 2e 00 41 20 72 75 6c 65 2d 73 65 74 20 69 73 20 61 20 6e 61 6d 65 64 20 | instance..A.rule-set.is.a.named. |
| 2f860 | 63 6f 6c 6c 65 63 74 69 6f 6e 20 6f 66 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 20 74 68 61 | collection.of.firewall.rules.tha |
| 2f880 | 74 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 61 6e 20 69 6e 74 65 72 66 61 63 65 | t.can.be.applied.to.an.interface |
| 2f8a0 | 20 6f 72 20 61 20 7a 6f 6e 65 2e 20 45 61 63 68 20 72 75 6c 65 20 69 73 20 6e 75 6d 62 65 72 65 | .or.a.zone..Each.rule.is.numbere |
| 2f8c0 | 64 2c 20 68 61 73 20 61 6e 20 61 63 74 69 6f 6e 20 74 6f 20 61 70 70 6c 79 20 69 66 20 74 68 65 | d,.has.an.action.to.apply.if.the |
| 2f8e0 | 20 72 75 6c 65 20 69 73 20 6d 61 74 63 68 65 64 2c 20 61 6e 64 20 74 68 65 20 61 62 69 6c 69 74 | .rule.is.matched,.and.the.abilit |
| 2f900 | 79 20 74 6f 20 73 70 65 63 69 66 79 20 74 68 65 20 63 72 69 74 65 72 69 61 20 74 6f 20 6d 61 74 | y.to.specify.the.criteria.to.mat |
| 2f920 | 63 68 2e 20 44 61 74 61 20 70 61 63 6b 65 74 73 20 67 6f 20 74 68 72 6f 75 67 68 20 74 68 65 20 | ch..Data.packets.go.through.the. |
| 2f940 | 72 75 6c 65 73 20 66 72 6f 6d 20 31 20 2d 20 39 39 39 39 39 39 2c 20 61 74 20 74 68 65 20 66 69 | rules.from.1.-.999999,.at.the.fi |
| 2f960 | 72 73 74 20 6d 61 74 63 68 20 74 68 65 20 61 63 74 69 6f 6e 20 6f 66 20 74 68 65 20 72 75 6c 65 | rst.match.the.action.of.the.rule |
| 2f980 | 20 77 69 6c 6c 20 62 65 20 65 78 65 63 75 74 65 64 2e 00 41 20 72 75 6c 65 2d 73 65 74 20 69 73 | .will.be.executed..A.rule-set.is |
| 2f9a0 | 20 61 20 6e 61 6d 65 64 20 63 6f 6c 6c 65 63 74 69 6f 6e 20 6f 66 20 72 75 6c 65 73 20 74 68 61 | .a.named.collection.of.rules.tha |
| 2f9c0 | 74 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 61 6e 20 69 6e 74 65 72 66 61 63 65 | t.can.be.applied.to.an.interface |
| 2f9e0 | 2e 20 45 61 63 68 20 72 75 6c 65 20 69 73 20 6e 75 6d 62 65 72 65 64 2c 20 68 61 73 20 61 6e 20 | ..Each.rule.is.numbered,.has.an. |
| 2fa00 | 61 63 74 69 6f 6e 20 74 6f 20 61 70 70 6c 79 20 69 66 20 74 68 65 20 72 75 6c 65 20 69 73 20 6d | action.to.apply.if.the.rule.is.m |
| 2fa20 | 61 74 63 68 65 64 2c 20 61 6e 64 20 74 68 65 20 61 62 69 6c 69 74 79 20 74 6f 20 73 70 65 63 69 | atched,.and.the.ability.to.speci |
| 2fa40 | 66 79 20 74 68 65 20 63 72 69 74 65 72 69 61 20 74 6f 20 6d 61 74 63 68 2e 20 44 61 74 61 20 70 | fy.the.criteria.to.match..Data.p |
| 2fa60 | 61 63 6b 65 74 73 20 67 6f 20 74 68 72 6f 75 67 68 20 74 68 65 20 72 75 6c 65 73 20 66 72 6f 6d | ackets.go.through.the.rules.from |
| 2fa80 | 20 31 20 2d 20 39 39 39 39 39 39 2c 20 61 74 20 74 68 65 20 66 69 72 73 74 20 6d 61 74 63 68 20 | .1.-.999999,.at.the.first.match. |
| 2faa0 | 74 68 65 20 61 63 74 69 6f 6e 20 6f 66 20 74 68 65 20 72 75 6c 65 20 77 69 6c 6c 20 62 65 20 65 | the.action.of.the.rule.will.be.e |
| 2fac0 | 78 65 63 75 74 65 64 2e 00 41 20 73 63 72 69 70 74 20 63 61 6e 20 62 65 20 72 75 6e 20 77 68 65 | xecuted..A.script.can.be.run.whe |
| 2fae0 | 6e 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 73 74 61 74 65 20 63 68 61 6e 67 65 20 6f 63 63 75 | n.an.interface.state.change.occu |
| 2fb00 | 72 73 2e 20 53 63 72 69 70 74 73 20 61 72 65 20 72 75 6e 20 66 72 6f 6d 20 2f 63 6f 6e 66 69 67 | rs..Scripts.are.run.from./config |
| 2fb20 | 2f 73 63 72 69 70 74 73 2c 20 66 6f 72 20 61 20 64 69 66 66 65 72 65 6e 74 20 6c 6f 63 61 74 69 | /scripts,.for.a.different.locati |
| 2fb40 | 6f 6e 20 73 70 65 63 69 66 79 20 74 68 65 20 66 75 6c 6c 20 70 61 74 68 3a 00 41 20 73 65 67 6d | on.specify.the.full.path:.A.segm |
| 2fb60 | 65 6e 74 20 49 44 20 74 68 61 74 20 63 6f 6e 74 61 69 6e 73 20 61 6e 20 49 50 20 61 64 64 72 65 | ent.ID.that.contains.an.IP.addre |
| 2fb80 | 73 73 20 70 72 65 66 69 78 20 63 61 6c 63 75 6c 61 74 65 64 20 62 79 20 61 6e 20 49 47 50 20 69 | ss.prefix.calculated.by.an.IGP.i |
| 2fba0 | 6e 20 74 68 65 20 73 65 72 76 69 63 65 20 70 72 6f 76 69 64 65 72 20 63 6f 72 65 20 6e 65 74 77 | n.the.service.provider.core.netw |
| 2fbc0 | 6f 72 6b 2e 20 50 72 65 66 69 78 20 53 49 44 73 20 61 72 65 20 67 6c 6f 62 61 6c 6c 79 20 75 6e | ork..Prefix.SIDs.are.globally.un |
| 2fbe0 | 69 71 75 65 2c 20 74 68 69 73 20 76 61 6c 75 65 20 69 6e 64 65 6e 74 69 66 79 20 69 74 00 41 20 | ique,.this.value.indentify.it.A. |
| 2fc00 | 73 65 6e 64 69 6e 67 20 73 74 61 74 69 6f 6e 20 28 63 6f 6d 70 75 74 65 72 20 6f 72 20 6e 65 74 | sending.station.(computer.or.net |
| 2fc20 | 77 6f 72 6b 20 73 77 69 74 63 68 29 20 6d 61 79 20 62 65 20 74 72 61 6e 73 6d 69 74 74 69 6e 67 | work.switch).may.be.transmitting |
| 2fc40 | 20 64 61 74 61 20 66 61 73 74 65 72 20 74 68 61 6e 20 74 68 65 20 6f 74 68 65 72 20 65 6e 64 20 | .data.faster.than.the.other.end. |
| 2fc60 | 6f 66 20 74 68 65 20 6c 69 6e 6b 20 63 61 6e 20 61 63 63 65 70 74 20 69 74 2e 20 55 73 69 6e 67 | of.the.link.can.accept.it..Using |
| 2fc80 | 20 66 6c 6f 77 20 63 6f 6e 74 72 6f 6c 2c 20 74 68 65 20 72 65 63 65 69 76 69 6e 67 20 73 74 61 | .flow.control,.the.receiving.sta |
| 2fca0 | 74 69 6f 6e 20 63 61 6e 20 73 69 67 6e 61 6c 20 74 68 65 20 73 65 6e 64 65 72 20 72 65 71 75 65 | tion.can.signal.the.sender.reque |
| 2fcc0 | 73 74 69 6e 67 20 73 75 73 70 65 6e 73 69 6f 6e 20 6f 66 20 74 72 61 6e 73 6d 69 73 73 69 6f 6e | sting.suspension.of.transmission |
| 2fce0 | 73 20 75 6e 74 69 6c 20 74 68 65 20 72 65 63 65 69 76 65 72 20 63 61 74 63 68 65 73 20 75 70 2e | s.until.the.receiver.catches.up. |
| 2fd00 | 00 41 20 73 68 61 72 65 64 20 6e 65 74 77 6f 72 6b 20 6e 61 6d 65 64 20 60 60 4e 45 54 31 60 60 | .A.shared.network.named.``NET1`` |
| 2fd20 | 20 73 65 72 76 65 73 20 73 75 62 6e 65 74 20 60 60 32 30 30 31 3a 64 62 38 3a 3a 2f 36 34 60 60 | .serves.subnet.``2001:db8::/64`` |
| 2fd40 | 00 41 20 73 68 61 72 65 64 20 6e 65 74 77 6f 72 6b 20 6e 61 6d 65 64 20 60 60 50 44 2d 4e 45 54 | .A.shared.network.named.``PD-NET |
| 2fd60 | 60 60 20 73 65 72 76 65 73 20 73 75 62 6e 65 74 20 60 60 32 30 30 31 3a 64 62 38 3a 3a 2f 36 34 | ``.serves.subnet.``2001:db8::/64 |
| 2fd80 | 60 60 2e 00 41 20 73 69 6d 70 6c 65 20 42 47 50 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 76 | ``..A.simple.BGP.configuration.v |
| 2fda0 | 69 61 20 49 50 76 36 2e 00 41 20 73 69 6d 70 6c 65 20 52 61 6e 64 6f 6d 20 45 61 72 6c 79 20 44 | ia.IPv6..A.simple.Random.Early.D |
| 2fdc0 | 65 74 65 63 74 69 6f 6e 20 28 52 45 44 29 20 70 6f 6c 69 63 79 20 77 6f 75 6c 64 20 73 74 61 72 | etection.(RED).policy.would.star |
| 2fde0 | 74 20 72 61 6e 64 6f 6d 6c 79 20 64 72 6f 70 70 69 6e 67 20 70 61 63 6b 65 74 73 20 66 72 6f 6d | t.randomly.dropping.packets.from |
| 2fe00 | 20 61 20 71 75 65 75 65 20 62 65 66 6f 72 65 20 69 74 20 72 65 61 63 68 65 73 20 69 74 73 20 71 | .a.queue.before.it.reaches.its.q |
| 2fe20 | 75 65 75 65 20 6c 69 6d 69 74 20 74 68 75 73 20 61 76 6f 69 64 69 6e 67 20 63 6f 6e 67 65 73 74 | ueue.limit.thus.avoiding.congest |
| 2fe40 | 69 6f 6e 2e 20 54 68 61 74 20 69 73 20 67 6f 6f 64 20 66 6f 72 20 54 43 50 20 63 6f 6e 6e 65 63 | ion..That.is.good.for.TCP.connec |
| 2fe60 | 74 69 6f 6e 73 20 61 73 20 74 68 65 20 67 72 61 64 75 61 6c 20 64 72 6f 70 70 69 6e 67 20 6f 66 | tions.as.the.gradual.dropping.of |
| 2fe80 | 20 70 61 63 6b 65 74 73 20 61 63 74 73 20 61 73 20 61 20 73 69 67 6e 61 6c 20 66 6f 72 20 74 68 | .packets.acts.as.a.signal.for.th |
| 2fea0 | 65 20 73 65 6e 64 65 72 20 74 6f 20 64 65 63 72 65 61 73 65 20 69 74 73 20 74 72 61 6e 73 6d 69 | e.sender.to.decrease.its.transmi |
| 2fec0 | 73 73 69 6f 6e 20 72 61 74 65 2e 00 41 20 73 69 6d 70 6c 65 20 65 42 47 50 20 63 6f 6e 66 69 67 | ssion.rate..A.simple.eBGP.config |
| 2fee0 | 75 72 61 74 69 6f 6e 3a 00 41 20 73 69 6d 70 6c 65 20 65 78 61 6d 70 6c 65 20 6f 66 20 53 68 61 | uration:.A.simple.example.of.Sha |
| 2ff00 | 70 65 72 20 75 73 69 6e 67 20 70 72 69 6f 72 69 74 69 65 73 2e 00 41 20 73 69 6d 70 6c 65 20 65 | per.using.priorities..A.simple.e |
| 2ff20 | 78 61 6d 70 6c 65 20 6f 66 20 61 6e 20 46 51 2d 43 6f 44 65 6c 20 70 6f 6c 69 63 79 20 77 6f 72 | xample.of.an.FQ-CoDel.policy.wor |
| 2ff40 | 6b 69 6e 67 20 69 6e 73 69 64 65 20 61 20 53 68 61 70 65 72 20 6f 6e 65 2e 00 41 20 73 69 6d 70 | king.inside.a.Shaper.one..A.simp |
| 2ff60 | 6c 69 66 69 65 64 20 74 72 61 66 66 69 63 20 66 6c 6f 77 20 64 69 61 67 72 61 6d 2c 20 62 61 73 | lified.traffic.flow.diagram,.bas |
| 2ff80 | 65 64 20 6f 6e 20 4e 65 74 66 69 6c 74 65 72 20 70 61 63 6b 65 74 20 66 6c 6f 77 2c 20 69 73 20 | ed.on.Netfilter.packet.flow,.is. |
| 2ffa0 | 73 68 6f 77 6e 20 6e 65 78 74 2c 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 68 61 76 65 20 61 20 66 | shown.next,.in.order.to.have.a.f |
| 2ffc0 | 75 6c 6c 20 76 69 65 77 20 61 6e 64 20 75 6e 64 65 72 73 74 61 6e 64 69 6e 67 20 6f 66 20 68 6f | ull.view.and.understanding.of.ho |
| 2ffe0 | 77 20 70 61 63 6b 65 74 73 20 61 72 65 20 70 72 6f 63 65 73 73 65 64 2c 20 61 6e 64 20 77 68 61 | w.packets.are.processed,.and.wha |
| 30000 | 74 20 70 6f 73 73 69 62 6c 65 20 70 61 74 68 73 20 74 72 61 66 66 69 63 20 63 61 6e 20 74 61 6b | t.possible.paths.traffic.can.tak |
| 30020 | 65 2e 00 41 20 73 69 6d 70 6c 69 66 69 65 64 20 74 72 61 66 66 69 63 20 66 6c 6f 77 2c 20 62 61 | e..A.simplified.traffic.flow,.ba |
| 30040 | 73 65 64 20 6f 6e 20 4e 65 74 66 69 6c 74 65 72 20 70 61 63 6b 65 74 20 66 6c 6f 77 2c 20 69 73 | sed.on.Netfilter.packet.flow,.is |
| 30060 | 20 73 68 6f 77 6e 20 6e 65 78 74 2c 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 68 61 76 65 20 61 20 | .shown.next,.in.order.to.have.a. |
| 30080 | 66 75 6c 6c 20 76 69 65 77 20 61 6e 64 20 75 6e 64 65 72 73 74 61 6e 64 69 6e 67 20 6f 66 20 68 | full.view.and.understanding.of.h |
| 300a0 | 6f 77 20 70 61 63 6b 65 74 73 20 61 72 65 20 70 72 6f 63 65 73 73 65 64 2c 20 61 6e 64 20 77 68 | ow.packets.are.processed,.and.wh |
| 300c0 | 61 74 20 70 6f 73 73 69 62 6c 65 20 70 61 74 68 73 20 63 61 6e 20 74 61 6b 65 2e 00 41 20 73 69 | at.possible.paths.can.take..A.si |
| 300e0 | 6e 67 6c 65 20 69 6e 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 20 61 6e 64 20 65 78 74 65 72 6e | ngle.internal.network.and.extern |
| 30100 | 61 6c 20 6e 65 74 77 6f 72 6b 2e 20 55 73 65 20 74 68 65 20 4e 41 54 36 36 20 64 65 76 69 63 65 | al.network..Use.the.NAT66.device |
| 30120 | 20 74 6f 20 63 6f 6e 6e 65 63 74 20 61 20 73 69 6e 67 6c 65 20 69 6e 74 65 72 6e 61 6c 20 6e 65 | .to.connect.a.single.internal.ne |
| 30140 | 74 77 6f 72 6b 20 61 6e 64 20 70 75 62 6c 69 63 20 6e 65 74 77 6f 72 6b 2c 20 61 6e 64 20 74 68 | twork.and.public.network,.and.th |
| 30160 | 65 20 68 6f 73 74 73 20 69 6e 20 74 68 65 20 69 6e 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 20 | e.hosts.in.the.internal.network. |
| 30180 | 75 73 65 20 49 50 76 36 20 61 64 64 72 65 73 73 20 70 72 65 66 69 78 65 73 20 74 68 61 74 20 6f | use.IPv6.address.prefixes.that.o |
| 301a0 | 6e 6c 79 20 73 75 70 70 6f 72 74 20 72 6f 75 74 69 6e 67 20 77 69 74 68 69 6e 20 74 68 65 20 6c | nly.support.routing.within.the.l |
| 301c0 | 6f 63 61 6c 20 72 61 6e 67 65 2e 20 57 68 65 6e 20 61 20 68 6f 73 74 20 69 6e 20 74 68 65 20 69 | ocal.range..When.a.host.in.the.i |
| 301e0 | 6e 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 20 61 63 63 65 73 73 65 73 20 74 68 65 20 65 78 74 | nternal.network.accesses.the.ext |
| 30200 | 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 2c 20 74 68 65 20 73 6f 75 72 63 65 20 49 50 76 36 20 61 | ernal.network,.the.source.IPv6.a |
| 30220 | 64 64 72 65 73 73 20 70 72 65 66 69 78 20 69 6e 20 74 68 65 20 6d 65 73 73 61 67 65 20 77 69 6c | ddress.prefix.in.the.message.wil |
| 30240 | 6c 20 62 65 20 63 6f 6e 76 65 72 74 65 64 20 69 6e 74 6f 20 61 20 67 6c 6f 62 61 6c 20 75 6e 69 | l.be.converted.into.a.global.uni |
| 30260 | 63 61 73 74 20 49 50 76 36 20 61 64 64 72 65 73 73 20 70 72 65 66 69 78 20 62 79 20 74 68 65 20 | cast.IPv6.address.prefix.by.the. |
| 30280 | 4e 41 54 36 36 20 64 65 76 69 63 65 2e 00 41 20 73 74 61 74 69 6f 6e 20 61 63 74 73 20 61 73 20 | NAT66.device..A.station.acts.as. |
| 302a0 | 61 20 57 69 2d 46 69 20 63 6c 69 65 6e 74 20 61 63 63 65 73 73 69 6e 67 20 74 68 65 20 6e 65 74 | a.Wi-Fi.client.accessing.the.net |
| 302c0 | 77 6f 72 6b 20 74 68 72 6f 75 67 68 20 61 6e 20 61 76 61 69 6c 61 62 6c 65 20 57 41 50 00 41 20 | work.through.an.available.WAP.A. |
| 302e0 | 73 79 6e 63 20 67 72 6f 75 70 20 61 6c 6c 6f 77 73 20 56 52 52 50 20 67 72 6f 75 70 73 20 74 6f | sync.group.allows.VRRP.groups.to |
| 30300 | 20 74 72 61 6e 73 69 74 69 6f 6e 20 74 6f 67 65 74 68 65 72 2e 00 41 20 74 79 70 69 63 61 6c 20 | .transition.together..A.typical. |
| 30320 | 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 75 73 69 6e 67 20 32 20 6e 6f 64 65 73 2e 00 41 20 74 | configuration.using.2.nodes..A.t |
| 30340 | 79 70 69 63 61 6c 20 70 72 6f 62 6c 65 6d 20 77 69 74 68 20 75 73 69 6e 67 20 4e 41 54 20 61 6e | ypical.problem.with.using.NAT.an |
| 30360 | 64 20 68 6f 73 74 69 6e 67 20 70 75 62 6c 69 63 20 73 65 72 76 65 72 73 20 69 73 20 74 68 65 20 | d.hosting.public.servers.is.the. |
| 30380 | 61 62 69 6c 69 74 79 20 66 6f 72 20 69 6e 74 65 72 6e 61 6c 20 73 79 73 74 65 6d 73 20 74 6f 20 | ability.for.internal.systems.to. |
| 303a0 | 72 65 61 63 68 20 61 6e 20 69 6e 74 65 72 6e 61 6c 20 73 65 72 76 65 72 20 75 73 69 6e 67 20 69 | reach.an.internal.server.using.i |
| 303c0 | 74 27 73 20 65 78 74 65 72 6e 61 6c 20 49 50 20 61 64 64 72 65 73 73 2e 20 54 68 65 20 73 6f 6c | t's.external.IP.address..The.sol |
| 303e0 | 75 74 69 6f 6e 20 74 6f 20 74 68 69 73 20 69 73 20 75 73 75 61 6c 6c 79 20 74 68 65 20 75 73 65 | ution.to.this.is.usually.the.use |
| 30400 | 20 6f 66 20 73 70 6c 69 74 2d 44 4e 53 20 74 6f 20 63 6f 72 72 65 63 74 6c 79 20 70 6f 69 6e 74 | .of.split-DNS.to.correctly.point |
| 30420 | 20 68 6f 73 74 20 73 79 73 74 65 6d 73 20 74 6f 20 74 68 65 20 69 6e 74 65 72 6e 61 6c 20 61 64 | .host.systems.to.the.internal.ad |
| 30440 | 64 72 65 73 73 20 77 68 65 6e 20 72 65 71 75 65 73 74 73 20 61 72 65 20 6d 61 64 65 20 69 6e 74 | dress.when.requests.are.made.int |
| 30460 | 65 72 6e 61 6c 6c 79 2e 20 42 65 63 61 75 73 65 20 6d 61 6e 79 20 73 6d 61 6c 6c 65 72 20 6e 65 | ernally..Because.many.smaller.ne |
| 30480 | 74 77 6f 72 6b 73 20 6c 61 63 6b 20 44 4e 53 20 69 6e 66 72 61 73 74 72 75 63 74 75 72 65 2c 20 | tworks.lack.DNS.infrastructure,. |
| 304a0 | 61 20 77 6f 72 6b 2d 61 72 6f 75 6e 64 20 69 73 20 63 6f 6d 6d 6f 6e 6c 79 20 64 65 70 6c 6f 79 | a.work-around.is.commonly.deploy |
| 304c0 | 65 64 20 74 6f 20 66 61 63 69 6c 69 74 61 74 65 20 74 68 65 20 74 72 61 66 66 69 63 20 62 79 20 | ed.to.facilitate.the.traffic.by. |
| 304e0 | 4e 41 54 69 6e 67 20 74 68 65 20 72 65 71 75 65 73 74 20 66 72 6f 6d 20 69 6e 74 65 72 6e 61 6c | NATing.the.request.from.internal |
| 30500 | 20 68 6f 73 74 73 20 74 6f 20 74 68 65 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 6f 66 20 | .hosts.to.the.source.address.of. |
| 30520 | 74 68 65 20 69 6e 74 65 72 6e 61 6c 20 69 6e 74 65 72 66 61 63 65 20 6f 6e 20 74 68 65 20 66 69 | the.internal.interface.on.the.fi |
| 30540 | 72 65 77 61 6c 6c 2e 00 41 20 75 73 65 72 20 66 72 69 65 6e 64 6c 79 20 61 6c 69 61 73 20 66 6f | rewall..A.user.friendly.alias.fo |
| 30560 | 72 20 74 68 69 73 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 20 43 61 6e 20 62 65 20 75 73 65 64 20 69 | r.this.connection..Can.be.used.i |
| 30580 | 6e 73 74 65 61 64 20 6f 66 20 74 68 65 20 64 65 76 69 63 65 20 6e 61 6d 65 20 77 68 65 6e 20 63 | nstead.of.the.device.name.when.c |
| 305a0 | 6f 6e 6e 65 63 74 69 6e 67 2e 00 41 20 75 73 65 72 20 66 72 69 65 6e 64 6c 79 20 64 65 73 63 72 | onnecting..A.user.friendly.descr |
| 305c0 | 69 70 74 69 6f 6e 20 69 64 65 6e 74 69 66 79 69 6e 67 20 74 68 65 20 63 6f 6e 6e 65 63 74 65 64 | iption.identifying.the.connected |
| 305e0 | 20 70 65 72 69 70 68 65 72 61 6c 2e 00 41 20 76 61 6c 75 65 20 6f 66 20 30 20 64 69 73 61 62 6c | .peripheral..A.value.of.0.disabl |
| 30600 | 65 73 20 41 52 50 20 6d 6f 6e 69 74 6f 72 69 6e 67 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 | es.ARP.monitoring..The.default.v |
| 30620 | 61 6c 75 65 20 69 73 20 30 2e 00 41 20 76 61 6c 75 65 20 6f 66 20 32 39 36 20 77 6f 72 6b 73 20 | alue.is.0..A.value.of.296.works. |
| 30640 | 77 65 6c 6c 20 6f 6e 20 76 65 72 79 20 73 6c 6f 77 20 6c 69 6e 6b 73 20 28 34 30 20 62 79 74 65 | well.on.very.slow.links.(40.byte |
| 30660 | 73 20 66 6f 72 20 54 43 50 2f 49 50 20 68 65 61 64 65 72 20 2b 20 32 35 36 20 62 79 74 65 73 20 | s.for.TCP/IP.header.+.256.bytes. |
| 30680 | 6f 66 20 64 61 74 61 29 2e 00 41 20 76 65 72 79 20 73 6d 61 6c 6c 20 62 75 66 66 65 72 20 77 69 | of.data)..A.very.small.buffer.wi |
| 306a0 | 6c 6c 20 73 6f 6f 6e 20 73 74 61 72 74 20 64 72 6f 70 70 69 6e 67 20 70 61 63 6b 65 74 73 2e 00 | ll.soon.start.dropping.packets.. |
| 306c0 | 41 20 7a 6f 6e 65 20 6d 75 73 74 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 62 65 66 6f 72 65 | A.zone.must.be.configured.before |
| 306e0 | 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 61 73 73 69 67 6e 65 64 20 74 6f 20 69 74 20 | .an.interface.is.assigned.to.it. |
| 30700 | 61 6e 64 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 63 61 6e 20 62 65 20 61 73 73 69 67 6e 65 64 | and.an.interface.can.be.assigned |
| 30720 | 20 74 6f 20 6f 6e 6c 79 20 61 20 73 69 6e 67 6c 65 20 7a 6f 6e 65 2e 00 41 43 4d 45 00 41 43 4d | .to.only.a.single.zone..ACME.ACM |
| 30740 | 45 20 44 69 72 65 63 74 6f 72 79 20 52 65 73 6f 75 72 63 65 20 55 52 49 2e 00 41 50 49 00 41 52 | E.Directory.Resource.URI..API.AR |
| 30760 | 50 00 41 62 6f 76 65 20 63 6f 6d 6d 61 6e 64 20 77 69 6c 6c 20 75 73 65 20 60 31 30 2e 30 2e 30 | P.Above.command.will.use.`10.0.0 |
| 30780 | 2e 33 60 20 61 73 20 73 6f 75 72 63 65 20 49 50 76 34 20 61 64 64 72 65 73 73 20 66 6f 72 20 61 | .3`.as.source.IPv4.address.for.a |
| 307a0 | 6c 6c 20 52 41 44 49 55 53 20 71 75 65 72 69 65 73 20 6f 6e 20 74 68 69 73 20 4e 41 53 2e 00 41 | ll.RADIUS.queries.on.this.NAS..A |
| 307c0 | 62 6f 76 65 2c 20 63 6f 6d 6d 61 6e 64 20 73 79 6e 74 61 78 20 69 73 6e 20 6e 6f 74 65 64 20 74 | bove,.command.syntax.isn.noted.t |
| 307e0 | 6f 20 63 6f 6e 66 69 67 75 72 65 20 64 79 6e 61 6d 69 63 20 64 6e 73 20 6f 6e 20 61 20 73 70 65 | o.configure.dynamic.dns.on.a.spe |
| 30800 | 63 69 66 69 63 20 69 6e 74 65 72 66 61 63 65 2e 20 49 74 20 69 73 20 70 6f 73 73 69 62 6c 65 20 | cific.interface..It.is.possible. |
| 30820 | 74 6f 20 6f 76 65 72 6c 6f 6f 6b 20 74 68 65 20 61 64 64 69 74 69 6f 6e 61 6c 20 61 64 64 72 65 | to.overlook.the.additional.addre |
| 30840 | 73 73 20 6f 70 74 69 6f 6e 2c 20 77 65 62 2c 20 77 68 65 6e 20 63 6f 6d 70 6c 65 74 65 69 6e 67 | ss.option,.web,.when.completeing |
| 30860 | 20 74 68 6f 73 65 20 63 6f 6d 6d 61 6e 64 73 2e 20 64 64 63 6c 69 65 6e 74 5f 20 68 61 73 20 61 | .those.commands..ddclient_.has.a |
| 30880 | 6e 6f 74 68 65 72 20 77 61 79 20 74 6f 20 64 65 74 65 72 6d 69 6e 65 20 74 68 65 20 57 41 4e 20 | nother.way.to.determine.the.WAN. |
| 308a0 | 49 50 20 61 64 64 72 65 73 73 2c 20 75 73 69 6e 67 20 61 20 77 65 62 2d 62 61 73 65 64 20 75 72 | IP.address,.using.a.web-based.ur |
| 308c0 | 6c 20 74 6f 20 64 65 74 65 72 6d 69 6e 65 20 74 68 65 20 65 78 74 65 72 6e 61 6c 20 49 50 2e 20 | l.to.determine.the.external.IP.. |
| 308e0 | 45 61 63 68 20 6f 66 20 74 68 65 20 63 6f 6d 6d 61 6e 64 73 20 61 62 6f 76 65 20 77 69 6c 6c 20 | Each.of.the.commands.above.will. |
| 30900 | 6e 65 65 64 20 74 6f 20 62 65 20 6d 6f 64 69 66 69 65 64 20 74 6f 20 75 73 65 20 27 77 65 62 27 | need.to.be.modified.to.use.'web' |
| 30920 | 20 61 73 20 74 68 65 20 27 69 6e 74 65 72 66 61 63 65 27 20 73 70 65 63 69 66 69 65 64 20 69 66 | .as.the.'interface'.specified.if |
| 30940 | 20 74 68 69 73 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 20 69 73 20 74 6f 20 62 65 20 75 74 69 | .this.functionality.is.to.be.uti |
| 30960 | 6c 69 7a 65 64 2e 00 41 63 63 65 6c 65 72 61 74 69 6f 6e 00 41 63 63 65 70 74 20 53 53 48 20 63 | lized..Acceleration.Accept.SSH.c |
| 30980 | 6f 6e 6e 65 63 74 69 6f 6e 73 20 66 6f 72 20 74 68 65 20 67 69 76 65 6e 20 60 3c 64 65 76 69 63 | onnections.for.the.given.`<devic |
| 309a0 | 65 3e 60 20 6f 6e 20 54 43 50 20 70 6f 72 74 20 60 3c 70 6f 72 74 3e 60 2e 20 41 66 74 65 72 20 | e>`.on.TCP.port.`<port>`..After. |
| 309c0 | 73 75 63 63 65 73 73 66 75 6c 6c 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 74 68 65 20 75 | successfull.authentication.the.u |
| 309e0 | 73 65 72 20 77 69 6c 6c 20 62 65 20 64 69 72 65 63 74 6c 79 20 64 72 6f 70 70 65 64 20 74 6f 20 | ser.will.be.directly.dropped.to. |
| 30a00 | 74 68 65 20 63 6f 6e 6e 65 63 74 65 64 20 73 65 72 69 61 6c 20 64 65 76 69 63 65 2e 00 41 63 63 | the.connected.serial.device..Acc |
| 30a20 | 65 70 74 20 6f 6e 6c 79 20 63 65 72 74 61 69 6e 20 70 72 6f 74 6f 63 6f 6c 73 3a 20 59 6f 75 20 | ept.only.certain.protocols:.You. |
| 30a40 | 6d 61 79 20 77 61 6e 74 20 74 6f 20 72 65 70 6c 69 63 61 74 65 20 74 68 65 20 73 74 61 74 65 20 | may.want.to.replicate.the.state. |
| 30a60 | 6f 66 20 66 6c 6f 77 73 20 64 65 70 65 6e 64 69 6e 67 20 6f 6e 20 74 68 65 69 72 20 6c 61 79 65 | of.flows.depending.on.their.laye |
| 30a80 | 72 20 34 20 70 72 6f 74 6f 63 6f 6c 2e 00 41 63 63 65 70 74 20 70 65 65 72 20 69 6e 74 65 72 66 | r.4.protocol..Accept.peer.interf |
| 30aa0 | 61 63 65 20 69 64 65 6e 74 69 66 69 65 72 2e 20 42 79 20 64 65 66 61 75 6c 74 20 69 73 20 6e 6f | ace.identifier..By.default.is.no |
| 30ac0 | 74 20 64 65 66 69 6e 65 64 2e 00 41 63 63 65 70 74 20 70 65 65 72 20 69 6e 74 65 72 66 61 63 65 | t.defined..Accept.peer.interface |
| 30ae0 | 20 69 64 65 6e 74 69 66 69 65 72 2e 20 42 79 20 64 65 66 61 75 6c 74 20 74 68 69 73 20 69 73 20 | .identifier..By.default.this.is. |
| 30b00 | 6e 6f 74 20 64 65 66 69 6e 65 64 2e 00 41 63 63 65 70 74 61 62 6c 65 20 72 61 74 65 20 6f 66 20 | not.defined..Acceptable.rate.of. |
| 30b20 | 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 28 65 2e 67 2e 20 31 2f 6d 69 6e 2c 20 36 30 2f 73 65 63 29 | connections.(e.g..1/min,.60/sec) |
| 30b40 | 00 41 63 63 65 73 73 20 4c 69 73 74 20 50 6f 6c 69 63 79 00 41 63 63 65 73 73 20 4c 69 73 74 73 | .Access.List.Policy.Access.Lists |
| 30b60 | 00 41 63 74 69 6f 6e 20 6d 75 73 74 20 62 65 20 74 61 6b 65 6e 20 69 6d 6d 65 64 69 61 74 65 6c | .Action.must.be.taken.immediatel |
| 30b80 | 79 20 2d 20 41 20 63 6f 6e 64 69 74 69 6f 6e 20 74 68 61 74 20 73 68 6f 75 6c 64 20 62 65 20 63 | y.-.A.condition.that.should.be.c |
| 30ba0 | 6f 72 72 65 63 74 65 64 20 69 6d 6d 65 64 69 61 74 65 6c 79 2c 20 73 75 63 68 20 61 73 20 61 20 | orrected.immediately,.such.as.a. |
| 30bc0 | 63 6f 72 72 75 70 74 65 64 20 73 79 73 74 65 6d 20 64 61 74 61 62 61 73 65 2e 00 41 63 74 69 6f | corrupted.system.database..Actio |
| 30be0 | 6e 20 77 68 69 63 68 20 77 69 6c 6c 20 62 65 20 72 75 6e 20 6f 6e 63 65 20 74 68 65 20 63 74 72 | n.which.will.be.run.once.the.ctr |
| 30c00 | 6c 2d 61 6c 74 2d 64 65 6c 20 6b 65 79 73 74 72 6f 6b 65 20 69 73 20 72 65 63 65 69 76 65 64 2e | l-alt-del.keystroke.is.received. |
| 30c20 | 00 41 63 74 69 6f 6e 73 00 41 63 74 69 76 65 20 44 69 72 65 63 74 6f 72 79 00 41 63 74 69 76 65 | .Actions.Active.Directory.Active |
| 30c40 | 20 68 65 61 6c 74 68 20 63 68 65 63 6b 20 62 61 63 6b 65 6e 64 20 73 65 72 76 65 72 00 41 64 64 | .health.check.backend.server.Add |
| 30c60 | 20 4e 54 41 20 28 6e 65 67 61 74 69 76 65 20 74 72 75 73 74 20 61 6e 63 68 6f 72 29 20 66 6f 72 | .NTA.(negative.trust.anchor).for |
| 30c80 | 20 74 68 69 73 20 64 6f 6d 61 69 6e 2e 20 54 68 69 73 20 6d 75 73 74 20 62 65 20 73 65 74 20 69 | .this.domain..This.must.be.set.i |
| 30ca0 | 66 20 74 68 65 20 64 6f 6d 61 69 6e 20 64 6f 65 73 20 6e 6f 74 20 73 75 70 70 6f 72 74 20 44 4e | f.the.domain.does.not.support.DN |
| 30cc0 | 53 53 45 43 2e 00 41 64 64 20 50 6f 77 65 72 20 43 6f 6e 73 74 72 61 69 6e 74 20 65 6c 65 6d 65 | SSEC..Add.Power.Constraint.eleme |
| 30ce0 | 6e 74 20 74 6f 20 42 65 61 63 6f 6e 20 61 6e 64 20 50 72 6f 62 65 20 52 65 73 70 6f 6e 73 65 20 | nt.to.Beacon.and.Probe.Response. |
| 30d00 | 66 72 61 6d 65 73 2e 00 41 64 64 20 61 20 66 6f 72 77 61 72 64 69 6e 67 20 72 75 6c 65 20 6d 61 | frames..Add.a.forwarding.rule.ma |
| 30d20 | 74 63 68 69 6e 67 20 55 44 50 20 70 6f 72 74 20 6f 6e 20 79 6f 75 72 20 69 6e 74 65 72 6e 65 74 | tching.UDP.port.on.your.internet |
| 30d40 | 20 72 6f 75 74 65 72 2e 00 41 64 64 20 61 20 68 6f 73 74 20 64 65 76 69 63 65 20 74 6f 20 74 68 | .router..Add.a.host.device.to.th |
| 30d60 | 65 20 63 6f 6e 74 61 69 6e 65 72 2e 00 41 64 64 20 61 63 63 65 73 73 2d 63 6f 6e 74 72 6f 6c 20 | e.container..Add.access-control. |
| 30d80 | 64 69 72 65 63 74 69 76 65 20 74 6f 20 61 6c 6c 6f 77 20 6f 72 20 64 65 6e 79 20 75 73 65 72 73 | directive.to.allow.or.deny.users |
| 30da0 | 20 61 6e 64 20 67 72 6f 75 70 73 2e 20 44 69 72 65 63 74 69 76 65 73 20 61 72 65 20 70 72 6f 63 | .and.groups..Directives.are.proc |
| 30dc0 | 65 73 73 65 64 20 69 6e 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 6f 72 64 65 72 20 6f 66 20 | essed.in.the.following.order.of. |
| 30de0 | 70 72 65 63 65 64 65 6e 63 65 3a 20 60 60 64 65 6e 79 2d 75 73 65 72 73 60 60 2c 20 60 60 61 6c | precedence:.``deny-users``,.``al |
| 30e00 | 6c 6f 77 2d 75 73 65 72 73 60 60 2c 20 60 60 64 65 6e 79 2d 67 72 6f 75 70 73 60 60 20 61 6e 64 | low-users``,.``deny-groups``.and |
| 30e20 | 20 60 60 61 6c 6c 6f 77 2d 67 72 6f 75 70 73 60 60 2e 00 41 64 64 20 63 75 73 74 6f 6d 20 65 6e | .``allow-groups``..Add.custom.en |
| 30e40 | 76 69 72 6f 6e 6d 65 6e 74 20 76 61 72 69 61 62 6c 65 73 2e 20 4d 75 6c 74 69 70 6c 65 20 65 6e | vironment.variables..Multiple.en |
| 30e60 | 76 69 72 6f 6e 6d 65 6e 74 20 76 61 72 69 61 62 6c 65 73 20 61 72 65 20 61 6c 6c 6f 77 65 64 2e | vironment.variables.are.allowed. |
| 30e80 | 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 73 20 74 72 61 6e 73 6c 61 74 | .The.following.commands.translat |
| 30ea0 | 65 20 74 6f 20 22 2d 65 20 6b 65 79 3d 76 61 6c 75 65 22 20 77 68 65 6e 20 74 68 65 20 63 6f 6e | e.to."-e.key=value".when.the.con |
| 30ec0 | 74 61 69 6e 65 72 20 69 73 20 63 72 65 61 74 65 64 2e 00 41 64 64 20 64 65 66 61 75 6c 74 20 72 | tainer.is.created..Add.default.r |
| 30ee0 | 6f 75 74 65 73 20 66 6f 72 20 72 6f 75 74 69 6e 67 20 60 60 74 61 62 6c 65 20 31 30 60 60 20 61 | outes.for.routing.``table.10``.a |
| 30f00 | 6e 64 20 60 60 74 61 62 6c 65 20 31 31 60 60 00 41 64 64 20 64 65 73 63 72 69 70 74 69 6f 6e 20 | nd.``table.11``.Add.description. |
| 30f20 | 74 6f 20 66 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 73 3a 00 41 64 64 20 64 65 73 74 69 6e 61 74 | to.firewall.groups:.Add.destinat |
| 30f40 | 69 6f 6e 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e | ion.IP.address.of.the.connection |
| 30f60 | 20 74 6f 20 61 20 64 79 6e 61 6d 69 63 20 61 64 64 72 65 73 73 20 67 72 6f 75 70 3a 00 41 64 64 | .to.a.dynamic.address.group:.Add |
| 30f80 | 20 6d 65 74 61 64 61 74 61 20 6c 61 62 65 6c 20 66 6f 72 20 74 68 69 73 20 63 6f 6e 74 61 69 6e | .metadata.label.for.this.contain |
| 30fa0 | 65 72 2e 00 41 64 64 20 6d 75 6c 74 69 70 6c 65 20 73 6f 75 72 63 65 20 49 50 20 69 6e 20 6f 6e | er..Add.multiple.source.IP.in.on |
| 30fc0 | 65 20 72 75 6c 65 20 77 69 74 68 20 73 61 6d 65 20 70 72 69 6f 72 69 74 79 00 41 64 64 20 6e 65 | e.rule.with.same.priority.Add.ne |
| 30fe0 | 77 20 70 6f 72 74 20 74 6f 20 53 53 4c 2d 70 6f 72 74 73 20 61 63 6c 2e 20 50 6f 72 74 73 20 69 | w.port.to.SSL-ports.acl..Ports.i |
| 31000 | 6e 63 6c 75 64 65 64 20 62 79 20 64 65 66 61 75 6c 74 20 69 6e 20 53 53 4c 2d 70 6f 72 74 73 20 | ncluded.by.default.in.SSL-ports. |
| 31020 | 61 63 6c 3a 20 34 34 33 00 41 64 64 20 6e 65 77 20 70 6f 72 74 20 74 6f 20 53 61 66 65 2d 70 6f | acl:.443.Add.new.port.to.Safe-po |
| 31040 | 72 74 73 20 61 63 6c 2e 20 50 6f 72 74 73 20 69 6e 63 6c 75 64 65 64 20 62 79 20 64 65 66 61 75 | rts.acl..Ports.included.by.defau |
| 31060 | 6c 74 20 69 6e 20 53 61 66 65 2d 70 6f 72 74 73 20 61 63 6c 3a 20 32 31 2c 20 37 30 2c 20 38 30 | lt.in.Safe-ports.acl:.21,.70,.80 |
| 31080 | 2c 20 32 31 30 2c 20 32 38 30 2c 20 34 34 33 2c 20 34 38 38 2c 20 35 39 31 2c 20 37 37 37 2c 20 | ,.210,.280,.443,.488,.591,.777,. |
| 310a0 | 38 37 33 2c 20 31 30 32 35 2d 36 35 35 33 35 00 41 64 64 20 6f 72 20 72 65 70 6c 61 63 65 20 42 | 873,.1025-65535.Add.or.replace.B |
| 310c0 | 47 50 20 63 6f 6d 6d 75 6e 69 74 79 20 61 74 74 72 69 62 75 74 65 20 69 6e 20 66 6f 72 6d 61 74 | GP.community.attribute.in.format |
| 310e0 | 20 60 60 3c 30 2d 36 35 35 33 35 3a 30 2d 36 35 35 33 35 3e 60 60 20 6f 72 20 66 72 6f 6d 20 77 | .``<0-65535:0-65535>``.or.from.w |
| 31100 | 65 6c 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d 75 6e 69 74 79 20 6c 69 73 74 00 41 64 64 20 6f 72 20 | ell-known.community.list.Add.or. |
| 31120 | 72 65 70 6c 61 63 65 20 42 47 50 20 6c 61 72 67 65 2d 63 6f 6d 6d 75 6e 69 74 79 20 61 74 74 72 | replace.BGP.large-community.attr |
| 31140 | 69 62 75 74 65 20 69 6e 20 66 6f 72 6d 61 74 20 60 60 3c 30 2d 34 32 39 34 39 36 37 32 39 35 3a | ibute.in.format.``<0-4294967295: |
| 31160 | 30 2d 34 32 39 34 39 36 37 32 39 35 3a 30 2d 34 32 39 34 39 36 37 32 39 35 3e 60 60 00 41 64 64 | 0-4294967295:0-4294967295>``.Add |
| 31180 | 20 70 6f 6c 69 63 79 20 72 6f 75 74 65 20 6d 61 74 63 68 69 6e 67 20 56 4c 41 4e 20 73 6f 75 72 | .policy.route.matching.VLAN.sour |
| 311a0 | 63 65 20 61 64 64 72 65 73 73 65 73 00 41 64 64 20 70 75 62 6c 69 63 20 6b 65 79 20 70 6f 72 74 | ce.addresses.Add.public.key.port |
| 311c0 | 69 6f 6e 20 66 6f 72 20 74 68 65 20 63 65 72 74 69 66 69 63 61 74 65 20 6e 61 6d 65 64 20 60 6e | ion.for.the.certificate.named.`n |
| 311e0 | 61 6d 65 60 20 74 6f 20 74 68 65 20 56 79 4f 53 20 43 4c 49 2e 00 41 64 64 20 73 6f 75 72 63 65 | ame`.to.the.VyOS.CLI..Add.source |
| 31200 | 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 6f | .IP.address.of.the.connection.to |
| 31220 | 20 61 20 64 79 6e 61 6d 69 63 20 61 64 64 72 65 73 73 20 67 72 6f 75 70 3a 00 41 64 64 20 74 68 | .a.dynamic.address.group:.Add.th |
| 31240 | 65 20 43 41 73 20 70 72 69 76 61 74 65 20 6b 65 79 20 74 6f 20 74 68 65 20 56 79 4f 53 20 43 4c | e.CAs.private.key.to.the.VyOS.CL |
| 31260 | 49 2e 20 54 68 69 73 20 73 68 6f 75 6c 64 20 6e 65 76 65 72 20 6c 65 61 76 65 20 74 68 65 20 73 | I..This.should.never.leave.the.s |
| 31280 | 79 73 74 65 6d 2c 20 61 6e 64 20 69 73 20 6f 6e 6c 79 20 72 65 71 75 69 72 65 64 20 69 66 20 79 | ystem,.and.is.only.required.if.y |
| 312a0 | 6f 75 20 75 73 65 20 56 79 4f 53 20 61 73 20 79 6f 75 72 20 63 65 72 74 69 66 69 63 61 74 65 20 | ou.use.VyOS.as.your.certificate. |
| 312c0 | 67 65 6e 65 72 61 74 6f 72 20 61 73 20 6d 65 6e 74 69 6f 6e 65 64 20 61 62 6f 76 65 2e 00 41 64 | generator.as.mentioned.above..Ad |
| 312e0 | 64 20 74 68 65 20 63 6f 6d 6d 61 6e 64 73 20 66 72 6f 6d 20 53 6e 69 70 70 65 74 20 69 6e 20 74 | d.the.commands.from.Snippet.in.t |
| 31300 | 68 65 20 57 69 6e 64 6f 77 73 20 73 69 64 65 20 76 69 61 20 50 6f 77 65 72 53 68 65 6c 6c 2e 20 | he.Windows.side.via.PowerShell.. |
| 31320 | 41 6c 73 6f 20 69 6d 70 6f 72 74 20 74 68 65 20 72 6f 6f 74 20 43 41 20 63 65 72 74 20 74 6f 20 | Also.import.the.root.CA.cert.to. |
| 31340 | 74 68 65 20 57 69 6e 64 6f 77 73 20 e2 80 9c 54 72 75 73 74 65 64 20 52 6f 6f 74 20 43 65 72 74 | the.Windows....Trusted.Root.Cert |
| 31360 | 69 66 69 63 61 74 69 6f 6e 20 41 75 74 68 6f 72 69 74 69 65 73 e2 80 9d 20 61 6e 64 20 65 73 74 | ification.Authorities....and.est |
| 31380 | 61 62 6c 69 73 68 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 41 64 64 20 74 68 65 20 70 | ablish.the.connection..Add.the.p |
| 313a0 | 72 69 76 61 74 65 20 6b 65 79 20 70 6f 72 74 69 6f 6e 20 6f 66 20 74 68 69 73 20 63 65 72 74 69 | rivate.key.portion.of.this.certi |
| 313c0 | 66 69 63 61 74 65 20 74 6f 20 74 68 65 20 43 4c 49 2e 20 54 68 69 73 20 73 68 6f 75 6c 64 20 6e | ficate.to.the.CLI..This.should.n |
| 313e0 | 65 76 65 72 20 6c 65 61 76 65 20 74 68 65 20 73 79 73 74 65 6d 20 61 73 20 69 74 20 69 73 20 75 | ever.leave.the.system.as.it.is.u |
| 31400 | 73 65 64 20 74 6f 20 64 65 63 72 79 70 74 20 74 68 65 20 64 61 74 61 2e 00 41 64 64 20 74 68 65 | sed.to.decrypt.the.data..Add.the |
| 31420 | 20 70 75 62 6c 69 63 20 43 41 20 63 65 72 74 69 66 69 63 61 74 65 20 66 6f 72 20 74 68 65 20 43 | .public.CA.certificate.for.the.C |
| 31440 | 41 20 6e 61 6d 65 64 20 60 6e 61 6d 65 60 20 74 6f 20 74 68 65 20 56 79 4f 53 20 43 4c 49 2e 00 | A.named.`name`.to.the.VyOS.CLI.. |
| 31460 | 41 64 64 69 6e 67 20 61 20 32 46 41 20 77 69 74 68 20 61 6e 20 4f 54 50 2d 6b 65 79 00 41 64 64 | Adding.a.2FA.with.an.OTP-key.Add |
| 31480 | 69 6e 67 20 65 6c 65 6d 65 6e 74 73 20 74 6f 20 44 79 6e 61 6d 69 63 20 46 69 72 65 77 61 6c 6c | ing.elements.to.Dynamic.Firewall |
| 314a0 | 20 47 72 6f 75 70 73 00 41 64 64 69 74 69 6f 6e 61 6c 20 67 6c 6f 62 61 6c 20 70 61 72 61 6d 65 | .Groups.Additional.global.parame |
| 314c0 | 74 65 72 73 20 61 72 65 20 73 65 74 2c 20 69 6e 63 6c 75 64 69 6e 67 20 74 68 65 20 6d 61 78 69 | ters.are.set,.including.the.maxi |
| 314e0 | 6d 75 6d 20 6e 75 6d 62 65 72 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 6c 69 6d 69 74 20 6f 66 20 34 | mum.number.connection.limit.of.4 |
| 31500 | 30 30 30 20 61 6e 64 20 61 20 6d 69 6e 69 6d 75 6d 20 54 4c 53 20 76 65 72 73 69 6f 6e 20 6f 66 | 000.and.a.minimum.TLS.version.of |
| 31520 | 20 31 2e 33 2e 00 41 64 64 69 74 69 6f 6e 61 6c 20 6f 70 74 69 6f 6e 20 74 6f 20 72 75 6e 20 54 | .1.3..Additional.option.to.run.T |
| 31540 | 46 54 50 20 73 65 72 76 65 72 20 69 6e 20 74 68 65 20 3a 61 62 62 72 3a 60 56 52 46 20 28 56 69 | FTP.server.in.the.:abbr:`VRF.(Vi |
| 31560 | 72 74 75 61 6c 20 52 6f 75 74 69 6e 67 20 61 6e 64 20 46 6f 72 77 61 72 64 69 6e 67 29 60 20 63 | rtual.Routing.and.Forwarding)`.c |
| 31580 | 6f 6e 74 65 78 74 00 41 64 64 69 74 69 6f 6e 61 6c 6c 79 20 79 6f 75 20 73 68 6f 75 6c 64 20 6b | ontext.Additionally.you.should.k |
| 315a0 | 65 65 70 20 69 6e 20 6d 69 6e 64 20 74 68 61 74 20 74 68 69 73 20 66 65 61 74 75 72 65 20 66 75 | eep.in.mind.that.this.feature.fu |
| 315c0 | 6e 64 61 6d 65 6e 74 61 6c 6c 79 20 64 69 73 61 62 6c 65 73 20 74 68 65 20 61 62 69 6c 69 74 79 | ndamentally.disables.the.ability |
| 315e0 | 20 74 6f 20 75 73 65 20 77 69 64 65 6c 79 20 64 65 70 6c 6f 79 65 64 20 42 47 50 20 66 65 61 74 | .to.use.widely.deployed.BGP.feat |
| 31600 | 75 72 65 73 2e 20 42 47 50 20 75 6e 6e 75 6d 62 65 72 65 64 2c 20 68 6f 73 74 6e 61 6d 65 20 73 | ures..BGP.unnumbered,.hostname.s |
| 31620 | 75 70 70 6f 72 74 2c 20 41 53 34 2c 20 41 64 64 70 61 74 68 2c 20 52 6f 75 74 65 20 52 65 66 72 | upport,.AS4,.Addpath,.Route.Refr |
| 31640 | 65 73 68 2c 20 4f 52 46 2c 20 44 79 6e 61 6d 69 63 20 43 61 70 61 62 69 6c 69 74 69 65 73 2c 20 | esh,.ORF,.Dynamic.Capabilities,. |
| 31660 | 61 6e 64 20 67 72 61 63 65 66 75 6c 20 72 65 73 74 61 72 74 2e 00 41 64 64 69 74 69 6f 6e 61 6c | and.graceful.restart..Additional |
| 31680 | 6c 79 2c 20 65 61 63 68 20 63 6c 69 65 6e 74 20 6e 65 65 64 73 20 61 20 63 6f 70 79 20 6f 66 20 | ly,.each.client.needs.a.copy.of. |
| 316a0 | 63 61 20 63 65 72 74 20 61 6e 64 20 69 74 73 20 6f 77 6e 20 63 6c 69 65 6e 74 20 6b 65 79 20 61 | ca.cert.and.its.own.client.key.a |
| 316c0 | 6e 64 20 63 65 72 74 20 66 69 6c 65 73 2e 20 54 68 65 20 66 69 6c 65 73 20 61 72 65 20 70 6c 61 | nd.cert.files..The.files.are.pla |
| 316e0 | 69 6e 74 65 78 74 20 73 6f 20 74 68 65 79 20 6d 61 79 20 62 65 20 63 6f 70 69 65 64 20 65 69 74 | intext.so.they.may.be.copied.eit |
| 31700 | 68 65 72 20 6d 61 6e 75 61 6c 6c 79 20 66 72 6f 6d 20 74 68 65 20 43 4c 49 2e 20 43 6c 69 65 6e | her.manually.from.the.CLI..Clien |
| 31720 | 74 20 6b 65 79 20 61 6e 64 20 63 65 72 74 20 66 69 6c 65 73 20 73 68 6f 75 6c 64 20 62 65 20 73 | t.key.and.cert.files.should.be.s |
| 31740 | 69 67 6e 65 64 20 77 69 74 68 20 74 68 65 20 70 72 6f 70 65 72 20 63 61 20 63 65 72 74 20 61 6e | igned.with.the.proper.ca.cert.an |
| 31760 | 64 20 67 65 6e 65 72 61 74 65 64 20 6f 6e 20 74 68 65 20 73 65 72 76 65 72 20 73 69 64 65 2e 00 | d.generated.on.the.server.side.. |
| 31780 | 41 64 64 69 74 69 6f 6e 61 6c 6c 79 2c 20 65 61 63 68 20 63 6c 69 65 6e 74 20 6e 65 65 64 73 20 | Additionally,.each.client.needs. |
| 317a0 | 61 20 63 6f 70 79 20 6f 66 20 63 61 20 63 65 72 74 20 61 6e 64 20 69 74 73 20 6f 77 6e 20 63 6c | a.copy.of.ca.cert.and.its.own.cl |
| 317c0 | 69 65 6e 74 20 6b 65 79 20 61 6e 64 20 63 65 72 74 20 66 69 6c 65 73 2e 20 54 68 65 20 66 69 6c | ient.key.and.cert.files..The.fil |
| 317e0 | 65 73 20 61 72 65 20 70 6c 61 69 6e 74 65 78 74 20 73 6f 20 74 68 65 79 20 6d 61 79 20 62 65 20 | es.are.plaintext.so.they.may.be. |
| 31800 | 63 6f 70 69 65 64 20 6d 61 6e 75 61 6c 6c 79 20 66 72 6f 6d 20 74 68 65 20 43 4c 49 2e 20 43 6c | copied.manually.from.the.CLI..Cl |
| 31820 | 69 65 6e 74 20 6b 65 79 20 61 6e 64 20 63 65 72 74 20 66 69 6c 65 73 20 73 68 6f 75 6c 64 20 62 | ient.key.and.cert.files.should.b |
| 31840 | 65 20 73 69 67 6e 65 64 20 77 69 74 68 20 74 68 65 20 70 72 6f 70 65 72 20 63 61 20 63 65 72 74 | e.signed.with.the.proper.ca.cert |
| 31860 | 20 61 6e 64 20 67 65 6e 65 72 61 74 65 64 20 6f 6e 20 74 68 65 20 73 65 72 76 65 72 20 73 69 64 | .and.generated.on.the.server.sid |
| 31880 | 65 2e 00 41 64 64 69 74 69 6f 6e 61 6c 6c 79 2c 20 77 65 20 77 61 6e 74 20 74 6f 20 75 73 65 20 | e..Additionally,.we.want.to.use. |
| 318a0 | 56 50 4e 73 20 6f 6e 6c 79 20 6f 6e 20 6f 75 72 20 65 74 68 31 20 69 6e 74 65 72 66 61 63 65 20 | VPNs.only.on.our.eth1.interface. |
| 318c0 | 28 74 68 65 20 65 78 74 65 72 6e 61 6c 20 69 6e 74 65 72 66 61 63 65 20 69 6e 20 74 68 65 20 69 | (the.external.interface.in.the.i |
| 318e0 | 6d 61 67 65 20 61 62 6f 76 65 29 00 41 64 64 72 65 73 73 00 41 64 64 72 65 73 73 20 43 6f 6e 76 | mage.above).Address.Address.Conv |
| 31900 | 65 72 73 69 6f 6e 00 41 64 64 72 65 73 73 20 46 61 6d 69 6c 69 65 73 00 41 64 64 72 65 73 73 20 | ersion.Address.Families.Address. |
| 31920 | 47 72 6f 75 70 73 00 41 64 64 72 65 73 73 20 67 72 6f 75 70 73 20 61 72 65 20 75 73 65 66 75 6c | Groups.Address.groups.are.useful |
| 31940 | 20 77 68 65 6e 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 63 72 65 61 74 65 20 72 75 6c 65 73 20 74 | .when.you.need.to.create.rules.t |
| 31960 | 68 61 74 20 61 70 70 6c 79 20 74 6f 20 73 70 65 63 69 66 69 63 20 49 50 20 61 64 64 72 65 73 73 | hat.apply.to.specific.IP.address |
| 31980 | 65 73 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 2c 20 69 66 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 | es..For.example,.if.you.want.to. |
| 319a0 | 63 72 65 61 74 65 20 61 20 72 75 6c 65 20 74 68 61 74 20 6d 6f 6e 69 74 6f 72 73 20 74 72 61 66 | create.a.rule.that.monitors.traf |
| 319c0 | 66 69 63 20 67 6f 69 6e 67 20 74 6f 20 6f 72 20 66 72 6f 6d 20 61 20 73 70 65 63 69 66 69 63 20 | fic.going.to.or.from.a.specific. |
| 319e0 | 49 50 20 61 64 64 72 65 73 73 2c 20 79 6f 75 20 63 61 6e 20 75 73 65 20 74 68 65 20 67 72 6f 75 | IP.address,.you.can.use.the.grou |
| 31a00 | 70 20 6e 61 6d 65 20 69 6e 73 74 65 61 64 20 6f 66 20 74 68 65 20 61 63 74 75 61 6c 20 49 50 20 | p.name.instead.of.the.actual.IP. |
| 31a20 | 61 64 64 72 65 73 73 2e 20 54 68 69 73 20 73 69 6d 70 6c 69 66 69 65 73 20 72 75 6c 65 20 6d 61 | address..This.simplifies.rule.ma |
| 31a40 | 6e 61 67 65 6d 65 6e 74 20 61 6e 64 20 6d 61 6b 65 73 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 | nagement.and.makes.the.configura |
| 31a60 | 74 69 6f 6e 20 6d 6f 72 65 20 66 6c 65 78 69 62 6c 65 2e 00 41 64 64 72 65 73 73 20 70 6f 6f 6c | tion.more.flexible..Address.pool |
| 31a80 | 20 73 68 61 6c 6c 20 62 65 20 60 60 32 30 30 31 3a 64 62 38 3a 3a 31 30 30 60 60 20 74 68 72 6f | .shall.be.``2001:db8::100``.thro |
| 31aa0 | 75 67 68 20 60 60 32 30 30 31 3a 64 62 38 3a 3a 31 39 39 60 60 2e 00 41 64 64 72 65 73 73 20 70 | ugh.``2001:db8::199``..Address.p |
| 31ac0 | 6f 6f 6c 73 00 41 64 64 72 65 73 73 20 74 6f 20 6c 69 73 74 65 6e 20 66 6f 72 20 48 54 54 50 53 | ools.Address.to.listen.for.HTTPS |
| 31ae0 | 20 72 65 71 75 65 73 74 73 00 41 64 64 73 20 72 65 67 69 73 74 72 79 20 74 6f 20 6c 69 73 74 20 | .requests.Adds.registry.to.list. |
| 31b00 | 6f 66 20 75 6e 71 75 61 6c 69 66 69 65 64 2d 73 65 61 72 63 68 2d 72 65 67 69 73 74 72 69 65 73 | of.unqualified-search-registries |
| 31b20 | 2e 20 42 79 20 64 65 66 61 75 6c 74 2c 20 66 6f 72 20 61 6e 79 20 69 6d 61 67 65 20 74 68 61 74 | ..By.default,.for.any.image.that |
| 31b40 | 20 64 6f 65 73 20 6e 6f 74 20 69 6e 63 6c 75 64 65 20 74 68 65 20 72 65 67 69 73 74 72 79 20 69 | .does.not.include.the.registry.i |
| 31b60 | 6e 20 74 68 65 20 69 6d 61 67 65 20 6e 61 6d 65 2c 20 56 79 4f 53 20 77 69 6c 6c 20 75 73 65 20 | n.the.image.name,.VyOS.will.use. |
| 31b80 | 64 6f 63 6b 65 72 2e 69 6f 20 61 6e 64 20 71 75 61 79 2e 69 6f 20 61 73 20 74 68 65 20 63 6f 6e | docker.io.and.quay.io.as.the.con |
| 31ba0 | 74 61 69 6e 65 72 20 72 65 67 69 73 74 72 79 2e 00 41 64 64 73 20 72 65 67 69 73 74 72 79 20 74 | tainer.registry..Adds.registry.t |
| 31bc0 | 6f 20 6c 69 73 74 20 6f 66 20 75 6e 71 75 61 6c 69 66 69 65 64 2d 73 65 61 72 63 68 2d 72 65 67 | o.list.of.unqualified-search-reg |
| 31be0 | 69 73 74 72 69 65 73 2e 20 42 79 20 64 65 66 61 75 6c 74 2c 20 66 6f 72 20 61 6e 79 20 69 6d 61 | istries..By.default,.for.any.ima |
| 31c00 | 67 65 20 74 68 61 74 20 64 6f 65 73 20 6e 6f 74 20 69 6e 63 6c 75 64 65 20 74 68 65 20 72 65 67 | ge.that.does.not.include.the.reg |
| 31c20 | 69 73 74 72 79 20 69 6e 20 74 68 65 20 69 6d 61 67 65 20 6e 61 6d 65 2c 20 56 79 6f 73 20 77 69 | istry.in.the.image.name,.Vyos.wi |
| 31c40 | 6c 6c 20 75 73 65 20 64 6f 63 6b 65 72 2e 69 6f 20 61 73 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 | ll.use.docker.io.as.the.containe |
| 31c60 | 72 20 72 65 67 69 73 74 72 79 2e 00 41 64 64 73 20 74 68 65 20 50 6f 77 65 72 20 43 6f 6e 73 74 | r.registry..Adds.the.Power.Const |
| 31c80 | 72 61 69 6e 74 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 65 6c 65 6d 65 6e 74 20 74 6f 20 42 65 61 | raint.information.element.to.Bea |
| 31ca0 | 63 6f 6e 20 61 6e 64 20 50 72 6f 62 65 20 52 65 73 70 6f 6e 73 65 20 66 72 61 6d 65 73 2e 00 41 | con.and.Probe.Response.frames..A |
| 31cc0 | 64 6d 69 6e 69 73 74 72 61 74 69 76 65 20 44 69 73 74 61 6e 63 65 00 41 64 76 61 6e 63 65 64 20 | dministrative.Distance.Advanced. |
| 31ce0 | 49 6e 74 65 72 66 61 63 65 20 4f 70 74 69 6f 6e 73 00 41 64 76 61 6e 63 65 64 20 4f 70 74 69 6f | Interface.Options.Advanced.Optio |
| 31d00 | 6e 73 00 41 64 76 61 6e 63 65 64 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 61 6e 20 62 65 | ns.Advanced.configuration.can.be |
| 31d20 | 20 75 73 65 64 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 61 70 70 6c 79 20 73 6f 75 72 63 65 20 6f | .used.in.order.to.apply.source.o |
| 31d40 | 72 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 4e 41 54 2c 20 61 6e 64 20 77 69 74 68 69 6e 20 61 20 | r.destination.NAT,.and.within.a. |
| 31d60 | 73 69 6e 67 6c 65 20 72 75 6c 65 2c 20 62 65 20 61 62 6c 65 20 74 6f 20 64 65 66 69 6e 65 20 6d | single.rule,.be.able.to.define.m |
| 31d80 | 75 6c 74 69 70 6c 65 20 74 72 61 6e 73 6c 61 74 65 64 20 61 64 64 72 65 73 73 65 73 2c 20 73 6f | ultiple.translated.addresses,.so |
| 31da0 | 20 4e 41 54 20 62 61 6c 61 6e 63 65 73 20 74 68 65 20 74 72 61 6e 73 6c 61 74 69 6f 6e 73 20 61 | .NAT.balances.the.translations.a |
| 31dc0 | 6d 6f 6e 67 20 74 68 65 6d 2e 00 41 64 76 61 6e 74 61 67 65 73 20 6f 66 20 43 47 4e 41 54 00 41 | mong.them..Advantages.of.CGNAT.A |
| 31de0 | 64 76 61 6e 74 61 67 65 73 20 6f 66 20 4f 70 65 6e 56 50 4e 20 61 72 65 3a 00 41 64 76 65 72 74 | dvantages.of.OpenVPN.are:.Advert |
| 31e00 | 69 73 65 20 44 4e 53 20 73 65 72 76 65 72 20 70 65 72 20 68 74 74 70 73 3a 2f 2f 74 6f 6f 6c 73 | ise.DNS.server.per.https://tools |
| 31e20 | 2e 69 65 74 66 2e 6f 72 67 2f 68 74 6d 6c 2f 72 66 63 36 31 30 36 00 41 64 76 65 72 74 69 73 65 | .ietf.org/html/rfc6106.Advertise |
| 31e40 | 6d 65 6e 74 20 49 6e 74 65 72 76 61 6c 20 4f 70 74 69 6f 6e 20 28 73 70 65 63 69 66 69 65 64 20 | ment.Interval.Option.(specified. |
| 31e60 | 62 79 20 4d 6f 62 69 6c 65 20 49 50 76 36 29 20 69 73 20 61 6c 77 61 79 73 20 69 6e 63 6c 75 64 | by.Mobile.IPv6).is.always.includ |
| 31e80 | 65 64 20 69 6e 20 52 6f 75 74 65 72 20 41 64 76 65 72 74 69 73 65 6d 65 6e 74 73 20 75 6e 6c 65 | ed.in.Router.Advertisements.unle |
| 31ea0 | 73 73 20 74 68 69 73 20 6f 70 74 69 6f 6e 20 69 73 20 73 65 74 2e 00 41 64 76 65 72 74 69 73 69 | ss.this.option.is.set..Advertisi |
| 31ec0 | 6e 67 20 61 20 4e 41 54 36 34 20 50 72 65 66 69 78 00 41 64 76 65 72 74 69 73 69 6e 67 20 61 20 | ng.a.NAT64.Prefix.Advertising.a. |
| 31ee0 | 50 72 65 66 69 78 00 41 66 74 65 72 20 63 6f 6d 6d 69 74 20 74 68 65 20 70 6c 61 69 6e 74 65 78 | Prefix.After.commit.the.plaintex |
| 31f00 | 74 20 70 61 73 73 77 6f 72 64 73 20 77 69 6c 6c 20 62 65 20 68 61 73 68 65 64 20 61 6e 64 20 73 | t.passwords.will.be.hashed.and.s |
| 31f20 | 74 6f 72 65 64 20 69 6e 20 79 6f 75 72 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 20 54 68 65 | tored.in.your.configuration..The |
| 31f40 | 20 72 65 73 75 6c 74 69 6e 67 20 43 4c 49 20 63 6f 6e 66 69 67 20 77 69 6c 6c 20 6c 6f 6f 6b 20 | .resulting.CLI.config.will.look. |
| 31f60 | 6c 69 6b 65 3a 00 41 66 74 65 72 20 63 6f 6d 6d 69 74 74 69 6e 67 20 74 68 65 20 63 6f 6e 66 69 | like:.After.committing.the.confi |
| 31f80 | 67 75 72 61 74 69 6f 6e 20 77 65 20 63 61 6e 20 76 65 72 69 66 79 20 61 6c 6c 20 6c 65 61 6b 65 | guration.we.can.verify.all.leake |
| 31fa0 | 64 20 72 6f 75 74 65 73 20 61 72 65 20 69 6e 73 74 61 6c 6c 65 64 2c 20 61 6e 64 20 74 72 79 20 | d.routes.are.installed,.and.try. |
| 31fc0 | 74 6f 20 49 43 4d 50 20 70 69 6e 67 20 50 43 31 20 66 72 6f 6d 20 50 43 33 2e 00 41 66 74 65 72 | to.ICMP.ping.PC1.from.PC3..After |
| 31fe0 | 20 63 6f 6d 70 6c 65 74 69 6e 67 20 74 68 65 20 73 65 72 76 69 63 65 20 63 6f 6e 66 69 67 75 72 | .completing.the.service.configur |
| 32000 | 61 74 69 6f 6e 20 69 6e 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d 6f 64 65 2c 20 74 68 65 | ation.in.configuration.mode,.the |
| 32020 | 20 6d 61 69 6e 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 69 6c 65 20 73 75 72 69 63 61 74 | .main.configuration.file.suricat |
| 32040 | 61 2e 79 61 6d 6c 20 69 73 20 63 72 65 61 74 65 64 2c 20 69 6e 74 6f 20 77 68 69 63 68 20 61 6c | a.yaml.is.created,.into.which.al |
| 32060 | 6c 20 73 70 65 63 69 66 69 65 64 20 70 61 72 61 6d 65 74 65 72 73 20 61 72 65 20 61 64 64 65 64 | l.specified.parameters.are.added |
| 32080 | 2e 20 54 68 65 6e 2c 20 74 6f 20 65 6e 73 75 72 65 20 70 72 6f 70 65 72 20 6f 70 65 72 61 74 69 | ..Then,.to.ensure.proper.operati |
| 320a0 | 6f 6e 2c 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 3a 6f 70 63 6d 64 3a 60 75 70 64 61 74 65 20 73 | on,.the.command.:opcmd:`update.s |
| 320c0 | 75 72 69 63 61 74 61 60 20 6d 75 73 74 20 62 65 20 72 75 6e 20 66 72 6f 6d 20 6f 70 65 72 61 74 | uricata`.must.be.run.from.operat |
| 320e0 | 69 6f 6e 61 6c 20 6d 6f 64 65 2c 20 77 61 69 74 69 6e 67 20 66 6f 72 20 53 75 72 69 63 61 74 61 | ional.mode,.waiting.for.Suricata |
| 32100 | 20 74 6f 20 75 70 64 61 74 65 20 61 6c 6c 20 69 74 73 20 72 75 6c 65 73 2c 20 77 68 69 63 68 20 | .to.update.all.its.rules,.which. |
| 32120 | 61 72 65 20 75 73 65 64 20 66 6f 72 20 61 6e 61 6c 79 7a 69 6e 67 20 74 72 61 66 66 69 63 20 66 | are.used.for.analyzing.traffic.f |
| 32140 | 6f 72 20 74 68 72 65 61 74 73 20 61 6e 64 20 61 74 74 61 63 6b 73 2e 00 41 66 74 65 72 20 74 68 | or.threats.and.attacks..After.th |
| 32160 | 65 20 50 4b 49 20 63 65 72 74 73 20 61 72 65 20 61 6c 6c 20 73 65 74 20 75 70 20 77 65 20 63 61 | e.PKI.certs.are.all.set.up.we.ca |
| 32180 | 6e 20 73 74 61 72 74 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 6f 75 72 20 49 50 53 65 63 2f 49 4b | n.start.configuring.our.IPSec/IK |
| 321a0 | 45 20 70 72 6f 70 6f 73 61 6c 73 20 75 73 65 64 20 66 6f 72 20 6b 65 79 2d 65 78 63 68 61 6e 67 | E.proposals.used.for.key-exchang |
| 321c0 | 65 20 65 6e 64 20 64 61 74 61 20 65 6e 63 72 79 70 74 69 6f 6e 2e 20 54 68 65 20 75 73 65 64 20 | e.end.data.encryption..The.used. |
| 321e0 | 65 6e 63 72 79 70 74 69 6f 6e 20 63 69 70 68 65 72 73 20 61 6e 64 20 69 6e 74 65 67 72 69 74 79 | encryption.ciphers.and.integrity |
| 32200 | 20 61 6c 67 6f 72 69 74 68 6d 73 20 76 61 72 79 20 66 72 6f 6d 20 6f 70 65 72 61 74 69 6e 67 20 | .algorithms.vary.from.operating. |
| 32220 | 73 79 73 74 65 6d 20 74 6f 20 6f 70 65 72 61 74 69 6e 67 20 73 79 73 74 65 6d 2e 20 54 68 65 20 | system.to.operating.system..The. |
| 32240 | 6f 6e 65 73 20 75 73 65 64 20 69 6e 20 74 68 69 73 20 65 78 61 6d 70 6c 65 20 61 72 65 20 76 61 | ones.used.in.this.example.are.va |
| 32260 | 6c 69 64 61 74 65 64 20 74 6f 20 77 6f 72 6b 20 6f 6e 20 57 69 6e 64 6f 77 73 20 31 30 2e 00 41 | lidated.to.work.on.Windows.10..A |
| 32280 | 66 74 65 72 20 74 68 65 20 50 4b 49 20 63 65 72 74 73 20 61 72 65 20 61 6c 6c 20 73 65 74 20 75 | fter.the.PKI.certs.are.all.set.u |
| 322a0 | 70 20 77 65 20 63 61 6e 20 73 74 61 72 74 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 6f 75 72 20 49 | p.we.can.start.configuring.our.I |
| 322c0 | 50 53 65 63 2f 49 4b 45 20 70 72 6f 70 6f 73 61 6c 73 20 75 73 65 64 20 66 6f 72 20 6b 65 79 2d | PSec/IKE.proposals.used.for.key- |
| 322e0 | 65 78 63 68 61 6e 67 65 20 65 6e 64 20 64 61 74 61 20 65 6e 63 72 79 70 74 69 6f 6e 2e 20 54 68 | exchange.end.data.encryption..Th |
| 32300 | 65 20 75 73 65 64 20 65 6e 63 72 79 70 74 69 6f 6e 20 63 69 70 68 65 72 73 20 61 6e 64 20 69 6e | e.used.encryption.ciphers.and.in |
| 32320 | 74 65 67 72 69 74 79 20 61 6c 67 6f 72 69 74 68 6d 73 20 76 61 72 79 20 66 72 6f 6d 20 6f 70 65 | tegrity.algorithms.vary.from.ope |
| 32340 | 72 61 74 69 6e 67 20 73 79 73 74 65 6d 20 74 6f 20 6f 70 65 72 61 74 69 6e 67 20 73 79 73 74 65 | rating.system.to.operating.syste |
| 32360 | 6d 2e 20 54 68 65 20 6f 6e 65 73 20 75 73 65 64 20 69 6e 20 74 68 69 73 20 70 6f 73 74 20 61 72 | m..The.ones.used.in.this.post.ar |
| 32380 | 65 20 76 61 6c 69 64 61 74 65 64 20 74 6f 20 77 6f 72 6b 20 6f 6e 20 62 6f 74 68 20 57 69 6e 64 | e.validated.to.work.on.both.Wind |
| 323a0 | 6f 77 73 20 31 30 20 61 6e 64 20 69 4f 53 2f 69 50 61 64 4f 53 20 31 34 20 74 6f 20 31 37 2e 00 | ows.10.and.iOS/iPadOS.14.to.17.. |
| 323c0 | 41 66 74 65 72 20 77 65 20 68 61 76 65 20 69 6d 70 6f 72 74 65 64 20 74 68 65 20 43 41 20 63 65 | After.we.have.imported.the.CA.ce |
| 323e0 | 72 74 69 66 69 63 61 74 65 28 73 29 20 77 65 20 63 61 6e 20 6e 6f 77 20 69 6d 70 6f 72 74 20 61 | rtificate(s).we.can.now.import.a |
| 32400 | 6e 64 20 61 64 64 20 63 65 72 74 69 66 69 63 61 74 65 73 20 75 73 65 64 20 62 79 20 73 65 72 76 | nd.add.certificates.used.by.serv |
| 32420 | 69 63 65 73 20 6f 6e 20 74 68 69 73 20 72 6f 75 74 65 72 2e 00 41 66 74 65 72 20 79 6f 75 20 6f | ices.on.this.router..After.you.o |
| 32440 | 62 74 61 69 6e 20 79 6f 75 72 20 73 65 72 76 65 72 20 63 65 72 74 69 66 69 63 61 74 65 20 79 6f | btain.your.server.certificate.yo |
| 32460 | 75 20 63 61 6e 20 69 6d 70 6f 72 74 20 69 74 20 66 72 6f 6d 20 61 20 66 69 6c 65 20 6f 6e 20 74 | u.can.import.it.from.a.file.on.t |
| 32480 | 68 65 20 6c 6f 63 61 6c 20 66 69 6c 65 73 79 73 74 65 6d 2c 20 6f 72 20 70 61 73 74 65 20 69 74 | he.local.filesystem,.or.paste.it |
| 324a0 | 20 69 6e 74 6f 20 74 68 65 20 43 4c 49 2e 20 50 6c 65 61 73 65 20 6e 6f 74 65 20 74 68 61 74 20 | .into.the.CLI..Please.note.that. |
| 324c0 | 77 68 65 6e 20 65 6e 74 65 72 69 6e 67 20 74 68 65 20 63 65 72 74 69 66 69 63 61 74 65 20 6d 61 | when.entering.the.certificate.ma |
| 324e0 | 6e 75 61 6c 6c 79 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 73 74 72 69 70 20 74 68 65 20 60 60 2d | nually.you.need.to.strip.the.``- |
| 32500 | 2d 2d 2d 2d 42 45 47 49 4e 20 4b 45 59 2d 2d 2d 2d 2d 60 60 20 61 6e 64 20 60 60 2d 2d 2d 2d 2d | ----BEGIN.KEY-----``.and.``----- |
| 32520 | 45 4e 44 20 4b 45 59 2d 2d 2d 2d 2d 60 60 20 74 61 67 73 2e 20 41 6c 73 6f 2c 20 74 68 65 20 63 | END.KEY-----``.tags..Also,.the.c |
| 32540 | 65 72 74 69 66 69 63 61 74 65 20 6f 72 20 6b 65 79 20 6e 65 65 64 73 20 74 6f 20 62 65 20 70 72 | ertificate.or.key.needs.to.be.pr |
| 32560 | 65 73 65 6e 74 65 64 20 69 6e 20 61 20 73 69 6e 67 6c 65 20 6c 69 6e 65 20 77 69 74 68 6f 75 74 | esented.in.a.single.line.without |
| 32580 | 20 6c 69 6e 65 20 62 72 65 61 6b 73 20 28 60 60 5c 6e 60 60 29 2e 00 41 66 74 65 72 20 79 6f 75 | .line.breaks.(``\n``)..After.you |
| 325a0 | 20 6f 62 74 61 69 6e 65 64 20 79 6f 75 72 20 73 65 72 76 65 72 20 63 65 72 74 69 66 69 63 61 74 | .obtained.your.server.certificat |
| 325c0 | 65 20 79 6f 75 20 63 61 6e 20 69 6d 70 6f 72 74 20 69 74 20 66 72 6f 6d 20 61 20 66 69 6c 65 20 | e.you.can.import.it.from.a.file. |
| 325e0 | 6f 6e 20 74 68 65 20 6c 6f 63 61 6c 20 66 69 6c 65 73 79 73 74 65 6d 2c 20 6f 72 20 70 61 73 74 | on.the.local.filesystem,.or.past |
| 32600 | 65 20 69 74 20 69 6e 74 6f 20 74 68 65 20 43 4c 49 2e 20 50 6c 65 61 73 65 20 6e 6f 74 65 20 74 | e.it.into.the.CLI..Please.note.t |
| 32620 | 68 61 74 20 77 68 65 6e 20 65 6e 74 65 72 69 6e 67 20 74 68 65 20 63 65 72 74 69 66 69 63 61 74 | hat.when.entering.the.certificat |
| 32640 | 65 20 6d 61 6e 75 61 6c 6c 79 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 73 74 72 69 70 20 74 68 65 | e.manually.you.need.to.strip.the |
| 32660 | 20 60 60 2d 2d 2d 2d 2d 42 45 47 49 4e 20 4b 45 59 2d 2d 2d 2d 2d 60 60 20 61 6e 64 20 60 60 2d | .``-----BEGIN.KEY-----``.and.``- |
| 32680 | 2d 2d 2d 2d 45 4e 44 20 4b 45 59 2d 2d 2d 2d 2d 60 60 20 74 61 67 73 2e 20 41 6c 73 6f 2c 20 74 | ----END.KEY-----``.tags..Also,.t |
| 326a0 | 68 65 20 63 65 72 74 69 66 69 63 61 74 65 20 6f 72 20 6b 65 79 20 6e 65 65 64 73 20 74 6f 20 62 | he.certificate.or.key.needs.to.b |
| 326c0 | 65 20 70 72 65 73 65 6e 74 65 64 20 69 6e 20 61 20 73 69 6e 67 6c 65 20 6c 69 6e 65 20 77 69 74 | e.presented.in.a.single.line.wit |
| 326e0 | 68 6f 75 74 20 6c 69 6e 65 20 62 72 65 61 6b 73 20 28 60 60 5c 6e 60 60 29 2e 00 41 67 65 6e 74 | hout.line.breaks.(``\n``)..Agent |
| 32700 | 20 2d 20 73 6f 66 74 77 61 72 65 20 77 68 69 63 68 20 72 75 6e 73 20 6f 6e 20 6d 61 6e 61 67 65 | .-.software.which.runs.on.manage |
| 32720 | 64 20 64 65 76 69 63 65 73 00 41 6c 65 72 74 00 41 6c 67 6f 72 69 74 68 6d 00 41 6c 69 61 73 65 | d.devices.Alert.Algorithm.Aliase |
| 32740 | 73 00 41 6c 6c 20 44 4e 53 20 72 65 71 75 65 73 74 73 20 66 6f 72 20 65 78 61 6d 70 6c 65 2e 63 | s.All.DNS.requests.for.example.c |
| 32760 | 6f 6d 20 6d 75 73 74 20 62 65 20 66 6f 72 77 61 72 64 65 64 20 74 6f 20 61 20 44 4e 53 20 73 65 | om.must.be.forwarded.to.a.DNS.se |
| 32780 | 72 76 65 72 20 61 74 20 31 39 32 2e 30 2e 32 2e 32 35 34 20 61 6e 64 20 32 30 30 31 3a 64 62 38 | rver.at.192.0.2.254.and.2001:db8 |
| 327a0 | 3a 63 61 66 65 3a 3a 31 00 41 6c 6c 20 53 4e 4d 50 20 4d 49 42 73 20 61 72 65 20 6c 6f 63 61 74 | :cafe::1.All.SNMP.MIBs.are.locat |
| 327c0 | 65 64 20 69 6e 20 65 61 63 68 20 69 6d 61 67 65 20 6f 66 20 56 79 4f 53 20 68 65 72 65 3a 20 60 | ed.in.each.image.of.VyOS.here:.` |
| 327e0 | 60 2f 75 73 72 2f 73 68 61 72 65 2f 73 6e 6d 70 2f 6d 69 62 73 2f 60 60 00 41 6c 6c 20 61 76 61 | `/usr/share/snmp/mibs/``.All.ava |
| 32800 | 69 6c 61 62 6c 65 20 57 57 41 4e 20 63 61 72 64 73 20 68 61 76 65 20 61 20 62 75 69 6c 64 20 69 | ilable.WWAN.cards.have.a.build.i |
| 32820 | 6e 2c 20 72 65 70 72 6f 67 72 61 6d 6d 61 62 6c 65 20 66 69 72 6d 77 61 72 65 2e 20 4d 6f 73 74 | n,.reprogrammable.firmware..Most |
| 32840 | 20 6f 66 20 74 68 65 20 76 65 6e 64 6f 72 73 20 70 72 6f 76 69 64 65 20 61 20 72 65 67 75 6c 61 | .of.the.vendors.provide.a.regula |
| 32860 | 72 20 75 70 64 61 74 65 20 74 6f 20 74 68 65 20 66 69 72 6d 77 61 72 65 20 75 73 65 64 20 69 6e | r.update.to.the.firmware.used.in |
| 32880 | 20 74 68 65 20 62 61 73 65 62 61 6e 64 20 63 68 69 70 2e 00 41 6c 6c 20 61 76 61 69 6c 61 62 6c | .the.baseband.chip..All.availabl |
| 328a0 | 65 20 57 57 41 4e 20 63 61 72 64 73 20 68 61 76 65 20 61 20 62 75 69 6c 74 2d 69 6e 2c 20 72 65 | e.WWAN.cards.have.a.built-in,.re |
| 328c0 | 70 72 6f 67 72 61 6d 6d 61 62 6c 65 20 66 69 72 6d 77 61 72 65 2e 20 4d 6f 73 74 20 76 65 6e 64 | programmable.firmware..Most.vend |
| 328e0 | 6f 72 73 20 70 72 6f 76 69 64 65 20 72 65 67 75 6c 61 72 20 75 70 64 61 74 65 73 20 74 6f 20 66 | ors.provide.regular.updates.to.f |
| 32900 | 69 72 6d 77 61 72 65 20 75 73 65 64 20 69 6e 20 74 68 65 20 62 61 73 65 62 61 6e 64 20 63 68 69 | irmware.used.in.the.baseband.chi |
| 32920 | 70 2e 00 41 6c 6c 20 63 65 72 74 69 66 69 63 61 74 65 73 20 73 68 6f 75 6c 64 20 62 65 20 73 74 | p..All.certificates.should.be.st |
| 32940 | 6f 72 65 64 20 6f 6e 20 56 79 4f 53 20 75 6e 64 65 72 20 60 60 2f 63 6f 6e 66 69 67 2f 61 75 74 | ored.on.VyOS.under.``/config/aut |
| 32960 | 68 60 60 2e 20 49 66 20 63 65 72 74 69 66 69 63 61 74 65 73 20 61 72 65 20 6e 6f 74 20 73 74 6f | h``..If.certificates.are.not.sto |
| 32980 | 72 65 64 20 69 6e 20 74 68 65 20 60 60 2f 63 6f 6e 66 69 67 60 60 20 64 69 72 65 63 74 6f 72 79 | red.in.the.``/config``.directory |
| 329a0 | 20 74 68 65 79 20 77 69 6c 6c 20 6e 6f 74 20 62 65 20 6d 69 67 72 61 74 65 64 20 64 75 72 69 6e | .they.will.not.be.migrated.durin |
| 329c0 | 67 20 61 20 73 6f 66 74 77 61 72 65 20 75 70 64 61 74 65 2e 00 41 6c 6c 20 66 61 63 69 6c 69 74 | g.a.software.update..All.facilit |
| 329e0 | 69 65 73 00 41 6c 6c 20 69 6e 74 65 72 66 61 63 65 73 20 75 73 65 64 20 66 6f 72 20 74 68 65 20 | ies.All.interfaces.used.for.the. |
| 32a00 | 44 48 43 50 20 72 65 6c 61 79 20 6d 75 73 74 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 2e 20 54 | DHCP.relay.must.be.configured..T |
| 32a20 | 68 69 73 20 69 6e 63 6c 75 64 65 73 20 74 68 65 20 75 70 6c 69 6e 6b 20 74 6f 20 74 68 65 20 44 | his.includes.the.uplink.to.the.D |
| 32a40 | 48 43 50 20 73 65 72 76 65 72 2e 00 41 6c 6c 20 69 74 65 6d 73 20 69 6e 20 61 20 73 79 6e 63 20 | HCP.server..All.items.in.a.sync. |
| 32a60 | 67 72 6f 75 70 20 73 68 6f 75 6c 64 20 62 65 20 73 69 6d 69 6c 61 72 6c 79 20 63 6f 6e 66 69 67 | group.should.be.similarly.config |
| 32a80 | 75 72 65 64 2e 20 49 66 20 6f 6e 65 20 56 52 52 50 20 67 72 6f 75 70 20 69 73 20 73 65 74 20 74 | ured..If.one.VRRP.group.is.set.t |
| 32aa0 | 6f 20 61 20 64 69 66 66 65 72 65 6e 74 20 70 72 65 65 6d 70 74 69 6f 6e 20 64 65 6c 61 79 20 6f | o.a.different.preemption.delay.o |
| 32ac0 | 72 20 70 72 69 6f 72 69 74 79 2c 20 69 74 20 77 6f 75 6c 64 20 72 65 73 75 6c 74 20 69 6e 20 61 | r.priority,.it.would.result.in.a |
| 32ae0 | 6e 20 65 6e 64 6c 65 73 73 20 74 72 61 6e 73 69 74 69 6f 6e 20 6c 6f 6f 70 2e 00 41 6c 6c 20 6f | n.endless.transition.loop..All.o |
| 32b00 | 74 68 65 72 20 44 4e 53 20 72 65 71 75 65 73 74 73 20 77 69 6c 6c 20 62 65 20 66 6f 72 77 61 72 | ther.DNS.requests.will.be.forwar |
| 32b20 | 64 65 64 20 74 6f 20 61 20 64 69 66 66 65 72 65 6e 74 20 73 65 74 20 6f 66 20 44 4e 53 20 73 65 | ded.to.a.different.set.of.DNS.se |
| 32b40 | 72 76 65 72 73 20 61 74 20 31 39 32 2e 30 2e 32 2e 31 2c 20 31 39 32 2e 30 2e 32 2e 32 2c 20 32 | rvers.at.192.0.2.1,.192.0.2.2,.2 |
| 32b60 | 30 30 31 3a 64 62 38 3a 3a 31 3a 66 66 66 66 20 61 6e 64 20 32 30 30 31 3a 64 62 38 3a 3a 32 3a | 001:db8::1:ffff.and.2001:db8::2: |
| 32b80 | 66 66 66 66 00 41 6c 6c 20 72 65 70 6c 79 20 73 69 7a 65 73 20 61 72 65 20 61 63 63 65 70 74 65 | ffff.All.reply.sizes.are.accepte |
| 32ba0 | 64 20 62 79 20 64 65 66 61 75 6c 74 2e 00 41 6c 6c 20 72 6f 75 74 65 72 73 20 69 6e 20 74 68 65 | d.by.default..All.routers.in.the |
| 32bc0 | 20 50 49 4d 20 6e 65 74 77 6f 72 6b 20 6d 75 73 74 20 61 67 72 65 65 20 6f 6e 20 74 68 65 73 65 | .PIM.network.must.agree.on.these |
| 32be0 | 20 76 61 6c 75 65 73 2e 00 41 6c 6c 20 73 63 72 69 70 74 73 20 65 78 63 65 63 75 74 65 64 20 74 | .values..All.scripts.excecuted.t |
| 32c00 | 68 69 73 20 77 61 79 20 61 72 65 20 65 78 65 63 75 74 65 64 20 61 73 20 72 6f 6f 74 20 75 73 65 | his.way.are.executed.as.root.use |
| 32c20 | 72 20 2d 20 74 68 69 73 20 6d 61 79 20 62 65 20 64 61 6e 67 65 72 6f 75 73 2e 20 54 6f 67 65 74 | r.-.this.may.be.dangerous..Toget |
| 32c40 | 68 65 72 20 77 69 74 68 20 3a 72 65 66 3a 60 63 6f 6d 6d 61 6e 64 2d 73 63 72 69 70 74 69 6e 67 | her.with.:ref:`command-scripting |
| 32c60 | 60 20 74 68 69 73 20 63 61 6e 20 62 65 20 75 73 65 64 20 66 6f 72 20 61 75 74 6f 6d 61 74 69 6e | `.this.can.be.used.for.automatin |
| 32c80 | 67 20 28 72 65 2d 29 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 41 6c 6c 20 73 63 72 69 70 74 | g.(re-)configuration..All.script |
| 32ca0 | 73 20 65 78 65 63 75 74 65 64 20 74 68 69 73 20 77 61 79 20 61 72 65 20 65 78 65 63 75 74 65 64 | s.executed.this.way.are.executed |
| 32cc0 | 20 61 73 20 72 6f 6f 74 20 75 73 65 72 20 2d 20 74 68 69 73 20 6d 61 79 20 62 65 20 64 61 6e 67 | .as.root.user.-.this.may.be.dang |
| 32ce0 | 65 72 6f 75 73 2e 20 54 6f 67 65 74 68 65 72 20 77 69 74 68 20 3a 72 65 66 3a 60 63 6f 6d 6d 61 | erous..Together.with.:ref:`comma |
| 32d00 | 6e 64 2d 73 63 72 69 70 74 69 6e 67 60 20 74 68 69 73 20 63 61 6e 20 62 65 20 75 73 65 64 20 66 | nd-scripting`.this.can.be.used.f |
| 32d20 | 6f 72 20 61 75 74 6f 6d 61 74 69 6e 67 20 28 72 65 2d 29 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e | or.automating.(re-)configuration |
| 32d40 | 2e 00 41 6c 6c 20 74 68 65 73 65 20 72 75 6c 65 73 20 77 69 74 68 20 4f 54 43 20 77 69 6c 6c 20 | ..All.these.rules.with.OTC.will. |
| 32d60 | 68 65 6c 70 20 74 6f 20 64 65 74 65 63 74 20 61 6e 64 20 6d 69 74 69 67 61 74 65 20 72 6f 75 74 | help.to.detect.and.mitigate.rout |
| 32d80 | 65 20 6c 65 61 6b 73 20 61 6e 64 20 68 61 70 70 65 6e 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 | e.leaks.and.happen.automatically |
| 32da0 | 20 69 66 20 6c 6f 63 61 6c 2d 72 6f 6c 65 20 69 73 20 73 65 74 2e 00 41 6c 6c 20 74 68 6f 73 65 | .if.local-role.is.set..All.those |
| 32dc0 | 20 70 72 6f 74 6f 63 6f 6c 73 20 61 72 65 20 67 72 6f 75 70 65 64 20 75 6e 64 65 72 20 60 60 69 | .protocols.are.grouped.under.``i |
| 32de0 | 6e 74 65 72 66 61 63 65 73 20 74 75 6e 6e 65 6c 60 60 20 69 6e 20 56 79 4f 53 2e 20 4c 65 74 27 | nterfaces.tunnel``.in.VyOS..Let' |
| 32e00 | 73 20 74 61 6b 65 20 61 20 63 6c 6f 73 65 72 20 6c 6f 6f 6b 20 61 74 20 74 68 65 20 70 72 6f 74 | s.take.a.closer.look.at.the.prot |
| 32e20 | 6f 63 6f 6c 73 20 61 6e 64 20 6f 70 74 69 6f 6e 73 20 63 75 72 72 65 6e 74 6c 79 20 73 75 70 70 | ocols.and.options.currently.supp |
| 32e40 | 6f 72 74 65 64 20 62 79 20 56 79 4f 53 2e 00 41 6c 6c 20 74 72 61 66 66 69 63 20 62 65 74 77 65 | orted.by.VyOS..All.traffic.betwe |
| 32e60 | 65 6e 20 7a 6f 6e 65 73 20 69 73 20 61 66 66 65 63 74 65 64 20 62 79 20 65 78 69 73 74 69 6e 67 | en.zones.is.affected.by.existing |
| 32e80 | 20 70 6f 6c 69 63 69 65 73 00 41 6c 6c 20 74 72 61 66 66 69 63 20 74 6f 20 61 6e 64 20 66 72 6f | .policies.All.traffic.to.and.fro |
| 32ea0 | 6d 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 77 69 74 68 69 6e 20 61 20 7a 6f 6e 65 20 69 73 20 | m.an.interface.within.a.zone.is. |
| 32ec0 | 70 65 72 6d 69 74 74 65 64 2e 00 41 6c 6c 20 74 75 6e 6e 65 6c 20 73 65 73 73 69 6f 6e 73 20 63 | permitted..All.tunnel.sessions.c |
| 32ee0 | 61 6e 20 62 65 20 63 68 65 63 6b 65 64 20 76 69 61 3a 00 41 6c 6c 2d 41 63 74 69 76 65 20 4d 75 | an.be.checked.via:.All-Active.Mu |
| 32f00 | 6c 74 69 68 6f 6d 69 6e 67 20 69 73 20 75 73 65 64 20 66 6f 72 20 72 65 64 75 6e 64 61 6e 63 79 | ltihoming.is.used.for.redundancy |
| 32f20 | 20 61 6e 64 20 6c 6f 61 64 20 73 68 61 72 69 6e 67 2e 20 53 65 72 76 65 72 73 20 61 72 65 20 61 | .and.load.sharing..Servers.are.a |
| 32f40 | 74 74 61 63 68 65 64 20 74 6f 20 74 77 6f 20 6f 72 20 6d 6f 72 65 20 50 45 73 20 61 6e 64 20 74 | ttached.to.two.or.more.PEs.and.t |
| 32f60 | 68 65 20 6c 69 6e 6b 73 20 61 72 65 20 62 6f 6e 64 65 64 20 28 6c 69 6e 6b 2d 61 67 67 72 65 67 | he.links.are.bonded.(link-aggreg |
| 32f80 | 61 74 69 6f 6e 29 2e 20 54 68 69 73 20 67 72 6f 75 70 20 6f 66 20 73 65 72 76 65 72 20 6c 69 6e | ation)..This.group.of.server.lin |
| 32fa0 | 6b 73 20 69 73 20 72 65 66 65 72 72 65 64 20 74 6f 20 61 73 20 61 6e 20 3a 61 62 62 72 3a 60 45 | ks.is.referred.to.as.an.:abbr:`E |
| 32fc0 | 53 20 28 45 74 68 65 72 6e 65 74 20 53 65 67 6d 65 6e 74 29 60 2e 00 41 6c 6c 6f 63 61 74 69 6f | S.(Ethernet.Segment)`..Allocatio |
| 32fe0 | 6e 20 63 6c 69 65 6e 74 73 20 69 70 20 61 64 64 72 65 73 73 65 73 20 62 79 20 52 41 44 49 55 53 | n.clients.ip.addresses.by.RADIUS |
| 33000 | 00 41 6c 6c 6f 77 20 60 60 73 73 68 60 60 20 64 79 6e 61 6d 69 63 2d 70 72 6f 74 65 63 74 69 6f | .Allow.``ssh``.dynamic-protectio |
| 33020 | 6e 2e 00 41 6c 6c 6f 77 20 61 63 63 65 73 73 20 74 6f 20 73 69 74 65 73 20 69 6e 20 61 20 64 6f | n..Allow.access.to.sites.in.a.do |
| 33040 | 6d 61 69 6e 20 77 69 74 68 6f 75 74 20 72 65 74 72 69 65 76 69 6e 67 20 74 68 65 6d 20 66 72 6f | main.without.retrieving.them.fro |
| 33060 | 6d 20 74 68 65 20 50 72 6f 78 79 20 63 61 63 68 65 2e 20 53 70 65 63 69 66 79 69 6e 67 20 22 76 | m.the.Proxy.cache..Specifying."v |
| 33080 | 79 6f 73 2e 6e 65 74 22 20 77 69 6c 6c 20 61 6c 6c 6f 77 20 61 63 63 65 73 73 20 74 6f 20 76 79 | yos.net".will.allow.access.to.vy |
| 330a0 | 6f 73 2e 6e 65 74 20 62 75 74 20 74 68 65 20 70 61 67 65 73 20 61 63 63 65 73 73 65 64 20 77 69 | os.net.but.the.pages.accessed.wi |
| 330c0 | 6c 6c 20 6e 6f 74 20 62 65 20 63 61 63 68 65 64 2e 20 49 74 20 75 73 65 66 75 6c 20 66 6f 72 20 | ll.not.be.cached..It.useful.for. |
| 330e0 | 77 6f 72 6b 69 6e 67 20 61 72 6f 75 6e 64 20 70 72 6f 62 6c 65 6d 73 20 77 69 74 68 20 22 49 66 | working.around.problems.with."If |
| 33100 | 2d 4d 6f 64 69 66 69 65 64 2d 53 69 6e 63 65 22 20 63 68 65 63 6b 69 6e 67 20 61 74 20 63 65 72 | -Modified-Since".checking.at.cer |
| 33120 | 74 61 69 6e 20 73 69 74 65 73 2e 00 41 6c 6c 6f 77 20 62 67 70 20 74 6f 20 6e 65 67 6f 74 69 61 | tain.sites..Allow.bgp.to.negotia |
| 33140 | 74 65 20 74 68 65 20 65 78 74 65 6e 64 65 64 2d 6e 65 78 74 68 6f 70 20 63 61 70 61 62 69 6c 69 | te.the.extended-nexthop.capabili |
| 33160 | 74 79 20 77 69 74 68 20 69 74 e2 80 99 73 20 70 65 65 72 2e 20 49 66 20 79 6f 75 20 61 72 65 20 | ty.with.it...s.peer..If.you.are. |
| 33180 | 70 65 65 72 69 6e 67 20 6f 76 65 72 20 61 20 49 50 76 36 20 4c 69 6e 6b 2d 4c 6f 63 61 6c 20 61 | peering.over.a.IPv6.Link-Local.a |
| 331a0 | 64 64 72 65 73 73 20 74 68 65 6e 20 74 68 69 73 20 63 61 70 61 62 69 6c 69 74 79 20 69 73 20 74 | ddress.then.this.capability.is.t |
| 331c0 | 75 72 6e 65 64 20 6f 6e 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 2e 20 49 66 20 79 6f 75 20 61 | urned.on.automatically..If.you.a |
| 331e0 | 72 65 20 70 65 65 72 69 6e 67 20 6f 76 65 72 20 61 20 49 50 76 36 20 47 6c 6f 62 61 6c 20 41 64 | re.peering.over.a.IPv6.Global.Ad |
| 33200 | 64 72 65 73 73 20 74 68 65 6e 20 74 75 72 6e 69 6e 67 20 6f 6e 20 74 68 69 73 20 63 6f 6d 6d 61 | dress.then.turning.on.this.comma |
| 33220 | 6e 64 20 77 69 6c 6c 20 61 6c 6c 6f 77 20 42 47 50 20 74 6f 20 69 6e 73 74 61 6c 6c 20 49 50 76 | nd.will.allow.BGP.to.install.IPv |
| 33240 | 34 20 72 6f 75 74 65 73 20 77 69 74 68 20 49 50 76 36 20 6e 65 78 74 68 6f 70 73 20 69 66 20 79 | 4.routes.with.IPv6.nexthops.if.y |
| 33260 | 6f 75 20 64 6f 20 6e 6f 74 20 68 61 76 65 20 49 50 76 34 20 63 6f 6e 66 69 67 75 72 65 64 20 6f | ou.do.not.have.IPv4.configured.o |
| 33280 | 6e 20 69 6e 74 65 72 66 61 63 65 73 2e 00 41 6c 6c 6f 77 20 63 72 6f 73 73 2d 6f 72 69 67 69 6e | n.interfaces..Allow.cross-origin |
| 332a0 | 20 72 65 71 75 65 73 74 73 20 66 72 6f 6d 20 60 3c 6f 72 69 67 69 6e 3e 60 2e 00 41 6c 6c 6f 77 | .requests.from.`<origin>`..Allow |
| 332c0 | 20 65 78 70 6c 69 63 69 74 20 49 50 76 36 20 61 64 64 72 65 73 73 20 66 6f 72 20 74 68 65 20 69 | .explicit.IPv6.address.for.the.i |
| 332e0 | 6e 74 65 72 66 61 63 65 2e 00 41 6c 6c 6f 77 20 68 6f 73 74 20 6e 65 74 77 6f 72 6b 69 6e 67 20 | nterface..Allow.host.networking. |
| 33300 | 69 6e 20 61 20 63 6f 6e 74 61 69 6e 65 72 2e 20 54 68 65 20 6e 65 74 77 6f 72 6b 20 73 74 61 63 | in.a.container..The.network.stac |
| 33320 | 6b 20 6f 66 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 20 69 73 20 6e 6f 74 20 69 73 6f 6c 61 74 | k.of.the.container.is.not.isolat |
| 33340 | 65 64 20 66 72 6f 6d 20 74 68 65 20 68 6f 73 74 20 61 6e 64 20 77 69 6c 6c 20 75 73 65 20 74 68 | ed.from.the.host.and.will.use.th |
| 33360 | 65 20 68 6f 73 74 20 49 50 2e 00 41 6c 6c 6f 77 20 6c 69 73 74 69 6e 67 20 61 64 64 69 74 69 6f | e.host.IP..Allow.listing.additio |
| 33380 | 6e 61 6c 20 63 75 73 74 6f 6d 20 64 6f 6d 61 69 6e 73 20 74 6f 20 62 65 20 62 72 6f 77 73 65 64 | nal.custom.domains.to.be.browsed |
| 333a0 | 20 28 69 6e 20 61 64 64 69 74 69 6f 6e 20 74 6f 20 74 68 65 20 64 65 66 61 75 6c 74 20 60 60 6c | .(in.addition.to.the.default.``l |
| 333c0 | 6f 63 61 6c 60 60 29 20 73 6f 20 74 68 61 74 20 74 68 65 79 20 63 61 6e 20 62 65 20 72 65 66 6c | ocal``).so.that.they.can.be.refl |
| 333e0 | 65 63 74 65 64 2e 00 41 6c 6c 6f 77 20 74 68 69 73 20 42 46 44 20 70 65 65 72 20 74 6f 20 6e 6f | ected..Allow.this.BFD.peer.to.no |
| 33400 | 74 20 62 65 20 64 69 72 65 63 74 6c 79 20 63 6f 6e 6e 65 63 74 65 64 00 41 6c 6c 6f 77 65 64 20 | t.be.directly.connected.Allowed. |
| 33420 | 76 61 6c 75 65 73 20 66 70 72 20 54 43 50 20 66 6c 61 67 73 3a 20 60 60 53 59 4e 60 60 2c 20 60 | values.fpr.TCP.flags:.``SYN``,.` |
| 33440 | 60 41 43 4b 60 60 2c 20 60 60 46 49 4e 60 60 2c 20 60 60 52 53 54 60 60 2c 20 60 60 55 52 47 60 | `ACK``,.``FIN``,.``RST``,.``URG` |
| 33460 | 60 2c 20 60 60 50 53 48 60 60 2c 20 60 60 41 4c 4c 60 60 20 57 68 65 6e 20 73 70 65 63 69 66 79 | `,.``PSH``,.``ALL``.When.specify |
| 33480 | 69 6e 67 20 6d 6f 72 65 20 74 68 61 6e 20 6f 6e 65 20 66 6c 61 67 2c 20 66 6c 61 67 73 20 73 68 | ing.more.than.one.flag,.flags.sh |
| 334a0 | 6f 75 6c 64 20 62 65 20 63 6f 6d 6d 61 20 73 65 70 61 72 61 74 65 64 2e 20 54 68 65 20 60 60 21 | ould.be.comma.separated..The.``! |
| 334c0 | 60 60 20 6e 65 67 61 74 65 20 74 68 65 20 73 65 6c 65 63 74 65 64 20 70 72 6f 74 6f 63 6f 6c 2e | ``.negate.the.selected.protocol. |
| 334e0 | 00 41 6c 6c 6f 77 65 64 20 76 61 6c 75 65 73 20 66 70 72 20 54 43 50 20 66 6c 61 67 73 3a 20 60 | .Allowed.values.fpr.TCP.flags:.` |
| 33500 | 60 61 63 6b 60 60 2c 20 60 60 63 77 72 60 60 2c 20 60 60 65 63 6e 60 60 2c 20 60 60 66 69 6e 60 | `ack``,.``cwr``,.``ecn``,.``fin` |
| 33520 | 60 2c 20 60 60 70 73 68 60 60 2c 20 60 60 72 73 74 60 60 2c 20 60 60 73 79 6e 60 60 20 61 6e 64 | `,.``psh``,.``rst``,.``syn``.and |
| 33540 | 20 60 60 75 72 67 60 60 2e 20 4d 75 6c 74 69 70 6c 65 20 76 61 6c 75 65 73 20 61 72 65 20 73 75 | .``urg``..Multiple.values.are.su |
| 33560 | 70 70 6f 72 74 65 64 2c 20 61 6e 64 20 66 6f 72 20 69 6e 76 65 72 74 65 64 20 73 65 6c 65 63 74 | pported,.and.for.inverted.select |
| 33580 | 69 6f 6e 20 75 73 65 20 60 60 6e 6f 74 60 60 2c 20 61 73 20 73 68 6f 77 6e 20 69 6e 20 74 68 65 | ion.use.``not``,.as.shown.in.the |
| 335a0 | 20 65 78 61 6d 70 6c 65 2e 00 41 6c 6c 6f 77 73 20 73 70 65 63 69 66 69 63 20 56 4c 41 4e 20 49 | .example..Allows.specific.VLAN.I |
| 335c0 | 44 73 20 74 6f 20 70 61 73 73 20 74 68 72 6f 75 67 68 20 74 68 65 20 62 72 69 64 67 65 20 6d 65 | Ds.to.pass.through.the.bridge.me |
| 335e0 | 6d 62 65 72 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 69 73 20 63 61 6e 20 65 69 74 68 65 72 20 | mber.interface..This.can.either. |
| 33600 | 62 65 20 61 6e 20 69 6e 64 69 76 69 64 75 61 6c 20 56 4c 41 4e 20 69 64 20 6f 72 20 61 20 72 61 | be.an.individual.VLAN.id.or.a.ra |
| 33620 | 6e 67 65 20 6f 66 20 56 4c 41 4e 20 69 64 73 20 64 65 6c 69 6d 69 74 65 64 20 62 79 20 61 20 68 | nge.of.VLAN.ids.delimited.by.a.h |
| 33640 | 79 70 68 65 6e 2e 00 41 6c 6c 6f 77 73 20 74 6f 20 64 65 66 69 6e 65 20 55 52 4c 20 70 61 74 68 | yphen..Allows.to.define.URL.path |
| 33660 | 20 6d 61 74 63 68 69 6e 67 20 72 75 6c 65 73 20 66 6f 72 20 61 20 73 70 65 63 69 66 69 63 20 73 | .matching.rules.for.a.specific.s |
| 33680 | 65 72 76 69 63 65 2e 00 41 6c 6c 6f 77 73 20 79 6f 75 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 | ervice..Allows.you.to.configure. |
| 336a0 | 74 68 65 20 6e 65 78 74 2d 68 6f 70 20 69 6e 74 65 72 66 61 63 65 20 66 6f 72 20 61 6e 20 69 6e | the.next-hop.interface.for.an.in |
| 336c0 | 74 65 72 66 61 63 65 2d 62 61 73 65 64 20 49 50 76 34 20 73 74 61 74 69 63 20 72 6f 75 74 65 2e | terface-based.IPv4.static.route. |
| 336e0 | 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 20 77 69 6c 6c 20 62 65 20 74 68 65 20 6e 65 78 74 2d | .`<interface>`.will.be.the.next- |
| 33700 | 68 6f 70 20 69 6e 74 65 72 66 61 63 65 20 77 68 65 72 65 20 74 72 61 66 66 69 63 20 69 73 20 72 | hop.interface.where.traffic.is.r |
| 33720 | 6f 75 74 65 64 20 66 6f 72 20 74 68 65 20 67 69 76 65 6e 20 60 3c 73 75 62 6e 65 74 3e 60 2e 00 | outed.for.the.given.`<subnet>`.. |
| 33740 | 41 6c 6c 6f 77 73 20 79 6f 75 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 6e 65 78 74 | Allows.you.to.configure.the.next |
| 33760 | 2d 68 6f 70 20 69 6e 74 65 72 66 61 63 65 20 66 6f 72 20 61 6e 20 69 6e 74 65 72 66 61 63 65 2d | -hop.interface.for.an.interface- |
| 33780 | 62 61 73 65 64 20 49 50 76 36 20 73 74 61 74 69 63 20 72 6f 75 74 65 2e 20 60 3c 69 6e 74 65 72 | based.IPv6.static.route..`<inter |
| 337a0 | 66 61 63 65 3e 60 20 77 69 6c 6c 20 62 65 20 74 68 65 20 6e 65 78 74 2d 68 6f 70 20 69 6e 74 65 | face>`.will.be.the.next-hop.inte |
| 337c0 | 72 66 61 63 65 20 77 68 65 72 65 20 74 72 61 66 66 69 63 20 69 73 20 72 6f 75 74 65 64 20 66 6f | rface.where.traffic.is.routed.fo |
| 337e0 | 72 20 74 68 65 20 67 69 76 65 6e 20 60 3c 73 75 62 6e 65 74 3e 60 2e 00 41 6c 72 65 61 64 79 20 | r.the.given.`<subnet>`..Already. |
| 33800 | 6c 65 61 72 6e 65 64 20 6b 6e 6f 77 6e 5f 68 6f 73 74 73 20 66 69 6c 65 73 20 6f 66 20 63 6c 69 | learned.known_hosts.files.of.cli |
| 33820 | 65 6e 74 73 20 6e 65 65 64 20 61 6e 20 75 70 64 61 74 65 20 61 73 20 74 68 65 20 70 75 62 6c 69 | ents.need.an.update.as.the.publi |
| 33840 | 63 20 6b 65 79 20 77 69 6c 6c 20 63 68 61 6e 67 65 2e 00 41 6c 73 6f 2c 20 2a 2a 64 65 66 61 75 | c.key.will.change..Also,.**defau |
| 33860 | 6c 74 2d 61 63 74 69 6f 6e 2a 2a 20 69 73 20 61 6e 20 61 63 74 69 6f 6e 20 74 68 61 74 20 74 61 | lt-action**.is.an.action.that.ta |
| 33880 | 6b 65 73 20 70 6c 61 63 65 20 77 68 65 6e 65 76 65 72 20 61 20 70 61 63 6b 65 74 20 64 6f 65 73 | kes.place.whenever.a.packet.does |
| 338a0 | 20 6e 6f 74 20 6d 61 74 63 68 20 61 6e 79 20 72 75 6c 65 20 69 6e 20 69 74 27 73 20 63 68 61 69 | .not.match.any.rule.in.it's.chai |
| 338c0 | 6e 2e 20 46 6f 72 20 62 61 73 65 20 63 68 61 69 6e 73 2c 20 70 6f 73 73 69 62 6c 65 20 6f 70 74 | n..For.base.chains,.possible.opt |
| 338e0 | 69 6f 6e 73 20 66 6f 72 20 2a 2a 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 2a 2a 20 61 72 65 20 | ions.for.**default-action**.are. |
| 33900 | 2a 2a 61 63 63 65 70 74 2a 2a 20 6f 72 20 2a 2a 64 72 6f 70 2a 2a 2e 00 41 6c 73 6f 2c 20 2a 2a | **accept**.or.**drop**..Also,.** |
| 33920 | 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 2a 2a 20 69 73 20 61 6e 20 61 63 74 69 6f 6e 20 74 68 | default-action**.is.an.action.th |
| 33940 | 61 74 20 74 61 6b 65 73 20 70 6c 61 63 65 20 77 68 65 6e 65 76 65 72 20 61 20 70 61 63 6b 65 74 | at.takes.place.whenever.a.packet |
| 33960 | 20 64 6f 65 73 20 6e 6f 74 20 6d 61 74 63 68 20 61 6e 79 20 72 75 6c 65 20 69 6e 20 69 74 73 27 | .does.not.match.any.rule.in.its' |
| 33980 | 20 63 68 61 69 6e 2e 20 46 6f 72 20 62 61 73 65 20 63 68 61 69 6e 73 2c 20 70 6f 73 73 69 62 6c | .chain..For.base.chains,.possibl |
| 339a0 | 65 20 6f 70 74 69 6f 6e 73 20 66 6f 72 20 2a 2a 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 2a 2a | e.options.for.**default-action** |
| 339c0 | 20 61 72 65 20 2a 2a 61 63 63 65 70 74 2a 2a 20 6f 72 20 2a 2a 64 72 6f 70 2a 2a 2e 00 41 6c 73 | .are.**accept**.or.**drop**..Als |
| 339e0 | 6f 2c 20 66 6f 72 20 62 61 63 6b 77 61 72 64 73 20 63 6f 6d 70 61 74 69 62 69 6c 69 74 79 20 74 | o,.for.backwards.compatibility.t |
| 33a00 | 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2c 20 77 68 69 63 68 20 75 73 65 73 20 67 65 | his.configuration,.which.uses.ge |
| 33a20 | 6e 65 72 69 63 20 69 6e 74 65 72 66 61 63 65 20 64 65 66 69 6e 69 74 69 6f 6e 2c 20 69 73 20 73 | neric.interface.definition,.is.s |
| 33a40 | 74 69 6c 6c 20 76 61 6c 69 64 3a 00 41 6c 73 6f 2c 20 66 6f 72 20 74 68 6f 73 65 20 77 68 6f 20 | till.valid:.Also,.for.those.who. |
| 33a60 | 68 61 76 65 6e 27 74 20 75 70 64 61 74 65 64 20 74 6f 20 6e 65 77 65 72 20 76 65 72 73 69 6f 6e | haven't.updated.to.newer.version |
| 33a80 | 2c 20 6c 65 67 61 63 79 20 64 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 69 73 20 73 74 69 6c 6c 20 | ,.legacy.documentation.is.still. |
| 33aa0 | 70 72 65 73 65 6e 74 20 61 6e 64 20 76 61 6c 69 64 20 66 6f 72 20 61 6c 6c 20 73 61 67 69 74 74 | present.and.valid.for.all.sagitt |
| 33ac0 | 61 20 76 65 72 73 69 6f 6e 20 70 72 69 6f 72 20 74 6f 20 56 79 4f 53 20 31 2e 34 2d 72 6f 6c 6c | a.version.prior.to.VyOS.1.4-roll |
| 33ae0 | 69 6e 67 2d 32 30 32 33 30 38 30 34 30 35 35 37 3a 00 41 6c 73 6f 2c 20 69 66 20 61 63 74 69 6f | ing-202308040557:.Also,.if.actio |
| 33b00 | 6e 20 69 73 20 73 65 74 20 74 6f 20 60 60 71 75 65 75 65 60 60 2c 20 75 73 65 20 6e 65 78 74 20 | n.is.set.to.``queue``,.use.next. |
| 33b20 | 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 70 65 63 69 66 79 20 74 68 65 20 71 75 65 75 65 20 6f 70 74 | command.to.specify.the.queue.opt |
| 33b40 | 69 6f 6e 73 2e 20 50 6f 73 73 69 62 6c 65 20 6f 70 74 69 6f 6e 73 20 61 72 65 20 60 60 62 79 70 | ions..Possible.options.are.``byp |
| 33b60 | 61 73 73 60 60 20 61 6e 64 20 60 60 66 61 6e 6f 75 74 60 60 3a 00 41 6c 73 6f 2c 20 69 6e 20 3a | ass``.and.``fanout``:.Also,.in.: |
| 33b80 | 72 65 66 3a 60 64 65 73 74 69 6e 61 74 69 6f 6e 2d 6e 61 74 60 2c 20 72 65 64 69 72 65 63 74 69 | ref:`destination-nat`,.redirecti |
| 33ba0 | 6f 6e 20 74 6f 20 6c 6f 63 61 6c 68 6f 73 74 20 69 73 20 73 75 70 70 6f 72 74 65 64 2e 20 54 68 | on.to.localhost.is.supported..Th |
| 33bc0 | 65 20 72 65 64 69 72 65 63 74 20 73 74 61 74 65 6d 65 6e 74 20 69 73 20 61 20 73 70 65 63 69 61 | e.redirect.statement.is.a.specia |
| 33be0 | 6c 20 66 6f 72 6d 20 6f 66 20 64 6e 61 74 20 77 68 69 63 68 20 61 6c 77 61 79 73 20 74 72 61 6e | l.form.of.dnat.which.always.tran |
| 33c00 | 73 6c 61 74 65 73 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 74 | slates.the.destination.address.t |
| 33c20 | 6f 20 74 68 65 20 6c 6f 63 61 6c 20 68 6f 73 74 e2 80 99 73 20 6f 6e 65 2e 00 41 6c 73 6f 2c 20 | o.the.local.host...s.one..Also,. |
| 33c40 | 73 70 65 63 69 66 69 63 20 74 69 6d 65 6f 75 74 20 63 61 6e 20 62 65 20 64 65 66 69 6e 65 64 20 | specific.timeout.can.be.defined. |
| 33c60 | 70 65 72 20 72 75 6c 65 2e 20 49 6e 20 63 61 73 65 20 72 75 6c 65 20 67 65 74 73 20 61 20 68 69 | per.rule..In.case.rule.gets.a.hi |
| 33c80 | 74 2c 20 73 6f 75 72 63 65 20 6f 72 20 64 65 73 74 69 6e 61 74 69 6e 61 74 69 6f 6e 20 61 64 64 | t,.source.or.destinatination.add |
| 33ca0 | 72 65 73 73 20 77 69 6c 6c 20 62 65 20 61 64 64 65 64 20 74 6f 20 74 68 65 20 67 72 6f 75 70 2c | ress.will.be.added.to.the.group, |
| 33cc0 | 20 61 6e 64 20 74 68 69 73 20 65 6c 65 6d 65 6e 74 20 77 69 6c 6c 20 72 65 6d 61 69 6e 20 69 6e | .and.this.element.will.remain.in |
| 33ce0 | 20 74 68 65 20 67 72 6f 75 70 20 75 6e 74 69 6c 20 74 69 6d 65 6f 75 74 20 65 78 70 69 72 65 73 | .the.group.until.timeout.expires |
| 33d00 | 2e 20 49 66 20 6e 6f 20 74 69 6d 65 6f 75 74 20 69 73 20 64 65 66 69 6e 65 64 2c 20 74 68 65 6e | ..If.no.timeout.is.defined,.then |
| 33d20 | 20 74 68 65 20 65 6c 65 6d 65 6e 74 20 77 69 6c 6c 20 72 65 6d 61 69 6e 20 69 6e 20 74 68 65 20 | .the.element.will.remain.in.the. |
| 33d40 | 67 72 6f 75 70 20 75 6e 74 69 6c 20 6e 65 78 74 20 72 65 62 6f 6f 74 2c 20 6f 72 20 75 6e 74 69 | group.until.next.reboot,.or.unti |
| 33d60 | 6c 20 61 20 6e 65 77 20 63 6f 6d 6d 69 74 20 74 68 61 74 20 63 68 61 6e 67 65 73 20 66 69 72 65 | l.a.new.commit.that.changes.fire |
| 33d80 | 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 73 20 64 6f 6e 65 2e 00 41 6c 73 6f | wall.configuration.is.done..Also |
| 33da0 | 2c 20 73 70 65 63 69 66 69 63 20 74 69 6d 65 6f 75 74 73 20 63 61 6e 20 62 65 20 64 65 66 69 6e | ,.specific.timeouts.can.be.defin |
| 33dc0 | 65 64 20 70 65 72 20 72 75 6c 65 2e 20 49 6e 20 63 61 73 65 20 72 75 6c 65 20 67 65 74 73 20 61 | ed.per.rule..In.case.rule.gets.a |
| 33de0 | 20 68 69 74 2c 20 61 20 73 6f 75 72 63 65 20 6f 72 20 64 65 73 74 69 6e 61 74 69 6e 61 74 69 6f | .hit,.a.source.or.destinatinatio |
| 33e00 | 6e 20 61 64 64 72 65 73 73 20 77 69 6c 6c 20 62 65 20 61 64 64 65 64 20 74 6f 20 74 68 65 20 67 | n.address.will.be.added.to.the.g |
| 33e20 | 72 6f 75 70 2c 20 61 6e 64 20 74 68 69 73 20 65 6c 65 6d 65 6e 74 20 77 69 6c 6c 20 72 65 6d 61 | roup,.and.this.element.will.rema |
| 33e40 | 69 6e 20 69 6e 20 74 68 65 20 67 72 6f 75 70 20 75 6e 74 69 6c 20 74 68 65 20 74 69 6d 65 6f 75 | in.in.the.group.until.the.timeou |
| 33e60 | 74 20 65 78 70 69 72 65 73 2e 20 49 66 20 6e 6f 20 74 69 6d 65 6f 75 74 20 69 73 20 64 65 66 69 | t.expires..If.no.timeout.is.defi |
| 33e80 | 6e 65 64 2c 20 74 68 65 6e 20 74 68 65 20 65 6c 65 6d 65 6e 74 20 77 69 6c 6c 20 72 65 6d 61 69 | ned,.then.the.element.will.remai |
| 33ea0 | 6e 20 69 6e 20 74 68 65 20 67 72 6f 75 70 20 75 6e 74 69 6c 20 6e 65 78 74 20 72 65 62 6f 6f 74 | n.in.the.group.until.next.reboot |
| 33ec0 | 2c 20 6f 72 20 75 6e 74 69 6c 20 61 20 6e 65 77 20 63 6f 6d 6d 69 74 20 74 68 61 74 20 63 68 61 | ,.or.until.a.new.commit.that.cha |
| 33ee0 | 6e 67 65 73 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 73 20 64 | nges.firewall.configuration.is.d |
| 33f00 | 6f 6e 65 2e 00 41 6c 74 65 72 6e 61 74 65 20 52 6f 75 74 69 6e 67 20 54 61 62 6c 65 73 00 41 6c | one..Alternate.Routing.Tables.Al |
| 33f20 | 74 65 72 6e 61 74 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 73 20 61 72 65 20 75 73 65 64 20 | ternate.routing.tables.are.used. |
| 33f40 | 77 69 74 68 20 70 6f 6c 69 63 79 20 62 61 73 65 64 20 72 6f 75 74 69 6e 67 20 62 79 20 75 74 69 | with.policy.based.routing.by.uti |
| 33f60 | 6c 69 7a 69 6e 67 20 3a 72 65 66 3a 60 76 72 66 60 2e 00 41 6c 74 65 72 6e 61 74 69 76 65 20 74 | lizing.:ref:`vrf`..Alternative.t |
| 33f80 | 6f 20 6d 75 6c 74 69 63 61 73 74 2c 20 74 68 65 20 72 65 6d 6f 74 65 20 49 50 76 34 20 61 64 64 | o.multicast,.the.remote.IPv4.add |
| 33fa0 | 72 65 73 73 20 6f 66 20 74 68 65 20 56 58 4c 41 4e 20 74 75 6e 6e 65 6c 20 63 61 6e 20 62 65 20 | ress.of.the.VXLAN.tunnel.can.be. |
| 33fc0 | 73 65 74 20 64 69 72 65 63 74 6c 79 2e 20 4c 65 74 27 73 20 63 68 61 6e 67 65 20 74 68 65 20 4d | set.directly..Let's.change.the.M |
| 33fe0 | 75 6c 74 69 63 61 73 74 20 65 78 61 6d 70 6c 65 20 66 72 6f 6d 20 61 62 6f 76 65 3a 00 41 6c 74 | ulticast.example.from.above:.Alt |
| 34000 | 65 72 6e 61 74 69 76 65 6c 79 20 74 6f 20 6d 75 6c 74 69 63 61 73 74 2c 20 74 68 65 20 72 65 6d | ernatively.to.multicast,.the.rem |
| 34020 | 6f 74 65 20 49 50 76 34 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 56 58 4c 41 4e 20 74 75 | ote.IPv4.address.of.the.VXLAN.tu |
| 34040 | 6e 6e 65 6c 20 63 61 6e 20 62 65 20 73 65 74 20 64 69 72 65 63 74 6c 79 2e 20 4c 65 74 27 73 20 | nnel.can.be.set.directly..Let's. |
| 34060 | 63 68 61 6e 67 65 20 74 68 65 20 4d 75 6c 74 69 63 61 73 74 20 65 78 61 6d 70 6c 65 20 66 72 6f | change.the.Multicast.example.fro |
| 34080 | 6d 20 61 62 6f 76 65 3a 00 41 6c 77 61 79 73 20 65 78 63 6c 75 64 65 20 74 68 69 73 20 61 64 64 | m.above:.Always.exclude.this.add |
| 340a0 | 72 65 73 73 20 66 72 6f 6d 20 61 6e 79 20 64 65 66 69 6e 65 64 20 72 61 6e 67 65 2e 20 54 68 69 | ress.from.any.defined.range..Thi |
| 340c0 | 73 20 61 64 64 72 65 73 73 20 77 69 6c 6c 20 6e 65 76 65 72 20 62 65 20 61 73 73 69 67 6e 65 64 | s.address.will.never.be.assigned |
| 340e0 | 20 62 79 20 74 68 65 20 44 48 43 50 20 73 65 72 76 65 72 2e 00 41 6e 20 2a 2a 69 6e 74 65 72 66 | .by.the.DHCP.server..An.**interf |
| 34100 | 61 63 65 20 67 72 6f 75 70 2a 2a 20 72 65 70 72 65 73 65 6e 74 73 20 61 20 63 6f 6c 6c 65 63 74 | ace.group**.represents.a.collect |
| 34120 | 69 6f 6e 20 6f 66 20 69 6e 74 65 72 66 61 63 65 73 2e 00 41 6e 20 41 53 20 69 73 20 61 20 63 6f | ion.of.interfaces..An.AS.is.a.co |
| 34140 | 6e 6e 65 63 74 65 64 20 67 72 6f 75 70 20 6f 66 20 6f 6e 65 20 6f 72 20 6d 6f 72 65 20 49 50 20 | nnected.group.of.one.or.more.IP. |
| 34160 | 70 72 65 66 69 78 65 73 20 72 75 6e 20 62 79 20 6f 6e 65 20 6f 72 20 6d 6f 72 65 20 6e 65 74 77 | prefixes.run.by.one.or.more.netw |
| 34180 | 6f 72 6b 20 6f 70 65 72 61 74 6f 72 73 20 77 68 69 63 68 20 68 61 73 20 61 20 53 49 4e 47 4c 45 | ork.operators.which.has.a.SINGLE |
| 341a0 | 20 61 6e 64 20 43 4c 45 41 52 4c 59 20 44 45 46 49 4e 45 44 20 72 6f 75 74 69 6e 67 20 70 6f 6c | .and.CLEARLY.DEFINED.routing.pol |
| 341c0 | 69 63 79 2e 00 41 6e 20 45 74 68 65 72 6e 65 74 20 53 65 67 6d 65 6e 74 20 63 61 6e 20 62 65 20 | icy..An.Ethernet.Segment.can.be. |
| 341e0 | 63 6f 6e 66 69 67 75 72 65 64 20 62 79 20 73 70 65 63 69 66 79 69 6e 67 20 61 20 73 79 73 74 65 | configured.by.specifying.a.syste |
| 34200 | 6d 2d 4d 41 43 20 61 6e 64 20 61 20 6c 6f 63 61 6c 20 64 69 73 63 72 69 6d 69 6e 61 74 6f 72 20 | m-MAC.and.a.local.discriminator. |
| 34220 | 6f 72 20 61 20 63 6f 6d 70 6c 65 74 65 20 45 53 49 4e 41 4d 45 20 61 67 61 69 6e 73 74 20 74 68 | or.a.complete.ESINAME.against.th |
| 34240 | 65 20 62 6f 6e 64 20 69 6e 74 65 72 66 61 63 65 20 6f 6e 20 74 68 65 20 50 45 2e 00 41 6e 20 49 | e.bond.interface.on.the.PE..An.I |
| 34260 | 50 76 34 20 54 43 50 20 66 69 6c 74 65 72 20 77 69 6c 6c 20 6f 6e 6c 79 20 6d 61 74 63 68 20 70 | Pv4.TCP.filter.will.only.match.p |
| 34280 | 61 63 6b 65 74 73 20 77 69 74 68 20 61 6e 20 49 50 76 34 20 68 65 61 64 65 72 20 6c 65 6e 67 74 | ackets.with.an.IPv4.header.lengt |
| 342a0 | 68 20 6f 66 20 32 30 20 62 79 74 65 73 20 28 77 68 69 63 68 20 69 73 20 74 68 65 20 6d 61 6a 6f | h.of.20.bytes.(which.is.the.majo |
| 342c0 | 72 69 74 79 20 6f 66 20 49 50 76 34 20 70 61 63 6b 65 74 73 20 61 6e 79 77 61 79 29 2e 00 41 6e | rity.of.IPv4.packets.anyway)..An |
| 342e0 | 20 53 4e 4d 50 2d 6d 61 6e 61 67 65 64 20 6e 65 74 77 6f 72 6b 20 63 6f 6e 73 69 73 74 73 20 6f | .SNMP-managed.network.consists.o |
| 34300 | 66 20 74 68 72 65 65 20 6b 65 79 20 63 6f 6d 70 6f 6e 65 6e 74 73 3a 00 41 6e 20 60 3c 69 6e 74 | f.three.key.components:.An.`<int |
| 34320 | 65 72 66 61 63 65 3e 60 20 73 70 65 63 69 66 79 69 6e 67 20 77 68 69 63 68 20 73 6c 61 76 65 20 | erface>`.specifying.which.slave. |
| 34340 | 69 73 20 74 68 65 20 70 72 69 6d 61 72 79 20 64 65 76 69 63 65 2e 20 54 68 65 20 73 70 65 63 69 | is.the.primary.device..The.speci |
| 34360 | 66 69 65 64 20 64 65 76 69 63 65 20 77 69 6c 6c 20 61 6c 77 61 79 73 20 62 65 20 74 68 65 20 61 | fied.device.will.always.be.the.a |
| 34380 | 63 74 69 76 65 20 73 6c 61 76 65 20 77 68 69 6c 65 20 69 74 20 69 73 20 61 76 61 69 6c 61 62 6c | ctive.slave.while.it.is.availabl |
| 343a0 | 65 2e 20 4f 6e 6c 79 20 77 68 65 6e 20 74 68 65 20 70 72 69 6d 61 72 79 20 69 73 20 6f 66 66 2d | e..Only.when.the.primary.is.off- |
| 343c0 | 6c 69 6e 65 20 77 69 6c 6c 20 61 6c 74 65 72 6e 61 74 65 20 64 65 76 69 63 65 73 20 62 65 20 75 | line.will.alternate.devices.be.u |
| 343e0 | 73 65 64 2e 20 54 68 69 73 20 69 73 20 75 73 65 66 75 6c 20 77 68 65 6e 20 6f 6e 65 20 73 6c 61 | sed..This.is.useful.when.one.sla |
| 34400 | 76 65 20 69 73 20 70 72 65 66 65 72 72 65 64 20 6f 76 65 72 20 61 6e 6f 74 68 65 72 2c 20 65 2e | ve.is.preferred.over.another,.e. |
| 34420 | 67 2e 2c 20 77 68 65 6e 20 6f 6e 65 20 73 6c 61 76 65 20 68 61 73 20 68 69 67 68 65 72 20 74 68 | g.,.when.one.slave.has.higher.th |
| 34440 | 72 6f 75 67 68 70 75 74 20 74 68 61 6e 20 61 6e 6f 74 68 65 72 2e 00 41 6e 20 61 64 64 69 74 69 | roughput.than.another..An.additi |
| 34460 | 6f 6e 61 6c 20 6c 61 79 65 72 20 6f 66 20 73 79 6d 6d 65 74 72 69 63 2d 6b 65 79 20 63 72 79 70 | onal.layer.of.symmetric-key.cryp |
| 34480 | 74 6f 20 63 61 6e 20 62 65 20 75 73 65 64 20 6f 6e 20 74 6f 70 20 6f 66 20 74 68 65 20 61 73 79 | to.can.be.used.on.top.of.the.asy |
| 344a0 | 6d 6d 65 74 72 69 63 20 63 72 79 70 74 6f 2e 00 41 6e 20 61 64 64 69 74 69 6f 6e 61 6c 20 6c 61 | mmetric.crypto..An.additional.la |
| 344c0 | 79 65 72 20 6f 66 20 73 79 6d 6d 65 74 72 69 63 2d 6b 65 79 20 63 72 79 70 74 6f 20 63 61 6e 20 | yer.of.symmetric-key.crypto.can. |
| 344e0 | 62 65 20 75 73 65 64 20 6f 6e 20 74 6f 70 20 6f 66 20 74 68 65 20 61 73 79 6d 6d 65 74 72 69 63 | be.used.on.top.of.the.asymmetric |
| 34500 | 20 63 72 79 70 74 6f 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 75 74 6f 6d 61 74 69 63 61 | .crypto..This.command.automatica |
| 34520 | 6c 6c 79 20 63 72 65 61 74 65 73 20 66 6f 72 20 79 6f 75 20 74 68 65 20 72 65 71 75 69 72 65 64 | lly.creates.for.you.the.required |
| 34540 | 20 43 4c 49 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 69 6e 73 74 61 6c 6c 20 74 68 69 73 20 50 53 4b | .CLI.command.to.install.this.PSK |
| 34560 | 20 66 6f 72 20 61 20 67 69 76 65 6e 20 70 65 65 72 2e 00 41 6e 20 61 64 64 69 74 69 6f 6e 61 6c | .for.a.given.peer..An.additional |
| 34580 | 20 6c 61 79 65 72 20 6f 66 20 73 79 6d 6d 65 74 72 69 63 2d 6b 65 79 20 63 72 79 70 74 6f 20 63 | .layer.of.symmetric-key.crypto.c |
| 345a0 | 61 6e 20 62 65 20 75 73 65 64 20 6f 6e 20 74 6f 70 20 6f 66 20 74 68 65 20 61 73 79 6d 6d 65 74 | an.be.used.on.top.of.the.asymmet |
| 345c0 | 72 69 63 20 63 72 79 70 74 6f 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 75 74 6f 6d 61 74 | ric.crypto..This.command.automat |
| 345e0 | 69 63 61 6c 6c 79 20 63 72 65 61 74 65 73 20 74 68 65 20 72 65 71 75 69 72 65 64 20 43 4c 49 20 | ically.creates.the.required.CLI. |
| 34600 | 63 6f 6d 6d 61 6e 64 20 74 6f 20 69 6e 73 74 61 6c 6c 20 74 68 69 73 20 50 53 4b 20 66 6f 72 20 | command.to.install.this.PSK.for. |
| 34620 | 61 20 67 69 76 65 6e 20 70 65 65 72 2e 00 41 6e 20 61 64 64 69 74 69 6f 6e 61 6c 20 6c 61 79 65 | a.given.peer..An.additional.laye |
| 34640 | 72 20 6f 66 20 73 79 6d 6d 65 74 72 69 63 2d 6b 65 79 20 63 72 79 70 74 6f 20 63 61 6e 20 62 65 | r.of.symmetric-key.crypto.can.be |
| 34660 | 20 75 73 65 64 20 6f 6e 20 74 6f 70 20 6f 66 20 74 68 65 20 61 73 79 6d 6d 65 74 72 69 63 20 63 | .used.on.top.of.the.asymmetric.c |
| 34680 | 72 79 70 74 6f 2e 20 54 68 69 73 20 69 73 20 6f 70 74 69 6f 6e 61 6c 2e 00 41 6e 20 61 64 76 61 | rypto..This.is.optional..An.adva |
| 346a0 | 6e 74 61 67 65 20 6f 66 20 74 68 69 73 20 73 63 68 65 6d 65 20 69 73 20 74 68 61 74 20 79 6f 75 | ntage.of.this.scheme.is.that.you |
| 346c0 | 20 67 65 74 20 61 20 72 65 61 6c 20 69 6e 74 65 72 66 61 63 65 20 77 69 74 68 20 69 74 73 20 6f | .get.a.real.interface.with.its.o |
| 346e0 | 77 6e 20 61 64 64 72 65 73 73 2c 20 77 68 69 63 68 20 6d 61 6b 65 73 20 69 74 20 65 61 73 69 65 | wn.address,.which.makes.it.easie |
| 34700 | 72 20 74 6f 20 73 65 74 75 70 20 73 74 61 74 69 63 20 72 6f 75 74 65 73 20 6f 72 20 75 73 65 20 | r.to.setup.static.routes.or.use. |
| 34720 | 64 79 6e 61 6d 69 63 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 73 20 77 69 74 68 6f 75 | dynamic.routing.protocols.withou |
| 34740 | 74 20 68 61 76 69 6e 67 20 74 6f 20 6d 6f 64 69 66 79 20 49 50 73 65 63 20 70 6f 6c 69 63 69 65 | t.having.to.modify.IPsec.policie |
| 34760 | 73 2e 20 54 68 65 20 6f 74 68 65 72 20 61 64 76 61 6e 74 61 67 65 20 69 73 20 74 68 61 74 20 69 | s..The.other.advantage.is.that.i |
| 34780 | 74 20 67 72 65 61 74 6c 79 20 73 69 6d 70 6c 69 66 69 65 73 20 72 6f 75 74 65 72 20 74 6f 20 72 | t.greatly.simplifies.router.to.r |
| 347a0 | 6f 75 74 65 72 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6f 6e 2c 20 77 68 69 63 68 20 63 61 6e 20 62 | outer.communication,.which.can.b |
| 347c0 | 65 20 74 72 69 63 6b 79 20 77 69 74 68 20 70 6c 61 69 6e 20 49 50 73 65 63 20 62 65 63 61 75 73 | e.tricky.with.plain.IPsec.becaus |
| 347e0 | 65 20 74 68 65 20 65 78 74 65 72 6e 61 6c 20 6f 75 74 67 6f 69 6e 67 20 61 64 64 72 65 73 73 20 | e.the.external.outgoing.address. |
| 34800 | 6f 66 20 74 68 65 20 72 6f 75 74 65 72 20 75 73 75 61 6c 6c 79 20 64 6f 65 73 6e 27 74 20 6d 61 | of.the.router.usually.doesn't.ma |
| 34820 | 74 63 68 20 74 68 65 20 49 50 73 65 63 20 70 6f 6c 69 63 79 20 6f 66 20 61 20 74 79 70 69 63 61 | tch.the.IPsec.policy.of.a.typica |
| 34840 | 6c 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 73 65 74 75 70 20 61 6e 64 20 79 6f 75 20 77 6f 75 | l.site-to-site.setup.and.you.wou |
| 34860 | 6c 64 20 6e 65 65 64 20 74 6f 20 61 64 64 20 73 70 65 63 69 61 6c 20 63 6f 6e 66 69 67 75 72 61 | ld.need.to.add.special.configura |
| 34880 | 74 69 6f 6e 20 66 6f 72 20 69 74 2c 20 6f 72 20 61 64 6a 75 73 74 20 74 68 65 20 73 6f 75 72 63 | tion.for.it,.or.adjust.the.sourc |
| 348a0 | 65 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 6f 75 74 67 6f 69 6e 67 20 74 72 61 66 66 69 | e.address.of.the.outgoing.traffi |
| 348c0 | 63 20 6f 66 20 79 6f 75 72 20 61 70 70 6c 69 63 61 74 69 6f 6e 73 2e 20 47 52 45 2f 49 50 73 65 | c.of.your.applications..GRE/IPse |
| 348e0 | 63 20 68 61 73 20 6e 6f 20 73 75 63 68 20 70 72 6f 62 6c 65 6d 20 61 6e 64 20 69 73 20 63 6f 6d | c.has.no.such.problem.and.is.com |
| 34900 | 70 6c 65 74 65 6c 79 20 74 72 61 6e 73 70 61 72 65 6e 74 20 66 6f 72 20 61 70 70 6c 69 63 61 74 | pletely.transparent.for.applicat |
| 34920 | 69 6f 6e 73 2e 00 41 6e 20 61 64 76 61 6e 74 61 67 65 20 6f 66 20 74 68 69 73 20 73 63 68 65 6d | ions..An.advantage.of.this.schem |
| 34940 | 65 20 69 73 20 74 68 61 74 20 79 6f 75 20 67 65 74 20 61 20 72 65 61 6c 20 69 6e 74 65 72 66 61 | e.is.that.you.get.a.real.interfa |
| 34960 | 63 65 20 77 69 74 68 20 69 74 73 20 6f 77 6e 20 61 64 64 72 65 73 73 2c 20 77 68 69 63 68 20 6d | ce.with.its.own.address,.which.m |
| 34980 | 61 6b 65 73 20 69 74 20 65 61 73 69 65 72 20 74 6f 20 73 65 74 75 70 20 73 74 61 74 69 63 20 72 | akes.it.easier.to.setup.static.r |
| 349a0 | 6f 75 74 65 73 20 6f 72 20 75 73 65 20 64 79 6e 61 6d 69 63 20 72 6f 75 74 69 6e 67 20 70 72 6f | outes.or.use.dynamic.routing.pro |
| 349c0 | 74 6f 63 6f 6c 73 20 77 69 74 68 6f 75 74 20 68 61 76 69 6e 67 20 74 6f 20 6d 6f 64 69 66 79 20 | tocols.without.having.to.modify. |
| 349e0 | 49 50 73 65 63 20 70 6f 6c 69 63 69 65 73 2e 20 54 68 65 20 6f 74 68 65 72 20 61 64 76 61 6e 74 | IPsec.policies..The.other.advant |
| 34a00 | 61 67 65 20 69 73 20 74 68 61 74 20 69 74 20 67 72 65 61 74 6c 79 20 73 69 6d 70 6c 69 66 69 65 | age.is.that.it.greatly.simplifie |
| 34a20 | 73 20 72 6f 75 74 65 72 20 74 6f 20 72 6f 75 74 65 72 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6f 6e | s.router.to.router.communication |
| 34a40 | 2c 20 77 68 69 63 68 20 63 61 6e 20 62 65 20 74 72 69 63 6b 79 20 77 69 74 68 20 70 6c 61 69 6e | ,.which.can.be.tricky.with.plain |
| 34a60 | 20 49 50 73 65 63 20 62 65 63 61 75 73 65 20 74 68 65 20 65 78 74 65 72 6e 61 6c 20 6f 75 74 67 | .IPsec.because.the.external.outg |
| 34a80 | 6f 69 6e 67 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 72 6f 75 74 65 72 20 75 73 75 61 6c | oing.address.of.the.router.usual |
| 34aa0 | 6c 79 20 64 6f 65 73 6e 27 74 20 6d 61 74 63 68 20 74 68 65 20 49 50 73 65 63 20 70 6f 6c 69 63 | ly.doesn't.match.the.IPsec.polic |
| 34ac0 | 79 20 6f 66 20 74 79 70 69 63 61 6c 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 73 65 74 75 70 20 | y.of.typical.site-to-site.setup. |
| 34ae0 | 61 6e 64 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 61 64 64 20 73 70 65 63 69 61 6c 20 63 6f 6e 66 | and.you.need.to.add.special.conf |
| 34b00 | 69 67 75 72 61 74 69 6f 6e 20 66 6f 72 20 69 74 2c 20 6f 72 20 61 64 6a 75 73 74 20 74 68 65 20 | iguration.for.it,.or.adjust.the. |
| 34b20 | 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 66 6f 72 20 6f 75 74 67 6f 69 6e 67 20 74 72 61 66 | source.address.for.outgoing.traf |
| 34b40 | 66 69 63 20 6f 66 20 79 6f 75 72 20 61 70 70 6c 69 63 61 74 69 6f 6e 73 2e 20 47 52 45 2f 49 50 | fic.of.your.applications..GRE/IP |
| 34b60 | 73 65 63 20 68 61 73 20 6e 6f 20 73 75 63 68 20 70 72 6f 62 6c 65 6d 20 61 6e 64 20 69 73 20 63 | sec.has.no.such.problem.and.is.c |
| 34b80 | 6f 6d 70 6c 65 74 65 6c 79 20 74 72 61 6e 73 70 61 72 65 6e 74 20 66 6f 72 20 74 68 65 20 61 70 | ompletely.transparent.for.the.ap |
| 34ba0 | 70 6c 69 63 61 74 69 6f 6e 73 2e 00 41 6e 20 61 67 65 6e 74 20 69 73 20 61 20 6e 65 74 77 6f 72 | plications..An.agent.is.a.networ |
| 34bc0 | 6b 2d 6d 61 6e 61 67 65 6d 65 6e 74 20 73 6f 66 74 77 61 72 65 20 6d 6f 64 75 6c 65 20 74 68 61 | k-management.software.module.tha |
| 34be0 | 74 20 72 65 73 69 64 65 73 20 6f 6e 20 61 20 6d 61 6e 61 67 65 64 20 64 65 76 69 63 65 2e 20 41 | t.resides.on.a.managed.device..A |
| 34c00 | 6e 20 61 67 65 6e 74 20 68 61 73 20 6c 6f 63 61 6c 20 6b 6e 6f 77 6c 65 64 67 65 20 6f 66 20 6d | n.agent.has.local.knowledge.of.m |
| 34c20 | 61 6e 61 67 65 6d 65 6e 74 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 6e 64 20 74 72 61 6e 73 6c | anagement.information.and.transl |
| 34c40 | 61 74 65 73 20 74 68 61 74 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 6f 20 6f 72 20 66 72 6f 6d | ates.that.information.to.or.from |
| 34c60 | 20 61 6e 20 53 4e 4d 50 2d 73 70 65 63 69 66 69 63 20 66 6f 72 6d 2e 00 41 6e 20 61 6c 74 65 72 | .an.SNMP-specific.form..An.alter |
| 34c80 | 6e 61 74 65 20 63 6f 6d 6d 61 6e 64 20 63 6f 75 6c 64 20 62 65 20 22 6d 70 6c 73 2d 74 65 20 6f | nate.command.could.be."mpls-te.o |
| 34ca0 | 6e 22 20 28 54 72 61 66 66 69 63 20 45 6e 67 69 6e 65 65 72 69 6e 67 29 00 41 6e 20 61 72 62 69 | n".(Traffic.Engineering).An.arbi |
| 34cc0 | 74 72 61 72 79 20 6e 65 74 6d 61 73 6b 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 | trary.netmask.can.be.applied.to. |
| 34ce0 | 6d 61 73 6b 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 6f 6e 6c 79 20 6d 61 74 63 68 20 61 67 61 | mask.addresses.to.only.match.aga |
| 34d00 | 69 6e 73 74 20 61 20 73 70 65 63 69 66 69 63 20 70 6f 72 74 69 6f 6e 2e 00 41 6e 20 61 72 62 69 | inst.a.specific.portion..An.arbi |
| 34d20 | 74 72 61 72 79 20 6e 65 74 6d 61 73 6b 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 | trary.netmask.can.be.applied.to. |
| 34d40 | 6d 61 73 6b 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 6f 6e 6c 79 20 6d 61 74 63 68 20 61 67 61 | mask.addresses.to.only.match.aga |
| 34d60 | 69 6e 73 74 20 61 20 73 70 65 63 69 66 69 63 20 70 6f 72 74 69 6f 6e 2e 20 54 68 69 73 20 69 73 | inst.a.specific.portion..This.is |
| 34d80 | 20 70 61 72 74 69 63 75 6c 61 72 6c 79 20 75 73 65 66 75 6c 20 77 69 74 68 20 49 50 76 36 20 61 | .particularly.useful.with.IPv6.a |
| 34da0 | 6e 64 20 61 20 7a 6f 6e 65 2d 62 61 73 65 64 20 66 69 72 65 77 61 6c 6c 20 61 73 20 72 75 6c 65 | nd.a.zone-based.firewall.as.rule |
| 34dc0 | 73 20 77 69 6c 6c 20 72 65 6d 61 69 6e 20 76 61 6c 69 64 20 69 66 20 74 68 65 20 49 50 76 36 20 | s.will.remain.valid.if.the.IPv6. |
| 34de0 | 70 72 65 66 69 78 20 63 68 61 6e 67 65 73 20 61 6e 64 20 74 68 65 20 68 6f 73 74 20 70 6f 72 74 | prefix.changes.and.the.host.port |
| 34e00 | 69 6f 6e 20 6f 66 20 73 79 73 74 65 6d 73 20 49 50 76 36 20 61 64 64 72 65 73 73 20 69 73 20 73 | ion.of.systems.IPv6.address.is.s |
| 34e20 | 74 61 74 69 63 20 28 66 6f 72 20 65 78 61 6d 70 6c 65 2c 20 77 69 74 68 20 53 4c 41 41 43 20 6f | tatic.(for.example,.with.SLAAC.o |
| 34e40 | 72 20 60 74 6f 6b 65 6e 69 73 65 64 20 49 50 76 36 20 61 64 64 72 65 73 73 65 73 20 3c 68 74 74 | r.`tokenised.IPv6.addresses.<htt |
| 34e60 | 70 73 3a 2f 2f 64 61 74 61 74 72 61 63 6b 65 72 2e 69 65 74 66 2e 6f 72 67 2f 64 6f 63 2f 69 64 | ps://datatracker.ietf.org/doc/id |
| 34e80 | 2f 64 72 61 66 74 2d 63 68 6f 77 6e 2d 36 6d 61 6e 2d 74 6f 6b 65 6e 69 73 65 64 2d 69 70 76 36 | /draft-chown-6man-tokenised-ipv6 |
| 34ea0 | 2d 69 64 65 6e 74 69 66 69 65 72 73 2d 30 32 2e 74 78 74 3e 60 5f 29 00 41 6e 20 61 72 62 69 74 | -identifiers-02.txt>`_).An.arbit |
| 34ec0 | 72 61 72 79 20 6e 65 74 6d 61 73 6b 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 6d | rary.netmask.can.be.applied.to.m |
| 34ee0 | 61 73 6b 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 6f 6e 6c 79 20 6d 61 74 63 68 20 61 67 61 69 | ask.addresses.to.only.match.agai |
| 34f00 | 6e 73 74 20 61 20 73 70 65 63 69 66 69 63 20 70 6f 72 74 69 6f 6e 2e 20 54 68 69 73 20 69 73 20 | nst.a.specific.portion..This.is. |
| 34f20 | 70 61 72 74 69 63 75 6c 61 72 6c 79 20 75 73 65 66 75 6c 20 77 69 74 68 20 49 50 76 36 20 61 6e | particularly.useful.with.IPv6.an |
| 34f40 | 64 20 61 20 7a 6f 6e 65 2d 62 61 73 65 64 20 66 69 72 65 77 61 6c 6c 20 61 73 20 72 75 6c 65 73 | d.a.zone-based.firewall.as.rules |
| 34f60 | 20 77 69 6c 6c 20 72 65 6d 61 69 6e 20 76 61 6c 69 64 20 69 66 20 74 68 65 20 49 50 76 36 20 70 | .will.remain.valid.if.the.IPv6.p |
| 34f80 | 72 65 66 69 78 20 63 68 61 6e 67 65 73 20 61 6e 64 20 74 68 65 20 68 6f 73 74 20 70 6f 72 74 69 | refix.changes.and.the.host.porti |
| 34fa0 | 6f 6e 20 6f 66 20 73 79 73 74 65 6d 73 20 49 50 76 36 20 61 64 64 72 65 73 73 20 69 73 20 73 74 | on.of.systems.IPv6.address.is.st |
| 34fc0 | 61 74 69 63 20 28 66 6f 72 20 65 78 61 6d 70 6c 65 2c 20 77 69 74 68 20 53 4c 41 41 43 20 6f 72 | atic.(for.example,.with.SLAAC.or |
| 34fe0 | 20 60 74 6f 6b 65 6e 69 73 65 64 20 49 50 76 36 20 61 64 64 72 65 73 73 65 73 20 3c 68 74 74 70 | .`tokenised.IPv6.addresses.<http |
| 35000 | 73 3a 2f 2f 64 61 74 61 74 72 61 63 6b 65 72 2e 69 65 74 66 2e 6f 72 67 2f 64 6f 63 2f 69 64 2f | s://datatracker.ietf.org/doc/id/ |
| 35020 | 64 72 61 66 74 2d 63 68 6f 77 6e 2d 36 6d 61 6e 2d 74 6f 6b 65 6e 69 73 65 64 2d 69 70 76 36 2d | draft-chown-6man-tokenised-ipv6- |
| 35040 | 69 64 65 6e 74 69 66 69 65 72 73 2d 30 32 2e 74 78 74 3e 60 5f 29 2e 00 41 6e 20 61 72 62 69 74 | identifiers-02.txt>`_)..An.arbit |
| 35060 | 72 61 72 79 20 6e 65 74 6d 61 73 6b 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 6d | rary.netmask.can.be.applied.to.m |
| 35080 | 61 73 6b 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 6f 6e 6c 79 20 6d 61 74 63 68 20 61 67 61 69 | ask.addresses.to.only.match.agai |
| 350a0 | 6e 73 74 20 61 20 73 70 65 63 69 66 69 63 20 70 6f 72 74 69 6f 6e 2e 20 54 68 69 73 20 69 73 20 | nst.a.specific.portion..This.is. |
| 350c0 | 70 61 72 74 69 63 75 6c 61 72 6c 79 20 75 73 65 66 75 6c 20 77 69 74 68 20 49 50 76 36 20 61 73 | particularly.useful.with.IPv6.as |
| 350e0 | 20 72 75 6c 65 73 20 77 69 6c 6c 20 72 65 6d 61 69 6e 20 76 61 6c 69 64 20 69 66 20 74 68 65 20 | .rules.will.remain.valid.if.the. |
| 35100 | 49 50 76 36 20 70 72 65 66 69 78 20 63 68 61 6e 67 65 73 20 61 6e 64 20 74 68 65 20 68 6f 73 74 | IPv6.prefix.changes.and.the.host |
| 35120 | 20 70 6f 72 74 69 6f 6e 20 6f 66 20 73 79 73 74 65 6d 73 20 49 50 76 36 20 61 64 64 72 65 73 73 | .portion.of.systems.IPv6.address |
| 35140 | 20 69 73 20 73 74 61 74 69 63 20 28 66 6f 72 20 65 78 61 6d 70 6c 65 2c 20 77 69 74 68 20 53 4c | .is.static.(for.example,.with.SL |
| 35160 | 41 41 43 20 6f 72 20 60 74 6f 6b 65 6e 69 73 65 64 20 49 50 76 36 20 61 64 64 72 65 73 73 65 73 | AAC.or.`tokenised.IPv6.addresses |
| 35180 | 20 3c 68 74 74 70 73 3a 2f 2f 64 61 74 61 74 72 61 63 6b 65 72 2e 69 65 74 66 2e 6f 72 67 20 2f | .<https://datatracker.ietf.org./ |
| 351a0 | 64 6f 63 2f 69 64 2f 64 72 61 66 74 2d 63 68 6f 77 6e 2d 36 6d 61 6e 2d 74 6f 6b 65 6e 69 73 65 | doc/id/draft-chown-6man-tokenise |
| 351c0 | 64 2d 69 70 76 36 2d 69 64 65 6e 74 69 66 69 65 72 73 2d 30 32 2e 74 78 74 3e 60 5f 29 00 41 6e | d-ipv6-identifiers-02.txt>`_).An |
| 351e0 | 20 61 72 62 69 74 72 61 72 79 20 6e 65 74 6d 61 73 6b 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 | .arbitrary.netmask.can.be.applie |
| 35200 | 64 20 74 6f 20 6d 61 73 6b 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 6f 6e 6c 79 20 6d 61 74 63 | d.to.mask.addresses.to.only.matc |
| 35220 | 68 20 61 67 61 69 6e 73 74 20 61 20 73 70 65 63 69 66 69 63 20 70 6f 72 74 69 6f 6e 2e 20 54 68 | h.against.a.specific.portion..Th |
| 35240 | 69 73 20 69 73 20 70 61 72 74 69 63 75 6c 61 72 6c 79 20 75 73 65 66 75 6c 20 77 69 74 68 20 49 | is.is.particularly.useful.with.I |
| 35260 | 50 76 36 20 61 73 20 72 75 6c 65 73 20 77 69 6c 6c 20 72 65 6d 61 69 6e 20 76 61 6c 69 64 20 69 | Pv6.as.rules.will.remain.valid.i |
| 35280 | 66 20 74 68 65 20 49 50 76 36 20 70 72 65 66 69 78 20 63 68 61 6e 67 65 73 20 61 6e 64 20 74 68 | f.the.IPv6.prefix.changes.and.th |
| 352a0 | 65 20 68 6f 73 74 20 70 6f 72 74 69 6f 6e 20 6f 66 20 73 79 73 74 65 6d 73 20 49 50 76 36 20 61 | e.host.portion.of.systems.IPv6.a |
| 352c0 | 64 64 72 65 73 73 20 69 73 20 73 74 61 74 69 63 20 28 66 6f 72 20 65 78 61 6d 70 6c 65 2c 20 77 | ddress.is.static.(for.example,.w |
| 352e0 | 69 74 68 20 53 4c 41 41 43 20 6f 72 20 60 74 6f 6b 65 6e 69 73 65 64 20 49 50 76 36 20 61 64 64 | ith.SLAAC.or.`tokenised.IPv6.add |
| 35300 | 72 65 73 73 65 73 20 3c 68 74 74 70 73 3a 2f 2f 64 61 74 61 74 72 61 63 6b 65 72 2e 69 65 74 66 | resses.<https://datatracker.ietf |
| 35320 | 2e 6f 72 67 2f 64 6f 63 2f 69 64 2f 64 72 61 66 74 2d 63 68 6f 77 6e 2d 36 6d 61 6e 2d 74 6f 6b | .org/doc/id/draft-chown-6man-tok |
| 35340 | 65 6e 69 73 65 64 2d 69 70 76 36 2d 69 64 65 6e 74 69 66 69 65 72 73 2d 30 32 2e 74 78 74 3e 60 | enised-ipv6-identifiers-02.txt>` |
| 35360 | 5f 29 00 41 6e 20 62 61 73 69 63 20 69 6e 74 72 6f 64 75 63 74 69 6f 6e 20 74 6f 20 7a 6f 6e 65 | _).An.basic.introduction.to.zone |
| 35380 | 2d 62 61 73 65 64 20 66 69 72 65 77 61 6c 6c 73 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 60 68 | -based.firewalls.can.be.found.`h |
| 353a0 | 65 72 65 20 3c 68 74 74 70 73 3a 2f 2f 73 75 70 70 6f 72 74 2e 76 79 6f 73 2e 69 6f 2f 65 6e 2f | ere.<https://support.vyos.io/en/ |
| 353c0 | 6b 62 2f 61 72 74 69 63 6c 65 73 2f 61 2d 70 72 69 6d 65 72 2d 74 6f 2d 7a 6f 6e 65 2d 62 61 73 | kb/articles/a-primer-to-zone-bas |
| 353e0 | 65 64 2d 66 69 72 65 77 61 6c 6c 3e 60 5f 2c 20 61 6e 64 20 61 6e 20 65 78 61 6d 70 6c 65 20 61 | ed-firewall>`_,.and.an.example.a |
| 35400 | 74 20 3a 72 65 66 3a 60 65 78 61 6d 70 6c 65 73 2d 7a 6f 6e 65 2d 70 6f 6c 69 63 79 60 2e 00 41 | t.:ref:`examples-zone-policy`..A |
| 35420 | 6e 20 65 78 61 6d 70 6c 65 20 6f 66 20 61 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 | n.example.of.a.configuration.tha |
| 35440 | 74 20 73 65 6e 64 73 20 60 60 74 65 6c 65 67 72 61 66 60 60 20 6d 65 74 72 69 63 73 20 74 6f 20 | t.sends.``telegraf``.metrics.to. |
| 35460 | 72 65 6d 6f 74 65 20 60 60 49 6e 66 6c 75 78 44 42 20 32 60 60 00 41 6e 20 65 78 61 6d 70 6c 65 | remote.``InfluxDB.2``.An.example |
| 35480 | 20 6f 66 20 63 72 65 61 74 69 6e 67 20 61 20 56 4c 41 4e 2d 61 77 61 72 65 20 62 72 69 64 67 65 | .of.creating.a.VLAN-aware.bridge |
| 354a0 | 20 69 73 20 61 73 20 66 6f 6c 6c 6f 77 73 3a 00 41 6e 20 65 78 61 6d 70 6c 65 20 6f 66 20 6b 65 | .is.as.follows:.An.example.of.ke |
| 354c0 | 79 20 67 65 6e 65 72 61 74 69 6f 6e 3a 00 41 6e 20 65 78 61 6d 70 6c 65 20 6f 66 20 74 68 65 20 | y.generation:.An.example.of.the. |
| 354e0 | 64 61 74 61 20 63 61 70 74 75 72 65 64 20 62 79 20 61 20 46 52 45 45 52 41 44 49 55 53 20 73 65 | data.captured.by.a.FREERADIUS.se |
| 35500 | 72 76 65 72 20 77 69 74 68 20 73 71 6c 20 61 63 63 6f 75 6e 74 69 6e 67 3a 00 41 6e 20 65 78 61 | rver.with.sql.accounting:.An.exa |
| 35520 | 6d 70 6c 65 3a 00 41 6e 20 6f 70 74 69 6f 6e 20 74 68 61 74 20 74 61 6b 65 73 20 61 20 71 75 6f | mple:.An.option.that.takes.a.quo |
| 35540 | 74 65 64 20 73 74 72 69 6e 67 20 69 73 20 73 65 74 20 62 79 20 72 65 70 6c 61 63 69 6e 67 20 61 | ted.string.is.set.by.replacing.a |
| 35560 | 6c 6c 20 71 75 6f 74 65 20 63 68 61 72 61 63 74 65 72 73 20 77 69 74 68 20 74 68 65 20 73 74 72 | ll.quote.characters.with.the.str |
| 35580 | 69 6e 67 20 60 60 26 71 75 6f 74 3b 60 60 20 69 6e 73 69 64 65 20 74 68 65 20 73 74 61 74 69 63 | ing.``"``.inside.the.static |
| 355a0 | 2d 6d 61 70 70 69 6e 67 2d 70 61 72 61 6d 65 74 65 72 73 20 76 61 6c 75 65 2e 20 54 68 65 20 72 | -mapping-parameters.value..The.r |
| 355c0 | 65 73 75 6c 74 69 6e 67 20 6c 69 6e 65 20 69 6e 20 64 68 63 70 64 2e 63 6f 6e 66 20 77 69 6c 6c | esulting.line.in.dhcpd.conf.will |
| 355e0 | 20 62 65 20 60 60 6f 70 74 69 6f 6e 20 70 78 65 6c 69 6e 75 78 2e 63 6f 6e 66 69 67 66 69 6c 65 | .be.``option.pxelinux.configfile |
| 35600 | 20 22 70 78 65 6c 69 6e 75 78 2e 63 66 67 2f 30 31 2d 30 30 2d 31 35 2d 31 37 2d 34 34 2d 32 64 | ."pxelinux.cfg/01-00-15-17-44-2d |
| 35620 | 2d 61 61 22 3b 60 60 2e 00 41 6e 61 6c 79 73 69 73 20 6f 6e 20 77 68 61 74 20 68 61 70 70 65 6e | -aa";``..Analysis.on.what.happen |
| 35640 | 73 20 66 6f 72 20 64 65 73 69 72 65 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 3a 00 41 6e 64 20 62 61 | s.for.desired.connection:.And.ba |
| 35660 | 73 65 20 63 68 61 69 6e 20 66 6f 72 20 74 72 61 66 66 69 63 20 67 65 6e 65 72 61 74 65 64 20 62 | se.chain.for.traffic.generated.b |
| 35680 | 79 20 74 68 65 20 72 6f 75 74 65 72 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 | y.the.router.is.``set.firewall.i |
| 356a0 | 70 76 34 20 6f 75 74 70 75 74 20 2e 2e 2e 60 60 2c 20 77 68 65 72 65 20 74 77 6f 20 73 75 62 2d | pv4.output....``,.where.two.sub- |
| 356c0 | 63 68 61 69 6e 73 20 61 72 65 20 61 76 61 69 6c 61 62 6c 65 3a 20 2a 2a 66 69 6c 74 65 72 2a 2a | chains.are.available:.**filter** |
| 356e0 | 20 61 6e 64 20 2a 2a 72 61 77 2a 2a 3a 00 41 6e 64 20 62 61 73 65 20 63 68 61 69 6e 20 66 6f 72 | .and.**raw**:.And.base.chain.for |
| 35700 | 20 74 72 61 66 66 69 63 20 67 65 6e 65 72 61 74 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 | .traffic.generated.by.the.router |
| 35720 | 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 6f 75 74 70 75 74 20 66 | .is.``set.firewall.ipv4.output.f |
| 35740 | 69 6c 74 65 72 20 2e 2e 2e 60 60 00 41 6e 64 20 62 61 73 65 20 63 68 61 69 6e 20 66 6f 72 20 74 | ilter....``.And.base.chain.for.t |
| 35760 | 72 61 66 66 69 63 20 67 65 6e 65 72 61 74 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 20 69 | raffic.generated.by.the.router.i |
| 35780 | 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 6f 75 74 70 75 74 20 66 69 6c | s.``set.firewall.ipv6.output.fil |
| 357a0 | 74 65 72 20 2e 2e 2e 60 60 00 41 6e 64 20 62 61 73 65 20 63 68 61 69 6e 20 66 6f 72 20 74 72 61 | ter....``.And.base.chain.for.tra |
| 357c0 | 66 66 69 63 20 67 65 6e 65 72 61 74 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 20 69 73 20 | ffic.generated.by.the.router.is. |
| 357e0 | 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 6f 75 74 70 75 74 20 66 69 6c 74 65 | ``set.firewall.ipv6.output.filte |
| 35800 | 72 20 2e 2e 2e 60 60 2c 20 77 68 65 72 65 20 74 77 6f 20 73 75 62 2d 63 68 61 69 6e 73 20 61 72 | r....``,.where.two.sub-chains.ar |
| 35820 | 65 20 61 76 61 69 6c 61 62 6c 65 3a 20 2a 2a 66 69 6c 74 65 72 2a 2a 20 61 6e 64 20 2a 2a 72 61 | e.available:.**filter**.and.**ra |
| 35840 | 77 2a 2a 3a 00 41 6e 64 20 63 6f 6e 74 65 6e 74 20 6f 66 20 74 68 65 20 73 63 72 69 70 74 3a 00 | w**:.And.content.of.the.script:. |
| 35860 | 41 6e 64 20 66 6f 72 20 69 70 76 36 3a 00 41 6e 64 20 66 6f 72 20 74 72 61 66 66 69 63 20 74 68 | And.for.ipv6:.And.for.traffic.th |
| 35880 | 61 74 20 6f 72 69 67 69 6e 61 74 65 73 20 66 72 6f 6d 20 74 68 65 20 62 72 69 64 67 65 20 69 74 | at.originates.from.the.bridge.it |
| 358a0 | 73 65 6c 66 2c 20 74 68 65 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 20 2a 2a 6f 75 74 70 75 74 | self,.the.base.chain.is.**output |
| 358c0 | 2a 2a 2c 20 62 61 73 65 20 63 6f 6d 6d 61 6e 64 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 | **,.base.command.is.``set.firewa |
| 358e0 | 6c 6c 20 62 72 69 64 67 65 20 6f 75 74 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2c 20 61 | ll.bridge.output.filter....``,.a |
| 35900 | 6e 64 20 74 68 65 20 70 61 74 68 20 69 73 3a 00 41 6e 64 20 6e 65 78 74 2c 20 73 6f 6d 65 20 63 | nd.the.path.is:.And.next,.some.c |
| 35920 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 65 78 61 6d 70 6c 65 20 77 68 65 72 65 20 67 72 6f 75 70 | onfiguration.example.where.group |
| 35940 | 73 20 61 72 65 20 75 73 65 64 3a 00 41 6e 64 20 6f 70 2d 6d 6f 64 65 20 63 6f 6d 6d 61 6e 64 73 | s.are.used:.And.op-mode.commands |
| 35960 | 3a 00 41 6e 64 20 74 68 65 20 62 61 73 65 20 63 68 61 69 6e 20 66 6f 72 20 74 72 61 66 66 69 63 | :.And.the.base.chain.for.traffic |
| 35980 | 20 67 65 6e 65 72 61 74 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 20 69 73 20 60 60 73 65 | .generated.by.the.router.is.``se |
| 359a0 | 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 6f 75 74 70 75 74 20 2e 2e 2e 60 60 2c 20 77 68 | t.firewall.ipv4.output....``,.wh |
| 359c0 | 65 72 65 20 74 77 6f 20 73 75 62 2d 63 68 61 69 6e 73 20 61 72 65 20 61 76 61 69 6c 61 62 6c 65 | ere.two.sub-chains.are.available |
| 359e0 | 3a 20 2a 2a 66 69 6c 74 65 72 2a 2a 20 61 6e 64 20 2a 2a 72 61 77 2a 2a 3a 00 41 6e 64 20 74 68 | :.**filter**.and.**raw**:.And.th |
| 35a00 | 65 20 62 61 73 65 20 63 68 61 69 6e 20 66 6f 72 20 74 72 61 66 66 69 63 20 67 65 6e 65 72 61 74 | e.base.chain.for.traffic.generat |
| 35a20 | 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 | ed.by.the.router.is.``set.firewa |
| 35a40 | 6c 6c 20 69 70 76 36 20 6f 75 74 70 75 74 20 2e 2e 2e 60 60 2c 20 77 68 65 72 65 20 74 77 6f 20 | ll.ipv6.output....``,.where.two. |
| 35a60 | 73 75 62 2d 63 68 61 69 6e 73 20 61 72 65 20 61 76 61 69 6c 61 62 6c 65 3a 20 2a 2a 66 69 6c 74 | sub-chains.are.available:.**filt |
| 35a80 | 65 72 2a 2a 20 61 6e 64 20 2a 2a 72 61 77 2a 2a 3a 00 41 6e 64 20 74 68 65 20 64 69 66 66 65 72 | er**.and.**raw**:.And.the.differ |
| 35aa0 | 65 6e 74 20 49 50 76 34 20 2a 2a 72 65 73 65 74 2a 2a 20 63 6f 6d 6d 61 6e 64 73 20 61 76 61 69 | ent.IPv4.**reset**.commands.avai |
| 35ac0 | 6c 61 62 6c 65 3a 00 41 6e 64 20 74 68 65 6e 20 68 61 73 68 20 69 73 20 72 65 64 75 63 65 64 20 | lable:.And.then.hash.is.reduced. |
| 35ae0 | 6d 6f 64 75 6c 6f 20 73 6c 61 76 65 20 63 6f 75 6e 74 2e 00 41 6e 64 2c 20 74 6f 20 70 72 69 6e | modulo.slave.count..And,.to.prin |
| 35b00 | 74 20 6f 6e 6c 79 20 62 72 69 64 67 65 20 66 69 72 65 77 61 6c 6c 20 69 6e 66 6f 72 6d 61 74 69 | t.only.bridge.firewall.informati |
| 35b20 | 6f 6e 3a 00 41 6e 6f 74 68 65 72 20 74 65 72 6d 20 6f 66 74 65 6e 20 75 73 65 64 20 66 6f 72 20 | on:.Another.term.often.used.for. |
| 35b40 | 44 4e 41 54 20 69 73 20 2a 2a 31 2d 74 6f 2d 31 20 4e 41 54 2a 2a 2e 20 46 6f 72 20 61 20 31 2d | DNAT.is.**1-to-1.NAT**..For.a.1- |
| 35b60 | 74 6f 2d 31 20 4e 41 54 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2c 20 62 6f 74 68 20 44 4e 41 | to-1.NAT.configuration,.both.DNA |
| 35b80 | 54 20 61 6e 64 20 53 4e 41 54 20 61 72 65 20 75 73 65 64 20 74 6f 20 4e 41 54 20 61 6c 6c 20 74 | T.and.SNAT.are.used.to.NAT.all.t |
| 35ba0 | 72 61 66 66 69 63 20 66 72 6f 6d 20 61 6e 20 65 78 74 65 72 6e 61 6c 20 49 50 20 61 64 64 72 65 | raffic.from.an.external.IP.addre |
| 35bc0 | 73 73 20 74 6f 20 61 6e 20 69 6e 74 65 72 6e 61 6c 20 49 50 20 61 64 64 72 65 73 73 20 61 6e 64 | ss.to.an.internal.IP.address.and |
| 35be0 | 20 76 69 63 65 2d 76 65 72 73 61 2e 00 41 6e 6f 74 68 65 72 20 74 68 69 6e 67 20 74 6f 20 6b 65 | .vice-versa..Another.thing.to.ke |
| 35c00 | 65 70 20 69 6e 20 6d 69 6e 64 20 77 69 74 68 20 4c 44 50 20 69 73 20 74 68 61 74 20 6d 75 63 68 | ep.in.mind.with.LDP.is.that.much |
| 35c20 | 20 6c 69 6b 65 20 42 47 50 2c 20 69 74 20 69 73 20 61 20 70 72 6f 74 6f 63 6f 6c 20 74 68 61 74 | .like.BGP,.it.is.a.protocol.that |
| 35c40 | 20 72 75 6e 73 20 6f 6e 20 74 6f 70 20 6f 66 20 54 43 50 2e 20 49 74 20 68 6f 77 65 76 65 72 20 | .runs.on.top.of.TCP..It.however. |
| 35c60 | 64 6f 65 73 20 6e 6f 74 20 68 61 76 65 20 61 6e 20 61 62 69 6c 69 74 79 20 74 6f 20 64 6f 20 73 | does.not.have.an.ability.to.do.s |
| 35c80 | 6f 6d 65 74 68 69 6e 67 20 6c 69 6b 65 20 61 20 72 65 66 72 65 73 68 20 63 61 70 61 62 69 6c 69 | omething.like.a.refresh.capabili |
| 35ca0 | 74 79 20 6c 69 6b 65 20 42 47 50 73 20 72 6f 75 74 65 20 72 65 66 72 65 73 68 20 63 61 70 61 62 | ty.like.BGPs.route.refresh.capab |
| 35cc0 | 69 6c 69 74 79 2e 20 54 68 65 72 65 66 6f 72 65 20 6f 6e 65 20 6d 69 67 68 74 20 68 61 76 65 20 | ility..Therefore.one.might.have. |
| 35ce0 | 74 6f 20 72 65 73 65 74 20 74 68 65 20 6e 65 69 67 68 62 6f 72 20 66 6f 72 20 61 20 63 61 70 61 | to.reset.the.neighbor.for.a.capa |
| 35d00 | 62 69 6c 69 74 79 20 63 68 61 6e 67 65 20 6f 72 20 61 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e | bility.change.or.a.configuration |
| 35d20 | 20 63 68 61 6e 67 65 20 74 6f 20 77 6f 72 6b 2e 00 41 70 70 6c 65 20 69 4f 53 2f 69 50 61 64 4f | .change.to.work..Apple.iOS/iPadO |
| 35d40 | 53 20 28 31 34 2e 32 2b 29 00 41 70 70 6c 65 20 69 4f 53 2f 69 50 61 64 4f 53 20 65 78 70 65 63 | S.(14.2+).Apple.iOS/iPadOS.expec |
| 35d60 | 74 73 20 74 68 65 20 73 65 72 76 65 72 20 6e 61 6d 65 20 74 6f 20 62 65 20 61 6c 73 6f 20 75 73 | ts.the.server.name.to.be.also.us |
| 35d80 | 65 64 20 69 6e 20 74 68 65 20 73 65 72 76 65 72 27 73 20 63 65 72 74 69 66 69 63 61 74 65 20 63 | ed.in.the.server's.certificate.c |
| 35da0 | 6f 6d 6d 6f 6e 20 6e 61 6d 65 2c 20 73 6f 20 69 74 27 73 20 62 65 73 74 20 74 6f 20 75 73 65 20 | ommon.name,.so.it's.best.to.use. |
| 35dc0 | 74 68 69 73 20 44 4e 53 20 6e 61 6d 65 20 66 6f 72 20 79 6f 75 72 20 56 50 4e 20 63 6f 6e 6e 65 | this.DNS.name.for.your.VPN.conne |
| 35de0 | 63 74 69 6f 6e 2e 00 41 70 70 6c 79 20 61 20 72 6f 75 74 65 2d 6d 61 70 20 66 69 6c 74 65 72 20 | ction..Apply.a.route-map.filter. |
| 35e00 | 74 6f 20 72 6f 75 74 65 73 20 66 6f 72 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 70 72 6f 74 | to.routes.for.the.specified.prot |
| 35e20 | 6f 63 6f 6c 2e 00 41 70 70 6c 79 20 61 20 72 6f 75 74 65 2d 6d 61 70 20 66 69 6c 74 65 72 20 74 | ocol..Apply.a.route-map.filter.t |
| 35e40 | 6f 20 72 6f 75 74 65 73 20 66 6f 72 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 70 72 6f 74 6f | o.routes.for.the.specified.proto |
| 35e60 | 63 6f 6c 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 73 20 63 61 6e | col..The.following.protocols.can |
| 35e80 | 20 62 65 20 75 73 65 64 3a 20 61 6e 79 2c 20 62 61 62 65 6c 2c 20 62 67 70 2c 20 63 6f 6e 6e 65 | .be.used:.any,.babel,.bgp,.conne |
| 35ea0 | 63 74 65 64 2c 20 65 69 67 72 70 2c 20 69 73 69 73 2c 20 6b 65 72 6e 65 6c 2c 20 6f 73 70 66 2c | cted,.eigrp,.isis,.kernel,.ospf, |
| 35ec0 | 20 72 69 70 2c 20 73 74 61 74 69 63 2c 20 74 61 62 6c 65 00 41 70 70 6c 79 20 61 20 72 6f 75 74 | .rip,.static,.table.Apply.a.rout |
| 35ee0 | 65 2d 6d 61 70 20 66 69 6c 74 65 72 20 74 6f 20 72 6f 75 74 65 73 20 66 6f 72 20 74 68 65 20 73 | e-map.filter.to.routes.for.the.s |
| 35f00 | 70 65 63 69 66 69 65 64 20 70 72 6f 74 6f 63 6f 6c 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 | pecified.protocol..The.following |
| 35f20 | 20 70 72 6f 74 6f 63 6f 6c 73 20 63 61 6e 20 62 65 20 75 73 65 64 3a 20 61 6e 79 2c 20 62 61 62 | .protocols.can.be.used:.any,.bab |
| 35f40 | 65 6c 2c 20 62 67 70 2c 20 63 6f 6e 6e 65 63 74 65 64 2c 20 69 73 69 73 2c 20 6b 65 72 6e 65 6c | el,.bgp,.connected,.isis,.kernel |
| 35f60 | 2c 20 6f 73 70 66 76 33 2c 20 72 69 70 6e 67 2c 20 73 74 61 74 69 63 2c 20 74 61 62 6c 65 00 41 | ,.ospfv3,.ripng,.static,.table.A |
| 35f80 | 70 70 6c 79 20 72 6f 75 74 69 6e 67 20 70 6f 6c 69 63 79 20 74 6f 20 2a 2a 69 6e 62 6f 75 6e 64 | pply.routing.policy.to.**inbound |
| 35fa0 | 2a 2a 20 64 69 72 65 63 74 69 6f 6e 20 6f 66 20 6f 75 74 20 56 4c 41 4e 20 69 6e 74 65 72 66 61 | **.direction.of.out.VLAN.interfa |
| 35fc0 | 63 65 73 00 41 70 70 6c 79 69 6e 67 20 61 20 52 75 6c 65 2d 53 65 74 20 74 6f 20 61 20 5a 6f 6e | ces.Applying.a.Rule-Set.to.a.Zon |
| 35fe0 | 65 00 41 70 70 6c 79 69 6e 67 20 61 20 52 75 6c 65 2d 53 65 74 20 74 6f 20 61 6e 20 49 6e 74 65 | e.Applying.a.Rule-Set.to.an.Inte |
| 36000 | 72 66 61 63 65 00 41 70 70 6c 79 69 6e 67 20 61 20 74 72 61 66 66 69 63 20 70 6f 6c 69 63 79 00 | rface.Applying.a.traffic.policy. |
| 36020 | 41 72 65 61 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 41 72 65 61 20 69 64 65 6e 74 69 66 69 | Area.Configuration.Area.identifi |
| 36040 | 65 72 3a 20 60 60 30 30 30 31 60 60 20 49 53 2d 49 53 20 61 72 65 61 20 6e 75 6d 62 65 72 20 28 | er:.``0001``.IS-IS.area.number.( |
| 36060 | 6e 75 6d 62 65 72 69 63 61 6c 20 61 72 65 61 20 60 60 31 60 60 29 00 41 72 65 61 20 69 64 65 6e | numberical.area.``1``).Area.iden |
| 36080 | 74 69 66 69 65 72 3a 20 60 60 30 30 30 31 60 60 20 49 53 2d 49 53 20 61 72 65 61 20 6e 75 6d 62 | tifier:.``0001``.IS-IS.area.numb |
| 360a0 | 65 72 20 28 6e 75 6d 65 72 69 63 61 6c 20 61 72 65 61 20 60 60 31 60 60 29 00 41 72 65 61 20 69 | er.(numerical.area.``1``).Area.i |
| 360c0 | 64 65 6e 74 69 66 69 65 72 3a 20 60 60 30 30 30 31 60 60 20 4f 70 65 6e 46 61 62 72 69 63 20 61 | dentifier:.``0001``.OpenFabric.a |
| 360e0 | 72 65 61 20 6e 75 6d 62 65 72 20 28 6e 75 6d 65 72 69 63 61 6c 20 61 72 65 61 20 60 60 31 60 60 | rea.number.(numerical.area.``1`` |
| 36100 | 29 00 41 72 67 75 6d 65 6e 74 73 20 77 68 69 63 68 20 77 69 6c 6c 20 62 65 20 70 61 73 73 65 64 | ).Arguments.which.will.be.passed |
| 36120 | 20 74 6f 20 74 68 65 20 65 78 65 63 75 74 61 62 6c 65 2e 00 41 72 69 73 74 61 20 45 4f 53 00 41 | .to.the.executable..Arista.EOS.A |
| 36140 | 72 75 62 61 2f 48 50 00 41 73 20 49 6e 74 65 72 6e 65 74 20 77 69 64 65 20 50 4d 54 55 20 64 69 | ruba/HP.As.Internet.wide.PMTU.di |
| 36160 | 73 63 6f 76 65 72 79 20 72 61 72 65 6c 79 20 77 6f 72 6b 73 2c 20 77 65 20 73 6f 6d 65 74 69 6d | scovery.rarely.works,.we.sometim |
| 36180 | 65 73 20 6e 65 65 64 20 74 6f 20 63 6c 61 6d 70 20 6f 75 72 20 54 43 50 20 4d 53 53 20 76 61 6c | es.need.to.clamp.our.TCP.MSS.val |
| 361a0 | 75 65 20 74 6f 20 61 20 73 70 65 63 69 66 69 63 20 76 61 6c 75 65 2e 20 54 68 69 73 20 69 73 20 | ue.to.a.specific.value..This.is. |
| 361c0 | 61 20 66 69 65 6c 64 20 69 6e 20 74 68 65 20 54 43 50 20 6f 70 74 69 6f 6e 73 20 70 61 72 74 20 | a.field.in.the.TCP.options.part. |
| 361e0 | 6f 66 20 61 20 53 59 4e 20 70 61 63 6b 65 74 2e 20 42 79 20 73 65 74 74 69 6e 67 20 74 68 65 20 | of.a.SYN.packet..By.setting.the. |
| 36200 | 4d 53 53 20 76 61 6c 75 65 2c 20 79 6f 75 20 61 72 65 20 74 65 6c 6c 69 6e 67 20 74 68 65 20 72 | MSS.value,.you.are.telling.the.r |
| 36220 | 65 6d 6f 74 65 20 73 69 64 65 20 75 6e 65 71 75 69 76 6f 63 61 6c 6c 79 20 27 64 6f 20 6e 6f 74 | emote.side.unequivocally.'do.not |
| 36240 | 20 74 72 79 20 74 6f 20 73 65 6e 64 20 6d 65 20 70 61 63 6b 65 74 73 20 62 69 67 67 65 72 20 74 | .try.to.send.me.packets.bigger.t |
| 36260 | 68 61 6e 20 74 68 69 73 20 76 61 6c 75 65 27 2e 00 41 73 20 53 53 54 50 20 70 72 6f 76 69 64 65 | han.this.value'..As.SSTP.provide |
| 36280 | 73 20 50 50 50 20 76 69 61 20 61 20 53 53 4c 2f 54 4c 53 20 63 68 61 6e 6e 65 6c 20 74 68 65 20 | s.PPP.via.a.SSL/TLS.channel.the. |
| 362a0 | 75 73 65 20 6f 66 20 65 69 74 68 65 72 20 70 75 62 6c 69 63 61 6c 6c 79 20 73 69 67 6e 65 64 20 | use.of.either.publically.signed. |
| 362c0 | 63 65 72 74 69 66 69 63 61 74 65 73 20 61 73 20 77 65 6c 6c 20 61 73 20 61 20 70 72 69 76 61 74 | certificates.as.well.as.a.privat |
| 362e0 | 65 20 50 4b 49 20 69 73 20 72 65 71 75 69 72 65 64 2e 00 41 73 20 53 53 54 50 20 70 72 6f 76 69 | e.PKI.is.required..As.SSTP.provi |
| 36300 | 64 65 73 20 50 50 50 20 76 69 61 20 61 20 53 53 4c 2f 54 4c 53 20 63 68 61 6e 6e 65 6c 20 74 68 | des.PPP.via.a.SSL/TLS.channel.th |
| 36320 | 65 20 75 73 65 20 6f 66 20 65 69 74 68 65 72 20 70 75 62 6c 69 63 6c 79 20 73 69 67 6e 65 64 20 | e.use.of.either.publicly.signed. |
| 36340 | 63 65 72 74 69 66 69 63 61 74 65 73 20 6f 72 20 70 72 69 76 61 74 65 20 50 4b 49 20 69 73 20 72 | certificates.or.private.PKI.is.r |
| 36360 | 65 71 75 69 72 65 64 2e 00 41 73 20 56 79 4f 53 20 69 73 20 4c 69 6e 75 78 20 62 61 73 65 64 20 | equired..As.VyOS.is.Linux.based. |
| 36380 | 74 68 65 20 64 65 66 61 75 6c 74 20 70 6f 72 74 20 75 73 65 64 20 69 73 20 6e 6f 74 20 75 73 69 | the.default.port.used.is.not.usi |
| 363a0 | 6e 67 20 34 37 38 39 20 61 73 20 74 68 65 20 64 65 66 61 75 6c 74 20 49 41 4e 41 2d 61 73 73 69 | ng.4789.as.the.default.IANA-assi |
| 363c0 | 67 6e 65 64 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 55 44 50 20 70 6f 72 74 20 6e 75 6d 62 65 72 | gned.destination.UDP.port.number |
| 363e0 | 2e 20 49 6e 73 74 65 61 64 20 56 79 4f 53 20 75 73 65 73 20 74 68 65 20 4c 69 6e 75 78 20 64 65 | ..Instead.VyOS.uses.the.Linux.de |
| 36400 | 66 61 75 6c 74 20 70 6f 72 74 20 6f 66 20 38 34 37 32 2e 00 41 73 20 56 79 4f 53 20 69 73 20 62 | fault.port.of.8472..As.VyOS.is.b |
| 36420 | 61 73 65 64 20 6f 6e 20 4c 69 6e 75 78 20 61 6e 64 20 74 68 65 72 65 20 77 61 73 20 6e 6f 20 6f | ased.on.Linux.and.there.was.no.o |
| 36440 | 66 66 69 63 69 61 6c 20 49 41 4e 41 20 70 6f 72 74 20 61 73 73 69 67 6e 65 64 20 66 6f 72 20 56 | fficial.IANA.port.assigned.for.V |
| 36460 | 58 4c 41 4e 2c 20 56 79 4f 53 20 75 73 65 73 20 61 20 64 65 66 61 75 6c 74 20 70 6f 72 74 20 6f | XLAN,.VyOS.uses.a.default.port.o |
| 36480 | 66 20 38 34 37 32 2e 20 59 6f 75 20 63 61 6e 20 63 68 61 6e 67 65 20 74 68 65 20 70 6f 72 74 20 | f.8472..You.can.change.the.port. |
| 364a0 | 6f 6e 20 61 20 70 65 72 20 56 58 4c 41 4e 20 69 6e 74 65 72 66 61 63 65 20 62 61 73 69 73 20 74 | on.a.per.VXLAN.interface.basis.t |
| 364c0 | 6f 20 67 65 74 20 69 74 20 77 6f 72 6b 69 6e 67 20 61 63 72 6f 73 73 20 6d 75 6c 74 69 70 6c 65 | o.get.it.working.across.multiple |
| 364e0 | 20 76 65 6e 64 6f 72 73 2e 00 41 73 20 56 79 4f 53 20 69 73 20 62 61 73 65 64 20 6f 6e 20 4c 69 | .vendors..As.VyOS.is.based.on.Li |
| 36500 | 6e 75 78 20 69 74 20 6c 65 76 65 72 61 67 65 73 20 69 74 73 20 66 69 72 65 77 61 6c 6c 2e 20 54 | nux.it.leverages.its.firewall..T |
| 36520 | 68 65 20 4e 65 74 66 69 6c 74 65 72 20 70 72 6f 6a 65 63 74 20 63 72 65 61 74 65 64 20 69 70 74 | he.Netfilter.project.created.ipt |
| 36540 | 61 62 6c 65 73 20 61 6e 64 20 69 74 73 20 73 75 63 63 65 73 73 6f 72 20 6e 66 74 61 62 6c 65 73 | ables.and.its.successor.nftables |
| 36560 | 20 66 6f 72 20 74 68 65 20 4c 69 6e 75 78 20 6b 65 72 6e 65 6c 20 74 6f 20 77 6f 72 6b 20 64 69 | .for.the.Linux.kernel.to.work.di |
| 36580 | 72 65 63 74 6c 79 20 6f 6e 20 70 61 63 6b 65 74 20 64 61 74 61 20 66 6c 6f 77 73 2e 20 54 68 69 | rectly.on.packet.data.flows..Thi |
| 365a0 | 73 20 6e 6f 77 20 65 78 74 65 6e 64 73 20 74 68 65 20 63 6f 6e 63 65 70 74 20 6f 66 20 7a 6f 6e | s.now.extends.the.concept.of.zon |
| 365c0 | 65 2d 62 61 73 65 64 20 73 65 63 75 72 69 74 79 20 74 6f 20 61 6c 6c 6f 77 20 66 6f 72 20 6d 61 | e-based.security.to.allow.for.ma |
| 365e0 | 6e 69 70 75 6c 61 74 69 6e 67 20 74 68 65 20 64 61 74 61 20 61 74 20 6d 75 6c 74 69 70 6c 65 20 | nipulating.the.data.at.multiple. |
| 36600 | 73 74 61 67 65 73 20 6f 6e 63 65 20 61 63 63 65 70 74 65 64 20 62 79 20 74 68 65 20 6e 65 74 77 | stages.once.accepted.by.the.netw |
| 36620 | 6f 72 6b 20 69 6e 74 65 72 66 61 63 65 20 61 6e 64 20 74 68 65 20 64 72 69 76 65 72 20 62 65 66 | ork.interface.and.the.driver.bef |
| 36640 | 6f 72 65 20 62 65 69 6e 67 20 68 61 6e 64 65 64 20 6f 66 66 20 74 6f 20 74 68 65 20 64 65 73 74 | ore.being.handed.off.to.the.dest |
| 36660 | 69 6e 61 74 69 6f 6e 20 28 65 2e 67 2e 2c 20 61 20 77 65 62 20 73 65 72 76 65 72 20 4f 52 20 61 | ination.(e.g.,.a.web.server.OR.a |
| 36680 | 6e 6f 74 68 65 72 20 64 65 76 69 63 65 29 2e 00 41 73 20 56 79 4f 53 20 6d 61 6b 65 73 20 75 73 | nother.device)..As.VyOS.makes.us |
| 366a0 | 65 20 6f 66 20 74 68 65 20 51 4d 49 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 63 6f 6e 6e 65 63 | e.of.the.QMI.interface.to.connec |
| 366c0 | 74 20 74 6f 20 74 68 65 20 57 57 41 4e 20 6d 6f 64 65 6d 20 63 61 72 64 73 2c 20 61 6c 73 6f 20 | t.to.the.WWAN.modem.cards,.also. |
| 366e0 | 74 68 65 20 66 69 72 6d 77 61 72 65 20 63 61 6e 20 62 65 20 72 65 70 72 6f 67 72 61 6d 6d 65 64 | the.firmware.can.be.reprogrammed |
| 36700 | 2e 00 41 73 20 56 79 4f 53 20 6d 61 6b 65 73 20 75 73 65 20 6f 66 20 74 68 65 20 51 4d 49 20 69 | ..As.VyOS.makes.use.of.the.QMI.i |
| 36720 | 6e 74 65 72 66 61 63 65 20 74 6f 20 63 6f 6e 6e 65 63 74 20 74 6f 20 74 68 65 20 57 57 41 4e 20 | nterface.to.connect.to.the.WWAN. |
| 36740 | 6d 6f 64 65 6d 20 63 61 72 64 73 2c 20 74 68 65 20 66 69 72 6d 77 61 72 65 20 63 61 6e 20 62 65 | modem.cards,.the.firmware.can.be |
| 36760 | 20 72 65 70 72 6f 67 72 61 6d 6d 65 64 2e 00 41 73 20 61 20 72 65 66 65 72 65 6e 63 65 3a 20 66 | .reprogrammed..As.a.reference:.f |
| 36780 | 6f 72 20 31 30 6d 62 69 74 2f 73 20 6f 6e 20 49 6e 74 65 6c 2c 20 79 6f 75 20 6d 69 67 68 74 20 | or.10mbit/s.on.Intel,.you.might. |
| 367a0 | 6e 65 65 64 20 61 74 20 6c 65 61 73 74 20 31 30 6b 62 79 74 65 20 62 75 66 66 65 72 20 69 66 20 | need.at.least.10kbyte.buffer.if. |
| 367c0 | 79 6f 75 20 77 61 6e 74 20 74 6f 20 72 65 61 63 68 20 79 6f 75 72 20 63 6f 6e 66 69 67 75 72 65 | you.want.to.reach.your.configure |
| 367e0 | 64 20 72 61 74 65 2e 00 41 73 20 61 20 72 65 73 75 6c 74 2c 20 74 68 65 20 70 72 6f 63 65 73 73 | d.rate..As.a.result,.the.process |
| 36800 | 69 6e 67 20 6f 66 20 65 61 63 68 20 70 61 63 6b 65 74 20 62 65 63 6f 6d 65 73 20 6d 6f 72 65 20 | ing.of.each.packet.becomes.more. |
| 36820 | 65 66 66 69 63 69 65 6e 74 2c 20 70 6f 74 65 6e 74 69 61 6c 6c 79 20 6c 65 76 65 72 61 67 69 6e | efficient,.potentially.leveragin |
| 36840 | 67 20 68 61 72 64 77 61 72 65 20 65 6e 63 72 79 70 74 69 6f 6e 20 6f 66 66 6c 6f 61 64 69 6e 67 | g.hardware.encryption.offloading |
| 36860 | 20 73 75 70 70 6f 72 74 20 61 76 61 69 6c 61 62 6c 65 20 69 6e 20 74 68 65 20 6b 65 72 6e 65 6c | .support.available.in.the.kernel |
| 36880 | 2e 00 41 73 20 61 6e 20 61 6c 74 65 72 6e 61 74 69 76 65 20 74 6f 20 61 70 70 6c 79 69 6e 67 20 | ..As.an.alternative.to.applying. |
| 368a0 | 70 6f 6c 69 63 79 20 74 6f 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 64 69 72 65 63 74 6c 79 2c | policy.to.an.interface.directly, |
| 368c0 | 20 61 20 7a 6f 6e 65 2d 62 61 73 65 64 20 66 69 72 65 77 61 6c 6c 20 63 61 6e 20 62 65 20 63 72 | .a.zone-based.firewall.can.be.cr |
| 368e0 | 65 61 74 65 64 20 74 6f 20 73 69 6d 70 6c 69 66 79 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 | eated.to.simplify.configuration. |
| 36900 | 77 68 65 6e 20 6d 75 6c 74 69 70 6c 65 20 69 6e 74 65 72 66 61 63 65 73 20 62 65 6c 6f 6e 67 20 | when.multiple.interfaces.belong. |
| 36920 | 74 6f 20 74 68 65 20 73 61 6d 65 20 73 65 63 75 72 69 74 79 20 7a 6f 6e 65 2e 20 49 6e 73 74 65 | to.the.same.security.zone..Inste |
| 36940 | 61 64 20 6f 66 20 61 70 70 6c 79 69 6e 67 20 72 75 6c 65 2d 73 65 74 73 20 74 6f 20 69 6e 74 65 | ad.of.applying.rule-sets.to.inte |
| 36960 | 72 66 61 63 65 73 2c 20 74 68 65 79 20 61 72 65 20 61 70 70 6c 69 65 64 20 74 6f 20 73 6f 75 72 | rfaces,.they.are.applied.to.sour |
| 36980 | 63 65 20 7a 6f 6e 65 2d 64 65 73 74 69 6e 61 74 69 6f 6e 20 7a 6f 6e 65 20 70 61 69 72 73 2e 00 | ce.zone-destination.zone.pairs.. |
| 369a0 | 41 73 20 61 6e 79 20 6f 74 68 65 72 20 66 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 2c 20 64 79 6e | As.any.other.firewall.group,.dyn |
| 369c0 | 61 6d 69 63 20 66 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 73 20 63 61 6e 20 62 65 20 75 73 65 64 | amic.firewall.groups.can.be.used |
| 369e0 | 20 69 6e 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 20 61 73 20 6d 61 74 63 68 69 6e 67 20 6f | .in.firewall.rules.as.matching.o |
| 36a00 | 70 74 69 6f 6e 73 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 3a 00 41 73 20 62 6f 74 68 20 4d 69 63 | ptions..For.example:.As.both.Mic |
| 36a20 | 72 6f 73 6f 66 74 20 57 69 6e 64 6f 77 73 20 61 6e 64 20 41 70 70 6c 65 20 69 4f 53 2f 69 50 61 | rosoft.Windows.and.Apple.iOS/iPa |
| 36a40 | 64 4f 53 20 6f 6e 6c 79 20 73 75 70 70 6f 72 74 20 61 20 63 65 72 74 61 69 6e 20 73 65 74 20 6f | dOS.only.support.a.certain.set.o |
| 36a60 | 66 20 65 6e 63 72 79 70 74 69 6f 6e 20 63 69 70 68 65 72 73 20 61 6e 64 20 69 6e 74 65 67 72 69 | f.encryption.ciphers.and.integri |
| 36a80 | 74 79 20 61 6c 67 6f 72 69 74 68 6d 73 20 77 65 20 77 69 6c 6c 20 76 61 6c 69 64 61 74 65 20 74 | ty.algorithms.we.will.validate.t |
| 36aa0 | 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 49 4b 45 2f 45 53 50 20 70 72 6f 70 6f 73 61 6c 73 20 | he.configured.IKE/ESP.proposals. |
| 36ac0 | 61 6e 64 20 6f 6e 6c 79 20 6c 69 73 74 20 74 68 65 20 63 6f 6d 70 61 74 69 62 6c 65 20 6f 6e 65 | and.only.list.the.compatible.one |
| 36ae0 | 73 20 74 6f 20 74 68 65 20 75 73 65 72 20 e2 80 94 20 69 66 20 6d 75 6c 74 69 70 6c 65 20 61 72 | s.to.the.user.....if.multiple.ar |
| 36b00 | 65 20 64 65 66 69 6e 65 64 2e 20 49 66 20 74 68 65 72 65 20 61 72 65 20 6e 6f 20 6d 61 74 63 68 | e.defined..If.there.are.no.match |
| 36b20 | 69 6e 67 20 70 72 6f 70 6f 73 61 6c 73 20 66 6f 75 6e 64 20 e2 80 94 20 77 65 20 63 61 6e 20 6e | ing.proposals.found.....we.can.n |
| 36b40 | 6f 74 20 67 65 6e 65 72 61 74 65 20 61 20 70 72 6f 66 69 6c 65 20 66 6f 72 20 79 6f 75 2e 00 41 | ot.generate.a.profile.for.you..A |
| 36b60 | 73 20 64 65 73 63 72 69 62 65 64 2c 20 66 69 72 73 74 20 70 61 63 6b 65 74 20 77 69 6c 6c 20 62 | s.described,.first.packet.will.b |
| 36b80 | 65 20 65 76 61 6c 75 61 74 65 64 20 62 79 20 61 6c 6c 20 74 68 65 20 66 69 72 65 77 61 6c 6c 20 | e.evaluated.by.all.the.firewall. |
| 36ba0 | 70 61 74 68 2c 20 73 6f 20 64 65 73 69 72 65 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 73 68 6f 75 | path,.so.desired.connection.shou |
| 36bc0 | 6c 64 20 62 65 20 65 78 70 6c 69 63 69 74 65 6c 79 20 61 63 63 65 70 74 65 64 2e 20 53 61 6d 65 | ld.be.explicitely.accepted..Same |
| 36be0 | 20 74 68 69 6e 67 20 73 68 6f 75 6c 64 20 62 65 20 74 61 6b 65 6e 20 69 6e 74 6f 20 61 63 63 6f | .thing.should.be.taken.into.acco |
| 36c00 | 75 6e 74 20 66 6f 72 20 74 72 61 66 66 69 63 20 69 6e 20 72 65 76 65 72 73 65 20 6f 72 64 65 72 | unt.for.traffic.in.reverse.order |
| 36c20 | 2e 20 49 6e 20 6d 6f 73 74 20 63 61 73 65 73 20 73 74 61 74 65 20 70 6f 6c 69 63 69 65 73 20 61 | ..In.most.cases.state.policies.a |
| 36c40 | 72 65 20 75 73 65 64 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 61 63 63 65 70 74 20 63 6f 6e 6e 65 | re.used.in.order.to.accept.conne |
| 36c60 | 63 74 69 6f 6e 20 69 6e 20 72 65 76 65 72 73 65 20 70 61 74 63 68 2e 00 41 73 20 64 65 73 63 72 | ction.in.reverse.patch..As.descr |
| 36c80 | 69 62 65 64 2c 20 66 69 72 73 74 20 70 61 63 6b 65 74 20 77 69 6c 6c 20 62 65 20 65 76 61 6c 75 | ibed,.first.packet.will.be.evalu |
| 36ca0 | 61 74 65 64 20 62 79 20 61 6c 6c 20 74 68 65 20 66 69 72 65 77 61 6c 6c 20 70 61 74 68 2c 20 73 | ated.by.all.the.firewall.path,.s |
| 36cc0 | 6f 20 64 65 73 69 72 65 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 73 68 6f 75 6c 64 20 62 65 20 65 | o.desired.connection.should.be.e |
| 36ce0 | 78 70 6c 69 63 69 74 6c 79 20 61 63 63 65 70 74 65 64 2e 20 53 61 6d 65 20 74 68 69 6e 67 20 73 | xplicitly.accepted..Same.thing.s |
| 36d00 | 68 6f 75 6c 64 20 62 65 20 74 61 6b 65 6e 20 69 6e 74 6f 20 61 63 63 6f 75 6e 74 20 66 6f 72 20 | hould.be.taken.into.account.for. |
| 36d20 | 74 72 61 66 66 69 63 20 69 6e 20 72 65 76 65 72 73 65 20 6f 72 64 65 72 2e 20 49 6e 20 6d 6f 73 | traffic.in.reverse.order..In.mos |
| 36d40 | 74 20 63 61 73 65 73 20 73 74 61 74 65 20 70 6f 6c 69 63 69 65 73 20 61 72 65 20 75 73 65 64 20 | t.cases.state.policies.are.used. |
| 36d60 | 69 6e 20 6f 72 64 65 72 20 74 6f 20 61 63 63 65 70 74 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 69 6e | in.order.to.accept.connection.in |
| 36d80 | 20 72 65 76 65 72 73 65 20 70 61 74 63 68 2e 00 41 73 20 64 65 73 63 72 69 62 65 64 2c 20 74 68 | .reverse.patch..As.described,.th |
| 36da0 | 65 20 66 69 72 73 74 20 70 61 63 6b 65 74 20 77 69 6c 6c 20 62 65 20 65 76 61 6c 75 61 74 65 64 | e.first.packet.will.be.evaluated |
| 36dc0 | 20 62 79 20 74 68 65 20 66 69 72 65 77 61 6c 6c 20 70 61 74 68 2c 20 73 6f 20 61 20 64 65 73 69 | .by.the.firewall.path,.so.a.desi |
| 36de0 | 72 65 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 73 68 6f 75 6c 64 20 62 65 20 65 78 70 6c 69 63 69 | red.connection.should.be.explici |
| 36e00 | 74 6c 79 20 61 63 63 65 70 74 65 64 2e 20 53 61 6d 65 20 74 68 69 6e 67 20 73 68 6f 75 6c 64 20 | tly.accepted..Same.thing.should. |
| 36e20 | 62 65 20 74 61 6b 65 6e 20 69 6e 74 6f 20 61 63 63 6f 75 6e 74 20 66 6f 72 20 74 72 61 66 66 69 | be.taken.into.account.for.traffi |
| 36e40 | 63 20 69 6e 20 72 65 76 65 72 73 65 20 6f 72 64 65 72 2e 20 49 6e 20 6d 6f 73 74 20 63 61 73 65 | c.in.reverse.order..In.most.case |
| 36e60 | 73 20 73 74 61 74 65 20 70 6f 6c 69 63 69 65 73 20 61 72 65 20 75 73 65 64 20 69 6e 20 6f 72 64 | s.state.policies.are.used.in.ord |
| 36e80 | 65 72 20 74 6f 20 61 63 63 65 70 74 20 61 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 69 6e 20 74 68 65 | er.to.accept.a.connection.in.the |
| 36ea0 | 20 72 65 76 65 72 73 65 20 70 61 74 68 2e 00 41 73 20 6d 6f 72 65 20 61 6e 64 20 6d 6f 72 65 20 | .reverse.path..As.more.and.more. |
| 36ec0 | 72 6f 75 74 65 72 73 20 72 75 6e 20 6f 6e 20 48 79 70 65 72 76 69 73 6f 72 73 2c 20 65 78 70 65 | routers.run.on.Hypervisors,.expe |
| 36ee0 | 63 69 61 6c 6c 79 20 77 69 74 68 20 61 20 3a 61 62 62 72 3a 60 4e 4f 53 20 28 4e 65 74 77 6f 72 | cially.with.a.:abbr:`NOS.(Networ |
| 36f00 | 6b 20 4f 70 65 72 61 74 69 6e 67 20 53 79 73 74 65 6d 29 60 20 61 73 20 56 79 4f 53 2c 20 69 74 | k.Operating.System)`.as.VyOS,.it |
| 36f20 | 20 6d 61 6b 65 73 20 66 65 77 65 72 20 61 6e 64 20 66 65 77 65 72 20 73 65 6e 73 65 20 74 6f 20 | .makes.fewer.and.fewer.sense.to. |
| 36f40 | 75 73 65 20 73 74 61 74 69 63 20 72 65 73 6f 75 72 63 65 20 62 69 6e 64 69 6e 67 73 20 6c 69 6b | use.static.resource.bindings.lik |
| 36f60 | 65 20 60 60 73 6d 70 2d 61 66 66 69 6e 69 74 79 60 60 20 61 73 20 70 72 65 73 65 6e 74 20 69 6e | e.``smp-affinity``.as.present.in |
| 36f80 | 20 56 79 4f 53 20 31 2e 32 20 61 6e 64 20 65 61 72 6c 69 65 72 20 74 6f 20 70 69 6e 20 63 65 72 | .VyOS.1.2.and.earlier.to.pin.cer |
| 36fa0 | 74 61 69 6e 20 69 6e 74 65 72 72 75 70 74 20 68 61 6e 64 6c 65 72 73 20 74 6f 20 73 70 65 63 69 | tain.interrupt.handlers.to.speci |
| 36fc0 | 66 69 63 20 43 50 55 73 2e 00 41 73 20 6e 65 74 77 6f 72 6b 20 61 64 64 72 65 73 73 20 74 72 61 | fic.CPUs..As.network.address.tra |
| 36fe0 | 6e 73 6c 61 74 69 6f 6e 20 6d 6f 64 69 66 69 65 73 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 | nslation.modifies.the.IP.address |
| 37000 | 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 69 6e 20 70 61 63 6b 65 74 73 2c 20 4e 41 54 20 69 6d 70 | .information.in.packets,.NAT.imp |
| 37020 | 6c 65 6d 65 6e 74 61 74 69 6f 6e 73 20 6d 61 79 20 76 61 72 79 20 69 6e 20 74 68 65 69 72 20 73 | lementations.may.vary.in.their.s |
| 37040 | 70 65 63 69 66 69 63 20 62 65 68 61 76 69 6f 72 20 69 6e 20 76 61 72 69 6f 75 73 20 61 64 64 72 | pecific.behavior.in.various.addr |
| 37060 | 65 73 73 69 6e 67 20 63 61 73 65 73 20 61 6e 64 20 74 68 65 69 72 20 65 66 66 65 63 74 20 6f 6e | essing.cases.and.their.effect.on |
| 37080 | 20 6e 65 74 77 6f 72 6b 20 74 72 61 66 66 69 63 2e 20 54 68 65 20 73 70 65 63 69 66 69 63 73 20 | .network.traffic..The.specifics. |
| 370a0 | 6f 66 20 4e 41 54 20 62 65 68 61 76 69 6f 72 20 61 72 65 20 6e 6f 74 20 63 6f 6d 6d 6f 6e 6c 79 | of.NAT.behavior.are.not.commonly |
| 370c0 | 20 64 6f 63 75 6d 65 6e 74 65 64 20 62 79 20 76 65 6e 64 6f 72 73 20 6f 66 20 65 71 75 69 70 6d | .documented.by.vendors.of.equipm |
| 370e0 | 65 6e 74 20 63 6f 6e 74 61 69 6e 69 6e 67 20 4e 41 54 20 69 6d 70 6c 65 6d 65 6e 74 61 74 69 6f | ent.containing.NAT.implementatio |
| 37100 | 6e 73 2e 00 41 73 20 6f 66 20 56 79 4f 53 20 31 2e 34 2c 20 4f 70 65 6e 56 50 4e 20 73 69 74 65 | ns..As.of.VyOS.1.4,.OpenVPN.site |
| 37120 | 2d 74 6f 2d 73 69 74 65 20 6d 6f 64 65 20 63 61 6e 20 75 73 65 20 65 69 74 68 65 72 20 70 72 65 | -to-site.mode.can.use.either.pre |
| 37140 | 2d 73 68 61 72 65 64 20 6b 65 79 73 20 6f 72 20 78 2e 35 30 39 20 63 65 72 74 69 66 69 63 61 74 | -shared.keys.or.x.509.certificat |
| 37160 | 65 73 2e 00 41 73 20 70 65 72 20 64 65 66 61 75 6c 74 20 61 6e 64 20 69 66 20 6e 6f 74 20 6f 74 | es..As.per.default.and.if.not.ot |
| 37180 | 68 65 72 77 69 73 65 20 64 65 66 69 6e 65 64 2c 20 6d 73 63 68 61 70 2d 76 32 20 69 73 20 62 65 | herwise.defined,.mschap-v2.is.be |
| 371a0 | 69 6e 67 20 75 73 65 64 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 61 6e 64 20 | ing.used.for.authentication.and. |
| 371c0 | 6d 70 70 65 20 31 32 38 2d 62 69 74 20 28 73 74 61 74 65 6c 65 73 73 29 20 66 6f 72 20 65 6e 63 | mppe.128-bit.(stateless).for.enc |
| 371e0 | 72 79 70 74 69 6f 6e 2e 20 49 66 20 6e 6f 20 67 61 74 65 77 61 79 2d 61 64 64 72 65 73 73 20 69 | ryption..If.no.gateway-address.i |
| 37200 | 73 20 73 65 74 20 77 69 74 68 69 6e 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2c 20 | s.set.within.the.configuration,. |
| 37220 | 74 68 65 20 6c 6f 77 65 73 74 20 49 50 20 6f 75 74 20 6f 66 20 74 68 65 20 2f 32 34 20 63 6c 69 | the.lowest.IP.out.of.the./24.cli |
| 37240 | 65 6e 74 2d 69 70 2d 70 6f 6f 6c 20 69 73 20 62 65 69 6e 67 20 75 73 65 64 2e 20 46 6f 72 20 69 | ent-ip-pool.is.being.used..For.i |
| 37260 | 6e 73 74 61 6e 63 65 2c 20 69 6e 20 74 68 65 20 65 78 61 6d 70 6c 65 20 62 65 6c 6f 77 20 69 74 | nstance,.in.the.example.below.it |
| 37280 | 20 77 6f 75 6c 64 20 62 65 20 31 39 32 2e 31 36 38 2e 30 2e 31 2e 00 41 73 20 73 61 69 64 20 62 | .would.be.192.168.0.1..As.said.b |
| 372a0 | 65 66 6f 72 65 2c 20 6f 6e 63 65 20 66 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 73 20 61 72 65 20 | efore,.once.firewall.groups.are. |
| 372c0 | 63 72 65 61 74 65 64 2c 20 74 68 65 79 20 63 61 6e 20 62 65 20 72 65 66 65 72 65 6e 63 65 64 20 | created,.they.can.be.referenced. |
| 372e0 | 65 69 74 68 65 72 20 69 6e 20 66 69 72 65 77 61 6c 6c 2c 20 6e 61 74 2c 20 6e 61 74 36 36 20 61 | either.in.firewall,.nat,.nat66.a |
| 37300 | 6e 64 2f 6f 72 20 70 6f 6c 69 63 79 2d 72 6f 75 74 65 20 72 75 6c 65 73 2e 00 41 73 20 73 68 6f | nd/or.policy-route.rules..As.sho |
| 37320 | 77 6e 20 69 6e 20 74 68 65 20 65 78 61 6d 70 6c 65 20 61 62 6f 76 65 2c 20 6f 6e 65 20 6f 66 20 | wn.in.the.example.above,.one.of. |
| 37340 | 74 68 65 20 70 6f 73 73 69 62 69 6c 69 74 69 65 73 20 74 6f 20 6d 61 74 63 68 20 70 61 63 6b 65 | the.possibilities.to.match.packe |
| 37360 | 74 73 20 69 73 20 62 61 73 65 64 20 6f 6e 20 6d 61 72 6b 73 20 64 6f 6e 65 20 62 79 20 74 68 65 | ts.is.based.on.marks.done.by.the |
| 37380 | 20 66 69 72 65 77 61 6c 6c 2c 20 60 74 68 61 74 20 63 61 6e 20 67 69 76 65 20 79 6f 75 20 61 20 | .firewall,.`that.can.give.you.a. |
| 373a0 | 67 72 65 61 74 20 64 65 61 6c 20 6f 66 20 66 6c 65 78 69 62 69 6c 69 74 79 60 5f 2e 00 41 73 20 | great.deal.of.flexibility`_..As. |
| 373c0 | 73 68 6f 77 6e 20 69 6e 20 74 68 65 20 6c 61 73 74 20 63 6f 6d 6d 61 6e 64 20 6f 66 20 74 68 65 | shown.in.the.last.command.of.the |
| 373e0 | 20 65 78 61 6d 70 6c 65 20 61 62 6f 76 65 2c 20 74 68 65 20 60 71 75 65 75 65 2d 74 79 70 65 60 | .example.above,.the.`queue-type` |
| 37400 | 20 73 65 74 74 69 6e 67 20 61 6c 6c 6f 77 73 20 74 68 65 73 65 20 63 6f 6d 62 69 6e 61 74 69 6f | .setting.allows.these.combinatio |
| 37420 | 6e 73 2e 20 59 6f 75 20 77 69 6c 6c 20 62 65 20 61 62 6c 65 20 74 6f 20 75 73 65 20 69 74 20 69 | ns..You.will.be.able.to.use.it.i |
| 37440 | 6e 20 6d 61 6e 79 20 70 6f 6c 69 63 69 65 73 2e 00 41 73 20 74 68 65 20 65 78 61 6d 70 6c 65 20 | n.many.policies..As.the.example. |
| 37460 | 69 6d 61 67 65 20 62 65 6c 6f 77 20 73 68 6f 77 73 2c 20 74 68 65 20 64 65 76 69 63 65 20 6e 6f | image.below.shows,.the.device.no |
| 37480 | 77 20 6e 65 65 64 73 20 72 75 6c 65 73 20 74 6f 20 61 6c 6c 6f 77 2f 62 6c 6f 63 6b 20 74 72 61 | w.needs.rules.to.allow/block.tra |
| 374a0 | 66 66 69 63 20 74 6f 20 6f 72 20 66 72 6f 6d 20 74 68 65 20 73 65 72 76 69 63 65 73 20 72 75 6e | ffic.to.or.from.the.services.run |
| 374c0 | 6e 69 6e 67 20 6f 6e 20 74 68 65 20 64 65 76 69 63 65 20 74 68 61 74 20 68 61 76 65 20 6f 70 65 | ning.on.the.device.that.have.ope |
| 374e0 | 6e 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 6f 6e 20 74 68 61 74 20 69 6e 74 65 72 66 61 63 65 2e | n.connections.on.that.interface. |
| 37500 | 00 41 73 20 74 68 65 20 65 78 61 6d 70 6c 65 20 69 6d 61 67 65 20 62 65 6c 6f 77 20 73 68 6f 77 | .As.the.example.image.below.show |
| 37520 | 73 2c 20 74 68 65 20 64 65 76 69 63 65 20 77 61 73 20 63 6f 6e 66 69 67 75 72 65 64 20 77 69 74 | s,.the.device.was.configured.wit |
| 37540 | 68 20 72 75 6c 65 73 20 62 6c 6f 63 6b 69 6e 67 20 69 6e 62 6f 75 6e 64 20 6f 72 20 6f 75 74 62 | h.rules.blocking.inbound.or.outb |
| 37560 | 6f 75 6e 64 20 74 72 61 66 66 69 63 20 6f 6e 20 65 61 63 68 20 69 6e 74 65 72 66 61 63 65 2e 00 | ound.traffic.on.each.interface.. |
| 37580 | 41 73 20 74 68 65 20 6e 61 6d 65 20 69 6d 70 6c 69 65 73 2c 20 69 74 27 73 20 49 50 76 34 20 65 | As.the.name.implies,.it's.IPv4.e |
| 375a0 | 6e 63 61 70 73 75 6c 61 74 65 64 20 69 6e 20 49 50 76 36 2c 20 61 73 20 73 69 6d 70 6c 65 20 61 | ncapsulated.in.IPv6,.as.simple.a |
| 375c0 | 73 20 74 68 61 74 2e 00 41 73 20 77 65 6c 6c 20 61 73 20 74 68 65 20 62 65 6c 6f 77 20 74 6f 20 | s.that..As.well.as.the.below.to. |
| 375e0 | 61 6c 6c 6f 77 20 4e 41 54 2d 74 72 61 76 65 72 73 61 6c 20 28 77 68 65 6e 20 4e 41 54 20 69 73 | allow.NAT-traversal.(when.NAT.is |
| 37600 | 20 64 65 74 65 63 74 65 64 20 62 79 20 74 68 65 20 56 50 4e 20 63 6c 69 65 6e 74 2c 20 45 53 50 | .detected.by.the.VPN.client,.ESP |
| 37620 | 20 69 73 20 65 6e 63 61 70 73 75 6c 61 74 65 64 20 69 6e 20 55 44 50 20 66 6f 72 20 4e 41 54 2d | .is.encapsulated.in.UDP.for.NAT- |
| 37640 | 74 72 61 76 65 72 73 61 6c 29 3a 00 41 73 20 77 69 74 68 20 6f 74 68 65 72 20 70 6f 6c 69 63 69 | traversal):.As.with.other.polici |
| 37660 | 65 73 2c 20 52 6f 75 6e 64 2d 52 6f 62 69 6e 20 63 61 6e 20 65 6d 62 65 64 5f 20 61 6e 6f 74 68 | es,.Round-Robin.can.embed_.anoth |
| 37680 | 65 72 20 70 6f 6c 69 63 79 20 69 6e 74 6f 20 61 20 63 6c 61 73 73 20 74 68 72 6f 75 67 68 20 74 | er.policy.into.a.class.through.t |
| 376a0 | 68 65 20 60 60 71 75 65 75 65 2d 74 79 70 65 60 60 20 73 65 74 74 69 6e 67 2e 00 41 73 20 77 69 | he.``queue-type``.setting..As.wi |
| 376c0 | 74 68 20 6f 74 68 65 72 20 70 6f 6c 69 63 69 65 73 2c 20 53 68 61 70 65 72 20 63 61 6e 20 65 6d | th.other.policies,.Shaper.can.em |
| 376e0 | 62 65 64 5f 20 6f 74 68 65 72 20 70 6f 6c 69 63 69 65 73 20 69 6e 74 6f 20 69 74 73 20 63 6c 61 | bed_.other.policies.into.its.cla |
| 37700 | 73 73 65 73 20 74 68 72 6f 75 67 68 20 74 68 65 20 60 60 71 75 65 75 65 2d 74 79 70 65 60 60 20 | sses.through.the.``queue-type``. |
| 37720 | 73 65 74 74 69 6e 67 20 61 6e 64 20 74 68 65 6e 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 69 72 | setting.and.then.configure.their |
| 37740 | 20 70 61 72 61 6d 65 74 65 72 73 2e 00 41 73 20 77 69 74 68 20 6f 74 68 65 72 20 70 6f 6c 69 63 | .parameters..As.with.other.polic |
| 37760 | 69 65 73 2c 20 79 6f 75 20 63 61 6e 20 64 65 66 69 6e 65 20 64 69 66 66 65 72 65 6e 74 20 74 79 | ies,.you.can.define.different.ty |
| 37780 | 70 65 20 6f 66 20 6d 61 74 63 68 69 6e 67 20 72 75 6c 65 73 20 66 6f 72 20 79 6f 75 72 20 63 6c | pe.of.matching.rules.for.your.cl |
| 377a0 | 61 73 73 65 73 3a 00 41 73 20 77 69 74 68 20 6f 74 68 65 72 20 70 6f 6c 69 63 69 65 73 2c 20 79 | asses:.As.with.other.policies,.y |
| 377c0 | 6f 75 20 63 61 6e 20 65 6d 62 65 64 5f 20 6f 74 68 65 72 20 70 6f 6c 69 63 69 65 73 20 69 6e 74 | ou.can.embed_.other.policies.int |
| 377e0 | 6f 20 74 68 65 20 63 6c 61 73 73 65 73 20 28 61 6e 64 20 64 65 66 61 75 6c 74 29 20 6f 66 20 79 | o.the.classes.(and.default).of.y |
| 37800 | 6f 75 72 20 50 72 69 6f 72 69 74 79 20 51 75 65 75 65 20 70 6f 6c 69 63 79 20 74 68 72 6f 75 67 | our.Priority.Queue.policy.throug |
| 37820 | 68 20 74 68 65 20 60 60 71 75 65 75 65 2d 74 79 70 65 60 60 20 73 65 74 74 69 6e 67 3a 00 41 73 | h.the.``queue-type``.setting:.As |
| 37840 | 20 79 6f 75 20 63 61 6e 20 73 65 65 20 69 6e 20 74 68 65 20 65 78 61 6d 70 6c 65 20 68 65 72 65 | .you.can.see.in.the.example.here |
| 37860 | 2c 20 79 6f 75 20 63 61 6e 20 61 73 73 69 67 6e 20 74 68 65 20 73 61 6d 65 20 72 75 6c 65 2d 73 | ,.you.can.assign.the.same.rule-s |
| 37880 | 65 74 20 74 6f 20 73 65 76 65 72 61 6c 20 69 6e 74 65 72 66 61 63 65 73 2e 20 41 6e 20 69 6e 74 | et.to.several.interfaces..An.int |
| 378a0 | 65 72 66 61 63 65 20 63 61 6e 20 6f 6e 6c 79 20 68 61 76 65 20 6f 6e 65 20 72 75 6c 65 2d 73 65 | erface.can.only.have.one.rule-se |
| 378c0 | 74 20 70 65 72 20 63 68 61 69 6e 2e 00 41 73 20 79 6f 75 20 63 61 6e 20 73 65 65 2c 20 4c 65 61 | t.per.chain..As.you.can.see,.Lea |
| 378e0 | 66 32 20 61 6e 64 20 4c 65 61 66 33 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 73 20 61 6c | f2.and.Leaf3.configuration.is.al |
| 37900 | 6d 6f 73 74 20 69 64 65 6e 74 69 63 61 6c 2e 20 54 68 65 72 65 20 61 72 65 20 6c 6f 74 73 20 6f | most.identical..There.are.lots.o |
| 37920 | 66 20 63 6f 6d 6d 61 6e 64 73 20 61 62 6f 76 65 2c 20 49 27 6c 6c 20 74 72 79 20 74 6f 20 69 6e | f.commands.above,.I'll.try.to.in |
| 37940 | 74 6f 20 6d 6f 72 65 20 64 65 74 61 69 6c 20 62 65 6c 6f 77 2c 20 63 6f 6d 6d 61 6e 64 20 64 65 | to.more.detail.below,.command.de |
| 37960 | 73 63 72 69 70 74 69 6f 6e 73 20 61 72 65 20 70 6c 61 63 65 64 20 75 6e 64 65 72 20 74 68 65 20 | scriptions.are.placed.under.the. |
| 37980 | 63 6f 6d 6d 61 6e 64 20 62 6f 78 65 73 3a 00 41 73 20 79 6f 75 20 63 61 6e 20 73 65 65 2c 20 74 | command.boxes:.As.you.can.see,.t |
| 379a0 | 68 65 20 4c 65 61 66 32 20 61 6e 64 20 4c 65 61 66 33 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e | he.Leaf2.and.Leaf3.configuration |
| 379c0 | 73 20 61 72 65 20 61 6c 6d 6f 73 74 20 69 64 65 6e 74 69 63 61 6c 2e 20 54 68 65 72 65 20 61 72 | s.are.almost.identical..There.ar |
| 379e0 | 65 20 6c 6f 74 73 20 6f 66 20 63 6f 6d 6d 61 6e 64 73 20 61 62 6f 76 65 2c 20 49 27 6c 6c 20 74 | e.lots.of.commands.above,.I'll.t |
| 37a00 | 72 79 20 74 6f 20 67 6f 20 69 6e 74 6f 20 6d 6f 72 65 20 64 65 74 61 69 6c 20 62 65 6c 6f 77 2e | ry.to.go.into.more.detail.below. |
| 37a20 | 20 43 6f 6d 6d 61 6e 64 20 64 65 73 63 72 69 70 74 69 6f 6e 73 20 61 72 65 20 70 6c 61 63 65 64 | .Command.descriptions.are.placed |
| 37a40 | 20 75 6e 64 65 72 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 62 6f 78 65 73 3a 00 41 73 73 69 67 6e | .under.the.command.boxes:.Assign |
| 37a60 | 20 60 3c 6d 65 6d 62 65 72 3e 60 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 62 72 69 64 67 65 20 | .`<member>`.interface.to.bridge. |
| 37a80 | 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 2e 20 41 20 63 6f 6d 70 6c 65 74 69 6f 6e 20 68 65 6c 70 | `<interface>`..A.completion.help |
| 37aa0 | 65 72 20 77 69 6c 6c 20 68 65 6c 70 20 79 6f 75 20 77 69 74 68 20 61 6c 6c 20 61 6c 6c 6f 77 65 | er.will.help.you.with.all.allowe |
| 37ac0 | 64 20 69 6e 74 65 72 66 61 63 65 73 20 77 68 69 63 68 20 63 61 6e 20 62 65 20 62 72 69 64 67 65 | d.interfaces.which.can.be.bridge |
| 37ae0 | 64 2e 20 54 68 69 73 20 69 6e 63 6c 75 64 65 73 20 3a 72 65 66 3a 60 65 74 68 65 72 6e 65 74 2d | d..This.includes.:ref:`ethernet- |
| 37b00 | 69 6e 74 65 72 66 61 63 65 60 2c 20 3a 72 65 66 3a 60 62 6f 6e 64 2d 69 6e 74 65 72 66 61 63 65 | interface`,.:ref:`bond-interface |
| 37b20 | 60 2c 20 3a 72 65 66 3a 60 6c 32 74 70 76 33 2d 69 6e 74 65 72 66 61 63 65 60 2c 20 3a 72 65 66 | `,.:ref:`l2tpv3-interface`,.:ref |
| 37b40 | 3a 60 6f 70 65 6e 76 70 6e 60 2c 20 3a 72 65 66 3a 60 76 78 6c 61 6e 2d 69 6e 74 65 72 66 61 63 | :`openvpn`,.:ref:`vxlan-interfac |
| 37b60 | 65 60 2c 20 3a 72 65 66 3a 60 77 69 72 65 6c 65 73 73 2d 69 6e 74 65 72 66 61 63 65 60 2c 20 3a | e`,.:ref:`wireless-interface`,.: |
| 37b80 | 72 65 66 3a 60 74 75 6e 6e 65 6c 2d 69 6e 74 65 72 66 61 63 65 60 20 61 6e 64 20 3a 72 65 66 3a | ref:`tunnel-interface`.and.:ref: |
| 37ba0 | 60 67 65 6e 65 76 65 2d 69 6e 74 65 72 66 61 63 65 60 2e 00 41 73 73 69 67 6e 20 61 20 73 70 65 | `geneve-interface`..Assign.a.spe |
| 37bc0 | 63 69 66 69 63 20 62 61 63 6b 65 6e 64 20 74 6f 20 61 20 72 75 6c 65 00 41 73 73 69 67 6e 20 61 | cific.backend.to.a.rule.Assign.a |
| 37be0 | 20 73 74 61 74 69 63 20 49 50 20 61 64 64 72 65 73 73 20 74 6f 20 60 3c 75 73 65 72 3e 60 20 61 | .static.IP.address.to.`<user>`.a |
| 37c00 | 63 63 6f 75 6e 74 2e 00 41 73 73 69 67 6e 20 69 6e 74 65 72 66 61 63 65 20 69 64 65 6e 74 69 66 | ccount..Assign.interface.identif |
| 37c20 | 69 65 64 20 62 79 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 20 74 6f 20 56 52 46 20 6e 61 6d 65 | ied.by.`<interface>`.to.VRF.name |
| 37c40 | 64 20 60 3c 6e 61 6d 65 3e 60 2e 00 41 73 73 69 67 6e 20 6d 65 6d 62 65 72 20 69 6e 74 65 72 66 | d.`<name>`..Assign.member.interf |
| 37c60 | 61 63 65 73 20 74 6f 20 50 6f 72 74 43 68 61 6e 6e 65 6c 00 41 73 73 69 67 6e 20 73 74 61 74 69 | aces.to.PortChannel.Assign.stati |
| 37c80 | 63 20 49 50 20 61 64 64 72 65 73 73 20 74 6f 20 60 3c 75 73 65 72 3e 60 20 61 63 63 6f 75 6e 74 | c.IP.address.to.`<user>`.account |
| 37ca0 | 2e 00 41 73 73 69 67 6e 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 74 6f 20 74 68 69 73 20 | ..Assign.the.IP.address.to.this. |
| 37cc0 | 6d 61 63 68 69 6e 65 20 66 6f 72 20 60 3c 74 69 6d 65 3e 60 20 73 65 63 6f 6e 64 73 2e 00 41 73 | machine.for.`<time>`.seconds..As |
| 37ce0 | 73 69 67 6e 20 74 68 65 20 53 53 48 20 70 75 62 6c 69 63 20 6b 65 79 20 70 6f 72 74 69 6f 6e 20 | sign.the.SSH.public.key.portion. |
| 37d00 | 60 3c 6b 65 79 3e 60 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 70 65 72 2d 6b 65 79 20 60 3c | `<key>`.identified.by.per-key.`< |
| 37d20 | 69 64 65 6e 74 69 66 69 65 72 3e 60 20 74 6f 20 74 68 65 20 6c 6f 63 61 6c 20 75 73 65 72 20 60 | identifier>`.to.the.local.user.` |
| 37d40 | 3c 75 73 65 72 6e 61 6d 65 3e 60 2e 00 41 73 73 6f 63 69 61 74 65 73 20 74 68 65 20 70 72 65 76 | <username>`..Associates.the.prev |
| 37d60 | 69 6f 75 73 6c 79 20 67 65 6e 65 72 61 74 65 64 20 70 72 69 76 61 74 65 20 6b 65 79 20 74 6f 20 | iously.generated.private.key.to. |
| 37d80 | 61 20 73 70 65 63 69 66 69 63 20 57 69 72 65 47 75 61 72 64 20 69 6e 74 65 72 66 61 63 65 2e 20 | a.specific.WireGuard.interface.. |
| 37da0 | 54 68 65 20 70 72 69 76 61 74 65 20 6b 65 79 20 63 61 6e 20 62 65 20 67 65 6e 65 72 61 74 65 20 | The.private.key.can.be.generate. |
| 37dc0 | 76 69 61 20 74 68 65 20 63 6f 6d 6d 61 6e 64 00 41 73 73 75 72 65 20 74 68 61 74 20 79 6f 75 72 | via.the.command.Assure.that.your |
| 37de0 | 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 20 61 6c 6c 6f 77 20 74 68 65 20 74 72 61 66 66 69 | .firewall.rules.allow.the.traffi |
| 37e00 | 63 2c 20 69 6e 20 77 68 69 63 68 20 63 61 73 65 20 79 6f 75 20 68 61 76 65 20 61 20 77 6f 72 6b | c,.in.which.case.you.have.a.work |
| 37e20 | 69 6e 67 20 56 50 4e 20 75 73 69 6e 67 20 57 69 72 65 47 75 61 72 64 2e 00 41 73 73 75 72 65 64 | ing.VPN.using.WireGuard..Assured |
| 37e40 | 20 46 6f 72 77 61 72 64 69 6e 67 28 41 46 29 20 31 31 00 41 73 73 75 72 65 64 20 46 6f 72 77 61 | .Forwarding(AF).11.Assured.Forwa |
| 37e60 | 72 64 69 6e 67 28 41 46 29 20 31 32 00 41 73 73 75 72 65 64 20 46 6f 72 77 61 72 64 69 6e 67 28 | rding(AF).12.Assured.Forwarding( |
| 37e80 | 41 46 29 20 31 33 00 41 73 73 75 72 65 64 20 46 6f 72 77 61 72 64 69 6e 67 28 41 46 29 20 32 31 | AF).13.Assured.Forwarding(AF).21 |
| 37ea0 | 00 41 73 73 75 72 65 64 20 46 6f 72 77 61 72 64 69 6e 67 28 41 46 29 20 32 32 00 41 73 73 75 72 | .Assured.Forwarding(AF).22.Assur |
| 37ec0 | 65 64 20 46 6f 72 77 61 72 64 69 6e 67 28 41 46 29 20 32 33 00 41 73 73 75 72 65 64 20 46 6f 72 | ed.Forwarding(AF).23.Assured.For |
| 37ee0 | 77 61 72 64 69 6e 67 28 41 46 29 20 33 31 00 41 73 73 75 72 65 64 20 46 6f 72 77 61 72 64 69 6e | warding(AF).31.Assured.Forwardin |
| 37f00 | 67 28 41 46 29 20 33 32 00 41 73 73 75 72 65 64 20 46 6f 72 77 61 72 64 69 6e 67 28 41 46 29 20 | g(AF).32.Assured.Forwarding(AF). |
| 37f20 | 33 33 00 41 73 73 75 72 65 64 20 46 6f 72 77 61 72 64 69 6e 67 28 41 46 29 20 34 31 00 41 73 73 | 33.Assured.Forwarding(AF).41.Ass |
| 37f40 | 75 72 65 64 20 46 6f 72 77 61 72 64 69 6e 67 28 41 46 29 20 34 32 00 41 73 73 75 72 65 64 20 46 | ured.Forwarding(AF).42.Assured.F |
| 37f60 | 6f 72 77 61 72 64 69 6e 67 28 41 46 29 20 34 33 00 41 74 20 65 76 65 72 79 20 72 6f 75 6e 64 2c | orwarding(AF).43.At.every.round, |
| 37f80 | 20 74 68 65 20 64 65 66 69 63 69 74 20 63 6f 75 6e 74 65 72 20 61 64 64 73 20 74 68 65 20 71 75 | .the.deficit.counter.adds.the.qu |
| 37fa0 | 61 6e 74 75 6d 20 73 6f 20 74 68 61 74 20 65 76 65 6e 20 6c 61 72 67 65 20 70 61 63 6b 65 74 73 | antum.so.that.even.large.packets |
| 37fc0 | 20 77 69 6c 6c 20 68 61 76 65 20 74 68 65 69 72 20 6f 70 70 6f 72 74 75 6e 69 74 79 20 74 6f 20 | .will.have.their.opportunity.to. |
| 37fe0 | 62 65 20 64 65 71 75 65 75 65 64 2e 00 41 74 20 74 68 65 20 6d 6f 6d 65 6e 74 20 69 74 20 6e 6f | be.dequeued..At.the.moment.it.no |
| 38000 | 74 20 70 6f 73 73 69 62 6c 65 20 74 6f 20 6c 6f 6f 6b 20 61 74 20 74 68 65 20 77 68 6f 6c 65 20 | t.possible.to.look.at.the.whole. |
| 38020 | 66 69 72 65 77 61 6c 6c 20 6c 6f 67 20 77 69 74 68 20 56 79 4f 53 20 6f 70 65 72 61 74 69 6f 6e | firewall.log.with.VyOS.operation |
| 38040 | 61 6c 20 63 6f 6d 6d 61 6e 64 73 2e 20 41 6c 6c 20 6c 6f 67 73 20 77 69 6c 6c 20 73 61 76 65 20 | al.commands..All.logs.will.save. |
| 38060 | 74 6f 20 60 60 2f 76 61 72 2f 6c 6f 67 73 2f 6d 65 73 73 61 67 65 73 60 60 2e 20 46 6f 72 20 65 | to.``/var/logs/messages``..For.e |
| 38080 | 78 61 6d 70 6c 65 3a 20 60 60 67 72 65 70 20 27 31 30 2e 31 30 2e 30 2e 31 30 27 20 2f 76 61 72 | xample:.``grep.'10.10.0.10'./var |
| 380a0 | 2f 6c 6f 67 2f 6d 65 73 73 61 67 65 73 60 60 00 41 74 20 74 68 65 20 74 69 6d 65 20 6f 66 20 74 | /log/messages``.At.the.time.of.t |
| 380c0 | 68 69 73 20 77 72 69 74 69 6e 67 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 64 69 73 70 6c 61 | his.writing.the.following.displa |
| 380e0 | 79 73 20 61 72 65 20 73 75 70 70 6f 72 74 65 64 3a 00 41 74 20 76 65 72 79 20 6c 6f 77 20 72 61 | ys.are.supported:.At.very.low.ra |
| 38100 | 74 65 73 20 28 62 65 6c 6f 77 20 33 4d 62 69 74 29 2c 20 62 65 73 69 64 65 73 20 74 75 6e 69 6e | tes.(below.3Mbit),.besides.tunin |
| 38120 | 67 20 60 71 75 61 6e 74 75 6d 60 20 28 33 30 30 20 6b 65 65 70 73 20 62 65 69 6e 67 20 6f 6b 29 | g.`quantum`.(300.keeps.being.ok) |
| 38140 | 20 79 6f 75 20 6d 61 79 20 61 6c 73 6f 20 77 61 6e 74 20 74 6f 20 69 6e 63 72 65 61 73 65 20 60 | .you.may.also.want.to.increase.` |
| 38160 | 74 61 72 67 65 74 60 20 74 6f 20 73 6f 6d 65 74 68 69 6e 67 20 6c 69 6b 65 20 31 35 6d 73 20 61 | target`.to.something.like.15ms.a |
| 38180 | 6e 64 20 69 6e 63 72 65 61 73 65 20 60 69 6e 74 65 72 76 61 6c 60 20 74 6f 20 73 6f 6d 65 74 68 | nd.increase.`interval`.to.someth |
| 381a0 | 69 6e 67 20 61 72 6f 75 6e 64 20 31 35 30 20 6d 73 2e 00 41 74 74 61 63 68 65 73 20 75 73 65 72 | ing.around.150.ms..Attaches.user |
| 381c0 | 2d 64 65 66 69 6e 65 64 20 6e 65 74 77 6f 72 6b 20 74 6f 20 61 20 63 6f 6e 74 61 69 6e 65 72 2e | -defined.network.to.a.container. |
| 381e0 | 20 4f 6e 6c 79 20 6f 6e 65 20 6e 65 74 77 6f 72 6b 20 6d 75 73 74 20 62 65 20 73 70 65 63 69 66 | .Only.one.network.must.be.specif |
| 38200 | 69 65 64 20 61 6e 64 20 6d 75 73 74 20 61 6c 72 65 61 64 79 20 65 78 69 73 74 2e 00 41 75 74 68 | ied.and.must.already.exist..Auth |
| 38220 | 65 6e 74 69 63 61 74 69 6f 6e 00 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 28 45 41 50 6f 4c | entication.Authentication.(EAPoL |
| 38240 | 29 00 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 41 64 76 61 6e 63 65 64 20 4f 70 74 69 6f 6e | ).Authentication.Advanced.Option |
| 38260 | 73 00 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 61 70 70 6c 69 63 61 74 69 6f 6e 20 63 6c 69 | s.Authentication.application.cli |
| 38280 | 65 6e 74 2d 69 64 2e 00 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 61 70 70 6c 69 63 61 74 69 | ent-id..Authentication.applicati |
| 382a0 | 6f 6e 20 63 6c 69 65 6e 74 2d 73 65 63 72 65 74 2e 00 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e | on.client-secret..Authentication |
| 382c0 | 20 61 70 70 6c 69 63 61 74 69 6f 6e 20 74 65 6e 61 6e 74 2d 69 64 00 41 75 74 68 65 6e 74 69 63 | .application.tenant-id.Authentic |
| 382e0 | 61 74 69 6f 6e 20 69 73 20 64 6f 6e 65 20 62 79 20 75 73 69 6e 67 20 74 68 65 20 60 60 6f 70 65 | ation.is.done.by.using.the.``ope |
| 38300 | 6e 76 70 6e 2d 61 75 74 68 2d 6c 64 61 70 2e 73 6f 60 60 20 70 6c 75 67 69 6e 20 77 68 69 63 68 | nvpn-auth-ldap.so``.plugin.which |
| 38320 | 20 69 73 20 73 68 69 70 70 65 64 20 77 69 74 68 20 65 76 65 72 79 20 56 79 4f 53 20 69 6e 73 74 | .is.shipped.with.every.VyOS.inst |
| 38340 | 61 6c 6c 61 74 69 6f 6e 2e 20 41 20 64 65 64 69 63 61 74 65 64 20 63 6f 6e 66 69 67 75 72 61 74 | allation..A.dedicated.configurat |
| 38360 | 69 6f 6e 20 66 69 6c 65 20 69 73 20 72 65 71 75 69 72 65 64 2e 20 49 74 20 69 73 20 62 65 73 74 | ion.file.is.required..It.is.best |
| 38380 | 20 70 72 61 63 74 69 73 65 20 74 6f 20 73 74 6f 72 65 20 69 74 20 69 6e 20 60 60 2f 63 6f 6e 66 | .practise.to.store.it.in.``/conf |
| 383a0 | 69 67 60 60 20 74 6f 20 73 75 72 76 69 76 65 20 69 6d 61 67 65 20 75 70 64 61 74 65 73 00 41 75 | ig``.to.survive.image.updates.Au |
| 383c0 | 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6f 72 67 61 6e 69 7a 61 74 69 6f 6e 20 6e 61 6d 65 00 41 | thentication.organization.name.A |
| 383e0 | 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 74 6f 6b 65 6e 00 41 75 74 68 65 6e 74 69 63 61 74 69 | uthentication.token.Authenticati |
| 38400 | 6f 6e 20 e2 80 93 20 74 6f 20 76 65 72 69 66 79 20 74 68 61 74 20 74 68 65 20 6d 65 73 73 61 67 | on.....to.verify.that.the.messag |
| 38420 | 65 20 69 73 20 66 72 6f 6d 20 61 20 76 61 6c 69 64 20 73 6f 75 72 63 65 2e 00 41 75 74 68 6f 72 | e.is.from.a.valid.source..Author |
| 38440 | 69 74 61 74 69 76 65 20 7a 6f 6e 65 73 00 41 75 74 68 6f 72 69 7a 61 74 69 6f 6e 20 74 6f 6b 65 | itative.zones.Authorization.toke |
| 38460 | 6e 00 41 75 74 6f 6d 61 74 69 63 20 56 4c 41 4e 20 43 72 65 61 74 69 6f 6e 00 41 75 74 6f 6d 61 | n.Automatic.VLAN.Creation.Automa |
| 38480 | 74 69 63 20 56 4c 41 4e 20 63 72 65 61 74 69 6f 6e 00 41 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 | tic.VLAN.creation.Automatically. |
| 384a0 | 63 72 65 61 74 65 20 42 46 44 20 73 65 73 73 69 6f 6e 20 66 6f 72 20 65 61 63 68 20 52 49 50 20 | create.BFD.session.for.each.RIP. |
| 384c0 | 70 65 65 72 20 64 69 73 63 6f 76 65 72 65 64 20 69 6e 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 | peer.discovered.in.this.interfac |
| 384e0 | 65 2e 20 57 68 65 6e 20 74 68 65 20 42 46 44 20 73 65 73 73 69 6f 6e 20 6d 6f 6e 69 74 6f 72 20 | e..When.the.BFD.session.monitor. |
| 38500 | 73 69 67 6e 61 6c 69 7a 65 20 74 68 61 74 20 74 68 65 20 6c 69 6e 6b 20 69 73 20 64 6f 77 6e 20 | signalize.that.the.link.is.down. |
| 38520 | 74 68 65 20 52 49 50 20 70 65 65 72 20 69 73 20 72 65 6d 6f 76 65 64 20 61 6e 64 20 61 6c 6c 20 | the.RIP.peer.is.removed.and.all. |
| 38540 | 74 68 65 20 6c 65 61 72 6e 65 64 20 72 6f 75 74 65 73 20 61 73 73 6f 63 69 61 74 65 64 20 77 69 | the.learned.routes.associated.wi |
| 38560 | 74 68 20 74 68 61 74 20 70 65 65 72 20 61 72 65 20 72 65 6d 6f 76 65 64 2e 00 41 75 74 6f 6d 61 | th.that.peer.are.removed..Automa |
| 38580 | 74 69 63 61 6c 6c 79 20 72 65 62 6f 6f 74 20 73 79 73 74 65 6d 20 6f 6e 20 6b 65 72 6e 65 6c 20 | tically.reboot.system.on.kernel. |
| 385a0 | 70 61 6e 69 63 20 61 66 74 65 72 20 36 30 20 73 65 63 6f 6e 64 73 2e 00 41 75 74 6f 6e 6f 6d 6f | panic.after.60.seconds..Autonomo |
| 385c0 | 75 73 20 53 79 73 74 65 6d 73 00 41 76 61 69 6c 61 62 6c 65 20 68 65 61 6c 74 68 20 63 68 65 63 | us.Systems.Available.health.chec |
| 385e0 | 6b 20 70 72 6f 74 6f 63 6f 6c 73 3a 00 41 76 6f 69 64 69 6e 67 20 22 6c 65 61 6b 79 22 20 4e 41 | k.protocols:.Avoiding."leaky".NA |
| 38600 | 54 00 41 7a 75 72 65 2d 64 61 74 61 2d 65 78 70 6c 6f 72 65 72 00 42 46 44 00 42 46 44 20 53 74 | T.Azure-data-explorer.BFD.BFD.St |
| 38620 | 61 74 69 63 20 52 6f 75 74 65 20 4d 6f 6e 69 74 6f 72 69 6e 67 00 42 46 44 20 73 65 6e 64 73 20 | atic.Route.Monitoring.BFD.sends. |
| 38640 | 6c 6f 74 73 20 6f 66 20 73 6d 61 6c 6c 20 55 44 50 20 70 61 63 6b 65 74 73 20 76 65 72 79 20 71 | lots.of.small.UDP.packets.very.q |
| 38660 | 75 69 63 6b 6c 79 20 74 6f 20 65 6e 73 75 72 65 73 20 74 68 61 74 20 74 68 65 20 70 65 65 72 20 | uickly.to.ensures.that.the.peer. |
| 38680 | 69 73 20 73 74 69 6c 6c 20 61 6c 69 76 65 2e 00 42 47 50 00 42 47 50 20 2d 20 41 53 20 50 61 74 | is.still.alive..BGP.BGP.-.AS.Pat |
| 386a0 | 68 20 50 6f 6c 69 63 79 00 42 47 50 20 2d 20 43 6f 6d 6d 75 6e 69 74 79 20 4c 69 73 74 00 42 47 | h.Policy.BGP.-.Community.List.BG |
| 386c0 | 50 20 2d 20 45 78 74 65 6e 64 65 64 20 43 6f 6d 6d 75 6e 69 74 79 20 4c 69 73 74 00 42 47 50 20 | P.-.Extended.Community.List.BGP. |
| 386e0 | 2d 20 4c 61 72 67 65 20 43 6f 6d 6d 75 6e 69 74 79 20 4c 69 73 74 00 42 47 50 20 45 78 61 6d 70 | -.Large.Community.List.BGP.Examp |
| 38700 | 6c 65 00 42 47 50 20 52 6f 75 74 65 72 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 42 47 50 20 | le.BGP.Router.Configuration.BGP. |
| 38720 | 53 63 61 6c 69 6e 67 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 42 47 50 20 61 67 67 72 65 67 | Scaling.Configuration.BGP.aggreg |
| 38740 | 61 74 6f 72 20 61 74 74 72 69 62 75 74 65 3a 20 41 53 20 6e 75 6d 62 65 72 20 6f 72 20 49 50 20 | ator.attribute:.AS.number.or.IP. |
| 38760 | 61 64 64 72 65 73 73 20 6f 66 20 61 6e 20 61 67 67 72 65 67 61 74 69 6f 6e 2e 00 42 47 50 20 61 | address.of.an.aggregation..BGP.a |
| 38780 | 73 2d 70 61 74 68 20 6c 69 73 74 20 74 6f 20 6d 61 74 63 68 2e 00 42 47 50 20 61 74 6f 6d 69 63 | s-path.list.to.match..BGP.atomic |
| 387a0 | 20 61 67 67 72 65 67 61 74 65 20 61 74 74 72 69 62 75 74 65 2e 00 42 47 50 20 63 6f 6d 6d 75 6e | .aggregate.attribute..BGP.commun |
| 387c0 | 69 74 79 2d 6c 69 73 74 20 74 6f 20 6d 61 74 63 68 2e 00 42 47 50 20 65 78 74 65 6e 64 65 64 20 | ity-list.to.match..BGP.extended. |
| 387e0 | 63 6f 6d 6d 75 6e 69 74 79 20 74 6f 20 6d 61 74 63 68 2e 00 42 47 50 20 72 6f 6c 65 73 20 61 72 | community.to.match..BGP.roles.ar |
| 38800 | 65 20 64 65 66 69 6e 65 64 20 69 6e 20 52 46 43 20 3a 72 66 63 3a 60 39 32 33 34 60 20 61 6e 64 | e.defined.in.RFC.:rfc:`9234`.and |
| 38820 | 20 70 72 6f 76 69 64 65 20 61 6e 20 65 61 73 79 20 77 61 79 20 74 6f 20 61 64 64 20 72 6f 75 74 | .provide.an.easy.way.to.add.rout |
| 38840 | 65 20 6c 65 61 6b 20 70 72 65 76 65 6e 74 69 6f 6e 2c 20 64 65 74 65 63 74 69 6f 6e 20 61 6e 64 | e.leak.prevention,.detection.and |
| 38860 | 20 6d 69 74 69 67 61 74 69 6f 6e 2e 20 54 68 65 20 6c 6f 63 61 6c 20 52 6f 6c 65 20 76 61 6c 75 | .mitigation..The.local.Role.valu |
| 38880 | 65 20 69 73 20 6e 65 67 6f 74 69 61 74 65 64 20 77 69 74 68 20 74 68 65 20 6e 65 77 20 42 47 50 | e.is.negotiated.with.the.new.BGP |
| 388a0 | 20 52 6f 6c 65 20 63 61 70 61 62 69 6c 69 74 79 20 77 68 69 63 68 20 68 61 73 20 61 20 62 75 69 | .Role.capability.which.has.a.bui |
| 388c0 | 6c 74 2d 69 6e 20 63 68 65 63 6b 20 6f 66 20 74 68 65 20 63 6f 72 72 65 73 70 6f 6e 64 69 6e 67 | lt-in.check.of.the.corresponding |
| 388e0 | 20 76 61 6c 75 65 2e 20 49 6e 20 63 61 73 65 20 6f 66 20 61 20 6d 69 73 6d 61 74 63 68 20 74 68 | .value..In.case.of.a.mismatch.th |
| 38900 | 65 20 6e 65 77 20 4f 50 45 4e 20 52 6f 6c 65 73 20 4d 69 73 6d 61 74 63 68 20 4e 6f 74 69 66 69 | e.new.OPEN.Roles.Mismatch.Notifi |
| 38920 | 63 61 74 69 6f 6e 20 3c 32 2c 20 31 31 3e 20 77 6f 75 6c 64 20 62 65 20 73 65 6e 74 2e 20 54 68 | cation.<2,.11>.would.be.sent..Th |
| 38940 | 65 20 63 6f 72 72 65 63 74 20 52 6f 6c 65 20 70 61 69 72 73 20 61 72 65 3a 00 42 47 50 20 72 6f | e.correct.Role.pairs.are:.BGP.ro |
| 38960 | 75 74 65 72 73 20 63 6f 6e 6e 65 63 74 65 64 20 69 6e 73 69 64 65 20 74 68 65 20 73 61 6d 65 20 | uters.connected.inside.the.same. |
| 38980 | 41 53 20 74 68 72 6f 75 67 68 20 42 47 50 20 62 65 6c 6f 6e 67 20 74 6f 20 61 6e 20 69 6e 74 65 | AS.through.BGP.belong.to.an.inte |
| 389a0 | 72 6e 61 6c 20 42 47 50 20 73 65 73 73 69 6f 6e 2c 20 6f 72 20 49 42 47 50 2e 20 49 6e 20 6f 72 | rnal.BGP.session,.or.IBGP..In.or |
| 389c0 | 64 65 72 20 74 6f 20 70 72 65 76 65 6e 74 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 6c 6f 6f | der.to.prevent.routing.table.loo |
| 389e0 | 70 73 2c 20 49 42 47 50 20 73 70 65 61 6b 65 72 20 64 6f 65 73 20 6e 6f 74 20 61 64 76 65 72 74 | ps,.IBGP.speaker.does.not.advert |
| 38a00 | 69 73 65 20 49 42 47 50 2d 6c 65 61 72 6e 65 64 20 72 6f 75 74 65 73 20 74 6f 20 6f 74 68 65 72 | ise.IBGP-learned.routes.to.other |
| 38a20 | 20 49 42 47 50 20 73 70 65 61 6b 65 72 20 28 53 70 6c 69 74 20 48 6f 72 69 7a 6f 6e 20 6d 65 63 | .IBGP.speaker.(Split.Horizon.mec |
| 38a40 | 68 61 6e 69 73 6d 29 2e 20 41 73 20 73 75 63 68 2c 20 49 42 47 50 20 72 65 71 75 69 72 65 73 20 | hanism)..As.such,.IBGP.requires. |
| 38a60 | 61 20 66 75 6c 6c 20 6d 65 73 68 20 6f 66 20 61 6c 6c 20 70 65 65 72 73 2e 20 46 6f 72 20 6c 61 | a.full.mesh.of.all.peers..For.la |
| 38a80 | 72 67 65 20 6e 65 74 77 6f 72 6b 73 2c 20 74 68 69 73 20 71 75 69 63 6b 6c 79 20 62 65 63 6f 6d | rge.networks,.this.quickly.becom |
| 38aa0 | 65 73 20 75 6e 73 63 61 6c 61 62 6c 65 2e 00 42 47 50 20 72 6f 75 74 65 73 20 6d 61 79 20 62 65 | es.unscalable..BGP.routes.may.be |
| 38ac0 | 20 6c 65 61 6b 65 64 20 28 69 2e 65 2e 20 63 6f 70 69 65 64 29 20 62 65 74 77 65 65 6e 20 61 20 | .leaked.(i.e..copied).between.a. |
| 38ae0 | 75 6e 69 63 61 73 74 20 56 52 46 20 52 49 42 20 61 6e 64 20 74 68 65 20 56 50 4e 20 53 41 46 49 | unicast.VRF.RIB.and.the.VPN.SAFI |
| 38b00 | 20 52 49 42 20 6f 66 20 74 68 65 20 64 65 66 61 75 6c 74 20 56 52 46 20 66 6f 72 20 75 73 65 20 | .RIB.of.the.default.VRF.for.use. |
| 38b20 | 69 6e 20 4d 50 4c 53 2d 62 61 73 65 64 20 4c 33 56 50 4e 73 2e 20 55 6e 69 63 61 73 74 20 72 6f | in.MPLS-based.L3VPNs..Unicast.ro |
| 38b40 | 75 74 65 73 20 6d 61 79 20 61 6c 73 6f 20 62 65 20 6c 65 61 6b 65 64 20 62 65 74 77 65 65 6e 20 | utes.may.also.be.leaked.between. |
| 38b60 | 61 6e 79 20 56 52 46 73 20 28 69 6e 63 6c 75 64 69 6e 67 20 74 68 65 20 75 6e 69 63 61 73 74 20 | any.VRFs.(including.the.unicast. |
| 38b80 | 52 49 42 20 6f 66 20 74 68 65 20 64 65 66 61 75 6c 74 20 42 47 50 20 69 6e 73 74 61 6e 63 65 29 | RIB.of.the.default.BGP.instance) |
| 38ba0 | 2e 20 41 20 73 68 6f 72 74 63 75 74 20 73 79 6e 74 61 78 20 69 73 20 61 6c 73 6f 20 61 76 61 69 | ..A.shortcut.syntax.is.also.avai |
| 38bc0 | 6c 61 62 6c 65 20 66 6f 72 20 73 70 65 63 69 66 79 69 6e 67 20 6c 65 61 6b 69 6e 67 20 66 72 6f | lable.for.specifying.leaking.fro |
| 38be0 | 6d 20 6f 6e 65 20 56 52 46 20 74 6f 20 61 6e 6f 74 68 65 72 20 56 52 46 20 75 73 69 6e 67 20 74 | m.one.VRF.to.another.VRF.using.t |
| 38c00 | 68 65 20 64 65 66 61 75 6c 74 20 69 6e 73 74 61 6e 63 65 e2 80 99 73 20 56 50 4e 20 52 49 42 20 | he.default.instance...s.VPN.RIB. |
| 38c20 | 61 73 20 74 68 65 20 69 6e 74 65 6d 65 64 69 61 72 79 20 2e 20 41 20 63 6f 6d 6d 6f 6e 20 61 70 | as.the.intemediary...A.common.ap |
| 38c40 | 70 6c 69 63 61 74 69 6f 6e 20 6f 66 20 74 68 65 20 56 52 46 2d 56 52 46 20 66 65 61 74 75 72 65 | plication.of.the.VRF-VRF.feature |
| 38c60 | 20 69 73 20 74 6f 20 63 6f 6e 6e 65 63 74 20 61 20 63 75 73 74 6f 6d 65 72 e2 80 99 73 20 70 72 | .is.to.connect.a.customer...s.pr |
| 38c80 | 69 76 61 74 65 20 72 6f 75 74 69 6e 67 20 64 6f 6d 61 69 6e 20 74 6f 20 61 20 70 72 6f 76 69 64 | ivate.routing.domain.to.a.provid |
| 38ca0 | 65 72 e2 80 99 73 20 56 50 4e 20 73 65 72 76 69 63 65 2e 20 4c 65 61 6b 69 6e 67 20 69 73 20 63 | er...s.VPN.service..Leaking.is.c |
| 38cc0 | 6f 6e 66 69 67 75 72 65 64 20 66 72 6f 6d 20 74 68 65 20 70 6f 69 6e 74 20 6f 66 20 76 69 65 77 | onfigured.from.the.point.of.view |
| 38ce0 | 20 6f 66 20 61 6e 20 69 6e 64 69 76 69 64 75 61 6c 20 56 52 46 3a 20 69 6d 70 6f 72 74 20 72 65 | .of.an.individual.VRF:.import.re |
| 38d00 | 66 65 72 73 20 74 6f 20 72 6f 75 74 65 73 20 6c 65 61 6b 65 64 20 66 72 6f 6d 20 56 50 4e 20 74 | fers.to.routes.leaked.from.VPN.t |
| 38d20 | 6f 20 61 20 75 6e 69 63 61 73 74 20 56 52 46 2c 20 77 68 65 72 65 61 73 20 65 78 70 6f 72 74 20 | o.a.unicast.VRF,.whereas.export. |
| 38d40 | 72 65 66 65 72 73 20 74 6f 20 72 6f 75 74 65 73 20 6c 65 61 6b 65 64 20 66 72 6f 6d 20 61 20 75 | refers.to.routes.leaked.from.a.u |
| 38d60 | 6e 69 63 61 73 74 20 56 52 46 20 74 6f 20 56 50 4e 2e 00 42 53 53 20 63 6f 6c 6f 72 69 6e 67 20 | nicast.VRF.to.VPN..BSS.coloring. |
| 38d80 | 68 65 6c 70 73 20 74 6f 20 70 72 65 76 65 6e 74 20 63 68 61 6e 6e 65 6c 20 6a 61 6d 6d 69 6e 67 | helps.to.prevent.channel.jamming |
| 38da0 | 20 77 68 65 6e 20 6d 75 6c 74 69 70 6c 65 20 41 50 73 20 75 73 65 20 74 68 65 20 73 61 6d 65 20 | .when.multiple.APs.use.the.same. |
| 38dc0 | 63 68 61 6e 6e 65 6c 73 2e 00 42 55 4d 20 74 72 61 66 66 69 63 20 69 73 20 72 78 65 64 20 76 69 | channels..BUM.traffic.is.rxed.vi |
| 38de0 | 61 20 74 68 65 20 6f 76 65 72 6c 61 79 20 62 79 20 61 6c 6c 20 50 45 73 20 61 74 74 61 63 68 65 | a.the.overlay.by.all.PEs.attache |
| 38e00 | 64 20 74 6f 20 61 20 73 65 72 76 65 72 20 62 75 74 20 6f 6e 6c 79 20 74 68 65 20 44 46 20 63 61 | d.to.a.server.but.only.the.DF.ca |
| 38e20 | 6e 20 66 6f 72 77 61 72 64 20 74 68 65 20 64 65 2d 63 61 70 73 75 6c 61 74 65 64 20 74 72 61 66 | n.forward.the.de-capsulated.traf |
| 38e40 | 66 69 63 20 74 6f 20 74 68 65 20 61 63 63 65 73 73 20 70 6f 72 74 2e 20 54 6f 20 61 63 63 6f 6d | fic.to.the.access.port..To.accom |
| 38e60 | 6d 6f 64 61 74 65 20 74 68 61 74 20 6e 6f 6e 2d 44 46 20 66 69 6c 74 65 72 73 20 61 72 65 20 69 | modate.that.non-DF.filters.are.i |
| 38e80 | 6e 73 74 61 6c 6c 65 64 20 69 6e 20 74 68 65 20 64 61 74 61 70 6c 61 6e 65 20 74 6f 20 64 72 6f | nstalled.in.the.dataplane.to.dro |
| 38ea0 | 70 20 74 68 65 20 74 72 61 66 66 69 63 2e 00 42 61 62 65 6c 00 42 61 62 65 6c 20 61 20 64 75 61 | p.the.traffic..Babel.Babel.a.dua |
| 38ec0 | 6c 20 73 74 61 63 6b 20 70 72 6f 74 6f 63 6f 6c 2e 20 41 20 73 69 6e 67 6c 65 20 42 61 62 65 6c | l.stack.protocol..A.single.Babel |
| 38ee0 | 20 69 6e 73 74 61 6e 63 65 20 69 73 20 61 62 6c 65 20 74 6f 20 70 65 72 66 6f 72 6d 20 72 6f 75 | .instance.is.able.to.perform.rou |
| 38f00 | 74 69 6e 67 20 66 6f 72 20 62 6f 74 68 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 2e 00 42 61 62 | ting.for.both.IPv4.and.IPv6..Bab |
| 38f20 | 65 6c 20 69 73 20 61 20 6d 6f 64 65 72 6e 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 20 | el.is.a.modern.routing.protocol. |
| 38f40 | 64 65 73 69 67 6e 65 64 20 74 6f 20 62 65 20 72 6f 62 75 73 74 20 61 6e 64 20 65 66 66 69 63 69 | designed.to.be.robust.and.effici |
| 38f60 | 65 6e 74 20 62 6f 74 68 20 69 6e 20 6f 72 64 69 6e 61 72 79 20 77 69 72 65 64 20 6e 65 74 77 6f | ent.both.in.ordinary.wired.netwo |
| 38f80 | 72 6b 73 20 61 6e 64 20 69 6e 20 77 69 72 65 6c 65 73 73 20 6d 65 73 68 20 6e 65 74 77 6f 72 6b | rks.and.in.wireless.mesh.network |
| 38fa0 | 73 2e 20 42 79 20 64 65 66 61 75 6c 74 2c 20 69 74 20 75 73 65 73 20 68 6f 70 2d 63 6f 75 6e 74 | s..By.default,.it.uses.hop-count |
| 38fc0 | 20 6f 6e 20 77 69 72 65 64 20 6e 65 74 77 6f 72 6b 73 20 61 6e 64 20 61 20 76 61 72 69 61 6e 74 | .on.wired.networks.and.a.variant |
| 38fe0 | 20 6f 66 20 45 54 58 20 6f 6e 20 77 69 72 65 6c 65 73 73 20 6c 69 6e 6b 73 2c 20 49 74 20 63 61 | .of.ETX.on.wireless.links,.It.ca |
| 39000 | 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 74 6f 20 74 61 6b 65 20 72 61 64 69 6f 20 64 69 | n.be.configured.to.take.radio.di |
| 39020 | 76 65 72 73 69 74 79 20 69 6e 74 6f 20 61 63 63 6f 75 6e 74 20 61 6e 64 20 74 6f 20 61 75 74 6f | versity.into.account.and.to.auto |
| 39040 | 6d 61 74 69 63 61 6c 6c 79 20 63 6f 6d 70 75 74 65 20 61 20 6c 69 6e 6b 27 73 20 6c 61 74 65 6e | matically.compute.a.link's.laten |
| 39060 | 63 79 20 61 6e 64 20 69 6e 63 6c 75 64 65 20 69 74 20 69 6e 20 74 68 65 20 6d 65 74 72 69 63 2e | cy.and.include.it.in.the.metric. |
| 39080 | 20 49 74 20 69 73 20 64 65 66 69 6e 65 64 20 69 6e 20 3a 72 66 63 3a 60 38 39 36 36 60 2e 00 42 | .It.is.defined.in.:rfc:`8966`..B |
| 390a0 | 61 63 6b 65 6e 64 00 42 61 63 6b 65 6e 64 20 73 65 72 76 69 63 65 20 63 65 72 74 69 66 69 63 61 | ackend.Backend.service.certifica |
| 390c0 | 74 65 73 20 61 72 65 20 63 68 65 63 6b 65 64 20 61 67 61 69 6e 73 74 20 74 68 65 20 63 65 72 74 | tes.are.checked.against.the.cert |
| 390e0 | 69 66 69 63 61 74 65 20 61 75 74 68 6f 72 69 74 79 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 74 | ificate.authority.specified.in.t |
| 39100 | 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2c 20 77 68 69 63 68 20 63 6f 75 6c 64 20 62 65 | he.configuration,.which.could.be |
| 39120 | 20 61 6e 20 69 6e 74 65 72 6e 61 6c 20 43 41 2e 00 42 61 6c 61 6e 63 65 20 61 6c 67 6f 72 69 74 | .an.internal.CA..Balance.algorit |
| 39140 | 68 6d 73 3a 00 42 61 6c 61 6e 63 69 6e 67 20 52 75 6c 65 73 00 42 61 6c 61 6e 63 69 6e 67 20 62 | hms:.Balancing.Rules.Balancing.b |
| 39160 | 61 73 65 64 20 6f 6e 20 64 6f 6d 61 69 6e 20 6e 61 6d 65 00 42 61 6c 61 6e 63 69 6e 67 20 77 69 | ased.on.domain.name.Balancing.wi |
| 39180 | 74 68 20 48 54 54 50 20 68 65 61 6c 74 68 20 63 68 65 63 6b 73 00 42 61 6e 64 77 69 64 74 68 20 | th.HTTP.health.checks.Bandwidth. |
| 391a0 | 53 68 61 70 69 6e 67 00 42 61 6e 64 77 69 64 74 68 20 53 68 61 70 69 6e 67 20 66 6f 72 20 6c 6f | Shaping.Bandwidth.Shaping.for.lo |
| 391c0 | 63 61 6c 20 75 73 65 72 73 00 42 61 6e 64 77 69 64 74 68 20 72 61 74 65 20 6c 69 6d 69 74 73 20 | cal.users.Bandwidth.rate.limits. |
| 391e0 | 63 61 6e 20 62 65 20 73 65 74 20 66 6f 72 20 6c 6f 63 61 6c 20 75 73 65 72 73 20 6f 72 20 52 41 | can.be.set.for.local.users.or.RA |
| 39200 | 44 49 55 53 20 62 61 73 65 64 20 61 74 74 72 69 62 75 74 65 73 2e 00 42 61 6e 64 77 69 64 74 68 | DIUS.based.attributes..Bandwidth |
| 39220 | 20 72 61 74 65 20 6c 69 6d 69 74 73 20 63 61 6e 20 62 65 20 73 65 74 20 66 6f 72 20 6c 6f 63 61 | .rate.limits.can.be.set.for.loca |
| 39240 | 6c 20 75 73 65 72 73 20 6f 72 20 76 69 61 20 52 41 44 49 55 53 20 62 61 73 65 64 20 61 74 74 72 | l.users.or.via.RADIUS.based.attr |
| 39260 | 69 62 75 74 65 73 2e 00 42 61 6e 64 77 69 64 74 68 20 72 61 74 65 20 6c 69 6d 69 74 73 20 63 61 | ibutes..Bandwidth.rate.limits.ca |
| 39280 | 6e 20 62 65 20 73 65 74 20 66 6f 72 20 6c 6f 63 61 6c 20 75 73 65 72 73 20 77 69 74 68 69 6e 20 | n.be.set.for.local.users.within. |
| 392a0 | 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 72 20 76 69 61 20 52 41 44 49 55 53 20 | the.configuration.or.via.RADIUS. |
| 392c0 | 62 61 73 65 64 20 61 74 74 72 69 62 75 74 65 73 2e 00 42 61 73 65 20 63 68 61 69 6e 20 66 6f 72 | based.attributes..Base.chain.for |
| 392e0 | 20 74 72 61 66 66 69 63 20 74 6f 77 61 72 64 73 20 74 68 65 20 72 6f 75 74 65 72 20 69 73 20 60 | .traffic.towards.the.router.is.` |
| 39300 | 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 69 6e 70 75 74 20 66 69 6c 74 65 72 20 | `set.firewall.ipv4.input.filter. |
| 39320 | 2e 2e 2e 60 60 00 42 61 73 65 20 63 68 61 69 6e 20 66 6f 72 20 74 72 61 66 66 69 63 20 74 6f 77 | ...``.Base.chain.for.traffic.tow |
| 39340 | 61 72 64 73 20 74 68 65 20 72 6f 75 74 65 72 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c | ards.the.router.is.``set.firewal |
| 39360 | 6c 20 69 70 76 36 20 69 6e 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 00 42 61 73 65 20 63 | l.ipv6.input.filter....``.Base.c |
| 39380 | 68 61 69 6e 20 69 73 20 66 6f 72 20 74 72 61 66 66 69 63 20 74 6f 77 61 72 64 20 74 68 65 20 72 | hain.is.for.traffic.toward.the.r |
| 393a0 | 6f 75 74 65 72 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 69 6e 70 | outer.is.``set.firewall.ipv4.inp |
| 393c0 | 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 00 42 61 73 65 20 63 68 61 69 6e 20 69 73 20 66 6f | ut.filter....``.Base.chain.is.fo |
| 393e0 | 72 20 74 72 61 66 66 69 63 20 74 6f 77 61 72 64 20 74 68 65 20 72 6f 75 74 65 72 20 69 73 20 60 | r.traffic.toward.the.router.is.` |
| 39400 | 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 69 6e 70 75 74 20 66 69 6c 74 65 72 20 | `set.firewall.ipv6.input.filter. |
| 39420 | 2e 2e 2e 60 60 00 42 61 73 65 6c 69 6e 65 20 44 4d 56 50 4e 20 74 6f 70 6f 6c 6f 67 79 00 42 61 | ...``.Baseline.DMVPN.topology.Ba |
| 39440 | 73 69 63 20 43 6f 6e 63 65 70 74 73 00 42 61 73 69 63 20 63 6f 6d 6d 61 6e 64 73 00 42 61 73 69 | sic.Concepts.Basic.commands.Basi |
| 39460 | 63 20 66 69 6c 74 65 72 69 6e 67 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 75 73 69 6e 67 20 61 63 | c.filtering.can.be.done.using.ac |
| 39480 | 63 65 73 73 2d 6c 69 73 74 20 61 6e 64 20 61 63 63 65 73 73 2d 6c 69 73 74 36 2e 00 42 61 73 69 | cess-list.and.access-list6..Basi |
| 394a0 | 63 20 66 69 6c 74 65 72 69 6e 67 20 63 6f 75 6c 64 20 61 6c 73 6f 20 62 65 20 61 70 70 6c 69 65 | c.filtering.could.also.be.applie |
| 394c0 | 64 20 74 6f 20 49 50 76 36 20 74 72 61 66 66 69 63 2e 00 42 61 73 69 63 20 73 65 74 75 70 00 42 | d.to.IPv6.traffic..Basic.setup.B |
| 394e0 | 65 20 73 75 72 65 20 74 6f 20 73 65 74 20 61 20 73 61 6e 65 20 64 65 66 61 75 6c 74 20 63 6f 6e | e.sure.to.set.a.sane.default.con |
| 39500 | 66 69 67 20 69 6e 20 74 68 65 20 64 65 66 61 75 6c 74 20 63 6f 6e 66 69 67 20 66 69 6c 65 2c 20 | fig.in.the.default.config.file,. |
| 39520 | 74 68 69 73 20 77 69 6c 6c 20 62 65 20 6c 6f 61 64 65 64 20 69 6e 20 74 68 65 20 63 61 73 65 20 | this.will.be.loaded.in.the.case. |
| 39540 | 74 68 61 74 20 61 20 75 73 65 72 20 69 73 20 61 75 74 68 65 6e 74 69 63 61 74 65 64 20 61 6e 64 | that.a.user.is.authenticated.and |
| 39560 | 20 6e 6f 20 66 69 6c 65 20 69 73 20 66 6f 75 6e 64 20 69 6e 20 74 68 65 20 63 6f 6e 66 69 67 75 | .no.file.is.found.in.the.configu |
| 39580 | 72 65 64 20 64 69 72 65 63 74 6f 72 79 20 6d 61 74 63 68 69 6e 67 20 74 68 65 20 75 73 65 72 73 | red.directory.matching.the.users |
| 395a0 | 20 75 73 65 72 6e 61 6d 65 2f 67 72 6f 75 70 2e 00 42 65 61 63 6f 6e 20 50 72 6f 74 65 63 74 69 | .username/group..Beacon.Protecti |
| 395c0 | 6f 6e 3a 20 6d 61 6e 61 67 65 6d 65 6e 74 20 66 72 61 6d 65 20 70 72 6f 74 65 63 74 69 6f 6e 20 | on:.management.frame.protection. |
| 395e0 | 66 6f 72 20 42 65 61 63 6f 6e 20 66 72 61 6d 65 73 2e 00 42 65 61 6d 66 6f 72 6d 69 6e 67 20 63 | for.Beacon.frames..Beamforming.c |
| 39600 | 61 70 61 62 69 6c 69 74 69 65 73 3a 00 42 65 63 61 75 73 65 20 61 6e 20 61 67 67 72 65 67 61 74 | apabilities:.Because.an.aggregat |
| 39620 | 6f 72 20 63 61 6e 6e 6f 74 20 62 65 20 61 63 74 69 76 65 20 77 69 74 68 6f 75 74 20 61 74 20 6c | or.cannot.be.active.without.at.l |
| 39640 | 65 61 73 74 20 6f 6e 65 20 61 76 61 69 6c 61 62 6c 65 20 6c 69 6e 6b 2c 20 73 65 74 74 69 6e 67 | east.one.available.link,.setting |
| 39660 | 20 74 68 69 73 20 6f 70 74 69 6f 6e 20 74 6f 20 30 20 6f 72 20 74 6f 20 31 20 68 61 73 20 74 68 | .this.option.to.0.or.to.1.has.th |
| 39680 | 65 20 65 78 61 63 74 20 73 61 6d 65 20 65 66 66 65 63 74 2e 00 42 65 63 61 75 73 65 20 65 78 69 | e.exact.same.effect..Because.exi |
| 396a0 | 73 74 69 6e 67 20 73 65 73 73 69 6f 6e 73 20 64 6f 20 6e 6f 74 20 61 75 74 6f 6d 61 74 69 63 61 | sting.sessions.do.not.automatica |
| 396c0 | 6c 6c 79 20 66 61 69 6c 20 6f 76 65 72 20 74 6f 20 61 20 6e 65 77 20 70 61 74 68 2c 20 74 68 65 | lly.fail.over.to.a.new.path,.the |
| 396e0 | 20 73 65 73 73 69 6f 6e 20 74 61 62 6c 65 20 63 61 6e 20 62 65 20 66 6c 75 73 68 65 64 20 6f 6e | .session.table.can.be.flushed.on |
| 39700 | 20 65 61 63 68 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 73 74 61 74 65 20 63 68 61 6e 67 65 3a 00 42 | .each.connection.state.change:.B |
| 39720 | 65 66 6f 72 65 20 65 6e 61 62 6c 69 6e 67 20 61 6e 79 20 68 61 72 64 77 61 72 65 20 73 65 67 6d | efore.enabling.any.hardware.segm |
| 39740 | 65 6e 74 61 74 69 6f 6e 20 6f 66 66 6c 6f 61 64 20 61 20 63 6f 72 72 65 73 70 6f 6e 64 69 6e 67 | entation.offload.a.corresponding |
| 39760 | 20 73 6f 66 74 77 61 72 65 20 6f 66 66 6c 6f 61 64 20 69 73 20 72 65 71 75 69 72 65 64 20 69 6e | .software.offload.is.required.in |
| 39780 | 20 47 53 4f 2e 20 4f 74 68 65 72 77 69 73 65 20 69 74 20 62 65 63 6f 6d 65 73 20 70 6f 73 73 69 | .GSO..Otherwise.it.becomes.possi |
| 397a0 | 62 6c 65 20 66 6f 72 20 61 20 66 72 61 6d 65 20 74 6f 20 62 65 20 72 65 2d 72 6f 75 74 65 64 20 | ble.for.a.frame.to.be.re-routed. |
| 397c0 | 62 65 74 77 65 65 6e 20 64 65 76 69 63 65 73 20 61 6e 64 20 65 6e 64 20 75 70 20 62 65 69 6e 67 | between.devices.and.end.up.being |
| 397e0 | 20 75 6e 61 62 6c 65 20 74 6f 20 62 65 20 74 72 61 6e 73 6d 69 74 74 65 64 2e 00 42 65 66 6f 72 | .unable.to.be.transmitted..Befor |
| 39800 | 65 20 74 65 73 74 69 6e 67 2c 20 77 65 20 63 61 6e 20 63 68 65 63 6b 20 6d 65 6d 62 65 72 73 20 | e.testing,.we.can.check.members. |
| 39820 | 6f 66 20 66 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 73 3a 00 42 65 66 6f 72 65 20 74 65 73 74 69 | of.firewall.groups:.Before.testi |
| 39840 | 6e 67 2c 20 77 65 20 63 61 6e 20 63 68 65 63 6b 20 74 68 65 20 6d 65 6d 62 65 72 73 20 6f 66 20 | ng,.we.can.check.the.members.of. |
| 39860 | 66 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 73 3a 00 42 65 66 6f 72 65 20 79 6f 75 20 61 72 65 20 | firewall.groups:.Before.you.are. |
| 39880 | 61 62 6c 65 20 74 6f 20 61 70 70 6c 79 20 61 20 72 75 6c 65 2d 73 65 74 20 74 6f 20 61 20 7a 6f | able.to.apply.a.rule-set.to.a.zo |
| 398a0 | 6e 65 20 79 6f 75 20 68 61 76 65 20 74 6f 20 63 72 65 61 74 65 20 74 68 65 20 7a 6f 6e 65 73 20 | ne.you.have.to.create.the.zones. |
| 398c0 | 66 69 72 73 74 2e 00 42 65 6c 6f 77 20 61 72 65 20 61 20 6c 69 73 74 20 6f 66 20 72 65 63 6f 72 | first..Below.are.a.list.of.recor |
| 398e0 | 64 20 74 79 70 65 73 20 61 76 61 69 6c 61 62 6c 65 20 74 6f 20 62 65 20 63 6f 6e 66 69 67 75 72 | d.types.available.to.be.configur |
| 39900 | 65 64 20 77 69 74 68 69 6e 20 56 79 4f 53 2e 20 53 6f 6d 65 20 72 65 63 6f 72 64 73 20 73 75 70 | ed.within.VyOS..Some.records.sup |
| 39920 | 70 6f 72 74 20 73 70 65 63 69 61 6c 20 60 3c 6e 61 6d 65 3e 60 20 6b 65 79 77 6f 72 64 73 3a 00 | port.special.`<name>`.keywords:. |
| 39940 | 42 65 6c 6f 77 20 66 6c 6f 77 2d 63 68 61 72 74 20 63 6f 75 6c 64 20 62 65 20 61 20 71 75 69 63 | Below.flow-chart.could.be.a.quic |
| 39960 | 6b 20 72 65 66 65 72 65 6e 63 65 20 66 6f 72 20 74 68 65 20 63 6c 6f 73 65 2d 61 63 74 69 6f 6e | k.reference.for.the.close-action |
| 39980 | 20 63 6f 6d 62 69 6e 61 74 69 6f 6e 20 64 65 70 65 6e 64 69 6e 67 20 6f 6e 20 68 6f 77 20 74 68 | .combination.depending.on.how.th |
| 399a0 | 65 20 70 65 65 72 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 2e 00 42 65 6c 6f 77 20 69 73 20 61 | e.peer.is.configured..Below.is.a |
| 399c0 | 6e 20 65 78 61 6d 70 6c 65 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 4c 4e 53 3a 00 42 65 | n.example.to.configure.a.LNS:.Be |
| 399e0 | 73 74 20 65 66 66 6f 72 74 20 74 72 61 66 66 69 63 2c 20 64 65 66 61 75 6c 74 00 42 65 74 77 65 | st.effort.traffic,.default.Betwe |
| 39a00 | 65 6e 20 63 6f 6d 70 75 74 65 72 73 2c 20 74 68 65 20 6d 6f 73 74 20 63 6f 6d 6d 6f 6e 20 63 6f | en.computers,.the.most.common.co |
| 39a20 | 6e 66 69 67 75 72 61 74 69 6f 6e 20 75 73 65 64 20 77 61 73 20 22 38 4e 31 22 3a 20 65 69 67 68 | nfiguration.used.was."8N1":.eigh |
| 39a40 | 74 20 62 69 74 20 63 68 61 72 61 63 74 65 72 73 2c 20 77 69 74 68 20 6f 6e 65 20 73 74 61 72 74 | t.bit.characters,.with.one.start |
| 39a60 | 20 62 69 74 2c 20 6f 6e 65 20 73 74 6f 70 20 62 69 74 2c 20 61 6e 64 20 6e 6f 20 70 61 72 69 74 | .bit,.one.stop.bit,.and.no.parit |
| 39a80 | 79 20 62 69 74 2e 20 54 68 75 73 20 31 30 20 42 61 75 64 20 74 69 6d 65 73 20 61 72 65 20 75 73 | y.bit..Thus.10.Baud.times.are.us |
| 39aa0 | 65 64 20 74 6f 20 73 65 6e 64 20 61 20 73 69 6e 67 6c 65 20 63 68 61 72 61 63 74 65 72 2c 20 61 | ed.to.send.a.single.character,.a |
| 39ac0 | 6e 64 20 73 6f 20 64 69 76 69 64 69 6e 67 20 74 68 65 20 73 69 67 6e 61 6c 6c 69 6e 67 20 62 69 | nd.so.dividing.the.signalling.bi |
| 39ae0 | 74 2d 72 61 74 65 20 62 79 20 74 65 6e 20 72 65 73 75 6c 74 73 20 69 6e 20 74 68 65 20 6f 76 65 | t-rate.by.ten.results.in.the.ove |
| 39b00 | 72 61 6c 6c 20 74 72 61 6e 73 6d 69 73 73 69 6f 6e 20 73 70 65 65 64 20 69 6e 20 63 68 61 72 61 | rall.transmission.speed.in.chara |
| 39b20 | 63 74 65 72 73 20 70 65 72 20 73 65 63 6f 6e 64 2e 20 54 68 69 73 20 69 73 20 61 6c 73 6f 20 74 | cters.per.second..This.is.also.t |
| 39b40 | 68 65 20 64 65 66 61 75 6c 74 20 73 65 74 74 69 6e 67 20 69 66 20 6e 6f 6e 65 20 6f 66 20 74 68 | he.default.setting.if.none.of.th |
| 39b60 | 6f 73 65 20 6f 70 74 69 6f 6e 73 20 61 72 65 20 64 65 66 69 6e 65 64 2e 00 42 69 64 69 72 65 63 | ose.options.are.defined..Bidirec |
| 39b80 | 74 69 6f 6e 61 6c 20 4e 41 54 00 42 69 6e 61 72 79 20 76 61 6c 75 65 00 42 69 6e 64 20 63 6f 6e | tional.NAT.Binary.value.Bind.con |
| 39ba0 | 74 61 69 6e 65 72 20 6e 65 74 77 6f 72 6b 20 74 6f 20 61 20 67 69 76 65 6e 20 56 52 46 20 69 6e | tainer.network.to.a.given.VRF.in |
| 39bc0 | 73 74 61 6e 63 65 2e 00 42 69 6e 64 20 6c 69 73 74 65 6e 65 72 20 74 6f 20 73 70 65 63 69 66 69 | stance..Bind.listener.to.specifi |
| 39be0 | 63 20 69 6e 74 65 72 66 61 63 65 2f 61 64 64 72 65 73 73 2c 20 6d 61 6e 64 61 74 6f 72 79 20 66 | c.interface/address,.mandatory.f |
| 39c00 | 6f 72 20 49 50 76 36 00 42 69 6e 64 73 20 65 74 68 31 2e 32 34 31 20 61 6e 64 20 76 78 6c 61 6e | or.IPv6.Binds.eth1.241.and.vxlan |
| 39c20 | 32 34 31 20 74 6f 20 65 61 63 68 20 6f 74 68 65 72 20 62 79 20 6d 61 6b 69 6e 67 20 74 68 65 6d | 241.to.each.other.by.making.them |
| 39c40 | 20 62 6f 74 68 20 6d 65 6d 62 65 72 20 69 6e 74 65 72 66 61 63 65 73 20 6f 66 20 74 68 65 20 73 | .both.member.interfaces.of.the.s |
| 39c60 | 61 6d 65 20 62 72 69 64 67 65 2e 00 42 6c 61 63 6b 68 6f 6c 65 00 42 6c 6f 63 6b 20 73 6f 75 72 | ame.bridge..Blackhole.Block.sour |
| 39c80 | 63 65 20 49 50 20 69 6e 20 73 65 63 6f 6e 64 73 2e 20 53 75 62 73 65 71 75 65 6e 74 20 62 6c 6f | ce.IP.in.seconds..Subsequent.blo |
| 39ca0 | 63 6b 73 20 69 6e 63 72 65 61 73 65 20 62 79 20 61 20 66 61 63 74 6f 72 20 6f 66 20 31 2e 35 20 | cks.increase.by.a.factor.of.1.5. |
| 39cc0 | 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 31 32 30 2e 00 42 6c 6f 63 6b 20 73 6f 75 72 63 65 | The.default.is.120..Block.source |
| 39ce0 | 20 49 50 20 77 68 65 6e 20 74 68 65 69 72 20 63 75 6d 75 6c 61 74 69 76 65 20 61 74 74 61 63 6b | .IP.when.their.cumulative.attack |
| 39d00 | 20 73 63 6f 72 65 20 65 78 63 65 65 64 73 20 74 68 72 65 73 68 6f 6c 64 2e 20 54 68 65 20 64 65 | .score.exceeds.threshold..The.de |
| 39d20 | 66 61 75 6c 74 20 69 73 20 33 30 2e 00 42 6c 6f 63 6b 69 6e 67 20 63 61 6c 6c 20 77 69 74 68 20 | fault.is.30..Blocking.call.with. |
| 39d40 | 6e 6f 20 74 69 6d 65 6f 75 74 2e 20 53 79 73 74 65 6d 20 77 69 6c 6c 20 62 65 63 6f 6d 65 20 75 | no.timeout..System.will.become.u |
| 39d60 | 6e 72 65 73 70 6f 6e 73 69 76 65 20 69 66 20 73 63 72 69 70 74 20 64 6f 65 73 20 6e 6f 74 20 72 | nresponsive.if.script.does.not.r |
| 39d80 | 65 74 75 72 6e 21 00 42 6f 61 72 64 65 72 20 47 61 74 65 77 61 79 20 50 72 6f 74 6f 63 6f 6c 20 | eturn!.Boarder.Gateway.Protocol. |
| 39da0 | 28 42 47 50 29 20 6f 72 69 67 69 6e 20 63 6f 64 65 20 74 6f 20 6d 61 74 63 68 2e 00 42 6f 6e 64 | (BGP).origin.code.to.match..Bond |
| 39dc0 | 20 2f 20 4c 69 6e 6b 20 41 67 67 72 65 67 61 74 69 6f 6e 00 42 6f 6e 64 20 6f 70 74 69 6f 6e 73 | ./.Link.Aggregation.Bond.options |
| 39de0 | 00 42 6f 6f 74 20 69 6d 61 67 65 20 6c 65 6e 67 74 68 20 69 6e 20 35 31 32 2d 6f 63 74 65 74 20 | .Boot.image.length.in.512-octet. |
| 39e00 | 62 6c 6f 63 6b 73 00 42 6f 6f 74 73 74 72 61 70 20 66 69 6c 65 20 6e 61 6d 65 00 42 6f 74 68 20 | blocks.Bootstrap.file.name.Both. |
| 39e20 | 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 6d 75 6c 74 69 63 61 73 74 20 69 73 20 70 6f 73 73 69 | IPv4.and.IPv6.multicast.is.possi |
| 39e40 | 62 6c 65 2e 00 42 6f 74 68 20 6c 6f 63 61 6c 20 61 64 6d 69 6e 69 73 74 65 72 65 64 20 61 6e 64 | ble..Both.local.administered.and |
| 39e60 | 20 72 65 6d 6f 74 65 20 61 64 6d 69 6e 69 73 74 65 72 65 64 20 3a 61 62 62 72 3a 60 52 41 44 49 | .remote.administered.:abbr:`RADI |
| 39e80 | 55 53 20 28 52 65 6d 6f 74 65 20 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 44 69 61 6c 2d 49 | US.(Remote.Authentication.Dial-I |
| 39ea0 | 6e 20 55 73 65 72 20 53 65 72 76 69 63 65 29 60 20 61 63 63 6f 75 6e 74 73 20 61 72 65 20 73 75 | n.User.Service)`.accounts.are.su |
| 39ec0 | 70 70 6f 72 74 65 64 2e 00 42 6f 74 68 20 72 65 70 6c 69 65 73 20 61 6e 64 20 72 65 71 75 65 73 | pported..Both.replies.and.reques |
| 39ee0 | 74 73 20 74 79 70 65 20 67 72 61 74 75 69 74 6f 75 73 20 61 72 70 20 77 69 6c 6c 20 74 72 69 67 | ts.type.gratuitous.arp.will.trig |
| 39f00 | 67 65 72 20 74 68 65 20 41 52 50 20 74 61 62 6c 65 20 74 6f 20 62 65 20 75 70 64 61 74 65 64 2c | ger.the.ARP.table.to.be.updated, |
| 39f20 | 20 69 66 20 74 68 69 73 20 73 65 74 74 69 6e 67 20 69 73 20 6f 6e 2e 00 42 72 61 6e 63 68 20 31 | .if.this.setting.is.on..Branch.1 |
| 39f40 | 27 73 20 72 6f 75 74 65 72 20 6d 69 67 68 74 20 68 61 76 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 | 's.router.might.have.the.followi |
| 39f60 | 6e 67 20 6c 69 6e 65 73 3a 00 42 72 69 64 67 65 00 42 72 69 64 67 65 20 46 69 72 65 77 61 6c 6c | ng.lines:.Bridge.Bridge.Firewall |
| 39f80 | 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 42 72 69 64 67 65 20 4f 70 74 69 6f 6e 73 00 42 72 | .Configuration.Bridge.Options.Br |
| 39fa0 | 69 64 67 65 20 52 75 6c 65 73 00 42 72 69 64 67 65 20 61 6e 73 77 65 72 73 20 6f 6e 20 49 50 20 | idge.Rules.Bridge.answers.on.IP. |
| 39fc0 | 61 64 64 72 65 73 73 20 31 39 32 2e 30 2e 32 2e 31 2f 32 34 20 61 6e 64 20 32 30 30 31 3a 64 62 | address.192.0.2.1/24.and.2001:db |
| 39fe0 | 38 3a 3a 66 66 66 66 2f 36 34 00 42 72 69 64 67 65 20 6d 61 78 69 6d 75 6d 20 61 67 69 6e 67 20 | 8::ffff/64.Bridge.maximum.aging. |
| 3a000 | 60 3c 74 69 6d 65 3e 60 20 69 6e 20 73 65 63 6f 6e 64 73 20 28 64 65 66 61 75 6c 74 3a 20 32 30 | `<time>`.in.seconds.(default:.20 |
| 3a020 | 29 2e 00 42 72 69 64 67 65 3a 00 42 75 72 73 74 20 63 6f 75 6e 74 00 42 75 73 69 6e 65 73 73 20 | )..Bridge:.Burst.count.Business. |
| 3a040 | 55 73 65 72 73 00 42 75 74 20 62 65 66 6f 72 65 20 6c 65 61 72 6e 69 6e 67 20 74 6f 20 63 6f 6e | Users.But.before.learning.to.con |
| 3a060 | 66 69 67 75 72 65 20 79 6f 75 72 20 70 6f 6c 69 63 79 2c 20 77 65 20 77 69 6c 6c 20 77 61 72 6e | figure.your.policy,.we.will.warn |
| 3a080 | 20 79 6f 75 20 61 62 6f 75 74 20 74 68 65 20 64 69 66 66 65 72 65 6e 74 20 75 6e 69 74 73 20 79 | .you.about.the.different.units.y |
| 3a0a0 | 6f 75 20 63 61 6e 20 75 73 65 20 61 6e 64 20 61 6c 73 6f 20 73 68 6f 77 20 79 6f 75 20 77 68 61 | ou.can.use.and.also.show.you.wha |
| 3a0c0 | 74 20 2a 63 6c 61 73 73 65 73 2a 20 61 72 65 20 61 6e 64 20 68 6f 77 20 74 68 65 79 20 77 6f 72 | t.*classes*.are.and.how.they.wor |
| 3a0e0 | 6b 2c 20 61 73 20 73 6f 6d 65 20 70 6f 6c 69 63 69 65 73 20 6d 61 79 20 72 65 71 75 69 72 65 20 | k,.as.some.policies.may.require. |
| 3a100 | 79 6f 75 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 6d 2e 00 42 79 20 64 65 66 61 75 6c | you.to.configure.them..By.defaul |
| 3a120 | 74 20 56 52 52 50 20 75 73 65 73 20 6d 75 6c 74 69 63 61 73 74 20 70 61 63 6b 65 74 73 2e 20 49 | t.VRRP.uses.multicast.packets..I |
| 3a140 | 66 20 79 6f 75 72 20 6e 65 74 77 6f 72 6b 20 64 6f 65 73 20 6e 6f 74 20 73 75 70 70 6f 72 74 20 | f.your.network.does.not.support. |
| 3a160 | 6d 75 6c 74 69 63 61 73 74 20 66 6f 72 20 77 68 61 74 65 76 65 72 20 72 65 61 73 6f 6e 2c 20 79 | multicast.for.whatever.reason,.y |
| 3a180 | 6f 75 20 63 61 6e 20 6d 61 6b 65 20 56 52 52 50 20 75 73 65 20 75 6e 69 63 61 73 74 20 63 6f 6d | ou.can.make.VRRP.use.unicast.com |
| 3a1a0 | 6d 75 6e 69 63 61 74 69 6f 6e 20 69 6e 73 74 65 61 64 2e 00 42 79 20 64 65 66 61 75 6c 74 20 56 | munication.instead..By.default.V |
| 3a1c0 | 52 52 50 20 75 73 65 73 20 70 72 65 65 6d 70 74 69 6f 6e 2e 20 59 6f 75 20 63 61 6e 20 64 69 73 | RRP.uses.preemption..You.can.dis |
| 3a1e0 | 61 62 6c 65 20 69 74 20 77 69 74 68 20 74 68 65 20 22 6e 6f 2d 70 72 65 65 6d 70 74 22 20 6f 70 | able.it.with.the."no-preempt".op |
| 3a200 | 74 69 6f 6e 3a 00 42 79 20 64 65 66 61 75 6c 74 20 60 73 74 72 69 63 74 2d 6c 73 61 2d 63 68 65 | tion:.By.default.`strict-lsa-che |
| 3a220 | 63 6b 69 6e 67 60 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 20 74 68 65 6e 20 74 68 65 20 68 65 | cking`.is.configured.then.the.he |
| 3a240 | 6c 70 65 72 20 77 69 6c 6c 20 61 62 6f 72 74 20 74 68 65 20 47 72 61 63 65 66 75 6c 20 52 65 73 | lper.will.abort.the.Graceful.Res |
| 3a260 | 74 61 72 74 20 77 68 65 6e 20 61 20 4c 53 41 20 63 68 61 6e 67 65 20 6f 63 63 75 72 73 20 77 68 | tart.when.a.LSA.change.occurs.wh |
| 3a280 | 69 63 68 20 61 66 66 65 63 74 73 20 74 68 65 20 72 65 73 74 61 72 74 69 6e 67 20 72 6f 75 74 65 | ich.affects.the.restarting.route |
| 3a2a0 | 72 2e 00 42 79 20 64 65 66 61 75 6c 74 20 74 68 65 20 73 63 6f 70 65 20 6f 66 20 74 68 65 20 70 | r..By.default.the.scope.of.the.p |
| 3a2c0 | 6f 72 74 20 62 69 6e 64 69 6e 67 73 20 66 6f 72 20 75 6e 62 6f 75 6e 64 20 73 6f 63 6b 65 74 73 | ort.bindings.for.unbound.sockets |
| 3a2e0 | 20 69 73 20 6c 69 6d 69 74 65 64 20 74 6f 20 74 68 65 20 64 65 66 61 75 6c 74 20 56 52 46 2e 20 | .is.limited.to.the.default.VRF.. |
| 3a300 | 54 68 61 74 20 69 73 2c 20 69 74 20 77 69 6c 6c 20 6e 6f 74 20 62 65 20 6d 61 74 63 68 65 64 20 | That.is,.it.will.not.be.matched. |
| 3a320 | 62 79 20 70 61 63 6b 65 74 73 20 61 72 72 69 76 69 6e 67 20 6f 6e 20 69 6e 74 65 72 66 61 63 65 | by.packets.arriving.on.interface |
| 3a340 | 73 20 65 6e 73 6c 61 76 65 64 20 74 6f 20 61 20 56 52 46 20 61 6e 64 20 70 72 6f 63 65 73 73 65 | s.enslaved.to.a.VRF.and.processe |
| 3a360 | 73 20 6d 61 79 20 62 69 6e 64 20 74 6f 20 74 68 65 20 73 61 6d 65 20 70 6f 72 74 20 69 66 20 74 | s.may.bind.to.the.same.port.if.t |
| 3a380 | 68 65 79 20 62 69 6e 64 20 74 6f 20 61 20 56 52 46 2e 00 42 79 20 64 65 66 61 75 6c 74 2c 20 46 | hey.bind.to.a.VRF..By.default,.F |
| 3a3a0 | 52 52 20 77 69 6c 6c 20 62 72 69 6e 67 20 75 70 20 70 65 65 72 69 6e 67 20 77 69 74 68 20 6d 69 | RR.will.bring.up.peering.with.mi |
| 3a3c0 | 6e 69 6d 61 6c 20 63 6f 6d 6d 6f 6e 20 63 61 70 61 62 69 6c 69 74 79 20 66 6f 72 20 74 68 65 20 | nimal.common.capability.for.the. |
| 3a3e0 | 62 6f 74 68 20 73 69 64 65 73 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 2c 20 69 66 20 74 68 65 20 | both.sides..For.example,.if.the. |
| 3a400 | 6c 6f 63 61 6c 20 72 6f 75 74 65 72 20 68 61 73 20 75 6e 69 63 61 73 74 20 61 6e 64 20 6d 75 6c | local.router.has.unicast.and.mul |
| 3a420 | 74 69 63 61 73 74 20 63 61 70 61 62 69 6c 69 74 69 65 73 20 61 6e 64 20 74 68 65 20 72 65 6d 6f | ticast.capabilities.and.the.remo |
| 3a440 | 74 65 20 72 6f 75 74 65 72 20 6f 6e 6c 79 20 68 61 73 20 75 6e 69 63 61 73 74 20 63 61 70 61 62 | te.router.only.has.unicast.capab |
| 3a460 | 69 6c 69 74 79 20 74 68 65 20 6c 6f 63 61 6c 20 72 6f 75 74 65 72 20 77 69 6c 6c 20 65 73 74 61 | ility.the.local.router.will.esta |
| 3a480 | 62 6c 69 73 68 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 77 69 74 68 20 75 6e 69 63 61 73 | blish.the.connection.with.unicas |
| 3a4a0 | 74 20 6f 6e 6c 79 20 63 61 70 61 62 69 6c 69 74 79 2e 20 57 68 65 6e 20 74 68 65 72 65 20 61 72 | t.only.capability..When.there.ar |
| 3a4c0 | 65 20 6e 6f 20 63 6f 6d 6d 6f 6e 20 63 61 70 61 62 69 6c 69 74 69 65 73 2c 20 46 52 52 20 73 65 | e.no.common.capabilities,.FRR.se |
| 3a4e0 | 6e 64 73 20 55 6e 73 75 70 70 6f 72 74 65 64 20 43 61 70 61 62 69 6c 69 74 79 20 65 72 72 6f 72 | nds.Unsupported.Capability.error |
| 3a500 | 20 61 6e 64 20 74 68 65 6e 20 72 65 73 65 74 73 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e | .and.then.resets.the.connection. |
| 3a520 | 00 42 79 20 64 65 66 61 75 6c 74 2c 20 56 79 4f 53 20 64 6f 65 73 20 6e 6f 74 20 61 64 76 65 72 | .By.default,.VyOS.does.not.adver |
| 3a540 | 74 69 73 65 20 61 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 20 28 30 2e 30 2e 30 2e 30 2f 30 29 | tise.a.default.route.(0.0.0.0/0) |
| 3a560 | 20 65 76 65 6e 20 69 66 20 69 74 20 69 73 20 69 6e 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 2e | .even.if.it.is.in.routing.table. |
| 3a580 | 20 57 68 65 6e 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 61 6e 6e 6f 75 6e 63 65 20 64 65 66 61 75 | .When.you.want.to.announce.defau |
| 3a5a0 | 6c 74 20 72 6f 75 74 65 73 20 74 6f 20 74 68 65 20 70 65 65 72 2c 20 75 73 65 20 74 68 69 73 20 | lt.routes.to.the.peer,.use.this. |
| 3a5c0 | 63 6f 6d 6d 61 6e 64 2e 20 55 73 69 6e 67 20 6f 70 74 69 6f 6e 61 6c 20 61 72 67 75 6d 65 6e 74 | command..Using.optional.argument |
| 3a5e0 | 20 3a 63 66 67 63 6d 64 3a 60 72 6f 75 74 65 2d 6d 61 70 60 20 79 6f 75 20 63 61 6e 20 69 6e 6a | .:cfgcmd:`route-map`.you.can.inj |
| 3a600 | 65 63 74 20 74 68 65 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 20 74 6f 20 67 69 76 65 6e 20 6e | ect.the.default.route.to.given.n |
| 3a620 | 65 69 67 68 62 6f 72 20 6f 6e 6c 79 20 69 66 20 74 68 65 20 63 6f 6e 64 69 74 69 6f 6e 73 20 69 | eighbor.only.if.the.conditions.i |
| 3a640 | 6e 20 74 68 65 20 72 6f 75 74 65 20 6d 61 70 20 61 72 65 20 6d 65 74 2e 00 42 79 20 64 65 66 61 | n.the.route.map.are.met..By.defa |
| 3a660 | 75 6c 74 2c 20 61 20 6e 65 77 20 74 6f 6b 65 6e 20 69 73 20 67 65 6e 65 72 61 74 65 64 20 65 76 | ult,.a.new.token.is.generated.ev |
| 3a680 | 65 72 79 20 33 30 20 73 65 63 6f 6e 64 73 20 62 79 20 74 68 65 20 6d 6f 62 69 6c 65 20 61 70 70 | ery.30.seconds.by.the.mobile.app |
| 3a6a0 | 6c 69 63 61 74 69 6f 6e 2e 20 49 6e 20 6f 72 64 65 72 20 74 6f 20 63 6f 6d 70 65 6e 73 61 74 65 | lication..In.order.to.compensate |
| 3a6c0 | 20 66 6f 72 20 70 6f 73 73 69 62 6c 65 20 74 69 6d 65 2d 73 6b 65 77 20 62 65 74 77 65 65 6e 20 | .for.possible.time-skew.between. |
| 3a6e0 | 74 68 65 20 63 6c 69 65 6e 74 20 61 6e 64 20 74 68 65 20 73 65 72 76 65 72 2c 20 61 6e 20 65 78 | the.client.and.the.server,.an.ex |
| 3a700 | 74 72 61 20 74 6f 6b 65 6e 20 62 65 66 6f 72 65 20 61 6e 64 20 61 66 74 65 72 20 74 68 65 20 63 | tra.token.before.and.after.the.c |
| 3a720 | 75 72 72 65 6e 74 20 74 69 6d 65 20 69 73 20 61 6c 6c 6f 77 65 64 2e 20 54 68 69 73 20 61 6c 6c | urrent.time.is.allowed..This.all |
| 3a740 | 6f 77 73 20 66 6f 72 20 61 20 74 69 6d 65 20 73 6b 65 77 20 6f 66 20 75 70 20 74 6f 20 33 30 20 | ows.for.a.time.skew.of.up.to.30. |
| 3a760 | 73 65 63 6f 6e 64 73 20 62 65 74 77 65 65 6e 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 73 | seconds.between.authentication.s |
| 3a780 | 65 72 76 65 72 20 61 6e 64 20 63 6c 69 65 6e 74 2e 00 42 79 20 64 65 66 61 75 6c 74 2c 20 64 64 | erver.and.client..By.default,.dd |
| 3a7a0 | 63 6c 69 65 6e 74 5f 20 77 69 6c 6c 20 75 70 64 61 74 65 20 61 20 64 79 6e 61 6d 69 63 20 64 6e | client_.will.update.a.dynamic.dn |
| 3a7c0 | 73 20 72 65 63 6f 72 64 20 75 73 69 6e 67 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 64 69 | s.record.using.the.IP.address.di |
| 3a7e0 | 72 65 63 74 6c 79 20 61 74 74 61 63 68 65 64 20 74 6f 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 | rectly.attached.to.the.interface |
| 3a800 | 2e 20 49 66 20 79 6f 75 72 20 56 79 4f 53 20 69 6e 73 74 61 6e 63 65 20 69 73 20 62 65 68 69 6e | ..If.your.VyOS.instance.is.behin |
| 3a820 | 64 20 4e 41 54 2c 20 79 6f 75 72 20 72 65 63 6f 72 64 20 77 69 6c 6c 20 62 65 20 75 70 64 61 74 | d.NAT,.your.record.will.be.updat |
| 3a840 | 65 64 20 74 6f 20 70 6f 69 6e 74 20 74 6f 20 79 6f 75 72 20 69 6e 74 65 72 6e 61 6c 20 49 50 2e | ed.to.point.to.your.internal.IP. |
| 3a860 | 00 42 79 20 64 65 66 61 75 6c 74 2c 20 65 6e 61 62 6c 69 6e 67 20 52 50 4b 49 20 64 6f 65 73 20 | .By.default,.enabling.RPKI.does. |
| 3a880 | 6e 6f 74 20 63 68 61 6e 67 65 20 62 65 73 74 20 70 61 74 68 20 73 65 6c 65 63 74 69 6f 6e 2e 20 | not.change.best.path.selection.. |
| 3a8a0 | 49 6e 20 70 61 72 74 69 63 75 6c 61 72 2c 20 69 6e 76 61 6c 69 64 20 70 72 65 66 69 78 65 73 20 | In.particular,.invalid.prefixes. |
| 3a8c0 | 77 69 6c 6c 20 73 74 69 6c 6c 20 62 65 20 63 6f 6e 73 69 64 65 72 65 64 20 64 75 72 69 6e 67 20 | will.still.be.considered.during. |
| 3a8e0 | 62 65 73 74 20 70 61 74 68 20 73 65 6c 65 63 74 69 6f 6e 2e 20 48 6f 77 65 76 65 72 2c 20 74 68 | best.path.selection..However,.th |
| 3a900 | 65 20 72 6f 75 74 65 72 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 74 6f 20 69 67 | e.router.can.be.configured.to.ig |
| 3a920 | 6e 6f 72 65 20 61 6c 6c 20 69 6e 76 61 6c 69 64 20 70 72 65 66 69 78 65 73 2e 00 42 79 20 64 65 | nore.all.invalid.prefixes..By.de |
| 3a940 | 66 61 75 6c 74 2c 20 66 6f 72 20 73 77 69 74 63 68 65 64 20 74 72 61 66 66 69 63 2c 20 6f 6e 6c | fault,.for.switched.traffic,.onl |
| 3a960 | 79 20 74 68 65 20 72 75 6c 65 73 20 64 65 66 69 6e 65 64 20 75 6e 64 65 72 20 60 60 73 65 74 20 | y.the.rules.defined.under.``set. |
| 3a980 | 66 69 72 65 77 61 6c 6c 20 62 72 69 64 67 65 60 60 20 61 72 65 20 61 70 70 6c 69 65 64 2e 20 54 | firewall.bridge``.are.applied..T |
| 3a9a0 | 68 65 72 65 20 61 72 65 20 74 77 6f 20 67 6c 6f 62 61 6c 2d 6f 70 74 69 6f 6e 73 20 74 68 61 74 | here.are.two.global-options.that |
| 3a9c0 | 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 66 | .can.be.configured.in.order.to.f |
| 3a9e0 | 6f 72 63 65 20 64 65 65 70 65 72 20 61 6e 61 6c 79 73 69 73 20 6f 66 20 74 68 65 20 70 61 63 6b | orce.deeper.analysis.of.the.pack |
| 3aa00 | 65 74 20 6f 6e 20 74 68 65 20 49 50 20 6c 61 79 65 72 2e 20 54 68 65 73 65 20 6f 70 74 69 6f 6e | et.on.the.IP.layer..These.option |
| 3aa20 | 73 20 61 72 65 3a 00 42 79 20 64 65 66 61 75 6c 74 2c 20 69 74 20 73 75 70 70 6f 72 74 73 20 62 | s.are:.By.default,.it.supports.b |
| 3aa40 | 6f 74 68 20 70 6c 61 6e 6e 65 64 20 61 6e 64 20 75 6e 70 6c 61 6e 6e 65 64 20 6f 75 74 61 67 65 | oth.planned.and.unplanned.outage |
| 3aa60 | 73 2e 00 42 79 20 64 65 66 61 75 6c 74 2c 20 6c 6f 63 61 6c 6c 79 20 61 64 76 65 72 74 69 73 65 | s..By.default,.locally.advertise |
| 3aa80 | 64 20 70 72 65 66 69 78 65 73 20 75 73 65 20 74 68 65 20 69 6d 70 6c 69 63 69 74 2d 6e 75 6c 6c | d.prefixes.use.the.implicit-null |
| 3aaa0 | 20 6c 61 62 65 6c 20 74 6f 20 65 6e 63 6f 64 65 20 69 6e 20 74 68 65 20 6f 75 74 67 6f 69 6e 67 | .label.to.encode.in.the.outgoing |
| 3aac0 | 20 4e 4c 52 49 2e 00 42 79 20 64 65 66 61 75 6c 74 2c 20 6e 67 69 6e 78 20 65 78 70 6f 73 65 73 | .NLRI..By.default,.nginx.exposes |
| 3aae0 | 20 74 68 65 20 6c 6f 63 61 6c 20 41 50 49 20 6f 6e 20 61 6c 6c 20 76 69 72 74 75 61 6c 20 73 65 | .the.local.API.on.all.virtual.se |
| 3ab00 | 72 76 65 72 73 2e 20 55 73 65 20 74 68 69 73 20 74 6f 20 72 65 73 74 72 69 63 74 20 6e 67 69 6e | rvers..Use.this.to.restrict.ngin |
| 3ab20 | 78 20 74 6f 20 6f 6e 65 20 6f 72 20 6d 6f 72 65 20 76 69 72 74 75 61 6c 20 68 6f 73 74 73 2e 00 | x.to.one.or.more.virtual.hosts.. |
| 3ab40 | 42 79 20 64 65 66 61 75 6c 74 2c 20 72 65 63 6f 72 64 65 64 20 66 6c 6f 77 73 20 77 69 6c 6c 20 | By.default,.recorded.flows.will. |
| 3ab60 | 62 65 20 73 61 76 65 64 20 69 6e 74 65 72 6e 61 6c 6c 79 20 61 6e 64 20 63 61 6e 20 62 65 20 6c | be.saved.internally.and.can.be.l |
| 3ab80 | 69 73 74 65 64 20 77 69 74 68 20 74 68 65 20 43 4c 49 20 63 6f 6d 6d 61 6e 64 2e 20 59 6f 75 20 | isted.with.the.CLI.command..You. |
| 3aba0 | 6d 61 79 20 64 69 73 61 62 6c 65 20 75 73 69 6e 67 20 74 68 65 20 6c 6f 63 61 6c 20 69 6e 2d 6d | may.disable.using.the.local.in-m |
| 3abc0 | 65 6d 6f 72 79 20 74 61 62 6c 65 20 77 69 74 68 20 74 68 65 20 63 6f 6d 6d 61 6e 64 3a 00 42 79 | emory.table.with.the.command:.By |
| 3abe0 | 20 64 65 66 61 75 6c 74 2c 20 74 68 65 20 42 47 50 20 70 72 65 66 69 78 20 69 73 20 61 64 76 65 | .default,.the.BGP.prefix.is.adve |
| 3ac00 | 72 74 69 73 65 64 20 65 76 65 6e 20 69 66 20 69 74 27 73 20 6e 6f 74 20 70 72 65 73 65 6e 74 20 | rtised.even.if.it's.not.present. |
| 3ac20 | 69 6e 20 74 68 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 2e 20 54 68 69 73 20 62 65 68 61 76 | in.the.routing.table..This.behav |
| 3ac40 | 69 6f 75 72 20 64 69 66 66 65 72 73 20 66 72 6f 6d 20 74 68 65 20 69 6d 70 6c 65 6d 65 6e 74 61 | iour.differs.from.the.implementa |
| 3ac60 | 74 69 6f 6e 20 6f 66 20 73 6f 6d 65 20 76 65 6e 64 6f 72 73 2e 00 42 79 20 64 65 66 61 75 6c 74 | tion.of.some.vendors..By.default |
| 3ac80 | 2c 20 74 68 69 73 20 62 72 69 64 67 69 6e 67 20 69 73 20 61 6c 6c 6f 77 65 64 2e 00 42 79 20 64 | ,.this.bridging.is.allowed..By.d |
| 3aca0 | 65 66 61 75 6c 74 2c 20 77 68 65 6e 20 56 79 4f 53 20 72 65 63 65 69 76 65 73 20 61 6e 20 49 43 | efault,.when.VyOS.receives.an.IC |
| 3acc0 | 4d 50 20 65 63 68 6f 20 72 65 71 75 65 73 74 20 70 61 63 6b 65 74 20 64 65 73 74 69 6e 65 64 20 | MP.echo.request.packet.destined. |
| 3ace0 | 66 6f 72 20 69 74 73 65 6c 66 2c 20 69 74 20 77 69 6c 6c 20 61 6e 73 77 65 72 20 77 69 74 68 20 | for.itself,.it.will.answer.with. |
| 3ad00 | 61 6e 20 49 43 4d 50 20 65 63 68 6f 20 72 65 70 6c 79 2c 20 75 6e 6c 65 73 73 20 79 6f 75 20 61 | an.ICMP.echo.reply,.unless.you.a |
| 3ad20 | 76 6f 69 64 20 69 74 20 74 68 72 6f 75 67 68 20 69 74 73 20 66 69 72 65 77 61 6c 6c 2e 00 42 79 | void.it.through.its.firewall..By |
| 3ad40 | 20 64 65 66 61 75 6c 74 2c 20 77 68 65 6e 20 56 79 4f 53 20 72 65 63 65 69 76 65 73 20 61 6e 20 | .default,.when.VyOS.receives.an. |
| 3ad60 | 49 43 4d 50 20 65 63 68 6f 20 72 65 71 75 65 73 74 20 70 61 63 6b 65 74 20 64 65 73 74 69 6e 65 | ICMP.echo.request.packet.destine |
| 3ad80 | 64 20 66 6f 72 20 69 74 73 65 6c 66 2c 20 69 74 20 77 69 6c 6c 20 61 6e 73 77 65 72 20 77 69 74 | d.for.itself,.it.will.answer.wit |
| 3ada0 | 68 20 61 6e 20 49 43 4d 50 20 65 63 68 6f 20 72 65 70 6c 79 2c 20 75 6e 6c 65 73 73 20 79 6f 75 | h.an.ICMP.echo.reply,.unless.you |
| 3adc0 | 20 70 72 65 76 65 6e 74 20 69 74 20 74 68 72 6f 75 67 68 20 69 74 73 20 66 69 72 65 77 61 6c 6c | .prevent.it.through.its.firewall |
| 3ade0 | 2e 00 42 79 20 75 73 69 6e 67 20 50 73 65 75 64 6f 2d 45 74 68 65 72 6e 65 74 20 69 6e 74 65 72 | ..By.using.Pseudo-Ethernet.inter |
| 3ae00 | 66 61 63 65 73 20 74 68 65 72 65 20 77 69 6c 6c 20 62 65 20 6c 65 73 73 20 73 79 73 74 65 6d 20 | faces.there.will.be.less.system. |
| 3ae20 | 6f 76 65 72 68 65 61 64 20 63 6f 6d 70 61 72 65 64 20 74 6f 20 72 75 6e 6e 69 6e 67 20 61 20 74 | overhead.compared.to.running.a.t |
| 3ae40 | 72 61 64 69 74 69 6f 6e 61 6c 20 62 72 69 64 67 69 6e 67 20 61 70 70 72 6f 61 63 68 2e 20 50 73 | raditional.bridging.approach..Ps |
| 3ae60 | 65 75 64 6f 2d 45 74 68 65 72 6e 65 74 20 69 6e 74 65 72 66 61 63 65 73 20 63 61 6e 20 61 6c 73 | eudo-Ethernet.interfaces.can.als |
| 3ae80 | 6f 20 62 65 20 75 73 65 64 20 74 6f 20 77 6f 72 6b 61 72 6f 75 6e 64 20 74 68 65 20 67 65 6e 65 | o.be.used.to.workaround.the.gene |
| 3aea0 | 72 61 6c 20 6c 69 6d 69 74 20 6f 66 20 34 30 39 36 20 76 69 72 74 75 61 6c 20 4c 41 4e 73 20 28 | ral.limit.of.4096.virtual.LANs.( |
| 3aec0 | 56 4c 41 4e 73 29 20 70 65 72 20 70 68 79 73 69 63 61 6c 20 45 74 68 65 72 6e 65 74 20 70 6f 72 | VLANs).per.physical.Ethernet.por |
| 3aee0 | 74 2c 20 73 69 6e 63 65 20 74 68 61 74 20 6c 69 6d 69 74 20 69 73 20 77 69 74 68 20 72 65 73 70 | t,.since.that.limit.is.with.resp |
| 3af00 | 65 63 74 20 74 6f 20 61 20 73 69 6e 67 6c 65 20 4d 41 43 20 61 64 64 72 65 73 73 2e 00 42 79 70 | ect.to.a.single.MAC.address..Byp |
| 3af20 | 61 73 73 69 6e 67 20 74 68 65 20 77 65 62 70 72 6f 78 79 00 43 41 20 28 43 65 72 74 69 66 69 63 | assing.the.webproxy.CA.(Certific |
| 3af40 | 61 74 65 20 41 75 74 68 6f 72 69 74 79 29 00 43 41 4b 45 00 43 47 4e 41 54 00 43 47 4e 41 54 20 | ate.Authority).CAKE.CGNAT.CGNAT. |
| 3af60 | 77 6f 72 6b 73 20 62 79 20 70 6c 61 63 69 6e 67 20 61 20 4e 41 54 20 64 65 76 69 63 65 20 77 69 | works.by.placing.a.NAT.device.wi |
| 3af80 | 74 68 69 6e 20 74 68 65 20 49 53 50 27 73 20 6e 65 74 77 6f 72 6b 2e 20 54 68 69 73 20 64 65 76 | thin.the.ISP's.network..This.dev |
| 3afa0 | 69 63 65 20 74 72 61 6e 73 6c 61 74 65 73 20 70 72 69 76 61 74 65 20 49 50 20 61 64 64 72 65 73 | ice.translates.private.IP.addres |
| 3afc0 | 73 65 73 20 66 72 6f 6d 20 63 75 73 74 6f 6d 65 72 20 6e 65 74 77 6f 72 6b 73 20 74 6f 20 61 20 | ses.from.customer.networks.to.a. |
| 3afe0 | 6c 69 6d 69 74 65 64 20 70 6f 6f 6c 20 6f 66 20 70 75 62 6c 69 63 20 49 50 20 61 64 64 72 65 73 | limited.pool.of.public.IP.addres |
| 3b000 | 73 65 73 20 61 73 73 69 67 6e 65 64 20 74 6f 20 74 68 65 20 49 53 50 2e 20 54 68 69 73 20 61 6c | ses.assigned.to.the.ISP..This.al |
| 3b020 | 6c 6f 77 73 20 6d 61 6e 79 20 63 75 73 74 6f 6d 65 72 73 20 74 6f 20 73 68 61 72 65 20 61 20 73 | lows.many.customers.to.share.a.s |
| 3b040 | 6d 61 6c 6c 65 72 20 6e 75 6d 62 65 72 20 6f 66 20 70 75 62 6c 69 63 20 49 50 20 61 64 64 72 65 | maller.number.of.public.IP.addre |
| 3b060 | 73 73 65 73 2e 00 43 52 49 54 49 43 2f 45 43 50 00 43 61 6c 6c 20 61 6e 6f 74 68 65 72 20 72 6f | sses..CRITIC/ECP.Call.another.ro |
| 3b080 | 75 74 65 2d 6d 61 70 20 70 6f 6c 69 63 79 20 6f 6e 20 6d 61 74 63 68 2e 00 43 61 70 61 62 69 6c | ute-map.policy.on.match..Capabil |
| 3b0a0 | 69 74 79 20 4e 65 67 6f 74 69 61 74 69 6f 6e 00 43 65 72 74 61 69 6e 20 76 65 6e 64 6f 72 73 20 | ity.Negotiation.Certain.vendors. |
| 3b0c0 | 75 73 65 20 62 72 6f 61 64 63 61 73 74 73 20 74 6f 20 69 64 65 6e 74 69 66 79 20 74 68 65 69 72 | use.broadcasts.to.identify.their |
| 3b0e0 | 20 65 71 75 69 70 6d 65 6e 74 20 77 69 74 68 69 6e 20 6f 6e 65 20 65 74 68 65 72 6e 65 74 20 73 | .equipment.within.one.ethernet.s |
| 3b100 | 65 67 6d 65 6e 74 2e 20 55 6e 66 6f 72 74 75 6e 61 74 65 6c 79 20 69 66 20 79 6f 75 20 73 70 6c | egment..Unfortunately.if.you.spl |
| 3b120 | 69 74 20 79 6f 75 72 20 6e 65 74 77 6f 72 6b 20 77 69 74 68 20 6d 75 6c 74 69 70 6c 65 20 56 4c | it.your.network.with.multiple.VL |
| 3b140 | 41 4e 73 20 79 6f 75 20 6c 6f 6f 73 65 20 74 68 65 20 61 62 69 6c 69 74 79 20 6f 66 20 69 64 65 | ANs.you.loose.the.ability.of.ide |
| 3b160 | 6e 74 69 66 79 69 6e 67 20 79 6f 75 72 20 65 71 75 69 70 6d 65 6e 74 2e 00 43 65 72 74 69 66 69 | ntifying.your.equipment..Certifi |
| 3b180 | 63 61 74 65 20 41 75 74 68 6f 72 69 74 79 20 28 43 41 29 00 43 65 72 74 69 66 69 63 61 74 65 20 | cate.Authority.(CA).Certificate. |
| 3b1a0 | 72 65 76 6f 63 61 74 69 6f 6e 20 6c 69 73 74 20 69 6e 20 50 45 4d 20 66 6f 72 6d 61 74 2e 00 43 | revocation.list.in.PEM.format..C |
| 3b1c0 | 65 72 74 69 66 69 63 61 74 65 73 00 43 68 61 6e 67 65 20 73 79 73 74 65 6d 20 6b 65 79 62 6f 61 | ertificates.Change.system.keyboa |
| 3b1e0 | 72 64 20 6c 61 79 6f 75 74 20 74 6f 20 67 69 76 65 6e 20 6c 61 6e 67 75 61 67 65 2e 00 43 68 61 | rd.layout.to.given.language..Cha |
| 3b200 | 6e 67 65 20 74 68 65 20 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 20 77 69 74 68 20 74 68 69 73 | nge.the.default-action.with.this |
| 3b220 | 20 73 65 74 74 69 6e 67 2e 00 43 68 61 6e 67 65 73 20 69 6e 20 42 47 50 20 70 6f 6c 69 63 69 65 | .setting..Changes.in.BGP.policie |
| 3b240 | 73 20 72 65 71 75 69 72 65 20 74 68 65 20 42 47 50 20 73 65 73 73 69 6f 6e 20 74 6f 20 62 65 20 | s.require.the.BGP.session.to.be. |
| 3b260 | 63 6c 65 61 72 65 64 2e 20 43 6c 65 61 72 69 6e 67 20 68 61 73 20 61 20 6c 61 72 67 65 20 6e 65 | cleared..Clearing.has.a.large.ne |
| 3b280 | 67 61 74 69 76 65 20 69 6d 70 61 63 74 20 6f 6e 20 6e 65 74 77 6f 72 6b 20 6f 70 65 72 61 74 69 | gative.impact.on.network.operati |
| 3b2a0 | 6f 6e 73 2e 20 53 6f 66 74 20 72 65 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 65 6e 61 62 6c 65 | ons..Soft.reconfiguration.enable |
| 3b2c0 | 73 20 79 6f 75 20 74 6f 20 67 65 6e 65 72 61 74 65 20 69 6e 62 6f 75 6e 64 20 75 70 64 61 74 65 | s.you.to.generate.inbound.update |
| 3b2e0 | 73 20 66 72 6f 6d 20 61 20 6e 65 69 67 68 62 6f 72 2c 20 63 68 61 6e 67 65 20 61 6e 64 20 61 63 | s.from.a.neighbor,.change.and.ac |
| 3b300 | 74 69 76 61 74 65 20 42 47 50 20 70 6f 6c 69 63 69 65 73 20 77 69 74 68 6f 75 74 20 63 6c 65 61 | tivate.BGP.policies.without.clea |
| 3b320 | 72 69 6e 67 20 74 68 65 20 42 47 50 20 73 65 73 73 69 6f 6e 2e 00 43 68 61 6e 67 65 73 20 74 6f | ring.the.BGP.session..Changes.to |
| 3b340 | 20 74 68 65 20 4e 41 54 20 73 79 73 74 65 6d 20 6f 6e 6c 79 20 61 66 66 65 63 74 20 6e 65 77 6c | .the.NAT.system.only.affect.newl |
| 3b360 | 79 20 65 73 74 61 62 6c 69 73 68 65 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2e 20 41 6c 72 65 61 | y.established.connections..Alrea |
| 3b380 | 64 79 20 65 73 74 61 62 6c 69 73 68 65 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 61 72 65 20 6e | dy.established.connections.are.n |
| 3b3a0 | 6f 74 20 61 66 66 65 63 74 65 64 2e 00 43 68 61 6e 67 69 6e 67 20 74 68 65 20 6b 65 79 6d 61 70 | ot.affected..Changing.the.keymap |
| 3b3c0 | 20 6f 6e 6c 79 20 68 61 73 20 61 6e 20 65 66 66 65 63 74 20 6f 6e 20 74 68 65 20 73 79 73 74 65 | .only.has.an.effect.on.the.syste |
| 3b3e0 | 6d 20 63 6f 6e 73 6f 6c 65 2c 20 75 73 69 6e 67 20 53 53 48 20 6f 72 20 53 65 72 69 61 6c 20 72 | m.console,.using.SSH.or.Serial.r |
| 3b400 | 65 6d 6f 74 65 20 61 63 63 65 73 73 20 74 6f 20 74 68 65 20 64 65 76 69 63 65 20 69 73 20 6e 6f | emote.access.to.the.device.is.no |
| 3b420 | 74 20 61 66 66 65 63 74 65 64 20 61 73 20 74 68 65 20 6b 65 79 62 6f 61 72 64 20 6c 61 79 6f 75 | t.affected.as.the.keyboard.layou |
| 3b440 | 74 20 68 65 72 65 20 63 6f 72 72 65 73 70 6f 6e 64 73 20 74 6f 20 79 6f 75 72 20 61 63 63 65 73 | t.here.corresponds.to.your.acces |
| 3b460 | 73 20 73 79 73 74 65 6d 2e 00 43 68 61 6e 6e 65 6c 20 6e 75 6d 62 65 72 20 28 49 45 45 45 20 38 | s.system..Channel.number.(IEEE.8 |
| 3b480 | 30 32 2e 31 31 29 2c 20 66 6f 72 20 32 2e 34 47 68 7a 20 28 38 30 32 2e 31 31 20 62 2f 67 2f 6e | 02.11),.for.2.4Ghz.(802.11.b/g/n |
| 3b4a0 | 29 20 63 68 61 6e 6e 65 6c 73 20 72 61 6e 67 65 20 66 72 6f 6d 20 31 2d 31 34 2e 20 4f 6e 20 35 | ).channels.range.from.1-14..On.5 |
| 3b4c0 | 47 68 7a 20 28 38 30 32 2e 31 31 20 61 2f 68 2f 6a 2f 6e 2f 61 63 29 20 63 68 61 6e 6e 65 6c 73 | Ghz.(802.11.a/h/j/n/ac).channels |
| 3b4e0 | 20 61 76 61 69 6c 61 62 6c 65 20 61 72 65 20 30 2c 20 33 34 20 74 6f 20 31 37 33 00 43 68 61 6e | .available.are.0,.34.to.173.Chan |
| 3b500 | 6e 65 6c 20 6e 75 6d 62 65 72 20 28 49 45 45 45 20 38 30 32 2e 31 31 29 2c 20 66 6f 72 20 32 2e | nel.number.(IEEE.802.11),.for.2. |
| 3b520 | 34 47 68 7a 20 28 38 30 32 2e 31 31 20 62 2f 67 2f 6e 29 20 63 68 61 6e 6e 65 6c 73 20 72 61 6e | 4Ghz.(802.11.b/g/n).channels.ran |
| 3b540 | 67 65 20 66 72 6f 6d 20 31 2d 31 34 2e 20 4f 6e 20 35 47 68 7a 20 28 38 30 32 2e 31 31 20 61 2f | ge.from.1-14..On.5Ghz.(802.11.a/ |
| 3b560 | 68 2f 6a 2f 6e 2f 61 63 29 20 63 68 61 6e 6e 65 6c 73 20 61 76 61 69 6c 61 62 6c 65 20 61 72 65 | h/j/n/ac).channels.available.are |
| 3b580 | 20 30 2c 20 33 34 20 74 6f 20 31 37 33 2e 20 4f 6e 20 36 47 48 7a 20 28 38 30 32 2e 31 31 20 61 | .0,.34.to.173..On.6GHz.(802.11.a |
| 3b5a0 | 78 29 20 63 68 61 6e 6e 65 6c 73 20 72 61 6e 67 65 20 66 72 6f 6d 20 31 20 74 6f 20 32 33 33 2e | x).channels.range.from.1.to.233. |
| 3b5c0 | 00 43 68 61 6e 6e 65 6c 20 6e 75 6d 62 65 72 20 28 49 45 45 45 20 38 30 32 2e 31 31 29 2c 20 66 | .Channel.number.(IEEE.802.11),.f |
| 3b5e0 | 6f 72 20 32 2e 34 47 68 7a 20 28 38 30 32 2e 31 31 20 62 2f 67 2f 6e 2f 61 78 29 20 63 68 61 6e | or.2.4Ghz.(802.11.b/g/n/ax).chan |
| 3b600 | 6e 65 6c 73 20 72 61 6e 67 65 20 66 72 6f 6d 20 31 2d 31 34 2e 20 4f 6e 20 35 47 68 7a 20 28 38 | nels.range.from.1-14..On.5Ghz.(8 |
| 3b620 | 30 32 2e 31 31 20 61 2f 68 2f 6a 2f 6e 2f 61 63 29 20 63 68 61 6e 6e 65 6c 73 20 61 76 61 69 6c | 02.11.a/h/j/n/ac).channels.avail |
| 3b640 | 61 62 6c 65 20 61 72 65 20 30 2c 20 33 34 20 74 6f 20 31 37 37 2e 20 4f 6e 20 36 47 48 7a 20 28 | able.are.0,.34.to.177..On.6GHz.( |
| 3b660 | 38 30 32 2e 31 31 20 61 78 29 20 63 68 61 6e 6e 65 6c 73 20 72 61 6e 67 65 20 66 72 6f 6d 20 31 | 802.11.ax).channels.range.from.1 |
| 3b680 | 20 74 6f 20 32 33 33 2e 00 43 68 65 63 6b 20 69 66 20 74 68 65 20 49 6e 74 65 6c c2 ae 20 51 41 | .to.233..Check.if.the.Intel...QA |
| 3b6a0 | 54 20 64 65 76 69 63 65 20 69 73 20 75 70 20 61 6e 64 20 72 65 61 64 79 20 74 6f 20 64 6f 20 74 | T.device.is.up.and.ready.to.do.t |
| 3b6c0 | 68 65 20 6a 6f 62 2e 00 43 68 65 63 6b 20 73 74 61 74 75 73 00 43 68 65 63 6b 20 74 68 65 20 6d | he.job..Check.status.Check.the.m |
| 3b6e0 | 61 6e 79 20 70 61 72 61 6d 65 74 65 72 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 74 68 65 | any.parameters.available.for.the |
| 3b700 | 20 60 73 68 6f 77 20 69 70 76 36 20 72 6f 75 74 65 60 20 63 6f 6d 6d 61 6e 64 3a 00 43 68 65 63 | .`show.ipv6.route`.command:.Chec |
| 3b720 | 6b 3a 00 43 68 65 63 6b 69 6e 67 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 00 43 68 65 63 6b 73 00 43 | k:.Checking.connections.Checks.C |
| 3b740 | 68 65 63 6b 73 20 66 6f 72 20 74 68 65 20 65 78 69 73 74 65 6e 63 65 20 6f 66 20 74 68 65 20 53 | hecks.for.the.existence.of.the.S |
| 3b760 | 75 72 69 63 61 74 61 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 69 6c 65 2c 20 75 70 64 61 | uricata.configuration.file,.upda |
| 3b780 | 74 65 73 20 74 68 65 20 73 65 72 76 69 63 65 2c 20 61 6e 64 20 74 68 65 6e 20 72 65 73 74 61 72 | tes.the.service,.and.then.restar |
| 3b7a0 | 74 73 20 69 74 2e 20 49 66 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 69 6c 65 | ts.it..If.the.configuration.file |
| 3b7c0 | 20 69 73 20 6e 6f 74 20 66 6f 75 6e 64 2c 20 61 20 6d 65 73 73 61 67 65 20 69 6e 64 69 63 61 74 | .is.not.found,.a.message.indicat |
| 3b7e0 | 65 73 20 74 68 61 74 20 53 75 72 69 63 61 74 61 20 69 73 20 6e 6f 74 20 63 6f 6e 66 69 67 75 72 | es.that.Suricata.is.not.configur |
| 3b800 | 65 64 2e 00 43 68 6f 6f 73 65 20 79 6f 75 72 20 60 60 64 69 72 65 63 74 6f 72 79 60 60 20 6c 6f | ed..Choose.your.``directory``.lo |
| 3b820 | 63 61 74 69 6f 6e 20 63 61 72 65 66 75 6c 6c 79 20 6f 72 20 79 6f 75 20 77 69 6c 6c 20 6c 6f 6f | cation.carefully.or.you.will.loo |
| 3b840 | 73 65 20 74 68 65 20 63 6f 6e 74 65 6e 74 20 6f 6e 20 69 6d 61 67 65 20 75 70 67 72 61 64 65 73 | se.the.content.on.image.upgrades |
| 3b860 | 2e 20 41 6e 79 20 64 69 72 65 63 74 6f 72 79 20 75 6e 64 65 72 20 60 60 2f 63 6f 6e 66 69 67 60 | ..Any.directory.under.``/config` |
| 3b880 | 60 20 69 73 20 73 61 76 65 20 61 74 20 74 68 69 73 20 77 69 6c 6c 20 62 65 20 6d 69 67 72 61 74 | `.is.save.at.this.will.be.migrat |
| 3b8a0 | 65 64 2e 00 43 69 73 63 6f 20 43 61 74 61 6c 79 73 74 00 43 69 73 63 6f 20 61 6e 64 20 41 6c 6c | ed..Cisco.Catalyst.Cisco.and.All |
| 3b8c0 | 69 65 64 20 54 65 6c 65 73 79 6e 20 63 61 6c 6c 20 69 74 20 50 72 69 76 61 74 65 20 56 4c 41 4e | ied.Telesyn.call.it.Private.VLAN |
| 3b8e0 | 00 43 6c 61 6d 70 20 4d 53 53 20 66 6f 72 20 61 20 73 70 65 63 69 66 69 63 20 49 50 00 43 6c 61 | .Clamp.MSS.for.a.specific.IP.Cla |
| 3b900 | 73 73 20 74 72 65 61 74 6d 65 6e 74 00 43 6c 61 73 73 65 73 00 43 6c 61 73 73 6c 65 73 73 20 73 | ss.treatment.Classes.Classless.s |
| 3b920 | 74 61 74 69 63 20 72 6f 75 74 65 00 43 6c 65 61 72 20 61 6c 6c 20 42 47 50 20 65 78 74 63 6f 6d | tatic.route.Clear.all.BGP.extcom |
| 3b940 | 6d 75 6e 69 74 69 65 73 2e 00 43 6c 69 65 6e 74 00 43 6c 69 65 6e 74 20 41 64 64 72 65 73 73 20 | munities..Client.Client.Address. |
| 3b960 | 50 6f 6f 6c 73 00 43 6c 69 65 6e 74 20 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 00 43 6c 69 65 | Pools.Client.Authentication.Clie |
| 3b980 | 6e 74 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 43 6c 69 65 6e 74 20 49 50 20 50 6f 6f 6c 20 | nt.Configuration.Client.IP.Pool. |
| 3b9a0 | 41 64 76 61 6e 63 65 64 20 4f 70 74 69 6f 6e 73 00 43 6c 69 65 6e 74 20 49 50 20 61 64 64 72 65 | Advanced.Options.Client.IP.addre |
| 3b9c0 | 73 73 65 73 20 77 69 6c 6c 20 62 65 20 70 72 6f 76 69 64 65 64 20 66 72 6f 6d 20 70 6f 6f 6c 20 | sses.will.be.provided.from.pool. |
| 3b9e0 | 60 31 39 32 2e 30 2e 32 2e 30 2f 32 35 60 00 43 6c 69 65 6e 74 20 53 69 64 65 00 43 6c 69 65 6e | `192.0.2.0/25`.Client.Side.Clien |
| 3ba00 | 74 20 53 69 64 65 20 3a 00 43 6c 69 65 6e 74 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 43 6c | t.Side.:.Client.configuration.Cl |
| 3ba20 | 69 65 6e 74 20 64 6f 6d 61 69 6e 20 6e 61 6d 65 00 43 6c 69 65 6e 74 20 64 6f 6d 61 69 6e 20 73 | ient.domain.name.Client.domain.s |
| 3ba40 | 65 61 72 63 68 00 43 6c 69 65 6e 74 20 69 73 6f 6c 61 74 69 6f 6e 20 63 61 6e 20 62 65 20 75 73 | earch.Client.isolation.can.be.us |
| 3ba60 | 65 64 20 74 6f 20 70 72 65 76 65 6e 74 20 6c 6f 77 2d 6c 65 76 65 6c 20 62 72 69 64 67 69 6e 67 | ed.to.prevent.low-level.bridging |
| 3ba80 | 20 6f 66 20 66 72 61 6d 65 73 20 62 65 74 77 65 65 6e 20 61 73 73 6f 63 69 61 74 65 64 20 73 74 | .of.frames.between.associated.st |
| 3baa0 | 61 74 69 6f 6e 73 20 69 6e 20 74 68 65 20 42 53 53 2e 00 43 6c 69 65 6e 74 3a 00 43 6c 69 65 6e | ations.in.the.BSS..Client:.Clien |
| 3bac0 | 74 73 20 61 72 65 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 74 68 65 20 43 4e 20 66 69 65 6c | ts.are.identified.by.the.CN.fiel |
| 3bae0 | 64 20 6f 66 20 74 68 65 69 72 20 78 2e 35 30 39 20 63 65 72 74 69 66 69 63 61 74 65 73 2c 20 69 | d.of.their.x.509.certificates,.i |
| 3bb00 | 6e 20 74 68 69 73 20 65 78 61 6d 70 6c 65 20 74 68 65 20 43 4e 20 69 73 20 60 60 63 6c 69 65 6e | n.this.example.the.CN.is.``clien |
| 3bb20 | 74 30 60 60 3a 00 43 6c 69 65 6e 74 73 20 72 65 63 65 69 76 69 6e 67 20 61 64 76 65 72 74 69 73 | t0``:.Clients.receiving.advertis |
| 3bb40 | 65 20 6d 65 73 73 61 67 65 73 20 66 72 6f 6d 20 6d 75 6c 74 69 70 6c 65 20 73 65 72 76 65 72 73 | e.messages.from.multiple.servers |
| 3bb60 | 20 63 68 6f 6f 73 65 20 74 68 65 20 73 65 72 76 65 72 20 77 69 74 68 20 74 68 65 20 68 69 67 68 | .choose.the.server.with.the.high |
| 3bb80 | 65 73 74 20 70 72 65 66 65 72 65 6e 63 65 20 76 61 6c 75 65 2e 20 54 68 65 20 72 61 6e 67 65 20 | est.preference.value..The.range. |
| 3bba0 | 66 6f 72 20 74 68 69 73 20 76 61 6c 75 65 20 69 73 20 60 60 30 2e 2e 2e 32 35 35 60 60 2e 00 43 | for.this.value.is.``0...255``..C |
| 3bbc0 | 6c 6f 63 6b 20 64 61 65 6d 6f 6e 00 43 6f 6d 6d 61 6e 64 20 63 6f 6d 70 6c 65 74 69 6f 6e 20 63 | lock.daemon.Command.completion.c |
| 3bbe0 | 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 6c 69 73 74 20 61 76 61 69 6c 61 62 6c 65 20 74 69 6d | an.be.used.to.list.available.tim |
| 3bc00 | 65 20 7a 6f 6e 65 73 2e 20 54 68 65 20 61 64 6a 75 73 74 6d 65 6e 74 20 66 6f 72 20 64 61 79 6c | e.zones..The.adjustment.for.dayl |
| 3bc20 | 69 67 68 74 20 74 69 6d 65 20 77 69 6c 6c 20 74 61 6b 65 20 70 6c 61 63 65 20 61 75 74 6f 6d 61 | ight.time.will.take.place.automa |
| 3bc40 | 74 69 63 61 6c 6c 79 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 74 69 6d 65 20 6f 66 20 79 65 61 | tically.based.on.the.time.of.yea |
| 3bc60 | 72 2e 00 43 6f 6d 6d 61 6e 64 20 66 6f 72 20 64 69 73 61 62 6c 69 6e 67 20 61 20 72 75 6c 65 20 | r..Command.for.disabling.a.rule. |
| 3bc80 | 62 75 74 20 6b 65 65 70 20 69 74 20 69 6e 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e | but.keep.it.in.the.configuration |
| 3bca0 | 2e 00 43 6f 6d 6d 61 6e 64 20 73 68 6f 75 6c 64 20 70 72 6f 62 61 62 6c 79 20 62 65 20 65 78 74 | ..Command.should.probably.be.ext |
| 3bcc0 | 65 6e 64 65 64 20 74 6f 20 6c 69 73 74 20 61 6c 73 6f 20 74 68 65 20 72 65 61 6c 20 69 6e 74 65 | ended.to.list.also.the.real.inte |
| 3bce0 | 72 66 61 63 65 73 20 61 73 73 69 67 6e 65 64 20 74 6f 20 74 68 69 73 20 6f 6e 65 20 56 52 46 20 | rfaces.assigned.to.this.one.VRF. |
| 3bd00 | 74 6f 20 67 65 74 20 61 20 62 65 74 74 65 72 20 6f 76 65 72 76 69 65 77 2e 00 43 6f 6d 6d 61 6e | to.get.a.better.overview..Comman |
| 3bd20 | 64 20 75 73 65 64 20 74 6f 20 75 70 64 61 74 65 20 47 65 6f 49 50 20 64 61 74 61 62 61 73 65 20 | d.used.to.update.GeoIP.database. |
| 3bd40 | 61 6e 64 20 66 69 72 65 77 61 6c 6c 20 73 65 74 73 2e 00 43 6f 6d 6d 61 6e 64 73 00 43 6f 6d 6d | and.firewall.sets..Commands.Comm |
| 3bd60 | 61 6e 64 73 20 75 73 65 64 20 66 6f 72 20 74 68 69 73 20 74 61 73 6b 20 61 72 65 3a 00 43 6f 6d | ands.used.for.this.task.are:.Com |
| 3bd80 | 6d 6f 6e 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2c 20 76 61 6c 69 64 20 66 6f 72 20 62 6f 74 | mon.configuration,.valid.for.bot |
| 3bda0 | 68 20 70 72 69 6d 61 72 79 20 61 6e 64 20 73 65 63 6f 6e 64 61 72 79 20 6e 6f 64 65 2e 00 43 6f | h.primary.and.secondary.node..Co |
| 3bdc0 | 6d 6d 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 43 6f 6d | mmon.interface.configuration.Com |
| 3bde0 | 6d 6f 6e 20 70 61 72 61 6d 65 74 65 72 73 00 43 6f 6d 70 72 65 73 73 69 6f 6e 20 69 73 20 67 65 | mon.parameters.Compression.is.ge |
| 3be00 | 6e 65 72 61 6c 6c 79 20 6e 6f 74 20 72 65 63 6f 6d 6d 65 6e 64 65 64 2e 20 56 50 4e 20 74 75 6e | nerally.not.recommended..VPN.tun |
| 3be20 | 6e 65 6c 73 20 77 68 69 63 68 20 75 73 65 20 63 6f 6d 70 72 65 73 73 69 6f 6e 20 61 72 65 20 73 | nels.which.use.compression.are.s |
| 3be40 | 75 73 63 65 70 74 69 62 6c 65 20 74 6f 20 74 68 65 20 56 4f 52 41 4c 43 45 20 61 74 74 61 63 6b | usceptible.to.the.VORALCE.attack |
| 3be60 | 20 76 65 63 74 6f 72 2e 20 45 6e 61 62 6c 65 20 63 6f 6d 70 72 65 73 73 69 6f 6e 20 69 66 20 6e | .vector..Enable.compression.if.n |
| 3be80 | 65 65 64 65 64 2e 00 43 6f 6e 63 6c 75 73 69 6f 6e 00 43 6f 6e 66 65 64 65 72 61 74 69 6f 6e 20 | eeded..Conclusion.Confederation. |
| 3bea0 | 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 43 6f 6e 66 69 64 65 6e 74 69 61 6c 69 74 79 20 e2 80 | Configuration.Confidentiality... |
| 3bec0 | 93 20 45 6e 63 72 79 70 74 69 6f 6e 20 6f 66 20 70 61 63 6b 65 74 73 20 74 6f 20 70 72 65 76 65 | ..Encryption.of.packets.to.preve |
| 3bee0 | 6e 74 20 73 6e 6f 6f 70 69 6e 67 20 62 79 20 61 6e 20 75 6e 61 75 74 68 6f 72 69 7a 65 64 20 73 | nt.snooping.by.an.unauthorized.s |
| 3bf00 | 6f 75 72 63 65 2e 00 43 6f 6e 66 69 67 20 53 79 6e 63 00 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e | ource..Config.Sync.Configuration |
| 3bf20 | 00 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 45 78 61 6d 70 6c 65 00 43 6f 6e 66 69 67 75 72 61 | .Configuration.Example.Configura |
| 3bf40 | 74 69 6f 6e 20 45 78 61 6d 70 6c 65 73 00 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 47 75 69 64 | tion.Examples.Configuration.Guid |
| 3bf60 | 65 00 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 4f 70 74 69 6f 6e 73 00 43 6f 6e 66 69 67 75 72 | e.Configuration.Options.Configur |
| 3bf80 | 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 73 20 63 6f 76 65 72 65 64 20 69 6e 20 74 68 69 73 20 73 | ation.commands.covered.in.this.s |
| 3bfa0 | 65 63 74 69 6f 6e 3a 00 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 73 20 66 | ection:.Configuration.commands.f |
| 3bfc0 | 6f 72 20 74 68 65 20 70 72 69 76 61 74 65 20 61 6e 64 20 70 75 62 6c 69 63 20 6b 65 79 20 77 69 | or.the.private.and.public.key.wi |
| 3bfe0 | 6c 6c 20 62 65 20 64 69 73 70 6c 61 79 65 64 20 6f 6e 20 74 68 65 20 73 63 72 65 65 6e 20 77 68 | ll.be.displayed.on.the.screen.wh |
| 3c000 | 69 63 68 20 6e 65 65 64 73 20 74 6f 20 62 65 20 73 65 74 20 6f 6e 20 74 68 65 20 72 6f 75 74 65 | ich.needs.to.be.set.on.the.route |
| 3c020 | 72 20 66 69 72 73 74 2e 20 4e 6f 74 65 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 77 69 74 68 20 74 | r.first..Note.the.command.with.t |
| 3c040 | 68 65 20 70 75 62 6c 69 63 20 6b 65 79 20 28 73 65 74 20 70 6b 69 20 6b 65 79 2d 70 61 69 72 20 | he.public.key.(set.pki.key-pair. |
| 3c060 | 69 70 73 65 63 2d 4c 45 46 54 20 70 75 62 6c 69 63 20 6b 65 79 20 27 4d 49 49 42 49 6a 41 4e 42 | ipsec-LEFT.public.key.'MIIBIjANB |
| 3c080 | 67 6b 71 68 2e 2e 2e 27 29 2e 20 54 68 65 6e 20 64 6f 20 74 68 65 20 73 61 6d 65 20 6f 6e 20 74 | gkqh...')..Then.do.the.same.on.t |
| 3c0a0 | 68 65 20 6f 70 70 6f 73 69 74 65 20 72 6f 75 74 65 72 3a 00 43 6f 6e 66 69 67 75 72 61 74 69 6f | he.opposite.router:.Configuratio |
| 3c0c0 | 6e 20 63 6f 6d 6d 61 6e 64 73 20 77 69 6c 6c 20 64 69 73 70 6c 61 79 2e 20 4e 6f 74 65 20 74 68 | n.commands.will.display..Note.th |
| 3c0e0 | 65 20 63 6f 6d 6d 61 6e 64 20 77 69 74 68 20 74 68 65 20 70 75 62 6c 69 63 20 6b 65 79 20 28 73 | e.command.with.the.public.key.(s |
| 3c100 | 65 74 20 70 6b 69 20 6b 65 79 2d 70 61 69 72 20 69 70 73 65 63 2d 4c 45 46 54 20 70 75 62 6c 69 | et.pki.key-pair.ipsec-LEFT.publi |
| 3c120 | 63 20 6b 65 79 20 27 4d 49 49 42 49 6a 41 4e 42 67 6b 71 68 2e 2e 2e 27 29 2e 20 54 68 65 6e 20 | c.key.'MIIBIjANBgkqh...')..Then. |
| 3c140 | 64 6f 20 74 68 65 20 73 61 6d 65 20 6f 6e 20 74 68 65 20 6f 70 70 6f 73 69 74 65 20 72 6f 75 74 | do.the.same.on.the.opposite.rout |
| 3c160 | 65 72 3a 00 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 65 78 61 6d 70 6c 65 3a 00 43 6f 6e 66 69 | er:.Configuration.example:.Confi |
| 3c180 | 67 75 72 61 74 69 6f 6e 20 66 6f 72 20 74 68 65 73 65 20 65 78 70 6f 72 74 65 64 20 72 6f 75 74 | guration.for.these.exported.rout |
| 3c1a0 | 65 73 20 6d 75 73 74 2c 20 61 74 20 61 20 6d 69 6e 69 6d 75 6d 2c 20 73 70 65 63 69 66 79 20 74 | es.must,.at.a.minimum,.specify.t |
| 3c1c0 | 68 65 73 65 20 74 77 6f 20 70 61 72 61 6d 65 74 65 72 73 2e 00 43 6f 6e 66 69 67 75 72 61 74 69 | hese.two.parameters..Configurati |
| 3c1e0 | 6f 6e 20 6f 66 20 3a 72 65 66 3a 60 72 6f 75 74 69 6e 67 2d 73 74 61 74 69 63 60 00 43 6f 6e 66 | on.of.:ref:`routing-static`.Conf |
| 3c200 | 69 67 75 72 61 74 69 6f 6e 20 6f 66 20 61 20 44 48 43 50 20 48 41 20 70 61 69 72 3a 00 43 6f 6e | iguration.of.a.DHCP.HA.pair:.Con |
| 3c220 | 66 69 67 75 72 61 74 69 6f 6e 20 6f 66 20 61 20 44 48 43 50 20 66 61 69 6c 6f 76 65 72 20 70 61 | figuration.of.a.DHCP.failover.pa |
| 3c240 | 69 72 00 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 66 20 72 6f 75 74 65 20 6c 65 61 6b 69 6e | ir.Configuration.of.route.leakin |
| 3c260 | 67 20 62 65 74 77 65 65 6e 20 61 20 75 6e 69 63 61 73 74 20 56 52 46 20 52 49 42 20 61 6e 64 20 | g.between.a.unicast.VRF.RIB.and. |
| 3c280 | 74 68 65 20 56 50 4e 20 53 41 46 49 20 52 49 42 20 6f 66 20 74 68 65 20 64 65 66 61 75 6c 74 20 | the.VPN.SAFI.RIB.of.the.default. |
| 3c2a0 | 56 52 46 20 69 73 20 61 63 63 6f 6d 70 6c 69 73 68 65 64 20 76 69 61 20 63 6f 6d 6d 61 6e 64 73 | VRF.is.accomplished.via.commands |
| 3c2c0 | 20 69 6e 20 74 68 65 20 63 6f 6e 74 65 78 74 20 6f 66 20 61 20 56 52 46 20 61 64 64 72 65 73 73 | .in.the.context.of.a.VRF.address |
| 3c2e0 | 2d 66 61 6d 69 6c 79 2e 00 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 66 20 74 68 65 20 6c 6f | -family..Configuration.of.the.lo |
| 3c300 | 67 67 69 6e 67 20 66 69 6c 65 2e 00 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 72 65 73 79 6e 63 | gging.file..Configuration.resync |
| 3c320 | 68 72 6f 6e 69 7a 61 74 69 6f 6e 2e 20 57 69 74 68 20 74 68 65 20 63 75 72 72 65 6e 74 20 69 6d | hronization..With.the.current.im |
| 3c340 | 70 6c 65 6d 65 6e 74 61 74 69 6f 6e 20 6f 66 20 60 73 65 72 76 69 63 65 20 63 6f 6e 66 69 67 2d | plementation.of.`service.config- |
| 3c360 | 73 79 6e 63 60 2c 20 74 68 65 20 73 65 63 6f 6e 64 61 72 79 20 6e 6f 64 65 20 6d 75 73 74 20 62 | sync`,.the.secondary.node.must.b |
| 3c380 | 65 20 6f 6e 6c 69 6e 65 2e 00 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 73 79 6e 63 68 72 6f 6e | e.online..Configuration.synchron |
| 3c3a0 | 69 7a 61 74 69 6f 6e 20 28 63 6f 6e 66 69 67 20 73 79 6e 63 29 20 69 73 20 61 20 66 65 61 74 75 | ization.(config.sync).is.a.featu |
| 3c3c0 | 72 65 20 6f 66 20 56 79 4f 53 20 74 68 61 74 20 70 65 72 6d 69 74 73 20 73 79 6e 63 68 72 6f 6e | re.of.VyOS.that.permits.synchron |
| 3c3e0 | 69 7a 61 74 69 6f 6e 20 6f 66 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 66 20 | ization.of.the.configuration.of. |
| 3c400 | 6f 6e 65 20 56 79 4f 53 20 72 6f 75 74 65 72 20 74 6f 20 61 6e 6f 74 68 65 72 20 69 6e 20 61 20 | one.VyOS.router.to.another.in.a. |
| 3c420 | 6e 65 74 77 6f 72 6b 2e 00 43 6f 6e 66 69 67 75 72 65 00 43 6f 6e 66 69 67 75 72 65 20 3a 61 62 | network..Configure.Configure.:ab |
| 3c440 | 62 72 3a 60 4d 54 55 20 28 4d 61 78 69 6d 75 6d 20 54 72 61 6e 73 6d 69 73 73 69 6f 6e 20 55 6e | br:`MTU.(Maximum.Transmission.Un |
| 3c460 | 69 74 29 60 20 6f 6e 20 67 69 76 65 6e 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 2e 20 49 74 20 | it)`.on.given.`<interface>`..It. |
| 3c480 | 69 73 20 74 68 65 20 73 69 7a 65 20 28 69 6e 20 62 79 74 65 73 29 20 6f 66 20 74 68 65 20 6c 61 | is.the.size.(in.bytes).of.the.la |
| 3c4a0 | 72 67 65 73 74 20 65 74 68 65 72 6e 65 74 20 66 72 61 6d 65 20 73 65 6e 74 20 6f 6e 20 74 68 69 | rgest.ethernet.frame.sent.on.thi |
| 3c4c0 | 73 20 6c 69 6e 6b 2e 00 43 6f 6e 66 69 67 75 72 65 20 42 46 44 00 43 6f 6e 66 69 67 75 72 65 20 | s.link..Configure.BFD.Configure. |
| 3c4e0 | 44 4e 53 20 60 3c 72 65 63 6f 72 64 3e 60 20 77 68 69 63 68 20 73 68 6f 75 6c 64 20 62 65 20 75 | DNS.`<record>`.which.should.be.u |
| 3c500 | 70 64 61 74 65 64 2e 20 54 68 69 73 20 63 61 6e 20 62 65 20 73 65 74 20 6d 75 6c 74 69 70 6c 65 | pdated..This.can.be.set.multiple |
| 3c520 | 20 74 69 6d 65 73 2e 00 43 6f 6e 66 69 67 75 72 65 20 44 4e 53 20 60 3c 7a 6f 6e 65 3e 60 20 74 | .times..Configure.DNS.`<zone>`.t |
| 3c540 | 6f 20 62 65 20 75 70 64 61 74 65 64 2e 00 43 6f 6e 66 69 67 75 72 65 20 47 45 4e 45 56 45 20 74 | o.be.updated..Configure.GENEVE.t |
| 3c560 | 75 6e 6e 65 6c 20 66 61 72 20 65 6e 64 2f 72 65 6d 6f 74 65 20 74 75 6e 6e 65 6c 20 65 6e 64 70 | unnel.far.end/remote.tunnel.endp |
| 3c580 | 6f 69 6e 74 2e 00 43 6f 6e 66 69 67 75 72 65 20 47 72 61 63 65 66 75 6c 20 52 65 73 74 61 72 74 | oint..Configure.Graceful.Restart |
| 3c5a0 | 20 3a 72 66 63 3a 60 33 36 32 33 60 20 68 65 6c 70 65 72 20 73 75 70 70 6f 72 74 2e 20 42 79 20 | .:rfc:`3623`.helper.support..By. |
| 3c5c0 | 64 65 66 61 75 6c 74 2c 20 68 65 6c 70 65 72 20 73 75 70 70 6f 72 74 20 69 73 20 64 69 73 61 62 | default,.helper.support.is.disab |
| 3c5e0 | 6c 65 64 20 66 6f 72 20 61 6c 6c 20 6e 65 69 67 68 62 6f 75 72 73 2e 20 54 68 69 73 20 63 6f 6e | led.for.all.neighbours..This.con |
| 3c600 | 66 69 67 20 65 6e 61 62 6c 65 73 2f 64 69 73 61 62 6c 65 73 20 68 65 6c 70 65 72 20 73 75 70 70 | fig.enables/disables.helper.supp |
| 3c620 | 6f 72 74 20 6f 6e 20 74 68 69 73 20 72 6f 75 74 65 72 20 66 6f 72 20 61 6c 6c 20 6e 65 69 67 68 | ort.on.this.router.for.all.neigh |
| 3c640 | 62 6f 75 72 73 2e 00 43 6f 6e 66 69 67 75 72 65 20 47 72 61 63 65 66 75 6c 20 52 65 73 74 61 72 | bours..Configure.Graceful.Restar |
| 3c660 | 74 20 3a 72 66 63 3a 60 33 36 32 33 60 20 72 65 73 74 61 72 74 69 6e 67 20 73 75 70 70 6f 72 74 | t.:rfc:`3623`.restarting.support |
| 3c680 | 2e 20 57 68 65 6e 20 65 6e 61 62 6c 65 64 2c 20 74 68 65 20 64 65 66 61 75 6c 74 20 67 72 61 63 | ..When.enabled,.the.default.grac |
| 3c6a0 | 65 20 70 65 72 69 6f 64 20 69 73 20 31 32 30 20 73 65 63 6f 6e 64 73 2e 00 43 6f 6e 66 69 67 75 | e.period.is.120.seconds..Configu |
| 3c6c0 | 72 65 20 49 43 4d 50 20 74 68 72 65 73 68 6f 6c 64 20 70 61 72 61 6d 65 74 65 72 73 2e 00 43 6f | re.ICMP.threshold.parameters..Co |
| 3c6e0 | 6e 66 69 67 75 72 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 44 48 43 50 20 60 | nfigure.IP.address.of.the.DHCP.` |
| 3c700 | 3c 73 65 72 76 65 72 3e 60 20 77 68 69 63 68 20 77 69 6c 6c 20 68 61 6e 64 6c 65 20 74 68 65 20 | <server>`.which.will.handle.the. |
| 3c720 | 72 65 6c 61 79 65 64 20 70 61 63 6b 65 74 73 2e 00 43 6f 6e 66 69 67 75 72 65 20 52 41 44 49 55 | relayed.packets..Configure.RADIU |
| 3c740 | 53 20 60 3c 73 65 72 76 65 72 3e 60 20 61 6e 64 20 69 74 73 20 72 65 71 75 69 72 65 64 20 70 6f | S.`<server>`.and.its.required.po |
| 3c760 | 72 74 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 72 65 71 75 65 73 74 73 2e 00 | rt.for.authentication.requests.. |
| 3c780 | 43 6f 6e 66 69 67 75 72 65 20 52 41 44 49 55 53 20 60 3c 73 65 72 76 65 72 3e 60 20 61 6e 64 20 | Configure.RADIUS.`<server>`.and. |
| 3c7a0 | 69 74 73 20 72 65 71 75 69 72 65 64 20 73 68 61 72 65 64 20 60 3c 73 65 63 72 65 74 3e 60 20 66 | its.required.shared.`<secret>`.f |
| 3c7c0 | 6f 72 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6e 67 20 77 69 74 68 20 74 68 65 20 52 41 44 49 55 53 | or.communicating.with.the.RADIUS |
| 3c7e0 | 20 73 65 72 76 65 72 2e 00 43 6f 6e 66 69 67 75 72 65 20 53 4e 41 54 20 72 75 6c 65 20 28 34 30 | .server..Configure.SNAT.rule.(40 |
| 3c800 | 29 20 74 6f 20 6f 6e 6c 79 20 4e 41 54 20 70 61 63 6b 65 74 73 20 77 69 74 68 20 61 20 64 65 73 | ).to.only.NAT.packets.with.a.des |
| 3c820 | 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 6f 66 20 31 39 32 2e 30 2e 32 2e 31 2e 00 43 | tination.address.of.192.0.2.1..C |
| 3c840 | 6f 6e 66 69 67 75 72 65 20 54 43 50 20 74 68 72 65 73 68 6f 6c 64 20 70 61 72 61 6d 65 74 65 72 | onfigure.TCP.threshold.parameter |
| 3c860 | 73 00 43 6f 6e 66 69 67 75 72 65 20 55 44 50 20 74 68 72 65 73 68 6f 6c 64 20 70 61 72 61 6d 65 | s.Configure.UDP.threshold.parame |
| 3c880 | 74 65 72 73 00 43 6f 6e 66 69 67 75 72 65 20 60 3c 6d 65 73 73 61 67 65 3e 60 20 77 68 69 63 68 | ters.Configure.`<message>`.which |
| 3c8a0 | 20 69 73 20 73 68 6f 77 6e 20 61 66 74 65 72 20 75 73 65 72 20 68 61 73 20 6c 6f 67 67 65 64 20 | .is.shown.after.user.has.logged. |
| 3c8c0 | 69 6e 20 74 6f 20 74 68 65 20 73 79 73 74 65 6d 2e 00 43 6f 6e 66 69 67 75 72 65 20 60 3c 6d 65 | in.to.the.system..Configure.`<me |
| 3c8e0 | 73 73 61 67 65 3e 60 20 77 68 69 63 68 20 69 73 20 73 68 6f 77 6e 20 64 75 72 69 6e 67 20 53 53 | ssage>`.which.is.shown.during.SS |
| 3c900 | 48 20 63 6f 6e 6e 65 63 74 20 61 6e 64 20 62 65 66 6f 72 65 20 61 20 75 73 65 72 20 69 73 20 6c | H.connect.and.before.a.user.is.l |
| 3c920 | 6f 67 67 65 64 20 69 6e 2e 00 43 6f 6e 66 69 67 75 72 65 20 60 3c 70 61 73 73 77 6f 72 64 3e 60 | ogged.in..Configure.`<password>` |
| 3c940 | 20 75 73 65 64 20 77 68 65 6e 20 61 75 74 68 65 6e 74 69 63 61 74 69 6e 67 20 74 68 65 20 75 70 | .used.when.authenticating.the.up |
| 3c960 | 64 61 74 65 20 72 65 71 75 65 73 74 20 66 6f 72 20 44 79 6e 44 4e 53 20 73 65 72 76 69 63 65 20 | date.request.for.DynDNS.service. |
| 3c980 | 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 60 3c 73 65 72 76 69 63 65 2d 6e 61 6d 65 3e 60 2e 00 | identified.by.`<service-name>`.. |
| 3c9a0 | 43 6f 6e 66 69 67 75 72 65 20 60 3c 70 61 73 73 77 6f 72 64 3e 60 20 75 73 65 64 20 77 68 65 6e | Configure.`<password>`.used.when |
| 3c9c0 | 20 61 75 74 68 65 6e 74 69 63 61 74 69 6e 67 20 74 68 65 20 75 70 64 61 74 65 20 72 65 71 75 65 | .authenticating.the.update.reque |
| 3c9e0 | 73 74 20 66 6f 72 20 44 79 6e 44 4e 53 20 73 65 72 76 69 63 65 20 69 64 65 6e 74 69 66 69 65 64 | st.for.DynDNS.service.identified |
| 3ca00 | 20 62 79 20 60 3c 73 65 72 76 69 63 65 3e 60 2e 00 43 6f 6e 66 69 67 75 72 65 20 60 3c 75 73 65 | .by.`<service>`..Configure.`<use |
| 3ca20 | 72 6e 61 6d 65 3e 60 20 75 73 65 64 20 77 68 65 6e 20 61 75 74 68 65 6e 74 69 63 61 74 69 6e 67 | rname>`.used.when.authenticating |
| 3ca40 | 20 74 68 65 20 75 70 64 61 74 65 20 72 65 71 75 65 73 74 20 66 6f 72 20 44 79 6e 44 4e 53 20 73 | .the.update.request.for.DynDNS.s |
| 3ca60 | 65 72 76 69 63 65 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 60 3c 73 65 72 76 69 63 65 2d 6e | ervice.identified.by.`<service-n |
| 3ca80 | 61 6d 65 3e 60 2e 00 43 6f 6e 66 69 67 75 72 65 20 60 3c 75 73 65 72 6e 61 6d 65 3e 60 20 75 73 | ame>`..Configure.`<username>`.us |
| 3caa0 | 65 64 20 77 68 65 6e 20 61 75 74 68 65 6e 74 69 63 61 74 69 6e 67 20 74 68 65 20 75 70 64 61 74 | ed.when.authenticating.the.updat |
| 3cac0 | 65 20 72 65 71 75 65 73 74 20 66 6f 72 20 44 79 6e 44 4e 53 20 73 65 72 76 69 63 65 20 69 64 65 | e.request.for.DynDNS.service.ide |
| 3cae0 | 6e 74 69 66 69 65 64 20 62 79 20 60 3c 73 65 72 76 69 63 65 3e 60 2e 20 46 6f 72 20 4e 61 6d 65 | ntified.by.`<service>`..For.Name |
| 3cb00 | 63 68 65 61 70 2c 20 73 65 74 20 74 68 65 20 3c 64 6f 6d 61 69 6e 3e 20 79 6f 75 20 77 69 73 68 | cheap,.set.the.<domain>.you.wish |
| 3cb20 | 20 74 6f 20 75 70 64 61 74 65 2e 00 43 6f 6e 66 69 67 75 72 65 20 61 20 55 52 4c 20 74 68 61 74 | .to.update..Configure.a.URL.that |
| 3cb40 | 20 63 6f 6e 74 61 69 6e 73 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 69 6d 61 67 | .contains.information.about.imag |
| 3cb60 | 65 73 2e 00 43 6f 6e 66 69 67 75 72 65 20 61 20 73 46 6c 6f 77 20 61 67 65 6e 74 20 61 64 64 72 | es..Configure.a.sFlow.agent.addr |
| 3cb80 | 65 73 73 2e 20 49 74 20 63 61 6e 20 62 65 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 61 64 64 72 | ess..It.can.be.IPv4.or.IPv6.addr |
| 3cba0 | 65 73 73 2c 20 62 75 74 20 79 6f 75 20 6d 75 73 74 20 73 65 74 20 74 68 65 20 73 61 6d 65 20 70 | ess,.but.you.must.set.the.same.p |
| 3cbc0 | 72 6f 74 6f 63 6f 6c 2c 20 77 68 69 63 68 20 69 73 20 75 73 65 64 20 66 6f 72 20 73 46 6c 6f 77 | rotocol,.which.is.used.for.sFlow |
| 3cbe0 | 20 63 6f 6c 6c 65 63 74 6f 72 20 61 64 64 72 65 73 73 65 73 2e 20 42 79 20 64 65 66 61 75 6c 74 | .collector.addresses..By.default |
| 3cc00 | 2c 20 75 73 69 6e 67 20 72 6f 75 74 65 72 2d 69 64 20 66 72 6f 6d 20 42 47 50 20 6f 72 20 4f 53 | ,.using.router-id.from.BGP.or.OS |
| 3cc20 | 50 46 20 70 72 6f 74 6f 63 6f 6c 2c 20 6f 72 20 74 68 65 20 70 72 69 6d 61 72 79 20 49 50 20 61 | PF.protocol,.or.the.primary.IP.a |
| 3cc40 | 64 64 72 65 73 73 20 66 72 6f 6d 20 74 68 65 20 66 69 72 73 74 20 69 6e 74 65 72 66 61 63 65 2e | ddress.from.the.first.interface. |
| 3cc60 | 00 43 6f 6e 66 69 67 75 72 65 20 61 20 73 74 61 74 69 63 20 72 6f 75 74 65 20 66 6f 72 20 3c 73 | .Configure.a.static.route.for.<s |
| 3cc80 | 75 62 6e 65 74 3e 20 75 73 69 6e 67 20 67 61 74 65 77 61 79 20 3c 61 64 64 72 65 73 73 3e 20 2c | ubnet>.using.gateway.<address>., |
| 3cca0 | 20 75 73 65 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 74 6f 20 69 6e 64 65 6e 74 69 66 79 | .use.source.address.to.indentify |
| 3ccc0 | 20 74 68 65 20 70 65 65 72 20 77 68 65 6e 20 69 73 20 6d 75 6c 74 69 2d 68 6f 70 20 73 65 73 73 | .the.peer.when.is.multi-hop.sess |
| 3cce0 | 69 6f 6e 20 61 6e 64 20 74 68 65 20 67 61 74 65 77 61 79 20 61 64 64 72 65 73 73 20 61 73 20 42 | ion.and.the.gateway.address.as.B |
| 3cd00 | 46 44 20 70 65 65 72 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 2e 00 43 6f 6e | FD.peer.destination.address..Con |
| 3cd20 | 66 69 67 75 72 65 20 61 20 73 74 61 74 69 63 20 72 6f 75 74 65 20 66 6f 72 20 3c 73 75 62 6e 65 | figure.a.static.route.for.<subne |
| 3cd40 | 74 3e 20 75 73 69 6e 67 20 67 61 74 65 77 61 79 20 3c 61 64 64 72 65 73 73 3e 20 61 6e 64 20 75 | t>.using.gateway.<address>.and.u |
| 3cd60 | 73 65 20 74 68 65 20 67 61 74 65 77 61 79 20 61 64 64 72 65 73 73 20 61 73 20 42 46 44 20 70 65 | se.the.gateway.address.as.BFD.pe |
| 3cd80 | 65 72 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 2e 00 43 6f 6e 66 69 67 75 72 | er.destination.address..Configur |
| 3cda0 | 65 20 61 64 64 72 65 73 73 20 6f 66 20 4e 65 74 46 6c 6f 77 20 63 6f 6c 6c 65 63 74 6f 72 2e 20 | e.address.of.NetFlow.collector.. |
| 3cdc0 | 4e 65 74 46 6c 6f 77 20 73 65 72 76 65 72 20 61 74 20 60 3c 61 64 64 72 65 73 73 3e 60 20 63 61 | NetFlow.server.at.`<address>`.ca |
| 3cde0 | 6e 20 62 65 20 62 6f 74 68 20 6c 69 73 74 65 6e 69 6e 67 20 6f 6e 20 61 6e 20 49 50 76 34 20 6f | n.be.both.listening.on.an.IPv4.o |
| 3ce00 | 72 20 49 50 76 36 20 61 64 64 72 65 73 73 2e 00 43 6f 6e 66 69 67 75 72 65 20 61 64 64 72 65 73 | r.IPv6.address..Configure.addres |
| 3ce20 | 73 20 6f 66 20 73 46 6c 6f 77 20 63 6f 6c 6c 65 63 74 6f 72 2e 20 73 46 6c 6f 77 20 73 65 72 76 | s.of.sFlow.collector..sFlow.serv |
| 3ce40 | 65 72 20 61 74 20 3c 61 64 64 72 65 73 73 3e 20 63 61 6e 20 62 65 20 62 6f 74 68 20 6c 69 73 74 | er.at.<address>.can.be.both.list |
| 3ce60 | 65 6e 69 6e 67 20 6f 6e 20 61 6e 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 61 64 64 72 65 73 73 | ening.on.an.IPv4.or.IPv6.address |
| 3ce80 | 2e 00 43 6f 6e 66 69 67 75 72 65 20 61 64 64 72 65 73 73 20 6f 66 20 73 46 6c 6f 77 20 63 6f 6c | ..Configure.address.of.sFlow.col |
| 3cea0 | 6c 65 63 74 6f 72 2e 20 73 46 6c 6f 77 20 73 65 72 76 65 72 20 61 74 20 60 3c 61 64 64 72 65 73 | lector..sFlow.server.at.`<addres |
| 3cec0 | 73 3e 60 20 63 61 6e 20 62 65 20 61 6e 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 61 64 64 72 65 | s>`.can.be.an.IPv4.or.IPv6.addre |
| 3cee0 | 73 73 2e 20 42 75 74 20 79 6f 75 20 63 61 6e 6e 6f 74 20 65 78 70 6f 72 74 20 74 6f 20 62 6f 74 | ss..But.you.cannot.export.to.bot |
| 3cf00 | 68 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 63 6f 6c 6c 65 63 74 6f 72 73 20 61 74 20 74 68 | h.IPv4.and.IPv6.collectors.at.th |
| 3cf20 | 65 20 73 61 6d 65 20 74 69 6d 65 21 00 43 6f 6e 66 69 67 75 72 65 20 61 67 65 6e 74 20 49 50 20 | e.same.time!.Configure.agent.IP. |
| 3cf40 | 61 64 64 72 65 73 73 20 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 74 68 69 73 20 69 6e 74 | address.associated.with.this.int |
| 3cf60 | 65 72 66 61 63 65 2e 00 43 6f 6e 66 69 67 75 72 65 20 61 67 67 72 65 67 61 74 69 6f 6e 20 64 65 | erface..Configure.aggregation.de |
| 3cf80 | 6c 61 79 20 74 69 6d 65 72 20 69 6e 74 65 72 76 61 6c 2e 00 43 6f 6e 66 69 67 75 72 65 20 61 6c | lay.timer.interval..Configure.al |
| 3cfa0 | 65 72 74 20 73 63 72 69 70 74 20 74 68 61 74 20 77 69 6c 6c 20 62 65 20 65 78 65 63 75 74 65 64 | ert.script.that.will.be.executed |
| 3cfc0 | 20 77 68 65 6e 20 61 6e 20 61 74 74 61 63 6b 20 69 73 20 64 65 74 65 63 74 65 64 2e 00 43 6f 6e | .when.an.attack.is.detected..Con |
| 3cfe0 | 66 69 67 75 72 65 20 61 6e 20 61 63 63 6f 75 6e 74 69 6e 67 20 73 65 72 76 65 72 20 61 6e 64 20 | figure.an.accounting.server.and. |
| 3d000 | 65 6e 61 62 6c 65 20 61 63 63 6f 75 6e 74 69 6e 67 20 77 69 74 68 3a 00 43 6f 6e 66 69 67 75 72 | enable.accounting.with:.Configur |
| 3d020 | 65 20 61 6e 64 20 65 6e 61 62 6c 65 20 63 6f 6c 6c 65 63 74 69 6f 6e 20 6f 66 20 66 6c 6f 77 20 | e.and.enable.collection.of.flow. |
| 3d040 | 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 6f 72 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 69 64 | information.for.the.interface.id |
| 3d060 | 65 6e 74 69 66 69 65 64 20 62 79 20 3c 69 6e 74 65 72 66 61 63 65 3e 2e 00 43 6f 6e 66 69 67 75 | entified.by.<interface>..Configu |
| 3d080 | 72 65 20 61 6e 64 20 65 6e 61 62 6c 65 20 63 6f 6c 6c 65 63 74 69 6f 6e 20 6f 66 20 66 6c 6f 77 | re.and.enable.collection.of.flow |
| 3d0a0 | 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 6f 72 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 69 | .information.for.the.interface.i |
| 3d0c0 | 64 65 6e 74 69 66 69 65 64 20 62 79 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 2e 00 43 6f 6e 66 | dentified.by.`<interface>`..Conf |
| 3d0e0 | 69 67 75 72 65 20 61 75 74 6f 2d 63 68 65 63 6b 69 6e 67 20 66 6f 72 20 6e 65 77 20 69 6d 61 67 | igure.auto-checking.for.new.imag |
| 3d100 | 65 73 00 43 6f 6e 66 69 67 75 72 65 20 62 61 63 6b 65 6e 64 20 60 3c 6e 61 6d 65 3e 60 20 6d 6f | es.Configure.backend.`<name>`.mo |
| 3d120 | 64 65 20 54 43 50 20 6f 72 20 48 54 54 50 00 43 6f 6e 66 69 67 75 72 65 20 62 6f 74 68 20 72 6f | de.TCP.or.HTTP.Configure.both.ro |
| 3d140 | 75 74 65 72 73 20 28 61 20 61 6e 64 20 62 29 20 66 6f 72 20 44 48 43 50 76 36 2d 50 44 20 76 69 | uters.(a.and.b).for.DHCPv6-PD.vi |
| 3d160 | 61 20 64 75 6d 6d 79 20 69 6e 74 65 72 66 61 63 65 3a 00 43 6f 6e 66 69 67 75 72 65 20 64 69 72 | a.dummy.interface:.Configure.dir |
| 3d180 | 65 63 74 69 6f 6e 20 66 6f 72 20 70 72 6f 63 65 73 73 69 6e 67 20 74 72 61 66 66 69 63 2e 00 43 | ection.for.processing.traffic..C |
| 3d1a0 | 6f 6e 66 69 67 75 72 65 20 65 69 74 68 65 72 20 6f 6e 65 20 6f 72 20 74 77 6f 20 73 74 6f 70 20 | onfigure.either.one.or.two.stop. |
| 3d1c0 | 62 69 74 73 2e 20 54 68 69 73 20 64 65 66 61 75 6c 74 73 20 74 6f 20 6f 6e 65 20 73 74 6f 70 20 | bits..This.defaults.to.one.stop. |
| 3d1e0 | 62 69 74 73 20 69 66 20 6c 65 66 74 20 75 6e 63 6f 6e 66 69 67 75 72 65 64 2e 00 43 6f 6e 66 69 | bits.if.left.unconfigured..Confi |
| 3d200 | 67 75 72 65 20 65 69 74 68 65 72 20 73 65 76 65 6e 20 6f 72 20 65 69 67 68 74 20 64 61 74 61 20 | gure.either.seven.or.eight.data. |
| 3d220 | 62 69 74 73 2e 20 54 68 69 73 20 64 65 66 61 75 6c 74 73 20 74 6f 20 65 69 67 68 74 20 64 61 74 | bits..This.defaults.to.eight.dat |
| 3d240 | 61 20 62 69 74 73 20 69 66 20 6c 65 66 74 20 75 6e 63 6f 6e 66 69 67 75 72 65 64 2e 00 43 6f 6e | a.bits.if.left.unconfigured..Con |
| 3d260 | 66 69 67 75 72 65 20 67 65 6e 65 72 61 6c 20 74 68 72 65 73 68 6f 6c 64 20 70 61 72 61 6d 65 74 | figure.general.threshold.paramet |
| 3d280 | 65 72 73 2e 00 43 6f 6e 66 69 67 75 72 65 20 68 6f 77 20 6c 6f 6e 67 20 61 6e 20 49 50 20 28 61 | ers..Configure.how.long.an.IP.(a |
| 3d2a0 | 74 74 61 63 6b 65 72 29 20 73 68 6f 75 6c 64 20 62 65 20 6b 65 70 74 20 69 6e 20 62 6c 6f 63 6b | ttacker).should.be.kept.in.block |
| 3d2c0 | 65 64 20 73 74 61 74 65 2e 20 44 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 31 39 30 30 2e | ed.state..Default.value.is.1900. |
| 3d2e0 | 00 43 6f 6e 66 69 67 75 72 65 20 69 6e 64 69 76 69 64 75 61 6c 20 62 72 69 64 67 65 20 70 6f 72 | .Configure.individual.bridge.por |
| 3d300 | 74 20 60 3c 70 72 69 6f 72 69 74 79 3e 60 2e 00 43 6f 6e 66 69 67 75 72 65 20 69 6e 74 65 72 66 | t.`<priority>`..Configure.interf |
| 3d320 | 61 63 65 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 20 77 69 74 68 20 6f 6e 65 20 6f 72 20 6d 6f | ace.`<interface>`.with.one.or.mo |
| 3d340 | 72 65 20 69 6e 74 65 72 66 61 63 65 20 61 64 64 72 65 73 73 65 73 2e 00 43 6f 6e 66 69 67 75 72 | re.interface.addresses..Configur |
| 3d360 | 65 20 69 6e 74 65 72 66 61 63 65 2d 73 70 65 63 69 66 69 63 20 48 6f 73 74 2f 52 6f 75 74 65 72 | e.interface-specific.Host/Router |
| 3d380 | 20 62 65 68 61 76 69 6f 75 72 2e 20 49 66 20 73 65 74 2c 20 74 68 65 20 69 6e 74 65 72 66 61 63 | .behaviour..If.set,.the.interfac |
| 3d3a0 | 65 20 77 69 6c 6c 20 73 77 69 74 63 68 20 74 6f 20 68 6f 73 74 20 6d 6f 64 65 20 61 6e 64 20 49 | e.will.switch.to.host.mode.and.I |
| 3d3c0 | 50 76 36 20 66 6f 72 77 61 72 64 69 6e 67 20 77 69 6c 6c 20 62 65 20 64 69 73 61 62 6c 65 64 20 | Pv6.forwarding.will.be.disabled. |
| 3d3e0 | 6f 6e 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 2e 00 43 6f 6e 66 69 67 75 72 65 20 6c 69 73 | on.this.interface..Configure.lis |
| 3d400 | 74 65 6e 20 69 6e 74 65 72 66 61 63 65 20 66 6f 72 20 6d 69 72 72 6f 72 69 6e 67 20 74 72 61 66 | ten.interface.for.mirroring.traf |
| 3d420 | 66 69 63 2e 00 43 6f 6e 66 69 67 75 72 65 20 6c 6f 63 61 6c 20 49 50 76 34 20 61 64 64 72 65 73 | fic..Configure.local.IPv4.addres |
| 3d440 | 73 20 74 6f 20 6c 69 73 74 65 6e 20 66 6f 72 20 73 66 6c 6f 77 2e 00 43 6f 6e 66 69 67 75 72 65 | s.to.listen.for.sflow..Configure |
| 3d460 | 20 6d 61 78 69 6d 75 6d 20 61 6c 6c 6f 77 65 64 20 63 6c 6f 63 6b 20 73 6c 6f 70 20 69 6e 20 73 | .maximum.allowed.clock.slop.in.s |
| 3d480 | 65 63 6f 6e 64 73 20 28 64 65 66 61 75 6c 74 3a 20 31 38 30 29 00 43 6f 6e 66 69 67 75 72 65 20 | econds.(default:.180).Configure. |
| 3d4a0 | 6e 65 77 20 53 4e 4d 50 20 75 73 65 72 20 6e 61 6d 65 64 20 22 76 79 6f 73 22 20 77 69 74 68 20 | new.SNMP.user.named."vyos".with. |
| 3d4c0 | 70 61 73 73 77 6f 72 64 20 22 76 79 6f 73 31 32 33 34 35 36 37 38 22 00 43 6f 6e 66 69 67 75 72 | password."vyos12345678".Configur |
| 3d4e0 | 65 20 6e 65 78 74 2d 68 6f 70 20 60 3c 61 64 64 72 65 73 73 3e 60 20 61 6e 64 20 60 3c 74 61 72 | e.next-hop.`<address>`.and.`<tar |
| 3d500 | 67 65 74 2d 61 64 64 72 65 73 73 3e 60 20 66 6f 72 20 61 6e 20 49 50 76 34 20 73 74 61 74 69 63 | get-address>`.for.an.IPv4.static |
| 3d520 | 20 72 6f 75 74 65 2e 20 53 70 65 63 69 66 79 20 74 68 65 20 74 61 72 67 65 74 20 49 50 76 34 20 | .route..Specify.the.target.IPv4. |
| 3d540 | 61 64 64 72 65 73 73 20 66 6f 72 20 68 65 61 6c 74 68 20 63 68 65 63 6b 69 6e 67 2e 00 43 6f 6e | address.for.health.checking..Con |
| 3d560 | 66 69 67 75 72 65 20 6e 65 78 74 2d 68 6f 70 20 60 3c 61 64 64 72 65 73 73 3e 60 20 66 6f 72 20 | figure.next-hop.`<address>`.for. |
| 3d580 | 61 6e 20 49 50 76 34 20 73 74 61 74 69 63 20 72 6f 75 74 65 2e 20 4d 75 6c 74 69 70 6c 65 20 73 | an.IPv4.static.route..Multiple.s |
| 3d5a0 | 74 61 74 69 63 20 72 6f 75 74 65 73 20 63 61 6e 20 62 65 20 63 72 65 61 74 65 64 2e 00 43 6f 6e | tatic.routes.can.be.created..Con |
| 3d5c0 | 66 69 67 75 72 65 20 6e 65 78 74 2d 68 6f 70 20 60 3c 61 64 64 72 65 73 73 3e 60 20 66 6f 72 20 | figure.next-hop.`<address>`.for. |
| 3d5e0 | 61 6e 20 49 50 76 36 20 73 74 61 74 69 63 20 72 6f 75 74 65 2e 20 4d 75 6c 74 69 70 6c 65 20 73 | an.IPv6.static.route..Multiple.s |
| 3d600 | 74 61 74 69 63 20 72 6f 75 74 65 73 20 63 61 6e 20 62 65 20 63 72 65 61 74 65 64 2e 00 43 6f 6e | tatic.routes.can.be.created..Con |
| 3d620 | 66 69 67 75 72 65 20 6e 75 6d 62 65 72 20 6f 66 20 64 69 67 69 74 73 20 74 6f 20 75 73 65 20 66 | figure.number.of.digits.to.use.f |
| 3d640 | 6f 72 20 74 6f 74 70 20 68 61 73 68 20 28 64 65 66 61 75 6c 74 3a 20 36 29 00 43 6f 6e 66 69 67 | or.totp.hash.(default:.6).Config |
| 3d660 | 75 72 65 20 6f 6e 65 20 6f 66 20 74 68 65 20 70 72 65 64 65 66 69 6e 65 64 20 73 79 73 74 65 6d | ure.one.of.the.predefined.system |
| 3d680 | 20 70 65 72 66 6f 72 6d 61 6e 63 65 20 70 72 6f 66 69 6c 65 73 2e 00 43 6f 6e 66 69 67 75 72 65 | .performance.profiles..Configure |
| 3d6a0 | 20 6f 6e 65 20 6f 72 20 6d 6f 72 65 20 61 74 74 72 69 62 75 74 65 73 20 74 6f 20 74 68 65 20 67 | .one.or.more.attributes.to.the.g |
| 3d6c0 | 69 76 65 6e 20 4e 54 50 20 73 65 72 76 65 72 2e 00 43 6f 6e 66 69 67 75 72 65 20 6f 6e 65 20 6f | iven.NTP.server..Configure.one.o |
| 3d6e0 | 72 20 6d 6f 72 65 20 73 65 72 76 65 72 73 20 66 6f 72 20 73 79 6e 63 68 72 6f 6e 69 73 61 74 69 | r.more.servers.for.synchronisati |
| 3d700 | 6f 6e 2e 20 53 65 72 76 65 72 20 6e 61 6d 65 20 63 61 6e 20 62 65 20 65 69 74 68 65 72 20 61 6e | on..Server.name.can.be.either.an |
| 3d720 | 20 49 50 20 61 64 64 72 65 73 73 20 6f 72 20 3a 61 62 62 72 3a 60 46 51 44 4e 20 28 46 75 6c 6c | .IP.address.or.:abbr:`FQDN.(Full |
| 3d740 | 79 20 51 75 61 6c 69 66 69 65 64 20 44 6f 6d 61 69 6e 20 4e 61 6d 65 29 60 2e 00 43 6f 6e 66 69 | y.Qualified.Domain.Name)`..Confi |
| 3d760 | 67 75 72 65 20 6f 70 74 69 6f 6e 61 6c 20 54 54 4c 20 76 61 6c 75 65 20 6f 6e 20 74 68 65 20 67 | gure.optional.TTL.value.on.the.g |
| 3d780 | 69 76 65 6e 20 72 65 73 6f 75 72 63 65 20 72 65 63 6f 72 64 2e 20 54 68 69 73 20 64 65 66 61 75 | iven.resource.record..This.defau |
| 3d7a0 | 6c 74 73 20 74 6f 20 36 30 30 20 73 65 63 6f 6e 64 73 2e 00 43 6f 6e 66 69 67 75 72 65 20 70 68 | lts.to.600.seconds..Configure.ph |
| 3d7c0 | 79 73 69 63 61 6c 20 69 6e 74 65 72 66 61 63 65 20 64 75 70 6c 65 78 20 73 65 74 74 69 6e 67 2e | ysical.interface.duplex.setting. |
| 3d7e0 | 00 43 6f 6e 66 69 67 75 72 65 20 70 68 79 73 69 63 61 6c 20 69 6e 74 65 72 66 61 63 65 20 73 70 | .Configure.physical.interface.sp |
| 3d800 | 65 65 64 20 73 65 74 74 69 6e 67 2e 00 43 6f 6e 66 69 67 75 72 65 20 70 6f 72 74 20 6d 69 72 72 | eed.setting..Configure.port.mirr |
| 3d820 | 6f 72 69 6e 67 20 66 6f 72 20 60 69 6e 74 65 72 66 61 63 65 60 20 69 6e 62 6f 75 6e 64 20 74 72 | oring.for.`interface`.inbound.tr |
| 3d840 | 61 66 66 69 63 20 61 6e 64 20 63 6f 70 79 20 74 68 65 20 74 72 61 66 66 69 63 20 74 6f 20 60 6d | affic.and.copy.the.traffic.to.`m |
| 3d860 | 6f 6e 69 74 6f 72 2d 69 6e 74 65 72 66 61 63 65 60 00 43 6f 6e 66 69 67 75 72 65 20 70 6f 72 74 | onitor-interface`.Configure.port |
| 3d880 | 20 6d 69 72 72 6f 72 69 6e 67 20 66 6f 72 20 60 69 6e 74 65 72 66 61 63 65 60 20 6f 75 74 62 6f | .mirroring.for.`interface`.outbo |
| 3d8a0 | 75 6e 64 20 74 72 61 66 66 69 63 20 61 6e 64 20 63 6f 70 79 20 74 68 65 20 74 72 61 66 66 69 63 | und.traffic.and.copy.the.traffic |
| 3d8c0 | 20 74 6f 20 60 6d 6f 6e 69 74 6f 72 2d 69 6e 74 65 72 66 61 63 65 60 00 43 6f 6e 66 69 67 75 72 | .to.`monitor-interface`.Configur |
| 3d8e0 | 65 20 70 6f 72 74 20 6e 75 6d 62 65 72 20 6f 66 20 72 65 6d 6f 74 65 20 56 58 4c 41 4e 20 65 6e | e.port.number.of.remote.VXLAN.en |
| 3d900 | 64 70 6f 69 6e 74 2e 00 43 6f 6e 66 69 67 75 72 65 20 70 6f 72 74 20 6e 75 6d 62 65 72 20 74 6f | dpoint..Configure.port.number.to |
| 3d920 | 20 62 65 20 75 73 65 64 20 66 6f 72 20 73 66 6c 6f 77 20 63 6f 6e 65 63 74 69 6f 6e 2e 20 44 65 | .be.used.for.sflow.conection..De |
| 3d940 | 66 61 75 6c 74 20 70 6f 72 74 20 69 73 20 36 33 34 33 2e 00 43 6f 6e 66 69 67 75 72 65 20 70 6f | fault.port.is.6343..Configure.po |
| 3d960 | 72 74 20 6e 75 6d 62 65 72 20 74 6f 20 62 65 20 75 73 65 64 20 66 6f 72 20 73 66 6c 6f 77 20 63 | rt.number.to.be.used.for.sflow.c |
| 3d980 | 6f 6e 6e 65 63 74 69 6f 6e 2e 20 44 65 66 61 75 6c 74 20 70 6f 72 74 20 69 73 20 36 33 34 33 2e | onnection..Default.port.is.6343. |
| 3d9a0 | 00 43 6f 6e 66 69 67 75 72 65 20 70 72 6f 74 6f 63 6f 6c 20 75 73 65 64 20 66 6f 72 20 63 6f 6d | .Configure.protocol.used.for.com |
| 3d9c0 | 6d 75 6e 69 63 61 74 69 6f 6e 20 74 6f 20 72 65 6d 6f 74 65 20 73 79 73 6c 6f 67 20 68 6f 73 74 | munication.to.remote.syslog.host |
| 3d9e0 | 2e 20 54 68 69 73 20 63 61 6e 20 62 65 20 65 69 74 68 65 72 20 55 44 50 20 6f 72 20 54 43 50 2e | ..This.can.be.either.UDP.or.TCP. |
| 3da00 | 00 43 6f 6e 66 69 67 75 72 65 20 70 72 6f 78 79 20 70 6f 72 74 20 69 66 20 69 74 20 64 6f 65 73 | .Configure.proxy.port.if.it.does |
| 3da20 | 20 6e 6f 74 20 6c 69 73 74 65 6e 20 74 6f 20 74 68 65 20 64 65 66 61 75 6c 74 20 70 6f 72 74 20 | .not.listen.to.the.default.port. |
| 3da40 | 38 30 2e 00 43 6f 6e 66 69 67 75 72 65 20 72 65 71 75 65 73 74 73 20 74 6f 20 74 68 65 20 62 61 | 80..Configure.requests.to.the.ba |
| 3da60 | 63 6b 65 6e 64 20 73 65 72 76 65 72 20 74 6f 20 75 73 65 20 53 53 4c 20 65 6e 63 72 79 70 74 69 | ckend.server.to.use.SSL.encrypti |
| 3da80 | 6f 6e 20 61 6e 64 20 61 75 74 68 65 6e 74 69 63 61 74 65 20 62 61 63 6b 65 6e 64 20 61 67 61 69 | on.and.authenticate.backend.agai |
| 3daa0 | 6e 73 74 20 3c 63 61 2d 63 65 72 74 69 66 69 63 61 74 65 3e 00 43 6f 6e 66 69 67 75 72 65 20 72 | nst.<ca-certificate>.Configure.r |
| 3dac0 | 65 71 75 65 73 74 73 20 74 6f 20 74 68 65 20 62 61 63 6b 65 6e 64 20 73 65 72 76 65 72 20 74 6f | equests.to.the.backend.server.to |
| 3dae0 | 20 75 73 65 20 53 53 4c 20 65 6e 63 72 79 70 74 69 6f 6e 20 77 69 74 68 6f 75 74 20 76 61 6c 69 | .use.SSL.encryption.without.vali |
| 3db00 | 64 61 74 69 6e 67 20 73 65 72 76 65 72 20 63 65 72 74 69 66 69 63 61 74 65 00 43 6f 6e 66 69 67 | dating.server.certificate.Config |
| 3db20 | 75 72 65 20 73 46 6c 6f 77 20 61 67 65 6e 74 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 61 64 64 | ure.sFlow.agent.IPv4.or.IPv6.add |
| 3db40 | 72 65 73 73 00 43 6f 6e 66 69 67 75 72 65 20 73 63 68 65 64 75 6c 65 20 63 6f 75 6e 74 65 72 2d | ress.Configure.schedule.counter- |
| 3db60 | 70 6f 6c 6c 69 6e 67 20 69 6e 20 73 65 63 6f 6e 64 73 20 28 64 65 66 61 75 6c 74 3a 20 33 30 29 | polling.in.seconds.(default:.30) |
| 3db80 | 00 43 6f 6e 66 69 67 75 72 65 20 73 65 72 76 69 63 65 20 60 3c 6e 61 6d 65 3e 60 20 6d 6f 64 65 | .Configure.service.`<name>`.mode |
| 3dba0 | 20 54 43 50 20 6f 72 20 48 54 54 50 00 43 6f 6e 66 69 67 75 72 65 20 73 65 72 76 69 63 65 20 60 | .TCP.or.HTTP.Configure.service.` |
| 3dbc0 | 3c 6e 61 6d 65 3e 60 20 74 6f 20 75 73 65 20 74 68 65 20 62 61 63 6b 65 6e 64 20 3c 6e 61 6d 65 | <name>`.to.use.the.backend.<name |
| 3dbe0 | 3e 00 43 6f 6e 66 69 67 75 72 65 20 73 65 73 73 69 6f 6e 20 74 69 6d 65 6f 75 74 20 61 66 74 65 | >.Configure.session.timeout.afte |
| 3dc00 | 72 20 77 68 69 63 68 20 74 68 65 20 75 73 65 72 20 77 69 6c 6c 20 62 65 20 6c 6f 67 67 65 64 20 | r.which.the.user.will.be.logged. |
| 3dc20 | 6f 75 74 2e 00 43 6f 6e 66 69 67 75 72 65 20 73 74 65 70 20 76 61 6c 75 65 20 66 6f 72 20 74 6f | out..Configure.step.value.for.to |
| 3dc40 | 74 70 20 69 6e 20 73 65 63 6f 6e 64 73 20 28 64 65 66 61 75 6c 74 3a 20 33 30 29 00 43 6f 6e 66 | tp.in.seconds.(default:.30).Conf |
| 3dc60 | 69 67 75 72 65 20 73 79 73 74 65 6d 20 64 6f 6d 61 69 6e 20 6e 61 6d 65 2e 20 41 20 64 6f 6d 61 | igure.system.domain.name..A.doma |
| 3dc80 | 69 6e 20 6e 61 6d 65 20 6d 75 73 74 20 73 74 61 72 74 20 61 6e 64 20 65 6e 64 20 77 69 74 68 20 | in.name.must.start.and.end.with. |
| 3dca0 | 61 20 6c 65 74 74 65 72 20 6f 72 20 64 69 67 69 74 2c 20 61 6e 64 20 68 61 76 65 20 61 73 20 69 | a.letter.or.digit,.and.have.as.i |
| 3dcc0 | 6e 74 65 72 69 6f 72 20 63 68 61 72 61 63 74 65 72 73 20 6f 6e 6c 79 20 6c 65 74 74 65 72 73 2c | nterior.characters.only.letters, |
| 3dce0 | 20 64 69 67 69 74 73 2c 20 6f 72 20 61 20 68 79 70 68 65 6e 2e 00 43 6f 6e 66 69 67 75 72 65 20 | .digits,.or.a.hyphen..Configure. |
| 3dd00 | 74 68 65 20 41 2d 73 69 64 65 20 72 6f 75 74 65 72 20 66 6f 72 20 4e 50 54 76 36 20 75 73 69 6e | the.A-side.router.for.NPTv6.usin |
| 3dd20 | 67 20 74 68 65 20 70 72 65 66 69 78 65 73 20 61 62 6f 76 65 3a 00 43 6f 6e 66 69 67 75 72 65 20 | g.the.prefixes.above:.Configure. |
| 3dd40 | 74 68 65 20 42 2d 73 69 64 65 20 72 6f 75 74 65 72 20 66 6f 72 20 4e 50 54 76 36 20 75 73 69 6e | the.B-side.router.for.NPTv6.usin |
| 3dd60 | 67 20 74 68 65 20 70 72 65 66 69 78 65 73 20 61 62 6f 76 65 3a 00 43 6f 6e 66 69 67 75 72 65 20 | g.the.prefixes.above:.Configure. |
| 3dd80 | 74 68 65 20 44 4e 53 20 60 3c 73 65 72 76 65 72 3e 60 20 49 50 2f 46 51 44 4e 20 75 73 65 64 20 | the.DNS.`<server>`.IP/FQDN.used. |
| 3dda0 | 77 68 65 6e 20 75 70 64 61 74 69 6e 67 20 74 68 69 73 20 64 79 6e 61 6d 69 63 20 61 73 73 69 67 | when.updating.this.dynamic.assig |
| 3ddc0 | 6e 6d 65 6e 74 2e 00 43 6f 6e 66 69 67 75 72 65 20 74 68 65 20 48 54 54 50 20 41 50 49 20 73 65 | nment..Configure.the.HTTP.API.se |
| 3dde0 | 72 76 69 63 65 20 6f 6e 20 52 6f 75 74 65 72 20 42 00 43 6f 6e 66 69 67 75 72 65 20 74 68 65 20 | rvice.on.Router.B.Configure.the. |
| 3de00 | 49 50 76 34 20 6f 72 20 49 50 76 36 20 6c 69 73 74 65 6e 20 61 64 64 72 65 73 73 20 6f 66 20 74 | IPv4.or.IPv6.listen.address.of.t |
| 3de20 | 68 65 20 54 46 54 50 20 73 65 72 76 65 72 2e 20 4d 75 6c 74 69 70 6c 65 20 49 50 76 34 20 61 6e | he.TFTP.server..Multiple.IPv4.an |
| 3de40 | 64 20 49 50 76 36 20 61 64 64 72 65 73 73 65 73 20 63 61 6e 20 62 65 20 67 69 76 65 6e 2e 20 54 | d.IPv6.addresses.can.be.given..T |
| 3de60 | 68 65 72 65 20 77 69 6c 6c 20 62 65 20 6f 6e 65 20 54 46 54 50 20 73 65 72 76 65 72 20 69 6e 73 | here.will.be.one.TFTP.server.ins |
| 3de80 | 74 61 6e 63 65 73 20 6c 69 73 74 65 6e 69 6e 67 20 6f 6e 20 65 61 63 68 20 49 50 20 61 64 64 72 | tances.listening.on.each.IP.addr |
| 3dea0 | 65 73 73 2e 00 43 6f 6e 66 69 67 75 72 65 20 74 68 65 20 63 6f 6e 66 69 67 2d 73 79 6e 63 20 73 | ess..Configure.the.config-sync.s |
| 3dec0 | 65 72 76 69 63 65 20 6f 6e 20 52 6f 75 74 65 72 20 41 00 43 6f 6e 66 69 67 75 72 65 20 74 68 65 | ervice.on.Router.A.Configure.the |
| 3dee0 | 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 20 68 65 | .connection.tracking.protocol.he |
| 3df00 | 6c 70 65 72 20 6d 6f 64 75 6c 65 73 2e 20 41 6c 6c 20 6d 6f 64 75 6c 65 73 20 61 72 65 20 65 6e | lper.modules..All.modules.are.en |
| 3df20 | 61 62 6c 65 20 62 79 20 64 65 66 61 75 6c 74 2e 00 43 6f 6e 66 69 67 75 72 65 20 74 68 65 20 64 | able.by.default..Configure.the.d |
| 3df40 | 69 73 63 72 65 74 65 20 70 6f 72 74 20 75 6e 64 65 72 20 77 68 69 63 68 20 74 68 65 20 52 41 44 | iscrete.port.under.which.the.RAD |
| 3df60 | 49 55 53 20 73 65 72 76 65 72 20 63 61 6e 20 62 65 20 72 65 61 63 68 65 64 2e 00 43 6f 6e 66 69 | IUS.server.can.be.reached..Confi |
| 3df80 | 67 75 72 65 20 74 68 65 20 64 69 73 63 72 65 74 65 20 70 6f 72 74 20 75 6e 64 65 72 20 77 68 69 | gure.the.discrete.port.under.whi |
| 3dfa0 | 63 68 20 74 68 65 20 54 41 43 41 43 53 20 73 65 72 76 65 72 20 63 61 6e 20 62 65 20 72 65 61 63 | ch.the.TACACS.server.can.be.reac |
| 3dfc0 | 68 65 64 2e 00 43 6f 6e 66 69 67 75 72 65 20 74 68 65 20 6c 6f 61 64 2d 62 61 6c 61 6e 63 69 6e | hed..Configure.the.load-balancin |
| 3dfe0 | 67 20 68 61 70 72 6f 78 79 20 73 65 72 76 69 63 65 20 66 6f 72 20 48 54 54 50 2e 00 43 6f 6e 66 | g.haproxy.service.for.HTTP..Conf |
| 3e000 | 69 67 75 72 65 20 74 68 65 20 6c 6f 61 64 2d 62 61 6c 61 6e 63 69 6e 67 20 72 65 76 65 72 73 65 | igure.the.load-balancing.reverse |
| 3e020 | 2d 70 72 6f 78 79 20 73 65 72 76 69 63 65 20 66 6f 72 20 48 54 54 50 2e 00 43 6f 6e 66 69 67 75 | -proxy.service.for.HTTP..Configu |
| 3e040 | 72 65 20 74 68 65 20 74 69 6d 65 73 74 61 6d 70 69 6e 67 20 62 65 68 61 76 69 6f 72 20 77 69 74 | re.the.timestamping.behavior.wit |
| 3e060 | 68 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 6f 70 74 69 6f 6e 3a 00 43 6f 6e 66 69 67 75 72 | h.the.following.option:.Configur |
| 3e080 | 65 20 74 69 6d 65 20 64 72 69 66 74 20 69 6e 20 73 65 63 6f 6e 64 73 20 28 64 65 66 61 75 6c 74 | e.time.drift.in.seconds.(default |
| 3e0a0 | 3a 20 30 29 00 43 6f 6e 66 69 67 75 72 65 20 74 72 61 66 66 69 63 20 63 61 70 74 75 72 65 20 6d | :.0).Configure.traffic.capture.m |
| 3e0c0 | 6f 64 65 2e 00 43 6f 6e 66 69 67 75 72 65 20 75 73 65 72 20 64 65 66 69 6e 65 64 20 3a 61 62 62 | ode..Configure.user.defined.:abb |
| 3e0e0 | 72 3a 60 4d 41 43 20 28 4d 65 64 69 61 20 41 63 63 65 73 73 20 43 6f 6e 74 72 6f 6c 29 60 20 61 | r:`MAC.(Media.Access.Control)`.a |
| 3e100 | 64 64 72 65 73 73 20 6f 6e 20 67 69 76 65 6e 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 2e 00 43 | ddress.on.given.`<interface>`..C |
| 3e120 | 6f 6e 66 69 67 75 72 65 20 77 61 74 65 72 6d 61 72 6b 20 77 61 72 6e 69 6e 67 20 67 65 6e 65 72 | onfigure.watermark.warning.gener |
| 3e140 | 61 74 69 6f 6e 20 66 6f 72 20 61 6e 20 49 47 4d 50 20 67 72 6f 75 70 20 6c 69 6d 69 74 2e 20 47 | ation.for.an.IGMP.group.limit..G |
| 3e160 | 65 6e 65 72 61 74 65 73 20 77 61 72 6e 69 6e 67 20 6f 6e 63 65 20 74 68 65 20 63 6f 6e 66 69 67 | enerates.warning.once.the.config |
| 3e180 | 75 72 65 64 20 67 72 6f 75 70 20 6c 69 6d 69 74 20 69 73 20 72 65 61 63 68 65 64 20 77 68 69 6c | ured.group.limit.is.reached.whil |
| 3e1a0 | 65 20 61 64 64 69 6e 67 20 6e 65 77 20 67 72 6f 75 70 73 2e 00 43 6f 6e 66 69 67 75 72 65 64 20 | e.adding.new.groups..Configured. |
| 3e1c0 | 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 60 3c 69 64 3e 60 20 69 73 20 75 73 65 64 20 62 79 20 | routing.table.`<id>`.is.used.by. |
| 3e1e0 | 56 52 46 20 60 3c 6e 61 6d 65 3e 60 2e 00 43 6f 6e 66 69 67 75 72 65 64 20 76 61 6c 75 65 00 43 | VRF.`<name>`..Configured.value.C |
| 3e200 | 6f 6e 66 69 67 75 72 65 73 20 68 61 72 64 77 61 72 65 20 74 69 6d 65 73 74 61 6d 70 69 6e 67 20 | onfigures.hardware.timestamping. |
| 3e220 | 6f 6e 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 3c 69 6e 74 65 72 66 61 63 65 3e 2e 20 54 68 | on.the.interface.<interface>..Th |
| 3e240 | 65 20 73 70 65 63 69 61 6c 20 76 61 6c 75 65 20 60 61 6c 6c 60 20 63 61 6e 20 61 6c 73 6f 20 62 | e.special.value.`all`.can.also.b |
| 3e260 | 65 20 73 70 65 63 69 66 69 65 64 20 74 6f 20 65 6e 61 62 6c 65 20 74 69 6d 65 73 74 61 6d 70 69 | e.specified.to.enable.timestampi |
| 3e280 | 6e 67 20 6f 6e 20 61 6c 6c 20 69 6e 74 65 72 66 61 63 65 73 20 74 68 61 74 20 73 75 70 70 6f 72 | ng.on.all.interfaces.that.suppor |
| 3e2a0 | 74 20 69 74 2e 00 43 6f 6e 66 69 67 75 72 65 73 20 74 68 65 20 42 47 50 20 73 70 65 61 6b 65 72 | t.it..Configures.the.BGP.speaker |
| 3e2c0 | 20 73 6f 20 74 68 61 74 20 69 74 20 6f 6e 6c 79 20 61 63 63 65 70 74 73 20 69 6e 62 6f 75 6e 64 | .so.that.it.only.accepts.inbound |
| 3e2e0 | 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 66 72 6f 6d 2c 20 62 75 74 20 64 6f 65 73 20 6e 6f 74 20 | .connections.from,.but.does.not. |
| 3e300 | 69 6e 69 74 69 61 74 65 20 6f 75 74 62 6f 75 6e 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 74 6f | initiate.outbound.connections.to |
| 3e320 | 20 74 68 65 20 70 65 65 72 20 6f 72 20 70 65 65 72 20 67 72 6f 75 70 2e 00 43 6f 6e 66 69 67 75 | .the.peer.or.peer.group..Configu |
| 3e340 | 72 65 73 20 74 68 65 20 50 54 50 20 70 6f 72 74 2e 20 42 79 20 64 65 66 61 75 6c 74 2c 20 74 68 | res.the.PTP.port..By.default,.th |
| 3e360 | 65 20 73 74 61 6e 64 61 72 64 20 70 6f 72 74 20 33 31 39 20 69 73 20 75 73 65 64 2e 00 43 6f 6e | e.standard.port.319.is.used..Con |
| 3e380 | 66 69 67 75 72 65 73 20 74 68 65 20 72 69 6e 67 20 62 75 66 66 65 72 20 73 69 7a 65 20 6f 66 20 | figures.the.ring.buffer.size.of. |
| 3e3a0 | 74 68 65 20 69 6e 74 65 72 66 61 63 65 2e 00 43 6f 6e 66 69 67 75 72 69 6e 67 20 48 54 20 6d 6f | the.interface..Configuring.HT.mo |
| 3e3c0 | 64 65 20 6f 70 74 69 6f 6e 73 20 69 73 20 72 65 71 75 69 72 65 64 20 77 68 65 6e 20 75 73 69 6e | de.options.is.required.when.usin |
| 3e3e0 | 67 20 38 30 32 2e 31 31 6e 20 6f 72 20 38 30 32 2e 31 31 61 78 20 61 74 20 32 2e 34 47 48 7a 2e | g.802.11n.or.802.11ax.at.2.4GHz. |
| 3e400 | 00 43 6f 6e 66 69 67 75 72 69 6e 67 20 49 50 6f 45 20 53 65 72 76 65 72 00 43 6f 6e 66 69 67 75 | .Configuring.IPoE.Server.Configu |
| 3e420 | 72 69 6e 67 20 49 50 73 65 63 00 43 6f 6e 66 69 67 75 72 69 6e 67 20 4c 32 54 50 20 53 65 72 76 | ring.IPsec.Configuring.L2TP.Serv |
| 3e440 | 65 72 00 43 6f 6e 66 69 67 75 72 69 6e 67 20 4c 4e 53 20 28 4c 32 54 50 20 4e 65 74 77 6f 72 6b | er.Configuring.LNS.(L2TP.Network |
| 3e460 | 20 53 65 72 76 65 72 29 00 43 6f 6e 66 69 67 75 72 69 6e 67 20 50 50 50 6f 45 20 53 65 72 76 65 | .Server).Configuring.PPPoE.Serve |
| 3e480 | 72 00 43 6f 6e 66 69 67 75 72 69 6e 67 20 50 50 54 50 20 53 65 72 76 65 72 00 43 6f 6e 66 69 67 | r.Configuring.PPTP.Server.Config |
| 3e4a0 | 75 72 69 6e 67 20 52 41 44 49 55 53 20 61 63 63 6f 75 6e 74 69 6e 67 00 43 6f 6e 66 69 67 75 72 | uring.RADIUS.accounting.Configur |
| 3e4c0 | 69 6e 67 20 52 41 44 49 55 53 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 00 43 6f 6e 66 69 67 | ing.RADIUS.authentication.Config |
| 3e4e0 | 75 72 69 6e 67 20 53 53 54 50 20 53 65 72 76 65 72 00 43 6f 6e 66 69 67 75 72 69 6e 67 20 53 53 | uring.SSTP.Server.Configuring.SS |
| 3e500 | 54 50 20 63 6c 69 65 6e 74 00 43 6f 6e 66 69 67 75 72 69 6e 67 20 56 79 4f 53 20 74 6f 20 61 63 | TP.client.Configuring.VyOS.to.ac |
| 3e520 | 74 20 61 73 20 79 6f 75 72 20 49 50 53 65 63 20 61 63 63 65 73 73 20 63 6f 6e 63 65 6e 74 72 61 | t.as.your.IPSec.access.concentra |
| 3e540 | 74 6f 72 20 69 73 20 6f 6e 65 20 74 68 69 6e 67 2c 20 62 75 74 20 79 6f 75 20 70 72 6f 62 61 62 | tor.is.one.thing,.but.you.probab |
| 3e560 | 6c 79 20 6e 65 65 64 20 74 6f 20 73 65 74 75 70 20 79 6f 75 72 20 63 6c 69 65 6e 74 20 63 6f 6e | ly.need.to.setup.your.client.con |
| 3e580 | 6e 65 63 74 69 6e 67 20 74 6f 20 74 68 65 20 73 65 72 76 65 72 20 73 6f 20 74 68 65 79 20 63 61 | necting.to.the.server.so.they.ca |
| 3e5a0 | 6e 20 74 61 6c 6b 20 74 6f 20 74 68 65 20 49 50 53 65 63 20 67 61 74 65 77 61 79 2e 00 43 6f 6e | n.talk.to.the.IPSec.gateway..Con |
| 3e5c0 | 66 69 67 75 72 69 6e 67 20 61 20 6c 69 73 74 65 6e 2d 61 64 64 72 65 73 73 20 69 73 20 65 73 73 | figuring.a.listen-address.is.ess |
| 3e5e0 | 65 6e 74 69 61 6c 20 66 6f 72 20 74 68 65 20 73 65 72 76 69 63 65 20 74 6f 20 77 6f 72 6b 2e 00 | ential.for.the.service.to.work.. |
| 3e600 | 43 6f 6e 6e 65 63 74 2f 44 69 73 63 6f 6e 6e 65 63 74 00 43 6f 6e 6e 65 63 74 65 64 20 63 6c 69 | Connect/Disconnect.Connected.cli |
| 3e620 | 65 6e 74 20 73 68 6f 75 6c 64 20 75 73 65 20 60 3c 61 64 64 72 65 73 73 3e 60 20 61 73 20 74 68 | ent.should.use.`<address>`.as.th |
| 3e640 | 65 69 72 20 44 4e 53 20 73 65 72 76 65 72 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 63 63 | eir.DNS.server..This.command.acc |
| 3e660 | 65 70 74 73 20 62 6f 74 68 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 61 64 64 72 65 73 73 65 | epts.both.IPv4.and.IPv6.addresse |
| 3e680 | 73 2e 20 55 70 20 74 6f 20 74 77 6f 20 6e 61 6d 65 73 65 72 76 65 72 73 20 63 61 6e 20 62 65 20 | s..Up.to.two.nameservers.can.be. |
| 3e6a0 | 63 6f 6e 66 69 67 75 72 65 64 20 66 6f 72 20 49 50 76 34 2c 20 75 70 20 74 6f 20 74 68 72 65 65 | configured.for.IPv4,.up.to.three |
| 3e6c0 | 20 66 6f 72 20 49 50 76 36 2e 00 43 6f 6e 6e 65 63 74 65 64 20 63 6c 69 65 6e 74 73 20 73 68 6f | .for.IPv6..Connected.clients.sho |
| 3e6e0 | 75 6c 64 20 75 73 65 20 60 3c 61 64 64 72 65 73 73 3e 60 20 61 73 20 74 68 65 69 72 20 44 4e 53 | uld.use.`<address>`.as.their.DNS |
| 3e700 | 20 73 65 72 76 65 72 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 63 63 65 70 74 73 20 62 6f | .server..This.command.accepts.bo |
| 3e720 | 74 68 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 61 64 64 72 65 73 73 65 73 2e 20 55 70 20 74 | th.IPv4.and.IPv6.addresses..Up.t |
| 3e740 | 6f 20 74 77 6f 20 6e 61 6d 65 73 65 72 76 65 72 73 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 | o.two.nameservers.can.be.configu |
| 3e760 | 72 65 64 20 66 6f 72 20 49 50 76 34 2c 20 75 70 20 74 6f 20 74 68 72 65 65 20 66 6f 72 20 49 50 | red.for.IPv4,.up.to.three.for.IP |
| 3e780 | 76 36 2e 00 43 6f 6e 6e 65 63 74 69 6f 6e 73 20 74 6f 20 74 68 65 20 52 50 4b 49 20 63 61 63 68 | v6..Connections.to.the.RPKI.cach |
| 3e7a0 | 69 6e 67 20 73 65 72 76 65 72 20 63 61 6e 20 6e 6f 74 20 6f 6e 6c 79 20 62 65 20 65 73 74 61 62 | ing.server.can.not.only.be.estab |
| 3e7c0 | 6c 69 73 68 65 64 20 62 79 20 48 54 54 50 2f 54 4c 53 20 62 75 74 20 79 6f 75 20 63 61 6e 20 61 | lished.by.HTTP/TLS.but.you.can.a |
| 3e7e0 | 6c 73 6f 20 72 65 6c 79 20 6f 6e 20 61 20 73 65 63 75 72 65 20 53 53 48 20 73 65 73 73 69 6f 6e | lso.rely.on.a.secure.SSH.session |
| 3e800 | 20 74 6f 20 74 68 65 20 73 65 72 76 65 72 2e 20 54 6f 20 65 6e 61 62 6c 65 20 53 53 48 20 79 6f | .to.the.server..To.enable.SSH.yo |
| 3e820 | 75 20 66 69 72 73 74 20 6e 65 65 64 20 74 6f 20 63 72 65 61 74 65 20 79 6f 75 72 73 65 6c 73 20 | u.first.need.to.create.yoursels. |
| 3e840 | 61 6e 20 53 53 48 20 63 6c 69 65 6e 74 20 6b 65 79 70 61 69 72 20 75 73 69 6e 67 20 60 60 67 65 | an.SSH.client.keypair.using.``ge |
| 3e860 | 6e 65 72 61 74 65 20 73 73 68 20 63 6c 69 65 6e 74 2d 6b 65 79 20 2f 63 6f 6e 66 69 67 2f 61 75 | nerate.ssh.client-key./config/au |
| 3e880 | 74 68 2f 69 64 5f 72 73 61 5f 72 70 6b 69 60 60 2e 20 4f 6e 63 65 20 79 6f 75 72 20 6b 65 79 20 | th/id_rsa_rpki``..Once.your.key. |
| 3e8a0 | 69 73 20 63 72 65 61 74 65 64 20 79 6f 75 20 63 61 6e 20 73 65 74 75 70 20 74 68 65 20 63 6f 6e | is.created.you.can.setup.the.con |
| 3e8c0 | 6e 65 63 74 69 6f 6e 2e 00 43 6f 6e 6e 65 63 74 69 6f 6e 73 20 74 6f 20 74 68 65 20 52 50 4b 49 | nection..Connections.to.the.RPKI |
| 3e8e0 | 20 63 61 63 68 69 6e 67 20 73 65 72 76 65 72 20 63 61 6e 20 6e 6f 74 20 6f 6e 6c 79 20 62 65 20 | .caching.server.can.not.only.be. |
| 3e900 | 65 73 74 61 62 6c 69 73 68 65 64 20 62 79 20 48 54 54 50 2f 54 4c 53 20 62 75 74 20 79 6f 75 20 | established.by.HTTP/TLS.but.you. |
| 3e920 | 63 61 6e 20 61 6c 73 6f 20 72 65 6c 79 20 6f 6e 20 61 20 73 65 63 75 72 65 20 53 53 48 20 73 65 | can.also.rely.on.a.secure.SSH.se |
| 3e940 | 73 73 69 6f 6e 20 74 6f 20 74 68 65 20 73 65 72 76 65 72 2e 20 54 6f 20 65 6e 61 62 6c 65 20 53 | ssion.to.the.server..To.enable.S |
| 3e960 | 53 48 2c 20 66 69 72 73 74 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 63 72 65 61 74 65 20 61 6e 20 | SH,.first.you.need.to.create.an. |
| 3e980 | 53 53 48 20 63 6c 69 65 6e 74 20 6b 65 79 70 61 69 72 20 75 73 69 6e 67 20 60 60 67 65 6e 65 72 | SSH.client.keypair.using.``gener |
| 3e9a0 | 61 74 65 20 73 73 68 20 63 6c 69 65 6e 74 2d 6b 65 79 20 2f 63 6f 6e 66 69 67 2f 61 75 74 68 2f | ate.ssh.client-key./config/auth/ |
| 3e9c0 | 69 64 5f 72 73 61 5f 72 70 6b 69 60 60 2e 20 4f 6e 63 65 20 79 6f 75 72 20 6b 65 79 20 69 73 20 | id_rsa_rpki``..Once.your.key.is. |
| 3e9e0 | 63 72 65 61 74 65 64 20 79 6f 75 20 63 61 6e 20 73 65 74 75 70 20 74 68 65 20 63 6f 6e 6e 65 63 | created.you.can.setup.the.connec |
| 3ea00 | 74 69 6f 6e 2e 00 43 6f 6e 6e 65 63 74 69 6f 6e 73 20 74 6f 20 74 68 65 20 52 50 4b 49 20 63 61 | tion..Connections.to.the.RPKI.ca |
| 3ea20 | 63 68 69 6e 67 20 73 65 72 76 65 72 20 63 61 6e 20 6e 6f 74 20 6f 6e 6c 79 20 62 65 20 65 73 74 | ching.server.can.not.only.be.est |
| 3ea40 | 61 62 6c 69 73 68 65 64 20 62 79 20 54 43 50 20 75 73 69 6e 67 20 74 68 65 20 52 54 52 20 70 72 | ablished.by.TCP.using.the.RTR.pr |
| 3ea60 | 6f 74 6f 63 6f 6c 20 62 75 74 20 79 6f 75 20 63 61 6e 20 61 6c 73 6f 20 72 65 6c 79 20 6f 6e 20 | otocol.but.you.can.also.rely.on. |
| 3ea80 | 61 20 73 65 63 75 72 65 20 53 53 48 20 73 65 73 73 69 6f 6e 20 74 6f 20 74 68 65 20 73 65 72 76 | a.secure.SSH.session.to.the.serv |
| 3eaa0 | 65 72 2e 20 54 68 69 73 20 70 72 6f 76 69 64 65 73 20 74 72 61 6e 73 70 6f 72 74 20 69 6e 74 65 | er..This.provides.transport.inte |
| 3eac0 | 67 72 69 74 79 20 61 6e 64 20 63 6f 6e 66 69 64 65 6e 74 69 61 6c 69 74 79 20 61 6e 64 20 69 74 | grity.and.confidentiality.and.it |
| 3eae0 | 20 69 73 20 61 20 67 6f 6f 64 20 69 64 65 61 20 69 66 20 79 6f 75 72 20 76 61 6c 69 64 61 74 69 | .is.a.good.idea.if.your.validati |
| 3eb00 | 6f 6e 20 73 6f 66 74 77 61 72 65 20 73 75 70 70 6f 72 74 73 20 69 74 2e 20 20 54 6f 20 65 6e 61 | on.software.supports.it...To.ena |
| 3eb20 | 62 6c 65 20 53 53 48 2c 20 66 69 72 73 74 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 63 72 65 61 74 | ble.SSH,.first.you.need.to.creat |
| 3eb40 | 65 20 61 6e 20 53 53 48 20 63 6c 69 65 6e 74 20 6b 65 79 70 61 69 72 20 75 73 69 6e 67 20 60 60 | e.an.SSH.client.keypair.using.`` |
| 3eb60 | 67 65 6e 65 72 61 74 65 20 73 73 68 20 63 6c 69 65 6e 74 2d 6b 65 79 20 2f 63 6f 6e 66 69 67 2f | generate.ssh.client-key./config/ |
| 3eb80 | 61 75 74 68 2f 69 64 5f 72 73 61 5f 72 70 6b 69 60 60 2e 20 4f 6e 63 65 20 79 6f 75 72 20 6b 65 | auth/id_rsa_rpki``..Once.your.ke |
| 3eba0 | 79 20 69 73 20 63 72 65 61 74 65 64 20 79 6f 75 20 63 61 6e 20 73 65 74 75 70 20 74 68 65 20 63 | y.is.created.you.can.setup.the.c |
| 3ebc0 | 6f 6e 6e 65 63 74 69 6f 6e 2e 00 43 6f 6e 6e 74 72 61 63 6b 00 43 6f 6e 6e 74 72 61 63 6b 20 53 | onnection..Conntrack.Conntrack.S |
| 3ebe0 | 79 6e 63 00 43 6f 6e 6e 74 72 61 63 6b 20 53 79 6e 63 20 45 78 61 6d 70 6c 65 00 43 6f 6e 6e 74 | ync.Conntrack.Sync.Example.Connt |
| 3ec00 | 72 61 63 6b 20 69 67 6e 6f 72 65 20 72 75 6c 65 73 00 43 6f 6e 6e 74 72 61 63 6b 20 6c 6f 67 00 | rack.ignore.rules.Conntrack.log. |
| 3ec20 | 43 6f 6e 73 69 64 65 72 61 74 69 6f 6e 73 00 43 6f 6e 73 6f 6c 65 00 43 6f 6e 73 6f 6c 65 20 53 | Considerations.Console.Console.S |
| 3ec40 | 65 72 76 65 72 00 43 6f 6e 73 74 72 61 69 6e 20 74 68 65 20 6d 65 6d 6f 72 79 20 61 76 61 69 6c | erver.Constrain.the.memory.avail |
| 3ec60 | 61 62 6c 65 20 74 6f 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 2e 00 43 6f 6e 74 61 69 6e 65 72 | able.to.the.container..Container |
| 3ec80 | 00 43 6f 6e 74 61 69 6e 65 72 20 4e 65 74 77 6f 72 6b 73 00 43 6f 6e 74 61 69 6e 65 72 20 52 65 | .Container.Networks.Container.Re |
| 3eca0 | 67 69 73 74 72 79 00 43 6f 6e 74 72 61 63 6b 20 54 69 6d 65 6f 75 74 73 00 43 6f 6e 76 65 72 74 | gistry.Contrack.Timeouts.Convert |
| 3ecc0 | 20 74 68 65 20 61 64 64 72 65 73 73 20 70 72 65 66 69 78 20 6f 66 20 61 20 73 69 6e 67 6c 65 20 | .the.address.prefix.of.a.single. |
| 3ece0 | 60 66 63 30 30 3a 3a 2f 36 34 60 20 6e 65 74 77 6f 72 6b 20 74 6f 20 60 66 63 30 31 3a 3a 2f 36 | `fc00::/64`.network.to.`fc01::/6 |
| 3ed00 | 34 60 00 43 6f 6e 76 65 72 74 20 74 68 65 20 61 64 64 72 65 73 73 20 70 72 65 66 69 78 20 6f 66 | 4`.Convert.the.address.prefix.of |
| 3ed20 | 20 61 20 73 69 6e 67 6c 65 20 60 66 63 30 31 3a 3a 2f 36 34 60 20 6e 65 74 77 6f 72 6b 20 74 6f | .a.single.`fc01::/64`.network.to |
| 3ed40 | 20 60 66 63 30 30 3a 3a 2f 36 34 60 00 43 6f 70 79 20 74 68 65 20 6b 65 79 2c 20 61 73 20 69 74 | .`fc00::/64`.Copy.the.key,.as.it |
| 3ed60 | 20 69 73 20 6e 6f 74 20 73 74 6f 72 65 64 20 6f 6e 20 74 68 65 20 6c 6f 63 61 6c 20 66 69 6c 65 | .is.not.stored.on.the.local.file |
| 3ed80 | 73 79 73 74 65 6d 2e 20 42 65 63 61 75 73 65 20 69 74 20 69 73 20 61 20 73 79 6d 6d 65 74 72 69 | system..Because.it.is.a.symmetri |
| 3eda0 | 63 20 6b 65 79 2c 20 6f 6e 6c 79 20 79 6f 75 20 61 6e 64 20 79 6f 75 72 20 70 65 65 72 20 73 68 | c.key,.only.you.and.your.peer.sh |
| 3edc0 | 6f 75 6c 64 20 68 61 76 65 20 6b 6e 6f 77 6c 65 64 67 65 20 6f 66 20 69 74 73 20 63 6f 6e 74 65 | ould.have.knowledge.of.its.conte |
| 3ede0 | 6e 74 2e 20 4d 61 6b 65 20 73 75 72 65 20 79 6f 75 20 64 69 73 74 72 69 62 75 74 65 20 74 68 65 | nt..Make.sure.you.distribute.the |
| 3ee00 | 20 6b 65 79 20 69 6e 20 61 20 73 61 66 65 20 6d 61 6e 6e 65 72 2c 00 43 6f 75 6e 74 72 79 20 63 | .key.in.a.safe.manner,.Country.c |
| 3ee20 | 6f 64 65 20 28 49 53 4f 2f 49 45 43 20 33 31 36 36 2d 31 29 2e 20 55 73 65 64 20 74 6f 20 73 65 | ode.(ISO/IEC.3166-1)..Used.to.se |
| 3ee40 | 74 20 72 65 67 75 6c 61 74 6f 72 79 20 64 6f 6d 61 69 6e 2e 20 53 65 74 20 61 73 20 6e 65 65 64 | t.regulatory.domain..Set.as.need |
| 3ee60 | 65 64 20 74 6f 20 69 6e 64 69 63 61 74 65 20 63 6f 75 6e 74 72 79 20 69 6e 20 77 68 69 63 68 20 | ed.to.indicate.country.in.which. |
| 3ee80 | 64 65 76 69 63 65 20 69 73 20 6f 70 65 72 61 74 69 6e 67 2e 20 54 68 69 73 20 63 61 6e 20 6c 69 | device.is.operating..This.can.li |
| 3eea0 | 6d 69 74 20 61 76 61 69 6c 61 62 6c 65 20 63 68 61 6e 6e 65 6c 73 20 61 6e 64 20 74 72 61 6e 73 | mit.available.channels.and.trans |
| 3eec0 | 6d 69 74 20 70 6f 77 65 72 2e 00 43 6f 75 6e 74 72 79 20 63 6f 64 65 20 28 49 53 4f 2f 49 45 43 | mit.power..Country.code.(ISO/IEC |
| 3eee0 | 20 33 31 36 36 2d 31 29 2e 20 55 73 65 64 20 74 6f 20 73 65 74 20 72 65 67 75 6c 61 74 6f 72 79 | .3166-1)..Used.to.set.regulatory |
| 3ef00 | 20 64 6f 6d 61 69 6e 2e 20 53 65 74 20 61 73 20 6e 65 65 64 65 64 20 74 6f 20 69 6e 64 69 63 61 | .domain..Set.as.needed.to.indica |
| 3ef20 | 74 65 20 63 6f 75 6e 74 72 79 20 69 6e 20 77 68 69 63 68 20 74 68 65 20 62 6f 78 20 69 73 20 6f | te.country.in.which.the.box.is.o |
| 3ef40 | 70 65 72 61 74 69 6e 67 2e 20 54 68 69 73 20 63 61 6e 20 6c 69 6d 69 74 20 61 76 61 69 6c 61 62 | perating..This.can.limit.availab |
| 3ef60 | 6c 65 20 63 68 61 6e 6e 65 6c 73 20 61 6e 64 20 74 72 61 6e 73 6d 69 74 20 70 6f 77 65 72 2e 00 | le.channels.and.transmit.power.. |
| 3ef80 | 43 72 65 61 74 20 63 6f 6d 6d 75 6e 69 74 79 2d 6c 69 73 74 20 70 6f 6c 69 63 79 20 69 64 65 6e | Creat.community-list.policy.iden |
| 3efa0 | 74 69 66 69 65 64 20 62 79 20 6e 61 6d 65 20 3c 74 65 78 74 3e 2e 00 43 72 65 61 74 20 65 78 74 | tified.by.name.<text>..Creat.ext |
| 3efc0 | 63 6f 6d 6d 75 6e 69 74 79 2d 6c 69 73 74 20 70 6f 6c 69 63 79 20 69 64 65 6e 74 69 66 69 65 64 | community-list.policy.identified |
| 3efe0 | 20 62 79 20 6e 61 6d 65 20 3c 74 65 78 74 3e 2e 00 43 72 65 61 74 65 20 44 48 43 50 20 61 64 64 | .by.name.<text>..Create.DHCP.add |
| 3f000 | 72 65 73 73 20 72 61 6e 67 65 20 77 69 74 68 20 61 20 72 61 6e 67 65 20 69 64 20 6f 66 20 60 3c | ress.range.with.a.range.id.of.`< |
| 3f020 | 6e 3e 60 2e 20 44 48 43 50 20 6c 65 61 73 65 73 20 61 72 65 20 74 61 6b 65 6e 20 66 72 6f 6d 20 | n>`..DHCP.leases.are.taken.from. |
| 3f040 | 74 68 69 73 20 70 6f 6f 6c 2e 20 54 68 65 20 70 6f 6f 6c 20 73 74 61 72 74 73 20 61 74 20 61 64 | this.pool..The.pool.starts.at.ad |
| 3f060 | 64 72 65 73 73 20 60 3c 61 64 64 72 65 73 73 3e 60 2e 00 43 72 65 61 74 65 20 44 48 43 50 20 61 | dress.`<address>`..Create.DHCP.a |
| 3f080 | 64 64 72 65 73 73 20 72 61 6e 67 65 20 77 69 74 68 20 61 20 72 61 6e 67 65 20 69 64 20 6f 66 20 | ddress.range.with.a.range.id.of. |
| 3f0a0 | 60 3c 6e 3e 60 2e 20 44 48 43 50 20 6c 65 61 73 65 73 20 61 72 65 20 74 61 6b 65 6e 20 66 72 6f | `<n>`..DHCP.leases.are.taken.fro |
| 3f0c0 | 6d 20 74 68 69 73 20 70 6f 6f 6c 2e 20 54 68 65 20 70 6f 6f 6c 20 73 74 6f 70 73 20 77 69 74 68 | m.this.pool..The.pool.stops.with |
| 3f0e0 | 20 61 64 64 72 65 73 73 20 60 3c 61 64 64 72 65 73 73 3e 60 2e 00 43 72 65 61 74 65 20 44 4e 53 | .address.`<address>`..Create.DNS |
| 3f100 | 20 72 65 63 6f 72 64 20 70 65 72 20 63 6c 69 65 6e 74 20 6c 65 61 73 65 2c 20 62 79 20 61 64 64 | .record.per.client.lease,.by.add |
| 3f120 | 69 6e 67 20 63 6c 69 65 6e 74 73 20 74 6f 20 2f 65 74 63 2f 68 6f 73 74 73 20 66 69 6c 65 2e 20 | ing.clients.to./etc/hosts.file.. |
| 3f140 | 45 6e 74 72 79 20 77 69 6c 6c 20 68 61 76 65 20 66 6f 72 6d 61 74 3a 20 60 3c 73 68 61 72 65 64 | Entry.will.have.format:.`<shared |
| 3f160 | 2d 6e 65 74 77 6f 72 6b 2d 6e 61 6d 65 3e 5f 3c 68 6f 73 74 6e 61 6d 65 3e 2e 3c 64 6f 6d 61 69 | -network-name>_<hostname>.<domai |
| 3f180 | 6e 2d 6e 61 6d 65 3e 60 00 43 72 65 61 74 65 20 60 3c 75 73 65 72 3e 60 20 66 6f 72 20 6c 6f 63 | n-name>`.Create.`<user>`.for.loc |
| 3f1a0 | 61 6c 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6f 6e 20 74 68 69 73 20 73 79 73 74 65 6d | al.authentication.on.this.system |
| 3f1c0 | 2e 20 54 68 65 20 75 73 65 72 73 20 70 61 73 73 77 6f 72 64 20 77 69 6c 6c 20 62 65 20 73 65 74 | ..The.users.password.will.be.set |
| 3f1e0 | 20 74 6f 20 60 3c 70 61 73 73 3e 60 2e 00 43 72 65 61 74 65 20 60 60 31 37 32 2e 31 38 2e 32 30 | .to.`<pass>`..Create.``172.18.20 |
| 3f200 | 31 2e 30 2f 32 34 60 60 20 61 73 20 61 20 73 75 62 6e 65 74 20 77 69 74 68 69 6e 20 60 60 4e 45 | 1.0/24``.as.a.subnet.within.``NE |
| 3f220 | 54 31 60 60 20 61 6e 64 20 70 61 73 73 20 61 64 64 72 65 73 73 20 6f 66 20 55 6e 69 66 69 20 63 | T1``.and.pass.address.of.Unifi.c |
| 3f240 | 6f 6e 74 72 6f 6c 6c 65 72 20 61 74 20 60 60 31 37 32 2e 31 36 2e 31 30 30 2e 31 60 60 20 74 6f | ontroller.at.``172.16.100.1``.to |
| 3f260 | 20 63 6c 69 65 6e 74 73 20 6f 66 20 74 68 61 74 20 73 75 62 6e 65 74 2e 00 43 72 65 61 74 65 20 | .clients.of.that.subnet..Create. |
| 3f280 | 61 20 43 41 20 63 68 61 69 6e 20 61 6e 64 20 6c 65 61 66 20 63 65 72 74 69 66 69 63 61 74 65 73 | a.CA.chain.and.leaf.certificates |
| 3f2a0 | 00 43 72 65 61 74 65 20 61 20 62 61 73 69 63 20 62 72 69 64 67 65 00 43 72 65 61 74 65 20 61 20 | .Create.a.basic.bridge.Create.a. |
| 3f2c0 | 66 69 6c 65 20 6e 61 6d 65 64 20 60 60 56 79 4f 53 2d 31 2e 33 2e 36 2e 31 2e 34 2e 31 2e 34 34 | file.named.``VyOS-1.3.6.1.4.1.44 |
| 3f2e0 | 36 34 31 2e 43 6f 6e 66 69 67 4d 67 6d 74 2d 43 6f 6d 6d 61 6e 64 73 60 60 20 75 73 69 6e 67 20 | 641.ConfigMgmt-Commands``.using. |
| 3f300 | 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6e 74 65 6e 74 3a 00 43 72 65 61 74 65 20 61 20 | the.following.content:.Create.a. |
| 3f320 | 6c 6f 61 64 20 62 61 6c 61 6e 63 69 6e 67 20 72 75 6c 65 2c 20 69 74 20 63 61 6e 20 62 65 20 61 | load.balancing.rule,.it.can.be.a |
| 3f340 | 20 6e 75 6d 62 65 72 20 62 65 74 77 65 65 6e 20 31 20 61 6e 64 20 39 39 39 39 3a 00 43 72 65 61 | .number.between.1.and.9999:.Crea |
| 3f360 | 74 65 20 61 20 6e 65 77 20 3a 61 62 62 72 3a 60 43 41 20 28 43 65 72 74 69 66 69 63 61 74 65 20 | te.a.new.:abbr:`CA.(Certificate. |
| 3f380 | 41 75 74 68 6f 72 69 74 79 29 60 20 61 6e 64 20 6f 75 74 70 75 74 20 74 68 65 20 43 41 73 20 70 | Authority)`.and.output.the.CAs.p |
| 3f3a0 | 75 62 6c 69 63 20 61 6e 64 20 70 72 69 76 61 74 65 20 6b 65 79 20 6f 6e 20 74 68 65 20 63 6f 6e | ublic.and.private.key.on.the.con |
| 3f3c0 | 73 6f 6c 65 2e 00 43 72 65 61 74 65 20 61 20 6e 65 77 20 44 48 43 50 20 73 74 61 74 69 63 20 6d | sole..Create.a.new.DHCP.static.m |
| 3f3e0 | 61 70 70 69 6e 67 20 6e 61 6d 65 64 20 60 3c 64 65 73 63 72 69 70 74 69 6f 6e 3e 60 20 77 68 69 | apping.named.`<description>`.whi |
| 3f400 | 63 68 20 69 73 20 76 61 6c 69 64 20 66 6f 72 20 74 68 65 20 68 6f 73 74 20 69 64 65 6e 74 69 66 | ch.is.valid.for.the.host.identif |
| 3f420 | 69 65 64 20 62 79 20 69 74 73 20 44 48 43 50 20 75 6e 69 71 75 65 20 69 64 65 6e 74 69 66 69 65 | ied.by.its.DHCP.unique.identifie |
| 3f440 | 72 20 28 44 55 49 44 29 20 60 3c 69 64 65 6e 74 69 66 69 65 72 3e 60 2e 00 43 72 65 61 74 65 20 | r.(DUID).`<identifier>`..Create. |
| 3f460 | 61 20 6e 65 77 20 44 48 43 50 20 73 74 61 74 69 63 20 6d 61 70 70 69 6e 67 20 6e 61 6d 65 64 20 | a.new.DHCP.static.mapping.named. |
| 3f480 | 60 3c 64 65 73 63 72 69 70 74 69 6f 6e 3e 60 20 77 68 69 63 68 20 69 73 20 76 61 6c 69 64 20 66 | `<description>`.which.is.valid.f |
| 3f4a0 | 6f 72 20 74 68 65 20 68 6f 73 74 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 69 74 73 20 4d 41 | or.the.host.identified.by.its.MA |
| 3f4c0 | 43 20 60 3c 61 64 64 72 65 73 73 3e 60 2e 00 43 72 65 61 74 65 20 61 20 6e 65 77 20 56 4c 41 4e | C.`<address>`..Create.a.new.VLAN |
| 3f4e0 | 20 69 6e 74 65 72 66 61 63 65 20 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 60 3c 69 6e 74 65 72 66 | .interface.on.interface.`<interf |
| 3f500 | 61 63 65 3e 60 20 75 73 69 6e 67 20 74 68 65 20 56 4c 41 4e 20 6e 75 6d 62 65 72 20 70 72 6f 76 | ace>`.using.the.VLAN.number.prov |
| 3f520 | 69 64 65 64 20 76 69 61 20 60 3c 76 6c 61 6e 2d 69 64 3e 60 2e 00 43 72 65 61 74 65 20 61 20 6e | ided.via.`<vlan-id>`..Create.a.n |
| 3f540 | 65 77 20 56 52 46 20 69 6e 73 74 61 6e 63 65 20 77 69 74 68 20 60 3c 6e 61 6d 65 3e 60 20 61 6e | ew.VRF.instance.with.`<name>`.an |
| 3f560 | 64 20 60 3c 69 64 3e 60 2e 20 54 68 65 20 6e 61 6d 65 20 69 73 20 75 73 65 64 20 77 68 65 6e 20 | d.`<id>`..The.name.is.used.when. |
| 3f580 | 70 6c 61 63 69 6e 67 20 69 6e 64 69 76 69 64 75 61 6c 20 69 6e 74 65 72 66 61 63 65 73 20 69 6e | placing.individual.interfaces.in |
| 3f5a0 | 74 6f 20 74 68 65 20 56 52 46 2e 00 43 72 65 61 74 65 20 61 20 6e 65 77 20 70 75 62 6c 69 63 2f | to.the.VRF..Create.a.new.public/ |
| 3f5c0 | 70 72 69 76 61 74 65 20 6b 65 79 70 61 69 72 20 61 6e 64 20 6f 75 74 70 75 74 20 74 68 65 20 63 | private.keypair.and.output.the.c |
| 3f5e0 | 65 72 74 69 66 69 63 61 74 65 20 6f 6e 20 74 68 65 20 63 6f 6e 73 6f 6c 65 2e 00 43 72 65 61 74 | ertificate.on.the.console..Creat |
| 3f600 | 65 20 61 20 6e 65 77 20 70 75 62 6c 69 63 2f 70 72 69 76 61 74 65 20 6b 65 79 70 61 69 72 20 77 | e.a.new.public/private.keypair.w |
| 3f620 | 68 69 63 68 20 69 73 20 73 69 67 6e 65 64 20 62 79 20 74 68 65 20 43 41 20 72 65 66 65 72 65 6e | hich.is.signed.by.the.CA.referen |
| 3f640 | 63 65 64 20 62 79 20 60 63 61 2d 6e 61 6d 65 60 2e 20 54 68 65 20 73 69 67 6e 65 64 20 63 65 72 | ced.by.`ca-name`..The.signed.cer |
| 3f660 | 74 69 66 69 63 61 74 65 20 69 73 20 74 68 65 6e 20 6f 75 74 70 75 74 20 74 6f 20 74 68 65 20 63 | tificate.is.then.output.to.the.c |
| 3f680 | 6f 6e 73 6f 6c 65 2e 00 43 72 65 61 74 65 20 61 20 6e 65 77 20 73 65 6c 66 2d 73 69 67 6e 65 64 | onsole..Create.a.new.self-signed |
| 3f6a0 | 20 63 65 72 74 69 66 69 63 61 74 65 2e 20 54 68 65 20 70 75 62 6c 69 63 2f 70 72 69 76 61 74 65 | .certificate..The.public/private |
| 3f6c0 | 20 69 73 20 74 68 65 6e 20 73 68 6f 77 6e 20 6f 6e 20 74 68 65 20 63 6f 6e 73 6f 6c 65 2e 00 43 | .is.then.shown.on.the.console..C |
| 3f6e0 | 72 65 61 74 65 20 61 20 6e 65 77 20 73 75 62 6f 72 64 69 6e 61 74 65 20 3a 61 62 62 72 3a 60 43 | reate.a.new.subordinate.:abbr:`C |
| 3f700 | 41 20 28 43 65 72 74 69 66 69 63 61 74 65 20 41 75 74 68 6f 72 69 74 79 29 60 20 61 6e 64 20 73 | A.(Certificate.Authority)`.and.s |
| 3f720 | 69 67 6e 20 69 74 20 75 73 69 6e 67 20 74 68 65 20 70 72 69 76 61 74 65 20 6b 65 79 20 72 65 66 | ign.it.using.the.private.key.ref |
| 3f740 | 65 72 65 6e 63 65 64 20 62 79 20 60 63 61 2d 6e 61 6d 65 60 2e 00 43 72 65 61 74 65 20 61 20 6e | erenced.by.`ca-name`..Create.a.n |
| 3f760 | 65 77 20 73 75 62 6f 72 64 69 6e 61 74 65 20 3a 61 62 62 72 3a 60 43 41 20 28 43 65 72 74 69 66 | ew.subordinate.:abbr:`CA.(Certif |
| 3f780 | 69 63 61 74 65 20 41 75 74 68 6f 72 69 74 79 29 60 20 61 6e 64 20 73 69 67 6e 20 69 74 20 75 73 | icate.Authority)`.and.sign.it.us |
| 3f7a0 | 69 6e 67 20 74 68 65 20 70 72 69 76 61 74 65 20 6b 65 79 20 72 65 66 65 72 65 6e 63 65 64 20 62 | ing.the.private.key.referenced.b |
| 3f7c0 | 79 20 60 6e 61 6d 65 60 2e 00 43 72 65 61 74 65 20 61 20 70 65 65 72 20 61 73 20 79 6f 75 20 77 | y.`name`..Create.a.peer.as.you.w |
| 3f7e0 | 6f 75 6c 64 20 77 68 65 6e 20 79 6f 75 20 73 70 65 63 69 66 79 20 61 6e 20 41 53 4e 2c 20 65 78 | ould.when.you.specify.an.ASN,.ex |
| 3f800 | 63 65 70 74 20 74 68 61 74 20 69 66 20 74 68 65 20 70 65 65 72 73 20 41 53 4e 20 69 73 20 64 69 | cept.that.if.the.peers.ASN.is.di |
| 3f820 | 66 66 65 72 65 6e 74 20 74 68 61 6e 20 6d 69 6e 65 20 61 73 20 73 70 65 63 69 66 69 65 64 20 75 | fferent.than.mine.as.specified.u |
| 3f840 | 6e 64 65 72 20 74 68 65 20 3a 63 66 67 63 6d 64 3a 60 70 72 6f 74 6f 63 6f 6c 73 20 62 67 70 20 | nder.the.:cfgcmd:`protocols.bgp. |
| 3f860 | 3c 61 73 6e 3e 60 20 63 6f 6d 6d 61 6e 64 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 77 69 | <asn>`.command.the.connection.wi |
| 3f880 | 6c 6c 20 62 65 20 64 65 6e 69 65 64 2e 00 43 72 65 61 74 65 20 61 20 70 65 65 72 20 61 73 20 79 | ll.be.denied..Create.a.peer.as.y |
| 3f8a0 | 6f 75 20 77 6f 75 6c 64 20 77 68 65 6e 20 79 6f 75 20 73 70 65 63 69 66 79 20 61 6e 20 41 53 4e | ou.would.when.you.specify.an.ASN |
| 3f8c0 | 2c 20 65 78 63 65 70 74 20 74 68 61 74 20 69 66 20 74 68 65 20 70 65 65 72 73 20 41 53 4e 20 69 | ,.except.that.if.the.peers.ASN.i |
| 3f8e0 | 73 20 74 68 65 20 73 61 6d 65 20 61 73 20 6d 69 6e 65 20 61 73 20 73 70 65 63 69 66 69 65 64 20 | s.the.same.as.mine.as.specified. |
| 3f900 | 75 6e 64 65 72 20 74 68 65 20 3a 63 66 67 63 6d 64 3a 60 70 72 6f 74 6f 63 6f 6c 73 20 62 67 70 | under.the.:cfgcmd:`protocols.bgp |
| 3f920 | 20 3c 61 73 6e 3e 60 20 63 6f 6d 6d 61 6e 64 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 77 | .<asn>`.command.the.connection.w |
| 3f940 | 69 6c 6c 20 62 65 20 64 65 6e 69 65 64 2e 00 43 72 65 61 74 65 20 61 20 73 74 61 74 69 63 20 68 | ill.be.denied..Create.a.static.h |
| 3f960 | 6f 73 74 6e 61 6d 65 20 6d 61 70 70 69 6e 67 20 77 68 69 63 68 20 77 69 6c 6c 20 61 6c 77 61 79 | ostname.mapping.which.will.alway |
| 3f980 | 73 20 72 65 73 6f 6c 76 65 20 74 68 65 20 6e 61 6d 65 20 60 3c 68 6f 73 74 6e 61 6d 65 3e 60 20 | s.resolve.the.name.`<hostname>`. |
| 3f9a0 | 74 6f 20 49 50 20 61 64 64 72 65 73 73 20 60 3c 61 64 64 72 65 73 73 3e 60 2e 00 43 72 65 61 74 | to.IP.address.`<address>`..Creat |
| 3f9c0 | 65 20 61 73 2d 70 61 74 68 2d 70 6f 6c 69 63 79 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 6e | e.as-path-policy.identified.by.n |
| 3f9e0 | 61 6d 65 20 3c 74 65 78 74 3e 2e 00 43 72 65 61 74 65 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 | ame.<text>..Create.firewall.rule |
| 3fa00 | 20 69 6e 20 66 6f 72 77 61 72 64 20 63 68 61 69 6e 2c 20 61 6e 64 20 64 65 66 69 6e 65 20 77 68 | .in.forward.chain,.and.define.wh |
| 3fa20 | 69 63 68 20 66 6c 6f 77 74 62 61 6c 65 20 73 68 6f 75 6c 64 20 62 65 20 75 73 65 64 2e 20 4f 6e | ich.flowtbale.should.be.used..On |
| 3fa40 | 6c 79 20 61 70 70 6c 69 63 61 62 6c 65 20 69 66 20 61 63 74 69 6f 6e 20 69 73 20 60 60 6f 66 66 | ly.applicable.if.action.is.``off |
| 3fa60 | 6c 6f 61 64 60 60 2e 00 43 72 65 61 74 65 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 20 69 6e 20 | load``..Create.firewall.rule.in. |
| 3fa80 | 66 6f 72 77 61 72 64 20 63 68 61 69 6e 2c 20 61 6e 64 20 73 65 74 20 61 63 74 69 6f 6e 20 74 6f | forward.chain,.and.set.action.to |
| 3faa0 | 20 60 60 6f 66 66 6c 6f 61 64 60 60 2e 00 43 72 65 61 74 65 20 66 69 72 65 77 61 6c 6c 20 72 75 | .``offload``..Create.firewall.ru |
| 3fac0 | 6c 65 3a 20 63 72 65 61 74 65 20 61 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 2c 20 73 65 74 74 | le:.create.a.firewall.rule,.sett |
| 3fae0 | 69 6e 67 20 61 63 74 69 6f 6e 20 74 6f 20 60 60 6f 66 66 6c 6f 61 64 60 60 20 61 6e 64 20 75 73 | ing.action.to.``offload``.and.us |
| 3fb00 | 69 6e 67 20 64 65 73 69 72 65 64 20 66 6c 6f 77 74 61 62 6c 65 20 66 6f 72 20 60 60 6f 66 66 6c | ing.desired.flowtable.for.``offl |
| 3fb20 | 6f 61 64 2d 74 61 72 67 65 74 60 60 2e 00 43 72 65 61 74 65 20 66 6c 6f 77 74 61 62 6c 65 3a 20 | oad-target``..Create.flowtable:. |
| 3fb40 | 63 72 65 61 74 65 20 66 6c 6f 77 74 61 62 6c 65 2c 20 77 68 69 63 68 20 69 6e 63 6c 75 64 65 73 | create.flowtable,.which.includes |
| 3fb60 | 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 73 20 74 68 61 74 20 61 72 65 20 67 6f 69 6e 67 20 74 | .the.interfaces.that.are.going.t |
| 3fb80 | 6f 20 62 65 20 75 73 65 64 20 62 79 20 74 68 65 20 66 6c 6f 77 74 61 62 6c 65 2e 00 43 72 65 61 | o.be.used.by.the.flowtable..Crea |
| 3fba0 | 74 65 20 6c 61 72 67 65 2d 63 6f 6d 6d 75 6e 69 74 79 2d 6c 69 73 74 20 70 6f 6c 69 63 79 20 69 | te.large-community-list.policy.i |
| 3fbc0 | 64 65 6e 74 69 66 69 65 64 20 62 79 20 6e 61 6d 65 20 3c 74 65 78 74 3e 2e 00 43 72 65 61 74 65 | dentified.by.name.<text>..Create |
| 3fbe0 | 20 6e 61 6d 65 64 20 60 3c 61 6c 69 61 73 3e 60 20 66 6f 72 20 74 68 65 20 63 6f 6e 66 69 67 75 | .named.`<alias>`.for.the.configu |
| 3fc00 | 72 65 64 20 73 74 61 74 69 63 20 6d 61 70 70 69 6e 67 20 66 6f 72 20 60 3c 68 6f 73 74 6e 61 6d | red.static.mapping.for.`<hostnam |
| 3fc20 | 65 3e 60 2e 20 54 68 75 73 20 74 68 65 20 61 64 64 72 65 73 73 20 63 6f 6e 66 69 67 75 72 65 64 | e>`..Thus.the.address.configured |
| 3fc40 | 20 61 73 20 3a 63 66 67 63 6d 64 3a 60 73 65 74 20 73 79 73 74 65 6d 20 73 74 61 74 69 63 2d 68 | .as.:cfgcmd:`set.system.static-h |
| 3fc60 | 6f 73 74 2d 6d 61 70 70 69 6e 67 20 68 6f 73 74 2d 6e 61 6d 65 20 3c 68 6f 73 74 6e 61 6d 65 3e | ost-mapping.host-name.<hostname> |
| 3fc80 | 20 69 6e 65 74 20 3c 61 64 64 72 65 73 73 3e 60 20 63 61 6e 20 62 65 20 72 65 61 63 68 65 64 20 | .inet.<address>`.can.be.reached. |
| 3fca0 | 76 69 61 20 6d 75 6c 74 69 70 6c 65 20 6e 61 6d 65 73 2e 00 43 72 65 61 74 65 20 6e 65 77 20 3a | via.multiple.names..Create.new.: |
| 3fcc0 | 72 66 63 3a 60 32 31 33 36 60 20 44 4e 53 20 75 70 64 61 74 65 20 63 6f 6e 66 69 67 75 72 61 74 | rfc:`2136`.DNS.update.configurat |
| 3fce0 | 69 6f 6e 20 77 68 69 63 68 20 77 69 6c 6c 20 75 70 64 61 74 65 20 74 68 65 20 49 50 20 61 64 64 | ion.which.will.update.the.IP.add |
| 3fd00 | 72 65 73 73 20 61 73 73 69 67 6e 65 64 20 74 6f 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 20 6f | ress.assigned.to.`<interface>`.o |
| 3fd20 | 6e 20 74 68 65 20 73 65 72 76 69 63 65 20 79 6f 75 20 63 6f 6e 66 69 67 75 72 65 64 20 75 6e 64 | n.the.service.you.configured.und |
| 3fd40 | 65 72 20 60 3c 73 65 72 76 69 63 65 2d 6e 61 6d 65 3e 60 2e 00 43 72 65 61 74 65 20 6e 65 77 20 | er.`<service-name>`..Create.new. |
| 3fd60 | 56 52 46 20 69 6e 73 74 61 6e 63 65 20 77 69 74 68 20 60 3c 6e 61 6d 65 3e 60 2e 20 54 68 65 20 | VRF.instance.with.`<name>`..The. |
| 3fd80 | 6e 61 6d 65 20 69 73 20 75 73 65 64 20 77 68 65 6e 20 70 6c 61 63 69 6e 67 20 69 6e 64 69 76 69 | name.is.used.when.placing.indivi |
| 3fda0 | 64 75 61 6c 20 69 6e 74 65 72 66 61 63 65 73 20 69 6e 74 6f 20 74 68 65 20 56 52 46 2e 00 43 72 | dual.interfaces.into.the.VRF..Cr |
| 3fdc0 | 65 61 74 65 20 6e 65 77 20 64 79 6e 61 6d 69 63 20 44 4e 53 20 75 70 64 61 74 65 20 63 6f 6e 66 | eate.new.dynamic.DNS.update.conf |
| 3fde0 | 69 67 75 72 61 74 69 6f 6e 20 77 68 69 63 68 20 77 69 6c 6c 20 75 70 64 61 74 65 20 74 68 65 20 | iguration.which.will.update.the. |
| 3fe00 | 49 50 20 61 64 64 72 65 73 73 20 61 73 73 69 67 6e 65 64 20 74 6f 20 60 3c 69 6e 74 65 72 66 61 | IP.address.assigned.to.`<interfa |
| 3fe20 | 63 65 3e 60 20 6f 6e 20 74 68 65 20 73 65 72 76 69 63 65 20 79 6f 75 20 63 6f 6e 66 69 67 75 72 | ce>`.on.the.service.you.configur |
| 3fe40 | 65 64 20 75 6e 64 65 72 20 60 3c 73 65 72 76 69 63 65 2d 6e 61 6d 65 3e 60 2e 00 43 72 65 61 74 | ed.under.`<service-name>`..Creat |
| 3fe60 | 65 20 6e 65 77 20 73 79 73 74 65 6d 20 75 73 65 72 20 77 69 74 68 20 75 73 65 72 6e 61 6d 65 20 | e.new.system.user.with.username. |
| 3fe80 | 60 3c 6e 61 6d 65 3e 60 20 61 6e 64 20 72 65 61 6c 2d 6e 61 6d 65 20 73 70 65 63 69 66 69 65 64 | `<name>`.and.real-name.specified |
| 3fea0 | 20 62 79 20 60 3c 73 74 72 69 6e 67 3e 60 2e 00 43 72 65 61 74 65 20 73 65 72 76 69 63 65 20 60 | .by.`<string>`..Create.service.` |
| 3fec0 | 3c 6e 61 6d 65 3e 60 20 74 6f 20 6c 69 73 74 65 6e 20 6f 6e 20 3c 70 6f 72 74 3e 00 43 72 65 61 | <name>`.to.listen.on.<port>.Crea |
| 3fee0 | 74 65 73 20 61 20 6e 61 6d 65 64 20 63 6f 6e 74 61 69 6e 65 72 20 6e 65 74 77 6f 72 6b 00 43 72 | tes.a.named.container.network.Cr |
| 3ff00 | 65 61 74 65 73 20 6c 6f 63 61 6c 20 49 50 6f 45 20 75 73 65 72 20 77 69 74 68 20 75 73 65 72 6e | eates.local.IPoE.user.with.usern |
| 3ff20 | 61 6d 65 3d 2a 2a 3c 69 6e 74 65 72 66 61 63 65 3e 2a 2a 20 61 6e 64 20 70 61 73 73 77 6f 72 64 | ame=**<interface>**.and.password |
| 3ff40 | 3d 2a 2a 3c 4d 41 43 3e 2a 2a 20 28 6d 61 63 2d 61 64 64 72 65 73 73 29 00 43 72 65 61 74 65 73 | =**<MAC>**.(mac-address).Creates |
| 3ff60 | 20 73 74 61 74 69 63 20 70 65 65 72 20 6d 61 70 70 69 6e 67 20 6f 66 20 70 72 6f 74 6f 63 6f 6c | .static.peer.mapping.of.protocol |
| 3ff80 | 2d 61 64 64 72 65 73 73 20 74 6f 20 3a 61 62 62 72 3a 60 4e 42 4d 41 20 28 4e 6f 6e 2d 62 72 6f | -address.to.:abbr:`NBMA.(Non-bro |
| 3ffa0 | 61 64 63 61 73 74 20 6d 75 6c 74 69 70 6c 65 2d 61 63 63 65 73 73 20 6e 65 74 77 6f 72 6b 29 60 | adcast.multiple-access.network)` |
| 3ffc0 | 20 61 64 64 72 65 73 73 2e 00 43 72 65 61 74 69 6e 67 20 61 20 62 72 69 64 67 65 20 69 6e 74 65 | .address..Creating.a.bridge.inte |
| 3ffe0 | 72 66 61 63 65 20 69 73 20 76 65 72 79 20 73 69 6d 70 6c 65 2e 20 49 6e 20 74 68 69 73 20 65 78 | rface.is.very.simple..In.this.ex |
| 40000 | 61 6d 70 6c 65 2c 20 77 65 20 77 69 6c 6c 20 68 61 76 65 3a 00 43 72 65 61 74 69 6e 67 20 61 20 | ample,.we.will.have:.Creating.a. |
| 40020 | 66 6c 6f 77 20 74 61 62 6c 65 3a 00 43 72 65 61 74 69 6e 67 20 61 20 74 72 61 66 66 69 63 20 70 | flow.table:.Creating.a.traffic.p |
| 40040 | 6f 6c 69 63 79 00 43 72 65 61 74 69 6e 67 20 72 75 6c 65 73 20 66 6f 72 20 75 73 69 6e 67 20 66 | olicy.Creating.rules.for.using.f |
| 40060 | 6c 6f 77 20 74 61 62 6c 65 73 3a 00 43 72 65 64 65 6e 74 69 61 6c 73 20 63 61 6e 20 62 65 20 64 | low.tables:.Credentials.can.be.d |
| 40080 | 65 66 69 6e 65 64 20 68 65 72 65 20 61 6e 64 20 77 69 6c 6c 20 6f 6e 6c 79 20 62 65 20 75 73 65 | efined.here.and.will.only.be.use |
| 400a0 | 64 20 77 68 65 6e 20 61 64 64 69 6e 67 20 61 20 63 6f 6e 74 61 69 6e 65 72 20 69 6d 61 67 65 20 | d.when.adding.a.container.image. |
| 400c0 | 74 6f 20 74 68 65 20 73 79 73 74 65 6d 2e 00 43 72 69 74 69 63 61 6c 00 43 72 69 74 69 63 61 6c | to.the.system..Critical.Critical |
| 400e0 | 20 63 6f 6e 64 69 74 69 6f 6e 73 20 2d 20 65 2e 67 2e 20 68 61 72 64 20 64 72 69 76 65 20 65 72 | .conditions.-.e.g..hard.drive.er |
| 40100 | 72 6f 72 73 2e 00 43 72 79 73 74 61 6c 66 6f 6e 74 7a 20 43 46 41 2d 35 33 33 00 43 72 79 73 74 | rors..Crystalfontz.CFA-533.Cryst |
| 40120 | 61 6c 66 6f 6e 74 7a 20 43 46 41 2d 36 33 31 00 43 72 79 73 74 61 6c 66 6f 6e 74 7a 20 43 46 41 | alfontz.CFA-631.Crystalfontz.CFA |
| 40140 | 2d 36 33 33 00 43 72 79 73 74 61 6c 66 6f 6e 74 7a 20 43 46 41 2d 36 33 35 00 43 75 72 20 48 6f | -633.Crystalfontz.CFA-635.Cur.Ho |
| 40160 | 70 20 4c 69 6d 69 74 00 43 75 72 72 65 6e 74 6c 79 20 64 6f 65 73 20 6e 6f 74 20 64 6f 20 6d 75 | p.Limit.Currently.does.not.do.mu |
| 40180 | 63 68 20 61 73 20 63 61 63 68 69 6e 67 20 69 73 20 6e 6f 74 20 69 6d 70 6c 65 6d 65 6e 74 65 64 | ch.as.caching.is.not.implemented |
| 401a0 | 2e 00 43 75 72 72 65 6e 74 6c 79 20 64 79 6e 61 6d 69 63 20 72 6f 75 74 69 6e 67 20 69 73 20 73 | ..Currently.dynamic.routing.is.s |
| 401c0 | 75 70 70 6f 72 74 65 64 20 66 6f 72 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 70 72 6f 74 6f | upported.for.the.following.proto |
| 401e0 | 63 6f 6c 73 3a 00 43 75 73 74 6f 6d 20 46 69 6c 65 00 43 75 73 74 6f 6d 20 62 72 69 64 67 65 20 | cols:.Custom.File.Custom.bridge. |
| 40200 | 66 69 72 65 77 61 6c 6c 20 63 68 61 69 6e 73 20 63 61 6e 20 62 65 20 63 72 65 61 74 65 20 77 69 | firewall.chains.can.be.create.wi |
| 40220 | 74 68 20 63 6f 6d 6d 61 6e 64 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 62 72 69 64 67 65 | th.command.``set.firewall.bridge |
| 40240 | 20 6e 61 6d 65 20 3c 6e 61 6d 65 3e 20 2e 2e 2e 60 60 2e 20 49 6e 20 6f 72 64 65 72 20 74 6f 20 | .name.<name>....``..In.order.to. |
| 40260 | 75 73 65 20 73 75 63 68 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 2c 20 61 20 72 75 6c 65 20 77 69 | use.such.custom.chain,.a.rule.wi |
| 40280 | 74 68 20 61 63 74 69 6f 6e 20 6a 75 6d 70 2c 20 61 6e 64 20 74 68 65 20 61 70 70 72 6f 70 69 61 | th.action.jump,.and.the.appropia |
| 402a0 | 74 65 20 74 61 72 67 65 74 20 73 68 6f 75 6c 64 20 62 65 20 64 65 66 69 6e 65 64 20 69 6e 20 61 | te.target.should.be.defined.in.a |
| 402c0 | 20 62 61 73 65 20 63 68 61 69 6e 2e 00 43 75 73 74 6f 6d 20 62 72 69 64 67 65 20 66 69 72 65 77 | .base.chain..Custom.bridge.firew |
| 402e0 | 61 6c 6c 20 63 68 61 69 6e 73 20 63 61 6e 20 62 65 20 63 72 65 61 74 65 20 77 69 74 68 20 63 6f | all.chains.can.be.create.with.co |
| 40300 | 6d 6d 61 6e 64 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 62 72 69 64 67 65 20 6e 61 6d 65 | mmand.``set.firewall.bridge.name |
| 40320 | 20 3c 6e 61 6d 65 3e 20 2e 2e 2e 60 60 2e 20 49 6e 20 6f 72 64 65 72 20 74 6f 20 75 73 65 20 73 | .<name>....``..In.order.to.use.s |
| 40340 | 75 63 68 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 2c 20 61 20 72 75 6c 65 20 77 69 74 68 20 61 63 | uch.custom.chain,.a.rule.with.ac |
| 40360 | 74 69 6f 6e 20 6a 75 6d 70 2c 20 61 6e 64 20 74 68 65 20 61 70 70 72 6f 70 72 69 61 74 65 20 74 | tion.jump,.and.the.appropriate.t |
| 40380 | 61 72 67 65 74 20 73 68 6f 75 6c 64 20 62 65 20 64 65 66 69 6e 65 64 20 69 6e 20 61 20 62 61 73 | arget.should.be.defined.in.a.bas |
| 403a0 | 65 20 63 68 61 69 6e 2e 00 43 75 73 74 6f 6d 20 62 72 69 64 67 65 20 66 69 72 65 77 61 6c 6c 20 | e.chain..Custom.bridge.firewall. |
| 403c0 | 63 68 61 69 6e 73 20 63 61 6e 20 62 65 20 63 72 65 61 74 65 64 20 77 69 74 68 20 74 68 65 20 63 | chains.can.be.created.with.the.c |
| 403e0 | 6f 6d 6d 61 6e 64 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 62 72 69 64 67 65 20 6e 61 6d | ommand.``set.firewall.bridge.nam |
| 40400 | 65 20 3c 6e 61 6d 65 3e 20 2e 2e 2e 60 60 2e 20 49 6e 20 6f 72 64 65 72 20 74 6f 20 75 73 65 20 | e.<name>....``..In.order.to.use. |
| 40420 | 73 75 63 68 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 2c 20 61 20 72 75 6c 65 20 77 69 74 68 20 61 | such.custom.chain,.a.rule.with.a |
| 40440 | 63 74 69 6f 6e 20 6a 75 6d 70 2c 20 61 6e 64 20 74 68 65 20 61 70 70 72 6f 70 72 69 61 74 65 20 | ction.jump,.and.the.appropriate. |
| 40460 | 74 61 72 67 65 74 20 73 68 6f 75 6c 64 20 62 65 20 64 65 66 69 6e 65 64 20 69 6e 20 61 20 62 61 | target.should.be.defined.in.a.ba |
| 40480 | 73 65 20 63 68 61 69 6e 2e 00 43 75 73 74 6f 6d 20 66 69 72 65 77 61 6c 6c 20 63 68 61 69 6e 73 | se.chain..Custom.firewall.chains |
| 404a0 | 20 63 61 6e 20 62 65 20 63 72 65 61 74 65 64 2c 20 77 69 74 68 20 63 6f 6d 6d 61 6e 64 73 20 60 | .can.be.created,.with.commands.` |
| 404c0 | 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 5b 69 70 76 34 20 7c 20 69 70 76 36 5d 20 5b 6e 61 6d | `set.firewall.[ipv4.|.ipv6].[nam |
| 404e0 | 65 20 7c 20 69 70 76 36 2d 6e 61 6d 65 5d 20 3c 6e 61 6d 65 3e 20 2e 2e 2e 60 60 2e 20 49 6e 20 | e.|.ipv6-name].<name>....``..In. |
| 40500 | 6f 72 64 65 72 20 74 6f 20 75 73 65 20 73 75 63 68 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 2c 20 | order.to.use.such.custom.chain,. |
| 40520 | 61 20 72 75 6c 65 20 77 69 74 68 20 2a 2a 61 63 74 69 6f 6e 20 6a 75 6d 70 2a 2a 2c 20 61 6e 64 | a.rule.with.**action.jump**,.and |
| 40540 | 20 74 68 65 20 61 70 70 72 6f 70 69 61 74 65 20 2a 2a 74 61 72 67 65 74 2a 2a 20 73 68 6f 75 6c | .the.appropiate.**target**.shoul |
| 40560 | 64 20 62 65 20 64 65 66 69 6e 65 64 20 69 6e 20 61 20 62 61 73 65 20 63 68 61 69 6e 2e 00 43 75 | d.be.defined.in.a.base.chain..Cu |
| 40580 | 73 74 6f 6d 20 66 69 72 65 77 61 6c 6c 20 63 68 61 69 6e 73 20 63 61 6e 20 62 65 20 63 72 65 61 | stom.firewall.chains.can.be.crea |
| 405a0 | 74 65 64 2c 20 77 69 74 68 20 63 6f 6d 6d 61 6e 64 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c | ted,.with.commands.``set.firewal |
| 405c0 | 6c 20 69 70 76 34 20 6e 61 6d 65 20 3c 6e 61 6d 65 3e 20 2e 2e 2e 60 60 2e 20 49 6e 20 6f 72 64 | l.ipv4.name.<name>....``..In.ord |
| 405e0 | 65 72 20 74 6f 20 75 73 65 20 73 75 63 68 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 2c 20 61 20 72 | er.to.use.such.custom.chain,.a.r |
| 40600 | 75 6c 65 20 77 69 74 68 20 2a 2a 61 63 74 69 6f 6e 20 6a 75 6d 70 2a 2a 2c 20 61 6e 64 20 74 68 | ule.with.**action.jump**,.and.th |
| 40620 | 65 20 61 70 70 72 6f 70 69 61 74 65 20 2a 2a 74 61 72 67 65 74 2a 2a 20 73 68 6f 75 6c 64 20 62 | e.appropiate.**target**.should.b |
| 40640 | 65 20 64 65 66 69 6e 65 64 20 69 6e 20 61 20 62 61 73 65 20 63 68 61 69 6e 2e 00 43 75 73 74 6f | e.defined.in.a.base.chain..Custo |
| 40660 | 6d 20 66 69 72 65 77 61 6c 6c 20 63 68 61 69 6e 73 20 63 61 6e 20 62 65 20 63 72 65 61 74 65 64 | m.firewall.chains.can.be.created |
| 40680 | 2c 20 77 69 74 68 20 63 6f 6d 6d 61 6e 64 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 | ,.with.commands.``set.firewall.i |
| 406a0 | 70 76 34 20 6e 61 6d 65 20 3c 6e 61 6d 65 3e 20 2e 2e 2e 60 60 2e 20 49 6e 20 6f 72 64 65 72 20 | pv4.name.<name>....``..In.order. |
| 406c0 | 74 6f 20 75 73 65 20 73 75 63 68 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 2c 20 61 20 72 75 6c 65 | to.use.such.custom.chain,.a.rule |
| 406e0 | 20 77 69 74 68 20 2a 2a 61 63 74 69 6f 6e 20 6a 75 6d 70 2a 2a 2c 20 61 6e 64 20 74 68 65 20 61 | .with.**action.jump**,.and.the.a |
| 40700 | 70 70 72 6f 70 72 69 61 74 65 20 2a 2a 74 61 72 67 65 74 2a 2a 20 73 68 6f 75 6c 64 20 62 65 20 | ppropriate.**target**.should.be. |
| 40720 | 64 65 66 69 6e 65 64 20 69 6e 20 61 20 62 61 73 65 20 63 68 61 69 6e 2e 00 43 75 73 74 6f 6d 20 | defined.in.a.base.chain..Custom. |
| 40740 | 66 69 72 65 77 61 6c 6c 20 63 68 61 69 6e 73 20 63 61 6e 20 62 65 20 63 72 65 61 74 65 64 2c 20 | firewall.chains.can.be.created,. |
| 40760 | 77 69 74 68 20 63 6f 6d 6d 61 6e 64 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 | with.commands.``set.firewall.ipv |
| 40780 | 36 20 6e 61 6d 65 20 3c 6e 61 6d 65 3e 20 2e 2e 2e 60 60 2e 20 49 6e 20 6f 72 64 65 72 20 74 6f | 6.name.<name>....``..In.order.to |
| 407a0 | 20 75 73 65 20 73 75 63 68 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 2c 20 61 20 72 75 6c 65 20 77 | .use.such.custom.chain,.a.rule.w |
| 407c0 | 69 74 68 20 2a 2a 61 63 74 69 6f 6e 20 6a 75 6d 70 2a 2a 2c 20 61 6e 64 20 74 68 65 20 61 70 70 | ith.**action.jump**,.and.the.app |
| 407e0 | 72 6f 70 69 61 74 65 20 2a 2a 74 61 72 67 65 74 2a 2a 20 73 68 6f 75 6c 64 20 62 65 20 64 65 66 | ropiate.**target**.should.be.def |
| 40800 | 69 6e 65 64 20 69 6e 20 61 20 62 61 73 65 20 63 68 61 69 6e 2e 00 43 75 73 74 6f 6d 20 66 69 72 | ined.in.a.base.chain..Custom.fir |
| 40820 | 65 77 61 6c 6c 20 63 68 61 69 6e 73 20 63 61 6e 20 62 65 20 63 72 65 61 74 65 64 2c 20 77 69 74 | ewall.chains.can.be.created,.wit |
| 40840 | 68 20 63 6f 6d 6d 61 6e 64 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 6e | h.commands.``set.firewall.ipv6.n |
| 40860 | 61 6d 65 20 3c 6e 61 6d 65 3e 20 2e 2e 2e 60 60 2e 20 49 6e 20 6f 72 64 65 72 20 74 6f 20 75 73 | ame.<name>....``..In.order.to.us |
| 40880 | 65 20 73 75 63 68 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 2c 20 61 20 72 75 6c 65 20 77 69 74 68 | e.such.custom.chain,.a.rule.with |
| 408a0 | 20 2a 2a 61 63 74 69 6f 6e 20 6a 75 6d 70 2a 2a 2c 20 61 6e 64 20 74 68 65 20 61 70 70 72 6f 70 | .**action.jump**,.and.the.approp |
| 408c0 | 72 69 61 74 65 20 2a 2a 74 61 72 67 65 74 2a 2a 20 73 68 6f 75 6c 64 20 62 65 20 64 65 66 69 6e | riate.**target**.should.be.defin |
| 408e0 | 65 64 20 69 6e 20 61 20 62 61 73 65 20 63 68 61 69 6e 2e 00 43 75 73 74 6f 6d 20 68 65 61 6c 74 | ed.in.a.base.chain..Custom.healt |
| 40900 | 68 2d 63 68 65 63 6b 20 73 63 72 69 70 74 20 61 6c 6c 6f 77 73 20 63 68 65 63 6b 69 6e 67 20 72 | h-check.script.allows.checking.r |
| 40920 | 65 61 6c 2d 73 65 72 76 65 72 20 61 76 61 69 6c 61 62 69 6c 69 74 79 00 43 75 73 74 6f 6d 69 7a | eal-server.availability.Customiz |
| 40940 | 65 64 20 69 67 6e 6f 72 65 20 72 75 6c 65 73 2c 20 62 61 73 65 64 20 6f 6e 20 61 20 70 61 63 6b | ed.ignore.rules,.based.on.a.pack |
| 40960 | 65 74 20 61 6e 64 20 66 6c 6f 77 20 73 65 6c 65 63 74 6f 72 2e 00 44 43 4f 20 63 61 6e 20 62 65 | et.and.flow.selector..DCO.can.be |
| 40980 | 20 65 6e 61 62 6c 65 64 20 66 6f 72 20 62 6f 74 68 20 6e 65 77 20 61 6e 64 20 65 78 69 73 74 69 | .enabled.for.both.new.and.existi |
| 409a0 | 6e 67 20 74 75 6e 6e 65 6c 73 2c 56 79 4f 53 20 61 64 64 73 20 61 6e 20 6f 70 74 69 6f 6e 20 69 | ng.tunnels,VyOS.adds.an.option.i |
| 409c0 | 6e 20 65 61 63 68 20 74 75 6e 6e 65 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 77 68 65 72 | n.each.tunnel.configuration.wher |
| 409e0 | 65 20 77 65 20 63 61 6e 20 65 6e 61 62 6c 65 20 74 68 69 73 20 66 75 6e 63 74 69 6f 6e 20 20 2e | e.we.can.enable.this.function... |
| 40a00 | 54 68 65 20 63 75 72 72 65 6e 74 20 62 65 73 74 20 70 72 61 63 74 69 63 65 20 69 73 20 74 6f 20 | The.current.best.practice.is.to. |
| 40a20 | 63 72 65 61 74 65 20 61 20 6e 65 77 20 74 75 6e 6e 65 6c 20 77 69 74 68 20 44 43 4f 20 74 6f 20 | create.a.new.tunnel.with.DCO.to. |
| 40a40 | 6d 69 6e 69 6d 69 7a 65 20 74 68 65 20 63 68 61 6e 63 65 20 6f 66 20 70 72 6f 62 6c 65 6d 73 20 | minimize.the.chance.of.problems. |
| 40a60 | 77 69 74 68 20 65 78 69 73 74 69 6e 67 20 63 6c 69 65 6e 74 73 2e 00 44 43 4f 20 63 61 6e 20 62 | with.existing.clients..DCO.can.b |
| 40a80 | 65 20 65 6e 61 62 6c 65 64 20 66 6f 72 20 62 6f 74 68 20 6e 65 77 20 61 6e 64 20 65 78 69 73 74 | e.enabled.for.both.new.and.exist |
| 40aa0 | 69 6e 67 20 74 75 6e 6e 65 6c 73 2e 20 56 79 4f 53 20 61 64 64 73 20 61 6e 20 6f 70 74 69 6f 6e | ing.tunnels..VyOS.adds.an.option |
| 40ac0 | 20 69 6e 20 65 61 63 68 20 74 75 6e 6e 65 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 77 68 | .in.each.tunnel.configuration.wh |
| 40ae0 | 65 72 65 20 77 65 20 63 61 6e 20 65 6e 61 62 6c 65 20 74 68 69 73 20 66 75 6e 63 74 69 6f 6e 2e | ere.we.can.enable.this.function. |
| 40b00 | 20 54 68 65 20 63 75 72 72 65 6e 74 20 62 65 73 74 20 70 72 61 63 74 69 63 65 20 69 73 20 74 6f | .The.current.best.practice.is.to |
| 40b20 | 20 63 72 65 61 74 65 20 61 20 6e 65 77 20 74 75 6e 6e 65 6c 20 77 69 74 68 20 44 43 4f 20 74 6f | .create.a.new.tunnel.with.DCO.to |
| 40b40 | 20 6d 69 6e 69 6d 69 7a 65 20 74 68 65 20 63 68 61 6e 63 65 20 6f 66 20 70 72 6f 62 6c 65 6d 73 | .minimize.the.chance.of.problems |
| 40b60 | 20 77 69 74 68 20 65 78 69 73 74 69 6e 67 20 63 6c 69 65 6e 74 73 2e 00 44 43 4f 20 73 75 70 70 | .with.existing.clients..DCO.supp |
| 40b80 | 6f 72 74 20 69 73 20 61 20 70 65 72 2d 74 75 6e 6e 65 6c 20 6f 70 74 69 6f 6e 20 61 6e 64 20 69 | ort.is.a.per-tunnel.option.and.i |
| 40ba0 | 74 20 69 73 20 6e 6f 74 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 65 6e 61 62 6c 65 64 20 62 | t.is.not.automatically.enabled.b |
| 40bc0 | 79 20 64 65 66 61 75 6c 74 20 66 6f 72 20 6e 65 77 20 6f 72 20 75 70 67 72 61 64 65 64 20 74 75 | y.default.for.new.or.upgraded.tu |
| 40be0 | 6e 6e 65 6c 73 2e 20 45 78 69 73 74 69 6e 67 20 74 75 6e 6e 65 6c 73 20 77 69 6c 6c 20 63 6f 6e | nnels..Existing.tunnels.will.con |
| 40c00 | 74 69 6e 75 65 20 74 6f 20 66 75 6e 63 74 69 6f 6e 20 61 73 20 74 68 65 79 20 68 61 76 65 20 69 | tinue.to.function.as.they.have.i |
| 40c20 | 6e 20 74 68 65 20 70 61 73 74 2e 00 44 44 6f 53 20 50 72 6f 74 65 63 74 69 6f 6e 00 44 48 20 47 | n.the.past..DDoS.Protection.DH.G |
| 40c40 | 72 6f 75 70 20 31 34 00 44 48 43 50 20 48 69 67 68 20 41 76 61 69 6c 61 62 69 6c 69 74 79 20 6d | roup.14.DHCP.High.Availability.m |
| 40c60 | 75 73 74 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 65 78 70 6c 69 63 69 74 6c 79 20 62 79 20 | ust.be.configured.explicitly.by. |
| 40c80 | 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 74 61 74 65 6d 65 6e 74 73 20 6f 6e 20 62 6f 74 68 | the.following.statements.on.both |
| 40ca0 | 20 73 65 72 76 65 72 73 3a 00 44 48 43 50 20 52 65 6c 61 79 00 44 48 43 50 20 53 65 72 76 65 72 | .servers:.DHCP.Relay.DHCP.Server |
| 40cc0 | 00 44 48 43 50 20 66 61 69 6c 6f 76 65 72 20 70 61 72 61 6d 65 74 65 72 73 00 44 48 43 50 20 6c | .DHCP.failover.parameters.DHCP.l |
| 40ce0 | 65 61 73 65 20 72 61 6e 67 65 00 44 48 43 50 20 72 61 6e 67 65 20 73 70 61 6e 73 20 66 72 6f 6d | ease.range.DHCP.range.spans.from |
| 40d00 | 20 60 31 39 32 2e 31 36 38 2e 31 38 39 2e 31 30 60 20 2d 20 60 31 39 32 2e 31 36 38 2e 31 38 39 | .`192.168.189.10`.-.`192.168.189 |
| 40d20 | 2e 32 35 30 60 00 44 48 43 50 20 72 65 6c 61 79 20 65 78 61 6d 70 6c 65 00 44 48 43 50 20 73 65 | .250`.DHCP.relay.example.DHCP.se |
| 40d40 | 72 76 65 72 20 69 73 20 6c 6f 63 61 74 65 64 20 61 74 20 49 50 76 34 20 61 64 64 72 65 73 73 20 | rver.is.located.at.IPv4.address. |
| 40d60 | 31 30 2e 30 2e 31 2e 34 20 6f 6e 20 60 60 65 74 68 32 60 60 2e 00 44 48 43 50 76 36 20 61 64 64 | 10.0.1.4.on.``eth2``..DHCPv6.add |
| 40d80 | 72 65 73 73 20 70 6f 6f 6c 73 20 6d 75 73 74 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 66 6f | ress.pools.must.be.configured.fo |
| 40da0 | 72 20 74 68 65 20 73 79 73 74 65 6d 20 74 6f 20 61 63 74 20 61 73 20 61 20 44 48 43 50 76 36 20 | r.the.system.to.act.as.a.DHCPv6. |
| 40dc0 | 73 65 72 76 65 72 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 6c 65 20 64 65 | server..The.following.example.de |
| 40de0 | 73 63 72 69 62 65 73 20 61 20 63 6f 6d 6d 6f 6e 20 73 63 65 6e 61 72 69 6f 2e 00 44 48 43 50 76 | scribes.a.common.scenario..DHCPv |
| 40e00 | 36 20 72 65 6c 61 79 20 65 78 61 6d 70 6c 65 00 44 48 43 50 76 36 20 72 65 71 75 65 73 74 73 20 | 6.relay.example.DHCPv6.requests. |
| 40e20 | 61 72 65 20 72 65 63 65 69 76 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 20 6f 6e 20 60 6c | are.received.by.the.router.on.`l |
| 40e40 | 69 73 74 65 6e 69 6e 67 20 69 6e 74 65 72 66 61 63 65 60 20 60 60 65 74 68 31 60 60 00 44 4d 56 | istening.interface`.``eth1``.DMV |
| 40e60 | 50 4e 00 44 4d 56 50 4e 20 65 78 61 6d 70 6c 65 20 6e 65 74 77 6f 72 6b 00 44 4d 56 50 4e 20 6e | PN.DMVPN.example.network.DMVPN.n |
| 40e80 | 65 74 77 6f 72 6b 00 44 4d 56 50 4e 20 6f 6e 6c 79 20 61 75 74 6f 6d 61 74 65 73 20 74 68 65 20 | etwork.DMVPN.only.automates.the. |
| 40ea0 | 74 75 6e 6e 65 6c 20 65 6e 64 70 6f 69 6e 74 20 64 69 73 63 6f 76 65 72 79 20 61 6e 64 20 73 65 | tunnel.endpoint.discovery.and.se |
| 40ec0 | 74 75 70 2e 20 41 20 63 6f 6d 70 6c 65 74 65 20 73 6f 6c 75 74 69 6f 6e 20 61 6c 73 6f 20 69 6e | tup..A.complete.solution.also.in |
| 40ee0 | 63 6f 72 70 6f 72 61 74 65 73 20 74 68 65 20 75 73 65 20 6f 66 20 61 20 72 6f 75 74 69 6e 67 20 | corporates.the.use.of.a.routing. |
| 40f00 | 70 72 6f 74 6f 63 6f 6c 2e 20 42 47 50 20 69 73 20 70 61 72 74 69 63 75 6c 61 72 6c 79 20 77 65 | protocol..BGP.is.particularly.we |
| 40f20 | 6c 6c 20 73 75 69 74 65 64 20 66 6f 72 20 75 73 65 20 77 69 74 68 20 44 4d 56 50 4e 2e 00 44 4e | ll.suited.for.use.with.DMVPN..DN |
| 40f40 | 41 54 00 44 4e 41 54 20 69 73 20 74 79 70 69 63 61 6c 6c 79 20 72 65 66 65 72 72 65 64 20 74 6f | AT.DNAT.is.typically.referred.to |
| 40f60 | 20 61 73 20 61 20 2a 2a 50 6f 72 74 20 46 6f 72 77 61 72 64 2a 2a 2e 20 57 68 65 6e 20 75 73 69 | .as.a.**Port.Forward**..When.usi |
| 40f80 | 6e 67 20 56 79 4f 53 20 61 73 20 61 20 4e 41 54 20 72 6f 75 74 65 72 20 61 6e 64 20 66 69 72 65 | ng.VyOS.as.a.NAT.router.and.fire |
| 40fa0 | 77 61 6c 6c 2c 20 61 20 63 6f 6d 6d 6f 6e 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 61 73 | wall,.a.common.configuration.tas |
| 40fc0 | 6b 20 69 73 20 74 6f 20 72 65 64 69 72 65 63 74 20 69 6e 63 6f 6d 69 6e 67 20 74 72 61 66 66 69 | k.is.to.redirect.incoming.traffi |
| 40fe0 | 63 20 74 6f 20 61 20 73 79 73 74 65 6d 20 62 65 68 69 6e 64 20 74 68 65 20 66 69 72 65 77 61 6c | c.to.a.system.behind.the.firewal |
| 41000 | 6c 2e 00 44 4e 41 54 20 72 75 6c 65 20 31 30 20 72 65 70 6c 61 63 65 73 20 74 68 65 20 64 65 73 | l..DNAT.rule.10.replaces.the.des |
| 41020 | 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 6f 66 20 61 6e 20 69 6e 62 6f 75 6e 64 20 70 | tination.address.of.an.inbound.p |
| 41040 | 61 63 6b 65 74 20 77 69 74 68 20 31 39 32 2e 30 2e 32 2e 31 30 00 44 4e 41 54 36 36 00 44 4e 53 | acket.with.192.0.2.10.DNAT66.DNS |
| 41060 | 20 46 6f 72 77 61 72 64 69 6e 67 00 44 4e 53 20 6e 61 6d 65 20 73 65 72 76 65 72 73 00 44 4e 53 | .Forwarding.DNS.name.servers.DNS |
| 41080 | 20 73 65 61 72 63 68 20 6c 69 73 74 20 74 6f 20 61 64 76 65 72 74 69 73 65 00 44 4e 53 20 73 65 | .search.list.to.advertise.DNS.se |
| 410a0 | 72 76 65 72 20 49 50 76 34 20 61 64 64 72 65 73 73 00 44 4e 53 20 73 65 72 76 65 72 20 69 73 20 | rver.IPv4.address.DNS.server.is. |
| 410c0 | 6c 6f 63 61 74 65 64 20 61 74 20 60 60 32 30 30 31 3a 64 62 38 3a 3a 66 66 66 66 60 60 00 44 4e | located.at.``2001:db8::ffff``.DN |
| 410e0 | 53 53 4c 00 44 53 43 50 20 76 61 6c 75 65 73 20 61 73 20 70 65 72 20 3a 72 66 63 3a 60 32 34 37 | SSL.DSCP.values.as.per.:rfc:`247 |
| 41100 | 34 60 20 61 6e 64 20 3a 72 66 63 3a 60 34 35 39 35 60 3a 00 44 53 53 53 2f 43 43 4b 20 4d 6f 64 | 4`.and.:rfc:`4595`:.DSSS/CCK.Mod |
| 41120 | 65 20 69 6e 20 34 30 20 4d 48 7a 2c 20 74 68 69 73 20 73 65 74 73 20 60 60 5b 44 53 53 53 5f 43 | e.in.40.MHz,.this.sets.``[DSSS_C |
| 41140 | 43 4b 2d 34 30 5d 60 60 00 44 61 74 61 20 69 73 20 70 72 6f 76 69 64 65 64 20 62 79 20 44 42 2d | CK-40]``.Data.is.provided.by.DB- |
| 41160 | 49 50 2e 63 6f 6d 20 75 6e 64 65 72 20 43 43 2d 42 59 2d 34 2e 30 20 6c 69 63 65 6e 73 65 2e 20 | IP.com.under.CC-BY-4.0.license.. |
| 41180 | 41 74 74 72 69 62 75 74 69 6f 6e 20 72 65 71 75 69 72 65 64 2c 20 70 65 72 6d 69 74 73 20 72 65 | Attribution.required,.permits.re |
| 411a0 | 64 69 73 74 72 69 62 75 74 69 6f 6e 20 73 6f 20 77 65 20 63 61 6e 20 69 6e 63 6c 75 64 65 20 61 | distribution.so.we.can.include.a |
| 411c0 | 20 64 61 74 61 62 61 73 65 20 69 6e 20 69 6d 61 67 65 73 28 7e 33 4d 42 20 63 6f 6d 70 72 65 73 | .database.in.images(~3MB.compres |
| 411e0 | 73 65 64 29 2e 20 49 6e 63 6c 75 64 65 73 20 63 72 6f 6e 20 73 63 72 69 70 74 20 28 6d 61 6e 75 | sed)..Includes.cron.script.(manu |
| 41200 | 61 6c 6c 79 20 63 61 6c 6c 61 62 6c 65 20 62 79 20 6f 70 2d 6d 6f 64 65 20 75 70 64 61 74 65 20 | ally.callable.by.op-mode.update. |
| 41220 | 67 65 6f 69 70 29 20 74 6f 20 6b 65 65 70 20 64 61 74 61 62 61 73 65 20 61 6e 64 20 72 75 6c 65 | geoip).to.keep.database.and.rule |
| 41240 | 73 20 75 70 64 61 74 65 64 2e 00 44 65 62 75 67 00 44 65 62 75 67 2d 6c 65 76 65 6c 20 6d 65 73 | s.updated..Debug.Debug-level.mes |
| 41260 | 73 61 67 65 73 20 2d 20 4d 65 73 73 61 67 65 73 20 74 68 61 74 20 63 6f 6e 74 61 69 6e 20 69 6e | sages.-.Messages.that.contain.in |
| 41280 | 66 6f 72 6d 61 74 69 6f 6e 20 6e 6f 72 6d 61 6c 6c 79 20 6f 66 20 75 73 65 20 6f 6e 6c 79 20 77 | formation.normally.of.use.only.w |
| 412a0 | 68 65 6e 20 64 65 62 75 67 67 69 6e 67 20 61 20 70 72 6f 67 72 61 6d 2e 00 44 65 66 61 75 6c 74 | hen.debugging.a.program..Default |
| 412c0 | 00 44 65 66 61 75 6c 74 20 31 2e 00 44 65 66 61 75 6c 74 20 47 61 74 65 77 61 79 2f 52 6f 75 74 | .Default.1..Default.Gateway/Rout |
| 412e0 | 65 00 44 65 66 61 75 6c 74 20 52 6f 75 74 65 72 20 50 72 65 66 65 72 65 6e 63 65 00 44 65 66 61 | e.Default.Router.Preference.Defa |
| 41300 | 75 6c 74 20 62 65 68 61 76 69 6f 72 20 2d 20 64 6f 6e 27 74 20 61 73 6b 20 63 6c 69 65 6e 74 20 | ult.behavior.-.don't.ask.client. |
| 41320 | 66 6f 72 20 6d 70 70 65 2c 20 62 75 74 20 61 6c 6c 6f 77 20 69 74 20 69 66 20 63 6c 69 65 6e 74 | for.mppe,.but.allow.it.if.client |
| 41340 | 20 77 61 6e 74 73 2e 20 50 6c 65 61 73 65 20 6e 6f 74 65 20 74 68 61 74 20 52 41 44 49 55 53 20 | .wants..Please.note.that.RADIUS. |
| 41360 | 6d 61 79 20 6f 76 65 72 72 69 64 65 20 74 68 69 73 20 6f 70 74 69 6f 6e 20 62 79 20 4d 53 2d 4d | may.override.this.option.by.MS-M |
| 41380 | 50 50 45 2d 45 6e 63 72 79 70 74 69 6f 6e 2d 50 6f 6c 69 63 79 20 61 74 74 72 69 62 75 74 65 2e | PPE-Encryption-Policy.attribute. |
| 413a0 | 00 44 65 66 61 75 6c 74 20 62 65 68 61 76 69 6f 72 20 2d 20 64 6f 6e 27 74 20 61 73 6b 20 74 68 | .Default.behavior.-.don't.ask.th |
| 413c0 | 65 20 63 6c 69 65 6e 74 20 66 6f 72 20 6d 70 70 65 2c 20 62 75 74 20 61 6c 6c 6f 77 20 69 74 20 | e.client.for.mppe,.but.allow.it. |
| 413e0 | 69 66 20 74 68 65 20 63 6c 69 65 6e 74 20 77 61 6e 74 73 2e 20 50 6c 65 61 73 65 20 6e 6f 74 65 | if.the.client.wants..Please.note |
| 41400 | 20 74 68 61 74 20 52 41 44 49 55 53 20 6d 61 79 20 6f 76 65 72 72 69 64 65 20 74 68 69 73 20 6f | .that.RADIUS.may.override.this.o |
| 41420 | 70 74 69 6f 6e 20 62 79 20 4d 53 2d 4d 50 50 45 2d 45 6e 63 72 79 70 74 69 6f 6e 2d 50 6f 6c 69 | ption.by.MS-MPPE-Encryption-Poli |
| 41440 | 63 79 20 61 74 74 72 69 62 75 74 65 2e 00 44 65 66 61 75 6c 74 20 62 65 68 61 76 69 6f 72 20 2d | cy.attribute..Default.behavior.- |
| 41460 | 20 64 6f 6e 27 74 20 61 73 6b 20 74 68 65 20 63 6c 69 65 6e 74 20 66 6f 72 20 6d 70 70 65 2c 20 | .don't.ask.the.client.for.mppe,. |
| 41480 | 62 75 74 20 61 6c 6c 6f 77 20 69 74 20 69 66 20 74 68 65 20 63 6c 69 65 6e 74 20 77 61 6e 74 73 | but.allow.it.if.the.client.wants |
| 414a0 | 2e 20 50 6c 65 61 73 65 20 6e 6f 74 65 20 74 68 61 74 20 52 41 44 49 55 53 20 6d 61 79 20 6f 76 | ..Please.note.that.RADIUS.may.ov |
| 414c0 | 65 72 72 69 64 65 20 74 68 69 73 20 6f 70 74 69 6f 6e 20 77 69 74 68 20 74 68 65 20 4d 53 2d 4d | erride.this.option.with.the.MS-M |
| 414e0 | 50 50 45 2d 45 6e 63 72 79 70 74 69 6f 6e 2d 50 6f 6c 69 63 79 20 61 74 74 72 69 62 75 74 65 2e | PPE-Encryption-Policy.attribute. |
| 41500 | 00 44 65 66 61 75 6c 74 20 67 61 74 65 77 61 79 20 61 6e 64 20 44 4e 53 20 73 65 72 76 65 72 20 | .Default.gateway.and.DNS.server. |
| 41520 | 69 73 20 61 74 20 60 31 39 32 2e 30 2e 32 2e 32 35 34 60 00 44 65 66 61 75 6c 74 20 69 73 20 30 | is.at.`192.0.2.254`.Default.is.0 |
| 41540 | 20 66 6f 72 20 75 6e 6c 69 6d 69 74 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 2c 20 31 2e 32 | .for.unlimited..For.example,.1.2 |
| 41560 | 35 20 6c 69 6d 69 74 73 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 20 74 6f 20 75 73 65 20 75 70 | 5.limits.the.container.to.use.up |
| 41580 | 20 74 6f 20 31 2e 32 35 20 63 6f 72 65 73 20 77 6f 72 74 68 20 6f 66 20 43 50 55 20 74 69 6d 65 | .to.1.25.cores.worth.of.CPU.time |
| 415a0 | 2e 20 54 68 69 73 20 63 61 6e 20 62 65 20 61 20 64 65 63 69 6d 61 6c 20 6e 75 6d 62 65 72 20 77 | ..This.can.be.a.decimal.number.w |
| 415c0 | 69 74 68 20 75 70 20 74 6f 20 74 68 72 65 65 20 64 65 63 69 6d 61 6c 20 70 6c 61 63 65 73 2e 00 | ith.up.to.three.decimal.places.. |
| 415e0 | 44 65 66 61 75 6c 74 20 69 73 20 33 31 30 30 00 44 65 66 61 75 6c 74 20 69 73 20 35 31 32 20 4d | Default.is.3100.Default.is.512.M |
| 41600 | 42 2e 20 55 73 65 20 30 20 4d 42 20 66 6f 72 20 75 6e 6c 69 6d 69 74 65 64 20 6d 65 6d 6f 72 79 | B..Use.0.MB.for.unlimited.memory |
| 41620 | 2e 00 44 65 66 61 75 6c 74 20 69 73 20 60 60 61 6e 79 2d 61 76 61 69 6c 61 62 6c 65 60 60 2e 00 | ..Default.is.``any-available``.. |
| 41640 | 44 65 66 61 75 6c 74 20 69 73 20 60 60 69 63 6d 70 60 60 2e 00 44 65 66 61 75 6c 74 20 69 73 20 | Default.is.``icmp``..Default.is. |
| 41660 | 74 6f 20 64 65 74 65 63 74 73 20 70 68 79 73 69 63 61 6c 20 6c 69 6e 6b 20 73 74 61 74 65 20 63 | to.detects.physical.link.state.c |
| 41680 | 68 61 6e 67 65 73 2e 00 44 65 66 61 75 6c 74 20 70 6f 72 74 20 69 73 20 33 31 32 38 2e 00 44 65 | hanges..Default.port.is.3128..De |
| 416a0 | 66 61 75 6c 74 3a 20 31 00 44 65 66 61 75 6c 74 3a 20 34 34 33 00 44 65 66 61 75 6c 74 73 20 74 | fault:.1.Default:.443.Defaults.t |
| 416c0 | 6f 20 27 75 69 64 27 00 44 65 66 61 75 6c 74 73 20 74 6f 20 32 32 35 2e 30 2e 30 2e 35 30 2e 00 | o.'uid'.Defaults.to.225.0.0.50.. |
| 416e0 | 44 65 66 61 75 6c 74 73 20 74 6f 20 60 60 75 73 60 60 2e 00 44 65 66 69 6e 65 20 43 6f 6e 65 63 | Defaults.to.``us``..Define.Conec |
| 41700 | 74 69 6f 6e 20 54 69 6d 65 6f 75 74 73 00 44 65 66 69 6e 65 20 49 50 76 34 20 61 6e 64 2f 6f 72 | tion.Timeouts.Define.IPv4.and/or |
| 41720 | 20 49 50 76 36 20 70 72 65 66 69 78 20 66 6f 72 20 61 20 67 69 76 65 6e 20 6e 65 74 77 6f 72 6b | .IPv6.prefix.for.a.given.network |
| 41740 | 20 6e 61 6d 65 2e 20 42 6f 74 68 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 63 61 6e 20 62 65 | .name..Both.IPv4.and.IPv6.can.be |
| 41760 | 20 75 73 65 64 20 69 6e 20 70 61 72 61 6c 6c 65 6c 2e 00 44 65 66 69 6e 65 20 49 50 76 34 20 6f | .used.in.parallel..Define.IPv4.o |
| 41780 | 72 20 49 50 76 36 20 70 72 65 66 69 78 20 66 6f 72 20 61 20 67 69 76 65 6e 20 6e 65 74 77 6f 72 | r.IPv6.prefix.for.a.given.networ |
| 417a0 | 6b 20 6e 61 6d 65 2e 20 4f 6e 6c 79 20 6f 6e 65 20 49 50 76 34 20 61 6e 64 20 6f 6e 65 20 49 50 | k.name..Only.one.IPv4.and.one.IP |
| 417c0 | 76 36 20 70 72 65 66 69 78 20 63 61 6e 20 62 65 20 75 73 65 64 20 70 65 72 20 6e 65 74 77 6f 72 | v6.prefix.can.be.used.per.networ |
| 417e0 | 6b 20 6e 61 6d 65 2e 00 44 65 66 69 6e 65 20 49 50 76 34 2f 49 50 76 36 20 6d 61 6e 61 67 65 6d | k.name..Define.IPv4/IPv6.managem |
| 41800 | 65 6e 74 20 61 64 64 72 65 73 73 20 74 72 61 6e 73 6d 69 74 74 65 64 20 76 69 61 20 4c 4c 44 50 | ent.address.transmitted.via.LLDP |
| 41820 | 2e 20 4d 75 6c 74 69 70 6c 65 20 61 64 64 72 65 73 73 65 73 20 63 61 6e 20 62 65 20 64 65 66 69 | ..Multiple.addresses.can.be.defi |
| 41840 | 6e 65 64 2e 20 4f 6e 6c 79 20 61 64 64 72 65 73 73 65 73 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f | ned..Only.addresses.connected.to |
| 41860 | 20 74 68 65 20 73 79 73 74 65 6d 20 77 69 6c 6c 20 62 65 20 74 72 61 6e 73 6d 69 74 74 65 64 2e | .the.system.will.be.transmitted. |
| 41880 | 00 44 65 66 69 6e 65 20 61 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 4e 65 74 77 6f 72 6b 20 67 | .Define.a.IPv4.or.IPv6.Network.g |
| 418a0 | 72 6f 75 70 2e 00 44 65 66 69 6e 65 20 61 20 49 50 76 34 20 6f 72 20 61 20 49 50 76 36 20 61 64 | roup..Define.a.IPv4.or.a.IPv6.ad |
| 418c0 | 64 72 65 73 73 20 67 72 6f 75 70 00 44 65 66 69 6e 65 20 61 20 5a 6f 6e 65 00 44 65 66 69 6e 65 | dress.group.Define.a.Zone.Define |
| 418e0 | 20 61 20 64 69 73 63 72 65 74 65 20 73 6f 75 72 63 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 | .a.discrete.source.IP.address.of |
| 41900 | 20 31 30 30 2e 36 34 2e 30 2e 31 20 66 6f 72 20 53 4e 41 54 20 72 75 6c 65 20 32 30 00 44 65 66 | .100.64.0.1.for.SNAT.rule.20.Def |
| 41920 | 69 6e 65 20 61 20 64 6f 6d 61 69 6e 20 67 72 6f 75 70 2e 00 44 65 66 69 6e 65 20 61 20 6d 61 63 | ine.a.domain.group..Define.a.mac |
| 41940 | 20 67 72 6f 75 70 2e 00 44 65 66 69 6e 65 20 61 20 70 6f 72 74 20 67 72 6f 75 70 2e 20 41 20 70 | .group..Define.a.port.group..A.p |
| 41960 | 6f 72 74 20 6e 61 6d 65 20 63 61 6e 20 62 65 20 61 6e 79 20 6e 61 6d 65 20 64 65 66 69 6e 65 64 | ort.name.can.be.any.name.defined |
| 41980 | 20 69 6e 20 2f 65 74 63 2f 73 65 72 76 69 63 65 73 2e 20 65 2e 67 2e 3a 20 68 74 74 70 00 44 65 | .in./etc/services..e.g.:.http.De |
| 419a0 | 66 69 6e 65 20 61 6c 6c 6f 77 65 64 20 63 69 70 68 65 72 73 20 75 73 65 64 20 66 6f 72 20 74 68 | fine.allowed.ciphers.used.for.th |
| 419c0 | 65 20 53 53 48 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 20 41 20 6e 75 6d 62 65 72 20 6f 66 20 61 6c | e.SSH.connection..A.number.of.al |
| 419e0 | 6c 6f 77 65 64 20 63 69 70 68 65 72 73 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 2c 20 | lowed.ciphers.can.be.specified,. |
| 41a00 | 75 73 65 20 6d 75 6c 74 69 70 6c 65 20 6f 63 63 75 72 72 65 6e 63 65 73 20 74 6f 20 61 6c 6c 6f | use.multiple.occurrences.to.allo |
| 41a20 | 77 20 6d 75 6c 74 69 70 6c 65 20 63 69 70 68 65 72 73 2e 00 44 65 66 69 6e 65 20 61 6e 20 69 6e | w.multiple.ciphers..Define.an.in |
| 41a40 | 74 65 72 66 61 63 65 20 67 72 6f 75 70 2e 20 57 69 6c 64 63 61 72 64 20 61 72 65 20 61 63 63 65 | terface.group..Wildcard.are.acce |
| 41a60 | 70 74 65 64 20 74 6f 6f 2e 00 44 65 66 69 6e 65 20 62 65 68 61 76 69 6f 72 20 66 6f 72 20 67 72 | pted.too..Define.behavior.for.gr |
| 41a80 | 61 74 75 69 74 6f 75 73 20 41 52 50 20 66 72 61 6d 65 73 20 77 68 6f 27 73 20 49 50 20 69 73 20 | atuitous.ARP.frames.who's.IP.is. |
| 41aa0 | 6e 6f 74 20 61 6c 72 65 61 64 79 20 70 72 65 73 65 6e 74 20 69 6e 20 74 68 65 20 41 52 50 20 74 | not.already.present.in.the.ARP.t |
| 41ac0 | 61 62 6c 65 2e 20 49 66 20 63 6f 6e 66 69 67 75 72 65 64 20 63 72 65 61 74 65 20 6e 65 77 20 65 | able..If.configured.create.new.e |
| 41ae0 | 6e 74 72 69 65 73 20 69 6e 20 74 68 65 20 41 52 50 20 74 61 62 6c 65 2e 00 44 65 66 69 6e 65 20 | ntries.in.the.ARP.table..Define. |
| 41b00 | 62 65 68 61 76 69 6f 72 20 66 6f 72 20 67 72 61 74 75 69 74 6f 75 73 20 41 52 50 20 66 72 61 6d | behavior.for.gratuitous.ARP.fram |
| 41b20 | 65 73 20 77 68 6f 73 65 20 49 50 20 69 73 20 6e 6f 74 20 61 6c 72 65 61 64 79 20 70 72 65 73 65 | es.whose.IP.is.not.already.prese |
| 41b40 | 6e 74 20 69 6e 20 74 68 65 20 41 52 50 20 74 61 62 6c 65 2e 20 49 66 20 63 6f 6e 66 69 67 75 72 | nt.in.the.ARP.table..If.configur |
| 41b60 | 65 64 20 63 72 65 61 74 65 20 6e 65 77 20 65 6e 74 72 69 65 73 20 69 6e 20 74 68 65 20 41 52 50 | ed.create.new.entries.in.the.ARP |
| 41b80 | 20 74 61 62 6c 65 2e 00 44 65 66 69 6e 65 20 64 69 66 66 65 72 65 6e 74 20 6d 6f 64 65 73 20 66 | .table..Define.different.modes.f |
| 41ba0 | 6f 72 20 49 50 20 64 69 72 65 63 74 65 64 20 62 72 6f 61 64 63 61 73 74 20 66 6f 72 77 61 72 64 | or.IP.directed.broadcast.forward |
| 41bc0 | 69 6e 67 20 61 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 31 38 31 32 60 20 | ing.as.described.in.:rfc:`1812`. |
| 41be0 | 61 6e 64 20 3a 72 66 63 3a 60 32 36 34 34 60 2e 00 44 65 66 69 6e 65 20 64 69 66 66 65 72 65 6e | and.:rfc:`2644`..Define.differen |
| 41c00 | 74 20 6d 6f 64 65 73 20 66 6f 72 20 73 65 6e 64 69 6e 67 20 72 65 70 6c 69 65 73 20 69 6e 20 72 | t.modes.for.sending.replies.in.r |
| 41c20 | 65 73 70 6f 6e 73 65 20 74 6f 20 72 65 63 65 69 76 65 64 20 41 52 50 20 72 65 71 75 65 73 74 73 | esponse.to.received.ARP.requests |
| 41c40 | 20 74 68 61 74 20 72 65 73 6f 6c 76 65 20 6c 6f 63 61 6c 20 74 61 72 67 65 74 20 49 50 20 61 64 | .that.resolve.local.target.IP.ad |
| 41c60 | 64 72 65 73 73 65 73 3a 00 44 65 66 69 6e 65 20 64 69 66 66 65 72 65 6e 74 20 72 65 73 74 72 69 | dresses:.Define.different.restri |
| 41c80 | 63 74 69 6f 6e 20 6c 65 76 65 6c 73 20 66 6f 72 20 61 6e 6e 6f 75 6e 63 69 6e 67 20 74 68 65 20 | ction.levels.for.announcing.the. |
| 41ca0 | 6c 6f 63 61 6c 20 73 6f 75 72 63 65 20 49 50 20 61 64 64 72 65 73 73 20 66 72 6f 6d 20 49 50 20 | local.source.IP.address.from.IP. |
| 41cc0 | 70 61 63 6b 65 74 73 20 69 6e 20 41 52 50 20 72 65 71 75 65 73 74 73 20 73 65 6e 74 20 6f 6e 20 | packets.in.ARP.requests.sent.on. |
| 41ce0 | 69 6e 74 65 72 66 61 63 65 2e 00 44 65 66 69 6e 65 20 68 6f 77 20 74 6f 20 68 61 6e 64 6c 65 20 | interface..Define.how.to.handle. |
| 41d00 | 6c 65 61 66 2d 73 65 6f 6e 64 73 2e 00 44 65 66 69 6e 65 20 68 6f 77 20 74 6f 20 68 61 6e 64 6c | leaf-seonds..Define.how.to.handl |
| 41d20 | 65 20 6c 65 61 70 2d 73 65 63 6f 6e 64 73 2e 00 44 65 66 69 6e 65 20 69 6e 74 65 72 66 61 63 65 | e.leap-seconds..Define.interface |
| 41d40 | 73 20 74 6f 20 62 65 20 75 73 65 64 20 69 6e 20 74 68 65 20 66 6c 6f 77 74 61 62 6c 65 2e 00 44 | s.to.be.used.in.the.flowtable..D |
| 41d60 | 65 66 69 6e 65 20 6c 65 6e 67 68 74 20 6f 66 20 65 78 63 6c 75 64 65 20 70 72 65 66 69 78 20 69 | efine.lenght.of.exclude.prefix.i |
| 41d80 | 6e 20 60 3c 70 64 2d 70 72 65 66 69 78 3e 60 2e 00 44 65 66 69 6e 65 20 6c 65 6e 67 74 68 20 6f | n.`<pd-prefix>`..Define.length.o |
| 41da0 | 66 20 70 61 63 6b 65 74 20 70 61 79 6c 6f 61 64 20 74 6f 20 69 6e 63 6c 75 64 65 20 69 6e 20 6e | f.packet.payload.to.include.in.n |
| 41dc0 | 65 74 6c 69 6e 6b 20 6d 65 73 73 61 67 65 2e 20 4f 6e 6c 79 20 61 70 70 6c 69 63 61 62 6c 65 20 | etlink.message..Only.applicable. |
| 41de0 | 69 66 20 72 75 6c 65 20 6c 6f 67 20 69 73 20 65 6e 61 62 6c 65 20 61 6e 64 20 6c 6f 67 20 67 72 | if.rule.log.is.enable.and.log.gr |
| 41e00 | 6f 75 70 20 69 73 20 64 65 66 69 6e 65 64 2e 00 44 65 66 69 6e 65 20 6c 65 6e 67 74 68 20 6f 66 | oup.is.defined..Define.length.of |
| 41e20 | 20 70 61 63 6b 65 74 20 70 61 79 6c 6f 61 64 20 74 6f 20 69 6e 63 6c 75 64 65 20 69 6e 20 6e 65 | .packet.payload.to.include.in.ne |
| 41e40 | 74 6c 69 6e 6b 20 6d 65 73 73 61 67 65 2e 20 4f 6e 6c 79 20 61 70 70 6c 69 63 61 62 6c 65 20 69 | tlink.message..Only.applicable.i |
| 41e60 | 66 20 72 75 6c 65 20 6c 6f 67 20 69 73 20 65 6e 61 62 6c 65 64 20 61 6e 64 20 74 68 65 20 6c 6f | f.rule.log.is.enabled.and.the.lo |
| 41e80 | 67 20 67 72 6f 75 70 20 69 73 20 64 65 66 69 6e 65 64 2e 00 44 65 66 69 6e 65 20 6c 6f 67 20 67 | g.group.is.defined..Define.log.g |
| 41ea0 | 72 6f 75 70 20 74 6f 20 73 65 6e 64 20 6d 65 73 73 61 67 65 20 74 6f 2e 20 4f 6e 6c 79 20 61 70 | roup.to.send.message.to..Only.ap |
| 41ec0 | 70 6c 69 63 61 62 6c 65 20 69 66 20 72 75 6c 65 20 6c 6f 67 20 69 73 20 65 6e 61 62 6c 65 2e 00 | plicable.if.rule.log.is.enable.. |
| 41ee0 | 44 65 66 69 6e 65 20 6c 6f 67 2d 6c 65 76 65 6c 2e 20 4f 6e 6c 79 20 61 70 70 6c 69 63 61 62 6c | Define.log-level..Only.applicabl |
| 41f00 | 65 20 69 66 20 72 75 6c 65 20 6c 6f 67 20 69 73 20 65 6e 61 62 6c 65 2e 00 44 65 66 69 6e 65 20 | e.if.rule.log.is.enable..Define. |
| 41f20 | 6c 6f 67 2d 6c 65 76 65 6c 2e 20 4f 6e 6c 79 20 61 70 70 6c 69 63 61 62 6c 65 20 69 66 20 72 75 | log-level..Only.applicable.if.ru |
| 41f40 | 6c 65 20 6c 6f 67 20 69 73 20 65 6e 61 62 6c 65 64 2e 00 44 65 66 69 6e 65 20 6e 75 6d 62 65 72 | le.log.is.enabled..Define.number |
| 41f60 | 20 6f 66 20 70 61 63 6b 65 74 73 20 74 6f 20 71 75 65 75 65 20 69 6e 73 69 64 65 20 74 68 65 20 | .of.packets.to.queue.inside.the. |
| 41f80 | 6b 65 72 6e 65 6c 20 62 65 66 6f 72 65 20 73 65 6e 64 69 6e 67 20 74 68 65 6d 20 74 6f 20 75 73 | kernel.before.sending.them.to.us |
| 41fa0 | 65 72 73 70 61 63 65 2e 20 4f 6e 6c 79 20 61 70 70 6c 69 63 61 62 6c 65 20 69 66 20 72 75 6c 65 | erspace..Only.applicable.if.rule |
| 41fc0 | 20 6c 6f 67 20 69 73 20 65 6e 61 62 6c 65 20 61 6e 64 20 6c 6f 67 20 67 72 6f 75 70 20 69 73 20 | .log.is.enable.and.log.group.is. |
| 41fe0 | 64 65 66 69 6e 65 64 2e 00 44 65 66 69 6e 65 20 6f 70 65 72 61 74 69 6f 6e 20 6d 6f 64 65 20 6f | defined..Define.operation.mode.o |
| 42000 | 66 20 48 69 67 68 20 41 76 61 69 6c 61 62 69 6c 69 74 79 20 66 65 61 74 75 72 65 2e 20 44 65 66 | f.High.Availability.feature..Def |
| 42020 | 61 75 6c 74 20 76 61 6c 75 65 20 69 66 20 63 6f 6d 6d 61 6e 64 20 69 73 20 6e 6f 74 20 73 70 65 | ault.value.if.command.is.not.spe |
| 42040 | 63 69 66 69 65 64 20 69 73 20 60 61 63 74 69 76 65 2d 61 63 74 69 76 65 60 00 44 65 66 69 6e 65 | cified.is.`active-active`.Define |
| 42060 | 20 74 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 70 61 63 6b 65 74 20 70 61 79 6c 6f 61 64 20 74 6f | .the.length.of.packet.payload.to |
| 42080 | 20 69 6e 63 6c 75 64 65 20 69 6e 20 61 20 6e 65 74 6c 69 6e 6b 20 6d 65 73 73 61 67 65 2e 20 4f | .include.in.a.netlink.message..O |
| 420a0 | 6e 6c 79 20 61 70 70 6c 69 63 61 62 6c 65 20 69 66 20 72 75 6c 65 20 6c 6f 67 20 69 73 20 65 6e | nly.applicable.if.rule.log.is.en |
| 420c0 | 61 62 6c 65 64 20 61 6e 64 20 6c 6f 67 20 67 72 6f 75 70 20 69 73 20 64 65 66 69 6e 65 64 2e 00 | abled.and.log.group.is.defined.. |
| 420e0 | 44 65 66 69 6e 65 20 74 68 65 20 6c 6f 67 20 67 72 6f 75 70 20 74 6f 20 73 65 6e 64 20 6d 65 73 | Define.the.log.group.to.send.mes |
| 42100 | 73 61 67 65 73 20 74 6f 2e 20 4f 6e 6c 79 20 61 70 70 6c 69 63 61 62 6c 65 20 69 66 20 72 75 6c | sages.to..Only.applicable.if.rul |
| 42120 | 65 20 6c 6f 67 20 69 73 20 65 6e 61 62 6c 65 64 2e 00 44 65 66 69 6e 65 20 74 68 65 20 6e 75 6d | e.log.is.enabled..Define.the.num |
| 42140 | 62 65 72 20 6f 66 20 70 61 63 6b 65 74 73 20 74 6f 20 71 75 65 75 65 20 69 6e 73 69 64 65 20 74 | ber.of.packets.to.queue.inside.t |
| 42160 | 68 65 20 6b 65 72 6e 65 6c 20 62 65 66 6f 72 65 20 73 65 6e 64 69 6e 67 20 74 68 65 6d 20 74 6f | he.kernel.before.sending.them.to |
| 42180 | 20 75 73 65 72 73 70 61 63 65 2e 20 4f 6e 6c 79 20 61 70 70 6c 69 63 61 62 6c 65 20 69 66 20 72 | .userspace..Only.applicable.if.r |
| 421a0 | 75 6c 65 20 6c 6f 67 20 69 73 20 65 6e 61 62 6c 65 64 20 61 6e 64 20 6c 6f 67 20 67 72 6f 75 70 | ule.log.is.enabled.and.log.group |
| 421c0 | 20 69 73 20 64 65 66 69 6e 65 64 2e 00 44 65 66 69 6e 65 20 74 68 65 20 6e 75 6d 62 65 72 20 6f | .is.defined..Define.the.number.o |
| 421e0 | 66 20 70 61 63 6b 65 74 73 20 74 6f 20 71 75 65 75 65 20 69 6e 73 69 64 65 20 74 68 65 20 6b 65 | f.packets.to.queue.inside.the.ke |
| 42200 | 72 6e 65 6c 20 62 65 66 6f 72 65 20 73 65 6e 64 69 6e 67 20 74 68 65 6d 20 74 6f 20 75 73 65 72 | rnel.before.sending.them.to.user |
| 42220 | 73 70 61 63 65 2e 20 4f 6e 6c 79 20 61 70 70 6c 69 63 61 62 6c 65 20 69 66 20 72 75 6c 65 20 6c | space..Only.applicable.if.rule.l |
| 42240 | 6f 67 20 69 73 20 65 6e 61 62 6c 65 64 20 61 6e 64 20 74 68 65 20 6c 6f 67 20 67 72 6f 75 70 20 | og.is.enabled.and.the.log.group. |
| 42260 | 69 73 20 64 65 66 69 6e 65 64 2e 00 44 65 66 69 6e 65 20 74 68 65 20 74 69 6d 65 20 69 6e 74 65 | is.defined..Define.the.time.inte |
| 42280 | 72 76 61 6c 20 74 6f 20 75 70 64 61 74 65 20 74 68 65 20 6c 6f 63 61 6c 20 63 61 63 68 65 00 44 | rval.to.update.the.local.cache.D |
| 422a0 | 65 66 69 6e 65 20 74 68 65 20 7a 6f 6e 65 20 61 73 20 61 20 6c 6f 63 61 6c 20 7a 6f 6e 65 2e 20 | efine.the.zone.as.a.local.zone.. |
| 422c0 | 41 20 6c 6f 63 61 6c 20 7a 6f 6e 65 20 68 61 73 20 6e 6f 20 69 6e 74 65 72 66 61 63 65 73 20 61 | A.local.zone.has.no.interfaces.a |
| 422e0 | 6e 64 20 77 69 6c 6c 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 | nd.will.be.applied.to.the.router |
| 42300 | 20 69 74 73 65 6c 66 2e 00 44 65 66 69 6e 65 20 74 79 70 65 20 6f 66 20 6f 66 66 6c 6f 61 64 20 | .itself..Define.type.of.offload. |
| 42320 | 74 6f 20 62 65 20 75 73 65 64 20 62 79 20 74 68 65 20 66 6c 6f 77 74 61 62 6c 65 3a 20 60 60 68 | to.be.used.by.the.flowtable:.``h |
| 42340 | 61 72 64 77 61 72 65 60 60 20 6f 72 20 60 60 73 6f 66 74 77 61 72 65 60 60 2e 20 42 79 20 64 65 | ardware``.or.``software``..By.de |
| 42360 | 66 61 75 6c 74 2c 20 60 60 73 6f 66 74 77 61 72 65 60 60 20 6f 66 66 6c 6f 61 64 20 69 73 20 75 | fault,.``software``.offload.is.u |
| 42380 | 73 65 64 2e 00 44 65 66 69 6e 65 20 75 73 65 64 20 65 74 68 65 72 74 79 70 65 20 6f 66 20 62 72 | sed..Define.used.ethertype.of.br |
| 423a0 | 69 64 67 65 20 69 6e 74 65 72 66 61 63 65 2e 00 44 65 66 69 6e 65 64 20 74 68 65 20 49 50 76 34 | idge.interface..Defined.the.IPv4 |
| 423c0 | 2c 20 49 50 76 36 20 6f 72 20 46 51 44 4e 20 61 6e 64 20 70 6f 72 74 20 6e 75 6d 62 65 72 20 6f | ,.IPv6.or.FQDN.and.port.number.o |
| 423e0 | 66 20 74 68 65 20 63 61 63 68 69 6e 67 20 52 50 4b 49 20 63 61 63 68 69 6e 67 20 69 6e 73 74 61 | f.the.caching.RPKI.caching.insta |
| 42400 | 6e 63 65 20 77 68 69 63 68 20 69 73 20 75 73 65 64 2e 00 44 65 66 69 6e 65 73 20 61 6c 74 65 72 | nce.which.is.used..Defines.alter |
| 42420 | 6e 61 74 65 20 73 6f 75 72 63 65 73 20 66 6f 72 20 6d 75 6c 74 69 63 61 73 74 69 6e 67 20 61 6e | nate.sources.for.multicasting.an |
| 42440 | 64 20 49 47 4d 50 20 64 61 74 61 2e 20 54 68 65 20 6e 65 74 77 6f 72 6b 20 61 64 64 72 65 73 73 | d.IGMP.data..The.network.address |
| 42460 | 20 6d 75 73 74 20 62 65 20 6f 6e 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 66 6f 72 6d 61 74 | .must.be.on.the.following.format |
| 42480 | 20 27 61 2e 62 2e 63 2e 64 2f 6e 27 2e 20 42 79 20 64 65 66 61 75 6c 74 2c 20 74 68 65 20 72 6f | .'a.b.c.d/n'..By.default,.the.ro |
| 424a0 | 75 74 65 72 20 77 69 6c 6c 20 61 63 63 65 70 74 20 64 61 74 61 20 66 72 6f 6d 20 73 6f 75 72 63 | uter.will.accept.data.from.sourc |
| 424c0 | 65 73 20 6f 6e 20 74 68 65 20 73 61 6d 65 20 6e 65 74 77 6f 72 6b 20 61 73 20 63 6f 6e 66 69 67 | es.on.the.same.network.as.config |
| 424e0 | 75 72 65 64 20 6f 6e 20 61 6e 20 69 6e 74 65 72 66 61 63 65 2e 20 49 66 20 74 68 65 20 6d 75 6c | ured.on.an.interface..If.the.mul |
| 42500 | 74 69 63 61 73 74 20 73 6f 75 72 63 65 20 6c 69 65 73 20 6f 6e 20 61 20 72 65 6d 6f 74 65 20 6e | ticast.source.lies.on.a.remote.n |
| 42520 | 65 74 77 6f 72 6b 2c 20 6f 6e 65 20 6d 75 73 74 20 64 65 66 69 6e 65 20 66 72 6f 6d 20 77 68 65 | etwork,.one.must.define.from.whe |
| 42540 | 72 65 20 74 72 61 66 66 69 63 20 73 68 6f 75 6c 64 20 62 65 20 61 63 63 65 70 74 65 64 2e 00 44 | re.traffic.should.be.accepted..D |
| 42560 | 65 66 69 6e 65 73 20 61 6e 20 6f 66 66 2d 4e 42 4d 41 20 6e 65 74 77 6f 72 6b 20 70 72 65 66 69 | efines.an.off-NBMA.network.prefi |
| 42580 | 78 20 66 6f 72 20 77 68 69 63 68 20 74 68 65 20 47 52 45 20 69 6e 74 65 72 66 61 63 65 20 77 69 | x.for.which.the.GRE.interface.wi |
| 425a0 | 6c 6c 20 61 63 74 20 61 73 20 61 20 67 61 74 65 77 61 79 2e 20 54 68 69 73 20 61 6e 20 61 6c 74 | ll.act.as.a.gateway..This.an.alt |
| 425c0 | 65 72 6e 61 74 69 76 65 20 74 6f 20 64 65 66 69 6e 69 6e 67 20 6c 6f 63 61 6c 20 69 6e 74 65 72 | ernative.to.defining.local.inter |
| 425e0 | 66 61 63 65 73 20 77 69 74 68 20 73 68 6f 72 74 63 75 74 2d 64 65 73 74 69 6e 61 74 69 6f 6e 20 | faces.with.shortcut-destination. |
| 42600 | 66 6c 61 67 2e 00 44 65 66 69 6e 65 73 20 62 6c 61 63 6b 68 6f 6c 65 20 64 69 73 74 61 6e 63 65 | flag..Defines.blackhole.distance |
| 42620 | 20 66 6f 72 20 74 68 69 73 20 72 6f 75 74 65 2c 20 72 6f 75 74 65 73 20 77 69 74 68 20 73 6d 61 | .for.this.route,.routes.with.sma |
| 42640 | 6c 6c 65 72 20 61 64 6d 69 6e 69 73 74 72 61 74 69 76 65 20 64 69 73 74 61 6e 63 65 20 61 72 65 | ller.administrative.distance.are |
| 42660 | 20 65 6c 65 63 74 65 64 20 70 72 69 6f 72 20 74 6f 20 74 68 6f 73 65 20 77 69 74 68 20 61 20 68 | .elected.prior.to.those.with.a.h |
| 42680 | 69 67 68 65 72 20 64 69 73 74 61 6e 63 65 2e 00 44 65 66 69 6e 65 73 20 6d 69 6e 69 6d 75 6d 20 | igher.distance..Defines.minimum. |
| 426a0 | 61 63 63 65 70 74 61 62 6c 65 20 4d 54 55 2e 20 49 66 20 63 6c 69 65 6e 74 20 77 69 6c 6c 20 74 | acceptable.MTU..If.client.will.t |
| 426c0 | 72 79 20 74 6f 20 6e 65 67 6f 74 69 61 74 65 20 6c 65 73 73 20 74 68 65 6e 20 73 70 65 63 69 66 | ry.to.negotiate.less.then.specif |
| 426e0 | 69 65 64 20 4d 54 55 20 74 68 65 6e 20 69 74 20 77 69 6c 6c 20 62 65 20 4e 41 4b 65 64 20 6f 72 | ied.MTU.then.it.will.be.NAKed.or |
| 42700 | 20 64 69 73 63 6f 6e 6e 65 63 74 65 64 20 69 66 20 72 65 6a 65 63 74 73 20 67 72 65 61 74 65 72 | .disconnected.if.rejects.greater |
| 42720 | 20 4d 54 55 2e 20 44 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 2a 2a 31 30 30 2a 2a 2e 00 | .MTU..Default.value.is.**100**.. |
| 42740 | 44 65 66 69 6e 65 73 20 6e 65 78 74 2d 68 6f 70 20 64 69 73 74 61 6e 63 65 20 66 6f 72 20 74 68 | Defines.next-hop.distance.for.th |
| 42760 | 69 73 20 72 6f 75 74 65 2c 20 72 6f 75 74 65 73 20 77 69 74 68 20 73 6d 61 6c 6c 65 72 20 61 64 | is.route,.routes.with.smaller.ad |
| 42780 | 6d 69 6e 69 73 74 72 61 74 69 76 65 20 64 69 73 74 61 6e 63 65 20 61 72 65 20 65 6c 65 63 74 65 | ministrative.distance.are.electe |
| 427a0 | 64 20 70 72 69 6f 72 20 74 6f 20 74 68 6f 73 65 20 77 69 74 68 20 61 20 68 69 67 68 65 72 20 64 | d.prior.to.those.with.a.higher.d |
| 427c0 | 69 73 74 61 6e 63 65 2e 00 44 65 66 69 6e 65 73 20 70 72 65 66 65 72 72 65 64 20 4d 52 55 2e 20 | istance..Defines.preferred.MRU.. |
| 427e0 | 42 79 20 64 65 66 61 75 6c 74 20 69 73 20 6e 6f 74 20 64 65 66 69 6e 65 64 2e 00 44 65 66 69 6e | By.default.is.not.defined..Defin |
| 42800 | 65 73 20 70 72 6f 74 6f 63 6f 6c 73 20 66 6f 72 20 63 68 65 63 6b 69 6e 67 20 41 52 50 2c 20 49 | es.protocols.for.checking.ARP,.I |
| 42820 | 43 4d 50 2c 20 54 43 50 00 44 65 66 69 6e 65 73 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 60 3c 6e | CMP,.TCP.Defines.the.maximum.`<n |
| 42840 | 75 6d 62 65 72 3e 60 20 6f 66 20 75 6e 61 6e 73 77 65 72 65 64 20 65 63 68 6f 20 72 65 71 75 65 | umber>`.of.unanswered.echo.reque |
| 42860 | 73 74 73 2e 20 55 70 6f 6e 20 72 65 61 63 68 69 6e 67 20 74 68 65 20 76 61 6c 75 65 20 60 3c 6e | sts..Upon.reaching.the.value.`<n |
| 42880 | 75 6d 62 65 72 3e 60 2c 20 74 68 65 20 73 65 73 73 69 6f 6e 20 77 69 6c 6c 20 62 65 20 72 65 73 | umber>`,.the.session.will.be.res |
| 428a0 | 65 74 2e 00 44 65 66 69 6e 65 73 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 60 3c 6e 75 6d 62 65 72 | et..Defines.the.maximum.`<number |
| 428c0 | 3e 60 20 6f 66 20 75 6e 61 6e 73 77 65 72 65 64 20 65 63 68 6f 20 72 65 71 75 65 73 74 73 2e 20 | >`.of.unanswered.echo.requests.. |
| 428e0 | 55 70 6f 6e 20 72 65 61 63 68 69 6e 67 20 74 68 65 20 76 61 6c 75 65 20 60 3c 6e 75 6d 62 65 72 | Upon.reaching.the.value.`<number |
| 42900 | 3e 60 2c 20 74 68 65 20 73 65 73 73 69 6f 6e 20 77 69 6c 6c 20 62 65 20 72 65 73 65 74 2e 20 44 | >`,.the.session.will.be.reset..D |
| 42920 | 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 2a 2a 33 2a 2a 2e 00 44 65 66 69 6e 65 73 20 74 | efault.value.is.**3**..Defines.t |
| 42940 | 68 65 20 6d 69 6e 69 6d 75 6d 20 61 63 63 65 70 74 61 62 6c 65 20 4d 54 55 2e 20 49 66 20 61 20 | he.minimum.acceptable.MTU..If.a. |
| 42960 | 63 6c 69 65 6e 74 20 74 72 69 65 73 20 74 6f 20 6e 65 67 6f 74 69 61 74 65 20 61 6e 20 4d 54 55 | client.tries.to.negotiate.an.MTU |
| 42980 | 20 6c 6f 77 65 72 20 74 68 61 6e 20 74 68 69 73 20 69 74 20 77 69 6c 6c 20 62 65 20 4e 41 4b 65 | .lower.than.this.it.will.be.NAKe |
| 429a0 | 64 2c 20 61 6e 64 20 64 69 73 63 6f 6e 6e 65 63 74 65 64 20 69 66 20 69 74 20 72 65 6a 65 63 74 | d,.and.disconnected.if.it.reject |
| 429c0 | 73 20 61 20 67 72 65 61 74 65 72 20 4d 54 55 2e 20 44 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 | s.a.greater.MTU..Default.value.i |
| 429e0 | 73 20 2a 2a 31 30 30 2a 2a 2e 00 44 65 66 69 6e 65 73 20 74 68 65 20 72 6f 75 6e 64 2d 74 72 69 | s.**100**..Defines.the.round-tri |
| 42a00 | 70 20 74 69 6d 65 20 75 73 65 64 20 66 6f 72 20 61 63 74 69 76 65 20 71 75 65 75 65 20 6d 61 6e | p.time.used.for.active.queue.man |
| 42a20 | 61 67 65 6d 65 6e 74 20 28 41 51 4d 29 20 69 6e 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 2e 20 54 | agement.(AQM).in.milliseconds..T |
| 42a40 | 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 31 30 30 2e 00 44 65 66 69 6e 65 73 | he.default.value.is.100..Defines |
| 42a60 | 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 64 65 76 69 63 65 20 61 73 20 61 20 73 79 73 74 65 | .the.specified.device.as.a.syste |
| 42a80 | 6d 20 63 6f 6e 73 6f 6c 65 2e 20 41 76 61 69 6c 61 62 6c 65 20 63 6f 6e 73 6f 6c 65 20 64 65 76 | m.console..Available.console.dev |
| 42aa0 | 69 63 65 73 20 63 61 6e 20 62 65 20 28 73 65 65 20 63 6f 6d 70 6c 65 74 69 6f 6e 20 68 65 6c 70 | ices.can.be.(see.completion.help |
| 42ac0 | 65 72 29 3a 00 44 65 66 69 6e 69 6e 67 20 44 79 6e 61 6d 69 63 20 41 64 64 72 65 73 73 20 47 72 | er):.Defining.Dynamic.Address.Gr |
| 42ae0 | 6f 75 70 73 00 44 65 66 69 6e 69 6e 67 20 50 65 65 72 73 00 44 65 6c 65 67 61 74 65 20 70 72 65 | oups.Defining.Peers.Delegate.pre |
| 42b00 | 66 69 78 65 73 20 66 72 6f 6d 20 60 3c 70 64 2d 70 72 65 66 69 78 3e 60 20 74 6f 20 63 6c 69 65 | fixes.from.`<pd-prefix>`.to.clie |
| 42b20 | 6e 74 73 20 69 6e 20 73 75 62 6e 65 74 20 60 3c 70 72 65 66 69 78 3e 60 2e 20 52 61 6e 67 65 20 | nts.in.subnet.`<prefix>`..Range. |
| 42b40 | 69 73 20 64 65 66 69 6e 65 64 20 62 79 20 60 3c 6c 65 6e 67 68 74 3e 60 20 69 6e 20 62 69 74 73 | is.defined.by.`<lenght>`.in.bits |
| 42b60 | 2c 20 33 32 20 74 6f 20 36 34 2e 00 44 65 6c 65 67 61 74 65 20 70 72 65 66 69 78 65 73 20 66 72 | ,.32.to.64..Delegate.prefixes.fr |
| 42b80 | 6f 6d 20 74 68 65 20 72 61 6e 67 65 20 69 6e 64 69 63 61 74 65 64 20 62 79 20 74 68 65 20 73 74 | om.the.range.indicated.by.the.st |
| 42ba0 | 61 72 74 20 61 6e 64 20 73 74 6f 70 20 71 75 61 6c 69 66 69 65 72 2e 00 44 65 6c 65 74 65 20 42 | art.and.stop.qualifier..Delete.B |
| 42bc0 | 47 50 20 63 6f 6d 6d 75 6e 69 74 69 65 73 20 6d 61 74 63 68 69 6e 67 20 74 68 65 20 63 6f 6d 6d | GP.communities.matching.the.comm |
| 42be0 | 75 6e 69 74 79 2d 6c 69 73 74 2e 00 44 65 6c 65 74 65 20 42 47 50 20 63 6f 6d 6d 75 6e 69 74 69 | unity-list..Delete.BGP.communiti |
| 42c00 | 65 73 20 6d 61 74 63 68 69 6e 67 20 74 68 65 20 6c 61 72 67 65 2d 63 6f 6d 6d 75 6e 69 74 79 2d | es.matching.the.large-community- |
| 42c20 | 6c 69 73 74 2e 00 44 65 6c 65 74 65 20 4c 6f 67 73 00 44 65 6c 65 74 65 20 61 20 70 61 72 74 69 | list..Delete.Logs.Delete.a.parti |
| 42c40 | 63 75 6c 61 72 20 63 6f 6e 74 61 69 6e 65 72 20 69 6d 61 67 65 20 62 61 73 65 64 20 6f 6e 20 69 | cular.container.image.based.on.i |
| 42c60 | 74 27 73 20 69 6d 61 67 65 20 49 44 2e 20 59 6f 75 20 63 61 6e 20 61 6c 73 6f 20 64 65 6c 65 74 | t's.image.ID..You.can.also.delet |
| 42c80 | 65 20 61 6c 6c 20 63 6f 6e 74 61 69 6e 65 72 20 69 6d 61 67 65 73 20 61 74 20 6f 6e 63 65 2e 00 | e.all.container.images.at.once.. |
| 42ca0 | 44 65 6c 65 74 65 20 61 6c 6c 20 42 47 50 20 63 6f 6d 6d 75 6e 69 74 69 65 73 00 44 65 6c 65 74 | Delete.all.BGP.communities.Delet |
| 42cc0 | 65 20 61 6c 6c 20 42 47 50 20 6c 61 72 67 65 2d 63 6f 6d 6d 75 6e 69 74 69 65 73 00 44 65 6c 65 | e.all.BGP.large-communities.Dele |
| 42ce0 | 74 65 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 20 66 72 6f 6d 20 74 68 65 20 73 79 73 74 65 6d | te.default.route.from.the.system |
| 42d00 | 2e 00 44 65 6c 65 74 65 73 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 75 73 65 72 2d 64 65 66 | ..Deletes.the.specified.user-def |
| 42d20 | 69 6e 65 64 20 66 69 6c 65 20 3c 74 65 78 74 3e 20 69 6e 20 74 68 65 20 2f 76 61 72 2f 6c 6f 67 | ined.file.<text>.in.the./var/log |
| 42d40 | 2f 75 73 65 72 20 64 69 72 65 63 74 6f 72 79 00 44 65 70 65 6e 64 69 6e 67 20 6f 6e 20 74 68 65 | /user.directory.Depending.on.the |
| 42d60 | 20 6c 6f 63 61 74 69 6f 6e 2c 20 6e 6f 74 20 61 6c 6c 20 6f 66 20 74 68 65 73 65 20 63 68 61 6e | .location,.not.all.of.these.chan |
| 42d80 | 6e 65 6c 73 20 6d 61 79 20 62 65 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 75 73 65 21 00 44 | nels.may.be.available.for.use!.D |
| 42da0 | 65 73 63 72 69 70 74 69 6f 6e 00 44 65 73 70 69 74 65 20 74 68 65 20 44 72 6f 70 2d 54 61 69 6c | escription.Despite.the.Drop-Tail |
| 42dc0 | 20 70 6f 6c 69 63 79 20 64 6f 65 73 20 6e 6f 74 20 73 6c 6f 77 20 64 6f 77 6e 20 70 61 63 6b 65 | .policy.does.not.slow.down.packe |
| 42de0 | 74 73 2c 20 69 66 20 6d 61 6e 79 20 70 61 63 6b 65 74 73 20 61 72 65 20 74 6f 20 62 65 20 73 65 | ts,.if.many.packets.are.to.be.se |
| 42e00 | 6e 74 2c 20 74 68 65 79 20 63 6f 75 6c 64 20 67 65 74 20 64 72 6f 70 70 65 64 20 77 68 65 6e 20 | nt,.they.could.get.dropped.when. |
| 42e20 | 74 72 79 69 6e 67 20 74 6f 20 67 65 74 20 65 6e 71 75 65 75 65 64 20 61 74 20 74 68 65 20 74 61 | trying.to.get.enqueued.at.the.ta |
| 42e40 | 69 6c 2e 20 54 68 69 73 20 63 61 6e 20 68 61 70 70 65 6e 20 69 66 20 74 68 65 20 71 75 65 75 65 | il..This.can.happen.if.the.queue |
| 42e60 | 20 68 61 73 20 73 74 69 6c 6c 20 6e 6f 74 20 62 65 65 6e 20 61 62 6c 65 20 74 6f 20 72 65 6c 65 | .has.still.not.been.able.to.rele |
| 42e80 | 61 73 65 20 65 6e 6f 75 67 68 20 70 61 63 6b 65 74 73 20 66 72 6f 6d 20 69 74 73 20 68 65 61 64 | ase.enough.packets.from.its.head |
| 42ea0 | 2e 00 44 65 73 70 69 74 65 20 74 68 65 20 66 61 63 74 20 74 68 61 74 20 41 44 20 69 73 20 61 20 | ..Despite.the.fact.that.AD.is.a. |
| 42ec0 | 73 75 70 65 72 73 65 74 20 6f 66 20 4c 44 41 50 00 44 65 73 74 69 6e 61 74 69 6f 6e 20 41 64 64 | superset.of.LDAP.Destination.Add |
| 42ee0 | 72 65 73 73 00 44 65 73 74 69 6e 61 74 69 6f 6e 20 4e 41 54 00 44 65 73 74 69 6e 61 74 69 6f 6e | ress.Destination.NAT.Destination |
| 42f00 | 20 50 72 65 66 69 78 00 44 65 74 61 69 6c 65 64 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f | .Prefix.Detailed.information.abo |
| 42f20 | 75 74 20 22 63 69 73 63 6f 22 20 61 6e 64 20 22 69 62 6d 22 20 6d 6f 64 65 6c 73 20 64 69 66 66 | ut."cisco".and."ibm".models.diff |
| 42f40 | 65 72 65 6e 63 65 73 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 69 6e 20 3a 72 66 63 3a 60 33 35 | erences.can.be.found.in.:rfc:`35 |
| 42f60 | 30 39 60 2e 20 41 20 22 73 68 6f 72 74 63 75 74 22 20 6d 6f 64 65 6c 20 61 6c 6c 6f 77 73 20 41 | 09`..A."shortcut".model.allows.A |
| 42f80 | 42 52 20 74 6f 20 63 72 65 61 74 65 20 72 6f 75 74 65 73 20 62 65 74 77 65 65 6e 20 61 72 65 61 | BR.to.create.routes.between.area |
| 42fa0 | 73 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 74 6f 70 6f 6c 6f 67 79 20 6f 66 20 74 68 65 20 61 | s.based.on.the.topology.of.the.a |
| 42fc0 | 72 65 61 73 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 74 68 69 73 20 72 6f 75 74 65 72 20 62 75 | reas.connected.to.this.router.bu |
| 42fe0 | 74 20 6e 6f 74 20 75 73 69 6e 67 20 61 20 62 61 63 6b 62 6f 6e 65 20 61 72 65 61 20 69 6e 20 63 | t.not.using.a.backbone.area.in.c |
| 43000 | 61 73 65 20 69 66 20 6e 6f 6e 2d 62 61 63 6b 62 6f 6e 65 20 72 6f 75 74 65 20 77 69 6c 6c 20 62 | ase.if.non-backbone.route.will.b |
| 43020 | 65 20 63 68 65 61 70 65 72 2e 20 46 6f 72 20 6d 6f 72 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 | e.cheaper..For.more.information. |
| 43040 | 61 62 6f 75 74 20 22 73 68 6f 72 74 63 75 74 22 20 6d 6f 64 65 6c 2c 20 73 65 65 20 3a 74 3a 60 | about."shortcut".model,.see.:t:` |
| 43060 | 6f 73 70 66 2d 73 68 6f 72 74 63 75 74 2d 61 62 72 2d 30 32 2e 74 78 74 60 00 44 65 74 65 72 6d | ospf-shortcut-abr-02.txt`.Determ |
| 43080 | 69 6e 65 73 20 68 6f 77 20 6f 70 65 6e 6e 68 72 70 20 64 61 65 6d 6f 6e 20 73 68 6f 75 6c 64 20 | ines.how.opennhrp.daemon.should. |
| 430a0 | 73 6f 66 74 20 73 77 69 74 63 68 20 74 68 65 20 6d 75 6c 74 69 63 61 73 74 20 74 72 61 66 66 69 | soft.switch.the.multicast.traffi |
| 430c0 | 63 2e 20 43 75 72 72 65 6e 74 6c 79 2c 20 6d 75 6c 74 69 63 61 73 74 20 74 72 61 66 66 69 63 20 | c..Currently,.multicast.traffic. |
| 430e0 | 69 73 20 63 61 70 74 75 72 65 64 20 62 79 20 6f 70 65 6e 6e 68 72 70 20 64 61 65 6d 6f 6e 20 75 | is.captured.by.opennhrp.daemon.u |
| 43100 | 73 69 6e 67 20 61 20 70 61 63 6b 65 74 20 73 6f 63 6b 65 74 2c 20 61 6e 64 20 72 65 73 65 6e 74 | sing.a.packet.socket,.and.resent |
| 43120 | 20 62 61 63 6b 20 74 6f 20 70 72 6f 70 65 72 20 64 65 73 74 69 6e 61 74 69 6f 6e 73 2e 20 54 68 | .back.to.proper.destinations..Th |
| 43140 | 69 73 20 6d 65 61 6e 73 20 74 68 61 74 20 6d 75 6c 74 69 63 61 73 74 20 70 61 63 6b 65 74 20 73 | is.means.that.multicast.packet.s |
| 43160 | 65 6e 64 69 6e 67 20 69 73 20 43 50 55 20 69 6e 74 65 6e 73 69 76 65 2e 00 44 65 76 69 63 65 20 | ending.is.CPU.intensive..Device. |
| 43180 | 69 73 20 69 6e 63 61 70 61 62 6c 65 20 6f 66 20 34 30 20 4d 48 7a 2c 20 64 6f 20 6e 6f 74 20 61 | is.incapable.of.40.MHz,.do.not.a |
| 431a0 | 64 76 65 72 74 69 73 65 2e 20 54 68 69 73 20 73 65 74 73 20 60 60 5b 34 30 2d 49 4e 54 4f 4c 45 | dvertise..This.sets.``[40-INTOLE |
| 431c0 | 52 41 4e 54 5d 60 60 00 44 65 76 69 63 65 73 20 65 76 61 6c 75 61 74 69 6e 67 20 77 68 65 74 68 | RANT]``.Devices.evaluating.wheth |
| 431e0 | 65 72 20 61 6e 20 49 50 76 34 20 61 64 64 72 65 73 73 20 69 73 20 70 75 62 6c 69 63 20 6d 75 73 | er.an.IPv4.address.is.public.mus |
| 43200 | 74 20 62 65 20 75 70 64 61 74 65 64 20 74 6f 20 72 65 63 6f 67 6e 69 7a 65 20 74 68 65 20 6e 65 | t.be.updated.to.recognize.the.ne |
| 43220 | 77 20 61 64 64 72 65 73 73 20 73 70 61 63 65 2e 20 41 6c 6c 6f 63 61 74 69 6e 67 20 6d 6f 72 65 | w.address.space..Allocating.more |
| 43240 | 20 70 72 69 76 61 74 65 20 49 50 76 34 20 61 64 64 72 65 73 73 20 73 70 61 63 65 20 66 6f 72 20 | .private.IPv4.address.space.for. |
| 43260 | 4e 41 54 20 64 65 76 69 63 65 73 20 6d 69 67 68 74 20 70 72 6f 6c 6f 6e 67 20 74 68 65 20 74 72 | NAT.devices.might.prolong.the.tr |
| 43280 | 61 6e 73 69 74 69 6f 6e 20 74 6f 20 49 50 76 36 2e 00 44 69 66 66 65 72 65 6e 74 20 4e 41 54 20 | ansition.to.IPv6..Different.NAT. |
| 432a0 | 54 79 70 65 73 00 44 69 66 66 69 65 2d 48 65 6c 6c 6d 61 6e 20 70 61 72 61 6d 65 74 65 72 73 00 | Types.Diffie-Hellman.parameters. |
| 432c0 | 44 69 72 65 63 74 69 6f 6e 3a 20 2a 2a 69 6e 2a 2a 20 61 6e 64 20 2a 2a 6f 75 74 2a 2a 2e 20 50 | Direction:.**in**.and.**out**..P |
| 432e0 | 72 6f 74 65 63 74 20 70 75 62 6c 69 63 20 6e 65 74 77 6f 72 6b 20 66 72 6f 6d 20 65 78 74 65 72 | rotect.public.network.from.exter |
| 43300 | 6e 61 6c 20 61 74 74 61 63 6b 73 2c 20 61 6e 64 20 69 64 65 6e 74 69 66 79 20 69 6e 74 65 72 6e | nal.attacks,.and.identify.intern |
| 43320 | 61 6c 20 61 74 74 61 63 6b 73 20 74 6f 77 61 72 64 73 20 69 6e 74 65 72 6e 65 74 2e 00 44 69 73 | al.attacks.towards.internet..Dis |
| 43340 | 61 62 6c 65 20 28 6c 6f 63 6b 29 20 61 63 63 6f 75 6e 74 2e 20 55 73 65 72 20 77 69 6c 6c 20 6e | able.(lock).account..User.will.n |
| 43360 | 6f 74 20 62 65 20 61 62 6c 65 20 74 6f 20 6c 6f 67 20 69 6e 2e 00 44 69 73 61 62 6c 65 20 43 50 | ot.be.able.to.log.in..Disable.CP |
| 43380 | 55 20 70 6f 77 65 72 20 73 61 76 69 6e 67 20 6d 65 63 68 61 6e 69 73 6d 73 20 61 6c 73 6f 20 6b | U.power.saving.mechanisms.also.k |
| 433a0 | 6e 6f 77 6e 20 61 73 20 43 20 73 74 61 74 65 73 2e 00 44 69 73 61 62 6c 65 20 43 6f 6d 70 72 65 | nown.as.C.states..Disable.Compre |
| 433c0 | 73 73 69 6f 6e 20 43 6f 6e 74 72 6f 6c 20 50 72 6f 74 6f 63 6f 6c 20 28 43 43 50 29 2e 20 43 43 | ssion.Control.Protocol.(CCP)..CC |
| 433e0 | 50 20 69 73 20 65 6e 61 62 6c 65 64 20 62 79 20 64 65 66 61 75 6c 74 2e 00 44 69 73 61 62 6c 65 | P.is.enabled.by.default..Disable |
| 43400 | 20 4d 4c 44 20 72 65 70 6f 72 74 73 20 61 6e 64 20 71 75 65 72 79 20 6f 6e 20 74 68 65 20 69 6e | .MLD.reports.and.query.on.the.in |
| 43420 | 74 65 72 66 61 63 65 2e 00 44 69 73 61 62 6c 65 20 60 3c 75 73 65 72 3e 60 20 61 63 63 6f 75 6e | terface..Disable.`<user>`.accoun |
| 43440 | 74 2e 00 44 69 73 61 62 6c 65 20 61 20 42 46 44 20 70 65 65 72 00 44 69 73 61 62 6c 65 20 61 20 | t..Disable.a.BFD.peer.Disable.a. |
| 43460 | 63 6f 6e 74 61 69 6e 65 72 2e 00 44 69 73 61 62 6c 65 20 61 20 67 69 76 65 6e 20 63 6f 6e 74 61 | container..Disable.a.given.conta |
| 43480 | 69 6e 65 72 20 72 65 67 69 73 74 72 79 00 44 69 73 61 62 6c 65 20 61 6c 6c 20 6f 70 74 69 6f 6e | iner.registry.Disable.all.option |
| 434a0 | 61 6c 20 43 50 55 20 6d 69 74 69 67 61 74 69 6f 6e 73 2e 20 54 68 69 73 20 69 6d 70 72 6f 76 65 | al.CPU.mitigations..This.improve |
| 434c0 | 73 20 73 79 73 74 65 6d 20 70 65 72 66 6f 72 6d 61 6e 63 65 2c 20 62 75 74 20 69 74 20 6d 61 79 | s.system.performance,.but.it.may |
| 434e0 | 20 61 6c 73 6f 20 65 78 70 6f 73 65 20 75 73 65 72 73 20 74 6f 20 73 65 76 65 72 61 6c 20 43 50 | .also.expose.users.to.several.CP |
| 43500 | 55 20 76 75 6c 6e 65 72 61 62 69 6c 69 74 69 65 73 2e 00 44 69 73 61 62 6c 65 20 63 6f 6e 6e 65 | U.vulnerabilities..Disable.conne |
| 43520 | 63 74 69 6f 6e 20 6c 6f 67 67 69 6e 67 20 76 69 61 20 53 79 73 6c 6f 67 2e 00 44 69 73 61 62 6c | ction.logging.via.Syslog..Disabl |
| 43540 | 65 20 63 6f 6e 6e 74 72 61 63 6b 20 6c 6f 6f 73 65 20 74 72 61 63 6b 20 6f 70 74 69 6f 6e 00 44 | e.conntrack.loose.track.option.D |
| 43560 | 69 73 61 62 6c 65 20 64 68 63 70 2d 72 65 6c 61 79 20 73 65 72 76 69 63 65 2e 00 44 69 73 61 62 | isable.dhcp-relay.service..Disab |
| 43580 | 6c 65 20 64 68 63 70 76 36 2d 72 65 6c 61 79 20 73 65 72 76 69 63 65 2e 00 44 69 73 61 62 6c 65 | le.dhcpv6-relay.service..Disable |
| 435a0 | 20 67 69 76 65 6e 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 2e 20 49 74 20 77 69 6c 6c 20 62 65 | .given.`<interface>`..It.will.be |
| 435c0 | 20 70 6c 61 63 65 64 20 69 6e 20 61 64 6d 69 6e 69 73 74 72 61 74 69 76 65 6c 79 20 64 6f 77 6e | .placed.in.administratively.down |
| 435e0 | 20 28 60 60 41 2f 44 60 60 29 20 73 74 61 74 65 2e 00 44 69 73 61 62 6c 65 20 68 6f 73 74 69 6e | .(``A/D``).state..Disable.hostin |
| 43600 | 67 20 61 75 74 68 6f 72 69 74 61 74 69 76 65 20 7a 6f 6e 65 20 66 6f 72 20 60 3c 64 6f 6d 61 69 | g.authoritative.zone.for.`<domai |
| 43620 | 6e 2d 6e 61 6d 65 3e 60 20 77 69 74 68 6f 75 74 20 64 65 6c 65 74 69 6e 67 20 66 72 6f 6d 20 63 | n-name>`.without.deleting.from.c |
| 43640 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 44 69 73 61 62 6c 65 20 69 6d 6d 65 64 69 61 74 65 20 | onfiguration..Disable.immediate. |
| 43660 | 73 65 73 73 69 6f 6e 20 72 65 73 65 74 20 69 66 20 70 65 65 72 27 73 20 63 6f 6e 6e 65 63 74 65 | session.reset.if.peer's.connecte |
| 43680 | 64 20 6c 69 6e 6b 20 67 6f 65 73 20 64 6f 77 6e 2e 00 44 69 73 61 62 6c 65 20 70 61 73 73 77 6f | d.link.goes.down..Disable.passwo |
| 436a0 | 72 64 20 62 61 73 65 64 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2e 20 4c 6f 67 69 6e 20 76 | rd.based.authentication..Login.v |
| 436c0 | 69 61 20 53 53 48 20 6b 65 79 73 20 6f 6e 6c 79 2e 20 54 68 69 73 20 68 61 72 64 65 6e 73 20 73 | ia.SSH.keys.only..This.hardens.s |
| 436e0 | 65 63 75 72 69 74 79 21 00 44 69 73 61 62 6c 65 20 73 65 6e 64 69 6e 67 20 61 6e 64 20 72 65 63 | ecurity!.Disable.sending.and.rec |
| 43700 | 65 69 76 69 6e 67 20 50 49 4d 20 63 6f 6e 74 72 6f 6c 20 70 61 63 6b 65 74 73 20 6f 6e 20 74 68 | eiving.PIM.control.packets.on.th |
| 43720 | 65 20 69 6e 74 65 72 66 61 63 65 2e 00 44 69 73 61 62 6c 65 20 73 70 65 63 69 66 69 63 20 72 65 | e.interface..Disable.specific.re |
| 43740 | 63 6f 72 64 20 77 69 74 68 6f 75 74 20 64 65 6c 65 74 69 6e 67 20 69 74 20 66 72 6f 6d 20 63 6f | cord.without.deleting.it.from.co |
| 43760 | 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 44 69 73 61 62 6c 65 20 74 68 65 20 68 6f 73 74 20 76 61 | nfiguration..Disable.the.host.va |
| 43780 | 6c 69 64 61 74 69 6f 6e 20 74 68 72 6f 75 67 68 20 72 65 76 65 72 73 65 20 44 4e 53 20 6c 6f 6f | lidation.through.reverse.DNS.loo |
| 437a0 | 6b 75 70 73 20 2d 20 63 61 6e 20 73 70 65 65 64 75 70 20 6c 6f 67 69 6e 20 74 69 6d 65 20 77 68 | kups.-.can.speedup.login.time.wh |
| 437c0 | 65 6e 20 72 65 76 65 72 73 65 20 6c 6f 6f 6b 75 70 20 69 73 20 6e 6f 74 20 70 6f 73 73 69 62 6c | en.reverse.lookup.is.not.possibl |
| 437e0 | 65 2e 00 44 69 73 61 62 6c 65 20 74 68 65 20 70 65 65 72 20 63 6f 6e 66 69 67 75 72 61 74 69 6f | e..Disable.the.peer.configuratio |
| 43800 | 6e 00 44 69 73 61 62 6c 65 20 74 68 69 73 20 49 50 76 34 20 73 74 61 74 69 63 20 72 6f 75 74 65 | n.Disable.this.IPv4.static.route |
| 43820 | 20 65 6e 74 72 79 2e 00 44 69 73 61 62 6c 65 20 74 68 69 73 20 49 50 76 36 20 73 74 61 74 69 63 | .entry..Disable.this.IPv6.static |
| 43840 | 20 72 6f 75 74 65 20 65 6e 74 72 79 2e 00 44 69 73 61 62 6c 65 20 74 68 69 73 20 73 65 72 76 69 | .route.entry..Disable.this.servi |
| 43860 | 63 65 2e 00 44 69 73 61 62 6c 65 20 74 72 61 6e 73 6d 69 74 20 6f 66 20 4c 4c 44 50 20 66 72 61 | ce..Disable.transmit.of.LLDP.fra |
| 43880 | 6d 65 73 20 6f 6e 20 67 69 76 65 6e 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 2e 20 55 73 65 66 | mes.on.given.`<interface>`..Usef |
| 438a0 | 75 6c 20 74 6f 20 65 78 63 6c 75 64 65 20 63 65 72 74 61 69 6e 20 69 6e 74 65 72 66 61 63 65 73 | ul.to.exclude.certain.interfaces |
| 438c0 | 20 66 72 6f 6d 20 4c 4c 44 50 20 77 68 65 6e 20 60 60 61 6c 6c 60 60 20 68 61 76 65 20 62 65 65 | .from.LLDP.when.``all``.have.bee |
| 438e0 | 6e 20 65 6e 61 62 6c 65 64 2e 00 44 69 73 61 62 6c 65 64 20 62 79 20 64 65 66 61 75 6c 74 20 2d | n.enabled..Disabled.by.default.- |
| 43900 | 20 6e 6f 20 6b 65 72 6e 65 6c 20 6d 6f 64 75 6c 65 20 6c 6f 61 64 65 64 2e 00 44 69 73 61 62 6c | .no.kernel.module.loaded..Disabl |
| 43920 | 65 73 20 63 61 63 68 69 6e 67 20 6f 66 20 70 65 65 72 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 | es.caching.of.peer.information.f |
| 43940 | 72 6f 6d 20 66 6f 72 77 61 72 64 65 64 20 4e 48 52 50 20 52 65 73 6f 6c 75 74 69 6f 6e 20 52 65 | rom.forwarded.NHRP.Resolution.Re |
| 43960 | 70 6c 79 20 70 61 63 6b 65 74 73 2e 20 54 68 69 73 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f | ply.packets..This.can.be.used.to |
| 43980 | 20 72 65 64 75 63 65 20 6d 65 6d 6f 72 79 20 63 6f 6e 73 75 6d 70 74 69 6f 6e 20 6f 6e 20 62 69 | .reduce.memory.consumption.on.bi |
| 439a0 | 67 20 4e 42 4d 41 20 73 75 62 6e 65 74 73 2e 00 44 69 73 61 62 6c 65 73 20 66 6c 6f 77 20 69 73 | g.NBMA.subnets..Disables.flow.is |
| 439c0 | 6f 6c 61 74 69 6f 6e 2c 20 61 6c 6c 20 74 72 61 66 66 69 63 20 70 61 73 73 65 73 20 74 68 72 6f | olation,.all.traffic.passes.thro |
| 439e0 | 75 67 68 20 61 20 73 69 6e 67 6c 65 20 71 75 65 75 65 2e 00 44 69 73 61 62 6c 65 73 20 69 6e 74 | ugh.a.single.queue..Disables.int |
| 43a00 | 65 72 66 61 63 65 2d 62 61 73 65 64 20 49 50 76 34 20 73 74 61 74 69 63 20 72 6f 75 74 65 2e 00 | erface-based.IPv4.static.route.. |
| 43a20 | 44 69 73 61 62 6c 65 73 20 69 6e 74 65 72 66 61 63 65 2d 62 61 73 65 64 20 49 50 76 36 20 73 74 | Disables.interface-based.IPv6.st |
| 43a40 | 61 74 69 63 20 72 6f 75 74 65 2e 00 44 69 73 61 62 6c 65 73 20 71 75 69 63 6b 6c 65 61 76 65 20 | atic.route..Disables.quickleave. |
| 43a60 | 6d 6f 64 65 2e 20 49 6e 20 74 68 69 73 20 6d 6f 64 65 20 74 68 65 20 64 61 65 6d 6f 6e 20 77 69 | mode..In.this.mode.the.daemon.wi |
| 43a80 | 6c 6c 20 6e 6f 74 20 73 65 6e 64 20 61 20 4c 65 61 76 65 20 49 47 4d 50 20 6d 65 73 73 61 67 65 | ll.not.send.a.Leave.IGMP.message |
| 43aa0 | 20 75 70 73 74 72 65 61 6d 20 61 73 20 73 6f 6f 6e 20 61 73 20 69 74 20 72 65 63 65 69 76 65 73 | .upstream.as.soon.as.it.receives |
| 43ac0 | 20 61 20 4c 65 61 76 65 20 6d 65 73 73 61 67 65 20 66 6f 72 20 61 6e 79 20 64 6f 77 6e 73 74 72 | .a.Leave.message.for.any.downstr |
| 43ae0 | 65 61 6d 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 65 20 64 61 65 6d 6f 6e 20 77 69 6c 6c 20 6e | eam.interface..The.daemon.will.n |
| 43b00 | 6f 74 20 61 73 6b 20 66 6f 72 20 4d 65 6d 62 65 72 73 68 69 70 20 72 65 70 6f 72 74 73 20 6f 6e | ot.ask.for.Membership.reports.on |
| 43b20 | 20 74 68 65 20 64 6f 77 6e 73 74 72 65 61 6d 20 69 6e 74 65 72 66 61 63 65 73 2c 20 61 6e 64 20 | .the.downstream.interfaces,.and. |
| 43b40 | 69 66 20 61 20 72 65 70 6f 72 74 20 69 73 20 72 65 63 65 69 76 65 64 20 74 68 65 20 67 72 6f 75 | if.a.report.is.received.the.grou |
| 43b60 | 70 20 69 73 20 6e 6f 74 20 6a 6f 69 6e 65 64 20 61 67 61 69 6e 20 74 68 65 20 75 70 73 74 72 65 | p.is.not.joined.again.the.upstre |
| 43b80 | 61 6d 2e 00 44 69 73 61 62 6c 65 73 20 77 65 62 20 66 69 6c 74 65 72 69 6e 67 20 77 69 74 68 6f | am..Disables.web.filtering.witho |
| 43ba0 | 75 74 20 64 69 73 63 61 72 64 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 44 69 73 | ut.discarding.configuration..Dis |
| 43bc0 | 61 62 6c 65 73 20 77 65 62 20 70 72 6f 78 79 20 74 72 61 6e 73 70 61 72 65 6e 74 20 6d 6f 64 65 | ables.web.proxy.transparent.mode |
| 43be0 | 20 61 74 20 61 20 6c 69 73 74 65 6e 69 6e 67 20 61 64 64 72 65 73 73 2e 00 44 69 73 61 62 6c 69 | .at.a.listening.address..Disabli |
| 43c00 | 6e 67 20 41 64 76 65 72 74 69 73 65 6d 65 6e 74 73 00 44 69 73 61 62 6c 69 6e 67 20 61 20 56 52 | ng.Advertisements.Disabling.a.VR |
| 43c20 | 52 50 20 67 72 6f 75 70 00 44 69 73 61 62 6c 69 6e 67 20 74 68 65 20 65 6e 63 72 79 70 74 69 6f | RP.group.Disabling.the.encryptio |
| 43c40 | 6e 20 6f 6e 20 74 68 65 20 6c 69 6e 6b 20 62 79 20 72 65 6d 6f 76 69 6e 67 20 60 60 73 65 63 75 | n.on.the.link.by.removing.``secu |
| 43c60 | 72 69 74 79 20 65 6e 63 72 79 70 74 60 60 20 77 69 6c 6c 20 73 68 6f 77 20 74 68 65 20 75 6e 65 | rity.encrypt``.will.show.the.une |
| 43c80 | 6e 63 72 79 70 74 65 64 20 62 75 74 20 61 75 74 68 65 6e 74 69 63 61 74 65 64 20 63 6f 6e 74 65 | ncrypted.but.authenticated.conte |
| 43ca0 | 6e 74 2e 00 44 69 73 61 64 76 61 6e 74 61 67 65 73 20 61 72 65 3a 00 44 69 73 61 73 73 6f 63 69 | nt..Disadvantages.are:.Disassoci |
| 43cc0 | 61 74 65 20 73 74 61 74 69 6f 6e 73 20 62 61 73 65 64 20 6f 6e 20 65 78 63 65 73 73 69 76 65 20 | ate.stations.based.on.excessive. |
| 43ce0 | 74 72 61 6e 73 6d 69 73 73 69 6f 6e 20 66 61 69 6c 75 72 65 73 20 6f 72 20 6f 74 68 65 72 20 69 | transmission.failures.or.other.i |
| 43d00 | 6e 64 69 63 61 74 69 6f 6e 73 20 6f 66 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 6c 6f 73 73 2e 00 44 | ndications.of.connection.loss..D |
| 43d20 | 69 73 70 6c 61 79 20 49 50 76 34 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 66 6f 72 20 56 52 | isplay.IPv4.routing.table.for.VR |
| 43d40 | 46 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 60 3c 6e 61 6d 65 3e 60 2e 00 44 69 73 70 6c 61 | F.identified.by.`<name>`..Displa |
| 43d60 | 79 20 49 50 76 36 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 66 6f 72 20 56 52 46 20 69 64 65 | y.IPv6.routing.table.for.VRF.ide |
| 43d80 | 6e 74 69 66 69 65 64 20 62 79 20 60 3c 6e 61 6d 65 3e 60 2e 00 44 69 73 70 6c 61 79 20 4c 6f 67 | ntified.by.`<name>`..Display.Log |
| 43da0 | 73 00 44 69 73 70 6c 61 79 20 4f 54 50 20 6b 65 79 20 66 6f 72 20 75 73 65 72 00 44 69 73 70 6c | s.Display.OTP.key.for.user.Displ |
| 43dc0 | 61 79 20 61 6c 6c 20 61 75 74 68 6f 72 69 7a 61 74 69 6f 6e 20 61 74 74 65 6d 70 74 73 20 6f 66 | ay.all.authorization.attempts.of |
| 43de0 | 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 69 6d 61 67 65 00 44 69 73 70 6c 61 79 20 61 6c 6c | .the.specified.image.Display.all |
| 43e00 | 20 6b 6e 6f 77 6e 20 41 52 50 20 74 61 62 6c 65 20 65 6e 74 72 69 65 73 20 6f 6e 20 61 20 67 69 | .known.ARP.table.entries.on.a.gi |
| 43e20 | 76 65 6e 20 69 6e 74 65 72 66 61 63 65 20 6f 6e 6c 79 20 28 60 65 74 68 31 60 29 3a 00 44 69 73 | ven.interface.only.(`eth1`):.Dis |
| 43e40 | 70 6c 61 79 20 61 6c 6c 20 6b 6e 6f 77 6e 20 41 52 50 20 74 61 62 6c 65 20 65 6e 74 72 69 65 73 | play.all.known.ARP.table.entries |
| 43e60 | 20 73 70 61 6e 6e 69 6e 67 20 61 63 72 6f 73 73 20 61 6c 6c 20 69 6e 74 65 72 66 61 63 65 73 00 | .spanning.across.all.interfaces. |
| 43e80 | 44 69 73 70 6c 61 79 20 63 6f 6e 74 65 6e 74 73 20 6f 66 20 61 20 73 70 65 63 69 66 69 65 64 20 | Display.contents.of.a.specified. |
| 43ea0 | 75 73 65 72 2d 64 65 66 69 6e 65 64 20 6c 6f 67 20 66 69 6c 65 20 6f 66 20 74 68 65 20 73 70 65 | user-defined.log.file.of.the.spe |
| 43ec0 | 63 69 66 69 65 64 20 69 6d 61 67 65 00 44 69 73 70 6c 61 79 20 63 6f 6e 74 65 6e 74 73 20 6f 66 | cified.image.Display.contents.of |
| 43ee0 | 20 61 6c 6c 20 6d 61 73 74 65 72 20 6c 6f 67 20 66 69 6c 65 73 20 6f 66 20 74 68 65 20 73 70 65 | .all.master.log.files.of.the.spe |
| 43f00 | 63 69 66 69 65 64 20 69 6d 61 67 65 00 44 69 73 70 6c 61 79 20 6c 61 73 74 20 6c 69 6e 65 73 20 | cified.image.Display.last.lines. |
| 43f20 | 6f 66 20 74 68 65 20 73 79 73 74 65 6d 20 6c 6f 67 20 6f 66 20 74 68 65 20 73 70 65 63 69 66 69 | of.the.system.log.of.the.specifi |
| 43f40 | 65 64 20 69 6d 61 67 65 00 44 69 73 70 6c 61 79 20 6c 69 73 74 20 6f 66 20 61 6c 6c 20 75 73 65 | ed.image.Display.list.of.all.use |
| 43f60 | 72 2d 64 65 66 69 6e 65 64 20 6c 6f 67 20 66 69 6c 65 73 20 6f 66 20 74 68 65 20 73 70 65 63 69 | r-defined.log.files.of.the.speci |
| 43f80 | 66 69 65 64 20 69 6d 61 67 65 00 44 69 73 70 6c 61 79 20 6c 6f 67 20 66 69 6c 65 73 20 6f 66 20 | fied.image.Display.log.files.of. |
| 43fa0 | 67 69 76 65 6e 20 63 61 74 65 67 6f 72 79 20 6f 6e 20 74 68 65 20 63 6f 6e 73 6f 6c 65 2e 20 55 | given.category.on.the.console..U |
| 43fc0 | 73 65 20 74 61 62 20 63 6f 6d 70 6c 65 74 69 6f 6e 20 74 6f 20 67 65 74 20 61 20 6c 69 73 74 20 | se.tab.completion.to.get.a.list. |
| 43fe0 | 6f 66 20 61 76 61 69 6c 61 62 6c 65 20 63 61 74 65 67 6f 72 69 65 73 2e 20 54 68 6f 73 20 63 61 | of.available.categories..Thos.ca |
| 44000 | 74 65 67 6f 72 69 65 73 20 63 6f 75 6c 64 20 62 65 3a 20 61 6c 6c 2c 20 61 75 74 68 6f 72 69 7a | tegories.could.be:.all,.authoriz |
| 44020 | 61 74 69 6f 6e 2c 20 63 6c 75 73 74 65 72 2c 20 63 6f 6e 6e 74 72 61 63 6b 2d 73 79 6e 63 2c 20 | ation,.cluster,.conntrack-sync,. |
| 44040 | 64 68 63 70 2c 20 64 69 72 65 63 74 6f 72 79 2c 20 64 6e 73 2c 20 66 69 6c 65 2c 20 66 69 72 65 | dhcp,.directory,.dns,.file,.fire |
| 44060 | 77 61 6c 6c 2c 20 68 74 74 70 73 2c 20 69 6d 61 67 65 20 6c 6c 64 70 2c 20 6e 61 74 2c 20 6f 70 | wall,.https,.image.lldp,.nat,.op |
| 44080 | 65 6e 76 70 6e 2c 20 73 6e 6d 70 2c 20 74 61 69 6c 2c 20 76 70 6e 2c 20 76 72 72 70 00 44 69 73 | envpn,.snmp,.tail,.vpn,.vrrp.Dis |
| 440a0 | 70 6c 61 79 20 6c 6f 67 20 66 69 6c 65 73 20 6f 66 20 67 69 76 65 6e 20 63 61 74 65 67 6f 72 79 | play.log.files.of.given.category |
| 440c0 | 20 6f 6e 20 74 68 65 20 63 6f 6e 73 6f 6c 65 2e 20 55 73 65 20 74 61 62 20 63 6f 6d 70 6c 65 74 | .on.the.console..Use.tab.complet |
| 440e0 | 69 6f 6e 20 74 6f 20 67 65 74 20 61 20 6c 69 73 74 20 6f 66 20 61 76 61 69 6c 61 62 6c 65 20 63 | ion.to.get.a.list.of.available.c |
| 44100 | 61 74 65 67 6f 72 69 65 73 2e 20 54 68 6f 73 65 20 63 61 74 65 67 6f 72 69 65 73 20 63 6f 75 6c | ategories..Those.categories.coul |
| 44120 | 64 20 62 65 3a 20 61 6c 6c 2c 20 61 75 74 68 6f 72 69 7a 61 74 69 6f 6e 2c 20 63 6c 75 73 74 65 | d.be:.all,.authorization,.cluste |
| 44140 | 72 2c 20 63 6f 6e 6e 74 72 61 63 6b 2d 73 79 6e 63 2c 20 64 68 63 70 2c 20 64 69 72 65 63 74 6f | r,.conntrack-sync,.dhcp,.directo |
| 44160 | 72 79 2c 20 64 6e 73 2c 20 66 69 6c 65 2c 20 66 69 72 65 77 61 6c 6c 2c 20 68 74 74 70 73 2c 20 | ry,.dns,.file,.firewall,.https,. |
| 44180 | 69 6d 61 67 65 20 6c 6c 64 70 2c 20 6e 61 74 2c 20 6f 70 65 6e 76 70 6e 2c 20 73 6e 6d 70 2c 20 | image.lldp,.nat,.openvpn,.snmp,. |
| 441a0 | 74 61 69 6c 2c 20 76 70 6e 2c 20 76 72 72 70 00 44 69 73 70 6c 61 79 73 20 69 6e 66 6f 72 6d 61 | tail,.vpn,.vrrp.Displays.informa |
| 441c0 | 74 69 6f 6e 20 61 62 6f 75 74 20 61 6c 6c 20 6e 65 69 67 68 62 6f 72 73 20 64 69 73 63 6f 76 65 | tion.about.all.neighbors.discove |
| 441e0 | 72 65 64 20 76 69 61 20 4c 4c 44 50 2e 00 44 69 73 70 6c 61 79 73 20 71 75 65 75 65 20 69 6e 66 | red.via.LLDP..Displays.queue.inf |
| 44200 | 6f 72 6d 61 74 69 6f 6e 20 66 6f 72 20 61 20 50 50 50 6f 45 20 69 6e 74 65 72 66 61 63 65 2e 00 | ormation.for.a.PPPoE.interface.. |
| 44220 | 44 69 73 70 6c 61 79 73 20 74 68 65 20 72 6f 75 74 65 20 70 61 63 6b 65 74 73 20 74 61 6b 65 6e | Displays.the.route.packets.taken |
| 44240 | 20 74 6f 20 61 20 6e 65 74 77 6f 72 6b 20 68 6f 73 74 20 75 74 69 6c 69 7a 69 6e 67 20 56 52 46 | .to.a.network.host.utilizing.VRF |
| 44260 | 20 69 6e 73 74 61 6e 63 65 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 60 3c 6e 61 6d 65 3e 60 | .instance.identified.by.`<name>` |
| 44280 | 2e 20 57 68 65 6e 20 75 73 69 6e 67 20 74 68 65 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 6f 70 | ..When.using.the.IPv4.or.IPv6.op |
| 442a0 | 74 69 6f 6e 2c 20 64 69 73 70 6c 61 79 73 20 74 68 65 20 72 6f 75 74 65 20 70 61 63 6b 65 74 73 | tion,.displays.the.route.packets |
| 442c0 | 20 74 61 6b 65 6e 20 74 6f 20 74 68 65 20 67 69 76 65 6e 20 68 6f 73 74 73 20 49 50 20 61 64 64 | .taken.to.the.given.hosts.IP.add |
| 442e0 | 72 65 73 73 20 66 61 6d 69 6c 79 2e 20 54 68 69 73 20 6f 70 74 69 6f 6e 20 69 73 20 75 73 65 66 | ress.family..This.option.is.usef |
| 44300 | 75 6c 20 77 68 65 6e 20 74 68 65 20 68 6f 73 74 20 69 73 20 73 70 65 63 69 66 69 65 64 20 61 73 | ul.when.the.host.is.specified.as |
| 44320 | 20 61 20 68 6f 73 74 6e 61 6d 65 20 72 61 74 68 65 72 20 74 68 61 6e 20 61 6e 20 49 50 20 61 64 | .a.hostname.rather.than.an.IP.ad |
| 44340 | 64 72 65 73 73 2e 00 44 6f 20 2a 6e 6f 74 2a 20 6d 61 6e 75 61 6c 6c 79 20 65 64 69 74 20 60 2f | dress..Do.*not*.manually.edit.`/ |
| 44360 | 65 74 63 2f 68 6f 73 74 73 60 2e 20 54 68 69 73 20 66 69 6c 65 20 77 69 6c 6c 20 61 75 74 6f 6d | etc/hosts`..This.file.will.autom |
| 44380 | 61 74 69 63 61 6c 6c 79 20 62 65 20 72 65 67 65 6e 65 72 61 74 65 64 20 6f 6e 20 62 6f 6f 74 20 | atically.be.regenerated.on.boot. |
| 443a0 | 62 61 73 65 64 20 6f 6e 20 74 68 65 20 73 65 74 74 69 6e 67 73 20 69 6e 20 74 68 69 73 20 73 65 | based.on.the.settings.in.this.se |
| 443c0 | 63 74 69 6f 6e 2c 20 77 68 69 63 68 20 6d 65 61 6e 73 20 79 6f 75 27 6c 6c 20 6c 6f 73 65 20 61 | ction,.which.means.you'll.lose.a |
| 443e0 | 6c 6c 20 79 6f 75 72 20 6d 61 6e 75 61 6c 20 65 64 69 74 73 2e 20 49 6e 73 74 65 61 64 2c 20 63 | ll.your.manual.edits..Instead,.c |
| 44400 | 6f 6e 66 69 67 75 72 65 20 73 74 61 74 69 63 20 68 6f 73 74 20 6d 61 70 70 69 6e 67 73 20 61 73 | onfigure.static.host.mappings.as |
| 44420 | 20 66 6f 6c 6c 6f 77 73 2e 00 44 6f 20 6e 6f 74 20 61 6c 6c 6f 77 20 49 50 76 34 20 6e 65 78 74 | .follows..Do.not.allow.IPv4.next |
| 44440 | 68 6f 70 20 74 72 61 63 6b 69 6e 67 20 74 6f 20 72 65 73 6f 6c 76 65 20 76 69 61 20 74 68 65 20 | hop.tracking.to.resolve.via.the. |
| 44460 | 64 65 66 61 75 6c 74 20 72 6f 75 74 65 2e 20 54 68 69 73 20 70 61 72 61 6d 65 74 65 72 20 69 73 | default.route..This.parameter.is |
| 44480 | 20 63 6f 6e 66 69 67 75 72 65 64 20 70 65 72 2d 56 52 46 2c 20 73 6f 20 74 68 65 20 63 6f 6d 6d | .configured.per-VRF,.so.the.comm |
| 444a0 | 61 6e 64 20 69 73 20 61 6c 73 6f 20 61 76 61 69 6c 61 62 6c 65 20 69 6e 20 74 68 65 20 56 52 46 | and.is.also.available.in.the.VRF |
| 444c0 | 20 73 75 62 6e 6f 64 65 2e 00 44 6f 20 6e 6f 74 20 61 6c 6c 6f 77 20 49 50 76 36 20 6e 65 78 74 | .subnode..Do.not.allow.IPv6.next |
| 444e0 | 68 6f 70 20 74 72 61 63 6b 69 6e 67 20 74 6f 20 72 65 73 6f 6c 76 65 20 76 69 61 20 74 68 65 20 | hop.tracking.to.resolve.via.the. |
| 44500 | 64 65 66 61 75 6c 74 20 72 6f 75 74 65 2e 20 54 68 69 73 20 70 61 72 61 6d 65 74 65 72 20 69 73 | default.route..This.parameter.is |
| 44520 | 20 63 6f 6e 66 69 67 75 72 65 64 20 70 65 72 2d 56 52 46 2c 20 73 6f 20 74 68 65 20 63 6f 6d 6d | .configured.per-VRF,.so.the.comm |
| 44540 | 61 6e 64 20 69 73 20 61 6c 73 6f 20 61 76 61 69 6c 61 62 6c 65 20 69 6e 20 74 68 65 20 56 52 46 | and.is.also.available.in.the.VRF |
| 44560 | 20 73 75 62 6e 6f 64 65 2e 00 44 6f 20 6e 6f 74 20 61 73 73 69 67 6e 20 61 20 6c 69 6e 6b 2d 6c | .subnode..Do.not.assign.a.link-l |
| 44580 | 6f 63 61 6c 20 49 50 76 36 20 61 64 64 72 65 73 73 20 74 6f 20 74 68 69 73 20 69 6e 74 65 72 66 | ocal.IPv6.address.to.this.interf |
| 445a0 | 61 63 65 2e 00 44 6f 20 6e 6f 74 20 63 6f 6e 66 69 67 75 72 65 20 49 46 42 20 61 73 20 74 68 65 | ace..Do.not.configure.IFB.as.the |
| 445c0 | 20 66 69 72 73 74 20 73 74 65 70 2e 20 46 69 72 73 74 20 63 72 65 61 74 65 20 65 76 65 72 79 74 | .first.step..First.create.everyt |
| 445e0 | 68 69 6e 67 20 65 6c 73 65 20 6f 66 20 79 6f 75 72 20 74 72 61 66 66 69 63 2d 70 6f 6c 69 63 79 | hing.else.of.your.traffic-policy |
| 44600 | 2c 20 61 6e 64 20 74 68 65 6e 20 79 6f 75 20 63 61 6e 20 63 6f 6e 66 69 67 75 72 65 20 49 46 42 | ,.and.then.you.can.configure.IFB |
| 44620 | 2e 20 4f 74 68 65 72 77 69 73 65 20 79 6f 75 20 6d 69 67 68 74 20 67 65 74 20 74 68 65 20 60 60 | ..Otherwise.you.might.get.the.`` |
| 44640 | 52 54 4e 45 54 4c 49 4e 4b 20 61 6e 73 77 65 72 3a 20 46 69 6c 65 20 65 78 69 73 74 73 60 60 20 | RTNETLINK.answer:.File.exists``. |
| 44660 | 65 72 72 6f 72 2c 20 77 68 69 63 68 20 63 61 6e 20 62 65 20 73 6f 6c 76 65 64 20 77 69 74 68 20 | error,.which.can.be.solved.with. |
| 44680 | 60 60 73 75 64 6f 20 69 70 20 6c 69 6e 6b 20 64 65 6c 65 74 65 20 69 66 62 30 60 60 2e 00 44 6f | ``sudo.ip.link.delete.ifb0``..Do |
| 446a0 | 20 6e 6f 74 20 6c 65 61 76 65 20 69 6e 74 72 6f 73 70 65 63 74 69 6f 6e 20 65 6e 61 62 6c 65 64 | .not.leave.introspection.enabled |
| 446c0 | 20 69 6e 20 70 72 6f 64 75 63 74 69 6f 6e 2c 20 69 74 20 69 73 20 61 20 73 65 63 75 72 69 74 79 | .in.production,.it.is.a.security |
| 446e0 | 20 72 69 73 6b 2e 00 44 6f 20 6e 6f 74 20 73 65 6e 64 20 48 61 72 64 20 52 65 73 65 74 20 43 45 | .risk..Do.not.send.Hard.Reset.CE |
| 44700 | 41 53 45 20 4e 6f 74 69 66 69 63 61 74 69 6f 6e 20 66 6f 72 20 22 41 64 6d 69 6e 69 73 74 72 61 | ASE.Notification.for."Administra |
| 44720 | 74 69 76 65 20 52 65 73 65 74 22 20 65 76 65 6e 74 73 2e 20 57 68 65 6e 20 73 65 74 20 61 6e 64 | tive.Reset".events..When.set.and |
| 44740 | 20 47 72 61 63 65 66 75 6c 20 52 65 73 74 61 72 74 20 4e 6f 74 69 66 69 63 61 74 69 6f 6e 20 63 | .Graceful.Restart.Notification.c |
| 44760 | 61 70 61 62 69 6c 69 74 79 20 69 73 20 65 78 63 68 61 6e 67 65 64 20 62 65 74 77 65 65 6e 20 74 | apability.is.exchanged.between.t |
| 44780 | 68 65 20 70 65 65 72 73 2c 20 47 72 61 63 65 66 75 6c 20 52 65 73 74 61 72 74 20 70 72 6f 63 65 | he.peers,.Graceful.Restart.proce |
| 447a0 | 64 75 72 65 73 20 61 70 70 6c 79 2c 20 61 6e 64 20 72 6f 75 74 65 73 20 77 69 6c 6c 20 62 65 20 | dures.apply,.and.routes.will.be. |
| 447c0 | 72 65 74 61 69 6e 65 64 2e 00 44 6f 20 6e 6f 74 20 75 73 65 20 74 68 65 20 6c 6f 63 61 6c 20 60 | retained..Do.not.use.the.local.` |
| 447e0 | 60 2f 65 74 63 2f 68 6f 73 74 73 60 60 20 66 69 6c 65 20 69 6e 20 6e 61 6d 65 20 72 65 73 6f 6c | `/etc/hosts``.file.in.name.resol |
| 44800 | 75 74 69 6f 6e 2e 20 56 79 4f 53 20 44 48 43 50 20 73 65 72 76 65 72 20 77 69 6c 6c 20 75 73 65 | ution..VyOS.DHCP.server.will.use |
| 44820 | 20 74 68 69 73 20 66 69 6c 65 20 74 6f 20 61 64 64 20 72 65 73 6f 6c 76 65 72 73 20 74 6f 20 61 | .this.file.to.add.resolvers.to.a |
| 44840 | 73 73 69 67 6e 65 64 20 61 64 64 72 65 73 73 65 73 2e 00 44 6f 65 73 20 6e 6f 74 20 6e 65 65 64 | ssigned.addresses..Does.not.need |
| 44860 | 20 74 6f 20 62 65 20 75 73 65 64 20 74 6f 67 65 74 68 65 72 20 77 69 74 68 20 70 72 6f 78 79 5f | .to.be.used.together.with.proxy_ |
| 44880 | 61 72 70 2e 00 44 6f 6d 61 69 6e 00 44 6f 6d 61 69 6e 20 47 72 6f 75 70 73 00 44 6f 6d 61 69 6e | arp..Domain.Domain.Groups.Domain |
| 448a0 | 20 4e 61 6d 65 00 44 6f 6d 61 69 6e 20 6e 61 6d 65 28 73 29 20 66 6f 72 20 77 68 69 63 68 20 74 | .Name.Domain.name(s).for.which.t |
| 448c0 | 6f 20 6f 62 74 61 69 6e 20 63 65 72 74 69 66 69 63 61 74 65 00 44 6f 6d 61 69 6e 20 6e 61 6d 65 | o.obtain.certificate.Domain.name |
| 448e0 | 73 20 63 61 6e 20 69 6e 63 6c 75 64 65 20 6c 65 74 74 65 72 73 2c 20 6e 75 6d 62 65 72 73 2c 20 | s.can.include.letters,.numbers,. |
| 44900 | 68 79 70 68 65 6e 73 20 61 6e 64 20 70 65 72 69 6f 64 73 20 77 69 74 68 20 61 20 6d 61 78 69 6d | hyphens.and.periods.with.a.maxim |
| 44920 | 75 6d 20 6c 65 6e 67 74 68 20 6f 66 20 32 35 33 20 63 68 61 72 61 63 74 65 72 73 2e 00 44 6f 6d | um.length.of.253.characters..Dom |
| 44940 | 61 69 6e 20 6e 61 6d 65 73 20 74 6f 20 61 70 70 6c 79 2c 20 6d 75 6c 74 69 70 6c 65 20 64 6f 6d | ain.names.to.apply,.multiple.dom |
| 44960 | 61 69 6e 2d 6e 61 6d 65 73 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 2e 00 44 6f 6d 61 | ain-names.can.be.specified..Doma |
| 44980 | 69 6e 20 73 65 61 72 63 68 20 6f 72 64 65 72 00 44 6f 6e 27 74 20 62 65 20 61 66 72 61 69 64 20 | in.search.order.Don't.be.afraid. |
| 449a0 | 74 68 61 74 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 72 65 2d 64 6f 20 79 6f 75 72 20 63 6f 6e 66 | that.you.need.to.re-do.your.conf |
| 449c0 | 69 67 75 72 61 74 69 6f 6e 2e 20 4b 65 79 20 74 72 61 6e 73 66 6f 72 6d 61 74 69 6f 6e 20 69 73 | iguration..Key.transformation.is |
| 449e0 | 20 68 61 6e 64 6c 65 64 2c 20 61 73 20 61 6c 77 61 79 73 2c 20 62 79 20 6f 75 72 20 6d 69 67 72 | .handled,.as.always,.by.our.migr |
| 44a00 | 61 74 69 6f 6e 20 73 63 72 69 70 74 73 2c 20 73 6f 20 74 68 69 73 20 77 69 6c 6c 20 62 65 20 61 | ation.scripts,.so.this.will.be.a |
| 44a20 | 20 73 6d 6f 6f 74 68 20 74 72 61 6e 73 69 74 69 6f 6e 20 66 6f 72 20 79 6f 75 21 00 44 6f 6e 27 | .smooth.transition.for.you!.Don' |
| 44a40 | 74 20 66 6f 72 67 65 74 2c 20 74 68 65 20 43 49 44 52 20 64 65 63 6c 61 72 65 64 20 69 6e 20 74 | t.forget,.the.CIDR.declared.in.t |
| 44a60 | 68 65 20 6e 65 74 77 6f 72 6b 20 73 74 61 74 65 6d 65 6e 74 20 2a 2a 4d 55 53 54 20 65 78 69 73 | he.network.statement.**MUST.exis |
| 44a80 | 74 20 69 6e 20 79 6f 75 72 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 28 64 79 6e 61 6d 69 63 | t.in.your.routing.table.(dynamic |
| 44aa0 | 20 6f 72 20 73 74 61 74 69 63 29 2c 20 74 68 65 20 62 65 73 74 20 77 61 79 20 74 6f 20 6d 61 6b | .or.static),.the.best.way.to.mak |
| 44ac0 | 65 20 73 75 72 65 20 74 68 61 74 20 69 73 20 74 72 75 65 20 69 73 20 63 72 65 61 74 69 6e 67 20 | e.sure.that.is.true.is.creating. |
| 44ae0 | 61 20 73 74 61 74 69 63 20 72 6f 75 74 65 3a 2a 2a 00 44 6f 6e 27 74 20 66 6f 72 67 65 74 2c 20 | a.static.route:**.Don't.forget,. |
| 44b00 | 74 68 65 20 43 49 44 52 20 64 65 63 6c 61 72 65 64 20 69 6e 20 74 68 65 20 6e 65 74 77 6f 72 6b | the.CIDR.declared.in.the.network |
| 44b20 | 20 73 74 61 74 65 6d 65 6e 74 20 4d 55 53 54 20 2a 2a 65 78 69 73 74 20 69 6e 20 79 6f 75 72 20 | .statement.MUST.**exist.in.your. |
| 44b40 | 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 28 64 79 6e 61 6d 69 63 20 6f 72 20 73 74 61 74 69 63 | routing.table.(dynamic.or.static |
| 44b60 | 29 2c 20 74 68 65 20 62 65 73 74 20 77 61 79 20 74 6f 20 6d 61 6b 65 20 73 75 72 65 20 74 68 61 | ),.the.best.way.to.make.sure.tha |
| 44b80 | 74 20 69 73 20 74 72 75 65 20 69 73 20 63 72 65 61 74 69 6e 67 20 61 20 73 74 61 74 69 63 20 72 | t.is.true.is.creating.a.static.r |
| 44ba0 | 6f 75 74 65 3a 2a 2a 00 44 6f 6e 27 74 20 67 65 74 20 63 6f 6e 66 75 73 65 64 20 61 62 6f 75 74 | oute:**.Don't.get.confused.about |
| 44bc0 | 20 74 68 65 20 75 73 65 64 20 2f 33 31 20 74 75 6e 6e 65 6c 20 73 75 62 6e 65 74 2e 20 3a 72 66 | .the.used./31.tunnel.subnet..:rf |
| 44be0 | 63 3a 60 33 30 32 31 60 20 67 69 76 65 73 20 79 6f 75 20 61 64 64 69 74 69 6f 6e 61 6c 20 69 6e | c:`3021`.gives.you.additional.in |
| 44c00 | 66 6f 72 6d 61 74 69 6f 6e 20 66 6f 72 20 75 73 69 6e 67 20 2f 33 31 20 73 75 62 6e 65 74 73 20 | formation.for.using./31.subnets. |
| 44c20 | 6f 6e 20 70 6f 69 6e 74 2d 74 6f 2d 70 6f 69 6e 74 20 6c 69 6e 6b 73 2e 00 44 6f 77 6e 6c 6f 61 | on.point-to-point.links..Downloa |
| 44c40 | 64 20 62 61 6e 64 77 69 64 74 68 20 6c 69 6d 69 74 20 69 6e 20 6b 62 69 74 2f 73 20 66 6f 72 20 | d.bandwidth.limit.in.kbit/s.for. |
| 44c60 | 60 3c 75 73 65 72 3e 60 2e 00 44 6f 77 6e 6c 6f 61 64 20 62 61 6e 64 77 69 64 74 68 20 6c 69 6d | `<user>`..Download.bandwidth.lim |
| 44c80 | 69 74 20 69 6e 20 6b 62 69 74 2f 73 20 66 6f 72 20 75 73 65 72 20 6f 6e 20 69 6e 74 65 72 66 61 | it.in.kbit/s.for.user.on.interfa |
| 44ca0 | 63 65 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 2e 00 44 6f 77 6e 6c 6f 61 64 2f 55 70 64 61 74 | ce.`<interface>`..Download/Updat |
| 44cc0 | 65 20 63 6f 6d 70 6c 65 74 65 20 62 6c 61 63 6b 6c 69 73 74 00 44 6f 77 6e 6c 6f 61 64 2f 55 70 | e.complete.blacklist.Download/Up |
| 44ce0 | 64 61 74 65 20 70 61 72 74 69 61 6c 20 62 6c 61 63 6b 6c 69 73 74 2e 00 44 72 6f 70 20 41 53 2d | date.partial.blacklist..Drop.AS- |
| 44d00 | 4e 55 4d 42 45 52 20 66 72 6f 6d 20 74 68 65 20 42 47 50 20 41 53 20 70 61 74 68 2e 00 44 72 6f | NUMBER.from.the.BGP.AS.path..Dro |
| 44d20 | 70 20 54 61 69 6c 00 44 72 6f 70 20 72 61 74 65 00 44 72 6f 70 70 65 64 20 70 61 63 6b 65 74 73 | p.Tail.Drop.rate.Dropped.packets |
| 44d40 | 20 72 65 70 6f 72 74 65 64 20 6f 6e 20 44 52 4f 50 4d 4f 4e 20 4e 65 74 6c 69 6e 6b 20 63 68 61 | .reported.on.DROPMON.Netlink.cha |
| 44d60 | 6e 6e 65 6c 20 62 79 20 4c 69 6e 75 78 20 6b 65 72 6e 65 6c 20 61 72 65 20 65 78 70 6f 72 74 65 | nnel.by.Linux.kernel.are.exporte |
| 44d80 | 64 20 76 69 61 20 74 68 65 20 73 74 61 6e 64 61 72 64 20 73 46 6c 6f 77 20 76 35 20 65 78 74 65 | d.via.the.standard.sFlow.v5.exte |
| 44da0 | 6e 73 69 6f 6e 20 66 6f 72 20 72 65 70 6f 72 74 69 6e 67 20 64 72 6f 70 70 65 64 20 70 61 63 6b | nsion.for.reporting.dropped.pack |
| 44dc0 | 65 74 73 00 44 75 61 6c 2d 53 74 61 63 6b 20 49 50 76 34 2f 49 50 76 36 20 70 72 6f 76 69 73 69 | ets.Dual-Stack.IPv4/IPv6.provisi |
| 44de0 | 6f 6e 69 6e 67 20 77 69 74 68 20 50 72 65 66 69 78 20 44 65 6c 65 67 61 74 69 6f 6e 00 44 75 65 | oning.with.Prefix.Delegation.Due |
| 44e00 | 20 74 6f 20 61 20 72 61 63 65 20 63 6f 6e 64 69 74 69 6f 6e 20 74 68 61 74 20 63 61 6e 20 6c 65 | .to.a.race.condition.that.can.le |
| 44e20 | 61 64 20 74 6f 20 61 20 66 61 69 6c 75 72 65 20 64 75 72 69 6e 67 20 62 6f 6f 74 20 70 72 6f 63 | ad.to.a.failure.during.boot.proc |
| 44e40 | 65 73 73 2c 20 61 6c 6c 20 69 6e 74 65 72 66 61 63 65 73 20 61 72 65 20 69 6e 69 74 69 61 6c 69 | ess,.all.interfaces.are.initiali |
| 44e60 | 7a 65 64 20 62 65 66 6f 72 65 20 66 69 72 65 77 61 6c 6c 20 69 73 20 63 6f 6e 66 69 67 75 72 65 | zed.before.firewall.is.configure |
| 44e80 | 64 2e 20 54 68 69 73 20 6c 65 61 64 73 20 74 6f 20 61 20 73 69 74 75 61 74 69 6f 6e 20 77 68 65 | d..This.leads.to.a.situation.whe |
| 44ea0 | 72 65 20 74 68 65 20 73 79 73 74 65 6d 20 69 73 20 6f 70 65 6e 20 74 6f 20 61 6c 6c 20 74 72 61 | re.the.system.is.open.to.all.tra |
| 44ec0 | 66 66 69 63 2c 20 61 6e 64 20 63 61 6e 20 62 65 20 63 6f 6e 73 69 64 65 72 65 64 20 61 73 20 61 | ffic,.and.can.be.considered.as.a |
| 44ee0 | 20 73 65 63 75 72 69 74 79 20 72 69 73 6b 2e 00 44 75 6d 6d 79 00 44 75 6d 6d 79 20 69 6e 74 65 | .security.risk..Dummy.Dummy.inte |
| 44f00 | 72 66 61 63 65 00 44 75 6d 6d 79 20 69 6e 74 65 72 66 61 63 65 73 20 63 61 6e 20 62 65 20 75 73 | rface.Dummy.interfaces.can.be.us |
| 44f20 | 65 64 20 61 73 20 69 6e 74 65 72 66 61 63 65 73 20 74 68 61 74 20 61 6c 77 61 79 73 20 73 74 61 | ed.as.interfaces.that.always.sta |
| 44f40 | 79 20 75 70 20 28 69 6e 20 74 68 65 20 73 61 6d 65 20 66 61 73 68 69 6f 6e 20 74 6f 20 6c 6f 6f | y.up.(in.the.same.fashion.to.loo |
| 44f60 | 70 62 61 63 6b 73 20 69 6e 20 43 69 73 63 6f 20 49 4f 53 29 2c 20 6f 72 20 66 6f 72 20 74 65 73 | pbacks.in.Cisco.IOS),.or.for.tes |
| 44f80 | 74 69 6e 67 20 70 75 72 70 6f 73 65 73 2e 00 44 75 70 6c 69 63 61 74 65 20 70 61 63 6b 65 74 73 | ting.purposes..Duplicate.packets |
| 44fa0 | 20 61 72 65 20 6e 6f 74 20 69 6e 63 6c 75 64 65 64 20 69 6e 20 74 68 65 20 70 61 63 6b 65 74 20 | .are.not.included.in.the.packet. |
| 44fc0 | 6c 6f 73 73 20 63 61 6c 63 75 6c 61 74 69 6f 6e 2c 20 61 6c 74 68 6f 75 67 68 20 74 68 65 20 72 | loss.calculation,.although.the.r |
| 44fe0 | 6f 75 6e 64 2d 74 72 69 70 20 74 69 6d 65 20 6f 66 20 74 68 65 73 65 20 70 61 63 6b 65 74 73 20 | ound-trip.time.of.these.packets. |
| 45000 | 69 73 20 75 73 65 64 20 69 6e 20 63 61 6c 63 75 6c 61 74 69 6e 67 20 74 68 65 20 6d 69 6e 69 6d | is.used.in.calculating.the.minim |
| 45020 | 75 6d 2f 20 61 76 65 72 61 67 65 2f 6d 61 78 69 6d 75 6d 20 72 6f 75 6e 64 2d 74 72 69 70 20 74 | um/.average/maximum.round-trip.t |
| 45040 | 69 6d 65 20 6e 75 6d 62 65 72 73 2e 00 44 75 72 69 6e 67 20 69 6e 69 74 69 61 6c 20 64 65 70 6c | ime.numbers..During.initial.depl |
| 45060 | 6f 79 6d 65 6e 74 20 77 65 20 72 65 63 6f 6d 6d 65 6e 64 20 75 73 69 6e 67 20 74 68 65 20 73 74 | oyment.we.recommend.using.the.st |
| 45080 | 61 67 69 6e 67 20 41 50 49 20 6f 66 20 4c 65 74 73 45 6e 63 72 79 70 74 20 74 6f 20 70 72 65 76 | aging.API.of.LetsEncrypt.to.prev |
| 450a0 | 65 6e 74 20 61 6e 64 20 62 6c 61 63 6b 6c 69 73 74 69 6e 67 20 6f 66 20 79 6f 75 72 20 73 79 73 | ent.and.blacklisting.of.your.sys |
| 450c0 | 74 65 6d 2e 20 54 68 65 20 41 50 49 20 65 6e 64 70 6f 69 6e 74 20 69 73 20 68 74 74 70 73 3a 2f | tem..The.API.endpoint.is.https:/ |
| 450e0 | 2f 61 63 6d 65 2d 73 74 61 67 69 6e 67 2d 76 30 32 2e 61 70 69 2e 6c 65 74 73 65 6e 63 72 79 70 | /acme-staging-v02.api.letsencryp |
| 45100 | 74 2e 6f 72 67 2f 64 69 72 65 63 74 6f 72 79 00 44 75 72 69 6e 67 20 70 72 6f 66 69 6c 65 20 69 | t.org/directory.During.profile.i |
| 45120 | 6d 70 6f 72 74 2c 20 74 68 65 20 75 73 65 72 20 69 73 20 61 73 6b 65 64 20 74 6f 20 65 6e 74 65 | mport,.the.user.is.asked.to.ente |
| 45140 | 72 20 69 74 73 20 49 50 53 65 63 20 63 72 65 64 65 6e 74 69 61 6c 73 20 28 75 73 65 72 6e 61 6d | r.its.IPSec.credentials.(usernam |
| 45160 | 65 20 61 6e 64 20 70 61 73 73 77 6f 72 64 29 20 77 68 69 63 68 20 69 73 20 73 74 6f 72 65 64 20 | e.and.password).which.is.stored. |
| 45180 | 6f 6e 20 74 68 65 20 6d 6f 62 69 6c 65 2e 00 44 79 6e 61 6d 69 63 20 44 4e 53 00 44 79 6e 61 6d | on.the.mobile..Dynamic.DNS.Dynam |
| 451a0 | 69 63 20 47 72 6f 75 70 73 00 44 79 6e 61 6d 69 63 20 61 64 64 72 65 73 73 20 67 72 6f 75 70 20 | ic.Groups.Dynamic.address.group. |
| 451c0 | 69 73 20 73 75 70 70 6f 72 74 65 64 20 62 79 20 62 6f 74 68 20 49 50 76 34 20 61 6e 64 20 49 50 | is.supported.by.both.IPv4.and.IP |
| 451e0 | 76 36 20 66 61 6d 69 6c 69 65 73 2e 20 43 6f 6d 6d 61 6e 64 73 20 75 73 65 64 20 74 6f 20 64 65 | v6.families..Commands.used.to.de |
| 45200 | 66 69 6e 65 20 64 79 6e 61 6d 69 63 20 49 50 76 34 7c 49 50 76 36 20 61 64 64 72 65 73 73 20 67 | fine.dynamic.IPv4|IPv6.address.g |
| 45220 | 72 6f 75 70 73 20 61 72 65 3a 00 44 79 6e 61 6d 69 63 2d 70 72 6f 74 65 63 74 69 6f 6e 00 45 41 | roups.are:.Dynamic-protection.EA |
| 45240 | 50 6f 4c 20 63 6f 6d 65 73 20 77 69 74 68 20 61 6e 20 69 64 65 6e 74 69 66 79 20 6f 70 74 69 6f | PoL.comes.with.an.identify.optio |
| 45260 | 6e 2e 20 57 65 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 75 73 65 20 74 68 65 20 69 6e 74 65 | n..We.automatically.use.the.inte |
| 45280 | 72 66 61 63 65 20 4d 41 43 20 61 64 64 72 65 73 73 20 61 73 20 69 64 65 6e 74 69 74 79 20 70 61 | rface.MAC.address.as.identity.pa |
| 452a0 | 72 61 6d 65 74 65 72 2e 00 45 53 50 20 28 45 6e 63 61 70 73 75 6c 61 74 69 6e 67 20 53 65 63 75 | rameter..ESP.(Encapsulating.Secu |
| 452c0 | 72 69 74 79 20 50 61 79 6c 6f 61 64 29 20 41 74 74 72 69 62 75 74 65 73 00 45 53 50 20 50 68 61 | rity.Payload).Attributes.ESP.Pha |
| 452e0 | 73 65 3a 00 45 53 50 20 69 73 20 75 73 65 64 20 74 6f 20 70 72 6f 76 69 64 65 20 63 6f 6e 66 69 | se:.ESP.is.used.to.provide.confi |
| 45300 | 64 65 6e 74 69 61 6c 69 74 79 2c 20 64 61 74 61 20 6f 72 69 67 69 6e 20 61 75 74 68 65 6e 74 69 | dentiality,.data.origin.authenti |
| 45320 | 63 61 74 69 6f 6e 2c 20 63 6f 6e 6e 65 63 74 69 6f 6e 6c 65 73 73 20 69 6e 74 65 67 72 69 74 79 | cation,.connectionless.integrity |
| 45340 | 2c 20 61 6e 20 61 6e 74 69 2d 72 65 70 6c 61 79 20 73 65 72 76 69 63 65 20 28 61 20 66 6f 72 6d | ,.an.anti-replay.service.(a.form |
| 45360 | 20 6f 66 20 70 61 72 74 69 61 6c 20 73 65 71 75 65 6e 63 65 20 69 6e 74 65 67 72 69 74 79 29 2c | .of.partial.sequence.integrity), |
| 45380 | 20 61 6e 64 20 6c 69 6d 69 74 65 64 20 74 72 61 66 66 69 63 20 66 6c 6f 77 20 63 6f 6e 66 69 64 | .and.limited.traffic.flow.confid |
| 453a0 | 65 6e 74 69 61 6c 69 74 79 2e 20 68 74 74 70 73 3a 2f 2f 64 61 74 61 74 72 61 63 6b 65 72 2e 69 | entiality..https://datatracker.i |
| 453c0 | 65 74 66 2e 6f 72 67 2f 64 6f 63 2f 68 74 6d 6c 2f 72 66 63 34 33 30 33 00 45 56 50 4e 20 4d 75 | etf.org/doc/html/rfc4303.EVPN.Mu |
| 453e0 | 6c 74 69 68 6f 6d 69 6e 67 00 45 56 50 4e 2d 4d 48 20 69 73 20 69 6e 74 65 6e 64 65 64 20 61 73 | ltihoming.EVPN-MH.is.intended.as |
| 45400 | 20 61 20 72 65 70 6c 61 63 65 6d 65 6e 74 20 66 6f 72 20 4d 4c 41 47 20 6f 72 20 41 6e 79 63 61 | .a.replacement.for.MLAG.or.Anyca |
| 45420 | 73 74 20 56 54 45 50 73 2e 20 49 6e 20 6d 75 6c 74 69 68 6f 6d 69 6e 67 20 65 61 63 68 20 50 45 | st.VTEPs..In.multihoming.each.PE |
| 45440 | 20 68 61 73 20 61 6e 20 75 6e 69 71 75 65 20 56 54 45 50 20 61 64 64 72 65 73 73 20 77 68 69 63 | .has.an.unique.VTEP.address.whic |
| 45460 | 68 20 72 65 71 75 69 72 65 73 20 74 68 65 20 69 6e 74 72 6f 64 75 63 74 69 6f 6e 20 6f 66 20 61 | h.requires.the.introduction.of.a |
| 45480 | 20 6e 65 77 20 64 61 74 61 70 6c 61 6e 65 20 63 6f 6e 73 74 72 75 63 74 2c 20 4d 41 43 2d 45 43 | .new.dataplane.construct,.MAC-EC |
| 454a0 | 4d 50 2e 20 48 65 72 65 20 61 20 4d 41 43 2f 46 44 42 20 65 6e 74 72 79 20 63 61 6e 20 70 6f 69 | MP..Here.a.MAC/FDB.entry.can.poi |
| 454c0 | 6e 74 20 74 6f 20 61 20 6c 69 73 74 20 6f 66 20 72 65 6d 6f 74 65 20 50 45 73 2f 56 54 45 50 73 | nt.to.a.list.of.remote.PEs/VTEPs |
| 454e0 | 2e 00 45 61 63 68 20 3a 61 62 62 72 3a 60 41 53 20 28 41 75 74 6f 6e 6f 6d 6f 75 73 20 53 79 73 | ..Each.:abbr:`AS.(Autonomous.Sys |
| 45500 | 74 65 6d 29 60 20 68 61 73 20 61 6e 20 69 64 65 6e 74 69 66 79 69 6e 67 20 6e 75 6d 62 65 72 20 | tem)`.has.an.identifying.number. |
| 45520 | 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 69 74 20 63 61 6c 6c 65 64 20 61 6e 20 3a 61 62 | associated.with.it.called.an.:ab |
| 45540 | 62 72 3a 60 41 53 4e 20 28 41 75 74 6f 6e 6f 6d 6f 75 73 20 53 79 73 74 65 6d 20 4e 75 6d 62 65 | br:`ASN.(Autonomous.System.Numbe |
| 45560 | 72 29 60 2e 20 54 68 69 73 20 69 73 20 61 20 74 77 6f 20 6f 63 74 65 74 20 76 61 6c 75 65 20 72 | r)`..This.is.a.two.octet.value.r |
| 45580 | 61 6e 67 69 6e 67 20 69 6e 20 76 61 6c 75 65 20 66 72 6f 6d 20 31 20 74 6f 20 36 35 35 33 35 2e | anging.in.value.from.1.to.65535. |
| 455a0 | 20 54 68 65 20 41 53 20 6e 75 6d 62 65 72 73 20 36 34 35 31 32 20 74 68 72 6f 75 67 68 20 36 35 | .The.AS.numbers.64512.through.65 |
| 455c0 | 35 33 35 20 61 72 65 20 64 65 66 69 6e 65 64 20 61 73 20 70 72 69 76 61 74 65 20 41 53 20 6e 75 | 535.are.defined.as.private.AS.nu |
| 455e0 | 6d 62 65 72 73 2e 20 50 72 69 76 61 74 65 20 41 53 20 6e 75 6d 62 65 72 73 20 6d 75 73 74 20 6e | mbers..Private.AS.numbers.must.n |
| 45600 | 6f 74 20 62 65 20 61 64 76 65 72 74 69 73 65 64 20 6f 6e 20 74 68 65 20 67 6c 6f 62 61 6c 20 49 | ot.be.advertised.on.the.global.I |
| 45620 | 6e 74 65 72 6e 65 74 2e 20 54 68 65 20 32 2d 62 79 74 65 20 41 53 20 6e 75 6d 62 65 72 20 72 61 | nternet..The.2-byte.AS.number.ra |
| 45640 | 6e 67 65 20 68 61 73 20 62 65 65 6e 20 65 78 68 61 75 73 74 65 64 2e 20 34 2d 62 79 74 65 20 41 | nge.has.been.exhausted..4-byte.A |
| 45660 | 53 20 6e 75 6d 62 65 72 73 20 61 72 65 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 3a 72 66 63 3a | S.numbers.are.specified.in.:rfc: |
| 45680 | 60 36 37 39 33 60 2c 20 61 6e 64 20 70 72 6f 76 69 64 65 20 61 20 70 6f 6f 6c 20 6f 66 20 34 32 | `6793`,.and.provide.a.pool.of.42 |
| 456a0 | 39 34 39 36 37 32 39 36 20 41 53 20 6e 75 6d 62 65 72 73 2e 00 45 61 63 68 20 4e 65 74 66 69 6c | 94967296.AS.numbers..Each.Netfil |
| 456c0 | 74 65 72 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 69 73 20 75 6e 69 71 75 65 6c 79 20 69 64 65 6e 74 | ter.connection.is.uniquely.ident |
| 456e0 | 69 66 69 65 64 20 62 79 20 61 20 28 6c 61 79 65 72 2d 33 20 70 72 6f 74 6f 63 6f 6c 2c 20 73 6f | ified.by.a.(layer-3.protocol,.so |
| 45700 | 75 72 63 65 20 61 64 64 72 65 73 73 2c 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 | urce.address,.destination.addres |
| 45720 | 73 2c 20 6c 61 79 65 72 2d 34 20 70 72 6f 74 6f 63 6f 6c 2c 20 6c 61 79 65 72 2d 34 20 6b 65 79 | s,.layer-4.protocol,.layer-4.key |
| 45740 | 29 20 74 75 70 6c 65 2e 20 54 68 65 20 6c 61 79 65 72 2d 34 20 6b 65 79 20 64 65 70 65 6e 64 73 | ).tuple..The.layer-4.key.depends |
| 45760 | 20 6f 6e 20 74 68 65 20 74 72 61 6e 73 70 6f 72 74 20 70 72 6f 74 6f 63 6f 6c 3b 20 66 6f 72 20 | .on.the.transport.protocol;.for. |
| 45780 | 54 43 50 2f 55 44 50 20 69 74 20 69 73 20 74 68 65 20 70 6f 72 74 20 6e 75 6d 62 65 72 73 2c 20 | TCP/UDP.it.is.the.port.numbers,. |
| 457a0 | 66 6f 72 20 74 75 6e 6e 65 6c 73 20 69 74 20 63 61 6e 20 62 65 20 74 68 65 69 72 20 74 75 6e 6e | for.tunnels.it.can.be.their.tunn |
| 457c0 | 65 6c 20 49 44 2c 20 62 75 74 20 6f 74 68 65 72 77 69 73 65 20 69 73 20 6a 75 73 74 20 7a 65 72 | el.ID,.but.otherwise.is.just.zer |
| 457e0 | 6f 2c 20 61 73 20 69 66 20 69 74 20 77 65 72 65 20 6e 6f 74 20 70 61 72 74 20 6f 66 20 74 68 65 | o,.as.if.it.were.not.part.of.the |
| 45800 | 20 74 75 70 6c 65 2e 20 54 6f 20 62 65 20 61 62 6c 65 20 74 6f 20 69 6e 73 70 65 63 74 20 74 68 | .tuple..To.be.able.to.inspect.th |
| 45820 | 65 20 54 43 50 20 70 6f 72 74 20 69 6e 20 61 6c 6c 20 63 61 73 65 73 2c 20 70 61 63 6b 65 74 73 | e.TCP.port.in.all.cases,.packets |
| 45840 | 20 77 69 6c 6c 20 62 65 20 6d 61 6e 64 61 74 6f 72 69 6c 79 20 64 65 66 72 61 67 6d 65 6e 74 65 | .will.be.mandatorily.defragmente |
| 45860 | 64 2e 00 45 61 63 68 20 56 58 4c 41 4e 20 73 65 67 6d 65 6e 74 20 69 73 20 69 64 65 6e 74 69 66 | d..Each.VXLAN.segment.is.identif |
| 45880 | 69 65 64 20 74 68 72 6f 75 67 68 20 61 20 32 34 2d 62 69 74 20 73 65 67 6d 65 6e 74 20 49 44 2c | ied.through.a.24-bit.segment.ID, |
| 458a0 | 20 74 65 72 6d 65 64 20 74 68 65 20 3a 61 62 62 72 3a 60 56 4e 49 20 28 56 58 4c 41 4e 20 4e 65 | .termed.the.:abbr:`VNI.(VXLAN.Ne |
| 458c0 | 74 77 6f 72 6b 20 49 64 65 6e 74 69 66 69 65 72 20 28 6f 72 20 56 58 4c 41 4e 20 53 65 67 6d 65 | twork.Identifier.(or.VXLAN.Segme |
| 458e0 | 6e 74 20 49 44 29 29 60 2c 20 54 68 69 73 20 61 6c 6c 6f 77 73 20 75 70 20 74 6f 20 31 36 4d 20 | nt.ID))`,.This.allows.up.to.16M. |
| 45900 | 56 58 4c 41 4e 20 73 65 67 6d 65 6e 74 73 20 74 6f 20 63 6f 65 78 69 73 74 20 77 69 74 68 69 6e | VXLAN.segments.to.coexist.within |
| 45920 | 20 74 68 65 20 73 61 6d 65 20 61 64 6d 69 6e 69 73 74 72 61 74 69 76 65 20 64 6f 6d 61 69 6e 2e | .the.same.administrative.domain. |
| 45940 | 00 45 61 63 68 20 62 72 69 64 67 65 20 68 61 73 20 61 20 72 65 6c 61 74 69 76 65 20 70 72 69 6f | .Each.bridge.has.a.relative.prio |
| 45960 | 72 69 74 79 20 61 6e 64 20 63 6f 73 74 2e 20 45 61 63 68 20 69 6e 74 65 72 66 61 63 65 20 69 73 | rity.and.cost..Each.interface.is |
| 45980 | 20 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 61 20 70 6f 72 74 20 28 6e 75 6d 62 65 72 29 | .associated.with.a.port.(number) |
| 459a0 | 20 69 6e 20 74 68 65 20 53 54 50 20 63 6f 64 65 2e 20 45 61 63 68 20 68 61 73 20 61 20 70 72 69 | .in.the.STP.code..Each.has.a.pri |
| 459c0 | 6f 72 69 74 79 20 61 6e 64 20 61 20 63 6f 73 74 2c 20 74 68 61 74 20 69 73 20 75 73 65 64 20 74 | ority.and.a.cost,.that.is.used.t |
| 459e0 | 6f 20 64 65 63 69 64 65 20 77 68 69 63 68 20 69 73 20 74 68 65 20 73 68 6f 72 74 65 73 74 20 70 | o.decide.which.is.the.shortest.p |
| 45a00 | 61 74 68 20 74 6f 20 66 6f 72 77 61 72 64 20 61 20 70 61 63 6b 65 74 2e 20 54 68 65 20 6c 6f 77 | ath.to.forward.a.packet..The.low |
| 45a20 | 65 73 74 20 63 6f 73 74 20 70 61 74 68 20 69 73 20 61 6c 77 61 79 73 20 75 73 65 64 20 75 6e 6c | est.cost.path.is.always.used.unl |
| 45a40 | 65 73 73 20 74 68 65 20 6f 74 68 65 72 20 70 61 74 68 20 69 73 20 64 6f 77 6e 2e 20 49 66 20 79 | ess.the.other.path.is.down..If.y |
| 45a60 | 6f 75 20 68 61 76 65 20 6d 75 6c 74 69 70 6c 65 20 62 72 69 64 67 65 73 20 61 6e 64 20 69 6e 74 | ou.have.multiple.bridges.and.int |
| 45a80 | 65 72 66 61 63 65 73 20 74 68 65 6e 20 79 6f 75 20 6d 61 79 20 6e 65 65 64 20 74 6f 20 61 64 6a | erfaces.then.you.may.need.to.adj |
| 45aa0 | 75 73 74 20 74 68 65 20 70 72 69 6f 72 69 74 69 65 73 20 74 6f 20 61 63 68 69 65 76 65 20 6f 70 | ust.the.priorities.to.achieve.op |
| 45ac0 | 74 69 6d 75 6d 20 70 65 72 66 6f 72 6d 61 6e 63 65 2e 00 45 61 63 68 20 62 72 6f 61 64 63 61 73 | timum.performance..Each.broadcas |
| 45ae0 | 74 20 72 65 6c 61 79 20 69 6e 73 74 61 6e 63 65 20 63 61 6e 20 62 65 20 69 6e 64 69 76 69 64 75 | t.relay.instance.can.be.individu |
| 45b00 | 61 6c 6c 79 20 64 69 73 61 62 6c 65 64 20 77 69 74 68 6f 75 74 20 64 65 6c 65 74 69 6e 67 20 74 | ally.disabled.without.deleting.t |
| 45b20 | 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 6e 6f 64 65 20 62 79 20 75 73 69 6e 67 20 74 68 65 20 | he.configured.node.by.using.the. |
| 45b40 | 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 3a 00 45 61 63 68 20 63 6c 61 73 73 20 63 61 | following.command:.Each.class.ca |
| 45b60 | 6e 20 68 61 76 65 20 61 20 67 75 61 72 61 6e 74 65 65 64 20 70 61 72 74 20 6f 66 20 74 68 65 20 | n.have.a.guaranteed.part.of.the. |
| 45b80 | 74 6f 74 61 6c 20 62 61 6e 64 77 69 64 74 68 20 64 65 66 69 6e 65 64 20 66 6f 72 20 74 68 65 20 | total.bandwidth.defined.for.the. |
| 45ba0 | 77 68 6f 6c 65 20 70 6f 6c 69 63 79 2c 20 73 6f 20 61 6c 6c 20 74 68 6f 73 65 20 73 68 61 72 65 | whole.policy,.so.all.those.share |
| 45bc0 | 73 20 74 6f 67 65 74 68 65 72 20 73 68 6f 75 6c 64 20 6e 6f 74 20 62 65 20 68 69 67 68 65 72 20 | s.together.should.not.be.higher. |
| 45be0 | 74 68 61 6e 20 74 68 65 20 70 6f 6c 69 63 79 27 73 20 77 68 6f 6c 65 20 62 61 6e 64 77 69 64 74 | than.the.policy's.whole.bandwidt |
| 45c00 | 68 2e 00 45 61 63 68 20 63 6c 61 73 73 20 69 73 20 61 73 73 69 67 6e 65 64 20 61 20 64 65 66 69 | h..Each.class.is.assigned.a.defi |
| 45c20 | 63 69 74 20 63 6f 75 6e 74 65 72 20 28 74 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 62 79 74 65 73 | cit.counter.(the.number.of.bytes |
| 45c40 | 20 74 68 61 74 20 61 20 66 6c 6f 77 20 69 73 20 61 6c 6c 6f 77 65 64 20 74 6f 20 74 72 61 6e 73 | .that.a.flow.is.allowed.to.trans |
| 45c60 | 6d 69 74 20 77 68 65 6e 20 69 74 20 69 73 20 69 74 73 20 74 75 72 6e 29 20 69 6e 69 74 69 61 6c | mit.when.it.is.its.turn).initial |
| 45c80 | 69 7a 65 64 20 74 6f 20 71 75 61 6e 74 75 6d 2e 20 51 75 61 6e 74 75 6d 20 69 73 20 61 20 70 61 | ized.to.quantum..Quantum.is.a.pa |
| 45ca0 | 72 61 6d 65 74 65 72 20 79 6f 75 20 63 6f 6e 66 69 67 75 72 65 20 77 68 69 63 68 20 61 63 74 73 | rameter.you.configure.which.acts |
| 45cc0 | 20 6c 69 6b 65 20 61 20 63 72 65 64 69 74 20 6f 66 20 66 69 78 20 62 79 74 65 73 20 74 68 65 20 | .like.a.credit.of.fix.bytes.the. |
| 45ce0 | 63 6f 75 6e 74 65 72 20 72 65 63 65 69 76 65 73 20 6f 6e 20 65 61 63 68 20 72 6f 75 6e 64 2e 20 | counter.receives.on.each.round.. |
| 45d00 | 54 68 65 6e 20 74 68 65 20 52 6f 75 6e 64 2d 52 6f 62 69 6e 20 70 6f 6c 69 63 79 20 73 74 61 72 | Then.the.Round-Robin.policy.star |
| 45d20 | 74 73 20 6d 6f 76 69 6e 67 20 69 74 73 20 52 6f 75 6e 64 20 52 6f 62 69 6e 20 70 6f 69 6e 74 65 | ts.moving.its.Round.Robin.pointe |
| 45d40 | 72 20 74 68 72 6f 75 67 68 20 74 68 65 20 71 75 65 75 65 73 2e 20 49 66 20 74 68 65 20 64 65 66 | r.through.the.queues..If.the.def |
| 45d60 | 69 63 69 74 20 63 6f 75 6e 74 65 72 20 69 73 20 67 72 65 61 74 65 72 20 74 68 61 6e 20 74 68 65 | icit.counter.is.greater.than.the |
| 45d80 | 20 70 61 63 6b 65 74 27 73 20 73 69 7a 65 20 61 74 20 74 68 65 20 68 65 61 64 20 6f 66 20 74 68 | .packet's.size.at.the.head.of.th |
| 45da0 | 65 20 71 75 65 75 65 2c 20 74 68 69 73 20 70 61 63 6b 65 74 20 77 69 6c 6c 20 62 65 20 73 65 6e | e.queue,.this.packet.will.be.sen |
| 45dc0 | 74 20 61 6e 64 20 74 68 65 20 76 61 6c 75 65 20 6f 66 20 74 68 65 20 63 6f 75 6e 74 65 72 20 77 | t.and.the.value.of.the.counter.w |
| 45de0 | 69 6c 6c 20 62 65 20 64 65 63 72 65 6d 65 6e 74 65 64 20 62 79 20 74 68 65 20 70 61 63 6b 65 74 | ill.be.decremented.by.the.packet |
| 45e00 | 20 73 69 7a 65 2e 20 54 68 65 6e 2c 20 74 68 65 20 73 69 7a 65 20 6f 66 20 74 68 65 20 6e 65 78 | .size..Then,.the.size.of.the.nex |
| 45e20 | 74 20 70 61 63 6b 65 74 20 77 69 6c 6c 20 62 65 20 63 6f 6d 70 61 72 65 64 20 74 6f 20 74 68 65 | t.packet.will.be.compared.to.the |
| 45e40 | 20 63 6f 75 6e 74 65 72 20 76 61 6c 75 65 20 61 67 61 69 6e 2c 20 72 65 70 65 61 74 69 6e 67 20 | .counter.value.again,.repeating. |
| 45e60 | 74 68 65 20 70 72 6f 63 65 73 73 2e 20 4f 6e 63 65 20 74 68 65 20 71 75 65 75 65 20 69 73 20 65 | the.process..Once.the.queue.is.e |
| 45e80 | 6d 70 74 79 20 6f 72 20 74 68 65 20 76 61 6c 75 65 20 6f 66 20 74 68 65 20 63 6f 75 6e 74 65 72 | mpty.or.the.value.of.the.counter |
| 45ea0 | 20 69 73 20 69 6e 73 75 66 66 69 63 69 65 6e 74 2c 20 74 68 65 20 52 6f 75 6e 64 2d 52 6f 62 69 | .is.insufficient,.the.Round-Robi |
| 45ec0 | 6e 20 70 6f 69 6e 74 65 72 20 77 69 6c 6c 20 6d 6f 76 65 20 74 6f 20 74 68 65 20 6e 65 78 74 20 | n.pointer.will.move.to.the.next. |
| 45ee0 | 71 75 65 75 65 2e 20 49 66 20 74 68 65 20 71 75 65 75 65 20 69 73 20 65 6d 70 74 79 2c 20 74 68 | queue..If.the.queue.is.empty,.th |
| 45f00 | 65 20 76 61 6c 75 65 20 6f 66 20 74 68 65 20 64 65 66 69 63 69 74 20 63 6f 75 6e 74 65 72 20 69 | e.value.of.the.deficit.counter.i |
| 45f20 | 73 20 72 65 73 65 74 20 74 6f 20 30 2e 00 45 61 63 68 20 64 79 6e 61 6d 69 63 20 4e 48 53 20 77 | s.reset.to.0..Each.dynamic.NHS.w |
| 45f40 | 69 6c 6c 20 67 65 74 20 61 20 70 65 65 72 20 65 6e 74 72 79 20 77 69 74 68 20 74 68 65 20 63 6f | ill.get.a.peer.entry.with.the.co |
| 45f60 | 6e 66 69 67 75 72 65 64 20 6e 65 74 77 6f 72 6b 20 61 64 64 72 65 73 73 20 61 6e 64 20 74 68 65 | nfigured.network.address.and.the |
| 45f80 | 20 64 69 73 63 6f 76 65 72 65 64 20 4e 42 4d 41 20 61 64 64 72 65 73 73 2e 00 45 61 63 68 20 68 | .discovered.NBMA.address..Each.h |
| 45fa0 | 65 61 6c 74 68 20 63 68 65 63 6b 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 20 69 6e 20 69 74 73 | ealth.check.is.configured.in.its |
| 45fc0 | 20 6f 77 6e 20 74 65 73 74 2c 20 74 65 73 74 73 20 61 72 65 20 6e 75 6d 62 65 72 65 64 20 61 6e | .own.test,.tests.are.numbered.an |
| 45fe0 | 64 20 70 72 6f 63 65 73 73 65 64 20 69 6e 20 6e 75 6d 65 72 69 63 20 6f 72 64 65 72 2e 20 46 6f | d.processed.in.numeric.order..Fo |
| 46000 | 72 20 6d 75 6c 74 69 20 74 61 72 67 65 74 20 68 65 61 6c 74 68 20 63 68 65 63 6b 69 6e 67 20 6d | r.multi.target.health.checking.m |
| 46020 | 75 6c 74 69 70 6c 65 20 74 65 73 74 73 20 63 61 6e 20 62 65 20 64 65 66 69 6e 65 64 3a 00 45 61 | ultiple.tests.can.be.defined:.Ea |
| 46040 | 63 68 20 69 6e 64 69 76 69 64 75 61 6c 20 63 6f 6e 66 69 67 75 72 65 64 20 63 6f 6e 73 6f 6c 65 | ch.individual.configured.console |
| 46060 | 2d 73 65 72 76 65 72 20 64 65 76 69 63 65 20 63 61 6e 20 62 65 20 64 69 72 65 63 74 6c 79 20 65 | -server.device.can.be.directly.e |
| 46080 | 78 70 6f 73 65 64 20 74 6f 20 74 68 65 20 6f 75 74 73 69 64 65 20 77 6f 72 6c 64 2e 20 41 20 75 | xposed.to.the.outside.world..A.u |
| 460a0 | 73 65 72 20 63 61 6e 20 64 69 72 65 63 74 6c 79 20 63 6f 6e 6e 65 63 74 20 76 69 61 20 53 53 48 | ser.can.directly.connect.via.SSH |
| 460c0 | 20 74 6f 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 70 6f 72 74 2e 00 45 61 63 68 20 6e 6f | .to.the.configured.port..Each.no |
| 460e0 | 64 65 20 28 48 75 62 20 61 6e 64 20 53 70 6f 6b 65 29 20 75 73 65 73 20 61 6e 20 49 50 20 61 64 | de.(Hub.and.Spoke).uses.an.IP.ad |
| 46100 | 64 72 65 73 73 20 66 72 6f 6d 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 31 37 32 2e 31 36 2e 32 35 | dress.from.the.network.172.16.25 |
| 46120 | 33 2e 31 32 38 2f 32 39 2e 00 45 61 63 68 20 6f 66 20 74 68 65 20 69 6e 73 74 61 6c 6c 20 63 6f | 3.128/29..Each.of.the.install.co |
| 46140 | 6d 6d 61 6e 64 20 73 68 6f 75 6c 64 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 74 68 65 20 63 | mmand.should.be.applied.to.the.c |
| 46160 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 61 6e 64 20 63 6f 6d 6d 69 74 65 64 20 62 65 66 6f 72 65 | onfiguration.and.commited.before |
| 46180 | 20 75 73 69 6e 67 20 75 6e 64 65 72 20 74 68 65 20 6f 70 65 6e 63 6f 6e 6e 65 63 74 20 63 6f 6e | .using.under.the.openconnect.con |
| 461a0 | 66 69 67 75 72 61 74 69 6f 6e 3a 00 45 61 63 68 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 70 65 | figuration:.Each.site-to-site.pe |
| 461c0 | 65 72 20 68 61 73 20 74 68 65 20 6e 65 78 74 20 6f 70 74 69 6f 6e 73 3a 00 45 61 63 68 20 73 75 | er.has.the.next.options:.Each.su |
| 461e0 | 62 73 63 72 69 62 65 72 20 77 69 6c 6c 20 62 65 20 61 6c 6c 6f 63 61 74 65 64 20 61 20 6d 61 78 | bscriber.will.be.allocated.a.max |
| 46200 | 69 6d 75 6d 20 6f 66 20 32 30 30 30 20 70 6f 72 74 73 20 66 72 6f 6d 20 74 68 65 20 65 78 74 65 | imum.of.2000.ports.from.the.exte |
| 46220 | 72 6e 61 6c 20 70 6f 6f 6c 2e 00 45 65 6e 61 62 6c 65 73 20 74 68 65 20 47 65 6e 65 72 69 63 20 | rnal.pool..Eenables.the.Generic. |
| 46240 | 50 72 6f 74 6f 63 6f 6c 20 65 78 74 65 6e 73 69 6f 6e 20 28 56 58 4c 41 4e 2d 47 50 45 29 2e 20 | Protocol.extension.(VXLAN-GPE).. |
| 46260 | 43 75 72 72 65 6e 74 6c 79 2c 20 74 68 69 73 20 69 73 20 6f 6e 6c 79 20 73 75 70 70 6f 72 74 65 | Currently,.this.is.only.supporte |
| 46280 | 64 20 74 6f 67 65 74 68 65 72 20 77 69 74 68 20 74 68 65 20 65 78 74 65 72 6e 61 6c 20 6b 65 79 | d.together.with.the.external.key |
| 462a0 | 77 6f 72 64 2e 00 45 6d 61 69 6c 20 61 64 64 72 65 73 73 20 74 6f 20 61 73 73 6f 63 69 61 74 65 | word..Email.address.to.associate |
| 462c0 | 20 77 69 74 68 20 63 65 72 74 69 66 69 63 61 74 65 00 45 6d 61 69 6c 20 75 73 65 64 20 66 6f 72 | .with.certificate.Email.used.for |
| 462e0 | 20 72 65 67 69 73 74 72 61 74 69 6f 6e 20 61 6e 64 20 72 65 63 6f 76 65 72 79 20 63 6f 6e 74 61 | .registration.and.recovery.conta |
| 46300 | 63 74 2e 00 45 6d 62 65 64 64 69 6e 67 20 6f 6e 65 20 70 6f 6c 69 63 79 20 69 6e 74 6f 20 61 6e | ct..Embedding.one.policy.into.an |
| 46320 | 6f 74 68 65 72 20 6f 6e 65 00 45 6d 65 72 67 65 6e 63 79 00 45 6e 61 62 6c 65 20 3a 61 62 62 72 | other.one.Emergency.Enable.:abbr |
| 46340 | 3a 60 42 4d 50 20 28 42 47 50 20 4d 6f 6e 69 74 6f 72 69 6e 67 20 50 72 6f 74 6f 63 6f 6c 29 60 | :`BMP.(BGP.Monitoring.Protocol)` |
| 46360 | 20 73 75 70 70 6f 72 74 00 45 6e 61 62 6c 65 20 42 46 44 20 66 6f 72 20 49 53 49 53 20 6f 6e 20 | .support.Enable.BFD.for.ISIS.on. |
| 46380 | 61 6e 20 69 6e 74 65 72 66 61 63 65 00 45 6e 61 62 6c 65 20 42 46 44 20 66 6f 72 20 4f 53 50 46 | an.interface.Enable.BFD.for.OSPF |
| 463a0 | 20 6f 6e 20 61 6e 20 69 6e 74 65 72 66 61 63 65 00 45 6e 61 62 6c 65 20 42 46 44 20 66 6f 72 20 | .on.an.interface.Enable.BFD.for. |
| 463c0 | 4f 53 50 46 76 33 20 6f 6e 20 61 6e 20 69 6e 74 65 72 66 61 63 65 00 45 6e 61 62 6c 65 20 42 46 | OSPFv3.on.an.interface.Enable.BF |
| 463e0 | 44 20 69 6e 20 42 47 50 00 45 6e 61 62 6c 65 20 42 46 44 20 69 6e 20 49 53 49 53 00 45 6e 61 62 | D.in.BGP.Enable.BFD.in.ISIS.Enab |
| 46400 | 6c 65 20 42 46 44 20 69 6e 20 4f 53 50 46 00 45 6e 61 62 6c 65 20 42 46 44 20 6f 6e 20 61 20 42 | le.BFD.in.OSPF.Enable.BFD.on.a.B |
| 46420 | 47 50 20 70 65 65 72 20 67 72 6f 75 70 00 45 6e 61 62 6c 65 20 42 46 44 20 6f 6e 20 61 20 73 69 | GP.peer.group.Enable.BFD.on.a.si |
| 46440 | 6e 67 6c 65 20 42 47 50 20 6e 65 69 67 68 62 6f 72 00 45 6e 61 62 6c 65 20 44 48 43 50 20 66 61 | ngle.BGP.neighbor.Enable.DHCP.fa |
| 46460 | 69 6c 6f 76 65 72 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 6f 72 20 74 68 69 73 20 61 64 | ilover.configuration.for.this.ad |
| 46480 | 64 72 65 73 73 20 70 6f 6f 6c 2e 00 45 6e 61 62 6c 65 20 47 72 61 70 68 51 4c 20 53 63 68 65 6d | dress.pool..Enable.GraphQL.Schem |
| 464a0 | 61 20 69 6e 74 72 6f 73 70 65 63 74 69 6f 6e 2e 00 45 6e 61 62 6c 65 20 48 54 2d 64 65 6c 61 79 | a.introspection..Enable.HT-delay |
| 464c0 | 65 64 20 42 6c 6f 63 6b 20 41 63 6b 20 60 60 5b 44 45 4c 41 59 45 44 2d 42 41 5d 60 60 00 45 6e | ed.Block.Ack.``[DELAYED-BA]``.En |
| 464e0 | 61 62 6c 65 20 49 43 4d 50 20 52 6f 75 74 65 72 20 44 69 73 63 6f 76 65 72 79 20 50 72 6f 74 6f | able.ICMP.Router.Discovery.Proto |
| 46500 | 63 6f 6c 20 73 75 70 70 6f 72 74 00 45 6e 61 62 6c 65 20 49 47 4d 50 20 61 6e 64 20 4d 4c 44 20 | col.support.Enable.IGMP.and.MLD. |
| 46520 | 71 75 65 72 69 65 72 2e 00 45 6e 61 62 6c 65 20 49 47 4d 50 20 61 6e 64 20 4d 4c 44 20 73 6e 6f | querier..Enable.IGMP.and.MLD.sno |
| 46540 | 6f 70 69 6e 67 2e 00 45 6e 61 62 6c 65 20 49 50 20 66 6f 72 77 61 72 64 69 6e 67 20 6f 6e 20 63 | oping..Enable.IP.forwarding.on.c |
| 46560 | 6c 69 65 6e 74 00 45 6e 61 62 6c 65 20 49 53 2d 49 53 00 45 6e 61 62 6c 65 20 49 53 2d 49 53 20 | lient.Enable.IS-IS.Enable.IS-IS. |
| 46580 | 61 6e 64 20 49 47 50 2d 4c 44 50 20 73 79 6e 63 68 72 6f 6e 69 7a 61 74 69 6f 6e 00 45 6e 61 62 | and.IGP-LDP.synchronization.Enab |
| 465a0 | 6c 65 20 49 53 2d 49 53 20 61 6e 64 20 72 65 64 69 73 74 72 69 62 75 74 65 20 72 6f 75 74 65 73 | le.IS-IS.and.redistribute.routes |
| 465c0 | 20 6e 6f 74 20 6e 61 74 69 76 65 6c 79 20 69 6e 20 49 53 2d 49 53 00 45 6e 61 62 6c 65 20 49 53 | .not.natively.in.IS-IS.Enable.IS |
| 465e0 | 2d 49 53 20 77 69 74 68 20 53 65 67 6d 65 6e 74 20 52 6f 75 74 69 6e 67 20 28 45 78 70 65 72 69 | -IS.with.Segment.Routing.(Experi |
| 46600 | 6d 65 6e 74 61 6c 29 00 45 6e 61 62 6c 65 20 4c 2d 53 49 47 20 54 58 4f 50 20 70 72 6f 74 65 63 | mental).Enable.L-SIG.TXOP.protec |
| 46620 | 74 69 6f 6e 20 63 61 70 61 62 69 6c 69 74 79 00 45 6e 61 62 6c 65 20 4c 44 50 43 20 28 4c 6f 77 | tion.capability.Enable.LDPC.(Low |
| 46640 | 20 44 65 6e 73 69 74 79 20 50 61 72 69 74 79 20 43 68 65 63 6b 29 20 63 6f 64 69 6e 67 20 63 61 | .Density.Parity.Check).coding.ca |
| 46660 | 70 61 62 69 6c 69 74 79 00 45 6e 61 62 6c 65 20 4c 44 50 43 20 63 6f 64 69 6e 67 20 63 61 70 61 | pability.Enable.LDPC.coding.capa |
| 46680 | 62 69 6c 69 74 79 00 45 6e 61 62 6c 65 20 4c 4c 44 50 20 73 65 72 76 69 63 65 00 45 6e 61 62 6c | bility.Enable.LLDP.service.Enabl |
| 466a0 | 65 20 4f 53 50 46 00 45 6e 61 62 6c 65 20 4f 53 50 46 20 61 6e 64 20 49 47 50 2d 4c 44 50 20 73 | e.OSPF.Enable.OSPF.and.IGP-LDP.s |
| 466c0 | 79 6e 63 68 72 6f 6e 69 7a 61 74 69 6f 6e 3a 00 45 6e 61 62 6c 65 20 4f 53 50 46 20 77 69 74 68 | ynchronization:.Enable.OSPF.with |
| 466e0 | 20 53 65 67 6d 65 6e 74 20 52 6f 75 74 69 6e 67 20 28 45 78 70 65 72 69 6d 65 6e 74 61 6c 29 3a | .Segment.Routing.(Experimental): |
| 46700 | 00 45 6e 61 62 6c 65 20 4f 53 50 46 20 77 69 74 68 20 72 6f 75 74 65 20 72 65 64 69 73 74 72 69 | .Enable.OSPF.with.route.redistri |
| 46720 | 62 75 74 69 6f 6e 20 6f 66 20 74 68 65 20 6c 6f 6f 70 62 61 63 6b 20 61 6e 64 20 64 65 66 61 75 | bution.of.the.loopback.and.defau |
| 46740 | 6c 74 20 6f 72 69 67 69 6e 61 74 65 3a 00 45 6e 61 62 6c 65 20 4f 54 50 20 32 46 41 20 66 6f 72 | lt.originate:.Enable.OTP.2FA.for |
| 46760 | 20 75 73 65 72 20 60 75 73 65 72 6e 61 6d 65 60 20 77 69 74 68 20 64 65 66 61 75 6c 74 20 73 65 | .user.`username`.with.default.se |
| 46780 | 74 74 69 6e 67 73 2c 20 75 73 69 6e 67 20 74 68 65 20 42 41 53 45 33 32 20 65 6e 63 6f 64 65 64 | ttings,.using.the.BASE32.encoded |
| 467a0 | 20 32 46 41 2f 4d 46 41 20 6b 65 79 20 73 70 65 63 69 66 69 65 64 20 62 79 20 60 3c 6b 65 79 3e | .2FA/MFA.key.specified.by.`<key> |
| 467c0 | 60 2e 00 45 6e 61 62 6c 65 20 4f 70 65 6e 46 61 62 72 69 63 00 45 6e 61 62 6c 65 20 4f 70 65 6e | `..Enable.OpenFabric.Enable.Open |
| 467e0 | 56 50 4e 20 44 61 74 61 20 43 68 61 6e 6e 65 6c 20 4f 66 66 6c 6f 61 64 20 66 65 61 74 75 72 65 | VPN.Data.Channel.Offload.feature |
| 46800 | 20 62 79 20 6c 6f 61 64 69 6e 67 20 74 68 65 20 61 70 70 72 6f 70 72 69 61 74 65 20 6b 65 72 6e | .by.loading.the.appropriate.kern |
| 46820 | 65 6c 20 6d 6f 64 75 6c 65 2e 00 45 6e 61 62 6c 65 20 50 52 45 46 36 34 20 6f 70 74 69 6f 6e 20 | el.module..Enable.PREF64.option. |
| 46840 | 61 73 20 6f 75 74 6c 69 6e 65 64 20 69 6e 20 3a 72 66 63 3a 60 38 37 38 31 60 2e 00 45 6e 61 62 | as.outlined.in.:rfc:`8781`..Enab |
| 46860 | 6c 65 20 52 45 53 54 20 41 50 49 00 45 6e 61 62 6c 65 20 53 4e 4d 50 00 45 6e 61 62 6c 65 20 53 | le.REST.API.Enable.SNMP.Enable.S |
| 46880 | 4e 4d 50 20 71 75 65 72 69 65 73 20 6f 66 20 74 68 65 20 4c 4c 44 50 20 64 61 74 61 62 61 73 65 | NMP.queries.of.the.LLDP.database |
| 468a0 | 00 45 6e 61 62 6c 65 20 53 4e 4d 50 20 73 75 70 70 6f 72 74 20 66 6f 72 20 61 6e 20 69 6e 64 69 | .Enable.SNMP.support.for.an.indi |
| 468c0 | 76 69 64 75 61 6c 20 72 6f 75 74 69 6e 67 20 64 61 65 6d 6f 6e 2e 00 45 6e 61 62 6c 65 20 53 54 | vidual.routing.daemon..Enable.ST |
| 468e0 | 50 00 45 6e 61 62 6c 65 20 54 46 54 50 20 73 65 72 76 69 63 65 20 62 79 20 73 70 65 63 69 66 79 | P.Enable.TFTP.service.by.specify |
| 46900 | 69 6e 67 20 74 68 65 20 60 3c 64 69 72 65 63 74 6f 72 79 3e 60 20 77 68 69 63 68 20 77 69 6c 6c | ing.the.`<directory>`.which.will |
| 46920 | 20 62 65 20 75 73 65 64 20 74 6f 20 73 65 72 76 65 20 66 69 6c 65 73 2e 00 45 6e 61 62 6c 65 20 | .be.used.to.serve.files..Enable. |
| 46940 | 56 48 54 20 54 58 4f 50 20 50 6f 77 65 72 20 53 61 76 65 20 4d 6f 64 65 00 45 6e 61 62 6c 65 20 | VHT.TXOP.Power.Save.Mode.Enable. |
| 46960 | 56 4c 41 4e 2d 41 77 61 72 65 20 42 72 69 64 67 65 00 45 6e 61 62 6c 65 20 61 75 74 6f 6d 61 74 | VLAN-Aware.Bridge.Enable.automat |
| 46980 | 69 63 20 72 65 64 69 72 65 63 74 20 66 72 6f 6d 20 68 74 74 70 20 74 6f 20 68 74 74 70 73 2e 00 | ic.redirect.from.http.to.https.. |
| 469a0 | 45 6e 61 62 6c 65 20 63 72 65 61 74 69 6f 6e 20 6f 66 20 73 68 6f 72 74 63 75 74 20 72 6f 75 74 | Enable.creation.of.shortcut.rout |
| 469c0 | 65 73 2e 00 45 6e 61 62 6c 65 20 64 69 66 66 65 72 65 6e 74 20 74 79 70 65 73 20 6f 66 20 68 61 | es..Enable.different.types.of.ha |
| 469e0 | 72 64 77 61 72 65 20 6f 66 66 6c 6f 61 64 69 6e 67 20 6f 6e 20 74 68 65 20 67 69 76 65 6e 20 4e | rdware.offloading.on.the.given.N |
| 46a00 | 49 43 2e 00 45 6e 61 62 6c 65 20 67 69 76 65 6e 20 6c 65 67 61 63 79 20 70 72 6f 74 6f 63 6f 6c | IC..Enable.given.legacy.protocol |
| 46a20 | 20 6f 6e 20 74 68 69 73 20 4c 4c 44 50 20 69 6e 73 74 61 6e 63 65 2e 20 4c 65 67 61 63 79 20 70 | .on.this.LLDP.instance..Legacy.p |
| 46a40 | 72 6f 74 6f 63 6f 6c 73 20 69 6e 63 6c 75 64 65 3a 00 45 6e 61 62 6c 65 20 6c 61 79 65 72 20 37 | rotocols.include:.Enable.layer.7 |
| 46a60 | 20 48 54 54 50 20 68 65 61 6c 74 68 20 63 68 65 63 6b 00 45 6e 61 62 6c 65 20 6c 6f 67 67 69 6e | .HTTP.health.check.Enable.loggin |
| 46a80 | 67 20 66 6f 72 20 74 68 65 20 6d 61 74 63 68 65 64 20 70 61 63 6b 65 74 2e 20 49 66 20 74 68 69 | g.for.the.matched.packet..If.thi |
| 46aa0 | 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 20 69 73 20 6e 6f 74 20 70 | s.configuration.command.is.not.p |
| 46ac0 | 72 65 73 65 6e 74 2c 20 74 68 65 6e 20 6c 6f 67 20 69 73 20 6e 6f 74 20 65 6e 61 62 6c 65 64 2e | resent,.then.log.is.not.enabled. |
| 46ae0 | 00 45 6e 61 62 6c 65 20 6c 6f 67 67 69 6e 67 20 66 6f 72 20 74 68 65 20 6d 61 74 63 68 65 64 20 | .Enable.logging.for.the.matched. |
| 46b00 | 70 61 63 6b 65 74 2e 20 49 66 20 74 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f | packet..If.this.configuration.co |
| 46b20 | 6d 6d 61 6e 64 20 69 73 20 6e 6f 74 20 70 72 65 73 65 6e 74 2c 20 74 68 65 6e 20 74 68 65 20 6c | mmand.is.not.present,.then.the.l |
| 46b40 | 6f 67 20 69 73 20 6e 6f 74 20 65 6e 61 62 6c 65 64 2e 00 45 6e 61 62 6c 65 20 6c 6f 67 67 69 6e | og.is.not.enabled..Enable.loggin |
| 46b60 | 67 20 6f 66 20 49 50 20 61 64 64 72 65 73 73 20 61 6e 64 20 70 6f 72 74 73 20 61 6c 6c 6f 63 61 | g.of.IP.address.and.ports.alloca |
| 46b80 | 74 69 6f 6e 73 2e 00 45 6e 61 62 6c 65 20 6f 72 20 44 69 73 61 62 6c 65 20 56 79 4f 53 20 74 6f | tions..Enable.or.Disable.VyOS.to |
| 46ba0 | 20 62 65 20 3a 72 66 63 3a 60 31 33 33 37 60 20 63 6f 6e 66 6f 72 6d 2e 20 54 68 65 20 66 6f 6c | .be.:rfc:`1337`.conform..The.fol |
| 46bc0 | 6c 6f 77 69 6e 67 20 73 79 73 74 65 6d 20 70 61 72 61 6d 65 74 65 72 20 77 69 6c 6c 20 62 65 20 | lowing.system.parameter.will.be. |
| 46be0 | 61 6c 74 65 72 65 64 3a 00 45 6e 61 62 6c 65 20 6f 72 20 44 69 73 61 62 6c 65 20 56 79 4f 53 20 | altered:.Enable.or.Disable.VyOS. |
| 46c00 | 74 6f 20 62 65 20 3a 72 66 63 3a 60 31 33 33 37 60 20 63 6f 6e 66 6f 72 6d 61 6e 74 2e 20 54 68 | to.be.:rfc:`1337`.conformant..Th |
| 46c20 | 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 79 73 74 65 6d 20 70 61 72 61 6d 65 74 65 72 20 77 69 6c | e.following.system.parameter.wil |
| 46c40 | 6c 20 62 65 20 61 6c 74 65 72 65 64 3a 00 45 6e 61 62 6c 65 20 6f 72 20 44 69 73 61 62 6c 65 20 | l.be.altered:.Enable.or.Disable. |
| 46c60 | 69 66 20 56 79 4f 53 20 75 73 65 20 49 50 76 34 20 54 43 50 20 53 59 4e 20 43 6f 6f 6b 69 65 73 | if.VyOS.use.IPv4.TCP.SYN.Cookies |
| 46c80 | 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 79 73 74 65 6d 20 70 61 72 61 6d 65 74 65 72 | ..The.following.system.parameter |
| 46ca0 | 20 77 69 6c 6c 20 62 65 20 61 6c 74 65 72 65 64 3a 00 45 6e 61 62 6c 65 20 6f 72 20 64 69 73 61 | .will.be.altered:.Enable.or.disa |
| 46cc0 | 62 6c 65 20 49 43 4d 50 76 34 20 6f 72 20 49 43 4d 50 76 36 20 72 65 64 69 72 65 63 74 20 6d 65 | ble.ICMPv4.or.ICMPv6.redirect.me |
| 46ce0 | 73 73 61 67 65 73 20 62 65 69 6e 67 20 61 63 63 65 70 74 65 64 20 62 79 20 56 79 4f 53 2e 20 54 | ssages.being.accepted.by.VyOS..T |
| 46d00 | 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 79 73 74 65 6d 20 70 61 72 61 6d 65 74 65 72 73 20 77 | he.following.system.parameters.w |
| 46d20 | 69 6c 6c 20 62 65 20 61 6c 74 65 72 65 64 3a 00 45 6e 61 62 6c 65 20 6f 72 20 64 69 73 61 62 6c | ill.be.altered:.Enable.or.disabl |
| 46d40 | 65 20 49 43 4d 50 76 34 20 72 65 64 69 72 65 63 74 20 6d 65 73 73 61 67 65 73 20 62 65 69 6e 67 | e.ICMPv4.redirect.messages.being |
| 46d60 | 20 73 65 6e 74 20 62 79 20 56 79 4f 53 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 79 73 74 | .sent.by.VyOS.The.following.syst |
| 46d80 | 65 6d 20 70 61 72 61 6d 65 74 65 72 20 77 69 6c 6c 20 62 65 20 61 6c 74 65 72 65 64 3a 00 45 6e | em.parameter.will.be.altered:.En |
| 46da0 | 61 62 6c 65 20 6f 72 20 64 69 73 61 62 6c 65 20 69 66 20 56 79 4f 53 20 75 73 65 73 20 49 50 76 | able.or.disable.if.VyOS.uses.IPv |
| 46dc0 | 34 20 54 43 50 20 53 59 4e 20 43 6f 6f 6b 69 65 73 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 | 4.TCP.SYN.Cookies..The.following |
| 46de0 | 20 73 79 73 74 65 6d 20 70 61 72 61 6d 65 74 65 72 20 77 69 6c 6c 20 62 65 20 61 6c 74 65 72 65 | .system.parameter.will.be.altere |
| 46e00 | 64 3a 00 45 6e 61 62 6c 65 20 6f 72 20 64 69 73 61 62 6c 65 20 6c 6f 67 67 69 6e 67 20 66 6f 72 | d:.Enable.or.disable.logging.for |
| 46e20 | 20 74 68 65 20 6d 61 74 63 68 65 64 20 70 61 63 6b 65 74 2e 00 45 6e 61 62 6c 65 20 6f 72 20 64 | .the.matched.packet..Enable.or.d |
| 46e40 | 69 73 61 62 6c 65 20 74 68 65 20 6c 6f 67 67 69 6e 67 20 6f 66 20 6d 61 72 74 69 61 6e 20 49 50 | isable.the.logging.of.martian.IP |
| 46e60 | 76 34 20 70 61 63 6b 65 74 73 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 79 73 74 65 6d | v4.packets..The.following.system |
| 46e80 | 20 70 61 72 61 6d 65 74 65 72 20 77 69 6c 6c 20 62 65 20 61 6c 74 65 72 65 64 3a 00 45 6e 61 62 | .parameter.will.be.altered:.Enab |
| 46ea0 | 6c 65 20 6f 73 70 66 20 6f 6e 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 61 6e 64 20 73 65 74 20 | le.ospf.on.an.interface.and.set. |
| 46ec0 | 61 73 73 6f 63 69 61 74 65 64 20 61 72 65 61 2e 00 45 6e 61 62 6c 65 20 70 6f 6c 69 63 79 20 66 | associated.area..Enable.policy.f |
| 46ee0 | 6f 72 20 73 6f 75 72 63 65 20 76 61 6c 69 64 61 74 69 6f 6e 20 62 79 20 72 65 76 65 72 73 65 64 | or.source.validation.by.reversed |
| 46f00 | 20 70 61 74 68 2c 20 61 73 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 3a 72 66 63 3a 60 33 37 30 | .path,.as.specified.in.:rfc:`370 |
| 46f20 | 34 60 2e 20 43 75 72 72 65 6e 74 20 72 65 63 6f 6d 6d 65 6e 64 65 64 20 70 72 61 63 74 69 63 65 | 4`..Current.recommended.practice |
| 46f40 | 20 69 6e 20 3a 72 66 63 3a 60 33 37 30 34 60 20 69 73 20 74 6f 20 65 6e 61 62 6c 65 20 73 74 72 | .in.:rfc:`3704`.is.to.enable.str |
| 46f60 | 69 63 74 20 6d 6f 64 65 20 74 6f 20 70 72 65 76 65 6e 74 20 49 50 20 73 70 6f 6f 66 69 6e 67 20 | ict.mode.to.prevent.IP.spoofing. |
| 46f80 | 66 72 6f 6d 20 44 44 6f 73 20 61 74 74 61 63 6b 73 2e 20 49 66 20 75 73 69 6e 67 20 61 73 79 6d | from.DDos.attacks..If.using.asym |
| 46fa0 | 6d 65 74 72 69 63 20 72 6f 75 74 69 6e 67 20 6f 72 20 6f 74 68 65 72 20 63 6f 6d 70 6c 69 63 61 | metric.routing.or.other.complica |
| 46fc0 | 74 65 64 20 72 6f 75 74 69 6e 67 2c 20 74 68 65 6e 20 6c 6f 6f 73 65 20 6d 6f 64 65 20 69 73 20 | ted.routing,.then.loose.mode.is. |
| 46fe0 | 72 65 63 6f 6d 6d 65 6e 64 65 64 2e 00 45 6e 61 62 6c 65 20 72 65 63 65 69 76 69 6e 67 20 50 50 | recommended..Enable.receiving.PP |
| 47000 | 44 55 20 75 73 69 6e 67 20 53 54 42 43 20 28 53 70 61 63 65 20 54 69 6d 65 20 42 6c 6f 63 6b 20 | DU.using.STBC.(Space.Time.Block. |
| 47020 | 43 6f 64 69 6e 67 29 00 45 6e 61 62 6c 65 20 73 61 6d 70 6c 69 6e 67 20 6f 66 20 70 61 63 6b 65 | Coding).Enable.sampling.of.packe |
| 47040 | 74 73 2c 20 77 68 69 63 68 20 77 69 6c 6c 20 62 65 20 74 72 61 6e 73 6d 69 74 74 65 64 20 74 6f | ts,.which.will.be.transmitted.to |
| 47060 | 20 73 46 6c 6f 77 20 63 6f 6c 6c 65 63 74 6f 72 73 2e 00 45 6e 61 62 6c 65 20 73 65 6e 64 69 6e | .sFlow.collectors..Enable.sendin |
| 47080 | 67 20 50 50 44 55 20 75 73 69 6e 67 20 53 54 42 43 20 28 53 70 61 63 65 20 54 69 6d 65 20 42 6c | g.PPDU.using.STBC.(Space.Time.Bl |
| 470a0 | 6f 63 6b 20 43 6f 64 69 6e 67 29 00 45 6e 61 62 6c 65 20 73 65 6e 64 69 6e 67 20 6f 66 20 43 69 | ock.Coding).Enable.sending.of.Ci |
| 470c0 | 73 63 6f 20 73 74 79 6c 65 20 4e 48 52 50 20 54 72 61 66 66 69 63 20 49 6e 64 69 63 61 74 69 6f | sco.style.NHRP.Traffic.Indicatio |
| 470e0 | 6e 20 70 61 63 6b 65 74 73 2e 20 49 66 20 74 68 69 73 20 69 73 20 65 6e 61 62 6c 65 64 20 61 6e | n.packets..If.this.is.enabled.an |
| 47100 | 64 20 6f 70 65 6e 6e 68 72 70 20 64 65 74 65 63 74 73 20 61 20 66 6f 72 77 61 72 64 65 64 20 20 | d.opennhrp.detects.a.forwarded.. |
| 47120 | 70 61 63 6b 65 74 2c 20 69 74 20 77 69 6c 6c 20 73 65 6e 64 20 61 20 6d 65 73 73 61 67 65 20 74 | packet,.it.will.send.a.message.t |
| 47140 | 6f 20 74 68 65 20 6f 72 69 67 69 6e 61 6c 20 73 65 6e 64 65 72 20 6f 66 20 74 68 65 20 70 61 63 | o.the.original.sender.of.the.pac |
| 47160 | 6b 65 74 20 69 6e 73 74 72 75 63 74 69 6e 67 20 69 74 20 74 6f 20 63 72 65 61 74 65 20 61 20 64 | ket.instructing.it.to.create.a.d |
| 47180 | 69 72 65 63 74 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 77 69 74 68 20 74 68 65 20 64 65 73 74 69 6e | irect.connection.with.the.destin |
| 471a0 | 61 74 69 6f 6e 2e 20 54 68 69 73 20 69 73 20 62 61 73 69 63 61 6c 6c 79 20 61 20 70 72 6f 74 6f | ation..This.is.basically.a.proto |
| 471c0 | 63 6f 6c 20 69 6e 64 65 70 65 6e 64 65 6e 74 20 65 71 75 69 76 61 6c 65 6e 74 20 6f 66 20 49 43 | col.independent.equivalent.of.IC |
| 471e0 | 4d 50 20 72 65 64 69 72 65 63 74 2e 00 45 6e 61 62 6c 65 20 73 70 61 6e 6e 69 6e 67 20 74 72 65 | MP.redirect..Enable.spanning.tre |
| 47200 | 65 20 70 72 6f 74 6f 63 6f 6c 2e 20 53 54 50 20 69 73 20 64 69 73 61 62 6c 65 64 20 62 79 20 64 | e.protocol..STP.is.disabled.by.d |
| 47220 | 65 66 61 75 6c 74 2e 00 45 6e 61 62 6c 65 20 74 68 65 20 4f 70 61 71 75 65 2d 4c 53 41 20 63 61 | efault..Enable.the.Opaque-LSA.ca |
| 47240 | 70 61 62 69 6c 69 74 79 20 28 72 66 63 32 33 37 30 29 2c 20 6e 65 63 65 73 73 61 72 79 20 74 6f | pability.(rfc2370),.necessary.to |
| 47260 | 20 74 72 61 6e 73 70 6f 72 74 20 6c 61 62 65 6c 20 6f 6e 20 49 47 50 00 45 6e 61 62 6c 65 20 74 | .transport.label.on.IGP.Enable.t |
| 47280 | 68 69 73 20 66 65 61 74 75 72 65 20 63 61 75 73 65 73 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 | his.feature.causes.an.interface. |
| 472a0 | 72 65 73 65 74 2e 00 45 6e 61 62 6c 65 20 74 72 61 6e 73 6d 69 73 73 69 6f 6e 20 6f 66 20 4c 4c | reset..Enable.transmission.of.LL |
| 472c0 | 44 50 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 6e 20 67 69 76 65 6e 20 60 3c 69 6e 74 65 72 66 | DP.information.on.given.`<interf |
| 472e0 | 61 63 65 3e 60 2e 20 59 6f 75 20 63 61 6e 20 61 6c 73 6f 20 73 61 79 20 60 60 61 6c 6c 60 60 20 | ace>`..You.can.also.say.``all``. |
| 47300 | 68 65 72 65 20 73 6f 20 4c 4c 44 50 20 69 73 20 74 75 72 6e 65 64 20 6f 6e 20 6f 6e 20 65 76 65 | here.so.LLDP.is.turned.on.on.eve |
| 47320 | 72 79 20 69 6e 74 65 72 66 61 63 65 2e 00 45 6e 61 62 6c 65 64 20 6f 6e 2d 64 65 6d 61 6e 64 20 | ry.interface..Enabled.on-demand. |
| 47340 | 50 50 50 6f 45 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 62 72 69 6e 67 20 75 70 20 74 68 65 20 6c | PPPoE.connections.bring.up.the.l |
| 47360 | 69 6e 6b 20 6f 6e 6c 79 20 77 68 65 6e 20 74 72 61 66 66 69 63 20 6e 65 65 64 73 20 74 6f 20 70 | ink.only.when.traffic.needs.to.p |
| 47380 | 61 73 73 20 74 68 69 73 20 6c 69 6e 6b 2e 20 20 49 66 20 74 68 65 20 6c 69 6e 6b 20 66 61 69 6c | ass.this.link...If.the.link.fail |
| 473a0 | 73 20 66 6f 72 20 61 6e 79 20 72 65 61 73 6f 6e 2c 20 74 68 65 20 6c 69 6e 6b 20 69 73 20 62 72 | s.for.any.reason,.the.link.is.br |
| 473c0 | 6f 75 67 68 74 20 62 61 63 6b 20 75 70 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 6f 6e 63 65 | ought.back.up.automatically.once |
| 473e0 | 20 74 72 61 66 66 69 63 20 70 61 73 73 65 73 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 61 67 | .traffic.passes.the.interface.ag |
| 47400 | 61 69 6e 2e 20 49 66 20 79 6f 75 20 63 6f 6e 66 69 67 75 72 65 20 61 6e 20 6f 6e 2d 64 65 6d 61 | ain..If.you.configure.an.on-dema |
| 47420 | 6e 64 20 50 50 50 6f 45 20 63 6f 6e 6e 65 63 74 69 6f 6e 2c 20 79 6f 75 20 6d 75 73 74 20 61 6c | nd.PPPoE.connection,.you.must.al |
| 47440 | 73 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 69 64 6c 65 20 74 69 6d 65 6f 75 74 20 70 65 | so.configure.the.idle.timeout.pe |
| 47460 | 72 69 6f 64 2c 20 61 66 74 65 72 20 77 68 69 63 68 20 61 6e 20 69 64 6c 65 20 50 50 50 6f 45 20 | riod,.after.which.an.idle.PPPoE. |
| 47480 | 6c 69 6e 6b 20 77 69 6c 6c 20 62 65 20 64 69 73 63 6f 6e 6e 65 63 74 65 64 2e 20 41 20 6e 6f 6e | link.will.be.disconnected..A.non |
| 474a0 | 2d 7a 65 72 6f 20 69 64 6c 65 20 74 69 6d 65 6f 75 74 20 77 69 6c 6c 20 6e 65 76 65 72 20 64 69 | -zero.idle.timeout.will.never.di |
| 474c0 | 73 63 6f 6e 6e 65 63 74 20 74 68 65 20 6c 69 6e 6b 20 61 66 74 65 72 20 69 74 20 66 69 72 73 74 | sconnect.the.link.after.it.first |
| 474e0 | 20 63 61 6d 65 20 75 70 2e 00 45 6e 61 62 6c 65 73 20 43 69 73 63 6f 20 73 74 79 6c 65 20 61 75 | .came.up..Enables.Cisco.style.au |
| 47500 | 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6f 6e 20 4e 48 52 50 20 70 61 63 6b 65 74 73 2e 20 54 68 | thentication.on.NHRP.packets..Th |
| 47520 | 69 73 20 65 6d 62 65 64 73 20 74 68 65 20 73 65 63 72 65 74 20 70 6c 61 69 6e 74 65 78 74 20 70 | is.embeds.the.secret.plaintext.p |
| 47540 | 61 73 73 77 6f 72 64 20 74 6f 20 74 68 65 20 6f 75 74 67 6f 69 6e 67 20 4e 48 52 50 20 70 61 63 | assword.to.the.outgoing.NHRP.pac |
| 47560 | 6b 65 74 73 2e 20 49 6e 63 6f 6d 69 6e 67 20 4e 48 52 50 20 70 61 63 6b 65 74 73 20 6f 6e 20 74 | kets..Incoming.NHRP.packets.on.t |
| 47580 | 68 69 73 20 69 6e 74 65 72 66 61 63 65 20 61 72 65 20 64 69 73 63 61 72 64 65 64 20 75 6e 6c 65 | his.interface.are.discarded.unle |
| 475a0 | 73 73 20 74 68 65 20 73 65 63 72 65 74 20 70 61 73 73 77 6f 72 64 20 69 73 20 70 72 65 73 65 6e | ss.the.secret.password.is.presen |
| 475c0 | 74 2e 20 4d 61 78 69 6d 75 6d 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 20 73 65 63 72 65 74 20 | t..Maximum.length.of.the.secret. |
| 475e0 | 69 73 20 38 20 63 68 61 72 61 63 74 65 72 73 2e 00 45 6e 61 62 6c 65 73 20 48 54 54 50 20 68 65 | is.8.characters..Enables.HTTP.he |
| 47600 | 61 6c 74 68 20 63 68 65 63 6b 73 20 75 73 69 6e 67 20 4f 50 54 49 4f 4e 20 48 54 54 50 20 72 65 | alth.checks.using.OPTION.HTTP.re |
| 47620 | 71 75 65 73 74 73 20 61 67 61 69 6e 73 74 20 27 2f 27 20 61 6e 64 20 65 78 70 65 63 74 69 6e 67 | quests.against.'/'.and.expecting |
| 47640 | 20 61 20 73 75 63 63 65 73 73 66 75 6c 20 72 65 73 70 6f 6e 73 65 20 63 6f 64 65 20 69 6e 20 74 | .a.successful.response.code.in.t |
| 47660 | 68 65 20 32 30 30 2d 33 39 39 20 72 61 6e 67 65 2e 00 45 6e 61 62 6c 65 73 20 61 6e 20 4d 50 4c | he.200-399.range..Enables.an.MPL |
| 47680 | 53 20 6c 61 62 65 6c 20 74 6f 20 62 65 20 61 74 74 61 63 68 65 64 20 74 6f 20 61 20 72 6f 75 74 | S.label.to.be.attached.to.a.rout |
| 476a0 | 65 20 65 78 70 6f 72 74 65 64 20 66 72 6f 6d 20 74 68 65 20 63 75 72 72 65 6e 74 20 75 6e 69 63 | e.exported.from.the.current.unic |
| 476c0 | 61 73 74 20 56 52 46 20 74 6f 20 56 50 4e 2e 20 49 66 20 74 68 65 20 76 61 6c 75 65 20 73 70 65 | ast.VRF.to.VPN..If.the.value.spe |
| 476e0 | 63 69 66 69 65 64 20 69 73 20 61 75 74 6f 2c 20 74 68 65 20 6c 61 62 65 6c 20 76 61 6c 75 65 20 | cified.is.auto,.the.label.value. |
| 47700 | 69 73 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 61 73 73 69 67 6e 65 64 20 66 72 6f 6d 20 61 | is.automatically.assigned.from.a |
| 47720 | 20 70 6f 6f 6c 20 6d 61 69 6e 74 61 69 6e 65 64 2e 00 45 6e 61 62 6c 65 73 20 61 6e 64 20 63 6f | .pool.maintained..Enables.and.co |
| 47740 | 6e 66 69 67 75 72 65 73 20 70 2d 73 74 61 74 65 20 64 72 69 76 65 72 20 66 6f 72 20 6d 6f 64 65 | nfigures.p-state.driver.for.mode |
| 47760 | 72 6e 20 41 4d 44 20 52 79 7a 65 6e 20 61 6e 64 20 45 70 79 63 20 43 50 55 73 2e 00 45 6e 61 62 | rn.AMD.Ryzen.and.Epyc.CPUs..Enab |
| 47780 | 6c 65 73 20 62 61 6e 64 77 69 64 74 68 20 73 68 61 70 69 6e 67 20 76 69 61 20 52 41 44 49 55 53 | les.bandwidth.shaping.via.RADIUS |
| 477a0 | 2e 00 45 6e 61 62 6c 65 73 20 69 6d 70 6f 72 74 20 6f 72 20 65 78 70 6f 72 74 20 6f 66 20 72 6f | ..Enables.import.or.export.of.ro |
| 477c0 | 75 74 65 73 20 62 65 74 77 65 65 6e 20 74 68 65 20 63 75 72 72 65 6e 74 20 75 6e 69 63 61 73 74 | utes.between.the.current.unicast |
| 477e0 | 20 56 52 46 20 61 6e 64 20 56 50 4e 2e 00 45 6e 61 62 6c 65 73 20 74 68 65 20 47 65 6e 65 72 69 | .VRF.and.VPN..Enables.the.Generi |
| 47800 | 63 20 50 72 6f 74 6f 63 6f 6c 20 65 78 74 65 6e 73 69 6f 6e 20 28 56 58 4c 41 4e 2d 47 50 45 29 | c.Protocol.extension.(VXLAN-GPE) |
| 47820 | 2e 20 43 75 72 72 65 6e 74 6c 79 2c 20 74 68 69 73 20 69 73 20 6f 6e 6c 79 20 73 75 70 70 6f 72 | ..Currently,.this.is.only.suppor |
| 47840 | 74 65 64 20 74 6f 67 65 74 68 65 72 20 77 69 74 68 20 74 68 65 20 65 78 74 65 72 6e 61 6c 20 6b | ted.together.with.the.external.k |
| 47860 | 65 79 77 6f 72 64 2e 00 45 6e 61 62 6c 65 73 20 74 68 65 20 4e 54 50 20 64 61 65 6d 6f 6e 20 50 | eyword..Enables.the.NTP.daemon.P |
| 47880 | 54 50 20 74 72 61 6e 73 70 6f 72 74 2e 20 54 68 65 20 4e 54 50 20 64 61 65 6d 6f 6e 20 77 69 6c | TP.transport..The.NTP.daemon.wil |
| 478a0 | 6c 20 6c 69 73 74 65 6e 20 6f 6e 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 50 54 50 20 70 | l.listen.on.the.configured.PTP.p |
| 478c0 | 6f 72 74 2e 20 4e 6f 74 65 20 74 68 61 74 20 6f 6e 65 20 6f 72 20 6d 6f 72 65 20 73 65 72 76 65 | ort..Note.that.one.or.more.serve |
| 478e0 | 72 73 20 6d 75 73 74 20 62 65 20 69 6e 64 69 76 69 64 75 61 6c 6c 79 20 65 6e 61 62 6c 65 64 20 | rs.must.be.individually.enabled. |
| 47900 | 66 6f 72 20 50 54 50 20 62 65 66 6f 72 65 20 74 68 65 20 64 61 65 6d 6f 6e 20 77 69 6c 6c 20 73 | for.PTP.before.the.daemon.will.s |
| 47920 | 79 6e 63 68 72 6f 6e 69 7a 65 20 6f 76 65 72 20 74 68 65 20 74 72 61 6e 73 70 6f 72 74 2e 00 45 | ynchronize.over.the.transport..E |
| 47940 | 6e 61 62 6c 65 73 20 74 68 65 20 65 63 68 6f 20 74 72 61 6e 73 6d 69 73 73 69 6f 6e 20 6d 6f 64 | nables.the.echo.transmission.mod |
| 47960 | 65 00 45 6e 61 62 6c 65 73 20 74 68 65 20 72 6f 6f 74 20 70 61 72 74 69 74 69 6f 6e 20 61 75 74 | e.Enables.the.root.partition.aut |
| 47980 | 6f 2d 65 78 74 65 6e 73 69 6f 6e 20 61 6e 64 20 72 65 73 69 7a 65 73 20 74 6f 20 74 68 65 20 6d | o-extension.and.resizes.to.the.m |
| 479a0 | 61 78 69 6d 75 6d 20 61 76 61 69 6c 61 62 6c 65 20 73 70 61 63 65 20 6f 6e 20 73 79 73 74 65 6d | aximum.available.space.on.system |
| 479c0 | 20 62 6f 6f 74 2e 00 45 6e 61 62 6c 69 6e 67 20 41 64 76 65 72 74 69 73 6d 65 6e 74 73 00 45 6e | .boot..Enabling.Advertisments.En |
| 479e0 | 61 62 6c 69 6e 67 20 4f 70 65 6e 56 50 4e 20 44 43 4f 00 45 6e 61 62 6c 69 6e 67 20 53 53 48 20 | abling.OpenVPN.DCO.Enabling.SSH. |
| 47a00 | 6f 6e 6c 79 20 72 65 71 75 69 72 65 73 20 79 6f 75 20 74 6f 20 73 70 65 63 69 66 79 20 74 68 65 | only.requires.you.to.specify.the |
| 47a20 | 20 70 6f 72 74 20 60 60 3c 70 6f 72 74 3e 60 60 20 79 6f 75 20 77 61 6e 74 20 53 53 48 20 74 6f | .port.``<port>``.you.want.SSH.to |
| 47a40 | 20 6c 69 73 74 65 6e 20 6f 6e 2e 20 42 79 20 64 65 66 61 75 6c 74 2c 20 53 53 48 20 72 75 6e 73 | .listen.on..By.default,.SSH.runs |
| 47a60 | 20 6f 6e 20 70 6f 72 74 20 32 32 2e 00 45 6e 61 62 6c 69 6e 67 20 74 68 69 73 20 66 75 6e 63 74 | .on.port.22..Enabling.this.funct |
| 47a80 | 69 6f 6e 20 69 6e 63 72 65 61 73 65 73 20 74 68 65 20 72 69 73 6b 20 6f 66 20 62 61 6e 64 77 69 | ion.increases.the.risk.of.bandwi |
| 47aa0 | 64 74 68 20 73 61 74 75 72 61 74 69 6f 6e 2e 00 45 6e 66 6f 72 63 65 20 73 74 72 69 63 74 20 70 | dth.saturation..Enforce.strict.p |
| 47ac0 | 61 74 68 20 63 68 65 63 6b 69 6e 67 00 45 6e 66 6f 72 63 65 20 73 74 72 69 63 74 20 70 61 74 68 | ath.checking.Enforce.strict.path |
| 47ae0 | 20 63 68 65 63 6b 69 6e 67 2e 00 45 6e 73 6c 61 76 65 20 60 3c 6d 65 6d 62 65 72 3e 60 20 69 6e | .checking..Enslave.`<member>`.in |
| 47b00 | 74 65 72 66 61 63 65 20 74 6f 20 62 6f 6e 64 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 2e 00 45 | terface.to.bond.`<interface>`..E |
| 47b20 | 6e 73 75 72 65 20 74 68 61 74 20 77 68 65 6e 20 63 6f 6d 70 61 72 69 6e 67 20 72 6f 75 74 65 73 | nsure.that.when.comparing.routes |
| 47b40 | 20 77 68 65 72 65 20 62 6f 74 68 20 61 72 65 20 65 71 75 61 6c 20 6f 6e 20 6d 6f 73 74 20 6d 65 | .where.both.are.equal.on.most.me |
| 47b60 | 74 72 69 63 73 2c 20 69 6e 63 6c 75 64 69 6e 67 20 6c 6f 63 61 6c 2d 70 72 65 66 2c 20 41 53 5f | trics,.including.local-pref,.AS_ |
| 47b80 | 50 41 54 48 20 6c 65 6e 67 74 68 2c 20 49 47 50 20 63 6f 73 74 2c 20 4d 45 44 2c 20 74 68 61 74 | PATH.length,.IGP.cost,.MED,.that |
| 47ba0 | 20 74 68 65 20 74 69 65 20 69 73 20 62 72 6f 6b 65 6e 20 62 61 73 65 64 20 6f 6e 20 72 6f 75 74 | .the.tie.is.broken.based.on.rout |
| 47bc0 | 65 72 2d 49 44 2e 00 45 6e 74 65 72 70 72 69 73 65 20 69 6e 73 74 61 6c 6c 61 74 69 6f 6e 73 20 | er-ID..Enterprise.installations. |
| 47be0 | 75 73 75 61 6c 6c 79 20 73 68 69 70 20 61 20 6b 69 6e 64 20 6f 66 20 64 69 72 65 63 74 6f 72 79 | usually.ship.a.kind.of.directory |
| 47c00 | 20 73 65 72 76 69 63 65 20 77 68 69 63 68 20 69 73 20 75 73 65 64 20 74 6f 20 68 61 76 65 20 61 | .service.which.is.used.to.have.a |
| 47c20 | 20 73 69 6e 67 6c 65 20 70 61 73 73 77 6f 72 64 20 73 74 6f 72 65 20 66 6f 72 20 61 6c 6c 20 65 | .single.password.store.for.all.e |
| 47c40 | 6d 70 6c 6f 79 65 65 73 2e 20 56 79 4f 53 20 61 6e 64 20 4f 70 65 6e 56 50 4e 20 73 75 70 70 6f | mployees..VyOS.and.OpenVPN.suppo |
| 47c60 | 72 74 20 75 73 69 6e 67 20 4c 44 41 50 2f 41 44 20 61 73 20 73 69 6e 67 6c 65 20 75 73 65 72 20 | rt.using.LDAP/AD.as.single.user. |
| 47c80 | 62 61 63 6b 65 6e 64 2e 00 45 72 69 63 73 73 6f 6e 20 63 61 6c 6c 20 69 74 20 4d 41 43 2d 46 6f | backend..Ericsson.call.it.MAC-Fo |
| 47ca0 | 72 63 65 64 20 46 6f 72 77 61 72 64 69 6e 67 20 28 52 46 43 20 44 72 61 66 74 29 00 45 72 72 6f | rced.Forwarding.(RFC.Draft).Erro |
| 47cc0 | 72 00 45 72 72 6f 72 20 63 6f 6e 64 69 74 69 6f 6e 73 00 45 73 74 61 62 6c 69 73 68 65 64 20 73 | r.Error.conditions.Established.s |
| 47ce0 | 65 73 73 69 6f 6e 73 20 63 61 6e 20 62 65 20 76 69 65 77 65 64 20 75 73 69 6e 67 20 74 68 65 20 | essions.can.be.viewed.using.the. |
| 47d00 | 2a 2a 73 68 6f 77 20 6c 32 74 70 2d 73 65 72 76 65 72 20 73 65 73 73 69 6f 6e 73 2a 2a 20 6f 70 | **show.l2tp-server.sessions**.op |
| 47d20 | 65 72 61 74 69 6f 6e 61 6c 20 63 6f 6d 6d 61 6e 64 00 45 74 68 65 72 6e 65 74 00 45 74 68 65 72 | erational.command.Ethernet.Ether |
| 47d40 | 6e 65 74 20 66 6c 6f 77 20 63 6f 6e 74 72 6f 6c 20 69 73 20 61 20 6d 65 63 68 61 6e 69 73 6d 20 | net.flow.control.is.a.mechanism. |
| 47d60 | 66 6f 72 20 74 65 6d 70 6f 72 61 72 69 6c 79 20 73 74 6f 70 70 69 6e 67 20 74 68 65 20 74 72 61 | for.temporarily.stopping.the.tra |
| 47d80 | 6e 73 6d 69 73 73 69 6f 6e 20 6f 66 20 64 61 74 61 20 6f 6e 20 45 74 68 65 72 6e 65 74 20 66 61 | nsmission.of.data.on.Ethernet.fa |
| 47da0 | 6d 69 6c 79 20 63 6f 6d 70 75 74 65 72 20 6e 65 74 77 6f 72 6b 73 2e 20 54 68 65 20 67 6f 61 6c | mily.computer.networks..The.goal |
| 47dc0 | 20 6f 66 20 74 68 69 73 20 6d 65 63 68 61 6e 69 73 6d 20 69 73 20 74 6f 20 65 6e 73 75 72 65 20 | .of.this.mechanism.is.to.ensure. |
| 47de0 | 7a 65 72 6f 20 70 61 63 6b 65 74 20 6c 6f 73 73 20 69 6e 20 74 68 65 20 70 72 65 73 65 6e 63 65 | zero.packet.loss.in.the.presence |
| 47e00 | 20 6f 66 20 6e 65 74 77 6f 72 6b 20 63 6f 6e 67 65 73 74 69 6f 6e 2e 00 45 74 68 65 72 6e 65 74 | .of.network.congestion..Ethernet |
| 47e20 | 20 6f 70 74 69 6f 6e 73 00 45 74 68 65 72 74 79 70 65 20 60 60 30 78 38 31 30 30 60 60 20 69 73 | .options.Ethertype.``0x8100``.is |
| 47e40 | 20 75 73 65 64 20 66 6f 72 20 60 60 38 30 32 2e 31 71 60 60 20 61 6e 64 20 65 74 68 65 72 74 79 | .used.for.``802.1q``.and.etherty |
| 47e60 | 70 65 20 60 60 30 78 38 38 61 38 60 60 20 69 73 20 75 73 65 64 20 66 6f 72 20 60 60 38 30 32 2e | pe.``0x88a8``.is.used.for.``802. |
| 47e80 | 31 61 64 60 60 2e 00 45 76 65 6e 74 20 48 61 6e 64 6c 65 72 00 45 76 65 6e 74 20 48 61 6e 64 6c | 1ad``..Event.Handler.Event.Handl |
| 47ea0 | 65 72 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 53 74 65 70 73 00 45 76 65 6e 74 20 48 61 6e | er.Configuration.Steps.Event.Han |
| 47ec0 | 64 6c 65 72 20 54 65 63 68 6e 6f 6c 6f 67 79 20 4f 76 65 72 76 69 65 77 00 45 76 65 6e 74 20 68 | dler.Technology.Overview.Event.h |
| 47ee0 | 61 6e 64 6c 65 72 20 61 6c 6c 6f 77 73 20 79 6f 75 20 74 6f 20 65 78 65 63 75 74 65 20 73 63 72 | andler.allows.you.to.execute.scr |
| 47f00 | 69 70 74 73 20 77 68 65 6e 20 61 20 73 74 72 69 6e 67 20 74 68 61 74 20 6d 61 74 63 68 65 73 20 | ipts.when.a.string.that.matches. |
| 47f20 | 61 20 72 65 67 65 78 20 6f 72 20 61 20 72 65 67 65 78 20 77 69 74 68 20 61 20 73 65 72 76 69 63 | a.regex.or.a.regex.with.a.servic |
| 47f40 | 65 20 6e 61 6d 65 20 61 70 70 65 61 72 73 20 69 6e 20 6a 6f 75 72 6e 61 6c 64 20 6c 6f 67 73 2e | e.name.appears.in.journald.logs. |
| 47f60 | 20 59 6f 75 20 63 61 6e 20 70 61 73 73 20 76 61 72 69 61 62 6c 65 73 2c 20 61 72 67 75 6d 65 6e | .You.can.pass.variables,.argumen |
| 47f80 | 74 73 2c 20 61 6e 64 20 61 20 66 75 6c 6c 20 6d 61 74 63 68 69 6e 67 20 73 74 72 69 6e 67 20 74 | ts,.and.a.full.matching.string.t |
| 47fa0 | 6f 20 74 68 65 20 73 63 72 69 70 74 2e 00 45 76 65 6e 74 20 68 61 6e 64 6c 65 72 20 73 63 72 69 | o.the.script..Event.handler.scri |
| 47fc0 | 70 74 00 45 76 65 6e 74 20 68 61 6e 64 6c 65 72 20 74 68 61 74 20 6d 6f 6e 69 74 6f 72 73 20 74 | pt.Event.handler.that.monitors.t |
| 47fe0 | 68 65 20 73 74 61 74 65 20 6f 66 20 69 6e 74 65 72 66 61 63 65 20 65 74 68 30 2e 00 45 76 65 72 | he.state.of.interface.eth0..Ever |
| 48000 | 79 20 4e 41 54 20 72 75 6c 65 20 68 61 73 20 61 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 63 6f 6d | y.NAT.rule.has.a.translation.com |
| 48020 | 6d 61 6e 64 20 64 65 66 69 6e 65 64 2e 20 54 68 65 20 61 64 64 72 65 73 73 20 64 65 66 69 6e 65 | mand.defined..The.address.define |
| 48040 | 64 20 66 6f 72 20 74 68 65 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 69 73 20 74 68 65 20 61 64 64 | d.for.the.translation.is.the.add |
| 48060 | 72 65 73 73 20 75 73 65 64 20 77 68 65 6e 20 74 68 65 20 61 64 64 72 65 73 73 20 69 6e 66 6f 72 | ress.used.when.the.address.infor |
| 48080 | 6d 61 74 69 6f 6e 20 69 6e 20 61 20 70 61 63 6b 65 74 20 69 73 20 72 65 70 6c 61 63 65 64 2e 00 | mation.in.a.packet.is.replaced.. |
| 480a0 | 45 76 65 72 79 20 53 4e 41 54 36 36 20 72 75 6c 65 20 68 61 73 20 61 20 74 72 61 6e 73 6c 61 74 | Every.SNAT66.rule.has.a.translat |
| 480c0 | 69 6f 6e 20 63 6f 6d 6d 61 6e 64 20 64 65 66 69 6e 65 64 2e 20 54 68 65 20 70 72 65 66 69 78 20 | ion.command.defined..The.prefix. |
| 480e0 | 64 65 66 69 6e 65 64 20 66 6f 72 20 74 68 65 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 69 73 20 74 | defined.for.the.translation.is.t |
| 48100 | 68 65 20 70 72 65 66 69 78 20 75 73 65 64 20 77 68 65 6e 20 74 68 65 20 61 64 64 72 65 73 73 20 | he.prefix.used.when.the.address. |
| 48120 | 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 69 6e 20 61 20 70 61 63 6b 65 74 20 69 73 20 72 65 70 6c 61 | information.in.a.packet.is.repla |
| 48140 | 63 65 64 2e e3 80 81 00 45 76 65 72 79 20 53 53 48 20 6b 65 79 20 63 6f 6d 65 73 20 69 6e 20 74 | ced.....Every.SSH.key.comes.in.t |
| 48160 | 68 72 65 65 20 70 61 72 74 73 3a 00 45 76 65 72 79 20 53 53 48 20 70 75 62 6c 69 63 20 6b 65 79 | hree.parts:.Every.SSH.public.key |
| 48180 | 20 70 6f 72 74 69 6f 6e 20 72 65 66 65 72 65 6e 63 65 64 20 62 79 20 60 3c 69 64 65 6e 74 69 66 | .portion.referenced.by.`<identif |
| 481a0 | 69 65 72 3e 60 20 72 65 71 75 69 72 65 73 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e | ier>`.requires.the.configuration |
| 481c0 | 20 6f 66 20 74 68 65 20 60 3c 74 79 70 65 3e 60 20 6f 66 20 70 75 62 6c 69 63 2d 6b 65 79 20 75 | .of.the.`<type>`.of.public-key.u |
| 481e0 | 73 65 64 2e 20 54 68 69 73 20 74 79 70 65 20 63 61 6e 20 62 65 20 61 6e 79 20 6f 66 3a 00 45 76 | sed..This.type.can.be.any.of:.Ev |
| 48200 | 65 72 79 20 55 44 50 20 70 6f 72 74 20 77 68 69 63 68 20 77 69 6c 6c 20 62 65 20 66 6f 72 77 61 | ery.UDP.port.which.will.be.forwa |
| 48220 | 72 64 20 72 65 71 75 69 72 65 73 20 6f 6e 65 20 75 6e 69 71 75 65 20 49 44 2e 20 43 75 72 72 65 | rd.requires.one.unique.ID..Curre |
| 48240 | 6e 74 6c 79 20 77 65 20 73 75 70 70 6f 72 74 20 39 39 20 49 44 73 21 00 45 76 65 72 79 20 56 69 | ntly.we.support.99.IDs!.Every.Vi |
| 48260 | 72 74 75 61 6c 20 45 74 68 65 72 6e 65 74 20 69 6e 74 65 72 66 61 63 65 73 20 62 65 68 61 76 65 | rtual.Ethernet.interfaces.behave |
| 48280 | 73 20 6c 69 6b 65 20 61 20 72 65 61 6c 20 45 74 68 65 72 6e 65 74 20 69 6e 74 65 72 66 61 63 65 | s.like.a.real.Ethernet.interface |
| 482a0 | 2e 20 54 68 65 79 20 63 61 6e 20 68 61 76 65 20 49 50 76 34 2f 49 50 76 36 20 61 64 64 72 65 73 | ..They.can.have.IPv4/IPv6.addres |
| 482c0 | 73 65 73 20 63 6f 6e 66 69 67 75 72 65 64 2c 20 6f 72 20 63 61 6e 20 72 65 71 75 65 73 74 20 61 | ses.configured,.or.can.request.a |
| 482e0 | 64 64 72 65 73 73 65 73 20 62 79 20 44 48 43 50 2f 20 44 48 43 50 76 36 20 61 6e 64 20 61 72 65 | ddresses.by.DHCP/.DHCPv6.and.are |
| 48300 | 20 61 73 73 6f 63 69 61 74 65 64 2f 6d 61 70 70 65 64 20 77 69 74 68 20 61 20 72 65 61 6c 20 65 | .associated/mapped.with.a.real.e |
| 48320 | 74 68 65 72 6e 65 74 20 70 6f 72 74 2e 20 54 68 69 73 20 61 6c 73 6f 20 6d 61 6b 65 73 20 50 73 | thernet.port..This.also.makes.Ps |
| 48340 | 65 75 64 6f 2d 45 74 68 65 72 6e 65 74 20 69 6e 74 65 72 66 61 63 65 73 20 69 6e 74 65 72 65 73 | eudo-Ethernet.interfaces.interes |
| 48360 | 74 69 6e 67 20 66 6f 72 20 74 65 73 74 69 6e 67 20 70 75 72 70 6f 73 65 73 2e 20 41 20 50 73 65 | ting.for.testing.purposes..A.Pse |
| 48380 | 75 64 6f 2d 45 74 68 65 72 6e 65 74 20 64 65 76 69 63 65 20 77 69 6c 6c 20 69 6e 68 65 72 69 74 | udo-Ethernet.device.will.inherit |
| 483a0 | 20 63 68 61 72 61 63 74 65 72 69 73 74 69 63 73 20 28 73 70 65 65 64 2c 20 64 75 70 6c 65 78 2c | .characteristics.(speed,.duplex, |
| 483c0 | 20 2e 2e 2e 29 20 66 72 6f 6d 20 69 74 73 20 70 68 79 73 69 63 61 6c 20 70 61 72 65 6e 74 20 28 | ....).from.its.physical.parent.( |
| 483e0 | 74 68 65 20 73 6f 20 63 61 6c 6c 65 64 20 6c 69 6e 6b 29 20 69 6e 74 65 72 66 61 63 65 2e 00 45 | the.so.called.link).interface..E |
| 48400 | 76 65 72 79 20 57 57 41 4e 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 72 65 71 75 69 72 65 73 20 61 6e | very.WWAN.connection.requires.an |
| 48420 | 20 3a 61 62 62 72 3a 60 41 50 4e 20 28 41 63 63 65 73 73 20 50 6f 69 6e 74 20 4e 61 6d 65 29 60 | .:abbr:`APN.(Access.Point.Name)` |
| 48440 | 20 77 68 69 63 68 20 69 73 20 75 73 65 64 20 62 79 20 74 68 65 20 63 6c 69 65 6e 74 20 74 6f 20 | .which.is.used.by.the.client.to. |
| 48460 | 64 69 61 6c 20 69 6e 74 6f 20 74 68 65 20 49 53 50 73 20 6e 65 74 77 6f 72 6b 2e 20 54 68 69 73 | dial.into.the.ISPs.network..This |
| 48480 | 20 69 73 20 61 20 6d 61 6e 64 61 74 6f 72 79 20 70 61 72 61 6d 65 74 65 72 2e 20 43 6f 6e 74 61 | .is.a.mandatory.parameter..Conta |
| 484a0 | 63 74 20 79 6f 75 72 20 53 65 72 76 69 63 65 20 50 72 6f 76 69 64 65 72 20 66 6f 72 20 63 6f 72 | ct.your.Service.Provider.for.cor |
| 484c0 | 72 65 63 74 20 41 50 4e 2e 00 45 76 65 72 79 20 63 6f 6e 6e 65 63 74 69 6f 6e 2f 72 65 6d 6f 74 | rect.APN..Every.connection/remot |
| 484e0 | 65 2d 61 63 63 65 73 73 20 70 6f 6f 6c 20 77 65 20 63 6f 6e 66 69 67 75 72 65 20 61 6c 73 6f 20 | e-access.pool.we.configure.also. |
| 48500 | 6e 65 65 64 73 20 61 20 70 6f 6f 6c 20 77 68 65 72 65 20 77 65 20 63 61 6e 20 64 72 61 77 20 6f | needs.a.pool.where.we.can.draw.o |
| 48520 | 75 72 20 63 6c 69 65 6e 74 20 49 50 20 61 64 64 72 65 73 73 65 73 20 66 72 6f 6d 2e 20 57 65 20 | ur.client.IP.addresses.from..We. |
| 48540 | 70 72 6f 76 69 64 65 20 6f 6e 65 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 70 6f 6f 6c 2e 20 | provide.one.IPv4.and.IPv6.pool.. |
| 48560 | 41 75 74 68 6f 72 69 7a 65 64 20 63 6c 69 65 6e 74 73 20 77 69 6c 6c 20 72 65 63 65 69 76 65 20 | Authorized.clients.will.receive. |
| 48580 | 61 6e 20 49 50 76 34 20 61 64 64 72 65 73 73 20 66 72 6f 6d 20 74 68 65 20 31 39 32 2e 30 2e 32 | an.IPv4.address.from.the.192.0.2 |
| 485a0 | 2e 31 32 38 2f 32 35 20 70 72 65 66 69 78 20 61 6e 64 20 61 6e 20 49 50 76 36 20 61 64 64 72 65 | .128/25.prefix.and.an.IPv6.addre |
| 485c0 | 73 73 20 66 72 6f 6d 20 74 68 65 20 32 30 30 31 3a 64 62 38 3a 32 30 30 30 3a 3a 2f 36 34 20 70 | ss.from.the.2001:db8:2000::/64.p |
| 485e0 | 72 65 66 69 78 2e 20 57 65 20 63 61 6e 20 61 6c 73 6f 20 73 65 6e 64 20 73 6f 6d 65 20 44 4e 53 | refix..We.can.also.send.some.DNS |
| 48600 | 20 6e 61 6d 65 73 65 72 76 65 72 73 20 64 6f 77 6e 20 66 6f 72 20 6f 75 72 20 63 6c 69 65 6e 74 | .nameservers.down.for.our.client |
| 48620 | 73 20 74 6f 20 75 73 65 20 77 69 74 68 20 74 68 65 69 72 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 | s.to.use.with.their.connection.. |
| 48640 | 45 76 65 72 79 20 63 6f 6e 6e 65 63 74 69 6f 6e 2f 72 65 6d 6f 74 65 2d 61 63 63 65 73 73 20 70 | Every.connection/remote-access.p |
| 48660 | 6f 6f 6c 20 77 65 20 63 6f 6e 66 69 67 75 72 65 20 61 6c 73 6f 20 6e 65 65 64 73 20 61 20 70 6f | ool.we.configure.also.needs.a.po |
| 48680 | 6f 6c 20 77 68 65 72 65 20 77 65 20 63 61 6e 20 64 72 61 77 20 6f 75 72 20 63 6c 69 65 6e 74 20 | ol.where.we.can.draw.our.client. |
| 486a0 | 49 50 20 61 64 64 72 65 73 73 65 73 20 66 72 6f 6d 2e 20 57 65 20 70 72 6f 76 69 64 65 20 6f 6e | IP.addresses.from..We.provide.on |
| 486c0 | 65 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 70 6f 6f 6c 2e 20 41 75 74 68 6f 72 69 7a 65 64 | e.IPv4.and.IPv6.pool..Authorized |
| 486e0 | 20 63 6c 69 65 6e 74 73 20 77 69 6c 6c 20 72 65 63 65 69 76 65 20 61 6e 20 49 50 76 34 20 61 64 | .clients.will.receive.an.IPv4.ad |
| 48700 | 64 72 65 73 73 20 66 72 6f 6d 20 74 68 65 20 31 39 32 2e 30 2e 32 2e 31 32 38 2f 32 35 20 70 72 | dress.from.the.192.0.2.128/25.pr |
| 48720 | 65 66 69 78 20 61 6e 64 20 61 6e 20 49 50 76 36 20 61 64 64 72 65 73 73 20 66 72 6f 6d 20 74 68 | efix.and.an.IPv6.address.from.th |
| 48740 | 65 20 32 30 30 31 3a 64 62 38 3a 32 30 30 30 3a 3a 2f 36 34 20 70 72 65 66 69 78 2e 20 57 65 20 | e.2001:db8:2000::/64.prefix..We. |
| 48760 | 63 61 6e 20 61 6c 73 6f 20 73 65 6e 64 20 73 6f 6d 65 20 44 4e 53 20 6e 61 6d 65 73 65 72 76 65 | can.also.send.some.DNS.nameserve |
| 48780 | 72 73 20 64 6f 77 6e 20 74 6f 20 6f 75 72 20 63 6c 69 65 6e 74 73 20 75 73 65 64 20 6f 6e 20 74 | rs.down.to.our.clients.used.on.t |
| 487a0 | 68 65 69 72 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 45 76 65 72 79 20 63 6f 6e 6e 65 63 74 69 6f | heir.connection..Every.connectio |
| 487c0 | 6e 2f 72 65 6d 6f 74 65 2d 61 63 63 65 73 73 20 70 6f 6f 6c 20 77 65 20 63 6f 6e 66 69 67 75 72 | n/remote-access.pool.we.configur |
| 487e0 | 65 20 61 6c 73 6f 20 6e 65 65 64 73 20 61 20 70 6f 6f 6c 20 77 68 65 72 65 20 77 65 20 63 61 6e | e.also.needs.a.pool.where.we.can |
| 48800 | 20 64 72 61 77 20 6f 75 72 20 63 6c 69 65 6e 74 20 49 50 20 61 64 64 72 65 73 73 65 73 20 66 72 | .draw.our.client.IP.addresses.fr |
| 48820 | 6f 6d 2e 20 57 65 20 70 72 6f 76 69 64 65 20 6f 6e 65 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 | om..We.provide.one.IPv4.and.IPv6 |
| 48840 | 20 70 6f 6f 6c 2e 20 41 75 74 68 6f 72 69 7a 65 64 20 63 6c 69 65 6e 74 73 20 77 69 6c 6c 20 72 | .pool..Authorized.clients.will.r |
| 48860 | 65 63 65 69 76 65 20 61 6e 20 49 50 76 34 20 61 64 64 72 65 73 73 20 66 72 6f 6d 20 74 68 65 20 | eceive.an.IPv4.address.from.the. |
| 48880 | 63 6f 6e 66 69 67 75 72 65 64 20 49 50 76 34 20 70 72 65 66 69 78 20 61 6e 64 20 61 6e 20 49 50 | configured.IPv4.prefix.and.an.IP |
| 488a0 | 76 36 20 61 64 64 72 65 73 73 20 66 72 6f 6d 20 74 68 65 20 49 50 76 36 20 70 72 65 66 69 78 2e | v6.address.from.the.IPv6.prefix. |
| 488c0 | 20 57 65 20 63 61 6e 20 61 6c 73 6f 20 73 65 6e 64 20 73 6f 6d 65 20 44 4e 53 20 6e 61 6d 65 73 | .We.can.also.send.some.DNS.names |
| 488e0 | 65 72 76 65 72 73 20 64 6f 77 6e 20 74 6f 20 6f 75 72 20 63 6c 69 65 6e 74 73 20 75 73 65 64 20 | ervers.down.to.our.clients.used. |
| 48900 | 6f 6e 20 74 68 65 69 72 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 45 78 61 6d 70 6c 65 00 45 78 61 | on.their.connection..Example.Exa |
| 48920 | 6d 70 6c 65 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 45 78 61 6d 70 6c 65 20 43 6f 6e 66 69 | mple.Configuration.Example.Confi |
| 48940 | 67 75 72 61 74 69 6f 6e 3a 20 57 69 46 69 2d 36 20 61 74 20 32 2e 34 47 48 7a 00 45 78 61 6d 70 | guration:.WiFi-6.at.2.4GHz.Examp |
| 48960 | 6c 65 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 20 57 69 46 69 2d 36 65 20 61 74 20 36 47 48 | le.Configuration:.WiFi-6e.at.6GH |
| 48980 | 7a 00 45 78 61 6d 70 6c 65 20 49 50 76 36 20 6f 6e 6c 79 3a 00 45 78 61 6d 70 6c 65 20 4e 65 74 | z.Example.IPv6.only:.Example.Net |
| 489a0 | 77 6f 72 6b 00 45 78 61 6d 70 6c 65 20 50 61 72 74 69 61 6c 20 43 6f 6e 66 69 67 00 45 78 61 6d | work.Example.Partial.Config.Exam |
| 489c0 | 70 6c 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 6f 72 20 57 69 72 65 47 75 61 72 64 20 | ple.configuration.for.WireGuard. |
| 489e0 | 69 6e 74 65 72 66 61 63 65 73 3a 00 45 78 61 6d 70 6c 65 20 66 6f 72 20 63 68 61 6e 67 69 6e 67 | interfaces:.Example.for.changing |
| 48a00 | 20 72 61 74 65 2d 6c 69 6d 69 74 20 76 69 61 20 52 41 44 49 55 53 20 43 6f 41 2e 00 45 78 61 6d | .rate-limit.via.RADIUS.CoA..Exam |
| 48a20 | 70 6c 65 20 66 6f 72 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 61 20 73 69 6d 70 6c 65 20 4c 32 54 | ple.for.configuring.a.simple.L2T |
| 48a40 | 50 20 6f 76 65 72 20 49 50 73 65 63 20 56 50 4e 20 66 6f 72 20 72 65 6d 6f 74 65 20 61 63 63 65 | P.over.IPsec.VPN.for.remote.acce |
| 48a60 | 73 73 20 28 77 6f 72 6b 73 20 77 69 74 68 20 6e 61 74 69 76 65 20 57 69 6e 64 6f 77 73 20 61 6e | ss.(works.with.native.Windows.an |
| 48a80 | 64 20 4d 61 63 20 56 50 4e 20 63 6c 69 65 6e 74 73 29 3a 00 45 78 61 6d 70 6c 65 20 6f 66 20 72 | d.Mac.VPN.clients):.Example.of.r |
| 48aa0 | 65 64 69 72 65 63 74 69 6f 6e 3a 00 45 78 61 6d 70 6c 65 20 6f 66 20 73 65 74 74 69 6e 67 20 75 | edirection:.Example.of.setting.u |
| 48ac0 | 70 20 61 20 62 61 73 69 63 20 43 47 4e 41 54 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 20 49 | p.a.basic.CGNAT.configuration:.I |
| 48ae0 | 6e 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 6c 65 2c 20 77 65 20 64 65 66 69 | n.the.following.example,.we.defi |
| 48b00 | 6e 65 20 61 6e 20 65 78 74 65 72 6e 61 6c 20 70 6f 6f 6c 20 6e 61 6d 65 64 20 60 65 78 74 2d 31 | ne.an.external.pool.named.`ext-1 |
| 48b20 | 60 20 77 69 74 68 20 6f 6e 65 20 65 78 74 65 72 6e 61 6c 20 49 50 20 61 64 64 72 65 73 73 00 45 | `.with.one.external.IP.address.E |
| 48b40 | 78 61 6d 70 6c 65 20 73 79 6e 70 72 6f 78 79 00 45 78 61 6d 70 6c 65 2c 20 66 72 6f 6d 20 72 61 | xample.synproxy.Example,.from.ra |
| 48b60 | 64 69 75 73 2d 73 65 72 76 65 72 20 73 65 6e 64 20 63 6f 6d 6d 61 6e 64 20 66 6f 72 20 64 69 73 | dius-server.send.command.for.dis |
| 48b80 | 63 6f 6e 6e 65 63 74 20 63 6c 69 65 6e 74 20 77 69 74 68 20 75 73 65 72 6e 61 6d 65 20 74 65 73 | connect.client.with.username.tes |
| 48ba0 | 74 00 45 78 61 6d 70 6c 65 3a 00 45 78 61 6d 70 6c 65 3a 20 41 20 68 6f 75 73 65 68 6f 6c 64 20 | t.Example:.Example:.A.household. |
| 48bc0 | 6d 69 67 68 74 20 6e 65 65 64 20 31 30 30 30 20 70 6f 72 74 73 20 74 6f 20 65 6e 73 75 72 65 20 | might.need.1000.ports.to.ensure. |
| 48be0 | 73 6d 6f 6f 74 68 20 6f 70 65 72 61 74 69 6f 6e 20 66 6f 72 20 6d 75 6c 74 69 70 6c 65 20 64 65 | smooth.operation.for.multiple.de |
| 48c00 | 76 69 63 65 73 20 61 6e 64 20 61 70 70 6c 69 63 61 74 69 6f 6e 73 2e 00 45 78 61 6d 70 6c 65 3a | vices.and.applications..Example: |
| 48c20 | 20 44 65 6c 65 67 61 74 65 20 61 20 2f 36 34 20 70 72 65 66 69 78 20 74 6f 20 69 6e 74 65 72 66 | .Delegate.a./64.prefix.to.interf |
| 48c40 | 61 63 65 20 65 74 68 38 20 77 68 69 63 68 20 77 69 6c 6c 20 75 73 65 20 61 20 6c 6f 63 61 6c 20 | ace.eth8.which.will.use.a.local. |
| 48c60 | 61 64 64 72 65 73 73 20 6f 6e 20 74 68 69 73 20 72 6f 75 74 65 72 20 6f 66 20 60 60 3c 70 72 65 | address.on.this.router.of.``<pre |
| 48c80 | 66 69 78 3e 3a 3a 66 66 66 66 60 60 2c 20 61 73 20 74 68 65 20 61 64 64 72 65 73 73 20 36 35 35 | fix>::ffff``,.as.the.address.655 |
| 48ca0 | 33 34 20 77 69 6c 6c 20 63 6f 72 72 65 73 70 6f 6e 64 20 74 6f 20 60 60 66 66 66 66 60 60 20 69 | 34.will.correspond.to.``ffff``.i |
| 48cc0 | 6e 20 68 65 78 61 64 65 63 69 6d 61 6c 20 6e 6f 74 61 74 69 6f 6e 2e 00 45 78 61 6d 70 6c 65 3a | n.hexadecimal.notation..Example: |
| 48ce0 | 20 46 6f 72 20 61 6e 20 7e 38 2c 30 30 30 20 68 6f 73 74 20 6e 65 74 77 6f 72 6b 20 61 20 73 6f | .For.an.~8,000.host.network.a.so |
| 48d00 | 75 72 63 65 20 4e 41 54 20 70 6f 6f 6c 20 6f 66 20 33 32 20 49 50 20 61 64 64 72 65 73 73 65 73 | urce.NAT.pool.of.32.IP.addresses |
| 48d20 | 20 69 73 20 72 65 63 6f 6d 6d 65 6e 64 65 64 2e 00 45 78 61 6d 70 6c 65 3a 20 49 66 20 49 44 20 | .is.recommended..Example:.If.ID. |
| 48d40 | 69 73 20 31 20 61 6e 64 20 74 68 65 20 63 6c 69 65 6e 74 20 69 73 20 64 65 6c 65 67 61 74 65 64 | is.1.and.the.client.is.delegated |
| 48d60 | 20 61 6e 20 49 50 76 36 20 70 72 65 66 69 78 20 32 30 30 31 3a 64 62 38 3a 66 66 66 66 3a 3a 2f | .an.IPv6.prefix.2001:db8:ffff::/ |
| 48d80 | 34 38 2c 20 64 68 63 70 36 63 20 77 69 6c 6c 20 63 6f 6d 62 69 6e 65 20 74 68 65 20 74 77 6f 20 | 48,.dhcp6c.will.combine.the.two. |
| 48da0 | 76 61 6c 75 65 73 20 69 6e 74 6f 20 61 20 73 69 6e 67 6c 65 20 49 50 76 36 20 70 72 65 66 69 78 | values.into.a.single.IPv6.prefix |
| 48dc0 | 2c 20 32 30 30 31 3a 64 62 38 3a 66 66 66 66 3a 31 3a 3a 2f 36 34 2c 20 61 6e 64 20 77 69 6c 6c | ,.2001:db8:ffff:1::/64,.and.will |
| 48de0 | 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 70 72 65 66 69 78 20 6f 6e 20 74 68 65 20 73 70 65 | .configure.the.prefix.on.the.spe |
| 48e00 | 63 69 66 69 65 64 20 69 6e 74 65 72 66 61 63 65 2e 00 45 78 61 6d 70 6c 65 3a 20 4d 69 72 72 6f | cified.interface..Example:.Mirro |
| 48e20 | 72 20 74 68 65 20 69 6e 62 6f 75 6e 64 20 74 72 61 66 66 69 63 20 6f 66 20 60 62 6f 6e 64 31 60 | r.the.inbound.traffic.of.`bond1` |
| 48e40 | 20 70 6f 72 74 20 74 6f 20 60 65 74 68 33 60 00 45 78 61 6d 70 6c 65 3a 20 4d 69 72 72 6f 72 20 | .port.to.`eth3`.Example:.Mirror. |
| 48e60 | 74 68 65 20 69 6e 62 6f 75 6e 64 20 74 72 61 66 66 69 63 20 6f 66 20 60 62 72 31 60 20 70 6f 72 | the.inbound.traffic.of.`br1`.por |
| 48e80 | 74 20 74 6f 20 60 65 74 68 33 60 00 45 78 61 6d 70 6c 65 3a 20 4d 69 72 72 6f 72 20 74 68 65 20 | t.to.`eth3`.Example:.Mirror.the. |
| 48ea0 | 69 6e 62 6f 75 6e 64 20 74 72 61 66 66 69 63 20 6f 66 20 60 65 74 68 31 60 20 70 6f 72 74 20 74 | inbound.traffic.of.`eth1`.port.t |
| 48ec0 | 6f 20 60 65 74 68 33 60 00 45 78 61 6d 70 6c 65 3a 20 4d 69 72 72 6f 72 20 74 68 65 20 6f 75 74 | o.`eth3`.Example:.Mirror.the.out |
| 48ee0 | 62 6f 75 6e 64 20 74 72 61 66 66 69 63 20 6f 66 20 60 62 6f 6e 64 31 60 20 70 6f 72 74 20 74 6f | bound.traffic.of.`bond1`.port.to |
| 48f00 | 20 60 65 74 68 33 60 00 45 78 61 6d 70 6c 65 3a 20 4d 69 72 72 6f 72 20 74 68 65 20 6f 75 74 62 | .`eth3`.Example:.Mirror.the.outb |
| 48f20 | 6f 75 6e 64 20 74 72 61 66 66 69 63 20 6f 66 20 60 62 72 31 60 20 70 6f 72 74 20 74 6f 20 60 65 | ound.traffic.of.`br1`.port.to.`e |
| 48f40 | 74 68 33 60 00 45 78 61 6d 70 6c 65 3a 20 4d 69 72 72 6f 72 20 74 68 65 20 6f 75 74 62 6f 75 6e | th3`.Example:.Mirror.the.outboun |
| 48f60 | 64 20 74 72 61 66 66 69 63 20 6f 66 20 60 65 74 68 31 60 20 70 6f 72 74 20 74 6f 20 60 65 74 68 | d.traffic.of.`eth1`.port.to.`eth |
| 48f80 | 33 60 00 45 78 61 6d 70 6c 65 3a 20 50 72 65 66 69 78 20 4c 69 73 74 73 00 45 78 61 6d 70 6c 65 | 3`.Example:.Prefix.Lists.Example |
| 48fa0 | 3a 20 53 65 74 20 60 65 74 68 30 60 20 6d 65 6d 62 65 72 20 70 6f 72 74 20 74 6f 20 62 65 20 61 | :.Set.`eth0`.member.port.to.be.a |
| 48fc0 | 6c 6c 6f 77 65 64 20 56 4c 41 4e 20 34 00 45 78 61 6d 70 6c 65 3a 20 53 65 74 20 60 65 74 68 30 | llowed.VLAN.4.Example:.Set.`eth0 |
| 48fe0 | 60 20 6d 65 6d 62 65 72 20 70 6f 72 74 20 74 6f 20 62 65 20 61 6c 6c 6f 77 65 64 20 56 4c 41 4e | `.member.port.to.be.allowed.VLAN |
| 49000 | 20 36 2d 38 00 45 78 61 6d 70 6c 65 3a 20 53 65 74 20 60 65 74 68 30 60 20 6d 65 6d 62 65 72 20 | .6-8.Example:.Set.`eth0`.member. |
| 49020 | 70 6f 72 74 20 74 6f 20 62 65 20 6e 61 74 69 76 65 20 56 4c 41 4e 20 32 00 45 78 61 6d 70 6c 65 | port.to.be.native.VLAN.2.Example |
| 49040 | 3a 20 74 6f 20 62 65 20 61 70 70 65 6e 64 65 64 20 69 73 20 73 65 74 20 74 6f 20 60 60 76 79 6f | :.to.be.appended.is.set.to.``vyo |
| 49060 | 73 2e 6e 65 74 60 60 20 61 6e 64 20 74 68 65 20 55 52 4c 20 72 65 63 65 69 76 65 64 20 69 73 20 | s.net``.and.the.URL.received.is. |
| 49080 | 60 60 77 77 77 2f 66 6f 6f 2e 68 74 6d 6c 60 60 2c 20 74 68 65 20 73 79 73 74 65 6d 20 77 69 6c | ``www/foo.html``,.the.system.wil |
| 490a0 | 6c 20 75 73 65 20 74 68 65 20 67 65 6e 65 72 61 74 65 64 2c 20 66 69 6e 61 6c 20 55 52 4c 20 6f | l.use.the.generated,.final.URL.o |
| 490c0 | 66 20 60 60 77 77 77 2e 76 79 6f 73 2e 6e 65 74 2f 66 6f 6f 2e 68 74 6d 6c 60 60 2e 00 45 78 61 | f.``www.vyos.net/foo.html``..Exa |
| 490e0 | 6d 70 6c 65 73 00 45 78 61 6d 70 6c 65 73 20 6f 66 20 70 6f 6c 69 63 69 65 73 20 75 73 61 67 65 | mples.Examples.of.policies.usage |
| 49100 | 3a 00 45 78 61 6d 70 6c 65 73 3a 00 45 78 63 6c 75 64 65 20 49 50 20 61 64 64 72 65 73 73 65 73 | :.Examples:.Exclude.IP.addresses |
| 49120 | 20 66 72 6f 6d 20 60 60 56 52 52 50 20 70 61 63 6b 65 74 73 60 60 2e 20 54 68 69 73 20 6f 70 74 | .from.``VRRP.packets``..This.opt |
| 49140 | 69 6f 6e 20 60 60 65 78 63 6c 75 64 65 64 2d 61 64 64 72 65 73 73 60 60 20 69 73 20 75 73 65 64 | ion.``excluded-address``.is.used |
| 49160 | 20 77 68 65 6e 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 73 65 74 20 49 50 76 34 20 2b 20 49 50 76 | .when.you.want.to.set.IPv4.+.IPv |
| 49180 | 36 20 61 64 64 72 65 73 73 65 73 20 6f 6e 20 74 68 65 20 73 61 6d 65 20 76 69 72 74 75 61 6c 20 | 6.addresses.on.the.same.virtual. |
| 491a0 | 69 6e 74 65 72 66 61 63 65 20 6f 72 20 77 68 65 6e 20 75 73 65 64 20 6d 6f 72 65 20 74 68 61 6e | interface.or.when.used.more.than |
| 491c0 | 20 32 30 20 49 50 20 61 64 64 72 65 73 73 65 73 2e 00 45 78 63 6c 75 64 65 20 60 3c 65 78 63 6c | .20.IP.addresses..Exclude.`<excl |
| 491e0 | 75 64 65 2d 70 72 65 66 69 78 3e 60 20 66 72 6f 6d 20 60 3c 70 64 2d 70 72 65 66 69 78 3e 60 2e | ude-prefix>`.from.`<pd-prefix>`. |
| 49200 | 00 45 78 63 6c 75 64 65 20 61 64 64 72 65 73 73 00 45 78 63 6c 75 64 65 20 74 72 61 66 66 69 63 | .Exclude.address.Exclude.traffic |
| 49220 | 00 45 78 69 74 20 70 6f 6c 69 63 79 20 6f 6e 20 6d 61 74 63 68 3a 20 67 6f 20 74 6f 20 6e 65 78 | .Exit.policy.on.match:.go.to.nex |
| 49240 | 74 20 73 65 71 75 65 6e 63 65 20 6e 75 6d 62 65 72 2e 00 45 78 69 74 20 70 6f 6c 69 63 79 20 6f | t.sequence.number..Exit.policy.o |
| 49260 | 6e 20 6d 61 74 63 68 3a 20 67 6f 20 74 6f 20 72 75 6c 65 20 3c 31 2d 36 35 35 33 35 3e 00 45 78 | n.match:.go.to.rule.<1-65535>.Ex |
| 49280 | 70 65 64 69 74 65 64 20 66 6f 72 77 61 72 64 69 6e 67 20 28 45 46 29 00 45 78 70 6c 61 6e 61 74 | pedited.forwarding.(EF).Explanat |
| 492a0 | 69 6f 6e 00 45 78 70 6c 69 63 69 74 6c 79 20 64 65 63 6c 61 72 65 20 49 44 20 66 6f 72 20 74 68 | ion.Explicitly.declare.ID.for.th |
| 492c0 | 69 73 20 6d 69 6e 69 6f 6e 20 74 6f 20 75 73 65 20 28 64 65 66 61 75 6c 74 3a 20 68 6f 73 74 6e | is.minion.to.use.(default:.hostn |
| 492e0 | 61 6d 65 29 00 45 78 74 65 72 6e 61 6c 20 44 48 43 50 76 36 20 73 65 72 76 65 72 20 69 73 20 61 | ame).External.DHCPv6.server.is.a |
| 49300 | 74 20 32 30 30 31 3a 64 62 38 3a 3a 34 00 45 78 74 65 72 6e 61 6c 20 52 6f 75 74 65 20 53 75 6d | t.2001:db8::4.External.Route.Sum |
| 49320 | 6d 61 72 69 73 61 74 69 6f 6e 00 45 78 74 65 72 6e 61 6c 20 61 64 64 72 65 73 73 20 73 65 71 75 | marisation.External.address.sequ |
| 49340 | 65 6e 63 65 73 00 45 78 74 65 72 6e 61 6c 20 61 74 74 61 63 6b 3a 20 61 6e 20 61 74 74 61 63 6b | ences.External.attack:.an.attack |
| 49360 | 20 66 72 6f 6d 20 74 68 65 20 69 6e 74 65 72 6e 65 74 20 74 6f 77 61 72 64 73 20 61 6e 20 69 6e | .from.the.internet.towards.an.in |
| 49380 | 74 65 72 6e 61 6c 20 49 50 20 69 73 20 69 64 65 6e 74 69 66 79 2e 20 49 6e 20 74 68 69 73 20 63 | ternal.IP.is.identify..In.this.c |
| 493a0 | 61 73 65 2c 20 61 6c 6c 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 74 6f 77 61 72 64 73 20 73 75 63 | ase,.all.connections.towards.suc |
| 493c0 | 68 20 49 50 20 77 69 6c 6c 20 62 65 20 62 6c 6f 63 6b 65 64 00 46 51 2d 43 6f 44 65 6c 00 46 51 | h.IP.will.be.blocked.FQ-CoDel.FQ |
| 493e0 | 2d 43 6f 44 65 6c 20 66 69 67 68 74 73 20 62 75 66 66 65 72 62 6c 6f 61 74 20 61 6e 64 20 72 65 | -CoDel.fights.bufferbloat.and.re |
| 49400 | 64 75 63 65 73 20 6c 61 74 65 6e 63 79 20 77 69 74 68 6f 75 74 20 74 68 65 20 6e 65 65 64 20 6f | duces.latency.without.the.need.o |
| 49420 | 66 20 63 6f 6d 70 6c 65 78 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 73 2e 20 49 74 20 68 61 73 | f.complex.configurations..It.has |
| 49440 | 20 62 65 63 6f 6d 65 20 74 68 65 20 6e 65 77 20 64 65 66 61 75 6c 74 20 51 75 65 75 65 69 6e 67 | .become.the.new.default.Queueing |
| 49460 | 20 44 69 73 63 69 70 6c 69 6e 65 20 66 6f 72 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 73 20 6f | .Discipline.for.the.interfaces.o |
| 49480 | 66 20 73 6f 6d 65 20 47 4e 55 2f 4c 69 6e 75 78 20 64 69 73 74 72 69 62 75 74 69 6f 6e 73 2e 00 | f.some.GNU/Linux.distributions.. |
| 494a0 | 46 51 2d 43 6f 44 65 6c 20 69 73 20 62 61 73 65 64 20 6f 6e 20 61 20 6d 6f 64 69 66 69 65 64 20 | FQ-CoDel.is.based.on.a.modified. |
| 494c0 | 44 65 66 69 63 69 74 20 52 6f 75 6e 64 20 52 6f 62 69 6e 20 28 44 52 52 5f 29 20 71 75 65 75 65 | Deficit.Round.Robin.(DRR_).queue |
| 494e0 | 20 73 63 68 65 64 75 6c 65 72 20 77 69 74 68 20 74 68 65 20 43 6f 44 65 6c 20 41 63 74 69 76 65 | .scheduler.with.the.CoDel.Active |
| 49500 | 20 51 75 65 75 65 20 4d 61 6e 61 67 65 6d 65 6e 74 20 28 41 51 4d 29 20 61 6c 67 6f 72 69 74 68 | .Queue.Management.(AQM).algorith |
| 49520 | 6d 20 6f 70 65 72 61 74 69 6e 67 20 6f 6e 20 65 61 63 68 20 71 75 65 75 65 2e 00 46 51 2d 43 6f | m.operating.on.each.queue..FQ-Co |
| 49540 | 44 65 6c 20 69 73 20 74 75 6e 65 64 20 74 6f 20 72 75 6e 20 6f 6b 20 77 69 74 68 20 69 74 73 20 | Del.is.tuned.to.run.ok.with.its. |
| 49560 | 64 65 66 61 75 6c 74 20 70 61 72 61 6d 65 74 65 72 73 20 61 74 20 31 30 47 62 69 74 20 73 70 65 | default.parameters.at.10Gbit.spe |
| 49580 | 65 64 73 2e 20 49 74 20 6d 69 67 68 74 20 77 6f 72 6b 20 6f 6b 20 74 6f 6f 20 61 74 20 6f 74 68 | eds..It.might.work.ok.too.at.oth |
| 495a0 | 65 72 20 73 70 65 65 64 73 20 77 69 74 68 6f 75 74 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 61 6e | er.speeds.without.configuring.an |
| 495c0 | 79 74 68 69 6e 67 2c 20 62 75 74 20 68 65 72 65 20 77 65 20 77 69 6c 6c 20 65 78 70 6c 61 69 6e | ything,.but.here.we.will.explain |
| 495e0 | 20 73 6f 6d 65 20 63 61 73 65 73 20 77 68 65 6e 20 79 6f 75 20 6d 69 67 68 74 20 77 61 6e 74 20 | .some.cases.when.you.might.want. |
| 49600 | 74 6f 20 74 75 6e 65 20 69 74 73 20 70 61 72 61 6d 65 74 65 72 73 2e 00 46 51 2d 43 6f 64 65 6c | to.tune.its.parameters..FQ-Codel |
| 49620 | 20 69 73 20 61 20 6e 6f 6e 2d 73 68 61 70 69 6e 67 20 28 77 6f 72 6b 2d 63 6f 6e 73 65 72 76 69 | .is.a.non-shaping.(work-conservi |
| 49640 | 6e 67 29 20 70 6f 6c 69 63 79 2c 20 73 6f 20 69 74 20 77 69 6c 6c 20 6f 6e 6c 79 20 62 65 20 75 | ng).policy,.so.it.will.only.be.u |
| 49660 | 73 65 66 75 6c 20 69 66 20 79 6f 75 72 20 6f 75 74 67 6f 69 6e 67 20 69 6e 74 65 72 66 61 63 65 | seful.if.your.outgoing.interface |
| 49680 | 20 69 73 20 72 65 61 6c 6c 79 20 66 75 6c 6c 2e 20 49 66 20 69 74 20 69 73 20 6e 6f 74 2c 20 56 | .is.really.full..If.it.is.not,.V |
| 496a0 | 79 4f 53 20 77 69 6c 6c 20 6e 6f 74 20 6f 77 6e 20 74 68 65 20 71 75 65 75 65 20 61 6e 64 20 46 | yOS.will.not.own.the.queue.and.F |
| 496c0 | 51 2d 43 6f 64 65 6c 20 77 69 6c 6c 20 68 61 76 65 20 6e 6f 20 65 66 66 65 63 74 2e 20 49 66 20 | Q-Codel.will.have.no.effect..If. |
| 496e0 | 74 68 65 72 65 20 69 73 20 62 61 6e 64 77 69 64 74 68 20 61 76 61 69 6c 61 62 6c 65 20 6f 6e 20 | there.is.bandwidth.available.on. |
| 49700 | 74 68 65 20 70 68 79 73 69 63 61 6c 20 6c 69 6e 6b 2c 20 79 6f 75 20 63 61 6e 20 65 6d 62 65 64 | the.physical.link,.you.can.embed |
| 49720 | 5f 20 46 51 2d 43 6f 64 65 6c 20 69 6e 74 6f 20 61 20 63 6c 61 73 73 66 75 6c 20 73 68 61 70 69 | _.FQ-Codel.into.a.classful.shapi |
| 49740 | 6e 67 20 70 6f 6c 69 63 79 20 74 6f 20 6d 61 6b 65 20 73 75 72 65 20 69 74 20 6f 77 6e 73 20 74 | ng.policy.to.make.sure.it.owns.t |
| 49760 | 68 65 20 71 75 65 75 65 2e 20 49 66 20 79 6f 75 20 61 72 65 20 6e 6f 74 20 73 75 72 65 20 69 66 | he.queue..If.you.are.not.sure.if |
| 49780 | 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 65 6d 62 65 64 20 79 6f 75 72 20 46 51 2d 43 6f 44 65 6c | .you.need.to.embed.your.FQ-CoDel |
| 497a0 | 20 70 6f 6c 69 63 79 20 69 6e 74 6f 20 61 20 53 68 61 70 65 72 2c 20 64 6f 20 69 74 2e 00 46 52 | .policy.into.a.Shaper,.do.it..FR |
| 497c0 | 52 00 46 52 52 20 6f 66 66 65 72 73 20 6f 6e 6c 79 20 70 61 72 74 69 61 6c 20 73 75 70 70 6f 72 | R.FRR.offers.only.partial.suppor |
| 497e0 | 74 20 66 6f 72 20 73 6f 6d 65 20 6f 66 20 74 68 65 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 | t.for.some.of.the.routing.protoc |
| 49800 | 6f 6c 20 65 78 74 65 6e 73 69 6f 6e 73 20 74 68 61 74 20 61 72 65 20 75 73 65 64 20 77 69 74 68 | ol.extensions.that.are.used.with |
| 49820 | 20 4d 50 4c 53 2d 54 45 3b 20 69 74 20 64 6f 65 73 20 6e 6f 74 20 73 75 70 70 6f 72 74 20 61 20 | .MPLS-TE;.it.does.not.support.a. |
| 49840 | 63 6f 6d 70 6c 65 74 65 20 52 53 56 50 2d 54 45 20 73 6f 6c 75 74 69 6f 6e 2e 00 46 52 52 20 73 | complete.RSVP-TE.solution..FRR.s |
| 49860 | 75 70 70 6f 72 74 73 20 61 20 6e 65 77 20 77 61 79 20 6f 66 20 63 6f 6e 66 69 67 75 72 69 6e 67 | upports.a.new.way.of.configuring |
| 49880 | 20 56 4c 41 4e 2d 74 6f 2d 56 4e 49 20 6d 61 70 70 69 6e 67 73 20 66 6f 72 20 45 56 50 4e 2d 56 | .VLAN-to-VNI.mappings.for.EVPN-V |
| 498a0 | 58 4c 41 4e 2c 20 77 68 65 6e 20 77 6f 72 6b 69 6e 67 20 77 69 74 68 20 74 68 65 20 4c 69 6e 75 | XLAN,.when.working.with.the.Linu |
| 498c0 | 78 20 6b 65 72 6e 65 6c 2e 20 49 6e 20 74 68 69 73 20 6e 65 77 20 77 61 79 2c 20 74 68 65 20 6d | x.kernel..In.this.new.way,.the.m |
| 498e0 | 61 70 70 69 6e 67 20 6f 66 20 61 20 56 4c 41 4e 20 74 6f 20 61 20 3a 61 62 62 72 3a 60 56 4e 49 | apping.of.a.VLAN.to.a.:abbr:`VNI |
| 49900 | 20 28 56 58 4c 41 4e 20 4e 65 74 77 6f 72 6b 20 49 64 65 6e 74 69 66 69 65 72 20 28 6f 72 20 56 | .(VXLAN.Network.Identifier.(or.V |
| 49920 | 58 4c 41 4e 20 53 65 67 6d 65 6e 74 20 49 44 29 29 60 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 | XLAN.Segment.ID))`.is.configured |
| 49940 | 20 61 67 61 69 6e 73 74 20 61 20 63 6f 6e 74 61 69 6e 65 72 20 56 58 4c 41 4e 20 69 6e 74 65 72 | .against.a.container.VXLAN.inter |
| 49960 | 66 61 63 65 20 77 68 69 63 68 20 69 73 20 72 65 66 65 72 72 65 64 20 74 6f 20 61 73 20 61 20 3a | face.which.is.referred.to.as.a.: |
| 49980 | 61 62 62 72 3a 60 53 56 44 20 28 53 69 6e 67 6c 65 20 56 58 4c 41 4e 20 64 65 76 69 63 65 29 60 | abbr:`SVD.(Single.VXLAN.device)` |
| 499a0 | 2e 00 46 54 50 20 64 61 65 6d 6f 6e 00 46 61 63 69 6c 69 74 69 65 73 00 46 61 63 69 6c 69 74 69 | ..FTP.daemon.Facilities.Faciliti |
| 499c0 | 65 73 20 63 61 6e 20 62 65 20 61 64 6a 75 73 74 65 64 20 74 6f 20 6d 65 65 74 20 74 68 65 20 6e | es.can.be.adjusted.to.meet.the.n |
| 499e0 | 65 65 64 73 20 6f 66 20 74 68 65 20 75 73 65 72 3a 00 46 61 63 69 6c 69 74 79 20 43 6f 64 65 00 | eeds.of.the.user:.Facility.Code. |
| 49a00 | 46 61 69 6c 6f 76 65 72 00 46 61 69 6c 6f 76 65 72 20 52 6f 75 74 65 73 00 46 61 69 6c 6f 76 65 | Failover.Failover.Routes.Failove |
| 49a20 | 72 20 6d 65 63 68 61 6e 69 73 6d 20 74 6f 20 75 73 65 20 66 6f 72 20 63 6f 6e 6e 74 72 61 63 6b | r.mechanism.to.use.for.conntrack |
| 49a40 | 2d 73 79 6e 63 2e 00 46 61 69 6c 6f 76 65 72 20 72 6f 75 74 65 73 20 61 72 65 20 6d 61 6e 75 61 | -sync..Failover.routes.are.manua |
| 49a60 | 6c 6c 79 20 63 6f 6e 66 69 67 75 72 65 64 20 72 6f 75 74 65 73 2c 20 62 75 74 20 74 68 65 79 20 | lly.configured.routes,.but.they. |
| 49a80 | 69 6e 73 74 61 6c 6c 20 74 6f 20 74 68 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 69 66 20 | install.to.the.routing.table.if. |
| 49aa0 | 74 68 65 20 68 65 61 6c 74 68 2d 63 68 65 63 6b 20 74 61 72 67 65 74 20 69 73 20 61 6c 69 76 65 | the.health-check.target.is.alive |
| 49ac0 | 2e 20 49 66 20 74 68 65 20 74 61 72 67 65 74 20 69 73 20 6e 6f 74 20 61 6c 69 76 65 20 74 68 65 | ..If.the.target.is.not.alive.the |
| 49ae0 | 20 72 6f 75 74 65 20 69 73 20 72 65 6d 6f 76 65 64 20 66 72 6f 6d 20 74 68 65 20 72 6f 75 74 69 | .route.is.removed.from.the.routi |
| 49b00 | 6e 67 20 74 61 62 6c 65 20 75 6e 74 69 6c 20 74 68 65 20 74 61 72 67 65 74 20 77 69 6c 6c 20 62 | ng.table.until.the.target.will.b |
| 49b20 | 65 20 61 76 61 69 6c 61 62 6c 65 2e 00 46 61 69 6c 6f 76 65 72 20 72 6f 75 74 65 73 20 61 72 65 | e.available..Failover.routes.are |
| 49b40 | 20 6d 61 6e 75 61 6c 6c 79 20 63 6f 6e 66 69 67 75 72 65 64 20 72 6f 75 74 65 73 2c 20 62 75 74 | .manually.configured.routes,.but |
| 49b60 | 20 74 68 65 79 20 6f 6e 6c 79 20 69 6e 73 74 61 6c 6c 20 74 6f 20 74 68 65 20 72 6f 75 74 69 6e | .they.only.install.to.the.routin |
| 49b80 | 67 20 74 61 62 6c 65 20 69 66 20 74 68 65 20 68 65 61 6c 74 68 2d 63 68 65 63 6b 20 74 61 72 67 | g.table.if.the.health-check.targ |
| 49ba0 | 65 74 20 69 73 20 61 6c 69 76 65 2e 20 49 66 20 74 68 65 20 74 61 72 67 65 74 20 69 73 20 6e 6f | et.is.alive..If.the.target.is.no |
| 49bc0 | 74 20 61 6c 69 76 65 20 74 68 65 20 72 6f 75 74 65 20 69 73 20 72 65 6d 6f 76 65 64 20 66 72 6f | t.alive.the.route.is.removed.fro |
| 49be0 | 6d 20 74 68 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 75 6e 74 69 6c 20 74 68 65 20 74 61 | m.the.routing.table.until.the.ta |
| 49c00 | 72 67 65 74 20 62 65 63 6f 6d 65 73 20 61 76 61 69 6c 61 62 6c 65 2e 00 46 61 69 72 20 51 75 65 | rget.becomes.available..Fair.Que |
| 49c20 | 75 65 00 46 61 69 72 20 51 75 65 75 65 20 69 73 20 61 20 6e 6f 6e 2d 73 68 61 70 69 6e 67 20 28 | ue.Fair.Queue.is.a.non-shaping.( |
| 49c40 | 77 6f 72 6b 2d 63 6f 6e 73 65 72 76 69 6e 67 29 20 70 6f 6c 69 63 79 2c 20 73 6f 20 69 74 20 77 | work-conserving).policy,.so.it.w |
| 49c60 | 69 6c 6c 20 6f 6e 6c 79 20 62 65 20 75 73 65 66 75 6c 20 69 66 20 79 6f 75 72 20 6f 75 74 67 6f | ill.only.be.useful.if.your.outgo |
| 49c80 | 69 6e 67 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 72 65 61 6c 6c 79 20 66 75 6c 6c 2e 20 49 66 | ing.interface.is.really.full..If |
| 49ca0 | 20 69 74 20 69 73 20 6e 6f 74 2c 20 56 79 4f 53 20 77 69 6c 6c 20 6e 6f 74 20 6f 77 6e 20 74 68 | .it.is.not,.VyOS.will.not.own.th |
| 49cc0 | 65 20 71 75 65 75 65 20 61 6e 64 20 46 61 69 72 20 51 75 65 75 65 20 77 69 6c 6c 20 68 61 76 65 | e.queue.and.Fair.Queue.will.have |
| 49ce0 | 20 6e 6f 20 65 66 66 65 63 74 2e 20 49 66 20 74 68 65 72 65 20 69 73 20 62 61 6e 64 77 69 64 74 | .no.effect..If.there.is.bandwidt |
| 49d00 | 68 20 61 76 61 69 6c 61 62 6c 65 20 6f 6e 20 74 68 65 20 70 68 79 73 69 63 61 6c 20 6c 69 6e 6b | h.available.on.the.physical.link |
| 49d20 | 2c 20 79 6f 75 20 63 61 6e 20 65 6d 62 65 64 5f 20 46 61 69 72 2d 51 75 65 75 65 20 69 6e 74 6f | ,.you.can.embed_.Fair-Queue.into |
| 49d40 | 20 61 20 63 6c 61 73 73 66 75 6c 20 73 68 61 70 69 6e 67 20 70 6f 6c 69 63 79 20 74 6f 20 6d 61 | .a.classful.shaping.policy.to.ma |
| 49d60 | 6b 65 20 73 75 72 65 20 69 74 20 6f 77 6e 73 20 74 68 65 20 71 75 65 75 65 2e 00 46 61 69 72 20 | ke.sure.it.owns.the.queue..Fair. |
| 49d80 | 51 75 65 75 65 20 69 73 20 61 20 77 6f 72 6b 2d 63 6f 6e 73 65 72 76 69 6e 67 20 73 63 68 65 64 | Queue.is.a.work-conserving.sched |
| 49da0 | 75 6c 65 72 20 77 68 69 63 68 20 73 63 68 65 64 75 6c 65 73 20 74 68 65 20 74 72 61 6e 73 6d 69 | uler.which.schedules.the.transmi |
| 49dc0 | 73 73 69 6f 6e 20 6f 66 20 70 61 63 6b 65 74 73 20 62 61 73 65 64 20 6f 6e 20 66 6c 6f 77 73 2c | ssion.of.packets.based.on.flows, |
| 49de0 | 20 74 68 61 74 20 69 73 2c 20 69 74 20 62 61 6c 61 6e 63 65 73 20 74 72 61 66 66 69 63 20 64 69 | .that.is,.it.balances.traffic.di |
| 49e00 | 73 74 72 69 62 75 74 69 6e 67 20 69 74 20 74 68 72 6f 75 67 68 20 64 69 66 66 65 72 65 6e 74 20 | stributing.it.through.different. |
| 49e20 | 73 75 62 2d 71 75 65 75 65 73 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 65 6e 73 75 72 65 20 66 61 | sub-queues.in.order.to.ensure.fa |
| 49e40 | 69 72 6e 65 73 73 20 73 6f 20 74 68 61 74 20 65 61 63 68 20 66 6c 6f 77 20 69 73 20 61 62 6c 65 | irness.so.that.each.flow.is.able |
| 49e60 | 20 74 6f 20 73 65 6e 64 20 64 61 74 61 20 69 6e 20 74 75 72 6e 2c 20 70 72 65 76 65 6e 74 69 6e | .to.send.data.in.turn,.preventin |
| 49e80 | 67 20 61 6e 79 20 73 69 6e 67 6c 65 20 6f 6e 65 20 66 72 6f 6d 20 64 72 6f 77 6e 69 6e 67 20 6f | g.any.single.one.from.drowning.o |
| 49ea0 | 75 74 20 74 68 65 20 72 65 73 74 2e 00 46 61 73 74 4e 65 74 4d 6f 6e 00 46 61 73 74 4e 65 74 4d | ut.the.rest..FastNetMon.FastNetM |
| 49ec0 | 6f 6e 20 69 73 20 61 20 68 69 67 68 2d 70 65 72 66 6f 72 6d 61 6e 63 65 20 44 44 6f 53 20 64 65 | on.is.a.high-performance.DDoS.de |
| 49ee0 | 74 65 63 74 6f 72 2f 73 65 6e 73 6f 72 20 62 75 69 6c 74 20 6f 6e 20 74 6f 70 20 6f 66 20 6d 75 | tector/sensor.built.on.top.of.mu |
| 49f00 | 6c 74 69 70 6c 65 20 70 61 63 6b 65 74 20 63 61 70 74 75 72 65 20 65 6e 67 69 6e 65 73 3a 20 4e | ltiple.packet.capture.engines:.N |
| 49f20 | 65 74 46 6c 6f 77 2c 20 49 50 46 49 58 2c 20 73 46 6c 6f 77 2c 20 41 46 5f 50 41 43 4b 45 54 20 | etFlow,.IPFIX,.sFlow,.AF_PACKET. |
| 49f40 | 28 70 6f 72 74 20 6d 69 72 72 6f 72 29 2e 20 49 74 20 63 61 6e 20 64 65 74 65 63 74 20 68 6f 73 | (port.mirror)..It.can.detect.hos |
| 49f60 | 74 73 20 69 6e 20 74 68 65 20 64 65 70 6c 6f 79 65 64 20 6e 65 74 77 6f 72 6b 20 73 65 6e 64 69 | ts.in.the.deployed.network.sendi |
| 49f80 | 6e 67 20 6f 72 20 72 65 63 65 69 76 69 6e 67 20 6c 61 72 67 65 20 76 6f 6c 75 6d 65 73 20 6f 66 | ng.or.receiving.large.volumes.of |
| 49fa0 | 20 74 72 61 66 66 69 63 2c 20 70 61 63 6b 65 74 73 2f 62 79 74 65 73 2f 66 6c 6f 77 73 20 70 65 | .traffic,.packets/bytes/flows.pe |
| 49fc0 | 72 20 73 65 63 6f 6e 64 20 61 6e 64 20 70 65 72 66 6f 72 6d 20 61 20 63 6f 6e 66 69 67 75 72 61 | r.second.and.perform.a.configura |
| 49fe0 | 62 6c 65 20 61 63 74 69 6f 6e 20 74 6f 20 68 61 6e 64 6c 65 20 74 68 61 74 20 65 76 65 6e 74 2c | ble.action.to.handle.that.event, |
| 4a000 | 20 73 75 63 68 20 61 73 20 63 61 6c 6c 69 6e 67 20 61 20 63 75 73 74 6f 6d 20 73 63 72 69 70 74 | .such.as.calling.a.custom.script |
| 4a020 | 2e 00 46 65 61 74 75 72 65 73 20 6f 66 20 74 68 65 20 43 75 72 72 65 6e 74 20 49 6d 70 6c 65 6d | ..Features.of.the.Current.Implem |
| 4a040 | 65 6e 74 61 74 69 6f 6e 00 46 69 65 6c 64 00 46 69 6c 65 20 69 64 65 6e 74 69 66 69 65 64 20 62 | entation.Field.File.identified.b |
| 4a060 | 79 20 60 3c 66 69 6c 65 6e 61 6d 65 3e 60 20 63 6f 6e 74 61 69 6e 69 6e 67 20 74 68 65 20 54 53 | y.`<filename>`.containing.the.TS |
| 4a080 | 49 47 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6b 65 79 20 66 6f 72 20 52 46 43 32 31 33 | IG.authentication.key.for.RFC213 |
| 4a0a0 | 36 20 6e 73 75 70 64 61 74 65 20 6f 6e 20 72 65 6d 6f 74 65 20 44 4e 53 20 73 65 72 76 65 72 2e | 6.nsupdate.on.remote.DNS.server. |
| 4a0c0 | 00 46 69 6c 65 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 60 3c 6b 65 79 66 69 6c 65 3e 60 20 | .File.identified.by.`<keyfile>`. |
| 4a0e0 | 63 6f 6e 74 61 69 6e 69 6e 67 20 74 68 65 20 73 65 63 72 65 74 20 52 4e 44 43 20 6b 65 79 20 73 | containing.the.secret.RNDC.key.s |
| 4a100 | 68 61 72 65 64 20 77 69 74 68 20 72 65 6d 6f 74 65 20 44 4e 53 20 73 65 72 76 65 72 2e 00 46 69 | hared.with.remote.DNS.server..Fi |
| 4a120 | 6c 74 65 72 20 54 79 70 65 2d 33 20 73 75 6d 6d 61 72 79 2d 4c 53 41 73 20 61 6e 6e 6f 75 6e 63 | lter.Type-3.summary-LSAs.announc |
| 4a140 | 65 64 20 74 6f 20 6f 74 68 65 72 20 61 72 65 61 73 20 6f 72 69 67 69 6e 61 74 65 64 20 66 72 6f | ed.to.other.areas.originated.fro |
| 4a160 | 6d 20 69 6e 74 72 61 2d 20 61 72 65 61 20 70 61 74 68 73 20 66 72 6f 6d 20 73 70 65 63 69 66 69 | m.intra-.area.paths.from.specifi |
| 4a180 | 65 64 20 61 72 65 61 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 6d 61 6b 65 73 20 73 65 6e 73 | ed.area..This.command.makes.sens |
| 4a1a0 | 65 20 69 6e 20 41 42 52 20 6f 6e 6c 79 2e 00 46 69 6c 74 65 72 20 73 79 73 6c 6f 67 20 6d 65 73 | e.in.ABR.only..Filter.syslog.mes |
| 4a1c0 | 73 61 67 65 73 20 62 61 73 65 64 20 6f 6e 20 66 61 63 69 6c 69 74 79 20 61 6e 64 20 6c 65 76 65 | sages.based.on.facility.and.leve |
| 4a1e0 | 6c 2e 00 46 69 6c 74 65 72 20 74 72 61 66 66 69 63 20 62 61 73 65 64 20 6f 6e 20 73 6f 75 72 63 | l..Filter.traffic.based.on.sourc |
| 4a200 | 65 2f 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 2e 00 46 69 6c 74 65 72 2d 49 64 | e/destination.address..Filter-Id |
| 4a220 | 3d 32 30 30 30 2f 33 30 30 30 20 28 6d 65 61 6e 73 20 32 30 30 30 4b 62 69 74 20 64 6f 77 6e 2d | =2000/3000.(means.2000Kbit.down- |
| 4a240 | 73 74 72 65 61 6d 20 72 61 74 65 20 61 6e 64 20 33 30 30 30 4b 62 69 74 20 75 70 2d 73 74 72 65 | stream.rate.and.3000Kbit.up-stre |
| 4a260 | 61 6d 20 72 61 74 65 29 00 46 69 6c 74 65 72 2d 49 64 3d 35 30 30 30 2f 34 30 30 30 20 28 6d 65 | am.rate).Filter-Id=5000/4000.(me |
| 4a280 | 61 6e 73 20 35 30 30 30 4b 62 69 74 20 64 6f 77 6e 2d 73 74 72 65 61 6d 20 72 61 74 65 20 61 6e | ans.5000Kbit.down-stream.rate.an |
| 4a2a0 | 64 20 34 30 30 30 4b 62 69 74 20 75 70 2d 73 74 72 65 61 6d 20 72 61 74 65 29 20 49 66 20 61 74 | d.4000Kbit.up-stream.rate).If.at |
| 4a2c0 | 74 72 69 62 75 74 65 20 46 69 6c 74 65 72 2d 49 64 20 72 65 64 65 66 69 6e 65 64 2c 20 72 65 70 | tribute.Filter-Id.redefined,.rep |
| 4a2e0 | 6c 61 63 65 20 69 74 20 69 6e 20 52 41 44 49 55 53 20 43 6f 41 20 72 65 71 75 65 73 74 2e 00 46 | lace.it.in.RADIUS.CoA.request..F |
| 4a300 | 69 6c 74 65 72 69 6e 67 00 46 69 6c 74 65 72 69 6e 67 20 69 73 20 75 73 65 64 20 66 6f 72 20 62 | iltering.Filtering.is.used.for.b |
| 4a320 | 6f 74 68 20 69 6e 70 75 74 20 61 6e 64 20 6f 75 74 70 75 74 20 6f 66 20 74 68 65 20 72 6f 75 74 | oth.input.and.output.of.the.rout |
| 4a340 | 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2e 20 4f 6e 63 65 20 66 69 6c 74 65 72 69 6e 67 20 | ing.information..Once.filtering. |
| 4a360 | 69 73 20 64 65 66 69 6e 65 64 2c 20 69 74 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 64 20 69 6e | is.defined,.it.can.be.applied.in |
| 4a380 | 20 61 6e 79 20 64 69 72 65 63 74 69 6f 6e 2e 20 56 79 4f 53 20 6d 61 6b 65 73 20 66 69 6c 74 65 | .any.direction..VyOS.makes.filte |
| 4a3a0 | 72 69 6e 67 20 70 6f 73 73 69 62 6c 65 20 75 73 69 6e 67 20 61 63 6c 73 20 61 6e 64 20 70 72 65 | ring.possible.using.acls.and.pre |
| 4a3c0 | 66 69 78 20 6c 69 73 74 73 2e 00 46 69 6e 61 6c 6c 79 2c 20 74 6f 20 61 70 70 6c 79 20 74 68 65 | fix.lists..Finally,.to.apply.the |
| 4a3e0 | 20 70 6f 6c 69 63 79 20 72 6f 75 74 65 20 74 6f 20 69 6e 67 72 65 73 73 20 74 72 61 66 66 69 63 | .policy.route.to.ingress.traffic |
| 4a400 | 20 6f 6e 20 6f 75 72 20 4c 41 4e 20 69 6e 74 65 72 66 61 63 65 2c 20 77 65 20 75 73 65 3a 00 46 | .on.our.LAN.interface,.we.use:.F |
| 4a420 | 69 72 65 77 61 6c 6c 00 46 69 72 65 77 61 6c 6c 20 2d 20 49 50 76 34 20 52 75 6c 65 73 00 46 69 | irewall.Firewall.-.IPv4.Rules.Fi |
| 4a440 | 72 65 77 61 6c 6c 20 2d 20 49 50 76 36 20 52 75 6c 65 73 00 46 69 72 65 77 61 6c 6c 20 43 6f 6e | rewall.-.IPv6.Rules.Firewall.Con |
| 4a460 | 66 69 67 75 72 61 74 69 6f 6e 00 46 69 72 65 77 61 6c 6c 20 43 6f 6e 66 69 67 75 72 61 74 69 6f | figuration.Firewall.Configuratio |
| 4a480 | 6e 20 28 44 65 70 72 65 63 61 74 65 64 29 00 46 69 72 65 77 61 6c 6c 20 44 65 73 63 72 69 70 74 | n.(Deprecated).Firewall.Descript |
| 4a4a0 | 69 6f 6e 00 46 69 72 65 77 61 6c 6c 20 45 78 63 65 70 74 69 6f 6e 73 00 46 69 72 65 77 61 6c 6c | ion.Firewall.Exceptions.Firewall |
| 4a4c0 | 20 4c 6f 67 73 00 46 69 72 65 77 61 6c 6c 20 52 75 6c 65 73 00 46 69 72 65 77 61 6c 6c 20 62 61 | .Logs.Firewall.Rules.Firewall.ba |
| 4a4e0 | 73 65 20 63 68 61 69 6e 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 66 69 72 65 77 61 6c 6c 20 66 | se.chain.to.configure.firewall.f |
| 4a500 | 69 6c 74 65 72 69 6e 67 20 72 75 6c 65 73 20 66 6f 72 20 74 72 61 6e 73 69 74 20 74 72 61 66 66 | iltering.rules.for.transit.traff |
| 4a520 | 69 63 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 66 6f 72 77 61 72 | ic.is.``set.firewall.ipv4.forwar |
| 4a540 | 64 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2c 20 77 68 69 63 68 20 68 61 70 70 65 6e 73 20 69 6e | d.filter....``,.which.happens.in |
| 4a560 | 20 73 74 61 67 65 20 35 2c 20 68 69 67 68 6c 69 67 68 74 65 64 20 77 69 74 68 20 72 65 64 20 63 | .stage.5,.highlighted.with.red.c |
| 4a580 | 6f 6c 6f 72 2e 00 46 69 72 65 77 61 6c 6c 20 62 61 73 65 20 63 68 61 69 6e 20 74 6f 20 63 6f 6e | olor..Firewall.base.chain.to.con |
| 4a5a0 | 66 69 67 75 72 65 20 66 69 72 65 77 61 6c 6c 20 66 69 6c 74 65 72 69 6e 67 20 72 75 6c 65 73 20 | figure.firewall.filtering.rules. |
| 4a5c0 | 66 6f 72 20 74 72 61 6e 73 69 74 20 74 72 61 66 66 69 63 20 69 73 20 60 60 73 65 74 20 66 69 72 | for.transit.traffic.is.``set.fir |
| 4a5e0 | 65 77 61 6c 6c 20 69 70 76 36 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2c | ewall.ipv6.forward.filter....``, |
| 4a600 | 20 77 68 69 63 68 20 68 61 70 70 65 6e 73 20 69 6e 20 73 74 61 67 65 20 35 2c 20 68 69 67 68 6c | .which.happens.in.stage.5,.highl |
| 4a620 | 69 67 68 74 65 64 20 77 69 74 68 20 72 65 64 20 63 6f 6c 6f 72 2e 00 46 69 72 65 77 61 6c 6c 20 | ighted.with.red.color..Firewall. |
| 4a640 | 64 79 6e 61 6d 69 63 20 67 72 6f 75 70 73 20 61 72 65 20 64 69 66 66 65 72 65 6e 74 20 66 72 6f | dynamic.groups.are.different.fro |
| 4a660 | 6d 20 61 6c 6c 20 74 68 65 20 67 72 6f 75 70 73 20 64 65 66 69 6e 65 64 20 70 72 65 76 69 6f 75 | m.all.the.groups.defined.previou |
| 4a680 | 73 6c 79 20 62 65 63 61 75 73 65 2c 20 6e 6f 74 20 6f 6e 6c 79 20 74 68 65 79 20 63 61 6e 20 62 | sly.because,.not.only.they.can.b |
| 4a6a0 | 65 20 75 73 65 64 20 61 73 20 73 6f 75 72 63 65 2f 64 65 73 74 69 6e 61 74 69 6f 6e 20 69 6e 20 | e.used.as.source/destination.in. |
| 4a6c0 | 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 2c 20 62 75 74 20 6d 65 6d 62 65 72 73 20 6f 66 20 74 | firewall.rules,.but.members.of.t |
| 4a6e0 | 68 65 73 65 20 67 72 6f 75 70 73 20 61 72 65 20 6e 6f 74 20 64 65 66 69 6e 65 64 20 73 74 61 74 | hese.groups.are.not.defined.stat |
| 4a700 | 69 63 61 6c 6c 79 20 75 73 69 6e 67 20 76 79 6f 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e | ically.using.vyos.configuration. |
| 4a720 | 00 46 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 73 00 46 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 73 | .Firewall.groups.Firewall.groups |
| 4a740 | 20 72 65 70 72 65 73 65 6e 74 20 63 6f 6c 6c 65 63 74 69 6f 6e 73 20 6f 66 20 49 50 20 61 64 64 | .represent.collections.of.IP.add |
| 4a760 | 72 65 73 73 65 73 2c 20 6e 65 74 77 6f 72 6b 73 2c 20 70 6f 72 74 73 2c 20 6d 61 63 20 61 64 64 | resses,.networks,.ports,.mac.add |
| 4a780 | 72 65 73 73 65 73 20 6f 72 20 64 6f 6d 61 69 6e 73 2e 20 4f 6e 63 65 20 63 72 65 61 74 65 64 2c | resses.or.domains..Once.created, |
| 4a7a0 | 20 61 20 67 72 6f 75 70 20 63 61 6e 20 62 65 20 72 65 66 65 72 65 6e 63 65 64 20 62 79 20 66 69 | .a.group.can.be.referenced.by.fi |
| 4a7c0 | 72 65 77 61 6c 6c 2c 20 6e 61 74 20 61 6e 64 20 70 6f 6c 69 63 79 20 72 6f 75 74 65 20 72 75 6c | rewall,.nat.and.policy.route.rul |
| 4a7e0 | 65 73 20 61 73 20 65 69 74 68 65 72 20 61 20 73 6f 75 72 63 65 20 6f 72 20 64 65 73 74 69 6e 61 | es.as.either.a.source.or.destina |
| 4a800 | 74 69 6f 6e 20 6d 61 74 63 68 65 72 2e 20 4d 65 6d 62 65 72 73 20 63 61 6e 20 62 65 20 61 64 64 | tion.matcher..Members.can.be.add |
| 4a820 | 65 64 20 6f 72 20 72 65 6d 6f 76 65 64 20 66 72 6f 6d 20 61 20 67 72 6f 75 70 20 77 69 74 68 6f | ed.or.removed.from.a.group.witho |
| 4a840 | 75 74 20 63 68 61 6e 67 65 73 20 74 6f 2c 20 6f 72 20 74 68 65 20 6e 65 65 64 20 74 6f 20 72 65 | ut.changes.to,.or.the.need.to.re |
| 4a860 | 6c 6f 61 64 2c 20 69 6e 64 69 76 69 64 75 61 6c 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 2e | load,.individual.firewall.rules. |
| 4a880 | 00 46 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 73 20 72 65 70 72 65 73 65 6e 74 20 63 6f 6c 6c 65 | .Firewall.groups.represent.colle |
| 4a8a0 | 63 74 69 6f 6e 73 20 6f 66 20 49 50 20 61 64 64 72 65 73 73 65 73 2c 20 6e 65 74 77 6f 72 6b 73 | ctions.of.IP.addresses,.networks |
| 4a8c0 | 2c 20 70 6f 72 74 73 2c 20 6d 61 63 20 61 64 64 72 65 73 73 65 73 2c 20 64 6f 6d 61 69 6e 73 20 | ,.ports,.mac.addresses,.domains. |
| 4a8e0 | 6f 72 20 69 6e 74 65 72 66 61 63 65 73 2e 20 4f 6e 63 65 20 63 72 65 61 74 65 64 2c 20 61 20 67 | or.interfaces..Once.created,.a.g |
| 4a900 | 72 6f 75 70 20 63 61 6e 20 62 65 20 72 65 66 65 72 65 6e 63 65 64 20 62 79 20 66 69 72 65 77 61 | roup.can.be.referenced.by.firewa |
| 4a920 | 6c 6c 2c 20 6e 61 74 20 61 6e 64 20 70 6f 6c 69 63 79 20 72 6f 75 74 65 20 72 75 6c 65 73 20 61 | ll,.nat.and.policy.route.rules.a |
| 4a940 | 73 20 65 69 74 68 65 72 20 61 20 73 6f 75 72 63 65 20 6f 72 20 64 65 73 74 69 6e 61 74 69 6f 6e | s.either.a.source.or.destination |
| 4a960 | 20 6d 61 74 63 68 65 72 2c 20 61 6e 64 20 61 73 20 69 6e 62 70 75 6e 64 2f 6f 75 74 62 6f 75 6e | .matcher,.and.as.inbpund/outboun |
| 4a980 | 64 20 69 6e 20 74 68 65 20 63 61 73 65 20 6f 66 20 69 6e 74 65 72 66 61 63 65 20 67 72 6f 75 70 | d.in.the.case.of.interface.group |
| 4a9a0 | 2e 00 46 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 73 20 72 65 70 72 65 73 65 6e 74 20 63 6f 6c 6c | ..Firewall.groups.represent.coll |
| 4a9c0 | 65 63 74 69 6f 6e 73 20 6f 66 20 49 50 20 61 64 64 72 65 73 73 65 73 2c 20 6e 65 74 77 6f 72 6b | ections.of.IP.addresses,.network |
| 4a9e0 | 73 2c 20 70 6f 72 74 73 2c 20 6d 61 63 20 61 64 64 72 65 73 73 65 73 2c 20 64 6f 6d 61 69 6e 73 | s,.ports,.mac.addresses,.domains |
| 4aa00 | 20 6f 72 20 69 6e 74 65 72 66 61 63 65 73 2e 20 4f 6e 63 65 20 63 72 65 61 74 65 64 2c 20 61 20 | .or.interfaces..Once.created,.a. |
| 4aa20 | 67 72 6f 75 70 20 63 61 6e 20 62 65 20 72 65 66 65 72 65 6e 63 65 64 20 62 79 20 66 69 72 65 77 | group.can.be.referenced.by.firew |
| 4aa40 | 61 6c 6c 2c 20 6e 61 74 20 61 6e 64 20 70 6f 6c 69 63 79 20 72 6f 75 74 65 20 72 75 6c 65 73 20 | all,.nat.and.policy.route.rules. |
| 4aa60 | 61 73 20 65 69 74 68 65 72 20 61 20 73 6f 75 72 63 65 20 6f 72 20 64 65 73 74 69 6e 61 74 69 6f | as.either.a.source.or.destinatio |
| 4aa80 | 6e 20 6d 61 74 63 68 65 72 2c 20 61 6e 64 2f 6f 72 20 61 73 20 69 6e 62 6f 75 6e 64 2f 6f 75 74 | n.matcher,.and/or.as.inbound/out |
| 4aaa0 | 62 6f 75 6e 64 20 69 6e 20 74 68 65 20 63 61 73 65 20 6f 66 20 69 6e 74 65 72 66 61 63 65 20 67 | bound.in.the.case.of.interface.g |
| 4aac0 | 72 6f 75 70 2e 00 46 69 72 65 77 61 6c 6c 20 6d 61 72 6b 2e 20 49 74 20 70 6f 73 73 69 62 6c 65 | roup..Firewall.mark..It.possible |
| 4aae0 | 20 74 6f 20 6c 6f 61 64 62 61 6c 61 6e 63 69 6e 67 20 74 72 61 66 66 69 63 20 62 61 73 65 64 20 | .to.loadbalancing.traffic.based. |
| 4ab00 | 6f 6e 20 60 60 66 77 6d 61 72 6b 60 60 20 76 61 6c 75 65 00 46 69 72 65 77 61 6c 6c 20 70 6f 6c | on.``fwmark``.value.Firewall.pol |
| 4ab20 | 69 63 79 20 63 61 6e 20 61 6c 73 6f 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 74 68 65 20 74 | icy.can.also.be.applied.to.the.t |
| 4ab40 | 75 6e 6e 65 6c 20 69 6e 74 65 72 66 61 63 65 20 66 6f 72 20 60 6c 6f 63 61 6c 60 2c 20 60 69 6e | unnel.interface.for.`local`,.`in |
| 4ab60 | 60 2c 20 61 6e 64 20 60 6f 75 74 60 20 64 69 72 65 63 74 69 6f 6e 73 20 61 6e 64 20 66 75 6e 63 | `,.and.`out`.directions.and.func |
| 4ab80 | 74 69 6f 6e 73 20 69 64 65 6e 74 69 63 61 6c 6c 79 20 74 6f 20 65 74 68 65 72 6e 65 74 20 69 6e | tions.identically.to.ethernet.in |
| 4aba0 | 74 65 72 66 61 63 65 73 2e 00 46 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 20 61 72 65 20 77 72 69 | terfaces..Firewall.rules.are.wri |
| 4abc0 | 74 74 65 6e 20 61 73 20 6e 6f 72 6d 61 6c 2c 20 75 73 69 6e 67 20 74 68 65 20 69 6e 74 65 72 6e | tten.as.normal,.using.the.intern |
| 4abe0 | 61 6c 20 49 50 20 61 64 64 72 65 73 73 20 61 73 20 74 68 65 20 73 6f 75 72 63 65 20 6f 66 20 6f | al.IP.address.as.the.source.of.o |
| 4ac00 | 75 74 62 6f 75 6e 64 20 72 75 6c 65 73 20 61 6e 64 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f | utbound.rules.and.the.destinatio |
| 4ac20 | 6e 20 6f 66 20 69 6e 62 6f 75 6e 64 20 72 75 6c 65 73 2e 00 46 69 72 65 77 61 6c 6c 20 72 75 6c | n.of.inbound.rules..Firewall.rul |
| 4ac40 | 65 73 20 66 6f 72 20 44 65 73 74 69 6e 61 74 69 6f 6e 20 4e 41 54 00 46 69 72 65 77 61 6c 6c 2d | es.for.Destination.NAT.Firewall- |
| 4ac60 | 4c 65 67 61 63 79 00 46 69 72 6d 77 61 72 65 20 55 70 64 61 74 65 00 46 69 72 73 74 20 68 6f 70 | Legacy.Firmware.Update.First.hop |
| 4ac80 | 20 69 6e 74 65 72 66 61 63 65 20 6f 66 20 61 20 72 6f 75 74 65 20 74 6f 20 6d 61 74 63 68 2e 00 | .interface.of.a.route.to.match.. |
| 4aca0 | 46 69 72 73 74 20 6f 66 20 61 6c 6c 20 79 6f 75 20 6d 75 73 74 20 63 6f 6e 66 69 67 75 72 65 20 | First.of.all.you.must.configure. |
| 4acc0 | 42 47 50 20 72 6f 75 74 65 72 20 77 69 74 68 20 74 68 65 20 3a 61 62 62 72 3a 60 41 53 4e 20 28 | BGP.router.with.the.:abbr:`ASN.( |
| 4ace0 | 41 75 74 6f 6e 6f 6d 6f 75 73 20 53 79 73 74 65 6d 20 4e 75 6d 62 65 72 29 60 2e 20 54 68 65 20 | Autonomous.System.Number)`..The. |
| 4ad00 | 41 53 20 6e 75 6d 62 65 72 20 69 73 20 61 6e 20 69 64 65 6e 74 69 66 69 65 72 20 66 6f 72 20 74 | AS.number.is.an.identifier.for.t |
| 4ad20 | 68 65 20 61 75 74 6f 6e 6f 6d 6f 75 73 20 73 79 73 74 65 6d 2e 20 54 68 65 20 42 47 50 20 70 72 | he.autonomous.system..The.BGP.pr |
| 4ad40 | 6f 74 6f 63 6f 6c 20 75 73 65 73 20 74 68 65 20 41 53 20 6e 75 6d 62 65 72 20 66 6f 72 20 64 65 | otocol.uses.the.AS.number.for.de |
| 4ad60 | 74 65 63 74 69 6e 67 20 77 68 65 74 68 65 72 20 74 68 65 20 42 47 50 20 63 6f 6e 6e 65 63 74 69 | tecting.whether.the.BGP.connecti |
| 4ad80 | 6f 6e 20 69 73 20 69 6e 74 65 72 6e 61 6c 20 6f 72 20 65 78 74 65 72 6e 61 6c 2e 20 56 79 4f 53 | on.is.internal.or.external..VyOS |
| 4ada0 | 20 64 6f 65 73 20 6e 6f 74 20 68 61 76 65 20 61 20 73 70 65 63 69 61 6c 20 63 6f 6d 6d 61 6e 64 | .does.not.have.a.special.command |
| 4adc0 | 20 74 6f 20 73 74 61 72 74 20 74 68 65 20 42 47 50 20 70 72 6f 63 65 73 73 2e 20 54 68 65 20 42 | .to.start.the.BGP.process..The.B |
| 4ade0 | 47 50 20 70 72 6f 63 65 73 73 20 73 74 61 72 74 73 20 77 68 65 6e 20 74 68 65 20 66 69 72 73 74 | GP.process.starts.when.the.first |
| 4ae00 | 20 6e 65 69 67 68 62 6f 72 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 2e 00 46 69 72 73 74 20 6f | .neighbor.is.configured..First.o |
| 4ae20 | 66 20 61 6c 6c 2c 20 77 65 20 6e 65 65 64 20 74 6f 20 63 72 65 61 74 65 20 61 20 43 41 20 72 6f | f.all,.we.need.to.create.a.CA.ro |
| 4ae40 | 6f 74 20 63 65 72 74 69 66 69 63 61 74 65 20 61 6e 64 20 73 65 72 76 65 72 20 63 65 72 74 69 66 | ot.certificate.and.server.certif |
| 4ae60 | 69 63 61 74 65 20 6f 6e 20 74 68 65 20 73 65 72 76 65 72 20 73 69 64 65 2e 00 46 69 72 73 74 20 | icate.on.the.server.side..First. |
| 4ae80 | 73 63 65 6e 61 72 69 6f 3a 20 61 70 70 6c 79 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 4e 41 54 20 | scenario:.apply.destination.NAT. |
| 4aea0 | 66 6f 72 20 61 6c 6c 20 48 54 54 50 20 74 72 61 66 66 69 63 20 63 6f 6d 6d 69 6e 67 20 74 68 72 | for.all.HTTP.traffic.comming.thr |
| 4aec0 | 6f 75 67 68 20 69 6e 74 65 72 66 61 63 65 20 65 74 68 30 2c 20 61 6e 64 20 75 73 65 72 20 34 20 | ough.interface.eth0,.and.user.4. |
| 4aee0 | 62 61 63 6b 65 6e 64 73 2e 20 46 69 72 73 74 20 62 61 63 6b 65 6e 64 20 73 68 6f 75 6c 64 20 72 | backends..First.backend.should.r |
| 4af00 | 65 63 65 69 76 65 64 20 33 30 25 20 6f 66 20 74 68 65 20 72 65 71 75 65 73 74 2c 20 73 65 63 6f | eceived.30%.of.the.request,.seco |
| 4af20 | 6e 64 20 62 61 63 6b 65 6e 64 20 73 68 6f 75 6c 64 20 67 65 74 20 32 30 25 2c 20 74 68 69 72 64 | nd.backend.should.get.20%,.third |
| 4af40 | 20 31 35 25 20 61 6e 64 20 74 68 65 20 66 6f 75 72 74 68 20 33 35 25 20 57 65 20 77 69 6c 6c 20 | .15%.and.the.fourth.35%.We.will. |
| 4af60 | 75 73 65 20 73 6f 75 72 63 65 20 61 6e 64 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 | use.source.and.destination.addre |
| 4af80 | 73 73 20 66 6f 72 20 68 61 73 68 20 67 65 6e 65 72 61 74 69 6f 6e 2e 00 46 69 72 73 74 20 73 74 | ss.for.hash.generation..First.st |
| 4afa0 | 65 70 73 00 46 69 72 73 74 20 74 68 65 20 4f 54 50 20 6b 65 79 73 20 6d 75 73 74 20 62 65 20 67 | eps.First.the.OTP.keys.must.be.g |
| 4afc0 | 65 6e 65 72 61 74 65 64 20 61 6e 64 20 73 65 6e 74 20 74 6f 20 74 68 65 20 75 73 65 72 20 61 6e | enerated.and.sent.to.the.user.an |
| 4afe0 | 64 20 74 6f 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 00 46 69 72 73 74 20 77 65 | d.to.the.configuration:.First.we |
| 4b000 | 20 6e 65 65 64 20 74 6f 20 73 70 65 63 69 66 79 20 74 68 65 20 62 61 73 69 63 20 73 65 74 74 69 | .need.to.specify.the.basic.setti |
| 4b020 | 6e 67 73 2e 20 31 31 39 34 2f 55 44 50 20 69 73 20 74 68 65 20 64 65 66 61 75 6c 74 2e 20 54 68 | ngs..1194/UDP.is.the.default..Th |
| 4b040 | 65 20 60 60 70 65 72 73 69 73 74 65 6e 74 2d 74 75 6e 6e 65 6c 60 60 20 6f 70 74 69 6f 6e 20 69 | e.``persistent-tunnel``.option.i |
| 4b060 | 73 20 72 65 63 6f 6d 6d 65 6e 64 65 64 2c 20 61 73 20 69 74 20 70 72 65 76 65 6e 74 73 20 74 68 | s.recommended,.as.it.prevents.th |
| 4b080 | 65 20 54 55 4e 2f 54 41 50 20 64 65 76 69 63 65 20 66 72 6f 6d 20 63 6c 6f 73 69 6e 67 20 6f 6e | e.TUN/TAP.device.from.closing.on |
| 4b0a0 | 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 72 65 73 65 74 73 20 6f 72 20 64 61 65 6d 6f 6e 20 72 65 6c | .connection.resets.or.daemon.rel |
| 4b0c0 | 6f 61 64 73 2e 00 46 69 72 73 74 20 77 65 20 6e 65 65 64 20 74 6f 20 73 70 65 63 69 66 79 20 74 | oads..First.we.need.to.specify.t |
| 4b0e0 | 68 65 20 62 61 73 69 63 20 73 65 74 74 69 6e 67 73 2e 20 31 31 39 34 2f 55 44 50 20 69 73 20 74 | he.basic.settings..1194/UDP.is.t |
| 4b100 | 68 65 20 64 65 66 61 75 6c 74 2e 20 54 68 65 20 60 60 70 65 72 73 69 73 74 65 6e 74 2d 74 75 6e | he.default..The.``persistent-tun |
| 4b120 | 6e 65 6c 60 60 20 6f 70 74 69 6f 6e 20 69 73 20 72 65 63 6f 6d 6d 65 6e 64 65 64 2c 20 69 74 20 | nel``.option.is.recommended,.it. |
| 4b140 | 70 72 65 76 65 6e 74 73 20 74 68 65 20 54 55 4e 2f 54 41 50 20 64 65 76 69 63 65 20 66 72 6f 6d | prevents.the.TUN/TAP.device.from |
| 4b160 | 20 63 6c 6f 73 69 6e 67 20 6f 6e 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 72 65 73 65 74 73 20 6f 72 | .closing.on.connection.resets.or |
| 4b180 | 20 64 61 65 6d 6f 6e 20 72 65 6c 6f 61 64 73 2e 00 46 69 72 73 74 20 79 6f 75 20 77 69 6c 6c 20 | .daemon.reloads..First.you.will. |
| 4b1a0 | 6e 65 65 64 20 74 6f 20 64 65 70 6c 6f 79 20 61 6e 20 52 50 4b 49 20 76 61 6c 69 64 61 74 6f 72 | need.to.deploy.an.RPKI.validator |
| 4b1c0 | 20 66 6f 72 20 79 6f 75 72 20 72 6f 75 74 65 72 73 20 74 6f 20 75 73 65 2e 20 4e 4c 6e 65 74 20 | .for.your.routers.to.use..NLnet. |
| 4b1e0 | 4c 61 62 73 20 70 72 6f 76 69 64 65 73 20 61 20 63 6f 6c 6c 65 63 74 69 6f 6e 20 6f 66 20 73 6f | Labs.provides.a.collection.of.so |
| 4b200 | 66 74 77 61 72 65 5f 20 79 6f 75 20 63 61 6e 20 63 6f 6d 70 61 72 65 20 61 6e 64 20 73 65 74 74 | ftware_.you.can.compare.and.sett |
| 4b220 | 6c 65 20 6f 6e 20 6f 6e 65 2e 20 4f 6e 63 65 20 79 6f 75 72 20 73 65 72 76 65 72 20 69 73 20 72 | le.on.one..Once.your.server.is.r |
| 4b240 | 75 6e 6e 69 6e 67 20 79 6f 75 20 63 61 6e 20 73 74 61 72 74 20 76 61 6c 69 64 61 74 69 6e 67 20 | unning.you.can.start.validating. |
| 4b260 | 61 6e 6e 6f 75 6e 63 65 6d 65 6e 74 73 2e 00 46 69 72 73 74 20 79 6f 75 20 77 69 6c 6c 20 6e 65 | announcements..First.you.will.ne |
| 4b280 | 65 64 20 74 6f 20 64 65 70 6c 6f 79 20 61 6e 20 52 50 4b 49 20 76 61 6c 69 64 61 74 6f 72 20 66 | ed.to.deploy.an.RPKI.validator.f |
| 4b2a0 | 6f 72 20 79 6f 75 72 20 72 6f 75 74 65 72 73 20 74 6f 20 75 73 65 2e 20 54 68 65 20 52 49 50 45 | or.your.routers.to.use..The.RIPE |
| 4b2c0 | 20 4e 43 43 20 68 65 6c 70 66 75 6c 6c 79 20 70 72 6f 76 69 64 65 20 60 73 6f 6d 65 20 69 6e 73 | .NCC.helpfully.provide.`some.ins |
| 4b2e0 | 74 72 75 63 74 69 6f 6e 73 60 5f 20 74 6f 20 67 65 74 20 79 6f 75 20 73 74 61 72 74 65 64 20 77 | tructions`_.to.get.you.started.w |
| 4b300 | 69 74 68 20 73 65 76 65 72 61 6c 20 64 69 66 66 65 72 65 6e 74 20 6f 70 74 69 6f 6e 73 2e 20 20 | ith.several.different.options... |
| 4b320 | 4f 6e 63 65 20 79 6f 75 72 20 73 65 72 76 65 72 20 69 73 20 72 75 6e 6e 69 6e 67 20 79 6f 75 20 | Once.your.server.is.running.you. |
| 4b340 | 63 61 6e 20 73 74 61 72 74 20 76 61 6c 69 64 61 74 69 6e 67 20 61 6e 6e 6f 75 6e 63 65 6d 65 6e | can.start.validating.announcemen |
| 4b360 | 74 73 2e 00 46 69 72 73 74 2c 20 61 6c 6c 20 74 72 61 66 66 69 63 20 69 73 20 72 65 63 65 69 76 | ts..First,.all.traffic.is.receiv |
| 4b380 | 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 2c 20 61 6e 64 20 69 74 20 69 73 20 70 72 6f 63 | ed.by.the.router,.and.it.is.proc |
| 4b3a0 | 65 73 73 65 64 20 69 6e 20 74 68 65 20 2a 2a 70 72 65 72 6f 75 74 69 6e 67 2a 2a 20 73 65 63 74 | essed.in.the.**prerouting**.sect |
| 4b3c0 | 69 6f 6e 2e 00 46 69 72 73 74 2c 20 6f 6e 20 62 6f 74 68 20 72 6f 75 74 65 72 73 20 72 75 6e 20 | ion..First,.on.both.routers.run. |
| 4b3e0 | 74 68 65 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 63 6f 6d 6d 61 6e 64 20 22 67 65 6e 65 72 61 74 | the.operational.command."generat |
| 4b400 | 65 20 70 6b 69 20 6b 65 79 2d 70 61 69 72 20 69 6e 73 74 61 6c 6c 20 3c 6b 65 79 2d 70 61 69 72 | e.pki.key-pair.install.<key-pair |
| 4b420 | 20 6e 61 6d 3e 3e 22 2e 20 59 6f 75 20 6d 61 79 20 63 68 6f 6f 73 65 20 64 69 66 66 65 72 65 6e | .nam>>"..You.may.choose.differen |
| 4b440 | 74 20 6c 65 6e 67 74 68 20 74 68 61 6e 20 32 30 34 38 20 6f 66 20 63 6f 75 72 73 65 2e 00 46 69 | t.length.than.2048.of.course..Fi |
| 4b460 | 72 73 74 2c 20 6f 6e 20 62 6f 74 68 20 72 6f 75 74 65 72 73 20 72 75 6e 20 74 68 65 20 6f 70 65 | rst,.on.both.routers.run.the.ope |
| 4b480 | 72 61 74 69 6f 6e 61 6c 20 63 6f 6d 6d 61 6e 64 20 22 67 65 6e 65 72 61 74 65 20 70 6b 69 20 6b | rational.command."generate.pki.k |
| 4b4a0 | 65 79 2d 70 61 69 72 20 69 6e 73 74 61 6c 6c 20 3c 6b 65 79 2d 70 61 69 72 20 6e 61 6d 65 3e 22 | ey-pair.install.<key-pair.name>" |
| 4b4c0 | 2e 20 59 6f 75 20 6d 61 79 20 63 68 6f 6f 73 65 20 64 69 66 66 65 72 65 6e 74 20 6c 65 6e 67 74 | ..You.may.choose.different.lengt |
| 4b4e0 | 68 20 74 68 61 6e 20 32 30 34 38 20 6f 66 20 63 6f 75 72 73 65 2e 00 46 69 72 73 74 2c 20 6f 6e | h.than.2048.of.course..First,.on |
| 4b500 | 65 20 6f 66 20 74 68 65 20 73 79 73 74 65 6d 73 20 67 65 6e 65 72 61 74 65 20 74 68 65 20 6b 65 | e.of.the.systems.generate.the.ke |
| 4b520 | 79 20 75 73 69 6e 67 20 74 68 65 20 3a 72 65 66 3a 60 67 65 6e 65 72 61 74 65 20 70 6b 69 20 6f | y.using.the.:ref:`generate.pki.o |
| 4b540 | 70 65 6e 76 70 6e 20 73 68 61 72 65 64 2d 73 65 63 72 65 74 3c 63 6f 6e 66 69 67 75 72 61 74 69 | penvpn.shared-secret<configurati |
| 4b560 | 6f 6e 2f 70 6b 69 2f 69 6e 64 65 78 3a 70 6b 69 3e 60 20 63 6f 6d 6d 61 6e 64 2e 20 4f 6e 63 65 | on/pki/index:pki>`.command..Once |
| 4b580 | 20 67 65 6e 65 72 61 74 65 64 2c 20 79 6f 75 20 77 69 6c 6c 20 6e 65 65 64 20 74 6f 20 69 6e 73 | .generated,.you.will.need.to.ins |
| 4b5a0 | 74 61 6c 6c 20 74 68 69 73 20 6b 65 79 20 6f 6e 20 74 68 65 20 6c 6f 63 61 6c 20 73 79 73 74 65 | tall.this.key.on.the.local.syste |
| 4b5c0 | 6d 2c 20 74 68 65 6e 20 63 6f 70 79 20 61 6e 64 20 69 6e 73 74 61 6c 6c 20 74 68 69 73 20 6b 65 | m,.then.copy.and.install.this.ke |
| 4b5e0 | 79 20 74 6f 20 74 68 65 20 72 65 6d 6f 74 65 20 72 6f 75 74 65 72 2e 00 46 69 72 73 74 2c 20 77 | y.to.the.remote.router..First,.w |
| 4b600 | 65 20 63 72 65 61 74 65 20 74 68 65 20 72 6f 6f 74 20 63 65 72 74 69 66 69 63 61 74 65 20 61 75 | e.create.the.root.certificate.au |
| 4b620 | 74 68 6f 72 69 74 79 2e 00 46 69 72 73 74 2c 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 67 65 6e 65 | thority..First,.you.need.to.gene |
| 4b640 | 72 61 74 65 20 61 20 6b 65 79 20 62 79 20 72 75 6e 6e 69 6e 67 20 60 60 72 75 6e 20 67 65 6e 65 | rate.a.key.by.running.``run.gene |
| 4b660 | 72 61 74 65 20 70 6b 69 20 6f 70 65 6e 76 70 6e 20 73 68 61 72 65 64 2d 73 65 63 72 65 74 20 69 | rate.pki.openvpn.shared-secret.i |
| 4b680 | 6e 73 74 61 6c 6c 20 3c 6e 61 6d 65 3e 60 60 20 66 72 6f 6d 20 63 6f 6e 66 69 67 75 72 61 74 69 | nstall.<name>``.from.configurati |
| 4b6a0 | 6f 6e 20 6d 6f 64 65 2e 20 59 6f 75 20 63 61 6e 20 75 73 65 20 61 6e 79 20 6e 61 6d 65 2c 20 77 | on.mode..You.can.use.any.name,.w |
| 4b6c0 | 65 20 77 69 6c 6c 20 75 73 65 20 60 60 73 32 73 60 60 2e 00 46 6c 61 73 68 00 46 6c 61 73 68 20 | e.will.use.``s2s``..Flash.Flash. |
| 4b6e0 | 4f 76 65 72 72 69 64 65 00 46 6c 65 78 56 50 4e 20 76 65 6e 64 6f 72 20 49 44 20 70 61 79 6c 6f | Override.FlexVPN.vendor.ID.paylo |
| 4b700 | 61 64 20 28 49 4b 45 76 32 20 6f 6e 6c 79 29 2c 20 77 68 69 63 68 20 69 73 20 72 65 71 75 69 72 | ad.(IKEv2.only),.which.is.requir |
| 4b720 | 65 64 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 6d 61 6b 65 20 43 69 73 63 6f 20 62 72 61 6e 64 20 | ed.in.order.to.make.Cisco.brand. |
| 4b740 | 64 65 76 69 63 65 73 20 61 6c 6c 6f 77 20 6e 65 67 6f 74 69 61 74 69 6e 67 20 61 20 6c 6f 63 61 | devices.allow.negotiating.a.loca |
| 4b760 | 6c 20 74 72 61 66 66 69 63 20 73 65 6c 65 63 74 6f 72 20 28 66 72 6f 6d 20 73 74 72 6f 6e 67 53 | l.traffic.selector.(from.strongS |
| 4b780 | 77 61 6e 27 73 20 70 6f 69 6e 74 20 6f 66 20 76 69 65 77 29 20 74 68 61 74 20 69 73 20 6e 6f 74 | wan's.point.of.view).that.is.not |
| 4b7a0 | 20 74 68 65 20 61 73 73 69 67 6e 65 64 20 76 69 72 74 75 61 6c 20 49 50 20 61 64 64 72 65 73 73 | .the.assigned.virtual.IP.address |
| 4b7c0 | 20 69 66 20 73 75 63 68 20 61 6e 20 61 64 64 72 65 73 73 20 69 73 20 72 65 71 75 65 73 74 65 64 | .if.such.an.address.is.requested |
| 4b7e0 | 20 62 79 20 73 74 72 6f 6e 67 53 77 61 6e 2e 20 53 65 6e 64 69 6e 67 20 74 68 65 20 43 69 73 63 | .by.strongSwan..Sending.the.Cisc |
| 4b800 | 6f 20 46 6c 65 78 56 50 4e 20 76 65 6e 64 6f 72 20 49 44 20 70 72 65 76 65 6e 74 73 20 74 68 65 | o.FlexVPN.vendor.ID.prevents.the |
| 4b820 | 20 70 65 65 72 20 66 72 6f 6d 20 6e 61 72 72 6f 77 69 6e 67 20 74 68 65 20 69 6e 69 74 69 61 74 | .peer.from.narrowing.the.initiat |
| 4b840 | 6f 72 27 73 20 6c 6f 63 61 6c 20 74 72 61 66 66 69 63 20 73 65 6c 65 63 74 6f 72 20 61 6e 64 20 | or's.local.traffic.selector.and. |
| 4b860 | 61 6c 6c 6f 77 73 20 69 74 20 74 6f 20 65 2e 67 2e 20 6e 65 67 6f 74 69 61 74 65 20 61 20 54 53 | allows.it.to.e.g..negotiate.a.TS |
| 4b880 | 20 6f 66 20 30 2e 30 2e 30 2e 30 2f 30 20 3d 3d 20 30 2e 30 2e 30 2e 30 2f 30 20 69 6e 73 74 65 | .of.0.0.0.0/0.==.0.0.0.0/0.inste |
| 4b8a0 | 61 64 2e 20 54 68 69 73 20 68 61 73 20 62 65 65 6e 20 74 65 73 74 65 64 20 77 69 74 68 20 61 20 | ad..This.has.been.tested.with.a. |
| 4b8c0 | 22 74 75 6e 6e 65 6c 20 6d 6f 64 65 20 69 70 73 65 63 20 69 70 76 34 22 20 43 69 73 63 6f 20 74 | "tunnel.mode.ipsec.ipv4".Cisco.t |
| 4b8e0 | 65 6d 70 6c 61 74 65 20 62 75 74 20 73 68 6f 75 6c 64 20 61 6c 73 6f 20 77 6f 72 6b 20 66 6f 72 | emplate.but.should.also.work.for |
| 4b900 | 20 47 52 45 20 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e 3b 00 46 6c 6f 77 20 41 63 63 6f 75 6e 74 | .GRE.encapsulation;.Flow.Account |
| 4b920 | 69 6e 67 00 46 6c 6f 77 20 45 78 70 6f 72 74 00 46 6c 6f 77 20 61 6e 64 20 70 61 63 6b 65 74 2d | ing.Flow.Export.Flow.and.packet- |
| 4b940 | 62 61 73 65 64 20 62 61 6c 61 6e 63 69 6e 67 00 46 6c 6f 77 73 20 61 72 65 20 64 65 66 69 6e 65 | based.balancing.Flows.are.define |
| 4b960 | 64 20 62 79 20 73 6f 75 72 63 65 2d 64 65 73 74 69 6e 61 74 69 6f 6e 20 68 6f 73 74 20 70 61 69 | d.by.source-destination.host.pai |
| 4b980 | 72 73 2e 00 46 6c 6f 77 73 20 61 72 65 20 64 65 66 69 6e 65 64 20 62 79 20 74 68 65 20 35 2d 74 | rs..Flows.are.defined.by.the.5-t |
| 4b9a0 | 75 70 6c 65 2e 20 46 61 69 72 6e 65 73 73 20 69 73 20 61 70 70 6c 69 65 64 20 66 69 72 73 74 20 | uple..Fairness.is.applied.first. |
| 4b9c0 | 6f 76 65 72 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 65 73 2c 20 74 68 65 6e | over.destination.addresses,.then |
| 4b9e0 | 20 6f 76 65 72 20 69 6e 64 69 76 69 64 75 61 6c 20 66 6c 6f 77 73 2e 00 46 6c 6f 77 73 20 61 72 | .over.individual.flows..Flows.ar |
| 4ba00 | 65 20 64 65 66 69 6e 65 64 20 62 79 20 74 68 65 20 35 2d 74 75 70 6c 65 2e 20 46 61 69 72 6e 65 | e.defined.by.the.5-tuple..Fairne |
| 4ba20 | 73 73 20 69 73 20 61 70 70 6c 69 65 64 20 66 69 72 73 74 20 6f 76 65 72 20 73 6f 75 72 63 65 20 | ss.is.applied.first.over.source. |
| 4ba40 | 61 64 64 72 65 73 73 65 73 2c 20 74 68 65 6e 20 6f 76 65 72 20 69 6e 64 69 76 69 64 75 61 6c 20 | addresses,.then.over.individual. |
| 4ba60 | 66 6c 6f 77 73 2e 00 46 6c 6f 77 73 20 61 72 65 20 64 65 66 69 6e 65 64 20 62 79 20 74 68 65 20 | flows..Flows.are.defined.by.the. |
| 4ba80 | 65 6e 74 69 72 65 20 35 2d 74 75 70 6c 65 20 28 73 6f 75 72 63 65 20 49 50 20 61 64 64 72 65 73 | entire.5-tuple.(source.IP.addres |
| 4baa0 | 73 2c 20 73 6f 75 72 63 65 20 70 6f 72 74 2c 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 49 50 20 61 | s,.source.port,.destination.IP.a |
| 4bac0 | 64 64 72 65 73 73 2c 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 70 6f 72 74 2c 20 74 72 61 6e 73 70 | ddress,.destination.port,.transp |
| 4bae0 | 6f 72 74 20 70 72 6f 74 6f 63 6f 6c 29 2e 00 46 6c 6f 77 73 20 61 72 65 20 64 65 66 69 6e 65 64 | ort.protocol)..Flows.are.defined |
| 4bb00 | 20 6f 6e 6c 79 20 62 79 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 2e 00 46 6c | .only.by.destination.address..Fl |
| 4bb20 | 6f 77 73 20 61 72 65 20 64 65 66 69 6e 65 64 20 6f 6e 6c 79 20 62 79 20 73 6f 75 72 63 65 20 61 | ows.are.defined.only.by.source.a |
| 4bb40 | 64 64 72 65 73 73 2e 00 46 6c 6f 77 73 20 63 61 6e 20 62 65 20 65 78 70 6f 72 74 65 64 20 76 69 | ddress..Flows.can.be.exported.vi |
| 4bb60 | 61 20 74 77 6f 20 64 69 66 66 65 72 65 6e 74 20 70 72 6f 74 6f 63 6f 6c 73 3a 20 4e 65 74 46 6c | a.two.different.protocols:.NetFl |
| 4bb80 | 6f 77 20 28 76 65 72 73 69 6f 6e 73 20 35 2c 20 39 20 61 6e 64 20 31 30 2f 49 50 46 49 58 29 20 | ow.(versions.5,.9.and.10/IPFIX). |
| 4bba0 | 61 6e 64 20 73 46 6c 6f 77 2e 20 41 64 64 69 74 69 6f 6e 61 6c 6c 79 2c 20 79 6f 75 20 6d 61 79 | and.sFlow..Additionally,.you.may |
| 4bbc0 | 20 73 61 76 65 20 66 6c 6f 77 73 20 74 6f 20 61 6e 20 69 6e 2d 6d 65 6d 6f 72 79 20 74 61 62 6c | .save.flows.to.an.in-memory.tabl |
| 4bbe0 | 65 20 69 6e 74 65 72 6e 61 6c 6c 79 20 69 6e 20 61 20 72 6f 75 74 65 72 2e 00 46 6c 6f 77 74 61 | e.internally.in.a.router..Flowta |
| 4bc00 | 62 6c 65 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 46 6c 6f 77 74 61 62 6c 65 73 20 20 61 6c | ble.Configuration.Flowtables..al |
| 4bc20 | 6c 6f 77 73 20 79 6f 75 20 74 6f 20 64 65 66 69 6e 65 20 61 20 66 61 73 74 70 61 74 68 20 74 68 | lows.you.to.define.a.fastpath.th |
| 4bc40 | 72 6f 75 67 68 20 74 68 65 20 66 6c 6f 77 74 61 62 6c 65 20 64 61 74 61 70 61 74 68 2e 20 54 68 | rough.the.flowtable.datapath..Th |
| 4bc60 | 65 20 66 6c 6f 77 74 61 62 6c 65 20 73 75 70 70 6f 72 74 73 20 66 6f 72 20 74 68 65 20 6c 61 79 | e.flowtable.supports.for.the.lay |
| 4bc80 | 65 72 20 33 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 61 6e 64 20 74 68 65 20 6c 61 79 65 72 | er.3.IPv4.and.IPv6.and.the.layer |
| 4bca0 | 20 34 20 54 43 50 20 61 6e 64 20 55 44 50 20 70 72 6f 74 6f 63 6f 6c 73 2e 00 46 6c 6f 77 74 61 | .4.TCP.and.UDP.protocols..Flowta |
| 4bcc0 | 62 6c 65 73 20 46 69 72 65 77 61 6c 6c 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 46 6c 6f 77 | bles.Firewall.Configuration.Flow |
| 4bce0 | 74 61 62 6c 65 73 20 61 6c 6c 6f 77 20 79 6f 75 20 74 6f 20 64 65 66 69 6e 65 20 61 20 66 61 73 | tables.allow.you.to.define.a.fas |
| 4bd00 | 74 70 61 74 68 20 74 68 72 6f 75 67 68 20 74 68 65 20 66 6c 6f 77 74 61 62 6c 65 20 64 61 74 61 | tpath.through.the.flowtable.data |
| 4bd20 | 70 61 74 68 2e 20 54 68 65 20 66 6c 6f 77 74 61 62 6c 65 20 73 75 70 70 6f 72 74 73 20 66 6f 72 | path..The.flowtable.supports.for |
| 4bd40 | 20 74 68 65 20 6c 61 79 65 72 20 33 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 61 6e 64 20 74 | .the.layer.3.IPv4.and.IPv6.and.t |
| 4bd60 | 68 65 20 6c 61 79 65 72 20 34 20 54 43 50 20 61 6e 64 20 55 44 50 20 70 72 6f 74 6f 63 6f 6c 73 | he.layer.4.TCP.and.UDP.protocols |
| 4bd80 | 2e 00 46 6c 75 73 68 69 6e 67 20 74 68 65 20 73 65 73 73 69 6f 6e 20 74 61 62 6c 65 20 77 69 6c | ..Flushing.the.session.table.wil |
| 4bda0 | 6c 20 63 61 75 73 65 20 6f 74 68 65 72 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 74 6f 20 66 61 6c | l.cause.other.connections.to.fal |
| 4bdc0 | 6c 20 62 61 63 6b 20 66 72 6f 6d 20 66 6c 6f 77 2d 62 61 73 65 64 20 74 6f 20 70 61 63 6b 65 74 | l.back.from.flow-based.to.packet |
| 4bde0 | 2d 62 61 73 65 64 20 62 61 6c 61 6e 63 69 6e 67 20 75 6e 74 69 6c 20 65 61 63 68 20 66 6c 6f 77 | -based.balancing.until.each.flow |
| 4be00 | 20 69 73 20 72 65 65 73 74 61 62 6c 69 73 68 65 64 2e 00 46 6f 6c 6c 6f 77 20 74 68 65 20 53 53 | .is.reestablished..Follow.the.SS |
| 4be20 | 48 20 64 79 6e 61 6d 69 63 2d 70 72 6f 74 65 63 74 69 6f 6e 20 6c 6f 67 2e 00 46 6f 6c 6c 6f 77 | H.dynamic-protection.log..Follow |
| 4be40 | 20 74 68 65 20 53 53 48 20 73 65 72 76 65 72 20 6c 6f 67 2e 00 46 6f 6c 6c 6f 77 20 74 68 65 20 | .the.SSH.server.log..Follow.the. |
| 4be60 | 69 6e 73 74 72 75 63 74 69 6f 6e 73 20 74 6f 20 67 65 6e 65 72 61 74 65 20 43 41 20 63 65 72 74 | instructions.to.generate.CA.cert |
| 4be80 | 20 28 69 6e 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d 6f 64 65 29 3a 00 46 6f 6c 6c 6f 77 | .(in.configuration.mode):.Follow |
| 4bea0 | 20 74 68 65 20 69 6e 73 74 72 75 63 74 69 6f 6e 73 20 74 6f 20 67 65 6e 65 72 61 74 65 20 73 65 | .the.instructions.to.generate.se |
| 4bec0 | 72 76 65 72 20 63 65 72 74 20 28 69 6e 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d 6f 64 65 | rver.cert.(in.configuration.mode |
| 4bee0 | 29 3a 00 46 6f 6c 6c 6f 77 20 74 68 65 20 6c 6f 67 73 20 66 6f 72 20 6d 44 4e 53 20 72 65 70 65 | ):.Follow.the.logs.for.mDNS.repe |
| 4bf00 | 61 74 65 72 20 73 65 72 76 69 63 65 2e 00 46 6f 72 20 3a 72 65 66 3a 60 62 69 64 69 72 65 63 74 | ater.service..For.:ref:`bidirect |
| 4bf20 | 69 6f 6e 61 6c 2d 6e 61 74 60 20 61 20 72 75 6c 65 20 66 6f 72 20 62 6f 74 68 20 3a 72 65 66 3a | ional-nat`.a.rule.for.both.:ref: |
| 4bf40 | 60 73 6f 75 72 63 65 2d 6e 61 74 60 20 61 6e 64 20 3a 72 65 66 3a 60 64 65 73 74 69 6e 61 74 69 | `source-nat`.and.:ref:`destinati |
| 4bf60 | 6f 6e 2d 6e 61 74 60 20 6e 65 65 64 73 20 74 6f 20 62 65 20 63 72 65 61 74 65 64 2e 00 46 6f 72 | on-nat`.needs.to.be.created..For |
| 4bf80 | 20 3a 72 65 66 3a 60 64 65 73 74 69 6e 61 74 69 6f 6e 2d 6e 61 74 60 20 72 75 6c 65 73 20 74 68 | .:ref:`destination-nat`.rules.th |
| 4bfa0 | 65 20 70 61 63 6b 65 74 73 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 77 69 | e.packets.destination.address.wi |
| 4bfc0 | 6c 6c 20 62 65 20 72 65 70 6c 61 63 65 64 20 62 79 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 | ll.be.replaced.by.the.specified. |
| 4bfe0 | 61 64 64 72 65 73 73 20 69 6e 20 74 68 65 20 60 74 72 61 6e 73 6c 61 74 69 6f 6e 20 61 64 64 72 | address.in.the.`translation.addr |
| 4c000 | 65 73 73 60 20 63 6f 6d 6d 61 6e 64 2e 00 46 6f 72 20 3a 72 65 66 3a 60 73 6f 75 72 63 65 2d 6e | ess`.command..For.:ref:`source-n |
| 4c020 | 61 74 60 20 72 75 6c 65 73 20 74 68 65 20 70 61 63 6b 65 74 73 20 73 6f 75 72 63 65 20 61 64 64 | at`.rules.the.packets.source.add |
| 4c040 | 72 65 73 73 20 77 69 6c 6c 20 62 65 20 72 65 70 6c 61 63 65 64 20 77 69 74 68 20 74 68 65 20 61 | ress.will.be.replaced.with.the.a |
| 4c060 | 64 64 72 65 73 73 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 74 68 65 20 74 72 61 6e 73 6c 61 74 | ddress.specified.in.the.translat |
| 4c080 | 69 6f 6e 20 63 6f 6d 6d 61 6e 64 2e 20 41 20 70 6f 72 74 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 | ion.command..A.port.translation. |
| 4c0a0 | 63 61 6e 20 61 6c 73 6f 20 62 65 20 73 70 65 63 69 66 69 65 64 20 61 6e 64 20 69 73 20 70 61 72 | can.also.be.specified.and.is.par |
| 4c0c0 | 74 20 6f 66 20 74 68 65 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 61 64 64 72 65 73 73 2e 00 46 6f | t.of.the.translation.address..Fo |
| 4c0e0 | 72 20 45 6e 63 72 79 70 74 69 6f 6e 3a 00 46 6f 72 20 48 61 73 68 69 6e 67 3a 00 46 6f 72 20 49 | r.Encryption:.For.Hashing:.For.I |
| 4c100 | 53 2d 49 53 20 74 6f 70 20 6f 70 65 72 61 74 65 20 63 6f 72 72 65 63 74 6c 79 2c 20 6f 6e 65 20 | S-IS.top.operate.correctly,.one. |
| 4c120 | 6d 75 73 74 20 64 6f 20 74 68 65 20 65 71 75 69 76 61 6c 65 6e 74 20 6f 66 20 61 20 52 6f 75 74 | must.do.the.equivalent.of.a.Rout |
| 4c140 | 65 72 20 49 44 20 69 6e 20 43 4c 4e 53 2e 20 54 68 69 73 20 52 6f 75 74 65 72 20 49 44 20 69 73 | er.ID.in.CLNS..This.Router.ID.is |
| 4c160 | 20 63 61 6c 6c 65 64 20 74 68 65 20 3a 61 62 62 72 3a 60 4e 45 54 20 28 4e 65 74 77 6f 72 6b 20 | .called.the.:abbr:`NET.(Network. |
| 4c180 | 45 6e 74 69 74 79 20 54 69 74 6c 65 29 60 2e 20 54 68 69 73 20 6d 75 73 74 20 62 65 20 75 6e 69 | Entity.Title)`..This.must.be.uni |
| 4c1a0 | 71 75 65 20 66 6f 72 20 65 61 63 68 20 61 6e 64 20 65 76 65 72 79 20 72 6f 75 74 65 72 20 74 68 | que.for.each.and.every.router.th |
| 4c1c0 | 61 74 20 69 73 20 6f 70 65 72 61 74 69 6e 67 20 69 6e 20 49 53 2d 49 53 2e 20 49 74 20 61 6c 73 | at.is.operating.in.IS-IS..It.als |
| 4c1e0 | 6f 20 6d 75 73 74 20 6e 6f 74 20 62 65 20 64 75 70 6c 69 63 61 74 65 64 20 6f 74 68 65 72 77 69 | o.must.not.be.duplicated.otherwi |
| 4c200 | 73 65 20 74 68 65 20 73 61 6d 65 20 69 73 73 75 65 73 20 74 68 61 74 20 6f 63 63 75 72 20 77 69 | se.the.same.issues.that.occur.wi |
| 4c220 | 74 68 69 6e 20 4f 53 50 46 20 77 69 6c 6c 20 6f 63 63 75 72 20 77 69 74 68 69 6e 20 49 53 2d 49 | thin.OSPF.will.occur.within.IS-I |
| 4c240 | 53 20 77 68 65 6e 20 69 74 20 63 6f 6d 65 73 20 74 6f 20 73 61 69 64 20 64 75 70 6c 69 63 61 74 | S.when.it.comes.to.said.duplicat |
| 4c260 | 69 6f 6e 2e 00 46 6f 72 20 49 6e 63 6f 6d 69 6e 67 20 61 6e 64 20 49 6d 70 6f 72 74 20 52 6f 75 | ion..For.Incoming.and.Import.Rou |
| 4c280 | 74 65 2d 6d 61 70 73 20 69 66 20 77 65 20 72 65 63 65 69 76 65 20 61 20 76 36 20 67 6c 6f 62 61 | te-maps.if.we.receive.a.v6.globa |
| 4c2a0 | 6c 20 61 6e 64 20 76 36 20 4c 4c 20 61 64 64 72 65 73 73 20 66 6f 72 20 74 68 65 20 72 6f 75 74 | l.and.v6.LL.address.for.the.rout |
| 4c2c0 | 65 2c 20 74 68 65 6e 20 70 72 65 66 65 72 20 74 6f 20 75 73 65 20 74 68 65 20 67 6c 6f 62 61 6c | e,.then.prefer.to.use.the.global |
| 4c2e0 | 20 61 64 64 72 65 73 73 20 61 73 20 74 68 65 20 6e 65 78 74 68 6f 70 2e 00 46 6f 72 20 4c 6f 63 | .address.as.the.nexthop..For.Loc |
| 4c300 | 61 6c 20 55 73 65 72 73 00 46 6f 72 20 4f 70 65 6e 46 61 62 72 69 63 20 74 6f 20 6f 70 65 72 61 | al.Users.For.OpenFabric.to.opera |
| 4c320 | 74 65 20 63 6f 72 72 65 63 74 6c 79 2c 20 6f 6e 65 20 6d 75 73 74 20 64 6f 20 74 68 65 20 65 71 | te.correctly,.one.must.do.the.eq |
| 4c340 | 75 69 76 61 6c 65 6e 74 20 6f 66 20 61 20 52 6f 75 74 65 72 20 49 44 20 69 6e 20 43 6f 6e 6e 65 | uivalent.of.a.Router.ID.in.Conne |
| 4c360 | 63 74 69 6f 6e 6c 65 73 73 20 4e 65 74 77 6f 72 6b 20 53 65 72 76 69 63 65 20 28 43 4c 4e 53 29 | ctionless.Network.Service.(CLNS) |
| 4c380 | 2e 20 54 68 69 73 20 52 6f 75 74 65 72 20 49 44 20 69 73 20 63 61 6c 6c 65 64 20 74 68 65 20 3a | ..This.Router.ID.is.called.the.: |
| 4c3a0 | 61 62 62 72 3a 60 4e 45 54 20 28 4e 65 74 77 6f 72 6b 20 45 6e 74 69 74 79 20 54 69 74 6c 65 29 | abbr:`NET.(Network.Entity.Title) |
| 4c3c0 | 60 2e 20 54 68 65 20 73 79 73 74 65 6d 20 69 64 65 6e 74 69 66 69 65 72 20 6d 75 73 74 20 62 65 | `..The.system.identifier.must.be |
| 4c3e0 | 20 75 6e 69 71 75 65 20 77 69 74 68 69 6e 20 74 68 65 20 6e 65 74 77 6f 72 6b 00 46 6f 72 20 52 | .unique.within.the.network.For.R |
| 4c400 | 41 44 49 55 53 20 75 73 65 72 73 00 46 6f 72 20 55 53 42 20 70 6f 72 74 20 69 6e 66 6f 72 6d 61 | ADIUS.users.For.USB.port.informa |
| 4c420 | 74 69 6f 6e 20 70 6c 65 61 73 65 20 72 65 66 6f 72 20 74 6f 3a 20 3a 72 65 66 3a 60 68 61 72 64 | tion.please.refor.to:.:ref:`hard |
| 4c440 | 77 61 72 65 5f 75 73 62 60 2e 00 46 6f 72 20 61 20 68 65 61 64 73 74 61 72 74 20 79 6f 75 20 63 | ware_usb`..For.a.headstart.you.c |
| 4c460 | 61 6e 20 75 73 65 20 74 68 65 20 62 65 6c 6f 77 20 65 78 61 6d 70 6c 65 20 6f 6e 20 68 6f 77 20 | an.use.the.below.example.on.how. |
| 4c480 | 74 6f 20 62 75 69 6c 64 20 61 20 62 6f 6e 64 20 77 69 74 68 20 74 77 6f 20 69 6e 74 65 72 66 61 | to.build.a.bond.with.two.interfa |
| 4c4a0 | 63 65 73 20 66 72 6f 6d 20 56 79 4f 53 20 74 6f 20 61 20 4a 75 6e 69 70 65 72 20 45 58 20 53 77 | ces.from.VyOS.to.a.Juniper.EX.Sw |
| 4c4c0 | 69 74 63 68 20 73 79 73 74 65 6d 2e 00 46 6f 72 20 61 20 68 65 61 64 73 74 61 72 74 20 79 6f 75 | itch.system..For.a.headstart.you |
| 4c4e0 | 20 63 61 6e 20 75 73 65 20 74 68 65 20 62 65 6c 6f 77 20 65 78 61 6d 70 6c 65 20 6f 6e 20 68 6f | .can.use.the.below.example.on.ho |
| 4c500 | 77 20 74 6f 20 62 75 69 6c 64 20 61 20 62 6f 6e 64 2c 70 6f 72 74 2d 63 68 61 6e 6e 65 6c 20 77 | w.to.build.a.bond,port-channel.w |
| 4c520 | 69 74 68 20 74 77 6f 20 69 6e 74 65 72 66 61 63 65 73 20 66 72 6f 6d 20 56 79 4f 53 20 74 6f 20 | ith.two.interfaces.from.VyOS.to. |
| 4c540 | 61 20 41 72 75 62 61 2f 48 50 20 32 35 31 30 47 20 73 77 69 74 63 68 2e 00 46 6f 72 20 61 20 6c | a.Aruba/HP.2510G.switch..For.a.l |
| 4c560 | 61 72 67 65 20 61 6d 6f 75 6e 74 20 6f 66 20 70 72 69 76 61 74 65 20 6d 61 63 68 69 6e 65 73 20 | arge.amount.of.private.machines. |
| 4c580 | 62 65 68 69 6e 64 20 74 68 65 20 4e 41 54 20 79 6f 75 72 20 61 64 64 72 65 73 73 20 70 6f 6f 6c | behind.the.NAT.your.address.pool |
| 4c5a0 | 20 6d 69 67 68 74 20 74 6f 20 62 65 20 62 69 67 67 65 72 2e 20 55 73 65 20 61 6e 79 20 61 64 64 | .might.to.be.bigger..Use.any.add |
| 4c5c0 | 72 65 73 73 20 69 6e 20 74 68 65 20 72 61 6e 67 65 20 31 30 30 2e 36 34 2e 30 2e 31 30 20 2d 20 | ress.in.the.range.100.64.0.10.-. |
| 4c5e0 | 31 30 30 2e 36 34 2e 30 2e 32 30 20 6f 6e 20 53 4e 41 54 20 72 75 6c 65 20 34 30 20 77 68 65 6e | 100.64.0.20.on.SNAT.rule.40.when |
| 4c600 | 20 64 6f 69 6e 67 20 74 68 65 20 74 72 61 6e 73 6c 61 74 69 6f 6e 00 46 6f 72 20 61 20 73 69 6d | .doing.the.translation.For.a.sim |
| 4c620 | 70 6c 65 20 68 6f 6d 65 20 6e 65 74 77 6f 72 6b 20 75 73 69 6e 67 20 6a 75 73 74 20 74 68 65 20 | ple.home.network.using.just.the. |
| 4c640 | 49 53 50 27 73 20 65 71 75 69 70 6d 65 6e 74 2c 20 74 68 69 73 20 69 73 20 75 73 75 61 6c 6c 79 | ISP's.equipment,.this.is.usually |
| 4c660 | 20 64 65 73 69 72 61 62 6c 65 2e 20 42 75 74 20 69 66 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 72 | .desirable..But.if.you.want.to.r |
| 4c680 | 75 6e 20 56 79 4f 53 20 61 73 20 79 6f 75 72 20 66 69 72 65 77 61 6c 6c 20 61 6e 64 20 72 6f 75 | un.VyOS.as.your.firewall.and.rou |
| 4c6a0 | 74 65 72 2c 20 74 68 69 73 20 77 69 6c 6c 20 72 65 73 75 6c 74 20 69 6e 20 68 61 76 69 6e 67 20 | ter,.this.will.result.in.having. |
| 4c6c0 | 61 20 64 6f 75 62 6c 65 20 4e 41 54 20 61 6e 64 20 66 69 72 65 77 61 6c 6c 20 73 65 74 75 70 2e | a.double.NAT.and.firewall.setup. |
| 4c6e0 | 20 54 68 69 73 20 72 65 73 75 6c 74 73 20 69 6e 20 61 20 66 65 77 20 65 78 74 72 61 20 6c 61 79 | .This.results.in.a.few.extra.lay |
| 4c700 | 65 72 73 20 6f 66 20 63 6f 6d 70 6c 65 78 69 74 79 2c 20 70 61 72 74 69 63 75 6c 61 72 6c 79 20 | ers.of.complexity,.particularly. |
| 4c720 | 69 66 20 79 6f 75 20 75 73 65 20 73 6f 6d 65 20 4e 41 54 20 6f 72 20 74 75 6e 6e 65 6c 20 66 65 | if.you.use.some.NAT.or.tunnel.fe |
| 4c740 | 61 74 75 72 65 73 2e 00 46 6f 72 20 63 6f 6e 6e 65 63 74 69 6f 6e 6c 65 73 73 20 70 72 6f 74 6f | atures..For.connectionless.proto |
| 4c760 | 63 6f 6c 73 20 61 73 20 6c 69 6b 65 20 49 43 4d 50 20 61 6e 64 20 55 44 50 2c 20 61 20 66 6c 6f | cols.as.like.ICMP.and.UDP,.a.flo |
| 4c780 | 77 20 69 73 20 63 6f 6e 73 69 64 65 72 65 64 20 63 6f 6d 70 6c 65 74 65 20 6f 6e 63 65 20 6e 6f | w.is.considered.complete.once.no |
| 4c7a0 | 20 6d 6f 72 65 20 70 61 63 6b 65 74 73 20 66 6f 72 20 74 68 69 73 20 66 6c 6f 77 20 61 70 70 65 | .more.packets.for.this.flow.appe |
| 4c7c0 | 61 72 20 61 66 74 65 72 20 63 6f 6e 66 69 67 75 72 61 62 6c 65 20 74 69 6d 65 6f 75 74 2e 00 46 | ar.after.configurable.timeout..F |
| 4c7e0 | 6f 72 20 65 76 65 72 79 20 63 6c 69 65 6e 74 20 69 6e 20 74 68 65 20 6f 70 65 6e 76 70 6e 20 73 | or.every.client.in.the.openvpn.s |
| 4c800 | 65 72 76 65 72 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 61 20 74 6f 74 70 20 73 65 63 72 65 | erver.configuration.a.totp.secre |
| 4c820 | 74 20 69 73 20 63 72 65 61 74 65 64 2e 20 54 6f 20 64 69 73 70 6c 61 79 20 74 68 65 20 61 75 74 | t.is.created..To.display.the.aut |
| 4c840 | 68 65 6e 74 69 63 61 74 69 6f 6e 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2c 20 75 73 65 20 74 68 65 | hentication.information,.use.the |
| 4c860 | 20 63 6f 6d 6d 61 6e 64 3a 00 46 6f 72 20 65 78 61 6d 70 6c 65 2c 20 69 66 20 70 72 6f 62 6c 65 | .command:.For.example,.if.proble |
| 4c880 | 6d 73 20 77 69 74 68 20 70 6f 6f 72 20 74 69 6d 65 20 73 79 6e 63 68 72 6f 6e 69 7a 61 74 69 6f | ms.with.poor.time.synchronizatio |
| 4c8a0 | 6e 20 61 72 65 20 65 78 70 65 72 69 65 6e 63 65 64 2c 20 74 68 65 20 77 69 6e 64 6f 77 20 63 61 | n.are.experienced,.the.window.ca |
| 4c8c0 | 6e 20 62 65 20 69 6e 63 72 65 61 73 65 64 20 66 72 6f 6d 20 69 74 73 20 64 65 66 61 75 6c 74 20 | n.be.increased.from.its.default. |
| 4c8e0 | 73 69 7a 65 20 6f 66 20 33 20 70 65 72 6d 69 74 74 65 64 20 63 6f 64 65 73 20 28 6f 6e 65 20 70 | size.of.3.permitted.codes.(one.p |
| 4c900 | 72 65 76 69 6f 75 73 20 63 6f 64 65 2c 20 74 68 65 20 63 75 72 72 65 6e 74 20 63 6f 64 65 2c 20 | revious.code,.the.current.code,. |
| 4c920 | 74 68 65 20 6e 65 78 74 20 63 6f 64 65 29 20 74 6f 20 31 37 20 70 65 72 6d 69 74 74 65 64 20 63 | the.next.code).to.17.permitted.c |
| 4c940 | 6f 64 65 73 20 28 74 68 65 20 38 20 70 72 65 76 69 6f 75 73 20 63 6f 64 65 73 2c 20 74 68 65 20 | odes.(the.8.previous.codes,.the. |
| 4c960 | 63 75 72 72 65 6e 74 20 63 6f 64 65 2c 20 61 6e 64 20 74 68 65 20 38 20 6e 65 78 74 20 63 6f 64 | current.code,.and.the.8.next.cod |
| 4c980 | 65 73 29 2e 20 54 68 69 73 20 77 69 6c 6c 20 70 65 72 6d 69 74 20 66 6f 72 20 61 20 74 69 6d 65 | es)..This.will.permit.for.a.time |
| 4c9a0 | 20 73 6b 65 77 20 6f 66 20 75 70 20 74 6f 20 34 20 6d 69 6e 75 74 65 73 20 62 65 74 77 65 65 6e | .skew.of.up.to.4.minutes.between |
| 4c9c0 | 20 63 6c 69 65 6e 74 20 61 6e 64 20 73 65 72 76 65 72 2e 00 46 6f 72 20 65 78 61 6d 70 6c 65 3a | .client.and.server..For.example: |
| 4c9e0 | 00 46 6f 72 20 66 69 72 65 77 61 6c 6c 20 66 69 6c 74 65 72 69 6e 67 2c 20 63 6f 6e 66 69 67 75 | .For.firewall.filtering,.configu |
| 4ca00 | 72 61 74 69 6f 6e 20 73 68 6f 75 6c 64 20 62 65 20 64 6f 6e 65 20 69 6e 20 60 60 73 65 74 20 66 | ration.should.be.done.in.``set.f |
| 4ca20 | 69 72 65 77 61 6c 6c 20 5b 69 70 76 34 20 7c 20 69 70 76 36 5d 20 2e 2e 2e 60 60 00 46 6f 72 20 | irewall.[ipv4.|.ipv6]....``.For. |
| 4ca40 | 66 69 72 65 77 61 6c 6c 20 66 69 6c 74 65 72 69 6e 67 2c 20 66 69 72 65 77 61 6c 6c 20 72 75 6c | firewall.filtering,.firewall.rul |
| 4ca60 | 65 73 20 6e 65 65 64 20 74 6f 20 62 65 20 63 72 65 61 74 65 64 2e 20 45 61 63 68 20 72 75 6c 65 | es.need.to.be.created..Each.rule |
| 4ca80 | 20 69 73 20 6e 75 6d 62 65 72 65 64 2c 20 68 61 73 20 61 6e 20 61 63 74 69 6f 6e 20 74 6f 20 61 | .is.numbered,.has.an.action.to.a |
| 4caa0 | 70 70 6c 79 20 69 66 20 74 68 65 20 72 75 6c 65 20 69 73 20 6d 61 74 63 68 65 64 2c 20 61 6e 64 | pply.if.the.rule.is.matched,.and |
| 4cac0 | 20 74 68 65 20 61 62 69 6c 69 74 79 20 74 6f 20 73 70 65 63 69 66 79 20 6d 75 6c 74 69 70 6c 65 | .the.ability.to.specify.multiple |
| 4cae0 | 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 2e 20 44 61 74 61 20 70 61 63 6b 65 74 73 | .matching.criteria..Data.packets |
| 4cb00 | 20 67 6f 20 74 68 72 6f 75 67 68 20 74 68 65 20 72 75 6c 65 73 20 66 72 6f 6d 20 31 20 2d 20 39 | .go.through.the.rules.from.1.-.9 |
| 4cb20 | 39 39 39 39 39 2c 20 73 6f 20 6f 72 64 65 72 20 69 73 20 63 72 75 63 69 61 6c 2e 20 41 74 20 74 | 99999,.so.order.is.crucial..At.t |
| 4cb40 | 68 65 20 66 69 72 73 74 20 6d 61 74 63 68 20 74 68 65 20 61 63 74 69 6f 6e 20 6f 66 20 74 68 65 | he.first.match.the.action.of.the |
| 4cb60 | 20 72 75 6c 65 20 77 69 6c 6c 20 62 65 20 65 78 65 63 75 74 65 64 2e 00 46 6f 72 20 66 69 72 65 | .rule.will.be.executed..For.fire |
| 4cb80 | 77 61 6c 6c 20 66 69 6c 74 65 72 69 6e 67 2c 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 20 6e | wall.filtering,.firewall.rules.n |
| 4cba0 | 65 65 64 73 20 74 6f 20 62 65 20 63 72 65 61 74 65 64 2e 20 45 61 63 68 20 72 75 6c 65 20 69 73 | eeds.to.be.created..Each.rule.is |
| 4cbc0 | 20 6e 75 6d 62 65 72 65 64 2c 20 68 61 73 20 61 6e 20 61 63 74 69 6f 6e 20 74 6f 20 61 70 70 6c | .numbered,.has.an.action.to.appl |
| 4cbe0 | 79 20 69 66 20 74 68 65 20 72 75 6c 65 20 69 73 20 6d 61 74 63 68 65 64 2c 20 61 6e 64 20 74 68 | y.if.the.rule.is.matched,.and.th |
| 4cc00 | 65 20 61 62 69 6c 69 74 79 20 74 6f 20 73 70 65 63 69 66 79 20 6d 75 6c 74 69 70 6c 65 20 63 72 | e.ability.to.specify.multiple.cr |
| 4cc20 | 69 74 65 72 69 61 20 6d 61 74 63 68 65 72 73 2e 20 44 61 74 61 20 70 61 63 6b 65 74 73 20 67 6f | iteria.matchers..Data.packets.go |
| 4cc40 | 20 74 68 72 6f 75 67 68 20 74 68 65 20 72 75 6c 65 73 20 66 72 6f 6d 20 31 20 2d 20 39 39 39 39 | .through.the.rules.from.1.-.9999 |
| 4cc60 | 39 39 2c 20 73 6f 20 6f 72 64 65 72 20 69 73 20 63 72 75 63 69 61 6c 2e 20 41 74 20 74 68 65 20 | 99,.so.order.is.crucial..At.the. |
| 4cc80 | 66 69 72 73 74 20 6d 61 74 63 68 20 74 68 65 20 61 63 74 69 6f 6e 20 6f 66 20 74 68 65 20 72 75 | first.match.the.action.of.the.ru |
| 4cca0 | 6c 65 20 77 69 6c 6c 20 62 65 20 65 78 65 63 75 74 65 64 2e 00 46 6f 72 20 66 72 61 67 6d 65 6e | le.will.be.executed..For.fragmen |
| 4ccc0 | 74 65 64 20 54 43 50 20 6f 72 20 55 44 50 20 70 61 63 6b 65 74 73 20 61 6e 64 20 61 6c 6c 20 6f | ted.TCP.or.UDP.packets.and.all.o |
| 4cce0 | 74 68 65 72 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 70 72 6f 74 6f 63 6f 6c 20 74 72 61 66 | ther.IPv4.and.IPv6.protocol.traf |
| 4cd00 | 66 69 63 2c 20 74 68 65 20 73 6f 75 72 63 65 20 61 6e 64 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 | fic,.the.source.and.destination. |
| 4cd20 | 70 6f 72 74 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 69 73 20 6f 6d 69 74 74 65 64 2e 20 46 6f 72 | port.information.is.omitted..For |
| 4cd40 | 20 6e 6f 6e 2d 49 50 20 74 72 61 66 66 69 63 2c 20 74 68 65 20 66 6f 72 6d 75 6c 61 20 69 73 20 | .non-IP.traffic,.the.formula.is. |
| 4cd60 | 74 68 65 20 73 61 6d 65 20 61 73 20 66 6f 72 20 74 68 65 20 6c 61 79 65 72 32 20 74 72 61 6e 73 | the.same.as.for.the.layer2.trans |
| 4cd80 | 6d 69 74 20 68 61 73 68 20 70 6f 6c 69 63 79 2e 00 46 6f 72 20 67 65 6e 65 72 61 74 69 6e 67 20 | mit.hash.policy..For.generating. |
| 4cda0 | 61 6e 20 4f 54 50 20 6b 65 79 20 69 6e 20 56 79 4f 53 2c 20 79 6f 75 20 63 61 6e 20 75 73 65 20 | an.OTP.key.in.VyOS,.you.can.use. |
| 4cdc0 | 74 68 65 20 43 4c 49 20 63 6f 6d 6d 61 6e 64 20 28 6f 70 65 72 61 74 69 6f 6e 61 6c 20 6d 6f 64 | the.CLI.command.(operational.mod |
| 4cde0 | 65 29 3a 00 46 6f 72 20 69 6e 62 6f 75 6e 64 20 75 70 64 61 74 65 73 20 74 68 65 20 6f 72 64 65 | e):.For.inbound.updates.the.orde |
| 4ce00 | 72 20 6f 66 20 70 72 65 66 65 72 65 6e 63 65 20 69 73 3a 00 46 6f 72 20 69 6e 73 74 61 6e 63 65 | r.of.preference.is:.For.instance |
| 4ce20 | 2c 20 77 69 74 68 20 3a 63 6f 64 65 3a 60 73 65 74 20 71 6f 73 20 70 6f 6c 69 63 79 20 73 68 61 | ,.with.:code:`set.qos.policy.sha |
| 4ce40 | 70 65 72 20 4d 59 2d 53 48 41 50 45 52 20 63 6c 61 73 73 20 33 30 20 73 65 74 2d 64 73 63 70 20 | per.MY-SHAPER.class.30.set-dscp. |
| 4ce60 | 45 46 60 20 79 6f 75 20 77 6f 75 6c 64 20 62 65 20 6d 6f 64 69 66 79 69 6e 67 20 74 68 65 20 44 | EF`.you.would.be.modifying.the.D |
| 4ce80 | 53 43 50 20 66 69 65 6c 64 20 76 61 6c 75 65 20 6f 66 20 70 61 63 6b 65 74 73 20 69 6e 20 74 68 | SCP.field.value.of.packets.in.th |
| 4cea0 | 61 74 20 63 6c 61 73 73 20 74 6f 20 45 78 70 65 64 69 74 65 20 46 6f 72 77 61 72 64 69 6e 67 2e | at.class.to.Expedite.Forwarding. |
| 4cec0 | 00 46 6f 72 20 69 70 76 34 3a 00 46 6f 72 20 6c 61 74 65 73 74 20 72 65 6c 65 61 73 65 73 2c 20 | .For.ipv4:.For.latest.releases,. |
| 4cee0 | 72 65 66 65 72 20 74 68 65 20 60 66 69 72 65 77 61 6c 6c 20 28 69 6e 74 65 72 66 61 63 65 2d 67 | refer.the.`firewall.(interface-g |
| 4cf00 | 72 6f 75 70 73 29 20 3c 68 74 74 70 73 3a 2f 2f 64 6f 63 73 2e 76 79 6f 73 2e 69 6f 2f 65 6e 2f | roups).<https://docs.vyos.io/en/ |
| 4cf20 | 6c 61 74 65 73 74 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 66 69 72 65 77 61 6c 6c 2f 67 65 | latest/configuration/firewall/ge |
| 4cf40 | 6e 65 72 61 6c 2e 68 74 6d 6c 23 69 6e 74 65 72 66 61 63 65 2d 67 72 6f 75 70 73 3e 60 5f 20 6d | neral.html#interface-groups>`_.m |
| 4cf60 | 61 69 6e 20 70 61 67 65 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 7a 6f 6e 65 20 62 61 73 65 64 | ain.page.to.configure.zone.based |
| 4cf80 | 20 72 75 6c 65 73 2e 20 4e 65 77 20 73 79 6e 74 61 78 20 77 61 73 20 69 6e 74 72 6f 64 75 63 65 | .rules..New.syntax.was.introduce |
| 4cfa0 | 64 20 68 65 72 65 20 3a 76 79 74 61 73 6b 3a 60 54 35 31 36 30 60 00 46 6f 72 20 6c 61 74 65 73 | d.here.:vytask:`T5160`.For.lates |
| 4cfc0 | 74 20 72 65 6c 65 61 73 65 73 2c 20 72 65 66 65 72 20 74 68 65 20 60 66 69 72 65 77 61 6c 6c 20 | t.releases,.refer.the.`firewall. |
| 4cfe0 | 3c 68 74 74 70 73 3a 2f 2f 64 6f 63 73 2e 76 79 6f 73 2e 69 6f 2f 65 6e 2f 6c 61 74 65 73 74 2f | <https://docs.vyos.io/en/latest/ |
| 4d000 | 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 66 69 72 65 77 61 6c 6c 2f 67 65 6e 65 72 61 6c 2e 68 | configuration/firewall/general.h |
| 4d020 | 74 6d 6c 23 69 6e 74 65 72 66 61 63 65 2d 67 72 6f 75 70 73 3e 60 5f 20 6d 61 69 6e 20 70 61 67 | tml#interface-groups>`_.main.pag |
| 4d040 | 65 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 7a 6f 6e 65 20 62 61 73 65 64 20 72 75 6c 65 73 2e | e.to.configure.zone.based.rules. |
| 4d060 | 20 4e 65 77 20 73 79 6e 74 61 78 20 77 61 73 20 69 6e 74 72 6f 64 75 63 65 64 20 68 65 72 65 20 | .New.syntax.was.introduced.here. |
| 4d080 | 3a 76 79 74 61 73 6b 3a 60 54 35 31 36 30 60 00 46 6f 72 20 6d 6f 72 65 20 69 6e 66 6f 72 6d 61 | :vytask:`T5160`.For.more.informa |
| 4d0a0 | 74 69 6f 6e 20 6f 6e 20 68 6f 77 20 4d 50 4c 53 20 6c 61 62 65 6c 20 73 77 69 74 63 68 69 6e 67 | tion.on.how.MPLS.label.switching |
| 4d0c0 | 20 77 6f 72 6b 73 2c 20 70 6c 65 61 73 65 20 67 6f 20 76 69 73 69 74 20 60 57 69 6b 69 70 65 64 | .works,.please.go.visit.`Wikiped |
| 4d0e0 | 69 61 20 28 4d 50 4c 53 29 60 5f 2e 00 46 6f 72 20 6d 75 6c 74 69 20 68 6f 70 20 73 65 73 73 69 | ia.(MPLS)`_..For.multi.hop.sessi |
| 4d100 | 6f 6e 73 20 6f 6e 6c 79 2e 20 43 6f 6e 66 69 67 75 72 65 20 74 68 65 20 6d 69 6e 69 6d 75 6d 20 | ons.only..Configure.the.minimum. |
| 4d120 | 65 78 70 65 63 74 65 64 20 54 54 4c 20 66 6f 72 20 61 6e 20 69 6e 63 6f 6d 69 6e 67 20 42 46 44 | expected.TTL.for.an.incoming.BFD |
| 4d140 | 20 63 6f 6e 74 72 6f 6c 20 70 61 63 6b 65 74 2e 00 46 6f 72 20 6e 65 74 77 6f 72 6b 20 6d 61 69 | .control.packet..For.network.mai |
| 4d160 | 6e 74 65 6e 61 6e 63 65 2c 20 69 74 27 73 20 61 20 67 6f 6f 64 20 69 64 65 61 20 74 6f 20 64 69 | ntenance,.it's.a.good.idea.to.di |
| 4d180 | 72 65 63 74 20 75 73 65 72 73 20 74 6f 20 61 20 62 61 63 6b 75 70 20 73 65 72 76 65 72 20 73 6f | rect.users.to.a.backup.server.so |
| 4d1a0 | 20 74 68 61 74 20 74 68 65 20 70 72 69 6d 61 72 79 20 73 65 72 76 65 72 20 63 61 6e 20 62 65 20 | .that.the.primary.server.can.be. |
| 4d1c0 | 73 61 66 65 6c 79 20 74 61 6b 65 6e 20 6f 75 74 20 6f 66 20 73 65 72 76 69 63 65 2e 20 49 74 27 | safely.taken.out.of.service..It' |
| 4d1e0 | 73 20 70 6f 73 73 69 62 6c 65 20 74 6f 20 73 77 69 74 63 68 20 79 6f 75 72 20 50 50 50 6f 45 20 | s.possible.to.switch.your.PPPoE. |
| 4d200 | 73 65 72 76 65 72 20 74 6f 20 6d 61 69 6e 74 65 6e 61 6e 63 65 20 6d 6f 64 65 20 77 68 65 72 65 | server.to.maintenance.mode.where |
| 4d220 | 20 69 74 20 6d 61 69 6e 74 61 69 6e 73 20 61 6c 72 65 61 64 79 20 65 73 74 61 62 6c 69 73 68 65 | .it.maintains.already.establishe |
| 4d240 | 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2c 20 62 75 74 20 72 65 66 75 73 65 73 20 6e 65 77 20 63 | d.connections,.but.refuses.new.c |
| 4d260 | 6f 6e 6e 65 63 74 69 6f 6e 20 61 74 74 65 6d 70 74 73 2e 00 46 6f 72 20 6e 65 74 77 6f 72 6b 73 | onnection.attempts..For.networks |
| 4d280 | 20 63 6f 6e 73 69 73 74 69 6e 67 20 6f 66 20 56 79 4f 53 20 61 6e 64 20 6f 74 68 65 72 20 4c 69 | .consisting.of.VyOS.and.other.Li |
| 4d2a0 | 6e 75 78 20 73 79 73 74 65 6d 73 20 72 75 6e 6e 69 6e 67 20 72 65 6c 61 74 69 76 65 6c 79 20 72 | nux.systems.running.relatively.r |
| 4d2c0 | 65 63 65 6e 74 20 76 65 72 73 69 6f 6e 73 20 6f 66 20 74 68 65 20 63 68 72 6f 6e 79 20 64 61 65 | ecent.versions.of.the.chrony.dae |
| 4d2e0 | 6d 6f 6e 2c 20 4e 54 50 20 70 61 63 6b 65 74 73 20 63 61 6e 20 62 65 20 22 74 75 6e 6e 65 6c 65 | mon,.NTP.packets.can.be."tunnele |
| 4d300 | 64 22 20 6f 76 65 72 20 50 54 50 2e 20 4e 54 50 20 6f 76 65 72 20 50 54 50 20 70 72 6f 76 69 64 | d".over.PTP..NTP.over.PTP.provid |
| 4d320 | 65 73 20 74 68 65 20 62 65 73 74 20 6f 66 20 62 6f 74 68 20 77 6f 72 6c 64 73 2c 20 6c 65 76 65 | es.the.best.of.both.worlds,.leve |
| 4d340 | 72 61 67 69 6e 67 20 68 61 72 64 77 61 72 65 20 73 75 70 70 6f 72 74 20 66 6f 72 20 74 69 6d 65 | raging.hardware.support.for.time |
| 4d360 | 73 74 61 6d 70 69 6e 67 20 50 54 50 20 70 61 63 6b 65 74 73 20 77 68 69 6c 65 20 72 65 74 61 69 | stamping.PTP.packets.while.retai |
| 4d380 | 6e 69 6e 67 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 6c 65 78 69 62 69 6c 69 | ning.the.configuration.flexibili |
| 4d3a0 | 74 79 20 61 6e 64 20 66 61 75 6c 74 20 74 6f 6c 65 72 61 6e 63 65 20 6f 66 20 4e 54 50 2e 00 46 | ty.and.fault.tolerance.of.NTP..F |
| 4d3c0 | 6f 72 20 6f 70 74 69 6d 61 6c 20 73 63 61 6c 61 62 69 6c 69 74 79 2c 20 4d 75 6c 74 69 63 61 73 | or.optimal.scalability,.Multicas |
| 4d3e0 | 74 20 73 68 6f 75 6c 64 6e 27 74 20 62 65 20 75 73 65 64 20 61 74 20 61 6c 6c 2c 20 62 75 74 20 | t.shouldn't.be.used.at.all,.but. |
| 4d400 | 69 6e 73 74 65 61 64 20 75 73 65 20 42 47 50 20 74 6f 20 73 69 67 6e 61 6c 20 61 6c 6c 20 63 6f | instead.use.BGP.to.signal.all.co |
| 4d420 | 6e 6e 65 63 74 65 64 20 64 65 76 69 63 65 73 20 62 65 74 77 65 65 6e 20 6c 65 61 76 65 73 2e 20 | nnected.devices.between.leaves.. |
| 4d440 | 55 6e 66 6f 72 74 75 6e 61 74 65 6c 79 2c 20 56 79 4f 53 20 64 6f 65 73 20 6e 6f 74 20 79 65 74 | Unfortunately,.VyOS.does.not.yet |
| 4d460 | 20 73 75 70 70 6f 72 74 20 74 68 69 73 2e 00 46 6f 72 20 6f 75 74 62 6f 75 6e 64 20 75 70 64 61 | .support.this..For.outbound.upda |
| 4d480 | 74 65 73 20 74 68 65 20 6f 72 64 65 72 20 6f 66 20 70 72 65 66 65 72 65 6e 63 65 20 69 73 3a 00 | tes.the.order.of.preference.is:. |
| 4d4a0 | 46 6f 72 20 72 65 66 65 72 65 6e 63 65 2c 20 61 20 64 65 73 63 72 69 70 74 69 6f 6e 20 63 61 6e | For.reference,.a.description.can |
| 4d4c0 | 20 62 65 20 64 65 66 69 6e 65 64 20 66 6f 72 20 65 76 65 72 79 20 64 65 66 69 6e 65 64 20 63 75 | .be.defined.for.every.defined.cu |
| 4d4e0 | 73 74 6f 6d 20 63 68 61 69 6e 2e 00 46 6f 72 20 72 65 66 65 72 65 6e 63 65 2c 20 61 20 64 65 73 | stom.chain..For.reference,.a.des |
| 4d500 | 63 72 69 70 74 69 6f 6e 20 63 61 6e 20 62 65 20 64 65 66 69 6e 65 64 20 66 6f 72 20 65 76 65 72 | cription.can.be.defined.for.ever |
| 4d520 | 79 20 73 69 6e 67 6c 65 20 72 75 6c 65 2c 20 61 6e 64 20 66 6f 72 20 65 76 65 72 79 20 64 65 66 | y.single.rule,.and.for.every.def |
| 4d540 | 69 6e 65 64 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 2e 00 46 6f 72 20 73 65 63 75 72 69 74 79 2c | ined.custom.chain..For.security, |
| 4d560 | 20 74 68 65 20 6c 69 73 74 65 6e 20 61 64 64 72 65 73 73 20 73 68 6f 75 6c 64 20 6f 6e 6c 79 20 | .the.listen.address.should.only. |
| 4d580 | 62 65 20 75 73 65 64 20 6f 6e 20 69 6e 74 65 72 6e 61 6c 2f 74 72 75 73 74 65 64 20 6e 65 74 77 | be.used.on.internal/trusted.netw |
| 4d5a0 | 6f 72 6b 73 21 00 46 6f 72 20 73 65 72 69 61 6c 20 76 69 61 20 55 53 42 20 70 6f 72 74 20 69 6e | orks!.For.serial.via.USB.port.in |
| 4d5c0 | 66 6f 72 6d 61 74 69 6f 6e 20 70 6c 65 61 73 65 20 72 65 66 6f 72 20 74 6f 3a 20 3a 72 65 66 3a | formation.please.refor.to:.:ref: |
| 4d5e0 | 60 68 61 72 64 77 61 72 65 5f 75 73 62 60 2e 00 46 6f 72 20 73 69 6d 70 6c 69 63 69 74 79 20 77 | `hardware_usb`..For.simplicity.w |
| 4d600 | 65 27 6c 6c 20 61 73 73 75 6d 65 20 74 68 61 74 20 74 68 65 20 70 72 6f 74 6f 63 6f 6c 20 69 73 | e'll.assume.that.the.protocol.is |
| 4d620 | 20 47 52 45 2c 20 69 74 27 73 20 6e 6f 74 20 68 61 72 64 20 74 6f 20 67 75 65 73 73 20 77 68 61 | .GRE,.it's.not.hard.to.guess.wha |
| 4d640 | 74 20 6e 65 65 64 73 20 74 6f 20 62 65 20 63 68 61 6e 67 65 64 20 74 6f 20 6d 61 6b 65 20 69 74 | t.needs.to.be.changed.to.make.it |
| 4d660 | 20 77 6f 72 6b 20 77 69 74 68 20 61 20 64 69 66 66 65 72 65 6e 74 20 70 72 6f 74 6f 63 6f 6c 2e | .work.with.a.different.protocol. |
| 4d680 | 20 57 65 20 61 73 73 75 6d 65 20 74 68 61 74 20 49 50 73 65 63 20 77 69 6c 6c 20 75 73 65 20 70 | .We.assume.that.IPsec.will.use.p |
| 4d6a0 | 72 65 2d 73 68 61 72 65 64 20 73 65 63 72 65 74 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 | re-shared.secret.authentication. |
| 4d6c0 | 61 6e 64 20 77 69 6c 6c 20 75 73 65 20 41 45 53 31 32 38 2f 53 48 41 31 20 66 6f 72 20 74 68 65 | and.will.use.AES128/SHA1.for.the |
| 4d6e0 | 20 63 69 70 68 65 72 20 61 6e 64 20 68 61 73 68 2e 20 41 64 6a 75 73 74 20 74 68 69 73 20 61 73 | .cipher.and.hash..Adjust.this.as |
| 4d700 | 20 6e 65 63 65 73 73 61 72 79 2e 00 46 6f 72 20 74 68 65 20 3a 72 65 66 3a 60 64 65 73 74 69 6e | .necessary..For.the.:ref:`destin |
| 4d720 | 61 74 69 6f 6e 2d 6e 61 74 36 36 60 20 72 75 6c 65 2c 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 | ation-nat66`.rule,.the.destinati |
| 4d740 | 6f 6e 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 70 61 63 6b 65 74 20 69 73 72 65 70 6c 61 | on.address.of.the.packet.isrepla |
| 4d760 | 63 65 64 20 62 79 20 74 68 65 20 61 64 64 72 65 73 73 20 63 61 6c 63 75 6c 61 74 65 64 20 66 72 | ced.by.the.address.calculated.fr |
| 4d780 | 6f 6d 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 61 64 64 72 65 73 73 20 6f 72 20 70 72 65 66 | om.the.specified.address.or.pref |
| 4d7a0 | 69 78 20 69 6e 20 74 68 65 20 60 74 72 61 6e 73 6c 61 74 69 6f 6e 20 61 64 64 72 65 73 73 60 20 | ix.in.the.`translation.address`. |
| 4d7c0 | 63 6f 6d 6d 61 6e 64 00 46 6f 72 20 74 68 65 20 4f 70 65 6e 56 50 4e 20 74 72 61 66 66 69 63 20 | command.For.the.OpenVPN.traffic. |
| 4d7e0 | 74 6f 20 70 61 73 73 20 74 68 72 6f 75 67 68 20 74 68 65 20 57 41 4e 20 69 6e 74 65 72 66 61 63 | to.pass.through.the.WAN.interfac |
| 4d800 | 65 2c 20 79 6f 75 20 6d 75 73 74 20 63 72 65 61 74 65 20 61 20 66 69 72 65 77 61 6c 6c 20 65 78 | e,.you.must.create.a.firewall.ex |
| 4d820 | 63 65 70 74 69 6f 6e 2e 00 46 6f 72 20 74 68 65 20 57 69 72 65 47 75 61 72 64 20 74 72 61 66 66 | ception..For.the.WireGuard.traff |
| 4d840 | 69 63 20 74 6f 20 70 61 73 73 20 74 68 72 6f 75 67 68 20 74 68 65 20 57 41 4e 20 69 6e 74 65 72 | ic.to.pass.through.the.WAN.inter |
| 4d860 | 66 61 63 65 2c 20 79 6f 75 20 6d 75 73 74 20 63 72 65 61 74 65 20 61 20 66 69 72 65 77 61 6c 6c | face,.you.must.create.a.firewall |
| 4d880 | 20 65 78 63 65 70 74 69 6f 6e 2e 00 46 6f 72 20 74 68 65 20 61 76 65 72 61 67 65 20 75 73 65 72 | .exception..For.the.average.user |
| 4d8a0 | 20 61 20 73 65 72 69 61 6c 20 63 6f 6e 73 6f 6c 65 20 68 61 73 20 6e 6f 20 61 64 76 61 6e 74 61 | .a.serial.console.has.no.advanta |
| 4d8c0 | 67 65 20 6f 76 65 72 20 61 20 63 6f 6e 73 6f 6c 65 20 6f 66 66 65 72 65 64 20 62 79 20 61 20 64 | ge.over.a.console.offered.by.a.d |
| 4d8e0 | 69 72 65 63 74 6c 79 20 61 74 74 61 63 68 65 64 20 6b 65 79 62 6f 61 72 64 20 61 6e 64 20 73 63 | irectly.attached.keyboard.and.sc |
| 4d900 | 72 65 65 6e 2e 20 53 65 72 69 61 6c 20 63 6f 6e 73 6f 6c 65 73 20 61 72 65 20 6d 75 63 68 20 73 | reen..Serial.consoles.are.much.s |
| 4d920 | 6c 6f 77 65 72 2c 20 74 61 6b 69 6e 67 20 75 70 20 74 6f 20 61 20 73 65 63 6f 6e 64 20 74 6f 20 | lower,.taking.up.to.a.second.to. |
| 4d940 | 66 69 6c 6c 20 61 20 38 30 20 63 6f 6c 75 6d 6e 20 62 79 20 32 34 20 6c 69 6e 65 20 73 63 72 65 | fill.a.80.column.by.24.line.scre |
| 4d960 | 65 6e 2e 20 53 65 72 69 61 6c 20 63 6f 6e 73 6f 6c 65 73 20 67 65 6e 65 72 61 6c 6c 79 20 6f 6e | en..Serial.consoles.generally.on |
| 4d980 | 6c 79 20 73 75 70 70 6f 72 74 20 6e 6f 6e 2d 70 72 6f 70 6f 72 74 69 6f 6e 61 6c 20 41 53 43 49 | ly.support.non-proportional.ASCI |
| 4d9a0 | 49 20 74 65 78 74 2c 20 77 69 74 68 20 6c 69 6d 69 74 65 64 20 73 75 70 70 6f 72 74 20 66 6f 72 | I.text,.with.limited.support.for |
| 4d9c0 | 20 6c 61 6e 67 75 61 67 65 73 20 6f 74 68 65 72 20 74 68 61 6e 20 45 6e 67 6c 69 73 68 2e 00 46 | .languages.other.than.English..F |
| 4d9e0 | 6f 72 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 2c 20 67 72 6f 75 70 73 20 63 61 6e 20 61 | or.the.destination,.groups.can.a |
| 4da00 | 6c 73 6f 20 62 65 20 75 73 65 64 20 69 6e 73 74 65 61 64 20 6f 66 20 61 6e 20 61 64 64 72 65 73 | lso.be.used.instead.of.an.addres |
| 4da20 | 73 2e 00 46 6f 72 20 74 68 65 20 69 6e 67 72 65 73 73 20 74 72 61 66 66 69 63 20 6f 66 20 61 6e | s..For.the.ingress.traffic.of.an |
| 4da40 | 20 69 6e 74 65 72 66 61 63 65 2c 20 74 68 65 72 65 20 69 73 20 6f 6e 6c 79 20 6f 6e 65 20 70 6f | .interface,.there.is.only.one.po |
| 4da60 | 6c 69 63 79 20 79 6f 75 20 63 61 6e 20 64 69 72 65 63 74 6c 79 20 61 70 70 6c 79 2c 20 61 20 2a | licy.you.can.directly.apply,.a.* |
| 4da80 | 2a 4c 69 6d 69 74 65 72 2a 2a 20 70 6f 6c 69 63 79 2e 20 59 6f 75 20 63 61 6e 6e 6f 74 20 61 70 | *Limiter**.policy..You.cannot.ap |
| 4daa0 | 70 6c 79 20 61 20 73 68 61 70 69 6e 67 20 70 6f 6c 69 63 79 20 64 69 72 65 63 74 6c 79 20 74 6f | ply.a.shaping.policy.directly.to |
| 4dac0 | 20 74 68 65 20 69 6e 67 72 65 73 73 20 74 72 61 66 66 69 63 20 6f 66 20 61 6e 79 20 69 6e 74 65 | .the.ingress.traffic.of.any.inte |
| 4dae0 | 72 66 61 63 65 20 62 65 63 61 75 73 65 20 73 68 61 70 69 6e 67 20 6f 6e 6c 79 20 77 6f 72 6b 73 | rface.because.shaping.only.works |
| 4db00 | 20 66 6f 72 20 6f 75 74 62 6f 75 6e 64 20 74 72 61 66 66 69 63 2e 00 46 6f 72 20 74 68 65 20 73 | .for.outbound.traffic..For.the.s |
| 4db20 | 61 6b 65 20 6f 66 20 64 65 6d 6f 6e 73 74 72 61 74 69 6f 6e 2c 20 60 65 78 61 6d 70 6c 65 20 23 | ake.of.demonstration,.`example.# |
| 4db40 | 31 20 69 6e 20 74 68 65 20 6f 66 66 69 63 69 61 6c 20 64 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 | 1.in.the.official.documentation. |
| 4db60 | 3c 68 74 74 70 73 3a 2f 2f 77 77 77 2e 7a 61 62 62 69 78 2e 63 6f 6d 2f 64 6f 63 75 6d 65 6e 74 | <https://www.zabbix.com/document |
| 4db80 | 61 74 69 6f 6e 2f 63 75 72 72 65 6e 74 2f 6d 61 6e 75 61 6c 2f 20 69 6e 73 74 61 6c 6c 61 74 69 | ation/current/manual/.installati |
| 4dba0 | 6f 6e 2f 63 6f 6e 74 61 69 6e 65 72 73 3e 60 5f 20 74 6f 20 74 68 65 20 64 65 63 6c 61 72 61 74 | on/containers>`_.to.the.declarat |
| 4dbc0 | 69 76 65 20 56 79 4f 53 20 43 4c 49 20 73 79 6e 74 61 78 2e 00 46 6f 72 20 74 68 65 20 73 61 6b | ive.VyOS.CLI.syntax..For.the.sak |
| 4dbe0 | 65 20 6f 66 20 64 65 6d 6f 6e 73 74 72 61 74 69 6f 6e 2c 20 60 65 78 61 6d 70 6c 65 20 23 31 20 | e.of.demonstration,.`example.#1. |
| 4dc00 | 69 6e 20 74 68 65 20 6f 66 66 69 63 69 61 6c 20 64 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 3c 68 | in.the.official.documentation.<h |
| 4dc20 | 74 74 70 73 3a 2f 2f 77 77 77 2e 7a 61 62 62 69 78 2e 63 6f 6d 2f 64 6f 63 75 6d 65 6e 74 61 74 | ttps://www.zabbix.com/documentat |
| 4dc40 | 69 6f 6e 2f 63 75 72 72 65 6e 74 2f 6d 61 6e 75 61 6c 2f 69 6e 73 74 61 6c 6c 61 74 69 6f 6e 2f | ion/current/manual/installation/ |
| 4dc60 | 63 6f 6e 74 61 69 6e 65 72 73 3e 60 5f 20 74 6f 20 74 68 65 20 64 65 63 6c 61 72 61 74 69 76 65 | containers>`_.to.the.declarative |
| 4dc80 | 20 56 79 4f 53 20 43 4c 49 20 73 79 6e 74 61 78 2e 00 46 6f 72 20 74 72 61 66 66 69 63 20 64 65 | .VyOS.CLI.syntax..For.traffic.de |
| 4dca0 | 73 74 69 6e 65 64 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 2c 20 6f 72 20 | stined.to.the.router.itself,.or. |
| 4dcc0 | 74 68 61 74 20 6e 65 65 64 73 20 74 6f 20 62 65 20 72 6f 75 74 65 64 20 28 61 73 73 75 6d 69 6e | that.needs.to.be.routed.(assumin |
| 4dce0 | 67 20 61 20 6c 61 79 65 72 33 20 62 72 69 64 67 65 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 29 | g.a.layer3.bridge.is.configured) |
| 4dd00 | 2c 20 74 68 65 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 20 2a 2a 69 6e 70 75 74 2a 2a 2c 20 74 | ,.the.base.chain.is.**input**,.t |
| 4dd20 | 68 65 20 62 61 73 65 20 63 6f 6d 6d 61 6e 64 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c | he.base.command.is.``set.firewal |
| 4dd40 | 6c 20 62 72 69 64 67 65 20 69 6e 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 20 61 6e 64 20 | l.bridge.input.filter....``.and. |
| 4dd60 | 74 68 65 20 70 61 74 68 20 69 73 3a 00 46 6f 72 20 74 72 61 66 66 69 63 20 6f 72 69 67 69 6e 61 | the.path.is:.For.traffic.origina |
| 4dd80 | 74 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 2c 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 | ted.by.the.router,.base.chain.is |
| 4dda0 | 20 2a 2a 6f 75 74 70 75 74 20 66 69 6c 74 65 72 2a 2a 3a 20 60 60 73 65 74 20 66 69 72 65 77 61 | .**output.filter**:.``set.firewa |
| 4ddc0 | 6c 6c 20 5b 69 70 76 34 20 7c 20 69 70 76 36 5d 20 6f 75 74 70 75 74 20 66 69 6c 74 65 72 20 2e | ll.[ipv4.|.ipv6].output.filter.. |
| 4dde0 | 2e 2e 60 60 00 46 6f 72 20 74 72 61 66 66 69 63 20 74 68 61 74 20 6e 65 65 64 73 20 74 6f 20 62 | ..``.For.traffic.that.needs.to.b |
| 4de00 | 65 20 66 6f 72 77 61 72 64 65 64 20 69 6e 74 65 72 6e 61 6c 6c 79 20 62 79 20 74 68 65 20 62 72 | e.forwarded.internally.by.the.br |
| 4de20 | 69 64 67 65 2c 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 20 69 73 20 2a 2a 66 6f 72 77 61 72 64 | idge,.base.chain.is.is.**forward |
| 4de40 | 2a 2a 2c 20 61 6e 64 20 69 74 27 73 20 62 61 73 65 20 63 6f 6d 6d 61 6e 64 20 66 6f 72 20 66 69 | **,.and.it's.base.command.for.fi |
| 4de60 | 6c 74 65 72 69 6e 67 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 62 72 69 64 67 65 | ltering.is.``set.firewall.bridge |
| 4de80 | 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2c 20 77 68 69 63 68 20 68 61 70 | .forward.filter....``,.which.hap |
| 4dea0 | 70 65 6e 73 20 69 6e 20 73 74 61 67 65 20 34 2c 20 68 69 67 68 6c 69 67 68 74 65 64 20 77 69 74 | pens.in.stage.4,.highlighted.wit |
| 4dec0 | 68 20 72 65 64 20 63 6f 6c 6f 72 2e 00 46 6f 72 20 74 72 61 66 66 69 63 20 74 68 61 74 20 6e 65 | h.red.color..For.traffic.that.ne |
| 4dee0 | 65 64 73 20 74 6f 20 62 65 20 66 6f 72 77 61 72 65 64 20 69 6e 74 65 72 6e 61 6c 6c 79 20 62 79 | eds.to.be.forwared.internally.by |
| 4df00 | 20 74 68 65 20 62 72 69 64 67 65 2c 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 20 69 73 20 2a 2a | .the.bridge,.base.chain.is.is.** |
| 4df20 | 66 6f 72 77 61 72 64 2a 2a 2c 20 61 6e 64 20 69 74 27 73 20 62 61 73 65 20 63 6f 6d 6d 61 6e 64 | forward**,.and.it's.base.command |
| 4df40 | 20 66 6f 72 20 66 69 6c 74 65 72 69 6e 67 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c | .for.filtering.is.``set.firewall |
| 4df60 | 20 62 72 69 64 67 65 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 00 46 6f 72 | .bridge.forward.filter....``.For |
| 4df80 | 20 74 72 61 66 66 69 63 20 74 68 61 74 20 6e 65 65 64 73 20 74 6f 20 62 65 20 66 6f 72 77 61 72 | .traffic.that.needs.to.be.forwar |
| 4dfa0 | 65 64 20 69 6e 74 65 72 6e 61 6c 6c 79 20 62 79 20 74 68 65 20 62 72 69 64 67 65 2c 20 62 61 73 | ed.internally.by.the.bridge,.bas |
| 4dfc0 | 65 20 63 68 61 69 6e 20 69 73 20 69 73 20 2a 2a 66 6f 72 77 61 72 64 2a 2a 2c 20 61 6e 64 20 69 | e.chain.is.is.**forward**,.and.i |
| 4dfe0 | 74 27 73 20 62 61 73 65 20 63 6f 6d 6d 61 6e 64 20 66 6f 72 20 66 69 6c 74 65 72 69 6e 67 20 69 | t's.base.command.for.filtering.i |
| 4e000 | 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 62 72 69 64 67 65 20 66 6f 72 77 61 72 64 20 | s.``set.firewall.bridge.forward. |
| 4e020 | 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2c 20 77 68 69 63 68 20 68 61 70 70 65 6e 73 20 69 6e 20 73 | filter....``,.which.happens.in.s |
| 4e040 | 74 61 67 65 20 34 2c 20 68 69 67 68 6c 69 67 68 74 65 6e 65 64 20 77 69 74 68 20 72 65 64 20 63 | tage.4,.highlightened.with.red.c |
| 4e060 | 6f 6c 6f 72 2e 00 46 6f 72 20 74 72 61 66 66 69 63 20 74 68 61 74 20 6e 65 65 64 73 20 74 6f 20 | olor..For.traffic.that.needs.to. |
| 4e080 | 62 65 20 73 77 69 74 63 68 65 64 20 69 6e 74 65 72 6e 61 6c 6c 79 20 62 79 20 74 68 65 20 62 72 | be.switched.internally.by.the.br |
| 4e0a0 | 69 64 67 65 2c 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 20 2a 2a 66 6f 72 77 61 72 64 2a 2a 2c | idge,.base.chain.is.**forward**, |
| 4e0c0 | 20 61 6e 64 20 69 74 27 73 20 62 61 73 65 20 63 6f 6d 6d 61 6e 64 20 66 6f 72 20 66 69 6c 74 65 | .and.it's.base.command.for.filte |
| 4e0e0 | 72 69 6e 67 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 62 72 69 64 67 65 20 66 6f | ring.is.``set.firewall.bridge.fo |
| 4e100 | 72 77 61 72 64 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2c 20 77 68 69 63 68 20 68 61 70 70 65 6e | rward.filter....``,.which.happen |
| 4e120 | 73 20 69 6e 20 73 74 61 67 65 20 34 2c 20 68 69 67 68 6c 69 67 68 74 65 64 20 77 69 74 68 20 72 | s.in.stage.4,.highlighted.with.r |
| 4e140 | 65 64 20 63 6f 6c 6f 72 2e 00 46 6f 72 20 74 72 61 66 66 69 63 20 74 6f 77 61 72 64 73 20 74 68 | ed.color..For.traffic.towards.th |
| 4e160 | 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 2c 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 20 2a | e.router.itself,.base.chain.is.* |
| 4e180 | 2a 69 6e 70 75 74 20 66 69 6c 74 65 72 2a 2a 3a 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 | *input.filter**:.``set.firewall. |
| 4e1a0 | 5b 69 70 76 34 20 7c 20 69 70 76 36 5d 20 69 6e 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 | [ipv4.|.ipv6].input.filter....`` |
| 4e1c0 | 00 46 6f 72 20 74 72 61 66 66 69 63 20 74 6f 77 61 72 64 73 20 74 68 65 20 72 6f 75 74 65 72 20 | .For.traffic.towards.the.router. |
| 4e1e0 | 69 74 73 65 6c 66 2c 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 20 2a 2a 69 6e 70 75 74 2a 2a 2c | itself,.base.chain.is.**input**, |
| 4e200 | 20 77 68 69 6c 65 20 74 72 61 66 66 69 63 20 6f 72 69 67 69 6e 61 74 65 64 20 62 79 20 74 68 65 | .while.traffic.originated.by.the |
| 4e220 | 20 72 6f 75 74 65 72 2c 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 20 2a 2a 6f 75 74 70 75 74 2a | .router,.base.chain.is.**output* |
| 4e240 | 2a 2e 20 41 20 6e 65 77 20 73 69 6d 70 6c 69 66 69 65 64 20 70 61 63 6b 65 74 20 66 6c 6f 77 20 | *..A.new.simplified.packet.flow. |
| 4e260 | 64 69 61 67 72 61 6d 20 69 73 20 73 68 6f 77 6e 20 6e 65 78 74 2c 20 77 68 69 63 68 20 73 68 6f | diagram.is.shown.next,.which.sho |
| 4e280 | 77 73 20 74 68 65 20 70 61 74 68 20 66 6f 72 20 74 72 61 66 66 69 63 20 64 65 73 74 69 6e 61 74 | ws.the.path.for.traffic.destinat |
| 4e2a0 | 65 64 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 2c 20 61 6e 64 20 74 72 61 | ed.to.the.router.itself,.and.tra |
| 4e2c0 | 66 66 69 63 20 67 65 6e 65 72 61 74 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 20 28 73 74 | ffic.generated.by.the.router.(st |
| 4e2e0 | 61 72 74 69 6e 67 20 66 72 6f 6d 20 63 69 72 63 6c 65 20 6e 75 6d 62 65 72 20 36 29 3a 00 46 6f | arting.from.circle.number.6):.Fo |
| 4e300 | 72 20 74 72 61 66 66 69 63 20 74 6f 77 61 72 64 73 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 | r.traffic.towards.the.router.its |
| 4e320 | 65 6c 66 2c 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 20 2a 2a 69 6e 70 75 74 2a 2a 2c 20 77 68 | elf,.base.chain.is.**input**,.wh |
| 4e340 | 69 6c 65 20 74 72 61 66 66 69 63 20 6f 72 69 67 69 6e 61 74 65 64 20 62 79 20 74 68 65 20 72 6f | ile.traffic.originated.by.the.ro |
| 4e360 | 75 74 65 72 2c 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 20 2a 2a 6f 75 74 70 75 74 2a 2a 2e 20 | uter,.base.chain.is.**output**.. |
| 4e380 | 41 20 6e 65 77 20 73 69 6d 70 6c 69 66 69 65 64 20 70 61 63 6b 65 74 20 66 6c 6f 77 20 64 69 61 | A.new.simplified.packet.flow.dia |
| 4e3a0 | 67 72 61 6d 20 69 73 20 73 68 6f 77 6e 20 6e 65 78 74 2c 20 77 68 69 63 68 20 73 68 6f 77 73 20 | gram.is.shown.next,.which.shows. |
| 4e3c0 | 74 68 65 20 70 61 74 68 20 66 6f 72 20 74 72 61 66 66 69 63 20 64 65 73 74 69 6e 65 64 20 74 6f | the.path.for.traffic.destined.to |
| 4e3e0 | 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 2c 20 61 6e 64 20 74 72 61 66 66 69 63 20 | .the.router.itself,.and.traffic. |
| 4e400 | 67 65 6e 65 72 61 74 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 20 28 73 74 61 72 74 69 6e | generated.by.the.router.(startin |
| 4e420 | 67 20 66 72 6f 6d 20 63 69 72 63 6c 65 20 6e 75 6d 62 65 72 20 36 29 3a 00 46 6f 72 20 74 72 61 | g.from.circle.number.6):.For.tra |
| 4e440 | 66 66 69 63 20 74 6f 77 61 72 64 73 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 2c 20 | ffic.towards.the.router.itself,. |
| 4e460 | 74 68 65 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 20 2a 2a 69 6e 70 75 74 2a 2a 2c 20 77 68 69 | the.base.chain.is.**input**,.whi |
| 4e480 | 6c 65 20 74 72 61 66 66 69 63 20 6f 72 69 67 69 6e 61 74 65 64 20 62 79 20 74 68 65 20 72 6f 75 | le.traffic.originated.by.the.rou |
| 4e4a0 | 74 65 72 20 68 61 73 20 74 68 65 20 62 61 73 65 20 63 68 61 69 6e 20 2a 2a 6f 75 74 70 75 74 2a | ter.has.the.base.chain.**output* |
| 4e4c0 | 2a 2e 20 41 20 6e 65 77 20 73 69 6d 70 6c 69 66 69 65 64 20 70 61 63 6b 65 74 20 66 6c 6f 77 20 | *..A.new.simplified.packet.flow. |
| 4e4e0 | 64 69 61 67 72 61 6d 20 69 73 20 73 68 6f 77 6e 20 6e 65 78 74 2c 20 77 68 69 63 68 20 73 68 6f | diagram.is.shown.next,.which.sho |
| 4e500 | 77 73 20 74 68 65 20 70 61 74 68 20 66 6f 72 20 74 72 61 66 66 69 63 20 64 65 73 74 69 6e 65 64 | ws.the.path.for.traffic.destined |
| 4e520 | 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 2c 20 61 6e 64 20 74 72 61 66 66 | .to.the.router.itself,.and.traff |
| 4e540 | 69 63 20 67 65 6e 65 72 61 74 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 20 28 73 74 61 72 | ic.generated.by.the.router.(star |
| 4e560 | 74 69 6e 67 20 66 72 6f 6d 20 63 69 72 63 6c 65 20 6e 75 6d 62 65 72 20 36 29 3a 00 46 6f 72 20 | ting.from.circle.number.6):.For. |
| 4e580 | 74 72 61 6e 73 69 74 20 74 72 61 66 66 69 63 2c 20 77 68 69 63 68 20 69 73 20 72 65 63 65 69 76 | transit.traffic,.which.is.receiv |
| 4e5a0 | 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 20 61 6e 64 20 66 6f 72 77 61 72 64 65 64 2c 20 | ed.by.the.router.and.forwarded,. |
| 4e5c0 | 62 61 73 65 20 63 68 61 69 6e 20 69 73 20 2a 2a 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 2a 2a | base.chain.is.**forward.filter** |
| 4e5e0 | 3a 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 5b 69 70 76 34 20 7c 20 69 70 76 36 5d 20 66 | :.``set.firewall.[ipv4.|.ipv6].f |
| 4e600 | 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 00 46 6f 72 20 74 72 61 6e 73 69 74 20 | orward.filter....``.For.transit. |
| 4e620 | 74 72 61 66 66 69 63 2c 20 77 68 69 63 68 20 69 73 20 72 65 63 65 69 76 65 64 20 62 79 20 74 68 | traffic,.which.is.received.by.th |
| 4e640 | 65 20 72 6f 75 74 65 72 20 61 6e 64 20 66 6f 72 77 61 72 64 65 64 2c 20 62 61 73 65 20 63 68 61 | e.router.and.forwarded,.base.cha |
| 4e660 | 69 6e 20 69 73 20 2a 2a 66 6f 72 77 61 72 64 2a 2a 2e 20 41 20 73 69 6d 70 6c 69 66 69 65 64 20 | in.is.**forward**..A.simplified. |
| 4e680 | 70 61 63 6b 65 74 20 66 6c 6f 77 20 64 69 61 67 72 61 6d 20 66 6f 72 20 74 72 61 6e 73 69 74 20 | packet.flow.diagram.for.transit. |
| 4e6a0 | 74 72 61 66 66 69 63 20 69 73 20 73 68 6f 77 6e 20 6e 65 78 74 3a 00 46 6f 72 20 74 72 61 6e 73 | traffic.is.shown.next:.For.trans |
| 4e6c0 | 69 74 20 74 72 61 66 66 69 63 2c 20 77 68 69 63 68 20 69 73 20 72 65 63 65 69 76 65 64 20 62 79 | it.traffic,.which.is.received.by |
| 4e6e0 | 20 74 68 65 20 72 6f 75 74 65 72 20 61 6e 64 20 66 6f 72 77 61 72 64 65 64 2c 20 74 68 65 20 62 | .the.router.and.forwarded,.the.b |
| 4e700 | 61 73 65 20 63 68 61 69 6e 20 69 73 20 2a 2a 66 6f 72 77 61 72 64 2a 2a 2e 20 41 20 73 69 6d 70 | ase.chain.is.**forward**..A.simp |
| 4e720 | 6c 69 66 69 65 64 20 70 61 63 6b 65 74 20 66 6c 6f 77 20 64 69 61 67 72 61 6d 20 66 6f 72 20 74 | lified.packet.flow.diagram.for.t |
| 4e740 | 72 61 6e 73 69 74 20 74 72 61 66 66 69 63 20 69 73 20 73 68 6f 77 6e 20 6e 65 78 74 3a 00 46 6f | ransit.traffic.is.shown.next:.Fo |
| 4e760 | 72 20 77 65 62 20 61 70 70 6c 69 63 61 74 69 6f 6e 20 70 72 6f 76 69 64 69 6e 67 20 69 6e 66 6f | r.web.application.providing.info |
| 4e780 | 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 74 68 65 69 72 20 73 74 61 74 65 20 48 54 54 50 20 68 | rmation.about.their.state.HTTP.h |
| 4e7a0 | 65 61 6c 74 68 20 63 68 65 63 6b 73 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 64 65 74 65 | ealth.checks.can.be.used.to.dete |
| 4e7c0 | 72 6d 69 6e 65 20 74 68 65 69 72 20 61 76 61 69 6c 61 62 69 6c 69 74 79 2e 00 46 6f 72 6d 61 6c | rmine.their.availability..Formal |
| 4e7e0 | 6c 79 2c 20 61 20 76 69 72 74 75 61 6c 20 6c 69 6e 6b 20 6c 6f 6f 6b 73 20 6c 69 6b 65 20 61 20 | ly,.a.virtual.link.looks.like.a. |
| 4e800 | 70 6f 69 6e 74 2d 74 6f 2d 70 6f 69 6e 74 20 6e 65 74 77 6f 72 6b 20 63 6f 6e 6e 65 63 74 69 6e | point-to-point.network.connectin |
| 4e820 | 67 20 74 77 6f 20 41 42 52 20 66 72 6f 6d 20 6f 6e 65 20 61 72 65 61 20 6f 6e 65 20 6f 66 20 77 | g.two.ABR.from.one.area.one.of.w |
| 4e840 | 68 69 63 68 20 70 68 79 73 69 63 61 6c 6c 79 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 61 20 62 | hich.physically.connected.to.a.b |
| 4e860 | 61 63 6b 62 6f 6e 65 20 61 72 65 61 2e 20 54 68 69 73 20 70 73 65 75 64 6f 2d 6e 65 74 77 6f 72 | ackbone.area..This.pseudo-networ |
| 4e880 | 6b 20 69 73 20 63 6f 6e 73 69 64 65 72 65 64 20 74 6f 20 62 65 6c 6f 6e 67 20 74 6f 20 61 20 62 | k.is.considered.to.belong.to.a.b |
| 4e8a0 | 61 63 6b 62 6f 6e 65 20 61 72 65 61 2e 00 46 6f 72 77 61 72 64 20 69 6e 63 6f 6d 69 6e 67 20 44 | ackbone.area..Forward.incoming.D |
| 4e8c0 | 4e 53 20 71 75 65 72 69 65 73 20 74 6f 20 74 68 65 20 44 4e 53 20 73 65 72 76 65 72 73 20 63 6f | NS.queries.to.the.DNS.servers.co |
| 4e8e0 | 6e 66 69 67 75 72 65 64 20 75 6e 64 65 72 20 74 68 65 20 60 60 73 79 73 74 65 6d 20 6e 61 6d 65 | nfigured.under.the.``system.name |
| 4e900 | 2d 73 65 72 76 65 72 60 60 20 6e 6f 64 65 73 2e 00 46 6f 72 77 61 72 64 20 6d 65 74 68 6f 64 00 | -server``.nodes..Forward.method. |
| 4e920 | 46 6f 72 77 61 72 64 20 72 65 63 65 69 76 65 64 20 71 75 65 72 69 65 73 20 66 6f 72 20 61 20 70 | Forward.received.queries.for.a.p |
| 4e940 | 61 72 74 69 63 75 6c 61 72 20 64 6f 6d 61 69 6e 20 28 73 70 65 63 69 66 69 65 64 20 76 69 61 20 | articular.domain.(specified.via. |
| 4e960 | 60 64 6f 6d 61 69 6e 2d 6e 61 6d 65 60 29 20 74 6f 20 61 20 67 69 76 65 6e 20 6e 61 6d 65 73 65 | `domain-name`).to.a.given.namese |
| 4e980 | 72 76 65 72 2e 20 4d 75 6c 74 69 70 6c 65 20 6e 61 6d 65 73 65 72 76 65 72 73 20 63 61 6e 20 62 | rver..Multiple.nameservers.can.b |
| 4e9a0 | 65 20 73 70 65 63 69 66 69 65 64 2e 20 59 6f 75 20 63 61 6e 20 75 73 65 20 74 68 69 73 20 66 65 | e.specified..You.can.use.this.fe |
| 4e9c0 | 61 74 75 72 65 20 66 6f 72 20 61 20 44 4e 53 20 73 70 6c 69 74 2d 68 6f 72 69 7a 6f 6e 20 63 6f | ature.for.a.DNS.split-horizon.co |
| 4e9e0 | 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 46 6f 75 72 20 70 6f 6c 69 63 69 65 73 20 66 6f 72 20 72 | nfiguration..Four.policies.for.r |
| 4ea00 | 65 66 6f 72 77 61 72 64 69 6e 67 20 44 48 43 50 20 70 61 63 6b 65 74 73 20 65 78 69 73 74 3a 00 | eforwarding.DHCP.packets.exist:. |
| 4ea20 | 46 72 6f 6d 20 3a 72 66 63 3a 60 31 39 33 30 60 3a 00 46 72 6f 6d 20 61 20 73 65 63 75 72 69 74 | From.:rfc:`1930`:.From.a.securit |
| 4ea40 | 79 20 70 65 72 73 70 65 63 74 69 76 65 2c 20 69 74 20 69 73 20 6e 6f 74 20 72 65 63 6f 6d 6d 65 | y.perspective,.it.is.not.recomme |
| 4ea60 | 6e 64 65 64 20 74 6f 20 6c 65 74 20 61 20 74 68 69 72 64 20 70 61 72 74 79 20 63 72 65 61 74 65 | nded.to.let.a.third.party.create |
| 4ea80 | 20 61 6e 64 20 73 68 61 72 65 20 74 68 65 20 70 72 69 76 61 74 65 20 6b 65 79 20 66 6f 72 20 61 | .and.share.the.private.key.for.a |
| 4eaa0 | 20 73 65 63 75 72 65 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 20 59 6f 75 20 73 68 6f 75 6c 64 20 | .secured.connection..You.should. |
| 4eac0 | 63 72 65 61 74 65 20 74 68 65 20 70 72 69 76 61 74 65 20 70 6f 72 74 69 6f 6e 20 6f 6e 20 79 6f | create.the.private.portion.on.yo |
| 4eae0 | 75 72 20 6f 77 6e 20 61 6e 64 20 6f 6e 6c 79 20 68 61 6e 64 20 6f 75 74 20 74 68 65 20 70 75 62 | ur.own.and.only.hand.out.the.pub |
| 4eb00 | 6c 69 63 20 6b 65 79 2e 20 50 6c 65 61 73 65 20 6b 65 65 70 20 74 68 69 73 20 69 6e 20 6d 69 6e | lic.key..Please.keep.this.in.min |
| 4eb20 | 64 20 77 68 65 6e 20 75 73 69 6e 67 20 74 68 69 73 20 63 6f 6e 76 65 6e 69 65 6e 63 65 20 66 65 | d.when.using.this.convenience.fe |
| 4eb40 | 61 74 75 72 65 2e 00 46 72 6f 6d 20 6d 61 69 6e 20 73 74 72 75 63 74 75 72 65 20 64 65 66 69 6e | ature..From.main.structure.defin |
| 4eb60 | 65 64 20 69 6e 20 3a 64 6f 63 3a 60 46 69 72 65 77 61 6c 6c 20 4f 76 65 72 76 69 65 77 3c 2f 63 | ed.in.:doc:`Firewall.Overview</c |
| 4eb80 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 66 69 72 65 77 61 6c 6c 2f 69 6e 64 65 78 3e 60 20 69 6e | onfiguration/firewall/index>`.in |
| 4eba0 | 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 79 6f 75 20 63 61 6e 20 66 69 6e 64 20 64 65 74 61 69 | .this.section.you.can.find.detai |
| 4ebc0 | 6c 65 64 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 6e 6c 79 20 66 6f 72 20 74 68 65 20 6e 65 78 | led.information.only.for.the.nex |
| 4ebe0 | 74 20 70 61 72 74 20 6f 66 20 74 68 65 20 67 65 6e 65 72 61 6c 20 73 74 72 75 63 74 75 72 65 3a | t.part.of.the.general.structure: |
| 4ec00 | 00 46 72 6f 6d 20 74 68 65 20 6d 61 69 6e 20 73 74 72 75 63 74 75 72 65 20 64 65 66 69 6e 65 64 | .From.the.main.structure.defined |
| 4ec20 | 20 69 6e 20 3a 64 6f 63 3a 60 46 69 72 65 77 61 6c 6c 20 4f 76 65 72 76 69 65 77 3c 2f 63 6f 6e | .in.:doc:`Firewall.Overview</con |
| 4ec40 | 66 69 67 75 72 61 74 69 6f 6e 2f 66 69 72 65 77 61 6c 6c 2f 69 6e 64 65 78 3e 60 20 69 6e 20 74 | figuration/firewall/index>`.in.t |
| 4ec60 | 68 69 73 20 73 65 63 74 69 6f 6e 20 79 6f 75 20 63 61 6e 20 66 69 6e 64 20 64 65 74 61 69 6c 65 | his.section.you.can.find.detaile |
| 4ec80 | 64 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 6e 6c 79 20 66 6f 72 20 74 68 65 20 6e 65 78 74 20 | d.information.only.for.the.next. |
| 4eca0 | 70 61 72 74 20 6f 66 20 74 68 65 20 67 65 6e 65 72 61 6c 20 73 74 72 75 63 74 75 72 65 3a 00 46 | part.of.the.general.structure:.F |
| 4ecc0 | 75 72 74 68 65 72 20 52 65 61 64 69 6e 67 00 46 77 6d 61 72 6b 00 47 45 4e 45 56 45 00 47 45 4e | urther.Reading.Fwmark.GENEVE.GEN |
| 4ece0 | 45 56 45 20 69 73 20 64 65 73 69 67 6e 65 64 20 74 6f 20 73 75 70 70 6f 72 74 20 6e 65 74 77 6f | EVE.is.designed.to.support.netwo |
| 4ed00 | 72 6b 20 76 69 72 74 75 61 6c 69 7a 61 74 69 6f 6e 20 75 73 65 20 63 61 73 65 73 2c 20 77 68 65 | rk.virtualization.use.cases,.whe |
| 4ed20 | 72 65 20 74 75 6e 6e 65 6c 73 20 61 72 65 20 74 79 70 69 63 61 6c 6c 79 20 65 73 74 61 62 6c 69 | re.tunnels.are.typically.establi |
| 4ed40 | 73 68 65 64 20 74 6f 20 61 63 74 20 61 73 20 61 20 62 61 63 6b 70 6c 61 6e 65 20 62 65 74 77 65 | shed.to.act.as.a.backplane.betwe |
| 4ed60 | 65 6e 20 74 68 65 20 76 69 72 74 75 61 6c 20 73 77 69 74 63 68 65 73 20 72 65 73 69 64 69 6e 67 | en.the.virtual.switches.residing |
| 4ed80 | 20 69 6e 20 68 79 70 65 72 76 69 73 6f 72 73 2c 20 70 68 79 73 69 63 61 6c 20 73 77 69 74 63 68 | .in.hypervisors,.physical.switch |
| 4eda0 | 65 73 2c 20 6f 72 20 6d 69 64 64 6c 65 62 6f 78 65 73 20 6f 72 20 6f 74 68 65 72 20 61 70 70 6c | es,.or.middleboxes.or.other.appl |
| 4edc0 | 69 61 6e 63 65 73 2e 20 41 6e 20 61 72 62 69 74 72 61 72 79 20 49 50 20 6e 65 74 77 6f 72 6b 20 | iances..An.arbitrary.IP.network. |
| 4ede0 | 63 61 6e 20 62 65 20 75 73 65 64 20 61 73 20 61 6e 20 75 6e 64 65 72 6c 61 79 20 61 6c 74 68 6f | can.be.used.as.an.underlay.altho |
| 4ee00 | 75 67 68 20 43 6c 6f 73 20 6e 65 74 77 6f 72 6b 73 20 2d 20 41 20 74 65 63 68 6e 69 71 75 65 20 | ugh.Clos.networks.-.A.technique. |
| 4ee20 | 66 6f 72 20 63 6f 6d 70 6f 73 69 6e 67 20 6e 65 74 77 6f 72 6b 20 66 61 62 72 69 63 73 20 6c 61 | for.composing.network.fabrics.la |
| 4ee40 | 72 67 65 72 20 74 68 61 6e 20 61 20 73 69 6e 67 6c 65 20 73 77 69 74 63 68 20 77 68 69 6c 65 20 | rger.than.a.single.switch.while. |
| 4ee60 | 6d 61 69 6e 74 61 69 6e 69 6e 67 20 6e 6f 6e 2d 62 6c 6f 63 6b 69 6e 67 20 62 61 6e 64 77 69 64 | maintaining.non-blocking.bandwid |
| 4ee80 | 74 68 20 61 63 72 6f 73 73 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 70 6f 69 6e 74 73 2e 20 45 43 4d | th.across.connection.points..ECM |
| 4eea0 | 50 20 69 73 20 75 73 65 64 20 74 6f 20 64 69 76 69 64 65 20 74 72 61 66 66 69 63 20 61 63 72 6f | P.is.used.to.divide.traffic.acro |
| 4eec0 | 73 73 20 74 68 65 20 6d 75 6c 74 69 70 6c 65 20 6c 69 6e 6b 73 20 61 6e 64 20 73 77 69 74 63 68 | ss.the.multiple.links.and.switch |
| 4eee0 | 65 73 20 74 68 61 74 20 63 6f 6e 73 74 69 74 75 74 65 20 74 68 65 20 66 61 62 72 69 63 2e 20 53 | es.that.constitute.the.fabric..S |
| 4ef00 | 6f 6d 65 74 69 6d 65 73 20 74 65 72 6d 65 64 20 22 6c 65 61 66 20 61 6e 64 20 73 70 69 6e 65 22 | ometimes.termed."leaf.and.spine" |
| 4ef20 | 20 6f 72 20 22 66 61 74 20 74 72 65 65 22 20 74 6f 70 6f 6c 6f 67 69 65 73 2e 00 47 45 4e 45 56 | .or."fat.tree".topologies..GENEV |
| 4ef40 | 45 20 69 73 20 64 65 73 69 67 6e 65 64 20 74 6f 20 73 75 70 70 6f 72 74 20 6e 65 74 77 6f 72 6b | E.is.designed.to.support.network |
| 4ef60 | 20 76 69 72 74 75 61 6c 69 7a 61 74 69 6f 6e 20 75 73 65 20 63 61 73 65 73 2c 20 77 68 65 72 65 | .virtualization.use.cases,.where |
| 4ef80 | 20 74 75 6e 6e 65 6c 73 20 61 72 65 20 74 79 70 69 63 61 6c 6c 79 20 65 73 74 61 62 6c 69 73 68 | .tunnels.are.typically.establish |
| 4efa0 | 65 64 20 74 6f 20 61 63 74 20 61 73 20 61 20 62 61 63 6b 70 6c 61 6e 65 20 62 65 74 77 65 65 6e | ed.to.act.as.a.backplane.between |
| 4efc0 | 20 74 68 65 20 76 69 72 74 75 61 6c 20 73 77 69 74 63 68 65 73 20 72 65 73 69 64 69 6e 67 20 69 | .the.virtual.switches.residing.i |
| 4efe0 | 6e 20 68 79 70 65 72 76 69 73 6f 72 73 2c 20 70 68 79 73 69 63 61 6c 20 73 77 69 74 63 68 65 73 | n.hypervisors,.physical.switches |
| 4f000 | 2c 20 6f 72 20 6d 69 64 64 6c 65 62 6f 78 65 73 20 6f 72 20 6f 74 68 65 72 20 61 70 70 6c 69 61 | ,.or.middleboxes.or.other.applia |
| 4f020 | 6e 63 65 73 2e 20 41 6e 20 61 72 62 69 74 72 61 72 79 20 49 50 20 6e 65 74 77 6f 72 6b 20 63 61 | nces..An.arbitrary.IP.network.ca |
| 4f040 | 6e 20 62 65 20 75 73 65 64 20 61 73 20 61 6e 20 75 6e 64 65 72 6c 61 79 20 74 68 72 6f 75 67 68 | n.be.used.as.an.underlay.through |
| 4f060 | 20 43 6c 6f 73 20 6e 65 74 77 6f 72 6b 73 20 2d 20 41 20 74 65 63 68 6e 69 71 75 65 20 66 6f 72 | .Clos.networks.-.A.technique.for |
| 4f080 | 20 63 6f 6d 70 6f 73 69 6e 67 20 6e 65 74 77 6f 72 6b 20 66 61 62 72 69 63 73 20 6c 61 72 67 65 | .composing.network.fabrics.large |
| 4f0a0 | 72 20 74 68 61 6e 20 61 20 73 69 6e 67 6c 65 20 73 77 69 74 63 68 20 77 68 69 6c 65 20 6d 61 69 | r.than.a.single.switch.while.mai |
| 4f0c0 | 6e 74 61 69 6e 69 6e 67 20 6e 6f 6e 2d 62 6c 6f 63 6b 69 6e 67 20 62 61 6e 64 77 69 64 74 68 20 | ntaining.non-blocking.bandwidth. |
| 4f0e0 | 61 63 72 6f 73 73 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 70 6f 69 6e 74 73 2e 20 45 43 4d 50 20 69 | across.connection.points..ECMP.i |
| 4f100 | 73 20 75 73 65 64 20 74 6f 20 64 69 76 69 64 65 20 74 72 61 66 66 69 63 20 61 63 72 6f 73 73 20 | s.used.to.divide.traffic.across. |
| 4f120 | 74 68 65 20 6d 75 6c 74 69 70 6c 65 20 6c 69 6e 6b 73 20 61 6e 64 20 73 77 69 74 63 68 65 73 20 | the.multiple.links.and.switches. |
| 4f140 | 74 68 61 74 20 63 6f 6e 73 74 69 74 75 74 65 20 74 68 65 20 66 61 62 72 69 63 2e 20 53 6f 6d 65 | that.constitute.the.fabric..Some |
| 4f160 | 74 69 6d 65 73 20 74 65 72 6d 65 64 20 22 6c 65 61 66 20 61 6e 64 20 73 70 69 6e 65 22 20 6f 72 | times.termed."leaf.and.spine".or |
| 4f180 | 20 22 66 61 74 20 74 72 65 65 22 20 74 6f 70 6f 6c 6f 67 69 65 73 2e 00 47 45 4e 45 56 45 20 6f | ."fat.tree".topologies..GENEVE.o |
| 4f1a0 | 70 74 69 6f 6e 73 00 47 52 45 20 69 73 20 61 20 77 65 6c 6c 20 64 65 66 69 6e 65 64 20 73 74 61 | ptions.GRE.is.a.well.defined.sta |
| 4f1c0 | 6e 64 61 72 64 20 74 68 61 74 20 69 73 20 63 6f 6d 6d 6f 6e 20 69 6e 20 6d 6f 73 74 20 6e 65 74 | ndard.that.is.common.in.most.net |
| 4f1e0 | 77 6f 72 6b 73 2e 20 57 68 69 6c 65 20 6e 6f 74 20 69 6e 68 65 72 65 6e 74 6c 79 20 64 69 66 66 | works..While.not.inherently.diff |
| 4f200 | 69 63 75 6c 74 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 72 65 20 61 72 65 20 61 20 63 | icult.to.configure.there.are.a.c |
| 4f220 | 6f 75 70 6c 65 20 6f 66 20 74 68 69 6e 67 73 20 74 6f 20 6b 65 65 70 20 69 6e 20 6d 69 6e 64 20 | ouple.of.things.to.keep.in.mind. |
| 4f240 | 74 6f 20 6d 61 6b 65 20 73 75 72 65 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 70 | to.make.sure.the.configuration.p |
| 4f260 | 65 72 66 6f 72 6d 73 20 61 73 20 65 78 70 65 63 74 65 64 2e 20 41 20 63 6f 6d 6d 6f 6e 20 63 61 | erforms.as.expected..A.common.ca |
| 4f280 | 75 73 65 20 66 6f 72 20 47 52 45 20 74 75 6e 6e 65 6c 73 20 74 6f 20 66 61 69 6c 20 74 6f 20 63 | use.for.GRE.tunnels.to.fail.to.c |
| 4f2a0 | 6f 6d 65 20 75 70 20 63 6f 72 72 65 63 74 6c 79 20 69 6e 63 6c 75 64 65 20 41 43 4c 20 6f 72 20 | ome.up.correctly.include.ACL.or. |
| 4f2c0 | 46 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 73 20 74 68 61 74 20 61 72 65 | Firewall.configurations.that.are |
| 4f2e0 | 20 64 69 73 63 61 72 64 69 6e 67 20 49 50 20 70 72 6f 74 6f 63 6f 6c 20 34 37 20 6f 72 20 62 6c | .discarding.IP.protocol.47.or.bl |
| 4f300 | 6f 63 6b 69 6e 67 20 79 6f 75 72 20 73 6f 75 72 63 65 2f 64 65 73 74 69 6e 61 74 69 6f 6e 20 74 | ocking.your.source/destination.t |
| 4f320 | 72 61 66 66 69 63 2e 00 47 52 45 20 69 73 20 61 6c 73 6f 20 74 68 65 20 6f 6e 6c 79 20 63 6c 61 | raffic..GRE.is.also.the.only.cla |
| 4f340 | 73 73 69 63 20 70 72 6f 74 6f 63 6f 6c 20 74 68 61 74 20 61 6c 6c 6f 77 73 20 63 72 65 61 74 69 | ssic.protocol.that.allows.creati |
| 4f360 | 6e 67 20 6d 75 6c 74 69 70 6c 65 20 74 75 6e 6e 65 6c 73 20 77 69 74 68 20 74 68 65 20 73 61 6d | ng.multiple.tunnels.with.the.sam |
| 4f380 | 65 20 73 6f 75 72 63 65 20 61 6e 64 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 64 75 65 20 74 6f 20 | e.source.and.destination.due.to. |
| 4f3a0 | 69 74 73 20 73 75 70 70 6f 72 74 20 66 6f 72 20 74 75 6e 6e 65 6c 20 6b 65 79 73 2e 20 44 65 73 | its.support.for.tunnel.keys..Des |
| 4f3c0 | 70 69 74 65 20 69 74 73 20 6e 61 6d 65 2c 20 74 68 69 73 20 66 65 61 74 75 72 65 20 68 61 73 20 | pite.its.name,.this.feature.has. |
| 4f3e0 | 6e 6f 74 68 69 6e 67 20 74 6f 20 64 6f 20 77 69 74 68 20 73 65 63 75 72 69 74 79 3a 20 69 74 27 | nothing.to.do.with.security:.it' |
| 4f400 | 73 20 73 69 6d 70 6c 79 20 61 6e 20 69 64 65 6e 74 69 66 69 65 72 20 74 68 61 74 20 61 6c 6c 6f | s.simply.an.identifier.that.allo |
| 4f420 | 77 73 20 72 6f 75 74 65 72 73 20 74 6f 20 74 65 6c 6c 20 6f 6e 65 20 74 75 6e 6e 65 6c 20 66 72 | ws.routers.to.tell.one.tunnel.fr |
| 4f440 | 6f 6d 20 61 6e 6f 74 68 65 72 2e 00 47 52 45 20 69 73 20 6f 66 74 65 6e 20 73 65 65 6e 20 61 73 | om.another..GRE.is.often.seen.as |
| 4f460 | 20 61 20 6f 6e 65 20 73 69 7a 65 20 66 69 74 73 20 61 6c 6c 20 73 6f 6c 75 74 69 6f 6e 20 77 68 | .a.one.size.fits.all.solution.wh |
| 4f480 | 65 6e 20 69 74 20 63 6f 6d 65 73 20 74 6f 20 63 6c 61 73 73 69 63 20 49 50 20 74 75 6e 6e 65 6c | en.it.comes.to.classic.IP.tunnel |
| 4f4a0 | 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 73 2c 20 61 6e 64 20 66 6f 72 20 61 20 67 6f 6f 64 20 72 65 | ing.protocols,.and.for.a.good.re |
| 4f4c0 | 61 73 6f 6e 2e 20 48 6f 77 65 76 65 72 2c 20 74 68 65 72 65 20 61 72 65 20 6d 6f 72 65 20 73 70 | ason..However,.there.are.more.sp |
| 4f4e0 | 65 63 69 61 6c 69 7a 65 64 20 6f 70 74 69 6f 6e 73 2c 20 61 6e 64 20 6d 61 6e 79 20 6f 66 20 74 | ecialized.options,.and.many.of.t |
| 4f500 | 68 65 6d 20 61 72 65 20 73 75 70 70 6f 72 74 65 64 20 62 79 20 56 79 4f 53 2e 20 54 68 65 72 65 | hem.are.supported.by.VyOS..There |
| 4f520 | 20 61 72 65 20 61 6c 73 6f 20 72 61 74 68 65 72 20 6f 62 73 63 75 72 65 20 47 52 45 20 6f 70 74 | .are.also.rather.obscure.GRE.opt |
| 4f540 | 69 6f 6e 73 20 74 68 61 74 20 63 61 6e 20 62 65 20 75 73 65 66 75 6c 2e 00 47 52 45 2f 49 50 49 | ions.that.can.be.useful..GRE/IPI |
| 4f560 | 50 2f 53 49 54 20 61 6e 64 20 49 50 73 65 63 20 61 72 65 20 77 69 64 65 6c 79 20 61 63 63 65 70 | P/SIT.and.IPsec.are.widely.accep |
| 4f580 | 74 65 64 20 73 74 61 6e 64 61 72 64 73 2c 20 77 68 69 63 68 20 6d 61 6b 65 20 74 68 69 73 20 73 | ted.standards,.which.make.this.s |
| 4f5a0 | 63 68 65 6d 65 20 65 61 73 79 20 74 6f 20 69 6d 70 6c 65 6d 65 6e 74 20 62 65 74 77 65 65 6e 20 | cheme.easy.to.implement.between. |
| 4f5c0 | 56 79 4f 53 20 61 6e 64 20 76 69 72 74 75 61 6c 6c 79 20 61 6e 79 20 6f 74 68 65 72 20 72 6f 75 | VyOS.and.virtually.any.other.rou |
| 4f5e0 | 74 65 72 2e 00 47 52 45 54 41 50 00 47 65 6e 65 61 72 61 74 65 20 61 20 6e 65 77 20 4f 70 65 6e | ter..GRETAP.Genearate.a.new.Open |
| 4f600 | 56 50 4e 20 73 68 61 72 65 64 20 73 65 63 72 65 74 2e 20 54 68 65 20 67 65 6e 65 72 61 74 65 64 | VPN.shared.secret..The.generated |
| 4f620 | 20 73 65 63 72 65 64 20 69 73 20 74 68 65 20 6f 75 74 70 75 74 20 74 6f 20 74 68 65 20 63 6f 6e | .secred.is.the.output.to.the.con |
| 4f640 | 73 6f 6c 65 2e 00 47 65 6e 65 61 72 61 74 65 20 61 20 6e 65 77 20 4f 70 65 6e 56 50 4e 20 73 68 | sole..Genearate.a.new.OpenVPN.sh |
| 4f660 | 61 72 65 64 20 73 65 63 72 65 74 2e 20 54 68 65 20 67 65 6e 65 72 61 74 65 64 20 73 65 63 72 65 | ared.secret..The.generated.secre |
| 4f680 | 74 20 69 73 20 74 68 65 20 6f 75 74 70 75 74 20 74 6f 20 74 68 65 20 63 6f 6e 73 6f 6c 65 2e 00 | t.is.the.output.to.the.console.. |
| 4f6a0 | 47 65 6e 65 72 61 6c 00 47 65 6e 65 72 61 6c 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 47 65 | General.General.Configuration.Ge |
| 4f6c0 | 6e 65 72 61 6c 20 63 6f 6d 6d 61 6e 64 73 20 66 6f 72 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 | neral.commands.for.firewall.conf |
| 4f6e0 | 69 67 75 72 61 74 69 6f 6e 2c 20 63 6f 75 6e 74 65 72 20 61 6e 64 20 73 74 61 74 69 73 63 69 74 | iguration,.counter.and.statiscit |
| 4f700 | 73 3a 00 47 65 6e 65 72 61 6c 20 63 6f 6d 6d 61 6e 64 73 20 66 6f 72 20 66 69 72 65 77 61 6c 6c | s:.General.commands.for.firewall |
| 4f720 | 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2c 20 63 6f 75 6e 74 65 72 20 61 6e 64 20 73 74 61 74 | .configuration,.counter.and.stat |
| 4f740 | 69 73 74 69 63 73 3a 00 47 65 6e 65 72 61 6c 20 65 78 61 6d 70 6c 65 00 47 65 6e 65 72 61 74 65 | istics:.General.example.Generate |
| 4f760 | 20 3a 61 62 62 72 3a 60 4d 4b 41 20 28 4d 41 43 73 65 63 20 4b 65 79 20 41 67 72 65 65 6d 65 6e | .:abbr:`MKA.(MACsec.Key.Agreemen |
| 4f780 | 74 20 70 72 6f 74 6f 63 6f 6c 29 60 20 43 41 4b 20 6b 65 79 20 31 32 38 20 6f 72 20 32 35 36 20 | t.protocol)`.CAK.key.128.or.256. |
| 4f7a0 | 62 69 74 73 2e 00 47 65 6e 65 72 61 74 65 20 3a 61 62 62 72 3a 60 4d 4b 41 20 28 4d 41 43 73 65 | bits..Generate.:abbr:`MKA.(MACse |
| 4f7c0 | 63 20 4b 65 79 20 41 67 72 65 65 6d 65 6e 74 20 70 72 6f 74 6f 63 6f 6c 29 60 20 43 41 4b 20 6b | c.Key.Agreement.protocol)`.CAK.k |
| 4f7e0 | 65 79 2e 00 47 65 6e 65 72 61 74 65 20 4b 65 79 70 61 69 72 00 47 65 6e 65 72 61 74 65 20 61 20 | ey..Generate.Keypair.Generate.a. |
| 4f800 | 57 69 72 65 47 75 61 72 64 20 70 72 65 2d 73 68 61 72 65 64 20 73 65 63 72 65 74 20 75 73 65 64 | WireGuard.pre-shared.secret.used |
| 4f820 | 20 66 6f 72 20 70 65 65 72 73 20 74 6f 20 63 6f 6d 6d 75 6e 69 63 61 74 65 2e 00 47 65 6e 65 72 | .for.peers.to.communicate..Gener |
| 4f840 | 61 74 65 20 61 20 6e 65 77 20 4f 70 65 6e 56 50 4e 20 73 68 61 72 65 64 20 73 65 63 72 65 74 2e | ate.a.new.OpenVPN.shared.secret. |
| 4f860 | 20 54 68 65 20 67 65 6e 65 72 61 74 65 64 20 73 65 63 72 65 74 20 69 73 20 74 68 65 20 6f 75 74 | .The.generated.secret.is.the.out |
| 4f880 | 70 75 74 20 74 6f 20 74 68 65 20 63 6f 6e 73 6f 6c 65 2e 00 47 65 6e 65 72 61 74 65 20 61 20 6e | put.to.the.console..Generate.a.n |
| 4f8a0 | 65 77 20 57 69 72 65 47 75 61 72 64 20 70 75 62 6c 69 63 2f 70 72 69 76 61 74 65 20 6b 65 79 20 | ew.WireGuard.public/private.key. |
| 4f8c0 | 70 6f 72 74 69 6f 6e 20 61 6e 64 20 6f 75 74 70 75 74 20 74 68 65 20 72 65 73 75 6c 74 20 74 6f | portion.and.output.the.result.to |
| 4f8e0 | 20 74 68 65 20 63 6f 6e 73 6f 6c 65 2e 00 47 65 6e 65 72 61 74 65 20 61 20 6e 65 77 20 73 65 74 | .the.console..Generate.a.new.set |
| 4f900 | 20 6f 66 20 3a 61 62 62 72 3a 60 44 48 20 28 44 69 66 66 69 65 2d 48 65 6c 6c 6d 61 6e 29 60 20 | .of.:abbr:`DH.(Diffie-Hellman)`. |
| 4f920 | 70 61 72 61 6d 65 74 65 72 73 2e 20 54 68 65 20 6b 65 79 20 73 69 7a 65 20 69 73 20 72 65 71 75 | parameters..The.key.size.is.requ |
| 4f940 | 65 73 74 65 64 20 62 79 20 74 68 65 20 43 4c 49 20 61 6e 64 20 64 65 66 61 75 6c 74 73 20 74 6f | ested.by.the.CLI.and.defaults.to |
| 4f960 | 20 32 30 34 38 20 62 69 74 2e 00 47 65 6e 65 72 61 74 65 20 74 68 65 20 63 6f 6e 66 69 67 75 72 | .2048.bit..Generate.the.configur |
| 4f980 | 61 74 69 6f 6e 20 6d 6f 64 65 20 63 6f 6d 6d 61 6e 64 73 20 74 6f 20 61 64 64 20 61 20 70 75 62 | ation.mode.commands.to.add.a.pub |
| 4f9a0 | 6c 69 63 20 6b 65 79 20 66 6f 72 20 3a 72 65 66 3a 60 73 73 68 5f 6b 65 79 5f 62 61 73 65 64 5f | lic.key.for.:ref:`ssh_key_based_ |
| 4f9c0 | 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 60 2e 20 60 60 3c 6c 6f 63 61 74 69 6f 6e 3e 60 60 20 | authentication`..``<location>``. |
| 4f9e0 | 63 61 6e 20 62 65 20 61 20 6c 6f 63 61 6c 20 70 61 74 68 20 6f 72 20 61 20 55 52 4c 20 70 6f 69 | can.be.a.local.path.or.a.URL.poi |
| 4fa00 | 6e 74 69 6e 67 20 61 74 20 61 20 72 65 6d 6f 74 65 20 66 69 6c 65 2e 00 47 65 6e 65 72 61 74 65 | nting.at.a.remote.file..Generate |
| 4fa20 | 73 20 61 20 6b 65 79 70 61 69 72 2c 20 77 68 69 63 68 20 69 6e 63 6c 75 64 65 73 20 74 68 65 20 | s.a.keypair,.which.includes.the. |
| 4fa40 | 70 75 62 6c 69 63 20 61 6e 64 20 70 72 69 76 61 74 65 20 70 61 72 74 73 2c 20 61 6e 64 20 62 75 | public.and.private.parts,.and.bu |
| 4fa60 | 69 6c 64 20 61 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 69 | ild.a.configuration.command.to.i |
| 4fa80 | 6e 73 74 61 6c 6c 20 74 68 69 73 20 6b 65 79 20 74 6f 20 60 60 69 6e 74 65 72 66 61 63 65 60 60 | nstall.this.key.to.``interface`` |
| 4faa0 | 2e 00 47 65 6e 65 72 61 74 65 73 20 61 20 6b 65 79 70 61 69 72 2c 20 77 68 69 63 68 20 69 6e 63 | ..Generates.a.keypair,.which.inc |
| 4fac0 | 6c 75 64 65 73 20 74 68 65 20 70 75 62 6c 69 63 20 61 6e 64 20 70 72 69 76 61 74 65 20 70 61 72 | ludes.the.public.and.private.par |
| 4fae0 | 74 73 2c 20 61 6e 64 20 62 75 69 6c 64 73 20 61 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 | ts,.and.builds.a.configuration.c |
| 4fb00 | 6f 6d 6d 61 6e 64 20 74 6f 20 69 6e 73 74 61 6c 6c 20 74 68 69 73 20 6b 65 79 20 74 6f 20 60 60 | ommand.to.install.this.key.to.`` |
| 4fb20 | 69 6e 74 65 72 66 61 63 65 60 60 2e 00 47 65 6e 65 72 61 74 65 73 20 74 68 65 20 6b 65 79 70 61 | interface``..Generates.the.keypa |
| 4fb40 | 69 72 2c 20 77 68 69 63 68 20 69 6e 63 6c 75 64 65 73 20 74 68 65 20 70 75 62 6c 69 63 20 61 6e | ir,.which.includes.the.public.an |
| 4fb60 | 64 20 70 72 69 76 61 74 65 20 70 61 72 74 73 2e 20 54 68 65 20 6b 65 79 20 69 73 20 6e 6f 74 20 | d.private.parts..The.key.is.not. |
| 4fb80 | 73 74 6f 72 65 64 20 6f 6e 20 74 68 65 20 73 79 73 74 65 6d 20 2d 20 6f 6e 6c 79 20 61 20 6b 65 | stored.on.the.system.-.only.a.ke |
| 4fba0 | 79 70 61 69 72 20 69 73 20 67 65 6e 65 72 61 74 65 64 2e 00 47 65 6e 65 72 69 63 20 52 6f 75 74 | ypair.is.generated..Generic.Rout |
| 4fbc0 | 69 6e 67 20 45 6e 63 61 70 73 75 6c 61 74 69 6f 6e 20 28 47 52 45 29 00 47 65 6e 65 76 65 20 48 | ing.Encapsulation.(GRE).Geneve.H |
| 4fbe0 | 65 61 64 65 72 3a 00 47 65 74 20 61 20 6c 69 73 74 20 6f 66 20 61 6c 6c 20 77 69 72 65 67 75 61 | eader:.Get.a.list.of.all.wiregua |
| 4fc00 | 72 64 20 69 6e 74 65 72 66 61 63 65 73 00 47 65 74 20 61 6e 20 6f 76 65 72 76 69 65 77 20 6f 76 | rd.interfaces.Get.an.overview.ov |
| 4fc20 | 65 72 20 74 68 65 20 65 6e 63 72 79 70 74 69 6f 6e 20 63 6f 75 6e 74 65 72 73 2e 00 47 65 74 20 | er.the.encryption.counters..Get. |
| 4fc40 | 64 65 74 61 69 6c 65 64 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 4c 4c 44 50 20 | detailed.information.about.LLDP. |
| 4fc60 | 6e 65 69 67 68 62 6f 72 73 2e 00 47 65 74 20 74 68 65 20 44 48 43 50 76 36 2d 50 44 20 70 72 65 | neighbors..Get.the.DHCPv6-PD.pre |
| 4fc80 | 66 69 78 65 73 20 66 72 6f 6d 20 62 6f 74 68 20 72 6f 75 74 65 72 73 3a 00 47 65 74 74 69 6e 67 | fixes.from.both.routers:.Getting |
| 4fca0 | 20 73 74 61 72 74 65 64 00 47 69 76 65 6e 20 74 68 65 20 66 61 63 74 20 74 68 61 74 20 6f 70 65 | .started.Given.the.fact.that.ope |
| 4fcc0 | 6e 20 44 4e 53 20 72 65 63 75 72 73 6f 72 73 20 63 6f 75 6c 64 20 62 65 20 75 73 65 64 20 6f 6e | n.DNS.recursors.could.be.used.on |
| 4fce0 | 20 44 44 6f 53 20 61 6d 70 6c 69 66 69 63 61 74 69 6f 6e 20 61 74 74 61 63 6b 73 2c 20 79 6f 75 | .DDoS.amplification.attacks,.you |
| 4fd00 | 20 6d 75 73 74 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 6e 65 74 77 6f 72 6b 73 20 77 68 69 | .must.configure.the.networks.whi |
| 4fd20 | 63 68 20 61 72 65 20 61 6c 6c 6f 77 65 64 20 74 6f 20 75 73 65 20 74 68 69 73 20 72 65 63 75 72 | ch.are.allowed.to.use.this.recur |
| 4fd40 | 73 6f 72 2e 20 41 20 6e 65 74 77 6f 72 6b 20 6f 66 20 60 60 30 2e 30 2e 30 2e 30 2f 30 60 60 20 | sor..A.network.of.``0.0.0.0/0``. |
| 4fd60 | 6f 72 20 60 60 3a 3a 2f 30 60 60 20 77 6f 75 6c 64 20 61 6c 6c 6f 77 20 61 6c 6c 20 49 50 76 34 | or.``::/0``.would.allow.all.IPv4 |
| 4fd80 | 20 61 6e 64 20 49 50 76 36 20 6e 65 74 77 6f 72 6b 73 20 74 6f 20 71 75 65 72 79 20 74 68 69 73 | .and.IPv6.networks.to.query.this |
| 4fda0 | 20 73 65 72 76 65 72 2e 20 54 68 69 73 20 69 73 20 67 65 6e 65 72 61 6c 6c 79 20 61 20 62 61 64 | .server..This.is.generally.a.bad |
| 4fdc0 | 20 69 64 65 61 2e 00 47 69 76 65 6e 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 | .idea..Given.the.following.examp |
| 4fde0 | 6c 65 20 77 65 20 68 61 76 65 20 6f 6e 65 20 56 79 4f 53 20 72 6f 75 74 65 72 20 61 63 74 69 6e | le.we.have.one.VyOS.router.actin |
| 4fe00 | 67 20 61 73 20 4f 70 65 6e 56 50 4e 20 73 65 72 76 65 72 20 61 6e 64 20 61 6e 6f 74 68 65 72 20 | g.as.OpenVPN.server.and.another. |
| 4fe20 | 56 79 4f 53 20 72 6f 75 74 65 72 20 61 63 74 69 6e 67 20 61 73 20 4f 70 65 6e 56 50 4e 20 63 6c | VyOS.router.acting.as.OpenVPN.cl |
| 4fe40 | 69 65 6e 74 2e 20 54 68 65 20 73 65 72 76 65 72 20 61 6c 73 6f 20 70 75 73 68 65 73 20 61 20 73 | ient..The.server.also.pushes.a.s |
| 4fe60 | 74 61 74 69 63 20 63 6c 69 65 6e 74 20 49 50 20 61 64 64 72 65 73 73 20 74 6f 20 74 68 65 20 4f | tatic.client.IP.address.to.the.O |
| 4fe80 | 70 65 6e 56 50 4e 20 63 6c 69 65 6e 74 2e 20 52 65 6d 65 6d 62 65 72 2c 20 63 6c 69 65 6e 74 73 | penVPN.client..Remember,.clients |
| 4fea0 | 20 61 72 65 20 69 64 65 6e 74 69 66 69 65 64 20 75 73 69 6e 67 20 74 68 65 69 72 20 43 4e 20 61 | .are.identified.using.their.CN.a |
| 4fec0 | 74 74 72 69 62 75 74 65 20 69 6e 20 74 68 65 20 53 53 4c 20 63 65 72 74 69 66 69 63 61 74 65 2e | ttribute.in.the.SSL.certificate. |
| 4fee0 | 00 47 69 76 65 6e 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 6c 65 20 77 65 20 | .Given.the.following.example.we. |
| 4ff00 | 68 61 76 65 20 6f 6e 65 20 56 79 4f 53 20 72 6f 75 74 65 72 20 61 63 74 69 6e 67 20 61 73 20 61 | have.one.VyOS.router.acting.as.a |
| 4ff20 | 6e 20 4f 70 65 6e 56 50 4e 20 73 65 72 76 65 72 20 61 6e 64 20 61 6e 6f 74 68 65 72 20 56 79 4f | n.OpenVPN.server.and.another.VyO |
| 4ff40 | 53 20 72 6f 75 74 65 72 20 61 63 74 69 6e 67 20 61 73 20 61 6e 20 4f 70 65 6e 56 50 4e 20 63 6c | S.router.acting.as.an.OpenVPN.cl |
| 4ff60 | 69 65 6e 74 2e 20 54 68 65 20 73 65 72 76 65 72 20 61 6c 73 6f 20 70 75 73 68 65 73 20 61 20 73 | ient..The.server.also.pushes.a.s |
| 4ff80 | 74 61 74 69 63 20 63 6c 69 65 6e 74 20 49 50 20 61 64 64 72 65 73 73 20 74 6f 20 74 68 65 20 4f | tatic.client.IP.address.to.the.O |
| 4ffa0 | 70 65 6e 56 50 4e 20 63 6c 69 65 6e 74 2e 20 52 65 6d 65 6d 62 65 72 2c 20 63 6c 69 65 6e 74 73 | penVPN.client..Remember,.clients |
| 4ffc0 | 20 61 72 65 20 69 64 65 6e 74 69 66 69 65 64 20 75 73 69 6e 67 20 74 68 65 69 72 20 43 4e 20 61 | .are.identified.using.their.CN.a |
| 4ffe0 | 74 74 72 69 62 75 74 65 20 69 6e 20 74 68 65 20 53 53 4c 20 63 65 72 74 69 66 69 63 61 74 65 2e | ttribute.in.the.SSL.certificate. |
| 50000 | 00 47 6c 6f 61 62 61 6c 00 47 6c 6f 62 61 6c 00 47 6c 6f 62 61 6c 20 41 64 76 61 6e 63 65 64 20 | .Gloabal.Global.Global.Advanced. |
| 50020 | 6f 70 74 69 6f 6e 73 00 47 6c 6f 62 61 6c 20 4f 70 74 69 6f 6e 73 00 47 6c 6f 62 61 6c 20 4f 70 | options.Global.Options.Global.Op |
| 50040 | 74 69 6f 6e 73 20 46 69 72 65 77 61 6c 6c 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 47 6c 6f | tions.Firewall.Configuration.Glo |
| 50060 | 62 61 6c 20 6f 70 74 69 6f 6e 73 00 47 6c 6f 62 61 6c 20 70 61 72 61 6d 65 74 65 72 73 00 47 6c | bal.options.Global.parameters.Gl |
| 50080 | 6f 62 61 6c 20 73 65 74 74 69 6e 67 73 00 47 72 61 63 65 66 75 6c 20 52 65 73 74 61 72 74 00 47 | obal.settings.Graceful.Restart.G |
| 500a0 | 72 61 70 68 51 4c 00 47 72 61 74 75 69 74 6f 75 73 20 41 52 50 00 47 72 6f 75 70 73 00 47 72 6f | raphQL.Gratuitous.ARP.Groups.Gro |
| 500c0 | 75 70 73 20 6e 65 65 64 20 74 6f 20 68 61 76 65 20 75 6e 69 71 75 65 20 6e 61 6d 65 73 2e 20 45 | ups.need.to.have.unique.names..E |
| 500e0 | 76 65 6e 20 74 68 6f 75 67 68 20 73 6f 6d 65 20 63 6f 6e 74 61 69 6e 20 49 50 76 34 20 61 64 64 | ven.though.some.contain.IPv4.add |
| 50100 | 72 65 73 73 65 73 20 61 6e 64 20 6f 74 68 65 72 73 20 63 6f 6e 74 61 69 6e 20 49 50 76 36 20 61 | resses.and.others.contain.IPv6.a |
| 50120 | 64 64 72 65 73 73 65 73 2c 20 74 68 65 79 20 73 74 69 6c 6c 20 6e 65 65 64 20 74 6f 20 68 61 76 | ddresses,.they.still.need.to.hav |
| 50140 | 65 20 75 6e 69 71 75 65 20 6e 61 6d 65 73 2c 20 73 6f 20 79 6f 75 20 6d 61 79 20 77 61 6e 74 20 | e.unique.names,.so.you.may.want. |
| 50160 | 74 6f 20 61 70 70 65 6e 64 20 22 2d 76 34 22 20 6f 72 20 22 2d 76 36 22 20 74 6f 20 79 6f 75 72 | to.append."-v4".or."-v6".to.your |
| 50180 | 20 67 72 6f 75 70 20 6e 61 6d 65 73 2e 00 48 45 20 28 48 69 67 68 20 45 66 66 69 63 69 65 6e 63 | .group.names..HE.(High.Efficienc |
| 501a0 | 79 29 20 63 61 70 61 62 69 6c 69 74 69 65 73 20 28 38 30 32 2e 31 31 61 78 29 00 48 45 20 6f 70 | y).capabilities.(802.11ax).HE.op |
| 501c0 | 65 72 61 74 69 6e 67 20 63 68 61 6e 6e 65 6c 20 63 65 6e 74 65 72 20 66 72 65 71 75 65 6e 63 79 | erating.channel.center.frequency |
| 501e0 | 20 2d 20 63 65 6e 74 65 72 20 66 72 65 71 20 31 20 28 66 6f 72 20 75 73 65 20 77 69 74 68 20 38 | .-.center.freq.1.(for.use.with.8 |
| 50200 | 30 2c 20 38 30 2b 38 30 20 61 6e 64 20 31 36 30 20 6d 6f 64 65 73 29 00 48 45 20 6f 70 65 72 61 | 0,.80+80.and.160.modes).HE.opera |
| 50220 | 74 69 6e 67 20 63 68 61 6e 6e 65 6c 20 63 65 6e 74 65 72 20 66 72 65 71 75 65 6e 63 79 20 2d 20 | ting.channel.center.frequency.-. |
| 50240 | 63 65 6e 74 65 72 20 66 72 65 71 20 32 20 28 66 6f 72 20 75 73 65 20 77 69 74 68 20 74 68 65 20 | center.freq.2.(for.use.with.the. |
| 50260 | 38 30 2b 38 30 20 6d 6f 64 65 29 00 48 50 20 4c 54 34 31 32 30 20 53 6e 61 70 64 72 61 67 6f 6e | 80+80.mode).HP.LT4120.Snapdragon |
| 50280 | 20 58 35 20 4c 54 45 00 48 51 27 73 20 72 6f 75 74 65 72 20 72 65 71 75 69 72 65 73 20 74 68 65 | .X5.LTE.HQ's.router.requires.the |
| 502a0 | 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 74 65 70 73 20 74 6f 20 67 65 6e 65 72 61 74 65 20 63 72 79 | .following.steps.to.generate.cry |
| 502c0 | 70 74 6f 20 6d 61 74 65 72 69 61 6c 73 20 66 6f 72 20 74 68 65 20 42 72 61 6e 63 68 20 31 3a 00 | pto.materials.for.the.Branch.1:. |
| 502e0 | 48 54 20 28 48 69 67 68 20 54 68 72 6f 75 67 68 70 75 74 29 20 63 61 70 61 62 69 6c 69 74 69 65 | HT.(High.Throughput).capabilitie |
| 50300 | 73 20 28 38 30 32 2e 31 31 6e 29 00 48 54 54 50 20 41 50 49 00 48 54 54 50 20 62 61 73 65 64 20 | s.(802.11n).HTTP.API.HTTP.based. |
| 50320 | 73 65 72 76 69 63 65 73 00 48 54 54 50 20 62 61 73 69 63 20 61 75 74 68 65 6e 74 69 63 61 74 69 | services.HTTP.basic.authenticati |
| 50340 | 6f 6e 20 75 73 65 72 6e 61 6d 65 00 48 54 54 50 20 62 61 73 69 63 20 61 75 74 68 65 6e 74 69 63 | on.username.HTTP.basic.authentic |
| 50360 | 61 74 69 6f 6e 2e 00 48 54 54 50 20 63 68 65 63 6b 73 00 48 54 54 50 20 63 6c 69 65 6e 74 00 48 | ation..HTTP.checks.HTTP.client.H |
| 50380 | 54 54 50 20 68 65 61 6c 74 68 20 63 68 65 63 6b 00 48 54 54 50 2d 41 50 49 00 48 61 69 72 70 69 | TTP.health.check.HTTP-API.Hairpi |
| 503a0 | 6e 20 4e 41 54 2f 4e 41 54 20 52 65 66 6c 65 63 74 69 6f 6e 00 48 61 6e 64 20 6f 75 74 20 70 72 | n.NAT/NAT.Reflection.Hand.out.pr |
| 503c0 | 65 66 69 78 65 73 20 6f 66 20 73 69 7a 65 20 60 3c 6c 65 6e 67 74 68 3e 60 20 69 6e 20 62 69 74 | efixes.of.size.`<length>`.in.bit |
| 503e0 | 73 20 66 72 6f 6d 20 60 3c 70 64 2d 70 72 65 66 69 78 3e 60 20 74 6f 20 63 6c 69 65 6e 74 73 20 | s.from.`<pd-prefix>`.to.clients. |
| 50400 | 69 6e 20 73 75 62 6e 65 74 20 60 3c 70 72 65 66 69 78 3e 60 20 77 68 65 6e 20 74 68 65 20 72 65 | in.subnet.`<prefix>`.when.the.re |
| 50420 | 71 75 65 73 74 20 66 6f 72 20 70 72 65 66 69 78 20 64 65 6c 65 67 61 74 69 6f 6e 2e 00 48 61 6e | quest.for.prefix.delegation..Han |
| 50440 | 64 20 6f 75 74 20 70 72 65 66 69 78 65 73 20 6f 66 20 73 69 7a 65 20 60 3c 6c 65 6e 67 74 68 3e | d.out.prefixes.of.size.`<length> |
| 50460 | 60 20 74 6f 20 63 6c 69 65 6e 74 73 20 69 6e 20 73 75 62 6e 65 74 20 60 3c 70 72 65 66 69 78 3e | `.to.clients.in.subnet.`<prefix> |
| 50480 | 60 20 77 68 65 6e 20 74 68 65 79 20 72 65 71 75 65 73 74 20 66 6f 72 20 70 72 65 66 69 78 20 64 | `.when.they.request.for.prefix.d |
| 504a0 | 65 6c 65 67 61 74 69 6f 6e 2e 00 48 61 6e 64 6c 69 6e 67 20 61 6e 64 20 6d 6f 6e 69 74 6f 72 69 | elegation..Handling.and.monitori |
| 504c0 | 6e 67 00 48 61 70 72 6f 78 79 00 48 61 70 72 6f 78 79 20 69 73 20 61 20 62 61 6c 61 6e 63 65 72 | ng.Haproxy.Haproxy.is.a.balancer |
| 504e0 | 20 61 6e 64 20 70 72 6f 78 79 20 73 65 72 76 65 72 20 74 68 61 74 20 70 72 6f 76 69 64 65 73 20 | .and.proxy.server.that.provides. |
| 50500 | 68 69 67 68 2d 61 76 61 69 6c 61 62 69 6c 69 74 79 2c 20 6c 6f 61 64 20 62 61 6c 61 6e 63 69 6e | high-availability,.load.balancin |
| 50520 | 67 20 61 6e 64 20 70 72 6f 78 79 69 6e 67 20 66 6f 72 20 54 43 50 20 28 6c 65 76 65 6c 20 34 29 | g.and.proxying.for.TCP.(level.4) |
| 50540 | 20 61 6e 64 20 48 54 54 50 2d 62 61 73 65 64 20 28 6c 65 76 65 6c 20 37 29 20 61 70 70 6c 69 63 | .and.HTTP-based.(level.7).applic |
| 50560 | 61 74 69 6f 6e 73 2e 00 48 61 72 64 77 61 72 65 20 54 69 6d 65 73 74 61 6d 70 69 6e 67 20 6f 66 | ations..Hardware.Timestamping.of |
| 50580 | 20 4e 54 50 20 50 61 63 6b 65 74 73 00 48 61 72 64 77 61 72 65 20 74 69 6d 65 73 74 61 6d 70 69 | .NTP.Packets.Hardware.timestampi |
| 505a0 | 6e 67 20 64 65 70 65 6e 64 73 20 6f 6e 20 4e 49 43 20 73 75 70 70 6f 72 74 2e 20 53 6f 6d 65 20 | ng.depends.on.NIC.support..Some. |
| 505c0 | 4e 49 43 73 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 74 6f 20 61 70 70 6c 79 20 | NICs.can.be.configured.to.apply. |
| 505e0 | 74 69 6d 65 73 74 61 6d 70 73 20 74 6f 20 61 6e 79 20 69 6e 63 6f 6d 69 6e 67 20 70 61 63 6b 65 | timestamps.to.any.incoming.packe |
| 50600 | 74 2c 20 77 68 69 6c 65 20 6f 74 68 65 72 73 20 6f 6e 6c 79 20 73 75 70 70 6f 72 74 20 61 70 70 | t,.while.others.only.support.app |
| 50620 | 6c 79 69 6e 67 20 74 69 6d 65 73 74 61 6d 70 73 20 74 6f 20 73 70 65 63 69 66 69 63 20 70 72 6f | lying.timestamps.to.specific.pro |
| 50640 | 74 6f 63 6f 6c 73 20 28 65 2e 67 2e 20 50 54 50 29 2e 00 48 61 76 69 6e 67 20 63 6f 6e 74 72 6f | tocols.(e.g..PTP)..Having.contro |
| 50660 | 6c 20 6f 76 65 72 20 74 68 65 20 6d 61 74 63 68 69 6e 67 20 6f 66 20 49 4e 56 41 4c 49 44 20 73 | l.over.the.matching.of.INVALID.s |
| 50680 | 74 61 74 65 20 74 72 61 66 66 69 63 2c 20 65 2e 67 2e 20 74 68 65 20 61 62 69 6c 69 74 79 20 74 | tate.traffic,.e.g..the.ability.t |
| 506a0 | 6f 20 73 65 6c 65 63 74 69 76 65 6c 79 20 6c 6f 67 2c 20 69 73 20 61 6e 20 69 6d 70 6f 72 74 61 | o.selectively.log,.is.an.importa |
| 506c0 | 6e 74 20 74 72 6f 75 62 6c 65 73 68 6f 6f 74 69 6e 67 20 74 6f 6f 6c 20 66 6f 72 20 6f 62 73 65 | nt.troubleshooting.tool.for.obse |
| 506e0 | 72 76 69 6e 67 20 62 72 6f 6b 65 6e 20 70 72 6f 74 6f 63 6f 6c 20 62 65 68 61 76 69 6f 72 2e 20 | rving.broken.protocol.behavior.. |
| 50700 | 46 6f 72 20 74 68 69 73 20 72 65 61 73 6f 6e 2c 20 56 79 4f 53 20 64 6f 65 73 20 6e 6f 74 20 67 | For.this.reason,.VyOS.does.not.g |
| 50720 | 6c 6f 62 61 6c 6c 79 20 64 72 6f 70 20 69 6e 76 61 6c 69 64 20 73 74 61 74 65 20 74 72 61 66 66 | lobally.drop.invalid.state.traff |
| 50740 | 69 63 2c 20 69 6e 73 74 65 61 64 20 61 6c 6c 6f 77 69 6e 67 20 74 68 65 20 6f 70 65 72 61 74 6f | ic,.instead.allowing.the.operato |
| 50760 | 72 20 74 6f 20 6d 61 6b 65 20 74 68 65 20 64 65 74 65 72 6d 69 6e 61 74 69 6f 6e 20 6f 6e 20 68 | r.to.make.the.determination.on.h |
| 50780 | 6f 77 20 74 68 65 20 74 72 61 66 66 69 63 20 69 73 20 68 61 6e 64 6c 65 64 2e 00 48 65 61 6c 74 | ow.the.traffic.is.handled..Healt |
| 507a0 | 68 20 63 68 65 63 6b 20 73 63 72 69 70 74 73 00 48 65 61 6c 74 68 20 63 68 65 63 6b 73 00 48 65 | h.check.scripts.Health.checks.He |
| 507c0 | 61 6c 74 68 20 63 68 65 63 6b 73 20 63 61 6e 20 61 6c 73 6f 20 62 65 20 63 6f 6e 66 69 67 75 72 | alth.checks.can.also.be.configur |
| 507e0 | 65 64 20 66 6f 72 20 54 43 50 20 6d 6f 64 65 20 62 61 63 6b 65 6e 64 73 2e 20 59 6f 75 20 63 61 | ed.for.TCP.mode.backends..You.ca |
| 50800 | 6e 20 63 6f 6e 66 69 67 75 72 65 20 70 72 6f 74 6f 63 6f 6c 20 61 77 61 72 65 20 63 68 65 63 6b | n.configure.protocol.aware.check |
| 50820 | 73 20 66 6f 72 20 61 20 72 61 6e 67 65 20 6f 66 20 4c 61 79 65 72 20 37 20 70 72 6f 74 6f 63 6f | s.for.a.range.of.Layer.7.protoco |
| 50840 | 6c 73 3a 00 48 65 61 6c 74 68 2d 63 68 65 63 6b 00 48 65 72 65 20 61 72 65 20 73 6f 6d 65 20 65 | ls:.Health-check.Here.are.some.e |
| 50860 | 78 61 6d 70 6c 65 73 20 66 6f 72 20 61 70 70 6c 79 69 6e 67 20 61 20 72 75 6c 65 2d 73 65 74 20 | xamples.for.applying.a.rule-set. |
| 50880 | 74 6f 20 61 6e 20 69 6e 74 65 72 66 61 63 65 00 48 65 72 65 20 69 73 20 61 20 73 65 63 6f 6e 64 | to.an.interface.Here.is.a.second |
| 508a0 | 20 65 78 61 6d 70 6c 65 20 6f 66 20 61 20 64 75 61 6c 2d 73 74 61 63 6b 20 74 75 6e 6e 65 6c 20 | .example.of.a.dual-stack.tunnel. |
| 508c0 | 6f 76 65 72 20 49 50 76 36 20 62 65 74 77 65 65 6e 20 61 20 56 79 4f 53 20 72 6f 75 74 65 72 20 | over.IPv6.between.a.VyOS.router. |
| 508e0 | 61 6e 64 20 61 20 4c 69 6e 75 78 20 68 6f 73 74 20 75 73 69 6e 67 20 73 79 73 74 65 6d 64 2d 6e | and.a.Linux.host.using.systemd-n |
| 50900 | 65 74 77 6f 72 6b 64 2e 00 48 65 72 65 20 69 73 20 61 6e 20 65 78 61 6d 70 6c 65 20 3a 61 62 62 | etworkd..Here.is.an.example.:abb |
| 50920 | 72 3a 60 4e 45 54 20 28 4e 65 74 77 6f 72 6b 20 45 6e 74 69 74 79 20 54 69 74 6c 65 29 60 20 76 | r:`NET.(Network.Entity.Title)`.v |
| 50940 | 61 6c 75 65 3a 00 48 65 72 65 20 69 73 20 61 6e 20 65 78 61 6d 70 6c 65 20 6f 66 20 73 75 63 68 | alue:.Here.is.an.example.of.such |
| 50960 | 20 63 6f 6d 6d 61 6e 64 3a 00 48 65 72 65 20 69 73 20 61 6e 20 65 78 61 6d 70 6c 65 20 72 6f 75 | .command:.Here.is.an.example.rou |
| 50980 | 74 65 2d 6d 61 70 20 74 6f 20 61 70 70 6c 79 20 74 6f 20 72 6f 75 74 65 73 20 6c 65 61 72 6e 65 | te-map.to.apply.to.routes.learne |
| 509a0 | 64 20 61 74 20 69 6d 70 6f 72 74 2e 20 49 6e 20 74 68 69 73 20 66 69 6c 74 65 72 20 77 65 20 72 | d.at.import..In.this.filter.we.r |
| 509c0 | 65 6a 65 63 74 20 70 72 65 66 69 78 65 73 20 77 69 74 68 20 74 68 65 20 73 74 61 74 65 20 60 69 | eject.prefixes.with.the.state.`i |
| 509e0 | 6e 76 61 6c 69 64 60 2c 20 61 6e 64 20 73 65 74 20 61 20 68 69 67 68 65 72 20 60 6c 6f 63 61 6c | nvalid`,.and.set.a.higher.`local |
| 50a00 | 2d 70 72 65 66 65 72 65 6e 63 65 60 20 69 66 20 74 68 65 20 70 72 65 66 69 78 20 69 73 20 52 50 | -preference`.if.the.prefix.is.RP |
| 50a20 | 4b 49 20 60 76 61 6c 69 64 60 20 72 61 74 68 65 72 20 74 68 61 6e 20 6d 65 72 65 6c 79 20 60 6e | KI.`valid`.rather.than.merely.`n |
| 50a40 | 6f 74 66 6f 75 6e 64 60 2e 00 48 65 72 65 20 69 73 20 61 6e 20 65 78 61 6d 70 6c 65 20 77 65 72 | otfound`..Here.is.an.example.wer |
| 50a60 | 65 20 6d 75 6c 74 69 70 6c 65 20 67 72 6f 75 70 73 20 61 72 65 20 63 72 65 61 74 65 64 3a 00 48 | e.multiple.groups.are.created:.H |
| 50a80 | 65 72 65 20 69 73 20 74 68 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 73 20 73 68 6f 77 69 6e | ere.is.the.routing.tables.showin |
| 50aa0 | 67 20 74 68 65 20 4d 50 4c 53 20 73 65 67 6d 65 6e 74 20 72 6f 75 74 69 6e 67 20 6c 61 62 65 6c | g.the.MPLS.segment.routing.label |
| 50ac0 | 20 6f 70 65 72 61 74 69 6f 6e 73 3a 00 48 65 72 65 20 77 65 20 70 72 6f 76 69 64 65 20 74 77 6f | .operations:.Here.we.provide.two |
| 50ae0 | 20 65 78 61 6d 70 6c 65 73 20 6f 6e 20 68 6f 77 20 74 6f 20 61 70 70 6c 79 20 4e 41 54 20 4c 6f | .examples.on.how.to.apply.NAT.Lo |
| 50b00 | 61 64 20 42 61 6c 61 6e 63 65 2e 00 48 65 72 65 27 73 20 61 6e 20 65 78 74 72 61 63 74 20 6f 66 | ad.Balance..Here's.an.extract.of |
| 50b20 | 20 61 20 73 69 6d 70 6c 65 20 31 2d 74 6f 2d 31 20 4e 41 54 20 63 6f 6e 66 69 67 75 72 61 74 69 | .a.simple.1-to-1.NAT.configurati |
| 50b40 | 6f 6e 20 77 69 74 68 20 6f 6e 65 20 69 6e 74 65 72 6e 61 6c 20 61 6e 64 20 6f 6e 65 20 65 78 74 | on.with.one.internal.and.one.ext |
| 50b60 | 65 72 6e 61 6c 20 69 6e 74 65 72 66 61 63 65 3a 00 48 65 72 65 27 73 20 6f 6e 65 20 65 78 61 6d | ernal.interface:.Here's.one.exam |
| 50b80 | 70 6c 65 20 6f 66 20 61 20 6e 65 74 77 6f 72 6b 20 65 6e 76 69 72 6f 6e 6d 65 6e 74 20 66 6f 72 | ple.of.a.network.environment.for |
| 50ba0 | 20 61 6e 20 41 53 50 2e 20 54 68 65 20 41 53 50 20 72 65 71 75 65 73 74 73 20 74 68 61 74 20 61 | .an.ASP..The.ASP.requests.that.a |
| 50bc0 | 6c 6c 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 66 72 6f 6d 20 74 68 69 73 20 63 6f 6d 70 61 6e 79 | ll.connections.from.this.company |
| 50be0 | 20 73 68 6f 75 6c 64 20 63 6f 6d 65 20 66 72 6f 6d 20 31 37 32 2e 32 39 2e 34 31 2e 38 39 20 2d | .should.come.from.172.29.41.89.- |
| 50c00 | 20 61 6e 20 61 64 64 72 65 73 73 20 74 68 61 74 20 69 73 20 61 73 73 69 67 6e 65 64 20 62 79 20 | .an.address.that.is.assigned.by. |
| 50c20 | 74 68 65 20 41 53 50 20 61 6e 64 20 6e 6f 74 20 69 6e 20 75 73 65 20 61 74 20 74 68 65 20 63 75 | the.ASP.and.not.in.use.at.the.cu |
| 50c40 | 73 74 6f 6d 65 72 20 73 69 74 65 2e 00 48 65 72 65 27 73 20 74 68 65 20 49 50 20 72 6f 75 74 65 | stomer.site..Here's.the.IP.route |
| 50c60 | 73 20 74 68 61 74 20 61 72 65 20 70 6f 70 75 6c 61 74 65 64 2e 20 4a 75 73 74 20 74 68 65 20 6c | s.that.are.populated..Just.the.l |
| 50c80 | 6f 6f 70 62 61 63 6b 3a 00 48 65 72 65 27 73 20 74 68 65 20 49 50 20 72 6f 75 74 65 73 20 74 68 | oopback:.Here's.the.IP.routes.th |
| 50ca0 | 61 74 20 61 72 65 20 70 6f 70 75 6c 61 74 65 64 3a 00 48 65 72 65 27 73 20 74 68 65 20 6e 65 69 | at.are.populated:.Here's.the.nei |
| 50cc0 | 67 68 62 6f 72 73 20 75 70 3a 00 48 65 72 65 27 73 20 74 68 65 20 72 6f 75 74 65 73 3a 00 48 65 | ghbors.up:.Here's.the.routes:.He |
| 50ce0 | 77 6c 65 74 74 2d 50 61 63 6b 61 72 64 20 63 61 6c 6c 20 69 74 20 53 6f 75 72 63 65 2d 50 6f 72 | wlett-Packard.call.it.Source-Por |
| 50d00 | 74 20 66 69 6c 74 65 72 69 6e 67 20 6f 72 20 70 6f 72 74 2d 69 73 6f 6c 61 74 69 6f 6e 00 48 69 | t.filtering.or.port-isolation.Hi |
| 50d20 | 67 68 00 48 69 67 68 20 41 76 61 69 6c 61 62 69 6c 69 74 79 00 48 69 67 68 20 61 76 61 69 6c 61 | gh.High.Availability.High.availa |
| 50d40 | 62 69 6c 69 74 79 00 48 6f 6d 65 20 55 73 65 72 73 00 48 6f 70 20 63 6f 75 6e 74 20 66 69 65 6c | bility.Home.Users.Hop.count.fiel |
| 50d60 | 64 20 6f 66 20 74 68 65 20 6f 75 74 67 6f 69 6e 67 20 52 41 20 70 61 63 6b 65 74 73 00 48 6f 73 | d.of.the.outgoing.RA.packets.Hos |
| 50d80 | 74 20 49 6e 66 6f 72 6d 61 74 69 6f 6e 00 48 6f 73 74 20 6e 61 6d 65 00 48 6f 73 74 20 73 70 65 | t.Information.Host.name.Host.spe |
| 50da0 | 63 69 66 69 63 20 6d 61 70 70 69 6e 67 20 73 68 61 6c 6c 20 62 65 20 6e 61 6d 65 64 20 60 60 63 | cific.mapping.shall.be.named.``c |
| 50dc0 | 6c 69 65 6e 74 31 60 60 00 48 6f 73 74 6e 61 6d 65 00 48 6f 77 20 61 6e 20 49 50 20 61 64 64 72 | lient1``.Hostname.How.an.IP.addr |
| 50de0 | 65 73 73 20 69 73 20 61 73 73 69 67 6e 65 64 20 74 6f 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 | ess.is.assigned.to.an.interface. |
| 50e00 | 69 6e 20 3a 72 65 66 3a 60 65 74 68 65 72 6e 65 74 2d 69 6e 74 65 72 66 61 63 65 60 2e 20 54 68 | in.:ref:`ethernet-interface`..Th |
| 50e20 | 69 73 20 73 65 63 74 69 6f 6e 20 73 68 6f 77 73 20 68 6f 77 20 74 6f 20 73 74 61 74 69 63 61 6c | is.section.shows.how.to.statical |
| 50e40 | 6c 79 20 6d 61 70 20 61 6e 20 49 50 20 61 64 64 72 65 73 73 20 74 6f 20 61 20 68 6f 73 74 6e 61 | ly.map.an.IP.address.to.a.hostna |
| 50e60 | 6d 65 20 66 6f 72 20 6c 6f 63 61 6c 20 28 6d 65 61 6e 69 6e 67 20 6f 6e 20 74 68 69 73 20 56 79 | me.for.local.(meaning.on.this.Vy |
| 50e80 | 4f 53 20 69 6e 73 74 61 6e 63 65 29 20 6e 61 6d 65 20 72 65 73 6f 6c 75 74 69 6f 6e 2e 20 54 68 | OS.instance).name.resolution..Th |
| 50ea0 | 69 73 20 69 73 20 74 68 65 20 56 79 4f 53 20 65 71 75 69 76 61 6c 65 6e 74 20 74 6f 20 60 2f 65 | is.is.the.VyOS.equivalent.to.`/e |
| 50ec0 | 74 63 2f 68 6f 73 74 73 60 20 66 69 6c 65 20 65 6e 74 72 69 65 73 2e 00 48 6f 77 20 74 6f 20 63 | tc/hosts`.file.entries..How.to.c |
| 50ee0 | 6f 6e 66 69 67 75 72 65 20 45 76 65 6e 74 20 48 61 6e 64 6c 65 72 00 48 6f 77 20 74 6f 20 6d 61 | onfigure.Event.Handler.How.to.ma |
| 50f00 | 6b 65 20 69 74 20 77 6f 72 6b 00 48 6f 77 65 76 65 72 2c 20 6e 6f 77 20 79 6f 75 20 6e 65 65 64 | ke.it.work.However,.now.you.need |
| 50f20 | 20 74 6f 20 6d 61 6b 65 20 49 50 73 65 63 20 77 6f 72 6b 20 77 69 74 68 20 64 79 6e 61 6d 69 63 | .to.make.IPsec.work.with.dynamic |
| 50f40 | 20 61 64 64 72 65 73 73 20 6f 6e 20 6f 6e 65 20 73 69 64 65 2e 20 54 68 65 20 74 72 69 63 6b 79 | .address.on.one.side..The.tricky |
| 50f60 | 20 70 61 72 74 20 69 73 20 74 68 61 74 20 70 72 65 2d 73 68 61 72 65 64 20 73 65 63 72 65 74 20 | .part.is.that.pre-shared.secret. |
| 50f80 | 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 64 6f 65 73 6e 27 74 20 77 6f 72 6b 20 77 69 74 68 | authentication.doesn't.work.with |
| 50fa0 | 20 64 79 6e 61 6d 69 63 20 61 64 64 72 65 73 73 2c 20 73 6f 20 77 65 27 6c 6c 20 68 61 76 65 20 | .dynamic.address,.so.we'll.have. |
| 50fc0 | 74 6f 20 75 73 65 20 52 53 41 20 6b 65 79 73 2e 00 48 6f 77 65 76 65 72 2c 20 73 69 6e 63 65 20 | to.use.RSA.keys..However,.since. |
| 50fe0 | 56 79 4f 53 20 31 2e 34 2c 20 69 74 20 69 73 20 70 6f 73 73 69 62 6c 65 20 74 6f 20 76 65 72 69 | VyOS.1.4,.it.is.possible.to.veri |
| 51000 | 66 79 20 73 65 6c 66 2d 73 69 67 6e 65 64 20 63 65 72 74 69 66 69 63 61 74 65 73 20 75 73 69 6e | fy.self-signed.certificates.usin |
| 51020 | 67 20 63 65 72 74 69 66 69 63 61 74 65 20 66 69 6e 67 65 72 70 72 69 6e 74 73 2e 00 48 6f 77 65 | g.certificate.fingerprints..Howe |
| 51040 | 76 65 72 2c 20 73 70 6c 69 74 2d 74 75 6e 6e 65 6c 69 6e 67 20 63 61 6e 20 62 65 20 61 63 68 69 | ver,.split-tunneling.can.be.achi |
| 51060 | 65 76 65 64 20 62 79 20 73 70 65 63 69 66 79 69 6e 67 20 74 68 65 20 72 65 6d 6f 74 65 20 73 75 | eved.by.specifying.the.remote.su |
| 51080 | 62 6e 65 74 73 2e 20 54 68 69 73 20 65 6e 73 75 72 65 73 20 74 68 61 74 20 6f 6e 6c 79 20 74 72 | bnets..This.ensures.that.only.tr |
| 510a0 | 61 66 66 69 63 20 64 65 73 74 69 6e 65 64 20 66 6f 72 20 74 68 65 20 72 65 6d 6f 74 65 20 73 69 | affic.destined.for.the.remote.si |
| 510c0 | 74 65 20 69 73 20 73 65 6e 74 20 6f 76 65 72 20 74 68 65 20 74 75 6e 6e 65 6c 2e 20 41 6c 6c 20 | te.is.sent.over.the.tunnel..All. |
| 510e0 | 6f 74 68 65 72 20 74 72 61 66 66 69 63 20 69 73 20 75 6e 61 66 66 65 63 74 65 64 2e 00 48 75 61 | other.traffic.is.unaffected..Hua |
| 51100 | 77 65 69 20 4d 45 39 30 39 73 2d 31 32 30 20 6d 69 6e 69 50 43 49 65 20 63 61 72 64 20 28 4c 54 | wei.ME909s-120.miniPCIe.card.(LT |
| 51120 | 45 29 00 48 75 61 77 65 69 20 4d 45 39 30 39 75 2d 35 32 31 20 6d 69 6e 69 50 43 49 65 20 63 61 | E).Huawei.ME909u-521.miniPCIe.ca |
| 51140 | 72 64 20 28 4c 54 45 29 00 48 75 62 00 49 45 45 45 20 38 30 32 2e 31 58 2f 4d 41 43 73 65 63 20 | rd.(LTE).Hub.IEEE.802.1X/MACsec. |
| 51160 | 70 72 65 2d 73 68 61 72 65 64 20 6b 65 79 20 6d 6f 64 65 2e 20 54 68 69 73 20 61 6c 6c 6f 77 73 | pre-shared.key.mode..This.allows |
| 51180 | 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 4d 41 43 73 65 63 20 77 69 74 68 20 61 20 70 72 65 2d 73 | .configuring.MACsec.with.a.pre-s |
| 511a0 | 68 61 72 65 64 20 6b 65 79 20 75 73 69 6e 67 20 61 20 3a 61 62 62 72 3a 60 43 41 4b 20 28 4d 41 | hared.key.using.a.:abbr:`CAK.(MA |
| 511c0 | 43 73 65 63 20 63 6f 6e 6e 65 63 74 69 76 69 74 79 20 61 73 73 6f 63 69 61 74 69 6f 6e 20 6b 65 | Csec.connectivity.association.ke |
| 511e0 | 79 29 60 20 61 6e 64 20 3a 61 62 62 72 3a 60 43 4b 4e 20 28 4d 41 43 73 65 63 20 63 6f 6e 6e 65 | y)`.and.:abbr:`CKN.(MACsec.conne |
| 51200 | 63 74 69 76 69 74 79 20 61 73 73 6f 63 69 61 74 69 6f 6e 20 6e 61 6d 65 29 60 20 70 61 69 72 2e | ctivity.association.name)`.pair. |
| 51220 | 00 49 45 45 45 20 38 30 32 2e 31 58 2f 4d 41 43 73 65 63 20 72 65 70 6c 61 79 20 70 72 6f 74 65 | .IEEE.802.1X/MACsec.replay.prote |
| 51240 | 63 74 69 6f 6e 20 77 69 6e 64 6f 77 2e 20 54 68 69 73 20 64 65 74 65 72 6d 69 6e 65 73 20 61 20 | ction.window..This.determines.a. |
| 51260 | 77 69 6e 64 6f 77 20 69 6e 20 77 68 69 63 68 20 72 65 70 6c 61 79 20 69 73 20 74 6f 6c 65 72 61 | window.in.which.replay.is.tolera |
| 51280 | 74 65 64 2c 20 74 6f 20 61 6c 6c 6f 77 20 72 65 63 65 69 70 74 20 6f 66 20 66 72 61 6d 65 73 20 | ted,.to.allow.receipt.of.frames. |
| 512a0 | 74 68 61 74 20 68 61 76 65 20 62 65 65 6e 20 6d 69 73 6f 72 64 65 72 65 64 20 62 79 20 74 68 65 | that.have.been.misordered.by.the |
| 512c0 | 20 6e 65 74 77 6f 72 6b 2e 00 49 45 45 45 20 38 30 32 2e 31 61 64 5f 20 77 61 73 20 61 6e 20 45 | .network..IEEE.802.1ad_.was.an.E |
| 512e0 | 74 68 65 72 6e 65 74 20 6e 65 74 77 6f 72 6b 69 6e 67 20 73 74 61 6e 64 61 72 64 20 69 6e 66 6f | thernet.networking.standard.info |
| 51300 | 72 6d 61 6c 6c 79 20 6b 6e 6f 77 6e 20 61 73 20 51 69 6e 51 20 61 73 20 61 6e 20 61 6d 65 6e 64 | rmally.known.as.QinQ.as.an.amend |
| 51320 | 6d 65 6e 74 20 74 6f 20 49 45 45 45 20 73 74 61 6e 64 61 72 64 20 38 30 32 2e 31 71 20 56 4c 41 | ment.to.IEEE.standard.802.1q.VLA |
| 51340 | 4e 20 69 6e 74 65 72 66 61 63 65 73 20 61 73 20 64 65 73 63 72 69 62 65 64 20 61 62 6f 76 65 2e | N.interfaces.as.described.above. |
| 51360 | 20 38 30 32 2e 31 61 64 20 77 61 73 20 69 6e 63 6f 72 70 6f 72 61 74 65 64 20 69 6e 74 6f 20 74 | .802.1ad.was.incorporated.into.t |
| 51380 | 68 65 20 62 61 73 65 20 38 30 32 2e 31 71 5f 20 73 74 61 6e 64 61 72 64 20 69 6e 20 32 30 31 31 | he.base.802.1q_.standard.in.2011 |
| 513a0 | 2e 20 54 68 65 20 74 65 63 68 6e 69 71 75 65 20 69 73 20 61 6c 73 6f 20 6b 6e 6f 77 6e 20 61 73 | ..The.technique.is.also.known.as |
| 513c0 | 20 70 72 6f 76 69 64 65 72 20 62 72 69 64 67 69 6e 67 2c 20 53 74 61 63 6b 65 64 20 56 4c 41 4e | .provider.bridging,.Stacked.VLAN |
| 513e0 | 73 2c 20 6f 72 20 73 69 6d 70 6c 79 20 51 69 6e 51 20 6f 72 20 51 2d 69 6e 2d 51 2e 20 22 51 2d | s,.or.simply.QinQ.or.Q-in-Q.."Q- |
| 51400 | 69 6e 2d 51 22 20 63 61 6e 20 66 6f 72 20 73 75 70 70 6f 72 74 65 64 20 64 65 76 69 63 65 73 20 | in-Q".can.for.supported.devices. |
| 51420 | 61 70 70 6c 79 20 74 6f 20 43 2d 74 61 67 20 73 74 61 63 6b 69 6e 67 20 6f 6e 20 43 2d 74 61 67 | apply.to.C-tag.stacking.on.C-tag |
| 51440 | 20 28 45 74 68 65 72 6e 65 74 20 54 79 70 65 20 3d 20 30 78 38 31 30 30 29 2e 00 49 45 45 45 20 | .(Ethernet.Type.=.0x8100)..IEEE. |
| 51460 | 38 30 32 2e 31 71 5f 2c 20 6f 66 74 65 6e 20 72 65 66 65 72 72 65 64 20 74 6f 20 61 73 20 44 6f | 802.1q_,.often.referred.to.as.Do |
| 51480 | 74 31 71 2c 20 69 73 20 74 68 65 20 6e 65 74 77 6f 72 6b 69 6e 67 20 73 74 61 6e 64 61 72 64 20 | t1q,.is.the.networking.standard. |
| 514a0 | 74 68 61 74 20 73 75 70 70 6f 72 74 73 20 76 69 72 74 75 61 6c 20 4c 41 4e 73 20 28 56 4c 41 4e | that.supports.virtual.LANs.(VLAN |
| 514c0 | 73 29 20 6f 6e 20 61 6e 20 49 45 45 45 20 38 30 32 2e 33 20 45 74 68 65 72 6e 65 74 20 6e 65 74 | s).on.an.IEEE.802.3.Ethernet.net |
| 514e0 | 77 6f 72 6b 2e 20 54 68 65 20 73 74 61 6e 64 61 72 64 20 64 65 66 69 6e 65 73 20 61 20 73 79 73 | work..The.standard.defines.a.sys |
| 51500 | 74 65 6d 20 6f 66 20 56 4c 41 4e 20 74 61 67 67 69 6e 67 20 66 6f 72 20 45 74 68 65 72 6e 65 74 | tem.of.VLAN.tagging.for.Ethernet |
| 51520 | 20 66 72 61 6d 65 73 20 61 6e 64 20 74 68 65 20 61 63 63 6f 6d 70 61 6e 79 69 6e 67 20 70 72 6f | .frames.and.the.accompanying.pro |
| 51540 | 63 65 64 75 72 65 73 20 74 6f 20 62 65 20 75 73 65 64 20 62 79 20 62 72 69 64 67 65 73 20 61 6e | cedures.to.be.used.by.bridges.an |
| 51560 | 64 20 73 77 69 74 63 68 65 73 20 69 6e 20 68 61 6e 64 6c 69 6e 67 20 73 75 63 68 20 66 72 61 6d | d.switches.in.handling.such.fram |
| 51580 | 65 73 2e 20 54 68 65 20 73 74 61 6e 64 61 72 64 20 61 6c 73 6f 20 63 6f 6e 74 61 69 6e 73 20 70 | es..The.standard.also.contains.p |
| 515a0 | 72 6f 76 69 73 69 6f 6e 73 20 66 6f 72 20 61 20 71 75 61 6c 69 74 79 2d 6f 66 2d 73 65 72 76 69 | rovisions.for.a.quality-of-servi |
| 515c0 | 63 65 20 70 72 69 6f 72 69 74 69 7a 61 74 69 6f 6e 20 73 63 68 65 6d 65 20 63 6f 6d 6d 6f 6e 6c | ce.prioritization.scheme.commonl |
| 515e0 | 79 20 6b 6e 6f 77 6e 20 61 73 20 49 45 45 45 20 38 30 32 2e 31 70 20 61 6e 64 20 64 65 66 69 6e | y.known.as.IEEE.802.1p.and.defin |
| 51600 | 65 73 20 74 68 65 20 47 65 6e 65 72 69 63 20 41 74 74 72 69 62 75 74 65 20 52 65 67 69 73 74 72 | es.the.Generic.Attribute.Registr |
| 51620 | 61 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c 2e 00 49 45 54 46 20 70 75 62 6c 69 73 68 65 64 20 3a | ation.Protocol..IETF.published.: |
| 51640 | 72 66 63 3a 60 36 35 39 38 60 2c 20 64 65 74 61 69 6c 69 6e 67 20 61 20 73 68 61 72 65 64 20 61 | rfc:`6598`,.detailing.a.shared.a |
| 51660 | 64 64 72 65 73 73 20 73 70 61 63 65 20 66 6f 72 20 75 73 65 20 69 6e 20 49 53 50 20 43 47 4e 20 | ddress.space.for.use.in.ISP.CGN. |
| 51680 | 64 65 70 6c 6f 79 6d 65 6e 74 73 20 74 68 61 74 20 63 61 6e 20 68 61 6e 64 6c 65 20 74 68 65 20 | deployments.that.can.handle.the. |
| 516a0 | 73 61 6d 65 20 6e 65 74 77 6f 72 6b 20 70 72 65 66 69 78 65 73 20 6f 63 63 75 72 72 69 6e 67 20 | same.network.prefixes.occurring. |
| 516c0 | 62 6f 74 68 20 6f 6e 20 69 6e 62 6f 75 6e 64 20 61 6e 64 20 6f 75 74 62 6f 75 6e 64 20 69 6e 74 | both.on.inbound.and.outbound.int |
| 516e0 | 65 72 66 61 63 65 73 2e 20 41 52 49 4e 20 72 65 74 75 72 6e 65 64 20 61 64 64 72 65 73 73 20 73 | erfaces..ARIN.returned.address.s |
| 51700 | 70 61 63 65 20 74 6f 20 74 68 65 20 3a 61 62 62 72 3a 60 49 41 4e 41 20 28 49 6e 74 65 72 6e 65 | pace.to.the.:abbr:`IANA.(Interne |
| 51720 | 74 20 41 73 73 69 67 6e 65 64 20 4e 75 6d 62 65 72 73 20 41 75 74 68 6f 72 69 74 79 29 60 20 66 | t.Assigned.Numbers.Authority)`.f |
| 51740 | 6f 72 20 74 68 69 73 20 61 6c 6c 6f 63 61 74 69 6f 6e 2e 00 49 47 4d 50 20 2d 20 49 6e 74 65 72 | or.this.allocation..IGMP.-.Inter |
| 51760 | 6e 65 74 20 47 72 6f 75 70 20 4d 61 6e 61 67 65 6d 65 6e 74 20 50 72 6f 74 6f 63 6f 6c 29 00 49 | net.Group.Management.Protocol).I |
| 51780 | 47 4d 50 20 50 72 6f 78 79 00 49 4b 45 20 28 49 6e 74 65 72 6e 65 74 20 4b 65 79 20 45 78 63 68 | GMP.Proxy.IKE.(Internet.Key.Exch |
| 517a0 | 61 6e 67 65 29 20 41 74 74 72 69 62 75 74 65 73 00 49 4b 45 20 50 68 61 73 65 3a 00 49 4b 45 20 | ange).Attributes.IKE.Phase:.IKE. |
| 517c0 | 70 65 72 66 6f 72 6d 73 20 6d 75 74 75 61 6c 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 62 | performs.mutual.authentication.b |
| 517e0 | 65 74 77 65 65 6e 20 74 77 6f 20 70 61 72 74 69 65 73 20 61 6e 64 20 65 73 74 61 62 6c 69 73 68 | etween.two.parties.and.establish |
| 51800 | 65 73 20 61 6e 20 49 4b 45 20 73 65 63 75 72 69 74 79 20 61 73 73 6f 63 69 61 74 69 6f 6e 20 28 | es.an.IKE.security.association.( |
| 51820 | 53 41 29 20 74 68 61 74 20 69 6e 63 6c 75 64 65 73 20 73 68 61 72 65 64 20 73 65 63 72 65 74 20 | SA).that.includes.shared.secret. |
| 51840 | 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 68 61 74 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 | information.that.can.be.used.to. |
| 51860 | 65 66 66 69 63 69 65 6e 74 6c 79 20 65 73 74 61 62 6c 69 73 68 20 53 41 73 20 66 6f 72 20 45 6e | efficiently.establish.SAs.for.En |
| 51880 | 63 61 70 73 75 6c 61 74 69 6e 67 20 53 65 63 75 72 69 74 79 20 50 61 79 6c 6f 61 64 20 28 45 53 | capsulating.Security.Payload.(ES |
| 518a0 | 50 29 20 6f 72 20 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 48 65 61 64 65 72 20 28 41 48 29 | P).or.Authentication.Header.(AH) |
| 518c0 | 20 61 6e 64 20 61 20 73 65 74 20 6f 66 20 63 72 79 70 74 6f 67 72 61 70 68 69 63 20 61 6c 67 6f | .and.a.set.of.cryptographic.algo |
| 518e0 | 72 69 74 68 6d 73 20 74 6f 20 62 65 20 75 73 65 64 20 62 79 20 74 68 65 20 53 41 73 20 74 6f 20 | rithms.to.be.used.by.the.SAs.to. |
| 51900 | 70 72 6f 74 65 63 74 20 74 68 65 20 74 72 61 66 66 69 63 20 74 68 61 74 20 74 68 65 79 20 63 61 | protect.the.traffic.that.they.ca |
| 51920 | 72 72 79 2e 20 68 74 74 70 73 3a 2f 2f 64 61 74 61 74 72 61 63 6b 65 72 2e 69 65 74 66 2e 6f 72 | rry..https://datatracker.ietf.or |
| 51940 | 67 2f 64 6f 63 2f 68 74 6d 6c 2f 72 66 63 35 39 39 36 00 49 4b 45 76 31 00 49 4b 45 76 32 00 49 | g/doc/html/rfc5996.IKEv1.IKEv2.I |
| 51960 | 4b 45 76 32 20 49 50 53 65 63 20 72 6f 61 64 2d 77 61 72 72 69 6f 72 73 20 72 65 6d 6f 74 65 2d | KEv2.IPSec.road-warriors.remote- |
| 51980 | 61 63 63 65 73 73 20 56 50 4e 00 49 50 00 49 50 20 61 64 64 72 65 73 73 00 49 50 20 61 64 64 72 | access.VPN.IP.IP.address.IP.addr |
| 519a0 | 65 73 73 20 60 60 31 39 32 2e 31 36 38 2e 31 2e 31 30 30 60 60 20 73 68 61 6c 6c 20 62 65 20 73 | ess.``192.168.1.100``.shall.be.s |
| 519c0 | 74 61 74 69 63 61 6c 6c 79 20 6d 61 70 70 65 64 20 74 6f 20 63 6c 69 65 6e 74 20 6e 61 6d 65 64 | tatically.mapped.to.client.named |
| 519e0 | 20 60 60 63 6c 69 65 6e 74 31 60 60 00 49 50 20 61 64 64 72 65 73 73 20 60 60 31 39 32 2e 31 36 | .``client1``.IP.address.``192.16 |
| 51a00 | 38 2e 32 2e 31 2f 32 34 60 60 00 49 50 20 61 64 64 72 65 73 73 20 66 6f 72 20 44 48 43 50 20 73 | 8.2.1/24``.IP.address.for.DHCP.s |
| 51a20 | 65 72 76 65 72 20 69 64 65 6e 74 69 66 69 65 72 00 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 4e | erver.identifier.IP.address.of.N |
| 51a40 | 54 50 20 73 65 72 76 65 72 00 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 50 4f 50 33 20 73 65 72 | TP.server.IP.address.of.POP3.ser |
| 51a60 | 76 65 72 00 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 53 4d 54 50 20 73 65 72 76 65 72 00 49 50 | ver.IP.address.of.SMTP.server.IP |
| 51a80 | 20 61 64 64 72 65 73 73 20 6f 66 20 72 6f 75 74 65 20 74 6f 20 6d 61 74 63 68 2c 20 62 61 73 65 | .address.of.route.to.match,.base |
| 51aa0 | 64 20 6f 6e 20 61 63 63 65 73 73 2d 6c 69 73 74 2e 00 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 | d.on.access-list..IP.address.of. |
| 51ac0 | 72 6f 75 74 65 20 74 6f 20 6d 61 74 63 68 2c 20 62 61 73 65 64 20 6f 6e 20 70 72 65 66 69 78 2d | route.to.match,.based.on.prefix- |
| 51ae0 | 6c 69 73 74 2e 00 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 72 6f 75 74 65 20 74 6f 20 6d 61 74 | list..IP.address.of.route.to.mat |
| 51b00 | 63 68 2c 20 62 61 73 65 64 20 6f 6e 20 73 70 65 63 69 66 69 65 64 20 70 72 65 66 69 78 2d 6c 65 | ch,.based.on.specified.prefix-le |
| 51b20 | 6e 67 74 68 2e 20 4e 6f 74 65 20 74 68 61 74 20 74 68 69 73 20 63 61 6e 20 62 65 20 75 73 65 64 | ngth..Note.that.this.can.be.used |
| 51b40 | 20 66 6f 72 20 6b 65 72 6e 65 6c 20 72 6f 75 74 65 73 20 6f 6e 6c 79 2e 20 44 6f 20 6e 6f 74 20 | .for.kernel.routes.only..Do.not. |
| 51b60 | 61 70 70 6c 79 20 74 6f 20 74 68 65 20 72 6f 75 74 65 73 20 6f 66 20 64 79 6e 61 6d 69 63 20 72 | apply.to.the.routes.of.dynamic.r |
| 51b80 | 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 73 20 28 65 2e 67 2e 20 42 47 50 2c 20 52 49 50 2c | outing.protocols.(e.g..BGP,.RIP, |
| 51ba0 | 20 4f 53 46 50 29 2c 20 61 73 20 74 68 69 73 20 63 61 6e 20 6c 65 61 64 20 74 6f 20 75 6e 65 78 | .OSFP),.as.this.can.lead.to.unex |
| 51bc0 | 70 65 63 74 65 64 20 72 65 73 75 6c 74 73 2e 2e 00 49 50 20 61 64 64 72 65 73 73 20 74 6f 20 65 | pected.results...IP.address.to.e |
| 51be0 | 78 63 6c 75 64 65 20 66 72 6f 6d 20 44 48 43 50 20 6c 65 61 73 65 20 72 61 6e 67 65 00 49 50 20 | xclude.from.DHCP.lease.range.IP. |
| 51c00 | 61 64 64 72 65 73 73 65 73 20 6f 72 20 6e 65 74 77 6f 72 6b 73 20 66 6f 72 20 77 68 69 63 68 20 | addresses.or.networks.for.which. |
| 51c20 | 6c 6f 63 61 6c 20 63 6f 6e 6e 74 72 61 63 6b 20 65 6e 74 72 69 65 73 20 77 69 6c 6c 20 6e 6f 74 | local.conntrack.entries.will.not |
| 51c40 | 20 62 65 20 73 79 6e 63 65 64 00 49 50 20 6d 61 6e 61 67 65 6d 65 6e 74 20 61 64 64 72 65 73 73 | .be.synced.IP.management.address |
| 51c60 | 00 49 50 20 6d 61 73 71 75 65 72 61 64 69 6e 67 20 69 73 20 61 20 74 65 63 68 6e 69 71 75 65 20 | .IP.masquerading.is.a.technique. |
| 51c80 | 74 68 61 74 20 68 69 64 65 73 20 61 6e 20 65 6e 74 69 72 65 20 49 50 20 61 64 64 72 65 73 73 20 | that.hides.an.entire.IP.address. |
| 51ca0 | 73 70 61 63 65 2c 20 75 73 75 61 6c 6c 79 20 63 6f 6e 73 69 73 74 69 6e 67 20 6f 66 20 70 72 69 | space,.usually.consisting.of.pri |
| 51cc0 | 76 61 74 65 20 49 50 20 61 64 64 72 65 73 73 65 73 2c 20 62 65 68 69 6e 64 20 61 20 73 69 6e 67 | vate.IP.addresses,.behind.a.sing |
| 51ce0 | 6c 65 20 49 50 20 61 64 64 72 65 73 73 20 69 6e 20 61 6e 6f 74 68 65 72 2c 20 75 73 75 61 6c 6c | le.IP.address.in.another,.usuall |
| 51d00 | 79 20 70 75 62 6c 69 63 20 61 64 64 72 65 73 73 20 73 70 61 63 65 2e 20 54 68 65 20 68 69 64 64 | y.public.address.space..The.hidd |
| 51d20 | 65 6e 20 61 64 64 72 65 73 73 65 73 20 61 72 65 20 63 68 61 6e 67 65 64 20 69 6e 74 6f 20 61 20 | en.addresses.are.changed.into.a. |
| 51d40 | 73 69 6e 67 6c 65 20 28 70 75 62 6c 69 63 29 20 49 50 20 61 64 64 72 65 73 73 20 61 73 20 74 68 | single.(public).IP.address.as.th |
| 51d60 | 65 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 6f 75 74 67 6f 69 6e 67 | e.source.address.of.the.outgoing |
| 51d80 | 20 49 50 20 70 61 63 6b 65 74 73 20 73 6f 20 74 68 65 79 20 61 70 70 65 61 72 20 61 73 20 6f 72 | .IP.packets.so.they.appear.as.or |
| 51da0 | 69 67 69 6e 61 74 69 6e 67 20 6e 6f 74 20 66 72 6f 6d 20 74 68 65 20 68 69 64 64 65 6e 20 68 6f | iginating.not.from.the.hidden.ho |
| 51dc0 | 73 74 20 62 75 74 20 66 72 6f 6d 20 74 68 65 20 72 6f 75 74 69 6e 67 20 64 65 76 69 63 65 20 69 | st.but.from.the.routing.device.i |
| 51de0 | 74 73 65 6c 66 2e 20 42 65 63 61 75 73 65 20 6f 66 20 74 68 65 20 70 6f 70 75 6c 61 72 69 74 79 | tself..Because.of.the.popularity |
| 51e00 | 20 6f 66 20 74 68 69 73 20 74 65 63 68 6e 69 71 75 65 20 74 6f 20 63 6f 6e 73 65 72 76 65 20 49 | .of.this.technique.to.conserve.I |
| 51e20 | 50 76 34 20 61 64 64 72 65 73 73 20 73 70 61 63 65 2c 20 74 68 65 20 74 65 72 6d 20 4e 41 54 20 | Pv4.address.space,.the.term.NAT. |
| 51e40 | 68 61 73 20 62 65 63 6f 6d 65 20 76 69 72 74 75 61 6c 6c 79 20 73 79 6e 6f 6e 79 6d 6f 75 73 20 | has.become.virtually.synonymous. |
| 51e60 | 77 69 74 68 20 49 50 20 6d 61 73 71 75 65 72 61 64 69 6e 67 2e 00 49 50 20 6e 65 78 74 2d 68 6f | with.IP.masquerading..IP.next-ho |
| 51e80 | 70 20 6f 66 20 72 6f 75 74 65 20 74 6f 20 6d 61 74 63 68 2c 20 62 61 73 65 64 20 6f 6e 20 61 63 | p.of.route.to.match,.based.on.ac |
| 51ea0 | 63 65 73 73 2d 6c 69 73 74 2e 00 49 50 20 6e 65 78 74 2d 68 6f 70 20 6f 66 20 72 6f 75 74 65 20 | cess-list..IP.next-hop.of.route. |
| 51ec0 | 74 6f 20 6d 61 74 63 68 2c 20 62 61 73 65 64 20 6f 6e 20 69 70 20 61 64 64 72 65 73 73 2e 00 49 | to.match,.based.on.ip.address..I |
| 51ee0 | 50 20 6e 65 78 74 2d 68 6f 70 20 6f 66 20 72 6f 75 74 65 20 74 6f 20 6d 61 74 63 68 2c 20 62 61 | P.next-hop.of.route.to.match,.ba |
| 51f00 | 73 65 64 20 6f 6e 20 70 72 65 66 69 78 20 6c 65 6e 67 74 68 2e 00 49 50 20 6e 65 78 74 2d 68 6f | sed.on.prefix.length..IP.next-ho |
| 51f20 | 70 20 6f 66 20 72 6f 75 74 65 20 74 6f 20 6d 61 74 63 68 2c 20 62 61 73 65 64 20 6f 6e 20 70 72 | p.of.route.to.match,.based.on.pr |
| 51f40 | 65 66 69 78 2d 6c 69 73 74 2e 00 49 50 20 6e 65 78 74 2d 68 6f 70 20 6f 66 20 72 6f 75 74 65 20 | efix-list..IP.next-hop.of.route. |
| 51f60 | 74 6f 20 6d 61 74 63 68 2c 20 62 61 73 65 64 20 6f 6e 20 74 79 70 65 2e 00 49 50 20 70 72 65 63 | to.match,.based.on.type..IP.prec |
| 51f80 | 65 64 65 6e 63 65 20 61 73 20 64 65 66 69 6e 65 64 20 69 6e 20 3a 72 66 63 3a 60 37 39 31 60 3a | edence.as.defined.in.:rfc:`791`: |
| 51fa0 | 00 49 50 20 70 72 6f 74 6f 63 6f 6c 20 6e 75 6d 62 65 72 20 35 30 20 28 45 53 50 29 00 49 50 20 | .IP.protocol.number.50.(ESP).IP. |
| 51fc0 | 72 6f 75 74 65 20 73 6f 75 72 63 65 20 6f 66 20 72 6f 75 74 65 20 74 6f 20 6d 61 74 63 68 2c 20 | route.source.of.route.to.match,. |
| 51fe0 | 62 61 73 65 64 20 6f 6e 20 61 63 63 65 73 73 2d 6c 69 73 74 2e 00 49 50 20 72 6f 75 74 65 20 73 | based.on.access-list..IP.route.s |
| 52000 | 6f 75 72 63 65 20 6f 66 20 72 6f 75 74 65 20 74 6f 20 6d 61 74 63 68 2c 20 62 61 73 65 64 20 6f | ource.of.route.to.match,.based.o |
| 52020 | 6e 20 70 72 65 66 69 78 2d 6c 69 73 74 2e 00 49 50 36 49 50 36 00 49 50 49 50 00 49 50 49 50 36 | n.prefix-list..IP6IP6.IPIP.IPIP6 |
| 52040 | 00 49 50 53 65 63 20 49 4b 45 20 61 6e 64 20 45 53 50 00 49 50 53 65 63 20 49 4b 45 20 61 6e 64 | .IPSec.IKE.and.ESP.IPSec.IKE.and |
| 52060 | 20 45 53 50 20 47 72 6f 75 70 73 3b 00 49 50 53 65 63 20 49 4b 45 76 32 20 52 65 6d 6f 74 65 20 | .ESP.Groups;.IPSec.IKEv2.Remote. |
| 52080 | 41 63 63 65 73 73 20 56 50 4e 00 49 50 53 65 63 20 49 4b 45 76 32 20 73 69 74 65 32 73 69 74 65 | Access.VPN.IPSec.IKEv2.site2site |
| 520a0 | 20 56 50 4e 00 49 50 53 65 63 20 49 4b 45 76 32 20 73 69 74 65 32 73 69 74 65 20 56 50 4e 20 28 | .VPN.IPSec.IKEv2.site2site.VPN.( |
| 520c0 | 73 6f 75 72 63 65 20 2e 2f 64 72 61 77 2e 69 6f 2f 76 70 6e 5f 73 32 73 5f 69 6b 65 76 32 2e 64 | source../draw.io/vpn_s2s_ikev2.d |
| 520e0 | 72 61 77 69 6f 29 00 49 50 53 65 63 20 56 50 4e 20 54 75 6e 6e 65 6c 73 00 49 50 53 65 63 20 56 | rawio).IPSec.VPN.Tunnels.IPSec.V |
| 52100 | 50 4e 20 74 75 6e 6e 65 6c 73 2e 00 49 50 53 65 63 3a 00 49 50 6f 45 20 53 65 72 76 65 72 00 49 | PN.tunnels..IPSec:.IPoE.Server.I |
| 52120 | 50 6f 45 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 20 6f 6e 20 64 69 66 66 65 72 65 6e | PoE.can.be.configure.on.differen |
| 52140 | 74 20 69 6e 74 65 72 66 61 63 65 73 2c 20 69 74 20 77 69 6c 6c 20 64 65 70 65 6e 64 20 6f 6e 20 | t.interfaces,.it.will.depend.on. |
| 52160 | 65 61 63 68 20 73 70 65 63 69 66 69 63 20 73 69 74 75 61 74 69 6f 6e 20 77 68 69 63 68 20 69 6e | each.specific.situation.which.in |
| 52180 | 74 65 72 66 61 63 65 20 77 69 6c 6c 20 70 72 6f 76 69 64 65 20 49 50 6f 45 20 74 6f 20 63 6c 69 | terface.will.provide.IPoE.to.cli |
| 521a0 | 65 6e 74 73 2e 20 54 68 65 20 63 6c 69 65 6e 74 73 20 6d 61 63 20 61 64 64 72 65 73 73 20 61 6e | ents..The.clients.mac.address.an |
| 521c0 | 64 20 74 68 65 20 69 6e 63 6f 6d 69 6e 67 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 62 65 69 6e | d.the.incoming.interface.is.bein |
| 521e0 | 67 20 75 73 65 64 20 61 73 20 63 6f 6e 74 72 6f 6c 20 70 61 72 61 6d 65 74 65 72 2c 20 74 6f 20 | g.used.as.control.parameter,.to. |
| 52200 | 61 75 74 68 65 6e 74 69 63 61 74 65 20 61 20 63 6c 69 65 6e 74 2e 00 49 50 6f 45 20 63 61 6e 20 | authenticate.a.client..IPoE.can. |
| 52220 | 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 64 69 66 66 65 72 65 6e 74 20 69 6e 74 65 72 | be.configured.on.different.inter |
| 52240 | 66 61 63 65 73 2c 20 69 74 20 77 69 6c 6c 20 64 65 70 65 6e 64 20 6f 6e 20 65 61 63 68 20 73 70 | faces,.it.will.depend.on.each.sp |
| 52260 | 65 63 69 66 69 63 20 73 69 74 75 61 74 69 6f 6e 20 77 68 69 63 68 20 69 6e 74 65 72 66 61 63 65 | ecific.situation.which.interface |
| 52280 | 20 77 69 6c 6c 20 70 72 6f 76 69 64 65 20 49 50 6f 45 20 74 6f 20 63 6c 69 65 6e 74 73 2e 20 54 | .will.provide.IPoE.to.clients..T |
| 522a0 | 68 65 20 63 6c 69 65 6e 74 27 73 20 6d 61 63 20 61 64 64 72 65 73 73 20 61 6e 64 20 74 68 65 20 | he.client's.mac.address.and.the. |
| 522c0 | 69 6e 63 6f 6d 69 6e 67 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 62 65 69 6e 67 20 75 73 65 64 | incoming.interface.is.being.used |
| 522e0 | 20 61 73 20 63 6f 6e 74 72 6f 6c 20 70 61 72 61 6d 65 74 65 72 2c 20 74 6f 20 61 75 74 68 65 6e | .as.control.parameter,.to.authen |
| 52300 | 74 69 63 61 74 65 20 61 20 63 6c 69 65 6e 74 2e 00 49 50 6f 45 20 69 73 20 61 20 6d 65 74 68 6f | ticate.a.client..IPoE.is.a.metho |
| 52320 | 64 20 6f 66 20 64 65 6c 69 76 65 72 69 6e 67 20 61 6e 20 49 50 20 70 61 79 6c 6f 61 64 20 6f 76 | d.of.delivering.an.IP.payload.ov |
| 52340 | 65 72 20 61 6e 20 45 74 68 65 72 6e 65 74 2d 62 61 73 65 64 20 61 63 63 65 73 73 20 6e 65 74 77 | er.an.Ethernet-based.access.netw |
| 52360 | 6f 72 6b 20 6f 72 20 61 6e 20 61 63 63 65 73 73 20 6e 65 74 77 6f 72 6b 20 75 73 69 6e 67 20 62 | ork.or.an.access.network.using.b |
| 52380 | 72 69 64 67 65 64 20 45 74 68 65 72 6e 65 74 20 6f 76 65 72 20 41 73 79 6e 63 68 72 6f 6e 6f 75 | ridged.Ethernet.over.Asynchronou |
| 523a0 | 73 20 54 72 61 6e 73 66 65 72 20 4d 6f 64 65 20 28 41 54 4d 29 20 77 69 74 68 6f 75 74 20 75 73 | s.Transfer.Mode.(ATM).without.us |
| 523c0 | 69 6e 67 20 50 50 50 6f 45 2e 20 49 74 20 64 69 72 65 63 74 6c 79 20 65 6e 63 61 70 73 75 6c 61 | ing.PPPoE..It.directly.encapsula |
| 523e0 | 74 65 73 20 74 68 65 20 49 50 20 64 61 74 61 67 72 61 6d 73 20 69 6e 20 45 74 68 65 72 6e 65 74 | tes.the.IP.datagrams.in.Ethernet |
| 52400 | 20 66 72 61 6d 65 73 2c 20 75 73 69 6e 67 20 74 68 65 20 73 74 61 6e 64 61 72 64 20 3a 72 66 63 | .frames,.using.the.standard.:rfc |
| 52420 | 3a 60 38 39 34 60 20 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e 2e 00 49 50 6f 45 20 73 65 72 76 65 | :`894`.encapsulation..IPoE.serve |
| 52440 | 72 20 77 69 6c 6c 20 6c 69 73 74 65 6e 20 6f 6e 20 69 6e 74 65 72 66 61 63 65 73 20 65 74 68 31 | r.will.listen.on.interfaces.eth1 |
| 52460 | 2e 35 30 20 61 6e 64 20 65 74 68 31 2e 35 31 00 49 50 73 65 63 00 49 50 73 65 63 20 70 6f 6c 69 | .50.and.eth1.51.IPsec.IPsec.poli |
| 52480 | 63 79 20 6d 61 74 63 68 69 6e 67 20 47 52 45 00 49 50 76 34 00 49 50 76 34 20 46 69 72 65 77 61 | cy.matching.GRE.IPv4.IPv4.Firewa |
| 524a0 | 6c 6c 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 49 50 76 34 20 61 64 64 72 65 73 73 20 6f 66 | ll.Configuration.IPv4.address.of |
| 524c0 | 20 6e 65 78 74 20 62 6f 6f 74 73 74 72 61 70 20 73 65 72 76 65 72 00 49 50 76 34 20 61 64 64 72 | .next.bootstrap.server.IPv4.addr |
| 524e0 | 65 73 73 20 6f 66 20 72 6f 75 74 65 72 20 6f 6e 20 74 68 65 20 63 6c 69 65 6e 74 27 73 20 73 75 | ess.of.router.on.the.client's.su |
| 52500 | 62 6e 65 74 00 49 50 76 34 20 6f 72 20 49 50 76 36 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 | bnet.IPv4.or.IPv6.source.address |
| 52520 | 20 6f 66 20 4e 65 74 46 6c 6f 77 20 70 61 63 6b 65 74 73 00 49 50 76 34 20 70 65 65 72 69 6e 67 | .of.NetFlow.packets.IPv4.peering |
| 52540 | 00 49 50 76 34 20 72 65 6c 61 79 00 49 50 76 34 20 72 6f 75 74 65 20 61 6e 64 20 49 50 76 36 20 | .IPv4.relay.IPv4.route.and.IPv6. |
| 52560 | 72 6f 75 74 65 20 70 6f 6c 69 63 69 65 73 20 61 72 65 20 64 65 66 69 6e 65 64 20 69 6e 20 74 68 | route.policies.are.defined.in.th |
| 52580 | 69 73 20 73 65 63 74 69 6f 6e 2e 20 54 68 65 73 65 20 72 6f 75 74 65 20 70 6f 6c 69 63 69 65 73 | is.section..These.route.policies |
| 525a0 | 20 63 61 6e 20 74 68 65 6e 20 62 65 20 61 73 73 6f 63 69 61 74 65 64 20 74 6f 20 69 6e 74 65 72 | .can.then.be.associated.to.inter |
| 525c0 | 66 61 63 65 73 2e 00 49 50 76 34 20 72 6f 75 74 65 20 73 6f 75 72 63 65 3a 20 62 67 70 2c 20 63 | faces..IPv4.route.source:.bgp,.c |
| 525e0 | 6f 6e 6e 65 63 74 65 64 2c 20 65 69 67 72 70 2c 20 69 73 69 73 2c 20 6b 65 72 6e 65 6c 2c 20 6e | onnected,.eigrp,.isis,.kernel,.n |
| 52600 | 68 72 70 2c 20 6f 73 70 66 2c 20 72 69 70 2c 20 73 74 61 74 69 63 2e 00 49 50 76 34 20 73 65 72 | hrp,.ospf,.rip,.static..IPv4.ser |
| 52620 | 76 65 72 00 49 50 76 34 2f 49 50 76 36 20 72 65 6d 6f 74 65 20 61 64 64 72 65 73 73 20 6f 66 20 | ver.IPv4/IPv6.remote.address.of. |
| 52640 | 74 68 65 20 56 58 4c 41 4e 20 74 75 6e 6e 65 6c 2e 20 41 6c 74 65 72 6e 61 74 69 76 65 20 74 6f | the.VXLAN.tunnel..Alternative.to |
| 52660 | 20 6d 75 6c 74 69 63 61 73 74 2c 20 74 68 65 20 72 65 6d 6f 74 65 20 49 50 76 34 2f 49 50 76 36 | .multicast,.the.remote.IPv4/IPv6 |
| 52680 | 20 61 64 64 72 65 73 73 20 63 61 6e 20 73 65 74 20 64 69 72 65 63 74 6c 79 2e 00 49 50 76 34 2f | .address.can.set.directly..IPv4/ |
| 526a0 | 49 50 76 36 20 72 65 6d 6f 74 65 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 56 58 4c 41 4e | IPv6.remote.address.of.the.VXLAN |
| 526c0 | 20 74 75 6e 6e 65 6c 2e 20 41 6e 20 61 6c 74 65 72 6e 61 74 69 76 65 20 74 6f 20 6d 75 6c 74 69 | .tunnel..An.alternative.to.multi |
| 526e0 | 63 61 73 74 2c 20 74 68 65 20 72 65 6d 6f 74 65 20 49 50 76 34 2f 49 50 76 36 20 61 64 64 72 65 | cast,.the.remote.IPv4/IPv6.addre |
| 52700 | 73 73 20 63 61 6e 20 62 65 20 73 65 74 20 64 69 72 65 63 74 6c 79 2e 00 49 50 76 36 00 49 50 76 | ss.can.be.set.directly..IPv6.IPv |
| 52720 | 36 20 41 63 63 65 73 73 20 4c 69 73 74 00 49 50 76 36 20 41 64 76 61 6e 63 65 64 20 4f 70 74 69 | 6.Access.List.IPv6.Advanced.Opti |
| 52740 | 6f 6e 73 00 49 50 76 36 20 44 48 43 50 76 36 2d 50 44 20 45 78 61 6d 70 6c 65 00 49 50 76 36 20 | ons.IPv6.DHCPv6-PD.Example.IPv6. |
| 52760 | 44 4e 53 20 61 64 64 72 65 73 73 65 73 20 61 72 65 20 6f 70 74 69 6f 6e 61 6c 2e 00 49 50 76 36 | DNS.addresses.are.optional..IPv6 |
| 52780 | 20 46 69 72 65 77 61 6c 6c 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 49 50 76 36 20 4d 75 6c | .Firewall.Configuration.IPv6.Mul |
| 527a0 | 74 69 63 61 73 74 00 49 50 76 36 20 50 72 65 66 69 78 20 44 65 6c 65 67 61 74 69 6f 6e 00 49 50 | ticast.IPv6.Prefix.Delegation.IP |
| 527c0 | 76 36 20 50 72 65 66 69 78 20 4c 69 73 74 73 00 49 50 76 36 20 53 4c 41 41 43 20 61 6e 64 20 49 | v6.Prefix.Lists.IPv6.SLAAC.and.I |
| 527e0 | 41 2d 50 44 00 49 50 76 36 20 54 43 50 20 66 69 6c 74 65 72 73 20 77 69 6c 6c 20 6f 6e 6c 79 20 | A-PD.IPv6.TCP.filters.will.only. |
| 52800 | 6d 61 74 63 68 20 49 50 76 36 20 70 61 63 6b 65 74 73 20 77 69 74 68 20 6e 6f 20 68 65 61 64 65 | match.IPv6.packets.with.no.heade |
| 52820 | 72 20 65 78 74 65 6e 73 69 6f 6e 2c 20 73 65 65 20 68 74 74 70 73 3a 2f 2f 65 6e 2e 77 69 6b 69 | r.extension,.see.https://en.wiki |
| 52840 | 70 65 64 69 61 2e 6f 72 67 2f 77 69 6b 69 2f 49 50 76 36 5f 70 61 63 6b 65 74 23 45 78 74 65 6e | pedia.org/wiki/IPv6_packet#Exten |
| 52860 | 73 69 6f 6e 5f 68 65 61 64 65 72 73 00 49 50 76 36 20 61 64 64 72 65 73 73 20 60 60 32 30 30 31 | sion_headers.IPv6.address.``2001 |
| 52880 | 3a 64 62 38 3a 3a 31 30 31 60 60 20 73 68 61 6c 6c 20 62 65 20 73 74 61 74 69 63 61 6c 6c 79 20 | :db8::101``.shall.be.statically. |
| 528a0 | 6d 61 70 70 65 64 00 49 50 76 36 20 61 64 64 72 65 73 73 20 6f 66 20 72 6f 75 74 65 20 74 6f 20 | mapped.IPv6.address.of.route.to. |
| 528c0 | 6d 61 74 63 68 2c 20 62 61 73 65 64 20 6f 6e 20 49 50 76 36 20 61 63 63 65 73 73 2d 6c 69 73 74 | match,.based.on.IPv6.access-list |
| 528e0 | 2e 00 49 50 76 36 20 61 64 64 72 65 73 73 20 6f 66 20 72 6f 75 74 65 20 74 6f 20 6d 61 74 63 68 | ..IPv6.address.of.route.to.match |
| 52900 | 2c 20 62 61 73 65 64 20 6f 6e 20 49 50 76 36 20 70 72 65 66 69 78 2d 6c 69 73 74 2e 00 49 50 76 | ,.based.on.IPv6.prefix-list..IPv |
| 52920 | 36 20 61 64 64 72 65 73 73 20 6f 66 20 72 6f 75 74 65 20 74 6f 20 6d 61 74 63 68 2c 20 62 61 73 | 6.address.of.route.to.match,.bas |
| 52940 | 65 64 20 6f 6e 20 73 70 65 63 69 66 69 65 64 20 70 72 65 66 69 78 2d 6c 65 6e 67 74 68 2e 20 4e | ed.on.specified.prefix-length..N |
| 52960 | 6f 74 65 20 74 68 61 74 20 74 68 69 73 20 63 61 6e 20 62 65 20 75 73 65 64 20 66 6f 72 20 6b 65 | ote.that.this.can.be.used.for.ke |
| 52980 | 72 6e 65 6c 20 72 6f 75 74 65 73 20 6f 6e 6c 79 2e 20 44 6f 20 6e 6f 74 20 61 70 70 6c 79 20 74 | rnel.routes.only..Do.not.apply.t |
| 529a0 | 6f 20 74 68 65 20 72 6f 75 74 65 73 20 6f 66 20 64 79 6e 61 6d 69 63 20 72 6f 75 74 69 6e 67 20 | o.the.routes.of.dynamic.routing. |
| 529c0 | 70 72 6f 74 6f 63 6f 6c 73 20 28 65 2e 67 2e 20 42 47 50 2c 20 52 49 50 2c 20 4f 53 46 50 29 2c | protocols.(e.g..BGP,.RIP,.OSFP), |
| 529e0 | 20 61 73 20 74 68 69 73 20 63 61 6e 20 6c 65 61 64 20 74 6f 20 75 6e 65 78 70 65 63 74 65 64 20 | .as.this.can.lead.to.unexpected. |
| 52a00 | 72 65 73 75 6c 74 73 2e 2e 00 49 50 76 36 20 63 6c 69 65 6e 74 27 73 20 70 72 65 66 69 78 00 49 | results...IPv6.client's.prefix.I |
| 52a20 | 50 76 36 20 63 6c 69 65 6e 74 27 73 20 70 72 65 66 69 78 20 61 73 73 69 67 6e 6d 65 6e 74 00 49 | Pv6.client's.prefix.assignment.I |
| 52a40 | 50 76 36 20 64 65 66 61 75 6c 74 20 63 6c 69 65 6e 74 27 73 20 70 6f 6f 6c 20 61 73 73 69 67 6e | Pv6.default.client's.pool.assign |
| 52a60 | 6d 65 6e 74 00 49 50 76 36 20 70 65 65 72 69 6e 67 00 49 50 76 36 20 70 72 65 66 69 78 20 60 60 | ment.IPv6.peering.IPv6.prefix.`` |
| 52a80 | 32 30 30 31 3a 64 62 38 3a 30 3a 31 30 31 3a 3a 2f 36 34 60 60 20 73 68 61 6c 6c 20 62 65 20 73 | 2001:db8:0:101::/64``.shall.be.s |
| 52aa0 | 74 61 74 69 63 61 6c 6c 79 20 6d 61 70 70 65 64 00 49 50 76 36 20 70 72 65 66 69 78 2e 00 49 50 | tatically.mapped.IPv6.prefix..IP |
| 52ac0 | 76 36 20 72 65 6c 61 79 00 49 50 76 36 20 72 6f 75 74 65 20 73 6f 75 72 63 65 3a 20 62 67 70 2c | v6.relay.IPv6.route.source:.bgp, |
| 52ae0 | 20 63 6f 6e 6e 65 63 74 65 64 2c 20 65 69 67 72 70 2c 20 69 73 69 73 2c 20 6b 65 72 6e 65 6c 2c | .connected,.eigrp,.isis,.kernel, |
| 52b00 | 20 6e 68 72 70 2c 20 6f 73 70 66 76 33 2c 20 72 69 70 6e 67 2c 20 73 74 61 74 69 63 2e 00 49 50 | .nhrp,.ospfv3,.ripng,.static..IP |
| 52b20 | 76 36 20 73 65 72 76 65 72 00 49 50 76 36 20 73 75 70 70 6f 72 74 00 49 53 2d 49 53 00 49 53 2d | v6.server.IPv6.support.IS-IS.IS- |
| 52b40 | 49 53 20 47 6c 6f 62 61 6c 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 49 53 2d 49 53 20 53 52 | IS.Global.Configuration.IS-IS.SR |
| 52b60 | 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 49 53 43 2d 44 48 43 50 20 4f 70 74 69 6f 6e 20 6e | .Configuration.ISC-DHCP.Option.n |
| 52b80 | 61 6d 65 00 49 64 65 6e 74 69 74 79 20 42 61 73 65 64 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e | ame.Identity.Based.Configuration |
| 52ba0 | 00 49 66 20 2a 2a 6d 61 78 2d 74 68 72 65 73 68 6f 6c 64 2a 2a 20 69 73 20 73 65 74 20 62 75 74 | .If.**max-threshold**.is.set.but |
| 52bc0 | 20 2a 2a 6d 69 6e 2d 74 68 72 65 73 68 6f 6c 64 20 69 73 20 6e 6f 74 2c 20 74 68 65 6e 20 2a 2a | .**min-threshold.is.not,.then.** |
| 52be0 | 6d 69 6e 2d 74 68 72 65 73 68 6f 6c 64 2a 2a 20 69 73 20 73 63 61 6c 65 64 20 74 6f 20 35 30 25 | min-threshold**.is.scaled.to.50% |
| 52c00 | 20 6f 66 20 2a 2a 6d 61 78 2d 74 68 72 65 73 68 6f 6c 64 2a 2a 2e 00 49 66 20 3a 63 66 67 63 6d | .of.**max-threshold**..If.:cfgcm |
| 52c20 | 64 3a 60 73 74 72 69 63 74 60 20 69 73 20 73 65 74 20 74 68 65 20 42 47 50 20 73 65 73 73 69 6f | d:`strict`.is.set.the.BGP.sessio |
| 52c40 | 6e 20 77 6f 6e e2 80 99 74 20 62 65 63 6f 6d 65 20 65 73 74 61 62 6c 69 73 68 65 64 20 75 6e 74 | n.won...t.become.established.unt |
| 52c60 | 69 6c 20 74 68 65 20 42 47 50 20 6e 65 69 67 68 62 6f 72 20 73 65 74 73 20 6c 6f 63 61 6c 20 52 | il.the.BGP.neighbor.sets.local.R |
| 52c80 | 6f 6c 65 20 6f 6e 20 69 74 73 20 73 69 64 65 2e 20 54 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 | ole.on.its.side..This.configurat |
| 52ca0 | 69 6f 6e 20 70 61 72 61 6d 65 74 65 72 20 69 73 20 64 65 66 69 6e 65 64 20 69 6e 20 52 46 43 20 | ion.parameter.is.defined.in.RFC. |
| 52cc0 | 3a 72 66 63 3a 60 39 32 33 34 60 20 61 6e 64 20 69 73 20 75 73 65 64 20 74 6f 20 65 6e 66 6f 72 | :rfc:`9234`.and.is.used.to.enfor |
| 52ce0 | 63 65 20 74 68 65 20 63 6f 72 72 65 73 70 6f 6e 64 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 | ce.the.corresponding.configurati |
| 52d00 | 6f 6e 20 61 74 20 79 6f 75 72 20 63 6f 75 6e 74 65 72 2d 70 61 72 74 73 20 73 69 64 65 2e 00 49 | on.at.your.counter-parts.side..I |
| 52d20 | 66 20 41 52 50 20 6d 6f 6e 69 74 6f 72 69 6e 67 20 69 73 20 75 73 65 64 20 69 6e 20 61 6e 20 65 | f.ARP.monitoring.is.used.in.an.e |
| 52d40 | 74 68 65 72 63 68 61 6e 6e 65 6c 20 63 6f 6d 70 61 74 69 62 6c 65 20 6d 6f 64 65 20 28 6d 6f 64 | therchannel.compatible.mode.(mod |
| 52d60 | 65 73 20 72 6f 75 6e 64 2d 72 6f 62 69 6e 20 61 6e 64 20 78 6f 72 2d 68 61 73 68 29 2c 20 74 68 | es.round-robin.and.xor-hash),.th |
| 52d80 | 65 20 73 77 69 74 63 68 20 73 68 6f 75 6c 64 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 69 6e | e.switch.should.be.configured.in |
| 52da0 | 20 61 20 6d 6f 64 65 20 74 68 61 74 20 65 76 65 6e 6c 79 20 64 69 73 74 72 69 62 75 74 65 73 20 | .a.mode.that.evenly.distributes. |
| 52dc0 | 70 61 63 6b 65 74 73 20 61 63 72 6f 73 73 20 61 6c 6c 20 6c 69 6e 6b 73 2e 20 49 66 20 74 68 65 | packets.across.all.links..If.the |
| 52de0 | 20 73 77 69 74 63 68 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 20 74 6f 20 64 69 73 74 72 69 62 | .switch.is.configured.to.distrib |
| 52e00 | 75 74 65 20 74 68 65 20 70 61 63 6b 65 74 73 20 69 6e 20 61 6e 20 58 4f 52 20 66 61 73 68 69 6f | ute.the.packets.in.an.XOR.fashio |
| 52e20 | 6e 2c 20 61 6c 6c 20 72 65 70 6c 69 65 73 20 66 72 6f 6d 20 74 68 65 20 41 52 50 20 74 61 72 67 | n,.all.replies.from.the.ARP.targ |
| 52e40 | 65 74 73 20 77 69 6c 6c 20 62 65 20 72 65 63 65 69 76 65 64 20 6f 6e 20 74 68 65 20 73 61 6d 65 | ets.will.be.received.on.the.same |
| 52e60 | 20 6c 69 6e 6b 20 77 68 69 63 68 20 63 6f 75 6c 64 20 63 61 75 73 65 20 74 68 65 20 6f 74 68 65 | .link.which.could.cause.the.othe |
| 52e80 | 72 20 74 65 61 6d 20 6d 65 6d 62 65 72 73 20 74 6f 20 66 61 69 6c 2e 00 49 66 20 43 41 20 69 73 | r.team.members.to.fail..If.CA.is |
| 52ea0 | 20 70 72 65 73 65 6e 74 2c 20 74 68 69 73 20 63 65 72 74 69 66 69 63 61 74 65 20 77 69 6c 6c 20 | .present,.this.certificate.will. |
| 52ec0 | 62 65 20 69 6e 63 6c 75 64 65 64 20 69 6e 20 67 65 6e 65 72 61 74 65 64 20 43 52 4c 73 00 49 66 | be.included.in.generated.CRLs.If |
| 52ee0 | 20 43 4c 49 20 6f 70 74 69 6f 6e 20 69 73 20 6e 6f 74 20 73 70 65 63 69 66 69 65 64 2c 20 74 68 | .CLI.option.is.not.specified,.th |
| 52f00 | 69 73 20 66 65 61 74 75 72 65 20 69 73 20 64 69 73 61 62 6c 65 64 2e 00 49 66 20 50 49 4d 20 68 | is.feature.is.disabled..If.PIM.h |
| 52f20 | 61 73 20 74 68 65 20 61 20 63 68 6f 69 63 65 20 6f 66 20 45 43 4d 50 20 6e 65 78 74 68 6f 70 73 | as.the.a.choice.of.ECMP.nexthops |
| 52f40 | 20 66 6f 72 20 61 20 70 61 72 74 69 63 75 6c 61 72 20 3a 61 62 62 72 3a 60 52 50 46 20 28 52 65 | .for.a.particular.:abbr:`RPF.(Re |
| 52f60 | 76 65 72 73 65 20 50 61 74 68 20 46 6f 72 77 61 72 64 69 6e 67 29 60 2c 20 50 49 4d 20 77 69 6c | verse.Path.Forwarding)`,.PIM.wil |
| 52f80 | 6c 20 63 61 75 73 65 20 53 2c 47 20 66 6c 6f 77 73 20 74 6f 20 62 65 20 73 70 72 65 61 64 20 6f | l.cause.S,G.flows.to.be.spread.o |
| 52fa0 | 75 74 20 61 6d 6f 6e 67 73 74 20 74 68 65 20 6e 65 78 74 68 6f 70 73 2e 20 49 66 20 74 68 69 73 | ut.amongst.the.nexthops..If.this |
| 52fc0 | 20 63 6f 6d 6d 61 6e 64 20 69 73 20 6e 6f 74 20 73 70 65 63 69 66 69 65 64 20 74 68 65 6e 20 74 | .command.is.not.specified.then.t |
| 52fe0 | 68 65 20 66 69 72 73 74 20 6e 65 78 74 68 6f 70 20 66 6f 75 6e 64 20 77 69 6c 6c 20 62 65 20 75 | he.first.nexthop.found.will.be.u |
| 53000 | 73 65 64 2e 00 49 66 20 50 49 4d 20 69 73 20 75 73 69 6e 67 20 45 43 4d 50 20 61 6e 64 20 61 6e | sed..If.PIM.is.using.ECMP.and.an |
| 53020 | 20 69 6e 74 65 72 66 61 63 65 20 67 6f 65 73 20 64 6f 77 6e 2c 20 63 61 75 73 65 20 50 49 4d 20 | .interface.goes.down,.cause.PIM. |
| 53040 | 74 6f 20 72 65 62 61 6c 61 6e 63 65 20 61 6c 6c 20 53 2c 47 20 66 6c 6f 77 73 20 61 63 72 6f 73 | to.rebalance.all.S,G.flows.acros |
| 53060 | 73 20 74 68 65 20 72 65 6d 61 69 6e 69 6e 67 20 6e 65 78 74 68 6f 70 73 2e 20 49 66 20 74 68 69 | s.the.remaining.nexthops..If.thi |
| 53080 | 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 6e 6f 74 20 63 6f 6e 66 69 67 75 72 65 64 20 50 49 4d 20 | s.command.is.not.configured.PIM. |
| 530a0 | 6f 6e 6c 79 20 6d 6f 64 69 66 69 65 73 20 74 68 6f 73 65 20 53 2c 47 20 66 6c 6f 77 73 20 74 68 | only.modifies.those.S,G.flows.th |
| 530c0 | 61 74 20 77 65 72 65 20 75 73 69 6e 67 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 74 68 61 74 | at.were.using.the.interface.that |
| 530e0 | 20 77 65 6e 74 20 64 6f 77 6e 2e 00 49 66 20 60 60 61 6c 69 61 73 60 60 20 69 73 20 73 65 74 2c | .went.down..If.``alias``.is.set, |
| 53100 | 20 69 74 20 63 61 6e 20 62 65 20 75 73 65 64 20 69 6e 73 74 65 61 64 20 6f 66 20 74 68 65 20 64 | .it.can.be.used.instead.of.the.d |
| 53120 | 65 76 69 63 65 20 77 68 65 6e 20 63 6f 6e 6e 65 63 74 69 6e 67 2e 00 49 66 20 60 60 61 6c 6c 60 | evice.when.connecting..If.``all` |
| 53140 | 60 20 69 73 20 73 70 65 63 69 66 69 65 64 2c 20 72 65 6d 6f 76 65 20 61 6c 6c 20 41 53 20 6e 75 | `.is.specified,.remove.all.AS.nu |
| 53160 | 6d 62 65 72 73 20 66 72 6f 6d 20 74 68 65 20 41 53 5f 50 41 54 48 20 6f 66 20 74 68 65 20 42 47 | mbers.from.the.AS_PATH.of.the.BG |
| 53180 | 50 20 70 61 74 68 27 73 20 4e 4c 52 49 2e 00 49 66 20 61 20 6c 6f 63 61 6c 20 66 69 72 65 77 61 | P.path's.NLRI..If.a.local.firewa |
| 531a0 | 6c 6c 20 70 6f 6c 69 63 79 20 69 73 20 69 6e 20 70 6c 61 63 65 20 6f 6e 20 79 6f 75 72 20 65 78 | ll.policy.is.in.place.on.your.ex |
| 531c0 | 74 65 72 6e 61 6c 20 69 6e 74 65 72 66 61 63 65 20 79 6f 75 20 77 69 6c 6c 20 6e 65 65 64 20 74 | ternal.interface.you.will.need.t |
| 531e0 | 6f 20 61 6c 6c 6f 77 20 74 68 65 20 70 6f 72 74 73 20 62 65 6c 6f 77 3a 00 49 66 20 61 20 72 65 | o.allow.the.ports.below:.If.a.re |
| 53200 | 67 69 73 74 72 79 20 69 73 20 6e 6f 74 20 73 70 65 63 69 66 69 65 64 2c 20 44 6f 63 6b 65 72 2e | gistry.is.not.specified,.Docker. |
| 53220 | 69 6f 20 77 69 6c 6c 20 62 65 20 75 73 65 64 20 61 73 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 | io.will.be.used.as.the.container |
| 53240 | 20 72 65 67 69 73 74 72 79 20 75 6e 6c 65 73 73 20 61 6e 20 61 6c 74 65 72 6e 61 74 69 76 65 20 | .registry.unless.an.alternative. |
| 53260 | 72 65 67 69 73 74 72 79 20 69 73 20 73 70 65 63 69 66 69 65 64 20 75 73 69 6e 67 20 2a 2a 73 65 | registry.is.specified.using.**se |
| 53280 | 74 20 63 6f 6e 74 61 69 6e 65 72 20 72 65 67 69 73 74 72 79 20 3c 6e 61 6d 65 3e 2a 2a 20 6f 72 | t.container.registry.<name>**.or |
| 532a0 | 20 74 68 65 20 72 65 67 69 73 74 72 79 20 69 73 20 69 6e 63 6c 75 64 65 64 20 69 6e 20 74 68 65 | .the.registry.is.included.in.the |
| 532c0 | 20 69 6d 61 67 65 20 6e 61 6d 65 00 49 66 20 61 20 72 65 73 70 6f 6e 73 65 20 69 73 20 68 65 61 | .image.name.If.a.response.is.hea |
| 532e0 | 72 64 2c 20 74 68 65 20 6c 65 61 73 65 20 69 73 20 61 62 61 6e 64 6f 6e 65 64 2c 20 61 6e 64 20 | rd,.the.lease.is.abandoned,.and. |
| 53300 | 74 68 65 20 73 65 72 76 65 72 20 64 6f 65 73 20 6e 6f 74 20 72 65 73 70 6f 6e 64 20 74 6f 20 74 | the.server.does.not.respond.to.t |
| 53320 | 68 65 20 63 6c 69 65 6e 74 2e 20 54 68 65 20 6c 65 61 73 65 20 77 69 6c 6c 20 72 65 6d 61 69 6e | he.client..The.lease.will.remain |
| 53340 | 20 61 62 61 6e 64 6f 6e 65 64 20 66 6f 72 20 61 20 6d 69 6e 69 6d 75 6d 20 6f 66 20 61 62 61 6e | .abandoned.for.a.minimum.of.aban |
| 53360 | 64 6f 6e 2d 6c 65 61 73 65 2d 74 69 6d 65 20 73 65 63 6f 6e 64 73 20 28 64 65 66 61 75 6c 74 73 | don-lease-time.seconds.(defaults |
| 53380 | 20 74 6f 20 32 34 20 68 6f 75 72 73 29 2e 00 49 66 20 61 20 72 6f 75 74 65 20 68 61 73 20 61 6e | .to.24.hours)..If.a.route.has.an |
| 533a0 | 20 4f 52 49 47 49 4e 41 54 4f 52 5f 49 44 20 61 74 74 72 69 62 75 74 65 20 62 65 63 61 75 73 65 | .ORIGINATOR_ID.attribute.because |
| 533c0 | 20 69 74 20 68 61 73 20 62 65 65 6e 20 72 65 66 6c 65 63 74 65 64 2c 20 74 68 61 74 20 4f 52 49 | .it.has.been.reflected,.that.ORI |
| 533e0 | 47 49 4e 41 54 4f 52 5f 49 44 20 77 69 6c 6c 20 62 65 20 75 73 65 64 2e 20 4f 74 68 65 72 77 69 | GINATOR_ID.will.be.used..Otherwi |
| 53400 | 73 65 2c 20 74 68 65 20 72 6f 75 74 65 72 2d 49 44 20 6f 66 20 74 68 65 20 70 65 65 72 20 74 68 | se,.the.router-ID.of.the.peer.th |
| 53420 | 65 20 72 6f 75 74 65 20 77 61 73 20 72 65 63 65 69 76 65 64 20 66 72 6f 6d 20 77 69 6c 6c 20 62 | e.route.was.received.from.will.b |
| 53440 | 65 20 75 73 65 64 2e 00 49 66 20 61 20 72 75 6c 65 20 69 73 20 64 65 66 69 6e 65 64 2c 20 74 68 | e.used..If.a.rule.is.defined,.th |
| 53460 | 65 6e 20 61 6e 20 61 63 74 69 6f 6e 20 6d 75 73 74 20 62 65 20 64 65 66 69 6e 65 64 20 66 6f 72 | en.an.action.must.be.defined.for |
| 53480 | 20 69 74 2e 20 54 68 69 73 20 74 65 6c 6c 73 20 74 68 65 20 66 69 72 65 77 61 6c 6c 20 77 68 61 | .it..This.tells.the.firewall.wha |
| 534a0 | 74 20 74 6f 20 64 6f 20 69 66 20 61 6c 6c 20 63 72 69 74 65 72 69 61 20 6d 61 74 63 68 65 72 73 | t.to.do.if.all.criteria.matchers |
| 534c0 | 20 64 65 66 69 6e 65 64 20 66 6f 72 20 73 75 63 68 20 72 75 6c 65 20 64 6f 20 6d 61 74 63 68 2e | .defined.for.such.rule.do.match. |
| 534e0 | 00 49 66 20 61 20 72 75 6c 65 20 69 73 20 64 65 66 69 6e 65 64 2c 20 74 68 65 6e 20 61 6e 20 61 | .If.a.rule.is.defined,.then.an.a |
| 53500 | 63 74 69 6f 6e 20 6d 75 73 74 20 62 65 20 64 65 66 69 6e 65 64 20 66 6f 72 20 69 74 2e 20 54 68 | ction.must.be.defined.for.it..Th |
| 53520 | 69 73 20 74 65 6c 6c 73 20 74 68 65 20 66 69 72 65 77 61 6c 6c 20 77 68 61 74 20 74 6f 20 64 6f | is.tells.the.firewall.what.to.do |
| 53540 | 20 69 66 20 61 6c 6c 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 65 61 20 69 6e 20 74 68 65 | .if.all.matching.criterea.in.the |
| 53560 | 20 72 75 6c 65 20 61 72 65 20 6d 65 74 2e 00 49 66 20 61 20 72 75 6c 65 20 69 73 20 64 65 66 69 | .rule.are.met..If.a.rule.is.defi |
| 53580 | 6e 65 64 2c 20 74 68 65 6e 20 61 6e 20 61 63 74 69 6f 6e 20 6d 75 73 74 20 62 65 20 64 65 66 69 | ned,.then.an.action.must.be.defi |
| 535a0 | 6e 65 64 20 66 6f 72 20 69 74 2e 20 54 68 69 73 20 74 65 6c 6c 73 20 74 68 65 20 66 69 72 65 77 | ned.for.it..This.tells.the.firew |
| 535c0 | 61 6c 6c 20 77 68 61 74 20 74 6f 20 64 6f 20 69 66 20 61 6c 6c 20 6f 66 20 74 68 65 20 63 72 69 | all.what.to.do.if.all.of.the.cri |
| 535e0 | 74 65 72 69 61 20 64 65 66 69 6e 65 64 20 66 6f 72 20 74 68 61 74 20 72 75 6c 65 20 6d 61 74 63 | teria.defined.for.that.rule.matc |
| 53600 | 68 2e 00 49 66 20 61 20 74 68 65 72 65 20 61 72 65 20 6e 6f 20 66 72 65 65 20 61 64 64 72 65 73 | h..If.a.there.are.no.free.addres |
| 53620 | 73 65 73 20 62 75 74 20 74 68 65 72 65 20 61 72 65 20 61 62 61 6e 64 6f 6e 65 64 20 49 50 20 61 | ses.but.there.are.abandoned.IP.a |
| 53640 | 64 64 72 65 73 73 65 73 2c 20 74 68 65 20 44 48 43 50 20 73 65 72 76 65 72 20 77 69 6c 6c 20 61 | ddresses,.the.DHCP.server.will.a |
| 53660 | 74 74 65 6d 70 74 20 74 6f 20 72 65 63 6c 61 69 6d 20 61 6e 20 61 62 61 6e 64 6f 6e 65 64 20 49 | ttempt.to.reclaim.an.abandoned.I |
| 53680 | 50 20 61 64 64 72 65 73 73 20 72 65 67 61 72 64 6c 65 73 73 20 6f 66 20 74 68 65 20 76 61 6c 75 | P.address.regardless.of.the.valu |
| 536a0 | 65 20 6f 66 20 61 62 61 6e 64 6f 6e 2d 6c 65 61 73 65 2d 74 69 6d 65 2e 00 49 66 20 61 63 74 69 | e.of.abandon-lease-time..If.acti |
| 536c0 | 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 60 60 71 75 65 75 65 60 60 2c 20 75 73 65 20 6e 65 78 74 | on.is.set.to.``queue``,.use.next |
| 536e0 | 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 70 65 63 69 66 79 20 74 68 65 20 71 75 65 75 65 20 74 61 | .command.to.specify.the.queue.ta |
| 53700 | 72 67 65 74 2e 20 52 61 6e 67 65 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 3a 00 49 | rget..Range.is.also.supported:.I |
| 53720 | 66 20 61 6e 20 49 53 50 20 64 65 70 6c 6f 79 73 20 61 20 3a 61 62 62 72 3a 60 43 47 4e 20 28 43 | f.an.ISP.deploys.a.:abbr:`CGN.(C |
| 53740 | 61 72 72 69 65 72 2d 67 72 61 64 65 20 4e 41 54 29 60 2c 20 61 6e 64 20 75 73 65 73 20 3a 72 66 | arrier-grade.NAT)`,.and.uses.:rf |
| 53760 | 63 3a 60 31 39 31 38 60 20 61 64 64 72 65 73 73 20 73 70 61 63 65 20 74 6f 20 6e 75 6d 62 65 72 | c:`1918`.address.space.to.number |
| 53780 | 20 63 75 73 74 6f 6d 65 72 20 67 61 74 65 77 61 79 73 2c 20 74 68 65 20 72 69 73 6b 20 6f 66 20 | .customer.gateways,.the.risk.of. |
| 537a0 | 61 64 64 72 65 73 73 20 63 6f 6c 6c 69 73 69 6f 6e 2c 20 61 6e 64 20 74 68 65 72 65 66 6f 72 65 | address.collision,.and.therefore |
| 537c0 | 20 72 6f 75 74 69 6e 67 20 66 61 69 6c 75 72 65 73 2c 20 61 72 69 73 65 73 20 77 68 65 6e 20 74 | .routing.failures,.arises.when.t |
| 537e0 | 68 65 20 63 75 73 74 6f 6d 65 72 20 6e 65 74 77 6f 72 6b 20 61 6c 72 65 61 64 79 20 75 73 65 73 | he.customer.network.already.uses |
| 53800 | 20 61 6e 20 3a 72 66 63 3a 60 31 39 31 38 60 20 61 64 64 72 65 73 73 20 73 70 61 63 65 2e 00 49 | .an.:rfc:`1918`.address.space..I |
| 53820 | 66 20 61 6e 20 61 6e 6f 74 68 65 72 20 62 72 69 64 67 65 20 69 6e 20 74 68 65 20 73 70 61 6e 6e | f.an.another.bridge.in.the.spann |
| 53840 | 69 6e 67 20 74 72 65 65 20 64 6f 65 73 20 6e 6f 74 20 73 65 6e 64 20 6f 75 74 20 61 20 68 65 6c | ing.tree.does.not.send.out.a.hel |
| 53860 | 6c 6f 20 70 61 63 6b 65 74 20 66 6f 72 20 61 20 6c 6f 6e 67 20 70 65 72 69 6f 64 20 6f 66 20 74 | lo.packet.for.a.long.period.of.t |
| 53880 | 69 6d 65 2c 20 69 74 20 69 73 20 61 73 73 75 6d 65 64 20 74 6f 20 62 65 20 64 65 61 64 2e 00 49 | ime,.it.is.assumed.to.be.dead..I |
| 538a0 | 66 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 61 74 74 61 63 68 65 64 20 74 6f 20 61 20 | f.an.interface.is.attached.to.a. |
| 538c0 | 6e 6f 6e 2d 64 65 66 61 75 6c 74 20 76 72 66 2c 20 77 68 65 6e 20 75 73 69 6e 67 20 2a 2a 69 6e | non-default.vrf,.when.using.**in |
| 538e0 | 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 2a 2a 2c 20 74 68 65 20 76 72 66 20 6e 61 6d 65 20 | bound-interface**,.the.vrf.name. |
| 53900 | 6d 75 73 74 20 62 65 20 75 73 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 73 65 74 20 | must.be.used..For.example.``set. |
| 53920 | 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 72 75 6c | firewall.ipv4.forward.filter.rul |
| 53940 | 65 20 31 30 20 69 6e 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 20 6e 61 6d 65 20 4d 47 4d 54 | e.10.inbound-interface.name.MGMT |
| 53960 | 60 60 00 49 66 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 61 74 74 61 63 68 65 64 20 74 | ``.If.an.interface.is.attached.t |
| 53980 | 6f 20 61 20 6e 6f 6e 2d 64 65 66 61 75 6c 74 20 76 72 66 2c 20 77 68 65 6e 20 75 73 69 6e 67 20 | o.a.non-default.vrf,.when.using. |
| 539a0 | 2a 2a 69 6e 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 2a 2a 2c 20 74 68 65 20 76 72 66 20 6e | **inbound-interface**,.the.vrf.n |
| 539c0 | 61 6d 65 20 6d 75 73 74 20 62 65 20 75 73 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 | ame.must.be.used..For.example.`` |
| 539e0 | 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 | set.firewall.ipv6.forward.filter |
| 53a00 | 20 72 75 6c 65 20 31 30 20 69 6e 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 20 6e 61 6d 65 20 | .rule.10.inbound-interface.name. |
| 53a20 | 4d 47 4d 54 60 60 00 49 66 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 61 74 74 61 63 68 | MGMT``.If.an.interface.is.attach |
| 53a40 | 65 64 20 74 6f 20 61 20 6e 6f 6e 2d 64 65 66 61 75 6c 74 20 76 72 66 2c 20 77 68 65 6e 20 75 73 | ed.to.a.non-default.vrf,.when.us |
| 53a60 | 69 6e 67 20 2a 2a 69 6e 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 2a 2a 2c 20 76 72 66 20 6e | ing.**inbound-interface**,.vrf.n |
| 53a80 | 61 6d 65 20 6d 75 73 74 20 62 65 20 75 73 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 | ame.must.be.used..For.example.`` |
| 53aa0 | 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 | set.firewall.ipv4.forward.filter |
| 53ac0 | 20 72 75 6c 65 20 31 30 20 69 6e 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 20 6e 61 6d 65 20 | .rule.10.inbound-interface.name. |
| 53ae0 | 4d 47 4d 54 60 60 00 49 66 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 61 74 74 61 63 68 | MGMT``.If.an.interface.is.attach |
| 53b00 | 65 64 20 74 6f 20 61 20 6e 6f 6e 2d 64 65 66 61 75 6c 74 20 76 72 66 2c 20 77 68 65 6e 20 75 73 | ed.to.a.non-default.vrf,.when.us |
| 53b20 | 69 6e 67 20 2a 2a 69 6e 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 2a 2a 2c 20 76 72 66 20 6e | ing.**inbound-interface**,.vrf.n |
| 53b40 | 61 6d 65 20 6d 75 73 74 20 62 65 20 75 73 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 | ame.must.be.used..For.example.`` |
| 53b60 | 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 | set.firewall.ipv6.forward.filter |
| 53b80 | 20 72 75 6c 65 20 31 30 20 69 6e 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 20 6e 61 6d 65 20 | .rule.10.inbound-interface.name. |
| 53ba0 | 4d 47 4d 54 60 60 00 49 66 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 61 74 74 61 63 68 | MGMT``.If.an.interface.is.attach |
| 53bc0 | 65 64 20 74 6f 20 61 20 6e 6f 6e 2d 64 65 66 61 75 6c 74 20 76 72 66 2c 20 77 68 65 6e 20 75 73 | ed.to.a.non-default.vrf,.when.us |
| 53be0 | 69 6e 67 20 2a 2a 6f 75 74 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 2a 2a 2c 20 72 65 61 6c | ing.**outbound-interface**,.real |
| 53c00 | 20 69 6e 74 65 72 66 61 63 65 20 6e 61 6d 65 20 6d 75 73 74 20 62 65 20 75 73 65 64 2e 20 46 6f | .interface.name.must.be.used..Fo |
| 53c20 | 72 20 65 78 61 6d 70 6c 65 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 66 6f | r.example.``set.firewall.ipv4.fo |
| 53c40 | 72 77 61 72 64 20 66 69 6c 74 65 72 20 72 75 6c 65 20 31 30 20 6f 75 74 62 6f 75 6e 64 2d 69 6e | rward.filter.rule.10.outbound-in |
| 53c60 | 74 65 72 66 61 63 65 20 6e 61 6d 65 20 65 74 68 30 60 60 00 49 66 20 61 6e 20 69 6e 74 65 72 66 | terface.name.eth0``.If.an.interf |
| 53c80 | 61 63 65 20 69 73 20 61 74 74 61 63 68 65 64 20 74 6f 20 61 20 6e 6f 6e 2d 64 65 66 61 75 6c 74 | ace.is.attached.to.a.non-default |
| 53ca0 | 20 76 72 66 2c 20 77 68 65 6e 20 75 73 69 6e 67 20 2a 2a 6f 75 74 62 6f 75 6e 64 2d 69 6e 74 65 | .vrf,.when.using.**outbound-inte |
| 53cc0 | 72 66 61 63 65 2a 2a 2c 20 72 65 61 6c 20 69 6e 74 65 72 66 61 63 65 20 6e 61 6d 65 20 6d 75 73 | rface**,.real.interface.name.mus |
| 53ce0 | 74 20 62 65 20 75 73 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 73 65 74 20 66 69 72 | t.be.used..For.example.``set.fir |
| 53d00 | 65 77 61 6c 6c 20 69 70 76 36 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 72 75 6c 65 20 31 | ewall.ipv6.forward.filter.rule.1 |
| 53d20 | 30 20 6f 75 74 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 20 6e 61 6d 65 20 65 74 68 30 60 60 | 0.outbound-interface.name.eth0`` |
| 53d40 | 00 49 66 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 61 74 74 61 63 68 65 64 20 74 6f 20 | .If.an.interface.is.attached.to. |
| 53d60 | 61 20 6e 6f 6e 2d 64 65 66 61 75 6c 74 20 76 72 66 2c 20 77 68 65 6e 20 75 73 69 6e 67 20 2a 2a | a.non-default.vrf,.when.using.** |
| 53d80 | 6f 75 74 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 2a 2a 2c 20 74 68 65 20 72 65 61 6c 20 69 | outbound-interface**,.the.real.i |
| 53da0 | 6e 74 65 72 66 61 63 65 20 6e 61 6d 65 20 6d 75 73 74 20 62 65 20 75 73 65 64 2e 20 46 6f 72 20 | nterface.name.must.be.used..For. |
| 53dc0 | 65 78 61 6d 70 6c 65 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 66 6f 72 77 | example.``set.firewall.ipv4.forw |
| 53de0 | 61 72 64 20 66 69 6c 74 65 72 20 72 75 6c 65 20 31 30 20 6f 75 74 62 6f 75 6e 64 2d 69 6e 74 65 | ard.filter.rule.10.outbound-inte |
| 53e00 | 72 66 61 63 65 20 6e 61 6d 65 20 65 74 68 30 60 60 00 49 66 20 61 6e 20 69 6e 74 65 72 66 61 63 | rface.name.eth0``.If.an.interfac |
| 53e20 | 65 20 69 73 20 61 74 74 61 63 68 65 64 20 74 6f 20 61 20 6e 6f 6e 2d 64 65 66 61 75 6c 74 20 76 | e.is.attached.to.a.non-default.v |
| 53e40 | 72 66 2c 20 77 68 65 6e 20 75 73 69 6e 67 20 2a 2a 6f 75 74 62 6f 75 6e 64 2d 69 6e 74 65 72 66 | rf,.when.using.**outbound-interf |
| 53e60 | 61 63 65 2a 2a 2c 20 74 68 65 20 72 65 61 6c 20 69 6e 74 65 72 66 61 63 65 20 6e 61 6d 65 20 6d | ace**,.the.real.interface.name.m |
| 53e80 | 75 73 74 20 62 65 20 75 73 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 73 65 74 20 66 | ust.be.used..For.example.``set.f |
| 53ea0 | 69 72 65 77 61 6c 6c 20 69 70 76 36 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 72 75 6c 65 | irewall.ipv6.forward.filter.rule |
| 53ec0 | 20 31 30 20 6f 75 74 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 20 6e 61 6d 65 20 65 74 68 30 | .10.outbound-interface.name.eth0 |
| 53ee0 | 60 60 00 49 66 20 63 68 6f 6f 73 69 6e 67 20 61 20 76 61 6c 75 65 20 62 65 6c 6f 77 20 33 31 20 | ``.If.choosing.a.value.below.31. |
| 53f00 | 73 65 63 6f 6e 64 73 20 62 65 20 61 77 61 72 65 20 74 68 61 74 20 73 6f 6d 65 20 68 61 72 64 77 | seconds.be.aware.that.some.hardw |
| 53f20 | 61 72 65 20 70 6c 61 74 66 6f 72 6d 73 20 63 61 6e 6e 6f 74 20 73 65 65 20 64 61 74 61 20 66 6c | are.platforms.cannot.see.data.fl |
| 53f40 | 6f 77 69 6e 67 20 69 6e 20 62 65 74 74 65 72 20 74 68 61 6e 20 33 30 20 73 65 63 6f 6e 64 20 63 | owing.in.better.than.30.second.c |
| 53f60 | 68 75 6e 6b 73 2e 00 49 66 20 63 6f 6e 66 69 67 75 72 65 64 2c 20 69 6e 63 6f 6d 69 6e 67 20 49 | hunks..If.configured,.incoming.I |
| 53f80 | 50 20 64 69 72 65 63 74 65 64 20 62 72 6f 61 64 63 61 73 74 20 70 61 63 6b 65 74 73 20 6f 6e 20 | P.directed.broadcast.packets.on. |
| 53fa0 | 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 20 77 69 6c 6c 20 62 65 20 66 6f 72 77 61 72 64 65 64 | this.interface.will.be.forwarded |
| 53fc0 | 2e 00 49 66 20 63 6f 6e 66 69 67 75 72 65 64 2c 20 72 65 70 6c 79 20 6f 6e 6c 79 20 69 66 20 74 | ..If.configured,.reply.only.if.t |
| 53fe0 | 68 65 20 74 61 72 67 65 74 20 49 50 20 61 64 64 72 65 73 73 20 69 73 20 6c 6f 63 61 6c 20 61 64 | he.target.IP.address.is.local.ad |
| 54000 | 64 72 65 73 73 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 74 68 65 20 69 6e 63 6f 6d 69 6e 67 | dress.configured.on.the.incoming |
| 54020 | 20 69 6e 74 65 72 66 61 63 65 2e 00 49 66 20 63 6f 6e 66 69 67 75 72 65 64 2c 20 74 72 79 20 74 | .interface..If.configured,.try.t |
| 54040 | 6f 20 61 76 6f 69 64 20 6c 6f 63 61 6c 20 61 64 64 72 65 73 73 65 73 20 74 68 61 74 20 61 72 65 | o.avoid.local.addresses.that.are |
| 54060 | 20 6e 6f 74 20 69 6e 20 74 68 65 20 74 61 72 67 65 74 27 73 20 73 75 62 6e 65 74 20 66 6f 72 20 | .not.in.the.target's.subnet.for. |
| 54080 | 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 69 73 20 6d 6f 64 65 20 69 73 20 75 73 65 | this.interface..This.mode.is.use |
| 540a0 | 66 75 6c 20 77 68 65 6e 20 74 61 72 67 65 74 20 68 6f 73 74 73 20 72 65 61 63 68 61 62 6c 65 20 | ful.when.target.hosts.reachable. |
| 540c0 | 76 69 61 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 20 72 65 71 75 69 72 65 20 74 68 65 20 73 | via.this.interface.require.the.s |
| 540e0 | 6f 75 72 63 65 20 49 50 20 61 64 64 72 65 73 73 20 69 6e 20 41 52 50 20 72 65 71 75 65 73 74 73 | ource.IP.address.in.ARP.requests |
| 54100 | 20 74 6f 20 62 65 20 70 61 72 74 20 6f 66 20 74 68 65 69 72 20 6c 6f 67 69 63 61 6c 20 6e 65 74 | .to.be.part.of.their.logical.net |
| 54120 | 77 6f 72 6b 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 74 68 65 20 72 65 63 65 69 76 69 6e 67 | work.configured.on.the.receiving |
| 54140 | 20 69 6e 74 65 72 66 61 63 65 2e 20 57 68 65 6e 20 77 65 20 67 65 6e 65 72 61 74 65 20 74 68 65 | .interface..When.we.generate.the |
| 54160 | 20 72 65 71 75 65 73 74 20 77 65 20 77 69 6c 6c 20 63 68 65 63 6b 20 61 6c 6c 20 6f 75 72 20 73 | .request.we.will.check.all.our.s |
| 54180 | 75 62 6e 65 74 73 20 74 68 61 74 20 69 6e 63 6c 75 64 65 20 74 68 65 20 74 61 72 67 65 74 20 49 | ubnets.that.include.the.target.I |
| 541a0 | 50 20 61 6e 64 20 77 69 6c 6c 20 70 72 65 73 65 72 76 65 20 74 68 65 20 73 6f 75 72 63 65 20 61 | P.and.will.preserve.the.source.a |
| 541c0 | 64 64 72 65 73 73 20 69 66 20 69 74 20 69 73 20 66 72 6f 6d 20 73 75 63 68 20 73 75 62 6e 65 74 | ddress.if.it.is.from.such.subnet |
| 541e0 | 2e 20 49 66 20 74 68 65 72 65 20 69 73 20 6e 6f 20 73 75 63 68 20 73 75 62 6e 65 74 20 77 65 20 | ..If.there.is.no.such.subnet.we. |
| 54200 | 73 65 6c 65 63 74 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 61 63 63 6f 72 64 69 6e 67 20 | select.source.address.according. |
| 54220 | 74 6f 20 74 68 65 20 72 75 6c 65 73 20 66 6f 72 20 6c 65 76 65 6c 20 32 2e 00 49 66 20 63 6f 6e | to.the.rules.for.level.2..If.con |
| 54240 | 66 69 67 75 72 69 6e 67 20 56 58 4c 41 4e 20 69 6e 20 61 20 56 79 4f 53 20 76 69 72 74 75 61 6c | figuring.VXLAN.in.a.VyOS.virtual |
| 54260 | 20 6d 61 63 68 69 6e 65 2c 20 65 6e 73 75 72 65 20 74 68 61 74 20 4d 41 43 20 73 70 6f 6f 66 69 | .machine,.ensure.that.MAC.spoofi |
| 54280 | 6e 67 20 28 48 79 70 65 72 2d 56 29 20 6f 72 20 46 6f 72 67 65 64 20 54 72 61 6e 73 6d 69 74 73 | ng.(Hyper-V).or.Forged.Transmits |
| 542a0 | 20 28 45 53 58 29 20 61 72 65 20 70 65 72 6d 69 74 74 65 64 2c 20 6f 74 68 65 72 77 69 73 65 20 | .(ESX).are.permitted,.otherwise. |
| 542c0 | 66 6f 72 77 61 72 64 65 64 20 66 72 61 6d 65 73 20 6d 61 79 20 62 65 20 62 6c 6f 63 6b 65 64 20 | forwarded.frames.may.be.blocked. |
| 542e0 | 62 79 20 74 68 65 20 68 79 70 65 72 76 69 73 6f 72 2e 00 49 66 20 65 69 74 68 65 72 20 69 73 20 | by.the.hypervisor..If.either.is. |
| 54300 | 73 65 74 20 62 6f 74 68 20 6d 75 73 74 20 62 65 20 73 65 74 2e 00 49 66 20 66 6f 72 77 61 72 64 | set.both.must.be.set..If.forward |
| 54320 | 69 6e 67 20 74 72 61 66 66 69 63 20 74 6f 20 61 20 64 69 66 66 65 72 65 6e 74 20 70 6f 72 74 20 | ing.traffic.to.a.different.port. |
| 54340 | 74 68 61 6e 20 69 74 20 69 73 20 61 72 72 69 76 69 6e 67 20 6f 6e 2c 20 79 6f 75 20 6d 61 79 20 | than.it.is.arriving.on,.you.may. |
| 54360 | 61 6c 73 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 70 | also.configure.the.translation.p |
| 54380 | 6f 72 74 20 75 73 69 6e 67 20 60 73 65 74 20 6e 61 74 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 72 | ort.using.`set.nat.destination.r |
| 543a0 | 75 6c 65 20 5b 6e 5d 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 70 6f 72 74 60 2e 00 49 66 20 67 75 | ule.[n].translation.port`..If.gu |
| 543c0 | 61 72 61 6e 74 65 65 64 20 74 72 61 66 66 69 63 20 66 6f 72 20 61 20 63 6c 61 73 73 20 69 73 20 | aranteed.traffic.for.a.class.is. |
| 543e0 | 6d 65 74 20 61 6e 64 20 74 68 65 72 65 20 69 73 20 72 6f 6f 6d 20 66 6f 72 20 6d 6f 72 65 20 74 | met.and.there.is.room.for.more.t |
| 54400 | 72 61 66 66 69 63 2c 20 74 68 65 20 63 65 69 6c 69 6e 67 20 70 61 72 61 6d 65 74 65 72 20 63 61 | raffic,.the.ceiling.parameter.ca |
| 54420 | 6e 20 62 65 20 75 73 65 64 20 74 6f 20 73 65 74 20 68 6f 77 20 6d 75 63 68 20 6d 6f 72 65 20 62 | n.be.used.to.set.how.much.more.b |
| 54440 | 61 6e 64 77 69 64 74 68 20 63 6f 75 6c 64 20 62 65 20 75 73 65 64 2e 20 49 66 20 67 75 61 72 61 | andwidth.could.be.used..If.guara |
| 54460 | 6e 74 65 65 64 20 74 72 61 66 66 69 63 20 69 73 20 6d 65 74 20 61 6e 64 20 74 68 65 72 65 20 61 | nteed.traffic.is.met.and.there.a |
| 54480 | 72 65 20 73 65 76 65 72 61 6c 20 63 6c 61 73 73 65 73 20 77 69 6c 6c 69 6e 67 20 74 6f 20 75 73 | re.several.classes.willing.to.us |
| 544a0 | 65 20 74 68 65 69 72 20 63 65 69 6c 69 6e 67 73 2c 20 74 68 65 20 70 72 69 6f 72 69 74 79 20 70 | e.their.ceilings,.the.priority.p |
| 544c0 | 61 72 61 6d 65 74 65 72 20 77 69 6c 6c 20 65 73 74 61 62 6c 69 73 68 20 74 68 65 20 6f 72 64 65 | arameter.will.establish.the.orde |
| 544e0 | 72 20 69 6e 20 77 68 69 63 68 20 74 68 61 74 20 61 64 64 69 74 69 6f 6e 61 6c 20 74 72 61 66 66 | r.in.which.that.additional.traff |
| 54500 | 69 63 20 77 69 6c 6c 20 62 65 20 61 6c 6c 6f 63 61 74 65 64 2e 20 50 72 69 6f 72 69 74 79 20 63 | ic.will.be.allocated..Priority.c |
| 54520 | 61 6e 20 62 65 20 61 6e 79 20 6e 75 6d 62 65 72 20 66 72 6f 6d 20 30 20 74 6f 20 37 2e 20 54 68 | an.be.any.number.from.0.to.7..Th |
| 54540 | 65 20 6c 6f 77 65 72 20 74 68 65 20 6e 75 6d 62 65 72 2c 20 74 68 65 20 68 69 67 68 65 72 20 74 | e.lower.the.number,.the.higher.t |
| 54560 | 68 65 20 70 72 69 6f 72 69 74 79 2e 00 49 66 20 69 6e 74 65 72 66 61 63 65 20 77 65 72 65 20 74 | he.priority..If.interface.were.t |
| 54580 | 68 65 20 70 61 63 6b 65 74 20 77 61 73 20 72 65 63 65 69 76 65 64 20 69 73 20 70 61 72 74 20 6f | he.packet.was.received.is.part.o |
| 545a0 | 66 20 61 20 62 72 69 64 67 65 2c 20 74 68 65 6e 20 70 61 63 6b 65 74 20 69 73 20 70 72 6f 63 65 | f.a.bridge,.then.packet.is.proce |
| 545c0 | 73 73 65 64 20 61 74 20 74 68 65 20 2a 2a 42 72 69 64 67 65 20 4c 61 79 65 72 2a 2a 2c 20 77 68 | ssed.at.the.**Bridge.Layer**,.wh |
| 545e0 | 69 63 68 20 63 6f 6e 74 61 69 6e 73 20 61 20 76 65 72 20 62 61 73 69 63 20 73 65 74 75 70 20 77 | ich.contains.a.ver.basic.setup.w |
| 54600 | 68 65 72 65 20 66 6f 72 20 62 72 69 64 67 65 20 66 69 6c 74 65 72 69 6e 67 3a 00 49 66 20 69 6e | here.for.bridge.filtering:.If.in |
| 54620 | 74 65 72 66 61 63 65 20 77 65 72 65 20 74 68 65 20 70 61 63 6b 65 74 20 77 61 73 20 72 65 63 65 | terface.were.the.packet.was.rece |
| 54640 | 69 76 65 64 20 69 73 6e 27 74 20 70 61 72 74 20 6f 66 20 61 20 62 72 69 64 67 65 2c 20 74 68 65 | ived.isn't.part.of.a.bridge,.the |
| 54660 | 6e 20 70 61 63 6b 65 74 20 69 73 20 70 72 6f 63 65 73 73 65 64 20 61 74 20 74 68 65 20 2a 2a 49 | n.packet.is.processed.at.the.**I |
| 54680 | 50 20 4c 61 79 65 72 2a 2a 3a 00 49 66 20 69 74 27 73 20 6e 6f 74 20 64 72 6f 70 70 65 64 2c 20 | P.Layer**:.If.it's.not.dropped,. |
| 546a0 | 74 68 65 6e 20 74 68 65 20 70 61 63 6b 65 74 20 69 73 20 73 65 6e 74 20 74 6f 20 2a 2a 49 50 20 | then.the.packet.is.sent.to.**IP. |
| 546c0 | 4c 61 79 65 72 2a 2a 2c 20 61 6e 64 20 77 69 6c 6c 20 62 65 20 70 72 6f 63 65 73 73 65 64 20 62 | Layer**,.and.will.be.processed.b |
| 546e0 | 79 20 74 68 65 20 2a 2a 49 50 20 4c 61 79 65 72 2a 2a 20 66 69 72 65 77 61 6c 6c 3a 20 49 50 76 | y.the.**IP.Layer**.firewall:.IPv |
| 54700 | 34 20 6f 72 20 49 50 76 36 20 72 75 6c 65 73 65 74 2e 20 43 68 65 63 6b 20 6f 6e 63 65 20 61 67 | 4.or.IPv6.ruleset..Check.once.ag |
| 54720 | 61 69 6e 20 74 68 65 20 3a 64 6f 63 3a 60 67 65 6e 65 72 61 6c 20 70 61 63 6b 65 74 20 66 6c 6f | ain.the.:doc:`general.packet.flo |
| 54740 | 77 20 64 69 61 67 72 61 6d 3c 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 66 69 72 65 77 61 6c | w.diagram</configuration/firewal |
| 54760 | 6c 2f 69 6e 64 65 78 3e 60 20 69 66 20 6e 65 65 64 65 64 2e 00 49 66 20 69 74 27 73 20 76 69 74 | l/index>`.if.needed..If.it's.vit |
| 54780 | 61 6c 20 74 68 61 74 20 74 68 65 20 64 61 65 6d 6f 6e 20 73 68 6f 75 6c 64 20 61 63 74 20 65 78 | al.that.the.daemon.should.act.ex |
| 547a0 | 61 63 74 6c 79 20 6c 69 6b 65 20 61 20 72 65 61 6c 20 6d 75 6c 74 69 63 61 73 74 20 63 6c 69 65 | actly.like.a.real.multicast.clie |
| 547c0 | 6e 74 20 6f 6e 20 74 68 65 20 75 70 73 74 72 65 61 6d 20 69 6e 74 65 72 66 61 63 65 2c 20 74 68 | nt.on.the.upstream.interface,.th |
| 547e0 | 69 73 20 66 75 6e 63 74 69 6f 6e 20 73 68 6f 75 6c 64 20 62 65 20 65 6e 61 62 6c 65 64 2e 00 49 | is.function.should.be.enabled..I |
| 54800 | 66 20 6b 6e 6f 77 6e 2c 20 74 68 65 20 49 50 20 6f 66 20 74 68 65 20 72 65 6d 6f 74 65 20 72 6f | f.known,.the.IP.of.the.remote.ro |
| 54820 | 75 74 65 72 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 75 73 69 6e 67 20 74 68 65 | uter.can.be.configured.using.the |
| 54840 | 20 60 60 72 65 6d 6f 74 65 2d 68 6f 73 74 60 60 20 64 69 72 65 63 74 69 76 65 3b 20 69 66 20 75 | .``remote-host``.directive;.if.u |
| 54860 | 6e 6b 6e 6f 77 6e 2c 20 69 74 20 63 61 6e 20 62 65 20 6f 6d 69 74 74 65 64 2e 20 57 65 20 77 69 | nknown,.it.can.be.omitted..We.wi |
| 54880 | 6c 6c 20 61 73 73 75 6d 65 20 61 20 64 79 6e 61 6d 69 63 20 49 50 20 66 6f 72 20 6f 75 72 20 72 | ll.assume.a.dynamic.IP.for.our.r |
| 548a0 | 65 6d 6f 74 65 20 72 6f 75 74 65 72 2e 00 49 66 20 6c 6f 67 67 69 6e 67 20 74 6f 20 61 20 6c 6f | emote.router..If.logging.to.a.lo |
| 548c0 | 63 61 6c 20 75 73 65 72 20 61 63 63 6f 75 6e 74 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 2c 20 | cal.user.account.is.configured,. |
| 548e0 | 61 6c 6c 20 64 65 66 69 6e 65 64 20 6c 6f 67 20 6d 65 73 73 61 67 65 73 20 61 72 65 20 64 69 73 | all.defined.log.messages.are.dis |
| 54900 | 70 6c 61 79 20 6f 6e 20 74 68 65 20 63 6f 6e 73 6f 6c 65 20 69 66 20 74 68 65 20 6c 6f 63 61 6c | play.on.the.console.if.the.local |
| 54920 | 20 75 73 65 72 20 69 73 20 6c 6f 67 67 65 64 20 69 6e 2c 20 69 66 20 74 68 65 20 75 73 65 72 20 | .user.is.logged.in,.if.the.user. |
| 54940 | 69 73 20 6e 6f 74 20 6c 6f 67 67 65 64 20 69 6e 2c 20 6e 6f 20 6d 65 73 73 61 67 65 73 20 61 72 | is.not.logged.in,.no.messages.ar |
| 54960 | 65 20 62 65 69 6e 67 20 64 69 73 70 6c 61 79 65 64 2e 20 46 6f 72 20 61 6e 20 65 78 70 6c 61 6e | e.being.displayed..For.an.explan |
| 54980 | 61 74 69 6f 6e 20 6f 6e 20 3a 72 65 66 3a 60 73 79 73 6c 6f 67 5f 66 61 63 69 6c 69 74 69 65 73 | ation.on.:ref:`syslog_facilities |
| 549a0 | 60 20 6b 65 79 77 6f 72 64 73 20 61 6e 64 20 3a 72 65 66 3a 60 73 79 73 6c 6f 67 5f 73 65 76 65 | `.keywords.and.:ref:`syslog_seve |
| 549c0 | 72 69 74 79 5f 6c 65 76 65 6c 60 20 6b 65 79 77 6f 72 64 73 20 73 65 65 20 74 61 62 6c 65 73 20 | rity_level`.keywords.see.tables. |
| 549e0 | 62 65 6c 6f 77 2e 00 49 66 20 6d 61 6b 69 6e 67 20 75 73 65 20 6f 66 20 6d 75 6c 74 69 70 6c 65 | below..If.making.use.of.multiple |
| 54a00 | 20 74 75 6e 6e 65 6c 73 2c 20 4f 70 65 6e 56 50 4e 20 6d 75 73 74 20 68 61 76 65 20 61 20 77 61 | .tunnels,.OpenVPN.must.have.a.wa |
| 54a20 | 79 20 74 6f 20 64 69 73 74 69 6e 67 75 69 73 68 20 62 65 74 77 65 65 6e 20 64 69 66 66 65 72 65 | y.to.distinguish.between.differe |
| 54a40 | 6e 74 20 74 75 6e 6e 65 6c 73 20 61 73 69 64 65 20 66 72 6f 6d 20 74 68 65 20 70 72 65 2d 73 68 | nt.tunnels.aside.from.the.pre-sh |
| 54a60 | 61 72 65 64 2d 6b 65 79 2e 20 54 68 69 73 20 69 73 20 65 69 74 68 65 72 20 62 79 20 72 65 66 65 | ared-key..This.is.either.by.refe |
| 54a80 | 72 65 6e 63 69 6e 67 20 49 50 20 61 64 64 72 65 73 73 20 6f 72 20 70 6f 72 74 20 6e 75 6d 62 65 | rencing.IP.address.or.port.numbe |
| 54aa0 | 72 2e 20 4f 6e 65 20 6f 70 74 69 6f 6e 20 69 73 20 74 6f 20 64 65 64 69 63 61 74 65 20 61 20 70 | r..One.option.is.to.dedicate.a.p |
| 54ac0 | 75 62 6c 69 63 20 49 50 20 74 6f 20 65 61 63 68 20 74 75 6e 6e 65 6c 2e 20 41 6e 6f 74 68 65 72 | ublic.IP.to.each.tunnel..Another |
| 54ae0 | 20 6f 70 74 69 6f 6e 20 69 73 20 74 6f 20 64 65 64 69 63 61 74 65 20 61 20 70 6f 72 74 20 6e 75 | .option.is.to.dedicate.a.port.nu |
| 54b00 | 6d 62 65 72 20 74 6f 20 65 61 63 68 20 74 75 6e 6e 65 6c 20 28 65 2e 67 2e 20 31 31 39 35 2c 31 | mber.to.each.tunnel.(e.g..1195,1 |
| 54b20 | 31 39 36 2c 31 31 39 37 2e 2e 2e 29 2e 00 49 66 20 6d 75 6c 74 69 2d 70 61 74 68 69 6e 67 20 69 | 196,1197...)..If.multi-pathing.i |
| 54b40 | 73 20 65 6e 61 62 6c 65 64 2c 20 74 68 65 6e 20 63 68 65 63 6b 20 77 68 65 74 68 65 72 20 74 68 | s.enabled,.then.check.whether.th |
| 54b60 | 65 20 72 6f 75 74 65 73 20 6e 6f 74 20 79 65 74 20 64 69 73 74 69 6e 67 75 69 73 68 65 64 20 69 | e.routes.not.yet.distinguished.i |
| 54b80 | 6e 20 70 72 65 66 65 72 65 6e 63 65 20 6d 61 79 20 62 65 20 63 6f 6e 73 69 64 65 72 65 64 20 65 | n.preference.may.be.considered.e |
| 54ba0 | 71 75 61 6c 2e 20 49 66 20 3a 63 66 67 63 6d 64 3a 60 62 67 70 20 62 65 73 74 70 61 74 68 20 61 | qual..If.:cfgcmd:`bgp.bestpath.a |
| 54bc0 | 73 2d 70 61 74 68 20 6d 75 6c 74 69 70 61 74 68 2d 72 65 6c 61 78 60 20 69 73 20 73 65 74 2c 20 | s-path.multipath-relax`.is.set,. |
| 54be0 | 61 6c 6c 20 73 75 63 68 20 72 6f 75 74 65 73 20 61 72 65 20 63 6f 6e 73 69 64 65 72 65 64 20 65 | all.such.routes.are.considered.e |
| 54c00 | 71 75 61 6c 2c 20 6f 74 68 65 72 77 69 73 65 20 72 6f 75 74 65 73 20 72 65 63 65 69 76 65 64 20 | qual,.otherwise.routes.received. |
| 54c20 | 76 69 61 20 69 42 47 50 20 77 69 74 68 20 69 64 65 6e 74 69 63 61 6c 20 41 53 5f 50 41 54 48 73 | via.iBGP.with.identical.AS_PATHs |
| 54c40 | 20 6f 72 20 72 6f 75 74 65 73 20 72 65 63 65 69 76 65 64 20 66 72 6f 6d 20 65 42 47 50 20 6e 65 | .or.routes.received.from.eBGP.ne |
| 54c60 | 69 67 68 62 6f 75 72 73 20 69 6e 20 74 68 65 20 73 61 6d 65 20 41 53 20 61 72 65 20 63 6f 6e 73 | ighbours.in.the.same.AS.are.cons |
| 54c80 | 69 64 65 72 65 64 20 65 71 75 61 6c 2e 00 49 66 20 6e 6f 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 | idered.equal..If.no.connection.t |
| 54ca0 | 6f 20 61 6e 20 52 50 4b 49 20 63 61 63 68 65 20 73 65 72 76 65 72 20 63 61 6e 20 62 65 20 65 73 | o.an.RPKI.cache.server.can.be.es |
| 54cc0 | 74 61 62 6c 69 73 68 65 64 20 61 66 74 65 72 20 61 20 70 72 65 2d 64 65 66 69 6e 65 64 20 74 69 | tablished.after.a.pre-defined.ti |
| 54ce0 | 6d 65 6f 75 74 2c 20 74 68 65 20 72 6f 75 74 65 72 20 77 69 6c 6c 20 70 72 6f 63 65 73 73 20 72 | meout,.the.router.will.process.r |
| 54d00 | 6f 75 74 65 73 20 77 69 74 68 6f 75 74 20 70 72 65 66 69 78 20 6f 72 69 67 69 6e 20 76 61 6c 69 | outes.without.prefix.origin.vali |
| 54d20 | 64 61 74 69 6f 6e 2e 20 49 74 20 73 74 69 6c 6c 20 77 69 6c 6c 20 74 72 79 20 74 6f 20 65 73 74 | dation..It.still.will.try.to.est |
| 54d40 | 61 62 6c 69 73 68 20 61 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 6f 20 61 6e 20 52 50 4b 49 20 63 | ablish.a.connection.to.an.RPKI.c |
| 54d60 | 61 63 68 65 20 73 65 72 76 65 72 20 69 6e 20 74 68 65 20 62 61 63 6b 67 72 6f 75 6e 64 2e 00 49 | ache.server.in.the.background..I |
| 54d80 | 66 20 6e 6f 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 69 73 20 73 70 65 63 69 66 69 65 64 20 74 68 | f.no.destination.is.specified.th |
| 54da0 | 65 20 72 75 6c 65 20 77 69 6c 6c 20 6d 61 74 63 68 20 6f 6e 20 61 6e 79 20 64 65 73 74 69 6e 61 | e.rule.will.match.on.any.destina |
| 54dc0 | 74 69 6f 6e 20 61 64 64 72 65 73 73 20 61 6e 64 20 70 6f 72 74 2e 00 49 66 20 6e 6f 20 69 70 20 | tion.address.and.port..If.no.ip. |
| 54de0 | 70 72 65 66 69 78 20 6c 69 73 74 20 69 73 20 73 70 65 63 69 66 69 65 64 2c 20 69 74 20 61 63 74 | prefix.list.is.specified,.it.act |
| 54e00 | 73 20 61 73 20 70 65 72 6d 69 74 2e 20 49 66 20 69 70 20 70 72 65 66 69 78 20 6c 69 73 74 20 69 | s.as.permit..If.ip.prefix.list.i |
| 54e20 | 73 20 64 65 66 69 6e 65 64 2c 20 61 6e 64 20 6e 6f 20 6d 61 74 63 68 20 69 73 20 66 6f 75 6e 64 | s.defined,.and.no.match.is.found |
| 54e40 | 2c 20 64 65 66 61 75 6c 74 20 64 65 6e 79 20 69 73 20 61 70 70 6c 69 65 64 2e 00 49 66 20 6e 6f | ,.default.deny.is.applied..If.no |
| 54e60 | 20 6f 70 74 69 6f 6e 20 69 73 20 73 70 65 63 69 66 69 65 64 2c 20 74 68 69 73 20 64 65 66 61 75 | .option.is.specified,.this.defau |
| 54e80 | 6c 74 73 20 74 6f 20 60 61 6c 6c 60 2e 00 49 66 20 6e 6f 74 20 73 65 74 20 28 64 65 66 61 75 6c | lts.to.`all`..If.not.set.(defaul |
| 54ea0 | 74 29 20 61 6c 6c 6f 77 73 20 79 6f 75 20 74 6f 20 68 61 76 65 20 6d 75 6c 74 69 70 6c 65 20 6e | t).allows.you.to.have.multiple.n |
| 54ec0 | 65 74 77 6f 72 6b 20 69 6e 74 65 72 66 61 63 65 73 20 6f 6e 20 74 68 65 20 73 61 6d 65 20 73 75 | etwork.interfaces.on.the.same.su |
| 54ee0 | 62 6e 65 74 2c 20 61 6e 64 20 68 61 76 65 20 74 68 65 20 41 52 50 73 20 66 6f 72 20 65 61 63 68 | bnet,.and.have.the.ARPs.for.each |
| 54f00 | 20 69 6e 74 65 72 66 61 63 65 20 62 65 20 61 6e 73 77 65 72 65 64 20 62 61 73 65 64 20 6f 6e 20 | .interface.be.answered.based.on. |
| 54f20 | 77 68 65 74 68 65 72 20 6f 72 20 6e 6f 74 20 74 68 65 20 6b 65 72 6e 65 6c 20 77 6f 75 6c 64 20 | whether.or.not.the.kernel.would. |
| 54f40 | 72 6f 75 74 65 20 61 20 70 61 63 6b 65 74 20 66 72 6f 6d 20 74 68 65 20 41 52 50 27 64 20 49 50 | route.a.packet.from.the.ARP'd.IP |
| 54f60 | 20 6f 75 74 20 74 68 61 74 20 69 6e 74 65 72 66 61 63 65 20 28 74 68 65 72 65 66 6f 72 65 20 79 | .out.that.interface.(therefore.y |
| 54f80 | 6f 75 20 6d 75 73 74 20 75 73 65 20 73 6f 75 72 63 65 20 62 61 73 65 64 20 72 6f 75 74 69 6e 67 | ou.must.use.source.based.routing |
| 54fa0 | 20 66 6f 72 20 74 68 69 73 20 74 6f 20 77 6f 72 6b 29 2e 00 49 66 20 6f 70 74 69 6f 6e 61 6c 20 | .for.this.to.work)..If.optional. |
| 54fc0 | 70 72 6f 66 69 6c 65 20 70 61 72 61 6d 65 74 65 72 20 69 73 20 75 73 65 64 2c 20 73 65 6c 65 63 | profile.parameter.is.used,.selec |
| 54fe0 | 74 20 61 20 42 46 44 20 70 72 6f 66 69 6c 65 20 66 6f 72 20 74 68 65 20 42 46 44 20 73 65 73 73 | t.a.BFD.profile.for.the.BFD.sess |
| 55000 | 69 6f 6e 73 20 63 72 65 61 74 65 64 20 76 69 61 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 2e | ions.created.via.this.interface. |
| 55020 | 00 49 66 20 73 65 74 20 74 68 65 20 6b 65 72 6e 65 6c 20 63 61 6e 20 72 65 73 70 6f 6e 64 20 74 | .If.set.the.kernel.can.respond.t |
| 55040 | 6f 20 61 72 70 20 72 65 71 75 65 73 74 73 20 77 69 74 68 20 61 64 64 72 65 73 73 65 73 20 66 72 | o.arp.requests.with.addresses.fr |
| 55060 | 6f 6d 20 6f 74 68 65 72 20 69 6e 74 65 72 66 61 63 65 73 2e 20 54 68 69 73 20 6d 61 79 20 73 65 | om.other.interfaces..This.may.se |
| 55080 | 65 6d 20 77 72 6f 6e 67 20 62 75 74 20 69 74 20 75 73 75 61 6c 6c 79 20 6d 61 6b 65 73 20 73 65 | em.wrong.but.it.usually.makes.se |
| 550a0 | 6e 73 65 2c 20 62 65 63 61 75 73 65 20 69 74 20 69 6e 63 72 65 61 73 65 73 20 74 68 65 20 63 68 | nse,.because.it.increases.the.ch |
| 550c0 | 61 6e 63 65 20 6f 66 20 73 75 63 63 65 73 73 66 75 6c 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6f 6e | ance.of.successful.communication |
| 550e0 | 2e 20 49 50 20 61 64 64 72 65 73 73 65 73 20 61 72 65 20 6f 77 6e 65 64 20 62 79 20 74 68 65 20 | ..IP.addresses.are.owned.by.the. |
| 55100 | 63 6f 6d 70 6c 65 74 65 20 68 6f 73 74 20 6f 6e 20 4c 69 6e 75 78 2c 20 6e 6f 74 20 62 79 20 70 | complete.host.on.Linux,.not.by.p |
| 55120 | 61 72 74 69 63 75 6c 61 72 20 69 6e 74 65 72 66 61 63 65 73 2e 20 4f 6e 6c 79 20 66 6f 72 20 6d | articular.interfaces..Only.for.m |
| 55140 | 6f 72 65 20 63 6f 6d 70 6c 65 78 20 73 65 74 75 70 73 20 6c 69 6b 65 20 6c 6f 61 64 2d 62 61 6c | ore.complex.setups.like.load-bal |
| 55160 | 61 6e 63 69 6e 67 2c 20 64 6f 65 73 20 74 68 69 73 20 62 65 68 61 76 69 6f 75 72 20 63 61 75 73 | ancing,.does.this.behaviour.caus |
| 55180 | 65 20 70 72 6f 62 6c 65 6d 73 2e 00 49 66 20 73 65 74 20 74 6f 20 61 6e 20 65 6d 70 74 79 20 73 | e.problems..If.set.to.an.empty.s |
| 551a0 | 74 72 69 6e 67 2c 20 74 68 65 20 6c 61 62 65 6c 20 77 69 6c 6c 20 6e 6f 74 20 62 65 20 61 64 64 | tring,.the.label.will.not.be.add |
| 551c0 | 65 64 2e 20 54 68 69 73 20 69 73 20 4e 4f 54 20 72 65 63 6f 6d 6d 65 6e 64 65 64 2c 20 61 73 20 | ed..This.is.NOT.recommended,.as. |
| 551e0 | 69 74 20 6d 61 6b 65 73 20 69 74 20 69 6d 70 6f 73 73 69 62 6c 65 20 74 6f 20 64 69 66 66 65 72 | it.makes.it.impossible.to.differ |
| 55200 | 65 6e 74 69 61 74 65 20 62 65 74 77 65 65 6e 20 6d 75 6c 74 69 70 6c 65 20 6d 65 74 72 69 63 73 | entiate.between.multiple.metrics |
| 55220 | 2e 00 49 66 20 73 65 74 20 74 6f 20 65 6e 61 62 6c 65 2c 20 6f 70 65 6e 76 70 6e 2d 6f 74 70 20 | ..If.set.to.enable,.openvpn-otp. |
| 55240 | 77 69 6c 6c 20 65 78 70 65 63 74 20 70 61 73 73 77 6f 72 64 20 61 73 20 72 65 73 75 6c 74 20 6f | will.expect.password.as.result.o |
| 55260 | 66 20 63 68 61 6c 6c 65 6e 67 65 2f 20 72 65 73 70 6f 6e 73 65 20 70 72 6f 74 6f 63 6f 6c 2e 00 | f.challenge/.response.protocol.. |
| 55280 | 49 66 20 73 65 74 2c 20 49 50 76 34 20 64 69 72 65 63 74 65 64 20 62 72 6f 61 64 63 61 73 74 20 | If.set,.IPv4.directed.broadcast. |
| 552a0 | 66 6f 72 77 61 72 64 69 6e 67 20 77 69 6c 6c 20 62 65 20 63 6f 6d 70 6c 65 74 65 6c 79 20 64 69 | forwarding.will.be.completely.di |
| 552c0 | 73 61 62 6c 65 64 20 72 65 67 61 72 64 6c 65 73 73 20 6f 66 20 77 68 65 74 68 65 72 20 70 65 72 | sabled.regardless.of.whether.per |
| 552e0 | 2d 69 6e 74 65 72 66 61 63 65 20 64 69 72 65 63 74 65 64 20 62 72 6f 61 64 63 61 73 74 20 66 6f | -interface.directed.broadcast.fo |
| 55300 | 72 77 61 72 64 69 6e 67 20 69 73 20 65 6e 61 62 6c 65 64 20 6f 72 20 6e 6f 74 2e 00 49 66 20 73 | rwarding.is.enabled.or.not..If.s |
| 55320 | 65 74 2c 20 74 68 65 20 64 6f 6d 61 69 6e 20 70 61 72 74 20 6f 66 20 74 68 65 20 68 6f 73 74 6e | et,.the.domain.part.of.the.hostn |
| 55340 | 61 6d 65 20 69 73 20 61 6c 77 61 79 73 20 73 65 6e 74 2c 20 65 76 65 6e 20 77 69 74 68 69 6e 20 | ame.is.always.sent,.even.within. |
| 55360 | 74 68 65 20 73 61 6d 65 20 64 6f 6d 61 69 6e 20 61 73 20 74 68 65 20 72 65 63 65 69 76 69 6e 67 | the.same.domain.as.the.receiving |
| 55380 | 20 73 79 73 74 65 6d 2e 00 49 66 20 73 65 74 2c 20 74 68 65 20 72 6f 75 74 65 72 20 77 69 6c 6c | .system..If.set,.the.router.will |
| 553a0 | 20 6e 6f 20 6c 6f 6e 67 65 72 20 73 65 6e 64 20 70 65 72 69 6f 64 69 63 20 72 6f 75 74 65 72 20 | .no.longer.send.periodic.router. |
| 553c0 | 61 64 76 65 72 74 69 73 65 6d 65 6e 74 73 20 61 6e 64 20 77 69 6c 6c 20 6e 6f 74 20 72 65 73 70 | advertisements.and.will.not.resp |
| 553e0 | 6f 6e 64 20 74 6f 20 72 6f 75 74 65 72 20 73 6f 6c 69 63 69 74 61 74 69 6f 6e 73 2e 00 49 66 20 | ond.to.router.solicitations..If. |
| 55400 | 73 75 66 66 69 78 20 69 73 20 6f 6d 69 74 74 65 64 2c 20 6d 69 6e 75 74 65 73 20 61 72 65 20 69 | suffix.is.omitted,.minutes.are.i |
| 55420 | 6d 70 6c 69 65 64 2e 00 49 66 20 74 68 65 20 3a 63 66 67 63 6d 64 3a 60 6e 6f 2d 70 72 65 70 65 | mplied..If.the.:cfgcmd:`no-prepe |
| 55440 | 6e 64 60 20 61 74 74 72 69 62 75 74 65 20 69 73 20 73 70 65 63 69 66 69 65 64 2c 20 74 68 65 6e | nd`.attribute.is.specified,.then |
| 55460 | 20 74 68 65 20 73 75 70 70 6c 69 65 64 20 6c 6f 63 61 6c 2d 61 73 20 69 73 20 6e 6f 74 20 70 72 | .the.supplied.local-as.is.not.pr |
| 55480 | 65 70 65 6e 64 65 64 20 74 6f 20 74 68 65 20 72 65 63 65 69 76 65 64 20 41 53 5f 50 41 54 48 2e | epended.to.the.received.AS_PATH. |
| 554a0 | 00 49 66 20 74 68 65 20 3a 63 66 67 63 6d 64 3a 60 72 65 70 6c 61 63 65 2d 61 73 60 20 61 74 74 | .If.the.:cfgcmd:`replace-as`.att |
| 554c0 | 72 69 62 75 74 65 20 69 73 20 73 70 65 63 69 66 69 65 64 2c 20 74 68 65 6e 20 6f 6e 6c 79 20 74 | ribute.is.specified,.then.only.t |
| 554e0 | 68 65 20 73 75 70 70 6c 69 65 64 20 6c 6f 63 61 6c 2d 61 73 20 69 73 20 70 72 65 70 65 6e 64 65 | he.supplied.local-as.is.prepende |
| 55500 | 64 20 74 6f 20 74 68 65 20 41 53 5f 50 41 54 48 20 77 68 65 6e 20 74 72 61 6e 73 6d 69 74 74 69 | d.to.the.AS_PATH.when.transmitti |
| 55520 | 6e 67 20 6c 6f 63 61 6c 2d 72 6f 75 74 65 20 75 70 64 61 74 65 73 20 74 6f 20 74 68 69 73 20 70 | ng.local-route.updates.to.this.p |
| 55540 | 65 65 72 2e 00 49 66 20 74 68 65 20 41 52 50 20 74 61 62 6c 65 20 61 6c 72 65 61 64 79 20 63 6f | eer..If.the.ARP.table.already.co |
| 55560 | 6e 74 61 69 6e 73 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 67 72 61 | ntains.the.IP.address.of.the.gra |
| 55580 | 74 75 69 74 6f 75 73 20 61 72 70 20 66 72 61 6d 65 2c 20 74 68 65 20 61 72 70 20 74 61 62 6c 65 | tuitous.arp.frame,.the.arp.table |
| 555a0 | 20 77 69 6c 6c 20 62 65 20 75 70 64 61 74 65 64 20 72 65 67 61 72 64 6c 65 73 73 20 69 66 20 74 | .will.be.updated.regardless.if.t |
| 555c0 | 68 69 73 20 73 65 74 74 69 6e 67 20 69 73 20 6f 6e 20 6f 72 20 6f 66 66 2e 00 49 66 20 74 68 65 | his.setting.is.on.or.off..If.the |
| 555e0 | 20 41 53 2d 50 61 74 68 20 66 6f 72 20 74 68 65 20 72 6f 75 74 65 20 68 61 73 20 61 20 70 72 69 | .AS-Path.for.the.route.has.a.pri |
| 55600 | 76 61 74 65 20 41 53 4e 20 62 65 74 77 65 65 6e 20 70 75 62 6c 69 63 20 41 53 4e 73 2c 20 69 74 | vate.ASN.between.public.ASNs,.it |
| 55620 | 20 69 73 20 61 73 73 75 6d 65 64 20 74 68 61 74 20 74 68 69 73 20 69 73 20 61 20 64 65 73 69 67 | .is.assumed.that.this.is.a.desig |
| 55640 | 6e 20 63 68 6f 69 63 65 2c 20 61 6e 64 20 74 68 65 20 70 72 69 76 61 74 65 20 41 53 4e 20 69 73 | n.choice,.and.the.private.ASN.is |
| 55660 | 20 6e 6f 74 20 72 65 6d 6f 76 65 64 2e 00 49 66 20 74 68 65 20 41 53 2d 50 61 74 68 20 66 6f 72 | .not.removed..If.the.AS-Path.for |
| 55680 | 20 74 68 65 20 72 6f 75 74 65 20 68 61 73 20 6f 6e 6c 79 20 70 72 69 76 61 74 65 20 41 53 4e 73 | .the.route.has.only.private.ASNs |
| 556a0 | 2c 20 74 68 65 20 70 72 69 76 61 74 65 20 41 53 4e 73 20 61 72 65 20 72 65 6d 6f 76 65 64 2e 00 | ,.the.private.ASNs.are.removed.. |
| 556c0 | 49 66 20 74 68 65 20 49 50 20 70 72 65 66 69 78 20 6d 61 73 6b 20 69 73 20 70 72 65 73 65 6e 74 | If.the.IP.prefix.mask.is.present |
| 556e0 | 2c 20 69 74 20 64 69 72 65 63 74 73 20 6f 70 65 6e 6e 68 72 70 20 74 6f 20 75 73 65 20 74 68 69 | ,.it.directs.opennhrp.to.use.thi |
| 55700 | 73 20 70 65 65 72 20 61 73 20 61 20 6e 65 78 74 20 68 6f 70 20 73 65 72 76 65 72 20 77 68 65 6e | s.peer.as.a.next.hop.server.when |
| 55720 | 20 73 65 6e 64 69 6e 67 20 52 65 73 6f 6c 75 74 69 6f 6e 20 52 65 71 75 65 73 74 73 20 6d 61 74 | .sending.Resolution.Requests.mat |
| 55740 | 63 68 69 6e 67 20 74 68 69 73 20 73 75 62 6e 65 74 2e 00 49 66 20 74 68 65 20 52 41 44 49 55 53 | ching.this.subnet..If.the.RADIUS |
| 55760 | 20 73 65 72 76 65 72 20 73 65 6e 64 73 20 74 68 65 20 61 74 74 72 69 62 75 74 65 20 60 60 44 65 | .server.sends.the.attribute.``De |
| 55780 | 6c 65 67 61 74 65 64 2d 49 50 76 36 2d 50 72 65 66 69 78 2d 50 6f 6f 6c 60 60 2c 20 49 50 76 36 | legated-IPv6-Prefix-Pool``,.IPv6 |
| 557a0 | 20 64 65 6c 65 67 61 74 69 6f 6e 20 70 65 66 69 78 20 77 69 6c 6c 20 62 65 20 61 6c 6c 6f 63 61 | .delegation.pefix.will.be.alloca |
| 557c0 | 74 65 64 20 66 72 6f 6d 20 61 20 70 72 65 64 65 66 69 6e 65 64 20 49 50 76 36 20 70 6f 6f 6c 20 | ted.from.a.predefined.IPv6.pool. |
| 557e0 | 60 60 64 65 6c 65 67 61 74 65 60 60 20 77 68 6f 73 65 20 6e 61 6d 65 20 65 71 75 61 6c 73 20 74 | ``delegate``.whose.name.equals.t |
| 55800 | 68 65 20 61 74 74 72 69 62 75 74 65 20 76 61 6c 75 65 2e 00 49 66 20 74 68 65 20 52 41 44 49 55 | he.attribute.value..If.the.RADIU |
| 55820 | 53 20 73 65 72 76 65 72 20 73 65 6e 64 73 20 74 68 65 20 61 74 74 72 69 62 75 74 65 20 60 60 44 | S.server.sends.the.attribute.``D |
| 55840 | 65 6c 65 67 61 74 65 64 2d 49 50 76 36 2d 50 72 65 66 69 78 2d 50 6f 6f 6c 60 60 2c 20 61 6e 20 | elegated-IPv6-Prefix-Pool``,.an. |
| 55860 | 49 50 76 36 20 64 65 6c 65 67 61 74 69 6f 6e 20 70 72 65 66 69 78 20 77 69 6c 6c 20 62 65 20 61 | IPv6.delegation.prefix.will.be.a |
| 55880 | 6c 6c 6f 63 61 74 65 64 20 66 72 6f 6d 20 61 20 70 72 65 64 65 66 69 6e 65 64 20 49 50 76 36 20 | llocated.from.a.predefined.IPv6. |
| 558a0 | 70 6f 6f 6c 20 60 60 64 65 6c 65 67 61 74 65 60 60 20 77 68 6f 73 65 20 6e 61 6d 65 20 65 71 75 | pool.``delegate``.whose.name.equ |
| 558c0 | 61 6c 73 20 74 68 65 20 61 74 74 72 69 62 75 74 65 20 76 61 6c 75 65 2e 00 49 66 20 74 68 65 20 | als.the.attribute.value..If.the. |
| 558e0 | 52 41 44 49 55 53 20 73 65 72 76 65 72 20 73 65 6e 64 73 20 74 68 65 20 61 74 74 72 69 62 75 74 | RADIUS.server.sends.the.attribut |
| 55900 | 65 20 60 60 46 72 61 6d 65 64 2d 49 50 2d 41 64 64 72 65 73 73 60 60 20 74 68 65 6e 20 74 68 69 | e.``Framed-IP-Address``.then.thi |
| 55920 | 73 20 49 50 20 61 64 64 72 65 73 73 20 77 69 6c 6c 20 62 65 20 61 6c 6c 6f 63 61 74 65 64 20 74 | s.IP.address.will.be.allocated.t |
| 55940 | 6f 20 74 68 65 20 63 6c 69 65 6e 74 20 61 6e 64 20 74 68 65 20 6f 70 74 69 6f 6e 20 60 60 64 65 | o.the.client.and.the.option.``de |
| 55960 | 66 61 75 6c 74 2d 70 6f 6f 6c 60 60 20 77 69 74 68 69 6e 20 74 68 65 20 43 4c 49 20 63 6f 6e 66 | fault-pool``.within.the.CLI.conf |
| 55980 | 69 67 20 69 73 20 62 65 69 6e 67 20 69 67 6e 6f 72 65 64 2e 00 49 66 20 74 68 65 20 52 41 44 49 | ig.is.being.ignored..If.the.RADI |
| 559a0 | 55 53 20 73 65 72 76 65 72 20 73 65 6e 64 73 20 74 68 65 20 61 74 74 72 69 62 75 74 65 20 60 60 | US.server.sends.the.attribute.`` |
| 559c0 | 46 72 61 6d 65 64 2d 49 50 2d 41 64 64 72 65 73 73 60 60 20 74 68 65 6e 20 74 68 69 73 20 49 50 | Framed-IP-Address``.then.this.IP |
| 559e0 | 20 61 64 64 72 65 73 73 20 77 69 6c 6c 20 62 65 20 61 6c 6c 6f 63 61 74 65 64 20 74 6f 20 74 68 | .address.will.be.allocated.to.th |
| 55a00 | 65 20 63 6c 69 65 6e 74 20 61 6e 64 20 74 68 65 20 6f 70 74 69 6f 6e 20 60 60 64 65 66 61 75 6c | e.client.and.the.option.``defaul |
| 55a20 | 74 2d 70 6f 6f 6c 60 60 20 77 69 74 68 69 6e 20 74 68 65 20 43 4c 49 20 63 6f 6e 66 69 67 20 77 | t-pool``.within.the.CLI.config.w |
| 55a40 | 69 6c 6c 20 62 65 20 69 67 6e 6f 72 65 64 2e 00 49 66 20 74 68 65 20 52 41 44 49 55 53 20 73 65 | ill.be.ignored..If.the.RADIUS.se |
| 55a60 | 72 76 65 72 20 73 65 6e 64 73 20 74 68 65 20 61 74 74 72 69 62 75 74 65 20 60 60 46 72 61 6d 65 | rver.sends.the.attribute.``Frame |
| 55a80 | 64 2d 49 50 2d 41 64 64 72 65 73 73 60 60 20 74 68 65 6e 20 74 68 69 73 20 49 50 20 61 64 64 72 | d-IP-Address``.then.this.IP.addr |
| 55aa0 | 65 73 73 20 77 69 6c 6c 20 62 65 20 61 6c 6c 6f 63 61 74 65 64 20 74 6f 20 74 68 65 20 63 6c 69 | ess.will.be.allocated.to.the.cli |
| 55ac0 | 65 6e 74 20 61 6e 64 20 74 68 65 20 6f 70 74 69 6f 6e 20 60 60 64 65 66 61 75 6c 74 2d 70 6f 6f | ent.and.the.option.``default-poo |
| 55ae0 | 6c 60 60 20 77 69 74 68 69 6e 20 74 68 65 20 43 4c 49 20 63 6f 6e 66 69 67 20 77 69 6c 6c 20 62 | l``.within.the.CLI.config.will.b |
| 55b00 | 65 69 6e 67 20 69 67 6e 6f 72 65 64 2e 00 49 66 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 | eing.ignored..If.the.RADIUS.serv |
| 55b20 | 65 72 20 73 65 6e 64 73 20 74 68 65 20 61 74 74 72 69 62 75 74 65 20 60 60 46 72 61 6d 65 64 2d | er.sends.the.attribute.``Framed- |
| 55b40 | 49 50 2d 41 64 64 72 65 73 73 60 60 20 74 68 65 6e 20 74 68 69 73 20 49 50 20 61 64 64 72 65 73 | IP-Address``.then.this.IP.addres |
| 55b60 | 73 20 77 69 6c 6c 20 62 65 20 61 6c 6c 6f 63 61 74 65 64 20 74 6f 20 74 68 65 20 63 6c 69 65 6e | s.will.be.allocated.to.the.clien |
| 55b80 | 74 20 61 6e 64 20 74 68 65 20 6f 70 74 69 6f 6e 20 69 70 2d 70 6f 6f 6c 20 77 69 74 68 69 6e 20 | t.and.the.option.ip-pool.within. |
| 55ba0 | 74 68 65 20 43 4c 49 20 63 6f 6e 66 69 67 20 69 73 20 62 65 69 6e 67 20 69 67 6e 6f 72 65 64 2e | the.CLI.config.is.being.ignored. |
| 55bc0 | 00 49 66 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 73 65 6e 64 73 20 74 68 65 20 | .If.the.RADIUS.server.sends.the. |
| 55be0 | 61 74 74 72 69 62 75 74 65 20 60 60 46 72 61 6d 65 64 2d 50 6f 6f 6c 60 60 2c 20 49 50 20 61 64 | attribute.``Framed-Pool``,.IP.ad |
| 55c00 | 64 72 65 73 73 20 77 69 6c 6c 20 62 65 20 61 6c 6c 6f 63 61 74 65 64 20 66 72 6f 6d 20 61 20 70 | dress.will.be.allocated.from.a.p |
| 55c20 | 72 65 64 65 66 69 6e 65 64 20 49 50 20 70 6f 6f 6c 20 77 68 6f 73 65 20 6e 61 6d 65 20 65 71 75 | redefined.IP.pool.whose.name.equ |
| 55c40 | 61 6c 73 20 74 68 65 20 61 74 74 72 69 62 75 74 65 20 76 61 6c 75 65 2e 00 49 66 20 74 68 65 20 | als.the.attribute.value..If.the. |
| 55c60 | 52 41 44 49 55 53 20 73 65 72 76 65 72 20 73 65 6e 64 73 20 74 68 65 20 61 74 74 72 69 62 75 74 | RADIUS.server.sends.the.attribut |
| 55c80 | 65 20 60 60 46 72 61 6d 65 64 2d 50 6f 6f 6c 60 60 2c 20 74 68 65 6e 20 74 68 65 20 49 50 20 61 | e.``Framed-Pool``,.then.the.IP.a |
| 55ca0 | 64 64 72 65 73 73 20 77 69 6c 6c 20 62 65 20 61 6c 6c 6f 63 61 74 65 64 20 66 72 6f 6d 20 61 20 | ddress.will.be.allocated.from.a. |
| 55cc0 | 70 72 65 64 65 66 69 6e 65 64 20 49 50 20 70 6f 6f 6c 20 77 68 6f 73 65 20 6e 61 6d 65 20 65 71 | predefined.IP.pool.whose.name.eq |
| 55ce0 | 75 61 6c 73 20 74 68 65 20 61 74 74 72 69 62 75 74 65 20 76 61 6c 75 65 2e 00 49 66 20 74 68 65 | uals.the.attribute.value..If.the |
| 55d00 | 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 73 65 6e 64 73 20 74 68 65 20 61 74 74 72 69 62 75 | .RADIUS.server.sends.the.attribu |
| 55d20 | 74 65 20 60 60 53 74 61 74 65 66 75 6c 2d 49 50 76 36 2d 41 64 64 72 65 73 73 2d 50 6f 6f 6c 60 | te.``Stateful-IPv6-Address-Pool` |
| 55d40 | 60 2c 20 49 50 76 36 20 61 64 64 72 65 73 73 20 77 69 6c 6c 20 62 65 20 61 6c 6c 6f 63 61 74 65 | `,.IPv6.address.will.be.allocate |
| 55d60 | 64 20 66 72 6f 6d 20 61 20 70 72 65 64 65 66 69 6e 65 64 20 49 50 76 36 20 70 6f 6f 6c 20 60 60 | d.from.a.predefined.IPv6.pool.`` |
| 55d80 | 70 72 65 66 69 78 60 60 20 77 68 6f 73 65 20 6e 61 6d 65 20 65 71 75 61 6c 73 20 74 68 65 20 61 | prefix``.whose.name.equals.the.a |
| 55da0 | 74 74 72 69 62 75 74 65 20 76 61 6c 75 65 2e 00 49 66 20 74 68 65 20 52 41 44 49 55 53 20 73 65 | ttribute.value..If.the.RADIUS.se |
| 55dc0 | 72 76 65 72 20 73 65 6e 64 73 20 74 68 65 20 61 74 74 72 69 62 75 74 65 20 60 60 53 74 61 74 65 | rver.sends.the.attribute.``State |
| 55de0 | 66 75 6c 2d 49 50 76 36 2d 41 64 64 72 65 73 73 2d 50 6f 6f 6c 60 60 2c 20 74 68 65 20 49 50 76 | ful-IPv6-Address-Pool``,.the.IPv |
| 55e00 | 36 20 61 64 64 72 65 73 73 20 77 69 6c 6c 20 62 65 20 61 6c 6c 6f 63 61 74 65 64 20 66 72 6f 6d | 6.address.will.be.allocated.from |
| 55e20 | 20 61 20 70 72 65 64 65 66 69 6e 65 64 20 49 50 76 36 20 70 6f 6f 6c 20 60 60 70 72 65 66 69 78 | .a.predefined.IPv6.pool.``prefix |
| 55e40 | 60 60 20 77 68 6f 73 65 20 6e 61 6d 65 20 65 71 75 61 6c 73 20 74 68 65 20 61 74 74 72 69 62 75 | ``.whose.name.equals.the.attribu |
| 55e60 | 74 65 20 76 61 6c 75 65 2e 00 49 66 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 75 | te.value..If.the.RADIUS.server.u |
| 55e80 | 73 65 73 20 74 68 65 20 61 74 74 72 69 62 75 74 65 20 60 60 4e 41 53 2d 50 6f 72 74 2d 49 64 60 | ses.the.attribute.``NAS-Port-Id` |
| 55ea0 | 60 2c 20 70 70 70 20 74 75 6e 6e 65 6c 73 20 77 69 6c 6c 20 62 65 20 72 65 6e 61 6d 65 64 2e 00 | `,.ppp.tunnels.will.be.renamed.. |
| 55ec0 | 49 66 20 74 68 65 20 61 76 65 72 61 67 65 20 71 75 65 75 65 20 73 69 7a 65 20 69 73 20 6c 6f 77 | If.the.average.queue.size.is.low |
| 55ee0 | 65 72 20 74 68 61 6e 20 74 68 65 20 2a 2a 6d 69 6e 2d 74 68 72 65 73 68 6f 6c 64 2a 2a 2c 20 61 | er.than.the.**min-threshold**,.a |
| 55f00 | 6e 20 61 72 72 69 76 69 6e 67 20 70 61 63 6b 65 74 20 77 69 6c 6c 20 62 65 20 70 6c 61 63 65 64 | n.arriving.packet.will.be.placed |
| 55f20 | 20 69 6e 20 74 68 65 20 71 75 65 75 65 2e 00 49 66 20 74 68 65 20 63 75 72 72 65 6e 74 20 71 75 | .in.the.queue..If.the.current.qu |
| 55f40 | 65 75 65 20 73 69 7a 65 20 69 73 20 6c 61 72 67 65 72 20 74 68 61 6e 20 2a 2a 71 75 65 75 65 2d | eue.size.is.larger.than.**queue- |
| 55f60 | 6c 69 6d 69 74 2a 2a 2c 20 74 68 65 6e 20 70 61 63 6b 65 74 73 20 77 69 6c 6c 20 62 65 20 64 72 | limit**,.then.packets.will.be.dr |
| 55f80 | 6f 70 70 65 64 2e 20 54 68 65 20 61 76 65 72 61 67 65 20 71 75 65 75 65 20 73 69 7a 65 20 64 65 | opped..The.average.queue.size.de |
| 55fa0 | 70 65 6e 64 73 20 6f 6e 20 69 74 73 20 66 6f 72 6d 65 72 20 61 76 65 72 61 67 65 20 73 69 7a 65 | pends.on.its.former.average.size |
| 55fc0 | 20 61 6e 64 20 69 74 73 20 63 75 72 72 65 6e 74 20 6f 6e 65 2e 00 49 66 20 74 68 65 20 69 6e 74 | .and.its.current.one..If.the.int |
| 55fe0 | 65 72 66 61 63 65 20 77 68 65 72 65 20 74 68 65 20 70 61 63 6b 65 74 20 77 61 73 20 72 65 63 65 | erface.where.the.packet.was.rece |
| 56000 | 69 76 65 64 20 69 73 20 70 61 72 74 20 6f 66 20 61 20 62 72 69 64 67 65 2c 20 74 68 65 6e 20 70 | ived.is.part.of.a.bridge,.then.p |
| 56020 | 61 63 6b 65 74 69 73 20 70 72 6f 63 65 73 73 65 64 20 61 74 20 74 68 65 20 2a 2a 42 72 69 64 67 | acketis.processed.at.the.**Bridg |
| 56040 | 65 20 4c 61 79 65 72 2a 2a 2c 20 77 68 69 63 68 20 63 6f 6e 74 61 69 6e 73 20 61 20 62 61 73 69 | e.Layer**,.which.contains.a.basi |
| 56060 | 63 20 73 65 74 75 70 20 66 6f 72 20 62 72 69 64 67 65 20 66 69 6c 74 65 72 69 6e 67 3a 00 49 66 | c.setup.for.bridge.filtering:.If |
| 56080 | 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 77 68 65 72 65 20 74 68 65 20 70 61 63 6b 65 74 20 | .the.interface.where.the.packet. |
| 560a0 | 77 61 73 20 72 65 63 65 69 76 65 64 20 69 73 20 70 61 72 74 20 6f 66 20 61 20 62 72 69 64 67 65 | was.received.is.part.of.a.bridge |
| 560c0 | 2c 20 74 68 65 6e 20 74 68 65 20 70 61 63 6b 65 74 20 69 73 20 70 72 6f 63 65 73 73 65 64 20 61 | ,.then.the.packet.is.processed.a |
| 560e0 | 74 20 74 68 65 20 2a 2a 42 72 69 64 67 65 20 4c 61 79 65 72 2a 2a 2c 20 77 68 69 63 68 20 63 6f | t.the.**Bridge.Layer**,.which.co |
| 56100 | 6e 74 61 69 6e 73 20 61 20 62 61 73 69 63 20 73 65 74 75 70 20 66 6f 72 20 62 72 69 64 67 65 20 | ntains.a.basic.setup.for.bridge. |
| 56120 | 66 69 6c 74 65 72 69 6e 67 3a 00 49 66 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 77 68 65 72 | filtering:.If.the.interface.wher |
| 56140 | 65 20 74 68 65 20 70 61 63 6b 65 74 20 77 61 73 20 72 65 63 65 69 76 65 64 20 69 73 20 70 61 72 | e.the.packet.was.received.is.par |
| 56160 | 74 20 6f 66 20 61 20 62 72 69 64 67 65 2c 20 74 68 65 6e 20 74 68 65 20 70 61 63 6b 65 74 20 69 | t.of.a.bridge,.then.the.packet.i |
| 56180 | 73 20 70 72 6f 63 65 73 73 65 64 20 61 74 20 74 68 65 20 2a 2a 42 72 69 64 67 65 20 4c 61 79 65 | s.processed.at.the.**Bridge.Laye |
| 561a0 | 72 2a 2a 3a 00 49 66 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 77 68 65 72 65 20 74 68 65 20 | r**:.If.the.interface.where.the. |
| 561c0 | 70 61 63 6b 65 74 20 77 61 73 20 72 65 63 65 69 76 65 64 20 69 73 6e 27 74 20 70 61 72 74 20 6f | packet.was.received.isn't.part.o |
| 561e0 | 66 20 61 20 62 72 69 64 67 65 2c 20 74 68 65 6e 20 70 61 63 6b 65 74 20 69 73 20 70 72 6f 63 65 | f.a.bridge,.then.packet.is.proce |
| 56200 | 73 73 65 64 20 61 74 20 74 68 65 20 2a 2a 49 50 20 4c 61 79 65 72 2a 2a 3a 00 49 66 20 74 68 65 | ssed.at.the.**IP.Layer**:.If.the |
| 56220 | 20 69 6e 74 65 72 66 61 63 65 20 77 68 65 72 65 20 74 68 65 20 70 61 63 6b 65 74 20 77 61 73 20 | .interface.where.the.packet.was. |
| 56240 | 72 65 63 65 69 76 65 64 20 69 73 6e 27 74 20 70 61 72 74 20 6f 66 20 61 20 62 72 69 64 67 65 2c | received.isn't.part.of.a.bridge, |
| 56260 | 20 74 68 65 6e 20 70 61 63 6b 65 74 69 73 20 70 72 6f 63 65 73 73 65 64 20 61 74 20 74 68 65 20 | .then.packetis.processed.at.the. |
| 56280 | 2a 2a 49 50 20 4c 61 79 65 72 2a 2a 3a 00 49 66 20 74 68 65 20 70 72 6f 74 6f 63 6f 6c 20 69 73 | **IP.Layer**:.If.the.protocol.is |
| 562a0 | 20 49 50 76 36 20 74 68 65 6e 20 74 68 65 20 73 6f 75 72 63 65 20 61 6e 64 20 64 65 73 74 69 6e | .IPv6.then.the.source.and.destin |
| 562c0 | 61 74 69 6f 6e 20 61 64 64 72 65 73 73 65 73 20 61 72 65 20 66 69 72 73 74 20 68 61 73 68 65 64 | ation.addresses.are.first.hashed |
| 562e0 | 20 75 73 69 6e 67 20 69 70 76 36 5f 61 64 64 72 5f 68 61 73 68 2e 00 49 66 20 74 68 65 20 73 74 | .using.ipv6_addr_hash..If.the.st |
| 56300 | 61 74 69 63 61 6c 6c 79 20 6d 61 70 70 65 64 20 70 65 65 72 20 69 73 20 72 75 6e 6e 69 6e 67 20 | atically.mapped.peer.is.running. |
| 56320 | 43 69 73 63 6f 20 49 4f 53 2c 20 73 70 65 63 69 66 79 20 74 68 65 20 63 69 73 63 6f 20 6b 65 79 | Cisco.IOS,.specify.the.cisco.key |
| 56340 | 77 6f 72 64 2e 20 49 74 20 69 73 20 75 73 65 64 20 74 6f 20 66 69 78 20 73 74 61 74 69 63 61 6c | word..It.is.used.to.fix.statical |
| 56360 | 6c 79 20 74 68 65 20 52 65 67 69 73 74 72 61 74 69 6f 6e 20 52 65 71 75 65 73 74 20 49 44 20 73 | ly.the.Registration.Request.ID.s |
| 56380 | 6f 20 74 68 61 74 20 61 20 6d 61 74 63 68 69 6e 67 20 50 75 72 67 65 20 52 65 71 75 65 73 74 20 | o.that.a.matching.Purge.Request. |
| 563a0 | 63 61 6e 20 62 65 20 73 65 6e 74 20 69 66 20 4e 42 4d 41 20 61 64 64 72 65 73 73 20 68 61 73 20 | can.be.sent.if.NBMA.address.has. |
| 563c0 | 63 68 61 6e 67 65 64 2e 20 54 68 69 73 20 69 73 20 74 6f 20 77 6f 72 6b 20 61 72 6f 75 6e 64 20 | changed..This.is.to.work.around. |
| 563e0 | 62 72 6f 6b 65 6e 20 49 4f 53 20 77 68 69 63 68 20 72 65 71 75 69 72 65 73 20 50 75 72 67 65 20 | broken.IOS.which.requires.Purge. |
| 56400 | 52 65 71 75 65 73 74 20 49 44 20 74 6f 20 6d 61 74 63 68 20 74 68 65 20 6f 72 69 67 69 6e 61 6c | Request.ID.to.match.the.original |
| 56420 | 20 52 65 67 69 73 74 72 61 74 69 6f 6e 20 52 65 71 75 65 73 74 20 49 44 2e 00 49 66 20 74 68 65 | .Registration.Request.ID..If.the |
| 56440 | 20 73 79 73 74 65 6d 20 64 65 74 65 63 74 73 20 61 6e 20 75 6e 63 6f 6e 66 69 67 75 72 65 64 20 | .system.detects.an.unconfigured. |
| 56460 | 77 69 72 65 6c 65 73 73 20 64 65 76 69 63 65 2c 20 69 74 20 77 69 6c 6c 20 62 65 20 61 75 74 6f | wireless.device,.it.will.be.auto |
| 56480 | 6d 61 74 69 63 61 6c 6c 79 20 61 64 64 65 64 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f | matically.added.the.configuratio |
| 564a0 | 6e 20 74 72 65 65 2c 20 73 70 65 63 69 66 79 69 6e 67 20 61 6e 79 20 64 65 74 65 63 74 65 64 20 | n.tree,.specifying.any.detected. |
| 564c0 | 73 65 74 74 69 6e 67 73 20 28 66 6f 72 20 65 78 61 6d 70 6c 65 2c 20 69 74 73 20 4d 41 43 20 61 | settings.(for.example,.its.MAC.a |
| 564e0 | 64 64 72 65 73 73 29 20 61 6e 64 20 63 6f 6e 66 69 67 75 72 65 64 20 74 6f 20 72 75 6e 20 69 6e | ddress).and.configured.to.run.in |
| 56500 | 20 6d 6f 6e 69 74 6f 72 20 6d 6f 64 65 2e 00 49 66 20 74 68 65 20 74 61 62 6c 65 20 69 73 20 65 | .monitor.mode..If.the.table.is.e |
| 56520 | 6d 70 74 79 20 61 6e 64 20 79 6f 75 20 68 61 76 65 20 61 20 77 61 72 6e 69 6e 67 20 6d 65 73 73 | mpty.and.you.have.a.warning.mess |
| 56540 | 61 67 65 2c 20 69 74 20 6d 65 61 6e 73 20 63 6f 6e 6e 74 72 61 63 6b 20 69 73 20 6e 6f 74 20 65 | age,.it.means.conntrack.is.not.e |
| 56560 | 6e 61 62 6c 65 64 2e 20 54 6f 20 65 6e 61 62 6c 65 20 63 6f 6e 6e 74 72 61 63 6b 2c 20 6a 75 73 | nabled..To.enable.conntrack,.jus |
| 56580 | 74 20 63 72 65 61 74 65 20 61 20 4e 41 54 20 6f 72 20 61 20 66 69 72 65 77 61 6c 6c 20 72 75 6c | t.create.a.NAT.or.a.firewall.rul |
| 565a0 | 65 2e 20 3a 63 66 67 63 6d 64 3a 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 73 74 61 74 65 2d 70 | e..:cfgcmd:`set.firewall.state-p |
| 565c0 | 6f 6c 69 63 79 20 65 73 74 61 62 6c 69 73 68 65 64 20 61 63 74 69 6f 6e 20 61 63 63 65 70 74 60 | olicy.established.action.accept` |
| 565e0 | 00 49 66 20 74 68 65 72 65 20 61 72 65 20 6e 6f 20 66 72 65 65 20 61 64 64 72 65 73 73 65 73 20 | .If.there.are.no.free.addresses. |
| 56600 | 62 75 74 20 74 68 65 72 65 20 61 72 65 20 61 62 61 6e 64 6f 6e 65 64 20 49 50 20 61 64 64 72 65 | but.there.are.abandoned.IP.addre |
| 56620 | 73 73 65 73 2c 20 74 68 65 20 44 48 43 50 20 73 65 72 76 65 72 20 77 69 6c 6c 20 61 74 74 65 6d | sses,.the.DHCP.server.will.attem |
| 56640 | 70 74 20 74 6f 20 72 65 63 6c 61 69 6d 20 61 6e 20 61 62 61 6e 64 6f 6e 65 64 20 49 50 20 61 64 | pt.to.reclaim.an.abandoned.IP.ad |
| 56660 | 64 72 65 73 73 20 72 65 67 61 72 64 6c 65 73 73 20 6f 66 20 74 68 65 20 76 61 6c 75 65 20 6f 66 | dress.regardless.of.the.value.of |
| 56680 | 20 61 62 61 6e 64 6f 6e 2d 6c 65 61 73 65 2d 74 69 6d 65 2e 00 49 66 20 74 68 65 72 65 20 69 73 | .abandon-lease-time..If.there.is |
| 566a0 | 20 53 4e 41 54 20 72 75 6c 65 73 20 6f 6e 20 65 74 68 31 2c 20 6e 65 65 64 20 74 6f 20 61 64 64 | .SNAT.rules.on.eth1,.need.to.add |
| 566c0 | 20 65 78 63 6c 75 64 65 20 72 75 6c 65 00 49 66 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 | .exclude.rule.If.this.command.is |
| 566e0 | 20 69 6e 76 6f 6b 65 64 20 66 72 6f 6d 20 63 6f 6e 66 69 67 75 72 65 20 6d 6f 64 65 20 77 69 74 | .invoked.from.configure.mode.wit |
| 56700 | 68 20 74 68 65 20 60 60 72 75 6e 60 60 20 70 72 65 66 69 78 20 74 68 65 20 6b 65 79 20 69 73 20 | h.the.``run``.prefix.the.key.is. |
| 56720 | 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 69 6e 73 74 61 6c 6c 65 64 20 74 6f 20 74 68 65 20 61 | automatically.installed.to.the.a |
| 56740 | 70 70 72 6f 70 72 69 61 74 65 20 69 6e 74 65 72 66 61 63 65 3a 00 49 66 20 74 68 69 73 20 69 73 | ppropriate.interface:.If.this.is |
| 56760 | 20 73 65 74 20 74 68 65 20 72 65 6c 61 79 20 61 67 65 6e 74 20 77 69 6c 6c 20 69 6e 73 65 72 74 | .set.the.relay.agent.will.insert |
| 56780 | 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 49 44 2e 20 54 68 69 73 20 6f 70 74 69 6f 6e 20 69 | .the.interface.ID..This.option.i |
| 567a0 | 73 20 73 65 74 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 69 66 20 6d 6f 72 65 20 74 68 61 6e | s.set.automatically.if.more.than |
| 567c0 | 20 6f 6e 65 20 6c 69 73 74 65 6e 69 6e 67 20 69 6e 74 65 72 66 61 63 65 73 20 61 72 65 20 69 6e | .one.listening.interfaces.are.in |
| 567e0 | 20 75 73 65 2e 00 49 66 20 74 68 69 73 20 6f 70 74 69 6f 6e 20 69 73 20 65 6e 61 62 6c 65 64 2c | .use..If.this.option.is.enabled, |
| 56800 | 20 74 68 65 6e 20 74 68 65 20 61 6c 72 65 61 64 79 2d 73 65 6c 65 63 74 65 64 20 63 68 65 63 6b | .then.the.already-selected.check |
| 56820 | 2c 20 77 68 65 72 65 20 61 6c 72 65 61 64 79 20 73 65 6c 65 63 74 65 64 20 65 42 47 50 20 72 6f | ,.where.already.selected.eBGP.ro |
| 56840 | 75 74 65 73 20 61 72 65 20 70 72 65 66 65 72 72 65 64 2c 20 69 73 20 73 6b 69 70 70 65 64 2e 00 | utes.are.preferred,.is.skipped.. |
| 56860 | 49 66 20 74 68 69 73 20 6f 70 74 69 6f 6e 20 69 73 20 67 69 76 65 6e 2c 20 6f 6e 6c 79 20 53 53 | If.this.option.is.given,.only.SS |
| 56880 | 54 50 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 74 6f 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 | TP.connections.to.the.specified. |
| 568a0 | 68 6f 73 74 20 61 6e 64 20 77 69 74 68 20 74 68 65 20 73 61 6d 65 20 54 4c 53 20 53 4e 49 20 77 | host.and.with.the.same.TLS.SNI.w |
| 568c0 | 69 6c 6c 20 62 65 20 61 6c 6c 6f 77 65 64 2e 00 49 66 20 74 68 69 73 20 6f 70 74 69 6f 6e 20 69 | ill.be.allowed..If.this.option.i |
| 568e0 | 73 20 73 70 65 63 69 66 69 65 64 20 61 6e 64 20 69 73 20 67 72 65 61 74 65 72 20 74 68 61 6e 20 | s.specified.and.is.greater.than. |
| 56900 | 30 2c 20 74 68 65 6e 20 74 68 65 20 50 50 50 20 6d 6f 64 75 6c 65 20 77 69 6c 6c 20 73 65 6e 64 | 0,.then.the.PPP.module.will.send |
| 56920 | 20 4c 43 50 20 65 63 68 6f 20 72 65 71 75 65 73 74 73 20 65 76 65 72 79 20 60 3c 69 6e 74 65 72 | .LCP.echo.requests.every.`<inter |
| 56940 | 76 61 6c 3e 60 20 73 65 63 6f 6e 64 73 2e 20 44 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 | val>`.seconds..Default.value.is. |
| 56960 | 2a 2a 33 30 2a 2a 2e 00 49 66 20 74 68 69 73 20 6f 70 74 69 6f 6e 20 69 73 20 73 70 65 63 69 66 | **30**..If.this.option.is.specif |
| 56980 | 69 65 64 20 61 6e 64 20 69 73 20 67 72 65 61 74 65 72 20 74 68 61 6e 20 30 2c 20 74 68 65 6e 20 | ied.and.is.greater.than.0,.then. |
| 569a0 | 74 68 65 20 50 50 50 20 6d 6f 64 75 6c 65 20 77 69 6c 6c 20 73 65 6e 64 20 4c 43 50 20 70 69 6e | the.PPP.module.will.send.LCP.pin |
| 569c0 | 67 73 20 6f 66 20 74 68 65 20 65 63 68 6f 20 72 65 71 75 65 73 74 20 65 76 65 72 79 20 60 3c 69 | gs.of.the.echo.request.every.`<i |
| 569e0 | 6e 74 65 72 76 61 6c 3e 60 20 73 65 63 6f 6e 64 73 2e 00 49 66 20 74 68 69 73 20 6f 70 74 69 6f | nterval>`.seconds..If.this.optio |
| 56a00 | 6e 20 69 73 20 73 70 65 63 69 66 69 65 64 20 61 6e 64 20 69 73 20 67 72 65 61 74 65 72 20 74 68 | n.is.specified.and.is.greater.th |
| 56a20 | 61 6e 20 30 2c 20 74 68 65 6e 20 74 68 65 20 50 50 50 20 6d 6f 64 75 6c 65 20 77 69 6c 6c 20 73 | an.0,.then.the.PPP.module.will.s |
| 56a40 | 65 6e 64 20 4c 43 50 20 70 69 6e 67 73 20 6f 66 20 74 68 65 20 65 63 68 6f 20 72 65 71 75 65 73 | end.LCP.pings.of.the.echo.reques |
| 56a60 | 74 20 65 76 65 72 79 20 60 3c 69 6e 74 65 72 76 61 6c 3e 60 20 73 65 63 6f 6e 64 73 2e 20 44 65 | t.every.`<interval>`.seconds..De |
| 56a80 | 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 2a 2a 33 30 2a 2a 2e 00 49 66 20 74 68 69 73 20 6f | fault.value.is.**30**..If.this.o |
| 56aa0 | 70 74 69 6f 6e 20 69 73 20 75 6e 73 65 74 20 28 64 65 66 61 75 6c 74 29 2c 20 69 6e 63 6f 6d 69 | ption.is.unset.(default),.incomi |
| 56ac0 | 6e 67 20 49 50 20 64 69 72 65 63 74 65 64 20 62 72 6f 61 64 63 61 73 74 20 70 61 63 6b 65 74 73 | ng.IP.directed.broadcast.packets |
| 56ae0 | 20 77 69 6c 6c 20 6e 6f 74 20 62 65 20 66 6f 72 77 61 72 64 65 64 2e 00 49 66 20 74 68 69 73 20 | .will.not.be.forwarded..If.this. |
| 56b00 | 6f 70 74 69 6f 6e 20 69 73 20 75 6e 73 65 74 20 28 64 65 66 61 75 6c 74 29 2c 20 72 65 70 6c 79 | option.is.unset.(default),.reply |
| 56b20 | 20 66 6f 72 20 61 6e 79 20 6c 6f 63 61 6c 20 74 61 72 67 65 74 20 49 50 20 61 64 64 72 65 73 73 | .for.any.local.target.IP.address |
| 56b40 | 2c 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 61 6e 79 20 69 6e 74 65 72 66 61 63 65 2e 00 49 | ,.configured.on.any.interface..I |
| 56b60 | 66 20 74 68 69 73 20 70 61 72 61 6d 65 74 65 72 20 69 73 20 6e 6f 74 20 73 65 74 20 6f 72 20 30 | f.this.parameter.is.not.set.or.0 |
| 56b80 | 2c 20 61 6e 20 6f 6e 2d 64 65 6d 61 6e 64 20 6c 69 6e 6b 20 77 69 6c 6c 20 6e 6f 74 20 62 65 20 | ,.an.on-demand.link.will.not.be. |
| 56ba0 | 74 61 6b 65 6e 20 64 6f 77 6e 20 77 68 65 6e 20 69 74 20 69 73 20 69 64 6c 65 20 61 6e 64 20 61 | taken.down.when.it.is.idle.and.a |
| 56bc0 | 66 74 65 72 20 74 68 65 20 69 6e 69 74 69 61 6c 20 65 73 74 61 62 6c 69 73 68 6d 65 6e 74 20 6f | fter.the.initial.establishment.o |
| 56be0 | 66 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 20 49 74 20 77 69 6c 6c 20 73 74 61 79 20 75 | f.the.connection..It.will.stay.u |
| 56c00 | 70 20 66 6f 72 65 76 65 72 2e 00 49 66 20 74 68 69 73 20 70 61 72 61 6d 65 74 65 72 20 69 73 20 | p.forever..If.this.parameter.is. |
| 56c20 | 6e 6f 74 20 73 65 74 2c 20 74 68 65 20 64 65 66 61 75 6c 74 20 68 6f 6c 64 6f 66 66 20 74 69 6d | not.set,.the.default.holdoff.tim |
| 56c40 | 65 20 69 73 20 33 30 20 73 65 63 6f 6e 64 73 2e 00 49 66 20 75 6e 73 65 74 2c 20 69 6e 63 6f 6d | e.is.30.seconds..If.unset,.incom |
| 56c60 | 69 6e 67 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 74 6f 20 74 68 65 20 52 41 44 49 55 53 20 73 65 | ing.connections.to.the.RADIUS.se |
| 56c80 | 72 76 65 72 20 77 69 6c 6c 20 75 73 65 20 74 68 65 20 6e 65 61 72 65 73 74 20 69 6e 74 65 72 66 | rver.will.use.the.nearest.interf |
| 56ca0 | 61 63 65 20 61 64 64 72 65 73 73 20 70 6f 69 6e 74 69 6e 67 20 74 6f 77 61 72 64 73 20 74 68 65 | ace.address.pointing.towards.the |
| 56cc0 | 20 73 65 72 76 65 72 20 2d 20 6d 61 6b 69 6e 67 20 69 74 20 65 72 72 6f 72 20 70 72 6f 6e 65 20 | .server.-.making.it.error.prone. |
| 56ce0 | 6f 6e 20 65 2e 67 2e 20 4f 53 50 46 20 6e 65 74 77 6f 72 6b 73 20 77 68 65 6e 20 61 20 6c 69 6e | on.e.g..OSPF.networks.when.a.lin |
| 56d00 | 6b 20 66 61 69 6c 73 20 61 6e 64 20 61 20 62 61 63 6b 75 70 20 72 6f 75 74 65 20 69 73 20 74 61 | k.fails.and.a.backup.route.is.ta |
| 56d20 | 6b 65 6e 2e 00 49 66 20 75 6e 73 65 74 2c 20 69 6e 63 6f 6d 69 6e 67 20 63 6f 6e 6e 65 63 74 69 | ken..If.unset,.incoming.connecti |
| 56d40 | 6f 6e 73 20 74 6f 20 74 68 65 20 54 41 43 41 43 53 20 73 65 72 76 65 72 20 77 69 6c 6c 20 75 73 | ons.to.the.TACACS.server.will.us |
| 56d60 | 65 20 74 68 65 20 6e 65 61 72 65 73 74 20 69 6e 74 65 72 66 61 63 65 20 61 64 64 72 65 73 73 20 | e.the.nearest.interface.address. |
| 56d80 | 70 6f 69 6e 74 69 6e 67 20 74 6f 77 61 72 64 73 20 74 68 65 20 73 65 72 76 65 72 20 2d 20 6d 61 | pointing.towards.the.server.-.ma |
| 56da0 | 6b 69 6e 67 20 69 74 20 65 72 72 6f 72 20 70 72 6f 6e 65 20 6f 6e 20 65 2e 67 2e 20 4f 53 50 46 | king.it.error.prone.on.e.g..OSPF |
| 56dc0 | 20 6e 65 74 77 6f 72 6b 73 20 77 68 65 6e 20 61 20 6c 69 6e 6b 20 66 61 69 6c 73 20 61 6e 64 20 | .networks.when.a.link.fails.and. |
| 56de0 | 61 20 62 61 63 6b 75 70 20 72 6f 75 74 65 20 69 73 20 74 61 6b 65 6e 2e 00 49 66 20 79 6f 75 20 | a.backup.route.is.taken..If.you. |
| 56e00 | 61 70 70 6c 79 20 61 20 70 61 72 61 6d 65 74 65 72 20 74 6f 20 61 6e 20 69 6e 64 69 76 69 64 75 | apply.a.parameter.to.an.individu |
| 56e20 | 61 6c 20 6e 65 69 67 68 62 6f 72 20 49 50 20 61 64 64 72 65 73 73 2c 20 79 6f 75 20 6f 76 65 72 | al.neighbor.IP.address,.you.over |
| 56e40 | 72 69 64 65 20 74 68 65 20 61 63 74 69 6f 6e 20 64 65 66 69 6e 65 64 20 66 6f 72 20 61 20 70 65 | ride.the.action.defined.for.a.pe |
| 56e60 | 65 72 20 67 72 6f 75 70 20 74 68 61 74 20 69 6e 63 6c 75 64 65 73 20 74 68 61 74 20 49 50 20 61 | er.group.that.includes.that.IP.a |
| 56e80 | 64 64 72 65 73 73 2e 00 49 66 20 79 6f 75 20 61 72 65 20 61 20 68 61 63 6b 65 72 20 6f 72 20 77 | ddress..If.you.are.a.hacker.or.w |
| 56ea0 | 61 6e 74 20 74 6f 20 74 72 79 20 6f 6e 20 79 6f 75 72 20 6f 77 6e 20 77 65 20 73 75 70 70 6f 72 | ant.to.try.on.your.own.we.suppor |
| 56ec0 | 74 20 70 61 73 73 69 6e 67 20 72 61 77 20 4f 70 65 6e 56 50 4e 20 6f 70 74 69 6f 6e 73 20 74 6f | t.passing.raw.OpenVPN.options.to |
| 56ee0 | 20 4f 70 65 6e 56 50 4e 2e 00 49 66 20 79 6f 75 20 61 72 65 20 63 6f 6e 66 69 67 75 72 69 6e 67 | .OpenVPN..If.you.are.configuring |
| 56f00 | 20 61 20 56 52 46 20 66 6f 72 20 6d 61 6e 61 67 65 6d 65 6e 74 20 70 75 72 70 6f 73 65 73 2c 20 | .a.VRF.for.management.purposes,. |
| 56f20 | 74 68 65 72 65 20 69 73 20 63 75 72 72 65 6e 74 6c 79 20 6e 6f 20 77 61 79 20 74 6f 20 66 6f 72 | there.is.currently.no.way.to.for |
| 56f40 | 63 65 20 73 79 73 74 65 6d 20 44 4e 53 20 74 72 61 66 66 69 63 20 76 69 61 20 61 20 73 70 65 63 | ce.system.DNS.traffic.via.a.spec |
| 56f60 | 69 66 69 63 20 56 52 46 2e 00 49 66 20 79 6f 75 20 61 72 65 20 6e 65 77 20 74 6f 20 74 68 65 73 | ific.VRF..If.you.are.new.to.thes |
| 56f80 | 65 20 72 6f 75 74 69 6e 67 20 73 65 63 75 72 69 74 79 20 74 65 63 68 6e 6f 6c 6f 67 69 65 73 20 | e.routing.security.technologies. |
| 56fa0 | 74 68 65 6e 20 74 68 65 72 65 20 69 73 20 61 6e 20 60 65 78 63 65 6c 6c 65 6e 74 20 67 75 69 64 | then.there.is.an.`excellent.guid |
| 56fc0 | 65 20 74 6f 20 52 50 4b 49 60 5f 20 62 79 20 4e 4c 6e 65 74 20 4c 61 62 73 20 77 68 69 63 68 20 | e.to.RPKI`_.by.NLnet.Labs.which. |
| 56fe0 | 77 69 6c 6c 20 67 65 74 20 79 6f 75 20 75 70 20 74 6f 20 73 70 65 65 64 20 76 65 72 79 20 71 75 | will.get.you.up.to.speed.very.qu |
| 57000 | 69 63 6b 6c 79 2e 20 54 68 65 69 72 20 64 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 65 78 70 6c 61 | ickly..Their.documentation.expla |
| 57020 | 69 6e 73 20 65 76 65 72 79 74 68 69 6e 67 20 66 72 6f 6d 20 77 68 61 74 20 52 50 4b 49 20 69 73 | ins.everything.from.what.RPKI.is |
| 57040 | 20 74 6f 20 64 65 70 6c 6f 79 69 6e 67 20 69 74 20 69 6e 20 70 72 6f 64 75 63 74 69 6f 6e 2e 20 | .to.deploying.it.in.production.. |
| 57060 | 49 74 20 61 6c 73 6f 20 68 61 73 20 73 6f 6d 65 20 60 68 65 6c 70 20 61 6e 64 20 6f 70 65 72 61 | It.also.has.some.`help.and.opera |
| 57080 | 74 69 6f 6e 61 6c 20 67 75 69 64 61 6e 63 65 60 5f 20 69 6e 63 6c 75 64 69 6e 67 20 22 57 68 61 | tional.guidance`_.including."Wha |
| 570a0 | 74 20 63 61 6e 20 49 20 64 6f 20 61 62 6f 75 74 20 6d 79 20 72 6f 75 74 65 20 68 61 76 69 6e 67 | t.can.I.do.about.my.route.having |
| 570c0 | 20 61 6e 20 49 6e 76 61 6c 69 64 20 73 74 61 74 65 3f 22 00 49 66 20 79 6f 75 20 61 72 65 20 72 | .an.Invalid.state?".If.you.are.r |
| 570e0 | 65 73 70 6f 6e 73 69 62 6c 65 20 66 6f 72 20 74 68 65 20 67 6c 6f 62 61 6c 20 61 64 64 72 65 73 | esponsible.for.the.global.addres |
| 57100 | 73 65 73 20 61 73 73 69 67 6e 65 64 20 74 6f 20 79 6f 75 72 20 6e 65 74 77 6f 72 6b 2c 20 70 6c | ses.assigned.to.your.network,.pl |
| 57120 | 65 61 73 65 20 6d 61 6b 65 20 73 75 72 65 20 74 68 61 74 20 79 6f 75 72 20 70 72 65 66 69 78 65 | ease.make.sure.that.your.prefixe |
| 57140 | 73 20 68 61 76 65 20 52 4f 41 73 20 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 74 68 65 6d | s.have.ROAs.associated.with.them |
| 57160 | 20 74 6f 20 61 76 6f 69 64 20 62 65 69 6e 67 20 60 6e 6f 74 66 6f 75 6e 64 60 20 62 79 20 52 50 | .to.avoid.being.`notfound`.by.RP |
| 57180 | 4b 49 2e 20 46 6f 72 20 6d 6f 73 74 20 41 53 4e 73 20 74 68 69 73 20 77 69 6c 6c 20 69 6e 76 6f | KI..For.most.ASNs.this.will.invo |
| 571a0 | 6c 76 65 20 70 75 62 6c 69 73 68 69 6e 67 20 52 4f 41 73 20 76 69 61 20 79 6f 75 72 20 3a 61 62 | lve.publishing.ROAs.via.your.:ab |
| 571c0 | 62 72 3a 60 52 49 52 20 28 52 65 67 69 6f 6e 61 6c 20 49 6e 74 65 72 6e 65 74 20 52 65 67 69 73 | br:`RIR.(Regional.Internet.Regis |
| 571e0 | 74 72 79 29 60 20 28 52 49 50 45 20 4e 43 43 2c 20 41 50 4e 49 43 2c 20 41 52 49 4e 2c 20 4c 41 | try)`.(RIPE.NCC,.APNIC,.ARIN,.LA |
| 57200 | 43 4e 49 43 20 6f 72 20 41 46 52 49 4e 49 43 29 2c 20 61 6e 64 20 69 73 20 73 6f 6d 65 74 68 69 | CNIC.or.AFRINIC),.and.is.somethi |
| 57220 | 6e 67 20 79 6f 75 20 61 72 65 20 65 6e 63 6f 75 72 61 67 65 64 20 74 6f 20 64 6f 20 77 68 65 6e | ng.you.are.encouraged.to.do.when |
| 57240 | 65 76 65 72 20 79 6f 75 20 70 6c 61 6e 20 74 6f 20 61 6e 6e 6f 75 6e 63 65 20 61 64 64 72 65 73 | ever.you.plan.to.announce.addres |
| 57260 | 73 65 73 20 69 6e 74 6f 20 74 68 65 20 44 46 5a 2e 00 49 66 20 79 6f 75 20 61 72 65 20 72 65 73 | ses.into.the.DFZ..If.you.are.res |
| 57280 | 70 6f 6e 73 69 62 6c 65 20 66 6f 72 20 74 68 65 20 67 6c 6f 62 61 6c 20 61 64 64 72 65 73 73 65 | ponsible.for.the.global.addresse |
| 572a0 | 73 20 61 73 73 69 67 6e 65 64 20 74 6f 20 79 6f 75 72 20 6e 65 74 77 6f 72 6b 2c 20 70 6c 65 61 | s.assigned.to.your.network,.plea |
| 572c0 | 73 65 20 6d 61 6b 65 20 73 75 72 65 20 74 68 61 74 20 79 6f 75 72 20 70 72 65 66 69 78 65 73 20 | se.make.sure.that.your.prefixes. |
| 572e0 | 68 61 76 65 20 52 4f 41 73 20 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 74 68 65 6d 20 74 | have.ROAs.associated.with.them.t |
| 57300 | 6f 20 61 76 6f 69 64 20 62 65 69 6e 67 20 60 6e 6f 74 66 6f 75 6e 64 60 20 62 79 20 52 50 4b 49 | o.avoid.being.`notfound`.by.RPKI |
| 57320 | 2e 20 46 6f 72 20 6d 6f 73 74 20 41 53 4e 73 20 74 68 69 73 20 77 69 6c 6c 20 69 6e 76 6f 6c 76 | ..For.most.ASNs.this.will.involv |
| 57340 | 65 20 70 75 62 6c 69 73 68 69 6e 67 20 52 4f 41 73 20 76 69 61 20 79 6f 75 72 20 3a 61 62 62 72 | e.publishing.ROAs.via.your.:abbr |
| 57360 | 3a 60 52 49 52 20 28 52 65 67 69 6f 6e 61 6c 20 49 6e 74 65 72 6e 65 74 20 52 65 67 69 73 74 72 | :`RIR.(Regional.Internet.Registr |
| 57380 | 79 29 60 20 28 52 49 50 45 20 4e 43 43 2c 20 41 50 4e 49 43 2c 20 41 52 49 4e 2c 20 4c 41 43 4e | y)`.(RIPE.NCC,.APNIC,.ARIN,.LACN |
| 573a0 | 49 43 2c 20 6f 72 20 41 46 52 49 4e 49 43 29 2c 20 61 6e 64 20 69 73 20 73 6f 6d 65 74 68 69 6e | IC,.or.AFRINIC),.and.is.somethin |
| 573c0 | 67 20 79 6f 75 20 61 72 65 20 65 6e 63 6f 75 72 61 67 65 64 20 74 6f 20 64 6f 20 77 68 65 6e 65 | g.you.are.encouraged.to.do.whene |
| 573e0 | 76 65 72 20 79 6f 75 20 70 6c 61 6e 20 74 6f 20 61 6e 6e 6f 75 6e 63 65 20 61 64 64 72 65 73 73 | ver.you.plan.to.announce.address |
| 57400 | 65 73 20 69 6e 74 6f 20 74 68 65 20 44 46 5a 2e 00 49 66 20 79 6f 75 20 61 72 65 20 75 73 69 6e | es.into.the.DFZ..If.you.are.usin |
| 57420 | 67 20 46 51 2d 43 6f 44 65 6c 20 65 6d 62 65 64 64 65 64 20 69 6e 74 6f 20 53 68 61 70 65 72 5f | g.FQ-CoDel.embedded.into.Shaper_ |
| 57440 | 20 61 6e 64 20 79 6f 75 20 68 61 76 65 20 6c 61 72 67 65 20 72 61 74 65 73 20 28 31 30 30 4d 62 | .and.you.have.large.rates.(100Mb |
| 57460 | 69 74 20 61 6e 64 20 61 62 6f 76 65 29 2c 20 79 6f 75 20 6d 61 79 20 63 6f 6e 73 69 64 65 72 20 | it.and.above),.you.may.consider. |
| 57480 | 69 6e 63 72 65 61 73 69 6e 67 20 60 71 75 61 6e 74 75 6d 60 20 74 6f 20 38 30 30 30 20 6f 72 20 | increasing.`quantum`.to.8000.or. |
| 574a0 | 68 69 67 68 65 72 20 73 6f 20 74 68 61 74 20 74 68 65 20 73 63 68 65 64 75 6c 65 72 20 73 61 76 | higher.so.that.the.scheduler.sav |
| 574c0 | 65 73 20 43 50 55 2e 00 49 66 20 79 6f 75 20 61 72 65 20 75 73 69 6e 67 20 4f 53 50 46 20 61 73 | es.CPU..If.you.are.using.OSPF.as |
| 574e0 | 20 49 47 50 2c 20 61 6c 77 61 79 73 20 74 68 65 20 63 6c 6f 73 65 73 74 20 69 6e 74 65 72 66 61 | .IGP,.always.the.closest.interfa |
| 57500 | 63 65 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 | ce.connected.to.the.RADIUS.serve |
| 57520 | 72 20 69 73 20 75 73 65 64 2e 20 57 69 74 68 20 56 79 4f 53 20 31 2e 32 20 79 6f 75 20 63 61 6e | r.is.used..With.VyOS.1.2.you.can |
| 57540 | 20 62 69 6e 64 20 61 6c 6c 20 6f 75 74 67 6f 69 6e 67 20 52 41 44 49 55 53 20 72 65 71 75 65 73 | .bind.all.outgoing.RADIUS.reques |
| 57560 | 74 73 20 74 6f 20 61 20 73 69 6e 67 6c 65 20 73 6f 75 72 63 65 20 49 50 20 65 2e 67 2e 20 74 68 | ts.to.a.single.source.IP.e.g..th |
| 57580 | 65 20 6c 6f 6f 70 62 61 63 6b 20 69 6e 74 65 72 66 61 63 65 2e 00 49 66 20 79 6f 75 20 61 72 65 | e.loopback.interface..If.you.are |
| 575a0 | 20 75 73 69 6e 67 20 4f 53 50 46 20 61 73 20 49 47 50 2c 20 61 6c 77 61 79 73 20 74 68 65 20 63 | .using.OSPF.as.IGP,.always.the.c |
| 575c0 | 6c 6f 73 65 73 74 20 69 6e 74 65 72 66 61 63 65 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 74 68 | losest.interface.connected.to.th |
| 575e0 | 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 69 73 20 75 73 65 64 2e 20 59 6f 75 20 63 61 6e | e.RADIUS.server.is.used..You.can |
| 57600 | 20 62 69 6e 64 20 61 6c 6c 20 6f 75 74 67 6f 69 6e 67 20 52 41 44 49 55 53 20 72 65 71 75 65 73 | .bind.all.outgoing.RADIUS.reques |
| 57620 | 74 73 20 74 6f 20 61 20 73 69 6e 67 6c 65 20 73 6f 75 72 63 65 20 49 50 20 65 2e 67 2e 20 74 68 | ts.to.a.single.source.IP.e.g..th |
| 57640 | 65 20 6c 6f 6f 70 62 61 63 6b 20 69 6e 74 65 72 66 61 63 65 2e 00 49 66 20 79 6f 75 20 61 72 65 | e.loopback.interface..If.you.are |
| 57660 | 20 75 73 69 6e 67 20 4f 53 50 46 20 61 73 20 79 6f 75 72 20 49 47 50 2c 20 75 73 65 20 74 68 65 | .using.OSPF.as.your.IGP,.use.the |
| 57680 | 20 69 6e 74 65 72 66 61 63 65 20 63 6f 6e 6e 65 63 74 65 64 20 63 6c 6f 73 65 73 74 20 74 6f 20 | .interface.connected.closest.to. |
| 576a0 | 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 2e 20 59 6f 75 20 63 61 6e 20 62 69 6e 64 20 | the.RADIUS.server..You.can.bind. |
| 576c0 | 61 6c 6c 20 6f 75 74 67 6f 69 6e 67 20 52 41 44 49 55 53 20 72 65 71 75 65 73 74 73 20 74 6f 20 | all.outgoing.RADIUS.requests.to. |
| 576e0 | 61 20 73 69 6e 67 6c 65 20 73 6f 75 72 63 65 20 49 50 20 65 2e 67 2e 20 74 68 65 20 6c 6f 6f 70 | a.single.source.IP.e.g..the.loop |
| 57700 | 62 61 63 6b 20 69 6e 74 65 72 66 61 63 65 2e 00 49 66 20 79 6f 75 20 63 68 61 6e 67 65 20 74 68 | back.interface..If.you.change.th |
| 57720 | 65 20 64 65 66 61 75 6c 74 20 65 6e 63 72 79 70 74 69 6f 6e 20 61 6e 64 20 68 61 73 68 69 6e 67 | e.default.encryption.and.hashing |
| 57740 | 20 61 6c 67 6f 72 69 74 68 6d 73 2c 20 62 65 20 73 75 72 65 20 74 68 61 74 20 74 68 65 20 6c 6f | .algorithms,.be.sure.that.the.lo |
| 57760 | 63 61 6c 20 61 6e 64 20 72 65 6d 6f 74 65 20 65 6e 64 73 20 68 61 76 65 20 6d 61 74 63 68 69 6e | cal.and.remote.ends.have.matchin |
| 57780 | 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 73 2c 20 6f 74 68 65 72 77 69 73 65 20 74 68 65 20 | g.configurations,.otherwise.the. |
| 577a0 | 74 75 6e 6e 65 6c 20 77 69 6c 6c 20 6e 6f 74 20 63 6f 6d 65 20 75 70 2e 00 49 66 20 79 6f 75 20 | tunnel.will.not.come.up..If.you. |
| 577c0 | 63 68 6f 6f 73 65 20 61 6e 79 20 61 73 20 74 68 65 20 6f 70 74 69 6f 6e 20 74 68 61 74 20 77 69 | choose.any.as.the.option.that.wi |
| 577e0 | 6c 6c 20 63 61 75 73 65 20 61 6c 6c 20 70 72 6f 74 6f 63 6f 6c 73 20 74 68 61 74 20 61 72 65 20 | ll.cause.all.protocols.that.are. |
| 57800 | 73 65 6e 64 69 6e 67 20 72 6f 75 74 65 73 20 74 6f 20 7a 65 62 72 61 2e 00 49 66 20 79 6f 75 20 | sending.routes.to.zebra..If.you. |
| 57820 | 63 6f 6e 66 69 67 75 72 65 20 61 20 63 6c 61 73 73 20 66 6f 72 20 2a 2a 56 6f 49 50 20 74 72 61 | configure.a.class.for.**VoIP.tra |
| 57840 | 66 66 69 63 2a 2a 2c 20 64 6f 6e 27 74 20 67 69 76 65 20 69 74 20 61 6e 79 20 2a 63 65 69 6c 69 | ffic**,.don't.give.it.any.*ceili |
| 57860 | 6e 67 2a 2c 20 6f 74 68 65 72 77 69 73 65 20 6e 65 77 20 56 6f 49 50 20 63 61 6c 6c 73 20 63 6f | ng*,.otherwise.new.VoIP.calls.co |
| 57880 | 75 6c 64 20 73 74 61 72 74 20 77 68 65 6e 20 74 68 65 20 6c 69 6e 6b 20 69 73 20 61 76 61 69 6c | uld.start.when.the.link.is.avail |
| 578a0 | 61 62 6c 65 20 61 6e 64 20 67 65 74 20 73 75 64 64 65 6e 6c 79 20 64 72 6f 70 70 65 64 20 77 68 | able.and.get.suddenly.dropped.wh |
| 578c0 | 65 6e 20 6f 74 68 65 72 20 63 6c 61 73 73 65 73 20 73 74 61 72 74 20 75 73 69 6e 67 20 74 68 65 | en.other.classes.start.using.the |
| 578e0 | 69 72 20 61 73 73 69 67 6e 65 64 20 2a 62 61 6e 64 77 69 64 74 68 2a 20 73 68 61 72 65 2e 00 49 | ir.assigned.*bandwidth*.share..I |
| 57900 | 66 20 79 6f 75 20 65 6e 61 62 6c 65 20 74 68 69 73 2c 20 79 6f 75 20 77 69 6c 6c 20 70 72 6f 62 | f.you.enable.this,.you.will.prob |
| 57920 | 61 62 6c 79 20 77 61 6e 74 20 74 6f 20 73 65 74 20 64 69 76 65 72 73 69 74 79 2d 66 61 63 74 6f | ably.want.to.set.diversity-facto |
| 57940 | 72 20 61 6e 64 20 63 68 61 6e 6e 65 6c 20 62 65 6c 6f 77 2e 00 49 66 20 79 6f 75 20 65 6e 74 65 | r.and.channel.below..If.you.ente |
| 57960 | 72 20 61 20 76 61 6c 75 65 20 73 6d 61 6c 6c 65 72 20 74 68 61 6e 20 36 30 20 73 65 63 6f 6e 64 | r.a.value.smaller.than.60.second |
| 57980 | 73 20 62 65 20 61 77 61 72 65 20 74 68 61 74 20 74 68 69 73 20 63 61 6e 20 61 6e 64 20 77 69 6c | s.be.aware.that.this.can.and.wil |
| 579a0 | 6c 20 61 66 66 65 63 74 20 63 6f 6e 76 65 72 67 65 6e 63 65 20 61 74 20 73 63 61 6c 65 2e 00 49 | l.affect.convergence.at.scale..I |
| 579c0 | 66 20 79 6f 75 20 66 65 65 6c 20 62 65 74 74 65 72 20 66 6f 72 77 61 72 64 69 6e 67 20 61 6c 6c | f.you.feel.better.forwarding.all |
| 579e0 | 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 72 65 71 75 65 73 74 73 20 74 6f 20 79 6f 75 72 | .authentication.requests.to.your |
| 57a00 | 20 65 6e 74 65 72 70 72 69 73 65 73 20 52 41 44 49 55 53 20 73 65 72 76 65 72 2c 20 75 73 65 20 | .enterprises.RADIUS.server,.use. |
| 57a20 | 74 68 65 20 63 6f 6d 6d 61 6e 64 73 20 62 65 6c 6f 77 2e 00 49 66 20 79 6f 75 20 68 61 70 70 65 | the.commands.below..If.you.happe |
| 57a40 | 6e 20 74 6f 20 72 75 6e 20 74 68 69 73 20 69 6e 20 61 20 76 69 72 74 75 61 6c 20 65 6e 76 69 72 | n.to.run.this.in.a.virtual.envir |
| 57a60 | 6f 6e 6d 65 6e 74 20 6c 69 6b 65 20 62 79 20 45 56 45 2d 4e 47 20 79 6f 75 20 6e 65 65 64 20 74 | onment.like.by.EVE-NG.you.need.t |
| 57a80 | 6f 20 65 6e 73 75 72 65 20 79 6f 75 72 20 56 79 4f 53 20 4e 49 43 20 69 73 20 73 65 74 20 74 6f | o.ensure.your.VyOS.NIC.is.set.to |
| 57aa0 | 20 75 73 65 20 74 68 65 20 65 31 30 30 30 20 64 72 69 76 65 72 2e 20 55 73 69 6e 67 20 74 68 65 | .use.the.e1000.driver..Using.the |
| 57ac0 | 20 64 65 66 61 75 6c 74 20 60 60 76 69 72 74 69 6f 2d 6e 65 74 2d 70 63 69 60 60 20 6f 72 20 74 | .default.``virtio-net-pci``.or.t |
| 57ae0 | 68 65 20 60 60 76 6d 78 6e 65 74 33 60 60 20 64 72 69 76 65 72 20 77 69 6c 6c 20 6e 6f 74 20 77 | he.``vmxnet3``.driver.will.not.w |
| 57b00 | 6f 72 6b 2e 20 49 43 4d 50 20 6d 65 73 73 61 67 65 73 20 77 69 6c 6c 20 6e 6f 74 20 62 65 20 70 | ork..ICMP.messages.will.not.be.p |
| 57b20 | 72 6f 70 65 72 6c 79 20 70 72 6f 63 65 73 73 65 64 2e 20 54 68 65 79 20 61 72 65 20 76 69 73 69 | roperly.processed..They.are.visi |
| 57b40 | 62 6c 65 20 6f 6e 20 74 68 65 20 76 69 72 74 75 61 6c 20 77 69 72 65 20 62 75 74 20 77 69 6c 6c | ble.on.the.virtual.wire.but.will |
| 57b60 | 20 6e 6f 74 20 6d 61 6b 65 20 69 74 20 66 75 6c 6c 79 20 75 70 20 74 68 65 20 6e 65 74 77 6f 72 | .not.make.it.fully.up.the.networ |
| 57b80 | 6b 69 6e 67 20 73 74 61 63 6b 2e 00 49 66 20 79 6f 75 20 68 61 70 70 65 6e 20 74 6f 20 75 73 65 | king.stack..If.you.happen.to.use |
| 57ba0 | 20 53 6f 6c 61 72 57 69 6e 64 73 20 4f 72 69 6f 6e 20 61 73 20 4e 4d 53 20 79 6f 75 20 63 61 6e | .SolarWinds.Orion.as.NMS.you.can |
| 57bc0 | 20 61 6c 73 6f 20 75 73 65 20 74 68 65 20 44 65 76 69 63 65 20 54 65 6d 70 6c 61 74 65 73 20 4d | .also.use.the.Device.Templates.M |
| 57be0 | 61 6e 61 67 65 6d 65 6e 74 2e 20 41 20 74 65 6d 70 6c 61 74 65 20 66 6f 72 20 56 79 4f 53 20 63 | anagement..A.template.for.VyOS.c |
| 57c00 | 61 6e 20 62 65 20 65 61 73 69 6c 79 20 69 6d 70 6f 72 74 65 64 2e 00 49 66 20 79 6f 75 20 68 61 | an.be.easily.imported..If.you.ha |
| 57c20 | 70 70 65 6e 65 64 20 74 6f 20 75 73 65 20 61 20 43 69 73 63 6f 20 4e 4d 2d 31 36 41 20 2d 20 53 | ppened.to.use.a.Cisco.NM-16A.-.S |
| 57c40 | 69 78 74 65 65 6e 20 50 6f 72 74 20 41 73 79 6e 63 20 4e 65 74 77 6f 72 6b 20 4d 6f 64 75 6c 65 | ixteen.Port.Async.Network.Module |
| 57c60 | 20 6f 72 20 4e 4d 2d 33 32 41 20 2d 20 54 68 69 72 74 79 2d 74 77 6f 20 50 6f 72 74 20 41 73 79 | .or.NM-32A.-.Thirty-two.Port.Asy |
| 57c80 | 6e 63 20 4e 65 74 77 6f 72 6b 20 4d 6f 64 75 6c 65 20 2d 20 74 68 69 73 20 69 73 20 79 6f 75 72 | nc.Network.Module.-.this.is.your |
| 57ca0 | 20 56 79 4f 53 20 72 65 70 6c 61 63 65 6d 65 6e 74 2e 00 49 66 20 79 6f 75 20 68 61 76 65 20 61 | .VyOS.replacement..If.you.have.a |
| 57cc0 | 20 6c 6f 74 20 6f 66 20 69 6e 74 65 72 66 61 63 65 73 2c 20 61 6e 64 2f 6f 72 20 61 20 6c 6f 74 | .lot.of.interfaces,.and/or.a.lot |
| 57ce0 | 20 6f 66 20 73 75 62 6e 65 74 73 2c 20 74 68 65 6e 20 65 6e 61 62 6c 69 6e 67 20 4f 53 50 46 20 | .of.subnets,.then.enabling.OSPF. |
| 57d00 | 76 69 61 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 6d 61 79 20 72 65 73 75 6c 74 20 69 6e 20 61 | via.this.command.may.result.in.a |
| 57d20 | 20 73 6c 69 67 68 74 20 70 65 72 66 6f 72 6d 61 6e 63 65 20 69 6d 70 72 6f 76 65 6d 65 6e 74 2e | .slight.performance.improvement. |
| 57d40 | 00 49 66 20 79 6f 75 20 68 61 76 65 20 63 6f 6e 66 69 67 75 72 65 64 20 74 68 65 20 60 49 4e 53 | .If.you.have.configured.the.`INS |
| 57d60 | 49 44 45 2d 4f 55 54 60 20 70 6f 6c 69 63 79 2c 20 79 6f 75 20 77 69 6c 6c 20 6e 65 65 64 20 74 | IDE-OUT`.policy,.you.will.need.t |
| 57d80 | 6f 20 61 64 64 20 61 64 64 69 74 69 6f 6e 61 6c 20 72 75 6c 65 73 20 74 6f 20 70 65 72 6d 69 74 | o.add.additional.rules.to.permit |
| 57da0 | 20 69 6e 62 6f 75 6e 64 20 4e 41 54 20 74 72 61 66 66 69 63 2e 00 49 66 20 79 6f 75 20 68 61 76 | .inbound.NAT.traffic..If.you.hav |
| 57dc0 | 65 20 6d 75 6c 74 69 70 6c 65 20 61 64 64 72 65 73 73 65 73 20 63 6f 6e 66 69 67 75 72 65 64 20 | e.multiple.addresses.configured. |
| 57de0 | 6f 6e 20 61 20 70 61 72 74 69 63 75 6c 61 72 20 69 6e 74 65 72 66 61 63 65 20 61 6e 64 20 77 6f | on.a.particular.interface.and.wo |
| 57e00 | 75 6c 64 20 6c 69 6b 65 20 50 49 4d 20 74 6f 20 75 73 65 20 61 20 73 70 65 63 69 66 69 63 20 73 | uld.like.PIM.to.use.a.specific.s |
| 57e20 | 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 74 68 | ource.address.associated.with.th |
| 57e40 | 61 74 20 69 6e 74 65 72 66 61 63 65 2e 00 49 66 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 73 61 6d | at.interface..If.you.need.to.sam |
| 57e60 | 70 6c 65 20 61 6c 73 6f 20 65 67 72 65 73 73 20 74 72 61 66 66 69 63 2c 20 79 6f 75 20 6d 61 79 | ple.also.egress.traffic,.you.may |
| 57e80 | 20 77 61 6e 74 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 65 67 72 65 73 73 20 66 6c 6f 77 2d 61 | .want.to.configure.egress.flow-a |
| 57ea0 | 63 63 6f 75 6e 74 69 6e 67 3a 00 49 66 20 79 6f 75 20 6f 6e 6c 79 20 77 61 6e 74 20 74 6f 20 63 | ccounting:.If.you.only.want.to.c |
| 57ec0 | 68 65 63 6b 20 69 66 20 74 68 65 20 75 73 65 72 20 61 63 63 6f 75 6e 74 20 69 73 20 65 6e 61 62 | heck.if.the.user.account.is.enab |
| 57ee0 | 6c 65 64 20 61 6e 64 20 63 61 6e 20 61 75 74 68 65 6e 74 69 63 61 74 65 20 28 61 67 61 69 6e 73 | led.and.can.authenticate.(agains |
| 57f00 | 74 20 74 68 65 20 70 72 69 6d 61 72 79 20 67 72 6f 75 70 29 20 74 68 65 20 66 6f 6c 6c 6f 77 69 | t.the.primary.group).the.followi |
| 57f20 | 6e 67 20 73 6e 69 70 70 65 64 20 69 73 20 73 75 66 66 69 63 69 65 6e 74 3a 00 49 66 20 79 6f 75 | ng.snipped.is.sufficient:.If.you |
| 57f40 | 20 73 65 74 20 61 20 63 75 73 74 6f 6d 20 52 41 44 49 55 53 20 61 74 74 72 69 62 75 74 65 20 79 | .set.a.custom.RADIUS.attribute.y |
| 57f60 | 6f 75 20 6d 75 73 74 20 64 65 66 69 6e 65 20 69 74 20 6f 6e 20 62 6f 74 68 20 64 69 63 74 69 6f | ou.must.define.it.on.both.dictio |
| 57f80 | 6e 61 72 69 65 73 20 61 74 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 61 6e 64 20 63 6c 69 65 | naries.at.RADIUS.server.and.clie |
| 57fa0 | 6e 74 2c 20 77 68 69 63 68 20 69 73 20 74 68 65 20 76 79 6f 73 20 72 6f 75 74 65 72 20 69 6e 20 | nt,.which.is.the.vyos.router.in. |
| 57fc0 | 6f 75 72 20 65 78 61 6d 70 6c 65 2e 00 49 66 20 79 6f 75 20 73 65 74 20 61 20 63 75 73 74 6f 6d | our.example..If.you.set.a.custom |
| 57fe0 | 20 52 41 44 49 55 53 20 61 74 74 72 69 62 75 74 65 20 79 6f 75 20 6d 75 73 74 20 64 65 66 69 6e | .RADIUS.attribute.you.must.defin |
| 58000 | 65 20 69 74 20 6f 6e 20 62 6f 74 68 20 64 69 63 74 69 6f 6e 61 72 69 65 73 20 61 74 20 52 41 44 | e.it.on.both.dictionaries.at.RAD |
| 58020 | 49 55 53 20 73 65 72 76 65 72 20 61 6e 64 20 63 6c 69 65 6e 74 2e 00 49 66 20 79 6f 75 20 73 65 | IUS.server.and.client..If.you.se |
| 58040 | 74 20 61 20 63 75 73 74 6f 6d 20 52 41 44 49 55 53 20 61 74 74 72 69 62 75 74 65 20 79 6f 75 20 | t.a.custom.RADIUS.attribute.you. |
| 58060 | 6d 75 73 74 20 64 65 66 69 6e 65 20 69 74 20 6f 6e 20 62 6f 74 68 20 64 69 63 74 69 6f 6e 61 72 | must.define.it.on.both.dictionar |
| 58080 | 69 65 73 20 6f 6e 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 61 6e 64 20 63 6c 69 | ies.on.the.RADIUS.server.and.cli |
| 580a0 | 65 6e 74 2e 00 49 66 20 79 6f 75 20 73 70 65 63 69 66 79 20 61 20 73 65 72 76 65 72 20 74 6f 20 | ent..If.you.specify.a.server.to. |
| 580c0 | 62 65 20 63 68 65 63 6b 65 64 20 62 75 74 20 64 6f 20 6e 6f 74 20 63 6f 6e 66 69 67 75 72 65 20 | be.checked.but.do.not.configure. |
| 580e0 | 61 20 70 72 6f 74 6f 63 6f 6c 2c 20 61 20 62 61 73 69 63 20 54 43 50 20 68 65 61 6c 74 68 20 63 | a.protocol,.a.basic.TCP.health.c |
| 58100 | 68 65 63 6b 20 77 69 6c 6c 20 62 65 20 61 74 74 65 6d 70 74 65 64 2e 20 41 20 73 65 72 76 65 72 | heck.will.be.attempted..A.server |
| 58120 | 20 73 68 61 6c 6c 20 62 65 20 64 65 65 6d 65 64 20 6f 6e 6c 69 6e 65 20 69 66 20 69 74 20 72 65 | .shall.be.deemed.online.if.it.re |
| 58140 | 73 70 6f 6e 73 65 73 20 74 6f 20 61 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 61 74 74 65 6d 70 74 20 | sponses.to.a.connection.attempt. |
| 58160 | 77 69 74 68 20 61 20 76 61 6c 69 64 20 60 60 53 59 4e 2f 41 43 4b 60 60 20 70 61 63 6b 65 74 2e | with.a.valid.``SYN/ACK``.packet. |
| 58180 | 00 49 66 20 79 6f 75 20 75 73 65 20 55 53 42 20 74 6f 20 73 65 72 69 61 6c 20 63 6f 6e 76 65 72 | .If.you.use.USB.to.serial.conver |
| 581a0 | 74 65 72 73 20 66 6f 72 20 63 6f 6e 6e 65 63 74 69 6e 67 20 74 6f 20 79 6f 75 72 20 56 79 4f 53 | ters.for.connecting.to.your.VyOS |
| 581c0 | 20 61 70 70 6c 69 61 6e 63 65 20 70 6c 65 61 73 65 20 6e 6f 74 65 20 74 68 61 74 20 6d 6f 73 74 | .appliance.please.note.that.most |
| 581e0 | 20 6f 66 20 74 68 65 6d 20 75 73 65 20 73 6f 66 74 77 61 72 65 20 65 6d 75 6c 61 74 69 6f 6e 20 | .of.them.use.software.emulation. |
| 58200 | 77 69 74 68 6f 75 74 20 66 6c 6f 77 20 63 6f 6e 74 72 6f 6c 2e 20 54 68 69 73 20 6d 65 61 6e 73 | without.flow.control..This.means |
| 58220 | 20 79 6f 75 20 73 68 6f 75 6c 64 20 73 74 61 72 74 20 77 69 74 68 20 61 20 63 6f 6d 6d 6f 6e 20 | .you.should.start.with.a.common. |
| 58240 | 62 61 75 64 20 72 61 74 65 20 28 6d 6f 73 74 20 6c 69 6b 65 6c 79 20 39 36 30 30 20 62 61 75 64 | baud.rate.(most.likely.9600.baud |
| 58260 | 29 20 61 73 20 6f 74 68 65 72 77 69 73 65 20 79 6f 75 20 70 72 6f 62 61 62 6c 79 20 63 61 6e 20 | ).as.otherwise.you.probably.can. |
| 58280 | 6e 6f 74 20 63 6f 6e 6e 65 63 74 20 74 6f 20 74 68 65 20 64 65 76 69 63 65 20 75 73 69 6e 67 20 | not.connect.to.the.device.using. |
| 582a0 | 68 69 67 68 20 73 70 65 65 64 20 62 61 75 64 20 72 61 74 65 73 20 61 73 20 79 6f 75 72 20 73 65 | high.speed.baud.rates.as.your.se |
| 582c0 | 72 69 61 6c 20 63 6f 6e 76 65 72 74 65 72 20 73 69 6d 70 6c 79 20 63 61 6e 20 6e 6f 74 20 70 72 | rial.converter.simply.can.not.pr |
| 582e0 | 6f 63 65 73 73 20 74 68 69 73 20 64 61 74 61 20 72 61 74 65 2e 00 49 66 20 79 6f 75 20 75 73 65 | ocess.this.data.rate..If.you.use |
| 58300 | 20 61 20 73 65 6c 66 2d 73 69 67 6e 65 64 20 63 65 72 74 69 66 69 63 61 74 65 2c 20 64 6f 20 6e | .a.self-signed.certificate,.do.n |
| 58320 | 6f 74 20 66 6f 72 67 65 74 20 74 6f 20 69 6e 73 74 61 6c 6c 20 43 41 20 6f 6e 20 74 68 65 20 63 | ot.forget.to.install.CA.on.the.c |
| 58340 | 6c 69 65 6e 74 20 73 69 64 65 2e 00 49 66 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 63 68 61 6e 67 | lient.side..If.you.want.to.chang |
| 58360 | 65 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 66 6c 6f 77 73 2c 20 77 | e.the.maximum.number.of.flows,.w |
| 58380 | 68 69 63 68 20 61 72 65 20 74 72 61 63 6b 69 6e 67 20 73 69 6d 75 6c 74 61 6e 65 6f 75 73 6c 79 | hich.are.tracking.simultaneously |
| 583a0 | 2c 20 79 6f 75 20 6d 61 79 20 64 6f 20 74 68 69 73 20 77 69 74 68 20 74 68 69 73 20 63 6f 6d 6d | ,.you.may.do.this.with.this.comm |
| 583c0 | 61 6e 64 20 28 64 65 66 61 75 6c 74 20 38 31 39 32 29 2e 00 49 66 20 79 6f 75 20 77 61 6e 74 20 | and.(default.8192)..If.you.want. |
| 583e0 | 74 6f 20 64 69 73 61 62 6c 65 20 61 20 72 75 6c 65 20 62 75 74 20 6c 65 74 20 69 74 20 69 6e 20 | to.disable.a.rule.but.let.it.in. |
| 58400 | 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 49 66 20 79 6f 75 20 77 61 6e 74 20 74 | the.configuration..If.you.want.t |
| 58420 | 6f 20 68 61 76 65 20 61 64 6d 69 6e 20 75 73 65 72 73 20 74 6f 20 61 75 74 68 65 6e 74 69 63 61 | o.have.admin.users.to.authentica |
| 58440 | 74 65 20 76 69 61 20 52 41 44 49 55 53 20 69 74 20 69 73 20 65 73 73 65 6e 74 69 61 6c 20 74 6f | te.via.RADIUS.it.is.essential.to |
| 58460 | 20 73 65 6e 74 20 74 68 65 20 60 60 43 69 73 63 6f 2d 41 56 2d 50 61 69 72 20 73 68 65 6c 6c 3a | .sent.the.``Cisco-AV-Pair.shell: |
| 58480 | 70 72 69 76 2d 6c 76 6c 3d 31 35 60 60 20 61 74 74 72 69 62 75 74 65 2e 20 57 69 74 68 6f 75 74 | priv-lvl=15``.attribute..Without |
| 584a0 | 20 74 68 65 20 61 74 74 72 69 62 75 74 65 20 79 6f 75 20 77 69 6c 6c 20 6f 6e 6c 79 20 67 65 74 | .the.attribute.you.will.only.get |
| 584c0 | 20 72 65 67 75 6c 61 72 2c 20 6e 6f 6e 20 70 72 69 76 69 6c 65 67 75 65 64 2c 20 73 79 73 74 65 | .regular,.non.privilegued,.syste |
| 584e0 | 6d 20 75 73 65 72 73 2e 00 49 66 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 75 73 65 20 65 78 69 73 | m.users..If.you.want.to.use.exis |
| 58500 | 74 69 6e 67 20 62 6c 61 63 6b 6c 69 73 74 73 20 79 6f 75 20 68 61 76 65 20 74 6f 20 63 72 65 61 | ting.blacklists.you.have.to.crea |
| 58520 | 74 65 2f 64 6f 77 6e 6c 6f 61 64 20 61 20 64 61 74 61 62 61 73 65 20 66 69 72 73 74 2e 20 4f 74 | te/download.a.database.first..Ot |
| 58540 | 68 65 72 77 69 73 65 20 79 6f 75 20 77 69 6c 6c 20 6e 6f 74 20 62 65 20 61 62 6c 65 20 74 6f 20 | herwise.you.will.not.be.able.to. |
| 58560 | 63 6f 6d 6d 69 74 20 74 68 65 20 63 6f 6e 66 69 67 20 63 68 61 6e 67 65 73 2e 00 49 66 20 79 6f | commit.the.config.changes..If.yo |
| 58580 | 75 20 77 61 6e 74 20 79 6f 75 72 20 72 6f 75 74 65 72 20 74 6f 20 66 6f 72 77 61 72 64 20 44 48 | u.want.your.router.to.forward.DH |
| 585a0 | 43 50 20 72 65 71 75 65 73 74 73 20 74 6f 20 61 6e 20 65 78 74 65 72 6e 61 6c 20 44 48 43 50 20 | CP.requests.to.an.external.DHCP. |
| 585c0 | 73 65 72 76 65 72 20 79 6f 75 20 63 61 6e 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 73 79 73 | server.you.can.configure.the.sys |
| 585e0 | 74 65 6d 20 74 6f 20 61 63 74 20 61 73 20 61 20 44 48 43 50 20 72 65 6c 61 79 20 61 67 65 6e 74 | tem.to.act.as.a.DHCP.relay.agent |
| 58600 | 2e 20 54 68 65 20 44 48 43 50 20 72 65 6c 61 79 20 61 67 65 6e 74 20 77 6f 72 6b 73 20 77 69 74 | ..The.DHCP.relay.agent.works.wit |
| 58620 | 68 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 61 64 64 72 65 73 73 65 73 2e 00 49 66 20 79 6f | h.IPv4.and.IPv6.addresses..If.yo |
| 58640 | 75 20 77 61 6e 74 2c 20 6e 65 65 64 2c 20 61 6e 64 20 73 68 6f 75 6c 64 20 75 73 65 20 6d 6f 72 | u.want,.need,.and.should.use.mor |
| 58660 | 65 20 61 64 76 61 6e 63 65 64 20 65 6e 63 72 79 70 74 69 6f 6e 20 63 69 70 68 65 72 73 20 28 64 | e.advanced.encryption.ciphers.(d |
| 58680 | 65 66 61 75 6c 74 20 69 73 20 73 74 69 6c 6c 20 33 44 45 53 29 20 79 6f 75 20 6e 65 65 64 20 74 | efault.is.still.3DES).you.need.t |
| 586a0 | 6f 20 70 72 6f 76 69 73 69 6f 6e 20 79 6f 75 72 20 64 65 76 69 63 65 20 75 73 69 6e 67 20 61 20 | o.provision.your.device.using.a. |
| 586c0 | 73 6f 2d 63 61 6c 6c 65 64 20 22 44 65 76 69 63 65 20 50 72 6f 66 69 6c 65 22 2e 20 41 20 70 72 | so-called."Device.Profile"..A.pr |
| 586e0 | 6f 66 69 6c 65 20 69 73 20 61 20 73 69 6d 70 6c 65 20 74 65 78 74 20 66 69 6c 65 20 63 6f 6e 74 | ofile.is.a.simple.text.file.cont |
| 58700 | 61 69 6e 69 6e 67 20 58 4d 4c 20 6e 6f 64 65 73 20 77 69 74 68 20 61 20 60 60 2e 6d 6f 62 69 6c | aining.XML.nodes.with.a.``.mobil |
| 58720 | 65 63 6f 6e 66 69 67 60 60 20 66 69 6c 65 20 65 78 74 65 6e 73 69 6f 6e 20 74 68 61 74 20 63 61 | econfig``.file.extension.that.ca |
| 58740 | 6e 20 62 65 20 73 65 6e 74 20 61 6e 64 20 6f 70 65 6e 65 64 20 6f 6e 20 61 6e 79 20 64 65 76 69 | n.be.sent.and.opened.on.any.devi |
| 58760 | 63 65 20 66 72 6f 6d 20 61 6e 20 45 2d 4d 61 69 6c 2e 00 49 66 20 79 6f 75 27 72 65 20 6d 61 6b | ce.from.an.E-Mail..If.you're.mak |
| 58780 | 69 6e 67 20 75 73 65 20 6f 66 20 6d 75 6c 74 69 70 6c 65 20 74 75 6e 6e 65 6c 73 2c 20 4f 70 65 | ing.use.of.multiple.tunnels,.Ope |
| 587a0 | 6e 56 50 4e 20 6d 75 73 74 20 68 61 76 65 20 61 20 77 61 79 20 74 6f 20 64 69 73 74 69 6e 67 75 | nVPN.must.have.a.way.to.distingu |
| 587c0 | 69 73 68 20 62 65 74 77 65 65 6e 20 64 69 66 66 65 72 65 6e 74 20 74 75 6e 6e 65 6c 73 20 61 73 | ish.between.different.tunnels.as |
| 587e0 | 69 64 65 20 66 72 6f 6d 20 74 68 65 20 70 72 65 2d 73 68 61 72 65 64 2d 6b 65 79 2e 20 54 68 69 | ide.from.the.pre-shared-key..Thi |
| 58800 | 73 20 69 73 20 64 6f 6e 65 20 65 69 74 68 65 72 20 62 79 20 72 65 66 65 72 65 6e 63 69 6e 67 20 | s.is.done.either.by.referencing. |
| 58820 | 49 50 20 61 64 64 72 65 73 73 65 73 20 6f 72 20 70 6f 72 74 20 6e 75 6d 62 65 72 73 2e 20 4f 6e | IP.addresses.or.port.numbers..On |
| 58840 | 65 20 6f 70 74 69 6f 6e 20 69 73 20 74 6f 20 64 65 64 69 63 61 74 65 20 61 20 70 75 62 6c 69 63 | e.option.is.to.dedicate.a.public |
| 58860 | 20 49 50 20 74 6f 20 65 61 63 68 20 74 75 6e 6e 65 6c 2e 20 41 6e 6f 74 68 65 72 20 6f 70 74 69 | .IP.to.each.tunnel..Another.opti |
| 58880 | 6f 6e 20 69 73 20 74 6f 20 64 65 64 69 63 61 74 65 20 61 20 70 6f 72 74 20 6e 75 6d 62 65 72 20 | on.is.to.dedicate.a.port.number. |
| 588a0 | 74 6f 20 65 61 63 68 20 74 75 6e 6e 65 6c 20 28 65 2e 67 2e 20 31 31 39 35 2c 31 31 39 36 2c 31 | to.each.tunnel.(e.g..1195,1196,1 |
| 588c0 | 31 39 37 2e 2e 2e 29 2e 00 49 66 20 79 6f 75 27 76 65 20 63 6f 6d 70 6c 65 74 65 64 20 61 6c 6c | 197...)..If.you've.completed.all |
| 588e0 | 20 74 68 65 20 61 62 6f 76 65 20 73 74 65 70 73 20 79 6f 75 20 6e 6f 20 64 6f 75 62 74 20 77 61 | .the.above.steps.you.no.doubt.wa |
| 58900 | 6e 74 20 74 6f 20 73 65 65 20 69 66 20 69 74 27 73 20 61 6c 6c 20 77 6f 72 6b 69 6e 67 2e 00 49 | nt.to.see.if.it's.all.working..I |
| 58920 | 67 6e 6f 72 65 20 41 53 5f 50 41 54 48 20 6c 65 6e 67 74 68 20 77 68 65 6e 20 73 65 6c 65 63 74 | gnore.AS_PATH.length.when.select |
| 58940 | 69 6e 67 20 61 20 72 6f 75 74 65 00 49 67 6e 6f 72 65 20 56 52 52 50 20 6d 61 69 6e 20 69 6e 74 | ing.a.route.Ignore.VRRP.main.int |
| 58960 | 65 72 66 61 63 65 20 66 61 75 6c 74 73 00 49 6d 61 67 65 20 74 68 61 6e 6b 66 75 6c 6c 79 20 62 | erface.faults.Image.thankfully.b |
| 58980 | 6f 72 72 6f 77 65 64 20 66 72 6f 6d 20 68 74 74 70 73 3a 2f 2f 65 6e 2e 77 69 6b 69 70 65 64 69 | orrowed.from.https://en.wikipedi |
| 589a0 | 61 2e 6f 72 67 2f 77 69 6b 69 2f 46 69 6c 65 3a 53 4e 4d 50 5f 63 6f 6d 6d 75 6e 69 63 61 74 69 | a.org/wiki/File:SNMP_communicati |
| 589c0 | 6f 6e 5f 70 72 69 6e 63 69 70 6c 65 73 5f 64 69 61 67 72 61 6d 2e 50 4e 47 20 77 68 69 63 68 20 | on_principles_diagram.PNG.which. |
| 589e0 | 69 73 20 75 6e 64 65 72 20 74 68 65 20 47 4e 55 20 46 72 65 65 20 44 6f 63 75 6d 65 6e 74 61 74 | is.under.the.GNU.Free.Documentat |
| 58a00 | 69 6f 6e 20 4c 69 63 65 6e 73 65 00 49 6d 61 67 69 6e 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e | ion.License.Imagine.the.followin |
| 58a20 | 67 20 74 6f 70 6f 6c 6f 67 79 00 49 6d 6d 65 64 69 61 74 65 00 49 6d 70 6c 65 6d 65 6e 74 65 64 | g.topology.Immediate.Implemented |
| 58a40 | 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 3a 72 66 63 3a 60 36 38 38 38 60 20 20 72 65 71 75 | .the.following.:rfc:`6888`..requ |
| 58a60 | 69 72 65 6d 65 6e 74 73 3a 00 49 6d 70 6f 72 74 20 66 69 6c 65 73 20 74 6f 20 50 4b 49 20 66 6f | irements:.Import.files.to.PKI.fo |
| 58a80 | 72 6d 61 74 00 49 6d 70 6f 72 74 20 74 68 65 20 43 41 73 20 70 72 69 76 61 74 65 20 6b 65 79 20 | rmat.Import.the.CAs.private.key. |
| 58aa0 | 70 6f 72 74 69 6f 6e 20 74 6f 20 74 68 65 20 43 4c 49 2e 20 54 68 69 73 20 73 68 6f 75 6c 64 20 | portion.to.the.CLI..This.should. |
| 58ac0 | 6e 65 76 65 72 20 6c 65 61 76 65 20 74 68 65 20 73 79 73 74 65 6d 20 61 73 20 69 74 20 69 73 20 | never.leave.the.system.as.it.is. |
| 58ae0 | 75 73 65 64 20 74 6f 20 64 65 63 72 79 70 74 20 74 68 65 20 64 61 74 61 2e 20 54 68 65 20 6b 65 | used.to.decrypt.the.data..The.ke |
| 58b00 | 79 20 69 73 20 72 65 71 75 69 72 65 64 20 69 66 20 79 6f 75 20 75 73 65 20 56 79 4f 53 20 61 73 | y.is.required.if.you.use.VyOS.as |
| 58b20 | 20 79 6f 75 72 20 63 65 72 74 69 66 69 63 61 74 65 20 67 65 6e 65 72 61 74 6f 72 2e 00 49 6d 70 | .your.certificate.generator..Imp |
| 58b40 | 6f 72 74 20 74 68 65 20 4f 70 65 6e 56 50 4e 20 73 68 61 72 65 64 20 73 65 63 72 65 74 20 73 74 | ort.the.OpenVPN.shared.secret.st |
| 58b60 | 6f 72 65 64 20 69 6e 20 66 69 6c 65 20 74 6f 20 74 68 65 20 56 79 4f 53 20 43 4c 49 2e 00 49 6d | ored.in.file.to.the.VyOS.CLI..Im |
| 58b80 | 70 6f 72 74 20 74 68 65 20 63 65 72 74 69 66 69 63 61 74 65 20 66 72 6f 6d 20 74 68 65 20 66 69 | port.the.certificate.from.the.fi |
| 58ba0 | 6c 65 20 74 6f 20 56 79 4f 53 20 43 4c 49 2e 00 49 6d 70 6f 72 74 20 74 68 65 20 70 72 69 76 61 | le.to.VyOS.CLI..Import.the.priva |
| 58bc0 | 74 65 20 6b 65 79 20 6f 66 20 74 68 65 20 63 65 72 74 69 66 69 63 61 74 65 20 74 6f 20 74 68 65 | te.key.of.the.certificate.to.the |
| 58be0 | 20 56 79 4f 53 20 43 4c 49 2e 20 54 68 69 73 20 73 68 6f 75 6c 64 20 6e 65 76 65 72 20 6c 65 61 | .VyOS.CLI..This.should.never.lea |
| 58c00 | 76 65 20 74 68 65 20 73 79 73 74 65 6d 20 61 73 20 69 74 20 69 73 20 75 73 65 64 20 74 6f 20 64 | ve.the.system.as.it.is.used.to.d |
| 58c20 | 65 63 72 79 70 74 20 74 68 65 20 64 61 74 61 2e 00 49 6d 70 6f 72 74 20 74 68 65 20 70 75 62 6c | ecrypt.the.data..Import.the.publ |
| 58c40 | 69 63 20 43 41 20 63 65 72 74 69 66 69 63 61 74 65 20 66 72 6f 6d 20 74 68 65 20 64 65 66 69 6e | ic.CA.certificate.from.the.defin |
| 58c60 | 65 64 20 66 69 6c 65 20 74 6f 20 56 79 4f 53 20 43 4c 49 2e 00 49 6d 70 6f 72 74 65 64 20 70 72 | ed.file.to.VyOS.CLI..Imported.pr |
| 58c80 | 65 66 69 78 65 73 20 64 75 72 69 6e 67 20 74 68 65 20 76 61 6c 69 64 61 74 69 6f 6e 20 6d 61 79 | efixes.during.the.validation.may |
| 58ca0 | 20 68 61 76 65 20 76 61 6c 75 65 73 3a 00 49 6e 20 3a 72 66 63 3a 60 33 30 36 39 60 20 69 74 20 | .have.values:.In.:rfc:`3069`.it. |
| 58cc0 | 69 73 20 63 61 6c 6c 65 64 20 56 4c 41 4e 20 41 67 67 72 65 67 61 74 69 6f 6e 00 49 6e 20 3a 76 | is.called.VLAN.Aggregation.In.:v |
| 58ce0 | 79 74 61 73 6b 3a 60 54 32 31 39 39 60 20 74 68 65 20 73 79 6e 74 61 78 20 6f 66 20 74 68 65 20 | ytask:`T2199`.the.syntax.of.the. |
| 58d00 | 7a 6f 6e 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 77 61 73 20 63 68 61 6e 67 65 64 2e 20 | zone.configuration.was.changed.. |
| 58d20 | 54 68 65 20 7a 6f 6e 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d 6f 76 65 64 20 66 72 6f | The.zone.configuration.moved.fro |
| 58d40 | 6d 20 60 60 7a 6f 6e 65 2d 70 6f 6c 69 63 79 20 7a 6f 6e 65 20 3c 6e 61 6d 65 3e 60 60 20 74 6f | m.``zone-policy.zone.<name>``.to |
| 58d60 | 20 60 60 66 69 72 65 77 61 6c 6c 20 7a 6f 6e 65 20 3c 6e 61 6d 65 3e 60 60 2e 00 49 6e 20 45 74 | .``firewall.zone.<name>``..In.Et |
| 58d80 | 68 65 72 6e 65 74 20 62 72 69 64 67 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 73 2c 20 | hernet.bridging.configurations,. |
| 58da0 | 4f 70 65 6e 56 50 4e 27 73 20 73 65 72 76 65 72 20 6d 6f 64 65 20 63 61 6e 20 62 65 20 73 65 74 | OpenVPN's.server.mode.can.be.set |
| 58dc0 | 20 61 73 20 61 20 27 62 72 69 64 67 65 27 20 77 68 65 72 65 20 74 68 65 20 56 50 4e 20 74 75 6e | .as.a.'bridge'.where.the.VPN.tun |
| 58de0 | 6e 65 6c 20 65 6e 63 61 70 73 75 6c 61 74 65 73 20 65 6e 74 69 72 65 20 45 74 68 65 72 6e 65 74 | nel.encapsulates.entire.Ethernet |
| 58e00 | 20 66 72 61 6d 65 73 20 28 75 70 20 74 6f 20 31 35 31 34 20 62 79 74 65 73 29 20 69 6e 73 74 65 | .frames.(up.to.1514.bytes).inste |
| 58e20 | 61 64 20 6f 66 20 6a 75 73 74 20 49 50 20 70 61 63 6b 65 74 73 20 28 75 70 20 74 6f 20 31 35 30 | ad.of.just.IP.packets.(up.to.150 |
| 58e40 | 30 20 62 79 74 65 73 29 2e 20 54 68 69 73 20 73 65 74 75 70 20 61 6c 6c 6f 77 73 20 63 6c 69 65 | 0.bytes)..This.setup.allows.clie |
| 58e60 | 6e 74 73 20 74 6f 20 74 72 61 6e 73 6d 69 74 20 4c 61 79 65 72 20 32 20 66 72 61 6d 65 73 20 74 | nts.to.transmit.Layer.2.frames.t |
| 58e80 | 68 72 6f 75 67 68 20 74 68 65 20 4f 70 65 6e 56 50 4e 20 74 75 6e 6e 65 6c 2e 20 42 65 6c 6f 77 | hrough.the.OpenVPN.tunnel..Below |
| 58ea0 | 2c 20 77 65 20 6f 75 74 6c 69 6e 65 20 61 20 62 61 73 69 63 20 63 6f 6e 66 69 67 75 72 61 74 69 | ,.we.outline.a.basic.configurati |
| 58ec0 | 6f 6e 20 74 6f 20 61 63 68 69 65 76 65 20 74 68 69 73 3a 00 49 6e 20 49 6e 74 65 72 6e 65 74 20 | on.to.achieve.this:.In.Internet. |
| 58ee0 | 50 72 6f 74 6f 63 6f 6c 20 56 65 72 73 69 6f 6e 20 36 20 28 49 50 76 36 29 20 6e 65 74 77 6f 72 | Protocol.Version.6.(IPv6).networ |
| 58f00 | 6b 73 2c 20 74 68 65 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 20 6f 66 20 41 52 50 20 69 73 20 | ks,.the.functionality.of.ARP.is. |
| 58f20 | 70 72 6f 76 69 64 65 64 20 62 79 20 74 68 65 20 4e 65 69 67 68 62 6f 72 20 44 69 73 63 6f 76 65 | provided.by.the.Neighbor.Discove |
| 58f40 | 72 79 20 50 72 6f 74 6f 63 6f 6c 20 28 4e 44 50 29 2e 00 49 6e 20 50 72 69 6f 72 69 74 79 20 51 | ry.Protocol.(NDP)..In.Priority.Q |
| 58f60 | 75 65 75 65 20 77 65 20 64 6f 20 6e 6f 74 20 64 65 66 69 6e 65 20 63 6c 61 73 65 73 20 77 69 74 | ueue.we.do.not.define.clases.wit |
| 58f80 | 68 20 61 20 6d 65 61 6e 69 6e 67 6c 65 73 73 20 63 6c 61 73 73 20 49 44 20 6e 75 6d 62 65 72 20 | h.a.meaningless.class.ID.number. |
| 58fa0 | 62 75 74 20 77 69 74 68 20 61 20 63 6c 61 73 73 20 70 72 69 6f 72 69 74 79 20 6e 75 6d 62 65 72 | but.with.a.class.priority.number |
| 58fc0 | 20 28 31 2d 37 29 2e 20 54 68 65 20 6c 6f 77 65 72 20 74 68 65 20 6e 75 6d 62 65 72 2c 20 74 68 | .(1-7)..The.lower.the.number,.th |
| 58fe0 | 65 20 68 69 67 68 65 72 20 74 68 65 20 70 72 69 6f 72 69 74 79 2e 00 49 6e 20 50 72 69 6f 72 69 | e.higher.the.priority..In.Priori |
| 59000 | 74 79 20 51 75 65 75 65 20 77 65 20 64 6f 20 6e 6f 74 20 64 65 66 69 6e 65 20 63 6c 61 73 73 65 | ty.Queue.we.do.not.define.classe |
| 59020 | 73 20 77 69 74 68 20 61 20 6d 65 61 6e 69 6e 67 6c 65 73 73 20 63 6c 61 73 73 20 49 44 20 6e 75 | s.with.a.meaningless.class.ID.nu |
| 59040 | 6d 62 65 72 20 62 75 74 20 77 69 74 68 20 61 20 63 6c 61 73 73 20 70 72 69 6f 72 69 74 79 20 6e | mber.but.with.a.class.priority.n |
| 59060 | 75 6d 62 65 72 20 28 31 2d 37 29 2e 20 54 68 65 20 6c 6f 77 65 72 20 74 68 65 20 6e 75 6d 62 65 | umber.(1-7)..The.lower.the.numbe |
| 59080 | 72 2c 20 74 68 65 20 68 69 67 68 65 72 20 74 68 65 20 70 72 69 6f 72 69 74 79 2e 00 49 6e 20 56 | r,.the.higher.the.priority..In.V |
| 590a0 | 79 4f 53 20 74 68 65 20 74 65 72 6d 73 20 60 60 76 69 66 2d 73 60 60 20 61 6e 64 20 60 60 76 69 | yOS.the.terms.``vif-s``.and.``vi |
| 590c0 | 66 2d 63 60 60 20 73 74 61 6e 64 20 66 6f 72 20 74 68 65 20 65 74 68 65 72 74 79 70 65 20 74 61 | f-c``.stand.for.the.ethertype.ta |
| 590e0 | 67 73 20 74 68 61 74 20 61 72 65 20 75 73 65 64 2e 00 49 6e 20 56 79 4f 53 2c 20 38 30 32 2e 31 | gs.that.are.used..In.VyOS,.802.1 |
| 59100 | 31 61 78 20 69 73 20 6f 6e 6c 79 20 69 6d 70 6c 65 6d 65 6e 74 65 64 20 66 6f 72 20 32 2e 34 47 | 1ax.is.only.implemented.for.2.4G |
| 59120 | 48 7a 20 61 6e 64 20 36 47 48 7a 2e 00 49 6e 20 56 79 4f 53 2c 20 38 30 32 2e 31 31 61 78 20 69 | Hz.and.6GHz..In.VyOS,.802.11ax.i |
| 59140 | 73 20 6f 6e 6c 79 20 69 6d 70 6c 65 6d 65 6e 74 65 64 20 66 6f 72 20 36 47 48 7a 20 61 73 20 6f | s.only.implemented.for.6GHz.as.o |
| 59160 | 66 20 79 65 74 2e 00 49 6e 20 56 79 4f 53 2c 20 45 53 50 20 61 74 74 72 69 62 75 74 65 73 20 61 | f.yet..In.VyOS,.ESP.attributes.a |
| 59180 | 72 65 20 73 70 65 63 69 66 69 65 64 20 74 68 72 6f 75 67 68 20 45 53 50 20 67 72 6f 75 70 73 2e | re.specified.through.ESP.groups. |
| 591a0 | 20 4d 75 6c 74 69 70 6c 65 20 70 72 6f 70 6f 73 61 6c 73 20 63 61 6e 20 62 65 20 73 70 65 63 69 | .Multiple.proposals.can.be.speci |
| 591c0 | 66 69 65 64 20 69 6e 20 61 20 73 69 6e 67 6c 65 20 67 72 6f 75 70 2e 00 49 6e 20 56 79 4f 53 2c | fied.in.a.single.group..In.VyOS, |
| 591e0 | 20 49 4b 45 20 61 74 74 72 69 62 75 74 65 73 20 61 72 65 20 73 70 65 63 69 66 69 65 64 20 74 68 | .IKE.attributes.are.specified.th |
| 59200 | 72 6f 75 67 68 20 49 4b 45 20 67 72 6f 75 70 73 2e 20 4d 75 6c 74 69 70 6c 65 20 70 72 6f 70 6f | rough.IKE.groups..Multiple.propo |
| 59220 | 73 61 6c 73 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 61 20 73 69 6e 67 6c | sals.can.be.specified.in.a.singl |
| 59240 | 65 20 67 72 6f 75 70 2e 00 49 6e 20 56 79 4f 53 2c 20 61 20 63 6c 61 73 73 20 69 73 20 69 64 65 | e.group..In.VyOS,.a.class.is.ide |
| 59260 | 6e 74 69 66 69 65 64 20 62 79 20 61 20 6e 75 6d 62 65 72 20 79 6f 75 20 63 61 6e 20 63 68 6f 6f | ntified.by.a.number.you.can.choo |
| 59280 | 73 65 20 77 68 65 6e 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 69 74 2e 00 49 6e 20 61 20 6d 69 6e | se.when.configuring.it..In.a.min |
| 592a0 | 69 6d 61 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2c 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e | imal.configuration,.the.followin |
| 592c0 | 67 20 6d 75 73 74 20 62 65 20 70 72 6f 76 69 64 65 64 3a 00 49 6e 20 61 20 6d 75 6c 74 69 70 6c | g.must.be.provided:.In.a.multipl |
| 592e0 | 65 20 56 4c 41 4e 20 68 65 61 64 65 72 20 63 6f 6e 74 65 78 74 2c 20 6f 75 74 20 6f 66 20 63 6f | e.VLAN.header.context,.out.of.co |
| 59300 | 6e 76 65 6e 69 65 6e 63 65 20 74 68 65 20 74 65 72 6d 20 22 56 4c 41 4e 20 74 61 67 22 20 6f 72 | nvenience.the.term."VLAN.tag".or |
| 59320 | 20 6a 75 73 74 20 22 74 61 67 22 20 66 6f 72 20 73 68 6f 72 74 20 69 73 20 6f 66 74 65 6e 20 75 | .just."tag".for.short.is.often.u |
| 59340 | 73 65 64 20 69 6e 20 70 6c 61 63 65 20 6f 66 20 22 38 30 32 2e 31 71 5f 20 56 4c 41 4e 20 68 65 | sed.in.place.of."802.1q_.VLAN.he |
| 59360 | 61 64 65 72 22 2e 20 51 69 6e 51 20 61 6c 6c 6f 77 73 20 6d 75 6c 74 69 70 6c 65 20 56 4c 41 4e | ader"..QinQ.allows.multiple.VLAN |
| 59380 | 20 74 61 67 73 20 69 6e 20 61 6e 20 45 74 68 65 72 6e 65 74 20 66 72 61 6d 65 3b 20 74 6f 67 65 | .tags.in.an.Ethernet.frame;.toge |
| 593a0 | 74 68 65 72 20 74 68 65 73 65 20 74 61 67 73 20 63 6f 6e 73 74 69 74 75 74 65 20 61 20 74 61 67 | ther.these.tags.constitute.a.tag |
| 593c0 | 20 73 74 61 63 6b 2e 20 57 68 65 6e 20 75 73 65 64 20 69 6e 20 74 68 65 20 63 6f 6e 74 65 78 74 | .stack..When.used.in.the.context |
| 593e0 | 20 6f 66 20 61 6e 20 45 74 68 65 72 6e 65 74 20 66 72 61 6d 65 2c 20 61 20 51 69 6e 51 20 66 72 | .of.an.Ethernet.frame,.a.QinQ.fr |
| 59400 | 61 6d 65 20 69 73 20 61 20 66 72 61 6d 65 20 74 68 61 74 20 68 61 73 20 32 20 56 4c 41 4e 20 38 | ame.is.a.frame.that.has.2.VLAN.8 |
| 59420 | 30 32 2e 31 71 5f 20 68 65 61 64 65 72 73 20 28 64 6f 75 62 6c 65 2d 74 61 67 67 65 64 29 2e 00 | 02.1q_.headers.(double-tagged).. |
| 59440 | 49 6e 20 61 20 6e 75 74 73 68 65 6c 6c 2c 20 74 68 65 20 63 75 72 72 65 6e 74 20 69 6d 70 6c 65 | In.a.nutshell,.the.current.imple |
| 59460 | 6d 65 6e 74 61 74 69 6f 6e 20 70 72 6f 76 69 64 65 73 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 | mentation.provides.the.following |
| 59480 | 20 66 65 61 74 75 72 65 73 3a 00 49 6e 20 61 64 64 69 74 69 6f 6e 20 74 6f 20 3a 61 62 62 72 3a | .features:.In.addition.to.:abbr: |
| 594a0 | 60 52 41 44 49 55 53 20 28 52 65 6d 6f 74 65 20 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 44 | `RADIUS.(Remote.Authentication.D |
| 594c0 | 69 61 6c 2d 49 6e 20 55 73 65 72 20 53 65 72 76 69 63 65 29 60 2c 20 3a 61 62 62 72 3a 60 54 41 | ial-In.User.Service)`,.:abbr:`TA |
| 594e0 | 43 41 43 53 20 28 54 65 72 6d 69 6e 61 6c 20 41 63 63 65 73 73 20 43 6f 6e 74 72 6f 6c 6c 65 72 | CACS.(Terminal.Access.Controller |
| 59500 | 20 41 63 63 65 73 73 20 43 6f 6e 74 72 6f 6c 20 53 79 73 74 65 6d 29 60 20 63 61 6e 20 61 6c 73 | .Access.Control.System)`.can.als |
| 59520 | 6f 20 62 65 20 66 6f 75 6e 64 20 69 6e 20 6c 61 72 67 65 20 64 65 70 6c 6f 79 6d 65 6e 74 73 2e | o.be.found.in.large.deployments. |
| 59540 | 00 49 6e 20 61 64 64 69 74 69 6f 6e 20 74 6f 20 64 69 73 70 6c 61 79 69 6e 67 20 66 6c 6f 77 20 | .In.addition.to.displaying.flow. |
| 59560 | 61 63 63 6f 75 6e 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6c 6f 63 61 6c 6c 79 2c 20 | accounting.information.locally,. |
| 59580 | 6f 6e 65 20 63 61 6e 20 61 6c 73 6f 20 65 78 70 6f 72 74 65 64 20 74 68 65 6d 20 74 6f 20 61 20 | one.can.also.exported.them.to.a. |
| 595a0 | 63 6f 6c 6c 65 63 74 69 6f 6e 20 73 65 72 76 65 72 2e 00 49 6e 20 61 64 64 69 74 69 6f 6e 20 74 | collection.server..In.addition.t |
| 595c0 | 6f 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 61 62 6f 76 65 2c 20 74 68 65 20 6f 75 74 70 75 74 20 | o.the.command.above,.the.output. |
| 595e0 | 69 73 20 69 6e 20 61 20 66 6f 72 6d 61 74 20 77 68 69 63 68 20 63 61 6e 20 62 65 20 75 73 65 64 | is.in.a.format.which.can.be.used |
| 59600 | 20 74 6f 20 64 69 72 65 63 74 6c 79 20 69 6d 70 6f 72 74 20 74 68 65 20 6b 65 79 20 69 6e 74 6f | .to.directly.import.the.key.into |
| 59620 | 20 74 68 65 20 56 79 4f 53 20 43 4c 49 20 62 79 20 73 69 6d 70 6c 79 20 63 6f 70 79 2d 70 61 73 | .the.VyOS.CLI.by.simply.copy-pas |
| 59640 | 74 69 6e 67 20 74 68 65 20 6f 75 74 70 75 74 20 66 72 6f 6d 20 6f 70 2d 6d 6f 64 65 20 69 6e 74 | ting.the.output.from.op-mode.int |
| 59660 | 6f 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d 6f 64 65 2e 00 49 6e 20 61 64 64 69 74 69 6f | o.configuration.mode..In.additio |
| 59680 | 6e 20 77 65 20 73 65 74 75 70 20 49 50 76 36 20 3a 61 62 62 72 3a 60 52 41 20 28 52 6f 75 74 65 | n.we.setup.IPv6.:abbr:`RA.(Route |
| 596a0 | 72 20 41 64 76 65 72 74 69 73 65 6d 65 6e 74 73 29 60 20 74 6f 20 6d 61 6b 65 20 74 68 65 20 70 | r.Advertisements)`.to.make.the.p |
| 596c0 | 72 65 66 69 78 20 6b 6e 6f 77 6e 20 6f 6e 20 74 68 65 20 65 74 68 30 20 6c 69 6e 6b 2e 00 49 6e | refix.known.on.the.eth0.link..In |
| 596e0 | 20 61 64 64 69 74 69 6f 6e 20 79 6f 75 20 63 61 6e 20 61 6c 73 6f 20 64 69 73 61 62 6c 65 20 74 | .addition.you.can.also.disable.t |
| 59700 | 68 65 20 77 68 6f 6c 65 20 73 65 72 76 69 63 65 20 77 69 74 68 6f 75 74 20 74 68 65 20 6e 65 65 | he.whole.service.without.the.nee |
| 59720 | 64 20 74 6f 20 72 65 6d 6f 76 65 20 69 74 20 66 72 6f 6d 20 74 68 65 20 63 75 72 72 65 6e 74 20 | d.to.remove.it.from.the.current. |
| 59740 | 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 49 6e 20 61 64 64 69 74 69 6f 6e 20 79 6f 75 20 77 | configuration..In.addition.you.w |
| 59760 | 69 6c 6c 20 73 70 65 63 69 66 69 79 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 72 20 46 | ill.specifiy.the.IP.address.or.F |
| 59780 | 51 44 4e 20 66 6f 72 20 74 68 65 20 63 6c 69 65 6e 74 20 77 68 65 72 65 20 69 74 20 77 69 6c 6c | QDN.for.the.client.where.it.will |
| 597a0 | 20 63 6f 6e 6e 65 63 74 20 74 6f 2e 20 54 68 65 20 61 64 64 72 65 73 73 20 70 61 72 61 6d 65 74 | .connect.to..The.address.paramet |
| 597c0 | 65 72 20 63 61 6e 20 62 65 20 75 73 65 64 20 75 70 20 74 6f 20 74 77 6f 20 74 69 6d 65 73 20 61 | er.can.be.used.up.to.two.times.a |
| 597e0 | 6e 64 20 69 73 20 75 73 65 64 20 74 6f 20 61 73 73 69 67 6e 20 74 68 65 20 63 6c 69 65 6e 74 73 | nd.is.used.to.assign.the.clients |
| 59800 | 20 73 70 65 63 69 66 69 63 20 49 50 76 34 20 28 2f 33 32 29 20 6f 72 20 49 50 76 36 20 28 2f 31 | .specific.IPv4.(/32).or.IPv6.(/1 |
| 59820 | 32 38 29 20 61 64 64 72 65 73 73 2e 00 49 6e 20 61 64 64 69 74 69 6f 6e 20 79 6f 75 20 77 69 6c | 28).address..In.addition.you.wil |
| 59840 | 6c 20 73 70 65 63 69 66 79 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 72 20 46 51 44 4e | l.specify.the.IP.address.or.FQDN |
| 59860 | 20 66 6f 72 20 74 68 65 20 63 6c 69 65 6e 74 20 77 68 65 72 65 20 69 74 20 77 69 6c 6c 20 63 6f | .for.the.client.where.it.will.co |
| 59880 | 6e 6e 65 63 74 20 74 6f 2e 20 54 68 65 20 61 64 64 72 65 73 73 20 70 61 72 61 6d 65 74 65 72 20 | nnect.to..The.address.parameter. |
| 598a0 | 63 61 6e 20 62 65 20 75 73 65 64 20 75 70 20 74 6f 20 74 77 6f 20 74 69 6d 65 73 20 61 6e 64 20 | can.be.used.up.to.two.times.and. |
| 598c0 | 69 73 20 75 73 65 64 20 74 6f 20 61 73 73 69 67 6e 20 74 68 65 20 63 6c 69 65 6e 74 73 20 73 70 | is.used.to.assign.the.clients.sp |
| 598e0 | 65 63 69 66 69 63 20 49 50 76 34 20 28 2f 33 32 29 20 6f 72 20 49 50 76 36 20 28 2f 31 32 38 29 | ecific.IPv4.(/32).or.IPv6.(/128) |
| 59900 | 20 61 64 64 72 65 73 73 2e 00 49 6e 20 61 64 64 69 74 69 6f 6e 2c 20 79 6f 75 20 63 61 6e 20 73 | .address..In.addition,.you.can.s |
| 59920 | 70 65 63 69 66 79 20 6d 61 6e 79 20 6f 74 68 65 72 20 70 61 72 61 6d 65 74 65 72 73 20 74 6f 20 | pecify.many.other.parameters.to. |
| 59940 | 67 65 74 20 42 47 50 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 3a 00 49 6e 20 61 6e 20 2a 2a 61 64 64 | get.BGP.information:.In.an.**add |
| 59960 | 72 65 73 73 20 67 72 6f 75 70 2a 2a 20 61 20 73 69 6e 67 6c 65 20 49 50 20 61 64 64 72 65 73 73 | ress.group**.a.single.IP.address |
| 59980 | 20 6f 72 20 49 50 20 61 64 64 72 65 73 73 20 72 61 6e 67 65 20 69 73 20 64 65 66 69 6e 65 64 2e | .or.IP.address.range.is.defined. |
| 599a0 | 00 49 6e 20 61 6e 20 2a 2a 61 64 64 72 65 73 73 20 67 72 6f 75 70 2a 2a 20 61 20 73 69 6e 67 6c | .In.an.**address.group**.a.singl |
| 599c0 | 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 72 20 49 50 20 61 64 64 72 65 73 73 20 72 61 6e 67 65 | e.IP.address.or.IP.address.range |
| 599e0 | 73 20 61 72 65 20 64 65 66 69 6e 65 64 2e 00 49 6e 20 62 6f 74 68 20 63 61 73 65 73 2c 20 77 65 | s.are.defined..In.both.cases,.we |
| 59a00 | 20 77 69 6c 6c 20 75 73 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 65 74 74 69 6e 67 73 | .will.use.the.following.settings |
| 59a20 | 3a 00 49 6e 20 63 61 73 65 20 6f 66 20 70 65 65 72 2d 70 65 65 72 20 72 65 6c 61 74 69 6f 6e 73 | :.In.case.of.peer-peer.relations |
| 59a40 | 68 69 70 20 72 6f 75 74 65 73 20 63 61 6e 20 62 65 20 72 65 63 65 69 76 65 64 20 6f 6e 6c 79 20 | hip.routes.can.be.received.only. |
| 59a60 | 69 66 20 4f 54 43 20 76 61 6c 75 65 20 69 73 20 65 71 75 61 6c 20 74 6f 20 79 6f 75 72 20 6e 65 | if.OTC.value.is.equal.to.your.ne |
| 59a80 | 69 67 68 62 6f 72 20 41 53 20 6e 75 6d 62 65 72 2e 00 49 6e 20 63 61 73 65 2c 20 69 66 20 79 6f | ighbor.AS.number..In.case,.if.yo |
| 59aa0 | 75 20 6e 65 65 64 20 74 6f 20 63 61 74 63 68 20 73 6f 6d 65 20 6c 6f 67 73 20 66 72 6f 6d 20 66 | u.need.to.catch.some.logs.from.f |
| 59ac0 | 6c 6f 77 2d 61 63 63 6f 75 6e 74 69 6e 67 20 64 61 65 6d 6f 6e 2c 20 79 6f 75 20 6d 61 79 20 63 | low-accounting.daemon,.you.may.c |
| 59ae0 | 6f 6e 66 69 67 75 72 65 20 6c 6f 67 67 69 6e 67 20 66 61 63 69 6c 69 74 79 3a 00 49 6e 20 63 6f | onfigure.logging.facility:.In.co |
| 59b00 | 6e 74 72 61 73 74 20 74 6f 20 73 69 6d 70 6c 65 20 52 45 44 2c 20 56 79 4f 53 27 20 52 61 6e 64 | ntrast.to.simple.RED,.VyOS'.Rand |
| 59b20 | 6f 6d 2d 44 65 74 65 63 74 20 75 73 65 73 20 61 20 47 65 6e 65 72 61 6c 69 7a 65 64 20 52 61 6e | om-Detect.uses.a.Generalized.Ran |
| 59b40 | 64 6f 6d 20 45 61 72 6c 79 20 44 65 74 65 63 74 20 70 6f 6c 69 63 79 20 74 68 61 74 20 70 72 6f | dom.Early.Detect.policy.that.pro |
| 59b60 | 76 69 64 65 73 20 64 69 66 66 65 72 65 6e 74 20 76 69 72 74 75 61 6c 20 71 75 65 75 65 73 20 62 | vides.different.virtual.queues.b |
| 59b80 | 61 73 65 64 20 6f 6e 20 74 68 65 20 49 50 20 50 72 65 63 65 64 65 6e 63 65 20 76 61 6c 75 65 20 | ased.on.the.IP.Precedence.value. |
| 59ba0 | 73 6f 20 74 68 61 74 20 73 6f 6d 65 20 76 69 72 74 75 61 6c 20 71 75 65 75 65 73 20 63 61 6e 20 | so.that.some.virtual.queues.can. |
| 59bc0 | 64 72 6f 70 20 6d 6f 72 65 20 70 61 63 6b 65 74 73 20 74 68 61 6e 20 6f 74 68 65 72 73 2e 00 49 | drop.more.packets.than.others..I |
| 59be0 | 6e 20 66 61 69 6c 6f 76 65 72 20 6d 6f 64 65 2c 20 6f 6e 65 20 69 6e 74 65 72 66 61 63 65 20 69 | n.failover.mode,.one.interface.i |
| 59c00 | 73 20 73 65 74 20 74 6f 20 62 65 20 74 68 65 20 70 72 69 6d 61 72 79 20 69 6e 74 65 72 66 61 63 | s.set.to.be.the.primary.interfac |
| 59c20 | 65 20 61 6e 64 20 6f 74 68 65 72 20 69 6e 74 65 72 66 61 63 65 73 20 61 72 65 20 73 65 63 6f 6e | e.and.other.interfaces.are.secon |
| 59c40 | 64 61 72 79 20 6f 72 20 73 70 61 72 65 2e 20 49 6e 73 74 65 61 64 20 6f 66 20 62 61 6c 61 6e 63 | dary.or.spare..Instead.of.balanc |
| 59c60 | 69 6e 67 20 74 72 61 66 66 69 63 20 61 63 72 6f 73 73 20 61 6c 6c 20 68 65 61 6c 74 68 79 20 69 | ing.traffic.across.all.healthy.i |
| 59c80 | 6e 74 65 72 66 61 63 65 73 2c 20 6f 6e 6c 79 20 74 68 65 20 70 72 69 6d 61 72 79 20 69 6e 74 65 | nterfaces,.only.the.primary.inte |
| 59ca0 | 72 66 61 63 65 20 69 73 20 75 73 65 64 20 61 6e 64 20 69 6e 20 63 61 73 65 20 6f 66 20 66 61 69 | rface.is.used.and.in.case.of.fai |
| 59cc0 | 6c 75 72 65 2c 20 61 20 73 65 63 6f 6e 64 61 72 79 20 69 6e 74 65 72 66 61 63 65 20 73 65 6c 65 | lure,.a.secondary.interface.sele |
| 59ce0 | 63 74 65 64 20 66 72 6f 6d 20 74 68 65 20 70 6f 6f 6c 20 6f 66 20 61 76 61 69 6c 61 62 6c 65 20 | cted.from.the.pool.of.available. |
| 59d00 | 69 6e 74 65 72 66 61 63 65 73 20 74 61 6b 65 73 20 6f 76 65 72 2e 20 54 68 65 20 70 72 69 6d 61 | interfaces.takes.over..The.prima |
| 59d20 | 72 79 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 73 65 6c 65 63 74 65 64 20 62 61 73 65 64 20 6f | ry.interface.is.selected.based.o |
| 59d40 | 6e 20 69 74 73 20 77 65 69 67 68 74 20 61 6e 64 20 68 65 61 6c 74 68 2c 20 6f 74 68 65 72 73 20 | n.its.weight.and.health,.others. |
| 59d60 | 62 65 63 6f 6d 65 20 73 65 63 6f 6e 64 61 72 79 20 69 6e 74 65 72 66 61 63 65 73 2e 20 53 65 63 | become.secondary.interfaces..Sec |
| 59d80 | 6f 6e 64 61 72 79 20 69 6e 74 65 72 66 61 63 65 73 20 74 6f 20 74 61 6b 65 20 6f 76 65 72 20 61 | ondary.interfaces.to.take.over.a |
| 59da0 | 20 66 61 69 6c 65 64 20 70 72 69 6d 61 72 79 20 69 6e 74 65 72 66 61 63 65 20 61 72 65 20 63 68 | .failed.primary.interface.are.ch |
| 59dc0 | 6f 73 65 6e 20 66 72 6f 6d 20 74 68 65 20 6c 6f 61 64 20 62 61 6c 61 6e 63 65 72 27 73 20 69 6e | osen.from.the.load.balancer's.in |
| 59de0 | 74 65 72 66 61 63 65 20 70 6f 6f 6c 2c 20 64 65 70 65 6e 64 69 6e 67 20 6f 6e 20 74 68 65 69 72 | terface.pool,.depending.on.their |
| 59e00 | 20 77 65 69 67 68 74 20 61 6e 64 20 68 65 61 6c 74 68 2e 20 49 6e 74 65 72 66 61 63 65 20 72 6f | .weight.and.health..Interface.ro |
| 59e20 | 6c 65 73 20 63 61 6e 20 61 6c 73 6f 20 62 65 20 73 65 6c 65 63 74 65 64 20 62 61 73 65 64 20 6f | les.can.also.be.selected.based.o |
| 59e40 | 6e 20 72 75 6c 65 20 6f 72 64 65 72 20 62 79 20 69 6e 63 6c 75 64 69 6e 67 20 69 6e 74 65 72 66 | n.rule.order.by.including.interf |
| 59e60 | 61 63 65 73 20 69 6e 20 62 61 6c 61 6e 63 69 6e 67 20 72 75 6c 65 73 20 61 6e 64 20 6f 72 64 65 | aces.in.balancing.rules.and.orde |
| 59e80 | 72 69 6e 67 20 74 68 6f 73 65 20 72 75 6c 65 73 20 61 63 63 6f 72 64 69 6e 67 6c 79 2e 20 54 6f | ring.those.rules.accordingly..To |
| 59ea0 | 20 70 75 74 20 74 68 65 20 6c 6f 61 64 20 62 61 6c 61 6e 63 65 72 20 69 6e 20 66 61 69 6c 6f 76 | .put.the.load.balancer.in.failov |
| 59ec0 | 65 72 20 6d 6f 64 65 2c 20 63 72 65 61 74 65 20 61 20 66 61 69 6c 6f 76 65 72 20 72 75 6c 65 3a | er.mode,.create.a.failover.rule: |
| 59ee0 | 00 49 6e 20 66 69 72 65 77 61 6c 6c 20 62 72 69 64 67 65 20 72 75 6c 65 73 2c 20 74 68 65 20 61 | .In.firewall.bridge.rules,.the.a |
| 59f00 | 63 74 69 6f 6e 20 63 61 6e 20 62 65 3a 00 49 6e 20 67 65 6e 65 72 61 6c 2c 20 4f 53 50 46 20 70 | ction.can.be:.In.general,.OSPF.p |
| 59f20 | 72 6f 74 6f 63 6f 6c 20 72 65 71 75 69 72 65 73 20 61 20 62 61 63 6b 62 6f 6e 65 20 61 72 65 61 | rotocol.requires.a.backbone.area |
| 59f40 | 20 28 61 72 65 61 20 30 29 20 74 6f 20 62 65 20 63 6f 68 65 72 65 6e 74 20 61 6e 64 20 66 75 6c | .(area.0).to.be.coherent.and.ful |
| 59f60 | 6c 79 20 63 6f 6e 6e 65 63 74 65 64 2e 20 49 2e 65 2e 20 61 6e 79 20 62 61 63 6b 62 6f 6e 65 20 | ly.connected..I.e..any.backbone. |
| 59f80 | 61 72 65 61 20 72 6f 75 74 65 72 20 6d 75 73 74 20 68 61 76 65 20 61 20 72 6f 75 74 65 20 74 6f | area.router.must.have.a.route.to |
| 59fa0 | 20 61 6e 79 20 6f 74 68 65 72 20 62 61 63 6b 62 6f 6e 65 20 61 72 65 61 20 72 6f 75 74 65 72 2e | .any.other.backbone.area.router. |
| 59fc0 | 20 4d 6f 72 65 6f 76 65 72 2c 20 65 76 65 72 79 20 41 42 52 20 6d 75 73 74 20 68 61 76 65 20 61 | .Moreover,.every.ABR.must.have.a |
| 59fe0 | 20 6c 69 6e 6b 20 74 6f 20 62 61 63 6b 62 6f 6e 65 20 61 72 65 61 2e 20 48 6f 77 65 76 65 72 2c | .link.to.backbone.area..However, |
| 5a000 | 20 69 74 20 69 73 20 6e 6f 74 20 61 6c 77 61 79 73 20 70 6f 73 73 69 62 6c 65 20 74 6f 20 68 61 | .it.is.not.always.possible.to.ha |
| 5a020 | 76 65 20 61 20 70 68 79 73 69 63 61 6c 20 6c 69 6e 6b 20 74 6f 20 61 20 62 61 63 6b 62 6f 6e 65 | ve.a.physical.link.to.a.backbone |
| 5a040 | 20 61 72 65 61 2e 20 49 6e 20 74 68 69 73 20 63 61 73 65 20 62 65 74 77 65 65 6e 20 74 77 6f 20 | .area..In.this.case.between.two. |
| 5a060 | 41 42 52 20 28 6f 6e 65 20 6f 66 20 74 68 65 6d 20 68 61 73 20 61 20 6c 69 6e 6b 20 74 6f 20 74 | ABR.(one.of.them.has.a.link.to.t |
| 5a080 | 68 65 20 62 61 63 6b 62 6f 6e 65 20 61 72 65 61 29 20 69 6e 20 74 68 65 20 61 72 65 61 20 28 6e | he.backbone.area).in.the.area.(n |
| 5a0a0 | 6f 74 20 73 74 75 62 20 61 72 65 61 29 20 61 20 76 69 72 74 75 61 6c 20 6c 69 6e 6b 20 69 73 20 | ot.stub.area).a.virtual.link.is. |
| 5a0c0 | 6f 72 67 61 6e 69 7a 65 64 2e 00 49 6e 20 6c 61 72 67 65 20 64 65 70 6c 6f 79 6d 65 6e 74 73 20 | organized..In.large.deployments. |
| 5a0e0 | 69 74 20 69 73 20 6e 6f 74 20 72 65 61 73 6f 6e 61 62 6c 65 20 74 6f 20 63 6f 6e 66 69 67 75 72 | it.is.not.reasonable.to.configur |
| 5a100 | 65 20 65 61 63 68 20 75 73 65 72 20 69 6e 64 69 76 69 64 75 61 6c 6c 79 20 6f 6e 20 65 76 65 72 | e.each.user.individually.on.ever |
| 5a120 | 79 20 73 79 73 74 65 6d 2e 20 56 79 4f 53 20 73 75 70 70 6f 72 74 73 20 75 73 69 6e 67 20 3a 61 | y.system..VyOS.supports.using.:a |
| 5a140 | 62 62 72 3a 60 52 41 44 49 55 53 20 28 52 65 6d 6f 74 65 20 41 75 74 68 65 6e 74 69 63 61 74 69 | bbr:`RADIUS.(Remote.Authenticati |
| 5a160 | 6f 6e 20 44 69 61 6c 2d 49 6e 20 55 73 65 72 20 53 65 72 76 69 63 65 29 60 20 73 65 72 76 65 72 | on.Dial-In.User.Service)`.server |
| 5a180 | 73 20 61 73 20 62 61 63 6b 65 6e 64 20 66 6f 72 20 75 73 65 72 20 61 75 74 68 65 6e 74 69 63 61 | s.as.backend.for.user.authentica |
| 5a1a0 | 74 69 6f 6e 2e 00 49 6e 20 6f 72 64 65 72 20 66 6f 72 20 66 6c 6f 77 20 61 63 63 6f 75 6e 74 69 | tion..In.order.for.flow.accounti |
| 5a1c0 | 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 6f 20 62 65 20 63 6f 6c 6c 65 63 74 65 64 20 61 | ng.information.to.be.collected.a |
| 5a1e0 | 6e 64 20 64 69 73 70 6c 61 79 65 64 20 66 6f 72 20 61 6e 20 69 6e 74 65 72 66 61 63 65 2c 20 74 | nd.displayed.for.an.interface,.t |
| 5a200 | 68 65 20 69 6e 74 65 72 66 61 63 65 20 6d 75 73 74 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 | he.interface.must.be.configured. |
| 5a220 | 66 6f 72 20 66 6c 6f 77 20 61 63 63 6f 75 6e 74 69 6e 67 2e 00 49 6e 20 6f 72 64 65 72 20 66 6f | for.flow.accounting..In.order.fo |
| 5a240 | 72 20 74 68 65 20 70 72 69 6d 61 72 79 20 61 6e 64 20 74 68 65 20 73 65 63 6f 6e 64 61 72 79 20 | r.the.primary.and.the.secondary. |
| 5a260 | 44 48 43 50 20 73 65 72 76 65 72 20 74 6f 20 6b 65 65 70 20 74 68 65 69 72 20 6c 65 61 73 65 20 | DHCP.server.to.keep.their.lease. |
| 5a280 | 74 61 62 6c 65 73 20 69 6e 20 73 79 6e 63 2c 20 74 68 65 79 20 6d 75 73 74 20 62 65 20 61 62 6c | tables.in.sync,.they.must.be.abl |
| 5a2a0 | 65 20 74 6f 20 72 65 61 63 68 20 65 61 63 68 20 6f 74 68 65 72 20 6f 6e 20 54 43 50 20 70 6f 72 | e.to.reach.each.other.on.TCP.por |
| 5a2c0 | 74 20 36 34 37 2e 20 49 66 20 79 6f 75 20 68 61 76 65 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 | t.647..If.you.have.firewall.rule |
| 5a2e0 | 73 20 69 6e 20 65 66 66 65 63 74 2c 20 61 64 6a 75 73 74 20 74 68 65 6d 20 61 63 63 6f 72 64 69 | s.in.effect,.adjust.them.accordi |
| 5a300 | 6e 67 6c 79 2e 00 49 6e 20 6f 72 64 65 72 20 66 6f 72 20 74 68 65 20 73 79 73 74 65 6d 20 74 6f | ngly..In.order.for.the.system.to |
| 5a320 | 20 75 73 65 20 61 6e 64 20 63 6f 6d 70 6c 65 74 65 20 75 6e 71 75 61 6c 69 66 69 65 64 20 68 6f | .use.and.complete.unqualified.ho |
| 5a340 | 73 74 20 6e 61 6d 65 73 2c 20 61 20 6c 69 73 74 20 63 61 6e 20 62 65 20 64 65 66 69 6e 65 64 20 | st.names,.a.list.can.be.defined. |
| 5a360 | 77 68 69 63 68 20 77 69 6c 6c 20 62 65 20 75 73 65 64 20 66 6f 72 20 64 6f 6d 61 69 6e 20 73 65 | which.will.be.used.for.domain.se |
| 5a380 | 61 72 63 68 65 73 2e 00 49 6e 20 6f 72 64 65 72 20 74 6f 20 61 6c 6c 6f 77 20 66 6f 72 20 4c 44 | arches..In.order.to.allow.for.LD |
| 5a3a0 | 50 20 6f 6e 20 74 68 65 20 6c 6f 63 61 6c 20 72 6f 75 74 65 72 20 74 6f 20 65 78 63 68 61 6e 67 | P.on.the.local.router.to.exchang |
| 5a3c0 | 65 20 6c 61 62 65 6c 20 61 64 76 65 72 74 69 73 65 6d 65 6e 74 73 20 77 69 74 68 20 6f 74 68 65 | e.label.advertisements.with.othe |
| 5a3e0 | 72 20 72 6f 75 74 65 72 73 2c 20 61 20 54 43 50 20 73 65 73 73 69 6f 6e 20 77 69 6c 6c 20 62 65 | r.routers,.a.TCP.session.will.be |
| 5a400 | 20 65 73 74 61 62 6c 69 73 68 65 64 20 62 65 74 77 65 65 6e 20 61 75 74 6f 6d 61 74 69 63 61 6c | .established.between.automatical |
| 5a420 | 6c 79 20 64 69 73 63 6f 76 65 72 65 64 20 61 6e 64 20 73 74 61 74 69 63 61 6c 6c 79 20 61 73 73 | ly.discovered.and.statically.ass |
| 5a440 | 69 67 6e 65 64 20 72 6f 75 74 65 72 73 2e 20 4c 44 50 20 77 69 6c 6c 20 74 72 79 20 74 6f 20 65 | igned.routers..LDP.will.try.to.e |
| 5a460 | 73 74 61 62 6c 69 73 68 20 61 20 54 43 50 20 73 65 73 73 69 6f 6e 20 74 6f 20 74 68 65 20 2a 2a | stablish.a.TCP.session.to.the.** |
| 5a480 | 74 72 61 6e 73 70 6f 72 74 20 61 64 64 72 65 73 73 2a 2a 20 6f 66 20 6f 74 68 65 72 20 72 6f 75 | transport.address**.of.other.rou |
| 5a4a0 | 74 65 72 73 2e 20 54 68 65 72 65 66 6f 72 65 20 66 6f 72 20 4c 44 50 20 74 6f 20 66 75 6e 63 74 | ters..Therefore.for.LDP.to.funct |
| 5a4c0 | 69 6f 6e 20 70 72 6f 70 65 72 6c 79 20 70 6c 65 61 73 65 20 6d 61 6b 65 20 73 75 72 65 20 74 68 | ion.properly.please.make.sure.th |
| 5a4e0 | 65 20 74 72 61 6e 73 70 6f 72 74 20 61 64 64 72 65 73 73 20 69 73 20 73 68 6f 77 6e 20 69 6e 20 | e.transport.address.is.shown.in. |
| 5a500 | 74 68 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 61 6e 64 20 72 65 61 63 68 61 62 6c 65 20 | the.routing.table.and.reachable. |
| 5a520 | 74 6f 20 74 72 61 66 66 69 63 20 61 74 20 61 6c 6c 20 74 69 6d 65 73 2e 00 49 6e 20 6f 72 64 65 | to.traffic.at.all.times..In.orde |
| 5a540 | 72 20 74 6f 20 63 6f 6e 74 72 6f 6c 20 61 6e 64 20 6d 6f 64 69 66 79 20 72 6f 75 74 69 6e 67 20 | r.to.control.and.modify.routing. |
| 5a560 | 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 68 61 74 20 69 73 20 65 78 63 68 61 6e 67 65 64 20 62 65 | information.that.is.exchanged.be |
| 5a580 | 74 77 65 65 6e 20 70 65 65 72 73 20 79 6f 75 20 63 61 6e 20 75 73 65 20 72 6f 75 74 65 2d 6d 61 | tween.peers.you.can.use.route-ma |
| 5a5a0 | 70 2c 20 66 69 6c 74 65 72 2d 6c 69 73 74 2c 20 70 72 65 66 69 78 2d 6c 69 73 74 2c 20 64 69 73 | p,.filter-list,.prefix-list,.dis |
| 5a5c0 | 74 72 69 62 75 74 65 2d 6c 69 73 74 2e 00 49 6e 20 6f 72 64 65 72 20 74 6f 20 64 65 66 69 6e 65 | tribute-list..In.order.to.define |
| 5a5e0 | 20 77 68 69 63 68 20 74 72 61 66 66 69 63 20 67 6f 65 73 20 69 6e 74 6f 20 77 68 69 63 68 20 63 | .which.traffic.goes.into.which.c |
| 5a600 | 6c 61 73 73 2c 20 79 6f 75 20 64 65 66 69 6e 65 20 66 69 6c 74 65 72 73 20 28 74 68 61 74 20 69 | lass,.you.define.filters.(that.i |
| 5a620 | 73 2c 20 74 68 65 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 29 2e 20 50 61 63 6b 65 | s,.the.matching.criteria)..Packe |
| 5a640 | 74 73 20 67 6f 20 74 68 72 6f 75 67 68 20 74 68 65 73 65 20 6d 61 74 63 68 69 6e 67 20 72 75 6c | ts.go.through.these.matching.rul |
| 5a660 | 65 73 20 28 61 73 20 69 6e 20 74 68 65 20 72 75 6c 65 73 20 6f 66 20 61 20 66 69 72 65 77 61 6c | es.(as.in.the.rules.of.a.firewal |
| 5a680 | 6c 29 20 61 6e 64 2c 20 69 66 20 61 20 70 61 63 6b 65 74 20 6d 61 74 63 68 65 73 20 74 68 65 20 | l).and,.if.a.packet.matches.the. |
| 5a6a0 | 66 69 6c 74 65 72 2c 20 69 74 20 69 73 20 61 73 73 69 67 6e 65 64 20 74 6f 20 74 68 61 74 20 63 | filter,.it.is.assigned.to.that.c |
| 5a6c0 | 6c 61 73 73 2e 00 49 6e 20 6f 72 64 65 72 20 74 6f 20 68 61 76 65 20 56 79 4f 53 20 54 72 61 66 | lass..In.order.to.have.VyOS.Traf |
| 5a6e0 | 66 69 63 20 43 6f 6e 74 72 6f 6c 20 77 6f 72 6b 69 6e 67 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 | fic.Control.working.you.need.to. |
| 5a700 | 66 6f 6c 6c 6f 77 20 32 20 73 74 65 70 73 3a 00 49 6e 20 6f 72 64 65 72 20 74 6f 20 68 61 76 65 | follow.2.steps:.In.order.to.have |
| 5a720 | 20 66 75 6c 6c 20 63 6f 6e 74 72 6f 6c 20 61 6e 64 20 6d 61 6b 65 20 75 73 65 20 6f 66 20 6d 75 | .full.control.and.make.use.of.mu |
| 5a740 | 6c 74 69 70 6c 65 20 73 74 61 74 69 63 20 70 75 62 6c 69 63 20 49 50 20 61 64 64 72 65 73 73 65 | ltiple.static.public.IP.addresse |
| 5a760 | 73 2c 20 79 6f 75 72 20 56 79 4f 53 20 77 69 6c 6c 20 68 61 76 65 20 74 6f 20 69 6e 69 74 69 61 | s,.your.VyOS.will.have.to.initia |
| 5a780 | 74 65 20 74 68 65 20 50 50 50 6f 45 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 61 6e 64 20 63 6f 6e 74 | te.the.PPPoE.connection.and.cont |
| 5a7a0 | 72 6f 6c 20 69 74 2e 20 49 6e 20 6f 72 64 65 72 20 66 6f 72 20 74 68 69 73 20 6d 65 74 68 6f 64 | rol.it..In.order.for.this.method |
| 5a7c0 | 20 74 6f 20 77 6f 72 6b 2c 20 79 6f 75 20 77 69 6c 6c 20 68 61 76 65 20 74 6f 20 66 69 67 75 72 | .to.work,.you.will.have.to.figur |
| 5a7e0 | 65 20 6f 75 74 20 68 6f 77 20 74 6f 20 6d 61 6b 65 20 79 6f 75 72 20 44 53 4c 20 4d 6f 64 65 6d | e.out.how.to.make.your.DSL.Modem |
| 5a800 | 2f 52 6f 75 74 65 72 20 73 77 69 74 63 68 20 69 6e 74 6f 20 61 20 42 72 69 64 67 65 64 20 4d 6f | /Router.switch.into.a.Bridged.Mo |
| 5a820 | 64 65 20 73 6f 20 69 74 20 6f 6e 6c 79 20 61 63 74 73 20 61 73 20 61 20 44 53 4c 20 54 72 61 6e | de.so.it.only.acts.as.a.DSL.Tran |
| 5a840 | 73 63 65 69 76 65 72 20 64 65 76 69 63 65 20 74 6f 20 63 6f 6e 6e 65 63 74 20 62 65 74 77 65 65 | sceiver.device.to.connect.betwee |
| 5a860 | 6e 20 74 68 65 20 45 74 68 65 72 6e 65 74 20 6c 69 6e 6b 20 6f 66 20 79 6f 75 72 20 56 79 4f 53 | n.the.Ethernet.link.of.your.VyOS |
| 5a880 | 20 61 6e 64 20 74 68 65 20 70 68 6f 6e 65 20 63 61 62 6c 65 2e 20 4f 6e 63 65 20 79 6f 75 72 20 | .and.the.phone.cable..Once.your. |
| 5a8a0 | 44 53 4c 20 54 72 61 6e 73 63 65 69 76 65 72 20 69 73 20 69 6e 20 42 72 69 64 67 65 20 4d 6f 64 | DSL.Transceiver.is.in.Bridge.Mod |
| 5a8c0 | 65 2c 20 79 6f 75 20 73 68 6f 75 6c 64 20 67 65 74 20 6e 6f 20 49 50 20 61 64 64 72 65 73 73 20 | e,.you.should.get.no.IP.address. |
| 5a8e0 | 66 72 6f 6d 20 69 74 2e 20 50 6c 65 61 73 65 20 6d 61 6b 65 20 73 75 72 65 20 79 6f 75 20 63 6f | from.it..Please.make.sure.you.co |
| 5a900 | 6e 6e 65 63 74 20 74 6f 20 74 68 65 20 45 74 68 65 72 6e 65 74 20 50 6f 72 74 20 31 20 69 66 20 | nnect.to.the.Ethernet.Port.1.if. |
| 5a920 | 79 6f 75 72 20 44 53 4c 20 54 72 61 6e 73 63 65 69 76 65 72 20 68 61 73 20 61 20 73 77 69 74 63 | your.DSL.Transceiver.has.a.switc |
| 5a940 | 68 2c 20 61 73 20 73 6f 6d 65 20 6f 66 20 74 68 65 6d 20 6f 6e 6c 79 20 77 6f 72 6b 20 74 68 69 | h,.as.some.of.them.only.work.thi |
| 5a960 | 73 20 77 61 79 2e 00 49 6e 20 6f 72 64 65 72 20 74 6f 20 6d 61 70 20 73 70 65 63 69 66 69 63 20 | s.way..In.order.to.map.specific. |
| 5a980 | 49 50 76 36 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 73 70 65 63 69 66 69 63 20 68 6f 73 74 73 | IPv6.addresses.to.specific.hosts |
| 5a9a0 | 20 73 74 61 74 69 63 20 6d 61 70 70 69 6e 67 73 20 63 61 6e 20 62 65 20 63 72 65 61 74 65 64 2e | .static.mappings.can.be.created. |
| 5a9c0 | 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 6c 65 20 65 78 70 6c 61 69 6e 73 20 | .The.following.example.explains. |
| 5a9e0 | 74 68 65 20 70 72 6f 63 65 73 73 2e 00 49 6e 20 6f 72 64 65 72 20 74 6f 20 6d 69 6e 69 6d 69 7a | the.process..In.order.to.minimiz |
| 5aa00 | 65 20 74 68 65 20 66 6c 6f 6f 64 69 6e 67 20 6f 66 20 41 52 50 20 61 6e 64 20 4e 44 20 6d 65 73 | e.the.flooding.of.ARP.and.ND.mes |
| 5aa20 | 73 61 67 65 73 20 69 6e 20 74 68 65 20 56 58 4c 41 4e 20 6e 65 74 77 6f 72 6b 2c 20 45 56 50 4e | sages.in.the.VXLAN.network,.EVPN |
| 5aa40 | 20 69 6e 63 6c 75 64 65 73 20 70 72 6f 76 69 73 69 6f 6e 73 20 3a 72 66 63 3a 60 37 34 33 32 23 | .includes.provisions.:rfc:`7432# |
| 5aa60 | 73 65 63 74 69 6f 6e 2d 31 30 60 20 74 68 61 74 20 61 6c 6c 6f 77 20 70 61 72 74 69 63 69 70 61 | section-10`.that.allow.participa |
| 5aa80 | 74 69 6e 67 20 56 54 45 50 73 20 74 6f 20 73 75 70 70 72 65 73 73 20 73 75 63 68 20 6d 65 73 73 | ting.VTEPs.to.suppress.such.mess |
| 5aaa0 | 61 67 65 73 20 69 6e 20 63 61 73 65 20 74 68 65 79 20 6b 6e 6f 77 20 74 68 65 20 4d 41 43 2d 49 | ages.in.case.they.know.the.MAC-I |
| 5aac0 | 50 20 62 69 6e 64 69 6e 67 20 61 6e 64 20 63 61 6e 20 72 65 70 6c 79 20 6f 6e 20 62 65 68 61 6c | P.binding.and.can.reply.on.behal |
| 5aae0 | 66 20 6f 66 20 74 68 65 20 72 65 6d 6f 74 65 20 68 6f 73 74 2e 00 49 6e 20 6f 72 64 65 72 20 74 | f.of.the.remote.host..In.order.t |
| 5ab00 | 6f 20 73 65 70 61 72 61 74 65 20 74 72 61 66 66 69 63 2c 20 46 61 69 72 20 51 75 65 75 65 20 75 | o.separate.traffic,.Fair.Queue.u |
| 5ab20 | 73 65 73 20 61 20 63 6c 61 73 73 69 66 69 65 72 20 62 61 73 65 64 20 6f 6e 20 73 6f 75 72 63 65 | ses.a.classifier.based.on.source |
| 5ab40 | 20 61 64 64 72 65 73 73 2c 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 61 6e | .address,.destination.address.an |
| 5ab60 | 64 20 73 6f 75 72 63 65 20 70 6f 72 74 2e 20 54 68 65 20 61 6c 67 6f 72 69 74 68 6d 20 65 6e 71 | d.source.port..The.algorithm.enq |
| 5ab80 | 75 65 75 65 73 20 70 61 63 6b 65 74 73 20 74 6f 20 68 61 73 68 20 62 75 63 6b 65 74 73 20 62 61 | ueues.packets.to.hash.buckets.ba |
| 5aba0 | 73 65 64 20 6f 6e 20 74 68 6f 73 65 20 74 72 65 65 20 70 61 72 61 6d 65 74 65 72 73 2e 20 45 61 | sed.on.those.tree.parameters..Ea |
| 5abc0 | 63 68 20 6f 66 20 74 68 65 73 65 20 62 75 63 6b 65 74 73 20 73 68 6f 75 6c 64 20 72 65 70 72 65 | ch.of.these.buckets.should.repre |
| 5abe0 | 73 65 6e 74 20 61 20 75 6e 69 71 75 65 20 66 6c 6f 77 2e 20 42 65 63 61 75 73 65 20 6d 75 6c 74 | sent.a.unique.flow..Because.mult |
| 5ac00 | 69 70 6c 65 20 66 6c 6f 77 73 20 6d 61 79 20 67 65 74 20 68 61 73 68 65 64 20 74 6f 20 74 68 65 | iple.flows.may.get.hashed.to.the |
| 5ac20 | 20 73 61 6d 65 20 62 75 63 6b 65 74 2c 20 74 68 65 20 68 61 73 68 69 6e 67 20 61 6c 67 6f 72 69 | .same.bucket,.the.hashing.algori |
| 5ac40 | 74 68 6d 20 69 73 20 70 65 72 74 75 72 62 65 64 20 61 74 20 63 6f 6e 66 69 67 75 72 61 62 6c 65 | thm.is.perturbed.at.configurable |
| 5ac60 | 20 69 6e 74 65 72 76 61 6c 73 20 73 6f 20 74 68 61 74 20 74 68 65 20 75 6e 66 61 69 72 6e 65 73 | .intervals.so.that.the.unfairnes |
| 5ac80 | 73 20 6c 61 73 74 73 20 6f 6e 6c 79 20 66 6f 72 20 61 20 73 68 6f 72 74 20 77 68 69 6c 65 2e 20 | s.lasts.only.for.a.short.while.. |
| 5aca0 | 50 65 72 74 75 72 62 61 74 69 6f 6e 20 6d 61 79 20 68 6f 77 65 76 65 72 20 63 61 75 73 65 20 73 | Perturbation.may.however.cause.s |
| 5acc0 | 6f 6d 65 20 69 6e 61 64 76 65 72 74 65 6e 74 20 70 61 63 6b 65 74 20 72 65 6f 72 64 65 72 69 6e | ome.inadvertent.packet.reorderin |
| 5ace0 | 67 20 74 6f 20 6f 63 63 75 72 2e 20 41 6e 20 61 64 76 69 73 61 62 6c 65 20 76 61 6c 75 65 20 63 | g.to.occur..An.advisable.value.c |
| 5ad00 | 6f 75 6c 64 20 62 65 20 31 30 20 73 65 63 6f 6e 64 73 2e 00 49 6e 20 6f 72 64 65 72 20 74 6f 20 | ould.be.10.seconds..In.order.to. |
| 5ad20 | 75 73 65 20 50 49 4d 2c 20 69 74 20 69 73 20 6e 65 63 65 73 73 61 72 79 20 74 6f 20 63 6f 6e 66 | use.PIM,.it.is.necessary.to.conf |
| 5ad40 | 69 67 75 72 65 20 61 20 3a 61 62 62 72 3a 60 52 50 20 28 52 65 6e 64 65 7a 76 6f 75 73 20 50 6f | igure.a.:abbr:`RP.(Rendezvous.Po |
| 5ad60 | 69 6e 74 29 60 20 66 6f 72 20 6a 6f 69 6e 20 6d 65 73 73 61 67 65 73 20 74 6f 20 62 65 20 73 65 | int)`.for.join.messages.to.be.se |
| 5ad80 | 6e 74 20 74 6f 2e 20 43 75 72 72 65 6e 74 6c 79 20 74 68 65 20 6f 6e 6c 79 20 6d 65 74 68 6f 64 | nt.to..Currently.the.only.method |
| 5ada0 | 6f 6c 6f 67 79 20 74 6f 20 64 6f 20 74 68 69 73 20 69 73 20 76 69 61 20 73 74 61 74 69 63 20 72 | ology.to.do.this.is.via.static.r |
| 5adc0 | 65 6e 64 65 7a 76 6f 75 73 20 70 6f 69 6e 74 20 63 6f 6d 6d 61 6e 64 73 2e 00 49 6e 20 6f 72 64 | endezvous.point.commands..In.ord |
| 5ade0 | 65 72 20 74 6f 20 75 73 65 20 54 53 4f 2f 4c 52 4f 20 77 69 74 68 20 56 4d 58 4e 45 54 33 20 61 | er.to.use.TSO/LRO.with.VMXNET3.a |
| 5ae00 | 64 61 70 74 65 72 73 2c 20 74 68 65 20 53 47 20 6f 66 66 6c 6f 61 64 69 6e 67 20 6f 70 74 69 6f | dapters,.the.SG.offloading.optio |
| 5ae20 | 6e 20 6d 75 73 74 20 61 6c 73 6f 20 62 65 20 65 6e 61 62 6c 65 64 2e 00 49 6e 20 6f 72 64 65 72 | n.must.also.be.enabled..In.order |
| 5ae40 | 20 74 6f 20 75 73 65 20 54 53 4f 2f 4c 52 4f 20 77 69 74 68 20 56 4d 58 4e 45 54 33 20 61 64 61 | .to.use.TSO/LRO.with.VMXNET3.ada |
| 5ae60 | 74 65 72 73 20 6f 6e 65 20 6d 75 73 74 20 61 6c 73 6f 20 65 6e 61 62 6c 65 20 74 68 65 20 53 47 | ters.one.must.also.enable.the.SG |
| 5ae80 | 20 6f 66 66 6c 6f 61 64 69 6e 67 20 6f 70 74 69 6f 6e 2e 00 49 6e 20 6f 72 64 65 72 20 74 6f 20 | .offloading.option..In.order.to. |
| 5aea0 | 75 73 65 20 66 6c 6f 77 74 61 62 6c 65 73 2c 20 74 68 65 20 6d 69 6e 69 6d 61 6c 20 63 6f 6e 66 | use.flowtables,.the.minimal.conf |
| 5aec0 | 69 67 75 72 61 74 69 6f 6e 20 6e 65 65 64 65 64 20 69 6e 63 6c 75 64 65 73 3a 00 49 6e 20 6f 74 | iguration.needed.includes:.In.ot |
| 5aee0 | 68 65 72 20 77 6f 72 64 73 20 69 74 20 61 6c 6c 6f 77 73 20 63 6f 6e 74 72 6f 6c 20 6f 66 20 77 | her.words.it.allows.control.of.w |
| 5af00 | 68 69 63 68 20 63 61 72 64 73 20 28 75 73 75 61 6c 6c 79 20 31 29 20 77 69 6c 6c 20 72 65 73 70 | hich.cards.(usually.1).will.resp |
| 5af20 | 6f 6e 64 20 74 6f 20 61 6e 20 61 72 70 20 72 65 71 75 65 73 74 2e 00 49 6e 20 6f 74 68 65 72 20 | ond.to.an.arp.request..In.other. |
| 5af40 | 77 6f 72 64 73 2c 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 68 61 73 20 61 | words,.connection.tracking.has.a |
| 5af60 | 6c 72 65 61 64 79 20 6f 62 73 65 72 76 65 64 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 62 | lready.observed.the.connection.b |
| 5af80 | 65 20 63 6c 6f 73 65 64 20 61 6e 64 20 68 61 73 20 74 72 61 6e 73 69 74 69 6f 6e 20 74 68 65 20 | e.closed.and.has.transition.the. |
| 5afa0 | 66 6c 6f 77 20 74 6f 20 49 4e 56 41 4c 49 44 20 74 6f 20 70 72 65 76 65 6e 74 20 61 74 74 61 63 | flow.to.INVALID.to.prevent.attac |
| 5afc0 | 6b 73 20 66 72 6f 6d 20 61 74 74 65 6d 70 74 69 6e 67 20 74 6f 20 72 65 75 73 65 20 74 68 65 20 | ks.from.attempting.to.reuse.the. |
| 5afe0 | 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 49 6e 20 6f 75 72 20 65 78 61 6d 70 6c 65 20 74 68 65 20 63 | connection..In.our.example.the.c |
| 5b000 | 65 72 74 69 66 69 63 61 74 65 20 6e 61 6d 65 20 69 73 20 63 61 6c 6c 65 64 20 76 79 6f 73 3a 00 | ertificate.name.is.called.vyos:. |
| 5b020 | 49 6e 20 6f 75 72 20 65 78 61 6d 70 6c 65 2c 20 77 65 20 75 73 65 64 20 74 68 65 20 6b 65 79 20 | In.our.example,.we.used.the.key. |
| 5b040 | 6e 61 6d 65 20 60 60 6f 70 65 6e 76 70 6e 2d 31 60 60 20 77 68 69 63 68 20 77 65 20 77 69 6c 6c | name.``openvpn-1``.which.we.will |
| 5b060 | 20 72 65 66 65 72 65 6e 63 65 20 69 6e 20 6f 75 72 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e | .reference.in.our.configuration. |
| 5b080 | 00 49 6e 20 6f 75 72 20 65 78 61 6d 70 6c 65 2c 20 77 65 20 77 69 6c 6c 20 62 65 20 66 6f 72 77 | .In.our.example,.we.will.be.forw |
| 5b0a0 | 61 72 64 69 6e 67 20 77 65 62 20 73 65 72 76 65 72 20 74 72 61 66 66 69 63 20 74 6f 20 61 6e 20 | arding.web.server.traffic.to.an. |
| 5b0c0 | 69 6e 74 65 72 6e 61 6c 20 77 65 62 20 73 65 72 76 65 72 20 6f 6e 20 31 39 32 2e 31 36 38 2e 30 | internal.web.server.on.192.168.0 |
| 5b0e0 | 2e 31 30 30 2e 20 48 54 54 50 20 74 72 61 66 66 69 63 20 6d 61 6b 65 73 20 75 73 65 20 6f 66 20 | .100..HTTP.traffic.makes.use.of. |
| 5b100 | 74 68 65 20 54 43 50 20 70 72 6f 74 6f 63 6f 6c 20 6f 6e 20 70 6f 72 74 20 38 30 2e 20 46 6f 72 | the.TCP.protocol.on.port.80..For |
| 5b120 | 20 6f 74 68 65 72 20 63 6f 6d 6d 6f 6e 20 70 6f 72 74 20 6e 75 6d 62 65 72 73 2c 20 73 65 65 3a | .other.common.port.numbers,.see: |
| 5b140 | 20 68 74 74 70 73 3a 2f 2f 65 6e 2e 77 69 6b 69 70 65 64 69 61 2e 6f 72 67 2f 77 69 6b 69 2f 4c | .https://en.wikipedia.org/wiki/L |
| 5b160 | 69 73 74 5f 6f 66 5f 54 43 50 5f 61 6e 64 5f 55 44 50 5f 70 6f 72 74 5f 6e 75 6d 62 65 72 73 00 | ist_of_TCP_and_UDP_port_numbers. |
| 5b180 | 49 6e 20 70 72 69 6e 63 69 70 6c 65 2c 20 76 61 6c 75 65 73 20 6d 75 73 74 20 62 65 20 3a 63 6f | In.principle,.values.must.be.:co |
| 5b1a0 | 64 65 3a 60 6d 69 6e 2d 74 68 72 65 73 68 6f 6c 64 60 20 3c 20 3a 63 6f 64 65 3a 60 6d 61 78 2d | de:`min-threshold`.<.:code:`max- |
| 5b1c0 | 74 68 72 65 73 68 6f 6c 64 60 20 3c 20 3a 63 6f 64 65 3a 60 71 75 65 75 65 2d 6c 69 6d 69 74 60 | threshold`.<.:code:`queue-limit` |
| 5b1e0 | 2e 00 49 6e 20 73 68 6f 72 74 2c 20 44 4d 56 50 4e 20 70 72 6f 76 69 64 65 73 20 74 68 65 20 63 | ..In.short,.DMVPN.provides.the.c |
| 5b200 | 61 70 61 62 69 6c 69 74 79 20 66 6f 72 20 63 72 65 61 74 69 6e 67 20 61 20 64 79 6e 61 6d 69 63 | apability.for.creating.a.dynamic |
| 5b220 | 2d 6d 65 73 68 20 56 50 4e 20 6e 65 74 77 6f 72 6b 20 77 69 74 68 6f 75 74 20 68 61 76 69 6e 67 | -mesh.VPN.network.without.having |
| 5b240 | 20 74 6f 20 70 72 65 2d 63 6f 6e 66 69 67 75 72 65 20 28 73 74 61 74 69 63 29 20 61 6c 6c 20 70 | .to.pre-configure.(static).all.p |
| 5b260 | 6f 73 73 69 62 6c 65 20 74 75 6e 6e 65 6c 20 65 6e 64 2d 70 6f 69 6e 74 20 70 65 65 72 73 2e 00 | ossible.tunnel.end-point.peers.. |
| 5b280 | 49 6e 20 73 6f 6d 65 20 63 61 73 65 20 77 68 65 72 65 20 77 65 20 6e 65 65 64 20 74 6f 20 68 61 | In.some.case.where.we.need.to.ha |
| 5b2a0 | 76 65 20 61 6e 20 6f 72 67 61 6e 69 7a 61 74 69 6f 6e 20 6f 66 20 6f 75 72 20 6d 61 74 63 68 69 | ve.an.organization.of.our.matchi |
| 5b2c0 | 6e 67 20 73 65 6c 65 63 74 69 6f 6e 2c 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 62 65 20 6d 6f 72 | ng.selection,.in.order.to.be.mor |
| 5b2e0 | 65 20 66 6c 65 78 69 62 6c 65 20 61 6e 64 20 6f 72 67 61 6e 69 7a 65 20 77 69 74 68 20 6f 75 72 | e.flexible.and.organize.with.our |
| 5b300 | 20 66 69 6c 74 65 72 20 64 65 66 69 6e 69 74 69 6f 6e 2e 20 57 65 20 63 61 6e 20 61 70 70 6c 79 | .filter.definition..We.can.apply |
| 5b320 | 20 74 72 61 66 66 69 63 20 6d 61 74 63 68 20 67 72 6f 75 70 73 2c 20 61 6c 6c 6f 77 69 6e 67 20 | .traffic.match.groups,.allowing. |
| 5b340 | 75 73 20 74 6f 20 63 72 65 61 74 65 20 64 69 73 74 69 6e 63 74 20 66 69 6c 74 65 72 20 67 72 6f | us.to.create.distinct.filter.gro |
| 5b360 | 75 70 73 20 77 69 74 68 69 6e 20 6f 75 72 20 70 6f 6c 69 63 79 20 61 6e 64 20 64 65 66 69 6e 65 | ups.within.our.policy.and.define |
| 5b380 | 20 76 61 72 69 6f 75 73 20 70 61 72 61 6d 65 74 65 72 73 20 66 6f 72 20 65 61 63 68 20 67 72 6f | .various.parameters.for.each.gro |
| 5b3a0 | 75 70 3a 00 49 6e 20 73 6f 6d 65 20 63 61 73 65 73 20 69 74 20 6d 61 79 20 62 65 20 6d 6f 72 65 | up:.In.some.cases.it.may.be.more |
| 5b3c0 | 20 63 6f 6e 76 65 6e 69 65 6e 74 20 74 6f 20 65 6e 61 62 6c 65 20 4f 53 50 46 20 6f 6e 20 61 20 | .convenient.to.enable.OSPF.on.a. |
| 5b3e0 | 70 65 72 20 69 6e 74 65 72 66 61 63 65 2f 73 75 62 6e 65 74 20 62 61 73 69 73 20 3a 63 66 67 63 | per.interface/subnet.basis.:cfgc |
| 5b400 | 6d 64 3a 60 73 65 74 20 70 72 6f 74 6f 63 6f 6c 73 20 6f 73 70 66 20 69 6e 74 65 72 66 61 63 65 | md:`set.protocols.ospf.interface |
| 5b420 | 20 3c 69 6e 74 65 72 66 61 63 65 3e 20 61 72 65 61 20 3c 78 2e 78 2e 78 2e 78 20 7c 20 78 3e 60 | .<interface>.area.<x.x.x.x.|.x>` |
| 5b440 | 00 49 6e 20 74 68 65 20 3a 72 65 66 3a 60 63 72 65 61 74 69 6e 67 5f 61 5f 74 72 61 66 66 69 63 | .In.the.:ref:`creating_a_traffic |
| 5b460 | 5f 70 6f 6c 69 63 79 60 20 73 65 63 74 69 6f 6e 20 79 6f 75 20 77 69 6c 6c 20 73 65 65 20 74 68 | _policy`.section.you.will.see.th |
| 5b480 | 61 74 20 73 6f 6d 65 20 6f 66 20 74 68 65 20 70 6f 6c 69 63 69 65 73 20 75 73 65 20 2a 63 6c 61 | at.some.of.the.policies.use.*cla |
| 5b4a0 | 73 73 65 73 2a 2e 20 54 68 6f 73 65 20 70 6f 6c 69 63 69 65 73 20 6c 65 74 20 79 6f 75 20 64 69 | sses*..Those.policies.let.you.di |
| 5b4c0 | 73 74 72 69 62 75 74 65 20 74 72 61 66 66 69 63 20 69 6e 74 6f 20 64 69 66 66 65 72 65 6e 74 20 | stribute.traffic.into.different. |
| 5b4e0 | 63 6c 61 73 73 65 73 20 61 63 63 6f 72 64 69 6e 67 20 74 6f 20 64 69 66 66 65 72 65 6e 74 20 70 | classes.according.to.different.p |
| 5b500 | 61 72 61 6d 65 74 65 72 73 20 79 6f 75 20 63 61 6e 20 63 68 6f 6f 73 65 2e 20 53 6f 2c 20 61 20 | arameters.you.can.choose..So,.a. |
| 5b520 | 63 6c 61 73 73 20 69 73 20 6a 75 73 74 20 61 20 73 70 65 63 69 66 69 63 20 74 79 70 65 20 6f 66 | class.is.just.a.specific.type.of |
| 5b540 | 20 74 72 61 66 66 69 63 20 79 6f 75 20 73 65 6c 65 63 74 2e 00 49 6e 20 74 68 65 20 56 79 4f 53 | .traffic.you.select..In.the.VyOS |
| 5b560 | 20 43 4c 49 2c 20 61 20 6b 65 79 20 70 6f 69 6e 74 20 6f 66 74 65 6e 20 6f 76 65 72 6c 6f 6f 6b | .CLI,.a.key.point.often.overlook |
| 5b580 | 65 64 20 69 73 20 74 68 61 74 20 72 61 74 68 65 72 20 74 68 61 6e 20 62 65 69 6e 67 20 63 6f 6e | ed.is.that.rather.than.being.con |
| 5b5a0 | 66 69 67 75 72 65 64 20 75 73 69 6e 67 20 74 68 65 20 60 73 65 74 20 76 70 6e 60 20 73 74 61 6e | figured.using.the.`set.vpn`.stan |
| 5b5c0 | 7a 61 2c 20 4f 70 65 6e 56 50 4e 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 20 61 73 20 61 20 6e | za,.OpenVPN.is.configured.as.a.n |
| 5b5e0 | 65 74 77 6f 72 6b 20 69 6e 74 65 72 66 61 63 65 20 75 73 69 6e 67 20 60 73 65 74 20 69 6e 74 65 | etwork.interface.using.`set.inte |
| 5b600 | 72 66 61 63 65 73 20 6f 70 65 6e 76 70 6e 60 2e 00 49 6e 20 74 68 65 20 61 62 6f 76 65 20 65 78 | rfaces.openvpn`..In.the.above.ex |
| 5b620 | 61 6d 70 6c 65 2c 20 61 6e 20 65 78 74 65 72 6e 61 6c 20 49 50 20 6f 66 20 31 39 32 2e 30 2e 32 | ample,.an.external.IP.of.192.0.2 |
| 5b640 | 2e 32 20 69 73 20 61 73 73 75 6d 65 64 2e 00 49 6e 20 74 68 65 20 61 67 65 20 6f 66 20 76 65 72 | .2.is.assumed..In.the.age.of.ver |
| 5b660 | 79 20 66 61 73 74 20 6e 65 74 77 6f 72 6b 73 2c 20 61 20 73 65 63 6f 6e 64 20 6f 66 20 75 6e 72 | y.fast.networks,.a.second.of.unr |
| 5b680 | 65 61 63 68 61 62 69 6c 69 74 79 20 6d 61 79 20 65 71 75 61 6c 20 6d 69 6c 6c 69 6f 6e 73 20 6f | eachability.may.equal.millions.o |
| 5b6a0 | 66 20 6c 6f 73 74 20 70 61 63 6b 65 74 73 2e 20 54 68 65 20 69 64 65 61 20 62 65 68 69 6e 64 20 | f.lost.packets..The.idea.behind. |
| 5b6c0 | 42 46 44 20 69 73 20 74 6f 20 64 65 74 65 63 74 20 76 65 72 79 20 71 75 69 63 6b 6c 79 20 77 68 | BFD.is.to.detect.very.quickly.wh |
| 5b6e0 | 65 6e 20 61 20 70 65 65 72 20 69 73 20 64 6f 77 6e 20 61 6e 64 20 74 61 6b 65 20 61 63 74 69 6f | en.a.peer.is.down.and.take.actio |
| 5b700 | 6e 20 65 78 74 72 65 6d 65 6c 79 20 66 61 73 74 2e 00 49 6e 20 74 68 65 20 63 61 73 65 20 6f 66 | n.extremely.fast..In.the.case.of |
| 5b720 | 20 4c 32 54 50 76 33 2c 20 74 68 65 20 66 65 61 74 75 72 65 73 20 6c 6f 73 74 20 61 72 65 20 74 | .L2TPv3,.the.features.lost.are.t |
| 5b740 | 65 6c 65 74 72 61 66 66 69 63 20 65 6e 67 69 6e 65 65 72 69 6e 67 20 66 65 61 74 75 72 65 73 20 | eletraffic.engineering.features. |
| 5b760 | 63 6f 6e 73 69 64 65 72 65 64 20 69 6d 70 6f 72 74 61 6e 74 20 69 6e 20 4d 50 4c 53 2e 20 48 6f | considered.important.in.MPLS..Ho |
| 5b780 | 77 65 76 65 72 2c 20 74 68 65 72 65 20 69 73 20 6e 6f 20 72 65 61 73 6f 6e 20 74 68 65 73 65 20 | wever,.there.is.no.reason.these. |
| 5b7a0 | 66 65 61 74 75 72 65 73 20 63 6f 75 6c 64 20 6e 6f 74 20 62 65 20 72 65 2d 65 6e 67 69 6e 65 65 | features.could.not.be.re-enginee |
| 5b7c0 | 72 65 64 20 69 6e 20 6f 72 20 6f 6e 20 74 6f 70 20 6f 66 20 4c 32 54 50 76 33 20 69 6e 20 6c 61 | red.in.or.on.top.of.L2TPv3.in.la |
| 5b7e0 | 74 65 72 20 70 72 6f 64 75 63 74 73 2e 00 49 6e 20 74 68 65 20 63 61 73 65 20 74 68 65 20 61 76 | ter.products..In.the.case.the.av |
| 5b800 | 65 72 61 67 65 20 71 75 65 75 65 20 73 69 7a 65 20 69 73 20 62 65 74 77 65 65 6e 20 2a 2a 6d 69 | erage.queue.size.is.between.**mi |
| 5b820 | 6e 2d 74 68 72 65 73 68 6f 6c 64 2a 2a 20 61 6e 64 20 2a 2a 6d 61 78 2d 74 68 72 65 73 68 6f 6c | n-threshold**.and.**max-threshol |
| 5b840 | 64 2a 2a 2c 20 74 68 65 6e 20 61 6e 20 61 72 72 69 76 69 6e 67 20 70 61 63 6b 65 74 20 77 6f 75 | d**,.then.an.arriving.packet.wou |
| 5b860 | 6c 64 20 62 65 20 65 69 74 68 65 72 20 64 72 6f 70 70 65 64 20 6f 72 20 70 6c 61 63 65 64 20 69 | ld.be.either.dropped.or.placed.i |
| 5b880 | 6e 20 74 68 65 20 71 75 65 75 65 2c 20 69 74 20 77 69 6c 6c 20 64 65 70 65 6e 64 20 6f 6e 20 74 | n.the.queue,.it.will.depend.on.t |
| 5b8a0 | 68 65 20 64 65 66 69 6e 65 64 20 2a 2a 6d 61 72 6b 2d 70 72 6f 62 61 62 69 6c 69 74 79 2a 2a 2e | he.defined.**mark-probability**. |
| 5b8c0 | 00 49 6e 20 74 68 65 20 63 61 73 65 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 61 70 70 6c 79 20 73 | .In.the.case.you.want.to.apply.s |
| 5b8e0 | 6f 6d 65 20 6b 69 6e 64 20 6f 66 20 2a 2a 73 68 61 70 69 6e 67 2a 2a 20 74 6f 20 79 6f 75 72 20 | ome.kind.of.**shaping**.to.your. |
| 5b900 | 2a 2a 69 6e 62 6f 75 6e 64 2a 2a 20 74 72 61 66 66 69 63 2c 20 63 68 65 63 6b 20 74 68 65 20 69 | **inbound**.traffic,.check.the.i |
| 5b920 | 6e 67 72 65 73 73 2d 73 68 61 70 69 6e 67 5f 20 73 65 63 74 69 6f 6e 2e 00 49 6e 20 74 68 65 20 | ngress-shaping_.section..In.the. |
| 5b940 | 63 6f 6d 6d 61 6e 64 20 61 62 6f 76 65 2c 20 77 65 20 73 65 74 20 74 68 65 20 74 79 70 65 20 6f | command.above,.we.set.the.type.o |
| 5b960 | 66 20 70 6f 6c 69 63 79 20 77 65 20 61 72 65 20 67 6f 69 6e 67 20 74 6f 20 77 6f 72 6b 20 77 69 | f.policy.we.are.going.to.work.wi |
| 5b980 | 74 68 20 61 6e 64 20 74 68 65 20 6e 61 6d 65 20 77 65 20 63 68 6f 6f 73 65 20 66 6f 72 20 69 74 | th.and.the.name.we.choose.for.it |
| 5b9a0 | 3b 20 61 20 63 6c 61 73 73 20 28 73 6f 20 74 68 61 74 20 77 65 20 63 61 6e 20 64 69 66 66 65 72 | ;.a.class.(so.that.we.can.differ |
| 5b9c0 | 65 6e 74 69 61 74 65 20 73 6f 6d 65 20 74 72 61 66 66 69 63 29 20 61 6e 64 20 61 6e 20 69 64 65 | entiate.some.traffic).and.an.ide |
| 5b9e0 | 6e 74 69 66 69 61 62 6c 65 20 6e 75 6d 62 65 72 20 66 6f 72 20 74 68 61 74 20 63 6c 61 73 73 3b | ntifiable.number.for.that.class; |
| 5ba00 | 20 74 68 65 6e 20 77 65 20 63 6f 6e 66 69 67 75 72 65 20 61 20 6d 61 74 63 68 69 6e 67 20 72 75 | .then.we.configure.a.matching.ru |
| 5ba20 | 6c 65 20 28 6f 72 20 66 69 6c 74 65 72 29 20 61 6e 64 20 61 20 6e 61 6d 65 20 66 6f 72 20 69 74 | le.(or.filter).and.a.name.for.it |
| 5ba40 | 2e 00 49 6e 20 74 68 65 20 65 6e 64 2c 20 61 6e 20 58 4d 4c 20 73 74 72 75 63 74 75 72 65 20 69 | ..In.the.end,.an.XML.structure.i |
| 5ba60 | 73 20 67 65 6e 65 72 61 74 65 64 20 77 68 69 63 68 20 63 61 6e 20 62 65 20 73 61 76 65 64 20 61 | s.generated.which.can.be.saved.a |
| 5ba80 | 73 20 60 60 76 79 6f 73 2e 6d 6f 62 69 6c 65 63 6f 6e 66 69 67 60 60 20 61 6e 64 20 73 65 6e 74 | s.``vyos.mobileconfig``.and.sent |
| 5baa0 | 20 74 6f 20 74 68 65 20 64 65 76 69 63 65 20 62 79 20 45 2d 4d 61 69 6c 20 77 68 65 72 65 20 69 | .to.the.device.by.E-Mail.where.i |
| 5bac0 | 74 20 6c 61 74 65 72 20 63 61 6e 20 62 65 20 69 6d 70 6f 72 74 65 64 2e 00 49 6e 20 74 68 65 20 | t.later.can.be.imported..In.the. |
| 5bae0 | 65 78 61 6d 70 6c 65 20 61 62 6f 76 65 2c 20 74 68 65 20 66 69 72 73 74 20 34 39 39 20 73 65 73 | example.above,.the.first.499.ses |
| 5bb00 | 73 69 6f 6e 73 20 63 6f 6e 6e 65 63 74 20 77 69 74 68 6f 75 74 20 64 65 6c 61 79 2e 20 50 41 44 | sions.connect.without.delay..PAD |
| 5bb20 | 4f 20 70 61 63 6b 65 74 73 20 77 69 6c 6c 20 62 65 20 64 65 6c 61 79 65 64 20 35 30 20 6d 73 20 | O.packets.will.be.delayed.50.ms. |
| 5bb40 | 66 6f 72 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 66 72 6f 6d 20 35 30 30 20 74 6f 20 39 39 39 2c 20 | for.connection.from.500.to.999,. |
| 5bb60 | 74 68 69 73 20 74 72 69 63 6b 20 61 6c 6c 6f 77 73 20 6f 74 68 65 72 20 50 50 50 6f 45 20 73 65 | this.trick.allows.other.PPPoE.se |
| 5bb80 | 72 76 65 72 73 20 73 65 6e 64 20 50 41 44 4f 20 66 61 73 74 65 72 20 61 6e 64 20 63 6c 69 65 6e | rvers.send.PADO.faster.and.clien |
| 5bba0 | 74 73 20 77 69 6c 6c 20 63 6f 6e 6e 65 63 74 20 74 6f 20 6f 74 68 65 72 20 73 65 72 76 65 72 73 | ts.will.connect.to.other.servers |
| 5bbc0 | 2e 20 4c 61 73 74 20 63 6f 6d 6d 61 6e 64 20 73 61 79 73 20 74 68 61 74 20 74 68 69 73 20 50 50 | ..Last.command.says.that.this.PP |
| 5bbe0 | 50 6f 45 20 73 65 72 76 65 72 20 63 61 6e 20 73 65 72 76 65 20 6f 6e 6c 79 20 33 30 30 30 20 63 | PoE.server.can.serve.only.3000.c |
| 5bc00 | 6c 69 65 6e 74 73 2e 00 49 6e 20 74 68 65 20 65 78 61 6d 70 6c 65 20 75 73 65 64 20 66 6f 72 20 | lients..In.the.example.used.for. |
| 5bc20 | 74 68 65 20 51 75 69 63 6b 20 53 74 61 72 74 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 61 62 | the.Quick.Start.configuration.ab |
| 5bc40 | 6f 76 65 2c 20 77 65 20 64 65 6d 6f 6e 73 74 72 61 74 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e | ove,.we.demonstrate.the.followin |
| 5bc60 | 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 00 49 6e 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e | g.configuration:.In.the.followin |
| 5bc80 | 67 20 65 78 61 6d 70 6c 65 20 77 65 20 63 61 6e 20 73 65 65 20 61 20 62 61 73 69 63 20 6d 75 6c | g.example.we.can.see.a.basic.mul |
| 5bca0 | 74 69 63 61 73 74 20 73 65 74 75 70 3a 00 49 6e 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 | ticast.setup:.In.the.following.e |
| 5bcc0 | 78 61 6d 70 6c 65 2c 20 62 6f 74 68 20 60 55 73 65 72 31 60 20 61 6e 64 20 60 55 73 65 72 32 60 | xample,.both.`User1`.and.`User2` |
| 5bce0 | 20 77 69 6c 6c 20 62 65 20 61 62 6c 65 20 74 6f 20 53 53 48 20 69 6e 74 6f 20 56 79 4f 53 20 61 | .will.be.able.to.SSH.into.VyOS.a |
| 5bd00 | 73 20 75 73 65 72 20 60 60 76 79 6f 73 60 60 20 75 73 69 6e 67 20 74 68 65 69 72 20 76 65 72 79 | s.user.``vyos``.using.their.very |
| 5bd20 | 20 6f 77 6e 20 6b 65 79 73 2e 20 60 55 73 65 72 31 60 20 69 73 20 72 65 73 74 72 69 63 74 65 64 | .own.keys..`User1`.is.restricted |
| 5bd40 | 20 74 6f 20 6f 6e 6c 79 20 62 65 20 61 62 6c 65 20 74 6f 20 63 6f 6e 6e 65 63 74 20 66 72 6f 6d | .to.only.be.able.to.connect.from |
| 5bd60 | 20 61 20 73 69 6e 67 6c 65 20 49 50 20 61 64 64 72 65 73 73 2e 20 49 6e 20 61 64 64 69 74 69 6f | .a.single.IP.address..In.additio |
| 5bd80 | 6e 20 69 66 20 70 61 73 73 77 6f 72 64 20 62 61 73 65 20 6c 6f 67 69 6e 20 69 73 20 77 61 6e 74 | n.if.password.base.login.is.want |
| 5bda0 | 65 64 20 66 6f 72 20 74 68 65 20 60 60 76 79 6f 73 60 60 20 75 73 65 72 20 61 20 32 46 41 2f 4d | ed.for.the.``vyos``.user.a.2FA/M |
| 5bdc0 | 46 41 20 6b 65 79 63 6f 64 65 20 69 73 20 72 65 71 75 69 72 65 64 20 69 6e 20 61 64 64 69 74 69 | FA.keycode.is.required.in.additi |
| 5bde0 | 6f 6e 20 74 6f 20 74 68 65 20 70 61 73 73 77 6f 72 64 2e 00 49 6e 20 74 68 65 20 66 6f 6c 6c 6f | on.to.the.password..In.the.follo |
| 5be00 | 77 69 6e 67 20 65 78 61 6d 70 6c 65 2c 20 74 68 65 20 49 50 73 20 66 6f 72 20 74 68 65 20 72 65 | wing.example,.the.IPs.for.the.re |
| 5be20 | 6d 6f 74 65 20 63 6c 69 65 6e 74 73 20 61 72 65 20 64 65 66 69 6e 65 64 20 69 6e 20 74 68 65 20 | mote.clients.are.defined.in.the. |
| 5be40 | 70 65 65 72 73 2e 20 54 68 69 73 20 61 6c 6c 6f 77 73 20 74 68 65 20 70 65 65 72 73 20 74 6f 20 | peers..This.allows.the.peers.to. |
| 5be60 | 69 6e 74 65 72 61 63 74 20 77 69 74 68 20 6f 6e 65 20 61 6e 6f 74 68 65 72 2e 20 49 6e 20 63 6f | interact.with.one.another..In.co |
| 5be80 | 6d 70 61 72 69 73 6f 6e 20 74 6f 20 74 68 65 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 65 78 61 | mparison.to.the.site-to-site.exa |
| 5bea0 | 6d 70 6c 65 20 74 68 65 20 60 60 70 65 72 73 69 73 74 65 6e 74 2d 6b 65 65 70 61 6c 69 76 65 60 | mple.the.``persistent-keepalive` |
| 5bec0 | 60 20 66 6c 61 67 20 69 73 20 73 65 74 20 74 6f 20 31 35 20 73 65 63 6f 6e 64 73 20 74 6f 20 61 | `.flag.is.set.to.15.seconds.to.a |
| 5bee0 | 73 73 75 72 65 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 69 73 20 6b 65 70 74 20 61 6c 69 | ssure.the.connection.is.kept.ali |
| 5bf00 | 76 65 2e 20 54 68 69 73 20 69 73 20 6d 61 69 6e 6c 79 20 72 65 6c 65 76 61 6e 74 20 69 66 20 6f | ve..This.is.mainly.relevant.if.o |
| 5bf20 | 6e 65 20 6f 66 20 74 68 65 20 70 65 65 72 73 20 69 73 20 62 65 68 69 6e 64 20 4e 41 54 20 61 6e | ne.of.the.peers.is.behind.NAT.an |
| 5bf40 | 64 20 63 61 6e 27 74 20 62 65 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 69 66 20 74 68 65 20 63 | d.can't.be.connected.to.if.the.c |
| 5bf60 | 6f 6e 6e 65 63 74 69 6f 6e 20 69 73 20 6c 6f 73 74 2e 20 54 6f 20 62 65 20 65 66 66 65 63 74 69 | onnection.is.lost..To.be.effecti |
| 5bf80 | 76 65 20 74 68 69 73 20 76 61 6c 75 65 20 6e 65 65 64 73 20 74 6f 20 62 65 20 6c 6f 77 65 72 20 | ve.this.value.needs.to.be.lower. |
| 5bfa0 | 74 68 61 6e 20 74 68 65 20 55 44 50 20 74 69 6d 65 6f 75 74 2e 00 49 6e 20 74 68 65 20 66 6f 6c | than.the.UDP.timeout..In.the.fol |
| 5bfc0 | 6c 6f 77 69 6e 67 20 65 78 61 6d 70 6c 65 2c 20 77 68 65 6e 20 56 4c 41 4e 39 20 74 72 61 6e 73 | lowing.example,.when.VLAN9.trans |
| 5bfe0 | 69 74 69 6f 6e 73 2c 20 56 4c 41 4e 32 30 20 77 69 6c 6c 20 61 6c 73 6f 20 74 72 61 6e 73 69 74 | itions,.VLAN20.will.also.transit |
| 5c000 | 69 6f 6e 3a 00 49 6e 20 74 68 65 20 66 75 74 75 72 65 20 74 68 69 73 20 69 73 20 65 78 70 65 63 | ion:.In.the.future.this.is.expec |
| 5c020 | 74 65 64 20 74 6f 20 62 65 20 61 20 76 65 72 79 20 75 73 65 66 75 6c 20 70 72 6f 74 6f 63 6f 6c | ted.to.be.a.very.useful.protocol |
| 5c040 | 20 28 74 68 6f 75 67 68 20 74 68 65 72 65 20 61 72 65 20 60 6f 74 68 65 72 20 70 72 6f 70 6f 73 | .(though.there.are.`other.propos |
| 5c060 | 61 6c 73 60 5f 29 2e 00 49 6e 20 74 68 65 20 6e 65 78 74 20 65 78 61 6d 70 6c 65 20 61 6c 6c 20 | als`_)..In.the.next.example.all. |
| 5c080 | 74 72 61 66 66 69 63 20 64 65 73 74 69 6e 65 64 20 74 6f 20 60 60 32 30 33 2e 30 2e 31 31 33 2e | traffic.destined.to.``203.0.113. |
| 5c0a0 | 31 60 60 20 61 6e 64 20 70 6f 72 74 20 60 60 38 32 38 30 60 60 20 70 72 6f 74 6f 63 6f 6c 20 54 | 1``.and.port.``8280``.protocol.T |
| 5c0c0 | 43 50 20 69 73 20 62 61 6c 61 6e 63 65 64 20 62 65 74 77 65 65 6e 20 32 20 72 65 61 6c 20 73 65 | CP.is.balanced.between.2.real.se |
| 5c0e0 | 72 76 65 72 73 20 60 60 31 39 32 2e 30 2e 32 2e 31 31 60 60 20 61 6e 64 20 60 60 31 39 32 2e 30 | rvers.``192.0.2.11``.and.``192.0 |
| 5c100 | 2e 32 2e 31 32 60 60 20 74 6f 20 70 6f 72 74 20 60 60 38 30 60 60 00 49 6e 20 74 68 65 20 70 61 | .2.12``.to.port.``80``.In.the.pa |
| 5c120 | 73 74 20 28 56 79 4f 53 20 31 2e 31 29 20 75 73 65 64 20 61 20 67 61 74 65 77 61 79 2d 61 64 64 | st.(VyOS.1.1).used.a.gateway-add |
| 5c140 | 72 65 73 73 20 63 6f 6e 66 69 67 75 72 65 64 20 75 6e 64 65 72 20 74 68 65 20 73 79 73 74 65 6d | ress.configured.under.the.system |
| 5c160 | 20 74 72 65 65 20 28 3a 63 66 67 63 6d 64 3a 60 73 65 74 20 73 79 73 74 65 6d 20 67 61 74 65 77 | .tree.(:cfgcmd:`set.system.gatew |
| 5c180 | 61 79 2d 61 64 64 72 65 73 73 20 3c 61 64 64 72 65 73 73 3e 60 29 2c 20 74 68 69 73 20 69 73 20 | ay-address.<address>`),.this.is. |
| 5c1a0 | 6e 6f 20 6c 6f 6e 67 65 72 20 73 75 70 70 6f 72 74 65 64 20 61 6e 64 20 65 78 69 73 74 69 6e 67 | no.longer.supported.and.existing |
| 5c1c0 | 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 73 20 61 72 65 20 6d 69 67 72 61 74 65 64 20 74 6f 20 | .configurations.are.migrated.to. |
| 5c1e0 | 74 68 65 20 6e 65 77 20 43 4c 49 20 63 6f 6d 6d 61 6e 64 2e 00 49 6e 20 74 68 69 73 20 63 6f 6d | the.new.CLI.command..In.this.com |
| 5c200 | 6d 61 6e 64 20 74 72 65 65 2c 20 61 6c 6c 20 68 61 72 64 77 61 72 65 20 61 63 63 65 6c 65 72 61 | mand.tree,.all.hardware.accelera |
| 5c220 | 74 69 6f 6e 20 6f 70 74 69 6f 6e 73 20 77 69 6c 6c 20 62 65 20 68 61 6e 64 6c 65 64 2e 20 41 74 | tion.options.will.be.handled..At |
| 5c240 | 20 74 68 65 20 6d 6f 6d 65 6e 74 20 6f 6e 6c 79 20 60 49 6e 74 65 6c c2 ae 20 51 41 54 60 5f 20 | .the.moment.only.`Intel...QAT`_. |
| 5c260 | 69 73 20 73 75 70 70 6f 72 74 65 64 00 49 6e 20 74 68 69 73 20 65 78 61 6d 70 6c 65 20 61 6c 6c | is.supported.In.this.example.all |
| 5c280 | 20 74 72 61 66 66 69 63 20 64 65 73 74 69 6e 65 64 20 74 6f 20 70 6f 72 74 73 20 22 38 30 2c 20 | .traffic.destined.to.ports."80,. |
| 5c2a0 | 32 32 32 32 2c 20 38 38 38 38 22 20 70 72 6f 74 6f 63 6f 6c 20 54 43 50 20 6d 61 72 6b 73 20 74 | 2222,.8888".protocol.TCP.marks.t |
| 5c2c0 | 6f 20 66 77 6d 61 72 6b 20 22 31 31 31 22 20 61 6e 64 20 62 61 6c 61 6e 63 65 64 20 62 65 74 77 | o.fwmark."111".and.balanced.betw |
| 5c2e0 | 65 65 6e 20 32 20 72 65 61 6c 20 73 65 72 76 65 72 73 2e 20 50 6f 72 74 20 22 30 22 20 69 73 20 | een.2.real.servers..Port."0".is. |
| 5c300 | 72 65 71 75 69 72 65 64 20 69 66 20 6d 75 6c 74 69 70 6c 65 20 70 6f 72 74 73 20 61 72 65 20 75 | required.if.multiple.ports.are.u |
| 5c320 | 73 65 64 2e 00 49 6e 20 74 68 69 73 20 65 78 61 6d 70 6c 65 20 69 6d 61 67 65 2c 20 61 20 73 69 | sed..In.this.example.image,.a.si |
| 5c340 | 6d 70 6c 69 66 65 64 20 74 72 61 66 66 69 63 20 66 6c 6f 77 20 69 73 20 73 68 6f 77 6e 20 74 6f | mplifed.traffic.flow.is.shown.to |
| 5c360 | 20 68 65 6c 70 20 70 72 6f 76 69 64 65 20 63 6f 6e 74 65 78 74 20 74 6f 20 74 68 65 20 74 65 72 | .help.provide.context.to.the.ter |
| 5c380 | 6d 73 20 6f 66 20 60 66 6f 72 77 61 72 64 60 2c 20 60 69 6e 70 75 74 60 2c 20 61 6e 64 20 60 6f | ms.of.`forward`,.`input`,.and.`o |
| 5c3a0 | 75 74 70 75 74 60 20 66 6f 72 20 74 68 65 20 6e 65 77 20 66 69 72 65 77 61 6c 6c 20 43 4c 49 20 | utput`.for.the.new.firewall.CLI. |
| 5c3c0 | 66 6f 72 6d 61 74 2e 00 49 6e 20 74 68 69 73 20 65 78 61 6d 70 6c 65 20 77 65 20 77 69 6c 6c 20 | format..In.this.example.we.will. |
| 5c3e0 | 75 73 65 20 74 68 65 20 6d 6f 73 74 20 63 6f 6d 70 6c 69 63 61 74 65 64 20 63 61 73 65 3a 20 61 | use.the.most.complicated.case:.a |
| 5c400 | 20 73 65 74 75 70 20 77 68 65 72 65 20 65 61 63 68 20 63 6c 69 65 6e 74 20 69 73 20 61 20 72 6f | .setup.where.each.client.is.a.ro |
| 5c420 | 75 74 65 72 20 74 68 61 74 20 68 61 73 20 69 74 73 20 6f 77 6e 20 73 75 62 6e 65 74 20 28 74 68 | uter.that.has.its.own.subnet.(th |
| 5c440 | 69 6e 6b 20 48 51 20 61 6e 64 20 62 72 61 6e 63 68 20 6f 66 66 69 63 65 73 29 2c 20 73 69 6e 63 | ink.HQ.and.branch.offices),.sinc |
| 5c460 | 65 20 73 69 6d 70 6c 65 72 20 73 65 74 75 70 73 20 61 72 65 20 73 75 62 73 65 74 73 20 6f 66 20 | e.simpler.setups.are.subsets.of. |
| 5c480 | 69 74 2e 00 49 6e 20 74 68 69 73 20 65 78 61 6d 70 6c 65 2c 20 73 6f 6d 65 20 2a 4f 70 65 6e 4e | it..In.this.example,.some.*OpenN |
| 5c4a0 | 49 43 2a 20 73 65 72 76 65 72 73 20 61 72 65 20 75 73 65 64 2c 20 74 77 6f 20 49 50 76 34 20 61 | IC*.servers.are.used,.two.IPv4.a |
| 5c4c0 | 64 64 72 65 73 73 65 73 20 61 6e 64 20 74 77 6f 20 49 50 76 36 20 61 64 64 72 65 73 73 65 73 3a | ddresses.and.two.IPv6.addresses: |
| 5c4e0 | 00 49 6e 20 74 68 69 73 20 65 78 61 6d 70 6c 65 2c 20 77 65 20 63 61 6e 20 6f 62 73 65 72 76 65 | .In.this.example,.we.can.observe |
| 5c500 | 20 74 68 61 74 20 64 69 66 66 65 72 65 6e 74 20 44 53 43 50 20 63 72 69 74 65 72 69 61 20 61 72 | .that.different.DSCP.criteria.ar |
| 5c520 | 65 20 64 65 66 69 6e 65 64 20 62 61 73 65 64 20 6f 6e 20 6f 75 72 20 51 6f 53 20 63 6f 6e 66 69 | e.defined.based.on.our.QoS.confi |
| 5c540 | 67 75 72 61 74 69 6f 6e 20 77 69 74 68 69 6e 20 74 68 65 20 73 61 6d 65 20 70 6f 6c 69 63 79 20 | guration.within.the.same.policy. |
| 5c560 | 67 72 6f 75 70 2e 00 49 6e 20 74 68 69 73 20 65 78 61 6d 70 6c 65 2c 20 77 65 20 75 73 65 20 2a | group..In.this.example,.we.use.* |
| 5c580 | 2a 6d 61 73 71 75 65 72 61 64 65 2a 2a 20 61 73 20 74 68 65 20 74 72 61 6e 73 6c 61 74 69 6f 6e | *masquerade**.as.the.translation |
| 5c5a0 | 20 61 64 64 72 65 73 73 20 69 6e 73 74 65 61 64 20 6f 66 20 61 6e 20 49 50 20 61 64 64 72 65 73 | .address.instead.of.an.IP.addres |
| 5c5c0 | 73 2e 20 54 68 65 20 2a 2a 6d 61 73 71 75 65 72 61 64 65 2a 2a 20 74 61 72 67 65 74 20 69 73 20 | s..The.**masquerade**.target.is. |
| 5c5e0 | 65 66 66 65 63 74 69 76 65 6c 79 20 61 6e 20 61 6c 69 61 73 20 74 6f 20 73 61 79 20 22 75 73 65 | effectively.an.alias.to.say."use |
| 5c600 | 20 77 68 61 74 65 76 65 72 20 49 50 20 61 64 64 72 65 73 73 20 69 73 20 6f 6e 20 74 68 65 20 6f | .whatever.IP.address.is.on.the.o |
| 5c620 | 75 74 67 6f 69 6e 67 20 69 6e 74 65 72 66 61 63 65 22 2c 20 72 61 74 68 65 72 20 74 68 61 6e 20 | utgoing.interface",.rather.than. |
| 5c640 | 61 20 73 74 61 74 69 63 61 6c 6c 79 20 63 6f 6e 66 69 67 75 72 65 64 20 49 50 20 61 64 64 72 65 | a.statically.configured.IP.addre |
| 5c660 | 73 73 2e 20 54 68 69 73 20 69 73 20 75 73 65 66 75 6c 20 69 66 20 79 6f 75 20 75 73 65 20 44 48 | ss..This.is.useful.if.you.use.DH |
| 5c680 | 43 50 20 66 6f 72 20 79 6f 75 72 20 6f 75 74 67 6f 69 6e 67 20 69 6e 74 65 72 66 61 63 65 20 61 | CP.for.your.outgoing.interface.a |
| 5c6a0 | 6e 64 20 64 6f 20 6e 6f 74 20 6b 6e 6f 77 20 77 68 61 74 20 74 68 65 20 65 78 74 65 72 6e 61 6c | nd.do.not.know.what.the.external |
| 5c6c0 | 20 61 64 64 72 65 73 73 20 77 69 6c 6c 20 62 65 2e 00 49 6e 20 74 68 69 73 20 65 78 61 6d 70 6c | .address.will.be..In.this.exampl |
| 5c6e0 | 65 2c 20 77 65 20 77 69 6c 6c 20 62 65 20 75 73 69 6e 67 20 74 68 65 20 65 78 61 6d 70 6c 65 20 | e,.we.will.be.using.the.example. |
| 5c700 | 51 75 69 63 6b 20 53 74 61 72 74 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 61 62 6f 76 65 20 | Quick.Start.configuration.above. |
| 5c720 | 61 73 20 61 20 73 74 61 72 74 69 6e 67 20 70 6f 69 6e 74 2e 00 49 6e 20 74 68 69 73 20 6d 65 74 | as.a.starting.point..In.this.met |
| 5c740 | 68 6f 64 2c 20 74 68 65 20 44 53 4c 20 4d 6f 64 65 6d 2f 52 6f 75 74 65 72 20 63 6f 6e 6e 65 63 | hod,.the.DSL.Modem/Router.connec |
| 5c760 | 74 73 20 74 6f 20 74 68 65 20 49 53 50 20 66 6f 72 20 79 6f 75 20 77 69 74 68 20 79 6f 75 72 20 | ts.to.the.ISP.for.you.with.your. |
| 5c780 | 63 72 65 64 65 6e 74 69 61 6c 73 20 70 72 65 70 72 6f 67 72 61 6d 6d 65 64 20 69 6e 74 6f 20 74 | credentials.preprogrammed.into.t |
| 5c7a0 | 68 65 20 64 65 76 69 63 65 2e 20 54 68 69 73 20 67 69 76 65 73 20 79 6f 75 20 61 6e 20 3a 72 66 | he.device..This.gives.you.an.:rf |
| 5c7c0 | 63 3a 60 31 39 31 38 60 20 61 64 64 72 65 73 73 2c 20 73 75 63 68 20 61 73 20 60 60 31 39 32 2e | c:`1918`.address,.such.as.``192. |
| 5c7e0 | 31 36 38 2e 31 2e 30 2f 32 34 60 60 20 62 79 20 64 65 66 61 75 6c 74 2e 00 49 6e 20 74 68 69 73 | 168.1.0/24``.by.default..In.this |
| 5c800 | 20 73 63 65 6e 61 72 69 6f 3a 00 49 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 74 68 65 72 65 | .scenario:.In.this.section.there |
| 5c820 | 27 73 20 75 73 65 66 75 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 66 20 61 6c 6c 20 66 69 72 | 's.useful.information.of.all.fir |
| 5c840 | 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 63 61 6e 20 62 65 20 | ewall.configuration.that.can.be. |
| 5c860 | 64 6f 6e 65 20 72 65 67 61 72 64 69 6e 67 20 49 50 76 34 2c 20 61 6e 64 20 61 70 70 72 6f 70 69 | done.regarding.IPv4,.and.appropi |
| 5c880 | 61 74 65 20 6f 70 2d 6d 6f 64 65 20 63 6f 6d 6d 61 6e 64 73 2e 20 43 6f 6e 66 69 67 75 72 61 74 | ate.op-mode.commands..Configurat |
| 5c8a0 | 69 6f 6e 20 63 6f 6d 6d 61 6e 64 73 20 63 6f 76 65 72 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 | ion.commands.covered.in.this.sec |
| 5c8c0 | 74 69 6f 6e 3a 00 49 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 74 68 65 72 65 27 73 20 75 73 | tion:.In.this.section.there's.us |
| 5c8e0 | 65 66 75 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 66 20 61 6c 6c 20 66 69 72 65 77 61 6c 6c | eful.information.of.all.firewall |
| 5c900 | 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 | .configuration.that.can.be.done. |
| 5c920 | 72 65 67 61 72 64 69 6e 67 20 49 50 76 34 2c 20 61 6e 64 20 61 70 70 72 6f 70 72 69 61 74 65 20 | regarding.IPv4,.and.appropriate. |
| 5c940 | 6f 70 2d 6d 6f 64 65 20 63 6f 6d 6d 61 6e 64 73 2e 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 | op-mode.commands..Configuration. |
| 5c960 | 63 6f 6d 6d 61 6e 64 73 20 63 6f 76 65 72 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e | commands.covered.in.this.section |
| 5c980 | 3a 00 49 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 74 68 65 72 65 27 73 20 75 73 65 66 75 6c | :.In.this.section.there's.useful |
| 5c9a0 | 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 66 20 61 6c 6c 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e | .information.of.all.firewall.con |
| 5c9c0 | 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 72 65 67 61 | figuration.that.can.be.done.rega |
| 5c9e0 | 72 64 69 6e 67 20 49 50 76 36 2c 20 61 6e 64 20 61 70 70 72 6f 70 69 61 74 65 20 6f 70 2d 6d 6f | rding.IPv6,.and.appropiate.op-mo |
| 5ca00 | 64 65 20 63 6f 6d 6d 61 6e 64 73 2e 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 | de.commands..Configuration.comma |
| 5ca20 | 6e 64 73 20 63 6f 76 65 72 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 3a 00 49 6e 20 | nds.covered.in.this.section:.In. |
| 5ca40 | 74 68 69 73 20 73 65 63 74 69 6f 6e 20 74 68 65 72 65 27 73 20 75 73 65 66 75 6c 20 69 6e 66 6f | this.section.there's.useful.info |
| 5ca60 | 72 6d 61 74 69 6f 6e 20 6f 66 20 61 6c 6c 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 | rmation.of.all.firewall.configur |
| 5ca80 | 61 74 69 6f 6e 20 74 68 61 74 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 72 65 67 61 72 64 69 6e 67 | ation.that.can.be.done.regarding |
| 5caa0 | 20 49 50 76 36 2c 20 61 6e 64 20 61 70 70 72 6f 70 72 69 61 74 65 20 6f 70 2d 6d 6f 64 65 20 63 | .IPv6,.and.appropriate.op-mode.c |
| 5cac0 | 6f 6d 6d 61 6e 64 73 2e 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 73 20 | ommands..Configuration.commands. |
| 5cae0 | 63 6f 76 65 72 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 3a 00 49 6e 20 74 68 69 73 | covered.in.this.section:.In.this |
| 5cb00 | 20 73 65 63 74 69 6f 6e 20 74 68 65 72 65 27 73 20 75 73 65 66 75 6c 20 69 6e 66 6f 72 6d 61 74 | .section.there's.useful.informat |
| 5cb20 | 69 6f 6e 20 6f 66 20 61 6c 6c 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f | ion.of.all.firewall.configuratio |
| 5cb40 | 6e 20 74 68 61 74 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 72 65 67 61 72 64 69 6e 67 20 62 72 69 | n.that.can.be.done.regarding.bri |
| 5cb60 | 64 67 65 2c 20 61 6e 64 20 61 70 70 72 6f 70 69 61 74 65 20 6f 70 2d 6d 6f 64 65 20 63 6f 6d 6d | dge,.and.appropiate.op-mode.comm |
| 5cb80 | 61 6e 64 73 2e 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 73 20 63 6f 76 | ands..Configuration.commands.cov |
| 5cba0 | 65 72 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 3a 00 49 6e 20 74 68 69 73 20 73 65 | ered.in.this.section:.In.this.se |
| 5cbc0 | 63 74 69 6f 6e 20 74 68 65 72 65 27 73 20 75 73 65 66 75 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e | ction.there's.useful.information |
| 5cbe0 | 20 6f 66 20 61 6c 6c 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 | .of.all.firewall.configuration.t |
| 5cc00 | 68 61 74 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 72 65 67 61 72 64 69 6e 67 20 62 72 69 64 67 65 | hat.can.be.done.regarding.bridge |
| 5cc20 | 2c 20 61 6e 64 20 61 70 70 72 6f 70 72 69 61 74 65 20 6f 70 2d 6d 6f 64 65 20 63 6f 6d 6d 61 6e | ,.and.appropriate.op-mode.comman |
| 5cc40 | 64 73 2e 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 73 20 63 6f 76 65 72 | ds..Configuration.commands.cover |
| 5cc60 | 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 3a 00 49 6e 20 74 68 69 73 20 73 65 63 74 | ed.in.this.section:.In.this.sect |
| 5cc80 | 69 6f 6e 20 74 68 65 72 65 27 73 20 75 73 65 66 75 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f | ion.there's.useful.information.o |
| 5cca0 | 66 20 61 6c 6c 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 | f.all.firewall.configuration.tha |
| 5ccc0 | 74 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 72 65 67 61 72 64 69 6e 67 20 66 6c 6f 77 74 61 62 6c | t.can.be.done.regarding.flowtabl |
| 5cce0 | 65 73 00 49 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 74 68 65 72 65 27 73 20 75 73 65 66 75 | es.In.this.section.there's.usefu |
| 5cd00 | 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 66 20 61 6c 6c 20 66 69 72 65 77 61 6c 6c 20 63 6f | l.information.of.all.firewall.co |
| 5cd20 | 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 72 65 67 | nfiguration.that.can.be.done.reg |
| 5cd40 | 61 72 64 69 6e 67 20 66 6c 6f 77 74 61 62 6c 65 73 2e 00 49 6e 20 74 68 69 73 20 73 65 63 74 69 | arding.flowtables..In.this.secti |
| 5cd60 | 6f 6e 20 74 68 65 72 65 27 73 20 75 73 65 66 75 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 66 | on.there's.useful.information.of |
| 5cd80 | 20 61 6c 6c 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 | .all.firewall.configuration.that |
| 5cda0 | 20 69 73 20 6e 65 65 64 65 64 20 66 6f 72 20 7a 6f 6e 65 2d 62 61 73 65 64 20 66 69 72 65 77 61 | .is.needed.for.zone-based.firewa |
| 5cdc0 | 6c 6c 2e 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 73 20 63 6f 76 65 72 | ll..Configuration.commands.cover |
| 5cde0 | 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 3a 00 49 6e 20 74 68 69 73 20 73 65 63 74 | ed.in.this.section:.In.this.sect |
| 5ce00 | 69 6f 6e 20 74 68 65 72 65 27 73 20 75 73 65 66 75 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f | ion.there's.useful.information.o |
| 5ce20 | 6e 20 61 6c 6c 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 | n.all.firewall.configuration.tha |
| 5ce40 | 74 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 72 65 67 61 72 64 69 6e 67 20 49 50 76 34 2c 20 61 6e | t.can.be.done.regarding.IPv4,.an |
| 5ce60 | 64 20 61 70 70 72 6f 70 72 69 61 74 65 20 6f 70 2d 6d 6f 64 65 20 63 6f 6d 6d 61 6e 64 73 2e 20 | d.appropriate.op-mode.commands.. |
| 5ce80 | 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 73 20 63 6f 76 65 72 65 64 20 69 | Configuration.commands.covered.i |
| 5cea0 | 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 3a 00 49 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 | n.this.section:.In.this.section. |
| 5cec0 | 74 68 65 72 65 27 73 20 75 73 65 66 75 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 6e 20 61 6c | there's.useful.information.on.al |
| 5cee0 | 6c 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 63 61 | l.firewall.configuration.that.ca |
| 5cf00 | 6e 20 62 65 20 64 6f 6e 65 20 72 65 67 61 72 64 69 6e 67 20 49 50 76 36 2c 20 61 6e 64 20 61 70 | n.be.done.regarding.IPv6,.and.ap |
| 5cf20 | 70 72 6f 70 72 69 61 74 65 20 6f 70 2d 6d 6f 64 65 20 63 6f 6d 6d 61 6e 64 73 2e 20 43 6f 6e 66 | propriate.op-mode.commands..Conf |
| 5cf40 | 69 67 75 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 73 20 63 6f 76 65 72 65 64 20 69 6e 20 74 68 | iguration.commands.covered.in.th |
| 5cf60 | 69 73 20 73 65 63 74 69 6f 6e 3a 00 49 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 74 68 65 72 | is.section:.In.this.section.ther |
| 5cf80 | 65 27 73 20 75 73 65 66 75 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 6e 20 61 6c 6c 20 66 69 | e's.useful.information.on.all.fi |
| 5cfa0 | 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 63 61 6e 20 62 65 | rewall.configuration.that.can.be |
| 5cfc0 | 20 64 6f 6e 65 20 72 65 67 61 72 64 69 6e 67 20 62 72 69 64 67 65 73 2c 20 61 6e 64 20 61 70 70 | .done.regarding.bridges,.and.app |
| 5cfe0 | 72 6f 70 72 69 61 74 65 20 6f 70 2d 6d 6f 64 65 20 63 6f 6d 6d 61 6e 64 73 2e 20 43 6f 6e 66 69 | ropriate.op-mode.commands..Confi |
| 5d000 | 67 75 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 73 20 63 6f 76 65 72 65 64 20 69 6e 20 74 68 69 | guration.commands.covered.in.thi |
| 5d020 | 73 20 73 65 63 74 69 6f 6e 3a 00 49 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 74 68 65 72 65 | s.section:.In.this.section.there |
| 5d040 | 27 73 20 75 73 65 66 75 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 6e 20 61 6c 6c 20 66 69 72 | 's.useful.information.on.all.fir |
| 5d060 | 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 63 61 6e 20 62 65 20 | ewall.configuration.that.can.be. |
| 5d080 | 64 6f 6e 65 20 72 65 67 61 72 64 69 6e 67 20 66 6c 6f 77 74 61 62 6c 65 73 2e 00 49 6e 20 74 68 | done.regarding.flowtables..In.th |
| 5d0a0 | 69 73 20 73 65 63 74 69 6f 6e 20 74 68 65 72 65 27 73 20 75 73 65 66 75 6c 20 69 6e 66 6f 72 6d | is.section.there's.useful.inform |
| 5d0c0 | 61 74 69 6f 6e 20 6f 6e 20 61 6c 6c 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 | ation.on.all.firewall.configurat |
| 5d0e0 | 69 6f 6e 20 74 68 61 74 20 69 73 20 6e 65 65 64 65 64 20 66 6f 72 20 74 68 65 20 7a 6f 6e 65 2d | ion.that.is.needed.for.the.zone- |
| 5d100 | 62 61 73 65 64 20 66 69 72 65 77 61 6c 6c 2e 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f | based.firewall..Configuration.co |
| 5d120 | 6d 6d 61 6e 64 73 20 63 6f 76 65 72 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 3a 00 | mmands.covered.in.this.section:. |
| 5d140 | 49 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 79 6f 75 20 63 61 6e 20 66 69 6e 64 20 61 6c 6c | In.this.section.you.can.find.all |
| 5d160 | 20 75 73 65 66 75 6c 20 66 69 72 65 77 61 6c 6c 20 6f 70 2d 6d 6f 64 65 20 63 6f 6d 6d 61 6e 64 | .useful.firewall.op-mode.command |
| 5d180 | 73 2e 00 49 6e 20 74 72 61 6e 73 70 61 72 65 6e 74 20 70 72 6f 78 79 20 6d 6f 64 65 2c 20 61 6c | s..In.transparent.proxy.mode,.al |
| 5d1a0 | 6c 20 74 72 61 66 66 69 63 20 61 72 72 69 76 69 6e 67 20 6f 6e 20 70 6f 72 74 20 38 30 20 61 6e | l.traffic.arriving.on.port.80.an |
| 5d1c0 | 64 20 64 65 73 74 69 6e 65 64 20 66 6f 72 20 74 68 65 20 49 6e 74 65 72 6e 65 74 20 69 73 20 61 | d.destined.for.the.Internet.is.a |
| 5d1e0 | 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 66 6f 72 77 61 72 64 65 64 20 74 68 72 6f 75 67 68 20 74 | utomatically.forwarded.through.t |
| 5d200 | 68 65 20 70 72 6f 78 79 2e 20 54 68 69 73 20 61 6c 6c 6f 77 73 20 69 6d 6d 65 64 69 61 74 65 20 | he.proxy..This.allows.immediate. |
| 5d220 | 70 72 6f 78 79 20 66 6f 72 77 61 72 64 69 6e 67 20 77 69 74 68 6f 75 74 20 63 6f 6e 66 69 67 75 | proxy.forwarding.without.configu |
| 5d240 | 72 69 6e 67 20 63 6c 69 65 6e 74 20 62 72 6f 77 73 65 72 73 2e 00 49 6e 20 74 79 70 69 63 61 6c | ring.client.browsers..In.typical |
| 5d260 | 20 75 73 65 73 20 6f 66 20 53 4e 4d 50 2c 20 6f 6e 65 20 6f 72 20 6d 6f 72 65 20 61 64 6d 69 6e | .uses.of.SNMP,.one.or.more.admin |
| 5d280 | 69 73 74 72 61 74 69 76 65 20 63 6f 6d 70 75 74 65 72 73 20 63 61 6c 6c 65 64 20 6d 61 6e 61 67 | istrative.computers.called.manag |
| 5d2a0 | 65 72 73 20 68 61 76 65 20 74 68 65 20 74 61 73 6b 20 6f 66 20 6d 6f 6e 69 74 6f 72 69 6e 67 20 | ers.have.the.task.of.monitoring. |
| 5d2c0 | 6f 72 20 6d 61 6e 61 67 69 6e 67 20 61 20 67 72 6f 75 70 20 6f 66 20 68 6f 73 74 73 20 6f 72 20 | or.managing.a.group.of.hosts.or. |
| 5d2e0 | 64 65 76 69 63 65 73 20 6f 6e 20 61 20 63 6f 6d 70 75 74 65 72 20 6e 65 74 77 6f 72 6b 2e 20 45 | devices.on.a.computer.network..E |
| 5d300 | 61 63 68 20 6d 61 6e 61 67 65 64 20 73 79 73 74 65 6d 20 65 78 65 63 75 74 65 73 20 61 20 73 6f | ach.managed.system.executes.a.so |
| 5d320 | 66 74 77 61 72 65 20 63 6f 6d 70 6f 6e 65 6e 74 20 63 61 6c 6c 65 64 20 61 6e 20 61 67 65 6e 74 | ftware.component.called.an.agent |
| 5d340 | 20 77 68 69 63 68 20 72 65 70 6f 72 74 73 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 76 69 61 20 53 | .which.reports.information.via.S |
| 5d360 | 4e 4d 50 20 74 6f 20 74 68 65 20 6d 61 6e 61 67 65 72 2e 00 49 6e 20 7a 6f 6e 65 2d 62 61 73 65 | NMP.to.the.manager..In.zone-base |
| 5d380 | 64 20 70 6f 6c 69 63 79 2c 20 69 6e 74 65 72 66 61 63 65 73 20 61 72 65 20 61 73 73 69 67 6e 65 | d.policy,.interfaces.are.assigne |
| 5d3a0 | 64 20 74 6f 20 7a 6f 6e 65 73 2c 20 61 6e 64 20 69 6e 73 70 65 63 74 69 6f 6e 20 70 6f 6c 69 63 | d.to.zones,.and.inspection.polic |
| 5d3c0 | 79 20 69 73 20 61 70 70 6c 69 65 64 20 74 6f 20 74 72 61 66 66 69 63 20 6d 6f 76 69 6e 67 20 62 | y.is.applied.to.traffic.moving.b |
| 5d3e0 | 65 74 77 65 65 6e 20 74 68 65 20 7a 6f 6e 65 73 20 61 6e 64 20 61 63 74 65 64 20 6f 6e 20 61 63 | etween.the.zones.and.acted.on.ac |
| 5d400 | 63 6f 72 64 69 6e 67 20 74 6f 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 2e 20 41 20 5a 6f 6e | cording.to.firewall.rules..A.Zon |
| 5d420 | 65 20 69 73 20 61 20 67 72 6f 75 70 20 6f 66 20 69 6e 74 65 72 66 61 63 65 73 20 74 68 61 74 20 | e.is.a.group.of.interfaces.that. |
| 5d440 | 68 61 76 65 20 73 69 6d 69 6c 61 72 20 66 75 6e 63 74 69 6f 6e 73 20 6f 72 20 66 65 61 74 75 72 | have.similar.functions.or.featur |
| 5d460 | 65 73 2e 20 49 74 20 65 73 74 61 62 6c 69 73 68 65 73 20 74 68 65 20 73 65 63 75 72 69 74 79 20 | es..It.establishes.the.security. |
| 5d480 | 62 6f 72 64 65 72 73 20 6f 66 20 61 20 6e 65 74 77 6f 72 6b 2e 20 41 20 7a 6f 6e 65 20 64 65 66 | borders.of.a.network..A.zone.def |
| 5d4a0 | 69 6e 65 73 20 61 20 62 6f 75 6e 64 61 72 79 20 77 68 65 72 65 20 74 72 61 66 66 69 63 20 69 73 | ines.a.boundary.where.traffic.is |
| 5d4c0 | 20 73 75 62 6a 65 63 74 65 64 20 74 6f 20 70 6f 6c 69 63 79 20 72 65 73 74 72 69 63 74 69 6f 6e | .subjected.to.policy.restriction |
| 5d4e0 | 73 20 61 73 20 69 74 20 63 72 6f 73 73 65 73 20 74 6f 20 61 6e 6f 74 68 65 72 20 72 65 67 69 6f | s.as.it.crosses.to.another.regio |
| 5d500 | 6e 20 6f 66 20 61 20 6e 65 74 77 6f 72 6b 2e 00 49 6e 20 7a 6f 6e 65 2d 62 61 73 65 64 20 70 6f | n.of.a.network..In.zone-based.po |
| 5d520 | 6c 69 63 79 2c 20 69 6e 74 65 72 66 61 63 65 73 20 61 72 65 20 61 73 73 69 67 6e 65 64 20 74 6f | licy,.interfaces.are.assigned.to |
| 5d540 | 20 7a 6f 6e 65 73 2c 20 61 6e 64 20 69 6e 73 70 65 63 74 69 6f 6e 20 70 6f 6c 69 63 79 20 69 73 | .zones,.and.inspection.policy.is |
| 5d560 | 20 61 70 70 6c 69 65 64 20 74 6f 20 74 72 61 66 66 69 63 20 6d 6f 76 69 6e 67 20 62 65 74 77 65 | .applied.to.traffic.moving.betwe |
| 5d580 | 65 6e 20 74 68 65 20 7a 6f 6e 65 73 20 61 6e 64 20 61 63 74 65 64 20 6f 6e 20 61 63 63 6f 72 64 | en.the.zones.and.acted.on.accord |
| 5d5a0 | 69 6e 67 20 74 6f 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 2e 20 41 20 7a 6f 6e 65 20 69 73 | ing.to.firewall.rules..A.zone.is |
| 5d5c0 | 20 61 20 67 72 6f 75 70 20 6f 66 20 69 6e 74 65 72 66 61 63 65 73 20 74 68 61 74 20 68 61 76 65 | .a.group.of.interfaces.that.have |
| 5d5e0 | 20 73 69 6d 69 6c 61 72 20 66 75 6e 63 74 69 6f 6e 73 20 6f 72 20 66 65 61 74 75 72 65 73 2e 20 | .similar.functions.or.features.. |
| 5d600 | 49 74 20 65 73 74 61 62 6c 69 73 68 65 73 20 74 68 65 20 73 65 63 75 72 69 74 79 20 62 6f 72 64 | It.establishes.the.security.bord |
| 5d620 | 65 72 73 20 6f 66 20 61 20 6e 65 74 77 6f 72 6b 2e 20 41 20 7a 6f 6e 65 20 64 65 66 69 6e 65 73 | ers.of.a.network..A.zone.defines |
| 5d640 | 20 61 20 62 6f 75 6e 64 61 72 79 20 77 68 65 72 65 20 74 72 61 66 66 69 63 20 69 73 20 73 75 62 | .a.boundary.where.traffic.is.sub |
| 5d660 | 6a 65 63 74 65 64 20 74 6f 20 70 6f 6c 69 63 79 20 72 65 73 74 72 69 63 74 69 6f 6e 73 20 61 73 | jected.to.policy.restrictions.as |
| 5d680 | 20 69 74 20 63 72 6f 73 73 65 73 20 74 6f 20 61 6e 6f 74 68 65 72 20 72 65 67 69 6f 6e 20 6f 66 | .it.crosses.to.another.region.of |
| 5d6a0 | 20 61 20 6e 65 74 77 6f 72 6b 2e 00 49 6e 62 6f 75 6e 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 | .a.network..Inbound.connections. |
| 5d6c0 | 74 6f 20 61 20 57 41 4e 20 69 6e 74 65 72 66 61 63 65 20 63 61 6e 20 62 65 20 69 6d 70 72 6f 70 | to.a.WAN.interface.can.be.improp |
| 5d6e0 | 65 72 6c 79 20 68 61 6e 64 6c 65 64 20 77 68 65 6e 20 74 68 65 20 72 65 70 6c 79 20 69 73 20 73 | erly.handled.when.the.reply.is.s |
| 5d700 | 65 6e 74 20 62 61 63 6b 20 74 6f 20 74 68 65 20 63 6c 69 65 6e 74 2e 00 49 6e 63 6f 6d 69 6e 67 | ent.back.to.the.client..Incoming |
| 5d720 | 20 74 72 61 66 66 69 63 20 69 73 20 72 65 63 65 69 76 65 64 20 62 79 20 74 68 65 20 63 75 72 72 | .traffic.is.received.by.the.curr |
| 5d740 | 65 6e 74 20 73 6c 61 76 65 2e 20 49 66 20 74 68 65 20 72 65 63 65 69 76 69 6e 67 20 73 6c 61 76 | ent.slave..If.the.receiving.slav |
| 5d760 | 65 20 66 61 69 6c 73 2c 20 61 6e 6f 74 68 65 72 20 73 6c 61 76 65 20 74 61 6b 65 73 20 6f 76 65 | e.fails,.another.slave.takes.ove |
| 5d780 | 72 20 74 68 65 20 4d 41 43 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 66 61 69 6c 65 64 20 | r.the.MAC.address.of.the.failed. |
| 5d7a0 | 72 65 63 65 69 76 69 6e 67 20 73 6c 61 76 65 2e 00 49 6e 63 72 65 61 73 65 20 4d 61 78 69 6d 75 | receiving.slave..Increase.Maximu |
| 5d7c0 | 6d 20 4d 50 44 55 20 6c 65 6e 67 74 68 20 74 6f 20 37 39 39 31 20 6f 72 20 31 31 34 35 34 20 6f | m.MPDU.length.to.7991.or.11454.o |
| 5d7e0 | 63 74 65 74 73 20 28 64 65 66 61 75 6c 74 20 33 38 39 35 20 6f 63 74 65 74 73 29 00 49 6e 64 69 | ctets.(default.3895.octets).Indi |
| 5d800 | 63 61 74 69 6f 6e 00 49 6e 64 69 76 69 64 75 61 6c 20 43 6c 69 65 6e 74 20 53 75 62 6e 65 74 00 | cation.Individual.Client.Subnet. |
| 5d820 | 49 6e 66 6f 72 6d 20 63 6c 69 65 6e 74 20 74 68 61 74 20 74 68 65 20 44 4e 53 20 73 65 72 76 65 | Inform.client.that.the.DNS.serve |
| 5d840 | 72 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 61 74 20 60 3c 61 64 64 72 65 73 73 3e 60 2e 00 49 | r.can.be.found.at.`<address>`..I |
| 5d860 | 6e 66 6f 72 6d 61 74 69 6f 6e 20 67 61 74 68 65 72 65 64 20 77 69 74 68 20 4c 4c 44 50 20 69 73 | nformation.gathered.with.LLDP.is |
| 5d880 | 20 73 74 6f 72 65 64 20 69 6e 20 74 68 65 20 64 65 76 69 63 65 20 61 73 20 61 20 3a 61 62 62 72 | .stored.in.the.device.as.a.:abbr |
| 5d8a0 | 3a 60 4d 49 42 20 28 4d 61 6e 61 67 65 6d 65 6e 74 20 49 6e 66 6f 72 6d 61 74 69 6f 6e 20 44 61 | :`MIB.(Management.Information.Da |
| 5d8c0 | 74 61 62 61 73 65 29 60 20 61 6e 64 20 63 61 6e 20 62 65 20 71 75 65 72 69 65 64 20 77 69 74 68 | tabase)`.and.can.be.queried.with |
| 5d8e0 | 20 3a 61 62 62 72 3a 60 53 4e 4d 50 20 28 53 69 6d 70 6c 65 20 4e 65 74 77 6f 72 6b 20 4d 61 6e | .:abbr:`SNMP.(Simple.Network.Man |
| 5d900 | 61 67 65 6d 65 6e 74 20 50 72 6f 74 6f 63 6f 6c 29 60 20 61 73 20 73 70 65 63 69 66 69 65 64 20 | agement.Protocol)`.as.specified. |
| 5d920 | 69 6e 20 3a 72 66 63 3a 60 32 39 32 32 60 2e 20 54 68 65 20 74 6f 70 6f 6c 6f 67 79 20 6f 66 20 | in.:rfc:`2922`..The.topology.of. |
| 5d940 | 61 6e 20 4c 4c 44 50 2d 65 6e 61 62 6c 65 64 20 6e 65 74 77 6f 72 6b 20 63 61 6e 20 62 65 20 64 | an.LLDP-enabled.network.can.be.d |
| 5d960 | 69 73 63 6f 76 65 72 65 64 20 62 79 20 63 72 61 77 6c 69 6e 67 20 74 68 65 20 68 6f 73 74 73 20 | iscovered.by.crawling.the.hosts. |
| 5d980 | 61 6e 64 20 71 75 65 72 79 69 6e 67 20 74 68 69 73 20 64 61 74 61 62 61 73 65 2e 20 49 6e 66 6f | and.querying.this.database..Info |
| 5d9a0 | 72 6d 61 74 69 6f 6e 20 74 68 61 74 20 6d 61 79 20 62 65 20 72 65 74 72 69 65 76 65 64 20 69 6e | rmation.that.may.be.retrieved.in |
| 5d9c0 | 63 6c 75 64 65 3a 00 49 6e 66 6f 72 6d 61 74 69 6f 6e 61 6c 00 49 6e 66 6f 72 6d 61 74 69 6f 6e | clude:.Informational.Information |
| 5d9e0 | 61 6c 20 6d 65 73 73 61 67 65 73 00 49 6e 70 75 74 20 66 72 6f 6d 20 60 65 74 68 30 60 20 6e 65 | al.messages.Input.from.`eth0`.ne |
| 5da00 | 74 77 6f 72 6b 20 69 6e 74 65 72 66 61 63 65 00 49 6e 73 70 65 63 74 20 6c 6f 67 73 3a 00 49 6e | twork.interface.Inspect.logs:.In |
| 5da20 | 73 74 61 6c 6c 20 74 68 65 20 63 6c 69 65 6e 74 20 73 6f 66 74 77 61 72 65 20 76 69 61 20 61 70 | stall.the.client.software.via.ap |
| 5da40 | 74 20 61 6e 64 20 65 78 65 63 75 74 65 20 70 70 74 70 73 65 74 75 70 20 74 6f 20 67 65 6e 65 72 | t.and.execute.pptpsetup.to.gener |
| 5da60 | 61 74 65 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 49 6e 73 74 65 61 64 20 6f | ate.the.configuration..Instead.o |
| 5da80 | 66 20 61 20 6e 75 6d 65 72 69 63 61 6c 20 4d 53 53 20 76 61 6c 75 65 20 60 63 6c 61 6d 70 2d 6d | f.a.numerical.MSS.value.`clamp-m |
| 5daa0 | 73 73 2d 74 6f 2d 70 6d 74 75 60 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 61 75 74 6f 6d | ss-to-pmtu`.can.be.used.to.autom |
| 5dac0 | 61 74 69 63 61 6c 6c 79 20 73 65 74 20 74 68 65 20 70 72 6f 70 65 72 20 76 61 6c 75 65 2e 00 49 | atically.set.the.proper.value..I |
| 5dae0 | 6e 73 74 65 61 64 20 6f 66 20 70 61 73 73 77 6f 72 64 20 6f 6e 6c 79 20 61 75 74 68 65 6e 74 69 | nstead.of.password.only.authenti |
| 5db00 | 63 61 74 69 6f 6e 2c 20 32 46 41 20 70 61 73 73 77 6f 72 64 20 61 75 74 68 65 6e 74 69 63 61 74 | cation,.2FA.password.authenticat |
| 5db20 | 69 6f 6e 20 2b 20 4f 54 50 20 6b 65 79 20 63 61 6e 20 62 65 20 75 73 65 64 2e 20 41 6c 74 65 72 | ion.+.OTP.key.can.be.used..Alter |
| 5db40 | 6e 61 74 69 76 65 6c 79 2c 20 4f 54 50 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6f 6e 6c | natively,.OTP.authentication.onl |
| 5db60 | 79 2c 20 77 69 74 68 6f 75 74 20 61 20 70 61 73 73 77 6f 72 64 2c 20 63 61 6e 20 62 65 20 75 73 | y,.without.a.password,.can.be.us |
| 5db80 | 65 64 2e 20 54 6f 20 64 6f 20 74 68 69 73 2c 20 61 6e 20 4f 54 50 20 63 6f 6e 66 69 67 75 72 61 | ed..To.do.this,.an.OTP.configura |
| 5dba0 | 74 69 6f 6e 20 6d 75 73 74 20 62 65 20 61 64 64 65 64 20 74 6f 20 74 68 65 20 63 6f 6e 66 69 67 | tion.must.be.added.to.the.config |
| 5dbc0 | 75 72 61 74 69 6f 6e 20 61 62 6f 76 65 3a 00 49 6e 73 74 65 61 64 20 6f 66 20 73 65 6e 64 69 6e | uration.above:.Instead.of.sendin |
| 5dbe0 | 67 20 74 68 65 20 72 65 61 6c 20 73 79 73 74 65 6d 20 68 6f 73 74 6e 61 6d 65 20 74 6f 20 74 68 | g.the.real.system.hostname.to.th |
| 5dc00 | 65 20 44 48 43 50 20 73 65 72 76 65 72 2c 20 6f 76 65 72 77 72 69 74 65 20 74 68 65 20 68 6f 73 | e.DHCP.server,.overwrite.the.hos |
| 5dc20 | 74 2d 6e 61 6d 65 20 77 69 74 68 20 74 68 69 73 20 67 69 76 65 6e 2d 76 61 6c 75 65 2e 00 49 6e | t-name.with.this.given-value..In |
| 5dc40 | 73 74 65 61 64 2c 20 6d 65 6d 62 65 72 73 20 6f 66 20 74 68 65 73 65 20 67 72 6f 75 70 73 20 61 | stead,.members.of.these.groups.a |
| 5dc60 | 72 65 20 61 64 64 65 64 20 64 79 6e 61 6d 69 63 61 6c 6c 79 20 75 73 69 6e 67 20 66 69 72 65 77 | re.added.dynamically.using.firew |
| 5dc80 | 61 6c 6c 20 72 75 6c 65 73 2e 00 49 6e 74 65 67 72 69 74 79 20 e2 80 93 20 4d 65 73 73 61 67 65 | all.rules..Integrity.....Message |
| 5dca0 | 20 69 6e 74 65 67 72 69 74 79 20 74 6f 20 65 6e 73 75 72 65 20 74 68 61 74 20 61 20 70 61 63 6b | .integrity.to.ensure.that.a.pack |
| 5dcc0 | 65 74 20 68 61 73 20 6e 6f 74 20 62 65 65 6e 20 74 61 6d 70 65 72 65 64 20 77 68 69 6c 65 20 69 | et.has.not.been.tampered.while.i |
| 5dce0 | 6e 20 74 72 61 6e 73 69 74 20 69 6e 63 6c 75 64 69 6e 67 20 61 6e 20 6f 70 74 69 6f 6e 61 6c 20 | n.transit.including.an.optional. |
| 5dd00 | 70 61 63 6b 65 74 20 72 65 70 6c 61 79 20 70 72 6f 74 65 63 74 69 6f 6e 20 6d 65 63 68 61 6e 69 | packet.replay.protection.mechani |
| 5dd20 | 73 6d 2e 00 49 6e 74 65 6c 20 41 58 32 30 30 00 49 6e 74 65 6c c2 ae 20 51 41 54 00 49 6e 74 65 | sm..Intel.AX200.Intel...QAT.Inte |
| 5dd40 | 72 63 6f 6e 6e 65 63 74 20 74 68 65 20 67 6c 6f 62 61 6c 20 56 52 46 20 77 69 74 68 20 76 72 66 | rconnect.the.global.VRF.with.vrf |
| 5dd60 | 20 22 72 65 64 22 20 75 73 69 6e 67 20 74 68 65 20 76 65 74 68 31 30 20 3c 2d 3e 20 76 65 74 68 | ."red".using.the.veth10.<->.veth |
| 5dd80 | 20 31 31 20 70 61 69 72 00 49 6e 74 65 72 66 61 63 65 20 2a 2a 65 74 68 30 2a 2a 20 75 73 65 64 | .11.pair.Interface.**eth0**.used |
| 5dda0 | 20 74 6f 20 63 6f 6e 6e 65 63 74 20 74 6f 20 75 70 73 74 72 65 61 6d 2e 00 49 6e 74 65 72 66 61 | .to.connect.to.upstream..Interfa |
| 5ddc0 | 63 65 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 49 6e 74 65 72 66 61 63 65 20 47 72 6f 75 70 | ce.Configuration.Interface.Group |
| 5dde0 | 73 00 49 6e 74 65 72 66 61 63 65 20 52 6f 75 74 65 73 00 49 6e 74 65 72 66 61 63 65 20 60 65 74 | s.Interface.Routes.Interface.`et |
| 5de00 | 68 31 60 20 4c 41 4e 20 69 73 20 62 65 68 69 6e 64 20 4e 41 54 2e 20 49 6e 20 6f 72 64 65 72 20 | h1`.LAN.is.behind.NAT..In.order. |
| 5de20 | 74 6f 20 73 75 62 73 63 72 69 62 65 20 60 31 30 2e 30 2e 30 2e 30 2f 32 33 60 20 73 75 62 6e 65 | to.subscribe.`10.0.0.0/23`.subne |
| 5de40 | 74 20 6d 75 6c 74 69 63 61 73 74 20 77 68 69 63 68 20 69 73 20 69 6e 20 60 65 74 68 30 60 20 57 | t.multicast.which.is.in.`eth0`.W |
| 5de60 | 41 4e 20 77 65 20 6e 65 65 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 69 67 6d 70 2d 70 72 6f | AN.we.need.to.configure.igmp-pro |
| 5de80 | 78 79 2e 00 49 6e 74 65 72 66 61 63 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 49 6e 74 65 | xy..Interface.configuration.Inte |
| 5dea0 | 72 66 61 63 65 20 66 6f 72 20 44 48 43 50 20 52 65 6c 61 79 20 41 67 65 6e 74 20 74 6f 20 66 6f | rface.for.DHCP.Relay.Agent.to.fo |
| 5dec0 | 72 77 61 72 64 20 72 65 71 75 65 73 74 73 20 6f 75 74 2e 00 49 6e 74 65 72 66 61 63 65 20 66 6f | rward.requests.out..Interface.fo |
| 5dee0 | 72 20 44 48 43 50 20 52 65 6c 61 79 20 41 67 65 6e 74 20 74 6f 20 6c 69 73 74 65 6e 20 66 6f 72 | r.DHCP.Relay.Agent.to.listen.for |
| 5df00 | 20 72 65 71 75 65 73 74 73 2e 00 49 6e 74 65 72 66 61 63 65 20 73 70 65 63 69 66 69 63 20 63 6f | .requests..Interface.specific.co |
| 5df20 | 6d 6d 61 6e 64 73 00 49 6e 74 65 72 66 61 63 65 20 74 6f 20 75 73 65 20 66 6f 72 20 73 79 6e 63 | mmands.Interface.to.use.for.sync |
| 5df40 | 69 6e 67 20 63 6f 6e 6e 74 72 61 63 6b 20 65 6e 74 72 69 65 73 2e 00 49 6e 74 65 72 66 61 63 65 | ing.conntrack.entries..Interface |
| 5df60 | 20 75 73 65 64 20 66 6f 72 20 56 58 4c 41 4e 20 75 6e 64 65 72 6c 61 79 2e 20 54 68 69 73 20 69 | .used.for.VXLAN.underlay..This.i |
| 5df80 | 73 20 6d 61 6e 64 61 74 6f 72 79 20 77 68 65 6e 20 75 73 69 6e 67 20 56 58 4c 41 4e 20 76 69 61 | s.mandatory.when.using.VXLAN.via |
| 5dfa0 | 20 61 20 6d 75 6c 74 69 63 61 73 74 20 6e 65 74 77 6f 72 6b 2e 20 56 58 4c 41 4e 20 74 72 61 66 | .a.multicast.network..VXLAN.traf |
| 5dfc0 | 66 69 63 20 77 69 6c 6c 20 61 6c 77 61 79 73 20 65 6e 74 65 72 20 61 6e 64 20 65 78 69 74 20 74 | fic.will.always.enter.and.exit.t |
| 5dfe0 | 68 69 73 20 69 6e 74 65 72 66 61 63 65 2e 00 49 6e 74 65 72 66 61 63 65 20 77 65 69 67 68 74 00 | his.interface..Interface.weight. |
| 5e000 | 49 6e 74 65 72 66 61 63 65 73 00 49 6e 74 65 72 66 61 63 65 73 20 43 6f 6e 66 69 67 75 72 61 74 | Interfaces.Interfaces.Configurat |
| 5e020 | 69 6f 6e 00 49 6e 74 65 72 66 61 63 65 73 20 74 68 61 74 20 70 61 72 74 69 63 69 70 61 74 65 20 | ion.Interfaces.that.participate. |
| 5e040 | 69 6e 20 74 68 65 20 44 48 43 50 20 72 65 6c 61 79 20 70 72 6f 63 65 73 73 2e 20 49 66 20 74 68 | in.the.DHCP.relay.process..If.th |
| 5e060 | 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 75 73 65 64 2c 20 61 74 20 6c 65 61 73 74 20 74 77 6f | is.command.is.used,.at.least.two |
| 5e080 | 20 65 6e 74 72 69 65 73 20 6f 66 20 69 74 20 61 72 65 20 72 65 71 75 69 72 65 64 3a 20 6f 6e 65 | .entries.of.it.are.required:.one |
| 5e0a0 | 20 66 6f 72 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 74 68 61 74 20 63 61 70 74 75 72 65 73 | .for.the.interface.that.captures |
| 5e0c0 | 20 74 68 65 20 64 68 63 70 2d 72 65 71 75 65 73 74 73 2c 20 61 6e 64 20 6f 6e 65 20 66 6f 72 20 | .the.dhcp-requests,.and.one.for. |
| 5e0e0 | 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 66 6f 72 77 61 72 64 20 73 75 63 68 20 72 65 | the.interface.to.forward.such.re |
| 5e100 | 71 75 65 73 74 73 2e 20 41 20 77 61 72 6e 69 6e 67 20 6d 65 73 73 61 67 65 20 77 69 6c 6c 20 62 | quests..A.warning.message.will.b |
| 5e120 | 65 20 73 68 6f 77 6e 20 69 66 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 75 73 65 64 2c | e.shown.if.this.command.is.used, |
| 5e140 | 20 73 69 6e 63 65 20 6e 65 77 20 69 6d 70 6c 65 6d 65 6e 74 61 74 69 6f 6e 73 20 73 68 6f 75 6c | .since.new.implementations.shoul |
| 5e160 | 64 20 75 73 65 20 60 60 6c 69 73 74 65 6e 2d 69 6e 74 65 72 66 61 63 65 60 60 20 61 6e 64 20 60 | d.use.``listen-interface``.and.` |
| 5e180 | 60 75 70 73 74 72 65 61 6d 2d 69 6e 74 65 72 66 61 63 65 60 60 2e 00 49 6e 74 65 72 66 61 63 65 | `upstream-interface``..Interface |
| 5e1a0 | 73 20 77 68 6f 73 65 20 44 48 43 50 20 63 6c 69 65 6e 74 20 6e 61 6d 65 73 65 72 76 65 72 73 20 | s.whose.DHCP.client.nameservers. |
| 5e1c0 | 74 6f 20 66 6f 72 77 61 72 64 20 72 65 71 75 65 73 74 73 20 74 6f 2e 00 49 6e 74 65 72 66 61 63 | to.forward.requests.to..Interfac |
| 5e1e0 | 65 73 2c 20 74 68 65 69 72 20 77 65 69 67 68 74 20 61 6e 64 20 74 68 65 20 74 79 70 65 20 6f 66 | es,.their.weight.and.the.type.of |
| 5e200 | 20 74 72 61 66 66 69 63 20 74 6f 20 62 65 20 62 61 6c 61 6e 63 65 64 20 61 72 65 20 64 65 66 69 | .traffic.to.be.balanced.are.defi |
| 5e220 | 6e 65 64 20 69 6e 20 6e 75 6d 62 65 72 65 64 20 62 61 6c 61 6e 63 69 6e 67 20 72 75 6c 65 20 73 | ned.in.numbered.balancing.rule.s |
| 5e240 | 65 74 73 2e 20 54 68 65 20 72 75 6c 65 20 73 65 74 73 20 61 72 65 20 65 78 65 63 75 74 65 64 20 | ets..The.rule.sets.are.executed. |
| 5e260 | 69 6e 20 6e 75 6d 65 72 69 63 61 6c 20 6f 72 64 65 72 20 61 67 61 69 6e 73 74 20 6f 75 74 67 6f | in.numerical.order.against.outgo |
| 5e280 | 69 6e 67 20 70 61 63 6b 65 74 73 2e 20 49 6e 20 63 61 73 65 20 6f 66 20 61 20 6d 61 74 63 68 20 | ing.packets..In.case.of.a.match. |
| 5e2a0 | 74 68 65 20 70 61 63 6b 65 74 20 69 73 20 73 65 6e 74 20 74 68 72 6f 75 67 68 20 61 6e 20 69 6e | the.packet.is.sent.through.an.in |
| 5e2c0 | 74 65 72 66 61 63 65 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 74 68 65 20 6d 61 74 63 68 69 6e | terface.specified.in.the.matchin |
| 5e2e0 | 67 20 72 75 6c 65 2e 20 49 66 20 61 20 70 61 63 6b 65 74 20 64 6f 65 73 6e 27 74 20 6d 61 74 63 | g.rule..If.a.packet.doesn't.matc |
| 5e300 | 68 20 61 6e 79 20 72 75 6c 65 20 69 74 20 69 73 20 73 65 6e 74 20 62 79 20 75 73 69 6e 67 20 74 | h.any.rule.it.is.sent.by.using.t |
| 5e320 | 68 65 20 73 79 73 74 65 6d 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 2e 20 52 75 6c 65 20 6e 75 | he.system.routing.table..Rule.nu |
| 5e340 | 6d 62 65 72 73 20 63 61 6e 27 74 20 62 65 20 63 68 61 6e 67 65 64 2e 00 49 6e 74 65 72 6e 61 6c | mbers.can't.be.changed..Internal |
| 5e360 | 20 61 74 74 61 63 6b 3a 20 61 6e 20 61 74 74 61 63 6b 20 66 72 6f 6d 20 74 68 65 20 69 6e 74 65 | .attack:.an.attack.from.the.inte |
| 5e380 | 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 20 28 67 65 6e 65 72 61 74 65 64 20 62 79 20 61 20 63 75 73 | rnal.network.(generated.by.a.cus |
| 5e3a0 | 74 6f 6d 65 72 29 20 74 6f 77 61 72 64 73 20 74 68 65 20 69 6e 74 65 72 6e 65 74 20 69 73 20 69 | tomer).towards.the.internet.is.i |
| 5e3c0 | 64 65 6e 74 69 66 79 2e 20 49 6e 20 74 68 69 73 20 63 61 73 65 2c 20 61 6c 6c 20 63 6f 6e 6e 65 | dentify..In.this.case,.all.conne |
| 5e3e0 | 63 74 69 6f 6e 73 20 66 72 6f 6d 20 74 68 69 73 20 70 61 72 74 69 63 75 6c 61 72 20 49 50 2f 43 | ctions.from.this.particular.IP/C |
| 5e400 | 75 73 74 6f 6d 65 72 20 77 69 6c 6c 20 62 65 20 62 6c 6f 63 6b 65 64 2e 00 49 6e 74 65 72 6e 61 | ustomer.will.be.blocked..Interna |
| 5e420 | 6c 6c 79 2c 20 69 6e 20 66 6c 6f 77 2d 61 63 63 6f 75 6e 74 69 6e 67 20 70 72 6f 63 65 73 73 65 | lly,.in.flow-accounting.processe |
| 5e440 | 73 20 65 78 69 73 74 20 61 20 62 75 66 66 65 72 20 66 6f 72 20 64 61 74 61 20 65 78 63 68 61 6e | s.exist.a.buffer.for.data.exchan |
| 5e460 | 67 69 6e 67 20 62 65 74 77 65 65 6e 20 63 6f 72 65 20 70 72 6f 63 65 73 73 20 61 6e 64 20 70 6c | ging.between.core.process.and.pl |
| 5e480 | 75 67 69 6e 73 20 28 65 61 63 68 20 65 78 70 6f 72 74 20 74 61 72 67 65 74 20 69 73 20 61 20 73 | ugins.(each.export.target.is.a.s |
| 5e4a0 | 65 70 61 72 61 74 65 64 20 70 6c 75 67 69 6e 29 2e 20 49 66 20 79 6f 75 20 68 61 76 65 20 68 69 | eparated.plugin)..If.you.have.hi |
| 5e4c0 | 67 68 20 74 72 61 66 66 69 63 20 6c 65 76 65 6c 73 20 6f 72 20 6e 6f 74 65 64 20 73 6f 6d 65 20 | gh.traffic.levels.or.noted.some. |
| 5e4e0 | 70 72 6f 62 6c 65 6d 73 20 77 69 74 68 20 6d 69 73 73 65 64 20 72 65 63 6f 72 64 73 20 6f 72 20 | problems.with.missed.records.or. |
| 5e500 | 73 74 6f 70 70 69 6e 67 20 65 78 70 6f 72 74 69 6e 67 2c 20 79 6f 75 20 6d 61 79 20 74 72 79 20 | stopping.exporting,.you.may.try. |
| 5e520 | 74 6f 20 69 6e 63 72 65 61 73 65 20 61 20 64 65 66 61 75 6c 74 20 62 75 66 66 65 72 20 73 69 7a | to.increase.a.default.buffer.siz |
| 5e540 | 65 20 28 31 30 20 4d 69 42 29 20 77 69 74 68 20 74 68 65 20 6e 65 78 74 20 63 6f 6d 6d 61 6e 64 | e.(10.MiB).with.the.next.command |
| 5e560 | 3a 00 49 6e 74 65 72 6e 65 74 20 4b 65 79 20 45 78 63 68 61 6e 67 65 20 76 65 72 73 69 6f 6e 20 | :.Internet.Key.Exchange.version. |
| 5e580 | 32 20 28 49 4b 45 76 32 29 20 69 73 20 61 20 74 75 6e 6e 65 6c 69 6e 67 20 70 72 6f 74 6f 63 6f | 2.(IKEv2).is.a.tunneling.protoco |
| 5e5a0 | 6c 2c 20 62 61 73 65 64 20 6f 6e 20 49 50 73 65 63 2c 20 74 68 61 74 20 65 73 74 61 62 6c 69 73 | l,.based.on.IPsec,.that.establis |
| 5e5c0 | 68 65 73 20 61 20 73 65 63 75 72 65 20 56 50 4e 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6f 6e 20 62 | hes.a.secure.VPN.communication.b |
| 5e5e0 | 65 74 77 65 65 6e 20 56 50 4e 20 64 65 76 69 63 65 73 2c 20 20 61 6e 64 20 64 65 66 69 6e 65 73 | etween.VPN.devices,..and.defines |
| 5e600 | 20 6e 65 67 6f 74 69 61 74 69 6f 6e 20 61 6e 64 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 | .negotiation.and.authentication. |
| 5e620 | 70 72 6f 63 65 73 73 65 73 20 66 6f 72 20 49 50 73 65 63 20 73 65 63 75 72 69 74 79 20 61 73 73 | processes.for.IPsec.security.ass |
| 5e640 | 6f 63 69 61 74 69 6f 6e 73 20 28 53 41 73 29 2e 20 49 74 20 69 73 20 6f 66 74 65 6e 20 6b 6e 6f | ociations.(SAs)..It.is.often.kno |
| 5e660 | 77 6e 20 61 73 20 49 4b 45 76 32 2f 49 50 53 65 63 20 6f 72 20 49 50 53 65 63 20 49 4b 45 76 32 | wn.as.IKEv2/IPSec.or.IPSec.IKEv2 |
| 5e680 | 20 72 65 6d 6f 74 65 2d 61 63 63 65 73 73 20 e2 80 94 20 6f 72 20 72 6f 61 64 2d 77 61 72 72 69 | .remote-access.....or.road-warri |
| 5e6a0 | 6f 72 73 20 61 73 20 6f 74 68 65 72 73 20 63 61 6c 6c 20 69 74 2e 00 49 6e 74 65 72 6e 65 74 20 | ors.as.others.call.it..Internet. |
| 5e6c0 | 4b 65 79 20 45 78 63 68 61 6e 67 65 20 76 65 72 73 69 6f 6e 20 32 2c 20 49 4b 45 76 32 20 66 6f | Key.Exchange.version.2,.IKEv2.fo |
| 5e6e0 | 72 20 73 68 6f 72 74 2c 20 69 73 20 61 20 72 65 71 75 65 73 74 2f 72 65 73 70 6f 6e 73 65 20 70 | r.short,.is.a.request/response.p |
| 5e700 | 72 6f 74 6f 63 6f 6c 20 64 65 76 65 6c 6f 70 65 64 20 62 79 20 62 6f 74 68 20 43 69 73 63 6f 20 | rotocol.developed.by.both.Cisco. |
| 5e720 | 61 6e 64 20 4d 69 63 72 6f 73 6f 66 74 2e 20 49 74 20 69 73 20 75 73 65 64 20 74 6f 20 65 73 74 | and.Microsoft..It.is.used.to.est |
| 5e740 | 61 62 6c 69 73 68 20 61 6e 64 20 73 65 63 75 72 65 20 49 50 76 34 2f 49 50 76 36 20 63 6f 6e 6e | ablish.and.secure.IPv4/IPv6.conn |
| 5e760 | 65 63 74 69 6f 6e 73 2c 20 62 65 20 69 74 20 61 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 56 50 | ections,.be.it.a.site-to-site.VP |
| 5e780 | 4e 20 6f 72 20 66 72 6f 6d 20 61 20 72 6f 61 64 2d 77 61 72 72 69 6f 72 20 63 6f 6e 6e 65 63 74 | N.or.from.a.road-warrior.connect |
| 5e7a0 | 69 6e 67 20 74 6f 20 61 20 68 75 62 20 73 69 74 65 2e 20 49 4b 45 76 32 2c 20 77 68 65 6e 20 72 | ing.to.a.hub.site..IKEv2,.when.r |
| 5e7c0 | 75 6e 20 69 6e 20 70 6f 69 6e 74 2d 74 6f 2d 6d 75 6c 74 69 70 6f 69 6e 74 2c 20 6f 72 20 72 65 | un.in.point-to-multipoint,.or.re |
| 5e7e0 | 6d 6f 74 65 2d 61 63 63 65 73 73 2f 72 6f 61 64 2d 77 61 72 72 69 6f 72 20 6d 6f 64 65 2c 20 73 | mote-access/road-warrior.mode,.s |
| 5e800 | 65 63 75 72 65 73 20 74 68 65 20 73 65 72 76 65 72 2d 73 69 64 65 20 77 69 74 68 20 61 6e 6f 74 | ecures.the.server-side.with.anot |
| 5e820 | 68 65 72 20 6c 61 79 65 72 20 62 79 20 75 73 69 6e 67 20 61 6e 20 78 35 30 39 20 73 69 67 6e 65 | her.layer.by.using.an.x509.signe |
| 5e840 | 64 20 73 65 72 76 65 72 20 63 65 72 74 69 66 69 63 61 74 65 2e 00 49 6e 74 65 72 6e 65 74 77 6f | d.server.certificate..Internetwo |
| 5e860 | 72 6b 20 43 6f 6e 74 72 6f 6c 00 49 6e 74 65 72 76 61 6c 00 49 6e 74 65 72 76 61 6c 20 28 69 6e | rk.Control.Interval.Interval.(in |
| 5e880 | 20 73 65 63 6f 6e 64 73 29 20 66 6f 72 20 73 65 6e 64 69 6e 67 20 6d 61 72 6b 20 6d 65 73 73 61 | .seconds).for.sending.mark.messa |
| 5e8a0 | 67 65 73 20 74 6f 20 74 68 65 20 73 79 73 6c 6f 67 20 69 6e 70 75 74 20 74 6f 20 69 6e 64 69 63 | ges.to.the.syslog.input.to.indic |
| 5e8c0 | 61 74 65 20 74 68 61 74 20 74 68 65 20 6c 6f 67 67 69 6e 67 20 73 79 73 74 65 6d 20 69 73 20 66 | ate.that.the.logging.system.is.f |
| 5e8e0 | 75 6e 63 74 69 6f 6e 69 6e 67 2e 00 49 6e 74 65 72 76 61 6c 20 69 6e 20 6d 69 6c 6c 69 73 65 63 | unctioning..Interval.in.millisec |
| 5e900 | 6f 6e 64 73 00 49 6e 74 65 72 76 61 6c 20 69 6e 20 6d 69 6e 75 74 65 73 20 62 65 74 77 65 65 6e | onds.Interval.in.minutes.between |
| 5e920 | 20 75 70 64 61 74 65 73 20 28 64 65 66 61 75 6c 74 3a 20 36 30 29 00 49 6e 74 72 6f 64 75 63 69 | .updates.(default:.60).Introduci |
| 5e940 | 6e 67 20 72 6f 75 74 65 20 72 65 66 6c 65 63 74 6f 72 73 20 72 65 6d 6f 76 65 73 20 74 68 65 20 | ng.route.reflectors.removes.the. |
| 5e960 | 6e 65 65 64 20 66 6f 72 20 74 68 65 20 66 75 6c 6c 2d 6d 65 73 68 2e 20 57 68 65 6e 20 79 6f 75 | need.for.the.full-mesh..When.you |
| 5e980 | 20 63 6f 6e 66 69 67 75 72 65 20 61 20 72 6f 75 74 65 20 72 65 66 6c 65 63 74 6f 72 20 79 6f 75 | .configure.a.route.reflector.you |
| 5e9a0 | 20 68 61 76 65 20 74 6f 20 74 65 6c 6c 20 74 68 65 20 72 6f 75 74 65 72 20 77 68 65 74 68 65 72 | .have.to.tell.the.router.whether |
| 5e9c0 | 20 74 68 65 20 6f 74 68 65 72 20 49 42 47 50 20 72 6f 75 74 65 72 20 69 73 20 61 20 63 6c 69 65 | .the.other.IBGP.router.is.a.clie |
| 5e9e0 | 6e 74 20 6f 72 20 6e 6f 6e 2d 63 6c 69 65 6e 74 2e 20 41 20 63 6c 69 65 6e 74 20 69 73 20 61 6e | nt.or.non-client..A.client.is.an |
| 5ea00 | 20 49 42 47 50 20 72 6f 75 74 65 72 20 74 68 61 74 20 74 68 65 20 72 6f 75 74 65 20 72 65 66 6c | .IBGP.router.that.the.route.refl |
| 5ea20 | 65 63 74 6f 72 20 77 69 6c 6c 20 e2 80 9c 72 65 66 6c 65 63 74 e2 80 9d 20 72 6f 75 74 65 73 20 | ector.will....reflect....routes. |
| 5ea40 | 74 6f 2c 20 74 68 65 20 6e 6f 6e 2d 63 6c 69 65 6e 74 20 69 73 20 6a 75 73 74 20 61 20 72 65 67 | to,.the.non-client.is.just.a.reg |
| 5ea60 | 75 6c 61 72 20 49 42 47 50 20 6e 65 69 67 68 62 6f 72 2e 20 52 6f 75 74 65 20 72 65 66 6c 65 63 | ular.IBGP.neighbor..Route.reflec |
| 5ea80 | 74 6f 72 73 20 6d 65 63 68 61 6e 69 73 6d 20 69 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a | tors.mechanism.is.described.in.: |
| 5eaa0 | 72 66 63 3a 60 34 34 35 36 60 20 61 6e 64 20 75 70 64 61 74 65 64 20 62 79 20 3a 72 66 63 3a 60 | rfc:`4456`.and.updated.by.:rfc:` |
| 5eac0 | 37 36 30 36 60 2e 00 49 6e 74 72 75 73 69 6f 6e 20 44 65 74 65 63 74 69 6f 6e 20 28 49 44 53 29 | 7606`..Intrusion.Detection.(IDS) |
| 5eae0 | 3a 20 41 6e 61 6c 79 7a 65 73 20 6e 65 74 77 6f 72 6b 20 74 72 61 66 66 69 63 20 61 6e 64 20 64 | :.Analyzes.network.traffic.and.d |
| 5eb00 | 65 74 65 63 74 73 20 73 75 73 70 69 63 69 6f 75 73 20 61 63 74 69 76 69 74 69 65 73 2c 20 61 74 | etects.suspicious.activities,.at |
| 5eb20 | 74 61 63 6b 73 2c 20 61 6e 64 20 6d 61 6c 69 63 69 6f 75 73 20 74 72 61 66 66 69 63 2e 20 49 6e | tacks,.and.malicious.traffic..In |
| 5eb40 | 74 72 75 73 69 6f 6e 20 50 72 65 76 65 6e 74 69 6f 6e 20 28 49 50 53 29 3a 20 42 6c 6f 63 6b 73 | trusion.Prevention.(IPS):.Blocks |
| 5eb60 | 20 6f 72 20 6d 6f 64 69 66 69 65 73 20 73 75 73 70 69 63 69 6f 75 73 20 74 72 61 66 66 69 63 20 | .or.modifies.suspicious.traffic. |
| 5eb80 | 69 6e 20 72 65 61 6c 2d 74 69 6d 65 2c 20 70 72 65 76 65 6e 74 69 6e 67 20 61 74 74 61 63 6b 73 | in.real-time,.preventing.attacks |
| 5eba0 | 20 62 65 66 6f 72 65 20 74 68 65 79 20 70 65 6e 65 74 72 61 74 65 20 74 68 65 20 6e 65 74 77 6f | .before.they.penetrate.the.netwo |
| 5ebc0 | 72 6b 2e 20 4e 65 74 77 6f 72 6b 20 53 65 63 75 72 69 74 79 20 4d 6f 6e 69 74 6f 72 69 6e 67 20 | rk..Network.Security.Monitoring. |
| 5ebe0 | 28 4e 53 4d 29 3a 20 43 6f 6c 6c 65 63 74 73 20 61 6e 64 20 61 6e 61 6c 79 7a 65 73 20 6e 65 74 | (NSM):.Collects.and.analyzes.net |
| 5ec00 | 77 6f 72 6b 20 64 61 74 61 20 74 6f 20 64 65 74 65 63 74 20 61 6e 6f 6d 61 6c 69 65 73 20 61 6e | work.data.to.detect.anomalies.an |
| 5ec20 | 64 20 69 64 65 6e 74 69 66 79 20 74 68 72 65 61 74 73 2e 20 4d 75 6c 74 69 2d 50 72 6f 74 6f 63 | d.identify.threats..Multi-Protoc |
| 5ec40 | 6f 6c 20 53 75 70 70 6f 72 74 3a 20 53 75 72 69 63 61 74 61 20 73 75 70 70 6f 72 74 73 20 61 6e | ol.Support:.Suricata.supports.an |
| 5ec60 | 61 6c 79 73 69 73 20 6f 66 20 76 61 72 69 6f 75 73 20 6e 65 74 77 6f 72 6b 20 70 72 6f 74 6f 63 | alysis.of.various.network.protoc |
| 5ec80 | 6f 6c 73 20 73 75 63 68 20 61 73 20 48 54 54 50 2c 20 46 54 50 2c 20 53 4d 42 2c 20 61 6e 64 20 | ols.such.as.HTTP,.FTP,.SMB,.and. |
| 5eca0 | 6d 61 6e 79 20 6f 74 68 65 72 73 2e 20 49 6e 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d 6f | many.others..In.configuration.mo |
| 5ecc0 | 64 65 2c 20 74 68 65 20 63 6f 6d 6d 61 6e 64 73 20 61 72 65 20 61 73 20 66 6f 6c 6c 6f 77 73 3a | de,.the.commands.are.as.follows: |
| 5ece0 | 00 49 74 20 64 69 73 61 62 6c 65 73 20 74 72 61 6e 73 70 61 72 65 6e 74 20 68 75 67 65 20 70 61 | .It.disables.transparent.huge.pa |
| 5ed00 | 67 65 73 2c 20 61 6e 64 20 61 75 74 6f 6d 61 74 69 63 20 4e 55 4d 41 20 62 61 6c 61 6e 63 69 6e | ges,.and.automatic.NUMA.balancin |
| 5ed20 | 67 2e 20 49 74 20 61 6c 73 6f 20 75 73 65 73 20 63 70 75 70 6f 77 65 72 20 74 6f 20 73 65 74 20 | g..It.also.uses.cpupower.to.set. |
| 5ed40 | 74 68 65 20 70 65 72 66 6f 72 6d 61 6e 63 65 20 63 70 75 66 72 65 71 20 67 6f 76 65 72 6e 6f 72 | the.performance.cpufreq.governor |
| 5ed60 | 2c 20 61 6e 64 20 72 65 71 75 65 73 74 73 20 61 20 63 70 75 5f 64 6d 61 5f 6c 61 74 65 6e 63 79 | ,.and.requests.a.cpu_dma_latency |
| 5ed80 | 20 76 61 6c 75 65 20 6f 66 20 31 2e 20 49 74 20 61 6c 73 6f 20 73 65 74 73 20 62 75 73 79 5f 72 | .value.of.1..It.also.sets.busy_r |
| 5eda0 | 65 61 64 20 61 6e 64 20 62 75 73 79 5f 70 6f 6c 6c 20 74 69 6d 65 73 20 74 6f 20 35 30 20 75 73 | ead.and.busy_poll.times.to.50.us |
| 5edc0 | 2c 20 61 6e 64 20 74 63 70 5f 66 61 73 74 6f 70 65 6e 20 74 6f 20 33 2e 00 49 74 20 65 6e 61 62 | ,.and.tcp_fastopen.to.3..It.enab |
| 5ede0 | 6c 65 73 20 74 72 61 6e 73 70 61 72 65 6e 74 20 68 75 67 65 20 70 61 67 65 73 2c 20 61 6e 64 20 | les.transparent.huge.pages,.and. |
| 5ee00 | 75 73 65 73 20 63 70 75 70 6f 77 65 72 20 74 6f 20 73 65 74 20 74 68 65 20 70 65 72 66 6f 72 6d | uses.cpupower.to.set.the.perform |
| 5ee20 | 61 6e 63 65 20 63 70 75 66 72 65 71 20 67 6f 76 65 72 6e 6f 72 2e 20 49 74 20 61 6c 73 6f 20 73 | ance.cpufreq.governor..It.also.s |
| 5ee40 | 65 74 73 20 60 60 6b 65 72 6e 65 6c 2e 73 63 68 65 64 5f 6d 69 6e 5f 67 72 61 6e 75 6c 61 72 69 | ets.``kernel.sched_min_granulari |
| 5ee60 | 74 79 5f 6e 73 60 60 20 74 6f 20 31 30 20 75 73 2c 20 60 60 6b 65 72 6e 65 6c 2e 73 63 68 65 64 | ty_ns``.to.10.us,.``kernel.sched |
| 5ee80 | 5f 77 61 6b 65 75 70 5f 67 72 61 6e 75 6c 61 72 69 74 79 5f 6e 73 60 60 20 74 6f 20 31 35 20 75 | _wakeup_granularity_ns``.to.15.u |
| 5eea0 | 73 73 2c 20 61 6e 64 20 60 60 76 6d 2e 64 69 72 74 79 5f 72 61 74 69 6f 60 60 20 74 6f 20 34 30 | ss,.and.``vm.dirty_ratio``.to.40 |
| 5eec0 | 25 2e 00 49 74 20 67 65 6e 65 72 61 74 65 73 20 74 68 65 20 6b 65 79 70 61 69 72 2c 20 77 68 69 | %..It.generates.the.keypair,.whi |
| 5eee0 | 63 68 20 69 6e 63 6c 75 64 65 73 20 74 68 65 20 70 75 62 6c 69 63 20 61 6e 64 20 70 72 69 76 61 | ch.includes.the.public.and.priva |
| 5ef00 | 74 65 20 70 61 72 74 73 2e 20 54 68 65 20 6b 65 79 20 69 73 20 6e 6f 74 20 73 74 6f 72 65 64 20 | te.parts..The.key.is.not.stored. |
| 5ef20 | 6f 6e 20 74 68 65 20 73 79 73 74 65 6d 20 2d 20 6f 6e 6c 79 20 61 20 6b 65 79 70 61 69 72 20 69 | on.the.system.-.only.a.keypair.i |
| 5ef40 | 73 20 67 65 6e 65 72 61 74 65 64 2e 00 49 74 20 68 61 6e 64 73 20 6f 75 74 20 70 72 65 66 69 78 | s.generated..It.hands.out.prefix |
| 5ef60 | 65 73 20 60 60 32 30 30 31 3a 64 62 38 3a 30 3a 31 30 3a 3a 2f 36 34 60 60 20 74 68 72 6f 75 67 | es.``2001:db8:0:10::/64``.throug |
| 5ef80 | 68 20 60 60 32 30 30 31 3a 64 62 38 3a 30 3a 31 66 3a 3a 2f 36 34 60 60 2e 00 49 74 20 68 65 6c | h.``2001:db8:0:1f::/64``..It.hel |
| 5efa0 | 70 73 20 74 6f 20 73 75 70 70 6f 72 74 20 61 73 20 48 45 4c 50 45 52 20 6f 6e 6c 79 20 66 6f 72 | ps.to.support.as.HELPER.only.for |
| 5efc0 | 20 70 6c 61 6e 6e 65 64 20 72 65 73 74 61 72 74 73 2e 00 49 74 20 68 65 6c 70 73 20 74 6f 20 74 | .planned.restarts..It.helps.to.t |
| 5efe0 | 68 69 6e 6b 20 6f 66 20 74 68 65 20 73 79 6e 74 61 78 20 61 73 3a 20 28 73 65 65 20 62 65 6c 6f | hink.of.the.syntax.as:.(see.belo |
| 5f000 | 77 29 2e 20 54 68 65 20 27 72 75 6c 65 2d 73 65 74 27 20 73 68 6f 75 6c 64 20 62 65 20 77 72 69 | w)..The.'rule-set'.should.be.wri |
| 5f020 | 74 74 65 6e 20 66 72 6f 6d 20 74 68 65 20 70 65 72 73 70 65 63 74 69 76 65 20 6f 66 3a 20 2a 53 | tten.from.the.perspective.of:.*S |
| 5f040 | 6f 75 72 63 65 20 5a 6f 6e 65 2a 2d 74 6f 2d 3e 2a 44 65 73 74 69 6e 61 74 69 6f 6e 20 5a 6f 6e | ource.Zone*-to->*Destination.Zon |
| 5f060 | 65 2a 00 49 74 20 69 73 20 63 6f 6d 70 61 74 69 62 6c 65 20 77 69 74 68 20 43 69 73 63 6f 20 28 | e*.It.is.compatible.with.Cisco.( |
| 5f080 | 52 29 20 41 6e 79 43 6f 6e 6e 65 63 74 20 28 52 29 20 63 6c 69 65 6e 74 73 2e 00 49 74 20 69 73 | R).AnyConnect.(R).clients..It.is |
| 5f0a0 | 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 60 60 65 74 68 31 60 60 00 49 74 20 69 73 20 63 6f 6e | .connected.to.``eth1``.It.is.con |
| 5f0c0 | 6e 65 63 74 65 64 20 74 6f 20 60 60 65 74 68 31 60 60 2e 00 49 74 20 69 73 20 68 69 67 68 6c 79 | nected.to.``eth1``..It.is.highly |
| 5f0e0 | 20 72 65 63 6f 6d 6d 65 6e 64 65 64 20 74 6f 20 75 73 65 20 53 53 48 20 6b 65 79 20 61 75 74 68 | .recommended.to.use.SSH.key.auth |
| 5f100 | 65 6e 74 69 63 61 74 69 6f 6e 2e 20 42 79 20 64 65 66 61 75 6c 74 20 74 68 65 72 65 20 69 73 20 | entication..By.default.there.is. |
| 5f120 | 6f 6e 6c 79 20 6f 6e 65 20 75 73 65 72 20 28 60 60 76 79 6f 73 60 60 29 2c 20 61 6e 64 20 79 6f | only.one.user.(``vyos``),.and.yo |
| 5f140 | 75 20 63 61 6e 20 61 73 73 69 67 6e 20 61 6e 79 20 6e 75 6d 62 65 72 20 6f 66 20 6b 65 79 73 20 | u.can.assign.any.number.of.keys. |
| 5f160 | 74 6f 20 74 68 61 74 20 75 73 65 72 2e 20 59 6f 75 20 63 61 6e 20 67 65 6e 65 72 61 74 65 20 61 | to.that.user..You.can.generate.a |
| 5f180 | 20 73 73 68 20 6b 65 79 20 77 69 74 68 20 74 68 65 20 60 60 73 73 68 2d 6b 65 79 67 65 6e 60 60 | .ssh.key.with.the.``ssh-keygen`` |
| 5f1a0 | 20 63 6f 6d 6d 61 6e 64 20 6f 6e 20 79 6f 75 72 20 6c 6f 63 61 6c 20 6d 61 63 68 69 6e 65 2c 20 | .command.on.your.local.machine,. |
| 5f1c0 | 77 68 69 63 68 20 77 69 6c 6c 20 28 62 79 20 64 65 66 61 75 6c 74 29 20 73 61 76 65 20 69 74 20 | which.will.(by.default).save.it. |
| 5f1e0 | 61 73 20 60 60 7e 2f 2e 73 73 68 2f 69 64 5f 72 73 61 2e 70 75 62 60 60 2e 00 49 74 20 69 73 20 | as.``~/.ssh/id_rsa.pub``..It.is. |
| 5f200 | 68 69 67 68 6c 79 20 72 65 63 6f 6d 6d 65 6e 64 65 64 20 74 6f 20 75 73 65 20 74 68 65 20 73 61 | highly.recommended.to.use.the.sa |
| 5f220 | 6d 65 20 61 64 64 72 65 73 73 20 66 6f 72 20 62 6f 74 68 20 74 68 65 20 4c 44 50 20 72 6f 75 74 | me.address.for.both.the.LDP.rout |
| 5f240 | 65 72 2d 69 64 20 61 6e 64 20 74 68 65 20 64 69 73 63 6f 76 65 72 79 20 74 72 61 6e 73 70 6f 72 | er-id.and.the.discovery.transpor |
| 5f260 | 74 20 61 64 64 72 65 73 73 2c 20 62 75 74 20 66 6f 72 20 56 79 4f 53 20 4d 50 4c 53 20 4c 44 50 | t.address,.but.for.VyOS.MPLS.LDP |
| 5f280 | 20 74 6f 20 77 6f 72 6b 20 62 6f 74 68 20 70 61 72 61 6d 65 74 65 72 73 20 6d 75 73 74 20 62 65 | .to.work.both.parameters.must.be |
| 5f2a0 | 20 65 78 70 6c 69 63 69 74 6c 79 20 73 65 74 20 69 6e 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 | .explicitly.set.in.the.configura |
| 5f2c0 | 74 69 6f 6e 2e 00 49 74 20 69 73 20 69 6d 70 6f 72 74 61 6e 74 20 74 6f 20 6e 6f 74 65 20 74 68 | tion..It.is.important.to.note.th |
| 5f2e0 | 61 74 20 77 68 65 6e 20 63 72 65 61 74 69 6e 67 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 20 | at.when.creating.firewall.rules. |
| 5f300 | 74 68 61 74 20 74 68 65 20 44 4e 41 54 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 6f 63 63 75 72 73 | that.the.DNAT.translation.occurs |
| 5f320 | 20 2a 2a 62 65 66 6f 72 65 2a 2a 20 74 72 61 66 66 69 63 20 74 72 61 76 65 72 73 65 73 20 74 68 | .**before**.traffic.traverses.th |
| 5f340 | 65 20 66 69 72 65 77 61 6c 6c 2e 20 49 6e 20 6f 74 68 65 72 20 77 6f 72 64 73 2c 20 74 68 65 20 | e.firewall..In.other.words,.the. |
| 5f360 | 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 68 61 73 20 61 6c 72 65 61 64 79 20 | destination.address.has.already. |
| 5f380 | 62 65 65 6e 20 74 72 61 6e 73 6c 61 74 65 64 20 74 6f 20 31 39 32 2e 31 36 38 2e 30 2e 31 30 30 | been.translated.to.192.168.0.100 |
| 5f3a0 | 2e 00 49 74 20 69 73 20 69 6d 70 6f 72 74 61 6e 74 20 74 6f 20 6e 6f 74 65 20 74 68 61 74 20 77 | ..It.is.important.to.note.that.w |
| 5f3c0 | 68 65 6e 20 63 72 65 61 74 69 6e 67 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 2c 20 74 68 65 | hen.creating.firewall.rules,.the |
| 5f3e0 | 20 44 4e 41 54 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 6f 63 63 75 72 73 20 2a 2a 62 65 66 6f 72 | .DNAT.translation.occurs.**befor |
| 5f400 | 65 2a 2a 20 74 72 61 66 66 69 63 20 74 72 61 76 65 72 73 65 73 20 74 68 65 20 66 69 72 65 77 61 | e**.traffic.traverses.the.firewa |
| 5f420 | 6c 6c 2e 20 49 6e 20 6f 74 68 65 72 20 77 6f 72 64 73 2c 20 74 68 65 20 64 65 73 74 69 6e 61 74 | ll..In.other.words,.the.destinat |
| 5f440 | 69 6f 6e 20 61 64 64 72 65 73 73 20 68 61 73 20 61 6c 72 65 61 64 79 20 62 65 65 6e 20 74 72 61 | ion.address.has.already.been.tra |
| 5f460 | 6e 73 6c 61 74 65 64 20 74 6f 20 31 39 32 2e 31 36 38 2e 30 2e 31 30 30 2e 00 49 74 20 69 73 20 | nslated.to.192.168.0.100..It.is. |
| 5f480 | 6e 6f 74 20 73 75 66 66 69 63 69 65 6e 74 20 74 6f 20 6f 6e 6c 79 20 63 6f 6e 66 69 67 75 72 65 | not.sufficient.to.only.configure |
| 5f4a0 | 20 61 20 4c 33 56 50 4e 20 56 52 46 73 20 62 75 74 20 4c 33 56 50 4e 20 56 52 46 73 20 6d 75 73 | .a.L3VPN.VRFs.but.L3VPN.VRFs.mus |
| 5f4c0 | 74 20 62 65 20 6d 61 69 6e 74 61 69 6e 65 64 2c 20 74 6f 6f 2e 46 6f 72 20 4c 33 56 50 4e 20 56 | t.be.maintained,.too.For.L3VPN.V |
| 5f4e0 | 52 46 20 6d 61 69 6e 74 65 6e 61 6e 63 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 6f 70 65 | RF.maintenance.the.following.ope |
| 5f500 | 72 61 74 69 6f 6e 61 6c 20 63 6f 6d 6d 61 6e 64 73 20 61 72 65 20 69 6e 20 70 6c 61 63 65 2e 00 | rational.commands.are.in.place.. |
| 5f520 | 49 74 20 69 73 20 6e 6f 74 20 73 75 66 66 69 63 69 65 6e 74 20 74 6f 20 6f 6e 6c 79 20 63 6f 6e | It.is.not.sufficient.to.only.con |
| 5f540 | 66 69 67 75 72 65 20 61 20 56 52 46 20 62 75 74 20 56 52 46 73 20 6d 75 73 74 20 62 65 20 6d 61 | figure.a.VRF.but.VRFs.must.be.ma |
| 5f560 | 69 6e 74 61 69 6e 65 64 2c 20 74 6f 6f 2e 20 46 6f 72 20 56 52 46 20 6d 61 69 6e 74 65 6e 61 6e | intained,.too..For.VRF.maintenan |
| 5f580 | 63 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 63 6f 6d | ce.the.following.operational.com |
| 5f5a0 | 6d 61 6e 64 73 20 61 72 65 20 69 6e 20 70 6c 61 63 65 2e 00 49 74 20 69 73 20 6e 6f 74 20 76 61 | mands.are.in.place..It.is.not.va |
| 5f5c0 | 6c 69 64 20 74 6f 20 75 73 65 20 74 68 65 20 60 76 69 66 20 31 60 20 6f 70 74 69 6f 6e 20 66 6f | lid.to.use.the.`vif.1`.option.fo |
| 5f5e0 | 72 20 56 4c 41 4e 20 61 77 61 72 65 20 62 72 69 64 67 65 73 20 62 65 63 61 75 73 65 20 56 4c 41 | r.VLAN.aware.bridges.because.VLA |
| 5f600 | 4e 20 61 77 61 72 65 20 62 72 69 64 67 65 73 20 61 73 73 75 6d 65 20 74 68 61 74 20 61 6c 6c 20 | N.aware.bridges.assume.that.all. |
| 5f620 | 75 6e 6c 61 62 65 6c 65 64 20 70 61 63 6b 65 74 73 20 62 65 6c 6f 6e 67 20 74 6f 20 74 68 65 20 | unlabeled.packets.belong.to.the. |
| 5f640 | 64 65 66 61 75 6c 74 20 56 4c 41 4e 20 31 20 6d 65 6d 62 65 72 20 61 6e 64 20 74 68 61 74 20 74 | default.VLAN.1.member.and.that.t |
| 5f660 | 68 65 20 56 4c 41 4e 20 49 44 20 6f 66 20 74 68 65 20 62 72 69 64 67 65 27 73 20 70 61 72 65 6e | he.VLAN.ID.of.the.bridge's.paren |
| 5f680 | 74 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 61 6c 77 61 79 73 20 31 00 49 74 20 69 73 20 70 6f | t.interface.is.always.1.It.is.po |
| 5f6a0 | 73 73 69 62 6c 65 20 74 6f 20 65 6e 68 61 6e 63 65 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e | ssible.to.enhance.authentication |
| 5f6c0 | 20 73 65 63 75 72 69 74 79 20 62 79 20 75 73 69 6e 67 20 74 68 65 20 3a 61 62 62 72 3a 60 32 46 | .security.by.using.the.:abbr:`2F |
| 5f6e0 | 41 20 28 54 77 6f 2d 66 61 63 74 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 29 60 2f 3a | A.(Two-factor.authentication)`/: |
| 5f700 | 61 62 62 72 3a 60 4d 46 41 20 28 4d 75 6c 74 69 2d 66 61 63 74 6f 72 20 61 75 74 68 65 6e 74 69 | abbr:`MFA.(Multi-factor.authenti |
| 5f720 | 63 61 74 69 6f 6e 29 60 20 66 65 61 74 75 72 65 20 74 6f 67 65 74 68 65 72 20 77 69 74 68 20 3a | cation)`.feature.together.with.: |
| 5f740 | 61 62 62 72 3a 60 4f 54 50 20 28 4f 6e 65 2d 54 69 6d 65 2d 50 61 64 29 60 20 6f 6e 20 56 79 4f | abbr:`OTP.(One-Time-Pad)`.on.VyO |
| 5f760 | 53 2e 20 3a 61 62 62 72 3a 60 32 46 41 20 28 54 77 6f 2d 66 61 63 74 6f 72 20 61 75 74 68 65 6e | S..:abbr:`2FA.(Two-factor.authen |
| 5f780 | 74 69 63 61 74 69 6f 6e 29 60 2f 3a 61 62 62 72 3a 60 4d 46 41 20 28 4d 75 6c 74 69 2d 66 61 63 | tication)`/:abbr:`MFA.(Multi-fac |
| 5f7a0 | 74 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 29 60 20 69 73 20 63 6f 6e 66 69 67 75 72 | tor.authentication)`.is.configur |
| 5f7c0 | 65 64 20 69 6e 64 65 70 65 6e 64 65 6e 74 6c 79 20 70 65 72 20 65 61 63 68 20 75 73 65 72 2e 20 | ed.independently.per.each.user.. |
| 5f7e0 | 49 66 20 61 6e 20 4f 54 50 20 6b 65 79 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 20 66 6f 72 20 | If.an.OTP.key.is.configured.for. |
| 5f800 | 61 20 75 73 65 72 2c 20 32 46 41 2f 4d 46 41 20 69 73 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 | a.user,.2FA/MFA.is.automatically |
| 5f820 | 20 65 6e 61 62 6c 65 64 20 66 6f 72 20 74 68 61 74 20 70 61 72 74 69 63 75 6c 61 72 20 75 73 65 | .enabled.for.that.particular.use |
| 5f840 | 72 2e 20 49 66 20 61 20 75 73 65 72 20 64 6f 65 73 20 6e 6f 74 20 68 61 76 65 20 61 6e 20 4f 54 | r..If.a.user.does.not.have.an.OT |
| 5f860 | 50 20 6b 65 79 20 63 6f 6e 66 69 67 75 72 65 64 2c 20 74 68 65 72 65 20 69 73 20 6e 6f 20 32 46 | P.key.configured,.there.is.no.2F |
| 5f880 | 41 2f 4d 46 41 20 63 68 65 63 6b 20 66 6f 72 20 74 68 61 74 20 75 73 65 72 2e 00 49 74 20 69 73 | A/MFA.check.for.that.user..It.is |
| 5f8a0 | 20 70 6f 73 73 69 62 6c 65 20 74 6f 20 70 65 72 6d 69 74 20 42 47 50 20 69 6e 73 74 61 6c 6c 20 | .possible.to.permit.BGP.install. |
| 5f8c0 | 56 50 4e 20 70 72 65 66 69 78 65 73 20 77 69 74 68 6f 75 74 20 74 72 61 6e 73 70 6f 72 74 20 6c | VPN.prefixes.without.transport.l |
| 5f8e0 | 61 62 65 6c 73 2e 20 54 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 77 69 6c 6c 20 69 | abels..This.configuration.will.i |
| 5f900 | 6e 73 74 61 6c 6c 20 56 50 4e 20 70 72 65 66 69 78 65 73 20 6f 72 69 67 69 6e 61 74 65 64 20 66 | nstall.VPN.prefixes.originated.f |
| 5f920 | 72 6f 6d 20 61 6e 20 65 2d 62 67 70 20 73 65 73 73 69 6f 6e 2c 20 61 6e 64 20 77 69 74 68 20 74 | rom.an.e-bgp.session,.and.with.t |
| 5f940 | 68 65 20 6e 65 78 74 2d 68 6f 70 20 64 69 72 65 63 74 6c 79 20 63 6f 6e 6e 65 63 74 65 64 2e 00 | he.next-hop.directly.connected.. |
| 5f960 | 49 74 20 69 73 20 70 6f 73 73 69 62 6c 65 20 74 6f 20 73 70 65 63 69 66 79 20 61 20 73 74 61 74 | It.is.possible.to.specify.a.stat |
| 5f980 | 69 63 20 72 6f 75 74 65 20 66 6f 72 20 69 70 76 36 20 70 72 65 66 69 78 65 73 20 75 73 69 6e 67 | ic.route.for.ipv6.prefixes.using |
| 5f9a0 | 20 61 6e 20 53 52 76 36 20 73 65 67 6d 65 6e 74 73 20 69 6e 73 74 72 75 63 74 69 6f 6e 2e 20 54 | .an.SRv6.segments.instruction..T |
| 5f9c0 | 68 65 20 60 2f 60 20 73 65 70 61 72 61 74 6f 72 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 | he.`/`.separator.can.be.used.to. |
| 5f9e0 | 73 70 65 63 69 66 79 20 6d 75 6c 74 69 70 6c 65 20 73 65 67 6d 65 6e 74 20 69 6e 73 74 72 75 63 | specify.multiple.segment.instruc |
| 5fa00 | 74 69 6f 6e 73 2e 00 49 74 20 69 73 20 70 6f 73 73 69 62 6c 65 20 74 6f 20 75 73 65 20 65 69 74 | tions..It.is.possible.to.use.eit |
| 5fa20 | 68 65 72 20 4d 75 6c 74 69 63 61 73 74 20 6f 72 20 55 6e 69 63 61 73 74 20 74 6f 20 73 79 6e 63 | her.Multicast.or.Unicast.to.sync |
| 5fa40 | 20 63 6f 6e 6e 74 72 61 63 6b 20 74 72 61 66 66 69 63 2e 20 4d 6f 73 74 20 65 78 61 6d 70 6c 65 | .conntrack.traffic..Most.example |
| 5fa60 | 73 20 62 65 6c 6f 77 20 73 68 6f 77 20 4d 75 6c 74 69 63 61 73 74 2c 20 62 75 74 20 75 6e 69 63 | s.below.show.Multicast,.but.unic |
| 5fa80 | 61 73 74 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 20 62 79 20 75 73 69 6e 67 20 74 68 | ast.can.be.specified.by.using.th |
| 5faa0 | 65 20 22 70 65 65 72 22 20 6b 65 79 77 6f 72 6b 20 61 66 74 65 72 20 74 68 65 20 73 70 65 63 69 | e."peer".keywork.after.the.speci |
| 5fac0 | 66 69 63 65 64 20 69 6e 74 65 72 66 61 63 65 2c 20 61 73 20 69 6e 20 74 68 65 20 66 6f 6c 6c 6f | ficed.interface,.as.in.the.follo |
| 5fae0 | 77 69 6e 67 20 65 78 61 6d 70 6c 65 3a 00 49 74 20 69 73 20 70 6f 73 73 69 62 6c 65 20 74 6f 20 | wing.example:.It.is.possible.to. |
| 5fb00 | 75 73 65 20 65 69 74 68 65 72 20 4d 75 6c 74 69 63 61 73 74 20 6f 72 20 55 6e 69 63 61 73 74 20 | use.either.Multicast.or.Unicast. |
| 5fb20 | 74 6f 20 73 79 6e 63 20 63 6f 6e 6e 74 72 61 63 6b 20 74 72 61 66 66 69 63 2e 20 4d 6f 73 74 20 | to.sync.conntrack.traffic..Most. |
| 5fb40 | 65 78 61 6d 70 6c 65 73 20 62 65 6c 6f 77 20 73 68 6f 77 20 4d 75 6c 74 69 63 61 73 74 2c 20 62 | examples.below.show.Multicast,.b |
| 5fb60 | 75 74 20 75 6e 69 63 61 73 74 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 20 62 79 20 75 | ut.unicast.can.be.specified.by.u |
| 5fb80 | 73 69 6e 67 20 74 68 65 20 22 70 65 65 72 22 20 6b 65 79 77 6f 72 6b 20 61 66 74 65 72 20 74 68 | sing.the."peer".keywork.after.th |
| 5fba0 | 65 20 73 70 65 63 69 66 69 65 64 20 69 6e 74 65 72 66 61 63 65 2c 20 61 73 20 69 6e 20 74 68 65 | e.specified.interface,.as.in.the |
| 5fbc0 | 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 6c 65 3a 00 49 74 20 69 73 20 76 65 72 79 20 65 | .following.example:.It.is.very.e |
| 5fbe0 | 61 73 79 20 74 6f 20 6d 69 73 63 6f 6e 66 69 67 75 72 65 20 6d 75 6c 74 69 63 61 73 74 20 72 65 | asy.to.misconfigure.multicast.re |
| 5fc00 | 70 65 61 74 69 6e 67 20 69 66 20 79 6f 75 20 68 61 76 65 20 6d 75 6c 74 69 70 6c 65 20 4e 48 53 | peating.if.you.have.multiple.NHS |
| 5fc20 | 65 73 2e 00 49 74 20 75 73 65 73 20 61 20 73 69 6e 67 6c 65 20 54 43 50 20 6f 72 20 55 44 50 20 | es..It.uses.a.single.TCP.or.UDP. |
| 5fc40 | 63 6f 6e 6e 65 63 74 69 6f 6e 20 61 6e 64 20 64 6f 65 73 20 6e 6f 74 20 72 65 6c 79 20 6f 6e 20 | connection.and.does.not.rely.on. |
| 5fc60 | 70 61 63 6b 65 74 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 65 73 2c 20 73 6f 20 69 74 20 77 | packet.source.addresses,.so.it.w |
| 5fc80 | 69 6c 6c 20 77 6f 72 6b 20 65 76 65 6e 20 74 68 72 6f 75 67 68 20 61 20 64 6f 75 62 6c 65 20 4e | ill.work.even.through.a.double.N |
| 5fca0 | 41 54 3a 20 70 65 72 66 65 63 74 20 66 6f 72 20 70 75 62 6c 69 63 20 68 6f 74 73 70 6f 74 73 20 | AT:.perfect.for.public.hotspots. |
| 5fcc0 | 61 6e 64 20 73 75 63 68 00 49 74 20 75 73 65 73 20 61 20 73 74 6f 63 68 61 73 74 69 63 20 6d 6f | and.such.It.uses.a.stochastic.mo |
| 5fce0 | 64 65 6c 20 74 6f 20 63 6c 61 73 73 69 66 79 20 69 6e 63 6f 6d 69 6e 67 20 70 61 63 6b 65 74 73 | del.to.classify.incoming.packets |
| 5fd00 | 20 69 6e 74 6f 20 64 69 66 66 65 72 65 6e 74 20 66 6c 6f 77 73 20 61 6e 64 20 69 73 20 75 73 65 | .into.different.flows.and.is.use |
| 5fd20 | 64 20 74 6f 20 70 72 6f 76 69 64 65 20 61 20 66 61 69 72 20 73 68 61 72 65 20 6f 66 20 74 68 65 | d.to.provide.a.fair.share.of.the |
| 5fd40 | 20 62 61 6e 64 77 69 64 74 68 20 74 6f 20 61 6c 6c 20 74 68 65 20 66 6c 6f 77 73 20 75 73 69 6e | .bandwidth.to.all.the.flows.usin |
| 5fd60 | 67 20 74 68 65 20 71 75 65 75 65 2e 20 45 61 63 68 20 66 6c 6f 77 20 69 73 20 6d 61 6e 61 67 65 | g.the.queue..Each.flow.is.manage |
| 5fd80 | 64 20 62 79 20 74 68 65 20 43 6f 44 65 6c 20 71 75 65 75 69 6e 67 20 20 64 69 73 63 69 70 6c 69 | d.by.the.CoDel.queuing..discipli |
| 5fda0 | 6e 65 2e 20 52 65 6f 72 64 65 72 69 6e 67 20 77 69 74 68 69 6e 20 61 20 66 6c 6f 77 20 69 73 20 | ne..Reordering.within.a.flow.is. |
| 5fdc0 | 61 76 6f 69 64 65 64 20 73 69 6e 63 65 20 43 6f 64 65 6c 20 69 6e 74 65 72 6e 61 6c 6c 79 20 75 | avoided.since.Codel.internally.u |
| 5fde0 | 73 65 73 20 61 20 46 49 46 4f 20 71 75 65 75 65 2e 00 49 74 20 77 69 6c 6c 20 62 65 20 63 6f 6d | ses.a.FIFO.queue..It.will.be.com |
| 5fe00 | 62 69 6e 65 64 20 77 69 74 68 20 74 68 65 20 64 65 6c 65 67 61 74 65 64 20 70 72 65 66 69 78 20 | bined.with.the.delegated.prefix. |
| 5fe20 | 61 6e 64 20 74 68 65 20 73 6c 61 2d 69 64 20 74 6f 20 66 6f 72 6d 20 61 20 63 6f 6d 70 6c 65 74 | and.the.sla-id.to.form.a.complet |
| 5fe40 | 65 20 69 6e 74 65 72 66 61 63 65 20 61 64 64 72 65 73 73 2e 20 54 68 65 20 64 65 66 61 75 6c 74 | e.interface.address..The.default |
| 5fe60 | 20 69 73 20 74 6f 20 75 73 65 20 74 68 65 20 45 55 49 2d 36 34 20 61 64 64 72 65 73 73 20 6f 66 | .is.to.use.the.EUI-64.address.of |
| 5fe80 | 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 2e 00 49 74 27 73 20 65 61 73 79 20 74 6f 20 73 65 74 | .the.interface..It's.easy.to.set |
| 5fea0 | 75 70 20 61 6e 64 20 6f 66 66 65 72 73 20 76 65 72 79 20 66 6c 65 78 69 62 6c 65 20 73 70 6c 69 | up.and.offers.very.flexible.spli |
| 5fec0 | 74 20 74 75 6e 6e 65 6c 69 6e 67 00 49 74 27 73 20 6e 6f 74 20 6c 69 6b 65 6c 79 20 74 68 61 74 | t.tunneling.It's.not.likely.that |
| 5fee0 | 20 61 6e 79 6f 6e 65 20 77 69 6c 6c 20 6e 65 65 64 20 69 74 20 61 6e 79 20 74 69 6d 65 20 73 6f | .anyone.will.need.it.any.time.so |
| 5ff00 | 6f 6e 2c 20 62 75 74 20 69 74 20 64 6f 65 73 20 65 78 69 73 74 2e 00 49 74 27 73 20 73 6c 6f 77 | on,.but.it.does.exist..It's.slow |
| 5ff20 | 65 72 20 74 68 61 6e 20 49 50 73 65 63 20 64 75 65 20 74 6f 20 68 69 67 68 65 72 20 70 72 6f 74 | er.than.IPsec.due.to.higher.prot |
| 5ff40 | 6f 63 6f 6c 20 6f 76 65 72 68 65 61 64 20 61 6e 64 20 74 68 65 20 66 61 63 74 20 69 74 20 72 75 | ocol.overhead.and.the.fact.it.ru |
| 5ff60 | 6e 73 20 69 6e 20 75 73 65 72 20 6d 6f 64 65 20 77 68 69 6c 65 20 49 50 73 65 63 2c 20 6f 6e 20 | ns.in.user.mode.while.IPsec,.on. |
| 5ff80 | 4c 69 6e 75 78 2c 20 69 73 20 69 6e 20 6b 65 72 6e 65 6c 20 6d 6f 64 65 00 49 74 27 73 20 74 69 | Linux,.is.in.kernel.mode.It's.ti |
| 5ffa0 | 6d 65 20 74 6f 20 63 68 65 63 6b 20 63 6f 6e 6e 74 72 61 63 6b 20 74 61 62 6c 65 2c 20 74 6f 20 | me.to.check.conntrack.table,.to. |
| 5ffc0 | 73 65 65 20 69 66 20 61 6e 79 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 77 61 73 20 61 63 63 65 70 74 | see.if.any.connection.was.accept |
| 5ffe0 | 65 64 2c 20 61 6e 64 20 69 66 20 77 61 73 20 70 72 6f 70 65 72 6c 79 20 6f 66 66 6c 6f 61 64 65 | ed,.and.if.was.properly.offloade |
| 60000 | 64 00 49 74 27 73 20 74 69 6d 65 20 74 6f 20 63 68 65 63 6b 20 74 68 65 20 63 6f 6e 6e 74 72 61 | d.It's.time.to.check.the.conntra |
| 60020 | 63 6b 20 74 61 62 6c 65 2c 20 74 6f 20 73 65 65 20 69 66 20 61 6e 79 20 63 6f 6e 6e 65 63 74 69 | ck.table,.to.see.if.any.connecti |
| 60040 | 6f 6e 73 20 77 65 72 65 20 61 63 63 65 70 74 65 64 2c 20 61 6e 64 20 69 66 20 69 74 20 77 61 73 | ons.were.accepted,.and.if.it.was |
| 60060 | 20 70 72 6f 70 65 72 6c 79 20 6f 66 66 6c 6f 61 64 65 64 00 4a 6f 69 6e 20 61 20 67 69 76 65 6e | .properly.offloaded.Join.a.given |
| 60080 | 20 56 52 46 2e 20 54 68 69 73 20 77 69 6c 6c 20 6f 70 65 6e 20 61 20 6e 65 77 20 73 75 62 73 68 | .VRF..This.will.open.a.new.subsh |
| 600a0 | 65 6c 6c 20 77 69 74 68 69 6e 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 56 52 46 2e 00 4a 75 | ell.within.the.specified.VRF..Ju |
| 600c0 | 6d 70 20 74 6f 20 61 20 64 69 66 66 65 72 65 6e 74 20 72 75 6c 65 20 69 6e 20 74 68 69 73 20 72 | mp.to.a.different.rule.in.this.r |
| 600e0 | 6f 75 74 65 2d 6d 61 70 20 6f 6e 20 61 20 6d 61 74 63 68 2e 00 4a 75 6e 69 70 65 72 20 45 58 20 | oute-map.on.a.match..Juniper.EX. |
| 60100 | 53 77 69 74 63 68 00 4b 65 72 6e 65 6c 00 4b 65 72 6e 65 6c 20 50 61 72 61 6d 65 74 65 72 73 3a | Switch.Kernel.Kernel.Parameters: |
| 60120 | 20 6b 65 72 6e 65 6c 2e 6d 73 67 6d 61 78 2c 20 6b 65 72 6e 65 6c 2e 6d 73 67 6d 6e 62 2c 20 6b | .kernel.msgmax,.kernel.msgmnb,.k |
| 60140 | 65 72 6e 65 6c 2e 6d 73 67 6d 6e 69 2c 20 6b 65 72 6e 65 6c 2e 73 65 6d 2c 20 6b 65 72 6e 65 6c | ernel.msgmni,.kernel.sem,.kernel |
| 60160 | 2e 73 68 6d 61 6c 6c 2c 20 6b 65 72 6e 65 6c 2e 73 68 6d 6d 61 78 2c 20 6b 65 72 6e 65 6c 2e 73 | .shmall,.kernel.shmmax,.kernel.s |
| 60180 | 68 6d 6d 6e 69 2c 20 6b 65 72 6e 65 6c 2e 73 68 6d 5f 72 6d 69 64 5f 66 6f 72 63 65 64 00 4b 65 | hmmni,.kernel.shm_rmid_forced.Ke |
| 601a0 | 72 6e 65 6c 20 6d 65 73 73 61 67 65 73 00 4b 65 79 20 42 61 73 65 64 20 41 75 74 68 65 6e 74 69 | rnel.messages.Key.Based.Authenti |
| 601c0 | 63 61 74 69 6f 6e 00 4b 65 79 20 47 65 6e 65 72 61 74 69 6f 6e 00 4b 65 79 20 4d 61 6e 61 67 65 | cation.Key.Generation.Key.Manage |
| 601e0 | 6d 65 6e 74 00 4b 65 79 20 50 61 72 61 6d 65 74 65 72 73 3a 00 4b 65 79 20 50 6f 69 6e 74 73 3a | ment.Key.Parameters:.Key.Points: |
| 60200 | 00 4b 65 79 20 65 78 63 68 61 6e 67 65 20 61 6e 64 20 70 61 79 6c 6f 61 64 20 65 6e 63 72 79 70 | .Key.exchange.and.payload.encryp |
| 60220 | 74 69 6f 6e 20 69 73 20 64 6f 6e 65 20 75 73 69 6e 67 20 49 4b 45 20 61 6e 64 20 45 53 50 20 70 | tion.is.done.using.IKE.and.ESP.p |
| 60240 | 72 6f 70 6f 73 61 6c 73 20 61 73 20 6b 6e 6f 77 6e 20 66 72 6f 6d 20 49 4b 45 76 31 20 62 75 74 | roposals.as.known.from.IKEv1.but |
| 60260 | 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 61 72 65 20 66 61 73 74 65 72 20 74 6f 20 65 | .the.connections.are.faster.to.e |
| 60280 | 73 74 61 62 6c 69 73 68 2c 20 6d 6f 72 65 20 72 65 6c 69 61 62 6c 65 2c 20 61 6e 64 20 61 6c 73 | stablish,.more.reliable,.and.als |
| 602a0 | 6f 20 73 75 70 70 6f 72 74 20 72 6f 61 6d 69 6e 67 20 66 72 6f 6d 20 49 50 20 74 6f 20 49 50 20 | o.support.roaming.from.IP.to.IP. |
| 602c0 | 28 63 61 6c 6c 65 64 20 4d 4f 42 49 4b 45 20 77 68 69 63 68 20 6d 61 6b 65 73 20 73 75 72 65 20 | (called.MOBIKE.which.makes.sure. |
| 602e0 | 79 6f 75 72 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 64 6f 65 73 20 6e 6f 74 20 64 72 6f 70 20 77 68 | your.connection.does.not.drop.wh |
| 60300 | 65 6e 20 63 68 61 6e 67 69 6e 67 20 6e 65 74 77 6f 72 6b 73 20 66 72 6f 6d 20 65 2e 67 2e 20 57 | en.changing.networks.from.e.g..W |
| 60320 | 49 46 49 20 74 6f 20 4c 54 45 20 61 6e 64 20 62 61 63 6b 29 2e 20 41 75 74 68 65 6e 74 69 63 61 | IFI.to.LTE.and.back)..Authentica |
| 60340 | 74 69 6f 6e 20 63 61 6e 20 62 65 20 61 63 68 69 65 76 65 64 20 77 69 74 68 20 58 2e 35 30 39 20 | tion.can.be.achieved.with.X.509. |
| 60360 | 63 65 72 74 69 66 69 63 61 74 65 73 2e 00 4b 65 79 20 65 78 63 68 61 6e 67 65 20 61 6e 64 20 70 | certificates..Key.exchange.and.p |
| 60380 | 61 79 6c 6f 61 64 20 65 6e 63 72 79 70 74 69 6f 6e 20 69 73 20 73 74 69 6c 6c 20 64 6f 6e 65 20 | ayload.encryption.is.still.done. |
| 603a0 | 75 73 69 6e 67 20 49 4b 45 20 61 6e 64 20 45 53 50 20 70 72 6f 70 6f 73 61 6c 73 20 61 73 20 6b | using.IKE.and.ESP.proposals.as.k |
| 603c0 | 6e 6f 77 6e 20 66 72 6f 6d 20 49 4b 45 76 31 20 62 75 74 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 | nown.from.IKEv1.but.the.connecti |
| 603e0 | 6f 6e 73 20 61 72 65 20 66 61 73 74 65 72 20 74 6f 20 65 73 74 61 62 6c 69 73 68 2c 20 6d 6f 72 | ons.are.faster.to.establish,.mor |
| 60400 | 65 20 72 65 6c 69 61 62 6c 65 2c 20 61 6e 64 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 20 72 6f 61 | e.reliable,.and.also.support.roa |
| 60420 | 6d 69 6e 67 20 66 72 6f 6d 20 49 50 20 74 6f 20 49 50 20 28 63 61 6c 6c 65 64 20 4d 4f 42 49 4b | ming.from.IP.to.IP.(called.MOBIK |
| 60440 | 45 20 77 68 69 63 68 20 6d 61 6b 65 73 20 73 75 72 65 20 79 6f 75 72 20 63 6f 6e 6e 65 63 74 69 | E.which.makes.sure.your.connecti |
| 60460 | 6f 6e 20 64 6f 65 73 20 6e 6f 74 20 64 72 6f 70 20 77 68 65 6e 20 63 68 61 6e 67 69 6e 67 20 6e | on.does.not.drop.when.changing.n |
| 60480 | 65 74 77 6f 72 6b 73 20 66 72 6f 6d 20 65 2e 67 2e 20 57 49 46 49 20 74 6f 20 4c 54 45 20 61 6e | etworks.from.e.g..WIFI.to.LTE.an |
| 604a0 | 64 20 62 61 63 6b 29 2e 00 4b 65 79 20 75 73 61 67 65 20 28 43 4c 49 29 00 4b 65 79 62 6f 61 72 | d.back)..Key.usage.(CLI).Keyboar |
| 604c0 | 64 20 4c 61 79 6f 75 74 00 4b 65 79 70 61 69 72 73 00 4b 65 79 77 6f 72 64 00 4b 6e 6f 77 6e 20 | d.Layout.Keypairs.Keyword.Known. |
| 604e0 | 69 73 73 75 65 73 00 4c 32 54 50 00 4c 32 54 50 20 6f 76 65 72 20 49 50 73 65 63 00 4c 32 54 50 | issues.L2TP.L2TP.over.IPsec.L2TP |
| 60500 | 76 33 00 4c 32 54 50 76 33 20 63 61 6e 20 62 65 20 72 65 67 61 72 64 65 64 20 61 73 20 62 65 69 | v3.L2TPv3.can.be.regarded.as.bei |
| 60520 | 6e 67 20 74 6f 20 4d 50 4c 53 20 77 68 61 74 20 49 50 20 69 73 20 74 6f 20 41 54 4d 3a 20 61 20 | ng.to.MPLS.what.IP.is.to.ATM:.a. |
| 60540 | 73 69 6d 70 6c 69 66 69 65 64 20 76 65 72 73 69 6f 6e 20 6f 66 20 74 68 65 20 73 61 6d 65 20 63 | simplified.version.of.the.same.c |
| 60560 | 6f 6e 63 65 70 74 2c 20 77 69 74 68 20 6d 75 63 68 20 6f 66 20 74 68 65 20 73 61 6d 65 20 62 65 | oncept,.with.much.of.the.same.be |
| 60580 | 6e 65 66 69 74 20 61 63 68 69 65 76 65 64 20 61 74 20 61 20 66 72 61 63 74 69 6f 6e 20 6f 66 20 | nefit.achieved.at.a.fraction.of. |
| 605a0 | 74 68 65 20 65 66 66 6f 72 74 2c 20 61 74 20 74 68 65 20 63 6f 73 74 20 6f 66 20 6c 6f 73 69 6e | the.effort,.at.the.cost.of.losin |
| 605c0 | 67 20 73 6f 6d 65 20 74 65 63 68 6e 69 63 61 6c 20 66 65 61 74 75 72 65 73 20 63 6f 6e 73 69 64 | g.some.technical.features.consid |
| 605e0 | 65 72 65 64 20 6c 65 73 73 20 69 6d 70 6f 72 74 61 6e 74 20 69 6e 20 74 68 65 20 6d 61 72 6b 65 | ered.less.important.in.the.marke |
| 60600 | 74 2e 00 4c 32 54 50 76 33 20 69 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 | t..L2TPv3.is.described.in.:rfc:` |
| 60620 | 33 39 32 31 60 2e 00 4c 32 54 50 76 33 20 69 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 | 3921`..L2TPv3.is.described.in.:r |
| 60640 | 66 63 3a 60 33 39 33 31 60 2e 00 4c 32 54 50 76 33 20 6f 70 74 69 6f 6e 73 00 4c 32 54 50 76 33 | fc:`3931`..L2TPv3.options.L2TPv3 |
| 60660 | 3a 00 4c 33 56 50 4e 20 56 52 46 73 00 4c 44 41 50 00 4c 44 41 50 20 70 72 6f 74 6f 63 6f 6c 20 | :.L3VPN.VRFs.LDAP.LDAP.protocol. |
| 60680 | 76 65 72 73 69 6f 6e 2e 20 44 65 66 61 75 6c 74 73 20 74 6f 20 33 20 69 66 20 6e 6f 74 20 73 70 | version..Defaults.to.3.if.not.sp |
| 606a0 | 65 63 69 66 69 65 64 2e 00 4c 44 41 50 20 73 65 61 72 63 68 20 66 69 6c 74 65 72 20 74 6f 20 6c | ecified..LDAP.search.filter.to.l |
| 606c0 | 6f 63 61 74 65 20 74 68 65 20 75 73 65 72 20 44 4e 2e 20 52 65 71 75 69 72 65 64 20 69 66 20 74 | ocate.the.user.DN..Required.if.t |
| 606e0 | 68 65 20 75 73 65 72 73 20 61 72 65 20 69 6e 20 61 20 68 69 65 72 61 72 63 68 79 20 62 65 6c 6f | he.users.are.in.a.hierarchy.belo |
| 60700 | 77 20 74 68 65 20 62 61 73 65 20 44 4e 2c 20 6f 72 20 69 66 20 74 68 65 20 6c 6f 67 69 6e 20 6e | w.the.base.DN,.or.if.the.login.n |
| 60720 | 61 6d 65 20 69 73 20 6e 6f 74 20 77 68 61 74 20 62 75 69 6c 64 73 20 74 68 65 20 75 73 65 72 20 | ame.is.not.what.builds.the.user. |
| 60740 | 73 70 65 63 69 66 69 63 20 70 61 72 74 20 6f 66 20 74 68 65 20 75 73 65 72 73 20 44 4e 2e 00 4c | specific.part.of.the.users.DN..L |
| 60760 | 4c 44 50 00 4c 4c 44 50 20 70 65 72 66 6f 72 6d 73 20 66 75 6e 63 74 69 6f 6e 73 20 73 69 6d 69 | LDP.LLDP.performs.functions.simi |
| 60780 | 6c 61 72 20 74 6f 20 73 65 76 65 72 61 6c 20 70 72 6f 70 72 69 65 74 61 72 79 20 70 72 6f 74 6f | lar.to.several.proprietary.proto |
| 607a0 | 63 6f 6c 73 2c 20 73 75 63 68 20 61 73 20 3a 61 62 62 72 3a 60 43 44 50 20 28 43 69 73 63 6f 20 | cols,.such.as.:abbr:`CDP.(Cisco. |
| 607c0 | 44 69 73 63 6f 76 65 72 79 20 50 72 6f 74 6f 63 6f 6c 29 60 2c 20 3a 61 62 62 72 3a 60 46 44 50 | Discovery.Protocol)`,.:abbr:`FDP |
| 607e0 | 20 28 46 6f 75 6e 64 72 79 20 44 69 73 63 6f 76 65 72 79 20 50 72 6f 74 6f 63 6f 6c 29 60 2c 20 | .(Foundry.Discovery.Protocol)`,. |
| 60800 | 3a 61 62 62 72 3a 60 4e 44 50 20 28 4e 6f 72 74 65 6c 20 44 69 73 63 6f 76 65 72 79 20 50 72 6f | :abbr:`NDP.(Nortel.Discovery.Pro |
| 60820 | 74 6f 63 6f 6c 29 60 20 61 6e 64 20 3a 61 62 62 72 3a 60 4c 4c 54 44 20 28 4c 69 6e 6b 20 4c 61 | tocol)`.and.:abbr:`LLTD.(Link.La |
| 60840 | 79 65 72 20 54 6f 70 6f 6c 6f 67 79 20 44 69 73 63 6f 76 65 72 79 29 60 2e 00 4c 4e 53 20 28 4c | yer.Topology.Discovery)`..LNS.(L |
| 60860 | 32 54 50 20 4e 65 74 77 6f 72 6b 20 53 65 72 76 65 72 29 00 4c 4e 53 20 61 72 65 20 6f 66 74 65 | 2TP.Network.Server).LNS.are.ofte |
| 60880 | 6e 20 75 73 65 64 20 74 6f 20 63 6f 6e 6e 65 63 74 20 74 6f 20 61 20 4c 41 43 20 28 4c 32 54 50 | n.used.to.connect.to.a.LAC.(L2TP |
| 608a0 | 20 41 63 63 65 73 73 20 43 6f 6e 63 65 6e 74 72 61 74 6f 72 29 2e 00 4c 61 62 65 6c 20 44 69 73 | .Access.Concentrator)..Label.Dis |
| 608c0 | 74 72 69 62 75 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c 00 4c 61 62 65 6c 20 74 6f 20 75 73 65 20 | tribution.Protocol.Label.to.use. |
| 608e0 | 66 6f 72 20 74 68 65 20 6d 65 74 72 69 63 20 6e 61 6d 65 20 77 68 65 6e 20 73 65 6e 64 69 6e 67 | for.the.metric.name.when.sending |
| 60900 | 20 6d 65 74 72 69 63 73 2e 00 4c 61 73 74 6c 79 2c 20 77 65 20 63 61 6e 20 63 72 65 61 74 65 20 | .metrics..Lastly,.we.can.create. |
| 60920 | 74 68 65 20 6c 65 61 66 20 63 65 72 74 69 66 69 63 61 74 65 73 20 74 68 61 74 20 64 65 76 69 63 | the.leaf.certificates.that.devic |
| 60940 | 65 73 20 61 6e 64 20 75 73 65 72 73 20 77 69 6c 6c 20 75 74 69 6c 69 73 65 2e 00 4c 61 79 65 72 | es.and.users.will.utilise..Layer |
| 60960 | 20 32 20 54 75 6e 6e 65 6c 6c 69 6e 67 20 50 72 6f 74 6f 63 6f 6c 20 56 65 72 73 69 6f 6e 20 33 | .2.Tunnelling.Protocol.Version.3 |
| 60980 | 20 69 73 20 61 6e 20 49 45 54 46 20 73 74 61 6e 64 61 72 64 20 72 65 6c 61 74 65 64 20 74 6f 20 | .is.an.IETF.standard.related.to. |
| 609a0 | 4c 32 54 50 20 74 68 61 74 20 63 61 6e 20 62 65 20 75 73 65 64 20 61 73 20 61 6e 20 61 6c 74 65 | L2TP.that.can.be.used.as.an.alte |
| 609c0 | 72 6e 61 74 69 76 65 20 70 72 6f 74 6f 63 6f 6c 20 74 6f 20 3a 72 65 66 3a 60 6d 70 6c 73 60 20 | rnative.protocol.to.:ref:`mpls`. |
| 609e0 | 66 6f 72 20 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e 20 6f 66 20 6d 75 6c 74 69 70 72 6f 74 6f 63 | for.encapsulation.of.multiprotoc |
| 60a00 | 6f 6c 20 4c 61 79 65 72 20 32 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6f 6e 73 20 74 72 61 66 66 69 | ol.Layer.2.communications.traffi |
| 60a20 | 63 20 6f 76 65 72 20 49 50 20 6e 65 74 77 6f 72 6b 73 2e 20 4c 69 6b 65 20 4c 32 54 50 2c 20 4c | c.over.IP.networks..Like.L2TP,.L |
| 60a40 | 32 54 50 76 33 20 70 72 6f 76 69 64 65 73 20 61 20 70 73 65 75 64 6f 2d 77 69 72 65 20 73 65 72 | 2TPv3.provides.a.pseudo-wire.ser |
| 60a60 | 76 69 63 65 20 62 75 74 20 69 73 20 73 63 61 6c 65 64 20 74 6f 20 66 69 74 20 63 61 72 72 69 65 | vice.but.is.scaled.to.fit.carrie |
| 60a80 | 72 20 72 65 71 75 69 72 65 6d 65 6e 74 73 2e 00 4c 65 61 73 65 20 74 69 6d 65 20 77 69 6c 6c 20 | r.requirements..Lease.time.will. |
| 60aa0 | 62 65 20 6c 65 66 74 20 61 74 20 74 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 77 68 69 | be.left.at.the.default.value.whi |
| 60ac0 | 63 68 20 69 73 20 32 34 20 68 6f 75 72 73 00 4c 65 61 73 65 20 74 69 6d 65 6f 75 74 20 69 6e 20 | ch.is.24.hours.Lease.timeout.in. |
| 60ae0 | 73 65 63 6f 6e 64 73 20 28 64 65 66 61 75 6c 74 3a 20 38 36 34 30 30 29 00 4c 65 67 61 63 79 20 | seconds.(default:.86400).Legacy. |
| 60b00 | 46 69 72 65 77 61 6c 6c 00 4c 65 74 20 53 4e 4d 50 20 64 61 65 6d 6f 6e 20 6c 69 73 74 65 6e 20 | Firewall.Let.SNMP.daemon.listen. |
| 60b20 | 6f 6e 6c 79 20 6f 6e 20 49 50 20 61 64 64 72 65 73 73 20 31 39 32 2e 30 2e 32 2e 31 00 4c 65 74 | only.on.IP.address.192.0.2.1.Let |
| 60b40 | 27 73 20 61 73 73 75 6d 65 20 50 43 34 20 6f 6e 20 4c 65 61 66 32 20 77 61 6e 74 73 20 74 6f 20 | 's.assume.PC4.on.Leaf2.wants.to. |
| 60b60 | 70 69 6e 67 20 50 43 35 20 6f 6e 20 4c 65 61 66 33 2e 20 49 6e 73 74 65 61 64 20 6f 66 20 73 65 | ping.PC5.on.Leaf3..Instead.of.se |
| 60b80 | 74 74 69 6e 67 20 4c 65 61 66 33 20 61 73 20 6f 75 72 20 72 65 6d 6f 74 65 20 65 6e 64 20 6d 61 | tting.Leaf3.as.our.remote.end.ma |
| 60ba0 | 6e 75 61 6c 6c 79 2c 20 4c 65 61 66 32 20 65 6e 63 61 70 73 75 6c 61 74 65 73 20 74 68 65 20 70 | nually,.Leaf2.encapsulates.the.p |
| 60bc0 | 61 63 6b 65 74 20 69 6e 74 6f 20 61 20 55 44 50 2d 70 61 63 6b 65 74 20 61 6e 64 20 73 65 6e 64 | acket.into.a.UDP-packet.and.send |
| 60be0 | 73 20 69 74 20 74 6f 20 69 74 73 20 64 65 73 69 67 6e 61 74 65 64 20 6d 75 6c 74 69 63 61 73 74 | s.it.to.its.designated.multicast |
| 60c00 | 2d 61 64 64 72 65 73 73 20 76 69 61 20 53 70 69 6e 65 31 2e 20 57 68 65 6e 20 53 70 69 6e 65 31 | -address.via.Spine1..When.Spine1 |
| 60c20 | 20 72 65 63 65 69 76 65 73 20 74 68 69 73 20 70 61 63 6b 65 74 20 69 74 20 66 6f 72 77 61 72 64 | .receives.this.packet.it.forward |
| 60c40 | 73 20 69 74 20 74 6f 20 61 6c 6c 20 6f 74 68 65 72 20 6c 65 61 76 65 73 20 77 68 6f 20 68 61 73 | s.it.to.all.other.leaves.who.has |
| 60c60 | 20 6a 6f 69 6e 65 64 20 74 68 65 20 73 61 6d 65 20 6d 75 6c 74 69 63 61 73 74 2d 67 72 6f 75 70 | .joined.the.same.multicast-group |
| 60c80 | 2c 20 69 6e 20 74 68 69 73 20 63 61 73 65 20 4c 65 61 66 33 2e 20 57 68 65 6e 20 4c 65 61 66 33 | ,.in.this.case.Leaf3..When.Leaf3 |
| 60ca0 | 20 72 65 63 65 69 76 65 73 20 74 68 65 20 70 61 63 6b 65 74 20 69 74 20 66 6f 72 77 61 72 64 73 | .receives.the.packet.it.forwards |
| 60cc0 | 20 69 74 2c 20 77 68 69 6c 65 20 61 74 20 74 68 65 20 73 61 6d 65 20 74 69 6d 65 20 6c 65 61 72 | .it,.while.at.the.same.time.lear |
| 60ce0 | 6e 69 6e 67 20 74 68 61 74 20 50 43 34 20 69 73 20 72 65 61 63 68 61 62 6c 65 20 62 65 68 69 6e | ning.that.PC4.is.reachable.behin |
| 60d00 | 64 20 4c 65 61 66 32 2c 20 62 65 63 61 75 73 65 20 74 68 65 20 65 6e 63 61 70 73 75 6c 61 74 65 | d.Leaf2,.because.the.encapsulate |
| 60d20 | 64 20 70 61 63 6b 65 74 20 68 61 64 20 4c 65 61 66 32 27 73 20 49 50 20 61 64 64 72 65 73 73 20 | d.packet.had.Leaf2's.IP.address. |
| 60d40 | 73 65 74 20 61 73 20 73 6f 75 72 63 65 20 49 50 2e 00 4c 65 74 27 73 20 61 73 73 75 6d 65 20 50 | set.as.source.IP..Let's.assume.P |
| 60d60 | 43 34 20 6f 6e 20 4c 65 61 66 32 20 77 61 6e 74 73 20 74 6f 20 70 69 6e 67 20 50 43 35 20 6f 6e | C4.on.Leaf2.wants.to.ping.PC5.on |
| 60d80 | 20 4c 65 61 66 33 2e 20 49 6e 73 74 65 61 64 20 6f 66 20 73 65 74 74 69 6e 67 20 4c 65 61 66 33 | .Leaf3..Instead.of.setting.Leaf3 |
| 60da0 | 20 61 73 20 6f 75 72 20 72 65 6d 6f 74 65 20 65 6e 64 20 6d 61 6e 75 61 6c 6c 79 2c 20 4c 65 61 | .as.our.remote.end.manually,.Lea |
| 60dc0 | 66 32 20 65 6e 63 61 70 73 75 6c 61 74 65 73 20 74 68 65 20 70 61 63 6b 65 74 20 69 6e 74 6f 20 | f2.encapsulates.the.packet.into. |
| 60de0 | 61 20 55 44 50 2d 70 61 63 6b 65 74 20 61 6e 64 20 73 65 6e 64 73 20 69 74 20 74 6f 20 69 74 73 | a.UDP-packet.and.sends.it.to.its |
| 60e00 | 27 20 64 65 73 69 67 6e 61 74 65 64 20 6d 75 6c 74 69 63 61 73 74 2d 61 64 64 72 65 73 73 20 76 | '.designated.multicast-address.v |
| 60e20 | 69 61 20 53 70 69 6e 65 31 2e 20 57 68 65 6e 20 53 70 69 6e 65 31 20 72 65 63 65 69 76 65 73 20 | ia.Spine1..When.Spine1.receives. |
| 60e40 | 74 68 69 73 20 70 61 63 6b 65 74 20 69 74 20 66 6f 72 77 61 72 64 73 20 69 74 20 74 6f 20 61 6c | this.packet.it.forwards.it.to.al |
| 60e60 | 6c 20 6f 74 68 65 72 20 6c 65 61 76 65 73 20 77 68 6f 20 68 61 73 20 6a 6f 69 6e 65 64 20 74 68 | l.other.leaves.who.has.joined.th |
| 60e80 | 65 20 73 61 6d 65 20 6d 75 6c 74 69 63 61 73 74 2d 67 72 6f 75 70 2c 20 69 6e 20 74 68 69 73 20 | e.same.multicast-group,.in.this. |
| 60ea0 | 63 61 73 65 20 4c 65 61 66 33 2e 20 57 68 65 6e 20 4c 65 61 66 33 20 72 65 63 65 69 76 65 73 20 | case.Leaf3..When.Leaf3.receives. |
| 60ec0 | 74 68 65 20 70 61 63 6b 65 74 20 69 74 20 66 6f 72 77 61 72 64 73 20 69 74 2c 20 77 68 69 6c 65 | the.packet.it.forwards.it,.while |
| 60ee0 | 20 61 74 20 74 68 65 20 73 61 6d 65 20 74 69 6d 65 20 6c 65 61 72 6e 69 6e 67 20 74 68 61 74 20 | .at.the.same.time.learning.that. |
| 60f00 | 50 43 34 20 69 73 20 72 65 61 63 68 61 62 6c 65 20 62 65 68 69 6e 64 20 4c 65 61 66 32 2c 20 62 | PC4.is.reachable.behind.Leaf2,.b |
| 60f20 | 65 63 61 75 73 65 20 74 68 65 20 65 6e 63 61 70 73 75 6c 61 74 65 64 20 70 61 63 6b 65 74 20 68 | ecause.the.encapsulated.packet.h |
| 60f40 | 61 64 20 4c 65 61 66 32 27 73 20 49 50 20 61 64 64 72 65 73 73 20 73 65 74 20 61 73 20 73 6f 75 | ad.Leaf2's.IP.address.set.as.sou |
| 60f60 | 72 63 65 20 49 50 2e 00 4c 65 74 27 73 20 61 73 73 75 6d 65 20 77 65 20 68 61 76 65 20 74 77 6f | rce.IP..Let's.assume.we.have.two |
| 60f80 | 20 44 48 43 50 20 57 41 4e 20 69 6e 74 65 72 66 61 63 65 73 20 61 6e 64 20 6f 6e 65 20 4c 41 4e | .DHCP.WAN.interfaces.and.one.LAN |
| 60fa0 | 20 28 65 74 68 32 29 3a 00 4c 65 74 27 73 20 62 75 69 6c 64 20 61 20 73 69 6d 70 6c 65 20 56 50 | .(eth2):.Let's.build.a.simple.VP |
| 60fc0 | 4e 20 62 65 74 77 65 65 6e 20 32 20 49 6e 74 65 6c c2 ae 20 51 41 54 20 72 65 61 64 79 20 64 65 | N.between.2.Intel...QAT.ready.de |
| 60fe0 | 76 69 63 65 73 2e 00 4c 65 74 27 73 20 65 78 70 61 6e 64 20 74 68 65 20 65 78 61 6d 70 6c 65 20 | vices..Let's.expand.the.example. |
| 61000 | 66 72 6f 6d 20 61 62 6f 76 65 20 61 6e 64 20 61 64 64 20 77 65 69 67 68 74 20 74 6f 20 74 68 65 | from.above.and.add.weight.to.the |
| 61020 | 20 69 6e 74 65 72 66 61 63 65 73 2e 20 54 68 65 20 62 61 6e 64 77 69 64 74 68 20 66 72 6f 6d 20 | .interfaces..The.bandwidth.from. |
| 61040 | 65 74 68 30 20 69 73 20 6c 61 72 67 65 72 20 74 68 61 6e 20 65 74 68 31 2e 20 50 65 72 20 64 65 | eth0.is.larger.than.eth1..Per.de |
| 61060 | 66 61 75 6c 74 2c 20 6f 75 74 62 6f 75 6e 64 20 74 72 61 66 66 69 63 20 69 73 20 64 69 73 74 72 | fault,.outbound.traffic.is.distr |
| 61080 | 69 62 75 74 65 64 20 72 61 6e 64 6f 6d 6c 79 20 61 63 72 6f 73 73 20 61 76 61 69 6c 61 62 6c 65 | ibuted.randomly.across.available |
| 610a0 | 20 69 6e 74 65 72 66 61 63 65 73 2e 20 57 65 69 67 68 74 73 20 63 61 6e 20 62 65 20 61 73 73 69 | .interfaces..Weights.can.be.assi |
| 610c0 | 67 6e 65 64 20 74 6f 20 69 6e 74 65 72 66 61 63 65 73 20 74 6f 20 69 6e 66 6c 75 65 6e 63 65 20 | gned.to.interfaces.to.influence. |
| 610e0 | 74 68 65 20 62 61 6c 61 6e 63 69 6e 67 2e 00 4c 65 74 73 20 61 73 73 75 6d 65 20 74 68 65 20 66 | the.balancing..Lets.assume.the.f |
| 61100 | 6f 6c 6c 6f 77 69 6e 67 20 74 6f 70 6f 6c 6f 67 79 3a 00 4c 65 76 65 6c 20 34 20 62 61 6c 61 6e | ollowing.topology:.Level.4.balan |
| 61120 | 63 69 6e 67 00 4c 69 66 65 74 69 6d 65 20 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 74 68 | cing.Lifetime.associated.with.th |
| 61140 | 65 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 72 20 69 6e 20 75 6e 69 74 73 20 6f 66 20 73 65 63 | e.default.router.in.units.of.sec |
| 61160 | 6f 6e 64 73 00 4c 69 66 65 74 69 6d 65 20 69 6e 20 64 61 79 73 3b 20 64 65 66 61 75 6c 74 20 69 | onds.Lifetime.in.days;.default.i |
| 61180 | 73 20 33 36 35 00 4c 69 66 65 74 69 6d 65 20 69 73 20 64 65 63 72 65 6d 65 6e 74 65 64 20 62 79 | s.365.Lifetime.is.decremented.by |
| 611a0 | 20 74 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 73 65 63 6f 6e 64 73 20 73 69 6e 63 65 20 74 68 65 | .the.number.of.seconds.since.the |
| 611c0 | 20 6c 61 73 74 20 52 41 20 2d 20 75 73 65 20 69 6e 20 63 6f 6e 6a 75 6e 63 74 69 6f 6e 20 77 69 | .last.RA.-.use.in.conjunction.wi |
| 611e0 | 74 68 20 61 20 44 48 43 50 76 36 2d 50 44 20 70 72 65 66 69 78 00 4c 69 6b 65 20 6f 6e 20 4d 69 | th.a.DHCPv6-PD.prefix.Like.on.Mi |
| 61200 | 63 72 6f 73 6f 66 74 20 57 69 6e 64 6f 77 73 2c 20 41 70 70 6c 65 20 69 4f 53 2f 69 50 61 64 4f | crosoft.Windows,.Apple.iOS/iPadO |
| 61220 | 53 20 6f 75 74 20 6f 66 20 74 68 65 20 62 6f 78 20 64 6f 65 73 20 6e 6f 74 20 65 78 70 6f 73 65 | S.out.of.the.box.does.not.expose |
| 61240 | 20 61 6c 6c 20 61 76 61 69 6c 61 62 6c 65 20 56 50 4e 20 6f 70 74 69 6f 6e 73 20 76 69 61 20 74 | .all.available.VPN.options.via.t |
| 61260 | 68 65 20 64 65 76 69 63 65 20 47 55 49 2e 00 4c 69 6d 69 74 20 61 6c 6c 6f 77 65 64 20 63 69 70 | he.device.GUI..Limit.allowed.cip |
| 61280 | 68 65 72 20 61 6c 67 6f 72 69 74 68 6d 73 20 75 73 65 64 20 64 75 72 69 6e 67 20 53 53 4c 2f 54 | her.algorithms.used.during.SSL/T |
| 612a0 | 4c 53 20 68 61 6e 64 73 68 61 6b 65 00 4c 69 6d 69 74 20 6c 6f 67 69 6e 73 20 74 6f 20 60 3c 6c | LS.handshake.Limit.logins.to.`<l |
| 612c0 | 69 6d 69 74 3e 60 20 70 65 72 20 65 76 65 72 79 20 60 60 72 61 74 65 2d 74 69 6d 65 60 60 20 73 | imit>`.per.every.``rate-time``.s |
| 612e0 | 65 63 6f 6e 64 73 2e 20 52 61 74 65 20 6c 69 6d 69 74 20 6d 75 73 74 20 62 65 20 62 65 74 77 65 | econds..Rate.limit.must.be.betwe |
| 61300 | 65 6e 20 31 20 61 6e 64 20 31 30 20 61 74 74 65 6d 70 74 73 2e 00 4c 69 6d 69 74 20 6c 6f 67 69 | en.1.and.10.attempts..Limit.logi |
| 61320 | 6e 73 20 74 6f 20 60 60 72 61 74 65 2d 6c 69 6d 69 74 60 60 20 61 74 74 65 6d 70 73 20 70 65 72 | ns.to.``rate-limit``.attemps.per |
| 61340 | 20 65 76 65 72 79 20 60 3c 73 65 63 6f 6e 64 73 3e 60 2e 20 52 61 74 65 20 74 69 6d 65 20 6d 75 | .every.`<seconds>`..Rate.time.mu |
| 61360 | 73 74 20 62 65 20 62 65 74 77 65 65 6e 20 31 35 20 61 6e 64 20 36 30 30 20 73 65 63 6f 6e 64 73 | st.be.between.15.and.600.seconds |
| 61380 | 2e 00 4c 69 6d 69 74 20 6d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 63 6f 6e 6e 65 63 | ..Limit.maximum.number.of.connec |
| 613a0 | 74 69 6f 6e 73 00 4c 69 6d 69 74 65 72 00 4c 69 6d 69 74 65 72 20 69 73 20 6f 6e 65 20 6f 66 20 | tions.Limiter.Limiter.is.one.of. |
| 613c0 | 74 68 6f 73 65 20 70 6f 6c 69 63 69 65 73 20 74 68 61 74 20 75 73 65 73 20 63 6c 61 73 73 65 73 | those.policies.that.uses.classes |
| 613e0 | 5f 20 28 49 6e 67 72 65 73 73 20 71 64 69 73 63 20 69 73 20 61 63 74 75 61 6c 6c 79 20 61 20 63 | _.(Ingress.qdisc.is.actually.a.c |
| 61400 | 6c 61 73 73 6c 65 73 73 20 70 6f 6c 69 63 79 20 62 75 74 20 66 69 6c 74 65 72 73 20 64 6f 20 77 | lassless.policy.but.filters.do.w |
| 61420 | 6f 72 6b 20 69 6e 20 69 74 29 2e 00 4c 69 6d 69 74 73 00 4c 69 6e 65 20 70 72 69 6e 74 65 72 20 | ork.in.it)..Limits.Line.printer. |
| 61440 | 73 75 62 73 79 73 74 65 6d 00 4c 69 6e 6b 20 4d 54 55 20 76 61 6c 75 65 20 70 6c 61 63 65 64 20 | subsystem.Link.MTU.value.placed. |
| 61460 | 69 6e 20 52 41 73 2c 20 65 78 63 6c 75 64 65 64 20 69 6e 20 52 41 73 20 69 66 20 75 6e 73 65 74 | in.RAs,.excluded.in.RAs.if.unset |
| 61480 | 00 4c 69 6e 6b 20 4d 54 55 20 76 61 6c 75 65 20 70 6c 61 63 65 64 20 69 6e 20 52 41 73 2c 20 65 | .Link.MTU.value.placed.in.RAs,.e |
| 614a0 | 78 6c 75 64 65 64 20 69 6e 20 52 41 73 20 69 66 20 75 6e 73 65 74 00 4c 69 6e 6b 20 61 67 67 72 | xluded.in.RAs.if.unset.Link.aggr |
| 614c0 | 65 67 61 74 69 6f 6e 00 4c 69 6e 75 78 20 6e 65 74 66 69 6c 74 65 72 20 77 69 6c 6c 20 6e 6f 74 | egation.Linux.netfilter.will.not |
| 614e0 | 20 4e 41 54 20 74 72 61 66 66 69 63 20 6d 61 72 6b 65 64 20 61 73 20 49 4e 56 41 4c 49 44 2e 20 | .NAT.traffic.marked.as.INVALID.. |
| 61500 | 54 68 69 73 20 6f 66 74 65 6e 20 63 6f 6e 66 75 73 65 73 20 70 65 6f 70 6c 65 20 69 6e 74 6f 20 | This.often.confuses.people.into. |
| 61520 | 74 68 69 6e 6b 69 6e 67 20 74 68 61 74 20 4c 69 6e 75 78 20 28 6f 72 20 73 70 65 63 69 66 69 63 | thinking.that.Linux.(or.specific |
| 61540 | 61 6c 6c 79 20 56 79 4f 53 29 20 68 61 73 20 61 20 62 72 6f 6b 65 6e 20 4e 41 54 20 69 6d 70 6c | ally.VyOS).has.a.broken.NAT.impl |
| 61560 | 65 6d 65 6e 74 61 74 69 6f 6e 20 62 65 63 61 75 73 65 20 6e 6f 6e 2d 4e 41 54 65 64 20 74 72 61 | ementation.because.non-NATed.tra |
| 61580 | 66 66 69 63 20 69 73 20 73 65 65 6e 20 6c 65 61 76 69 6e 67 20 61 6e 20 65 78 74 65 72 6e 61 6c | ffic.is.seen.leaving.an.external |
| 615a0 | 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 69 73 20 69 73 20 61 63 74 75 61 6c 6c 79 20 77 6f 72 | .interface..This.is.actually.wor |
| 615c0 | 6b 69 6e 67 20 61 73 20 69 6e 74 65 6e 64 65 64 2c 20 61 6e 64 20 61 20 70 61 63 6b 65 74 20 63 | king.as.intended,.and.a.packet.c |
| 615e0 | 61 70 74 75 72 65 20 6f 66 20 74 68 65 20 22 6c 65 61 6b 79 22 20 74 72 61 66 66 69 63 20 73 68 | apture.of.the."leaky".traffic.sh |
| 61600 | 6f 75 6c 64 20 72 65 76 65 61 6c 20 74 68 61 74 20 74 68 65 20 74 72 61 66 66 69 63 20 69 73 20 | ould.reveal.that.the.traffic.is. |
| 61620 | 65 69 74 68 65 72 20 61 6e 20 61 64 64 69 74 69 6f 6e 61 6c 20 54 43 50 20 22 52 53 54 22 2c 20 | either.an.additional.TCP."RST",. |
| 61640 | 22 46 49 4e 2c 41 43 4b 22 2c 20 6f 72 20 22 52 53 54 2c 41 43 4b 22 20 73 65 6e 74 20 62 79 20 | "FIN,ACK",.or."RST,ACK".sent.by. |
| 61660 | 63 6c 69 65 6e 74 20 73 79 73 74 65 6d 73 20 61 66 74 65 72 20 4c 69 6e 75 78 20 6e 65 74 66 69 | client.systems.after.Linux.netfi |
| 61680 | 6c 74 65 72 20 63 6f 6e 73 69 64 65 72 73 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 63 6c | lter.considers.the.connection.cl |
| 616a0 | 6f 73 65 64 2e 20 54 68 65 20 6d 6f 73 74 20 63 6f 6d 6d 6f 6e 20 69 73 20 74 68 65 20 61 64 64 | osed..The.most.common.is.the.add |
| 616c0 | 69 74 69 6f 6e 61 6c 20 54 43 50 20 52 53 54 20 73 6f 6d 65 20 68 6f 73 74 20 69 6d 70 6c 65 6d | itional.TCP.RST.some.host.implem |
| 616e0 | 65 6e 74 61 74 69 6f 6e 73 20 73 65 6e 64 20 61 66 74 65 72 20 74 65 72 6d 69 6e 61 74 69 6e 67 | entations.send.after.terminating |
| 61700 | 20 61 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 28 77 68 69 63 68 20 69 73 20 69 6d 70 6c 65 6d 65 6e | .a.connection.(which.is.implemen |
| 61720 | 74 61 74 69 6f 6e 2d 73 70 65 63 69 66 69 63 29 2e 00 4c 69 73 74 20 61 6c 6c 20 4d 41 43 73 65 | tation-specific)..List.all.MACse |
| 61740 | 63 20 69 6e 74 65 72 66 61 63 65 73 2e 00 4c 69 73 74 20 6f 66 20 66 61 63 69 6c 69 74 69 65 73 | c.interfaces..List.of.facilities |
| 61760 | 20 75 73 65 64 20 62 79 20 73 79 73 6c 6f 67 2e 20 4d 6f 73 74 20 66 61 63 69 6c 69 74 69 65 73 | .used.by.syslog..Most.facilities |
| 61780 | 20 6e 61 6d 65 73 20 61 72 65 20 73 65 6c 66 20 65 78 70 6c 61 6e 61 74 6f 72 79 2e 20 46 61 63 | .names.are.self.explanatory..Fac |
| 617a0 | 69 6c 69 74 69 65 73 20 6c 6f 63 61 6c 30 20 2d 20 6c 6f 63 61 6c 37 20 63 6f 6d 6d 6f 6e 20 75 | ilities.local0.-.local7.common.u |
| 617c0 | 73 61 67 65 20 69 73 20 66 2e 65 2e 20 61 73 20 6e 65 74 77 6f 72 6b 20 6c 6f 67 73 20 66 61 63 | sage.is.f.e..as.network.logs.fac |
| 617e0 | 69 6c 69 74 69 65 73 20 66 6f 72 20 6e 6f 64 65 73 20 61 6e 64 20 6e 65 74 77 6f 72 6b 20 65 71 | ilities.for.nodes.and.network.eq |
| 61800 | 75 69 70 6d 65 6e 74 2e 20 47 65 6e 65 72 61 6c 6c 79 20 69 74 20 64 65 70 65 6e 64 73 20 6f 6e | uipment..Generally.it.depends.on |
| 61820 | 20 74 68 65 20 73 69 74 75 61 74 69 6f 6e 20 68 6f 77 20 74 6f 20 63 6c 61 73 73 69 66 79 20 6c | .the.situation.how.to.classify.l |
| 61840 | 6f 67 73 20 61 6e 64 20 70 75 74 20 74 68 65 6d 20 74 6f 20 66 61 63 69 6c 69 74 69 65 73 2e 20 | ogs.and.put.them.to.facilities.. |
| 61860 | 53 65 65 20 66 61 63 69 6c 69 74 69 65 73 20 6d 6f 72 65 20 61 73 20 61 20 74 6f 6f 6c 20 72 61 | See.facilities.more.as.a.tool.ra |
| 61880 | 74 68 65 72 20 74 68 61 6e 20 61 20 64 69 72 65 63 74 69 76 65 20 74 6f 20 66 6f 6c 6c 6f 77 2e | ther.than.a.directive.to.follow. |
| 618a0 | 00 4c 69 73 74 20 6f 66 20 6e 65 74 77 6f 72 6b 73 20 6f 72 20 63 6c 69 65 6e 74 20 61 64 64 72 | .List.of.networks.or.client.addr |
| 618c0 | 65 73 73 65 73 20 70 65 72 6d 69 74 74 65 64 20 74 6f 20 63 6f 6e 74 61 63 74 20 74 68 69 73 20 | esses.permitted.to.contact.this. |
| 618e0 | 4e 54 50 20 73 65 72 76 65 72 2e 00 4c 69 73 74 20 6f 66 20 73 75 70 70 6f 72 74 65 64 20 4d 41 | NTP.server..List.of.supported.MA |
| 61900 | 43 73 3a 20 60 60 68 6d 61 63 2d 6d 64 35 60 60 2c 20 60 60 68 6d 61 63 2d 6d 64 35 2d 39 36 60 | Cs:.``hmac-md5``,.``hmac-md5-96` |
| 61920 | 60 2c 20 60 60 68 6d 61 63 2d 72 69 70 65 6d 64 31 36 30 60 60 2c 20 60 60 68 6d 61 63 2d 73 68 | `,.``hmac-ripemd160``,.``hmac-sh |
| 61940 | 61 31 60 60 2c 20 60 60 68 6d 61 63 2d 73 68 61 31 2d 39 36 60 60 2c 20 60 60 68 6d 61 63 2d 73 | a1``,.``hmac-sha1-96``,.``hmac-s |
| 61960 | 68 61 32 2d 32 35 36 60 60 2c 20 60 60 68 6d 61 63 2d 73 68 61 32 2d 35 31 32 60 60 2c 20 60 60 | ha2-256``,.``hmac-sha2-512``,.`` |
| 61980 | 75 6d 61 63 2d 36 34 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 75 6d 61 63 2d 31 32 | umac-64@openssh.com``,.``umac-12 |
| 619a0 | 38 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 68 6d 61 63 2d 6d 64 35 2d 65 74 6d 40 | 8@openssh.com``,.``hmac-md5-etm@ |
| 619c0 | 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 68 6d 61 63 2d 6d 64 35 2d 39 36 2d 65 74 6d | openssh.com``,.``hmac-md5-96-etm |
| 619e0 | 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 68 6d 61 63 2d 72 69 70 65 6d 64 31 36 30 | @openssh.com``,.``hmac-ripemd160 |
| 61a00 | 2d 65 74 6d 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 68 6d 61 63 2d 73 68 61 31 2d | -etm@openssh.com``,.``hmac-sha1- |
| 61a20 | 65 74 6d 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 68 6d 61 63 2d 73 68 61 31 2d 39 | etm@openssh.com``,.``hmac-sha1-9 |
| 61a40 | 36 2d 65 74 6d 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 68 6d 61 63 2d 73 68 61 32 | 6-etm@openssh.com``,.``hmac-sha2 |
| 61a60 | 2d 32 35 36 2d 65 74 6d 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 68 6d 61 63 2d 73 | -256-etm@openssh.com``,.``hmac-s |
| 61a80 | 68 61 32 2d 35 31 32 2d 65 74 6d 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 75 6d 61 | ha2-512-etm@openssh.com``,.``uma |
| 61aa0 | 63 2d 36 34 2d 65 74 6d 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 75 6d 61 63 2d 31 | c-64-etm@openssh.com``,.``umac-1 |
| 61ac0 | 32 38 2d 65 74 6d 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 00 4c 69 73 74 20 6f 66 20 73 75 70 | 28-etm@openssh.com``.List.of.sup |
| 61ae0 | 70 6f 72 74 65 64 20 61 6c 67 6f 72 69 74 68 6d 73 3a 20 60 60 64 69 66 66 69 65 2d 68 65 6c 6c | ported.algorithms:.``diffie-hell |
| 61b00 | 6d 61 6e 2d 67 72 6f 75 70 31 2d 73 68 61 31 60 60 2c 20 60 60 64 69 66 66 69 65 2d 68 65 6c 6c | man-group1-sha1``,.``diffie-hell |
| 61b20 | 6d 61 6e 2d 67 72 6f 75 70 31 34 2d 73 68 61 31 60 60 2c 20 60 60 64 69 66 66 69 65 2d 68 65 6c | man-group14-sha1``,.``diffie-hel |
| 61b40 | 6c 6d 61 6e 2d 67 72 6f 75 70 31 34 2d 73 68 61 32 35 36 60 60 2c 20 60 60 64 69 66 66 69 65 2d | lman-group14-sha256``,.``diffie- |
| 61b60 | 68 65 6c 6c 6d 61 6e 2d 67 72 6f 75 70 31 36 2d 73 68 61 35 31 32 60 60 2c 20 60 60 64 69 66 66 | hellman-group16-sha512``,.``diff |
| 61b80 | 69 65 2d 68 65 6c 6c 6d 61 6e 2d 67 72 6f 75 70 31 38 2d 73 68 61 35 31 32 60 60 2c 20 60 60 64 | ie-hellman-group18-sha512``,.``d |
| 61ba0 | 69 66 66 69 65 2d 68 65 6c 6c 6d 61 6e 2d 67 72 6f 75 70 2d 65 78 63 68 61 6e 67 65 2d 73 68 61 | iffie-hellman-group-exchange-sha |
| 61bc0 | 31 60 60 2c 20 60 60 64 69 66 66 69 65 2d 68 65 6c 6c 6d 61 6e 2d 67 72 6f 75 70 2d 65 78 63 68 | 1``,.``diffie-hellman-group-exch |
| 61be0 | 61 6e 67 65 2d 73 68 61 32 35 36 60 60 2c 20 60 60 65 63 64 68 2d 73 68 61 32 2d 6e 69 73 74 70 | ange-sha256``,.``ecdh-sha2-nistp |
| 61c00 | 32 35 36 60 60 2c 20 60 60 65 63 64 68 2d 73 68 61 32 2d 6e 69 73 74 70 33 38 34 60 60 2c 20 60 | 256``,.``ecdh-sha2-nistp384``,.` |
| 61c20 | 60 65 63 64 68 2d 73 68 61 32 2d 6e 69 73 74 70 35 32 31 60 60 2c 20 60 60 63 75 72 76 65 32 35 | `ecdh-sha2-nistp521``,.``curve25 |
| 61c40 | 35 31 39 2d 73 68 61 32 35 36 60 60 20 61 6e 64 20 60 60 63 75 72 76 65 32 35 35 31 39 2d 73 68 | 519-sha256``.and.``curve25519-sh |
| 61c60 | 61 32 35 36 40 6c 69 62 73 73 68 2e 6f 72 67 60 60 2e 00 4c 69 73 74 20 6f 66 20 73 75 70 70 6f | a256@libssh.org``..List.of.suppo |
| 61c80 | 72 74 65 64 20 61 6c 67 6f 72 69 74 68 6d 73 3a 20 60 60 73 73 68 2d 65 64 32 35 35 31 39 60 60 | rted.algorithms:.``ssh-ed25519`` |
| 61ca0 | 2c 20 60 60 73 73 68 2d 65 64 32 35 35 31 39 2d 63 65 72 74 2d 76 30 31 40 6f 70 65 6e 73 73 68 | ,.``ssh-ed25519-cert-v01@openssh |
| 61cc0 | 2e 63 6f 6d 60 60 2c 20 60 60 73 6b 2d 73 73 68 2d 65 64 32 35 35 31 39 40 6f 70 65 6e 73 73 68 | .com``,.``sk-ssh-ed25519@openssh |
| 61ce0 | 2e 63 6f 6d 60 60 2c 20 60 60 73 6b 2d 73 73 68 2d 65 64 32 35 35 31 39 2d 63 65 72 74 2d 76 30 | .com``,.``sk-ssh-ed25519-cert-v0 |
| 61d00 | 31 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 65 63 64 73 61 2d 73 68 61 32 2d 6e 69 | 1@openssh.com``,.``ecdsa-sha2-ni |
| 61d20 | 73 74 70 32 35 36 60 60 2c 20 60 60 65 63 64 73 61 2d 73 68 61 32 2d 6e 69 73 74 70 32 35 36 2d | stp256``,.``ecdsa-sha2-nistp256- |
| 61d40 | 63 65 72 74 2d 76 30 31 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 65 63 64 73 61 2d | cert-v01@openssh.com``,.``ecdsa- |
| 61d60 | 73 68 61 32 2d 6e 69 73 74 70 33 38 34 60 60 2c 20 60 60 65 63 64 73 61 2d 73 68 61 32 2d 6e 69 | sha2-nistp384``,.``ecdsa-sha2-ni |
| 61d80 | 73 74 70 33 38 34 2d 63 65 72 74 2d 76 30 31 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 | stp384-cert-v01@openssh.com``,.` |
| 61da0 | 60 65 63 64 73 61 2d 73 68 61 32 2d 6e 69 73 74 70 35 32 31 60 60 2c 20 60 60 65 63 64 73 61 2d | `ecdsa-sha2-nistp521``,.``ecdsa- |
| 61dc0 | 73 68 61 32 2d 6e 69 73 74 70 35 32 31 2d 63 65 72 74 2d 76 30 31 40 6f 70 65 6e 73 73 68 2e 63 | sha2-nistp521-cert-v01@openssh.c |
| 61de0 | 6f 6d 60 60 2c 20 60 60 73 6b 2d 65 63 64 73 61 2d 73 68 61 32 2d 6e 69 73 74 70 32 35 36 40 6f | om``,.``sk-ecdsa-sha2-nistp256@o |
| 61e00 | 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 73 6b 2d 65 63 64 73 61 2d 73 68 61 32 2d 6e 69 | penssh.com``,.``sk-ecdsa-sha2-ni |
| 61e20 | 73 74 70 32 35 36 2d 63 65 72 74 2d 76 30 31 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 | stp256-cert-v01@openssh.com``,.` |
| 61e40 | 60 77 65 62 61 75 74 68 6e 2d 73 6b 2d 65 63 64 73 61 2d 73 68 61 32 2d 6e 69 73 74 70 32 35 36 | `webauthn-sk-ecdsa-sha2-nistp256 |
| 61e60 | 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 73 73 68 2d 64 73 73 60 60 2c 20 60 60 73 | @openssh.com``,.``ssh-dss``,.``s |
| 61e80 | 73 68 2d 64 73 73 2d 63 65 72 74 2d 76 30 31 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 | sh-dss-cert-v01@openssh.com``,.` |
| 61ea0 | 60 73 73 68 2d 72 73 61 60 60 2c 20 60 60 73 73 68 2d 72 73 61 2d 63 65 72 74 2d 76 30 31 40 6f | `ssh-rsa``,.``ssh-rsa-cert-v01@o |
| 61ec0 | 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 72 73 61 2d 73 68 61 32 2d 32 35 36 60 60 2c 20 | penssh.com``,.``rsa-sha2-256``,. |
| 61ee0 | 60 60 72 73 61 2d 73 68 61 32 2d 32 35 36 2d 63 65 72 74 2d 76 30 31 40 6f 70 65 6e 73 73 68 2e | ``rsa-sha2-256-cert-v01@openssh. |
| 61f00 | 63 6f 6d 60 60 2c 20 60 60 72 73 61 2d 73 68 61 32 2d 35 31 32 60 60 2c 20 60 60 72 73 61 2d 73 | com``,.``rsa-sha2-512``,.``rsa-s |
| 61f20 | 68 61 32 2d 35 31 32 2d 63 65 72 74 2d 76 30 31 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 00 4c | ha2-512-cert-v01@openssh.com``.L |
| 61f40 | 69 73 74 20 6f 66 20 73 75 70 70 6f 72 74 65 64 20 63 69 70 68 65 72 73 3a 20 60 60 33 64 65 73 | ist.of.supported.ciphers:.``3des |
| 61f60 | 2d 63 62 63 60 60 2c 20 60 60 61 65 73 31 32 38 2d 63 62 63 60 60 2c 20 60 60 61 65 73 31 39 32 | -cbc``,.``aes128-cbc``,.``aes192 |
| 61f80 | 2d 63 62 63 60 60 2c 20 60 60 61 65 73 32 35 36 2d 63 62 63 60 60 2c 20 60 60 61 65 73 31 32 38 | -cbc``,.``aes256-cbc``,.``aes128 |
| 61fa0 | 2d 63 74 72 60 60 2c 20 60 60 61 65 73 31 39 32 2d 63 74 72 60 60 2c 20 60 60 61 65 73 32 35 36 | -ctr``,.``aes192-ctr``,.``aes256 |
| 61fc0 | 2d 63 74 72 60 60 2c 20 60 60 61 72 63 66 6f 75 72 31 32 38 60 60 2c 20 60 60 61 72 63 66 6f 75 | -ctr``,.``arcfour128``,.``arcfou |
| 61fe0 | 72 32 35 36 60 60 2c 20 60 60 61 72 63 66 6f 75 72 60 60 2c 20 60 60 62 6c 6f 77 66 69 73 68 2d | r256``,.``arcfour``,.``blowfish- |
| 62000 | 63 62 63 60 60 2c 20 60 60 63 61 73 74 31 32 38 2d 63 62 63 60 60 00 4c 69 73 74 20 6f 66 20 77 | cbc``,.``cast128-cbc``.List.of.w |
| 62020 | 65 6c 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d 75 6e 69 74 69 65 73 00 4c 69 73 74 65 6e 20 66 6f 72 | ell-known.communities.Listen.for |
| 62040 | 20 44 48 43 50 20 72 65 71 75 65 73 74 73 20 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 60 60 65 74 | .DHCP.requests.on.interface.``et |
| 62060 | 68 31 60 60 2e 00 4c 69 73 74 73 20 56 52 46 73 20 74 68 61 74 20 68 61 76 65 20 62 65 65 6e 20 | h1``..Lists.VRFs.that.have.been. |
| 62080 | 63 72 65 61 74 65 64 00 4c 6f 61 64 20 42 61 6c 61 6e 63 65 00 4c 6f 61 64 20 42 61 6c 61 6e 63 | created.Load.Balance.Load.Balanc |
| 620a0 | 69 6e 67 00 4c 6f 61 64 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 20 69 6d 61 67 65 20 69 6e 20 | ing.Load.the.container.image.in. |
| 620c0 | 6f 70 2d 6d 6f 64 65 2e 00 4c 6f 61 64 2d 62 61 6c 61 6e 63 69 6e 67 00 4c 6f 61 64 2d 62 61 6c | op-mode..Load-balancing.Load-bal |
| 620e0 | 61 6e 63 69 6e 67 20 61 6c 67 6f 72 69 74 68 6d 73 20 74 6f 20 62 65 20 75 73 65 64 20 66 6f 72 | ancing.algorithms.to.be.used.for |
| 62100 | 20 64 69 73 74 72 69 62 75 74 65 64 20 72 65 71 75 65 73 74 73 20 61 6d 6f 6e 67 20 74 68 65 20 | .distributed.requests.among.the. |
| 62120 | 61 76 61 69 6c 61 62 6c 65 20 73 65 72 76 65 72 73 00 4c 6f 61 64 2d 62 61 6c 61 6e 63 69 6e 67 | available.servers.Load-balancing |
| 62140 | 20 61 6c 67 6f 72 69 74 68 6d 73 20 74 6f 20 62 65 20 75 73 65 64 20 66 6f 72 20 64 69 73 74 72 | .algorithms.to.be.used.for.distr |
| 62160 | 69 62 75 74 69 6e 64 20 72 65 71 75 65 73 74 73 20 61 6d 6f 6e 67 20 74 68 65 20 76 61 69 6c 61 | ibutind.requests.among.the.vaila |
| 62180 | 62 6c 65 20 73 65 72 76 65 72 73 00 4c 6f 61 64 2d 62 61 6c 61 6e 63 69 6e 67 20 73 63 68 65 64 | ble.servers.Load-balancing.sched |
| 621a0 | 75 6c 65 20 61 6c 67 6f 72 69 74 68 6d 3a 00 4c 6f 63 61 6c 00 4c 6f 63 61 6c 20 43 6f 6e 66 69 | ule.algorithm:.Local.Local.Confi |
| 621c0 | 67 75 72 61 74 69 6f 6e 20 2d 20 41 6e 6e 6f 74 61 74 65 64 3a 00 4c 6f 63 61 6c 20 43 6f 6e 66 | guration.-.Annotated:.Local.Conf |
| 621e0 | 69 67 75 72 61 74 69 6f 6e 3a 00 4c 6f 63 61 6c 20 49 50 20 60 3c 61 64 64 72 65 73 73 3e 60 20 | iguration:.Local.IP.`<address>`. |
| 62200 | 75 73 65 64 20 77 68 65 6e 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6e 67 20 74 6f 20 74 68 65 20 48 | used.when.communicating.to.the.H |
| 62220 | 41 20 70 65 65 72 2e 00 4c 6f 63 61 6c 20 49 50 20 60 3c 61 64 64 72 65 73 73 3e 60 20 75 73 65 | A.peer..Local.IP.`<address>`.use |
| 62240 | 64 20 77 68 65 6e 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6e 67 20 74 6f 20 74 68 65 20 66 61 69 6c | d.when.communicating.to.the.fail |
| 62260 | 6f 76 65 72 20 70 65 65 72 2e 00 4c 6f 63 61 6c 20 49 50 20 61 64 64 72 65 73 73 65 73 20 74 6f | over.peer..Local.IP.addresses.to |
| 62280 | 20 6c 69 73 74 65 6e 20 6f 6e 00 4c 6f 63 61 6c 20 49 50 76 34 20 61 64 64 72 65 73 73 65 73 20 | .listen.on.Local.IPv4.addresses. |
| 622a0 | 66 6f 72 20 73 65 72 76 69 63 65 20 74 6f 20 6c 69 73 74 65 6e 20 6f 6e 2e 00 4c 6f 63 61 6c 20 | for.service.to.listen.on..Local. |
| 622c0 | 52 6f 75 74 65 20 49 50 76 34 00 4c 6f 63 61 6c 20 52 6f 75 74 65 20 49 50 76 36 00 4c 6f 63 61 | Route.IPv4.Local.Route.IPv6.Loca |
| 622e0 | 6c 20 52 6f 75 74 65 20 50 6f 6c 69 63 79 00 4c 6f 63 61 6c 20 55 73 65 72 20 41 63 63 6f 75 6e | l.Route.Policy.Local.User.Accoun |
| 62300 | 74 00 4c 6f 63 61 6c 20 70 61 74 68 20 74 68 61 74 20 69 6e 63 6c 75 64 65 73 20 74 68 65 20 6b | t.Local.path.that.includes.the.k |
| 62320 | 6e 6f 77 6e 20 68 6f 73 74 73 20 66 69 6c 65 2e 00 4c 6f 63 61 6c 20 70 61 74 68 20 74 68 61 74 | nown.hosts.file..Local.path.that |
| 62340 | 20 69 6e 63 6c 75 64 65 73 20 74 68 65 20 70 72 69 76 61 74 65 20 6b 65 79 20 66 69 6c 65 20 6f | .includes.the.private.key.file.o |
| 62360 | 66 20 74 68 65 20 72 6f 75 74 65 72 2e 00 4c 6f 63 61 6c 20 70 61 74 68 20 74 68 61 74 20 69 6e | f.the.router..Local.path.that.in |
| 62380 | 63 6c 75 64 65 73 20 74 68 65 20 70 75 62 6c 69 63 20 6b 65 79 20 66 69 6c 65 20 6f 66 20 74 68 | cludes.the.public.key.file.of.th |
| 623a0 | 65 20 72 6f 75 74 65 72 2e 00 4c 6f 63 61 6c 20 72 6f 75 74 65 00 4c 6f 63 61 6c 6c 79 20 63 6f | e.router..Local.route.Locally.co |
| 623c0 | 6e 6e 65 63 74 20 74 6f 20 73 65 72 69 61 6c 20 70 6f 72 74 20 69 64 65 6e 74 69 66 69 65 64 20 | nnect.to.serial.port.identified. |
| 623e0 | 62 79 20 60 3c 64 65 76 69 63 65 3e 60 2e 00 4c 6f 63 61 6c 6c 79 20 73 69 67 6e 69 66 69 63 61 | by.`<device>`..Locally.significa |
| 62400 | 6e 74 20 61 64 6d 69 6e 69 73 74 72 61 74 69 76 65 20 64 69 73 74 61 6e 63 65 2e 00 4c 6f 67 20 | nt.administrative.distance..Log. |
| 62420 | 61 6c 65 72 74 00 4c 6f 67 20 61 75 64 69 74 00 4c 6f 67 20 63 68 61 6e 67 65 73 20 69 6e 20 61 | alert.Log.audit.Log.changes.in.a |
| 62440 | 64 6a 61 63 65 6e 63 79 20 73 74 61 74 65 2e 00 4c 6f 67 20 65 76 65 72 79 74 68 69 6e 67 00 4c | djacency.state..Log.everything.L |
| 62460 | 6f 67 20 6d 65 73 73 61 67 65 73 20 66 72 6f 6d 20 61 20 73 70 65 63 69 66 69 65 64 20 69 6d 61 | og.messages.from.a.specified.ima |
| 62480 | 67 65 20 63 61 6e 20 62 65 20 64 69 73 70 6c 61 79 65 64 20 6f 6e 20 74 68 65 20 63 6f 6e 73 6f | ge.can.be.displayed.on.the.conso |
| 624a0 | 6c 65 2e 20 44 65 74 61 69 6c 73 20 6f 66 20 61 6c 6c 6f 77 65 64 20 70 61 72 61 6d 65 74 65 72 | le..Details.of.allowed.parameter |
| 624c0 | 73 3a 00 4c 6f 67 20 73 79 73 6c 6f 67 20 6d 65 73 73 61 67 65 73 20 74 6f 20 60 60 2f 64 65 76 | s:.Log.syslog.messages.to.``/dev |
| 624e0 | 2f 63 6f 6e 73 6f 6c 65 60 60 2c 20 66 6f 72 20 61 6e 20 65 78 70 6c 61 6e 61 74 69 6f 6e 20 6f | /console``,.for.an.explanation.o |
| 62500 | 6e 20 3a 72 65 66 3a 60 73 79 73 6c 6f 67 5f 66 61 63 69 6c 69 74 69 65 73 60 20 6b 65 79 77 6f | n.:ref:`syslog_facilities`.keywo |
| 62520 | 72 64 73 20 61 6e 64 20 3a 72 65 66 3a 60 73 79 73 6c 6f 67 5f 73 65 76 65 72 69 74 79 5f 6c 65 | rds.and.:ref:`syslog_severity_le |
| 62540 | 76 65 6c 60 20 6b 65 79 77 6f 72 64 73 20 73 65 65 20 74 61 62 6c 65 73 20 62 65 6c 6f 77 2e 00 | vel`.keywords.see.tables.below.. |
| 62560 | 4c 6f 67 20 73 79 73 6c 6f 67 20 6d 65 73 73 61 67 65 73 20 74 6f 20 66 69 6c 65 20 73 70 65 63 | Log.syslog.messages.to.file.spec |
| 62580 | 69 66 69 65 64 20 76 69 61 20 60 3c 66 69 6c 65 6e 61 6d 65 3e 60 2c 20 66 6f 72 20 61 6e 20 65 | ified.via.`<filename>`,.for.an.e |
| 625a0 | 78 70 6c 61 6e 61 74 69 6f 6e 20 6f 6e 20 3a 72 65 66 3a 60 73 79 73 6c 6f 67 5f 66 61 63 69 6c | xplanation.on.:ref:`syslog_facil |
| 625c0 | 69 74 69 65 73 60 20 6b 65 79 77 6f 72 64 73 20 61 6e 64 20 3a 72 65 66 3a 60 73 79 73 6c 6f 67 | ities`.keywords.and.:ref:`syslog |
| 625e0 | 5f 73 65 76 65 72 69 74 79 5f 6c 65 76 65 6c 60 20 6b 65 79 77 6f 72 64 73 20 73 65 65 20 74 61 | _severity_level`.keywords.see.ta |
| 62600 | 62 6c 65 73 20 62 65 6c 6f 77 2e 00 4c 6f 67 20 73 79 73 6c 6f 67 20 6d 65 73 73 61 67 65 73 20 | bles.below..Log.syslog.messages. |
| 62620 | 74 6f 20 72 65 6d 6f 74 65 20 68 6f 73 74 20 73 70 65 63 69 66 69 65 64 20 62 79 20 60 3c 61 64 | to.remote.host.specified.by.`<ad |
| 62640 | 64 72 65 73 73 3e 60 2e 20 54 68 65 20 61 64 64 72 65 73 73 20 63 61 6e 20 62 65 20 73 70 65 63 | dress>`..The.address.can.be.spec |
| 62660 | 69 66 69 65 64 20 62 79 20 65 69 74 68 65 72 20 46 51 44 4e 20 6f 72 20 49 50 20 61 64 64 72 65 | ified.by.either.FQDN.or.IP.addre |
| 62680 | 73 73 2e 20 46 6f 72 20 61 6e 20 65 78 70 6c 61 6e 61 74 69 6f 6e 20 6f 6e 20 3a 72 65 66 3a 60 | ss..For.an.explanation.on.:ref:` |
| 626a0 | 73 79 73 6c 6f 67 5f 66 61 63 69 6c 69 74 69 65 73 60 20 6b 65 79 77 6f 72 64 73 20 61 6e 64 20 | syslog_facilities`.keywords.and. |
| 626c0 | 3a 72 65 66 3a 60 73 79 73 6c 6f 67 5f 73 65 76 65 72 69 74 79 5f 6c 65 76 65 6c 60 20 6b 65 79 | :ref:`syslog_severity_level`.key |
| 626e0 | 77 6f 72 64 73 20 73 65 65 20 74 61 62 6c 65 73 20 62 65 6c 6f 77 2e 00 4c 6f 67 20 74 68 65 20 | words.see.tables.below..Log.the. |
| 62700 | 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 65 76 65 6e 74 73 20 70 65 72 20 70 | connection.tracking.events.per.p |
| 62720 | 72 6f 74 6f 63 6f 6c 2e 00 4c 6f 67 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 | rotocol..Log.the.connection.trac |
| 62740 | 6b 69 6e 67 20 65 76 65 6e 74 73 20 70 65 72 20 74 79 70 65 2e 00 4c 6f 67 67 69 6e 67 00 4c 6f | king.events.per.type..Logging.Lo |
| 62760 | 67 67 69 6e 67 20 63 61 6e 20 62 65 20 65 6e 61 62 6c 65 20 66 6f 72 20 65 76 65 72 79 20 73 69 | gging.can.be.enable.for.every.si |
| 62780 | 6e 67 6c 65 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 2e 20 49 66 20 65 6e 61 62 6c 65 64 2c 20 | ngle.firewall.rule..If.enabled,. |
| 627a0 | 6f 74 68 65 72 20 6c 6f 67 20 6f 70 74 69 6f 6e 73 20 63 61 6e 20 62 65 20 64 65 66 69 6e 65 64 | other.log.options.can.be.defined |
| 627c0 | 2e 00 4c 6f 67 67 69 6e 67 20 74 6f 20 61 20 72 65 6d 6f 74 65 20 68 6f 73 74 20 6c 65 61 76 65 | ..Logging.to.a.remote.host.leave |
| 627e0 | 73 20 74 68 65 20 6c 6f 63 61 6c 20 6c 6f 67 67 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f | s.the.local.logging.configuratio |
| 62800 | 6e 20 69 6e 74 61 63 74 2c 20 69 74 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 69 | n.intact,.it.can.be.configured.i |
| 62820 | 6e 20 70 61 72 61 6c 6c 65 6c 20 74 6f 20 61 20 63 75 73 74 6f 6d 20 66 69 6c 65 20 6f 72 20 63 | n.parallel.to.a.custom.file.or.c |
| 62840 | 6f 6e 73 6f 6c 65 20 6c 6f 67 67 69 6e 67 2e 20 59 6f 75 20 63 61 6e 20 6c 6f 67 20 74 6f 20 6d | onsole.logging..You.can.log.to.m |
| 62860 | 75 6c 74 69 70 6c 65 20 68 6f 73 74 73 20 61 74 20 74 68 65 20 73 61 6d 65 20 74 69 6d 65 2c 20 | ultiple.hosts.at.the.same.time,. |
| 62880 | 75 73 69 6e 67 20 65 69 74 68 65 72 20 54 43 50 20 6f 72 20 55 44 50 2e 20 54 68 65 20 64 65 66 | using.either.TCP.or.UDP..The.def |
| 628a0 | 61 75 6c 74 20 69 73 20 73 65 6e 64 69 6e 67 20 74 68 65 20 6d 65 73 73 61 67 65 73 20 76 69 61 | ault.is.sending.the.messages.via |
| 628c0 | 20 70 6f 72 74 20 35 31 34 2f 55 44 50 2e 00 4c 6f 67 69 6e 20 42 61 6e 6e 65 72 00 4c 6f 67 69 | .port.514/UDP..Login.Banner.Logi |
| 628e0 | 6e 20 6c 69 6d 69 74 73 00 4c 6f 67 69 6e 2f 55 73 65 72 20 4d 61 6e 61 67 65 6d 65 6e 74 00 4c | n.limits.Login/User.Management.L |
| 62900 | 6f 6b 69 00 4c 6f 6f 70 20 46 72 65 65 20 41 6c 74 65 72 6e 61 74 65 20 28 4c 46 41 29 00 4c 6f | oki.Loop.Free.Alternate.(LFA).Lo |
| 62920 | 6f 70 62 61 63 6b 00 4c 6f 6f 70 62 61 63 6b 73 20 6f 63 63 75 72 73 20 61 74 20 74 68 65 20 49 | opback.Loopbacks.occurs.at.the.I |
| 62940 | 50 20 6c 65 76 65 6c 20 74 68 65 20 73 61 6d 65 20 77 61 79 20 61 73 20 66 6f 72 20 6f 74 68 65 | P.level.the.same.way.as.for.othe |
| 62960 | 72 20 69 6e 74 65 72 66 61 63 65 73 2c 20 65 74 68 65 72 6e 65 74 20 66 72 61 6d 65 73 20 61 72 | r.interfaces,.ethernet.frames.ar |
| 62980 | 65 20 6e 6f 74 20 66 6f 72 77 61 72 64 65 64 20 62 65 74 77 65 65 6e 20 50 73 65 75 64 6f 2d 45 | e.not.forwarded.between.Pseudo-E |
| 629a0 | 74 68 65 72 6e 65 74 20 69 6e 74 65 72 66 61 63 65 73 2e 00 4c 6f 77 00 4d 41 43 20 47 72 6f 75 | thernet.interfaces..Low.MAC.Grou |
| 629c0 | 70 73 00 4d 41 43 20 61 64 64 72 65 73 73 20 61 67 69 6e 67 20 60 3c 74 69 6d 65 60 3e 20 69 6e | ps.MAC.address.aging.`<time`>.in |
| 629e0 | 20 73 65 63 6f 6e 64 73 20 28 64 65 66 61 75 6c 74 3a 20 33 30 30 29 2e 00 4d 41 43 2f 50 48 59 | .seconds.(default:.300)..MAC/PHY |
| 62a00 | 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 00 4d 41 43 56 4c 41 4e 20 2d 20 50 73 65 75 64 6f 20 45 74 | .information.MACVLAN.-.Pseudo.Et |
| 62a20 | 68 65 72 6e 65 74 00 4d 41 43 73 65 63 00 4d 41 43 73 65 63 20 69 73 20 61 6e 20 49 45 45 45 20 | hernet.MACsec.MACsec.is.an.IEEE. |
| 62a40 | 73 74 61 6e 64 61 72 64 20 28 49 45 45 45 20 38 30 32 2e 31 41 45 29 20 66 6f 72 20 4d 41 43 20 | standard.(IEEE.802.1AE).for.MAC. |
| 62a60 | 73 65 63 75 72 69 74 79 2c 20 69 6e 74 72 6f 64 75 63 65 64 20 69 6e 20 32 30 30 36 2e 20 49 74 | security,.introduced.in.2006..It |
| 62a80 | 20 64 65 66 69 6e 65 73 20 61 20 77 61 79 20 74 6f 20 65 73 74 61 62 6c 69 73 68 20 61 20 70 72 | .defines.a.way.to.establish.a.pr |
| 62aa0 | 6f 74 6f 63 6f 6c 20 69 6e 64 65 70 65 6e 64 65 6e 74 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 62 65 | otocol.independent.connection.be |
| 62ac0 | 74 77 65 65 6e 20 74 77 6f 20 68 6f 73 74 73 20 77 69 74 68 20 64 61 74 61 20 63 6f 6e 66 69 64 | tween.two.hosts.with.data.confid |
| 62ae0 | 65 6e 74 69 61 6c 69 74 79 2c 20 61 75 74 68 65 6e 74 69 63 69 74 79 20 61 6e 64 2f 6f 72 20 69 | entiality,.authenticity.and/or.i |
| 62b00 | 6e 74 65 67 72 69 74 79 2c 20 75 73 69 6e 67 20 47 43 4d 2d 41 45 53 2d 31 32 38 2e 20 4d 41 43 | ntegrity,.using.GCM-AES-128..MAC |
| 62b20 | 73 65 63 20 6f 70 65 72 61 74 65 73 20 6f 6e 20 74 68 65 20 45 74 68 65 72 6e 65 74 20 6c 61 79 | sec.operates.on.the.Ethernet.lay |
| 62b40 | 65 72 20 61 6e 64 20 61 73 20 73 75 63 68 20 69 73 20 61 20 6c 61 79 65 72 20 32 20 70 72 6f 74 | er.and.as.such.is.a.layer.2.prot |
| 62b60 | 6f 63 6f 6c 2c 20 77 68 69 63 68 20 6d 65 61 6e 73 20 69 74 27 73 20 64 65 73 69 67 6e 65 64 20 | ocol,.which.means.it's.designed. |
| 62b80 | 74 6f 20 73 65 63 75 72 65 20 74 72 61 66 66 69 63 20 77 69 74 68 69 6e 20 61 20 6c 61 79 65 72 | to.secure.traffic.within.a.layer |
| 62ba0 | 20 32 20 6e 65 74 77 6f 72 6b 2c 20 69 6e 63 6c 75 64 69 6e 67 20 44 48 43 50 20 6f 72 20 41 52 | .2.network,.including.DHCP.or.AR |
| 62bc0 | 50 20 72 65 71 75 65 73 74 73 2e 20 49 74 20 64 6f 65 73 20 6e 6f 74 20 63 6f 6d 70 65 74 65 20 | P.requests..It.does.not.compete. |
| 62be0 | 77 69 74 68 20 6f 74 68 65 72 20 73 65 63 75 72 69 74 79 20 73 6f 6c 75 74 69 6f 6e 73 20 73 75 | with.other.security.solutions.su |
| 62c00 | 63 68 20 61 73 20 49 50 73 65 63 20 28 6c 61 79 65 72 20 33 29 20 6f 72 20 54 4c 53 20 28 6c 61 | ch.as.IPsec.(layer.3).or.TLS.(la |
| 62c20 | 79 65 72 20 34 29 2c 20 61 73 20 61 6c 6c 20 74 68 6f 73 65 20 73 6f 6c 75 74 69 6f 6e 73 20 61 | yer.4),.as.all.those.solutions.a |
| 62c40 | 72 65 20 75 73 65 64 20 66 6f 72 20 74 68 65 69 72 20 6f 77 6e 20 73 70 65 63 69 66 69 63 20 75 | re.used.for.their.own.specific.u |
| 62c60 | 73 65 20 63 61 73 65 73 2e 00 4d 41 43 73 65 63 20 69 73 20 61 6e 20 69 6e 74 65 72 65 73 74 69 | se.cases..MACsec.is.an.interesti |
| 62c80 | 6e 67 20 61 6c 74 65 72 6e 61 74 69 76 65 20 74 6f 20 65 78 69 73 74 69 6e 67 20 74 75 6e 6e 65 | ng.alternative.to.existing.tunne |
| 62ca0 | 6c 69 6e 67 20 73 6f 6c 75 74 69 6f 6e 73 20 74 68 61 74 20 70 72 6f 74 65 63 74 73 20 6c 61 79 | ling.solutions.that.protects.lay |
| 62cc0 | 65 72 20 32 20 62 79 20 70 65 72 66 6f 72 6d 69 6e 67 20 69 6e 74 65 67 72 69 74 79 2c 20 6f 72 | er.2.by.performing.integrity,.or |
| 62ce0 | 69 67 69 6e 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2c 20 61 6e 64 20 6f 70 74 69 6f 6e 61 | igin.authentication,.and.optiona |
| 62d00 | 6c 6c 79 20 65 6e 63 72 79 70 74 69 6f 6e 2e 20 54 68 65 20 74 79 70 69 63 61 6c 20 75 73 65 20 | lly.encryption..The.typical.use. |
| 62d20 | 63 61 73 65 20 69 73 20 74 6f 20 75 73 65 20 4d 41 43 73 65 63 20 62 65 74 77 65 65 6e 20 68 6f | case.is.to.use.MACsec.between.ho |
| 62d40 | 73 74 73 20 61 6e 64 20 61 63 63 65 73 73 20 73 77 69 74 63 68 65 73 2c 20 62 65 74 77 65 65 6e | sts.and.access.switches,.between |
| 62d60 | 20 74 77 6f 20 68 6f 73 74 73 2c 20 6f 72 20 62 65 74 77 65 65 6e 20 74 77 6f 20 73 77 69 74 63 | .two.hosts,.or.between.two.switc |
| 62d80 | 68 65 73 2e 20 69 6e 20 74 68 69 73 20 65 78 61 6d 70 6c 65 20 62 65 6c 6f 77 2c 20 77 65 20 75 | hes..in.this.example.below,.we.u |
| 62da0 | 73 65 20 56 58 4c 41 4e 20 61 6e 64 20 4d 41 43 73 65 63 20 74 6f 20 73 65 63 75 72 65 20 74 68 | se.VXLAN.and.MACsec.to.secure.th |
| 62dc0 | 65 20 74 75 6e 6e 65 6c 2e 00 4d 41 43 73 65 63 20 6f 6e 6c 79 20 70 72 6f 76 69 64 65 73 20 61 | e.tunnel..MACsec.only.provides.a |
| 62de0 | 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 62 79 20 64 65 66 61 75 6c 74 2c 20 65 6e 63 72 79 70 | uthentication.by.default,.encryp |
| 62e00 | 74 69 6f 6e 20 69 73 20 6f 70 74 69 6f 6e 61 6c 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 77 | tion.is.optional..This.command.w |
| 62e20 | 69 6c 6c 20 65 6e 61 62 6c 65 20 65 6e 63 72 79 70 74 69 6f 6e 20 66 6f 72 20 61 6c 6c 20 6f 75 | ill.enable.encryption.for.all.ou |
| 62e40 | 74 67 6f 69 6e 67 20 70 61 63 6b 65 74 73 2e 00 4d 41 43 73 65 63 20 6f 70 74 69 6f 6e 73 00 4d | tgoing.packets..MACsec.options.M |
| 62e60 | 41 43 73 65 63 20 6f 76 65 72 20 77 61 6e 00 4d 44 49 20 70 6f 77 65 72 00 4d 46 41 20 54 4f 54 | ACsec.over.wan.MDI.power.MFA.TOT |
| 62e80 | 50 20 6f 70 74 69 6f 6e 73 00 4d 46 41 2f 32 46 41 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e | P.options.MFA/2FA.authentication |
| 62ea0 | 20 75 73 69 6e 67 20 4f 54 50 20 28 6f 6e 65 20 74 69 6d 65 20 70 61 73 73 77 6f 72 64 73 29 00 | .using.OTP.(one.time.passwords). |
| 62ec0 | 4d 50 4c 53 00 4d 50 4c 53 20 73 75 70 70 6f 72 74 20 69 6e 20 56 79 4f 53 20 69 73 20 6e 6f 74 | MPLS.MPLS.support.in.VyOS.is.not |
| 62ee0 | 20 66 69 6e 69 73 68 65 64 20 79 65 74 2c 20 61 6e 64 20 74 68 65 72 65 66 6f 72 65 20 69 74 73 | .finished.yet,.and.therefore.its |
| 62f00 | 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 20 69 73 20 6c 69 6d 69 74 65 64 2e 20 43 75 72 72 65 | .functionality.is.limited..Curre |
| 62f20 | 6e 74 6c 79 20 74 68 65 72 65 20 69 73 20 6e 6f 20 73 75 70 70 6f 72 74 20 66 6f 72 20 4d 50 4c | ntly.there.is.no.support.for.MPL |
| 62f40 | 53 20 65 6e 61 62 6c 65 64 20 56 50 4e 20 73 65 72 76 69 63 65 73 20 73 75 63 68 20 61 73 20 4c | S.enabled.VPN.services.such.as.L |
| 62f60 | 32 56 50 4e 73 20 61 6e 64 20 6d 56 50 4e 73 2e 20 52 53 56 50 20 73 75 70 70 6f 72 74 20 69 73 | 2VPNs.and.mVPNs..RSVP.support.is |
| 62f80 | 20 61 6c 73 6f 20 6e 6f 74 20 70 72 65 73 65 6e 74 20 61 73 20 74 68 65 20 75 6e 64 65 72 6c 79 | .also.not.present.as.the.underly |
| 62fa0 | 69 6e 67 20 72 6f 75 74 69 6e 67 20 73 74 61 63 6b 20 28 46 52 52 29 20 64 6f 65 73 20 6e 6f 74 | ing.routing.stack.(FRR).does.not |
| 62fc0 | 20 69 6d 70 6c 65 6d 65 6e 74 20 69 74 2e 20 43 75 72 72 65 6e 74 6c 79 20 56 79 4f 53 20 69 6d | .implement.it..Currently.VyOS.im |
| 62fe0 | 70 6c 65 6d 65 6e 74 73 20 4c 44 50 20 61 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 52 46 43 | plements.LDP.as.described.in.RFC |
| 63000 | 20 35 30 33 36 3b 20 6f 74 68 65 72 20 4c 44 50 20 73 74 61 6e 64 61 72 64 20 61 72 65 20 74 68 | .5036;.other.LDP.standard.are.th |
| 63020 | 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 6f 6e 65 73 3a 20 52 46 43 20 36 37 32 30 2c 20 52 46 43 20 | e.following.ones:.RFC.6720,.RFC. |
| 63040 | 36 36 36 37 2c 20 52 46 43 20 35 39 31 39 2c 20 52 46 43 20 35 35 36 31 2c 20 52 46 43 20 37 35 | 6667,.RFC.5919,.RFC.5561,.RFC.75 |
| 63060 | 35 32 2c 20 52 46 43 20 34 34 34 37 2e 20 42 65 63 61 75 73 65 20 4d 50 4c 53 20 69 73 20 61 6c | 52,.RFC.4447..Because.MPLS.is.al |
| 63080 | 72 65 61 64 79 20 61 76 61 69 6c 61 62 6c 65 20 28 46 52 52 20 61 6c 73 6f 20 73 75 70 70 6f 72 | ready.available.(FRR.also.suppor |
| 630a0 | 74 73 20 52 46 43 20 33 30 33 31 29 2e 00 4d 53 53 20 76 61 6c 75 65 20 3d 20 4d 54 55 20 2d 20 | ts.RFC.3031)..MSS.value.=.MTU.-. |
| 630c0 | 32 30 20 28 49 50 20 68 65 61 64 65 72 29 20 2d 20 32 30 20 28 54 43 50 20 68 65 61 64 65 72 29 | 20.(IP.header).-.20.(TCP.header) |
| 630e0 | 2c 20 72 65 73 75 6c 74 69 6e 67 20 69 6e 20 31 34 35 32 20 62 79 74 65 73 20 6f 6e 20 61 20 31 | ,.resulting.in.1452.bytes.on.a.1 |
| 63100 | 34 39 32 20 62 79 74 65 20 4d 54 55 2e 00 4d 53 53 20 76 61 6c 75 65 20 3d 20 4d 54 55 20 2d 20 | 492.byte.MTU..MSS.value.=.MTU.-. |
| 63120 | 34 30 20 28 49 50 76 36 20 68 65 61 64 65 72 29 20 2d 20 32 30 20 28 54 43 50 20 68 65 61 64 65 | 40.(IPv6.header).-.20.(TCP.heade |
| 63140 | 72 29 2c 20 72 65 73 75 6c 74 69 6e 67 20 69 6e 20 31 34 33 32 20 62 79 74 65 73 20 6f 6e 20 61 | r),.resulting.in.1432.bytes.on.a |
| 63160 | 20 31 34 39 32 20 62 79 74 65 20 4d 54 55 2e 00 4d 54 55 00 4d 61 69 6c 20 73 79 73 74 65 6d 00 | .1492.byte.MTU..MTU.Mail.system. |
| 63180 | 4d 61 69 6e 20 6e 6f 74 65 73 20 72 65 67 61 72 64 69 6e 67 20 74 68 69 73 20 70 61 63 6b 65 74 | Main.notes.regarding.this.packet |
| 631a0 | 20 66 6c 6f 77 20 61 6e 64 20 74 65 72 6d 69 6e 6f 6c 6f 67 79 20 75 73 65 64 20 69 6e 20 56 79 | .flow.and.terminology.used.in.Vy |
| 631c0 | 4f 53 20 66 69 72 65 77 61 6c 6c 3a 00 4d 61 69 6e 20 73 74 72 75 63 74 75 72 65 20 56 79 4f 53 | OS.firewall:.Main.structure.VyOS |
| 631e0 | 20 66 69 72 65 77 61 6c 6c 20 63 6c 69 20 69 73 20 73 68 6f 77 6e 20 6e 65 78 74 3a 00 4d 61 69 | .firewall.cli.is.shown.next:.Mai |
| 63200 | 6e 20 73 74 72 75 63 74 75 72 65 20 69 73 20 73 68 6f 77 6e 20 6e 65 78 74 3a 00 4d 61 69 6e 74 | n.structure.is.shown.next:.Maint |
| 63220 | 65 6e 61 6e 63 65 20 6d 6f 64 65 00 4d 61 6b 65 20 63 6f 6e 66 69 67 2d 73 79 6e 63 20 72 65 6c | enance.mode.Make.config-sync.rel |
| 63240 | 65 76 61 6e 74 20 63 68 61 6e 67 65 73 20 74 6f 20 52 6f 75 74 65 72 20 41 27 73 20 63 6f 6e 66 | evant.changes.to.Router.A's.conf |
| 63260 | 69 67 75 72 61 74 69 6f 6e 00 4d 61 6b 65 20 73 75 72 65 20 63 6f 6e 6e 74 72 61 63 6b 20 69 73 | iguration.Make.sure.conntrack.is |
| 63280 | 20 65 6e 61 62 6c 65 64 20 62 79 20 72 75 6e 6e 69 6e 67 20 61 6e 64 20 73 68 6f 77 20 63 6f 6e | .enabled.by.running.and.show.con |
| 632a0 | 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 74 61 62 6c 65 2e 00 4d 61 6e 61 67 65 20 69 | nection.tracking.table..Manage.i |
| 632c0 | 6e 74 65 72 6e 61 6c 20 71 75 65 75 65 20 73 69 7a 65 2c 20 64 65 66 61 75 6c 74 20 73 69 7a 65 | nternal.queue.size,.default.size |
| 632e0 | 20 69 73 20 34 30 39 36 20 65 76 65 6e 74 73 2e 00 4d 61 6e 61 67 65 20 6c 6f 67 20 6c 65 76 65 | .is.4096.events..Manage.log.leve |
| 63300 | 6c 00 4d 61 6e 61 67 65 64 20 64 65 76 69 63 65 73 00 4d 61 6e 61 67 65 6d 65 6e 74 20 46 72 61 | l.Managed.devices.Management.Fra |
| 63320 | 6d 65 20 50 72 6f 74 65 63 74 69 6f 6e 20 28 4d 46 50 29 20 61 63 63 6f 72 64 69 6e 67 20 74 6f | me.Protection.(MFP).according.to |
| 63340 | 20 49 45 45 45 20 38 30 32 2e 31 31 77 00 4d 61 6e 64 61 74 6f 72 79 20 53 65 74 74 69 6e 67 73 | .IEEE.802.11w.Mandatory.Settings |
| 63360 | 00 4d 61 6e 75 61 6c 20 4e 65 69 67 68 62 6f 72 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 4d | .Manual.Neighbor.Configuration.M |
| 63380 | 61 6e 75 61 6c 6c 79 20 74 72 69 67 67 65 72 20 63 65 72 74 69 66 69 63 61 74 65 20 72 65 6e 65 | anually.trigger.certificate.rene |
| 633a0 | 77 61 6c 2e 20 54 68 69 73 20 77 69 6c 6c 20 62 65 20 64 6f 6e 65 20 74 77 69 63 65 20 61 20 64 | wal..This.will.be.done.twice.a.d |
| 633c0 | 61 79 2e 00 4d 61 70 73 20 74 68 65 20 56 4e 49 20 74 6f 20 74 68 65 20 73 70 65 63 69 66 69 65 | ay..Maps.the.VNI.to.the.specifie |
| 633e0 | 64 20 56 4c 41 4e 20 69 64 2e 20 54 68 65 20 56 4c 41 4e 20 63 61 6e 20 74 68 65 6e 20 62 65 20 | d.VLAN.id..The.VLAN.can.then.be. |
| 63400 | 63 6f 6e 73 75 6d 65 64 20 62 79 20 61 20 62 72 69 64 67 65 2e 00 4d 61 72 6b 20 52 41 44 49 55 | consumed.by.a.bridge..Mark.RADIU |
| 63420 | 53 20 73 65 72 76 65 72 20 61 73 20 6f 66 66 6c 69 6e 65 20 66 6f 72 20 74 68 69 73 20 67 69 76 | S.server.as.offline.for.this.giv |
| 63440 | 65 6e 20 60 3c 74 69 6d 65 3e 60 20 69 6e 20 73 65 63 6f 6e 64 73 2e 00 4d 61 72 6b 20 74 68 65 | en.`<time>`.in.seconds..Mark.the |
| 63460 | 20 43 41 73 20 70 72 69 76 61 74 65 20 6b 65 79 20 61 73 20 70 61 73 73 77 6f 72 64 20 70 72 6f | .CAs.private.key.as.password.pro |
| 63480 | 74 65 63 74 65 64 2e 20 55 73 65 72 20 69 73 20 61 73 6b 65 64 20 66 6f 72 20 74 68 65 20 70 61 | tected..User.is.asked.for.the.pa |
| 634a0 | 73 73 77 6f 72 64 20 77 68 65 6e 20 74 68 65 20 6b 65 79 20 69 73 20 72 65 66 65 72 65 6e 63 65 | ssword.when.the.key.is.reference |
| 634c0 | 64 2e 00 4d 61 72 6b 20 74 68 65 20 70 72 69 76 61 74 65 20 6b 65 79 20 61 73 20 70 61 73 73 77 | d..Mark.the.private.key.as.passw |
| 634e0 | 6f 72 64 20 70 72 6f 74 65 63 74 65 64 2e 20 55 73 65 72 20 69 73 20 61 73 6b 65 64 20 66 6f 72 | ord.protected..User.is.asked.for |
| 63500 | 20 74 68 65 20 70 61 73 73 77 6f 72 64 20 77 68 65 6e 20 74 68 65 20 6b 65 79 20 69 73 20 72 65 | .the.password.when.the.key.is.re |
| 63520 | 66 65 72 65 6e 63 65 64 2e 00 4d 61 74 63 68 20 42 47 50 20 6c 61 72 67 65 20 63 6f 6d 6d 75 6e | ferenced..Match.BGP.large.commun |
| 63540 | 69 74 69 65 73 2e 00 4d 61 74 63 68 20 49 50 20 61 64 64 72 65 73 73 65 73 20 62 61 73 65 64 20 | ities..Match.IP.addresses.based. |
| 63560 | 6f 6e 20 69 74 73 20 67 65 6f 6c 6f 63 61 74 69 6f 6e 2e 20 4d 6f 72 65 20 69 6e 66 6f 3a 20 60 | on.its.geolocation..More.info:.` |
| 63580 | 67 65 6f 69 70 20 6d 61 74 63 68 69 6e 67 20 3c 68 74 74 70 73 3a 2f 2f 77 69 6b 69 2e 6e 66 74 | geoip.matching.<https://wiki.nft |
| 635a0 | 61 62 6c 65 73 2e 6f 72 67 2f 77 69 6b 69 2d 6e 66 74 61 62 6c 65 73 2f 69 6e 64 65 78 2e 70 68 | ables.org/wiki-nftables/index.ph |
| 635c0 | 70 2f 47 65 6f 49 50 5f 6d 61 74 63 68 69 6e 67 3e 60 5f 2e 00 4d 61 74 63 68 20 49 50 20 61 64 | p/GeoIP_matching>`_..Match.IP.ad |
| 635e0 | 64 72 65 73 73 65 73 20 62 61 73 65 64 20 6f 6e 20 69 74 73 20 67 65 6f 6c 6f 63 61 74 69 6f 6e | dresses.based.on.its.geolocation |
| 63600 | 2e 20 4d 6f 72 65 20 69 6e 66 6f 3a 20 60 67 65 6f 69 70 20 6d 61 74 63 68 69 6e 67 20 3c 68 74 | ..More.info:.`geoip.matching.<ht |
| 63620 | 74 70 73 3a 2f 2f 77 69 6b 69 2e 6e 66 74 61 62 6c 65 73 2e 6f 72 67 2f 77 69 6b 69 2d 6e 66 74 | tps://wiki.nftables.org/wiki-nft |
| 63640 | 61 62 6c 65 73 2f 69 6e 64 65 78 2e 70 68 70 2f 47 65 6f 49 50 5f 6d 61 74 63 68 69 6e 67 3e 60 | ables/index.php/GeoIP_matching>` |
| 63660 | 5f 2e 20 55 73 65 20 69 6e 76 65 72 73 65 2d 6d 61 74 63 68 20 74 6f 20 6d 61 74 63 68 20 61 6e | _..Use.inverse-match.to.match.an |
| 63680 | 79 74 68 69 6e 67 20 65 78 63 65 70 74 20 74 68 65 20 67 69 76 65 6e 20 63 6f 75 6e 74 72 79 2d | ything.except.the.given.country- |
| 636a0 | 63 6f 64 65 73 2e 00 4d 61 74 63 68 20 52 50 4b 49 20 76 61 6c 69 64 61 74 69 6f 6e 20 72 65 73 | codes..Match.RPKI.validation.res |
| 636c0 | 75 6c 74 2e 00 4d 61 74 63 68 20 61 20 70 72 6f 74 6f 63 6f 6c 20 63 72 69 74 65 72 69 61 2e 20 | ult..Match.a.protocol.criteria.. |
| 636e0 | 41 20 70 72 6f 74 6f 63 6f 6c 20 6e 75 6d 62 65 72 20 6f 72 20 61 20 6e 61 6d 65 20 77 68 69 63 | A.protocol.number.or.a.name.whic |
| 63700 | 68 20 69 73 20 64 65 66 69 6e 65 64 20 69 6e 3a 20 60 60 2f 65 74 63 2f 70 72 6f 74 6f 63 6f 6c | h.is.defined.in:.``/etc/protocol |
| 63720 | 73 60 60 2e 20 53 70 65 63 69 61 6c 20 6e 61 6d 65 73 20 61 72 65 20 60 60 61 6c 6c 60 60 20 66 | s``..Special.names.are.``all``.f |
| 63740 | 6f 72 20 61 6c 6c 20 70 72 6f 74 6f 63 6f 6c 73 20 61 6e 64 20 60 60 74 63 70 5f 75 64 70 60 60 | or.all.protocols.and.``tcp_udp`` |
| 63760 | 20 66 6f 72 20 74 63 70 20 61 6e 64 20 75 64 70 20 62 61 73 65 64 20 70 61 63 6b 65 74 73 2e 20 | .for.tcp.and.udp.based.packets.. |
| 63780 | 54 68 65 20 60 60 21 60 60 20 6e 65 67 61 74 65 73 20 74 68 65 20 73 65 6c 65 63 74 65 64 20 70 | The.``!``.negates.the.selected.p |
| 637a0 | 72 6f 74 6f 63 6f 6c 2e 00 4d 61 74 63 68 20 61 20 70 72 6f 74 6f 63 6f 6c 20 63 72 69 74 65 72 | rotocol..Match.a.protocol.criter |
| 637c0 | 69 61 2e 20 41 20 70 72 6f 74 6f 63 6f 6c 20 6e 75 6d 62 65 72 20 6f 72 20 61 20 6e 61 6d 65 20 | ia..A.protocol.number.or.a.name. |
| 637e0 | 77 68 69 63 68 20 69 73 20 68 65 72 65 20 64 65 66 69 6e 65 64 3a 20 60 60 2f 65 74 63 2f 70 72 | which.is.here.defined:.``/etc/pr |
| 63800 | 6f 74 6f 63 6f 6c 73 60 60 2e 20 53 70 65 63 69 61 6c 20 6e 61 6d 65 73 20 61 72 65 20 60 60 61 | otocols``..Special.names.are.``a |
| 63820 | 6c 6c 60 60 20 66 6f 72 20 61 6c 6c 20 70 72 6f 74 6f 63 6f 6c 73 20 61 6e 64 20 60 60 74 63 70 | ll``.for.all.protocols.and.``tcp |
| 63840 | 5f 75 64 70 60 60 20 66 6f 72 20 74 63 70 20 61 6e 64 20 75 64 70 20 62 61 73 65 64 20 70 61 63 | _udp``.for.tcp.and.udp.based.pac |
| 63860 | 6b 65 74 73 2e 20 54 68 65 20 60 60 21 60 60 20 6e 65 67 61 74 65 20 74 68 65 20 73 65 6c 65 63 | kets..The.``!``.negate.the.selec |
| 63880 | 74 65 64 20 70 72 6f 74 6f 63 6f 6c 2e 00 4d 61 74 63 68 20 61 67 61 69 6e 73 74 20 74 68 65 20 | ted.protocol..Match.against.the. |
| 638a0 | 73 74 61 74 65 20 6f 66 20 61 20 70 61 63 6b 65 74 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f | state.of.a.packet..Match.based.o |
| 638c0 | 6e 20 56 4c 41 4e 20 69 64 65 6e 74 69 66 69 65 72 2e 20 52 61 6e 67 65 20 69 73 20 61 6c 73 6f | n.VLAN.identifier..Range.is.also |
| 638e0 | 20 73 75 70 70 6f 72 74 65 64 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 56 4c 41 4e 20 | .supported..Match.based.on.VLAN. |
| 63900 | 70 72 69 6f 72 69 74 79 20 28 50 72 69 6f 72 69 74 79 20 43 6f 64 65 20 50 6f 69 6e 74 20 2d 20 | priority.(Priority.Code.Point.-. |
| 63920 | 50 43 50 29 2e 20 52 61 6e 67 65 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 00 4d | PCP)..Range.is.also.supported..M |
| 63940 | 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 6d 61 72 6b 2e 00 4d | atch.based.on.connection.mark..M |
| 63960 | 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e | atch.based.on.connection.trackin |
| 63980 | 67 20 70 72 6f 74 6f 63 6f 6c 20 68 65 6c 70 65 72 20 6d 6f 64 75 6c 65 20 74 6f 20 73 65 63 75 | g.protocol.helper.module.to.secu |
| 639a0 | 72 65 20 75 73 65 20 6f 66 20 74 68 61 74 20 68 65 6c 70 65 72 20 6d 6f 64 75 6c 65 2e 20 53 65 | re.use.of.that.helper.module..Se |
| 639c0 | 65 20 62 65 6c 6f 77 20 66 6f 72 20 70 6f 73 73 69 62 6c 65 20 63 6f 6d 70 6c 65 74 69 6f 6e 73 | e.below.for.possible.completions |
| 639e0 | 20 60 3c 6d 6f 64 75 6c 65 3e 60 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 64 73 63 70 | .`<module>`..Match.based.on.dscp |
| 63a00 | 20 76 61 6c 75 65 20 63 72 69 74 65 72 69 61 2e 20 4d 75 6c 74 69 70 6c 65 20 76 61 6c 75 65 73 | .value.criteria..Multiple.values |
| 63a20 | 20 66 72 6f 6d 20 30 20 74 6f 20 36 33 20 61 6e 64 20 72 61 6e 67 65 73 20 61 72 65 20 73 75 70 | .from.0.to.63.and.ranges.are.sup |
| 63a40 | 70 6f 72 74 65 64 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 64 73 63 70 20 76 61 6c 75 | ported..Match.based.on.dscp.valu |
| 63a60 | 65 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 66 72 61 67 6d 65 6e 74 20 63 72 69 74 65 | e..Match.based.on.fragment.crite |
| 63a80 | 72 69 61 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 66 72 61 67 6d 65 6e 74 61 74 69 6f | ria..Match.based.on.fragmentatio |
| 63aa0 | 6e 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 69 63 6d 70 20 63 6f 64 65 20 61 6e 64 20 | n..Match.based.on.icmp.code.and. |
| 63ac0 | 74 79 70 65 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 69 63 6d 70 20 74 79 70 65 2d 6e | type..Match.based.on.icmp.type-n |
| 63ae0 | 61 6d 65 20 63 72 69 74 65 72 69 61 2e 20 55 73 65 20 74 61 62 20 66 6f 72 20 69 6e 66 6f 72 6d | ame.criteria..Use.tab.for.inform |
| 63b00 | 61 74 69 6f 6e 20 61 62 6f 75 74 20 77 68 61 74 20 2a 2a 74 79 70 65 2d 6e 61 6d 65 2a 2a 20 63 | ation.about.what.**type-name**.c |
| 63b20 | 72 69 74 65 72 69 61 20 61 72 65 20 73 75 70 70 6f 72 74 65 64 2e 00 4d 61 74 63 68 20 62 61 73 | riteria.are.supported..Match.bas |
| 63b40 | 65 64 20 6f 6e 20 69 63 6d 70 20 74 79 70 65 2d 6e 61 6d 65 2e 20 55 73 65 20 74 61 62 20 66 6f | ed.on.icmp.type-name..Use.tab.fo |
| 63b60 | 72 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 77 68 61 74 20 2a 2a 74 79 70 65 2d | r.information.about.what.**type- |
| 63b80 | 6e 61 6d 65 2a 2a 20 63 72 69 74 65 72 69 61 20 61 72 65 20 73 75 70 70 6f 72 74 65 64 2e 00 4d | name**.criteria.are.supported..M |
| 63ba0 | 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 69 63 6d 70 76 36 20 74 79 70 65 2d 6e 61 6d 65 20 63 | atch.based.on.icmpv6.type-name.c |
| 63bc0 | 72 69 74 65 72 69 61 2e 20 55 73 65 20 74 61 62 20 66 6f 72 20 69 6e 66 6f 72 6d 61 74 69 6f 6e | riteria..Use.tab.for.information |
| 63be0 | 20 61 62 6f 75 74 20 77 68 61 74 20 2a 2a 74 79 70 65 2d 6e 61 6d 65 2a 2a 20 63 72 69 74 65 72 | .about.what.**type-name**.criter |
| 63c00 | 69 61 20 61 72 65 20 73 75 70 70 6f 72 74 65 64 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e | ia.are.supported..Match.based.on |
| 63c20 | 20 69 63 6d 70 76 36 20 74 79 70 65 2d 6e 61 6d 65 2e 20 55 73 65 20 74 61 62 20 66 6f 72 20 69 | .icmpv6.type-name..Use.tab.for.i |
| 63c40 | 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 77 68 61 74 20 2a 2a 74 79 70 65 2d 6e 61 6d | nformation.about.what.**type-nam |
| 63c60 | 65 2a 2a 20 63 72 69 74 65 72 69 61 20 61 72 65 20 73 75 70 70 6f 72 74 65 64 2e 00 4d 61 74 63 | e**.criteria.are.supported..Matc |
| 63c80 | 68 20 62 61 73 65 64 20 6f 6e 20 69 63 6d 70 7c 69 63 6d 70 76 36 20 63 6f 64 65 20 61 6e 64 20 | h.based.on.icmp|icmpv6.code.and. |
| 63ca0 | 74 79 70 65 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 69 63 6d 70 7c 69 63 6d 70 76 36 | type..Match.based.on.icmp|icmpv6 |
| 63cc0 | 20 74 79 70 65 2d 6e 61 6d 65 20 63 72 69 74 65 72 69 61 2e 20 55 73 65 20 74 61 62 20 66 6f 72 | .type-name.criteria..Use.tab.for |
| 63ce0 | 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 77 68 61 74 20 2a 2a 74 79 70 65 2d 6e | .information.about.what.**type-n |
| 63d00 | 61 6d 65 2a 2a 20 63 72 69 74 65 72 69 61 20 61 72 65 20 73 75 70 70 6f 72 74 65 64 2e 00 4d 61 | ame**.criteria.are.supported..Ma |
| 63d20 | 74 63 68 20 62 61 73 65 64 20 6f 6e 20 69 63 6d 70 7c 69 63 6d 70 76 36 20 74 79 70 65 2d 6e 61 | tch.based.on.icmp|icmpv6.type-na |
| 63d40 | 6d 65 20 63 72 69 74 65 72 69 61 2e 20 55 73 65 20 74 61 62 20 66 6f 72 20 69 6e 66 6f 72 6d 61 | me.criteria..Use.tab.for.informa |
| 63d60 | 74 69 6f 6e 20 61 62 6f 75 74 20 77 68 61 74 20 74 79 70 65 2d 6e 61 6d 65 20 63 72 69 74 65 72 | tion.about.what.type-name.criter |
| 63d80 | 69 61 20 61 72 65 20 73 75 70 70 6f 72 74 65 64 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e | ia.are.supported..Match.based.on |
| 63da0 | 20 69 6e 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 20 67 72 6f 75 70 2e 20 50 72 65 70 65 6e | .inbound.interface.group..Prepen |
| 63dc0 | 64 69 6e 67 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 66 6f 72 20 69 6e 76 65 72 74 65 | ding.character.``!``.for.inverte |
| 63de0 | 64 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 20 69 73 20 61 6c 73 6f 20 73 75 70 70 | d.matching.criteria.is.also.supp |
| 63e00 | 6f 72 74 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 21 49 46 41 43 45 5f 47 52 4f 55 50 | ortd..For.example.``!IFACE_GROUP |
| 63e20 | 60 60 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 69 6e 62 6f 75 6e 64 20 69 6e 74 65 72 66 | ``.Match.based.on.inbound.interf |
| 63e40 | 61 63 65 20 67 72 6f 75 70 2e 20 50 72 65 70 65 6e 64 69 6e 67 20 63 68 61 72 61 63 74 65 72 20 | ace.group..Prepending.character. |
| 63e60 | 60 60 21 60 60 20 66 6f 72 20 69 6e 76 65 72 74 65 64 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 | ``!``.for.inverted.matching.crit |
| 63e80 | 65 72 69 61 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 20 46 6f 72 20 65 78 61 6d | eria.is.also.supported..For.exam |
| 63ea0 | 70 6c 65 20 60 60 21 49 46 41 43 45 5f 47 52 4f 55 50 60 60 00 4d 61 74 63 68 20 62 61 73 65 64 | ple.``!IFACE_GROUP``.Match.based |
| 63ec0 | 20 6f 6e 20 69 6e 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 2e 20 57 69 6c 63 61 72 64 20 60 | .on.inbound.interface..Wilcard.` |
| 63ee0 | 60 2a 60 60 20 63 61 6e 20 62 65 20 75 73 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 3a 20 60 | `*``.can.be.used..For.example:.` |
| 63f00 | 60 65 74 68 32 2a 60 60 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 69 6e 62 6f 75 6e 64 20 | `eth2*``.Match.based.on.inbound. |
| 63f20 | 69 6e 74 65 72 66 61 63 65 2e 20 57 69 6c 63 61 72 64 20 60 60 2a 60 60 20 63 61 6e 20 62 65 20 | interface..Wilcard.``*``.can.be. |
| 63f40 | 75 73 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 3a 20 60 60 65 74 68 32 2a 60 60 2e 20 50 72 | used..For.example:.``eth2*``..Pr |
| 63f60 | 65 70 65 6e 64 69 6e 67 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 66 6f 72 20 69 6e 76 | epending.character.``!``.for.inv |
| 63f80 | 65 72 74 65 64 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 20 69 73 20 61 6c 73 6f 20 | erted.matching.criteria.is.also. |
| 63fa0 | 73 75 70 70 6f 72 74 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 21 65 74 68 32 60 60 00 | supportd..For.example.``!eth2``. |
| 63fc0 | 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 69 6e 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 | Match.based.on.inbound.interface |
| 63fe0 | 2e 20 57 69 6c 64 63 61 72 64 20 60 60 2a 60 60 20 63 61 6e 20 62 65 20 75 73 65 64 2e 20 46 6f | ..Wildcard.``*``.can.be.used..Fo |
| 64000 | 72 20 65 78 61 6d 70 6c 65 3a 20 60 60 65 74 68 32 2a 60 60 2e 20 50 72 65 70 65 6e 64 69 6e 67 | r.example:.``eth2*``..Prepending |
| 64020 | 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 66 6f 72 20 69 6e 76 65 72 74 65 64 20 6d 61 | .character.``!``.for.inverted.ma |
| 64040 | 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 | tching.criteria.is.also.supporte |
| 64060 | 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 21 65 74 68 32 60 60 00 4d 61 74 63 68 20 62 | d..For.example.``!eth2``.Match.b |
| 64080 | 61 73 65 64 20 6f 6e 20 69 6e 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 2e 20 57 69 6c 64 63 | ased.on.inbound.interface..Wildc |
| 640a0 | 61 72 64 20 60 60 2a 60 60 20 63 61 6e 20 62 65 20 75 73 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 | ard.``*``.can.be.used..For.examp |
| 640c0 | 6c 65 3a 20 60 60 65 74 68 32 2a 60 60 2e 20 50 72 65 70 65 6e 64 69 6e 67 20 74 68 65 20 63 68 | le:.``eth2*``..Prepending.the.ch |
| 640e0 | 61 72 61 63 74 65 72 20 60 60 21 60 60 20 74 6f 20 69 6e 76 65 72 74 20 74 68 65 20 63 72 69 74 | aracter.``!``.to.invert.the.crit |
| 64100 | 65 72 69 61 20 74 6f 20 6d 61 74 63 68 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e | eria.to.match.is.also.supported. |
| 64120 | 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 21 65 74 68 32 60 60 00 4d 61 74 63 68 20 62 61 73 | .For.example.``!eth2``.Match.bas |
| 64140 | 65 64 20 6f 6e 20 69 6e 62 6f 75 6e 64 2f 6f 75 74 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 | ed.on.inbound/outbound.interface |
| 64160 | 2e 20 57 69 6c 63 61 72 64 20 60 60 2a 60 60 20 63 61 6e 20 62 65 20 75 73 65 64 2e 20 46 6f 72 | ..Wilcard.``*``.can.be.used..For |
| 64180 | 20 65 78 61 6d 70 6c 65 3a 20 60 60 65 74 68 32 2a 60 60 00 4d 61 74 63 68 20 62 61 73 65 64 20 | .example:.``eth2*``.Match.based. |
| 641a0 | 6f 6e 20 69 70 73 65 63 20 63 72 69 74 65 72 69 61 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f | on.ipsec.criteria..Match.based.o |
| 641c0 | 6e 20 69 70 73 65 63 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 6e 61 74 20 63 6f 6e 6e | n.ipsec..Match.based.on.nat.conn |
| 641e0 | 65 63 74 69 6f 6e 20 73 74 61 74 75 73 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 6f 75 | ection.status..Match.based.on.ou |
| 64200 | 74 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 20 67 72 6f 75 70 2e 20 50 72 65 70 65 6e 64 69 | tbound.interface.group..Prependi |
| 64220 | 6e 67 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 66 6f 72 20 69 6e 76 65 72 74 65 64 20 | ng.character.``!``.for.inverted. |
| 64240 | 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 | matching.criteria.is.also.suppor |
| 64260 | 74 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 21 49 46 41 43 45 5f 47 52 4f 55 50 60 60 | td..For.example.``!IFACE_GROUP`` |
| 64280 | 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 6f 75 74 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 | .Match.based.on.outbound.interfa |
| 642a0 | 63 65 20 67 72 6f 75 70 2e 20 50 72 65 70 65 6e 64 69 6e 67 20 63 68 61 72 61 63 74 65 72 20 60 | ce.group..Prepending.character.` |
| 642c0 | 60 21 60 60 20 66 6f 72 20 69 6e 76 65 72 74 65 64 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 | `!``.for.inverted.matching.crite |
| 642e0 | 72 69 61 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 | ria.is.also.supported..For.examp |
| 64300 | 6c 65 20 60 60 21 49 46 41 43 45 5f 47 52 4f 55 50 60 60 00 4d 61 74 63 68 20 62 61 73 65 64 20 | le.``!IFACE_GROUP``.Match.based. |
| 64320 | 6f 6e 20 6f 75 74 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 20 67 72 6f 75 70 2e 20 50 72 65 | on.outbound.interface.group..Pre |
| 64340 | 70 65 6e 64 69 6e 67 20 74 68 65 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 74 6f 20 69 | pending.the.character.``!``.to.i |
| 64360 | 6e 76 65 72 74 20 74 68 65 20 63 72 69 74 65 72 69 61 20 74 6f 20 6d 61 74 63 68 20 69 73 20 61 | nvert.the.criteria.to.match.is.a |
| 64380 | 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 21 49 46 | lso.supported..For.example.``!IF |
| 643a0 | 41 43 45 5f 47 52 4f 55 50 60 60 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 6f 75 74 62 6f | ACE_GROUP``.Match.based.on.outbo |
| 643c0 | 75 6e 64 20 69 6e 74 65 72 66 61 63 65 2e 20 57 69 6c 63 61 72 64 20 60 60 2a 60 60 20 63 61 6e | und.interface..Wilcard.``*``.can |
| 643e0 | 20 62 65 20 75 73 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 3a 20 60 60 65 74 68 32 2a 60 60 | .be.used..For.example:.``eth2*`` |
| 64400 | 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 6f 75 74 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 | .Match.based.on.outbound.interfa |
| 64420 | 63 65 2e 20 57 69 6c 63 61 72 64 20 60 60 2a 60 60 20 63 61 6e 20 62 65 20 75 73 65 64 2e 20 46 | ce..Wilcard.``*``.can.be.used..F |
| 64440 | 6f 72 20 65 78 61 6d 70 6c 65 3a 20 60 60 65 74 68 32 2a 60 60 2e 20 50 72 65 70 65 6e 64 69 6e | or.example:.``eth2*``..Prependin |
| 64460 | 67 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 66 6f 72 20 69 6e 76 65 72 74 65 64 20 6d | g.character.``!``.for.inverted.m |
| 64480 | 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 | atching.criteria.is.also.support |
| 644a0 | 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 21 65 74 68 32 60 60 00 4d 61 74 63 68 20 62 | d..For.example.``!eth2``.Match.b |
| 644c0 | 61 73 65 64 20 6f 6e 20 6f 75 74 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 2e 20 57 69 6c 64 | ased.on.outbound.interface..Wild |
| 644e0 | 63 61 72 64 20 60 60 2a 60 60 20 63 61 6e 20 62 65 20 75 73 65 64 2e 20 46 6f 72 20 65 78 61 6d | card.``*``.can.be.used..For.exam |
| 64500 | 70 6c 65 3a 20 60 60 65 74 68 32 2a 60 60 2e 20 50 72 65 70 65 6e 64 69 6e 67 20 63 68 61 72 61 | ple:.``eth2*``..Prepending.chara |
| 64520 | 63 74 65 72 20 60 60 21 60 60 20 66 6f 72 20 69 6e 76 65 72 74 65 64 20 6d 61 74 63 68 69 6e 67 | cter.``!``.for.inverted.matching |
| 64540 | 20 63 72 69 74 65 72 69 61 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 20 46 6f 72 | .criteria.is.also.supported..For |
| 64560 | 20 65 78 61 6d 70 6c 65 20 60 60 21 65 74 68 32 60 60 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f | .example.``!eth2``.Match.based.o |
| 64580 | 6e 20 6f 75 74 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 2e 20 57 69 6c 64 63 61 72 64 20 60 | n.outbound.interface..Wildcard.` |
| 645a0 | 60 2a 60 60 20 63 61 6e 20 62 65 20 75 73 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 3a 20 60 | `*``.can.be.used..For.example:.` |
| 645c0 | 60 65 74 68 32 2a 60 60 2e 20 50 72 65 70 65 6e 64 69 6e 67 20 74 68 65 20 63 68 61 72 61 63 74 | `eth2*``..Prepending.the.charact |
| 645e0 | 65 72 20 60 60 21 60 60 20 74 6f 20 69 6e 76 65 72 74 20 74 68 65 20 63 72 69 74 65 72 69 61 20 | er.``!``.to.invert.the.criteria. |
| 64600 | 74 6f 20 6d 61 74 63 68 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 20 46 6f 72 20 | to.match.is.also.supported..For. |
| 64620 | 65 78 61 6d 70 6c 65 20 60 60 21 65 74 68 32 60 60 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e | example.``!eth2``.Match.based.on |
| 64640 | 20 70 61 63 6b 65 74 20 6c 65 6e 67 74 68 20 63 72 69 74 65 72 69 61 2e 20 4d 75 6c 74 69 70 6c | .packet.length.criteria..Multipl |
| 64660 | 65 20 76 61 6c 75 65 73 20 66 72 6f 6d 20 31 20 74 6f 20 36 35 35 33 35 20 61 6e 64 20 72 61 6e | e.values.from.1.to.65535.and.ran |
| 64680 | 67 65 73 20 61 72 65 20 73 75 70 70 6f 72 74 65 64 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f | ges.are.supported..Match.based.o |
| 646a0 | 6e 20 70 61 63 6b 65 74 20 74 79 70 65 20 63 72 69 74 65 72 69 61 2e 00 4d 61 74 63 68 20 62 61 | n.packet.type.criteria..Match.ba |
| 646c0 | 73 65 64 20 6f 6e 20 70 72 6f 74 6f 63 6f 6c 20 6e 75 6d 62 65 72 20 6f 72 20 6e 61 6d 65 20 61 | sed.on.protocol.number.or.name.a |
| 646e0 | 73 20 64 65 66 69 6e 65 64 20 69 6e 20 60 60 2f 65 74 63 2f 70 72 6f 74 6f 63 6f 6c 73 60 60 2e | s.defined.in.``/etc/protocols``. |
| 64700 | 20 53 70 65 63 69 61 6c 20 6e 61 6d 65 73 20 61 72 65 20 60 60 61 6c 6c 60 60 20 66 6f 72 20 61 | .Special.names.are.``all``.for.a |
| 64720 | 6c 6c 20 70 72 6f 74 6f 63 6f 6c 73 20 61 6e 64 20 60 60 74 63 70 5f 75 64 70 60 60 20 66 6f 72 | ll.protocols.and.``tcp_udp``.for |
| 64740 | 20 74 63 70 20 61 6e 64 20 75 64 70 20 62 61 73 65 64 20 70 61 63 6b 65 74 73 2e 20 54 68 65 20 | .tcp.and.udp.based.packets..The. |
| 64760 | 60 60 21 60 60 20 6e 65 67 61 74 65 73 20 74 68 65 20 73 65 6c 65 63 74 65 64 20 70 72 6f 74 6f | ``!``.negates.the.selected.proto |
| 64780 | 63 6f 6c 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 72 65 63 65 6e 74 6c 79 20 73 65 65 | col..Match.based.on.recently.see |
| 647a0 | 6e 20 73 6f 75 72 63 65 73 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 73 6f 75 72 63 65 | n.sources..Match.based.on.source |
| 647c0 | 20 61 6e 64 2f 6f 72 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 2e 20 54 68 69 | .and/or.destination.address..Thi |
| 647e0 | 73 20 69 73 20 73 69 6d 69 6c 61 72 20 74 6f 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 67 72 6f 75 | s.is.similar.to.the.network.grou |
| 64800 | 70 73 20 70 61 72 74 2c 20 62 75 74 20 68 65 72 65 20 79 6f 75 20 61 72 65 20 61 62 6c 65 20 74 | ps.part,.but.here.you.are.able.t |
| 64820 | 6f 20 6e 65 67 61 74 65 20 74 68 65 20 6d 61 74 63 68 69 6e 67 20 61 64 64 72 65 73 73 65 73 2e | o.negate.the.matching.addresses. |
| 64840 | 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 45 74 68 65 72 6e 65 74 20 74 79 70 | .Match.based.on.the.Ethernet.typ |
| 64860 | 65 20 6f 66 20 74 68 65 20 70 61 63 6b 65 74 20 77 68 65 6e 20 69 74 20 69 73 20 56 4c 41 4e 20 | e.of.the.packet.when.it.is.VLAN. |
| 64880 | 74 61 67 67 65 64 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 45 74 68 65 72 | tagged..Match.based.on.the.Ether |
| 648a0 | 6e 65 74 20 74 79 70 65 20 6f 66 20 74 68 65 20 70 61 63 6b 65 74 2e 00 4d 61 74 63 68 20 62 61 | net.type.of.the.packet..Match.ba |
| 648c0 | 73 65 64 20 6f 6e 20 74 68 65 20 69 6e 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 20 67 72 6f | sed.on.the.inbound.interface.gro |
| 648e0 | 75 70 2e 20 50 72 65 70 65 6e 64 69 6e 67 20 74 68 65 20 63 68 61 72 61 63 74 65 72 20 60 60 21 | up..Prepending.the.character.``! |
| 64900 | 60 60 20 74 6f 20 69 6e 76 65 72 74 20 74 68 65 20 63 72 69 74 65 72 69 61 20 74 6f 20 6d 61 74 | ``.to.invert.the.criteria.to.mat |
| 64920 | 63 68 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c | ch.is.also.supported..For.exampl |
| 64940 | 65 20 60 60 21 49 46 41 43 45 5f 47 52 4f 55 50 60 60 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f | e.``!IFACE_GROUP``.Match.based.o |
| 64960 | 6e 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 61 76 65 72 61 67 65 20 72 61 74 65 2c 20 73 70 65 63 | n.the.maximum.average.rate,.spec |
| 64980 | 69 66 69 65 64 20 61 73 20 2a 2a 69 6e 74 65 67 65 72 2f 75 6e 69 74 2a 2a 2e 20 46 6f 72 20 65 | ified.as.**integer/unit**..For.e |
| 649a0 | 78 61 6d 70 6c 65 20 2a 2a 35 2f 6d 69 6e 75 74 65 73 2a 2a 00 4d 61 74 63 68 20 62 61 73 65 64 | xample.**5/minutes**.Match.based |
| 649c0 | 20 6f 6e 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 70 61 63 6b 65 74 | .on.the.maximum.number.of.packet |
| 649e0 | 73 20 74 6f 20 61 6c 6c 6f 77 20 69 6e 20 65 78 63 65 73 73 20 6f 66 20 72 61 74 65 2e 00 4d 61 | s.to.allow.in.excess.of.rate..Ma |
| 64a00 | 74 63 68 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 70 61 63 6b 65 74 20 6c 65 6e 67 74 68 2e 20 | tch.based.on.the.packet.length.. |
| 64a20 | 4d 75 6c 74 69 70 6c 65 20 76 61 6c 75 65 73 20 66 72 6f 6d 20 31 20 74 6f 20 36 35 35 33 35 20 | Multiple.values.from.1.to.65535. |
| 64a40 | 61 6e 64 20 72 61 6e 67 65 73 20 61 72 65 20 73 75 70 70 6f 72 74 65 64 2e 00 4d 61 74 63 68 20 | and.ranges.are.supported..Match. |
| 64a60 | 62 61 73 65 64 20 6f 6e 20 74 68 65 20 70 61 63 6b 65 74 20 74 79 70 65 2e 00 4d 61 74 63 68 20 | based.on.the.packet.type..Match. |
| 64a80 | 62 61 73 65 64 20 6f 6e 20 76 6c 61 6e 20 49 44 2e 20 52 61 6e 67 65 20 69 73 20 61 6c 73 6f 20 | based.on.vlan.ID..Range.is.also. |
| 64aa0 | 73 75 70 70 6f 72 74 65 64 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 76 6c 61 6e 20 70 | supported..Match.based.on.vlan.p |
| 64ac0 | 72 69 6f 72 69 74 79 28 70 63 70 29 2e 20 52 61 6e 67 65 20 69 73 20 61 6c 73 6f 20 73 75 70 70 | riority(pcp)..Range.is.also.supp |
| 64ae0 | 6f 72 74 65 64 2e 00 4d 61 74 63 68 20 62 61 73 65 73 20 6f 6e 20 72 65 63 65 6e 74 6c 79 20 73 | orted..Match.bases.on.recently.s |
| 64b00 | 65 65 6e 20 73 6f 75 72 63 65 73 2e 00 4d 61 74 63 68 20 63 72 69 74 65 72 69 61 20 62 61 73 65 | een.sources..Match.criteria.base |
| 64b20 | 64 20 6f 6e 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 6d 61 72 6b 2e 00 4d 61 74 63 68 20 63 72 69 74 | d.on.connection.mark..Match.crit |
| 64b40 | 65 72 69 61 20 62 61 73 65 64 20 6f 6e 20 6e 61 74 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 73 74 61 | eria.based.on.nat.connection.sta |
| 64b60 | 74 75 73 2e 00 4d 61 74 63 68 20 63 72 69 74 65 72 69 61 20 62 61 73 65 64 20 6f 6e 20 73 6f 75 | tus..Match.criteria.based.on.sou |
| 64b80 | 72 63 65 20 61 6e 64 2f 6f 72 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 2e 20 | rce.and/or.destination.address.. |
| 64ba0 | 54 68 69 73 20 69 73 20 73 69 6d 69 6c 61 72 20 74 6f 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 67 | This.is.similar.to.the.network.g |
| 64bc0 | 72 6f 75 70 73 20 70 61 72 74 2c 20 62 75 74 20 68 65 72 65 20 79 6f 75 20 61 72 65 20 61 62 6c | roups.part,.but.here.you.are.abl |
| 64be0 | 65 20 74 6f 20 6e 65 67 61 74 65 20 74 68 65 20 6d 61 74 63 68 69 6e 67 20 61 64 64 72 65 73 73 | e.to.negate.the.matching.address |
| 64c00 | 65 73 2e 00 4d 61 74 63 68 20 63 72 69 74 65 72 69 61 20 62 61 73 65 64 20 6f 6e 20 73 6f 75 72 | es..Match.criteria.based.on.sour |
| 64c20 | 63 65 20 61 6e 64 2f 6f 72 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 6d 61 63 2d 61 64 64 72 65 73 | ce.and/or.destination.mac-addres |
| 64c40 | 73 2e 00 4d 61 74 63 68 20 64 6f 6d 61 69 6e 20 6e 61 6d 65 00 4d 61 74 63 68 20 66 69 72 65 77 | s..Match.domain.name.Match.firew |
| 64c60 | 61 6c 6c 20 6d 61 72 6b 20 76 61 6c 75 65 00 4d 61 74 63 68 20 68 6f 70 2d 6c 69 6d 69 74 20 70 | all.mark.value.Match.hop-limit.p |
| 64c80 | 61 72 61 6d 65 74 65 72 2c 20 77 68 65 72 65 20 27 65 71 27 20 73 74 61 6e 64 73 20 66 6f 72 20 | arameter,.where.'eq'.stands.for. |
| 64ca0 | 27 65 71 75 61 6c 27 3b 20 27 67 74 27 20 73 74 61 6e 64 73 20 66 6f 72 20 27 67 72 65 61 74 65 | 'equal';.'gt'.stands.for.'greate |
| 64cc0 | 72 20 74 68 61 6e 27 2c 20 61 6e 64 20 27 6c 74 27 20 73 74 61 6e 64 73 20 66 6f 72 20 27 6c 65 | r.than',.and.'lt'.stands.for.'le |
| 64ce0 | 73 73 20 74 68 61 6e 27 2e 00 4d 61 74 63 68 20 6c 6f 63 61 6c 20 70 72 65 66 65 72 65 6e 63 65 | ss.than'..Match.local.preference |
| 64d00 | 2e 00 4d 61 74 63 68 20 72 6f 75 74 65 20 6d 65 74 72 69 63 2e 00 4d 61 74 63 68 20 74 68 65 20 | ..Match.route.metric..Match.the. |
| 64d20 | 68 6f 70 2d 6c 69 6d 69 74 20 70 61 72 61 6d 65 74 65 72 2c 20 77 68 65 72 65 20 27 65 71 27 20 | hop-limit.parameter,.where.'eq'. |
| 64d40 | 73 74 61 6e 64 73 20 66 6f 72 20 27 65 71 75 61 6c 27 3b 20 27 67 74 27 20 73 74 61 6e 64 73 20 | stands.for.'equal';.'gt'.stands. |
| 64d60 | 66 6f 72 20 27 67 72 65 61 74 65 72 20 74 68 61 6e 27 2c 20 61 6e 64 20 27 6c 74 27 20 73 74 61 | for.'greater.than',.and.'lt'.sta |
| 64d80 | 6e 64 73 20 66 6f 72 20 27 6c 65 73 73 20 74 68 61 6e 27 2e 00 4d 61 74 63 68 20 74 68 65 20 74 | nds.for.'less.than'..Match.the.t |
| 64da0 | 69 6d 65 20 74 6f 20 6c 69 76 65 20 70 61 72 61 6d 65 74 65 72 2c 20 77 68 65 72 65 20 27 65 71 | ime.to.live.parameter,.where.'eq |
| 64dc0 | 27 20 73 74 61 6e 64 73 20 66 6f 72 20 27 65 71 75 61 6c 27 3b 20 27 67 74 27 20 73 74 61 6e 64 | '.stands.for.'equal';.'gt'.stand |
| 64de0 | 73 20 66 6f 72 20 27 67 72 65 61 74 65 72 20 74 68 61 6e 27 2c 20 61 6e 64 20 27 6c 74 27 20 73 | s.for.'greater.than',.and.'lt'.s |
| 64e00 | 74 61 6e 64 73 20 66 6f 72 20 27 6c 65 73 73 20 74 68 61 6e 27 2e 00 4d 61 74 63 68 20 74 69 6d | tands.for.'less.than'..Match.tim |
| 64e20 | 65 20 74 6f 20 6c 69 76 65 20 70 61 72 61 6d 65 74 65 72 2c 20 77 68 65 72 65 20 27 65 71 27 20 | e.to.live.parameter,.where.'eq'. |
| 64e40 | 73 74 61 6e 64 73 20 66 6f 72 20 27 65 71 75 61 6c 27 3b 20 27 67 74 27 20 73 74 61 6e 64 73 20 | stands.for.'equal';.'gt'.stands. |
| 64e60 | 66 6f 72 20 27 67 72 65 61 74 65 72 20 74 68 61 6e 27 2c 20 61 6e 64 20 27 6c 74 27 20 73 74 61 | for.'greater.than',.and.'lt'.sta |
| 64e80 | 6e 64 73 20 66 6f 72 20 27 6c 65 73 73 20 74 68 61 6e 27 2e 00 4d 61 74 63 68 20 77 68 65 6e 20 | nds.for.'less.than'..Match.when. |
| 64ea0 | 27 63 6f 75 6e 74 27 20 61 6d 6f 75 6e 74 20 6f 66 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 61 72 | 'count'.amount.of.connections.ar |
| 64ec0 | 65 20 73 65 65 6e 20 77 69 74 68 69 6e 20 27 74 69 6d 65 27 2e 20 54 68 65 73 65 20 6d 61 74 63 | e.seen.within.'time'..These.matc |
| 64ee0 | 68 69 6e 67 20 63 72 69 74 65 72 69 61 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 62 6c 6f | hing.criteria.can.be.used.to.blo |
| 64f00 | 63 6b 20 62 72 75 74 65 2d 66 6f 72 63 65 20 61 74 74 65 6d 70 74 73 2e 00 4d 61 74 63 68 69 6e | ck.brute-force.attempts..Matchin |
| 64f20 | 67 20 63 72 69 74 65 72 69 61 00 4d 61 74 63 68 69 6e 67 20 74 72 61 66 66 69 63 00 4d 61 78 69 | g.criteria.Matching.traffic.Maxi |
| 64f40 | 6d 75 6d 20 41 2d 4d 53 44 55 20 6c 65 6e 67 74 68 20 33 38 33 39 20 28 64 65 66 61 75 6c 74 29 | mum.A-MSDU.length.3839.(default) |
| 64f60 | 20 6f 72 20 37 39 33 35 20 6f 63 74 65 74 73 00 4d 61 78 69 6d 75 6d 20 54 72 61 6e 73 6d 69 73 | .or.7935.octets.Maximum.Transmis |
| 64f80 | 73 69 6f 6e 20 55 6e 69 74 20 28 4d 54 55 29 20 28 64 65 66 61 75 6c 74 3a 20 2a 2a 31 34 33 36 | sion.Unit.(MTU).(default:.**1436 |
| 64fa0 | 2a 2a 29 00 4d 61 78 69 6d 75 6d 20 54 72 61 6e 73 6d 69 73 73 69 6f 6e 20 55 6e 69 74 20 28 4d | **).Maximum.Transmission.Unit.(M |
| 64fc0 | 54 55 29 20 28 64 65 66 61 75 6c 74 3a 20 2a 2a 31 34 39 32 2a 2a 29 00 4d 61 78 69 6d 75 6d 20 | TU).(default:.**1492**).Maximum. |
| 64fe0 | 54 72 61 6e 73 6d 69 73 73 69 6f 6e 20 55 6e 69 74 20 28 4d 54 55 29 20 28 64 65 66 61 75 6c 74 | Transmission.Unit.(MTU).(default |
| 65000 | 3a 20 2a 2a 31 35 30 30 2a 2a 29 00 4d 61 78 69 6d 75 6d 20 61 63 63 65 70 74 65 64 20 63 6f 6e | :.**1500**).Maximum.accepted.con |
| 65020 | 6e 65 63 74 69 6f 6e 20 72 61 74 65 20 28 65 2e 67 2e 20 31 2f 6d 69 6e 2c 20 36 30 2f 73 65 63 | nection.rate.(e.g..1/min,.60/sec |
| 65040 | 29 00 4d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 44 4e 53 20 63 61 63 68 65 20 65 6e | ).Maximum.number.of.DNS.cache.en |
| 65060 | 74 72 69 65 73 2e 20 31 20 6d 69 6c 6c 69 6f 6e 20 70 65 72 20 43 50 55 20 63 6f 72 65 20 77 69 | tries..1.million.per.CPU.core.wi |
| 65080 | 6c 6c 20 67 65 6e 65 72 61 6c 6c 79 20 73 75 66 66 69 63 65 20 66 6f 72 20 6d 6f 73 74 20 69 6e | ll.generally.suffice.for.most.in |
| 650a0 | 73 74 61 6c 6c 61 74 69 6f 6e 73 2e 00 4d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 49 | stallations..Maximum.number.of.I |
| 650c0 | 50 76 34 20 6e 61 6d 65 73 65 72 76 65 72 73 00 4d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f | Pv4.nameservers.Maximum.number.o |
| 650e0 | 66 20 61 75 74 68 65 6e 74 69 63 61 74 6f 72 20 70 72 6f 63 65 73 73 65 73 20 74 6f 20 73 70 61 | f.authenticator.processes.to.spa |
| 65100 | 77 6e 2e 20 49 66 20 79 6f 75 20 73 74 61 72 74 20 74 6f 6f 20 66 65 77 20 53 71 75 69 64 20 77 | wn..If.you.start.too.few.Squid.w |
| 65120 | 69 6c 6c 20 68 61 76 65 20 74 6f 20 77 61 69 74 20 66 6f 72 20 74 68 65 6d 20 74 6f 20 70 72 6f | ill.have.to.wait.for.them.to.pro |
| 65140 | 63 65 73 73 20 61 20 62 61 63 6b 6c 6f 67 20 6f 66 20 63 72 65 64 65 6e 74 69 61 6c 20 76 65 72 | cess.a.backlog.of.credential.ver |
| 65160 | 69 66 69 63 61 74 69 6f 6e 73 2c 20 73 6c 6f 77 69 6e 67 20 69 74 20 64 6f 77 6e 2e 20 57 68 65 | ifications,.slowing.it.down..Whe |
| 65180 | 6e 20 70 61 73 73 77 6f 72 64 20 76 65 72 69 66 69 63 61 74 69 6f 6e 73 20 61 72 65 20 64 6f 6e | n.password.verifications.are.don |
| 651a0 | 65 20 76 69 61 20 61 20 28 73 6c 6f 77 29 20 6e 65 74 77 6f 72 6b 20 79 6f 75 20 61 72 65 20 6c | e.via.a.(slow).network.you.are.l |
| 651c0 | 69 6b 65 6c 79 20 74 6f 20 6e 65 65 64 20 6c 6f 74 73 20 6f 66 20 61 75 74 68 65 6e 74 69 63 61 | ikely.to.need.lots.of.authentica |
| 651e0 | 74 6f 72 20 70 72 6f 63 65 73 73 65 73 2e 00 4d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 | tor.processes..Maximum.number.of |
| 65200 | 20 63 6f 6e 63 75 72 72 65 6e 74 20 73 65 73 73 69 6f 6e 20 73 74 61 72 74 20 61 74 74 65 6d 70 | .concurrent.session.start.attemp |
| 65220 | 74 73 00 4d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 73 74 61 74 69 6f 6e 73 20 61 6c | ts.Maximum.number.of.stations.al |
| 65240 | 6c 6f 77 65 64 20 69 6e 20 73 74 61 74 69 6f 6e 20 74 61 62 6c 65 2e 20 4e 65 77 20 73 74 61 74 | lowed.in.station.table..New.stat |
| 65260 | 69 6f 6e 73 20 77 69 6c 6c 20 62 65 20 72 65 6a 65 63 74 65 64 20 61 66 74 65 72 20 74 68 65 20 | ions.will.be.rejected.after.the. |
| 65280 | 73 74 61 74 69 6f 6e 20 74 61 62 6c 65 20 69 73 20 66 75 6c 6c 2e 20 49 45 45 45 20 38 30 32 2e | station.table.is.full..IEEE.802. |
| 652a0 | 31 31 20 68 61 73 20 61 20 6c 69 6d 69 74 20 6f 66 20 32 30 30 37 20 64 69 66 66 65 72 65 6e 74 | 11.has.a.limit.of.2007.different |
| 652c0 | 20 61 73 73 6f 63 69 61 74 69 6f 6e 20 49 44 73 2c 20 73 6f 20 74 68 69 73 20 6e 75 6d 62 65 72 | .association.IDs,.so.this.number |
| 652e0 | 20 73 68 6f 75 6c 64 20 6e 6f 74 20 62 65 20 6c 61 72 67 65 72 20 74 68 61 6e 20 74 68 61 74 2e | .should.not.be.larger.than.that. |
| 65300 | 00 4d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 74 69 6d 65 73 20 61 6e 20 65 78 70 69 | .Maximum.number.of.times.an.expi |
| 65320 | 72 65 64 20 72 65 63 6f 72 64 e2 80 99 73 20 54 54 4c 20 69 73 20 65 78 74 65 6e 64 65 64 20 62 | red.record...s.TTL.is.extended.b |
| 65340 | 79 20 33 30 73 20 77 68 65 6e 20 73 65 72 76 69 6e 67 20 73 74 61 6c 65 2e 20 45 78 74 65 6e 73 | y.30s.when.serving.stale..Extens |
| 65360 | 69 6f 6e 20 6f 6e 6c 79 20 6f 63 63 75 72 73 20 69 66 20 61 20 72 65 63 6f 72 64 20 63 61 6e 6e | ion.only.occurs.if.a.record.cann |
| 65380 | 6f 74 20 62 65 20 72 65 66 72 65 73 68 65 64 2e 20 41 20 76 61 6c 75 65 20 6f 66 20 30 20 6d 65 | ot.be.refreshed..A.value.of.0.me |
| 653a0 | 61 6e 73 20 74 68 65 20 53 65 72 76 65 20 53 74 61 6c 65 20 6d 65 63 68 61 6e 69 73 6d 20 69 73 | ans.the.Serve.Stale.mechanism.is |
| 653c0 | 20 6e 6f 74 20 75 73 65 64 2e 20 54 6f 20 61 6c 6c 6f 77 20 72 65 63 6f 72 64 73 20 62 65 63 6f | .not.used..To.allow.records.beco |
| 653e0 | 6d 69 6e 67 20 73 74 61 6c 65 20 74 6f 20 62 65 20 73 65 72 76 65 64 20 66 6f 72 20 61 6e 20 68 | ming.stale.to.be.served.for.an.h |
| 65400 | 6f 75 72 2c 20 75 73 65 20 61 20 76 61 6c 75 65 20 6f 66 20 31 32 30 2e 00 4d 61 78 69 6d 75 6d | our,.use.a.value.of.120..Maximum |
| 65420 | 20 6e 75 6d 62 65 72 20 6f 66 20 74 72 69 65 73 20 74 6f 20 73 65 6e 64 20 41 63 63 65 73 73 2d | .number.of.tries.to.send.Access- |
| 65440 | 52 65 71 75 65 73 74 2f 41 63 63 6f 75 6e 74 69 6e 67 2d 52 65 71 75 65 73 74 20 71 75 65 72 69 | Request/Accounting-Request.queri |
| 65460 | 65 73 00 4d 65 64 69 75 6d 00 4d 65 6d 62 65 72 20 49 6e 74 65 72 66 61 63 65 73 00 4d 65 6d 62 | es.Medium.Member.Interfaces.Memb |
| 65480 | 65 72 20 69 6e 74 65 72 66 61 63 65 73 20 60 65 74 68 31 60 20 61 6e 64 20 56 4c 41 4e 20 31 30 | er.interfaces.`eth1`.and.VLAN.10 |
| 654a0 | 20 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 60 65 74 68 32 60 00 4d 65 73 73 61 67 65 73 20 67 65 | .on.interface.`eth2`.Messages.ge |
| 654c0 | 6e 65 72 61 74 65 64 20 69 6e 74 65 72 6e 61 6c 6c 79 20 62 79 20 73 79 73 6c 6f 67 64 00 4d 65 | nerated.internally.by.syslogd.Me |
| 654e0 | 74 72 69 73 20 76 65 72 73 69 6f 6e 2c 20 74 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 60 60 32 | tris.version,.the.default.is.``2 |
| 65500 | 60 60 00 4d 69 63 72 6f 73 6f 66 74 20 57 69 6e 64 6f 77 73 20 28 31 30 2b 29 00 4d 69 63 72 6f | ``.Microsoft.Windows.(10+).Micro |
| 65520 | 73 6f 66 74 20 57 69 6e 64 6f 77 73 20 65 78 70 65 63 74 73 20 74 68 65 20 73 65 72 76 65 72 20 | soft.Windows.expects.the.server. |
| 65540 | 6e 61 6d 65 20 74 6f 20 62 65 20 61 6c 73 6f 20 75 73 65 64 20 69 6e 20 74 68 65 20 73 65 72 76 | name.to.be.also.used.in.the.serv |
| 65560 | 65 72 27 73 20 63 65 72 74 69 66 69 63 61 74 65 20 63 6f 6d 6d 6f 6e 20 6e 61 6d 65 2c 20 73 6f | er's.certificate.common.name,.so |
| 65580 | 20 69 74 27 73 20 62 65 73 74 20 74 6f 20 75 73 65 20 74 68 69 73 20 44 4e 53 20 6e 61 6d 65 20 | .it's.best.to.use.this.DNS.name. |
| 655a0 | 66 6f 72 20 79 6f 75 72 20 56 50 4e 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 4d 69 6e 20 61 6e 64 | for.your.VPN.connection..Min.and |
| 655c0 | 20 6d 61 78 20 69 6e 74 65 72 76 61 6c 73 20 62 65 74 77 65 65 6e 20 75 6e 73 6f 6c 69 63 69 74 | .max.intervals.between.unsolicit |
| 655e0 | 65 64 20 6d 75 6c 74 69 63 61 73 74 20 52 41 73 00 4d 69 6e 69 6d 75 6d 20 66 69 72 65 77 61 6c | ed.multicast.RAs.Minimum.firewal |
| 65600 | 6c 20 72 75 6c 65 73 65 74 20 69 73 20 70 72 6f 76 69 64 65 64 2c 20 77 68 69 63 68 20 69 6e 63 | l.ruleset.is.provided,.which.inc |
| 65620 | 6c 75 64 65 73 20 73 6f 6d 65 20 66 69 6c 74 65 72 69 6e 67 20 72 75 6c 65 73 2c 20 61 6e 64 20 | ludes.some.filtering.rules,.and. |
| 65640 | 61 70 70 72 6f 70 72 69 61 74 65 20 72 75 6c 65 73 20 66 6f 72 20 75 73 69 6e 67 20 66 6c 6f 77 | appropriate.rules.for.using.flow |
| 65660 | 74 61 62 6c 65 20 6f 66 66 6c 6f 61 64 20 63 61 70 61 62 69 6c 69 74 69 65 73 2e 00 4d 69 6e 75 | table.offload.capabilities..Minu |
| 65680 | 6d 75 6d 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 65 74 20 69 73 20 70 72 6f 76 69 64 65 64 | mum.firewall.ruleset.is.provided |
| 656a0 | 2c 20 77 68 69 63 68 20 69 6e 63 6c 75 64 65 73 20 73 6f 6d 65 20 66 69 6c 74 65 72 69 6e 67 20 | ,.which.includes.some.filtering. |
| 656c0 | 72 75 6c 65 73 2c 20 61 6e 64 20 61 70 70 72 6f 70 69 61 74 65 20 72 75 6c 65 73 20 66 6f 72 20 | rules,.and.appropiate.rules.for. |
| 656e0 | 75 73 69 6e 67 20 66 6c 6f 77 74 61 62 6c 65 20 6f 66 66 6c 6f 61 64 20 63 61 70 61 62 69 6c 69 | using.flowtable.offload.capabili |
| 65700 | 74 69 65 73 2e 00 4d 6f 64 69 66 79 20 74 68 65 20 6a 6f 69 6e 2f 70 72 75 6e 65 20 69 6e 74 65 | ties..Modify.the.join/prune.inte |
| 65720 | 72 76 61 6c 20 74 68 61 74 20 50 49 4d 20 75 73 65 73 20 74 6f 20 74 68 65 20 6e 65 77 20 76 61 | rval.that.PIM.uses.to.the.new.va |
| 65740 | 6c 75 65 2e 20 54 69 6d 65 20 69 73 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 73 65 63 6f 6e 64 | lue..Time.is.specified.in.second |
| 65760 | 73 2e 00 4d 6f 64 69 66 79 20 74 68 65 20 74 69 6d 65 20 6f 75 74 20 76 61 6c 75 65 20 66 6f 72 | s..Modify.the.time.out.value.for |
| 65780 | 20 61 20 53 2c 47 20 66 6c 6f 77 20 66 72 6f 6d 20 31 2d 36 35 35 33 35 20 73 65 63 6f 6e 64 73 | .a.S,G.flow.from.1-65535.seconds |
| 657a0 | 20 61 74 20 3a 61 62 62 72 3a 60 52 50 20 28 52 65 6e 64 65 7a 76 6f 75 73 20 50 6f 69 6e 74 29 | .at.:abbr:`RP.(Rendezvous.Point) |
| 657c0 | 60 2e 20 54 68 65 20 6e 6f 72 6d 61 6c 20 6b 65 65 70 61 6c 69 76 65 20 70 65 72 69 6f 64 20 66 | `..The.normal.keepalive.period.f |
| 657e0 | 6f 72 20 74 68 65 20 4b 41 54 28 53 2c 47 29 20 64 65 66 61 75 6c 74 73 20 74 6f 20 32 31 30 20 | or.the.KAT(S,G).defaults.to.210. |
| 65800 | 73 65 63 6f 6e 64 73 2e 20 48 6f 77 65 76 65 72 2c 20 61 74 20 74 68 65 20 3a 61 62 62 72 3a 60 | seconds..However,.at.the.:abbr:` |
| 65820 | 52 50 20 28 52 65 6e 64 65 7a 76 6f 75 73 20 50 6f 69 6e 74 29 60 2c 20 74 68 65 20 6b 65 65 70 | RP.(Rendezvous.Point)`,.the.keep |
| 65840 | 61 6c 69 76 65 20 70 65 72 69 6f 64 20 6d 75 73 74 20 62 65 20 61 74 20 6c 65 61 73 74 20 74 68 | alive.period.must.be.at.least.th |
| 65860 | 65 20 52 65 67 69 73 74 65 72 5f 53 75 70 70 72 65 73 73 69 6f 6e 5f 54 69 6d 65 2c 20 6f 72 20 | e.Register_Suppression_Time,.or. |
| 65880 | 74 68 65 20 52 50 20 6d 61 79 20 74 69 6d 65 20 6f 75 74 20 74 68 65 20 28 53 2c 47 29 20 73 74 | the.RP.may.time.out.the.(S,G).st |
| 658a0 | 61 74 65 20 62 65 66 6f 72 65 20 74 68 65 20 6e 65 78 74 20 4e 75 6c 6c 2d 52 65 67 69 73 74 65 | ate.before.the.next.Null-Registe |
| 658c0 | 72 20 61 72 72 69 76 65 73 2e 20 54 68 75 73 2c 20 74 68 65 20 4b 41 54 28 53 2c 47 29 20 69 73 | r.arrives..Thus,.the.KAT(S,G).is |
| 658e0 | 20 73 65 74 20 74 6f 20 6d 61 78 28 4b 65 65 70 61 6c 69 76 65 5f 50 65 72 69 6f 64 2c 20 52 50 | .set.to.max(Keepalive_Period,.RP |
| 65900 | 5f 4b 65 65 70 61 6c 69 76 65 5f 50 65 72 69 6f 64 29 20 77 68 65 6e 20 61 20 52 65 67 69 73 74 | _Keepalive_Period).when.a.Regist |
| 65920 | 65 72 2d 53 74 6f 70 20 69 73 20 73 65 6e 74 2e 00 4d 6f 64 69 66 79 20 74 68 65 20 74 69 6d 65 | er-Stop.is.sent..Modify.the.time |
| 65940 | 20 6f 75 74 20 76 61 6c 75 65 20 66 6f 72 20 61 20 53 2c 47 20 66 6c 6f 77 20 66 72 6f 6d 20 31 | .out.value.for.a.S,G.flow.from.1 |
| 65960 | 2d 36 35 35 33 35 20 73 65 63 6f 6e 64 73 2e 20 49 66 20 63 68 6f 6f 73 69 6e 67 20 61 20 76 61 | -65535.seconds..If.choosing.a.va |
| 65980 | 6c 75 65 20 62 65 6c 6f 77 20 33 31 20 73 65 63 6f 6e 64 73 20 62 65 20 61 77 61 72 65 20 74 68 | lue.below.31.seconds.be.aware.th |
| 659a0 | 61 74 20 73 6f 6d 65 20 68 61 72 64 77 61 72 65 20 70 6c 61 74 66 6f 72 6d 73 20 63 61 6e 6e 6f | at.some.hardware.platforms.canno |
| 659c0 | 74 20 73 65 65 20 64 61 74 61 20 66 6c 6f 77 69 6e 67 20 69 6e 20 62 65 74 74 65 72 20 74 68 61 | t.see.data.flowing.in.better.tha |
| 659e0 | 6e 20 33 30 20 73 65 63 6f 6e 64 20 63 68 75 6e 6b 73 2e 00 4d 6f 64 69 66 79 20 74 68 65 20 74 | n.30.second.chunks..Modify.the.t |
| 65a00 | 69 6d 65 20 74 68 61 74 20 70 69 6d 20 77 69 6c 6c 20 72 65 67 69 73 74 65 72 20 73 75 70 70 72 | ime.that.pim.will.register.suppr |
| 65a20 | 65 73 73 20 61 20 46 48 52 20 77 69 6c 6c 20 73 65 6e 64 20 72 65 67 69 73 74 65 72 20 6e 6f 74 | ess.a.FHR.will.send.register.not |
| 65a40 | 69 66 69 63 61 74 69 6f 6e 73 20 74 6f 20 74 68 65 20 6b 65 72 6e 65 6c 2e 00 4d 6f 6e 69 74 6f | ifications.to.the.kernel..Monito |
| 65a60 | 72 20 6d 6f 64 65 20 6c 65 74 73 20 74 68 65 20 73 79 73 74 65 6d 20 70 61 73 73 69 76 65 6c 79 | r.mode.lets.the.system.passively |
| 65a80 | 20 6d 6f 6e 69 74 6f 72 20 77 69 72 65 6c 65 73 73 20 74 72 61 66 66 69 63 00 4d 6f 6e 69 74 6f | .monitor.wireless.traffic.Monito |
| 65aa0 | 72 2c 20 74 68 65 20 73 79 73 74 65 6d 20 70 61 73 73 69 76 65 6c 79 20 6d 6f 6e 69 74 6f 72 73 | r,.the.system.passively.monitors |
| 65ac0 | 20 61 6e 79 20 6b 69 6e 64 20 6f 66 20 77 69 72 65 6c 65 73 73 20 74 72 61 66 66 69 63 00 4d 6f | .any.kind.of.wireless.traffic.Mo |
| 65ae0 | 6e 69 74 6f 72 69 6e 67 00 4d 6f 6e 69 74 6f 72 69 6e 67 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 | nitoring.Monitoring.functionalit |
| 65b00 | 79 20 77 69 74 68 20 60 60 74 65 6c 65 67 72 61 66 60 60 20 61 6e 64 20 60 60 49 6e 66 6c 75 78 | y.with.``telegraf``.and.``Influx |
| 65b20 | 44 42 20 32 60 60 20 69 73 20 70 72 6f 76 69 64 65 64 2e 20 54 65 6c 65 67 72 61 66 20 69 73 20 | DB.2``.is.provided..Telegraf.is. |
| 65b40 | 74 68 65 20 6f 70 65 6e 20 73 6f 75 72 63 65 20 73 65 72 76 65 72 20 61 67 65 6e 74 20 74 6f 20 | the.open.source.server.agent.to. |
| 65b60 | 68 65 6c 70 20 79 6f 75 20 63 6f 6c 6c 65 63 74 20 6d 65 74 72 69 63 73 2c 20 65 76 65 6e 74 73 | help.you.collect.metrics,.events |
| 65b80 | 20 61 6e 64 20 6c 6f 67 73 20 66 72 6f 6d 20 79 6f 75 72 20 72 6f 75 74 65 72 73 2e 00 4d 6f 72 | .and.logs.from.your.routers..Mor |
| 65ba0 | 65 20 64 65 74 61 69 6c 73 20 61 62 6f 75 74 20 74 68 65 20 49 50 73 65 63 20 61 6e 64 20 56 54 | e.details.about.the.IPsec.and.VT |
| 65bc0 | 49 20 69 73 73 75 65 20 61 6e 64 20 6f 70 74 69 6f 6e 20 64 69 73 61 62 6c 65 2d 72 6f 75 74 65 | I.issue.and.option.disable-route |
| 65be0 | 2d 61 75 74 6f 69 6e 73 74 61 6c 6c 20 68 74 74 70 73 3a 2f 2f 62 6c 6f 67 2e 76 79 6f 73 2e 69 | -autoinstall.https://blog.vyos.i |
| 65c00 | 6f 2f 76 79 6f 73 2d 31 2d 64 6f 74 2d 32 2d 30 2d 64 65 76 65 6c 6f 70 6d 65 6e 74 2d 6e 65 77 | o/vyos-1-dot-2-0-development-new |
| 65c20 | 73 2d 69 6e 2d 6a 75 6c 79 00 4d 6f 73 74 20 6f 70 65 72 61 74 69 6e 67 20 73 79 73 74 65 6d 73 | s-in-july.Most.operating.systems |
| 65c40 | 20 69 6e 63 6c 75 64 65 20 6e 61 74 69 76 65 20 63 6c 69 65 6e 74 20 73 75 70 70 6f 72 74 20 66 | .include.native.client.support.f |
| 65c60 | 6f 72 20 49 50 73 65 63 20 49 4b 45 76 32 20 56 50 4e 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2c 20 | or.IPsec.IKEv2.VPN.connections,. |
| 65c80 | 61 6e 64 20 6f 74 68 65 72 73 20 74 79 70 69 63 61 6c 6c 79 20 68 61 76 65 20 61 6e 20 61 70 70 | and.others.typically.have.an.app |
| 65ca0 | 20 6f 72 20 61 64 64 2d 6f 6e 20 70 61 63 6b 61 67 65 20 77 68 69 63 68 20 61 64 64 73 20 74 68 | .or.add-on.package.which.adds.th |
| 65cc0 | 65 20 63 61 70 61 62 69 6c 69 74 79 2e 20 54 68 69 73 20 73 65 63 74 69 6f 6e 20 63 6f 76 65 72 | e.capability..This.section.cover |
| 65ce0 | 73 20 49 50 73 65 63 20 49 4b 45 76 32 20 63 6c 69 65 6e 74 20 63 6f 6e 66 69 67 75 72 61 74 69 | s.IPsec.IKEv2.client.configurati |
| 65d00 | 6f 6e 20 66 6f 72 20 57 69 6e 64 6f 77 73 20 31 30 2e 00 4d 6f 75 6e 74 20 61 20 76 6f 6c 75 6d | on.for.Windows.10..Mount.a.volum |
| 65d20 | 65 20 69 6e 74 6f 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 00 4d 75 6c 74 69 00 4d 75 6c 74 69 | e.into.the.container.Multi.Multi |
| 65d40 | 2d 63 6c 69 65 6e 74 20 73 65 72 76 65 72 20 69 73 20 74 68 65 20 6d 6f 73 74 20 70 6f 70 75 6c | -client.server.is.the.most.popul |
| 65d60 | 61 72 20 4f 70 65 6e 56 50 4e 20 6d 6f 64 65 20 6f 6e 20 72 6f 75 74 65 72 73 2e 20 49 74 20 61 | ar.OpenVPN.mode.on.routers..It.a |
| 65d80 | 6c 77 61 79 73 20 75 73 65 73 20 78 2e 35 30 39 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 | lways.uses.x.509.authentication. |
| 65da0 | 61 6e 64 20 74 68 65 72 65 66 6f 72 65 20 72 65 71 75 69 72 65 73 20 61 20 50 4b 49 20 73 65 74 | and.therefore.requires.a.PKI.set |
| 65dc0 | 75 70 2e 20 52 65 66 65 72 20 74 68 69 73 20 74 6f 70 69 63 20 3a 72 65 66 3a 60 63 6f 6e 66 69 | up..Refer.this.topic.:ref:`confi |
| 65de0 | 67 75 72 61 74 69 6f 6e 2f 70 6b 69 2f 69 6e 64 65 78 3a 70 6b 69 60 20 74 6f 20 67 65 6e 65 72 | guration/pki/index:pki`.to.gener |
| 65e00 | 61 74 65 20 61 20 43 41 20 63 65 72 74 69 66 69 63 61 74 65 2c 20 61 20 73 65 72 76 65 72 20 63 | ate.a.CA.certificate,.a.server.c |
| 65e20 | 65 72 74 69 66 69 63 61 74 65 20 61 6e 64 20 6b 65 79 2c 20 61 20 63 65 72 74 69 66 69 63 61 74 | ertificate.and.key,.a.certificat |
| 65e40 | 65 20 72 65 76 6f 63 61 74 69 6f 6e 20 6c 69 73 74 2c 20 61 20 44 69 66 66 69 65 2d 48 65 6c 6c | e.revocation.list,.a.Diffie-Hell |
| 65e60 | 6d 61 6e 20 6b 65 79 20 65 78 63 68 61 6e 67 65 20 70 61 72 61 6d 65 74 65 72 73 20 66 69 6c 65 | man.key.exchange.parameters.file |
| 65e80 | 2e 20 59 6f 75 20 64 6f 20 6e 6f 74 20 6e 65 65 64 20 63 6c 69 65 6e 74 20 63 65 72 74 69 66 69 | ..You.do.not.need.client.certifi |
| 65ea0 | 63 61 74 65 73 20 61 6e 64 20 6b 65 79 73 20 66 6f 72 20 74 68 65 20 73 65 72 76 65 72 20 73 65 | cates.and.keys.for.the.server.se |
| 65ec0 | 74 75 70 2e 00 4d 75 6c 74 69 2d 63 6c 69 65 6e 74 20 73 65 72 76 65 72 20 69 73 20 74 68 65 20 | tup..Multi-client.server.is.the. |
| 65ee0 | 6d 6f 73 74 20 70 6f 70 75 6c 61 72 20 4f 70 65 6e 56 50 4e 20 6d 6f 64 65 20 6f 6e 20 72 6f 75 | most.popular.OpenVPN.mode.on.rou |
| 65f00 | 74 65 72 73 2e 20 49 74 20 61 6c 77 61 79 73 20 75 73 65 73 20 78 2e 35 30 39 20 61 75 74 68 65 | ters..It.always.uses.x.509.authe |
| 65f20 | 6e 74 69 63 61 74 69 6f 6e 20 61 6e 64 20 74 68 65 72 65 66 6f 72 65 20 72 65 71 75 69 72 65 73 | ntication.and.therefore.requires |
| 65f40 | 20 61 20 50 4b 49 20 73 65 74 75 70 2e 20 52 65 66 65 72 20 74 68 69 73 20 74 6f 70 69 63 20 3a | .a.PKI.setup..Refer.this.topic.: |
| 65f60 | 72 65 66 3a 60 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 70 6b 69 2f 69 6e 64 65 78 3a 70 6b 69 | ref:`configuration/pki/index:pki |
| 65f80 | 60 20 74 6f 20 67 65 6e 65 72 61 74 65 20 61 20 43 41 20 63 65 72 74 69 66 69 63 61 74 65 2c 20 | `.to.generate.a.CA.certificate,. |
| 65fa0 | 61 20 73 65 72 76 65 72 20 63 65 72 74 69 66 69 63 61 74 65 20 61 6e 64 20 6b 65 79 2c 20 61 20 | a.server.certificate.and.key,.a. |
| 65fc0 | 63 65 72 74 69 66 69 63 61 74 65 20 72 65 76 6f 63 61 74 69 6f 6e 20 6c 69 73 74 2c 20 61 6e 64 | certificate.revocation.list,.and |
| 65fe0 | 20 61 20 44 69 66 66 69 65 2d 48 65 6c 6c 6d 61 6e 20 6b 65 79 20 65 78 63 68 61 6e 67 65 20 70 | .a.Diffie-Hellman.key.exchange.p |
| 66000 | 61 72 61 6d 65 74 65 72 73 20 66 69 6c 65 2e 20 59 6f 75 20 64 6f 20 6e 6f 74 20 6e 65 65 64 20 | arameters.file..You.do.not.need. |
| 66020 | 63 6c 69 65 6e 74 20 63 65 72 74 69 66 69 63 61 74 65 73 20 61 6e 64 20 6b 65 79 73 20 66 6f 72 | client.certificates.and.keys.for |
| 66040 | 20 74 68 65 20 73 65 72 76 65 72 20 73 65 74 75 70 2e 00 4d 75 6c 74 69 2d 66 61 63 74 6f 72 20 | .the.server.setup..Multi-factor. |
| 66060 | 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 00 4d 75 6c 74 69 2d 68 6f 6d 65 64 2e 20 49 6e 20 61 | Authentication.Multi-homed..In.a |
| 66080 | 20 6d 75 6c 74 69 2d 68 6f 6d 65 64 20 6e 65 74 77 6f 72 6b 20 65 6e 76 69 72 6f 6e 6d 65 6e 74 | .multi-homed.network.environment |
| 660a0 | 2c 20 74 68 65 20 4e 41 54 36 36 20 64 65 76 69 63 65 20 63 6f 6e 6e 65 63 74 73 20 74 6f 20 61 | ,.the.NAT66.device.connects.to.a |
| 660c0 | 6e 20 69 6e 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 20 61 6e 64 20 73 69 6d 75 6c 74 61 6e 65 | n.internal.network.and.simultane |
| 660e0 | 6f 75 73 6c 79 20 63 6f 6e 6e 65 63 74 73 20 74 6f 20 64 69 66 66 65 72 65 6e 74 20 65 78 74 65 | ously.connects.to.different.exte |
| 66100 | 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 73 2e 20 41 64 64 72 65 73 73 20 74 72 61 6e 73 6c 61 74 69 | rnal.networks..Address.translati |
| 66120 | 6f 6e 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 65 61 63 68 20 65 78 74 | on.can.be.configured.on.each.ext |
| 66140 | 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 20 73 69 64 65 20 69 6e 74 65 72 66 61 63 65 20 6f 66 20 | ernal.network.side.interface.of. |
| 66160 | 74 68 65 20 4e 41 54 36 36 20 64 65 76 69 63 65 20 74 6f 20 63 6f 6e 76 65 72 74 20 74 68 65 20 | the.NAT66.device.to.convert.the. |
| 66180 | 73 61 6d 65 20 69 6e 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 20 61 64 64 72 65 73 73 20 69 6e | same.internal.network.address.in |
| 661a0 | 74 6f 20 64 69 66 66 65 72 65 6e 74 20 65 78 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 20 61 64 | to.different.external.network.ad |
| 661c0 | 64 72 65 73 73 65 73 2c 20 61 6e 64 20 72 65 61 6c 69 7a 65 20 74 68 65 20 6d 61 70 70 69 6e 67 | dresses,.and.realize.the.mapping |
| 661e0 | 20 6f 66 20 74 68 65 20 73 61 6d 65 20 69 6e 74 65 72 6e 61 6c 20 61 64 64 72 65 73 73 20 74 6f | .of.the.same.internal.address.to |
| 66200 | 20 6d 75 6c 74 69 70 6c 65 20 65 78 74 65 72 6e 61 6c 20 61 64 64 72 65 73 73 65 73 2e 00 4d 75 | .multiple.external.addresses..Mu |
| 66220 | 6c 74 69 3a 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 20 6d 75 6c 74 69 70 6c 65 20 74 | lti:.can.be.specified.multiple.t |
| 66240 | 69 6d 65 73 2e 00 4d 75 6c 74 69 63 61 73 74 00 4d 75 6c 74 69 63 61 73 74 20 44 4e 53 20 75 73 | imes..Multicast.Multicast.DNS.us |
| 66260 | 65 73 20 74 68 65 20 32 32 34 2e 30 2e 30 2e 32 35 31 20 61 64 64 72 65 73 73 2c 20 77 68 69 63 | es.the.224.0.0.251.address,.whic |
| 66280 | 68 20 69 73 20 22 61 64 6d 69 6e 69 73 74 72 61 74 69 76 65 6c 79 20 73 63 6f 70 65 64 22 20 61 | h.is."administratively.scoped".a |
| 662a0 | 6e 64 20 64 6f 65 73 20 6e 6f 74 20 6c 65 61 76 65 20 74 68 65 20 73 75 62 6e 65 74 2e 20 49 74 | nd.does.not.leave.the.subnet..It |
| 662c0 | 20 72 65 74 72 61 6e 73 6d 69 74 73 20 6d 44 4e 53 20 70 61 63 6b 65 74 73 20 66 72 6f 6d 20 6f | .retransmits.mDNS.packets.from.o |
| 662e0 | 6e 65 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 6f 74 68 65 72 20 69 6e 74 65 72 66 61 63 65 73 | ne.interface.to.other.interfaces |
| 66300 | 2e 20 54 68 69 73 20 65 6e 61 62 6c 65 73 20 73 75 70 70 6f 72 74 20 66 6f 72 20 65 2e 67 2e 20 | ..This.enables.support.for.e.g.. |
| 66320 | 41 70 70 6c 65 20 41 69 72 70 6c 61 79 20 64 65 76 69 63 65 73 20 61 63 72 6f 73 73 20 6d 75 6c | Apple.Airplay.devices.across.mul |
| 66340 | 74 69 70 6c 65 20 56 4c 41 4e 73 2e 00 4d 75 6c 74 69 63 61 73 74 20 44 4e 53 20 75 73 65 73 20 | tiple.VLANs..Multicast.DNS.uses. |
| 66360 | 74 68 65 20 72 65 73 65 72 76 65 64 20 61 64 64 72 65 73 73 20 60 60 32 32 34 2e 30 2e 30 2e 32 | the.reserved.address.``224.0.0.2 |
| 66380 | 35 31 60 60 2c 20 77 68 69 63 68 20 69 73 20 60 22 61 64 6d 69 6e 69 73 74 72 61 74 69 76 65 6c | 51``,.which.is.`"administrativel |
| 663a0 | 79 20 73 63 6f 70 65 64 22 60 20 61 6e 64 20 64 6f 65 73 20 6e 6f 74 20 6c 65 61 76 65 20 74 68 | y.scoped"`.and.does.not.leave.th |
| 663c0 | 65 20 73 75 62 6e 65 74 2e 20 6d 44 4e 53 20 72 65 70 65 61 74 65 72 20 72 65 74 72 61 6e 73 6d | e.subnet..mDNS.repeater.retransm |
| 663e0 | 69 74 73 20 6d 44 4e 53 20 70 61 63 6b 65 74 73 20 66 72 6f 6d 20 6f 6e 65 20 69 6e 74 65 72 66 | its.mDNS.packets.from.one.interf |
| 66400 | 61 63 65 20 74 6f 20 6f 74 68 65 72 20 69 6e 74 65 72 66 61 63 65 73 2e 20 54 68 69 73 20 65 6e | ace.to.other.interfaces..This.en |
| 66420 | 61 62 6c 65 73 20 73 75 70 70 6f 72 74 20 66 6f 72 20 64 65 76 69 63 65 73 20 75 73 69 6e 67 20 | ables.support.for.devices.using. |
| 66440 | 6d 44 4e 53 20 64 69 73 63 6f 76 65 72 79 20 28 6c 69 6b 65 20 6e 65 74 77 6f 72 6b 20 70 72 69 | mDNS.discovery.(like.network.pri |
| 66460 | 6e 74 65 72 73 2c 20 41 70 70 6c 65 20 41 69 72 70 6c 61 79 2c 20 43 68 72 6f 6d 65 63 61 73 74 | nters,.Apple.Airplay,.Chromecast |
| 66480 | 2c 20 76 61 72 69 6f 75 73 20 49 50 20 62 61 73 65 64 20 68 6f 6d 65 2d 61 75 74 6f 6d 61 74 69 | ,.various.IP.based.home-automati |
| 664a0 | 6f 6e 20 64 65 76 69 63 65 73 20 65 74 63 29 20 61 63 72 6f 73 73 20 6d 75 6c 74 69 70 6c 65 20 | on.devices.etc).across.multiple. |
| 664c0 | 56 4c 41 4e 73 2e 00 4d 75 6c 74 69 63 61 73 74 20 56 58 4c 41 4e 00 4d 75 6c 74 69 63 61 73 74 | VLANs..Multicast.VXLAN.Multicast |
| 664e0 | 20 67 72 6f 75 70 20 61 64 64 72 65 73 73 20 66 6f 72 20 56 58 4c 41 4e 20 69 6e 74 65 72 66 61 | .group.address.for.VXLAN.interfa |
| 66500 | 63 65 2e 20 56 58 4c 41 4e 20 74 75 6e 6e 65 6c 73 20 63 61 6e 20 62 65 20 62 75 69 6c 74 20 65 | ce..VXLAN.tunnels.can.be.built.e |
| 66520 | 69 74 68 65 72 20 76 69 61 20 4d 75 6c 74 69 63 61 73 74 20 6f 72 20 76 69 61 20 55 6e 69 63 61 | ither.via.Multicast.or.via.Unica |
| 66540 | 73 74 2e 00 4d 75 6c 74 69 63 61 73 74 20 67 72 6f 75 70 20 61 64 64 72 65 73 73 20 66 6f 72 20 | st..Multicast.group.address.for. |
| 66560 | 74 68 65 20 56 58 4c 41 4e 20 69 6e 74 65 72 66 61 63 65 2e 20 56 58 4c 41 4e 20 74 75 6e 6e 65 | the.VXLAN.interface..VXLAN.tunne |
| 66580 | 6c 73 20 63 61 6e 20 62 65 20 62 75 69 6c 74 20 65 69 74 68 65 72 20 76 69 61 20 4d 75 6c 74 69 | ls.can.be.built.either.via.Multi |
| 665a0 | 63 61 73 74 20 6f 72 20 76 69 61 20 55 6e 69 63 61 73 74 2e 00 4d 75 6c 74 69 63 61 73 74 20 67 | cast.or.via.Unicast..Multicast.g |
| 665c0 | 72 6f 75 70 20 74 6f 20 75 73 65 20 66 6f 72 20 73 79 6e 63 69 6e 67 20 63 6f 6e 6e 74 72 61 63 | roup.to.use.for.syncing.conntrac |
| 665e0 | 6b 20 65 6e 74 72 69 65 73 2e 00 4d 75 6c 74 69 63 61 73 74 20 72 65 63 65 69 76 65 72 73 20 77 | k.entries..Multicast.receivers.w |
| 66600 | 69 6c 6c 20 74 61 6c 6b 20 49 47 4d 50 20 74 6f 20 74 68 65 69 72 20 6c 6f 63 61 6c 20 72 6f 75 | ill.talk.IGMP.to.their.local.rou |
| 66620 | 74 65 72 2c 20 73 6f 2c 20 62 65 73 69 64 65 73 20 68 61 76 69 6e 67 20 50 49 4d 20 63 6f 6e 66 | ter,.so,.besides.having.PIM.conf |
| 66640 | 69 67 75 72 65 64 20 69 6e 20 65 76 65 72 79 20 72 6f 75 74 65 72 2c 20 49 47 4d 50 20 6d 75 73 | igured.in.every.router,.IGMP.mus |
| 66660 | 74 20 61 6c 73 6f 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 69 6e 20 61 6e 79 20 72 6f 75 74 | t.also.be.configured.in.any.rout |
| 66680 | 65 72 20 77 68 65 72 65 20 74 68 65 72 65 20 63 6f 75 6c 64 20 62 65 20 61 20 6d 75 6c 74 69 63 | er.where.there.could.be.a.multic |
| 666a0 | 61 73 74 20 72 65 63 65 69 76 65 72 20 6c 6f 63 61 6c 6c 79 20 63 6f 6e 6e 65 63 74 65 64 2e 00 | ast.receiver.locally.connected.. |
| 666c0 | 4d 75 6c 74 69 63 61 73 74 20 72 65 63 65 69 76 65 72 73 20 77 69 6c 6c 20 74 61 6c 6b 20 4d 4c | Multicast.receivers.will.talk.ML |
| 666e0 | 44 20 74 6f 20 74 68 65 69 72 20 6c 6f 63 61 6c 20 72 6f 75 74 65 72 2c 20 73 6f 2c 20 62 65 73 | D.to.their.local.router,.so,.bes |
| 66700 | 69 64 65 73 20 68 61 76 69 6e 67 20 50 49 4d 76 36 20 63 6f 6e 66 69 67 75 72 65 64 20 69 6e 20 | ides.having.PIMv6.configured.in. |
| 66720 | 65 76 65 72 79 20 72 6f 75 74 65 72 2c 20 4d 4c 44 20 6d 75 73 74 20 61 6c 73 6f 20 62 65 20 63 | every.router,.MLD.must.also.be.c |
| 66740 | 6f 6e 66 69 67 75 72 65 64 20 69 6e 20 61 6e 79 20 72 6f 75 74 65 72 20 77 68 65 72 65 20 74 68 | onfigured.in.any.router.where.th |
| 66760 | 65 72 65 20 63 6f 75 6c 64 20 62 65 20 61 20 6d 75 6c 74 69 63 61 73 74 20 72 65 63 65 69 76 65 | ere.could.be.a.multicast.receive |
| 66780 | 72 20 6c 6f 63 61 6c 6c 79 20 63 6f 6e 6e 65 63 74 65 64 2e 00 4d 75 6c 74 69 63 61 73 74 2d 72 | r.locally.connected..Multicast-r |
| 667a0 | 6f 75 74 69 6e 67 20 69 73 20 72 65 71 75 69 72 65 64 20 66 6f 72 20 74 68 65 20 6c 65 61 76 65 | outing.is.required.for.the.leave |
| 667c0 | 73 20 74 6f 20 66 6f 72 77 61 72 64 20 74 72 61 66 66 69 63 20 62 65 74 77 65 65 6e 20 65 61 63 | s.to.forward.traffic.between.eac |
| 667e0 | 68 20 6f 74 68 65 72 20 69 6e 20 61 20 6d 6f 72 65 20 73 63 61 6c 61 62 6c 65 20 77 61 79 2e 20 | h.other.in.a.more.scalable.way.. |
| 66800 | 54 68 69 73 20 61 6c 73 6f 20 72 65 71 75 69 72 65 73 20 50 49 4d 20 74 6f 20 62 65 20 65 6e 61 | This.also.requires.PIM.to.be.ena |
| 66820 | 62 6c 65 64 20 74 6f 77 61 72 64 73 20 74 68 65 20 6c 65 61 76 65 73 20 73 6f 20 74 68 61 74 20 | bled.towards.the.leaves.so.that. |
| 66840 | 74 68 65 20 53 70 69 6e 65 20 63 61 6e 20 6c 65 61 72 6e 20 77 68 61 74 20 6d 75 6c 74 69 63 61 | the.Spine.can.learn.what.multica |
| 66860 | 73 74 20 67 72 6f 75 70 73 20 65 61 63 68 20 4c 65 61 66 20 65 78 70 65 63 74 73 20 74 72 61 66 | st.groups.each.Leaf.expects.traf |
| 66880 | 66 69 63 20 66 72 6f 6d 2e 00 4d 75 6c 74 69 70 6c 65 20 44 4e 53 20 73 65 72 76 65 72 73 20 63 | fic.from..Multiple.DNS.servers.c |
| 668a0 | 61 6e 20 62 65 20 64 65 66 69 6e 65 64 2e 00 4d 75 6c 74 69 70 6c 65 20 52 50 4b 49 20 63 61 63 | an.be.defined..Multiple.RPKI.cac |
| 668c0 | 68 69 6e 67 20 69 6e 73 74 61 6e 63 65 73 20 63 61 6e 20 62 65 20 73 75 70 70 6c 69 65 64 20 61 | hing.instances.can.be.supplied.a |
| 668e0 | 6e 64 20 74 68 65 79 20 6e 65 65 64 20 61 20 70 72 65 66 65 72 65 6e 63 65 20 69 6e 20 77 68 69 | nd.they.need.a.preference.in.whi |
| 66900 | 63 68 20 74 68 65 69 72 20 72 65 73 75 6c 74 20 73 65 74 73 20 61 72 65 20 75 73 65 64 2e 00 4d | ch.their.result.sets.are.used..M |
| 66920 | 75 6c 74 69 70 6c 65 20 55 70 6c 69 6e 6b 73 00 4d 75 6c 74 69 70 6c 65 20 56 4c 41 4e 20 74 6f | ultiple.Uplinks.Multiple.VLAN.to |
| 66940 | 20 56 4e 49 20 6d 61 70 70 69 6e 67 73 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 | .VNI.mappings.can.be.configured. |
| 66960 | 61 67 61 69 6e 73 74 20 74 68 65 20 73 61 6d 65 20 53 56 44 2e 20 54 68 69 73 20 61 6c 6c 6f 77 | against.the.same.SVD..This.allow |
| 66980 | 73 20 66 6f 72 20 61 20 73 69 67 6e 69 66 69 63 61 6e 74 20 73 63 61 6c 69 6e 67 20 6f 66 20 74 | s.for.a.significant.scaling.of.t |
| 669a0 | 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 56 4e 49 73 20 73 69 6e 63 65 20 61 20 73 65 70 61 72 61 | he.number.of.VNIs.since.a.separa |
| 669c0 | 74 65 20 56 58 4c 41 4e 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 6e 6f 20 6c 6f 6e 67 65 72 20 | te.VXLAN.interface.is.no.longer. |
| 669e0 | 72 65 71 75 69 72 65 64 20 66 6f 72 20 65 61 63 68 20 56 4e 49 2e 00 4d 75 6c 74 69 70 6c 65 20 | required.for.each.VNI..Multiple. |
| 66a00 | 61 6c 69 61 73 65 73 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 20 70 65 72 20 68 6f 73 | aliases.can.be.specified.per.hos |
| 66a20 | 74 2d 6e 61 6d 65 2e 00 4d 75 6c 74 69 70 6c 65 20 61 6c 69 61 73 65 73 20 63 61 6e 20 70 65 20 | t-name..Multiple.aliases.can.pe. |
| 66a40 | 73 70 65 63 69 66 69 65 64 20 70 65 72 20 68 6f 73 74 2d 6e 61 6d 65 2e 00 4d 75 6c 74 69 70 6c | specified.per.host-name..Multipl |
| 66a60 | 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 70 6f 72 74 73 20 63 61 6e 20 62 65 20 73 70 65 63 69 | e.destination.ports.can.be.speci |
| 66a80 | 66 69 65 64 20 61 73 20 61 20 63 6f 6d 6d 61 2d 73 65 70 61 72 61 74 65 64 20 6c 69 73 74 2e 20 | fied.as.a.comma-separated.list.. |
| 66aa0 | 54 68 65 20 77 68 6f 6c 65 20 6c 69 73 74 20 63 61 6e 20 61 6c 73 6f 20 62 65 20 22 6e 65 67 61 | The.whole.list.can.also.be."nega |
| 66ac0 | 74 65 64 22 20 75 73 69 6e 67 20 27 21 27 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 3a 20 27 21 32 | ted".using.'!'..For.example:.'!2 |
| 66ae0 | 32 2c 74 65 6c 6e 65 74 2c 68 74 74 70 2c 31 32 33 2c 31 30 30 31 2d 31 30 30 35 27 00 4d 75 6c | 2,telnet,http,123,1001-1005'.Mul |
| 66b00 | 74 69 70 6c 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 70 6f 72 74 73 20 63 61 6e 20 62 65 20 73 | tiple.destination.ports.can.be.s |
| 66b20 | 70 65 63 69 66 69 65 64 20 61 73 20 61 20 63 6f 6d 6d 61 2d 73 65 70 61 72 61 74 65 64 20 6c 69 | pecified.as.a.comma-separated.li |
| 66b40 | 73 74 2e 20 54 68 65 20 77 68 6f 6c 65 20 6c 69 73 74 20 63 61 6e 20 61 6c 73 6f 20 62 65 20 22 | st..The.whole.list.can.also.be." |
| 66b60 | 6e 65 67 61 74 65 64 22 20 75 73 69 6e 67 20 27 21 27 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 3a | negated".using.'!'..For.example: |
| 66b80 | 20 60 21 32 32 2c 74 65 6c 6e 65 74 2c 68 74 74 70 2c 31 32 33 2c 31 30 30 31 2d 31 30 30 35 60 | .`!22,telnet,http,123,1001-1005` |
| 66ba0 | 60 00 4d 75 6c 74 69 70 6c 65 20 65 78 74 65 72 6e 61 6c 20 61 64 64 72 65 73 73 65 73 00 4d 75 | `.Multiple.external.addresses.Mu |
| 66bc0 | 6c 74 69 70 6c 65 20 69 6e 74 65 72 66 61 63 65 73 20 6d 61 79 20 62 65 20 73 70 65 63 69 66 69 | ltiple.interfaces.may.be.specifi |
| 66be0 | 65 64 2e 00 4d 75 6c 74 69 70 6c 65 20 6e 65 74 77 6f 72 6b 73 2f 63 6c 69 65 6e 74 20 49 50 20 | ed..Multiple.networks/client.IP. |
| 66c00 | 61 64 64 72 65 73 73 65 73 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 2e 00 4d 75 6c | addresses.can.be.configured..Mul |
| 66c20 | 74 69 70 6c 65 20 73 65 72 76 65 72 73 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 2e 00 | tiple.servers.can.be.specified.. |
| 66c40 | 4d 75 6c 74 69 70 6c 65 20 73 65 72 76 69 63 65 73 20 63 61 6e 20 62 65 20 75 73 65 64 20 70 65 | Multiple.services.can.be.used.pe |
| 66c60 | 72 20 69 6e 74 65 72 66 61 63 65 2e 20 4a 75 73 74 20 73 70 65 63 69 66 79 20 61 73 20 6d 61 6e | r.interface..Just.specify.as.man |
| 66c80 | 79 20 73 65 72 76 69 63 65 73 20 70 65 72 20 69 6e 74 65 72 66 61 63 65 20 61 73 20 79 6f 75 20 | y.services.per.interface.as.you. |
| 66ca0 | 6c 69 6b 65 21 00 4d 75 6c 74 69 70 6c 65 20 73 6f 75 72 63 65 20 70 6f 72 74 73 20 63 61 6e 20 | like!.Multiple.source.ports.can. |
| 66cc0 | 62 65 20 73 70 65 63 69 66 69 65 64 20 61 73 20 61 20 63 6f 6d 6d 61 2d 73 65 70 61 72 61 74 65 | be.specified.as.a.comma-separate |
| 66ce0 | 64 20 6c 69 73 74 2e 20 54 68 65 20 77 68 6f 6c 65 20 6c 69 73 74 20 63 61 6e 20 61 6c 73 6f 20 | d.list..The.whole.list.can.also. |
| 66d00 | 62 65 20 22 6e 65 67 61 74 65 64 22 20 75 73 69 6e 67 20 60 60 21 60 60 2e 20 46 6f 72 20 65 78 | be."negated".using.``!``..For.ex |
| 66d20 | 61 6d 70 6c 65 3a 00 4d 75 6c 74 69 70 6c 65 20 74 61 72 67 65 74 20 49 50 20 61 64 64 72 65 73 | ample:.Multiple.target.IP.addres |
| 66d40 | 73 65 73 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 2e 20 41 74 20 6c 65 61 73 74 20 6f | ses.can.be.specified..At.least.o |
| 66d60 | 6e 65 20 49 50 20 61 64 64 72 65 73 73 20 6d 75 73 74 20 62 65 20 67 69 76 65 6e 20 66 6f 72 20 | ne.IP.address.must.be.given.for. |
| 66d80 | 41 52 50 20 6d 6f 6e 69 74 6f 72 69 6e 67 20 74 6f 20 66 75 6e 63 74 69 6f 6e 2e 00 4d 75 6c 74 | ARP.monitoring.to.function..Mult |
| 66da0 | 69 70 6c 65 20 75 73 65 72 73 20 63 61 6e 20 63 6f 6e 6e 65 63 74 20 74 6f 20 74 68 65 20 73 61 | iple.users.can.connect.to.the.sa |
| 66dc0 | 6d 65 20 73 65 72 69 61 6c 20 64 65 76 69 63 65 20 62 75 74 20 6f 6e 6c 79 20 6f 6e 65 20 69 73 | me.serial.device.but.only.one.is |
| 66de0 | 20 61 6c 6c 6f 77 65 64 20 74 6f 20 77 72 69 74 65 20 74 6f 20 74 68 65 20 63 6f 6e 73 6f 6c 65 | .allowed.to.write.to.the.console |
| 66e00 | 20 70 6f 72 74 2e 00 4d 75 6c 74 69 70 72 6f 74 6f 63 6f 6c 20 65 78 74 65 6e 73 69 6f 6e 73 20 | .port..Multiprotocol.extensions. |
| 66e20 | 65 6e 61 62 6c 65 20 42 47 50 20 74 6f 20 63 61 72 72 79 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f | enable.BGP.to.carry.routing.info |
| 66e40 | 72 6d 61 74 69 6f 6e 20 66 6f 72 20 6d 75 6c 74 69 70 6c 65 20 6e 65 74 77 6f 72 6b 20 6c 61 79 | rmation.for.multiple.network.lay |
| 66e60 | 65 72 20 70 72 6f 74 6f 63 6f 6c 73 2e 20 42 47 50 20 73 75 70 70 6f 72 74 73 20 61 6e 20 41 64 | er.protocols..BGP.supports.an.Ad |
| 66e80 | 64 72 65 73 73 20 46 61 6d 69 6c 79 20 49 64 65 6e 74 69 66 69 65 72 20 28 41 46 49 29 20 66 6f | dress.Family.Identifier.(AFI).fo |
| 66ea0 | 72 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 2e 00 4e 00 4e 41 54 00 4e 41 54 20 28 73 70 65 63 | r.IPv4.and.IPv6..N.NAT.NAT.(spec |
| 66ec0 | 69 66 69 63 61 6c 6c 79 2c 20 53 6f 75 72 63 65 20 4e 41 54 29 3b 00 4e 41 54 20 43 6f 6e 66 69 | ifically,.Source.NAT);.NAT.Confi |
| 66ee0 | 67 75 72 61 74 69 6f 6e 00 4e 41 54 20 4c 6f 61 64 20 42 61 6c 61 6e 63 65 00 4e 41 54 20 4c 6f | guration.NAT.Load.Balance.NAT.Lo |
| 66f00 | 61 64 20 42 61 6c 61 6e 63 65 20 75 73 65 73 20 61 6e 20 61 6c 67 6f 72 69 74 68 6d 20 74 68 61 | ad.Balance.uses.an.algorithm.tha |
| 66f20 | 74 20 67 65 6e 65 72 61 74 65 73 20 61 20 68 61 73 68 20 61 6e 64 20 62 61 73 65 64 20 6f 6e 20 | t.generates.a.hash.and.based.on. |
| 66f40 | 69 74 2c 20 74 68 65 6e 20 69 74 20 61 70 70 6c 69 65 73 20 63 6f 72 72 65 73 70 6f 6e 64 69 6e | it,.then.it.applies.correspondin |
| 66f60 | 67 20 74 72 61 6e 73 6c 61 74 69 6f 6e 2e 20 54 68 69 73 20 68 61 73 68 20 63 61 6e 20 62 65 20 | g.translation..This.hash.can.be. |
| 66f80 | 67 65 6e 65 72 61 74 65 64 20 72 61 6e 64 6f 6d 6c 79 2c 20 6f 72 20 63 61 6e 20 75 73 65 20 64 | generated.randomly,.or.can.use.d |
| 66fa0 | 61 74 61 20 66 72 6f 6d 20 74 68 65 20 69 70 20 68 65 61 64 65 72 3a 20 73 6f 75 72 63 65 2d 61 | ata.from.the.ip.header:.source-a |
| 66fc0 | 64 64 72 65 73 73 2c 20 64 65 73 74 69 6e 61 74 69 6f 6e 2d 61 64 64 72 65 73 73 2c 20 73 6f 75 | ddress,.destination-address,.sou |
| 66fe0 | 72 63 65 2d 70 6f 72 74 20 61 6e 64 2f 6f 72 20 64 65 73 74 69 6e 61 74 69 6f 6e 2d 70 6f 72 74 | rce-port.and/or.destination-port |
| 67000 | 2e 20 42 79 20 64 65 66 61 75 6c 74 2c 20 69 74 20 77 69 6c 6c 20 67 65 6e 65 72 61 74 65 20 74 | ..By.default,.it.will.generate.t |
| 67020 | 68 65 20 68 61 73 68 20 72 61 6e 64 6f 6d 6c 79 2e 00 4e 41 54 20 52 75 6c 65 73 65 74 00 4e 41 | he.hash.randomly..NAT.Ruleset.NA |
| 67040 | 54 20 62 65 66 6f 72 65 20 56 50 4e 00 4e 41 54 20 62 65 66 6f 72 65 20 56 50 4e 20 54 6f 70 6f | T.before.VPN.NAT.before.VPN.Topo |
| 67060 | 6c 6f 67 79 00 4e 41 54 2c 20 52 6f 75 74 69 6e 67 2c 20 46 69 72 65 77 61 6c 6c 20 49 6e 74 65 | logy.NAT,.Routing,.Firewall.Inte |
| 67080 | 72 61 63 74 69 6f 6e 00 4e 41 54 34 34 00 4e 41 54 36 34 00 4e 41 54 36 34 20 63 6c 69 65 6e 74 | raction.NAT44.NAT64.NAT64.client |
| 670a0 | 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 00 4e 41 54 36 34 20 70 72 65 66 69 78 20 6d 61 73 | .configuration:.NAT64.prefix.mas |
| 670c0 | 6b 20 6d 75 73 74 20 62 65 20 6f 6e 65 20 6f 66 3a 20 2f 33 32 2c 20 2f 34 30 2c 20 2f 34 38 2c | k.must.be.one.of:./32,./40,./48, |
| 670e0 | 20 2f 35 36 2c 20 2f 36 34 20 6f 72 20 39 36 2e 00 4e 41 54 36 34 20 73 65 72 76 65 72 20 63 6f | ./56,./64.or.96..NAT64.server.co |
| 67100 | 6e 66 69 67 75 72 61 74 69 6f 6e 3a 00 4e 41 54 36 36 28 4e 50 54 76 36 29 00 4e 48 52 50 20 70 | nfiguration:.NAT66(NPTv6).NHRP.p |
| 67120 | 72 6f 76 69 64 65 73 20 74 68 65 20 64 79 6e 61 6d 69 63 20 74 75 6e 6e 65 6c 20 65 6e 64 70 6f | rovides.the.dynamic.tunnel.endpo |
| 67140 | 69 6e 74 20 64 69 73 63 6f 76 65 72 79 20 6d 65 63 68 61 6e 69 73 6d 20 28 65 6e 64 70 6f 69 6e | int.discovery.mechanism.(endpoin |
| 67160 | 74 20 72 65 67 69 73 74 72 61 74 69 6f 6e 2c 20 61 6e 64 20 65 6e 64 70 6f 69 6e 74 20 64 69 73 | t.registration,.and.endpoint.dis |
| 67180 | 63 6f 76 65 72 79 2f 6c 6f 6f 6b 75 70 29 2c 20 6d 47 52 45 20 70 72 6f 76 69 64 65 73 20 74 68 | covery/lookup),.mGRE.provides.th |
| 671a0 | 65 20 74 75 6e 6e 65 6c 20 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e 20 69 74 73 65 6c 66 2c 20 61 | e.tunnel.encapsulation.itself,.a |
| 671c0 | 6e 64 20 74 68 65 20 49 50 53 65 63 20 70 72 6f 74 6f 63 6f 6c 73 20 68 61 6e 64 6c 65 20 74 68 | nd.the.IPSec.protocols.handle.th |
| 671e0 | 65 20 6b 65 79 20 65 78 63 68 61 6e 67 65 2c 20 61 6e 64 20 63 72 79 70 74 6f 20 6d 65 63 68 61 | e.key.exchange,.and.crypto.mecha |
| 67200 | 6e 69 73 6d 2e 00 4e 54 50 00 4e 54 50 20 69 73 20 69 6e 74 65 6e 64 65 64 20 74 6f 20 73 79 6e | nism..NTP.NTP.is.intended.to.syn |
| 67220 | 63 68 72 6f 6e 69 7a 65 20 61 6c 6c 20 70 61 72 74 69 63 69 70 61 74 69 6e 67 20 63 6f 6d 70 75 | chronize.all.participating.compu |
| 67240 | 74 65 72 73 20 74 6f 20 77 69 74 68 69 6e 20 61 20 66 65 77 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 | ters.to.within.a.few.millisecond |
| 67260 | 73 20 6f 66 20 3a 61 62 62 72 3a 60 55 54 43 20 28 43 6f 6f 72 64 69 6e 61 74 65 64 20 55 6e 69 | s.of.:abbr:`UTC.(Coordinated.Uni |
| 67280 | 76 65 72 73 61 6c 20 54 69 6d 65 29 60 2e 20 49 74 20 75 73 65 73 20 74 68 65 20 69 6e 74 65 72 | versal.Time)`..It.uses.the.inter |
| 672a0 | 73 65 63 74 69 6f 6e 20 61 6c 67 6f 72 69 74 68 6d 2c 20 61 20 6d 6f 64 69 66 69 65 64 20 76 65 | section.algorithm,.a.modified.ve |
| 672c0 | 72 73 69 6f 6e 20 6f 66 20 4d 61 72 7a 75 6c 6c 6f 27 73 20 61 6c 67 6f 72 69 74 68 6d 2c 20 74 | rsion.of.Marzullo's.algorithm,.t |
| 672e0 | 6f 20 73 65 6c 65 63 74 20 61 63 63 75 72 61 74 65 20 74 69 6d 65 20 73 65 72 76 65 72 73 20 61 | o.select.accurate.time.servers.a |
| 67300 | 6e 64 20 69 73 20 64 65 73 69 67 6e 65 64 20 74 6f 20 6d 69 74 69 67 61 74 65 20 74 68 65 20 65 | nd.is.designed.to.mitigate.the.e |
| 67320 | 66 66 65 63 74 73 20 6f 66 20 76 61 72 69 61 62 6c 65 20 6e 65 74 77 6f 72 6b 20 6c 61 74 65 6e | ffects.of.variable.network.laten |
| 67340 | 63 79 2e 20 4e 54 50 20 63 61 6e 20 75 73 75 61 6c 6c 79 20 6d 61 69 6e 74 61 69 6e 20 74 69 6d | cy..NTP.can.usually.maintain.tim |
| 67360 | 65 20 74 6f 20 77 69 74 68 69 6e 20 74 65 6e 73 20 6f 66 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 | e.to.within.tens.of.milliseconds |
| 67380 | 20 6f 76 65 72 20 74 68 65 20 70 75 62 6c 69 63 20 49 6e 74 65 72 6e 65 74 2c 20 61 6e 64 20 63 | .over.the.public.Internet,.and.c |
| 673a0 | 61 6e 20 61 63 68 69 65 76 65 20 62 65 74 74 65 72 20 74 68 61 6e 20 6f 6e 65 20 6d 69 6c 6c 69 | an.achieve.better.than.one.milli |
| 673c0 | 73 65 63 6f 6e 64 20 61 63 63 75 72 61 63 79 20 69 6e 20 6c 6f 63 61 6c 20 61 72 65 61 20 6e 65 | second.accuracy.in.local.area.ne |
| 673e0 | 74 77 6f 72 6b 73 20 75 6e 64 65 72 20 69 64 65 61 6c 20 63 6f 6e 64 69 74 69 6f 6e 73 2e 20 41 | tworks.under.ideal.conditions..A |
| 67400 | 73 79 6d 6d 65 74 72 69 63 20 72 6f 75 74 65 73 20 61 6e 64 20 6e 65 74 77 6f 72 6b 20 63 6f 6e | symmetric.routes.and.network.con |
| 67420 | 67 65 73 74 69 6f 6e 20 63 61 6e 20 63 61 75 73 65 20 65 72 72 6f 72 73 20 6f 66 20 31 30 30 20 | gestion.can.cause.errors.of.100. |
| 67440 | 6d 73 20 6f 72 20 6d 6f 72 65 2e 00 4e 54 50 20 70 72 6f 63 65 73 73 20 77 69 6c 6c 20 6f 6e 6c | ms.or.more..NTP.process.will.onl |
| 67460 | 79 20 6c 69 73 74 65 6e 20 6f 6e 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 49 50 20 61 64 64 | y.listen.on.the.specified.IP.add |
| 67480 | 72 65 73 73 2e 20 59 6f 75 20 6d 75 73 74 20 73 70 65 63 69 66 79 20 74 68 65 20 60 3c 61 64 64 | ress..You.must.specify.the.`<add |
| 674a0 | 72 65 73 73 3e 60 20 61 6e 64 20 6f 70 74 69 6f 6e 61 6c 6c 79 20 74 68 65 20 70 65 72 6d 69 74 | ress>`.and.optionally.the.permit |
| 674c0 | 74 65 64 20 63 6c 69 65 6e 74 73 2e 20 4d 75 6c 74 69 70 6c 65 20 6c 69 73 74 65 6e 20 61 64 64 | ted.clients..Multiple.listen.add |
| 674e0 | 72 65 73 73 65 73 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 2e 00 4e 54 50 20 70 72 | resses.can.be.configured..NTP.pr |
| 67500 | 6f 63 65 73 73 20 77 69 6c 6c 20 6f 6e 6c 79 20 6c 69 73 74 65 6e 20 6f 6e 20 74 68 65 20 73 70 | ocess.will.only.listen.on.the.sp |
| 67520 | 65 63 69 66 69 65 64 20 49 50 20 61 64 64 72 65 73 73 2e 20 59 6f 75 20 6d 75 73 74 20 73 70 65 | ecified.IP.address..You.must.spe |
| 67540 | 63 69 66 79 20 74 68 65 20 60 3c 61 64 64 72 65 73 73 3e 60 20 61 6e 64 20 6f 70 74 69 6f 6e 61 | cify.the.`<address>`.and.optiona |
| 67560 | 6c 6c 79 20 74 68 65 20 70 65 72 6d 69 74 74 65 64 20 63 6c 69 65 6e 74 73 2e 20 4d 75 6c 74 69 | lly.the.permitted.clients..Multi |
| 67580 | 70 6c 65 20 6c 69 73 74 65 6e 20 61 64 64 72 65 73 73 65 73 20 66 6f 72 20 73 61 6d 65 20 49 50 | ple.listen.addresses.for.same.IP |
| 675a0 | 20 66 61 6d 69 6c 79 20 69 73 20 6e 6f 20 6c 6f 6e 67 65 72 20 73 75 70 70 6f 72 74 65 64 2e 20 | .family.is.no.longer.supported.. |
| 675c0 | 4f 6e 6c 79 20 6f 6e 65 20 49 50 76 34 20 61 6e 64 20 6f 6e 65 20 49 50 76 36 20 61 64 64 72 65 | Only.one.IPv4.and.one.IPv6.addre |
| 675e0 | 73 73 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 2c 20 75 73 69 6e 67 20 73 65 70 61 | ss.can.be.configured,.using.sepa |
| 67600 | 72 61 74 65 20 63 6f 6d 6d 61 6e 64 73 20 66 6f 72 20 65 61 63 68 2e 00 4e 54 50 20 73 75 62 73 | rate.commands.for.each..NTP.subs |
| 67620 | 79 73 74 65 6d 00 4e 54 50 20 73 75 70 70 6c 69 65 73 20 61 20 77 61 72 6e 69 6e 67 20 6f 66 20 | ystem.NTP.supplies.a.warning.of. |
| 67640 | 61 6e 79 20 69 6d 70 65 6e 64 69 6e 67 20 6c 65 61 70 20 73 65 63 6f 6e 64 20 61 64 6a 75 73 74 | any.impending.leap.second.adjust |
| 67660 | 6d 65 6e 74 2c 20 62 75 74 20 6e 6f 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 6c | ment,.but.no.information.about.l |
| 67680 | 6f 63 61 6c 20 74 69 6d 65 20 7a 6f 6e 65 73 20 6f 72 20 64 61 79 6c 69 67 68 74 20 73 61 76 69 | ocal.time.zones.or.daylight.savi |
| 676a0 | 6e 67 20 74 69 6d 65 20 69 73 20 74 72 61 6e 73 6d 69 74 74 65 64 2e 00 4e 61 6d 65 20 53 65 72 | ng.time.is.transmitted..Name.Ser |
| 676c0 | 76 65 72 00 4e 61 6d 65 20 6f 66 20 69 6e 73 74 61 6c 6c 65 64 20 63 65 72 74 69 66 69 63 61 74 | ver.Name.of.installed.certificat |
| 676e0 | 65 20 61 75 74 68 6f 72 69 74 79 20 63 65 72 74 69 66 69 63 61 74 65 2e 00 4e 61 6d 65 20 6f 66 | e.authority.certificate..Name.of |
| 67700 | 20 69 6e 73 74 61 6c 6c 65 64 20 73 65 72 76 65 72 20 63 65 72 74 69 66 69 63 61 74 65 2e 00 4e | .installed.server.certificate..N |
| 67720 | 61 6d 65 20 6f 66 20 73 74 61 74 69 63 20 6d 61 70 70 69 6e 67 00 4e 61 6d 65 20 6f 66 20 74 68 | ame.of.static.mapping.Name.of.th |
| 67740 | 65 20 73 69 6e 67 6c 65 20 74 61 62 6c 65 20 4f 6e 6c 79 20 69 66 20 73 65 74 20 67 72 6f 75 70 | e.single.table.Only.if.set.group |
| 67760 | 2d 6d 65 74 72 69 63 73 20 73 69 6e 67 6c 65 2d 74 61 62 6c 65 2e 00 4e 61 6d 65 20 6f 72 20 49 | -metrics.single-table..Name.or.I |
| 67780 | 50 76 34 20 61 64 64 72 65 73 73 20 6f 66 20 54 46 54 50 20 73 65 72 76 65 72 00 4e 65 74 42 49 | Pv4.address.of.TFTP.server.NetBI |
| 677a0 | 4f 53 20 6f 76 65 72 20 54 43 50 2f 49 50 20 6e 61 6d 65 20 73 65 72 76 65 72 00 4e 65 74 46 6c | OS.over.TCP/IP.name.server.NetFl |
| 677c0 | 6f 77 00 4e 65 74 46 6c 6f 77 20 2f 20 49 50 46 49 58 00 4e 65 74 46 6c 6f 77 20 65 6e 67 69 6e | ow.NetFlow./.IPFIX.NetFlow.engin |
| 677e0 | 65 2d 69 64 20 77 68 69 63 68 20 77 69 6c 6c 20 61 70 70 65 61 72 20 69 6e 20 4e 65 74 46 6c 6f | e-id.which.will.appear.in.NetFlo |
| 67800 | 77 20 64 61 74 61 2e 20 54 68 65 20 72 61 6e 67 65 20 69 73 20 30 20 74 6f 20 32 35 35 2e 00 4e | w.data..The.range.is.0.to.255..N |
| 67820 | 65 74 46 6c 6f 77 20 69 73 20 61 20 66 65 61 74 75 72 65 20 74 68 61 74 20 77 61 73 20 69 6e 74 | etFlow.is.a.feature.that.was.int |
| 67840 | 72 6f 64 75 63 65 64 20 6f 6e 20 43 69 73 63 6f 20 72 6f 75 74 65 72 73 20 61 72 6f 75 6e 64 20 | roduced.on.Cisco.routers.around. |
| 67860 | 31 39 39 36 20 74 68 61 74 20 70 72 6f 76 69 64 65 73 20 74 68 65 20 61 62 69 6c 69 74 79 20 74 | 1996.that.provides.the.ability.t |
| 67880 | 6f 20 63 6f 6c 6c 65 63 74 20 49 50 20 6e 65 74 77 6f 72 6b 20 74 72 61 66 66 69 63 20 61 73 20 | o.collect.IP.network.traffic.as. |
| 678a0 | 69 74 20 65 6e 74 65 72 73 20 6f 72 20 65 78 69 74 73 20 61 6e 20 69 6e 74 65 72 66 61 63 65 2e | it.enters.or.exits.an.interface. |
| 678c0 | 20 42 79 20 61 6e 61 6c 79 7a 69 6e 67 20 74 68 65 20 64 61 74 61 20 70 72 6f 76 69 64 65 64 20 | .By.analyzing.the.data.provided. |
| 678e0 | 62 79 20 4e 65 74 46 6c 6f 77 2c 20 61 20 6e 65 74 77 6f 72 6b 20 61 64 6d 69 6e 69 73 74 72 61 | by.NetFlow,.a.network.administra |
| 67900 | 74 6f 72 20 63 61 6e 20 64 65 74 65 72 6d 69 6e 65 20 74 68 69 6e 67 73 20 73 75 63 68 20 61 73 | tor.can.determine.things.such.as |
| 67920 | 20 74 68 65 20 73 6f 75 72 63 65 20 61 6e 64 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 6f 66 20 74 | .the.source.and.destination.of.t |
| 67940 | 72 61 66 66 69 63 2c 20 63 6c 61 73 73 20 6f 66 20 73 65 72 76 69 63 65 2c 20 61 6e 64 20 74 68 | raffic,.class.of.service,.and.th |
| 67960 | 65 20 63 61 75 73 65 73 20 6f 66 20 63 6f 6e 67 65 73 74 69 6f 6e 2e 20 41 20 74 79 70 69 63 61 | e.causes.of.congestion..A.typica |
| 67980 | 6c 20 66 6c 6f 77 20 6d 6f 6e 69 74 6f 72 69 6e 67 20 73 65 74 75 70 20 28 75 73 69 6e 67 20 4e | l.flow.monitoring.setup.(using.N |
| 679a0 | 65 74 46 6c 6f 77 29 20 63 6f 6e 73 69 73 74 73 20 6f 66 20 74 68 72 65 65 20 6d 61 69 6e 20 63 | etFlow).consists.of.three.main.c |
| 679c0 | 6f 6d 70 6f 6e 65 6e 74 73 3a 00 4e 65 74 46 6c 6f 77 20 69 73 20 75 73 75 61 6c 6c 79 20 65 6e | omponents:.NetFlow.is.usually.en |
| 679e0 | 61 62 6c 65 64 20 6f 6e 20 61 20 70 65 72 2d 69 6e 74 65 72 66 61 63 65 20 62 61 73 69 73 20 74 | abled.on.a.per-interface.basis.t |
| 67a00 | 6f 20 6c 69 6d 69 74 20 6c 6f 61 64 20 6f 6e 20 74 68 65 20 72 6f 75 74 65 72 20 63 6f 6d 70 6f | o.limit.load.on.the.router.compo |
| 67a20 | 6e 65 6e 74 73 20 69 6e 76 6f 6c 76 65 64 20 69 6e 20 4e 65 74 46 6c 6f 77 2c 20 6f 72 20 74 6f | nents.involved.in.NetFlow,.or.to |
| 67a40 | 20 6c 69 6d 69 74 20 74 68 65 20 61 6d 6f 75 6e 74 20 6f 66 20 4e 65 74 46 6c 6f 77 20 72 65 63 | .limit.the.amount.of.NetFlow.rec |
| 67a60 | 6f 72 64 73 20 65 78 70 6f 72 74 65 64 2e 00 4e 65 74 46 6c 6f 77 20 76 35 20 65 78 61 6d 70 6c | ords.exported..NetFlow.v5.exampl |
| 67a80 | 65 3a 00 4e 65 74 66 69 6c 74 65 72 20 62 61 73 65 64 00 4e 65 74 6d 61 73 6b 20 67 72 65 61 74 | e:.Netfilter.based.Netmask.great |
| 67aa0 | 65 72 20 74 68 61 6e 20 6c 65 6e 67 74 68 2e 00 4e 65 74 6d 61 73 6b 20 6c 65 73 73 20 74 68 61 | er.than.length..Netmask.less.tha |
| 67ac0 | 6e 20 6c 65 6e 67 74 68 00 4e 65 74 77 6f 72 6b 20 41 64 76 65 72 74 69 73 65 6d 65 6e 74 20 43 | n.length.Network.Advertisement.C |
| 67ae0 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 4e 65 74 77 6f 72 6b 20 43 6f 6e 74 72 6f 6c 00 4e 65 74 | onfiguration.Network.Control.Net |
| 67b00 | 77 6f 72 6b 20 45 6d 75 6c 61 74 6f 72 00 4e 65 74 77 6f 72 6b 20 47 72 6f 75 70 73 00 4e 65 74 | work.Emulator.Network.Groups.Net |
| 67b20 | 77 6f 72 6b 20 49 44 20 28 53 53 49 44 29 20 60 60 45 6e 74 65 72 70 72 69 73 65 2d 54 45 53 54 | work.ID.(SSID).``Enterprise-TEST |
| 67b40 | 60 60 00 4e 65 74 77 6f 72 6b 20 49 44 20 28 53 53 49 44 29 20 60 60 54 45 53 54 60 60 00 4e 65 | ``.Network.ID.(SSID).``TEST``.Ne |
| 67b60 | 74 77 6f 72 6b 20 49 44 20 28 53 53 49 44 29 20 60 60 74 65 73 74 2e 61 78 60 60 00 4e 65 74 77 | twork.ID.(SSID).``test.ax``.Netw |
| 67b80 | 6f 72 6b 20 54 6f 70 6f 6c 6f 67 79 20 44 69 61 67 72 61 6d 00 4e 65 74 77 6f 72 6b 20 6d 61 6e | ork.Topology.Diagram.Network.man |
| 67ba0 | 61 67 65 6d 65 6e 74 20 73 74 61 74 69 6f 6e 20 28 4e 4d 53 29 20 2d 20 73 6f 66 74 77 61 72 65 | agement.station.(NMS).-.software |
| 67bc0 | 20 77 68 69 63 68 20 72 75 6e 73 20 6f 6e 20 74 68 65 20 6d 61 6e 61 67 65 72 00 4e 65 74 77 6f | .which.runs.on.the.manager.Netwo |
| 67be0 | 72 6b 20 6e 65 77 73 20 73 75 62 73 79 73 74 65 6d 00 4e 65 74 77 6f 72 6b 20 74 6f 20 62 65 20 | rk.news.subsystem.Network.to.be. |
| 67c00 | 70 72 6f 74 65 63 74 65 64 3a 20 31 39 32 2e 30 2e 32 2e 30 2f 32 34 20 28 70 75 62 6c 69 63 20 | protected:.192.0.2.0/24.(public. |
| 67c20 | 49 50 73 20 75 73 65 20 62 79 20 63 75 73 74 6f 6d 65 72 73 29 00 4e 65 74 77 6f 72 6b 73 20 61 | IPs.use.by.customers).Networks.a |
| 67c40 | 6c 6c 6f 77 65 64 20 74 6f 20 71 75 65 72 79 20 74 68 69 73 20 73 65 72 76 65 72 00 4e 65 77 20 | llowed.to.query.this.server.New. |
| 67c60 | 75 73 65 72 20 77 69 6c 6c 20 75 73 65 20 53 48 41 2f 41 45 53 20 66 6f 72 20 61 75 74 68 65 6e | user.will.use.SHA/AES.for.authen |
| 67c80 | 74 69 63 61 74 69 6f 6e 20 61 6e 64 20 70 72 69 76 61 63 79 00 4e 65 78 74 20 69 74 20 69 73 20 | tication.and.privacy.Next.it.is. |
| 67ca0 | 6e 65 63 65 73 73 61 72 79 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 32 46 41 20 66 6f 72 20 4f | necessary.to.configure.2FA.for.O |
| 67cc0 | 70 65 6e 43 6f 6e 6e 65 63 74 3a 00 4e 65 78 74 2d 68 6f 70 20 69 6e 74 65 72 66 61 63 65 20 66 | penConnect:.Next-hop.interface.f |
| 67ce0 | 6f 72 20 74 68 65 20 72 6f 75 74 65 00 4e 65 78 74 68 6f 70 20 49 50 20 61 64 64 72 65 73 73 2e | or.the.route.Nexthop.IP.address. |
| 67d00 | 00 4e 65 78 74 68 6f 70 20 49 50 76 36 20 61 64 64 72 65 73 73 20 74 6f 20 6d 61 74 63 68 2e 00 | .Nexthop.IPv6.address.to.match.. |
| 67d20 | 4e 65 78 74 68 6f 70 20 49 50 76 36 20 61 64 64 72 65 73 73 2e 00 4e 65 78 74 68 6f 70 20 54 72 | Nexthop.IPv6.address..Nexthop.Tr |
| 67d40 | 61 63 6b 69 6e 67 00 4e 65 78 74 68 6f 70 20 74 72 61 63 6b 69 6e 67 20 72 65 73 6f 6c 76 65 20 | acking.Nexthop.tracking.resolve. |
| 67d60 | 6e 65 78 74 68 6f 70 73 20 76 69 61 20 74 68 65 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 20 62 | nexthops.via.the.default.route.b |
| 67d80 | 79 20 64 65 66 61 75 6c 74 2e 20 54 68 69 73 20 69 73 20 65 6e 61 62 6c 65 64 20 62 79 20 64 65 | y.default..This.is.enabled.by.de |
| 67da0 | 66 61 75 6c 74 20 66 6f 72 20 61 20 74 72 61 64 69 74 69 6f 6e 61 6c 20 70 72 6f 66 69 6c 65 20 | fault.for.a.traditional.profile. |
| 67dc0 | 6f 66 20 46 52 52 20 77 68 69 63 68 20 77 65 20 75 73 65 2e 20 49 74 20 61 6e 64 20 63 61 6e 20 | of.FRR.which.we.use..It.and.can. |
| 67de0 | 62 65 20 64 69 73 61 62 6c 65 64 20 69 66 20 79 6f 75 20 64 6f 20 6e 6f 74 20 77 61 6e 27 74 20 | be.disabled.if.you.do.not.wan't. |
| 67e00 | 74 6f 20 65 2e 67 2e 20 61 6c 6c 6f 77 20 42 47 50 20 74 6f 20 70 65 65 72 20 61 63 72 6f 73 73 | to.e.g..allow.BGP.to.peer.across |
| 67e20 | 20 74 68 65 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 2e 00 4e 65 78 74 68 6f 70 20 74 72 61 63 | .the.default.route..Nexthop.trac |
| 67e40 | 6b 69 6e 67 20 72 65 73 6f 6c 76 65 20 6e 65 78 74 68 6f 70 73 20 76 69 61 20 74 68 65 20 64 65 | king.resolve.nexthops.via.the.de |
| 67e60 | 66 61 75 6c 74 20 72 6f 75 74 65 20 62 79 20 64 65 66 61 75 6c 74 2e 20 54 68 69 73 20 69 73 20 | fault.route.by.default..This.is. |
| 67e80 | 65 6e 61 62 6c 65 64 20 62 79 20 64 65 66 61 75 6c 74 20 66 6f 72 20 61 20 74 72 61 64 69 74 69 | enabled.by.default.for.a.traditi |
| 67ea0 | 6f 6e 61 6c 20 70 72 6f 66 69 6c 65 20 6f 66 20 46 52 52 20 77 68 69 63 68 20 77 65 20 75 73 65 | onal.profile.of.FRR.which.we.use |
| 67ec0 | 2e 20 49 74 20 61 6e 64 20 63 61 6e 20 62 65 20 64 69 73 61 62 6c 65 64 20 69 66 20 79 6f 75 20 | ..It.and.can.be.disabled.if.you. |
| 67ee0 | 64 6f 20 6e 6f 74 20 77 61 6e 74 20 74 6f 20 65 2e 67 2e 20 61 6c 6c 6f 77 20 42 47 50 20 74 6f | do.not.want.to.e.g..allow.BGP.to |
| 67f00 | 20 70 65 65 72 20 61 63 72 6f 73 73 20 74 68 65 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 2e 00 | .peer.across.the.default.route.. |
| 67f20 | 4e 6f 20 52 4f 41 20 65 78 69 73 74 73 20 77 68 69 63 68 20 63 6f 76 65 72 73 20 74 68 61 74 20 | No.ROA.exists.which.covers.that. |
| 67f40 | 70 72 65 66 69 78 2e 20 55 6e 66 6f 72 74 75 6e 61 74 65 6c 79 20 74 68 69 73 20 69 73 20 74 68 | prefix..Unfortunately.this.is.th |
| 67f60 | 65 20 63 61 73 65 20 66 6f 72 20 61 62 6f 75 74 20 34 30 25 2d 35 30 25 20 6f 66 20 74 68 65 20 | e.case.for.about.40%-50%.of.the. |
| 67f80 | 70 72 65 66 69 78 65 73 20 77 68 69 63 68 20 77 65 72 65 20 61 6e 6e 6f 75 6e 63 65 64 20 74 6f | prefixes.which.were.announced.to |
| 67fa0 | 20 74 68 65 20 3a 61 62 62 72 3a 60 44 46 5a 20 28 64 65 66 61 75 6c 74 2d 66 72 65 65 20 7a 6f | .the.:abbr:`DFZ.(default-free.zo |
| 67fc0 | 6e 65 29 60 20 61 74 20 74 68 65 20 73 74 61 72 74 20 6f 66 20 32 30 32 34 2e 00 4e 6f 20 52 4f | ne)`.at.the.start.of.2024..No.RO |
| 67fe0 | 41 20 65 78 69 73 74 73 20 77 68 69 63 68 20 63 6f 76 65 72 73 20 74 68 61 74 20 70 72 65 66 69 | A.exists.which.covers.that.prefi |
| 68000 | 78 2e 20 55 6e 66 6f 72 74 75 6e 61 74 65 6c 79 20 74 68 69 73 20 69 73 20 74 68 65 20 63 61 73 | x..Unfortunately.this.is.the.cas |
| 68020 | 65 20 66 6f 72 20 61 62 6f 75 74 20 38 30 25 20 6f 66 20 74 68 65 20 49 50 76 34 20 70 72 65 66 | e.for.about.80%.of.the.IPv4.pref |
| 68040 | 69 78 65 73 20 77 68 69 63 68 20 77 65 72 65 20 61 6e 6e 6f 75 6e 63 65 64 20 74 6f 20 74 68 65 | ixes.which.were.announced.to.the |
| 68060 | 20 3a 61 62 62 72 3a 60 44 46 5a 20 28 64 65 66 61 75 6c 74 2d 66 72 65 65 20 7a 6f 6e 65 29 60 | .:abbr:`DFZ.(default-free.zone)` |
| 68080 | 20 61 74 20 74 68 65 20 73 74 61 72 74 20 6f 66 20 32 30 32 30 00 4e 6f 20 56 4c 41 4e 20 74 61 | .at.the.start.of.2020.No.VLAN.ta |
| 680a0 | 67 67 69 6e 67 20 72 65 71 75 69 72 65 64 20 62 79 20 79 6f 75 72 20 49 53 50 2e 00 4e 6f 20 72 | gging.required.by.your.ISP..No.r |
| 680c0 | 6f 75 74 65 20 69 73 20 73 75 70 70 72 65 73 73 65 64 20 69 6e 64 65 66 69 6e 69 74 65 6c 79 2e | oute.is.suppressed.indefinitely. |
| 680e0 | 20 4d 61 78 69 6d 75 6d 2d 73 75 70 70 72 65 73 73 2d 74 69 6d 65 20 64 65 66 69 6e 65 73 20 74 | .Maximum-suppress-time.defines.t |
| 68100 | 68 65 20 6d 61 78 69 6d 75 6d 20 74 69 6d 65 20 61 20 72 6f 75 74 65 20 63 61 6e 20 62 65 20 73 | he.maximum.time.a.route.can.be.s |
| 68120 | 75 70 70 72 65 73 73 65 64 20 62 65 66 6f 72 65 20 69 74 20 69 73 20 72 65 2d 61 64 76 65 72 74 | uppressed.before.it.is.re-advert |
| 68140 | 69 73 65 64 2e 00 4e 6f 20 73 75 70 70 6f 72 74 20 66 6f 72 20 53 52 4c 42 00 4e 6f 20 73 75 70 | ised..No.support.for.SRLB.No.sup |
| 68160 | 70 6f 72 74 20 66 6f 72 20 62 69 6e 64 69 6e 67 20 53 49 44 00 4e 6f 20 73 75 70 70 6f 72 74 20 | port.for.binding.SID.No.support. |
| 68180 | 66 6f 72 20 6c 65 76 65 6c 20 72 65 64 69 73 74 72 69 62 75 74 69 6f 6e 20 28 4c 31 20 74 6f 20 | for.level.redistribution.(L1.to. |
| 681a0 | 4c 32 20 6f 72 20 4c 32 20 74 6f 20 4c 31 29 00 4e 6f 6e 2d 74 72 61 6e 73 70 61 72 65 6e 74 20 | L2.or.L2.to.L1).Non-transparent. |
| 681c0 | 70 72 6f 78 79 69 6e 67 20 72 65 71 75 69 72 65 73 20 74 68 61 74 20 74 68 65 20 63 6c 69 65 6e | proxying.requires.that.the.clien |
| 681e0 | 74 20 62 72 6f 77 73 65 72 73 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 77 69 74 68 20 74 68 | t.browsers.be.configured.with.th |
| 68200 | 65 20 70 72 6f 78 79 20 73 65 74 74 69 6e 67 73 20 62 65 66 6f 72 65 20 72 65 71 75 65 73 74 73 | e.proxy.settings.before.requests |
| 68220 | 20 61 72 65 20 72 65 64 69 72 65 63 74 65 64 2e 20 54 68 65 20 61 64 76 61 6e 74 61 67 65 20 6f | .are.redirected..The.advantage.o |
| 68240 | 66 20 74 68 69 73 20 69 73 20 74 68 61 74 20 74 68 65 20 63 6c 69 65 6e 74 20 77 65 62 20 62 72 | f.this.is.that.the.client.web.br |
| 68260 | 6f 77 73 65 72 20 63 61 6e 20 64 65 74 65 63 74 20 74 68 61 74 20 61 20 70 72 6f 78 79 20 69 73 | owser.can.detect.that.a.proxy.is |
| 68280 | 20 69 6e 20 75 73 65 20 61 6e 64 20 63 61 6e 20 62 65 68 61 76 65 20 61 63 63 6f 72 64 69 6e 67 | .in.use.and.can.behave.according |
| 682a0 | 6c 79 2e 20 49 6e 20 61 64 64 69 74 69 6f 6e 2c 20 77 65 62 2d 74 72 61 6e 73 6d 69 74 74 65 64 | ly..In.addition,.web-transmitted |
| 682c0 | 20 6d 61 6c 77 61 72 65 20 63 61 6e 20 73 6f 6d 65 74 69 6d 65 73 20 62 65 20 62 6c 6f 63 6b 65 | .malware.can.sometimes.be.blocke |
| 682e0 | 64 20 62 79 20 61 20 6e 6f 6e 2d 74 72 61 6e 73 70 61 72 65 6e 74 20 77 65 62 20 70 72 6f 78 79 | d.by.a.non-transparent.web.proxy |
| 68300 | 2c 20 73 69 6e 63 65 20 74 68 65 79 20 61 72 65 20 6e 6f 74 20 61 77 61 72 65 20 6f 66 20 74 68 | ,.since.they.are.not.aware.of.th |
| 68320 | 65 20 70 72 6f 78 79 20 73 65 74 74 69 6e 67 73 2e 00 4e 6f 6e 65 20 6f 66 20 74 68 65 20 6f 70 | e.proxy.settings..None.of.the.op |
| 68340 | 65 72 61 74 69 6e 67 20 73 79 73 74 65 6d 73 20 68 61 76 65 20 63 6c 69 65 6e 74 20 73 6f 66 74 | erating.systems.have.client.soft |
| 68360 | 77 61 72 65 20 69 6e 73 74 61 6c 6c 65 64 20 62 79 20 64 65 66 61 75 6c 74 00 4e 6f 72 6d 61 6c | ware.installed.by.default.Normal |
| 68380 | 20 62 75 74 20 73 69 67 6e 69 66 69 63 61 6e 74 20 63 6f 6e 64 69 74 69 6f 6e 73 20 2d 20 63 6f | .but.significant.conditions.-.co |
| 683a0 | 6e 64 69 74 69 6f 6e 73 20 74 68 61 74 20 61 72 65 20 6e 6f 74 20 65 72 72 6f 72 20 63 6f 6e 64 | nditions.that.are.not.error.cond |
| 683c0 | 69 74 69 6f 6e 73 2c 20 62 75 74 20 74 68 61 74 20 6d 61 79 20 72 65 71 75 69 72 65 20 73 70 65 | itions,.but.that.may.require.spe |
| 683e0 | 63 69 61 6c 20 68 61 6e 64 6c 69 6e 67 2e 00 4e 6f 74 20 61 6c 6c 20 3a 72 66 63 3a 60 36 38 38 | cial.handling..Not.all.:rfc:`688 |
| 68400 | 38 60 20 72 65 71 75 69 72 65 6d 65 6e 74 73 20 61 72 65 20 69 6d 70 6c 65 6d 65 6e 74 65 64 20 | 8`.requirements.are.implemented. |
| 68420 | 69 6e 20 43 47 4e 41 54 2e 00 4e 6f 74 20 61 6c 6c 20 74 72 61 6e 73 6d 69 74 20 70 6f 6c 69 63 | in.CGNAT..Not.all.transmit.polic |
| 68440 | 69 65 73 20 6d 61 79 20 62 65 20 38 30 32 2e 33 61 64 20 63 6f 6d 70 6c 69 61 6e 74 2c 20 70 61 | ies.may.be.802.3ad.compliant,.pa |
| 68460 | 72 74 69 63 75 6c 61 72 6c 79 20 69 6e 20 72 65 67 61 72 64 73 20 74 6f 20 74 68 65 20 70 61 63 | rticularly.in.regards.to.the.pac |
| 68480 | 6b 65 74 20 6d 69 73 6f 72 64 65 72 69 6e 67 20 72 65 71 75 69 72 65 6d 65 6e 74 73 20 6f 66 20 | ket.misordering.requirements.of. |
| 684a0 | 73 65 63 74 69 6f 6e 20 34 33 2e 32 2e 34 20 6f 66 20 74 68 65 20 38 30 32 2e 33 61 64 20 73 74 | section.43.2.4.of.the.802.3ad.st |
| 684c0 | 61 6e 64 61 72 64 2e 00 4e 6f 74 65 20 74 68 61 74 20 64 65 6c 65 74 69 6e 67 20 74 68 65 20 6c | andard..Note.that.deleting.the.l |
| 684e0 | 6f 67 20 66 69 6c 65 20 64 6f 65 73 20 6e 6f 74 20 73 74 6f 70 20 74 68 65 20 73 79 73 74 65 6d | og.file.does.not.stop.the.system |
| 68500 | 20 66 72 6f 6d 20 6c 6f 67 67 69 6e 67 20 65 76 65 6e 74 73 2e 20 49 66 20 79 6f 75 20 75 73 65 | .from.logging.events..If.you.use |
| 68520 | 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 77 68 69 6c 65 20 74 68 65 20 73 79 73 74 65 6d 20 69 | .this.command.while.the.system.i |
| 68540 | 73 20 6c 6f 67 67 69 6e 67 20 65 76 65 6e 74 73 2c 20 6f 6c 64 20 6c 6f 67 20 65 76 65 6e 74 73 | s.logging.events,.old.log.events |
| 68560 | 20 77 69 6c 6c 20 62 65 20 64 65 6c 65 74 65 64 2c 20 62 75 74 20 65 76 65 6e 74 73 20 61 66 74 | .will.be.deleted,.but.events.aft |
| 68580 | 65 72 20 74 68 65 20 64 65 6c 65 74 65 20 6f 70 65 72 61 74 69 6f 6e 20 77 69 6c 6c 20 62 65 20 | er.the.delete.operation.will.be. |
| 685a0 | 72 65 63 6f 72 64 65 64 20 69 6e 20 74 68 65 20 6e 65 77 20 66 69 6c 65 2e 20 54 6f 20 64 65 6c | recorded.in.the.new.file..To.del |
| 685c0 | 65 74 65 20 74 68 65 20 66 69 6c 65 20 61 6c 74 6f 67 65 74 68 65 72 2c 20 66 69 72 73 74 20 64 | ete.the.file.altogether,.first.d |
| 685e0 | 65 6c 65 74 65 20 6c 6f 67 67 69 6e 67 20 74 6f 20 74 68 65 20 66 69 6c 65 20 75 73 69 6e 67 20 | elete.logging.to.the.file.using. |
| 68600 | 73 79 73 74 65 6d 20 73 79 73 6c 6f 67 20 3a 72 65 66 3a 60 63 75 73 74 6f 6d 2d 66 69 6c 65 60 | system.syslog.:ref:`custom-file` |
| 68620 | 20 63 6f 6d 6d 61 6e 64 2c 20 61 6e 64 20 74 68 65 6e 20 64 65 6c 65 74 65 20 74 68 65 20 66 69 | .command,.and.then.delete.the.fi |
| 68640 | 6c 65 2e 00 4e 6f 74 65 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 77 69 74 68 20 74 68 65 20 70 75 | le..Note.the.command.with.the.pu |
| 68660 | 62 6c 69 63 20 6b 65 79 20 28 73 65 74 20 70 6b 69 20 6b 65 79 2d 70 61 69 72 20 69 70 73 65 63 | blic.key.(set.pki.key-pair.ipsec |
| 68680 | 2d 52 49 47 48 54 20 70 75 62 6c 69 63 20 6b 65 79 20 27 46 41 41 4f 43 41 51 38 41 4d 49 49 2e | -RIGHT.public.key.'FAAOCAQ8AMII. |
| 686a0 | 2e 2e 27 29 2e 00 4e 6f 74 65 3a 20 63 65 72 74 69 66 69 63 61 74 65 20 6e 61 6d 65 73 20 64 6f | ..')..Note:.certificate.names.do |
| 686c0 | 6e 27 74 20 6d 61 74 74 65 72 2c 20 77 65 20 75 73 65 20 27 6f 70 65 6e 76 70 6e 2d 6c 6f 63 61 | n't.matter,.we.use.'openvpn-loca |
| 686e0 | 6c 27 20 61 6e 64 20 27 6f 70 65 6e 76 70 6e 2d 72 65 6d 6f 74 65 27 20 62 75 74 20 74 68 65 79 | l'.and.'openvpn-remote'.but.they |
| 68700 | 20 63 61 6e 20 62 65 20 61 72 62 69 74 72 61 72 79 2e 00 4e 6f 74 69 63 65 00 4e 6f 77 20 63 6f | .can.be.arbitrary..Notice.Now.co |
| 68720 | 6e 66 69 67 75 72 65 20 63 6f 6e 6e 74 72 61 63 6b 2d 73 79 6e 63 20 73 65 72 76 69 63 65 20 6f | nfigure.conntrack-sync.service.o |
| 68740 | 6e 20 60 60 72 6f 75 74 65 72 31 60 60 20 2a 2a 61 6e 64 2a 2a 20 60 60 72 6f 75 74 65 72 32 60 | n.``router1``.**and**.``router2` |
| 68760 | 60 00 4e 6f 77 20 74 68 65 20 6e 6f 74 65 64 20 70 75 62 6c 69 63 20 6b 65 79 73 20 73 68 6f 75 | `.Now.the.noted.public.keys.shou |
| 68780 | 6c 64 20 62 65 20 65 6e 74 65 72 65 64 20 6f 6e 20 74 68 65 20 6f 70 70 6f 73 69 74 65 20 72 6f | ld.be.entered.on.the.opposite.ro |
| 687a0 | 75 74 65 72 73 2e 00 4e 6f 77 20 74 68 65 20 75 73 65 72 20 63 61 6e 20 63 6f 6e 6e 65 63 74 20 | uters..Now.the.user.can.connect. |
| 687c0 | 74 68 72 6f 75 67 68 20 73 73 68 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 20 28 61 73 73 75 6d | through.ssh.to.the.router.(assum |
| 687e0 | 69 6e 67 20 73 73 68 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 29 2e 00 4e 6f 77 20 75 73 65 72 | ing.ssh.is.configured)..Now.user |
| 68800 | 20 63 61 6e 20 63 6f 6e 6e 65 63 74 20 74 68 72 6f 75 67 68 20 73 73 68 20 74 6f 20 74 68 65 20 | .can.connect.through.ssh.to.the. |
| 68820 | 72 6f 75 74 65 72 20 28 61 73 73 75 6d 69 6e 67 20 73 73 68 20 69 73 20 63 6f 6e 66 69 67 75 72 | router.(assuming.ssh.is.configur |
| 68840 | 65 64 29 2e 00 4e 6f 77 20 77 65 20 61 64 64 20 74 68 65 20 6f 70 74 69 6f 6e 20 74 6f 20 74 68 | ed)..Now.we.add.the.option.to.th |
| 68860 | 65 20 73 63 6f 70 65 2c 20 61 64 61 70 74 20 74 6f 20 79 6f 75 72 20 73 65 74 75 70 00 4e 6f 77 | e.scope,.adapt.to.your.setup.Now |
| 68880 | 20 77 65 20 6e 65 65 64 20 74 6f 20 73 70 65 63 69 66 79 20 74 68 65 20 73 65 72 76 65 72 20 6e | .we.need.to.specify.the.server.n |
| 688a0 | 65 74 77 6f 72 6b 20 73 65 74 74 69 6e 67 73 2e 20 49 6e 20 61 6c 6c 20 63 61 73 65 73 20 77 65 | etwork.settings..In.all.cases.we |
| 688c0 | 20 6e 65 65 64 20 74 6f 20 73 70 65 63 69 66 79 20 74 68 65 20 73 75 62 6e 65 74 20 66 6f 72 20 | .need.to.specify.the.subnet.for. |
| 688e0 | 63 6c 69 65 6e 74 20 74 75 6e 6e 65 6c 20 65 6e 64 70 6f 69 6e 74 73 2e 20 53 69 6e 63 65 20 77 | client.tunnel.endpoints..Since.w |
| 68900 | 65 20 77 61 6e 74 20 63 6c 69 65 6e 74 73 20 74 6f 20 61 63 63 65 73 73 20 61 20 73 70 65 63 69 | e.want.clients.to.access.a.speci |
| 68920 | 66 69 63 20 6e 65 74 77 6f 72 6b 20 62 65 68 69 6e 64 20 6f 75 72 20 72 6f 75 74 65 72 2c 20 77 | fic.network.behind.our.router,.w |
| 68940 | 65 20 77 69 6c 6c 20 75 73 65 20 61 20 70 75 73 68 2d 72 6f 75 74 65 20 6f 70 74 69 6f 6e 20 66 | e.will.use.a.push-route.option.f |
| 68960 | 6f 72 20 69 6e 73 74 61 6c 6c 69 6e 67 20 74 68 61 74 20 72 6f 75 74 65 20 6f 6e 20 63 6c 69 65 | or.installing.that.route.on.clie |
| 68980 | 6e 74 73 2e 00 4e 6f 77 20 77 68 65 6e 20 63 6f 6e 6e 65 63 74 69 6e 67 20 74 68 65 20 75 73 65 | nts..Now.when.connecting.the.use |
| 689a0 | 72 20 77 69 6c 6c 20 66 69 72 73 74 20 62 65 20 61 73 6b 65 64 20 66 6f 72 20 74 68 65 20 70 61 | r.will.first.be.asked.for.the.pa |
| 689c0 | 73 73 77 6f 72 64 20 61 6e 64 20 74 68 65 6e 20 74 68 65 20 4f 54 50 20 6b 65 79 2e 00 4e 6f 77 | ssword.and.then.the.OTP.key..Now |
| 689e0 | 20 79 6f 75 20 61 72 65 20 72 65 61 64 79 20 74 6f 20 73 65 74 75 70 20 49 50 73 65 63 2e 20 54 | .you.are.ready.to.setup.IPsec..T |
| 68a00 | 68 65 20 6b 65 79 20 70 6f 69 6e 74 73 3a 00 4e 6f 77 20 79 6f 75 20 61 72 65 20 72 65 61 64 79 | he.key.points:.Now.you.are.ready |
| 68a20 | 20 74 6f 20 73 65 74 75 70 20 49 50 73 65 63 2e 20 59 6f 75 27 6c 6c 20 6e 65 65 64 20 74 6f 20 | .to.setup.IPsec..You'll.need.to. |
| 68a40 | 75 73 65 20 61 6e 20 49 44 20 69 6e 73 74 65 61 64 20 6f 66 20 61 64 64 72 65 73 73 20 66 6f 72 | use.an.ID.instead.of.address.for |
| 68a60 | 20 74 68 65 20 70 65 65 72 2e 00 4e 75 6d 62 65 72 20 6f 66 20 61 6e 74 65 6e 6e 61 73 20 6f 6e | .the.peer..Number.of.antennas.on |
| 68a80 | 20 74 68 69 73 20 63 61 72 64 00 4e 75 6d 62 65 72 20 6f 66 20 62 69 74 73 20 6f 66 20 63 6c 69 | .this.card.Number.of.bits.of.cli |
| 68aa0 | 65 6e 74 20 49 50 76 34 20 61 64 64 72 65 73 73 20 74 6f 20 70 61 73 73 20 77 68 65 6e 20 73 65 | ent.IPv4.address.to.pass.when.se |
| 68ac0 | 6e 64 69 6e 67 20 45 44 4e 53 20 43 6c 69 65 6e 74 20 53 75 62 6e 65 74 20 61 64 64 72 65 73 73 | nding.EDNS.Client.Subnet.address |
| 68ae0 | 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2e 00 4e 75 6d 62 65 72 20 6f 66 20 6c 69 6e 65 73 20 74 6f | .information..Number.of.lines.to |
| 68b00 | 20 62 65 20 64 69 73 70 6c 61 79 65 64 2c 20 64 65 66 61 75 6c 74 20 31 30 00 4f 53 50 46 00 4f | .be.displayed,.default.10.OSPF.O |
| 68b20 | 53 50 46 20 53 52 20 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 4f 53 50 46 20 69 73 20 61 20 | SPF.SR..Configuration.OSPF.is.a. |
| 68b40 | 77 69 64 65 6c 79 20 75 73 65 64 20 49 47 50 20 69 6e 20 6c 61 72 67 65 20 65 6e 74 65 72 70 72 | widely.used.IGP.in.large.enterpr |
| 68b60 | 69 73 65 20 6e 65 74 77 6f 72 6b 73 2e 00 4f 53 50 46 20 72 6f 75 74 69 6e 67 20 64 65 76 69 63 | ise.networks..OSPF.routing.devic |
| 68b80 | 65 73 20 6e 6f 72 6d 61 6c 6c 79 20 64 69 73 63 6f 76 65 72 20 74 68 65 69 72 20 6e 65 69 67 68 | es.normally.discover.their.neigh |
| 68ba0 | 62 6f 72 73 20 64 79 6e 61 6d 69 63 61 6c 6c 79 20 62 79 20 6c 69 73 74 65 6e 69 6e 67 20 74 6f | bors.dynamically.by.listening.to |
| 68bc0 | 20 74 68 65 20 62 72 6f 61 64 63 61 73 74 20 6f 72 20 6d 75 6c 74 69 63 61 73 74 20 68 65 6c 6c | .the.broadcast.or.multicast.hell |
| 68be0 | 6f 20 70 61 63 6b 65 74 73 20 6f 6e 20 74 68 65 20 6e 65 74 77 6f 72 6b 2e 20 42 65 63 61 75 73 | o.packets.on.the.network..Becaus |
| 68c00 | 65 20 61 6e 20 4e 42 4d 41 20 6e 65 74 77 6f 72 6b 20 64 6f 65 73 20 6e 6f 74 20 73 75 70 70 6f | e.an.NBMA.network.does.not.suppo |
| 68c20 | 72 74 20 62 72 6f 61 64 63 61 73 74 20 28 6f 72 20 6d 75 6c 74 69 63 61 73 74 29 2c 20 74 68 65 | rt.broadcast.(or.multicast),.the |
| 68c40 | 20 64 65 76 69 63 65 20 63 61 6e 6e 6f 74 20 64 69 73 63 6f 76 65 72 20 69 74 73 20 6e 65 69 67 | .device.cannot.discover.its.neig |
| 68c60 | 68 62 6f 72 73 20 64 79 6e 61 6d 69 63 61 6c 6c 79 2c 20 73 6f 20 79 6f 75 20 6d 75 73 74 20 63 | hbors.dynamically,.so.you.must.c |
| 68c80 | 6f 6e 66 69 67 75 72 65 20 61 6c 6c 20 74 68 65 20 6e 65 69 67 68 62 6f 72 73 20 73 74 61 74 69 | onfigure.all.the.neighbors.stati |
| 68ca0 | 63 61 6c 6c 79 2e 00 4f 53 50 46 76 32 20 28 49 50 76 34 29 00 4f 53 50 46 76 33 20 28 49 50 76 | cally..OSPFv2.(IPv4).OSPFv3.(IPv |
| 68cc0 | 36 29 00 4f 54 50 2d 6b 65 79 20 67 65 6e 65 72 61 74 69 6f 6e 00 4f 66 66 6c 6f 61 64 69 6e 67 | 6).OTP-key.generation.Offloading |
| 68ce0 | 00 4f 66 66 73 65 74 20 6f 66 20 74 68 65 20 63 6c 69 65 6e 74 27 73 20 73 75 62 6e 65 74 20 69 | .Offset.of.the.client's.subnet.i |
| 68d00 | 6e 20 73 65 63 6f 6e 64 73 20 66 72 6f 6d 20 43 6f 6f 72 64 69 6e 61 74 65 64 20 55 6e 69 76 65 | n.seconds.from.Coordinated.Unive |
| 68d20 | 72 73 61 6c 20 54 69 6d 65 20 28 55 54 43 29 00 4f 66 74 65 6e 20 77 65 20 6e 65 65 64 20 74 6f | rsal.Time.(UTC).Often.we.need.to |
| 68d40 | 20 65 6d 62 65 64 20 6f 6e 65 20 70 6f 6c 69 63 79 20 69 6e 74 6f 20 61 6e 6f 74 68 65 72 20 6f | .embed.one.policy.into.another.o |
| 68d60 | 6e 65 2e 20 49 74 20 69 73 20 70 6f 73 73 69 62 6c 65 20 74 6f 20 64 6f 20 73 6f 20 6f 6e 20 63 | ne..It.is.possible.to.do.so.on.c |
| 68d80 | 6c 61 73 73 66 75 6c 20 70 6f 6c 69 63 69 65 73 2c 20 62 79 20 61 74 74 61 63 68 69 6e 67 20 61 | lassful.policies,.by.attaching.a |
| 68da0 | 20 6e 65 77 20 70 6f 6c 69 63 79 20 69 6e 74 6f 20 61 20 63 6c 61 73 73 2e 20 46 6f 72 20 69 6e | .new.policy.into.a.class..For.in |
| 68dc0 | 73 74 61 6e 63 65 2c 20 79 6f 75 20 6d 69 67 68 74 20 77 61 6e 74 20 74 6f 20 61 70 70 6c 79 20 | stance,.you.might.want.to.apply. |
| 68de0 | 64 69 66 66 65 72 65 6e 74 20 70 6f 6c 69 63 69 65 73 20 74 6f 20 74 68 65 20 64 69 66 66 65 72 | different.policies.to.the.differ |
| 68e00 | 65 6e 74 20 63 6c 61 73 73 65 73 20 6f 66 20 61 20 52 6f 75 6e 64 2d 52 6f 62 69 6e 20 70 6f 6c | ent.classes.of.a.Round-Robin.pol |
| 68e20 | 69 63 79 20 79 6f 75 20 68 61 76 65 20 63 6f 6e 66 69 67 75 72 65 64 2e 00 4f 66 74 65 6e 20 79 | icy.you.have.configured..Often.y |
| 68e40 | 6f 75 20 77 69 6c 6c 20 61 6c 73 6f 20 68 61 76 65 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 79 | ou.will.also.have.to.configure.y |
| 68e60 | 6f 75 72 20 2a 64 65 66 61 75 6c 74 2a 20 74 72 61 66 66 69 63 20 69 6e 20 74 68 65 20 73 61 6d | our.*default*.traffic.in.the.sam |
| 68e80 | 65 20 77 61 79 20 79 6f 75 20 64 6f 20 77 69 74 68 20 61 20 63 6c 61 73 73 2e 20 2a 44 65 66 61 | e.way.you.do.with.a.class..*Defa |
| 68ea0 | 75 6c 74 2a 20 63 61 6e 20 62 65 20 63 6f 6e 73 69 64 65 72 65 64 20 61 20 63 6c 61 73 73 20 61 | ult*.can.be.considered.a.class.a |
| 68ec0 | 73 20 69 74 20 62 65 68 61 76 65 73 20 6c 69 6b 65 20 74 68 61 74 2e 20 49 74 20 63 6f 6e 74 61 | s.it.behaves.like.that..It.conta |
| 68ee0 | 69 6e 73 20 61 6e 79 20 74 72 61 66 66 69 63 20 74 68 61 74 20 64 69 64 20 6e 6f 74 20 6d 61 74 | ins.any.traffic.that.did.not.mat |
| 68f00 | 63 68 20 61 6e 79 20 6f 66 20 74 68 65 20 64 65 66 69 6e 65 64 20 63 6c 61 73 73 65 73 2c 20 73 | ch.any.of.the.defined.classes,.s |
| 68f20 | 6f 20 69 74 20 69 73 20 6c 69 6b 65 20 61 6e 20 6f 70 65 6e 20 63 6c 61 73 73 2c 20 61 20 63 6c | o.it.is.like.an.open.class,.a.cl |
| 68f40 | 61 73 73 20 77 69 74 68 6f 75 74 20 6d 61 74 63 68 69 6e 67 20 66 69 6c 74 65 72 73 2e 00 4f 6e | ass.without.matching.filters..On |
| 68f60 | 20 61 63 74 69 76 65 20 72 6f 75 74 65 72 20 72 75 6e 3a 00 4f 6e 20 62 6f 74 68 20 73 69 64 65 | .active.router.run:.On.both.side |
| 68f80 | 73 2c 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 67 65 6e 65 72 61 74 65 20 61 20 73 65 6c 66 2d 73 | s,.you.need.to.generate.a.self-s |
| 68fa0 | 69 67 6e 65 64 20 63 65 72 74 69 66 69 63 61 74 65 2c 20 70 72 65 66 65 72 72 61 62 6c 79 20 75 | igned.certificate,.preferrably.u |
| 68fc0 | 73 69 6e 67 20 74 68 65 20 22 65 63 22 20 28 65 6c 6c 69 70 74 69 63 20 63 75 72 76 65 29 20 74 | sing.the."ec".(elliptic.curve).t |
| 68fe0 | 79 70 65 2e 20 59 6f 75 20 63 61 6e 20 67 65 6e 65 72 61 74 65 20 74 68 65 6d 20 62 79 20 65 78 | ype..You.can.generate.them.by.ex |
| 69000 | 65 63 75 74 69 6e 67 20 63 6f 6d 6d 61 6e 64 20 60 60 72 75 6e 20 67 65 6e 65 72 61 74 65 20 70 | ecuting.command.``run.generate.p |
| 69020 | 6b 69 20 63 65 72 74 69 66 69 63 61 74 65 20 73 65 6c 66 2d 73 69 67 6e 65 64 20 69 6e 73 74 61 | ki.certificate.self-signed.insta |
| 69040 | 6c 6c 20 3c 6e 61 6d 65 3e 60 60 20 69 6e 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e | ll.<name>``.in.the.configuration |
| 69060 | 20 6d 6f 64 65 2e 20 4f 6e 63 65 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 69 73 20 63 6f 6d 70 6c | .mode..Once.the.command.is.compl |
| 69080 | 65 74 65 2c 20 69 74 20 77 69 6c 6c 20 61 64 64 20 74 68 65 20 63 65 72 74 69 66 69 63 61 74 65 | ete,.it.will.add.the.certificate |
| 690a0 | 20 74 6f 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 73 65 73 73 69 6f 6e 2c 20 74 | .to.the.configuration.session,.t |
| 690c0 | 6f 20 74 68 65 20 60 60 70 6b 69 60 60 20 73 75 62 74 72 65 65 2e 20 59 6f 75 20 63 61 6e 20 74 | o.the.``pki``.subtree..You.can.t |
| 690e0 | 68 65 6e 20 72 65 76 69 65 77 20 74 68 65 20 70 72 6f 70 6f 73 65 64 20 63 68 61 6e 67 65 73 20 | hen.review.the.proposed.changes. |
| 69100 | 61 6e 64 20 63 6f 6d 6d 69 74 20 74 68 65 6d 2e 00 4f 6e 20 6c 6f 77 20 72 61 74 65 73 20 28 62 | and.commit.them..On.low.rates.(b |
| 69120 | 65 6c 6f 77 20 34 30 4d 62 69 74 29 20 79 6f 75 20 6d 61 79 20 77 61 6e 74 20 74 6f 20 74 75 6e | elow.40Mbit).you.may.want.to.tun |
| 69140 | 65 20 60 71 75 61 6e 74 75 6d 60 20 64 6f 77 6e 20 74 6f 20 73 6f 6d 65 74 68 69 6e 67 20 6c 69 | e.`quantum`.down.to.something.li |
| 69160 | 6b 65 20 33 30 30 20 62 79 74 65 73 2e 00 4f 6e 20 6d 6f 73 74 20 73 63 65 6e 61 72 69 6f 73 2c | ke.300.bytes..On.most.scenarios, |
| 69180 | 20 74 68 65 72 65 27 73 20 6e 6f 20 6e 65 65 64 20 74 6f 20 63 68 61 6e 67 65 20 73 70 65 63 69 | .there's.no.need.to.change.speci |
| 691a0 | 66 69 63 20 70 61 72 61 6d 65 74 65 72 73 2c 20 61 6e 64 20 75 73 69 6e 67 20 64 65 66 61 75 6c | fic.parameters,.and.using.defaul |
| 691c0 | 74 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 73 20 65 6e 6f 75 67 68 2e 20 42 75 74 20 74 | t.configuration.is.enough..But.t |
| 691e0 | 68 65 72 65 20 61 72 65 20 63 61 73 65 73 20 77 65 72 65 20 65 78 74 72 61 20 63 6f 6e 66 69 67 | here.are.cases.were.extra.config |
| 69200 | 75 72 61 74 69 6f 6e 20 69 73 20 6e 65 65 64 65 64 2e 00 4f 6e 20 73 74 61 6e 64 62 79 20 72 6f | uration.is.needed..On.standby.ro |
| 69220 | 75 74 65 72 20 72 75 6e 3a 00 4f 6e 20 73 79 73 74 65 6d 73 20 77 69 74 68 20 6d 75 6c 74 69 70 | uter.run:.On.systems.with.multip |
| 69240 | 6c 65 20 72 65 64 75 6e 64 61 6e 74 20 75 70 6c 69 6e 6b 73 20 61 6e 64 20 72 6f 75 74 65 73 2c | le.redundant.uplinks.and.routes, |
| 69260 | 20 69 74 27 73 20 61 20 67 6f 6f 64 20 69 64 65 61 20 74 6f 20 75 73 65 20 61 20 64 65 64 69 63 | .it's.a.good.idea.to.use.a.dedic |
| 69280 | 61 74 65 64 20 61 64 64 72 65 73 73 20 66 6f 72 20 6d 61 6e 61 67 65 6d 65 6e 74 20 61 6e 64 20 | ated.address.for.management.and. |
| 692a0 | 64 79 6e 61 6d 69 63 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 73 2e 20 48 6f 77 65 76 | dynamic.routing.protocols..Howev |
| 692c0 | 65 72 2c 20 61 73 73 69 67 6e 69 6e 67 20 74 68 61 74 20 61 64 64 72 65 73 73 20 74 6f 20 61 20 | er,.assigning.that.address.to.a. |
| 692e0 | 70 68 79 73 69 63 61 6c 20 6c 69 6e 6b 20 69 73 20 72 69 73 6b 79 3a 20 69 66 20 74 68 61 74 20 | physical.link.is.risky:.if.that. |
| 69300 | 6c 69 6e 6b 20 67 6f 65 73 20 64 6f 77 6e 2c 20 74 68 61 74 20 61 64 64 72 65 73 73 20 77 69 6c | link.goes.down,.that.address.wil |
| 69320 | 6c 20 62 65 63 6f 6d 65 20 69 6e 61 63 63 65 73 73 69 62 6c 65 2e 20 41 20 63 6f 6d 6d 6f 6e 20 | l.become.inaccessible..A.common. |
| 69340 | 73 6f 6c 75 74 69 6f 6e 20 69 73 20 74 6f 20 61 73 73 69 67 6e 20 74 68 65 20 6d 61 6e 61 67 65 | solution.is.to.assign.the.manage |
| 69360 | 6d 65 6e 74 20 61 64 64 72 65 73 73 20 74 6f 20 61 20 6c 6f 6f 70 62 61 63 6b 20 6f 72 20 61 20 | ment.address.to.a.loopback.or.a. |
| 69380 | 64 75 6d 6d 79 20 69 6e 74 65 72 66 61 63 65 20 61 6e 64 20 61 64 76 65 72 74 69 73 65 20 74 68 | dummy.interface.and.advertise.th |
| 693a0 | 61 74 20 61 64 64 72 65 73 73 20 76 69 61 20 61 6c 6c 20 70 68 79 73 69 63 61 6c 20 6c 69 6e 6b | at.address.via.all.physical.link |
| 693c0 | 73 2c 20 73 6f 20 74 68 61 74 20 69 74 27 73 20 72 65 61 63 68 61 62 6c 65 20 74 68 72 6f 75 67 | s,.so.that.it's.reachable.throug |
| 693e0 | 68 20 61 6e 79 20 6f 66 20 74 68 65 6d 2e 20 53 69 6e 63 65 20 69 6e 20 4c 69 6e 75 78 2d 62 61 | h.any.of.them..Since.in.Linux-ba |
| 69400 | 73 65 64 20 73 79 73 74 65 6d 73 2c 20 74 68 65 72 65 20 63 61 6e 20 62 65 20 6f 6e 6c 79 20 6f | sed.systems,.there.can.be.only.o |
| 69420 | 6e 65 20 6c 6f 6f 70 62 61 63 6b 20 69 6e 74 65 72 66 61 63 65 2c 20 69 74 27 73 20 62 65 74 74 | ne.loopback.interface,.it's.bett |
| 69440 | 65 72 20 74 6f 20 75 73 65 20 61 20 64 75 6d 6d 79 20 69 6e 74 65 72 66 61 63 65 20 66 6f 72 20 | er.to.use.a.dummy.interface.for. |
| 69460 | 74 68 61 74 20 70 75 72 70 6f 73 65 2c 20 73 69 6e 63 65 20 74 68 65 79 20 63 61 6e 20 62 65 20 | that.purpose,.since.they.can.be. |
| 69480 | 61 64 64 65 64 2c 20 72 65 6d 6f 76 65 64 2c 20 61 6e 64 20 74 61 6b 65 6e 20 75 70 20 61 6e 64 | added,.removed,.and.taken.up.and |
| 694a0 | 20 64 6f 77 6e 20 69 6e 64 65 70 65 6e 64 65 6e 74 6c 79 2e 00 4f 6e 20 74 68 65 20 4c 45 46 54 | .down.independently..On.the.LEFT |
| 694c0 | 20 28 73 74 61 74 69 63 20 61 64 64 72 65 73 73 29 3a 00 4f 6e 20 74 68 65 20 4c 45 46 54 3a 00 | .(static.address):.On.the.LEFT:. |
| 694e0 | 4f 6e 20 74 68 65 20 52 49 47 48 54 20 28 64 79 6e 61 6d 69 63 20 61 64 64 72 65 73 73 29 3a 00 | On.the.RIGHT.(dynamic.address):. |
| 69500 | 4f 6e 20 74 68 65 20 52 49 47 48 54 2c 20 73 65 74 75 70 20 62 79 20 61 6e 61 6c 6f 67 79 20 61 | On.the.RIGHT,.setup.by.analogy.a |
| 69520 | 6e 64 20 73 77 61 70 20 6c 6f 63 61 6c 20 61 6e 64 20 72 65 6d 6f 74 65 20 61 64 64 72 65 73 73 | nd.swap.local.and.remote.address |
| 69540 | 65 73 2e 00 4f 6e 20 74 68 65 20 52 49 47 48 54 3a 00 4f 6e 20 74 68 65 20 61 63 74 69 76 65 20 | es..On.the.RIGHT:.On.the.active. |
| 69560 | 72 6f 75 74 65 72 2c 20 79 6f 75 20 73 68 6f 75 6c 64 20 68 61 76 65 20 69 6e 66 6f 72 6d 61 74 | router,.you.should.have.informat |
| 69580 | 69 6f 6e 20 69 6e 20 74 68 65 20 69 6e 74 65 72 6e 61 6c 2d 63 61 63 68 65 20 6f 66 20 63 6f 6e | ion.in.the.internal-cache.of.con |
| 695a0 | 6e 74 72 61 63 6b 2d 73 79 6e 63 2e 20 54 68 65 20 73 61 6d 65 20 63 75 72 72 65 6e 74 20 61 63 | ntrack-sync..The.same.current.ac |
| 695c0 | 74 69 76 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 6e 75 6d 62 65 72 20 73 68 6f 75 6c 64 20 62 | tive.connections.number.should.b |
| 695e0 | 65 20 73 68 6f 77 6e 20 69 6e 20 74 68 65 20 65 78 74 65 72 6e 61 6c 2d 63 61 63 68 65 20 6f 66 | e.shown.in.the.external-cache.of |
| 69600 | 20 74 68 65 20 73 74 61 6e 64 62 79 20 72 6f 75 74 65 72 00 4f 6e 20 74 68 65 20 69 6e 69 74 69 | .the.standby.router.On.the.initi |
| 69620 | 61 74 6f 72 2c 20 77 65 20 6e 65 65 64 20 74 6f 20 73 65 74 20 74 68 65 20 72 65 6d 6f 74 65 2d | ator,.we.need.to.set.the.remote- |
| 69640 | 69 64 20 6f 70 74 69 6f 6e 20 73 6f 20 74 68 61 74 20 69 74 20 63 61 6e 20 69 64 65 6e 74 69 66 | id.option.so.that.it.can.identif |
| 69660 | 79 20 49 4b 45 20 74 72 61 66 66 69 63 20 66 72 6f 6d 20 74 68 65 20 72 65 73 70 6f 6e 64 65 72 | y.IKE.traffic.from.the.responder |
| 69680 | 20 63 6f 72 72 65 63 74 6c 79 2e 00 4f 6e 20 74 68 65 20 69 6e 69 74 69 61 74 6f 72 2c 20 77 65 | .correctly..On.the.initiator,.we |
| 696a0 | 20 73 65 74 20 74 68 65 20 70 65 65 72 20 61 64 64 72 65 73 73 20 74 6f 20 69 74 73 20 70 75 62 | .set.the.peer.address.to.its.pub |
| 696c0 | 6c 69 63 20 61 64 64 72 65 73 73 2c 20 62 75 74 20 6f 6e 20 74 68 65 20 72 65 73 70 6f 6e 64 65 | lic.address,.but.on.the.responde |
| 696e0 | 72 20 77 65 20 6f 6e 6c 79 20 73 65 74 20 74 68 65 20 69 64 2e 00 4f 6e 20 74 68 65 20 6c 61 73 | r.we.only.set.the.id..On.the.las |
| 69700 | 74 20 68 6f 70 20 72 6f 75 74 65 72 20 69 66 20 69 74 20 69 73 20 64 65 73 69 72 65 64 20 74 6f | t.hop.router.if.it.is.desired.to |
| 69720 | 20 6e 6f 74 20 73 77 69 74 63 68 20 6f 76 65 72 20 74 6f 20 74 68 65 20 53 50 54 20 74 72 65 65 | .not.switch.over.to.the.SPT.tree |
| 69740 | 20 63 6f 6e 66 69 67 75 72 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 2e 00 4f 6e 20 74 68 65 20 | .configure.this.command..On.the. |
| 69760 | 72 65 73 70 6f 6e 64 65 72 2c 20 77 65 20 6e 65 65 64 20 74 6f 20 73 65 74 20 74 68 65 20 6c 6f | responder,.we.need.to.set.the.lo |
| 69780 | 63 61 6c 20 69 64 20 73 6f 20 74 68 61 74 20 69 6e 69 74 69 61 74 6f 72 20 63 61 6e 20 6b 6e 6f | cal.id.so.that.initiator.can.kno |
| 697a0 | 77 20 77 68 6f 27 73 20 74 61 6c 6b 69 6e 67 20 74 6f 20 69 74 20 66 6f 72 20 74 68 65 20 70 6f | w.who's.talking.to.it.for.the.po |
| 697c0 | 69 6e 74 20 23 33 20 74 6f 20 77 6f 72 6b 2e 00 4f 6e 63 65 20 61 20 63 6c 61 73 73 20 68 61 73 | int.#3.to.work..Once.a.class.has |
| 697e0 | 20 61 20 66 69 6c 74 65 72 20 63 6f 6e 66 69 67 75 72 65 64 2c 20 79 6f 75 20 77 69 6c 6c 20 61 | .a.filter.configured,.you.will.a |
| 69800 | 6c 73 6f 20 68 61 76 65 20 74 6f 20 64 65 66 69 6e 65 20 77 68 61 74 20 79 6f 75 20 77 61 6e 74 | lso.have.to.define.what.you.want |
| 69820 | 20 74 6f 20 64 6f 20 77 69 74 68 20 74 68 65 20 74 72 61 66 66 69 63 20 6f 66 20 74 68 61 74 20 | .to.do.with.the.traffic.of.that. |
| 69840 | 63 6c 61 73 73 2c 20 77 68 61 74 20 73 70 65 63 69 66 69 63 20 54 72 61 66 66 69 63 2d 43 6f 6e | class,.what.specific.Traffic-Con |
| 69860 | 74 72 6f 6c 20 74 72 65 61 74 6d 65 6e 74 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 67 69 76 65 20 | trol.treatment.you.want.to.give. |
| 69880 | 69 74 2e 20 59 6f 75 20 77 69 6c 6c 20 68 61 76 65 20 64 69 66 66 65 72 65 6e 74 20 70 6f 73 73 | it..You.will.have.different.poss |
| 698a0 | 69 62 69 6c 69 74 69 65 73 20 64 65 70 65 6e 64 69 6e 67 20 6f 6e 20 74 68 65 20 54 72 61 66 66 | ibilities.depending.on.the.Traff |
| 698c0 | 69 63 20 50 6f 6c 69 63 79 20 79 6f 75 20 61 72 65 20 63 6f 6e 66 69 67 75 72 69 6e 67 2e 00 4f | ic.Policy.you.are.configuring..O |
| 698e0 | 6e 63 65 20 61 20 6e 65 69 67 68 62 6f 72 20 68 61 73 20 62 65 65 6e 20 66 6f 75 6e 64 2c 20 74 | nce.a.neighbor.has.been.found,.t |
| 69900 | 68 65 20 65 6e 74 72 79 20 69 73 20 63 6f 6e 73 69 64 65 72 65 64 20 74 6f 20 62 65 20 76 61 6c | he.entry.is.considered.to.be.val |
| 69920 | 69 64 20 66 6f 72 20 61 74 20 6c 65 61 73 74 20 66 6f 72 20 74 68 69 73 20 73 70 65 63 69 66 69 | id.for.at.least.for.this.specifi |
| 69940 | 63 20 74 69 6d 65 2e 20 41 6e 20 65 6e 74 72 79 27 73 20 76 61 6c 69 64 69 74 79 20 77 69 6c 6c | c.time..An.entry's.validity.will |
| 69960 | 20 62 65 20 65 78 74 65 6e 64 65 64 20 69 66 20 69 74 20 72 65 63 65 69 76 65 73 20 70 6f 73 69 | .be.extended.if.it.receives.posi |
| 69980 | 74 69 76 65 20 66 65 65 64 62 61 63 6b 20 66 72 6f 6d 20 68 69 67 68 65 72 20 6c 65 76 65 6c 20 | tive.feedback.from.higher.level. |
| 699a0 | 70 72 6f 74 6f 63 6f 6c 73 2e 00 4f 6e 63 65 20 61 20 72 6f 75 74 65 20 69 73 20 61 73 73 65 73 | protocols..Once.a.route.is.asses |
| 699c0 | 73 65 64 20 61 20 70 65 6e 61 6c 74 79 2c 20 74 68 65 20 70 65 6e 61 6c 74 79 20 69 73 20 64 65 | sed.a.penalty,.the.penalty.is.de |
| 699e0 | 63 72 65 61 73 65 64 20 62 79 20 68 61 6c 66 20 65 61 63 68 20 74 69 6d 65 20 61 20 70 72 65 64 | creased.by.half.each.time.a.pred |
| 69a00 | 65 66 69 6e 65 64 20 61 6d 6f 75 6e 74 20 6f 66 20 74 69 6d 65 20 65 6c 61 70 73 65 73 20 28 68 | efined.amount.of.time.elapses.(h |
| 69a20 | 61 6c 66 2d 6c 69 66 65 2d 74 69 6d 65 29 2e 20 57 68 65 6e 20 74 68 65 20 61 63 63 75 6d 75 6c | alf-life-time)..When.the.accumul |
| 69a40 | 61 74 65 64 20 70 65 6e 61 6c 74 69 65 73 20 66 61 6c 6c 20 62 65 6c 6f 77 20 61 20 70 72 65 64 | ated.penalties.fall.below.a.pred |
| 69a60 | 65 66 69 6e 65 64 20 74 68 72 65 73 68 6f 6c 64 20 28 72 65 75 73 65 2d 76 61 6c 75 65 29 2c 20 | efined.threshold.(reuse-value),. |
| 69a80 | 74 68 65 20 72 6f 75 74 65 20 69 73 20 75 6e 73 75 70 70 72 65 73 73 65 64 20 61 6e 64 20 61 64 | the.route.is.unsuppressed.and.ad |
| 69aa0 | 64 65 64 20 62 61 63 6b 20 69 6e 74 6f 20 74 68 65 20 42 47 50 20 72 6f 75 74 69 6e 67 20 74 61 | ded.back.into.the.BGP.routing.ta |
| 69ac0 | 62 6c 65 2e 00 4f 6e 63 65 20 61 20 74 72 61 66 66 69 63 2d 70 6f 6c 69 63 79 20 69 73 20 63 72 | ble..Once.a.traffic-policy.is.cr |
| 69ae0 | 65 61 74 65 64 2c 20 79 6f 75 20 63 61 6e 20 61 70 70 6c 79 20 69 74 20 74 6f 20 61 6e 20 69 6e | eated,.you.can.apply.it.to.an.in |
| 69b00 | 74 65 72 66 61 63 65 3a 00 4f 6e 63 65 20 61 20 75 73 65 72 20 68 61 73 20 32 46 41 2f 4f 54 50 | terface:.Once.a.user.has.2FA/OTP |
| 69b20 | 20 63 6f 6e 66 69 67 75 72 65 64 20 61 67 61 69 6e 73 74 20 74 68 65 69 72 20 61 63 63 6f 75 6e | .configured.against.their.accoun |
| 69b40 | 74 2c 20 74 68 65 79 20 6d 75 73 74 20 6c 6f 67 69 6e 20 75 73 69 6e 67 20 74 68 65 69 72 20 70 | t,.they.must.login.using.their.p |
| 69b60 | 61 73 73 77 6f 72 64 20 77 69 74 68 20 74 68 65 20 4f 54 50 20 63 6f 64 65 20 61 70 70 65 6e 64 | assword.with.the.OTP.code.append |
| 69b80 | 65 64 20 74 6f 20 69 74 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 3a 20 49 66 20 74 68 65 20 75 73 | ed.to.it..For.example:.If.the.us |
| 69ba0 | 65 72 73 20 70 61 73 73 77 6f 72 64 20 69 73 20 76 79 6f 73 72 6f 63 6b 73 20 61 6e 64 20 74 68 | ers.password.is.vyosrocks.and.th |
| 69bc0 | 65 20 4f 54 50 20 63 6f 64 65 20 69 73 20 38 31 37 34 35 34 20 74 68 65 6e 20 74 68 65 79 20 77 | e.OTP.code.is.817454.then.they.w |
| 69be0 | 6f 75 6c 64 20 65 6e 74 65 72 20 74 68 65 69 72 20 70 61 73 73 77 6f 72 64 20 61 73 20 76 79 6f | ould.enter.their.password.as.vyo |
| 69c00 | 73 72 6f 63 6b 73 38 31 37 34 35 34 00 4f 6e 63 65 20 63 72 65 61 74 65 64 20 69 6e 20 74 68 65 | srocks817454.Once.created.in.the |
| 69c20 | 20 73 79 73 74 65 6d 2c 20 50 73 65 75 64 6f 2d 45 74 68 65 72 6e 65 74 20 69 6e 74 65 72 66 61 | .system,.Pseudo-Ethernet.interfa |
| 69c40 | 63 65 73 20 63 61 6e 20 62 65 20 72 65 66 65 72 65 6e 63 65 64 20 69 6e 20 74 68 65 20 65 78 61 | ces.can.be.referenced.in.the.exa |
| 69c60 | 63 74 20 73 61 6d 65 20 77 61 79 20 61 73 20 6f 74 68 65 72 20 45 74 68 65 72 6e 65 74 20 69 6e | ct.same.way.as.other.Ethernet.in |
| 69c80 | 74 65 72 66 61 63 65 73 2e 20 4e 6f 74 65 73 20 61 62 6f 75 74 20 75 73 69 6e 67 20 50 73 65 75 | terfaces..Notes.about.using.Pseu |
| 69ca0 | 64 6f 2d 20 45 74 68 65 72 6e 65 74 20 69 6e 74 65 72 66 61 63 65 73 3a 00 4f 6e 63 65 20 64 79 | do-.Ethernet.interfaces:.Once.dy |
| 69cc0 | 6e 61 6d 69 63 20 66 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 73 20 61 72 65 20 64 65 66 69 6e 65 | namic.firewall.groups.are.define |
| 69ce0 | 64 2c 20 74 68 65 79 20 73 68 6f 75 6c 64 20 62 65 20 75 73 65 64 20 69 6e 20 66 69 72 65 77 61 | d,.they.should.be.used.in.firewa |
| 69d00 | 6c 6c 20 72 75 6c 65 73 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 64 79 6e 61 6d 69 63 61 6c 6c 79 | ll.rules.in.order.to.dynamically |
| 69d20 | 20 61 64 64 20 65 6c 65 6d 65 6e 74 73 20 74 6f 20 69 74 2e 00 4f 6e 63 65 20 66 6c 6f 77 20 61 | .add.elements.to.it..Once.flow.a |
| 69d40 | 63 63 6f 75 6e 74 69 6e 67 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 61 6e 20 69 6e | ccounting.is.configured.on.an.in |
| 69d60 | 74 65 72 66 61 63 65 73 20 69 74 20 70 72 6f 76 69 64 65 73 20 74 68 65 20 61 62 69 6c 69 74 79 | terfaces.it.provides.the.ability |
| 69d80 | 20 74 6f 20 64 69 73 70 6c 61 79 20 63 61 70 74 75 72 65 64 20 6e 65 74 77 6f 72 6b 20 74 72 61 | .to.display.captured.network.tra |
| 69da0 | 66 66 69 63 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 6f 72 20 61 6c 6c 20 63 6f 6e 66 69 67 75 | ffic.information.for.all.configu |
| 69dc0 | 72 65 64 20 69 6e 74 65 72 66 61 63 65 73 2e 00 4f 6e 63 65 20 74 68 65 20 63 6f 6d 6d 61 6e 64 | red.interfaces..Once.the.command |
| 69de0 | 20 69 73 20 63 6f 6d 70 6c 65 74 65 64 2c 20 69 74 20 77 69 6c 6c 20 61 64 64 20 74 68 65 20 63 | .is.completed,.it.will.add.the.c |
| 69e00 | 65 72 74 69 66 69 63 61 74 65 20 74 6f 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 | ertificate.to.the.configuration. |
| 69e20 | 73 65 73 73 69 6f 6e 2c 20 74 6f 20 74 68 65 20 70 6b 69 20 73 75 62 74 72 65 65 2e 20 59 6f 75 | session,.to.the.pki.subtree..You |
| 69e40 | 20 63 61 6e 20 74 68 65 6e 20 72 65 76 69 65 77 20 74 68 65 20 70 72 6f 70 6f 73 65 64 20 63 68 | .can.then.review.the.proposed.ch |
| 69e60 | 61 6e 67 65 73 20 61 6e 64 20 63 6f 6d 6d 69 74 20 74 68 65 6d 2e 00 4f 6e 63 65 20 74 68 65 20 | anges.and.commit.them..Once.the. |
| 69e80 | 66 69 72 73 74 20 70 61 63 6b 65 74 20 6f 66 20 74 68 65 20 66 6c 6f 77 20 73 75 63 63 65 73 73 | first.packet.of.the.flow.success |
| 69ea0 | 66 75 6c 6c 79 20 67 6f 65 73 20 74 68 72 6f 75 67 68 20 74 68 65 20 49 50 20 66 6f 72 77 61 72 | fully.goes.through.the.IP.forwar |
| 69ec0 | 64 69 6e 67 20 70 61 74 68 20 28 62 6c 61 63 6b 20 63 69 72 63 6c 65 73 20 70 61 74 68 29 2c 20 | ding.path.(black.circles.path),. |
| 69ee0 | 66 72 6f 6d 20 74 68 65 20 73 65 63 6f 6e 64 20 70 61 63 6b 65 74 20 6f 6e 2c 20 79 6f 75 20 6d | from.the.second.packet.on,.you.m |
| 69f00 | 69 67 68 74 20 64 65 63 69 64 65 20 74 6f 20 6f 66 66 6c 6f 61 64 20 74 68 65 20 66 6c 6f 77 20 | ight.decide.to.offload.the.flow. |
| 69f20 | 74 6f 20 74 68 65 20 66 6c 6f 77 74 61 62 6c 65 20 74 68 72 6f 75 67 68 20 79 6f 75 72 20 72 75 | to.the.flowtable.through.your.ru |
| 69f40 | 6c 65 73 65 74 2e 20 54 68 65 20 66 6c 6f 77 74 61 62 6c 65 20 69 6e 66 72 61 73 74 72 75 63 74 | leset..The.flowtable.infrastruct |
| 69f60 | 75 72 65 20 70 72 6f 76 69 64 65 73 20 61 20 72 75 6c 65 20 61 63 74 69 6f 6e 20 74 68 61 74 20 | ure.provides.a.rule.action.that. |
| 69f80 | 61 6c 6c 6f 77 73 20 79 6f 75 20 74 6f 20 73 70 65 63 69 66 79 20 77 68 65 6e 20 74 6f 20 61 64 | allows.you.to.specify.when.to.ad |
| 69fa0 | 64 20 61 20 66 6c 6f 77 20 74 6f 20 74 68 65 20 66 6c 6f 77 74 61 62 6c 65 20 28 4f 6e 20 66 6f | d.a.flow.to.the.flowtable.(On.fo |
| 69fc0 | 72 77 61 72 64 20 66 69 6c 74 65 72 69 6e 67 2c 20 72 65 64 20 63 69 72 63 6c 65 20 6e 75 6d 62 | rward.filtering,.red.circle.numb |
| 69fe0 | 65 72 20 36 29 00 4f 6e 63 65 20 74 68 65 20 6c 6f 63 61 6c 20 74 75 6e 6e 65 6c 20 65 6e 64 70 | er.6).Once.the.local.tunnel.endp |
| 6a000 | 6f 69 6e 74 20 60 60 73 65 74 20 73 65 72 76 69 63 65 20 70 70 70 6f 65 2d 73 65 72 76 65 72 20 | oint.``set.service.pppoe-server. |
| 6a020 | 67 61 74 65 77 61 79 2d 61 64 64 72 65 73 73 20 27 31 30 2e 31 2e 31 2e 32 27 60 60 20 68 61 73 | gateway-address.'10.1.1.2'``.has |
| 6a040 | 20 62 65 65 6e 20 64 65 66 69 6e 65 64 2c 20 74 68 65 20 63 6c 69 65 6e 74 20 49 50 20 70 6f 6f | .been.defined,.the.client.IP.poo |
| 6a060 | 6c 20 63 61 6e 20 62 65 20 65 69 74 68 65 72 20 64 65 66 69 6e 65 64 20 61 73 20 61 20 72 61 6e | l.can.be.either.defined.as.a.ran |
| 6a080 | 67 65 20 6f 72 20 61 73 20 73 75 62 6e 65 74 20 75 73 69 6e 67 20 43 49 44 52 20 6e 6f 74 61 74 | ge.or.as.subnet.using.CIDR.notat |
| 6a0a0 | 69 6f 6e 2e 20 49 66 20 74 68 65 20 43 49 44 52 20 6e 6f 74 61 74 69 6f 6e 20 69 73 20 75 73 65 | ion..If.the.CIDR.notation.is.use |
| 6a0c0 | 64 2c 20 6d 75 6c 74 69 70 6c 65 20 73 75 62 6e 65 74 73 20 63 61 6e 20 62 65 20 73 65 74 75 70 | d,.multiple.subnets.can.be.setup |
| 6a0e0 | 20 77 68 69 63 68 20 61 72 65 20 75 73 65 64 20 73 65 71 75 65 6e 74 69 61 6c 6c 79 2e 00 4f 6e | .which.are.used.sequentially..On |
| 6a100 | 63 65 20 74 68 65 20 6d 61 74 63 68 69 6e 67 20 72 75 6c 65 73 20 61 72 65 20 73 65 74 20 66 6f | ce.the.matching.rules.are.set.fo |
| 6a120 | 72 20 61 20 63 6c 61 73 73 2c 20 79 6f 75 20 63 61 6e 20 73 74 61 72 74 20 63 6f 6e 66 69 67 75 | r.a.class,.you.can.start.configu |
| 6a140 | 72 69 6e 67 20 68 6f 77 20 79 6f 75 20 77 61 6e 74 20 6d 61 74 63 68 69 6e 67 20 74 72 61 66 66 | ring.how.you.want.matching.traff |
| 6a160 | 69 63 20 74 6f 20 62 65 68 61 76 65 2e 00 4f 6e 63 65 20 74 68 65 20 75 73 65 72 20 69 73 20 63 | ic.to.behave..Once.the.user.is.c |
| 6a180 | 6f 6e 6e 65 63 74 65 64 2c 20 74 68 65 20 75 73 65 72 20 73 65 73 73 69 6f 6e 20 69 73 20 75 73 | onnected,.the.user.session.is.us |
| 6a1a0 | 69 6e 67 20 74 68 65 20 73 65 74 20 6c 69 6d 69 74 73 20 61 6e 64 20 63 61 6e 20 62 65 20 64 69 | ing.the.set.limits.and.can.be.di |
| 6a1c0 | 73 70 6c 61 79 65 64 20 76 69 61 20 27 73 68 6f 77 20 70 70 70 6f 65 2d 73 65 72 76 65 72 20 73 | splayed.via.'show.pppoe-server.s |
| 6a1e0 | 65 73 73 69 6f 6e 73 27 2e 00 4f 6e 63 65 20 74 68 65 20 75 73 65 72 20 69 73 20 63 6f 6e 6e 65 | essions'..Once.the.user.is.conne |
| 6a200 | 63 74 65 64 2c 20 74 68 65 20 75 73 65 72 20 73 65 73 73 69 6f 6e 20 69 73 20 75 73 69 6e 67 20 | cted,.the.user.session.is.using. |
| 6a220 | 74 68 65 20 73 65 74 20 6c 69 6d 69 74 73 20 61 6e 64 20 63 61 6e 20 62 65 20 64 69 73 70 6c 61 | the.set.limits.and.can.be.displa |
| 6a240 | 79 65 64 20 76 69 61 20 60 60 73 68 6f 77 20 70 70 70 6f 65 2d 73 65 72 76 65 72 20 73 65 73 73 | yed.via.``show.pppoe-server.sess |
| 6a260 | 69 6f 6e 73 60 60 2e 00 4f 6e 63 65 20 79 6f 75 20 63 6f 6d 6d 69 74 20 74 68 65 20 61 62 6f 76 | ions``..Once.you.commit.the.abov |
| 6a280 | 65 20 63 68 61 6e 67 65 73 20 79 6f 75 20 63 61 6e 20 63 72 65 61 74 65 20 61 20 63 6f 6e 66 69 | e.changes.you.can.create.a.confi |
| 6a2a0 | 67 20 66 69 6c 65 20 69 6e 20 74 68 65 20 2f 63 6f 6e 66 69 67 2f 61 75 74 68 2f 6f 63 73 65 72 | g.file.in.the./config/auth/ocser |
| 6a2c0 | 76 2f 63 6f 6e 66 69 67 2d 70 65 72 2d 75 73 65 72 20 64 69 72 65 63 74 6f 72 79 20 74 68 61 74 | v/config-per-user.directory.that |
| 6a2e0 | 20 6d 61 74 63 68 65 73 20 61 20 75 73 65 72 6e 61 6d 65 20 6f 66 20 61 20 75 73 65 72 20 79 6f | .matches.a.username.of.a.user.yo |
| 6a300 | 75 20 68 61 76 65 20 63 72 65 61 74 65 64 20 65 2e 67 2e 20 22 74 73 74 22 2e 20 4e 6f 77 20 77 | u.have.created.e.g.."tst"..Now.w |
| 6a320 | 68 65 6e 20 6c 6f 67 67 69 6e 67 20 69 6e 20 77 69 74 68 20 74 68 65 20 22 74 73 74 22 20 75 73 | hen.logging.in.with.the."tst".us |
| 6a340 | 65 72 20 74 68 65 20 63 6f 6e 66 69 67 20 6f 70 74 69 6f 6e 73 20 79 6f 75 20 73 65 74 20 69 6e | er.the.config.options.you.set.in |
| 6a360 | 20 74 68 69 73 20 66 69 6c 65 20 77 69 6c 6c 20 62 65 20 6c 6f 61 64 65 64 2e 00 4f 6e 63 65 20 | .this.file.will.be.loaded..Once. |
| 6a380 | 79 6f 75 20 68 61 76 65 20 61 6e 20 45 74 68 65 72 6e 65 74 20 64 65 76 69 63 65 20 63 6f 6e 6e | you.have.an.Ethernet.device.conn |
| 6a3a0 | 65 63 74 65 64 2c 20 69 2e 65 2e 20 60 65 74 68 30 60 2c 20 74 68 65 6e 20 79 6f 75 20 63 61 6e | ected,.i.e..`eth0`,.then.you.can |
| 6a3c0 | 20 63 6f 6e 66 69 67 75 72 65 20 69 74 20 74 6f 20 6f 70 65 6e 20 74 68 65 20 50 50 50 6f 45 20 | .configure.it.to.open.the.PPPoE. |
| 6a3e0 | 73 65 73 73 69 6f 6e 20 66 6f 72 20 79 6f 75 20 61 6e 64 20 79 6f 75 72 20 44 53 4c 20 54 72 61 | session.for.you.and.your.DSL.Tra |
| 6a400 | 6e 73 63 65 69 76 65 72 20 28 4d 6f 64 65 6d 2f 52 6f 75 74 65 72 29 20 6a 75 73 74 20 61 63 74 | nsceiver.(Modem/Router).just.act |
| 6a420 | 73 20 74 6f 20 74 72 61 6e 73 6c 61 74 65 20 79 6f 75 72 20 6d 65 73 73 61 67 65 73 20 69 6e 20 | s.to.translate.your.messages.in. |
| 6a440 | 61 20 77 61 79 20 74 68 61 74 20 76 44 53 4c 2f 61 44 53 4c 20 75 6e 64 65 72 73 74 61 6e 64 73 | a.way.that.vDSL/aDSL.understands |
| 6a460 | 2e 00 4f 6e 63 65 20 79 6f 75 20 68 61 76 65 20 73 65 74 75 70 20 79 6f 75 72 20 53 53 54 50 20 | ..Once.you.have.setup.your.SSTP. |
| 6a480 | 73 65 72 76 65 72 20 74 68 65 72 65 20 63 6f 6d 65 73 20 74 68 65 20 74 69 6d 65 20 74 6f 20 64 | server.there.comes.the.time.to.d |
| 6a4a0 | 6f 20 73 6f 6d 65 20 62 61 73 69 63 20 74 65 73 74 69 6e 67 2e 20 54 68 65 20 4c 69 6e 75 78 20 | o.some.basic.testing..The.Linux. |
| 6a4c0 | 63 6c 69 65 6e 74 20 75 73 65 64 20 66 6f 72 20 74 65 73 74 69 6e 67 20 69 73 20 63 61 6c 6c 65 | client.used.for.testing.is.calle |
| 6a4e0 | 64 20 73 73 74 70 63 5f 2e 20 73 73 74 70 63 5f 20 72 65 71 75 69 72 65 73 20 61 20 50 50 50 20 | d.sstpc_..sstpc_.requires.a.PPP. |
| 6a500 | 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 70 65 65 72 20 66 69 6c 65 2e 00 4f 6e 63 65 20 79 6f | configuration/peer.file..Once.yo |
| 6a520 | 75 72 20 72 6f 75 74 65 72 73 20 61 72 65 20 63 6f 6e 66 69 67 75 72 65 64 20 74 6f 20 72 65 6a | ur.routers.are.configured.to.rej |
| 6a540 | 65 63 74 20 52 50 4b 49 2d 69 6e 76 61 6c 69 64 20 70 72 65 66 69 78 65 73 2c 20 79 6f 75 20 63 | ect.RPKI-invalid.prefixes,.you.c |
| 6a560 | 61 6e 20 74 65 73 74 20 77 68 65 74 68 65 72 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f | an.test.whether.the.configuratio |
| 6a580 | 6e 20 69 73 20 77 6f 72 6b 69 6e 67 20 63 6f 72 72 65 63 74 6c 79 20 75 73 69 6e 67 20 43 6c 6f | n.is.working.correctly.using.Clo |
| 6a5a0 | 75 64 66 6c 61 72 65 27 73 20 74 65 73 74 5f 20 77 65 62 73 69 74 65 2e 20 4b 65 65 70 20 69 6e | udflare's.test_.website..Keep.in |
| 6a5c0 | 20 6d 69 6e 64 20 74 68 61 74 20 69 6e 20 6f 72 64 65 72 20 66 6f 72 20 74 68 69 73 20 74 6f 20 | .mind.that.in.order.for.this.to. |
| 6a5e0 | 77 6f 72 6b 2c 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 68 61 76 65 20 6e 6f 20 64 65 66 61 75 6c | work,.you.need.to.have.no.defaul |
| 6a600 | 74 20 72 6f 75 74 65 73 20 6f 72 20 61 6e 79 74 68 69 6e 67 20 65 6c 73 65 20 74 68 61 74 20 77 | t.routes.or.anything.else.that.w |
| 6a620 | 6f 75 6c 64 20 73 74 69 6c 6c 20 73 65 6e 64 20 74 72 61 66 66 69 63 20 74 6f 20 52 50 4b 49 2d | ould.still.send.traffic.to.RPKI- |
| 6a640 | 69 6e 76 61 6c 69 64 20 64 65 73 74 69 6e 61 74 69 6f 6e 73 2e 00 4f 6e 63 65 20 79 6f 75 72 20 | invalid.destinations..Once.your. |
| 6a660 | 72 6f 75 74 65 72 73 20 61 72 65 20 63 6f 6e 66 69 67 75 72 65 64 20 74 6f 20 72 65 6a 65 63 74 | routers.are.configured.to.reject |
| 6a680 | 20 52 50 4b 49 2d 69 6e 76 61 6c 69 64 20 70 72 65 66 69 78 65 73 2c 20 79 6f 75 20 63 61 6e 20 | .RPKI-invalid.prefixes,.you.can. |
| 6a6a0 | 74 65 73 74 20 77 68 65 74 68 65 72 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 | test.whether.the.configuration.i |
| 6a6c0 | 73 20 77 6f 72 6b 69 6e 67 20 63 6f 72 72 65 63 74 6c 79 20 75 73 69 6e 67 20 74 68 65 20 60 52 | s.working.correctly.using.the.`R |
| 6a6e0 | 49 50 45 20 4c 61 62 73 20 52 50 4b 49 20 54 65 73 74 60 5f 20 65 78 70 65 72 69 6d 65 6e 74 61 | IPE.Labs.RPKI.Test`_.experimenta |
| 6a700 | 6c 20 74 6f 6f 6c 2e 00 4f 6e 65 20 54 79 70 65 2d 33 20 73 75 6d 6d 61 72 79 2d 4c 53 41 20 77 | l.tool..One.Type-3.summary-LSA.w |
| 6a720 | 69 74 68 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f 20 3c 45 2e 46 2e 47 2e 48 2f 4d 3e 20 69 73 20 | ith.routing.info.<E.F.G.H/M>.is. |
| 6a740 | 61 6e 6e 6f 75 6e 63 65 64 20 69 6e 74 6f 20 62 61 63 6b 62 6f 6e 65 20 61 72 65 61 20 69 66 20 | announced.into.backbone.area.if. |
| 6a760 | 64 65 66 69 6e 65 64 20 61 72 65 61 20 63 6f 6e 74 61 69 6e 73 20 61 74 20 6c 65 61 73 74 20 6f | defined.area.contains.at.least.o |
| 6a780 | 6e 65 20 69 6e 74 72 61 2d 61 72 65 61 20 6e 65 74 77 6f 72 6b 20 28 69 2e 65 2e 20 64 65 73 63 | ne.intra-area.network.(i.e..desc |
| 6a7a0 | 72 69 62 65 64 20 77 69 74 68 20 72 6f 75 74 65 72 2d 4c 53 41 20 6f 72 20 6e 65 74 77 6f 72 6b | ribed.with.router-LSA.or.network |
| 6a7c0 | 2d 4c 53 41 29 20 66 72 6f 6d 20 72 61 6e 67 65 20 3c 41 2e 42 2e 43 2e 44 2f 4d 3e 2e 20 54 68 | -LSA).from.range.<A.B.C.D/M>..Th |
| 6a7e0 | 69 73 20 63 6f 6d 6d 61 6e 64 20 6d 61 6b 65 73 20 73 65 6e 73 65 20 69 6e 20 41 42 52 20 6f 6e | is.command.makes.sense.in.ABR.on |
| 6a800 | 6c 79 2e 00 4f 6e 65 20 69 6d 70 6c 69 63 69 74 20 65 6e 76 69 72 6f 6e 6d 65 6e 74 20 65 78 69 | ly..One.implicit.environment.exi |
| 6a820 | 73 74 73 2e 00 4f 6e 65 20 6f 66 20 74 68 65 20 69 6d 70 6f 72 74 61 6e 74 20 66 65 61 74 75 72 | sts..One.of.the.important.featur |
| 6a840 | 65 73 20 62 75 69 6c 74 20 6f 6e 20 74 6f 70 20 6f 66 20 74 68 65 20 4e 65 74 66 69 6c 74 65 72 | es.built.on.top.of.the.Netfilter |
| 6a860 | 20 66 72 61 6d 65 77 6f 72 6b 20 69 73 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e | .framework.is.connection.trackin |
| 6a880 | 67 2e 20 43 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 61 6c 6c 6f 77 73 20 74 68 | g..Connection.tracking.allows.th |
| 6a8a0 | 65 20 6b 65 72 6e 65 6c 20 74 6f 20 6b 65 65 70 20 74 72 61 63 6b 20 6f 66 20 61 6c 6c 20 6c 6f | e.kernel.to.keep.track.of.all.lo |
| 6a8c0 | 67 69 63 61 6c 20 6e 65 74 77 6f 72 6b 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 6f 72 20 73 65 73 | gical.network.connections.or.ses |
| 6a8e0 | 73 69 6f 6e 73 2c 20 61 6e 64 20 74 68 65 72 65 62 79 20 72 65 6c 61 74 65 20 61 6c 6c 20 6f 66 | sions,.and.thereby.relate.all.of |
| 6a900 | 20 74 68 65 20 70 61 63 6b 65 74 73 20 77 68 69 63 68 20 6d 61 79 20 6d 61 6b 65 20 75 70 20 74 | .the.packets.which.may.make.up.t |
| 6a920 | 68 61 74 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 20 4e 41 54 20 72 65 6c 69 65 73 20 6f 6e 20 74 68 | hat.connection..NAT.relies.on.th |
| 6a940 | 69 73 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 6f 20 74 72 61 6e 73 6c 61 74 65 20 61 6c 6c 20 | is.information.to.translate.all. |
| 6a960 | 72 65 6c 61 74 65 64 20 70 61 63 6b 65 74 73 20 69 6e 20 74 68 65 20 73 61 6d 65 20 77 61 79 2c | related.packets.in.the.same.way, |
| 6a980 | 20 61 6e 64 20 69 70 74 61 62 6c 65 73 20 63 61 6e 20 75 73 65 20 74 68 69 73 20 69 6e 66 6f 72 | .and.iptables.can.use.this.infor |
| 6a9a0 | 6d 61 74 69 6f 6e 20 74 6f 20 61 63 74 20 61 73 20 61 20 73 74 61 74 65 66 75 6c 20 66 69 72 65 | mation.to.act.as.a.stateful.fire |
| 6a9c0 | 77 61 6c 6c 2e 00 4f 6e 65 20 6f 66 20 74 68 65 20 75 73 65 73 20 6f 66 20 46 61 69 72 20 51 75 | wall..One.of.the.uses.of.Fair.Qu |
| 6a9e0 | 65 75 65 20 6d 69 67 68 74 20 62 65 20 74 68 65 20 6d 69 74 69 67 61 74 69 6f 6e 20 6f 66 20 44 | eue.might.be.the.mitigation.of.D |
| 6aa00 | 65 6e 69 61 6c 20 6f 66 20 53 65 72 76 69 63 65 20 61 74 74 61 63 6b 73 2e 00 4f 6e 6c 79 20 38 | enial.of.Service.attacks..Only.8 |
| 6aa20 | 30 32 2e 31 51 2d 74 61 67 67 65 64 20 70 61 63 6b 65 74 73 20 61 72 65 20 61 63 63 65 70 74 65 | 02.1Q-tagged.packets.are.accepte |
| 6aa40 | 64 20 6f 6e 20 45 74 68 65 72 6e 65 74 20 76 69 66 73 2e 00 4f 6e 6c 79 20 56 52 52 50 20 69 73 | d.on.Ethernet.vifs..Only.VRRP.is |
| 6aa60 | 20 73 75 70 70 6f 72 74 65 64 2e 20 52 65 71 75 69 72 65 64 20 6f 70 74 69 6f 6e 2e 00 4f 6e 6c | .supported..Required.option..Onl |
| 6aa80 | 79 20 61 6c 6c 6f 77 20 63 65 72 74 61 69 6e 20 49 50 20 61 64 64 72 65 73 73 65 73 20 6f 72 20 | y.allow.certain.IP.addresses.or. |
| 6aaa0 | 70 72 65 66 69 78 65 73 20 74 6f 20 61 63 63 65 73 73 20 74 68 65 20 68 74 74 70 73 20 77 65 62 | prefixes.to.access.the.https.web |
| 6aac0 | 73 65 72 76 65 72 2e 00 4f 6e 6c 79 20 69 6e 20 74 68 65 20 73 6f 75 72 63 65 20 63 72 69 74 65 | server..Only.in.the.source.crite |
| 6aae0 | 72 69 61 2c 20 79 6f 75 20 63 61 6e 20 73 70 65 63 69 66 79 20 61 20 6d 61 63 2d 61 64 64 72 65 | ria,.you.can.specify.a.mac-addre |
| 6ab00 | 73 73 2e 00 4f 6e 6c 79 20 6f 6e 65 20 53 52 47 42 20 61 6e 64 20 64 65 66 61 75 6c 74 20 53 50 | ss..Only.one.SRGB.and.default.SP |
| 6ab20 | 46 20 41 6c 67 6f 72 69 74 68 6d 20 69 73 20 73 75 70 70 6f 72 74 65 64 00 4f 6e 6c 79 20 72 65 | F.Algorithm.is.supported.Only.re |
| 6ab40 | 71 75 65 73 74 20 61 6e 20 61 64 64 72 65 73 73 20 66 72 6f 6d 20 74 68 65 20 44 48 43 50 20 73 | quest.an.address.from.the.DHCP.s |
| 6ab60 | 65 72 76 65 72 20 62 75 74 20 64 6f 20 6e 6f 74 20 72 65 71 75 65 73 74 20 61 20 64 65 66 61 75 | erver.but.do.not.request.a.defau |
| 6ab80 | 6c 74 20 67 61 74 65 77 61 79 2e 00 4f 6e 6c 79 20 72 65 71 75 65 73 74 20 61 6e 20 61 64 64 72 | lt.gateway..Only.request.an.addr |
| 6aba0 | 65 73 73 20 66 72 6f 6d 20 74 68 65 20 50 50 50 6f 45 20 73 65 72 76 65 72 20 62 75 74 20 64 6f | ess.from.the.PPPoE.server.but.do |
| 6abc0 | 20 6e 6f 74 20 69 6e 73 74 61 6c 6c 20 61 6e 79 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 2e 00 | .not.install.any.default.route.. |
| 6abe0 | 4f 6e 6c 79 20 72 65 71 75 65 73 74 20 61 6e 20 61 64 64 72 65 73 73 20 66 72 6f 6d 20 74 68 65 | Only.request.an.address.from.the |
| 6ac00 | 20 53 53 54 50 20 73 65 72 76 65 72 20 62 75 74 20 64 6f 20 6e 6f 74 20 69 6e 73 74 61 6c 6c 20 | .SSTP.server.but.do.not.install. |
| 6ac20 | 61 6e 79 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 2e 00 4f 6e 6c 79 20 74 68 65 20 74 79 70 65 | any.default.route..Only.the.type |
| 6ac40 | 20 28 60 60 73 73 68 2d 72 73 61 60 60 29 20 61 6e 64 20 74 68 65 20 6b 65 79 20 28 60 60 41 41 | .(``ssh-rsa``).and.the.key.(``AA |
| 6ac60 | 41 42 33 4e 2e 2e 2e 60 60 29 20 61 72 65 20 75 73 65 64 2e 20 4e 6f 74 65 20 74 68 61 74 20 74 | AB3N...``).are.used..Note.that.t |
| 6ac80 | 68 65 20 6b 65 79 20 77 69 6c 6c 20 75 73 75 61 6c 6c 79 20 62 65 20 73 65 76 65 72 61 6c 20 68 | he.key.will.usually.be.several.h |
| 6aca0 | 75 6e 64 72 65 64 20 63 68 61 72 61 63 74 65 72 73 20 6c 6f 6e 67 2c 20 61 6e 64 20 79 6f 75 20 | undred.characters.long,.and.you. |
| 6acc0 | 77 69 6c 6c 20 6e 65 65 64 20 74 6f 20 63 6f 70 79 20 61 6e 64 20 70 61 73 74 65 20 69 74 2e 20 | will.need.to.copy.and.paste.it.. |
| 6ace0 | 53 6f 6d 65 20 74 65 72 6d 69 6e 61 6c 20 65 6d 75 6c 61 74 6f 72 73 20 6d 61 79 20 61 63 63 69 | Some.terminal.emulators.may.acci |
| 6ad00 | 64 65 6e 74 61 6c 6c 79 20 73 70 6c 69 74 20 74 68 69 73 20 6f 76 65 72 20 73 65 76 65 72 61 6c | dentally.split.this.over.several |
| 6ad20 | 20 6c 69 6e 65 73 2e 20 42 65 20 61 74 74 65 6e 74 69 76 65 20 77 68 65 6e 20 79 6f 75 20 70 61 | .lines..Be.attentive.when.you.pa |
| 6ad40 | 73 74 65 20 69 74 20 74 68 61 74 20 69 74 20 6f 6e 6c 79 20 70 61 73 74 65 73 20 61 73 20 61 20 | ste.it.that.it.only.pastes.as.a. |
| 6ad60 | 73 69 6e 67 6c 65 20 6c 69 6e 65 2e 20 54 68 65 20 74 68 69 72 64 20 70 61 72 74 20 69 73 20 73 | single.line..The.third.part.is.s |
| 6ad80 | 69 6d 70 6c 79 20 61 6e 20 69 64 65 6e 74 69 66 69 65 72 2c 20 61 6e 64 20 69 73 20 66 6f 72 20 | imply.an.identifier,.and.is.for. |
| 6ada0 | 79 6f 75 72 20 6f 77 6e 20 72 65 66 65 72 65 6e 63 65 2e 00 4f 6e 6c 79 20 77 6f 72 6b 73 20 77 | your.own.reference..Only.works.w |
| 6adc0 | 69 74 68 20 61 20 56 58 4c 41 4e 20 64 65 76 69 63 65 20 77 69 74 68 20 65 78 74 65 72 6e 61 6c | ith.a.VXLAN.device.with.external |
| 6ade0 | 20 66 6c 61 67 20 73 65 74 2e 00 4f 70 2d 6d 6f 64 65 20 63 68 65 63 6b 20 76 69 72 74 75 61 6c | .flag.set..Op-mode.check.virtual |
| 6ae00 | 2d 73 65 72 76 65 72 20 73 74 61 74 75 73 00 4f 70 65 6e 43 6f 6e 6e 65 63 74 00 4f 70 65 6e 43 | -server.status.OpenConnect.OpenC |
| 6ae20 | 6f 6e 6e 65 63 74 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 74 6f 20 73 65 6e 64 | onnect.can.be.configured.to.send |
| 6ae40 | 20 61 63 63 6f 75 6e 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 6f 20 61 20 52 41 44 | .accounting.information.to.a.RAD |
| 6ae60 | 49 55 53 20 73 65 72 76 65 72 20 74 6f 20 63 61 70 74 75 72 65 20 75 73 65 72 20 73 65 73 73 69 | IUS.server.to.capture.user.sessi |
| 6ae80 | 6f 6e 20 64 61 74 61 20 73 75 63 68 20 61 73 20 74 69 6d 65 20 6f 66 20 63 6f 6e 6e 65 63 74 2f | on.data.such.as.time.of.connect/ |
| 6aea0 | 64 69 73 63 6f 6e 6e 65 63 74 2c 20 64 61 74 61 20 74 72 61 6e 73 66 65 72 72 65 64 2c 20 61 6e | disconnect,.data.transferred,.an |
| 6aec0 | 64 20 73 6f 20 6f 6e 2e 00 4f 70 65 6e 43 6f 6e 6e 65 63 74 20 73 65 72 76 65 72 20 6d 61 74 63 | d.so.on..OpenConnect.server.matc |
| 6aee0 | 68 65 73 20 74 68 65 20 66 69 6c 65 6e 61 6d 65 20 69 6e 20 61 20 63 61 73 65 20 73 65 6e 73 69 | hes.the.filename.in.a.case.sensi |
| 6af00 | 74 69 76 65 20 6d 61 6e 6e 65 72 2c 20 6d 61 6b 65 20 73 75 72 65 20 74 68 65 20 75 73 65 72 6e | tive.manner,.make.sure.the.usern |
| 6af20 | 61 6d 65 2f 67 72 6f 75 70 20 6e 61 6d 65 20 79 6f 75 20 63 6f 6e 66 69 67 75 72 65 20 6d 61 74 | ame/group.name.you.configure.mat |
| 6af40 | 63 68 65 73 20 74 68 65 20 66 69 6c 65 6e 61 6d 65 20 65 78 61 63 74 6c 79 2e 00 4f 70 65 6e 43 | ches.the.filename.exactly..OpenC |
| 6af60 | 6f 6e 6e 65 63 74 20 73 75 70 70 6f 72 74 73 20 61 20 73 75 62 73 65 74 20 6f 66 20 69 74 27 73 | onnect.supports.a.subset.of.it's |
| 6af80 | 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 70 74 69 6f 6e 73 20 74 6f 20 62 65 20 61 70 70 | .configuration.options.to.be.app |
| 6afa0 | 6c 69 65 64 20 6f 6e 20 61 20 70 65 72 20 75 73 65 72 2f 67 72 6f 75 70 20 62 61 73 69 73 2c 20 | lied.on.a.per.user/group.basis,. |
| 6afc0 | 66 6f 72 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 70 75 72 70 6f 73 65 73 20 77 65 20 72 65 | for.configuration.purposes.we.re |
| 6afe0 | 66 65 72 20 74 6f 20 74 68 69 73 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 20 61 73 20 22 49 64 | fer.to.this.functionality.as."Id |
| 6b000 | 65 6e 74 69 74 79 20 62 61 73 65 64 20 63 6f 6e 66 69 67 22 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 | entity.based.config"..The.follow |
| 6b020 | 69 6e 67 20 60 4f 70 65 6e 43 6f 6e 6e 65 63 74 20 53 65 72 76 65 72 20 4d 61 6e 75 61 6c 20 3c | ing.`OpenConnect.Server.Manual.< |
| 6b040 | 68 74 74 70 73 3a 2f 2f 6f 63 73 65 72 76 2e 67 69 74 6c 61 62 2e 69 6f 2f 77 77 77 2f 6d 61 6e | https://ocserv.gitlab.io/www/man |
| 6b060 | 75 61 6c 2e 68 74 6d 6c 23 3a 7e 3a 74 65 78 74 3d 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 25 32 | ual.html#:~:text=Configuration%2 |
| 6b080 | 30 66 69 6c 65 73 25 32 30 74 68 61 74 25 20 32 30 77 69 6c 6c 25 32 30 62 65 25 32 30 61 70 70 | 0files%20that%.20will%20be%20app |
| 6b0a0 | 6c 69 65 64 25 32 30 70 65 72 25 32 30 75 73 65 72 25 32 30 63 6f 6e 6e 65 63 74 69 6f 6e 25 32 | lied%20per%20user%20connection%2 |
| 6b0c0 | 30 6f 72 25 30 41 25 32 33 25 32 30 70 65 72 25 32 30 67 72 6f 75 70 3e 60 5f 20 6f 75 74 6c 69 | 0or%0A%23%20per%20group>`_.outli |
| 6b0e0 | 6e 65 73 20 74 68 65 20 73 65 74 20 6f 66 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 70 74 | nes.the.set.of.configuration.opt |
| 6b100 | 69 6f 6e 73 20 74 68 61 74 20 61 72 65 20 61 6c 6c 6f 77 65 64 2e 20 54 68 69 73 20 63 61 6e 20 | ions.that.are.allowed..This.can. |
| 6b120 | 62 65 20 6c 65 76 65 72 61 67 65 64 20 74 6f 20 61 70 70 6c 79 20 64 69 66 66 65 72 65 6e 74 20 | be.leveraged.to.apply.different. |
| 6b140 | 73 65 74 73 20 6f 66 20 63 6f 6e 66 69 67 73 20 74 6f 20 64 69 66 66 65 72 65 6e 74 20 75 73 65 | sets.of.configs.to.different.use |
| 6b160 | 72 73 20 6f 72 20 67 72 6f 75 70 73 20 6f 66 20 75 73 65 72 73 2e 00 4f 70 65 6e 43 6f 6e 6e 65 | rs.or.groups.of.users..OpenConne |
| 6b180 | 63 74 2d 63 6f 6d 70 61 74 69 62 6c 65 20 73 65 72 76 65 72 20 66 65 61 74 75 72 65 20 68 61 73 | ct-compatible.server.feature.has |
| 6b1a0 | 20 62 65 65 6e 20 61 76 61 69 6c 61 62 6c 65 20 73 69 6e 63 65 20 45 71 75 75 6c 65 75 73 20 28 | .been.available.since.Equuleus.( |
| 6b1c0 | 31 2e 33 29 2e 20 4f 70 65 6e 63 6f 6e 6e 65 63 74 20 56 50 4e 20 73 75 70 70 6f 72 74 73 20 53 | 1.3)..Openconnect.VPN.supports.S |
| 6b1e0 | 53 4c 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 61 6e 64 20 6f 66 66 65 72 73 20 66 75 6c 6c 20 6e 65 | SL.connection.and.offers.full.ne |
| 6b200 | 74 77 6f 72 6b 20 61 63 63 65 73 73 2e 20 53 53 4c 20 56 50 4e 20 6e 65 74 77 6f 72 6b 20 65 78 | twork.access..SSL.VPN.network.ex |
| 6b220 | 74 65 6e 73 69 6f 6e 20 63 6f 6e 6e 65 63 74 73 20 74 68 65 20 65 6e 64 2d 75 73 65 72 20 73 79 | tension.connects.the.end-user.sy |
| 6b240 | 73 74 65 6d 20 74 6f 20 74 68 65 20 63 6f 72 70 6f 72 61 74 65 20 6e 65 74 77 6f 72 6b 20 77 69 | stem.to.the.corporate.network.wi |
| 6b260 | 74 68 20 61 63 63 65 73 73 20 63 6f 6e 74 72 6f 6c 73 20 62 61 73 65 64 20 6f 6e 6c 79 20 6f 6e | th.access.controls.based.only.on |
| 6b280 | 20 6e 65 74 77 6f 72 6b 20 6c 61 79 65 72 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2c 20 73 75 63 68 | .network.layer.information,.such |
| 6b2a0 | 20 61 73 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 49 50 20 61 64 64 72 65 73 73 20 61 6e 64 20 70 | .as.destination.IP.address.and.p |
| 6b2c0 | 6f 72 74 20 6e 75 6d 62 65 72 2e 20 53 6f 2c 20 69 74 20 70 72 6f 76 69 64 65 73 20 73 61 66 65 | ort.number..So,.it.provides.safe |
| 6b2e0 | 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6f 6e 20 66 6f 72 20 61 6c 6c 20 74 79 70 65 73 20 6f 66 20 | .communication.for.all.types.of. |
| 6b300 | 64 65 76 69 63 65 20 74 72 61 66 66 69 63 20 61 63 72 6f 73 73 20 70 75 62 6c 69 63 20 6e 65 74 | device.traffic.across.public.net |
| 6b320 | 77 6f 72 6b 73 20 61 6e 64 20 70 72 69 76 61 74 65 20 6e 65 74 77 6f 72 6b 73 2c 20 61 6c 73 6f | works.and.private.networks,.also |
| 6b340 | 20 65 6e 63 72 79 70 74 73 20 74 68 65 20 74 72 61 66 66 69 63 20 77 69 74 68 20 53 53 4c 20 70 | .encrypts.the.traffic.with.SSL.p |
| 6b360 | 72 6f 74 6f 63 6f 6c 2e 00 4f 70 65 6e 43 6f 6e 6e 65 63 74 2d 63 6f 6d 70 61 74 69 62 6c 65 20 | rotocol..OpenConnect-compatible. |
| 6b380 | 73 65 72 76 65 72 20 66 65 61 74 75 72 65 20 69 73 20 61 76 61 69 6c 61 62 6c 65 20 66 72 6f 6d | server.feature.is.available.from |
| 6b3a0 | 20 74 68 69 73 20 72 65 6c 65 61 73 65 2e 20 4f 70 65 6e 63 6f 6e 6e 65 63 74 20 56 50 4e 20 73 | .this.release..Openconnect.VPN.s |
| 6b3c0 | 75 70 70 6f 72 74 73 20 53 53 4c 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 61 6e 64 20 6f 66 66 65 72 | upports.SSL.connection.and.offer |
| 6b3e0 | 73 20 66 75 6c 6c 20 6e 65 74 77 6f 72 6b 20 61 63 63 65 73 73 2e 20 53 53 4c 20 56 50 4e 20 6e | s.full.network.access..SSL.VPN.n |
| 6b400 | 65 74 77 6f 72 6b 20 65 78 74 65 6e 73 69 6f 6e 20 63 6f 6e 6e 65 63 74 73 20 74 68 65 20 65 6e | etwork.extension.connects.the.en |
| 6b420 | 64 2d 75 73 65 72 20 73 79 73 74 65 6d 20 74 6f 20 74 68 65 20 63 6f 72 70 6f 72 61 74 65 20 6e | d-user.system.to.the.corporate.n |
| 6b440 | 65 74 77 6f 72 6b 20 77 69 74 68 20 61 63 63 65 73 73 20 63 6f 6e 74 72 6f 6c 73 20 62 61 73 65 | etwork.with.access.controls.base |
| 6b460 | 64 20 6f 6e 6c 79 20 6f 6e 20 6e 65 74 77 6f 72 6b 20 6c 61 79 65 72 20 69 6e 66 6f 72 6d 61 74 | d.only.on.network.layer.informat |
| 6b480 | 69 6f 6e 2c 20 73 75 63 68 20 61 73 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 49 50 20 61 64 64 72 | ion,.such.as.destination.IP.addr |
| 6b4a0 | 65 73 73 20 61 6e 64 20 70 6f 72 74 20 6e 75 6d 62 65 72 2e 20 53 6f 2c 20 69 74 20 70 72 6f 76 | ess.and.port.number..So,.it.prov |
| 6b4c0 | 69 64 65 73 20 73 61 66 65 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6f 6e 20 66 6f 72 20 61 6c 6c 20 | ides.safe.communication.for.all. |
| 6b4e0 | 74 79 70 65 73 20 6f 66 20 64 65 76 69 63 65 20 74 72 61 66 66 69 63 20 61 63 72 6f 73 73 20 70 | types.of.device.traffic.across.p |
| 6b500 | 75 62 6c 69 63 20 6e 65 74 77 6f 72 6b 73 20 61 6e 64 20 70 72 69 76 61 74 65 20 6e 65 74 77 6f | ublic.networks.and.private.netwo |
| 6b520 | 72 6b 73 2c 20 61 6c 73 6f 20 65 6e 63 72 79 70 74 73 20 74 68 65 20 74 72 61 66 66 69 63 20 77 | rks,.also.encrypts.the.traffic.w |
| 6b540 | 69 74 68 20 53 53 4c 20 70 72 6f 74 6f 63 6f 6c 2e 00 4f 70 65 6e 46 61 62 72 69 63 00 4f 70 65 | ith.SSL.protocol..OpenFabric.Ope |
| 6b560 | 6e 46 61 62 72 69 63 20 47 6c 6f 62 61 6c 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 4f 70 65 | nFabric.Global.Configuration.Ope |
| 6b580 | 6e 46 61 62 72 69 63 20 61 20 64 75 61 6c 20 73 74 61 63 6b 20 70 72 6f 74 6f 63 6f 6c 2e 20 41 | nFabric.a.dual.stack.protocol..A |
| 6b5a0 | 20 73 69 6e 67 6c 65 20 4f 70 65 6e 46 61 62 72 69 63 20 69 6e 73 74 61 6e 63 65 20 69 73 20 61 | .single.OpenFabric.instance.is.a |
| 6b5c0 | 62 6c 65 20 74 6f 20 70 65 72 66 6f 72 6d 20 72 6f 75 74 69 6e 67 20 66 6f 72 20 62 6f 74 68 20 | ble.to.perform.routing.for.both. |
| 6b5e0 | 49 50 76 34 20 61 6e 64 20 49 50 76 36 2e 00 4f 70 65 6e 46 61 62 72 69 63 2c 20 73 70 65 63 69 | IPv4.and.IPv6..OpenFabric,.speci |
| 6b600 | 66 69 65 64 20 69 6e 20 60 64 72 61 66 74 2d 77 68 69 74 65 2d 6f 70 65 6e 66 61 62 72 69 63 2d | fied.in.`draft-white-openfabric- |
| 6b620 | 30 36 2e 74 78 74 20 3c 68 74 74 70 73 3a 2f 2f 64 61 74 61 74 72 61 63 6b 65 72 2e 69 65 74 66 | 06.txt.<https://datatracker.ietf |
| 6b640 | 2e 6f 72 67 2f 64 6f 63 2f 68 74 6d 6c 2f 64 72 61 66 74 2d 77 68 69 74 65 2d 6f 70 65 6e 66 61 | .org/doc/html/draft-white-openfa |
| 6b660 | 62 72 69 63 2d 30 36 3e 60 5f 2c 20 69 73 20 61 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f | bric-06>`_,.is.a.routing.protoco |
| 6b680 | 6c 20 64 65 72 69 76 65 64 20 66 72 6f 6d 20 49 53 2d 49 53 2c 20 70 72 6f 76 69 64 69 6e 67 20 | l.derived.from.IS-IS,.providing. |
| 6b6a0 | 6c 69 6e 6b 2d 73 74 61 74 65 20 72 6f 75 74 69 6e 67 20 77 69 74 68 20 65 66 66 69 63 69 65 6e | link-state.routing.with.efficien |
| 6b6c0 | 74 20 66 6c 6f 6f 64 69 6e 67 20 66 6f 72 20 74 6f 70 6f 6c 6f 67 69 65 73 20 6c 69 6b 65 20 73 | t.flooding.for.topologies.like.s |
| 6b6e0 | 70 69 6e 65 2d 6c 65 61 66 20 6e 65 74 77 6f 72 6b 73 2e 00 4f 70 65 6e 56 50 4e 00 4f 70 65 6e | pine-leaf.networks..OpenVPN.Open |
| 6b700 | 56 50 4e 20 2a 2a 77 69 6c 6c 20 6e 6f 74 2a 2a 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 63 | VPN.**will.not**.automatically.c |
| 6b720 | 72 65 61 74 65 20 72 6f 75 74 65 73 20 69 6e 20 74 68 65 20 6b 65 72 6e 65 6c 20 66 6f 72 20 63 | reate.routes.in.the.kernel.for.c |
| 6b740 | 6c 69 65 6e 74 20 73 75 62 6e 65 74 73 20 77 68 65 6e 20 74 68 65 79 20 63 6f 6e 6e 65 63 74 20 | lient.subnets.when.they.connect. |
| 6b760 | 61 6e 64 20 77 69 6c 6c 20 6f 6e 6c 79 20 75 73 65 20 63 6c 69 65 6e 74 2d 73 75 62 6e 65 74 20 | and.will.only.use.client-subnet. |
| 6b780 | 61 73 73 6f 63 69 61 74 69 6f 6e 20 69 6e 74 65 72 6e 61 6c 6c 79 2c 20 73 6f 20 77 65 20 6e 65 | association.internally,.so.we.ne |
| 6b7a0 | 65 64 20 74 6f 20 63 72 65 61 74 65 20 61 20 72 6f 75 74 65 20 74 6f 20 74 68 65 20 31 30 2e 32 | ed.to.create.a.route.to.the.10.2 |
| 6b7c0 | 33 2e 30 2e 30 2f 32 30 20 6e 65 74 77 6f 72 6b 20 6f 75 72 73 65 6c 76 65 73 3a 00 4f 70 65 6e | 3.0.0/20.network.ourselves:.Open |
| 6b7e0 | 56 50 4e 20 44 43 4f 20 69 73 20 6e 6f 74 20 61 20 66 75 6c 6c 79 20 73 75 70 70 6f 72 74 65 64 | VPN.DCO.is.not.a.fully.supported |
| 6b800 | 20 4f 70 65 6e 56 50 4e 20 66 65 61 74 75 72 65 2c 20 61 6e 64 20 69 73 20 63 75 72 72 65 6e 74 | .OpenVPN.feature,.and.is.current |
| 6b820 | 6c 79 20 63 6f 6e 73 69 64 65 72 65 64 20 65 78 70 65 72 69 6d 65 6e 74 61 6c 2e 20 46 75 72 74 | ly.considered.experimental..Furt |
| 6b840 | 68 65 72 6d 6f 72 65 2c 20 74 68 65 72 65 20 61 72 65 20 63 65 72 74 61 69 6e 20 4f 70 65 6e 56 | hermore,.there.are.certain.OpenV |
| 6b860 | 50 4e 20 66 65 61 74 75 72 65 73 20 61 6e 64 20 75 73 65 20 63 61 73 65 73 20 74 68 61 74 20 72 | PN.features.and.use.cases.that.r |
| 6b880 | 65 6d 61 69 6e 20 69 6e 63 6f 6d 70 61 74 69 62 6c 65 20 77 69 74 68 20 44 43 4f 2e 20 54 6f 20 | emain.incompatible.with.DCO..To. |
| 6b8a0 | 67 65 74 20 61 20 63 6f 6d 70 72 65 68 65 6e 73 69 76 65 20 75 6e 64 65 72 73 74 61 6e 64 69 6e | get.a.comprehensive.understandin |
| 6b8c0 | 67 20 6f 66 20 74 68 65 20 6c 69 6d 69 74 61 74 69 6f 6e 73 20 61 73 73 6f 63 69 61 74 65 64 20 | g.of.the.limitations.associated. |
| 6b8e0 | 77 69 74 68 20 44 43 4f 2c 20 72 65 66 65 72 20 74 6f 20 74 68 65 20 6c 69 73 74 20 6f 66 20 6b | with.DCO,.refer.to.the.list.of.k |
| 6b900 | 6e 6f 77 6e 20 6c 69 6d 69 74 61 74 69 6f 6e 73 20 69 6e 20 74 68 65 20 64 6f 63 75 6d 65 6e 74 | nown.limitations.in.the.document |
| 6b920 | 61 74 69 6f 6e 2e 00 4f 70 65 6e 56 50 4e 20 44 43 4f 20 69 73 20 6e 6f 74 20 66 75 6c 6c 20 4f | ation..OpenVPN.DCO.is.not.full.O |
| 6b940 | 70 65 6e 56 50 4e 20 66 65 61 74 75 72 65 73 20 73 75 70 70 6f 72 74 65 64 20 2c 20 69 73 20 63 | penVPN.features.supported.,.is.c |
| 6b960 | 75 72 72 65 6e 74 6c 79 20 63 6f 6e 73 69 64 65 72 65 64 20 65 78 70 65 72 69 6d 65 6e 74 61 6c | urrently.considered.experimental |
| 6b980 | 2e 20 46 75 72 74 68 65 72 6d 6f 72 65 2c 20 74 68 65 72 65 20 61 72 65 20 63 65 72 74 61 69 6e | ..Furthermore,.there.are.certain |
| 6b9a0 | 20 4f 70 65 6e 56 50 4e 20 66 65 61 74 75 72 65 73 20 61 6e 64 20 75 73 65 20 63 61 73 65 73 20 | .OpenVPN.features.and.use.cases. |
| 6b9c0 | 74 68 61 74 20 72 65 6d 61 69 6e 20 69 6e 63 6f 6d 70 61 74 69 62 6c 65 20 77 69 74 68 20 44 43 | that.remain.incompatible.with.DC |
| 6b9e0 | 4f 2e 20 54 6f 20 67 65 74 20 61 20 63 6f 6d 70 72 65 68 65 6e 73 69 76 65 20 75 6e 64 65 72 73 | O..To.get.a.comprehensive.unders |
| 6ba00 | 74 61 6e 64 69 6e 67 20 6f 66 20 74 68 65 20 6c 69 6d 69 74 61 74 69 6f 6e 73 20 61 73 73 6f 63 | tanding.of.the.limitations.assoc |
| 6ba20 | 69 61 74 65 64 20 77 69 74 68 20 44 43 4f 2c 20 72 65 66 65 72 20 74 6f 20 74 68 65 20 6c 69 73 | iated.with.DCO,.refer.to.the.lis |
| 6ba40 | 74 20 6f 66 20 6b 6e 6f 77 6e 20 6c 69 6d 69 74 61 74 69 6f 6e 73 20 69 6e 20 74 68 65 20 64 6f | t.of.known.limitations.in.the.do |
| 6ba60 | 63 75 6d 65 6e 74 61 74 69 6f 6e 2e 00 4f 70 65 6e 56 50 4e 20 44 61 74 61 20 43 68 61 6e 6e 65 | cumentation..OpenVPN.Data.Channe |
| 6ba80 | 6c 20 4f 66 66 6c 6f 61 64 20 28 44 43 4f 29 00 4f 70 65 6e 56 50 4e 20 44 61 74 61 20 43 68 61 | l.Offload.(DCO).OpenVPN.Data.Cha |
| 6baa0 | 6e 6e 65 6c 20 4f 66 66 6c 6f 61 64 20 28 44 43 4f 29 20 65 6e 61 62 6c 65 73 20 73 69 67 6e 69 | nnel.Offload.(DCO).enables.signi |
| 6bac0 | 66 69 63 61 6e 74 20 70 65 72 66 6f 72 6d 61 6e 63 65 20 65 6e 68 61 6e 63 65 6d 65 6e 74 20 69 | ficant.performance.enhancement.i |
| 6bae0 | 6e 20 65 6e 63 72 79 70 74 65 64 20 4f 70 65 6e 56 50 4e 20 64 61 74 61 20 70 72 6f 63 65 73 73 | n.encrypted.OpenVPN.data.process |
| 6bb00 | 69 6e 67 2e 20 42 79 20 6d 69 6e 69 6d 69 7a 69 6e 67 20 63 6f 6e 74 65 78 74 20 73 77 69 74 63 | ing..By.minimizing.context.switc |
| 6bb20 | 68 69 6e 67 20 66 6f 72 20 65 61 63 68 20 70 61 63 6b 65 74 2c 20 44 43 4f 20 65 66 66 65 63 74 | hing.for.each.packet,.DCO.effect |
| 6bb40 | 69 76 65 6c 79 20 72 65 64 75 63 65 73 20 6f 76 65 72 68 65 61 64 2e 20 54 68 69 73 20 6f 70 74 | ively.reduces.overhead..This.opt |
| 6bb60 | 69 6d 69 7a 61 74 69 6f 6e 20 69 73 20 61 63 68 69 65 76 65 64 20 62 79 20 6b 65 65 70 69 6e 67 | imization.is.achieved.by.keeping |
| 6bb80 | 20 6d 6f 73 74 20 64 61 74 61 20 68 61 6e 64 6c 69 6e 67 20 74 61 73 6b 73 20 77 69 74 68 69 6e | .most.data.handling.tasks.within |
| 6bba0 | 20 74 68 65 20 6b 65 72 6e 65 6c 2c 20 61 76 6f 69 64 69 6e 67 20 66 72 65 71 75 65 6e 74 20 73 | .the.kernel,.avoiding.frequent.s |
| 6bbc0 | 77 69 74 63 68 65 73 20 62 65 74 77 65 65 6e 20 6b 65 72 6e 65 6c 20 61 6e 64 20 75 73 65 72 20 | witches.between.kernel.and.user. |
| 6bbe0 | 73 70 61 63 65 20 66 6f 72 20 65 6e 63 72 79 70 74 69 6f 6e 20 61 6e 64 20 70 61 63 6b 65 74 20 | space.for.encryption.and.packet. |
| 6bc00 | 68 61 6e 64 6c 69 6e 67 2e 00 4f 70 65 6e 56 50 4e 20 4c 6f 67 73 00 4f 70 65 6e 56 50 4e 20 61 | handling..OpenVPN.Logs.OpenVPN.a |
| 6bc20 | 6c 6c 6f 77 73 20 66 6f 72 20 65 69 74 68 65 72 20 54 43 50 20 6f 72 20 55 44 50 2e 20 55 44 50 | llows.for.either.TCP.or.UDP..UDP |
| 6bc40 | 20 77 69 6c 6c 20 70 72 6f 76 69 64 65 20 74 68 65 20 6c 6f 77 65 73 74 20 6c 61 74 65 6e 63 79 | .will.provide.the.lowest.latency |
| 6bc60 | 2c 20 77 68 69 6c 65 20 54 43 50 20 77 69 6c 6c 20 77 6f 72 6b 20 62 65 74 74 65 72 20 66 6f 72 | ,.while.TCP.will.work.better.for |
| 6bc80 | 20 6c 6f 73 73 79 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 3b 20 67 65 6e 65 72 61 6c 6c 79 20 55 44 | .lossy.connections;.generally.UD |
| 6bca0 | 50 20 69 73 20 70 72 65 66 65 72 72 65 64 20 77 68 65 6e 20 70 6f 73 73 69 62 6c 65 2e 00 4f 70 | P.is.preferred.when.possible..Op |
| 6bcc0 | 65 6e 56 50 4e 20 69 73 20 70 6f 70 75 6c 61 72 20 66 6f 72 20 63 6c 69 65 6e 74 2d 73 65 72 76 | enVPN.is.popular.for.client-serv |
| 6bce0 | 65 72 20 73 65 74 75 70 73 2c 20 62 75 74 20 69 74 73 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 | er.setups,.but.its.site-to-site. |
| 6bd00 | 6d 6f 64 65 20 72 65 6d 61 69 6e 73 20 61 20 72 65 6c 61 74 69 76 65 6c 79 20 6f 62 73 63 75 72 | mode.remains.a.relatively.obscur |
| 6bd20 | 65 20 66 65 61 74 75 72 65 2c 20 61 6e 64 20 6d 61 6e 79 20 72 6f 75 74 65 72 20 61 70 70 6c 69 | e.feature,.and.many.router.appli |
| 6bd40 | 61 6e 63 65 73 20 73 74 69 6c 6c 20 64 6f 6e 27 74 20 73 75 70 70 6f 72 74 20 69 74 2e 20 48 6f | ances.still.don't.support.it..Ho |
| 6bd60 | 77 65 76 65 72 2c 20 69 74 27 73 20 76 65 72 79 20 75 73 65 66 75 6c 20 66 6f 72 20 71 75 69 63 | wever,.it's.very.useful.for.quic |
| 6bd80 | 6b 6c 79 20 73 65 74 74 69 6e 67 20 75 70 20 74 75 6e 6e 65 6c 73 20 62 65 74 77 65 65 6e 20 72 | kly.setting.up.tunnels.between.r |
| 6bda0 | 6f 75 74 65 72 73 2e 00 4f 70 65 6e 56 50 4e 20 73 74 61 74 75 73 20 63 61 6e 20 62 65 20 76 65 | outers..OpenVPN.status.can.be.ve |
| 6bdc0 | 72 69 66 69 65 64 20 75 73 69 6e 67 20 74 68 65 20 60 73 68 6f 77 20 6f 70 65 6e 76 70 6e 60 20 | rified.using.the.`show.openvpn`. |
| 6bde0 | 6f 70 65 72 61 74 69 6f 6e 61 6c 20 63 6f 6d 6d 61 6e 64 73 2e 20 53 65 65 20 74 68 65 20 62 75 | operational.commands..See.the.bu |
| 6be00 | 69 6c 74 2d 69 6e 20 68 65 6c 70 20 66 6f 72 20 61 20 63 6f 6d 70 6c 65 74 65 20 6c 69 73 74 20 | ilt-in.help.for.a.complete.list. |
| 6be20 | 6f 66 20 6f 70 74 69 6f 6e 73 2e 00 4f 70 65 6e 63 6f 6e 6e 65 63 74 20 43 6f 6e 66 69 67 75 72 | of.options..Openconnect.Configur |
| 6be40 | 61 74 69 6f 6e 00 4f 70 65 72 61 74 69 6e 67 20 4d 6f 64 65 73 00 4f 70 65 72 61 74 69 6f 6e 00 | ation.Operating.Modes.Operation. |
| 6be60 | 4f 70 65 72 61 74 69 6f 6e 20 43 6f 6d 6d 61 6e 64 73 00 4f 70 65 72 61 74 69 6f 6e 20 4d 6f 64 | Operation.Commands.Operation.Mod |
| 6be80 | 65 00 4f 70 65 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 73 00 4f 70 65 72 61 74 69 6f 6e 20 6d | e.Operation.commands.Operation.m |
| 6bea0 | 6f 64 65 20 6f 66 20 77 69 72 65 6c 65 73 73 20 72 61 64 69 6f 2e 00 4f 70 65 72 61 74 69 6f 6e | ode.of.wireless.radio..Operation |
| 6bec0 | 2d 6d 6f 64 65 00 4f 70 65 72 61 74 69 6f 6e 2d 6d 6f 64 65 20 46 69 72 65 77 61 6c 6c 00 4f 70 | -mode.Operation-mode.Firewall.Op |
| 6bee0 | 65 72 61 74 69 6f 6e 61 6c 20 43 6f 6d 6d 61 6e 64 73 00 4f 70 65 72 61 74 69 6f 6e 61 6c 20 4d | erational.Commands.Operational.M |
| 6bf00 | 6f 64 65 20 43 6f 6d 6d 61 6e 64 73 00 4f 70 65 72 61 74 69 6f 6e 61 6c 20 63 6f 6d 6d 61 6e 64 | ode.Commands.Operational.command |
| 6bf20 | 73 00 4f 70 74 69 6f 6e 00 4f 70 74 69 6f 6e 20 34 33 20 66 6f 72 20 55 6e 69 46 49 00 4f 70 74 | s.Option.Option.43.for.UniFI.Opt |
| 6bf40 | 69 6f 6e 20 64 65 73 63 72 69 70 74 69 6f 6e 00 4f 70 74 69 6f 6e 20 6e 75 6d 62 65 72 00 4f 70 | ion.description.Option.number.Op |
| 6bf60 | 74 69 6f 6e 20 73 70 65 63 69 66 79 69 6e 67 20 74 68 65 20 72 61 74 65 20 69 6e 20 77 68 69 63 | tion.specifying.the.rate.in.whic |
| 6bf80 | 68 20 77 65 27 6c 6c 20 61 73 6b 20 6f 75 72 20 6c 69 6e 6b 20 70 61 72 74 6e 65 72 20 74 6f 20 | h.we'll.ask.our.link.partner.to. |
| 6bfa0 | 74 72 61 6e 73 6d 69 74 20 4c 41 43 50 44 55 20 70 61 63 6b 65 74 73 20 69 6e 20 38 30 32 2e 33 | transmit.LACPDU.packets.in.802.3 |
| 6bfc0 | 61 64 20 6d 6f 64 65 2e 00 4f 70 74 69 6f 6e 20 74 6f 20 64 69 73 61 62 6c 65 20 72 75 6c 65 2e | ad.mode..Option.to.disable.rule. |
| 6bfe0 | 00 4f 70 74 69 6f 6e 20 74 6f 20 65 6e 61 62 6c 65 20 6f 72 20 64 69 73 61 62 6c 65 20 6c 6f 67 | .Option.to.enable.or.disable.log |
| 6c000 | 20 6d 61 74 63 68 69 6e 67 20 72 75 6c 65 2e 00 4f 70 74 69 6f 6e 20 74 6f 20 6c 6f 67 20 70 61 | .matching.rule..Option.to.log.pa |
| 6c020 | 63 6b 65 74 73 20 68 69 74 74 69 6e 67 20 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 2e 00 4f 70 | ckets.hitting.default-action..Op |
| 6c040 | 74 69 6f 6e 61 6c 00 4f 70 74 69 6f 6e 61 6c 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 4f 70 | tional.Optional.Configuration.Op |
| 6c060 | 74 69 6f 6e 61 6c 20 70 61 72 61 6d 65 74 65 72 20 70 72 65 66 69 78 2d 6c 69 73 74 20 63 61 6e | tional.parameter.prefix-list.can |
| 6c080 | 20 62 65 20 75 73 65 20 74 6f 20 63 6f 6e 74 72 6f 6c 20 77 68 69 63 68 20 67 72 6f 75 70 73 20 | .be.use.to.control.which.groups. |
| 6c0a0 | 74 6f 20 73 77 69 74 63 68 20 6f 72 20 6e 6f 74 20 73 77 69 74 63 68 2e 20 49 66 20 61 20 67 72 | to.switch.or.not.switch..If.a.gr |
| 6c0c0 | 6f 75 70 20 69 73 20 50 45 52 4d 49 54 20 61 73 20 70 65 72 20 74 68 65 20 70 72 65 66 69 78 2d | oup.is.PERMIT.as.per.the.prefix- |
| 6c0e0 | 6c 69 73 74 2c 20 74 68 65 6e 20 74 68 65 20 53 50 54 20 73 77 69 74 63 68 6f 76 65 72 20 64 6f | list,.then.the.SPT.switchover.do |
| 6c100 | 65 73 20 6e 6f 74 20 68 61 70 70 65 6e 20 66 6f 72 20 69 74 20 61 6e 64 20 69 66 20 69 74 20 69 | es.not.happen.for.it.and.if.it.i |
| 6c120 | 73 20 44 45 4e 59 2c 20 74 68 65 6e 20 74 68 65 20 53 50 54 20 73 77 69 74 63 68 6f 76 65 72 20 | s.DENY,.then.the.SPT.switchover. |
| 6c140 | 68 61 70 70 65 6e 73 2e 00 4f 70 74 69 6f 6e 61 6c 2c 20 69 66 20 79 6f 75 20 77 61 6e 74 20 74 | happens..Optional,.if.you.want.t |
| 6c160 | 6f 20 65 6e 61 62 6c 65 20 75 70 6c 6f 61 64 73 2c 20 65 6c 73 65 20 54 46 54 50 20 73 65 72 76 | o.enable.uploads,.else.TFTP.serv |
| 6c180 | 65 72 20 77 69 6c 6c 20 61 63 74 20 61 73 20 61 20 72 65 61 64 2d 6f 6e 6c 79 20 73 65 72 76 65 | er.will.act.as.a.read-only.serve |
| 6c1a0 | 72 2e 00 4f 70 74 69 6f 6e 61 6c 2f 64 65 66 61 75 6c 74 20 73 65 74 74 69 6e 67 73 00 4f 70 74 | r..Optional/default.settings.Opt |
| 6c1c0 | 69 6f 6e 61 6c 6c 79 20 73 65 74 20 61 20 73 70 65 63 69 66 69 63 20 73 74 61 74 69 63 20 49 50 | ionally.set.a.specific.static.IP |
| 6c1e0 | 76 34 20 6f 72 20 49 50 76 36 20 61 64 64 72 65 73 73 20 66 6f 72 20 74 68 65 20 63 6f 6e 74 61 | v4.or.IPv6.address.for.the.conta |
| 6c200 | 69 6e 65 72 2e 20 54 68 69 73 20 61 64 64 72 65 73 73 20 6d 75 73 74 20 62 65 20 77 69 74 68 69 | iner..This.address.must.be.withi |
| 6c220 | 6e 20 74 68 65 20 6e 61 6d 65 64 20 6e 65 74 77 6f 72 6b 20 70 72 65 66 69 78 2e 00 4f 70 74 69 | n.the.named.network.prefix..Opti |
| 6c240 | 6f 6e 73 00 4f 70 74 69 6f 6e 73 20 28 47 6c 6f 62 61 6c 20 49 50 73 65 63 20 73 65 74 74 69 6e | ons.Options.(Global.IPsec.settin |
| 6c260 | 67 73 29 20 41 74 74 72 69 62 75 74 65 73 00 4f 70 74 69 6f 6e 73 20 75 73 65 64 20 66 6f 72 20 | gs).Attributes.Options.used.for. |
| 6c280 | 71 75 65 75 65 20 74 61 72 67 65 74 2e 20 41 63 74 69 6f 6e 20 71 75 65 75 65 20 6d 75 73 74 20 | queue.target..Action.queue.must. |
| 6c2a0 | 62 65 20 64 65 66 69 6e 65 64 20 74 6f 20 75 73 65 20 74 68 69 73 20 73 65 74 74 69 6e 67 00 4f | be.defined.to.use.this.setting.O |
| 6c2c0 | 72 20 2a 2a 62 69 6e 61 72 79 2a 2a 20 70 72 65 66 69 78 65 73 2e 00 4f 72 2c 20 66 6f 72 20 65 | r.**binary**.prefixes..Or,.for.e |
| 6c2e0 | 78 61 6d 70 6c 65 20 66 74 70 2c 20 60 64 65 6c 65 74 65 20 73 79 73 74 65 6d 20 63 6f 6e 6e 74 | xample.ftp,.`delete.system.connt |
| 6c300 | 72 61 63 6b 20 6d 6f 64 75 6c 65 73 20 66 74 70 60 2e 00 4f 72 64 65 72 20 63 6f 6e 6e 74 72 61 | rack.modules.ftp`..Order.conntra |
| 6c320 | 63 6b 64 20 74 6f 20 72 65 71 75 65 73 74 20 61 20 63 6f 6d 70 6c 65 74 65 20 63 6f 6e 6e 74 72 | ckd.to.request.a.complete.conntr |
| 6c340 | 61 63 6b 20 74 61 62 6c 65 20 72 65 73 79 6e 63 20 61 67 61 69 6e 73 74 20 74 68 65 20 6f 74 68 | ack.table.resync.against.the.oth |
| 6c360 | 65 72 20 6e 6f 64 65 20 61 74 20 73 74 61 72 74 75 70 2e 00 4f 72 69 67 69 6e 61 74 65 20 61 6e | er.node.at.startup..Originate.an |
| 6c380 | 20 41 53 2d 45 78 74 65 72 6e 61 6c 20 28 74 79 70 65 2d 35 29 20 4c 53 41 20 64 65 73 63 72 69 | .AS-External.(type-5).LSA.descri |
| 6c3a0 | 62 69 6e 67 20 61 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 20 69 6e 74 6f 20 61 6c 6c 20 65 78 | bing.a.default.route.into.all.ex |
| 6c3c0 | 74 65 72 6e 61 6c 2d 72 6f 75 74 69 6e 67 20 63 61 70 61 62 6c 65 20 61 72 65 61 73 2c 20 6f 66 | ternal-routing.capable.areas,.of |
| 6c3e0 | 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 6d 65 74 72 69 63 20 61 6e 64 20 6d 65 74 72 69 63 | .the.specified.metric.and.metric |
| 6c400 | 20 74 79 70 65 2e 20 49 66 20 74 68 65 20 3a 63 66 67 63 6d 64 3a 60 61 6c 77 61 79 73 60 20 6b | .type..If.the.:cfgcmd:`always`.k |
| 6c420 | 65 79 77 6f 72 64 20 69 73 20 67 69 76 65 6e 20 74 68 65 6e 20 74 68 65 20 64 65 66 61 75 6c 74 | eyword.is.given.then.the.default |
| 6c440 | 20 69 73 20 61 6c 77 61 79 73 20 61 64 76 65 72 74 69 73 65 64 2c 20 65 76 65 6e 20 77 68 65 6e | .is.always.advertised,.even.when |
| 6c460 | 20 74 68 65 72 65 20 69 73 20 6e 6f 20 64 65 66 61 75 6c 74 20 70 72 65 73 65 6e 74 20 69 6e 20 | .there.is.no.default.present.in. |
| 6c480 | 74 68 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 2e 20 54 68 65 20 61 72 67 75 6d 65 6e 74 20 | the.routing.table..The.argument. |
| 6c4a0 | 3a 63 66 67 63 6d 64 3a 60 72 6f 75 74 65 2d 6d 61 70 60 20 73 70 65 63 69 66 69 65 73 20 74 6f | :cfgcmd:`route-map`.specifies.to |
| 6c4c0 | 20 61 64 76 65 72 74 69 73 65 20 74 68 65 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 20 69 66 20 | .advertise.the.default.route.if. |
| 6c4e0 | 74 68 65 20 72 6f 75 74 65 20 6d 61 70 20 69 73 20 73 61 74 69 73 66 69 65 64 2e 00 4f 74 68 65 | the.route.map.is.satisfied..Othe |
| 6c500 | 72 20 61 74 74 72 69 62 75 74 65 73 20 63 61 6e 20 62 65 20 75 73 65 64 2c 20 62 75 74 20 74 68 | r.attributes.can.be.used,.but.th |
| 6c520 | 65 79 20 68 61 76 65 20 74 6f 20 62 65 20 69 6e 20 6f 6e 65 20 6f 66 20 74 68 65 20 64 69 63 74 | ey.have.to.be.in.one.of.the.dict |
| 6c540 | 69 6f 6e 61 72 69 65 73 20 69 6e 20 2a 2f 75 73 72 2f 73 68 61 72 65 2f 61 63 63 65 6c 2d 70 70 | ionaries.in.*/usr/share/accel-pp |
| 6c560 | 70 2f 72 61 64 69 75 73 2a 2e 00 4f 75 72 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f 6d | p/radius*..Our.configuration.com |
| 6c580 | 6d 61 6e 64 73 20 77 6f 75 6c 64 20 62 65 3a 00 4f 75 72 20 72 65 6d 6f 74 65 20 65 6e 64 20 6f | mands.would.be:.Our.remote.end.o |
| 6c5a0 | 66 20 74 68 65 20 74 75 6e 6e 65 6c 20 66 6f 72 20 70 65 65 72 20 60 74 6f 2d 77 67 30 32 60 20 | f.the.tunnel.for.peer.`to-wg02`. |
| 6c5c0 | 69 73 20 72 65 61 63 68 61 62 6c 65 20 61 74 20 31 39 32 2e 30 2e 32 2e 31 20 70 6f 72 74 20 35 | is.reachable.at.192.0.2.1.port.5 |
| 6c5e0 | 31 38 32 30 00 4f 75 74 62 6f 75 6e 64 20 74 72 61 66 66 69 63 20 63 61 6e 20 62 65 20 62 61 6c | 1820.Outbound.traffic.can.be.bal |
| 6c600 | 61 6e 63 65 64 20 62 65 74 77 65 65 6e 20 74 77 6f 20 6f 72 20 6d 6f 72 65 20 6f 75 74 62 6f 75 | anced.between.two.or.more.outbou |
| 6c620 | 6e 64 20 69 6e 74 65 72 66 61 63 65 73 2e 20 49 66 20 61 20 70 61 74 68 20 66 61 69 6c 73 2c 20 | nd.interfaces..If.a.path.fails,. |
| 6c640 | 74 72 61 66 66 69 63 20 69 73 20 62 61 6c 61 6e 63 65 64 20 61 63 72 6f 73 73 20 74 68 65 20 72 | traffic.is.balanced.across.the.r |
| 6c660 | 65 6d 61 69 6e 69 6e 67 20 68 65 61 6c 74 68 79 20 70 61 74 68 73 2c 20 61 20 72 65 63 6f 76 65 | emaining.healthy.paths,.a.recove |
| 6c680 | 72 65 64 20 70 61 74 68 20 69 73 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 61 64 64 65 64 20 | red.path.is.automatically.added. |
| 6c6a0 | 62 61 63 6b 20 74 6f 20 74 68 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 61 6e 64 20 75 73 | back.to.the.routing.table.and.us |
| 6c6c0 | 65 64 20 62 79 20 74 68 65 20 6c 6f 61 64 20 62 61 6c 61 6e 63 65 72 2e 20 54 68 65 20 6c 6f 61 | ed.by.the.load.balancer..The.loa |
| 6c6e0 | 64 20 62 61 6c 61 6e 63 65 72 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 61 64 64 73 20 72 6f | d.balancer.automatically.adds.ro |
| 6c700 | 75 74 65 73 20 66 6f 72 20 65 61 63 68 20 70 61 74 68 20 74 6f 20 74 68 65 20 72 6f 75 74 69 6e | utes.for.each.path.to.the.routin |
| 6c720 | 67 20 74 61 62 6c 65 20 61 6e 64 20 62 61 6c 61 6e 63 65 73 20 74 72 61 66 66 69 63 20 61 63 72 | g.table.and.balances.traffic.acr |
| 6c740 | 6f 73 73 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 69 6e 74 65 72 66 61 63 65 73 2c 20 64 | oss.the.configured.interfaces,.d |
| 6c760 | 65 74 65 72 6d 69 6e 65 64 20 62 79 20 69 6e 74 65 72 66 61 63 65 20 68 65 61 6c 74 68 20 61 6e | etermined.by.interface.health.an |
| 6c780 | 64 20 77 65 69 67 68 74 2e 00 4f 75 74 67 6f 69 6e 67 20 74 72 61 66 66 69 63 20 69 73 20 62 61 | d.weight..Outgoing.traffic.is.ba |
| 6c7a0 | 6c 61 6e 63 65 64 20 69 6e 20 61 20 66 6c 6f 77 2d 62 61 73 65 64 20 6d 61 6e 6e 65 72 2e 20 41 | lanced.in.a.flow-based.manner..A |
| 6c7c0 | 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 74 61 62 6c 65 20 69 73 20 75 73 | .connection.tracking.table.is.us |
| 6c7e0 | 65 64 20 74 6f 20 74 72 61 63 6b 20 66 6c 6f 77 73 20 62 79 20 74 68 65 69 72 20 73 6f 75 72 63 | ed.to.track.flows.by.their.sourc |
| 6c800 | 65 20 61 64 64 72 65 73 73 2c 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 61 | e.address,.destination.address.a |
| 6c820 | 6e 64 20 70 6f 72 74 2e 20 45 61 63 68 20 66 6c 6f 77 20 69 73 20 61 73 73 69 67 6e 65 64 20 74 | nd.port..Each.flow.is.assigned.t |
| 6c840 | 6f 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 61 63 63 6f 72 64 69 6e 67 20 74 6f 20 74 68 65 20 | o.an.interface.according.to.the. |
| 6c860 | 64 65 66 69 6e 65 64 20 62 61 6c 61 6e 63 69 6e 67 20 72 75 6c 65 73 20 61 6e 64 20 73 75 62 73 | defined.balancing.rules.and.subs |
| 6c880 | 65 71 75 65 6e 74 20 70 61 63 6b 65 74 73 20 61 72 65 20 73 65 6e 74 20 74 68 72 6f 75 67 68 20 | equent.packets.are.sent.through. |
| 6c8a0 | 74 68 65 20 73 61 6d 65 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 69 73 20 68 61 73 20 74 68 65 | the.same.interface..This.has.the |
| 6c8c0 | 20 61 64 76 61 6e 74 61 67 65 20 74 68 61 74 20 70 61 63 6b 65 74 73 20 61 6c 77 61 79 73 20 61 | .advantage.that.packets.always.a |
| 6c8e0 | 72 72 69 76 65 20 69 6e 20 6f 72 64 65 72 20 69 66 20 6c 69 6e 6b 73 20 77 69 74 68 20 64 69 66 | rrive.in.order.if.links.with.dif |
| 6c900 | 66 65 72 65 6e 74 20 73 70 65 65 64 73 20 61 72 65 20 69 6e 20 75 73 65 2e 00 4f 75 74 70 75 74 | ferent.speeds.are.in.use..Output |
| 6c920 | 20 66 72 6f 6d 20 60 65 74 68 30 60 20 6e 65 74 77 6f 72 6b 20 69 6e 74 65 72 66 61 63 65 00 4f | .from.`eth0`.network.interface.O |
| 6c940 | 75 74 70 75 74 20 70 6c 75 67 69 6e 20 50 72 6f 6d 65 74 68 65 75 73 20 63 6c 69 65 6e 74 00 4f | utput.plugin.Prometheus.client.O |
| 6c960 | 76 65 72 20 49 50 00 4f 76 65 72 20 49 50 53 65 63 2c 20 4c 32 20 56 50 4e 20 28 62 72 69 64 67 | ver.IP.Over.IPSec,.L2.VPN.(bridg |
| 6c980 | 65 29 00 4f 76 65 72 20 55 44 50 00 4f 76 65 72 72 69 64 65 20 73 74 61 74 69 63 2d 6d 61 70 70 | e).Over.UDP.Override.static-mapp |
| 6c9a0 | 69 6e 67 27 73 20 6e 61 6d 65 2d 73 65 72 76 65 72 20 77 69 74 68 20 61 20 63 75 73 74 6f 6d 20 | ing's.name-server.with.a.custom. |
| 6c9c0 | 6f 6e 65 20 74 68 61 74 20 77 69 6c 6c 20 62 65 20 73 65 6e 74 20 6f 6e 6c 79 20 74 6f 20 74 68 | one.that.will.be.sent.only.to.th |
| 6c9e0 | 69 73 20 68 6f 73 74 2e 00 4f 76 65 72 72 69 64 65 20 74 68 65 20 64 65 66 61 75 6c 74 20 63 6f | is.host..Override.the.default.co |
| 6ca00 | 6d 6d 61 6e 64 20 66 72 6f 6d 20 74 68 65 20 69 6d 61 67 65 20 66 6f 72 20 61 20 63 6f 6e 74 61 | mmand.from.the.image.for.a.conta |
| 6ca20 | 69 6e 65 72 2e 00 4f 76 65 72 72 69 64 65 20 74 68 65 20 64 65 66 61 75 6c 74 20 65 6e 74 72 79 | iner..Override.the.default.entry |
| 6ca40 | 70 6f 69 6e 74 20 66 72 6f 6d 20 74 68 65 20 69 6d 61 67 65 20 66 6f 72 20 61 20 63 6f 6e 74 61 | point.from.the.image.for.a.conta |
| 6ca60 | 69 6e 65 72 2e 00 4f 76 65 72 76 69 65 77 00 4f 76 65 72 76 69 65 77 20 61 6e 64 20 62 61 73 69 | iner..Overview.Overview.and.basi |
| 6ca80 | 63 20 63 6f 6e 63 65 70 74 73 00 4f 76 65 72 76 69 65 77 20 6f 66 20 64 65 66 69 6e 65 64 20 67 | c.concepts.Overview.of.defined.g |
| 6caa0 | 72 6f 75 70 73 2e 20 59 6f 75 20 73 65 65 20 74 68 65 20 66 69 72 65 77 61 6c 6c 20 67 72 6f 75 | roups..You.see.the.firewall.grou |
| 6cac0 | 70 20 6e 61 6d 65 2c 20 74 79 70 65 2c 20 72 65 66 65 72 65 6e 63 65 73 20 28 77 68 65 72 65 20 | p.name,.type,.references.(where. |
| 6cae0 | 74 68 65 20 67 72 6f 75 70 20 69 73 20 75 73 65 64 29 2c 20 6d 65 6d 62 65 72 73 2c 20 74 69 6d | the.group.is.used),.members,.tim |
| 6cb00 | 65 6f 75 74 20 61 6e 64 20 65 78 70 69 72 61 74 69 6f 6e 20 28 6c 61 73 74 20 74 77 6f 20 6f 6e | eout.and.expiration.(last.two.on |
| 6cb20 | 6c 79 20 70 72 65 73 65 6e 74 20 69 6e 20 64 79 6e 61 6d 69 63 20 66 69 72 65 77 61 6c 6c 20 67 | ly.present.in.dynamic.firewall.g |
| 6cb40 | 72 6f 75 70 73 29 2e 00 4f 76 65 72 76 69 65 77 20 6f 66 20 64 65 66 69 6e 65 64 20 67 72 6f 75 | roups)..Overview.of.defined.grou |
| 6cb60 | 70 73 2e 20 59 6f 75 20 73 65 65 20 74 68 65 20 74 79 70 65 2c 20 74 68 65 20 6d 65 6d 62 65 72 | ps..You.see.the.type,.the.member |
| 6cb80 | 73 2c 20 61 6e 64 20 77 68 65 72 65 20 74 68 65 20 67 72 6f 75 70 20 69 73 20 75 73 65 64 2e 00 | s,.and.where.the.group.is.used.. |
| 6cba0 | 4f 76 65 72 77 72 69 74 65 73 20 74 68 65 20 6c 6f 63 61 6c 20 73 79 73 74 65 6d 20 68 6f 73 74 | Overwrites.the.local.system.host |
| 6cbc0 | 20 6e 61 6d 65 20 75 73 65 64 20 69 6e 20 73 79 73 6c 6f 67 73 2e 00 50 42 52 20 6d 75 6c 74 69 | .name.used.in.syslogs..PBR.multi |
| 6cbe0 | 70 6c 65 20 75 70 6c 69 6e 6b 73 00 50 43 31 20 69 73 20 69 6e 20 74 68 65 20 60 60 64 65 66 61 | ple.uplinks.PC1.is.in.the.``defa |
| 6cc00 | 75 6c 74 60 60 20 56 52 46 20 61 6e 64 20 61 63 74 69 6e 67 20 61 73 20 65 2e 67 2e 20 61 20 22 | ult``.VRF.and.acting.as.e.g..a." |
| 6cc20 | 66 69 6c 65 73 65 72 76 65 72 22 00 50 43 32 20 69 73 20 69 6e 20 56 52 46 20 60 60 62 6c 75 65 | fileserver".PC2.is.in.VRF.``blue |
| 6cc40 | 60 60 20 77 68 69 63 68 20 69 73 20 74 68 65 20 64 65 76 65 6c 6f 70 6d 65 6e 74 20 64 65 70 61 | ``.which.is.the.development.depa |
| 6cc60 | 72 74 6d 65 6e 74 00 50 43 33 20 61 6e 64 20 50 43 34 20 61 72 65 20 63 6f 6e 6e 65 63 74 65 64 | rtment.PC3.and.PC4.are.connected |
| 6cc80 | 20 74 6f 20 61 20 62 72 69 64 67 65 20 64 65 76 69 63 65 20 6f 6e 20 72 6f 75 74 65 72 20 60 60 | .to.a.bridge.device.on.router.`` |
| 6cca0 | 52 31 60 60 20 77 68 69 63 68 20 69 73 20 69 6e 20 56 52 46 20 60 60 72 65 64 60 60 2e 20 53 61 | R1``.which.is.in.VRF.``red``..Sa |
| 6ccc0 | 79 20 74 68 69 73 20 69 73 20 74 68 65 20 48 52 20 64 65 70 61 72 74 6d 65 6e 74 2e 00 50 43 34 | y.this.is.the.HR.department..PC4 |
| 6cce0 | 20 68 61 73 20 49 50 20 31 30 2e 30 2e 30 2e 34 2f 32 34 20 61 6e 64 20 50 43 35 20 68 61 73 20 | .has.IP.10.0.0.4/24.and.PC5.has. |
| 6cd00 | 49 50 20 31 30 2e 30 2e 30 2e 35 2f 32 34 2c 20 73 6f 20 74 68 65 79 20 62 65 6c 69 65 76 65 20 | IP.10.0.0.5/24,.so.they.believe. |
| 6cd20 | 74 68 65 79 20 61 72 65 20 69 6e 20 74 68 65 20 73 61 6d 65 20 62 72 6f 61 64 63 61 73 74 20 64 | they.are.in.the.same.broadcast.d |
| 6cd40 | 6f 6d 61 69 6e 2e 00 50 43 35 20 72 65 63 65 69 76 65 73 20 74 68 65 20 70 69 6e 67 20 65 63 68 | omain..PC5.receives.the.ping.ech |
| 6cd60 | 6f 2c 20 72 65 73 70 6f 6e 64 73 20 77 69 74 68 20 61 6e 20 65 63 68 6f 20 72 65 70 6c 79 20 74 | o,.responds.with.an.echo.reply.t |
| 6cd80 | 68 61 74 20 4c 65 61 66 33 20 72 65 63 65 69 76 65 73 20 61 6e 64 20 74 68 69 73 20 74 69 6d 65 | hat.Leaf3.receives.and.this.time |
| 6cda0 | 20 66 6f 72 77 61 72 64 73 20 74 6f 20 4c 65 61 66 32 27 73 20 75 6e 69 63 61 73 74 20 61 64 64 | .forwards.to.Leaf2's.unicast.add |
| 6cdc0 | 72 65 73 73 20 64 69 72 65 63 74 6c 79 20 62 65 63 61 75 73 65 20 69 74 20 6c 65 61 72 6e 65 64 | ress.directly.because.it.learned |
| 6cde0 | 20 74 68 65 20 6c 6f 63 61 74 69 6f 6e 20 6f 66 20 50 43 34 20 61 62 6f 76 65 2e 20 57 68 65 6e | .the.location.of.PC4.above..When |
| 6ce00 | 20 4c 65 61 66 32 20 72 65 63 65 69 76 65 73 20 74 68 65 20 65 63 68 6f 20 72 65 70 6c 79 20 66 | .Leaf2.receives.the.echo.reply.f |
| 6ce20 | 72 6f 6d 20 50 43 35 20 69 74 20 73 65 65 73 20 74 68 61 74 20 69 74 20 63 61 6d 65 20 66 72 6f | rom.PC5.it.sees.that.it.came.fro |
| 6ce40 | 6d 20 4c 65 61 66 33 20 61 6e 64 20 73 6f 20 72 65 6d 65 6d 62 65 72 73 20 74 68 61 74 20 50 43 | m.Leaf3.and.so.remembers.that.PC |
| 6ce60 | 35 20 69 73 20 72 65 61 63 68 61 62 6c 65 20 76 69 61 20 4c 65 61 66 33 2e 00 50 49 4d 20 28 50 | 5.is.reachable.via.Leaf3..PIM.(P |
| 6ce80 | 72 6f 74 6f 63 6f 6c 20 49 6e 64 65 70 65 6e 64 65 6e 74 20 4d 75 6c 74 69 63 61 73 74 29 20 6d | rotocol.Independent.Multicast).m |
| 6cea0 | 75 73 74 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 69 6e 20 65 76 65 72 79 20 69 6e 74 65 72 | ust.be.configured.in.every.inter |
| 6cec0 | 66 61 63 65 20 6f 66 20 65 76 65 72 79 20 70 61 72 74 69 63 69 70 61 74 69 6e 67 20 72 6f 75 74 | face.of.every.participating.rout |
| 6cee0 | 65 72 2e 20 45 76 65 72 79 20 72 6f 75 74 65 72 20 6d 75 73 74 20 61 6c 73 6f 20 68 61 76 65 20 | er..Every.router.must.also.have. |
| 6cf00 | 74 68 65 20 6c 6f 63 61 74 69 6f 6e 20 6f 66 20 74 68 65 20 52 65 6e 64 65 76 6f 75 7a 20 50 6f | the.location.of.the.Rendevouz.Po |
| 6cf20 | 69 6e 74 20 6d 61 6e 75 61 6c 6c 79 20 63 6f 6e 66 69 67 75 72 65 64 2e 20 54 68 65 6e 2c 20 75 | int.manually.configured..Then,.u |
| 6cf40 | 6e 69 64 69 72 65 63 74 69 6f 6e 61 6c 20 73 68 61 72 65 64 20 74 72 65 65 73 20 72 6f 6f 74 65 | nidirectional.shared.trees.roote |
| 6cf60 | 64 20 61 74 20 74 68 65 20 52 65 6e 64 65 76 6f 75 7a 20 50 6f 69 6e 74 20 77 69 6c 6c 20 61 75 | d.at.the.Rendevouz.Point.will.au |
| 6cf80 | 74 6f 6d 61 74 69 63 61 6c 6c 79 20 62 65 20 62 75 69 6c 74 20 66 6f 72 20 6d 75 6c 74 69 63 61 | tomatically.be.built.for.multica |
| 6cfa0 | 73 74 20 64 69 73 74 72 69 62 75 74 69 6f 6e 2e 00 50 49 4d 20 61 6e 64 20 49 47 4d 50 00 50 49 | st.distribution..PIM.and.IGMP.PI |
| 6cfc0 | 4d 20 e2 80 93 20 50 72 6f 74 6f 63 6f 6c 20 49 6e 64 65 70 65 6e 64 65 6e 74 20 4d 75 6c 74 69 | M.....Protocol.Independent.Multi |
| 6cfe0 | 63 61 73 74 00 50 49 4d 2d 53 4d 20 2d 20 50 49 4d 20 53 70 61 72 73 65 20 4d 6f 64 65 00 50 49 | cast.PIM-SM.-.PIM.Sparse.Mode.PI |
| 6d000 | 4d 36 20 2d 20 50 72 6f 74 6f 63 6f 6c 20 49 6e 64 65 70 65 6e 64 65 6e 74 20 4d 75 6c 74 69 63 | M6.-.Protocol.Independent.Multic |
| 6d020 | 61 73 74 20 66 6f 72 20 49 50 76 36 00 50 49 4d 76 36 20 28 50 72 6f 74 6f 63 6f 6c 20 49 6e 64 | ast.for.IPv6.PIMv6.(Protocol.Ind |
| 6d040 | 65 70 65 6e 64 65 6e 74 20 4d 75 6c 74 69 63 61 73 74 20 66 6f 72 20 49 50 76 36 29 20 6d 75 73 | ependent.Multicast.for.IPv6).mus |
| 6d060 | 74 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 69 6e 20 65 76 65 72 79 20 69 6e 74 65 72 66 61 | t.be.configured.in.every.interfa |
| 6d080 | 63 65 20 6f 66 20 65 76 65 72 79 20 70 61 72 74 69 63 69 70 61 74 69 6e 67 20 72 6f 75 74 65 72 | ce.of.every.participating.router |
| 6d0a0 | 2e 20 45 76 65 72 79 20 72 6f 75 74 65 72 20 6d 75 73 74 20 61 6c 73 6f 20 68 61 76 65 20 74 68 | ..Every.router.must.also.have.th |
| 6d0c0 | 65 20 6c 6f 63 61 74 69 6f 6e 20 6f 66 20 74 68 65 20 52 65 6e 64 65 76 6f 75 7a 20 50 6f 69 6e | e.location.of.the.Rendevouz.Poin |
| 6d0e0 | 74 20 6d 61 6e 75 61 6c 6c 79 20 63 6f 6e 66 69 67 75 72 65 64 2e 20 54 68 65 6e 2c 20 75 6e 69 | t.manually.configured..Then,.uni |
| 6d100 | 64 69 72 65 63 74 69 6f 6e 61 6c 20 73 68 61 72 65 64 20 74 72 65 65 73 20 72 6f 6f 74 65 64 20 | directional.shared.trees.rooted. |
| 6d120 | 61 74 20 74 68 65 20 52 65 6e 64 65 76 6f 75 7a 20 50 6f 69 6e 74 20 77 69 6c 6c 20 61 75 74 6f | at.the.Rendevouz.Point.will.auto |
| 6d140 | 6d 61 74 69 63 61 6c 6c 79 20 62 65 20 62 75 69 6c 74 20 66 6f 72 20 6d 75 6c 74 69 63 61 73 74 | matically.be.built.for.multicast |
| 6d160 | 20 64 69 73 74 72 69 62 75 74 69 6f 6e 2e 00 50 4b 49 00 50 50 44 55 00 50 50 50 20 41 64 76 61 | .distribution..PKI.PPDU.PPP.Adva |
| 6d180 | 6e 63 65 64 20 4f 70 74 69 6f 6e 73 00 50 50 50 20 53 65 74 74 69 6e 67 73 00 50 50 50 6f 45 00 | nced.Options.PPP.Settings.PPPoE. |
| 6d1a0 | 50 50 50 6f 45 20 53 65 72 76 65 72 00 50 50 50 6f 45 20 6f 70 74 69 6f 6e 73 00 50 50 54 50 2d | PPPoE.Server.PPPoE.options.PPTP- |
| 6d1c0 | 53 65 72 76 65 72 00 50 54 50 20 54 72 61 6e 73 70 6f 72 74 20 6f 66 20 4e 54 50 20 50 61 63 6b | Server.PTP.Transport.of.NTP.Pack |
| 6d1e0 | 65 74 73 00 50 61 63 6b 65 74 20 4d 6f 64 69 66 69 63 61 74 69 6f 6e 73 00 50 61 63 6b 65 74 2d | ets.Packet.Modifications.Packet- |
| 6d200 | 62 61 73 65 64 20 62 61 6c 61 6e 63 69 6e 67 20 63 61 6e 20 6c 65 61 64 20 74 6f 20 61 20 62 65 | based.balancing.can.lead.to.a.be |
| 6d220 | 74 74 65 72 20 62 61 6c 61 6e 63 65 20 61 63 72 6f 73 73 20 69 6e 74 65 72 66 61 63 65 73 20 77 | tter.balance.across.interfaces.w |
| 6d240 | 68 65 6e 20 6f 75 74 20 6f 66 20 6f 72 64 65 72 20 70 61 63 6b 65 74 73 20 61 72 65 20 6e 6f 20 | hen.out.of.order.packets.are.no. |
| 6d260 | 69 73 73 75 65 2e 20 50 65 72 2d 70 61 63 6b 65 74 2d 62 61 73 65 64 20 62 61 6c 61 6e 63 69 6e | issue..Per-packet-based.balancin |
| 6d280 | 67 20 63 61 6e 20 62 65 20 73 65 74 20 66 6f 72 20 61 20 62 61 6c 61 6e 63 69 6e 67 20 72 75 6c | g.can.be.set.for.a.balancing.rul |
| 6d2a0 | 65 20 77 69 74 68 3a 00 50 61 72 61 6d 65 74 65 72 73 20 62 65 67 69 6e 6e 69 6e 67 20 77 69 74 | e.with:.Parameters.beginning.wit |
| 6d2c0 | 68 20 66 73 2e 6d 71 75 65 75 65 2e 2a 00 50 61 72 61 6d 65 74 65 72 73 20 62 65 67 69 6e 6e 69 | h.fs.mqueue.*.Parameters.beginni |
| 6d2e0 | 6e 67 20 77 69 74 68 20 6e 65 74 2e 2a 20 28 6f 6e 6c 79 20 69 66 20 75 73 65 72 2d 64 65 66 69 | ng.with.net.*.(only.if.user-defi |
| 6d300 | 6e 65 64 20 6e 65 74 77 6f 72 6b 20 69 73 20 75 73 65 64 29 00 50 61 72 74 69 63 75 6c 61 72 6c | ned.network.is.used).Particularl |
| 6d320 | 79 20 6c 61 72 67 65 20 6e 65 74 77 6f 72 6b 73 20 6d 61 79 20 77 69 73 68 20 74 6f 20 72 75 6e | y.large.networks.may.wish.to.run |
| 6d340 | 20 74 68 65 69 72 20 6f 77 6e 20 52 50 4b 49 20 63 65 72 74 69 66 69 63 61 74 65 20 61 75 74 68 | .their.own.RPKI.certificate.auth |
| 6d360 | 6f 72 69 74 79 20 61 6e 64 20 70 75 62 6c 69 63 61 74 69 6f 6e 20 73 65 72 76 65 72 20 69 6e 73 | ority.and.publication.server.ins |
| 6d380 | 74 65 61 64 20 6f 66 20 70 75 62 6c 69 73 68 69 6e 67 20 52 4f 41 73 20 76 69 61 20 74 68 65 69 | tead.of.publishing.ROAs.via.thei |
| 6d3a0 | 72 20 52 49 52 2e 20 54 68 69 73 20 69 73 20 61 20 73 75 62 6a 65 63 74 20 66 61 72 20 62 65 79 | r.RIR..This.is.a.subject.far.bey |
| 6d3c0 | 6f 6e 64 20 74 68 65 20 73 63 6f 70 65 20 6f 66 20 56 79 4f 53 27 20 64 6f 63 75 6d 65 6e 74 61 | ond.the.scope.of.VyOS'.documenta |
| 6d3e0 | 74 69 6f 6e 2e 20 43 6f 6e 73 69 64 65 72 20 72 65 61 64 69 6e 67 20 61 62 6f 75 74 20 4b 72 69 | tion..Consider.reading.about.Kri |
| 6d400 | 6c 6c 5f 20 69 66 20 74 68 69 73 20 69 73 20 61 20 72 61 62 62 69 74 20 68 6f 6c 65 20 79 6f 75 | ll_.if.this.is.a.rabbit.hole.you |
| 6d420 | 20 6e 65 65 64 20 6f 72 20 65 73 70 65 63 69 61 6c 6c 79 20 77 61 6e 74 20 74 6f 20 64 69 76 65 | .need.or.especially.want.to.dive |
| 6d440 | 20 64 6f 77 6e 2e 00 50 61 73 73 20 61 64 64 72 65 73 73 20 6f 66 20 55 6e 69 66 69 20 63 6f 6e | .down..Pass.address.of.Unifi.con |
| 6d460 | 74 72 6f 6c 6c 65 72 20 61 74 20 60 60 31 37 32 2e 31 36 2e 31 30 30 2e 31 60 60 20 74 6f 20 61 | troller.at.``172.16.100.1``.to.a |
| 6d480 | 6c 6c 20 63 6c 69 65 6e 74 73 20 6f 66 20 60 60 4e 45 54 31 60 60 00 50 61 74 68 20 60 3c 63 6f | ll.clients.of.``NET1``.Path.`<co |
| 6d4a0 | 73 74 3e 60 20 76 61 6c 75 65 20 66 6f 72 20 53 70 61 6e 6e 69 6e 67 20 54 72 65 65 20 50 72 6f | st>`.value.for.Spanning.Tree.Pro |
| 6d4c0 | 74 6f 63 6f 6c 2e 20 45 61 63 68 20 69 6e 74 65 72 66 61 63 65 20 69 6e 20 61 20 62 72 69 64 67 | tocol..Each.interface.in.a.bridg |
| 6d4e0 | 65 20 63 6f 75 6c 64 20 68 61 76 65 20 61 20 64 69 66 66 65 72 65 6e 74 20 73 70 65 65 64 20 61 | e.could.have.a.different.speed.a |
| 6d500 | 6e 64 20 74 68 69 73 20 76 61 6c 75 65 20 69 73 20 75 73 65 64 20 77 68 65 6e 20 64 65 63 69 64 | nd.this.value.is.used.when.decid |
| 6d520 | 69 6e 67 20 77 68 69 63 68 20 6c 69 6e 6b 20 74 6f 20 75 73 65 2e 20 46 61 73 74 65 72 20 69 6e | ing.which.link.to.use..Faster.in |
| 6d540 | 74 65 72 66 61 63 65 73 20 73 68 6f 75 6c 64 20 68 61 76 65 20 6c 6f 77 65 72 20 63 6f 73 74 73 | terfaces.should.have.lower.costs |
| 6d560 | 2e 00 50 61 74 68 20 74 6f 20 60 3c 66 69 6c 65 3e 60 20 70 6f 69 6e 74 69 6e 67 20 74 6f 20 74 | ..Path.to.`<file>`.pointing.to.t |
| 6d580 | 68 65 20 63 65 72 74 69 66 69 63 61 74 65 20 61 75 74 68 6f 72 69 74 79 20 63 65 72 74 69 66 69 | he.certificate.authority.certifi |
| 6d5a0 | 63 61 74 65 2e 00 50 61 74 68 20 74 6f 20 60 3c 66 69 6c 65 3e 60 20 70 6f 69 6e 74 69 6e 67 20 | cate..Path.to.`<file>`.pointing. |
| 6d5c0 | 74 6f 20 74 68 65 20 73 65 72 76 65 72 73 20 63 65 72 74 69 66 69 63 61 74 65 20 28 70 75 62 6c | to.the.servers.certificate.(publ |
| 6d5e0 | 69 63 20 70 6f 72 74 69 6f 6e 29 2e 00 50 65 65 72 20 2d 20 50 65 65 72 00 50 65 65 72 20 47 72 | ic.portion)..Peer.-.Peer.Peer.Gr |
| 6d600 | 6f 75 70 73 00 50 65 65 72 20 49 50 20 61 64 64 72 65 73 73 20 74 6f 20 6d 61 74 63 68 2e 00 50 | oups.Peer.IP.address.to.match..P |
| 6d620 | 65 65 72 20 50 61 72 61 6d 65 74 65 72 73 00 50 65 65 72 20 67 72 6f 75 70 73 20 61 72 65 20 75 | eer.Parameters.Peer.groups.are.u |
| 6d640 | 73 65 64 20 74 6f 20 68 65 6c 70 20 69 6d 70 72 6f 76 65 20 73 63 61 6c 69 6e 67 20 62 79 20 67 | sed.to.help.improve.scaling.by.g |
| 6d660 | 65 6e 65 72 61 74 69 6e 67 20 74 68 65 20 73 61 6d 65 20 75 70 64 61 74 65 20 69 6e 66 6f 72 6d | enerating.the.same.update.inform |
| 6d680 | 61 74 69 6f 6e 20 74 6f 20 61 6c 6c 20 6d 65 6d 62 65 72 73 20 6f 66 20 61 20 70 65 65 72 20 67 | ation.to.all.members.of.a.peer.g |
| 6d6a0 | 72 6f 75 70 2e 20 4e 6f 74 65 20 74 68 61 74 20 74 68 69 73 20 6d 65 61 6e 73 20 74 68 61 74 20 | roup..Note.that.this.means.that. |
| 6d6c0 | 74 68 65 20 72 6f 75 74 65 73 20 67 65 6e 65 72 61 74 65 64 20 62 79 20 61 20 6d 65 6d 62 65 72 | the.routes.generated.by.a.member |
| 6d6e0 | 20 6f 66 20 61 20 70 65 65 72 20 67 72 6f 75 70 20 77 69 6c 6c 20 62 65 20 73 65 6e 74 20 62 61 | .of.a.peer.group.will.be.sent.ba |
| 6d700 | 63 6b 20 74 6f 20 74 68 61 74 20 6f 72 69 67 69 6e 61 74 69 6e 67 20 70 65 65 72 20 77 69 74 68 | ck.to.that.originating.peer.with |
| 6d720 | 20 74 68 65 20 6f 72 69 67 69 6e 61 74 6f 72 20 69 64 65 6e 74 69 66 69 65 72 20 61 74 74 72 69 | .the.originator.identifier.attri |
| 6d740 | 62 75 74 65 20 73 65 74 20 74 6f 20 69 6e 64 69 63 61 74 65 64 20 74 68 65 20 6f 72 69 67 69 6e | bute.set.to.indicated.the.origin |
| 6d760 | 61 74 69 6e 67 20 70 65 65 72 2e 20 41 6c 6c 20 70 65 65 72 73 20 6e 6f 74 20 61 73 73 6f 63 69 | ating.peer..All.peers.not.associ |
| 6d780 | 61 74 65 64 20 77 69 74 68 20 61 20 73 70 65 63 69 66 69 63 20 70 65 65 72 20 67 72 6f 75 70 20 | ated.with.a.specific.peer.group. |
| 6d7a0 | 61 72 65 20 74 72 65 61 74 65 64 20 61 73 20 62 65 6c 6f 6e 67 69 6e 67 20 74 6f 20 61 20 64 65 | are.treated.as.belonging.to.a.de |
| 6d7c0 | 66 61 75 6c 74 20 70 65 65 72 20 67 72 6f 75 70 2c 20 61 6e 64 20 77 69 6c 6c 20 73 68 61 72 65 | fault.peer.group,.and.will.share |
| 6d7e0 | 20 75 70 64 61 74 65 73 2e 00 50 65 65 72 20 74 6f 20 73 65 6e 64 20 75 6e 69 63 61 73 74 20 55 | .updates..Peer.to.send.unicast.U |
| 6d800 | 44 50 20 63 6f 6e 6e 74 72 61 63 6b 20 73 79 6e 63 20 65 6e 74 69 72 65 73 20 74 6f 2c 20 69 66 | DP.conntrack.sync.entires.to,.if |
| 6d820 | 20 6e 6f 74 20 75 73 69 6e 67 20 4d 75 6c 74 69 63 61 73 74 20 63 6f 6e 66 69 67 75 72 61 74 69 | .not.using.Multicast.configurati |
| 6d840 | 6f 6e 20 66 72 6f 6d 20 61 62 6f 76 65 20 61 62 6f 76 65 2e 00 50 65 65 72 73 20 43 6f 6e 66 69 | on.from.above.above..Peers.Confi |
| 6d860 | 67 75 72 61 74 69 6f 6e 00 50 65 72 20 64 65 66 61 75 6c 74 20 56 79 4f 53 73 20 68 61 73 20 6d | guration.Per.default.VyOSs.has.m |
| 6d880 | 69 6e 69 6d 61 6c 20 73 79 73 6c 6f 67 20 6c 6f 67 67 69 6e 67 20 65 6e 61 62 6c 65 64 20 77 68 | inimal.syslog.logging.enabled.wh |
| 6d8a0 | 69 63 68 20 69 73 20 73 74 6f 72 65 64 20 61 6e 64 20 72 6f 74 61 74 65 64 20 6c 6f 63 61 6c 6c | ich.is.stored.and.rotated.locall |
| 6d8c0 | 79 2e 20 45 72 72 6f 72 73 20 77 69 6c 6c 20 62 65 20 61 6c 77 61 79 73 20 6c 6f 67 67 65 64 20 | y..Errors.will.be.always.logged. |
| 6d8e0 | 74 6f 20 61 20 6c 6f 63 61 6c 20 66 69 6c 65 2c 20 77 68 69 63 68 20 69 6e 63 6c 75 64 65 73 20 | to.a.local.file,.which.includes. |
| 6d900 | 60 6c 6f 63 61 6c 37 60 20 65 72 72 6f 72 20 6d 65 73 73 61 67 65 73 2c 20 65 6d 65 72 67 65 6e | `local7`.error.messages,.emergen |
| 6d920 | 63 79 20 6d 65 73 73 61 67 65 73 20 77 69 6c 6c 20 62 65 20 73 65 6e 74 20 74 6f 20 74 68 65 20 | cy.messages.will.be.sent.to.the. |
| 6d940 | 63 6f 6e 73 6f 6c 65 2c 20 74 6f 6f 2e 00 50 65 72 20 64 65 66 61 75 6c 74 20 65 76 65 72 79 20 | console,.too..Per.default.every. |
| 6d960 | 70 61 63 6b 65 74 20 69 73 20 73 61 6d 70 6c 65 64 20 28 74 68 61 74 20 69 73 2c 20 74 68 65 20 | packet.is.sampled.(that.is,.the. |
| 6d980 | 73 61 6d 70 6c 69 6e 67 20 72 61 74 65 20 69 73 20 31 29 2e 00 50 65 72 20 64 65 66 61 75 6c 74 | sampling.rate.is.1)..Per.default |
| 6d9a0 | 20 74 68 65 20 75 73 65 72 20 73 65 73 73 69 6f 6e 20 69 73 20 62 65 69 6e 67 20 72 65 70 6c 61 | .the.user.session.is.being.repla |
| 6d9c0 | 63 65 64 20 69 66 20 61 20 73 65 63 6f 6e 64 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 72 | ced.if.a.second.authentication.r |
| 6d9e0 | 65 71 75 65 73 74 20 73 75 63 63 65 65 64 73 2e 20 53 75 63 68 20 73 65 73 73 69 6f 6e 20 72 65 | equest.succeeds..Such.session.re |
| 6da00 | 71 75 65 73 74 73 20 63 61 6e 20 62 65 20 65 69 74 68 65 72 20 64 65 6e 69 65 64 20 6f 72 20 61 | quests.can.be.either.denied.or.a |
| 6da20 | 6c 6c 6f 77 65 64 20 65 6e 74 69 72 65 6c 79 2c 20 77 68 69 63 68 20 77 6f 75 6c 64 20 61 6c 6c | llowed.entirely,.which.would.all |
| 6da40 | 6f 77 20 6d 75 6c 74 69 70 6c 65 20 73 65 73 73 69 6f 6e 73 20 66 6f 72 20 61 20 75 73 65 72 20 | ow.multiple.sessions.for.a.user. |
| 6da60 | 69 6e 20 74 68 65 20 6c 61 74 74 65 72 20 63 61 73 65 2e 20 49 66 20 69 74 20 69 73 20 64 65 6e | in.the.latter.case..If.it.is.den |
| 6da80 | 69 65 64 2c 20 74 68 65 20 73 65 63 6f 6e 64 20 73 65 73 73 69 6f 6e 20 69 73 20 62 65 69 6e 67 | ied,.the.second.session.is.being |
| 6daa0 | 20 72 65 6a 65 63 74 65 64 20 65 76 65 6e 20 69 66 20 74 68 65 20 61 75 74 68 65 6e 74 69 63 61 | .rejected.even.if.the.authentica |
| 6dac0 | 74 69 6f 6e 20 73 75 63 63 65 65 64 73 2c 20 74 68 65 20 75 73 65 72 20 68 61 73 20 74 6f 20 74 | tion.succeeds,.the.user.has.to.t |
| 6dae0 | 65 72 6d 69 6e 61 74 65 20 69 74 73 20 66 69 72 73 74 20 73 65 73 73 69 6f 6e 20 61 6e 64 20 63 | erminate.its.first.session.and.c |
| 6db00 | 61 6e 20 74 68 65 6e 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 61 67 61 69 6e 2e 00 50 65 | an.then.authentication.again..Pe |
| 6db20 | 72 20 64 65 66 61 75 6c 74 2c 20 69 6e 74 65 72 66 61 63 65 73 20 75 73 65 64 20 69 6e 20 61 20 | r.default,.interfaces.used.in.a. |
| 6db40 | 6c 6f 61 64 20 62 61 6c 61 6e 63 69 6e 67 20 70 6f 6f 6c 20 72 65 70 6c 61 63 65 20 74 68 65 20 | load.balancing.pool.replace.the. |
| 6db60 | 73 6f 75 72 63 65 20 49 50 20 6f 66 20 65 61 63 68 20 6f 75 74 67 6f 69 6e 67 20 70 61 63 6b 65 | source.IP.of.each.outgoing.packe |
| 6db80 | 74 20 77 69 74 68 20 69 74 73 20 6f 77 6e 20 61 64 64 72 65 73 73 20 74 6f 20 65 6e 73 75 72 65 | t.with.its.own.address.to.ensure |
| 6dba0 | 20 74 68 61 74 20 72 65 70 6c 69 65 73 20 61 72 72 69 76 65 20 6f 6e 20 74 68 65 20 73 61 6d 65 | .that.replies.arrive.on.the.same |
| 6dbc0 | 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 69 73 20 77 6f 72 6b 73 20 74 68 72 6f 75 67 68 20 61 | .interface..This.works.through.a |
| 6dbe0 | 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 67 65 6e 65 72 61 74 65 64 20 73 6f 75 72 63 65 20 4e 41 | utomatically.generated.source.NA |
| 6dc00 | 54 20 28 53 4e 41 54 29 20 72 75 6c 65 73 2c 20 74 68 65 73 65 20 72 75 6c 65 73 20 61 72 65 20 | T.(SNAT).rules,.these.rules.are. |
| 6dc20 | 6f 6e 6c 79 20 61 70 70 6c 69 65 64 20 74 6f 20 62 61 6c 61 6e 63 65 64 20 74 72 61 66 66 69 63 | only.applied.to.balanced.traffic |
| 6dc40 | 2e 20 49 6e 20 63 61 73 65 73 20 77 68 65 72 65 20 74 68 69 73 20 62 65 68 61 76 69 6f 75 72 20 | ..In.cases.where.this.behaviour. |
| 6dc60 | 69 73 20 6e 6f 74 20 64 65 73 69 72 65 64 2c 20 74 68 65 20 61 75 74 6f 6d 61 74 69 63 20 67 65 | is.not.desired,.the.automatic.ge |
| 6dc80 | 6e 65 72 61 74 69 6f 6e 20 6f 66 20 53 4e 41 54 20 72 75 6c 65 73 20 63 61 6e 20 62 65 20 64 69 | neration.of.SNAT.rules.can.be.di |
| 6dca0 | 73 61 62 6c 65 64 3a 00 50 65 72 66 6f 72 6d 20 4e 41 54 20 6c 6f 6f 6b 75 70 20 62 65 66 6f 72 | sabled:.Perform.NAT.lookup.befor |
| 6dcc0 | 65 20 61 70 70 6c 79 69 6e 67 20 66 6c 6f 77 2d 69 73 6f 6c 61 74 69 6f 6e 20 72 75 6c 65 73 2e | e.applying.flow-isolation.rules. |
| 6dce0 | 00 50 65 72 66 6f 72 6d 61 6e 63 65 00 50 65 72 69 6f 64 69 63 61 6c 6c 79 2c 20 61 20 68 65 6c | .Performance.Periodically,.a.hel |
| 6dd00 | 6c 6f 20 70 61 63 6b 65 74 20 69 73 20 73 65 6e 74 20 6f 75 74 20 62 79 20 74 68 65 20 52 6f 6f | lo.packet.is.sent.out.by.the.Roo |
| 6dd20 | 74 20 42 72 69 64 67 65 20 61 6e 64 20 74 68 65 20 44 65 73 69 67 6e 61 74 65 64 20 42 72 69 64 | t.Bridge.and.the.Designated.Brid |
| 6dd40 | 67 65 73 2e 20 48 65 6c 6c 6f 20 70 61 63 6b 65 74 73 20 61 72 65 20 75 73 65 64 20 74 6f 20 63 | ges..Hello.packets.are.used.to.c |
| 6dd60 | 6f 6d 6d 75 6e 69 63 61 74 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 74 68 65 | ommunicate.information.about.the |
| 6dd80 | 20 74 6f 70 6f 6c 6f 67 79 20 74 68 72 6f 75 67 68 6f 75 74 20 74 68 65 20 65 6e 74 69 72 65 20 | .topology.throughout.the.entire. |
| 6dda0 | 42 72 69 64 67 65 64 20 4c 6f 63 61 6c 20 41 72 65 61 20 4e 65 74 77 6f 72 6b 2e 00 50 69 6e 67 | Bridged.Local.Area.Network..Ping |
| 6ddc0 | 20 63 6f 6d 6d 61 6e 64 20 63 61 6e 20 62 65 20 69 6e 74 65 72 72 75 70 74 65 64 20 61 74 20 61 | .command.can.be.interrupted.at.a |
| 6dde0 | 6e 79 20 67 69 76 65 6e 20 74 69 6d 65 20 75 73 69 6e 67 20 60 60 3c 43 74 72 6c 3e 2b 63 60 60 | ny.given.time.using.``<Ctrl>+c`` |
| 6de00 | 2e 20 41 20 62 72 69 65 66 20 73 74 61 74 69 73 74 69 63 20 69 73 20 73 68 6f 77 6e 20 61 66 74 | ..A.brief.statistic.is.shown.aft |
| 6de20 | 65 72 77 61 72 64 73 2e 00 50 69 6e 67 20 75 73 65 73 20 49 43 4d 50 20 70 72 6f 74 6f 63 6f 6c | erwards..Ping.uses.ICMP.protocol |
| 6de40 | 27 73 20 6d 61 6e 64 61 74 6f 72 79 20 45 43 48 4f 5f 52 45 51 55 45 53 54 20 64 61 74 61 67 72 | 's.mandatory.ECHO_REQUEST.datagr |
| 6de60 | 61 6d 20 74 6f 20 65 6c 69 63 69 74 20 61 6e 20 49 43 4d 50 20 45 43 48 4f 5f 52 45 53 50 4f 4e | am.to.elicit.an.ICMP.ECHO_RESPON |
| 6de80 | 53 45 20 66 72 6f 6d 20 61 20 68 6f 73 74 20 6f 72 20 67 61 74 65 77 61 79 2e 20 45 43 48 4f 5f | SE.from.a.host.or.gateway..ECHO_ |
| 6dea0 | 52 45 51 55 45 53 54 20 64 61 74 61 67 72 61 6d 73 20 28 70 69 6e 67 73 29 20 77 69 6c 6c 20 68 | REQUEST.datagrams.(pings).will.h |
| 6dec0 | 61 76 65 20 61 6e 20 49 50 20 61 6e 64 20 49 43 4d 50 20 68 65 61 64 65 72 2c 20 66 6f 6c 6c 6f | ave.an.IP.and.ICMP.header,.follo |
| 6dee0 | 77 65 64 20 62 79 20 22 73 74 72 75 63 74 20 74 69 6d 65 76 61 6c 22 20 61 6e 64 20 61 6e 20 61 | wed.by."struct.timeval".and.an.a |
| 6df00 | 72 62 69 74 72 61 72 79 20 6e 75 6d 62 65 72 20 6f 66 20 70 61 64 20 62 79 74 65 73 20 75 73 65 | rbitrary.number.of.pad.bytes.use |
| 6df20 | 64 20 74 6f 20 66 69 6c 6c 20 6f 75 74 20 74 68 65 20 70 61 63 6b 65 74 2e 00 50 69 6e 67 69 6e | d.to.fill.out.the.packet..Pingin |
| 6df40 | 67 20 28 49 50 76 36 29 20 74 68 65 20 6f 74 68 65 72 20 68 6f 73 74 20 61 6e 64 20 69 6e 74 65 | g.(IPv6).the.other.host.and.inte |
| 6df60 | 72 63 65 70 74 69 6e 67 20 74 68 65 20 74 72 61 66 66 69 63 20 69 6e 20 60 60 65 74 68 31 60 60 | rcepting.the.traffic.in.``eth1`` |
| 6df80 | 20 77 69 6c 6c 20 73 68 6f 77 20 79 6f 75 20 74 68 65 20 63 6f 6e 74 65 6e 74 20 69 73 20 65 6e | .will.show.you.the.content.is.en |
| 6dfa0 | 63 72 79 70 74 65 64 2e 00 50 6c 61 63 65 20 69 6e 74 65 72 66 61 63 65 20 69 6e 20 67 69 76 65 | crypted..Place.interface.in.give |
| 6dfc0 | 6e 20 56 52 46 20 69 6e 73 74 61 6e 63 65 2e 00 50 6c 61 79 20 61 6e 20 61 75 64 69 62 6c 65 20 | n.VRF.instance..Play.an.audible. |
| 6dfe0 | 62 65 65 70 20 74 6f 20 74 68 65 20 73 79 73 74 65 6d 20 73 70 65 61 6b 65 72 20 77 68 65 6e 20 | beep.to.the.system.speaker.when. |
| 6e000 | 73 79 73 74 65 6d 20 69 73 20 72 65 61 64 79 2e 00 50 6c 65 61 73 65 20 62 65 20 61 77 61 72 65 | system.is.ready..Please.be.aware |
| 6e020 | 2c 20 64 75 65 20 74 6f 20 61 6e 20 75 70 73 74 72 65 61 6d 20 62 75 67 2c 20 63 6f 6e 66 69 67 | ,.due.to.an.upstream.bug,.config |
| 6e040 | 20 63 68 61 6e 67 65 73 2f 63 6f 6d 6d 69 74 73 20 77 69 6c 6c 20 72 65 73 74 61 72 74 20 74 68 | .changes/commits.will.restart.th |
| 6e060 | 65 20 70 70 70 20 64 61 65 6d 6f 6e 20 61 6e 64 20 77 69 6c 6c 20 72 65 73 65 74 20 65 78 69 73 | e.ppp.daemon.and.will.reset.exis |
| 6e080 | 74 69 6e 67 20 49 50 6f 45 20 73 65 73 73 69 6f 6e 73 2c 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 | ting.IPoE.sessions,.in.order.to. |
| 6e0a0 | 62 65 63 6f 6d 65 20 65 66 66 65 63 74 69 76 65 2e 00 50 6c 65 61 73 65 20 62 65 20 61 77 61 72 | become.effective..Please.be.awar |
| 6e0c0 | 65 2c 20 64 75 65 20 74 6f 20 61 6e 20 75 70 73 74 72 65 61 6d 20 62 75 67 2c 20 63 6f 6e 66 69 | e,.due.to.an.upstream.bug,.confi |
| 6e0e0 | 67 20 63 68 61 6e 67 65 73 2f 63 6f 6d 6d 69 74 73 20 77 69 6c 6c 20 72 65 73 74 61 72 74 20 74 | g.changes/commits.will.restart.t |
| 6e100 | 68 65 20 70 70 70 20 64 61 65 6d 6f 6e 20 61 6e 64 20 77 69 6c 6c 20 72 65 73 65 74 20 65 78 69 | he.ppp.daemon.and.will.reset.exi |
| 6e120 | 73 74 69 6e 67 20 50 50 50 6f 45 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 66 72 6f 6d 20 63 6f 6e | sting.PPPoE.connections.from.con |
| 6e140 | 6e 65 63 74 65 64 20 75 73 65 72 73 2c 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 62 65 63 6f 6d 65 | nected.users,.in.order.to.become |
| 6e160 | 20 65 66 66 65 63 74 69 76 65 2e 00 50 6c 65 61 73 65 20 72 65 66 65 72 20 74 6f 20 74 68 65 20 | .effective..Please.refer.to.the. |
| 6e180 | 3a 72 65 66 3a 60 69 70 73 65 63 60 20 64 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 66 6f 72 20 74 | :ref:`ipsec`.documentation.for.t |
| 6e1a0 | 68 65 20 69 6e 64 69 76 69 64 75 61 6c 20 49 50 53 65 63 20 72 65 6c 61 74 65 64 20 6f 70 74 69 | he.individual.IPSec.related.opti |
| 6e1c0 | 6f 6e 73 2e 00 50 6c 65 61 73 65 20 72 65 66 65 72 20 74 6f 20 74 68 65 20 3a 72 65 66 3a 60 74 | ons..Please.refer.to.the.:ref:`t |
| 6e1e0 | 75 6e 6e 65 6c 2d 69 6e 74 65 72 66 61 63 65 60 20 64 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 66 | unnel-interface`.documentation.f |
| 6e200 | 6f 72 20 74 68 65 20 69 6e 64 69 76 69 64 75 61 6c 20 74 75 6e 6e 65 6c 20 72 65 6c 61 74 65 64 | or.the.individual.tunnel.related |
| 6e220 | 20 6f 70 74 69 6f 6e 73 2e 00 50 6c 65 61 73 65 20 73 65 65 20 74 68 65 20 3a 72 65 66 3a 60 64 | .options..Please.see.the.:ref:`d |
| 6e240 | 68 63 70 2d 64 6e 73 2d 71 75 69 63 6b 2d 73 74 61 72 74 60 20 63 6f 6e 66 69 67 75 72 61 74 69 | hcp-dns-quick-start`.configurati |
| 6e260 | 6f 6e 2e 00 50 6c 65 61 73 65 20 74 61 6b 65 20 61 20 6c 6f 6f 6b 20 61 74 20 74 68 65 20 3a 72 | on..Please.take.a.look.at.the.:r |
| 6e280 | 65 66 3a 60 76 79 6f 73 61 70 69 60 20 70 61 67 65 20 66 6f 72 20 61 6e 20 64 65 74 61 69 6c 65 | ef:`vyosapi`.page.for.an.detaile |
| 6e2a0 | 64 20 68 6f 77 2d 74 6f 2e 00 50 6c 65 61 73 65 20 74 61 6b 65 20 61 20 6c 6f 6f 6b 20 61 74 20 | d.how-to..Please.take.a.look.at. |
| 6e2c0 | 74 68 65 20 43 6f 6e 74 72 69 62 75 74 69 6e 67 20 47 75 69 64 65 20 66 6f 72 20 6f 75 72 20 3a | the.Contributing.Guide.for.our.: |
| 6e2e0 | 72 65 66 3a 60 64 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 60 2e 00 50 6c 65 61 73 65 20 74 61 6b 65 | ref:`documentation`..Please.take |
| 6e300 | 20 61 20 6c 6f 6f 6b 20 69 6e 20 74 68 65 20 41 75 74 6f 6d 61 74 69 6f 6e 20 73 65 63 74 69 6f | .a.look.in.the.Automation.sectio |
| 6e320 | 6e 20 74 6f 20 66 69 6e 64 20 73 6f 6d 65 20 75 73 65 66 75 6c 6c 20 45 78 61 6d 70 6c 65 73 2e | n.to.find.some.usefull.Examples. |
| 6e340 | 00 50 6c 65 61 73 65 2c 20 72 65 66 65 72 20 74 6f 20 61 70 70 72 6f 70 69 61 74 65 20 73 65 63 | .Please,.refer.to.appropiate.sec |
| 6e360 | 74 69 6f 6e 20 66 6f 72 20 6d 6f 72 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 | tion.for.more.information.about. |
| 6e380 | 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 00 50 6c 65 61 73 65 2c 20 | firewall.configuration:.Please,. |
| 6e3a0 | 72 65 66 65 72 20 74 6f 20 61 70 70 72 6f 70 72 69 61 74 65 20 73 65 63 74 69 6f 6e 20 66 6f 72 | refer.to.appropriate.section.for |
| 6e3c0 | 20 6d 6f 72 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 66 69 72 65 77 61 6c 6c | .more.information.about.firewall |
| 6e3e0 | 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 00 50 6f 6c 69 63 69 65 73 20 61 72 65 20 75 73 65 | .configuration:.Policies.are.use |
| 6e400 | 64 20 66 6f 72 20 66 69 6c 74 65 72 69 6e 67 20 61 6e 64 20 74 72 61 66 66 69 63 20 6d 61 6e 61 | d.for.filtering.and.traffic.mana |
| 6e420 | 67 65 6d 65 6e 74 2e 20 57 69 74 68 20 70 6f 6c 69 63 69 65 73 2c 20 6e 65 74 77 6f 72 6b 20 61 | gement..With.policies,.network.a |
| 6e440 | 64 6d 69 6e 69 73 74 72 61 74 6f 72 73 20 63 6f 75 6c 64 20 66 69 6c 74 65 72 20 61 6e 64 20 74 | dministrators.could.filter.and.t |
| 6e460 | 72 65 61 74 20 74 72 61 66 66 69 63 20 61 63 63 6f 72 64 69 6e 67 20 74 6f 20 74 68 65 69 72 20 | reat.traffic.according.to.their. |
| 6e480 | 6e 65 65 64 73 2e 00 50 6f 6c 69 63 69 65 73 20 66 6f 72 20 6c 6f 63 61 6c 20 74 72 61 66 66 69 | needs..Policies.for.local.traffi |
| 6e4a0 | 63 20 61 72 65 20 64 65 66 69 6e 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 2e 00 50 | c.are.defined.in.this.section..P |
| 6e4c0 | 6f 6c 69 63 69 65 73 2c 20 69 6e 20 56 79 4f 53 2c 20 61 72 65 20 69 6d 70 6c 65 6d 65 6e 74 65 | olicies,.in.VyOS,.are.implemente |
| 6e4e0 | 64 20 75 73 69 6e 67 20 46 52 52 20 66 69 6c 74 65 72 69 6e 67 20 61 6e 64 20 72 6f 75 74 65 20 | d.using.FRR.filtering.and.route. |
| 6e500 | 6d 61 70 73 2e 20 44 65 74 61 69 6c 65 64 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 66 20 46 52 | maps..Detailed.information.of.FR |
| 6e520 | 52 20 63 6f 75 6c 64 20 62 65 20 66 6f 75 6e 64 20 69 6e 20 68 74 74 70 3a 2f 2f 64 6f 63 73 2e | R.could.be.found.in.http://docs. |
| 6e540 | 66 72 72 6f 75 74 69 6e 67 2e 6f 72 67 2f 00 50 6f 6c 69 63 79 00 50 6f 6c 69 63 79 20 53 65 63 | frrouting.org/.Policy.Policy.Sec |
| 6e560 | 74 69 6f 6e 73 00 50 6f 6c 69 63 79 20 66 6f 72 20 63 68 65 63 6b 69 6e 67 20 74 61 72 67 65 74 | tions.Policy.for.checking.target |
| 6e580 | 73 00 50 6f 6c 69 63 79 20 74 6f 20 74 72 61 63 6b 20 70 72 65 76 69 6f 75 73 6c 79 20 65 73 74 | s.Policy.to.track.previously.est |
| 6e5a0 | 61 62 6c 69 73 68 65 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2e 00 50 6f 6c 69 63 79 2d 42 61 73 | ablished.connections..Policy-Bas |
| 6e5c0 | 65 64 20 52 6f 75 74 69 6e 67 20 77 69 74 68 20 6d 75 6c 74 69 70 6c 65 20 49 53 50 20 75 70 6c | ed.Routing.with.multiple.ISP.upl |
| 6e5e0 | 69 6e 6b 73 20 28 73 6f 75 72 63 65 20 2e 2f 64 72 61 77 2e 69 6f 2f 70 62 72 5f 65 78 61 6d 70 | inks.(source../draw.io/pbr_examp |
| 6e600 | 6c 65 5f 31 2e 64 72 61 77 69 6f 29 00 50 6f 72 74 20 47 72 6f 75 70 73 00 50 6f 72 74 20 4d 69 | le_1.drawio).Port.Groups.Port.Mi |
| 6e620 | 72 72 6f 72 20 28 53 50 41 4e 29 00 50 6f 72 74 20 63 61 6c 63 75 6c 61 74 69 6f 6e 00 50 6f 72 | rror.(SPAN).Port.calculation.Por |
| 6e640 | 74 20 66 6f 72 20 44 79 6e 61 6d 69 63 20 41 75 74 68 6f 72 69 7a 61 74 69 6f 6e 20 45 78 74 65 | t.for.Dynamic.Authorization.Exte |
| 6e660 | 6e 73 69 6f 6e 20 73 65 72 76 65 72 20 28 44 4d 2f 43 6f 41 29 00 50 6f 72 74 20 67 72 6f 75 70 | nsion.server.(DM/CoA).Port.group |
| 6e680 | 73 20 61 72 65 20 75 73 65 66 75 6c 20 77 68 65 6e 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 63 72 | s.are.useful.when.you.need.to.cr |
| 6e6a0 | 65 61 74 65 20 72 75 6c 65 73 20 74 68 61 74 20 61 70 70 6c 79 20 74 6f 20 73 70 65 63 69 66 69 | eate.rules.that.apply.to.specifi |
| 6e6c0 | 63 20 70 6f 72 74 73 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 2c 20 69 66 20 79 6f 75 20 77 61 6e | c.ports..For.example,.if.you.wan |
| 6e6e0 | 74 20 74 6f 20 63 72 65 61 74 65 20 61 20 72 75 6c 65 20 74 68 61 74 20 6d 6f 6e 69 74 6f 72 73 | t.to.create.a.rule.that.monitors |
| 6e700 | 20 74 72 61 66 66 69 63 20 64 69 72 65 63 74 65 64 20 74 6f 20 61 20 73 70 65 63 69 66 69 63 20 | .traffic.directed.to.a.specific. |
| 6e720 | 70 6f 72 74 20 6f 72 20 67 72 6f 75 70 20 6f 66 20 70 6f 72 74 73 2c 20 79 6f 75 20 63 61 6e 20 | port.or.group.of.ports,.you.can. |
| 6e740 | 75 73 65 20 74 68 65 20 67 72 6f 75 70 20 6e 61 6d 65 20 69 6e 73 74 65 61 64 20 6f 66 20 74 68 | use.the.group.name.instead.of.th |
| 6e760 | 65 20 61 63 74 75 61 6c 20 70 6f 72 74 2e 20 54 68 69 73 20 61 6c 73 6f 20 73 69 6d 70 6c 69 66 | e.actual.port..This.also.simplif |
| 6e780 | 69 65 73 20 72 75 6c 65 20 6d 61 6e 61 67 65 6d 65 6e 74 20 61 6e 64 20 6d 61 6b 65 73 20 74 68 | ies.rule.management.and.makes.th |
| 6e7a0 | 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d 6f 72 65 20 66 6c 65 78 69 62 6c 65 2e 00 50 | e.configuration.more.flexible..P |
| 6e7c0 | 6f 72 74 20 6b 6e 6f 63 6b 69 6e 67 20 65 78 61 6d 70 6c 65 00 50 6f 72 74 20 6e 61 6d 65 20 61 | ort.knocking.example.Port.name.a |
| 6e7e0 | 6e 64 20 64 65 73 63 72 69 70 74 69 6f 6e 00 50 6f 72 74 20 6e 75 6d 62 65 72 20 75 73 65 64 20 | nd.description.Port.number.used. |
| 6e800 | 62 79 20 63 6f 6e 6e 65 63 74 69 6f 6e 2c 20 64 65 66 61 75 6c 74 20 69 73 20 60 60 39 32 37 33 | by.connection,.default.is.``9273 |
| 6e820 | 60 60 00 50 6f 72 74 20 6e 75 6d 62 65 72 20 75 73 65 64 20 62 79 20 63 6f 6e 6e 65 63 74 69 6f | ``.Port.number.used.by.connectio |
| 6e840 | 6e 2e 00 50 6f 72 74 20 74 6f 20 6c 69 73 74 65 6e 20 66 6f 72 20 48 54 54 50 53 20 72 65 71 75 | n..Port.to.listen.for.HTTPS.requ |
| 6e860 | 65 73 74 73 3b 20 64 65 66 61 75 6c 74 20 34 34 33 00 50 6f 72 74 69 6f 6e 73 20 6f 66 20 74 68 | ests;.default.443.Portions.of.th |
| 6e880 | 65 20 6e 65 74 77 6f 72 6b 20 77 68 69 63 68 20 61 72 65 20 56 4c 41 4e 2d 61 77 61 72 65 20 28 | e.network.which.are.VLAN-aware.( |
| 6e8a0 | 69 2e 65 2e 2c 20 49 45 45 45 20 38 30 32 2e 31 71 5f 20 63 6f 6e 66 6f 72 6d 61 6e 74 29 20 63 | i.e.,.IEEE.802.1q_.conformant).c |
| 6e8c0 | 61 6e 20 69 6e 63 6c 75 64 65 20 56 4c 41 4e 20 74 61 67 73 2e 20 57 68 65 6e 20 61 20 66 72 61 | an.include.VLAN.tags..When.a.fra |
| 6e8e0 | 6d 65 20 65 6e 74 65 72 73 20 74 68 65 20 56 4c 41 4e 2d 61 77 61 72 65 20 70 6f 72 74 69 6f 6e | me.enters.the.VLAN-aware.portion |
| 6e900 | 20 6f 66 20 74 68 65 20 6e 65 74 77 6f 72 6b 2c 20 61 20 74 61 67 20 69 73 20 61 64 64 65 64 20 | .of.the.network,.a.tag.is.added. |
| 6e920 | 74 6f 20 72 65 70 72 65 73 65 6e 74 20 74 68 65 20 56 4c 41 4e 20 6d 65 6d 62 65 72 73 68 69 70 | to.represent.the.VLAN.membership |
| 6e940 | 2e 20 45 61 63 68 20 66 72 61 6d 65 20 6d 75 73 74 20 62 65 20 64 69 73 74 69 6e 67 75 69 73 68 | ..Each.frame.must.be.distinguish |
| 6e960 | 61 62 6c 65 20 61 73 20 62 65 69 6e 67 20 77 69 74 68 69 6e 20 65 78 61 63 74 6c 79 20 6f 6e 65 | able.as.being.within.exactly.one |
| 6e980 | 20 56 4c 41 4e 2e 20 41 20 66 72 61 6d 65 20 69 6e 20 74 68 65 20 56 4c 41 4e 2d 61 77 61 72 65 | .VLAN..A.frame.in.the.VLAN-aware |
| 6e9a0 | 20 70 6f 72 74 69 6f 6e 20 6f 66 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 74 68 61 74 20 64 6f 65 | .portion.of.the.network.that.doe |
| 6e9c0 | 73 20 6e 6f 74 20 63 6f 6e 74 61 69 6e 20 61 20 56 4c 41 4e 20 74 61 67 20 69 73 20 61 73 73 75 | s.not.contain.a.VLAN.tag.is.assu |
| 6e9e0 | 6d 65 64 20 74 6f 20 62 65 20 66 6c 6f 77 69 6e 67 20 6f 6e 20 74 68 65 20 6e 61 74 69 76 65 20 | med.to.be.flowing.on.the.native. |
| 6ea00 | 56 4c 41 4e 2e 00 50 72 65 2d 73 68 61 72 65 64 20 6b 65 79 73 00 50 72 65 63 65 64 65 6e 63 65 | VLAN..Pre-shared.keys.Precedence |
| 6ea20 | 00 50 72 65 65 6d 70 74 69 6f 6e 00 50 72 65 66 65 72 20 61 20 73 70 65 63 69 66 69 63 20 72 6f | .Preemption.Prefer.a.specific.ro |
| 6ea40 | 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 20 72 6f 75 74 65 73 20 6f 76 65 72 20 61 6e 6f 74 68 | uting.protocol.routes.over.anoth |
| 6ea60 | 65 72 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 20 72 75 6e 6e 69 6e 67 20 6f 6e 20 74 | er.routing.protocol.running.on.t |
| 6ea80 | 68 65 20 73 61 6d 65 20 72 6f 75 74 65 72 2e 00 50 72 65 66 65 72 20 68 69 67 68 65 72 20 6c 6f | he.same.router..Prefer.higher.lo |
| 6eaa0 | 63 61 6c 20 70 72 65 66 65 72 65 6e 63 65 20 72 6f 75 74 65 73 20 74 6f 20 6c 6f 77 65 72 2e 00 | cal.preference.routes.to.lower.. |
| 6eac0 | 50 72 65 66 65 72 20 68 69 67 68 65 72 20 6c 6f 63 61 6c 20 77 65 69 67 68 74 20 72 6f 75 74 65 | Prefer.higher.local.weight.route |
| 6eae0 | 73 20 74 6f 20 6c 6f 77 65 72 20 72 6f 75 74 65 73 2e 00 50 72 65 66 65 72 20 6c 6f 63 61 6c 20 | s.to.lower.routes..Prefer.local. |
| 6eb00 | 72 6f 75 74 65 73 20 28 73 74 61 74 69 63 73 2c 20 61 67 67 72 65 67 61 74 65 73 2c 20 72 65 64 | routes.(statics,.aggregates,.red |
| 6eb20 | 69 73 74 72 69 62 75 74 65 64 29 20 74 6f 20 72 65 63 65 69 76 65 64 20 72 6f 75 74 65 73 2e 00 | istributed).to.received.routes.. |
| 6eb40 | 50 72 65 66 65 72 20 73 68 6f 72 74 65 73 74 20 68 6f 70 2d 63 6f 75 6e 74 20 41 53 5f 50 41 54 | Prefer.shortest.hop-count.AS_PAT |
| 6eb60 | 48 73 2e 00 50 72 65 66 65 72 20 74 68 65 20 6c 6f 77 65 73 74 20 6f 72 69 67 69 6e 20 74 79 70 | Hs..Prefer.the.lowest.origin.typ |
| 6eb80 | 65 20 72 6f 75 74 65 2e 20 54 68 61 74 20 69 73 2c 20 70 72 65 66 65 72 20 49 47 50 20 6f 72 69 | e.route..That.is,.prefer.IGP.ori |
| 6eba0 | 67 69 6e 20 72 6f 75 74 65 73 20 74 6f 20 45 47 50 2c 20 74 6f 20 49 6e 63 6f 6d 70 6c 65 74 65 | gin.routes.to.EGP,.to.Incomplete |
| 6ebc0 | 20 72 6f 75 74 65 73 2e 00 50 72 65 66 65 72 20 74 68 65 20 72 6f 75 74 65 20 72 65 63 65 69 76 | .routes..Prefer.the.route.receiv |
| 6ebe0 | 65 64 20 66 72 6f 6d 20 61 6e 20 65 78 74 65 72 6e 61 6c 2c 20 65 42 47 50 20 70 65 65 72 20 6f | ed.from.an.external,.eBGP.peer.o |
| 6ec00 | 76 65 72 20 72 6f 75 74 65 73 20 72 65 63 65 69 76 65 64 20 66 72 6f 6d 20 6f 74 68 65 72 20 74 | ver.routes.received.from.other.t |
| 6ec20 | 79 70 65 73 20 6f 66 20 70 65 65 72 73 2e 00 50 72 65 66 65 72 20 74 68 65 20 72 6f 75 74 65 20 | ypes.of.peers..Prefer.the.route. |
| 6ec40 | 72 65 63 65 69 76 65 64 20 66 72 6f 6d 20 74 68 65 20 70 65 65 72 20 77 69 74 68 20 74 68 65 20 | received.from.the.peer.with.the. |
| 6ec60 | 68 69 67 68 65 72 20 74 72 61 6e 73 70 6f 72 74 20 6c 61 79 65 72 20 61 64 64 72 65 73 73 2c 20 | higher.transport.layer.address,. |
| 6ec80 | 61 73 20 61 20 6c 61 73 74 2d 72 65 73 6f 72 74 20 74 69 65 2d 62 72 65 61 6b 65 72 2e 00 50 72 | as.a.last-resort.tie-breaker..Pr |
| 6eca0 | 65 66 65 72 20 74 68 65 20 72 6f 75 74 65 20 77 69 74 68 20 74 68 65 20 6c 6f 77 65 72 20 49 47 | efer.the.route.with.the.lower.IG |
| 6ecc0 | 50 20 63 6f 73 74 2e 00 50 72 65 66 65 72 20 74 68 65 20 72 6f 75 74 65 20 77 69 74 68 20 74 68 | P.cost..Prefer.the.route.with.th |
| 6ece0 | 65 20 6c 6f 77 65 73 74 20 60 72 6f 75 74 65 72 2d 49 44 60 2e 20 49 66 20 74 68 65 20 72 6f 75 | e.lowest.`router-ID`..If.the.rou |
| 6ed00 | 74 65 20 68 61 73 20 61 6e 20 60 4f 52 49 47 49 4e 41 54 4f 52 5f 49 44 60 20 61 74 74 72 69 62 | te.has.an.`ORIGINATOR_ID`.attrib |
| 6ed20 | 75 74 65 2c 20 74 68 72 6f 75 67 68 20 69 42 47 50 20 72 65 66 6c 65 63 74 69 6f 6e 2c 20 74 68 | ute,.through.iBGP.reflection,.th |
| 6ed40 | 65 6e 20 74 68 61 74 20 72 6f 75 74 65 72 20 49 44 20 69 73 20 75 73 65 64 2c 20 6f 74 68 65 72 | en.that.router.ID.is.used,.other |
| 6ed60 | 77 69 73 65 20 74 68 65 20 60 72 6f 75 74 65 72 2d 49 44 60 20 6f 66 20 74 68 65 20 70 65 65 72 | wise.the.`router-ID`.of.the.peer |
| 6ed80 | 20 74 68 65 20 72 6f 75 74 65 20 77 61 73 20 72 65 63 65 69 76 65 64 20 66 72 6f 6d 20 69 73 20 | .the.route.was.received.from.is. |
| 6eda0 | 75 73 65 64 2e 00 50 72 65 66 65 72 65 6e 63 65 20 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 | used..Preference.associated.with |
| 6edc0 | 20 74 68 65 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 72 00 50 72 65 66 69 78 20 43 6f 6e 76 65 | .the.default.router.Prefix.Conve |
| 6ede0 | 72 73 69 6f 6e 00 50 72 65 66 69 78 20 44 65 6c 65 67 61 74 69 6f 6e 00 50 72 65 66 69 78 20 4c | rsion.Prefix.Delegation.Prefix.L |
| 6ee00 | 69 73 74 20 50 6f 6c 69 63 79 00 50 72 65 66 69 78 20 4c 69 73 74 73 00 50 72 65 66 69 78 20 63 | ist.Policy.Prefix.Lists.Prefix.c |
| 6ee20 | 61 6e 20 6e 6f 74 20 62 65 20 75 73 65 64 20 66 6f 72 20 6f 6e 2d 6c 69 6e 6b 20 64 65 74 65 72 | an.not.be.used.for.on-link.deter |
| 6ee40 | 6d 69 6e 61 74 69 6f 6e 00 50 72 65 66 69 78 20 63 61 6e 20 6e 6f 74 20 62 65 20 75 73 65 64 20 | mination.Prefix.can.not.be.used. |
| 6ee60 | 66 6f 72 20 73 74 61 74 65 6c 65 73 73 20 61 64 64 72 65 73 73 20 61 75 74 6f 2d 63 6f 6e 66 69 | for.stateless.address.auto-confi |
| 6ee80 | 67 75 72 61 74 69 6f 6e 00 50 72 65 66 69 78 20 66 69 6c 74 65 72 69 6e 67 20 63 61 6e 20 62 65 | guration.Prefix.filtering.can.be |
| 6eea0 | 20 64 6f 6e 65 20 75 73 69 6e 67 20 70 72 65 66 69 78 2d 6c 69 73 74 20 61 6e 64 20 70 72 65 66 | .done.using.prefix-list.and.pref |
| 6eec0 | 69 78 2d 6c 69 73 74 36 2e 00 50 72 65 66 69 78 20 6c 65 6e 67 74 68 20 69 6e 20 69 6e 74 65 72 | ix-list6..Prefix.length.in.inter |
| 6eee0 | 66 61 63 65 20 6d 75 73 74 20 62 65 20 65 71 75 61 6c 20 6f 72 20 62 69 67 67 65 72 20 28 69 2e | face.must.be.equal.or.bigger.(i. |
| 6ef00 | 65 2e 20 73 6d 61 6c 6c 65 72 20 6e 65 74 77 6f 72 6b 29 20 74 68 61 6e 20 70 72 65 66 69 78 20 | e..smaller.network).than.prefix. |
| 6ef20 | 6c 65 6e 67 74 68 20 69 6e 20 6e 65 74 77 6f 72 6b 20 73 74 61 74 65 6d 65 6e 74 2e 20 46 6f 72 | length.in.network.statement..For |
| 6ef40 | 20 65 78 61 6d 70 6c 65 20 73 74 61 74 65 6d 65 6e 74 20 61 62 6f 76 65 20 64 6f 65 73 6e 27 74 | .example.statement.above.doesn't |
| 6ef60 | 20 65 6e 61 62 6c 65 20 6f 73 70 66 20 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 77 69 74 68 20 61 | .enable.ospf.on.interface.with.a |
| 6ef80 | 64 64 72 65 73 73 20 31 39 32 2e 31 36 38 2e 31 2e 31 2f 32 33 2c 20 62 75 74 20 69 74 20 64 6f | ddress.192.168.1.1/23,.but.it.do |
| 6efa0 | 65 73 20 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 77 69 74 68 20 61 64 64 72 65 73 73 20 31 39 32 | es.on.interface.with.address.192 |
| 6efc0 | 2e 31 36 38 2e 31 2e 31 32 39 2f 32 35 2e 00 50 72 65 66 69 78 20 6c 69 73 74 73 20 70 72 6f 76 | .168.1.129/25..Prefix.lists.prov |
| 6efe0 | 69 64 65 73 20 74 68 65 20 6d 6f 73 74 20 70 6f 77 65 72 66 75 6c 20 70 72 65 66 69 78 20 62 61 | ides.the.most.powerful.prefix.ba |
| 6f000 | 73 65 64 20 66 69 6c 74 65 72 69 6e 67 20 6d 65 63 68 61 6e 69 73 6d 2e 20 49 6e 20 61 64 64 69 | sed.filtering.mechanism..In.addi |
| 6f020 | 74 69 6f 6e 20 74 6f 20 61 63 63 65 73 73 2d 6c 69 73 74 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 | tion.to.access-list.functionalit |
| 6f040 | 79 2c 20 69 70 20 70 72 65 66 69 78 2d 6c 69 73 74 20 68 61 73 20 70 72 65 66 69 78 20 6c 65 6e | y,.ip.prefix-list.has.prefix.len |
| 6f060 | 67 74 68 20 72 61 6e 67 65 20 73 70 65 63 69 66 69 63 61 74 69 6f 6e 2e 00 50 72 65 66 69 78 20 | gth.range.specification..Prefix. |
| 6f080 | 74 6f 20 6d 61 74 63 68 20 61 67 61 69 6e 73 74 2e 00 50 72 65 66 69 78 65 73 00 50 72 65 70 65 | to.match.against..Prefixes.Prepe |
| 6f0a0 | 6e 64 20 74 68 65 20 65 78 69 73 74 69 6e 67 20 6c 61 73 74 20 41 53 20 6e 75 6d 62 65 72 20 28 | nd.the.existing.last.AS.number.( |
| 6f0c0 | 74 68 65 20 6c 65 66 74 6d 6f 73 74 20 41 53 4e 29 20 74 6f 20 74 68 65 20 41 53 5f 50 41 54 48 | the.leftmost.ASN).to.the.AS_PATH |
| 6f0e0 | 2e 00 50 72 65 70 65 6e 64 20 74 68 65 20 67 69 76 65 6e 20 73 74 72 69 6e 67 20 6f 66 20 41 53 | ..Prepend.the.given.string.of.AS |
| 6f100 | 20 6e 75 6d 62 65 72 73 20 74 6f 20 74 68 65 20 41 53 5f 50 41 54 48 20 6f 66 20 74 68 65 20 42 | .numbers.to.the.AS_PATH.of.the.B |
| 6f120 | 47 50 20 70 61 74 68 27 73 20 4e 4c 52 49 2e 00 50 72 69 6e 63 69 70 6c 65 20 6f 66 20 53 4e 4d | GP.path's.NLRI..Principle.of.SNM |
| 6f140 | 50 20 43 6f 6d 6d 75 6e 69 63 61 74 69 6f 6e 00 50 72 69 6e 74 20 61 20 73 75 6d 6d 61 72 79 20 | P.Communication.Print.a.summary. |
| 6f160 | 6f 66 20 6e 65 69 67 68 62 6f 72 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 66 6f 72 20 74 68 65 20 | of.neighbor.connections.for.the. |
| 6f180 | 73 70 65 63 69 66 69 65 64 20 41 46 49 2f 53 41 46 49 20 63 6f 6d 62 69 6e 61 74 69 6f 6e 2e 00 | specified.AFI/SAFI.combination.. |
| 6f1a0 | 50 72 69 6e 74 20 61 63 74 69 76 65 20 49 50 56 34 20 6f 72 20 49 50 56 36 20 72 6f 75 74 65 73 | Print.active.IPV4.or.IPV6.routes |
| 6f1c0 | 20 61 64 76 65 72 74 69 73 65 64 20 76 69 61 20 74 68 65 20 56 50 4e 20 53 41 46 49 2e 00 50 72 | .advertised.via.the.VPN.SAFI..Pr |
| 6f1e0 | 69 6e 74 20 6f 75 74 20 74 68 65 20 6c 69 73 74 20 6f 66 20 65 78 69 73 74 69 6e 67 20 63 72 79 | int.out.the.list.of.existing.cry |
| 6f200 | 70 74 6f 20 70 6f 6c 69 63 69 65 73 00 50 72 69 6e 74 20 6f 75 74 20 74 68 65 20 6c 69 73 74 20 | pto.policies.Print.out.the.list. |
| 6f220 | 6f 66 20 65 78 69 73 74 69 6e 67 20 69 6e 2d 6b 65 72 6e 65 6c 20 63 72 79 70 74 6f 20 73 74 61 | of.existing.in-kernel.crypto.sta |
| 6f240 | 74 65 00 50 72 69 6f 72 69 74 79 00 50 72 69 6f 72 69 74 79 20 51 75 65 75 65 00 50 72 69 6f 72 | te.Priority.Priority.Queue.Prior |
| 6f260 | 69 74 79 20 51 75 65 75 65 2c 20 61 73 20 6f 74 68 65 72 20 6e 6f 6e 2d 73 68 61 70 69 6e 67 20 | ity.Queue,.as.other.non-shaping. |
| 6f280 | 70 6f 6c 69 63 69 65 73 2c 20 69 73 20 6f 6e 6c 79 20 75 73 65 66 75 6c 20 69 66 20 79 6f 75 72 | policies,.is.only.useful.if.your |
| 6f2a0 | 20 6f 75 74 67 6f 69 6e 67 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 72 65 61 6c 6c 79 20 66 75 | .outgoing.interface.is.really.fu |
| 6f2c0 | 6c 6c 2e 20 49 66 20 69 74 20 69 73 20 6e 6f 74 2c 20 56 79 4f 53 20 77 69 6c 6c 20 6e 6f 74 20 | ll..If.it.is.not,.VyOS.will.not. |
| 6f2e0 | 6f 77 6e 20 74 68 65 20 71 75 65 75 65 20 61 6e 64 20 50 72 69 6f 72 69 74 79 20 51 75 65 75 65 | own.the.queue.and.Priority.Queue |
| 6f300 | 20 77 69 6c 6c 20 68 61 76 65 20 6e 6f 20 65 66 66 65 63 74 2e 20 49 66 20 74 68 65 72 65 20 69 | .will.have.no.effect..If.there.i |
| 6f320 | 73 20 62 61 6e 64 77 69 64 74 68 20 61 76 61 69 6c 61 62 6c 65 20 6f 6e 20 74 68 65 20 70 68 79 | s.bandwidth.available.on.the.phy |
| 6f340 | 73 69 63 61 6c 20 6c 69 6e 6b 2c 20 79 6f 75 20 63 61 6e 20 65 6d 62 65 64 5f 20 50 72 69 6f 72 | sical.link,.you.can.embed_.Prior |
| 6f360 | 69 74 79 20 51 75 65 75 65 20 69 6e 74 6f 20 61 20 63 6c 61 73 73 66 75 6c 20 73 68 61 70 69 6e | ity.Queue.into.a.classful.shapin |
| 6f380 | 67 20 70 6f 6c 69 63 79 20 74 6f 20 6d 61 6b 65 20 73 75 72 65 20 69 74 20 6f 77 6e 73 20 74 68 | g.policy.to.make.sure.it.owns.th |
| 6f3a0 | 65 20 71 75 65 75 65 2e 20 49 6e 20 74 68 61 74 20 63 61 73 65 20 70 61 63 6b 65 74 73 20 63 61 | e.queue..In.that.case.packets.ca |
| 6f3c0 | 6e 20 62 65 20 70 72 69 6f 72 69 74 69 7a 65 64 20 62 61 73 65 64 20 6f 6e 20 44 53 43 50 2e 00 | n.be.prioritized.based.on.DSCP.. |
| 6f3e0 | 50 72 69 76 61 74 65 20 56 4c 41 4e 20 70 72 6f 78 79 20 61 72 70 2e 20 42 61 73 69 63 61 6c 6c | Private.VLAN.proxy.arp..Basicall |
| 6f400 | 79 20 61 6c 6c 6f 77 20 70 72 6f 78 79 20 61 72 70 20 72 65 70 6c 69 65 73 20 62 61 63 6b 20 74 | y.allow.proxy.arp.replies.back.t |
| 6f420 | 6f 20 74 68 65 20 73 61 6d 65 20 69 6e 74 65 72 66 61 63 65 20 28 66 72 6f 6d 20 77 68 69 63 68 | o.the.same.interface.(from.which |
| 6f440 | 20 74 68 65 20 41 52 50 20 72 65 71 75 65 73 74 2f 73 6f 6c 69 63 69 74 61 74 69 6f 6e 20 77 61 | .the.ARP.request/solicitation.wa |
| 6f460 | 73 20 72 65 63 65 69 76 65 64 29 2e 00 50 72 6f 66 69 6c 65 20 67 65 6e 65 72 61 74 69 6f 6e 20 | s.received)..Profile.generation. |
| 6f480 | 68 61 70 70 65 6e 73 20 66 72 6f 6d 20 74 68 65 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 6c 65 76 | happens.from.the.operational.lev |
| 6f4a0 | 65 6c 20 61 6e 64 20 69 73 20 61 73 20 73 69 6d 70 6c 65 20 61 73 20 69 73 73 75 69 6e 67 20 74 | el.and.is.as.simple.as.issuing.t |
| 6f4c0 | 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 72 65 61 74 65 20 61 | he.following.command.to.create.a |
| 6f4e0 | 20 70 72 6f 66 69 6c 65 20 74 6f 20 63 6f 6e 6e 65 63 74 20 74 6f 20 74 68 65 20 49 4b 45 76 32 | .profile.to.connect.to.the.IKEv2 |
| 6f500 | 20 61 63 63 65 73 73 20 73 65 72 76 65 72 20 61 74 20 60 60 76 70 6e 2e 76 79 6f 73 2e 6e 65 74 | .access.server.at.``vpn.vyos.net |
| 6f520 | 60 60 20 77 69 74 68 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 6f 72 20 74 68 | ``.with.the.configuration.for.th |
| 6f540 | 65 20 60 60 72 77 60 60 20 72 65 6d 6f 74 65 2d 61 63 63 65 73 73 20 63 6f 6e 6e 65 63 74 69 6f | e.``rw``.remote-access.connectio |
| 6f560 | 6e 20 67 72 6f 75 70 2e 00 50 72 6f 6d 65 74 68 65 75 73 2d 63 6c 69 65 6e 74 00 50 72 6f 74 65 | n.group..Prometheus-client.Prote |
| 6f580 | 63 74 73 20 68 6f 73 74 20 66 72 6f 6d 20 62 72 75 74 65 2d 66 6f 72 63 65 20 61 74 74 61 63 6b | cts.host.from.brute-force.attack |
| 6f5a0 | 73 20 61 67 61 69 6e 73 74 20 53 53 48 2e 20 4c 6f 67 20 6d 65 73 73 61 67 65 73 20 61 72 65 20 | s.against.SSH..Log.messages.are. |
| 6f5c0 | 70 61 72 73 65 64 2c 20 6c 69 6e 65 2d 62 79 2d 6c 69 6e 65 2c 20 66 6f 72 20 72 65 63 6f 67 6e | parsed,.line-by-line,.for.recogn |
| 6f5e0 | 69 7a 65 64 20 70 61 74 74 65 72 6e 73 2e 20 49 66 20 61 6e 20 61 74 74 61 63 6b 2c 20 73 75 63 | ized.patterns..If.an.attack,.suc |
| 6f600 | 68 20 61 73 20 73 65 76 65 72 61 6c 20 6c 6f 67 69 6e 20 66 61 69 6c 75 72 65 73 20 77 69 74 68 | h.as.several.login.failures.with |
| 6f620 | 69 6e 20 61 20 66 65 77 20 73 65 63 6f 6e 64 73 2c 20 69 73 20 64 65 74 65 63 74 65 64 2c 20 74 | in.a.few.seconds,.is.detected,.t |
| 6f640 | 68 65 20 6f 66 66 65 6e 64 69 6e 67 20 49 50 20 69 73 20 62 6c 6f 63 6b 65 64 2e 20 4f 66 66 65 | he.offending.IP.is.blocked..Offe |
| 6f660 | 6e 64 65 72 73 20 61 72 65 20 75 6e 62 6c 6f 63 6b 65 64 20 61 66 74 65 72 20 61 20 73 65 74 20 | nders.are.unblocked.after.a.set. |
| 6f680 | 69 6e 74 65 72 76 61 6c 2e 00 50 72 6f 74 6f 63 6f 6c 20 66 6f 72 20 77 68 69 63 68 20 65 78 70 | interval..Protocol.for.which.exp |
| 6f6a0 | 65 63 74 20 65 6e 74 72 69 65 73 20 6e 65 65 64 20 74 6f 20 62 65 20 73 79 6e 63 68 72 6f 6e 69 | ect.entries.need.to.be.synchroni |
| 6f6c0 | 7a 65 64 2e 00 50 72 6f 74 6f 63 6f 6c 73 00 50 72 6f 74 6f 63 6f 6c 73 20 61 72 65 3a 20 74 63 | zed..Protocols.Protocols.are:.tc |
| 6f6e0 | 70 2c 20 73 63 74 70 2c 20 64 63 63 70 2c 20 75 64 70 2c 20 69 63 6d 70 20 61 6e 64 20 69 70 76 | p,.sctp,.dccp,.udp,.icmp.and.ipv |
| 6f700 | 36 2d 69 63 6d 70 2e 00 50 72 6f 76 69 64 65 20 54 46 54 50 20 73 65 72 76 65 72 20 6c 69 73 74 | 6-icmp..Provide.TFTP.server.list |
| 6f720 | 65 6e 69 6e 67 20 6f 6e 20 62 6f 74 68 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 61 64 64 72 | ening.on.both.IPv4.and.IPv6.addr |
| 6f740 | 65 73 73 65 73 20 60 60 31 39 32 2e 30 2e 32 2e 31 60 60 20 61 6e 64 20 60 60 32 30 30 31 3a 64 | esses.``192.0.2.1``.and.``2001:d |
| 6f760 | 62 38 3a 3a 31 60 60 20 73 65 72 76 69 6e 67 20 74 68 65 20 63 6f 6e 74 65 6e 74 20 66 72 6f 6d | b8::1``.serving.the.content.from |
| 6f780 | 20 60 60 2f 63 6f 6e 66 69 67 2f 74 66 74 70 62 6f 6f 74 60 60 2e 20 55 70 6c 6f 61 64 69 6e 67 | .``/config/tftpboot``..Uploading |
| 6f7a0 | 20 76 69 61 20 54 46 54 50 20 74 6f 20 74 68 69 73 20 73 65 72 76 65 72 20 69 73 20 64 69 73 61 | .via.TFTP.to.this.server.is.disa |
| 6f7c0 | 62 6c 65 64 2e 00 50 72 6f 76 69 64 65 20 61 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 61 64 64 | bled..Provide.a.IPv4.or.IPv6.add |
| 6f7e0 | 72 65 73 73 20 67 72 6f 75 70 20 64 65 73 63 72 69 70 74 69 6f 6e 00 50 72 6f 76 69 64 65 20 61 | ress.group.description.Provide.a |
| 6f800 | 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 6e 65 74 77 6f 72 6b 20 67 72 6f 75 70 20 64 65 73 63 | .IPv4.or.IPv6.network.group.desc |
| 6f820 | 72 69 70 74 69 6f 6e 2e 00 50 72 6f 76 69 64 65 20 61 20 64 65 73 63 72 69 70 74 69 6f 6e 20 66 | ription..Provide.a.description.f |
| 6f840 | 6f 72 20 65 61 63 68 20 72 75 6c 65 2e 00 50 72 6f 76 69 64 65 20 61 20 64 65 73 63 72 69 70 74 | or.each.rule..Provide.a.descript |
| 6f860 | 69 6f 6e 20 74 6f 20 74 68 65 20 66 6c 6f 77 20 74 61 62 6c 65 2e 00 50 72 6f 76 69 64 65 20 61 | ion.to.the.flow.table..Provide.a |
| 6f880 | 20 64 6f 6d 61 69 6e 20 67 72 6f 75 70 20 64 65 73 63 72 69 70 74 69 6f 6e 2e 00 50 72 6f 76 69 | .domain.group.description..Provi |
| 6f8a0 | 64 65 20 61 20 6d 61 63 20 67 72 6f 75 70 20 64 65 73 63 72 69 70 74 69 6f 6e 2e 00 50 72 6f 76 | de.a.mac.group.description..Prov |
| 6f8c0 | 69 64 65 20 61 20 70 6f 72 74 20 67 72 6f 75 70 20 64 65 73 63 72 69 70 74 69 6f 6e 2e 00 50 72 | ide.a.port.group.description..Pr |
| 6f8e0 | 6f 76 69 64 65 20 61 20 72 75 6c 65 2d 73 65 74 20 64 65 73 63 72 69 70 74 69 6f 6e 20 74 6f 20 | ovide.a.rule-set.description.to. |
| 6f900 | 61 20 63 75 73 74 6f 6d 20 66 69 72 65 77 61 6c 6c 20 63 68 61 69 6e 2e 00 50 72 6f 76 69 64 65 | a.custom.firewall.chain..Provide |
| 6f920 | 20 61 20 72 75 6c 65 2d 73 65 74 20 64 65 73 63 72 69 70 74 69 6f 6e 2e 00 50 72 6f 76 69 64 65 | .a.rule-set.description..Provide |
| 6f940 | 20 61 6e 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 6e 65 74 77 6f 72 6b 20 67 72 6f 75 70 20 64 | .an.IPv4.or.IPv6.network.group.d |
| 6f960 | 65 73 63 72 69 70 74 69 6f 6e 2e 00 50 72 6f 76 69 64 65 20 61 6e 20 69 6e 74 65 72 66 61 63 65 | escription..Provide.an.interface |
| 6f980 | 20 67 72 6f 75 70 20 64 65 73 63 72 69 70 74 69 6f 6e 00 50 72 6f 76 69 64 65 72 20 2d 20 43 75 | .group.description.Provider.-.Cu |
| 6f9a0 | 73 74 6f 6d 65 72 00 50 72 6f 76 69 64 65 73 20 61 20 62 61 63 6b 62 6f 6e 65 20 61 72 65 61 20 | stomer.Provides.a.backbone.area. |
| 6f9c0 | 63 6f 68 65 72 65 6e 63 65 20 62 79 20 76 69 72 74 75 61 6c 20 6c 69 6e 6b 20 65 73 74 61 62 6c | coherence.by.virtual.link.establ |
| 6f9e0 | 69 73 68 6d 65 6e 74 2e 00 50 72 6f 76 69 64 65 73 20 61 20 70 65 72 2d 64 65 76 69 63 65 20 63 | ishment..Provides.a.per-device.c |
| 6fa00 | 6f 6e 74 72 6f 6c 20 74 6f 20 65 6e 61 62 6c 65 2f 64 69 73 61 62 6c 65 20 74 68 65 20 74 68 72 | ontrol.to.enable/disable.the.thr |
| 6fa20 | 65 61 64 65 64 20 6d 6f 64 65 20 66 6f 72 20 61 6c 6c 20 74 68 65 20 4e 41 50 49 20 69 6e 73 74 | eaded.mode.for.all.the.NAPI.inst |
| 6fa40 | 61 6e 63 65 73 20 6f 66 20 74 68 65 20 67 69 76 65 6e 20 6e 65 74 77 6f 72 6b 20 64 65 76 69 63 | ances.of.the.given.network.devic |
| 6fa60 | 65 2c 20 77 69 74 68 6f 75 74 20 74 68 65 20 6e 65 65 64 20 66 6f 72 20 61 20 64 65 76 69 63 65 | e,.without.the.need.for.a.device |
| 6fa80 | 20 75 70 2f 64 6f 77 6e 2e 00 50 72 6f 78 79 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6d | .up/down..Proxy.authentication.m |
| 6faa0 | 65 74 68 6f 64 2c 20 63 75 72 72 65 6e 74 6c 79 20 6f 6e 6c 79 20 4c 44 41 50 20 69 73 20 73 75 | ethod,.currently.only.LDAP.is.su |
| 6fac0 | 70 70 6f 72 74 65 64 2e 00 50 73 65 75 64 6f 20 45 74 68 65 72 6e 65 74 2f 4d 41 43 56 4c 41 4e | pported..Pseudo.Ethernet/MACVLAN |
| 6fae0 | 20 6f 70 74 69 6f 6e 73 00 50 73 65 75 64 6f 2d 45 74 68 65 72 6e 65 74 20 69 6e 74 65 72 66 61 | .options.Pseudo-Ethernet.interfa |
| 6fb00 | 63 65 73 20 63 61 6e 20 6e 6f 74 20 62 65 20 72 65 61 63 68 65 64 20 66 72 6f 6d 20 79 6f 75 72 | ces.can.not.be.reached.from.your |
| 6fb20 | 20 69 6e 74 65 72 6e 61 6c 20 68 6f 73 74 2e 20 54 68 69 73 20 6d 65 61 6e 73 20 74 68 61 74 20 | .internal.host..This.means.that. |
| 6fb40 | 79 6f 75 20 63 61 6e 20 6e 6f 74 20 74 72 79 20 74 6f 20 70 69 6e 67 20 61 20 50 73 65 75 64 6f | you.can.not.try.to.ping.a.Pseudo |
| 6fb60 | 2d 45 74 68 65 72 6e 65 74 20 69 6e 74 65 72 66 61 63 65 20 66 72 6f 6d 20 74 68 65 20 68 6f 73 | -Ethernet.interface.from.the.hos |
| 6fb80 | 74 20 73 79 73 74 65 6d 20 6f 6e 20 77 68 69 63 68 20 69 74 20 69 73 20 64 65 66 69 6e 65 64 2e | t.system.on.which.it.is.defined. |
| 6fba0 | 20 54 68 65 20 70 69 6e 67 20 77 69 6c 6c 20 62 65 20 6c 6f 73 74 2e 00 50 73 65 75 64 6f 2d 45 | .The.ping.will.be.lost..Pseudo-E |
| 6fbc0 | 74 68 65 72 6e 65 74 20 69 6e 74 65 72 66 61 63 65 73 20 6d 61 79 20 6e 6f 74 20 77 6f 72 6b 20 | thernet.interfaces.may.not.work. |
| 6fbe0 | 69 6e 20 65 6e 76 69 72 6f 6e 6d 65 6e 74 73 20 77 68 69 63 68 20 65 78 70 65 63 74 20 61 20 3a | in.environments.which.expect.a.: |
| 6fc00 | 61 62 62 72 3a 60 4e 49 43 20 28 4e 65 74 77 6f 72 6b 20 49 6e 74 65 72 66 61 63 65 20 43 61 72 | abbr:`NIC.(Network.Interface.Car |
| 6fc20 | 64 29 60 20 74 6f 20 6f 6e 6c 79 20 68 61 76 65 20 61 20 73 69 6e 67 6c 65 20 61 64 64 72 65 73 | d)`.to.only.have.a.single.addres |
| 6fc40 | 73 2e 20 54 68 69 73 20 61 70 70 6c 69 65 73 20 74 6f 3a 20 2d 20 56 4d 77 61 72 65 20 6d 61 63 | s..This.applies.to:.-.VMware.mac |
| 6fc60 | 68 69 6e 65 73 20 75 73 69 6e 67 20 64 65 66 61 75 6c 74 20 73 65 74 74 69 6e 67 73 20 2d 20 4e | hines.using.default.settings.-.N |
| 6fc80 | 65 74 77 6f 72 6b 20 73 77 69 74 63 68 65 73 20 77 69 74 68 20 73 65 63 75 72 69 74 79 20 73 65 | etwork.switches.with.security.se |
| 6fca0 | 74 74 69 6e 67 73 20 61 6c 6c 6f 77 69 6e 67 20 6f 6e 6c 79 20 61 20 73 69 6e 67 6c 65 20 4d 41 | ttings.allowing.only.a.single.MA |
| 6fcc0 | 43 20 61 64 64 72 65 73 73 20 2d 20 78 44 53 4c 20 6d 6f 64 65 6d 73 20 74 68 61 74 20 74 72 79 | C.address.-.xDSL.modems.that.try |
| 6fce0 | 20 74 6f 20 6c 65 61 72 6e 20 74 68 65 20 4d 41 43 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 | .to.learn.the.MAC.address.of.the |
| 6fd00 | 20 4e 49 43 00 50 73 65 75 64 6f 2d 45 74 68 65 72 6e 65 74 20 6f 72 20 4d 41 43 56 4c 41 4e 20 | .NIC.Pseudo-Ethernet.or.MACVLAN. |
| 6fd20 | 69 6e 74 65 72 66 61 63 65 73 20 63 61 6e 20 62 65 20 73 65 65 6e 20 61 73 20 73 75 62 69 6e 74 | interfaces.can.be.seen.as.subint |
| 6fd40 | 65 72 66 61 63 65 73 20 74 6f 20 72 65 67 75 6c 61 72 20 65 74 68 65 72 6e 65 74 20 69 6e 74 65 | erfaces.to.regular.ethernet.inte |
| 6fd60 | 72 66 61 63 65 73 2e 20 45 61 63 68 20 61 6e 64 20 65 76 65 72 79 20 73 75 62 69 6e 74 65 72 66 | rfaces..Each.and.every.subinterf |
| 6fd80 | 61 63 65 20 69 73 20 63 72 65 61 74 65 64 20 61 20 64 69 66 66 65 72 65 6e 74 20 6d 65 64 69 61 | ace.is.created.a.different.media |
| 6fda0 | 20 61 63 63 65 73 73 20 63 6f 6e 74 72 6f 6c 20 28 4d 41 43 29 20 61 64 64 72 65 73 73 2c 20 66 | .access.control.(MAC).address,.f |
| 6fdc0 | 6f 72 20 61 20 73 69 6e 67 6c 65 20 70 68 79 73 69 63 61 6c 20 45 74 68 65 72 6e 65 74 20 70 6f | or.a.single.physical.Ethernet.po |
| 6fde0 | 72 74 2e 20 50 73 65 75 64 6f 2d 20 45 74 68 65 72 6e 65 74 20 69 6e 74 65 72 66 61 63 65 73 20 | rt..Pseudo-.Ethernet.interfaces. |
| 6fe00 | 68 61 76 65 20 6d 6f 73 74 20 6f 66 20 74 68 65 69 72 20 61 70 70 6c 69 63 61 74 69 6f 6e 20 69 | have.most.of.their.application.i |
| 6fe20 | 6e 20 76 69 72 74 75 61 6c 69 7a 65 64 20 65 6e 76 69 72 6f 6e 6d 65 6e 74 73 2c 00 50 75 62 6c | n.virtualized.environments,.Publ |
| 6fe40 | 69 73 68 20 61 20 70 6f 72 74 20 66 6f 72 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 2e 00 50 75 | ish.a.port.for.the.container..Pu |
| 6fe60 | 6c 6c 20 61 20 6e 65 77 20 69 6d 61 67 65 20 66 6f 72 20 63 6f 6e 74 61 69 6e 65 72 00 51 69 6e | ll.a.new.image.for.container.Qin |
| 6fe80 | 51 20 28 38 30 32 2e 31 61 64 29 00 51 6f 53 00 51 75 65 75 65 20 73 69 7a 65 20 66 6f 72 20 6c | Q.(802.1ad).QoS.Queue.size.for.l |
| 6fea0 | 69 73 74 65 6e 69 6e 67 20 74 6f 20 6c 6f 63 61 6c 20 63 6f 6e 6e 74 72 61 63 6b 20 65 76 65 6e | istening.to.local.conntrack.even |
| 6fec0 | 74 73 20 69 6e 20 4d 42 2e 00 51 75 65 75 65 20 73 69 7a 65 20 66 6f 72 20 73 79 6e 63 69 6e 67 | ts.in.MB..Queue.size.for.syncing |
| 6fee0 | 20 63 6f 6e 6e 74 72 61 63 6b 20 65 6e 74 72 69 65 73 20 69 6e 20 4d 42 2e 00 51 75 6f 74 65 73 | .conntrack.entries.in.MB..Quotes |
| 6ff00 | 20 63 61 6e 20 62 65 20 75 73 65 64 20 69 6e 73 69 64 65 20 70 61 72 61 6d 65 74 65 72 20 76 61 | .can.be.used.inside.parameter.va |
| 6ff20 | 6c 75 65 73 20 62 79 20 72 65 70 6c 61 63 69 6e 67 20 61 6c 6c 20 71 75 6f 74 65 20 63 68 61 72 | lues.by.replacing.all.quote.char |
| 6ff40 | 61 63 74 65 72 73 20 77 69 74 68 20 74 68 65 20 73 74 72 69 6e 67 20 60 60 26 71 75 6f 74 3b 60 | acters.with.the.string.``"` |
| 6ff60 | 60 2e 20 54 68 65 79 20 77 69 6c 6c 20 62 65 20 72 65 70 6c 61 63 65 64 20 77 69 74 68 20 6c 69 | `..They.will.be.replaced.with.li |
| 6ff80 | 74 65 72 61 6c 20 71 75 6f 74 65 20 63 68 61 72 61 63 74 65 72 73 20 77 68 65 6e 20 67 65 6e 65 | teral.quote.characters.when.gene |
| 6ffa0 | 72 61 74 69 6e 67 20 64 68 63 70 64 2e 63 6f 6e 66 2e 00 52 31 20 68 61 73 20 31 39 32 2e 30 2e | rating.dhcpd.conf..R1.has.192.0. |
| 6ffc0 | 32 2e 31 2f 32 34 20 26 20 32 30 30 31 3a 64 62 38 3a 3a 31 2f 36 34 00 52 31 20 69 73 20 6d 61 | 2.1/24.&.2001:db8::1/64.R1.is.ma |
| 6ffe0 | 6e 61 67 65 64 20 74 68 72 6f 75 67 68 20 61 6e 20 6f 75 74 2d 6f 66 2d 62 61 6e 64 20 6e 65 74 | naged.through.an.out-of-band.net |
| 70000 | 77 6f 72 6b 20 74 68 61 74 20 72 65 73 69 64 65 73 20 69 6e 20 56 52 46 20 60 60 6d 67 6d 74 60 | work.that.resides.in.VRF.``mgmt` |
| 70020 | 60 00 52 31 3a 00 52 32 20 68 61 73 20 31 39 32 2e 30 2e 32 2e 32 2f 32 34 20 26 20 32 30 30 31 | `.R1:.R2.has.192.0.2.2/24.&.2001 |
| 70040 | 3a 64 62 38 3a 3a 32 2f 36 34 00 52 32 3a 00 52 41 44 49 55 53 00 52 41 44 49 55 53 20 53 65 74 | :db8::2/64.R2:.RADIUS.RADIUS.Set |
| 70060 | 75 70 00 52 41 44 49 55 53 20 61 64 76 61 6e 63 65 64 20 66 65 61 74 75 72 65 73 00 52 41 44 49 | up.RADIUS.advanced.features.RADI |
| 70080 | 55 53 20 61 64 76 61 6e 63 65 64 20 6f 70 74 69 6f 6e 73 00 52 41 44 49 55 53 20 61 75 74 68 65 | US.advanced.options.RADIUS.authe |
| 700a0 | 6e 74 69 63 61 74 69 6f 6e 00 52 41 44 49 55 53 20 62 61 6e 64 77 69 64 74 68 20 73 68 61 70 69 | ntication.RADIUS.bandwidth.shapi |
| 700c0 | 6e 67 20 61 74 74 72 69 62 75 74 65 00 52 41 44 49 55 53 20 70 72 6f 76 69 64 65 73 20 74 68 65 | ng.attribute.RADIUS.provides.the |
| 700e0 | 20 49 50 20 61 64 64 72 65 73 73 65 73 20 69 6e 20 74 68 65 20 65 78 61 6d 70 6c 65 20 61 62 6f | .IP.addresses.in.the.example.abo |
| 70100 | 76 65 20 76 69 61 20 46 72 61 6d 65 64 2d 49 50 2d 41 64 64 72 65 73 73 2e 00 52 41 44 49 55 53 | ve.via.Framed-IP-Address..RADIUS |
| 70120 | 20 73 65 72 76 65 72 20 61 74 20 60 60 31 39 32 2e 31 36 38 2e 33 2e 31 30 60 60 20 77 69 74 68 | .server.at.``192.168.3.10``.with |
| 70140 | 20 73 68 61 72 65 64 2d 73 65 63 72 65 74 20 60 60 56 79 4f 53 50 61 73 73 77 6f 72 64 60 60 00 | .shared-secret.``VyOSPassword``. |
| 70160 | 52 41 44 49 55 53 20 73 65 72 76 65 72 73 20 63 6f 75 6c 64 20 62 65 20 68 61 72 64 65 6e 65 64 | RADIUS.servers.could.be.hardened |
| 70180 | 20 62 79 20 6f 6e 6c 79 20 61 6c 6c 6f 77 69 6e 67 20 63 65 72 74 61 69 6e 20 49 50 20 61 64 64 | .by.only.allowing.certain.IP.add |
| 701a0 | 72 65 73 73 65 73 20 74 6f 20 63 6f 6e 6e 65 63 74 2e 20 41 73 20 6f 66 20 74 68 69 73 20 74 68 | resses.to.connect..As.of.this.th |
| 701c0 | 65 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 6f 66 20 65 61 63 68 20 52 41 44 49 55 53 20 | e.source.address.of.each.RADIUS. |
| 701e0 | 71 75 65 72 79 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 2e 00 52 41 44 49 55 53 20 | query.can.be.configured..RADIUS. |
| 70200 | 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 00 52 45 51 20 32 3a 20 41 20 43 47 4e 20 6d 75 73 74 | source.address.REQ.2:.A.CGN.must |
| 70220 | 20 68 61 76 65 20 61 20 64 65 66 61 75 6c 74 20 22 49 50 20 61 64 64 72 65 73 73 20 70 6f 6f 6c | .have.a.default."IP.address.pool |
| 70240 | 69 6e 67 22 20 62 65 68 61 76 69 6f 72 20 6f 66 20 22 50 61 69 72 65 64 22 2e 20 43 47 4e 20 6d | ing".behavior.of."Paired"..CGN.m |
| 70260 | 75 73 74 20 75 73 65 20 74 68 65 20 73 61 6d 65 20 65 78 74 65 72 6e 61 6c 20 49 50 20 61 64 64 | ust.use.the.same.external.IP.add |
| 70280 | 72 65 73 73 20 6d 61 70 70 69 6e 67 20 66 6f 72 20 61 6c 6c 20 73 65 73 73 69 6f 6e 73 20 61 73 | ress.mapping.for.all.sessions.as |
| 702a0 | 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 74 68 65 20 73 61 6d 65 20 69 6e 74 65 72 6e 61 6c 20 | sociated.with.the.same.internal. |
| 702c0 | 49 50 20 61 64 64 72 65 73 73 2c 20 62 65 20 74 68 65 79 20 54 43 50 2c 20 55 44 50 2c 20 49 43 | IP.address,.be.they.TCP,.UDP,.IC |
| 702e0 | 4d 50 2c 20 73 6f 6d 65 74 68 69 6e 67 20 65 6c 73 65 2c 20 6f 72 20 61 20 6d 69 78 20 6f 66 20 | MP,.something.else,.or.a.mix.of. |
| 70300 | 64 69 66 66 65 72 65 6e 74 20 70 72 6f 74 6f 63 6f 6c 73 2e 00 52 45 51 20 33 3a 20 54 68 65 20 | different.protocols..REQ.3:.The. |
| 70320 | 43 47 4e 20 66 75 6e 63 74 69 6f 6e 20 73 68 6f 75 6c 64 20 6e 6f 74 20 68 61 76 65 20 61 6e 79 | CGN.function.should.not.have.any |
| 70340 | 20 6c 69 6d 69 74 61 74 69 6f 6e 73 20 6f 6e 20 74 68 65 20 73 69 7a 65 20 6f 72 20 74 68 65 20 | .limitations.on.the.size.or.the. |
| 70360 | 63 6f 6e 74 69 67 75 69 74 79 20 6f 66 20 74 68 65 20 65 78 74 65 72 6e 61 6c 20 61 64 64 72 65 | contiguity.of.the.external.addre |
| 70380 | 73 73 20 70 6f 6f 6c 2e 00 52 45 51 20 34 3a 20 41 20 43 47 4e 20 6d 75 73 74 20 73 75 70 70 6f | ss.pool..REQ.4:.A.CGN.must.suppo |
| 703a0 | 72 74 20 6c 69 6d 69 74 69 6e 67 20 74 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 65 78 74 65 72 6e | rt.limiting.the.number.of.extern |
| 703c0 | 61 6c 20 70 6f 72 74 73 20 28 6f 72 2c 20 65 71 75 69 76 61 6c 65 6e 74 6c 79 2c 20 22 69 64 65 | al.ports.(or,.equivalently,."ide |
| 703e0 | 6e 74 69 66 69 65 72 73 22 20 66 6f 72 20 49 43 4d 50 29 20 74 68 61 74 20 61 72 65 20 61 73 73 | ntifiers".for.ICMP).that.are.ass |
| 70400 | 69 67 6e 65 64 20 70 65 72 20 73 75 62 73 63 72 69 62 65 72 00 52 45 53 54 00 52 46 43 20 33 37 | igned.per.subscriber.REST.RFC.37 |
| 70420 | 36 38 20 63 72 65 61 74 65 73 20 61 20 76 69 72 74 75 61 6c 20 69 6e 74 65 72 66 61 63 65 2e 20 | 68.creates.a.virtual.interface.. |
| 70440 | 49 66 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 61 70 70 6c 79 20 74 68 65 20 64 65 73 74 69 6e 61 | If.you.want.to.apply.the.destina |
| 70460 | 74 69 6f 6e 20 4e 41 54 20 72 75 6c 65 20 74 6f 20 74 68 65 20 74 72 61 66 66 69 63 20 73 65 6e | tion.NAT.rule.to.the.traffic.sen |
| 70480 | 74 20 74 6f 20 74 68 65 20 76 69 72 74 75 61 6c 20 4d 41 43 2c 20 73 65 74 20 74 68 65 20 63 72 | t.to.the.virtual.MAC,.set.the.cr |
| 704a0 | 65 61 74 65 64 20 76 69 72 74 75 61 6c 20 69 6e 74 65 72 66 61 63 65 20 61 73 20 60 69 6e 62 6f | eated.virtual.interface.as.`inbo |
| 704c0 | 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 60 2e 00 52 46 43 20 33 37 36 38 20 64 65 66 69 6e 65 73 | und-interface`..RFC.3768.defines |
| 704e0 | 20 61 20 76 69 72 74 75 61 6c 20 4d 41 43 20 61 64 64 72 65 73 73 20 74 6f 20 65 61 63 68 20 56 | .a.virtual.MAC.address.to.each.V |
| 70500 | 52 52 50 20 76 69 72 74 75 61 6c 20 72 6f 75 74 65 72 2e 20 54 68 69 73 20 76 69 72 74 75 61 6c | RRP.virtual.router..This.virtual |
| 70520 | 20 72 6f 75 74 65 72 20 4d 41 43 20 61 64 64 72 65 73 73 20 77 69 6c 6c 20 62 65 20 75 73 65 64 | .router.MAC.address.will.be.used |
| 70540 | 20 61 73 20 74 68 65 20 73 6f 75 72 63 65 20 69 6e 20 61 6c 6c 20 70 65 72 69 6f 64 69 63 20 56 | .as.the.source.in.all.periodic.V |
| 70560 | 52 52 50 20 6d 65 73 73 61 67 65 73 20 73 65 6e 74 20 62 79 20 74 68 65 20 61 63 74 69 76 65 20 | RRP.messages.sent.by.the.active. |
| 70580 | 6e 6f 64 65 2e 20 57 68 65 6e 20 74 68 65 20 72 66 63 33 37 36 38 2d 63 6f 6d 70 61 74 69 62 69 | node..When.the.rfc3768-compatibi |
| 705a0 | 6c 69 74 79 20 6f 70 74 69 6f 6e 20 69 73 20 73 65 74 2c 20 61 20 6e 65 77 20 56 52 52 50 20 69 | lity.option.is.set,.a.new.VRRP.i |
| 705c0 | 6e 74 65 72 66 61 63 65 20 69 73 20 63 72 65 61 74 65 64 2c 20 74 6f 20 77 68 69 63 68 20 74 68 | nterface.is.created,.to.which.th |
| 705e0 | 65 20 4d 41 43 20 61 64 64 72 65 73 73 20 61 6e 64 20 74 68 65 20 76 69 72 74 75 61 6c 20 49 50 | e.MAC.address.and.the.virtual.IP |
| 70600 | 20 61 64 64 72 65 73 73 20 69 73 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 61 73 73 69 67 6e | .address.is.automatically.assign |
| 70620 | 65 64 2e 00 52 46 43 20 38 36 38 20 74 69 6d 65 20 73 65 72 76 65 72 20 49 50 76 34 20 61 64 64 | ed..RFC.868.time.server.IPv4.add |
| 70640 | 72 65 73 73 00 52 49 50 00 52 49 50 76 31 20 61 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a | ress.RIP.RIPv1.as.described.in.: |
| 70660 | 72 66 63 3a 60 31 30 35 38 60 00 52 49 50 76 32 20 61 73 20 64 65 73 63 72 69 62 65 64 20 69 6e | rfc:`1058`.RIPv2.as.described.in |
| 70680 | 20 3a 72 66 63 3a 60 32 34 35 33 60 00 52 50 4b 49 00 52 53 2d 53 65 72 76 65 72 20 2d 20 52 53 | .:rfc:`2453`.RPKI.RS-Server.-.RS |
| 706a0 | 2d 43 6c 69 65 6e 74 00 52 53 41 20 63 61 6e 20 62 65 20 75 73 65 64 20 66 6f 72 20 73 65 72 76 | -Client.RSA.can.be.used.for.serv |
| 706c0 | 69 63 65 73 20 73 75 63 68 20 61 73 20 6b 65 79 20 65 78 63 68 61 6e 67 65 73 20 61 6e 64 20 66 | ices.such.as.key.exchanges.and.f |
| 706e0 | 6f 72 20 65 6e 63 72 79 70 74 69 6f 6e 20 70 75 72 70 6f 73 65 73 2e 20 54 6f 20 6d 61 6b 65 20 | or.encryption.purposes..To.make. |
| 70700 | 49 50 53 65 63 20 77 6f 72 6b 20 77 69 74 68 20 64 79 6e 61 6d 69 63 20 61 64 64 72 65 73 73 20 | IPSec.work.with.dynamic.address. |
| 70720 | 6f 6e 20 6f 6e 65 2f 62 6f 74 68 20 73 69 64 65 73 2c 20 77 65 20 77 69 6c 6c 20 68 61 76 65 20 | on.one/both.sides,.we.will.have. |
| 70740 | 74 6f 20 75 73 65 20 52 53 41 20 6b 65 79 73 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 | to.use.RSA.keys.for.authenticati |
| 70760 | 6f 6e 2e 20 54 68 65 79 20 61 72 65 20 76 65 72 79 20 66 61 73 74 20 61 6e 64 20 65 61 73 79 20 | on..They.are.very.fast.and.easy. |
| 70780 | 74 6f 20 73 65 74 75 70 2e 00 52 53 41 2d 4b 65 79 73 00 52 61 6e 64 6f 6d 2d 44 65 74 65 63 74 | to.setup..RSA-Keys.Random-Detect |
| 707a0 | 00 52 61 6e 64 6f 6d 2d 44 65 74 65 63 74 20 63 6f 75 6c 64 20 62 65 20 75 73 65 66 75 6c 20 66 | .Random-Detect.could.be.useful.f |
| 707c0 | 6f 72 20 68 65 61 76 79 20 74 72 61 66 66 69 63 2e 20 4f 6e 65 20 75 73 65 20 6f 66 20 74 68 69 | or.heavy.traffic..One.use.of.thi |
| 707e0 | 73 20 61 6c 67 6f 72 69 74 68 6d 20 6d 69 67 68 74 20 62 65 20 74 6f 20 70 72 65 76 65 6e 74 20 | s.algorithm.might.be.to.prevent. |
| 70800 | 61 20 62 61 63 6b 62 6f 6e 65 20 6f 76 65 72 6c 6f 61 64 2e 20 42 75 74 20 6f 6e 6c 79 20 66 6f | a.backbone.overload..But.only.fo |
| 70820 | 72 20 54 43 50 20 28 62 65 63 61 75 73 65 20 64 72 6f 70 70 65 64 20 70 61 63 6b 65 74 73 20 63 | r.TCP.(because.dropped.packets.c |
| 70840 | 6f 75 6c 64 20 62 65 20 72 65 74 72 61 6e 73 6d 69 74 74 65 64 29 2c 20 6e 6f 74 20 66 6f 72 20 | ould.be.retransmitted),.not.for. |
| 70860 | 55 44 50 2e 00 52 61 6e 67 65 20 69 73 20 31 20 74 6f 20 32 35 35 2c 20 64 65 66 61 75 6c 74 20 | UDP..Range.is.1.to.255,.default. |
| 70880 | 69 73 20 31 2e 00 52 61 6e 67 65 20 69 73 20 31 20 74 6f 20 33 30 30 2c 20 64 65 66 61 75 6c 74 | is.1..Range.is.1.to.300,.default |
| 708a0 | 20 69 73 20 31 30 2e 00 52 61 74 65 20 43 6f 6e 74 72 6f 6c 00 52 61 74 65 20 6c 69 6d 69 74 00 | .is.10..Rate.Control.Rate.limit. |
| 708c0 | 52 61 74 65 20 6c 69 6d 69 74 20 74 68 65 20 64 6f 77 6e 6c 6f 61 64 20 62 61 6e 64 77 69 64 74 | Rate.limit.the.download.bandwidt |
| 708e0 | 68 20 66 6f 72 20 60 3c 75 73 65 72 3e 60 20 74 6f 20 60 3c 62 61 6e 64 77 69 64 74 68 3e 60 20 | h.for.`<user>`.to.`<bandwidth>`. |
| 70900 | 6b 62 69 74 2f 73 2e 00 52 61 74 65 20 6c 69 6d 69 74 20 74 68 65 20 75 70 6c 6f 61 64 20 62 61 | kbit/s..Rate.limit.the.upload.ba |
| 70920 | 6e 64 77 69 64 74 68 20 66 6f 72 20 60 3c 75 73 65 72 3e 60 20 74 6f 20 60 3c 62 61 6e 64 77 69 | ndwidth.for.`<user>`.to.`<bandwi |
| 70940 | 64 74 68 3e 60 20 6b 62 69 74 2f 73 00 52 61 74 65 20 6c 69 6d 69 74 20 74 68 65 20 75 70 6c 6f | dth>`.kbit/s.Rate.limit.the.uplo |
| 70960 | 61 64 20 62 61 6e 64 77 69 64 74 68 20 66 6f 72 20 60 3c 75 73 65 72 3e 60 20 74 6f 20 60 3c 62 | ad.bandwidth.for.`<user>`.to.`<b |
| 70980 | 61 6e 64 77 69 64 74 68 3e 60 20 6b 62 69 74 2f 73 2e 00 52 61 74 65 2d 43 6f 6e 74 72 6f 6c 20 | andwidth>`.kbit/s..Rate-Control. |
| 709a0 | 69 73 20 61 20 43 50 55 2d 66 72 69 65 6e 64 6c 79 20 70 6f 6c 69 63 79 2e 20 59 6f 75 20 6d 69 | is.a.CPU-friendly.policy..You.mi |
| 709c0 | 67 68 74 20 63 6f 6e 73 69 64 65 72 20 75 73 69 6e 67 20 69 74 20 77 68 65 6e 20 79 6f 75 20 6a | ght.consider.using.it.when.you.j |
| 709e0 | 75 73 74 20 73 69 6d 70 6c 79 20 77 61 6e 74 20 74 6f 20 73 6c 6f 77 20 74 72 61 66 66 69 63 20 | ust.simply.want.to.slow.traffic. |
| 70a00 | 64 6f 77 6e 2e 00 52 61 74 65 2d 43 6f 6e 74 72 6f 6c 20 69 73 20 61 20 63 6c 61 73 73 6c 65 73 | down..Rate-Control.is.a.classles |
| 70a20 | 73 20 70 6f 6c 69 63 79 20 74 68 61 74 20 6c 69 6d 69 74 73 20 74 68 65 20 70 61 63 6b 65 74 20 | s.policy.that.limits.the.packet. |
| 70a40 | 66 6c 6f 77 20 74 6f 20 61 20 73 65 74 20 72 61 74 65 2e 20 49 74 20 69 73 20 61 20 70 75 72 65 | flow.to.a.set.rate..It.is.a.pure |
| 70a60 | 20 73 68 61 70 65 72 2c 20 69 74 20 64 6f 65 73 20 6e 6f 74 20 73 63 68 65 64 75 6c 65 20 74 72 | .shaper,.it.does.not.schedule.tr |
| 70a80 | 61 66 66 69 63 2e 20 54 72 61 66 66 69 63 20 69 73 20 66 69 6c 74 65 72 65 64 20 62 61 73 65 64 | affic..Traffic.is.filtered.based |
| 70aa0 | 20 6f 6e 20 74 68 65 20 65 78 70 65 6e 64 69 74 75 72 65 20 6f 66 20 74 6f 6b 65 6e 73 2e 20 54 | .on.the.expenditure.of.tokens..T |
| 70ac0 | 6f 6b 65 6e 73 20 72 6f 75 67 68 6c 79 20 63 6f 72 72 65 73 70 6f 6e 64 20 74 6f 20 62 79 74 65 | okens.roughly.correspond.to.byte |
| 70ae0 | 73 2e 00 52 61 77 20 50 61 72 61 6d 65 74 65 72 73 00 52 61 77 20 70 61 72 61 6d 65 74 65 72 73 | s..Raw.Parameters.Raw.parameters |
| 70b00 | 20 63 61 6e 20 62 65 20 70 61 73 73 65 64 20 74 6f 20 73 68 61 72 65 64 2d 6e 65 74 77 6f 72 6b | .can.be.passed.to.shared-network |
| 70b20 | 2d 6e 61 6d 65 2c 20 73 75 62 6e 65 74 20 61 6e 64 20 73 74 61 74 69 63 2d 6d 61 70 70 69 6e 67 | -name,.subnet.and.static-mapping |
| 70b40 | 3a 00 52 65 2d 67 65 6e 65 72 61 74 65 64 20 61 20 6b 6e 6f 77 6e 20 70 75 62 2f 70 72 69 76 61 | :.Re-generated.a.known.pub/priva |
| 70b60 | 74 65 20 6b 65 79 66 69 6c 65 20 77 68 69 63 68 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 | te.keyfile.which.can.be.used.to. |
| 70b80 | 63 6f 6e 6e 65 63 74 20 74 6f 20 6f 74 68 65 72 20 73 65 72 76 69 63 65 73 20 28 65 2e 67 2e 20 | connect.to.other.services.(e.g.. |
| 70ba0 | 52 50 4b 49 20 63 61 63 68 65 29 2e 00 52 65 2d 67 65 6e 65 72 61 74 65 64 20 74 68 65 20 70 75 | RPKI.cache)..Re-generated.the.pu |
| 70bc0 | 62 6c 69 63 2f 70 72 69 76 61 74 65 20 6b 65 79 70 6f 72 74 69 6f 6e 20 77 68 69 63 68 20 53 53 | blic/private.keyportion.which.SS |
| 70be0 | 48 20 75 73 65 73 20 74 6f 20 73 65 63 75 72 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2e 00 52 65 | H.uses.to.secure.connections..Re |
| 70c00 | 61 63 68 61 62 6c 65 20 54 69 6d 65 00 52 65 61 6c 20 73 65 72 76 65 72 00 52 65 61 6c 20 73 65 | achable.Time.Real.server.Real.se |
| 70c20 | 72 76 65 72 20 49 50 20 61 64 64 72 65 73 73 20 61 6e 64 20 70 6f 72 74 00 52 65 61 6c 20 73 65 | rver.IP.address.and.port.Real.se |
| 70c40 | 72 76 65 72 20 69 73 20 61 75 74 6f 2d 65 78 63 6c 75 64 65 64 20 69 66 20 70 6f 72 74 20 63 68 | rver.is.auto-excluded.if.port.ch |
| 70c60 | 65 63 6b 20 77 69 74 68 20 74 68 69 73 20 73 65 72 76 65 72 20 66 61 69 6c 2e 00 52 65 63 65 69 | eck.with.this.server.fail..Recei |
| 70c80 | 76 65 20 74 72 61 66 66 69 63 20 66 72 6f 6d 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 63 72 65 61 | ve.traffic.from.connections.crea |
| 70ca0 | 74 65 64 20 62 79 20 74 68 65 20 73 65 72 76 65 72 20 69 73 20 61 6c 73 6f 20 62 61 6c 61 6e 63 | ted.by.the.server.is.also.balanc |
| 70cc0 | 65 64 2e 20 57 68 65 6e 20 74 68 65 20 6c 6f 63 61 6c 20 73 79 73 74 65 6d 20 73 65 6e 64 73 20 | ed..When.the.local.system.sends. |
| 70ce0 | 61 6e 20 41 52 50 20 52 65 71 75 65 73 74 20 74 68 65 20 62 6f 6e 64 69 6e 67 20 64 72 69 76 65 | an.ARP.Request.the.bonding.drive |
| 70d00 | 72 20 63 6f 70 69 65 73 20 61 6e 64 20 73 61 76 65 73 20 74 68 65 20 70 65 65 72 27 73 20 49 50 | r.copies.and.saves.the.peer's.IP |
| 70d20 | 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 72 6f 6d 20 74 68 65 20 41 52 50 20 70 61 63 6b 65 74 | .information.from.the.ARP.packet |
| 70d40 | 2e 20 57 68 65 6e 20 74 68 65 20 41 52 50 20 52 65 70 6c 79 20 61 72 72 69 76 65 73 20 66 72 6f | ..When.the.ARP.Reply.arrives.fro |
| 70d60 | 6d 20 74 68 65 20 70 65 65 72 2c 20 69 74 73 20 68 61 72 64 77 61 72 65 20 61 64 64 72 65 73 73 | m.the.peer,.its.hardware.address |
| 70d80 | 20 69 73 20 72 65 74 72 69 65 76 65 64 20 61 6e 64 20 74 68 65 20 62 6f 6e 64 69 6e 67 20 64 72 | .is.retrieved.and.the.bonding.dr |
| 70da0 | 69 76 65 72 20 69 6e 69 74 69 61 74 65 73 20 61 6e 20 41 52 50 20 72 65 70 6c 79 20 74 6f 20 74 | iver.initiates.an.ARP.reply.to.t |
| 70dc0 | 68 69 73 20 70 65 65 72 20 61 73 73 69 67 6e 69 6e 67 20 69 74 20 74 6f 20 6f 6e 65 20 6f 66 20 | his.peer.assigning.it.to.one.of. |
| 70de0 | 74 68 65 20 73 6c 61 76 65 73 20 69 6e 20 74 68 65 20 62 6f 6e 64 2e 20 41 20 70 72 6f 62 6c 65 | the.slaves.in.the.bond..A.proble |
| 70e00 | 6d 61 74 69 63 20 6f 75 74 63 6f 6d 65 20 6f 66 20 75 73 69 6e 67 20 41 52 50 20 6e 65 67 6f 74 | matic.outcome.of.using.ARP.negot |
| 70e20 | 69 61 74 69 6f 6e 20 66 6f 72 20 62 61 6c 61 6e 63 69 6e 67 20 69 73 20 74 68 61 74 20 65 61 63 | iation.for.balancing.is.that.eac |
| 70e40 | 68 20 74 69 6d 65 20 74 68 61 74 20 61 6e 20 41 52 50 20 72 65 71 75 65 73 74 20 69 73 20 62 72 | h.time.that.an.ARP.request.is.br |
| 70e60 | 6f 61 64 63 61 73 74 20 69 74 20 75 73 65 73 20 74 68 65 20 68 61 72 64 77 61 72 65 20 61 64 64 | oadcast.it.uses.the.hardware.add |
| 70e80 | 72 65 73 73 20 6f 66 20 74 68 65 20 62 6f 6e 64 2e 20 48 65 6e 63 65 2c 20 70 65 65 72 73 20 6c | ress.of.the.bond..Hence,.peers.l |
| 70ea0 | 65 61 72 6e 20 74 68 65 20 68 61 72 64 77 61 72 65 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 | earn.the.hardware.address.of.the |
| 70ec0 | 20 62 6f 6e 64 20 61 6e 64 20 74 68 65 20 62 61 6c 61 6e 63 69 6e 67 20 6f 66 20 72 65 63 65 69 | .bond.and.the.balancing.of.recei |
| 70ee0 | 76 65 20 74 72 61 66 66 69 63 20 63 6f 6c 6c 61 70 73 65 73 20 74 6f 20 74 68 65 20 63 75 72 72 | ve.traffic.collapses.to.the.curr |
| 70f00 | 65 6e 74 20 73 6c 61 76 65 2e 20 54 68 69 73 20 69 73 20 68 61 6e 64 6c 65 64 20 62 79 20 73 65 | ent.slave..This.is.handled.by.se |
| 70f20 | 6e 64 69 6e 67 20 75 70 64 61 74 65 73 20 28 41 52 50 20 52 65 70 6c 69 65 73 29 20 74 6f 20 61 | nding.updates.(ARP.Replies).to.a |
| 70f40 | 6c 6c 20 74 68 65 20 70 65 65 72 73 20 77 69 74 68 20 74 68 65 69 72 20 69 6e 64 69 76 69 64 75 | ll.the.peers.with.their.individu |
| 70f60 | 61 6c 6c 79 20 61 73 73 69 67 6e 65 64 20 68 61 72 64 77 61 72 65 20 61 64 64 72 65 73 73 20 73 | ally.assigned.hardware.address.s |
| 70f80 | 75 63 68 20 74 68 61 74 20 74 68 65 20 74 72 61 66 66 69 63 20 69 73 20 72 65 64 69 73 74 72 69 | uch.that.the.traffic.is.redistri |
| 70fa0 | 62 75 74 65 64 2e 20 52 65 63 65 69 76 65 20 74 72 61 66 66 69 63 20 69 73 20 61 6c 73 6f 20 72 | buted..Receive.traffic.is.also.r |
| 70fc0 | 65 64 69 73 74 72 69 62 75 74 65 64 20 77 68 65 6e 20 61 20 6e 65 77 20 73 6c 61 76 65 20 69 73 | edistributed.when.a.new.slave.is |
| 70fe0 | 20 61 64 64 65 64 20 74 6f 20 74 68 65 20 62 6f 6e 64 20 61 6e 64 20 77 68 65 6e 20 61 6e 20 69 | .added.to.the.bond.and.when.an.i |
| 71000 | 6e 61 63 74 69 76 65 20 73 6c 61 76 65 20 69 73 20 72 65 2d 61 63 74 69 76 61 74 65 64 2e 20 54 | nactive.slave.is.re-activated..T |
| 71020 | 68 65 20 72 65 63 65 69 76 65 20 6c 6f 61 64 20 69 73 20 64 69 73 74 72 69 62 75 74 65 64 20 73 | he.receive.load.is.distributed.s |
| 71040 | 65 71 75 65 6e 74 69 61 6c 6c 79 20 28 72 6f 75 6e 64 20 72 6f 62 69 6e 29 20 61 6d 6f 6e 67 20 | equentially.(round.robin).among. |
| 71060 | 74 68 65 20 67 72 6f 75 70 20 6f 66 20 68 69 67 68 65 73 74 20 73 70 65 65 64 20 73 6c 61 76 65 | the.group.of.highest.speed.slave |
| 71080 | 73 20 69 6e 20 74 68 65 20 62 6f 6e 64 2e 00 52 65 63 65 69 76 65 64 20 52 41 44 49 55 53 20 61 | s.in.the.bond..Received.RADIUS.a |
| 710a0 | 74 74 72 69 62 75 74 65 73 20 68 61 76 65 20 61 20 68 69 67 68 65 72 20 70 72 69 6f 72 69 74 79 | ttributes.have.a.higher.priority |
| 710c0 | 20 74 68 61 6e 20 70 61 72 61 6d 65 74 65 72 73 20 64 65 66 69 6e 65 64 20 77 69 74 68 69 6e 20 | .than.parameters.defined.within. |
| 710e0 | 74 68 65 20 43 4c 49 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2c 20 72 65 66 65 72 20 74 6f 20 | the.CLI.configuration,.refer.to. |
| 71100 | 74 68 65 20 65 78 70 6c 61 6e 61 74 69 6f 6e 20 62 65 6c 6f 77 2e 00 52 65 63 6f 6d 6d 65 6e 64 | the.explanation.below..Recommend |
| 71120 | 65 64 20 66 6f 72 20 6c 61 72 67 65 72 20 69 6e 73 74 61 6c 6c 61 74 69 6f 6e 73 2e 00 52 65 63 | ed.for.larger.installations..Rec |
| 71140 | 6f 72 64 20 74 79 70 65 73 00 52 65 64 69 72 65 63 74 20 48 54 54 50 20 74 6f 20 48 54 54 50 53 | ord.types.Redirect.HTTP.to.HTTPS |
| 71160 | 00 52 65 64 69 72 65 63 74 20 4d 69 63 72 6f 73 6f 66 74 20 52 44 50 20 74 72 61 66 66 69 63 20 | .Redirect.Microsoft.RDP.traffic. |
| 71180 | 66 72 6f 6d 20 74 68 65 20 69 6e 74 65 72 6e 61 6c 20 28 4c 41 4e 2c 20 70 72 69 76 61 74 65 29 | from.the.internal.(LAN,.private) |
| 711a0 | 20 6e 65 74 77 6f 72 6b 20 76 69 61 20 3a 72 65 66 3a 60 64 65 73 74 69 6e 61 74 69 6f 6e 2d 6e | .network.via.:ref:`destination-n |
| 711c0 | 61 74 60 20 69 6e 20 72 75 6c 65 20 31 31 30 20 74 6f 20 74 68 65 20 69 6e 74 65 72 6e 61 6c 2c | at`.in.rule.110.to.the.internal, |
| 711e0 | 20 70 72 69 76 61 74 65 20 68 6f 73 74 20 31 39 32 2e 30 2e 32 2e 34 30 2e 20 57 65 20 61 6c 73 | .private.host.192.0.2.40..We.als |
| 71200 | 6f 20 6e 65 65 64 20 61 20 3a 72 65 66 3a 60 73 6f 75 72 63 65 2d 6e 61 74 60 20 72 75 6c 65 20 | o.need.a.:ref:`source-nat`.rule. |
| 71220 | 31 31 30 20 66 6f 72 20 74 68 65 20 72 65 76 65 72 73 65 20 70 61 74 68 20 6f 66 20 74 68 65 20 | 110.for.the.reverse.path.of.the. |
| 71240 | 74 72 61 66 66 69 63 2e 20 54 68 65 20 69 6e 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 20 31 39 | traffic..The.internal.network.19 |
| 71260 | 32 2e 30 2e 32 2e 30 2f 32 34 20 69 73 20 72 65 61 63 68 61 62 6c 65 20 76 69 61 20 69 6e 74 65 | 2.0.2.0/24.is.reachable.via.inte |
| 71280 | 72 66 61 63 65 20 60 65 74 68 30 2e 31 30 60 2e 00 52 65 64 69 72 65 63 74 20 4d 69 63 72 6f 73 | rface.`eth0.10`..Redirect.Micros |
| 712a0 | 6f 66 74 20 52 44 50 20 74 72 61 66 66 69 63 20 66 72 6f 6d 20 74 68 65 20 6f 75 74 73 69 64 65 | oft.RDP.traffic.from.the.outside |
| 712c0 | 20 28 57 41 4e 2c 20 65 78 74 65 72 6e 61 6c 29 20 77 6f 72 6c 64 20 76 69 61 20 3a 72 65 66 3a | .(WAN,.external).world.via.:ref: |
| 712e0 | 60 64 65 73 74 69 6e 61 74 69 6f 6e 2d 6e 61 74 60 20 69 6e 20 72 75 6c 65 20 31 30 30 20 74 6f | `destination-nat`.in.rule.100.to |
| 71300 | 20 74 68 65 20 69 6e 74 65 72 6e 61 6c 2c 20 70 72 69 76 61 74 65 20 68 6f 73 74 20 31 39 32 2e | .the.internal,.private.host.192. |
| 71320 | 30 2e 32 2e 34 30 2e 00 52 65 64 69 72 65 63 74 20 55 52 4c 20 74 6f 20 61 20 6e 65 77 20 6c 6f | 0.2.40..Redirect.URL.to.a.new.lo |
| 71340 | 63 61 74 69 6f 6e 00 52 65 64 69 73 74 72 69 62 75 74 69 6f 6e 20 43 6f 6e 66 69 67 75 72 61 74 | cation.Redistribution.Configurat |
| 71360 | 69 6f 6e 00 52 65 64 75 6e 64 61 6e 63 79 20 61 6e 64 20 6c 6f 61 64 20 73 68 61 72 69 6e 67 2e | ion.Redundancy.and.load.sharing. |
| 71380 | 20 54 68 65 72 65 20 61 72 65 20 6d 75 6c 74 69 70 6c 65 20 4e 41 54 36 36 20 64 65 76 69 63 65 | .There.are.multiple.NAT66.device |
| 713a0 | 73 20 61 74 20 74 68 65 20 65 64 67 65 20 6f 66 20 61 6e 20 49 50 76 36 20 6e 65 74 77 6f 72 6b | s.at.the.edge.of.an.IPv6.network |
| 713c0 | 20 74 6f 20 61 6e 6f 74 68 65 72 20 49 50 76 36 20 6e 65 74 77 6f 72 6b 2e 20 54 68 65 20 70 61 | .to.another.IPv6.network..The.pa |
| 713e0 | 74 68 20 74 68 72 6f 75 67 68 20 74 68 65 20 4e 41 54 36 36 20 64 65 76 69 63 65 20 74 6f 20 61 | th.through.the.NAT66.device.to.a |
| 71400 | 6e 6f 74 68 65 72 20 49 50 76 36 20 6e 65 74 77 6f 72 6b 20 66 6f 72 6d 73 20 61 6e 20 65 71 75 | nother.IPv6.network.forms.an.equ |
| 71420 | 69 76 61 6c 65 6e 74 20 72 6f 75 74 65 2c 20 61 6e 64 20 74 72 61 66 66 69 63 20 63 61 6e 20 62 | ivalent.route,.and.traffic.can.b |
| 71440 | 65 20 6c 6f 61 64 2d 73 68 61 72 65 64 20 6f 6e 20 74 68 65 73 65 20 4e 41 54 36 36 20 64 65 76 | e.load-shared.on.these.NAT66.dev |
| 71460 | 69 63 65 73 2e 20 49 6e 20 74 68 69 73 20 63 61 73 65 2c 20 79 6f 75 20 63 61 6e 20 63 6f 6e 66 | ices..In.this.case,.you.can.conf |
| 71480 | 69 67 75 72 65 20 74 68 65 20 73 61 6d 65 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 74 72 | igure.the.same.source.address.tr |
| 714a0 | 61 6e 73 6c 61 74 69 6f 6e 20 72 75 6c 65 73 20 6f 6e 20 74 68 65 73 65 20 4e 41 54 36 36 20 64 | anslation.rules.on.these.NAT66.d |
| 714c0 | 65 76 69 63 65 73 2c 20 73 6f 20 74 68 61 74 20 61 6e 79 20 4e 41 54 36 36 20 64 65 76 69 63 65 | evices,.so.that.any.NAT66.device |
| 714e0 | 20 63 61 6e 20 68 61 6e 64 6c 65 20 49 50 76 36 20 74 72 61 66 66 69 63 20 62 65 74 77 65 65 6e | .can.handle.IPv6.traffic.between |
| 71500 | 20 64 69 66 66 65 72 65 6e 74 20 73 69 74 65 73 2e 00 52 65 67 69 73 74 65 72 20 44 4e 53 20 72 | .different.sites..Register.DNS.r |
| 71520 | 65 63 6f 72 64 20 60 60 65 78 61 6d 70 6c 65 2e 76 79 6f 73 2e 69 6f 60 60 20 6f 6e 20 44 4e 53 | ecord.``example.vyos.io``.on.DNS |
| 71540 | 20 73 65 72 76 65 72 20 60 60 6e 73 31 2e 76 79 6f 73 2e 69 6f 60 60 00 52 65 67 75 6c 61 72 20 | .server.``ns1.vyos.io``.Regular. |
| 71560 | 56 4c 41 4e 73 20 28 38 30 32 2e 31 71 29 00 52 65 67 75 6c 61 72 20 65 78 70 72 65 73 73 69 6f | VLANs.(802.1q).Regular.expressio |
| 71580 | 6e 20 74 6f 20 6d 61 74 63 68 20 61 67 61 69 6e 73 74 20 61 20 63 6f 6d 6d 75 6e 69 74 79 2d 6c | n.to.match.against.a.community-l |
| 715a0 | 69 73 74 2e 00 52 65 67 75 6c 61 72 20 65 78 70 72 65 73 73 69 6f 6e 20 74 6f 20 6d 61 74 63 68 | ist..Regular.expression.to.match |
| 715c0 | 20 61 67 61 69 6e 73 74 20 61 20 6c 61 72 67 65 20 63 6f 6d 6d 75 6e 69 74 79 20 6c 69 73 74 2e | .against.a.large.community.list. |
| 715e0 | 00 52 65 67 75 6c 61 72 20 65 78 70 72 65 73 73 69 6f 6e 20 74 6f 20 6d 61 74 63 68 20 61 67 61 | .Regular.expression.to.match.aga |
| 71600 | 69 6e 73 74 20 61 6e 20 41 53 20 70 61 74 68 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 22 36 34 | inst.an.AS.path..For.example."64 |
| 71620 | 35 30 31 20 36 34 35 30 32 22 2e 00 52 65 67 75 6c 61 72 20 65 78 70 72 65 73 73 69 6f 6e 20 74 | 501.64502"..Regular.expression.t |
| 71640 | 6f 20 6d 61 74 63 68 20 61 67 61 69 6e 73 74 20 61 6e 20 65 78 74 65 6e 64 65 64 20 63 6f 6d 6d | o.match.against.an.extended.comm |
| 71660 | 75 6e 69 74 79 20 6c 69 73 74 2c 20 77 68 65 72 65 20 74 65 78 74 20 63 6f 75 6c 64 20 62 65 3a | unity.list,.where.text.could.be: |
| 71680 | 00 52 65 6a 65 63 74 20 44 48 43 50 20 6c 65 61 73 65 73 20 66 72 6f 6d 20 61 20 67 69 76 65 6e | .Reject.DHCP.leases.from.a.given |
| 716a0 | 20 61 64 64 72 65 73 73 20 6f 72 20 72 61 6e 67 65 2e 20 54 68 69 73 20 69 73 20 75 73 65 66 75 | .address.or.range..This.is.usefu |
| 716c0 | 6c 20 77 68 65 6e 20 61 20 6d 6f 64 65 6d 20 67 69 76 65 73 20 61 20 6c 6f 63 61 6c 20 49 50 20 | l.when.a.modem.gives.a.local.IP. |
| 716e0 | 77 68 65 6e 20 66 69 72 73 74 20 73 74 61 72 74 69 6e 67 2e 00 52 65 6d 65 6d 62 65 72 20 73 6f | when.first.starting..Remember.so |
| 71700 | 75 72 63 65 20 49 50 20 69 6e 20 73 65 63 6f 6e 64 73 20 62 65 66 6f 72 65 20 72 65 73 65 74 20 | urce.IP.in.seconds.before.reset. |
| 71720 | 74 68 65 69 72 20 73 63 6f 72 65 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 31 38 30 30 | their.score..The.default.is.1800 |
| 71740 | 2e 00 52 65 6d 6f 74 65 20 41 63 63 65 73 73 00 52 65 6d 6f 74 65 20 41 63 63 65 73 73 20 22 52 | ..Remote.Access.Remote.Access."R |
| 71760 | 6f 61 64 57 61 72 72 69 6f 72 22 20 45 78 61 6d 70 6c 65 00 52 65 6d 6f 74 65 20 41 63 63 65 73 | oadWarrior".Example.Remote.Acces |
| 71780 | 73 20 22 52 6f 61 64 57 61 72 72 69 6f 72 22 20 63 6c 69 65 6e 74 73 00 52 65 6d 6f 74 65 20 43 | s."RoadWarrior".clients.Remote.C |
| 717a0 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 2d 20 41 6e 6e 6f 74 61 74 65 64 3a 00 52 65 6d 6f 74 65 | onfiguration.-.Annotated:.Remote |
| 717c0 | 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 00 52 65 6d 6f 74 65 20 48 6f 73 74 00 52 65 6d 6f | .Configuration:.Remote.Host.Remo |
| 717e0 | 74 65 20 4c 6f 6b 69 20 70 6f 72 74 00 52 65 6d 6f 74 65 20 4c 6f 6b 69 20 75 72 6c 00 52 65 6d | te.Loki.port.Remote.Loki.url.Rem |
| 71800 | 6f 74 65 20 55 52 4c 00 52 65 6d 6f 74 65 20 55 52 4c 20 74 6f 20 53 70 6c 75 6e 6b 20 63 6f 6c | ote.URL.Remote.URL.to.Splunk.col |
| 71820 | 6c 65 63 74 6f 72 00 52 65 6d 6f 74 65 20 55 52 4c 2e 00 52 65 6d 6f 74 65 20 60 60 49 6e 66 6c | lector.Remote.URL..Remote.``Infl |
| 71840 | 75 78 44 42 60 60 20 62 75 63 6b 65 74 20 6e 61 6d 65 00 52 65 6d 6f 74 65 20 64 61 74 61 62 61 | uxDB``.bucket.name.Remote.databa |
| 71860 | 73 65 20 6e 61 6d 65 2e 00 52 65 6d 6f 74 65 20 70 65 65 72 20 49 50 20 60 3c 61 64 64 72 65 73 | se.name..Remote.peer.IP.`<addres |
| 71880 | 73 3e 60 20 6f 66 20 74 68 65 20 73 65 63 6f 6e 64 20 44 48 43 50 20 73 65 72 76 65 72 20 69 6e | s>`.of.the.second.DHCP.server.in |
| 718a0 | 20 74 68 69 73 20 48 41 20 63 6c 75 73 74 65 72 2e 00 52 65 6d 6f 74 65 20 70 65 65 72 20 49 50 | .this.HA.cluster..Remote.peer.IP |
| 718c0 | 20 60 3c 61 64 64 72 65 73 73 3e 60 20 6f 66 20 74 68 65 20 73 65 63 6f 6e 64 20 44 48 43 50 20 | .`<address>`.of.the.second.DHCP. |
| 718e0 | 73 65 72 76 65 72 20 69 6e 20 74 68 69 73 20 66 61 69 6c 6f 76 65 72 20 63 6c 75 73 74 65 72 2e | server.in.this.failover.cluster. |
| 71900 | 00 52 65 6d 6f 74 65 20 70 6f 72 74 00 52 65 6d 6f 74 65 20 74 72 61 6e 73 6d 69 73 73 69 6f 6e | .Remote.port.Remote.transmission |
| 71920 | 20 69 6e 74 65 72 76 61 6c 20 77 69 6c 6c 20 62 65 20 6d 75 6c 74 69 70 6c 69 65 64 20 62 79 20 | .interval.will.be.multiplied.by. |
| 71940 | 74 68 69 73 20 76 61 6c 75 65 00 52 65 6e 61 6d 69 6e 67 20 63 6c 69 65 6e 74 73 20 69 6e 74 65 | this.value.Renaming.clients.inte |
| 71960 | 72 66 61 63 65 73 20 62 79 20 52 41 44 49 55 53 00 52 65 70 65 61 74 20 74 68 65 20 70 72 6f 63 | rfaces.by.RADIUS.Repeat.the.proc |
| 71980 | 65 64 75 72 65 20 6f 6e 20 74 68 65 20 6f 74 68 65 72 20 72 6f 75 74 65 72 2e 00 52 65 70 6c 61 | edure.on.the.other.router..Repla |
| 719a0 | 79 20 70 72 6f 74 65 63 74 69 6f 6e 00 52 65 71 75 65 73 74 20 6f 6e 6c 79 20 61 20 74 65 6d 70 | y.protection.Request.only.a.temp |
| 719c0 | 6f 72 61 72 79 20 61 64 64 72 65 73 73 20 61 6e 64 20 6e 6f 74 20 66 6f 72 6d 20 61 6e 20 49 41 | orary.address.and.not.form.an.IA |
| 719e0 | 5f 4e 41 20 28 49 64 65 6e 74 69 74 79 20 41 73 73 6f 63 69 61 74 69 6f 6e 20 66 6f 72 20 4e 6f | _NA.(Identity.Association.for.No |
| 71a00 | 6e 2d 74 65 6d 70 6f 72 61 72 79 20 41 64 64 72 65 73 73 65 73 29 20 70 61 72 74 6e 65 72 73 68 | n-temporary.Addresses).partnersh |
| 71a20 | 69 70 2e 00 52 65 71 75 65 73 74 73 20 61 72 65 20 66 6f 72 77 61 72 64 65 64 20 74 68 72 6f 75 | ip..Requests.are.forwarded.throu |
| 71a40 | 67 68 20 60 60 65 74 68 32 60 60 20 61 73 20 74 68 65 20 60 75 70 73 74 72 65 61 6d 20 69 6e 74 | gh.``eth2``.as.the.`upstream.int |
| 71a60 | 65 72 66 61 63 65 60 00 52 65 71 75 69 72 65 20 74 68 65 20 70 65 65 72 20 74 6f 20 61 75 74 68 | erface`.Require.the.peer.to.auth |
| 71a80 | 65 6e 74 69 63 61 74 65 20 69 74 73 65 6c 66 20 75 73 69 6e 67 20 6f 6e 65 20 6f 66 20 74 68 65 | enticate.itself.using.one.of.the |
| 71aa0 | 20 66 6f 6c 6c 6f 77 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 73 3a 20 70 61 70 2c 20 63 68 61 70 2c | .following.protocols:.pap,.chap, |
| 71ac0 | 20 6d 73 63 68 61 70 2c 20 6d 73 63 68 61 70 2d 76 32 2e 00 52 65 71 75 69 72 65 6d 65 6e 74 73 | .mschap,.mschap-v2..Requirements |
| 71ae0 | 00 52 65 71 75 69 72 65 6d 65 6e 74 73 20 74 6f 20 65 6e 61 62 6c 65 20 73 79 6e 70 72 6f 78 79 | .Requirements.to.enable.synproxy |
| 71b00 | 3a 00 52 65 71 75 69 72 65 6d 65 6e 74 73 3a 00 52 65 73 65 72 76 65 64 20 50 6f 72 74 73 3a 20 | :.Requirements:.Reserved.Ports:. |
| 71b20 | 41 73 73 75 6d 65 20 31 30 32 34 20 70 6f 72 74 73 20 61 72 65 20 72 65 73 65 72 76 65 64 20 66 | Assume.1024.ports.are.reserved.f |
| 71b40 | 6f 72 20 77 65 6c 6c 2d 6b 6e 6f 77 6e 20 73 65 72 76 69 63 65 73 20 61 6e 64 20 61 64 6d 69 6e | or.well-known.services.and.admin |
| 71b60 | 69 73 74 72 61 74 69 76 65 20 70 75 72 70 6f 73 65 73 2e 00 52 65 73 65 74 00 52 65 73 65 74 20 | istrative.purposes..Reset.Reset. |
| 71b80 | 4f 70 65 6e 56 50 4e 00 52 65 73 65 74 20 61 6c 6c 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 49 | OpenVPN.Reset.all.site-to-site.I |
| 71ba0 | 50 53 65 63 20 56 50 4e 20 73 65 73 73 69 6f 6e 73 2e 20 49 74 20 74 65 72 6d 69 6e 61 74 65 73 | PSec.VPN.sessions..It.terminates |
| 71bc0 | 20 61 6c 6c 20 61 63 74 69 76 65 20 63 68 69 6c 64 5f 73 61 20 61 6e 64 20 72 65 69 6e 69 74 69 | .all.active.child_sa.and.reiniti |
| 71be0 | 61 74 65 73 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 52 65 73 65 74 20 61 6c 6c 20 74 | ates.the.connection..Reset.all.t |
| 71c00 | 75 6e 6e 65 6c 73 20 66 6f 72 20 61 20 67 69 76 65 6e 20 70 65 65 72 2c 20 63 61 6e 20 73 70 65 | unnels.for.a.given.peer,.can.spe |
| 71c20 | 63 69 66 79 20 74 75 6e 6e 65 6c 20 6f 72 20 76 74 69 20 69 6e 74 65 72 66 61 63 65 2e 20 49 74 | cify.tunnel.or.vti.interface..It |
| 71c40 | 20 74 65 72 6d 69 6e 61 74 65 73 20 61 20 73 70 65 63 69 66 69 63 20 63 68 69 6c 64 5f 73 61 20 | .terminates.a.specific.child_sa. |
| 71c60 | 61 6e 64 20 72 65 69 6e 69 74 69 61 74 65 73 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 | and.reinitiates.the.connection.. |
| 71c80 | 52 65 73 65 74 20 63 6f 6d 6d 61 6e 64 73 00 52 65 73 65 74 73 20 74 68 65 20 6c 6f 63 61 6c 20 | Reset.commands.Resets.the.local. |
| 71ca0 | 44 4e 53 20 66 6f 72 77 61 72 64 69 6e 67 20 63 61 63 68 65 20 64 61 74 61 62 61 73 65 2e 20 59 | DNS.forwarding.cache.database..Y |
| 71cc0 | 6f 75 20 63 61 6e 20 72 65 73 65 74 20 74 68 65 20 63 61 63 68 65 20 66 6f 72 20 61 6c 6c 20 65 | ou.can.reset.the.cache.for.all.e |
| 71ce0 | 6e 74 72 69 65 73 20 6f 72 20 6f 6e 6c 79 20 66 6f 72 20 65 6e 74 72 69 65 73 20 74 6f 20 61 20 | ntries.or.only.for.entries.to.a. |
| 71d00 | 73 70 65 63 69 66 69 63 20 64 6f 6d 61 69 6e 2e 00 52 65 73 74 61 72 74 00 52 65 73 74 61 72 74 | specific.domain..Restart.Restart |
| 71d20 | 20 44 48 43 50 20 72 65 6c 61 79 20 73 65 72 76 69 63 65 00 52 65 73 74 61 72 74 20 44 48 43 50 | .DHCP.relay.service.Restart.DHCP |
| 71d40 | 76 36 20 72 65 6c 61 79 20 61 67 65 6e 74 20 69 6d 6d 65 64 69 61 74 65 6c 79 2e 00 52 65 73 74 | v6.relay.agent.immediately..Rest |
| 71d60 | 61 72 74 20 61 20 67 69 76 65 6e 20 63 6f 6e 74 61 69 6e 65 72 00 52 65 73 74 61 72 74 20 6d 44 | art.a.given.container.Restart.mD |
| 71d80 | 4e 53 20 72 65 70 65 61 74 65 72 20 73 65 72 76 69 63 65 2e 00 52 65 73 74 61 72 74 20 74 68 65 | NS.repeater.service..Restart.the |
| 71da0 | 20 44 48 43 50 20 73 65 72 76 65 72 00 52 65 73 74 61 72 74 20 74 68 65 20 49 47 4d 50 20 70 72 | .DHCP.server.Restart.the.IGMP.pr |
| 71dc0 | 6f 78 79 20 70 72 6f 63 65 73 73 2e 00 52 65 73 74 61 72 74 20 74 68 65 20 49 50 73 65 63 20 56 | oxy.process..Restart.the.IPsec.V |
| 71de0 | 50 4e 20 70 72 6f 63 65 73 73 20 61 6e 64 20 72 65 2d 65 73 74 61 62 6c 69 73 68 65 73 20 74 68 | PN.process.and.re-establishes.th |
| 71e00 | 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 52 65 73 74 61 72 74 20 74 68 65 20 53 53 48 20 64 61 | e.connection..Restart.the.SSH.da |
| 71e20 | 65 6d 6f 6e 20 70 72 6f 63 65 73 73 2c 20 74 68 65 20 63 75 72 72 65 6e 74 20 73 65 73 73 69 6f | emon.process,.the.current.sessio |
| 71e40 | 6e 20 69 73 20 6e 6f 74 20 61 66 66 65 63 74 65 64 2c 20 6f 6e 6c 79 20 74 68 65 20 62 61 63 6b | n.is.not.affected,.only.the.back |
| 71e60 | 67 72 6f 75 6e 64 20 64 61 65 6d 6f 6e 20 69 73 20 72 65 73 74 61 72 74 65 64 2e 00 52 65 73 74 | ground.daemon.is.restarted..Rest |
| 71e80 | 61 72 74 73 20 74 68 65 20 44 4e 53 20 72 65 63 75 72 73 6f 72 20 70 72 6f 63 65 73 73 2e 20 54 | arts.the.DNS.recursor.process..T |
| 71ea0 | 68 69 73 20 61 6c 73 6f 20 69 6e 76 61 6c 69 64 61 74 65 73 20 74 68 65 20 6c 6f 63 61 6c 20 44 | his.also.invalidates.the.local.D |
| 71ec0 | 4e 53 20 66 6f 72 77 61 72 64 69 6e 67 20 63 61 63 68 65 2e 00 52 65 73 74 61 72 74 73 20 74 68 | NS.forwarding.cache..Restarts.th |
| 71ee0 | 65 20 73 65 72 76 69 63 65 2e 20 49 74 20 63 68 65 63 6b 73 20 69 66 20 74 68 65 20 53 75 72 69 | e.service..It.checks.if.the.Suri |
| 71f00 | 63 61 74 61 20 73 65 72 76 69 63 65 20 69 73 20 61 63 74 69 76 65 20 62 65 66 6f 72 65 20 61 74 | cata.service.is.active.before.at |
| 71f20 | 74 65 6d 70 74 69 6e 67 20 74 6f 20 72 65 73 74 61 72 74 20 69 74 2e 20 49 66 20 69 74 20 69 73 | tempting.to.restart.it..If.it.is |
| 71f40 | 20 6e 6f 74 20 61 63 74 69 76 65 2c 20 61 20 6d 65 73 73 61 67 65 20 69 6e 64 69 63 61 74 65 73 | .not.active,.a.message.indicates |
| 71f60 | 20 74 68 61 74 20 74 68 65 20 73 65 72 76 69 63 65 20 69 73 20 6e 6f 74 20 63 6f 6e 66 69 67 75 | .that.the.service.is.not.configu |
| 71f80 | 72 65 64 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 75 73 65 64 20 77 68 65 6e 20 61 | red..This.command.is.used.when.a |
| 71fa0 | 64 64 69 6e 67 20 6e 65 77 20 72 75 6c 65 73 20 6d 61 6e 75 61 6c 6c 79 2e 00 52 65 73 75 6c 74 | dding.new.rules.manually..Result |
| 71fc0 | 69 6e 67 20 69 6e 00 52 65 73 75 6c 74 73 20 69 6e 3a 00 52 65 74 72 61 6e 73 6d 69 74 20 54 69 | ing.in.Results.in:.Retransmit.Ti |
| 71fe0 | 6d 65 72 00 52 65 74 72 69 65 76 65 20 63 75 72 72 65 6e 74 20 73 74 61 74 69 73 74 69 63 73 20 | mer.Retrieve.current.statistics. |
| 72000 | 6f 66 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 73 75 62 73 79 73 74 65 6d | of.connection.tracking.subsystem |
| 72020 | 2e 00 52 65 74 72 69 65 76 65 20 63 75 72 72 65 6e 74 20 73 74 61 74 75 73 20 6f 66 20 63 6f 6e | ..Retrieve.current.status.of.con |
| 72040 | 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 73 75 62 73 79 73 74 65 6d 2e 00 52 65 74 72 | nection.tracking.subsystem..Retr |
| 72060 | 69 65 76 65 20 70 75 62 6c 69 63 20 6b 65 79 20 70 6f 72 74 69 6f 6e 20 66 72 6f 6d 20 63 6f 6e | ieve.public.key.portion.from.con |
| 72080 | 66 69 67 75 72 65 64 20 57 49 72 65 47 75 61 72 64 20 69 6e 74 65 72 66 61 63 65 2e 00 52 65 76 | figured.WIreGuard.interface..Rev |
| 720a0 | 65 72 73 65 2d 70 72 6f 78 79 00 52 6f 75 6e 64 20 52 6f 62 69 6e 00 52 6f 75 74 65 20 41 67 67 | erse-proxy.Round.Robin.Route.Agg |
| 720c0 | 72 65 67 61 74 69 6f 6e 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 52 6f 75 74 65 20 44 61 6d | regation.Configuration.Route.Dam |
| 720e0 | 70 65 6e 69 6e 67 00 52 6f 75 74 65 20 46 69 6c 74 65 72 69 6e 67 00 52 6f 75 74 65 20 46 69 6c | pening.Route.Filtering.Route.Fil |
| 72100 | 74 65 72 69 6e 67 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 52 6f 75 74 65 20 4d 61 70 00 52 | tering.Configuration.Route.Map.R |
| 72120 | 6f 75 74 65 20 4d 61 70 20 50 6f 6c 69 63 79 00 52 6f 75 74 65 20 52 65 64 69 73 74 72 69 62 75 | oute.Map.Policy.Route.Redistribu |
| 72140 | 74 69 6f 6e 00 52 6f 75 74 65 20 52 65 66 6c 65 63 74 6f 72 20 43 6f 6e 66 69 67 75 72 61 74 69 | tion.Route.Reflector.Configurati |
| 72160 | 6f 6e 00 52 6f 75 74 65 20 53 65 6c 65 63 74 69 6f 6e 00 52 6f 75 74 65 20 53 65 6c 65 63 74 69 | on.Route.Selection.Route.Selecti |
| 72180 | 6f 6e 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 52 6f 75 74 65 20 61 6e 64 20 52 6f 75 74 65 | on.Configuration.Route.and.Route |
| 721a0 | 36 20 50 6f 6c 69 63 79 00 52 6f 75 74 65 20 64 61 6d 70 65 6e 69 6e 67 20 77 69 63 68 20 64 65 | 6.Policy.Route.dampening.wich.de |
| 721c0 | 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 32 34 33 39 60 20 65 6e 61 62 6c 65 73 20 79 | scribed.in.:rfc:`2439`.enables.y |
| 721e0 | 6f 75 20 74 6f 20 69 64 65 6e 74 69 66 79 20 72 6f 75 74 65 73 20 74 68 61 74 20 72 65 70 65 61 | ou.to.identify.routes.that.repea |
| 72200 | 74 65 64 6c 79 20 66 61 69 6c 20 61 6e 64 20 72 65 74 75 72 6e 2e 20 49 66 20 72 6f 75 74 65 20 | tedly.fail.and.return..If.route. |
| 72220 | 64 61 6d 70 65 6e 69 6e 67 20 69 73 20 65 6e 61 62 6c 65 64 2c 20 61 6e 20 75 6e 73 74 61 62 6c | dampening.is.enabled,.an.unstabl |
| 72240 | 65 20 72 6f 75 74 65 20 61 63 63 75 6d 75 6c 61 74 65 73 20 70 65 6e 61 6c 74 69 65 73 20 65 61 | e.route.accumulates.penalties.ea |
| 72260 | 63 68 20 74 69 6d 65 20 74 68 65 20 72 6f 75 74 65 20 66 61 69 6c 73 20 61 6e 64 20 72 65 74 75 | ch.time.the.route.fails.and.retu |
| 72280 | 72 6e 73 2e 20 49 66 20 74 68 65 20 61 63 63 75 6d 75 6c 61 74 65 64 20 70 65 6e 61 6c 74 69 65 | rns..If.the.accumulated.penaltie |
| 722a0 | 73 20 65 78 63 65 65 64 20 61 20 74 68 72 65 73 68 6f 6c 64 2c 20 74 68 65 20 72 6f 75 74 65 20 | s.exceed.a.threshold,.the.route. |
| 722c0 | 69 73 20 6e 6f 20 6c 6f 6e 67 65 72 20 61 64 76 65 72 74 69 73 65 64 2e 20 54 68 69 73 20 69 73 | is.no.longer.advertised..This.is |
| 722e0 | 20 72 6f 75 74 65 20 73 75 70 70 72 65 73 73 69 6f 6e 2e 20 52 6f 75 74 65 73 20 74 68 61 74 20 | .route.suppression..Routes.that. |
| 72300 | 68 61 76 65 20 62 65 65 6e 20 73 75 70 70 72 65 73 73 65 64 20 61 72 65 20 72 65 2d 65 6e 74 65 | have.been.suppressed.are.re-ente |
| 72320 | 72 65 64 20 69 6e 74 6f 20 74 68 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 6f 6e 6c 79 20 | red.into.the.routing.table.only. |
| 72340 | 77 68 65 6e 20 74 68 65 20 61 6d 6f 75 6e 74 20 6f 66 20 74 68 65 69 72 20 70 65 6e 61 6c 74 79 | when.the.amount.of.their.penalty |
| 72360 | 20 66 61 6c 6c 73 20 62 65 6c 6f 77 20 61 20 74 68 72 65 73 68 6f 6c 64 2e 00 52 6f 75 74 65 20 | .falls.below.a.threshold..Route. |
| 72380 | 66 69 6c 74 65 72 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 64 20 75 73 69 6e 67 20 61 20 72 6f | filter.can.be.applied.using.a.ro |
| 723a0 | 75 74 65 2d 6d 61 70 3a 00 52 6f 75 74 65 20 6d 61 70 20 69 73 20 61 20 70 6f 77 65 72 66 75 6c | ute-map:.Route.map.is.a.powerful |
| 723c0 | 6c 20 63 6f 6d 6d 61 6e 64 2c 20 74 68 61 74 20 67 69 76 65 73 20 6e 65 74 77 6f 72 6b 20 61 64 | l.command,.that.gives.network.ad |
| 723e0 | 6d 69 6e 69 73 74 72 61 74 6f 72 73 20 61 20 76 65 72 79 20 75 73 65 66 75 6c 20 61 6e 64 20 66 | ministrators.a.very.useful.and.f |
| 72400 | 6c 65 78 69 62 6c 65 20 74 6f 6f 6c 20 66 6f 72 20 74 72 61 66 66 69 63 20 6d 61 6e 69 70 75 6c | lexible.tool.for.traffic.manipul |
| 72420 | 61 74 69 6f 6e 2e 00 52 6f 75 74 65 20 6d 61 70 73 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 | ation..Route.maps.can.be.configu |
| 72440 | 72 65 64 20 74 6f 20 6d 61 74 63 68 20 61 20 73 70 65 63 69 66 69 63 20 52 50 4b 49 20 76 61 6c | red.to.match.a.specific.RPKI.val |
| 72460 | 69 64 61 74 69 6f 6e 20 73 74 61 74 65 2e 20 54 68 69 73 20 61 6c 6c 6f 77 73 20 74 68 65 20 63 | idation.state..This.allows.the.c |
| 72480 | 72 65 61 74 69 6f 6e 20 6f 66 20 6c 6f 63 61 6c 20 70 6f 6c 69 63 69 65 73 2c 20 77 68 69 63 68 | reation.of.local.policies,.which |
| 724a0 | 20 68 61 6e 64 6c 65 20 42 47 50 20 72 6f 75 74 65 73 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 | .handle.BGP.routes.based.on.the. |
| 724c0 | 6f 75 74 63 6f 6d 65 20 6f 66 20 74 68 65 20 50 72 65 66 69 78 20 4f 72 69 67 69 6e 20 56 61 6c | outcome.of.the.Prefix.Origin.Val |
| 724e0 | 69 64 61 74 69 6f 6e 2e 00 52 6f 75 74 65 20 6d 65 74 72 69 63 00 52 6f 75 74 65 20 74 61 67 20 | idation..Route.metric.Route.tag. |
| 72500 | 74 6f 20 6d 61 74 63 68 2e 00 52 6f 75 74 65 72 20 41 64 76 65 72 74 69 73 65 6d 65 6e 74 73 00 | to.match..Router.Advertisements. |
| 72520 | 52 6f 75 74 65 72 20 4c 69 66 65 74 69 6d 65 00 52 6f 75 74 65 72 20 72 65 63 65 69 76 65 73 20 | Router.Lifetime.Router.receives. |
| 72540 | 44 48 43 50 20 63 6c 69 65 6e 74 20 72 65 71 75 65 73 74 73 20 6f 6e 20 60 60 65 74 68 31 60 60 | DHCP.client.requests.on.``eth1`` |
| 72560 | 20 61 6e 64 20 72 65 6c 61 79 73 20 74 68 65 6d 20 74 6f 20 74 68 65 20 73 65 72 76 65 72 20 61 | .and.relays.them.to.the.server.a |
| 72580 | 74 20 31 30 2e 30 2e 31 2e 34 20 6f 6e 20 60 60 65 74 68 32 60 60 2e 00 52 6f 75 74 65 73 20 65 | t.10.0.1.4.on.``eth2``..Routes.e |
| 725a0 | 78 70 6f 72 74 65 64 20 66 72 6f 6d 20 61 20 75 6e 69 63 61 73 74 20 56 52 46 20 74 6f 20 74 68 | xported.from.a.unicast.VRF.to.th |
| 725c0 | 65 20 56 50 4e 20 52 49 42 20 6d 75 73 74 20 62 65 20 61 75 67 6d 65 6e 74 65 64 20 62 79 20 74 | e.VPN.RIB.must.be.augmented.by.t |
| 725e0 | 77 6f 20 70 61 72 61 6d 65 74 65 72 73 3a 00 52 6f 75 74 65 73 20 6f 6e 20 4e 6f 64 65 20 32 3a | wo.parameters:.Routes.on.Node.2: |
| 72600 | 00 52 6f 75 74 65 73 20 74 68 61 74 20 61 72 65 20 73 65 6e 74 20 66 72 6f 6d 20 70 72 6f 76 69 | .Routes.that.are.sent.from.provi |
| 72620 | 64 65 72 2c 20 72 73 2d 73 65 72 76 65 72 2c 20 6f 72 20 74 68 65 20 70 65 65 72 20 6c 6f 63 61 | der,.rs-server,.or.the.peer.loca |
| 72640 | 6c 2d 72 6f 6c 65 20 28 6f 72 20 69 66 20 72 65 63 65 69 76 65 64 20 62 79 20 63 75 73 74 6f 6d | l-role.(or.if.received.by.custom |
| 72660 | 65 72 2c 20 72 73 2d 63 6c 69 65 6e 74 2c 20 6f 72 20 74 68 65 20 70 65 65 72 20 6c 6f 63 61 6c | er,.rs-client,.or.the.peer.local |
| 72680 | 2d 72 6f 6c 65 29 20 77 69 6c 6c 20 62 65 20 6d 61 72 6b 65 64 20 77 69 74 68 20 61 20 6e 65 77 | -role).will.be.marked.with.a.new |
| 726a0 | 20 4f 6e 6c 79 20 74 6f 20 43 75 73 74 6f 6d 65 72 20 28 4f 54 43 29 20 61 74 74 72 69 62 75 74 | .Only.to.Customer.(OTC).attribut |
| 726c0 | 65 2e 00 52 6f 75 74 65 73 20 77 69 74 68 20 61 20 64 69 73 74 61 6e 63 65 20 6f 66 20 32 35 35 | e..Routes.with.a.distance.of.255 |
| 726e0 | 20 61 72 65 20 65 66 66 65 63 74 69 76 65 6c 79 20 64 69 73 61 62 6c 65 64 20 61 6e 64 20 6e 6f | .are.effectively.disabled.and.no |
| 72700 | 74 20 69 6e 73 74 61 6c 6c 65 64 20 69 6e 74 6f 20 74 68 65 20 6b 65 72 6e 65 6c 2e 00 52 6f 75 | t.installed.into.the.kernel..Rou |
| 72720 | 74 65 73 20 77 69 74 68 20 74 68 69 73 20 61 74 74 72 69 62 75 74 65 20 63 61 6e 20 6f 6e 6c 79 | tes.with.this.attribute.can.only |
| 72740 | 20 62 65 20 73 65 6e 74 20 74 6f 20 79 6f 75 72 20 6e 65 69 67 68 62 6f 72 20 69 66 20 79 6f 75 | .be.sent.to.your.neighbor.if.you |
| 72760 | 72 20 6c 6f 63 61 6c 2d 72 6f 6c 65 20 69 73 20 70 72 6f 76 69 64 65 72 20 6f 72 20 72 73 2d 73 | r.local-role.is.provider.or.rs-s |
| 72780 | 65 72 76 65 72 2e 20 52 6f 75 74 65 73 20 77 69 74 68 20 74 68 69 73 20 61 74 74 72 69 62 75 74 | erver..Routes.with.this.attribut |
| 727a0 | 65 20 63 61 6e 20 62 65 20 72 65 63 65 69 76 65 64 20 6f 6e 6c 79 20 69 66 20 79 6f 75 72 20 6c | e.can.be.received.only.if.your.l |
| 727c0 | 6f 63 61 6c 2d 72 6f 6c 65 20 69 73 20 63 75 73 74 6f 6d 65 72 20 6f 72 20 72 73 2d 63 6c 69 65 | ocal-role.is.customer.or.rs-clie |
| 727e0 | 6e 74 2e 00 52 6f 75 74 69 6e 65 00 52 6f 75 74 69 6e 67 00 52 6f 75 74 69 6e 67 20 74 61 62 6c | nt..Routine.Routing.Routing.tabl |
| 72800 | 65 73 20 74 68 61 74 20 77 69 6c 6c 20 62 65 20 75 73 65 64 20 69 6e 20 74 68 69 73 20 65 78 61 | es.that.will.be.used.in.this.exa |
| 72820 | 6d 70 6c 65 20 61 72 65 3a 00 52 75 6c 65 20 31 30 20 6d 61 74 63 68 65 73 20 72 65 71 75 65 73 | mple.are:.Rule.10.matches.reques |
| 72840 | 74 73 20 77 69 74 68 20 74 68 65 20 64 6f 6d 61 69 6e 20 6e 61 6d 65 20 60 60 6e 6f 64 65 31 2e | ts.with.the.domain.name.``node1. |
| 72860 | 65 78 61 6d 70 6c 65 2e 63 6f 6d 60 60 20 66 6f 72 77 61 72 64 73 20 74 6f 20 74 68 65 20 62 61 | example.com``.forwards.to.the.ba |
| 72880 | 63 6b 65 6e 64 20 60 60 62 6b 2d 61 70 69 2d 30 31 60 60 00 52 75 6c 65 20 31 30 20 6d 61 74 63 | ckend.``bk-api-01``.Rule.10.matc |
| 728a0 | 68 65 73 20 72 65 71 75 65 73 74 73 20 77 69 74 68 20 74 68 65 20 65 78 61 63 74 20 55 52 4c 20 | hes.requests.with.the.exact.URL. |
| 728c0 | 70 61 74 68 20 60 60 2f 2e 77 65 6c 6c 2d 6b 6e 6f 77 6e 2f 78 78 78 60 60 20 61 6e 64 20 72 65 | path.``/.well-known/xxx``.and.re |
| 728e0 | 64 69 72 65 63 74 73 20 74 6f 20 6c 6f 63 61 74 69 6f 6e 20 60 60 2f 63 65 72 74 73 2f 60 60 2e | directs.to.location.``/certs/``. |
| 72900 | 00 52 75 6c 65 20 31 31 30 20 69 73 20 68 69 74 2c 20 73 6f 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 | .Rule.110.is.hit,.so.connection. |
| 72920 | 69 73 20 61 63 63 65 70 74 65 64 2e 00 52 75 6c 65 20 32 30 20 6d 61 74 63 68 65 73 20 72 65 71 | is.accepted..Rule.20.matches.req |
| 72940 | 75 65 73 74 73 20 77 69 74 68 20 55 52 4c 20 70 61 74 68 73 20 65 6e 64 69 6e 67 20 69 6e 20 60 | uests.with.URL.paths.ending.in.` |
| 72960 | 60 2f 6d 61 69 6c 60 60 20 6f 72 20 65 78 61 63 74 20 70 61 74 68 20 60 60 2f 65 6d 61 69 6c 2f | `/mail``.or.exact.path.``/email/ |
| 72980 | 62 61 72 60 60 20 72 65 64 69 72 65 63 74 20 74 6f 20 6c 6f 63 61 74 69 6f 6e 20 60 60 2f 70 6f | bar``.redirect.to.location.``/po |
| 729a0 | 73 74 66 69 78 2f 60 60 2e 00 52 75 6c 65 20 32 30 20 6d 61 74 63 68 65 73 20 72 65 71 75 65 73 | stfix/``..Rule.20.matches.reques |
| 729c0 | 74 73 20 77 69 74 68 20 74 68 65 20 64 6f 6d 61 69 6e 20 6e 61 6d 65 20 60 60 6e 6f 64 65 32 2e | ts.with.the.domain.name.``node2. |
| 729e0 | 65 78 61 6d 70 6c 65 2e 63 6f 6d 60 60 20 66 6f 72 77 61 72 64 73 20 74 6f 20 74 68 65 20 62 61 | example.com``.forwards.to.the.ba |
| 72a00 | 63 6b 65 6e 64 20 60 60 62 6b 2d 61 70 69 2d 30 32 60 60 00 52 75 6c 65 20 53 74 61 74 75 73 00 | ckend.``bk-api-02``.Rule.Status. |
| 72a20 | 52 75 6c 65 2d 53 65 74 73 00 52 75 6c 65 2d 73 65 74 20 6f 76 65 72 76 69 65 77 00 52 75 6c 65 | Rule-Sets.Rule-set.overview.Rule |
| 72a40 | 73 00 52 75 6c 65 73 20 61 6c 6c 6f 77 20 74 6f 20 63 6f 6e 74 72 6f 6c 20 61 6e 64 20 72 6f 75 | s.Rules.allow.to.control.and.rou |
| 72a60 | 74 65 20 69 6e 63 6f 6d 69 6e 67 20 74 72 61 66 66 69 63 20 74 6f 20 73 70 65 63 69 66 69 63 20 | te.incoming.traffic.to.specific. |
| 72a80 | 62 61 63 6b 65 6e 64 20 62 61 73 65 64 20 6f 6e 20 70 72 65 64 65 66 69 6e 65 64 20 63 6f 6e 64 | backend.based.on.predefined.cond |
| 72aa0 | 69 74 69 6f 6e 73 2e 20 52 75 6c 65 73 20 61 6c 6c 6f 77 20 74 6f 20 64 65 66 69 6e 65 20 6d 61 | itions..Rules.allow.to.define.ma |
| 72ac0 | 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 20 61 6e 64 20 70 65 72 66 6f 72 6d 20 61 63 74 69 | tching.criteria.and.perform.acti |
| 72ae0 | 6f 6e 20 61 63 63 6f 72 64 69 6e 67 6c 79 2e 00 52 75 6c 65 73 20 77 69 6c 6c 20 62 65 20 63 72 | on.accordingly..Rules.will.be.cr |
| 72b00 | 65 61 74 65 64 20 66 6f 72 20 62 6f 74 68 20 3a 72 65 66 3a 60 73 6f 75 72 63 65 2d 6e 61 74 60 | eated.for.both.:ref:`source-nat` |
| 72b20 | 20 61 6e 64 20 3a 72 65 66 3a 60 64 65 73 74 69 6e 61 74 69 6f 6e 2d 6e 61 74 60 2e 00 52 75 6e | .and.:ref:`destination-nat`..Run |
| 72b40 | 6e 69 6e 67 20 42 65 68 69 6e 64 20 4e 41 54 00 53 4e 41 54 00 53 4e 41 54 36 34 00 53 4e 41 54 | ning.Behind.NAT.SNAT.SNAT64.SNAT |
| 72b60 | 36 36 00 53 4e 4d 50 00 53 4e 4d 50 20 45 78 74 65 6e 73 69 6f 6e 73 00 53 4e 4d 50 20 50 72 6f | 66.SNMP.SNMP.Extensions.SNMP.Pro |
| 72b80 | 74 6f 63 6f 6c 20 56 65 72 73 69 6f 6e 73 00 53 4e 4d 50 20 63 61 6e 20 77 6f 72 6b 20 73 79 6e | tocol.Versions.SNMP.can.work.syn |
| 72ba0 | 63 68 72 6f 6e 6f 75 73 6c 79 20 6f 72 20 61 73 79 6e 63 68 72 6f 6e 6f 75 73 6c 79 2e 20 49 6e | chronously.or.asynchronously..In |
| 72bc0 | 20 73 79 6e 63 68 72 6f 6e 6f 75 73 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6f 6e 2c 20 74 68 65 20 | .synchronous.communication,.the. |
| 72be0 | 6d 6f 6e 69 74 6f 72 69 6e 67 20 73 79 73 74 65 6d 20 71 75 65 72 69 65 73 20 74 68 65 20 72 6f | monitoring.system.queries.the.ro |
| 72c00 | 75 74 65 72 20 70 65 72 69 6f 64 69 63 61 6c 6c 79 2e 20 49 6e 20 61 73 79 6e 63 68 72 6f 6e 6f | uter.periodically..In.asynchrono |
| 72c20 | 75 73 2c 20 74 68 65 20 72 6f 75 74 65 72 20 73 65 6e 64 73 20 6e 6f 74 69 66 69 63 61 74 69 6f | us,.the.router.sends.notificatio |
| 72c40 | 6e 20 74 6f 20 74 68 65 20 22 74 72 61 70 22 20 28 74 68 65 20 6d 6f 6e 69 74 6f 72 69 6e 67 20 | n.to.the."trap".(the.monitoring. |
| 72c60 | 68 6f 73 74 29 2e 00 53 4e 4d 50 20 69 73 20 61 20 63 6f 6d 70 6f 6e 65 6e 74 20 6f 66 20 74 68 | host)..SNMP.is.a.component.of.th |
| 72c80 | 65 20 49 6e 74 65 72 6e 65 74 20 50 72 6f 74 6f 63 6f 6c 20 53 75 69 74 65 20 61 73 20 64 65 66 | e.Internet.Protocol.Suite.as.def |
| 72ca0 | 69 6e 65 64 20 62 79 20 74 68 65 20 49 6e 74 65 72 6e 65 74 20 45 6e 67 69 6e 65 65 72 69 6e 67 | ined.by.the.Internet.Engineering |
| 72cc0 | 20 54 61 73 6b 20 46 6f 72 63 65 20 28 49 45 54 46 29 2e 20 49 74 20 63 6f 6e 73 69 73 74 73 20 | .Task.Force.(IETF)..It.consists. |
| 72ce0 | 6f 66 20 61 20 73 65 74 20 6f 66 20 73 74 61 6e 64 61 72 64 73 20 66 6f 72 20 6e 65 74 77 6f 72 | of.a.set.of.standards.for.networ |
| 72d00 | 6b 20 6d 61 6e 61 67 65 6d 65 6e 74 2c 20 69 6e 63 6c 75 64 69 6e 67 20 61 6e 20 61 70 70 6c 69 | k.management,.including.an.appli |
| 72d20 | 63 61 74 69 6f 6e 20 6c 61 79 65 72 20 70 72 6f 74 6f 63 6f 6c 2c 20 61 20 64 61 74 61 62 61 73 | cation.layer.protocol,.a.databas |
| 72d40 | 65 20 73 63 68 65 6d 61 2c 20 61 6e 64 20 61 20 73 65 74 20 6f 66 20 64 61 74 61 20 6f 62 6a 65 | e.schema,.and.a.set.of.data.obje |
| 72d60 | 63 74 73 2e 00 53 4e 4d 50 20 69 73 20 77 69 64 65 6c 79 20 75 73 65 64 20 69 6e 20 6e 65 74 77 | cts..SNMP.is.widely.used.in.netw |
| 72d80 | 6f 72 6b 20 6d 61 6e 61 67 65 6d 65 6e 74 20 66 6f 72 20 6e 65 74 77 6f 72 6b 20 6d 6f 6e 69 74 | ork.management.for.network.monit |
| 72da0 | 6f 72 69 6e 67 2e 20 53 4e 4d 50 20 65 78 70 6f 73 65 73 20 6d 61 6e 61 67 65 6d 65 6e 74 20 64 | oring..SNMP.exposes.management.d |
| 72dc0 | 61 74 61 20 69 6e 20 74 68 65 20 66 6f 72 6d 20 6f 66 20 76 61 72 69 61 62 6c 65 73 20 6f 6e 20 | ata.in.the.form.of.variables.on. |
| 72de0 | 74 68 65 20 6d 61 6e 61 67 65 64 20 73 79 73 74 65 6d 73 20 6f 72 67 61 6e 69 7a 65 64 20 69 6e | the.managed.systems.organized.in |
| 72e00 | 20 61 20 6d 61 6e 61 67 65 6d 65 6e 74 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 62 61 73 65 20 28 | .a.management.information.base.( |
| 72e20 | 4d 49 42 5f 29 20 77 68 69 63 68 20 64 65 73 63 72 69 62 65 20 74 68 65 20 73 79 73 74 65 6d 20 | MIB_).which.describe.the.system. |
| 72e40 | 73 74 61 74 75 73 20 61 6e 64 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 20 54 68 65 73 65 20 | status.and.configuration..These. |
| 72e60 | 76 61 72 69 61 62 6c 65 73 20 63 61 6e 20 74 68 65 6e 20 62 65 20 72 65 6d 6f 74 65 6c 79 20 71 | variables.can.then.be.remotely.q |
| 72e80 | 75 65 72 69 65 64 20 28 61 6e 64 2c 20 69 6e 20 73 6f 6d 65 20 63 69 72 63 75 6d 73 74 61 6e 63 | ueried.(and,.in.some.circumstanc |
| 72ea0 | 65 73 2c 20 6d 61 6e 69 70 75 6c 61 74 65 64 29 20 62 79 20 6d 61 6e 61 67 69 6e 67 20 61 70 70 | es,.manipulated).by.managing.app |
| 72ec0 | 6c 69 63 61 74 69 6f 6e 73 2e 00 53 4e 4d 50 76 32 00 53 4e 4d 50 76 32 20 64 6f 65 73 20 6e 6f | lications..SNMPv2.SNMPv2.does.no |
| 72ee0 | 74 20 73 75 70 70 6f 72 74 20 61 6e 79 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6d 65 63 | t.support.any.authentication.mec |
| 72f00 | 68 61 6e 69 73 6d 73 2c 20 6f 74 68 65 72 20 74 68 61 6e 20 63 6c 69 65 6e 74 20 73 6f 75 72 63 | hanisms,.other.than.client.sourc |
| 72f20 | 65 20 61 64 64 72 65 73 73 2c 20 73 6f 20 79 6f 75 20 73 68 6f 75 6c 64 20 73 70 65 63 69 66 79 | e.address,.so.you.should.specify |
| 72f40 | 20 61 64 64 72 65 73 73 65 73 20 6f 66 20 63 6c 69 65 6e 74 73 20 61 6c 6c 6f 77 65 64 20 74 6f | .addresses.of.clients.allowed.to |
| 72f60 | 20 6d 6f 6e 69 74 6f 72 20 74 68 65 20 72 6f 75 74 65 72 2e 20 4e 6f 74 65 20 74 68 61 74 20 53 | .monitor.the.router..Note.that.S |
| 72f80 | 4e 4d 50 76 32 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 73 20 6e 6f 20 65 6e 63 72 79 70 74 69 6f | NMPv2.also.supports.no.encryptio |
| 72fa0 | 6e 20 61 6e 64 20 61 6c 77 61 79 73 20 73 65 6e 64 73 20 64 61 74 61 20 69 6e 20 70 6c 61 69 6e | n.and.always.sends.data.in.plain |
| 72fc0 | 20 74 65 78 74 2e 00 53 4e 4d 50 76 32 20 69 73 20 74 68 65 20 6f 72 69 67 69 6e 61 6c 20 61 6e | .text..SNMPv2.is.the.original.an |
| 72fe0 | 64 20 6d 6f 73 74 20 63 6f 6d 6d 6f 6e 6c 79 20 75 73 65 64 20 76 65 72 73 69 6f 6e 2e 20 46 6f | d.most.commonly.used.version..Fo |
| 73000 | 72 20 61 75 74 68 6f 72 69 7a 69 6e 67 20 63 6c 69 65 6e 74 73 2c 20 53 4e 4d 50 20 75 73 65 73 | r.authorizing.clients,.SNMP.uses |
| 73020 | 20 74 68 65 20 63 6f 6e 63 65 70 74 20 6f 66 20 63 6f 6d 6d 75 6e 69 74 69 65 73 2e 20 43 6f 6d | .the.concept.of.communities..Com |
| 73040 | 6d 75 6e 69 74 69 65 73 20 6d 61 79 20 68 61 76 65 20 61 75 74 68 6f 72 69 7a 61 74 69 6f 6e 20 | munities.may.have.authorization. |
| 73060 | 73 65 74 20 74 6f 20 72 65 61 64 20 6f 6e 6c 79 20 28 74 68 69 73 20 69 73 20 6d 6f 73 74 20 63 | set.to.read.only.(this.is.most.c |
| 73080 | 6f 6d 6d 6f 6e 29 20 6f 72 20 74 6f 20 72 65 61 64 20 61 6e 64 20 77 72 69 74 65 20 28 74 68 69 | ommon).or.to.read.and.write.(thi |
| 730a0 | 73 20 6f 70 74 69 6f 6e 20 69 73 20 6e 6f 74 20 61 63 74 69 76 65 6c 79 20 75 73 65 64 20 69 6e | s.option.is.not.actively.used.in |
| 730c0 | 20 56 79 4f 53 29 2e 00 53 4e 4d 50 76 33 00 53 4e 4d 50 76 33 20 28 76 65 72 73 69 6f 6e 20 33 | .VyOS)..SNMPv3.SNMPv3.(version.3 |
| 730e0 | 20 6f 66 20 74 68 65 20 53 4e 4d 50 20 70 72 6f 74 6f 63 6f 6c 29 20 69 6e 74 72 6f 64 75 63 65 | .of.the.SNMP.protocol).introduce |
| 73100 | 64 20 61 20 77 68 6f 6c 65 20 73 6c 65 77 20 6f 66 20 6e 65 77 20 73 65 63 75 72 69 74 79 20 72 | d.a.whole.slew.of.new.security.r |
| 73120 | 65 6c 61 74 65 64 20 66 65 61 74 75 72 65 73 20 74 68 61 74 20 68 61 76 65 20 62 65 65 6e 20 6d | elated.features.that.have.been.m |
| 73140 | 69 73 73 69 6e 67 20 66 72 6f 6d 20 74 68 65 20 70 72 65 76 69 6f 75 73 20 76 65 72 73 69 6f 6e | issing.from.the.previous.version |
| 73160 | 73 2e 20 53 65 63 75 72 69 74 79 20 77 61 73 20 6f 6e 65 20 6f 66 20 74 68 65 20 62 69 67 67 65 | s..Security.was.one.of.the.bigge |
| 73180 | 73 74 20 77 65 61 6b 6e 65 73 73 20 6f 66 20 53 4e 4d 50 20 75 6e 74 69 6c 20 76 33 2e 20 41 75 | st.weakness.of.SNMP.until.v3..Au |
| 731a0 | 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 69 6e 20 53 4e 4d 50 20 56 65 72 73 69 6f 6e 73 20 31 20 | thentication.in.SNMP.Versions.1. |
| 731c0 | 61 6e 64 20 32 20 61 6d 6f 75 6e 74 73 20 74 6f 20 6e 6f 74 68 69 6e 67 20 6d 6f 72 65 20 74 68 | and.2.amounts.to.nothing.more.th |
| 731e0 | 61 6e 20 61 20 70 61 73 73 77 6f 72 64 20 28 63 6f 6d 6d 75 6e 69 74 79 20 73 74 72 69 6e 67 29 | an.a.password.(community.string) |
| 73200 | 20 73 65 6e 74 20 69 6e 20 63 6c 65 61 72 20 74 65 78 74 20 62 65 74 77 65 65 6e 20 61 20 6d 61 | .sent.in.clear.text.between.a.ma |
| 73220 | 6e 61 67 65 72 20 61 6e 64 20 61 67 65 6e 74 2e 20 45 61 63 68 20 53 4e 4d 50 76 33 20 6d 65 73 | nager.and.agent..Each.SNMPv3.mes |
| 73240 | 73 61 67 65 20 63 6f 6e 74 61 69 6e 73 20 73 65 63 75 72 69 74 79 20 70 61 72 61 6d 65 74 65 72 | sage.contains.security.parameter |
| 73260 | 73 20 77 68 69 63 68 20 61 72 65 20 65 6e 63 6f 64 65 64 20 61 73 20 61 6e 20 6f 63 74 65 74 20 | s.which.are.encoded.as.an.octet. |
| 73280 | 73 74 72 69 6e 67 2e 20 54 68 65 20 6d 65 61 6e 69 6e 67 20 6f 66 20 74 68 65 73 65 20 73 65 63 | string..The.meaning.of.these.sec |
| 732a0 | 75 72 69 74 79 20 70 61 72 61 6d 65 74 65 72 73 20 64 65 70 65 6e 64 73 20 6f 6e 20 74 68 65 20 | urity.parameters.depends.on.the. |
| 732c0 | 73 65 63 75 72 69 74 79 20 6d 6f 64 65 6c 20 62 65 69 6e 67 20 75 73 65 64 2e 00 53 50 41 4e 20 | security.model.being.used..SPAN. |
| 732e0 | 70 6f 72 74 20 6d 69 72 72 6f 72 69 6e 67 20 63 61 6e 20 63 6f 70 79 20 74 68 65 20 69 6e 62 6f | port.mirroring.can.copy.the.inbo |
| 73300 | 75 6e 64 2f 6f 75 74 62 6f 75 6e 64 20 74 72 61 66 66 69 63 20 6f 66 20 74 68 65 20 69 6e 74 65 | und/outbound.traffic.of.the.inte |
| 73320 | 72 66 61 63 65 20 74 6f 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 69 6e 74 65 72 66 61 63 65 | rface.to.the.specified.interface |
| 73340 | 2c 20 75 73 75 61 6c 6c 79 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 63 61 6e 20 62 65 20 63 | ,.usually.the.interface.can.be.c |
| 73360 | 6f 6e 6e 65 63 74 65 64 20 74 6f 20 73 6f 6d 65 20 73 70 65 63 69 61 6c 20 65 71 75 69 70 6d 65 | onnected.to.some.special.equipme |
| 73380 | 6e 74 2c 20 73 75 63 68 20 61 73 20 61 20 62 65 68 61 76 69 6f 72 20 63 6f 6e 74 72 6f 6c 20 73 | nt,.such.as.a.behavior.control.s |
| 733a0 | 79 73 74 65 6d 2c 20 69 6e 74 72 75 73 69 6f 6e 20 64 65 74 65 63 74 69 6f 6e 20 73 79 73 74 65 | ystem,.intrusion.detection.syste |
| 733c0 | 6d 20 6f 72 20 74 72 61 66 66 69 63 20 63 6f 6c 6c 65 63 74 6f 72 2c 20 61 6e 64 20 63 61 6e 20 | m.or.traffic.collector,.and.can. |
| 733e0 | 63 6f 70 79 20 61 6c 6c 20 72 65 6c 61 74 65 64 20 74 72 61 66 66 69 63 20 66 72 6f 6d 20 74 68 | copy.all.related.traffic.from.th |
| 73400 | 69 73 20 70 6f 72 74 2e 20 54 68 65 20 62 65 6e 65 66 69 74 20 6f 66 20 6d 69 72 72 6f 72 69 6e | is.port..The.benefit.of.mirrorin |
| 73420 | 67 20 74 68 65 20 74 72 61 66 66 69 63 20 69 73 20 74 68 61 74 20 74 68 65 20 61 70 70 6c 69 63 | g.the.traffic.is.that.the.applic |
| 73440 | 61 74 69 6f 6e 20 69 73 20 69 73 6f 6c 61 74 65 64 20 66 72 6f 6d 20 74 68 65 20 73 6f 75 72 63 | ation.is.isolated.from.the.sourc |
| 73460 | 65 20 74 72 61 66 66 69 63 20 61 6e 64 20 73 6f 20 61 70 70 6c 69 63 61 74 69 6f 6e 20 70 72 6f | e.traffic.and.so.application.pro |
| 73480 | 63 65 73 73 69 6e 67 20 64 6f 65 73 20 6e 6f 74 20 61 66 66 65 63 74 20 74 68 65 20 74 72 61 66 | cessing.does.not.affect.the.traf |
| 734a0 | 66 69 63 20 6f 72 20 74 68 65 20 73 79 73 74 65 6d 20 70 65 72 66 6f 72 6d 61 6e 63 65 2e 00 53 | fic.or.the.system.performance..S |
| 734c0 | 50 41 4e 20 70 6f 72 74 20 6d 69 72 72 6f 72 69 6e 67 20 63 61 6e 20 63 6f 70 79 20 74 68 65 20 | PAN.port.mirroring.can.copy.the. |
| 734e0 | 69 6e 62 6f 75 6e 64 2f 6f 75 74 62 6f 75 6e 64 20 74 72 61 66 66 69 63 20 6f 66 20 74 68 65 20 | inbound/outbound.traffic.of.the. |
| 73500 | 69 6e 74 65 72 66 61 63 65 20 74 6f 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 69 6e 74 65 72 | interface.to.the.specified.inter |
| 73520 | 66 61 63 65 2c 20 75 73 75 61 6c 6c 79 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 63 61 6e 20 | face,.usually.the.interface.can. |
| 73540 | 62 65 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 73 6f 6d 65 20 73 70 65 63 69 61 6c 20 65 71 75 | be.connected.to.some.special.equ |
| 73560 | 69 70 6d 65 6e 74 2c 20 73 75 63 68 20 61 73 20 62 65 68 61 76 69 6f 72 20 63 6f 6e 74 72 6f 6c | ipment,.such.as.behavior.control |
| 73580 | 20 73 79 73 74 65 6d 2c 20 69 6e 74 72 75 73 69 6f 6e 20 64 65 74 65 63 74 69 6f 6e 20 73 79 73 | .system,.intrusion.detection.sys |
| 735a0 | 74 65 6d 20 61 6e 64 20 74 72 61 66 66 69 63 20 63 6f 6c 6c 65 63 74 6f 72 2c 20 61 6e 64 20 63 | tem.and.traffic.collector,.and.c |
| 735c0 | 61 6e 20 63 6f 70 79 20 61 6c 6c 20 72 65 6c 61 74 65 64 20 74 72 61 66 66 69 63 20 66 72 6f 6d | an.copy.all.related.traffic.from |
| 735e0 | 20 74 68 69 73 20 70 6f 72 74 2e 20 54 68 65 20 62 65 6e 65 66 69 74 20 6f 66 20 6d 69 72 72 6f | .this.port..The.benefit.of.mirro |
| 73600 | 72 69 6e 67 20 74 68 65 20 74 72 61 66 66 69 63 20 69 73 20 74 68 61 74 20 74 68 65 20 61 70 70 | ring.the.traffic.is.that.the.app |
| 73620 | 6c 69 63 61 74 69 6f 6e 20 69 73 20 69 73 6f 6c 61 74 65 64 20 66 72 6f 6d 20 74 68 65 20 73 6f | lication.is.isolated.from.the.so |
| 73640 | 75 72 63 65 20 74 72 61 66 66 69 63 20 61 6e 64 20 73 6f 20 61 70 70 6c 69 63 61 74 69 6f 6e 20 | urce.traffic.and.so.application. |
| 73660 | 70 72 6f 63 65 73 73 69 6e 67 20 64 6f 65 73 20 6e 6f 74 20 61 66 66 65 63 74 20 74 68 65 20 74 | processing.does.not.affect.the.t |
| 73680 | 72 61 66 66 69 63 20 6f 72 20 74 68 65 20 73 79 73 74 65 6d 20 70 65 72 66 6f 72 6d 61 6e 63 65 | raffic.or.the.system.performance |
| 736a0 | 2e 00 53 53 48 00 53 53 48 20 3a 72 65 66 3a 60 73 73 68 5f 6b 65 79 5f 62 61 73 65 64 5f 61 75 | ..SSH.SSH.:ref:`ssh_key_based_au |
| 736c0 | 74 68 65 6e 74 69 63 61 74 69 6f 6e 60 00 53 53 48 20 3a 72 65 66 3a 60 73 73 68 5f 6f 70 65 72 | thentication`.SSH.:ref:`ssh_oper |
| 736e0 | 61 74 69 6f 6e 60 00 53 53 48 20 63 6c 69 65 6e 74 00 53 53 48 20 70 72 6f 76 69 64 65 73 20 61 | ation`.SSH.client.SSH.provides.a |
| 73700 | 20 73 65 63 75 72 65 20 63 68 61 6e 6e 65 6c 20 6f 76 65 72 20 61 6e 20 75 6e 73 65 63 75 72 65 | .secure.channel.over.an.unsecure |
| 73720 | 64 20 6e 65 74 77 6f 72 6b 20 69 6e 20 61 20 63 6c 69 65 6e 74 2d 73 65 72 76 65 72 20 61 72 63 | d.network.in.a.client-server.arc |
| 73740 | 68 69 74 65 63 74 75 72 65 2c 20 63 6f 6e 6e 65 63 74 69 6e 67 20 61 6e 20 53 53 48 20 63 6c 69 | hitecture,.connecting.an.SSH.cli |
| 73760 | 65 6e 74 20 61 70 70 6c 69 63 61 74 69 6f 6e 20 77 69 74 68 20 61 6e 20 53 53 48 20 73 65 72 76 | ent.application.with.an.SSH.serv |
| 73780 | 65 72 2e 20 43 6f 6d 6d 6f 6e 20 61 70 70 6c 69 63 61 74 69 6f 6e 73 20 69 6e 63 6c 75 64 65 20 | er..Common.applications.include. |
| 737a0 | 72 65 6d 6f 74 65 20 63 6f 6d 6d 61 6e 64 2d 6c 69 6e 65 20 6c 6f 67 69 6e 20 61 6e 64 20 72 65 | remote.command-line.login.and.re |
| 737c0 | 6d 6f 74 65 20 63 6f 6d 6d 61 6e 64 20 65 78 65 63 75 74 69 6f 6e 2c 20 62 75 74 20 61 6e 79 20 | mote.command.execution,.but.any. |
| 737e0 | 6e 65 74 77 6f 72 6b 20 73 65 72 76 69 63 65 20 63 61 6e 20 62 65 20 73 65 63 75 72 65 64 20 77 | network.service.can.be.secured.w |
| 73800 | 69 74 68 20 53 53 48 2e 20 54 68 65 20 70 72 6f 74 6f 63 6f 6c 20 73 70 65 63 69 66 69 63 61 74 | ith.SSH..The.protocol.specificat |
| 73820 | 69 6f 6e 20 64 69 73 74 69 6e 67 75 69 73 68 65 73 20 62 65 74 77 65 65 6e 20 74 77 6f 20 6d 61 | ion.distinguishes.between.two.ma |
| 73840 | 6a 6f 72 20 76 65 72 73 69 6f 6e 73 2c 20 72 65 66 65 72 72 65 64 20 74 6f 20 61 73 20 53 53 48 | jor.versions,.referred.to.as.SSH |
| 73860 | 2d 31 20 61 6e 64 20 53 53 48 2d 32 2e 00 53 53 48 20 75 73 65 72 6e 61 6d 65 20 74 6f 20 65 73 | -1.and.SSH-2..SSH.username.to.es |
| 73880 | 74 61 62 6c 69 73 68 20 61 6e 20 53 53 48 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 6f 20 74 68 65 | tablish.an.SSH.connection.to.the |
| 738a0 | 20 63 61 63 68 65 20 73 65 72 76 65 72 2e 00 53 53 48 20 77 61 73 20 64 65 73 69 67 6e 65 64 20 | .cache.server..SSH.was.designed. |
| 738c0 | 61 73 20 61 20 72 65 70 6c 61 63 65 6d 65 6e 74 20 66 6f 72 20 54 65 6c 6e 65 74 20 61 6e 64 20 | as.a.replacement.for.Telnet.and. |
| 738e0 | 66 6f 72 20 75 6e 73 65 63 75 72 65 64 20 72 65 6d 6f 74 65 20 73 68 65 6c 6c 20 70 72 6f 74 6f | for.unsecured.remote.shell.proto |
| 73900 | 63 6f 6c 73 20 73 75 63 68 20 61 73 20 74 68 65 20 42 65 72 6b 65 6c 65 79 20 72 6c 6f 67 69 6e | cols.such.as.the.Berkeley.rlogin |
| 73920 | 2c 20 72 73 68 2c 20 61 6e 64 20 72 65 78 65 63 20 70 72 6f 74 6f 63 6f 6c 73 2e 20 54 68 6f 73 | ,.rsh,.and.rexec.protocols..Thos |
| 73940 | 65 20 70 72 6f 74 6f 63 6f 6c 73 20 73 65 6e 64 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2c 20 6e 6f | e.protocols.send.information,.no |
| 73960 | 74 61 62 6c 79 20 70 61 73 73 77 6f 72 64 73 2c 20 69 6e 20 70 6c 61 69 6e 74 65 78 74 2c 20 72 | tably.passwords,.in.plaintext,.r |
| 73980 | 65 6e 64 65 72 69 6e 67 20 74 68 65 6d 20 73 75 73 63 65 70 74 69 62 6c 65 20 74 6f 20 69 6e 74 | endering.them.susceptible.to.int |
| 739a0 | 65 72 63 65 70 74 69 6f 6e 20 61 6e 64 20 64 69 73 63 6c 6f 73 75 72 65 20 75 73 69 6e 67 20 70 | erception.and.disclosure.using.p |
| 739c0 | 61 63 6b 65 74 20 61 6e 61 6c 79 73 69 73 2e 20 54 68 65 20 65 6e 63 72 79 70 74 69 6f 6e 20 75 | acket.analysis..The.encryption.u |
| 739e0 | 73 65 64 20 62 79 20 53 53 48 20 69 73 20 69 6e 74 65 6e 64 65 64 20 74 6f 20 70 72 6f 76 69 64 | sed.by.SSH.is.intended.to.provid |
| 73a00 | 65 20 63 6f 6e 66 69 64 65 6e 74 69 61 6c 69 74 79 20 61 6e 64 20 69 6e 74 65 67 72 69 74 79 20 | e.confidentiality.and.integrity. |
| 73a20 | 6f 66 20 64 61 74 61 20 6f 76 65 72 20 61 6e 20 75 6e 73 65 63 75 72 65 64 20 6e 65 74 77 6f 72 | of.data.over.an.unsecured.networ |
| 73a40 | 6b 2c 20 73 75 63 68 20 61 73 20 74 68 65 20 49 6e 74 65 72 6e 65 74 2e 00 53 53 49 44 20 74 6f | k,.such.as.the.Internet..SSID.to |
| 73a60 | 20 62 65 20 75 73 65 64 20 69 6e 20 49 45 45 45 20 38 30 32 2e 31 31 20 6d 61 6e 61 67 65 6d 65 | .be.used.in.IEEE.802.11.manageme |
| 73a80 | 6e 74 20 66 72 61 6d 65 73 00 53 53 4c 20 42 72 69 64 67 69 6e 67 00 53 53 4c 20 43 65 72 74 69 | nt.frames.SSL.Bridging.SSL.Certi |
| 73aa0 | 66 69 63 61 74 65 73 00 53 53 4c 20 43 65 72 74 69 66 69 63 61 74 65 73 20 67 65 6e 65 72 61 74 | ficates.SSL.Certificates.generat |
| 73ac0 | 69 6f 6e 00 53 53 4c 20 6d 61 74 63 68 20 53 65 72 76 65 72 20 4e 61 6d 65 20 49 6e 64 69 63 61 | ion.SSL.match.Server.Name.Indica |
| 73ae0 | 74 69 6f 6e 20 28 53 4e 49 29 20 6f 70 74 69 6f 6e 3a 00 53 53 54 50 20 43 6c 69 65 6e 74 00 53 | tion.(SNI).option:.SSTP.Client.S |
| 73b00 | 53 54 50 20 43 6c 69 65 6e 74 20 4f 70 74 69 6f 6e 73 00 53 53 54 50 20 53 65 72 76 65 72 00 53 | STP.Client.Options.SSTP.Server.S |
| 73b20 | 53 54 50 20 69 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 4c 69 6e 75 78 2c 20 42 53 44 2c | STP.is.available.for.Linux,.BSD, |
| 73b40 | 20 61 6e 64 20 57 69 6e 64 6f 77 73 2e 00 53 53 54 50 20 72 65 6d 6f 74 65 20 73 65 72 76 65 72 | .and.Windows..SSTP.remote.server |
| 73b60 | 20 74 6f 20 63 6f 6e 6e 65 63 74 20 74 6f 2e 20 43 61 6e 20 62 65 20 65 69 74 68 65 72 20 61 6e | .to.connect.to..Can.be.either.an |
| 73b80 | 20 49 50 20 61 64 64 72 65 73 73 20 6f 72 20 46 51 44 4e 2e 00 53 54 50 20 50 61 72 61 6d 65 74 | .IP.address.or.FQDN..STP.Paramet |
| 73ba0 | 65 72 00 53 61 6c 74 2d 4d 69 6e 69 6f 6e 00 53 61 6c 74 53 74 61 63 6b 5f 20 69 73 20 50 79 74 | er.Salt-Minion.SaltStack_.is.Pyt |
| 73bc0 | 68 6f 6e 2d 62 61 73 65 64 2c 20 6f 70 65 6e 2d 73 6f 75 72 63 65 20 73 6f 66 74 77 61 72 65 20 | hon-based,.open-source.software. |
| 73be0 | 66 6f 72 20 65 76 65 6e 74 2d 64 72 69 76 65 6e 20 49 54 20 61 75 74 6f 6d 61 74 69 6f 6e 2c 20 | for.event-driven.IT.automation,. |
| 73c00 | 72 65 6d 6f 74 65 20 74 61 73 6b 20 65 78 65 63 75 74 69 6f 6e 2c 20 61 6e 64 20 63 6f 6e 66 69 | remote.task.execution,.and.confi |
| 73c20 | 67 75 72 61 74 69 6f 6e 20 6d 61 6e 61 67 65 6d 65 6e 74 2e 20 53 75 70 70 6f 72 74 69 6e 67 20 | guration.management..Supporting. |
| 73c40 | 74 68 65 20 22 69 6e 66 72 61 73 74 72 75 63 74 75 72 65 20 61 73 20 63 6f 64 65 22 20 61 70 70 | the."infrastructure.as.code".app |
| 73c60 | 72 6f 61 63 68 20 74 6f 20 64 61 74 61 20 63 65 6e 74 65 72 20 73 79 73 74 65 6d 20 61 6e 64 20 | roach.to.data.center.system.and. |
| 73c80 | 6e 65 74 77 6f 72 6b 20 64 65 70 6c 6f 79 6d 65 6e 74 20 61 6e 64 20 6d 61 6e 61 67 65 6d 65 6e | network.deployment.and.managemen |
| 73ca0 | 74 2c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 61 75 74 6f 6d 61 74 69 6f 6e 2c 20 53 65 63 | t,.configuration.automation,.Sec |
| 73cc0 | 4f 70 73 20 6f 72 63 68 65 73 74 72 61 74 69 6f 6e 2c 20 76 75 6c 6e 65 72 61 62 69 6c 69 74 79 | Ops.orchestration,.vulnerability |
| 73ce0 | 20 72 65 6d 65 64 69 61 74 69 6f 6e 2c 20 61 6e 64 20 68 79 62 72 69 64 20 63 6c 6f 75 64 20 63 | .remediation,.and.hybrid.cloud.c |
| 73d00 | 6f 6e 74 72 6f 6c 2e 00 53 61 6d 65 20 61 73 20 65 78 70 6f 72 74 2d 6c 69 73 74 2c 20 62 75 74 | ontrol..Same.as.export-list,.but |
| 73d20 | 20 69 74 20 61 70 70 6c 69 65 73 20 74 6f 20 70 61 74 68 73 20 61 6e 6e 6f 75 6e 63 65 64 20 69 | .it.applies.to.paths.announced.i |
| 73d40 | 6e 74 6f 20 73 70 65 63 69 66 69 65 64 20 61 72 65 61 20 61 73 20 54 79 70 65 2d 33 20 73 75 6d | nto.specified.area.as.Type-3.sum |
| 73d60 | 6d 61 72 79 2d 4c 53 41 73 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 6d 61 6b 65 73 20 73 65 | mary-LSAs..This.command.makes.se |
| 73d80 | 6e 73 65 20 69 6e 20 41 42 52 20 6f 6e 6c 79 2e 00 53 61 6d 65 20 73 70 65 63 69 66 69 63 20 6d | nse.in.ABR.only..Same.specific.m |
| 73da0 | 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 20 74 68 61 74 20 63 61 6e 20 62 65 20 75 73 65 | atching.criteria.that.can.be.use |
| 73dc0 | 64 20 69 6e 20 62 72 69 64 67 65 20 66 69 72 65 77 61 6c 6c 20 61 72 65 20 64 65 73 63 72 69 62 | d.in.bridge.firewall.are.describ |
| 73de0 | 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 3a 00 53 61 6d 70 6c 65 20 63 6f 6e 66 69 | ed.in.this.section:.Sample.confi |
| 73e00 | 67 75 72 61 74 69 6f 6e 20 6f 66 20 53 56 44 20 77 69 74 68 20 56 4c 41 4e 20 74 6f 20 56 4e 49 | guration.of.SVD.with.VLAN.to.VNI |
| 73e20 | 20 6d 61 70 70 69 6e 67 73 20 69 73 20 73 68 6f 77 6e 20 62 65 6c 6f 77 2e 00 53 61 6d 70 6c 65 | .mappings.is.shown.below..Sample |
| 73e40 | 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 6f 20 73 65 74 75 70 20 4c 44 50 20 6f 6e 20 56 | .configuration.to.setup.LDP.on.V |
| 73e60 | 79 4f 53 00 53 63 61 6e 6e 69 6e 67 20 69 73 20 6e 6f 74 20 73 75 70 70 6f 72 74 65 64 20 6f 6e | yOS.Scanning.is.not.supported.on |
| 73e80 | 20 61 6c 6c 20 77 69 72 65 6c 65 73 73 20 64 72 69 76 65 72 73 20 61 6e 64 20 77 69 72 65 6c 65 | .all.wireless.drivers.and.wirele |
| 73ea0 | 73 73 20 68 61 72 64 77 61 72 65 2e 20 52 65 66 65 72 20 74 6f 20 79 6f 75 72 20 64 72 69 76 65 | ss.hardware..Refer.to.your.drive |
| 73ec0 | 72 20 61 6e 64 20 77 69 72 65 6c 65 73 73 20 68 61 72 64 77 61 72 65 20 64 6f 63 75 6d 65 6e 74 | r.and.wireless.hardware.document |
| 73ee0 | 61 74 69 6f 6e 20 66 6f 72 20 66 75 72 74 68 65 72 20 64 65 74 61 69 6c 73 2e 00 53 63 72 69 70 | ation.for.further.details..Scrip |
| 73f00 | 74 20 65 78 65 63 75 74 69 6f 6e 00 53 63 72 69 70 74 20 74 6f 20 72 75 6e 20 62 65 66 6f 72 65 | t.execution.Script.to.run.before |
| 73f20 | 20 73 65 73 73 69 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 63 6f 6d 65 73 20 75 70 00 53 63 72 69 | .session.interface.comes.up.Scri |
| 73f40 | 70 74 20 74 6f 20 72 75 6e 20 62 65 66 6f 72 65 20 74 68 65 20 73 65 73 73 69 6f 6e 20 69 6e 74 | pt.to.run.before.the.session.int |
| 73f60 | 65 72 66 61 63 65 20 63 6f 6d 65 73 20 75 70 00 53 63 72 69 70 74 20 74 6f 20 72 75 6e 20 77 68 | erface.comes.up.Script.to.run.wh |
| 73f80 | 65 6e 20 73 65 73 73 69 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 63 68 61 6e 67 65 64 20 62 79 20 | en.session.interface.changed.by. |
| 73fa0 | 52 41 44 49 55 53 20 43 6f 41 20 68 61 6e 64 6c 69 6e 67 00 53 63 72 69 70 74 20 74 6f 20 72 75 | RADIUS.CoA.handling.Script.to.ru |
| 73fc0 | 6e 20 77 68 65 6e 20 73 65 73 73 69 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 67 6f 69 6e 67 20 74 | n.when.session.interface.going.t |
| 73fe0 | 6f 20 74 65 72 6d 69 6e 61 74 65 00 53 63 72 69 70 74 20 74 6f 20 72 75 6e 20 77 68 65 6e 20 73 | o.terminate.Script.to.run.when.s |
| 74000 | 65 73 73 69 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 63 6f 6d 70 6c 65 74 65 6c 79 20 63 | ession.interface.is.completely.c |
| 74020 | 6f 6e 66 69 67 75 72 65 64 20 61 6e 64 20 73 74 61 72 74 65 64 00 53 63 72 69 70 74 20 74 6f 20 | onfigured.and.started.Script.to. |
| 74040 | 72 75 6e 20 77 68 65 6e 20 74 68 65 20 73 65 73 73 69 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 61 | run.when.the.session.interface.a |
| 74060 | 62 6f 75 74 20 74 6f 20 74 65 72 6d 69 6e 61 74 65 00 53 63 72 69 70 74 20 74 6f 20 72 75 6e 20 | bout.to.terminate.Script.to.run. |
| 74080 | 77 68 65 6e 20 74 68 65 20 73 65 73 73 69 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 61 62 | when.the.session.interface.is.ab |
| 740a0 | 6f 75 74 20 74 6f 20 74 65 72 6d 69 6e 61 74 65 00 53 63 72 69 70 74 20 74 6f 20 72 75 6e 20 77 | out.to.terminate.Script.to.run.w |
| 740c0 | 68 65 6e 20 74 68 65 20 73 65 73 73 69 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 63 68 61 | hen.the.session.interface.is.cha |
| 740e0 | 6e 67 65 64 20 62 79 20 52 41 44 49 55 53 20 43 6f 41 20 68 61 6e 64 6c 69 6e 67 00 53 63 72 69 | nged.by.RADIUS.CoA.handling.Scri |
| 74100 | 70 74 20 74 6f 20 72 75 6e 20 77 68 65 6e 20 74 68 65 20 73 65 73 73 69 6f 6e 20 69 6e 74 65 72 | pt.to.run.when.the.session.inter |
| 74120 | 66 61 63 65 20 69 73 20 63 6f 6d 70 6c 65 74 65 6c 79 20 63 6f 6e 66 69 67 75 72 65 64 20 61 6e | face.is.completely.configured.an |
| 74140 | 64 20 73 74 61 72 74 65 64 00 53 63 72 69 70 74 69 6e 67 00 53 65 63 6f 6e 64 20 73 63 65 6e 61 | d.started.Scripting.Second.scena |
| 74160 | 72 69 6f 3a 20 61 70 70 6c 79 20 73 6f 75 72 63 65 20 4e 41 54 20 66 6f 72 20 61 6c 6c 20 6f 75 | rio:.apply.source.NAT.for.all.ou |
| 74180 | 74 67 6f 69 6e 67 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 66 72 6f 6d 20 4c 41 4e 20 31 30 2e 30 | tgoing.connections.from.LAN.10.0 |
| 741a0 | 2e 30 2e 30 2f 38 2c 20 75 73 69 6e 67 20 33 20 70 75 62 6c 69 63 20 61 64 64 72 65 73 73 65 73 | .0.0/8,.using.3.public.addresses |
| 741c0 | 20 61 6e 64 20 65 71 75 61 6c 20 64 69 73 74 72 69 62 75 74 69 6f 6e 2e 20 57 65 20 77 69 6c 6c | .and.equal.distribution..We.will |
| 741e0 | 20 67 65 6e 65 72 61 74 65 20 74 68 65 20 68 61 73 68 20 72 61 6e 64 6f 6d 6c 79 2e 00 53 65 63 | .generate.the.hash.randomly..Sec |
| 74200 | 6f 6e 64 6c 79 2c 20 77 65 20 63 72 65 61 74 65 20 74 68 65 20 69 6e 74 65 72 6d 65 64 69 61 72 | ondly,.we.create.the.intermediar |
| 74220 | 79 20 63 65 72 74 69 66 69 63 61 74 65 20 61 75 74 68 6f 72 69 74 69 65 73 2c 20 77 68 69 63 68 | y.certificate.authorities,.which |
| 74240 | 20 61 72 65 20 75 73 65 64 20 74 6f 20 73 69 67 6e 20 74 68 65 20 6c 65 61 66 20 63 65 72 74 69 | .are.used.to.sign.the.leaf.certi |
| 74260 | 66 69 63 61 74 65 73 2e 00 53 65 63 72 65 74 20 66 6f 72 20 44 79 6e 61 6d 69 63 20 41 75 74 68 | ficates..Secret.for.Dynamic.Auth |
| 74280 | 6f 72 69 7a 61 74 69 6f 6e 20 45 78 74 65 6e 73 69 6f 6e 20 73 65 72 76 65 72 20 28 44 4d 2f 43 | orization.Extension.server.(DM/C |
| 742a0 | 6f 41 29 00 53 65 63 75 72 69 74 79 00 53 65 63 75 72 69 74 79 2f 61 75 74 68 65 6e 74 69 63 61 | oA).Security.Security/authentica |
| 742c0 | 74 69 6f 6e 20 6d 65 73 73 61 67 65 73 00 53 65 65 20 3a 72 66 63 3a 60 37 37 36 31 23 73 65 63 | tion.messages.See.:rfc:`7761#sec |
| 742e0 | 74 69 6f 6e 2d 34 2e 31 60 20 66 6f 72 20 64 65 74 61 69 6c 73 2e 00 53 65 65 20 62 65 6c 6f 77 | tion-4.1`.for.details..See.below |
| 74300 | 20 74 68 65 20 64 69 66 66 65 72 65 6e 74 20 70 61 72 61 6d 65 74 65 72 73 20 61 76 61 69 6c 61 | .the.different.parameters.availa |
| 74320 | 62 6c 65 20 66 6f 72 20 74 68 65 20 49 50 76 34 20 2a 2a 73 68 6f 77 2a 2a 20 63 6f 6d 6d 61 6e | ble.for.the.IPv4.**show**.comman |
| 74340 | 64 3a 00 53 65 67 6d 65 6e 74 20 52 6f 75 74 69 6e 67 00 53 65 67 6d 65 6e 74 20 52 6f 75 74 69 | d:.Segment.Routing.Segment.Routi |
| 74360 | 6e 67 20 28 53 52 29 20 69 73 20 61 20 6e 65 74 77 6f 72 6b 20 61 72 63 68 69 74 65 63 74 75 72 | ng.(SR).is.a.network.architectur |
| 74380 | 65 20 74 68 61 74 20 69 73 20 73 69 6d 69 6c 61 72 20 74 6f 20 73 6f 75 72 63 65 2d 72 6f 75 74 | e.that.is.similar.to.source-rout |
| 743a0 | 69 6e 67 20 2e 20 49 6e 20 74 68 69 73 20 61 72 63 68 69 74 65 63 74 75 72 65 2c 20 74 68 65 20 | ing...In.this.architecture,.the. |
| 743c0 | 69 6e 67 72 65 73 73 20 72 6f 75 74 65 72 20 61 64 64 73 20 61 20 6c 69 73 74 20 6f 66 20 73 65 | ingress.router.adds.a.list.of.se |
| 743e0 | 67 6d 65 6e 74 73 2c 20 6b 6e 6f 77 6e 20 61 73 20 53 49 44 73 2c 20 74 6f 20 74 68 65 20 70 61 | gments,.known.as.SIDs,.to.the.pa |
| 74400 | 63 6b 65 74 20 61 73 20 69 74 20 65 6e 74 65 72 73 20 74 68 65 20 6e 65 74 77 6f 72 6b 2e 20 54 | cket.as.it.enters.the.network..T |
| 74420 | 68 65 73 65 20 73 65 67 6d 65 6e 74 73 20 72 65 70 72 65 73 65 6e 74 20 64 69 66 66 65 72 65 6e | hese.segments.represent.differen |
| 74440 | 74 20 70 6f 72 74 69 6f 6e 73 20 6f 66 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 70 61 74 68 20 74 | t.portions.of.the.network.path.t |
| 74460 | 68 61 74 20 74 68 65 20 70 61 63 6b 65 74 20 77 69 6c 6c 20 74 61 6b 65 2e 00 53 65 67 6d 65 6e | hat.the.packet.will.take..Segmen |
| 74480 | 74 20 52 6f 75 74 69 6e 67 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 61 6e 20 65 | t.Routing.can.be.applied.to.an.e |
| 744a0 | 78 69 73 74 69 6e 67 20 4d 50 4c 53 2d 62 61 73 65 64 20 64 61 74 61 20 70 6c 61 6e 65 20 61 6e | xisting.MPLS-based.data.plane.an |
| 744c0 | 64 20 64 65 66 69 6e 65 73 20 61 20 63 6f 6e 74 72 6f 6c 20 70 6c 61 6e 65 20 6e 65 74 77 6f 72 | d.defines.a.control.plane.networ |
| 744e0 | 6b 20 61 72 63 68 69 74 65 63 74 75 72 65 2e 20 49 6e 20 4d 50 4c 53 20 6e 65 74 77 6f 72 6b 73 | k.architecture..In.MPLS.networks |
| 74500 | 2c 20 73 65 67 6d 65 6e 74 73 20 61 72 65 20 65 6e 63 6f 64 65 64 20 61 73 20 4d 50 4c 53 20 6c | ,.segments.are.encoded.as.MPLS.l |
| 74520 | 61 62 65 6c 73 20 61 6e 64 20 61 72 65 20 61 64 64 65 64 20 61 74 20 74 68 65 20 69 6e 67 72 65 | abels.and.are.added.at.the.ingre |
| 74540 | 73 73 20 72 6f 75 74 65 72 2e 20 54 68 65 73 65 20 4d 50 4c 53 20 6c 61 62 65 6c 73 20 61 72 65 | ss.router..These.MPLS.labels.are |
| 74560 | 20 74 68 65 6e 20 65 78 63 68 61 6e 67 65 64 20 61 6e 64 20 70 6f 70 75 6c 61 74 65 64 20 62 79 | .then.exchanged.and.populated.by |
| 74580 | 20 49 6e 74 65 72 69 6f 72 20 47 61 74 65 77 61 79 20 50 72 6f 74 6f 63 6f 6c 73 20 28 49 47 50 | .Interior.Gateway.Protocols.(IGP |
| 745a0 | 73 29 20 6c 69 6b 65 20 49 53 2d 49 53 20 6f 72 20 4f 53 50 46 20 77 68 69 63 68 20 61 72 65 20 | s).like.IS-IS.or.OSPF.which.are. |
| 745c0 | 72 75 6e 6e 69 6e 67 20 6f 6e 20 6d 6f 73 74 20 49 53 50 73 2e 00 53 65 67 6d 65 6e 74 20 72 6f | running.on.most.ISPs..Segment.ro |
| 745e0 | 75 74 69 6e 67 20 28 53 52 29 20 69 73 20 75 73 65 64 20 62 79 20 74 68 65 20 49 47 50 20 70 72 | uting.(SR).is.used.by.the.IGP.pr |
| 74600 | 6f 74 6f 63 6f 6c 73 20 74 6f 20 69 6e 74 65 72 63 6f 6e 6e 65 63 74 20 6e 65 74 77 6f 72 6b 20 | otocols.to.interconnect.network. |
| 74620 | 64 65 76 69 63 65 73 2c 20 62 65 6c 6f 77 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 73 68 6f | devices,.below.configuration.sho |
| 74640 | 77 73 20 68 6f 77 20 74 6f 20 65 6e 61 62 6c 65 20 53 52 20 6f 6e 20 49 53 2d 49 53 3a 00 53 65 | ws.how.to.enable.SR.on.IS-IS:.Se |
| 74660 | 67 6d 65 6e 74 20 72 6f 75 74 69 6e 67 20 28 53 52 29 20 69 73 20 75 73 65 64 20 62 79 20 74 68 | gment.routing.(SR).is.used.by.th |
| 74680 | 65 20 49 47 50 20 70 72 6f 74 6f 63 6f 6c 73 20 74 6f 20 69 6e 74 65 72 63 6f 6e 6e 65 63 74 20 | e.IGP.protocols.to.interconnect. |
| 746a0 | 6e 65 74 77 6f 72 6b 20 64 65 76 69 63 65 73 2c 20 62 65 6c 6f 77 20 63 6f 6e 66 69 67 75 72 61 | network.devices,.below.configura |
| 746c0 | 74 69 6f 6e 20 73 68 6f 77 73 20 68 6f 77 20 74 6f 20 65 6e 61 62 6c 65 20 53 52 20 6f 6e 20 4f | tion.shows.how.to.enable.SR.on.O |
| 746e0 | 53 50 46 3a 00 53 65 67 6d 65 6e 74 20 72 6f 75 74 69 6e 67 20 64 65 66 69 6e 65 73 20 61 20 63 | SPF:.Segment.routing.defines.a.c |
| 74700 | 6f 6e 74 72 6f 6c 20 70 6c 61 6e 65 20 6e 65 74 77 6f 72 6b 20 61 72 63 68 69 74 65 63 74 75 72 | ontrol.plane.network.architectur |
| 74720 | 65 20 61 6e 64 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 61 6e 20 65 78 69 73 74 | e.and.can.be.applied.to.an.exist |
| 74740 | 69 6e 67 20 4d 50 4c 53 20 62 61 73 65 64 20 64 61 74 61 70 6c 61 6e 65 2e 20 49 6e 20 74 68 65 | ing.MPLS.based.dataplane..In.the |
| 74760 | 20 4d 50 4c 53 20 6e 65 74 77 6f 72 6b 73 2c 20 73 65 67 6d 65 6e 74 73 20 61 72 65 20 65 6e 63 | .MPLS.networks,.segments.are.enc |
| 74780 | 6f 64 65 64 20 61 73 20 4d 50 4c 53 20 6c 61 62 65 6c 73 20 61 6e 64 20 61 72 65 20 69 6d 70 6f | oded.as.MPLS.labels.and.are.impo |
| 747a0 | 73 65 64 20 61 74 20 74 68 65 20 69 6e 67 72 65 73 73 20 72 6f 75 74 65 72 2e 20 4d 50 4c 53 20 | sed.at.the.ingress.router..MPLS. |
| 747c0 | 6c 61 62 65 6c 73 20 61 72 65 20 65 78 63 68 61 6e 67 65 64 20 61 6e 64 20 70 6f 70 75 6c 61 74 | labels.are.exchanged.and.populat |
| 747e0 | 65 64 20 62 79 20 49 47 50 73 20 6c 69 6b 65 20 49 53 2d 49 53 2e 53 65 67 6d 65 6e 74 20 52 6f | ed.by.IGPs.like.IS-IS.Segment.Ro |
| 74800 | 75 74 69 6e 67 20 61 73 20 70 65 72 20 52 46 43 38 36 36 37 20 66 6f 72 20 4d 50 4c 53 20 64 61 | uting.as.per.RFC8667.for.MPLS.da |
| 74820 | 74 61 70 6c 61 6e 65 2e 20 49 74 20 73 75 70 70 6f 72 74 73 20 49 50 76 34 2c 20 49 50 76 36 20 | taplane..It.supports.IPv4,.IPv6. |
| 74840 | 61 6e 64 20 45 43 4d 50 20 61 6e 64 20 68 61 73 20 62 65 65 6e 20 74 65 73 74 65 64 20 61 67 61 | and.ECMP.and.has.been.tested.aga |
| 74860 | 69 6e 73 74 20 43 69 73 63 6f 20 26 20 4a 75 6e 69 70 65 72 20 72 6f 75 74 65 72 73 2e 68 6f 77 | inst.Cisco.&.Juniper.routers.how |
| 74880 | 65 76 65 72 2c 74 68 69 73 20 64 65 70 6c 6f 79 6d 65 6e 74 20 69 73 20 73 74 69 6c 6c 20 45 58 | ever,this.deployment.is.still.EX |
| 748a0 | 50 45 52 49 4d 45 4e 54 41 4c 20 66 6f 72 20 46 52 52 2e 00 53 65 6c 65 63 74 20 54 4c 53 20 76 | PERIMENTAL.for.FRR..Select.TLS.v |
| 748c0 | 65 72 73 69 6f 6e 20 75 73 65 64 2e 00 53 65 6c 65 63 74 20 63 69 70 68 65 72 20 73 75 69 74 65 | ersion.used..Select.cipher.suite |
| 748e0 | 20 75 73 65 64 20 66 6f 72 20 63 72 79 70 74 6f 67 72 61 70 68 69 63 20 6f 70 65 72 61 74 69 6f | .used.for.cryptographic.operatio |
| 74900 | 6e 73 2e 20 54 68 69 73 20 73 65 74 74 69 6e 67 20 69 73 20 6d 61 6e 64 61 74 6f 72 79 2e 00 53 | ns..This.setting.is.mandatory..S |
| 74920 | 65 6c 65 63 74 20 68 6f 77 20 6c 61 62 65 6c 73 20 61 72 65 20 61 6c 6c 6f 63 61 74 65 64 20 69 | elect.how.labels.are.allocated.i |
| 74940 | 6e 20 74 68 65 20 67 69 76 65 6e 20 56 52 46 2e 20 42 79 20 64 65 66 61 75 6c 74 2c 20 74 68 65 | n.the.given.VRF..By.default,.the |
| 74960 | 20 70 65 72 2d 76 72 66 20 6d 6f 64 65 20 69 73 20 73 65 6c 65 63 74 65 64 2c 20 61 6e 64 20 6f | .per-vrf.mode.is.selected,.and.o |
| 74980 | 6e 65 20 6c 61 62 65 6c 20 69 73 20 75 73 65 64 20 66 6f 72 20 61 6c 6c 20 70 72 65 66 69 78 65 | ne.label.is.used.for.all.prefixe |
| 749a0 | 73 20 66 72 6f 6d 20 74 68 65 20 56 52 46 2e 20 54 68 65 20 70 65 72 2d 6e 65 78 74 68 6f 70 20 | s.from.the.VRF..The.per-nexthop. |
| 749c0 | 77 69 6c 6c 20 75 73 65 20 61 20 75 6e 69 71 75 65 20 6c 61 62 65 6c 20 66 6f 72 20 61 6c 6c 20 | will.use.a.unique.label.for.all. |
| 749e0 | 70 72 65 66 69 78 65 73 20 74 68 61 74 20 61 72 65 20 72 65 61 63 68 61 62 6c 65 20 76 69 61 20 | prefixes.that.are.reachable.via. |
| 74a00 | 74 68 65 20 73 61 6d 65 20 6e 65 78 74 68 6f 70 2e 00 53 65 6c 66 20 53 69 67 6e 65 64 20 43 41 | the.same.nexthop..Self.Signed.CA |
| 74a20 | 00 53 65 6e 64 20 61 20 50 72 6f 78 79 20 50 72 6f 74 6f 63 6f 6c 20 76 65 72 73 69 6f 6e 20 31 | .Send.a.Proxy.Protocol.version.1 |
| 74a40 | 20 68 65 61 64 65 72 20 28 74 65 78 74 20 66 6f 72 6d 61 74 29 00 53 65 6e 64 20 61 20 50 72 6f | .header.(text.format).Send.a.Pro |
| 74a60 | 78 79 20 50 72 6f 74 6f 63 6f 6c 20 76 65 72 73 69 6f 6e 20 32 20 68 65 61 64 65 72 20 28 62 69 | xy.Protocol.version.2.header.(bi |
| 74a80 | 6e 61 72 79 20 66 6f 72 6d 61 74 29 00 53 65 6e 64 20 61 6c 6c 20 44 4e 53 20 71 75 65 72 69 65 | nary.format).Send.all.DNS.querie |
| 74aa0 | 73 20 74 6f 20 74 68 65 20 49 50 76 34 2f 49 50 76 36 20 44 4e 53 20 73 65 72 76 65 72 20 73 70 | s.to.the.IPv4/IPv6.DNS.server.sp |
| 74ac0 | 65 63 69 66 69 65 64 20 75 6e 64 65 72 20 60 3c 61 64 64 72 65 73 73 3e 60 20 6f 6e 20 6f 70 74 | ecified.under.`<address>`.on.opt |
| 74ae0 | 69 6f 6e 61 6c 20 70 6f 72 74 20 73 70 65 63 69 66 69 65 64 20 75 6e 64 65 72 20 60 3c 70 6f 72 | ional.port.specified.under.`<por |
| 74b00 | 74 3e 60 2e 20 54 68 65 20 70 6f 72 74 20 64 65 66 61 75 6c 74 73 20 74 6f 20 35 33 2e 20 59 6f | t>`..The.port.defaults.to.53..Yo |
| 74b20 | 75 20 63 61 6e 20 63 6f 6e 66 69 67 75 72 65 20 6d 75 6c 74 69 70 6c 65 20 6e 61 6d 65 73 65 72 | u.can.configure.multiple.nameser |
| 74b40 | 76 65 72 73 20 68 65 72 65 2e 00 53 65 6e 64 20 65 6d 70 74 79 20 53 53 49 44 20 69 6e 20 62 65 | vers.here..Send.empty.SSID.in.be |
| 74b60 | 61 63 6f 6e 73 20 61 6e 64 20 69 67 6e 6f 72 65 20 70 72 6f 62 65 20 72 65 71 75 65 73 74 20 66 | acons.and.ignore.probe.request.f |
| 74b80 | 72 61 6d 65 73 20 74 68 61 74 20 64 6f 20 6e 6f 74 20 73 70 65 63 69 66 79 20 66 75 6c 6c 20 53 | rames.that.do.not.specify.full.S |
| 74ba0 | 53 49 44 2c 20 69 2e 65 2e 2c 20 72 65 71 75 69 72 65 20 73 74 61 74 69 6f 6e 73 20 74 6f 20 6b | SID,.i.e.,.require.stations.to.k |
| 74bc0 | 6e 6f 77 20 53 53 49 44 2e 00 53 65 6e 64 20 65 6d 70 74 79 20 53 53 49 44 20 69 6e 20 62 65 61 | now.SSID..Send.empty.SSID.in.bea |
| 74be0 | 63 6f 6e 73 20 61 6e 64 20 69 67 6e 6f 72 65 20 70 72 6f 62 65 20 72 65 71 75 65 73 74 20 66 72 | cons.and.ignore.probe.request.fr |
| 74c00 | 61 6d 65 73 20 74 68 61 74 20 64 6f 20 6e 6f 74 20 73 70 65 63 69 66 79 20 66 75 6c 6c 20 53 53 | ames.that.do.not.specify.full.SS |
| 74c20 | 49 44 2c 20 69 2e 65 2e 2c 20 72 65 71 75 69 72 65 20 73 74 61 74 69 6f 6e 73 20 74 6f 20 6b 6e | ID,.i.e.,.require.stations.to.kn |
| 74c40 | 6f 77 20 74 68 65 20 53 53 49 44 2e 00 53 65 6e 74 20 74 6f 20 74 68 65 20 63 6c 69 65 6e 74 20 | ow.the.SSID..Sent.to.the.client. |
| 74c60 | 28 4c 41 43 29 20 69 6e 20 74 68 65 20 48 6f 73 74 2d 4e 61 6d 65 20 61 74 74 72 69 62 75 74 65 | (LAC).in.the.Host-Name.attribute |
| 74c80 | 00 53 65 72 69 61 6c 20 43 6f 6e 73 6f 6c 65 00 53 65 72 69 61 6c 20 69 6e 74 65 72 66 61 63 65 | .Serial.Console.Serial.interface |
| 74ca0 | 73 20 63 61 6e 20 62 65 20 61 6e 79 20 69 6e 74 65 72 66 61 63 65 20 77 68 69 63 68 20 69 73 20 | s.can.be.any.interface.which.is. |
| 74cc0 | 64 69 72 65 63 74 6c 79 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 74 68 65 20 43 50 55 20 6f 72 | directly.connected.to.the.CPU.or |
| 74ce0 | 20 63 68 69 70 73 65 74 20 28 6d 6f 73 74 6c 79 20 6b 6e 6f 77 6e 20 61 73 20 61 20 74 74 79 53 | .chipset.(mostly.known.as.a.ttyS |
| 74d00 | 20 69 6e 74 65 72 66 61 63 65 20 69 6e 20 4c 69 6e 75 78 29 20 6f 72 20 61 6e 79 20 6f 74 68 65 | .interface.in.Linux).or.any.othe |
| 74d20 | 72 20 55 53 42 20 74 6f 20 73 65 72 69 61 6c 20 63 6f 6e 76 65 72 74 65 72 20 28 50 72 6f 6c 69 | r.USB.to.serial.converter.(Proli |
| 74d40 | 66 69 63 20 50 4c 32 33 30 33 20 6f 72 20 46 54 44 49 20 46 54 32 33 32 2f 46 54 34 32 33 32 20 | fic.PL2303.or.FTDI.FT232/FT4232. |
| 74d60 | 62 61 73 65 64 20 63 68 69 70 73 29 2e 00 53 65 72 76 65 72 00 53 65 72 76 65 72 20 43 65 72 74 | based.chips)..Server.Server.Cert |
| 74d80 | 69 66 69 63 61 74 65 00 53 65 72 76 65 72 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 53 65 72 | ificate.Server.Configuration.Ser |
| 74da0 | 76 65 72 20 53 69 64 65 00 53 65 72 76 65 72 20 53 69 64 65 3a 00 53 65 72 76 65 72 20 62 72 69 | ver.Side.Server.Side:.Server.bri |
| 74dc0 | 64 67 65 00 53 65 72 76 65 72 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 53 65 72 76 65 72 20 | dge.Server.configuration.Server. |
| 74de0 | 6e 61 6d 65 73 20 66 6f 72 20 76 69 72 74 75 61 6c 20 68 6f 73 74 73 20 69 74 20 63 61 6e 20 62 | names.for.virtual.hosts.it.can.b |
| 74e00 | 65 20 65 78 61 63 74 2c 20 77 69 6c 64 63 61 72 64 20 6f 72 20 72 65 67 65 78 2e 00 53 65 72 76 | e.exact,.wildcard.or.regex..Serv |
| 74e20 | 65 72 3a 00 53 65 72 76 69 63 65 00 53 65 72 76 69 63 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f | er:.Service.Service.configuratio |
| 74e40 | 6e 20 69 73 20 72 65 73 70 6f 6e 73 69 62 6c 65 20 66 6f 72 20 62 69 6e 64 69 6e 67 20 74 6f 20 | n.is.responsible.for.binding.to. |
| 74e60 | 61 20 73 70 65 63 69 66 69 63 20 70 6f 72 74 2c 20 77 68 69 6c 65 20 74 68 65 20 62 61 63 6b 65 | a.specific.port,.while.the.backe |
| 74e80 | 6e 64 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 64 65 74 65 72 6d 69 6e 65 73 20 74 68 65 20 | nd.configuration.determines.the. |
| 74ea0 | 74 79 70 65 20 6f 66 20 6c 6f 61 64 20 62 61 6c 61 6e 63 69 6e 67 20 74 6f 20 62 65 20 61 70 70 | type.of.load.balancing.to.be.app |
| 74ec0 | 6c 69 65 64 20 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 72 65 61 6c 20 73 65 72 76 | lied.and.specifies.the.real.serv |
| 74ee0 | 65 72 73 20 74 6f 20 62 65 20 75 74 69 6c 69 7a 65 64 2e 00 53 65 74 20 42 46 44 20 70 65 65 72 | ers.to.be.utilized..Set.BFD.peer |
| 74f00 | 20 49 50 76 34 20 61 64 64 72 65 73 73 20 6f 72 20 49 50 76 36 20 61 64 64 72 65 73 73 00 53 65 | .IPv4.address.or.IPv6.address.Se |
| 74f20 | 74 20 42 47 50 20 63 6f 6d 6d 75 6e 69 74 79 2d 6c 69 73 74 20 74 6f 20 65 78 61 63 74 6c 79 20 | t.BGP.community-list.to.exactly. |
| 74f40 | 6d 61 74 63 68 2e 00 53 65 74 20 42 47 50 20 6c 6f 63 61 6c 20 70 72 65 66 65 72 65 6e 63 65 20 | match..Set.BGP.local.preference. |
| 74f60 | 61 74 74 72 69 62 75 74 65 2e 00 53 65 74 20 42 47 50 20 6f 72 69 67 69 6e 20 63 6f 64 65 2e 00 | attribute..Set.BGP.origin.code.. |
| 74f80 | 53 65 74 20 42 47 50 20 6f 72 69 67 69 6e 61 74 6f 72 20 49 44 20 61 74 74 72 69 62 75 74 65 2e | Set.BGP.originator.ID.attribute. |
| 74fa0 | 00 53 65 74 20 42 47 50 20 77 65 69 67 68 74 20 61 74 74 72 69 62 75 74 65 00 53 65 74 20 44 4e | .Set.BGP.weight.attribute.Set.DN |
| 74fc0 | 41 54 20 72 75 6c 65 20 32 30 20 74 6f 20 6f 6e 6c 79 20 4e 41 54 20 55 44 50 20 70 61 63 6b 65 | AT.rule.20.to.only.NAT.UDP.packe |
| 74fe0 | 74 73 00 53 65 74 20 49 50 20 66 72 61 67 6d 65 6e 74 20 6d 61 74 63 68 2c 20 77 68 65 72 65 3a | ts.Set.IP.fragment.match,.where: |
| 75000 | 00 53 65 74 20 49 50 53 65 63 20 69 6e 62 6f 75 6e 64 20 6d 61 74 63 68 20 63 72 69 74 65 72 69 | .Set.IPSec.inbound.match.criteri |
| 75020 | 61 73 2c 20 77 68 65 72 65 3a 00 53 65 74 20 4f 53 50 46 20 65 78 74 65 72 6e 61 6c 20 6d 65 74 | as,.where:.Set.OSPF.external.met |
| 75040 | 72 69 63 2d 74 79 70 65 2e 00 53 65 74 20 53 4e 41 54 20 72 75 6c 65 20 32 30 20 74 6f 20 6f 6e | ric-type..Set.SNAT.rule.20.to.on |
| 75060 | 6c 79 20 4e 41 54 20 54 43 50 20 61 6e 64 20 55 44 50 20 70 61 63 6b 65 74 73 00 53 65 74 20 53 | ly.NAT.TCP.and.UDP.packets.Set.S |
| 75080 | 4e 41 54 20 72 75 6c 65 20 32 30 20 74 6f 20 6f 6e 6c 79 20 4e 41 54 20 70 61 63 6b 65 74 73 20 | NAT.rule.20.to.only.NAT.packets. |
| 750a0 | 61 72 72 69 76 69 6e 67 20 66 72 6f 6d 20 74 68 65 20 31 39 32 2e 30 2e 32 2e 30 2f 32 34 20 6e | arriving.from.the.192.0.2.0/24.n |
| 750c0 | 65 74 77 6f 72 6b 00 53 65 74 20 53 4e 41 54 20 72 75 6c 65 20 33 30 20 74 6f 20 6f 6e 6c 79 20 | etwork.Set.SNAT.rule.30.to.only. |
| 750e0 | 4e 41 54 20 70 61 63 6b 65 74 73 20 61 72 72 69 76 69 6e 67 20 66 72 6f 6d 20 74 68 65 20 32 30 | NAT.packets.arriving.from.the.20 |
| 75100 | 33 2e 30 2e 31 31 33 2e 30 2f 32 34 20 6e 65 74 77 6f 72 6b 20 77 69 74 68 20 61 20 73 6f 75 72 | 3.0.113.0/24.network.with.a.sour |
| 75120 | 63 65 20 70 6f 72 74 20 6f 66 20 38 30 20 61 6e 64 20 34 34 33 00 53 65 74 20 53 53 4c 20 63 65 | ce.port.of.80.and.443.Set.SSL.ce |
| 75140 | 72 74 65 66 69 63 61 74 65 20 3c 6e 61 6d 65 3e 20 66 6f 72 20 73 65 72 76 69 63 65 20 3c 6e 61 | rteficate.<name>.for.service.<na |
| 75160 | 6d 65 3e 00 53 65 74 20 53 53 4c 20 63 65 72 74 69 66 69 63 61 74 65 20 3c 6e 61 6d 65 3e 20 66 | me>.Set.SSL.certificate.<name>.f |
| 75180 | 6f 72 20 73 65 72 76 69 63 65 20 3c 6e 61 6d 65 3e 00 53 65 74 20 54 43 50 2d 4d 53 53 20 28 6d | or.service.<name>.Set.TCP-MSS.(m |
| 751a0 | 61 78 69 6d 75 6d 20 73 65 67 6d 65 6e 74 20 73 69 7a 65 29 20 66 6f 72 20 74 68 65 20 63 6f 6e | aximum.segment.size).for.the.con |
| 751c0 | 6e 65 63 74 69 6f 6e 00 53 65 74 20 54 54 4c 20 74 6f 20 33 30 30 20 73 65 63 6f 6e 64 73 00 53 | nection.Set.TTL.to.300.seconds.S |
| 751e0 | 65 74 20 56 69 72 74 75 61 6c 20 54 75 6e 6e 65 6c 20 49 6e 74 65 72 66 61 63 65 00 53 65 74 20 | et.Virtual.Tunnel.Interface.Set. |
| 75200 | 61 20 63 6f 6e 74 61 69 6e 65 72 20 64 65 73 63 72 69 70 74 69 6f 6e 00 53 65 74 20 61 20 64 65 | a.container.description.Set.a.de |
| 75220 | 73 63 72 69 70 74 69 6f 6e 20 66 6f 72 20 74 68 65 20 73 68 61 70 65 72 2e 00 53 65 74 20 61 20 | scription.for.the.shaper..Set.a. |
| 75240 | 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 6e 64 2f 6f 72 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 | destination.and/or.source.addres |
| 75260 | 73 2e 20 41 63 63 65 70 74 65 64 20 69 6e 70 75 74 20 66 6f 72 20 69 70 76 34 3a 00 53 65 74 20 | s..Accepted.input.for.ipv4:.Set. |
| 75280 | 61 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 6e 64 2f 6f 72 20 73 6f 75 72 63 65 20 70 6f 72 74 | a.destination.and/or.source.port |
| 752a0 | 2e 20 41 63 63 65 70 74 65 64 20 69 6e 70 75 74 3a 00 53 65 74 20 61 20 68 75 6d 61 6e 20 72 65 | ..Accepted.input:.Set.a.human.re |
| 752c0 | 61 64 61 62 6c 65 2c 20 64 65 73 63 72 69 70 74 69 76 65 20 61 6c 69 61 73 20 66 6f 72 20 74 68 | adable,.descriptive.alias.for.th |
| 752e0 | 69 73 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 20 41 6c 69 61 73 20 69 73 20 75 73 65 64 20 62 79 20 | is.connection..Alias.is.used.by. |
| 75300 | 65 2e 67 2e 20 74 68 65 20 3a 6f 70 63 6d 64 3a 60 73 68 6f 77 20 69 6e 74 65 72 66 61 63 65 73 | e.g..the.:opcmd:`show.interfaces |
| 75320 | 60 20 63 6f 6d 6d 61 6e 64 20 6f 72 20 53 4e 4d 50 20 62 61 73 65 64 20 6d 6f 6e 69 74 6f 72 69 | `.command.or.SNMP.based.monitori |
| 75340 | 6e 67 20 74 6f 6f 6c 73 2e 00 53 65 74 20 61 20 6c 69 6d 69 74 20 6f 6e 20 74 68 65 20 6d 61 78 | ng.tools..Set.a.limit.on.the.max |
| 75360 | 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 63 6f 6e 63 75 72 72 65 6e 74 20 6c 6f 67 67 65 64 | imum.number.of.concurrent.logged |
| 75380 | 2d 69 6e 20 75 73 65 72 73 20 6f 6e 20 74 68 65 20 73 79 73 74 65 6d 2e 00 53 65 74 20 61 20 6d | -in.users.on.the.system..Set.a.m |
| 753a0 | 65 61 6e 69 6e 67 66 75 6c 20 64 65 73 63 72 69 70 74 69 6f 6e 2e 00 53 65 74 20 61 20 6e 61 6d | eaningful.description..Set.a.nam |
| 753c0 | 65 64 20 61 70 69 20 6b 65 79 2e 20 45 76 65 72 79 20 6b 65 79 20 68 61 73 20 74 68 65 20 73 61 | ed.api.key..Every.key.has.the.sa |
| 753e0 | 6d 65 2c 20 66 75 6c 6c 20 70 65 72 6d 69 73 73 69 6f 6e 73 20 6f 6e 20 74 68 65 20 73 79 73 74 | me,.full.permissions.on.the.syst |
| 75400 | 65 6d 2e 00 53 65 74 20 61 20 72 75 6c 65 20 64 65 73 63 72 69 70 74 69 6f 6e 2e 00 53 65 74 20 | em..Set.a.rule.description..Set. |
| 75420 | 61 20 73 70 65 63 69 66 69 63 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 6d 61 72 6b 2e 00 53 65 74 20 | a.specific.connection.mark..Set. |
| 75440 | 61 20 73 70 65 63 69 66 69 63 20 70 61 63 6b 65 74 20 6d 61 72 6b 20 76 61 6c 75 65 2e 00 53 65 | a.specific.packet.mark.value..Se |
| 75460 | 74 20 61 20 73 70 65 63 69 66 69 63 20 70 61 63 6b 65 74 20 6d 61 72 6b 2e 00 53 65 74 20 61 20 | t.a.specific.packet.mark..Set.a. |
| 75480 | 73 70 65 63 69 66 69 63 20 76 61 6c 75 65 20 6f 66 20 44 69 66 66 65 72 65 6e 74 69 61 74 65 64 | specific.value.of.Differentiated |
| 754a0 | 20 53 65 72 76 69 63 65 73 20 43 6f 64 65 70 6f 69 6e 74 20 28 44 53 43 50 29 2e 00 53 65 74 20 | .Services.Codepoint.(DSCP)..Set. |
| 754c0 | 61 63 74 69 6f 6e 20 66 6f 72 20 74 68 65 20 72 6f 75 74 65 2d 6d 61 70 20 70 6f 6c 69 63 79 2e | action.for.the.route-map.policy. |
| 754e0 | 00 53 65 74 20 61 63 74 69 6f 6e 20 74 6f 20 74 61 6b 65 20 6f 6e 20 65 6e 74 72 69 65 73 20 6d | .Set.action.to.take.on.entries.m |
| 75500 | 61 74 63 68 69 6e 67 20 74 68 69 73 20 72 75 6c 65 2e 00 53 65 74 20 61 6e 20 3a 61 62 62 72 3a | atching.this.rule..Set.an.:abbr: |
| 75520 | 60 41 20 28 41 64 64 72 65 73 73 29 60 20 72 65 63 6f 72 64 2e 20 53 75 70 70 6f 72 74 73 20 60 | `A.(Address)`.record..Supports.` |
| 75540 | 60 40 60 60 20 61 6e 64 20 60 60 61 6e 79 60 60 20 6b 65 79 77 6f 72 64 73 2e 00 53 65 74 20 61 | `@``.and.``any``.keywords..Set.a |
| 75560 | 6e 20 3a 61 62 62 72 3a 60 41 41 41 41 20 28 49 50 76 36 20 41 64 64 72 65 73 73 29 60 20 72 65 | n.:abbr:`AAAA.(IPv6.Address)`.re |
| 75580 | 63 6f 72 64 2e 20 53 75 70 70 6f 72 74 73 20 60 60 40 60 60 20 61 6e 64 20 60 60 61 6e 79 60 60 | cord..Supports.``@``.and.``any`` |
| 755a0 | 20 6b 65 79 77 6f 72 64 73 2e 00 53 65 74 20 61 6e 20 3a 61 62 62 72 3a 60 43 4e 41 4d 45 20 28 | .keywords..Set.an.:abbr:`CNAME.( |
| 755c0 | 43 61 6e 6f 6e 69 63 61 6c 20 6e 61 6d 65 29 60 20 72 65 63 6f 72 64 2e 20 53 75 70 70 6f 72 74 | Canonical.name)`.record..Support |
| 755e0 | 73 20 60 60 40 60 60 20 6b 65 79 77 6f 72 64 2e 00 53 65 74 20 61 6e 20 3a 61 62 62 72 3a 60 4e | s.``@``.keyword..Set.an.:abbr:`N |
| 75600 | 41 50 54 52 20 28 4e 61 6d 69 6e 67 20 61 75 74 68 6f 72 69 74 79 20 70 6f 69 6e 74 65 72 29 60 | APTR.(Naming.authority.pointer)` |
| 75620 | 20 72 65 63 6f 72 64 2e 20 53 75 70 70 6f 72 74 73 20 60 60 40 60 60 20 6b 65 79 77 6f 72 64 2e | .record..Supports.``@``.keyword. |
| 75640 | 20 4e 41 50 54 52 20 72 65 63 6f 72 64 73 20 73 75 70 70 6f 72 74 20 74 68 65 20 66 6f 6c 6c 6f | .NAPTR.records.support.the.follo |
| 75660 | 77 69 6e 67 20 6f 70 74 69 6f 6e 73 3a 00 53 65 74 20 61 6e 20 3a 61 62 62 72 3a 60 4e 53 20 28 | wing.options:.Set.an.:abbr:`NS.( |
| 75680 | 4e 61 6d 65 73 65 72 76 65 72 29 60 20 72 65 63 6f 72 64 2e 00 53 65 74 20 61 6e 20 3a 61 62 62 | Nameserver)`.record..Set.an.:abb |
| 756a0 | 72 3a 60 50 54 52 20 28 50 6f 69 6e 74 65 72 20 72 65 63 6f 72 64 29 60 20 72 65 63 6f 72 64 2e | r:`PTR.(Pointer.record)`.record. |
| 756c0 | 20 53 75 70 70 6f 72 74 73 20 60 60 40 60 60 20 6b 65 79 77 6f 72 64 2e 00 53 65 74 20 61 6e 20 | .Supports.``@``.keyword..Set.an. |
| 756e0 | 3a 61 62 62 72 3a 60 53 50 46 20 28 53 65 6e 64 65 72 20 70 6f 6c 69 63 79 20 66 72 61 6d 65 77 | :abbr:`SPF.(Sender.policy.framew |
| 75700 | 6f 72 6b 29 60 20 72 65 63 6f 72 64 2e 20 53 75 70 70 6f 72 74 73 20 60 60 40 60 60 20 6b 65 79 | ork)`.record..Supports.``@``.key |
| 75720 | 77 6f 72 64 2e 00 53 65 74 20 61 6e 20 3a 61 62 62 72 3a 60 53 52 56 20 28 53 65 72 76 69 63 65 | word..Set.an.:abbr:`SRV.(Service |
| 75740 | 29 60 20 72 65 63 6f 72 64 2e 20 53 75 70 70 6f 72 74 73 20 60 60 40 60 60 20 6b 65 79 77 6f 72 | )`.record..Supports.``@``.keywor |
| 75760 | 64 2e 00 53 65 74 20 61 6e 20 3a 61 62 62 72 3a 60 54 58 54 20 28 54 65 78 74 29 60 20 72 65 63 | d..Set.an.:abbr:`TXT.(Text)`.rec |
| 75780 | 6f 72 64 2e 20 53 75 70 70 6f 72 74 73 20 60 60 40 60 60 20 6b 65 79 77 6f 72 64 2e 00 53 65 74 | ord..Supports.``@``.keyword..Set |
| 757a0 | 20 61 6e 20 41 50 49 2d 4b 45 59 20 69 73 20 74 68 65 20 6d 69 6e 69 6d 61 6c 20 63 6f 6e 66 69 | .an.API-KEY.is.the.minimal.confi |
| 757c0 | 67 75 72 61 74 69 6f 6e 20 74 6f 20 67 65 74 20 61 20 77 6f 72 6b 69 6e 67 20 41 50 49 20 45 6e | guration.to.get.a.working.API.En |
| 757e0 | 64 70 6f 69 6e 74 2e 00 53 65 74 20 61 6e 20 65 78 74 65 72 6e 61 6c 20 70 6f 72 74 2d 72 61 6e | dpoint..Set.an.external.port-ran |
| 75800 | 67 65 20 66 6f 72 20 74 68 65 20 65 78 74 65 72 6e 61 6c 20 70 6f 6f 6c 2c 20 74 68 65 20 64 65 | ge.for.the.external.pool,.the.de |
| 75820 | 66 61 75 6c 74 20 72 61 6e 67 65 20 69 73 20 31 30 32 34 2d 36 35 35 33 35 2e 20 4d 75 6c 74 69 | fault.range.is.1024-65535..Multi |
| 75840 | 70 6c 65 20 65 6e 74 72 69 65 73 20 63 61 6e 20 62 65 20 61 64 64 65 64 20 74 6f 20 74 68 65 20 | ple.entries.can.be.added.to.the. |
| 75860 | 73 61 6d 65 20 70 6f 6f 6c 2e 00 53 65 74 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 62 61 | same.pool..Set.authentication.ba |
| 75880 | 63 6b 65 6e 64 2e 20 54 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 61 75 74 68 65 6e 74 69 63 61 | ckend..The.configured.authentica |
| 758a0 | 74 69 6f 6e 20 62 61 63 6b 65 6e 64 20 69 73 20 75 73 65 64 20 66 6f 72 20 61 6c 6c 20 71 75 65 | tion.backend.is.used.for.all.que |
| 758c0 | 72 69 65 73 2e 00 53 65 74 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 6d 61 72 6b 20 76 61 6c 75 65 2e | ries..Set.connection.mark.value. |
| 758e0 | 00 53 65 74 20 63 6f 6e 74 61 69 6e 65 72 20 63 61 70 61 62 69 6c 69 74 69 65 73 20 6f 72 20 70 | .Set.container.capabilities.or.p |
| 75900 | 65 72 6d 69 73 73 69 6f 6e 73 2e 00 53 65 74 20 63 6f 6e 74 61 69 6e 65 72 20 73 79 73 63 74 6c | ermissions..Set.container.sysctl |
| 75920 | 20 76 61 6c 75 65 73 2e 00 53 65 74 20 63 75 73 74 6f 6d 20 48 54 54 50 20 68 65 61 64 65 72 73 | .values..Set.custom.HTTP.headers |
| 75940 | 20 74 6f 20 62 65 20 69 6e 63 6c 75 64 65 64 20 69 6e 20 61 6c 6c 20 72 65 73 70 6f 6e 73 65 73 | .to.be.included.in.all.responses |
| 75960 | 00 53 65 74 20 63 75 73 74 6f 6d 20 48 54 54 50 20 68 65 61 64 65 72 73 20 74 6f 20 62 65 20 69 | .Set.custom.HTTP.headers.to.be.i |
| 75980 | 6e 63 6c 75 64 65 64 20 69 6e 20 61 6c 6c 20 72 65 73 70 6f 6e 73 65 73 20 75 73 69 6e 67 20 74 | ncluded.in.all.responses.using.t |
| 759a0 | 68 65 20 62 61 63 6b 65 6e 64 00 53 65 74 20 64 65 6c 61 79 20 62 65 74 77 65 65 6e 20 67 72 61 | he.backend.Set.delay.between.gra |
| 759c0 | 74 75 69 74 6f 75 73 20 41 52 50 20 6d 65 73 73 61 67 65 73 20 73 65 6e 74 20 6f 6e 20 61 6e 20 | tuitous.ARP.messages.sent.on.an. |
| 759e0 | 69 6e 74 65 72 66 61 63 65 2e 00 53 65 74 20 64 65 6c 61 79 20 66 6f 72 20 73 65 63 6f 6e 64 20 | interface..Set.delay.for.second. |
| 75a00 | 73 65 74 20 6f 66 20 67 72 61 74 75 69 74 6f 75 73 20 41 52 50 73 20 61 66 74 65 72 20 74 72 61 | set.of.gratuitous.ARPs.after.tra |
| 75a20 | 6e 73 69 74 69 6f 6e 20 74 6f 20 4d 41 53 54 45 52 2e 00 53 65 74 20 64 65 73 63 72 69 70 74 69 | nsition.to.MASTER..Set.descripti |
| 75a40 | 6f 6e 20 60 3c 74 65 78 74 3e 60 20 66 6f 72 20 64 79 6e 61 6d 69 63 20 44 4e 53 20 73 65 72 76 | on.`<text>`.for.dynamic.DNS.serv |
| 75a60 | 69 63 65 20 62 65 69 6e 67 20 63 6f 6e 66 69 67 75 72 65 64 2e 00 53 65 74 20 64 65 73 63 72 69 | ice.being.configured..Set.descri |
| 75a80 | 70 74 69 6f 6e 20 66 6f 72 20 61 73 2d 70 61 74 68 2d 6c 69 73 74 20 70 6f 6c 69 63 79 2e 00 53 | ption.for.as-path-list.policy..S |
| 75aa0 | 65 74 20 64 65 73 63 72 69 70 74 69 6f 6e 20 66 6f 72 20 63 6f 6d 6d 75 6e 69 74 79 2d 6c 69 73 | et.description.for.community-lis |
| 75ac0 | 74 20 70 6f 6c 69 63 79 2e 00 53 65 74 20 64 65 73 63 72 69 70 74 69 6f 6e 20 66 6f 72 20 65 78 | t.policy..Set.description.for.ex |
| 75ae0 | 74 63 6f 6d 6d 75 6e 69 74 79 2d 6c 69 73 74 20 70 6f 6c 69 63 79 2e 00 53 65 74 20 64 65 73 63 | tcommunity-list.policy..Set.desc |
| 75b00 | 72 69 70 74 69 6f 6e 20 66 6f 72 20 6c 61 72 67 65 2d 63 6f 6d 6d 75 6e 69 74 79 2d 6c 69 73 74 | ription.for.large-community-list |
| 75b20 | 20 70 6f 6c 69 63 79 2e 00 53 65 74 20 64 65 73 63 72 69 70 74 69 6f 6e 20 66 6f 72 20 72 75 6c | .policy..Set.description.for.rul |
| 75b40 | 65 20 69 6e 20 49 50 76 36 20 70 72 65 66 69 78 2d 6c 69 73 74 2e 00 53 65 74 20 64 65 73 63 72 | e.in.IPv6.prefix-list..Set.descr |
| 75b60 | 69 70 74 69 6f 6e 20 66 6f 72 20 72 75 6c 65 20 69 6e 20 74 68 65 20 70 72 65 66 69 78 2d 6c 69 | iption.for.rule.in.the.prefix-li |
| 75b80 | 73 74 2e 00 53 65 74 20 64 65 73 63 72 69 70 74 69 6f 6e 20 66 6f 72 20 72 75 6c 65 2e 00 53 65 | st..Set.description.for.rule..Se |
| 75ba0 | 74 20 64 65 73 63 72 69 70 74 69 6f 6e 20 66 6f 72 20 74 68 65 20 49 50 76 36 20 61 63 63 65 73 | t.description.for.the.IPv6.acces |
| 75bc0 | 73 20 6c 69 73 74 2e 00 53 65 74 20 64 65 73 63 72 69 70 74 69 6f 6e 20 66 6f 72 20 74 68 65 20 | s.list..Set.description.for.the. |
| 75be0 | 49 50 76 36 20 70 72 65 66 69 78 2d 6c 69 73 74 20 70 6f 6c 69 63 79 2e 00 53 65 74 20 64 65 73 | IPv6.prefix-list.policy..Set.des |
| 75c00 | 63 72 69 70 74 69 6f 6e 20 66 6f 72 20 74 68 65 20 61 63 63 65 73 73 20 6c 69 73 74 2e 00 53 65 | cription.for.the.access.list..Se |
| 75c20 | 74 20 64 65 73 63 72 69 70 74 69 6f 6e 20 66 6f 72 20 74 68 65 20 70 72 65 66 69 78 2d 6c 69 73 | t.description.for.the.prefix-lis |
| 75c40 | 74 20 70 6f 6c 69 63 79 2e 00 53 65 74 20 64 65 73 63 72 69 70 74 69 6f 6e 20 66 6f 72 20 74 68 | t.policy..Set.description.for.th |
| 75c60 | 65 20 72 6f 75 74 65 2d 6d 61 70 20 70 6f 6c 69 63 79 2e 00 53 65 74 20 64 65 73 63 72 69 70 74 | e.route-map.policy..Set.descript |
| 75c80 | 69 6f 6e 20 66 6f 72 20 74 68 65 20 72 75 6c 65 20 69 6e 20 74 68 65 20 72 6f 75 74 65 2d 6d 61 | ion.for.the.rule.in.the.route-ma |
| 75ca0 | 70 20 70 6f 6c 69 63 79 2e 00 53 65 74 20 64 65 73 63 72 69 70 74 69 6f 6e 20 6f 66 20 74 68 65 | p.policy..Set.description.of.the |
| 75cc0 | 20 70 65 65 72 20 6f 72 20 70 65 65 72 20 67 72 6f 75 70 2e 00 53 65 74 20 64 65 73 63 72 69 70 | .peer.or.peer.group..Set.descrip |
| 75ce0 | 74 69 6f 6e 2e 00 53 65 74 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 6f 72 | tion..Set.destination.address.or |
| 75d00 | 20 70 72 65 66 69 78 20 74 6f 20 6d 61 74 63 68 2e 00 53 65 74 20 64 65 73 74 69 6e 61 74 69 6f | .prefix.to.match..Set.destinatio |
| 75d20 | 6e 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 20 6d 65 74 72 69 63 2e 20 41 64 64 20 6f | n.routing.protocol.metric..Add.o |
| 75d40 | 72 20 73 75 62 74 72 61 63 74 20 6d 65 74 72 69 63 2c 20 6f 72 20 73 65 74 20 6d 65 74 72 69 63 | r.subtract.metric,.or.set.metric |
| 75d60 | 20 76 61 6c 75 65 2e 00 53 65 74 20 65 74 68 31 20 74 6f 20 62 65 20 74 68 65 20 6c 69 73 74 65 | .value..Set.eth1.to.be.the.liste |
| 75d80 | 6e 69 6e 67 20 69 6e 74 65 72 66 61 63 65 20 66 6f 72 20 74 68 65 20 44 48 43 50 76 36 20 72 65 | ning.interface.for.the.DHCPv6.re |
| 75da0 | 6c 61 79 2e 00 53 65 74 20 65 78 65 63 75 74 69 6f 6e 20 74 69 6d 65 20 69 6e 20 63 6f 6d 6d 6f | lay..Set.execution.time.in.commo |
| 75dc0 | 6e 20 63 72 6f 6e 5f 20 74 69 6d 65 20 66 6f 72 6d 61 74 2e 20 41 20 63 72 6f 6e 20 60 3c 73 70 | n.cron_.time.format..A.cron.`<sp |
| 75de0 | 65 63 3e 60 20 6f 66 20 60 60 33 30 20 2a 2f 36 20 2a 20 2a 20 2a 60 60 20 77 6f 75 6c 64 20 65 | ec>`.of.``30.*/6.*.*.*``.would.e |
| 75e00 | 78 65 63 75 74 65 20 74 68 65 20 60 3c 74 61 73 6b 3e 60 20 61 74 20 6d 69 6e 75 74 65 20 33 30 | xecute.the.`<task>`.at.minute.30 |
| 75e20 | 20 70 61 73 74 20 65 76 65 72 79 20 36 74 68 20 68 6f 75 72 2e 00 53 65 74 20 65 78 74 63 6f 6d | .past.every.6th.hour..Set.extcom |
| 75e40 | 6d 75 6e 69 74 79 20 62 61 6e 64 77 69 64 74 68 00 53 65 74 20 65 78 74 65 72 6e 61 6c 20 73 6f | munity.bandwidth.Set.external.so |
| 75e60 | 75 72 63 65 20 70 6f 72 74 20 6c 69 6d 69 74 73 20 74 68 61 74 20 77 69 6c 6c 20 62 65 20 61 6c | urce.port.limits.that.will.be.al |
| 75e80 | 6c 6f 63 61 74 65 64 20 74 6f 20 65 61 63 68 20 73 75 62 73 63 72 69 62 65 72 20 69 6e 64 69 76 | located.to.each.subscriber.indiv |
| 75ea0 | 69 64 75 61 6c 6c 79 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 32 30 | idually..The.default.value.is.20 |
| 75ec0 | 30 30 2e 00 53 65 74 20 68 6f 70 20 6c 69 6d 69 74 20 76 61 6c 75 65 2e 00 53 65 74 20 69 66 20 | 00..Set.hop.limit.value..Set.if. |
| 75ee0 | 61 6e 74 65 6e 6e 61 20 70 61 74 74 65 72 6e 20 64 6f 65 73 20 6e 6f 74 20 63 68 61 6e 67 65 20 | antenna.pattern.does.not.change. |
| 75f00 | 64 75 72 69 6e 67 20 74 68 65 20 6c 69 66 65 74 69 6d 65 20 6f 66 20 61 6e 20 61 73 73 6f 63 69 | during.the.lifetime.of.an.associ |
| 75f20 | 61 74 69 6f 6e 00 53 65 74 20 69 6e 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 6d | ation.Set.inbound.interface.to.m |
| 75f40 | 61 74 63 68 2e 00 53 65 74 20 69 6e 74 65 72 66 61 63 65 73 20 74 6f 20 61 20 7a 6f 6e 65 2e 20 | atch..Set.interfaces.to.a.zone.. |
| 75f60 | 41 20 7a 6f 6e 65 20 63 61 6e 20 68 61 76 65 20 6d 75 6c 74 69 70 6c 65 20 69 6e 74 65 72 66 61 | A.zone.can.have.multiple.interfa |
| 75f80 | 63 65 73 2e 20 42 75 74 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 63 61 6e 20 6f 6e 6c 79 20 62 | ces..But.an.interface.can.only.b |
| 75fa0 | 65 20 61 20 6d 65 6d 62 65 72 20 69 6e 20 6f 6e 65 20 7a 6f 6e 65 2e 00 53 65 74 20 6c 6f 63 61 | e.a.member.in.one.zone..Set.loca |
| 75fc0 | 6c 20 3a 61 62 62 72 3a 60 41 53 4e 20 28 41 75 74 6f 6e 6f 6d 6f 75 73 20 53 79 73 74 65 6d 20 | l.:abbr:`ASN.(Autonomous.System. |
| 75fe0 | 4e 75 6d 62 65 72 29 60 20 74 68 61 74 20 74 68 69 73 20 72 6f 75 74 65 72 20 72 65 70 72 65 73 | Number)`.that.this.router.repres |
| 76000 | 65 6e 74 73 2e 20 54 68 69 73 20 69 73 20 61 20 61 20 6d 61 6e 64 61 74 6f 72 79 20 6f 70 74 69 | ents..This.is.a.a.mandatory.opti |
| 76020 | 6f 6e 21 00 53 65 74 20 6c 6f 63 61 6c 20 61 75 74 6f 6e 6f 6d 6f 75 73 20 73 79 73 74 65 6d 20 | on!.Set.local.autonomous.system. |
| 76040 | 6e 75 6d 62 65 72 20 74 68 61 74 20 74 68 69 73 20 72 6f 75 74 65 72 20 72 65 70 72 65 73 65 6e | number.that.this.router.represen |
| 76060 | 74 73 2e 20 54 68 69 73 20 69 73 20 61 20 6d 61 6e 64 61 74 6f 72 79 20 6f 70 74 69 6f 6e 21 00 | ts..This.is.a.mandatory.option!. |
| 76080 | 53 65 74 20 6d 61 74 63 68 20 63 72 69 74 65 72 69 61 20 62 61 73 65 64 20 6f 6e 20 63 6f 6e 6e | Set.match.criteria.based.on.conn |
| 760a0 | 65 63 74 69 6f 6e 20 6d 61 72 6b 2e 00 53 65 74 20 6d 61 74 63 68 20 63 72 69 74 65 72 69 61 20 | ection.mark..Set.match.criteria. |
| 760c0 | 62 61 73 65 64 20 6f 6e 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 70 6f 72 74 2c 20 77 68 65 72 65 | based.on.destination.port,.where |
| 760e0 | 20 3c 6d 61 74 63 68 5f 63 72 69 74 65 72 69 61 3e 20 63 6f 75 6c 64 20 62 65 3a 00 53 65 74 20 | .<match_criteria>.could.be:.Set. |
| 76100 | 6d 61 74 63 68 20 63 72 69 74 65 72 69 61 20 62 61 73 65 64 20 6f 6e 20 73 65 73 73 69 6f 6e 20 | match.criteria.based.on.session. |
| 76120 | 73 74 61 74 65 2e 00 53 65 74 20 6d 61 74 63 68 20 63 72 69 74 65 72 69 61 20 62 61 73 65 64 20 | state..Set.match.criteria.based. |
| 76140 | 6f 6e 20 73 6f 75 72 63 65 20 6f 72 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 67 72 6f 75 70 73 2c | on.source.or.destination.groups, |
| 76160 | 20 77 68 65 72 65 20 3c 74 65 78 74 3e 20 77 6f 75 6c 64 20 62 65 20 74 68 65 20 67 72 6f 75 70 | .where.<text>.would.be.the.group |
| 76180 | 20 6e 61 6d 65 2f 69 64 65 6e 74 69 66 69 65 72 2e 20 50 72 65 70 65 6e 64 20 63 68 61 72 61 63 | .name/identifier..Prepend.charac |
| 761a0 | 74 65 72 20 27 21 27 20 66 6f 72 20 69 6e 76 65 72 74 65 64 20 6d 61 74 63 68 69 6e 67 20 63 72 | ter.'!'.for.inverted.matching.cr |
| 761c0 | 69 74 65 72 69 61 2e 00 53 65 74 20 6d 61 74 63 68 20 63 72 69 74 65 72 69 61 20 62 61 73 65 64 | iteria..Set.match.criteria.based |
| 761e0 | 20 6f 6e 20 73 6f 75 72 63 65 20 6f 72 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 69 70 76 34 7c 69 | .on.source.or.destination.ipv4|i |
| 76200 | 70 76 36 20 61 64 64 72 65 73 73 2c 20 77 68 65 72 65 20 3c 6d 61 74 63 68 5f 63 72 69 74 65 72 | pv6.address,.where.<match_criter |
| 76220 | 69 61 3e 20 63 6f 75 6c 64 20 62 65 3a 00 53 65 74 20 6d 61 74 63 68 20 63 72 69 74 65 72 69 61 | ia>.could.be:.Set.match.criteria |
| 76240 | 20 62 61 73 65 64 20 6f 6e 20 74 63 70 20 66 6c 61 67 73 2e 20 41 6c 6c 6f 77 65 64 20 76 61 6c | .based.on.tcp.flags..Allowed.val |
| 76260 | 75 65 73 20 66 6f 72 20 54 43 50 20 66 6c 61 67 73 3a 20 53 59 4e 20 41 43 4b 20 46 49 4e 20 52 | ues.for.TCP.flags:.SYN.ACK.FIN.R |
| 76280 | 53 54 20 55 52 47 20 50 53 48 20 41 4c 4c 2e 20 57 68 65 6e 20 73 70 65 63 69 66 79 69 6e 67 20 | ST.URG.PSH.ALL..When.specifying. |
| 762a0 | 6d 6f 72 65 20 74 68 61 6e 20 6f 6e 65 20 66 6c 61 67 2c 20 66 6c 61 67 73 20 73 68 6f 75 6c 64 | more.than.one.flag,.flags.should |
| 762c0 | 20 62 65 20 63 6f 6d 6d 61 2d 73 65 70 61 72 61 74 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 | .be.comma-separated..For.example |
| 762e0 | 20 3a 20 76 61 6c 75 65 20 6f 66 20 27 53 59 4e 2c 21 41 43 4b 2c 21 46 49 4e 2c 21 52 53 54 27 | .:.value.of.'SYN,!ACK,!FIN,!RST' |
| 76300 | 20 77 69 6c 6c 20 6f 6e 6c 79 20 6d 61 74 63 68 20 70 61 63 6b 65 74 73 20 77 69 74 68 20 74 68 | .will.only.match.packets.with.th |
| 76320 | 65 20 53 59 4e 20 66 6c 61 67 20 73 65 74 2c 20 61 6e 64 20 74 68 65 20 41 43 4b 2c 20 46 49 4e | e.SYN.flag.set,.and.the.ACK,.FIN |
| 76340 | 20 61 6e 64 20 52 53 54 20 66 6c 61 67 73 20 75 6e 73 65 74 2e 00 53 65 74 20 6d 61 78 69 6d 75 | .and.RST.flags.unset..Set.maximu |
| 76360 | 6d 20 60 3c 73 69 7a 65 3e 60 20 6f 66 20 44 48 43 50 20 70 61 63 6b 65 74 73 20 69 6e 63 6c 75 | m.`<size>`.of.DHCP.packets.inclu |
| 76380 | 64 69 6e 67 20 72 65 6c 61 79 20 61 67 65 6e 74 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2e 20 49 66 | ding.relay.agent.information..If |
| 763a0 | 20 61 20 44 48 43 50 20 70 61 63 6b 65 74 20 73 69 7a 65 20 73 75 72 70 61 73 73 65 73 20 74 68 | .a.DHCP.packet.size.surpasses.th |
| 763c0 | 69 73 20 76 61 6c 75 65 20 69 74 20 77 69 6c 6c 20 62 65 20 66 6f 72 77 61 72 64 65 64 20 77 69 | is.value.it.will.be.forwarded.wi |
| 763e0 | 74 68 6f 75 74 20 61 70 70 65 6e 64 69 6e 67 20 72 65 6c 61 79 20 61 67 65 6e 74 20 69 6e 66 6f | thout.appending.relay.agent.info |
| 76400 | 72 6d 61 74 69 6f 6e 2e 20 52 61 6e 67 65 20 36 34 2e 2e 2e 31 34 30 30 2c 20 64 65 66 61 75 6c | rmation..Range.64...1400,.defaul |
| 76420 | 74 20 35 37 36 2e 00 53 65 74 20 6d 61 78 69 6d 75 6d 20 61 76 65 72 61 67 65 20 6d 61 74 63 68 | t.576..Set.maximum.average.match |
| 76440 | 69 6e 67 20 72 61 74 65 2e 20 46 6f 72 6d 61 74 20 66 6f 72 20 72 61 74 65 3a 20 69 6e 74 65 67 | ing.rate..Format.for.rate:.integ |
| 76460 | 65 72 2f 74 69 6d 65 5f 75 6e 69 74 2c 20 77 68 65 72 65 20 74 69 6d 65 5f 75 6e 69 74 20 63 6f | er/time_unit,.where.time_unit.co |
| 76480 | 75 6c 64 20 62 65 20 61 6e 79 20 6f 6e 65 20 6f 66 20 73 65 63 6f 6e 64 2c 20 6d 69 6e 75 74 65 | uld.be.any.one.of.second,.minute |
| 764a0 | 2c 20 68 6f 75 72 20 6f 72 20 64 61 79 2e 46 6f 72 20 65 78 61 6d 70 6c 65 20 31 2f 73 65 63 6f | ,.hour.or.day.For.example.1/seco |
| 764c0 | 6e 64 20 69 6d 70 6c 69 65 73 20 72 75 6c 65 20 74 6f 20 62 65 20 6d 61 74 63 68 65 64 20 61 74 | nd.implies.rule.to.be.matched.at |
| 764e0 | 20 61 6e 20 61 76 65 72 61 67 65 20 6f 66 20 6f 6e 63 65 20 70 65 72 20 73 65 63 6f 6e 64 2e 00 | .an.average.of.once.per.second.. |
| 76500 | 53 65 74 20 6d 61 78 69 6d 75 6d 20 68 6f 70 20 63 6f 75 6e 74 20 62 65 66 6f 72 65 20 70 61 63 | Set.maximum.hop.count.before.pac |
| 76520 | 6b 65 74 73 20 61 72 65 20 64 69 73 63 61 72 64 65 64 2c 20 64 65 66 61 75 6c 74 3a 20 31 30 00 | kets.are.discarded,.default:.10. |
| 76540 | 53 65 74 20 6d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 70 61 63 6b 65 74 73 20 74 6f | Set.maximum.number.of.packets.to |
| 76560 | 20 61 6c 6f 77 20 69 6e 20 65 78 63 65 73 73 20 6f 66 20 72 61 74 65 2e 00 53 65 74 20 6d 69 6e | .alow.in.excess.of.rate..Set.min |
| 76580 | 69 6d 75 6d 20 74 69 6d 65 20 69 6e 74 65 72 76 61 6c 20 66 6f 72 20 72 65 66 72 65 73 68 69 6e | imum.time.interval.for.refreshin |
| 765a0 | 67 20 67 72 61 74 75 69 74 6f 75 73 20 41 52 50 73 20 77 68 69 6c 65 20 4d 41 53 54 45 52 2e 00 | g.gratuitous.ARPs.while.MASTER.. |
| 765c0 | 53 65 74 20 6d 6f 64 65 20 66 6f 72 20 49 50 73 65 63 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f | Set.mode.for.IPsec.authenticatio |
| 765e0 | 6e 20 62 65 74 77 65 65 6e 20 56 79 4f 53 20 61 6e 64 20 4c 32 54 50 20 63 6c 69 65 6e 74 73 2e | n.between.VyOS.and.L2TP.clients. |
| 76600 | 00 53 65 74 20 6e 75 6d 62 65 72 20 6f 66 20 67 72 61 74 75 69 74 6f 75 73 20 41 52 50 20 6d 65 | .Set.number.of.gratuitous.ARP.me |
| 76620 | 73 73 61 67 65 73 20 74 6f 20 73 65 6e 64 20 61 74 20 61 20 74 69 6d 65 20 61 66 74 65 72 20 74 | ssages.to.send.at.a.time.after.t |
| 76640 | 72 61 6e 73 69 74 69 6f 6e 20 74 6f 20 4d 41 53 54 45 52 2e 00 53 65 74 20 6e 75 6d 62 65 72 20 | ransition.to.MASTER..Set.number. |
| 76660 | 6f 66 20 67 72 61 74 75 69 74 6f 75 73 20 41 52 50 20 6d 65 73 73 61 67 65 73 20 74 6f 20 73 65 | of.gratuitous.ARP.messages.to.se |
| 76680 | 6e 64 20 61 74 20 61 20 74 69 6d 65 20 77 68 69 6c 65 20 4d 41 53 54 45 52 2e 00 53 65 74 20 6e | nd.at.a.time.while.MASTER..Set.n |
| 766a0 | 75 6d 62 65 72 20 6f 66 20 73 65 63 6f 6e 64 73 20 66 6f 72 20 48 65 6c 6c 6f 20 49 6e 74 65 72 | umber.of.seconds.for.Hello.Inter |
| 766c0 | 76 61 6c 20 74 69 6d 65 72 20 76 61 6c 75 65 2e 20 53 65 74 74 69 6e 67 20 74 68 69 73 20 76 61 | val.timer.value..Setting.this.va |
| 766e0 | 6c 75 65 2c 20 48 65 6c 6c 6f 20 70 61 63 6b 65 74 20 77 69 6c 6c 20 62 65 20 73 65 6e 74 20 65 | lue,.Hello.packet.will.be.sent.e |
| 76700 | 76 65 72 79 20 74 69 6d 65 72 20 76 61 6c 75 65 20 73 65 63 6f 6e 64 73 20 6f 6e 20 74 68 65 20 | very.timer.value.seconds.on.the. |
| 76720 | 73 70 65 63 69 66 69 65 64 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 69 73 20 76 61 6c 75 65 20 | specified.interface..This.value. |
| 76740 | 6d 75 73 74 20 62 65 20 74 68 65 20 73 61 6d 65 20 66 6f 72 20 61 6c 6c 20 72 6f 75 74 65 72 73 | must.be.the.same.for.all.routers |
| 76760 | 20 61 74 74 61 63 68 65 64 20 74 6f 20 61 20 63 6f 6d 6d 6f 6e 20 6e 65 74 77 6f 72 6b 2e 20 54 | .attached.to.a.common.network..T |
| 76780 | 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 31 30 20 73 65 63 6f 6e 64 73 2e 20 | he.default.value.is.10.seconds.. |
| 767a0 | 54 68 65 20 69 6e 74 65 72 76 61 6c 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 36 35 35 33 35 | The.interval.range.is.1.to.65535 |
| 767c0 | 2e 00 53 65 74 20 6e 75 6d 62 65 72 20 6f 66 20 73 65 63 6f 6e 64 73 20 66 6f 72 20 72 6f 75 74 | ..Set.number.of.seconds.for.rout |
| 767e0 | 65 72 20 44 65 61 64 20 49 6e 74 65 72 76 61 6c 20 74 69 6d 65 72 20 76 61 6c 75 65 20 75 73 65 | er.Dead.Interval.timer.value.use |
| 76800 | 64 20 66 6f 72 20 57 61 69 74 20 54 69 6d 65 72 20 61 6e 64 20 49 6e 61 63 74 69 76 69 74 79 20 | d.for.Wait.Timer.and.Inactivity. |
| 76820 | 54 69 6d 65 72 2e 20 54 68 69 73 20 76 61 6c 75 65 20 6d 75 73 74 20 62 65 20 74 68 65 20 73 61 | Timer..This.value.must.be.the.sa |
| 76840 | 6d 65 20 66 6f 72 20 61 6c 6c 20 72 6f 75 74 65 72 73 20 61 74 74 61 63 68 65 64 20 74 6f 20 61 | me.for.all.routers.attached.to.a |
| 76860 | 20 63 6f 6d 6d 6f 6e 20 6e 65 74 77 6f 72 6b 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c | .common.network..The.default.val |
| 76880 | 75 65 20 69 73 20 34 30 20 73 65 63 6f 6e 64 73 2e 20 54 68 65 20 69 6e 74 65 72 76 61 6c 20 72 | ue.is.40.seconds..The.interval.r |
| 768a0 | 61 6e 67 65 20 69 73 20 31 20 74 6f 20 36 35 35 33 35 2e 00 53 65 74 20 70 61 63 6b 65 74 20 6d | ange.is.1.to.65535..Set.packet.m |
| 768c0 | 6f 64 69 66 69 63 61 74 69 6f 6e 73 3a 20 45 78 70 6c 69 63 69 74 6c 79 20 73 65 74 20 54 43 50 | odifications:.Explicitly.set.TCP |
| 768e0 | 20 4d 61 78 69 6d 75 6d 20 73 65 67 6d 65 6e 74 20 73 69 7a 65 20 76 61 6c 75 65 2e 00 53 65 74 | .Maximum.segment.size.value..Set |
| 76900 | 20 70 61 63 6b 65 74 20 6d 6f 64 69 66 69 63 61 74 69 6f 6e 73 3a 20 50 61 63 6b 65 74 20 44 69 | .packet.modifications:.Packet.Di |
| 76920 | 66 66 65 72 65 6e 74 69 61 74 65 64 20 53 65 72 76 69 63 65 73 20 43 6f 64 65 70 6f 69 6e 74 20 | fferentiated.Services.Codepoint. |
| 76940 | 28 44 53 43 50 29 00 53 65 74 20 70 61 72 61 6d 65 74 65 72 73 20 66 6f 72 20 6d 61 74 63 68 69 | (DSCP).Set.parameters.for.matchi |
| 76960 | 6e 67 20 72 65 63 65 6e 74 6c 79 20 73 65 65 6e 20 73 6f 75 72 63 65 73 2e 20 54 68 69 73 20 6d | ng.recently.seen.sources..This.m |
| 76980 | 61 74 63 68 20 63 6f 75 6c 64 20 62 65 20 75 73 65 64 20 62 79 20 73 65 65 74 69 6e 67 20 63 6f | atch.could.be.used.by.seeting.co |
| 769a0 | 75 6e 74 20 28 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 73 65 65 6e 20 6d 6f 72 65 20 74 68 | unt.(source.address.seen.more.th |
| 769c0 | 61 6e 20 3c 31 2d 32 35 35 3e 20 74 69 6d 65 73 29 20 61 6e 64 2f 6f 72 20 74 69 6d 65 20 28 73 | an.<1-255>.times).and/or.time.(s |
| 769e0 | 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 73 65 65 6e 20 69 6e 20 74 68 65 20 6c 61 73 74 20 3c | ource.address.seen.in.the.last.< |
| 76a00 | 30 2d 34 32 39 34 39 36 37 32 39 35 3e 20 73 65 63 6f 6e 64 73 29 2e 00 53 65 74 20 70 72 65 64 | 0-4294967295>.seconds)..Set.pred |
| 76a20 | 65 66 69 6e 65 64 20 73 68 61 72 65 64 20 73 65 63 72 65 74 20 70 68 72 61 73 65 2e 00 53 65 74 | efined.shared.secret.phrase..Set |
| 76a40 | 20 70 72 65 66 69 78 65 73 20 74 6f 20 74 61 62 6c 65 2e 00 53 65 74 20 70 72 6f 78 79 20 66 6f | .prefixes.to.table..Set.proxy.fo |
| 76a60 | 72 20 61 6c 6c 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 69 6e 69 74 69 61 74 65 64 20 62 79 20 56 | r.all.connections.initiated.by.V |
| 76a80 | 79 4f 53 2c 20 69 6e 63 6c 75 64 69 6e 67 20 48 54 54 50 2c 20 48 54 54 50 53 2c 20 61 6e 64 20 | yOS,.including.HTTP,.HTTPS,.and. |
| 76aa0 | 46 54 50 20 28 61 6e 6f 6e 79 6d 6f 75 73 20 66 74 70 29 2e 00 53 65 74 20 72 6f 75 74 65 20 74 | FTP.(anonymous.ftp)..Set.route.t |
| 76ac0 | 61 72 67 65 74 20 76 61 6c 75 65 20 69 6e 20 66 6f 72 6d 61 74 20 60 60 3c 30 2d 36 35 35 33 35 | arget.value.in.format.``<0-65535 |
| 76ae0 | 3a 30 2d 34 32 39 34 39 36 37 32 39 35 3e 60 60 20 6f 72 20 60 60 3c 49 50 3a 30 2d 36 35 35 33 | :0-4294967295>``.or.``<IP:0-6553 |
| 76b00 | 35 3e 60 60 2e 00 53 65 74 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 74 6f 20 66 6f 72 77 61 | 5>``..Set.routing.table.to.forwa |
| 76b20 | 72 64 20 70 61 63 6b 65 74 20 74 6f 2e 00 53 65 74 20 72 75 6c 65 20 61 63 74 69 6f 6e 20 74 6f | rd.packet.to..Set.rule.action.to |
| 76b40 | 20 64 72 6f 70 2e 00 53 65 74 20 73 65 72 76 69 63 65 20 74 6f 20 62 69 6e 64 20 6f 6e 20 49 50 | .drop..Set.service.to.bind.on.IP |
| 76b60 | 20 61 64 64 72 65 73 73 2c 20 62 79 20 64 65 66 61 75 6c 74 20 6c 69 73 74 65 6e 20 6f 6e 20 61 | .address,.by.default.listen.on.a |
| 76b80 | 6e 79 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 00 53 65 74 20 73 69 74 65 20 6f 66 20 6f 72 69 | ny.IPv4.and.IPv6.Set.site.of.ori |
| 76ba0 | 67 69 6e 20 76 61 6c 75 65 20 69 6e 20 66 6f 72 6d 61 74 20 60 60 3c 30 2d 36 35 35 33 35 3a 30 | gin.value.in.format.``<0-65535:0 |
| 76bc0 | 2d 34 32 39 34 39 36 37 32 39 35 3e 60 60 20 6f 72 20 60 60 3c 49 50 3a 30 2d 36 35 35 33 35 3e | -4294967295>``.or.``<IP:0-65535> |
| 76be0 | 60 60 2e 00 53 65 74 20 73 6f 6d 65 20 61 74 74 72 69 62 75 74 65 73 20 28 6c 69 6b 65 20 41 53 | ``..Set.some.attributes.(like.AS |
| 76c00 | 20 50 41 54 48 20 6f 72 20 43 6f 6d 6d 75 6e 69 74 79 20 76 61 6c 75 65 29 20 74 6f 20 61 64 76 | .PATH.or.Community.value).to.adv |
| 76c20 | 65 72 74 69 73 65 64 20 72 6f 75 74 65 73 20 74 6f 20 6e 65 69 67 68 62 6f 72 73 2e 00 53 65 74 | ertised.routes.to.neighbors..Set |
| 76c40 | 20 73 6f 6d 65 20 6d 65 74 72 69 63 20 74 6f 20 72 6f 75 74 65 73 20 6c 65 61 72 6e 65 64 20 66 | .some.metric.to.routes.learned.f |
| 76c60 | 72 6f 6d 20 61 20 70 61 72 74 69 63 75 6c 61 72 20 6e 65 69 67 68 62 6f 72 2e 00 53 65 74 20 73 | rom.a.particular.neighbor..Set.s |
| 76c80 | 6f 75 72 63 65 20 49 50 2f 49 50 76 36 20 61 64 64 72 65 73 73 20 66 6f 72 20 72 6f 75 74 65 2e | ource.IP/IPv6.address.for.route. |
| 76ca0 | 00 53 65 74 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 6f 72 20 70 72 65 66 69 78 20 74 6f | .Set.source.address.or.prefix.to |
| 76cc0 | 20 6d 61 74 63 68 2e 00 53 65 74 20 73 6f 75 72 63 65 2d 61 64 64 72 65 73 73 20 74 6f 20 79 6f | .match..Set.source-address.to.yo |
| 76ce0 | 75 72 20 6c 6f 63 61 6c 20 49 50 20 28 4c 41 4e 29 2e 00 53 65 74 20 74 61 67 20 76 61 6c 75 65 | ur.local.IP.(LAN)..Set.tag.value |
| 76d00 | 20 66 6f 72 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 2e 00 53 65 74 20 74 68 65 20 22 | .for.routing.protocol..Set.the." |
| 76d20 | 72 65 63 75 72 73 69 6f 6e 20 64 65 73 69 72 65 64 22 20 62 69 74 20 69 6e 20 72 65 71 75 65 73 | recursion.desired".bit.in.reques |
| 76d40 | 74 73 20 74 6f 20 74 68 65 20 75 70 73 74 72 65 61 6d 20 6e 61 6d 65 73 65 72 76 65 72 2e 00 53 | ts.to.the.upstream.nameserver..S |
| 76d60 | 65 74 20 74 68 65 20 3a 61 62 62 72 3a 60 44 52 20 28 44 65 73 69 67 6e 61 74 65 64 20 52 6f 75 | et.the.:abbr:`DR.(Designated.Rou |
| 76d80 | 74 65 72 29 60 20 50 72 69 6f 72 69 74 79 20 66 6f 72 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 | ter)`.Priority.for.the.interface |
| 76da0 | 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 75 73 65 66 75 6c 20 74 6f 20 61 6c 6c 6f | ..This.command.is.useful.to.allo |
| 76dc0 | 77 20 74 68 65 20 75 73 65 72 20 74 6f 20 69 6e 66 6c 75 65 6e 63 65 20 77 68 61 74 20 6e 6f 64 | w.the.user.to.influence.what.nod |
| 76de0 | 65 20 62 65 63 6f 6d 65 73 20 74 68 65 20 44 52 20 66 6f 72 20 61 20 4c 41 4e 20 73 65 67 6d 65 | e.becomes.the.DR.for.a.LAN.segme |
| 76e00 | 6e 74 2e 00 53 65 74 20 74 68 65 20 3a 61 62 62 72 3a 60 4d 52 55 20 28 4d 61 78 69 6d 75 6d 20 | nt..Set.the.:abbr:`MRU.(Maximum. |
| 76e20 | 52 65 63 65 69 76 65 20 55 6e 69 74 29 60 20 74 6f 20 60 6d 72 75 60 2e 20 50 50 50 64 20 77 69 | Receive.Unit)`.to.`mru`..PPPd.wi |
| 76e40 | 6c 6c 20 61 73 6b 20 74 68 65 20 70 65 65 72 20 74 6f 20 73 65 6e 64 20 70 61 63 6b 65 74 73 20 | ll.ask.the.peer.to.send.packets. |
| 76e60 | 6f 66 20 6e 6f 20 6d 6f 72 65 20 74 68 61 6e 20 60 6d 72 75 60 20 62 79 74 65 73 2e 20 54 68 65 | of.no.more.than.`mru`.bytes..The |
| 76e80 | 20 76 61 6c 75 65 20 6f 66 20 60 6d 72 75 60 20 6d 75 73 74 20 62 65 20 62 65 74 77 65 65 6e 20 | .value.of.`mru`.must.be.between. |
| 76ea0 | 31 32 38 20 61 6e 64 20 31 36 33 38 34 2e 00 53 65 74 20 74 68 65 20 3a 61 62 62 72 3a 60 54 54 | 128.and.16384..Set.the.:abbr:`TT |
| 76ec0 | 4c 20 28 54 69 6d 65 2d 74 6f 2d 6c 69 76 65 29 60 20 66 6f 72 20 74 68 65 20 72 65 63 6f 72 64 | L.(Time-to-live)`.for.the.record |
| 76ee0 | 20 69 6e 20 73 65 63 6f 6e 64 73 2e 20 44 65 66 61 75 6c 74 20 69 73 20 33 30 30 20 73 65 63 6f | .in.seconds..Default.is.300.seco |
| 76f00 | 6e 64 73 2e 00 53 65 74 20 74 68 65 20 42 47 50 20 6e 65 78 74 68 6f 70 20 61 64 64 72 65 73 73 | nds..Set.the.BGP.nexthop.address |
| 76f20 | 20 74 6f 20 74 68 65 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 70 65 65 72 2e 20 46 6f 72 | .to.the.address.of.the.peer..For |
| 76f40 | 20 61 6e 20 69 6e 63 6f 6d 69 6e 67 20 72 6f 75 74 65 2d 6d 61 70 20 74 68 69 73 20 6d 65 61 6e | .an.incoming.route-map.this.mean |
| 76f60 | 73 20 74 68 65 20 69 70 20 61 64 64 72 65 73 73 20 6f 66 20 6f 75 72 20 70 65 65 72 20 69 73 20 | s.the.ip.address.of.our.peer.is. |
| 76f80 | 75 73 65 64 2e 20 46 6f 72 20 61 6e 20 6f 75 74 67 6f 69 6e 67 20 72 6f 75 74 65 2d 6d 61 70 20 | used..For.an.outgoing.route-map. |
| 76fa0 | 74 68 69 73 20 6d 65 61 6e 73 20 74 68 65 20 69 70 20 61 64 64 72 65 73 73 20 6f 66 20 6f 75 72 | this.means.the.ip.address.of.our |
| 76fc0 | 20 73 65 6c 66 20 69 73 20 75 73 65 64 20 74 6f 20 65 73 74 61 62 6c 69 73 68 20 74 68 65 20 70 | .self.is.used.to.establish.the.p |
| 76fe0 | 65 65 72 69 6e 67 20 77 69 74 68 20 6f 75 72 20 6e 65 69 67 68 62 6f 72 2e 00 53 65 74 20 74 68 | eering.with.our.neighbor..Set.th |
| 77000 | 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 6c 6f 63 61 6c 20 69 6e 74 65 72 66 | e.IP.address.of.the.local.interf |
| 77020 | 61 63 65 20 74 6f 20 62 65 20 75 73 65 64 20 66 6f 72 20 74 68 65 20 74 75 6e 6e 65 6c 2e 00 53 | ace.to.be.used.for.the.tunnel..S |
| 77040 | 65 74 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 72 65 6d 6f 74 65 20 | et.the.IP.address.of.the.remote. |
| 77060 | 70 65 65 72 2e 20 49 74 20 6d 61 79 20 62 65 20 73 70 65 63 69 66 69 65 64 20 61 73 20 61 6e 20 | peer..It.may.be.specified.as.an. |
| 77080 | 49 50 76 34 20 61 64 64 72 65 73 73 20 6f 72 20 61 6e 20 49 50 76 36 20 61 64 64 72 65 73 73 2e | IPv4.address.or.an.IPv6.address. |
| 770a0 | 00 53 65 74 20 74 68 65 20 49 50 76 34 20 73 6f 75 72 63 65 20 76 61 6c 69 64 61 74 69 6f 6e 20 | .Set.the.IPv4.source.validation. |
| 770c0 | 6d 6f 64 65 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 79 73 74 65 6d 20 70 61 72 61 6d | mode..The.following.system.param |
| 770e0 | 65 74 65 72 20 77 69 6c 6c 20 62 65 20 61 6c 74 65 72 65 64 3a 00 53 65 74 20 74 68 65 20 4d 4c | eter.will.be.altered:.Set.the.ML |
| 77100 | 44 20 6c 61 73 74 20 6d 65 6d 62 65 72 20 71 75 65 72 79 20 63 6f 75 6e 74 2e 20 54 68 65 20 64 | D.last.member.query.count..The.d |
| 77120 | 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 32 2e 00 53 65 74 20 74 68 65 20 4d 4c 44 20 6c | efault.value.is.2..Set.the.MLD.l |
| 77140 | 61 73 74 20 6d 65 6d 62 65 72 20 71 75 65 72 79 20 69 6e 74 65 72 76 61 6c 20 69 6e 20 6d 69 6c | ast.member.query.interval.in.mil |
| 77160 | 6c 69 73 65 63 6f 6e 64 73 20 28 31 30 30 2d 36 35 35 33 35 30 30 29 2e 20 54 68 65 20 64 65 66 | liseconds.(100-6553500)..The.def |
| 77180 | 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 31 30 30 30 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 2e | ault.value.is.1000.milliseconds. |
| 771a0 | 00 53 65 74 20 74 68 65 20 4d 4c 44 20 71 75 65 72 79 20 72 65 73 70 6f 6e 73 65 20 74 69 6d 65 | .Set.the.MLD.query.response.time |
| 771c0 | 6f 75 74 20 69 6e 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 20 28 31 30 30 2d 36 35 35 33 35 30 30 | out.in.milliseconds.(100-6553500 |
| 771e0 | 29 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 31 30 30 30 30 20 6d 69 | )..The.default.value.is.10000.mi |
| 77200 | 6c 6c 69 73 65 63 6f 6e 64 73 2e 00 53 65 74 20 74 68 65 20 4d 4c 44 20 76 65 72 73 69 6f 6e 20 | lliseconds..Set.the.MLD.version. |
| 77220 | 75 73 65 64 20 6f 6e 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 65 20 64 65 66 61 | used.on.this.interface..The.defa |
| 77240 | 75 6c 74 20 76 61 6c 75 65 20 69 73 20 32 2e 00 53 65 74 20 74 68 65 20 4d 61 78 69 6d 75 6d 20 | ult.value.is.2..Set.the.Maximum. |
| 77260 | 53 74 61 63 6b 20 44 65 70 74 68 20 73 75 70 70 6f 72 74 65 64 20 62 79 20 74 68 65 20 72 6f 75 | Stack.Depth.supported.by.the.rou |
| 77280 | 74 65 72 2e 20 54 68 65 20 76 61 6c 75 65 20 64 65 70 65 6e 64 20 6f 66 20 74 68 65 20 4d 50 4c | ter..The.value.depend.of.the.MPL |
| 772a0 | 53 20 64 61 74 61 70 6c 61 6e 65 2e 00 53 65 74 20 74 68 65 20 50 49 4d 20 68 65 6c 6c 6f 20 61 | S.dataplane..Set.the.PIM.hello.a |
| 772c0 | 6e 64 20 68 6f 6c 64 20 69 6e 74 65 72 76 61 6c 20 66 6f 72 20 61 20 69 6e 74 65 72 66 61 63 65 | nd.hold.interval.for.a.interface |
| 772e0 | 2e 00 53 65 74 20 74 68 65 20 53 65 67 6d 65 6e 74 20 52 6f 75 74 69 6e 67 20 47 6c 6f 62 61 6c | ..Set.the.Segment.Routing.Global |
| 77300 | 20 42 6c 6f 63 6b 20 69 2e 65 2e 20 74 68 65 20 6c 61 62 65 6c 20 72 61 6e 67 65 20 75 73 65 64 | .Block.i.e..the.label.range.used |
| 77320 | 20 62 79 20 4d 50 4c 53 20 74 6f 20 73 74 6f 72 65 20 6c 61 62 65 6c 20 69 6e 20 74 68 65 20 4d | .by.MPLS.to.store.label.in.the.M |
| 77340 | 50 4c 53 20 46 49 42 20 66 6f 72 20 50 72 65 66 69 78 20 53 49 44 2e 20 4e 6f 74 65 20 74 68 61 | PLS.FIB.for.Prefix.SID..Note.tha |
| 77360 | 74 20 74 68 65 20 62 6c 6f 63 6b 20 73 69 7a 65 20 6d 61 79 20 6e 6f 74 20 65 78 63 65 65 64 20 | t.the.block.size.may.not.exceed. |
| 77380 | 36 35 35 33 35 2e 00 53 65 74 20 74 68 65 20 53 65 67 6d 65 6e 74 20 52 6f 75 74 69 6e 67 20 47 | 65535..Set.the.Segment.Routing.G |
| 773a0 | 6c 6f 62 61 6c 20 42 6c 6f 63 6b 20 69 2e 65 2e 20 74 68 65 20 6c 6f 77 20 6c 61 62 65 6c 20 72 | lobal.Block.i.e..the.low.label.r |
| 773c0 | 61 6e 67 65 20 75 73 65 64 20 62 79 20 4d 50 4c 53 20 74 6f 20 73 74 6f 72 65 20 6c 61 62 65 6c | ange.used.by.MPLS.to.store.label |
| 773e0 | 20 69 6e 20 74 68 65 20 4d 50 4c 53 20 46 49 42 20 66 6f 72 20 50 72 65 66 69 78 20 53 49 44 2e | .in.the.MPLS.FIB.for.Prefix.SID. |
| 77400 | 20 4e 6f 74 65 20 74 68 61 74 20 74 68 65 20 62 6c 6f 63 6b 20 73 69 7a 65 20 6d 61 79 20 6e 6f | .Note.that.the.block.size.may.no |
| 77420 | 74 20 65 78 63 65 65 64 20 36 35 35 33 35 2e 00 53 65 74 20 74 68 65 20 53 65 67 6d 65 6e 74 20 | t.exceed.65535..Set.the.Segment. |
| 77440 | 52 6f 75 74 69 6e 67 20 4c 6f 63 61 6c 20 42 6c 6f 63 6b 20 69 2e 65 2e 20 74 68 65 20 6c 61 62 | Routing.Local.Block.i.e..the.lab |
| 77460 | 65 6c 20 72 61 6e 67 65 20 75 73 65 64 20 62 79 20 4d 50 4c 53 20 74 6f 20 73 74 6f 72 65 20 6c | el.range.used.by.MPLS.to.store.l |
| 77480 | 61 62 65 6c 20 69 6e 20 74 68 65 20 4d 50 4c 53 20 46 49 42 20 66 6f 72 20 50 72 65 66 69 78 20 | abel.in.the.MPLS.FIB.for.Prefix. |
| 774a0 | 53 49 44 2e 20 4e 6f 74 65 20 74 68 61 74 20 74 68 65 20 62 6c 6f 63 6b 20 73 69 7a 65 20 6d 61 | SID..Note.that.the.block.size.ma |
| 774c0 | 79 20 6e 6f 74 20 65 78 63 65 65 64 20 36 35 35 33 35 2e 53 65 67 6d 65 6e 74 20 52 6f 75 74 69 | y.not.exceed.65535.Segment.Routi |
| 774e0 | 6e 67 20 4c 6f 63 61 6c 20 42 6c 6f 63 6b 2c 20 54 68 65 20 6e 65 67 61 74 69 76 65 20 63 6f 6d | ng.Local.Block,.The.negative.com |
| 77500 | 6d 61 6e 64 20 61 6c 77 61 79 73 20 75 6e 73 65 74 73 20 62 6f 74 68 2e 00 53 65 74 20 74 68 65 | mand.always.unsets.both..Set.the |
| 77520 | 20 53 65 67 6d 65 6e 74 20 52 6f 75 74 69 6e 67 20 4c 6f 63 61 6c 20 42 6c 6f 63 6b 20 69 2e 65 | .Segment.Routing.Local.Block.i.e |
| 77540 | 2e 20 74 68 65 20 6c 6f 77 20 6c 61 62 65 6c 20 72 61 6e 67 65 20 75 73 65 64 20 62 79 20 4d 50 | ..the.low.label.range.used.by.MP |
| 77560 | 4c 53 20 74 6f 20 73 74 6f 72 65 20 6c 61 62 65 6c 20 69 6e 20 74 68 65 20 4d 50 4c 53 20 46 49 | LS.to.store.label.in.the.MPLS.FI |
| 77580 | 42 20 66 6f 72 20 50 72 65 66 69 78 20 53 49 44 2e 20 4e 6f 74 65 20 74 68 61 74 20 74 68 65 20 | B.for.Prefix.SID..Note.that.the. |
| 775a0 | 62 6c 6f 63 6b 20 73 69 7a 65 20 6d 61 79 20 6e 6f 74 20 65 78 63 65 65 64 20 36 35 35 33 35 2e | block.size.may.not.exceed.65535. |
| 775c0 | 53 65 67 6d 65 6e 74 20 52 6f 75 74 69 6e 67 20 4c 6f 63 61 6c 20 42 6c 6f 63 6b 2c 20 54 68 65 | Segment.Routing.Local.Block,.The |
| 775e0 | 20 6e 65 67 61 74 69 76 65 20 63 6f 6d 6d 61 6e 64 20 61 6c 77 61 79 73 20 75 6e 73 65 74 73 20 | .negative.command.always.unsets. |
| 77600 | 62 6f 74 68 2e 00 53 65 74 20 74 68 65 20 54 43 50 2d 4d 53 53 20 28 54 43 50 20 6d 61 78 69 6d | both..Set.the.TCP-MSS.(TCP.maxim |
| 77620 | 75 6d 20 73 65 67 6d 65 6e 74 20 73 69 7a 65 29 20 66 6f 72 20 74 68 65 20 63 6f 6e 6e 65 63 74 | um.segment.size).for.the.connect |
| 77640 | 69 6f 6e 2e 00 53 65 74 20 74 68 65 20 54 43 50 2d 4d 53 53 20 28 6d 61 78 69 6d 75 6d 20 73 65 | ion..Set.the.TCP-MSS.(maximum.se |
| 77660 | 67 6d 65 6e 74 20 73 69 7a 65 29 20 66 6f 72 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 00 53 | gment.size).for.the.connection.S |
| 77680 | 65 74 20 74 68 65 20 54 54 4c 20 28 54 69 6d 65 20 74 6f 20 4c 69 76 65 29 20 76 61 6c 75 65 2e | et.the.TTL.(Time.to.Live).value. |
| 776a0 | 00 53 65 74 20 74 68 65 20 55 73 65 72 20 49 44 20 6f 72 20 47 72 6f 75 70 20 49 44 20 6f 66 20 | .Set.the.User.ID.or.Group.ID.of. |
| 776c0 | 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 00 53 65 74 20 74 68 65 20 60 60 73 73 68 64 60 60 20 6c | the.container.Set.the.``sshd``.l |
| 776e0 | 6f 67 20 6c 65 76 65 6c 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 60 60 69 6e 66 6f 60 | og.level..The.default.is.``info` |
| 77700 | 60 2e 00 53 65 74 20 74 68 65 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 62 61 63 6b 65 6e | `..Set.the.address.of.the.backen |
| 77720 | 64 20 70 6f 72 74 00 53 65 74 20 74 68 65 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 62 61 | d.port.Set.the.address.of.the.ba |
| 77740 | 63 6b 65 6e 64 20 73 65 72 76 65 72 20 74 6f 20 77 68 69 63 68 20 74 68 65 20 69 6e 63 6f 6d 69 | ckend.server.to.which.the.incomi |
| 77760 | 6e 67 20 74 72 61 66 66 69 63 20 77 69 6c 6c 20 62 65 20 66 6f 72 77 61 72 64 65 64 00 53 65 74 | ng.traffic.will.be.forwarded.Set |
| 77780 | 20 74 68 65 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 74 79 70 65 20 66 6f 72 20 47 72 61 | .the.authentication.type.for.Gra |
| 777a0 | 70 68 51 4c 2c 20 64 65 66 61 75 6c 74 20 6f 70 74 69 6f 6e 20 69 73 20 6b 65 79 2e 20 41 76 61 | phQL,.default.option.is.key..Ava |
| 777c0 | 69 6c 61 62 6c 65 20 6f 70 74 69 6f 6e 73 20 61 72 65 3a 00 53 65 74 20 74 68 65 20 62 79 74 65 | ilable.options.are:.Set.the.byte |
| 777e0 | 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 20 4a 57 54 20 73 65 63 72 65 74 2e 20 44 65 66 61 75 | .length.of.the.JWT.secret..Defau |
| 77800 | 6c 74 20 69 73 20 33 32 2e 00 53 65 74 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 61 72 67 75 6d 65 | lt.is.32..Set.the.command.argume |
| 77820 | 6e 74 73 20 66 6f 72 20 61 20 63 6f 6e 74 61 69 6e 65 72 2e 00 53 65 74 20 74 68 65 20 64 65 66 | nts.for.a.container..Set.the.def |
| 77840 | 61 75 6c 74 20 56 52 52 50 20 76 65 72 73 69 6f 6e 20 74 6f 20 75 73 65 2e 20 54 68 69 73 20 64 | ault.VRRP.version.to.use..This.d |
| 77860 | 65 66 61 75 6c 74 73 20 74 6f 20 32 2c 20 62 75 74 20 49 50 76 36 20 69 6e 73 74 61 6e 63 65 73 | efaults.to.2,.but.IPv6.instances |
| 77880 | 20 77 69 6c 6c 20 61 6c 77 61 79 73 20 75 73 65 20 76 65 72 73 69 6f 6e 20 33 2e 00 53 65 74 20 | .will.always.use.version.3..Set. |
| 778a0 | 74 68 65 20 64 65 76 69 63 65 27 73 20 74 72 61 6e 73 6d 69 74 20 28 54 58 29 20 6b 65 79 2e 20 | the.device's.transmit.(TX).key.. |
| 778c0 | 54 68 69 73 20 6b 65 79 20 6d 75 73 74 20 62 65 20 61 20 68 65 78 20 73 74 72 69 6e 67 20 74 68 | This.key.must.be.a.hex.string.th |
| 778e0 | 61 74 20 69 73 20 31 36 2d 62 79 74 65 73 20 28 47 43 4d 2d 41 45 53 2d 31 32 38 29 20 6f 72 20 | at.is.16-bytes.(GCM-AES-128).or. |
| 77900 | 33 32 2d 62 79 74 65 73 20 28 47 43 4d 2d 41 45 53 2d 32 35 36 29 2e 00 53 65 74 20 74 68 65 20 | 32-bytes.(GCM-AES-256)..Set.the. |
| 77920 | 64 69 73 74 61 6e 63 65 20 66 6f 72 20 74 68 65 20 64 65 66 61 75 6c 74 20 67 61 74 65 77 61 79 | distance.for.the.default.gateway |
| 77940 | 20 73 65 6e 74 20 62 79 20 74 68 65 20 44 48 43 50 20 73 65 72 76 65 72 2e 00 53 65 74 20 74 68 | .sent.by.the.DHCP.server..Set.th |
| 77960 | 65 20 64 69 73 74 61 6e 63 65 20 66 6f 72 20 74 68 65 20 64 65 66 61 75 6c 74 20 67 61 74 65 77 | e.distance.for.the.default.gatew |
| 77980 | 61 79 20 73 65 6e 74 20 62 79 20 74 68 65 20 50 50 50 6f 45 20 73 65 72 76 65 72 2e 00 53 65 74 | ay.sent.by.the.PPPoE.server..Set |
| 779a0 | 20 74 68 65 20 64 69 73 74 61 6e 63 65 20 66 6f 72 20 74 68 65 20 64 65 66 61 75 6c 74 20 67 61 | .the.distance.for.the.default.ga |
| 779c0 | 74 65 77 61 79 20 73 65 6e 74 20 62 79 20 74 68 65 20 53 53 54 50 20 73 65 72 76 65 72 2e 00 53 | teway.sent.by.the.SSTP.server..S |
| 779e0 | 65 74 20 74 68 65 20 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e 20 74 79 70 65 20 6f 66 20 74 68 65 | et.the.encapsulation.type.of.the |
| 77a00 | 20 74 75 6e 6e 65 6c 2e 20 56 61 6c 69 64 20 76 61 6c 75 65 73 20 66 6f 72 20 65 6e 63 61 70 73 | .tunnel..Valid.values.for.encaps |
| 77a20 | 75 6c 61 74 69 6f 6e 20 61 72 65 3a 20 75 64 70 2c 20 69 70 2e 00 53 65 74 20 74 68 65 20 67 6c | ulation.are:.udp,.ip..Set.the.gl |
| 77a40 | 6f 62 61 6c 20 73 65 74 74 69 6e 67 20 66 6f 72 20 61 6e 20 65 73 74 61 62 6c 69 73 68 65 64 20 | obal.setting.for.an.established. |
| 77a60 | 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 53 65 74 20 74 68 65 20 67 6c 6f 62 61 6c 20 73 65 74 74 69 | connection..Set.the.global.setti |
| 77a80 | 6e 67 20 66 6f 72 20 69 6e 76 61 6c 69 64 20 70 61 63 6b 65 74 73 2e 00 53 65 74 20 74 68 65 20 | ng.for.invalid.packets..Set.the. |
| 77aa0 | 67 6c 6f 62 61 6c 20 73 65 74 74 69 6e 67 20 66 6f 72 20 72 65 6c 61 74 65 64 20 63 6f 6e 6e 65 | global.setting.for.related.conne |
| 77ac0 | 63 74 69 6f 6e 73 2e 00 53 65 74 20 74 68 65 20 68 6f 73 74 20 6e 61 6d 65 20 66 6f 72 20 61 20 | ctions..Set.the.host.name.for.a. |
| 77ae0 | 63 6f 6e 74 61 69 6e 65 72 2e 00 53 65 74 20 74 68 65 20 6c 69 66 65 74 69 6d 65 20 66 6f 72 20 | container..Set.the.lifetime.for. |
| 77b00 | 4a 57 54 20 74 6f 6b 65 6e 73 20 69 6e 20 73 65 63 6f 6e 64 73 2e 20 44 65 66 61 75 6c 74 20 69 | JWT.tokens.in.seconds..Default.i |
| 77b20 | 73 20 33 36 30 30 20 73 65 63 6f 6e 64 73 2e 00 53 65 74 20 74 68 65 20 6c 69 73 74 65 6e 20 70 | s.3600.seconds..Set.the.listen.p |
| 77b40 | 6f 72 74 20 6f 66 20 74 68 65 20 6c 6f 63 61 6c 20 41 50 49 2c 20 74 68 69 73 20 68 61 73 20 6e | ort.of.the.local.API,.this.has.n |
| 77b60 | 6f 20 65 66 66 65 63 74 20 6f 6e 20 74 68 65 20 77 65 62 73 65 72 76 65 72 2e 20 54 68 65 20 64 | o.effect.on.the.webserver..The.d |
| 77b80 | 65 66 61 75 6c 74 20 69 73 20 70 6f 72 74 20 38 30 38 30 00 53 65 74 20 74 68 65 20 6d 61 78 69 | efault.is.port.8080.Set.the.maxi |
| 77ba0 | 6d 75 6d 20 68 6f 70 20 60 3c 63 6f 75 6e 74 3e 60 20 62 65 66 6f 72 65 20 70 61 63 6b 65 74 73 | mum.hop.`<count>`.before.packets |
| 77bc0 | 20 61 72 65 20 64 69 73 63 61 72 64 65 64 2e 20 52 61 6e 67 65 20 30 2e 2e 2e 32 35 35 2c 20 64 | .are.discarded..Range.0...255,.d |
| 77be0 | 65 66 61 75 6c 74 20 31 30 2e 00 53 65 74 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 6c 65 6e 67 74 | efault.10..Set.the.maximum.lengt |
| 77c00 | 68 20 6f 66 20 41 2d 4d 50 44 55 20 70 72 65 2d 45 4f 46 20 70 61 64 64 69 6e 67 20 74 68 61 74 | h.of.A-MPDU.pre-EOF.padding.that |
| 77c20 | 20 74 68 65 20 73 74 61 74 69 6f 6e 20 63 61 6e 20 72 65 63 65 69 76 65 00 53 65 74 20 74 68 65 | .the.station.can.receive.Set.the |
| 77c40 | 20 6d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 54 43 50 20 68 61 6c 66 2d 6f 70 65 6e | .maximum.number.of.TCP.half-open |
| 77c60 | 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2e 00 53 65 74 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 72 65 | .connections..Set.the.maximum.re |
| 77c80 | 71 75 65 73 74 20 62 6f 64 79 20 73 69 7a 65 20 69 6e 20 6d 65 67 61 62 79 74 65 73 2e 20 44 65 | quest.body.size.in.megabytes..De |
| 77ca0 | 66 61 75 6c 74 20 69 73 20 31 4d 42 2e 00 53 65 74 20 74 68 65 20 6e 61 6d 65 20 6f 66 20 74 68 | fault.is.1MB..Set.the.name.of.th |
| 77cc0 | 65 20 53 53 4c 20 3a 61 62 62 72 3a 60 43 41 20 28 43 65 72 74 69 66 69 63 61 74 65 20 41 75 74 | e.SSL.:abbr:`CA.(Certificate.Aut |
| 77ce0 | 68 6f 72 69 74 79 29 60 20 50 4b 49 20 65 6e 74 72 79 20 75 73 65 64 20 66 6f 72 20 61 75 74 68 | hority)`.PKI.entry.used.for.auth |
| 77d00 | 65 6e 74 69 63 61 74 69 6f 6e 20 6f 66 20 74 68 65 20 72 65 6d 6f 74 65 20 73 69 64 65 2e 20 49 | entication.of.the.remote.side..I |
| 77d20 | 66 20 61 6e 20 69 6e 74 65 72 6d 65 64 69 61 74 65 20 43 41 20 63 65 72 74 69 66 69 63 61 74 65 | f.an.intermediate.CA.certificate |
| 77d40 | 20 69 73 20 73 70 65 63 69 66 69 65 64 2c 20 74 68 65 6e 20 61 6c 6c 20 70 61 72 65 6e 74 20 43 | .is.specified,.then.all.parent.C |
| 77d60 | 41 20 63 65 72 74 69 66 69 63 61 74 65 73 20 74 68 61 74 20 65 78 69 73 74 20 69 6e 20 74 68 65 | A.certificates.that.exist.in.the |
| 77d80 | 20 50 4b 49 2c 20 73 75 63 68 20 61 73 20 74 68 65 20 72 6f 6f 74 20 43 41 20 6f 72 20 61 64 64 | .PKI,.such.as.the.root.CA.or.add |
| 77da0 | 69 74 69 6f 6e 61 6c 20 69 6e 74 65 72 6d 65 64 69 61 74 65 20 43 41 73 2c 20 77 69 6c 6c 20 61 | itional.intermediate.CAs,.will.a |
| 77dc0 | 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 62 65 20 75 73 65 64 20 64 75 72 69 6e 67 20 63 65 72 74 | utomatically.be.used.during.cert |
| 77de0 | 69 66 69 63 61 74 65 20 76 61 6c 69 64 61 74 69 6f 6e 20 74 6f 20 65 6e 73 75 72 65 20 74 68 61 | ificate.validation.to.ensure.tha |
| 77e00 | 74 20 74 68 65 20 66 75 6c 6c 20 63 68 61 69 6e 20 6f 66 20 74 72 75 73 74 20 69 73 20 61 76 61 | t.the.full.chain.of.trust.is.ava |
| 77e20 | 69 6c 61 62 6c 65 2e 00 53 65 74 20 74 68 65 20 6e 61 6d 65 20 6f 66 20 74 68 65 20 78 35 30 39 | ilable..Set.the.name.of.the.x509 |
| 77e40 | 20 63 6c 69 65 6e 74 20 6b 65 79 70 61 69 72 20 75 73 65 64 20 74 6f 20 61 75 74 68 65 6e 74 69 | .client.keypair.used.to.authenti |
| 77e60 | 63 61 74 65 20 61 67 61 69 6e 73 74 20 74 68 65 20 38 30 32 2e 31 78 20 73 79 73 74 65 6d 2e 20 | cate.against.the.802.1x.system.. |
| 77e80 | 41 6c 6c 20 70 61 72 65 6e 74 20 43 41 20 63 65 72 74 69 66 69 63 61 74 65 73 20 6f 66 20 74 68 | All.parent.CA.certificates.of.th |
| 77ea0 | 65 20 63 6c 69 65 6e 74 20 63 65 72 74 69 66 69 63 61 74 65 2c 20 73 75 63 68 20 61 73 20 69 6e | e.client.certificate,.such.as.in |
| 77ec0 | 74 65 72 6d 65 64 69 61 74 65 20 61 6e 64 20 72 6f 6f 74 20 43 41 73 2c 20 77 69 6c 6c 20 62 65 | termediate.and.root.CAs,.will.be |
| 77ee0 | 20 73 65 6e 74 20 61 73 20 70 61 72 74 20 6f 66 20 74 68 65 20 45 41 50 2d 54 4c 53 20 68 61 6e | .sent.as.part.of.the.EAP-TLS.han |
| 77f00 | 64 73 68 61 6b 65 2e 00 53 65 74 20 74 68 65 20 6e 61 74 69 76 65 20 56 4c 41 4e 20 49 44 20 66 | dshake..Set.the.native.VLAN.ID.f |
| 77f20 | 6c 61 67 20 6f 66 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 2e 20 57 68 65 6e 20 61 20 64 61 74 | lag.of.the.interface..When.a.dat |
| 77f40 | 61 20 70 61 63 6b 65 74 20 77 69 74 68 6f 75 74 20 61 20 56 4c 41 4e 20 74 61 67 20 65 6e 74 65 | a.packet.without.a.VLAN.tag.ente |
| 77f60 | 72 73 20 74 68 65 20 70 6f 72 74 2c 20 74 68 65 20 64 61 74 61 20 70 61 63 6b 65 74 20 77 69 6c | rs.the.port,.the.data.packet.wil |
| 77f80 | 6c 20 62 65 20 66 6f 72 63 65 64 20 74 6f 20 61 64 64 20 61 20 74 61 67 20 6f 66 20 61 20 73 70 | l.be.forced.to.add.a.tag.of.a.sp |
| 77fa0 | 65 63 69 66 69 63 20 76 6c 61 6e 20 69 64 2e 20 57 68 65 6e 20 74 68 65 20 76 6c 61 6e 20 69 64 | ecific.vlan.id..When.the.vlan.id |
| 77fc0 | 20 66 6c 61 67 20 66 6c 6f 77 73 20 6f 75 74 2c 20 74 68 65 20 74 61 67 20 6f 66 20 74 68 65 20 | .flag.flows.out,.the.tag.of.the. |
| 77fe0 | 76 6c 61 6e 20 69 64 20 77 69 6c 6c 20 62 65 20 73 74 72 69 70 70 65 64 00 53 65 74 20 74 68 65 | vlan.id.will.be.stripped.Set.the |
| 78000 | 20 6e 61 74 69 76 65 20 56 4c 41 4e 20 49 44 20 66 6c 61 67 20 6f 66 20 74 68 65 20 69 6e 74 65 | .native.VLAN.ID.flag.of.the.inte |
| 78020 | 72 66 61 63 65 2e 20 57 68 65 6e 20 61 20 64 61 74 61 20 70 61 63 6b 65 74 20 77 69 74 68 6f 75 | rface..When.a.data.packet.withou |
| 78040 | 74 20 61 20 56 4c 41 4e 20 74 61 67 20 65 6e 74 65 72 73 20 74 68 65 20 70 6f 72 74 2c 20 74 68 | t.a.VLAN.tag.enters.the.port,.th |
| 78060 | 65 20 64 61 74 61 20 70 61 63 6b 65 74 20 77 69 6c 6c 20 68 61 76 65 20 61 20 73 70 65 63 69 66 | e.data.packet.will.have.a.specif |
| 78080 | 69 63 20 76 6c 61 6e 20 69 64 20 61 64 64 65 64 20 74 6f 20 69 74 2e 20 57 68 65 6e 20 74 68 65 | ic.vlan.id.added.to.it..When.the |
| 780a0 | 20 70 61 63 6b 65 74 20 66 6c 6f 77 73 20 6f 75 74 2c 20 74 68 65 20 6e 61 74 69 76 65 20 76 6c | .packet.flows.out,.the.native.vl |
| 780c0 | 61 6e 20 74 61 67 20 77 69 6c 6c 20 62 65 20 73 74 72 69 70 70 65 64 2e 00 53 65 74 20 74 68 65 | an.tag.will.be.stripped..Set.the |
| 780e0 | 20 6e 65 78 74 2d 68 6f 70 20 61 73 20 75 6e 63 68 61 6e 67 65 64 2e 20 50 61 73 73 20 74 68 72 | .next-hop.as.unchanged..Pass.thr |
| 78100 | 6f 75 67 68 20 74 68 65 20 72 6f 75 74 65 2d 6d 61 70 20 77 69 74 68 6f 75 74 20 63 68 61 6e 67 | ough.the.route-map.without.chang |
| 78120 | 69 6e 67 20 69 74 73 20 76 61 6c 75 65 00 53 65 74 20 74 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 | ing.its.value.Set.the.number.of. |
| 78140 | 54 43 50 20 6d 61 78 69 6d 75 6d 20 72 65 74 72 61 6e 73 6d 69 74 20 61 74 74 65 6d 70 74 73 2e | TCP.maximum.retransmit.attempts. |
| 78160 | 00 53 65 74 20 74 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 68 65 61 6c 74 68 20 63 68 65 63 6b 20 | .Set.the.number.of.health.check. |
| 78180 | 66 61 69 6c 75 72 65 73 20 62 65 66 6f 72 65 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 | failures.before.an.interface.is. |
| 781a0 | 6d 61 72 6b 65 64 20 61 73 20 75 6e 61 76 61 69 6c 61 62 6c 65 2c 20 72 61 6e 67 65 20 66 6f 72 | marked.as.unavailable,.range.for |
| 781c0 | 20 6e 75 6d 62 65 72 20 69 73 20 31 20 74 6f 20 31 30 2c 20 64 65 66 61 75 6c 74 20 31 2e 20 4f | .number.is.1.to.10,.default.1..O |
| 781e0 | 72 20 73 65 74 20 74 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 73 75 63 63 65 73 73 66 75 6c 20 68 | r.set.the.number.of.successful.h |
| 78200 | 65 61 6c 74 68 20 63 68 65 63 6b 73 20 62 65 66 6f 72 65 20 61 6e 20 69 6e 74 65 72 66 61 63 65 | ealth.checks.before.an.interface |
| 78220 | 20 69 73 20 61 64 64 65 64 20 62 61 63 6b 20 74 6f 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 | .is.added.back.to.the.interface. |
| 78240 | 70 6f 6f 6c 2c 20 72 61 6e 67 65 20 66 6f 72 20 6e 75 6d 62 65 72 20 69 73 20 31 20 74 6f 20 31 | pool,.range.for.number.is.1.to.1 |
| 78260 | 30 2c 20 64 65 66 61 75 6c 74 20 31 2e 00 53 65 74 20 74 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 | 0,.default.1..Set.the.number.of. |
| 78280 | 73 65 63 6f 6e 64 73 20 74 68 65 20 72 6f 75 74 65 72 20 77 61 69 74 73 20 75 6e 74 69 6c 20 72 | seconds.the.router.waits.until.r |
| 782a0 | 65 74 72 79 69 6e 67 20 74 6f 20 63 6f 6e 6e 65 63 74 20 74 6f 20 74 68 65 20 63 61 63 68 65 20 | etrying.to.connect.to.the.cache. |
| 782c0 | 73 65 72 76 65 72 2e 00 53 65 74 20 74 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 73 65 63 6f 6e 64 | server..Set.the.number.of.second |
| 782e0 | 73 20 74 68 65 20 72 6f 75 74 65 72 20 77 61 69 74 73 20 75 6e 74 69 6c 20 74 68 65 20 72 6f 75 | s.the.router.waits.until.the.rou |
| 78300 | 74 65 72 20 65 78 70 69 72 65 73 20 74 68 65 20 63 61 63 68 65 2e 00 53 65 74 20 74 68 65 20 6f | ter.expires.the.cache..Set.the.o |
| 78320 | 70 74 69 6f 6e 73 20 66 6f 72 20 74 68 69 73 20 70 75 62 6c 69 63 20 6b 65 79 2e 20 53 65 65 20 | ptions.for.this.public.key..See. |
| 78340 | 74 68 65 20 73 73 68 20 60 60 61 75 74 68 6f 72 69 7a 65 64 5f 6b 65 79 73 60 60 20 6d 61 6e 20 | the.ssh.``authorized_keys``.man. |
| 78360 | 70 61 67 65 20 66 6f 72 20 64 65 74 61 69 6c 73 20 6f 66 20 77 68 61 74 20 79 6f 75 20 63 61 6e | page.for.details.of.what.you.can |
| 78380 | 20 73 70 65 63 69 66 79 20 68 65 72 65 2e 20 54 6f 20 70 6c 61 63 65 20 61 20 60 60 22 60 60 20 | .specify.here..To.place.a.``"``. |
| 783a0 | 63 68 61 72 61 63 74 65 72 20 69 6e 20 74 68 65 20 6f 70 74 69 6f 6e 73 20 66 69 65 6c 64 2c 20 | character.in.the.options.field,. |
| 783c0 | 75 73 65 20 60 60 26 71 75 6f 74 3b 60 60 2c 20 66 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 66 72 | use.``"``,.for.example.``fr |
| 783e0 | 6f 6d 3d 26 71 75 6f 74 3b 31 30 2e 30 2e 30 2e 30 2f 32 34 26 71 75 6f 74 3b 60 60 20 74 6f 20 | om="10.0.0.0/24"``.to. |
| 78400 | 72 65 73 74 72 69 63 74 20 77 68 65 72 65 20 74 68 65 20 75 73 65 72 20 6d 61 79 20 63 6f 6e 6e | restrict.where.the.user.may.conn |
| 78420 | 65 63 74 20 66 72 6f 6d 20 77 68 65 6e 20 75 73 69 6e 67 20 74 68 69 73 20 6b 65 79 2e 00 53 65 | ect.from.when.using.this.key..Se |
| 78440 | 74 20 74 68 65 20 70 61 72 69 74 79 20 6f 70 74 69 6f 6e 20 66 6f 72 20 74 68 65 20 63 6f 6e 73 | t.the.parity.option.for.the.cons |
| 78460 | 6f 6c 65 2e 20 49 66 20 75 6e 73 65 74 20 74 68 69 73 20 77 69 6c 6c 20 64 65 66 61 75 6c 74 20 | ole..If.unset.this.will.default. |
| 78480 | 74 6f 20 6e 6f 6e 65 2e 00 53 65 74 20 74 68 65 20 70 65 65 72 27 73 20 4d 41 43 20 61 64 64 72 | to.none..Set.the.peer's.MAC.addr |
| 784a0 | 65 73 73 00 53 65 74 20 74 68 65 20 70 65 65 72 27 73 20 6b 65 79 20 75 73 65 64 20 74 6f 20 72 | ess.Set.the.peer's.key.used.to.r |
| 784c0 | 65 63 65 69 76 65 20 28 52 58 29 20 74 72 61 66 66 69 63 00 53 65 74 20 74 68 65 20 70 65 65 72 | eceive.(RX).traffic.Set.the.peer |
| 784e0 | 2d 73 65 73 73 69 6f 6e 2d 69 64 2c 20 77 68 69 63 68 20 69 73 20 61 20 33 32 2d 62 69 74 20 69 | -session-id,.which.is.a.32-bit.i |
| 78500 | 6e 74 65 67 65 72 20 76 61 6c 75 65 20 61 73 73 69 67 6e 65 64 20 74 6f 20 74 68 65 20 73 65 73 | nteger.value.assigned.to.the.ses |
| 78520 | 73 69 6f 6e 20 62 79 20 74 68 65 20 70 65 65 72 2e 20 54 68 65 20 76 61 6c 75 65 20 75 73 65 64 | sion.by.the.peer..The.value.used |
| 78540 | 20 6d 75 73 74 20 6d 61 74 63 68 20 74 68 65 20 73 65 73 73 69 6f 6e 5f 69 64 20 76 61 6c 75 65 | .must.match.the.session_id.value |
| 78560 | 20 62 65 69 6e 67 20 75 73 65 64 20 61 74 20 74 68 65 20 70 65 65 72 2e 00 53 65 74 20 74 68 65 | .being.used.at.the.peer..Set.the |
| 78580 | 20 72 61 6e 67 65 20 6f 66 20 65 78 74 65 72 6e 61 6c 20 49 50 20 61 64 64 72 65 73 73 65 73 20 | .range.of.external.IP.addresses. |
| 785a0 | 66 6f 72 20 74 68 65 20 43 47 4e 41 54 20 70 6f 6f 6c 2e 00 53 65 74 20 74 68 65 20 72 61 6e 67 | for.the.CGNAT.pool..Set.the.rang |
| 785c0 | 65 20 6f 66 20 65 78 74 65 72 6e 61 6c 20 49 50 20 61 64 64 72 65 73 73 65 73 20 66 6f 72 20 74 | e.of.external.IP.addresses.for.t |
| 785e0 | 68 65 20 43 47 4e 41 54 20 70 6f 6f 6c 2e 20 54 68 65 20 73 65 71 75 65 6e 63 65 20 69 73 20 6f | he.CGNAT.pool..The.sequence.is.o |
| 78600 | 70 74 69 6f 6e 61 6c 3b 20 69 66 20 73 65 74 2c 20 61 20 6c 6f 77 65 72 20 76 61 6c 75 65 20 6d | ptional;.if.set,.a.lower.value.m |
| 78620 | 65 61 6e 73 20 68 69 67 68 65 72 20 70 72 69 6f 72 69 74 79 2e 00 53 65 74 20 74 68 65 20 72 61 | eans.higher.priority..Set.the.ra |
| 78640 | 6e 67 65 20 6f 66 20 69 6e 74 65 72 6e 61 6c 20 49 50 20 61 64 64 72 65 73 73 65 73 20 66 6f 72 | nge.of.internal.IP.addresses.for |
| 78660 | 20 74 68 65 20 43 47 4e 41 54 20 70 6f 6f 6c 2e 00 53 65 74 20 74 68 65 20 72 65 73 74 61 72 74 | .the.CGNAT.pool..Set.the.restart |
| 78680 | 20 62 65 68 61 76 69 6f 72 20 6f 66 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 2e 00 53 65 74 20 | .behavior.of.the.container..Set. |
| 786a0 | 74 68 65 20 72 6f 75 74 65 20 6d 65 74 72 69 63 2e 20 57 68 65 6e 20 75 73 65 64 20 77 69 74 68 | the.route.metric..When.used.with |
| 786c0 | 20 42 47 50 2c 20 73 65 74 20 74 68 65 20 42 47 50 20 61 74 74 72 69 62 75 74 65 20 4d 45 44 20 | .BGP,.set.the.BGP.attribute.MED. |
| 786e0 | 74 6f 20 61 20 73 70 65 63 69 66 69 63 20 76 61 6c 75 65 2e 20 55 73 65 20 60 60 2b 2f 2d 60 60 | to.a.specific.value..Use.``+/-`` |
| 78700 | 20 74 6f 20 61 64 64 20 6f 72 20 73 75 62 74 72 61 63 74 20 74 68 65 20 73 70 65 63 69 66 69 65 | .to.add.or.subtract.the.specifie |
| 78720 | 64 20 76 61 6c 75 65 20 74 6f 2f 66 72 6f 6d 20 74 68 65 20 65 78 69 73 74 69 6e 67 2f 4d 45 44 | d.value.to/from.the.existing/MED |
| 78740 | 2e 20 55 73 65 20 60 60 72 74 74 60 60 20 74 6f 20 73 65 74 20 74 68 65 20 4d 45 44 20 74 6f 20 | ..Use.``rtt``.to.set.the.MED.to. |
| 78760 | 74 68 65 20 72 6f 75 6e 64 20 74 72 69 70 20 74 69 6d 65 20 6f 72 20 60 60 2b 72 74 74 2f 2d 72 | the.round.trip.time.or.``+rtt/-r |
| 78780 | 74 74 60 60 20 74 6f 20 61 64 64 2f 73 75 62 74 72 61 63 74 20 74 68 65 20 72 6f 75 6e 64 20 74 | tt``.to.add/subtract.the.round.t |
| 787a0 | 72 69 70 20 74 69 6d 65 20 74 6f 2f 66 72 6f 6d 20 74 68 65 20 4d 45 44 2e 00 53 65 74 20 74 68 | rip.time.to/from.the.MED..Set.th |
| 787c0 | 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 74 6f 20 66 6f 72 77 61 72 64 20 70 61 63 6b 65 | e.routing.table.to.forward.packe |
| 787e0 | 74 20 77 69 74 68 2e 00 53 65 74 20 74 68 65 20 72 75 6c 65 20 66 6f 72 20 74 68 65 20 73 6f 75 | t.with..Set.the.rule.for.the.sou |
| 78800 | 72 63 65 20 70 6f 6f 6c 2e 00 53 65 74 20 74 68 65 20 72 75 6c 65 20 66 6f 72 20 74 68 65 20 74 | rce.pool..Set.the.rule.for.the.t |
| 78820 | 72 61 6e 73 6c 61 74 69 6f 6e 20 70 6f 6f 6c 2e 00 53 65 74 20 74 68 65 20 73 65 73 73 69 6f 6e | ranslation.pool..Set.the.session |
| 78840 | 20 69 64 2c 20 77 68 69 63 68 20 69 73 20 61 20 33 32 2d 62 69 74 20 69 6e 74 65 67 65 72 20 76 | .id,.which.is.a.32-bit.integer.v |
| 78860 | 61 6c 75 65 2e 20 55 6e 69 71 75 65 6c 79 20 69 64 65 6e 74 69 66 69 65 73 20 74 68 65 20 73 65 | alue..Uniquely.identifies.the.se |
| 78880 | 73 73 69 6f 6e 20 62 65 69 6e 67 20 63 72 65 61 74 65 64 2e 20 54 68 65 20 76 61 6c 75 65 20 75 | ssion.being.created..The.value.u |
| 788a0 | 73 65 64 20 6d 75 73 74 20 6d 61 74 63 68 20 74 68 65 20 70 65 65 72 5f 73 65 73 73 69 6f 6e 5f | sed.must.match.the.peer_session_ |
| 788c0 | 69 64 20 76 61 6c 75 65 20 62 65 69 6e 67 20 75 73 65 64 20 61 74 20 74 68 65 20 70 65 65 72 2e | id.value.being.used.at.the.peer. |
| 788e0 | 00 53 65 74 20 74 68 65 20 73 68 61 70 65 72 20 62 61 6e 64 77 69 64 74 68 2c 20 65 69 74 68 65 | .Set.the.shaper.bandwidth,.eithe |
| 78900 | 72 20 61 73 20 61 6e 20 65 78 70 6c 69 63 69 74 20 62 69 74 72 61 74 65 20 6f 72 20 61 20 70 65 | r.as.an.explicit.bitrate.or.a.pe |
| 78920 | 72 63 65 6e 74 61 67 65 20 6f 66 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 62 61 6e 64 77 69 | rcentage.of.the.interface.bandwi |
| 78940 | 64 74 68 2e 00 53 65 74 20 74 68 65 20 73 69 7a 65 20 6f 66 20 74 68 65 20 68 61 73 68 20 74 61 | dth..Set.the.size.of.the.hash.ta |
| 78960 | 62 6c 65 2e 20 54 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 68 61 73 | ble..The.connection.tracking.has |
| 78980 | 68 20 74 61 62 6c 65 20 6d 61 6b 65 73 20 73 65 61 72 63 68 69 6e 67 20 74 68 65 20 63 6f 6e 6e | h.table.makes.searching.the.conn |
| 789a0 | 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 74 61 62 6c 65 20 66 61 73 74 65 72 2e 20 54 68 | ection.tracking.table.faster..Th |
| 789c0 | 65 20 68 61 73 68 20 74 61 62 6c 65 20 75 73 65 73 20 e2 80 9c 62 75 63 6b 65 74 73 e2 80 9d 20 | e.hash.table.uses....buckets.... |
| 789e0 | 74 6f 20 72 65 63 6f 72 64 20 65 6e 74 72 69 65 73 20 69 6e 20 74 68 65 20 63 6f 6e 6e 65 63 74 | to.record.entries.in.the.connect |
| 78a00 | 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 74 61 62 6c 65 2e 00 53 65 74 20 74 68 65 20 73 6f 75 72 | ion.tracking.table..Set.the.sour |
| 78a20 | 63 65 20 49 50 20 6f 66 20 66 6f 72 77 61 72 64 65 64 20 70 61 63 6b 65 74 73 2c 20 6f 74 68 65 | ce.IP.of.forwarded.packets,.othe |
| 78a40 | 72 77 69 73 65 20 6f 72 69 67 69 6e 61 6c 20 73 65 6e 64 65 72 73 20 61 64 64 72 65 73 73 20 69 | rwise.original.senders.address.i |
| 78a60 | 73 20 75 73 65 64 2e 00 53 65 74 20 74 68 65 20 74 69 6d 65 6f 75 74 20 69 6e 20 73 65 63 6f 6e | s.used..Set.the.timeout.in.secon |
| 78a80 | 64 73 20 66 6f 72 20 61 20 70 72 6f 74 6f 63 6f 6c 20 6f 72 20 73 74 61 74 65 20 69 6e 20 61 20 | ds.for.a.protocol.or.state.in.a. |
| 78aa0 | 63 75 73 74 6f 6d 20 72 75 6c 65 2e 00 53 65 74 20 74 68 65 20 74 69 6d 65 6f 75 74 20 69 6e 20 | custom.rule..Set.the.timeout.in. |
| 78ac0 | 73 65 63 6f 6e 64 73 20 66 6f 72 20 61 20 70 72 6f 74 6f 63 6f 6c 20 6f 72 20 73 74 61 74 65 2e | seconds.for.a.protocol.or.state. |
| 78ae0 | 00 53 65 74 20 74 68 65 20 74 69 6d 65 6f 75 74 20 69 6e 20 73 65 63 6f 75 6e 64 73 20 66 6f 72 | .Set.the.timeout.in.secounds.for |
| 78b00 | 20 61 20 70 72 6f 74 6f 63 6f 6c 20 6f 72 20 73 74 61 74 65 20 69 6e 20 61 20 63 75 73 74 6f 6d | .a.protocol.or.state.in.a.custom |
| 78b20 | 20 72 75 6c 65 2e 00 53 65 74 20 74 68 65 20 74 69 6d 65 6f 75 74 20 69 6e 20 73 65 63 6f 75 6e | .rule..Set.the.timeout.in.secoun |
| 78b40 | 64 73 20 66 6f 72 20 61 20 70 72 6f 74 6f 63 6f 6c 20 6f 72 20 73 74 61 74 65 2e 00 53 65 74 20 | ds.for.a.protocol.or.state..Set. |
| 78b60 | 74 68 65 20 74 75 6e 6e 65 6c 20 69 64 2c 20 77 68 69 63 68 20 69 73 20 61 20 33 32 2d 62 69 74 | the.tunnel.id,.which.is.a.32-bit |
| 78b80 | 20 69 6e 74 65 67 65 72 20 76 61 6c 75 65 2e 20 55 6e 69 71 75 65 6c 79 20 69 64 65 6e 74 69 66 | .integer.value..Uniquely.identif |
| 78ba0 | 69 65 73 20 74 68 65 20 74 75 6e 6e 65 6c 20 69 6e 74 6f 20 77 68 69 63 68 20 74 68 65 20 73 65 | ies.the.tunnel.into.which.the.se |
| 78bc0 | 73 73 69 6f 6e 20 77 69 6c 6c 20 62 65 20 63 72 65 61 74 65 64 2e 00 53 65 74 20 74 68 65 20 77 | ssion.will.be.created..Set.the.w |
| 78be0 | 69 6e 64 6f 77 20 73 63 61 6c 65 20 66 61 63 74 6f 72 20 66 6f 72 20 54 43 50 20 77 69 6e 64 6f | indow.scale.factor.for.TCP.windo |
| 78c00 | 77 20 73 63 61 6c 69 6e 67 00 53 65 74 20 77 69 6e 64 6f 77 20 6f 66 20 63 6f 6e 63 75 72 72 65 | w.scaling.Set.window.of.concurre |
| 78c20 | 6e 74 6c 79 20 76 61 6c 69 64 20 63 6f 64 65 73 2e 00 53 65 74 73 20 74 68 65 20 48 54 54 50 20 | ntly.valid.codes..Sets.the.HTTP. |
| 78c40 | 6d 65 74 68 6f 64 20 74 6f 20 62 65 20 75 73 65 64 2c 20 63 61 6e 20 62 65 20 65 69 74 68 65 72 | method.to.be.used,.can.be.either |
| 78c60 | 3a 20 6f 70 74 69 6f 6e 2c 20 67 65 74 2c 20 70 6f 73 74 2c 20 70 75 74 00 53 65 74 73 20 74 68 | :.option,.get,.post,.put.Sets.th |
| 78c80 | 65 20 65 6e 64 70 6f 69 6e 74 20 74 6f 20 62 65 20 75 73 65 64 20 66 6f 72 20 68 65 61 6c 74 68 | e.endpoint.to.be.used.for.health |
| 78ca0 | 20 63 68 65 63 6b 73 00 53 65 74 73 20 74 68 65 20 65 78 70 65 63 74 65 64 20 72 65 73 75 6c 74 | .checks.Sets.the.expected.result |
| 78cc0 | 20 63 6f 6e 64 69 74 69 6f 6e 20 66 6f 72 20 63 6f 6e 73 69 64 65 72 69 6e 67 20 61 20 73 65 72 | .condition.for.considering.a.ser |
| 78ce0 | 76 65 72 20 68 65 61 6c 74 68 79 2e 00 53 65 74 73 20 74 68 65 20 65 78 70 65 63 74 65 64 20 72 | ver.healthy..Sets.the.expected.r |
| 78d00 | 65 73 75 6c 74 20 63 6f 6e 64 69 74 69 6f 6e 20 66 6f 72 20 63 6f 6e 73 69 64 65 72 69 6e 67 20 | esult.condition.for.considering. |
| 78d20 | 61 20 73 65 72 76 65 72 20 68 65 61 6c 74 68 79 2e 20 53 6f 6d 65 20 70 6f 73 73 69 62 6c 65 20 | a.server.healthy..Some.possible. |
| 78d40 | 65 78 61 6d 70 6c 65 73 20 61 72 65 3a 00 53 65 74 73 20 74 68 65 20 69 6d 61 67 65 20 6e 61 6d | examples.are:.Sets.the.image.nam |
| 78d60 | 65 20 69 6e 20 74 68 65 20 68 75 62 20 72 65 67 69 73 74 72 79 00 53 65 74 73 20 74 68 65 20 69 | e.in.the.hub.registry.Sets.the.i |
| 78d80 | 6e 74 65 72 66 61 63 65 20 74 6f 20 6c 69 73 74 65 6e 20 66 6f 72 20 6d 75 6c 74 69 63 61 73 74 | nterface.to.listen.for.multicast |
| 78da0 | 20 70 61 63 6b 65 74 73 20 6f 6e 2e 20 43 6f 75 6c 64 20 62 65 20 61 20 6c 6f 6f 70 62 61 63 6b | .packets.on..Could.be.a.loopback |
| 78dc0 | 2c 20 6e 6f 74 20 79 65 74 20 74 65 73 74 65 64 2e 00 53 65 74 73 20 74 68 65 20 6c 69 73 74 65 | ,.not.yet.tested..Sets.the.liste |
| 78de0 | 6e 69 6e 67 20 70 6f 72 74 20 66 6f 72 20 61 20 6c 69 73 74 65 6e 69 6e 67 20 61 64 64 72 65 73 | ning.port.for.a.listening.addres |
| 78e00 | 73 2e 20 54 68 69 73 20 6f 76 65 72 72 69 64 65 73 20 74 68 65 20 64 65 66 61 75 6c 74 20 70 6f | s..This.overrides.the.default.po |
| 78e20 | 72 74 20 6f 66 20 33 31 32 38 20 6f 6e 20 74 68 65 20 73 70 65 63 69 66 69 63 20 6c 69 73 74 65 | rt.of.3128.on.the.specific.liste |
| 78e40 | 6e 20 61 64 64 72 65 73 73 2e 00 53 65 74 73 20 74 68 65 20 75 6e 69 71 75 65 20 69 64 20 66 6f | n.address..Sets.the.unique.id.fo |
| 78e60 | 72 20 74 68 69 73 20 76 78 6c 61 6e 2d 69 6e 74 65 72 66 61 63 65 2e 20 4e 6f 74 20 73 75 72 65 | r.this.vxlan-interface..Not.sure |
| 78e80 | 20 68 6f 77 20 69 74 20 63 6f 72 72 65 6c 61 74 65 73 20 77 69 74 68 20 6d 75 6c 74 69 63 61 73 | .how.it.correlates.with.multicas |
| 78ea0 | 74 2d 61 64 64 72 65 73 73 2e 00 53 65 74 74 69 6e 67 20 52 45 53 54 20 41 50 49 20 61 6e 64 20 | t-address..Setting.REST.API.and. |
| 78ec0 | 61 6e 20 41 50 49 2d 4b 45 59 20 69 73 20 74 68 65 20 6d 69 6e 69 6d 61 6c 20 63 6f 6e 66 69 67 | an.API-KEY.is.the.minimal.config |
| 78ee0 | 75 72 61 74 69 6f 6e 20 74 6f 20 67 65 74 20 61 20 77 6f 72 6b 69 6e 67 20 41 50 49 20 45 6e 64 | uration.to.get.a.working.API.End |
| 78f00 | 70 6f 69 6e 74 2e 00 53 65 74 74 69 6e 67 20 56 52 52 50 20 67 72 6f 75 70 20 70 72 69 6f 72 69 | point..Setting.VRRP.group.priori |
| 78f20 | 74 79 00 53 65 74 74 69 6e 67 20 6e 61 6d 65 00 53 65 74 74 69 6e 67 20 74 68 69 73 20 75 70 20 | ty.Setting.name.Setting.this.up. |
| 78f40 | 6f 6e 20 41 57 53 20 77 69 6c 6c 20 72 65 71 75 69 72 65 20 61 20 22 43 75 73 74 6f 6d 20 50 72 | on.AWS.will.require.a."Custom.Pr |
| 78f60 | 6f 74 6f 63 6f 6c 20 52 75 6c 65 22 20 66 6f 72 20 70 72 6f 74 6f 63 6f 6c 20 6e 75 6d 62 65 72 | otocol.Rule".for.protocol.number |
| 78f80 | 20 22 34 37 22 20 28 47 52 45 29 20 41 6c 6c 6f 77 20 52 75 6c 65 20 69 6e 20 54 57 4f 20 70 6c | ."47".(GRE).Allow.Rule.in.TWO.pl |
| 78fa0 | 61 63 65 73 2e 20 46 69 72 73 74 6c 79 20 6f 6e 20 74 68 65 20 56 50 43 20 4e 65 74 77 6f 72 6b | aces..Firstly.on.the.VPC.Network |
| 78fc0 | 20 41 43 4c 2c 20 61 6e 64 20 73 65 63 6f 6e 64 6c 79 20 6f 6e 20 74 68 65 20 73 65 63 75 72 69 | .ACL,.and.secondly.on.the.securi |
| 78fe0 | 74 79 20 67 72 6f 75 70 20 6e 65 74 77 6f 72 6b 20 41 43 4c 20 61 74 74 61 63 68 65 64 20 74 6f | ty.group.network.ACL.attached.to |
| 79000 | 20 74 68 65 20 45 43 32 20 69 6e 73 74 61 6e 63 65 2e 20 54 68 69 73 20 68 61 73 20 62 65 65 6e | .the.EC2.instance..This.has.been |
| 79020 | 20 74 65 73 74 65 64 20 61 73 20 77 6f 72 6b 69 6e 67 20 66 6f 72 20 74 68 65 20 6f 66 66 69 63 | .tested.as.working.for.the.offic |
| 79040 | 69 61 6c 20 41 4d 49 20 69 6d 61 67 65 20 6f 6e 20 74 68 65 20 41 57 53 20 4d 61 72 6b 65 74 70 | ial.AMI.image.on.the.AWS.Marketp |
| 79060 | 6c 61 63 65 2e 20 28 4c 6f 63 61 74 65 20 74 68 65 20 63 6f 72 72 65 63 74 20 56 50 43 20 61 6e | lace..(Locate.the.correct.VPC.an |
| 79080 | 64 20 73 65 63 75 72 69 74 79 20 67 72 6f 75 70 20 62 79 20 6e 61 76 69 67 61 74 69 6e 67 20 74 | d.security.group.by.navigating.t |
| 790a0 | 68 72 6f 75 67 68 20 74 68 65 20 64 65 74 61 69 6c 73 20 70 61 6e 65 20 62 65 6c 6f 77 20 79 6f | hrough.the.details.pane.below.yo |
| 790c0 | 75 72 20 45 43 32 20 69 6e 73 74 61 6e 63 65 20 69 6e 20 74 68 65 20 41 57 53 20 63 6f 6e 73 6f | ur.EC2.instance.in.the.AWS.conso |
| 790e0 | 6c 65 29 2e 00 53 65 74 74 69 6e 67 20 75 70 20 49 50 53 65 63 3a 00 53 65 74 74 69 6e 67 20 75 | le)..Setting.up.IPSec:.Setting.u |
| 79100 | 70 20 4f 70 65 6e 56 50 4e 00 53 65 74 74 69 6e 67 20 75 70 20 61 20 66 75 6c 6c 2d 62 6c 6f 77 | p.OpenVPN.Setting.up.a.full-blow |
| 79120 | 6e 20 50 4b 49 20 77 69 74 68 20 61 20 43 41 20 63 65 72 74 69 66 69 63 61 74 65 20 77 6f 75 6c | n.PKI.with.a.CA.certificate.woul |
| 79140 | 64 20 61 72 67 75 61 62 6c 79 20 64 65 66 65 61 74 20 74 68 65 20 70 75 72 70 6f 73 65 20 6f 66 | d.arguably.defeat.the.purpose.of |
| 79160 | 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 4f 70 65 6e 56 50 4e 2c 20 73 69 6e 63 65 20 69 74 73 | .site-to-site.OpenVPN,.since.its |
| 79180 | 20 6d 61 69 6e 20 67 6f 61 6c 20 69 73 20 73 75 70 70 6f 73 65 64 20 74 6f 20 62 65 20 63 6f 6e | .main.goal.is.supposed.to.be.con |
| 791a0 | 66 69 67 75 72 61 74 69 6f 6e 20 73 69 6d 70 6c 69 63 69 74 79 2c 20 63 6f 6d 70 61 72 65 64 20 | figuration.simplicity,.compared. |
| 791c0 | 74 6f 20 73 65 72 76 65 72 20 73 65 74 75 70 73 20 74 68 61 74 20 6e 65 65 64 20 74 6f 20 73 75 | to.server.setups.that.need.to.su |
| 791e0 | 70 70 6f 72 74 20 6d 75 6c 74 69 70 6c 65 20 63 6c 69 65 6e 74 73 2e 00 53 65 74 74 69 6e 67 20 | pport.multiple.clients..Setting. |
| 79200 | 75 70 20 63 65 72 74 69 66 69 63 61 74 65 73 00 53 65 74 74 69 6e 67 20 75 70 20 63 65 72 74 69 | up.certificates.Setting.up.certi |
| 79220 | 66 69 63 61 74 65 73 3a 00 53 65 74 74 69 6e 67 20 75 70 20 74 75 6e 6e 65 6c 3a 00 53 65 74 74 | ficates:.Setting.up.tunnel:.Sett |
| 79240 | 69 6e 67 20 77 69 6c 6c 20 6f 6e 6c 79 20 62 65 63 6f 6d 65 20 61 63 74 69 76 65 20 77 69 74 68 | ing.will.only.become.active.with |
| 79260 | 20 74 68 65 20 6e 65 78 74 20 72 65 62 6f 6f 74 21 00 53 65 74 75 70 20 44 48 43 50 20 48 41 20 | .the.next.reboot!.Setup.DHCP.HA. |
| 79280 | 66 6f 72 20 6e 65 74 77 6f 72 6b 20 31 39 32 2e 30 2e 32 2e 30 2f 32 34 00 53 65 74 75 70 20 44 | for.network.192.0.2.0/24.Setup.D |
| 792a0 | 48 43 50 20 66 61 69 6c 6f 76 65 72 20 66 6f 72 20 6e 65 74 77 6f 72 6b 20 31 39 32 2e 30 2e 32 | HCP.failover.for.network.192.0.2 |
| 792c0 | 2e 30 2f 32 34 00 53 65 74 75 70 20 65 6e 63 72 79 70 74 65 64 20 70 61 73 73 77 6f 72 64 20 66 | .0/24.Setup.encrypted.password.f |
| 792e0 | 6f 72 20 67 69 76 65 6e 20 75 73 65 72 6e 61 6d 65 2e 20 54 68 69 73 20 69 73 20 75 73 65 66 75 | or.given.username..This.is.usefu |
| 79300 | 6c 20 66 6f 72 20 74 72 61 6e 73 66 65 72 72 69 6e 67 20 61 20 68 61 73 68 65 64 20 70 61 73 73 | l.for.transferring.a.hashed.pass |
| 79320 | 77 6f 72 64 20 66 72 6f 6d 20 73 79 73 74 65 6d 20 74 6f 20 73 79 73 74 65 6d 2e 00 53 65 74 75 | word.from.system.to.system..Setu |
| 79340 | 70 20 74 68 65 20 60 3c 74 69 6d 65 6f 75 74 3e 60 20 69 6e 20 73 65 63 6f 6e 64 73 20 77 68 65 | p.the.`<timeout>`.in.seconds.whe |
| 79360 | 6e 20 71 75 65 72 79 69 6e 67 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 2e 00 53 65 | n.querying.the.RADIUS.server..Se |
| 79380 | 74 75 70 20 74 68 65 20 60 3c 74 69 6d 65 6f 75 74 3e 60 20 69 6e 20 73 65 63 6f 6e 64 73 20 77 | tup.the.`<timeout>`.in.seconds.w |
| 793a0 | 68 65 6e 20 71 75 65 72 79 69 6e 67 20 74 68 65 20 54 41 43 41 43 53 20 73 65 72 76 65 72 2e 00 | hen.querying.the.TACACS.server.. |
| 793c0 | 53 65 74 75 70 20 74 68 65 20 64 79 6e 61 6d 69 63 20 44 4e 53 20 68 6f 73 74 6e 61 6d 65 20 60 | Setup.the.dynamic.DNS.hostname.` |
| 793e0 | 3c 68 6f 73 74 6e 61 6d 65 3e 60 20 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 74 68 65 20 | <hostname>`.associated.with.the. |
| 79400 | 44 79 6e 44 4e 53 20 70 72 6f 76 69 64 65 72 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 60 3c | DynDNS.provider.identified.by.`< |
| 79420 | 73 65 72 76 69 63 65 2d 6e 61 6d 65 3e 60 2e 00 53 65 74 75 70 20 74 68 65 20 64 79 6e 61 6d 69 | service-name>`..Setup.the.dynami |
| 79440 | 63 20 44 4e 53 20 68 6f 73 74 6e 61 6d 65 20 60 3c 68 6f 73 74 6e 61 6d 65 3e 60 20 61 73 73 6f | c.DNS.hostname.`<hostname>`.asso |
| 79460 | 63 69 61 74 65 64 20 77 69 74 68 20 74 68 65 20 44 79 6e 44 4e 53 20 70 72 6f 76 69 64 65 72 20 | ciated.with.the.DynDNS.provider. |
| 79480 | 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 60 3c 73 65 72 76 69 63 65 3e 60 20 77 68 65 6e 20 74 | identified.by.`<service>`.when.t |
| 794a0 | 68 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 6e 20 61 64 64 72 65 73 73 20 60 3c 69 6e 74 65 72 | he.IP.address.on.address.`<inter |
| 794c0 | 66 61 63 65 3e 60 20 63 68 61 6e 67 65 73 2e 00 53 65 74 75 70 20 74 68 65 20 64 79 6e 61 6d 69 | face>`.changes..Setup.the.dynami |
| 794e0 | 63 20 44 4e 53 20 68 6f 73 74 6e 61 6d 65 20 60 3c 68 6f 73 74 6e 61 6d 65 3e 60 20 61 73 73 6f | c.DNS.hostname.`<hostname>`.asso |
| 79500 | 63 69 61 74 65 64 20 77 69 74 68 20 74 68 65 20 44 79 6e 44 4e 53 20 70 72 6f 76 69 64 65 72 20 | ciated.with.the.DynDNS.provider. |
| 79520 | 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 60 3c 73 65 72 76 69 63 65 3e 60 20 77 68 65 6e 20 74 | identified.by.`<service>`.when.t |
| 79540 | 68 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 60 3c 69 6e 74 | he.IP.address.on.interface.`<int |
| 79560 | 65 72 66 61 63 65 3e 60 20 63 68 61 6e 67 65 73 2e 00 53 65 76 65 72 61 6c 20 63 6f 6d 6d 61 6e | erface>`.changes..Several.comman |
| 79580 | 64 73 20 75 74 69 6c 69 7a 65 20 63 55 52 4c 20 74 6f 20 69 6e 69 74 69 61 74 65 20 74 72 61 6e | ds.utilize.cURL.to.initiate.tran |
| 795a0 | 73 66 65 72 73 2e 20 43 6f 6e 66 69 67 75 72 65 20 74 68 65 20 6c 6f 63 61 6c 20 73 6f 75 72 63 | sfers..Configure.the.local.sourc |
| 795c0 | 65 20 49 50 76 34 2f 49 50 76 36 20 61 64 64 72 65 73 73 20 75 73 65 64 20 66 6f 72 20 61 6c 6c | e.IPv4/IPv6.address.used.for.all |
| 795e0 | 20 63 55 52 4c 20 6f 70 65 72 61 74 69 6f 6e 73 2e 00 53 65 76 65 72 61 6c 20 63 6f 6d 6d 61 6e | .cURL.operations..Several.comman |
| 79600 | 64 73 20 75 74 69 6c 69 7a 65 20 63 75 72 6c 20 74 6f 20 69 6e 69 74 69 61 74 65 20 74 72 61 6e | ds.utilize.curl.to.initiate.tran |
| 79620 | 73 66 65 72 73 2e 20 43 6f 6e 66 69 67 75 72 65 20 74 68 65 20 6c 6f 63 61 6c 20 73 6f 75 72 63 | sfers..Configure.the.local.sourc |
| 79640 | 65 20 69 6e 74 65 72 66 61 63 65 20 75 73 65 64 20 66 6f 72 20 61 6c 6c 20 43 55 52 4c 20 6f 70 | e.interface.used.for.all.CURL.op |
| 79660 | 65 72 61 74 69 6f 6e 73 2e 00 53 65 76 65 72 69 74 79 00 53 65 76 65 72 69 74 79 20 4c 65 76 65 | erations..Severity.Severity.Leve |
| 79680 | 6c 00 53 68 61 70 65 72 00 53 68 6f 72 74 20 47 49 20 63 61 70 61 62 69 6c 69 74 69 65 73 00 53 | l.Shaper.Short.GI.capabilities.S |
| 796a0 | 68 6f 72 74 20 47 49 20 63 61 70 61 62 69 6c 69 74 69 65 73 20 66 6f 72 20 32 30 20 61 6e 64 20 | hort.GI.capabilities.for.20.and. |
| 796c0 | 34 30 20 4d 48 7a 00 53 68 6f 72 74 20 62 75 72 73 74 73 20 63 61 6e 20 62 65 20 61 6c 6c 6f 77 | 40.MHz.Short.bursts.can.be.allow |
| 796e0 | 65 64 20 74 6f 20 65 78 63 65 65 64 20 74 68 65 20 6c 69 6d 69 74 2e 20 4f 6e 20 63 72 65 61 74 | ed.to.exceed.the.limit..On.creat |
| 79700 | 69 6f 6e 2c 20 74 68 65 20 52 61 74 65 2d 43 6f 6e 74 72 6f 6c 20 74 72 61 66 66 69 63 20 69 73 | ion,.the.Rate-Control.traffic.is |
| 79720 | 20 73 74 6f 63 6b 65 64 20 77 69 74 68 20 74 6f 6b 65 6e 73 20 77 68 69 63 68 20 63 6f 72 72 65 | .stocked.with.tokens.which.corre |
| 79740 | 73 70 6f 6e 64 20 74 6f 20 74 68 65 20 61 6d 6f 75 6e 74 20 6f 66 20 74 72 61 66 66 69 63 20 74 | spond.to.the.amount.of.traffic.t |
| 79760 | 68 61 74 20 63 61 6e 20 62 65 20 62 75 72 73 74 20 69 6e 20 6f 6e 65 20 67 6f 2e 20 54 6f 6b 65 | hat.can.be.burst.in.one.go..Toke |
| 79780 | 6e 73 20 61 72 72 69 76 65 20 61 74 20 61 20 73 74 65 61 64 79 20 72 61 74 65 2c 20 75 6e 74 69 | ns.arrive.at.a.steady.rate,.unti |
| 797a0 | 6c 20 74 68 65 20 62 75 63 6b 65 74 20 69 73 20 66 75 6c 6c 2e 00 53 68 6f 72 74 63 75 74 20 73 | l.the.bucket.is.full..Shortcut.s |
| 797c0 | 79 6e 74 61 78 20 66 6f 72 20 73 70 65 63 69 66 79 69 6e 67 20 61 75 74 6f 6d 61 74 69 63 20 6c | yntax.for.specifying.automatic.l |
| 797e0 | 65 61 6b 69 6e 67 20 66 72 6f 6d 20 76 72 66 20 56 52 46 4e 41 4d 45 20 74 6f 20 74 68 65 20 63 | eaking.from.vrf.VRFNAME.to.the.c |
| 79800 | 75 72 72 65 6e 74 20 56 52 46 20 75 73 69 6e 67 20 74 68 65 20 56 50 4e 20 52 49 42 20 61 73 20 | urrent.VRF.using.the.VPN.RIB.as. |
| 79820 | 69 6e 74 65 72 6d 65 64 69 61 72 79 2e 20 54 68 65 20 52 44 20 61 6e 64 20 52 54 20 61 72 65 20 | intermediary..The.RD.and.RT.are. |
| 79840 | 61 75 74 6f 20 64 65 72 69 76 65 64 20 61 6e 64 20 73 68 6f 75 6c 64 20 6e 6f 74 20 62 65 20 73 | auto.derived.and.should.not.be.s |
| 79860 | 70 65 63 69 66 69 65 64 20 65 78 70 6c 69 63 69 74 6c 79 20 66 6f 72 20 65 69 74 68 65 72 20 74 | pecified.explicitly.for.either.t |
| 79880 | 68 65 20 73 6f 75 72 63 65 20 6f 72 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 56 52 46 e2 80 99 73 | he.source.or.destination.VRF...s |
| 798a0 | 2e 00 53 68 6f 77 00 53 68 6f 77 20 43 47 4e 41 54 20 61 6c 6c 6f 63 61 74 69 6f 6e 73 00 53 68 | ..Show.Show.CGNAT.allocations.Sh |
| 798c0 | 6f 77 20 44 48 43 50 20 73 65 72 76 65 72 20 64 61 65 6d 6f 6e 20 6c 6f 67 20 66 69 6c 65 00 53 | ow.DHCP.server.daemon.log.file.S |
| 798e0 | 68 6f 77 20 44 48 43 50 76 36 20 73 65 72 76 65 72 20 64 61 65 6d 6f 6e 20 6c 6f 67 20 66 69 6c | how.DHCPv6.server.daemon.log.fil |
| 79900 | 65 00 53 68 6f 77 20 46 69 72 65 77 61 6c 6c 20 6c 6f 67 00 53 68 6f 77 20 4c 4c 44 50 20 6e 65 | e.Show.Firewall.log.Show.LLDP.ne |
| 79920 | 69 67 68 62 6f 72 73 20 63 6f 6e 6e 65 63 74 65 64 20 76 69 61 20 69 6e 74 65 72 66 61 63 65 20 | ighbors.connected.via.interface. |
| 79940 | 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 2e 00 53 68 6f 77 20 53 53 48 20 64 79 6e 61 6d 69 63 2d | `<interface>`..Show.SSH.dynamic- |
| 79960 | 70 72 6f 74 65 63 74 69 6f 6e 20 6c 6f 67 2e 00 53 68 6f 77 20 53 53 48 20 73 65 72 76 65 72 20 | protection.log..Show.SSH.server. |
| 79980 | 6c 6f 67 2e 00 53 68 6f 77 20 53 53 48 20 73 65 72 76 65 72 20 70 75 62 6c 69 63 20 6b 65 79 20 | log..Show.SSH.server.public.key. |
| 799a0 | 66 69 6e 67 65 72 70 72 69 6e 74 73 2c 20 69 6e 63 6c 75 64 69 6e 67 20 61 20 76 69 73 75 61 6c | fingerprints,.including.a.visual |
| 799c0 | 20 41 53 43 49 49 20 61 72 74 20 72 65 70 72 65 73 65 6e 74 61 74 69 6f 6e 2e 00 53 68 6f 77 20 | .ASCII.art.representation..Show. |
| 799e0 | 53 53 48 20 73 65 72 76 65 72 20 70 75 62 6c 69 63 20 6b 65 79 20 66 69 6e 67 65 72 70 72 69 6e | SSH.server.public.key.fingerprin |
| 79a00 | 74 73 2e 00 53 68 6f 77 20 57 41 4e 20 6c 6f 61 64 20 62 61 6c 61 6e 63 65 72 20 69 6e 66 6f 72 | ts..Show.WAN.load.balancer.infor |
| 79a20 | 6d 61 74 69 6f 6e 20 69 6e 63 6c 75 64 69 6e 67 20 74 65 73 74 20 74 79 70 65 73 20 61 6e 64 20 | mation.including.test.types.and. |
| 79a40 | 74 61 72 67 65 74 73 2e 20 41 20 63 68 61 72 61 63 74 65 72 20 61 74 20 74 68 65 20 73 74 61 72 | targets..A.character.at.the.star |
| 79a60 | 74 20 6f 66 20 65 61 63 68 20 6c 69 6e 65 20 64 65 70 69 63 74 73 20 74 68 65 20 73 74 61 74 65 | t.of.each.line.depicts.the.state |
| 79a80 | 20 6f 66 20 74 68 65 20 74 65 73 74 00 53 68 6f 77 20 57 57 41 4e 20 6d 6f 64 75 6c 65 20 49 4d | .of.the.test.Show.WWAN.module.IM |
| 79aa0 | 45 49 2e 00 53 68 6f 77 20 57 57 41 4e 20 6d 6f 64 75 6c 65 20 49 4d 53 49 2e 00 53 68 6f 77 20 | EI..Show.WWAN.module.IMSI..Show. |
| 79ac0 | 57 57 41 4e 20 6d 6f 64 75 6c 65 20 4d 53 49 53 44 4e 2e 00 53 68 6f 77 20 57 57 41 4e 20 6d 6f | WWAN.module.MSISDN..Show.WWAN.mo |
| 79ae0 | 64 75 6c 65 20 53 49 4d 20 63 61 72 64 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2e 00 53 68 6f 77 20 | dule.SIM.card.information..Show. |
| 79b00 | 57 57 41 4e 20 6d 6f 64 75 6c 65 20 66 69 72 6d 77 61 72 65 2e 00 53 68 6f 77 20 57 57 41 4e 20 | WWAN.module.firmware..Show.WWAN. |
| 79b20 | 6d 6f 64 75 6c 65 20 68 61 72 64 77 61 72 65 20 63 61 70 61 62 69 6c 69 74 69 65 73 2e 00 53 68 | module.hardware.capabilities..Sh |
| 79b40 | 6f 77 20 57 57 41 4e 20 6d 6f 64 75 6c 65 20 68 61 72 64 77 61 72 65 20 72 65 76 69 73 69 6f 6e | ow.WWAN.module.hardware.revision |
| 79b60 | 2e 00 53 68 6f 77 20 57 57 41 4e 20 6d 6f 64 75 6c 65 20 6d 6f 64 65 6c 2e 00 53 68 6f 77 20 57 | ..Show.WWAN.module.model..Show.W |
| 79b80 | 57 41 4e 20 6d 6f 64 75 6c 65 20 73 69 67 6e 61 6c 20 73 74 72 65 6e 67 74 68 2e 00 53 68 6f 77 | WAN.module.signal.strength..Show |
| 79ba0 | 20 61 20 64 65 74 61 69 6c 65 64 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 66 20 61 6c 6c 20 61 | .a.detailed.information.of.all.a |
| 79bc0 | 63 74 69 76 65 20 49 50 73 65 63 20 53 65 63 75 72 69 74 79 20 41 73 73 6f 63 69 61 74 69 6f 6e | ctive.IPsec.Security.Association |
| 79be0 | 73 20 28 53 41 29 20 69 6e 20 76 65 72 62 6f 73 65 20 66 6f 72 6d 61 74 2e 00 53 68 6f 77 20 61 | s.(SA).in.verbose.format..Show.a |
| 79c00 | 20 6c 69 73 74 20 61 76 61 69 6c 61 62 6c 65 20 63 6f 6e 74 61 69 6e 65 72 20 6e 65 74 77 6f 72 | .list.available.container.networ |
| 79c20 | 6b 73 00 53 68 6f 77 20 61 20 6c 69 73 74 20 6f 66 20 69 6e 73 74 61 6c 6c 65 64 20 3a 61 62 62 | ks.Show.a.list.of.installed.:abb |
| 79c40 | 72 3a 60 43 41 20 28 43 65 72 74 69 66 69 63 61 74 65 20 41 75 74 68 6f 72 69 74 79 29 60 20 63 | r:`CA.(Certificate.Authority)`.c |
| 79c60 | 65 72 74 69 66 69 63 61 74 65 73 2e 00 53 68 6f 77 20 61 20 6c 69 73 74 20 6f 66 20 69 6e 73 74 | ertificates..Show.a.list.of.inst |
| 79c80 | 61 6c 6c 65 64 20 3a 61 62 62 72 3a 60 43 52 4c 73 20 28 43 65 72 74 69 66 69 63 61 74 65 20 52 | alled.:abbr:`CRLs.(Certificate.R |
| 79ca0 | 65 76 6f 63 61 74 69 6f 6e 20 4c 69 73 74 29 60 2e 00 53 68 6f 77 20 61 20 6c 69 73 74 20 6f 66 | evocation.List)`..Show.a.list.of |
| 79cc0 | 20 69 6e 73 74 61 6c 6c 65 64 20 63 65 72 74 69 66 69 63 61 74 65 73 00 53 68 6f 77 20 61 64 64 | .installed.certificates.Show.add |
| 79ce0 | 72 65 73 73 20 61 6e 64 20 70 6f 72 74 20 61 6c 6c 6f 63 61 74 69 6f 6e 73 00 53 68 6f 77 20 61 | ress.and.port.allocations.Show.a |
| 79d00 | 6c 6c 20 42 46 44 20 70 65 65 72 73 00 53 68 6f 77 20 61 6c 6c 20 61 63 74 69 76 65 20 49 50 73 | ll.BFD.peers.Show.all.active.IPs |
| 79d20 | 65 63 20 53 65 63 75 72 69 74 79 20 41 73 73 6f 63 69 61 74 69 6f 6e 73 20 28 53 41 29 00 53 68 | ec.Security.Associations.(SA).Sh |
| 79d40 | 6f 77 20 61 6c 6c 20 61 6c 6c 6f 63 61 74 69 6f 6e 73 20 66 6f 72 20 61 6e 20 65 78 74 65 72 6e | ow.all.allocations.for.an.extern |
| 79d60 | 61 6c 20 49 50 20 61 64 64 72 65 73 73 00 53 68 6f 77 20 61 6c 6c 20 61 6c 6c 6f 63 61 74 69 6f | al.IP.address.Show.all.allocatio |
| 79d80 | 6e 73 20 66 6f 72 20 61 6e 20 69 6e 74 65 72 6e 61 6c 20 49 50 20 61 64 64 72 65 73 73 00 53 68 | ns.for.an.internal.IP.address.Sh |
| 79da0 | 6f 77 20 61 6c 6c 20 63 75 72 72 65 6e 74 6c 79 20 61 63 74 69 76 65 20 49 4b 45 20 53 65 63 75 | ow.all.currently.active.IKE.Secu |
| 79dc0 | 72 69 74 79 20 41 73 73 6f 63 69 61 74 69 6f 6e 73 20 28 53 41 29 20 66 6f 72 20 61 20 73 70 65 | rity.Associations.(SA).for.a.spe |
| 79de0 | 63 69 66 69 63 20 70 65 65 72 2e 00 53 68 6f 77 20 61 6c 6c 20 63 75 72 72 65 6e 74 6c 79 20 61 | cific.peer..Show.all.currently.a |
| 79e00 | 63 74 69 76 65 20 49 4b 45 20 53 65 63 75 72 69 74 79 20 41 73 73 6f 63 69 61 74 69 6f 6e 73 20 | ctive.IKE.Security.Associations. |
| 79e20 | 28 53 41 29 20 74 68 61 74 20 61 72 65 20 75 73 69 6e 67 20 4e 41 54 20 54 72 61 76 65 72 73 61 | (SA).that.are.using.NAT.Traversa |
| 79e40 | 6c 2e 00 53 68 6f 77 20 61 6c 6c 20 63 75 72 72 65 6e 74 6c 79 20 61 63 74 69 76 65 20 49 4b 45 | l..Show.all.currently.active.IKE |
| 79e60 | 20 53 65 63 75 72 69 74 79 20 41 73 73 6f 63 69 61 74 69 6f 6e 73 2e 00 53 68 6f 77 20 61 6c 6c | .Security.Associations..Show.all |
| 79e80 | 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 70 72 65 2d 73 68 61 72 65 64 20 73 65 63 72 65 | .the.configured.pre-shared.secre |
| 79ea0 | 74 20 6b 65 79 73 2e 00 53 68 6f 77 20 61 76 61 69 6c 61 62 6c 65 20 6f 66 66 6c 6f 61 64 69 6e | t.keys..Show.available.offloadin |
| 79ec0 | 67 20 66 75 6e 63 74 69 6f 6e 73 20 6f 6e 20 67 69 76 65 6e 20 60 3c 69 6e 74 65 72 66 61 63 65 | g.functions.on.given.`<interface |
| 79ee0 | 3e 60 00 53 68 6f 77 20 62 69 6e 64 65 64 20 71 61 74 20 64 65 76 69 63 65 20 69 6e 74 65 72 72 | >`.Show.binded.qat.device.interr |
| 79f00 | 75 70 74 73 20 74 6f 20 63 65 72 74 61 69 6e 20 63 6f 72 65 2e 00 53 68 6f 77 20 62 72 69 64 67 | upts.to.certain.core..Show.bridg |
| 79f20 | 65 20 60 3c 6e 61 6d 65 3e 60 20 66 64 62 20 64 69 73 70 6c 61 79 73 20 74 68 65 20 63 75 72 72 | e.`<name>`.fdb.displays.the.curr |
| 79f40 | 65 6e 74 20 66 6f 72 77 61 72 64 69 6e 67 20 74 61 62 6c 65 3a 00 53 68 6f 77 20 62 72 69 64 67 | ent.forwarding.table:.Show.bridg |
| 79f60 | 65 20 60 3c 6e 61 6d 65 3e 60 20 6d 64 62 20 64 69 73 70 6c 61 79 73 20 74 68 65 20 63 75 72 72 | e.`<name>`.mdb.displays.the.curr |
| 79f80 | 65 6e 74 20 6d 75 6c 74 69 63 61 73 74 20 67 72 6f 75 70 20 6d 65 6d 62 65 72 73 68 69 70 20 74 | ent.multicast.group.membership.t |
| 79fa0 | 61 62 6c 65 2e 54 68 65 20 74 61 62 6c 65 20 69 73 20 70 6f 70 75 6c 61 74 65 64 20 62 79 20 49 | able.The.table.is.populated.by.I |
| 79fc0 | 47 4d 50 20 61 6e 64 20 4d 4c 44 20 73 6e 6f 6f 70 69 6e 67 20 69 6e 20 74 68 65 20 62 72 69 64 | GMP.and.MLD.snooping.in.the.brid |
| 79fe0 | 67 65 20 64 72 69 76 65 72 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 2e 00 53 68 6f 77 20 62 72 | ge.driver.automatically..Show.br |
| 7a000 | 69 65 66 20 69 6e 74 65 72 66 61 63 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2e 00 53 68 6f 77 20 | ief.interface.information..Show. |
| 7a020 | 63 6f 6d 6d 61 6e 64 73 00 53 68 6f 77 20 63 6f 6e 66 69 67 75 72 65 64 20 73 65 72 69 61 6c 20 | commands.Show.configured.serial. |
| 7a040 | 70 6f 72 74 73 20 61 6e 64 20 74 68 65 69 72 20 72 65 73 70 65 63 74 69 76 65 20 69 6e 74 65 72 | ports.and.their.respective.inter |
| 7a060 | 66 61 63 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 53 68 6f 77 20 63 6f 6e 6e 65 63 74 | face.configuration..Show.connect |
| 7a080 | 69 6f 6e 20 64 61 74 61 20 6f 66 20 6c 6f 61 64 20 62 61 6c 61 6e 63 65 64 20 74 72 61 66 66 69 | ion.data.of.load.balanced.traffi |
| 7a0a0 | 63 3a 00 53 68 6f 77 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 73 79 6e 63 69 6e 67 20 65 78 74 65 72 | c:.Show.connection.syncing.exter |
| 7a0c0 | 6e 61 6c 20 63 61 63 68 65 20 65 6e 74 72 69 65 73 00 53 68 6f 77 20 63 6f 6e 6e 65 63 74 69 6f | nal.cache.entries.Show.connectio |
| 7a0e0 | 6e 20 73 79 6e 63 69 6e 67 20 69 6e 74 65 72 6e 61 6c 20 63 61 63 68 65 20 65 6e 74 72 69 65 73 | n.syncing.internal.cache.entries |
| 7a100 | 00 53 68 6f 77 20 63 75 72 72 65 6e 74 6c 79 20 63 6f 6e 6e 65 63 74 65 64 20 75 73 65 72 73 2e | .Show.currently.connected.users. |
| 7a120 | 00 53 68 6f 77 20 64 65 74 61 69 6c 65 64 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 | .Show.detailed.information.about |
| 7a140 | 20 61 6c 6c 20 6c 65 61 72 6e 65 64 20 53 65 67 6d 65 6e 74 20 52 6f 75 74 69 6e 67 20 4e 6f 64 | .all.learned.Segment.Routing.Nod |
| 7a160 | 65 73 00 53 68 6f 77 20 64 65 74 61 69 6c 65 64 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f | es.Show.detailed.information.abo |
| 7a180 | 75 74 20 70 72 65 66 69 78 2d 73 69 64 20 61 6e 64 20 6c 61 62 65 6c 20 6c 65 61 72 6e 65 64 00 | ut.prefix-sid.and.label.learned. |
| 7a1a0 | 53 68 6f 77 20 64 65 74 61 69 6c 65 64 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 | Show.detailed.information.about. |
| 7a1c0 | 74 68 65 20 75 6e 64 65 72 6c 61 79 69 6e 67 20 70 68 79 73 69 63 61 6c 20 6c 69 6e 6b 73 20 6f | the.underlaying.physical.links.o |
| 7a1e0 | 6e 20 67 69 76 65 6e 20 62 6f 6e 64 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 2e 00 53 68 6f 77 | n.given.bond.`<interface>`..Show |
| 7a200 | 20 64 65 74 61 69 6c 65 64 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 6e 20 67 69 76 65 6e 20 60 | .detailed.information.on.given.` |
| 7a220 | 3c 69 6e 74 65 72 66 61 63 65 3e 60 00 53 68 6f 77 20 64 65 74 61 69 6c 65 64 20 69 6e 66 6f 72 | <interface>`.Show.detailed.infor |
| 7a240 | 6d 61 74 69 6f 6e 20 6f 6e 20 74 68 65 20 67 69 76 65 6e 20 6c 6f 6f 70 62 61 63 6b 20 69 6e 74 | mation.on.the.given.loopback.int |
| 7a260 | 65 72 66 61 63 65 20 60 6c 6f 60 2e 00 53 68 6f 77 20 64 65 74 61 69 6c 65 64 20 69 6e 66 6f 72 | erface.`lo`..Show.detailed.infor |
| 7a280 | 6d 61 74 69 6f 6e 20 73 75 6d 6d 61 72 79 20 6f 6e 20 67 69 76 65 6e 20 60 3c 69 6e 74 65 72 66 | mation.summary.on.given.`<interf |
| 7a2a0 | 61 63 65 3e 60 00 53 68 6f 77 20 64 65 74 61 69 6c 73 20 6f 66 20 61 6c 6c 20 61 76 61 69 6c 61 | ace>`.Show.details.of.all.availa |
| 7a2c0 | 62 6c 65 20 56 50 4e 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 00 53 68 6f 77 20 66 6c 6f 77 20 61 63 | ble.VPN.connections.Show.flow.ac |
| 7a2e0 | 63 6f 75 6e 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 6f 72 20 67 69 76 65 6e 20 60 | counting.information.for.given.` |
| 7a300 | 3c 69 6e 74 65 72 66 61 63 65 3e 60 20 66 6f 72 20 61 20 73 70 65 63 69 66 69 63 20 68 6f 73 74 | <interface>`.for.a.specific.host |
| 7a320 | 20 6f 6e 6c 79 2e 00 53 68 6f 77 20 66 6c 6f 77 20 61 63 63 6f 75 6e 74 69 6e 67 20 69 6e 66 6f | .only..Show.flow.accounting.info |
| 7a340 | 72 6d 61 74 69 6f 6e 20 66 6f 72 20 67 69 76 65 6e 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 2e | rmation.for.given.`<interface>`. |
| 7a360 | 00 53 68 6f 77 20 67 65 6e 65 72 61 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 | .Show.general.information.about. |
| 7a380 | 73 70 65 63 69 66 69 63 20 57 69 72 65 47 75 61 72 64 20 69 6e 74 65 72 66 61 63 65 00 53 68 6f | specific.WireGuard.interface.Sho |
| 7a3a0 | 77 20 69 6e 66 6f 20 61 62 6f 75 74 20 74 68 65 20 57 69 72 65 67 75 61 72 64 20 73 65 72 76 69 | w.info.about.the.Wireguard.servi |
| 7a3c0 | 63 65 2e 20 49 74 20 61 6c 73 6f 20 73 68 6f 77 73 20 74 68 65 20 6c 61 74 65 73 74 20 68 61 6e | ce..It.also.shows.the.latest.han |
| 7a3e0 | 64 73 68 61 6b 65 2e 00 53 68 6f 77 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 70 | dshake..Show.information.about.p |
| 7a400 | 68 79 73 69 63 61 6c 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 00 53 68 6f 77 20 6c 69 73 74 20 | hysical.`<interface>`.Show.list. |
| 7a420 | 6f 66 20 49 50 73 20 63 75 72 72 65 6e 74 6c 79 20 62 6c 6f 63 6b 65 64 20 62 79 20 53 53 48 20 | of.IPs.currently.blocked.by.SSH. |
| 7a440 | 64 79 6e 61 6d 69 63 2d 70 72 6f 74 65 63 74 69 6f 6e 2e 00 53 68 6f 77 20 6c 6f 67 73 20 66 6f | dynamic-protection..Show.logs.fo |
| 7a460 | 72 20 49 50 73 65 63 00 53 68 6f 77 20 6c 6f 67 73 20 66 6f 72 20 6d 44 4e 53 20 72 65 70 65 61 | r.IPsec.Show.logs.for.mDNS.repea |
| 7a480 | 74 65 72 20 73 65 72 76 69 63 65 2e 00 53 68 6f 77 20 6c 6f 67 73 20 66 72 6f 6d 20 61 20 67 69 | ter.service..Show.logs.from.a.gi |
| 7a4a0 | 76 65 6e 20 63 6f 6e 74 61 69 6e 65 72 00 53 68 6f 77 20 6c 6f 67 73 20 66 72 6f 6d 20 61 6c 6c | ven.container.Show.logs.from.all |
| 7a4c0 | 20 44 48 43 50 20 63 6c 69 65 6e 74 20 70 72 6f 63 65 73 73 65 73 2e 00 53 68 6f 77 20 6c 6f 67 | .DHCP.client.processes..Show.log |
| 7a4e0 | 73 20 66 72 6f 6d 20 61 6c 6c 20 44 48 43 50 76 36 20 63 6c 69 65 6e 74 20 70 72 6f 63 65 73 73 | s.from.all.DHCPv6.client.process |
| 7a500 | 65 73 2e 00 53 68 6f 77 20 6c 6f 67 73 20 66 72 6f 6d 20 73 70 65 63 69 66 69 63 20 60 69 6e 74 | es..Show.logs.from.specific.`int |
| 7a520 | 65 72 66 61 63 65 60 20 44 48 43 50 20 63 6c 69 65 6e 74 20 70 72 6f 63 65 73 73 2e 00 53 68 6f | erface`.DHCP.client.process..Sho |
| 7a540 | 77 20 6c 6f 67 73 20 66 72 6f 6d 20 73 70 65 63 69 66 69 63 20 60 69 6e 74 65 72 66 61 63 65 60 | w.logs.from.specific.`interface` |
| 7a560 | 20 44 48 43 50 76 36 20 63 6c 69 65 6e 74 20 70 72 6f 63 65 73 73 2e 00 53 68 6f 77 20 6f 6e 6c | .DHCPv6.client.process..Show.onl |
| 7a580 | 79 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 6f 72 20 73 70 65 63 69 66 69 65 64 20 43 65 72 74 | y.information.for.specified.Cert |
| 7a5a0 | 69 66 69 63 61 74 65 20 41 75 74 68 6f 72 69 74 79 2e 00 53 68 6f 77 20 6f 6e 6c 79 20 69 6e 66 | ificate.Authority..Show.only.inf |
| 7a5c0 | 6f 72 6d 61 74 69 6f 6e 20 66 6f 72 20 73 70 65 63 69 66 69 65 64 20 63 65 72 74 69 66 69 63 61 | ormation.for.specified.certifica |
| 7a5e0 | 74 65 2e 00 53 68 6f 77 20 6f 6e 6c 79 20 6c 65 61 73 65 73 20 69 6e 20 74 68 65 20 73 70 65 63 | te..Show.only.leases.in.the.spec |
| 7a600 | 69 66 69 65 64 20 70 6f 6f 6c 2e 00 53 68 6f 77 20 6f 6e 6c 79 20 6c 65 61 73 65 73 20 77 69 74 | ified.pool..Show.only.leases.wit |
| 7a620 | 68 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 73 74 61 74 65 2e 20 50 6f 73 73 69 62 6c 65 20 | h.the.specified.state..Possible. |
| 7a640 | 73 74 61 74 65 73 3a 20 61 62 61 6e 64 6f 6e 65 64 2c 20 61 63 74 69 76 65 2c 20 61 6c 6c 2c 20 | states:.abandoned,.active,.all,. |
| 7a660 | 62 61 63 6b 75 70 2c 20 65 78 70 69 72 65 64 2c 20 66 72 65 65 2c 20 72 65 6c 65 61 73 65 64 2c | backup,.expired,.free,.released, |
| 7a680 | 20 72 65 73 65 74 20 28 64 65 66 61 75 6c 74 20 3d 20 61 63 74 69 76 65 29 00 53 68 6f 77 20 6f | .reset.(default.=.active).Show.o |
| 7a6a0 | 6e 6c 79 20 6c 65 61 73 65 73 20 77 69 74 68 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 73 74 | nly.leases.with.the.specified.st |
| 7a6c0 | 61 74 65 2e 20 50 6f 73 73 69 62 6c 65 20 73 74 61 74 65 73 3a 20 61 6c 6c 2c 20 61 63 74 69 76 | ate..Possible.states:.all,.activ |
| 7a6e0 | 65 2c 20 66 72 65 65 2c 20 65 78 70 69 72 65 64 2c 20 72 65 6c 65 61 73 65 64 2c 20 61 62 61 6e | e,.free,.expired,.released,.aban |
| 7a700 | 64 6f 6e 65 64 2c 20 72 65 73 65 74 2c 20 62 61 63 6b 75 70 20 28 64 65 66 61 75 6c 74 20 3d 20 | doned,.reset,.backup.(default.=. |
| 7a720 | 61 63 74 69 76 65 29 00 53 68 6f 77 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 65 6e 74 72 79 | active).Show.routing.table.entry |
| 7a740 | 20 66 6f 72 20 74 68 65 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 2e 00 53 68 6f 77 20 73 70 65 | .for.the.default.route..Show.spe |
| 7a760 | 63 69 66 69 63 20 4d 41 43 73 65 63 20 69 6e 74 65 72 66 61 63 65 20 69 6e 66 6f 72 6d 61 74 69 | cific.MACsec.interface.informati |
| 7a780 | 6f 6e 00 53 68 6f 77 20 73 74 61 74 75 73 20 6f 66 20 6e 65 77 20 73 65 74 75 70 3a 00 53 68 6f | on.Show.status.of.new.setup:.Sho |
| 7a7a0 | 77 20 73 74 61 74 75 73 65 73 20 6f 66 20 61 6c 6c 20 61 63 74 69 76 65 20 6c 65 61 73 65 73 20 | w.statuses.of.all.active.leases. |
| 7a7c0 | 67 72 61 6e 74 65 64 20 62 79 20 6c 6f 63 61 6c 20 28 74 68 69 73 20 73 65 72 76 65 72 29 20 6f | granted.by.local.(this.server).o |
| 7a7e0 | 72 20 72 65 6d 6f 74 65 20 28 66 61 69 6c 6f 76 65 72 20 73 65 72 76 65 72 29 3a 00 53 68 6f 77 | r.remote.(failover.server):.Show |
| 7a800 | 20 73 74 61 74 75 73 65 73 20 6f 66 20 61 6c 6c 20 61 63 74 69 76 65 20 6c 65 61 73 65 73 3a 00 | .statuses.of.all.active.leases:. |
| 7a820 | 53 68 6f 77 20 74 68 65 20 44 48 43 50 20 73 65 72 76 65 72 20 73 74 61 74 69 73 74 69 63 73 20 | Show.the.DHCP.server.statistics. |
| 7a840 | 66 6f 72 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 70 6f 6f 6c 2e 00 53 68 6f 77 20 74 68 65 | for.the.specified.pool..Show.the |
| 7a860 | 20 44 48 43 50 20 73 65 72 76 65 72 20 73 74 61 74 69 73 74 69 63 73 3a 00 53 68 6f 77 20 74 68 | .DHCP.server.statistics:.Show.th |
| 7a880 | 65 20 63 6f 6e 73 6f 6c 65 20 73 65 72 76 65 72 20 6c 6f 67 2e 00 53 68 6f 77 20 74 68 65 20 64 | e.console.server.log..Show.the.d |
| 7a8a0 | 65 74 61 69 6c 65 64 20 73 74 61 74 75 73 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 66 20 49 4b | etailed.status.information.of.IK |
| 7a8c0 | 45 20 63 68 61 72 6f 6e 20 70 72 6f 63 65 73 73 2e 00 53 68 6f 77 20 74 68 65 20 66 75 6c 6c 20 | E.charon.process..Show.the.full. |
| 7a8e0 | 63 6f 6e 66 69 67 20 75 70 6c 6f 61 64 65 64 20 74 6f 20 74 68 65 20 51 41 54 20 64 65 76 69 63 | config.uploaded.to.the.QAT.devic |
| 7a900 | 65 2e 00 53 68 6f 77 20 74 68 65 20 6c 69 73 74 20 6f 66 20 61 6c 6c 20 61 63 74 69 76 65 20 63 | e..Show.the.list.of.all.active.c |
| 7a920 | 6f 6e 74 61 69 6e 65 72 73 2e 00 53 68 6f 77 20 74 68 65 20 6c 6f 63 61 6c 20 63 6f 6e 74 61 69 | ontainers..Show.the.local.contai |
| 7a940 | 6e 65 72 20 69 6d 61 67 65 73 2e 00 53 68 6f 77 20 74 68 65 20 6c 6f 67 73 20 6f 66 20 61 20 73 | ner.images..Show.the.logs.of.a.s |
| 7a960 | 70 65 63 69 66 69 63 20 52 75 6c 65 2d 53 65 74 2e 00 53 68 6f 77 20 74 68 65 20 6c 6f 67 73 20 | pecific.Rule-Set..Show.the.logs. |
| 7a980 | 6f 66 20 61 6c 6c 20 66 69 72 65 77 61 6c 6c 3b 20 73 68 6f 77 20 61 6c 6c 20 62 72 69 64 67 65 | of.all.firewall;.show.all.bridge |
| 7a9a0 | 20 66 69 72 65 77 61 6c 6c 20 6c 6f 67 73 3b 20 73 68 6f 77 20 61 6c 6c 20 6c 6f 67 73 20 66 6f | .firewall.logs;.show.all.logs.fo |
| 7a9c0 | 72 20 66 6f 72 77 61 72 64 20 68 6f 6f 6b 3b 20 73 68 6f 77 20 61 6c 6c 20 6c 6f 67 73 20 66 6f | r.forward.hook;.show.all.logs.fo |
| 7a9e0 | 72 20 66 6f 72 77 61 72 64 20 68 6f 6f 6b 20 61 6e 64 20 70 72 69 6f 72 69 74 79 20 66 69 6c 74 | r.forward.hook.and.priority.filt |
| 7aa00 | 65 72 3b 20 73 68 6f 77 20 61 6c 6c 20 6c 6f 67 73 20 66 6f 72 20 70 61 72 74 69 63 75 6c 61 72 | er;.show.all.logs.for.particular |
| 7aa20 | 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 3b 20 73 68 6f 77 20 6c 6f 67 73 20 66 6f 72 20 73 70 65 | .custom.chain;.show.logs.for.spe |
| 7aa40 | 63 69 66 69 63 20 52 75 6c 65 2d 53 65 74 2e 00 53 68 6f 77 20 74 68 65 20 6c 6f 67 73 20 6f 66 | cific.Rule-Set..Show.the.logs.of |
| 7aa60 | 20 61 6c 6c 20 66 69 72 65 77 61 6c 6c 3b 20 73 68 6f 77 20 61 6c 6c 20 69 70 76 34 20 66 69 72 | .all.firewall;.show.all.ipv4.fir |
| 7aa80 | 65 77 61 6c 6c 20 6c 6f 67 73 3b 20 73 68 6f 77 20 61 6c 6c 20 6c 6f 67 73 20 66 6f 72 20 70 61 | ewall.logs;.show.all.logs.for.pa |
| 7aaa0 | 72 74 69 63 75 6c 61 72 20 68 6f 6f 6b 3b 20 73 68 6f 77 20 61 6c 6c 20 6c 6f 67 73 20 66 6f 72 | rticular.hook;.show.all.logs.for |
| 7aac0 | 20 70 61 72 74 69 63 75 6c 61 72 20 68 6f 6f 6b 20 61 6e 64 20 70 72 69 6f 72 69 74 79 3b 20 73 | .particular.hook.and.priority;.s |
| 7aae0 | 68 6f 77 20 61 6c 6c 20 6c 6f 67 73 20 66 6f 72 20 70 61 72 74 69 63 75 6c 61 72 20 63 75 73 74 | how.all.logs.for.particular.cust |
| 7ab00 | 6f 6d 20 63 68 61 69 6e 3b 20 73 68 6f 77 20 6c 6f 67 73 20 66 6f 72 20 73 70 65 63 69 66 69 63 | om.chain;.show.logs.for.specific |
| 7ab20 | 20 52 75 6c 65 2d 53 65 74 2e 00 53 68 6f 77 20 74 68 65 20 6c 6f 67 73 20 6f 66 20 61 6c 6c 20 | .Rule-Set..Show.the.logs.of.all. |
| 7ab40 | 66 69 72 65 77 61 6c 6c 3b 20 73 68 6f 77 20 61 6c 6c 20 69 70 76 36 20 66 69 72 65 77 61 6c 6c | firewall;.show.all.ipv6.firewall |
| 7ab60 | 20 6c 6f 67 73 3b 20 73 68 6f 77 20 61 6c 6c 20 6c 6f 67 73 20 66 6f 72 20 70 61 72 74 69 63 75 | .logs;.show.all.logs.for.particu |
| 7ab80 | 6c 61 72 20 68 6f 6f 6b 3b 20 73 68 6f 77 20 61 6c 6c 20 6c 6f 67 73 20 66 6f 72 20 70 61 72 74 | lar.hook;.show.all.logs.for.part |
| 7aba0 | 69 63 75 6c 61 72 20 68 6f 6f 6b 20 61 6e 64 20 70 72 69 6f 72 69 74 79 3b 20 73 68 6f 77 20 61 | icular.hook.and.priority;.show.a |
| 7abc0 | 6c 6c 20 6c 6f 67 73 20 66 6f 72 20 70 61 72 74 69 63 75 6c 61 72 20 63 75 73 74 6f 6d 20 63 68 | ll.logs.for.particular.custom.ch |
| 7abe0 | 61 69 6e 3b 20 73 68 6f 77 20 6c 6f 67 73 20 66 6f 72 20 73 70 65 63 69 66 69 63 20 52 75 6c 65 | ain;.show.logs.for.specific.Rule |
| 7ac00 | 2d 53 65 74 2e 00 53 68 6f 77 20 74 68 65 20 72 6f 75 74 65 00 53 68 6f 77 20 74 68 65 20 73 74 | -Set..Show.the.route.Show.the.st |
| 7ac20 | 61 74 75 73 20 6f 66 20 72 75 6e 6e 69 6e 67 20 49 50 73 65 63 20 70 72 6f 63 65 73 73 20 61 6e | atus.of.running.IPsec.process.an |
| 7ac40 | 64 20 70 72 6f 63 65 73 73 20 49 44 2e 00 53 68 6f 77 20 74 72 61 6e 73 63 65 69 76 65 72 20 69 | d.process.ID..Show.transceiver.i |
| 7ac60 | 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 72 6f 6d 20 70 6c 75 67 69 6e 20 6d 6f 64 75 6c 65 73 2c 20 | nformation.from.plugin.modules,. |
| 7ac80 | 65 2e 67 20 53 46 50 2b 2c 20 51 53 46 50 00 53 68 6f 77 69 6e 67 20 42 46 44 20 6d 6f 6e 69 74 | e.g.SFP+,.QSFP.Showing.BFD.monit |
| 7aca0 | 6f 72 65 64 20 73 74 61 74 69 63 20 72 6f 75 74 65 73 00 53 68 6f 77 73 20 73 74 61 74 75 73 20 | ored.static.routes.Shows.status. |
| 7acc0 | 6f 66 20 61 6c 6c 20 61 73 73 69 67 6e 65 64 20 6c 65 61 73 65 73 3a 00 53 69 64 65 20 41 3a 00 | of.all.assigned.leases:.Side.A:. |
| 7ace0 | 53 69 64 65 20 42 3a 00 53 69 65 72 72 61 20 57 69 72 65 6c 65 73 73 20 41 69 72 50 72 69 6d 65 | Side.B:.Sierra.Wireless.AirPrime |
| 7ad00 | 20 4d 43 37 33 30 34 20 6d 69 6e 69 50 43 49 65 20 63 61 72 64 20 28 4c 54 45 29 00 53 69 65 72 | .MC7304.miniPCIe.card.(LTE).Sier |
| 7ad20 | 72 61 20 57 69 72 65 6c 65 73 73 20 41 69 72 50 72 69 6d 65 20 4d 43 37 34 33 30 20 6d 69 6e 69 | ra.Wireless.AirPrime.MC7430.mini |
| 7ad40 | 50 43 49 65 20 63 61 72 64 20 28 4c 54 45 29 00 53 69 65 72 72 61 20 57 69 72 65 6c 65 73 73 20 | PCIe.card.(LTE).Sierra.Wireless. |
| 7ad60 | 41 69 72 50 72 69 6d 65 20 4d 43 37 34 35 35 20 6d 69 6e 69 50 43 49 65 20 63 61 72 64 20 28 4c | AirPrime.MC7455.miniPCIe.card.(L |
| 7ad80 | 54 45 29 00 53 69 65 72 72 61 20 57 69 72 65 6c 65 73 73 20 41 69 72 50 72 69 6d 65 20 4d 43 37 | TE).Sierra.Wireless.AirPrime.MC7 |
| 7ada0 | 37 31 30 20 6d 69 6e 69 50 43 49 65 20 63 61 72 64 20 28 4c 54 45 29 00 53 69 6d 69 6c 61 72 20 | 710.miniPCIe.card.(LTE).Similar. |
| 7adc0 | 63 6f 6d 62 69 6e 61 74 69 6f 6e 73 20 61 72 65 20 61 70 70 6c 69 63 61 62 6c 65 20 66 6f 72 20 | combinations.are.applicable.for. |
| 7ade0 | 74 68 65 20 64 65 61 64 2d 70 65 65 72 2d 64 65 74 65 63 74 69 6f 6e 2e 00 53 69 6d 69 6c 61 72 | the.dead-peer-detection..Similar |
| 7ae00 | 6c 79 20 74 72 61 66 66 69 63 20 72 65 63 65 69 76 65 64 20 66 72 6f 6d 20 45 53 20 70 65 65 72 | ly.traffic.received.from.ES.peer |
| 7ae20 | 73 20 76 69 61 20 74 68 65 20 6f 76 65 72 6c 61 79 20 63 61 6e 6e 6f 74 20 62 65 20 66 6f 72 77 | s.via.the.overlay.cannot.be.forw |
| 7ae40 | 61 72 64 65 64 20 74 6f 20 74 68 65 20 73 65 72 76 65 72 2e 20 54 68 69 73 20 69 73 20 73 70 6c | arded.to.the.server..This.is.spl |
| 7ae60 | 69 74 2d 68 6f 72 69 7a 6f 6e 2d 66 69 6c 74 65 72 69 6e 67 20 77 69 74 68 20 6c 6f 63 61 6c 20 | it-horizon-filtering.with.local. |
| 7ae80 | 62 69 61 73 2e 00 53 69 6d 70 6c 65 20 42 61 62 65 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e | bias..Simple.Babel.configuration |
| 7aea0 | 20 75 73 69 6e 67 20 32 20 6e 6f 64 65 73 20 61 6e 64 20 72 65 64 69 73 74 72 69 62 75 74 69 6e | .using.2.nodes.and.redistributin |
| 7aec0 | 67 20 63 6f 6e 6e 65 63 74 65 64 20 69 6e 74 65 72 66 61 63 65 73 2e 00 53 69 6d 70 6c 65 20 52 | g.connected.interfaces..Simple.R |
| 7aee0 | 49 50 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 75 73 69 6e 67 20 32 20 6e 6f 64 65 73 20 61 | IP.configuration.using.2.nodes.a |
| 7af00 | 6e 64 20 72 65 64 69 73 74 72 69 62 75 74 69 6e 67 20 63 6f 6e 6e 65 63 74 65 64 20 69 6e 74 65 | nd.redistributing.connected.inte |
| 7af20 | 72 66 61 63 65 73 2e 00 53 69 6d 70 6c 65 20 73 65 74 75 70 20 77 69 74 68 20 6f 6e 65 20 75 73 | rfaces..Simple.setup.with.one.us |
| 7af40 | 65 72 20 61 64 64 65 64 20 61 6e 64 20 70 61 73 73 77 6f 72 64 20 61 75 74 68 65 6e 74 69 63 61 | er.added.and.password.authentica |
| 7af60 | 74 69 6f 6e 3a 00 53 69 6d 70 6c 65 20 74 65 78 74 20 70 61 73 73 77 6f 72 64 20 61 75 74 68 65 | tion:.Simple.text.password.authe |
| 7af80 | 6e 74 69 63 61 74 69 6f 6e 20 69 73 20 69 6e 73 65 63 75 72 65 20 61 6e 64 20 64 65 70 72 65 63 | ntication.is.insecure.and.deprec |
| 7afa0 | 61 74 65 64 20 69 6e 20 66 61 76 6f 75 72 20 6f 66 20 4d 44 35 20 48 4d 41 43 20 61 75 74 68 65 | ated.in.favour.of.MD5.HMAC.authe |
| 7afc0 | 6e 74 69 63 61 74 69 6f 6e 2e 00 53 69 6e 63 65 20 62 6f 74 68 20 72 6f 75 74 65 72 73 20 64 6f | ntication..Since.both.routers.do |
| 7afe0 | 20 6e 6f 74 20 6b 6e 6f 77 20 74 68 65 69 72 20 65 66 66 65 63 74 69 76 65 20 70 75 62 6c 69 63 | .not.know.their.effective.public |
| 7b000 | 20 61 64 64 72 65 73 73 65 73 2c 20 77 65 20 73 65 74 20 74 68 65 20 6c 6f 63 61 6c 2d 61 64 64 | .addresses,.we.set.the.local-add |
| 7b020 | 72 65 73 73 20 6f 66 20 74 68 65 20 70 65 65 72 20 74 6f 20 22 61 6e 79 22 2e 00 53 69 6e 63 65 | ress.of.the.peer.to."any"..Since |
| 7b040 | 20 62 72 69 64 67 65 73 20 6f 70 65 72 61 74 65 73 20 61 74 20 6c 61 79 65 72 20 32 2c 20 62 6f | .bridges.operates.at.layer.2,.bo |
| 7b060 | 74 68 20 6d 61 74 63 68 65 72 73 20 66 6f 72 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 61 72 | th.matchers.for.IPv4.and.IPv6.ar |
| 7b080 | 65 20 73 75 70 70 6f 72 74 65 64 20 69 6e 20 62 72 69 64 67 65 20 66 69 72 65 77 61 6c 6c 20 63 | e.supported.in.bridge.firewall.c |
| 7b0a0 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 20 53 61 6d 65 20 61 70 70 6c 69 65 73 20 66 6f 72 20 66 | onfiguration..Same.applies.for.f |
| 7b0c0 | 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 73 2e 00 53 69 6e 63 65 20 62 72 69 64 67 65 73 20 6f 70 | irewall.groups..Since.bridges.op |
| 7b0e0 | 65 72 61 74 73 20 61 74 20 6c 61 79 65 72 20 32 2c 20 62 6f 74 68 20 6d 61 74 63 68 65 72 73 20 | erats.at.layer.2,.both.matchers. |
| 7b100 | 66 6f 72 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 61 72 65 20 73 75 70 70 6f 72 74 65 64 20 | for.IPv4.and.IPv6.are.supported. |
| 7b120 | 69 6e 20 62 72 69 64 67 65 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e | in.bridge.firewall.configuration |
| 7b140 | 2e 20 53 61 6d 65 20 61 70 70 6c 69 65 73 20 74 6f 20 66 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 | ..Same.applies.to.firewall.group |
| 7b160 | 73 2e 00 53 69 6e 63 65 20 69 74 27 73 20 61 20 48 51 20 61 6e 64 20 62 72 61 6e 63 68 20 6f 66 | s..Since.it's.a.HQ.and.branch.of |
| 7b180 | 66 69 63 65 73 20 73 65 74 75 70 2c 20 77 65 20 77 69 6c 6c 20 77 61 6e 74 20 61 6c 6c 20 63 6c | fices.setup,.we.will.want.all.cl |
| 7b1a0 | 69 65 6e 74 73 20 74 6f 20 68 61 76 65 20 66 69 78 65 64 20 61 64 64 72 65 73 73 65 73 20 61 6e | ients.to.have.fixed.addresses.an |
| 7b1c0 | 64 20 77 65 20 77 69 6c 6c 20 72 6f 75 74 65 20 74 72 61 66 66 69 63 20 74 6f 20 73 70 65 63 69 | d.we.will.route.traffic.to.speci |
| 7b1e0 | 66 69 63 20 73 75 62 6e 65 74 73 20 74 68 72 6f 75 67 68 20 74 68 65 6d 2e 20 57 65 20 6e 65 65 | fic.subnets.through.them..We.nee |
| 7b200 | 64 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 6f 72 20 65 61 63 68 20 63 6c 69 65 6e 74 20 | d.configuration.for.each.client. |
| 7b220 | 74 6f 20 61 63 68 69 65 76 65 20 74 68 69 73 2e 00 53 69 6e 63 65 20 69 74 27 73 20 61 20 48 51 | to.achieve.this..Since.it's.a.HQ |
| 7b240 | 20 77 69 74 68 20 62 72 61 6e 63 68 20 6f 66 66 69 63 65 73 20 73 65 74 75 70 2c 20 77 65 20 77 | .with.branch.offices.setup,.we.w |
| 7b260 | 69 6c 6c 20 77 61 6e 74 20 61 6c 6c 20 63 6c 69 65 6e 74 73 20 74 6f 20 68 61 76 65 20 66 69 78 | ill.want.all.clients.to.have.fix |
| 7b280 | 65 64 20 61 64 64 72 65 73 73 65 73 20 61 6e 64 20 77 65 20 77 69 6c 6c 20 72 6f 75 74 65 20 74 | ed.addresses.and.we.will.route.t |
| 7b2a0 | 72 61 66 66 69 63 20 74 6f 20 73 70 65 63 69 66 69 63 20 73 75 62 6e 65 74 73 20 74 68 72 6f 75 | raffic.to.specific.subnets.throu |
| 7b2c0 | 67 68 20 74 68 65 6d 2e 20 57 65 20 6e 65 65 64 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 | gh.them..We.need.configuration.f |
| 7b2e0 | 6f 72 20 65 61 63 68 20 63 6c 69 65 6e 74 20 74 6f 20 61 63 68 69 65 76 65 20 74 68 69 73 2e 00 | or.each.client.to.achieve.this.. |
| 7b300 | 53 69 6e 63 65 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 77 6f 75 6c 64 20 62 65 | Since.the.RADIUS.server.would.be |
| 7b320 | 20 61 20 73 69 6e 67 6c 65 20 70 6f 69 6e 74 20 6f 66 20 66 61 69 6c 75 72 65 2c 20 6d 75 6c 74 | .a.single.point.of.failure,.mult |
| 7b340 | 69 70 6c 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 73 20 63 61 6e 20 62 65 20 73 65 74 75 70 | iple.RADIUS.servers.can.be.setup |
| 7b360 | 20 61 6e 64 20 77 69 6c 6c 20 62 65 20 75 73 65 64 20 73 75 62 73 65 71 75 65 6e 74 69 61 6c 6c | .and.will.be.used.subsequentiall |
| 7b380 | 79 2e 00 53 69 6e 63 65 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 77 6f 75 6c 64 | y..Since.the.RADIUS.server.would |
| 7b3a0 | 20 62 65 20 61 20 73 69 6e 67 6c 65 20 70 6f 69 6e 74 20 6f 66 20 66 61 69 6c 75 72 65 2c 20 6d | .be.a.single.point.of.failure,.m |
| 7b3c0 | 75 6c 74 69 70 6c 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 73 20 63 61 6e 20 62 65 20 73 65 | ultiple.RADIUS.servers.can.be.se |
| 7b3e0 | 74 75 70 20 61 6e 64 20 77 69 6c 6c 20 62 65 20 75 73 65 64 20 73 75 62 73 65 71 75 65 6e 74 69 | tup.and.will.be.used.subsequenti |
| 7b400 | 61 6c 6c 79 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 3a 00 53 69 6e 63 65 20 74 68 65 20 6d 44 4e | ally..For.example:.Since.the.mDN |
| 7b420 | 53 20 70 72 6f 74 6f 63 6f 6c 20 73 65 6e 64 73 20 74 68 65 20 3a 61 62 62 72 3a 60 41 41 28 41 | S.protocol.sends.the.:abbr:`AA(A |
| 7b440 | 75 74 68 6f 72 69 74 61 74 69 76 65 20 41 6e 73 77 65 72 29 60 20 72 65 63 6f 72 64 73 20 69 6e | uthoritative.Answer)`.records.in |
| 7b460 | 20 74 68 65 20 70 61 63 6b 65 74 20 69 74 73 65 6c 66 2c 20 74 68 65 20 72 65 70 65 61 74 65 72 | .the.packet.itself,.the.repeater |
| 7b480 | 20 64 6f 65 73 20 6e 6f 74 20 6e 65 65 64 20 74 6f 20 66 6f 72 67 65 20 74 68 65 20 73 6f 75 72 | .does.not.need.to.forge.the.sour |
| 7b4a0 | 63 65 20 61 64 64 72 65 73 73 2e 20 49 6e 73 74 65 61 64 2c 20 74 68 65 20 73 6f 75 72 63 65 20 | ce.address..Instead,.the.source. |
| 7b4c0 | 61 64 64 72 65 73 73 20 69 73 20 6f 66 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 74 68 61 74 | address.is.of.the.interface.that |
| 7b4e0 | 20 72 65 70 65 61 74 73 20 74 68 65 20 70 61 63 6b 65 74 2e 00 53 69 6e 63 65 20 74 68 65 20 6d | .repeats.the.packet..Since.the.m |
| 7b500 | 44 4e 53 20 70 72 6f 74 6f 63 6f 6c 20 73 65 6e 64 73 20 74 68 65 20 41 41 20 72 65 63 6f 72 64 | DNS.protocol.sends.the.AA.record |
| 7b520 | 73 20 69 6e 20 74 68 65 20 70 61 63 6b 65 74 20 69 74 73 65 6c 66 2c 20 74 68 65 20 72 65 70 65 | s.in.the.packet.itself,.the.repe |
| 7b540 | 61 74 65 72 20 64 6f 65 73 20 6e 6f 74 20 6e 65 65 64 20 74 6f 20 66 6f 72 67 65 20 74 68 65 20 | ater.does.not.need.to.forge.the. |
| 7b560 | 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 2e 20 49 6e 73 74 65 61 64 2c 20 74 68 65 20 73 6f 75 | source.address..Instead,.the.sou |
| 7b580 | 72 63 65 20 61 64 64 72 65 73 73 20 69 73 20 6f 66 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 | rce.address.is.of.the.interface. |
| 7b5a0 | 74 68 61 74 20 72 65 70 65 61 74 73 20 74 68 65 20 70 61 63 6b 65 74 2e 00 53 69 6e 63 65 20 77 | that.repeats.the.packet..Since.w |
| 7b5c0 | 65 20 61 72 65 20 61 6e 61 6c 79 7a 69 6e 67 20 61 74 74 61 63 6b 73 20 74 6f 20 61 6e 64 20 66 | e.are.analyzing.attacks.to.and.f |
| 7b5e0 | 72 6f 6d 20 6f 75 72 20 69 6e 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 2c 20 74 77 6f 20 74 79 | rom.our.internal.network,.two.ty |
| 7b600 | 70 65 73 20 6f 66 20 61 74 74 61 63 6b 73 20 63 61 6e 20 62 65 20 69 64 65 6e 74 69 66 69 65 64 | pes.of.attacks.can.be.identified |
| 7b620 | 2c 20 61 6e 64 20 64 69 66 66 65 72 65 6e 74 20 61 63 74 69 6f 6e 73 20 61 72 65 20 6e 65 65 64 | ,.and.different.actions.are.need |
| 7b640 | 65 64 3a 00 53 69 6e 63 65 20 77 65 20 61 72 65 20 61 6e 61 6c 79 7a 69 6e 67 20 61 74 74 61 63 | ed:.Since.we.are.analyzing.attac |
| 7b660 | 6b 73 20 74 6f 20 61 6e 64 20 66 72 6f 6d 20 6f 75 72 20 69 6e 74 65 72 6e 61 6c 20 6e 65 74 77 | ks.to.and.from.our.internal.netw |
| 7b680 | 6f 72 6b 2c 20 74 77 6f 20 74 79 70 65 73 20 6f 66 20 61 74 74 61 63 6b 73 20 63 61 6e 20 62 65 | ork,.two.types.of.attacks.can.be |
| 7b6a0 | 20 69 64 65 6e 74 69 66 69 65 64 2c 20 61 6e 64 20 64 69 66 66 65 72 65 6e 74 73 20 61 63 74 69 | .identified,.and.differents.acti |
| 7b6c0 | 6f 6e 73 20 61 72 65 20 6e 65 65 64 65 64 3a 00 53 69 6e 67 6c 65 20 56 58 4c 41 4e 20 64 65 76 | ons.are.needed:.Single.VXLAN.dev |
| 7b6e0 | 69 63 65 20 28 53 56 44 29 00 53 69 6e 67 6c 65 20 65 78 74 65 72 6e 61 6c 20 61 64 64 72 65 73 | ice.(SVD).Single.external.addres |
| 7b700 | 73 00 53 69 74 65 20 74 6f 20 53 69 74 65 20 56 50 4e 00 53 69 74 65 2d 74 6f 2d 53 69 74 65 00 | s.Site.to.Site.VPN.Site-to-Site. |
| 7b720 | 53 69 74 65 2d 74 6f 2d 73 69 74 65 20 6d 6f 64 65 20 70 72 6f 76 69 64 65 73 20 61 20 77 61 79 | Site-to-site.mode.provides.a.way |
| 7b740 | 20 74 6f 20 61 64 64 20 72 65 6d 6f 74 65 20 70 65 65 72 73 2c 20 77 68 69 63 68 20 63 6f 75 6c | .to.add.remote.peers,.which.coul |
| 7b760 | 64 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 74 6f 20 65 78 63 68 61 6e 67 65 20 65 6e 63 72 | d.be.configured.to.exchange.encr |
| 7b780 | 79 70 74 65 64 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 62 65 74 77 65 65 6e 20 74 68 65 6d 20 61 | ypted.information.between.them.a |
| 7b7a0 | 6e 64 20 56 79 4f 53 20 69 74 73 65 6c 66 20 6f 72 20 63 6f 6e 6e 65 63 74 65 64 2f 72 6f 75 74 | nd.VyOS.itself.or.connected/rout |
| 7b7c0 | 65 64 20 6e 65 74 77 6f 72 6b 73 2e 00 53 69 74 65 2d 74 6f 2d 73 69 74 65 20 6d 6f 64 65 20 73 | ed.networks..Site-to-site.mode.s |
| 7b7e0 | 75 70 70 6f 72 74 73 20 78 2e 35 30 39 20 62 75 74 20 64 6f 65 73 6e 27 74 20 72 65 71 75 69 72 | upports.x.509.but.doesn't.requir |
| 7b800 | 65 20 69 74 20 61 6e 64 20 63 61 6e 20 61 6c 73 6f 20 77 6f 72 6b 20 77 69 74 68 20 73 74 61 74 | e.it.and.can.also.work.with.stat |
| 7b820 | 69 63 20 6b 65 79 73 2c 20 77 68 69 63 68 20 69 73 20 73 69 6d 70 6c 65 72 20 69 6e 20 6d 61 6e | ic.keys,.which.is.simpler.in.man |
| 7b840 | 79 20 63 61 73 65 73 2e 20 49 6e 20 74 68 69 73 20 65 78 61 6d 70 6c 65 2c 20 77 65 27 6c 6c 20 | y.cases..In.this.example,.we'll. |
| 7b860 | 63 6f 6e 66 69 67 75 72 65 20 61 20 73 69 6d 70 6c 65 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 | configure.a.simple.site-to-site. |
| 7b880 | 4f 70 65 6e 56 50 4e 20 74 75 6e 6e 65 6c 20 75 73 69 6e 67 20 61 20 32 30 34 38 2d 62 69 74 20 | OpenVPN.tunnel.using.a.2048-bit. |
| 7b8a0 | 70 72 65 2d 73 68 61 72 65 64 20 6b 65 79 2e 00 53 69 7a 65 20 6f 66 20 74 68 65 20 52 53 41 20 | pre-shared.key..Size.of.the.RSA. |
| 7b8c0 | 6b 65 79 2e 00 53 6c 61 76 65 20 73 65 6c 65 63 74 69 6f 6e 20 66 6f 72 20 6f 75 74 67 6f 69 6e | key..Slave.selection.for.outgoin |
| 7b8e0 | 67 20 74 72 61 66 66 69 63 20 69 73 20 64 6f 6e 65 20 61 63 63 6f 72 64 69 6e 67 20 74 6f 20 74 | g.traffic.is.done.according.to.t |
| 7b900 | 68 65 20 74 72 61 6e 73 6d 69 74 20 68 61 73 68 20 70 6f 6c 69 63 79 2c 20 77 68 69 63 68 20 6d | he.transmit.hash.policy,.which.m |
| 7b920 | 61 79 20 62 65 20 63 68 61 6e 67 65 64 20 66 72 6f 6d 20 74 68 65 20 64 65 66 61 75 6c 74 20 73 | ay.be.changed.from.the.default.s |
| 7b940 | 69 6d 70 6c 65 20 58 4f 52 20 70 6f 6c 69 63 79 20 76 69 61 20 74 68 65 20 3a 63 66 67 63 6d 64 | imple.XOR.policy.via.the.:cfgcmd |
| 7b960 | 3a 60 68 61 73 68 2d 70 6f 6c 69 63 79 60 20 6f 70 74 69 6f 6e 2c 20 64 6f 63 75 6d 65 6e 74 65 | :`hash-policy`.option,.documente |
| 7b980 | 64 20 62 65 6c 6f 77 2e 00 53 6f 20 69 6e 20 6f 75 72 20 66 69 72 65 77 61 6c 6c 20 70 6f 6c 69 | d.below..So.in.our.firewall.poli |
| 7b9a0 | 63 79 2c 20 77 65 20 77 61 6e 74 20 74 6f 20 61 6c 6c 6f 77 20 74 72 61 66 66 69 63 20 63 6f 6d | cy,.we.want.to.allow.traffic.com |
| 7b9c0 | 69 6e 67 20 69 6e 20 6f 6e 20 74 68 65 20 6f 75 74 73 69 64 65 20 69 6e 74 65 72 66 61 63 65 2c | ing.in.on.the.outside.interface, |
| 7b9e0 | 20 64 65 73 74 69 6e 65 64 20 66 6f 72 20 54 43 50 20 70 6f 72 74 20 38 30 20 61 6e 64 20 74 68 | .destined.for.TCP.port.80.and.th |
| 7ba00 | 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 31 39 32 2e 31 36 38 2e 30 2e 31 30 30 2e 00 53 | e.IP.address.of.192.168.0.100..S |
| 7ba20 | 6f 20 69 6e 20 6f 75 72 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 65 74 2c 20 77 65 20 77 61 | o.in.our.firewall.ruleset,.we.wa |
| 7ba40 | 6e 74 20 74 6f 20 61 6c 6c 6f 77 20 74 72 61 66 66 69 63 20 77 68 69 63 68 20 70 72 65 76 69 6f | nt.to.allow.traffic.which.previo |
| 7ba60 | 75 73 6c 79 20 6d 61 74 63 68 65 64 20 61 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 6e 61 74 20 72 | usly.matched.a.destination.nat.r |
| 7ba80 | 75 6c 65 2e 20 49 6e 20 6f 72 64 65 72 20 74 6f 20 61 76 6f 69 64 20 63 72 65 61 74 69 6e 67 20 | ule..In.order.to.avoid.creating. |
| 7baa0 | 6d 61 6e 79 20 72 75 6c 65 73 2c 20 6f 6e 65 20 66 6f 72 20 65 61 63 68 20 64 65 73 74 69 6e 61 | many.rules,.one.for.each.destina |
| 7bac0 | 74 69 6f 6e 20 6e 61 74 20 72 75 6c 65 2c 20 77 65 20 63 61 6e 20 61 63 63 65 70 74 20 61 6c 6c | tion.nat.rule,.we.can.accept.all |
| 7bae0 | 20 2a 2a 27 64 6e 61 74 27 2a 2a 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 77 69 74 68 20 6f 6e 65 | .**'dnat'**.connections.with.one |
| 7bb00 | 20 73 69 6d 70 6c 65 20 72 75 6c 65 2c 20 75 73 69 6e 67 20 60 60 63 6f 6e 6e 65 63 74 69 6f 6e | .simple.rule,.using.``connection |
| 7bb20 | 2d 73 74 61 74 75 73 60 60 20 6d 61 74 63 68 65 72 3a 00 53 6f 2c 20 66 69 72 65 77 61 6c 6c 20 | -status``.matcher:.So,.firewall. |
| 7bb40 | 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6e 65 65 64 65 64 20 66 6f 72 20 74 68 69 73 20 73 65 | configuration.needed.for.this.se |
| 7bb60 | 74 75 70 3a 00 53 6f 6c 61 72 57 69 6e 64 73 00 53 6f 6d 65 20 49 53 50 73 20 62 79 20 64 65 66 | tup:.SolarWinds.Some.ISPs.by.def |
| 7bb80 | 61 75 6c 74 20 6f 6e 6c 79 20 64 65 6c 65 67 61 74 65 20 61 20 2f 36 34 20 70 72 65 66 69 78 2e | ault.only.delegate.a./64.prefix. |
| 7bba0 | 20 54 6f 20 72 65 71 75 65 73 74 20 66 6f 72 20 61 20 73 70 65 63 69 66 69 63 20 70 72 65 66 69 | .To.request.for.a.specific.prefi |
| 7bbc0 | 78 20 73 69 7a 65 20 75 73 65 20 74 68 69 73 20 6f 70 74 69 6f 6e 20 74 6f 20 72 65 71 75 65 73 | x.size.use.this.option.to.reques |
| 7bbe0 | 74 20 66 6f 72 20 61 20 62 69 67 67 65 72 20 64 65 6c 65 67 61 74 69 6f 6e 20 66 6f 72 20 74 68 | t.for.a.bigger.delegation.for.th |
| 7bc00 | 69 73 20 70 64 20 60 3c 69 64 3e 60 2e 20 54 68 69 73 20 76 61 6c 75 65 20 69 73 20 69 6e 20 74 | is.pd.`<id>`..This.value.is.in.t |
| 7bc20 | 68 65 20 72 61 6e 67 65 20 66 72 6f 6d 20 33 32 20 2d 20 36 34 20 73 6f 20 79 6f 75 20 63 6f 75 | he.range.from.32.-.64.so.you.cou |
| 7bc40 | 6c 64 20 72 65 71 75 65 73 74 20 75 70 20 74 6f 20 61 20 2f 33 32 20 70 72 65 66 69 78 20 28 69 | ld.request.up.to.a./32.prefix.(i |
| 7bc60 | 66 20 79 6f 75 72 20 49 53 50 20 61 6c 6c 6f 77 73 20 74 68 69 73 29 20 64 6f 77 6e 20 74 6f 20 | f.your.ISP.allows.this).down.to. |
| 7bc80 | 61 20 2f 36 34 20 64 65 6c 65 67 61 74 69 6f 6e 2e 00 53 6f 6d 65 20 49 54 20 65 6e 76 69 72 6f | a./64.delegation..Some.IT.enviro |
| 7bca0 | 6e 6d 65 6e 74 73 20 72 65 71 75 69 72 65 20 74 68 65 20 75 73 65 20 6f 66 20 61 20 70 72 6f 78 | nments.require.the.use.of.a.prox |
| 7bcc0 | 79 20 74 6f 20 63 6f 6e 6e 65 63 74 20 74 6f 20 74 68 65 20 49 6e 74 65 72 6e 65 74 2e 20 57 69 | y.to.connect.to.the.Internet..Wi |
| 7bce0 | 74 68 6f 75 74 20 74 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 56 79 4f 53 20 75 70 | thout.this.configuration.VyOS.up |
| 7bd00 | 64 61 74 65 73 20 63 6f 75 6c 64 20 6e 6f 74 20 62 65 20 69 6e 73 74 61 6c 6c 65 64 20 64 69 72 | dates.could.not.be.installed.dir |
| 7bd20 | 65 63 74 6c 79 20 62 79 20 75 73 69 6e 67 20 74 68 65 20 3a 6f 70 63 6d 64 3a 60 61 64 64 20 73 | ectly.by.using.the.:opcmd:`add.s |
| 7bd40 | 79 73 74 65 6d 20 69 6d 61 67 65 60 20 63 6f 6d 6d 61 6e 64 20 28 3a 72 65 66 3a 60 75 70 64 61 | ystem.image`.command.(:ref:`upda |
| 7bd60 | 74 65 5f 76 79 6f 73 60 29 2e 00 53 6f 6d 65 20 52 41 44 49 55 53 20 73 65 76 65 72 73 20 75 73 | te_vyos`)..Some.RADIUS.severs.us |
| 7bd80 | 65 20 61 6e 20 61 63 63 65 73 73 20 63 6f 6e 74 72 6f 6c 20 6c 69 73 74 20 77 68 69 63 68 20 61 | e.an.access.control.list.which.a |
| 7bda0 | 6c 6c 6f 77 73 20 6f 72 20 64 65 6e 69 65 73 20 71 75 65 72 69 65 73 2c 20 6d 61 6b 65 20 73 75 | llows.or.denies.queries,.make.su |
| 7bdc0 | 72 65 20 74 6f 20 61 64 64 20 79 6f 75 72 20 56 79 4f 53 20 72 6f 75 74 65 72 20 74 6f 20 74 68 | re.to.add.your.VyOS.router.to.th |
| 7bde0 | 65 20 61 6c 6c 6f 77 65 64 20 63 6c 69 65 6e 74 20 6c 69 73 74 2e 00 53 6f 6d 65 20 52 41 44 49 | e.allowed.client.list..Some.RADI |
| 7be00 | 55 53 5f 20 73 65 76 65 72 73 20 75 73 65 20 61 6e 20 61 63 63 65 73 73 20 63 6f 6e 74 72 6f 6c | US_.severs.use.an.access.control |
| 7be20 | 20 6c 69 73 74 20 77 68 69 63 68 20 61 6c 6c 6f 77 73 20 6f 72 20 64 65 6e 69 65 73 20 71 75 65 | .list.which.allows.or.denies.que |
| 7be40 | 72 69 65 73 2c 20 6d 61 6b 65 20 73 75 72 65 20 74 6f 20 61 64 64 20 79 6f 75 72 20 56 79 4f 53 | ries,.make.sure.to.add.your.VyOS |
| 7be60 | 20 72 6f 75 74 65 72 20 74 6f 20 74 68 65 20 61 6c 6c 6f 77 65 64 20 63 6c 69 65 6e 74 20 6c 69 | .router.to.the.allowed.client.li |
| 7be80 | 73 74 2e 00 53 6f 6d 65 20 61 70 70 6c 69 63 61 74 69 6f 6e 20 73 65 72 76 69 63 65 20 70 72 6f | st..Some.application.service.pro |
| 7bea0 | 76 69 64 65 72 73 20 28 41 53 50 73 29 20 6f 70 65 72 61 74 65 20 61 20 56 50 4e 20 67 61 74 65 | viders.(ASPs).operate.a.VPN.gate |
| 7bec0 | 77 61 79 20 74 6f 20 70 72 6f 76 69 64 65 20 61 63 63 65 73 73 20 74 6f 20 74 68 65 69 72 20 69 | way.to.provide.access.to.their.i |
| 7bee0 | 6e 74 65 72 6e 61 6c 20 72 65 73 6f 75 72 63 65 73 2c 20 61 6e 64 20 72 65 71 75 69 72 65 20 74 | nternal.resources,.and.require.t |
| 7bf00 | 68 61 74 20 61 20 63 6f 6e 6e 65 63 74 69 6e 67 20 6f 72 67 61 6e 69 73 61 74 69 6f 6e 20 74 72 | hat.a.connecting.organisation.tr |
| 7bf20 | 61 6e 73 6c 61 74 65 20 61 6c 6c 20 74 72 61 66 66 69 63 20 74 6f 20 74 68 65 20 73 65 72 76 69 | anslate.all.traffic.to.the.servi |
| 7bf40 | 63 65 20 70 72 6f 76 69 64 65 72 20 6e 65 74 77 6f 72 6b 20 74 6f 20 61 20 73 6f 75 72 63 65 20 | ce.provider.network.to.a.source. |
| 7bf60 | 61 64 64 72 65 73 73 20 70 72 6f 76 69 64 65 64 20 62 79 20 74 68 65 20 41 53 50 2e 00 53 6f 6d | address.provided.by.the.ASP..Som |
| 7bf80 | 65 20 63 6f 6e 74 61 69 6e 65 72 20 72 65 67 69 73 74 72 69 65 73 20 72 65 71 75 69 72 65 20 63 | e.container.registries.require.c |
| 7bfa0 | 72 65 64 65 6e 74 69 61 6c 73 20 74 6f 20 62 65 20 75 73 65 64 2e 00 53 6f 6d 65 20 66 69 72 65 | redentials.to.be.used..Some.fire |
| 7bfc0 | 77 61 6c 6c 20 73 65 74 74 69 6e 67 73 20 61 72 65 20 67 6c 6f 62 61 6c 20 61 6e 64 20 68 61 76 | wall.settings.are.global.and.hav |
| 7bfe0 | 65 20 61 6e 20 61 66 66 65 63 74 20 6f 6e 20 74 68 65 20 77 68 6f 6c 65 20 73 79 73 74 65 6d 2e | e.an.affect.on.the.whole.system. |
| 7c000 | 00 53 6f 6d 65 20 66 69 72 65 77 61 6c 6c 20 73 65 74 74 69 6e 67 73 20 61 72 65 20 67 6c 6f 62 | .Some.firewall.settings.are.glob |
| 7c020 | 61 6c 20 61 6e 64 20 68 61 76 65 20 61 6e 20 61 66 66 65 63 74 20 6f 6e 20 74 68 65 20 77 68 6f | al.and.have.an.affect.on.the.who |
| 7c040 | 6c 65 20 73 79 73 74 65 6d 2e 20 49 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 74 68 65 72 65 | le.system..In.this.section.there |
| 7c060 | 27 73 20 75 73 65 66 75 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 74 68 65 73 | 's.useful.information.about.thes |
| 7c080 | 65 20 67 6c 6f 62 61 6c 2d 6f 70 74 69 6f 6e 73 20 74 68 61 74 20 63 61 6e 20 62 65 20 63 6f 6e | e.global-options.that.can.be.con |
| 7c0a0 | 66 69 67 75 72 65 64 20 75 73 69 6e 67 20 76 79 6f 73 20 63 6c 69 2e 00 53 6f 6d 65 20 70 6f 6c | figured.using.vyos.cli..Some.pol |
| 7c0c0 | 69 63 69 65 73 20 61 6c 72 65 61 64 79 20 69 6e 63 6c 75 64 65 20 6f 74 68 65 72 20 65 6d 62 65 | icies.already.include.other.embe |
| 7c0e0 | 64 64 65 64 20 70 6f 6c 69 63 69 65 73 20 69 6e 73 69 64 65 2e 20 54 68 61 74 20 69 73 20 74 68 | dded.policies.inside..That.is.th |
| 7c100 | 65 20 63 61 73 65 20 6f 66 20 53 68 61 70 65 72 5f 3a 20 65 61 63 68 20 6f 66 20 69 74 73 20 63 | e.case.of.Shaper_:.each.of.its.c |
| 7c120 | 6c 61 73 73 65 73 20 75 73 65 20 66 61 69 72 2d 71 75 65 75 65 20 75 6e 6c 65 73 73 20 79 6f 75 | lasses.use.fair-queue.unless.you |
| 7c140 | 20 63 68 61 6e 67 65 20 69 74 2e 00 53 6f 6d 65 20 70 6f 6c 69 63 69 65 73 20 63 61 6e 20 62 65 | .change.it..Some.policies.can.be |
| 7c160 | 20 63 6f 6d 62 69 6e 65 64 2c 20 79 6f 75 20 77 69 6c 6c 20 62 65 20 61 62 6c 65 20 74 6f 20 65 | .combined,.you.will.be.able.to.e |
| 7c180 | 6d 62 65 64 5f 20 61 20 64 69 66 66 65 72 65 6e 74 20 70 6f 6c 69 63 79 20 74 68 61 74 20 77 69 | mbed_.a.different.policy.that.wi |
| 7c1a0 | 6c 6c 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 61 20 63 6c 61 73 73 20 6f 66 20 74 68 65 20 | ll.be.applied.to.a.class.of.the. |
| 7c1c0 | 6d 61 69 6e 20 70 6f 6c 69 63 79 2e 00 53 6f 6d 65 20 70 6f 73 73 69 62 6c 65 20 65 78 61 6d 70 | main.policy..Some.possible.examp |
| 7c1e0 | 6c 65 73 20 61 72 65 3a 00 53 6f 6d 65 20 70 72 6f 78 79 73 20 72 65 71 75 69 72 65 2f 73 75 70 | les.are:.Some.proxys.require/sup |
| 7c200 | 70 6f 72 74 20 74 68 65 20 22 62 61 73 69 63 22 20 48 54 54 50 20 61 75 74 68 65 6e 74 69 63 61 | port.the."basic".HTTP.authentica |
| 7c220 | 74 69 6f 6e 20 73 63 68 65 6d 65 20 61 73 20 70 65 72 20 3a 72 66 63 3a 60 37 36 31 37 60 2c 20 | tion.scheme.as.per.:rfc:`7617`,. |
| 7c240 | 74 68 75 73 20 61 20 70 61 73 73 77 6f 72 64 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 | thus.a.password.can.be.configure |
| 7c260 | 64 2e 00 53 6f 6d 65 20 70 72 6f 78 79 73 20 72 65 71 75 69 72 65 2f 73 75 70 70 6f 72 74 20 74 | d..Some.proxys.require/support.t |
| 7c280 | 68 65 20 22 62 61 73 69 63 22 20 48 54 54 50 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 73 | he."basic".HTTP.authentication.s |
| 7c2a0 | 63 68 65 6d 65 20 61 73 20 70 65 72 20 3a 72 66 63 3a 60 37 36 31 37 60 2c 20 74 68 75 73 20 61 | cheme.as.per.:rfc:`7617`,.thus.a |
| 7c2c0 | 20 75 73 65 72 6e 61 6d 65 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 2e 00 53 6f 6d | .username.can.be.configured..Som |
| 7c2e0 | 65 20 72 65 63 65 6e 74 20 49 53 50 73 20 72 65 71 75 69 72 65 20 79 6f 75 20 74 6f 20 62 75 69 | e.recent.ISPs.require.you.to.bui |
| 7c300 | 6c 64 20 74 68 65 20 50 50 50 6f 45 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 68 72 6f 75 67 68 20 | ld.the.PPPoE.connection.through. |
| 7c320 | 61 20 56 4c 41 4e 20 69 6e 74 65 72 66 61 63 65 2e 20 4f 6e 65 20 6f 66 20 74 68 6f 73 65 20 49 | a.VLAN.interface..One.of.those.I |
| 7c340 | 53 50 73 20 69 73 20 65 2e 67 2e 20 44 65 75 74 73 63 68 65 20 54 65 6c 65 6b 6f 6d 20 69 6e 20 | SPs.is.e.g..Deutsche.Telekom.in. |
| 7c360 | 47 65 72 6d 61 6e 79 2e 20 56 79 4f 53 20 63 61 6e 20 65 61 73 69 6c 79 20 63 72 65 61 74 65 20 | Germany..VyOS.can.easily.create. |
| 7c380 | 61 20 50 50 50 6f 45 20 73 65 73 73 69 6f 6e 20 74 68 72 6f 75 67 68 20 61 6e 20 65 6e 63 61 70 | a.PPPoE.session.through.an.encap |
| 7c3a0 | 73 75 6c 61 74 65 64 20 56 4c 41 4e 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 65 20 66 6f 6c 6c | sulated.VLAN.interface..The.foll |
| 7c3c0 | 6f 77 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 77 69 6c 6c 20 72 75 6e 20 79 6f 75 | owing.configuration.will.run.you |
| 7c3e0 | 72 20 50 50 50 6f 45 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 68 72 6f 75 67 68 20 56 4c 41 4e 37 | r.PPPoE.connection.through.VLAN7 |
| 7c400 | 20 77 68 69 63 68 20 69 73 20 74 68 65 20 64 65 66 61 75 6c 74 20 56 4c 41 4e 20 66 6f 72 20 44 | .which.is.the.default.VLAN.for.D |
| 7c420 | 65 75 74 73 63 68 65 20 54 65 6c 65 6b 6f 6d 3a 00 53 6f 6d 65 20 73 65 72 76 69 63 65 73 20 64 | eutsche.Telekom:.Some.services.d |
| 7c440 | 6f 6e 27 74 20 77 6f 72 6b 20 63 6f 72 72 65 63 74 6c 79 20 77 68 65 6e 20 62 65 69 6e 67 20 68 | on't.work.correctly.when.being.h |
| 7c460 | 61 6e 64 6c 65 64 20 76 69 61 20 61 20 77 65 62 20 70 72 6f 78 79 2e 20 53 6f 20 73 6f 6d 65 74 | andled.via.a.web.proxy..So.somet |
| 7c480 | 69 6d 65 73 20 69 74 20 69 73 20 75 73 65 66 75 6c 20 74 6f 20 62 79 70 61 73 73 20 61 20 74 72 | imes.it.is.useful.to.bypass.a.tr |
| 7c4a0 | 61 6e 73 70 61 72 65 6e 74 20 70 72 6f 78 79 3a 00 53 6f 6d 65 20 75 73 65 72 73 20 74 65 6e 64 | ansparent.proxy:.Some.users.tend |
| 7c4c0 | 20 74 6f 20 63 6f 6e 6e 65 63 74 20 74 68 65 69 72 20 6d 6f 62 69 6c 65 20 64 65 76 69 63 65 73 | .to.connect.their.mobile.devices |
| 7c4e0 | 20 75 73 69 6e 67 20 57 69 72 65 47 75 61 72 64 20 74 6f 20 74 68 65 69 72 20 56 79 4f 53 20 72 | .using.WireGuard.to.their.VyOS.r |
| 7c500 | 6f 75 74 65 72 2e 20 54 6f 20 65 61 73 65 20 64 65 70 6c 6f 79 6d 65 6e 74 20 6f 6e 65 20 63 61 | outer..To.ease.deployment.one.ca |
| 7c520 | 6e 20 67 65 6e 65 72 61 74 65 20 61 20 22 70 65 72 20 6d 6f 62 69 6c 65 22 20 63 6f 6e 66 69 67 | n.generate.a."per.mobile".config |
| 7c540 | 75 72 61 74 69 6f 6e 20 66 72 6f 6d 20 74 68 65 20 56 79 4f 53 20 43 4c 49 2e 00 53 6f 6d 65 74 | uration.from.the.VyOS.CLI..Somet |
| 7c560 | 69 6d 65 73 20 6f 70 74 69 6f 6e 20 6c 69 6e 65 73 20 69 6e 20 74 68 65 20 67 65 6e 65 72 61 74 | imes.option.lines.in.the.generat |
| 7c580 | 65 64 20 4f 70 65 6e 56 50 4e 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 72 65 71 75 69 72 65 | ed.OpenVPN.configuration.require |
| 7c5a0 | 20 71 75 6f 74 65 73 2e 20 54 68 69 73 20 69 73 20 64 6f 6e 65 20 74 68 72 6f 75 67 68 20 61 20 | .quotes..This.is.done.through.a. |
| 7c5c0 | 68 61 63 6b 20 6f 6e 20 6f 75 72 20 63 6f 6e 66 69 67 20 67 65 6e 65 72 61 74 6f 72 2e 20 59 6f | hack.on.our.config.generator..Yo |
| 7c5e0 | 75 20 63 61 6e 20 70 61 73 73 20 71 75 6f 74 65 73 20 75 73 69 6e 67 20 74 68 65 20 60 60 26 71 | u.can.pass.quotes.using.the.``&q |
| 7c600 | 75 6f 74 3b 60 60 20 73 74 61 74 65 6d 65 6e 74 2e 00 53 6f 72 74 20 74 68 65 20 6f 75 74 70 75 | uot;``.statement..Sort.the.outpu |
| 7c620 | 74 20 62 79 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 6b 65 79 2e 20 50 6f 73 73 69 62 6c 65 | t.by.the.specified.key..Possible |
| 7c640 | 20 6b 65 79 73 3a 20 65 78 70 69 72 65 73 2c 20 69 61 69 64 5f 64 75 69 64 2c 20 69 70 2c 20 6c | .keys:.expires,.iaid_duid,.ip,.l |
| 7c660 | 61 73 74 5f 63 6f 6d 6d 2c 20 70 6f 6f 6c 2c 20 72 65 6d 61 69 6e 69 6e 67 2c 20 73 74 61 74 65 | ast_comm,.pool,.remaining,.state |
| 7c680 | 2c 20 74 79 70 65 20 28 64 65 66 61 75 6c 74 20 3d 20 69 70 29 00 53 6f 72 74 20 74 68 65 20 6f | ,.type.(default.=.ip).Sort.the.o |
| 7c6a0 | 75 74 70 75 74 20 62 79 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 6b 65 79 2e 20 50 6f 73 73 | utput.by.the.specified.key..Poss |
| 7c6c0 | 69 62 6c 65 20 6b 65 79 73 3a 20 69 70 2c 20 68 61 72 64 77 61 72 65 5f 61 64 64 72 65 73 73 2c | ible.keys:.ip,.hardware_address, |
| 7c6e0 | 20 73 74 61 74 65 2c 20 73 74 61 72 74 2c 20 65 6e 64 2c 20 72 65 6d 61 69 6e 69 6e 67 2c 20 70 | .state,.start,.end,.remaining,.p |
| 7c700 | 6f 6f 6c 2c 20 68 6f 73 74 6e 61 6d 65 20 28 64 65 66 61 75 6c 74 20 3d 20 69 70 29 00 53 6f 75 | ool,.hostname.(default.=.ip).Sou |
| 7c720 | 72 63 65 20 41 64 64 72 65 73 73 00 53 6f 75 72 63 65 20 49 50 20 61 64 64 72 65 73 73 20 75 73 | rce.Address.Source.IP.address.us |
| 7c740 | 65 64 20 66 6f 72 20 56 58 4c 41 4e 20 75 6e 64 65 72 6c 61 79 2e 20 54 68 69 73 20 69 73 20 6d | ed.for.VXLAN.underlay..This.is.m |
| 7c760 | 61 6e 64 61 74 6f 72 79 20 77 68 65 6e 20 75 73 69 6e 67 20 56 58 4c 41 4e 20 76 69 61 20 4c 32 | andatory.when.using.VXLAN.via.L2 |
| 7c780 | 56 50 4e 2f 45 56 50 4e 2e 00 53 6f 75 72 63 65 20 49 50 76 34 20 61 64 64 72 65 73 73 20 75 73 | VPN/EVPN..Source.IPv4.address.us |
| 7c7a0 | 65 64 20 69 6e 20 61 6c 6c 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 71 75 65 69 72 65 73 2e | ed.in.all.RADIUS.server.queires. |
| 7c7c0 | 00 53 6f 75 72 63 65 20 4e 41 54 20 72 75 6c 65 73 00 53 6f 75 72 63 65 20 50 72 65 66 69 78 00 | .Source.NAT.rules.Source.Prefix. |
| 7c7e0 | 53 6f 75 72 63 65 20 61 6c 6c 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 74 6f 20 74 68 65 20 52 41 | Source.all.connections.to.the.RA |
| 7c800 | 44 49 55 53 20 73 65 72 76 65 72 73 20 66 72 6f 6d 20 67 69 76 65 6e 20 56 52 46 20 60 3c 6e 61 | DIUS.servers.from.given.VRF.`<na |
| 7c820 | 6d 65 3e 60 2e 00 53 6f 75 72 63 65 20 61 6c 6c 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 74 6f 20 | me>`..Source.all.connections.to. |
| 7c840 | 74 68 65 20 54 41 43 41 43 53 20 73 65 72 76 65 72 73 20 66 72 6f 6d 20 67 69 76 65 6e 20 56 52 | the.TACACS.servers.from.given.VR |
| 7c860 | 46 20 60 3c 6e 61 6d 65 3e 60 2e 00 53 6f 75 72 63 65 20 70 72 6f 74 6f 63 6f 6c 20 74 6f 20 6d | F.`<name>`..Source.protocol.to.m |
| 7c880 | 61 74 63 68 2e 00 53 6f 75 72 63 65 20 74 75 6e 6e 65 6c 20 66 72 6f 6d 20 64 75 6d 6d 79 20 69 | atch..Source.tunnel.from.dummy.i |
| 7c8a0 | 6e 74 65 72 66 61 63 65 00 53 6f 75 72 63 65 20 74 75 6e 6e 65 6c 20 66 72 6f 6d 20 6c 6f 6f 70 | nterface.Source.tunnel.from.loop |
| 7c8c0 | 62 61 63 6b 73 00 53 70 61 6e 6e 69 6e 67 20 54 72 65 65 20 50 72 6f 74 6f 63 6f 6c 20 66 6f 72 | backs.Spanning.Tree.Protocol.for |
| 7c8e0 | 77 61 72 64 69 6e 67 20 60 3c 64 65 6c 61 79 3e 60 20 69 6e 20 73 65 63 6f 6e 64 73 20 28 64 65 | warding.`<delay>`.in.seconds.(de |
| 7c900 | 66 61 75 6c 74 3a 20 31 35 29 2e 00 53 70 61 6e 6e 69 6e 67 20 54 72 65 65 20 50 72 6f 74 6f 63 | fault:.15)..Spanning.Tree.Protoc |
| 7c920 | 6f 6c 20 68 65 6c 6c 6f 20 61 64 76 65 72 74 69 73 65 6d 65 6e 74 20 60 3c 69 6e 74 65 72 76 61 | ol.hello.advertisement.`<interva |
| 7c940 | 6c 3e 60 20 69 6e 20 73 65 63 6f 6e 64 73 20 28 64 65 66 61 75 6c 74 3a 20 32 29 2e 00 53 70 61 | l>`.in.seconds.(default:.2)..Spa |
| 7c960 | 6e 6e 69 6e 67 20 54 72 65 65 20 50 72 6f 74 6f 63 6f 6c 20 69 73 20 6e 6f 74 20 65 6e 61 62 6c | nning.Tree.Protocol.is.not.enabl |
| 7c980 | 65 64 20 62 79 20 64 65 66 61 75 6c 74 20 69 6e 20 56 79 4f 53 2e 20 3a 72 65 66 3a 60 73 74 70 | ed.by.default.in.VyOS..:ref:`stp |
| 7c9a0 | 60 20 63 61 6e 20 62 65 20 65 61 73 69 6c 79 20 65 6e 61 62 6c 65 64 20 69 66 20 6e 65 65 64 65 | `.can.be.easily.enabled.if.neede |
| 7c9c0 | 64 2e 00 53 70 61 74 69 61 6c 20 4d 75 6c 74 69 70 6c 65 78 69 6e 67 20 50 6f 77 65 72 20 53 61 | d..Spatial.Multiplexing.Power.Sa |
| 7c9e0 | 76 65 20 28 53 4d 50 53 29 20 73 65 74 74 69 6e 67 73 00 53 70 65 63 66 79 69 6e 67 20 6e 68 73 | ve.(SMPS).settings.Specfying.nhs |
| 7ca00 | 20 6d 61 6b 65 73 20 61 6c 6c 20 6d 75 6c 74 69 63 61 73 74 20 70 61 63 6b 65 74 73 20 74 6f 20 | .makes.all.multicast.packets.to. |
| 7ca20 | 62 65 20 72 65 70 65 61 74 65 64 20 74 6f 20 65 61 63 68 20 73 74 61 74 69 63 61 6c 6c 79 20 63 | be.repeated.to.each.statically.c |
| 7ca40 | 6f 6e 66 69 67 75 72 65 64 20 6e 65 78 74 20 68 6f 70 2e 00 53 70 65 63 69 66 69 65 73 20 3a 61 | onfigured.next.hop..Specifies.:a |
| 7ca60 | 62 62 72 3a 60 4d 50 50 45 20 28 4d 69 63 72 6f 73 6f 66 74 20 50 6f 69 6e 74 2d 74 6f 2d 50 6f | bbr:`MPPE.(Microsoft.Point-to-Po |
| 7ca80 | 69 6e 74 20 45 6e 63 72 79 70 74 69 6f 6e 29 60 20 6e 65 67 6f 74 69 61 74 69 6f 6e 20 70 72 65 | int.Encryption)`.negotiation.pre |
| 7caa0 | 66 65 72 65 6e 63 65 2e 00 53 70 65 63 69 66 69 65 73 20 3a 61 62 62 72 3a 60 4d 50 50 45 20 28 | ference..Specifies.:abbr:`MPPE.( |
| 7cac0 | 4d 69 63 72 6f 73 6f 66 74 20 50 6f 69 6e 74 2d 74 6f 2d 50 6f 69 6e 74 20 45 6e 63 72 79 70 74 | Microsoft.Point-to-Point.Encrypt |
| 7cae0 | 69 6f 6e 29 60 20 6e 65 67 6f 74 69 6f 61 74 69 6f 6e 20 70 72 65 66 65 72 65 6e 63 65 2e 00 53 | ion)`.negotioation.preference..S |
| 7cb00 | 70 65 63 69 66 69 65 73 20 49 50 20 61 64 64 72 65 73 73 20 66 6f 72 20 44 79 6e 61 6d 69 63 20 | pecifies.IP.address.for.Dynamic. |
| 7cb20 | 41 75 74 68 6f 72 69 7a 61 74 69 6f 6e 20 45 78 74 65 6e 73 69 6f 6e 20 73 65 72 76 65 72 20 28 | Authorization.Extension.server.( |
| 7cb40 | 44 4d 2f 43 6f 41 29 00 53 70 65 63 69 66 69 65 73 20 49 50 76 34 20 6e 65 67 6f 74 69 61 74 69 | DM/CoA).Specifies.IPv4.negotiati |
| 7cb60 | 6f 6e 20 70 72 65 66 65 72 65 6e 63 65 2e 00 53 70 65 63 69 66 69 65 73 20 49 50 76 36 20 6e 65 | on.preference..Specifies.IPv6.ne |
| 7cb80 | 67 6f 74 69 61 74 69 6f 6e 20 70 72 65 66 65 72 65 6e 63 65 2e 00 53 70 65 63 69 66 69 65 73 20 | gotiation.preference..Specifies. |
| 7cba0 | 53 65 72 76 69 63 65 2d 4e 61 6d 65 20 74 6f 20 72 65 73 70 6f 6e 64 2e 20 49 66 20 61 62 73 65 | Service-Name.to.respond..If.abse |
| 7cbc0 | 6e 74 20 61 6e 79 20 53 65 72 76 69 63 65 2d 4e 61 6d 65 20 69 73 20 61 63 63 65 70 74 61 62 6c | nt.any.Service-Name.is.acceptabl |
| 7cbe0 | 65 20 61 6e 64 20 63 6c 69 65 6e 74 e2 80 99 73 20 53 65 72 76 69 63 65 2d 4e 61 6d 65 20 77 69 | e.and.client...s.Service-Name.wi |
| 7cc00 | 6c 6c 20 62 65 20 73 65 6e 74 20 62 61 63 6b 2e 20 41 6c 73 6f 20 70 6f 73 73 69 62 6c 65 20 73 | ll.be.sent.back..Also.possible.s |
| 7cc20 | 65 74 20 6d 75 6c 74 69 70 6c 65 20 73 65 72 76 69 63 65 2d 6e 61 6d 65 73 3a 20 60 73 6e 31 2c | et.multiple.service-names:.`sn1, |
| 7cc40 | 73 6e 32 2c 73 6e 33 60 00 53 70 65 63 69 66 69 65 73 20 61 64 64 72 65 73 73 20 74 6f 20 62 65 | sn2,sn3`.Specifies.address.to.be |
| 7cc60 | 20 75 73 65 64 20 61 73 20 73 65 72 76 65 72 20 69 70 20 61 64 64 72 65 73 73 20 69 66 20 72 61 | .used.as.server.ip.address.if.ra |
| 7cc80 | 64 69 75 73 20 63 61 6e 20 61 73 73 69 67 6e 20 6f 6e 6c 79 20 63 6c 69 65 6e 74 20 61 64 64 72 | dius.can.assign.only.client.addr |
| 7cca0 | 65 73 73 2e 20 49 6e 20 73 75 63 68 20 63 61 73 65 20 69 66 20 63 6c 69 65 6e 74 20 61 64 64 72 | ess..In.such.case.if.client.addr |
| 7ccc0 | 65 73 73 20 69 73 20 6d 61 74 63 68 65 64 20 6e 65 74 77 6f 72 6b 20 61 6e 64 20 6d 61 73 6b 20 | ess.is.matched.network.and.mask. |
| 7cce0 | 74 68 65 6e 20 73 70 65 63 69 66 69 65 64 20 61 64 64 72 65 73 73 20 61 6e 64 20 6d 61 73 6b 20 | then.specified.address.and.mask. |
| 7cd00 | 77 69 6c 6c 20 62 65 20 75 73 65 64 2e 20 59 6f 75 20 63 61 6e 20 73 70 65 63 69 66 79 20 6d 75 | will.be.used..You.can.specify.mu |
| 7cd20 | 6c 74 69 70 6c 65 20 73 75 63 68 20 6f 70 74 69 6f 6e 73 2e 00 53 70 65 63 69 66 69 65 73 20 61 | ltiple.such.options..Specifies.a |
| 7cd40 | 6e 20 6f 70 74 69 6f 6e 61 6c 20 72 6f 75 74 65 2d 6d 61 70 20 74 6f 20 62 65 20 61 70 70 6c 69 | n.optional.route-map.to.be.appli |
| 7cd60 | 65 64 20 74 6f 20 72 6f 75 74 65 73 20 69 6d 70 6f 72 74 65 64 20 6f 72 20 65 78 70 6f 72 74 65 | ed.to.routes.imported.or.exporte |
| 7cd80 | 64 20 62 65 74 77 65 65 6e 20 74 68 65 20 63 75 72 72 65 6e 74 20 75 6e 69 63 61 73 74 20 56 52 | d.between.the.current.unicast.VR |
| 7cda0 | 46 20 61 6e 64 20 56 50 4e 2e 00 53 70 65 63 69 66 69 65 73 20 61 6e 20 75 70 73 74 72 65 61 6d | F.and.VPN..Specifies.an.upstream |
| 7cdc0 | 20 6e 65 74 77 6f 72 6b 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 20 66 72 6f 6d 20 77 68 69 63 | .network.`<interface>`.from.whic |
| 7cde0 | 68 20 72 65 70 6c 69 65 73 20 66 72 6f 6d 20 60 3c 73 65 72 76 65 72 3e 60 20 61 6e 64 20 6f 74 | h.replies.from.`<server>`.and.ot |
| 7ce00 | 68 65 72 20 72 65 6c 61 79 20 61 67 65 6e 74 73 20 77 69 6c 6c 20 62 65 20 61 63 63 65 70 74 65 | her.relay.agents.will.be.accepte |
| 7ce20 | 64 2e 00 53 70 65 63 69 66 69 65 73 20 66 69 78 65 64 20 6f 72 20 72 61 6e 64 6f 6d 20 69 6e 74 | d..Specifies.fixed.or.random.int |
| 7ce40 | 65 72 66 61 63 65 20 69 64 65 6e 74 69 66 69 65 72 20 66 6f 72 20 49 50 76 36 2e 20 42 79 20 64 | erface.identifier.for.IPv6..By.d |
| 7ce60 | 65 66 61 75 6c 74 20 69 73 20 66 69 78 65 64 2e 00 53 70 65 63 69 66 69 65 73 20 68 6f 77 20 6c | efault.is.fixed..Specifies.how.l |
| 7ce80 | 6f 6e 67 20 73 71 75 69 64 20 61 73 73 75 6d 65 73 20 61 6e 20 65 78 74 65 72 6e 61 6c 6c 79 20 | ong.squid.assumes.an.externally. |
| 7cea0 | 76 61 6c 69 64 61 74 65 64 20 75 73 65 72 6e 61 6d 65 3a 70 61 73 73 77 6f 72 64 20 70 61 69 72 | validated.username:password.pair |
| 7cec0 | 20 69 73 20 76 61 6c 69 64 20 66 6f 72 20 2d 20 69 6e 20 6f 74 68 65 72 20 77 6f 72 64 73 20 68 | .is.valid.for.-.in.other.words.h |
| 7cee0 | 6f 77 20 6f 66 74 65 6e 20 74 68 65 20 68 65 6c 70 65 72 20 70 72 6f 67 72 61 6d 20 69 73 20 63 | ow.often.the.helper.program.is.c |
| 7cf00 | 61 6c 6c 65 64 20 66 6f 72 20 74 68 61 74 20 75 73 65 72 2e 20 53 65 74 20 74 68 69 73 20 6c 6f | alled.for.that.user..Set.this.lo |
| 7cf20 | 77 20 74 6f 20 66 6f 72 63 65 20 72 65 76 61 6c 69 64 61 74 69 6f 6e 20 77 69 74 68 20 73 68 6f | w.to.force.revalidation.with.sho |
| 7cf40 | 72 74 20 6c 69 76 65 64 20 70 61 73 73 77 6f 72 64 73 2e 00 53 70 65 63 69 66 69 65 73 20 69 66 | rt.lived.passwords..Specifies.if |
| 7cf60 | 20 61 20 66 69 78 65 64 20 6f 72 20 72 61 6e 64 6f 6d 20 69 6e 74 65 72 66 61 63 65 20 69 64 65 | .a.fixed.or.random.interface.ide |
| 7cf80 | 6e 74 69 66 69 65 72 20 69 73 20 75 73 65 64 20 66 6f 72 20 49 50 76 36 2e 20 54 68 65 20 64 65 | ntifier.is.used.for.IPv6..The.de |
| 7cfa0 | 66 61 75 6c 74 20 69 73 20 66 69 78 65 64 2e 00 53 70 65 63 69 66 69 65 73 20 69 66 20 75 6e 6b | fault.is.fixed..Specifies.if.unk |
| 7cfc0 | 6e 6f 77 6e 20 73 6f 75 72 63 65 20 6c 69 6e 6b 20 6c 61 79 65 72 20 61 64 64 72 65 73 73 65 73 | nown.source.link.layer.addresses |
| 7cfe0 | 20 61 6e 64 20 49 50 20 61 64 64 72 65 73 73 65 73 20 61 72 65 20 65 6e 74 65 72 65 64 20 69 6e | .and.IP.addresses.are.entered.in |
| 7d000 | 74 6f 20 74 68 65 20 56 58 4c 41 4e 20 64 65 76 69 63 65 20 66 6f 72 77 61 72 64 69 6e 67 20 64 | to.the.VXLAN.device.forwarding.d |
| 7d020 | 61 74 61 62 61 73 65 2e 00 53 70 65 63 69 66 69 65 73 20 6e 75 6d 62 65 72 20 6f 66 20 69 6e 74 | atabase..Specifies.number.of.int |
| 7d040 | 65 72 66 61 63 65 73 20 74 6f 20 63 61 63 68 65 2e 20 54 68 69 73 20 70 72 65 76 65 6e 74 73 20 | erfaces.to.cache..This.prevents. |
| 7d060 | 69 6e 74 65 72 66 61 63 65 73 20 66 72 6f 6d 20 62 65 69 6e 67 20 72 65 6d 6f 76 65 64 20 6f 6e | interfaces.from.being.removed.on |
| 7d080 | 63 65 20 74 68 65 20 63 6f 72 72 65 73 70 6f 6e 64 69 6e 67 20 73 65 73 73 69 6f 6e 20 69 73 20 | ce.the.corresponding.session.is. |
| 7d0a0 | 64 65 73 74 72 6f 79 65 64 2e 20 49 6e 73 74 65 61 64 2c 20 69 6e 74 65 72 66 61 63 65 73 20 61 | destroyed..Instead,.interfaces.a |
| 7d0c0 | 72 65 20 63 61 63 68 65 64 20 66 6f 72 20 6c 61 74 65 72 20 75 73 65 20 69 6e 20 6e 65 77 20 73 | re.cached.for.later.use.in.new.s |
| 7d0e0 | 65 73 73 69 6f 6e 73 2e 20 54 68 69 73 20 73 68 6f 75 6c 64 20 72 65 64 75 63 65 20 74 68 65 20 | essions..This.should.reduce.the. |
| 7d100 | 6b 65 72 6e 65 6c 2d 6c 65 76 65 6c 20 69 6e 74 65 72 66 61 63 65 20 63 72 65 61 74 69 6f 6e 2f | kernel-level.interface.creation/ |
| 7d120 | 64 65 6c 65 74 69 6f 6e 20 72 61 74 65 2e 20 44 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 | deletion.rate..Default.value.is. |
| 7d140 | 2a 2a 30 2a 2a 2e 00 53 70 65 63 69 66 69 65 73 20 6e 75 6d 62 65 72 20 6f 66 20 69 6e 74 65 72 | **0**..Specifies.number.of.inter |
| 7d160 | 66 61 63 65 73 20 74 6f 20 6b 65 65 70 20 69 6e 20 63 61 63 68 65 2e 20 49 74 20 6d 65 61 6e 73 | faces.to.keep.in.cache..It.means |
| 7d180 | 20 74 68 61 74 20 64 6f 6e e2 80 99 74 20 64 65 73 74 72 6f 79 20 69 6e 74 65 72 66 61 63 65 20 | .that.don...t.destroy.interface. |
| 7d1a0 | 61 66 74 65 72 20 63 6f 72 72 65 73 70 6f 6e 64 69 6e 67 20 73 65 73 73 69 6f 6e 20 69 73 20 64 | after.corresponding.session.is.d |
| 7d1c0 | 65 73 74 72 6f 79 65 64 2c 20 69 6e 73 74 65 61 64 20 70 6c 61 63 65 20 69 74 20 74 6f 20 63 61 | estroyed,.instead.place.it.to.ca |
| 7d1e0 | 63 68 65 20 61 6e 64 20 75 73 65 20 69 74 20 6c 61 74 65 72 20 66 6f 72 20 6e 65 77 20 73 65 73 | che.and.use.it.later.for.new.ses |
| 7d200 | 73 69 6f 6e 73 20 72 65 70 65 61 74 65 64 6c 79 2e 20 54 68 69 73 20 73 68 6f 75 6c 64 20 72 65 | sions.repeatedly..This.should.re |
| 7d220 | 64 75 63 65 20 6b 65 72 6e 65 6c 2d 6c 65 76 65 6c 20 69 6e 74 65 72 66 61 63 65 20 63 72 65 61 | duce.kernel-level.interface.crea |
| 7d240 | 74 69 6f 6e 2f 64 65 6c 65 74 69 6f 6e 20 72 61 74 65 20 6c 61 63 6b 2e 20 44 65 66 61 75 6c 74 | tion/deletion.rate.lack..Default |
| 7d260 | 20 76 61 6c 75 65 20 69 73 20 2a 2a 30 2a 2a 2e 00 53 70 65 63 69 66 69 65 73 20 6f 6e 65 20 6f | .value.is.**0**..Specifies.one.o |
| 7d280 | 66 20 74 68 65 20 62 6f 6e 64 69 6e 67 20 70 6f 6c 69 63 69 65 73 2e 20 54 68 65 20 64 65 66 61 | f.the.bonding.policies..The.defa |
| 7d2a0 | 75 6c 74 20 69 73 20 38 30 32 2e 33 61 64 2e 20 50 6f 73 73 69 62 6c 65 20 76 61 6c 75 65 73 20 | ult.is.802.3ad..Possible.values. |
| 7d2c0 | 61 72 65 3a 00 53 70 65 63 69 66 69 65 73 20 70 65 65 72 20 69 6e 74 65 72 66 61 63 65 20 69 64 | are:.Specifies.peer.interface.id |
| 7d2e0 | 65 6e 74 69 66 69 65 72 20 66 6f 72 20 49 50 76 36 2e 20 42 79 20 64 65 66 61 75 6c 74 20 69 73 | entifier.for.IPv6..By.default.is |
| 7d300 | 20 66 69 78 65 64 2e 00 53 70 65 63 69 66 69 65 73 20 70 72 6f 78 79 20 73 65 72 76 69 63 65 20 | .fixed..Specifies.proxy.service. |
| 7d320 | 6c 69 73 74 65 6e 69 6e 67 20 61 64 64 72 65 73 73 2e 20 54 68 65 20 6c 69 73 74 65 6e 20 61 64 | listening.address..The.listen.ad |
| 7d340 | 64 72 65 73 73 20 69 73 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 6e 20 77 68 69 63 68 | dress.is.the.IP.address.on.which |
| 7d360 | 20 74 68 65 20 77 65 62 20 70 72 6f 78 79 20 73 65 72 76 69 63 65 20 6c 69 73 74 65 6e 73 20 66 | .the.web.proxy.service.listens.f |
| 7d380 | 6f 72 20 63 6c 69 65 6e 74 20 72 65 71 75 65 73 74 73 2e 00 53 70 65 63 69 66 69 65 73 20 72 65 | or.client.requests..Specifies.re |
| 7d3a0 | 6c 61 79 20 61 67 65 6e 74 20 49 50 20 61 64 64 72 65 00 53 70 65 63 69 66 69 65 73 20 73 69 6e | lay.agent.IP.addre.Specifies.sin |
| 7d3c0 | 67 6c 65 20 60 3c 67 61 74 65 77 61 79 3e 60 20 49 50 20 61 64 64 72 65 73 73 20 74 6f 20 62 65 | gle.`<gateway>`.IP.address.to.be |
| 7d3e0 | 20 75 73 65 64 20 61 73 20 6c 6f 63 61 6c 20 61 64 64 72 65 73 73 20 6f 66 20 50 50 50 20 69 6e | .used.as.local.address.of.PPP.in |
| 7d400 | 74 65 72 66 61 63 65 73 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 61 74 20 74 68 65 20 3a 61 62 | terfaces..Specifies.that.the.:ab |
| 7d420 | 62 72 3a 60 4e 42 4d 41 20 28 4e 6f 6e 2d 62 72 6f 61 64 63 61 73 74 20 6d 75 6c 74 69 70 6c 65 | br:`NBMA.(Non-broadcast.multiple |
| 7d440 | 2d 61 63 63 65 73 73 20 6e 65 74 77 6f 72 6b 29 60 20 61 64 64 72 65 73 73 65 73 20 6f 66 20 74 | -access.network)`.addresses.of.t |
| 7d460 | 68 65 20 6e 65 78 74 20 68 6f 70 20 73 65 72 76 65 72 73 20 61 72 65 20 64 65 66 69 6e 65 64 20 | he.next.hop.servers.are.defined. |
| 7d480 | 69 6e 20 74 68 65 20 64 6f 6d 61 69 6e 20 6e 61 6d 65 20 6e 62 6d 61 2d 64 6f 6d 61 69 6e 2d 6e | in.the.domain.name.nbma-domain-n |
| 7d4a0 | 61 6d 65 2e 20 46 6f 72 20 65 61 63 68 20 41 20 72 65 63 6f 72 64 20 6f 70 65 6e 6e 68 72 70 20 | ame..For.each.A.record.opennhrp. |
| 7d4c0 | 63 72 65 61 74 65 73 20 61 20 64 79 6e 61 6d 69 63 20 4e 48 53 20 65 6e 74 72 79 2e 00 53 70 65 | creates.a.dynamic.NHS.entry..Spe |
| 7d4e0 | 63 69 66 69 65 73 20 74 68 65 20 41 52 50 20 6c 69 6e 6b 20 6d 6f 6e 69 74 6f 72 69 6e 67 20 60 | cifies.the.ARP.link.monitoring.` |
| 7d500 | 3c 74 69 6d 65 3e 60 20 69 6e 20 73 65 63 6f 6e 64 73 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 | <time>`.in.seconds..Specifies.th |
| 7d520 | 65 20 49 50 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 75 73 65 20 61 73 20 41 52 50 20 6d 6f 6e | e.IP.addresses.to.use.as.ARP.mon |
| 7d540 | 69 74 6f 72 69 6e 67 20 70 65 65 72 73 20 77 68 65 6e 20 3a 63 66 67 63 6d 64 3a 60 61 72 70 2d | itoring.peers.when.:cfgcmd:`arp- |
| 7d560 | 6d 6f 6e 69 74 6f 72 20 69 6e 74 65 72 76 61 6c 60 20 6f 70 74 69 6f 6e 20 69 73 20 3e 20 30 2e | monitor.interval`.option.is.>.0. |
| 7d580 | 20 54 68 65 73 65 20 61 72 65 20 74 68 65 20 74 61 72 67 65 74 73 20 6f 66 20 74 68 65 20 41 52 | .These.are.the.targets.of.the.AR |
| 7d5a0 | 50 20 72 65 71 75 65 73 74 20 73 65 6e 74 20 74 6f 20 64 65 74 65 72 6d 69 6e 65 20 74 68 65 20 | P.request.sent.to.determine.the. |
| 7d5c0 | 68 65 61 6c 74 68 20 6f 66 20 74 68 65 20 6c 69 6e 6b 20 74 6f 20 74 68 65 20 74 61 72 67 65 74 | health.of.the.link.to.the.target |
| 7d5e0 | 73 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 65 20 61 76 61 69 6c 61 62 6c 65 20 3a 61 62 62 72 | s..Specifies.the.available.:abbr |
| 7d600 | 3a 60 4d 41 43 20 28 4d 65 73 73 61 67 65 20 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 43 6f | :`MAC.(Message.Authentication.Co |
| 7d620 | 64 65 29 60 20 61 6c 67 6f 72 69 74 68 6d 73 2e 20 54 68 65 20 4d 41 43 20 61 6c 67 6f 72 69 74 | de)`.algorithms..The.MAC.algorit |
| 7d640 | 68 6d 20 69 73 20 75 73 65 64 20 69 6e 20 70 72 6f 74 6f 63 6f 6c 20 76 65 72 73 69 6f 6e 20 32 | hm.is.used.in.protocol.version.2 |
| 7d660 | 20 66 6f 72 20 64 61 74 61 20 69 6e 74 65 67 72 69 74 79 20 70 72 6f 74 65 63 74 69 6f 6e 2e 20 | .for.data.integrity.protection.. |
| 7d680 | 4d 75 6c 74 69 70 6c 65 20 61 6c 67 6f 72 69 74 68 6d 73 20 63 61 6e 20 62 65 20 70 72 6f 76 69 | Multiple.algorithms.can.be.provi |
| 7d6a0 | 64 65 64 20 62 79 20 75 73 69 6e 67 20 6d 75 6c 74 69 70 6c 65 20 63 6f 6d 6d 61 6e 64 73 2c 20 | ded.by.using.multiple.commands,. |
| 7d6c0 | 64 65 66 69 6e 69 6e 67 20 6f 6e 65 20 61 6c 67 6f 72 69 74 68 6d 20 70 65 72 20 63 6f 6d 6d 61 | defining.one.algorithm.per.comma |
| 7d6e0 | 6e 64 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 65 20 61 76 61 69 6c 61 62 6c 65 20 3a 61 62 62 | nd..Specifies.the.available.:abb |
| 7d700 | 72 3a 60 4d 41 43 20 28 4d 65 73 73 61 67 65 20 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 43 | r:`MAC.(Message.Authentication.C |
| 7d720 | 6f 64 65 29 60 20 61 6c 67 6f 72 69 74 68 6d 73 2e 20 54 68 65 20 4d 41 43 20 61 6c 67 6f 72 69 | ode)`.algorithms..The.MAC.algori |
| 7d740 | 74 68 6d 20 69 73 20 75 73 65 64 20 69 6e 20 70 72 6f 74 6f 63 6f 6c 20 76 65 72 73 69 6f 6e 20 | thm.is.used.in.protocol.version. |
| 7d760 | 32 20 66 6f 72 20 64 61 74 61 20 69 6e 74 65 67 72 69 74 79 20 70 72 6f 74 65 63 74 69 6f 6e 2e | 2.for.data.integrity.protection. |
| 7d780 | 20 4d 75 6c 74 69 70 6c 65 20 61 6c 67 6f 72 69 74 68 6d 73 20 63 61 6e 20 62 65 20 70 72 6f 76 | .Multiple.algorithms.can.be.prov |
| 7d7a0 | 69 64 65 64 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 65 20 62 61 73 65 20 44 4e 20 75 6e 64 65 | ided..Specifies.the.base.DN.unde |
| 7d7c0 | 72 20 77 68 69 63 68 20 74 68 65 20 75 73 65 72 73 20 61 72 65 20 6c 6f 63 61 74 65 64 2e 00 53 | r.which.the.users.are.located..S |
| 7d7e0 | 70 65 63 69 66 69 65 73 20 74 68 65 20 63 6c 69 65 6e 74 20 63 6f 6e 6e 65 63 74 69 76 69 74 79 | pecifies.the.client.connectivity |
| 7d800 | 20 6d 6f 64 65 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 65 20 63 6c 69 65 6e 74 73 20 73 75 62 | .mode..Specifies.the.clients.sub |
| 7d820 | 6e 65 74 20 6d 61 73 6b 20 61 73 20 70 65 72 20 52 46 43 20 39 35 30 2e 20 49 66 20 75 6e 73 65 | net.mask.as.per.RFC.950..If.unse |
| 7d840 | 74 2c 20 73 75 62 6e 65 74 20 64 65 63 6c 61 72 61 74 69 6f 6e 20 69 73 20 75 73 65 64 2e 00 53 | t,.subnet.declaration.is.used..S |
| 7d860 | 70 65 63 69 66 69 65 73 20 74 68 65 20 68 6f 6c 64 69 6e 67 20 74 69 6d 65 20 66 6f 72 20 4e 48 | pecifies.the.holding.time.for.NH |
| 7d880 | 52 50 20 52 65 67 69 73 74 72 61 74 69 6f 6e 20 52 65 71 75 65 73 74 73 20 61 6e 64 20 52 65 73 | RP.Registration.Requests.and.Res |
| 7d8a0 | 6f 6c 75 74 69 6f 6e 20 52 65 70 6c 69 65 73 20 73 65 6e 74 20 66 72 6f 6d 20 74 68 69 73 20 69 | olution.Replies.sent.from.this.i |
| 7d8c0 | 6e 74 65 72 66 61 63 65 20 6f 72 20 73 68 6f 72 74 63 75 74 2d 74 61 72 67 65 74 2e 20 54 68 65 | nterface.or.shortcut-target..The |
| 7d8e0 | 20 68 6f 6c 64 74 69 6d 65 20 69 73 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 73 65 63 6f 6e 64 | .holdtime.is.specified.in.second |
| 7d900 | 73 20 61 6e 64 20 64 65 66 61 75 6c 74 73 20 74 6f 20 74 77 6f 20 68 6f 75 72 73 2e 00 53 70 65 | s.and.defaults.to.two.hours..Spe |
| 7d920 | 63 69 66 69 65 73 20 74 68 65 20 69 6e 74 65 72 76 61 6c 20 61 74 20 77 68 69 63 68 20 4e 65 74 | cifies.the.interval.at.which.Net |
| 7d940 | 66 6c 6f 77 20 64 61 74 61 20 77 69 6c 6c 20 62 65 20 73 65 6e 74 20 74 6f 20 61 20 63 6f 6c 6c | flow.data.will.be.sent.to.a.coll |
| 7d960 | 65 63 74 6f 72 2e 20 41 73 20 70 65 72 20 64 65 66 61 75 6c 74 2c 20 4e 65 74 66 6c 6f 77 20 64 | ector..As.per.default,.Netflow.d |
| 7d980 | 61 74 61 20 77 69 6c 6c 20 62 65 20 73 65 6e 74 20 65 76 65 72 79 20 36 30 20 73 65 63 6f 6e 64 | ata.will.be.sent.every.60.second |
| 7d9a0 | 73 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 73 69 7a 65 20 6f 66 | s..Specifies.the.maximum.size.of |
| 7d9c0 | 20 61 20 72 65 70 6c 79 20 62 6f 64 79 20 69 6e 20 4b 42 2c 20 75 73 65 64 20 74 6f 20 6c 69 6d | .a.reply.body.in.KB,.used.to.lim |
| 7d9e0 | 69 74 20 74 68 65 20 72 65 70 6c 79 20 73 69 7a 65 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 65 | it.the.reply.size..Specifies.the |
| 7da00 | 20 6d 69 6e 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 6c 69 6e 6b 73 20 74 68 61 74 20 6d 75 | .minimum.number.of.links.that.mu |
| 7da20 | 73 74 20 62 65 20 61 63 74 69 76 65 20 62 65 66 6f 72 65 20 61 73 73 65 72 74 69 6e 67 20 63 61 | st.be.active.before.asserting.ca |
| 7da40 | 72 72 69 65 72 2e 20 49 74 20 69 73 20 73 69 6d 69 6c 61 72 20 74 6f 20 74 68 65 20 43 69 73 63 | rrier..It.is.similar.to.the.Cisc |
| 7da60 | 6f 20 45 74 68 65 72 43 68 61 6e 6e 65 6c 20 6d 69 6e 2d 6c 69 6e 6b 73 20 66 65 61 74 75 72 65 | o.EtherChannel.min-links.feature |
| 7da80 | 2e 20 54 68 69 73 20 61 6c 6c 6f 77 73 20 73 65 74 74 69 6e 67 20 74 68 65 20 6d 69 6e 69 6d 75 | ..This.allows.setting.the.minimu |
| 7daa0 | 6d 20 6e 75 6d 62 65 72 20 6f 66 20 6d 65 6d 62 65 72 20 70 6f 72 74 73 20 74 68 61 74 20 6d 75 | m.number.of.member.ports.that.mu |
| 7dac0 | 73 74 20 62 65 20 75 70 20 28 6c 69 6e 6b 2d 75 70 20 73 74 61 74 65 29 20 62 65 66 6f 72 65 20 | st.be.up.(link-up.state).before. |
| 7dae0 | 6d 61 72 6b 69 6e 67 20 74 68 65 20 62 6f 6e 64 20 64 65 76 69 63 65 20 61 73 20 75 70 20 28 63 | marking.the.bond.device.as.up.(c |
| 7db00 | 61 72 72 69 65 72 20 6f 6e 29 2e 20 54 68 69 73 20 69 73 20 75 73 65 66 75 6c 20 66 6f 72 20 73 | arrier.on)..This.is.useful.for.s |
| 7db20 | 69 74 75 61 74 69 6f 6e 73 20 77 68 65 72 65 20 68 69 67 68 65 72 20 6c 65 76 65 6c 20 73 65 72 | ituations.where.higher.level.ser |
| 7db40 | 76 69 63 65 73 20 73 75 63 68 20 61 73 20 63 6c 75 73 74 65 72 69 6e 67 20 77 61 6e 74 20 74 6f | vices.such.as.clustering.want.to |
| 7db60 | 20 65 6e 73 75 72 65 20 61 20 6d 69 6e 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 6c 6f 77 20 | .ensure.a.minimum.number.of.low. |
| 7db80 | 62 61 6e 64 77 69 64 74 68 20 6c 69 6e 6b 73 20 61 72 65 20 61 63 74 69 76 65 20 62 65 66 6f 72 | bandwidth.links.are.active.befor |
| 7dba0 | 65 20 73 77 69 74 63 68 6f 76 65 72 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 65 20 6e 61 6d 65 | e.switchover..Specifies.the.name |
| 7dbc0 | 20 6f 66 20 74 68 65 20 44 4e 20 61 74 74 72 69 62 75 74 65 20 74 68 61 74 20 63 6f 6e 74 61 69 | .of.the.DN.attribute.that.contai |
| 7dbe0 | 6e 73 20 74 68 65 20 75 73 65 72 6e 61 6d 65 2f 6c 6f 67 69 6e 2e 20 43 6f 6d 62 69 6e 65 64 20 | ns.the.username/login..Combined. |
| 7dc00 | 77 69 74 68 20 74 68 65 20 62 61 73 65 20 44 4e 20 74 6f 20 63 6f 6e 73 74 72 75 63 74 20 74 68 | with.the.base.DN.to.construct.th |
| 7dc20 | 65 20 75 73 65 72 73 20 44 4e 20 77 68 65 6e 20 6e 6f 20 73 65 61 72 63 68 20 66 69 6c 74 65 72 | e.users.DN.when.no.search.filter |
| 7dc40 | 20 69 73 20 73 70 65 63 69 66 69 65 64 20 28 60 66 69 6c 74 65 72 2d 65 78 70 72 65 73 73 69 6f | .is.specified.(`filter-expressio |
| 7dc60 | 6e 60 29 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 65 20 70 65 65 72 20 69 6e 74 65 72 66 61 63 | n`)..Specifies.the.peer.interfac |
| 7dc80 | 65 20 69 64 65 6e 74 69 66 69 65 72 20 66 6f 72 20 49 50 76 36 2e 20 54 68 65 20 64 65 66 61 75 | e.identifier.for.IPv6..The.defau |
| 7dca0 | 6c 74 20 69 73 20 66 69 78 65 64 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 65 20 70 68 79 73 69 | lt.is.fixed..Specifies.the.physi |
| 7dcc0 | 63 61 6c 20 60 3c 65 74 68 58 3e 60 20 45 74 68 65 72 6e 65 74 20 69 6e 74 65 72 66 61 63 65 20 | cal.`<ethX>`.Ethernet.interface. |
| 7dce0 | 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 61 20 50 73 65 75 64 6f 20 45 74 68 65 72 6e 65 | associated.with.a.Pseudo.Etherne |
| 7dd00 | 74 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 65 20 70 | t.`<interface>`..Specifies.the.p |
| 7dd20 | 6f 72 74 20 60 3c 70 6f 72 74 3e 60 20 74 68 61 74 20 74 68 65 20 53 53 54 50 20 70 6f 72 74 20 | ort.`<port>`.that.the.SSTP.port. |
| 7dd40 | 77 69 6c 6c 20 6c 69 73 74 65 6e 20 6f 6e 20 28 64 65 66 61 75 6c 74 20 34 34 33 29 2e 00 53 70 | will.listen.on.(default.443)..Sp |
| 7dd60 | 65 63 69 66 69 65 73 20 74 68 65 20 70 72 6f 74 65 63 74 69 6f 6e 20 73 63 6f 70 65 20 28 61 6b | ecifies.the.protection.scope.(ak |
| 7dd80 | 61 20 72 65 61 6c 6d 20 6e 61 6d 65 29 20 77 68 69 63 68 20 69 73 20 74 6f 20 62 65 20 72 65 70 | a.realm.name).which.is.to.be.rep |
| 7dda0 | 6f 72 74 65 64 20 74 6f 20 74 68 65 20 63 6c 69 65 6e 74 20 66 6f 72 20 74 68 65 20 61 75 74 68 | orted.to.the.client.for.the.auth |
| 7ddc0 | 65 6e 74 69 63 61 74 69 6f 6e 20 73 63 68 65 6d 65 2e 20 49 74 20 69 73 20 63 6f 6d 6d 6f 6e 6c | entication.scheme..It.is.commonl |
| 7dde0 | 79 20 70 61 72 74 20 6f 66 20 74 68 65 20 74 65 78 74 20 74 68 65 20 75 73 65 72 20 77 69 6c 6c | y.part.of.the.text.the.user.will |
| 7de00 | 20 73 65 65 20 77 68 65 6e 20 70 72 6f 6d 70 74 65 64 20 66 6f 72 20 74 68 65 69 72 20 75 73 65 | .see.when.prompted.for.their.use |
| 7de20 | 72 6e 61 6d 65 20 61 6e 64 20 70 61 73 73 77 6f 72 64 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 | rname.and.password..Specifies.th |
| 7de40 | 65 20 72 6f 75 74 65 20 64 69 73 74 69 6e 67 75 69 73 68 65 72 20 74 6f 20 62 65 20 61 64 64 65 | e.route.distinguisher.to.be.adde |
| 7de60 | 64 20 74 6f 20 61 20 72 6f 75 74 65 20 65 78 70 6f 72 74 65 64 20 66 72 6f 6d 20 74 68 65 20 63 | d.to.a.route.exported.from.the.c |
| 7de80 | 75 72 72 65 6e 74 20 75 6e 69 63 61 73 74 20 56 52 46 20 74 6f 20 56 50 4e 2e 00 53 70 65 63 69 | urrent.unicast.VRF.to.VPN..Speci |
| 7dea0 | 66 69 65 73 20 74 68 65 20 72 6f 75 74 65 2d 74 61 72 67 65 74 20 6c 69 73 74 20 74 6f 20 62 65 | fies.the.route-target.list.to.be |
| 7dec0 | 20 61 74 74 61 63 68 65 64 20 74 6f 20 61 20 72 6f 75 74 65 20 28 65 78 70 6f 72 74 29 20 6f 72 | .attached.to.a.route.(export).or |
| 7dee0 | 20 74 68 65 20 72 6f 75 74 65 2d 74 61 72 67 65 74 20 6c 69 73 74 20 74 6f 20 6d 61 74 63 68 20 | .the.route-target.list.to.match. |
| 7df00 | 61 67 61 69 6e 73 74 20 28 69 6d 70 6f 72 74 29 20 77 68 65 6e 20 65 78 70 6f 72 74 69 6e 67 2f | against.(import).when.exporting/ |
| 7df20 | 69 6d 70 6f 72 74 69 6e 67 20 62 65 74 77 65 65 6e 20 74 68 65 20 63 75 72 72 65 6e 74 20 75 6e | importing.between.the.current.un |
| 7df40 | 69 63 61 73 74 20 56 52 46 20 61 6e 64 20 56 50 4e 2e 54 68 65 20 52 54 4c 49 53 54 20 69 73 20 | icast.VRF.and.VPN.The.RTLIST.is. |
| 7df60 | 61 20 73 70 61 63 65 2d 73 65 70 61 72 61 74 65 64 20 6c 69 73 74 20 6f 66 20 72 6f 75 74 65 2d | a.space-separated.list.of.route- |
| 7df80 | 74 61 72 67 65 74 73 2c 20 77 68 69 63 68 20 61 72 65 20 42 47 50 20 65 78 74 65 6e 64 65 64 20 | targets,.which.are.BGP.extended. |
| 7dfa0 | 63 6f 6d 6d 75 6e 69 74 79 20 76 61 6c 75 65 73 20 61 73 20 64 65 73 63 72 69 62 65 64 20 69 6e | community.values.as.described.in |
| 7dfc0 | 20 45 78 74 65 6e 64 65 64 20 43 6f 6d 6d 75 6e 69 74 69 65 73 20 41 74 74 72 69 62 75 74 65 2e | .Extended.Communities.Attribute. |
| 7dfe0 | 00 53 70 65 63 69 66 69 65 73 20 74 68 65 20 73 69 67 6e 61 74 75 72 65 20 61 6c 67 6f 72 69 74 | .Specifies.the.signature.algorit |
| 7e000 | 68 6d 73 20 74 68 61 74 20 77 69 6c 6c 20 62 65 20 61 63 63 65 70 74 65 64 20 66 6f 72 20 70 75 | hms.that.will.be.accepted.for.pu |
| 7e020 | 62 6c 69 63 20 6b 65 79 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 00 53 70 65 63 69 66 69 65 | blic.key.authentication.Specifie |
| 7e040 | 73 20 74 68 65 20 76 65 6e 64 6f 72 20 64 69 63 74 69 6f 6e 61 72 79 2c 20 54 68 69 73 20 64 69 | s.the.vendor.dictionary,.This.di |
| 7e060 | 63 74 69 6f 6e 61 72 79 20 6e 65 65 64 73 20 74 6f 20 62 65 20 70 72 65 73 65 6e 74 20 69 6e 20 | ctionary.needs.to.be.present.in. |
| 7e080 | 2f 75 73 72 2f 73 68 61 72 65 2f 61 63 63 65 6c 2d 70 70 70 2f 72 61 64 69 75 73 2e 00 53 70 65 | /usr/share/accel-ppp/radius..Spe |
| 7e0a0 | 63 69 66 69 65 73 20 74 68 65 20 76 65 6e 64 6f 72 20 64 69 63 74 69 6f 6e 61 72 79 2c 20 64 69 | cifies.the.vendor.dictionary,.di |
| 7e0c0 | 63 74 69 6f 6e 61 72 79 20 6e 65 65 64 73 20 74 6f 20 62 65 20 69 6e 20 2f 75 73 72 2f 73 68 61 | ctionary.needs.to.be.in./usr/sha |
| 7e0e0 | 72 65 2f 61 63 63 65 6c 2d 70 70 70 2f 72 61 64 69 75 73 2e 00 53 70 65 63 69 66 69 65 73 20 74 | re/accel-ppp/radius..Specifies.t |
| 7e100 | 68 65 20 76 65 6e 64 6f 72 20 64 69 63 74 69 6f 6e 61 72 79 2e 20 54 68 69 73 20 64 69 63 74 69 | he.vendor.dictionary..This.dicti |
| 7e120 | 6f 6e 61 72 79 20 6e 65 65 64 73 20 74 6f 20 62 65 20 70 72 65 73 65 6e 74 20 69 6e 20 2f 75 73 | onary.needs.to.be.present.in./us |
| 7e140 | 72 2f 73 68 61 72 65 2f 61 63 63 65 6c 2d 70 70 70 2f 72 61 64 69 75 73 2e 00 53 70 65 63 69 66 | r/share/accel-ppp/radius..Specif |
| 7e160 | 69 65 73 20 74 69 6d 65 6f 75 74 20 69 6e 20 73 65 63 6f 6e 64 73 20 74 6f 20 77 61 69 74 20 66 | ies.timeout.in.seconds.to.wait.f |
| 7e180 | 6f 72 20 61 6e 79 20 70 65 65 72 20 61 63 74 69 76 69 74 79 2e 20 49 66 20 74 68 69 73 20 6f 70 | or.any.peer.activity..If.this.op |
| 7e1a0 | 74 69 6f 6e 20 69 73 20 73 70 65 63 69 66 69 65 64 20 69 74 20 74 75 72 6e 73 20 6f 6e 20 61 64 | tion.is.specified.it.turns.on.ad |
| 7e1c0 | 61 70 74 69 76 65 20 6c 63 70 20 65 63 68 6f 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 20 61 6e | aptive.lcp.echo.functionality.an |
| 7e1e0 | 64 20 22 6c 63 70 2d 65 63 68 6f 2d 66 61 69 6c 75 72 65 22 20 69 73 20 6e 6f 74 20 75 73 65 64 | d."lcp-echo-failure".is.not.used |
| 7e200 | 2e 20 44 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 2a 2a 30 2a 2a 2e 00 53 70 65 63 69 66 | ..Default.value.is.**0**..Specif |
| 7e220 | 69 65 73 20 74 69 6d 65 6f 75 74 20 69 6e 20 73 65 63 6f 6e 64 73 20 74 6f 20 77 61 69 74 20 66 | ies.timeout.in.seconds.to.wait.f |
| 7e240 | 6f 72 20 61 6e 79 20 70 65 65 72 20 61 63 74 69 76 69 74 79 2e 20 49 66 20 74 68 69 73 20 6f 70 | or.any.peer.activity..If.this.op |
| 7e260 | 74 69 6f 6e 20 73 70 65 63 69 66 69 65 64 20 69 74 20 74 75 72 6e 73 20 6f 6e 20 61 64 61 70 74 | tion.specified.it.turns.on.adapt |
| 7e280 | 69 76 65 20 6c 63 70 20 65 63 68 6f 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 20 61 6e 64 20 22 | ive.lcp.echo.functionality.and." |
| 7e2a0 | 6c 63 70 2d 65 63 68 6f 2d 66 61 69 6c 75 72 65 22 20 69 73 20 6e 6f 74 20 75 73 65 64 2e 00 53 | lcp-echo-failure".is.not.used..S |
| 7e2c0 | 70 65 63 69 66 69 65 73 20 74 69 6d 65 6f 75 74 20 69 6e 20 73 65 63 6f 6e 64 73 20 74 6f 20 77 | pecifies.timeout.in.seconds.to.w |
| 7e2e0 | 61 69 74 20 66 6f 72 20 61 6e 79 20 70 65 65 72 20 61 63 74 69 76 69 74 79 2e 20 49 66 20 74 68 | ait.for.any.peer.activity..If.th |
| 7e300 | 69 73 20 6f 70 74 69 6f 6e 20 73 70 65 63 69 66 69 65 64 20 69 74 20 74 75 72 6e 73 20 6f 6e 20 | is.option.specified.it.turns.on. |
| 7e320 | 61 64 61 70 74 69 76 65 20 6c 63 70 20 65 63 68 6f 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 20 | adaptive.lcp.echo.functionality. |
| 7e340 | 61 6e 64 20 22 6c 63 70 2d 65 63 68 6f 2d 66 61 69 6c 75 72 65 22 20 69 73 20 6e 6f 74 20 75 73 | and."lcp-echo-failure".is.not.us |
| 7e360 | 65 64 2e 20 44 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 2a 2a 30 2a 2a 2e 00 53 70 65 63 | ed..Default.value.is.**0**..Spec |
| 7e380 | 69 66 69 65 73 20 77 68 65 74 68 65 72 20 61 6e 20 65 78 74 65 72 6e 61 6c 20 63 6f 6e 74 72 6f | ifies.whether.an.external.contro |
| 7e3a0 | 6c 20 70 6c 61 6e 65 20 28 65 2e 67 2e 20 42 47 50 20 4c 32 56 50 4e 2f 45 56 50 4e 29 20 6f 72 | l.plane.(e.g..BGP.L2VPN/EVPN).or |
| 7e3c0 | 20 74 68 65 20 69 6e 74 65 72 6e 61 6c 20 46 44 42 20 73 68 6f 75 6c 64 20 62 65 20 75 73 65 64 | .the.internal.FDB.should.be.used |
| 7e3e0 | 2e 00 53 70 65 63 69 66 69 65 73 20 77 68 65 74 68 65 72 20 74 68 65 20 56 58 4c 41 4e 20 64 65 | ..Specifies.whether.the.VXLAN.de |
| 7e400 | 76 69 63 65 20 69 73 20 63 61 70 61 62 6c 65 20 6f 66 20 76 6e 69 20 66 69 6c 74 65 72 69 6e 67 | vice.is.capable.of.vni.filtering |
| 7e420 | 2e 00 53 70 65 63 69 66 69 65 73 20 77 68 65 74 68 65 72 20 74 68 69 73 20 4e 53 53 41 20 62 6f | ..Specifies.whether.this.NSSA.bo |
| 7e440 | 72 64 65 72 20 72 6f 75 74 65 72 20 77 69 6c 6c 20 75 6e 63 6f 6e 64 69 74 69 6f 6e 61 6c 6c 79 | rder.router.will.unconditionally |
| 7e460 | 20 74 72 61 6e 73 6c 61 74 65 20 54 79 70 65 2d 37 20 4c 53 41 73 20 69 6e 74 6f 20 54 79 70 65 | .translate.Type-7.LSAs.into.Type |
| 7e480 | 2d 35 20 4c 53 41 73 2e 20 57 68 65 6e 20 72 6f 6c 65 20 69 73 20 41 6c 77 61 79 73 2c 20 54 79 | -5.LSAs..When.role.is.Always,.Ty |
| 7e4a0 | 70 65 2d 37 20 4c 53 41 73 20 61 72 65 20 74 72 61 6e 73 6c 61 74 65 64 20 69 6e 74 6f 20 54 79 | pe-7.LSAs.are.translated.into.Ty |
| 7e4c0 | 70 65 2d 35 20 4c 53 41 73 20 72 65 67 61 72 64 6c 65 73 73 20 6f 66 20 74 68 65 20 74 72 61 6e | pe-5.LSAs.regardless.of.the.tran |
| 7e4e0 | 73 6c 61 74 6f 72 20 73 74 61 74 65 20 6f 66 20 6f 74 68 65 72 20 4e 53 53 41 20 62 6f 72 64 65 | slator.state.of.other.NSSA.borde |
| 7e500 | 72 20 72 6f 75 74 65 72 73 2e 20 57 68 65 6e 20 72 6f 6c 65 20 69 73 20 43 61 6e 64 69 64 61 74 | r.routers..When.role.is.Candidat |
| 7e520 | 65 2c 20 74 68 69 73 20 72 6f 75 74 65 72 20 70 61 72 74 69 63 69 70 61 74 65 73 20 69 6e 20 74 | e,.this.router.participates.in.t |
| 7e540 | 68 65 20 74 72 61 6e 73 6c 61 74 6f 72 20 65 6c 65 63 74 69 6f 6e 20 74 6f 20 64 65 74 65 72 6d | he.translator.election.to.determ |
| 7e560 | 69 6e 65 20 69 66 20 69 74 20 77 69 6c 6c 20 70 65 72 66 6f 72 6d 20 74 68 65 20 74 72 61 6e 73 | ine.if.it.will.perform.the.trans |
| 7e580 | 6c 61 74 69 6f 6e 73 20 64 75 74 69 65 73 2e 20 57 68 65 6e 20 72 6f 6c 65 20 69 73 20 4e 65 76 | lations.duties..When.role.is.Nev |
| 7e5a0 | 65 72 2c 20 74 68 69 73 20 72 6f 75 74 65 72 20 77 69 6c 6c 20 6e 65 76 65 72 20 74 72 61 6e 73 | er,.this.router.will.never.trans |
| 7e5c0 | 6c 61 74 65 20 54 79 70 65 2d 37 20 4c 53 41 73 20 69 6e 74 6f 20 54 79 70 65 2d 35 20 4c 53 41 | late.Type-7.LSAs.into.Type-5.LSA |
| 7e5e0 | 73 2e 00 53 70 65 63 69 66 69 65 73 20 77 68 69 63 68 20 52 41 44 49 55 53 20 73 65 72 76 65 72 | s..Specifies.which.RADIUS.server |
| 7e600 | 20 61 74 74 72 69 62 75 74 65 20 63 6f 6e 74 61 69 6e 73 20 74 68 65 20 72 61 74 65 20 6c 69 6d | .attribute.contains.the.rate.lim |
| 7e620 | 69 74 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 61 74 74 72 | it.information..The.default.attr |
| 7e640 | 69 62 75 74 65 20 69 73 20 60 46 69 6c 74 65 72 2d 49 64 60 2e 00 53 70 65 63 69 66 69 65 73 20 | ibute.is.`Filter-Id`..Specifies. |
| 7e660 | 77 68 69 63 68 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 61 74 74 72 69 62 75 74 65 20 63 6f | which.RADIUS.server.attribute.co |
| 7e680 | 6e 74 61 69 6e 73 20 74 68 65 20 72 61 74 65 20 6c 69 6d 69 74 20 69 6e 66 6f 72 6d 61 74 69 6f | ntains.the.rate.limit.informatio |
| 7e6a0 | 6e 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 61 74 74 72 69 62 75 74 65 20 69 73 20 60 60 46 69 | n..The.default.attribute.is.``Fi |
| 7e6c0 | 6c 74 65 72 2d 49 64 60 60 2e 00 53 70 65 63 69 66 79 20 44 48 43 50 76 34 20 72 65 6c 61 79 20 | lter-Id``..Specify.DHCPv4.relay. |
| 7e6e0 | 49 50 20 61 64 64 72 65 73 73 20 74 6f 20 70 61 73 73 20 72 65 71 75 65 73 74 73 20 74 6f 2e 20 | IP.address.to.pass.requests.to.. |
| 7e700 | 49 66 20 73 70 65 63 69 66 69 65 64 20 67 69 61 64 64 72 20 69 73 20 61 6c 73 6f 20 6e 65 65 64 | If.specified.giaddr.is.also.need |
| 7e720 | 65 64 2e 00 53 70 65 63 69 66 79 20 49 50 76 34 20 61 6e 64 2f 6f 72 20 49 50 76 36 20 6e 65 74 | ed..Specify.IPv4.and/or.IPv6.net |
| 7e740 | 77 6f 72 6b 73 20 74 68 61 74 20 73 68 6f 75 6c 64 20 62 65 20 70 72 6f 74 65 63 74 65 64 2f 6d | works.that.should.be.protected/m |
| 7e760 | 6f 6e 69 74 6f 72 65 64 2e 00 53 70 65 63 69 66 79 20 49 50 76 34 20 61 6e 64 2f 6f 72 20 49 50 | onitored..Specify.IPv4.and/or.IP |
| 7e780 | 76 36 20 6e 65 74 77 6f 72 6b 73 20 77 68 69 63 68 20 61 72 65 20 67 6f 69 6e 67 20 74 6f 20 62 | v6.networks.which.are.going.to.b |
| 7e7a0 | 65 20 65 78 63 6c 75 64 65 64 2e 00 53 70 65 63 69 66 79 20 49 50 76 34 2f 49 50 76 36 20 6c 69 | e.excluded..Specify.IPv4/IPv6.li |
| 7e7c0 | 73 74 65 6e 20 61 64 64 72 65 73 73 20 6f 66 20 53 53 48 20 73 65 72 76 65 72 2e 20 4d 75 6c 74 | sten.address.of.SSH.server..Mult |
| 7e7e0 | 69 70 6c 65 20 61 64 64 72 65 73 73 65 73 20 63 61 6e 20 62 65 20 64 65 66 69 6e 65 64 2e 00 53 | iple.addresses.can.be.defined..S |
| 7e800 | 70 65 63 69 66 79 20 61 20 3a 61 62 62 72 3a 60 53 49 50 20 28 53 65 73 73 69 6f 6e 20 49 6e 69 | pecify.a.:abbr:`SIP.(Session.Ini |
| 7e820 | 74 69 61 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c 29 60 20 73 65 72 76 65 72 20 62 79 20 49 50 76 | tiation.Protocol)`.server.by.IPv |
| 7e840 | 36 20 61 64 64 72 65 73 73 20 6f 66 20 46 75 6c 6c 79 20 51 75 61 6c 69 66 69 65 64 20 44 6f 6d | 6.address.of.Fully.Qualified.Dom |
| 7e860 | 61 69 6e 20 4e 61 6d 65 20 66 6f 72 20 61 6c 6c 20 44 48 43 50 76 36 20 63 6c 69 65 6e 74 73 2e | ain.Name.for.all.DHCPv6.clients. |
| 7e880 | 00 53 70 65 63 69 66 79 20 61 20 46 75 6c 6c 79 20 51 75 61 6c 69 66 69 65 64 20 44 6f 6d 61 69 | .Specify.a.Fully.Qualified.Domai |
| 7e8a0 | 6e 20 4e 61 6d 65 20 61 73 20 73 6f 75 72 63 65 2f 64 65 73 74 69 6e 61 74 69 6f 6e 20 6d 61 74 | n.Name.as.source/destination.mat |
| 7e8c0 | 63 68 65 72 2e 20 45 6e 73 75 72 65 20 72 6f 75 74 65 72 20 69 73 20 61 62 6c 65 20 74 6f 20 72 | cher..Ensure.router.is.able.to.r |
| 7e8e0 | 65 73 6f 6c 76 65 20 73 75 63 68 20 64 6e 73 20 71 75 65 72 79 2e 00 53 70 65 63 69 66 79 20 61 | esolve.such.dns.query..Specify.a |
| 7e900 | 20 46 75 6c 6c 79 20 51 75 61 6c 69 66 69 65 64 20 44 6f 6d 61 69 6e 20 4e 61 6d 65 20 61 73 20 | .Fully.Qualified.Domain.Name.as. |
| 7e920 | 73 6f 75 72 63 65 2f 64 65 73 74 69 6e 61 74 69 6f 6e 20 74 6f 20 6d 61 74 63 68 2e 20 45 6e 73 | source/destination.to.match..Ens |
| 7e940 | 75 72 65 20 74 68 61 74 20 74 68 65 20 72 6f 75 74 65 72 20 69 73 20 61 62 6c 65 20 74 6f 20 72 | ure.that.the.router.is.able.to.r |
| 7e960 | 65 73 6f 6c 76 65 20 74 68 69 73 20 64 6e 73 20 71 75 65 72 79 2e 00 53 70 65 63 69 66 79 20 61 | esolve.this.dns.query..Specify.a |
| 7e980 | 20 4e 49 53 20 73 65 72 76 65 72 20 61 64 64 72 65 73 73 20 66 6f 72 20 44 48 43 50 76 36 20 63 | .NIS.server.address.for.DHCPv6.c |
| 7e9a0 | 6c 69 65 6e 74 73 2e 00 53 70 65 63 69 66 79 20 61 20 4e 49 53 2b 20 73 65 72 76 65 72 20 61 64 | lients..Specify.a.NIS+.server.ad |
| 7e9c0 | 64 72 65 73 73 20 66 6f 72 20 44 48 43 50 76 36 20 63 6c 69 65 6e 74 73 2e 00 53 70 65 63 69 66 | dress.for.DHCPv6.clients..Specif |
| 7e9e0 | 79 20 61 20 72 61 6e 67 65 20 6f 66 20 67 72 6f 75 70 20 61 64 64 72 65 73 73 65 73 20 76 69 61 | y.a.range.of.group.addresses.via |
| 7ea00 | 20 61 20 70 72 65 66 69 78 2d 6c 69 73 74 20 74 68 61 74 20 66 6f 72 63 65 73 20 50 49 4d 20 74 | .a.prefix-list.that.forces.PIM.t |
| 7ea20 | 6f 20 6e 65 76 65 72 20 64 6f 20 3a 61 62 62 72 3a 60 53 53 4d 20 28 53 6f 75 72 63 65 2d 53 70 | o.never.do.:abbr:`SSM.(Source-Sp |
| 7ea40 | 65 63 69 66 69 63 20 4d 75 6c 74 69 63 61 73 74 29 60 20 6f 76 65 72 2e 00 53 70 65 63 69 66 79 | ecific.Multicast)`.over..Specify |
| 7ea60 | 20 61 62 73 6f 6c 75 74 65 20 60 3c 70 61 74 68 3e 60 20 74 6f 20 73 63 72 69 70 74 20 77 68 69 | .absolute.`<path>`.to.script.whi |
| 7ea80 | 63 68 20 77 69 6c 6c 20 62 65 20 72 75 6e 20 77 68 65 6e 20 60 3c 74 61 73 6b 3e 60 20 69 73 20 | ch.will.be.run.when.`<task>`.is. |
| 7eaa0 | 65 78 65 63 75 74 65 64 2e 00 53 70 65 63 69 66 79 20 61 6c 6c 6f 77 65 64 20 3a 61 62 62 72 3a | executed..Specify.allowed.:abbr: |
| 7eac0 | 60 4b 45 58 20 28 4b 65 79 20 45 78 63 68 61 6e 67 65 29 60 20 61 6c 67 6f 72 69 74 68 6d 73 2e | `KEX.(Key.Exchange)`.algorithms. |
| 7eae0 | 00 53 70 65 63 69 66 79 20 61 6e 20 61 6c 74 65 72 6e 61 74 65 20 41 53 20 66 6f 72 20 74 68 69 | .Specify.an.alternate.AS.for.thi |
| 7eb00 | 73 20 42 47 50 20 70 72 6f 63 65 73 73 20 77 68 65 6e 20 69 6e 74 65 72 61 63 74 69 6e 67 20 77 | s.BGP.process.when.interacting.w |
| 7eb20 | 69 74 68 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 70 65 65 72 20 6f 72 20 70 65 65 72 20 67 | ith.the.specified.peer.or.peer.g |
| 7eb40 | 72 6f 75 70 2e 20 57 69 74 68 20 6e 6f 20 6d 6f 64 69 66 69 65 72 73 2c 20 74 68 65 20 73 70 65 | roup..With.no.modifiers,.the.spe |
| 7eb60 | 63 69 66 69 65 64 20 6c 6f 63 61 6c 2d 61 73 20 69 73 20 70 72 65 70 65 6e 64 65 64 20 74 6f 20 | cified.local-as.is.prepended.to. |
| 7eb80 | 74 68 65 20 72 65 63 65 69 76 65 64 20 41 53 5f 50 41 54 48 20 77 68 65 6e 20 72 65 63 65 69 76 | the.received.AS_PATH.when.receiv |
| 7eba0 | 69 6e 67 20 72 6f 75 74 69 6e 67 20 75 70 64 61 74 65 73 20 66 72 6f 6d 20 74 68 65 20 70 65 65 | ing.routing.updates.from.the.pee |
| 7ebc0 | 72 2c 20 61 6e 64 20 70 72 65 70 65 6e 64 65 64 20 74 6f 20 74 68 65 20 6f 75 74 67 6f 69 6e 67 | r,.and.prepended.to.the.outgoing |
| 7ebe0 | 20 41 53 5f 50 41 54 48 20 28 61 66 74 65 72 20 74 68 65 20 70 72 6f 63 65 73 73 20 6c 6f 63 61 | .AS_PATH.(after.the.process.loca |
| 7ec00 | 6c 20 41 53 29 20 77 68 65 6e 20 74 72 61 6e 73 6d 69 74 74 69 6e 67 20 6c 6f 63 61 6c 20 72 6f | l.AS).when.transmitting.local.ro |
| 7ec20 | 75 74 65 73 20 74 6f 20 74 68 65 20 70 65 65 72 2e 00 53 70 65 63 69 66 79 20 61 6e 20 61 6c 74 | utes.to.the.peer..Specify.an.alt |
| 7ec40 | 65 72 6e 61 74 65 20 54 43 50 20 70 6f 72 74 20 77 68 65 72 65 20 74 68 65 20 6c 64 61 70 20 73 | ernate.TCP.port.where.the.ldap.s |
| 7ec60 | 65 72 76 65 72 20 69 73 20 6c 69 73 74 65 6e 69 6e 67 20 69 66 20 6f 74 68 65 72 20 74 68 61 6e | erver.is.listening.if.other.than |
| 7ec80 | 20 74 68 65 20 64 65 66 61 75 6c 74 20 4c 44 41 50 20 70 6f 72 74 20 33 38 39 2e 00 53 70 65 63 | .the.default.LDAP.port.389..Spec |
| 7eca0 | 69 66 79 20 66 61 63 69 6c 69 74 79 20 61 6e 64 20 6c 65 76 65 6c 20 66 6f 72 20 6c 6f 67 67 69 | ify.facility.and.level.for.loggi |
| 7ecc0 | 6e 67 2e 20 46 6f 72 20 61 6e 20 65 78 70 6c 61 6e 61 74 69 6f 6e 20 6f 6e 20 3a 72 65 66 3a 60 | ng..For.an.explanation.on.:ref:` |
| 7ece0 | 73 79 73 6c 6f 67 5f 66 61 63 69 6c 69 74 69 65 73 60 20 61 6e 64 20 3a 72 65 66 3a 60 73 79 73 | syslog_facilities`.and.:ref:`sys |
| 7ed00 | 6c 6f 67 5f 73 65 76 65 72 69 74 79 5f 6c 65 76 65 6c 60 20 73 65 65 20 74 61 62 6c 65 73 20 69 | log_severity_level`.see.tables.i |
| 7ed20 | 6e 20 73 79 73 6c 6f 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 73 65 63 74 69 6f 6e 2e 00 | n.syslog.configuration.section.. |
| 7ed40 | 53 70 65 63 69 66 79 20 69 6e 74 65 72 76 61 6c 20 69 6e 20 73 65 63 6f 6e 64 73 20 74 6f 20 77 | Specify.interval.in.seconds.to.w |
| 7ed60 | 61 69 74 20 62 65 74 77 65 65 6e 20 44 79 6e 61 6d 69 63 20 44 4e 53 20 75 70 64 61 74 65 73 2e | ait.between.Dynamic.DNS.updates. |
| 7ed80 | 20 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 20 33 30 30 20 73 65 63 6f 6e 64 73 2e 00 53 70 | .The.default.is..300.seconds..Sp |
| 7eda0 | 65 63 69 66 79 20 6c 6f 63 61 6c 20 72 61 6e 67 65 20 6f 66 20 69 70 20 61 64 64 72 65 73 73 20 | ecify.local.range.of.ip.address. |
| 7edc0 | 74 6f 20 67 69 76 65 20 74 6f 20 64 68 63 70 20 63 6c 69 65 6e 74 73 2e 20 46 69 72 73 74 20 49 | to.give.to.dhcp.clients..First.I |
| 7ede0 | 50 20 69 6e 20 72 61 6e 67 65 20 69 73 20 72 6f 75 74 65 72 20 49 50 2e 20 49 66 20 79 6f 75 20 | P.in.range.is.router.IP..If.you. |
| 7ee00 | 6e 65 65 64 20 6d 6f 72 65 20 63 75 73 74 6f 6d 69 7a 61 74 69 6f 6e 20 75 73 65 20 60 63 6c 69 | need.more.customization.use.`cli |
| 7ee20 | 65 6e 74 2d 69 70 2d 70 6f 6f 6c 60 00 53 70 65 63 69 66 79 20 6e 61 6d 65 20 6f 66 20 74 68 65 | ent-ip-pool`.Specify.name.of.the |
| 7ee40 | 20 3a 61 62 62 72 3a 60 56 52 46 20 28 56 69 72 74 75 61 6c 20 52 6f 75 74 69 6e 67 20 61 6e 64 | .:abbr:`VRF.(Virtual.Routing.and |
| 7ee60 | 20 46 6f 72 77 61 72 64 69 6e 67 29 60 20 69 6e 73 74 61 6e 63 65 2e 00 53 70 65 63 69 66 79 20 | .Forwarding)`.instance..Specify. |
| 7ee80 | 6e 65 78 74 68 6f 70 20 6f 6e 20 74 68 65 20 70 61 74 68 20 74 6f 20 74 68 65 20 64 65 73 74 69 | nexthop.on.the.path.to.the.desti |
| 7eea0 | 6e 61 74 69 6f 6e 2c 20 60 60 69 70 76 34 2d 61 64 64 72 65 73 73 60 60 20 63 61 6e 20 62 65 20 | nation,.``ipv4-address``.can.be. |
| 7eec0 | 73 65 74 20 74 6f 20 60 60 64 68 63 70 60 60 00 53 70 65 63 69 66 79 20 73 74 61 74 69 63 20 72 | set.to.``dhcp``.Specify.static.r |
| 7eee0 | 6f 75 74 65 20 69 6e 74 6f 20 74 68 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 73 65 6e 64 | oute.into.the.routing.table.send |
| 7ef00 | 69 6e 67 20 61 6c 6c 20 6e 6f 6e 20 6c 6f 63 61 6c 20 74 72 61 66 66 69 63 20 74 6f 20 74 68 65 | ing.all.non.local.traffic.to.the |
| 7ef20 | 20 6e 65 78 74 68 6f 70 20 61 64 64 72 65 73 73 20 60 3c 61 64 64 72 65 73 73 3e 60 2e 00 53 70 | .nexthop.address.`<address>`..Sp |
| 7ef40 | 65 63 69 66 79 20 74 68 65 20 49 50 20 60 3c 61 64 64 72 65 73 73 3e 60 20 6f 66 20 74 68 65 20 | ecify.the.IP.`<address>`.of.the. |
| 7ef60 | 52 41 44 49 55 53 20 73 65 72 76 65 72 20 75 73 65 72 20 77 69 74 68 20 74 68 65 20 70 72 65 2d | RADIUS.server.user.with.the.pre- |
| 7ef80 | 73 68 61 72 65 64 2d 73 65 63 72 65 74 20 67 69 76 65 6e 20 69 6e 20 60 3c 73 65 63 72 65 74 3e | shared-secret.given.in.`<secret> |
| 7efa0 | 60 2e 00 53 70 65 63 69 66 79 20 74 68 65 20 49 50 20 60 3c 61 64 64 72 65 73 73 3e 60 20 6f 66 | `..Specify.the.IP.`<address>`.of |
| 7efc0 | 20 74 68 65 20 54 41 43 41 43 53 20 73 65 72 76 65 72 20 75 73 65 72 20 77 69 74 68 20 74 68 65 | .the.TACACS.server.user.with.the |
| 7efe0 | 20 70 72 65 2d 73 68 61 72 65 64 2d 73 65 63 72 65 74 20 67 69 76 65 6e 20 69 6e 20 60 3c 73 65 | .pre-shared-secret.given.in.`<se |
| 7f000 | 63 72 65 74 3e 60 2e 00 53 70 65 63 69 66 79 20 74 68 65 20 49 50 76 34 20 73 6f 75 72 63 65 20 | cret>`..Specify.the.IPv4.source. |
| 7f020 | 61 64 64 72 65 73 73 20 74 6f 20 75 73 65 20 66 6f 72 20 74 68 65 20 42 47 50 20 73 65 73 73 69 | address.to.use.for.the.BGP.sessi |
| 7f040 | 6f 6e 20 74 6f 20 74 68 69 73 20 6e 65 69 67 68 62 6f 72 2c 20 6d 61 79 20 62 65 20 73 70 65 63 | on.to.this.neighbor,.may.be.spec |
| 7f060 | 69 66 69 65 64 20 61 73 20 65 69 74 68 65 72 20 61 6e 20 49 50 76 34 20 61 64 64 72 65 73 73 20 | ified.as.either.an.IPv4.address. |
| 7f080 | 64 69 72 65 63 74 6c 79 20 6f 72 20 61 73 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 6e 61 6d 65 | directly.or.as.an.interface.name |
| 7f0a0 | 2e 00 53 70 65 63 69 66 79 20 74 68 65 20 4c 44 41 50 20 73 65 72 76 65 72 20 74 6f 20 63 6f 6e | ..Specify.the.LDAP.server.to.con |
| 7f0c0 | 6e 65 63 74 20 74 6f 2e 00 53 70 65 63 69 66 79 20 74 68 65 20 61 64 64 72 65 73 73 2c 20 41 50 | nect.to..Specify.the.address,.AP |
| 7f0e0 | 49 20 6b 65 79 2c 20 74 69 6d 65 6f 75 74 20 61 6e 64 20 70 6f 72 74 20 6f 66 20 74 68 65 20 73 | I.key,.timeout.and.port.of.the.s |
| 7f100 | 65 63 6f 6e 64 61 72 79 20 72 6f 75 74 65 72 2e 20 59 6f 75 20 6e 65 65 64 20 74 6f 20 65 6e 61 | econdary.router..You.need.to.ena |
| 7f120 | 62 6c 65 20 61 6e 64 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 48 54 54 50 20 41 50 49 20 73 | ble.and.configure.the.HTTP.API.s |
| 7f140 | 65 72 76 69 63 65 20 6f 6e 20 74 68 65 20 73 65 63 6f 6e 64 61 72 79 20 72 6f 75 74 65 72 20 66 | ervice.on.the.secondary.router.f |
| 7f160 | 6f 72 20 63 6f 6e 66 69 67 20 73 79 6e 63 20 74 6f 20 6f 70 65 72 61 74 65 2e 00 53 70 65 63 69 | or.config.sync.to.operate..Speci |
| 7f180 | 66 79 20 74 68 65 20 69 64 65 6e 74 69 66 69 65 72 20 76 61 6c 75 65 20 6f 66 20 74 68 65 20 73 | fy.the.identifier.value.of.the.s |
| 7f1a0 | 69 74 65 2d 6c 65 76 65 6c 20 61 67 67 72 65 67 61 74 6f 72 20 28 53 4c 41 29 20 6f 6e 20 74 68 | ite-level.aggregator.(SLA).on.th |
| 7f1c0 | 65 20 69 6e 74 65 72 66 61 63 65 2e 20 49 44 20 6d 75 73 74 20 62 65 20 61 20 64 65 63 69 6d 61 | e.interface..ID.must.be.a.decima |
| 7f1e0 | 6c 20 6e 75 6d 62 65 72 20 67 72 65 61 74 65 72 20 74 68 65 6e 20 30 20 77 68 69 63 68 20 66 69 | l.number.greater.then.0.which.fi |
| 7f200 | 74 73 20 69 6e 20 74 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 53 4c 41 20 49 44 73 20 28 73 65 65 | ts.in.the.length.of.SLA.IDs.(see |
| 7f220 | 20 62 65 6c 6f 77 29 2e 00 53 70 65 63 69 66 79 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 61 | .below)..Specify.the.interface.a |
| 7f240 | 64 64 72 65 73 73 20 75 73 65 64 20 6c 6f 63 61 6c 6c 79 20 6f 6e 20 74 68 65 20 69 6e 74 65 72 | ddress.used.locally.on.the.inter |
| 7f260 | 66 61 63 65 20 77 68 65 72 65 20 74 68 65 20 70 72 65 66 69 78 20 68 61 73 20 62 65 65 6e 20 64 | face.where.the.prefix.has.been.d |
| 7f280 | 65 6c 65 67 61 74 65 64 20 74 6f 2e 20 49 44 20 6d 75 73 74 20 62 65 20 61 20 64 65 63 69 6d 61 | elegated.to..ID.must.be.a.decima |
| 7f2a0 | 6c 20 69 6e 74 65 67 65 72 2e 00 53 70 65 63 69 66 79 20 74 68 65 20 6d 69 6e 69 6d 75 6d 20 72 | l.integer..Specify.the.minimum.r |
| 7f2c0 | 65 71 75 69 72 65 64 20 54 4c 53 20 76 65 72 73 69 6f 6e 20 31 2e 32 20 6f 72 20 31 2e 33 00 53 | equired.TLS.version.1.2.or.1.3.S |
| 7f2e0 | 70 65 63 69 66 79 20 74 68 65 20 70 6c 61 69 6e 74 65 78 74 20 70 61 73 73 77 6f 72 64 20 75 73 | pecify.the.plaintext.password.us |
| 7f300 | 65 72 20 62 79 20 75 73 65 72 20 60 3c 6e 61 6d 65 3e 60 20 6f 6e 20 74 68 69 73 20 73 79 73 74 | er.by.user.`<name>`.on.this.syst |
| 7f320 | 65 6d 2e 20 54 68 65 20 70 6c 61 69 6e 74 65 78 74 20 70 61 73 73 77 6f 72 64 20 77 69 6c 6c 20 | em..The.plaintext.password.will. |
| 7f340 | 62 65 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 74 72 61 6e 73 66 65 72 72 65 64 20 69 6e 74 | be.automatically.transferred.int |
| 7f360 | 6f 20 61 20 73 65 63 75 72 65 20 68 61 73 68 65 64 20 70 61 73 73 77 6f 72 64 20 61 6e 64 20 6e | o.a.secure.hashed.password.and.n |
| 7f380 | 6f 74 20 73 61 76 65 64 20 61 6e 79 77 68 65 72 65 20 69 6e 20 70 6c 61 69 6e 74 65 78 74 2e 00 | ot.saved.anywhere.in.plaintext.. |
| 7f3a0 | 53 70 65 63 69 66 79 20 74 68 65 20 70 6f 72 74 20 75 73 65 64 20 6f 6e 20 77 68 69 63 68 20 74 | Specify.the.port.used.on.which.t |
| 7f3c0 | 68 65 20 70 72 6f 78 79 20 73 65 72 76 69 63 65 20 69 73 20 6c 69 73 74 65 6e 69 6e 67 20 66 6f | he.proxy.service.is.listening.fo |
| 7f3e0 | 72 20 72 65 71 75 65 73 74 73 2e 20 54 68 69 73 20 70 6f 72 74 20 69 73 20 74 68 65 20 64 65 66 | r.requests..This.port.is.the.def |
| 7f400 | 61 75 6c 74 20 70 6f 72 74 20 75 73 65 64 20 66 6f 72 20 74 68 65 20 73 70 65 63 69 66 69 65 64 | ault.port.used.for.the.specified |
| 7f420 | 20 6c 69 73 74 65 6e 2d 61 64 64 72 65 73 73 2e 00 53 70 65 63 69 66 79 20 74 68 65 20 73 65 63 | .listen-address..Specify.the.sec |
| 7f440 | 74 69 6f 6e 20 6f 66 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 6f 20 73 79 6e | tion.of.the.configuration.to.syn |
| 7f460 | 63 68 72 6f 6e 69 7a 65 2e 20 49 66 20 6d 6f 72 65 20 74 68 61 6e 20 6f 6e 65 20 73 65 63 74 69 | chronize..If.more.than.one.secti |
| 7f480 | 6f 6e 20 69 73 20 74 6f 20 62 65 20 73 79 6e 63 68 72 6f 6e 69 7a 65 64 2c 20 72 65 70 65 61 74 | on.is.to.be.synchronized,.repeat |
| 7f4a0 | 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 61 64 64 20 61 64 64 69 74 69 6f 6e 61 6c 20 73 | .the.command.to.add.additional.s |
| 7f4c0 | 65 63 74 69 6f 6e 73 20 61 73 20 72 65 71 75 69 72 65 64 2e 00 53 70 65 63 69 66 79 20 74 68 65 | ections.as.required..Specify.the |
| 7f4e0 | 20 73 79 73 74 65 6d 73 20 60 3c 74 69 6d 65 7a 6f 6e 65 3e 60 20 61 73 20 74 68 65 20 52 65 67 | .systems.`<timezone>`.as.the.Reg |
| 7f500 | 69 6f 6e 2f 4c 6f 63 61 74 69 6f 6e 20 74 68 61 74 20 62 65 73 74 20 64 65 66 69 6e 65 73 20 79 | ion/Location.that.best.defines.y |
| 7f520 | 6f 75 72 20 6c 6f 63 61 74 69 6f 6e 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 2c 20 73 70 65 63 69 | our.location..For.example,.speci |
| 7f540 | 66 79 69 6e 67 20 55 53 2f 50 61 63 69 66 69 63 20 73 65 74 73 20 74 68 65 20 74 69 6d 65 20 7a | fying.US/Pacific.sets.the.time.z |
| 7f560 | 6f 6e 65 20 74 6f 20 55 53 20 50 61 63 69 66 69 63 20 74 69 6d 65 2e 00 53 70 65 63 69 66 79 20 | one.to.US.Pacific.time..Specify. |
| 7f580 | 74 68 65 20 74 69 6d 65 20 69 6e 74 65 72 76 61 6c 20 77 68 65 6e 20 60 3c 74 61 73 6b 3e 60 20 | the.time.interval.when.`<task>`. |
| 7f5a0 | 73 68 6f 75 6c 64 20 62 65 20 65 78 65 63 75 74 65 64 2e 20 54 68 65 20 69 6e 74 65 72 76 61 6c | should.be.executed..The.interval |
| 7f5c0 | 20 69 73 20 73 70 65 63 69 66 69 65 64 20 61 73 20 6e 75 6d 62 65 72 20 77 69 74 68 20 6f 6e 65 | .is.specified.as.number.with.one |
| 7f5e0 | 20 6f 66 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 75 66 66 69 78 65 73 3a 00 53 70 65 63 | .of.the.following.suffixes:.Spec |
| 7f600 | 69 66 79 20 74 69 6d 65 6f 75 74 20 2f 20 75 70 64 61 74 65 20 69 6e 74 65 72 76 61 6c 20 74 6f | ify.timeout./.update.interval.to |
| 7f620 | 20 63 68 65 63 6b 20 69 66 20 49 50 20 61 64 64 72 65 73 73 20 63 68 61 6e 67 65 64 2e 00 53 70 | .check.if.IP.address.changed..Sp |
| 7f640 | 65 63 69 66 79 20 74 69 6d 65 6f 75 74 20 69 6e 74 65 72 76 61 6c 20 66 6f 72 20 6b 65 65 70 61 | ecify.timeout.interval.for.keepa |
| 7f660 | 6c 69 76 65 20 6d 65 73 73 61 67 65 20 69 6e 20 73 65 63 6f 6e 64 73 2e 00 53 70 65 63 69 66 79 | live.message.in.seconds..Specify |
| 7f680 | 20 77 68 65 72 65 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 73 68 61 72 65 64 20 62 79 20 6d 75 | .where.interface.is.shared.by.mu |
| 7f6a0 | 6c 74 69 70 6c 65 20 75 73 65 72 73 20 6f 72 20 69 74 20 69 73 20 76 6c 61 6e 2d 70 65 72 2d 75 | ltiple.users.or.it.is.vlan-per-u |
| 7f6c0 | 73 65 72 2e 00 53 70 69 6e 65 31 20 69 73 20 61 20 43 69 73 63 6f 20 49 4f 53 20 72 6f 75 74 65 | ser..Spine1.is.a.Cisco.IOS.route |
| 7f6e0 | 72 20 72 75 6e 6e 69 6e 67 20 76 65 72 73 69 6f 6e 20 31 35 2e 34 2c 20 4c 65 61 66 32 20 61 6e | r.running.version.15.4,.Leaf2.an |
| 7f700 | 64 20 4c 65 61 66 33 20 61 72 65 20 65 61 63 68 20 56 79 4f 53 20 72 6f 75 74 65 72 73 20 72 75 | d.Leaf3.are.each.VyOS.routers.ru |
| 7f720 | 6e 6e 69 6e 67 20 31 2e 32 2e 00 53 70 69 6e 65 31 20 69 73 20 61 20 43 69 73 63 6f 20 49 4f 53 | nning.1.2..Spine1.is.a.Cisco.IOS |
| 7f740 | 20 72 6f 75 74 65 72 20 72 75 6e 6e 69 6e 67 20 76 65 72 73 69 6f 6e 20 31 35 2e 34 2c 20 4c 65 | .router.running.version.15.4,.Le |
| 7f760 | 61 66 32 20 61 6e 64 20 4c 65 61 66 33 20 69 73 20 65 61 63 68 20 61 20 56 79 4f 53 20 72 6f 75 | af2.and.Leaf3.is.each.a.VyOS.rou |
| 7f780 | 74 65 72 20 72 75 6e 6e 69 6e 67 20 31 2e 32 2e 00 53 70 6c 75 6e 6b 00 53 70 6f 6b 65 00 53 71 | ter.running.1.2..Splunk.Spoke.Sq |
| 7f7a0 | 75 69 64 5f 20 69 73 20 61 20 63 61 63 68 69 6e 67 20 61 6e 64 20 66 6f 72 77 61 72 64 69 6e 67 | uid_.is.a.caching.and.forwarding |
| 7f7c0 | 20 48 54 54 50 20 77 65 62 20 70 72 6f 78 79 2e 20 49 74 20 68 61 73 20 61 20 77 69 64 65 20 76 | .HTTP.web.proxy..It.has.a.wide.v |
| 7f7e0 | 61 72 69 65 74 79 20 6f 66 20 75 73 65 73 2c 20 69 6e 63 6c 75 64 69 6e 67 20 73 70 65 65 64 69 | ariety.of.uses,.including.speedi |
| 7f800 | 6e 67 20 75 70 20 61 20 77 65 62 20 73 65 72 76 65 72 20 62 79 20 63 61 63 68 69 6e 67 20 72 65 | ng.up.a.web.server.by.caching.re |
| 7f820 | 70 65 61 74 65 64 20 72 65 71 75 65 73 74 73 2c 20 63 61 63 68 69 6e 67 20 77 65 62 2c 20 44 4e | peated.requests,.caching.web,.DN |
| 7f840 | 53 20 61 6e 64 20 6f 74 68 65 72 20 63 6f 6d 70 75 74 65 72 20 6e 65 74 77 6f 72 6b 20 6c 6f 6f | S.and.other.computer.network.loo |
| 7f860 | 6b 75 70 73 20 66 6f 72 20 61 20 67 72 6f 75 70 20 6f 66 20 70 65 6f 70 6c 65 20 73 68 61 72 69 | kups.for.a.group.of.people.shari |
| 7f880 | 6e 67 20 6e 65 74 77 6f 72 6b 20 72 65 73 6f 75 72 63 65 73 2c 20 61 6e 64 20 61 69 64 69 6e 67 | ng.network.resources,.and.aiding |
| 7f8a0 | 20 73 65 63 75 72 69 74 79 20 62 79 20 66 69 6c 74 65 72 69 6e 67 20 74 72 61 66 66 69 63 2e 20 | .security.by.filtering.traffic.. |
| 7f8c0 | 41 6c 74 68 6f 75 67 68 20 70 72 69 6d 61 72 69 6c 79 20 75 73 65 64 20 66 6f 72 20 48 54 54 50 | Although.primarily.used.for.HTTP |
| 7f8e0 | 20 61 6e 64 20 46 54 50 2c 20 53 71 75 69 64 20 69 6e 63 6c 75 64 65 73 20 6c 69 6d 69 74 65 64 | .and.FTP,.Squid.includes.limited |
| 7f900 | 20 73 75 70 70 6f 72 74 20 66 6f 72 20 73 65 76 65 72 61 6c 20 6f 74 68 65 72 20 70 72 6f 74 6f | .support.for.several.other.proto |
| 7f920 | 63 6f 6c 73 20 69 6e 63 6c 75 64 69 6e 67 20 49 6e 74 65 72 6e 65 74 20 47 6f 70 68 65 72 2c 20 | cols.including.Internet.Gopher,. |
| 7f940 | 53 53 4c 2c 5b 36 5d 20 54 4c 53 20 61 6e 64 20 48 54 54 50 53 2e 20 53 71 75 69 64 20 64 6f 65 | SSL,[6].TLS.and.HTTPS..Squid.doe |
| 7f960 | 73 20 6e 6f 74 20 73 75 70 70 6f 72 74 20 74 68 65 20 53 4f 43 4b 53 20 70 72 6f 74 6f 63 6f 6c | s.not.support.the.SOCKS.protocol |
| 7f980 | 2e 00 53 74 61 72 74 20 57 65 62 73 65 72 76 65 72 20 69 6e 20 67 69 76 65 6e 20 20 56 52 46 2e | ..Start.Webserver.in.given..VRF. |
| 7f9a0 | 00 53 74 61 72 74 20 57 65 62 73 65 72 76 65 72 20 69 6e 20 67 69 76 65 6e 20 56 52 46 2e 00 53 | .Start.Webserver.in.given.VRF..S |
| 7f9c0 | 74 61 72 74 20 62 79 20 63 68 65 63 6b 69 6e 67 20 66 6f 72 20 49 50 53 65 63 20 53 41 73 20 28 | tart.by.checking.for.IPSec.SAs.( |
| 7f9e0 | 53 65 63 75 72 69 74 79 20 41 73 73 6f 63 69 61 74 69 6f 6e 73 29 20 77 69 74 68 3a 00 53 74 61 | Security.Associations).with:.Sta |
| 7fa00 | 72 74 69 6e 67 20 66 72 6f 6d 20 2a 2a 56 79 4f 53 2d 31 2e 35 2d 72 6f 6c 6c 69 6e 67 2d 32 30 | rting.from.**VyOS-1.5-rolling-20 |
| 7fa20 | 32 34 31 30 30 36 30 30 30 37 2a 2a 2c 20 74 68 65 20 66 69 72 65 77 61 6c 6c 20 63 61 6e 20 6d | 2410060007**,.the.firewall.can.m |
| 7fa40 | 6f 64 69 66 79 20 70 61 63 6b 65 74 73 20 62 65 66 6f 72 65 20 74 68 65 79 20 61 72 65 20 73 65 | odify.packets.before.they.are.se |
| 7fa60 | 6e 74 20 6f 75 74 2e 20 54 68 69 73 20 66 65 61 75 72 65 20 70 72 6f 76 69 64 65 73 20 6d 6f 72 | nt.out..This.feaure.provides.mor |
| 7fa80 | 65 20 66 6c 65 78 69 62 69 6c 69 74 79 20 69 6e 20 70 61 63 6b 65 74 20 68 61 6e 64 6c 69 6e 67 | e.flexibility.in.packet.handling |
| 7faa0 | 2e 00 53 74 61 72 74 69 6e 67 20 66 72 6f 6d 20 56 79 4f 53 20 31 2e 34 2d 72 6f 6c 6c 69 6e 67 | ..Starting.from.VyOS.1.4-rolling |
| 7fac0 | 2d 32 30 32 33 30 38 30 34 30 35 35 37 2c 20 61 20 6e 65 77 20 66 69 72 65 77 61 6c 6c 20 73 74 | -202308040557,.a.new.firewall.st |
| 7fae0 | 72 75 63 74 75 72 65 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 6f 6e 20 61 6c 6c 20 56 79 4f 53 | ructure.can.be.found.on.all.VyOS |
| 7fb00 | 20 69 6e 73 74 61 6c 6c 61 74 69 6f 6e 73 2e 20 54 68 65 20 5a 6f 6e 65 20 62 61 73 65 64 20 66 | .installations..The.Zone.based.f |
| 7fb20 | 69 72 65 77 61 6c 6c 20 77 61 73 20 72 65 6d 6f 76 65 64 20 69 6e 20 74 68 61 74 20 76 65 72 73 | irewall.was.removed.in.that.vers |
| 7fb40 | 69 6f 6e 2c 20 62 75 74 20 72 65 20 69 6e 74 72 6f 64 75 63 65 64 20 69 6e 20 56 79 4f 53 20 31 | ion,.but.re.introduced.in.VyOS.1 |
| 7fb60 | 2e 34 20 61 6e 64 20 31 2e 35 2e 20 41 6c 6c 20 76 65 72 73 69 6f 6e 73 20 62 75 69 6c 74 20 61 | .4.and.1.5..All.versions.built.a |
| 7fb80 | 66 74 65 72 20 32 30 32 33 2d 31 30 2d 32 32 20 68 61 76 65 20 74 68 69 73 20 66 65 61 74 75 72 | fter.2023-10-22.have.this.featur |
| 7fba0 | 65 2e 20 44 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 66 6f 72 20 6d 6f 73 74 20 6f 66 20 74 68 65 | e..Documentation.for.most.of.the |
| 7fbc0 | 20 6e 65 77 20 66 69 72 65 77 61 6c 6c 20 43 4c 49 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 69 | .new.firewall.CLI.can.be.found.i |
| 7fbe0 | 6e 20 74 68 65 20 60 66 69 72 65 77 61 6c 6c 20 3c 68 74 74 70 73 3a 2f 2f 64 6f 63 73 2e 76 79 | n.the.`firewall.<https://docs.vy |
| 7fc00 | 6f 73 2e 69 6f 2f 65 6e 2f 6c 61 74 65 73 74 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 66 69 | os.io/en/latest/configuration/fi |
| 7fc20 | 72 65 77 61 6c 6c 2f 67 65 6e 65 72 61 6c 2e 68 74 6d 6c 3e 60 5f 20 63 68 61 70 74 65 72 2e 00 | rewall/general.html>`_.chapter.. |
| 7fc40 | 53 74 61 72 74 69 6e 67 20 66 72 6f 6d 20 56 79 4f 53 20 31 2e 34 2d 72 6f 6c 6c 69 6e 67 2d 32 | Starting.from.VyOS.1.4-rolling-2 |
| 7fc60 | 30 32 33 30 38 30 34 30 35 35 37 2c 20 61 20 6e 65 77 20 66 69 72 65 77 61 6c 6c 20 73 74 72 75 | 02308040557,.a.new.firewall.stru |
| 7fc80 | 63 74 75 72 65 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 6f 6e 20 61 6c 6c 20 56 79 4f 53 20 69 | cture.can.be.found.on.all.VyOS.i |
| 7fca0 | 6e 73 74 61 6c 6c 61 74 69 6f 6e 73 2e 20 54 68 65 20 5a 6f 6e 65 20 62 61 73 65 64 20 66 69 72 | nstallations..The.Zone.based.fir |
| 7fcc0 | 65 77 61 6c 6c 20 77 61 73 20 72 65 6d 6f 76 65 64 20 69 6e 20 74 68 61 74 20 76 65 72 73 69 6f | ewall.was.removed.in.that.versio |
| 7fce0 | 6e 2c 20 62 75 74 20 72 65 20 69 6e 74 72 6f 64 75 63 65 64 20 69 6e 20 56 79 4f 53 20 31 2e 34 | n,.but.re.introduced.in.VyOS.1.4 |
| 7fd00 | 20 61 6e 64 20 31 2e 35 2e 20 41 6c 6c 20 76 65 72 73 69 6f 6e 73 20 62 75 69 6c 74 20 61 66 74 | .and.1.5..All.versions.built.aft |
| 7fd20 | 65 72 20 32 30 32 33 2d 31 30 2d 32 32 20 68 61 76 65 20 74 68 69 73 20 66 65 61 74 75 72 65 2e | er.2023-10-22.have.this.feature. |
| 7fd40 | 20 44 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 66 6f 72 20 6d 6f 73 74 20 6f 66 20 74 68 65 20 6e | .Documentation.for.most.of.the.n |
| 7fd60 | 65 77 20 66 69 72 65 77 61 6c 6c 20 43 4c 49 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 69 6e 20 | ew.firewall.CLI.can.be.found.in. |
| 7fd80 | 74 68 65 20 60 66 69 72 65 77 61 6c 6c 20 3c 68 74 74 70 73 3a 2f 2f 64 6f 63 73 2e 76 79 6f 73 | the.`firewall.<https://docs.vyos |
| 7fda0 | 2e 69 6f 2f 65 6e 2f 6c 61 74 65 73 74 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 66 69 72 65 | .io/en/latest/configuration/fire |
| 7fdc0 | 77 61 6c 6c 2f 67 65 6e 65 72 61 6c 2e 68 74 6d 6c 3e 60 5f 20 63 68 61 70 74 65 72 2e 20 54 68 | wall/general.html>`_.chapter..Th |
| 7fde0 | 65 20 6c 65 67 61 63 79 20 66 69 72 65 77 61 6c 6c 20 69 73 20 73 74 69 6c 6c 20 61 76 61 69 6c | e.legacy.firewall.is.still.avail |
| 7fe00 | 61 62 6c 65 20 66 6f 72 20 76 65 72 73 69 6f 6e 73 20 62 65 66 6f 72 65 20 31 2e 34 2d 72 6f 6c | able.for.versions.before.1.4-rol |
| 7fe20 | 6c 69 6e 67 2d 32 30 32 33 30 38 30 34 30 35 35 37 20 61 6e 64 20 63 61 6e 20 62 65 20 66 6f 75 | ling-202308040557.and.can.be.fou |
| 7fe40 | 6e 64 20 69 6e 20 74 68 65 20 3a 64 6f 63 3a 60 6c 65 67 61 63 79 20 66 69 72 65 77 61 6c 6c 20 | nd.in.the.:doc:`legacy.firewall. |
| 7fe60 | 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 3c 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 66 69 | configuration.</configuration/fi |
| 7fe80 | 72 65 77 61 6c 6c 2f 67 65 6e 65 72 61 6c 2d 6c 65 67 61 63 79 3e 60 20 63 68 61 70 74 65 72 2e | rewall/general-legacy>`.chapter. |
| 7fea0 | 00 53 74 61 72 74 69 6e 67 20 66 72 6f 6d 20 56 79 4f 53 20 31 2e 34 2d 72 6f 6c 6c 69 6e 67 2d | .Starting.from.VyOS.1.4-rolling- |
| 7fec0 | 32 30 32 33 30 38 30 34 30 35 35 37 2c 20 61 20 6e 65 77 20 66 69 72 65 77 61 6c 6c 20 73 74 72 | 202308040557,.a.new.firewall.str |
| 7fee0 | 75 63 74 75 72 65 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 6f 6e 20 61 6c 6c 20 56 79 4f 53 20 | ucture.can.be.found.on.all.VyOS. |
| 7ff00 | 69 6e 73 74 61 6c 6c 61 74 69 6f 6e 73 2e 20 5a 6f 6e 65 20 62 61 73 65 64 20 66 69 72 65 77 61 | installations..Zone.based.firewa |
| 7ff20 | 6c 6c 20 77 61 73 20 72 65 6d 6f 76 65 64 20 69 6e 20 74 68 61 74 20 76 65 72 73 69 6f 6e 2c 20 | ll.was.removed.in.that.version,. |
| 7ff40 | 62 75 74 20 72 65 20 69 6e 74 72 6f 64 75 63 65 64 20 69 6e 20 56 79 4f 53 20 31 2e 34 20 61 6e | but.re.introduced.in.VyOS.1.4.an |
| 7ff60 | 64 20 31 2e 35 2e 20 41 6c 6c 20 76 65 72 73 69 6f 6e 73 20 62 75 69 6c 74 20 61 66 74 65 72 20 | d.1.5..All.versions.built.after. |
| 7ff80 | 32 30 32 33 2d 31 30 2d 32 32 20 68 61 73 20 74 68 69 73 20 66 65 61 74 75 72 65 2e 20 44 6f 63 | 2023-10-22.has.this.feature..Doc |
| 7ffa0 | 75 6d 65 6e 74 61 74 69 6f 6e 20 66 6f 72 20 6d 6f 73 74 20 6f 66 20 74 68 65 20 6e 65 77 20 66 | umentation.for.most.of.the.new.f |
| 7ffc0 | 69 72 65 77 61 6c 6c 20 43 4c 49 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 69 6e 20 74 68 65 20 | irewall.CLI.can.be.found.in.the. |
| 7ffe0 | 60 66 69 72 65 77 61 6c 6c 20 3c 68 74 74 70 73 3a 2f 2f 64 6f 63 73 2e 76 79 6f 73 2e 69 6f 2f | `firewall.<https://docs.vyos.io/ |
| 80000 | 65 6e 2f 6c 61 74 65 73 74 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 66 69 72 65 77 61 6c 6c | en/latest/configuration/firewall |
| 80020 | 2f 67 65 6e 65 72 61 6c 2e 68 74 6d 6c 3e 60 5f 20 63 68 61 70 74 65 72 2e 20 54 68 65 20 6c 65 | /general.html>`_.chapter..The.le |
| 80040 | 67 61 63 79 20 66 69 72 65 77 61 6c 6c 20 69 73 20 73 74 69 6c 6c 20 61 76 61 69 6c 61 62 6c 65 | gacy.firewall.is.still.available |
| 80060 | 20 66 6f 72 20 76 65 72 73 69 6f 6e 73 20 62 65 66 6f 72 65 20 31 2e 34 2d 72 6f 6c 6c 69 6e 67 | .for.versions.before.1.4-rolling |
| 80080 | 2d 32 30 32 33 30 38 30 34 30 35 35 37 20 61 6e 64 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 69 | -202308040557.and.can.be.found.i |
| 800a0 | 6e 20 74 68 65 20 3a 64 6f 63 3a 60 6c 65 67 61 63 79 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 | n.the.:doc:`legacy.firewall.conf |
| 800c0 | 69 67 75 72 61 74 69 6f 6e 20 3c 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 66 69 72 65 77 61 | iguration.</configuration/firewa |
| 800e0 | 6c 6c 2f 67 65 6e 65 72 61 6c 2d 6c 65 67 61 63 79 3e 60 20 63 68 61 70 74 65 72 2e 00 53 74 61 | ll/general-legacy>`.chapter..Sta |
| 80100 | 72 74 69 6e 67 20 66 72 6f 6d 20 56 79 4f 53 20 31 2e 34 2d 72 6f 6c 6c 69 6e 67 2d 32 30 32 33 | rting.from.VyOS.1.4-rolling-2023 |
| 80120 | 30 38 30 34 30 35 35 37 2c 20 61 20 6e 65 77 20 66 69 72 65 77 61 6c 6c 20 73 74 72 75 63 74 75 | 08040557,.a.new.firewall.structu |
| 80140 | 72 65 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 6f 6e 20 61 6c 6c 20 76 79 6f 73 20 69 6e 73 74 | re.can.be.found.on.all.vyos.inst |
| 80160 | 61 6c 61 74 69 6f 6e 73 2c 20 61 6e 64 20 7a 6f 6e 65 20 62 61 73 65 64 20 66 69 72 65 77 61 6c | alations,.and.zone.based.firewal |
| 80180 | 6c 20 69 73 20 6e 6f 20 6c 6f 6e 67 65 72 20 73 75 70 70 6f 72 74 65 64 2e 20 44 6f 63 75 6d 65 | l.is.no.longer.supported..Docume |
| 801a0 | 6e 74 61 74 69 6f 6e 20 66 6f 72 20 6d 6f 73 74 20 6f 66 20 74 68 65 20 6e 65 77 20 66 69 72 65 | ntation.for.most.of.the.new.fire |
| 801c0 | 77 61 6c 6c 20 43 4c 49 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 69 6e 20 74 68 65 20 60 66 69 | wall.CLI.can.be.found.in.the.`fi |
| 801e0 | 72 65 77 61 6c 6c 20 3c 68 74 74 70 73 3a 2f 2f 64 6f 63 73 2e 76 79 6f 73 2e 69 6f 2f 65 6e 2f | rewall.<https://docs.vyos.io/en/ |
| 80200 | 6c 61 74 65 73 74 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 66 69 72 65 77 61 6c 6c 2f 67 65 | latest/configuration/firewall/ge |
| 80220 | 6e 65 72 61 6c 2e 68 74 6d 6c 3e 60 5f 20 63 68 61 70 74 65 72 2e 20 54 68 65 20 6c 65 67 61 63 | neral.html>`_.chapter..The.legac |
| 80240 | 79 20 66 69 72 65 77 61 6c 6c 20 69 73 20 73 74 69 6c 6c 20 61 76 61 69 6c 61 62 6c 65 20 66 6f | y.firewall.is.still.available.fo |
| 80260 | 72 20 76 65 72 73 69 6f 6e 73 20 62 65 66 6f 72 65 20 31 2e 34 2d 72 6f 6c 6c 69 6e 67 2d 32 30 | r.versions.before.1.4-rolling-20 |
| 80280 | 32 33 30 38 30 34 30 35 35 37 20 61 6e 64 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 69 6e 20 74 | 2308040557.and.can.be.found.in.t |
| 802a0 | 68 65 20 3a 72 65 66 3a 60 66 69 72 65 77 61 6c 6c 2d 6c 65 67 61 63 79 60 20 63 68 61 70 74 65 | he.:ref:`firewall-legacy`.chapte |
| 802c0 | 72 2e 20 54 68 65 20 65 78 61 6d 70 6c 65 73 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 | r..The.examples.in.this.section. |
| 802e0 | 75 73 65 20 74 68 65 20 6c 65 67 61 63 79 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 | use.the.legacy.firewall.configur |
| 80300 | 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 73 2c 20 73 69 6e 63 65 20 74 68 69 73 20 66 65 61 74 75 | ation.commands,.since.this.featu |
| 80320 | 72 65 20 68 61 73 20 62 65 65 6e 20 72 65 6d 6f 76 65 64 20 69 6e 20 65 61 72 6c 69 65 72 20 72 | re.has.been.removed.in.earlier.r |
| 80340 | 65 6c 65 61 73 65 73 2e 00 53 74 61 72 74 69 6e 67 20 66 72 6f 6d 20 56 79 4f 53 20 31 2e 34 2d | eleases..Starting.from.VyOS.1.4- |
| 80360 | 72 6f 6c 6c 69 6e 67 2d 32 30 32 33 30 38 30 34 30 35 35 37 2c 20 61 20 6e 65 77 20 66 69 72 65 | rolling-202308040557,.a.new.fire |
| 80380 | 77 61 6c 6c 20 73 74 72 75 63 74 75 72 65 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 6f 6e 20 61 | wall.structure.can.be.found.on.a |
| 803a0 | 6c 6c 20 76 79 6f 73 20 69 6e 73 74 61 6c 61 74 69 6f 6e 73 2e 20 5a 6f 6e 65 20 62 61 73 65 64 | ll.vyos.instalations..Zone.based |
| 803c0 | 20 66 69 72 65 77 61 6c 6c 20 77 61 73 20 72 65 6d 6f 76 65 64 20 69 6e 20 74 68 61 74 20 76 65 | .firewall.was.removed.in.that.ve |
| 803e0 | 72 73 69 6f 6e 2c 20 62 75 74 20 72 65 20 69 6e 74 72 6f 64 75 63 65 64 20 69 6e 20 56 79 4f 53 | rsion,.but.re.introduced.in.VyOS |
| 80400 | 20 31 2e 34 20 61 6e 64 20 31 2e 35 2e 20 41 6c 6c 20 76 65 72 73 69 6f 6e 73 20 62 75 69 6c 74 | .1.4.and.1.5..All.versions.built |
| 80420 | 20 61 66 74 65 72 20 32 30 32 33 2d 31 30 2d 32 32 20 68 61 73 20 74 68 69 73 20 66 65 61 74 75 | .after.2023-10-22.has.this.featu |
| 80440 | 72 65 2e 20 44 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 66 6f 72 20 6d 6f 73 74 20 6f 66 20 74 68 | re..Documentation.for.most.of.th |
| 80460 | 65 20 6e 65 77 20 66 69 72 65 77 61 6c 6c 20 43 4c 49 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 | e.new.firewall.CLI.can.be.found. |
| 80480 | 69 6e 20 74 68 65 20 60 66 69 72 65 77 61 6c 6c 20 3c 68 74 74 70 73 3a 2f 2f 64 6f 63 73 2e 76 | in.the.`firewall.<https://docs.v |
| 804a0 | 79 6f 73 2e 69 6f 2f 65 6e 2f 6c 61 74 65 73 74 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 66 | yos.io/en/latest/configuration/f |
| 804c0 | 69 72 65 77 61 6c 6c 2f 67 65 6e 65 72 61 6c 2e 68 74 6d 6c 3e 60 5f 20 63 68 61 70 74 65 72 2e | irewall/general.html>`_.chapter. |
| 804e0 | 20 54 68 65 20 6c 65 67 61 63 79 20 66 69 72 65 77 61 6c 6c 20 69 73 20 73 74 69 6c 6c 20 61 76 | .The.legacy.firewall.is.still.av |
| 80500 | 61 69 6c 61 62 6c 65 20 66 6f 72 20 76 65 72 73 69 6f 6e 73 20 62 65 66 6f 72 65 20 31 2e 34 2d | ailable.for.versions.before.1.4- |
| 80520 | 72 6f 6c 6c 69 6e 67 2d 32 30 32 33 30 38 30 34 30 35 35 37 20 61 6e 64 20 63 61 6e 20 62 65 20 | rolling-202308040557.and.can.be. |
| 80540 | 66 6f 75 6e 64 20 69 6e 20 74 68 65 20 3a 64 6f 63 3a 60 6c 65 67 61 63 79 20 66 69 72 65 77 61 | found.in.the.:doc:`legacy.firewa |
| 80560 | 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 3c 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e | ll.configuration.</configuration |
| 80580 | 2f 66 69 72 65 77 61 6c 6c 2f 67 65 6e 65 72 61 6c 2d 6c 65 67 61 63 79 3e 60 20 63 68 61 70 74 | /firewall/general-legacy>`.chapt |
| 805a0 | 65 72 2e 00 53 74 61 72 74 69 6e 67 20 66 72 6f 6d 20 56 79 4f 53 20 31 2e 34 2d 72 6f 6c 6c 69 | er..Starting.from.VyOS.1.4-rolli |
| 805c0 | 6e 67 2d 32 30 32 33 30 38 30 34 30 35 35 37 2c 20 61 20 6e 65 77 20 66 69 72 65 77 61 6c 6c 20 | ng-202308040557,.a.new.firewall. |
| 805e0 | 73 74 72 75 63 74 75 72 65 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 6f 6e 20 61 6c 6c 20 76 79 | structure.can.be.found.on.all.vy |
| 80600 | 6f 73 20 69 6e 73 74 61 6c 6c 61 74 69 6f 6e 73 2e 00 53 74 61 72 74 69 6e 67 20 66 72 6f 6d 20 | os.installations..Starting.from. |
| 80620 | 56 79 4f 53 20 31 2e 34 2d 72 6f 6c 6c 69 6e 67 2d 32 30 32 33 30 38 30 34 30 35 35 37 2c 20 61 | VyOS.1.4-rolling-202308040557,.a |
| 80640 | 20 6e 65 77 20 66 69 72 65 77 61 6c 6c 20 73 74 72 75 63 74 75 72 65 20 63 61 6e 20 62 65 20 66 | .new.firewall.structure.can.be.f |
| 80660 | 6f 75 6e 64 20 6f 6e 20 61 6c 6c 20 76 79 6f 73 20 69 6e 73 74 61 6c 6c 61 74 69 6f 6e 73 2e 20 | ound.on.all.vyos.installations.. |
| 80680 | 44 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 66 6f 72 20 6d 6f 73 74 20 6e 65 77 20 66 69 72 65 77 | Documentation.for.most.new.firew |
| 806a0 | 61 6c 6c 20 63 6c 69 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 68 65 72 65 3a 00 53 74 61 72 74 | all.cli.can.be.found.here:.Start |
| 806c0 | 69 6e 67 20 6f 66 20 77 69 74 68 20 56 79 4f 53 20 31 2e 33 20 28 65 71 75 75 6c 65 75 73 29 20 | ing.of.with.VyOS.1.3.(equuleus). |
| 806e0 | 77 65 20 61 64 64 65 64 20 73 75 70 70 6f 72 74 20 66 6f 72 20 72 75 6e 6e 69 6e 67 20 56 79 4f | we.added.support.for.running.VyO |
| 80700 | 53 20 61 73 20 61 6e 20 4f 75 74 2d 6f 66 2d 42 61 6e 64 20 4d 61 6e 61 67 65 6d 65 6e 74 20 64 | S.as.an.Out-of-Band.Management.d |
| 80720 | 65 76 69 63 65 20 77 68 69 63 68 20 70 72 6f 76 69 64 65 73 20 72 65 6d 6f 74 65 20 61 63 63 65 | evice.which.provides.remote.acce |
| 80740 | 73 73 20 62 79 20 6d 65 61 6e 73 20 6f 66 20 53 53 48 20 74 6f 20 64 69 72 65 63 74 6c 79 20 61 | ss.by.means.of.SSH.to.directly.a |
| 80760 | 74 74 61 63 68 65 64 20 73 65 72 69 61 6c 20 69 6e 74 65 72 66 61 63 65 73 2e 00 53 74 61 72 74 | ttached.serial.interfaces..Start |
| 80780 | 69 6e 67 20 77 69 74 68 20 56 79 4f 53 20 31 2e 32 20 61 20 3a 61 62 62 72 3a 60 6d 44 4e 53 20 | ing.with.VyOS.1.2.a.:abbr:`mDNS. |
| 807a0 | 28 4d 75 6c 74 69 63 61 73 74 20 44 4e 53 29 60 20 72 65 70 65 61 74 65 72 20 66 75 6e 63 74 69 | (Multicast.DNS)`.repeater.functi |
| 807c0 | 6f 6e 61 6c 69 74 79 20 69 73 20 70 72 6f 76 69 64 65 64 2e 20 41 64 64 69 74 69 6f 6e 61 6c 20 | onality.is.provided..Additional. |
| 807e0 | 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 63 61 6e 20 62 65 20 6f 62 74 61 69 6e 65 64 20 66 72 6f 6d | information.can.be.obtained.from |
| 80800 | 20 68 74 74 70 73 3a 2f 2f 65 6e 2e 77 69 6b 69 70 65 64 69 61 2e 6f 72 67 2f 77 69 6b 69 2f 4d | .https://en.wikipedia.org/wiki/M |
| 80820 | 75 6c 74 69 63 61 73 74 5f 44 4e 53 2e 00 53 74 61 74 69 63 00 53 74 61 74 69 63 20 3a 61 62 62 | ulticast_DNS..Static.Static.:abb |
| 80840 | 72 3a 60 53 41 4b 20 28 53 65 63 75 72 65 20 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 4b 65 | r:`SAK.(Secure.Authentication.Ke |
| 80860 | 79 29 60 20 6d 6f 64 65 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 6d 61 6e 75 61 | y)`.mode.can.be.configured.manua |
| 80880 | 6c 6c 79 20 6f 6e 20 65 61 63 68 20 64 65 76 69 63 65 20 77 69 73 68 69 6e 67 20 74 6f 20 75 73 | lly.on.each.device.wishing.to.us |
| 808a0 | 65 20 4d 41 43 73 65 63 2e 20 4b 65 79 73 20 6d 75 73 74 20 62 65 20 73 65 74 20 73 74 61 74 69 | e.MACsec..Keys.must.be.set.stati |
| 808c0 | 63 61 6c 6c 79 20 6f 6e 20 61 6c 6c 20 64 65 76 69 63 65 73 20 66 6f 72 20 74 72 61 66 66 69 63 | cally.on.all.devices.for.traffic |
| 808e0 | 20 74 6f 20 66 6c 6f 77 20 70 72 6f 70 65 72 6c 79 2e 20 4b 65 79 20 72 6f 74 61 74 69 6f 6e 20 | .to.flow.properly..Key.rotation. |
| 80900 | 69 73 20 64 65 70 65 6e 64 65 6e 74 20 6f 6e 20 74 68 65 20 61 64 6d 69 6e 69 73 74 72 61 74 6f | is.dependent.on.the.administrato |
| 80920 | 72 20 75 70 64 61 74 69 6e 67 20 61 6c 6c 20 6b 65 79 73 20 6d 61 6e 75 61 6c 6c 79 20 61 63 72 | r.updating.all.keys.manually.acr |
| 80940 | 6f 73 73 20 63 6f 6e 6e 65 63 74 65 64 20 64 65 76 69 63 65 73 2e 20 53 74 61 74 69 63 20 53 41 | oss.connected.devices..Static.SA |
| 80960 | 4b 20 6d 6f 64 65 20 63 61 6e 20 6e 6f 74 20 62 65 20 75 73 65 64 20 77 69 74 68 20 4d 4b 41 2e | K.mode.can.not.be.used.with.MKA. |
| 80980 | 00 53 74 61 74 69 63 20 44 48 43 50 20 49 50 20 61 64 64 72 65 73 73 20 61 73 73 69 67 6e 20 74 | .Static.DHCP.IP.address.assign.t |
| 809a0 | 6f 20 68 6f 73 74 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 60 3c 64 65 73 63 72 69 70 74 69 | o.host.identified.by.`<descripti |
| 809c0 | 6f 6e 3e 60 2e 20 49 50 20 61 64 64 72 65 73 73 20 6d 75 73 74 20 62 65 20 69 6e 73 69 64 65 20 | on>`..IP.address.must.be.inside. |
| 809e0 | 74 68 65 20 60 3c 73 75 62 6e 65 74 3e 60 20 77 68 69 63 68 20 69 73 20 64 65 66 69 6e 65 64 20 | the.`<subnet>`.which.is.defined. |
| 80a00 | 62 75 74 20 63 61 6e 20 62 65 20 6f 75 74 73 69 64 65 20 74 68 65 20 64 79 6e 61 6d 69 63 20 72 | but.can.be.outside.the.dynamic.r |
| 80a20 | 61 6e 67 65 20 63 72 65 61 74 65 64 20 77 69 74 68 20 3a 63 66 67 63 6d 64 3a 60 73 65 74 20 73 | ange.created.with.:cfgcmd:`set.s |
| 80a40 | 65 72 76 69 63 65 20 64 68 63 70 2d 73 65 72 76 65 72 20 73 68 61 72 65 64 2d 6e 65 74 77 6f 72 | ervice.dhcp-server.shared-networ |
| 80a60 | 6b 2d 6e 61 6d 65 20 3c 6e 61 6d 65 3e 20 73 75 62 6e 65 74 20 3c 73 75 62 6e 65 74 3e 20 72 61 | k-name.<name>.subnet.<subnet>.ra |
| 80a80 | 6e 67 65 20 3c 6e 3e 60 2e 20 49 66 20 6e 6f 20 69 70 2d 61 64 64 72 65 73 73 20 69 73 20 73 70 | nge.<n>`..If.no.ip-address.is.sp |
| 80aa0 | 65 63 69 66 69 65 64 2c 20 61 6e 20 49 50 20 66 72 6f 6d 20 74 68 65 20 64 79 6e 61 6d 69 63 20 | ecified,.an.IP.from.the.dynamic. |
| 80ac0 | 70 6f 6f 6c 20 69 73 20 75 73 65 64 2e 00 53 74 61 74 69 63 20 48 6f 73 74 6e 61 6d 65 20 4d 61 | pool.is.used..Static.Hostname.Ma |
| 80ae0 | 70 70 69 6e 67 00 53 74 61 74 69 63 20 4b 65 79 73 00 53 74 61 74 69 63 20 52 6f 75 74 65 73 00 | pping.Static.Keys.Static.Routes. |
| 80b00 | 53 74 61 74 69 63 20 52 6f 75 74 69 6e 67 20 6f 72 20 6f 74 68 65 72 20 64 79 6e 61 6d 69 63 20 | Static.Routing.or.other.dynamic. |
| 80b20 | 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 73 20 63 61 6e 20 62 65 20 75 73 65 64 20 6f 76 | routing.protocols.can.be.used.ov |
| 80b40 | 65 72 20 74 68 65 20 76 74 75 6e 20 69 6e 74 65 72 66 61 63 65 00 53 74 61 74 69 63 20 52 6f 75 | er.the.vtun.interface.Static.Rou |
| 80b60 | 74 69 6e 67 3a 00 53 74 61 74 69 63 20 6d 61 70 70 69 6e 67 73 00 53 74 61 74 69 63 20 6d 61 70 | ting:.Static.mappings.Static.map |
| 80b80 | 70 69 6e 67 73 20 61 72 65 6e 27 74 20 73 68 6f 77 6e 2e 20 54 6f 20 73 68 6f 77 20 61 6c 6c 20 | pings.aren't.shown..To.show.all. |
| 80ba0 | 73 74 61 74 65 73 2c 20 75 73 65 20 60 60 73 68 6f 77 20 64 68 63 70 20 73 65 72 76 65 72 20 6c | states,.use.``show.dhcp.server.l |
| 80bc0 | 65 61 73 65 73 20 73 74 61 74 65 20 61 6c 6c 60 60 2e 00 53 74 61 74 69 63 20 72 6f 75 74 65 73 | eases.state.all``..Static.routes |
| 80be0 | 20 61 72 65 20 6d 61 6e 75 61 6c 6c 79 20 63 6f 6e 66 69 67 75 72 65 64 20 72 6f 75 74 65 73 2c | .are.manually.configured.routes, |
| 80c00 | 20 77 68 69 63 68 2c 20 69 6e 20 67 65 6e 65 72 61 6c 2c 20 63 61 6e 6e 6f 74 20 62 65 20 75 70 | .which,.in.general,.cannot.be.up |
| 80c20 | 64 61 74 65 64 20 64 79 6e 61 6d 69 63 61 6c 6c 79 20 66 72 6f 6d 20 69 6e 66 6f 72 6d 61 74 69 | dated.dynamically.from.informati |
| 80c40 | 6f 6e 20 56 79 4f 53 20 6c 65 61 72 6e 73 20 61 62 6f 75 74 20 74 68 65 20 6e 65 74 77 6f 72 6b | on.VyOS.learns.about.the.network |
| 80c60 | 20 74 6f 70 6f 6c 6f 67 79 20 66 72 6f 6d 20 6f 74 68 65 72 20 72 6f 75 74 69 6e 67 20 70 72 6f | .topology.from.other.routing.pro |
| 80c80 | 74 6f 63 6f 6c 73 2e 20 48 6f 77 65 76 65 72 2c 20 69 66 20 61 20 6c 69 6e 6b 20 66 61 69 6c 73 | tocols..However,.if.a.link.fails |
| 80ca0 | 2c 20 74 68 65 20 72 6f 75 74 65 72 20 77 69 6c 6c 20 72 65 6d 6f 76 65 20 72 6f 75 74 65 73 2c | ,.the.router.will.remove.routes, |
| 80cc0 | 20 69 6e 63 6c 75 64 69 6e 67 20 73 74 61 74 69 63 20 72 6f 75 74 65 73 2c 20 66 72 6f 6d 20 74 | .including.static.routes,.from.t |
| 80ce0 | 68 65 20 3a 61 62 62 72 3a 60 52 49 50 42 20 28 52 6f 75 74 69 6e 67 20 49 6e 66 6f 72 6d 61 74 | he.:abbr:`RIPB.(Routing.Informat |
| 80d00 | 69 6f 6e 20 42 61 73 65 29 60 20 74 68 61 74 20 75 73 65 64 20 74 68 69 73 20 69 6e 74 65 72 66 | ion.Base)`.that.used.this.interf |
| 80d20 | 61 63 65 20 74 6f 20 72 65 61 63 68 20 74 68 65 20 6e 65 78 74 20 68 6f 70 2e 20 49 6e 20 67 65 | ace.to.reach.the.next.hop..In.ge |
| 80d40 | 6e 65 72 61 6c 2c 20 73 74 61 74 69 63 20 72 6f 75 74 65 73 20 73 68 6f 75 6c 64 20 6f 6e 6c 79 | neral,.static.routes.should.only |
| 80d60 | 20 62 65 20 75 73 65 64 20 66 6f 72 20 76 65 72 79 20 73 69 6d 70 6c 65 20 6e 65 74 77 6f 72 6b | .be.used.for.very.simple.network |
| 80d80 | 20 74 6f 70 6f 6c 6f 67 69 65 73 2c 20 6f 72 20 74 6f 20 6f 76 65 72 72 69 64 65 20 74 68 65 20 | .topologies,.or.to.override.the. |
| 80da0 | 62 65 68 61 76 69 6f 72 20 6f 66 20 61 20 64 79 6e 61 6d 69 63 20 72 6f 75 74 69 6e 67 20 70 72 | behavior.of.a.dynamic.routing.pr |
| 80dc0 | 6f 74 6f 63 6f 6c 20 66 6f 72 20 61 20 73 6d 61 6c 6c 20 6e 75 6d 62 65 72 20 6f 66 20 72 6f 75 | otocol.for.a.small.number.of.rou |
| 80de0 | 74 65 73 2e 20 54 68 65 20 63 6f 6c 6c 65 63 74 69 6f 6e 20 6f 66 20 61 6c 6c 20 72 6f 75 74 65 | tes..The.collection.of.all.route |
| 80e00 | 73 20 74 68 65 20 72 6f 75 74 65 72 20 68 61 73 20 6c 65 61 72 6e 65 64 20 66 72 6f 6d 20 69 74 | s.the.router.has.learned.from.it |
| 80e20 | 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 72 20 66 72 6f 6d 20 69 74 73 20 64 79 6e 61 | s.configuration.or.from.its.dyna |
| 80e40 | 6d 69 63 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 73 20 69 73 20 73 74 6f 72 65 64 20 | mic.routing.protocols.is.stored. |
| 80e60 | 69 6e 20 74 68 65 20 52 49 42 2e 20 55 6e 69 63 61 73 74 20 72 6f 75 74 65 73 20 61 72 65 20 64 | in.the.RIB..Unicast.routes.are.d |
| 80e80 | 69 72 65 63 74 6c 79 20 75 73 65 64 20 74 6f 20 64 65 74 65 72 6d 69 6e 65 20 74 68 65 20 66 6f | irectly.used.to.determine.the.fo |
| 80ea0 | 72 77 61 72 64 69 6e 67 20 74 61 62 6c 65 20 75 73 65 64 20 66 6f 72 20 75 6e 69 63 61 73 74 20 | rwarding.table.used.for.unicast. |
| 80ec0 | 70 61 63 6b 65 74 20 66 6f 72 77 61 72 64 69 6e 67 2e 00 53 74 61 74 69 63 20 72 6f 75 74 65 73 | packet.forwarding..Static.routes |
| 80ee0 | 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 72 65 66 65 72 65 6e 63 69 6e 67 20 74 | .can.be.configured.referencing.t |
| 80f00 | 68 65 20 74 75 6e 6e 65 6c 20 69 6e 74 65 72 66 61 63 65 3b 20 66 6f 72 20 65 78 61 6d 70 6c 65 | he.tunnel.interface;.for.example |
| 80f20 | 2c 20 74 68 65 20 6c 6f 63 61 6c 20 72 6f 75 74 65 72 20 77 69 6c 6c 20 75 73 65 20 61 20 6e 65 | ,.the.local.router.will.use.a.ne |
| 80f40 | 74 77 6f 72 6b 20 6f 66 20 31 30 2e 30 2e 30 2e 30 2f 31 36 2c 20 77 68 69 6c 65 20 74 68 65 20 | twork.of.10.0.0.0/16,.while.the. |
| 80f60 | 72 65 6d 6f 74 65 20 68 61 73 20 61 20 6e 65 74 77 6f 72 6b 20 6f 66 20 31 30 2e 31 2e 30 2e 30 | remote.has.a.network.of.10.1.0.0 |
| 80f80 | 2f 31 36 3a 00 53 74 61 74 69 6f 6e 20 6d 6f 64 65 20 61 63 74 73 20 61 73 20 61 20 57 69 2d 46 | /16:.Station.mode.acts.as.a.Wi-F |
| 80fa0 | 69 20 63 6c 69 65 6e 74 20 61 63 63 65 73 73 69 6e 67 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 74 | i.client.accessing.the.network.t |
| 80fc0 | 68 72 6f 75 67 68 20 61 6e 20 61 76 61 69 6c 61 62 6c 65 20 57 41 50 00 53 74 61 74 69 6f 6e 20 | hrough.an.available.WAP.Station. |
| 80fe0 | 73 75 70 70 6f 72 74 73 20 72 65 63 65 69 76 69 6e 67 20 56 48 54 20 76 61 72 69 61 6e 74 20 48 | supports.receiving.VHT.variant.H |
| 81000 | 54 20 43 6f 6e 74 72 6f 6c 20 66 69 65 6c 64 00 53 74 61 74 75 73 00 53 74 69 63 6b 79 20 43 6f | T.Control.field.Status.Sticky.Co |
| 81020 | 6e 6e 65 63 74 69 6f 6e 73 00 53 74 6f 72 61 67 65 20 6f 66 20 72 6f 75 74 65 20 75 70 64 61 74 | nnections.Storage.of.route.updat |
| 81040 | 65 73 20 75 73 65 73 20 6d 65 6d 6f 72 79 2e 20 49 66 20 79 6f 75 20 65 6e 61 62 6c 65 20 73 6f | es.uses.memory..If.you.enable.so |
| 81060 | 66 74 20 72 65 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 6e 62 6f 75 6e 64 20 66 6f 72 20 6d | ft.reconfiguration.inbound.for.m |
| 81080 | 75 6c 74 69 70 6c 65 20 6e 65 69 67 68 62 6f 72 73 2c 20 74 68 65 20 61 6d 6f 75 6e 74 20 6f 66 | ultiple.neighbors,.the.amount.of |
| 810a0 | 20 6d 65 6d 6f 72 79 20 75 73 65 64 20 63 61 6e 20 62 65 63 6f 6d 65 20 73 69 67 6e 69 66 69 63 | .memory.used.can.become.signific |
| 810c0 | 61 6e 74 2e 00 53 75 66 66 69 78 65 73 00 53 75 6d 6d 61 72 69 73 61 74 69 6f 6e 20 73 74 61 72 | ant..Suffixes.Summarisation.star |
| 810e0 | 74 73 20 6f 6e 6c 79 20 61 66 74 65 72 20 74 68 69 73 20 64 65 6c 61 79 20 74 69 6d 65 72 20 65 | ts.only.after.this.delay.timer.e |
| 81100 | 78 70 69 72 79 2e 00 53 75 70 70 6f 72 74 65 64 20 4d 6f 64 75 6c 65 73 00 53 75 70 70 6f 72 74 | xpiry..Supported.Modules.Support |
| 81120 | 65 64 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 20 73 65 74 2e 00 53 75 70 70 6f 72 74 65 64 20 | ed.channel.width.set..Supported. |
| 81140 | 64 61 65 6d 6f 6e 73 3a 00 53 75 70 70 6f 72 74 65 64 20 69 6e 74 65 72 66 61 63 65 20 74 79 70 | daemons:.Supported.interface.typ |
| 81160 | 65 73 3a 00 53 75 70 70 6f 72 74 65 64 20 72 65 6d 6f 74 65 20 70 72 6f 74 6f 63 6f 6c 73 20 61 | es:.Supported.remote.protocols.a |
| 81180 | 72 65 20 46 54 50 2c 20 46 54 50 53 2c 20 48 54 54 50 2c 20 48 54 54 50 53 2c 20 53 43 50 2f 53 | re.FTP,.FTPS,.HTTP,.HTTPS,.SCP/S |
| 811a0 | 46 54 50 20 61 6e 64 20 54 46 54 50 2e 00 53 75 70 70 6f 72 74 65 64 20 76 65 72 73 69 6f 6e 73 | FTP.and.TFTP..Supported.versions |
| 811c0 | 20 6f 66 20 52 49 50 20 61 72 65 3a 00 53 75 70 70 6f 72 74 73 20 61 73 20 48 45 4c 50 45 52 20 | .of.RIP.are:.Supports.as.HELPER. |
| 811e0 | 66 6f 72 20 63 6f 6e 66 69 67 75 72 65 64 20 67 72 61 63 65 20 70 65 72 69 6f 64 2e 00 53 75 70 | for.configured.grace.period..Sup |
| 81200 | 70 6f 73 65 20 74 68 65 20 4c 45 46 54 20 72 6f 75 74 65 72 20 68 61 73 20 65 78 74 65 72 6e 61 | pose.the.LEFT.router.has.externa |
| 81220 | 6c 20 61 64 64 72 65 73 73 20 31 39 32 2e 30 2e 32 2e 31 30 20 6f 6e 20 69 74 73 20 65 74 68 30 | l.address.192.0.2.10.on.its.eth0 |
| 81240 | 20 69 6e 74 65 72 66 61 63 65 2c 20 61 6e 64 20 74 68 65 20 52 49 47 48 54 20 72 6f 75 74 65 72 | .interface,.and.the.RIGHT.router |
| 81260 | 20 69 73 20 32 30 33 2e 30 2e 31 31 33 2e 34 35 00 53 75 70 70 6f 73 65 20 79 6f 75 20 77 61 6e | .is.203.0.113.45.Suppose.you.wan |
| 81280 | 74 20 74 6f 20 75 73 65 20 31 30 2e 32 33 2e 31 2e 30 2f 32 34 20 6e 65 74 77 6f 72 6b 20 66 6f | t.to.use.10.23.1.0/24.network.fo |
| 812a0 | 72 20 63 6c 69 65 6e 74 20 74 75 6e 6e 65 6c 20 65 6e 64 70 6f 69 6e 74 73 20 61 6e 64 20 61 6c | r.client.tunnel.endpoints.and.al |
| 812c0 | 6c 20 63 6c 69 65 6e 74 20 73 75 62 6e 65 74 73 20 62 65 6c 6f 6e 67 20 74 6f 20 31 30 2e 32 33 | l.client.subnets.belong.to.10.23 |
| 812e0 | 2e 30 2e 30 2f 32 30 2e 20 41 6c 6c 20 63 6c 69 65 6e 74 73 20 6e 65 65 64 20 61 63 63 65 73 73 | .0.0/20..All.clients.need.access |
| 81300 | 20 74 6f 20 74 68 65 20 31 39 32 2e 31 36 38 2e 30 2e 30 2f 31 36 20 6e 65 74 77 6f 72 6b 2e 00 | .to.the.192.168.0.0/16.network.. |
| 81320 | 53 75 70 70 72 65 73 73 20 73 65 6e 64 69 6e 67 20 43 61 70 61 62 69 6c 69 74 79 20 4e 65 67 6f | Suppress.sending.Capability.Nego |
| 81340 | 74 69 61 74 69 6f 6e 20 61 73 20 4f 50 45 4e 20 6d 65 73 73 61 67 65 20 6f 70 74 69 6f 6e 61 6c | tiation.as.OPEN.message.optional |
| 81360 | 20 70 61 72 61 6d 65 74 65 72 20 74 6f 20 74 68 65 20 70 65 65 72 2e 20 54 68 69 73 20 63 6f 6d | .parameter.to.the.peer..This.com |
| 81380 | 6d 61 6e 64 20 6f 6e 6c 79 20 61 66 66 65 63 74 73 20 74 68 65 20 70 65 65 72 20 69 73 20 63 6f | mand.only.affects.the.peer.is.co |
| 813a0 | 6e 66 69 67 75 72 65 64 20 6f 74 68 65 72 20 74 68 61 6e 20 49 50 76 34 20 75 6e 69 63 61 73 74 | nfigured.other.than.IPv4.unicast |
| 813c0 | 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 53 75 72 69 63 61 74 61 20 46 65 61 74 75 72 65 | .configuration..Suricata.Feature |
| 813e0 | 73 00 53 75 72 69 63 61 74 61 20 61 6e 64 20 56 79 4f 53 20 61 72 65 20 70 6f 77 65 72 66 75 6c | s.Suricata.and.VyOS.are.powerful |
| 81400 | 20 74 6f 6f 6c 73 20 66 6f 72 20 65 6e 73 75 72 69 6e 67 20 6e 65 74 77 6f 72 6b 20 73 65 63 75 | .tools.for.ensuring.network.secu |
| 81420 | 72 69 74 79 20 61 6e 64 20 74 72 61 66 66 69 63 20 6d 61 6e 61 67 65 6d 65 6e 74 2e 20 53 75 72 | rity.and.traffic.management..Sur |
| 81440 | 69 63 61 74 61 20 69 73 20 61 6e 20 6f 70 65 6e 2d 73 6f 75 72 63 65 20 69 6e 74 72 75 73 69 6f | icata.is.an.open-source.intrusio |
| 81460 | 6e 20 64 65 74 65 63 74 69 6f 6e 20 61 6e 64 20 70 72 65 76 65 6e 74 69 6f 6e 20 73 79 73 74 65 | n.detection.and.prevention.syste |
| 81480 | 6d 20 28 49 44 53 2f 49 50 53 29 20 74 68 61 74 20 61 6e 61 6c 79 7a 65 73 20 6e 65 74 77 6f 72 | m.(IDS/IPS).that.analyzes.networ |
| 814a0 | 6b 20 70 61 63 6b 65 74 73 20 69 6e 20 72 65 61 6c 2d 74 69 6d 65 2e 00 53 79 6e 61 6d 69 63 20 | k.packets.in.real-time..Synamic. |
| 814c0 | 69 6e 73 74 72 75 63 74 73 20 74 6f 20 66 6f 72 77 61 72 64 20 74 6f 20 61 6c 6c 20 70 65 65 72 | instructs.to.forward.to.all.peer |
| 814e0 | 73 20 77 68 69 63 68 20 77 65 20 68 61 76 65 20 61 20 64 69 72 65 63 74 20 63 6f 6e 6e 65 63 74 | s.which.we.have.a.direct.connect |
| 81500 | 69 6f 6e 20 77 69 74 68 2e 20 41 6c 74 65 72 6e 61 74 69 76 65 6c 79 2c 20 79 6f 75 20 63 61 6e | ion.with..Alternatively,.you.can |
| 81520 | 20 73 70 65 63 69 66 79 20 74 68 65 20 64 69 72 65 63 74 69 76 65 20 6d 75 6c 74 69 70 6c 65 20 | .specify.the.directive.multiple. |
| 81540 | 74 69 6d 65 73 20 66 6f 72 20 65 61 63 68 20 70 72 6f 74 6f 63 6f 6c 2d 61 64 64 72 65 73 73 20 | times.for.each.protocol-address. |
| 81560 | 74 68 65 20 6d 75 6c 74 69 63 61 73 74 20 74 72 61 66 66 69 63 20 73 68 6f 75 6c 64 20 62 65 20 | the.multicast.traffic.should.be. |
| 81580 | 73 65 6e 74 20 74 6f 2e 00 53 79 6e 63 20 67 72 6f 75 70 73 00 53 79 6e 63 68 72 6f 6e 69 7a 65 | sent.to..Sync.groups.Synchronize |
| 815a0 | 20 74 68 65 20 74 69 6d 65 2d 7a 6f 6e 65 20 61 6e 64 20 4f 53 50 46 20 63 6f 6e 66 69 67 75 72 | .the.time-zone.and.OSPF.configur |
| 815c0 | 61 74 69 6f 6e 20 66 72 6f 6d 20 52 6f 75 74 65 72 20 41 20 74 6f 20 52 6f 75 74 65 72 20 42 00 | ation.from.Router.A.to.Router.B. |
| 815e0 | 53 79 6e 70 72 6f 78 79 00 53 79 6e 70 72 6f 78 79 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 00 53 79 | Synproxy.Synproxy.connections.Sy |
| 81600 | 6e 70 72 6f 78 79 20 72 65 6c 69 65 73 20 6f 6e 20 73 79 6e 63 6f 6f 6b 69 65 73 20 61 6e 64 20 | nproxy.relies.on.syncookies.and. |
| 81620 | 54 43 50 20 74 69 6d 65 73 74 61 6d 70 73 2c 20 65 6e 73 75 72 65 20 74 68 65 73 65 20 61 72 65 | TCP.timestamps,.ensure.these.are |
| 81640 | 20 65 6e 61 62 6c 65 64 00 53 79 6e 74 61 78 20 68 61 73 20 63 68 61 6e 67 65 64 20 66 72 6f 6d | .enabled.Syntax.has.changed.from |
| 81660 | 20 56 79 4f 53 20 31 2e 32 20 28 63 72 75 78 29 20 61 6e 64 20 69 74 20 77 69 6c 6c 20 62 65 20 | .VyOS.1.2.(crux).and.it.will.be. |
| 81680 | 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 6d 69 67 72 61 74 65 64 20 64 75 72 69 6e 67 20 61 6e | automatically.migrated.during.an |
| 816a0 | 20 75 70 67 72 61 64 65 2e 00 53 79 73 63 74 6c 00 53 79 73 6c 6f 67 00 53 79 73 6c 6f 67 20 73 | .upgrade..Sysctl.Syslog.Syslog.s |
| 816c0 | 75 70 70 6f 72 74 73 20 6c 6f 67 67 69 6e 67 20 74 6f 20 6d 75 6c 74 69 70 6c 65 20 74 61 72 67 | upports.logging.to.multiple.targ |
| 816e0 | 65 74 73 2c 20 74 68 6f 73 65 20 74 61 72 67 65 74 73 20 63 6f 75 6c 64 20 62 65 20 61 20 70 6c | ets,.those.targets.could.be.a.pl |
| 81700 | 61 69 6e 20 66 69 6c 65 20 6f 6e 20 79 6f 75 72 20 56 79 4f 53 20 69 6e 73 74 61 6c 6c 61 74 69 | ain.file.on.your.VyOS.installati |
| 81720 | 6f 6e 20 69 74 73 65 6c 66 2c 20 61 20 73 65 72 69 61 6c 20 63 6f 6e 73 6f 6c 65 20 6f 72 20 61 | on.itself,.a.serial.console.or.a |
| 81740 | 20 72 65 6d 6f 74 65 20 73 79 73 6c 6f 67 20 73 65 72 76 65 72 20 77 68 69 63 68 20 69 73 20 72 | .remote.syslog.server.which.is.r |
| 81760 | 65 61 63 68 65 64 20 76 69 61 20 3a 61 62 62 72 3a 60 49 50 20 28 49 6e 74 65 72 6e 65 74 20 50 | eached.via.:abbr:`IP.(Internet.P |
| 81780 | 72 6f 74 6f 63 6f 6c 29 60 20 55 44 50 2f 54 43 50 2e 00 53 79 73 6c 6f 67 20 75 73 65 73 20 6c | rotocol)`.UDP/TCP..Syslog.uses.l |
| 817a0 | 6f 67 72 6f 74 61 74 65 20 74 6f 20 72 6f 74 61 74 65 20 6c 6f 67 66 69 6c 65 73 20 61 66 74 65 | ogrotate.to.rotate.logfiles.afte |
| 817c0 | 72 20 61 20 6e 75 6d 62 65 72 20 6f 66 20 67 69 76 65 73 20 62 79 74 65 73 2e 20 57 65 20 6b 65 | r.a.number.of.gives.bytes..We.ke |
| 817e0 | 65 70 20 61 73 20 6d 61 6e 79 20 61 73 20 60 3c 6e 75 6d 62 65 72 3e 60 20 72 6f 74 61 74 65 64 | ep.as.many.as.`<number>`.rotated |
| 81800 | 20 66 69 6c 65 20 62 65 66 6f 72 65 20 74 68 65 79 20 61 72 65 20 64 65 6c 65 74 65 64 20 6f 6e | .file.before.they.are.deleted.on |
| 81820 | 20 74 68 65 20 73 79 73 74 65 6d 2e 00 53 79 73 6c 6f 67 20 75 73 65 73 20 6c 6f 67 72 6f 74 61 | .the.system..Syslog.uses.logrota |
| 81840 | 74 65 20 74 6f 20 72 6f 74 61 74 65 20 6c 6f 67 69 6c 65 73 20 61 66 74 65 72 20 61 20 6e 75 6d | te.to.rotate.logiles.after.a.num |
| 81860 | 62 65 72 20 6f 66 20 67 69 76 65 73 20 62 79 74 65 73 2e 20 57 65 20 6b 65 65 70 20 61 73 20 6d | ber.of.gives.bytes..We.keep.as.m |
| 81880 | 61 6e 79 20 61 73 20 60 3c 6e 75 6d 62 65 72 3e 60 20 72 6f 74 61 74 65 64 20 66 69 6c 65 20 62 | any.as.`<number>`.rotated.file.b |
| 818a0 | 65 66 6f 72 65 20 74 68 65 79 20 61 72 65 20 64 65 6c 65 74 65 64 20 6f 6e 20 74 68 65 20 73 79 | efore.they.are.deleted.on.the.sy |
| 818c0 | 73 74 65 6d 2e 00 53 79 73 6c 6f 67 20 77 69 6c 6c 20 77 72 69 74 65 20 60 3c 73 69 7a 65 3e 60 | stem..Syslog.will.write.`<size>` |
| 818e0 | 20 6b 69 6c 6f 62 79 74 65 73 20 69 6e 74 6f 20 74 68 65 20 66 69 6c 65 20 73 70 65 63 69 66 69 | .kilobytes.into.the.file.specifi |
| 81900 | 65 64 20 62 79 20 60 3c 66 69 6c 65 6e 61 6d 65 3e 60 2e 20 41 66 74 65 72 20 74 68 69 73 20 6c | ed.by.`<filename>`..After.this.l |
| 81920 | 69 6d 69 74 20 68 61 73 20 62 65 65 6e 20 72 65 61 63 68 65 64 2c 20 74 68 65 20 63 75 73 74 6f | imit.has.been.reached,.the.custo |
| 81940 | 6d 20 66 69 6c 65 20 69 73 20 22 72 6f 74 61 74 65 64 22 20 62 79 20 6c 6f 67 72 6f 74 61 74 65 | m.file.is."rotated".by.logrotate |
| 81960 | 20 61 6e 64 20 61 20 6e 65 77 20 63 75 73 74 6f 6d 20 66 69 6c 65 20 69 73 20 63 72 65 61 74 65 | .and.a.new.custom.file.is.create |
| 81980 | 64 2e 00 53 79 73 74 65 6d 00 53 79 73 74 65 6d 20 44 4e 53 00 53 79 73 74 65 6d 20 44 69 73 70 | d..System.System.DNS.System.Disp |
| 819a0 | 6c 61 79 20 28 4c 43 44 29 00 53 79 73 74 65 6d 20 4e 61 6d 65 20 61 6e 64 20 44 65 73 63 72 69 | lay.(LCD).System.Name.and.Descri |
| 819c0 | 70 74 69 6f 6e 00 53 79 73 74 65 6d 20 50 72 6f 78 79 00 53 79 73 74 65 6d 20 57 69 64 65 20 63 | ption.System.Proxy.System.Wide.c |
| 819e0 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 53 79 73 74 65 6d 20 63 61 70 61 62 69 6c 69 74 69 65 73 | onfiguration.System.capabilities |
| 81a00 | 20 28 73 77 69 74 63 68 69 6e 67 2c 20 72 6f 75 74 69 6e 67 2c 20 65 74 63 2e 29 00 53 79 73 74 | .(switching,.routing,.etc.).Syst |
| 81a20 | 65 6d 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 73 00 53 79 73 74 65 6d | em.configuration.commands.System |
| 81a40 | 20 64 61 65 6d 6f 6e 73 00 53 79 73 74 65 6d 20 69 64 65 6e 74 69 66 69 65 72 3a 20 60 60 31 39 | .daemons.System.identifier:.``19 |
| 81a60 | 32 31 2e 36 38 30 30 2e 31 30 30 32 60 60 20 2d 20 66 6f 72 20 73 79 73 74 65 6d 20 69 64 65 6e | 21.6800.1002``.-.for.system.iden |
| 81a80 | 74 69 66 69 65 72 73 20 77 65 20 72 65 63 6f 6d 6d 65 6e 64 20 74 6f 20 75 73 65 20 49 50 20 61 | tifiers.we.recommend.to.use.IP.a |
| 81aa0 | 64 64 72 65 73 73 20 6f 72 20 4d 41 43 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 72 6f 75 | ddress.or.MAC.address.of.the.rou |
| 81ac0 | 74 65 72 20 69 74 73 65 6c 66 2e 20 54 68 65 20 77 61 79 20 74 6f 20 63 6f 6e 73 74 72 75 63 74 | ter.itself..The.way.to.construct |
| 81ae0 | 20 74 68 69 73 20 69 73 20 74 6f 20 6b 65 65 70 20 61 6c 6c 20 6f 66 20 74 68 65 20 7a 65 72 6f | .this.is.to.keep.all.of.the.zero |
| 81b00 | 65 73 20 6f 66 20 74 68 65 20 72 6f 75 74 65 72 20 49 50 20 61 64 64 72 65 73 73 2c 20 61 6e 64 | es.of.the.router.IP.address,.and |
| 81b20 | 20 74 68 65 6e 20 63 68 61 6e 67 65 20 74 68 65 20 70 65 72 69 6f 64 73 20 66 72 6f 6d 20 62 65 | .then.change.the.periods.from.be |
| 81b40 | 69 6e 67 20 65 76 65 72 79 20 74 68 72 65 65 20 6e 75 6d 62 65 72 73 20 74 6f 20 65 76 65 72 79 | ing.every.three.numbers.to.every |
| 81b60 | 20 66 6f 75 72 20 6e 75 6d 62 65 72 73 2e 20 54 68 65 20 61 64 64 72 65 73 73 20 74 68 61 74 20 | .four.numbers..The.address.that. |
| 81b80 | 69 73 20 6c 69 73 74 65 64 20 68 65 72 65 20 69 73 20 60 60 31 39 32 2e 31 36 38 2e 31 2e 32 60 | is.listed.here.is.``192.168.1.2` |
| 81ba0 | 60 2c 20 77 68 69 63 68 20 69 66 20 65 78 70 61 6e 64 65 64 20 77 69 6c 6c 20 74 75 72 6e 20 69 | `,.which.if.expanded.will.turn.i |
| 81bc0 | 6e 74 6f 20 60 60 31 39 32 2e 31 36 38 2e 30 30 31 2e 30 30 32 60 60 2e 20 54 68 65 6e 20 61 6c | nto.``192.168.001.002``..Then.al |
| 81be0 | 6c 20 6f 6e 65 20 68 61 73 20 74 6f 20 64 6f 20 69 73 20 6d 6f 76 65 20 74 68 65 20 64 6f 74 73 | l.one.has.to.do.is.move.the.dots |
| 81c00 | 20 74 6f 20 68 61 76 65 20 66 6f 75 72 20 6e 75 6d 62 65 72 73 20 69 6e 73 74 65 61 64 20 6f 66 | .to.have.four.numbers.instead.of |
| 81c20 | 20 74 68 72 65 65 2e 20 54 68 69 73 20 67 69 76 65 73 20 75 73 20 60 60 31 39 32 31 2e 36 38 30 | .three..This.gives.us.``1921.680 |
| 81c40 | 30 2e 31 30 30 32 60 60 2e 00 53 79 73 74 65 6d 20 69 64 65 6e 74 69 66 69 65 72 3a 20 60 60 31 | 0.1002``..System.identifier:.``1 |
| 81c60 | 39 32 31 2e 36 38 30 30 2e 31 30 30 32 60 60 20 2d 20 66 6f 72 20 73 79 73 74 65 6d 20 69 64 65 | 921.6800.1002``.-.for.system.ide |
| 81c80 | 74 69 66 69 65 72 73 20 77 65 20 72 65 63 6f 6d 6d 65 6e 64 20 74 6f 20 75 73 65 20 49 50 20 61 | tifiers.we.recommend.to.use.IP.a |
| 81ca0 | 64 64 72 65 73 73 20 6f 72 20 4d 41 43 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 72 6f 75 | ddress.or.MAC.address.of.the.rou |
| 81cc0 | 74 65 72 20 69 74 73 65 6c 66 2e 20 54 68 65 20 77 61 79 20 74 6f 20 63 6f 6e 73 74 72 75 63 74 | ter.itself..The.way.to.construct |
| 81ce0 | 20 74 68 69 73 20 69 73 20 74 6f 20 6b 65 65 70 20 61 6c 6c 20 6f 66 20 74 68 65 20 7a 65 72 6f | .this.is.to.keep.all.of.the.zero |
| 81d00 | 65 73 20 6f 66 20 74 68 65 20 72 6f 75 74 65 72 20 49 50 20 61 64 64 72 65 73 73 2c 20 61 6e 64 | es.of.the.router.IP.address,.and |
| 81d20 | 20 74 68 65 6e 20 63 68 61 6e 67 65 20 74 68 65 20 70 65 72 69 6f 64 73 20 66 72 6f 6d 20 62 65 | .then.change.the.periods.from.be |
| 81d40 | 69 6e 67 20 65 76 65 72 79 20 74 68 72 65 65 20 6e 75 6d 62 65 72 73 20 74 6f 20 65 76 65 72 79 | ing.every.three.numbers.to.every |
| 81d60 | 20 66 6f 75 72 20 6e 75 6d 62 65 72 73 2e 20 54 68 65 20 61 64 64 72 65 73 73 20 74 68 61 74 20 | .four.numbers..The.address.that. |
| 81d80 | 69 73 20 6c 69 73 74 65 64 20 68 65 72 65 20 69 73 20 60 60 31 39 32 2e 31 36 38 2e 31 2e 32 60 | is.listed.here.is.``192.168.1.2` |
| 81da0 | 60 2c 20 77 68 69 63 68 20 69 66 20 65 78 70 61 6e 64 65 64 20 77 69 6c 6c 20 74 75 72 6e 20 69 | `,.which.if.expanded.will.turn.i |
| 81dc0 | 6e 74 6f 20 60 60 31 39 32 2e 31 36 38 2e 30 30 31 2e 30 30 32 60 60 2e 20 54 68 65 6e 20 61 6c | nto.``192.168.001.002``..Then.al |
| 81de0 | 6c 20 6f 6e 65 20 68 61 73 20 74 6f 20 64 6f 20 69 73 20 6d 6f 76 65 20 74 68 65 20 64 6f 74 73 | l.one.has.to.do.is.move.the.dots |
| 81e00 | 20 74 6f 20 68 61 76 65 20 66 6f 75 72 20 6e 75 6d 62 65 72 73 20 69 6e 73 74 65 61 64 20 6f 66 | .to.have.four.numbers.instead.of |
| 81e20 | 20 74 68 72 65 65 2e 20 54 68 69 73 20 67 69 76 65 73 20 75 73 20 60 60 31 39 32 31 2e 36 38 30 | .three..This.gives.us.``1921.680 |
| 81e40 | 30 2e 31 30 30 32 60 60 2e 00 53 79 73 74 65 6d 20 69 73 20 75 6e 75 73 61 62 6c 65 20 2d 20 61 | 0.1002``..System.is.unusable.-.a |
| 81e60 | 20 70 61 6e 69 63 20 63 6f 6e 64 69 74 69 6f 6e 00 54 41 43 41 43 53 20 45 78 61 6d 70 6c 65 00 | .panic.condition.TACACS.Example. |
| 81e80 | 54 41 43 41 43 53 20 69 73 20 64 65 66 69 6e 65 64 20 69 6e 20 3a 72 66 63 3a 60 38 39 30 37 60 | TACACS.is.defined.in.:rfc:`8907` |
| 81ea0 | 2e 00 54 41 43 41 43 53 20 73 65 72 76 65 72 73 20 63 6f 75 6c 64 20 62 65 20 68 61 72 64 65 6e | ..TACACS.servers.could.be.harden |
| 81ec0 | 65 64 20 62 79 20 6f 6e 6c 79 20 61 6c 6c 6f 77 69 6e 67 20 63 65 72 74 61 69 6e 20 49 50 20 61 | ed.by.only.allowing.certain.IP.a |
| 81ee0 | 64 64 72 65 73 73 65 73 20 74 6f 20 63 6f 6e 6e 65 63 74 2e 20 41 73 20 6f 66 20 74 68 69 73 20 | ddresses.to.connect..As.of.this. |
| 81f00 | 74 68 65 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 6f 66 20 65 61 63 68 20 54 41 43 41 43 | the.source.address.of.each.TACAC |
| 81f20 | 53 20 71 75 65 72 79 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 2e 00 54 41 43 41 43 | S.query.can.be.configured..TACAC |
| 81f40 | 53 2b 00 54 42 44 00 54 43 50 20 26 20 55 44 50 20 73 65 72 76 69 63 65 73 20 72 75 6e 6e 69 6e | S+.TBD.TCP.&.UDP.services.runnin |
| 81f60 | 67 20 69 6e 20 74 68 65 20 64 65 66 61 75 6c 74 20 56 52 46 20 63 6f 6e 74 65 78 74 20 28 69 65 | g.in.the.default.VRF.context.(ie |
| 81f80 | 2e 2c 20 6e 6f 74 20 62 6f 75 6e 64 20 74 6f 20 61 6e 79 20 56 52 46 20 64 65 76 69 63 65 29 20 | .,.not.bound.to.any.VRF.device). |
| 81fa0 | 63 61 6e 20 77 6f 72 6b 20 61 63 72 6f 73 73 20 61 6c 6c 20 56 52 46 20 64 6f 6d 61 69 6e 73 20 | can.work.across.all.VRF.domains. |
| 81fc0 | 62 79 20 65 6e 61 62 6c 69 6e 67 20 74 68 69 73 20 6f 70 74 69 6f 6e 2e 00 54 43 50 20 63 68 65 | by.enabling.this.option..TCP.che |
| 81fe0 | 63 6b 73 00 54 46 54 50 20 53 65 72 76 65 72 00 54 61 67 20 69 73 20 74 68 65 20 6f 70 74 69 6f | cks.TFTP.Server.Tag.is.the.optio |
| 82000 | 6e 61 6c 20 70 61 72 61 6d 65 74 65 72 2e 20 49 66 20 74 61 67 20 63 6f 6e 66 69 67 75 72 65 64 | nal.parameter..If.tag.configured |
| 82020 | 20 53 75 6d 6d 61 72 79 20 72 6f 75 74 65 20 77 69 6c 6c 20 62 65 20 6f 72 69 67 69 6e 61 74 65 | .Summary.route.will.be.originate |
| 82040 | 64 20 77 69 74 68 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 74 61 67 2e 00 54 61 73 6b 20 | d.with.the.configured.tag..Task. |
| 82060 | 53 63 68 65 64 75 6c 65 72 00 54 65 6c 65 67 72 61 66 00 54 65 6c 65 67 72 61 66 20 63 61 6e 20 | Scheduler.Telegraf.Telegraf.can. |
| 82080 | 62 65 20 75 73 65 64 20 74 6f 20 73 65 6e 64 20 6c 6f 67 73 20 74 6f 20 4c 6f 6b 69 20 75 73 69 | be.used.to.send.logs.to.Loki.usi |
| 820a0 | 6e 67 20 74 61 67 73 20 61 73 20 6c 61 62 65 6c 73 2e 00 54 65 6c 65 67 72 61 66 20 6f 75 74 70 | ng.tags.as.labels..Telegraf.outp |
| 820c0 | 75 74 20 70 6c 75 67 69 6e 20 61 7a 75 72 65 2d 64 61 74 61 2d 65 78 70 6c 6f 72 65 72 5f 00 54 | ut.plugin.azure-data-explorer_.T |
| 820e0 | 65 6c 65 67 72 61 66 20 6f 75 74 70 75 74 20 70 6c 75 67 69 6e 20 70 72 6f 6d 65 74 68 65 75 73 | elegraf.output.plugin.prometheus |
| 82100 | 2d 63 6c 69 65 6e 74 5f 00 54 65 6c 65 67 72 61 66 20 6f 75 74 70 75 74 20 70 6c 75 67 69 6e 20 | -client_.Telegraf.output.plugin. |
| 82120 | 73 70 6c 75 6e 6b 5f 2e 20 48 54 54 50 20 45 76 65 6e 74 20 43 6f 6c 6c 65 63 74 6f 72 2e 00 54 | splunk_..HTTP.Event.Collector..T |
| 82140 | 65 6c 6c 20 50 49 4d 20 74 68 61 74 20 77 65 20 77 6f 75 6c 64 20 6e 6f 74 20 6c 69 6b 65 20 74 | ell.PIM.that.we.would.not.like.t |
| 82160 | 6f 20 75 73 65 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 70 72 6f 63 65 73 73 20 | o.use.this.interface.to.process. |
| 82180 | 62 6f 6f 74 73 74 72 61 70 20 6d 65 73 73 61 67 65 73 2e 00 54 65 6c 6c 20 50 49 4d 20 74 68 61 | bootstrap.messages..Tell.PIM.tha |
| 821a0 | 74 20 77 65 20 77 6f 75 6c 64 20 6e 6f 74 20 6c 69 6b 65 20 74 6f 20 75 73 65 20 74 68 69 73 20 | t.we.would.not.like.to.use.this. |
| 821c0 | 69 6e 74 65 72 66 61 63 65 20 74 6f 20 70 72 6f 63 65 73 73 20 75 6e 69 63 61 73 74 20 62 6f 6f | interface.to.process.unicast.boo |
| 821e0 | 74 73 74 72 61 70 20 6d 65 73 73 61 67 65 73 2e 00 54 65 6c 6c 20 68 6f 73 74 73 20 74 6f 20 75 | tstrap.messages..Tell.hosts.to.u |
| 82200 | 73 65 20 74 68 65 20 61 64 6d 69 6e 69 73 74 65 72 65 64 20 28 73 74 61 74 65 66 75 6c 29 20 70 | se.the.administered.(stateful).p |
| 82220 | 72 6f 74 6f 63 6f 6c 20 28 69 2e 65 2e 20 44 48 43 50 29 20 66 6f 72 20 61 75 74 6f 63 6f 6e 66 | rotocol.(i.e..DHCP).for.autoconf |
| 82240 | 69 67 75 72 61 74 69 6f 6e 20 6f 66 20 6f 74 68 65 72 20 28 6e 6f 6e 2d 61 64 64 72 65 73 73 29 | iguration.of.other.(non-address) |
| 82260 | 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 00 54 65 6c 6c 20 68 6f 73 74 73 20 74 6f 20 75 73 65 20 74 | .information.Tell.hosts.to.use.t |
| 82280 | 68 65 20 61 64 6d 69 6e 69 73 74 65 72 65 64 20 73 74 61 74 65 66 75 6c 20 70 72 6f 74 6f 63 6f | he.administered.stateful.protoco |
| 822a0 | 6c 20 28 69 2e 65 2e 20 44 48 43 50 29 20 66 6f 72 20 61 75 74 6f 63 6f 6e 66 69 67 75 72 61 74 | l.(i.e..DHCP).for.autoconfigurat |
| 822c0 | 69 6f 6e 00 54 65 6c 6c 20 74 68 65 20 41 50 20 74 68 61 74 20 61 6e 74 65 6e 6e 61 20 70 6f 73 | ion.Tell.the.AP.that.antenna.pos |
| 822e0 | 69 74 69 6f 6e 73 20 61 72 65 20 66 69 78 65 64 20 61 6e 64 20 77 69 6c 6c 20 6e 6f 74 20 63 68 | itions.are.fixed.and.will.not.ch |
| 82300 | 61 6e 67 65 20 64 75 72 69 6e 67 20 74 68 65 20 6c 69 66 65 74 69 6d 65 20 6f 66 20 61 6e 20 61 | ange.during.the.lifetime.of.an.a |
| 82320 | 73 73 6f 63 69 61 74 69 6f 6e 2e 00 54 65 6d 70 6f 72 61 72 79 20 64 69 73 61 62 6c 65 20 74 68 | ssociation..Temporary.disable.th |
| 82340 | 69 73 20 52 41 44 49 55 53 20 73 65 72 76 65 72 2e 00 54 65 6d 70 6f 72 61 72 79 20 64 69 73 61 | is.RADIUS.server..Temporary.disa |
| 82360 | 62 6c 65 20 74 68 69 73 20 52 41 44 49 55 53 20 73 65 72 76 65 72 2e 20 49 74 20 77 6f 6e 27 74 | ble.this.RADIUS.server..It.won't |
| 82380 | 20 62 65 20 71 75 65 72 69 65 64 2e 00 54 65 6d 70 6f 72 61 72 79 20 64 69 73 61 62 6c 65 20 74 | .be.queried..Temporary.disable.t |
| 823a0 | 68 69 73 20 54 41 43 41 43 53 20 73 65 72 76 65 72 2e 20 49 74 20 77 6f 6e 27 74 20 62 65 20 71 | his.TACACS.server..It.won't.be.q |
| 823c0 | 75 65 72 69 65 64 2e 00 54 65 72 6d 69 6e 61 74 65 20 53 53 4c 00 54 65 73 74 20 63 6f 6e 6e 65 | ueried..Terminate.SSL.Test.conne |
| 823e0 | 63 74 69 6e 67 20 67 69 76 65 6e 20 63 6f 6e 6e 65 63 74 69 6f 6e 2d 6f 72 69 65 6e 74 65 64 20 | cting.given.connection-oriented. |
| 82400 | 69 6e 74 65 72 66 61 63 65 2e 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 20 63 61 6e 20 62 65 20 | interface..`<interface>`.can.be. |
| 82420 | 60 60 70 70 70 6f 65 30 60 60 20 61 73 20 74 68 65 20 65 78 61 6d 70 6c 65 2e 00 54 65 73 74 20 | ``pppoe0``.as.the.example..Test. |
| 82440 | 63 6f 6e 6e 65 63 74 69 6e 67 20 67 69 76 65 6e 20 63 6f 6e 6e 65 63 74 69 6f 6e 2d 6f 72 69 65 | connecting.given.connection-orie |
| 82460 | 6e 74 65 64 20 69 6e 74 65 72 66 61 63 65 2e 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 20 63 61 | nted.interface..`<interface>`.ca |
| 82480 | 6e 20 62 65 20 60 60 73 73 74 70 63 30 60 60 20 61 73 20 74 68 65 20 65 78 61 6d 70 6c 65 2e 00 | n.be.``sstpc0``.as.the.example.. |
| 824a0 | 54 65 73 74 20 64 69 73 63 6f 6e 6e 65 63 74 69 6e 67 20 67 69 76 65 6e 20 63 6f 6e 6e 65 63 74 | Test.disconnecting.given.connect |
| 824c0 | 69 6f 6e 2d 6f 72 69 65 6e 74 65 64 20 69 6e 74 65 72 66 61 63 65 2e 20 60 3c 69 6e 74 65 72 66 | ion-oriented.interface..`<interf |
| 824e0 | 61 63 65 3e 60 20 63 61 6e 20 62 65 20 60 60 70 70 70 6f 65 30 60 60 20 61 73 20 74 68 65 20 65 | ace>`.can.be.``pppoe0``.as.the.e |
| 82500 | 78 61 6d 70 6c 65 2e 00 54 65 73 74 20 64 69 73 63 6f 6e 6e 65 63 74 69 6e 67 20 67 69 76 65 6e | xample..Test.disconnecting.given |
| 82520 | 20 63 6f 6e 6e 65 63 74 69 6f 6e 2d 6f 72 69 65 6e 74 65 64 20 69 6e 74 65 72 66 61 63 65 2e 20 | .connection-oriented.interface.. |
| 82540 | 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 20 63 61 6e 20 62 65 20 60 60 73 73 74 70 63 30 60 60 20 | `<interface>`.can.be.``sstpc0``. |
| 82560 | 61 73 20 74 68 65 20 65 78 61 6d 70 6c 65 2e 00 54 65 73 74 20 66 72 6f 6d 20 74 68 65 20 49 50 | as.the.example..Test.from.the.IP |
| 82580 | 76 36 20 6f 6e 6c 79 20 63 6c 69 65 6e 74 3a 00 54 65 73 74 69 6e 67 20 53 53 54 50 00 54 65 73 | v6.only.client:.Testing.SSTP.Tes |
| 825a0 | 74 69 6e 67 20 61 6e 64 20 56 61 6c 69 64 61 74 69 6f 6e 00 54 68 61 6e 6b 73 20 74 6f 20 74 68 | ting.and.Validation.Thanks.to.th |
| 825c0 | 69 73 20 64 69 73 63 6f 76 65 72 79 2c 20 61 6e 79 20 73 75 62 73 65 71 75 65 6e 74 20 74 72 61 | is.discovery,.any.subsequent.tra |
| 825e0 | 66 66 69 63 20 62 65 74 77 65 65 6e 20 50 43 34 20 61 6e 64 20 50 43 35 20 77 69 6c 6c 20 6e 6f | ffic.between.PC4.and.PC5.will.no |
| 82600 | 74 20 62 65 20 75 73 69 6e 67 20 74 68 65 20 6d 75 6c 74 69 63 61 73 74 2d 61 64 64 72 65 73 73 | t.be.using.the.multicast-address |
| 82620 | 20 62 65 74 77 65 65 6e 20 74 68 65 20 6c 65 61 76 65 73 20 61 73 20 74 68 65 79 20 62 6f 74 68 | .between.the.leaves.as.they.both |
| 82640 | 20 6b 6e 6f 77 20 62 65 68 69 6e 64 20 77 68 69 63 68 20 4c 65 61 66 20 74 68 65 20 50 43 73 20 | .know.behind.which.Leaf.the.PCs. |
| 82660 | 61 72 65 20 63 6f 6e 6e 65 63 74 65 64 2e 20 54 68 69 73 20 73 61 76 65 73 20 74 72 61 66 66 69 | are.connected..This.saves.traffi |
| 82680 | 63 20 61 73 20 6c 65 73 73 20 6d 75 6c 74 69 63 61 73 74 20 70 61 63 6b 65 74 73 20 73 65 6e 74 | c.as.less.multicast.packets.sent |
| 826a0 | 20 72 65 64 75 63 65 73 20 74 68 65 20 6c 6f 61 64 20 6f 6e 20 74 68 65 20 6e 65 74 77 6f 72 6b | .reduces.the.load.on.the.network |
| 826c0 | 2c 20 77 68 69 63 68 20 69 6d 70 72 6f 76 65 73 20 73 63 61 6c 61 62 69 6c 69 74 79 20 77 68 65 | ,.which.improves.scalability.whe |
| 826e0 | 6e 20 6d 6f 72 65 20 6c 65 61 76 65 73 20 61 72 65 20 61 64 64 65 64 2e 00 54 68 61 74 20 69 73 | n.more.leaves.are.added..That.is |
| 82700 | 20 68 6f 77 20 69 74 20 69 73 20 70 6f 73 73 69 62 6c 65 20 74 6f 20 64 6f 20 74 68 65 20 73 6f | .how.it.is.possible.to.do.the.so |
| 82720 | 2d 63 61 6c 6c 65 64 20 22 69 6e 67 72 65 73 73 20 73 68 61 70 69 6e 67 22 2e 00 54 68 61 74 20 | -called."ingress.shaping"..That. |
| 82740 | 6c 6f 6f 6b 73 20 67 6f 6f 64 20 2d 20 77 65 20 64 65 66 69 6e 65 64 20 32 20 74 75 6e 6e 65 6c | looks.good.-.we.defined.2.tunnel |
| 82760 | 73 20 61 6e 64 20 74 68 65 79 27 72 65 20 62 6f 74 68 20 75 70 20 61 6e 64 20 72 75 6e 6e 69 6e | s.and.they're.both.up.and.runnin |
| 82780 | 67 2e 00 54 68 65 20 3a 61 62 62 72 3a 60 41 53 4e 20 28 41 75 74 6f 6e 6f 6d 6f 75 73 20 53 79 | g..The.:abbr:`ASN.(Autonomous.Sy |
| 827a0 | 73 74 65 6d 20 4e 75 6d 62 65 72 29 60 20 69 73 20 6f 6e 65 20 6f 66 20 74 68 65 20 65 73 73 65 | stem.Number)`.is.one.of.the.esse |
| 827c0 | 6e 74 69 61 6c 20 65 6c 65 6d 65 6e 74 73 20 6f 66 20 42 47 50 2e 20 42 47 50 20 69 73 20 61 20 | ntial.elements.of.BGP..BGP.is.a. |
| 827e0 | 64 69 73 74 61 6e 63 65 20 76 65 63 74 6f 72 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c | distance.vector.routing.protocol |
| 82800 | 2c 20 61 6e 64 20 74 68 65 20 41 53 2d 50 61 74 68 20 66 72 61 6d 65 77 6f 72 6b 20 70 72 6f 76 | ,.and.the.AS-Path.framework.prov |
| 82820 | 69 64 65 73 20 64 69 73 74 61 6e 63 65 20 76 65 63 74 6f 72 20 6d 65 74 72 69 63 20 61 6e 64 20 | ides.distance.vector.metric.and. |
| 82840 | 6c 6f 6f 70 20 64 65 74 65 63 74 69 6f 6e 20 74 6f 20 42 47 50 2e 00 54 68 65 20 3a 61 62 62 72 | loop.detection.to.BGP..The.:abbr |
| 82860 | 3a 60 44 4e 50 54 76 36 20 28 44 65 73 74 69 6e 61 74 69 6f 6e 20 49 50 76 36 2d 74 6f 2d 49 50 | :`DNPTv6.(Destination.IPv6-to-IP |
| 82880 | 76 36 20 4e 65 74 77 6f 72 6b 20 50 72 65 66 69 78 20 54 72 61 6e 73 6c 61 74 69 6f 6e 29 60 20 | v6.Network.Prefix.Translation)`. |
| 828a0 | 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 | destination.address.translation. |
| 828c0 | 66 75 6e 63 74 69 6f 6e 20 69 73 20 75 73 65 64 20 69 6e 20 73 63 65 6e 61 72 69 6f 73 20 77 68 | function.is.used.in.scenarios.wh |
| 828e0 | 65 72 65 20 74 68 65 20 73 65 72 76 65 72 20 69 6e 20 74 68 65 20 69 6e 74 65 72 6e 61 6c 20 6e | ere.the.server.in.the.internal.n |
| 82900 | 65 74 77 6f 72 6b 20 70 72 6f 76 69 64 65 73 20 73 65 72 76 69 63 65 73 20 74 6f 20 74 68 65 20 | etwork.provides.services.to.the. |
| 82920 | 65 78 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 2c 20 73 75 63 68 20 61 73 20 70 72 6f 76 69 64 | external.network,.such.as.provid |
| 82940 | 69 6e 67 20 57 65 62 20 73 65 72 76 69 63 65 73 20 6f 72 20 46 54 50 20 73 65 72 76 69 63 65 73 | ing.Web.services.or.FTP.services |
| 82960 | 20 74 6f 20 74 68 65 20 65 78 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 2e 20 42 79 20 63 6f 6e | .to.the.external.network..By.con |
| 82980 | 66 69 67 75 72 69 6e 67 20 74 68 65 20 6d 61 70 70 69 6e 67 20 72 65 6c 61 74 69 6f 6e 73 68 69 | figuring.the.mapping.relationshi |
| 829a0 | 70 20 62 65 74 77 65 65 6e 20 74 68 65 20 69 6e 74 65 72 6e 61 6c 20 73 65 72 76 65 72 20 61 64 | p.between.the.internal.server.ad |
| 829c0 | 64 72 65 73 73 20 61 6e 64 20 74 68 65 20 65 78 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 20 61 | dress.and.the.external.network.a |
| 829e0 | 64 64 72 65 73 73 20 6f 6e 20 74 68 65 20 65 78 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 20 73 | ddress.on.the.external.network.s |
| 82a00 | 69 64 65 20 69 6e 74 65 72 66 61 63 65 20 6f 66 20 74 68 65 20 4e 41 54 36 36 20 64 65 76 69 63 | ide.interface.of.the.NAT66.devic |
| 82a20 | 65 2c 20 65 78 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 20 75 73 65 72 73 20 63 61 6e 20 61 63 | e,.external.network.users.can.ac |
| 82a40 | 63 65 73 73 20 74 68 65 20 69 6e 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 20 73 65 72 76 65 72 | cess.the.internal.network.server |
| 82a60 | 20 74 68 72 6f 75 67 68 20 74 68 65 20 64 65 73 69 67 6e 61 74 65 64 20 65 78 74 65 72 6e 61 6c | .through.the.designated.external |
| 82a80 | 20 6e 65 74 77 6f 72 6b 20 61 64 64 72 65 73 73 2e 00 54 68 65 20 3a 61 62 62 72 3a 60 4d 50 4c | .network.address..The.:abbr:`MPL |
| 82aa0 | 53 20 28 4d 75 6c 74 69 2d 50 72 6f 74 6f 63 6f 6c 20 4c 61 62 65 6c 20 53 77 69 74 63 68 69 6e | S.(Multi-Protocol.Label.Switchin |
| 82ac0 | 67 29 60 20 61 72 63 68 69 74 65 63 74 75 72 65 20 64 6f 65 73 20 6e 6f 74 20 61 73 73 75 6d 65 | g)`.architecture.does.not.assume |
| 82ae0 | 20 61 20 73 69 6e 67 6c 65 20 70 72 6f 74 6f 63 6f 6c 20 74 6f 20 63 72 65 61 74 65 20 4d 50 4c | .a.single.protocol.to.create.MPL |
| 82b00 | 53 20 70 61 74 68 73 2e 20 56 79 4f 53 20 73 75 70 70 6f 72 74 73 20 74 68 65 20 4c 61 62 65 6c | S.paths..VyOS.supports.the.Label |
| 82b20 | 20 44 69 73 74 72 69 62 75 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c 20 28 4c 44 50 29 20 61 73 20 | .Distribution.Protocol.(LDP).as. |
| 82b40 | 69 6d 70 6c 65 6d 65 6e 74 65 64 20 62 79 20 46 52 52 2c 20 62 61 73 65 64 20 6f 6e 20 3a 72 66 | implemented.by.FRR,.based.on.:rf |
| 82b60 | 63 3a 60 35 30 33 36 60 2e 00 54 68 65 20 3a 61 62 62 72 3a 60 57 4c 41 4e 20 28 57 69 72 65 6c | c:`5036`..The.:abbr:`WLAN.(Wirel |
| 82b80 | 65 73 73 20 4c 41 4e 29 60 20 69 6e 74 65 72 66 61 63 65 20 70 72 6f 76 69 64 65 73 20 38 30 32 | ess.LAN)`.interface.provides.802 |
| 82ba0 | 2e 31 31 20 28 61 2f 62 2f 67 2f 6e 2f 61 63 29 20 77 69 72 65 6c 65 73 73 20 73 75 70 70 6f 72 | .11.(a/b/g/n/ac).wireless.suppor |
| 82bc0 | 74 20 28 63 6f 6d 6d 6f 6e 6c 79 20 72 65 66 65 72 72 65 64 20 74 6f 20 61 73 20 57 69 2d 46 69 | t.(commonly.referred.to.as.Wi-Fi |
| 82be0 | 29 20 62 79 20 6d 65 61 6e 73 20 6f 66 20 63 6f 6d 70 61 74 69 62 6c 65 20 68 61 72 64 77 61 72 | ).by.means.of.compatible.hardwar |
| 82c00 | 65 2e 20 49 66 20 79 6f 75 72 20 68 61 72 64 77 61 72 65 20 73 75 70 70 6f 72 74 73 20 69 74 2c | e..If.your.hardware.supports.it, |
| 82c20 | 20 56 79 4f 53 20 73 75 70 70 6f 72 74 73 20 6d 75 6c 74 69 70 6c 65 20 6c 6f 67 69 63 61 6c 20 | .VyOS.supports.multiple.logical. |
| 82c40 | 77 69 72 65 6c 65 73 73 20 69 6e 74 65 72 66 61 63 65 73 20 70 65 72 20 70 68 79 73 69 63 61 6c | wireless.interfaces.per.physical |
| 82c60 | 20 64 65 76 69 63 65 2e 00 54 68 65 20 3a 72 65 66 3a 60 73 6f 75 72 63 65 2d 6e 61 74 36 36 60 | .device..The.:ref:`source-nat66` |
| 82c80 | 20 72 75 6c 65 20 72 65 70 6c 61 63 65 73 20 74 68 65 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 | .rule.replaces.the.source.addres |
| 82ca0 | 73 20 6f 66 20 74 68 65 20 70 61 63 6b 65 74 20 61 6e 64 20 63 61 6c 63 75 6c 61 74 65 73 20 74 | s.of.the.packet.and.calculates.t |
| 82cc0 | 68 65 20 63 6f 6e 76 65 72 74 65 64 20 61 64 64 72 65 73 73 20 75 73 69 6e 67 20 74 68 65 20 70 | he.converted.address.using.the.p |
| 82ce0 | 72 65 66 69 78 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 74 68 65 20 72 75 6c 65 2e 00 54 68 65 | refix.specified.in.the.rule..The |
| 82d00 | 20 41 52 50 20 6d 6f 6e 69 74 6f 72 20 77 6f 72 6b 73 20 62 79 20 70 65 72 69 6f 64 69 63 61 6c | .ARP.monitor.works.by.periodical |
| 82d20 | 6c 79 20 63 68 65 63 6b 69 6e 67 20 74 68 65 20 73 6c 61 76 65 20 64 65 76 69 63 65 73 20 74 6f | ly.checking.the.slave.devices.to |
| 82d40 | 20 64 65 74 65 72 6d 69 6e 65 20 77 68 65 74 68 65 72 20 74 68 65 79 20 68 61 76 65 20 73 65 6e | .determine.whether.they.have.sen |
| 82d60 | 74 20 6f 72 20 72 65 63 65 69 76 65 64 20 74 72 61 66 66 69 63 20 72 65 63 65 6e 74 6c 79 20 28 | t.or.received.traffic.recently.( |
| 82d80 | 74 68 65 20 70 72 65 63 69 73 65 20 63 72 69 74 65 72 69 61 20 64 65 70 65 6e 64 73 20 75 70 6f | the.precise.criteria.depends.upo |
| 82da0 | 6e 20 74 68 65 20 62 6f 6e 64 69 6e 67 20 6d 6f 64 65 2c 20 61 6e 64 20 74 68 65 20 73 74 61 74 | n.the.bonding.mode,.and.the.stat |
| 82dc0 | 65 20 6f 66 20 74 68 65 20 73 6c 61 76 65 29 2e 20 52 65 67 75 6c 61 72 20 74 72 61 66 66 69 63 | e.of.the.slave)..Regular.traffic |
| 82de0 | 20 69 73 20 67 65 6e 65 72 61 74 65 64 20 76 69 61 20 41 52 50 20 70 72 6f 62 65 73 20 69 73 73 | .is.generated.via.ARP.probes.iss |
| 82e00 | 75 65 64 20 66 6f 72 20 74 68 65 20 61 64 64 72 65 73 73 65 73 20 73 70 65 63 69 66 69 65 64 20 | ued.for.the.addresses.specified. |
| 82e20 | 62 79 20 74 68 65 20 3a 63 66 67 63 6d 64 3a 60 61 72 70 2d 6d 6f 6e 69 74 6f 72 20 74 61 72 67 | by.the.:cfgcmd:`arp-monitor.targ |
| 82e40 | 65 74 60 20 6f 70 74 69 6f 6e 2e 00 54 68 65 20 41 53 50 20 68 61 73 20 64 6f 63 75 6d 65 6e 74 | et`.option..The.ASP.has.document |
| 82e60 | 65 64 20 74 68 65 69 72 20 49 50 53 65 63 20 72 65 71 75 69 72 65 6d 65 6e 74 73 3a 00 54 68 65 | ed.their.IPSec.requirements:.The |
| 82e80 | 20 42 47 50 20 72 6f 75 74 65 72 20 63 61 6e 20 63 6f 6e 6e 65 63 74 20 74 6f 20 6f 6e 65 20 6f | .BGP.router.can.connect.to.one.o |
| 82ea0 | 72 20 6d 6f 72 65 20 52 50 4b 49 20 63 61 63 68 65 20 73 65 72 76 65 72 73 20 74 6f 20 72 65 63 | r.more.RPKI.cache.servers.to.rec |
| 82ec0 | 65 69 76 65 20 76 61 6c 69 64 61 74 65 64 20 70 72 65 66 69 78 20 74 6f 20 6f 72 69 67 69 6e 20 | eive.validated.prefix.to.origin. |
| 82ee0 | 41 53 20 6d 61 70 70 69 6e 67 73 2e 20 41 64 76 61 6e 63 65 64 20 66 61 69 6c 6f 76 65 72 20 63 | AS.mappings..Advanced.failover.c |
| 82f00 | 61 6e 20 62 65 20 69 6d 70 6c 65 6d 65 6e 74 65 64 20 62 79 20 73 65 72 76 65 72 20 73 6f 63 6b | an.be.implemented.by.server.sock |
| 82f20 | 65 74 73 20 77 69 74 68 20 64 69 66 66 65 72 65 6e 74 20 70 72 65 66 65 72 65 6e 63 65 20 76 61 | ets.with.different.preference.va |
| 82f40 | 6c 75 65 73 2e 00 54 68 65 20 43 4c 49 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 73 20 73 | lues..The.CLI.configuration.is.s |
| 82f60 | 61 6d 65 20 61 73 20 6d 65 6e 74 69 6f 6e 65 64 20 69 6e 20 61 62 6f 76 65 20 61 72 74 69 63 6c | ame.as.mentioned.in.above.articl |
| 82f80 | 65 73 2e 20 54 68 65 20 6f 6e 6c 79 20 64 69 66 66 65 72 65 6e 63 65 20 69 73 2c 20 74 68 61 74 | es..The.only.difference.is,.that |
| 82fa0 | 20 65 61 63 68 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 20 75 73 65 64 2c 20 6d 75 73 | .each.routing.protocol.used,.mus |
| 82fc0 | 74 20 62 65 20 70 72 65 66 69 78 65 64 20 77 69 74 68 20 74 68 65 20 60 76 72 66 20 6e 61 6d 65 | t.be.prefixed.with.the.`vrf.name |
| 82fe0 | 20 3c 6e 61 6d 65 3e 60 20 63 6f 6d 6d 61 6e 64 2e 00 54 68 65 20 43 4c 4e 53 20 61 64 64 72 65 | .<name>`.command..The.CLNS.addre |
| 83000 | 73 73 20 63 6f 6e 73 69 73 74 73 20 6f 66 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 70 61 72 | ss.consists.of.the.following.par |
| 83020 | 74 73 3a 00 54 68 65 20 44 46 20 70 72 65 66 65 72 65 6e 63 65 20 69 73 20 63 6f 6e 66 69 67 75 | ts:.The.DF.preference.is.configu |
| 83040 | 72 61 62 6c 65 20 70 65 72 2d 45 53 2e 00 54 68 65 20 44 48 43 50 20 75 6e 69 71 75 65 20 69 64 | rable.per-ES..The.DHCP.unique.id |
| 83060 | 65 6e 74 69 66 69 65 72 20 28 44 55 49 44 29 20 69 73 20 75 73 65 64 20 62 79 20 61 20 63 6c 69 | entifier.(DUID).is.used.by.a.cli |
| 83080 | 65 6e 74 20 74 6f 20 67 65 74 20 61 6e 20 49 50 20 61 64 64 72 65 73 73 20 66 72 6f 6d 20 61 20 | ent.to.get.an.IP.address.from.a. |
| 830a0 | 44 48 43 50 76 36 20 73 65 72 76 65 72 2e 20 49 74 20 68 61 73 20 61 20 32 2d 62 79 74 65 20 44 | DHCPv6.server..It.has.a.2-byte.D |
| 830c0 | 55 49 44 20 74 79 70 65 20 66 69 65 6c 64 2c 20 61 6e 64 20 61 20 76 61 72 69 61 62 6c 65 2d 6c | UID.type.field,.and.a.variable-l |
| 830e0 | 65 6e 67 74 68 20 69 64 65 6e 74 69 66 69 65 72 20 66 69 65 6c 64 20 75 70 20 74 6f 20 31 32 38 | ength.identifier.field.up.to.128 |
| 83100 | 20 62 79 74 65 73 2e 20 49 74 73 20 61 63 74 75 61 6c 20 6c 65 6e 67 74 68 20 64 65 70 65 6e 64 | .bytes..Its.actual.length.depend |
| 83120 | 73 20 6f 6e 20 69 74 73 20 74 79 70 65 2e 20 54 68 65 20 73 65 72 76 65 72 20 63 6f 6d 70 61 72 | s.on.its.type..The.server.compar |
| 83140 | 65 73 20 74 68 65 20 44 55 49 44 20 77 69 74 68 20 69 74 73 20 64 61 74 61 62 61 73 65 20 61 6e | es.the.DUID.with.its.database.an |
| 83160 | 64 20 64 65 6c 69 76 65 72 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 64 61 74 61 20 28 61 | d.delivers.configuration.data.(a |
| 83180 | 64 64 72 65 73 73 2c 20 6c 65 61 73 65 20 74 69 6d 65 73 2c 20 44 4e 53 20 73 65 72 76 65 72 73 | ddress,.lease.times,.DNS.servers |
| 831a0 | 2c 20 65 74 63 2e 29 20 74 6f 20 74 68 65 20 63 6c 69 65 6e 74 2e 00 54 68 65 20 44 4e 20 61 6e | ,.etc.).to.the.client..The.DN.an |
| 831c0 | 64 20 70 61 73 73 77 6f 72 64 20 74 6f 20 62 69 6e 64 20 61 73 20 77 68 69 6c 65 20 70 65 72 66 | d.password.to.bind.as.while.perf |
| 831e0 | 6f 72 6d 69 6e 67 20 73 65 61 72 63 68 65 73 2e 00 54 68 65 20 44 4e 20 61 6e 64 20 70 61 73 73 | orming.searches..The.DN.and.pass |
| 83200 | 77 6f 72 64 20 74 6f 20 62 69 6e 64 20 61 73 20 77 68 69 6c 65 20 70 65 72 66 6f 72 6d 69 6e 67 | word.to.bind.as.while.performing |
| 83220 | 20 73 65 61 72 63 68 65 73 2e 20 41 73 20 74 68 65 20 70 61 73 73 77 6f 72 64 20 6e 65 65 64 73 | .searches..As.the.password.needs |
| 83240 | 20 74 6f 20 62 65 20 70 72 69 6e 74 65 64 20 69 6e 20 70 6c 61 69 6e 20 74 65 78 74 20 69 6e 20 | .to.be.printed.in.plain.text.in. |
| 83260 | 79 6f 75 72 20 53 71 75 69 64 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 74 20 69 73 20 73 | your.Squid.configuration.it.is.s |
| 83280 | 74 72 6f 6e 67 6c 79 20 72 65 63 6f 6d 6d 65 6e 64 65 64 20 74 6f 20 75 73 65 20 61 20 61 63 63 | trongly.recommended.to.use.a.acc |
| 832a0 | 6f 75 6e 74 20 77 69 74 68 20 6d 69 6e 69 6d 61 6c 20 61 73 73 6f 63 69 61 74 65 64 20 70 72 69 | ount.with.minimal.associated.pri |
| 832c0 | 76 69 6c 65 67 65 73 2e 20 54 68 69 73 20 74 6f 20 6c 69 6d 69 74 20 74 68 65 20 64 61 6d 61 67 | vileges..This.to.limit.the.damag |
| 832e0 | 65 20 69 6e 20 63 61 73 65 20 73 6f 6d 65 6f 6e 65 20 63 6f 75 6c 64 20 67 65 74 20 68 6f 6c 64 | e.in.case.someone.could.get.hold |
| 83300 | 20 6f 66 20 61 20 63 6f 70 79 20 6f 66 20 79 6f 75 72 20 53 71 75 69 64 20 63 6f 6e 66 69 67 75 | .of.a.copy.of.your.Squid.configu |
| 83320 | 72 61 74 69 6f 6e 20 66 69 6c 65 2e 00 54 68 65 20 46 51 2d 43 6f 44 65 6c 20 70 6f 6c 69 63 79 | ration.file..The.FQ-CoDel.policy |
| 83340 | 20 64 69 73 74 72 69 62 75 74 65 73 20 74 68 65 20 74 72 61 66 66 69 63 20 69 6e 74 6f 20 31 30 | .distributes.the.traffic.into.10 |
| 83360 | 32 34 20 46 49 46 4f 20 71 75 65 75 65 73 20 61 6e 64 20 74 72 69 65 73 20 74 6f 20 70 72 6f 76 | 24.FIFO.queues.and.tries.to.prov |
| 83380 | 69 64 65 20 67 6f 6f 64 20 73 65 72 76 69 63 65 20 62 65 74 77 65 65 6e 20 61 6c 6c 20 6f 66 20 | ide.good.service.between.all.of. |
| 833a0 | 74 68 65 6d 2e 20 49 74 20 61 6c 73 6f 20 74 72 69 65 73 20 74 6f 20 6b 65 65 70 20 74 68 65 20 | them..It.also.tries.to.keep.the. |
| 833c0 | 6c 65 6e 67 74 68 20 6f 66 20 61 6c 6c 20 74 68 65 20 71 75 65 75 65 73 20 73 68 6f 72 74 2e 00 | length.of.all.the.queues.short.. |
| 833e0 | 54 68 65 20 48 54 54 50 20 73 65 72 76 69 63 65 20 6c 69 73 74 65 6e 20 6f 6e 20 54 43 50 20 70 | The.HTTP.service.listen.on.TCP.p |
| 83400 | 6f 72 74 20 38 30 2e 00 54 68 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 69 6e | ort.80..The.IP.address.of.the.in |
| 83420 | 74 65 72 6e 61 6c 20 73 79 73 74 65 6d 20 77 65 20 77 69 73 68 20 74 6f 20 66 6f 72 77 61 72 64 | ternal.system.we.wish.to.forward |
| 83440 | 20 74 72 61 66 66 69 63 20 74 6f 2e 00 54 68 65 20 49 6e 74 65 6c 20 41 58 32 30 30 20 63 61 72 | .traffic.to..The.Intel.AX200.car |
| 83460 | 64 20 64 6f 65 73 20 6e 6f 74 20 77 6f 72 6b 20 6f 75 74 20 6f 66 20 74 68 65 20 62 6f 78 20 69 | d.does.not.work.out.of.the.box.i |
| 83480 | 6e 20 41 50 20 6d 6f 64 65 2c 20 73 65 65 20 68 74 74 70 73 3a 2f 2f 75 6e 69 78 2e 73 74 61 63 | n.AP.mode,.see.https://unix.stac |
| 834a0 | 6b 65 78 63 68 61 6e 67 65 2e 63 6f 6d 2f 71 75 65 73 74 69 6f 6e 73 2f 35 39 38 32 37 35 2f 69 | kexchange.com/questions/598275/i |
| 834c0 | 6e 74 65 6c 2d 61 78 32 30 30 2d 61 70 2d 6d 6f 64 65 2e 20 59 6f 75 20 63 61 6e 20 73 74 69 6c | ntel-ax200-ap-mode..You.can.stil |
| 834e0 | 6c 20 70 75 74 20 74 68 69 73 20 63 61 72 64 20 69 6e 74 6f 20 41 50 20 6d 6f 64 65 20 75 73 69 | l.put.this.card.into.AP.mode.usi |
| 83500 | 6e 67 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 00 | ng.the.following.configuration:. |
| 83520 | 54 68 65 20 4f 49 44 20 60 60 2e 31 2e 33 2e 36 2e 31 2e 34 2e 31 2e 38 30 37 32 2e 31 2e 33 2e | The.OID.``.1.3.6.1.4.1.8072.1.3. |
| 83540 | 32 2e 33 2e 31 2e 31 2e 34 2e 31 31 36 2e 31 30 31 2e 31 31 35 2e 31 31 36 60 60 2c 20 6f 6e 63 | 2.3.1.1.4.116.101.115.116``,.onc |
| 83560 | 65 20 63 61 6c 6c 65 64 2c 20 77 69 6c 6c 20 63 6f 6e 74 61 69 6e 20 74 68 65 20 6f 75 74 70 75 | e.called,.will.contain.the.outpu |
| 83580 | 74 20 6f 66 20 74 68 65 20 65 78 74 65 6e 73 69 6f 6e 2e 00 54 68 65 20 50 6f 69 6e 74 2d 74 6f | t.of.the.extension..The.Point-to |
| 835a0 | 2d 50 6f 69 6e 74 20 54 75 6e 6e 65 6c 69 6e 67 20 50 72 6f 74 6f 63 6f 6c 20 28 50 50 54 50 5f | -Point.Tunneling.Protocol.(PPTP_ |
| 835c0 | 29 20 68 61 73 20 62 65 65 6e 20 69 6d 70 6c 65 6d 65 6e 74 65 64 20 69 6e 20 56 79 4f 53 20 6f | ).has.been.implemented.in.VyOS.o |
| 835e0 | 6e 6c 79 20 66 6f 72 20 62 61 63 6b 77 61 72 64 73 20 63 6f 6d 70 61 74 69 62 69 6c 69 74 79 2e | nly.for.backwards.compatibility. |
| 83600 | 20 50 50 54 50 20 68 61 73 20 6d 61 6e 79 20 77 65 6c 6c 20 6b 6e 6f 77 6e 20 73 65 63 75 72 69 | .PPTP.has.many.well.known.securi |
| 83620 | 74 79 20 69 73 73 75 65 73 20 61 6e 64 20 79 6f 75 20 73 68 6f 75 6c 64 20 75 73 65 20 6f 6e 65 | ty.issues.and.you.should.use.one |
| 83640 | 20 6f 66 20 74 68 65 20 6d 61 6e 79 20 6f 74 68 65 72 20 6e 65 77 20 56 50 4e 20 69 6d 70 6c 65 | .of.the.many.other.new.VPN.imple |
| 83660 | 6d 65 6e 74 61 74 69 6f 6e 73 2e 00 54 68 65 20 50 6f 77 65 72 44 4e 53 20 72 65 63 75 72 73 6f | mentations..The.PowerDNS.recurso |
| 83680 | 72 20 68 61 73 20 35 20 64 69 66 66 65 72 65 6e 74 20 6c 65 76 65 6c 73 20 6f 66 20 44 4e 53 53 | r.has.5.different.levels.of.DNSS |
| 836a0 | 45 43 20 70 72 6f 63 65 73 73 69 6e 67 2c 20 77 68 69 63 68 20 63 61 6e 20 62 65 20 73 65 74 20 | EC.processing,.which.can.be.set. |
| 836c0 | 77 69 74 68 20 74 68 65 20 64 6e 73 73 65 63 20 73 65 74 74 69 6e 67 2e 20 49 6e 20 6f 72 64 65 | with.the.dnssec.setting..In.orde |
| 836e0 | 72 20 66 72 6f 6d 20 6c 65 61 73 74 20 74 6f 20 6d 6f 73 74 20 70 72 6f 63 65 73 73 69 6e 67 2c | r.from.least.to.most.processing, |
| 83700 | 20 74 68 65 73 65 20 61 72 65 3a 00 54 68 65 20 50 72 65 63 69 73 69 6f 6e 20 54 69 6d 65 20 50 | .these.are:.The.Precision.Time.P |
| 83720 | 72 6f 74 6f 63 6f 6c 20 28 49 45 45 45 20 31 35 38 38 29 20 69 73 20 61 20 6c 6f 63 61 6c 20 6e | rotocol.(IEEE.1588).is.a.local.n |
| 83740 | 65 74 77 6f 72 6b 20 74 69 6d 65 20 73 79 6e 63 68 72 6f 6e 69 7a 61 74 69 6f 6e 20 70 72 6f 74 | etwork.time.synchronization.prot |
| 83760 | 6f 63 6f 6c 20 74 68 61 74 20 70 72 6f 76 69 64 65 73 20 68 69 67 68 20 70 72 65 63 69 73 69 6f | ocol.that.provides.high.precisio |
| 83780 | 6e 20 74 69 6d 65 20 73 79 6e 63 68 72 6f 6e 69 7a 61 74 69 6f 6e 20 62 79 20 6c 65 76 65 72 61 | n.time.synchronization.by.levera |
| 837a0 | 67 69 6e 67 20 68 61 72 64 77 61 72 65 20 63 6c 6f 63 6b 73 20 69 6e 20 4e 49 43 73 20 61 6e 64 | ging.hardware.clocks.in.NICs.and |
| 837c0 | 20 6f 74 68 65 72 20 6e 65 74 77 6f 72 6b 20 65 6c 65 6d 65 6e 74 73 2e 20 56 79 4f 53 20 64 6f | .other.network.elements..VyOS.do |
| 837e0 | 65 73 20 6e 6f 74 20 63 75 72 72 65 6e 74 6c 79 20 73 75 70 70 6f 72 74 20 73 74 61 6e 64 61 72 | es.not.currently.support.standar |
| 83800 | 64 73 2d 62 61 73 65 64 20 50 54 50 2c 20 77 68 69 63 68 20 63 61 6e 20 62 65 20 64 65 70 6c 6f | ds-based.PTP,.which.can.be.deplo |
| 83820 | 79 65 64 20 69 6e 64 65 70 65 6e 64 65 6e 74 6c 79 20 6f 66 20 4e 54 50 2e 00 54 68 65 20 50 72 | yed.independently.of.NTP..The.Pr |
| 83840 | 69 6f 72 69 74 79 20 51 75 65 75 65 20 69 73 20 61 20 63 6c 61 73 73 66 75 6c 20 73 63 68 65 64 | iority.Queue.is.a.classful.sched |
| 83860 | 75 6c 69 6e 67 20 70 6f 6c 69 63 79 2e 20 49 74 20 64 6f 65 73 20 6e 6f 74 20 64 65 6c 61 79 20 | uling.policy..It.does.not.delay. |
| 83880 | 70 61 63 6b 65 74 73 20 28 50 72 69 6f 72 69 74 79 20 51 75 65 75 65 20 69 73 20 6e 6f 74 20 61 | packets.(Priority.Queue.is.not.a |
| 838a0 | 20 73 68 61 70 69 6e 67 20 70 6f 6c 69 63 79 29 2c 20 69 74 20 73 69 6d 70 6c 79 20 64 65 71 75 | .shaping.policy),.it.simply.dequ |
| 838c0 | 65 75 65 73 20 70 61 63 6b 65 74 73 20 61 63 63 6f 72 64 69 6e 67 20 74 6f 20 74 68 65 69 72 20 | eues.packets.according.to.their. |
| 838e0 | 70 72 69 6f 72 69 74 79 2e 00 54 68 65 20 52 41 44 49 55 53 20 61 63 63 6f 75 6e 74 69 6e 67 20 | priority..The.RADIUS.accounting. |
| 83900 | 66 65 61 74 75 72 65 20 6d 75 73 74 20 62 65 20 75 73 65 64 20 77 69 74 68 20 74 68 65 20 4f 70 | feature.must.be.used.with.the.Op |
| 83920 | 65 6e 43 6f 6e 6e 65 63 74 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6d 6f 64 65 20 52 41 | enConnect.authentication.mode.RA |
| 83940 | 44 49 55 53 2e 20 49 74 20 63 61 6e 6e 6f 74 20 62 65 20 75 73 65 64 20 77 69 74 68 20 6c 6f 63 | DIUS..It.cannot.be.used.with.loc |
| 83960 | 61 6c 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2e 20 59 6f 75 20 6d 75 73 74 20 63 6f 6e 66 | al.authentication..You.must.conf |
| 83980 | 69 67 75 72 65 20 74 68 65 20 4f 70 65 6e 43 6f 6e 6e 65 63 74 20 61 75 74 68 65 6e 74 69 63 61 | igure.the.OpenConnect.authentica |
| 839a0 | 74 69 6f 6e 20 6d 6f 64 65 20 74 6f 20 22 72 61 64 69 75 73 22 2e 00 54 68 65 20 52 41 44 49 55 | tion.mode.to."radius"..The.RADIU |
| 839c0 | 53 20 64 69 63 74 69 6f 6e 61 72 69 65 73 20 69 6e 20 56 79 4f 53 20 61 72 65 20 6c 6f 63 61 74 | S.dictionaries.in.VyOS.are.locat |
| 839e0 | 65 64 20 61 74 20 60 60 2f 75 73 72 2f 73 68 61 72 65 2f 61 63 63 65 6c 2d 70 70 70 2f 72 61 64 | ed.at.``/usr/share/accel-ppp/rad |
| 83a00 | 69 75 73 2f 60 60 00 54 68 65 20 53 52 20 73 65 67 6d 65 6e 74 73 20 61 72 65 20 70 6f 72 74 69 | ius/``.The.SR.segments.are.porti |
| 83a20 | 6f 6e 73 20 6f 66 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 70 61 74 68 20 74 61 6b 65 6e 20 62 79 | ons.of.the.network.path.taken.by |
| 83a40 | 20 74 68 65 20 70 61 63 6b 65 74 2c 20 61 6e 64 20 61 72 65 20 63 61 6c 6c 65 64 20 53 49 44 73 | .the.packet,.and.are.called.SIDs |
| 83a60 | 2e 20 41 74 20 65 61 63 68 20 6e 6f 64 65 2c 20 74 68 65 20 66 69 72 73 74 20 53 49 44 20 6f 66 | ..At.each.node,.the.first.SID.of |
| 83a80 | 20 74 68 65 20 6c 69 73 74 20 69 73 20 72 65 61 64 2c 20 65 78 65 63 75 74 65 64 20 61 73 20 61 | .the.list.is.read,.executed.as.a |
| 83aa0 | 20 66 6f 72 77 61 72 64 69 6e 67 20 66 75 6e 63 74 69 6f 6e 2c 20 61 6e 64 20 6d 61 79 20 62 65 | .forwarding.function,.and.may.be |
| 83ac0 | 20 70 6f 70 70 65 64 20 74 6f 20 6c 65 74 20 74 68 65 20 6e 65 78 74 20 6e 6f 64 65 20 72 65 61 | .popped.to.let.the.next.node.rea |
| 83ae0 | 64 20 74 68 65 20 6e 65 78 74 20 53 49 44 20 6f 66 20 74 68 65 20 6c 69 73 74 2e 20 54 68 65 20 | d.the.next.SID.of.the.list..The. |
| 83b00 | 53 49 44 20 6c 69 73 74 20 63 6f 6d 70 6c 65 74 65 6c 79 20 64 65 74 65 72 6d 69 6e 65 73 20 74 | SID.list.completely.determines.t |
| 83b20 | 68 65 20 70 61 74 68 20 77 68 65 72 65 20 74 68 65 20 70 61 63 6b 65 74 20 69 73 20 66 6f 72 77 | he.path.where.the.packet.is.forw |
| 83b40 | 61 72 64 65 64 2e 00 54 68 65 20 53 68 61 70 65 72 20 70 6f 6c 69 63 79 20 64 6f 65 73 20 6e 6f | arded..The.Shaper.policy.does.no |
| 83b60 | 74 20 67 75 61 72 61 6e 74 65 65 20 61 20 6c 6f 77 20 64 65 6c 61 79 2c 20 62 75 74 20 69 74 20 | t.guarantee.a.low.delay,.but.it. |
| 83b80 | 64 6f 65 73 20 67 75 61 72 61 6e 74 65 65 20 62 61 6e 64 77 69 64 74 68 20 74 6f 20 64 69 66 66 | does.guarantee.bandwidth.to.diff |
| 83ba0 | 65 72 65 6e 74 20 74 72 61 66 66 69 63 20 63 6c 61 73 73 65 73 20 61 6e 64 20 61 6c 73 6f 20 6c | erent.traffic.classes.and.also.l |
| 83bc0 | 65 74 73 20 79 6f 75 20 64 65 63 69 64 65 20 68 6f 77 20 74 6f 20 61 6c 6c 6f 63 61 74 65 20 6d | ets.you.decide.how.to.allocate.m |
| 83be0 | 6f 72 65 20 74 72 61 66 66 69 63 20 6f 6e 63 65 20 74 68 65 20 67 75 61 72 61 6e 74 65 65 73 20 | ore.traffic.once.the.guarantees. |
| 83c00 | 61 72 65 20 6d 65 74 2e 00 54 68 65 20 55 44 50 20 70 6f 72 74 20 6e 75 6d 62 65 72 20 75 73 65 | are.met..The.UDP.port.number.use |
| 83c20 | 64 20 62 79 20 79 6f 75 72 20 61 70 6c 6c 69 63 61 74 69 6f 6e 2e 20 49 74 20 69 73 20 6d 61 6e | d.by.your.apllication..It.is.man |
| 83c40 | 64 61 74 6f 72 79 20 66 6f 72 20 74 68 69 73 20 6b 69 6e 64 20 6f 66 20 6f 70 65 72 61 74 69 6f | datory.for.this.kind.of.operatio |
| 83c60 | 6e 2e 00 54 68 65 20 55 44 50 20 70 6f 72 74 20 6e 75 6d 62 65 72 20 75 73 65 64 20 62 79 20 79 | n..The.UDP.port.number.used.by.y |
| 83c80 | 6f 75 72 20 61 70 70 6c 69 63 61 74 69 6f 6e 2e 20 49 74 20 69 73 20 6d 61 6e 64 61 74 6f 72 79 | our.application..It.is.mandatory |
| 83ca0 | 20 66 6f 72 20 74 68 69 73 20 6b 69 6e 64 20 6f 66 20 6f 70 65 72 61 74 69 6f 6e 2e 00 54 68 65 | .for.this.kind.of.operation..The |
| 83cc0 | 20 56 58 4c 41 4e 20 73 70 65 63 69 66 69 63 61 74 69 6f 6e 20 77 61 73 20 6f 72 69 67 69 6e 61 | .VXLAN.specification.was.origina |
| 83ce0 | 6c 6c 79 20 63 72 65 61 74 65 64 20 62 79 20 56 4d 77 61 72 65 2c 20 41 72 69 73 74 61 20 4e 65 | lly.created.by.VMware,.Arista.Ne |
| 83d00 | 74 77 6f 72 6b 73 20 61 6e 64 20 43 69 73 63 6f 2e 20 4f 74 68 65 72 20 62 61 63 6b 65 72 73 20 | tworks.and.Cisco..Other.backers. |
| 83d20 | 6f 66 20 74 68 65 20 56 58 4c 41 4e 20 74 65 63 68 6e 6f 6c 6f 67 79 20 69 6e 63 6c 75 64 65 20 | of.the.VXLAN.technology.include. |
| 83d40 | 48 75 61 77 65 69 2c 20 42 72 6f 61 64 63 6f 6d 2c 20 43 69 74 72 69 78 2c 20 50 69 63 61 38 2c | Huawei,.Broadcom,.Citrix,.Pica8, |
| 83d60 | 20 42 69 67 20 53 77 69 74 63 68 20 4e 65 74 77 6f 72 6b 73 2c 20 43 75 6d 75 6c 75 73 20 4e 65 | .Big.Switch.Networks,.Cumulus.Ne |
| 83d80 | 74 77 6f 72 6b 73 2c 20 44 65 6c 6c 20 45 4d 43 2c 20 45 72 69 63 73 73 6f 6e 2c 20 4d 65 6c 6c | tworks,.Dell.EMC,.Ericsson,.Mell |
| 83da0 | 61 6e 6f 78 2c 20 46 72 65 65 42 53 44 2c 20 4f 70 65 6e 42 53 44 2c 20 52 65 64 20 48 61 74 2c | anox,.FreeBSD,.OpenBSD,.Red.Hat, |
| 83dc0 | 20 4a 6f 79 65 6e 74 2c 20 61 6e 64 20 4a 75 6e 69 70 65 72 20 4e 65 74 77 6f 72 6b 73 2e 00 54 | .Joyent,.and.Juniper.Networks..T |
| 83de0 | 68 65 20 56 79 4f 53 20 44 4e 53 20 66 6f 72 77 61 72 64 65 72 20 63 61 6e 20 61 6c 73 6f 20 62 | he.VyOS.DNS.forwarder.can.also.b |
| 83e00 | 65 20 63 6f 6e 66 69 67 75 72 65 64 20 74 6f 20 68 6f 73 74 20 61 75 74 68 6f 72 69 74 61 74 69 | e.configured.to.host.authoritati |
| 83e20 | 76 65 20 72 65 63 6f 72 64 73 20 66 6f 72 20 61 20 64 6f 6d 61 69 6e 2e 00 54 68 65 20 56 79 4f | ve.records.for.a.domain..The.VyO |
| 83e40 | 53 20 44 4e 53 20 66 6f 72 77 61 72 64 65 72 20 64 6f 65 73 20 6e 6f 74 20 72 65 71 75 69 72 65 | S.DNS.forwarder.does.not.require |
| 83e60 | 20 61 6e 20 75 70 73 74 72 65 61 6d 20 44 4e 53 20 73 65 72 76 65 72 2e 20 49 74 20 63 61 6e 20 | .an.upstream.DNS.server..It.can. |
| 83e80 | 73 65 72 76 65 20 61 73 20 61 20 66 75 6c 6c 20 72 65 63 75 72 73 69 76 65 20 44 4e 53 20 73 65 | serve.as.a.full.recursive.DNS.se |
| 83ea0 | 72 76 65 72 20 2d 20 62 75 74 20 69 74 20 63 61 6e 20 61 6c 73 6f 20 66 6f 72 77 61 72 64 20 71 | rver.-.but.it.can.also.forward.q |
| 83ec0 | 75 65 72 69 65 73 20 74 6f 20 63 6f 6e 66 69 67 75 72 61 62 6c 65 20 75 70 73 74 72 65 61 6d 20 | ueries.to.configurable.upstream. |
| 83ee0 | 44 4e 53 20 73 65 72 76 65 72 73 2e 20 42 79 20 6e 6f 74 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 | DNS.servers..By.not.configuring. |
| 83f00 | 61 6e 79 20 75 70 73 74 72 65 61 6d 20 44 4e 53 20 73 65 72 76 65 72 73 20 79 6f 75 20 61 6c 73 | any.upstream.DNS.servers.you.als |
| 83f20 | 6f 20 61 76 6f 69 64 20 62 65 69 6e 67 20 74 72 61 63 6b 65 64 20 62 79 20 74 68 65 20 70 72 6f | o.avoid.being.tracked.by.the.pro |
| 83f40 | 76 69 64 65 72 20 6f 66 20 79 6f 75 72 20 75 70 73 74 72 65 61 6d 20 44 4e 53 20 73 65 72 76 65 | vider.of.your.upstream.DNS.serve |
| 83f60 | 72 2e 00 54 68 65 20 56 79 4f 53 20 44 4e 53 20 66 6f 72 77 61 72 64 65 72 20 77 69 6c 6c 20 6f | r..The.VyOS.DNS.forwarder.will.o |
| 83f80 | 6e 6c 79 20 61 63 63 65 70 74 20 6c 6f 6f 6b 75 70 20 72 65 71 75 65 73 74 73 20 66 72 6f 6d 20 | nly.accept.lookup.requests.from. |
| 83fa0 | 74 68 65 20 4c 41 4e 20 73 75 62 6e 65 74 73 20 2d 20 31 39 32 2e 31 36 38 2e 31 2e 30 2f 32 34 | the.LAN.subnets.-.192.168.1.0/24 |
| 83fc0 | 20 61 6e 64 20 32 30 30 31 3a 64 62 38 3a 3a 2f 36 34 00 54 68 65 20 56 79 4f 53 20 44 4e 53 20 | .and.2001:db8::/64.The.VyOS.DNS. |
| 83fe0 | 66 6f 72 77 61 72 64 65 72 20 77 69 6c 6c 20 6f 6e 6c 79 20 6c 69 73 74 65 6e 20 66 6f 72 20 72 | forwarder.will.only.listen.for.r |
| 84000 | 65 71 75 65 73 74 73 20 6f 6e 20 74 68 65 20 65 74 68 31 20 28 4c 41 4e 29 20 69 6e 74 65 72 66 | equests.on.the.eth1.(LAN).interf |
| 84020 | 61 63 65 20 61 64 64 72 65 73 73 65 73 20 2d 20 31 39 32 2e 31 36 38 2e 31 2e 32 35 34 20 66 6f | ace.addresses.-.192.168.1.254.fo |
| 84040 | 72 20 49 50 76 34 20 61 6e 64 20 32 30 30 31 3a 64 62 38 3a 3a 66 66 66 66 20 66 6f 72 20 49 50 | r.IPv4.and.2001:db8::ffff.for.IP |
| 84060 | 76 36 00 54 68 65 20 56 79 4f 53 20 44 4e 53 20 66 6f 72 77 61 72 64 65 72 20 77 69 6c 6c 20 70 | v6.The.VyOS.DNS.forwarder.will.p |
| 84080 | 61 73 73 20 72 65 76 65 72 73 65 20 6c 6f 6f 6b 75 70 73 20 66 6f 72 20 20 31 30 2e 69 6e 2d 61 | ass.reverse.lookups.for..10.in-a |
| 840a0 | 64 64 72 2e 61 72 70 61 2c 20 31 36 38 2e 31 39 32 2e 69 6e 2d 61 64 64 72 2e 61 72 70 61 2c 20 | ddr.arpa,.168.192.in-addr.arpa,. |
| 840c0 | 31 36 2d 33 31 2e 31 37 32 2e 69 6e 2d 61 64 64 72 2e 61 72 70 61 20 7a 6f 6e 65 73 20 74 6f 20 | 16-31.172.in-addr.arpa.zones.to. |
| 840e0 | 75 70 73 74 72 65 61 6d 20 73 65 72 76 65 72 2e 00 54 68 65 20 56 79 4f 53 20 50 4b 49 20 73 75 | upstream.server..The.VyOS.PKI.su |
| 84100 | 62 73 79 73 74 65 6d 20 63 61 6e 20 61 6c 73 6f 20 62 65 20 75 73 65 64 20 74 6f 20 61 75 74 6f | bsystem.can.also.be.used.to.auto |
| 84120 | 6d 61 74 69 63 61 6c 6c 79 20 72 65 74 72 69 65 76 65 20 43 65 72 74 69 66 69 63 61 74 65 73 20 | matically.retrieve.Certificates. |
| 84140 | 75 73 69 6e 67 20 74 68 65 20 3a 61 62 62 72 3a 60 41 43 4d 45 20 28 41 75 74 6f 6d 61 74 69 63 | using.the.:abbr:`ACME.(Automatic |
| 84160 | 20 43 65 72 74 69 66 69 63 61 74 65 20 4d 61 6e 61 67 65 6d 65 6e 74 20 45 6e 76 69 72 6f 6e 6d | .Certificate.Management.Environm |
| 84180 | 65 6e 74 29 60 20 70 72 6f 74 6f 63 6f 6c 2e 00 54 68 65 20 56 79 4f 53 20 63 6f 6e 74 61 69 6e | ent)`.protocol..The.VyOS.contain |
| 841a0 | 65 72 20 69 6d 70 6c 65 6d 65 6e 74 61 74 69 6f 6e 20 69 73 20 62 61 73 65 64 20 6f 6e 20 60 50 | er.implementation.is.based.on.`P |
| 841c0 | 6f 64 6d 61 6e 20 3c 68 74 74 70 73 3a 2f 2f 70 6f 64 6d 61 6e 2e 69 6f 2f 3e 60 5f 20 61 73 20 | odman.<https://podman.io/>`_.as. |
| 841e0 | 61 20 64 65 61 6d 6f 6e 6c 65 73 73 20 63 6f 6e 74 61 69 6e 65 72 20 65 6e 67 69 6e 65 2e 00 54 | a.deamonless.container.engine..T |
| 84200 | 68 65 20 56 79 4f 53 20 63 6f 6e 74 61 69 6e 65 72 20 69 6d 70 6c 65 6d 65 6e 74 61 74 69 6f 6e | he.VyOS.container.implementation |
| 84220 | 20 69 73 20 62 61 73 65 64 20 6f 6e 20 60 50 6f 64 6d 61 6e 3c 68 74 74 70 73 3a 2f 2f 70 6f 64 | .is.based.on.`Podman<https://pod |
| 84240 | 6d 61 6e 2e 69 6f 2f 3e 60 20 61 73 20 61 20 64 65 61 6d 6f 6e 6c 65 73 73 20 63 6f 6e 74 61 69 | man.io/>`.as.a.deamonless.contai |
| 84260 | 6e 65 72 20 65 6e 67 69 6e 65 2e 00 54 68 65 20 57 41 50 20 69 6e 20 74 68 69 73 20 65 78 61 6d | ner.engine..The.WAP.in.this.exam |
| 84280 | 70 6c 65 20 68 61 73 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 68 61 72 61 63 74 65 72 69 | ple.has.the.following.characteri |
| 842a0 | 73 74 69 63 73 3a 00 54 68 65 20 57 69 72 65 6c 65 73 73 20 57 69 64 65 2d 41 72 65 61 2d 4e 65 | stics:.The.Wireless.Wide-Area-Ne |
| 842c0 | 74 77 6f 72 6b 20 69 6e 74 65 72 66 61 63 65 20 70 72 6f 76 69 64 65 73 20 61 63 63 65 73 73 20 | twork.interface.provides.access. |
| 842e0 | 28 74 68 72 6f 75 67 68 20 61 20 77 69 72 65 6c 65 73 73 20 6d 6f 64 65 6d 2f 77 77 61 6e 29 20 | (through.a.wireless.modem/wwan). |
| 84300 | 74 6f 20 77 69 72 65 6c 65 73 73 20 6e 65 74 77 6f 72 6b 73 20 70 72 6f 76 69 64 65 64 20 62 79 | to.wireless.networks.provided.by |
| 84320 | 20 76 61 72 69 6f 75 73 20 63 65 6c 6c 75 6c 61 72 20 70 72 6f 76 69 64 65 72 73 2e 00 54 68 65 | .various.cellular.providers..The |
| 84340 | 20 60 60 43 44 60 60 2d 62 69 74 20 69 73 20 68 6f 6e 6f 72 65 64 20 63 6f 72 72 65 63 74 6c 79 | .``CD``-bit.is.honored.correctly |
| 84360 | 20 66 6f 72 20 70 72 6f 63 65 73 73 20 61 6e 64 20 76 61 6c 69 64 61 74 65 2e 20 46 6f 72 20 6c | .for.process.and.validate..For.l |
| 84380 | 6f 67 2d 66 61 69 6c 2c 20 66 61 69 6c 75 72 65 73 20 77 69 6c 6c 20 62 65 20 6c 6f 67 67 65 64 | og-fail,.failures.will.be.logged |
| 843a0 | 20 74 6f 6f 2e 00 54 68 65 20 60 60 61 64 64 72 65 73 73 60 60 20 63 61 6e 20 62 65 20 63 6f 6e | .too..The.``address``.can.be.con |
| 843c0 | 66 69 67 75 72 65 64 20 65 69 74 68 65 72 20 6f 6e 20 74 68 65 20 56 52 52 50 20 69 6e 74 65 72 | figured.either.on.the.VRRP.inter |
| 843e0 | 66 61 63 65 20 6f 72 20 6f 6e 20 6e 6f 74 20 56 52 52 50 20 69 6e 74 65 72 66 61 63 65 2e 00 54 | face.or.on.not.VRRP.interface..T |
| 84400 | 68 65 20 60 60 61 64 64 72 65 73 73 60 60 20 70 61 72 61 6d 65 74 65 72 20 63 61 6e 20 62 65 20 | he.``address``.parameter.can.be. |
| 84420 | 65 69 74 68 65 72 20 61 6e 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 61 64 64 72 65 73 73 2c 20 | either.an.IPv4.or.IPv6.address,. |
| 84440 | 62 75 74 20 79 6f 75 20 63 61 6e 20 6e 6f 74 20 6d 69 78 20 49 50 76 34 20 61 6e 64 20 49 50 76 | but.you.can.not.mix.IPv4.and.IPv |
| 84460 | 36 20 69 6e 20 74 68 65 20 73 61 6d 65 20 67 72 6f 75 70 2c 20 61 6e 64 20 77 69 6c 6c 20 6e 65 | 6.in.the.same.group,.and.will.ne |
| 84480 | 65 64 20 74 6f 20 63 72 65 61 74 65 20 67 72 6f 75 70 73 20 77 69 74 68 20 64 69 66 66 65 72 65 | ed.to.create.groups.with.differe |
| 844a0 | 6e 74 20 56 52 49 44 73 20 73 70 65 63 69 61 6c 6c 79 20 66 6f 72 20 49 50 76 34 20 61 6e 64 20 | nt.VRIDs.specially.for.IPv4.and. |
| 844c0 | 49 50 76 36 2e 20 49 66 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 75 73 65 20 49 50 76 34 20 2b 20 | IPv6..If.you.want.to.use.IPv4.+. |
| 844e0 | 49 50 76 36 20 61 64 64 72 65 73 73 20 79 6f 75 20 63 61 6e 20 75 73 65 20 6f 70 74 69 6f 6e 20 | IPv6.address.you.can.use.option. |
| 84500 | 60 60 65 78 63 6c 75 64 65 64 2d 61 64 64 72 65 73 73 60 60 00 54 68 65 20 60 60 62 6b 2d 62 72 | ``excluded-address``.The.``bk-br |
| 84520 | 69 64 67 65 2d 73 73 6c 60 60 20 62 61 63 6b 65 6e 64 20 63 6f 6e 6e 65 63 74 73 20 74 6f 20 73 | idge-ssl``.backend.connects.to.s |
| 84540 | 72 30 31 20 73 65 72 76 65 72 20 6f 6e 20 70 6f 72 74 20 34 34 33 20 76 69 61 20 48 54 54 50 53 | r01.server.on.port.443.via.HTTPS |
| 84560 | 20 61 6e 64 20 63 68 65 63 6b 73 20 62 61 63 6b 65 6e 64 20 73 65 72 76 65 72 20 68 61 73 20 61 | .and.checks.backend.server.has.a |
| 84580 | 20 76 61 6c 69 64 20 63 65 72 74 69 66 69 63 61 74 65 20 74 72 75 73 74 65 64 20 62 79 20 43 41 | .valid.certificate.trusted.by.CA |
| 845a0 | 20 60 60 63 61 63 65 72 74 60 60 00 54 68 65 20 60 60 68 74 74 70 60 60 20 73 65 72 76 69 63 65 | .``cacert``.The.``http``.service |
| 845c0 | 20 69 73 20 6c 65 73 74 65 6e 73 20 6f 6e 20 70 6f 72 74 20 38 30 20 61 6e 64 20 66 6f 72 63 65 | .is.lestens.on.port.80.and.force |
| 845e0 | 20 72 65 64 69 72 65 63 74 73 20 66 72 6f 6d 20 48 54 54 50 20 74 6f 20 48 54 54 50 53 2e 00 54 | .redirects.from.HTTP.to.HTTPS..T |
| 84600 | 68 65 20 60 60 68 74 74 70 60 60 20 73 65 72 76 69 63 65 20 69 73 20 6c 69 73 74 65 6e 73 20 6f | he.``http``.service.is.listens.o |
| 84620 | 6e 20 70 6f 72 74 20 38 30 20 61 6e 64 20 66 6f 72 63 65 20 72 65 64 69 72 65 63 74 73 20 66 72 | n.port.80.and.force.redirects.fr |
| 84640 | 6f 6d 20 48 54 54 50 20 74 6f 20 48 54 54 50 53 2e 00 54 68 65 20 60 60 68 74 74 70 73 60 60 20 | om.HTTP.to.HTTPS..The.``https``. |
| 84660 | 73 65 72 76 69 63 65 20 6c 69 73 74 65 6e 73 20 6f 6e 20 70 6f 72 74 20 34 34 33 20 77 69 74 68 | service.listens.on.port.443.with |
| 84680 | 20 62 61 63 6b 65 6e 64 20 60 60 62 6b 2d 62 72 69 64 67 65 2d 73 73 6c 60 60 20 74 6f 20 68 61 | .backend.``bk-bridge-ssl``.to.ha |
| 846a0 | 6e 64 6c 65 20 48 54 54 50 53 20 74 72 61 66 66 69 63 2e 20 49 74 20 75 73 65 73 20 63 65 72 74 | ndle.HTTPS.traffic..It.uses.cert |
| 846c0 | 69 66 69 63 61 74 65 20 6e 61 6d 65 64 20 60 60 63 65 72 74 60 60 20 66 6f 72 20 53 53 4c 20 74 | ificate.named.``cert``.for.SSL.t |
| 846e0 | 65 72 6d 69 6e 61 74 69 6f 6e 2e 00 54 68 65 20 60 60 68 74 74 70 73 60 60 20 73 65 72 76 69 63 | ermination..The.``https``.servic |
| 84700 | 65 20 6c 69 73 74 65 6e 73 20 6f 6e 20 70 6f 72 74 20 34 34 33 20 77 69 74 68 20 62 61 63 6b 65 | e.listens.on.port.443.with.backe |
| 84720 | 6e 64 20 60 60 62 6b 2d 64 65 66 61 75 6c 74 60 60 20 74 6f 20 68 61 6e 64 6c 65 20 48 54 54 50 | nd.``bk-default``.to.handle.HTTP |
| 84740 | 53 20 74 72 61 66 66 69 63 2e 20 49 74 20 75 73 65 73 20 63 65 72 74 69 66 69 63 61 74 65 20 6e | S.traffic..It.uses.certificate.n |
| 84760 | 61 6d 65 64 20 60 60 63 65 72 74 60 60 20 66 6f 72 20 53 53 4c 20 74 65 72 6d 69 6e 61 74 69 6f | amed.``cert``.for.SSL.terminatio |
| 84780 | 6e 2e 00 54 68 65 20 60 60 68 74 74 70 73 60 60 20 73 65 72 76 69 63 65 20 6c 69 73 74 65 6e 73 | n..The.``https``.service.listens |
| 847a0 | 20 6f 6e 20 70 6f 72 74 20 34 34 33 20 77 69 74 68 20 62 61 63 6b 65 6e 64 20 60 60 62 6b 2d 64 | .on.port.443.with.backend.``bk-d |
| 847c0 | 65 66 61 75 6c 74 60 60 20 74 6f 20 68 61 6e 64 6c 65 20 48 54 54 50 53 20 74 72 61 66 66 69 63 | efault``.to.handle.HTTPS.traffic |
| 847e0 | 2e 20 49 74 20 75 73 65 73 20 63 65 72 74 69 66 69 63 61 74 65 20 6e 61 6d 65 64 20 60 60 63 65 | ..It.uses.certificate.named.``ce |
| 84800 | 72 74 60 60 20 66 6f 72 20 53 53 4c 20 74 65 72 6d 69 6e 61 74 69 6f 6e 2e 20 48 53 54 53 20 68 | rt``.for.SSL.termination..HSTS.h |
| 84820 | 65 61 64 65 72 20 69 73 20 73 65 74 20 77 69 74 68 20 61 20 31 2d 79 65 61 72 20 65 78 70 69 72 | eader.is.set.with.a.1-year.expir |
| 84840 | 79 2c 20 74 6f 20 74 65 6c 6c 20 62 72 6f 77 73 65 72 73 20 74 6f 20 61 6c 77 61 79 73 20 75 73 | y,.to.tell.browsers.to.always.us |
| 84860 | 65 20 53 53 4c 20 66 6f 72 20 73 69 74 65 2e 00 54 68 65 20 60 60 68 74 74 70 73 60 60 20 73 65 | e.SSL.for.site..The.``https``.se |
| 84880 | 72 76 69 63 65 20 6c 69 73 74 65 6e 73 20 6f 6e 20 70 6f 72 74 20 34 34 33 20 77 69 74 68 20 62 | rvice.listens.on.port.443.with.b |
| 848a0 | 61 63 6b 65 6e 64 20 60 62 6b 2d 64 65 66 61 75 6c 74 60 20 74 6f 20 68 61 6e 64 6c 65 20 48 54 | ackend.`bk-default`.to.handle.HT |
| 848c0 | 54 50 53 20 74 72 61 66 66 69 63 2e 20 49 74 20 75 73 65 73 20 63 65 72 74 69 66 69 63 61 74 65 | TPS.traffic..It.uses.certificate |
| 848e0 | 20 6e 61 6d 65 64 20 60 60 63 65 72 74 60 60 20 66 6f 72 20 53 53 4c 20 74 65 72 6d 69 6e 61 74 | .named.``cert``.for.SSL.terminat |
| 84900 | 69 6f 6e 2e 00 54 68 65 20 60 60 70 65 72 73 69 73 74 65 6e 74 2d 74 75 6e 6e 65 6c 60 60 20 64 | ion..The.``persistent-tunnel``.d |
| 84920 | 69 72 65 63 74 69 76 65 20 77 69 6c 6c 20 61 6c 6c 6f 77 20 75 73 20 74 6f 20 63 6f 6e 66 69 67 | irective.will.allow.us.to.config |
| 84940 | 75 72 65 20 74 75 6e 6e 65 6c 2d 72 65 6c 61 74 65 64 20 61 74 74 72 69 62 75 74 65 73 2c 20 73 | ure.tunnel-related.attributes,.s |
| 84960 | 75 63 68 20 61 73 20 66 69 72 65 77 61 6c 6c 20 70 6f 6c 69 63 79 20 61 73 20 77 65 20 77 6f 75 | uch.as.firewall.policy.as.we.wou |
| 84980 | 6c 64 20 6f 6e 20 61 6e 79 20 6e 6f 72 6d 61 6c 20 6e 65 74 77 6f 72 6b 20 69 6e 74 65 72 66 61 | ld.on.any.normal.network.interfa |
| 849a0 | 63 65 2e 00 54 68 65 20 60 60 73 6f 75 72 63 65 2d 61 64 64 72 65 73 73 60 60 20 6d 75 73 74 20 | ce..The.``source-address``.must. |
| 849c0 | 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 6f 6e 65 20 6f 66 20 56 79 4f 53 20 69 6e 74 | be.configured.on.one.of.VyOS.int |
| 849e0 | 65 72 66 61 63 65 2e 20 42 65 73 74 20 70 72 61 63 74 69 63 65 20 77 6f 75 6c 64 20 62 65 20 61 | erface..Best.practice.would.be.a |
| 84a00 | 20 6c 6f 6f 70 62 61 63 6b 20 6f 72 20 64 75 6d 6d 79 20 69 6e 74 65 72 66 61 63 65 2e 00 54 68 | .loopback.or.dummy.interface..Th |
| 84a20 | 65 20 60 60 73 6f 75 72 63 65 2d 61 64 64 72 65 73 73 60 60 20 6d 75 73 74 20 62 65 20 63 6f 6e | e.``source-address``.must.be.con |
| 84a40 | 66 69 67 75 72 65 64 20 74 6f 20 74 68 61 74 20 6f 66 20 61 6e 20 69 6e 74 65 72 66 61 63 65 2e | figured.to.that.of.an.interface. |
| 84a60 | 20 42 65 73 74 20 70 72 61 63 74 69 63 65 20 77 6f 75 6c 64 20 62 65 20 61 20 6c 6f 6f 70 62 61 | .Best.practice.would.be.a.loopba |
| 84a80 | 63 6b 20 6f 72 20 64 75 6d 6d 79 20 69 6e 74 65 72 66 61 63 65 2e 00 54 68 65 20 60 73 68 6f 77 | ck.or.dummy.interface..The.`show |
| 84aa0 | 20 62 72 69 64 67 65 60 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 63 6f 6d 6d 61 6e 64 20 63 61 6e | .bridge`.operational.command.can |
| 84ac0 | 20 62 65 20 75 73 65 64 20 74 6f 20 64 69 73 70 6c 61 79 20 63 6f 6e 66 69 67 75 72 65 64 20 62 | .be.used.to.display.configured.b |
| 84ae0 | 72 69 64 67 65 73 3a 00 54 68 65 20 61 62 6f 76 65 20 64 69 72 65 63 74 6f 72 79 20 61 6e 64 20 | ridges:.The.above.directory.and. |
| 84b00 | 64 65 66 61 75 6c 74 2d 63 6f 6e 66 69 67 20 6d 75 73 74 20 62 65 20 61 20 63 68 69 6c 64 20 64 | default-config.must.be.a.child.d |
| 84b20 | 69 72 65 63 74 6f 72 79 20 6f 66 20 2f 63 6f 6e 66 69 67 2f 61 75 74 68 2c 20 73 69 6e 63 65 20 | irectory.of./config/auth,.since. |
| 84b40 | 66 69 6c 65 73 20 6f 75 74 73 69 64 65 20 74 68 69 73 20 64 69 72 65 63 74 6f 72 79 20 61 72 65 | files.outside.this.directory.are |
| 84b60 | 20 6e 6f 74 20 70 65 72 73 69 73 74 65 64 20 61 66 74 65 72 20 61 6e 20 69 6d 61 67 65 20 75 70 | .not.persisted.after.an.image.up |
| 84b80 | 67 72 61 64 65 2e 00 54 68 65 20 61 63 74 69 6f 6e 20 63 61 6e 20 62 65 20 3a 00 54 68 65 20 61 | grade..The.action.can.be.:.The.a |
| 84ba0 | 64 64 72 65 73 73 20 6f 66 20 52 6f 75 74 65 72 20 42 20 69 73 20 31 30 2e 30 2e 32 30 2e 31 31 | ddress.of.Router.B.is.10.0.20.11 |
| 84bc0 | 32 20 61 6e 64 20 74 68 65 20 70 6f 72 74 20 75 73 65 64 20 69 73 20 38 34 34 33 00 54 68 65 20 | 2.and.the.port.used.is.8443.The. |
| 84be0 | 61 64 64 72 65 73 73 20 74 68 65 20 73 65 72 76 65 72 20 6c 69 73 74 65 6e 73 20 74 6f 20 64 75 | address.the.server.listens.to.du |
| 84c00 | 72 69 6e 67 20 68 74 74 70 2d 30 31 20 63 68 61 6c 6c 65 6e 67 65 00 54 68 65 20 61 64 76 61 6e | ring.http-01.challenge.The.advan |
| 84c20 | 74 61 67 65 20 6f 66 20 74 68 69 73 20 69 73 20 74 68 61 74 20 74 68 65 20 72 6f 75 74 65 2d 73 | tage.of.this.is.that.the.route-s |
| 84c40 | 65 6c 65 63 74 69 6f 6e 20 28 61 74 20 74 68 69 73 20 70 6f 69 6e 74 29 20 77 69 6c 6c 20 62 65 | election.(at.this.point).will.be |
| 84c60 | 20 6d 6f 72 65 20 64 65 74 65 72 6d 69 6e 69 73 74 69 63 2e 20 54 68 65 20 64 69 73 61 64 76 61 | .more.deterministic..The.disadva |
| 84c80 | 6e 74 61 67 65 20 69 73 20 74 68 61 74 20 61 20 66 65 77 20 6f 72 20 65 76 65 6e 20 6f 6e 65 20 | ntage.is.that.a.few.or.even.one. |
| 84ca0 | 6c 6f 77 65 73 74 2d 49 44 20 72 6f 75 74 65 72 20 6d 61 79 20 61 74 74 72 61 63 74 20 61 6c 6c | lowest-ID.router.may.attract.all |
| 84cc0 | 20 74 72 61 66 66 69 63 20 74 6f 20 6f 74 68 65 72 77 69 73 65 2d 65 71 75 61 6c 20 70 61 74 68 | .traffic.to.otherwise-equal.path |
| 84ce0 | 73 20 62 65 63 61 75 73 65 20 6f 66 20 74 68 69 73 20 63 68 65 63 6b 2e 20 49 74 20 6d 61 79 20 | s.because.of.this.check..It.may. |
| 84d00 | 69 6e 63 72 65 61 73 65 20 74 68 65 20 70 6f 73 73 69 62 69 6c 69 74 79 20 6f 66 20 4d 45 44 20 | increase.the.possibility.of.MED. |
| 84d20 | 6f 72 20 49 47 50 20 6f 73 63 69 6c 6c 61 74 69 6f 6e 2c 20 75 6e 6c 65 73 73 20 6f 74 68 65 72 | or.IGP.oscillation,.unless.other |
| 84d40 | 20 6d 65 61 73 75 72 65 73 20 77 65 72 65 20 74 61 6b 65 6e 20 74 6f 20 61 76 6f 69 64 20 74 68 | .measures.were.taken.to.avoid.th |
| 84d60 | 65 73 65 2e 20 54 68 65 20 65 78 61 63 74 20 62 65 68 61 76 69 6f 75 72 20 77 69 6c 6c 20 62 65 | ese..The.exact.behaviour.will.be |
| 84d80 | 20 73 65 6e 73 69 74 69 76 65 20 74 6f 20 74 68 65 20 69 42 47 50 20 61 6e 64 20 72 65 66 6c 65 | .sensitive.to.the.iBGP.and.refle |
| 84da0 | 63 74 69 6f 6e 20 74 6f 70 6f 6c 6f 67 79 2e 00 54 68 65 20 61 6c 6c 6f 63 61 74 65 64 20 61 64 | ction.topology..The.allocated.ad |
| 84dc0 | 64 72 65 73 73 20 62 6c 6f 63 6b 20 69 73 20 31 30 30 2e 36 34 2e 30 2e 30 2f 31 30 2e 00 54 68 | dress.block.is.100.64.0.0/10..Th |
| 84de0 | 65 20 61 6d 6f 75 6e 74 20 6f 66 20 44 75 70 6c 69 63 61 74 65 20 41 64 64 72 65 73 73 20 44 65 | e.amount.of.Duplicate.Address.De |
| 84e00 | 74 65 63 74 69 6f 6e 20 70 72 6f 62 65 73 20 74 6f 20 73 65 6e 64 2e 00 54 68 65 20 61 74 74 72 | tection.probes.to.send..The.attr |
| 84e20 | 69 62 75 74 65 73 20 3a 63 66 67 63 6d 64 3a 60 70 72 65 66 69 78 2d 6c 69 73 74 60 20 61 6e 64 | ibutes.:cfgcmd:`prefix-list`.and |
| 84e40 | 20 3a 63 66 67 63 6d 64 3a 60 64 69 73 74 72 69 62 75 74 65 2d 6c 69 73 74 60 20 61 72 65 20 6d | .:cfgcmd:`distribute-list`.are.m |
| 84e60 | 75 74 75 61 6c 6c 79 20 65 78 63 6c 75 73 69 76 65 2c 20 61 6e 64 20 6f 6e 6c 79 20 6f 6e 65 20 | utually.exclusive,.and.only.one. |
| 84e80 | 63 6f 6d 6d 61 6e 64 20 28 64 69 73 74 72 69 62 75 74 65 2d 6c 69 73 74 20 6f 72 20 70 72 65 66 | command.(distribute-list.or.pref |
| 84ea0 | 69 78 2d 6c 69 73 74 29 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 65 61 63 68 20 | ix-list).can.be.applied.to.each. |
| 84ec0 | 69 6e 62 6f 75 6e 64 20 6f 72 20 6f 75 74 62 6f 75 6e 64 20 64 69 72 65 63 74 69 6f 6e 20 66 6f | inbound.or.outbound.direction.fo |
| 84ee0 | 72 20 61 20 70 61 72 74 69 63 75 6c 61 72 20 6e 65 69 67 68 62 6f 72 2e 00 54 68 65 20 61 76 61 | r.a.particular.neighbor..The.ava |
| 84f00 | 69 6c 61 62 6c 65 20 6d 6f 64 65 73 20 61 72 65 3a 00 54 68 65 20 61 76 61 69 6c 61 62 6c 65 20 | ilable.modes.are:.The.available. |
| 84f20 | 6f 70 74 69 6f 6e 73 20 66 6f 72 20 3c 6d 61 74 63 68 3e 20 61 72 65 3a 00 54 68 65 20 62 61 73 | options.for.<match>.are:.The.bas |
| 84f40 | 65 20 63 68 61 69 6e 20 66 6f 72 20 74 72 61 66 66 69 63 20 74 6f 77 61 72 64 73 20 74 68 65 20 | e.chain.for.traffic.towards.the. |
| 84f60 | 72 6f 75 74 65 72 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 69 6e | router.is.``set.firewall.ipv4.in |
| 84f80 | 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 00 54 68 65 20 62 61 73 65 20 63 68 61 69 6e 20 | put.filter....``.The.base.chain. |
| 84fa0 | 66 6f 72 20 74 72 61 66 66 69 63 20 74 6f 77 61 72 64 73 20 74 68 65 20 72 6f 75 74 65 72 20 69 | for.traffic.towards.the.router.i |
| 84fc0 | 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 69 6e 70 75 74 20 66 69 6c 74 | s.``set.firewall.ipv6.input.filt |
| 84fe0 | 65 72 20 2e 2e 2e 60 60 00 54 68 65 20 62 61 73 65 20 66 69 72 65 77 61 6c 6c 20 63 68 61 69 6e | er....``.The.base.firewall.chain |
| 85000 | 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 66 69 6c 74 65 72 69 6e 67 20 72 75 6c 65 73 20 66 6f | .to.configure.filtering.rules.fo |
| 85020 | 72 20 74 72 61 6e 73 69 74 20 74 72 61 66 66 69 63 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 | r.transit.traffic.is.``set.firew |
| 85040 | 61 6c 6c 20 69 70 76 34 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2c 20 77 | all.ipv4.forward.filter....``,.w |
| 85060 | 68 69 63 68 20 68 61 70 70 65 6e 73 20 69 6e 20 73 74 61 67 65 20 35 2c 20 68 69 67 68 6c 69 67 | hich.happens.in.stage.5,.highlig |
| 85080 | 68 74 65 64 20 69 6e 20 74 68 65 20 63 6f 6c 6f 72 20 72 65 64 2e 00 54 68 65 20 62 61 73 65 20 | hted.in.the.color.red..The.base. |
| 850a0 | 66 69 72 65 77 61 6c 6c 20 63 68 61 69 6e 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 66 69 6c 74 | firewall.chain.to.configure.filt |
| 850c0 | 65 72 69 6e 67 20 72 75 6c 65 73 20 66 6f 72 20 74 72 61 6e 73 69 74 20 74 72 61 66 66 69 63 20 | ering.rules.for.transit.traffic. |
| 850e0 | 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 66 6f 72 77 61 72 64 20 66 | is.``set.firewall.ipv6.forward.f |
| 85100 | 69 6c 74 65 72 20 2e 2e 2e 60 60 2c 20 77 68 69 63 68 20 68 61 70 70 65 6e 73 20 69 6e 20 73 74 | ilter....``,.which.happens.in.st |
| 85120 | 61 67 65 20 35 2c 20 68 69 67 68 6c 69 67 68 74 65 64 20 69 6e 20 74 68 65 20 63 6f 6c 6f 72 20 | age.5,.highlighted.in.the.color. |
| 85140 | 72 65 64 2e 00 54 68 65 20 62 65 6c 6f 77 20 72 65 66 65 72 65 6e 63 65 64 20 49 50 20 61 64 64 | red..The.below.referenced.IP.add |
| 85160 | 72 65 73 73 20 60 31 39 32 2e 30 2e 32 2e 31 60 20 69 73 20 75 73 65 64 20 61 73 20 65 78 61 6d | ress.`192.0.2.1`.is.used.as.exam |
| 85180 | 70 6c 65 20 61 64 64 72 65 73 73 20 72 65 70 72 65 73 65 6e 74 69 6e 67 20 61 20 67 6c 6f 62 61 | ple.address.representing.a.globa |
| 851a0 | 6c 20 75 6e 69 63 61 73 74 20 61 64 64 72 65 73 73 20 75 6e 64 65 72 20 77 68 69 63 68 20 74 68 | l.unicast.address.under.which.th |
| 851c0 | 65 20 48 55 42 20 63 61 6e 20 62 65 20 63 6f 6e 74 61 63 74 65 64 20 62 79 20 65 61 63 68 20 61 | e.HUB.can.be.contacted.by.each.a |
| 851e0 | 6e 64 20 65 76 65 72 79 20 69 6e 64 69 76 69 64 75 61 6c 20 73 70 6f 6b 65 2e 00 54 68 65 20 62 | nd.every.individual.spoke..The.b |
| 85200 | 6f 6e 64 69 6e 67 20 69 6e 74 65 72 66 61 63 65 20 70 72 6f 76 69 64 65 73 20 61 20 6d 65 74 68 | onding.interface.provides.a.meth |
| 85220 | 6f 64 20 66 6f 72 20 61 67 67 72 65 67 61 74 69 6e 67 20 6d 75 6c 74 69 70 6c 65 20 6e 65 74 77 | od.for.aggregating.multiple.netw |
| 85240 | 6f 72 6b 20 69 6e 74 65 72 66 61 63 65 73 20 69 6e 74 6f 20 61 20 73 69 6e 67 6c 65 20 6c 6f 67 | ork.interfaces.into.a.single.log |
| 85260 | 69 63 61 6c 20 22 62 6f 6e 64 65 64 22 20 69 6e 74 65 72 66 61 63 65 2c 20 6f 72 20 4c 41 47 2c | ical."bonded".interface,.or.LAG, |
| 85280 | 20 6f 72 20 65 74 68 65 72 2d 63 68 61 6e 6e 65 6c 2c 20 6f 72 20 70 6f 72 74 2d 63 68 61 6e 6e | .or.ether-channel,.or.port-chann |
| 852a0 | 65 6c 2e 20 54 68 65 20 62 65 68 61 76 69 6f 72 20 6f 66 20 74 68 65 20 62 6f 6e 64 65 64 20 69 | el..The.behavior.of.the.bonded.i |
| 852c0 | 6e 74 65 72 66 61 63 65 73 20 64 65 70 65 6e 64 73 20 75 70 6f 6e 20 74 68 65 20 6d 6f 64 65 3b | nterfaces.depends.upon.the.mode; |
| 852e0 | 20 67 65 6e 65 72 61 6c 6c 79 20 73 70 65 61 6b 69 6e 67 2c 20 6d 6f 64 65 73 20 70 72 6f 76 69 | .generally.speaking,.modes.provi |
| 85300 | 64 65 20 65 69 74 68 65 72 20 68 6f 74 20 73 74 61 6e 64 62 79 20 6f 72 20 6c 6f 61 64 20 62 61 | de.either.hot.standby.or.load.ba |
| 85320 | 6c 61 6e 63 69 6e 67 20 73 65 72 76 69 63 65 73 2e 20 41 64 64 69 74 69 6f 6e 61 6c 6c 79 2c 20 | lancing.services..Additionally,. |
| 85340 | 6c 69 6e 6b 20 69 6e 74 65 67 72 69 74 79 20 6d 6f 6e 69 74 6f 72 69 6e 67 20 6d 61 79 20 62 65 | link.integrity.monitoring.may.be |
| 85360 | 20 70 65 72 66 6f 72 6d 65 64 2e 00 54 68 65 20 63 61 73 65 20 6f 66 20 69 6e 67 72 65 73 73 20 | .performed..The.case.of.ingress. |
| 85380 | 73 68 61 70 69 6e 67 00 54 68 65 20 63 68 72 6f 6e 79 20 64 61 65 6d 6f 6e 20 6f 6e 20 56 79 4f | shaping.The.chrony.daemon.on.VyO |
| 853a0 | 53 20 63 61 6e 20 6c 65 76 65 72 61 67 65 20 4e 49 43 20 68 61 72 64 77 61 72 65 20 63 61 70 61 | S.can.leverage.NIC.hardware.capa |
| 853c0 | 62 69 6c 69 74 69 65 73 20 74 6f 20 72 65 63 6f 72 64 20 74 68 65 20 65 78 61 63 74 20 74 69 6d | bilities.to.record.the.exact.tim |
| 853e0 | 65 20 70 61 63 6b 65 74 73 20 61 72 65 20 72 65 63 65 69 76 65 64 20 6f 6e 20 74 68 65 20 69 6e | e.packets.are.received.on.the.in |
| 85400 | 74 65 72 66 61 63 65 2c 20 61 73 20 77 65 6c 6c 20 61 73 20 77 68 65 6e 20 70 61 63 6b 65 74 73 | terface,.as.well.as.when.packets |
| 85420 | 20 77 65 72 65 20 61 63 74 75 61 6c 6c 79 20 74 72 61 6e 73 6d 69 74 74 65 64 2e 20 54 68 69 73 | .were.actually.transmitted..This |
| 85440 | 20 70 72 6f 76 69 64 65 73 20 69 6d 70 72 6f 76 65 64 20 61 63 63 75 72 61 63 79 20 61 6e 64 20 | .provides.improved.accuracy.and. |
| 85460 | 73 74 61 62 69 6c 69 74 79 20 77 68 65 6e 20 74 68 65 20 73 79 73 74 65 6d 20 69 73 20 75 6e 64 | stability.when.the.system.is.und |
| 85480 | 65 72 20 6c 6f 61 64 2c 20 61 73 20 71 75 65 75 69 6e 67 20 61 6e 64 20 4f 53 20 63 6f 6e 74 65 | er.load,.as.queuing.and.OS.conte |
| 854a0 | 78 74 20 73 77 69 74 63 68 69 6e 67 20 63 61 6e 20 69 6e 74 72 6f 64 75 63 65 20 61 20 76 61 72 | xt.switching.can.introduce.a.var |
| 854c0 | 69 61 62 6c 65 20 64 65 6c 61 79 20 62 65 74 77 65 65 6e 20 77 68 65 6e 20 74 68 65 20 70 61 63 | iable.delay.between.when.the.pac |
| 854e0 | 6b 65 74 20 69 73 20 72 65 63 65 69 76 65 64 20 6f 6e 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 61 | ket.is.received.on.the.network.a |
| 85500 | 6e 64 20 77 68 65 6e 20 69 74 20 69 73 20 61 63 74 75 61 6c 6c 79 20 70 72 6f 63 65 73 73 65 64 | nd.when.it.is.actually.processed |
| 85520 | 20 62 79 20 74 68 65 20 4e 54 50 20 64 61 65 6d 6f 6e 2e 00 54 68 65 20 63 6c 69 65 6e 74 27 73 | .by.the.NTP.daemon..The.client's |
| 85540 | 20 69 6e 74 65 72 66 61 63 65 20 63 61 6e 20 62 65 20 70 75 74 20 69 6e 74 6f 20 61 20 56 52 46 | .interface.can.be.put.into.a.VRF |
| 85560 | 20 63 6f 6e 74 65 78 74 20 76 69 61 20 61 20 52 41 44 49 55 53 20 41 63 63 65 73 73 2d 41 63 63 | .context.via.a.RADIUS.Access-Acc |
| 85580 | 65 70 74 20 70 61 63 6b 65 74 2c 20 6f 72 20 63 68 61 6e 67 65 64 20 76 69 61 20 52 41 44 49 55 | ept.packet,.or.changed.via.RADIU |
| 855a0 | 53 20 43 6f 41 2e 20 60 60 41 63 63 65 6c 2d 56 52 46 2d 4e 61 6d 65 60 60 20 69 73 20 75 73 65 | S.CoA..``Accel-VRF-Name``.is.use |
| 855c0 | 64 20 66 6f 72 20 74 68 65 73 65 20 70 75 72 70 6f 73 65 73 2e 20 54 68 69 73 20 69 73 20 61 20 | d.for.these.purposes..This.is.a. |
| 855e0 | 63 75 73 74 6f 6d 20 60 41 43 43 45 4c 2d 50 50 50 20 61 74 74 72 69 62 75 74 65 60 5f 2e 20 44 | custom.`ACCEL-PPP.attribute`_..D |
| 85600 | 65 66 69 6e 65 20 69 74 20 69 6e 20 79 6f 75 72 20 52 41 44 49 55 53 20 73 65 72 76 65 72 2e 00 | efine.it.in.your.RADIUS.server.. |
| 85620 | 54 68 65 20 63 6c 69 65 6e 74 2c 20 6f 6e 63 65 20 73 75 63 63 65 73 73 66 75 6c 6c 79 20 61 75 | The.client,.once.successfully.au |
| 85640 | 74 68 65 6e 74 69 63 61 74 65 64 2c 20 77 69 6c 6c 20 72 65 63 65 69 76 65 20 61 6e 20 49 50 76 | thenticated,.will.receive.an.IPv |
| 85660 | 34 20 61 6e 64 20 61 6e 20 49 50 76 36 20 2f 36 34 20 61 64 64 72 65 73 73 20 74 6f 20 74 65 72 | 4.and.an.IPv6./64.address.to.ter |
| 85680 | 6d 69 6e 61 74 65 20 74 68 65 20 50 50 50 6f 45 20 65 6e 64 70 6f 69 6e 74 20 6f 6e 20 74 68 65 | minate.the.PPPoE.endpoint.on.the |
| 856a0 | 20 63 6c 69 65 6e 74 20 73 69 64 65 20 61 6e 64 20 61 20 2f 35 36 20 73 75 62 6e 65 74 20 66 6f | .client.side.and.a./56.subnet.fo |
| 856c0 | 72 20 74 68 65 20 63 6c 69 65 6e 74 73 20 69 6e 74 65 72 6e 61 6c 20 75 73 65 2e 00 54 68 65 20 | r.the.clients.internal.use..The. |
| 856e0 | 63 6c 69 65 6e 74 2c 20 6f 6e 63 65 20 73 75 63 63 65 73 73 66 75 6c 6c 79 20 61 75 74 68 65 6e | client,.once.successfully.authen |
| 85700 | 74 69 63 61 74 65 64 2c 20 77 69 6c 6c 20 72 65 63 65 69 76 65 20 61 6e 20 49 50 76 34 20 61 6e | ticated,.will.receive.an.IPv4.an |
| 85720 | 64 20 61 6e 20 49 50 76 36 20 2f 36 34 20 61 64 64 72 65 73 73 20 74 6f 20 74 65 72 6d 69 6e 61 | d.an.IPv6./64.address.to.termina |
| 85740 | 74 65 20 74 68 65 20 70 70 70 6f 65 20 65 6e 64 70 6f 69 6e 74 20 6f 6e 20 74 68 65 20 63 6c 69 | te.the.pppoe.endpoint.on.the.cli |
| 85760 | 65 6e 74 20 73 69 64 65 20 61 6e 64 20 61 20 2f 35 36 20 73 75 62 6e 65 74 20 66 6f 72 20 74 68 | ent.side.and.a./56.subnet.for.th |
| 85780 | 65 20 63 6c 69 65 6e 74 73 20 69 6e 74 65 72 6e 61 6c 20 75 73 65 2e 00 54 68 65 20 63 6c 69 65 | e.clients.internal.use..The.clie |
| 857a0 | 6e 74 73 20 3a 61 62 62 72 3a 60 43 50 45 20 28 43 75 73 74 6f 6d 65 72 20 50 72 65 6d 69 73 65 | nts.:abbr:`CPE.(Customer.Premise |
| 857c0 | 73 20 45 71 75 69 70 6d 65 6e 74 29 60 20 63 61 6e 20 6e 6f 77 20 63 6f 6d 6d 75 6e 69 63 61 74 | s.Equipment)`.can.now.communicat |
| 857e0 | 65 20 76 69 61 20 49 50 76 34 20 6f 72 20 49 50 76 36 2e 20 41 6c 6c 20 64 65 76 69 63 65 73 20 | e.via.IPv4.or.IPv6..All.devices. |
| 85800 | 62 65 68 69 6e 64 20 60 60 32 30 30 31 3a 64 62 38 3a 3a 61 30 30 3a 32 37 66 66 3a 66 65 32 66 | behind.``2001:db8::a00:27ff:fe2f |
| 85820 | 3a 64 38 30 36 2f 36 34 60 60 20 63 61 6e 20 75 73 65 20 61 64 64 72 65 73 73 65 73 20 66 72 6f | :d806/64``.can.use.addresses.fro |
| 85840 | 6d 20 60 60 32 30 30 31 3a 64 62 38 3a 31 3a 3a 2f 35 36 60 60 20 61 6e 64 20 63 61 6e 20 67 6c | m.``2001:db8:1::/56``.and.can.gl |
| 85860 | 6f 62 61 6c 6c 79 20 63 6f 6d 6d 75 6e 69 63 61 74 65 20 77 69 74 68 6f 75 74 20 74 68 65 20 6e | obally.communicate.without.the.n |
| 85880 | 65 65 64 20 6f 66 20 61 6e 79 20 4e 41 54 20 72 75 6c 65 73 2e 00 54 68 65 20 63 6f 6d 6d 61 6e | eed.of.any.NAT.rules..The.comman |
| 858a0 | 64 20 3a 6f 70 63 6d 64 3a 60 73 68 6f 77 20 69 6e 74 65 72 66 61 63 65 73 20 77 69 72 65 67 75 | d.:opcmd:`show.interfaces.wiregu |
| 858c0 | 61 72 64 20 77 67 30 31 20 70 75 62 6c 69 63 2d 6b 65 79 60 20 77 69 6c 6c 20 74 68 65 6e 20 73 | ard.wg01.public-key`.will.then.s |
| 858e0 | 68 6f 77 20 74 68 65 20 70 75 62 6c 69 63 20 6b 65 79 2c 20 77 68 69 63 68 20 6e 65 65 64 73 20 | how.the.public.key,.which.needs. |
| 85900 | 74 6f 20 62 65 20 73 68 61 72 65 64 20 77 69 74 68 20 74 68 65 20 70 65 65 72 2e 00 54 68 65 20 | to.be.shared.with.the.peer..The. |
| 85920 | 63 6f 6d 6d 61 6e 64 20 61 6c 73 6f 20 67 65 6e 65 72 61 74 65 73 20 61 20 63 6f 6e 66 69 67 75 | command.also.generates.a.configu |
| 85940 | 72 61 74 69 6f 6e 20 73 6e 69 70 70 65 64 20 77 68 69 63 68 20 63 61 6e 20 62 65 20 63 6f 70 79 | ration.snipped.which.can.be.copy |
| 85960 | 2f 70 61 73 74 65 64 20 69 6e 74 6f 20 74 68 65 20 56 79 4f 53 20 43 4c 49 20 69 66 20 6e 65 65 | /pasted.into.the.VyOS.CLI.if.nee |
| 85980 | 64 65 64 2e 20 54 68 65 20 73 75 70 70 6c 69 65 64 20 60 60 3c 6e 61 6d 65 3e 60 60 20 6f 6e 20 | ded..The.supplied.``<name>``.on. |
| 859a0 | 74 68 65 20 43 4c 49 20 77 69 6c 6c 20 62 65 63 6f 6d 65 20 74 68 65 20 70 65 65 72 20 6e 61 6d | the.CLI.will.become.the.peer.nam |
| 859c0 | 65 20 69 6e 20 74 68 65 20 73 6e 69 70 70 65 74 2e 00 54 68 65 20 63 6f 6d 6d 61 6e 64 20 61 6c | e.in.the.snippet..The.command.al |
| 859e0 | 73 6f 20 67 65 6e 65 72 61 74 65 73 20 61 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 73 6e 69 | so.generates.a.configuration.sni |
| 85a00 | 70 70 65 74 20 77 68 69 63 68 20 63 61 6e 20 62 65 20 63 6f 70 79 2f 70 61 73 74 65 64 20 69 6e | ppet.which.can.be.copy/pasted.in |
| 85a20 | 74 6f 20 74 68 65 20 56 79 4f 53 20 43 4c 49 20 69 66 20 6e 65 65 64 65 64 2e 20 54 68 65 20 73 | to.the.VyOS.CLI.if.needed..The.s |
| 85a40 | 75 70 70 6c 69 65 64 20 60 60 3c 6e 61 6d 65 3e 60 60 20 6f 6e 20 74 68 65 20 43 4c 49 20 77 69 | upplied.``<name>``.on.the.CLI.wi |
| 85a60 | 6c 6c 20 62 65 63 6f 6d 65 20 74 68 65 20 70 65 65 72 20 6e 61 6d 65 20 69 6e 20 74 68 65 20 73 | ll.become.the.peer.name.in.the.s |
| 85a80 | 6e 69 70 70 65 74 2e 00 54 68 65 20 63 6f 6d 6d 61 6e 64 20 62 65 6c 6f 77 20 65 6e 61 62 6c 65 | nippet..The.command.below.enable |
| 85aa0 | 73 20 69 74 2c 20 61 73 73 75 6d 69 6e 67 20 74 68 65 20 52 41 44 49 55 53 20 63 6f 6e 6e 65 63 | s.it,.assuming.the.RADIUS.connec |
| 85ac0 | 74 69 6f 6e 20 68 61 73 20 62 65 65 6e 20 73 65 74 75 70 20 61 6e 64 20 69 73 20 77 6f 72 6b 69 | tion.has.been.setup.and.is.worki |
| 85ae0 | 6e 67 2e 00 54 68 65 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 63 75 72 72 65 6e 74 | ng..The.command.displays.current |
| 85b00 | 20 52 49 50 20 73 74 61 74 75 73 2e 20 49 74 20 69 6e 63 6c 75 64 65 73 20 52 49 50 20 74 69 6d | .RIP.status..It.includes.RIP.tim |
| 85b20 | 65 72 2c 20 66 69 6c 74 65 72 69 6e 67 2c 20 76 65 72 73 69 6f 6e 2c 20 52 49 50 20 65 6e 61 62 | er,.filtering,.version,.RIP.enab |
| 85b40 | 6c 65 64 20 69 6e 74 65 72 66 61 63 65 20 61 6e 64 20 52 49 50 20 70 65 65 72 20 69 6e 66 6f 72 | led.interface.and.RIP.peer.infor |
| 85b60 | 6d 61 74 69 6f 6e 2e 00 54 68 65 20 63 6f 6d 6d 61 6e 64 20 70 6f 6e 20 54 45 53 54 55 4e 4e 45 | mation..The.command.pon.TESTUNNE |
| 85b80 | 4c 20 65 73 74 61 62 6c 69 73 68 65 73 20 74 68 65 20 50 50 54 50 20 74 75 6e 6e 65 6c 20 74 6f | L.establishes.the.PPTP.tunnel.to |
| 85ba0 | 20 74 68 65 20 72 65 6d 6f 74 65 20 73 79 73 74 65 6d 2e 00 54 68 65 20 63 6f 6d 6d 61 6e 64 20 | .the.remote.system..The.command. |
| 85bc0 | 74 72 61 6e 73 6c 61 74 65 73 20 74 6f 20 22 2d 2d 63 70 75 73 3d 3c 6e 75 6d 3e 22 20 77 68 65 | translates.to."--cpus=<num>".whe |
| 85be0 | 6e 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 20 69 73 20 63 72 65 61 74 65 64 2e 00 54 68 65 20 | n.the.container.is.created..The. |
| 85c00 | 63 6f 6d 6d 61 6e 64 20 74 72 61 6e 73 6c 61 74 65 73 20 74 6f 20 22 2d 2d 6e 65 74 20 68 6f 73 | command.translates.to."--net.hos |
| 85c20 | 74 22 20 77 68 65 6e 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 20 69 73 20 63 72 65 61 74 65 64 | t".when.the.container.is.created |
| 85c40 | 2e 00 54 68 65 20 63 6f 6d 6d 61 6e 64 20 74 72 61 6e 73 6c 61 74 65 73 20 74 6f 20 22 2d 2d 70 | ..The.command.translates.to."--p |
| 85c60 | 69 64 20 68 6f 73 74 22 20 77 68 65 6e 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 20 69 73 20 63 | id.host".when.the.container.is.c |
| 85c80 | 72 65 61 74 65 64 2e 00 54 68 65 20 63 6f 6d 70 75 74 65 72 73 20 6f 6e 20 61 6e 20 69 6e 74 65 | reated..The.computers.on.an.inte |
| 85ca0 | 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 20 63 61 6e 20 75 73 65 20 61 6e 79 20 6f 66 20 74 68 65 20 | rnal.network.can.use.any.of.the. |
| 85cc0 | 61 64 64 72 65 73 73 65 73 20 73 65 74 20 61 73 69 64 65 20 62 79 20 74 68 65 20 3a 61 62 62 72 | addresses.set.aside.by.the.:abbr |
| 85ce0 | 3a 60 49 41 4e 41 20 28 49 6e 74 65 72 6e 65 74 20 41 73 73 69 67 6e 65 64 20 4e 75 6d 62 65 72 | :`IANA.(Internet.Assigned.Number |
| 85d00 | 73 20 41 75 74 68 6f 72 69 74 79 29 60 20 66 6f 72 20 70 72 69 76 61 74 65 20 61 64 64 72 65 73 | s.Authority)`.for.private.addres |
| 85d20 | 73 69 6e 67 20 28 73 65 65 20 3a 72 66 63 3a 60 31 39 31 38 60 29 2e 20 54 68 65 73 65 20 72 65 | sing.(see.:rfc:`1918`)..These.re |
| 85d40 | 73 65 72 76 65 64 20 49 50 20 61 64 64 72 65 73 73 65 73 20 61 72 65 20 6e 6f 74 20 69 6e 20 75 | served.IP.addresses.are.not.in.u |
| 85d60 | 73 65 20 6f 6e 20 74 68 65 20 49 6e 74 65 72 6e 65 74 2c 20 73 6f 20 61 6e 20 65 78 74 65 72 6e | se.on.the.Internet,.so.an.extern |
| 85d80 | 61 6c 20 6d 61 63 68 69 6e 65 20 77 69 6c 6c 20 6e 6f 74 20 64 69 72 65 63 74 6c 79 20 72 6f 75 | al.machine.will.not.directly.rou |
| 85da0 | 74 65 20 74 6f 20 74 68 65 6d 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 61 64 64 72 65 73 | te.to.them..The.following.addres |
| 85dc0 | 73 65 73 20 61 72 65 20 72 65 73 65 72 76 65 64 20 66 6f 72 20 70 72 69 76 61 74 65 20 75 73 65 | ses.are.reserved.for.private.use |
| 85de0 | 3a 00 54 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 77 69 6c 6c 20 6c 6f 6f 6b 20 61 73 | :.The.configuration.will.look.as |
| 85e00 | 20 66 6f 6c 6c 6f 77 73 3a 00 54 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 73 20 61 62 6f | .follows:.The.configurations.abo |
| 85e20 | 76 65 20 77 69 6c 6c 20 64 65 66 61 75 6c 74 20 74 6f 20 75 73 69 6e 67 20 32 35 36 2d 62 69 74 | ve.will.default.to.using.256-bit |
| 85e40 | 20 41 45 53 20 69 6e 20 47 43 4d 20 6d 6f 64 65 20 66 6f 72 20 65 6e 63 72 79 70 74 69 6f 6e 20 | .AES.in.GCM.mode.for.encryption. |
| 85e60 | 28 69 66 20 62 6f 74 68 20 73 69 64 65 73 20 73 75 70 70 6f 72 74 20 4e 43 50 29 20 61 6e 64 20 | (if.both.sides.support.NCP).and. |
| 85e80 | 53 48 41 2d 31 20 66 6f 72 20 48 4d 41 43 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2e 20 53 | SHA-1.for.HMAC.authentication..S |
| 85ea0 | 48 41 2d 31 20 69 73 20 63 6f 6e 73 69 64 65 72 65 64 20 77 65 61 6b 2c 20 62 75 74 20 6f 74 68 | HA-1.is.considered.weak,.but.oth |
| 85ec0 | 65 72 20 68 61 73 68 69 6e 67 20 61 6c 67 6f 72 69 74 68 6d 73 20 61 72 65 20 61 76 61 69 6c 61 | er.hashing.algorithms.are.availa |
| 85ee0 | 62 6c 65 2c 20 61 73 20 61 72 65 20 65 6e 63 72 79 70 74 69 6f 6e 20 61 6c 67 6f 72 69 74 68 6d | ble,.as.are.encryption.algorithm |
| 85f00 | 73 3a 00 54 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 73 20 61 62 6f 76 65 20 77 69 6c 6c | s:.The.configurations.above.will |
| 85f20 | 20 64 65 66 61 75 6c 74 20 74 6f 20 75 73 69 6e 67 20 32 35 36 2d 62 69 74 20 41 45 53 20 69 6e | .default.to.using.256-bit.AES.in |
| 85f40 | 20 47 43 4d 20 6d 6f 64 65 20 66 6f 72 20 65 6e 63 72 79 70 74 69 6f 6e 20 28 69 66 20 62 6f 74 | .GCM.mode.for.encryption.(if.bot |
| 85f60 | 68 20 73 69 64 65 73 20 73 75 70 70 6f 72 74 20 64 61 74 61 20 63 69 70 68 65 72 20 6e 65 67 6f | h.sides.support.data.cipher.nego |
| 85f80 | 74 69 61 74 69 6f 6e 29 20 61 6e 64 20 53 48 41 2d 31 20 66 6f 72 20 48 4d 41 43 20 61 75 74 68 | tiation).and.SHA-1.for.HMAC.auth |
| 85fa0 | 65 6e 74 69 63 61 74 69 6f 6e 2e 20 53 48 41 2d 31 20 69 73 20 63 6f 6e 73 69 64 65 72 65 64 20 | entication..SHA-1.is.considered. |
| 85fc0 | 77 65 61 6b 2c 20 62 75 74 20 6f 74 68 65 72 20 68 61 73 68 69 6e 67 20 61 6c 67 6f 72 69 74 68 | weak,.but.other.hashing.algorith |
| 85fe0 | 6d 73 20 61 72 65 20 61 76 61 69 6c 61 62 6c 65 2c 20 61 73 20 61 72 65 20 65 6e 63 72 79 70 74 | ms.are.available,.as.are.encrypt |
| 86000 | 69 6f 6e 20 61 6c 67 6f 72 69 74 68 6d 73 3a 00 54 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 73 | ion.algorithms:.The.connection.s |
| 86020 | 74 61 74 65 20 68 6f 77 65 76 65 72 20 69 73 20 63 6f 6d 70 6c 65 74 65 6c 79 20 69 6e 64 65 70 | tate.however.is.completely.indep |
| 86040 | 65 6e 64 65 6e 74 20 6f 66 20 61 6e 79 20 75 70 70 65 72 2d 6c 65 76 65 6c 20 73 74 61 74 65 2c | endent.of.any.upper-level.state, |
| 86060 | 20 73 75 63 68 20 61 73 20 54 43 50 27 73 20 6f 72 20 53 43 54 50 27 73 20 73 74 61 74 65 2e 20 | .such.as.TCP's.or.SCTP's.state.. |
| 86080 | 50 61 72 74 20 6f 66 20 74 68 65 20 72 65 61 73 6f 6e 20 66 6f 72 20 74 68 69 73 20 69 73 20 74 | Part.of.the.reason.for.this.is.t |
| 860a0 | 68 61 74 20 77 68 65 6e 20 6d 65 72 65 6c 79 20 66 6f 72 77 61 72 64 69 6e 67 20 70 61 63 6b 65 | hat.when.merely.forwarding.packe |
| 860c0 | 74 73 2c 20 69 2e 65 2e 20 6e 6f 20 6c 6f 63 61 6c 20 64 65 6c 69 76 65 72 79 2c 20 74 68 65 20 | ts,.i.e..no.local.delivery,.the. |
| 860e0 | 54 43 50 20 65 6e 67 69 6e 65 20 6d 61 79 20 6e 6f 74 20 6e 65 63 65 73 73 61 72 69 6c 79 20 62 | TCP.engine.may.not.necessarily.b |
| 86100 | 65 20 69 6e 76 6f 6b 65 64 20 61 74 20 61 6c 6c 2e 20 45 76 65 6e 20 63 6f 6e 6e 65 63 74 69 6f | e.invoked.at.all..Even.connectio |
| 86120 | 6e 6c 65 73 73 2d 6d 6f 64 65 20 74 72 61 6e 73 6d 69 73 73 69 6f 6e 73 20 73 75 63 68 20 61 73 | nless-mode.transmissions.such.as |
| 86140 | 20 55 44 50 2c 20 49 50 73 65 63 20 28 41 48 2f 45 53 50 29 2c 20 47 52 45 20 61 6e 64 20 6f 74 | .UDP,.IPsec.(AH/ESP),.GRE.and.ot |
| 86160 | 68 65 72 20 74 75 6e 6e 65 6c 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 73 20 68 61 76 65 2c 20 61 74 | her.tunneling.protocols.have,.at |
| 86180 | 20 6c 65 61 73 74 2c 20 61 20 70 73 65 75 64 6f 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 73 74 61 74 | .least,.a.pseudo.connection.stat |
| 861a0 | 65 2e 20 54 68 65 20 68 65 75 72 69 73 74 69 63 20 66 6f 72 20 73 75 63 68 20 70 72 6f 74 6f 63 | e..The.heuristic.for.such.protoc |
| 861c0 | 6f 6c 73 20 69 73 20 6f 66 74 65 6e 20 62 61 73 65 64 20 75 70 6f 6e 20 61 20 70 72 65 73 65 74 | ols.is.often.based.upon.a.preset |
| 861e0 | 20 74 69 6d 65 6f 75 74 20 76 61 6c 75 65 20 66 6f 72 20 69 6e 61 63 74 69 76 69 74 79 2c 20 61 | .timeout.value.for.inactivity,.a |
| 86200 | 66 74 65 72 20 77 68 6f 73 65 20 65 78 70 69 72 61 74 69 6f 6e 20 61 20 4e 65 74 66 69 6c 74 65 | fter.whose.expiration.a.Netfilte |
| 86220 | 72 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 69 73 20 64 72 6f 70 70 65 64 2e 00 54 68 65 20 63 6f 6e | r.connection.is.dropped..The.con |
| 86240 | 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 65 78 70 65 63 74 20 74 61 62 6c 65 20 63 6f | nection.tracking.expect.table.co |
| 86260 | 6e 74 61 69 6e 73 20 6f 6e 65 20 65 6e 74 72 79 20 66 6f 72 20 65 61 63 68 20 65 78 70 65 63 74 | ntains.one.entry.for.each.expect |
| 86280 | 65 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 72 65 6c 61 74 65 64 20 74 6f 20 61 6e 20 65 78 69 73 | ed.connection.related.to.an.exis |
| 862a0 | 74 69 6e 67 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 20 54 68 65 73 65 20 61 72 65 20 67 65 6e 65 72 | ting.connection..These.are.gener |
| 862c0 | 61 6c 6c 79 20 75 73 65 64 20 62 79 20 e2 80 9c 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b | ally.used.by....connection.track |
| 862e0 | 69 6e 67 20 68 65 6c 70 65 72 e2 80 9d 20 6d 6f 64 75 6c 65 73 20 73 75 63 68 20 61 73 20 46 54 | ing.helper....modules.such.as.FT |
| 86300 | 50 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 73 69 7a 65 20 6f 66 20 74 68 65 20 65 78 70 65 63 | P..The.default.size.of.the.expec |
| 86320 | 74 20 74 61 62 6c 65 20 69 73 20 32 30 34 38 20 65 6e 74 72 69 65 73 2e 00 54 68 65 20 63 6f 6e | t.table.is.2048.entries..The.con |
| 86340 | 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 74 61 62 6c 65 20 63 6f 6e 74 61 69 6e 73 20 | nection.tracking.table.contains. |
| 86360 | 6f 6e 65 20 65 6e 74 72 79 20 66 6f 72 20 65 61 63 68 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 62 65 | one.entry.for.each.connection.be |
| 86380 | 69 6e 67 20 74 72 61 63 6b 65 64 20 62 79 20 74 68 65 20 73 79 73 74 65 6d 2e 00 54 68 65 20 63 | ing.tracked.by.the.system..The.c |
| 863a0 | 6f 6e 74 61 69 6e 65 72 20 61 6e 64 20 74 68 65 20 68 6f 73 74 20 73 68 61 72 65 20 74 68 65 20 | ontainer.and.the.host.share.the. |
| 863c0 | 73 61 6d 65 20 70 72 6f 63 65 73 73 20 6e 61 6d 65 73 70 61 63 65 2e 20 54 68 69 73 20 6d 65 61 | same.process.namespace..This.mea |
| 863e0 | 6e 73 20 74 68 61 74 20 70 72 6f 63 65 73 73 65 73 20 72 75 6e 6e 69 6e 67 20 6f 6e 20 74 68 65 | ns.that.processes.running.on.the |
| 86400 | 20 68 6f 73 74 20 61 72 65 20 76 69 73 69 62 6c 65 20 69 6e 73 69 64 65 20 74 68 65 20 63 6f 6e | .host.are.visible.inside.the.con |
| 86420 | 74 61 69 6e 65 72 2c 20 61 6e 64 20 70 72 6f 63 65 73 73 65 73 20 69 6e 73 69 64 65 20 74 68 65 | tainer,.and.processes.inside.the |
| 86440 | 20 63 6f 6e 74 61 69 6e 65 72 20 61 72 65 20 76 69 73 69 62 6c 65 20 6f 6e 20 74 68 65 20 68 6f | .container.are.visible.on.the.ho |
| 86460 | 73 74 2e 00 54 68 65 20 63 75 72 72 65 6e 74 20 61 74 74 72 69 62 75 74 65 20 27 46 69 6c 74 65 | st..The.current.attribute.'Filte |
| 86480 | 72 2d 49 64 27 20 69 73 20 62 65 69 6e 67 20 75 73 65 64 20 61 73 20 64 65 66 61 75 6c 74 20 61 | r-Id'.is.being.used.as.default.a |
| 864a0 | 6e 64 20 63 61 6e 20 62 65 20 73 65 74 75 70 20 77 69 74 68 69 6e 20 52 41 44 49 55 53 3a 00 54 | nd.can.be.setup.within.RADIUS:.T |
| 864c0 | 68 65 20 63 75 72 72 65 6e 74 20 61 74 74 72 69 62 75 74 65 20 60 60 46 69 6c 74 65 72 2d 49 64 | he.current.attribute.``Filter-Id |
| 864e0 | 60 60 20 69 73 20 62 65 69 6e 67 20 75 73 65 64 20 61 73 20 64 65 66 61 75 6c 74 20 61 6e 64 20 | ``.is.being.used.as.default.and. |
| 86500 | 63 61 6e 20 62 65 20 73 65 74 75 70 20 77 69 74 68 69 6e 20 52 41 44 49 55 53 3a 00 54 68 65 20 | can.be.setup.within.RADIUS:.The. |
| 86520 | 63 75 72 72 65 6e 74 20 70 72 6f 74 6f 63 6f 6c 20 69 73 20 76 65 72 73 69 6f 6e 20 34 20 28 4e | current.protocol.is.version.4.(N |
| 86540 | 54 50 76 34 29 2c 20 77 68 69 63 68 20 69 73 20 61 20 70 72 6f 70 6f 73 65 64 20 73 74 61 6e 64 | TPv4),.which.is.a.proposed.stand |
| 86560 | 61 72 64 20 61 73 20 64 6f 63 75 6d 65 6e 74 65 64 20 69 6e 20 3a 72 66 63 3a 60 35 39 30 35 60 | ard.as.documented.in.:rfc:`5905` |
| 86580 | 2e 20 49 74 20 69 73 20 62 61 63 6b 77 61 72 64 20 63 6f 6d 70 61 74 69 62 6c 65 20 77 69 74 68 | ..It.is.backward.compatible.with |
| 865a0 | 20 76 65 72 73 69 6f 6e 20 33 2c 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 3a 72 66 63 3a 60 31 | .version.3,.specified.in.:rfc:`1 |
| 865c0 | 33 30 35 60 2e 00 54 68 65 20 64 61 65 6d 6f 6e 20 64 6f 75 62 6c 65 73 20 74 68 65 20 73 69 7a | 305`..The.daemon.doubles.the.siz |
| 865e0 | 65 20 6f 66 20 74 68 65 20 6e 65 74 6c 69 6e 6b 20 65 76 65 6e 74 20 73 6f 63 6b 65 74 20 62 75 | e.of.the.netlink.event.socket.bu |
| 86600 | 66 66 65 72 20 73 69 7a 65 20 69 66 20 69 74 20 64 65 74 65 63 74 73 20 6e 65 74 6c 69 6e 6b 20 | ffer.size.if.it.detects.netlink. |
| 86620 | 65 76 65 6e 74 20 6d 65 73 73 61 67 65 20 64 72 6f 70 70 69 6e 67 2e 20 54 68 69 73 20 63 6c 61 | event.message.dropping..This.cla |
| 86640 | 75 73 65 20 73 65 74 73 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 62 75 66 66 65 72 20 73 69 7a 65 | use.sets.the.maximum.buffer.size |
| 86660 | 20 67 72 6f 77 74 68 20 74 68 61 74 20 63 61 6e 20 62 65 20 72 65 61 63 68 65 64 2e 00 54 68 65 | .growth.that.can.be.reached..The |
| 86680 | 20 64 65 66 61 75 6c 74 20 52 41 44 49 55 53 20 61 74 74 72 69 62 75 74 65 20 66 6f 72 20 72 61 | .default.RADIUS.attribute.for.ra |
| 866a0 | 74 65 20 6c 69 6d 69 74 69 6e 67 20 69 73 20 60 60 46 69 6c 74 65 72 2d 49 64 60 60 2c 20 62 75 | te.limiting.is.``Filter-Id``,.bu |
| 866c0 | 74 20 79 6f 75 20 6d 61 79 20 61 6c 73 6f 20 72 65 64 65 66 69 6e 65 20 69 74 2e 00 54 68 65 20 | t.you.may.also.redefine.it..The. |
| 866e0 | 64 65 66 61 75 6c 74 20 56 79 4f 53 20 75 73 65 72 20 61 63 63 6f 75 6e 74 20 28 60 76 79 6f 73 | default.VyOS.user.account.(`vyos |
| 86700 | 60 29 2c 20 61 73 20 77 65 6c 6c 20 61 73 20 6e 65 77 6c 79 20 63 72 65 61 74 65 64 20 75 73 65 | `),.as.well.as.newly.created.use |
| 86720 | 72 20 61 63 63 6f 75 6e 74 73 2c 20 68 61 76 65 20 61 6c 6c 20 63 61 70 61 62 69 6c 69 74 69 65 | r.accounts,.have.all.capabilitie |
| 86740 | 73 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 73 79 73 74 65 6d 2e 20 41 6c 6c 20 61 | s.to.configure.the.system..All.a |
| 86760 | 63 63 6f 75 6e 74 73 20 68 61 76 65 20 73 75 64 6f 20 63 61 70 61 62 69 6c 69 74 69 65 73 20 61 | ccounts.have.sudo.capabilities.a |
| 86780 | 6e 64 20 74 68 65 72 65 66 6f 72 65 20 63 61 6e 20 6f 70 65 72 61 74 65 20 61 73 20 72 6f 6f 74 | nd.therefore.can.operate.as.root |
| 867a0 | 20 6f 6e 20 74 68 65 20 73 79 73 74 65 6d 2e 00 54 68 65 20 64 65 66 61 75 6c 74 20 68 6f 73 74 | .on.the.system..The.default.host |
| 867c0 | 6e 61 6d 65 20 75 73 65 64 20 69 73 20 60 76 79 6f 73 60 2e 00 54 68 65 20 64 65 66 61 75 6c 74 | name.used.is.`vyos`..The.default |
| 867e0 | 20 69 73 20 31 34 39 32 2e 00 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 60 60 38 30 32 2e 31 | .is.1492..The.default.is.``802.1 |
| 86800 | 71 60 60 2e 00 54 68 65 20 64 65 66 61 75 6c 74 20 6c 65 61 73 65 20 74 69 6d 65 20 66 6f 72 20 | q``..The.default.lease.time.for. |
| 86820 | 44 48 43 50 76 36 20 6c 65 61 73 65 73 20 69 73 20 32 34 20 68 6f 75 72 73 2e 20 54 68 69 73 20 | DHCPv6.leases.is.24.hours..This. |
| 86840 | 63 61 6e 20 62 65 20 63 68 61 6e 67 65 64 20 62 79 20 73 75 70 70 6c 79 69 6e 67 20 61 20 60 60 | can.be.changed.by.supplying.a.`` |
| 86860 | 64 65 66 61 75 6c 74 2d 74 69 6d 65 60 60 2c 20 60 60 6d 61 78 69 6d 75 6d 2d 74 69 6d 65 60 60 | default-time``,.``maximum-time`` |
| 86880 | 20 61 6e 64 20 60 60 6d 69 6e 69 6d 75 6d 2d 74 69 6d 65 60 60 2e 20 41 6c 6c 20 76 61 6c 75 65 | .and.``minimum-time``..All.value |
| 868a0 | 73 20 6e 65 65 64 20 74 6f 20 62 65 20 73 75 70 70 6c 69 65 64 20 69 6e 20 73 65 63 6f 6e 64 73 | s.need.to.be.supplied.in.seconds |
| 868c0 | 2e 00 54 68 65 20 64 65 66 61 75 6c 74 20 70 6f 72 74 20 75 64 70 20 69 73 20 73 65 74 20 74 6f | ..The.default.port.udp.is.set.to |
| 868e0 | 20 38 34 37 32 2e 20 49 74 20 63 61 6e 20 62 65 20 63 68 61 6e 67 65 64 20 77 69 74 68 20 60 60 | .8472..It.can.be.changed.with.`` |
| 86900 | 73 65 74 20 69 6e 74 65 72 66 61 63 65 20 76 78 6c 61 6e 20 3c 76 78 6c 61 6e 4e 3e 20 70 6f 72 | set.interface.vxlan.<vxlanN>.por |
| 86920 | 74 20 3c 70 6f 72 74 3e 60 60 00 54 68 65 20 64 65 66 61 75 6c 74 20 74 69 6d 65 20 69 73 20 36 | t.<port>``.The.default.time.is.6 |
| 86940 | 30 20 73 65 63 6f 6e 64 73 2e 00 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 63 6f 72 | 0.seconds..The.default.value.cor |
| 86960 | 72 65 73 70 6f 6e 64 73 20 74 6f 20 36 34 2e 00 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 | responds.to.64..The.default.valu |
| 86980 | 65 20 69 73 20 30 2e 20 54 68 69 73 20 77 69 6c 6c 20 63 61 75 73 65 20 74 68 65 20 63 61 72 72 | e.is.0..This.will.cause.the.carr |
| 869a0 | 69 65 72 20 74 6f 20 62 65 20 61 73 73 65 72 74 65 64 20 28 66 6f 72 20 38 30 32 2e 33 61 64 20 | ier.to.be.asserted.(for.802.3ad. |
| 869c0 | 6d 6f 64 65 29 20 77 68 65 6e 65 76 65 72 20 74 68 65 72 65 20 69 73 20 61 6e 20 61 63 74 69 76 | mode).whenever.there.is.an.activ |
| 869e0 | 65 20 61 67 67 72 65 67 61 74 6f 72 2c 20 72 65 67 61 72 64 6c 65 73 73 20 6f 66 20 74 68 65 20 | e.aggregator,.regardless.of.the. |
| 86a00 | 6e 75 6d 62 65 72 20 6f 66 20 61 76 61 69 6c 61 62 6c 65 20 6c 69 6e 6b 73 20 69 6e 20 74 68 61 | number.of.available.links.in.tha |
| 86a20 | 74 20 61 67 67 72 65 67 61 74 6f 72 2e 00 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 | t.aggregator..The.default.value. |
| 86a40 | 69 73 20 33 20 70 61 63 6b 65 74 73 2e 00 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 | is.3.packets..The.default.value. |
| 86a60 | 69 73 20 33 2e 00 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 33 30 30 20 73 | is.3..The.default.value.is.300.s |
| 86a80 | 65 63 6f 6e 64 73 2e 00 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 36 30 30 | econds..The.default.value.is.600 |
| 86aa0 | 20 73 65 63 6f 6e 64 73 2e 00 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 37 | .seconds..The.default.value.is.7 |
| 86ac0 | 32 30 30 20 73 65 63 6f 6e 64 73 2e 00 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 | 200.seconds..The.default.value.i |
| 86ae0 | 73 20 38 36 34 30 30 20 73 65 63 6f 6e 64 73 20 77 68 69 63 68 20 63 6f 72 72 65 73 70 6f 6e 64 | s.86400.seconds.which.correspond |
| 86b00 | 73 20 74 6f 20 6f 6e 65 20 64 61 79 2e 00 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 | s.to.one.day..The.default.value. |
| 86b20 | 69 73 20 73 6c 6f 77 2e 00 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 73 20 66 6f 72 20 | is.slow..The.default.values.for. |
| 86b40 | 74 68 65 20 6d 69 6e 69 6d 75 6d 2d 74 68 72 65 73 68 6f 6c 64 20 64 65 70 65 6e 64 20 6f 6e 20 | the.minimum-threshold.depend.on. |
| 86b60 | 49 50 20 70 72 65 63 65 64 65 6e 63 65 3a 00 54 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 70 | IP.precedence:.The.destination.p |
| 86b80 | 6f 72 74 20 75 73 65 64 20 66 6f 72 20 63 72 65 61 74 69 6e 67 20 61 20 56 58 4c 41 4e 20 69 6e | ort.used.for.creating.a.VXLAN.in |
| 86ba0 | 74 65 72 66 61 63 65 20 69 6e 20 4c 69 6e 75 78 20 64 65 66 61 75 6c 74 73 20 74 6f 20 69 74 73 | terface.in.Linux.defaults.to.its |
| 86bc0 | 20 70 72 65 2d 73 74 61 6e 64 61 72 64 20 76 61 6c 75 65 20 6f 66 20 38 34 37 32 20 74 6f 20 70 | .pre-standard.value.of.8472.to.p |
| 86be0 | 72 65 73 65 72 76 65 20 62 61 63 6b 77 61 72 64 20 63 6f 6d 70 61 74 69 62 69 6c 69 74 79 2e 20 | reserve.backward.compatibility.. |
| 86c00 | 41 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 64 69 72 65 63 74 69 76 65 20 74 6f 20 73 75 70 | A.configuration.directive.to.sup |
| 86c20 | 70 6f 72 74 20 61 20 75 73 65 72 2d 73 70 65 63 69 66 69 65 64 20 64 65 73 74 69 6e 61 74 69 6f | port.a.user-specified.destinatio |
| 86c40 | 6e 20 70 6f 72 74 20 74 6f 20 6f 76 65 72 72 69 64 65 20 74 68 61 74 20 62 65 68 61 76 69 6f 72 | n.port.to.override.that.behavior |
| 86c60 | 20 69 73 20 61 76 61 69 6c 61 62 6c 65 20 75 73 69 6e 67 20 74 68 65 20 61 62 6f 76 65 20 63 6f | .is.available.using.the.above.co |
| 86c80 | 6d 6d 61 6e 64 2e 00 54 68 65 20 64 65 76 69 63 65 20 63 61 6e 20 6f 6e 6c 79 20 72 65 63 65 69 | mmand..The.device.can.only.recei |
| 86ca0 | 76 65 20 70 61 63 6b 65 74 73 20 77 69 74 68 20 56 4e 49 73 20 63 6f 6e 66 69 67 75 72 65 64 20 | ve.packets.with.VNIs.configured. |
| 86cc0 | 69 6e 20 74 68 65 20 56 4e 49 20 66 69 6c 74 65 72 69 6e 67 20 74 61 62 6c 65 2e 00 54 68 65 20 | in.the.VNI.filtering.table..The. |
| 86ce0 | 64 69 61 6c 6f 67 75 65 20 62 65 74 77 65 65 6e 20 48 41 20 70 61 72 74 6e 65 72 73 20 69 73 20 | dialogue.between.HA.partners.is. |
| 86d00 | 6e 65 69 74 68 65 72 20 65 6e 63 72 79 70 74 65 64 20 6e 6f 72 20 61 75 74 68 65 6e 74 69 63 61 | neither.encrypted.nor.authentica |
| 86d20 | 74 65 64 2e 20 53 69 6e 63 65 20 6d 6f 73 74 20 44 48 43 50 20 73 65 72 76 65 72 73 20 65 78 69 | ted..Since.most.DHCP.servers.exi |
| 86d40 | 73 74 20 77 69 74 68 69 6e 20 61 6e 20 6f 72 67 61 6e 69 73 61 74 69 6f 6e 27 73 20 6f 77 6e 20 | st.within.an.organisation's.own. |
| 86d60 | 73 65 63 75 72 65 20 49 6e 74 72 61 6e 65 74 2c 20 74 68 69 73 20 77 6f 75 6c 64 20 62 65 20 61 | secure.Intranet,.this.would.be.a |
| 86d80 | 6e 20 75 6e 6e 65 63 65 73 73 61 72 79 20 6f 76 65 72 68 65 61 64 2e 20 48 6f 77 65 76 65 72 2c | n.unnecessary.overhead..However, |
| 86da0 | 20 69 66 20 79 6f 75 20 68 61 76 65 20 44 48 43 50 20 48 41 20 70 65 65 72 73 20 77 68 6f 73 65 | .if.you.have.DHCP.HA.peers.whose |
| 86dc0 | 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6f 6e 73 20 74 72 61 76 65 72 73 65 20 69 6e 73 65 63 75 72 | .communications.traverse.insecur |
| 86de0 | 65 20 6e 65 74 77 6f 72 6b 73 2c 20 74 68 65 6e 20 77 65 20 72 65 63 6f 6d 6d 65 6e 64 20 74 68 | e.networks,.then.we.recommend.th |
| 86e00 | 61 74 20 79 6f 75 20 63 6f 6e 73 69 64 65 72 20 74 68 65 20 75 73 65 20 6f 66 20 56 50 4e 20 74 | at.you.consider.the.use.of.VPN.t |
| 86e20 | 75 6e 6e 65 6c 69 6e 67 20 62 65 74 77 65 65 6e 20 74 68 65 6d 20 74 6f 20 65 6e 73 75 72 65 20 | unneling.between.them.to.ensure. |
| 86e40 | 74 68 61 74 20 74 68 65 20 48 41 20 70 61 72 74 6e 65 72 73 68 69 70 20 69 73 20 69 6d 6d 75 6e | that.the.HA.partnership.is.immun |
| 86e60 | 65 20 74 6f 20 64 69 73 72 75 70 74 69 6f 6e 20 28 61 63 63 69 64 65 6e 74 61 6c 20 6f 72 20 6f | e.to.disruption.(accidental.or.o |
| 86e80 | 74 68 65 72 77 69 73 65 29 20 76 69 61 20 74 68 69 72 64 20 70 61 72 74 69 65 73 2e 00 54 68 65 | therwise).via.third.parties..The |
| 86ea0 | 20 64 69 61 6c 6f 67 75 65 20 62 65 74 77 65 65 6e 20 66 61 69 6c 6f 76 65 72 20 70 61 72 74 6e | .dialogue.between.failover.partn |
| 86ec0 | 65 72 73 20 69 73 20 6e 65 69 74 68 65 72 20 65 6e 63 72 79 70 74 65 64 20 6e 6f 72 20 61 75 74 | ers.is.neither.encrypted.nor.aut |
| 86ee0 | 68 65 6e 74 69 63 61 74 65 64 2e 20 53 69 6e 63 65 20 6d 6f 73 74 20 44 48 43 50 20 73 65 72 76 | henticated..Since.most.DHCP.serv |
| 86f00 | 65 72 73 20 65 78 69 73 74 20 77 69 74 68 69 6e 20 61 6e 20 6f 72 67 61 6e 69 73 61 74 69 6f 6e | ers.exist.within.an.organisation |
| 86f20 | 27 73 20 6f 77 6e 20 73 65 63 75 72 65 20 49 6e 74 72 61 6e 65 74 2c 20 74 68 69 73 20 77 6f 75 | 's.own.secure.Intranet,.this.wou |
| 86f40 | 6c 64 20 62 65 20 61 6e 20 75 6e 6e 65 63 65 73 73 61 72 79 20 6f 76 65 72 68 65 61 64 2e 20 48 | ld.be.an.unnecessary.overhead..H |
| 86f60 | 6f 77 65 76 65 72 2c 20 69 66 20 79 6f 75 20 68 61 76 65 20 44 48 43 50 20 66 61 69 6c 6f 76 65 | owever,.if.you.have.DHCP.failove |
| 86f80 | 72 20 70 65 65 72 73 20 77 68 6f 73 65 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6f 6e 73 20 74 72 61 | r.peers.whose.communications.tra |
| 86fa0 | 76 65 72 73 65 20 69 6e 73 65 63 75 72 65 20 6e 65 74 77 6f 72 6b 73 2c 20 74 68 65 6e 20 77 65 | verse.insecure.networks,.then.we |
| 86fc0 | 20 72 65 63 6f 6d 6d 65 6e 64 20 74 68 61 74 20 79 6f 75 20 63 6f 6e 73 69 64 65 72 20 74 68 65 | .recommend.that.you.consider.the |
| 86fe0 | 20 75 73 65 20 6f 66 20 56 50 4e 20 74 75 6e 6e 65 6c 69 6e 67 20 62 65 74 77 65 65 6e 20 74 68 | .use.of.VPN.tunneling.between.th |
| 87000 | 65 6d 20 74 6f 20 65 6e 73 75 72 65 20 74 68 61 74 20 74 68 65 20 66 61 69 6c 6f 76 65 72 20 70 | em.to.ensure.that.the.failover.p |
| 87020 | 61 72 74 6e 65 72 73 68 69 70 20 69 73 20 69 6d 6d 75 6e 65 20 74 6f 20 64 69 73 72 75 70 74 69 | artnership.is.immune.to.disrupti |
| 87040 | 6f 6e 20 28 61 63 63 69 64 65 6e 74 61 6c 20 6f 72 20 6f 74 68 65 72 77 69 73 65 29 20 76 69 61 | on.(accidental.or.otherwise).via |
| 87060 | 20 74 68 69 72 64 20 70 61 72 74 69 65 73 2e 00 54 68 65 20 64 6f 6d 61 69 6e 2d 6e 61 6d 65 20 | .third.parties..The.domain-name. |
| 87080 | 70 61 72 61 6d 65 74 65 72 20 73 68 6f 75 6c 64 20 62 65 20 74 68 65 20 64 6f 6d 61 69 6e 20 6e | parameter.should.be.the.domain.n |
| 870a0 | 61 6d 65 20 74 68 61 74 20 77 69 6c 6c 20 62 65 20 61 70 70 65 6e 64 65 64 20 74 6f 20 74 68 65 | ame.that.will.be.appended.to.the |
| 870c0 | 20 63 6c 69 65 6e 74 27 73 20 68 6f 73 74 6e 61 6d 65 20 74 6f 20 66 6f 72 6d 20 61 20 66 75 6c | .client's.hostname.to.form.a.ful |
| 870e0 | 6c 79 2d 71 75 61 6c 69 66 69 65 64 20 64 6f 6d 61 69 6e 2d 6e 61 6d 65 20 28 46 51 44 4e 29 20 | ly-qualified.domain-name.(FQDN). |
| 87100 | 28 44 48 43 50 20 4f 70 74 69 6f 6e 20 30 31 35 29 2e 00 54 68 65 20 64 6f 6d 61 69 6e 2d 6e 61 | (DHCP.Option.015)..The.domain-na |
| 87120 | 6d 65 20 70 61 72 61 6d 65 74 65 72 20 73 68 6f 75 6c 64 20 62 65 20 74 68 65 20 64 6f 6d 61 69 | me.parameter.should.be.the.domai |
| 87140 | 6e 20 6e 61 6d 65 20 75 73 65 64 20 77 68 65 6e 20 63 6f 6d 70 6c 65 74 69 6e 67 20 44 4e 53 20 | n.name.used.when.completing.DNS. |
| 87160 | 72 65 71 75 65 73 74 20 77 68 65 72 65 20 6e 6f 20 66 75 6c 6c 20 46 51 44 4e 20 69 73 20 70 61 | request.where.no.full.FQDN.is.pa |
| 87180 | 73 73 65 64 2e 20 54 68 69 73 20 6f 70 74 69 6f 6e 20 63 61 6e 20 62 65 20 67 69 76 65 6e 20 6d | ssed..This.option.can.be.given.m |
| 871a0 | 75 6c 74 69 70 6c 65 20 74 69 6d 65 73 20 69 66 20 79 6f 75 20 6e 65 65 64 20 6d 75 6c 74 69 70 | ultiple.times.if.you.need.multip |
| 871c0 | 6c 65 20 73 65 61 72 63 68 20 64 6f 6d 61 69 6e 73 20 28 44 48 43 50 20 4f 70 74 69 6f 6e 20 31 | le.search.domains.(DHCP.Option.1 |
| 871e0 | 31 39 29 2e 00 54 68 65 20 64 75 6d 6d 79 20 69 6e 74 65 72 66 61 63 65 20 61 6c 6c 6f 77 73 20 | 19)..The.dummy.interface.allows. |
| 87200 | 75 73 20 74 6f 20 68 61 76 65 20 61 6e 20 65 71 75 69 76 61 6c 65 6e 74 20 6f 66 20 74 68 65 20 | us.to.have.an.equivalent.of.the. |
| 87220 | 43 69 73 63 6f 20 49 4f 53 20 4c 6f 6f 70 62 61 63 6b 20 69 6e 74 65 72 66 61 63 65 20 2d 20 61 | Cisco.IOS.Loopback.interface.-.a |
| 87240 | 20 72 6f 75 74 65 72 2d 69 6e 74 65 72 6e 61 6c 20 69 6e 74 65 72 66 61 63 65 20 77 65 20 63 61 | .router-internal.interface.we.ca |
| 87260 | 6e 20 75 73 65 20 66 6f 72 20 49 50 20 61 64 64 72 65 73 73 65 73 20 74 68 65 20 72 6f 75 74 65 | n.use.for.IP.addresses.the.route |
| 87280 | 72 20 6d 75 73 74 20 6b 6e 6f 77 20 61 62 6f 75 74 2c 20 62 75 74 20 77 68 69 63 68 20 61 72 65 | r.must.know.about,.but.which.are |
| 872a0 | 20 6e 6f 74 20 61 63 74 75 61 6c 6c 79 20 61 73 73 69 67 6e 65 64 20 74 6f 20 61 20 72 65 61 6c | .not.actually.assigned.to.a.real |
| 872c0 | 20 6e 65 74 77 6f 72 6b 2e 00 54 68 65 20 64 75 6d 6d 79 20 69 6e 74 65 72 66 61 63 65 20 69 73 | .network..The.dummy.interface.is |
| 872e0 | 20 72 65 61 6c 6c 79 20 61 20 6c 69 74 74 6c 65 20 65 78 6f 74 69 63 2c 20 62 75 74 20 72 61 74 | .really.a.little.exotic,.but.rat |
| 87300 | 68 65 72 20 75 73 65 66 75 6c 20 6e 65 76 65 72 74 68 65 6c 65 73 73 2e 20 44 75 6d 6d 79 20 69 | her.useful.nevertheless..Dummy.i |
| 87320 | 6e 74 65 72 66 61 63 65 73 20 61 72 65 20 6d 75 63 68 20 6c 69 6b 65 20 74 68 65 20 3a 72 65 66 | nterfaces.are.much.like.the.:ref |
| 87340 | 3a 60 6c 6f 6f 70 62 61 63 6b 2d 69 6e 74 65 72 66 61 63 65 60 20 69 6e 74 65 72 66 61 63 65 2c | :`loopback-interface`.interface, |
| 87360 | 20 65 78 63 65 70 74 20 79 6f 75 20 63 61 6e 20 68 61 76 65 20 61 73 20 6d 61 6e 79 20 61 73 20 | .except.you.can.have.as.many.as. |
| 87380 | 79 6f 75 20 77 61 6e 74 2e 00 54 68 65 20 65 6d 62 65 64 64 65 64 20 53 71 75 69 64 20 70 72 6f | you.want..The.embedded.Squid.pro |
| 873a0 | 78 79 20 63 61 6e 20 75 73 65 20 4c 44 41 50 20 74 6f 20 61 75 74 68 65 6e 74 69 63 61 74 65 20 | xy.can.use.LDAP.to.authenticate. |
| 873c0 | 75 73 65 72 73 20 61 67 61 69 6e 73 74 20 61 20 63 6f 6d 70 61 6e 79 20 77 69 64 65 20 64 69 72 | users.against.a.company.wide.dir |
| 873e0 | 65 63 74 6f 72 79 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 | ectory..The.following.configurat |
| 87400 | 69 6f 6e 20 69 73 20 61 6e 20 65 78 61 6d 70 6c 65 20 6f 66 20 68 6f 77 20 74 6f 20 75 73 65 20 | ion.is.an.example.of.how.to.use. |
| 87420 | 41 63 74 69 76 65 20 44 69 72 65 63 74 6f 72 79 20 61 73 20 61 75 74 68 65 6e 74 69 63 61 74 69 | Active.Directory.as.authenticati |
| 87440 | 6f 6e 20 62 61 63 6b 65 6e 64 2e 20 51 75 65 72 69 65 73 20 61 72 65 20 64 6f 6e 65 20 76 69 61 | on.backend..Queries.are.done.via |
| 87460 | 20 4c 44 41 50 2e 00 54 68 65 20 65 78 61 6d 70 6c 65 20 61 62 6f 76 65 20 75 73 65 73 20 31 39 | .LDAP..The.example.above.uses.19 |
| 87480 | 32 2e 30 2e 32 2e 32 20 61 73 20 65 78 74 65 72 6e 61 6c 20 49 50 20 61 64 64 72 65 73 73 2e 20 | 2.0.2.2.as.external.IP.address.. |
| 874a0 | 41 20 4c 41 43 20 6e 6f 72 6d 61 6c 6c 79 20 72 65 71 75 69 72 65 73 20 61 6e 20 61 75 74 68 65 | A.LAC.normally.requires.an.authe |
| 874c0 | 6e 74 69 63 61 74 69 6f 6e 20 70 61 73 73 77 6f 72 64 2c 20 77 68 69 63 68 20 69 73 20 73 65 74 | ntication.password,.which.is.set |
| 874e0 | 20 69 6e 20 74 68 65 20 65 78 61 6d 70 6c 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 6f | .in.the.example.configuration.to |
| 87500 | 20 60 60 6c 6e 73 20 73 68 61 72 65 64 2d 73 65 63 72 65 74 20 27 73 65 63 72 65 74 27 60 60 2e | .``lns.shared-secret.'secret'``. |
| 87520 | 20 54 68 69 73 20 73 65 74 75 70 20 72 65 71 75 69 72 65 73 20 74 68 65 20 43 6f 6d 70 72 65 73 | .This.setup.requires.the.Compres |
| 87540 | 73 69 6f 6e 20 43 6f 6e 74 72 6f 6c 20 50 72 6f 74 6f 63 6f 6c 20 28 43 43 50 29 20 62 65 69 6e | sion.Control.Protocol.(CCP).bein |
| 87560 | 67 20 64 69 73 61 62 6c 65 64 2c 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 60 60 73 65 74 20 76 70 | g.disabled,.the.command.``set.vp |
| 87580 | 6e 20 6c 32 74 70 20 72 65 6d 6f 74 65 2d 61 63 63 65 73 73 20 63 63 70 2d 64 69 73 61 62 6c 65 | n.l2tp.remote-access.ccp-disable |
| 875a0 | 60 60 20 61 63 63 6f 6d 70 6c 69 73 68 65 73 20 74 68 61 74 2e 00 54 68 65 20 65 78 61 6d 70 6c | ``.accomplishes.that..The.exampl |
| 875c0 | 65 20 62 65 6c 6f 77 20 63 6f 76 65 72 73 20 61 20 64 75 61 6c 2d 73 74 61 63 6b 20 63 6f 6e 66 | e.below.covers.a.dual-stack.conf |
| 875e0 | 69 67 75 72 61 74 69 6f 6e 20 76 69 61 20 70 70 70 6f 65 2d 73 65 72 76 65 72 2e 00 54 68 65 20 | iguration.via.pppoe-server..The. |
| 87600 | 65 78 61 6d 70 6c 65 20 62 65 6c 6f 77 20 63 6f 76 65 72 73 20 61 20 64 75 61 6c 2d 73 74 61 63 | example.below.covers.a.dual-stac |
| 87620 | 6b 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 54 68 65 20 65 78 61 6d 70 6c 65 20 62 65 6c | k.configuration..The.example.bel |
| 87640 | 6f 77 20 75 73 65 73 20 41 43 4e 20 61 73 20 61 63 63 65 73 73 2d 63 6f 6e 63 65 6e 74 72 61 74 | ow.uses.ACN.as.access-concentrat |
| 87660 | 6f 72 20 6e 61 6d 65 2c 20 61 73 73 69 67 6e 73 20 61 6e 20 61 64 64 72 65 73 73 20 66 72 6f 6d | or.name,.assigns.an.address.from |
| 87680 | 20 74 68 65 20 70 6f 6f 6c 20 31 30 2e 31 2e 31 2e 31 30 30 2d 31 31 31 2c 20 74 65 72 6d 69 6e | .the.pool.10.1.1.100-111,.termin |
| 876a0 | 61 74 65 73 20 61 74 20 74 68 65 20 6c 6f 63 61 6c 20 65 6e 64 70 6f 69 6e 74 20 31 30 2e 31 2e | ates.at.the.local.endpoint.10.1. |
| 876c0 | 31 2e 31 20 61 6e 64 20 73 65 72 76 65 73 20 72 65 71 75 65 73 74 73 20 6f 6e 6c 79 20 6f 6e 20 | 1.1.and.serves.requests.only.on. |
| 876e0 | 65 74 68 31 2e 00 54 68 65 20 65 78 61 6d 70 6c 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 | eth1..The.example.configuration. |
| 87700 | 62 65 6c 6f 77 20 77 69 6c 6c 20 61 73 73 69 67 6e 20 61 6e 20 49 50 20 74 6f 20 74 68 65 20 63 | below.will.assign.an.IP.to.the.c |
| 87720 | 6c 69 65 6e 74 20 6f 6e 20 74 68 65 20 69 6e 63 6f 6d 69 6e 67 20 69 6e 74 65 72 66 61 63 65 20 | lient.on.the.incoming.interface. |
| 87740 | 65 74 68 31 20 77 69 74 68 20 74 68 65 20 63 6c 69 65 6e 74 20 6d 61 63 20 61 64 64 72 65 73 73 | eth1.with.the.client.mac.address |
| 87760 | 20 30 30 3a 35 30 3a 37 39 3a 36 36 3a 36 38 3a 30 30 2e 20 4f 74 68 65 72 20 44 48 43 50 20 64 | .00:50:79:66:68:00..Other.DHCP.d |
| 87780 | 69 73 63 6f 76 65 72 79 20 72 65 71 75 65 73 74 73 20 77 69 6c 6c 20 62 65 20 69 67 6e 6f 72 65 | iscovery.requests.will.be.ignore |
| 877a0 | 64 2c 20 75 6e 6c 65 73 73 20 74 68 65 20 63 6c 69 65 6e 74 20 6d 61 63 20 68 61 73 20 62 65 65 | d,.unless.the.client.mac.has.bee |
| 877c0 | 6e 20 65 6e 61 62 6c 65 64 20 69 6e 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 | n.enabled.in.the.configuration.. |
| 877e0 | 54 68 65 20 65 78 61 6d 70 6c 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 62 65 6c 6f 77 20 | The.example.configuration.below. |
| 87800 | 77 69 6c 6c 20 61 73 73 69 67 6e 20 61 6e 20 49 50 20 74 6f 20 74 68 65 20 63 6c 69 65 6e 74 20 | will.assign.an.IP.to.the.client. |
| 87820 | 6f 6e 20 74 68 65 20 69 6e 63 6f 6d 69 6e 67 20 69 6e 74 65 72 66 61 63 65 20 65 74 68 32 20 77 | on.the.incoming.interface.eth2.w |
| 87840 | 69 74 68 20 74 68 65 20 63 6c 69 65 6e 74 20 6d 61 63 20 61 64 64 72 65 73 73 20 30 38 3a 30 30 | ith.the.client.mac.address.08:00 |
| 87860 | 3a 32 37 3a 32 66 3a 64 38 3a 30 36 2e 20 4f 74 68 65 72 20 44 48 43 50 20 64 69 73 63 6f 76 65 | :27:2f:d8:06..Other.DHCP.discove |
| 87880 | 72 79 20 72 65 71 75 65 73 74 73 20 77 69 6c 6c 20 62 65 20 69 67 6e 6f 72 65 64 2c 20 75 6e 6c | ry.requests.will.be.ignored,.unl |
| 878a0 | 65 73 73 20 74 68 65 20 63 6c 69 65 6e 74 20 6d 61 63 20 68 61 73 20 62 65 65 6e 20 65 6e 61 62 | ess.the.client.mac.has.been.enab |
| 878c0 | 6c 65 64 20 69 6e 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 54 68 65 20 65 78 | led.in.the.configuration..The.ex |
| 878e0 | 61 6d 70 6c 65 20 63 72 65 61 74 65 73 20 61 20 77 69 72 65 6c 65 73 73 20 73 74 61 74 69 6f 6e | ample.creates.a.wireless.station |
| 87900 | 20 28 63 6f 6d 6d 6f 6e 6c 79 20 72 65 66 65 72 72 65 64 20 74 6f 20 61 73 20 57 69 2d 46 69 20 | .(commonly.referred.to.as.Wi-Fi. |
| 87920 | 63 6c 69 65 6e 74 29 20 74 68 61 74 20 61 63 63 65 73 73 65 73 20 74 68 65 20 6e 65 74 77 6f 72 | client).that.accesses.the.networ |
| 87940 | 6b 20 74 68 72 6f 75 67 68 20 74 68 65 20 57 41 50 20 64 65 66 69 6e 65 64 20 69 6e 20 74 68 65 | k.through.the.WAP.defined.in.the |
| 87960 | 20 61 62 6f 76 65 20 65 78 61 6d 70 6c 65 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 70 68 79 73 | .above.example..The.default.phys |
| 87980 | 69 63 61 6c 20 64 65 76 69 63 65 20 28 60 60 70 68 79 30 60 60 29 20 69 73 20 75 73 65 64 2e 00 | ical.device.(``phy0``).is.used.. |
| 879a0 | 54 68 65 20 65 78 74 65 72 6e 61 6c 20 49 50 20 61 64 64 72 65 73 73 20 74 6f 20 74 72 61 6e 73 | The.external.IP.address.to.trans |
| 879c0 | 6c 61 74 65 20 74 6f 00 54 68 65 20 66 69 72 65 77 61 6c 6c 20 73 75 70 70 6f 72 74 73 20 74 68 | late.to.The.firewall.supports.th |
| 879e0 | 65 20 63 72 65 61 74 69 6f 6e 20 6f 66 20 67 72 6f 75 70 73 20 66 6f 72 20 61 64 64 72 65 73 73 | e.creation.of.groups.for.address |
| 87a00 | 65 73 2c 20 64 6f 6d 61 69 6e 73 2c 20 69 6e 74 65 72 66 61 63 65 73 2c 20 6d 61 63 2d 61 64 64 | es,.domains,.interfaces,.mac-add |
| 87a20 | 72 65 73 73 65 73 2c 20 6e 65 74 77 6f 72 6b 73 20 61 6e 64 20 70 6f 72 74 20 67 72 6f 75 70 73 | resses,.networks.and.port.groups |
| 87a40 | 2e 20 54 68 69 73 20 67 72 6f 75 70 73 20 63 61 6e 20 62 65 20 75 73 65 64 20 6c 61 74 65 72 20 | ..This.groups.can.be.used.later. |
| 87a60 | 69 6e 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 65 74 20 61 73 20 64 65 73 69 72 65 64 2e 00 | in.firewall.ruleset.as.desired.. |
| 87a80 | 54 68 65 20 66 69 72 65 77 61 6c 6c 20 73 75 70 70 6f 72 74 73 20 74 68 65 20 63 72 65 61 74 69 | The.firewall.supports.the.creati |
| 87aa0 | 6f 6e 20 6f 66 20 67 72 6f 75 70 73 20 66 6f 72 20 70 6f 72 74 73 2c 20 61 64 64 72 65 73 73 65 | on.of.groups.for.ports,.addresse |
| 87ac0 | 73 2c 20 61 6e 64 20 6e 65 74 77 6f 72 6b 73 20 28 69 6d 70 6c 65 6d 65 6e 74 65 64 20 75 73 69 | s,.and.networks.(implemented.usi |
| 87ae0 | 6e 67 20 6e 65 74 66 69 6c 74 65 72 20 69 70 73 65 74 29 20 61 6e 64 20 74 68 65 20 6f 70 74 69 | ng.netfilter.ipset).and.the.opti |
| 87b00 | 6f 6e 20 6f 66 20 69 6e 74 65 72 66 61 63 65 20 6f 72 20 7a 6f 6e 65 20 62 61 73 65 64 20 66 69 | on.of.interface.or.zone.based.fi |
| 87b20 | 72 65 77 61 6c 6c 20 70 6f 6c 69 63 79 2e 00 54 68 65 20 66 69 72 73 74 20 49 50 20 69 6e 20 74 | rewall.policy..The.first.IP.in.t |
| 87b40 | 68 65 20 63 6f 6e 74 61 69 6e 65 72 20 6e 65 74 77 6f 72 6b 20 69 73 20 72 65 73 65 72 76 65 64 | he.container.network.is.reserved |
| 87b60 | 20 62 79 20 74 68 65 20 65 6e 67 69 6e 65 20 61 6e 64 20 63 61 6e 6e 6f 74 20 62 65 20 75 73 65 | .by.the.engine.and.cannot.be.use |
| 87b80 | 64 00 54 68 65 20 66 69 72 73 74 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 70 61 72 61 6d | d.The.first.address.of.the.param |
| 87ba0 | 65 74 65 72 20 60 60 63 6c 69 65 6e 74 2d 73 75 62 6e 65 74 60 60 2c 20 77 69 6c 6c 20 62 65 20 | eter.``client-subnet``,.will.be. |
| 87bc0 | 75 73 65 64 20 61 73 20 74 68 65 20 64 65 66 61 75 6c 74 20 67 61 74 65 77 61 79 2e 20 43 6f 6e | used.as.the.default.gateway..Con |
| 87be0 | 6e 65 63 74 65 64 20 73 65 73 73 69 6f 6e 73 20 63 61 6e 20 62 65 20 63 68 65 63 6b 65 64 20 76 | nected.sessions.can.be.checked.v |
| 87c00 | 69 61 20 74 68 65 20 60 60 73 68 6f 77 20 69 70 6f 65 2d 73 65 72 76 65 72 20 73 65 73 73 69 6f | ia.the.``show.ipoe-server.sessio |
| 87c20 | 6e 73 60 60 20 63 6f 6d 6d 61 6e 64 2e 00 54 68 65 20 66 69 72 73 74 20 61 6e 64 20 61 72 67 75 | ns``.command..The.first.and.argu |
| 87c40 | 61 62 6c 79 20 63 6c 65 61 6e 65 72 20 6f 70 74 69 6f 6e 20 69 73 20 74 6f 20 6d 61 6b 65 20 79 | ably.cleaner.option.is.to.make.y |
| 87c60 | 6f 75 72 20 49 50 73 65 63 20 70 6f 6c 69 63 79 20 6d 61 74 63 68 20 47 52 45 20 70 61 63 6b 65 | our.IPsec.policy.match.GRE.packe |
| 87c80 | 74 73 20 62 65 74 77 65 65 6e 20 65 78 74 65 72 6e 61 6c 20 61 64 64 72 65 73 73 65 73 20 6f 66 | ts.between.external.addresses.of |
| 87ca0 | 20 79 6f 75 72 20 72 6f 75 74 65 72 73 2e 20 54 68 69 73 20 69 73 20 74 68 65 20 62 65 73 74 20 | .your.routers..This.is.the.best. |
| 87cc0 | 6f 70 74 69 6f 6e 20 69 66 20 62 6f 74 68 20 72 6f 75 74 65 72 73 20 68 61 76 65 20 73 74 61 74 | option.if.both.routers.have.stat |
| 87ce0 | 69 63 20 65 78 74 65 72 6e 61 6c 20 61 64 64 72 65 73 73 65 73 2e 00 54 68 65 20 66 69 72 73 74 | ic.external.addresses..The.first |
| 87d00 | 20 66 6c 6f 77 20 63 6f 6e 74 72 6f 6c 20 6d 65 63 68 61 6e 69 73 6d 2c 20 74 68 65 20 70 61 75 | .flow.control.mechanism,.the.pau |
| 87d20 | 73 65 20 66 72 61 6d 65 2c 20 77 61 73 20 64 65 66 69 6e 65 64 20 62 79 20 74 68 65 20 49 45 45 | se.frame,.was.defined.by.the.IEE |
| 87d40 | 45 20 38 30 32 2e 33 78 20 73 74 61 6e 64 61 72 64 2e 00 54 68 65 20 66 69 72 73 74 20 69 70 20 | E.802.3x.standard..The.first.ip. |
| 87d60 | 61 64 64 72 65 73 73 20 69 73 20 74 68 65 20 52 50 27 73 20 61 64 64 72 65 73 73 20 61 6e 64 20 | address.is.the.RP's.address.and. |
| 87d80 | 74 68 65 20 73 65 63 6f 6e 64 20 76 61 6c 75 65 20 69 73 20 74 68 65 20 6d 61 74 63 68 69 6e 67 | the.second.value.is.the.matching |
| 87da0 | 20 70 72 65 66 69 78 20 6f 66 20 67 72 6f 75 70 20 72 61 6e 67 65 73 20 63 6f 76 65 72 65 64 2e | .prefix.of.group.ranges.covered. |
| 87dc0 | 00 54 68 65 20 66 69 72 73 74 20 72 65 67 69 73 74 72 61 74 69 6f 6e 20 72 65 71 75 65 73 74 20 | .The.first.registration.request. |
| 87de0 | 69 73 20 73 65 6e 74 20 74 6f 20 74 68 65 20 70 72 6f 74 6f 63 6f 6c 20 62 72 6f 61 64 63 61 73 | is.sent.to.the.protocol.broadcas |
| 87e00 | 74 20 61 64 64 72 65 73 73 2c 20 61 6e 64 20 74 68 65 20 73 65 72 76 65 72 27 73 20 72 65 61 6c | t.address,.and.the.server's.real |
| 87e20 | 20 70 72 6f 74 6f 63 6f 6c 20 61 64 64 72 65 73 73 20 69 73 20 64 79 6e 61 6d 69 63 61 6c 6c 79 | .protocol.address.is.dynamically |
| 87e40 | 20 64 65 74 65 63 74 65 64 20 66 72 6f 6d 20 74 68 65 20 66 69 72 73 74 20 72 65 67 69 73 74 72 | .detected.from.the.first.registr |
| 87e60 | 61 74 69 6f 6e 20 72 65 70 6c 79 2e 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 50 50 50 20 63 | ation.reply..The.following.PPP.c |
| 87e80 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 65 73 74 73 20 4d 53 43 48 41 50 2d 76 32 3a 00 54 68 | onfiguration.tests.MSCHAP-v2:.Th |
| 87ea0 | 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 60 72 65 63 65 69 76 65 2d 66 69 6c 74 65 72 60 20 6d 6f 64 | e.following.`receive-filter`.mod |
| 87ec0 | 65 73 20 63 61 6e 20 62 65 20 73 65 6c 65 63 74 65 64 3a 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e | es.can.be.selected:.The.followin |
| 87ee0 | 67 20 63 6f 6d 6d 61 6e 64 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 67 65 6e 65 72 61 74 | g.command.can.be.used.to.generat |
| 87f00 | 65 20 74 68 65 20 4f 54 50 20 6b 65 79 20 61 73 20 77 65 6c 6c 20 61 73 20 74 68 65 20 43 4c 49 | e.the.OTP.key.as.well.as.the.CLI |
| 87f20 | 20 63 6f 6d 6d 61 6e 64 73 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 6d 3a 00 54 68 65 | .commands.to.configure.them:.The |
| 87f40 | 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 20 75 73 65 73 20 74 68 65 20 65 78 70 6c | .following.command.uses.the.expl |
| 87f60 | 69 63 69 74 2d 6e 75 6c 6c 20 6c 61 62 65 6c 20 76 61 6c 75 65 20 66 6f 72 20 61 6c 6c 20 74 68 | icit-null.label.value.for.all.th |
| 87f80 | 65 20 42 47 50 20 69 6e 73 74 61 6e 63 65 73 2e 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 | e.BGP.instances..The.following.c |
| 87fa0 | 6f 6d 6d 61 6e 64 73 20 6c 65 74 20 79 6f 75 20 63 68 65 63 6b 20 74 75 6e 6e 65 6c 20 73 74 61 | ommands.let.you.check.tunnel.sta |
| 87fc0 | 74 75 73 2e 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 73 20 6c 65 74 20 | tus..The.following.commands.let. |
| 87fe0 | 79 6f 75 20 72 65 73 65 74 20 4f 70 65 6e 56 50 4e 2e 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 | you.reset.OpenVPN..The.following |
| 88000 | 20 63 6f 6d 6d 61 6e 64 73 20 74 72 61 6e 73 6c 61 74 65 20 74 6f 20 22 2d 2d 6e 65 74 20 68 6f | .commands.translate.to."--net.ho |
| 88020 | 73 74 22 20 77 68 65 6e 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 20 69 73 20 63 72 65 61 74 65 | st".when.the.container.is.create |
| 88040 | 64 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 73 20 77 6f 75 6c 64 20 62 | d.The.following.commands.would.b |
| 88060 | 65 20 72 65 71 75 69 72 65 64 20 74 6f 20 73 65 74 20 6f 70 74 69 6f 6e 73 20 66 6f 72 20 61 20 | e.required.to.set.options.for.a. |
| 88080 | 67 69 76 65 6e 20 64 79 6e 61 6d 69 63 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 20 69 | given.dynamic.routing.protocol.i |
| 880a0 | 6e 73 69 64 65 20 61 20 67 69 76 65 6e 20 76 72 66 3a 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 | nside.a.given.vrf:.The.following |
| 880c0 | 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 64 65 6d 6f 6e 73 74 72 61 74 65 73 20 68 6f 77 20 | .configuration.demonstrates.how. |
| 880e0 | 74 6f 20 75 73 65 20 56 79 4f 53 20 74 6f 20 61 63 68 69 65 76 65 20 6c 6f 61 64 20 62 61 6c 61 | to.use.VyOS.to.achieve.load.bala |
| 88100 | 6e 63 69 6e 67 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 64 6f 6d 61 69 6e 20 6e 61 6d 65 2e 00 | ncing.based.on.the.domain.name.. |
| 88120 | 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 65 78 70 6c | The.following.configuration.expl |
| 88140 | 69 63 69 74 6c 79 20 6a 6f 69 6e 73 20 6d 75 6c 74 69 63 61 73 74 20 67 72 6f 75 70 20 60 66 66 | icitly.joins.multicast.group.`ff |
| 88160 | 31 35 3a 3a 31 32 33 34 60 20 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 60 65 74 68 31 60 20 61 6e | 15::1234`.on.interface.`eth1`.an |
| 88180 | 64 20 73 6f 75 72 63 65 2d 73 70 65 63 69 66 69 63 20 6d 75 6c 74 69 63 61 73 74 20 67 72 6f 75 | d.source-specific.multicast.grou |
| 881a0 | 70 20 60 66 66 31 35 3a 3a 35 36 37 38 60 20 77 69 74 68 20 73 6f 75 72 63 65 20 61 64 64 72 65 | p.`ff15::5678`.with.source.addre |
| 881c0 | 73 73 20 60 32 30 30 31 3a 64 62 38 3a 3a 31 60 20 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 60 65 | ss.`2001:db8::1`.on.interface.`e |
| 881e0 | 74 68 31 60 3a 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f | th1`:.The.following.configuratio |
| 88200 | 6e 20 6f 6e 20 56 79 4f 53 20 61 70 70 6c 69 65 73 20 74 6f 20 61 6c 6c 20 66 6f 6c 6c 6f 77 69 | n.on.VyOS.applies.to.all.followi |
| 88220 | 6e 67 20 33 72 64 20 70 61 72 74 79 20 76 65 6e 64 6f 72 73 2e 20 49 74 20 63 72 65 61 74 65 73 | ng.3rd.party.vendors..It.creates |
| 88240 | 20 61 20 62 6f 6e 64 20 77 69 74 68 20 74 77 6f 20 6c 69 6e 6b 73 20 61 6e 64 20 56 4c 41 4e 20 | .a.bond.with.two.links.and.VLAN. |
| 88260 | 31 30 2c 20 31 30 30 20 6f 6e 20 74 68 65 20 62 6f 6e 64 65 64 20 69 6e 74 65 72 66 61 63 65 73 | 10,.100.on.the.bonded.interfaces |
| 88280 | 20 77 69 74 68 20 61 20 70 65 72 20 56 49 46 20 49 50 76 34 20 61 64 64 72 65 73 73 2e 00 54 68 | .with.a.per.VIF.IPv4.address..Th |
| 882a0 | 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 72 65 76 65 72 73 | e.following.configuration.revers |
| 882c0 | 65 2d 70 72 6f 78 79 20 74 65 72 6d 69 6e 61 74 65 20 53 53 4c 2e 00 54 68 65 20 66 6f 6c 6c 6f | e-proxy.terminate.SSL..The.follo |
| 882e0 | 77 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 65 72 6d 69 6e 61 74 65 73 20 53 53 | wing.configuration.terminates.SS |
| 88300 | 4c 20 6f 6e 20 74 68 65 20 72 6f 75 74 65 72 2e 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 | L.on.the.router..The.following.c |
| 88320 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 65 72 6d 69 6e 61 74 65 73 20 69 6e 63 6f 6d 69 6e 67 | onfiguration.terminates.incoming |
| 88340 | 20 48 54 54 50 53 20 74 72 61 66 66 69 63 20 6f 6e 20 74 68 65 20 72 6f 75 74 65 72 2c 20 74 68 | .HTTPS.traffic.on.the.router,.th |
| 88360 | 65 6e 20 72 65 2d 65 6e 63 72 79 70 74 73 20 74 68 65 20 74 72 61 66 66 69 63 20 61 6e 64 20 73 | en.re-encrypts.the.traffic.and.s |
| 88380 | 65 6e 64 73 20 74 6f 20 74 68 65 20 62 61 63 6b 65 6e 64 20 73 65 72 76 65 72 20 76 69 61 20 48 | ends.to.the.backend.server.via.H |
| 883a0 | 54 54 50 53 2e 20 54 68 69 73 20 69 73 20 75 73 65 66 75 6c 20 69 66 20 65 6e 63 72 79 70 74 69 | TTPS..This.is.useful.if.encrypti |
| 883c0 | 6f 6e 20 69 73 20 72 65 71 75 69 72 65 64 20 66 6f 72 20 62 6f 74 68 20 6c 65 67 73 2c 20 62 75 | on.is.required.for.both.legs,.bu |
| 883e0 | 74 20 79 6f 75 20 64 6f 20 6e 6f 74 20 77 61 6e 74 20 74 6f 20 69 6e 73 74 61 6c 6c 20 70 75 62 | t.you.do.not.want.to.install.pub |
| 88400 | 6c 69 63 6c 79 20 74 72 75 73 74 65 64 20 63 65 72 74 69 66 69 63 61 74 65 73 20 6f 6e 20 65 61 | licly.trusted.certificates.on.ea |
| 88420 | 63 68 20 62 61 63 6b 65 6e 64 20 73 65 72 76 65 72 2e 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 | ch.backend.server..The.following |
| 88440 | 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 77 69 6c 6c 20 61 73 73 69 67 6e 20 61 20 2f 36 34 | .configuration.will.assign.a./64 |
| 88460 | 20 70 72 65 66 69 78 20 6f 75 74 20 6f 66 20 61 20 2f 35 36 20 64 65 6c 65 67 61 74 69 6f 6e 20 | .prefix.out.of.a./56.delegation. |
| 88480 | 74 6f 20 65 74 68 30 2e 20 54 68 65 20 49 50 76 36 20 61 64 64 72 65 73 73 20 61 73 73 69 67 6e | to.eth0..The.IPv6.address.assign |
| 884a0 | 65 64 20 74 6f 20 65 74 68 30 20 77 69 6c 6c 20 62 65 20 3c 70 72 65 66 69 78 3e 3a 3a 66 66 66 | ed.to.eth0.will.be.<prefix>::fff |
| 884c0 | 66 2f 36 34 2e 20 49 66 20 79 6f 75 20 64 6f 20 6e 6f 74 20 6b 6e 6f 77 20 74 68 65 20 70 72 65 | f/64..If.you.do.not.know.the.pre |
| 884e0 | 66 69 78 20 73 69 7a 65 20 64 65 6c 65 67 61 74 65 64 20 74 6f 20 79 6f 75 2c 20 73 74 61 72 74 | fix.size.delegated.to.you,.start |
| 88500 | 20 77 69 74 68 20 73 6c 61 2d 6c 65 6e 20 30 2e 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 | .with.sla-len.0..The.following.c |
| 88520 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 77 69 6c 6c 20 73 65 74 75 70 20 61 20 50 50 50 6f 45 20 | onfiguration.will.setup.a.PPPoE. |
| 88540 | 73 65 73 73 69 6f 6e 20 73 6f 75 72 63 65 20 66 72 6f 6d 20 65 74 68 31 20 61 6e 64 20 61 73 73 | session.source.from.eth1.and.ass |
| 88560 | 69 67 6e 20 61 20 2f 36 34 20 70 72 65 66 69 78 20 6f 75 74 20 6f 66 20 61 20 2f 35 36 20 64 65 | ign.a./64.prefix.out.of.a./56.de |
| 88580 | 6c 65 67 61 74 69 6f 6e 20 28 72 65 71 75 65 73 74 65 64 20 66 72 6f 6d 20 74 68 65 20 49 53 50 | legation.(requested.from.the.ISP |
| 885a0 | 29 20 74 6f 20 65 74 68 30 2e 20 54 68 65 20 49 50 76 36 20 61 64 64 72 65 73 73 20 61 73 73 69 | ).to.eth0..The.IPv6.address.assi |
| 885c0 | 67 6e 65 64 20 74 6f 20 65 74 68 30 20 77 69 6c 6c 20 62 65 20 3c 70 72 65 66 69 78 3e 3a 3a 31 | gned.to.eth0.will.be.<prefix>::1 |
| 885e0 | 2f 36 34 2e 20 49 66 20 79 6f 75 20 64 6f 20 6e 6f 74 20 6b 6e 6f 77 20 74 68 65 20 70 72 65 66 | /64..If.you.do.not.know.the.pref |
| 88600 | 69 78 20 73 69 7a 65 20 64 65 6c 65 67 61 74 65 64 20 74 6f 20 79 6f 75 2c 20 73 74 61 72 74 20 | ix.size.delegated.to.you,.start. |
| 88620 | 77 69 74 68 20 73 6c 61 2d 6c 65 6e 20 30 2e 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 | with.sla-len.0..The.following.ex |
| 88640 | 61 6d 70 6c 65 20 61 6c 6c 6f 77 73 20 56 79 4f 53 20 74 6f 20 75 73 65 20 3a 61 62 62 72 3a 60 | ample.allows.VyOS.to.use.:abbr:` |
| 88660 | 50 42 52 20 28 50 6f 6c 69 63 79 2d 42 61 73 65 64 20 52 6f 75 74 69 6e 67 29 60 20 66 6f 72 20 | PBR.(Policy-Based.Routing)`.for. |
| 88680 | 74 72 61 66 66 69 63 2c 20 77 68 69 63 68 20 6f 72 69 67 69 6e 61 74 65 64 20 66 72 6f 6d 20 74 | traffic,.which.originated.from.t |
| 886a0 | 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 2e 20 54 68 61 74 20 73 6f 6c 75 74 69 6f 6e 20 | he.router.itself..That.solution. |
| 886c0 | 66 6f 72 20 6d 75 6c 74 69 70 6c 65 20 49 53 50 27 73 20 61 6e 64 20 56 79 4f 53 20 72 6f 75 74 | for.multiple.ISP's.and.VyOS.rout |
| 886e0 | 65 72 20 77 69 6c 6c 20 72 65 73 70 6f 6e 64 20 66 72 6f 6d 20 74 68 65 20 73 61 6d 65 20 69 6e | er.will.respond.from.the.same.in |
| 88700 | 74 65 72 66 61 63 65 20 74 68 61 74 20 74 68 65 20 70 61 63 6b 65 74 20 77 61 73 20 72 65 63 65 | terface.that.the.packet.was.rece |
| 88720 | 69 76 65 64 2e 20 41 6c 73 6f 2c 20 69 74 20 75 73 65 64 2c 20 69 66 20 77 65 20 77 61 6e 74 20 | ived..Also,.it.used,.if.we.want. |
| 88740 | 74 68 61 74 20 6f 6e 65 20 56 50 4e 20 74 75 6e 6e 65 6c 20 74 6f 20 62 65 20 74 68 72 6f 75 67 | that.one.VPN.tunnel.to.be.throug |
| 88760 | 68 20 6f 6e 65 20 70 72 6f 76 69 64 65 72 2c 20 61 6e 64 20 74 68 65 20 73 65 63 6f 6e 64 20 74 | h.one.provider,.and.the.second.t |
| 88780 | 68 72 6f 75 67 68 20 61 6e 6f 74 68 65 72 2e 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 | hrough.another..The.following.ex |
| 887a0 | 61 6d 70 6c 65 20 63 72 65 61 74 65 73 20 61 20 57 41 50 2e 20 57 68 65 6e 20 63 6f 6e 66 69 67 | ample.creates.a.WAP..When.config |
| 887c0 | 75 72 69 6e 67 20 6d 75 6c 74 69 70 6c 65 20 57 41 50 20 69 6e 74 65 72 66 61 63 65 73 2c 20 79 | uring.multiple.WAP.interfaces,.y |
| 887e0 | 6f 75 20 6d 75 73 74 20 73 70 65 63 69 66 79 20 75 6e 69 71 75 65 20 49 50 20 61 64 64 72 65 73 | ou.must.specify.unique.IP.addres |
| 88800 | 73 65 73 2c 20 63 68 61 6e 6e 65 6c 73 2c 20 4e 65 74 77 6f 72 6b 20 49 44 73 20 63 6f 6d 6d 6f | ses,.channels,.Network.IDs.commo |
| 88820 | 6e 6c 79 20 72 65 66 65 72 72 65 64 20 74 6f 20 61 73 20 3a 61 62 62 72 3a 60 53 53 49 44 20 28 | nly.referred.to.as.:abbr:`SSID.( |
| 88840 | 53 65 72 76 69 63 65 20 53 65 74 20 49 64 65 6e 74 69 66 69 65 72 29 60 2c 20 61 6e 64 20 4d 41 | Service.Set.Identifier)`,.and.MA |
| 88860 | 43 20 61 64 64 72 65 73 73 65 73 2e 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 | C.addresses..The.following.examp |
| 88880 | 6c 65 20 69 73 20 62 61 73 65 64 20 6f 6e 20 61 20 53 69 65 72 72 61 20 57 69 72 65 6c 65 73 73 | le.is.based.on.a.Sierra.Wireless |
| 888a0 | 20 4d 43 37 37 31 30 20 6d 69 6e 69 50 43 49 65 20 63 61 72 64 20 28 6f 6e 6c 79 20 74 68 65 20 | .MC7710.miniPCIe.card.(only.the. |
| 888c0 | 66 6f 72 6d 20 66 61 63 74 6f 72 20 69 6e 20 72 65 61 6c 69 74 79 20 69 74 20 72 75 6e 73 20 55 | form.factor.in.reality.it.runs.U |
| 888e0 | 42 53 29 20 61 6e 64 20 44 65 75 74 73 63 68 65 20 54 65 6c 65 6b 6f 6d 20 61 73 20 49 53 50 2e | BS).and.Deutsche.Telekom.as.ISP. |
| 88900 | 20 54 68 65 20 63 61 72 64 20 69 73 20 61 73 73 65 6d 62 6c 65 64 20 69 6e 74 6f 20 61 20 3a 72 | .The.card.is.assembled.into.a.:r |
| 88920 | 65 66 3a 60 70 63 2d 65 6e 67 69 6e 65 73 2d 61 70 75 34 60 2e 00 54 68 65 20 66 6f 6c 6c 6f 77 | ef:`pc-engines-apu4`..The.follow |
| 88940 | 69 6e 67 20 65 78 61 6d 70 6c 65 20 74 6f 70 6f 6c 6f 67 79 20 77 61 73 20 62 75 69 6c 74 20 75 | ing.example.topology.was.built.u |
| 88960 | 73 69 6e 67 20 45 56 45 2d 4e 47 2e 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 | sing.EVE-NG..The.following.examp |
| 88980 | 6c 65 20 77 69 6c 6c 20 73 68 6f 77 20 68 6f 77 20 56 79 4f 53 20 63 61 6e 20 62 65 20 75 73 65 | le.will.show.how.VyOS.can.be.use |
| 889a0 | 64 20 74 6f 20 72 65 64 69 72 65 63 74 20 77 65 62 20 74 72 61 66 66 69 63 20 74 6f 20 61 6e 20 | d.to.redirect.web.traffic.to.an. |
| 889c0 | 65 78 74 65 72 6e 61 6c 20 74 72 61 6e 73 70 61 72 65 6e 74 20 70 72 6f 78 79 3a 00 54 68 65 20 | external.transparent.proxy:.The. |
| 889e0 | 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 6c 65 73 20 73 68 6f 77 20 68 6f 77 20 74 6f 20 63 | following.examples.show.how.to.c |
| 88a00 | 6f 6e 66 69 67 75 72 65 20 4e 41 54 36 34 20 6f 6e 20 61 20 56 79 4f 53 20 72 6f 75 74 65 72 2e | onfigure.NAT64.on.a.VyOS.router. |
| 88a20 | 20 54 68 65 20 31 39 32 2e 30 2e 32 2e 31 30 20 61 64 64 72 65 73 73 20 69 73 20 75 73 65 64 20 | .The.192.0.2.10.address.is.used. |
| 88a40 | 61 73 20 74 68 65 20 49 50 76 34 20 61 64 64 72 65 73 73 20 66 6f 72 20 74 68 65 20 74 72 61 6e | as.the.IPv4.address.for.the.tran |
| 88a60 | 73 6c 61 74 69 6f 6e 20 70 6f 6f 6c 2e 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d | slation.pool..The.following.exam |
| 88a80 | 70 6c 65 73 20 77 69 6c 6c 20 73 68 6f 77 20 76 61 6c 69 64 20 63 6f 6e 66 69 67 75 72 61 74 69 | ples.will.show.valid.configurati |
| 88aa0 | 6f 6e 73 20 66 6f 72 20 57 69 46 69 2d 36 20 28 32 2e 34 47 48 7a 29 20 61 6e 64 20 57 69 46 69 | ons.for.WiFi-6.(2.4GHz).and.WiFi |
| 88ac0 | 2d 36 65 20 28 36 47 48 7a 29 20 41 63 63 65 73 73 2d 50 6f 69 6e 74 73 20 77 69 74 68 20 74 68 | -6e.(6GHz).Access-Points.with.th |
| 88ae0 | 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 68 61 72 61 63 74 65 72 69 73 74 69 63 73 3a 00 54 68 65 | e.following.characteristics:.The |
| 88b00 | 20 66 6f 6c 6c 6f 77 69 6e 67 20 68 61 72 64 77 61 72 65 20 6d 6f 64 75 6c 65 73 20 68 61 76 65 | .following.hardware.modules.have |
| 88b20 | 20 62 65 65 6e 20 74 65 73 74 65 64 20 73 75 63 63 65 73 73 66 75 6c 6c 79 20 69 6e 20 61 6e 20 | .been.tested.successfully.in.an. |
| 88b40 | 3a 72 65 66 3a 60 70 63 2d 65 6e 67 69 6e 65 73 2d 61 70 75 34 60 20 62 6f 61 72 64 3a 00 54 68 | :ref:`pc-engines-apu4`.board:.Th |
| 88b60 | 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 69 73 20 74 68 65 20 63 6f 6e 66 69 67 20 66 6f 72 20 74 68 | e.following.is.the.config.for.th |
| 88b80 | 65 20 69 50 68 6f 6e 65 20 70 65 65 72 20 61 62 6f 76 65 2e 20 49 74 27 73 20 69 6d 70 6f 72 74 | e.iPhone.peer.above..It's.import |
| 88ba0 | 61 6e 74 20 74 6f 20 6e 6f 74 65 20 74 68 61 74 20 74 68 65 20 60 60 41 6c 6c 6f 77 65 64 49 50 | ant.to.note.that.the.``AllowedIP |
| 88bc0 | 73 60 60 20 77 69 6c 64 63 61 72 64 20 73 65 74 74 69 6e 67 20 64 69 72 65 63 74 73 20 61 6c 6c | s``.wildcard.setting.directs.all |
| 88be0 | 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 74 72 61 66 66 69 63 20 74 68 72 6f 75 67 68 20 74 | .IPv4.and.IPv6.traffic.through.t |
| 88c00 | 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 70 72 6f | he.connection..The.following.pro |
| 88c20 | 74 6f 63 6f 6c 73 20 63 61 6e 20 62 65 20 75 73 65 64 3a 20 61 6e 79 2c 20 62 61 62 65 6c 2c 20 | tocols.can.be.used:.any,.babel,. |
| 88c40 | 62 67 70 2c 20 63 6f 6e 6e 65 63 74 65 64 2c 20 65 69 67 72 70 2c 20 69 73 69 73 2c 20 6b 65 72 | bgp,.connected,.eigrp,.isis,.ker |
| 88c60 | 6e 65 6c 2c 20 6f 73 70 66 2c 20 72 69 70 2c 20 73 74 61 74 69 63 2c 20 74 61 62 6c 65 00 54 68 | nel,.ospf,.rip,.static,.table.Th |
| 88c80 | 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 73 20 63 61 6e 20 62 65 20 75 73 65 | e.following.protocols.can.be.use |
| 88ca0 | 64 3a 20 61 6e 79 2c 20 62 61 62 65 6c 2c 20 62 67 70 2c 20 63 6f 6e 6e 65 63 74 65 64 2c 20 69 | d:.any,.babel,.bgp,.connected,.i |
| 88cc0 | 73 69 73 2c 20 6b 65 72 6e 65 6c 2c 20 6f 73 70 66 76 33 2c 20 72 69 70 6e 67 2c 20 73 74 61 74 | sis,.kernel,.ospfv3,.ripng,.stat |
| 88ce0 | 69 63 2c 20 74 61 62 6c 65 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 74 72 75 63 74 75 72 | ic,.table.The.following.structur |
| 88d00 | 65 20 72 65 73 70 72 65 73 65 6e 74 20 74 68 65 20 63 6c 69 20 73 74 72 75 63 74 75 72 65 2e 00 | e.respresent.the.cli.structure.. |
| 88d20 | 54 68 65 20 66 6f 72 6d 75 6c 61 20 66 6f 72 20 75 6e 66 72 61 67 6d 65 6e 74 65 64 20 54 43 50 | The.formula.for.unfragmented.TCP |
| 88d40 | 20 61 6e 64 20 55 44 50 20 70 61 63 6b 65 74 73 20 69 73 00 54 68 65 20 66 6f 72 77 61 72 64 69 | .and.UDP.packets.is.The.forwardi |
| 88d60 | 6e 67 20 64 65 6c 61 79 20 74 69 6d 65 20 69 73 20 74 68 65 20 74 69 6d 65 20 73 70 65 6e 74 20 | ng.delay.time.is.the.time.spent. |
| 88d80 | 69 6e 20 65 61 63 68 20 6f 66 20 74 68 65 20 6c 69 73 74 65 6e 69 6e 67 20 61 6e 64 20 6c 65 61 | in.each.of.the.listening.and.lea |
| 88da0 | 72 6e 69 6e 67 20 73 74 61 74 65 73 20 62 65 66 6f 72 65 20 74 68 65 20 46 6f 72 77 61 72 64 69 | rning.states.before.the.Forwardi |
| 88dc0 | 6e 67 20 73 74 61 74 65 20 69 73 20 65 6e 74 65 72 65 64 2e 20 54 68 69 73 20 64 65 6c 61 79 20 | ng.state.is.entered..This.delay. |
| 88de0 | 69 73 20 73 6f 20 74 68 61 74 20 77 68 65 6e 20 61 20 6e 65 77 20 62 72 69 64 67 65 20 63 6f 6d | is.so.that.when.a.new.bridge.com |
| 88e00 | 65 73 20 6f 6e 74 6f 20 61 20 62 75 73 79 20 6e 65 74 77 6f 72 6b 20 69 74 20 6c 6f 6f 6b 73 20 | es.onto.a.busy.network.it.looks. |
| 88e20 | 61 74 20 73 6f 6d 65 20 74 72 61 66 66 69 63 20 62 65 66 6f 72 65 20 70 61 72 74 69 63 69 70 61 | at.some.traffic.before.participa |
| 88e40 | 74 69 6e 67 2e 00 54 68 65 20 67 65 6e 65 72 61 74 65 64 20 63 6f 6e 66 69 67 75 72 61 74 69 6f | ting..The.generated.configuratio |
| 88e60 | 6e 20 77 69 6c 6c 20 6c 6f 6f 6b 20 6c 69 6b 65 3a 00 54 68 65 20 67 65 6e 65 72 61 74 65 64 20 | n.will.look.like:.The.generated. |
| 88e80 | 70 61 72 61 6d 65 74 65 72 73 20 61 72 65 20 74 68 65 6e 20 6f 75 74 70 75 74 20 74 6f 20 74 68 | parameters.are.then.output.to.th |
| 88ea0 | 65 20 63 6f 6e 73 6f 6c 65 2e 00 54 68 65 20 67 65 6e 65 72 69 63 20 6e 61 6d 65 20 6f 66 20 51 | e.console..The.generic.name.of.Q |
| 88ec0 | 75 61 6c 69 74 79 20 6f 66 20 53 65 72 76 69 63 65 20 6f 72 20 54 72 61 66 66 69 63 20 43 6f 6e | uality.of.Service.or.Traffic.Con |
| 88ee0 | 74 72 6f 6c 20 69 6e 76 6f 6c 76 65 73 20 74 68 69 6e 67 73 20 6c 69 6b 65 20 73 68 61 70 69 6e | trol.involves.things.like.shapin |
| 88f00 | 67 20 74 72 61 66 66 69 63 2c 20 73 63 68 65 64 75 6c 69 6e 67 20 6f 72 20 64 72 6f 70 70 69 6e | g.traffic,.scheduling.or.droppin |
| 88f20 | 67 20 70 61 63 6b 65 74 73 2c 20 77 68 69 63 68 20 61 72 65 20 74 68 65 20 6b 69 6e 64 20 6f 66 | g.packets,.which.are.the.kind.of |
| 88f40 | 20 74 68 69 6e 67 73 20 79 6f 75 20 6d 61 79 20 77 61 6e 74 20 74 6f 20 70 6c 61 79 20 77 69 74 | .things.you.may.want.to.play.wit |
| 88f60 | 68 20 77 68 65 6e 20 79 6f 75 20 68 61 76 65 2c 20 66 6f 72 20 69 6e 73 74 61 6e 63 65 2c 20 61 | h.when.you.have,.for.instance,.a |
| 88f80 | 20 62 61 6e 64 77 69 64 74 68 20 62 6f 74 74 6c 65 6e 65 63 6b 20 69 6e 20 61 20 6c 69 6e 6b 20 | .bandwidth.bottleneck.in.a.link. |
| 88fa0 | 61 6e 64 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 73 6f 6d 65 68 6f 77 20 70 72 69 6f 72 69 74 69 | and.you.want.to.somehow.prioriti |
| 88fc0 | 7a 65 20 73 6f 6d 65 20 74 79 70 65 20 6f 66 20 74 72 61 66 66 69 63 20 6f 76 65 72 20 61 6e 6f | ze.some.type.of.traffic.over.ano |
| 88fe0 | 74 68 65 72 2e 00 54 68 65 20 68 61 73 68 20 74 79 70 65 20 75 73 65 64 20 77 68 65 6e 20 64 69 | ther..The.hash.type.used.when.di |
| 89000 | 73 63 6f 76 65 72 69 6e 67 20 66 69 6c 65 20 6f 6e 20 6d 61 73 74 65 72 20 73 65 72 76 65 72 20 | scovering.file.on.master.server. |
| 89020 | 28 64 65 66 61 75 6c 74 3a 20 73 68 61 32 35 36 29 00 54 68 65 20 68 65 61 6c 74 68 20 6f 66 20 | (default:.sha256).The.health.of. |
| 89040 | 69 6e 74 65 72 66 61 63 65 73 20 61 6e 64 20 70 61 74 68 73 20 61 73 73 69 67 6e 65 64 20 74 6f | interfaces.and.paths.assigned.to |
| 89060 | 20 74 68 65 20 6c 6f 61 64 20 62 61 6c 61 6e 63 65 72 20 69 73 20 70 65 72 69 6f 64 69 63 61 6c | .the.load.balancer.is.periodical |
| 89080 | 6c 79 20 63 68 65 63 6b 65 64 20 62 79 20 73 65 6e 64 69 6e 67 20 49 43 4d 50 20 70 61 63 6b 65 | ly.checked.by.sending.ICMP.packe |
| 890a0 | 74 73 20 28 70 69 6e 67 29 20 74 6f 20 72 65 6d 6f 74 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 73 | ts.(ping).to.remote.destinations |
| 890c0 | 2c 20 61 20 54 54 4c 20 74 65 73 74 20 6f 72 20 74 68 65 20 65 78 65 63 75 74 69 6f 6e 20 6f 66 | ,.a.TTL.test.or.the.execution.of |
| 890e0 | 20 61 20 75 73 65 72 20 64 65 66 69 6e 65 64 20 73 63 72 69 70 74 2e 20 49 66 20 61 6e 20 69 6e | .a.user.defined.script..If.an.in |
| 89100 | 74 65 72 66 61 63 65 20 66 61 69 6c 73 20 74 68 65 20 68 65 61 6c 74 68 20 63 68 65 63 6b 20 69 | terface.fails.the.health.check.i |
| 89120 | 74 20 69 73 20 72 65 6d 6f 76 65 64 20 66 72 6f 6d 20 74 68 65 20 6c 6f 61 64 20 62 61 6c 61 6e | t.is.removed.from.the.load.balan |
| 89140 | 63 65 72 27 73 20 70 6f 6f 6c 20 6f 66 20 69 6e 74 65 72 66 61 63 65 73 2e 20 54 6f 20 65 6e 61 | cer's.pool.of.interfaces..To.ena |
| 89160 | 62 6c 65 20 68 65 61 6c 74 68 20 63 68 65 63 6b 69 6e 67 20 66 6f 72 20 61 6e 20 69 6e 74 65 72 | ble.health.checking.for.an.inter |
| 89180 | 66 61 63 65 3a 00 54 68 65 20 68 65 6c 6c 6f 2d 6d 75 6c 74 69 70 6c 69 65 72 20 73 70 65 63 69 | face:.The.hello-multiplier.speci |
| 891a0 | 66 69 65 73 20 68 6f 77 20 6d 61 6e 79 20 48 65 6c 6c 6f 73 20 74 6f 20 73 65 6e 64 20 70 65 72 | fies.how.many.Hellos.to.send.per |
| 891c0 | 20 73 65 63 6f 6e 64 2c 20 66 72 6f 6d 20 31 20 28 65 76 65 72 79 20 73 65 63 6f 6e 64 29 20 74 | .second,.from.1.(every.second).t |
| 891e0 | 6f 20 31 30 20 28 65 76 65 72 79 20 31 30 30 6d 73 29 2e 20 54 68 75 73 20 6f 6e 65 20 63 61 6e | o.10.(every.100ms)..Thus.one.can |
| 89200 | 20 68 61 76 65 20 31 73 20 63 6f 6e 76 65 72 67 65 6e 63 65 20 74 69 6d 65 20 66 6f 72 20 4f 53 | .have.1s.convergence.time.for.OS |
| 89220 | 50 46 2e 20 49 66 20 74 68 69 73 20 66 6f 72 6d 20 69 73 20 73 70 65 63 69 66 69 65 64 2c 20 74 | PF..If.this.form.is.specified,.t |
| 89240 | 68 65 6e 20 74 68 65 20 68 65 6c 6c 6f 2d 69 6e 74 65 72 76 61 6c 20 61 64 76 65 72 74 69 73 65 | hen.the.hello-interval.advertise |
| 89260 | 64 20 69 6e 20 48 65 6c 6c 6f 20 70 61 63 6b 65 74 73 20 69 73 20 73 65 74 20 74 6f 20 30 20 61 | d.in.Hello.packets.is.set.to.0.a |
| 89280 | 6e 64 20 74 68 65 20 68 65 6c 6c 6f 2d 69 6e 74 65 72 76 61 6c 20 6f 6e 20 72 65 63 65 69 76 65 | nd.the.hello-interval.on.receive |
| 892a0 | 64 20 48 65 6c 6c 6f 20 70 61 63 6b 65 74 73 20 69 73 20 6e 6f 74 20 63 68 65 63 6b 65 64 2c 20 | d.Hello.packets.is.not.checked,. |
| 892c0 | 74 68 75 73 20 74 68 65 20 68 65 6c 6c 6f 2d 6d 75 6c 74 69 70 6c 69 65 72 20 6e 65 65 64 20 4e | thus.the.hello-multiplier.need.N |
| 892e0 | 4f 54 20 62 65 20 74 68 65 20 73 61 6d 65 20 61 63 72 6f 73 73 20 6d 75 6c 74 69 70 6c 65 20 72 | OT.be.the.same.across.multiple.r |
| 89300 | 6f 75 74 65 72 73 20 6f 6e 20 61 20 63 6f 6d 6d 6f 6e 20 6c 69 6e 6b 2e 00 54 68 65 20 68 6f 73 | outers.on.a.common.link..The.hos |
| 89320 | 74 6e 61 6d 65 20 63 61 6e 20 62 65 20 75 70 20 74 6f 20 36 33 20 63 68 61 72 61 63 74 65 72 73 | tname.can.be.up.to.63.characters |
| 89340 | 2e 20 41 20 68 6f 73 74 6e 61 6d 65 20 6d 75 73 74 20 73 74 61 72 74 20 61 6e 64 20 65 6e 64 20 | ..A.hostname.must.start.and.end. |
| 89360 | 77 69 74 68 20 61 20 6c 65 74 74 65 72 20 6f 72 20 64 69 67 69 74 2c 20 61 6e 64 20 68 61 76 65 | with.a.letter.or.digit,.and.have |
| 89380 | 20 61 73 20 69 6e 74 65 72 69 6f 72 20 63 68 61 72 61 63 74 65 72 73 20 6f 6e 6c 79 20 6c 65 74 | .as.interior.characters.only.let |
| 893a0 | 74 65 72 73 2c 20 64 69 67 69 74 73 2c 20 6f 72 20 61 20 68 79 70 68 65 6e 2e 00 54 68 65 20 68 | ters,.digits,.or.a.hyphen..The.h |
| 893c0 | 6f 73 74 6e 61 6d 65 20 6f 72 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 6d 61 73 | ostname.or.IP.address.of.the.mas |
| 893e0 | 74 65 72 00 54 68 65 20 69 64 65 6e 74 69 66 69 65 72 20 69 73 20 74 68 65 20 64 65 76 69 63 65 | ter.The.identifier.is.the.device |
| 89400 | 27 73 20 44 55 49 44 3a 20 63 6f 6c 6f 6e 2d 73 65 70 61 72 61 74 65 64 20 68 65 78 20 6c 69 73 | 's.DUID:.colon-separated.hex.lis |
| 89420 | 74 20 28 61 73 20 75 73 65 64 20 62 79 20 69 73 63 2d 64 68 63 70 20 6f 70 74 69 6f 6e 20 64 68 | t.(as.used.by.isc-dhcp.option.dh |
| 89440 | 63 70 76 36 2e 63 6c 69 65 6e 74 2d 69 64 29 2e 20 49 66 20 74 68 65 20 64 65 76 69 63 65 20 61 | cpv6.client-id)..If.the.device.a |
| 89460 | 6c 72 65 61 64 79 20 68 61 73 20 61 20 64 79 6e 61 6d 69 63 20 6c 65 61 73 65 20 66 72 6f 6d 20 | lready.has.a.dynamic.lease.from. |
| 89480 | 74 68 65 20 44 48 43 50 76 36 20 73 65 72 76 65 72 2c 20 69 74 73 20 44 55 49 44 20 63 61 6e 20 | the.DHCPv6.server,.its.DUID.can. |
| 894a0 | 62 65 20 66 6f 75 6e 64 20 77 69 74 68 20 60 60 73 68 6f 77 20 73 65 72 76 69 63 65 20 64 68 63 | be.found.with.``show.service.dhc |
| 894c0 | 70 76 36 20 73 65 72 76 65 72 20 6c 65 61 73 65 73 60 60 2e 20 54 68 65 20 44 55 49 44 20 62 65 | pv6.server.leases``..The.DUID.be |
| 894e0 | 67 69 6e 73 20 61 74 20 74 68 65 20 35 74 68 20 6f 63 74 65 74 20 28 61 66 74 65 72 20 74 68 65 | gins.at.the.5th.octet.(after.the |
| 89500 | 20 34 74 68 20 63 6f 6c 6f 6e 29 20 6f 66 20 49 41 49 44 5f 44 55 49 44 2e 00 54 68 65 20 69 6e | .4th.colon).of.IAID_DUID..The.in |
| 89520 | 64 69 76 69 64 75 61 6c 20 73 70 6f 6b 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 73 20 6f 6e | dividual.spoke.configurations.on |
| 89540 | 6c 79 20 64 69 66 66 65 72 20 69 6e 20 74 68 65 20 6c 6f 63 61 6c 20 49 50 20 61 64 64 72 65 73 | ly.differ.in.the.local.IP.addres |
| 89560 | 73 20 6f 6e 20 74 68 65 20 60 60 74 75 6e 31 30 60 60 20 69 6e 74 65 72 66 61 63 65 2e 20 53 65 | s.on.the.``tun10``.interface..Se |
| 89580 | 65 20 74 68 65 20 61 62 6f 76 65 20 64 69 61 67 72 61 6d 20 66 6f 72 20 74 68 65 20 69 6e 64 69 | e.the.above.diagram.for.the.indi |
| 895a0 | 76 69 64 75 61 6c 20 49 50 20 61 64 64 72 65 73 73 65 73 2e 00 54 68 65 20 69 6e 6e 65 72 20 74 | vidual.IP.addresses..The.inner.t |
| 895c0 | 61 67 20 69 73 20 74 68 65 20 74 61 67 20 77 68 69 63 68 20 69 73 20 63 6c 6f 73 65 73 74 20 74 | ag.is.the.tag.which.is.closest.t |
| 895e0 | 6f 20 74 68 65 20 70 61 79 6c 6f 61 64 20 70 6f 72 74 69 6f 6e 20 6f 66 20 74 68 65 20 66 72 61 | o.the.payload.portion.of.the.fra |
| 89600 | 6d 65 2e 20 49 74 20 69 73 20 6f 66 66 69 63 69 61 6c 6c 79 20 63 61 6c 6c 65 64 20 43 2d 54 41 | me..It.is.officially.called.C-TA |
| 89620 | 47 20 28 63 75 73 74 6f 6d 65 72 20 74 61 67 2c 20 77 69 74 68 20 65 74 68 65 72 74 79 70 65 20 | G.(customer.tag,.with.ethertype. |
| 89640 | 30 78 38 31 30 30 29 2e 20 54 68 65 20 6f 75 74 65 72 20 74 61 67 20 69 73 20 74 68 65 20 6f 6e | 0x8100)..The.outer.tag.is.the.on |
| 89660 | 65 20 63 6c 6f 73 65 72 2f 63 6c 6f 73 65 73 74 20 74 6f 20 74 68 65 20 45 74 68 65 72 6e 65 74 | e.closer/closest.to.the.Ethernet |
| 89680 | 20 68 65 61 64 65 72 2c 20 69 74 73 20 6e 61 6d 65 20 69 73 20 53 2d 54 41 47 20 28 73 65 72 76 | .header,.its.name.is.S-TAG.(serv |
| 896a0 | 69 63 65 20 74 61 67 20 77 69 74 68 20 45 74 68 65 72 6e 65 74 20 54 79 70 65 20 3d 20 30 78 38 | ice.tag.with.Ethernet.Type.=.0x8 |
| 896c0 | 38 61 38 29 2e 00 54 68 65 20 69 6e 74 65 72 66 61 63 65 20 74 68 61 74 20 77 69 6c 6c 20 62 65 | 8a8)..The.interface.that.will.be |
| 896e0 | 20 6d 6f 6e 69 74 6f 72 65 64 20 62 79 20 74 68 65 20 53 75 72 69 63 61 74 61 20 73 65 72 76 69 | .monitored.by.the.Suricata.servi |
| 89700 | 63 65 2e 00 54 68 65 20 69 6e 74 65 72 66 61 63 65 20 74 72 61 66 66 69 63 20 77 69 6c 6c 20 62 | ce..The.interface.traffic.will.b |
| 89720 | 65 20 63 6f 6d 69 6e 67 20 69 6e 20 6f 6e 3b 00 54 68 65 20 69 6e 74 65 72 66 61 63 65 20 75 73 | e.coming.in.on;.The.interface.us |
| 89740 | 65 64 20 74 6f 20 72 65 63 65 69 76 65 20 61 6e 64 20 72 65 6c 61 79 20 69 6e 64 69 76 69 64 75 | ed.to.receive.and.relay.individu |
| 89760 | 61 6c 20 62 72 6f 61 64 63 61 73 74 20 70 61 63 6b 65 74 73 2e 20 49 66 20 79 6f 75 20 77 61 6e | al.broadcast.packets..If.you.wan |
| 89780 | 74 20 74 6f 20 72 65 63 65 69 76 65 2f 72 65 6c 61 79 20 70 61 63 6b 65 74 73 20 6f 6e 20 62 6f | t.to.receive/relay.packets.on.bo |
| 897a0 | 74 68 20 60 65 74 68 31 60 20 61 6e 64 20 60 65 74 68 32 60 20 62 6f 74 68 20 69 6e 74 65 72 66 | th.`eth1`.and.`eth2`.both.interf |
| 897c0 | 61 63 65 73 20 6e 65 65 64 20 74 6f 20 62 65 20 61 64 64 65 64 2e 00 54 68 65 20 69 6e 74 65 72 | aces.need.to.be.added..The.inter |
| 897e0 | 6e 61 6c 20 49 50 20 61 64 64 72 65 73 73 65 73 20 77 65 20 77 61 6e 74 20 74 6f 20 74 72 61 6e | nal.IP.addresses.we.want.to.tran |
| 89800 | 73 6c 61 74 65 00 54 68 65 20 69 6e 76 65 72 73 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 | slate.The.inverse.configuration. |
| 89820 | 68 61 73 20 74 6f 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 74 68 65 20 72 65 6d 6f 74 65 20 | has.to.be.applied.to.the.remote. |
| 89840 | 73 69 64 65 2e 00 54 68 65 20 6c 61 72 67 65 73 74 20 4d 54 55 20 73 69 7a 65 20 79 6f 75 20 63 | side..The.largest.MTU.size.you.c |
| 89860 | 61 6e 20 75 73 65 20 77 69 74 68 20 44 53 4c 20 69 73 20 31 34 39 32 20 64 75 65 20 74 6f 20 50 | an.use.with.DSL.is.1492.due.to.P |
| 89880 | 50 50 6f 45 20 6f 76 65 72 68 65 61 64 2e 20 49 66 20 79 6f 75 20 61 72 65 20 73 77 69 74 63 68 | PPoE.overhead..If.you.are.switch |
| 898a0 | 69 6e 67 20 66 72 6f 6d 20 61 20 44 48 43 50 20 62 61 73 65 64 20 49 53 50 20 6c 69 6b 65 20 63 | ing.from.a.DHCP.based.ISP.like.c |
| 898c0 | 61 62 6c 65 20 74 68 65 6e 20 62 65 20 61 77 61 72 65 20 74 68 61 74 20 74 68 69 6e 67 73 20 6c | able.then.be.aware.that.things.l |
| 898e0 | 69 6b 65 20 56 50 4e 20 6c 69 6e 6b 73 20 6d 61 79 20 6e 65 65 64 20 74 6f 20 68 61 76 65 20 74 | ike.VPN.links.may.need.to.have.t |
| 89900 | 68 65 69 72 20 4d 54 55 20 73 69 7a 65 73 20 61 64 6a 75 73 74 65 64 20 74 6f 20 77 6f 72 6b 20 | heir.MTU.sizes.adjusted.to.work. |
| 89920 | 77 69 74 68 69 6e 20 74 68 69 73 20 6c 69 6d 69 74 2e 00 54 68 65 20 6c 61 73 74 20 73 74 65 70 | within.this.limit..The.last.step |
| 89940 | 20 69 73 20 74 6f 20 64 65 66 69 6e 65 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 72 6f 75 74 65 | .is.to.define.an.interface.route |
| 89960 | 20 66 6f 72 20 31 39 32 2e 31 36 38 2e 32 2e 30 2f 32 34 20 74 6f 20 67 65 74 20 74 68 72 6f 75 | .for.192.168.2.0/24.to.get.throu |
| 89980 | 67 68 20 74 68 65 20 57 69 72 65 47 75 61 72 64 20 69 6e 74 65 72 66 61 63 65 20 60 77 67 30 31 | gh.the.WireGuard.interface.`wg01 |
| 899a0 | 60 2e 20 4d 75 6c 74 69 70 6c 65 20 49 50 73 20 6f 72 20 6e 65 74 77 6f 72 6b 73 20 63 61 6e 20 | `..Multiple.IPs.or.networks.can. |
| 899c0 | 62 65 20 64 65 66 69 6e 65 64 20 61 6e 64 20 72 6f 75 74 65 64 2e 20 54 68 65 20 6c 61 73 74 20 | be.defined.and.routed..The.last. |
| 899e0 | 63 68 65 63 6b 20 69 73 20 61 6c 6c 6f 77 65 64 2d 69 70 73 20 77 68 69 63 68 20 65 69 74 68 65 | check.is.allowed-ips.which.eithe |
| 89a00 | 72 20 70 72 65 76 65 6e 74 73 20 6f 72 20 61 6c 6c 6f 77 73 20 74 68 65 20 74 72 61 66 66 69 63 | r.prevents.or.allows.the.traffic |
| 89a20 | 2e 00 54 68 65 20 6c 65 67 61 63 79 20 61 6e 64 20 7a 6f 6e 65 2d 62 61 73 65 64 20 66 69 72 65 | ..The.legacy.and.zone-based.fire |
| 89a40 | 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 70 74 69 6f 6e 73 20 69 73 20 6e 6f | wall.configuration.options.is.no |
| 89a60 | 74 20 6c 6f 6e 67 65 72 20 73 75 70 70 6f 72 74 65 64 2e 20 54 68 65 79 20 61 72 65 20 68 65 72 | t.longer.supported..They.are.her |
| 89a80 | 65 20 66 6f 72 20 72 65 66 65 72 65 6e 63 65 20 70 75 72 70 6f 73 65 73 20 6f 6e 6c 79 2e 00 54 | e.for.reference.purposes.only..T |
| 89aa0 | 68 65 20 6c 69 6d 69 74 65 72 20 70 65 72 66 6f 72 6d 73 20 62 61 73 69 63 20 69 6e 67 72 65 73 | he.limiter.performs.basic.ingres |
| 89ac0 | 73 20 70 6f 6c 69 63 69 6e 67 20 6f 66 20 74 72 61 66 66 69 63 20 66 6c 6f 77 73 2e 20 4d 75 6c | s.policing.of.traffic.flows..Mul |
| 89ae0 | 74 69 70 6c 65 20 63 6c 61 73 73 65 73 20 6f 66 20 74 72 61 66 66 69 63 20 63 61 6e 20 62 65 20 | tiple.classes.of.traffic.can.be. |
| 89b00 | 64 65 66 69 6e 65 64 20 61 6e 64 20 74 72 61 66 66 69 63 20 6c 69 6d 69 74 73 20 63 61 6e 20 62 | defined.and.traffic.limits.can.b |
| 89b20 | 65 20 61 70 70 6c 69 65 64 20 74 6f 20 65 61 63 68 20 63 6c 61 73 73 2e 20 41 6c 74 68 6f 75 67 | e.applied.to.each.class..Althoug |
| 89b40 | 68 20 74 68 65 20 70 6f 6c 69 63 65 72 20 75 73 65 73 20 61 20 74 6f 6b 65 6e 20 62 75 63 6b 65 | h.the.policer.uses.a.token.bucke |
| 89b60 | 74 20 6d 65 63 68 61 6e 69 73 6d 20 69 6e 74 65 72 6e 61 6c 6c 79 2c 20 69 74 20 64 6f 65 73 20 | t.mechanism.internally,.it.does. |
| 89b80 | 6e 6f 74 20 68 61 76 65 20 74 68 65 20 63 61 70 61 62 69 6c 69 74 79 20 74 6f 20 64 65 6c 61 79 | not.have.the.capability.to.delay |
| 89ba0 | 20 61 20 70 61 63 6b 65 74 20 61 73 20 61 20 73 68 61 70 69 6e 67 20 6d 65 63 68 61 6e 69 73 6d | .a.packet.as.a.shaping.mechanism |
| 89bc0 | 20 64 6f 65 73 2e 20 54 72 61 66 66 69 63 20 65 78 63 65 65 64 69 6e 67 20 74 68 65 20 64 65 66 | .does..Traffic.exceeding.the.def |
| 89be0 | 69 6e 65 64 20 62 61 6e 64 77 69 64 74 68 20 6c 69 6d 69 74 73 20 69 73 20 64 69 72 65 63 74 6c | ined.bandwidth.limits.is.directl |
| 89c00 | 79 20 64 72 6f 70 70 65 64 2e 20 41 20 6d 61 78 69 6d 75 6d 20 61 6c 6c 6f 77 65 64 20 62 75 72 | y.dropped..A.maximum.allowed.bur |
| 89c20 | 73 74 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 74 6f 6f 2e 00 54 68 65 20 6c 69 | st.can.be.configured.too..The.li |
| 89c40 | 6e 6b 20 62 61 6e 64 77 69 64 74 68 20 65 78 74 65 6e 64 65 64 20 63 6f 6d 6d 75 6e 69 74 79 20 | nk.bandwidth.extended.community. |
| 89c60 | 69 73 20 65 6e 63 6f 64 65 64 20 61 73 20 6e 6f 6e 2d 74 72 61 6e 73 69 74 69 76 65 00 54 68 65 | is.encoded.as.non-transitive.The |
| 89c80 | 20 6c 6f 63 61 6c 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 61 64 64 72 65 73 73 65 73 20 74 6f | .local.IPv4.or.IPv6.addresses.to |
| 89ca0 | 20 62 69 6e 64 20 74 68 65 20 44 4e 53 20 66 6f 72 77 61 72 64 65 72 20 74 6f 2e 20 54 68 65 20 | .bind.the.DNS.forwarder.to..The. |
| 89cc0 | 66 6f 72 77 61 72 64 65 72 20 77 69 6c 6c 20 6c 69 73 74 65 6e 20 6f 6e 20 74 68 69 73 20 61 64 | forwarder.will.listen.on.this.ad |
| 89ce0 | 64 72 65 73 73 20 66 6f 72 20 69 6e 63 6f 6d 69 6e 67 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2e 00 | dress.for.incoming.connections.. |
| 89d00 | 54 68 65 20 6c 6f 63 61 6c 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 61 64 64 72 65 73 73 65 73 | The.local.IPv4.or.IPv6.addresses |
| 89d20 | 20 74 6f 20 75 73 65 20 61 73 20 61 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 66 6f 72 20 | .to.use.as.a.source.address.for. |
| 89d40 | 73 65 6e 64 69 6e 67 20 71 75 65 72 69 65 73 2e 20 54 68 65 20 66 6f 72 77 61 72 64 65 72 20 77 | sending.queries..The.forwarder.w |
| 89d60 | 69 6c 6c 20 73 65 6e 64 20 66 6f 72 77 61 72 64 65 64 20 6f 75 74 62 6f 75 6e 64 20 44 4e 53 20 | ill.send.forwarded.outbound.DNS. |
| 89d80 | 72 65 71 75 65 73 74 73 20 66 72 6f 6d 20 74 68 69 73 20 61 64 64 72 65 73 73 2e 00 54 68 65 20 | requests.from.this.address..The. |
| 89da0 | 6c 6f 63 61 6c 20 73 69 74 65 20 77 69 6c 6c 20 68 61 76 65 20 61 20 73 75 62 6e 65 74 20 6f 66 | local.site.will.have.a.subnet.of |
| 89dc0 | 20 31 30 2e 30 2e 30 2e 30 2f 31 36 2e 00 54 68 65 20 6c 6f 6f 70 62 61 63 6b 20 6e 65 74 77 6f | .10.0.0.0/16..The.loopback.netwo |
| 89de0 | 72 6b 69 6e 67 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 61 20 76 69 72 74 75 61 6c 20 6e 65 74 | rking.interface.is.a.virtual.net |
| 89e00 | 77 6f 72 6b 20 64 65 76 69 63 65 20 69 6d 70 6c 65 6d 65 6e 74 65 64 20 65 6e 74 69 72 65 6c 79 | work.device.implemented.entirely |
| 89e20 | 20 69 6e 20 73 6f 66 74 77 61 72 65 2e 20 41 6c 6c 20 74 72 61 66 66 69 63 20 73 65 6e 74 20 74 | .in.software..All.traffic.sent.t |
| 89e40 | 6f 20 69 74 20 22 6c 6f 6f 70 73 20 62 61 63 6b 22 20 61 6e 64 20 6a 75 73 74 20 74 61 72 67 65 | o.it."loops.back".and.just.targe |
| 89e60 | 74 73 20 73 65 72 76 69 63 65 73 20 6f 6e 20 79 6f 75 72 20 6c 6f 63 61 6c 20 6d 61 63 68 69 6e | ts.services.on.your.local.machin |
| 89e80 | 65 2e 00 54 68 65 20 6d 61 69 6e 20 62 65 6e 65 66 69 74 20 74 6f 20 63 6f 6e 66 69 67 75 72 61 | e..The.main.benefit.to.configura |
| 89ea0 | 74 69 6f 6e 20 73 79 6e 63 68 72 6f 6e 69 7a 61 74 69 6f 6e 20 69 73 20 74 68 61 74 20 69 74 20 | tion.synchronization.is.that.it. |
| 89ec0 | 65 6c 69 6d 69 6e 61 74 65 73 20 68 61 76 69 6e 67 20 74 6f 20 6d 61 6e 75 61 6c 6c 79 20 72 65 | eliminates.having.to.manually.re |
| 89ee0 | 70 6c 69 63 61 74 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 68 61 6e 67 65 73 20 6d 61 | plicate.configuration.changes.ma |
| 89f00 | 64 65 20 6f 6e 20 74 68 65 20 70 72 69 6d 61 72 79 20 72 6f 75 74 65 72 20 74 6f 20 74 68 65 20 | de.on.the.primary.router.to.the. |
| 89f20 | 73 65 63 6f 6e 64 61 72 79 20 28 72 65 70 6c 69 63 61 29 20 72 6f 75 74 65 72 2e 00 54 68 65 20 | secondary.(replica).router..The. |
| 89f40 | 6d 61 69 6e 20 70 6f 69 6e 74 73 20 72 65 67 61 72 64 69 6e 67 20 74 68 69 73 20 70 61 63 6b 65 | main.points.regarding.this.packe |
| 89f60 | 74 20 66 6c 6f 77 20 61 6e 64 20 74 65 72 6d 69 6e 6f 6c 6f 67 79 20 75 73 65 64 20 69 6e 20 56 | t.flow.and.terminology.used.in.V |
| 89f80 | 79 4f 53 20 66 69 72 65 77 61 6c 6c 20 61 72 65 20 63 6f 76 65 72 65 64 20 62 65 6c 6f 77 3a 00 | yOS.firewall.are.covered.below:. |
| 89fa0 | 54 68 65 20 6d 61 69 6e 20 73 74 72 75 63 74 75 72 65 20 56 79 4f 53 20 66 69 72 65 77 61 6c 6c | The.main.structure.VyOS.firewall |
| 89fc0 | 20 63 6c 69 20 69 73 20 73 68 6f 77 6e 20 6e 65 78 74 3a 00 54 68 65 20 6d 61 69 6e 20 73 74 72 | .cli.is.shown.next:.The.main.str |
| 89fe0 | 75 63 74 75 72 65 20 6f 66 20 74 68 65 20 56 79 4f 53 20 66 69 72 65 77 61 6c 6c 20 43 4c 49 20 | ucture.of.the.VyOS.firewall.CLI. |
| 8a000 | 69 73 20 73 68 6f 77 6e 20 6e 65 78 74 3a 00 54 68 65 20 6d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 | is.shown.next:.The.maximum.numbe |
| 8a020 | 72 20 6f 66 20 74 61 72 67 65 74 73 20 74 68 61 74 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 | r.of.targets.that.can.be.specifi |
| 8a040 | 65 64 20 69 73 20 31 36 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 6e | ed.is.16..The.default.value.is.n |
| 8a060 | 6f 20 49 50 20 61 64 64 72 65 73 73 2e 00 54 68 65 20 6d 65 61 6e 69 6e 67 20 6f 66 20 74 68 65 | o.IP.address..The.meaning.of.the |
| 8a080 | 20 43 6c 61 73 73 20 49 44 20 69 73 20 6e 6f 74 20 74 68 65 20 73 61 6d 65 20 66 6f 72 20 65 76 | .Class.ID.is.not.the.same.for.ev |
| 8a0a0 | 65 72 79 20 74 79 70 65 20 6f 66 20 70 6f 6c 69 63 79 2e 20 4e 6f 72 6d 61 6c 6c 79 20 70 6f 6c | ery.type.of.policy..Normally.pol |
| 8a0c0 | 69 63 69 65 73 20 6a 75 73 74 20 6e 65 65 64 20 61 20 6d 65 61 6e 69 6e 67 6c 65 73 73 20 6e 75 | icies.just.need.a.meaningless.nu |
| 8a0e0 | 6d 62 65 72 20 74 6f 20 69 64 65 6e 74 69 66 79 20 61 20 63 6c 61 73 73 20 28 43 6c 61 73 73 20 | mber.to.identify.a.class.(Class. |
| 8a100 | 49 44 29 2c 20 62 75 74 20 74 68 61 74 20 64 6f 65 73 20 6e 6f 74 20 61 70 70 6c 79 20 74 6f 20 | ID),.but.that.does.not.apply.to. |
| 8a120 | 65 76 65 72 79 20 70 6f 6c 69 63 79 2e 20 54 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 61 20 63 6c | every.policy..The.number.of.a.cl |
| 8a140 | 61 73 73 20 69 6e 20 61 20 50 72 69 6f 72 69 74 79 20 51 75 65 75 65 20 69 74 20 64 6f 65 73 20 | ass.in.a.Priority.Queue.it.does. |
| 8a160 | 6e 6f 74 20 6f 6e 6c 79 20 69 64 65 6e 74 69 66 79 20 69 74 2c 20 69 74 20 61 6c 73 6f 20 64 65 | not.only.identify.it,.it.also.de |
| 8a180 | 66 69 6e 65 73 20 69 74 73 20 70 72 69 6f 72 69 74 79 2e 00 54 68 65 20 6d 65 6d 62 65 72 20 69 | fines.its.priority..The.member.i |
| 8a1a0 | 6e 74 65 72 66 61 63 65 20 60 65 74 68 31 60 20 69 73 20 61 20 74 72 75 6e 6b 20 74 68 61 74 20 | nterface.`eth1`.is.a.trunk.that. |
| 8a1c0 | 61 6c 6c 6f 77 73 20 56 4c 41 4e 20 31 30 20 74 6f 20 70 61 73 73 00 54 68 65 20 6d 65 74 72 69 | allows.VLAN.10.to.pass.The.metri |
| 8a1e0 | 63 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 31 36 37 37 37 32 31 35 20 28 4d 61 78 20 76 61 | c.range.is.1.to.16777215.(Max.va |
| 8a200 | 6c 75 65 20 64 65 70 65 6e 64 20 69 66 20 6d 65 74 72 69 63 20 73 75 70 70 6f 72 74 20 6e 61 72 | lue.depend.if.metric.support.nar |
| 8a220 | 72 6f 77 20 6f 72 20 77 69 64 65 20 76 61 6c 75 65 29 2e 00 54 68 65 20 6d 69 6e 69 6d 61 6c 20 | row.or.wide.value)..The.minimal. |
| 8a240 | 65 63 68 6f 20 72 65 63 65 69 76 65 20 74 72 61 6e 73 6d 69 73 73 69 6f 6e 20 69 6e 74 65 72 76 | echo.receive.transmission.interv |
| 8a260 | 61 6c 20 74 68 61 74 20 74 68 69 73 20 73 79 73 74 65 6d 20 69 73 20 63 61 70 61 62 6c 65 20 6f | al.that.this.system.is.capable.o |
| 8a280 | 66 20 68 61 6e 64 6c 69 6e 67 00 54 68 65 20 6d 6f 73 74 20 76 69 73 69 62 6c 65 20 61 70 70 6c | f.handling.The.most.visible.appl |
| 8a2a0 | 69 63 61 74 69 6f 6e 20 6f 66 20 74 68 65 20 70 72 6f 74 6f 63 6f 6c 20 69 73 20 66 6f 72 20 61 | ication.of.the.protocol.is.for.a |
| 8a2c0 | 63 63 65 73 73 20 74 6f 20 73 68 65 6c 6c 20 61 63 63 6f 75 6e 74 73 20 6f 6e 20 55 6e 69 78 2d | ccess.to.shell.accounts.on.Unix- |
| 8a2e0 | 6c 69 6b 65 20 6f 70 65 72 61 74 69 6e 67 20 73 79 73 74 65 6d 73 2c 20 62 75 74 20 69 74 20 73 | like.operating.systems,.but.it.s |
| 8a300 | 65 65 73 20 73 6f 6d 65 20 6c 69 6d 69 74 65 64 20 75 73 65 20 6f 6e 20 57 69 6e 64 6f 77 73 20 | ees.some.limited.use.on.Windows. |
| 8a320 | 61 73 20 77 65 6c 6c 2e 20 49 6e 20 32 30 31 35 2c 20 4d 69 63 72 6f 73 6f 66 74 20 61 6e 6e 6f | as.well..In.2015,.Microsoft.anno |
| 8a340 | 75 6e 63 65 64 20 74 68 61 74 20 74 68 65 79 20 77 6f 75 6c 64 20 69 6e 63 6c 75 64 65 20 6e 61 | unced.that.they.would.include.na |
| 8a360 | 74 69 76 65 20 73 75 70 70 6f 72 74 20 66 6f 72 20 53 53 48 20 69 6e 20 61 20 66 75 74 75 72 65 | tive.support.for.SSH.in.a.future |
| 8a380 | 20 72 65 6c 65 61 73 65 2e 00 54 68 65 20 6d 75 6c 74 69 63 61 73 74 2d 67 72 6f 75 70 20 75 73 | .release..The.multicast-group.us |
| 8a3a0 | 65 64 20 62 79 20 61 6c 6c 20 6c 65 61 76 65 73 20 66 6f 72 20 74 68 69 73 20 76 6c 61 6e 20 65 | ed.by.all.leaves.for.this.vlan.e |
| 8a3c0 | 78 74 65 6e 73 69 6f 6e 2e 20 48 61 73 20 74 6f 20 62 65 20 74 68 65 20 73 61 6d 65 20 6f 6e 20 | xtension..Has.to.be.the.same.on. |
| 8a3e0 | 61 6c 6c 20 6c 65 61 76 65 73 20 74 68 61 74 20 68 61 73 20 74 68 69 73 20 69 6e 74 65 72 66 61 | all.leaves.that.has.this.interfa |
| 8a400 | 63 65 2e 00 54 68 65 20 6e 61 6d 65 20 6f 66 20 74 68 65 20 73 65 72 76 69 63 65 20 63 61 6e 20 | ce..The.name.of.the.service.can. |
| 8a420 | 62 65 20 64 69 66 66 65 72 65 6e 74 2c 20 69 6e 20 74 68 69 73 20 65 78 61 6d 70 6c 65 20 69 74 | be.different,.in.this.example.it |
| 8a440 | 20 69 73 20 6f 6e 6c 79 20 66 6f 72 20 63 6f 6e 76 65 6e 69 65 6e 63 65 2e 00 54 68 65 20 6e 65 | .is.only.for.convenience..The.ne |
| 8a460 | 74 6d 61 73 6b 20 6f 72 20 64 6f 6d 61 69 6e 20 74 68 61 74 20 45 44 4e 53 20 43 6c 69 65 6e 74 | tmask.or.domain.that.EDNS.Client |
| 8a480 | 20 53 75 62 6e 65 74 20 73 68 6f 75 6c 64 20 62 65 20 65 6e 61 62 6c 65 64 20 66 6f 72 20 69 6e | .Subnet.should.be.enabled.for.in |
| 8a4a0 | 20 6f 75 74 67 6f 69 6e 67 20 71 75 65 72 69 65 73 2e 00 54 68 65 20 6e 65 74 77 6f 72 6b 20 74 | .outgoing.queries..The.network.t |
| 8a4c0 | 6f 70 6f 6c 6f 67 79 20 69 73 20 64 65 63 6c 61 72 65 64 20 62 79 20 73 68 61 72 65 64 2d 6e 65 | opology.is.declared.by.shared-ne |
| 8a4e0 | 74 77 6f 72 6b 2d 6e 61 6d 65 20 61 6e 64 20 74 68 65 20 73 75 62 6e 65 74 20 64 65 63 6c 61 72 | twork-name.and.the.subnet.declar |
| 8a500 | 61 74 69 6f 6e 73 2e 20 54 68 65 20 44 48 43 50 20 73 65 72 76 69 63 65 20 63 61 6e 20 73 65 72 | ations..The.DHCP.service.can.ser |
| 8a520 | 76 65 20 6d 75 6c 74 69 70 6c 65 20 73 68 61 72 65 64 20 6e 65 74 77 6f 72 6b 73 2c 20 77 69 74 | ve.multiple.shared.networks,.wit |
| 8a540 | 68 20 65 61 63 68 20 73 68 61 72 65 64 20 6e 65 74 77 6f 72 6b 20 68 61 76 69 6e 67 20 31 20 6f | h.each.shared.network.having.1.o |
| 8a560 | 72 20 6d 6f 72 65 20 73 75 62 6e 65 74 73 2e 20 45 61 63 68 20 73 75 62 6e 65 74 20 6d 75 73 74 | r.more.subnets..Each.subnet.must |
| 8a580 | 20 62 65 20 70 72 65 73 65 6e 74 20 6f 6e 20 61 6e 20 69 6e 74 65 72 66 61 63 65 2e 20 41 20 72 | .be.present.on.an.interface..A.r |
| 8a5a0 | 61 6e 67 65 20 63 61 6e 20 62 65 20 64 65 63 6c 61 72 65 64 20 69 6e 73 69 64 65 20 61 20 73 75 | ange.can.be.declared.inside.a.su |
| 8a5c0 | 62 6e 65 74 20 74 6f 20 64 65 66 69 6e 65 20 61 20 70 6f 6f 6c 20 6f 66 20 64 79 6e 61 6d 69 63 | bnet.to.define.a.pool.of.dynamic |
| 8a5e0 | 20 61 64 64 72 65 73 73 65 73 2e 20 4d 75 6c 74 69 70 6c 65 20 72 61 6e 67 65 73 20 63 61 6e 20 | .addresses..Multiple.ranges.can. |
| 8a600 | 62 65 20 64 65 66 69 6e 65 64 20 61 6e 64 20 63 61 6e 20 63 6f 6e 74 61 69 6e 20 68 6f 6c 65 73 | be.defined.and.can.contain.holes |
| 8a620 | 2e 20 53 74 61 74 69 63 20 6d 61 70 70 69 6e 67 73 20 63 61 6e 20 62 65 20 73 65 74 20 74 6f 20 | ..Static.mappings.can.be.set.to. |
| 8a640 | 61 73 73 69 67 6e 20 22 73 74 61 74 69 63 22 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 63 6c 69 | assign."static".addresses.to.cli |
| 8a660 | 65 6e 74 73 20 62 61 73 65 64 20 6f 6e 20 74 68 65 69 72 20 4d 41 43 20 61 64 64 72 65 73 73 2e | ents.based.on.their.MAC.address. |
| 8a680 | 00 54 68 65 20 6e 65 78 74 20 65 78 61 6d 70 6c 65 20 69 73 20 61 20 73 69 6d 70 6c 65 20 63 6f | .The.next.example.is.a.simple.co |
| 8a6a0 | 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 66 20 63 6f 6e 6e 74 72 61 63 6b 2d 73 79 6e 63 2e 00 54 | nfiguration.of.conntrack-sync..T |
| 8a6c0 | 68 65 20 6e 65 78 74 20 73 74 65 70 20 69 73 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 79 6f 75 | he.next.step.is.to.configure.you |
| 8a6e0 | 72 20 6c 6f 63 61 6c 20 73 69 64 65 20 61 73 20 77 65 6c 6c 20 61 73 20 74 68 65 20 70 6f 6c 69 | r.local.side.as.well.as.the.poli |
| 8a700 | 63 79 20 62 61 73 65 64 20 74 72 75 73 74 65 64 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 | cy.based.trusted.destination.add |
| 8a720 | 72 65 73 73 65 73 2e 20 49 66 20 79 6f 75 20 6f 6e 6c 79 20 69 6e 69 74 69 61 74 65 20 61 20 63 | resses..If.you.only.initiate.a.c |
| 8a740 | 6f 6e 6e 65 63 74 69 6f 6e 2c 20 74 68 65 20 6c 69 73 74 65 6e 20 70 6f 72 74 20 61 6e 64 20 61 | onnection,.the.listen.port.and.a |
| 8a760 | 64 64 72 65 73 73 2f 70 6f 72 74 20 69 73 20 6f 70 74 69 6f 6e 61 6c 3b 20 68 6f 77 65 76 65 72 | ddress/port.is.optional;.however |
| 8a780 | 2c 20 69 66 20 79 6f 75 20 61 63 74 20 6c 69 6b 65 20 61 20 73 65 72 76 65 72 20 61 6e 64 20 65 | ,.if.you.act.like.a.server.and.e |
| 8a7a0 | 6e 64 70 6f 69 6e 74 73 20 69 6e 69 74 69 61 74 65 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e | ndpoints.initiate.the.connection |
| 8a7c0 | 73 20 74 6f 20 79 6f 75 72 20 73 79 73 74 65 6d 2c 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 64 65 | s.to.your.system,.you.need.to.de |
| 8a7e0 | 66 69 6e 65 20 61 20 70 6f 72 74 20 79 6f 75 72 20 63 6c 69 65 6e 74 73 20 63 61 6e 20 63 6f 6e | fine.a.port.your.clients.can.con |
| 8a800 | 6e 65 63 74 20 74 6f 2c 20 6f 74 68 65 72 77 69 73 65 20 74 68 65 20 70 6f 72 74 20 69 73 20 72 | nect.to,.otherwise.the.port.is.r |
| 8a820 | 61 6e 64 6f 6d 6c 79 20 63 68 6f 73 65 6e 20 61 6e 64 20 6d 61 79 20 6d 61 6b 65 20 63 6f 6e 6e | andomly.chosen.and.may.make.conn |
| 8a840 | 65 63 74 69 6f 6e 20 64 69 66 66 69 63 75 6c 74 20 77 69 74 68 20 66 69 72 65 77 61 6c 6c 20 72 | ection.difficult.with.firewall.r |
| 8a860 | 75 6c 65 73 2c 20 73 69 6e 63 65 20 74 68 65 20 70 6f 72 74 20 6d 61 79 20 62 65 20 64 69 66 66 | ules,.since.the.port.may.be.diff |
| 8a880 | 65 72 65 6e 74 20 65 61 63 68 20 74 69 6d 65 20 74 68 65 20 73 79 73 74 65 6d 20 69 73 20 72 65 | erent.each.time.the.system.is.re |
| 8a8a0 | 62 6f 6f 74 65 64 2e 00 54 68 65 20 6e 6f 74 65 64 20 70 75 62 6c 69 63 20 6b 65 79 73 20 73 68 | booted..The.noted.public.keys.sh |
| 8a8c0 | 6f 75 6c 64 20 62 65 20 65 6e 74 65 72 65 64 20 6f 6e 20 74 68 65 20 6f 70 70 6f 73 69 74 65 20 | ould.be.entered.on.the.opposite. |
| 8a8e0 | 72 6f 75 74 65 72 73 2e 00 54 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 6d 69 6c 6c 69 73 65 63 6f | routers..The.number.of.milliseco |
| 8a900 | 6e 64 73 20 74 6f 20 77 61 69 74 20 66 6f 72 20 61 20 72 65 6d 6f 74 65 20 61 75 74 68 6f 72 69 | nds.to.wait.for.a.remote.authori |
| 8a920 | 74 61 74 69 76 65 20 73 65 72 76 65 72 20 74 6f 20 72 65 73 70 6f 6e 64 20 62 65 66 6f 72 65 20 | tative.server.to.respond.before. |
| 8a940 | 74 69 6d 69 6e 67 20 6f 75 74 20 61 6e 64 20 72 65 73 70 6f 6e 64 69 6e 67 20 77 69 74 68 20 53 | timing.out.and.responding.with.S |
| 8a960 | 45 52 56 46 41 49 4c 2e 00 54 68 65 20 6e 75 6d 62 65 72 20 70 61 72 61 6d 65 74 65 72 20 28 31 | ERVFAIL..The.number.parameter.(1 |
| 8a980 | 2d 31 30 29 20 63 6f 6e 66 69 67 75 72 65 73 20 74 68 65 20 61 6d 6f 75 6e 74 20 6f 66 20 61 63 | -10).configures.the.amount.of.ac |
| 8a9a0 | 63 65 70 74 65 64 20 6f 63 63 75 72 65 6e 63 65 73 20 6f 66 20 74 68 65 20 73 79 73 74 65 6d 20 | cepted.occurences.of.the.system. |
| 8a9c0 | 41 53 20 6e 75 6d 62 65 72 20 69 6e 20 41 53 20 70 61 74 68 2e 00 54 68 65 20 6f 66 66 69 63 69 | AS.number.in.AS.path..The.offici |
| 8a9e0 | 61 6c 20 70 6f 72 74 20 66 6f 72 20 4f 70 65 6e 56 50 4e 20 69 73 20 31 31 39 34 2c 20 77 68 69 | al.port.for.OpenVPN.is.1194,.whi |
| 8aa00 | 63 68 20 77 65 20 72 65 73 65 72 76 65 20 66 6f 72 20 63 6c 69 65 6e 74 20 56 50 4e 3b 20 77 65 | ch.we.reserve.for.client.VPN;.we |
| 8aa20 | 20 77 69 6c 6c 20 75 73 65 20 31 31 39 35 20 66 6f 72 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 | .will.use.1195.for.site-to-site. |
| 8aa40 | 56 50 4e 2e 00 54 68 65 20 6f 6e 6c 79 20 73 74 61 67 65 73 20 56 79 4f 53 20 77 69 6c 6c 20 70 | VPN..The.only.stages.VyOS.will.p |
| 8aa60 | 72 6f 63 65 73 73 20 61 73 20 70 61 72 74 20 6f 66 20 74 68 65 20 66 69 72 65 77 61 6c 6c 20 63 | rocess.as.part.of.the.firewall.c |
| 8aa80 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 73 20 74 68 65 20 60 66 6f 72 77 61 72 64 60 20 28 46 | onfiguration.is.the.`forward`.(F |
| 8aaa0 | 34 20 73 74 61 67 65 29 2c 20 60 69 6e 70 75 74 60 20 28 4c 34 20 73 74 61 67 65 29 2c 20 61 6e | 4.stage),.`input`.(L4.stage),.an |
| 8aac0 | 64 20 60 6f 75 74 70 75 74 60 20 28 4c 35 20 73 74 61 67 65 29 2e 20 41 6c 6c 20 74 68 65 20 6f | d.`output`.(L5.stage)..All.the.o |
| 8aae0 | 74 68 65 72 20 73 74 61 67 65 73 20 61 6e 64 20 73 74 65 70 73 20 61 72 65 20 66 6f 72 20 72 65 | ther.stages.and.steps.are.for.re |
| 8ab00 | 66 65 72 65 6e 63 65 20 61 6e 64 20 63 61 6e 74 20 62 65 20 6d 61 6e 69 70 75 6c 61 74 65 64 20 | ference.and.cant.be.manipulated. |
| 8ab20 | 74 68 72 6f 75 67 68 20 56 79 4f 53 2e 00 54 68 65 20 6f 70 74 69 6f 6e 61 6c 20 60 64 69 73 61 | through.VyOS..The.optional.`disa |
| 8ab40 | 62 6c 65 60 20 6f 70 74 69 6f 6e 20 61 6c 6c 6f 77 73 20 74 6f 20 65 78 63 6c 75 64 65 20 69 6e | ble`.option.allows.to.exclude.in |
| 8ab60 | 74 65 72 66 61 63 65 20 66 72 6f 6d 20 70 61 73 73 69 76 65 20 73 74 61 74 65 2e 20 54 68 69 73 | terface.from.passive.state..This |
| 8ab80 | 20 63 6f 6d 6d 61 6e 64 20 69 73 20 75 73 65 64 20 69 66 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 | .command.is.used.if.the.command. |
| 8aba0 | 3a 63 66 67 63 6d 64 3a 60 70 61 73 73 69 76 65 2d 69 6e 74 65 72 66 61 63 65 20 64 65 66 61 75 | :cfgcmd:`passive-interface.defau |
| 8abc0 | 6c 74 60 20 77 61 73 20 63 6f 6e 66 69 67 75 72 65 64 2e 00 54 68 65 20 6f 70 74 69 6f 6e 61 6c | lt`.was.configured..The.optional |
| 8abe0 | 20 70 61 72 61 6d 65 74 65 72 20 72 65 67 69 73 74 65 72 20 73 70 65 63 69 66 69 65 73 20 74 68 | .parameter.register.specifies.th |
| 8ac00 | 61 74 20 52 65 67 69 73 74 72 61 74 69 6f 6e 20 52 65 71 75 65 73 74 20 73 68 6f 75 6c 64 20 62 | at.Registration.Request.should.b |
| 8ac20 | 65 20 73 65 6e 74 20 74 6f 20 74 68 69 73 20 70 65 65 72 20 6f 6e 20 73 74 61 72 74 75 70 2e 00 | e.sent.to.this.peer.on.startup.. |
| 8ac40 | 54 68 65 20 6f 72 69 67 69 6e 61 6c 20 38 30 32 2e 31 71 5f 20 73 70 65 63 69 66 69 63 61 74 69 | The.original.802.1q_.specificati |
| 8ac60 | 6f 6e 20 61 6c 6c 6f 77 73 20 61 20 73 69 6e 67 6c 65 20 56 69 72 74 75 61 6c 20 4c 6f 63 61 6c | on.allows.a.single.Virtual.Local |
| 8ac80 | 20 41 72 65 61 20 4e 65 74 77 6f 72 6b 20 28 56 4c 41 4e 29 20 68 65 61 64 65 72 20 74 6f 20 62 | .Area.Network.(VLAN).header.to.b |
| 8aca0 | 65 20 69 6e 73 65 72 74 65 64 20 69 6e 74 6f 20 61 6e 20 45 74 68 65 72 6e 65 74 20 66 72 61 6d | e.inserted.into.an.Ethernet.fram |
| 8acc0 | 65 2e 20 51 69 6e 51 20 61 6c 6c 6f 77 73 20 6d 75 6c 74 69 70 6c 65 20 56 4c 41 4e 20 74 61 67 | e..QinQ.allows.multiple.VLAN.tag |
| 8ace0 | 73 20 74 6f 20 62 65 20 69 6e 73 65 72 74 65 64 20 69 6e 74 6f 20 61 20 73 69 6e 67 6c 65 20 66 | s.to.be.inserted.into.a.single.f |
| 8ad00 | 72 61 6d 65 2c 20 61 6e 20 65 73 73 65 6e 74 69 61 6c 20 63 61 70 61 62 69 6c 69 74 79 20 66 6f | rame,.an.essential.capability.fo |
| 8ad20 | 72 20 69 6d 70 6c 65 6d 65 6e 74 69 6e 67 20 4d 65 74 72 6f 20 45 74 68 65 72 6e 65 74 20 6e 65 | r.implementing.Metro.Ethernet.ne |
| 8ad40 | 74 77 6f 72 6b 20 74 6f 70 6f 6c 6f 67 69 65 73 2e 20 4a 75 73 74 20 61 73 20 51 69 6e 51 20 65 | twork.topologies..Just.as.QinQ.e |
| 8ad60 | 78 74 65 6e 64 73 20 38 30 32 2e 31 51 2c 20 51 69 6e 51 20 69 74 73 65 6c 66 20 69 73 20 65 78 | xtends.802.1Q,.QinQ.itself.is.ex |
| 8ad80 | 74 65 6e 64 65 64 20 62 79 20 6f 74 68 65 72 20 4d 65 74 72 6f 20 45 74 68 65 72 6e 65 74 20 70 | tended.by.other.Metro.Ethernet.p |
| 8ada0 | 72 6f 74 6f 63 6f 6c 73 2e 00 54 68 65 20 6f 75 74 67 6f 69 6e 67 20 69 6e 74 65 72 66 61 63 65 | rotocols..The.outgoing.interface |
| 8adc0 | 20 74 6f 20 70 65 72 66 6f 72 6d 20 74 68 65 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 6f 6e 00 54 | .to.perform.the.translation.on.T |
| 8ade0 | 68 65 20 70 65 65 72 20 6e 61 6d 65 20 6d 75 73 74 20 62 65 20 61 6e 20 61 6c 70 68 61 6e 75 6d | he.peer.name.must.be.an.alphanum |
| 8ae00 | 65 72 69 63 20 61 6e 64 20 63 61 6e 20 68 61 76 65 20 68 79 70 65 6e 20 6f 72 20 75 6e 64 65 72 | eric.and.can.have.hypen.or.under |
| 8ae20 | 73 63 6f 72 65 20 61 73 20 73 70 65 63 69 61 6c 20 63 68 61 72 61 63 74 65 72 73 2e 20 49 74 20 | score.as.special.characters..It. |
| 8ae40 | 69 73 20 70 75 72 65 6c 79 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 61 6c 2e 00 54 68 65 20 70 65 65 | is.purely.informational..The.pee |
| 8ae60 | 72 20 6e 61 6d 65 73 20 52 49 47 48 54 20 61 6e 64 20 4c 45 46 54 20 61 72 65 20 75 73 65 64 20 | r.names.RIGHT.and.LEFT.are.used. |
| 8ae80 | 61 73 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 61 6c 20 74 65 78 74 2e 00 54 68 65 20 70 65 65 72 20 | as.informational.text..The.peer. |
| 8aea0 | 77 69 74 68 20 6c 6f 77 65 72 20 70 72 69 6f 72 69 74 79 20 77 69 6c 6c 20 62 65 63 6f 6d 65 20 | with.lower.priority.will.become. |
| 8aec0 | 74 68 65 20 6b 65 79 20 73 65 72 76 65 72 20 61 6e 64 20 73 74 61 72 74 20 64 69 73 74 72 69 62 | the.key.server.and.start.distrib |
| 8aee0 | 75 74 69 6e 67 20 53 41 4b 73 2e 00 54 68 65 20 70 69 6e 67 20 63 6f 6d 6d 61 6e 64 20 69 73 20 | uting.SAKs..The.ping.command.is. |
| 8af00 | 75 73 65 64 20 74 6f 20 74 65 73 74 20 77 68 65 74 68 65 72 20 61 20 6e 65 74 77 6f 72 6b 20 68 | used.to.test.whether.a.network.h |
| 8af20 | 6f 73 74 20 69 73 20 72 65 61 63 68 61 62 6c 65 20 6f 72 20 6e 6f 74 2e 00 54 68 65 20 70 6f 70 | ost.is.reachable.or.not..The.pop |
| 8af40 | 75 6c 61 72 20 55 6e 69 78 2f 4c 69 6e 75 78 20 60 60 64 69 67 60 60 20 74 6f 6f 6c 20 73 65 74 | ular.Unix/Linux.``dig``.tool.set |
| 8af60 | 73 20 74 68 65 20 41 44 2d 62 69 74 20 69 6e 20 74 68 65 20 71 75 65 72 79 2e 20 54 68 69 73 20 | s.the.AD-bit.in.the.query..This. |
| 8af80 | 6d 69 67 68 74 20 6c 65 61 64 20 74 6f 20 75 6e 65 78 70 65 63 74 65 64 20 71 75 65 72 79 20 72 | might.lead.to.unexpected.query.r |
| 8afa0 | 65 73 75 6c 74 73 20 77 68 65 6e 20 74 65 73 74 69 6e 67 2e 20 53 65 74 20 60 60 2b 6e 6f 61 64 | esults.when.testing..Set.``+noad |
| 8afc0 | 60 60 20 6f 6e 20 74 68 65 20 60 60 64 69 67 60 60 20 63 6f 6d 6d 61 6e 64 20 6c 69 6e 65 20 77 | ``.on.the.``dig``.command.line.w |
| 8afe0 | 68 65 6e 20 74 68 69 73 20 69 73 20 74 68 65 20 63 61 73 65 2e 00 54 68 65 20 70 72 65 2d 73 68 | hen.this.is.the.case..The.pre-sh |
| 8b000 | 61 72 65 64 20 6b 65 79 20 6d 6f 64 65 20 69 73 20 64 65 70 72 65 63 61 74 65 64 20 61 6e 64 20 | ared.key.mode.is.deprecated.and. |
| 8b020 | 77 69 6c 6c 20 62 65 20 72 65 6d 6f 76 65 64 20 66 72 6f 6d 20 66 75 74 75 72 65 20 4f 70 65 6e | will.be.removed.from.future.Open |
| 8b040 | 56 50 4e 20 76 65 72 73 69 6f 6e 73 2c 20 73 6f 20 56 79 4f 53 20 77 69 6c 6c 20 68 61 76 65 20 | VPN.versions,.so.VyOS.will.have. |
| 8b060 | 74 6f 20 72 65 6d 6f 76 65 20 73 75 70 70 6f 72 74 20 66 6f 72 20 74 68 61 74 20 6f 70 74 69 6f | to.remove.support.for.that.optio |
| 8b080 | 6e 20 61 73 20 77 65 6c 6c 2e 20 54 68 65 20 72 65 61 73 6f 6e 20 69 73 20 74 68 61 74 20 75 73 | n.as.well..The.reason.is.that.us |
| 8b0a0 | 69 6e 67 20 70 72 65 2d 73 68 61 72 65 64 20 6b 65 79 73 20 69 73 20 73 69 67 6e 69 66 69 63 61 | ing.pre-shared.keys.is.significa |
| 8b0c0 | 6e 74 6c 79 20 6c 65 73 73 20 73 65 63 75 72 65 20 74 68 61 6e 20 75 73 69 6e 67 20 54 4c 53 2e | ntly.less.secure.than.using.TLS. |
| 8b0e0 | 00 54 68 65 20 70 72 65 66 69 78 20 61 6e 64 20 41 53 4e 20 74 68 61 74 20 6f 72 69 67 69 6e 61 | .The.prefix.and.ASN.that.origina |
| 8b100 | 74 65 64 20 69 74 20 6d 61 74 63 68 20 61 20 73 69 67 6e 65 64 20 52 4f 41 2e 20 54 68 65 73 65 | ted.it.match.a.signed.ROA..These |
| 8b120 | 20 61 72 65 20 70 72 6f 62 61 62 6c 79 20 74 72 75 73 74 77 6f 72 74 68 79 20 72 6f 75 74 65 20 | .are.probably.trustworthy.route. |
| 8b140 | 61 6e 6e 6f 75 6e 63 65 6d 65 6e 74 73 2e 00 54 68 65 20 70 72 65 66 69 78 20 6f 72 20 70 72 65 | announcements..The.prefix.or.pre |
| 8b160 | 66 69 78 20 6c 65 6e 67 74 68 20 61 6e 64 20 41 53 4e 20 74 68 61 74 20 6f 72 69 67 69 6e 61 74 | fix.length.and.ASN.that.originat |
| 8b180 | 65 64 20 69 74 20 64 6f 65 73 6e 27 74 20 6d 61 74 63 68 20 61 6e 79 20 65 78 69 73 74 69 6e 67 | ed.it.doesn't.match.any.existing |
| 8b1a0 | 20 52 4f 41 2e 20 54 68 69 73 20 63 6f 75 6c 64 20 62 65 20 74 68 65 20 72 65 73 75 6c 74 20 6f | .ROA..This.could.be.the.result.o |
| 8b1c0 | 66 20 61 20 70 72 65 66 69 78 20 68 69 6a 61 63 6b 2c 20 6f 72 20 6d 65 72 65 6c 79 20 61 20 6d | f.a.prefix.hijack,.or.merely.a.m |
| 8b1e0 | 69 73 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2c 20 62 75 74 20 73 68 6f 75 6c 64 20 70 72 6f 62 | isconfiguration,.but.should.prob |
| 8b200 | 61 62 6c 79 20 62 65 20 74 72 65 61 74 65 64 20 61 73 20 75 6e 74 72 75 73 74 77 6f 72 74 68 79 | ably.be.treated.as.untrustworthy |
| 8b220 | 20 72 6f 75 74 65 20 61 6e 6e 6f 75 6e 63 65 6d 65 6e 74 73 2e 00 54 68 65 20 70 72 69 6d 61 72 | .route.announcements..The.primar |
| 8b240 | 79 20 44 48 43 50 20 73 65 72 76 65 72 20 75 73 65 73 20 61 64 64 72 65 73 73 20 60 31 39 32 2e | y.DHCP.server.uses.address.`192. |
| 8b260 | 31 36 38 2e 31 38 39 2e 32 35 32 60 00 54 68 65 20 70 72 69 6d 61 72 79 20 61 6e 64 20 73 65 63 | 168.189.252`.The.primary.and.sec |
| 8b280 | 6f 6e 64 61 72 79 20 73 74 61 74 65 6d 65 6e 74 73 20 64 65 74 65 72 6d 69 6e 65 73 20 77 68 65 | ondary.statements.determines.whe |
| 8b2a0 | 74 68 65 72 20 74 68 65 20 73 65 72 76 65 72 20 69 73 20 70 72 69 6d 61 72 79 20 6f 72 20 73 65 | ther.the.server.is.primary.or.se |
| 8b2c0 | 63 6f 6e 64 61 72 79 2e 00 54 68 65 20 70 72 69 6d 61 72 79 20 6f 70 74 69 6f 6e 20 69 73 20 6f | condary..The.primary.option.is.o |
| 8b2e0 | 6e 6c 79 20 76 61 6c 69 64 20 66 6f 72 20 61 63 74 69 76 65 2d 62 61 63 6b 75 70 2c 20 74 72 61 | nly.valid.for.active-backup,.tra |
| 8b300 | 6e 73 6d 69 74 2d 6c 6f 61 64 2d 62 61 6c 61 6e 63 65 2c 20 61 6e 64 20 61 64 61 70 74 69 76 65 | nsmit-load-balance,.and.adaptive |
| 8b320 | 2d 6c 6f 61 64 2d 62 61 6c 61 6e 63 65 20 6d 6f 64 65 2e 00 54 68 65 20 70 72 69 6f 72 69 74 79 | -load-balance.mode..The.priority |
| 8b340 | 20 6d 75 73 74 20 62 65 20 61 6e 20 69 6e 74 65 67 65 72 20 6e 75 6d 62 65 72 20 66 72 6f 6d 20 | .must.be.an.integer.number.from. |
| 8b360 | 31 20 74 6f 20 32 35 35 2e 20 48 69 67 68 65 72 20 70 72 69 6f 72 69 74 79 20 76 61 6c 75 65 20 | 1.to.255..Higher.priority.value. |
| 8b380 | 69 6e 63 72 65 61 73 65 73 20 72 6f 75 74 65 72 27 73 20 70 72 65 63 65 64 65 6e 63 65 20 69 6e | increases.router's.precedence.in |
| 8b3a0 | 20 74 68 65 20 6d 61 73 74 65 72 20 65 6c 65 63 74 69 6f 6e 73 2e 00 54 68 65 20 70 72 6f 63 65 | .the.master.elections..The.proce |
| 8b3c0 | 64 75 72 65 20 74 6f 20 73 70 65 63 69 66 79 20 61 20 3a 61 62 62 72 3a 60 4e 49 53 2b 20 28 4e | dure.to.specify.a.:abbr:`NIS+.(N |
| 8b3e0 | 65 74 77 6f 72 6b 20 49 6e 66 6f 72 6d 61 74 69 6f 6e 20 53 65 72 76 69 63 65 20 50 6c 75 73 29 | etwork.Information.Service.Plus) |
| 8b400 | 60 20 64 6f 6d 61 69 6e 20 69 73 20 73 69 6d 69 6c 61 72 20 74 6f 20 74 68 65 20 4e 49 53 20 64 | `.domain.is.similar.to.the.NIS.d |
| 8b420 | 6f 6d 61 69 6e 20 6f 6e 65 3a 00 54 68 65 20 70 72 6f 6d 70 74 20 69 73 20 61 64 6a 75 73 74 65 | omain.one:.The.prompt.is.adjuste |
| 8b440 | 64 20 74 6f 20 72 65 66 6c 65 63 74 20 74 68 69 73 20 63 68 61 6e 67 65 20 69 6e 20 62 6f 74 68 | d.to.reflect.this.change.in.both |
| 8b460 | 20 63 6f 6e 66 69 67 20 61 6e 64 20 6f 70 2d 6d 6f 64 65 2e 00 54 68 65 20 70 72 6f 74 6f 63 6f | .config.and.op-mode..The.protoco |
| 8b480 | 6c 20 61 6e 64 20 70 6f 72 74 20 77 65 20 77 69 73 68 20 74 6f 20 66 6f 72 77 61 72 64 3b 00 54 | l.and.port.we.wish.to.forward;.T |
| 8b4a0 | 68 65 20 70 72 6f 74 6f 63 6f 6c 20 69 73 20 75 73 75 61 6c 6c 79 20 64 65 73 63 72 69 62 65 64 | he.protocol.is.usually.described |
| 8b4c0 | 20 69 6e 20 74 65 72 6d 73 20 6f 66 20 61 20 63 6c 69 65 6e 74 2d 73 65 72 76 65 72 20 6d 6f 64 | .in.terms.of.a.client-server.mod |
| 8b4e0 | 65 6c 2c 20 62 75 74 20 63 61 6e 20 61 73 20 65 61 73 69 6c 79 20 62 65 20 75 73 65 64 20 69 6e | el,.but.can.as.easily.be.used.in |
| 8b500 | 20 70 65 65 72 2d 74 6f 2d 70 65 65 72 20 72 65 6c 61 74 69 6f 6e 73 68 69 70 73 20 77 68 65 72 | .peer-to-peer.relationships.wher |
| 8b520 | 65 20 62 6f 74 68 20 70 65 65 72 73 20 63 6f 6e 73 69 64 65 72 20 74 68 65 20 6f 74 68 65 72 20 | e.both.peers.consider.the.other. |
| 8b540 | 74 6f 20 62 65 20 61 20 70 6f 74 65 6e 74 69 61 6c 20 74 69 6d 65 20 73 6f 75 72 63 65 2e 20 49 | to.be.a.potential.time.source..I |
| 8b560 | 6d 70 6c 65 6d 65 6e 74 61 74 69 6f 6e 73 20 73 65 6e 64 20 61 6e 64 20 72 65 63 65 69 76 65 20 | mplementations.send.and.receive. |
| 8b580 | 74 69 6d 65 73 74 61 6d 70 73 20 75 73 69 6e 67 20 3a 61 62 62 72 3a 60 55 44 50 20 28 55 73 65 | timestamps.using.:abbr:`UDP.(Use |
| 8b5a0 | 72 20 44 61 74 61 67 72 61 6d 20 50 72 6f 74 6f 63 6f 6c 29 60 20 6f 6e 20 70 6f 72 74 20 6e 75 | r.Datagram.Protocol)`.on.port.nu |
| 8b5c0 | 6d 62 65 72 20 31 32 33 2e 00 54 68 65 20 70 72 6f 74 6f 63 6f 6c 20 6f 76 65 72 68 65 61 64 20 | mber.123..The.protocol.overhead. |
| 8b5e0 | 6f 66 20 4c 32 54 50 76 33 20 69 73 20 61 6c 73 6f 20 73 69 67 6e 69 66 69 63 61 6e 74 6c 79 20 | of.L2TPv3.is.also.significantly. |
| 8b600 | 62 69 67 67 65 72 20 74 68 61 6e 20 4d 50 4c 53 2e 00 54 68 65 20 70 72 6f 78 79 20 73 65 72 76 | bigger.than.MPLS..The.proxy.serv |
| 8b620 | 69 63 65 20 69 6e 20 56 79 4f 53 20 69 73 20 62 61 73 65 64 20 6f 6e 20 53 71 75 69 64 5f 20 61 | ice.in.VyOS.is.based.on.Squid_.a |
| 8b640 | 6e 64 20 73 6f 6d 65 20 72 65 6c 61 74 65 64 20 6d 6f 64 75 6c 65 73 2e 00 54 68 65 20 70 75 62 | nd.some.related.modules..The.pub |
| 8b660 | 6c 69 63 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 6c 6f 63 61 6c 20 73 69 64 65 | lic.IP.address.of.the.local.side |
| 8b680 | 20 6f 66 20 74 68 65 20 56 50 4e 20 77 69 6c 6c 20 62 65 20 31 39 38 2e 35 31 2e 31 30 30 2e 31 | .of.the.VPN.will.be.198.51.100.1 |
| 8b6a0 | 30 2e 00 54 68 65 20 70 75 62 6c 69 63 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 | 0..The.public.IP.address.of.the. |
| 8b6c0 | 72 65 6d 6f 74 65 20 73 69 64 65 20 6f 66 20 74 68 65 20 56 50 4e 20 77 69 6c 6c 20 62 65 20 32 | remote.side.of.the.VPN.will.be.2 |
| 8b6e0 | 30 33 2e 30 2e 31 31 33 2e 31 31 2e 00 54 68 65 20 72 61 74 65 2d 6c 69 6d 69 74 20 69 73 20 73 | 03.0.113.11..The.rate-limit.is.s |
| 8b700 | 65 74 20 69 6e 20 6b 62 69 74 2f 73 65 63 2e 00 54 68 65 20 72 65 67 75 6c 61 72 20 65 78 70 72 | et.in.kbit/sec..The.regular.expr |
| 8b720 | 65 73 73 69 6f 6e 20 6d 61 74 63 68 65 73 20 69 66 20 61 6e 64 20 6f 6e 6c 79 20 69 66 20 74 68 | ession.matches.if.and.only.if.th |
| 8b740 | 65 20 65 6e 74 69 72 65 20 73 74 72 69 6e 67 20 6d 61 74 63 68 65 73 20 74 68 65 20 70 61 74 74 | e.entire.string.matches.the.patt |
| 8b760 | 65 72 6e 2e 00 54 68 65 20 72 65 6d 6f 74 65 20 70 65 65 72 20 60 74 6f 2d 77 67 30 32 60 20 75 | ern..The.remote.peer.`to-wg02`.u |
| 8b780 | 73 65 73 20 58 4d 72 6c 50 79 6b 61 78 68 64 41 41 69 53 6a 68 74 50 6c 76 69 33 30 4e 56 6b 76 | ses.XMrlPykaxhdAAiSjhtPlvi30NVkv |
| 8b7a0 | 4c 51 6c 69 51 75 4b 50 37 41 49 37 43 79 49 3d 20 61 73 20 69 74 73 20 70 75 62 6c 69 63 20 6b | LQliQuKP7AI7CyI=.as.its.public.k |
| 8b7c0 | 65 79 20 70 6f 72 74 69 6f 6e 00 54 68 65 20 72 65 6d 6f 74 65 20 73 69 74 65 20 77 69 6c 6c 20 | ey.portion.The.remote.site.will. |
| 8b7e0 | 68 61 76 65 20 61 20 73 75 62 6e 65 74 20 6f 66 20 31 30 2e 31 2e 30 2e 30 2f 31 36 2e 00 54 68 | have.a.subnet.of.10.1.0.0/16..Th |
| 8b800 | 65 20 72 65 6d 6f 74 65 20 75 73 65 72 20 77 69 6c 6c 20 75 73 65 20 74 68 65 20 6f 70 65 6e 63 | e.remote.user.will.use.the.openc |
| 8b820 | 6f 6e 6e 65 63 74 20 63 6c 69 65 6e 74 20 74 6f 20 63 6f 6e 6e 65 63 74 20 74 6f 20 74 68 65 20 | onnect.client.to.connect.to.the. |
| 8b840 | 72 6f 75 74 65 72 20 61 6e 64 20 77 69 6c 6c 20 72 65 63 65 69 76 65 20 61 6e 20 49 50 20 61 64 | router.and.will.receive.an.IP.ad |
| 8b860 | 64 72 65 73 73 20 66 72 6f 6d 20 61 20 56 50 4e 20 70 6f 6f 6c 2c 20 61 6c 6c 6f 77 69 6e 67 20 | dress.from.a.VPN.pool,.allowing. |
| 8b880 | 66 75 6c 6c 20 61 63 63 65 73 73 20 74 6f 20 74 68 65 20 6e 65 74 77 6f 72 6b 2e 00 54 68 65 20 | full.access.to.the.network..The. |
| 8b8a0 | 72 65 71 75 65 73 74 6f 72 20 6e 65 74 6d 61 73 6b 20 66 6f 72 20 77 68 69 63 68 20 74 68 65 20 | requestor.netmask.for.which.the. |
| 8b8c0 | 72 65 71 75 65 73 74 6f 72 20 49 50 20 41 64 64 72 65 73 73 20 73 68 6f 75 6c 64 20 62 65 20 75 | requestor.IP.Address.should.be.u |
| 8b8e0 | 73 65 64 20 61 73 20 74 68 65 20 45 44 4e 53 20 43 6c 69 65 6e 74 20 53 75 62 6e 65 74 20 66 6f | sed.as.the.EDNS.Client.Subnet.fo |
| 8b900 | 72 20 6f 75 74 67 6f 69 6e 67 20 71 75 65 72 69 65 73 2e 00 54 68 65 20 72 65 71 75 69 72 65 64 | r.outgoing.queries..The.required |
| 8b920 | 20 63 6f 6e 66 69 67 20 66 69 6c 65 20 6d 61 79 20 6c 6f 6f 6b 20 6c 69 6b 65 20 74 68 69 73 3a | .config.file.may.look.like.this: |
| 8b940 | 00 54 68 65 20 72 65 71 75 69 72 65 64 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 61 6e 20 | .The.required.configuration.can. |
| 8b960 | 62 65 20 62 72 6f 6b 65 6e 20 64 6f 77 6e 20 69 6e 74 6f 20 34 20 6d 61 6a 6f 72 20 70 69 65 63 | be.broken.down.into.4.major.piec |
| 8b980 | 65 73 3a 00 54 68 65 20 72 65 73 75 6c 74 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 | es:.The.resulting.configuration. |
| 8b9a0 | 77 69 6c 6c 20 6c 6f 6f 6b 20 6c 69 6b 65 3a 00 54 68 65 20 72 6f 6f 74 20 63 61 75 73 65 20 6f | will.look.like:.The.root.cause.o |
| 8b9c0 | 66 20 74 68 65 20 70 72 6f 62 6c 65 6d 20 69 73 20 74 68 61 74 20 66 6f 72 20 56 54 49 20 74 75 | f.the.problem.is.that.for.VTI.tu |
| 8b9e0 | 6e 6e 65 6c 73 20 74 6f 20 77 6f 72 6b 2c 20 74 68 65 69 72 20 74 72 61 66 66 69 63 20 73 65 6c | nnels.to.work,.their.traffic.sel |
| 8ba00 | 65 63 74 6f 72 73 20 68 61 76 65 20 74 6f 20 62 65 20 73 65 74 20 74 6f 20 30 2e 30 2e 30 2e 30 | ectors.have.to.be.set.to.0.0.0.0 |
| 8ba20 | 2f 30 20 66 6f 72 20 74 72 61 66 66 69 63 20 74 6f 20 6d 61 74 63 68 20 74 68 65 20 74 75 6e 6e | /0.for.traffic.to.match.the.tunn |
| 8ba40 | 65 6c 2c 20 65 76 65 6e 20 74 68 6f 75 67 68 20 61 63 74 75 61 6c 20 72 6f 75 74 69 6e 67 20 64 | el,.even.though.actual.routing.d |
| 8ba60 | 65 63 69 73 69 6f 6e 20 69 73 20 6d 61 64 65 20 61 63 63 6f 72 64 69 6e 67 20 74 6f 20 6e 65 74 | ecision.is.made.according.to.net |
| 8ba80 | 66 69 6c 74 65 72 20 6d 61 72 6b 73 2e 20 55 6e 6c 65 73 73 20 72 6f 75 74 65 20 69 6e 73 65 72 | filter.marks..Unless.route.inser |
| 8baa0 | 74 69 6f 6e 20 69 73 20 64 69 73 61 62 6c 65 64 20 65 6e 74 69 72 65 6c 79 2c 20 53 74 72 6f 6e | tion.is.disabled.entirely,.Stron |
| 8bac0 | 67 53 57 41 4e 20 74 68 75 73 20 6d 69 73 74 61 6b 65 6e 6c 79 20 69 6e 73 65 72 74 73 20 61 20 | gSWAN.thus.mistakenly.inserts.a. |
| 8bae0 | 64 65 66 61 75 6c 74 20 72 6f 75 74 65 20 74 68 72 6f 75 67 68 20 74 68 65 20 56 54 49 20 70 65 | default.route.through.the.VTI.pe |
| 8bb00 | 65 72 20 61 64 64 72 65 73 73 2c 20 77 68 69 63 68 20 6d 61 6b 65 73 20 61 6c 6c 20 74 72 61 66 | er.address,.which.makes.all.traf |
| 8bb20 | 66 69 63 20 72 6f 75 74 65 64 20 74 6f 20 6e 6f 77 68 65 72 65 2e 00 54 68 65 20 72 6f 75 6e 64 | fic.routed.to.nowhere..The.round |
| 8bb40 | 2d 72 6f 62 69 6e 20 70 6f 6c 69 63 79 20 69 73 20 61 20 63 6c 61 73 73 66 75 6c 20 73 63 68 65 | -robin.policy.is.a.classful.sche |
| 8bb60 | 64 75 6c 65 72 20 74 68 61 74 20 64 69 76 69 64 65 73 20 74 72 61 66 66 69 63 20 69 6e 20 64 69 | duler.that.divides.traffic.in.di |
| 8bb80 | 66 66 65 72 65 6e 74 20 63 6c 61 73 73 65 73 5f 20 79 6f 75 20 63 61 6e 20 63 6f 6e 66 69 67 75 | fferent.classes_.you.can.configu |
| 8bba0 | 72 65 20 28 75 70 20 74 6f 20 34 30 39 36 29 2e 20 59 6f 75 20 63 61 6e 20 65 6d 62 65 64 5f 20 | re.(up.to.4096)..You.can.embed_. |
| 8bbc0 | 61 20 6e 65 77 20 70 6f 6c 69 63 79 20 69 6e 74 6f 20 65 61 63 68 20 6f 66 20 74 68 6f 73 65 20 | a.new.policy.into.each.of.those. |
| 8bbe0 | 63 6c 61 73 73 65 73 20 28 64 65 66 61 75 6c 74 20 69 6e 63 6c 75 64 65 64 29 2e 00 54 68 65 20 | classes.(default.included)..The. |
| 8bc00 | 72 6f 75 74 65 20 73 65 6c 65 63 74 69 6f 6e 20 70 72 6f 63 65 73 73 20 75 73 65 64 20 62 79 20 | route.selection.process.used.by. |
| 8bc20 | 46 52 52 27 73 20 42 47 50 20 69 6d 70 6c 65 6d 65 6e 74 61 74 69 6f 6e 20 75 73 65 73 20 74 68 | FRR's.BGP.implementation.uses.th |
| 8bc40 | 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 64 65 63 69 73 69 6f 6e 20 63 72 69 74 65 72 69 6f 6e 2c 20 | e.following.decision.criterion,. |
| 8bc60 | 73 74 61 72 74 69 6e 67 20 61 74 20 74 68 65 20 74 6f 70 20 6f 66 20 74 68 65 20 6c 69 73 74 20 | starting.at.the.top.of.the.list. |
| 8bc80 | 61 6e 64 20 67 6f 69 6e 67 20 74 6f 77 61 72 64 73 20 74 68 65 20 62 6f 74 74 6f 6d 20 75 6e 74 | and.going.towards.the.bottom.unt |
| 8bca0 | 69 6c 20 6f 6e 65 20 6f 66 20 74 68 65 20 66 61 63 74 6f 72 73 20 63 61 6e 20 62 65 20 75 73 65 | il.one.of.the.factors.can.be.use |
| 8bcc0 | 64 2e 00 54 68 65 20 72 6f 75 74 65 20 77 69 74 68 20 74 68 65 20 73 68 6f 72 74 65 73 74 20 63 | d..The.route.with.the.shortest.c |
| 8bce0 | 6c 75 73 74 65 72 2d 6c 69 73 74 20 6c 65 6e 67 74 68 20 69 73 20 75 73 65 64 2e 20 54 68 65 20 | luster-list.length.is.used..The. |
| 8bd00 | 63 6c 75 73 74 65 72 2d 6c 69 73 74 20 72 65 66 6c 65 63 74 73 20 74 68 65 20 69 42 47 50 20 72 | cluster-list.reflects.the.iBGP.r |
| 8bd20 | 65 66 6c 65 63 74 69 6f 6e 20 70 61 74 68 20 74 68 65 20 72 6f 75 74 65 20 68 61 73 20 74 61 6b | eflection.path.the.route.has.tak |
| 8bd40 | 65 6e 2e 00 54 68 65 20 72 6f 75 74 65 72 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 75 70 64 | en..The.router.automatically.upd |
| 8bd60 | 61 74 65 73 20 6c 69 6e 6b 2d 73 74 61 74 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 77 69 74 68 | ates.link-state.information.with |
| 8bd80 | 20 69 74 73 20 6e 65 69 67 68 62 6f 72 73 2e 20 4f 6e 6c 79 20 61 6e 20 6f 62 73 6f 6c 65 74 65 | .its.neighbors..Only.an.obsolete |
| 8bda0 | 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 69 73 20 75 70 64 61 74 65 64 20 77 68 69 63 68 20 61 67 | .information.is.updated.which.ag |
| 8bdc0 | 65 20 68 61 73 20 65 78 63 65 65 64 65 64 20 61 20 73 70 65 63 69 66 69 63 20 74 68 72 65 73 68 | e.has.exceeded.a.specific.thresh |
| 8bde0 | 6f 6c 64 2e 20 54 68 69 73 20 70 61 72 61 6d 65 74 65 72 20 63 68 61 6e 67 65 73 20 61 20 74 68 | old..This.parameter.changes.a.th |
| 8be00 | 72 65 73 68 6f 6c 64 20 76 61 6c 75 65 2c 20 77 68 69 63 68 20 62 79 20 64 65 66 61 75 6c 74 20 | reshold.value,.which.by.default. |
| 8be20 | 69 73 20 31 38 30 30 20 73 65 63 6f 6e 64 73 20 28 68 61 6c 66 20 61 6e 20 68 6f 75 72 29 2e 20 | is.1800.seconds.(half.an.hour).. |
| 8be40 | 54 68 65 20 76 61 6c 75 65 20 69 73 20 61 70 70 6c 69 65 64 20 74 6f 20 74 68 65 20 77 68 6f 6c | The.value.is.applied.to.the.whol |
| 8be60 | 65 20 4f 53 50 46 20 72 6f 75 74 65 72 2e 20 54 68 65 20 74 69 6d 65 72 20 72 61 6e 67 65 20 69 | e.OSPF.router..The.timer.range.i |
| 8be80 | 73 20 31 30 20 74 6f 20 31 38 30 30 2e 00 54 68 65 20 72 6f 75 74 65 72 20 73 68 6f 75 6c 64 20 | s.10.to.1800..The.router.should. |
| 8bea0 | 64 69 73 63 61 72 64 20 44 48 43 50 20 70 61 63 6b 61 67 65 73 20 61 6c 72 65 61 64 79 20 63 6f | discard.DHCP.packages.already.co |
| 8bec0 | 6e 74 61 69 6e 69 6e 67 20 72 65 6c 61 79 20 61 67 65 6e 74 20 69 6e 66 6f 72 6d 61 74 69 6f 6e | ntaining.relay.agent.information |
| 8bee0 | 20 74 6f 20 65 6e 73 75 72 65 20 74 68 61 74 20 6f 6e 6c 79 20 72 65 71 75 65 73 74 73 20 66 72 | .to.ensure.that.only.requests.fr |
| 8bf00 | 6f 6d 20 44 48 43 50 20 63 6c 69 65 6e 74 73 20 61 72 65 20 66 6f 72 77 61 72 64 65 64 2e 00 54 | om.DHCP.clients.are.forwarded..T |
| 8bf20 | 68 65 20 73 46 6c 6f 77 20 61 63 63 6f 75 6e 74 69 6e 67 20 62 61 73 65 64 20 6f 6e 20 68 73 66 | he.sFlow.accounting.based.on.hsf |
| 8bf40 | 6c 6f 77 64 20 68 74 74 70 73 3a 2f 2f 73 66 6c 6f 77 2e 6e 65 74 2f 00 54 68 65 20 73 61 6d 65 | lowd.https://sflow.net/.The.same |
| 8bf60 | 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 70 74 69 6f 6e 73 20 61 70 70 6c 79 20 77 68 65 | .configuration.options.apply.whe |
| 8bf80 | 6e 20 49 64 65 6e 74 69 74 79 20 62 61 73 65 64 20 63 6f 6e 66 69 67 20 69 73 20 63 6f 6e 66 69 | n.Identity.based.config.is.confi |
| 8bfa0 | 67 75 72 65 64 20 69 6e 20 67 72 6f 75 70 20 6d 6f 64 65 20 65 78 63 65 70 74 20 74 68 61 74 20 | gured.in.group.mode.except.that. |
| 8bfc0 | 67 72 6f 75 70 20 6d 6f 64 65 20 63 61 6e 20 6f 6e 6c 79 20 62 65 20 75 73 65 64 20 77 69 74 68 | group.mode.can.only.be.used.with |
| 8bfe0 | 20 52 41 44 49 55 53 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2e 00 54 68 65 20 73 63 68 65 | .RADIUS.authentication..The.sche |
| 8c000 | 6d 65 20 61 62 6f 76 65 20 64 6f 65 73 6e 27 74 20 77 6f 72 6b 20 77 68 65 6e 20 6f 6e 65 20 6f | me.above.doesn't.work.when.one.o |
| 8c020 | 66 20 74 68 65 20 72 6f 75 74 65 72 73 20 68 61 73 20 61 20 64 79 6e 61 6d 69 63 20 65 78 74 65 | f.the.routers.has.a.dynamic.exte |
| 8c040 | 72 6e 61 6c 20 61 64 64 72 65 73 73 20 74 68 6f 75 67 68 2e 20 54 68 65 20 63 6c 61 73 73 69 63 | rnal.address.though..The.classic |
| 8c060 | 20 77 6f 72 6b 61 72 6f 75 6e 64 20 66 6f 72 20 74 68 69 73 20 69 73 20 74 6f 20 73 65 74 75 70 | .workaround.for.this.is.to.setup |
| 8c080 | 20 61 6e 20 61 64 64 72 65 73 73 20 6f 6e 20 61 20 6c 6f 6f 70 62 61 63 6b 20 69 6e 74 65 72 66 | .an.address.on.a.loopback.interf |
| 8c0a0 | 61 63 65 20 61 6e 64 20 75 73 65 20 69 74 20 61 73 20 61 20 73 6f 75 72 63 65 20 61 64 64 72 65 | ace.and.use.it.as.a.source.addre |
| 8c0c0 | 73 73 20 66 6f 72 20 74 68 65 20 47 52 45 20 74 75 6e 6e 65 6c 2c 20 74 68 65 6e 20 73 65 74 75 | ss.for.the.GRE.tunnel,.then.setu |
| 8c0e0 | 70 20 61 6e 20 49 50 73 65 63 20 70 6f 6c 69 63 79 20 74 6f 20 6d 61 74 63 68 20 74 68 6f 73 65 | p.an.IPsec.policy.to.match.those |
| 8c100 | 20 6c 6f 6f 70 62 61 63 6b 20 61 64 64 72 65 73 73 65 73 2e 00 54 68 65 20 73 65 61 72 63 68 20 | .loopback.addresses..The.search. |
| 8c120 | 66 69 6c 74 65 72 20 63 61 6e 20 63 6f 6e 74 61 69 6e 20 75 70 20 74 6f 20 31 35 20 6f 63 63 75 | filter.can.contain.up.to.15.occu |
| 8c140 | 72 72 65 6e 63 65 73 20 6f 66 20 25 73 20 77 68 69 63 68 20 77 69 6c 6c 20 62 65 20 72 65 70 6c | rrences.of.%s.which.will.be.repl |
| 8c160 | 61 63 65 64 20 62 79 20 74 68 65 20 75 73 65 72 6e 61 6d 65 2c 20 61 73 20 69 6e 20 22 75 69 64 | aced.by.the.username,.as.in."uid |
| 8c180 | 3d 25 73 22 20 66 6f 72 20 3a 72 66 63 3a 60 32 30 33 37 60 20 64 69 72 65 63 74 6f 72 69 65 73 | =%s".for.:rfc:`2037`.directories |
| 8c1a0 | 2e 20 46 6f 72 20 61 20 64 65 74 61 69 6c 65 64 20 64 65 73 63 72 69 70 74 69 6f 6e 20 6f 66 20 | ..For.a.detailed.description.of. |
| 8c1c0 | 4c 44 41 50 20 73 65 61 72 63 68 20 66 69 6c 74 65 72 20 73 79 6e 74 61 78 20 73 65 65 20 3a 72 | LDAP.search.filter.syntax.see.:r |
| 8c1e0 | 66 63 3a 60 32 32 35 34 60 2e 00 54 68 65 20 73 65 63 6f 6e 64 61 72 79 20 44 48 43 50 20 73 65 | fc:`2254`..The.secondary.DHCP.se |
| 8c200 | 72 76 65 72 20 75 73 65 73 20 61 64 64 72 65 73 73 20 60 31 39 32 2e 31 36 38 2e 31 38 39 2e 32 | rver.uses.address.`192.168.189.2 |
| 8c220 | 35 33 60 00 54 68 65 20 73 65 63 75 72 69 74 79 20 61 70 70 72 6f 61 63 68 20 69 6e 20 53 4e 4d | 53`.The.security.approach.in.SNM |
| 8c240 | 50 76 33 20 74 61 72 67 65 74 73 3a 00 54 68 65 20 73 65 71 75 65 6e 63 65 20 60 60 5e 45 63 3f | Pv3.targets:.The.sequence.``^Ec? |
| 8c260 | 60 60 20 74 72 61 6e 73 6c 61 74 65 73 20 74 6f 3a 20 60 60 43 74 72 6c 2b 45 20 63 20 3f 60 60 | ``.translates.to:.``Ctrl+E.c.?`` |
| 8c280 | 2e 20 54 6f 20 71 75 69 74 20 74 68 65 20 73 65 73 73 69 6f 6e 20 75 73 65 3a 20 60 60 43 74 72 | ..To.quit.the.session.use:.``Ctr |
| 8c2a0 | 6c 2b 45 20 63 20 2e 60 60 00 54 68 65 20 73 65 74 75 70 20 69 73 20 74 68 69 73 3a 20 4c 65 61 | l+E.c..``.The.setup.is.this:.Lea |
| 8c2c0 | 66 32 20 2d 20 53 70 69 6e 65 31 20 2d 20 4c 65 61 66 33 00 54 68 65 20 73 69 7a 65 20 6f 66 20 | f2.-.Spine1.-.Leaf3.The.size.of. |
| 8c2e0 | 74 68 65 20 6f 6e 2d 64 69 73 6b 20 50 72 6f 78 79 20 63 61 63 68 65 20 69 73 20 75 73 65 72 20 | the.on-disk.Proxy.cache.is.user. |
| 8c300 | 63 6f 6e 66 69 67 75 72 61 62 6c 65 2e 20 54 68 65 20 50 72 6f 78 69 65 73 20 64 65 66 61 75 6c | configurable..The.Proxies.defaul |
| 8c320 | 74 20 63 61 63 68 65 2d 73 69 7a 65 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 20 74 6f 20 31 30 | t.cache-size.is.configured.to.10 |
| 8c340 | 30 20 4d 42 2e 00 54 68 65 20 73 70 65 65 64 20 28 62 61 75 64 72 61 74 65 29 20 6f 66 20 74 68 | 0.MB..The.speed.(baudrate).of.th |
| 8c360 | 65 20 63 6f 6e 73 6f 6c 65 20 64 65 76 69 63 65 2e 20 53 75 70 70 6f 72 74 65 64 20 76 61 6c 75 | e.console.device..Supported.valu |
| 8c380 | 65 73 20 61 72 65 3a 00 54 68 65 20 73 74 61 6e 64 61 72 64 20 77 61 73 20 64 65 76 65 6c 6f 70 | es.are:.The.standard.was.develop |
| 8c3a0 | 65 64 20 62 79 20 49 45 45 45 20 38 30 32 2e 31 2c 20 61 20 77 6f 72 6b 69 6e 67 20 67 72 6f 75 | ed.by.IEEE.802.1,.a.working.grou |
| 8c3c0 | 70 20 6f 66 20 74 68 65 20 49 45 45 45 20 38 30 32 20 73 74 61 6e 64 61 72 64 73 20 63 6f 6d 6d | p.of.the.IEEE.802.standards.comm |
| 8c3e0 | 69 74 74 65 65 2c 20 61 6e 64 20 63 6f 6e 74 69 6e 75 65 73 20 74 6f 20 62 65 20 61 63 74 69 76 | ittee,.and.continues.to.be.activ |
| 8c400 | 65 6c 79 20 72 65 76 69 73 65 64 2e 20 4f 6e 65 20 6f 66 20 74 68 65 20 6e 6f 74 61 62 6c 65 20 | ely.revised..One.of.the.notable. |
| 8c420 | 72 65 76 69 73 69 6f 6e 73 20 69 73 20 38 30 32 2e 31 51 2d 32 30 31 34 20 77 68 69 63 68 20 69 | revisions.is.802.1Q-2014.which.i |
| 8c440 | 6e 63 6f 72 70 6f 72 61 74 65 64 20 49 45 45 45 20 38 30 32 2e 31 61 71 20 28 53 68 6f 72 74 65 | ncorporated.IEEE.802.1aq.(Shorte |
| 8c460 | 73 74 20 50 61 74 68 20 42 72 69 64 67 69 6e 67 29 20 61 6e 64 20 6d 75 63 68 20 6f 66 20 74 68 | st.Path.Bridging).and.much.of.th |
| 8c480 | 65 20 49 45 45 45 20 38 30 32 2e 31 64 20 73 74 61 6e 64 61 72 64 2e 00 54 68 65 20 73 75 62 73 | e.IEEE.802.1d.standard..The.subs |
| 8c4a0 | 65 74 20 6f 66 20 70 6f 73 73 69 62 6c 65 20 70 61 72 61 6d 65 74 65 72 73 20 61 72 65 3a 00 54 | et.of.possible.parameters.are:.T |
| 8c4c0 | 68 65 20 73 75 70 70 6f 72 74 65 64 20 76 61 6c 75 65 73 20 66 6f 72 20 61 20 73 70 65 63 69 66 | he.supported.values.for.a.specif |
| 8c4e0 | 69 63 20 69 6e 74 65 72 66 61 63 65 20 63 61 6e 20 62 65 20 6f 62 74 61 69 6e 65 64 20 77 69 74 | ic.interface.can.be.obtained.wit |
| 8c500 | 68 3a 20 60 65 74 68 74 6f 6f 6c 20 2d 67 20 3c 69 6e 74 65 72 66 61 63 65 3e 60 00 54 68 65 20 | h:.`ethtool.-g.<interface>`.The. |
| 8c520 | 73 79 73 2d 6d 61 63 20 61 6e 64 20 6c 6f 63 61 6c 20 64 69 73 63 72 69 6d 69 6e 61 74 6f 72 20 | sys-mac.and.local.discriminator. |
| 8c540 | 61 72 65 20 75 73 65 64 20 66 6f 72 20 67 65 6e 65 72 61 74 69 6e 67 20 61 20 31 30 2d 62 79 74 | are.used.for.generating.a.10-byt |
| 8c560 | 65 2c 20 54 79 70 65 2d 33 20 45 74 68 65 72 6e 65 74 20 53 65 67 6d 65 6e 74 20 49 44 2e 20 45 | e,.Type-3.Ethernet.Segment.ID..E |
| 8c580 | 53 49 4e 41 4d 45 20 69 73 20 61 20 31 30 2d 62 79 74 65 2c 20 54 79 70 65 2d 30 20 45 74 68 65 | SINAME.is.a.10-byte,.Type-0.Ethe |
| 8c5a0 | 72 6e 65 74 20 53 65 67 6d 65 6e 74 20 49 44 20 2d 20 22 30 30 3a 41 41 3a 42 42 3a 43 43 3a 44 | rnet.Segment.ID.-."00:AA:BB:CC:D |
| 8c5c0 | 44 3a 45 45 3a 46 46 3a 47 47 3a 48 48 3a 49 49 22 2e 00 54 68 65 20 73 79 73 74 65 6d 20 4c 43 | D:EE:FF:GG:HH:II"..The.system.LC |
| 8c5e0 | 44 20 3a 61 62 62 72 3a 60 4c 43 44 20 28 4c 69 71 75 69 64 2d 63 72 79 73 74 61 6c 20 64 69 73 | D.:abbr:`LCD.(Liquid-crystal.dis |
| 8c600 | 70 6c 61 79 29 60 20 6f 70 74 69 6f 6e 20 69 73 20 66 6f 72 20 75 73 65 72 73 20 72 75 6e 6e 69 | play)`.option.is.for.users.runni |
| 8c620 | 6e 67 20 56 79 4f 53 20 6f 6e 20 68 61 72 64 77 61 72 65 20 74 68 61 74 20 66 65 61 74 75 72 65 | ng.VyOS.on.hardware.that.feature |
| 8c640 | 73 20 61 6e 20 4c 43 44 20 64 69 73 70 6c 61 79 2e 20 54 68 69 73 20 69 73 20 74 79 70 69 63 61 | s.an.LCD.display..This.is.typica |
| 8c660 | 6c 6c 79 20 61 20 73 6d 61 6c 6c 20 64 69 73 70 6c 61 79 20 62 75 69 6c 74 20 69 6e 20 61 6e 20 | lly.a.small.display.built.in.an. |
| 8c680 | 31 39 20 69 6e 63 68 20 72 61 63 6b 2d 6d 6f 75 6e 74 61 62 6c 65 20 61 70 70 6c 69 61 6e 63 65 | 19.inch.rack-mountable.appliance |
| 8c6a0 | 2e 20 54 68 6f 73 65 20 64 69 73 70 6c 61 79 73 20 61 72 65 20 75 73 65 64 20 74 6f 20 73 68 6f | ..Those.displays.are.used.to.sho |
| 8c6c0 | 77 20 72 75 6e 74 69 6d 65 20 64 61 74 61 2e 00 54 68 65 20 73 79 73 74 65 6d 20 69 73 20 63 6f | w.runtime.data..The.system.is.co |
| 8c6e0 | 6e 66 69 67 75 72 65 64 20 74 6f 20 61 74 74 65 6d 70 74 20 64 6f 6d 61 69 6e 20 63 6f 6d 70 6c | nfigured.to.attempt.domain.compl |
| 8c700 | 65 74 69 6f 6e 20 69 6e 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 6f 72 64 65 72 3a 20 76 79 | etion.in.the.following.order:.vy |
| 8c720 | 6f 73 2e 69 6f 20 28 66 69 72 73 74 29 2c 20 76 79 6f 73 2e 6e 65 74 20 28 73 65 63 6f 6e 64 29 | os.io.(first),.vyos.net.(second) |
| 8c740 | 20 61 6e 64 20 76 79 6f 73 2e 6e 65 74 77 6f 72 6b 20 28 6c 61 73 74 29 3a 00 54 68 65 20 74 61 | .and.vyos.network.(last):.The.ta |
| 8c760 | 62 6c 65 20 63 6f 6e 73 69 73 74 73 20 6f 66 20 66 6f 6c 6c 6f 77 69 6e 67 20 64 61 74 61 3a 00 | ble.consists.of.following.data:. |
| 8c780 | 54 68 65 20 74 61 73 6b 20 73 63 68 65 64 75 6c 65 72 20 61 6c 6c 6f 77 73 20 79 6f 75 20 74 6f | The.task.scheduler.allows.you.to |
| 8c7a0 | 20 65 78 65 63 75 74 65 20 74 61 73 6b 73 20 6f 6e 20 61 20 67 69 76 65 6e 20 73 63 68 65 64 75 | .execute.tasks.on.a.given.schedu |
| 8c7c0 | 6c 65 2e 20 49 74 20 6d 61 6b 65 73 20 75 73 65 20 6f 66 20 55 4e 49 58 20 63 72 6f 6e 5f 2e 00 | le..It.makes.use.of.UNIX.cron_.. |
| 8c7e0 | 54 68 65 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 6d 75 73 74 20 62 65 20 | The.translation.address.must.be. |
| 8c800 | 73 65 74 20 74 6f 20 6f 6e 65 20 6f 66 20 74 68 65 20 61 76 61 69 6c 61 62 6c 65 20 61 64 64 72 | set.to.one.of.the.available.addr |
| 8c820 | 65 73 73 65 73 20 6f 6e 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 60 6f 75 74 62 6f 75 6e | esses.on.the.configured.`outboun |
| 8c840 | 64 2d 69 6e 74 65 72 66 61 63 65 60 20 6f 72 20 69 74 20 6d 75 73 74 20 62 65 20 73 65 74 20 74 | d-interface`.or.it.must.be.set.t |
| 8c860 | 6f 20 60 6d 61 73 71 75 65 72 61 64 65 60 20 77 68 69 63 68 20 77 69 6c 6c 20 75 73 65 20 74 68 | o.`masquerade`.which.will.use.th |
| 8c880 | 65 20 70 72 69 6d 61 72 79 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 60 6f 75 74 | e.primary.IP.address.of.the.`out |
| 8c8a0 | 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 60 20 61 73 20 69 74 73 20 74 72 61 6e 73 6c 61 74 | bound-interface`.as.its.translat |
| 8c8c0 | 69 6f 6e 20 61 64 64 72 65 73 73 2e 00 54 68 65 20 74 75 6e 6e 65 6c 20 77 69 6c 6c 20 75 73 65 | ion.address..The.tunnel.will.use |
| 8c8e0 | 20 31 30 2e 32 35 35 2e 31 2e 31 20 66 6f 72 20 74 68 65 20 6c 6f 63 61 6c 20 49 50 20 61 6e 64 | .10.255.1.1.for.the.local.IP.and |
| 8c900 | 20 31 30 2e 32 35 35 2e 31 2e 32 20 66 6f 72 20 74 68 65 20 72 65 6d 6f 74 65 2e 00 54 68 65 20 | .10.255.1.2.for.the.remote..The. |
| 8c920 | 74 79 70 65 20 63 61 6e 20 62 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 3a 20 61 73 62 72 2d | type.can.be.the.following:.asbr- |
| 8c940 | 73 75 6d 6d 61 72 79 2c 20 65 78 74 65 72 6e 61 6c 2c 20 6e 65 74 77 6f 72 6b 2c 20 6e 73 73 61 | summary,.external,.network,.nssa |
| 8c960 | 2d 65 78 74 65 72 6e 61 6c 2c 20 6f 70 61 71 75 65 2d 61 72 65 61 2c 20 6f 70 61 71 75 65 2d 61 | -external,.opaque-area,.opaque-a |
| 8c980 | 73 2c 20 6f 70 61 71 75 65 2d 6c 69 6e 6b 2c 20 72 6f 75 74 65 72 2c 20 73 75 6d 6d 61 72 79 2e | s,.opaque-link,.router,.summary. |
| 8c9a0 | 00 54 68 65 20 75 6c 74 69 6d 61 74 65 20 67 6f 61 6c 20 6f 66 20 63 6c 61 73 73 69 66 79 69 6e | .The.ultimate.goal.of.classifyin |
| 8c9c0 | 67 20 74 72 61 66 66 69 63 20 69 73 20 74 6f 20 67 69 76 65 20 65 61 63 68 20 63 6c 61 73 73 20 | g.traffic.is.to.give.each.class. |
| 8c9e0 | 61 20 64 69 66 66 65 72 65 6e 74 20 74 72 65 61 74 6d 65 6e 74 2e 00 54 68 65 20 75 73 65 20 6f | a.different.treatment..The.use.o |
| 8ca00 | 66 20 49 50 6f 45 20 61 64 64 72 65 73 73 65 73 20 74 68 65 20 64 69 73 61 64 76 61 6e 74 61 67 | f.IPoE.addresses.the.disadvantag |
| 8ca20 | 65 20 74 68 61 74 20 50 50 50 20 69 73 20 75 6e 73 75 69 74 65 64 20 66 6f 72 20 6d 75 6c 74 69 | e.that.PPP.is.unsuited.for.multi |
| 8ca40 | 63 61 73 74 20 64 65 6c 69 76 65 72 79 20 74 6f 20 6d 75 6c 74 69 70 6c 65 20 75 73 65 72 73 2e | cast.delivery.to.multiple.users. |
| 8ca60 | 20 54 79 70 69 63 61 6c 6c 79 2c 20 49 50 6f 45 20 75 73 65 73 20 44 79 6e 61 6d 69 63 20 48 6f | .Typically,.IPoE.uses.Dynamic.Ho |
| 8ca80 | 73 74 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c 20 61 6e 64 20 45 78 | st.Configuration.Protocol.and.Ex |
| 8caa0 | 74 65 6e 73 69 62 6c 65 20 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c | tensible.Authentication.Protocol |
| 8cac0 | 20 74 6f 20 70 72 6f 76 69 64 65 20 74 68 65 20 73 61 6d 65 20 66 75 6e 63 74 69 6f 6e 61 6c 69 | .to.provide.the.same.functionali |
| 8cae0 | 74 79 20 61 73 20 50 50 50 6f 45 2c 20 62 75 74 20 69 6e 20 61 20 6c 65 73 73 20 72 6f 62 75 73 | ty.as.PPPoE,.but.in.a.less.robus |
| 8cb00 | 74 20 6d 61 6e 6e 65 72 2e 00 54 68 65 20 76 61 6c 75 65 20 6f 66 20 74 68 65 20 61 74 74 72 69 | t.manner..The.value.of.the.attri |
| 8cb20 | 62 75 74 65 20 60 60 4e 41 53 2d 50 6f 72 74 2d 49 64 60 60 20 6d 75 73 74 20 62 65 20 6c 65 73 | bute.``NAS-Port-Id``.must.be.les |
| 8cb40 | 73 20 74 68 61 6e 20 31 36 20 63 68 61 72 61 63 74 65 72 73 2c 20 6f 74 68 65 72 77 69 73 65 20 | s.than.16.characters,.otherwise. |
| 8cb60 | 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 77 6f 6e 27 74 20 62 65 20 72 65 6e 61 6d 65 64 2e 00 | the.interface.won't.be.renamed.. |
| 8cb80 | 54 68 65 20 76 65 6e 64 6f 72 2d 63 6c 61 73 73 2d 69 64 20 6f 70 74 69 6f 6e 20 63 61 6e 20 62 | The.vendor-class-id.option.can.b |
| 8cba0 | 65 20 75 73 65 64 20 74 6f 20 72 65 71 75 65 73 74 20 61 20 73 70 65 63 69 66 69 63 20 63 6c 61 | e.used.to.request.a.specific.cla |
| 8cbc0 | 73 73 20 6f 66 20 76 65 6e 64 6f 72 20 6f 70 74 69 6f 6e 73 20 66 72 6f 6d 20 74 68 65 20 73 65 | ss.of.vendor.options.from.the.se |
| 8cbe0 | 72 76 65 72 2e 00 54 68 65 20 76 65 74 68 20 64 65 76 69 63 65 73 20 61 72 65 20 76 69 72 74 75 | rver..The.veth.devices.are.virtu |
| 8cc00 | 61 6c 20 45 74 68 65 72 6e 65 74 20 64 65 76 69 63 65 73 2e 20 54 68 65 79 20 63 61 6e 20 61 63 | al.Ethernet.devices..They.can.ac |
| 8cc20 | 74 20 61 73 20 74 75 6e 6e 65 6c 73 20 62 65 74 77 65 65 6e 20 6e 65 74 77 6f 72 6b 20 6e 61 6d | t.as.tunnels.between.network.nam |
| 8cc40 | 65 73 70 61 63 65 73 20 74 6f 20 63 72 65 61 74 65 20 61 20 62 72 69 64 67 65 20 74 6f 20 61 20 | espaces.to.create.a.bridge.to.a. |
| 8cc60 | 70 68 79 73 69 63 61 6c 20 6e 65 74 77 6f 72 6b 20 64 65 76 69 63 65 20 69 6e 20 61 6e 6f 74 68 | physical.network.device.in.anoth |
| 8cc80 | 65 72 20 6e 61 6d 65 73 70 61 63 65 20 6f 72 20 56 52 46 2c 20 62 75 74 20 63 61 6e 20 61 6c 73 | er.namespace.or.VRF,.but.can.als |
| 8cca0 | 6f 20 62 65 20 75 73 65 64 20 61 73 20 73 74 61 6e 64 61 6c 6f 6e 65 20 6e 65 74 77 6f 72 6b 20 | o.be.used.as.standalone.network. |
| 8ccc0 | 64 65 76 69 63 65 73 2e 00 54 68 65 20 77 65 6c 6c 20 6b 6e 6f 77 6e 20 4e 41 54 36 34 20 70 72 | devices..The.well.known.NAT64.pr |
| 8cce0 | 65 66 69 78 20 69 73 20 60 60 36 34 3a 66 66 39 62 3a 3a 2f 39 36 60 60 00 54 68 65 20 77 69 6e | efix.is.``64:ff9b::/96``.The.win |
| 8cd00 | 64 6f 77 20 73 69 7a 65 20 6d 75 73 74 20 62 65 20 62 65 74 77 65 65 6e 20 31 20 61 6e 64 20 32 | dow.size.must.be.between.1.and.2 |
| 8cd20 | 31 2e 00 54 68 65 20 77 69 72 65 6c 65 73 73 20 63 6c 69 65 6e 74 20 28 73 75 70 70 6c 69 63 61 | 1..The.wireless.client.(supplica |
| 8cd40 | 6e 74 29 20 61 75 74 68 65 6e 74 69 63 61 74 65 73 20 61 67 61 69 6e 73 74 20 74 68 65 20 52 41 | nt).authenticates.against.the.RA |
| 8cd60 | 44 49 55 53 20 73 65 72 76 65 72 20 28 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 73 65 72 76 | DIUS.server.(authentication.serv |
| 8cd80 | 65 72 29 20 75 73 69 6e 67 20 61 6e 20 3a 61 62 62 72 3a 60 45 41 50 20 28 45 78 74 65 6e 73 69 | er).using.an.:abbr:`EAP.(Extensi |
| 8cda0 | 62 6c 65 20 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c 29 60 20 20 6d | ble.Authentication.Protocol)`..m |
| 8cdc0 | 65 74 68 6f 64 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 74 68 65 20 52 41 44 49 55 53 20 73 | ethod.configured.on.the.RADIUS.s |
| 8cde0 | 65 72 76 65 72 2e 20 54 68 65 20 57 41 50 20 28 61 6c 73 6f 20 72 65 66 65 72 72 65 64 20 74 6f | erver..The.WAP.(also.referred.to |
| 8ce00 | 20 61 73 20 61 75 74 68 65 6e 74 69 63 61 74 6f 72 29 20 72 6f 6c 65 20 69 73 20 74 6f 20 73 65 | .as.authenticator).role.is.to.se |
| 8ce20 | 6e 64 20 61 6c 6c 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6d 65 73 73 61 67 65 73 20 62 | nd.all.authentication.messages.b |
| 8ce40 | 65 74 77 65 65 6e 20 74 68 65 20 73 75 70 70 6c 69 63 61 6e 74 20 61 6e 64 20 74 68 65 20 63 6f | etween.the.supplicant.and.the.co |
| 8ce60 | 6e 66 69 67 75 72 65 64 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 73 65 72 76 65 72 2c 20 | nfigured.authentication.server,. |
| 8ce80 | 74 68 75 73 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 69 73 20 72 65 73 70 6f 6e | thus.the.RADIUS.server.is.respon |
| 8cea0 | 73 69 62 6c 65 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6e 67 20 74 68 65 20 75 73 65 | sible.for.authenticating.the.use |
| 8cec0 | 72 73 2e 00 54 68 65 20 77 69 72 65 6c 65 73 73 20 63 6c 69 65 6e 74 20 28 73 75 70 70 6c 69 63 | rs..The.wireless.client.(supplic |
| 8cee0 | 61 6e 74 29 20 61 75 74 68 65 6e 74 69 63 61 74 65 73 20 61 67 61 69 6e 73 74 20 74 68 65 20 52 | ant).authenticates.against.the.R |
| 8cf00 | 41 44 49 55 53 20 73 65 72 76 65 72 20 28 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 73 65 72 | ADIUS.server.(authentication.ser |
| 8cf20 | 76 65 72 29 20 75 73 69 6e 67 20 61 6e 20 3a 61 62 62 72 3a 60 45 41 50 20 28 45 78 74 65 6e 73 | ver).using.an.:abbr:`EAP.(Extens |
| 8cf40 | 69 62 6c 65 20 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c 29 60 20 6d | ible.Authentication.Protocol)`.m |
| 8cf60 | 65 74 68 6f 64 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 74 68 65 20 52 41 44 49 55 53 20 73 | ethod.configured.on.the.RADIUS.s |
| 8cf80 | 65 72 76 65 72 2e 20 54 68 65 20 57 41 50 20 28 61 6c 73 6f 20 72 65 66 65 72 72 65 64 20 74 6f | erver..The.WAP.(also.referred.to |
| 8cfa0 | 20 61 73 20 61 75 74 68 65 6e 74 69 63 61 74 6f 72 29 20 72 6f 6c 65 20 69 73 20 74 6f 20 73 65 | .as.authenticator).role.is.to.se |
| 8cfc0 | 6e 64 20 61 6c 6c 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6d 65 73 73 61 67 65 73 20 62 | nd.all.authentication.messages.b |
| 8cfe0 | 65 74 77 65 65 6e 20 74 68 65 20 73 75 70 70 6c 69 63 61 6e 74 20 61 6e 64 20 74 68 65 20 63 6f | etween.the.supplicant.and.the.co |
| 8d000 | 6e 66 69 67 75 72 65 64 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 73 65 72 76 65 72 2c 20 | nfigured.authentication.server,. |
| 8d020 | 74 68 75 73 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 69 73 20 72 65 73 70 6f 6e | thus.the.RADIUS.server.is.respon |
| 8d040 | 73 69 62 6c 65 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6e 67 20 74 68 65 20 75 73 65 | sible.for.authenticating.the.use |
| 8d060 | 72 73 2e 00 54 68 65 20 77 72 69 74 69 6e 67 20 6f 66 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 | rs..The.writing.of.the.configura |
| 8d080 | 74 69 6f 6e 20 74 6f 20 74 68 65 20 73 65 63 6f 6e 64 61 72 79 20 72 6f 75 74 65 72 20 69 73 20 | tion.to.the.secondary.router.is. |
| 8d0a0 | 70 65 72 66 6f 72 6d 65 64 20 74 68 72 6f 75 67 68 20 74 68 65 20 56 79 4f 53 20 48 54 54 50 20 | performed.through.the.VyOS.HTTP. |
| 8d0c0 | 41 50 49 2e 20 54 68 65 20 75 73 65 72 20 63 61 6e 20 73 70 65 63 69 66 79 20 77 68 69 63 68 20 | API..The.user.can.specify.which. |
| 8d0e0 | 70 6f 72 74 69 6f 6e 28 73 29 20 6f 66 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 | portion(s).of.the.configuration. |
| 8d100 | 77 69 6c 6c 20 62 65 20 73 79 6e 63 68 72 6f 6e 69 7a 65 64 20 61 6e 64 20 74 68 65 20 6d 6f 64 | will.be.synchronized.and.the.mod |
| 8d120 | 65 20 74 6f 20 75 73 65 20 2d 20 77 68 65 74 68 65 72 20 74 6f 20 72 65 70 6c 61 63 65 20 6f 72 | e.to.use.-.whether.to.replace.or |
| 8d140 | 20 61 64 64 2e 00 54 68 65 6e 20 61 20 63 6f 72 72 65 73 70 6f 6e 64 69 6e 67 20 53 4e 41 54 20 | .add..Then.a.corresponding.SNAT. |
| 8d160 | 72 75 6c 65 20 69 73 20 63 72 65 61 74 65 64 20 74 6f 20 4e 41 54 20 6f 75 74 67 6f 69 6e 67 20 | rule.is.created.to.NAT.outgoing. |
| 8d180 | 74 72 61 66 66 69 63 20 66 6f 72 20 74 68 65 20 69 6e 74 65 72 6e 61 6c 20 49 50 20 74 6f 20 61 | traffic.for.the.internal.IP.to.a |
| 8d1a0 | 20 72 65 73 65 72 76 65 64 20 65 78 74 65 72 6e 61 6c 20 49 50 2e 20 54 68 69 73 20 64 65 64 69 | .reserved.external.IP..This.dedi |
| 8d1c0 | 63 61 74 65 73 20 61 6e 20 65 78 74 65 72 6e 61 6c 20 49 50 20 61 64 64 72 65 73 73 20 74 6f 20 | cates.an.external.IP.address.to. |
| 8d1e0 | 61 6e 20 69 6e 74 65 72 6e 61 6c 20 49 50 20 61 64 64 72 65 73 73 20 61 6e 64 20 69 73 20 75 73 | an.internal.IP.address.and.is.us |
| 8d200 | 65 66 75 6c 20 66 6f 72 20 70 72 6f 74 6f 63 6f 6c 73 20 77 68 69 63 68 20 64 6f 6e 27 74 20 68 | eful.for.protocols.which.don't.h |
| 8d220 | 61 76 65 20 74 68 65 20 6e 6f 74 69 6f 6e 20 6f 66 20 70 6f 72 74 73 2c 20 73 75 63 68 20 61 73 | ave.the.notion.of.ports,.such.as |
| 8d240 | 20 47 52 45 2e 00 54 68 65 6e 20 77 65 20 6e 65 65 64 20 74 6f 20 67 65 6e 65 72 61 74 65 2c 20 | .GRE..Then.we.need.to.generate,. |
| 8d260 | 61 64 64 20 61 6e 64 20 73 70 65 63 69 66 79 20 74 68 65 20 6e 61 6d 65 73 20 6f 66 20 74 68 65 | add.and.specify.the.names.of.the |
| 8d280 | 20 63 72 79 70 74 6f 67 72 61 70 68 69 63 20 6d 61 74 65 72 69 61 6c 73 2e 20 45 61 63 68 20 6f | .cryptographic.materials..Each.o |
| 8d2a0 | 66 20 74 68 65 20 69 6e 73 74 61 6c 6c 20 63 6f 6d 6d 61 6e 64 20 73 68 6f 75 6c 64 20 62 65 20 | f.the.install.command.should.be. |
| 8d2c0 | 61 70 70 6c 69 65 64 20 74 6f 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 61 6e 64 | applied.to.the.configuration.and |
| 8d2e0 | 20 63 6f 6d 6d 69 74 65 64 20 62 65 66 6f 72 65 20 75 73 69 6e 67 20 75 6e 64 65 72 20 74 68 65 | .commited.before.using.under.the |
| 8d300 | 20 6f 70 65 6e 76 70 6e 20 69 6e 74 65 72 66 61 63 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e | .openvpn.interface.configuration |
| 8d320 | 2e 00 54 68 65 6e 20 77 65 20 6e 65 65 64 20 74 6f 20 67 65 6e 65 72 61 74 65 2c 20 61 64 64 20 | ..Then.we.need.to.generate,.add. |
| 8d340 | 61 6e 64 20 73 70 65 63 69 66 79 20 74 68 65 20 6e 61 6d 65 73 20 6f 66 20 74 68 65 20 63 72 79 | and.specify.the.names.of.the.cry |
| 8d360 | 70 74 6f 67 72 61 70 68 69 63 20 6d 61 74 65 72 69 61 6c 73 2e 20 45 61 63 68 20 6f 66 20 74 68 | ptographic.materials..Each.of.th |
| 8d380 | 65 20 69 6e 73 74 61 6c 6c 20 63 6f 6d 6d 61 6e 64 73 20 73 68 6f 75 6c 64 20 62 65 20 61 70 70 | e.install.commands.should.be.app |
| 8d3a0 | 6c 69 65 64 20 74 6f 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 61 6e 64 20 63 6f | lied.to.the.configuration.and.co |
| 8d3c0 | 6d 6d 69 74 65 64 20 62 65 66 6f 72 65 20 75 73 69 6e 67 20 75 6e 64 65 72 20 74 68 65 20 6f 70 | mmited.before.using.under.the.op |
| 8d3e0 | 65 6e 76 70 6e 20 69 6e 74 65 72 66 61 63 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 54 | envpn.interface.configuration..T |
| 8d400 | 68 65 6e 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 69 6e 73 74 61 6c 6c 20 74 68 65 20 6b 65 79 20 | hen.you.need.to.install.the.key. |
| 8d420 | 6f 6e 20 74 68 65 20 72 65 6d 6f 74 65 20 72 6f 75 74 65 72 3a 00 54 68 65 6e 20 79 6f 75 20 6e | on.the.remote.router:.Then.you.n |
| 8d440 | 65 65 64 20 74 6f 20 73 65 74 20 74 68 65 20 6b 65 79 20 69 6e 20 79 6f 75 72 20 4f 70 65 6e 56 | eed.to.set.the.key.in.your.OpenV |
| 8d460 | 50 4e 20 69 6e 74 65 72 66 61 63 65 20 73 65 74 74 69 6e 67 73 3a 00 54 68 65 6e 2c 20 46 61 73 | PN.interface.settings:.Then,.Fas |
| 8d480 | 74 4e 65 74 4d 6f 6e 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 00 54 68 65 72 65 20 61 72 65 | tNetMon.configuration:.There.are |
| 8d4a0 | 20 33 20 64 65 66 61 75 6c 74 20 4e 54 50 20 73 65 72 76 65 72 20 73 65 74 2e 20 59 6f 75 20 61 | .3.default.NTP.server.set..You.a |
| 8d4c0 | 72 65 20 61 62 6c 65 20 74 6f 20 63 68 61 6e 67 65 20 74 68 65 6d 2e 00 54 68 65 72 65 20 61 72 | re.able.to.change.them..There.ar |
| 8d4e0 | 65 20 61 20 6c 6f 74 20 6f 66 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 20 61 67 61 | e.a.lot.of.matching.criteria.aga |
| 8d500 | 69 6e 73 74 20 77 68 69 63 68 20 74 68 65 20 70 61 63 6b 61 67 65 20 63 61 6e 20 62 65 20 74 65 | inst.which.the.package.can.be.te |
| 8d520 | 73 74 65 64 2e 00 54 68 65 72 65 20 61 72 65 20 61 20 6c 6f 74 20 6f 66 20 6d 61 74 63 68 69 6e | sted..There.are.a.lot.of.matchin |
| 8d540 | 67 20 63 72 69 74 65 72 69 61 20 61 67 61 69 6e 73 74 20 77 68 69 63 68 20 74 68 65 20 70 61 63 | g.criteria.against.which.the.pac |
| 8d560 | 6b 65 74 20 63 61 6e 20 62 65 20 74 65 73 74 65 64 2e 00 54 68 65 72 65 20 61 72 65 20 61 20 6c | ket.can.be.tested..There.are.a.l |
| 8d580 | 6f 74 20 6f 66 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 20 61 67 61 69 6e 73 74 20 | ot.of.matching.criteria.against. |
| 8d5a0 | 77 68 69 63 68 20 74 68 65 20 70 61 63 6b 65 74 20 63 61 6e 20 62 65 20 74 65 73 74 65 64 2e 20 | which.the.packet.can.be.tested.. |
| 8d5c0 | 50 6c 65 61 73 65 20 72 65 66 65 72 20 74 6f 20 3a 64 6f 63 3a 60 49 50 76 34 3c 2f 63 6f 6e 66 | Please.refer.to.:doc:`IPv4</conf |
| 8d5e0 | 69 67 75 72 61 74 69 6f 6e 2f 66 69 72 65 77 61 6c 6c 2f 69 70 76 34 3e 60 20 61 6e 64 20 3a 64 | iguration/firewall/ipv4>`.and.:d |
| 8d600 | 6f 63 3a 60 49 50 76 36 3c 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 66 69 72 65 77 61 6c 6c | oc:`IPv6</configuration/firewall |
| 8d620 | 2f 69 70 76 36 3e 60 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 20 66 6f 72 20 6d 6f | /ipv6>`.matching.criteria.for.mo |
| 8d640 | 72 65 20 64 65 74 61 69 6c 73 2e 00 54 68 65 72 65 20 61 72 65 20 61 20 6c 6f 74 20 6f 66 20 6d | re.details..There.are.a.lot.of.m |
| 8d660 | 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 20 6f 70 74 69 6f 6e 73 20 61 76 61 69 6c 61 62 | atching.criteria.options.availab |
| 8d680 | 6c 65 2c 20 62 6f 74 68 20 66 6f 72 20 60 60 70 6f 6c 69 63 79 20 72 6f 75 74 65 60 60 20 61 6e | le,.both.for.``policy.route``.an |
| 8d6a0 | 64 20 60 60 70 6f 6c 69 63 79 20 72 6f 75 74 65 36 60 60 2e 20 54 68 65 73 65 20 6f 70 74 69 6f | d.``policy.route6``..These.optio |
| 8d6c0 | 6e 73 20 61 72 65 20 6c 69 73 74 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 2e 00 54 | ns.are.listed.in.this.section..T |
| 8d6e0 | 68 65 72 65 20 61 72 65 20 64 69 66 66 65 72 65 6e 74 20 70 61 72 61 6d 65 74 65 72 73 20 66 6f | here.are.different.parameters.fo |
| 8d700 | 72 20 67 65 74 74 69 6e 67 20 70 72 65 66 69 78 2d 6c 69 73 74 20 69 6e 66 6f 72 6d 61 74 69 6f | r.getting.prefix-list.informatio |
| 8d720 | 6e 3a 00 54 68 65 72 65 20 61 72 65 20 6c 69 6d 69 74 73 20 6f 6e 20 77 68 69 63 68 20 63 68 61 | n:.There.are.limits.on.which.cha |
| 8d740 | 6e 6e 65 6c 73 20 63 61 6e 20 62 65 20 75 73 65 64 20 77 69 74 68 20 48 54 34 30 2d 20 61 6e 64 | nnels.can.be.used.with.HT40-.and |
| 8d760 | 20 48 54 34 30 2b 2e 20 46 6f 6c 6c 6f 77 69 6e 67 20 74 61 62 6c 65 20 73 68 6f 77 73 20 74 68 | .HT40+..Following.table.shows.th |
| 8d780 | 65 20 63 68 61 6e 6e 65 6c 73 20 74 68 61 74 20 6d 61 79 20 62 65 20 61 76 61 69 6c 61 62 6c 65 | e.channels.that.may.be.available |
| 8d7a0 | 20 66 6f 72 20 48 54 34 30 2d 20 61 6e 64 20 48 54 34 30 2b 20 75 73 65 20 70 65 72 20 49 45 45 | .for.HT40-.and.HT40+.use.per.IEE |
| 8d7c0 | 45 20 38 30 32 2e 31 31 6e 20 41 6e 6e 65 78 20 4a 3a 00 54 68 65 72 65 20 61 72 65 20 6d 61 6e | E.802.11n.Annex.J:.There.are.man |
| 8d7e0 | 79 20 70 61 72 61 6d 65 74 65 72 73 20 79 6f 75 20 77 69 6c 6c 20 62 65 20 61 62 6c 65 20 74 6f | y.parameters.you.will.be.able.to |
| 8d800 | 20 75 73 65 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 6d 61 74 63 68 20 74 68 65 20 74 72 61 66 66 | .use.in.order.to.match.the.traff |
| 8d820 | 69 63 20 79 6f 75 20 77 61 6e 74 20 66 6f 72 20 61 20 63 6c 61 73 73 3a 00 54 68 65 72 65 20 61 | ic.you.want.for.a.class:.There.a |
| 8d840 | 72 65 20 6d 75 6c 74 69 70 6c 65 20 76 65 72 73 69 6f 6e 73 20 61 76 61 69 6c 61 62 6c 65 20 66 | re.multiple.versions.available.f |
| 8d860 | 6f 72 20 74 68 65 20 4e 65 74 46 6c 6f 77 20 64 61 74 61 2e 20 54 68 65 20 60 3c 76 65 72 73 69 | or.the.NetFlow.data..The.`<versi |
| 8d880 | 6f 6e 3e 60 20 75 73 65 64 20 69 6e 20 74 68 65 20 65 78 70 6f 72 74 65 64 20 66 6c 6f 77 20 64 | on>`.used.in.the.exported.flow.d |
| 8d8a0 | 61 74 61 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 68 65 72 65 2e 20 54 68 65 20 | ata.can.be.configured.here..The. |
| 8d8c0 | 66 6f 6c 6c 6f 77 69 6e 67 20 76 65 72 73 69 6f 6e 73 20 61 72 65 20 73 75 70 70 6f 72 74 65 64 | following.versions.are.supported |
| 8d8e0 | 3a 00 54 68 65 72 65 20 61 72 65 20 72 61 74 65 2d 6c 69 6d 69 74 65 64 20 61 6e 64 20 6e 6f 6e | :.There.are.rate-limited.and.non |
| 8d900 | 20 72 61 74 65 2d 6c 69 6d 69 74 65 64 20 75 73 65 72 73 20 28 4d 41 43 73 29 00 54 68 65 72 65 | .rate-limited.users.(MACs).There |
| 8d920 | 20 61 72 65 20 73 6f 6d 65 20 73 63 65 6e 61 72 69 6f 73 20 77 68 65 72 65 20 73 65 72 69 61 6c | .are.some.scenarios.where.serial |
| 8d940 | 20 63 6f 6e 73 6f 6c 65 73 20 61 72 65 20 75 73 65 66 75 6c 2e 20 53 79 73 74 65 6d 20 61 64 6d | .consoles.are.useful..System.adm |
| 8d960 | 69 6e 69 73 74 72 61 74 69 6f 6e 20 6f 66 20 72 65 6d 6f 74 65 20 63 6f 6d 70 75 74 65 72 73 20 | inistration.of.remote.computers. |
| 8d980 | 69 73 20 75 73 75 61 6c 6c 79 20 64 6f 6e 65 20 75 73 69 6e 67 20 3a 72 65 66 3a 60 73 73 68 60 | is.usually.done.using.:ref:`ssh` |
| 8d9a0 | 2c 20 62 75 74 20 74 68 65 72 65 20 61 72 65 20 74 69 6d 65 73 20 77 68 65 6e 20 61 63 63 65 73 | ,.but.there.are.times.when.acces |
| 8d9c0 | 73 20 74 6f 20 74 68 65 20 63 6f 6e 73 6f 6c 65 20 69 73 20 74 68 65 20 6f 6e 6c 79 20 77 61 79 | s.to.the.console.is.the.only.way |
| 8d9e0 | 20 74 6f 20 64 69 61 67 6e 6f 73 65 20 61 6e 64 20 63 6f 72 72 65 63 74 20 73 6f 66 74 77 61 72 | .to.diagnose.and.correct.softwar |
| 8da00 | 65 20 66 61 69 6c 75 72 65 73 2e 20 4d 61 6a 6f 72 20 75 70 67 72 61 64 65 73 20 74 6f 20 74 68 | e.failures..Major.upgrades.to.th |
| 8da20 | 65 20 69 6e 73 74 61 6c 6c 65 64 20 64 69 73 74 72 69 62 75 74 69 6f 6e 20 6d 61 79 20 61 6c 73 | e.installed.distribution.may.als |
| 8da40 | 6f 20 72 65 71 75 69 72 65 20 63 6f 6e 73 6f 6c 65 20 61 63 63 65 73 73 2e 00 54 68 65 72 65 20 | o.require.console.access..There. |
| 8da60 | 61 72 65 20 74 68 72 65 65 20 6d 6f 64 65 73 20 6f 66 20 6f 70 65 72 61 74 69 6f 6e 20 66 6f 72 | are.three.modes.of.operation.for |
| 8da80 | 20 61 20 77 69 72 65 6c 65 73 73 20 69 6e 74 65 72 66 61 63 65 3a 00 54 68 65 72 65 20 61 72 65 | .a.wireless.interface:.There.are |
| 8daa0 | 20 74 77 6f 20 74 79 70 65 73 20 6f 66 20 4e 65 74 77 6f 72 6b 20 41 64 6d 69 6e 73 20 77 68 6f | .two.types.of.Network.Admins.who |
| 8dac0 | 20 64 65 61 6c 20 77 69 74 68 20 42 47 50 2c 20 74 68 6f 73 65 20 77 68 6f 20 68 61 76 65 20 63 | .deal.with.BGP,.those.who.have.c |
| 8dae0 | 72 65 61 74 65 64 20 61 6e 20 69 6e 74 65 72 6e 61 74 69 6f 6e 61 6c 20 69 6e 63 69 64 65 6e 74 | reated.an.international.incident |
| 8db00 | 20 61 6e 64 2f 6f 72 20 6f 75 74 61 67 65 2c 20 61 6e 64 20 74 68 6f 73 65 20 77 68 6f 20 61 72 | .and/or.outage,.and.those.who.ar |
| 8db20 | 65 20 6c 79 69 6e 67 00 54 68 65 72 65 20 61 72 65 20 74 77 6f 20 77 61 79 73 20 74 68 61 74 20 | e.lying.There.are.two.ways.that. |
| 8db40 | 68 65 6c 70 20 75 73 20 74 6f 20 6d 69 74 69 67 61 74 65 20 74 68 65 20 42 47 50 73 20 66 75 6c | help.us.to.mitigate.the.BGPs.ful |
| 8db60 | 6c 2d 6d 65 73 68 20 72 65 71 75 69 72 65 6d 65 6e 74 20 69 6e 20 61 20 6e 65 74 77 6f 72 6b 3a | l-mesh.requirement.in.a.network: |
| 8db80 | 00 54 68 65 72 65 20 63 61 6e 20 6f 6e 6c 79 20 62 65 20 6f 6e 65 20 6c 6f 6f 70 62 61 63 6b 20 | .There.can.only.be.one.loopback. |
| 8dba0 | 60 60 6c 6f 60 60 20 69 6e 74 65 72 66 61 63 65 20 6f 6e 20 74 68 65 20 73 79 73 74 65 6d 2e 20 | ``lo``.interface.on.the.system.. |
| 8dbc0 | 49 66 20 79 6f 75 20 6e 65 65 64 20 6d 75 6c 74 69 70 6c 65 20 69 6e 74 65 72 66 61 63 65 73 2c | If.you.need.multiple.interfaces, |
| 8dbe0 | 20 70 6c 65 61 73 65 20 75 73 65 20 74 68 65 20 3a 72 65 66 3a 60 64 75 6d 6d 79 2d 69 6e 74 65 | .please.use.the.:ref:`dummy-inte |
| 8dc00 | 72 66 61 63 65 60 20 69 6e 74 65 72 66 61 63 65 20 74 79 70 65 2e 00 54 68 65 72 65 20 63 6f 75 | rface`.interface.type..There.cou |
| 8dc20 | 6c 64 20 62 65 20 61 20 77 69 64 65 20 72 61 6e 67 65 20 6f 66 20 72 6f 75 74 69 6e 67 20 70 6f | ld.be.a.wide.range.of.routing.po |
| 8dc40 | 6c 69 63 69 65 73 2e 20 53 6f 6d 65 20 65 78 61 6d 70 6c 65 73 20 61 72 65 20 6c 69 73 74 65 64 | licies..Some.examples.are.listed |
| 8dc60 | 20 62 65 6c 6f 77 3a 00 54 68 65 72 65 20 69 73 20 61 20 76 65 72 79 20 6e 69 63 65 20 70 69 63 | .below:.There.is.a.very.nice.pic |
| 8dc80 | 74 75 72 65 2f 65 78 70 6c 61 6e 61 74 69 6f 6e 20 69 6e 20 74 68 65 20 56 79 61 74 74 61 20 64 | ture/explanation.in.the.Vyatta.d |
| 8dca0 | 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 77 68 69 63 68 20 73 68 6f 75 6c 64 20 62 65 20 72 65 77 | ocumentation.which.should.be.rew |
| 8dcc0 | 72 69 74 74 65 6e 20 68 65 72 65 2e 00 54 68 65 72 65 20 69 73 20 61 6c 73 6f 20 61 20 47 52 45 | ritten.here..There.is.also.a.GRE |
| 8dce0 | 20 6f 76 65 72 20 49 50 76 36 20 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e 20 61 76 61 69 6c 61 62 | .over.IPv6.encapsulation.availab |
| 8dd00 | 6c 65 2c 20 69 74 20 69 73 20 63 61 6c 6c 65 64 3a 20 60 60 69 70 36 67 72 65 60 60 2e 00 54 68 | le,.it.is.called:.``ip6gre``..Th |
| 8dd20 | 65 72 65 20 69 73 20 61 6e 20 65 6e 74 69 72 65 20 63 68 61 70 74 65 72 20 61 62 6f 75 74 20 68 | ere.is.an.entire.chapter.about.h |
| 8dd40 | 6f 77 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 3a 72 65 66 3a 60 76 72 66 60 2c 20 70 6c | ow.to.configure.a.:ref:`vrf`,.pl |
| 8dd60 | 65 61 73 65 20 63 68 65 63 6b 20 74 68 69 73 20 66 6f 72 20 61 64 64 69 74 69 6f 6e 61 6c 20 69 | ease.check.this.for.additional.i |
| 8dd80 | 6e 66 6f 72 6d 61 74 69 6f 6e 2e 00 54 68 65 72 65 27 73 20 61 20 76 61 72 69 65 74 79 20 6f 66 | nformation..There's.a.variety.of |
| 8dda0 | 20 63 6c 69 65 6e 74 20 47 55 49 20 66 72 6f 6e 74 65 6e 64 73 20 66 6f 72 20 61 6e 79 20 70 6c | .client.GUI.frontends.for.any.pl |
| 8ddc0 | 61 74 66 6f 72 6d 00 54 68 65 73 65 20 61 72 65 20 74 68 65 20 63 6f 6d 6d 61 6e 64 73 20 66 6f | atform.These.are.the.commands.fo |
| 8dde0 | 72 20 61 20 62 61 73 69 63 20 73 65 74 75 70 2e 00 54 68 65 73 65 20 63 6f 6d 6d 61 6e 64 73 20 | r.a.basic.setup..These.commands. |
| 8de00 | 61 6c 6c 6f 77 20 74 68 65 20 56 4c 41 4e 31 30 20 61 6e 64 20 56 4c 41 4e 31 31 20 68 6f 73 74 | allow.the.VLAN10.and.VLAN11.host |
| 8de20 | 73 20 74 6f 20 63 6f 6d 6d 75 6e 69 63 61 74 65 20 77 69 74 68 20 65 61 63 68 20 6f 74 68 65 72 | s.to.communicate.with.each.other |
| 8de40 | 20 75 73 69 6e 67 20 74 68 65 20 6d 61 69 6e 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 2e 00 54 | .using.the.main.routing.table..T |
| 8de60 | 68 65 73 65 20 63 6f 6d 6d 61 6e 64 73 20 63 72 65 61 74 65 20 61 20 66 6c 65 78 69 62 6c 65 20 | hese.commands.create.a.flexible. |
| 8de80 | 69 6e 74 65 72 66 61 63 65 20 66 6f 72 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 74 68 65 20 53 75 | interface.for.configuring.the.Su |
| 8dea0 | 72 69 63 61 74 61 20 73 65 72 76 69 63 65 2c 20 61 6c 6c 6f 77 69 6e 67 20 75 73 65 72 73 20 74 | ricata.service,.allowing.users.t |
| 8dec0 | 6f 20 73 70 65 63 69 66 79 20 61 64 64 72 65 73 73 65 73 2c 20 70 6f 72 74 73 2c 20 61 6e 64 20 | o.specify.addresses,.ports,.and. |
| 8dee0 | 6c 6f 67 67 69 6e 67 20 70 61 72 61 6d 65 74 65 72 73 2e 00 54 68 65 73 65 20 63 6f 6e 66 69 67 | logging.parameters..These.config |
| 8df00 | 75 72 61 74 69 6f 6e 20 69 73 20 6e 6f 74 20 6d 61 6e 64 61 74 6f 72 79 20 61 6e 64 20 69 6e 20 | uration.is.not.mandatory.and.in. |
| 8df20 | 6d 6f 73 74 20 63 61 73 65 73 20 74 68 65 72 65 27 73 20 6e 6f 20 6e 65 65 64 20 74 6f 20 63 6f | most.cases.there's.no.need.to.co |
| 8df40 | 6e 66 69 67 75 72 65 20 69 74 2e 20 42 75 74 20 69 66 20 6e 65 63 65 73 73 61 72 79 2c 20 47 72 | nfigure.it..But.if.necessary,.Gr |
| 8df60 | 61 74 75 69 74 6f 75 73 20 41 52 50 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 69 | atuitous.ARP.can.be.configured.i |
| 8df80 | 6e 20 60 60 67 6c 6f 62 61 6c 2d 70 61 72 61 6d 65 74 65 72 73 60 60 20 61 6e 64 2f 6f 72 20 69 | n.``global-parameters``.and/or.i |
| 8dfa0 | 6e 20 60 60 67 72 6f 75 70 60 60 20 73 65 63 74 69 6f 6e 2e 00 54 68 65 73 65 20 70 61 72 61 6d | n.``group``.section..These.param |
| 8dfc0 | 65 74 65 72 73 20 61 72 65 20 70 61 73 73 65 64 20 61 73 2d 69 73 20 74 6f 20 69 73 63 2d 64 68 | eters.are.passed.as-is.to.isc-dh |
| 8dfe0 | 63 70 27 73 20 64 68 63 70 64 2e 63 6f 6e 66 20 75 6e 64 65 72 20 74 68 65 20 63 6f 6e 66 69 67 | cp's.dhcpd.conf.under.the.config |
| 8e000 | 75 72 61 74 69 6f 6e 20 6e 6f 64 65 20 74 68 65 79 20 61 72 65 20 64 65 66 69 6e 65 64 20 69 6e | uration.node.they.are.defined.in |
| 8e020 | 2e 20 54 68 65 79 20 61 72 65 20 6e 6f 74 20 76 61 6c 69 64 61 74 65 64 20 73 6f 20 61 6e 20 65 | ..They.are.not.validated.so.an.e |
| 8e040 | 72 72 6f 72 20 69 6e 20 74 68 65 20 72 61 77 20 70 61 72 61 6d 65 74 65 72 73 20 77 6f 6e 27 74 | rror.in.the.raw.parameters.won't |
| 8e060 | 20 62 65 20 63 61 75 67 68 74 20 62 79 20 76 79 6f 73 27 73 20 73 63 72 69 70 74 73 20 61 6e 64 | .be.caught.by.vyos's.scripts.and |
| 8e080 | 20 77 69 6c 6c 20 63 61 75 73 65 20 64 68 63 70 64 20 74 6f 20 66 61 69 6c 20 74 6f 20 73 74 61 | .will.cause.dhcpd.to.fail.to.sta |
| 8e0a0 | 72 74 2e 20 41 6c 77 61 79 73 20 76 65 72 69 66 79 20 74 68 61 74 20 74 68 65 20 70 61 72 61 6d | rt..Always.verify.that.the.param |
| 8e0c0 | 65 74 65 72 73 20 61 72 65 20 63 6f 72 72 65 63 74 20 62 65 66 6f 72 65 20 63 6f 6d 6d 69 74 74 | eters.are.correct.before.committ |
| 8e0e0 | 69 6e 67 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 20 52 65 66 65 72 20 74 6f 20 | ing.the.configuration..Refer.to. |
| 8e100 | 69 73 63 2d 64 68 63 70 27 73 20 64 68 63 70 64 2e 63 6f 6e 66 20 6d 61 6e 75 61 6c 20 66 6f 72 | isc-dhcp's.dhcpd.conf.manual.for |
| 8e120 | 20 6d 6f 72 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 6b 62 2e 69 73 | .more.information:.https://kb.is |
| 8e140 | 63 2e 6f 72 67 2f 64 6f 63 73 2f 69 73 63 2d 64 68 63 70 2d 34 34 2d 6d 61 6e 75 61 6c 2d 70 61 | c.org/docs/isc-dhcp-44-manual-pa |
| 8e160 | 67 65 73 2d 64 68 63 70 64 63 6f 6e 66 00 54 68 65 73 65 20 70 61 72 61 6d 65 74 65 72 73 20 6e | ges-dhcpdconf.These.parameters.n |
| 8e180 | 65 65 64 20 74 6f 20 62 65 20 70 61 72 74 20 6f 66 20 74 68 65 20 44 48 43 50 20 67 6c 6f 62 61 | eed.to.be.part.of.the.DHCP.globa |
| 8e1a0 | 6c 20 6f 70 74 69 6f 6e 73 2e 20 54 68 65 79 20 73 74 61 79 20 75 6e 63 68 61 6e 67 65 64 2e 00 | l.options..They.stay.unchanged.. |
| 8e1c0 | 54 68 65 79 20 63 61 6e 20 62 65 20 2a 2a 64 65 63 69 6d 61 6c 2a 2a 20 70 72 65 66 69 78 65 73 | They.can.be.**decimal**.prefixes |
| 8e1e0 | 2e 00 54 68 69 6e 67 73 20 74 6f 20 62 65 20 63 6f 6e 73 69 64 65 72 65 64 20 69 6e 20 74 68 69 | ..Things.to.be.considered.in.thi |
| 8e200 | 73 20 73 65 74 75 70 3a 00 54 68 69 6e 67 73 20 74 6f 20 62 65 20 63 6f 6e 73 69 64 72 65 64 20 | s.setup:.Things.to.be.considred. |
| 8e220 | 69 6e 20 74 68 69 73 20 73 65 74 75 70 3a 00 54 68 69 73 20 61 64 64 72 65 73 73 20 6d 75 73 74 | in.this.setup:.This.address.must |
| 8e240 | 20 62 65 20 74 68 65 20 61 64 64 72 65 73 73 20 6f 66 20 61 20 6c 6f 63 61 6c 20 69 6e 74 65 72 | .be.the.address.of.a.local.inter |
| 8e260 | 66 61 63 65 2e 20 49 74 20 6d 61 79 20 62 65 20 73 70 65 63 69 66 69 65 64 20 61 73 20 61 6e 20 | face..It.may.be.specified.as.an. |
| 8e280 | 49 50 76 34 20 61 64 64 72 65 73 73 20 6f 72 20 61 6e 20 49 50 76 36 20 61 64 64 72 65 73 73 2e | IPv4.address.or.an.IPv6.address. |
| 8e2a0 | 00 54 68 69 73 20 61 6c 67 6f 72 69 74 68 6d 20 69 73 20 38 30 32 2e 33 61 64 20 63 6f 6d 70 6c | .This.algorithm.is.802.3ad.compl |
| 8e2c0 | 69 61 6e 74 2e 00 54 68 69 73 20 61 6c 67 6f 72 69 74 68 6d 20 69 73 20 6e 6f 74 20 66 75 6c 6c | iant..This.algorithm.is.not.full |
| 8e2e0 | 79 20 38 30 32 2e 33 61 64 20 63 6f 6d 70 6c 69 61 6e 74 2e 20 41 20 73 69 6e 67 6c 65 20 54 43 | y.802.3ad.compliant..A.single.TC |
| 8e300 | 50 20 6f 72 20 55 44 50 20 63 6f 6e 76 65 72 73 61 74 69 6f 6e 20 63 6f 6e 74 61 69 6e 69 6e 67 | P.or.UDP.conversation.containing |
| 8e320 | 20 62 6f 74 68 20 66 72 61 67 6d 65 6e 74 65 64 20 61 6e 64 20 75 6e 66 72 61 67 6d 65 6e 74 65 | .both.fragmented.and.unfragmente |
| 8e340 | 64 20 70 61 63 6b 65 74 73 20 77 69 6c 6c 20 73 65 65 20 70 61 63 6b 65 74 73 20 73 74 72 69 70 | d.packets.will.see.packets.strip |
| 8e360 | 65 64 20 61 63 72 6f 73 73 20 74 77 6f 20 69 6e 74 65 72 66 61 63 65 73 2e 20 54 68 69 73 20 6d | ed.across.two.interfaces..This.m |
| 8e380 | 61 79 20 72 65 73 75 6c 74 20 69 6e 20 6f 75 74 20 6f 66 20 6f 72 64 65 72 20 64 65 6c 69 76 65 | ay.result.in.out.of.order.delive |
| 8e3a0 | 72 79 2e 20 4d 6f 73 74 20 74 72 61 66 66 69 63 20 74 79 70 65 73 20 77 69 6c 6c 20 6e 6f 74 20 | ry..Most.traffic.types.will.not. |
| 8e3c0 | 6d 65 65 74 20 74 68 65 73 65 20 63 72 69 74 65 72 69 61 2c 20 61 73 20 54 43 50 20 72 61 72 65 | meet.these.criteria,.as.TCP.rare |
| 8e3e0 | 6c 79 20 66 72 61 67 6d 65 6e 74 73 20 74 72 61 66 66 69 63 2c 20 61 6e 64 20 6d 6f 73 74 20 55 | ly.fragments.traffic,.and.most.U |
| 8e400 | 44 50 20 74 72 61 66 66 69 63 20 69 73 20 6e 6f 74 20 69 6e 76 6f 6c 76 65 64 20 69 6e 20 65 78 | DP.traffic.is.not.involved.in.ex |
| 8e420 | 74 65 6e 64 65 64 20 63 6f 6e 76 65 72 73 61 74 69 6f 6e 73 2e 20 4f 74 68 65 72 20 69 6d 70 6c | tended.conversations..Other.impl |
| 8e440 | 65 6d 65 6e 74 61 74 69 6f 6e 73 20 6f 66 20 38 30 32 2e 33 61 64 20 6d 61 79 20 6f 72 20 6d 61 | ementations.of.802.3ad.may.or.ma |
| 8e460 | 79 20 6e 6f 74 20 74 6f 6c 65 72 61 74 65 20 74 68 69 73 20 6e 6f 6e 63 6f 6d 70 6c 69 61 6e 63 | y.not.tolerate.this.noncomplianc |
| 8e480 | 65 2e 00 54 68 69 73 20 61 6c 67 6f 72 69 74 68 6d 20 77 69 6c 6c 20 70 6c 61 63 65 20 61 6c 6c | e..This.algorithm.will.place.all |
| 8e4a0 | 20 74 72 61 66 66 69 63 20 74 6f 20 61 20 70 61 72 74 69 63 75 6c 61 72 20 6e 65 74 77 6f 72 6b | .traffic.to.a.particular.network |
| 8e4c0 | 20 70 65 65 72 20 6f 6e 20 74 68 65 20 73 61 6d 65 20 73 6c 61 76 65 2e 00 54 68 69 73 20 61 6c | .peer.on.the.same.slave..This.al |
| 8e4e0 | 67 6f 72 69 74 68 6d 20 77 69 6c 6c 20 70 6c 61 63 65 20 61 6c 6c 20 74 72 61 66 66 69 63 20 74 | gorithm.will.place.all.traffic.t |
| 8e500 | 6f 20 61 20 70 61 72 74 69 63 75 6c 61 72 20 6e 65 74 77 6f 72 6b 20 70 65 65 72 20 6f 6e 20 74 | o.a.particular.network.peer.on.t |
| 8e520 | 68 65 20 73 61 6d 65 20 73 6c 61 76 65 2e 20 46 6f 72 20 6e 6f 6e 2d 49 50 20 74 72 61 66 66 69 | he.same.slave..For.non-IP.traffi |
| 8e540 | 63 2c 20 74 68 65 20 66 6f 72 6d 75 6c 61 20 69 73 20 74 68 65 20 73 61 6d 65 20 61 73 20 66 6f | c,.the.formula.is.the.same.as.fo |
| 8e560 | 72 20 74 68 65 20 6c 61 79 65 72 32 20 74 72 61 6e 73 6d 69 74 20 68 61 73 68 20 70 6f 6c 69 63 | r.the.layer2.transmit.hash.polic |
| 8e580 | 79 2e 00 54 68 69 73 20 61 6c 6c 6f 77 73 20 61 76 6f 69 64 69 6e 67 20 74 68 65 20 74 69 6d 65 | y..This.allows.avoiding.the.time |
| 8e5a0 | 72 73 20 64 65 66 69 6e 65 64 20 69 6e 20 42 47 50 20 61 6e 64 20 4f 53 50 46 20 70 72 6f 74 6f | rs.defined.in.BGP.and.OSPF.proto |
| 8e5c0 | 63 6f 6c 20 74 6f 20 65 78 70 69 72 65 73 2e 00 54 68 69 73 20 61 6c 6c 6f 77 73 20 74 68 65 20 | col.to.expires..This.allows.the. |
| 8e5e0 | 6f 70 65 72 61 74 6f 72 20 74 6f 20 63 6f 6e 74 72 6f 6c 20 74 68 65 20 6e 75 6d 62 65 72 20 6f | operator.to.control.the.number.o |
| 8e600 | 66 20 6f 70 65 6e 20 66 69 6c 65 20 64 65 73 63 72 69 70 74 6f 72 73 20 65 61 63 68 20 64 61 65 | f.open.file.descriptors.each.dae |
| 8e620 | 6d 6f 6e 20 69 73 20 61 6c 6c 6f 77 65 64 20 74 6f 20 73 74 61 72 74 20 77 69 74 68 2e 20 49 66 | mon.is.allowed.to.start.with..If |
| 8e640 | 20 74 68 65 20 6f 70 65 72 61 74 6f 72 20 70 6c 61 6e 73 20 74 6f 20 72 75 6e 20 62 67 70 20 77 | .the.operator.plans.to.run.bgp.w |
| 8e660 | 69 74 68 20 73 65 76 65 72 61 6c 20 74 68 6f 75 73 61 6e 64 73 20 6f 66 20 70 65 65 72 73 20 74 | ith.several.thousands.of.peers.t |
| 8e680 | 68 65 6e 20 74 68 69 73 20 69 73 20 77 68 65 72 65 20 77 65 20 77 6f 75 6c 64 20 6d 6f 64 69 66 | hen.this.is.where.we.would.modif |
| 8e6a0 | 79 20 46 52 52 20 74 6f 20 61 6c 6c 6f 77 20 74 68 69 73 20 74 6f 20 68 61 70 70 65 6e 2e 00 54 | y.FRR.to.allow.this.to.happen..T |
| 8e6c0 | 68 69 73 20 61 6c 73 6f 20 77 6f 72 6b 73 20 66 6f 72 20 72 65 76 65 72 73 65 2d 6c 6f 6f 6b 75 | his.also.works.for.reverse-looku |
| 8e6e0 | 70 20 7a 6f 6e 65 73 20 28 60 60 31 38 2e 31 37 32 2e 69 6e 2d 61 64 64 72 2e 61 72 70 61 60 60 | p.zones.(``18.172.in-addr.arpa`` |
| 8e700 | 29 2e 00 54 68 69 73 20 61 72 74 69 63 6c 65 20 74 6f 75 63 68 65 73 20 6f 6e 20 27 63 6c 61 73 | )..This.article.touches.on.'clas |
| 8e720 | 73 69 63 27 20 49 50 20 74 75 6e 6e 65 6c 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 73 2e 00 54 68 69 | sic'.IP.tunneling.protocols..Thi |
| 8e740 | 73 20 62 6c 75 65 70 72 69 6e 74 20 75 73 65 73 20 56 79 4f 53 20 61 73 20 74 68 65 20 44 4d 56 | s.blueprint.uses.VyOS.as.the.DMV |
| 8e760 | 50 4e 20 48 75 62 20 61 6e 64 20 43 69 73 63 6f 20 28 37 32 30 36 56 58 52 29 20 61 6e 64 20 56 | PN.Hub.and.Cisco.(7206VXR).and.V |
| 8e780 | 79 4f 53 20 61 73 20 6d 75 6c 74 69 70 6c 65 20 73 70 6f 6b 65 20 73 69 74 65 73 2e 20 54 68 65 | yOS.as.multiple.spoke.sites..The |
| 8e7a0 | 20 6c 61 62 20 77 61 73 20 62 75 69 6c 64 20 75 73 69 6e 67 20 3a 61 62 62 72 3a 60 45 56 45 2d | .lab.was.build.using.:abbr:`EVE- |
| 8e7c0 | 4e 47 20 28 45 6d 75 6c 61 74 65 64 20 56 69 72 74 75 61 6c 20 45 6e 76 69 72 6f 6e 6d 65 6e 74 | NG.(Emulated.Virtual.Environment |
| 8e7e0 | 20 4e 47 29 60 2e 00 54 68 69 73 20 62 6c 75 65 70 72 69 6e 74 20 75 73 65 73 20 56 79 4f 53 20 | .NG)`..This.blueprint.uses.VyOS. |
| 8e800 | 61 73 20 74 68 65 20 44 4d 56 50 4e 20 48 75 62 20 61 6e 64 20 43 69 73 63 6f 20 28 37 32 30 36 | as.the.DMVPN.Hub.and.Cisco.(7206 |
| 8e820 | 56 58 52 29 20 61 6e 64 20 56 79 4f 53 20 61 73 20 6d 75 6c 74 69 70 6c 65 20 73 70 6f 6b 65 20 | VXR).and.VyOS.as.multiple.spoke. |
| 8e840 | 73 69 74 65 73 2e 20 54 68 65 20 6c 61 62 20 77 61 73 20 62 75 69 6c 74 20 75 73 69 6e 67 20 3a | sites..The.lab.was.built.using.: |
| 8e860 | 61 62 62 72 3a 60 45 56 45 2d 4e 47 20 28 45 6d 75 6c 61 74 65 64 20 56 69 72 74 75 61 6c 20 45 | abbr:`EVE-NG.(Emulated.Virtual.E |
| 8e880 | 6e 76 69 72 6f 6e 6d 65 6e 74 20 4e 47 29 60 2e 00 54 68 69 73 20 63 61 6e 20 62 65 20 63 6f 6e | nvironment.NG)`..This.can.be.con |
| 8e8a0 | 66 69 72 6d 65 64 20 75 73 69 6e 67 20 74 68 65 20 60 60 73 68 6f 77 20 69 70 20 72 6f 75 74 65 | firmed.using.the.``show.ip.route |
| 8e8c0 | 20 74 61 62 6c 65 20 31 30 30 60 60 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 63 6f 6d 6d 61 6e 64 | .table.100``.operational.command |
| 8e8e0 | 2e 00 54 68 69 73 20 63 61 6e 20 6f 6e 6c 79 20 62 65 20 64 6f 6e 65 20 69 66 20 61 6c 6c 20 79 | ..This.can.only.be.done.if.all.y |
| 8e900 | 6f 75 72 20 75 73 65 72 73 20 61 72 65 20 6c 6f 63 61 74 65 64 20 64 69 72 65 63 74 6c 79 20 75 | our.users.are.located.directly.u |
| 8e920 | 6e 64 65 72 20 74 68 65 20 73 61 6d 65 20 70 6f 73 69 74 69 6f 6e 20 69 6e 20 74 68 65 20 4c 44 | nder.the.same.position.in.the.LD |
| 8e940 | 41 50 20 74 72 65 65 20 61 6e 64 20 74 68 65 20 6c 6f 67 69 6e 20 6e 61 6d 65 20 69 73 20 75 73 | AP.tree.and.the.login.name.is.us |
| 8e960 | 65 64 20 66 6f 72 20 6e 61 6d 69 6e 67 20 65 61 63 68 20 75 73 65 72 20 6f 62 6a 65 63 74 2e 20 | ed.for.naming.each.user.object.. |
| 8e980 | 49 66 20 79 6f 75 72 20 4c 44 41 50 20 74 72 65 65 20 64 6f 65 73 20 6e 6f 74 20 6d 61 74 63 68 | If.your.LDAP.tree.does.not.match |
| 8e9a0 | 20 74 68 65 73 65 20 63 72 69 74 65 72 69 61 73 20 6f 72 20 69 66 20 79 6f 75 20 77 61 6e 74 20 | .these.criterias.or.if.you.want. |
| 8e9c0 | 74 6f 20 66 69 6c 74 65 72 20 77 68 6f 20 61 72 65 20 76 61 6c 69 64 20 75 73 65 72 73 20 74 68 | to.filter.who.are.valid.users.th |
| 8e9e0 | 65 6e 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 75 73 65 20 61 20 73 65 61 72 63 68 20 66 69 6c 74 | en.you.need.to.use.a.search.filt |
| 8ea00 | 65 72 20 74 6f 20 73 65 61 72 63 68 20 66 6f 72 20 79 6f 75 72 20 75 73 65 72 73 20 44 4e 20 28 | er.to.search.for.your.users.DN.( |
| 8ea20 | 60 66 69 6c 74 65 72 2d 65 78 70 72 65 73 73 69 6f 6e 60 29 2e 00 54 68 69 73 20 63 68 61 70 65 | `filter-expression`)..This.chape |
| 8ea40 | 74 65 72 20 64 65 73 63 72 69 62 65 73 20 68 6f 77 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 6b | ter.describes.how.to.configure.k |
| 8ea60 | 65 72 6e 65 6c 20 70 61 72 61 6d 65 74 65 72 73 20 61 74 20 72 75 6e 74 69 6d 65 2e 00 54 68 69 | ernel.parameters.at.runtime..Thi |
| 8ea80 | 73 20 63 68 61 70 74 65 72 20 64 65 73 63 72 69 62 65 20 74 68 65 20 70 6f 73 73 69 62 69 6c 69 | s.chapter.describe.the.possibili |
| 8eaa0 | 74 69 65 73 20 6f 66 20 61 64 76 61 6e 63 65 64 20 73 79 73 74 65 6d 20 62 65 68 61 76 69 6f 72 | ties.of.advanced.system.behavior |
| 8eac0 | 2e 00 54 68 69 73 20 63 6f 6d 6d 61 64 20 73 65 74 73 20 6e 65 74 77 6f 72 6b 20 65 6e 74 69 74 | ..This.commad.sets.network.entit |
| 8eae0 | 79 20 74 69 74 6c 65 20 28 4e 45 54 29 20 70 72 6f 76 69 64 65 64 20 69 6e 20 49 53 4f 20 66 6f | y.title.(NET).provided.in.ISO.fo |
| 8eb00 | 72 6d 61 74 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 63 63 65 70 74 20 69 6e 63 6f 6d 69 | rmat..This.command.accept.incomi |
| 8eb20 | 6e 67 20 72 6f 75 74 65 73 20 77 69 74 68 20 41 53 20 70 61 74 68 20 63 6f 6e 74 61 69 6e 69 6e | ng.routes.with.AS.path.containin |
| 8eb40 | 67 20 41 53 20 6e 75 6d 62 65 72 20 77 69 74 68 20 74 68 65 20 73 61 6d 65 20 76 61 6c 75 65 20 | g.AS.number.with.the.same.value. |
| 8eb60 | 61 73 20 74 68 65 20 63 75 72 72 65 6e 74 20 73 79 73 74 65 6d 20 41 53 2e 20 54 68 69 73 20 69 | as.the.current.system.AS..This.i |
| 8eb80 | 73 20 75 73 65 64 20 77 68 65 6e 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 75 73 65 20 74 68 65 20 | s.used.when.you.want.to.use.the. |
| 8eba0 | 73 61 6d 65 20 41 53 20 6e 75 6d 62 65 72 20 69 6e 20 79 6f 75 72 20 73 69 74 65 73 2c 20 62 75 | same.AS.number.in.your.sites,.bu |
| 8ebc0 | 74 20 79 6f 75 20 63 61 6e e2 80 99 74 20 63 6f 6e 6e 65 63 74 20 74 68 65 6d 20 64 69 72 65 63 | t.you.can...t.connect.them.direc |
| 8ebe0 | 74 6c 79 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 6c 6c 6f 77 20 6f 76 65 72 72 69 64 65 | tly..This.command.allow.override |
| 8ec00 | 20 74 68 65 20 72 65 73 75 6c 74 20 6f 66 20 43 61 70 61 62 69 6c 69 74 79 20 4e 65 67 6f 74 69 | .the.result.of.Capability.Negoti |
| 8ec20 | 61 74 69 6f 6e 20 77 69 74 68 20 6c 6f 63 61 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 20 | ation.with.local.configuration.. |
| 8ec40 | 49 67 6e 6f 72 65 20 72 65 6d 6f 74 65 20 70 65 65 72 e2 80 99 73 20 63 61 70 61 62 69 6c 69 74 | Ignore.remote.peer...s.capabilit |
| 8ec60 | 79 20 76 61 6c 75 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 6c 6c 6f 77 73 20 70 65 65 | y.value..This.command.allows.pee |
| 8ec80 | 72 69 6e 67 73 20 62 65 74 77 65 65 6e 20 64 69 72 65 63 74 6c 79 20 63 6f 6e 6e 65 63 74 65 64 | rings.between.directly.connected |
| 8eca0 | 20 65 42 47 50 20 70 65 65 72 73 20 75 73 69 6e 67 20 6c 6f 6f 70 62 61 63 6b 20 61 64 64 72 65 | .eBGP.peers.using.loopback.addre |
| 8ecc0 | 73 73 65 73 20 77 69 74 68 6f 75 74 20 61 64 6a 75 73 74 69 6e 67 20 74 68 65 20 64 65 66 61 75 | sses.without.adjusting.the.defau |
| 8ece0 | 6c 74 20 54 54 4c 20 6f 66 20 31 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 6c 6c 6f 77 73 | lt.TTL.of.1..This.command.allows |
| 8ed00 | 20 73 65 73 73 69 6f 6e 73 20 74 6f 20 62 65 20 65 73 74 61 62 6c 69 73 68 65 64 20 77 69 74 68 | .sessions.to.be.established.with |
| 8ed20 | 20 65 42 47 50 20 6e 65 69 67 68 62 6f 72 73 20 77 68 65 6e 20 74 68 65 79 20 61 72 65 20 6d 75 | .eBGP.neighbors.when.they.are.mu |
| 8ed40 | 6c 74 69 70 6c 65 20 68 6f 70 73 20 61 77 61 79 2e 20 57 68 65 6e 20 74 68 65 20 6e 65 69 67 68 | ltiple.hops.away..When.the.neigh |
| 8ed60 | 62 6f 72 20 69 73 20 6e 6f 74 20 64 69 72 65 63 74 6c 79 20 63 6f 6e 6e 65 63 74 65 64 20 61 6e | bor.is.not.directly.connected.an |
| 8ed80 | 64 20 74 68 69 73 20 6b 6e 6f 62 20 69 73 20 6e 6f 74 20 65 6e 61 62 6c 65 64 2c 20 74 68 65 20 | d.this.knob.is.not.enabled,.the. |
| 8eda0 | 73 65 73 73 69 6f 6e 20 77 69 6c 6c 20 6e 6f 74 20 65 73 74 61 62 6c 69 73 68 2e 20 54 68 65 20 | session.will.not.establish..The. |
| 8edc0 | 6e 75 6d 62 65 72 20 6f 66 20 68 6f 70 73 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 32 35 35 | number.of.hops.range.is.1.to.255 |
| 8ede0 | 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 6d 75 74 75 61 6c 6c 79 20 65 78 63 6c 75 | ..This.command.is.mutually.exclu |
| 8ee00 | 73 69 76 65 20 77 69 74 68 20 3a 63 66 67 63 6d 64 3a 60 74 74 6c 2d 73 65 63 75 72 69 74 79 20 | sive.with.:cfgcmd:`ttl-security. |
| 8ee20 | 68 6f 70 73 60 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 6c 6c 6f 77 73 20 74 68 65 20 72 | hops`..This.command.allows.the.r |
| 8ee40 | 6f 75 74 65 72 20 74 6f 20 70 72 65 66 65 72 20 72 6f 75 74 65 20 74 6f 20 73 70 65 63 69 66 69 | outer.to.prefer.route.to.specifi |
| 8ee60 | 65 64 20 70 72 65 66 69 78 20 6c 65 61 72 6e 65 64 20 76 69 61 20 49 47 50 20 74 68 72 6f 75 67 | ed.prefix.learned.via.IGP.throug |
| 8ee80 | 68 20 62 61 63 6b 64 6f 6f 72 20 6c 69 6e 6b 20 69 6e 73 74 65 61 64 20 6f 66 20 61 20 72 6f 75 | h.backdoor.link.instead.of.a.rou |
| 8eea0 | 74 65 20 74 6f 20 74 68 65 20 73 61 6d 65 20 70 72 65 66 69 78 20 6c 65 61 72 6e 65 64 20 76 69 | te.to.the.same.prefix.learned.vi |
| 8eec0 | 61 20 45 42 47 50 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 6c 6c 6f 77 73 20 74 6f 20 6c | a.EBGP..This.command.allows.to.l |
| 8eee0 | 6f 67 20 63 68 61 6e 67 65 73 20 69 6e 20 61 64 6a 61 63 65 6e 63 79 2e 20 57 69 74 68 20 74 68 | og.changes.in.adjacency..With.th |
| 8ef00 | 65 20 6f 70 74 69 6f 6e 61 6c 20 3a 63 66 67 63 6d 64 3a 60 64 65 74 61 69 6c 60 20 61 72 67 75 | e.optional.:cfgcmd:`detail`.argu |
| 8ef20 | 6d 65 6e 74 2c 20 61 6c 6c 20 63 68 61 6e 67 65 73 20 69 6e 20 61 64 6a 61 63 65 6e 63 79 20 73 | ment,.all.changes.in.adjacency.s |
| 8ef40 | 74 61 74 75 73 20 61 72 65 20 73 68 6f 77 6e 2e 20 57 69 74 68 6f 75 74 20 3a 63 66 67 63 6d 64 | tatus.are.shown..Without.:cfgcmd |
| 8ef60 | 3a 60 64 65 74 61 69 6c 60 2c 20 6f 6e 6c 79 20 63 68 61 6e 67 65 73 20 74 6f 20 66 75 6c 6c 20 | :`detail`,.only.changes.to.full. |
| 8ef80 | 6f 72 20 72 65 67 72 65 73 73 69 6f 6e 73 20 61 72 65 20 73 68 6f 77 6e 2e 00 54 68 69 73 20 63 | or.regressions.are.shown..This.c |
| 8efa0 | 6f 6d 6d 61 6e 64 20 61 6c 6c 6f 77 73 20 74 6f 20 73 70 65 63 69 66 79 20 74 68 65 20 64 69 73 | ommand.allows.to.specify.the.dis |
| 8efc0 | 74 72 69 62 75 74 69 6f 6e 20 74 79 70 65 20 66 6f 72 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 63 | tribution.type.for.the.network.c |
| 8efe0 | 6f 6e 6e 65 63 74 65 64 20 74 6f 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 3a 00 54 68 69 73 | onnected.to.this.interface:.This |
| 8f000 | 20 63 6f 6d 6d 61 6e 64 20 61 6c 6c 6f 77 73 20 74 6f 20 75 73 65 20 72 6f 75 74 65 20 6d 61 70 | .command.allows.to.use.route.map |
| 8f020 | 20 74 6f 20 66 69 6c 74 65 72 20 72 65 64 69 73 74 72 69 62 75 74 65 64 20 72 6f 75 74 65 73 20 | .to.filter.redistributed.routes. |
| 8f040 | 66 72 6f 6d 20 67 69 76 65 6e 20 72 6f 75 74 65 20 73 6f 75 72 63 65 2e 20 54 68 65 72 65 20 61 | from.given.route.source..There.a |
| 8f060 | 72 65 20 66 69 76 65 20 6d 6f 64 65 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 72 6f 75 74 | re.five.modes.available.for.rout |
| 8f080 | 65 20 73 6f 75 72 63 65 3a 20 62 67 70 2c 20 63 6f 6e 6e 65 63 74 65 64 2c 20 6b 65 72 6e 65 6c | e.source:.bgp,.connected,.kernel |
| 8f0a0 | 2c 20 72 69 70 6e 67 2c 20 73 74 61 74 69 63 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 6c | ,.ripng,.static..This.command.al |
| 8f0c0 | 6c 6f 77 73 20 74 6f 20 75 73 65 20 72 6f 75 74 65 20 6d 61 70 20 74 6f 20 66 69 6c 74 65 72 20 | lows.to.use.route.map.to.filter. |
| 8f0e0 | 72 65 64 69 73 74 72 69 62 75 74 65 64 20 72 6f 75 74 65 73 20 66 72 6f 6d 20 74 68 65 20 67 69 | redistributed.routes.from.the.gi |
| 8f100 | 76 65 6e 20 72 6f 75 74 65 20 73 6f 75 72 63 65 2e 20 54 68 65 72 65 20 61 72 65 20 66 69 76 65 | ven.route.source..There.are.five |
| 8f120 | 20 6d 6f 64 65 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 72 6f 75 74 65 20 73 6f 75 72 63 | .modes.available.for.route.sourc |
| 8f140 | 65 3a 20 62 67 70 2c 20 63 6f 6e 6e 65 63 74 65 64 2c 20 6b 65 72 6e 65 6c 2c 20 6f 73 70 66 2c | e:.bgp,.connected,.kernel,.ospf, |
| 8f160 | 20 73 74 61 74 69 63 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 6c 6c 6f 77 73 20 74 6f 20 | .static..This.command.allows.to. |
| 8f180 | 75 73 65 20 72 6f 75 74 65 20 6d 61 70 20 74 6f 20 66 69 6c 74 65 72 20 72 65 64 69 73 74 72 69 | use.route.map.to.filter.redistri |
| 8f1a0 | 62 75 74 65 64 20 72 6f 75 74 65 73 20 66 72 6f 6d 20 74 68 65 20 67 69 76 65 6e 20 72 6f 75 74 | buted.routes.from.the.given.rout |
| 8f1c0 | 65 20 73 6f 75 72 63 65 2e 20 54 68 65 72 65 20 61 72 65 20 66 69 76 65 20 6d 6f 64 65 73 20 61 | e.source..There.are.five.modes.a |
| 8f1e0 | 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 72 6f 75 74 65 20 73 6f 75 72 63 65 3a 20 62 67 70 2c 20 | vailable.for.route.source:.bgp,. |
| 8f200 | 63 6f 6e 6e 65 63 74 65 64 2c 20 6b 65 72 6e 65 6c 2c 20 72 69 70 2c 20 73 74 61 74 69 63 2e 00 | connected,.kernel,.rip,.static.. |
| 8f220 | 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 6c 6c 6f 77 73 20 74 6f 20 75 73 65 20 72 6f 75 74 65 | This.command.allows.to.use.route |
| 8f240 | 20 6d 61 70 20 74 6f 20 66 69 6c 74 65 72 20 72 65 64 69 73 74 72 69 62 75 74 65 64 20 72 6f 75 | .map.to.filter.redistributed.rou |
| 8f260 | 74 65 73 20 66 72 6f 6d 20 74 68 65 20 67 69 76 65 6e 20 72 6f 75 74 65 20 73 6f 75 72 63 65 2e | tes.from.the.given.route.source. |
| 8f280 | 20 54 68 65 72 65 20 61 72 65 20 73 69 78 20 6d 6f 64 65 73 20 61 76 61 69 6c 61 62 6c 65 20 66 | .There.are.six.modes.available.f |
| 8f2a0 | 6f 72 20 72 6f 75 74 65 20 73 6f 75 72 63 65 3a 20 62 67 70 2c 20 63 6f 6e 6e 65 63 74 65 64 2c | or.route.source:.bgp,.connected, |
| 8f2c0 | 20 6b 65 72 6e 65 6c 2c 20 6f 73 70 66 2c 20 72 69 70 2c 20 73 74 61 74 69 63 2e 00 54 68 69 73 | .kernel,.ospf,.rip,.static..This |
| 8f2e0 | 20 63 6f 6d 6d 61 6e 64 20 61 6c 6c 6f 77 73 20 74 6f 20 75 73 65 20 72 6f 75 74 65 20 6d 61 70 | .command.allows.to.use.route.map |
| 8f300 | 20 74 6f 20 66 69 6c 74 65 72 20 72 65 64 69 73 74 72 69 62 75 74 65 64 20 72 6f 75 74 65 73 2e | .to.filter.redistributed.routes. |
| 8f320 | 20 54 68 65 72 65 20 61 72 65 20 73 69 78 20 6d 6f 64 65 73 20 61 76 61 69 6c 61 62 6c 65 20 66 | .There.are.six.modes.available.f |
| 8f340 | 6f 72 20 72 6f 75 74 65 20 73 6f 75 72 63 65 3a 20 63 6f 6e 6e 65 63 74 65 64 2c 20 6b 65 72 6e | or.route.source:.connected,.kern |
| 8f360 | 65 6c 2c 20 6f 73 70 66 2c 20 72 69 70 2c 20 73 74 61 74 69 63 2c 20 74 61 62 6c 65 2e 00 54 68 | el,.ospf,.rip,.static,.table..Th |
| 8f380 | 69 73 20 63 6f 6d 6d 61 6e 64 20 61 6c 6c 6f 77 73 20 79 6f 75 20 61 70 70 6c 79 20 61 63 63 65 | is.command.allows.you.apply.acce |
| 8f3a0 | 73 73 20 6c 69 73 74 73 20 74 6f 20 61 20 63 68 6f 73 65 6e 20 69 6e 74 65 72 66 61 63 65 20 74 | ss.lists.to.a.chosen.interface.t |
| 8f3c0 | 6f 20 66 69 6c 74 65 72 20 74 68 65 20 42 61 62 65 6c 20 72 6f 75 74 65 73 2e 00 54 68 69 73 20 | o.filter.the.Babel.routes..This. |
| 8f3e0 | 63 6f 6d 6d 61 6e 64 20 61 6c 6c 6f 77 73 20 79 6f 75 20 61 70 70 6c 79 20 61 63 63 65 73 73 20 | command.allows.you.apply.access. |
| 8f400 | 6c 69 73 74 73 20 74 6f 20 61 20 63 68 6f 73 65 6e 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 66 | lists.to.a.chosen.interface.to.f |
| 8f420 | 69 6c 74 65 72 20 74 68 65 20 52 49 50 20 70 61 74 68 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 | ilter.the.RIP.path..This.command |
| 8f440 | 20 61 6c 6c 6f 77 73 20 79 6f 75 20 61 70 70 6c 79 20 70 72 65 66 69 78 20 6c 69 73 74 73 20 74 | .allows.you.apply.prefix.lists.t |
| 8f460 | 6f 20 61 20 63 68 6f 73 65 6e 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 66 69 6c 74 65 72 20 74 | o.a.chosen.interface.to.filter.t |
| 8f480 | 68 65 20 42 61 62 65 6c 20 72 6f 75 74 65 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 6c | he.Babel.routes..This.command.al |
| 8f4a0 | 6c 6f 77 73 20 79 6f 75 20 61 70 70 6c 79 20 70 72 65 66 69 78 20 6c 69 73 74 73 20 74 6f 20 61 | lows.you.apply.prefix.lists.to.a |
| 8f4c0 | 20 63 68 6f 73 65 6e 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 66 69 6c 74 65 72 20 74 68 65 20 | .chosen.interface.to.filter.the. |
| 8f4e0 | 52 49 50 20 70 61 74 68 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 6c 6c 6f 77 73 20 79 6f | RIP.path..This.command.allows.yo |
| 8f500 | 75 20 74 6f 20 73 65 6c 65 63 74 20 61 20 73 70 65 63 69 66 69 63 20 61 63 63 65 73 73 20 63 6f | u.to.select.a.specific.access.co |
| 8f520 | 6e 63 65 6e 74 72 61 74 6f 72 20 77 68 65 6e 20 79 6f 75 20 6b 6e 6f 77 20 74 68 65 20 61 63 63 | ncentrator.when.you.know.the.acc |
| 8f540 | 65 73 73 20 63 6f 6e 63 65 6e 74 72 61 74 6f 72 73 20 60 3c 6e 61 6d 65 3e 60 2e 00 54 68 69 73 | ess.concentrators.`<name>`..This |
| 8f560 | 20 63 6f 6d 6d 61 6e 64 20 61 70 70 6c 69 65 73 20 72 6f 75 74 65 2d 6d 61 70 20 74 6f 20 73 65 | .command.applies.route-map.to.se |
| 8f580 | 6c 65 63 74 69 76 65 6c 79 20 75 6e 73 75 70 70 72 65 73 73 20 70 72 65 66 69 78 65 73 20 73 75 | lectively.unsuppress.prefixes.su |
| 8f5a0 | 70 70 72 65 73 73 65 64 20 62 79 20 73 75 6d 6d 61 72 69 73 61 74 69 6f 6e 2e 00 54 68 69 73 20 | ppressed.by.summarisation..This. |
| 8f5c0 | 63 6f 6d 6d 61 6e 64 20 61 70 70 6c 69 65 73 20 74 68 65 20 41 53 20 70 61 74 68 20 61 63 63 65 | command.applies.the.AS.path.acce |
| 8f5e0 | 73 73 20 6c 69 73 74 20 66 69 6c 74 65 72 73 20 6e 61 6d 65 64 20 69 6e 20 3c 6e 61 6d 65 3e 20 | ss.list.filters.named.in.<name>. |
| 8f600 | 74 6f 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 42 47 50 20 6e 65 69 67 68 62 6f 72 20 74 6f | to.the.specified.BGP.neighbor.to |
| 8f620 | 20 72 65 73 74 72 69 63 74 20 74 68 65 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f | .restrict.the.routing.informatio |
| 8f640 | 6e 20 74 68 61 74 20 42 47 50 20 6c 65 61 72 6e 73 20 61 6e 64 2f 6f 72 20 61 64 76 65 72 74 69 | n.that.BGP.learns.and/or.adverti |
| 8f660 | 73 65 73 2e 20 54 68 65 20 61 72 67 75 6d 65 6e 74 73 20 3a 63 66 67 63 6d 64 3a 60 65 78 70 6f | ses..The.arguments.:cfgcmd:`expo |
| 8f680 | 72 74 60 20 61 6e 64 20 3a 63 66 67 63 6d 64 3a 60 69 6d 70 6f 72 74 60 20 73 70 65 63 69 66 79 | rt`.and.:cfgcmd:`import`.specify |
| 8f6a0 | 20 74 68 65 20 64 69 72 65 63 74 69 6f 6e 20 69 6e 20 77 68 69 63 68 20 74 68 65 20 41 53 20 70 | .the.direction.in.which.the.AS.p |
| 8f6c0 | 61 74 68 20 61 63 63 65 73 73 20 6c 69 73 74 20 61 72 65 20 61 70 70 6c 69 65 64 2e 00 54 68 69 | ath.access.list.are.applied..Thi |
| 8f6e0 | 73 20 63 6f 6d 6d 61 6e 64 20 61 70 70 6c 69 65 73 20 74 68 65 20 61 63 63 65 73 73 20 6c 69 73 | s.command.applies.the.access.lis |
| 8f700 | 74 20 66 69 6c 74 65 72 73 20 6e 61 6d 65 64 20 69 6e 20 3c 6e 75 6d 62 65 72 3e 20 74 6f 20 74 | t.filters.named.in.<number>.to.t |
| 8f720 | 68 65 20 73 70 65 63 69 66 69 65 64 20 42 47 50 20 6e 65 69 67 68 62 6f 72 20 74 6f 20 72 65 73 | he.specified.BGP.neighbor.to.res |
| 8f740 | 74 72 69 63 74 20 74 68 65 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 68 | trict.the.routing.information.th |
| 8f760 | 61 74 20 42 47 50 20 6c 65 61 72 6e 73 20 61 6e 64 2f 6f 72 20 61 64 76 65 72 74 69 73 65 73 2e | at.BGP.learns.and/or.advertises. |
| 8f780 | 20 54 68 65 20 61 72 67 75 6d 65 6e 74 73 20 3a 63 66 67 63 6d 64 3a 60 65 78 70 6f 72 74 60 20 | .The.arguments.:cfgcmd:`export`. |
| 8f7a0 | 61 6e 64 20 3a 63 66 67 63 6d 64 3a 60 69 6d 70 6f 72 74 60 20 73 70 65 63 69 66 79 20 74 68 65 | and.:cfgcmd:`import`.specify.the |
| 8f7c0 | 20 64 69 72 65 63 74 69 6f 6e 20 69 6e 20 77 68 69 63 68 20 74 68 65 20 61 63 63 65 73 73 20 6c | .direction.in.which.the.access.l |
| 8f7e0 | 69 73 74 20 61 72 65 20 61 70 70 6c 69 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 70 | ist.are.applied..This.command.ap |
| 8f800 | 70 6c 69 65 73 20 74 68 65 20 70 72 66 65 66 69 78 20 6c 69 73 74 20 66 69 6c 74 65 72 73 20 6e | plies.the.prfefix.list.filters.n |
| 8f820 | 61 6d 65 64 20 69 6e 20 3c 6e 61 6d 65 3e 20 74 6f 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 | amed.in.<name>.to.the.specified. |
| 8f840 | 42 47 50 20 6e 65 69 67 68 62 6f 72 20 74 6f 20 72 65 73 74 72 69 63 74 20 74 68 65 20 72 6f 75 | BGP.neighbor.to.restrict.the.rou |
| 8f860 | 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 68 61 74 20 42 47 50 20 6c 65 61 72 6e 73 | ting.information.that.BGP.learns |
| 8f880 | 20 61 6e 64 2f 6f 72 20 61 64 76 65 72 74 69 73 65 73 2e 20 54 68 65 20 61 72 67 75 6d 65 6e 74 | .and/or.advertises..The.argument |
| 8f8a0 | 73 20 3a 63 66 67 63 6d 64 3a 60 65 78 70 6f 72 74 60 20 61 6e 64 20 3a 63 66 67 63 6d 64 3a 60 | s.:cfgcmd:`export`.and.:cfgcmd:` |
| 8f8c0 | 69 6d 70 6f 72 74 60 20 73 70 65 63 69 66 79 20 74 68 65 20 64 69 72 65 63 74 69 6f 6e 20 69 6e | import`.specify.the.direction.in |
| 8f8e0 | 20 77 68 69 63 68 20 74 68 65 20 70 72 65 66 69 78 20 6c 69 73 74 20 61 72 65 20 61 70 70 6c 69 | .which.the.prefix.list.are.appli |
| 8f900 | 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 70 70 6c 69 65 73 20 74 68 65 20 72 6f 75 | ed..This.command.applies.the.rou |
| 8f920 | 74 65 20 6d 61 70 20 6e 61 6d 65 64 20 69 6e 20 3c 6e 61 6d 65 3e 20 74 6f 20 74 68 65 20 73 70 | te.map.named.in.<name>.to.the.sp |
| 8f940 | 65 63 69 66 69 65 64 20 42 47 50 20 6e 65 69 67 68 62 6f 72 20 74 6f 20 63 6f 6e 74 72 6f 6c 20 | ecified.BGP.neighbor.to.control. |
| 8f960 | 61 6e 64 20 6d 6f 64 69 66 79 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 | and.modify.routing.information.t |
| 8f980 | 68 61 74 20 69 73 20 65 78 63 68 61 6e 67 65 64 20 62 65 74 77 65 65 6e 20 70 65 65 72 73 2e 20 | hat.is.exchanged.between.peers.. |
| 8f9a0 | 54 68 65 20 61 72 67 75 6d 65 6e 74 73 20 3a 63 66 67 63 6d 64 3a 60 65 78 70 6f 72 74 60 20 61 | The.arguments.:cfgcmd:`export`.a |
| 8f9c0 | 6e 64 20 3a 63 66 67 63 6d 64 3a 60 69 6d 70 6f 72 74 60 20 73 70 65 63 69 66 79 20 74 68 65 20 | nd.:cfgcmd:`import`.specify.the. |
| 8f9e0 | 64 69 72 65 63 74 69 6f 6e 20 69 6e 20 77 68 69 63 68 20 74 68 65 20 72 6f 75 74 65 20 6d 61 70 | direction.in.which.the.route.map |
| 8fa00 | 20 61 72 65 20 61 70 70 6c 69 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 62 69 6e 64 20 | .are.applied..This.command.bind. |
| 8fa20 | 73 70 65 63 69 66 69 63 20 70 65 65 72 20 74 6f 20 70 65 65 72 20 67 72 6f 75 70 20 77 69 74 68 | specific.peer.to.peer.group.with |
| 8fa40 | 20 61 20 67 69 76 65 6e 20 6e 61 6d 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 61 6e 20 | .a.given.name..This.command.can. |
| 8fa60 | 62 65 20 75 73 65 64 20 74 6f 20 66 69 6c 74 65 72 20 74 68 65 20 42 61 62 65 6c 20 72 6f 75 74 | be.used.to.filter.the.Babel.rout |
| 8fa80 | 65 73 20 75 73 69 6e 67 20 61 63 63 65 73 73 20 6c 69 73 74 73 2e 20 3a 63 66 67 63 6d 64 3a 60 | es.using.access.lists..:cfgcmd:` |
| 8faa0 | 69 6e 60 20 61 6e 64 20 3a 63 66 67 63 6d 64 3a 60 6f 75 74 60 20 74 68 69 73 20 69 73 20 74 68 | in`.and.:cfgcmd:`out`.this.is.th |
| 8fac0 | 65 20 64 69 72 65 63 74 69 6f 6e 20 69 6e 20 77 68 69 63 68 20 74 68 65 20 61 63 63 65 73 73 20 | e.direction.in.which.the.access. |
| 8fae0 | 6c 69 73 74 73 20 61 72 65 20 61 70 70 6c 69 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 | lists.are.applied..This.command. |
| 8fb00 | 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 66 69 6c 74 65 72 20 74 68 65 20 42 61 62 65 6c 20 | can.be.used.to.filter.the.Babel. |
| 8fb20 | 72 6f 75 74 65 73 20 75 73 69 6e 67 20 70 72 65 66 69 78 20 6c 69 73 74 73 2e 20 3a 63 66 67 63 | routes.using.prefix.lists..:cfgc |
| 8fb40 | 6d 64 3a 60 69 6e 60 20 61 6e 64 20 3a 63 66 67 63 6d 64 3a 60 6f 75 74 60 20 74 68 69 73 20 69 | md:`in`.and.:cfgcmd:`out`.this.i |
| 8fb60 | 73 20 74 68 65 20 64 69 72 65 63 74 69 6f 6e 20 69 6e 20 77 68 69 63 68 20 74 68 65 20 70 72 65 | s.the.direction.in.which.the.pre |
| 8fb80 | 66 69 78 20 6c 69 73 74 73 20 61 72 65 20 61 70 70 6c 69 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d | fix.lists.are.applied..This.comm |
| 8fba0 | 61 6e 64 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 66 69 6c 74 65 72 20 74 68 65 20 52 49 | and.can.be.used.to.filter.the.RI |
| 8fbc0 | 50 20 70 61 74 68 20 75 73 69 6e 67 20 61 63 63 65 73 73 20 6c 69 73 74 73 2e 20 3a 63 66 67 63 | P.path.using.access.lists..:cfgc |
| 8fbe0 | 6d 64 3a 60 69 6e 60 20 61 6e 64 20 3a 63 66 67 63 6d 64 3a 60 6f 75 74 60 20 74 68 69 73 20 69 | md:`in`.and.:cfgcmd:`out`.this.i |
| 8fc00 | 73 20 74 68 65 20 64 69 72 65 63 74 69 6f 6e 20 69 6e 20 77 68 69 63 68 20 74 68 65 20 61 63 63 | s.the.direction.in.which.the.acc |
| 8fc20 | 65 73 73 20 6c 69 73 74 73 20 61 72 65 20 61 70 70 6c 69 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d | ess.lists.are.applied..This.comm |
| 8fc40 | 61 6e 64 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 66 69 6c 74 65 72 20 74 68 65 20 52 49 | and.can.be.used.to.filter.the.RI |
| 8fc60 | 50 20 70 61 74 68 20 75 73 69 6e 67 20 70 72 65 66 69 78 20 6c 69 73 74 73 2e 20 3a 63 66 67 63 | P.path.using.prefix.lists..:cfgc |
| 8fc80 | 6d 64 3a 60 69 6e 60 20 61 6e 64 20 3a 63 66 67 63 6d 64 3a 60 6f 75 74 60 20 74 68 69 73 20 69 | md:`in`.and.:cfgcmd:`out`.this.i |
| 8fca0 | 73 20 74 68 65 20 64 69 72 65 63 74 69 6f 6e 20 69 6e 20 77 68 69 63 68 20 74 68 65 20 70 72 65 | s.the.direction.in.which.the.pre |
| 8fcc0 | 66 69 78 20 6c 69 73 74 73 20 61 72 65 20 61 70 70 6c 69 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d | fix.lists.are.applied..This.comm |
| 8fce0 | 61 6e 64 20 63 61 6e 20 62 65 20 75 73 65 64 20 77 69 74 68 20 70 72 65 76 69 6f 75 73 20 63 6f | and.can.be.used.with.previous.co |
| 8fd00 | 6d 6d 61 6e 64 20 74 6f 20 73 65 74 73 20 64 65 66 61 75 6c 74 20 52 49 50 20 64 69 73 74 61 6e | mmand.to.sets.default.RIP.distan |
| 8fd20 | 63 65 20 74 6f 20 73 70 65 63 69 66 69 65 64 20 76 61 6c 75 65 20 77 68 65 6e 20 74 68 65 20 72 | ce.to.specified.value.when.the.r |
| 8fd40 | 6f 75 74 65 20 73 6f 75 72 63 65 20 49 50 20 61 64 64 72 65 73 73 20 6d 61 74 63 68 65 73 20 74 | oute.source.IP.address.matches.t |
| 8fd60 | 68 65 20 73 70 65 63 69 66 69 65 64 20 70 72 65 66 69 78 20 61 6e 64 20 74 68 65 20 73 70 65 63 | he.specified.prefix.and.the.spec |
| 8fd80 | 69 66 69 65 64 20 61 63 63 65 73 73 2d 6c 69 73 74 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 | ified.access-list..This.command. |
| 8fda0 | 63 68 61 6e 67 65 20 64 69 73 74 61 6e 63 65 20 76 61 6c 75 65 20 6f 66 20 42 47 50 2e 20 54 68 | change.distance.value.of.BGP..Th |
| 8fdc0 | 65 20 61 72 67 75 6d 65 6e 74 73 20 61 72 65 20 74 68 65 20 64 69 73 74 61 6e 63 65 20 76 61 6c | e.arguments.are.the.distance.val |
| 8fde0 | 75 65 73 20 66 6f 72 20 65 78 74 65 72 6e 61 6c 20 72 6f 75 74 65 73 2c 20 69 6e 74 65 72 6e 61 | ues.for.external.routes,.interna |
| 8fe00 | 6c 20 72 6f 75 74 65 73 20 61 6e 64 20 6c 6f 63 61 6c 20 72 6f 75 74 65 73 20 72 65 73 70 65 63 | l.routes.and.local.routes.respec |
| 8fe20 | 74 69 76 65 6c 79 2e 20 54 68 65 20 64 69 73 74 61 6e 63 65 20 72 61 6e 67 65 20 69 73 20 31 20 | tively..The.distance.range.is.1. |
| 8fe40 | 74 6f 20 32 35 35 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 68 61 6e 67 65 20 64 69 73 74 | to.255..This.command.change.dist |
| 8fe60 | 61 6e 63 65 20 76 61 6c 75 65 20 6f 66 20 4f 53 50 46 20 67 6c 6f 62 61 6c 6c 79 2e 20 54 68 65 | ance.value.of.OSPF.globally..The |
| 8fe80 | 20 64 69 73 74 61 6e 63 65 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 32 35 35 2e 00 54 68 69 | .distance.range.is.1.to.255..Thi |
| 8fea0 | 73 20 63 6f 6d 6d 61 6e 64 20 63 68 61 6e 67 65 20 64 69 73 74 61 6e 63 65 20 76 61 6c 75 65 20 | s.command.change.distance.value. |
| 8fec0 | 6f 66 20 4f 53 50 46 2e 20 54 68 65 20 61 72 67 75 6d 65 6e 74 73 20 61 72 65 20 74 68 65 20 64 | of.OSPF..The.arguments.are.the.d |
| 8fee0 | 69 73 74 61 6e 63 65 20 76 61 6c 75 65 73 20 66 6f 72 20 65 78 74 65 72 6e 61 6c 20 72 6f 75 74 | istance.values.for.external.rout |
| 8ff00 | 65 73 2c 20 69 6e 74 65 72 2d 61 72 65 61 20 72 6f 75 74 65 73 20 61 6e 64 20 69 6e 74 72 61 2d | es,.inter-area.routes.and.intra- |
| 8ff20 | 61 72 65 61 20 72 6f 75 74 65 73 20 72 65 73 70 65 63 74 69 76 65 6c 79 2e 20 54 68 65 20 64 69 | area.routes.respectively..The.di |
| 8ff40 | 73 74 61 6e 63 65 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 32 35 35 2e 00 54 68 69 73 20 63 | stance.range.is.1.to.255..This.c |
| 8ff60 | 6f 6d 6d 61 6e 64 20 63 68 61 6e 67 65 20 64 69 73 74 61 6e 63 65 20 76 61 6c 75 65 20 6f 66 20 | ommand.change.distance.value.of. |
| 8ff80 | 4f 53 50 46 76 33 20 67 6c 6f 62 61 6c 6c 79 2e 20 54 68 65 20 64 69 73 74 61 6e 63 65 20 72 61 | OSPFv3.globally..The.distance.ra |
| 8ffa0 | 6e 67 65 20 69 73 20 31 20 74 6f 20 32 35 35 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 68 | nge.is.1.to.255..This.command.ch |
| 8ffc0 | 61 6e 67 65 20 64 69 73 74 61 6e 63 65 20 76 61 6c 75 65 20 6f 66 20 4f 53 50 46 76 33 2e 20 54 | ange.distance.value.of.OSPFv3..T |
| 8ffe0 | 68 65 20 61 72 67 75 6d 65 6e 74 73 20 61 72 65 20 74 68 65 20 64 69 73 74 61 6e 63 65 20 76 61 | he.arguments.are.the.distance.va |
| 90000 | 6c 75 65 73 20 66 6f 72 20 65 78 74 65 72 6e 61 6c 20 72 6f 75 74 65 73 2c 20 69 6e 74 65 72 2d | lues.for.external.routes,.inter- |
| 90020 | 61 72 65 61 20 72 6f 75 74 65 73 20 61 6e 64 20 69 6e 74 72 61 2d 61 72 65 61 20 72 6f 75 74 65 | area.routes.and.intra-area.route |
| 90040 | 73 20 72 65 73 70 65 63 74 69 76 65 6c 79 2e 20 54 68 65 20 64 69 73 74 61 6e 63 65 20 72 61 6e | s.respectively..The.distance.ran |
| 90060 | 67 65 20 69 73 20 31 20 74 6f 20 32 35 35 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 68 61 | ge.is.1.to.255..This.command.cha |
| 90080 | 6e 67 65 20 74 68 65 20 64 69 73 74 61 6e 63 65 20 76 61 6c 75 65 20 6f 66 20 52 49 50 2e 20 54 | nge.the.distance.value.of.RIP..T |
| 900a0 | 68 65 20 64 69 73 74 61 6e 63 65 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 32 35 35 2e 00 54 | he.distance.range.is.1.to.255..T |
| 900c0 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 68 61 6e 67 65 73 20 74 68 65 20 65 42 47 50 20 62 65 68 | his.command.changes.the.eBGP.beh |
| 900e0 | 61 76 69 6f 72 20 6f 66 20 46 52 52 2e 20 42 79 20 64 65 66 61 75 6c 74 20 46 52 52 20 65 6e 61 | avior.of.FRR..By.default.FRR.ena |
| 90100 | 62 6c 65 73 20 3a 72 66 63 3a 60 38 32 31 32 60 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 20 77 | bles.:rfc:`8212`.functionality.w |
| 90120 | 68 69 63 68 20 61 66 66 65 63 74 73 20 68 6f 77 20 65 42 47 50 20 72 6f 75 74 65 73 20 61 72 65 | hich.affects.how.eBGP.routes.are |
| 90140 | 20 61 64 76 65 72 74 69 73 65 64 2c 20 6e 61 6d 65 6c 79 20 6e 6f 20 72 6f 75 74 65 73 20 61 72 | .advertised,.namely.no.routes.ar |
| 90160 | 65 20 61 64 76 65 72 74 69 73 65 64 20 61 63 72 6f 73 73 20 65 42 47 50 20 73 65 73 73 69 6f 6e | e.advertised.across.eBGP.session |
| 90180 | 73 20 77 69 74 68 6f 75 74 20 73 6f 6d 65 20 73 6f 72 74 20 6f 66 20 65 67 72 65 73 73 20 72 6f | s.without.some.sort.of.egress.ro |
| 901a0 | 75 74 65 2d 6d 61 70 2f 70 6f 6c 69 63 79 20 69 6e 20 70 6c 61 63 65 2e 20 49 6e 20 56 79 4f 53 | ute-map/policy.in.place..In.VyOS |
| 901c0 | 20 68 6f 77 65 76 65 72 20 77 65 20 68 61 76 65 20 74 68 69 73 20 52 46 43 20 66 75 6e 63 74 69 | .however.we.have.this.RFC.functi |
| 901e0 | 6f 6e 61 6c 69 74 79 20 64 69 73 61 62 6c 65 64 20 62 79 20 64 65 66 61 75 6c 74 20 73 6f 20 74 | onality.disabled.by.default.so.t |
| 90200 | 68 61 74 20 77 65 20 63 61 6e 20 70 72 65 73 65 72 76 65 20 62 61 63 6b 77 61 72 64 73 20 63 6f | hat.we.can.preserve.backwards.co |
| 90220 | 6d 70 61 74 69 62 69 6c 69 74 79 20 77 69 74 68 20 6f 6c 64 65 72 20 76 65 72 73 69 6f 6e 73 20 | mpatibility.with.older.versions. |
| 90240 | 6f 66 20 56 79 4f 53 2e 20 57 69 74 68 20 74 68 69 73 20 6f 70 74 69 6f 6e 20 6f 6e 65 20 63 61 | of.VyOS..With.this.option.one.ca |
| 90260 | 6e 20 65 6e 61 62 6c 65 20 3a 72 66 63 3a 60 38 32 31 32 60 20 66 75 6e 63 74 69 6f 6e 61 6c 69 | n.enable.:rfc:`8212`.functionali |
| 90280 | 74 79 20 74 6f 20 6f 70 65 72 61 74 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 6f 6e 66 | ty.to.operate..This.command.conf |
| 902a0 | 69 67 75 72 65 73 20 70 61 64 64 69 6e 67 20 6f 6e 20 68 65 6c 6c 6f 20 70 61 63 6b 65 74 73 20 | igures.padding.on.hello.packets. |
| 902c0 | 74 6f 20 61 63 63 6f 6d 6d 6f 64 61 74 65 20 61 73 79 6d 6d 65 74 72 69 63 61 6c 20 6d 61 78 69 | to.accommodate.asymmetrical.maxi |
| 902e0 | 6d 75 6d 20 74 72 61 6e 73 66 65 72 20 75 6e 69 74 73 20 28 4d 54 55 73 29 20 66 72 6f 6d 20 64 | mum.transfer.units.(MTUs).from.d |
| 90300 | 69 66 66 65 72 65 6e 74 20 68 6f 73 74 73 20 61 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a | ifferent.hosts.as.described.in.: |
| 90320 | 72 66 63 3a 60 33 37 31 39 60 2e 20 54 68 69 73 20 68 65 6c 70 73 20 74 6f 20 70 72 65 76 65 6e | rfc:`3719`..This.helps.to.preven |
| 90340 | 74 20 61 20 70 72 65 6d 61 74 75 72 65 20 61 64 6a 61 63 65 6e 63 79 20 55 70 20 73 74 61 74 65 | t.a.premature.adjacency.Up.state |
| 90360 | 20 77 68 65 6e 20 6f 6e 65 20 72 6f 75 74 69 6e 67 20 64 65 76 69 63 65 73 20 4d 54 55 20 64 6f | .when.one.routing.devices.MTU.do |
| 90380 | 65 73 20 6e 6f 74 20 6d 65 65 74 20 74 68 65 20 72 65 71 75 69 72 65 6d 65 6e 74 73 20 74 6f 20 | es.not.meet.the.requirements.to. |
| 903a0 | 65 73 74 61 62 6c 69 73 68 20 74 68 65 20 61 64 6a 61 63 65 6e 63 79 2e 00 54 68 69 73 20 63 6f | establish.the.adjacency..This.co |
| 903c0 | 6d 6d 61 6e 64 20 63 6f 6e 66 69 67 75 72 65 73 20 74 68 65 20 61 75 74 68 65 6e 74 69 63 61 74 | mmand.configures.the.authenticat |
| 903e0 | 69 6f 6e 20 70 61 73 73 77 6f 72 64 20 66 6f 72 20 61 20 72 6f 75 74 69 6e 67 20 64 6f 6d 61 69 | ion.password.for.a.routing.domai |
| 90400 | 6e 2c 20 61 73 20 63 6c 65 61 72 20 74 65 78 74 20 6f 72 20 6d 64 35 20 6f 6e 65 2e 00 54 68 69 | n,.as.clear.text.or.md5.one..Thi |
| 90420 | 73 20 63 6f 6d 6d 61 6e 64 20 63 6f 6e 66 69 67 75 72 65 73 20 74 68 65 20 61 75 74 68 65 6e 74 | s.command.configures.the.authent |
| 90440 | 69 63 61 74 69 6f 6e 20 70 61 73 73 77 6f 72 64 20 66 6f 72 20 74 68 65 20 69 6e 74 65 72 66 61 | ication.password.for.the.interfa |
| 90460 | 63 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 6f 6e 66 69 67 75 72 65 73 20 74 68 65 20 | ce..This.command.configures.the. |
| 90480 | 6d 61 78 69 6d 75 6d 20 73 69 7a 65 20 6f 66 20 67 65 6e 65 72 61 74 65 64 20 3a 61 62 62 72 3a | maximum.size.of.generated.:abbr: |
| 904a0 | 60 4c 53 50 73 20 28 4c 69 6e 6b 20 53 74 61 74 65 20 50 44 55 73 29 60 2c 20 69 6e 20 62 79 74 | `LSPs.(Link.State.PDUs)`,.in.byt |
| 904c0 | 65 73 2e 20 54 68 65 20 73 69 7a 65 20 72 61 6e 67 65 20 69 73 20 31 32 38 20 74 6f 20 34 33 35 | es..The.size.range.is.128.to.435 |
| 904e0 | 32 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 6f 6e 66 69 67 75 72 65 73 20 74 68 65 20 70 | 2..This.command.configures.the.p |
| 90500 | 61 73 73 69 76 65 20 6d 6f 64 65 20 66 6f 72 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 2e 00 | assive.mode.for.this.interface.. |
| 90520 | 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 72 65 61 74 65 73 20 61 20 6e 65 77 20 6e 65 69 67 68 | This.command.creates.a.new.neigh |
| 90540 | 62 6f 72 20 77 68 6f 73 65 20 72 65 6d 6f 74 65 2d 61 73 20 69 73 20 3c 6e 61 73 6e 3e 2e 20 54 | bor.whose.remote-as.is.<nasn>..T |
| 90560 | 68 65 20 6e 65 69 67 68 62 6f 72 20 61 64 64 72 65 73 73 20 63 61 6e 20 62 65 20 61 6e 20 49 50 | he.neighbor.address.can.be.an.IP |
| 90580 | 76 34 20 61 64 64 72 65 73 73 20 6f 72 20 61 6e 20 49 50 76 36 20 61 64 64 72 65 73 73 20 6f 72 | v4.address.or.an.IPv6.address.or |
| 905a0 | 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 75 73 65 20 66 6f 72 20 74 68 65 20 63 6f 6e | .an.interface.to.use.for.the.con |
| 905c0 | 6e 65 63 74 69 6f 6e 2e 20 54 68 65 20 63 6f 6d 6d 61 6e 64 20 69 73 20 61 70 70 6c 69 63 61 62 | nection..The.command.is.applicab |
| 905e0 | 6c 65 20 66 6f 72 20 70 65 65 72 20 61 6e 64 20 70 65 65 72 20 67 72 6f 75 70 2e 00 54 68 69 73 | le.for.peer.and.peer.group..This |
| 90600 | 20 63 6f 6d 6d 61 6e 64 20 63 72 65 61 74 65 73 20 61 20 6e 65 77 20 72 6f 75 74 65 2d 6d 61 70 | .command.creates.a.new.route-map |
| 90620 | 20 70 6f 6c 69 63 79 2c 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 3c 74 65 78 74 3e 2e 00 54 | .policy,.identified.by.<text>..T |
| 90640 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 72 65 61 74 65 73 20 61 20 6e 65 77 20 72 75 6c 65 20 69 | his.command.creates.a.new.rule.i |
| 90660 | 6e 20 74 68 65 20 49 50 76 36 20 61 63 63 65 73 73 20 6c 69 73 74 20 61 6e 64 20 64 65 66 69 6e | n.the.IPv6.access.list.and.defin |
| 90680 | 65 73 20 61 6e 20 61 63 74 69 6f 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 72 65 61 74 | es.an.action..This.command.creat |
| 906a0 | 65 73 20 61 20 6e 65 77 20 72 75 6c 65 20 69 6e 20 74 68 65 20 49 50 76 36 20 70 72 65 66 69 78 | es.a.new.rule.in.the.IPv6.prefix |
| 906c0 | 2d 6c 69 73 74 20 61 6e 64 20 64 65 66 69 6e 65 73 20 61 6e 20 61 63 74 69 6f 6e 2e 00 54 68 69 | -list.and.defines.an.action..Thi |
| 906e0 | 73 20 63 6f 6d 6d 61 6e 64 20 63 72 65 61 74 65 73 20 61 20 6e 65 77 20 72 75 6c 65 20 69 6e 20 | s.command.creates.a.new.rule.in. |
| 90700 | 74 68 65 20 61 63 63 65 73 73 20 6c 69 73 74 20 61 6e 64 20 64 65 66 69 6e 65 73 20 61 6e 20 61 | the.access.list.and.defines.an.a |
| 90720 | 63 74 69 6f 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 72 65 61 74 65 73 20 61 20 6e 65 | ction..This.command.creates.a.ne |
| 90740 | 77 20 72 75 6c 65 20 69 6e 20 74 68 65 20 70 72 65 66 69 78 2d 6c 69 73 74 20 61 6e 64 20 64 65 | w.rule.in.the.prefix-list.and.de |
| 90760 | 66 69 6e 65 73 20 61 6e 20 61 63 74 69 6f 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 72 | fines.an.action..This.command.cr |
| 90780 | 65 61 74 65 73 20 74 68 65 20 6e 65 77 20 49 50 76 36 20 61 63 63 65 73 73 20 6c 69 73 74 2c 20 | eates.the.new.IPv6.access.list,. |
| 907a0 | 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 3c 74 65 78 74 3e 00 54 68 69 73 20 63 6f 6d 6d 61 6e | identified.by.<text>.This.comman |
| 907c0 | 64 20 63 72 65 61 74 65 73 20 74 68 65 20 6e 65 77 20 49 50 76 36 20 70 72 65 66 69 78 2d 6c 69 | d.creates.the.new.IPv6.prefix-li |
| 907e0 | 73 74 20 70 6f 6c 69 63 79 2c 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 3c 74 65 78 74 3e 2e | st.policy,.identified.by.<text>. |
| 90800 | 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 72 65 61 74 65 73 20 74 68 65 20 6e 65 77 20 61 63 | .This.command.creates.the.new.ac |
| 90820 | 63 65 73 73 20 6c 69 73 74 20 70 6f 6c 69 63 79 2c 20 77 68 65 72 65 20 3c 61 63 6c 5f 6e 75 6d | cess.list.policy,.where.<acl_num |
| 90840 | 62 65 72 3e 20 6d 75 73 74 20 62 65 20 61 20 6e 75 6d 62 65 72 20 66 72 6f 6d 20 31 20 74 6f 20 | ber>.must.be.a.number.from.1.to. |
| 90860 | 32 36 39 39 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 72 65 61 74 65 73 20 74 68 65 20 6e | 2699..This.command.creates.the.n |
| 90880 | 65 77 20 70 72 65 66 69 78 2d 6c 69 73 74 20 70 6f 6c 69 63 79 2c 20 69 64 65 6e 74 69 66 69 65 | ew.prefix-list.policy,.identifie |
| 908a0 | 64 20 62 79 20 3c 74 65 78 74 3e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 65 66 69 6e 65 | d.by.<text>..This.command.define |
| 908c0 | 73 20 61 20 6e 65 77 20 70 65 65 72 20 67 72 6f 75 70 2e 20 59 6f 75 20 63 61 6e 20 73 70 65 63 | s.a.new.peer.group..You.can.spec |
| 908e0 | 69 66 79 20 74 6f 20 74 68 65 20 67 72 6f 75 70 20 74 68 65 20 73 61 6d 65 20 70 61 72 61 6d 65 | ify.to.the.group.the.same.parame |
| 90900 | 74 65 72 73 20 74 68 61 74 20 79 6f 75 20 63 61 6e 20 73 70 65 63 69 66 79 20 66 6f 72 20 73 70 | ters.that.you.can.specify.for.sp |
| 90920 | 65 63 69 66 69 63 20 6e 65 69 67 68 62 6f 72 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 | ecific.neighbors..This.command.d |
| 90940 | 65 66 69 6e 65 73 20 6d 61 74 63 68 69 6e 67 20 70 61 72 61 6d 65 74 65 72 73 20 66 6f 72 20 49 | efines.matching.parameters.for.I |
| 90960 | 50 76 36 20 61 63 63 65 73 73 20 6c 69 73 74 20 72 75 6c 65 2e 20 4d 61 74 63 68 69 6e 67 20 63 | Pv6.access.list.rule..Matching.c |
| 90980 | 72 69 74 65 72 69 61 20 63 6f 75 6c 64 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 73 6f 75 72 | riteria.could.be.applied.to.sour |
| 909a0 | 63 65 20 70 61 72 61 6d 65 74 65 72 73 3a 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 65 66 69 | ce.parameters:.This.command.defi |
| 909c0 | 6e 65 73 20 6d 61 74 63 68 69 6e 67 20 70 61 72 61 6d 65 74 65 72 73 20 66 6f 72 20 61 63 63 65 | nes.matching.parameters.for.acce |
| 909e0 | 73 73 20 6c 69 73 74 20 72 75 6c 65 2e 20 4d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 20 | ss.list.rule..Matching.criteria. |
| 90a00 | 63 6f 75 6c 64 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 | could.be.applied.to.destination. |
| 90a20 | 6f 72 20 73 6f 75 72 63 65 20 70 61 72 61 6d 65 74 65 72 73 3a 00 54 68 69 73 20 63 6f 6d 6d 61 | or.source.parameters:.This.comma |
| 90a40 | 6e 64 20 64 65 66 69 6e 65 73 20 74 68 65 20 49 53 2d 49 53 20 72 6f 75 74 65 72 20 62 65 68 61 | nd.defines.the.IS-IS.router.beha |
| 90a60 | 76 69 6f 72 3a 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 65 66 69 6e 65 73 20 74 68 65 20 61 | vior:.This.command.defines.the.a |
| 90a80 | 63 63 75 6d 75 6c 61 74 65 64 20 70 65 6e 61 6c 74 79 20 61 6d 6f 75 6e 74 20 61 74 20 77 68 69 | ccumulated.penalty.amount.at.whi |
| 90aa0 | 63 68 20 74 68 65 20 72 6f 75 74 65 20 69 73 20 72 65 2d 61 64 76 65 72 74 69 73 65 64 2e 20 54 | ch.the.route.is.re-advertised..T |
| 90ac0 | 68 65 20 70 65 6e 61 6c 74 79 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 32 30 30 30 30 2e 00 | he.penalty.range.is.1.to.20000.. |
| 90ae0 | 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 65 66 69 6e 65 73 20 74 68 65 20 61 63 63 75 6d 75 6c | This.command.defines.the.accumul |
| 90b00 | 61 74 65 64 20 70 65 6e 61 6c 74 79 20 61 6d 6f 75 6e 74 20 61 74 20 77 68 69 63 68 20 74 68 65 | ated.penalty.amount.at.which.the |
| 90b20 | 20 72 6f 75 74 65 20 69 73 20 73 75 70 70 72 65 73 73 65 64 2e 20 54 68 65 20 70 65 6e 61 6c 74 | .route.is.suppressed..The.penalt |
| 90b40 | 79 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 32 30 30 30 30 2e 00 54 68 69 73 20 63 6f 6d 6d | y.range.is.1.to.20000..This.comm |
| 90b60 | 61 6e 64 20 64 65 66 69 6e 65 73 20 74 68 65 20 61 6d 6f 75 6e 74 20 6f 66 20 74 69 6d 65 20 69 | and.defines.the.amount.of.time.i |
| 90b80 | 6e 20 6d 69 6e 75 74 65 73 20 61 66 74 65 72 20 77 68 69 63 68 20 61 20 70 65 6e 61 6c 74 79 20 | n.minutes.after.which.a.penalty. |
| 90ba0 | 69 73 20 72 65 64 75 63 65 64 20 62 79 20 68 61 6c 66 2e 20 54 68 65 20 74 69 6d 65 72 20 72 61 | is.reduced.by.half..The.timer.ra |
| 90bc0 | 6e 67 65 20 69 73 20 31 30 20 74 6f 20 34 35 20 6d 69 6e 75 74 65 73 2e 00 54 68 69 73 20 63 6f | nge.is.10.to.45.minutes..This.co |
| 90be0 | 6d 6d 61 6e 64 20 64 65 66 69 6e 65 73 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 | mmand.defines.the.maximum.number |
| 90c00 | 20 6f 66 20 70 61 72 61 6c 6c 65 6c 20 72 6f 75 74 65 73 20 74 68 61 74 20 74 68 65 20 42 47 50 | .of.parallel.routes.that.the.BGP |
| 90c20 | 20 63 61 6e 20 73 75 70 70 6f 72 74 2e 20 49 6e 20 6f 72 64 65 72 20 66 6f 72 20 42 47 50 20 74 | .can.support..In.order.for.BGP.t |
| 90c40 | 6f 20 75 73 65 20 74 68 65 20 73 65 63 6f 6e 64 20 70 61 74 68 2c 20 74 68 65 20 66 6f 6c 6c 6f | o.use.the.second.path,.the.follo |
| 90c60 | 77 69 6e 67 20 61 74 74 72 69 62 75 74 65 73 20 68 61 76 65 20 74 6f 20 6d 61 74 63 68 3a 20 57 | wing.attributes.have.to.match:.W |
| 90c80 | 65 69 67 68 74 2c 20 4c 6f 63 61 6c 20 50 72 65 66 65 72 65 6e 63 65 2c 20 41 53 20 50 61 74 68 | eight,.Local.Preference,.AS.Path |
| 90ca0 | 20 28 62 6f 74 68 20 41 53 20 6e 75 6d 62 65 72 20 61 6e 64 20 41 53 20 70 61 74 68 20 6c 65 6e | .(both.AS.number.and.AS.path.len |
| 90cc0 | 67 74 68 29 2c 20 4f 72 69 67 69 6e 20 63 6f 64 65 2c 20 4d 45 44 2c 20 49 47 50 20 6d 65 74 72 | gth),.Origin.code,.MED,.IGP.metr |
| 90ce0 | 69 63 2e 20 41 6c 73 6f 2c 20 74 68 65 20 6e 65 78 74 20 68 6f 70 20 61 64 64 72 65 73 73 20 66 | ic..Also,.the.next.hop.address.f |
| 90d00 | 6f 72 20 65 61 63 68 20 70 61 74 68 20 6d 75 73 74 20 62 65 20 64 69 66 66 65 72 65 6e 74 2e 00 | or.each.path.must.be.different.. |
| 90d20 | 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 65 66 69 6e 65 73 20 74 68 65 20 6d 61 78 69 6d 75 6d | This.command.defines.the.maximum |
| 90d40 | 20 74 69 6d 65 20 69 6e 20 6d 69 6e 75 74 65 73 20 74 68 61 74 20 61 20 72 6f 75 74 65 20 69 73 | .time.in.minutes.that.a.route.is |
| 90d60 | 20 73 75 70 70 72 65 73 73 65 64 2e 20 54 68 65 20 74 69 6d 65 72 20 72 61 6e 67 65 20 69 73 20 | .suppressed..The.timer.range.is. |
| 90d80 | 31 20 74 6f 20 32 35 35 20 6d 69 6e 75 74 65 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 | 1.to.255.minutes..This.command.d |
| 90da0 | 69 73 61 62 6c 65 20 74 68 65 20 70 65 65 72 20 6f 72 20 70 65 65 72 20 67 72 6f 75 70 2e 20 54 | isable.the.peer.or.peer.group..T |
| 90dc0 | 6f 20 72 65 65 6e 61 62 6c 65 20 74 68 65 20 70 65 65 72 20 75 73 65 20 74 68 65 20 64 65 6c 65 | o.reenable.the.peer.use.the.dele |
| 90de0 | 74 65 20 66 6f 72 6d 20 6f 66 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 2e 00 54 68 69 73 20 63 6f | te.form.of.this.command..This.co |
| 90e00 | 6d 6d 61 6e 64 20 64 69 73 61 62 6c 65 73 20 49 47 50 2d 4c 44 50 20 73 79 6e 63 20 66 6f 72 20 | mmand.disables.IGP-LDP.sync.for. |
| 90e20 | 74 68 69 73 20 73 70 65 63 69 66 69 63 20 69 6e 74 65 72 66 61 63 65 2e 00 54 68 69 73 20 63 6f | this.specific.interface..This.co |
| 90e40 | 6d 6d 61 6e 64 20 64 69 73 61 62 6c 65 73 20 54 68 72 65 65 2d 57 61 79 20 48 61 6e 64 73 68 61 | mmand.disables.Three-Way.Handsha |
| 90e60 | 6b 65 20 66 6f 72 20 50 32 50 20 61 64 6a 61 63 65 6e 63 69 65 73 20 77 68 69 63 68 20 64 65 73 | ke.for.P2P.adjacencies.which.des |
| 90e80 | 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 35 33 30 33 60 2e 20 54 68 72 65 65 2d 57 61 79 | cribed.in.:rfc:`5303`..Three-Way |
| 90ea0 | 20 48 61 6e 64 73 68 61 6b 65 20 69 73 20 65 6e 61 62 6c 65 64 20 62 79 20 64 65 66 61 75 6c 74 | .Handshake.is.enabled.by.default |
| 90ec0 | 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 61 62 6c 65 73 20 63 68 65 63 6b 20 6f 66 | ..This.command.disables.check.of |
| 90ee0 | 20 74 68 65 20 4d 54 55 20 76 61 6c 75 65 20 69 6e 20 74 68 65 20 4f 53 50 46 20 44 42 44 20 70 | .the.MTU.value.in.the.OSPF.DBD.p |
| 90f00 | 61 63 6b 65 74 73 2e 20 54 68 75 73 2c 20 75 73 65 20 6f 66 20 74 68 69 73 20 63 6f 6d 6d 61 6e | ackets..Thus,.use.of.this.comman |
| 90f20 | 64 20 61 6c 6c 6f 77 73 20 74 68 65 20 4f 53 50 46 20 61 64 6a 61 63 65 6e 63 79 20 74 6f 20 72 | d.allows.the.OSPF.adjacency.to.r |
| 90f40 | 65 61 63 68 20 74 68 65 20 46 55 4c 4c 20 73 74 61 74 65 20 65 76 65 6e 20 74 68 6f 75 67 68 20 | each.the.FULL.state.even.though. |
| 90f60 | 74 68 65 72 65 20 69 73 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 4d 54 55 20 6d 69 73 6d 61 74 | there.is.an.interface.MTU.mismat |
| 90f80 | 63 68 20 62 65 74 77 65 65 6e 20 74 77 6f 20 4f 53 50 46 20 72 6f 75 74 65 72 73 2e 00 54 68 69 | ch.between.two.OSPF.routers..Thi |
| 90fa0 | 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 61 62 6c 65 73 20 69 74 2e 00 54 68 69 73 20 63 6f 6d 6d | s.command.disables.it..This.comm |
| 90fc0 | 61 6e 64 20 64 69 73 61 62 6c 65 73 20 72 6f 75 74 65 20 72 65 66 6c 65 63 74 69 6f 6e 20 62 65 | and.disables.route.reflection.be |
| 90fe0 | 74 77 65 65 6e 20 72 6f 75 74 65 20 72 65 66 6c 65 63 74 6f 72 20 63 6c 69 65 6e 74 73 2e 20 42 | tween.route.reflector.clients..B |
| 91000 | 79 20 64 65 66 61 75 6c 74 2c 20 74 68 65 20 63 6c 69 65 6e 74 73 20 6f 66 20 61 20 72 6f 75 74 | y.default,.the.clients.of.a.rout |
| 91020 | 65 20 72 65 66 6c 65 63 74 6f 72 20 61 72 65 20 6e 6f 74 20 72 65 71 75 69 72 65 64 20 74 6f 20 | e.reflector.are.not.required.to. |
| 91040 | 62 65 20 66 75 6c 6c 79 20 6d 65 73 68 65 64 20 61 6e 64 20 74 68 65 20 72 6f 75 74 65 73 20 66 | be.fully.meshed.and.the.routes.f |
| 91060 | 72 6f 6d 20 61 20 63 6c 69 65 6e 74 20 61 72 65 20 72 65 66 6c 65 63 74 65 64 20 74 6f 20 6f 74 | rom.a.client.are.reflected.to.ot |
| 91080 | 68 65 72 20 63 6c 69 65 6e 74 73 2e 20 48 6f 77 65 76 65 72 2c 20 69 66 20 74 68 65 20 63 6c 69 | her.clients..However,.if.the.cli |
| 910a0 | 65 6e 74 73 20 61 72 65 20 66 75 6c 6c 79 20 6d 65 73 68 65 64 2c 20 72 6f 75 74 65 20 72 65 66 | ents.are.fully.meshed,.route.ref |
| 910c0 | 6c 65 63 74 69 6f 6e 20 69 73 20 6e 6f 74 20 72 65 71 75 69 72 65 64 2e 20 49 6e 20 74 68 69 73 | lection.is.not.required..In.this |
| 910e0 | 20 63 61 73 65 2c 20 75 73 65 20 74 68 65 20 3a 63 66 67 63 6d 64 3a 60 6e 6f 2d 63 6c 69 65 6e | .case,.use.the.:cfgcmd:`no-clien |
| 91100 | 74 2d 74 6f 2d 63 6c 69 65 6e 74 2d 72 65 66 6c 65 63 74 69 6f 6e 60 20 63 6f 6d 6d 61 6e 64 20 | t-to-client-reflection`.command. |
| 91120 | 74 6f 20 64 69 73 61 62 6c 65 20 63 6c 69 65 6e 74 2d 74 6f 2d 63 6c 69 65 6e 74 20 72 65 66 6c | to.disable.client-to-client.refl |
| 91140 | 65 63 74 69 6f 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 61 62 6c 65 73 20 73 70 | ection..This.command.disables.sp |
| 91160 | 6c 69 74 2d 68 6f 72 69 7a 6f 6e 20 6f 6e 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 2e 20 42 79 | lit-horizon.on.the.interface..By |
| 91180 | 20 64 65 66 61 75 6c 74 2c 20 56 79 4f 53 20 64 6f 65 73 20 6e 6f 74 20 61 64 76 65 72 74 69 73 | .default,.VyOS.does.not.advertis |
| 911a0 | 65 20 52 49 50 20 72 6f 75 74 65 73 20 6f 75 74 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 6f | e.RIP.routes.out.the.interface.o |
| 911c0 | 76 65 72 20 77 68 69 63 68 20 74 68 65 79 20 77 65 72 65 20 6c 65 61 72 6e 65 64 20 28 73 70 6c | ver.which.they.were.learned.(spl |
| 911e0 | 69 74 20 68 6f 72 69 7a 6f 6e 29 2e 33 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 61 62 | it.horizon).3.This.command.disab |
| 91200 | 6c 65 73 20 74 68 65 20 6c 6f 61 64 20 73 68 61 72 69 6e 67 20 61 63 72 6f 73 73 20 6d 75 6c 74 | les.the.load.sharing.across.mult |
| 91220 | 69 70 6c 65 20 4c 46 41 20 62 61 63 6b 75 70 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 | iple.LFA.backups..This.command.d |
| 91240 | 69 73 70 6c 61 79 73 20 42 47 50 20 64 61 6d 70 65 6e 65 64 20 72 6f 75 74 65 73 2e 00 54 68 69 | isplays.BGP.dampened.routes..Thi |
| 91260 | 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 42 47 50 20 72 65 63 65 69 76 65 64 2d | s.command.displays.BGP.received- |
| 91280 | 72 6f 75 74 65 73 20 74 68 61 74 20 61 72 65 20 61 63 63 65 70 74 65 64 20 61 66 74 65 72 20 66 | routes.that.are.accepted.after.f |
| 912a0 | 69 6c 74 65 72 69 6e 67 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 | iltering..This.command.displays. |
| 912c0 | 42 47 50 20 72 6f 75 74 65 73 20 61 64 76 65 72 74 69 73 65 64 20 74 6f 20 61 20 6e 65 69 67 68 | BGP.routes.advertised.to.a.neigh |
| 912e0 | 62 6f 72 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 42 47 50 20 72 | bor..This.command.displays.BGP.r |
| 91300 | 6f 75 74 65 73 20 61 6c 6c 6f 77 65 64 20 62 79 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 41 | outes.allowed.by.the.specified.A |
| 91320 | 53 20 50 61 74 68 20 61 63 63 65 73 73 20 6c 69 73 74 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 | S.Path.access.list..This.command |
| 91340 | 20 64 69 73 70 6c 61 79 73 20 42 47 50 20 72 6f 75 74 65 73 20 6f 72 69 67 69 6e 61 74 69 6e 67 | .displays.BGP.routes.originating |
| 91360 | 20 66 72 6f 6d 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 42 47 50 20 6e 65 69 67 68 62 6f 72 | .from.the.specified.BGP.neighbor |
| 91380 | 20 62 65 66 6f 72 65 20 69 6e 62 6f 75 6e 64 20 70 6f 6c 69 63 79 20 69 73 20 61 70 70 6c 69 65 | .before.inbound.policy.is.applie |
| 913a0 | 64 2e 20 54 6f 20 75 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 6e 62 6f 75 6e 64 20 73 | d..To.use.this.command.inbound.s |
| 913c0 | 6f 66 74 20 72 65 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d 75 73 74 20 62 65 20 65 6e 61 62 | oft.reconfiguration.must.be.enab |
| 913e0 | 6c 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 4c 53 41 73 20 | led..This.command.displays.LSAs. |
| 91400 | 69 6e 20 4d 61 78 41 67 65 20 6c 69 73 74 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 | in.MaxAge.list..This.command.dis |
| 91420 | 70 6c 61 79 73 20 52 49 50 20 72 6f 75 74 65 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 | plays.RIP.routes..This.command.d |
| 91440 | 69 73 70 6c 61 79 73 20 61 20 64 61 74 61 62 61 73 65 20 63 6f 6e 74 65 6e 74 73 20 66 6f 72 20 | isplays.a.database.contents.for. |
| 91460 | 61 20 73 70 65 63 69 66 69 63 20 6c 69 6e 6b 20 61 64 76 65 72 74 69 73 65 6d 65 6e 74 20 74 79 | a.specific.link.advertisement.ty |
| 91480 | 70 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 61 20 73 75 6d 6d | pe..This.command.displays.a.summ |
| 914a0 | 61 72 79 20 74 61 62 6c 65 20 77 69 74 68 20 61 20 64 61 74 61 62 61 73 65 20 63 6f 6e 74 65 6e | ary.table.with.a.database.conten |
| 914c0 | 74 73 20 28 4c 53 41 29 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 | ts.(LSA)..This.command.displays. |
| 914e0 | 61 20 74 61 62 6c 65 20 6f 66 20 70 61 74 68 73 20 74 6f 20 61 72 65 61 20 62 6f 75 6e 64 61 72 | a.table.of.paths.to.area.boundar |
| 91500 | 79 20 61 6e 64 20 61 75 74 6f 6e 6f 6d 6f 75 73 20 73 79 73 74 65 6d 20 62 6f 75 6e 64 61 72 79 | y.and.autonomous.system.boundary |
| 91520 | 20 72 6f 75 74 65 72 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 | .routers..This.command.displays. |
| 91540 | 61 6c 6c 20 65 6e 74 72 69 65 73 20 69 6e 20 42 47 50 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 | all.entries.in.BGP.routing.table |
| 91560 | 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 64 61 6d 70 65 6e 65 64 | ..This.command.displays.dampened |
| 91580 | 20 72 6f 75 74 65 73 20 72 65 63 65 69 76 65 64 20 66 72 6f 6d 20 42 47 50 20 6e 65 69 67 68 62 | .routes.received.from.BGP.neighb |
| 915a0 | 6f 72 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 65 78 74 65 72 6e | or..This.command.displays.extern |
| 915c0 | 61 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 72 65 64 69 73 74 72 69 62 75 74 65 64 20 69 6e 74 | al.information.redistributed.int |
| 915e0 | 6f 20 4f 53 50 46 76 33 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 69 | o.OSPFv3.This.command.displays.i |
| 91600 | 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 42 47 50 20 72 6f 75 74 65 73 20 77 68 6f 73 | nformation.about.BGP.routes.whos |
| 91620 | 65 20 41 53 20 70 61 74 68 20 6d 61 74 63 68 65 73 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 | e.AS.path.matches.the.specified. |
| 91640 | 72 65 67 75 6c 61 72 20 65 78 70 72 65 73 73 69 6f 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 | regular.expression..This.command |
| 91660 | 20 64 69 73 70 6c 61 79 73 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 66 6c 61 70 | .displays.information.about.flap |
| 91680 | 70 69 6e 67 20 42 47 50 20 72 6f 75 74 65 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 | ping.BGP.routes..This.command.di |
| 916a0 | 73 70 6c 61 79 73 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 74 68 65 20 70 61 72 | splays.information.about.the.par |
| 916c0 | 74 69 63 75 6c 61 72 20 65 6e 74 72 79 20 69 6e 20 74 68 65 20 42 47 50 20 72 6f 75 74 69 6e 67 | ticular.entry.in.the.BGP.routing |
| 916e0 | 20 74 61 62 6c 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 72 6f | .table..This.command.displays.ro |
| 91700 | 75 74 65 73 20 74 68 61 74 20 61 72 65 20 70 65 72 6d 69 74 74 65 64 20 62 79 20 74 68 65 20 42 | utes.that.are.permitted.by.the.B |
| 91720 | 47 50 20 63 6f 6d 6d 75 6e 69 74 79 20 6c 69 73 74 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 | GP.community.list..This.command. |
| 91740 | 64 69 73 70 6c 61 79 73 20 72 6f 75 74 65 73 20 74 68 61 74 20 62 65 6c 6f 6e 67 20 74 6f 20 73 | displays.routes.that.belong.to.s |
| 91760 | 70 65 63 69 66 69 65 64 20 42 47 50 20 63 6f 6d 6d 75 6e 69 74 69 65 73 2e 20 56 61 6c 69 64 20 | pecified.BGP.communities..Valid. |
| 91780 | 76 61 6c 75 65 20 69 73 20 61 20 63 6f 6d 6d 75 6e 69 74 79 20 6e 75 6d 62 65 72 20 69 6e 20 74 | value.is.a.community.number.in.t |
| 917a0 | 68 65 20 72 61 6e 67 65 20 66 72 6f 6d 20 31 20 74 6f 20 34 32 39 34 39 36 37 32 30 30 2c 20 6f | he.range.from.1.to.4294967200,.o |
| 917c0 | 72 20 41 41 3a 4e 4e 20 28 61 75 74 6f 6e 6f 6d 6f 75 73 20 73 79 73 74 65 6d 2d 63 6f 6d 6d 75 | r.AA:NN.(autonomous.system-commu |
| 917e0 | 6e 69 74 79 20 6e 75 6d 62 65 72 2f 32 2d 62 79 74 65 20 6e 75 6d 62 65 72 29 2c 20 6e 6f 2d 65 | nity.number/2-byte.number),.no-e |
| 91800 | 78 70 6f 72 74 2c 20 6c 6f 63 61 6c 2d 61 73 2c 20 6f 72 20 6e 6f 2d 61 64 76 65 72 74 69 73 65 | xport,.local-as,.or.no-advertise |
| 91820 | 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 72 6f 75 74 65 73 20 77 | ..This.command.displays.routes.w |
| 91840 | 69 74 68 20 63 6c 61 73 73 6c 65 73 73 20 69 6e 74 65 72 64 6f 6d 61 69 6e 20 72 6f 75 74 69 6e | ith.classless.interdomain.routin |
| 91860 | 67 20 28 43 49 44 52 29 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 | g.(CIDR)..This.command.displays. |
| 91880 | 73 74 61 74 65 20 61 6e 64 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 66 20 4f 53 50 46 20 | state.and.configuration.of.OSPF. |
| 918a0 | 74 68 65 20 73 70 65 63 69 66 69 65 64 20 69 6e 74 65 72 66 61 63 65 2c 20 6f 72 20 61 6c 6c 20 | the.specified.interface,.or.all. |
| 918c0 | 69 6e 74 65 72 66 61 63 65 73 20 69 66 20 6e 6f 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 67 69 | interfaces.if.no.interface.is.gi |
| 918e0 | 76 65 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 73 74 61 74 65 | ven..This.command.displays.state |
| 91900 | 20 61 6e 64 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 66 20 4f 53 50 46 20 74 68 65 20 73 | .and.configuration.of.OSPF.the.s |
| 91920 | 70 65 63 69 66 69 65 64 20 69 6e 74 65 72 66 61 63 65 2c 20 6f 72 20 61 6c 6c 20 69 6e 74 65 72 | pecified.interface,.or.all.inter |
| 91940 | 66 61 63 65 73 20 69 66 20 6e 6f 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 67 69 76 65 6e 2e 20 | faces.if.no.interface.is.given.. |
| 91960 | 57 68 69 74 68 20 74 68 65 20 61 72 67 75 6d 65 6e 74 20 3a 63 66 67 63 6d 64 3a 60 70 72 65 66 | Whith.the.argument.:cfgcmd:`pref |
| 91980 | 69 78 60 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 68 6f 77 73 20 63 6f 6e 6e 65 63 74 65 64 | ix`.this.command.shows.connected |
| 919a0 | 20 70 72 65 66 69 78 65 73 20 74 6f 20 61 64 76 65 72 74 69 73 65 2e 00 54 68 69 73 20 63 6f 6d | .prefixes.to.advertise..This.com |
| 919c0 | 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 74 68 65 20 4f 53 50 46 20 72 6f 75 74 69 6e 67 20 74 | mand.displays.the.OSPF.routing.t |
| 919e0 | 61 62 6c 65 2c 20 61 73 20 64 65 74 65 72 6d 69 6e 65 64 20 62 79 20 74 68 65 20 6d 6f 73 74 20 | able,.as.determined.by.the.most. |
| 91a00 | 72 65 63 65 6e 74 20 53 50 46 20 63 61 6c 63 75 6c 61 74 69 6f 6e 2e 00 54 68 69 73 20 63 6f 6d | recent.SPF.calculation..This.com |
| 91a20 | 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 74 68 65 20 4f 53 50 46 20 72 6f 75 74 69 6e 67 20 74 | mand.displays.the.OSPF.routing.t |
| 91a40 | 61 62 6c 65 2c 20 61 73 20 64 65 74 65 72 6d 69 6e 65 64 20 62 79 20 74 68 65 20 6d 6f 73 74 20 | able,.as.determined.by.the.most. |
| 91a60 | 72 65 63 65 6e 74 20 53 50 46 20 63 61 6c 63 75 6c 61 74 69 6f 6e 2e 20 57 69 74 68 20 74 68 65 | recent.SPF.calculation..With.the |
| 91a80 | 20 6f 70 74 69 6f 6e 61 6c 20 3a 63 66 67 63 6d 64 3a 60 64 65 74 61 69 6c 60 20 61 72 67 75 6d | .optional.:cfgcmd:`detail`.argum |
| 91aa0 | 65 6e 74 2c 20 65 61 63 68 20 72 6f 75 74 65 20 69 74 65 6d 27 73 20 61 64 76 65 72 74 69 73 65 | ent,.each.route.item's.advertise |
| 91ac0 | 72 20 72 6f 75 74 65 72 20 61 6e 64 20 6e 65 74 77 6f 72 6b 20 61 74 74 72 69 62 75 74 65 20 77 | r.router.and.network.attribute.w |
| 91ae0 | 69 6c 6c 20 62 65 20 73 68 6f 77 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c | ill.be.shown..This.command.displ |
| 91b00 | 61 79 73 20 74 68 65 20 6e 65 69 67 68 62 6f 72 20 44 52 20 63 68 6f 69 63 65 20 69 6e 66 6f 72 | ays.the.neighbor.DR.choice.infor |
| 91b20 | 6d 61 74 69 6f 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 74 68 | mation..This.command.displays.th |
| 91b40 | 65 20 6e 65 69 67 68 62 6f 72 73 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 69 6e 20 61 20 64 65 74 | e.neighbors.information.in.a.det |
| 91b60 | 61 69 6c 65 64 20 66 6f 72 6d 20 66 6f 72 20 61 20 6e 65 69 67 68 62 6f 72 20 77 68 6f 73 65 20 | ailed.form.for.a.neighbor.whose. |
| 91b80 | 49 50 20 61 64 64 72 65 73 73 20 69 73 20 73 70 65 63 69 66 69 65 64 2e 00 54 68 69 73 20 63 6f | IP.address.is.specified..This.co |
| 91ba0 | 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 74 68 65 20 6e 65 69 67 68 62 6f 72 73 20 69 6e 66 | mmand.displays.the.neighbors.inf |
| 91bc0 | 6f 72 6d 61 74 69 6f 6e 20 69 6e 20 61 20 64 65 74 61 69 6c 65 64 20 66 6f 72 6d 2c 20 6e 6f 74 | ormation.in.a.detailed.form,.not |
| 91be0 | 20 6a 75 73 74 20 61 20 73 75 6d 6d 61 72 79 20 74 61 62 6c 65 2e 00 54 68 69 73 20 63 6f 6d 6d | .just.a.summary.table..This.comm |
| 91c00 | 61 6e 64 20 64 69 73 70 6c 61 79 73 20 74 68 65 20 6e 65 69 67 68 62 6f 72 73 20 73 74 61 74 75 | and.displays.the.neighbors.statu |
| 91c20 | 73 20 66 6f 72 20 61 20 6e 65 69 67 68 62 6f 72 20 6f 6e 20 74 68 65 20 73 70 65 63 69 66 69 65 | s.for.a.neighbor.on.the.specifie |
| 91c40 | 64 20 69 6e 74 65 72 66 61 63 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 | d.interface..This.command.displa |
| 91c60 | 79 73 20 74 68 65 20 6e 65 69 67 68 62 6f 72 73 20 73 74 61 74 75 73 2e 00 54 68 69 73 20 63 6f | ys.the.neighbors.status..This.co |
| 91c80 | 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 74 68 65 20 73 74 61 74 75 73 20 6f 66 20 61 6c 6c | mmand.displays.the.status.of.all |
| 91ca0 | 20 42 47 50 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 65 | .BGP.connections..This.command.e |
| 91cc0 | 6e 61 62 6c 65 20 6c 6f 67 67 69 6e 67 20 6e 65 69 67 68 62 6f 72 20 75 70 2f 64 6f 77 6e 20 63 | nable.logging.neighbor.up/down.c |
| 91ce0 | 68 61 6e 67 65 73 20 61 6e 64 20 72 65 73 65 74 20 72 65 61 73 6f 6e 2e 00 54 68 69 73 20 63 6f | hanges.and.reset.reason..This.co |
| 91d00 | 6d 6d 61 6e 64 20 65 6e 61 62 6c 65 2f 64 69 73 61 62 6c 65 73 20 73 75 6d 6d 61 72 69 73 61 74 | mmand.enable/disables.summarisat |
| 91d20 | 69 6f 6e 20 66 6f 72 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 61 64 64 72 65 73 73 20 72 | ion.for.the.configured.address.r |
| 91d40 | 61 6e 67 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 65 6e 61 62 6c 65 73 20 3a 61 62 62 72 | ange..This.command.enables.:abbr |
| 91d60 | 3a 60 42 46 44 20 28 42 69 64 69 72 65 63 74 69 6f 6e 61 6c 20 46 6f 72 77 61 72 64 69 6e 67 20 | :`BFD.(Bidirectional.Forwarding. |
| 91d80 | 44 65 74 65 63 74 69 6f 6e 29 60 20 6f 6e 20 74 68 69 73 20 4f 53 50 46 20 6c 69 6e 6b 20 69 6e | Detection)`.on.this.OSPF.link.in |
| 91da0 | 74 65 72 66 61 63 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 65 6e 61 62 6c 65 73 20 3a 72 | terface..This.command.enables.:r |
| 91dc0 | 66 63 3a 60 36 32 33 32 60 20 70 75 72 67 65 20 6f 72 69 67 69 6e 61 74 6f 72 20 69 64 65 6e 74 | fc:`6232`.purge.originator.ident |
| 91de0 | 69 66 69 63 61 74 69 6f 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 65 6e 61 62 6c 65 73 20 | ification..This.command.enables. |
| 91e00 | 3a 72 66 63 3a 60 36 32 33 32 60 20 70 75 72 67 65 20 6f 72 69 67 69 6e 61 74 6f 72 20 69 64 65 | :rfc:`6232`.purge.originator.ide |
| 91e20 | 6e 74 69 66 69 63 61 74 69 6f 6e 2e 20 45 6e 61 62 6c 65 20 70 75 72 67 65 20 6f 72 69 67 69 6e | ntification..Enable.purge.origin |
| 91e40 | 61 74 6f 72 20 69 64 65 6e 74 69 66 69 63 61 74 69 6f 6e 20 28 50 4f 49 29 20 62 79 20 61 64 64 | ator.identification.(POI).by.add |
| 91e60 | 69 6e 67 20 74 68 65 20 74 79 70 65 2c 20 6c 65 6e 67 74 68 20 61 6e 64 20 76 61 6c 75 65 20 28 | ing.the.type,.length.and.value.( |
| 91e80 | 54 4c 56 29 20 77 69 74 68 20 74 68 65 20 49 6e 74 65 72 6d 65 64 69 61 74 65 20 53 79 73 74 65 | TLV).with.the.Intermediate.Syste |
| 91ea0 | 6d 20 28 49 53 29 20 69 64 65 6e 74 69 66 69 63 61 74 69 6f 6e 20 74 6f 20 74 68 65 20 4c 53 50 | m.(IS).identification.to.the.LSP |
| 91ec0 | 73 20 74 68 61 74 20 64 6f 20 6e 6f 74 20 63 6f 6e 74 61 69 6e 20 50 4f 49 20 69 6e 66 6f 72 6d | s.that.do.not.contain.POI.inform |
| 91ee0 | 61 74 69 6f 6e 2e 20 49 66 20 61 6e 20 49 53 20 67 65 6e 65 72 61 74 65 73 20 61 20 70 75 72 67 | ation..If.an.IS.generates.a.purg |
| 91f00 | 65 2c 20 56 79 4f 53 20 61 64 64 73 20 74 68 69 73 20 54 4c 56 20 77 69 74 68 20 74 68 65 20 73 | e,.VyOS.adds.this.TLV.with.the.s |
| 91f20 | 79 73 74 65 6d 20 49 44 20 6f 66 20 74 68 65 20 49 53 20 74 6f 20 74 68 65 20 70 75 72 67 65 2e | ystem.ID.of.the.IS.to.the.purge. |
| 91f40 | 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 65 6e 61 62 6c 65 73 20 49 50 20 66 61 73 74 20 72 65 | .This.command.enables.IP.fast.re |
| 91f60 | 2d 72 6f 75 74 69 6e 67 20 74 68 61 74 20 69 73 20 70 61 72 74 20 6f 66 20 3a 72 66 63 3a 60 35 | -routing.that.is.part.of.:rfc:`5 |
| 91f80 | 32 38 36 60 2e 20 53 70 65 63 69 66 69 63 61 6c 6c 79 20 74 68 69 73 20 69 73 20 61 20 70 72 65 | 286`..Specifically.this.is.a.pre |
| 91fa0 | 66 69 78 20 6c 69 73 74 20 77 68 69 63 68 20 72 65 66 65 72 65 6e 63 65 73 20 61 20 70 72 65 66 | fix.list.which.references.a.pref |
| 91fc0 | 69 78 20 69 6e 20 77 68 69 63 68 20 77 69 6c 6c 20 73 65 6c 65 63 74 20 65 6c 69 67 69 62 6c 65 | ix.in.which.will.select.eligible |
| 91fe0 | 20 50 51 20 6e 6f 64 65 73 20 66 6f 72 20 72 65 6d 6f 74 65 20 4c 46 41 20 62 61 63 6b 75 70 73 | .PQ.nodes.for.remote.LFA.backups |
| 92000 | 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 65 6e 61 62 6c 65 73 20 49 53 2d 49 53 20 6f 6e 20 | ..This.command.enables.IS-IS.on. |
| 92020 | 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 2c 20 61 6e 64 20 61 6c 6c 6f 77 73 20 66 6f 72 20 61 | this.interface,.and.allows.for.a |
| 92040 | 64 6a 61 63 65 6e 63 79 20 74 6f 20 6f 63 63 75 72 2e 20 4e 6f 74 65 20 74 68 61 74 20 74 68 65 | djacency.to.occur..Note.that.the |
| 92060 | 20 6e 61 6d 65 20 6f 66 20 49 53 2d 49 53 20 69 6e 73 74 61 6e 63 65 20 6d 75 73 74 20 62 65 20 | .name.of.IS-IS.instance.must.be. |
| 92080 | 74 68 65 20 73 61 6d 65 20 61 73 20 74 68 65 20 6f 6e 65 20 75 73 65 64 20 74 6f 20 63 6f 6e 66 | the.same.as.the.one.used.to.conf |
| 920a0 | 69 67 75 72 65 20 74 68 65 20 49 53 2d 49 53 20 70 72 6f 63 65 73 73 2e 00 54 68 69 73 20 63 6f | igure.the.IS-IS.process..This.co |
| 920c0 | 6d 6d 61 6e 64 20 65 6e 61 62 6c 65 73 20 4f 70 65 6e 46 61 62 72 69 63 20 69 6e 73 74 61 6e 63 | mmand.enables.OpenFabric.instanc |
| 920e0 | 65 20 77 69 74 68 20 3c 4e 41 4d 45 3e 20 6f 6e 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 2c | e.with.<NAME>.on.this.interface, |
| 92100 | 20 61 6e 64 20 61 6c 6c 6f 77 73 20 66 6f 72 20 61 64 6a 61 63 65 6e 63 79 20 74 6f 20 6f 63 63 | .and.allows.for.adjacency.to.occ |
| 92120 | 75 72 20 66 6f 72 20 61 64 64 72 65 73 73 20 66 61 6d 69 6c 79 20 28 49 50 76 34 20 6f 72 20 49 | ur.for.address.family.(IPv4.or.I |
| 92140 | 50 76 36 20 6f 72 20 62 6f 74 68 29 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 65 6e 61 62 6c | Pv6.or.both)..This.command.enabl |
| 92160 | 65 73 20 52 49 50 20 61 6e 64 20 73 65 74 73 20 74 68 65 20 52 49 50 20 65 6e 61 62 6c 65 20 69 | es.RIP.and.sets.the.RIP.enable.i |
| 92180 | 6e 74 65 72 66 61 63 65 20 62 79 20 4e 45 54 57 4f 52 4b 2e 20 54 68 65 20 69 6e 74 65 72 66 61 | nterface.by.NETWORK..The.interfa |
| 921a0 | 63 65 73 20 77 68 69 63 68 20 68 61 76 65 20 61 64 64 72 65 73 73 65 73 20 6d 61 74 63 68 69 6e | ces.which.have.addresses.matchin |
| 921c0 | 67 20 77 69 74 68 20 4e 45 54 57 4f 52 4b 20 61 72 65 20 65 6e 61 62 6c 65 64 2e 00 54 68 69 73 | g.with.NETWORK.are.enabled..This |
| 921e0 | 20 63 6f 6d 6d 61 6e 64 20 65 6e 61 62 6c 65 73 20 70 6f 69 73 6f 6e 2d 72 65 76 65 72 73 65 20 | .command.enables.poison-reverse. |
| 92200 | 6f 6e 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 2e 20 49 66 20 62 6f 74 68 20 70 6f 69 73 6f 6e | on.the.interface..If.both.poison |
| 92220 | 20 72 65 76 65 72 73 65 20 61 6e 64 20 73 70 6c 69 74 20 68 6f 72 69 7a 6f 6e 20 61 72 65 20 65 | .reverse.and.split.horizon.are.e |
| 92240 | 6e 61 62 6c 65 64 2c 20 74 68 65 6e 20 56 79 4f 53 20 61 64 76 65 72 74 69 73 65 73 20 74 68 65 | nabled,.then.VyOS.advertises.the |
| 92260 | 20 6c 65 61 72 6e 65 64 20 72 6f 75 74 65 73 20 61 73 20 75 6e 72 65 61 63 68 61 62 6c 65 20 6f | .learned.routes.as.unreachable.o |
| 92280 | 76 65 72 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 6f 6e 20 77 68 69 63 68 20 74 68 65 20 72 | ver.the.interface.on.which.the.r |
| 922a0 | 6f 75 74 65 20 77 61 73 20 6c 65 61 72 6e 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 65 | oute.was.learned..This.command.e |
| 922c0 | 6e 61 62 6c 65 73 20 72 6f 75 74 69 6e 67 20 75 73 69 6e 67 20 72 61 64 69 6f 20 66 72 65 71 75 | nables.routing.using.radio.frequ |
| 922e0 | 65 6e 63 79 20 64 69 76 65 72 73 69 74 79 2e 20 54 68 69 73 20 69 73 20 68 69 67 68 6c 79 20 72 | ency.diversity..This.is.highly.r |
| 92300 | 65 63 6f 6d 6d 65 6e 64 65 64 20 69 6e 20 6e 65 74 77 6f 72 6b 73 20 77 69 74 68 20 6d 61 6e 79 | ecommended.in.networks.with.many |
| 92320 | 20 77 69 72 65 6c 65 73 73 20 6e 6f 64 65 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 65 6e | .wireless.nodes..This.command.en |
| 92340 | 61 62 6c 65 73 20 73 65 6e 64 69 6e 67 20 74 69 6d 65 73 74 61 6d 70 73 20 77 69 74 68 20 65 61 | ables.sending.timestamps.with.ea |
| 92360 | 63 68 20 48 65 6c 6c 6f 20 61 6e 64 20 49 48 55 20 6d 65 73 73 61 67 65 20 69 6e 20 6f 72 64 65 | ch.Hello.and.IHU.message.in.orde |
| 92380 | 72 20 74 6f 20 63 6f 6d 70 75 74 65 20 52 54 54 20 76 61 6c 75 65 73 2e 20 49 74 20 69 73 20 72 | r.to.compute.RTT.values..It.is.r |
| 923a0 | 65 63 6f 6d 6d 65 6e 64 65 64 20 74 6f 20 65 6e 61 62 6c 65 20 74 69 6d 65 73 74 61 6d 70 73 20 | ecommended.to.enable.timestamps. |
| 923c0 | 6f 6e 20 74 75 6e 6e 65 6c 20 69 6e 74 65 72 66 61 63 65 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 | on.tunnel.interfaces..This.comma |
| 923e0 | 6e 64 20 65 6e 61 62 6c 65 73 20 73 75 70 70 6f 72 74 20 66 6f 72 20 64 79 6e 61 6d 69 63 20 68 | nd.enables.support.for.dynamic.h |
| 92400 | 6f 73 74 6e 61 6d 65 20 54 4c 56 2e 20 44 79 6e 61 6d 69 63 20 68 6f 73 74 6e 61 6d 65 20 6d 61 | ostname.TLV..Dynamic.hostname.ma |
| 92420 | 70 70 69 6e 67 20 64 65 74 65 72 6d 69 6e 65 64 20 61 73 20 64 65 73 63 72 69 62 65 64 20 69 6e | pping.determined.as.described.in |
| 92440 | 20 3a 72 66 63 3a 60 32 37 36 33 60 2c 20 44 79 6e 61 6d 69 63 20 48 6f 73 74 6e 61 6d 65 20 45 | .:rfc:`2763`,.Dynamic.Hostname.E |
| 92460 | 78 63 68 61 6e 67 65 20 4d 65 63 68 61 6e 69 73 6d 20 66 6f 72 20 49 53 2d 49 53 2e 00 54 68 69 | xchange.Mechanism.for.IS-IS..Thi |
| 92480 | 73 20 63 6f 6d 6d 61 6e 64 20 65 6e 61 62 6c 65 73 20 74 68 65 20 49 50 76 34 20 66 69 72 65 77 | s.command.enables.the.IPv4.firew |
| 924a0 | 61 6c 6c 20 66 6f 72 20 62 72 69 64 67 65 64 20 74 72 61 66 66 69 63 2e 20 49 66 20 74 68 69 73 | all.for.bridged.traffic..If.this |
| 924c0 | 20 6f 70 74 69 6f 6e 73 20 69 73 20 75 73 65 64 2c 20 74 68 65 6e 20 70 61 63 6b 65 74 20 77 69 | .options.is.used,.then.packet.wi |
| 924e0 | 6c 6c 20 61 6c 73 6f 20 62 65 20 70 61 72 73 65 64 20 62 79 20 72 75 6c 65 73 20 64 65 66 69 6e | ll.also.be.parsed.by.rules.defin |
| 92500 | 65 64 20 69 6e 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 2e 2e 2e 60 60 00 | ed.in.``set.firewall.ipv4....``. |
| 92520 | 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 65 6e 61 62 6c 65 73 20 74 68 65 20 49 50 76 36 20 66 69 | This.command.enables.the.IPv6.fi |
| 92540 | 72 65 77 61 6c 6c 20 66 6f 72 20 62 72 69 64 67 65 64 20 74 72 61 66 66 69 63 2e 20 49 66 20 74 | rewall.for.bridged.traffic..If.t |
| 92560 | 68 69 73 20 6f 70 74 69 6f 6e 73 20 69 73 20 75 73 65 64 2c 20 74 68 65 6e 20 70 61 63 6b 65 74 | his.options.is.used,.then.packet |
| 92580 | 20 77 69 6c 6c 20 61 6c 73 6f 20 62 65 20 70 61 72 73 65 64 20 62 79 20 72 75 6c 65 73 20 64 65 | .will.also.be.parsed.by.rules.de |
| 925a0 | 66 69 6e 65 64 20 69 6e 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 2e 2e 2e | fined.in.``set.firewall.ipv6.... |
| 925c0 | 60 60 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 65 6e 61 62 6c 65 73 20 74 68 65 20 4f 52 46 20 | ``.This.command.enables.the.ORF. |
| 925e0 | 63 61 70 61 62 69 6c 69 74 79 20 28 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 35 | capability.(described.in.:rfc:`5 |
| 92600 | 32 39 31 60 29 20 6f 6e 20 74 68 65 20 6c 6f 63 61 6c 20 72 6f 75 74 65 72 2c 20 61 6e 64 20 65 | 291`).on.the.local.router,.and.e |
| 92620 | 6e 61 62 6c 65 73 20 4f 52 46 20 63 61 70 61 62 69 6c 69 74 79 20 61 64 76 65 72 74 69 73 65 6d | nables.ORF.capability.advertisem |
| 92640 | 65 6e 74 20 74 6f 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 42 47 50 20 70 65 65 72 2e 20 54 | ent.to.the.specified.BGP.peer..T |
| 92660 | 68 65 20 3a 63 66 67 63 6d 64 3a 60 72 65 63 65 69 76 65 60 20 6b 65 79 77 6f 72 64 20 63 6f 6e | he.:cfgcmd:`receive`.keyword.con |
| 92680 | 66 69 67 75 72 65 73 20 61 20 72 6f 75 74 65 72 20 74 6f 20 61 64 76 65 72 74 69 73 65 20 4f 52 | figures.a.router.to.advertise.OR |
| 926a0 | 46 20 72 65 63 65 69 76 65 20 63 61 70 61 62 69 6c 69 74 69 65 73 2e 20 54 68 65 20 3a 63 66 67 | F.receive.capabilities..The.:cfg |
| 926c0 | 63 6d 64 3a 60 73 65 6e 64 60 20 6b 65 79 77 6f 72 64 20 63 6f 6e 66 69 67 75 72 65 73 20 61 20 | cmd:`send`.keyword.configures.a. |
| 926e0 | 72 6f 75 74 65 72 20 74 6f 20 61 64 76 65 72 74 69 73 65 20 4f 52 46 20 73 65 6e 64 20 63 61 70 | router.to.advertise.ORF.send.cap |
| 92700 | 61 62 69 6c 69 74 69 65 73 2e 20 54 6f 20 61 64 76 65 72 74 69 73 65 20 61 20 66 69 6c 74 65 72 | abilities..To.advertise.a.filter |
| 92720 | 20 66 72 6f 6d 20 61 20 73 65 6e 64 65 72 2c 20 79 6f 75 20 6d 75 73 74 20 63 72 65 61 74 65 20 | .from.a.sender,.you.must.create. |
| 92740 | 61 6e 20 49 50 20 70 72 65 66 69 78 20 6c 69 73 74 20 66 6f 72 20 74 68 65 20 73 70 65 63 69 66 | an.IP.prefix.list.for.the.specif |
| 92760 | 69 65 64 20 42 47 50 20 70 65 65 72 20 61 70 70 6c 69 65 64 20 69 6e 20 69 6e 62 6f 75 6e 64 20 | ied.BGP.peer.applied.in.inbound. |
| 92780 | 64 65 72 65 63 74 69 6f 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 65 6e 61 62 6c 65 73 20 | derection..This.command.enables. |
| 927a0 | 74 68 65 20 70 61 73 73 69 76 65 20 6d 6f 64 65 20 66 6f 72 20 74 68 69 73 20 69 6e 74 65 72 66 | the.passive.mode.for.this.interf |
| 927c0 | 61 63 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 65 6e 66 6f 72 63 65 73 20 47 65 6e 65 72 | ace..This.command.enforces.Gener |
| 927e0 | 61 6c 69 7a 65 64 20 54 54 4c 20 53 65 63 75 72 69 74 79 20 4d 65 63 68 61 6e 69 73 6d 20 28 47 | alized.TTL.Security.Mechanism.(G |
| 92800 | 54 53 4d 29 2c 20 61 73 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 3a 72 66 63 3a 60 35 30 38 32 | TSM),.as.specified.in.:rfc:`5082 |
| 92820 | 60 2e 20 57 69 74 68 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 2c 20 6f 6e 6c 79 20 6e 65 69 67 68 | `..With.this.command,.only.neigh |
| 92840 | 62 6f 72 73 20 74 68 61 74 20 61 72 65 20 73 70 65 63 69 66 69 65 64 20 6e 75 6d 62 65 72 20 6f | bors.that.are.specified.number.o |
| 92860 | 66 20 68 6f 70 73 20 61 77 61 79 20 77 69 6c 6c 20 62 65 20 61 6c 6c 6f 77 65 64 20 74 6f 20 62 | f.hops.away.will.be.allowed.to.b |
| 92880 | 65 63 6f 6d 65 20 6e 65 69 67 68 62 6f 72 73 2e 20 54 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 68 | ecome.neighbors..The.number.of.h |
| 928a0 | 6f 70 73 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 32 35 34 2e 20 54 68 69 73 20 63 6f 6d 6d | ops.range.is.1.to.254..This.comm |
| 928c0 | 61 6e 64 20 69 73 20 6d 75 74 75 61 6c 6c 79 20 65 78 63 6c 75 73 69 76 65 20 77 69 74 68 20 3a | and.is.mutually.exclusive.with.: |
| 928e0 | 63 66 67 63 6d 64 3a 60 65 62 67 70 2d 6d 75 6c 74 69 68 6f 70 60 2e 00 54 68 69 73 20 63 6f 6d | cfgcmd:`ebgp-multihop`..This.com |
| 92900 | 6d 61 6e 64 20 66 6f 72 63 65 73 20 73 74 72 69 63 74 6c 79 20 63 6f 6d 70 61 72 65 20 72 65 6d | mand.forces.strictly.compare.rem |
| 92920 | 6f 74 65 20 63 61 70 61 62 69 6c 69 74 69 65 73 20 61 6e 64 20 6c 6f 63 61 6c 20 63 61 70 61 62 | ote.capabilities.and.local.capab |
| 92940 | 69 6c 69 74 69 65 73 2e 20 49 66 20 63 61 70 61 62 69 6c 69 74 69 65 73 20 61 72 65 20 64 69 66 | ilities..If.capabilities.are.dif |
| 92960 | 66 65 72 65 6e 74 2c 20 73 65 6e 64 20 55 6e 73 75 70 70 6f 72 74 65 64 20 43 61 70 61 62 69 6c | ferent,.send.Unsupported.Capabil |
| 92980 | 69 74 79 20 65 72 72 6f 72 20 74 68 65 6e 20 72 65 73 65 74 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e | ity.error.then.reset.connection. |
| 929a0 | 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 66 6f 72 63 65 73 20 74 68 65 20 42 47 50 20 73 70 65 | .This.command.forces.the.BGP.spe |
| 929c0 | 61 6b 65 72 20 74 6f 20 72 65 70 6f 72 74 20 69 74 73 65 6c 66 20 61 73 20 74 68 65 20 6e 65 78 | aker.to.report.itself.as.the.nex |
| 929e0 | 74 20 68 6f 70 20 66 6f 72 20 61 6e 20 61 64 76 65 72 74 69 73 65 64 20 72 6f 75 74 65 20 69 74 | t.hop.for.an.advertised.route.it |
| 92a00 | 20 61 64 76 65 72 74 69 73 65 64 20 74 6f 20 61 20 6e 65 69 67 68 62 6f 72 2e 00 54 68 69 73 20 | .advertised.to.a.neighbor..This. |
| 92a20 | 63 6f 6d 6d 61 6e 64 20 67 65 6e 65 72 61 74 65 20 61 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 | command.generate.a.default.route |
| 92a40 | 20 69 6e 74 6f 20 74 68 65 20 52 49 50 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 67 69 76 65 | .into.the.RIP..This.command.give |
| 92a60 | 73 20 61 20 62 72 69 65 66 20 73 74 61 74 75 73 20 6f 76 65 72 76 69 65 77 20 6f 66 20 61 20 73 | s.a.brief.status.overview.of.a.s |
| 92a80 | 70 65 63 69 66 69 65 64 20 77 69 72 65 6c 65 73 73 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 65 | pecified.wireless.interface..The |
| 92aa0 | 20 77 69 72 65 6c 65 73 73 20 69 6e 74 65 72 66 61 63 65 20 69 64 65 6e 74 69 66 69 65 72 20 63 | .wireless.interface.identifier.c |
| 92ac0 | 61 6e 20 72 61 6e 67 65 20 66 72 6f 6d 20 77 6c 61 6e 30 20 74 6f 20 77 6c 61 6e 39 39 39 2e 00 | an.range.from.wlan0.to.wlan999.. |
| 92ae0 | 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 67 6f 65 73 20 68 61 6e 64 20 69 6e 20 68 61 6e 64 20 77 | This.command.goes.hand.in.hand.w |
| 92b00 | 69 74 68 20 74 68 65 20 6c 69 73 74 65 6e 20 72 61 6e 67 65 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 | ith.the.listen.range.command.to. |
| 92b20 | 6c 69 6d 69 74 20 74 68 65 20 61 6d 6f 75 6e 74 20 6f 66 20 42 47 50 20 6e 65 69 67 68 62 6f 72 | limit.the.amount.of.BGP.neighbor |
| 92b40 | 73 20 74 68 61 74 20 61 72 65 20 61 6c 6c 6f 77 65 64 20 74 6f 20 63 6f 6e 6e 65 63 74 20 74 6f | s.that.are.allowed.to.connect.to |
| 92b60 | 20 74 68 65 20 6c 6f 63 61 6c 20 72 6f 75 74 65 72 2e 20 54 68 65 20 6c 69 6d 69 74 20 72 61 6e | .the.local.router..The.limit.ran |
| 92b80 | 67 65 20 69 73 20 31 20 74 6f 20 35 30 30 30 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 67 6f | ge.is.1.to.5000..This.command.go |
| 92ba0 | 74 20 61 64 64 65 64 20 69 6e 20 56 79 4f 53 20 31 2e 34 20 61 6e 64 20 69 6e 76 65 72 74 73 20 | t.added.in.VyOS.1.4.and.inverts. |
| 92bc0 | 74 68 65 20 6c 6f 67 69 63 20 66 72 6f 6d 20 74 68 65 20 6f 6c 64 20 60 60 64 65 66 61 75 6c 74 | the.logic.from.the.old.``default |
| 92be0 | 2d 72 6f 75 74 65 60 60 20 43 4c 49 20 6f 70 74 69 6f 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e | -route``.CLI.option..This.comman |
| 92c00 | 64 20 69 6e 73 74 65 61 64 20 6f 66 20 73 75 6d 6d 61 72 69 7a 69 6e 67 20 69 6e 74 72 61 20 61 | d.instead.of.summarizing.intra.a |
| 92c20 | 72 65 61 20 70 61 74 68 73 20 66 69 6c 74 65 72 20 74 68 65 6d 20 2d 20 69 2e 65 2e 20 69 6e 74 | rea.paths.filter.them.-.i.e..int |
| 92c40 | 72 61 20 61 72 65 61 20 70 61 74 68 73 20 66 72 6f 6d 20 74 68 69 73 20 72 61 6e 67 65 20 61 72 | ra.area.paths.from.this.range.ar |
| 92c60 | 65 20 6e 6f 74 20 61 64 76 65 72 74 69 73 65 64 20 69 6e 74 6f 20 6f 74 68 65 72 20 61 72 65 61 | e.not.advertised.into.other.area |
| 92c80 | 73 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 6d 61 6b 65 73 20 73 65 6e 73 65 20 69 6e 20 41 | s..This.command.makes.sense.in.A |
| 92ca0 | 42 52 20 6f 6e 6c 79 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 61 6c 73 6f 20 75 73 | BR.only..This.command.is.also.us |
| 92cc0 | 65 64 20 74 6f 20 65 6e 61 62 6c 65 20 74 68 65 20 4f 53 50 46 20 70 72 6f 63 65 73 73 2e 20 54 | ed.to.enable.the.OSPF.process..T |
| 92ce0 | 68 65 20 61 72 65 61 20 6e 75 6d 62 65 72 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 20 | he.area.number.can.be.specified. |
| 92d00 | 69 6e 20 64 65 63 69 6d 61 6c 20 6e 6f 74 61 74 69 6f 6e 20 69 6e 20 74 68 65 20 72 61 6e 67 65 | in.decimal.notation.in.the.range |
| 92d20 | 20 66 72 6f 6d 20 30 20 74 6f 20 34 32 39 34 39 36 37 32 39 35 2e 20 4f 72 20 69 74 20 63 61 6e | .from.0.to.4294967295..Or.it.can |
| 92d40 | 20 62 65 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 64 6f 74 74 65 64 20 64 65 63 69 6d 61 6c 20 | .be.specified.in.dotted.decimal. |
| 92d60 | 6e 6f 74 61 74 69 6f 6e 20 73 69 6d 69 6c 61 72 20 74 6f 20 69 70 20 61 64 64 72 65 73 73 2e 00 | notation.similar.to.ip.address.. |
| 92d80 | 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 6f 6e 6c 79 20 61 6c 6c 6f 77 65 64 20 66 6f 72 | This.command.is.only.allowed.for |
| 92da0 | 20 65 42 47 50 20 70 65 65 72 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 6f 6e 6c | .eBGP.peers..This.command.is.onl |
| 92dc0 | 79 20 61 6c 6c 6f 77 65 64 20 66 6f 72 20 65 42 47 50 20 70 65 65 72 73 2e 20 49 74 20 69 73 20 | y.allowed.for.eBGP.peers..It.is. |
| 92de0 | 6e 6f 74 20 61 70 70 6c 69 63 61 62 6c 65 20 66 6f 72 20 70 65 65 72 20 67 72 6f 75 70 73 2e 00 | not.applicable.for.peer.groups.. |
| 92e00 | 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 6f 6e 6c 79 20 75 73 65 66 75 6c 20 61 74 20 73 | This.command.is.only.useful.at.s |
| 92e20 | 63 61 6c 65 20 77 68 65 6e 20 79 6f 75 20 63 61 6e 20 70 6f 73 73 69 62 6c 79 20 68 61 76 65 20 | cale.when.you.can.possibly.have. |
| 92e40 | 61 20 6c 61 72 67 65 20 6e 75 6d 62 65 72 20 6f 66 20 50 49 4d 20 63 6f 6e 74 72 6f 6c 20 70 61 | a.large.number.of.PIM.control.pa |
| 92e60 | 63 6b 65 74 73 20 66 6c 6f 77 69 6e 67 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 73 | ckets.flowing..This.command.is.s |
| 92e80 | 70 65 63 69 66 69 63 20 74 6f 20 46 52 52 20 61 6e 64 20 56 79 4f 53 2e 20 54 68 65 20 72 6f 75 | pecific.to.FRR.and.VyOS..The.rou |
| 92ea0 | 74 65 20 63 6f 6d 6d 61 6e 64 20 6d 61 6b 65 73 20 61 20 73 74 61 74 69 63 20 72 6f 75 74 65 20 | te.command.makes.a.static.route. |
| 92ec0 | 6f 6e 6c 79 20 69 6e 73 69 64 65 20 52 49 50 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 68 | only.inside.RIP..This.command.sh |
| 92ee0 | 6f 75 6c 64 20 62 65 20 75 73 65 64 20 6f 6e 6c 79 20 62 79 20 61 64 76 61 6e 63 65 64 20 75 73 | ould.be.used.only.by.advanced.us |
| 92f00 | 65 72 73 20 77 68 6f 20 61 72 65 20 70 61 72 74 69 63 75 6c 61 72 6c 79 20 6b 6e 6f 77 6c 65 64 | ers.who.are.particularly.knowled |
| 92f20 | 67 65 61 62 6c 65 20 61 62 6f 75 74 20 74 68 65 20 52 49 50 20 70 72 6f 74 6f 63 6f 6c 2e 20 49 | geable.about.the.RIP.protocol..I |
| 92f40 | 6e 20 6d 6f 73 74 20 63 61 73 65 73 2c 20 77 65 20 72 65 63 6f 6d 6d 65 6e 64 20 63 72 65 61 74 | n.most.cases,.we.recommend.creat |
| 92f60 | 69 6e 67 20 61 20 73 74 61 74 69 63 20 72 6f 75 74 65 20 69 6e 20 56 79 4f 53 20 61 6e 64 20 72 | ing.a.static.route.in.VyOS.and.r |
| 92f80 | 65 64 69 73 74 72 69 62 75 74 69 6e 67 20 69 74 20 69 6e 20 52 49 50 20 75 73 69 6e 67 20 3a 63 | edistributing.it.in.RIP.using.:c |
| 92fa0 | 66 67 63 6d 64 3a 60 72 65 64 69 73 74 72 69 62 75 74 65 20 73 74 61 74 69 63 60 2e 00 54 68 69 | fgcmd:`redistribute.static`..Thi |
| 92fc0 | 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 75 73 65 64 20 66 6f 72 20 61 64 76 65 72 74 69 73 69 6e | s.command.is.used.for.advertisin |
| 92fe0 | 67 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 6e 65 74 77 6f 72 6b 73 2e 00 54 68 69 73 20 63 6f | g.IPv4.or.IPv6.networks..This.co |
| 93000 | 6d 6d 61 6e 64 20 69 73 20 75 73 65 64 20 74 6f 20 72 65 74 72 69 65 76 65 20 69 6e 66 6f 72 6d | mmand.is.used.to.retrieve.inform |
| 93020 | 61 74 69 6f 6e 20 61 62 6f 75 74 20 57 41 50 20 77 69 74 68 69 6e 20 74 68 65 20 72 61 6e 67 65 | ation.about.WAP.within.the.range |
| 93040 | 20 6f 66 20 79 6f 75 72 20 77 69 72 65 6c 65 73 73 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 69 | .of.your.wireless.interface..Thi |
| 93060 | 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 75 73 65 66 75 6c 20 6f 6e 20 77 69 72 65 6c 65 73 73 20 | s.command.is.useful.on.wireless. |
| 93080 | 69 6e 74 65 72 66 61 63 65 73 20 63 6f 6e 66 69 67 75 72 65 64 20 69 6e 20 73 74 61 74 69 6f 6e | interfaces.configured.in.station |
| 930a0 | 20 6d 6f 64 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 75 73 65 66 75 6c 20 69 66 | .mode..This.command.is.useful.if |
| 930c0 | 20 6f 6e 65 20 64 65 73 69 72 65 73 20 74 6f 20 6c 6f 6f 73 65 6e 20 74 68 65 20 72 65 71 75 69 | .one.desires.to.loosen.the.requi |
| 930e0 | 72 65 6d 65 6e 74 20 66 6f 72 20 42 47 50 20 74 6f 20 68 61 76 65 20 73 74 72 69 63 74 6c 79 20 | rement.for.BGP.to.have.strictly. |
| 93100 | 64 65 66 69 6e 65 64 20 6e 65 69 67 68 62 6f 72 73 2e 20 53 70 65 63 69 66 69 63 61 6c 6c 79 20 | defined.neighbors..Specifically. |
| 93120 | 77 68 61 74 20 69 73 20 61 6c 6c 6f 77 65 64 20 69 73 20 66 6f 72 20 74 68 65 20 6c 6f 63 61 6c | what.is.allowed.is.for.the.local |
| 93140 | 20 72 6f 75 74 65 72 20 74 6f 20 6c 69 73 74 65 6e 20 74 6f 20 61 20 72 61 6e 67 65 20 6f 66 20 | .router.to.listen.to.a.range.of. |
| 93160 | 49 50 76 34 20 6f 72 20 49 50 76 36 20 61 64 64 72 65 73 73 65 73 20 64 65 66 69 6e 65 64 20 62 | IPv4.or.IPv6.addresses.defined.b |
| 93180 | 79 20 61 20 70 72 65 66 69 78 20 61 6e 64 20 74 6f 20 61 63 63 65 70 74 20 42 47 50 20 6f 70 65 | y.a.prefix.and.to.accept.BGP.ope |
| 931a0 | 6e 20 6d 65 73 73 61 67 65 73 2e 20 57 68 65 6e 20 61 20 54 43 50 20 63 6f 6e 6e 65 63 74 69 6f | n.messages..When.a.TCP.connectio |
| 931c0 | 6e 20 28 61 6e 64 20 73 75 62 73 65 71 75 65 6e 74 6c 79 20 61 20 42 47 50 20 6f 70 65 6e 20 6d | n.(and.subsequently.a.BGP.open.m |
| 931e0 | 65 73 73 61 67 65 29 20 66 72 6f 6d 20 77 69 74 68 69 6e 20 74 68 69 73 20 72 61 6e 67 65 20 74 | essage).from.within.this.range.t |
| 93200 | 72 69 65 73 20 74 6f 20 63 6f 6e 6e 65 63 74 20 74 68 65 20 6c 6f 63 61 6c 20 72 6f 75 74 65 72 | ries.to.connect.the.local.router |
| 93220 | 20 74 68 65 6e 20 74 68 65 20 6c 6f 63 61 6c 20 72 6f 75 74 65 72 20 77 69 6c 6c 20 72 65 73 70 | .then.the.local.router.will.resp |
| 93240 | 6f 6e 64 20 61 6e 64 20 63 6f 6e 6e 65 63 74 20 77 69 74 68 20 74 68 65 20 70 61 72 61 6d 65 74 | ond.and.connect.with.the.paramet |
| 93260 | 65 72 73 20 74 68 61 74 20 61 72 65 20 64 65 66 69 6e 65 64 20 77 69 74 68 69 6e 20 74 68 65 20 | ers.that.are.defined.within.the. |
| 93280 | 70 65 65 72 20 67 72 6f 75 70 2e 20 4f 6e 65 20 6d 75 73 74 20 64 65 66 69 6e 65 20 61 20 70 65 | peer.group..One.must.define.a.pe |
| 932a0 | 65 72 2d 67 72 6f 75 70 20 66 6f 72 20 65 61 63 68 20 72 61 6e 67 65 20 74 68 61 74 20 69 73 20 | er-group.for.each.range.that.is. |
| 932c0 | 6c 69 73 74 65 64 2e 20 49 66 20 6e 6f 20 70 65 65 72 2d 67 72 6f 75 70 20 69 73 20 64 65 66 69 | listed..If.no.peer-group.is.defi |
| 932e0 | 6e 65 64 20 74 68 65 6e 20 61 6e 20 65 72 72 6f 72 20 77 69 6c 6c 20 6b 65 65 70 20 79 6f 75 20 | ned.then.an.error.will.keep.you. |
| 93300 | 66 72 6f 6d 20 63 6f 6d 6d 69 74 74 69 6e 67 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f | from.committing.the.configuratio |
| 93320 | 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 6d 6f 64 69 66 69 65 73 20 74 68 65 20 64 65 66 | n..This.command.modifies.the.def |
| 93340 | 61 75 6c 74 20 6d 65 74 72 69 63 20 28 68 6f 70 20 63 6f 75 6e 74 29 20 76 61 6c 75 65 20 66 6f | ault.metric.(hop.count).value.fo |
| 93360 | 72 20 72 65 64 69 73 74 72 69 62 75 74 65 64 20 72 6f 75 74 65 73 2e 20 54 68 65 20 6d 65 74 72 | r.redistributed.routes..The.metr |
| 93380 | 69 63 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 31 36 2e 20 54 68 65 20 64 65 66 61 75 6c 74 | ic.range.is.1.to.16..The.default |
| 933a0 | 20 76 61 6c 75 65 20 69 73 20 31 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 6f 65 73 20 6e | .value.is.1..This.command.does.n |
| 933c0 | 6f 74 20 61 66 66 65 63 74 20 63 6f 6e 6e 65 63 74 65 64 20 72 6f 75 74 65 20 65 76 65 6e 20 69 | ot.affect.connected.route.even.i |
| 933e0 | 66 20 69 74 20 69 73 20 72 65 64 69 73 74 72 69 62 75 74 65 64 20 62 79 20 3a 63 66 67 63 6d 64 | f.it.is.redistributed.by.:cfgcmd |
| 93400 | 3a 60 72 65 64 69 73 74 72 69 62 75 74 65 20 63 6f 6e 6e 65 63 74 65 64 60 2e 20 54 6f 20 6d 6f | :`redistribute.connected`..To.mo |
| 93420 | 64 69 66 79 20 63 6f 6e 6e 65 63 74 65 64 20 72 6f 75 74 65 73 20 6d 65 74 72 69 63 20 76 61 6c | dify.connected.routes.metric.val |
| 93440 | 75 65 2c 20 70 6c 65 61 73 65 20 75 73 65 20 3a 63 66 67 63 6d 64 3a 60 72 65 64 69 73 74 72 69 | ue,.please.use.:cfgcmd:`redistri |
| 93460 | 62 75 74 65 20 63 6f 6e 6e 65 63 74 65 64 20 6d 65 74 72 69 63 60 2e 00 54 68 69 73 20 63 6f 6d | bute.connected.metric`..This.com |
| 93480 | 6d 61 6e 64 20 6f 76 65 72 72 69 64 65 20 41 53 20 6e 75 6d 62 65 72 20 6f 66 20 74 68 65 20 6f | mand.override.AS.number.of.the.o |
| 934a0 | 72 69 67 69 6e 61 74 69 6e 67 20 72 6f 75 74 65 72 20 77 69 74 68 20 74 68 65 20 6c 6f 63 61 6c | riginating.router.with.the.local |
| 934c0 | 20 41 53 20 6e 75 6d 62 65 72 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 70 72 65 76 65 6e 74 | .AS.number..This.command.prevent |
| 934e0 | 73 20 66 72 6f 6d 20 73 65 6e 64 69 6e 67 20 62 61 63 6b 20 70 72 65 66 69 78 65 73 20 6c 65 61 | s.from.sending.back.prefixes.lea |
| 93500 | 72 6e 65 64 20 66 72 6f 6d 20 74 68 65 20 6e 65 69 67 68 62 6f 72 2e 00 54 68 69 73 20 63 6f 6d | rned.from.the.neighbor..This.com |
| 93520 | 6d 61 6e 64 20 70 72 6f 76 69 64 65 73 20 74 6f 20 63 6f 6d 70 61 72 65 20 64 69 66 66 65 72 65 | mand.provides.to.compare.differe |
| 93540 | 6e 74 20 4d 45 44 20 76 61 6c 75 65 73 20 74 68 61 74 20 61 64 76 65 72 74 69 73 65 64 20 62 79 | nt.MED.values.that.advertised.by |
| 93560 | 20 6e 65 69 67 68 62 6f 75 72 73 20 69 6e 20 74 68 65 20 73 61 6d 65 20 41 53 20 66 6f 72 20 72 | .neighbours.in.the.same.AS.for.r |
| 93580 | 6f 75 74 65 73 20 73 65 6c 65 63 74 69 6f 6e 2e 20 57 68 65 6e 20 74 68 69 73 20 63 6f 6d 6d 61 | outes.selection..When.this.comma |
| 935a0 | 6e 64 20 69 73 20 65 6e 61 62 6c 65 64 2c 20 72 6f 75 74 65 73 20 66 72 6f 6d 20 74 68 65 20 73 | nd.is.enabled,.routes.from.the.s |
| 935c0 | 61 6d 65 20 61 75 74 6f 6e 6f 6d 6f 75 73 20 73 79 73 74 65 6d 20 61 72 65 20 67 72 6f 75 70 65 | ame.autonomous.system.are.groupe |
| 935e0 | 64 20 74 6f 67 65 74 68 65 72 2c 20 61 6e 64 20 74 68 65 20 62 65 73 74 20 65 6e 74 72 69 65 73 | d.together,.and.the.best.entries |
| 93600 | 20 6f 66 20 65 61 63 68 20 67 72 6f 75 70 20 61 72 65 20 63 6f 6d 70 61 72 65 64 2e 00 54 68 69 | .of.each.group.are.compared..Thi |
| 93620 | 73 20 63 6f 6d 6d 61 6e 64 20 70 72 6f 76 69 64 65 73 20 74 6f 20 63 6f 6d 70 61 72 65 20 74 68 | s.command.provides.to.compare.th |
| 93640 | 65 20 4d 45 44 20 6f 6e 20 72 6f 75 74 65 73 2c 20 65 76 65 6e 20 77 68 65 6e 20 74 68 65 79 20 | e.MED.on.routes,.even.when.they. |
| 93660 | 77 65 72 65 20 72 65 63 65 69 76 65 64 20 66 72 6f 6d 20 64 69 66 66 65 72 65 6e 74 20 6e 65 69 | were.received.from.different.nei |
| 93680 | 67 68 62 6f 75 72 69 6e 67 20 41 53 65 73 2e 20 53 65 74 74 69 6e 67 20 74 68 69 73 20 6f 70 74 | ghbouring.ASes..Setting.this.opt |
| 936a0 | 69 6f 6e 20 6d 61 6b 65 73 20 74 68 65 20 6f 72 64 65 72 20 6f 66 20 70 72 65 66 65 72 65 6e 63 | ion.makes.the.order.of.preferenc |
| 936c0 | 65 20 6f 66 20 72 6f 75 74 65 73 20 6d 6f 72 65 20 64 65 66 69 6e 65 64 2c 20 61 6e 64 20 73 68 | e.of.routes.more.defined,.and.sh |
| 936e0 | 6f 75 6c 64 20 65 6c 69 6d 69 6e 61 74 65 20 4d 45 44 20 69 6e 64 75 63 65 64 20 6f 73 63 69 6c | ould.eliminate.MED.induced.oscil |
| 93700 | 6c 61 74 69 6f 6e 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 72 65 64 69 73 74 72 69 62 75 | lations..This.command.redistribu |
| 93720 | 74 65 73 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 72 6f 6d 20 74 68 65 | tes.routing.information.from.the |
| 93740 | 20 67 69 76 65 6e 20 72 6f 75 74 65 20 73 6f 75 72 63 65 20 69 6e 74 6f 20 74 68 65 20 49 53 49 | .given.route.source.into.the.ISI |
| 93760 | 53 20 64 61 74 61 62 61 73 65 20 61 73 20 4c 65 76 65 6c 2d 31 2e 20 54 68 65 72 65 20 61 72 65 | S.database.as.Level-1..There.are |
| 93780 | 20 73 69 78 20 6d 6f 64 65 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 72 6f 75 74 65 20 73 | .six.modes.available.for.route.s |
| 937a0 | 6f 75 72 63 65 3a 20 62 67 70 2c 20 63 6f 6e 6e 65 63 74 65 64 2c 20 6b 65 72 6e 65 6c 2c 20 6f | ource:.bgp,.connected,.kernel,.o |
| 937c0 | 73 70 66 2c 20 72 69 70 2c 20 73 74 61 74 69 63 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 72 | spf,.rip,.static..This.command.r |
| 937e0 | 65 64 69 73 74 72 69 62 75 74 65 73 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e | edistributes.routing.information |
| 93800 | 20 66 72 6f 6d 20 74 68 65 20 67 69 76 65 6e 20 72 6f 75 74 65 20 73 6f 75 72 63 65 20 69 6e 74 | .from.the.given.route.source.int |
| 93820 | 6f 20 74 68 65 20 49 53 49 53 20 64 61 74 61 62 61 73 65 20 61 73 20 4c 65 76 65 6c 2d 32 2e 20 | o.the.ISIS.database.as.Level-2.. |
| 93840 | 54 68 65 72 65 20 61 72 65 20 73 69 78 20 6d 6f 64 65 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f | There.are.six.modes.available.fo |
| 93860 | 72 20 72 6f 75 74 65 20 73 6f 75 72 63 65 3a 20 62 67 70 2c 20 63 6f 6e 6e 65 63 74 65 64 2c 20 | r.route.source:.bgp,.connected,. |
| 93880 | 6b 65 72 6e 65 6c 2c 20 6f 73 70 66 2c 20 72 69 70 2c 20 73 74 61 74 69 63 2e 00 54 68 69 73 20 | kernel,.ospf,.rip,.static..This. |
| 938a0 | 63 6f 6d 6d 61 6e 64 20 72 65 64 69 73 74 72 69 62 75 74 65 73 20 72 6f 75 74 69 6e 67 20 69 6e | command.redistributes.routing.in |
| 938c0 | 66 6f 72 6d 61 74 69 6f 6e 20 66 72 6f 6d 20 74 68 65 20 67 69 76 65 6e 20 72 6f 75 74 65 20 73 | formation.from.the.given.route.s |
| 938e0 | 6f 75 72 63 65 20 69 6e 74 6f 20 74 68 65 20 52 49 50 20 74 61 62 6c 65 73 2e 20 54 68 65 72 65 | ource.into.the.RIP.tables..There |
| 93900 | 20 61 72 65 20 66 69 76 65 20 6d 6f 64 65 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 72 6f | .are.five.modes.available.for.ro |
| 93920 | 75 74 65 20 73 6f 75 72 63 65 3a 20 62 67 70 2c 20 63 6f 6e 6e 65 63 74 65 64 2c 20 6b 65 72 6e | ute.source:.bgp,.connected,.kern |
| 93940 | 65 6c 2c 20 6f 73 70 66 2c 20 73 74 61 74 69 63 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 72 | el,.ospf,.static..This.command.r |
| 93960 | 65 64 69 73 74 72 69 62 75 74 65 73 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e | edistributes.routing.information |
| 93980 | 20 66 72 6f 6d 20 74 68 65 20 67 69 76 65 6e 20 72 6f 75 74 65 20 73 6f 75 72 63 65 20 74 6f 20 | .from.the.given.route.source.to. |
| 939a0 | 74 68 65 20 42 47 50 20 70 72 6f 63 65 73 73 2e 20 54 68 65 72 65 20 61 72 65 20 73 69 78 20 6d | the.BGP.process..There.are.six.m |
| 939c0 | 6f 64 65 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 72 6f 75 74 65 20 73 6f 75 72 63 65 3a | odes.available.for.route.source: |
| 939e0 | 20 63 6f 6e 6e 65 63 74 65 64 2c 20 6b 65 72 6e 65 6c 2c 20 6f 73 70 66 2c 20 72 69 70 2c 20 73 | .connected,.kernel,.ospf,.rip,.s |
| 93a00 | 74 61 74 69 63 2c 20 74 61 62 6c 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 72 65 64 69 73 | tatic,.table..This.command.redis |
| 93a20 | 74 72 69 62 75 74 65 73 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 72 6f | tributes.routing.information.fro |
| 93a40 | 6d 20 74 68 65 20 67 69 76 65 6e 20 72 6f 75 74 65 20 73 6f 75 72 63 65 20 74 6f 20 74 68 65 20 | m.the.given.route.source.to.the. |
| 93a60 | 42 61 62 65 6c 20 70 72 6f 63 65 73 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 72 65 64 69 | Babel.process..This.command.redi |
| 93a80 | 73 74 72 69 62 75 74 65 73 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 72 | stributes.routing.information.fr |
| 93aa0 | 6f 6d 20 74 68 65 20 67 69 76 65 6e 20 72 6f 75 74 65 20 73 6f 75 72 63 65 20 74 6f 20 74 68 65 | om.the.given.route.source.to.the |
| 93ac0 | 20 4f 53 50 46 20 70 72 6f 63 65 73 73 2e 20 54 68 65 72 65 20 61 72 65 20 66 69 76 65 20 6d 6f | .OSPF.process..There.are.five.mo |
| 93ae0 | 64 65 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 72 6f 75 74 65 20 73 6f 75 72 63 65 3a 20 | des.available.for.route.source:. |
| 93b00 | 62 67 70 2c 20 63 6f 6e 6e 65 63 74 65 64 2c 20 6b 65 72 6e 65 6c 2c 20 72 69 70 2c 20 73 74 61 | bgp,.connected,.kernel,.rip,.sta |
| 93b20 | 74 69 63 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 72 65 64 69 73 74 72 69 62 75 74 65 73 20 | tic..This.command.redistributes. |
| 93b40 | 72 6f 75 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 72 6f 6d 20 74 68 65 20 67 69 76 | routing.information.from.the.giv |
| 93b60 | 65 6e 20 72 6f 75 74 65 20 73 6f 75 72 63 65 20 74 6f 20 74 68 65 20 4f 53 50 46 76 33 20 70 72 | en.route.source.to.the.OSPFv3.pr |
| 93b80 | 6f 63 65 73 73 2e 20 54 68 65 72 65 20 61 72 65 20 66 69 76 65 20 6d 6f 64 65 73 20 61 76 61 69 | ocess..There.are.five.modes.avai |
| 93ba0 | 6c 61 62 6c 65 20 66 6f 72 20 72 6f 75 74 65 20 73 6f 75 72 63 65 3a 20 62 67 70 2c 20 63 6f 6e | lable.for.route.source:.bgp,.con |
| 93bc0 | 6e 65 63 74 65 64 2c 20 6b 65 72 6e 65 6c 2c 20 72 69 70 6e 67 2c 20 73 74 61 74 69 63 2e 00 54 | nected,.kernel,.ripng,.static..T |
| 93be0 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 72 65 6d 6f 76 65 73 20 74 68 65 20 70 72 69 76 61 74 65 20 | his.command.removes.the.private. |
| 93c00 | 41 53 4e 20 6f 66 20 72 6f 75 74 65 73 20 74 68 61 74 20 61 72 65 20 61 64 76 65 72 74 69 73 65 | ASN.of.routes.that.are.advertise |
| 93c20 | 64 20 74 6f 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 70 65 65 72 2e 20 49 74 20 72 65 6d | d.to.the.configured.peer..It.rem |
| 93c40 | 6f 76 65 73 20 6f 6e 6c 79 20 70 72 69 76 61 74 65 20 41 53 4e 73 20 6f 6e 20 72 6f 75 74 65 73 | oves.only.private.ASNs.on.routes |
| 93c60 | 20 61 64 76 65 72 74 69 73 65 64 20 74 6f 20 45 42 47 50 20 70 65 65 72 73 2e 00 54 68 69 73 20 | .advertised.to.EBGP.peers..This. |
| 93c80 | 63 6f 6d 6d 61 6e 64 20 72 65 73 65 74 73 20 42 47 50 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 74 | command.resets.BGP.connections.t |
| 93ca0 | 6f 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 6e 65 69 67 68 62 6f 72 20 49 50 20 61 64 64 72 | o.the.specified.neighbor.IP.addr |
| 93cc0 | 65 73 73 2e 20 57 69 74 68 20 61 72 67 75 6d 65 6e 74 20 3a 63 66 67 63 6d 64 3a 60 73 6f 66 74 | ess..With.argument.:cfgcmd:`soft |
| 93ce0 | 60 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 6e 69 74 69 61 74 65 73 20 61 20 73 6f 66 74 20 | `.this.command.initiates.a.soft. |
| 93d00 | 72 65 73 65 74 2e 20 49 66 20 79 6f 75 20 64 6f 20 6e 6f 74 20 73 70 65 63 69 66 79 20 74 68 65 | reset..If.you.do.not.specify.the |
| 93d20 | 20 3a 63 66 67 63 6d 64 3a 60 69 6e 60 20 6f 72 20 3a 63 66 67 63 6d 64 3a 60 6f 75 74 60 20 6f | .:cfgcmd:`in`.or.:cfgcmd:`out`.o |
| 93d40 | 70 74 69 6f 6e 73 2c 20 62 6f 74 68 20 69 6e 62 6f 75 6e 64 20 61 6e 64 20 6f 75 74 62 6f 75 6e | ptions,.both.inbound.and.outboun |
| 93d60 | 64 20 73 6f 66 74 20 72 65 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 61 72 65 20 74 72 69 67 67 | d.soft.reconfiguration.are.trigg |
| 93d80 | 65 72 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 72 65 73 65 74 73 20 42 47 50 20 63 6f | ered..This.command.resets.BGP.co |
| 93da0 | 6e 6e 65 63 74 69 6f 6e 73 20 74 6f 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 70 65 65 72 20 | nnections.to.the.specified.peer. |
| 93dc0 | 67 72 6f 75 70 2e 20 57 69 74 68 20 61 72 67 75 6d 65 6e 74 20 3a 63 66 67 63 6d 64 3a 60 73 6f | group..With.argument.:cfgcmd:`so |
| 93de0 | 66 74 60 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 6e 69 74 69 61 74 65 73 20 61 20 73 6f 66 | ft`.this.command.initiates.a.sof |
| 93e00 | 74 20 72 65 73 65 74 2e 20 49 66 20 79 6f 75 20 64 6f 20 6e 6f 74 20 73 70 65 63 69 66 79 20 74 | t.reset..If.you.do.not.specify.t |
| 93e20 | 68 65 20 3a 63 66 67 63 6d 64 3a 60 69 6e 60 20 6f 72 20 3a 63 66 67 63 6d 64 3a 60 6f 75 74 60 | he.:cfgcmd:`in`.or.:cfgcmd:`out` |
| 93e40 | 20 6f 70 74 69 6f 6e 73 2c 20 62 6f 74 68 20 69 6e 62 6f 75 6e 64 20 61 6e 64 20 6f 75 74 62 6f | .options,.both.inbound.and.outbo |
| 93e60 | 75 6e 64 20 73 6f 66 74 20 72 65 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 61 72 65 20 74 72 69 | und.soft.reconfiguration.are.tri |
| 93e80 | 67 67 65 72 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 72 65 73 65 74 73 20 61 6c 6c 20 | ggered..This.command.resets.all. |
| 93ea0 | 42 47 50 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 6f 66 20 67 69 76 65 6e 20 72 6f 75 74 65 72 2e | BGP.connections.of.given.router. |
| 93ec0 | 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 72 65 73 65 74 73 20 61 6c 6c 20 65 78 74 65 72 6e 61 | .This.command.resets.all.externa |
| 93ee0 | 6c 20 42 47 50 20 70 65 65 72 73 20 6f 66 20 67 69 76 65 6e 20 72 6f 75 74 65 72 2e 00 54 68 69 | l.BGP.peers.of.given.router..Thi |
| 93f00 | 73 20 63 6f 6d 6d 61 6e 64 20 73 65 6c 65 63 74 73 20 41 42 52 20 6d 6f 64 65 6c 2e 20 4f 53 50 | s.command.selects.ABR.model..OSP |
| 93f20 | 46 20 72 6f 75 74 65 72 20 73 75 70 70 6f 72 74 73 20 66 6f 75 72 20 41 42 52 20 6d 6f 64 65 6c | F.router.supports.four.ABR.model |
| 93f40 | 73 3a 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 20 64 65 66 61 75 6c 74 20 6d 65 74 72 | s:.This.command.set.default.metr |
| 93f60 | 69 63 20 66 6f 72 20 63 69 72 63 75 69 74 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 | ic.for.circuit..This.command.set |
| 93f80 | 20 74 68 65 20 63 68 61 6e 6e 65 6c 20 6e 75 6d 62 65 72 20 74 68 61 74 20 64 69 76 65 72 73 69 | .the.channel.number.that.diversi |
| 93fa0 | 74 79 20 72 6f 75 74 69 6e 67 20 75 73 65 73 20 66 6f 72 20 74 68 69 73 20 69 6e 74 65 72 66 61 | ty.routing.uses.for.this.interfa |
| 93fc0 | 63 65 20 28 73 65 65 20 64 69 76 65 72 73 69 74 79 20 6f 70 74 69 6f 6e 20 61 62 6f 76 65 29 2e | ce.(see.diversity.option.above). |
| 93fe0 | 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 41 54 54 20 62 69 74 20 74 6f 20 31 20 | .This.command.sets.ATT.bit.to.1. |
| 94000 | 69 6e 20 4c 65 76 65 6c 31 20 4c 53 50 73 2e 20 49 74 20 69 73 20 64 65 73 63 72 69 62 65 64 20 | in.Level1.LSPs..It.is.described. |
| 94020 | 69 6e 20 3a 72 66 63 3a 60 33 37 38 37 60 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 | in.:rfc:`3787`..This.command.set |
| 94040 | 73 20 43 6f 6d 70 6c 65 74 65 20 53 65 71 75 65 6e 63 65 20 4e 75 6d 62 65 72 20 50 61 63 6b 65 | s.Complete.Sequence.Number.Packe |
| 94060 | 74 73 20 28 43 53 4e 50 29 20 69 6e 74 65 72 76 61 6c 20 69 6e 20 73 65 63 6f 6e 64 73 2e 20 54 | ts.(CSNP).interval.in.seconds..T |
| 94080 | 68 65 20 69 6e 74 65 72 76 61 6c 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 36 30 30 2e 00 54 | he.interval.range.is.1.to.600..T |
| 940a0 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 4c 53 50 20 6d 61 78 69 6d 75 6d 20 4c 53 50 | his.command.sets.LSP.maximum.LSP |
| 940c0 | 20 6c 69 66 65 74 69 6d 65 20 69 6e 20 73 65 63 6f 6e 64 73 2e 20 54 68 65 20 69 6e 74 65 72 76 | .lifetime.in.seconds..The.interv |
| 940e0 | 61 6c 20 72 61 6e 67 65 20 69 73 20 33 35 30 20 74 6f 20 36 35 35 33 35 2e 20 4c 53 50 73 20 72 | al.range.is.350.to.65535..LSPs.r |
| 94100 | 65 6d 61 69 6e 20 69 6e 20 61 20 64 61 74 61 62 61 73 65 20 66 6f 72 20 31 32 30 30 20 73 65 63 | emain.in.a.database.for.1200.sec |
| 94120 | 6f 6e 64 73 20 62 79 20 64 65 66 61 75 6c 74 2e 20 49 66 20 74 68 65 79 20 61 72 65 20 6e 6f 74 | onds.by.default..If.they.are.not |
| 94140 | 20 72 65 66 72 65 73 68 65 64 20 62 79 20 74 68 61 74 20 74 69 6d 65 2c 20 74 68 65 79 20 61 72 | .refreshed.by.that.time,.they.ar |
| 94160 | 65 20 64 65 6c 65 74 65 64 2e 20 59 6f 75 20 63 61 6e 20 63 68 61 6e 67 65 20 74 68 65 20 4c 53 | e.deleted..You.can.change.the.LS |
| 94180 | 50 20 72 65 66 72 65 73 68 20 69 6e 74 65 72 76 61 6c 20 6f 72 20 74 68 65 20 4c 53 50 20 6c 69 | P.refresh.interval.or.the.LSP.li |
| 941a0 | 66 65 74 69 6d 65 2e 20 54 68 65 20 4c 53 50 20 72 65 66 72 65 73 68 20 69 6e 74 65 72 76 61 6c | fetime..The.LSP.refresh.interval |
| 941c0 | 20 73 68 6f 75 6c 64 20 62 65 20 6c 65 73 73 20 74 68 61 6e 20 74 68 65 20 4c 53 50 20 6c 69 66 | .should.be.less.than.the.LSP.lif |
| 941e0 | 65 74 69 6d 65 20 6f 72 20 65 6c 73 65 20 4c 53 50 73 20 77 69 6c 6c 20 74 69 6d 65 20 6f 75 74 | etime.or.else.LSPs.will.time.out |
| 94200 | 20 62 65 66 6f 72 65 20 74 68 65 79 20 61 72 65 20 72 65 66 72 65 73 68 65 64 2e 00 54 68 69 73 | .before.they.are.refreshed..This |
| 94220 | 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 4c 53 50 20 6d 61 78 69 6d 75 6d 20 4c 53 50 20 6c 69 | .command.sets.LSP.maximum.LSP.li |
| 94240 | 66 65 74 69 6d 65 20 69 6e 20 73 65 63 6f 6e 64 73 2e 20 54 68 65 20 69 6e 74 65 72 76 61 6c 20 | fetime.in.seconds..The.interval. |
| 94260 | 72 61 6e 67 65 20 69 73 20 33 36 30 20 74 6f 20 36 35 35 33 35 2e 20 4c 53 50 73 20 72 65 6d 61 | range.is.360.to.65535..LSPs.rema |
| 94280 | 69 6e 20 69 6e 20 61 20 64 61 74 61 62 61 73 65 20 66 6f 72 20 31 32 30 30 20 73 65 63 6f 6e 64 | in.in.a.database.for.1200.second |
| 942a0 | 73 20 62 79 20 64 65 66 61 75 6c 74 2e 20 49 66 20 74 68 65 79 20 61 72 65 20 6e 6f 74 20 72 65 | s.by.default..If.they.are.not.re |
| 942c0 | 66 72 65 73 68 65 64 20 62 79 20 74 68 61 74 20 74 69 6d 65 2c 20 74 68 65 79 20 61 72 65 20 64 | freshed.by.that.time,.they.are.d |
| 942e0 | 65 6c 65 74 65 64 2e 20 59 6f 75 20 63 61 6e 20 63 68 61 6e 67 65 20 74 68 65 20 4c 53 50 20 72 | eleted..You.can.change.the.LSP.r |
| 94300 | 65 66 72 65 73 68 20 69 6e 74 65 72 76 61 6c 20 6f 72 20 74 68 65 20 4c 53 50 20 6c 69 66 65 74 | efresh.interval.or.the.LSP.lifet |
| 94320 | 69 6d 65 2e 20 54 68 65 20 4c 53 50 20 72 65 66 72 65 73 68 20 69 6e 74 65 72 76 61 6c 20 73 68 | ime..The.LSP.refresh.interval.sh |
| 94340 | 6f 75 6c 64 20 62 65 20 6c 65 73 73 20 74 68 61 6e 20 74 68 65 20 4c 53 50 20 6c 69 66 65 74 69 | ould.be.less.than.the.LSP.lifeti |
| 94360 | 6d 65 20 6f 72 20 65 6c 73 65 20 4c 53 50 73 20 77 69 6c 6c 20 74 69 6d 65 20 6f 75 74 20 62 65 | me.or.else.LSPs.will.time.out.be |
| 94380 | 66 6f 72 65 20 74 68 65 79 20 61 72 65 20 72 65 66 72 65 73 68 65 64 2e 00 54 68 69 73 20 63 6f | fore.they.are.refreshed..This.co |
| 943a0 | 6d 6d 61 6e 64 20 73 65 74 73 20 4c 53 50 20 72 65 66 72 65 73 68 20 69 6e 74 65 72 76 61 6c 20 | mmand.sets.LSP.refresh.interval. |
| 943c0 | 69 6e 20 73 65 63 6f 6e 64 73 2e 20 49 53 2d 49 53 20 67 65 6e 65 72 61 74 65 73 20 4c 53 50 73 | in.seconds..IS-IS.generates.LSPs |
| 943e0 | 20 77 68 65 6e 20 74 68 65 20 73 74 61 74 65 20 6f 66 20 61 20 6c 69 6e 6b 20 63 68 61 6e 67 65 | .when.the.state.of.a.link.change |
| 94400 | 73 2e 20 48 6f 77 65 76 65 72 2c 20 74 6f 20 65 6e 73 75 72 65 20 74 68 61 74 20 72 6f 75 74 69 | s..However,.to.ensure.that.routi |
| 94420 | 6e 67 20 64 61 74 61 62 61 73 65 73 20 6f 6e 20 61 6c 6c 20 72 6f 75 74 65 72 73 20 72 65 6d 61 | ng.databases.on.all.routers.rema |
| 94440 | 69 6e 20 63 6f 6e 76 65 72 67 65 64 2c 20 4c 53 50 73 20 69 6e 20 73 74 61 62 6c 65 20 6e 65 74 | in.converged,.LSPs.in.stable.net |
| 94460 | 77 6f 72 6b 73 20 61 72 65 20 67 65 6e 65 72 61 74 65 64 20 6f 6e 20 61 20 72 65 67 75 6c 61 72 | works.are.generated.on.a.regular |
| 94480 | 20 62 61 73 69 73 20 65 76 65 6e 20 74 68 6f 75 67 68 20 74 68 65 72 65 20 68 61 73 20 62 65 65 | .basis.even.though.there.has.bee |
| 944a0 | 6e 20 6e 6f 20 63 68 61 6e 67 65 20 74 6f 20 74 68 65 20 73 74 61 74 65 20 6f 66 20 74 68 65 20 | n.no.change.to.the.state.of.the. |
| 944c0 | 6c 69 6e 6b 73 2e 20 54 68 65 20 69 6e 74 65 72 76 61 6c 20 72 61 6e 67 65 20 69 73 20 31 20 74 | links..The.interval.range.is.1.t |
| 944e0 | 6f 20 36 35 32 33 35 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 39 30 | o.65235..The.default.value.is.90 |
| 94500 | 30 20 73 65 63 6f 6e 64 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 4c 53 50 | 0.seconds..This.command.sets.LSP |
| 94520 | 20 72 65 66 72 65 73 68 20 69 6e 74 65 72 76 61 6c 20 69 6e 20 73 65 63 6f 6e 64 73 2e 20 54 68 | .refresh.interval.in.seconds..Th |
| 94540 | 65 20 69 6e 74 65 72 76 61 6c 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 36 35 32 33 35 2e 00 | e.interval.range.is.1.to.65235.. |
| 94560 | 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 4f 53 50 46 20 61 75 74 68 65 6e 74 69 63 | This.command.sets.OSPF.authentic |
| 94580 | 61 74 69 6f 6e 20 6b 65 79 20 74 6f 20 61 20 73 69 6d 70 6c 65 20 70 61 73 73 77 6f 72 64 2e 20 | ation.key.to.a.simple.password.. |
| 945a0 | 41 66 74 65 72 20 73 65 74 74 69 6e 67 2c 20 61 6c 6c 20 4f 53 50 46 20 70 61 63 6b 65 74 73 20 | After.setting,.all.OSPF.packets. |
| 945c0 | 61 72 65 20 61 75 74 68 65 6e 74 69 63 61 74 65 64 2e 20 4b 65 79 20 68 61 73 20 6c 65 6e 67 74 | are.authenticated..Key.has.lengt |
| 945e0 | 68 20 75 70 20 74 6f 20 38 20 63 68 61 72 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 | h.up.to.8.chars..This.command.se |
| 94600 | 74 73 20 50 53 4e 50 20 69 6e 74 65 72 76 61 6c 20 69 6e 20 73 65 63 6f 6e 64 73 2e 20 54 68 65 | ts.PSNP.interval.in.seconds..The |
| 94620 | 20 69 6e 74 65 72 76 61 6c 20 72 61 6e 67 65 20 69 73 20 30 20 74 6f 20 31 32 37 2e 00 54 68 69 | .interval.range.is.0.to.127..Thi |
| 94640 | 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 50 61 72 74 69 61 6c 20 53 65 71 75 65 6e 63 65 20 | s.command.sets.Partial.Sequence. |
| 94660 | 4e 75 6d 62 65 72 20 50 61 63 6b 65 74 73 20 28 50 53 4e 50 29 20 69 6e 74 65 72 76 61 6c 20 69 | Number.Packets.(PSNP).interval.i |
| 94680 | 6e 20 73 65 63 6f 6e 64 73 2e 20 54 68 65 20 69 6e 74 65 72 76 61 6c 20 72 61 6e 67 65 20 69 73 | n.seconds..The.interval.range.is |
| 946a0 | 20 31 20 74 6f 20 31 32 30 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 52 6f 75 | .1.to.120..This.command.sets.Rou |
| 946c0 | 74 65 72 20 50 72 69 6f 72 69 74 79 20 69 6e 74 65 67 65 72 20 76 61 6c 75 65 2e 20 54 68 65 20 | ter.Priority.integer.value..The. |
| 946e0 | 72 6f 75 74 65 72 20 77 69 74 68 20 74 68 65 20 68 69 67 68 65 73 74 20 70 72 69 6f 72 69 74 79 | router.with.the.highest.priority |
| 94700 | 20 77 69 6c 6c 20 62 65 20 6d 6f 72 65 20 65 6c 69 67 69 62 6c 65 20 74 6f 20 62 65 63 6f 6d 65 | .will.be.more.eligible.to.become |
| 94720 | 20 44 65 73 69 67 6e 61 74 65 64 20 52 6f 75 74 65 72 2e 20 53 65 74 74 69 6e 67 20 74 68 65 20 | .Designated.Router..Setting.the. |
| 94740 | 76 61 6c 75 65 20 74 6f 20 30 2c 20 6d 61 6b 65 73 20 74 68 65 20 72 6f 75 74 65 72 20 69 6e 65 | value.to.0,.makes.the.router.ine |
| 94760 | 6c 69 67 69 62 6c 65 20 74 6f 20 62 65 63 6f 6d 65 20 44 65 73 69 67 6e 61 74 65 64 20 52 6f 75 | ligible.to.become.Designated.Rou |
| 94780 | 74 65 72 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 31 2e 20 54 68 65 | ter..The.default.value.is.1..The |
| 947a0 | 20 69 6e 74 65 72 76 61 6c 20 72 61 6e 67 65 20 69 73 20 30 20 74 6f 20 32 35 35 2e 00 54 68 69 | .interval.range.is.0.to.255..Thi |
| 947c0 | 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 61 20 73 74 61 74 69 63 20 74 69 65 72 20 6e 75 6d | s.command.sets.a.static.tier.num |
| 947e0 | 62 65 72 20 74 6f 20 61 64 76 65 72 74 69 73 65 20 61 73 20 6c 6f 63 61 74 69 6f 6e 20 69 6e 20 | ber.to.advertise.as.location.in. |
| 94800 | 74 68 65 20 66 61 62 72 69 63 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 64 65 | the.fabric..This.command.sets.de |
| 94820 | 66 61 75 6c 74 20 52 49 50 20 64 69 73 74 61 6e 63 65 20 74 6f 20 61 20 73 70 65 63 69 66 69 65 | fault.RIP.distance.to.a.specifie |
| 94840 | 64 20 76 61 6c 75 65 20 77 68 65 6e 20 74 68 65 20 72 6f 75 74 65 73 20 73 6f 75 72 63 65 20 49 | d.value.when.the.routes.source.I |
| 94860 | 50 20 61 64 64 72 65 73 73 20 6d 61 74 63 68 65 73 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 | P.address.matches.the.specified. |
| 94880 | 70 72 65 66 69 78 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 64 65 66 61 75 6c | prefix..This.command.sets.defaul |
| 948a0 | 74 20 6d 65 74 72 69 63 20 66 6f 72 20 63 69 72 63 75 69 74 2e 20 54 68 65 20 6d 65 74 72 69 63 | t.metric.for.circuit..The.metric |
| 948c0 | 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 31 36 37 37 37 32 31 35 2e 00 54 68 69 73 20 63 6f | .range.is.1.to.16777215..This.co |
| 948e0 | 6d 6d 61 6e 64 20 73 65 74 73 20 68 65 6c 6c 6f 20 69 6e 74 65 72 76 61 6c 20 69 6e 20 73 65 63 | mmand.sets.hello.interval.in.sec |
| 94900 | 6f 6e 64 73 20 6f 6e 20 61 20 67 69 76 65 6e 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 65 20 72 | onds.on.a.given.interface..The.r |
| 94920 | 61 6e 67 65 20 69 73 20 31 20 74 6f 20 36 30 30 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 | ange.is.1.to.600..This.command.s |
| 94940 | 65 74 73 20 68 65 6c 6c 6f 20 69 6e 74 65 72 76 61 6c 20 69 6e 20 73 65 63 6f 6e 64 73 20 6f 6e | ets.hello.interval.in.seconds.on |
| 94960 | 20 61 20 67 69 76 65 6e 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 65 20 72 61 6e 67 65 20 69 73 | .a.given.interface..The.range.is |
| 94980 | 20 31 20 74 6f 20 36 30 30 2e 20 48 65 6c 6c 6f 20 70 61 63 6b 65 74 73 20 61 72 65 20 75 73 65 | .1.to.600..Hello.packets.are.use |
| 949a0 | 64 20 74 6f 20 65 73 74 61 62 6c 69 73 68 20 61 6e 64 20 6d 61 69 6e 74 61 69 6e 20 61 64 6a 61 | d.to.establish.and.maintain.adja |
| 949c0 | 63 65 6e 63 79 20 62 65 74 77 65 65 6e 20 4f 70 65 6e 46 61 62 72 69 63 20 6e 65 69 67 68 62 6f | cency.between.OpenFabric.neighbo |
| 949e0 | 72 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 6c 69 6e 6b 20 63 6f 73 74 20 | rs..This.command.sets.link.cost. |
| 94a00 | 66 6f 72 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 65 | for.the.specified.interface..The |
| 94a20 | 20 63 6f 73 74 20 76 61 6c 75 65 20 69 73 20 73 65 74 20 74 6f 20 72 6f 75 74 65 72 2d 4c 53 41 | .cost.value.is.set.to.router-LSA |
| 94a40 | e2 80 99 73 20 6d 65 74 72 69 63 20 66 69 65 6c 64 20 61 6e 64 20 75 73 65 64 20 66 6f 72 20 53 | ...s.metric.field.and.used.for.S |
| 94a60 | 50 46 20 63 61 6c 63 75 6c 61 74 69 6f 6e 2e 20 54 68 65 20 63 6f 73 74 20 72 61 6e 67 65 20 69 | PF.calculation..The.cost.range.i |
| 94a80 | 73 20 31 20 74 6f 20 36 35 35 33 35 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 | s.1.to.65535..This.command.sets. |
| 94aa0 | 6d 69 6e 69 6d 75 6d 20 69 6e 74 65 72 76 61 6c 20 61 74 20 77 68 69 63 68 20 6c 69 6e 6b 2d 73 | minimum.interval.at.which.link-s |
| 94ac0 | 74 61 74 65 20 70 61 63 6b 65 74 73 20 28 4c 53 50 73 29 20 61 72 65 20 67 65 6e 65 72 61 74 65 | tate.packets.(LSPs).are.generate |
| 94ae0 | 64 2e 20 54 68 65 20 69 6e 74 65 72 76 61 6c 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 31 32 | d..The.interval.range.is.1.to.12 |
| 94b00 | 30 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 6d 69 6e 69 6d 75 6d 20 69 6e 74 | 0..This.command.sets.minimum.int |
| 94b20 | 65 72 76 61 6c 20 62 65 74 77 65 65 6e 20 63 6f 6e 73 65 63 75 74 69 76 65 20 53 50 46 20 63 61 | erval.between.consecutive.SPF.ca |
| 94b40 | 6c 63 75 6c 61 74 69 6f 6e 73 20 69 6e 20 73 65 63 6f 6e 64 73 2e 54 68 65 20 69 6e 74 65 72 76 | lculations.in.seconds.The.interv |
| 94b60 | 61 6c 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 31 32 30 2e 00 54 68 69 73 20 63 6f 6d 6d 61 | al.range.is.1.to.120..This.comma |
| 94b80 | 6e 64 20 73 65 74 73 20 6d 69 6e 69 6d 75 6d 20 69 6e 74 65 72 76 61 6c 20 62 65 74 77 65 65 6e | nd.sets.minimum.interval.between |
| 94ba0 | 20 63 6f 6e 73 65 63 75 74 69 76 65 20 73 68 6f 72 74 65 73 74 20 70 61 74 68 20 66 69 72 73 74 | .consecutive.shortest.path.first |
| 94bc0 | 20 28 53 50 46 29 20 63 61 6c 63 75 6c 61 74 69 6f 6e 73 20 69 6e 20 73 65 63 6f 6e 64 73 2e 54 | .(SPF).calculations.in.seconds.T |
| 94be0 | 68 65 20 69 6e 74 65 72 76 61 6c 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 31 32 30 2e 00 54 | he.interval.range.is.1.to.120..T |
| 94c00 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 6d 69 6e 69 6d 75 6d 20 69 6e 74 65 72 76 61 | his.command.sets.minimum.interva |
| 94c20 | 6c 20 69 6e 20 73 65 63 6f 6e 64 73 20 62 65 74 77 65 65 6e 20 72 65 67 65 6e 65 72 61 74 69 6e | l.in.seconds.between.regeneratin |
| 94c40 | 67 20 73 61 6d 65 20 4c 53 50 2e 20 54 68 65 20 69 6e 74 65 72 76 61 6c 20 72 61 6e 67 65 20 69 | g.same.LSP..The.interval.range.i |
| 94c60 | 73 20 31 20 74 6f 20 31 32 30 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 6d 75 | s.1.to.120..This.command.sets.mu |
| 94c80 | 6c 74 69 70 6c 69 65 72 20 66 6f 72 20 68 65 6c 6c 6f 20 68 6f 6c 64 69 6e 67 20 74 69 6d 65 20 | ltiplier.for.hello.holding.time. |
| 94ca0 | 6f 6e 20 61 20 67 69 76 65 6e 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 65 20 72 61 6e 67 65 20 | on.a.given.interface..The.range. |
| 94cc0 | 69 73 20 32 20 74 6f 20 31 30 30 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 6e | is.2.to.100..This.command.sets.n |
| 94ce0 | 65 74 77 6f 72 6b 20 65 6e 74 69 74 79 20 74 69 74 6c 65 20 28 4e 45 54 29 20 70 72 6f 76 69 64 | etwork.entity.title.(NET).provid |
| 94d00 | 65 64 20 69 6e 20 49 53 4f 20 66 6f 72 6d 61 74 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 | ed.in.ISO.format..This.command.s |
| 94d20 | 65 74 73 20 6e 75 6d 62 65 72 20 6f 66 20 73 65 63 6f 6e 64 73 20 66 6f 72 20 49 6e 66 54 72 61 | ets.number.of.seconds.for.InfTra |
| 94d40 | 6e 73 44 65 6c 61 79 20 76 61 6c 75 65 2e 20 49 74 20 61 6c 6c 6f 77 73 20 74 6f 20 73 65 74 20 | nsDelay.value..It.allows.to.set. |
| 94d60 | 61 6e 64 20 61 64 6a 75 73 74 20 66 6f 72 20 65 61 63 68 20 69 6e 74 65 72 66 61 63 65 20 74 68 | and.adjust.for.each.interface.th |
| 94d80 | 65 20 64 65 6c 61 79 20 69 6e 74 65 72 76 61 6c 20 62 65 66 6f 72 65 20 73 74 61 72 74 69 6e 67 | e.delay.interval.before.starting |
| 94da0 | 20 74 68 65 20 73 79 6e 63 68 72 6f 6e 69 7a 69 6e 67 20 70 72 6f 63 65 73 73 20 6f 66 20 74 68 | .the.synchronizing.process.of.th |
| 94dc0 | 65 20 72 6f 75 74 65 72 27 73 20 64 61 74 61 62 61 73 65 20 77 69 74 68 20 61 6c 6c 20 6e 65 69 | e.router's.database.with.all.nei |
| 94de0 | 67 68 62 6f 72 73 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 31 20 73 | ghbors..The.default.value.is.1.s |
| 94e00 | 65 63 6f 6e 64 73 2e 20 54 68 65 20 69 6e 74 65 72 76 61 6c 20 72 61 6e 67 65 20 69 73 20 33 20 | econds..The.interval.range.is.3. |
| 94e20 | 74 6f 20 36 35 35 33 35 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 6e 75 6d 62 | to.65535..This.command.sets.numb |
| 94e40 | 65 72 20 6f 66 20 73 65 63 6f 6e 64 73 20 66 6f 72 20 52 78 6d 74 49 6e 74 65 72 76 61 6c 20 74 | er.of.seconds.for.RxmtInterval.t |
| 94e60 | 69 6d 65 72 20 76 61 6c 75 65 2e 20 54 68 69 73 20 76 61 6c 75 65 20 69 73 20 75 73 65 64 20 77 | imer.value..This.value.is.used.w |
| 94e80 | 68 65 6e 20 72 65 74 72 61 6e 73 6d 69 74 74 69 6e 67 20 44 61 74 61 62 61 73 65 20 44 65 73 63 | hen.retransmitting.Database.Desc |
| 94ea0 | 72 69 70 74 69 6f 6e 20 61 6e 64 20 4c 69 6e 6b 20 53 74 61 74 65 20 52 65 71 75 65 73 74 20 70 | ription.and.Link.State.Request.p |
| 94ec0 | 61 63 6b 65 74 73 20 69 66 20 61 63 6b 6e 6f 77 6c 65 64 67 65 20 77 61 73 20 6e 6f 74 20 72 65 | ackets.if.acknowledge.was.not.re |
| 94ee0 | 63 65 69 76 65 64 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 35 20 73 | ceived..The.default.value.is.5.s |
| 94f00 | 65 63 6f 6e 64 73 2e 20 54 68 65 20 69 6e 74 65 72 76 61 6c 20 72 61 6e 67 65 20 69 73 20 33 20 | econds..The.interval.range.is.3. |
| 94f20 | 74 6f 20 36 35 35 33 35 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 6f 6c 64 2d | to.65535..This.command.sets.old- |
| 94f40 | 73 74 79 6c 65 20 28 49 53 4f 20 31 30 35 38 39 29 20 6f 72 20 6e 65 77 20 73 74 79 6c 65 20 70 | style.(ISO.10589).or.new.style.p |
| 94f60 | 61 63 6b 65 74 20 66 6f 72 6d 61 74 73 3a 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 | acket.formats:.This.command.sets |
| 94f80 | 20 6f 74 68 65 72 20 63 6f 6e 66 65 64 65 72 61 74 69 6f 6e 73 20 3c 6e 73 75 62 61 73 6e 3e 20 | .other.confederations.<nsubasn>. |
| 94fa0 | 61 73 20 6d 65 6d 62 65 72 73 20 6f 66 20 61 75 74 6f 6e 6f 6d 6f 75 73 20 73 79 73 74 65 6d 20 | as.members.of.autonomous.system. |
| 94fc0 | 73 70 65 63 69 66 69 65 64 20 62 79 20 3a 63 66 67 63 6d 64 3a 60 63 6f 6e 66 65 64 65 72 61 74 | specified.by.:cfgcmd:`confederat |
| 94fe0 | 69 6f 6e 20 69 64 65 6e 74 69 66 69 65 72 20 3c 61 73 6e 3e 60 2e 00 54 68 69 73 20 63 6f 6d 6d | ion.identifier.<asn>`..This.comm |
| 95000 | 61 6e 64 20 73 65 74 73 20 6f 76 65 72 6c 6f 61 64 20 62 69 74 20 74 6f 20 61 76 6f 69 64 20 61 | and.sets.overload.bit.to.avoid.a |
| 95020 | 6e 79 20 74 72 61 6e 73 69 74 20 74 72 61 66 66 69 63 20 74 68 72 6f 75 67 68 20 74 68 69 73 20 | ny.transit.traffic.through.this. |
| 95040 | 72 6f 75 74 65 72 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 6f 76 65 72 6c 6f | router..This.command.sets.overlo |
| 95060 | 61 64 20 62 69 74 20 74 6f 20 61 76 6f 69 64 20 61 6e 79 20 74 72 61 6e 73 69 74 20 74 72 61 66 | ad.bit.to.avoid.any.transit.traf |
| 95080 | 66 69 63 20 74 68 72 6f 75 67 68 20 74 68 69 73 20 72 6f 75 74 65 72 2e 20 49 74 20 69 73 20 64 | fic.through.this.router..It.is.d |
| 950a0 | 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 33 37 38 37 60 2e 00 54 68 69 73 20 63 6f | escribed.in.:rfc:`3787`..This.co |
| 950c0 | 6d 6d 61 6e 64 20 73 65 74 73 20 70 72 69 6f 72 69 74 79 20 66 6f 72 20 74 68 65 20 69 6e 74 65 | mmand.sets.priority.for.the.inte |
| 950e0 | 72 66 61 63 65 20 66 6f 72 20 3a 61 62 62 72 3a 60 44 49 53 20 28 44 65 73 69 67 6e 61 74 65 64 | rface.for.:abbr:`DIS.(Designated |
| 95100 | 20 49 6e 74 65 72 6d 65 64 69 61 74 65 20 53 79 73 74 65 6d 29 60 20 65 6c 65 63 74 69 6f 6e 2e | .Intermediate.System)`.election. |
| 95120 | 20 54 68 65 20 70 72 69 6f 72 69 74 79 20 72 61 6e 67 65 20 69 73 20 30 20 74 6f 20 31 32 37 2e | .The.priority.range.is.0.to.127. |
| 95140 | 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 74 68 65 20 61 64 6d 69 6e 69 73 74 72 | .This.command.sets.the.administr |
| 95160 | 61 74 69 76 65 20 64 69 73 74 61 6e 63 65 20 66 6f 72 20 61 20 70 61 72 74 69 63 75 6c 61 72 20 | ative.distance.for.a.particular. |
| 95180 | 72 6f 75 74 65 2e 20 54 68 65 20 64 69 73 74 61 6e 63 65 20 72 61 6e 67 65 20 69 73 20 31 20 74 | route..The.distance.range.is.1.t |
| 951a0 | 6f 20 32 35 35 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 74 68 65 20 61 75 74 | o.255..This.command.sets.the.aut |
| 951c0 | 68 65 6e 74 69 63 61 74 69 6f 6e 20 70 61 73 73 77 6f 72 64 20 66 6f 72 20 74 68 65 20 69 6e 74 | hentication.password.for.the.int |
| 951e0 | 65 72 66 61 63 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 74 68 65 20 63 6f | erface..This.command.sets.the.co |
| 95200 | 73 74 20 6f 66 20 64 65 66 61 75 6c 74 2d 73 75 6d 6d 61 72 79 20 4c 53 41 73 20 61 6e 6e 6f 75 | st.of.default-summary.LSAs.annou |
| 95220 | 6e 63 65 64 20 74 6f 20 73 74 75 62 62 79 20 61 72 65 61 73 2e 20 54 68 65 20 63 6f 73 74 20 72 | nced.to.stubby.areas..The.cost.r |
| 95240 | 61 6e 67 65 20 69 73 20 30 20 74 6f 20 31 36 37 37 37 32 31 35 2e 00 54 68 69 73 20 63 6f 6d 6d | ange.is.0.to.16777215..This.comm |
| 95260 | 61 6e 64 20 73 65 74 73 20 74 68 65 20 64 65 66 61 75 6c 74 20 63 6f 73 74 20 6f 66 20 4c 53 41 | and.sets.the.default.cost.of.LSA |
| 95280 | 73 20 61 6e 6e 6f 75 6e 63 65 64 20 74 6f 20 4e 53 53 41 20 61 72 65 61 73 2e 20 54 68 65 20 63 | s.announced.to.NSSA.areas..The.c |
| 952a0 | 6f 73 74 20 72 61 6e 67 65 20 69 73 20 30 20 74 6f 20 31 36 37 37 37 32 31 35 2e 00 54 68 69 73 | ost.range.is.0.to.16777215..This |
| 952c0 | 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 74 68 65 20 69 6e 69 74 69 61 6c 20 64 65 6c 61 79 2c | .command.sets.the.initial.delay, |
| 952e0 | 20 74 68 65 20 69 6e 69 74 69 61 6c 2d 68 6f 6c 64 74 69 6d 65 20 61 6e 64 20 74 68 65 20 6d 61 | .the.initial-holdtime.and.the.ma |
| 95300 | 78 69 6d 75 6d 2d 68 6f 6c 64 74 69 6d 65 20 62 65 74 77 65 65 6e 20 77 68 65 6e 20 53 50 46 20 | ximum-holdtime.between.when.SPF. |
| 95320 | 69 73 20 63 61 6c 63 75 6c 61 74 65 64 20 61 6e 64 20 74 68 65 20 65 76 65 6e 74 20 77 68 69 63 | is.calculated.and.the.event.whic |
| 95340 | 68 20 74 72 69 67 67 65 72 65 64 20 74 68 65 20 63 61 6c 63 75 6c 61 74 69 6f 6e 2e 20 54 68 65 | h.triggered.the.calculation..The |
| 95360 | 20 74 69 6d 65 73 20 61 72 65 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 6d 69 6c 6c 69 73 65 63 | .times.are.specified.in.millisec |
| 95380 | 6f 6e 64 73 20 61 6e 64 20 6d 75 73 74 20 62 65 20 69 6e 20 74 68 65 20 72 61 6e 67 65 20 6f 66 | onds.and.must.be.in.the.range.of |
| 953a0 | 20 30 20 74 6f 20 36 30 30 30 30 30 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 2e 20 3a 63 66 67 63 | .0.to.600000.milliseconds..:cfgc |
| 953c0 | 6d 64 3a 60 64 65 6c 61 79 60 20 73 65 74 73 20 74 68 65 20 69 6e 69 74 69 61 6c 20 53 50 46 20 | md:`delay`.sets.the.initial.SPF. |
| 953e0 | 73 63 68 65 64 75 6c 65 20 64 65 6c 61 79 20 69 6e 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 2e 20 | schedule.delay.in.milliseconds.. |
| 95400 | 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 32 30 30 20 6d 73 2e 20 3a 63 66 | The.default.value.is.200.ms..:cf |
| 95420 | 67 63 6d 64 3a 60 69 6e 69 74 69 61 6c 2d 68 6f 6c 64 74 69 6d 65 60 20 73 65 74 73 20 74 68 65 | gcmd:`initial-holdtime`.sets.the |
| 95440 | 20 6d 69 6e 69 6d 75 6d 20 68 6f 6c 64 20 74 69 6d 65 20 62 65 74 77 65 65 6e 20 74 77 6f 20 63 | .minimum.hold.time.between.two.c |
| 95460 | 6f 6e 73 65 63 75 74 69 76 65 20 53 50 46 20 63 61 6c 63 75 6c 61 74 69 6f 6e 73 2e 20 54 68 65 | onsecutive.SPF.calculations..The |
| 95480 | 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 31 30 30 30 20 6d 73 2e 20 3a 63 66 67 63 | .default.value.is.1000.ms..:cfgc |
| 954a0 | 6d 64 3a 60 6d 61 78 2d 68 6f 6c 64 74 69 6d 65 60 20 73 65 74 73 20 74 68 65 20 6d 61 78 69 6d | md:`max-holdtime`.sets.the.maxim |
| 954c0 | 75 6d 20 77 61 69 74 20 74 69 6d 65 20 62 65 74 77 65 65 6e 20 74 77 6f 20 63 6f 6e 73 65 63 75 | um.wait.time.between.two.consecu |
| 954e0 | 74 69 76 65 20 53 50 46 20 63 61 6c 63 75 6c 61 74 69 6f 6e 73 2e 20 54 68 65 20 64 65 66 61 75 | tive.SPF.calculations..The.defau |
| 95500 | 6c 74 20 76 61 6c 75 65 20 69 73 20 31 30 30 30 30 20 6d 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 | lt.value.is.10000.ms..This.comma |
| 95520 | 6e 64 20 73 65 74 73 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 62 61 6e 64 77 69 64 74 68 20 | nd.sets.the.interface.bandwidth. |
| 95540 | 66 6f 72 20 63 6f 73 74 20 63 61 6c 63 75 6c 61 74 69 6f 6e 73 2c 20 77 68 65 72 65 20 62 61 6e | for.cost.calculations,.where.ban |
| 95560 | 64 77 69 64 74 68 20 63 61 6e 20 62 65 20 69 6e 20 72 61 6e 67 65 20 66 72 6f 6d 20 31 20 74 6f | dwidth.can.be.in.range.from.1.to |
| 95580 | 20 31 30 30 30 30 30 2c 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 4d 62 69 74 73 2f 73 2e 00 54 | .100000,.specified.in.Mbits/s..T |
| 955a0 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 74 | his.command.sets.the.interface.t |
| 955c0 | 79 70 65 3a 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 74 68 65 20 69 6e 74 65 72 | ype:.This.command.sets.the.inter |
| 955e0 | 66 61 63 65 20 77 69 74 68 20 52 49 50 20 4d 44 35 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e | face.with.RIP.MD5.authentication |
| 95600 | 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 6c 73 6f 20 73 65 74 73 20 4d 44 35 20 4b 65 79 | ..This.command.also.sets.MD5.Key |
| 95620 | 2e 20 54 68 65 20 6b 65 79 20 6d 75 73 74 20 62 65 20 73 68 6f 72 74 65 72 20 74 68 61 6e 20 31 | ..The.key.must.be.shorter.than.1 |
| 95640 | 36 20 63 68 61 72 61 63 74 65 72 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 | 6.characters..This.command.sets. |
| 95660 | 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 77 69 74 68 20 52 49 50 20 73 69 6d 70 6c 65 20 70 61 | the.interface.with.RIP.simple.pa |
| 95680 | 73 73 77 6f 72 64 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2e 20 54 68 69 73 20 63 6f 6d 6d | ssword.authentication..This.comm |
| 956a0 | 61 6e 64 20 61 6c 73 6f 20 73 65 74 73 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 73 74 72 | and.also.sets.authentication.str |
| 956c0 | 69 6e 67 2e 20 54 68 65 20 73 74 72 69 6e 67 20 6d 75 73 74 20 62 65 20 73 68 6f 72 74 65 72 20 | ing..The.string.must.be.shorter. |
| 956e0 | 74 68 61 6e 20 31 36 20 63 68 61 72 61 63 74 65 72 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 | than.16.characters..This.command |
| 95700 | 20 73 65 74 73 20 74 68 65 20 6d 75 6c 74 69 70 6c 69 63 61 74 69 76 65 20 66 61 63 74 6f 72 20 | .sets.the.multiplicative.factor. |
| 95720 | 75 73 65 64 20 66 6f 72 20 64 69 76 65 72 73 69 74 79 20 72 6f 75 74 69 6e 67 2c 20 69 6e 20 75 | used.for.diversity.routing,.in.u |
| 95740 | 6e 69 74 73 20 6f 66 20 31 2f 32 35 36 3b 20 6c 6f 77 65 72 20 76 61 6c 75 65 73 20 63 61 75 73 | nits.of.1/256;.lower.values.caus |
| 95760 | 65 20 64 69 76 65 72 73 69 74 79 20 74 6f 20 70 6c 61 79 20 61 20 6d 6f 72 65 20 69 6d 70 6f 72 | e.diversity.to.play.a.more.impor |
| 95780 | 74 61 6e 74 20 72 6f 6c 65 20 69 6e 20 72 6f 75 74 65 20 73 65 6c 65 63 74 69 6f 6e 2e 20 54 68 | tant.role.in.route.selection..Th |
| 957a0 | 65 20 64 65 66 61 75 6c 74 20 69 74 20 32 35 36 2c 20 77 68 69 63 68 20 6d 65 61 6e 73 20 74 68 | e.default.it.256,.which.means.th |
| 957c0 | 61 74 20 64 69 76 65 72 73 69 74 79 20 70 6c 61 79 73 20 6e 6f 20 72 6f 6c 65 20 69 6e 20 72 6f | at.diversity.plays.no.role.in.ro |
| 957e0 | 75 74 65 20 73 65 6c 65 63 74 69 6f 6e 3b 20 79 6f 75 20 77 69 6c 6c 20 70 72 6f 62 61 62 6c 79 | ute.selection;.you.will.probably |
| 95800 | 20 77 61 6e 74 20 74 6f 20 73 65 74 20 74 68 61 74 20 74 6f 20 31 32 38 20 6f 72 20 6c 65 73 73 | .want.to.set.that.to.128.or.less |
| 95820 | 20 6f 6e 20 6e 6f 64 65 73 20 77 69 74 68 20 6d 75 6c 74 69 70 6c 65 20 69 6e 64 65 70 65 6e 64 | .on.nodes.with.multiple.independ |
| 95840 | 65 6e 74 20 72 61 64 69 6f 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 74 68 | ent.radios..This.command.sets.th |
| 95860 | 65 20 72 65 66 65 72 65 6e 63 65 20 62 61 6e 64 77 69 64 74 68 20 66 6f 72 20 63 6f 73 74 20 63 | e.reference.bandwidth.for.cost.c |
| 95880 | 61 6c 63 75 6c 61 74 69 6f 6e 73 2c 20 77 68 65 72 65 20 62 61 6e 64 77 69 64 74 68 20 63 61 6e | alculations,.where.bandwidth.can |
| 958a0 | 20 62 65 20 69 6e 20 72 61 6e 67 65 20 66 72 6f 6d 20 31 20 74 6f 20 34 32 39 34 39 36 37 2c 20 | .be.in.range.from.1.to.4294967,. |
| 958c0 | 73 70 65 63 69 66 69 65 64 20 69 6e 20 4d 62 69 74 73 2f 73 2e 20 54 68 65 20 64 65 66 61 75 6c | specified.in.Mbits/s..The.defaul |
| 958e0 | 74 20 69 73 20 31 30 30 4d 62 69 74 2f 73 20 28 69 2e 65 2e 20 61 20 6c 69 6e 6b 20 6f 66 20 62 | t.is.100Mbit/s.(i.e..a.link.of.b |
| 95900 | 61 6e 64 77 69 64 74 68 20 31 30 30 4d 62 69 74 2f 73 20 6f 72 20 68 69 67 68 65 72 20 77 69 6c | andwidth.100Mbit/s.or.higher.wil |
| 95920 | 6c 20 68 61 76 65 20 61 20 63 6f 73 74 20 6f 66 20 31 2e 20 43 6f 73 74 20 6f 66 20 6c 6f 77 65 | l.have.a.cost.of.1..Cost.of.lowe |
| 95940 | 72 20 62 61 6e 64 77 69 64 74 68 20 6c 69 6e 6b 73 20 77 69 6c 6c 20 62 65 20 73 63 61 6c 65 64 | r.bandwidth.links.will.be.scaled |
| 95960 | 20 77 69 74 68 20 72 65 66 65 72 65 6e 63 65 20 74 6f 20 74 68 69 73 20 63 6f 73 74 29 2e 00 54 | .with.reference.to.this.cost)..T |
| 95980 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 74 68 65 20 72 6f 75 74 65 72 2d 49 44 20 6f | his.command.sets.the.router-ID.o |
| 959a0 | 66 20 74 68 65 20 4f 53 50 46 20 70 72 6f 63 65 73 73 2e 20 54 68 65 20 72 6f 75 74 65 72 2d 49 | f.the.OSPF.process..The.router-I |
| 959c0 | 44 20 6d 61 79 20 62 65 20 61 6e 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 72 6f | D.may.be.an.IP.address.of.the.ro |
| 959e0 | 75 74 65 72 2c 20 62 75 74 20 6e 65 65 64 20 6e 6f 74 20 62 65 20 e2 80 93 20 69 74 20 63 61 6e | uter,.but.need.not.be.....it.can |
| 95a00 | 20 62 65 20 61 6e 79 20 61 72 62 69 74 72 61 72 79 20 33 32 62 69 74 20 6e 75 6d 62 65 72 2e 20 | .be.any.arbitrary.32bit.number.. |
| 95a20 | 48 6f 77 65 76 65 72 20 69 74 20 4d 55 53 54 20 62 65 20 75 6e 69 71 75 65 20 77 69 74 68 69 6e | However.it.MUST.be.unique.within |
| 95a40 | 20 74 68 65 20 65 6e 74 69 72 65 20 4f 53 50 46 20 64 6f 6d 61 69 6e 20 74 6f 20 74 68 65 20 4f | .the.entire.OSPF.domain.to.the.O |
| 95a60 | 53 50 46 20 73 70 65 61 6b 65 72 20 e2 80 93 20 62 61 64 20 74 68 69 6e 67 73 20 77 69 6c 6c 20 | SPF.speaker.....bad.things.will. |
| 95a80 | 68 61 70 70 65 6e 20 69 66 20 6d 75 6c 74 69 70 6c 65 20 4f 53 50 46 20 73 70 65 61 6b 65 72 73 | happen.if.multiple.OSPF.speakers |
| 95aa0 | 20 61 72 65 20 63 6f 6e 66 69 67 75 72 65 64 20 77 69 74 68 20 74 68 65 20 73 61 6d 65 20 72 6f | .are.configured.with.the.same.ro |
| 95ac0 | 75 74 65 72 2d 49 44 21 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 74 68 65 20 72 | uter-ID!.This.command.sets.the.r |
| 95ae0 | 6f 75 74 65 72 2d 49 44 20 6f 66 20 74 68 65 20 4f 53 50 46 76 33 20 70 72 6f 63 65 73 73 2e 20 | outer-ID.of.the.OSPFv3.process.. |
| 95b00 | 54 68 65 20 72 6f 75 74 65 72 2d 49 44 20 6d 61 79 20 62 65 20 61 6e 20 49 50 20 61 64 64 72 65 | The.router-ID.may.be.an.IP.addre |
| 95b20 | 73 73 20 6f 66 20 74 68 65 20 72 6f 75 74 65 72 2c 20 62 75 74 20 6e 65 65 64 20 6e 6f 74 20 62 | ss.of.the.router,.but.need.not.b |
| 95b40 | 65 20 e2 80 93 20 69 74 20 63 61 6e 20 62 65 20 61 6e 79 20 61 72 62 69 74 72 61 72 79 20 33 32 | e.....it.can.be.any.arbitrary.32 |
| 95b60 | 62 69 74 20 6e 75 6d 62 65 72 2e 20 48 6f 77 65 76 65 72 20 69 74 20 4d 55 53 54 20 62 65 20 75 | bit.number..However.it.MUST.be.u |
| 95b80 | 6e 69 71 75 65 20 77 69 74 68 69 6e 20 74 68 65 20 65 6e 74 69 72 65 20 4f 53 50 46 76 33 20 64 | nique.within.the.entire.OSPFv3.d |
| 95ba0 | 6f 6d 61 69 6e 20 74 6f 20 74 68 65 20 4f 53 50 46 76 33 20 73 70 65 61 6b 65 72 20 e2 80 93 20 | omain.to.the.OSPFv3.speaker..... |
| 95bc0 | 62 61 64 20 74 68 69 6e 67 73 20 77 69 6c 6c 20 68 61 70 70 65 6e 20 69 66 20 6d 75 6c 74 69 70 | bad.things.will.happen.if.multip |
| 95be0 | 6c 65 20 4f 53 50 46 76 33 20 73 70 65 61 6b 65 72 73 20 61 72 65 20 63 6f 6e 66 69 67 75 72 65 | le.OSPFv3.speakers.are.configure |
| 95c00 | 64 20 77 69 74 68 20 74 68 65 20 73 61 6d 65 20 72 6f 75 74 65 72 2d 49 44 21 00 54 68 69 73 20 | d.with.the.same.router-ID!.This. |
| 95c20 | 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 69 6e 74 65 72 | command.sets.the.specified.inter |
| 95c40 | 66 61 63 65 20 74 6f 20 70 61 73 73 69 76 65 20 6d 6f 64 65 2e 20 4f 6e 20 70 61 73 73 69 76 65 | face.to.passive.mode..On.passive |
| 95c60 | 20 6d 6f 64 65 20 69 6e 74 65 72 66 61 63 65 2c 20 61 6c 6c 20 72 65 63 65 69 76 69 6e 67 20 70 | .mode.interface,.all.receiving.p |
| 95c80 | 61 63 6b 65 74 73 20 61 72 65 20 70 72 6f 63 65 73 73 65 64 20 61 73 20 6e 6f 72 6d 61 6c 20 61 | ackets.are.processed.as.normal.a |
| 95ca0 | 6e 64 20 56 79 4f 53 20 64 6f 65 73 20 6e 6f 74 20 73 65 6e 64 20 65 69 74 68 65 72 20 6d 75 6c | nd.VyOS.does.not.send.either.mul |
| 95cc0 | 74 69 63 61 73 74 20 6f 72 20 75 6e 69 63 61 73 74 20 52 49 50 20 70 61 63 6b 65 74 73 20 65 78 | ticast.or.unicast.RIP.packets.ex |
| 95ce0 | 63 65 70 74 20 74 6f 20 52 49 50 20 6e 65 69 67 68 62 6f 72 73 20 73 70 65 63 69 66 69 65 64 20 | cept.to.RIP.neighbors.specified. |
| 95d00 | 77 69 74 68 20 6e 65 69 67 68 62 6f 72 20 63 6f 6d 6d 61 6e 64 2e 00 54 68 69 73 20 63 6f 6d 6d | with.neighbor.command..This.comm |
| 95d20 | 61 6e 64 20 73 68 6f 75 6c 64 20 4e 4f 54 20 62 65 20 73 65 74 20 6e 6f 72 6d 61 6c 6c 79 2e 00 | and.should.NOT.be.set.normally.. |
| 95d40 | 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 68 6f 77 73 20 62 6f 74 68 20 73 74 61 74 75 73 20 61 | This.command.shows.both.status.a |
| 95d60 | 6e 64 20 73 74 61 74 69 73 74 69 63 73 20 6f 6e 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 77 | nd.statistics.on.the.specified.w |
| 95d80 | 69 72 65 6c 65 73 73 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 65 20 77 69 72 65 6c 65 73 73 20 | ireless.interface..The.wireless. |
| 95da0 | 69 6e 74 65 72 66 61 63 65 20 69 64 65 6e 74 69 66 69 65 72 20 63 61 6e 20 72 61 6e 67 65 20 66 | interface.identifier.can.range.f |
| 95dc0 | 72 6f 6d 20 77 6c 61 6e 30 20 74 6f 20 77 6c 61 6e 39 39 39 2e 00 54 68 69 73 20 63 6f 6d 6d 61 | rom.wlan0.to.wlan999..This.comma |
| 95de0 | 6e 64 20 73 70 65 63 69 66 69 65 73 20 61 20 42 47 50 20 63 6f 6e 66 65 64 65 72 61 74 69 6f 6e | nd.specifies.a.BGP.confederation |
| 95e00 | 20 69 64 65 6e 74 69 66 69 65 72 2e 20 3c 61 73 6e 3e 20 69 73 20 74 68 65 20 6e 75 6d 62 65 72 | .identifier..<asn>.is.the.number |
| 95e20 | 20 6f 66 20 74 68 65 20 61 75 74 6f 6e 6f 6d 6f 75 73 20 73 79 73 74 65 6d 20 74 68 61 74 20 69 | .of.the.autonomous.system.that.i |
| 95e40 | 6e 74 65 72 6e 61 6c 6c 79 20 69 6e 63 6c 75 64 65 73 20 6d 75 6c 74 69 70 6c 65 20 73 75 62 2d | nternally.includes.multiple.sub- |
| 95e60 | 61 75 74 6f 6e 6f 6d 6f 75 73 20 73 79 73 74 65 6d 73 20 28 61 20 63 6f 6e 66 65 64 65 72 61 74 | autonomous.systems.(a.confederat |
| 95e80 | 69 6f 6e 29 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 61 20 42 | ion)..This.command.specifies.a.B |
| 95ea0 | 61 62 65 6c 20 65 6e 61 62 6c 65 64 20 69 6e 74 65 72 66 61 63 65 20 62 79 20 69 6e 74 65 72 66 | abel.enabled.interface.by.interf |
| 95ec0 | 61 63 65 20 6e 61 6d 65 2e 20 42 6f 74 68 20 74 68 65 20 73 65 6e 64 69 6e 67 20 61 6e 64 20 72 | ace.name..Both.the.sending.and.r |
| 95ee0 | 65 63 65 69 76 69 6e 67 20 6f 66 20 42 61 62 65 6c 20 70 61 63 6b 65 74 73 20 77 69 6c 6c 20 62 | eceiving.of.Babel.packets.will.b |
| 95f00 | 65 20 65 6e 61 62 6c 65 64 20 6f 6e 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 73 70 65 63 69 | e.enabled.on.the.interface.speci |
| 95f20 | 66 69 65 64 20 69 6e 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 | fied.in.this.command..This.comma |
| 95f40 | 6e 64 20 73 70 65 63 69 66 69 65 73 20 61 20 4d 44 35 20 70 61 73 73 77 6f 72 64 20 74 6f 20 62 | nd.specifies.a.MD5.password.to.b |
| 95f60 | 65 20 75 73 65 64 20 77 69 74 68 20 74 68 65 20 74 63 70 20 73 6f 63 6b 65 74 20 74 68 61 74 20 | e.used.with.the.tcp.socket.that. |
| 95f80 | 69 73 20 62 65 69 6e 67 20 75 73 65 64 20 74 6f 20 63 6f 6e 6e 65 63 74 20 74 6f 20 74 68 65 20 | is.being.used.to.connect.to.the. |
| 95fa0 | 72 65 6d 6f 74 65 20 70 65 65 72 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 | remote.peer..This.command.specif |
| 95fc0 | 69 65 73 20 61 20 52 49 50 20 65 6e 61 62 6c 65 64 20 69 6e 74 65 72 66 61 63 65 20 62 79 20 69 | ies.a.RIP.enabled.interface.by.i |
| 95fe0 | 6e 74 65 72 66 61 63 65 20 6e 61 6d 65 2e 20 42 6f 74 68 20 74 68 65 20 73 65 6e 64 69 6e 67 20 | nterface.name..Both.the.sending. |
| 96000 | 61 6e 64 20 72 65 63 65 69 76 69 6e 67 20 6f 66 20 52 49 50 20 70 61 63 6b 65 74 73 20 77 69 6c | and.receiving.of.RIP.packets.wil |
| 96020 | 6c 20 62 65 20 65 6e 61 62 6c 65 64 20 6f 6e 20 74 68 65 20 70 6f 72 74 20 73 70 65 63 69 66 69 | l.be.enabled.on.the.port.specifi |
| 96040 | 65 64 20 69 6e 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 | ed.in.this.command..This.command |
| 96060 | 20 73 70 65 63 69 66 69 65 73 20 61 20 52 49 50 20 6e 65 69 67 68 62 6f 72 2e 20 57 68 65 6e 20 | .specifies.a.RIP.neighbor..When. |
| 96080 | 61 20 6e 65 69 67 68 62 6f 72 20 64 6f 65 73 6e e2 80 99 74 20 75 6e 64 65 72 73 74 61 6e 64 20 | a.neighbor.doesn...t.understand. |
| 960a0 | 6d 75 6c 74 69 63 61 73 74 2c 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 75 73 65 64 20 | multicast,.this.command.is.used. |
| 960c0 | 74 6f 20 73 70 65 63 69 66 79 20 6e 65 69 67 68 62 6f 72 73 2e 20 49 6e 20 73 6f 6d 65 20 63 61 | to.specify.neighbors..In.some.ca |
| 960e0 | 73 65 73 2c 20 6e 6f 74 20 61 6c 6c 20 72 6f 75 74 65 72 73 20 77 69 6c 6c 20 62 65 20 61 62 6c | ses,.not.all.routers.will.be.abl |
| 96100 | 65 20 74 6f 20 75 6e 64 65 72 73 74 61 6e 64 20 6d 75 6c 74 69 63 61 73 74 69 6e 67 2c 20 77 68 | e.to.understand.multicasting,.wh |
| 96120 | 65 72 65 20 70 61 63 6b 65 74 73 20 61 72 65 20 73 65 6e 74 20 74 6f 20 61 20 6e 65 74 77 6f 72 | ere.packets.are.sent.to.a.networ |
| 96140 | 6b 20 6f 72 20 61 20 67 72 6f 75 70 20 6f 66 20 61 64 64 72 65 73 73 65 73 2e 20 49 6e 20 61 20 | k.or.a.group.of.addresses..In.a. |
| 96160 | 73 69 74 75 61 74 69 6f 6e 20 77 68 65 72 65 20 61 20 6e 65 69 67 68 62 6f 72 20 63 61 6e 6e 6f | situation.where.a.neighbor.canno |
| 96180 | 74 20 70 72 6f 63 65 73 73 20 6d 75 6c 74 69 63 61 73 74 20 70 61 63 6b 65 74 73 2c 20 69 74 20 | t.process.multicast.packets,.it. |
| 961a0 | 69 73 20 6e 65 63 65 73 73 61 72 79 20 74 6f 20 65 73 74 61 62 6c 69 73 68 20 61 20 64 69 72 65 | is.necessary.to.establish.a.dire |
| 961c0 | 63 74 20 6c 69 6e 6b 20 62 65 74 77 65 65 6e 20 72 6f 75 74 65 72 73 2e 00 54 68 69 73 20 63 6f | ct.link.between.routers..This.co |
| 961e0 | 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 61 20 64 65 66 61 75 6c 74 20 77 65 69 67 68 74 | mmand.specifies.a.default.weight |
| 96200 | 20 76 61 6c 75 65 20 66 6f 72 20 74 68 65 20 6e 65 69 67 68 62 6f 72 e2 80 99 73 20 72 6f 75 74 | .value.for.the.neighbor...s.rout |
| 96220 | 65 73 2e 20 54 68 65 20 6e 75 6d 62 65 72 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 36 35 35 | es..The.number.range.is.1.to.655 |
| 96240 | 33 35 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 61 20 6d 61 78 | 35..This.command.specifies.a.max |
| 96260 | 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 70 72 65 66 69 78 65 73 20 77 65 20 63 61 6e 20 72 | imum.number.of.prefixes.we.can.r |
| 96280 | 65 63 65 69 76 65 20 66 72 6f 6d 20 61 20 67 69 76 65 6e 20 70 65 65 72 2e 20 49 66 20 74 68 69 | eceive.from.a.given.peer..If.thi |
| 962a0 | 73 20 6e 75 6d 62 65 72 20 69 73 20 65 78 63 65 65 64 65 64 2c 20 74 68 65 20 42 47 50 20 73 65 | s.number.is.exceeded,.the.BGP.se |
| 962c0 | 73 73 69 6f 6e 20 77 69 6c 6c 20 62 65 20 64 65 73 74 72 6f 79 65 64 2e 20 54 68 65 20 6e 75 6d | ssion.will.be.destroyed..The.num |
| 962e0 | 62 65 72 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 34 32 39 34 39 36 37 32 39 35 2e 00 54 68 | ber.range.is.1.to.4294967295..Th |
| 96300 | 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 61 6c 6c 20 69 6e 74 65 72 66 61 | is.command.specifies.all.interfa |
| 96320 | 63 65 73 20 61 73 20 70 61 73 73 69 76 65 20 62 79 20 64 65 66 61 75 6c 74 2e 20 42 65 63 61 75 | ces.as.passive.by.default..Becau |
| 96340 | 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 68 61 6e 67 65 73 20 74 68 65 20 63 6f 6e 66 | se.this.command.changes.the.conf |
| 96360 | 69 67 75 72 61 74 69 6f 6e 20 6c 6f 67 69 63 20 74 6f 20 61 20 64 65 66 61 75 6c 74 20 70 61 73 | iguration.logic.to.a.default.pas |
| 96380 | 73 69 76 65 3b 20 74 68 65 72 65 66 6f 72 65 2c 20 69 6e 74 65 72 66 61 63 65 73 20 77 68 65 72 | sive;.therefore,.interfaces.wher |
| 963a0 | 65 20 72 6f 75 74 65 72 20 61 64 6a 61 63 65 6e 63 69 65 73 20 61 72 65 20 65 78 70 65 63 74 65 | e.router.adjacencies.are.expecte |
| 963c0 | 64 20 6e 65 65 64 20 74 6f 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 77 69 74 68 20 74 68 65 | d.need.to.be.configured.with.the |
| 963e0 | 20 3a 63 66 67 63 6d 64 3a 60 70 61 73 73 69 76 65 2d 69 6e 74 65 72 66 61 63 65 2d 65 78 63 6c | .:cfgcmd:`passive-interface-excl |
| 96400 | 75 64 65 60 20 63 6f 6d 6d 61 6e 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 | ude`.command..This.command.speci |
| 96420 | 66 69 65 73 20 61 6c 6c 20 69 6e 74 65 72 66 61 63 65 73 20 74 6f 20 70 61 73 73 69 76 65 20 6d | fies.all.interfaces.to.passive.m |
| 96440 | 6f 64 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 61 6e 20 61 | ode..This.command.specifies.an.a |
| 96460 | 67 67 72 65 67 61 74 65 20 61 64 64 72 65 73 73 20 61 6e 64 20 70 72 6f 76 69 64 65 73 20 74 68 | ggregate.address.and.provides.th |
| 96480 | 61 74 20 6c 6f 6e 67 65 72 2d 70 72 65 66 69 78 65 73 20 69 6e 73 69 64 65 20 6f 66 20 74 68 65 | at.longer-prefixes.inside.of.the |
| 964a0 | 20 61 67 67 72 65 67 61 74 65 20 61 64 64 72 65 73 73 20 61 72 65 20 73 75 70 70 72 65 73 73 65 | .aggregate.address.are.suppresse |
| 964c0 | 64 20 62 65 66 6f 72 65 20 73 65 6e 64 69 6e 67 20 42 47 50 20 75 70 64 61 74 65 73 20 6f 75 74 | d.before.sending.BGP.updates.out |
| 964e0 | 20 74 6f 20 70 65 65 72 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 | .to.peers..This.command.specifie |
| 96500 | 73 20 61 6e 20 61 67 67 72 65 67 61 74 65 20 61 64 64 72 65 73 73 20 77 69 74 68 20 61 20 6d 61 | s.an.aggregate.address.with.a.ma |
| 96520 | 74 68 65 6d 61 74 69 63 61 6c 20 73 65 74 20 6f 66 20 61 75 74 6f 6e 6f 6d 6f 75 73 20 73 79 73 | thematical.set.of.autonomous.sys |
| 96540 | 74 65 6d 73 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 75 6d 6d 61 72 69 7a 65 73 20 74 68 | tems..This.command.summarizes.th |
| 96560 | 65 20 41 53 5f 50 41 54 48 20 61 74 74 72 69 62 75 74 65 73 20 6f 66 20 61 6c 6c 20 74 68 65 20 | e.AS_PATH.attributes.of.all.the. |
| 96580 | 69 6e 64 69 76 69 64 75 61 6c 20 72 6f 75 74 65 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 | individual.routes..This.command. |
| 965a0 | 73 70 65 63 69 66 69 65 73 20 61 6e 20 61 67 67 72 65 67 61 74 65 20 61 64 64 72 65 73 73 2e 20 | specifies.an.aggregate.address.. |
| 965c0 | 54 68 65 20 72 6f 75 74 65 72 20 77 69 6c 6c 20 61 6c 73 6f 20 61 6e 6e 6f 75 6e 63 65 20 6c 6f | The.router.will.also.announce.lo |
| 965e0 | 6e 67 65 72 2d 70 72 65 66 69 78 65 73 20 69 6e 73 69 64 65 20 6f 66 20 74 68 65 20 61 67 67 72 | nger-prefixes.inside.of.the.aggr |
| 96600 | 65 67 61 74 65 20 61 64 64 72 65 73 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 | egate.address..This.command.spec |
| 96620 | 69 66 69 65 73 20 61 74 74 72 69 62 75 74 65 73 20 74 6f 20 62 65 20 6c 65 66 74 20 75 6e 63 68 | ifies.attributes.to.be.left.unch |
| 96640 | 61 6e 67 65 64 20 66 6f 72 20 61 64 76 65 72 74 69 73 65 6d 65 6e 74 73 20 73 65 6e 74 20 74 6f | anged.for.advertisements.sent.to |
| 96660 | 20 61 20 70 65 65 72 20 6f 72 20 70 65 65 72 20 67 72 6f 75 70 2e 00 54 68 69 73 20 63 6f 6d 6d | .a.peer.or.peer.group..This.comm |
| 96680 | 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 63 69 72 63 75 69 74 20 74 79 70 65 20 66 6f 72 20 69 | and.specifies.circuit.type.for.i |
| 966a0 | 6e 74 65 72 66 61 63 65 3a 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 | nterface:.This.command.specifies |
| 966c0 | 20 63 6c 75 73 74 65 72 20 49 44 20 77 68 69 63 68 20 69 64 65 6e 74 69 66 69 65 73 20 61 20 63 | .cluster.ID.which.identifies.a.c |
| 966e0 | 6f 6c 6c 65 63 74 69 6f 6e 20 6f 66 20 72 6f 75 74 65 20 72 65 66 6c 65 63 74 6f 72 73 20 61 6e | ollection.of.route.reflectors.an |
| 96700 | 64 20 74 68 65 69 72 20 63 6c 69 65 6e 74 73 2c 20 61 6e 64 20 69 73 20 75 73 65 64 20 62 79 20 | d.their.clients,.and.is.used.by. |
| 96720 | 72 6f 75 74 65 20 72 65 66 6c 65 63 74 6f 72 73 20 74 6f 20 61 76 6f 69 64 20 6c 6f 6f 70 69 6e | route.reflectors.to.avoid.loopin |
| 96740 | 67 2e 20 42 79 20 64 65 66 61 75 6c 74 20 63 6c 75 73 74 65 72 20 49 44 20 69 73 20 73 65 74 20 | g..By.default.cluster.ID.is.set. |
| 96760 | 74 6f 20 74 68 65 20 42 47 50 20 72 6f 75 74 65 72 20 69 64 20 76 61 6c 75 65 2c 20 62 75 74 20 | to.the.BGP.router.id.value,.but. |
| 96780 | 63 61 6e 20 62 65 20 73 65 74 20 74 6f 20 61 6e 20 61 72 62 69 74 72 61 72 79 20 33 32 2d 62 69 | can.be.set.to.an.arbitrary.32-bi |
| 967a0 | 74 20 76 61 6c 75 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 | t.value..This.command.specifies. |
| 967c0 | 68 6f 6c 64 2d 74 69 6d 65 20 69 6e 20 73 65 63 6f 6e 64 73 2e 20 54 68 65 20 74 69 6d 65 72 20 | hold-time.in.seconds..The.timer. |
| 967e0 | 72 61 6e 67 65 20 69 73 20 34 20 74 6f 20 36 35 35 33 35 2e 20 54 68 65 20 64 65 66 61 75 6c 74 | range.is.4.to.65535..The.default |
| 96800 | 20 76 61 6c 75 65 20 69 73 20 31 38 30 20 73 65 63 6f 6e 64 2e 20 49 66 20 79 6f 75 20 73 65 74 | .value.is.180.second..If.you.set |
| 96820 | 20 76 61 6c 75 65 20 74 6f 20 30 20 56 79 4f 53 20 77 69 6c 6c 20 6e 6f 74 20 68 6f 6c 64 20 72 | .value.to.0.VyOS.will.not.hold.r |
| 96840 | 6f 75 74 65 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 69 6e | outes..This.command.specifies.in |
| 96860 | 74 65 72 66 61 63 65 20 61 73 20 70 61 73 73 69 76 65 2e 20 50 61 73 73 69 76 65 20 69 6e 74 65 | terface.as.passive..Passive.inte |
| 96880 | 72 66 61 63 65 20 61 64 76 65 72 74 69 73 65 73 20 69 74 73 20 61 64 64 72 65 73 73 2c 20 62 75 | rface.advertises.its.address,.bu |
| 968a0 | 74 20 64 6f 65 73 20 6e 6f 74 20 72 75 6e 20 74 68 65 20 4f 53 50 46 20 70 72 6f 74 6f 63 6f 6c | t.does.not.run.the.OSPF.protocol |
| 968c0 | 20 28 61 64 6a 61 63 65 6e 63 69 65 73 20 61 72 65 20 6e 6f 74 20 66 6f 72 6d 65 64 20 61 6e 64 | .(adjacencies.are.not.formed.and |
| 968e0 | 20 68 65 6c 6c 6f 20 70 61 63 6b 65 74 73 20 61 72 65 20 6e 6f 74 20 67 65 6e 65 72 61 74 65 64 | .hello.packets.are.not.generated |
| 96900 | 29 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 6b 65 65 70 2d 61 | )..This.command.specifies.keep-a |
| 96920 | 6c 69 76 65 20 74 69 6d 65 20 69 6e 20 73 65 63 6f 6e 64 73 2e 20 54 68 65 20 74 69 6d 65 72 20 | live.time.in.seconds..The.timer. |
| 96940 | 63 61 6e 20 72 61 6e 67 65 20 66 72 6f 6d 20 34 20 74 6f 20 36 35 35 33 35 2e 20 54 68 65 20 64 | can.range.from.4.to.65535..The.d |
| 96960 | 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 36 30 20 73 65 63 6f 6e 64 2e 00 54 68 69 73 20 | efault.value.is.60.second..This. |
| 96980 | 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 6d 65 74 72 69 63 20 28 4d 45 44 29 20 66 | command.specifies.metric.(MED).f |
| 969a0 | 6f 72 20 72 65 64 69 73 74 72 69 62 75 74 65 64 20 72 6f 75 74 65 73 2e 20 54 68 65 20 6d 65 74 | or.redistributed.routes..The.met |
| 969c0 | 72 69 63 20 72 61 6e 67 65 20 69 73 20 30 20 74 6f 20 34 32 39 34 39 36 37 32 39 35 2e 20 54 68 | ric.range.is.0.to.4294967295..Th |
| 969e0 | 65 72 65 20 61 72 65 20 73 69 78 20 6d 6f 64 65 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 | ere.are.six.modes.available.for. |
| 96a00 | 72 6f 75 74 65 20 73 6f 75 72 63 65 3a 20 63 6f 6e 6e 65 63 74 65 64 2c 20 6b 65 72 6e 65 6c 2c | route.source:.connected,.kernel, |
| 96a20 | 20 6f 73 70 66 2c 20 72 69 70 2c 20 73 74 61 74 69 63 2c 20 74 61 62 6c 65 2e 00 54 68 69 73 20 | .ospf,.rip,.static,.table..This. |
| 96a40 | 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 6d 65 74 72 69 63 20 66 6f 72 20 72 65 64 | command.specifies.metric.for.red |
| 96a60 | 69 73 74 72 69 62 75 74 65 64 20 72 6f 75 74 65 73 20 66 72 6f 6d 20 74 68 65 20 67 69 76 65 6e | istributed.routes.from.the.given |
| 96a80 | 20 72 6f 75 74 65 20 73 6f 75 72 63 65 2e 20 54 68 65 72 65 20 61 72 65 20 66 69 76 65 20 6d 6f | .route.source..There.are.five.mo |
| 96aa0 | 64 65 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 72 6f 75 74 65 20 73 6f 75 72 63 65 3a 20 | des.available.for.route.source:. |
| 96ac0 | 62 67 70 2c 20 63 6f 6e 6e 65 63 74 65 64 2c 20 6b 65 72 6e 65 6c 2c 20 6f 73 70 66 2c 20 73 74 | bgp,.connected,.kernel,.ospf,.st |
| 96ae0 | 61 74 69 63 2e 20 54 68 65 20 6d 65 74 72 69 63 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 31 | atic..The.metric.range.is.1.to.1 |
| 96b00 | 36 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 6d 65 74 72 69 63 | 6..This.command.specifies.metric |
| 96b20 | 20 66 6f 72 20 72 65 64 69 73 74 72 69 62 75 74 65 64 20 72 6f 75 74 65 73 20 66 72 6f 6d 20 74 | .for.redistributed.routes.from.t |
| 96b40 | 68 65 20 67 69 76 65 6e 20 72 6f 75 74 65 20 73 6f 75 72 63 65 2e 20 54 68 65 72 65 20 61 72 65 | he.given.route.source..There.are |
| 96b60 | 20 66 69 76 65 20 6d 6f 64 65 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 72 6f 75 74 65 20 | .five.modes.available.for.route. |
| 96b80 | 73 6f 75 72 63 65 3a 20 62 67 70 2c 20 63 6f 6e 6e 65 63 74 65 64 2c 20 6b 65 72 6e 65 6c 2c 20 | source:.bgp,.connected,.kernel,. |
| 96ba0 | 72 69 70 2c 20 73 74 61 74 69 63 2e 20 54 68 65 20 6d 65 74 72 69 63 20 72 61 6e 67 65 20 69 73 | rip,.static..The.metric.range.is |
| 96bc0 | 20 31 20 74 6f 20 31 36 37 37 37 32 31 34 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 | .1.to.16777214..This.command.spe |
| 96be0 | 63 69 66 69 65 73 20 6d 65 74 72 69 63 20 66 6f 72 20 72 65 64 69 73 74 72 69 62 75 74 65 64 20 | cifies.metric.for.redistributed. |
| 96c00 | 72 6f 75 74 65 73 20 66 72 6f 6d 20 74 68 65 20 67 69 76 65 6e 20 72 6f 75 74 65 20 73 6f 75 72 | routes.from.the.given.route.sour |
| 96c20 | 63 65 2e 20 54 68 65 72 65 20 61 72 65 20 73 69 78 20 6d 6f 64 65 73 20 61 76 61 69 6c 61 62 6c | ce..There.are.six.modes.availabl |
| 96c40 | 65 20 66 6f 72 20 72 6f 75 74 65 20 73 6f 75 72 63 65 3a 20 62 67 70 2c 20 63 6f 6e 6e 65 63 74 | e.for.route.source:.bgp,.connect |
| 96c60 | 65 64 2c 20 6b 65 72 6e 65 6c 2c 20 6f 73 70 66 2c 20 72 69 70 2c 20 73 74 61 74 69 63 2e 20 54 | ed,.kernel,.ospf,.rip,.static..T |
| 96c80 | 68 65 20 6d 65 74 72 69 63 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 31 36 37 37 37 32 31 35 | he.metric.range.is.1.to.16777215 |
| 96ca0 | 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 6d 65 74 72 69 63 20 | ..This.command.specifies.metric. |
| 96cc0 | 74 79 70 65 20 66 6f 72 20 72 65 64 69 73 74 72 69 62 75 74 65 64 20 72 6f 75 74 65 73 2e 20 44 | type.for.redistributed.routes..D |
| 96ce0 | 69 66 66 65 72 65 6e 63 65 20 62 65 74 77 65 65 6e 20 74 77 6f 20 6d 65 74 72 69 63 20 74 79 70 | ifference.between.two.metric.typ |
| 96d00 | 65 73 20 74 68 61 74 20 6d 65 74 72 69 63 20 74 79 70 65 20 31 20 69 73 20 61 20 6d 65 74 72 69 | es.that.metric.type.1.is.a.metri |
| 96d20 | 63 20 77 68 69 63 68 20 69 73 20 22 63 6f 6d 6d 65 6e 73 75 72 61 62 6c 65 22 20 77 69 74 68 20 | c.which.is."commensurable".with. |
| 96d40 | 69 6e 6e 65 72 20 4f 53 50 46 20 6c 69 6e 6b 73 2e 20 57 68 65 6e 20 63 61 6c 63 75 6c 61 74 69 | inner.OSPF.links..When.calculati |
| 96d60 | 6e 67 20 61 20 6d 65 74 72 69 63 20 74 6f 20 74 68 65 20 65 78 74 65 72 6e 61 6c 20 64 65 73 74 | ng.a.metric.to.the.external.dest |
| 96d80 | 69 6e 61 74 69 6f 6e 2c 20 74 68 65 20 66 75 6c 6c 20 70 61 74 68 20 6d 65 74 72 69 63 20 69 73 | ination,.the.full.path.metric.is |
| 96da0 | 20 63 61 6c 63 75 6c 61 74 65 64 20 61 73 20 61 20 6d 65 74 72 69 63 20 73 75 6d 20 70 61 74 68 | .calculated.as.a.metric.sum.path |
| 96dc0 | 20 6f 66 20 61 20 72 6f 75 74 65 72 20 77 68 69 63 68 20 68 61 64 20 61 64 76 65 72 74 69 73 65 | .of.a.router.which.had.advertise |
| 96de0 | 64 20 74 68 69 73 20 6c 69 6e 6b 20 70 6c 75 73 20 74 68 65 20 6c 69 6e 6b 20 6d 65 74 72 69 63 | d.this.link.plus.the.link.metric |
| 96e00 | 2e 20 54 68 75 73 2c 20 61 20 72 6f 75 74 65 20 77 69 74 68 20 74 68 65 20 6c 65 61 73 74 20 73 | ..Thus,.a.route.with.the.least.s |
| 96e20 | 75 6d 6d 61 72 79 20 6d 65 74 72 69 63 20 77 69 6c 6c 20 62 65 20 73 65 6c 65 63 74 65 64 2e 20 | ummary.metric.will.be.selected.. |
| 96e40 | 49 66 20 65 78 74 65 72 6e 61 6c 20 6c 69 6e 6b 20 69 73 20 61 64 76 65 72 74 69 73 65 64 20 77 | If.external.link.is.advertised.w |
| 96e60 | 69 74 68 20 6d 65 74 72 69 63 20 74 79 70 65 20 32 20 74 68 65 20 70 61 74 68 20 69 73 20 73 65 | ith.metric.type.2.the.path.is.se |
| 96e80 | 6c 65 63 74 65 64 20 77 68 69 63 68 20 6c 69 65 73 20 74 68 72 6f 75 67 68 20 74 68 65 20 72 6f | lected.which.lies.through.the.ro |
| 96ea0 | 75 74 65 72 20 77 68 69 63 68 20 61 64 76 65 72 74 69 73 65 64 20 74 68 69 73 20 6c 69 6e 6b 20 | uter.which.advertised.this.link. |
| 96ec0 | 77 69 74 68 20 74 68 65 20 6c 65 61 73 74 20 6d 65 74 72 69 63 20 64 65 73 70 69 74 65 20 6f 66 | with.the.least.metric.despite.of |
| 96ee0 | 20 74 68 65 20 66 61 63 74 20 74 68 61 74 20 69 6e 74 65 72 6e 61 6c 20 70 61 74 68 20 74 6f 20 | .the.fact.that.internal.path.to. |
| 96f00 | 74 68 69 73 20 72 6f 75 74 65 72 20 69 73 20 6c 6f 6e 67 65 72 20 28 77 69 74 68 20 6d 6f 72 65 | this.router.is.longer.(with.more |
| 96f20 | 20 63 6f 73 74 29 2e 20 48 6f 77 65 76 65 72 2c 20 69 66 20 74 77 6f 20 72 6f 75 74 65 72 73 20 | .cost)..However,.if.two.routers. |
| 96f40 | 61 64 76 65 72 74 69 73 65 64 20 61 6e 20 65 78 74 65 72 6e 61 6c 20 6c 69 6e 6b 20 61 6e 64 20 | advertised.an.external.link.and. |
| 96f60 | 77 69 74 68 20 6d 65 74 72 69 63 20 74 79 70 65 20 32 20 74 68 65 20 70 72 65 66 65 72 65 6e 63 | with.metric.type.2.the.preferenc |
| 96f80 | 65 20 69 73 20 67 69 76 65 6e 20 74 6f 20 74 68 65 20 70 61 74 68 20 77 68 69 63 68 20 6c 69 65 | e.is.given.to.the.path.which.lie |
| 96fa0 | 73 20 74 68 72 6f 75 67 68 20 74 68 65 20 72 6f 75 74 65 72 20 77 69 74 68 20 61 20 73 68 6f 72 | s.through.the.router.with.a.shor |
| 96fc0 | 74 65 72 20 69 6e 74 65 72 6e 61 6c 20 70 61 74 68 2e 20 49 66 20 74 77 6f 20 64 69 66 66 65 72 | ter.internal.path..If.two.differ |
| 96fe0 | 65 6e 74 20 72 6f 75 74 65 72 73 20 61 64 76 65 72 74 69 73 65 64 20 74 77 6f 20 6c 69 6e 6b 73 | ent.routers.advertised.two.links |
| 97000 | 20 74 6f 20 74 68 65 20 73 61 6d 65 20 65 78 74 65 72 6e 61 6c 20 64 65 73 74 69 6d 61 74 69 6f | .to.the.same.external.destimatio |
| 97020 | 6e 20 62 75 74 20 77 69 74 68 20 64 69 66 66 65 72 65 6e 74 20 6d 65 74 72 69 63 20 74 79 70 65 | n.but.with.different.metric.type |
| 97040 | 2c 20 6d 65 74 72 69 63 20 74 79 70 65 20 31 20 69 73 20 70 72 65 66 65 72 72 65 64 2e 20 49 66 | ,.metric.type.1.is.preferred..If |
| 97060 | 20 74 79 70 65 20 6f 66 20 61 20 6d 65 74 72 69 63 20 6c 65 66 74 20 75 6e 64 65 66 69 6e 65 64 | .type.of.a.metric.left.undefined |
| 97080 | 20 74 68 65 20 72 6f 75 74 65 72 20 77 69 6c 6c 20 63 6f 6e 73 69 64 65 72 20 74 68 65 73 65 20 | .the.router.will.consider.these. |
| 970a0 | 65 78 74 65 72 6e 61 6c 20 6c 69 6e 6b 73 20 74 6f 20 68 61 76 65 20 61 20 64 65 66 61 75 6c 74 | external.links.to.have.a.default |
| 970c0 | 20 6d 65 74 72 69 63 20 74 79 70 65 20 32 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 | .metric.type.2..This.command.spe |
| 970e0 | 63 69 66 69 65 73 20 6e 65 74 77 6f 72 6b 20 74 79 70 65 20 74 6f 20 50 6f 69 6e 74 2d 74 6f 2d | cifies.network.type.to.Point-to- |
| 97100 | 50 6f 69 6e 74 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 6e 65 74 77 6f 72 6b 20 74 79 70 65 20 | Point..The.default.network.type. |
| 97120 | 69 73 20 62 72 6f 61 64 63 61 73 74 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 | is.broadcast..This.command.speci |
| 97140 | 66 69 65 73 20 74 68 61 74 20 42 47 50 20 63 6f 6e 73 69 64 65 72 73 20 74 68 65 20 4d 45 44 20 | fies.that.BGP.considers.the.MED. |
| 97160 | 77 68 65 6e 20 63 6f 6d 70 61 72 69 6e 67 20 72 6f 75 74 65 73 20 6f 72 69 67 69 6e 61 74 65 64 | when.comparing.routes.originated |
| 97180 | 20 66 72 6f 6d 20 64 69 66 66 65 72 65 6e 74 20 73 75 62 2d 41 53 73 20 77 69 74 68 69 6e 20 74 | .from.different.sub-ASs.within.t |
| 971a0 | 68 65 20 63 6f 6e 66 65 64 65 72 61 74 69 6f 6e 20 74 6f 20 77 68 69 63 68 20 74 68 69 73 20 42 | he.confederation.to.which.this.B |
| 971c0 | 47 50 20 73 70 65 61 6b 65 72 20 62 65 6c 6f 6e 67 73 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 | GP.speaker.belongs..The.default. |
| 971e0 | 73 74 61 74 65 2c 20 77 68 65 72 65 20 74 68 65 20 4d 45 44 20 61 74 74 72 69 62 75 74 65 20 69 | state,.where.the.MED.attribute.i |
| 97200 | 73 20 6e 6f 74 20 63 6f 6e 73 69 64 65 72 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 | s.not.considered..This.command.s |
| 97220 | 70 65 63 69 66 69 65 73 20 74 68 61 74 20 42 47 50 20 64 65 63 69 73 69 6f 6e 20 70 72 6f 63 65 | pecifies.that.BGP.decision.proce |
| 97240 | 73 73 20 73 68 6f 75 6c 64 20 63 6f 6e 73 69 64 65 72 20 70 61 74 68 73 20 6f 66 20 65 71 75 61 | ss.should.consider.paths.of.equa |
| 97260 | 6c 20 41 53 5f 50 41 54 48 20 6c 65 6e 67 74 68 20 63 61 6e 64 69 64 61 74 65 73 20 66 6f 72 20 | l.AS_PATH.length.candidates.for. |
| 97280 | 6d 75 6c 74 69 70 61 74 68 20 63 6f 6d 70 75 74 61 74 69 6f 6e 2e 20 57 69 74 68 6f 75 74 20 74 | multipath.computation..Without.t |
| 972a0 | 68 65 20 6b 6e 6f 62 2c 20 74 68 65 20 65 6e 74 69 72 65 20 41 53 5f 50 41 54 48 20 6d 75 73 74 | he.knob,.the.entire.AS_PATH.must |
| 972c0 | 20 6d 61 74 63 68 20 66 6f 72 20 6d 75 6c 74 69 70 61 74 68 20 63 6f 6d 70 75 74 61 74 69 6f 6e | .match.for.multipath.computation |
| 972e0 | 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 61 74 20 61 20 | ..This.command.specifies.that.a. |
| 97300 | 72 6f 75 74 65 20 77 69 74 68 20 61 20 4d 45 44 20 69 73 20 61 6c 77 61 79 73 20 63 6f 6e 73 69 | route.with.a.MED.is.always.consi |
| 97320 | 64 65 72 65 64 20 74 6f 20 62 65 20 62 65 74 74 65 72 20 74 68 61 6e 20 61 20 72 6f 75 74 65 20 | dered.to.be.better.than.a.route. |
| 97340 | 77 69 74 68 6f 75 74 20 61 20 4d 45 44 20 62 79 20 63 61 75 73 69 6e 67 20 74 68 65 20 6d 69 73 | without.a.MED.by.causing.the.mis |
| 97360 | 73 69 6e 67 20 4d 45 44 20 61 74 74 72 69 62 75 74 65 20 74 6f 20 68 61 76 65 20 61 20 76 61 6c | sing.MED.attribute.to.have.a.val |
| 97380 | 75 65 20 6f 66 20 69 6e 66 69 6e 69 74 79 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 73 74 61 74 | ue.of.infinity..The.default.stat |
| 973a0 | 65 2c 20 77 68 65 72 65 20 74 68 65 20 6d 69 73 73 69 6e 67 20 4d 45 44 20 61 74 74 72 69 62 75 | e,.where.the.missing.MED.attribu |
| 973c0 | 74 65 20 69 73 20 63 6f 6e 73 69 64 65 72 65 64 20 74 6f 20 68 61 76 65 20 61 20 76 61 6c 75 65 | te.is.considered.to.have.a.value |
| 973e0 | 20 6f 66 20 7a 65 72 6f 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 | .of.zero..This.command.specifies |
| 97400 | 20 74 68 61 74 20 72 6f 75 74 65 20 75 70 64 61 74 65 73 20 72 65 63 65 69 76 65 64 20 66 72 6f | .that.route.updates.received.fro |
| 97420 | 6d 20 74 68 69 73 20 6e 65 69 67 68 62 6f 72 20 77 69 6c 6c 20 62 65 20 73 74 6f 72 65 64 20 75 | m.this.neighbor.will.be.stored.u |
| 97440 | 6e 6d 6f 64 69 66 69 65 64 2c 20 72 65 67 61 72 64 6c 65 73 73 20 6f 66 20 74 68 65 20 69 6e 62 | nmodified,.regardless.of.the.inb |
| 97460 | 6f 75 6e 64 20 70 6f 6c 69 63 79 2e 20 57 68 65 6e 20 69 6e 62 6f 75 6e 64 20 73 6f 66 74 20 72 | ound.policy..When.inbound.soft.r |
| 97480 | 65 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 73 20 65 6e 61 62 6c 65 64 2c 20 74 68 65 20 73 | econfiguration.is.enabled,.the.s |
| 974a0 | 74 6f 72 65 64 20 75 70 64 61 74 65 73 20 61 72 65 20 70 72 6f 63 65 73 73 65 64 20 62 79 20 74 | tored.updates.are.processed.by.t |
| 974c0 | 68 65 20 6e 65 77 20 70 6f 6c 69 63 79 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 6f 20 63 | he.new.policy.configuration.to.c |
| 974e0 | 72 65 61 74 65 20 6e 65 77 20 69 6e 62 6f 75 6e 64 20 75 70 64 61 74 65 73 2e 00 54 68 69 73 20 | reate.new.inbound.updates..This. |
| 97500 | 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 61 74 20 73 69 6d 70 6c 65 20 70 61 | command.specifies.that.simple.pa |
| 97520 | 73 73 77 6f 72 64 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 73 68 6f 75 6c 64 20 62 65 20 | ssword.authentication.should.be. |
| 97540 | 75 73 65 64 20 66 6f 72 20 74 68 65 20 67 69 76 65 6e 20 61 72 65 61 2e 20 54 68 65 20 70 61 73 | used.for.the.given.area..The.pas |
| 97560 | 73 77 6f 72 64 20 6d 75 73 74 20 61 6c 73 6f 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e | sword.must.also.be.configured.on |
| 97580 | 20 61 20 70 65 72 2d 69 6e 74 65 72 66 61 63 65 20 62 61 73 69 73 2e 00 54 68 69 73 20 63 6f 6d | .a.per-interface.basis..This.com |
| 975a0 | 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 61 74 20 74 68 65 20 63 6f 6d 6d 75 6e 69 74 | mand.specifies.that.the.communit |
| 975c0 | 79 20 61 74 74 72 69 62 75 74 65 20 73 68 6f 75 6c 64 20 6e 6f 74 20 62 65 20 73 65 6e 74 20 69 | y.attribute.should.not.be.sent.i |
| 975e0 | 6e 20 72 6f 75 74 65 20 75 70 64 61 74 65 73 20 74 6f 20 61 20 70 65 65 72 2e 20 42 79 20 64 65 | n.route.updates.to.a.peer..By.de |
| 97600 | 66 61 75 6c 74 20 63 6f 6d 6d 75 6e 69 74 79 20 61 74 74 72 69 62 75 74 65 20 69 73 20 73 65 6e | fault.community.attribute.is.sen |
| 97620 | 74 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 61 74 20 74 | t..This.command.specifies.that.t |
| 97640 | 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 63 6f 6e 66 65 64 65 72 61 74 69 6f 6e 20 70 61 74 68 20 | he.length.of.confederation.path. |
| 97660 | 73 65 74 73 20 61 6e 64 20 73 65 71 75 65 6e 63 65 73 20 73 68 6f 75 6c 64 20 62 65 20 74 61 6b | sets.and.sequences.should.be.tak |
| 97680 | 65 6e 20 69 6e 74 6f 20 61 63 63 6f 75 6e 74 20 64 75 72 69 6e 67 20 74 68 65 20 42 47 50 20 62 | en.into.account.during.the.BGP.b |
| 976a0 | 65 73 74 20 70 61 74 68 20 64 65 63 69 73 69 6f 6e 20 70 72 6f 63 65 73 73 2e 00 54 68 69 73 20 | est.path.decision.process..This. |
| 976c0 | 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 | command.specifies.the.IP.address |
| 976e0 | 20 6f 66 20 74 68 65 20 6e 65 69 67 68 62 6f 72 69 6e 67 20 64 65 76 69 63 65 2e 00 54 68 69 73 | .of.the.neighboring.device..This |
| 97700 | 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 4f 53 50 46 20 65 6e 61 62 | .command.specifies.the.OSPF.enab |
| 97720 | 6c 65 64 20 69 6e 74 65 72 66 61 63 65 28 73 29 2e 20 49 66 20 74 68 65 20 69 6e 74 65 72 66 61 | led.interface(s)..If.the.interfa |
| 97740 | 63 65 20 68 61 73 20 61 6e 20 61 64 64 72 65 73 73 20 66 72 6f 6d 20 64 65 66 69 6e 65 64 20 72 | ce.has.an.address.from.defined.r |
| 97760 | 61 6e 67 65 20 74 68 65 6e 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 65 6e 61 62 6c 65 73 20 4f 53 | ange.then.the.command.enables.OS |
| 97780 | 50 46 20 6f 6e 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 20 73 6f 20 72 6f 75 74 65 72 20 63 | PF.on.this.interface.so.router.c |
| 977a0 | 61 6e 20 70 72 6f 76 69 64 65 20 6e 65 74 77 6f 72 6b 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 | an.provide.network.information.t |
| 977c0 | 6f 20 74 68 65 20 6f 74 68 65 72 20 6f 73 70 66 20 72 6f 75 74 65 72 73 20 76 69 61 20 74 68 69 | o.the.other.ospf.routers.via.thi |
| 977e0 | 73 20 69 6e 74 65 72 66 61 63 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 | s.interface..This.command.specif |
| 97800 | 69 65 73 20 74 68 65 20 4f 53 50 46 76 33 20 65 6e 61 62 6c 65 64 20 69 6e 74 65 72 66 61 63 65 | ies.the.OSPFv3.enabled.interface |
| 97820 | 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 61 6c 73 6f 20 75 73 65 64 20 74 6f 20 65 | ..This.command.is.also.used.to.e |
| 97840 | 6e 61 62 6c 65 20 74 68 65 20 4f 53 50 46 20 70 72 6f 63 65 73 73 2e 20 54 68 65 20 61 72 65 61 | nable.the.OSPF.process..The.area |
| 97860 | 20 6e 75 6d 62 65 72 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 64 65 63 69 | .number.can.be.specified.in.deci |
| 97880 | 6d 61 6c 20 6e 6f 74 61 74 69 6f 6e 20 69 6e 20 74 68 65 20 72 61 6e 67 65 20 66 72 6f 6d 20 30 | mal.notation.in.the.range.from.0 |
| 978a0 | 20 74 6f 20 34 32 39 34 39 36 37 32 39 35 2e 20 4f 72 20 69 74 20 63 61 6e 20 62 65 20 73 70 65 | .to.4294967295..Or.it.can.be.spe |
| 978c0 | 63 69 66 69 65 64 20 69 6e 20 64 6f 74 74 65 64 20 64 65 63 69 6d 61 6c 20 6e 6f 74 61 74 69 6f | cified.in.dotted.decimal.notatio |
| 978e0 | 6e 20 73 69 6d 69 6c 61 72 20 74 6f 20 69 70 20 61 64 64 72 65 73 73 2e 00 54 68 69 73 20 63 6f | n.similar.to.ip.address..This.co |
| 97900 | 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 61 72 65 61 20 74 6f 20 62 65 20 61 | mmand.specifies.the.area.to.be.a |
| 97920 | 20 4e 53 53 41 20 54 6f 74 61 6c 6c 79 20 53 74 75 62 20 41 72 65 61 2e 20 41 42 52 73 20 66 6f | .NSSA.Totally.Stub.Area..ABRs.fo |
| 97940 | 72 20 73 75 63 68 20 61 6e 20 61 72 65 61 20 64 6f 20 6e 6f 74 20 6e 65 65 64 20 74 6f 20 70 61 | r.such.an.area.do.not.need.to.pa |
| 97960 | 73 73 20 4e 65 74 77 6f 72 6b 2d 53 75 6d 6d 61 72 79 20 28 74 79 70 65 2d 33 29 20 4c 53 41 73 | ss.Network-Summary.(type-3).LSAs |
| 97980 | 20 28 65 78 63 65 70 74 20 74 68 65 20 64 65 66 61 75 6c 74 20 73 75 6d 6d 61 72 79 20 72 6f 75 | .(except.the.default.summary.rou |
| 979a0 | 74 65 29 2c 20 41 53 42 52 2d 53 75 6d 6d 61 72 79 20 4c 53 41 73 20 28 74 79 70 65 2d 34 29 20 | te),.ASBR-Summary.LSAs.(type-4). |
| 979c0 | 61 6e 64 20 41 53 2d 45 78 74 65 72 6e 61 6c 20 4c 53 41 73 20 28 74 79 70 65 2d 35 29 20 69 6e | and.AS-External.LSAs.(type-5).in |
| 979e0 | 74 6f 20 74 68 65 20 61 72 65 61 2e 20 42 75 74 20 54 79 70 65 2d 37 20 4c 53 41 73 20 74 68 61 | to.the.area..But.Type-7.LSAs.tha |
| 97a00 | 74 20 63 6f 6e 76 65 72 74 20 74 6f 20 54 79 70 65 2d 35 20 61 74 20 74 68 65 20 4e 53 53 41 20 | t.convert.to.Type-5.at.the.NSSA. |
| 97a20 | 41 42 52 20 61 72 65 20 61 6c 6c 6f 77 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 | ABR.are.allowed..This.command.sp |
| 97a40 | 65 63 69 66 69 65 73 20 74 68 65 20 61 72 65 61 20 74 6f 20 62 65 20 61 20 4e 6f 74 20 53 6f 20 | ecifies.the.area.to.be.a.Not.So. |
| 97a60 | 53 74 75 62 62 79 20 41 72 65 61 2e 20 45 78 74 65 72 6e 61 6c 20 72 6f 75 74 69 6e 67 20 69 6e | Stubby.Area..External.routing.in |
| 97a80 | 66 6f 72 6d 61 74 69 6f 6e 20 69 73 20 69 6d 70 6f 72 74 65 64 20 69 6e 74 6f 20 61 6e 20 4e 53 | formation.is.imported.into.an.NS |
| 97aa0 | 53 41 20 69 6e 20 54 79 70 65 2d 37 20 4c 53 41 73 2e 20 54 79 70 65 2d 37 20 4c 53 41 73 20 61 | SA.in.Type-7.LSAs..Type-7.LSAs.a |
| 97ac0 | 72 65 20 73 69 6d 69 6c 61 72 20 74 6f 20 54 79 70 65 2d 35 20 41 53 2d 65 78 74 65 72 6e 61 6c | re.similar.to.Type-5.AS-external |
| 97ae0 | 20 4c 53 41 73 2c 20 65 78 63 65 70 74 20 74 68 61 74 20 74 68 65 79 20 63 61 6e 20 6f 6e 6c 79 | .LSAs,.except.that.they.can.only |
| 97b00 | 20 62 65 20 66 6c 6f 6f 64 65 64 20 69 6e 74 6f 20 74 68 65 20 4e 53 53 41 2e 20 49 6e 20 6f 72 | .be.flooded.into.the.NSSA..In.or |
| 97b20 | 64 65 72 20 74 6f 20 66 75 72 74 68 65 72 20 70 72 6f 70 61 67 61 74 65 20 74 68 65 20 4e 53 53 | der.to.further.propagate.the.NSS |
| 97b40 | 41 20 65 78 74 65 72 6e 61 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2c 20 74 68 65 20 54 79 70 65 | A.external.information,.the.Type |
| 97b60 | 2d 37 20 4c 53 41 20 6d 75 73 74 20 62 65 20 74 72 61 6e 73 6c 61 74 65 64 20 74 6f 20 61 20 54 | -7.LSA.must.be.translated.to.a.T |
| 97b80 | 79 70 65 2d 35 20 41 53 2d 65 78 74 65 72 6e 61 6c 2d 4c 53 41 20 62 79 20 74 68 65 20 4e 53 53 | ype-5.AS-external-LSA.by.the.NSS |
| 97ba0 | 41 20 41 42 52 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 | A.ABR..This.command.specifies.th |
| 97bc0 | 65 20 61 72 65 61 20 74 6f 20 62 65 20 61 20 53 74 75 62 20 41 72 65 61 2e 20 54 68 61 74 20 69 | e.area.to.be.a.Stub.Area..That.i |
| 97be0 | 73 2c 20 61 6e 20 61 72 65 61 20 77 68 65 72 65 20 6e 6f 20 72 6f 75 74 65 72 20 6f 72 69 67 69 | s,.an.area.where.no.router.origi |
| 97c00 | 6e 61 74 65 73 20 72 6f 75 74 65 73 20 65 78 74 65 72 6e 61 6c 20 74 6f 20 4f 53 50 46 20 61 6e | nates.routes.external.to.OSPF.an |
| 97c20 | 64 20 68 65 6e 63 65 20 61 6e 20 61 72 65 61 20 77 68 65 72 65 20 61 6c 6c 20 65 78 74 65 72 6e | d.hence.an.area.where.all.extern |
| 97c40 | 61 6c 20 72 6f 75 74 65 73 20 61 72 65 20 76 69 61 20 74 68 65 20 41 42 52 28 73 29 2e 20 48 65 | al.routes.are.via.the.ABR(s)..He |
| 97c60 | 6e 63 65 2c 20 41 42 52 73 20 66 6f 72 20 73 75 63 68 20 61 6e 20 61 72 65 61 20 64 6f 20 6e 6f | nce,.ABRs.for.such.an.area.do.no |
| 97c80 | 74 20 6e 65 65 64 20 74 6f 20 70 61 73 73 20 41 53 2d 45 78 74 65 72 6e 61 6c 20 4c 53 41 73 20 | t.need.to.pass.AS-External.LSAs. |
| 97ca0 | 28 74 79 70 65 2d 35 29 20 6f 72 20 41 53 42 52 2d 53 75 6d 6d 61 72 79 20 4c 53 41 73 20 28 74 | (type-5).or.ASBR-Summary.LSAs.(t |
| 97cc0 | 79 70 65 2d 34 29 20 69 6e 74 6f 20 74 68 65 20 61 72 65 61 2e 20 54 68 65 79 20 6e 65 65 64 20 | ype-4).into.the.area..They.need. |
| 97ce0 | 6f 6e 6c 79 20 70 61 73 73 20 4e 65 74 77 6f 72 6b 2d 53 75 6d 6d 61 72 79 20 28 74 79 70 65 2d | only.pass.Network-Summary.(type- |
| 97d00 | 33 29 20 4c 53 41 73 20 69 6e 74 6f 20 73 75 63 68 20 61 6e 20 61 72 65 61 2c 20 61 6c 6f 6e 67 | 3).LSAs.into.such.an.area,.along |
| 97d20 | 20 77 69 74 68 20 61 20 64 65 66 61 75 6c 74 2d 72 6f 75 74 65 20 73 75 6d 6d 61 72 79 2e 00 54 | .with.a.default-route.summary..T |
| 97d40 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 61 72 65 61 20 74 | his.command.specifies.the.area.t |
| 97d60 | 6f 20 62 65 20 61 20 54 6f 74 61 6c 6c 79 20 53 74 75 62 20 41 72 65 61 2e 20 49 6e 20 61 64 64 | o.be.a.Totally.Stub.Area..In.add |
| 97d80 | 69 74 69 6f 6e 20 74 6f 20 73 74 75 62 20 61 72 65 61 20 6c 69 6d 69 74 61 74 69 6f 6e 73 20 74 | ition.to.stub.area.limitations.t |
| 97da0 | 68 69 73 20 61 72 65 61 20 74 79 70 65 20 70 72 65 76 65 6e 74 73 20 61 6e 20 41 42 52 20 66 72 | his.area.type.prevents.an.ABR.fr |
| 97dc0 | 6f 6d 20 69 6e 6a 65 63 74 69 6e 67 20 4e 65 74 77 6f 72 6b 2d 53 75 6d 6d 61 72 79 20 28 74 79 | om.injecting.Network-Summary.(ty |
| 97de0 | 70 65 2d 33 29 20 4c 53 41 73 20 69 6e 74 6f 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 73 74 | pe-3).LSAs.into.the.specified.st |
| 97e00 | 75 62 20 61 72 65 61 2e 20 4f 6e 6c 79 20 64 65 66 61 75 6c 74 20 73 75 6d 6d 61 72 79 20 72 6f | ub.area..Only.default.summary.ro |
| 97e20 | 75 74 65 20 69 73 20 61 6c 6c 6f 77 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 | ute.is.allowed..This.command.spe |
| 97e40 | 63 69 66 69 65 73 20 74 68 65 20 62 61 73 65 20 72 65 63 65 69 76 65 20 63 6f 73 74 20 66 6f 72 | cifies.the.base.receive.cost.for |
| 97e60 | 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 2e 20 46 6f 72 20 77 69 72 65 6c 65 73 73 20 69 6e | .this.interface..For.wireless.in |
| 97e80 | 74 65 72 66 61 63 65 73 2c 20 69 74 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 6d 75 6c 74 69 | terfaces,.it.specifies.the.multi |
| 97ea0 | 70 6c 69 65 72 20 75 73 65 64 20 66 6f 72 20 63 6f 6d 70 75 74 69 6e 67 20 74 68 65 20 45 54 58 | plier.used.for.computing.the.ETX |
| 97ec0 | 20 72 65 63 65 70 74 69 6f 6e 20 63 6f 73 74 20 28 64 65 66 61 75 6c 74 20 32 35 36 29 3b 20 66 | .reception.cost.(default.256);.f |
| 97ee0 | 6f 72 20 77 69 72 65 64 20 69 6e 74 65 72 66 61 63 65 73 2c 20 69 74 20 73 70 65 63 69 66 69 65 | or.wired.interfaces,.it.specifie |
| 97f00 | 73 20 74 68 65 20 63 6f 73 74 20 74 68 61 74 20 77 69 6c 6c 20 62 65 20 61 64 76 65 72 74 69 73 | s.the.cost.that.will.be.advertis |
| 97f20 | 65 64 20 74 6f 20 6e 65 69 67 68 62 6f 75 72 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 | ed.to.neighbours..This.command.s |
| 97f40 | 70 65 63 69 66 69 65 73 20 74 68 65 20 64 65 63 61 79 20 66 61 63 74 6f 72 20 66 6f 72 20 74 68 | pecifies.the.decay.factor.for.th |
| 97f60 | 65 20 65 78 70 6f 6e 65 6e 74 69 61 6c 20 6d 6f 76 69 6e 67 20 61 76 65 72 61 67 65 20 6f 66 20 | e.exponential.moving.average.of. |
| 97f80 | 52 54 54 20 73 61 6d 70 6c 65 73 2c 20 69 6e 20 75 6e 69 74 73 20 6f 66 20 31 2f 32 35 36 2e 20 | RTT.samples,.in.units.of.1/256.. |
| 97fa0 | 48 69 67 68 65 72 20 76 61 6c 75 65 73 20 64 69 73 63 61 72 64 20 6f 6c 64 20 73 61 6d 70 6c 65 | Higher.values.discard.old.sample |
| 97fc0 | 73 20 66 61 73 74 65 72 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 34 32 2e 00 54 68 69 | s.faster..The.default.is.42..Thi |
| 97fe0 | 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 64 65 66 61 75 6c 74 20 | s.command.specifies.the.default. |
| 98000 | 6c 6f 63 61 6c 20 70 72 65 66 65 72 65 6e 63 65 20 76 61 6c 75 65 2e 20 54 68 65 20 6c 6f 63 61 | local.preference.value..The.loca |
| 98020 | 6c 20 70 72 65 66 65 72 65 6e 63 65 20 72 61 6e 67 65 20 69 73 20 30 20 74 6f 20 34 32 39 34 39 | l.preference.range.is.0.to.42949 |
| 98040 | 36 37 32 39 35 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 | 67295..This.command.specifies.th |
| 98060 | 65 20 64 65 66 61 75 6c 74 20 6d 65 74 72 69 63 20 76 61 6c 75 65 20 6f 66 20 72 65 64 69 73 74 | e.default.metric.value.of.redist |
| 98080 | 72 69 62 75 74 65 64 20 72 6f 75 74 65 73 2e 20 54 68 65 20 6d 65 74 72 69 63 20 72 61 6e 67 65 | ributed.routes..The.metric.range |
| 980a0 | 20 69 73 20 30 20 74 6f 20 31 36 37 37 37 32 31 34 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 | .is.0.to.16777214..This.command. |
| 980c0 | 73 70 65 63 69 66 69 65 73 20 74 68 65 20 67 61 72 62 61 67 65 2d 63 6f 6c 6c 65 63 74 69 6f 6e | specifies.the.garbage-collection |
| 980e0 | 20 74 69 6d 65 72 2e 20 55 70 6f 6e 20 65 78 70 69 72 61 74 69 6f 6e 20 6f 66 20 74 68 65 20 67 | .timer..Upon.expiration.of.the.g |
| 98100 | 61 72 62 61 67 65 2d 63 6f 6c 6c 65 63 74 69 6f 6e 20 74 69 6d 65 72 2c 20 74 68 65 20 72 6f 75 | arbage-collection.timer,.the.rou |
| 98120 | 74 65 20 69 73 20 66 69 6e 61 6c 6c 79 20 72 65 6d 6f 76 65 64 20 66 72 6f 6d 20 74 68 65 20 72 | te.is.finally.removed.from.the.r |
| 98140 | 6f 75 74 69 6e 67 20 74 61 62 6c 65 2e 20 54 68 65 20 74 69 6d 65 20 72 61 6e 67 65 20 69 73 20 | outing.table..The.time.range.is. |
| 98160 | 35 20 74 6f 20 32 31 34 37 34 38 33 36 34 37 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c | 5.to.2147483647..The.default.val |
| 98180 | 75 65 20 69 73 20 31 32 30 20 73 65 63 6f 6e 64 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 | ue.is.120.seconds..This.command. |
| 981a0 | 73 70 65 63 69 66 69 65 73 20 74 68 65 20 67 69 76 65 6e 20 6e 65 69 67 68 62 6f 72 20 61 73 20 | specifies.the.given.neighbor.as. |
| 981c0 | 72 6f 75 74 65 20 72 65 66 6c 65 63 74 6f 72 20 63 6c 69 65 6e 74 2e 00 54 68 69 73 20 63 6f 6d | route.reflector.client..This.com |
| 981e0 | 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 74 69 6d | mand.specifies.the.length.of.tim |
| 98200 | 65 2c 20 69 6e 20 73 65 63 6f 6e 64 73 2c 20 62 65 66 6f 72 65 20 74 68 65 20 72 6f 75 74 69 6e | e,.in.seconds,.before.the.routin |
| 98220 | 67 20 64 65 76 69 63 65 20 73 65 6e 64 73 20 68 65 6c 6c 6f 20 70 61 63 6b 65 74 73 20 6f 75 74 | g.device.sends.hello.packets.out |
| 98240 | 20 6f 66 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 62 65 66 6f 72 65 20 69 74 20 65 73 74 61 | .of.the.interface.before.it.esta |
| 98260 | 62 6c 69 73 68 65 73 20 61 64 6a 61 63 65 6e 63 79 20 77 69 74 68 20 61 20 6e 65 69 67 68 62 6f | blishes.adjacency.with.a.neighbo |
| 98280 | 72 2e 20 54 68 65 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 36 35 35 33 35 20 73 65 63 6f 6e | r..The.range.is.1.to.65535.secon |
| 982a0 | 64 73 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 36 30 20 73 65 63 6f | ds..The.default.value.is.60.seco |
| 982c0 | 6e 64 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 | nds..This.command.specifies.the. |
| 982e0 | 6d 61 78 69 6d 75 6d 20 52 54 54 2c 20 69 6e 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 2c 20 61 62 | maximum.RTT,.in.milliseconds,.ab |
| 98300 | 6f 76 65 20 77 68 69 63 68 20 77 65 20 64 6f 6e 27 74 20 69 6e 63 72 65 61 73 65 20 74 68 65 20 | ove.which.we.don't.increase.the. |
| 98320 | 63 6f 73 74 20 74 6f 20 61 20 6e 65 69 67 68 62 6f 75 72 2e 20 54 68 65 20 64 65 66 61 75 6c 74 | cost.to.a.neighbour..The.default |
| 98340 | 20 69 73 20 31 32 30 20 6d 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 | .is.120.ms..This.command.specifi |
| 98360 | 65 73 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 63 6f 73 74 20 61 64 64 65 64 20 74 6f 20 61 20 6e | es.the.maximum.cost.added.to.a.n |
| 98380 | 65 69 67 68 62 6f 75 72 20 62 65 63 61 75 73 65 20 6f 66 20 52 54 54 2c 20 69 2e 65 2e 20 77 68 | eighbour.because.of.RTT,.i.e..wh |
| 983a0 | 65 6e 20 74 68 65 20 52 54 54 20 69 73 20 68 69 67 68 65 72 20 6f 72 20 65 71 75 61 6c 20 74 68 | en.the.RTT.is.higher.or.equal.th |
| 983c0 | 61 6e 20 72 74 74 2d 6d 61 78 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 31 35 30 2e 20 | an.rtt-max..The.default.is.150.. |
| 983e0 | 53 65 74 74 69 6e 67 20 69 74 20 74 6f 20 30 20 65 66 66 65 63 74 69 76 65 6c 79 20 64 69 73 61 | Setting.it.to.0.effectively.disa |
| 98400 | 62 6c 65 73 20 74 68 65 20 75 73 65 20 6f 66 20 61 20 52 54 54 2d 62 61 73 65 64 20 63 6f 73 74 | bles.the.use.of.a.RTT-based.cost |
| 98420 | 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 6d 69 6e | ..This.command.specifies.the.min |
| 98440 | 69 6d 75 6d 20 52 54 54 2c 20 69 6e 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 2c 20 73 74 61 72 74 | imum.RTT,.in.milliseconds,.start |
| 98460 | 69 6e 67 20 66 72 6f 6d 20 77 68 69 63 68 20 77 65 20 69 6e 63 72 65 61 73 65 20 74 68 65 20 63 | ing.from.which.we.increase.the.c |
| 98480 | 6f 73 74 20 74 6f 20 61 20 6e 65 69 67 68 62 6f 75 72 2e 20 54 68 65 20 61 64 64 69 74 69 6f 6e | ost.to.a.neighbour..The.addition |
| 984a0 | 61 6c 20 63 6f 73 74 20 69 73 20 6c 69 6e 65 61 72 20 69 6e 20 28 72 74 74 20 2d 20 72 74 74 2d | al.cost.is.linear.in.(rtt.-.rtt- |
| 984c0 | 6d 69 6e 29 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 31 30 20 6d 73 2e 00 54 68 69 73 | min)..The.default.is.10.ms..This |
| 984e0 | 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 6d 69 6e 69 6d 75 6d 20 72 | .command.specifies.the.minimum.r |
| 98500 | 6f 75 74 65 20 61 64 76 65 72 74 69 73 65 6d 65 6e 74 20 69 6e 74 65 72 76 61 6c 20 66 6f 72 20 | oute.advertisement.interval.for. |
| 98520 | 74 68 65 20 70 65 65 72 2e 20 54 68 65 20 69 6e 74 65 72 76 61 6c 20 76 61 6c 75 65 20 69 73 20 | the.peer..The.interval.value.is. |
| 98540 | 30 20 74 6f 20 36 30 30 20 73 65 63 6f 6e 64 73 2c 20 77 69 74 68 20 74 68 65 20 64 65 66 61 75 | 0.to.600.seconds,.with.the.defau |
| 98560 | 6c 74 20 61 64 76 65 72 74 69 73 65 6d 65 6e 74 20 69 6e 74 65 72 76 61 6c 20 62 65 69 6e 67 20 | lt.advertisement.interval.being. |
| 98580 | 30 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 72 6f | 0..This.command.specifies.the.ro |
| 985a0 | 75 74 65 72 20 70 72 69 6f 72 69 74 79 20 76 61 6c 75 65 20 6f 66 20 74 68 65 20 6e 6f 6e 62 72 | uter.priority.value.of.the.nonbr |
| 985c0 | 6f 61 64 63 61 73 74 20 6e 65 69 67 68 62 6f 72 20 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 | oadcast.neighbor.associated.with |
| 985e0 | 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 73 70 65 63 69 66 69 65 64 2e 20 54 68 65 20 64 | .the.IP.address.specified..The.d |
| 98600 | 65 66 61 75 6c 74 20 69 73 20 30 2e 20 54 68 69 73 20 6b 65 79 77 6f 72 64 20 64 6f 65 73 20 6e | efault.is.0..This.keyword.does.n |
| 98620 | 6f 74 20 61 70 70 6c 79 20 74 6f 20 70 6f 69 6e 74 2d 74 6f 2d 6d 75 6c 74 69 70 6f 69 6e 74 20 | ot.apply.to.point-to-multipoint. |
| 98640 | 69 6e 74 65 72 66 61 63 65 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 | interfaces..This.command.specifi |
| 98660 | 65 73 20 74 68 65 20 72 6f 75 74 65 72 2d 49 44 2e 20 49 66 20 72 6f 75 74 65 72 20 49 44 20 69 | es.the.router-ID..If.router.ID.i |
| 98680 | 73 20 6e 6f 74 20 73 70 65 63 69 66 69 65 64 20 69 74 20 77 69 6c 6c 20 75 73 65 20 74 68 65 20 | s.not.specified.it.will.use.the. |
| 986a0 | 68 69 67 68 65 73 74 20 69 6e 74 65 72 66 61 63 65 20 49 50 20 61 64 64 72 65 73 73 2e 00 54 68 | highest.interface.IP.address..Th |
| 986c0 | 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 74 69 6d 65 20 63 6f | is.command.specifies.the.time.co |
| 986e0 | 6e 73 74 61 6e 74 2c 20 69 6e 20 73 65 63 6f 6e 64 73 2c 20 6f 66 20 74 68 65 20 73 6d 6f 6f 74 | nstant,.in.seconds,.of.the.smoot |
| 98700 | 68 69 6e 67 20 61 6c 67 6f 72 69 74 68 6d 20 75 73 65 64 20 66 6f 72 20 69 6d 70 6c 65 6d 65 6e | hing.algorithm.used.for.implemen |
| 98720 | 74 69 6e 67 20 68 79 73 74 65 72 65 73 69 73 2e 20 4c 61 72 67 65 72 20 76 61 6c 75 65 73 20 72 | ting.hysteresis..Larger.values.r |
| 98740 | 65 64 75 63 65 20 72 6f 75 74 65 20 6f 73 63 69 6c 6c 61 74 69 6f 6e 20 61 74 20 74 68 65 20 63 | educe.route.oscillation.at.the.c |
| 98760 | 6f 73 74 20 6f 66 20 76 65 72 79 20 73 6c 69 67 68 74 6c 79 20 69 6e 63 72 65 61 73 69 6e 67 20 | ost.of.very.slightly.increasing. |
| 98780 | 63 6f 6e 76 65 72 67 65 6e 63 65 20 74 69 6d 65 2e 20 54 68 65 20 76 61 6c 75 65 20 30 20 64 69 | convergence.time..The.value.0.di |
| 987a0 | 73 61 62 6c 65 73 20 68 79 73 74 65 72 65 73 69 73 2c 20 61 6e 64 20 69 73 20 73 75 69 74 61 62 | sables.hysteresis,.and.is.suitab |
| 987c0 | 6c 65 20 66 6f 72 20 77 69 72 65 64 20 6e 65 74 77 6f 72 6b 73 2e 20 54 68 65 20 64 65 66 61 75 | le.for.wired.networks..The.defau |
| 987e0 | 6c 74 20 69 73 20 34 20 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 | lt.is.4.s..This.command.specifie |
| 98800 | 73 20 74 68 65 20 74 69 6d 65 20 69 6e 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 20 61 66 74 65 72 | s.the.time.in.milliseconds.after |
| 98820 | 20 77 68 69 63 68 20 61 6e 20 27 69 6d 70 6f 72 74 61 6e 74 27 20 72 65 71 75 65 73 74 20 6f 72 | .which.an.'important'.request.or |
| 98840 | 20 75 70 64 61 74 65 20 77 69 6c 6c 20 62 65 20 72 65 73 65 6e 74 2e 20 54 68 65 20 64 65 66 61 | .update.will.be.resent..The.defa |
| 98860 | 75 6c 74 20 69 73 20 32 30 30 30 20 6d 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 | ult.is.2000.ms..This.command.spe |
| 98880 | 63 69 66 69 65 73 20 74 68 65 20 74 69 6d 65 20 69 6e 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 20 | cifies.the.time.in.milliseconds. |
| 988a0 | 62 65 74 77 65 65 6e 20 74 77 6f 20 73 63 68 65 64 75 6c 65 64 20 68 65 6c 6c 6f 73 2e 20 4f 6e | between.two.scheduled.hellos..On |
| 988c0 | 20 77 69 72 65 64 20 6c 69 6e 6b 73 2c 20 42 61 62 65 6c 20 6e 6f 74 69 63 65 73 20 61 20 6c 69 | .wired.links,.Babel.notices.a.li |
| 988e0 | 6e 6b 20 66 61 69 6c 75 72 65 20 77 69 74 68 69 6e 20 74 77 6f 20 68 65 6c 6c 6f 20 69 6e 74 65 | nk.failure.within.two.hello.inte |
| 98900 | 72 76 61 6c 73 3b 20 6f 6e 20 77 69 72 65 6c 65 73 73 20 6c 69 6e 6b 73 2c 20 74 68 65 20 6c 69 | rvals;.on.wireless.links,.the.li |
| 98920 | 6e 6b 20 71 75 61 6c 69 74 79 20 76 61 6c 75 65 20 69 73 20 72 65 65 73 74 69 6d 61 74 65 64 20 | nk.quality.value.is.reestimated. |
| 98940 | 61 74 20 65 76 65 72 79 20 68 65 6c 6c 6f 20 69 6e 74 65 72 76 61 6c 2e 20 54 68 65 20 64 65 66 | at.every.hello.interval..The.def |
| 98960 | 61 75 6c 74 20 69 73 20 34 30 30 30 20 6d 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 | ault.is.4000.ms..This.command.sp |
| 98980 | 65 63 69 66 69 65 73 20 74 68 65 20 74 69 6d 65 20 69 6e 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 | ecifies.the.time.in.milliseconds |
| 989a0 | 20 62 65 74 77 65 65 6e 20 74 77 6f 20 73 63 68 65 64 75 6c 65 64 20 75 70 64 61 74 65 73 2e 20 | .between.two.scheduled.updates.. |
| 989c0 | 53 69 6e 63 65 20 42 61 62 65 6c 20 6d 61 6b 65 73 20 65 78 74 65 6e 73 69 76 65 20 75 73 65 20 | Since.Babel.makes.extensive.use. |
| 989e0 | 6f 66 20 74 72 69 67 67 65 72 65 64 20 75 70 64 61 74 65 73 2c 20 74 68 69 73 20 63 61 6e 20 62 | of.triggered.updates,.this.can.b |
| 98a00 | 65 20 73 65 74 20 74 6f 20 66 61 69 72 6c 79 20 68 69 67 68 20 76 61 6c 75 65 73 20 6f 6e 20 6c | e.set.to.fairly.high.values.on.l |
| 98a20 | 69 6e 6b 73 20 77 69 74 68 20 6c 69 74 74 6c 65 20 70 61 63 6b 65 74 20 6c 6f 73 73 2e 20 54 68 | inks.with.little.packet.loss..Th |
| 98a40 | 65 20 64 65 66 61 75 6c 74 20 69 73 20 32 30 30 30 30 20 6d 73 2e 00 54 68 69 73 20 63 6f 6d 6d | e.default.is.20000.ms..This.comm |
| 98a60 | 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 74 69 6d 65 6f 75 74 20 74 69 6d 65 72 2e | and.specifies.the.timeout.timer. |
| 98a80 | 20 55 70 6f 6e 20 65 78 70 69 72 61 74 69 6f 6e 20 6f 66 20 74 68 65 20 74 69 6d 65 6f 75 74 2c | .Upon.expiration.of.the.timeout, |
| 98aa0 | 20 74 68 65 20 72 6f 75 74 65 20 69 73 20 6e 6f 20 6c 6f 6e 67 65 72 20 76 61 6c 69 64 3b 20 68 | .the.route.is.no.longer.valid;.h |
| 98ac0 | 6f 77 65 76 65 72 2c 20 69 74 20 69 73 20 72 65 74 61 69 6e 65 64 20 69 6e 20 74 68 65 20 72 6f | owever,.it.is.retained.in.the.ro |
| 98ae0 | 75 74 69 6e 67 20 74 61 62 6c 65 20 66 6f 72 20 61 20 73 68 6f 72 74 20 74 69 6d 65 20 73 6f 20 | uting.table.for.a.short.time.so. |
| 98b00 | 74 68 61 74 20 6e 65 69 67 68 62 6f 72 73 20 63 61 6e 20 62 65 20 6e 6f 74 69 66 69 65 64 20 74 | that.neighbors.can.be.notified.t |
| 98b20 | 68 61 74 20 74 68 65 20 72 6f 75 74 65 20 68 61 73 20 62 65 65 6e 20 64 72 6f 70 70 65 64 2e 20 | hat.the.route.has.been.dropped.. |
| 98b40 | 54 68 65 20 74 69 6d 65 20 72 61 6e 67 65 20 69 73 20 35 20 74 6f 20 32 31 34 37 34 38 33 36 34 | The.time.range.is.5.to.214748364 |
| 98b60 | 37 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 31 38 30 20 73 65 63 6f | 7..The.default.value.is.180.seco |
| 98b80 | 6e 64 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 | nds..This.command.specifies.the. |
| 98ba0 | 75 70 64 61 74 65 20 74 69 6d 65 72 2e 20 45 76 65 72 79 20 75 70 64 61 74 65 20 74 69 6d 65 72 | update.timer..Every.update.timer |
| 98bc0 | 20 73 65 63 6f 6e 64 73 2c 20 74 68 65 20 52 49 50 20 70 72 6f 63 65 73 73 20 69 73 20 61 77 61 | .seconds,.the.RIP.process.is.awa |
| 98be0 | 6b 65 6e 65 64 20 74 6f 20 73 65 6e 64 20 61 6e 20 75 6e 73 6f 6c 69 63 69 74 65 64 20 72 65 73 | kened.to.send.an.unsolicited.res |
| 98c00 | 70 6f 6e 73 65 20 6d 65 73 73 61 67 65 20 63 6f 6e 74 61 69 6e 69 6e 67 20 74 68 65 20 63 6f 6d | ponse.message.containing.the.com |
| 98c20 | 70 6c 65 74 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 74 6f 20 61 6c 6c 20 6e 65 69 67 68 | plete.routing.table.to.all.neigh |
| 98c40 | 62 6f 72 69 6e 67 20 52 49 50 20 72 6f 75 74 65 72 73 2e 20 54 68 65 20 74 69 6d 65 20 72 61 6e | boring.RIP.routers..The.time.ran |
| 98c60 | 67 65 20 69 73 20 35 20 74 6f 20 32 31 34 37 34 38 33 36 34 37 2e 20 54 68 65 20 64 65 66 61 75 | ge.is.5.to.2147483647..The.defau |
| 98c80 | 6c 74 20 76 61 6c 75 65 20 69 73 20 33 30 20 73 65 63 6f 6e 64 73 2e 00 54 68 69 73 20 63 6f 6d | lt.value.is.30.seconds..This.com |
| 98ca0 | 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 77 68 65 74 68 65 72 20 74 6f 20 70 65 72 66 6f 72 | mand.specifies.whether.to.perfor |
| 98cc0 | 6d 20 73 70 6c 69 74 2d 68 6f 72 69 7a 6f 6e 20 6f 6e 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 | m.split-horizon.on.the.interface |
| 98ce0 | 2e 20 53 70 65 63 69 66 79 69 6e 67 20 6e 6f 20 62 61 62 65 6c 20 73 70 6c 69 74 2d 68 6f 72 69 | ..Specifying.no.babel.split-hori |
| 98d00 | 7a 6f 6e 20 69 73 20 61 6c 77 61 79 73 20 63 6f 72 72 65 63 74 2c 20 77 68 69 6c 65 20 62 61 62 | zon.is.always.correct,.while.bab |
| 98d20 | 65 6c 20 73 70 6c 69 74 2d 68 6f 72 69 7a 6f 6e 20 69 73 20 61 6e 20 6f 70 74 69 6d 69 73 61 74 | el.split-horizon.is.an.optimisat |
| 98d40 | 69 6f 6e 20 74 68 61 74 20 73 68 6f 75 6c 64 20 6f 6e 6c 79 20 62 65 20 75 73 65 64 20 6f 6e 20 | ion.that.should.only.be.used.on. |
| 98d60 | 73 79 6d 6d 65 74 72 69 63 20 61 6e 64 20 74 72 61 6e 73 69 74 69 76 65 20 28 77 69 72 65 64 29 | symmetric.and.transitive.(wired) |
| 98d80 | 20 6e 65 74 77 6f 72 6b 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 79 20 | .networks..This.command.specify. |
| 98da0 | 74 68 61 74 20 4f 53 50 46 20 70 61 63 6b 65 74 73 20 6d 75 73 74 20 62 65 20 61 75 74 68 65 6e | that.OSPF.packets.must.be.authen |
| 98dc0 | 74 69 63 61 74 65 64 20 77 69 74 68 20 4d 44 35 20 48 4d 41 43 73 20 77 69 74 68 69 6e 20 74 68 | ticated.with.MD5.HMACs.within.th |
| 98de0 | 65 20 67 69 76 65 6e 20 61 72 65 61 2e 20 4b 65 79 69 6e 67 20 6d 61 74 65 72 69 61 6c 20 6d 75 | e.given.area..Keying.material.mu |
| 98e00 | 73 74 20 61 6c 73 6f 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 61 20 70 65 72 2d 69 | st.also.be.configured.on.a.per-i |
| 98e20 | 6e 74 65 72 66 61 63 65 20 62 61 73 69 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 | nterface.basis..This.command.spe |
| 98e40 | 63 69 66 79 73 20 74 68 61 74 20 4d 44 35 20 48 4d 41 43 20 61 75 74 68 65 6e 74 69 63 61 74 69 | cifys.that.MD5.HMAC.authenticati |
| 98e60 | 6f 6e 20 6d 75 73 74 20 62 65 20 75 73 65 64 20 6f 6e 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 | on.must.be.used.on.this.interfac |
| 98e80 | 65 2e 20 49 74 20 73 65 74 73 20 4f 53 50 46 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6b | e..It.sets.OSPF.authentication.k |
| 98ea0 | 65 79 20 74 6f 20 61 20 63 72 79 70 74 6f 67 72 61 70 68 69 63 20 70 61 73 73 77 6f 72 64 2e 20 | ey.to.a.cryptographic.password.. |
| 98ec0 | 4b 65 79 2d 69 64 20 69 64 65 6e 74 69 66 69 65 73 20 73 65 63 72 65 74 20 6b 65 79 20 75 73 65 | Key-id.identifies.secret.key.use |
| 98ee0 | 64 20 74 6f 20 63 72 65 61 74 65 20 74 68 65 20 6d 65 73 73 61 67 65 20 64 69 67 65 73 74 2e 20 | d.to.create.the.message.digest.. |
| 98f00 | 54 68 69 73 20 49 44 20 69 73 20 70 61 72 74 20 6f 66 20 74 68 65 20 70 72 6f 74 6f 63 6f 6c 20 | This.ID.is.part.of.the.protocol. |
| 98f20 | 61 6e 64 20 6d 75 73 74 20 62 65 20 63 6f 6e 73 69 73 74 65 6e 74 20 61 63 72 6f 73 73 20 72 6f | and.must.be.consistent.across.ro |
| 98f40 | 75 74 65 72 73 20 6f 6e 20 61 20 6c 69 6e 6b 2e 20 54 68 65 20 6b 65 79 20 63 61 6e 20 62 65 20 | uters.on.a.link..The.key.can.be. |
| 98f60 | 6c 6f 6e 67 20 75 70 20 74 6f 20 31 36 20 63 68 61 72 73 20 28 6c 61 72 67 65 72 20 73 74 72 69 | long.up.to.16.chars.(larger.stri |
| 98f80 | 6e 67 73 20 77 69 6c 6c 20 62 65 20 74 72 75 6e 63 61 74 65 64 29 2c 20 61 6e 64 20 69 73 20 61 | ngs.will.be.truncated),.and.is.a |
| 98fa0 | 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 74 68 65 20 67 69 76 65 6e 20 6b 65 79 2d 69 64 2e | ssociated.with.the.given.key-id. |
| 98fc0 | 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 75 6d 6d 61 72 69 7a 65 73 20 69 6e 74 72 61 20 61 | .This.command.summarizes.intra.a |
| 98fe0 | 72 65 61 20 70 61 74 68 73 20 66 72 6f 6d 20 73 70 65 63 69 66 69 65 64 20 61 72 65 61 20 69 6e | rea.paths.from.specified.area.in |
| 99000 | 74 6f 20 6f 6e 65 20 54 79 70 65 2d 33 20 49 6e 74 65 72 2d 41 72 65 61 20 50 72 65 66 69 78 20 | to.one.Type-3.Inter-Area.Prefix. |
| 99020 | 4c 53 41 20 61 6e 6e 6f 75 6e 63 65 64 20 74 6f 20 6f 74 68 65 72 20 61 72 65 61 73 2e 20 54 68 | LSA.announced.to.other.areas..Th |
| 99040 | 69 73 20 63 6f 6d 6d 61 6e 64 20 63 61 6e 20 62 65 20 75 73 65 64 20 6f 6e 6c 79 20 69 6e 20 41 | is.command.can.be.used.only.in.A |
| 99060 | 42 52 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 75 6d 6d 61 72 69 7a 65 73 20 69 6e 74 72 | BR..This.command.summarizes.intr |
| 99080 | 61 20 61 72 65 61 20 70 61 74 68 73 20 66 72 6f 6d 20 73 70 65 63 69 66 69 65 64 20 61 72 65 61 | a.area.paths.from.specified.area |
| 990a0 | 20 69 6e 74 6f 20 6f 6e 65 20 73 75 6d 6d 61 72 79 2d 4c 53 41 20 28 54 79 70 65 2d 33 29 20 61 | .into.one.summary-LSA.(Type-3).a |
| 990c0 | 6e 6e 6f 75 6e 63 65 64 20 74 6f 20 6f 74 68 65 72 20 61 72 65 61 73 2e 20 54 68 69 73 20 63 6f | nnounced.to.other.areas..This.co |
| 990e0 | 6d 6d 61 6e 64 20 63 61 6e 20 62 65 20 75 73 65 64 20 6f 6e 6c 79 20 69 6e 20 41 42 52 20 61 6e | mmand.can.be.used.only.in.ABR.an |
| 99100 | 64 20 4f 4e 4c 59 20 72 6f 75 74 65 72 2d 4c 53 41 73 20 28 54 79 70 65 2d 31 29 20 61 6e 64 20 | d.ONLY.router-LSAs.(Type-1).and. |
| 99120 | 6e 65 74 77 6f 72 6b 2d 4c 53 41 73 20 28 54 79 70 65 2d 32 29 20 28 69 2e 65 2e 20 4c 53 41 73 | network-LSAs.(Type-2).(i.e..LSAs |
| 99140 | 20 77 69 74 68 20 73 63 6f 70 65 20 61 72 65 61 29 20 63 61 6e 20 62 65 20 73 75 6d 6d 61 72 69 | .with.scope.area).can.be.summari |
| 99160 | 7a 65 64 2e 20 41 53 2d 65 78 74 65 72 6e 61 6c 2d 4c 53 41 73 20 28 54 79 70 65 2d 35 29 20 63 | zed..AS-external-LSAs.(Type-5).c |
| 99180 | 61 6e e2 80 99 74 20 62 65 20 73 75 6d 6d 61 72 69 7a 65 64 20 2d 20 74 68 65 69 72 20 73 63 6f | an...t.be.summarized.-.their.sco |
| 991a0 | 70 65 20 69 73 20 41 53 2e 20 54 68 65 20 6f 70 74 69 6f 6e 61 6c 20 61 72 67 75 6d 65 6e 74 20 | pe.is.AS..The.optional.argument. |
| 991c0 | 3a 63 66 67 63 6d 64 3a 60 63 6f 73 74 60 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 61 67 67 | :cfgcmd:`cost`.specifies.the.agg |
| 991e0 | 72 65 67 61 74 65 64 20 6c 69 6e 6b 20 6d 65 74 72 69 63 2e 20 54 68 65 20 6d 65 74 72 69 63 20 | regated.link.metric..The.metric. |
| 99200 | 72 61 6e 67 65 20 69 73 20 30 20 74 6f 20 31 36 37 37 37 32 31 35 2e 00 54 68 69 73 20 63 6f 6d | range.is.0.to.16777215..This.com |
| 99220 | 6d 61 6e 64 20 74 6f 20 65 6e 73 75 72 65 20 6e 6f 74 20 61 64 76 65 72 74 69 73 65 20 74 68 65 | mand.to.ensure.not.advertise.the |
| 99240 | 20 73 75 6d 6d 61 72 79 20 6c 73 61 20 66 6f 72 20 74 68 65 20 6d 61 74 63 68 65 64 20 65 78 74 | .summary.lsa.for.the.matched.ext |
| 99260 | 65 72 6e 61 6c 20 4c 53 41 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 75 73 65 73 20 74 6f | ernal.LSAs..This.command.uses.to |
| 99280 | 20 63 6c 65 61 72 20 42 47 50 20 72 6f 75 74 65 20 64 61 6d 70 65 6e 69 6e 67 20 69 6e 66 6f 72 | .clear.BGP.route.dampening.infor |
| 992a0 | 6d 61 74 69 6f 6e 20 61 6e 64 20 74 6f 20 75 6e 73 75 70 70 72 65 73 73 20 73 75 70 70 72 65 73 | mation.and.to.unsuppress.suppres |
| 992c0 | 73 65 64 20 72 6f 75 74 65 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 77 61 73 20 69 6e 74 | sed.routes..This.command.was.int |
| 992e0 | 72 6f 64 75 63 65 64 20 69 6e 20 56 79 4f 53 20 31 2e 34 20 2d 20 69 74 20 77 61 73 20 70 72 65 | roduced.in.VyOS.1.4.-.it.was.pre |
| 99300 | 76 69 6f 75 73 6c 79 20 63 61 6c 6c 65 64 3a 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 6f | viously.called:.``set.firewall.o |
| 99320 | 70 74 69 6f 6e 73 20 69 6e 74 65 72 66 61 63 65 20 3c 6e 61 6d 65 3e 20 61 64 6a 75 73 74 2d 6d | ptions.interface.<name>.adjust-m |
| 99340 | 73 73 20 3c 76 61 6c 75 65 3e 60 60 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 77 61 73 20 69 6e | ss.<value>``.This.command.was.in |
| 99360 | 74 72 6f 64 75 63 65 64 20 69 6e 20 56 79 4f 53 20 31 2e 34 20 2d 20 69 74 20 77 61 73 20 70 72 | troduced.in.VyOS.1.4.-.it.was.pr |
| 99380 | 65 76 69 6f 75 73 6c 79 20 63 61 6c 6c 65 64 3a 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 | eviously.called:.``set.firewall. |
| 993a0 | 6f 70 74 69 6f 6e 73 20 69 6e 74 65 72 66 61 63 65 20 3c 6e 61 6d 65 3e 20 61 64 6a 75 73 74 2d | options.interface.<name>.adjust- |
| 993c0 | 6d 73 73 36 20 3c 76 61 6c 75 65 3e 60 60 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 77 69 6c 6c | mss6.<value>``.This.command.will |
| 993e0 | 20 63 68 61 6e 67 65 20 74 68 65 20 68 6f 6c 64 20 64 6f 77 6e 20 76 61 6c 75 65 20 66 6f 72 20 | .change.the.hold.down.value.for. |
| 99400 | 49 47 50 2d 4c 44 50 20 73 79 6e 63 68 72 6f 6e 69 7a 61 74 69 6f 6e 20 64 75 72 69 6e 67 20 63 | IGP-LDP.synchronization.during.c |
| 99420 | 6f 6e 76 65 72 67 65 6e 63 65 2f 69 6e 74 65 72 66 61 63 65 20 66 6c 61 70 20 65 76 65 6e 74 73 | onvergence/interface.flap.events |
| 99440 | 2c 20 62 75 74 20 66 6f 72 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 20 6f 6e 6c 79 2e 00 54 | ,.but.for.this.interface.only..T |
| 99460 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 77 69 6c 6c 20 63 68 61 6e 67 65 20 74 68 65 20 68 6f 6c 64 | his.command.will.change.the.hold |
| 99480 | 20 64 6f 77 6e 20 76 61 6c 75 65 20 67 6c 6f 62 61 6c 6c 79 20 66 6f 72 20 49 47 50 2d 4c 44 50 | .down.value.globally.for.IGP-LDP |
| 994a0 | 20 73 79 6e 63 68 72 6f 6e 69 7a 61 74 69 6f 6e 20 64 75 72 69 6e 67 20 63 6f 6e 76 65 72 67 65 | .synchronization.during.converge |
| 994c0 | 6e 63 65 2f 69 6e 74 65 72 66 61 63 65 20 66 6c 61 70 20 65 76 65 6e 74 73 2e 00 54 68 69 73 20 | nce/interface.flap.events..This. |
| 994e0 | 63 6f 6d 6d 61 6e 64 20 77 69 6c 6c 20 63 6f 6e 66 69 67 75 72 65 20 61 20 74 69 65 2d 62 72 65 | command.will.configure.a.tie-bre |
| 99500 | 61 6b 65 72 20 66 6f 72 20 6d 75 6c 74 69 70 6c 65 20 6c 6f 63 61 6c 20 4c 46 41 20 62 61 63 6b | aker.for.multiple.local.LFA.back |
| 99520 | 75 70 73 2e 20 54 68 65 20 6c 6f 77 65 72 20 69 6e 64 65 78 20 6e 75 6d 62 65 72 73 20 77 69 6c | ups..The.lower.index.numbers.wil |
| 99540 | 6c 20 62 65 20 70 72 6f 63 65 73 73 65 64 20 66 69 72 73 74 2e 00 54 68 69 73 20 63 6f 6d 6d 61 | l.be.processed.first..This.comma |
| 99560 | 6e 64 20 77 69 6c 6c 20 65 6e 61 62 6c 65 20 49 47 50 2d 4c 44 50 20 73 79 6e 63 68 72 6f 6e 69 | nd.will.enable.IGP-LDP.synchroni |
| 99580 | 7a 61 74 69 6f 6e 20 67 6c 6f 62 61 6c 6c 79 20 66 6f 72 20 49 53 49 53 2e 20 54 68 69 73 20 72 | zation.globally.for.ISIS..This.r |
| 995a0 | 65 71 75 69 72 65 73 20 66 6f 72 20 4c 44 50 20 74 6f 20 62 65 20 66 75 6e 63 74 69 6f 6e 61 6c | equires.for.LDP.to.be.functional |
| 995c0 | 2e 20 54 68 69 73 20 69 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 35 34 34 | ..This.is.described.in.:rfc:`544 |
| 995e0 | 33 60 2e 20 42 79 20 64 65 66 61 75 6c 74 20 61 6c 6c 20 69 6e 74 65 72 66 61 63 65 73 20 6f 70 | 3`..By.default.all.interfaces.op |
| 99600 | 65 72 61 74 69 6f 6e 61 6c 20 69 6e 20 49 53 2d 49 53 20 61 72 65 20 65 6e 61 62 6c 65 64 20 66 | erational.in.IS-IS.are.enabled.f |
| 99620 | 6f 72 20 73 79 6e 63 68 72 6f 6e 69 7a 61 74 69 6f 6e 2e 20 4c 6f 6f 70 62 61 63 6b 73 20 61 72 | or.synchronization..Loopbacks.ar |
| 99640 | 65 20 65 78 65 6d 70 74 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 77 69 6c 6c 20 65 6e 61 62 | e.exempt..This.command.will.enab |
| 99660 | 6c 65 20 49 47 50 2d 4c 44 50 20 73 79 6e 63 68 72 6f 6e 69 7a 61 74 69 6f 6e 20 67 6c 6f 62 61 | le.IGP-LDP.synchronization.globa |
| 99680 | 6c 6c 79 20 66 6f 72 20 4f 53 50 46 2e 20 54 68 69 73 20 72 65 71 75 69 72 65 73 20 66 6f 72 20 | lly.for.OSPF..This.requires.for. |
| 996a0 | 4c 44 50 20 74 6f 20 62 65 20 66 75 6e 63 74 69 6f 6e 61 6c 2e 20 54 68 69 73 20 69 73 20 64 65 | LDP.to.be.functional..This.is.de |
| 996c0 | 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 35 34 34 33 60 2e 20 42 79 20 64 65 66 61 75 | scribed.in.:rfc:`5443`..By.defau |
| 996e0 | 6c 74 20 61 6c 6c 20 69 6e 74 65 72 66 61 63 65 73 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 69 6e | lt.all.interfaces.operational.in |
| 99700 | 20 4f 53 50 46 20 61 72 65 20 65 6e 61 62 6c 65 64 20 66 6f 72 20 73 79 6e 63 68 72 6f 6e 69 7a | .OSPF.are.enabled.for.synchroniz |
| 99720 | 61 74 69 6f 6e 2e 20 4c 6f 6f 70 62 61 63 6b 73 20 61 72 65 20 65 78 65 6d 70 74 2e 00 54 68 69 | ation..Loopbacks.are.exempt..Thi |
| 99740 | 73 20 63 6f 6d 6d 61 6e 64 20 77 69 6c 6c 20 67 65 6e 65 72 61 74 65 20 61 20 64 65 66 61 75 6c | s.command.will.generate.a.defaul |
| 99760 | 74 2d 72 6f 75 74 65 20 69 6e 20 4c 31 20 64 61 74 61 62 61 73 65 2e 00 54 68 69 73 20 63 6f 6d | t-route.in.L1.database..This.com |
| 99780 | 6d 61 6e 64 20 77 69 6c 6c 20 67 65 6e 65 72 61 74 65 20 61 20 64 65 66 61 75 6c 74 2d 72 6f 75 | mand.will.generate.a.default-rou |
| 997a0 | 74 65 20 69 6e 20 4c 32 20 64 61 74 61 62 61 73 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 | te.in.L2.database..This.command. |
| 997c0 | 77 69 6c 6c 20 67 69 76 65 20 61 6e 20 6f 76 65 72 76 69 65 77 20 6f 66 20 61 20 72 75 6c 65 20 | will.give.an.overview.of.a.rule. |
| 997e0 | 69 6e 20 61 20 73 69 6e 67 6c 65 20 72 75 6c 65 2d 73 65 74 00 54 68 69 73 20 63 6f 6d 6d 61 6e | in.a.single.rule-set.This.comman |
| 99800 | 64 20 77 69 6c 6c 20 67 69 76 65 20 61 6e 20 6f 76 65 72 76 69 65 77 20 6f 66 20 61 20 72 75 6c | d.will.give.an.overview.of.a.rul |
| 99820 | 65 20 69 6e 20 61 20 73 69 6e 67 6c 65 20 72 75 6c 65 2d 73 65 74 2c 20 70 6c 75 73 20 69 6e 66 | e.in.a.single.rule-set,.plus.inf |
| 99840 | 6f 72 6d 61 74 69 6f 6e 20 66 6f 72 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 2e 00 54 68 69 | ormation.for.default.action..Thi |
| 99860 | 73 20 63 6f 6d 6d 61 6e 64 20 77 69 6c 6c 20 67 69 76 65 20 61 6e 20 6f 76 65 72 76 69 65 77 20 | s.command.will.give.an.overview. |
| 99880 | 6f 66 20 61 20 72 75 6c 65 20 69 6e 20 61 20 73 69 6e 67 6c 65 20 72 75 6c 65 2d 73 65 74 2e 00 | of.a.rule.in.a.single.rule-set.. |
| 998a0 | 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 77 69 6c 6c 20 67 69 76 65 20 61 6e 20 6f 76 65 72 76 69 | This.command.will.give.an.overvi |
| 998c0 | 65 77 20 6f 66 20 61 20 73 69 6e 67 6c 65 20 72 75 6c 65 2d 73 65 74 2e 00 54 68 69 73 20 63 6f | ew.of.a.single.rule-set..This.co |
| 998e0 | 6d 6d 61 6e 64 20 77 69 6c 6c 20 6c 69 6d 69 74 20 4c 46 41 20 62 61 63 6b 75 70 20 63 6f 6d 70 | mmand.will.limit.LFA.backup.comp |
| 99900 | 75 74 61 74 69 6f 6e 20 75 70 20 74 6f 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 70 72 65 66 | utation.up.to.the.specified.pref |
| 99920 | 69 78 20 70 72 69 6f 72 69 74 79 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 77 6f 75 6c 64 20 | ix.priority..This.command.would. |
| 99940 | 61 6c 6c 6f 77 20 74 68 65 20 64 79 6e 61 6d 69 63 20 75 70 64 61 74 65 20 6f 66 20 63 61 70 61 | allow.the.dynamic.update.of.capa |
| 99960 | 62 69 6c 69 74 69 65 73 20 6f 76 65 72 20 61 6e 20 65 73 74 61 62 6c 69 73 68 65 64 20 42 47 50 | bilities.over.an.established.BGP |
| 99980 | 20 73 65 73 73 69 6f 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 73 20 63 72 65 61 74 65 73 20 | .session..This.commands.creates. |
| 999a0 | 61 20 62 72 69 64 67 65 20 74 68 61 74 20 69 73 20 75 73 65 64 20 74 6f 20 62 69 6e 64 20 74 72 | a.bridge.that.is.used.to.bind.tr |
| 999c0 | 61 66 66 69 63 20 6f 6e 20 65 74 68 31 20 76 6c 61 6e 20 32 34 31 20 77 69 74 68 20 74 68 65 20 | affic.on.eth1.vlan.241.with.the. |
| 999e0 | 76 78 6c 61 6e 32 34 31 2d 69 6e 74 65 72 66 61 63 65 2e 20 54 68 65 20 49 50 20 61 64 64 72 65 | vxlan241-interface..The.IP.addre |
| 99a00 | 73 73 20 69 73 20 6e 6f 74 20 72 65 71 75 69 72 65 64 2e 20 49 74 20 6d 61 79 20 68 6f 77 65 76 | ss.is.not.required..It.may.howev |
| 99a20 | 65 72 20 62 65 20 75 73 65 64 20 61 73 20 61 20 64 65 66 61 75 6c 74 20 67 61 74 65 77 61 79 20 | er.be.used.as.a.default.gateway. |
| 99a40 | 66 6f 72 20 65 61 63 68 20 4c 65 61 66 20 77 68 69 63 68 20 61 6c 6c 6f 77 73 20 64 65 76 69 63 | for.each.Leaf.which.allows.devic |
| 99a60 | 65 73 20 6f 6e 20 74 68 65 20 76 6c 61 6e 20 74 6f 20 72 65 61 63 68 20 6f 74 68 65 72 20 73 75 | es.on.the.vlan.to.reach.other.su |
| 99a80 | 62 6e 65 74 73 2e 20 54 68 69 73 20 72 65 71 75 69 72 65 73 20 74 68 61 74 20 74 68 65 20 73 75 | bnets..This.requires.that.the.su |
| 99aa0 | 62 6e 65 74 73 20 61 72 65 20 72 65 64 69 73 74 72 69 62 75 74 65 64 20 62 79 20 4f 53 50 46 20 | bnets.are.redistributed.by.OSPF. |
| 99ac0 | 73 6f 20 74 68 61 74 20 74 68 65 20 53 70 69 6e 65 20 77 69 6c 6c 20 6c 65 61 72 6e 20 68 6f 77 | so.that.the.Spine.will.learn.how |
| 99ae0 | 20 74 6f 20 72 65 61 63 68 20 69 74 2e 20 54 6f 20 64 6f 20 74 68 69 73 20 79 6f 75 20 6e 65 65 | .to.reach.it..To.do.this.you.nee |
| 99b00 | 64 20 74 6f 20 63 68 61 6e 67 65 20 74 68 65 20 4f 53 50 46 20 6e 65 74 77 6f 72 6b 20 66 72 6f | d.to.change.the.OSPF.network.fro |
| 99b20 | 6d 20 27 31 30 2e 30 2e 30 2e 30 2f 38 27 20 74 6f 20 27 30 2e 30 2e 30 2e 30 2f 30 27 20 74 6f | m.'10.0.0.0/8'.to.'0.0.0.0/0'.to |
| 99b40 | 20 61 6c 6c 6f 77 20 31 37 32 2e 31 36 2f 31 32 2d 6e 65 74 77 6f 72 6b 73 20 74 6f 20 62 65 20 | .allow.172.16/12-networks.to.be. |
| 99b60 | 61 64 76 65 72 74 69 73 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 73 20 73 70 65 63 69 66 | advertised..This.commands.specif |
| 99b80 | 69 65 73 20 74 68 65 20 46 69 6e 69 74 65 20 53 74 61 74 65 20 4d 61 63 68 69 6e 65 20 28 46 53 | ies.the.Finite.State.Machine.(FS |
| 99ba0 | 4d 29 20 69 6e 74 65 6e 64 65 64 20 74 6f 20 63 6f 6e 74 72 6f 6c 20 74 68 65 20 74 69 6d 69 6e | M).intended.to.control.the.timin |
| 99bc0 | 67 20 6f 66 20 74 68 65 20 65 78 65 63 75 74 69 6f 6e 20 6f 66 20 53 50 46 20 63 61 6c 63 75 6c | g.of.the.execution.of.SPF.calcul |
| 99be0 | 61 74 69 6f 6e 73 20 69 6e 20 72 65 73 70 6f 6e 73 65 20 74 6f 20 49 47 50 20 65 76 65 6e 74 73 | ations.in.response.to.IGP.events |
| 99c00 | 2e 20 54 68 65 20 70 72 6f 63 65 73 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a | ..The.process.described.in.:rfc: |
| 99c20 | 60 38 34 30 35 60 2e 00 54 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 65 6e 61 62 6c | `8405`..This.configuration.enabl |
| 99c40 | 65 73 20 48 54 54 50 20 68 65 61 6c 74 68 20 63 68 65 63 6b 73 20 6f 6e 20 62 61 63 6b 65 6e 64 | es.HTTP.health.checks.on.backend |
| 99c60 | 20 73 65 72 76 65 72 73 2e 00 54 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 65 6e 61 | .servers..This.configuration.ena |
| 99c80 | 62 6c 65 73 20 74 68 65 20 54 43 50 20 72 65 76 65 72 73 65 20 70 72 6f 78 79 20 66 6f 72 20 74 | bles.the.TCP.reverse.proxy.for.t |
| 99ca0 | 68 65 20 22 6d 79 2d 74 63 70 2d 61 70 69 22 20 73 65 72 76 69 63 65 2e 20 49 6e 63 6f 6d 69 6e | he."my-tcp-api".service..Incomin |
| 99cc0 | 67 20 54 43 50 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 6f 6e 20 70 6f 72 74 20 38 38 38 38 20 77 | g.TCP.connections.on.port.8888.w |
| 99ce0 | 69 6c 6c 20 62 65 20 6c 6f 61 64 20 62 61 6c 61 6e 63 65 64 20 61 63 72 6f 73 73 20 74 68 65 20 | ill.be.load.balanced.across.the. |
| 99d00 | 62 61 63 6b 65 6e 64 20 73 65 72 76 65 72 73 20 28 73 72 76 30 31 20 61 6e 64 20 73 72 76 30 32 | backend.servers.(srv01.and.srv02 |
| 99d20 | 29 20 75 73 69 6e 67 20 74 68 65 20 72 6f 75 6e 64 2d 72 6f 62 69 6e 20 6c 6f 61 64 2d 62 61 6c | ).using.the.round-robin.load-bal |
| 99d40 | 61 6e 63 69 6e 67 20 61 6c 67 6f 72 69 74 68 6d 2e 00 54 68 69 73 20 63 6f 6e 66 69 67 75 72 61 | ancing.algorithm..This.configura |
| 99d60 | 74 69 6f 6e 20 67 65 6e 65 72 61 74 65 73 20 26 20 69 6e 73 74 61 6c 6c 73 20 69 6e 74 6f 20 74 | tion.generates.&.installs.into.t |
| 99d80 | 68 65 20 56 79 4f 53 20 50 4b 49 20 73 79 73 74 65 6d 20 61 20 72 6f 6f 74 20 63 65 72 74 69 66 | he.VyOS.PKI.system.a.root.certif |
| 99da0 | 69 63 61 74 65 20 61 75 74 68 6f 72 69 74 79 2c 20 61 6c 6f 6e 67 73 69 64 65 20 74 77 6f 20 69 | icate.authority,.alongside.two.i |
| 99dc0 | 6e 74 65 72 6d 65 64 69 61 72 79 20 63 65 72 74 69 66 69 63 61 74 65 20 61 75 74 68 6f 72 69 74 | ntermediary.certificate.authorit |
| 99de0 | 69 65 73 20 66 6f 72 20 63 6c 69 65 6e 74 20 26 20 73 65 72 76 65 72 20 63 65 72 74 69 66 69 63 | ies.for.client.&.server.certific |
| 99e00 | 61 74 65 73 2e 20 54 68 65 73 65 20 43 41 73 20 61 72 65 20 74 68 65 6e 20 75 73 65 64 20 74 6f | ates..These.CAs.are.then.used.to |
| 99e20 | 20 67 65 6e 65 72 61 74 65 20 61 20 73 65 72 76 65 72 20 63 65 72 74 69 66 69 63 61 74 65 20 66 | .generate.a.server.certificate.f |
| 99e40 | 6f 72 20 74 68 65 20 72 6f 75 74 65 72 2c 20 61 6e 64 20 61 20 63 6c 69 65 6e 74 20 63 65 72 74 | or.the.router,.and.a.client.cert |
| 99e60 | 69 66 69 63 61 74 65 20 66 6f 72 20 61 20 75 73 65 72 2e 00 54 68 69 73 20 63 6f 6e 66 69 67 75 | ificate.for.a.user..This.configu |
| 99e80 | 72 61 74 69 6f 6e 20 6c 69 73 74 65 6e 20 6f 6e 20 70 6f 72 74 20 38 30 20 61 6e 64 20 72 65 64 | ration.listen.on.port.80.and.red |
| 99ea0 | 69 72 65 63 74 20 69 6e 63 6f 6d 69 6e 67 20 72 65 71 75 65 73 74 73 20 74 6f 20 48 54 54 50 53 | irect.incoming.requests.to.HTTPS |
| 99ec0 | 3a 00 54 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d 6f 64 69 66 69 65 73 20 74 68 | :.This.configuration.modifies.th |
| 99ee0 | 65 20 62 65 68 61 76 69 6f 72 20 6f 66 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 73 74 61 74 65 6d | e.behavior.of.the.network.statem |
| 99f00 | 65 6e 74 2e 20 49 66 20 79 6f 75 20 68 61 76 65 20 74 68 69 73 20 63 6f 6e 66 69 67 75 72 65 64 | ent..If.you.have.this.configured |
| 99f20 | 20 74 68 65 20 75 6e 64 65 72 6c 79 69 6e 67 20 6e 65 74 77 6f 72 6b 20 6d 75 73 74 20 65 78 69 | .the.underlying.network.must.exi |
| 99f40 | 73 74 20 69 6e 20 74 68 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 2e 00 54 68 69 73 20 63 6f | st.in.the.routing.table..This.co |
| 99f60 | 6e 66 69 67 75 72 61 74 69 6f 6e 20 70 61 72 61 6d 65 74 65 72 20 69 73 20 72 65 71 75 69 72 65 | nfiguration.parameter.is.require |
| 99f80 | 64 20 61 6e 64 20 6d 75 73 74 20 62 65 20 75 6e 69 71 75 65 20 74 6f 20 65 61 63 68 20 73 75 62 | d.and.must.be.unique.to.each.sub |
| 99fa0 | 6e 65 74 2e 20 49 74 20 69 73 20 72 65 71 75 69 72 65 64 20 74 6f 20 6d 61 70 20 73 75 62 6e 65 | net..It.is.required.to.map.subne |
| 99fc0 | 74 73 20 74 6f 20 6c 65 61 73 65 20 66 69 6c 65 20 65 6e 74 72 69 65 73 2e 00 54 68 69 73 20 63 | ts.to.lease.file.entries..This.c |
| 99fe0 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 70 61 72 61 6d 65 74 65 72 20 6c 65 74 73 20 74 68 65 20 | onfiguration.parameter.lets.the. |
| 9a000 | 44 48 43 50 20 73 65 72 76 65 72 20 74 6f 20 6c 69 73 74 65 6e 20 66 6f 72 20 44 48 43 50 20 72 | DHCP.server.to.listen.for.DHCP.r |
| 9a020 | 65 71 75 65 73 74 73 20 73 65 6e 74 20 74 6f 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 61 64 | equests.sent.to.the.specified.ad |
| 9a040 | 64 72 65 73 73 2c 20 69 74 20 69 73 20 6f 6e 6c 79 20 72 65 61 6c 69 73 74 69 63 61 6c 6c 79 20 | dress,.it.is.only.realistically. |
| 9a060 | 75 73 65 66 75 6c 20 66 6f 72 20 61 20 73 65 72 76 65 72 20 77 68 6f 73 65 20 6f 6e 6c 79 20 63 | useful.for.a.server.whose.only.c |
| 9a080 | 6c 69 65 6e 74 73 20 61 72 65 20 72 65 61 63 68 65 64 20 76 69 61 20 75 6e 69 63 61 73 74 73 2c | lients.are.reached.via.unicasts, |
| 9a0a0 | 20 73 75 63 68 20 61 73 20 76 69 61 20 44 48 43 50 20 72 65 6c 61 79 20 61 67 65 6e 74 73 2e 00 | .such.as.via.DHCP.relay.agents.. |
| 9a0c0 | 54 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 70 61 72 61 6d 65 74 65 72 20 6c 65 74 | This.configuration.parameter.let |
| 9a0e0 | 73 20 79 6f 75 20 73 70 65 63 69 66 79 20 61 20 76 65 6e 64 6f 72 2d 6f 70 74 69 6f 6e 20 66 6f | s.you.specify.a.vendor-option.fo |
| 9a100 | 72 20 74 68 65 20 65 6e 74 69 72 65 20 73 68 61 72 65 64 20 6e 65 74 77 6f 72 6b 20 64 65 66 69 | r.the.entire.shared.network.defi |
| 9a120 | 6e 69 74 69 6f 6e 2e 20 41 6c 6c 20 73 75 62 6e 65 74 73 20 77 69 6c 6c 20 69 6e 68 65 72 69 74 | nition..All.subnets.will.inherit |
| 9a140 | 20 74 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 74 65 6d 20 69 66 20 6e 6f 74 20 | .this.configuration.item.if.not. |
| 9a160 | 73 70 65 63 69 66 69 65 64 20 6c 6f 63 61 6c 6c 79 2e 20 41 6e 20 65 78 61 6d 70 6c 65 20 66 6f | specified.locally..An.example.fo |
| 9a180 | 72 20 55 62 69 71 75 69 74 69 20 69 73 20 73 68 6f 77 6e 20 62 65 6c 6f 77 3a 00 54 68 69 73 20 | r.Ubiquiti.is.shown.below:.This. |
| 9a1a0 | 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 70 61 72 61 6d 65 74 65 72 20 6c 65 74 73 20 79 6f 75 | configuration.parameter.lets.you |
| 9a1c0 | 20 73 70 65 63 69 66 79 20 61 20 76 65 6e 64 6f 72 2d 6f 70 74 69 6f 6e 20 66 6f 72 20 74 68 65 | .specify.a.vendor-option.for.the |
| 9a1e0 | 20 73 75 62 6e 65 74 20 73 70 65 63 69 66 69 65 64 20 77 69 74 68 69 6e 20 74 68 65 20 73 68 61 | .subnet.specified.within.the.sha |
| 9a200 | 72 65 64 20 6e 65 74 77 6f 72 6b 20 64 65 66 69 6e 69 74 69 6f 6e 2e 20 41 6e 20 65 78 61 6d 70 | red.network.definition..An.examp |
| 9a220 | 6c 65 20 66 6f 72 20 55 62 69 71 75 69 74 69 20 69 73 20 73 68 6f 77 6e 20 62 65 6c 6f 77 3a 00 | le.for.Ubiquiti.is.shown.below:. |
| 9a240 | 54 68 69 73 20 63 6f 75 6c 64 20 62 65 20 68 65 6c 70 66 75 6c 20 69 66 20 79 6f 75 20 77 61 6e | This.could.be.helpful.if.you.wan |
| 9a260 | 74 20 74 6f 20 74 65 73 74 20 68 6f 77 20 61 6e 20 61 70 70 6c 69 63 61 74 69 6f 6e 20 62 65 68 | t.to.test.how.an.application.beh |
| 9a280 | 61 76 65 73 20 75 6e 64 65 72 20 63 65 72 74 61 69 6e 20 6e 65 74 77 6f 72 6b 20 63 6f 6e 64 69 | aves.under.certain.network.condi |
| 9a2a0 | 74 69 6f 6e 73 2e 00 54 68 69 73 20 63 72 65 61 74 65 73 20 61 20 72 6f 75 74 65 20 70 6f 6c 69 | tions..This.creates.a.route.poli |
| 9a2c0 | 63 79 20 63 61 6c 6c 65 64 20 46 49 4c 54 45 52 2d 57 45 42 20 77 69 74 68 20 6f 6e 65 20 72 75 | cy.called.FILTER-WEB.with.one.ru |
| 9a2e0 | 6c 65 20 74 6f 20 73 65 74 20 74 68 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 66 6f 72 20 | le.to.set.the.routing.table.for. |
| 9a300 | 6d 61 74 63 68 69 6e 67 20 74 72 61 66 66 69 63 20 28 54 43 50 20 70 6f 72 74 20 38 30 29 20 74 | matching.traffic.(TCP.port.80).t |
| 9a320 | 6f 20 74 61 62 6c 65 20 49 44 20 31 30 30 20 69 6e 73 74 65 61 64 20 6f 66 20 74 68 65 20 64 65 | o.table.ID.100.instead.of.the.de |
| 9a340 | 66 61 75 6c 74 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 2e 00 54 68 69 73 20 64 65 66 61 75 6c | fault.routing.table..This.defaul |
| 9a360 | 74 73 20 74 6f 20 31 30 30 30 30 2e 00 54 68 69 73 20 64 65 66 61 75 6c 74 73 20 74 6f 20 31 38 | ts.to.10000..This.defaults.to.18 |
| 9a380 | 31 32 2e 00 54 68 69 73 20 64 65 66 61 75 6c 74 73 20 74 6f 20 32 30 30 37 2e 00 54 68 69 73 20 | 12..This.defaults.to.2007..This. |
| 9a3a0 | 64 65 66 61 75 6c 74 73 20 74 6f 20 33 30 20 73 65 63 6f 6e 64 73 2e 00 54 68 69 73 20 64 65 66 | defaults.to.30.seconds..This.def |
| 9a3c0 | 61 75 6c 74 73 20 74 6f 20 33 30 30 20 73 65 63 6f 6e 64 73 2e 00 54 68 69 73 20 64 65 66 61 75 | aults.to.300.seconds..This.defau |
| 9a3e0 | 6c 74 73 20 74 6f 20 34 39 2e 00 54 68 69 73 20 64 65 66 61 75 6c 74 73 20 74 6f 20 35 2e 00 54 | lts.to.49..This.defaults.to.5..T |
| 9a400 | 68 69 73 20 64 65 66 61 75 6c 74 73 20 74 6f 20 55 44 50 00 54 68 69 73 20 64 65 66 61 75 6c 74 | his.defaults.to.UDP.This.default |
| 9a420 | 73 20 74 6f 20 62 6f 74 68 20 31 2e 32 20 61 6e 64 20 31 2e 33 2e 00 54 68 69 73 20 64 65 66 61 | s.to.both.1.2.and.1.3..This.defa |
| 9a440 | 75 6c 74 73 20 74 6f 20 68 74 74 70 73 3a 2f 2f 61 63 6d 65 2d 76 30 32 2e 61 70 69 2e 6c 65 74 | ults.to.https://acme-v02.api.let |
| 9a460 | 73 65 6e 63 72 79 70 74 2e 6f 72 67 2f 64 69 72 65 63 74 6f 72 79 00 54 68 69 73 20 64 65 66 61 | sencrypt.org/directory.This.defa |
| 9a480 | 75 6c 74 73 20 74 6f 20 70 68 79 30 2e 00 54 68 69 73 20 64 65 70 65 6e 64 73 20 6f 6e 20 74 68 | ults.to.phy0..This.depends.on.th |
| 9a4a0 | 65 20 64 72 69 76 65 72 20 63 61 70 61 62 69 6c 69 74 69 65 73 20 61 6e 64 20 6d 61 79 20 6e 6f | e.driver.capabilities.and.may.no |
| 9a4c0 | 74 20 62 65 20 61 76 61 69 6c 61 62 6c 65 20 77 69 74 68 20 61 6c 6c 20 64 72 69 76 65 72 73 2e | t.be.available.with.all.drivers. |
| 9a4e0 | 00 54 68 69 73 20 64 69 61 62 6c 65 20 74 68 65 20 65 78 74 65 72 6e 61 6c 20 63 61 63 68 65 20 | .This.diable.the.external.cache. |
| 9a500 | 61 6e 64 20 64 69 72 65 63 74 6c 79 20 69 6e 6a 65 63 74 73 20 74 68 65 20 66 6c 6f 77 2d 73 74 | and.directly.injects.the.flow-st |
| 9a520 | 61 74 65 73 20 69 6e 74 6f 20 74 68 65 20 69 6e 2d 6b 65 72 6e 65 6c 20 43 6f 6e 6e 65 63 74 69 | ates.into.the.in-kernel.Connecti |
| 9a540 | 6f 6e 20 54 72 61 63 6b 69 6e 67 20 53 79 73 74 65 6d 20 6f 66 20 74 68 65 20 62 61 63 6b 75 70 | on.Tracking.System.of.the.backup |
| 9a560 | 20 66 69 72 65 77 61 6c 6c 2e 00 54 68 69 73 20 64 69 61 67 72 61 6d 20 63 6f 72 72 65 73 70 6f | .firewall..This.diagram.correspo |
| 9a580 | 6e 64 73 20 77 69 74 68 20 74 68 65 20 65 78 61 6d 70 6c 65 20 73 69 74 65 20 74 6f 20 73 69 74 | nds.with.the.example.site.to.sit |
| 9a5a0 | 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 62 65 6c 6f 77 2e 00 54 68 69 73 20 65 6e 61 62 | e.configuration.below..This.enab |
| 9a5c0 | 6c 65 73 20 3a 72 66 63 3a 60 33 31 33 37 60 20 73 75 70 70 6f 72 74 2c 20 77 68 65 72 65 20 74 | les.:rfc:`3137`.support,.where.t |
| 9a5e0 | 68 65 20 4f 53 50 46 20 70 72 6f 63 65 73 73 20 64 65 73 63 72 69 62 65 73 20 69 74 73 20 74 72 | he.OSPF.process.describes.its.tr |
| 9a600 | 61 6e 73 69 74 20 6c 69 6e 6b 73 20 69 6e 20 69 74 73 20 72 6f 75 74 65 72 2d 4c 53 41 20 61 73 | ansit.links.in.its.router-LSA.as |
| 9a620 | 20 68 61 76 69 6e 67 20 69 6e 66 69 6e 69 74 65 20 64 69 73 74 61 6e 63 65 20 73 6f 20 74 68 61 | .having.infinite.distance.so.tha |
| 9a640 | 74 20 6f 74 68 65 72 20 72 6f 75 74 65 72 73 20 77 69 6c 6c 20 61 76 6f 69 64 20 63 61 6c 63 75 | t.other.routers.will.avoid.calcu |
| 9a660 | 6c 61 74 69 6e 67 20 74 72 61 6e 73 69 74 20 70 61 74 68 73 20 74 68 72 6f 75 67 68 20 74 68 65 | lating.transit.paths.through.the |
| 9a680 | 20 72 6f 75 74 65 72 20 77 68 69 6c 65 20 73 74 69 6c 6c 20 62 65 69 6e 67 20 61 62 6c 65 20 74 | .router.while.still.being.able.t |
| 9a6a0 | 6f 20 72 65 61 63 68 20 6e 65 74 77 6f 72 6b 73 20 74 68 72 6f 75 67 68 20 74 68 65 20 72 6f 75 | o.reach.networks.through.the.rou |
| 9a6c0 | 74 65 72 2e 00 54 68 69 73 20 65 6e 61 62 6c 65 73 20 74 68 65 20 67 72 65 65 6e 66 69 65 6c 64 | ter..This.enables.the.greenfield |
| 9a6e0 | 20 6f 70 74 69 6f 6e 20 77 68 69 63 68 20 73 65 74 73 20 74 68 65 20 60 60 5b 47 46 5d 60 60 20 | .option.which.sets.the.``[GF]``. |
| 9a700 | 6f 70 74 69 6f 6e 00 54 68 69 73 20 65 73 74 61 62 6c 69 73 68 65 73 20 6f 75 72 20 50 6f 72 74 | option.This.establishes.our.Port |
| 9a720 | 20 46 6f 72 77 61 72 64 20 72 75 6c 65 2c 20 62 75 74 20 69 66 20 77 65 20 63 72 65 61 74 65 64 | .Forward.rule,.but.if.we.created |
| 9a740 | 20 61 20 66 69 72 65 77 61 6c 6c 20 70 6f 6c 69 63 79 20 69 74 20 77 69 6c 6c 20 6c 69 6b 65 6c | .a.firewall.policy.it.will.likel |
| 9a760 | 79 20 62 6c 6f 63 6b 20 74 68 65 20 74 72 61 66 66 69 63 2e 00 54 68 69 73 20 65 78 61 6d 70 6c | y.block.the.traffic..This.exampl |
| 9a780 | 65 20 63 72 65 61 74 65 73 20 61 6e 20 49 50 76 34 20 70 72 65 66 69 78 2d 6c 69 73 74 20 6e 61 | e.creates.an.IPv4.prefix-list.na |
| 9a7a0 | 6d 65 64 20 50 4c 34 2d 45 58 41 4d 50 4c 45 2d 4e 41 4d 45 2c 20 64 65 66 69 6e 65 73 20 33 20 | med.PL4-EXAMPLE-NAME,.defines.3. |
| 9a7c0 | 72 75 6c 65 73 20 65 61 63 68 20 77 69 74 68 20 31 20 70 72 65 66 69 78 2c 20 61 6e 64 20 6d 61 | rules.each.with.1.prefix,.and.ma |
| 9a7e0 | 74 63 68 65 73 20 6c 65 20 28 6c 65 73 73 20 74 68 61 6e 2f 65 71 75 61 6c 20 74 6f 29 20 2f 33 | tches.le.(less.than/equal.to)./3 |
| 9a800 | 32 2e 00 54 68 69 73 20 65 78 61 6d 70 6c 65 20 73 68 6f 77 73 20 68 6f 77 20 74 6f 20 74 61 72 | 2..This.example.shows.how.to.tar |
| 9a820 | 67 65 74 20 61 6e 20 4d 53 53 20 63 6c 61 6d 70 20 28 69 6e 20 6f 75 72 20 65 78 61 6d 70 6c 65 | get.an.MSS.clamp.(in.our.example |
| 9a840 | 20 74 6f 20 31 33 36 30 20 62 79 74 65 73 29 20 74 6f 20 61 20 73 70 65 63 69 66 69 63 20 64 65 | .to.1360.bytes).to.a.specific.de |
| 9a860 | 73 74 69 6e 61 74 69 6f 6e 20 49 50 2e 00 54 68 69 73 20 65 78 61 6d 70 6c 65 20 75 73 65 73 20 | stination.IP..This.example.uses. |
| 9a880 | 43 41 43 65 72 74 20 61 73 20 63 65 72 74 69 66 69 63 61 74 65 20 61 75 74 68 6f 72 69 74 79 2e | CACert.as.certificate.authority. |
| 9a8a0 | 00 54 68 69 73 20 66 65 61 74 75 72 65 20 63 6c 6f 73 65 6c 79 20 77 6f 72 6b 73 20 74 6f 67 65 | .This.feature.closely.works.toge |
| 9a8c0 | 74 68 65 72 20 77 69 74 68 20 3a 72 65 66 3a 60 70 6b 69 60 20 73 75 62 73 79 73 74 65 6d 20 61 | ther.with.:ref:`pki`.subsystem.a |
| 9a8e0 | 73 20 79 6f 75 20 72 65 71 75 69 72 65 64 20 61 20 78 35 30 39 20 63 65 72 74 69 66 69 63 61 74 | s.you.required.a.x509.certificat |
| 9a900 | 65 2e 00 54 68 69 73 20 66 65 61 74 75 72 65 20 73 65 72 76 65 73 20 74 68 65 20 70 75 72 70 6f | e..This.feature.serves.the.purpo |
| 9a920 | 73 65 20 6f 66 20 74 68 69 67 68 74 65 6e 69 6e 67 20 74 68 65 20 70 61 63 6b 65 74 20 76 61 6c | se.of.thightening.the.packet.val |
| 9a940 | 69 64 61 74 69 6f 6e 20 72 65 71 75 69 72 65 6d 65 6e 74 73 20 74 6f 20 61 76 6f 69 64 20 72 65 | idation.requirements.to.avoid.re |
| 9a960 | 63 65 69 76 69 6e 67 20 42 46 44 20 63 6f 6e 74 72 6f 6c 20 70 61 63 6b 65 74 73 20 66 72 6f 6d | ceiving.BFD.control.packets.from |
| 9a980 | 20 6f 74 68 65 72 20 73 65 73 73 69 6f 6e 73 2e 00 54 68 69 73 20 66 65 61 74 75 72 65 20 73 75 | .other.sessions..This.feature.su |
| 9a9a0 | 6d 6d 61 72 69 73 65 73 20 6f 72 69 67 69 6e 61 74 65 64 20 65 78 74 65 72 6e 61 6c 20 4c 53 41 | mmarises.originated.external.LSA |
| 9a9c0 | 73 20 28 54 79 70 65 2d 35 20 61 6e 64 20 54 79 70 65 2d 37 29 2e 20 53 75 6d 6d 61 72 79 20 52 | s.(Type-5.and.Type-7)..Summary.R |
| 9a9e0 | 6f 75 74 65 20 77 69 6c 6c 20 62 65 20 6f 72 69 67 69 6e 61 74 65 64 20 6f 6e 2d 62 65 68 61 6c | oute.will.be.originated.on-behal |
| 9aa00 | 66 20 6f 66 20 61 6c 6c 20 6d 61 74 63 68 65 64 20 65 78 74 65 72 6e 61 6c 20 4c 53 41 73 2e 00 | f.of.all.matched.external.LSAs.. |
| 9aa20 | 54 68 69 73 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 20 69 73 20 63 6f 6e 74 72 6f 6c 6c 65 64 | This.functionality.is.controlled |
| 9aa40 | 20 62 79 20 61 64 64 69 6e 67 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6e 66 69 67 75 | .by.adding.the.following.configu |
| 9aa60 | 72 61 74 69 6f 6e 3a 00 54 68 69 73 20 66 75 6e 63 74 69 6f 6e 73 20 66 6f 72 20 62 6f 74 68 20 | ration:.This.functions.for.both. |
| 9aa80 | 69 6e 64 69 76 69 64 75 61 6c 20 61 64 64 72 65 73 73 65 73 20 61 6e 64 20 61 64 64 72 65 73 73 | individual.addresses.and.address |
| 9aaa0 | 20 67 72 6f 75 70 73 2e 00 54 68 69 73 20 67 69 76 65 73 20 75 73 20 49 47 50 2d 4c 44 50 20 73 | .groups..This.gives.us.IGP-LDP.s |
| 9aac0 | 79 6e 63 68 72 6f 6e 69 7a 61 74 69 6f 6e 20 66 6f 72 20 61 6c 6c 20 6e 6f 6e 2d 6c 6f 6f 70 62 | ynchronization.for.all.non-loopb |
| 9aae0 | 61 63 6b 20 69 6e 74 65 72 66 61 63 65 73 20 77 69 74 68 20 61 20 68 6f 6c 64 64 6f 77 6e 20 74 | ack.interfaces.with.a.holddown.t |
| 9ab00 | 69 6d 65 72 20 6f 66 20 7a 65 72 6f 20 73 65 63 6f 6e 64 73 3a 00 54 68 69 73 20 67 69 76 65 73 | imer.of.zero.seconds:.This.gives |
| 9ab20 | 20 75 73 20 4d 50 4c 53 20 73 65 67 6d 65 6e 74 20 72 6f 75 74 69 6e 67 20 65 6e 61 62 6c 65 64 | .us.MPLS.segment.routing.enabled |
| 9ab40 | 20 61 6e 64 20 6c 61 62 65 6c 73 20 66 6f 72 20 66 61 72 20 65 6e 64 20 6c 6f 6f 70 62 61 63 6b | .and.labels.for.far.end.loopback |
| 9ab60 | 73 3a 00 54 68 69 73 20 67 69 76 65 73 20 75 73 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 6e | s:.This.gives.us.the.following.n |
| 9ab80 | 65 69 67 68 62 6f 72 73 68 69 70 73 2c 20 4c 65 76 65 6c 20 31 20 61 6e 64 20 4c 65 76 65 6c 20 | eighborships,.Level.1.and.Level. |
| 9aba0 | 32 3a 00 54 68 69 73 20 67 69 76 65 73 20 75 73 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 6e | 2:.This.gives.us.the.following.n |
| 9abc0 | 65 69 67 68 62 6f 72 73 68 69 70 73 3a 00 54 68 69 73 20 69 6e 73 74 72 75 63 74 73 20 6f 70 65 | eighborships:.This.instructs.ope |
| 9abe0 | 6e 6e 68 72 70 20 74 6f 20 72 65 70 6c 79 20 77 69 74 68 20 61 75 74 68 6f 72 61 74 69 76 65 20 | nnhrp.to.reply.with.authorative. |
| 9ac00 | 61 6e 73 77 65 72 73 20 6f 6e 20 4e 48 52 50 20 52 65 73 6f 6c 75 74 69 6f 6e 20 52 65 71 75 65 | answers.on.NHRP.Resolution.Reque |
| 9ac20 | 73 74 73 20 64 65 73 74 69 6e 69 65 64 20 74 6f 20 61 64 64 72 65 73 73 65 73 20 69 6e 20 74 68 | sts.destinied.to.addresses.in.th |
| 9ac40 | 69 73 20 69 6e 74 65 72 66 61 63 65 20 28 69 6e 73 74 65 61 64 20 6f 66 20 66 6f 72 77 61 72 64 | is.interface.(instead.of.forward |
| 9ac60 | 69 6e 67 20 74 68 65 20 70 61 63 6b 65 74 73 29 2e 20 54 68 69 73 20 65 66 66 65 63 74 69 76 65 | ing.the.packets)..This.effective |
| 9ac80 | 6c 79 20 61 6c 6c 6f 77 73 20 74 68 65 20 63 72 65 61 74 69 6f 6e 20 6f 66 20 73 68 6f 72 74 63 | ly.allows.the.creation.of.shortc |
| 9aca0 | 75 74 20 72 6f 75 74 65 73 20 74 6f 20 73 75 62 6e 65 74 73 20 6c 6f 63 61 74 65 64 20 6f 6e 20 | ut.routes.to.subnets.located.on. |
| 9acc0 | 74 68 65 20 69 6e 74 65 72 66 61 63 65 2e 00 54 68 69 73 20 69 73 20 61 20 63 6f 6d 6d 6f 6e 20 | the.interface..This.is.a.common. |
| 9ace0 | 73 63 65 6e 61 72 69 6f 20 77 68 65 72 65 20 62 6f 74 68 20 3a 72 65 66 3a 60 73 6f 75 72 63 65 | scenario.where.both.:ref:`source |
| 9ad00 | 2d 6e 61 74 60 20 61 6e 64 20 3a 72 65 66 3a 60 64 65 73 74 69 6e 61 74 69 6f 6e 2d 6e 61 74 60 | -nat`.and.:ref:`destination-nat` |
| 9ad20 | 20 61 72 65 20 63 6f 6e 66 69 67 75 72 65 64 20 61 74 20 74 68 65 20 73 61 6d 65 20 74 69 6d 65 | .are.configured.at.the.same.time |
| 9ad40 | 2e 20 49 74 27 73 20 63 6f 6d 6d 6f 6e 6c 79 20 75 73 65 64 20 77 68 65 6e 20 69 6e 74 65 72 6e | ..It's.commonly.used.when.intern |
| 9ad60 | 61 6c 20 28 70 72 69 76 61 74 65 29 20 68 6f 73 74 73 20 6e 65 65 64 20 74 6f 20 65 73 74 61 62 | al.(private).hosts.need.to.estab |
| 9ad80 | 6c 69 73 68 20 61 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 77 69 74 68 20 65 78 74 65 72 6e 61 6c 20 | lish.a.connection.with.external. |
| 9ada0 | 72 65 73 6f 75 72 63 65 73 20 61 6e 64 20 65 78 74 65 72 6e 61 6c 20 73 79 73 74 65 6d 73 20 6e | resources.and.external.systems.n |
| 9adc0 | 65 65 64 20 74 6f 20 61 63 63 65 73 73 20 69 6e 74 65 72 6e 61 6c 20 28 70 72 69 76 61 74 65 29 | eed.to.access.internal.(private) |
| 9ade0 | 20 72 65 73 6f 75 72 63 65 73 2e 00 54 68 69 73 20 69 73 20 61 20 63 6f 6e 66 69 67 75 72 61 74 | .resources..This.is.a.configurat |
| 9ae00 | 69 6f 6e 20 70 61 72 61 6d 65 74 65 72 20 66 6f 72 20 74 68 65 20 60 3c 73 75 62 6e 65 74 3e 60 | ion.parameter.for.the.`<subnet>` |
| 9ae20 | 2c 20 73 61 79 69 6e 67 20 74 68 61 74 20 61 73 20 70 61 72 74 20 6f 66 20 74 68 65 20 72 65 73 | ,.saying.that.as.part.of.the.res |
| 9ae40 | 70 6f 6e 73 65 2c 20 74 65 6c 6c 20 74 68 65 20 63 6c 69 65 6e 74 20 74 68 61 74 20 74 68 65 20 | ponse,.tell.the.client.that.the. |
| 9ae60 | 64 65 66 61 75 6c 74 20 67 61 74 65 77 61 79 20 63 61 6e 20 62 65 20 72 65 61 63 68 65 64 20 61 | default.gateway.can.be.reached.a |
| 9ae80 | 74 20 60 3c 61 64 64 72 65 73 73 3e 60 2e 00 54 68 69 73 20 69 73 20 61 20 63 6f 6e 66 69 67 75 | t.`<address>`..This.is.a.configu |
| 9aea0 | 72 61 74 69 6f 6e 20 70 61 72 61 6d 65 74 65 72 20 66 6f 72 20 74 68 65 20 73 75 62 6e 65 74 2c | ration.parameter.for.the.subnet, |
| 9aec0 | 20 73 61 79 69 6e 67 20 74 68 61 74 20 61 73 20 70 61 72 74 20 6f 66 20 74 68 65 20 72 65 73 70 | .saying.that.as.part.of.the.resp |
| 9aee0 | 6f 6e 73 65 2c 20 74 65 6c 6c 20 74 68 65 20 63 6c 69 65 6e 74 20 74 68 61 74 20 74 68 65 20 44 | onse,.tell.the.client.that.the.D |
| 9af00 | 4e 53 20 73 65 72 76 65 72 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 61 74 20 60 3c 61 64 64 72 | NS.server.can.be.found.at.`<addr |
| 9af20 | 65 73 73 3e 60 2e 00 54 68 69 73 20 69 73 20 61 20 6d 61 6e 64 61 74 6f 72 79 20 63 6f 6d 6d 61 | ess>`..This.is.a.mandatory.comma |
| 9af40 | 6e 64 2e 20 53 65 74 73 20 72 65 67 75 6c 61 72 20 65 78 70 72 65 73 73 69 6f 6e 20 74 6f 20 6d | nd..Sets.regular.expression.to.m |
| 9af60 | 61 74 63 68 20 61 67 61 69 6e 73 74 20 6c 6f 67 20 73 74 72 69 6e 67 20 6d 65 73 73 61 67 65 2e | atch.against.log.string.message. |
| 9af80 | 00 54 68 69 73 20 69 73 20 61 20 6d 61 6e 64 61 74 6f 72 79 20 63 6f 6d 6d 61 6e 64 2e 20 53 65 | .This.is.a.mandatory.command..Se |
| 9afa0 | 74 73 20 74 68 65 20 66 75 6c 6c 20 70 61 74 68 20 74 6f 20 74 68 65 20 73 63 72 69 70 74 2e 20 | ts.the.full.path.to.the.script.. |
| 9afc0 | 54 68 65 20 73 63 72 69 70 74 20 66 69 6c 65 20 6d 75 73 74 20 62 65 20 65 78 65 63 75 74 61 62 | The.script.file.must.be.executab |
| 9afe0 | 6c 65 2e 00 54 68 69 73 20 69 73 20 61 20 6d 61 6e 64 61 74 6f 72 79 20 6f 70 74 69 6f 6e 00 54 | le..This.is.a.mandatory.option.T |
| 9b000 | 68 69 73 20 69 73 20 61 20 6d 61 6e 64 61 74 6f 72 79 20 73 65 74 74 69 6e 67 2e 00 54 68 69 73 | his.is.a.mandatory.setting..This |
| 9b020 | 20 69 73 20 61 63 68 69 65 76 65 64 20 62 79 20 75 73 69 6e 67 20 74 68 65 20 66 69 72 73 74 20 | .is.achieved.by.using.the.first. |
| 9b040 | 74 68 72 65 65 20 62 69 74 73 20 6f 66 20 74 68 65 20 54 6f 53 20 28 54 79 70 65 20 6f 66 20 53 | three.bits.of.the.ToS.(Type.of.S |
| 9b060 | 65 72 76 69 63 65 29 20 66 69 65 6c 64 20 74 6f 20 63 61 74 65 67 6f 72 69 7a 65 20 64 61 74 61 | ervice).field.to.categorize.data |
| 9b080 | 20 73 74 72 65 61 6d 73 20 61 6e 64 2c 20 69 6e 20 61 63 63 6f 72 64 61 6e 63 65 20 77 69 74 68 | .streams.and,.in.accordance.with |
| 9b0a0 | 20 74 68 65 20 64 65 66 69 6e 65 64 20 70 72 65 63 65 64 65 6e 63 65 20 70 61 72 61 6d 65 74 65 | .the.defined.precedence.paramete |
| 9b0c0 | 72 73 2c 20 61 20 64 65 63 69 73 69 6f 6e 20 69 73 20 6d 61 64 65 2e 00 54 68 69 73 20 69 73 20 | rs,.a.decision.is.made..This.is. |
| 9b0e0 | 61 6c 73 6f 20 6b 6e 6f 77 6e 20 61 73 20 74 68 65 20 48 55 42 73 20 49 50 20 61 64 64 72 65 73 | also.known.as.the.HUBs.IP.addres |
| 9b100 | 73 20 6f 72 20 46 51 44 4e 2e 00 54 68 69 73 20 69 73 20 61 6e 20 6f 70 74 69 6f 6e 61 6c 20 63 | s.or.FQDN..This.is.an.optional.c |
| 9b120 | 6f 6d 6d 61 6e 64 20 62 65 63 61 75 73 65 20 74 68 65 20 65 76 65 6e 74 20 68 61 6e 64 6c 65 72 | ommand.because.the.event.handler |
| 9b140 | 20 77 69 6c 6c 20 62 65 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 63 72 65 61 74 65 64 20 61 | .will.be.automatically.created.a |
| 9b160 | 66 74 65 72 20 61 6e 79 20 6f 66 20 74 68 65 20 6e 65 78 74 20 63 6f 6d 6d 61 6e 64 73 2e 00 54 | fter.any.of.the.next.commands..T |
| 9b180 | 68 69 73 20 69 73 20 61 6e 20 6f 70 74 69 6f 6e 61 6c 20 63 6f 6d 6d 61 6e 64 2e 20 41 64 64 73 | his.is.an.optional.command..Adds |
| 9b1a0 | 20 61 72 67 75 6d 65 6e 74 73 20 74 6f 20 74 68 65 20 73 63 72 69 70 74 2e 20 41 72 67 75 6d 65 | .arguments.to.the.script..Argume |
| 9b1c0 | 6e 74 73 20 6d 75 73 74 20 62 65 20 73 65 70 61 72 61 74 65 64 20 62 79 20 73 70 61 63 65 73 2e | nts.must.be.separated.by.spaces. |
| 9b1e0 | 00 54 68 69 73 20 69 73 20 61 6e 20 6f 70 74 69 6f 6e 61 6c 20 63 6f 6d 6d 61 6e 64 2e 20 41 64 | .This.is.an.optional.command..Ad |
| 9b200 | 64 73 20 65 6e 76 69 72 6f 6e 6d 65 6e 74 20 61 6e 64 20 69 74 73 20 76 61 6c 75 65 20 74 6f 20 | ds.environment.and.its.value.to. |
| 9b220 | 74 68 65 20 73 63 72 69 70 74 2e 20 55 73 65 20 73 65 70 61 72 61 74 65 20 63 6f 6d 6d 61 6e 64 | the.script..Use.separate.command |
| 9b240 | 73 20 66 6f 72 20 65 61 63 68 20 65 6e 76 69 72 6f 6e 6d 65 6e 74 2e 00 54 68 69 73 20 69 73 20 | s.for.each.environment..This.is. |
| 9b260 | 61 6e 20 6f 70 74 69 6f 6e 61 6c 20 63 6f 6d 6d 61 6e 64 2e 20 46 69 6c 74 65 72 73 20 6c 6f 67 | an.optional.command..Filters.log |
| 9b280 | 20 6d 65 73 73 61 67 65 73 20 62 79 20 73 79 73 6c 6f 67 2d 69 64 65 6e 74 69 66 69 65 72 2e 00 | .messages.by.syslog-identifier.. |
| 9b2a0 | 54 68 69 73 20 69 73 20 64 6f 6e 65 20 74 6f 20 73 75 70 70 6f 72 74 20 28 65 74 68 65 72 6e 65 | This.is.done.to.support.(etherne |
| 9b2c0 | 74 29 20 73 77 69 74 63 68 20 66 65 61 74 75 72 65 73 2c 20 6c 69 6b 65 20 3a 72 66 63 3a 60 33 | t).switch.features,.like.:rfc:`3 |
| 9b2e0 | 30 36 39 60 2c 20 77 68 65 72 65 20 74 68 65 20 69 6e 64 69 76 69 64 75 61 6c 20 70 6f 72 74 73 | 069`,.where.the.individual.ports |
| 9b300 | 20 61 72 65 20 4e 4f 54 20 61 6c 6c 6f 77 65 64 20 74 6f 20 63 6f 6d 6d 75 6e 69 63 61 74 65 20 | .are.NOT.allowed.to.communicate. |
| 9b320 | 77 69 74 68 20 65 61 63 68 20 6f 74 68 65 72 2c 20 62 75 74 20 74 68 65 79 20 61 72 65 20 61 6c | with.each.other,.but.they.are.al |
| 9b340 | 6c 6f 77 65 64 20 74 6f 20 74 61 6c 6b 20 74 6f 20 74 68 65 20 75 70 73 74 72 65 61 6d 20 72 6f | lowed.to.talk.to.the.upstream.ro |
| 9b360 | 75 74 65 72 2e 20 41 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 33 30 36 39 | uter..As.described.in.:rfc:`3069 |
| 9b380 | 60 2c 20 69 74 20 69 73 20 70 6f 73 73 69 62 6c 65 20 74 6f 20 61 6c 6c 6f 77 20 74 68 65 73 65 | `,.it.is.possible.to.allow.these |
| 9b3a0 | 20 68 6f 73 74 73 20 74 6f 20 63 6f 6d 6d 75 6e 69 63 61 74 65 20 74 68 72 6f 75 67 68 20 74 68 | .hosts.to.communicate.through.th |
| 9b3c0 | 65 20 75 70 73 74 72 65 61 6d 20 72 6f 75 74 65 72 20 62 79 20 70 72 6f 78 79 5f 61 72 70 27 69 | e.upstream.router.by.proxy_arp'i |
| 9b3e0 | 6e 67 2e 00 54 68 69 73 20 69 73 20 65 73 70 65 63 69 61 6c 6c 79 20 75 73 65 66 75 6c 20 66 6f | ng..This.is.especially.useful.fo |
| 9b400 | 72 20 74 68 65 20 75 70 73 74 72 65 61 6d 20 69 6e 74 65 72 66 61 63 65 2c 20 73 69 6e 63 65 20 | r.the.upstream.interface,.since. |
| 9b420 | 74 68 65 20 73 6f 75 72 63 65 20 66 6f 72 20 6d 75 6c 74 69 63 61 73 74 20 74 72 61 66 66 69 63 | the.source.for.multicast.traffic |
| 9b440 | 20 69 73 20 6f 66 74 65 6e 20 66 72 6f 6d 20 61 20 72 65 6d 6f 74 65 20 6c 6f 63 61 74 69 6f 6e | .is.often.from.a.remote.location |
| 9b460 | 2e 00 54 68 69 73 20 69 73 20 6f 6e 65 20 6f 66 20 74 68 65 20 73 69 6d 70 6c 65 73 74 20 74 79 | ..This.is.one.of.the.simplest.ty |
| 9b480 | 70 65 73 20 6f 66 20 74 75 6e 6e 65 6c 73 2c 20 61 73 20 64 65 66 69 6e 65 64 20 62 79 20 3a 72 | pes.of.tunnels,.as.defined.by.:r |
| 9b4a0 | 66 63 3a 60 32 30 30 33 60 2e 20 49 74 20 74 61 6b 65 73 20 61 6e 20 49 50 76 34 20 70 61 63 6b | fc:`2003`..It.takes.an.IPv4.pack |
| 9b4c0 | 65 74 20 61 6e 64 20 73 65 6e 64 73 20 69 74 20 61 73 20 61 20 70 61 79 6c 6f 61 64 20 6f 66 20 | et.and.sends.it.as.a.payload.of. |
| 9b4e0 | 61 6e 6f 74 68 65 72 20 49 50 76 34 20 70 61 63 6b 65 74 2e 20 46 6f 72 20 74 68 69 73 20 72 65 | another.IPv4.packet..For.this.re |
| 9b500 | 61 73 6f 6e 2c 20 74 68 65 72 65 20 61 72 65 20 6e 6f 20 6f 74 68 65 72 20 63 6f 6e 66 69 67 75 | ason,.there.are.no.other.configu |
| 9b520 | 72 61 74 69 6f 6e 20 6f 70 74 69 6f 6e 73 20 66 6f 72 20 74 68 69 73 20 6b 69 6e 64 20 6f 66 20 | ration.options.for.this.kind.of. |
| 9b540 | 74 75 6e 6e 65 6c 2e 00 54 68 69 73 20 69 73 20 6f 70 74 69 6f 6e 61 6c 2e 00 54 68 69 73 20 69 | tunnel..This.is.optional..This.i |
| 9b560 | 73 20 73 69 6d 69 6c 61 72 20 74 6f 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 67 72 6f 75 70 73 20 | s.similar.to.the.network.groups. |
| 9b580 | 70 61 72 74 2c 20 62 75 74 20 68 65 72 65 20 79 6f 75 20 61 72 65 20 61 62 6c 65 20 74 6f 20 6e | part,.but.here.you.are.able.to.n |
| 9b5a0 | 65 67 61 74 65 20 74 68 65 20 6d 61 74 63 68 69 6e 67 20 61 64 64 72 65 73 73 65 73 2e 00 54 68 | egate.the.matching.addresses..Th |
| 9b5c0 | 69 73 20 69 73 20 74 68 65 20 49 50 76 36 20 63 6f 75 6e 74 65 72 70 61 72 74 20 6f 66 20 49 50 | is.is.the.IPv6.counterpart.of.IP |
| 9b5e0 | 49 50 2e 20 49 27 6d 20 6e 6f 74 20 61 77 61 72 65 20 6f 66 20 61 6e 20 52 46 43 20 74 68 61 74 | IP..I'm.not.aware.of.an.RFC.that |
| 9b600 | 20 64 65 66 69 6e 65 73 20 74 68 69 73 20 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e 20 73 70 65 63 | .defines.this.encapsulation.spec |
| 9b620 | 69 66 69 63 61 6c 6c 79 2c 20 62 75 74 20 69 74 27 73 20 61 20 6e 61 74 75 72 61 6c 20 73 70 65 | ifically,.but.it's.a.natural.spe |
| 9b640 | 63 69 66 69 63 20 63 61 73 65 20 6f 66 20 49 50 76 36 20 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e | cific.case.of.IPv6.encapsulation |
| 9b660 | 20 6d 65 63 68 61 6e 69 73 6d 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 32 34 | .mechanisms.described.in.:rfc:24 |
| 9b680 | 37 33 60 2e 00 54 68 69 73 20 69 73 20 74 68 65 20 4c 41 4e 20 65 78 74 65 6e 73 69 6f 6e 20 75 | 73`..This.is.the.LAN.extension.u |
| 9b6a0 | 73 65 20 63 61 73 65 2e 20 54 68 65 20 65 74 68 30 20 70 6f 72 74 20 6f 66 20 74 68 65 20 64 69 | se.case..The.eth0.port.of.the.di |
| 9b6c0 | 73 74 61 6e 74 20 56 50 4e 20 70 65 65 72 73 20 77 69 6c 6c 20 62 65 20 64 69 72 65 63 74 6c 79 | stant.VPN.peers.will.be.directly |
| 9b6e0 | 20 63 6f 6e 6e 65 63 74 65 64 20 6c 69 6b 65 20 69 66 20 74 68 65 72 65 20 77 61 73 20 61 20 73 | .connected.like.if.there.was.a.s |
| 9b700 | 77 69 74 63 68 20 62 65 74 77 65 65 6e 20 74 68 65 6d 2e 00 54 68 69 73 20 69 73 20 74 68 65 20 | witch.between.them..This.is.the. |
| 9b720 | 4c 43 44 20 6d 6f 64 65 6c 20 75 73 65 64 20 69 6e 20 79 6f 75 72 20 73 79 73 74 65 6d 2e 00 54 | LCD.model.used.in.your.system..T |
| 9b740 | 68 69 73 20 69 73 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 70 61 72 61 6d 65 74 | his.is.the.configuration.paramet |
| 9b760 | 65 72 20 66 6f 72 20 74 68 65 20 65 6e 74 69 72 65 20 73 68 61 72 65 64 20 6e 65 74 77 6f 72 6b | er.for.the.entire.shared.network |
| 9b780 | 20 64 65 66 69 6e 69 74 69 6f 6e 2e 20 41 6c 6c 20 73 75 62 6e 65 74 73 20 77 69 6c 6c 20 69 6e | .definition..All.subnets.will.in |
| 9b7a0 | 68 65 72 69 74 20 74 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 74 65 6d 20 69 66 | herit.this.configuration.item.if |
| 9b7c0 | 20 6e 6f 74 20 73 70 65 63 69 66 69 65 64 20 6c 6f 63 61 6c 6c 79 2e 00 54 68 69 73 20 69 73 20 | .not.specified.locally..This.is. |
| 9b7e0 | 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 70 61 72 61 6d 65 74 65 72 20 66 6f 72 20 | the.configuration.parameter.for. |
| 9b800 | 74 68 65 20 65 6e 74 69 72 65 20 73 68 61 72 65 64 20 6e 65 74 77 6f 72 6b 20 64 65 66 69 6e 69 | the.entire.shared.network.defini |
| 9b820 | 74 69 6f 6e 2e 20 41 6c 6c 20 73 75 62 6e 65 74 73 20 77 69 6c 6c 20 69 6e 68 65 72 69 74 20 74 | tion..All.subnets.will.inherit.t |
| 9b840 | 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 74 65 6d 20 69 66 20 6e 6f 74 20 73 70 | his.configuration.item.if.not.sp |
| 9b860 | 65 63 69 66 69 65 64 20 6c 6f 63 61 6c 6c 79 2e 20 4d 75 6c 74 69 70 6c 65 20 44 4e 53 20 73 65 | ecified.locally..Multiple.DNS.se |
| 9b880 | 72 76 65 72 73 20 63 61 6e 20 62 65 20 64 65 66 69 6e 65 64 2e 00 54 68 69 73 20 69 73 20 74 68 | rvers.can.be.defined..This.is.th |
| 9b8a0 | 65 20 65 71 75 69 76 61 6c 65 6e 74 20 6f 66 20 74 68 65 20 68 6f 73 74 20 62 6c 6f 63 6b 20 69 | e.equivalent.of.the.host.block.i |
| 9b8c0 | 6e 20 64 68 63 70 64 2e 63 6f 6e 66 20 6f 66 20 69 73 63 2d 64 68 63 70 64 2e 00 54 68 69 73 20 | n.dhcpd.conf.of.isc-dhcpd..This. |
| 9b8e0 | 69 73 20 74 68 65 20 6e 61 6d 65 20 6f 66 20 74 68 65 20 70 68 79 73 69 63 61 6c 20 69 6e 74 65 | is.the.name.of.the.physical.inte |
| 9b900 | 72 66 61 63 65 20 75 73 65 64 20 74 6f 20 63 6f 6e 6e 65 63 74 20 74 6f 20 79 6f 75 72 20 4c 43 | rface.used.to.connect.to.your.LC |
| 9b920 | 44 20 64 69 73 70 6c 61 79 2e 20 54 61 62 20 63 6f 6d 70 6c 65 74 69 6f 6e 20 69 73 20 73 75 70 | D.display..Tab.completion.is.sup |
| 9b940 | 70 6f 72 74 65 64 20 61 6e 64 20 69 74 20 77 69 6c 6c 20 6c 69 73 74 20 79 6f 75 20 61 6c 6c 20 | ported.and.it.will.list.you.all. |
| 9b960 | 61 76 61 69 6c 61 62 6c 65 20 73 65 72 69 61 6c 20 69 6e 74 65 72 66 61 63 65 2e 00 54 68 69 73 | available.serial.interface..This |
| 9b980 | 20 69 73 20 74 68 65 20 70 6f 6c 69 63 79 20 74 68 61 74 20 72 65 71 75 69 65 72 65 73 20 74 68 | .is.the.policy.that.requieres.th |
| 9b9a0 | 65 20 6c 6f 77 65 73 74 20 72 65 73 6f 75 72 63 65 73 20 66 6f 72 20 74 68 65 20 73 61 6d 65 20 | e.lowest.resources.for.the.same. |
| 9b9c0 | 61 6d 6f 75 6e 74 20 6f 66 20 74 72 61 66 66 69 63 2e 20 42 75 74 20 2a 2a 76 65 72 79 20 6c 69 | amount.of.traffic..But.**very.li |
| 9b9e0 | 6b 65 6c 79 20 79 6f 75 20 64 6f 20 6e 6f 74 20 6e 65 65 64 20 69 74 20 61 73 20 79 6f 75 20 63 | kely.you.do.not.need.it.as.you.c |
| 9ba00 | 61 6e 6e 6f 74 20 67 65 74 20 6d 75 63 68 20 66 72 6f 6d 20 69 74 2e 20 53 6f 6d 65 74 69 6d 65 | annot.get.much.from.it..Sometime |
| 9ba20 | 73 20 69 74 20 69 73 20 75 73 65 64 20 6a 75 73 74 20 74 6f 20 65 6e 61 62 6c 65 20 6c 6f 67 67 | s.it.is.used.just.to.enable.logg |
| 9ba40 | 69 6e 67 2e 2a 2a 00 54 68 69 73 20 69 73 20 74 68 65 20 70 6f 6c 69 63 79 20 74 68 61 74 20 72 | ing.**.This.is.the.policy.that.r |
| 9ba60 | 65 71 75 69 72 65 73 20 74 68 65 20 6c 6f 77 65 73 74 20 72 65 73 6f 75 72 63 65 73 20 66 6f 72 | equires.the.lowest.resources.for |
| 9ba80 | 20 74 68 65 20 73 61 6d 65 20 61 6d 6f 75 6e 74 20 6f 66 20 74 72 61 66 66 69 63 2e 20 42 75 74 | .the.same.amount.of.traffic..But |
| 9baa0 | 20 2a 2a 76 65 72 79 20 6c 69 6b 65 6c 79 20 79 6f 75 20 64 6f 20 6e 6f 74 20 6e 65 65 64 20 69 | .**very.likely.you.do.not.need.i |
| 9bac0 | 74 20 61 73 20 79 6f 75 20 63 61 6e 6e 6f 74 20 67 65 74 20 6d 75 63 68 20 66 72 6f 6d 20 69 74 | t.as.you.cannot.get.much.from.it |
| 9bae0 | 2e 20 53 6f 6d 65 74 69 6d 65 73 20 69 74 20 69 73 20 75 73 65 64 20 6a 75 73 74 20 74 6f 20 65 | ..Sometimes.it.is.used.just.to.e |
| 9bb00 | 6e 61 62 6c 65 20 6c 6f 67 67 69 6e 67 2e 2a 2a 00 54 68 69 73 20 69 73 20 75 73 65 66 75 6c 2c | nable.logging.**.This.is.useful, |
| 9bb20 | 20 66 6f 72 20 65 78 61 6d 70 6c 65 2c 20 69 6e 20 63 6f 6d 62 69 6e 61 74 69 6f 6e 20 77 69 74 | .for.example,.in.combination.wit |
| 9bb40 | 68 20 68 6f 73 74 66 69 6c 65 20 75 70 64 61 74 65 2e 00 54 68 69 73 20 69 73 20 77 68 65 72 65 | h.hostfile.update..This.is.where |
| 9bb60 | 20 22 55 44 50 20 62 72 6f 61 64 63 61 73 74 20 72 65 6c 61 79 22 20 63 6f 6d 65 73 20 69 6e 74 | ."UDP.broadcast.relay".comes.int |
| 9bb80 | 6f 20 70 6c 61 79 21 20 49 74 20 77 69 6c 6c 20 66 6f 72 77 61 72 64 20 72 65 63 65 69 76 65 64 | o.play!.It.will.forward.received |
| 9bba0 | 20 62 72 6f 61 64 63 61 73 74 73 20 74 6f 20 6f 74 68 65 72 20 63 6f 6e 66 69 67 75 72 65 64 20 | .broadcasts.to.other.configured. |
| 9bbc0 | 6e 65 74 77 6f 72 6b 73 2e 00 54 68 69 73 20 6d 61 6b 65 73 20 74 68 65 20 73 65 72 76 65 72 20 | networks..This.makes.the.server. |
| 9bbe0 | 61 75 74 68 6f 72 69 74 61 74 69 76 65 6c 79 20 6e 6f 74 20 61 77 61 72 65 20 6f 66 3a 20 31 30 | authoritatively.not.aware.of:.10 |
| 9bc00 | 2e 69 6e 2d 61 64 64 72 2e 61 72 70 61 2c 20 31 36 38 2e 31 39 32 2e 69 6e 2d 61 64 64 72 2e 61 | .in-addr.arpa,.168.192.in-addr.a |
| 9bc20 | 72 70 61 2c 20 31 36 2d 33 31 2e 31 37 32 2e 69 6e 2d 61 64 64 72 2e 61 72 70 61 2c 20 77 68 69 | rpa,.16-31.172.in-addr.arpa,.whi |
| 9bc40 | 63 68 20 65 6e 61 62 6c 69 6e 67 20 75 70 73 74 72 65 61 6d 20 44 4e 53 20 73 65 72 76 65 72 28 | ch.enabling.upstream.DNS.server( |
| 9bc60 | 73 29 20 74 6f 20 62 65 20 75 73 65 64 20 66 6f 72 20 72 65 76 65 72 73 65 20 6c 6f 6f 6b 75 70 | s).to.be.used.for.reverse.lookup |
| 9bc80 | 73 20 6f 66 20 74 68 65 73 65 20 7a 6f 6e 65 73 2e 00 54 68 69 73 20 6d 65 74 68 6f 64 20 61 75 | s.of.these.zones..This.method.au |
| 9bca0 | 74 6f 6d 61 74 69 63 61 6c 6c 79 20 64 69 73 61 62 6c 65 73 20 49 50 76 36 20 74 72 61 66 66 69 | tomatically.disables.IPv6.traffi |
| 9bcc0 | 63 20 66 6f 72 77 61 72 64 69 6e 67 20 6f 6e 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 69 6e | c.forwarding.on.the.interface.in |
| 9bce0 | 20 71 75 65 73 74 69 6f 6e 2e 00 54 68 69 73 20 6d 6f 64 65 20 70 72 6f 76 69 64 65 73 20 66 61 | .question..This.mode.provides.fa |
| 9bd00 | 75 6c 74 20 74 6f 6c 65 72 61 6e 63 65 2e 00 54 68 69 73 20 6d 6f 64 65 20 70 72 6f 76 69 64 65 | ult.tolerance..This.mode.provide |
| 9bd20 | 73 20 66 61 75 6c 74 20 74 6f 6c 65 72 61 6e 63 65 2e 20 54 68 65 20 3a 63 66 67 63 6d 64 3a 60 | s.fault.tolerance..The.:cfgcmd:` |
| 9bd40 | 70 72 69 6d 61 72 79 60 20 6f 70 74 69 6f 6e 2c 20 64 6f 63 75 6d 65 6e 74 65 64 20 62 65 6c 6f | primary`.option,.documented.belo |
| 9bd60 | 77 2c 20 61 66 66 65 63 74 73 20 74 68 65 20 62 65 68 61 76 69 6f 72 20 6f 66 20 74 68 69 73 20 | w,.affects.the.behavior.of.this. |
| 9bd80 | 6d 6f 64 65 2e 00 54 68 69 73 20 6d 6f 64 65 20 70 72 6f 76 69 64 65 73 20 6c 6f 61 64 20 62 61 | mode..This.mode.provides.load.ba |
| 9bda0 | 6c 61 6e 63 69 6e 67 20 61 6e 64 20 66 61 75 6c 74 20 74 6f 6c 65 72 61 6e 63 65 2e 00 54 68 69 | lancing.and.fault.tolerance..Thi |
| 9bdc0 | 73 20 6f 70 74 69 6f 6e 20 61 64 64 73 20 50 6f 77 65 72 20 43 6f 6e 73 74 72 61 69 6e 74 20 65 | s.option.adds.Power.Constraint.e |
| 9bde0 | 6c 65 6d 65 6e 74 20 77 68 65 6e 20 61 70 70 6c 69 63 61 62 6c 65 20 61 6e 64 20 43 6f 75 6e 74 | lement.when.applicable.and.Count |
| 9be00 | 72 79 20 65 6c 65 6d 65 6e 74 20 69 73 20 61 64 64 65 64 2e 20 50 6f 77 65 72 20 43 6f 6e 73 74 | ry.element.is.added..Power.Const |
| 9be20 | 72 61 69 6e 74 20 65 6c 65 6d 65 6e 74 20 69 73 20 72 65 71 75 69 72 65 64 20 62 79 20 54 72 61 | raint.element.is.required.by.Tra |
| 9be40 | 6e 73 6d 69 74 20 50 6f 77 65 72 20 43 6f 6e 74 72 6f 6c 2e 00 54 68 69 73 20 6f 70 74 69 6f 6e | nsmit.Power.Control..This.option |
| 9be60 | 20 61 64 64 73 20 74 68 65 20 50 6f 77 65 72 20 43 6f 6e 73 74 72 61 69 6e 74 20 69 6e 66 6f 72 | .adds.the.Power.Constraint.infor |
| 9be80 | 6d 61 74 69 6f 6e 20 65 6c 65 6d 65 6e 74 20 77 68 65 6e 20 61 70 70 6c 69 63 61 62 6c 65 20 61 | mation.element.when.applicable.a |
| 9bea0 | 6e 64 20 74 68 65 20 43 6f 75 6e 74 72 79 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 65 6c 65 6d 65 | nd.the.Country.information.eleme |
| 9bec0 | 6e 74 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 2e 20 54 68 65 20 50 6f 77 65 72 20 43 6f 6e 73 | nt.is.configured..The.Power.Cons |
| 9bee0 | 74 72 61 69 6e 74 20 65 6c 65 6d 65 6e 74 20 69 73 20 72 65 71 75 69 72 65 64 20 62 79 20 54 72 | traint.element.is.required.by.Tr |
| 9bf00 | 61 6e 73 6d 69 74 20 50 6f 77 65 72 20 43 6f 6e 74 72 6f 6c 2e 00 54 68 69 73 20 6f 70 74 69 6f | ansmit.Power.Control..This.optio |
| 9bf20 | 6e 20 61 6c 6c 6f 77 20 74 6f 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 38 30 32 2e 33 61 64 | n.allow.to.specifies.the.802.3ad |
| 9bf40 | 20 73 79 73 74 65 6d 20 4d 41 43 20 61 64 64 72 65 73 73 2e 59 6f 75 20 63 61 6e 20 73 65 74 20 | .system.MAC.address.You.can.set. |
| 9bf60 | 61 20 72 61 6e 64 6f 6d 20 6d 61 63 2d 61 64 64 72 65 73 73 20 74 68 61 74 20 63 61 6e 20 62 65 | a.random.mac-address.that.can.be |
| 9bf80 | 20 75 73 65 64 20 66 6f 72 20 74 68 65 73 65 20 4c 41 43 50 44 55 20 65 78 63 68 61 6e 67 65 73 | .used.for.these.LACPDU.exchanges |
| 9bfa0 | 2e 00 54 68 69 73 20 6f 70 74 69 6f 6e 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 20 6d | ..This.option.can.be.specified.m |
| 9bfc0 | 75 6c 74 69 70 6c 65 20 74 69 6d 65 73 2e 00 54 68 69 73 20 6f 70 74 69 6f 6e 20 63 61 6e 20 62 | ultiple.times..This.option.can.b |
| 9bfe0 | 65 20 73 75 70 70 6c 69 65 64 20 6d 75 6c 74 69 70 6c 65 20 74 69 6d 65 73 2e 00 54 68 69 73 20 | e.supplied.multiple.times..This. |
| 9c000 | 6f 70 74 69 6f 6e 20 69 73 20 6d 61 6e 64 61 74 6f 72 79 20 69 6e 20 41 63 63 65 73 73 2d 50 6f | option.is.mandatory.in.Access-Po |
| 9c020 | 69 6e 74 20 6d 6f 64 65 2e 00 54 68 69 73 20 6f 70 74 69 6f 6e 20 69 73 20 72 65 71 75 69 72 65 | int.mode..This.option.is.require |
| 9c040 | 64 20 77 68 65 6e 20 72 75 6e 6e 69 6e 67 20 61 20 44 4d 56 50 4e 20 73 70 6f 6b 65 2e 00 54 68 | d.when.running.a.DMVPN.spoke..Th |
| 9c060 | 69 73 20 6f 70 74 69 6f 6e 20 69 73 20 75 73 65 64 20 62 79 20 73 6f 6d 65 20 44 48 43 50 20 63 | is.option.is.used.by.some.DHCP.c |
| 9c080 | 6c 69 65 6e 74 73 20 61 73 20 61 20 77 61 79 20 66 6f 72 20 75 73 65 72 73 20 74 6f 20 73 70 65 | lients.as.a.way.for.users.to.spe |
| 9c0a0 | 63 69 66 79 20 69 64 65 6e 74 69 66 79 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 6f 20 | cify.identifying.information.to. |
| 9c0c0 | 74 68 65 20 63 6c 69 65 6e 74 2e 20 54 68 69 73 20 63 61 6e 20 62 65 20 75 73 65 64 20 69 6e 20 | the.client..This.can.be.used.in. |
| 9c0e0 | 61 20 73 69 6d 69 6c 61 72 20 77 61 79 20 74 6f 20 74 68 65 20 76 65 6e 64 6f 72 2d 63 6c 61 73 | a.similar.way.to.the.vendor-clas |
| 9c100 | 73 2d 69 64 65 6e 74 69 66 69 65 72 20 6f 70 74 69 6f 6e 2c 20 62 75 74 20 74 68 65 20 76 61 6c | s-identifier.option,.but.the.val |
| 9c120 | 75 65 20 6f 66 20 74 68 65 20 6f 70 74 69 6f 6e 20 69 73 20 73 70 65 63 69 66 69 65 64 20 62 79 | ue.of.the.option.is.specified.by |
| 9c140 | 20 74 68 65 20 75 73 65 72 2c 20 6e 6f 74 20 74 68 65 20 76 65 6e 64 6f 72 2e 00 54 68 69 73 20 | .the.user,.not.the.vendor..This. |
| 9c160 | 6f 70 74 69 6f 6e 20 69 73 20 75 73 65 64 20 62 79 20 73 6f 6d 65 20 44 48 43 50 20 63 6c 69 65 | option.is.used.by.some.DHCP.clie |
| 9c180 | 6e 74 73 20 74 6f 20 69 64 65 6e 74 69 66 79 20 74 68 65 20 76 65 6e 64 6f 72 20 74 79 70 65 20 | nts.to.identify.the.vendor.type. |
| 9c1a0 | 61 6e 64 20 70 6f 73 73 69 62 6c 79 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f | and.possibly.the.configuration.o |
| 9c1c0 | 66 20 61 20 44 48 43 50 20 63 6c 69 65 6e 74 2e 20 54 68 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e | f.a.DHCP.client..The.information |
| 9c1e0 | 20 69 73 20 61 20 73 74 72 69 6e 67 20 6f 66 20 62 79 74 65 73 20 77 68 6f 73 65 20 63 6f 6e 74 | .is.a.string.of.bytes.whose.cont |
| 9c200 | 65 6e 74 73 20 61 72 65 20 73 70 65 63 69 66 69 63 20 74 6f 20 74 68 65 20 76 65 6e 64 6f 72 20 | ents.are.specific.to.the.vendor. |
| 9c220 | 61 6e 64 20 61 72 65 20 6e 6f 74 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 61 20 73 74 61 6e 64 | and.are.not.specified.in.a.stand |
| 9c240 | 61 72 64 2e 00 54 68 69 73 20 6f 70 74 69 6f 6e 20 6d 75 73 74 20 62 65 20 75 73 65 64 20 77 69 | ard..This.option.must.be.used.wi |
| 9c260 | 74 68 20 60 60 74 69 6d 65 6f 75 74 60 60 20 6f 70 74 69 6f 6e 2e 00 54 68 69 73 20 6f 70 74 69 | th.``timeout``.option..This.opti |
| 9c280 | 6f 6e 20 6f 6e 6c 79 20 61 66 66 65 63 74 73 20 38 30 32 2e 33 61 64 20 6d 6f 64 65 2e 00 54 68 | on.only.affects.802.3ad.mode..Th |
| 9c2a0 | 69 73 20 6f 70 74 69 6f 6e 20 72 65 71 75 69 72 65 73 20 3a 61 62 62 72 3a 60 4d 46 50 20 28 4d | is.option.requires.:abbr:`MFP.(M |
| 9c2c0 | 61 6e 61 67 65 6d 65 6e 74 20 46 72 61 6d 65 20 50 72 6f 74 65 63 74 69 6f 6e 29 60 20 74 6f 20 | anagement.Frame.Protection)`.to. |
| 9c2e0 | 62 65 20 65 6e 61 62 6c 65 64 2e 00 54 68 69 73 20 6f 70 74 69 6f 6e 20 73 70 65 63 69 66 69 65 | be.enabled..This.option.specifie |
| 9c300 | 73 20 61 20 64 65 6c 61 79 20 69 6e 20 73 65 63 6f 6e 64 73 20 62 65 66 6f 72 65 20 76 72 72 70 | s.a.delay.in.seconds.before.vrrp |
| 9c320 | 20 69 6e 73 74 61 6e 63 65 73 20 73 74 61 72 74 20 75 70 20 61 66 74 65 72 20 6b 65 65 70 61 6c | .instances.start.up.after.keepal |
| 9c340 | 69 76 65 64 20 73 74 61 72 74 73 2e 00 54 68 69 73 20 6f 70 74 69 6f 6e 20 77 61 73 20 63 61 6c | ived.starts..This.option.was.cal |
| 9c360 | 6c 65 64 20 2d 2d 6e 63 70 2d 63 69 70 68 65 72 73 20 69 6e 20 4f 70 65 6e 56 50 4e 20 32 2e 34 | led.--ncp-ciphers.in.OpenVPN.2.4 |
| 9c380 | 20 62 75 74 20 68 61 73 20 62 65 65 6e 20 72 65 6e 61 6d 65 64 20 74 6f 20 2d 2d 64 61 74 61 2d | .but.has.been.renamed.to.--data- |
| 9c3a0 | 63 69 70 68 65 72 73 20 69 6e 20 4f 70 65 6e 56 50 4e 20 32 2e 35 20 74 6f 20 6d 6f 72 65 20 61 | ciphers.in.OpenVPN.2.5.to.more.a |
| 9c3c0 | 63 63 75 72 61 74 65 6c 79 20 72 65 66 6c 65 63 74 20 69 74 73 20 6d 65 61 6e 69 6e 67 2e 20 54 | ccurately.reflect.its.meaning..T |
| 9c3e0 | 68 65 20 66 69 72 73 74 20 63 69 70 68 65 72 20 69 6e 20 74 68 61 74 20 6c 69 73 74 20 74 68 61 | he.first.cipher.in.that.list.tha |
| 9c400 | 74 20 69 73 20 61 6c 73 6f 20 69 6e 20 74 68 65 20 63 6c 69 65 6e 74 27 73 20 2d 2d 64 61 74 61 | t.is.also.in.the.client's.--data |
| 9c420 | 2d 63 69 70 68 65 72 73 20 6c 69 73 74 20 69 73 20 63 68 6f 73 65 6e 2e 20 49 66 20 6e 6f 20 63 | -ciphers.list.is.chosen..If.no.c |
| 9c440 | 6f 6d 6d 6f 6e 20 63 69 70 68 65 72 20 69 73 20 66 6f 75 6e 64 20 74 68 65 20 63 6c 69 65 6e 74 | ommon.cipher.is.found.the.client |
| 9c460 | 20 69 73 20 72 65 6a 65 63 74 65 64 2e 00 54 68 69 73 20 6f 70 74 69 6f 6e 73 20 64 65 66 61 75 | .is.rejected..This.options.defau |
| 9c480 | 6c 74 73 20 74 6f 20 32 30 34 38 00 54 68 69 73 20 70 61 72 61 6d 65 74 65 72 20 61 6c 6c 6f 77 | lts.to.2048.This.parameter.allow |
| 9c4a0 | 73 20 74 6f 20 22 73 68 6f 72 74 63 75 74 22 20 72 6f 75 74 65 73 20 28 6e 6f 6e 2d 62 61 63 6b | s.to."shortcut".routes.(non-back |
| 9c4c0 | 62 6f 6e 65 29 20 66 6f 72 20 69 6e 74 65 72 2d 61 72 65 61 20 72 6f 75 74 65 73 2e 20 54 68 65 | bone).for.inter-area.routes..The |
| 9c4e0 | 72 65 20 61 72 65 20 74 68 72 65 65 20 6d 6f 64 65 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 | re.are.three.modes.available.for |
| 9c500 | 20 72 6f 75 74 65 73 20 73 68 6f 72 74 63 75 74 74 69 6e 67 3a 00 54 68 69 73 20 70 6f 6c 69 63 | .routes.shortcutting:.This.polic |
| 9c520 | 79 20 69 73 20 69 6e 74 65 6e 64 65 64 20 74 6f 20 70 72 6f 76 69 64 65 20 61 20 6d 6f 72 65 20 | y.is.intended.to.provide.a.more. |
| 9c540 | 62 61 6c 61 6e 63 65 64 20 64 69 73 74 72 69 62 75 74 69 6f 6e 20 6f 66 20 74 72 61 66 66 69 63 | balanced.distribution.of.traffic |
| 9c560 | 20 74 68 61 6e 20 6c 61 79 65 72 32 20 61 6c 6f 6e 65 2c 20 65 73 70 65 63 69 61 6c 6c 79 20 69 | .than.layer2.alone,.especially.i |
| 9c580 | 6e 20 65 6e 76 69 72 6f 6e 6d 65 6e 74 73 20 77 68 65 72 65 20 61 20 6c 61 79 65 72 33 20 67 61 | n.environments.where.a.layer3.ga |
| 9c5a0 | 74 65 77 61 79 20 64 65 76 69 63 65 20 69 73 20 72 65 71 75 69 72 65 64 20 74 6f 20 72 65 61 63 | teway.device.is.required.to.reac |
| 9c5c0 | 68 20 6d 6f 73 74 20 64 65 73 74 69 6e 61 74 69 6f 6e 73 2e 00 54 68 69 73 20 70 72 6f 6d 70 74 | h.most.destinations..This.prompt |
| 9c5e0 | 65 64 20 73 6f 6d 65 20 49 53 50 73 20 74 6f 20 64 65 76 65 6c 6f 70 20 61 20 70 6f 6c 69 63 79 | ed.some.ISPs.to.develop.a.policy |
| 9c600 | 20 77 69 74 68 69 6e 20 74 68 65 20 3a 61 62 62 72 3a 60 41 52 49 4e 20 28 41 6d 65 72 69 63 61 | .within.the.:abbr:`ARIN.(America |
| 9c620 | 6e 20 52 65 67 69 73 74 72 79 20 66 6f 72 20 49 6e 74 65 72 6e 65 74 20 4e 75 6d 62 65 72 73 29 | n.Registry.for.Internet.Numbers) |
| 9c640 | 60 20 74 6f 20 61 6c 6c 6f 63 61 74 65 20 6e 65 77 20 70 72 69 76 61 74 65 20 61 64 64 72 65 73 | `.to.allocate.new.private.addres |
| 9c660 | 73 20 73 70 61 63 65 20 66 6f 72 20 43 47 4e 73 2c 20 62 75 74 20 41 52 49 4e 20 64 65 66 65 72 | s.space.for.CGNs,.but.ARIN.defer |
| 9c680 | 72 65 64 20 74 6f 20 74 68 65 20 49 45 54 46 20 62 65 66 6f 72 65 20 69 6d 70 6c 65 6d 65 6e 74 | red.to.the.IETF.before.implement |
| 9c6a0 | 69 6e 67 20 74 68 65 20 70 6f 6c 69 63 79 20 69 6e 64 69 63 61 74 69 6e 67 20 74 68 61 74 20 74 | ing.the.policy.indicating.that.t |
| 9c6c0 | 68 65 20 6d 61 74 74 65 72 20 77 61 73 20 6e 6f 74 20 61 20 74 79 70 69 63 61 6c 20 61 6c 6c 6f | he.matter.was.not.a.typical.allo |
| 9c6e0 | 63 61 74 69 6f 6e 20 69 73 73 75 65 20 62 75 74 20 61 20 72 65 73 65 72 76 61 74 69 6f 6e 20 6f | cation.issue.but.a.reservation.o |
| 9c700 | 66 20 61 64 64 72 65 73 73 65 73 20 66 6f 72 20 74 65 63 68 6e 69 63 61 6c 20 70 75 72 70 6f 73 | f.addresses.for.technical.purpos |
| 9c720 | 65 73 20 28 70 65 72 20 3a 72 66 63 3a 60 32 38 36 30 60 29 2e 00 54 68 69 73 20 72 65 71 75 69 | es.(per.:rfc:`2860`)..This.requi |
| 9c740 | 72 65 64 20 73 65 74 74 69 6e 67 20 64 65 66 69 6e 65 73 20 74 68 65 20 61 63 74 69 6f 6e 20 6f | red.setting.defines.the.action.o |
| 9c760 | 66 20 74 68 65 20 63 75 72 72 65 6e 74 20 72 75 6c 65 2e 20 49 66 20 61 63 74 69 6f 6e 20 69 73 | f.the.current.rule..If.action.is |
| 9c780 | 20 73 65 74 20 74 6f 20 60 60 6a 75 6d 70 60 60 2c 20 74 68 65 6e 20 60 60 6a 75 6d 70 2d 74 61 | .set.to.``jump``,.then.``jump-ta |
| 9c7a0 | 72 67 65 74 60 60 20 69 73 20 61 6c 73 6f 20 6e 65 65 64 65 64 2e 00 54 68 69 73 20 72 65 71 75 | rget``.is.also.needed..This.requ |
| 9c7c0 | 69 72 65 64 20 73 65 74 74 69 6e 67 20 64 65 66 69 6e 65 73 20 74 68 65 20 61 63 74 69 6f 6e 20 | ired.setting.defines.the.action. |
| 9c7e0 | 6f 66 20 74 68 65 20 63 75 72 72 65 6e 74 20 72 75 6c 65 2e 20 49 66 20 61 63 74 69 6f 6e 20 69 | of.the.current.rule..If.action.i |
| 9c800 | 73 20 73 65 74 20 74 6f 20 6a 75 6d 70 2c 20 74 68 65 6e 20 6a 75 6d 70 2d 74 61 72 67 65 74 20 | s.set.to.jump,.then.jump-target. |
| 9c820 | 69 73 20 61 6c 73 6f 20 6e 65 65 64 65 64 2e 00 54 68 69 73 20 72 65 71 75 69 72 65 64 20 73 65 | is.also.needed..This.required.se |
| 9c840 | 74 74 69 6e 67 20 64 65 66 69 6e 65 73 20 74 68 65 20 61 63 74 69 6f 6e 20 6f 66 20 74 68 65 20 | tting.defines.the.action.of.the. |
| 9c860 | 63 75 72 72 65 6e 74 20 72 75 6c 65 2e 20 49 66 20 74 68 65 20 61 63 74 69 6f 6e 20 69 73 20 73 | current.rule..If.the.action.is.s |
| 9c880 | 65 74 20 74 6f 20 6a 75 6d 70 2c 20 74 68 65 6e 20 61 20 6a 75 6d 70 2d 74 61 72 67 65 74 20 69 | et.to.jump,.then.a.jump-target.i |
| 9c8a0 | 73 20 61 6c 73 6f 20 6e 65 65 64 65 64 2e 00 54 68 69 73 20 72 65 71 75 69 72 65 73 20 74 77 6f | s.also.needed..This.requires.two |
| 9c8c0 | 20 66 69 6c 65 73 2c 20 6f 6e 65 20 74 6f 20 63 72 65 61 74 65 20 74 68 65 20 64 65 76 69 63 65 | .files,.one.to.create.the.device |
| 9c8e0 | 20 28 58 58 58 2e 6e 65 74 64 65 76 29 20 61 6e 64 20 6f 6e 65 20 74 6f 20 63 6f 6e 66 69 67 75 | .(XXX.netdev).and.one.to.configu |
| 9c900 | 72 65 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 6f 6e 20 74 68 65 20 64 65 76 69 63 65 20 28 58 58 | re.the.network.on.the.device.(XX |
| 9c920 | 58 2e 6e 65 74 77 6f 72 6b 29 00 54 68 69 73 20 72 65 73 75 6c 74 73 20 69 6e 20 74 68 65 20 61 | X.network).This.results.in.the.a |
| 9c940 | 63 74 69 76 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 00 54 68 69 73 20 73 61 79 73 20 74 | ctive.configuration:.This.says.t |
| 9c960 | 68 61 74 20 74 68 69 73 20 64 65 76 69 63 65 20 69 73 20 74 68 65 20 6f 6e 6c 79 20 44 48 43 50 | hat.this.device.is.the.only.DHCP |
| 9c980 | 20 73 65 72 76 65 72 20 66 6f 72 20 74 68 69 73 20 6e 65 74 77 6f 72 6b 2e 20 49 66 20 6f 74 68 | .server.for.this.network..If.oth |
| 9c9a0 | 65 72 20 64 65 76 69 63 65 73 20 61 72 65 20 74 72 79 69 6e 67 20 74 6f 20 6f 66 66 65 72 20 44 | er.devices.are.trying.to.offer.D |
| 9c9c0 | 48 43 50 20 6c 65 61 73 65 73 2c 20 74 68 69 73 20 6d 61 63 68 69 6e 65 20 77 69 6c 6c 20 73 65 | HCP.leases,.this.machine.will.se |
| 9c9e0 | 6e 64 20 27 44 48 43 50 4e 41 4b 27 20 74 6f 20 61 6e 79 20 64 65 76 69 63 65 20 74 72 79 69 6e | nd.'DHCPNAK'.to.any.device.tryin |
| 9ca00 | 67 20 74 6f 20 72 65 71 75 65 73 74 20 61 6e 20 49 50 20 61 64 64 72 65 73 73 20 74 68 61 74 20 | g.to.request.an.IP.address.that. |
| 9ca20 | 69 73 20 6e 6f 74 20 76 61 6c 69 64 20 66 6f 72 20 74 68 69 73 20 6e 65 74 77 6f 72 6b 2e 00 54 | is.not.valid.for.this.network..T |
| 9ca40 | 68 69 73 20 73 65 63 74 69 6f 6e 20 64 65 73 63 72 69 62 65 73 20 63 6f 6e 66 69 67 75 72 69 6e | his.section.describes.configurin |
| 9ca60 | 67 20 44 4e 53 20 6f 6e 20 74 68 65 20 73 79 73 74 65 6d 2c 20 6e 61 6d 65 6c 79 3a 00 54 68 69 | g.DNS.on.the.system,.namely:.Thi |
| 9ca80 | 73 20 73 65 63 74 69 6f 6e 20 64 65 73 63 72 69 62 65 73 20 74 68 65 20 73 79 73 74 65 6d 27 73 | s.section.describes.the.system's |
| 9caa0 | 20 68 6f 73 74 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 6e 64 20 68 6f 77 20 74 6f 20 63 6f 6e | .host.information.and.how.to.con |
| 9cac0 | 66 69 67 75 72 65 20 74 68 65 6d 2c 20 69 74 20 63 6f 76 65 72 73 20 74 68 65 20 66 6f 6c 6c 6f | figure.them,.it.covers.the.follo |
| 9cae0 | 77 69 6e 67 20 74 6f 70 69 63 73 3a 00 54 68 69 73 20 73 65 63 74 69 6f 6e 20 6e 65 65 64 73 20 | wing.topics:.This.section.needs. |
| 9cb00 | 69 6d 70 72 6f 76 65 6d 65 6e 74 73 2c 20 65 78 61 6d 70 6c 65 73 20 61 6e 64 20 65 78 70 6c 61 | improvements,.examples.and.expla |
| 9cb20 | 6e 61 74 69 6f 6e 73 2e 00 54 68 69 73 20 73 65 74 20 74 68 65 20 64 65 66 61 75 6c 74 20 61 63 | nations..This.set.the.default.ac |
| 9cb40 | 74 69 6f 6e 20 6f 66 20 74 68 65 20 72 75 6c 65 2d 73 65 74 20 69 66 20 6e 6f 20 72 75 6c 65 20 | tion.of.the.rule-set.if.no.rule. |
| 9cb60 | 6d 61 74 63 68 65 64 20 61 20 70 61 63 6b 65 74 20 63 72 69 74 65 72 69 61 2e 20 49 66 20 64 65 | matched.a.packet.criteria..If.de |
| 9cb80 | 66 61 63 75 6c 74 2d 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 60 60 6a 75 6d 70 60 60 | facult-action.is.set.to.``jump`` |
| 9cba0 | 2c 20 74 68 65 6e 20 60 60 64 65 66 61 75 6c 74 2d 6a 75 6d 70 2d 74 61 72 67 65 74 60 60 20 69 | ,.then.``default-jump-target``.i |
| 9cbc0 | 73 20 61 6c 73 6f 20 6e 65 65 64 65 64 2e 00 54 68 69 73 20 73 65 74 20 74 68 65 20 64 65 66 61 | s.also.needed..This.set.the.defa |
| 9cbe0 | 75 6c 74 20 61 63 74 69 6f 6e 20 6f 66 20 74 68 65 20 72 75 6c 65 2d 73 65 74 20 69 66 20 6e 6f | ult.action.of.the.rule-set.if.no |
| 9cc00 | 20 72 75 6c 65 20 6d 61 74 63 68 65 64 20 61 20 70 61 63 6b 65 74 20 63 72 69 74 65 72 69 61 2e | .rule.matched.a.packet.criteria. |
| 9cc20 | 20 49 66 20 64 65 66 61 63 75 6c 74 2d 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 60 60 | .If.defacult-action.is.set.to.`` |
| 9cc40 | 6a 75 6d 70 60 60 2c 20 74 68 65 6e 20 60 60 64 65 66 61 75 6c 74 2d 6a 75 6d 70 2d 74 61 72 67 | jump``,.then.``default-jump-targ |
| 9cc60 | 65 74 60 60 20 69 73 20 61 6c 73 6f 20 6e 65 65 64 65 64 2e 20 4e 6f 74 65 20 74 68 61 74 20 66 | et``.is.also.needed..Note.that.f |
| 9cc80 | 6f 72 20 62 61 73 65 20 63 68 61 69 6e 73 2c 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 63 | or.base.chains,.default.action.c |
| 9cca0 | 61 6e 20 6f 6e 6c 79 20 62 65 20 73 65 74 20 74 6f 20 60 60 61 63 63 65 70 74 60 60 20 6f 72 20 | an.only.be.set.to.``accept``.or. |
| 9ccc0 | 60 60 64 72 6f 70 60 60 2c 20 77 68 69 6c 65 20 6f 6e 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 2c | ``drop``,.while.on.custom.chain, |
| 9cce0 | 20 6d 6f 72 65 20 61 63 74 69 6f 6e 73 20 61 72 65 20 61 76 61 69 6c 61 62 6c 65 2e 00 54 68 69 | .more.actions.are.available..Thi |
| 9cd00 | 73 20 73 65 74 20 74 68 65 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 6f 66 20 74 68 65 20 | s.set.the.default.action.of.the. |
| 9cd20 | 72 75 6c 65 2d 73 65 74 20 69 66 20 6e 6f 20 72 75 6c 65 20 6d 61 74 63 68 65 64 20 61 20 70 61 | rule-set.if.no.rule.matched.a.pa |
| 9cd40 | 63 6b 65 74 20 63 72 69 74 65 72 69 61 2e 20 49 66 20 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e | cket.criteria..If.default-action |
| 9cd60 | 20 69 73 20 73 65 74 20 74 6f 20 60 60 6a 75 6d 70 60 60 2c 20 74 68 65 6e 20 60 60 64 65 66 61 | .is.set.to.``jump``,.then.``defa |
| 9cd80 | 75 6c 74 2d 6a 75 6d 70 2d 74 61 72 67 65 74 60 60 20 69 73 20 61 6c 73 6f 20 6e 65 65 64 65 64 | ult-jump-target``.is.also.needed |
| 9cda0 | 2e 20 4e 6f 74 65 20 74 68 61 74 20 66 6f 72 20 62 61 73 65 20 63 68 61 69 6e 73 2c 20 64 65 66 | ..Note.that.for.base.chains,.def |
| 9cdc0 | 61 75 6c 74 20 61 63 74 69 6f 6e 20 63 61 6e 20 6f 6e 6c 79 20 62 65 20 73 65 74 20 74 6f 20 60 | ault.action.can.only.be.set.to.` |
| 9cde0 | 60 61 63 63 65 70 74 60 60 20 6f 72 20 60 60 64 72 6f 70 60 60 2c 20 77 68 69 6c 65 20 6f 6e 20 | `accept``.or.``drop``,.while.on. |
| 9ce00 | 63 75 73 74 6f 6d 20 63 68 61 69 6e 2c 20 6d 6f 72 65 20 61 63 74 69 6f 6e 73 20 61 72 65 20 61 | custom.chain,.more.actions.are.a |
| 9ce20 | 76 61 69 6c 61 62 6c 65 2e 00 54 68 69 73 20 73 65 74 73 20 74 68 65 20 61 63 63 65 70 74 65 64 | vailable..This.sets.the.accepted |
| 9ce40 | 20 63 69 70 68 65 72 73 20 74 6f 20 75 73 65 20 77 68 65 6e 20 76 65 72 73 69 6f 6e 20 3d 3e 20 | .ciphers.to.use.when.version.=>. |
| 9ce60 | 32 2e 34 2e 30 20 61 6e 64 20 4e 43 50 20 69 73 20 65 6e 61 62 6c 65 64 20 28 77 68 69 63 68 20 | 2.4.0.and.NCP.is.enabled.(which. |
| 9ce80 | 69 73 20 74 68 65 20 64 65 66 61 75 6c 74 29 2e 20 44 65 66 61 75 6c 74 20 4e 43 50 20 63 69 70 | is.the.default)..Default.NCP.cip |
| 9cea0 | 68 65 72 20 66 6f 72 20 76 65 72 73 69 6f 6e 73 20 3e 3d 20 32 2e 34 2e 30 20 69 73 20 61 65 73 | her.for.versions.>=.2.4.0.is.aes |
| 9cec0 | 32 35 36 67 63 6d 2e 20 54 68 65 20 66 69 72 73 74 20 63 69 70 68 65 72 20 69 6e 20 74 68 69 73 | 256gcm..The.first.cipher.in.this |
| 9cee0 | 20 6c 69 73 74 20 69 73 20 77 68 61 74 20 73 65 72 76 65 72 20 70 75 73 68 65 73 20 74 6f 20 63 | .list.is.what.server.pushes.to.c |
| 9cf00 | 6c 69 65 6e 74 73 2e 00 54 68 69 73 20 73 65 74 73 20 74 68 65 20 63 69 70 68 65 72 20 77 68 65 | lients..This.sets.the.cipher.whe |
| 9cf20 | 6e 20 4e 43 50 20 28 4e 65 67 6f 74 69 61 62 6c 65 20 43 72 79 70 74 6f 20 50 61 72 61 6d 65 74 | n.NCP.(Negotiable.Crypto.Paramet |
| 9cf40 | 65 72 73 29 20 69 73 20 64 69 73 61 62 6c 65 64 20 6f 72 20 4f 70 65 6e 56 50 4e 20 76 65 72 73 | ers).is.disabled.or.OpenVPN.vers |
| 9cf60 | 69 6f 6e 20 3c 20 32 2e 34 2e 30 2e 00 54 68 69 73 20 73 65 74 73 20 74 68 65 20 63 69 70 68 65 | ion.<.2.4.0..This.sets.the.ciphe |
| 9cf80 | 72 20 77 68 65 6e 20 4e 43 50 20 28 4e 65 67 6f 74 69 61 62 6c 65 20 43 72 79 70 74 6f 20 50 61 | r.when.NCP.(Negotiable.Crypto.Pa |
| 9cfa0 | 72 61 6d 65 74 65 72 73 29 20 69 73 20 64 69 73 61 62 6c 65 64 20 6f 72 20 4f 70 65 6e 56 50 4e | rameters).is.disabled.or.OpenVPN |
| 9cfc0 | 20 76 65 72 73 69 6f 6e 20 3c 20 32 2e 34 2e 30 2e 20 54 68 69 73 20 6f 70 74 69 6f 6e 20 73 68 | .version.<.2.4.0..This.option.sh |
| 9cfe0 | 6f 75 6c 64 20 6e 6f 74 20 62 65 20 75 73 65 64 20 61 6e 79 20 6c 6f 6e 67 65 72 20 69 6e 20 54 | ould.not.be.used.any.longer.in.T |
| 9d000 | 4c 53 20 6d 6f 64 65 20 61 6e 64 20 73 74 69 6c 6c 20 65 78 69 73 74 73 20 66 6f 72 20 63 6f 6d | LS.mode.and.still.exists.for.com |
| 9d020 | 70 61 74 69 62 69 6c 69 74 79 20 77 69 74 68 20 6f 6c 64 20 63 6f 6e 66 69 67 75 72 61 74 69 6f | patibility.with.old.configuratio |
| 9d040 | 6e 73 2e 00 54 68 69 73 20 73 65 74 73 20 74 68 65 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e | ns..This.sets.the.default.action |
| 9d060 | 20 6f 66 20 74 68 65 20 72 75 6c 65 2d 73 65 74 20 69 66 20 61 20 70 61 63 6b 65 74 20 64 6f 65 | .of.the.rule-set.if.a.packet.doe |
| 9d080 | 73 20 6e 6f 74 20 6d 61 74 63 68 20 61 6e 79 20 6f 66 20 74 68 65 20 72 75 6c 65 73 20 69 6e 20 | s.not.match.any.of.the.rules.in. |
| 9d0a0 | 74 68 61 74 20 63 68 61 69 6e 2e 20 49 66 20 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 20 69 73 | that.chain..If.default-action.is |
| 9d0c0 | 20 73 65 74 20 74 6f 20 60 60 6a 75 6d 70 60 60 2c 20 74 68 65 6e 20 60 60 64 65 66 61 75 6c 74 | .set.to.``jump``,.then.``default |
| 9d0e0 | 2d 6a 75 6d 70 2d 74 61 72 67 65 74 60 60 20 69 73 20 61 6c 73 6f 20 6e 65 65 64 65 64 2e 20 4e | -jump-target``.is.also.needed..N |
| 9d100 | 6f 74 65 20 74 68 61 74 20 66 6f 72 20 62 61 73 65 20 63 68 61 69 6e 73 2c 20 64 65 66 61 75 6c | ote.that.for.base.chains,.defaul |
| 9d120 | 74 20 61 63 74 69 6f 6e 20 63 61 6e 20 6f 6e 6c 79 20 62 65 20 73 65 74 20 74 6f 20 60 60 61 63 | t.action.can.only.be.set.to.``ac |
| 9d140 | 63 65 70 74 60 60 20 6f 72 20 60 60 64 72 6f 70 60 60 2c 20 77 68 69 6c 65 20 6f 6e 20 63 75 73 | cept``.or.``drop``,.while.on.cus |
| 9d160 | 74 6f 6d 20 63 68 61 69 6e 73 20 6d 6f 72 65 20 61 63 74 69 6f 6e 73 20 61 72 65 20 61 76 61 69 | tom.chains.more.actions.are.avai |
| 9d180 | 6c 61 62 6c 65 2e 00 54 68 69 73 20 73 65 74 73 20 74 68 65 20 64 65 66 61 75 6c 74 20 61 63 74 | lable..This.sets.the.default.act |
| 9d1a0 | 69 6f 6e 20 6f 66 20 74 68 65 20 72 75 6c 65 2d 73 65 74 20 69 66 20 61 20 70 61 63 6b 65 74 20 | ion.of.the.rule-set.if.a.packet. |
| 9d1c0 | 64 6f 65 73 20 6e 6f 74 20 6d 61 74 63 68 20 74 68 65 20 63 72 69 74 65 72 69 61 20 6f 66 20 61 | does.not.match.the.criteria.of.a |
| 9d1e0 | 6e 79 20 72 75 6c 65 2e 20 49 66 20 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 20 69 73 20 73 65 | ny.rule..If.default-action.is.se |
| 9d200 | 74 20 74 6f 20 60 60 6a 75 6d 70 60 60 2c 20 74 68 65 6e 20 60 60 64 65 66 61 75 6c 74 2d 6a 75 | t.to.``jump``,.then.``default-ju |
| 9d220 | 6d 70 2d 74 61 72 67 65 74 60 60 20 69 73 20 61 6c 73 6f 20 6e 65 65 64 65 64 2e 20 4e 6f 74 65 | mp-target``.is.also.needed..Note |
| 9d240 | 20 74 68 61 74 20 66 6f 72 20 62 61 73 65 20 63 68 61 69 6e 73 2c 20 74 68 65 20 64 65 66 61 75 | .that.for.base.chains,.the.defau |
| 9d260 | 6c 74 20 61 63 74 69 6f 6e 20 63 61 6e 20 6f 6e 6c 79 20 62 65 20 73 65 74 20 74 6f 20 60 60 61 | lt.action.can.only.be.set.to.``a |
| 9d280 | 63 63 65 70 74 60 60 20 6f 72 20 60 60 64 72 6f 70 60 60 2c 20 77 68 69 6c 65 20 6f 6e 20 63 75 | ccept``.or.``drop``,.while.on.cu |
| 9d2a0 | 73 74 6f 6d 20 63 68 61 69 6e 73 2c 20 6d 6f 72 65 20 61 63 74 69 6f 6e 73 20 61 72 65 20 61 76 | stom.chains,.more.actions.are.av |
| 9d2c0 | 61 69 6c 61 62 6c 65 2e 00 54 68 69 73 20 73 65 74 74 69 6e 67 20 63 6f 6e 66 69 67 75 72 65 73 | ailable..This.setting.configures |
| 9d2e0 | 20 53 70 61 63 69 61 6c 20 53 74 72 65 61 6d 20 61 6e 64 20 4d 6f 64 75 6c 61 74 69 6f 6e 20 43 | .Spacial.Stream.and.Modulation.C |
| 9d300 | 6f 64 69 6e 67 20 53 63 68 65 6d 65 20 73 65 74 74 69 6e 67 73 20 66 6f 72 20 48 45 20 6d 6f 64 | oding.Scheme.settings.for.HE.mod |
| 9d320 | 65 20 28 48 45 2d 4d 43 53 29 2e 20 49 74 20 69 73 20 75 73 75 61 6c 6c 79 20 6e 6f 74 20 6e 65 | e.(HE-MCS)..It.is.usually.not.ne |
| 9d340 | 65 64 65 64 20 74 6f 20 73 65 74 20 74 68 69 73 20 65 78 70 6c 69 63 69 74 6c 79 2c 20 62 75 74 | eded.to.set.this.explicitly,.but |
| 9d360 | 20 69 74 20 6d 69 67 68 74 20 68 65 6c 70 20 77 69 74 68 20 73 6f 6d 65 20 57 69 46 69 20 61 64 | .it.might.help.with.some.WiFi.ad |
| 9d380 | 61 70 74 65 72 73 2e 00 54 68 69 73 20 73 65 74 74 69 6e 67 20 64 65 66 61 75 6c 74 73 20 74 6f | apters..This.setting.defaults.to |
| 9d3a0 | 20 31 35 30 30 20 61 6e 64 20 69 73 20 76 61 6c 69 64 20 62 65 74 77 65 65 6e 20 31 30 20 61 6e | .1500.and.is.valid.between.10.an |
| 9d3c0 | 64 20 36 30 30 30 30 2e 00 54 68 69 73 20 73 65 74 74 69 6e 67 20 65 6e 61 62 6c 65 20 6f 72 20 | d.60000..This.setting.enable.or. |
| 9d3e0 | 64 69 73 61 62 6c 65 20 74 68 65 20 72 65 73 70 6f 6e 73 65 20 6f 66 20 69 63 6d 70 20 62 72 6f | disable.the.response.of.icmp.bro |
| 9d400 | 61 64 63 61 73 74 20 6d 65 73 73 61 67 65 73 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 | adcast.messages..The.following.s |
| 9d420 | 79 73 74 65 6d 20 70 61 72 61 6d 65 74 65 72 20 77 69 6c 6c 20 62 65 20 61 6c 74 65 72 65 64 3a | ystem.parameter.will.be.altered: |
| 9d440 | 00 54 68 69 73 20 73 65 74 74 69 6e 67 20 65 6e 61 62 6c 65 73 20 6f 72 20 64 69 73 61 62 6c 65 | .This.setting.enables.or.disable |
| 9d460 | 73 20 74 68 65 20 72 65 73 70 6f 6e 73 65 20 74 6f 20 69 63 6d 70 20 62 72 6f 61 64 63 61 73 74 | s.the.response.to.icmp.broadcast |
| 9d480 | 20 6d 65 73 73 61 67 65 73 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 79 73 74 65 6d 20 | .messages..The.following.system. |
| 9d4a0 | 70 61 72 61 6d 65 74 65 72 20 77 69 6c 6c 20 62 65 20 61 6c 74 65 72 65 64 3a 00 54 68 69 73 20 | parameter.will.be.altered:.This. |
| 9d4c0 | 73 65 74 74 69 6e 67 20 68 61 6e 64 6c 65 20 69 66 20 56 79 4f 53 20 61 63 63 65 70 74 20 70 61 | setting.handle.if.VyOS.accept.pa |
| 9d4e0 | 63 6b 65 74 73 20 77 69 74 68 20 61 20 73 6f 75 72 63 65 20 72 6f 75 74 65 20 6f 70 74 69 6f 6e | ckets.with.a.source.route.option |
| 9d500 | 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 79 73 74 65 6d 20 70 61 72 61 6d 65 74 65 72 | ..The.following.system.parameter |
| 9d520 | 20 77 69 6c 6c 20 62 65 20 61 6c 74 65 72 65 64 3a 00 54 68 69 73 20 73 65 74 74 69 6e 67 20 68 | .will.be.altered:.This.setting.h |
| 9d540 | 61 6e 64 6c 65 73 20 69 66 20 56 79 4f 53 20 61 63 63 65 70 74 73 20 70 61 63 6b 65 74 73 20 77 | andles.if.VyOS.accepts.packets.w |
| 9d560 | 69 74 68 20 61 20 73 6f 75 72 63 65 20 72 6f 75 74 65 20 6f 70 74 69 6f 6e 2e 20 54 68 65 20 66 | ith.a.source.route.option..The.f |
| 9d580 | 6f 6c 6c 6f 77 69 6e 67 20 73 79 73 74 65 6d 20 70 61 72 61 6d 65 74 65 72 73 20 77 69 6c 6c 20 | ollowing.system.parameters.will. |
| 9d5a0 | 62 65 20 61 6c 74 65 72 65 64 3a 00 54 68 69 73 20 73 65 74 74 69 6e 67 2c 20 77 68 69 63 68 20 | be.altered:.This.setting,.which. |
| 9d5c0 | 64 65 66 61 75 6c 74 73 20 74 6f 20 33 36 30 30 20 73 65 63 6f 6e 64 73 2c 20 70 75 74 73 20 61 | defaults.to.3600.seconds,.puts.a |
| 9d5e0 | 20 6d 61 78 69 6d 75 6d 20 6f 6e 20 74 68 65 20 61 6d 6f 75 6e 74 20 6f 66 20 74 69 6d 65 20 6e | .maximum.on.the.amount.of.time.n |
| 9d600 | 65 67 61 74 69 76 65 20 65 6e 74 72 69 65 73 20 61 72 65 20 63 61 63 68 65 64 2e 00 54 68 69 73 | egative.entries.are.cached..This |
| 9d620 | 20 73 65 74 75 70 20 77 69 6c 6c 20 6d 61 6b 65 20 74 68 65 20 56 52 52 50 20 70 72 6f 63 65 73 | .setup.will.make.the.VRRP.proces |
| 9d640 | 73 20 65 78 65 63 75 74 65 20 74 68 65 20 60 60 2f 63 6f 6e 66 69 67 2f 73 63 72 69 70 74 73 2f | s.execute.the.``/config/scripts/ |
| 9d660 | 76 72 72 70 2d 63 68 65 63 6b 2e 73 68 20 73 63 72 69 70 74 60 60 20 65 76 65 72 79 20 36 30 20 | vrrp-check.sh.script``.every.60. |
| 9d680 | 73 65 63 6f 6e 64 73 2c 20 61 6e 64 20 74 72 61 6e 73 69 74 69 6f 6e 20 74 68 65 20 67 72 6f 75 | seconds,.and.transition.the.grou |
| 9d6a0 | 70 20 74 6f 20 74 68 65 20 66 61 75 6c 74 20 73 74 61 74 65 20 69 66 20 69 74 20 66 61 69 6c 73 | p.to.the.fault.state.if.it.fails |
| 9d6c0 | 20 28 69 2e 65 2e 20 65 78 69 74 73 20 77 69 74 68 20 6e 6f 6e 2d 7a 65 72 6f 20 73 74 61 74 75 | .(i.e..exits.with.non-zero.statu |
| 9d6e0 | 73 29 20 74 68 72 65 65 20 74 69 6d 65 73 3a 00 54 68 69 73 20 73 70 65 63 69 66 69 65 73 20 74 | s).three.times:.This.specifies.t |
| 9d700 | 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 43 50 55 20 72 65 73 6f 75 72 63 65 73 20 74 68 65 20 63 | he.number.of.CPU.resources.the.c |
| 9d720 | 6f 6e 74 61 69 6e 65 72 20 63 61 6e 20 75 73 65 2e 00 54 68 69 73 20 73 74 61 67 65 20 69 6e 63 | ontainer.can.use..This.stage.inc |
| 9d740 | 6c 75 64 65 73 3a 00 54 68 69 73 20 73 74 61 74 65 6d 65 6e 74 20 73 70 65 63 69 66 69 65 73 20 | ludes:.This.statement.specifies. |
| 9d760 | 64 68 63 70 36 63 20 74 6f 20 6f 6e 6c 79 20 65 78 63 68 61 6e 67 65 20 69 6e 66 6f 72 6d 61 74 | dhcp6c.to.only.exchange.informat |
| 9d780 | 69 6f 6e 61 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 70 61 72 61 6d 65 74 65 72 73 20 77 | ional.configuration.parameters.w |
| 9d7a0 | 69 74 68 20 73 65 72 76 65 72 73 2e 20 41 20 6c 69 73 74 20 6f 66 20 44 4e 53 20 73 65 72 76 65 | ith.servers..A.list.of.DNS.serve |
| 9d7c0 | 72 20 61 64 64 72 65 73 73 65 73 20 69 73 20 61 6e 20 65 78 61 6d 70 6c 65 20 6f 66 20 73 75 63 | r.addresses.is.an.example.of.suc |
| 9d7e0 | 68 20 70 61 72 61 6d 65 74 65 72 73 2e 20 54 68 69 73 20 73 74 61 74 65 6d 65 6e 74 20 69 73 20 | h.parameters..This.statement.is. |
| 9d800 | 75 73 65 66 75 6c 20 77 68 65 6e 20 74 68 65 20 63 6c 69 65 6e 74 20 64 6f 65 73 20 6e 6f 74 20 | useful.when.the.client.does.not. |
| 9d820 | 6e 65 65 64 20 73 74 61 74 65 66 75 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 70 61 72 61 | need.stateful.configuration.para |
| 9d840 | 6d 65 74 65 72 73 20 73 75 63 68 20 61 73 20 49 50 76 36 20 61 64 64 72 65 73 73 65 73 20 6f 72 | meters.such.as.IPv6.addresses.or |
| 9d860 | 20 70 72 65 66 69 78 65 73 2e 00 54 68 69 73 20 73 75 70 70 6f 72 74 20 6d 61 79 20 62 65 20 65 | .prefixes..This.support.may.be.e |
| 9d880 | 6e 61 62 6c 65 64 20 61 64 6d 69 6e 69 73 74 72 61 74 69 76 65 6c 79 20 28 61 6e 64 20 69 6e 64 | nabled.administratively.(and.ind |
| 9d8a0 | 65 66 69 6e 69 74 65 6c 79 29 20 77 69 74 68 20 74 68 65 20 3a 63 66 67 63 6d 64 3a 60 61 64 6d | efinitely).with.the.:cfgcmd:`adm |
| 9d8c0 | 69 6e 69 73 74 72 61 74 69 76 65 60 20 63 6f 6d 6d 61 6e 64 2e 20 49 74 20 6d 61 79 20 61 6c 73 | inistrative`.command..It.may.als |
| 9d8e0 | 6f 20 62 65 20 65 6e 61 62 6c 65 64 20 63 6f 6e 64 69 74 69 6f 6e 61 6c 6c 79 2e 20 43 6f 6e 64 | o.be.enabled.conditionally..Cond |
| 9d900 | 69 74 69 6f 6e 61 6c 20 65 6e 61 62 6c 69 6e 67 20 6f 66 20 6d 61 78 2d 6d 65 74 72 69 63 20 72 | itional.enabling.of.max-metric.r |
| 9d920 | 6f 75 74 65 72 2d 6c 73 61 73 20 63 61 6e 20 62 65 20 66 6f 72 20 61 20 70 65 72 69 6f 64 20 6f | outer-lsas.can.be.for.a.period.o |
| 9d940 | 66 20 73 65 63 6f 6e 64 73 20 61 66 74 65 72 20 73 74 61 72 74 75 70 20 77 69 74 68 20 74 68 65 | f.seconds.after.startup.with.the |
| 9d960 | 20 3a 63 66 67 63 6d 64 3a 60 6f 6e 2d 73 74 61 72 74 75 70 20 3c 73 65 63 6f 6e 64 73 3e 60 20 | .:cfgcmd:`on-startup.<seconds>`. |
| 9d980 | 63 6f 6d 6d 61 6e 64 20 61 6e 64 2f 6f 72 20 66 6f 72 20 61 20 70 65 72 69 6f 64 20 6f 66 20 73 | command.and/or.for.a.period.of.s |
| 9d9a0 | 65 63 6f 6e 64 73 20 70 72 69 6f 72 20 74 6f 20 73 68 75 74 64 6f 77 6e 20 77 69 74 68 20 74 68 | econds.prior.to.shutdown.with.th |
| 9d9c0 | 65 20 3a 63 66 67 63 6d 64 3a 60 6f 6e 2d 73 68 75 74 64 6f 77 6e 20 3c 73 65 63 6f 6e 64 73 3e | e.:cfgcmd:`on-shutdown.<seconds> |
| 9d9e0 | 60 20 63 6f 6d 6d 61 6e 64 2e 20 54 68 65 20 74 69 6d 65 20 72 61 6e 67 65 20 69 73 20 35 20 74 | `.command..The.time.range.is.5.t |
| 9da00 | 6f 20 38 36 34 30 30 2e 00 54 68 69 73 20 74 65 63 68 6e 69 71 75 65 20 69 73 20 63 6f 6d 6d 6f | o.86400..This.technique.is.commo |
| 9da20 | 6e 6c 79 20 72 65 66 65 72 72 65 64 20 74 6f 20 61 73 20 4e 41 54 20 52 65 66 6c 65 63 74 69 6f | nly.referred.to.as.NAT.Reflectio |
| 9da40 | 6e 20 6f 72 20 48 61 69 72 70 69 6e 20 4e 41 54 2e 00 54 68 69 73 20 74 65 63 68 6e 6f 6c 6f 67 | n.or.Hairpin.NAT..This.technolog |
| 9da60 | 79 20 69 73 20 6b 6e 6f 77 6e 20 62 79 20 64 69 66 66 65 72 65 6e 74 20 6e 61 6d 65 73 3a 00 54 | y.is.known.by.different.names:.T |
| 9da80 | 68 69 73 20 74 68 65 20 73 69 6d 70 6c 65 73 74 20 71 75 65 75 65 20 70 6f 73 73 69 62 6c 65 20 | his.the.simplest.queue.possible. |
| 9daa0 | 79 6f 75 20 63 61 6e 20 61 70 70 6c 79 20 74 6f 20 79 6f 75 72 20 74 72 61 66 66 69 63 2e 20 54 | you.can.apply.to.your.traffic..T |
| 9dac0 | 72 61 66 66 69 63 20 6d 75 73 74 20 67 6f 20 74 68 72 6f 75 67 68 20 61 20 66 69 6e 69 74 65 20 | raffic.must.go.through.a.finite. |
| 9dae0 | 71 75 65 75 65 20 62 65 66 6f 72 65 20 69 74 20 69 73 20 61 63 74 75 61 6c 6c 79 20 73 65 6e 74 | queue.before.it.is.actually.sent |
| 9db00 | 2e 20 59 6f 75 20 6d 75 73 74 20 64 65 66 69 6e 65 20 68 6f 77 20 6d 61 6e 79 20 70 61 63 6b 65 | ..You.must.define.how.many.packe |
| 9db20 | 74 73 20 74 68 61 74 20 71 75 65 75 65 20 63 61 6e 20 63 6f 6e 74 61 69 6e 2e 00 54 68 69 73 20 | ts.that.queue.can.contain..This. |
| 9db40 | 74 6f 70 6f 6c 6f 67 79 20 77 61 73 20 62 75 69 6c 74 20 75 73 69 6e 67 20 47 4e 53 33 2e 00 54 | topology.was.built.using.GNS3..T |
| 9db60 | 68 69 73 20 77 69 6c 6c 20 61 64 64 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 6f 70 74 69 6f | his.will.add.the.following.optio |
| 9db80 | 6e 20 74 6f 20 74 68 65 20 4b 65 72 6e 65 6c 20 63 6f 6d 6d 61 6e 64 6c 69 6e 65 3a 00 54 68 69 | n.to.the.Kernel.commandline:.Thi |
| 9dba0 | 73 20 77 69 6c 6c 20 61 64 64 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 74 77 6f 20 6f 70 74 | s.will.add.the.following.two.opt |
| 9dbc0 | 69 6f 6e 73 20 74 6f 20 74 68 65 20 4b 65 72 6e 65 6c 20 63 6f 6d 6d 61 6e 64 6c 69 6e 65 3a 00 | ions.to.the.Kernel.commandline:. |
| 9dbe0 | 54 68 69 73 20 77 69 6c 6c 20 62 65 20 74 68 65 20 6d 6f 73 74 20 77 69 64 65 6c 79 20 75 73 65 | This.will.be.the.most.widely.use |
| 9dc00 | 64 20 69 6e 74 65 72 66 61 63 65 20 6f 6e 20 61 20 72 6f 75 74 65 72 20 63 61 72 72 79 69 6e 67 | d.interface.on.a.router.carrying |
| 9dc20 | 20 74 72 61 66 66 69 63 20 74 6f 20 74 68 65 20 72 65 61 6c 20 77 6f 72 6c 64 2e 00 54 68 69 73 | .traffic.to.the.real.world..This |
| 9dc40 | 20 77 69 6c 6c 20 63 6f 6e 66 69 67 75 72 65 20 61 20 73 74 61 74 69 63 20 41 52 50 20 65 6e 74 | .will.configure.a.static.ARP.ent |
| 9dc60 | 72 79 20 61 6c 77 61 79 73 20 72 65 73 6f 6c 76 69 6e 67 20 60 3c 61 64 64 72 65 73 73 3e 60 20 | ry.always.resolving.`<address>`. |
| 9dc80 | 74 6f 20 60 3c 6d 61 63 3e 60 20 66 6f 72 20 69 6e 74 65 72 66 61 63 65 20 60 3c 69 6e 74 65 72 | to.`<mac>`.for.interface.`<inter |
| 9dca0 | 66 61 63 65 3e 60 2e 00 54 68 69 73 20 77 69 6c 6c 20 6d 61 74 63 68 20 54 43 50 20 74 72 61 66 | face>`..This.will.match.TCP.traf |
| 9dcc0 | 66 69 63 20 77 69 74 68 20 73 6f 75 72 63 65 20 70 6f 72 74 20 38 30 2e 00 54 68 69 73 20 77 69 | fic.with.source.port.80..This.wi |
| 9dce0 | 6c 6c 20 72 65 6e 64 65 72 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 64 64 63 6c 69 65 6e 74 | ll.render.the.following.ddclient |
| 9dd00 | 5f 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 65 6e 74 72 79 3a 00 54 68 69 73 20 77 69 6c 6c | _.configuration.entry:.This.will |
| 9dd20 | 20 73 68 6f 77 20 79 6f 75 20 61 20 62 61 73 69 63 20 66 69 72 65 77 61 6c 6c 20 6f 76 65 72 76 | .show.you.a.basic.firewall.overv |
| 9dd40 | 69 65 77 00 54 68 69 73 20 77 69 6c 6c 20 73 68 6f 77 20 79 6f 75 20 61 20 62 61 73 69 63 20 66 | iew.This.will.show.you.a.basic.f |
| 9dd60 | 69 72 65 77 61 6c 6c 20 6f 76 65 72 76 69 65 77 2c 20 66 6f 72 20 61 6c 6c 20 72 75 6c 65 2d 73 | irewall.overview,.for.all.rule-s |
| 9dd80 | 65 74 73 2c 20 61 6e 64 20 6e 6f 74 20 6f 6e 6c 79 20 66 6f 72 20 69 70 76 34 00 54 68 69 73 20 | ets,.and.not.only.for.ipv4.This. |
| 9dda0 | 77 69 6c 6c 20 73 68 6f 77 20 79 6f 75 20 61 20 62 61 73 69 63 20 66 69 72 65 77 61 6c 6c 20 6f | will.show.you.a.basic.firewall.o |
| 9ddc0 | 76 65 72 76 69 65 77 2c 20 66 6f 72 20 61 6c 6c 20 72 75 6c 65 2d 73 65 74 73 2c 20 61 6e 64 20 | verview,.for.all.rule-sets,.and. |
| 9dde0 | 6e 6f 74 20 6f 6e 6c 79 20 66 6f 72 20 69 70 76 36 00 54 68 69 73 20 77 69 6c 6c 20 73 68 6f 77 | not.only.for.ipv6.This.will.show |
| 9de00 | 20 79 6f 75 20 61 20 62 61 73 69 63 20 66 69 72 65 77 61 6c 6c 20 6f 76 65 72 76 69 65 77 2c 20 | .you.a.basic.firewall.overview,. |
| 9de20 | 66 6f 72 20 61 6c 6c 20 72 75 6c 65 73 65 74 2c 20 61 6e 64 20 6e 6f 74 20 6f 6e 6c 79 20 66 6f | for.all.ruleset,.and.not.only.fo |
| 9de40 | 72 20 69 70 76 34 00 54 68 69 73 20 77 69 6c 6c 20 73 68 6f 77 20 79 6f 75 20 61 20 62 61 73 69 | r.ipv4.This.will.show.you.a.basi |
| 9de60 | 63 20 73 75 6d 6d 61 72 79 20 6f 66 20 61 20 70 61 72 74 69 63 75 6c 61 72 20 7a 6f 6e 65 2e 00 | c.summary.of.a.particular.zone.. |
| 9de80 | 54 68 69 73 20 77 69 6c 6c 20 73 68 6f 77 20 79 6f 75 20 61 20 62 61 73 69 63 20 73 75 6d 6d 61 | This.will.show.you.a.basic.summa |
| 9dea0 | 72 79 20 6f 66 20 74 68 65 20 7a 6f 6e 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 54 68 | ry.of.the.zone.configuration..Th |
| 9dec0 | 69 73 20 77 69 6c 6c 20 73 68 6f 77 20 79 6f 75 20 61 20 62 61 73 69 63 20 73 75 6d 6d 61 72 79 | is.will.show.you.a.basic.summary |
| 9dee0 | 20 6f 66 20 7a 6f 6e 65 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 54 68 69 73 20 77 69 | .of.zones.configuration..This.wi |
| 9df00 | 6c 6c 20 73 68 6f 77 20 79 6f 75 20 61 20 72 75 6c 65 2d 73 65 74 20 73 74 61 74 69 73 74 69 63 | ll.show.you.a.rule-set.statistic |
| 9df20 | 20 73 69 6e 63 65 20 74 68 65 20 6c 61 73 74 20 62 6f 6f 74 2e 00 54 68 69 73 20 77 69 6c 6c 20 | .since.the.last.boot..This.will. |
| 9df40 | 73 68 6f 77 20 79 6f 75 20 61 20 73 74 61 74 69 73 74 69 63 20 6f 66 20 61 6c 6c 20 72 75 6c 65 | show.you.a.statistic.of.all.rule |
| 9df60 | 2d 73 65 74 73 20 73 69 6e 63 65 20 74 68 65 20 6c 61 73 74 20 62 6f 6f 74 2e 00 54 68 69 73 20 | -sets.since.the.last.boot..This. |
| 9df80 | 77 69 6c 6c 20 73 68 6f 77 20 79 6f 75 20 61 20 73 75 6d 6d 61 72 79 20 6f 66 20 72 75 6c 65 2d | will.show.you.a.summary.of.rule- |
| 9dfa0 | 73 65 74 73 20 61 6e 64 20 67 72 6f 75 70 73 00 54 68 69 73 20 77 6f 72 6b 61 72 6f 75 6e 64 20 | sets.and.groups.This.workaround. |
| 9dfc0 | 6c 65 74 73 20 79 6f 75 20 61 70 70 6c 79 20 61 20 73 68 61 70 69 6e 67 20 70 6f 6c 69 63 79 20 | lets.you.apply.a.shaping.policy. |
| 9dfe0 | 74 6f 20 74 68 65 20 69 6e 67 72 65 73 73 20 74 72 61 66 66 69 63 20 62 79 20 66 69 72 73 74 20 | to.the.ingress.traffic.by.first. |
| 9e000 | 72 65 64 69 72 65 63 74 69 6e 67 20 69 74 20 74 6f 20 61 6e 20 69 6e 2d 62 65 74 77 65 65 6e 20 | redirecting.it.to.an.in-between. |
| 9e020 | 76 69 72 74 75 61 6c 20 69 6e 74 65 72 66 61 63 65 20 28 60 49 6e 74 65 72 6d 65 64 69 61 74 65 | virtual.interface.(`Intermediate |
| 9e040 | 20 46 75 6e 63 74 69 6f 6e 61 6c 20 42 6c 6f 63 6b 60 5f 29 2e 20 54 68 65 72 65 2c 20 69 6e 20 | .Functional.Block`_)..There,.in. |
| 9e060 | 74 68 61 74 20 76 69 72 74 75 61 6c 20 69 6e 74 65 72 66 61 63 65 2c 20 79 6f 75 20 77 69 6c 6c | that.virtual.interface,.you.will |
| 9e080 | 20 62 65 20 61 62 6c 65 20 74 6f 20 61 70 70 6c 79 20 61 6e 79 20 6f 66 20 74 68 65 20 70 6f 6c | .be.able.to.apply.any.of.the.pol |
| 9e0a0 | 69 63 69 65 73 20 74 68 61 74 20 77 6f 72 6b 20 66 6f 72 20 6f 75 74 62 6f 75 6e 64 20 74 72 61 | icies.that.work.for.outbound.tra |
| 9e0c0 | 66 66 69 63 2c 20 66 6f 72 20 69 6e 73 74 61 6e 63 65 2c 20 61 20 73 68 61 70 69 6e 67 20 6f 6e | ffic,.for.instance,.a.shaping.on |
| 9e0e0 | 65 2e 00 54 68 69 73 20 77 6f 75 6c 64 20 67 65 6e 65 72 61 74 65 20 74 68 65 20 66 6f 6c 6c 6f | e..This.would.generate.the.follo |
| 9e100 | 77 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 00 54 68 72 65 65 20 73 69 67 6e 69 66 | wing.configuration:.Three.signif |
| 9e120 | 69 63 61 6e 74 20 76 65 72 73 69 6f 6e 73 20 6f 66 20 53 4e 4d 50 20 68 61 76 65 20 62 65 65 6e | icant.versions.of.SNMP.have.been |
| 9e140 | 20 64 65 76 65 6c 6f 70 65 64 20 61 6e 64 20 64 65 70 6c 6f 79 65 64 2e 20 53 4e 4d 50 76 31 20 | .developed.and.deployed..SNMPv1. |
| 9e160 | 69 73 20 74 68 65 20 6f 72 69 67 69 6e 61 6c 20 76 65 72 73 69 6f 6e 20 6f 66 20 74 68 65 20 70 | is.the.original.version.of.the.p |
| 9e180 | 72 6f 74 6f 63 6f 6c 2e 20 4d 6f 72 65 20 72 65 63 65 6e 74 20 76 65 72 73 69 6f 6e 73 2c 20 53 | rotocol..More.recent.versions,.S |
| 9e1a0 | 4e 4d 50 76 32 63 20 61 6e 64 20 53 4e 4d 50 76 33 2c 20 66 65 61 74 75 72 65 20 69 6d 70 72 6f | NMPv2c.and.SNMPv3,.feature.impro |
| 9e1c0 | 76 65 6d 65 6e 74 73 20 69 6e 20 70 65 72 66 6f 72 6d 61 6e 63 65 2c 20 66 6c 65 78 69 62 69 6c | vements.in.performance,.flexibil |
| 9e1e0 | 69 74 79 20 61 6e 64 20 73 65 63 75 72 69 74 79 2e 00 54 69 6d 65 20 5a 6f 6e 65 00 54 69 6d 65 | ity.and.security..Time.Zone.Time |
| 9e200 | 20 5a 6f 6e 65 20 73 65 74 74 69 6e 67 20 69 73 20 76 65 72 79 20 69 6d 70 6f 72 74 61 6e 74 20 | .Zone.setting.is.very.important. |
| 9e220 | 61 73 20 65 2e 67 20 61 6c 6c 20 79 6f 75 72 20 6c 6f 67 66 69 6c 65 20 65 6e 74 72 69 65 73 20 | as.e.g.all.your.logfile.entries. |
| 9e240 | 77 69 6c 6c 20 62 65 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 | will.be.based.on.the.configured. |
| 9e260 | 7a 6f 6e 65 2e 20 57 69 74 68 6f 75 74 20 70 72 6f 70 65 72 20 74 69 6d 65 20 7a 6f 6e 65 20 63 | zone..Without.proper.time.zone.c |
| 9e280 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 74 20 77 69 6c 6c 20 62 65 20 76 65 72 79 20 64 69 66 | onfiguration.it.will.be.very.dif |
| 9e2a0 | 66 69 63 75 6c 74 20 74 6f 20 63 6f 6d 70 61 72 65 20 6c 6f 67 66 69 6c 65 73 20 66 72 6f 6d 20 | ficult.to.compare.logfiles.from. |
| 9e2c0 | 64 69 66 66 65 72 65 6e 74 20 73 79 73 74 65 6d 73 2e 00 54 69 6d 65 20 69 6e 20 6d 69 6c 6c 69 | different.systems..Time.in.milli |
| 9e2e0 | 73 65 63 6f 6e 64 73 20 62 65 74 77 65 65 6e 20 72 65 74 72 61 6e 73 6d 69 74 74 65 64 20 4e 65 | seconds.between.retransmitted.Ne |
| 9e300 | 69 67 68 62 6f 72 20 53 6f 6c 69 63 69 74 61 74 69 6f 6e 20 6d 65 73 73 61 67 65 73 00 54 69 6d | ighbor.Solicitation.messages.Tim |
| 9e320 | 65 20 69 6e 20 73 65 63 6f 6e 64 73 20 74 68 61 74 20 74 68 65 20 70 72 65 66 69 78 20 77 69 6c | e.in.seconds.that.the.prefix.wil |
| 9e340 | 6c 20 72 65 6d 61 69 6e 20 70 72 65 66 65 72 72 65 64 20 28 64 65 66 61 75 6c 74 20 34 20 68 6f | l.remain.preferred.(default.4.ho |
| 9e360 | 75 72 73 29 00 54 69 6d 65 20 69 6e 20 73 65 63 6f 6e 64 73 20 74 68 61 74 20 74 68 65 20 70 72 | urs).Time.in.seconds.that.the.pr |
| 9e380 | 65 66 69 78 20 77 69 6c 6c 20 72 65 6d 61 69 6e 20 76 61 6c 69 64 20 28 64 65 66 61 75 6c 74 3a | efix.will.remain.valid.(default: |
| 9e3a0 | 20 33 30 20 64 61 79 73 29 00 54 69 6d 65 20 69 6e 20 73 65 63 6f 6e 64 73 20 74 68 61 74 20 74 | .30.days).Time.in.seconds.that.t |
| 9e3c0 | 68 65 20 70 72 65 66 69 78 20 77 69 6c 6c 20 72 65 6d 61 69 6e 20 76 61 6c 69 64 20 28 64 65 66 | he.prefix.will.remain.valid.(def |
| 9e3e0 | 61 75 6c 74 3a 20 36 35 35 32 38 20 73 65 63 6f 6e 64 73 29 00 54 69 6d 65 20 69 73 20 69 6e 20 | ault:.65528.seconds).Time.is.in. |
| 9e400 | 6d 69 6e 75 74 65 73 20 61 6e 64 20 64 65 66 61 75 6c 74 73 20 74 6f 20 36 30 2e 00 54 69 6d 65 | minutes.and.defaults.to.60..Time |
| 9e420 | 20 74 6f 20 6d 61 74 63 68 20 74 68 65 20 64 65 66 69 6e 65 64 20 72 75 6c 65 2e 00 54 69 6d 65 | .to.match.the.defined.rule..Time |
| 9e440 | 2c 20 69 6e 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 2c 20 74 68 61 74 20 61 20 6e 6f 64 65 20 61 | ,.in.milliseconds,.that.a.node.a |
| 9e460 | 73 73 75 6d 65 73 20 61 20 6e 65 69 67 68 62 6f 72 20 69 73 20 72 65 61 63 68 61 62 6c 65 20 61 | ssumes.a.neighbor.is.reachable.a |
| 9e480 | 66 74 65 72 20 68 61 76 69 6e 67 20 72 65 63 65 69 76 65 64 20 61 20 72 65 61 63 68 61 62 69 6c | fter.having.received.a.reachabil |
| 9e4a0 | 69 74 79 20 63 6f 6e 66 69 72 6d 61 74 69 6f 6e 00 54 69 6d 65 6f 75 74 20 63 61 6e 20 62 65 20 | ity.confirmation.Timeout.can.be. |
| 9e4c0 | 64 65 66 69 6e 65 64 20 75 73 69 6e 67 20 73 65 63 6f 6e 64 73 2c 20 6d 69 6e 75 74 65 73 2c 20 | defined.using.seconds,.minutes,. |
| 9e4e0 | 68 6f 75 72 73 20 6f 72 20 64 61 79 73 3a 00 54 69 6d 65 6f 75 74 20 69 6e 20 73 65 63 6f 6e 64 | hours.or.days:.Timeout.in.second |
| 9e500 | 73 00 54 69 6d 65 6f 75 74 20 69 6e 20 73 65 63 6f 6e 64 73 20 62 65 74 77 65 65 6e 20 68 65 61 | s.Timeout.in.seconds.between.hea |
| 9e520 | 6c 74 68 20 74 61 72 67 65 74 20 63 68 65 63 6b 73 2e 00 54 69 6d 65 6f 75 74 20 74 6f 20 77 61 | lth.target.checks..Timeout.to.wa |
| 9e540 | 69 74 20 72 65 70 6c 79 20 66 6f 72 20 49 6e 74 65 72 69 6d 2d 55 70 64 61 74 65 20 70 61 63 6b | it.reply.for.Interim-Update.pack |
| 9e560 | 65 74 73 2e 20 28 64 65 66 61 75 6c 74 20 33 20 73 65 63 6f 6e 64 73 29 00 54 69 6d 65 6f 75 74 | ets..(default.3.seconds).Timeout |
| 9e580 | 20 74 6f 20 77 61 69 74 20 72 65 73 70 6f 6e 73 65 20 66 72 6f 6d 20 73 65 72 76 65 72 20 28 73 | .to.wait.response.from.server.(s |
| 9e5a0 | 65 63 6f 6e 64 73 29 00 54 69 6d 65 72 73 00 54 6f 20 61 63 74 69 76 61 74 65 20 74 68 65 20 56 | econds).Timers.To.activate.the.V |
| 9e5c0 | 4c 41 4e 20 61 77 61 72 65 20 62 72 69 64 67 65 2c 20 79 6f 75 20 6d 75 73 74 20 61 63 74 69 76 | LAN.aware.bridge,.you.must.activ |
| 9e5e0 | 61 74 65 20 74 68 69 73 20 73 65 74 74 69 6e 67 20 74 6f 20 75 73 65 20 56 4c 41 4e 20 73 65 74 | ate.this.setting.to.use.VLAN.set |
| 9e600 | 74 69 6e 67 73 20 66 6f 72 20 74 68 65 20 62 72 69 64 67 65 00 54 6f 20 61 6c 6c 6f 77 20 56 50 | tings.for.the.bridge.To.allow.VP |
| 9e620 | 4e 2d 63 6c 69 65 6e 74 73 20 61 63 63 65 73 73 20 76 69 61 20 79 6f 75 72 20 65 78 74 65 72 6e | N-clients.access.via.your.extern |
| 9e640 | 61 6c 20 61 64 64 72 65 73 73 2c 20 61 20 4e 41 54 20 72 75 6c 65 20 69 73 20 72 65 71 75 69 72 | al.address,.a.NAT.rule.is.requir |
| 9e660 | 65 64 3a 00 54 6f 20 61 6c 6c 6f 77 20 6c 69 73 74 69 6e 67 20 61 64 64 69 74 69 6f 6e 61 6c 20 | ed:.To.allow.listing.additional. |
| 9e680 | 63 75 73 74 6f 6d 20 64 6f 6d 61 69 6e 2c 20 66 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 6f 70 65 | custom.domain,.for.example.``ope |
| 9e6a0 | 6e 74 68 72 65 61 64 2e 74 68 72 65 61 64 2e 68 6f 6d 65 2e 61 72 70 61 60 60 2c 20 73 6f 20 74 | nthread.thread.home.arpa``,.so.t |
| 9e6c0 | 68 61 74 20 69 74 20 63 61 6e 20 72 65 66 6c 65 63 74 65 64 20 69 6e 20 61 64 64 69 74 69 6f 6e | hat.it.can.reflected.in.addition |
| 9e6e0 | 20 74 6f 20 74 68 65 20 64 65 66 61 75 6c 74 20 60 60 6c 6f 63 61 6c 60 60 2c 20 75 73 65 20 74 | .to.the.default.``local``,.use.t |
| 9e700 | 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 3a 00 54 6f 20 61 6c 6c 6f 77 20 6f | he.following.command:.To.allow.o |
| 9e720 | 6e 6c 79 20 73 70 65 63 69 66 69 63 20 73 65 72 76 69 63 65 73 2c 20 66 6f 72 20 65 78 61 6d 70 | nly.specific.services,.for.examp |
| 9e740 | 6c 65 20 60 60 5f 61 69 72 70 6c 61 79 2e 5f 74 63 70 60 60 20 6f 72 20 60 60 5f 69 70 70 2e 5f | le.``_airplay._tcp``.or.``_ipp._ |
| 9e760 | 74 63 70 60 60 2c 20 28 69 6e 73 74 65 61 64 20 6f 66 20 61 6c 6c 20 73 65 72 76 69 63 65 73 29 | tcp``,.(instead.of.all.services) |
| 9e780 | 20 74 6f 20 62 65 20 72 65 2d 62 72 6f 61 64 63 61 73 74 65 64 2c 20 75 73 65 20 74 68 65 20 66 | .to.be.re-broadcasted,.use.the.f |
| 9e7a0 | 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 3a 00 54 6f 20 61 6c 6c 6f 77 20 74 72 61 66 66 | ollowing.command:.To.allow.traff |
| 9e7c0 | 69 63 20 74 6f 20 70 61 73 73 20 74 68 72 6f 75 67 68 20 74 6f 20 63 6c 69 65 6e 74 73 2c 20 79 | ic.to.pass.through.to.clients,.y |
| 9e7e0 | 6f 75 20 6e 65 65 64 20 74 6f 20 61 64 64 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 72 75 6c | ou.need.to.add.the.following.rul |
| 9e800 | 65 73 2e 20 28 69 66 20 79 6f 75 20 75 73 65 64 20 74 68 65 20 64 65 66 61 75 6c 74 20 63 6f 6e | es..(if.you.used.the.default.con |
| 9e820 | 66 69 67 75 72 61 74 69 6f 6e 20 61 74 20 74 68 65 20 74 6f 70 20 6f 66 20 74 68 69 73 20 70 61 | figuration.at.the.top.of.this.pa |
| 9e840 | 67 65 29 00 54 6f 20 61 70 70 6c 79 20 74 68 69 73 20 70 6f 6c 69 63 79 20 74 6f 20 74 68 65 20 | ge).To.apply.this.policy.to.the. |
| 9e860 | 63 6f 72 72 65 63 74 20 69 6e 74 65 72 66 61 63 65 2c 20 63 6f 6e 66 69 67 75 72 65 20 69 74 20 | correct.interface,.configure.it. |
| 9e880 | 6f 6e 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 74 68 65 20 69 6e 62 6f 75 6e 64 20 6c 6f 63 | on.the.interface.the.inbound.loc |
| 9e8a0 | 61 6c 20 68 6f 73 74 20 77 69 6c 6c 20 73 65 6e 64 20 74 68 72 6f 75 67 68 20 74 6f 20 72 65 61 | al.host.will.send.through.to.rea |
| 9e8c0 | 63 68 20 6f 75 72 20 64 65 73 74 69 6e 65 64 20 74 61 72 67 65 74 20 68 6f 73 74 20 28 69 6e 20 | ch.our.destined.target.host.(in. |
| 9e8e0 | 6f 75 72 20 65 78 61 6d 70 6c 65 20 65 74 68 31 29 2e 00 54 6f 20 61 75 74 6f 20 75 70 64 61 74 | our.example.eth1)..To.auto.updat |
| 9e900 | 65 20 74 68 65 20 62 6c 61 63 6b 6c 69 73 74 20 66 69 6c 65 73 00 54 6f 20 61 75 74 6f 6d 61 74 | e.the.blacklist.files.To.automat |
| 9e920 | 69 63 61 6c 6c 79 20 61 73 73 69 67 6e 20 74 68 65 20 63 6c 69 65 6e 74 20 61 6e 20 49 50 20 61 | ically.assign.the.client.an.IP.a |
| 9e940 | 64 64 72 65 73 73 20 61 73 20 74 75 6e 6e 65 6c 20 65 6e 64 70 6f 69 6e 74 2c 20 61 20 63 6c 69 | ddress.as.tunnel.endpoint,.a.cli |
| 9e960 | 65 6e 74 20 49 50 20 70 6f 6f 6c 20 69 73 20 6e 65 65 64 65 64 2e 20 54 68 65 20 73 6f 75 72 63 | ent.IP.pool.is.needed..The.sourc |
| 9e980 | 65 20 63 61 6e 20 62 65 20 65 69 74 68 65 72 20 52 41 44 49 55 53 20 6f 72 20 61 20 6c 6f 63 61 | e.can.be.either.RADIUS.or.a.loca |
| 9e9a0 | 6c 20 73 75 62 6e 65 74 20 6f 72 20 49 50 20 72 61 6e 67 65 20 64 65 66 69 6e 69 74 69 6f 6e 2e | l.subnet.or.IP.range.definition. |
| 9e9c0 | 00 54 6f 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 61 73 73 69 67 6e 20 74 68 65 20 63 6c 69 | .To.automatically.assign.the.cli |
| 9e9e0 | 65 6e 74 20 61 6e 20 49 50 20 61 64 64 72 65 73 73 20 61 73 20 74 75 6e 6e 65 6c 20 65 6e 64 70 | ent.an.IP.address.as.tunnel.endp |
| 9ea00 | 6f 69 6e 74 2c 20 61 20 63 6c 69 65 6e 74 20 49 50 20 70 6f 6f 6c 20 69 73 20 6e 65 65 64 65 64 | oint,.a.client.IP.pool.is.needed |
| 9ea20 | 2e 20 54 68 65 20 73 6f 75 72 63 65 20 63 61 6e 20 62 65 20 65 69 74 68 65 72 20 52 41 44 49 55 | ..The.source.can.be.either.RADIU |
| 9ea40 | 53 20 6f 72 20 61 20 6e 61 6d 65 64 20 70 6f 6f 6c 2e 20 54 68 65 72 65 20 69 73 20 70 6f 73 73 | S.or.a.named.pool..There.is.poss |
| 9ea60 | 69 62 69 6c 69 74 79 20 74 6f 20 63 72 65 61 74 65 20 6d 75 6c 74 69 70 6c 65 20 6e 61 6d 65 64 | ibility.to.create.multiple.named |
| 9ea80 | 20 70 6f 6f 6c 73 2e 20 45 61 63 68 20 6e 61 6d 65 64 20 70 6f 6f 6c 20 63 61 6e 20 69 6e 63 6c | .pools..Each.named.pool.can.incl |
| 9eaa0 | 75 64 65 20 6f 6e 6c 79 20 6f 6e 65 20 61 64 64 72 65 73 73 20 72 61 6e 67 65 2e 20 54 6f 20 75 | ude.only.one.address.range..To.u |
| 9eac0 | 73 65 20 6d 75 6c 74 69 70 6c 65 20 61 64 64 72 65 73 73 20 72 61 6e 67 65 73 20 63 6f 6e 66 69 | se.multiple.address.ranges.confi |
| 9eae0 | 67 75 72 65 20 60 60 6e 65 78 74 2d 70 6f 6f 6c 60 60 20 6f 70 74 69 6f 6e 2e 00 54 6f 20 62 65 | gure.``next-pool``.option..To.be |
| 9eb00 | 20 75 73 65 64 20 6f 6e 6c 79 20 77 68 65 6e 20 60 60 61 63 74 69 6f 6e 60 60 20 69 73 20 73 65 | .used.only.when.``action``.is.se |
| 9eb20 | 74 20 74 6f 20 60 60 6a 75 6d 70 60 60 2e 20 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 | t.to.``jump``..Use.this.command. |
| 9eb40 | 74 6f 20 73 70 65 63 69 66 79 20 6a 75 6d 70 20 74 61 72 67 65 74 2e 00 54 6f 20 62 65 20 75 73 | to.specify.jump.target..To.be.us |
| 9eb60 | 65 64 20 6f 6e 6c 79 20 77 68 65 6e 20 60 60 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 60 60 20 | ed.only.when.``default-action``. |
| 9eb80 | 69 73 20 73 65 74 20 74 6f 20 60 60 6a 75 6d 70 60 60 2e 20 55 73 65 20 74 68 69 73 20 63 6f 6d | is.set.to.``jump``..Use.this.com |
| 9eba0 | 6d 61 6e 64 20 74 6f 20 73 70 65 63 69 66 79 20 6a 75 6d 70 20 74 61 72 67 65 74 20 66 6f 72 20 | mand.to.specify.jump.target.for. |
| 9ebc0 | 64 65 66 61 75 6c 74 20 72 75 6c 65 2e 00 54 6f 20 62 65 20 75 73 65 64 20 6f 6e 6c 79 20 77 68 | default.rule..To.be.used.only.wh |
| 9ebe0 | 65 6e 20 60 60 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 60 60 20 69 73 20 73 65 74 20 74 6f 20 | en.``default-action``.is.set.to. |
| 9ec00 | 60 60 6a 75 6d 70 60 60 2e 20 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 70 | ``jump``..Use.this.command.to.sp |
| 9ec20 | 65 63 69 66 79 20 74 68 65 20 6a 75 6d 70 20 74 61 72 67 65 74 20 66 6f 72 20 74 68 65 20 64 65 | ecify.the.jump.target.for.the.de |
| 9ec40 | 66 61 75 6c 74 20 72 75 6c 65 2e 00 54 6f 20 62 65 20 75 73 65 64 20 6f 6e 6c 79 20 77 68 65 6e | fault.rule..To.be.used.only.when |
| 9ec60 | 20 60 60 64 65 66 75 6c 74 2d 61 63 74 69 6f 6e 60 60 20 69 73 20 73 65 74 20 74 6f 20 60 60 6a | .``defult-action``.is.set.to.``j |
| 9ec80 | 75 6d 70 60 60 2e 20 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 70 65 63 69 | ump``..Use.this.command.to.speci |
| 9eca0 | 66 79 20 6a 75 6d 70 20 74 61 72 67 65 74 20 66 6f 72 20 64 65 66 61 75 6c 74 20 72 75 6c 65 2e | fy.jump.target.for.default.rule. |
| 9ecc0 | 00 54 6f 20 62 65 20 75 73 65 64 20 6f 6e 6c 79 20 77 68 65 6e 20 61 63 74 69 6f 6e 20 69 73 20 | .To.be.used.only.when.action.is. |
| 9ece0 | 73 65 74 20 74 6f 20 60 60 6a 75 6d 70 60 60 2e 20 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e | set.to.``jump``..Use.this.comman |
| 9ed00 | 64 20 74 6f 20 73 70 65 63 69 66 79 20 6a 75 6d 70 20 74 61 72 67 65 74 2e 00 54 6f 20 62 65 20 | d.to.specify.jump.target..To.be. |
| 9ed20 | 75 73 65 64 20 6f 6e 6c 79 20 77 68 65 6e 20 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 | used.only.when.action.is.set.to. |
| 9ed40 | 60 60 6a 75 6d 70 60 60 2e 20 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 70 | ``jump``..Use.this.command.to.sp |
| 9ed60 | 65 63 69 66 79 20 74 68 65 20 6a 75 6d 70 20 74 61 72 67 65 74 2e 00 54 6f 20 62 65 20 75 73 65 | ecify.the.jump.target..To.be.use |
| 9ed80 | 64 20 6f 6e 6c 79 20 77 68 65 6e 20 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 60 60 71 | d.only.when.action.is.set.to.``q |
| 9eda0 | 75 65 75 65 60 60 2e 20 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 69 73 74 | ueue``..Use.this.command.to.dist |
| 9edc0 | 72 69 62 75 74 65 20 70 61 63 6b 65 74 73 20 62 65 74 77 65 65 6e 20 73 65 76 65 72 61 6c 20 71 | ribute.packets.between.several.q |
| 9ede0 | 75 65 75 65 73 2e 00 54 6f 20 62 65 20 75 73 65 64 20 6f 6e 6c 79 20 77 68 65 6e 20 61 63 74 69 | ueues..To.be.used.only.when.acti |
| 9ee00 | 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 60 60 71 75 65 75 65 60 60 2e 20 55 73 65 20 74 68 69 73 | on.is.set.to.``queue``..Use.this |
| 9ee20 | 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 6c 65 74 20 70 61 63 6b 65 74 20 67 6f 20 74 68 72 6f 75 67 | .command.to.let.packet.go.throug |
| 9ee40 | 68 20 66 69 72 65 77 61 6c 6c 20 77 68 65 6e 20 6e 6f 20 75 73 65 72 73 70 61 63 65 20 73 6f 66 | h.firewall.when.no.userspace.sof |
| 9ee60 | 74 77 61 72 65 20 69 73 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 74 68 65 20 71 75 65 75 65 2e | tware.is.connected.to.the.queue. |
| 9ee80 | 00 54 6f 20 62 65 20 75 73 65 64 20 6f 6e 6c 79 20 77 68 65 6e 20 61 63 74 69 6f 6e 20 69 73 20 | .To.be.used.only.when.action.is. |
| 9eea0 | 73 65 74 20 74 6f 20 60 60 71 75 65 75 65 60 60 2e 20 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 | set.to.``queue``..Use.this.comma |
| 9eec0 | 6e 64 20 74 6f 20 6c 65 74 20 74 68 65 20 70 61 63 6b 65 74 20 67 6f 20 74 68 72 6f 75 67 68 20 | nd.to.let.the.packet.go.through. |
| 9eee0 | 66 69 72 65 77 61 6c 6c 20 77 68 65 6e 20 6e 6f 20 75 73 65 72 73 70 61 63 65 20 73 6f 66 74 77 | firewall.when.no.userspace.softw |
| 9ef00 | 61 72 65 20 69 73 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 74 68 65 20 71 75 65 75 65 2e 00 54 | are.is.connected.to.the.queue..T |
| 9ef20 | 6f 20 62 65 20 75 73 65 64 20 6f 6e 6c 79 20 77 68 65 6e 20 61 63 74 69 6f 6e 20 69 73 20 73 65 | o.be.used.only.when.action.is.se |
| 9ef40 | 74 20 74 6f 20 60 60 71 75 65 75 65 60 60 2e 20 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 | t.to.``queue``..Use.this.command |
| 9ef60 | 20 74 6f 20 73 70 65 63 69 66 79 20 71 75 65 75 65 20 74 61 72 67 65 74 20 74 6f 20 75 73 65 2e | .to.specify.queue.target.to.use. |
| 9ef80 | 20 51 75 65 75 65 20 72 61 6e 67 65 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 00 | .Queue.range.is.also.supported.. |
| 9efa0 | 54 6f 20 62 65 20 75 73 65 64 20 6f 6e 6c 79 20 77 68 65 6e 20 61 63 74 69 6f 6e 20 69 73 20 73 | To.be.used.only.when.action.is.s |
| 9efc0 | 65 74 20 74 6f 20 60 60 71 75 65 75 65 60 60 2e 20 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e | et.to.``queue``..Use.this.comman |
| 9efe0 | 64 20 74 6f 20 73 70 65 63 69 66 79 20 74 68 65 20 71 75 65 75 65 20 74 61 72 67 65 74 20 74 6f | d.to.specify.the.queue.target.to |
| 9f000 | 20 75 73 65 2e 20 51 75 65 75 65 20 72 61 6e 67 65 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 | .use..Queue.range.is.also.suppor |
| 9f020 | 74 65 64 2e 00 54 6f 20 62 65 20 75 73 65 64 20 6f 6e 6c 79 20 77 68 65 6e 20 61 63 74 69 6f 6e | ted..To.be.used.only.when.action |
| 9f040 | 20 69 73 20 73 65 74 20 74 6f 20 6a 75 6d 70 2e 20 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e | .is.set.to.jump..Use.this.comman |
| 9f060 | 64 20 74 6f 20 73 70 65 63 69 66 79 20 6a 75 6d 70 20 74 61 72 67 65 74 2e 00 54 6f 20 62 79 70 | d.to.specify.jump.target..To.byp |
| 9f080 | 61 73 73 20 74 68 65 20 70 72 6f 78 79 20 66 6f 72 20 65 76 65 72 79 20 72 65 71 75 65 73 74 20 | ass.the.proxy.for.every.request. |
| 9f0a0 | 74 68 61 74 20 69 73 20 63 6f 6d 69 6e 67 20 66 72 6f 6d 20 61 20 73 70 65 63 69 66 69 63 20 73 | that.is.coming.from.a.specific.s |
| 9f0c0 | 6f 75 72 63 65 3a 00 54 6f 20 62 79 70 61 73 73 20 74 68 65 20 70 72 6f 78 79 20 66 6f 72 20 65 | ource:.To.bypass.the.proxy.for.e |
| 9f0e0 | 76 65 72 79 20 72 65 71 75 65 73 74 20 74 68 61 74 20 69 73 20 64 69 72 65 63 74 65 64 20 74 6f | very.request.that.is.directed.to |
| 9f100 | 20 61 20 73 70 65 63 69 66 69 63 20 64 65 73 74 69 6e 61 74 69 6f 6e 3a 00 54 6f 20 63 6f 6e 66 | .a.specific.destination:.To.conf |
| 9f120 | 69 67 75 72 65 20 49 50 76 36 20 61 73 73 69 67 6e 6d 65 6e 74 73 20 66 6f 72 20 63 6c 69 65 6e | igure.IPv6.assignments.for.clien |
| 9f140 | 74 73 2c 20 74 77 6f 20 6f 70 74 69 6f 6e 73 20 6e 65 65 64 20 74 6f 20 62 65 20 63 6f 6e 66 69 | ts,.two.options.need.to.be.confi |
| 9f160 | 67 75 72 65 64 2e 20 41 20 67 6c 6f 62 61 6c 20 70 72 65 66 69 78 20 77 68 69 63 68 20 69 73 20 | gured..A.global.prefix.which.is. |
| 9f180 | 74 65 72 6d 69 6e 61 74 65 64 20 6f 6e 20 74 68 65 20 63 6c 69 65 6e 74 73 20 63 70 65 20 61 6e | terminated.on.the.clients.cpe.an |
| 9f1a0 | 64 20 61 20 64 65 6c 65 67 61 74 65 64 20 70 72 65 66 69 78 2c 20 74 68 65 20 63 6c 69 65 6e 74 | d.a.delegated.prefix,.the.client |
| 9f1c0 | 20 63 61 6e 20 75 73 65 20 66 6f 72 20 64 65 76 69 63 65 73 20 72 6f 75 74 65 64 20 76 69 61 20 | .can.use.for.devices.routed.via. |
| 9f1e0 | 74 68 65 20 63 6c 69 65 6e 74 73 20 63 70 65 2e 00 54 6f 20 63 6f 6e 66 69 67 75 72 65 20 56 79 | the.clients.cpe..To.configure.Vy |
| 9f200 | 4f 53 20 77 69 74 68 20 74 68 65 20 3a 64 6f 63 3a 60 6c 65 67 61 63 79 20 66 69 72 65 77 61 6c | OS.with.the.:doc:`legacy.firewal |
| 9f220 | 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 3c 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f | l.configuration.</configuration/ |
| 9f240 | 66 69 72 65 77 61 6c 6c 2f 67 65 6e 65 72 61 6c 2d 6c 65 67 61 63 79 3e 60 00 54 6f 20 63 6f 6e | firewall/general-legacy>`.To.con |
| 9f260 | 66 69 67 75 72 65 20 56 79 4f 53 20 77 69 74 68 20 74 68 65 20 3a 64 6f 63 3a 60 7a 6f 6e 65 2d | figure.VyOS.with.the.:doc:`zone- |
| 9f280 | 62 61 73 65 64 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 3c 2f 63 | based.firewall.configuration.</c |
| 9f2a0 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 66 69 72 65 77 61 6c 6c 2f 7a 6f 6e 65 3e 60 00 54 6f 20 | onfiguration/firewall/zone>`.To. |
| 9f2c0 | 63 6f 6e 66 69 67 75 72 65 20 56 79 4f 53 20 77 69 74 68 20 74 68 65 20 6e 65 77 20 3a 64 6f 63 | configure.VyOS.with.the.new.:doc |
| 9f2e0 | 3a 60 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 3c 2f 63 6f 6e 66 69 | :`firewall.configuration.</confi |
| 9f300 | 67 75 72 61 74 69 6f 6e 2f 66 69 72 65 77 61 6c 6c 2f 67 65 6e 65 72 61 6c 3e 60 00 54 6f 20 63 | guration/firewall/general>`.To.c |
| 9f320 | 6f 6e 66 69 67 75 72 65 20 62 6c 6f 63 6b 69 6e 67 20 61 64 64 20 74 68 65 20 66 6f 6c 6c 6f 77 | onfigure.blocking.add.the.follow |
| 9f340 | 69 6e 67 20 74 6f 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 54 6f 20 63 6f 6e 66 | ing.to.the.configuration.To.conf |
| 9f360 | 69 67 75 72 65 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 79 6f | igure.site-to-site.connection.yo |
| 9f380 | 75 20 6e 65 65 64 20 74 6f 20 61 64 64 20 70 65 65 72 73 20 77 69 74 68 20 74 68 65 20 60 60 73 | u.need.to.add.peers.with.the.``s |
| 9f3a0 | 65 74 20 76 70 6e 20 69 70 73 65 63 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 70 65 65 72 20 3c | et.vpn.ipsec.site-to-site.peer.< |
| 9f3c0 | 6e 61 6d 65 3e 60 60 20 63 6f 6d 6d 61 6e 64 2e 00 54 6f 20 63 6f 6e 66 69 67 75 72 65 20 73 79 | name>``.command..To.configure.sy |
| 9f3e0 | 73 6c 6f 67 2c 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 73 77 69 74 63 68 20 69 6e 74 6f 20 63 6f | slog,.you.need.to.switch.into.co |
| 9f400 | 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d 6f 64 65 2e 00 54 6f 20 63 6f 6e 66 69 67 75 72 65 20 79 | nfiguration.mode..To.configure.y |
| 9f420 | 6f 75 72 20 4c 43 44 20 64 69 73 70 6c 61 79 20 79 6f 75 20 6d 75 73 74 20 66 69 72 73 74 20 69 | our.LCD.display.you.must.first.i |
| 9f440 | 64 65 6e 74 69 66 79 20 74 68 65 20 75 73 65 64 20 68 61 72 64 77 61 72 65 2c 20 61 6e 64 20 63 | dentify.the.used.hardware,.and.c |
| 9f460 | 6f 6e 6e 65 63 74 69 76 69 74 79 20 6f 66 20 74 68 65 20 64 69 73 70 6c 61 79 20 74 6f 20 79 6f | onnectivity.of.the.display.to.yo |
| 9f480 | 75 72 20 73 79 73 74 65 6d 2e 20 54 68 69 73 20 63 61 6e 20 62 65 20 61 6e 79 20 73 65 72 69 61 | ur.system..This.can.be.any.seria |
| 9f4a0 | 6c 20 70 6f 72 74 20 28 60 74 74 79 53 78 78 60 29 20 6f 72 20 73 65 72 69 61 6c 20 76 69 61 20 | l.port.(`ttySxx`).or.serial.via. |
| 9f4c0 | 55 53 42 20 6f 72 20 65 76 65 6e 20 6f 6c 64 20 70 61 72 61 6c 6c 65 6c 20 70 6f 72 74 20 69 6e | USB.or.even.old.parallel.port.in |
| 9f4e0 | 74 65 72 66 61 63 65 73 2e 00 54 6f 20 63 72 65 61 74 65 20 56 4c 41 4e 73 20 70 65 72 20 75 73 | terfaces..To.create.VLANs.per.us |
| 9f500 | 65 72 20 64 75 72 69 6e 67 20 72 75 6e 74 69 6d 65 2c 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 | er.during.runtime,.the.following |
| 9f520 | 20 73 65 74 74 69 6e 67 73 20 61 72 65 20 72 65 71 75 69 72 65 64 20 6f 6e 20 61 20 70 65 72 20 | .settings.are.required.on.a.per. |
| 9f540 | 69 6e 74 65 72 66 61 63 65 20 62 61 73 69 73 2e 20 56 4c 41 4e 20 49 44 20 61 6e 64 20 56 4c 41 | interface.basis..VLAN.ID.and.VLA |
| 9f560 | 4e 20 72 61 6e 67 65 20 63 61 6e 20 62 65 20 70 72 65 73 65 6e 74 20 69 6e 20 74 68 65 20 63 6f | N.range.can.be.present.in.the.co |
| 9f580 | 6e 66 69 67 75 72 61 74 69 6f 6e 20 61 74 20 74 68 65 20 73 61 6d 65 20 74 69 6d 65 2e 00 54 6f | nfiguration.at.the.same.time..To |
| 9f5a0 | 20 63 72 65 61 74 65 20 61 20 6e 65 77 20 6c 69 6e 65 20 69 6e 20 79 6f 75 72 20 6c 6f 67 69 6e | .create.a.new.line.in.your.login |
| 9f5c0 | 20 6d 65 73 73 61 67 65 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 65 73 63 61 70 65 20 74 68 65 20 | .message.you.need.to.escape.the. |
| 9f5e0 | 6e 65 77 20 6c 69 6e 65 20 63 68 61 72 61 63 74 65 72 20 62 79 20 75 73 69 6e 67 20 60 60 5c 5c | new.line.character.by.using.``\\ |
| 9f600 | 6e 60 60 2e 00 54 6f 20 63 72 65 61 74 65 20 6d 6f 72 65 20 74 68 61 6e 20 6f 6e 65 20 74 75 6e | n``..To.create.more.than.one.tun |
| 9f620 | 6e 65 6c 2c 20 75 73 65 20 64 69 73 74 69 6e 63 74 20 55 44 50 20 70 6f 72 74 73 2e 00 54 6f 20 | nel,.use.distinct.UDP.ports..To. |
| 9f640 | 63 72 65 61 74 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 31 30 30 20 61 6e 64 20 61 64 64 | create.routing.table.100.and.add |
| 9f660 | 20 61 20 6e 65 77 20 64 65 66 61 75 6c 74 20 67 61 74 65 77 61 79 20 74 6f 20 62 65 20 75 73 65 | .a.new.default.gateway.to.be.use |
| 9f680 | 64 20 62 79 20 74 72 61 66 66 69 63 20 6d 61 74 63 68 69 6e 67 20 6f 75 72 20 72 6f 75 74 65 20 | d.by.traffic.matching.our.route. |
| 9f6a0 | 70 6f 6c 69 63 79 3a 00 54 6f 20 64 65 66 69 6e 65 20 61 20 7a 6f 6e 65 20 73 65 74 75 70 20 65 | policy:.To.define.a.zone.setup.e |
| 9f6c0 | 69 74 68 65 72 20 6f 6e 65 20 77 69 74 68 20 69 6e 74 65 72 66 61 63 65 73 20 6f 72 20 61 20 6c | ither.one.with.interfaces.or.a.l |
| 9f6e0 | 6f 63 61 6c 20 7a 6f 6e 65 2e 00 54 6f 20 64 69 73 61 62 6c 65 20 61 64 76 65 72 74 69 73 65 6d | ocal.zone..To.disable.advertisem |
| 9f700 | 65 6e 74 73 20 77 69 74 68 6f 75 74 20 64 65 6c 65 74 69 6e 67 20 74 68 65 20 63 6f 6e 66 69 67 | ents.without.deleting.the.config |
| 9f720 | 75 72 61 74 69 6f 6e 3a 00 54 6f 20 64 69 73 70 6c 61 79 20 74 68 65 20 63 6f 6e 66 69 67 75 72 | uration:.To.display.the.configur |
| 9f740 | 65 64 20 4f 54 50 20 75 73 65 72 20 6b 65 79 2c 20 75 73 65 20 74 68 65 20 63 6f 6d 6d 61 6e 64 | ed.OTP.user.key,.use.the.command |
| 9f760 | 3a 00 54 6f 20 64 69 73 70 6c 61 79 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 4f 54 50 20 | :.To.display.the.configured.OTP. |
| 9f780 | 75 73 65 72 20 73 65 74 74 69 6e 67 73 2c 20 75 73 65 20 74 68 65 20 63 6f 6d 6d 61 6e 64 3a 00 | user.settings,.use.the.command:. |
| 9f7a0 | 54 6f 20 65 6e 61 62 6c 65 20 4d 4c 44 20 72 65 70 6f 72 74 73 20 61 6e 64 20 71 75 65 72 79 20 | To.enable.MLD.reports.and.query. |
| 9f7c0 | 6f 6e 20 69 6e 74 65 72 66 61 63 65 73 20 60 65 74 68 30 60 20 61 6e 64 20 60 65 74 68 31 60 3a | on.interfaces.`eth0`.and.`eth1`: |
| 9f7e0 | 00 54 6f 20 65 6e 61 62 6c 65 20 52 41 44 49 55 53 20 62 61 73 65 64 20 61 75 74 68 65 6e 74 69 | .To.enable.RADIUS.based.authenti |
| 9f800 | 63 61 74 69 6f 6e 2c 20 74 68 65 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6d 6f 64 65 20 | cation,.the.authentication.mode. |
| 9f820 | 6e 65 65 64 73 20 74 6f 20 62 65 20 63 68 61 6e 67 65 64 20 77 69 74 68 69 6e 20 74 68 65 20 63 | needs.to.be.changed.within.the.c |
| 9f840 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 20 50 72 65 76 69 6f 75 73 20 73 65 74 74 69 6e 67 73 20 | onfiguration..Previous.settings. |
| 9f860 | 6c 69 6b 65 20 74 68 65 20 6c 6f 63 61 6c 20 75 73 65 72 73 20 73 74 69 6c 6c 20 65 78 69 73 74 | like.the.local.users.still.exist |
| 9f880 | 20 77 69 74 68 69 6e 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2c 20 68 6f 77 65 76 | .within.the.configuration,.howev |
| 9f8a0 | 65 72 20 74 68 65 79 20 61 72 65 20 6e 6f 74 20 75 73 65 64 20 69 66 20 74 68 65 20 6d 6f 64 65 | er.they.are.not.used.if.the.mode |
| 9f8c0 | 20 68 61 73 20 62 65 65 6e 20 63 68 61 6e 67 65 64 20 66 72 6f 6d 20 6c 6f 63 61 6c 20 74 6f 20 | .has.been.changed.from.local.to. |
| 9f8e0 | 72 61 64 69 75 73 2e 20 4f 6e 63 65 20 63 68 61 6e 67 65 64 20 62 61 63 6b 20 74 6f 20 6c 6f 63 | radius..Once.changed.back.to.loc |
| 9f900 | 61 6c 2c 20 69 74 20 77 69 6c 6c 20 75 73 65 20 61 6c 6c 20 6c 6f 63 61 6c 20 61 63 63 6f 75 6e | al,.it.will.use.all.local.accoun |
| 9f920 | 74 73 20 61 67 61 69 6e 2e 00 54 6f 20 65 6e 61 62 6c 65 20 52 41 44 49 55 53 20 62 61 73 65 64 | ts.again..To.enable.RADIUS.based |
| 9f940 | 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2c 20 74 68 65 20 61 75 74 68 65 6e 74 69 63 61 74 | .authentication,.the.authenticat |
| 9f960 | 69 6f 6e 20 6d 6f 64 65 20 6e 65 65 64 73 20 74 6f 20 62 65 20 63 68 61 6e 67 65 64 20 77 69 74 | ion.mode.needs.to.be.changed.wit |
| 9f980 | 68 69 6e 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 20 50 72 65 76 69 6f 75 73 20 | hin.the.configuration..Previous. |
| 9f9a0 | 73 65 74 74 69 6e 67 73 20 6c 69 6b 65 20 74 68 65 20 6c 6f 63 61 6c 20 75 73 65 72 73 2c 20 73 | settings.like.the.local.users,.s |
| 9f9c0 | 74 69 6c 6c 20 65 78 69 73 74 73 20 77 69 74 68 69 6e 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 | till.exists.within.the.configura |
| 9f9e0 | 74 69 6f 6e 2c 20 68 6f 77 65 76 65 72 20 74 68 65 79 20 61 72 65 20 6e 6f 74 20 75 73 65 64 20 | tion,.however.they.are.not.used. |
| 9fa00 | 69 66 20 74 68 65 20 6d 6f 64 65 20 68 61 73 20 62 65 65 6e 20 63 68 61 6e 67 65 64 20 66 72 6f | if.the.mode.has.been.changed.fro |
| 9fa20 | 6d 20 6c 6f 63 61 6c 20 74 6f 20 72 61 64 69 75 73 2e 20 4f 6e 63 65 20 63 68 61 6e 67 65 64 20 | m.local.to.radius..Once.changed. |
| 9fa40 | 62 61 63 6b 20 74 6f 20 6c 6f 63 61 6c 2c 20 69 74 20 77 69 6c 6c 20 75 73 65 20 61 6c 6c 20 6c | back.to.local,.it.will.use.all.l |
| 9fa60 | 6f 63 61 6c 20 61 63 63 6f 75 6e 74 73 20 61 67 61 69 6e 2e 00 54 6f 20 65 6e 61 62 6c 65 20 62 | ocal.accounts.again..To.enable.b |
| 9fa80 | 61 6e 64 77 69 64 74 68 20 73 68 61 70 69 6e 67 20 76 69 61 20 52 41 44 49 55 53 2c 20 74 68 65 | andwidth.shaping.via.RADIUS,.the |
| 9faa0 | 20 6f 70 74 69 6f 6e 20 72 61 74 65 2d 6c 69 6d 69 74 20 6e 65 65 64 73 20 74 6f 20 62 65 20 65 | .option.rate-limit.needs.to.be.e |
| 9fac0 | 6e 61 62 6c 65 64 2e 00 54 6f 20 65 6e 61 62 6c 65 20 64 65 62 75 67 20 6d 65 73 73 61 67 65 73 | nabled..To.enable.debug.messages |
| 9fae0 | 2e 20 41 76 61 69 6c 61 62 6c 65 20 76 69 61 20 3a 6f 70 63 6d 64 3a 60 73 68 6f 77 20 6c 6f 67 | ..Available.via.:opcmd:`show.log |
| 9fb00 | 60 20 6f 72 20 3a 6f 70 63 6d 64 3a 60 6d 6f 6e 69 74 6f 72 20 6c 6f 67 60 00 54 6f 20 65 6e 61 | `.or.:opcmd:`monitor.log`.To.ena |
| 9fb20 | 62 6c 65 20 6d 44 4e 53 20 72 65 70 65 61 74 65 72 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 63 6f | ble.mDNS.repeater.you.need.to.co |
| 9fb40 | 6e 66 69 67 75 72 65 20 61 74 20 6c 65 61 73 74 20 74 77 6f 20 69 6e 74 65 72 66 61 63 65 73 20 | nfigure.at.least.two.interfaces. |
| 9fb60 | 73 6f 20 74 68 61 74 20 61 6c 6c 20 69 6e 63 6f 6d 69 6e 67 20 6d 44 4e 53 20 70 61 63 6b 65 74 | so.that.all.incoming.mDNS.packet |
| 9fb80 | 73 20 66 72 6f 6d 20 6f 6e 65 20 69 6e 74 65 72 66 61 63 65 20 63 6f 6e 66 69 67 75 72 65 64 20 | s.from.one.interface.configured. |
| 9fba0 | 68 65 72 65 20 63 61 6e 20 62 65 20 72 65 2d 62 72 6f 61 64 63 61 73 74 65 64 20 74 6f 20 61 6e | here.can.be.re-broadcasted.to.an |
| 9fbc0 | 79 20 6f 74 68 65 72 20 69 6e 74 65 72 66 61 63 65 28 73 29 20 63 6f 6e 66 69 67 75 72 65 64 20 | y.other.interface(s).configured. |
| 9fbe0 | 75 6e 64 65 72 20 74 68 69 73 20 73 65 63 74 69 6f 6e 2e 00 54 6f 20 65 6e 61 62 6c 65 20 6d 44 | under.this.section..To.enable.mD |
| 9fc00 | 4e 53 20 72 65 70 65 61 74 65 72 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 | NS.repeater.you.need.to.configur |
| 9fc20 | 65 20 61 74 20 6c 65 61 73 74 20 74 77 6f 20 69 6e 74 65 72 66 61 63 65 73 2e 20 54 6f 20 72 65 | e.at.least.two.interfaces..To.re |
| 9fc40 | 2d 62 72 6f 61 64 63 61 73 74 20 61 6c 6c 20 69 6e 63 6f 6d 69 6e 67 20 6d 44 4e 53 20 70 61 63 | -broadcast.all.incoming.mDNS.pac |
| 9fc60 | 6b 65 74 73 20 66 72 6f 6d 20 61 6e 79 20 69 6e 74 65 72 66 61 63 65 20 63 6f 6e 66 69 67 75 72 | kets.from.any.interface.configur |
| 9fc80 | 65 64 20 68 65 72 65 20 74 6f 20 61 6e 79 20 6f 74 68 65 72 20 69 6e 74 65 72 66 61 63 65 20 63 | ed.here.to.any.other.interface.c |
| 9fca0 | 6f 6e 66 69 67 75 72 65 64 20 75 6e 64 65 72 20 74 68 69 73 20 73 65 63 74 69 6f 6e 2e 00 54 6f | onfigured.under.this.section..To |
| 9fcc0 | 20 65 6e 61 62 6c 65 20 74 68 65 20 48 54 54 50 20 73 65 63 75 72 69 74 79 20 68 65 61 64 65 72 | .enable.the.HTTP.security.header |
| 9fce0 | 73 20 69 6e 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 69 6c 65 2c 20 75 73 65 | s.in.the.configuration.file,.use |
| 9fd00 | 20 74 68 65 20 63 6f 6d 6d 61 6e 64 3a 00 54 6f 20 65 6e 61 62 6c 65 2f 64 69 73 61 62 6c 65 20 | .the.command:.To.enable/disable. |
| 9fd20 | 68 65 6c 70 65 72 20 73 75 70 70 6f 72 74 20 66 6f 72 20 61 20 73 70 65 63 69 66 69 63 20 6e 65 | helper.support.for.a.specific.ne |
| 9fd40 | 69 67 68 62 6f 75 72 2c 20 74 68 65 20 72 6f 75 74 65 72 2d 69 64 20 28 41 2e 42 2e 43 2e 44 29 | ighbour,.the.router-id.(A.B.C.D) |
| 9fd60 | 20 68 61 73 20 74 6f 20 62 65 20 73 70 65 63 69 66 69 65 64 2e 00 54 6f 20 65 78 63 6c 75 64 65 | .has.to.be.specified..To.exclude |
| 9fd80 | 20 74 72 61 66 66 69 63 20 66 72 6f 6d 20 6c 6f 61 64 20 62 61 6c 61 6e 63 69 6e 67 2c 20 74 72 | .traffic.from.load.balancing,.tr |
| 9fda0 | 61 66 66 69 63 20 6d 61 74 63 68 69 6e 67 20 61 6e 20 65 78 63 6c 75 64 65 20 72 75 6c 65 20 69 | affic.matching.an.exclude.rule.i |
| 9fdc0 | 73 20 6e 6f 74 20 62 61 6c 61 6e 63 65 64 20 62 75 74 20 72 6f 75 74 65 64 20 74 68 72 6f 75 67 | s.not.balanced.but.routed.throug |
| 9fde0 | 68 20 74 68 65 20 73 79 73 74 65 6d 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 69 6e 73 74 65 | h.the.system.routing.table.inste |
| 9fe00 | 61 64 3a 00 54 6f 20 65 78 70 6c 61 69 6e 20 74 68 65 20 75 73 61 67 65 20 6f 66 20 4c 4e 53 20 | ad:.To.explain.the.usage.of.LNS. |
| 9fe20 | 66 6f 6c 6c 6f 77 20 6f 75 72 20 62 6c 75 65 70 72 69 6e 74 20 3a 72 65 66 3a 60 65 78 61 6d 70 | follow.our.blueprint.:ref:`examp |
| 9fe40 | 6c 65 73 2d 6c 61 63 2d 6c 6e 73 60 2e 00 54 6f 20 65 78 74 65 6e 64 20 53 4e 4d 50 20 61 67 65 | les-lac-lns`..To.extend.SNMP.age |
| 9fe60 | 6e 74 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 2c 20 63 75 73 74 6f 6d 20 73 63 72 69 70 74 73 | nt.functionality,.custom.scripts |
| 9fe80 | 20 63 61 6e 20 62 65 20 65 78 65 63 75 74 65 64 20 65 76 65 72 79 20 74 69 6d 65 20 74 68 65 20 | .can.be.executed.every.time.the. |
| 9fea0 | 61 67 65 6e 74 20 69 73 20 62 65 69 6e 67 20 63 61 6c 6c 65 64 2e 20 54 68 69 73 20 63 61 6e 20 | agent.is.being.called..This.can. |
| 9fec0 | 62 65 20 61 63 68 69 65 76 65 64 20 62 79 20 75 73 69 6e 67 20 60 60 61 72 62 69 74 72 61 72 79 | be.achieved.by.using.``arbitrary |
| 9fee0 | 20 65 78 74 65 6e 73 69 6f 6e 63 6f 6d 6d 61 6e 64 73 60 60 2e 20 54 68 65 20 66 69 72 73 74 20 | .extensioncommands``..The.first. |
| 9ff00 | 73 74 65 70 20 69 73 20 74 6f 20 63 72 65 61 74 65 20 61 20 66 75 6e 63 74 69 6f 6e 61 6c 20 73 | step.is.to.create.a.functional.s |
| 9ff20 | 63 72 69 70 74 20 6f 66 20 63 6f 75 72 73 65 2c 20 74 68 65 6e 20 75 70 6c 6f 61 64 20 69 74 20 | cript.of.course,.then.upload.it. |
| 9ff40 | 74 6f 20 79 6f 75 72 20 56 79 4f 53 20 69 6e 73 74 61 6e 63 65 20 76 69 61 20 74 68 65 20 63 6f | to.your.VyOS.instance.via.the.co |
| 9ff60 | 6d 6d 61 6e 64 20 60 60 73 63 70 20 79 6f 75 72 5f 73 63 72 69 70 74 2e 73 68 20 76 79 6f 73 40 | mmand.``scp.your_script.sh.vyos@ |
| 9ff80 | 79 6f 75 72 5f 72 6f 75 74 65 72 3a 2f 63 6f 6e 66 69 67 2f 75 73 65 72 2d 64 61 74 61 60 60 2e | your_router:/config/user-data``. |
| 9ffa0 | 20 4f 6e 63 65 20 74 68 65 20 73 63 72 69 70 74 20 69 73 20 75 70 6c 6f 61 64 65 64 2c 20 69 74 | .Once.the.script.is.uploaded,.it |
| 9ffc0 | 20 6e 65 65 64 73 20 74 6f 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 76 69 61 20 74 68 65 20 | .needs.to.be.configured.via.the. |
| 9ffe0 | 63 6f 6d 6d 61 6e 64 20 62 65 6c 6f 77 2e 00 54 6f 20 66 6f 72 77 61 72 64 20 61 6c 6c 20 62 72 | command.below..To.forward.all.br |
| a0000 | 6f 61 64 63 61 73 74 20 70 61 63 6b 65 74 73 20 72 65 63 65 69 76 65 64 20 6f 6e 20 60 55 44 50 | oadcast.packets.received.on.`UDP |
| a0020 | 20 70 6f 72 74 20 31 39 30 30 60 20 6f 6e 20 60 65 74 68 33 60 2c 20 60 65 74 68 34 60 20 6f 72 | .port.1900`.on.`eth3`,.`eth4`.or |
| a0040 | 20 60 65 74 68 35 60 20 74 6f 20 61 6c 6c 20 6f 74 68 65 72 20 69 6e 74 65 72 66 61 63 65 73 20 | .`eth5`.to.all.other.interfaces. |
| a0060 | 69 6e 20 74 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 54 6f 20 67 65 6e 65 72 61 | in.this.configuration..To.genera |
| a0080 | 74 65 20 74 68 65 20 43 41 2c 20 74 68 65 20 73 65 72 76 65 72 20 70 72 69 76 61 74 65 20 6b 65 | te.the.CA,.the.server.private.ke |
| a00a0 | 79 20 61 6e 64 20 63 65 72 74 69 66 69 63 61 74 65 73 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 | y.and.certificates.the.following |
| a00c0 | 20 63 6f 6d 6d 61 6e 64 73 20 63 61 6e 20 62 65 20 75 73 65 64 2e 00 54 6f 20 67 65 74 20 69 74 | .commands.can.be.used..To.get.it |
| a00e0 | 20 74 6f 20 77 6f 72 6b 20 61 73 20 61 6e 20 61 63 63 65 73 73 20 70 6f 69 6e 74 20 77 69 74 68 | .to.work.as.an.access.point.with |
| a0100 | 20 74 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 79 6f 75 20 77 69 6c 6c 20 6e 65 65 | .this.configuration.you.will.nee |
| a0120 | 64 20 74 6f 20 73 65 74 20 75 70 20 61 20 44 48 43 50 20 73 65 72 76 65 72 20 74 6f 20 77 6f 72 | d.to.set.up.a.DHCP.server.to.wor |
| a0140 | 6b 20 77 69 74 68 20 74 68 61 74 20 6e 65 74 77 6f 72 6b 2e 20 59 6f 75 20 63 61 6e 20 2d 20 6f | k.with.that.network..You.can.-.o |
| a0160 | 66 20 63 6f 75 72 73 65 20 2d 20 61 6c 73 6f 20 62 72 69 64 67 65 20 74 68 65 20 57 69 72 65 6c | f.course.-.also.bridge.the.Wirel |
| a0180 | 65 73 73 20 69 6e 74 65 72 66 61 63 65 20 77 69 74 68 20 61 6e 79 20 63 6f 6e 66 69 67 75 72 65 | ess.interface.with.any.configure |
| a01a0 | 64 20 62 72 69 64 67 65 20 28 3a 72 65 66 3a 60 62 72 69 64 67 65 2d 69 6e 74 65 72 66 61 63 65 | d.bridge.(:ref:`bridge-interface |
| a01c0 | 60 29 20 6f 6e 20 74 68 65 20 73 79 73 74 65 6d 2e 00 54 6f 20 68 61 6e 64 20 6f 75 74 20 69 6e | `).on.the.system..To.hand.out.in |
| a01e0 | 64 69 76 69 64 75 61 6c 20 70 72 65 66 69 78 65 73 20 74 6f 20 79 6f 75 72 20 63 6c 69 65 6e 74 | dividual.prefixes.to.your.client |
| a0200 | 73 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 73 | s.the.following.configuration.is |
| a0220 | 20 75 73 65 64 3a 00 54 6f 20 69 6d 70 6f 72 74 20 69 74 20 66 72 6f 6d 20 74 68 65 20 66 69 6c | .used:.To.import.it.from.the.fil |
| a0240 | 65 73 79 73 74 65 6d 20 75 73 65 3a 00 54 6f 20 6b 6e 6f 77 20 6d 6f 72 65 20 61 62 6f 75 74 20 | esystem.use:.To.know.more.about. |
| a0260 | 73 63 72 69 70 74 69 6e 67 2c 20 63 68 65 63 6b 20 74 68 65 20 3a 72 65 66 3a 60 63 6f 6d 6d 61 | scripting,.check.the.:ref:`comma |
| a0280 | 6e 64 2d 73 63 72 69 70 74 69 6e 67 60 20 73 65 63 74 69 6f 6e 2e 00 54 6f 20 6c 69 73 74 65 6e | nd-scripting`.section..To.listen |
| a02a0 | 20 6f 6e 20 62 6f 74 68 20 60 65 74 68 30 60 20 61 6e 64 20 60 65 74 68 31 60 20 6d 44 4e 53 20 | .on.both.`eth0`.and.`eth1`.mDNS. |
| a02c0 | 70 61 63 6b 65 74 73 20 61 6e 64 20 61 6c 73 6f 20 72 65 70 65 61 74 20 70 61 63 6b 65 74 73 20 | packets.and.also.repeat.packets. |
| a02e0 | 72 65 63 65 69 76 65 64 20 6f 6e 20 60 65 74 68 30 60 20 74 6f 20 60 65 74 68 31 60 20 28 61 6e | received.on.`eth0`.to.`eth1`.(an |
| a0300 | 64 20 76 69 63 65 2d 76 65 72 73 61 29 20 75 73 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 | d.vice-versa).use.the.following. |
| a0320 | 63 6f 6d 6d 61 6e 64 73 3a 00 54 6f 20 6d 61 6e 69 70 75 6c 61 74 65 20 6f 72 20 64 69 73 70 6c | commands:.To.manipulate.or.displ |
| a0340 | 61 79 20 41 52 50 5f 20 74 61 62 6c 65 20 65 6e 74 72 69 65 73 2c 20 74 68 65 20 66 6f 6c 6c 6f | ay.ARP_.table.entries,.the.follo |
| a0360 | 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 73 20 61 72 65 20 69 6d 70 6c 65 6d 65 6e 74 65 64 2e 00 54 | wing.commands.are.implemented..T |
| a0380 | 6f 20 70 65 72 66 6f 72 6d 20 61 20 67 72 61 63 65 66 75 6c 20 73 68 75 74 64 6f 77 6e 2c 20 74 | o.perform.a.graceful.shutdown,.t |
| a03a0 | 68 65 20 46 52 52 20 60 60 67 72 61 63 65 66 75 6c 2d 72 65 73 74 61 72 74 20 70 72 65 70 61 72 | he.FRR.``graceful-restart.prepar |
| a03c0 | 65 20 69 70 20 6f 73 70 66 60 60 20 45 58 45 43 2d 6c 65 76 65 6c 20 63 6f 6d 6d 61 6e 64 20 6e | e.ip.ospf``.EXEC-level.command.n |
| a03e0 | 65 65 64 73 20 74 6f 20 62 65 20 69 73 73 75 65 64 20 62 65 66 6f 72 65 20 72 65 73 74 61 72 74 | eeds.to.be.issued.before.restart |
| a0400 | 69 6e 67 20 74 68 65 20 6f 73 70 66 64 20 64 61 65 6d 6f 6e 2e 00 54 6f 20 70 72 65 76 65 6e 74 | ing.the.ospfd.daemon..To.prevent |
| a0420 | 20 69 73 73 75 65 73 20 77 69 74 68 20 64 69 76 65 72 67 65 6e 74 20 63 6f 6e 66 69 67 75 72 61 | .issues.with.divergent.configura |
| a0440 | 74 69 6f 6e 73 20 62 65 74 77 65 65 6e 20 74 68 65 20 70 61 69 72 20 6f 66 20 72 6f 75 74 65 72 | tions.between.the.pair.of.router |
| a0460 | 73 2c 20 73 79 6e 63 68 72 6f 6e 69 7a 61 74 69 6f 6e 20 69 73 20 73 74 72 69 63 74 6c 79 20 75 | s,.synchronization.is.strictly.u |
| a0480 | 6e 69 64 69 72 65 63 74 69 6f 6e 61 6c 20 66 72 6f 6d 20 70 72 69 6d 61 72 79 20 74 6f 20 72 65 | nidirectional.from.primary.to.re |
| a04a0 | 70 6c 69 63 61 2e 20 42 6f 74 68 20 72 6f 75 74 65 72 73 20 73 68 6f 75 6c 64 20 62 65 20 6f 6e | plica..Both.routers.should.be.on |
| a04c0 | 6c 69 6e 65 20 61 6e 64 20 72 75 6e 20 74 68 65 20 73 61 6d 65 20 76 65 72 73 69 6f 6e 20 6f 66 | line.and.run.the.same.version.of |
| a04e0 | 20 56 79 4f 53 2e 00 54 6f 20 72 65 71 75 65 73 74 20 61 20 2f 35 36 20 70 72 65 66 69 78 20 66 | .VyOS..To.request.a./56.prefix.f |
| a0500 | 72 6f 6d 20 79 6f 75 72 20 49 53 50 20 75 73 65 3a 00 54 6f 20 72 65 73 74 61 72 74 20 74 68 65 | rom.your.ISP.use:.To.restart.the |
| a0520 | 20 44 48 43 50 76 36 20 73 65 72 76 65 72 00 54 6f 20 73 65 74 75 70 20 53 4e 41 54 2c 20 77 65 | .DHCPv6.server.To.setup.SNAT,.we |
| a0540 | 20 6e 65 65 64 20 74 6f 20 6b 6e 6f 77 3a 00 54 6f 20 73 65 74 75 70 20 61 20 64 65 73 74 69 6e | .need.to.know:.To.setup.a.destin |
| a0560 | 61 74 69 6f 6e 20 4e 41 54 20 72 75 6c 65 20 77 65 20 6e 65 65 64 20 74 6f 20 67 61 74 68 65 72 | ation.NAT.rule.we.need.to.gather |
| a0580 | 3a 00 54 6f 20 75 70 64 61 74 65 20 74 68 65 20 66 69 72 6d 77 61 72 65 2c 20 56 79 4f 53 20 61 | :.To.update.the.firmware,.VyOS.a |
| a05a0 | 6c 73 6f 20 73 68 69 70 73 20 74 68 65 20 60 71 6d 69 2d 66 69 72 6d 77 61 72 65 2d 75 70 64 61 | lso.ships.the.`qmi-firmware-upda |
| a05c0 | 74 65 60 20 62 69 6e 61 72 79 2e 20 54 6f 20 75 70 67 72 61 64 65 20 74 68 65 20 66 69 72 6d 77 | te`.binary..To.upgrade.the.firmw |
| a05e0 | 61 72 65 20 6f 66 20 61 6e 20 65 2e 67 2e 20 53 69 65 72 72 61 20 57 69 72 65 6c 65 73 73 20 4d | are.of.an.e.g..Sierra.Wireless.M |
| a0600 | 43 37 37 31 30 20 6d 6f 64 75 6c 65 20 74 6f 20 74 68 65 20 66 69 72 6d 77 61 72 65 20 70 72 6f | C7710.module.to.the.firmware.pro |
| a0620 | 76 69 64 65 64 20 69 6e 20 74 68 65 20 66 69 6c 65 20 60 60 39 39 39 39 39 39 39 5f 39 39 39 39 | vided.in.the.file.``9999999_9999 |
| a0640 | 39 39 39 5f 39 32 30 30 5f 30 33 2e 30 35 2e 31 34 2e 30 30 5f 30 30 5f 67 65 6e 65 72 69 63 5f | 999_9200_03.05.14.00_00_generic_ |
| a0660 | 30 30 30 2e 30 30 30 5f 30 30 31 5f 53 50 4b 47 5f 4d 43 2e 63 77 65 60 60 20 75 73 65 20 74 68 | 000.000_001_SPKG_MC.cwe``.use.th |
| a0680 | 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 3a 00 54 6f 20 75 73 65 20 61 20 52 41 | e.following.command:.To.use.a.RA |
| a06a0 | 44 49 55 53 20 73 65 72 76 65 72 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 61 | DIUS.server.for.authentication.a |
| a06c0 | 6e 64 20 62 61 6e 64 77 69 64 74 68 2d 73 68 61 70 69 6e 67 2c 20 74 68 65 20 66 6f 6c 6c 6f 77 | nd.bandwidth-shaping,.the.follow |
| a06e0 | 69 6e 67 20 65 78 61 6d 70 6c 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 61 6e 20 62 65 | ing.example.configuration.can.be |
| a0700 | 20 75 73 65 64 2e 00 54 6f 20 75 73 65 20 61 20 72 61 64 69 75 73 20 73 65 72 76 65 72 2c 20 79 | .used..To.use.a.radius.server,.y |
| a0720 | 6f 75 20 6e 65 65 64 20 74 6f 20 73 77 69 74 63 68 20 74 6f 20 61 75 74 68 65 6e 74 69 63 61 74 | ou.need.to.switch.to.authenticat |
| a0740 | 69 6f 6e 20 6d 6f 64 65 20 52 41 44 49 55 53 20 61 6e 64 20 74 68 65 6e 20 63 6f 6e 66 69 67 75 | ion.mode.RADIUS.and.then.configu |
| a0760 | 72 65 20 69 74 2e 00 54 6f 20 75 73 65 20 73 75 63 68 20 61 20 73 65 72 76 69 63 65 2c 20 6f 6e | re.it..To.use.such.a.service,.on |
| a0780 | 65 20 6d 75 73 74 20 64 65 66 69 6e 65 20 61 20 6c 6f 67 69 6e 2c 20 70 61 73 73 77 6f 72 64 2c | e.must.define.a.login,.password, |
| a07a0 | 20 6f 6e 65 20 6f 72 20 6d 75 6c 74 69 70 6c 65 20 68 6f 73 74 6e 61 6d 65 73 2c 20 70 72 6f 74 | .one.or.multiple.hostnames,.prot |
| a07c0 | 6f 63 6f 6c 20 61 6e 64 20 73 65 72 76 65 72 2e 00 54 6f 20 75 73 65 20 74 68 65 20 53 61 6c 74 | ocol.and.server..To.use.the.Salt |
| a07e0 | 2d 4d 69 6e 69 6f 6e 2c 20 61 20 72 75 6e 6e 69 6e 67 20 53 61 6c 74 2d 4d 61 73 74 65 72 20 69 | -Minion,.a.running.Salt-Master.i |
| a0800 | 73 20 72 65 71 75 69 72 65 64 2e 20 59 6f 75 20 63 61 6e 20 66 69 6e 64 20 6d 6f 72 65 20 69 6e | s.required..You.can.find.more.in |
| a0820 | 20 74 68 65 20 60 53 61 6c 74 20 50 6f 6a 65 63 74 20 44 6f 63 75 6d 65 6e 74 61 69 6f 6e 20 3c | .the.`Salt.Poject.Documentaion.< |
| a0840 | 68 74 74 70 73 3a 2f 2f 64 6f 63 73 2e 73 61 6c 74 70 72 6f 6a 65 63 74 2e 69 6f 2f 65 6e 2f 6c | https://docs.saltproject.io/en/l |
| a0860 | 61 74 65 73 74 2f 63 6f 6e 74 65 6e 74 73 2e 68 74 6d 6c 3e 60 5f 00 54 6f 20 75 73 65 20 74 68 | atest/contents.html>`_.To.use.th |
| a0880 | 65 20 53 61 6c 74 2d 4d 69 6e 69 6f 6e 2c 20 61 20 72 75 6e 6e 69 6e 67 20 53 61 6c 74 2d 4d 61 | e.Salt-Minion,.a.running.Salt-Ma |
| a08a0 | 73 74 65 72 20 69 73 20 72 65 71 75 69 72 65 64 2e 20 59 6f 75 20 63 61 6e 20 66 69 6e 64 20 6d | ster.is.required..You.can.find.m |
| a08c0 | 6f 72 65 20 69 6e 20 74 68 65 20 60 53 61 6c 74 20 50 72 6f 6a 65 63 74 20 44 6f 63 75 6d 65 6e | ore.in.the.`Salt.Project.Documen |
| a08e0 | 74 61 74 69 6f 6e 20 3c 68 74 74 70 73 3a 2f 2f 64 6f 63 73 2e 73 61 6c 74 70 72 6f 6a 65 63 74 | tation.<https://docs.saltproject |
| a0900 | 2e 69 6f 2f 65 6e 2f 6c 61 74 65 73 74 2f 63 6f 6e 74 65 6e 74 73 2e 68 74 6d 6c 3e 60 5f 00 54 | .io/en/latest/contents.html>`_.T |
| a0920 | 6f 20 75 73 65 20 74 68 69 73 20 66 75 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 77 65 | o.use.this.full.configuration.we |
| a0940 | 20 61 73 75 6d 65 20 61 20 70 75 62 6c 69 63 20 61 63 63 65 73 73 69 62 6c 65 20 68 6f 73 74 6e | .asume.a.public.accessible.hostn |
| a0960 | 61 6d 65 2e 00 54 6f 70 6f 6c 6f 67 79 3a 00 54 6f 70 6f 6c 6f 67 79 3a 20 50 43 34 20 2d 20 4c | ame..Topology:.Topology:.PC4.-.L |
| a0980 | 65 61 66 32 20 2d 20 53 70 69 6e 65 31 20 2d 20 4c 65 61 66 33 20 2d 20 50 43 35 00 54 6f 74 61 | eaf2.-.Spine1.-.Leaf3.-.PC5.Tota |
| a09a0 | 6c 20 50 6f 72 74 73 3a 20 36 35 35 33 36 20 28 30 20 74 6f 20 36 35 35 33 35 29 00 54 6f 75 62 | l.Ports:.65536.(0.to.65535).Toub |
| a09c0 | 6c 65 73 68 6f 6f 74 69 6e 67 00 54 72 61 63 6b 00 54 72 61 63 6b 20 6f 70 74 69 6f 6e 20 74 6f | leshooting.Track.Track.option.to |
| a09e0 | 20 74 72 61 63 6b 20 6e 6f 6e 20 56 52 52 50 20 69 6e 74 65 72 66 61 63 65 20 73 74 61 74 65 73 | .track.non.VRRP.interface.states |
| a0a00 | 2e 20 56 52 52 50 20 63 68 61 6e 67 65 73 20 73 74 61 74 75 73 20 74 6f 20 60 60 46 41 55 4c 54 | ..VRRP.changes.status.to.``FAULT |
| a0a20 | 60 60 20 69 66 20 6f 6e 65 20 6f 66 20 74 68 65 20 74 72 61 63 6b 20 69 6e 74 65 72 66 61 63 65 | ``.if.one.of.the.track.interface |
| a0a40 | 73 20 69 6e 20 73 74 61 74 65 20 60 60 64 6f 77 6e 60 60 2e 00 54 72 61 64 69 74 69 6f 6e 61 6c | s.in.state.``down``..Traditional |
| a0a60 | 20 42 47 50 20 64 69 64 20 6e 6f 74 20 68 61 76 65 20 74 68 65 20 66 65 61 74 75 72 65 20 74 6f | .BGP.did.not.have.the.feature.to |
| a0a80 | 20 64 65 74 65 63 74 20 61 20 72 65 6d 6f 74 65 20 70 65 65 72 27 73 20 63 61 70 61 62 69 6c 69 | .detect.a.remote.peer's.capabili |
| a0aa0 | 74 69 65 73 2c 20 65 2e 67 2e 20 77 68 65 74 68 65 72 20 69 74 20 63 61 6e 20 68 61 6e 64 6c 65 | ties,.e.g..whether.it.can.handle |
| a0ac0 | 20 70 72 65 66 69 78 20 74 79 70 65 73 20 6f 74 68 65 72 20 74 68 61 6e 20 49 50 76 34 20 75 6e | .prefix.types.other.than.IPv4.un |
| a0ae0 | 69 63 61 73 74 20 72 6f 75 74 65 73 2e 20 54 68 69 73 20 77 61 73 20 61 20 62 69 67 20 70 72 6f | icast.routes..This.was.a.big.pro |
| a0b00 | 62 6c 65 6d 20 75 73 69 6e 67 20 4d 75 6c 74 69 70 72 6f 74 6f 63 6f 6c 20 45 78 74 65 6e 73 69 | blem.using.Multiprotocol.Extensi |
| a0b20 | 6f 6e 20 66 6f 72 20 42 47 50 20 69 6e 20 61 6e 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 6e 65 74 | on.for.BGP.in.an.operational.net |
| a0b40 | 77 6f 72 6b 2e 20 3a 72 66 63 3a 60 32 38 34 32 60 20 61 64 6f 70 74 65 64 20 61 20 66 65 61 74 | work..:rfc:`2842`.adopted.a.feat |
| a0b60 | 75 72 65 20 63 61 6c 6c 65 64 20 43 61 70 61 62 69 6c 69 74 79 20 4e 65 67 6f 74 69 61 74 69 6f | ure.called.Capability.Negotiatio |
| a0b80 | 6e 2e 20 2a 62 67 70 64 2a 20 75 73 65 20 74 68 69 73 20 43 61 70 61 62 69 6c 69 74 79 20 4e 65 | n..*bgpd*.use.this.Capability.Ne |
| a0ba0 | 67 6f 74 69 61 74 69 6f 6e 20 74 6f 20 64 65 74 65 63 74 20 74 68 65 20 72 65 6d 6f 74 65 20 70 | gotiation.to.detect.the.remote.p |
| a0bc0 | 65 65 72 27 73 20 63 61 70 61 62 69 6c 69 74 69 65 73 2e 20 49 66 20 61 20 70 65 65 72 20 69 73 | eer's.capabilities..If.a.peer.is |
| a0be0 | 20 6f 6e 6c 79 20 63 6f 6e 66 69 67 75 72 65 64 20 61 73 20 61 6e 20 49 50 76 34 20 75 6e 69 63 | .only.configured.as.an.IPv4.unic |
| a0c00 | 61 73 74 20 6e 65 69 67 68 62 6f 72 2c 20 2a 62 67 70 64 2a 20 64 6f 65 73 20 6e 6f 74 20 73 65 | ast.neighbor,.*bgpd*.does.not.se |
| a0c20 | 6e 64 20 74 68 65 73 65 20 43 61 70 61 62 69 6c 69 74 79 20 4e 65 67 6f 74 69 61 74 69 6f 6e 20 | nd.these.Capability.Negotiation. |
| a0c40 | 70 61 63 6b 65 74 73 20 28 61 74 20 6c 65 61 73 74 20 6e 6f 74 20 75 6e 6c 65 73 73 20 6f 74 68 | packets.(at.least.not.unless.oth |
| a0c60 | 65 72 20 6f 70 74 69 6f 6e 61 6c 20 42 47 50 20 66 65 61 74 75 72 65 73 20 72 65 71 75 69 72 65 | er.optional.BGP.features.require |
| a0c80 | 20 63 61 70 61 62 69 6c 69 74 79 20 6e 65 67 6f 74 69 61 74 69 6f 6e 29 2e 00 54 72 61 64 69 74 | .capability.negotiation)..Tradit |
| a0ca0 | 69 6f 6e 61 6c 6c 79 20 66 69 72 65 77 61 6c 6c 73 20 77 65 65 72 65 20 63 6f 6e 66 69 67 75 72 | ionally.firewalls.weere.configur |
| a0cc0 | 65 64 20 77 69 74 68 20 74 68 65 20 63 6f 6e 63 65 70 74 20 6f 66 20 64 61 74 61 20 67 6f 69 6e | ed.with.the.concept.of.data.goin |
| a0ce0 | 67 20 69 6e 20 61 6e 64 20 6f 75 74 20 6f 66 20 61 6e 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 | g.in.and.out.of.an.interface..Th |
| a0d00 | 65 20 72 6f 75 74 65 72 20 6a 75 73 74 20 6c 69 73 74 65 6e 65 64 20 74 6f 20 74 68 65 20 64 61 | e.router.just.listened.to.the.da |
| a0d20 | 74 61 20 66 6c 6f 77 69 6e 67 20 74 68 72 6f 75 67 68 20 61 6e 64 20 72 65 73 70 6f 6e 64 69 6e | ta.flowing.through.and.respondin |
| a0d40 | 67 20 61 73 20 72 65 71 75 69 72 65 64 20 69 66 20 69 74 20 77 61 73 20 64 69 72 65 63 74 65 64 | g.as.required.if.it.was.directed |
| a0d60 | 20 61 74 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 2e 00 54 72 61 64 69 74 69 6f 6e | .at.the.router.itself..Tradition |
| a0d80 | 61 6c 6c 79 20 68 61 72 64 77 61 72 65 20 72 6f 75 74 65 72 73 20 69 6d 70 6c 65 6d 65 6e 74 20 | ally.hardware.routers.implement. |
| a0da0 | 49 50 73 65 63 20 65 78 63 6c 75 73 69 76 65 6c 79 20 64 75 65 20 74 6f 20 72 65 6c 61 74 69 76 | IPsec.exclusively.due.to.relativ |
| a0dc0 | 65 20 65 61 73 65 20 6f 66 20 69 6d 70 6c 65 6d 65 6e 74 69 6e 67 20 69 74 20 69 6e 20 68 61 72 | e.ease.of.implementing.it.in.har |
| a0de0 | 64 77 61 72 65 20 61 6e 64 20 69 6e 73 75 66 66 69 63 69 65 6e 74 20 43 50 55 20 70 6f 77 65 72 | dware.and.insufficient.CPU.power |
| a0e00 | 20 66 6f 72 20 64 6f 69 6e 67 20 65 6e 63 72 79 70 74 69 6f 6e 20 69 6e 20 73 6f 66 74 77 61 72 | .for.doing.encryption.in.softwar |
| a0e20 | 65 2e 20 53 69 6e 63 65 20 56 79 4f 53 20 69 73 20 61 20 73 6f 66 74 77 61 72 65 20 72 6f 75 74 | e..Since.VyOS.is.a.software.rout |
| a0e40 | 65 72 2c 20 74 68 69 73 20 69 73 20 6c 65 73 73 20 6f 66 20 61 20 63 6f 6e 63 65 72 6e 2e 20 4f | er,.this.is.less.of.a.concern..O |
| a0e60 | 70 65 6e 56 50 4e 20 68 61 73 20 62 65 65 6e 20 77 69 64 65 6c 79 20 75 73 65 64 20 6f 6e 20 55 | penVPN.has.been.widely.used.on.U |
| a0e80 | 4e 49 58 20 70 6c 61 74 66 6f 72 6d 20 66 6f 72 20 61 20 6c 6f 6e 67 20 74 69 6d 65 20 61 6e 64 | NIX.platform.for.a.long.time.and |
| a0ea0 | 20 69 73 20 61 20 70 6f 70 75 6c 61 72 20 6f 70 74 69 6f 6e 20 66 6f 72 20 72 65 6d 6f 74 65 20 | .is.a.popular.option.for.remote. |
| a0ec0 | 61 63 63 65 73 73 20 56 50 4e 2c 20 74 68 6f 75 67 68 20 69 74 27 73 20 61 6c 73 6f 20 63 61 70 | access.VPN,.though.it's.also.cap |
| a0ee0 | 61 62 6c 65 20 6f 66 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 | able.of.site-to-site.connections |
| a0f00 | 2e 00 54 72 61 64 69 74 69 6f 6e 61 6c 6c 79 20 68 61 72 64 77 61 72 65 20 72 6f 75 74 65 72 73 | ..Traditionally.hardware.routers |
| a0f20 | 20 69 6d 70 6c 65 6d 65 6e 74 20 49 50 73 65 63 20 65 78 63 6c 75 73 69 76 65 6c 79 20 64 75 65 | .implement.IPsec.exclusively.due |
| a0f40 | 20 74 6f 20 72 65 6c 61 74 69 76 65 20 65 61 73 65 20 6f 66 20 69 6d 70 6c 65 6d 65 6e 74 69 6e | .to.relative.ease.of.implementin |
| a0f60 | 67 20 69 74 20 69 6e 20 68 61 72 64 77 61 72 65 20 61 6e 64 20 69 6e 73 75 66 66 69 63 69 65 6e | g.it.in.hardware.and.insufficien |
| a0f80 | 74 20 43 50 55 20 70 6f 77 65 72 20 66 6f 72 20 64 6f 69 6e 67 20 65 6e 63 72 79 70 74 69 6f 6e | t.CPU.power.for.doing.encryption |
| a0fa0 | 20 69 6e 20 73 6f 66 74 77 61 72 65 2e 20 53 69 6e 63 65 20 56 79 4f 53 20 69 73 20 61 20 73 6f | .in.software..Since.VyOS.is.a.so |
| a0fc0 | 66 74 77 61 72 65 20 72 6f 75 74 65 72 2c 20 74 68 69 73 20 69 73 20 6c 65 73 73 20 6f 66 20 61 | ftware.router,.this.is.less.of.a |
| a0fe0 | 20 63 6f 6e 63 65 72 6e 2e 20 4f 70 65 6e 56 50 4e 20 68 61 73 20 62 65 65 6e 20 77 69 64 65 6c | .concern..OpenVPN.has.been.widel |
| a1000 | 79 20 75 73 65 64 20 6f 6e 20 74 68 65 20 55 4e 49 58 20 70 6c 61 74 66 6f 72 6d 20 66 6f 72 20 | y.used.on.the.UNIX.platform.for. |
| a1020 | 61 20 6c 6f 6e 67 20 74 69 6d 65 20 61 6e 64 20 69 73 20 61 20 70 6f 70 75 6c 61 72 20 6f 70 74 | a.long.time.and.is.a.popular.opt |
| a1040 | 69 6f 6e 20 66 6f 72 20 72 65 6d 6f 74 65 20 61 63 63 65 73 73 20 56 50 4e 2c 20 74 68 6f 75 67 | ion.for.remote.access.VPN,.thoug |
| a1060 | 68 20 69 74 27 73 20 61 6c 73 6f 20 63 61 70 61 62 6c 65 20 6f 66 20 73 69 74 65 2d 74 6f 2d 73 | h.it's.also.capable.of.site-to-s |
| a1080 | 69 74 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2e 00 54 72 61 66 66 69 63 20 46 69 6c 74 65 72 73 | ite.connections..Traffic.Filters |
| a10a0 | 00 54 72 61 66 66 69 63 20 46 69 6c 74 65 72 73 20 61 72 65 20 75 73 65 64 20 74 6f 20 63 6f 6e | .Traffic.Filters.are.used.to.con |
| a10c0 | 74 72 6f 6c 20 77 68 69 63 68 20 70 61 63 6b 65 74 73 20 77 69 6c 6c 20 68 61 76 65 20 74 68 65 | trol.which.packets.will.have.the |
| a10e0 | 20 64 65 66 69 6e 65 64 20 4e 41 54 20 72 75 6c 65 73 20 61 70 70 6c 69 65 64 2e 20 46 69 76 65 | .defined.NAT.rules.applied..Five |
| a1100 | 20 64 69 66 66 65 72 65 6e 74 20 66 69 6c 74 65 72 73 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 | .different.filters.can.be.applie |
| a1120 | 64 20 77 69 74 68 69 6e 20 61 20 4e 41 54 20 72 75 6c 65 2e 00 54 72 61 66 66 69 63 20 4d 61 74 | d.within.a.NAT.rule..Traffic.Mat |
| a1140 | 63 68 20 47 72 6f 75 70 00 54 72 61 66 66 69 63 20 50 6f 6c 69 63 79 00 54 72 61 66 66 69 63 20 | ch.Group.Traffic.Policy.Traffic. |
| a1160 | 63 61 6e 6e 6f 74 20 66 6c 6f 77 20 62 65 74 77 65 65 6e 20 61 20 7a 6f 6e 65 20 6d 65 6d 62 65 | cannot.flow.between.a.zone.membe |
| a1180 | 72 20 69 6e 74 65 72 66 61 63 65 20 61 6e 64 20 61 6e 79 20 69 6e 74 65 72 66 61 63 65 20 74 68 | r.interface.and.any.interface.th |
| a11a0 | 61 74 20 69 73 20 6e 6f 74 20 61 20 7a 6f 6e 65 20 6d 65 6d 62 65 72 2e 00 54 72 61 66 66 69 63 | at.is.not.a.zone.member..Traffic |
| a11c0 | 20 63 61 6e 6e 6f 74 20 66 6c 6f 77 20 62 65 74 77 65 65 6e 20 7a 6f 6e 65 20 6d 65 6d 62 65 72 | .cannot.flow.between.zone.member |
| a11e0 | 20 69 6e 74 65 72 66 61 63 65 20 61 6e 64 20 61 6e 79 20 69 6e 74 65 72 66 61 63 65 20 74 68 61 | .interface.and.any.interface.tha |
| a1200 | 74 20 69 73 20 6e 6f 74 20 61 20 7a 6f 6e 65 20 6d 65 6d 62 65 72 2e 00 54 72 61 66 66 69 63 20 | t.is.not.a.zone.member..Traffic. |
| a1220 | 66 72 6f 6d 20 6d 75 6c 74 69 63 61 73 74 20 73 6f 75 72 63 65 73 20 77 69 6c 6c 20 67 6f 20 74 | from.multicast.sources.will.go.t |
| a1240 | 6f 20 74 68 65 20 52 65 6e 64 65 7a 76 6f 75 73 20 50 6f 69 6e 74 2c 20 61 6e 64 20 72 65 63 65 | o.the.Rendezvous.Point,.and.rece |
| a1260 | 69 76 65 72 73 20 77 69 6c 6c 20 70 75 6c 6c 20 69 74 20 66 72 6f 6d 20 61 20 73 68 61 72 65 64 | ivers.will.pull.it.from.a.shared |
| a1280 | 20 74 72 65 65 20 75 73 69 6e 67 20 3a 61 62 62 72 3a 60 49 47 4d 50 20 28 49 6e 74 65 72 6e 65 | .tree.using.:abbr:`IGMP.(Interne |
| a12a0 | 74 20 47 72 6f 75 70 20 4d 61 6e 61 67 65 6d 65 6e 74 20 50 72 6f 74 6f 63 6f 6c 29 60 2e 00 54 | t.Group.Management.Protocol)`..T |
| a12c0 | 72 61 66 66 69 63 20 66 72 6f 6d 20 6d 75 6c 74 69 63 61 73 74 20 73 6f 75 72 63 65 73 20 77 69 | raffic.from.multicast.sources.wi |
| a12e0 | 6c 6c 20 67 6f 20 74 6f 20 74 68 65 20 52 65 6e 64 65 7a 76 6f 75 73 20 50 6f 69 6e 74 2c 20 61 | ll.go.to.the.Rendezvous.Point,.a |
| a1300 | 6e 64 20 72 65 63 65 69 76 65 72 73 20 77 69 6c 6c 20 70 75 6c 6c 20 69 74 20 66 72 6f 6d 20 61 | nd.receivers.will.pull.it.from.a |
| a1320 | 20 73 68 61 72 65 64 20 74 72 65 65 20 75 73 69 6e 67 20 49 47 4d 50 20 28 49 6e 74 65 72 6e 65 | .shared.tree.using.IGMP.(Interne |
| a1340 | 74 20 47 72 6f 75 70 20 4d 61 6e 61 67 65 6d 65 6e 74 20 50 72 6f 74 6f 63 6f 6c 29 2e 00 54 72 | t.Group.Management.Protocol)..Tr |
| a1360 | 61 66 66 69 63 20 66 72 6f 6d 20 6d 75 6c 74 69 63 61 73 74 20 73 6f 75 72 63 65 73 20 77 69 6c | affic.from.multicast.sources.wil |
| a1380 | 6c 20 67 6f 20 74 6f 20 74 68 65 20 52 65 6e 64 65 7a 76 6f 75 73 20 50 6f 69 6e 74 2c 20 61 6e | l.go.to.the.Rendezvous.Point,.an |
| a13a0 | 64 20 72 65 63 65 69 76 65 72 73 20 77 69 6c 6c 20 70 75 6c 6c 20 69 74 20 66 72 6f 6d 20 61 20 | d.receivers.will.pull.it.from.a. |
| a13c0 | 73 68 61 72 65 64 20 74 72 65 65 20 75 73 69 6e 67 20 4d 4c 44 20 28 4d 75 6c 74 69 63 61 73 74 | shared.tree.using.MLD.(Multicast |
| a13e0 | 20 4c 69 73 74 65 6e 65 72 20 44 69 73 63 6f 76 65 72 79 29 2e 00 54 72 61 66 66 69 63 20 6d 75 | .Listener.Discovery)..Traffic.mu |
| a1400 | 73 74 20 62 65 20 73 79 6d 6d 65 74 72 69 63 00 54 72 61 66 66 69 63 20 77 68 69 63 68 20 69 73 | st.be.symmetric.Traffic.which.is |
| a1420 | 20 72 65 63 65 69 76 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 20 6f 6e 20 61 6e 20 69 6e | .received.by.the.router.on.an.in |
| a1440 | 74 65 72 66 61 63 65 20 77 68 69 63 68 20 69 73 20 6d 65 6d 62 65 72 20 6f 66 20 61 20 62 72 69 | terface.which.is.member.of.a.bri |
| a1460 | 64 67 65 20 69 73 20 70 72 6f 63 65 73 73 65 64 20 6f 6e 20 74 68 65 20 2a 2a 42 72 69 64 67 65 | dge.is.processed.on.the.**Bridge |
| a1480 | 20 4c 61 79 65 72 2a 2a 2e 20 41 20 73 69 6d 70 6c 69 66 69 65 64 20 70 61 63 6b 65 74 20 66 6c | .Layer**..A.simplified.packet.fl |
| a14a0 | 6f 77 20 64 69 61 67 72 61 6d 20 66 6f 72 20 74 68 69 73 20 6c 61 79 65 72 20 69 73 20 73 68 6f | ow.diagram.for.this.layer.is.sho |
| a14c0 | 77 6e 20 6e 65 78 74 3a 00 54 72 61 66 66 69 63 20 77 68 69 63 68 20 69 73 20 72 65 63 65 69 76 | wn.next:.Traffic.which.is.receiv |
| a14e0 | 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 20 6f 6e 20 61 6e 20 69 6e 74 65 72 66 61 63 65 | ed.by.the.router.on.an.interface |
| a1500 | 20 77 68 69 63 68 20 69 73 20 6d 65 6d 62 65 72 20 6f 66 20 61 20 62 72 69 64 67 65 20 69 73 20 | .which.is.member.of.a.bridge.is. |
| a1520 | 70 72 6f 63 65 73 73 65 64 20 6f 6e 20 74 68 65 20 2a 2a 42 72 69 64 67 65 20 4c 61 79 65 72 2a | processed.on.the.**Bridge.Layer* |
| a1540 | 2a 2e 20 42 65 66 6f 72 65 20 74 68 65 20 62 72 69 64 67 65 20 64 65 63 69 73 69 6f 6e 20 69 73 | *..Before.the.bridge.decision.is |
| a1560 | 20 6d 61 64 65 2c 20 61 6c 6c 20 70 61 63 6b 65 74 73 20 61 72 65 20 61 6e 61 6c 79 7a 65 64 20 | .made,.all.packets.are.analyzed. |
| a1580 | 61 74 20 2a 2a 50 72 65 72 6f 75 74 69 6e 67 2a 2a 2e 20 46 69 72 73 74 20 66 69 6c 74 65 72 73 | at.**Prerouting**..First.filters |
| a15a0 | 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 64 20 68 65 72 65 2c 20 61 6e 64 20 61 6c 73 6f 20 72 | .can.be.applied.here,.and.also.r |
| a15c0 | 75 6c 65 73 20 66 6f 72 20 69 67 6e 6f 72 69 6e 67 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 | ules.for.ignoring.connection.tra |
| a15e0 | 63 6b 69 6e 67 20 73 79 73 74 65 6d 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 2e 20 | cking.system.can.be.configured.. |
| a1600 | 54 68 65 20 72 65 6c 65 76 61 6e 74 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 | The.relevant.configuration.that. |
| a1620 | 61 63 74 73 20 69 6e 20 2a 2a 70 72 65 72 6f 75 74 69 6e 67 2a 2a 20 69 73 3a 00 54 72 61 6e 73 | acts.in.**prerouting**.is:.Trans |
| a1640 | 69 74 69 6f 6e 20 73 63 72 69 70 74 73 00 54 72 61 6e 73 69 74 69 6f 6e 20 73 63 72 69 70 74 73 | ition.scripts.Transition.scripts |
| a1660 | 20 63 61 6e 20 68 65 6c 70 20 79 6f 75 20 69 6d 70 6c 65 6d 65 6e 74 20 76 61 72 69 6f 75 73 20 | .can.help.you.implement.various. |
| a1680 | 66 69 78 75 70 73 2c 20 73 75 63 68 20 61 73 20 73 74 61 72 74 69 6e 67 20 61 6e 64 20 73 74 6f | fixups,.such.as.starting.and.sto |
| a16a0 | 70 70 69 6e 67 20 73 65 72 76 69 63 65 73 2c 20 6f 72 20 65 76 65 6e 20 6d 6f 64 69 66 79 69 6e | pping.services,.or.even.modifyin |
| a16c0 | 67 20 74 68 65 20 56 79 4f 53 20 63 6f 6e 66 69 67 20 6f 6e 20 56 52 52 50 20 74 72 61 6e 73 69 | g.the.VyOS.config.on.VRRP.transi |
| a16e0 | 74 69 6f 6e 2e 20 54 68 69 73 20 73 65 74 75 70 20 77 69 6c 6c 20 6d 61 6b 65 20 74 68 65 20 56 | tion..This.setup.will.make.the.V |
| a1700 | 52 52 50 20 70 72 6f 63 65 73 73 20 65 78 65 63 75 74 65 20 74 68 65 20 60 60 2f 63 6f 6e 66 69 | RRP.process.execute.the.``/confi |
| a1720 | 67 2f 73 63 72 69 70 74 73 2f 76 72 72 70 2d 66 61 69 6c 2e 73 68 60 60 20 77 69 74 68 20 61 72 | g/scripts/vrrp-fail.sh``.with.ar |
| a1740 | 67 75 6d 65 6e 74 20 60 60 46 6f 6f 60 60 20 77 68 65 6e 20 56 52 52 50 20 66 61 69 6c 73 2c 20 | gument.``Foo``.when.VRRP.fails,. |
| a1760 | 61 6e 64 20 74 68 65 20 60 60 2f 63 6f 6e 66 69 67 2f 73 63 72 69 70 74 73 2f 76 72 72 70 2d 6d | and.the.``/config/scripts/vrrp-m |
| a1780 | 61 73 74 65 72 2e 73 68 60 60 20 77 68 65 6e 20 74 68 65 20 72 6f 75 74 65 72 20 62 65 63 6f 6d | aster.sh``.when.the.router.becom |
| a17a0 | 65 73 20 74 68 65 20 6d 61 73 74 65 72 3a 00 54 72 61 6e 73 70 61 72 65 6e 74 20 50 72 6f 78 79 | es.the.master:.Transparent.Proxy |
| a17c0 | 00 54 72 6f 75 62 6c 65 73 68 6f 6f 74 69 6e 67 00 54 75 6e 69 6e 67 20 63 6f 6d 6d 61 6e 64 73 | .Troubleshooting.Tuning.commands |
| a17e0 | 00 54 75 6e 6e 65 6c 00 54 75 6e 6e 65 6c 20 6b 65 79 73 00 54 75 6e 6e 65 6c 20 70 61 73 73 77 | .Tunnel.Tunnel.keys.Tunnel.passw |
| a1800 | 6f 72 64 20 75 73 65 64 20 74 6f 20 61 75 74 68 65 6e 74 69 63 61 74 65 20 74 68 65 20 63 6c 69 | ord.used.to.authenticate.the.cli |
| a1820 | 65 6e 74 20 28 4c 41 43 29 00 54 75 72 6e 20 6f 6e 20 66 6c 6f 77 2d 62 61 73 65 64 20 74 69 6d | ent.(LAC).Turn.on.flow-based.tim |
| a1840 | 65 73 74 61 6d 70 20 65 78 74 65 6e 73 69 6f 6e 2e 00 54 77 6f 20 65 6e 76 69 72 6f 6e 6d 65 6e | estamp.extension..Two.environmen |
| a1860 | 74 20 76 61 72 69 61 62 6c 65 73 20 61 72 65 20 61 76 61 69 6c 61 62 6c 65 3a 00 54 77 6f 20 69 | t.variables.are.available:.Two.i |
| a1880 | 6e 74 65 72 66 61 63 65 73 20 61 72 65 20 67 6f 69 6e 67 20 74 6f 20 62 65 20 75 73 65 64 20 69 | nterfaces.are.going.to.be.used.i |
| a18a0 | 6e 20 74 68 65 20 66 6c 6f 77 74 61 62 6c 65 73 3a 20 65 74 68 30 20 61 6e 64 20 65 74 68 31 00 | n.the.flowtables:.eth0.and.eth1. |
| a18c0 | 54 77 6f 20 6e 65 77 20 66 69 6c 65 73 20 60 60 2f 63 6f 6e 66 69 67 2f 61 75 74 68 2f 69 64 5f | Two.new.files.``/config/auth/id_ |
| a18e0 | 72 73 61 5f 72 70 6b 69 60 60 20 61 6e 64 20 60 60 2f 63 6f 6e 66 69 67 2f 61 75 74 68 2f 69 64 | rsa_rpki``.and.``/config/auth/id |
| a1900 | 5f 72 73 61 5f 72 70 6b 69 2e 70 75 62 60 60 20 77 69 6c 6c 20 62 65 20 63 72 65 61 74 65 64 2e | _rsa_rpki.pub``.will.be.created. |
| a1920 | 00 54 77 6f 20 6f 70 74 69 6f 6e 73 20 61 72 65 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 60 | .Two.options.are.available.for.` |
| a1940 | 6d 6f 64 65 60 3a 20 65 69 74 68 65 72 20 60 6c 6f 61 64 60 20 61 6e 64 20 72 65 70 6c 61 63 65 | mode`:.either.`load`.and.replace |
| a1960 | 20 6f 72 20 60 73 65 74 60 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 73 65 63 74 | .or.`set`.the.configuration.sect |
| a1980 | 69 6f 6e 2e 00 54 77 6f 20 72 6f 75 74 65 72 73 20 63 6f 6e 6e 65 63 74 65 64 20 62 6f 74 68 20 | ion..Two.routers.connected.both. |
| a19a0 | 76 69 61 20 65 74 68 31 20 74 68 72 6f 75 67 68 20 61 6e 20 75 6e 74 72 75 73 74 65 64 20 73 77 | via.eth1.through.an.untrusted.sw |
| a19c0 | 69 74 63 68 00 54 79 70 65 20 6f 66 20 6d 65 74 72 69 63 73 20 67 72 6f 75 70 69 6e 67 20 77 68 | itch.Type.of.metrics.grouping.wh |
| a19e0 | 65 6e 20 70 75 73 68 20 74 6f 20 41 7a 75 72 65 20 44 61 74 61 20 45 78 70 6c 6f 72 65 72 2e 20 | en.push.to.Azure.Data.Explorer.. |
| a1a00 | 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 60 60 74 61 62 6c 65 2d 70 65 72 2d 6d 65 74 72 69 | The.default.is.``table-per-metri |
| a1a20 | 63 60 60 2e 00 54 79 70 65 2d 31 20 28 45 41 44 2d 70 65 72 2d 45 53 20 61 6e 64 20 45 41 44 2d | c``..Type-1.(EAD-per-ES.and.EAD- |
| a1a40 | 70 65 72 2d 45 56 49 29 20 72 6f 75 74 65 73 20 61 72 65 20 75 73 65 64 20 74 6f 20 61 64 76 65 | per-EVI).routes.are.used.to.adve |
| a1a60 | 72 74 69 73 65 20 74 68 65 20 6c 6f 63 61 6c 6c 79 20 61 74 74 61 63 68 65 64 20 45 53 73 20 61 | rtise.the.locally.attached.ESs.a |
| a1a80 | 6e 64 20 74 6f 20 6c 65 61 72 6e 20 6f 66 66 20 72 65 6d 6f 74 65 20 45 53 73 20 69 6e 20 74 68 | nd.to.learn.off.remote.ESs.in.th |
| a1aa0 | 65 20 6e 65 74 77 6f 72 6b 2e 20 4c 6f 63 61 6c 20 54 79 70 65 2d 32 2f 4d 41 43 2d 49 50 20 72 | e.network..Local.Type-2/MAC-IP.r |
| a1ac0 | 6f 75 74 65 73 20 61 72 65 20 61 6c 73 6f 20 61 64 76 65 72 74 69 73 65 64 20 77 69 74 68 20 61 | outes.are.also.advertised.with.a |
| a1ae0 | 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 45 53 49 20 61 6c 6c 6f 77 69 6e 67 20 66 6f 72 20 4d 41 | .destination.ESI.allowing.for.MA |
| a1b00 | 43 2d 49 50 20 73 79 6e 63 69 6e 67 20 62 65 74 77 65 65 6e 20 45 74 68 65 72 6e 65 74 20 53 65 | C-IP.syncing.between.Ethernet.Se |
| a1b20 | 67 6d 65 6e 74 20 70 65 65 72 73 2e 20 52 65 66 65 72 65 6e 63 65 3a 20 52 46 43 20 37 34 33 32 | gment.peers..Reference:.RFC.7432 |
| a1b40 | 2c 20 52 46 43 20 38 33 36 35 00 54 79 70 65 2d 34 20 28 45 53 52 29 20 72 6f 75 74 65 73 20 61 | ,.RFC.8365.Type-4.(ESR).routes.a |
| a1b60 | 72 65 20 75 73 65 64 20 66 6f 72 20 44 65 73 69 67 6e 61 74 65 64 20 46 6f 72 77 61 72 64 65 72 | re.used.for.Designated.Forwarder |
| a1b80 | 20 28 44 46 29 20 65 6c 65 63 74 69 6f 6e 2e 20 44 46 73 20 66 6f 72 77 61 72 64 20 42 55 4d 20 | .(DF).election..DFs.forward.BUM. |
| a1ba0 | 74 72 61 66 66 69 63 20 72 65 63 65 69 76 65 64 20 76 69 61 20 74 68 65 20 6f 76 65 72 6c 61 79 | traffic.received.via.the.overlay |
| a1bc0 | 20 6e 65 74 77 6f 72 6b 2e 20 54 68 69 73 20 69 6d 70 6c 65 6d 65 6e 74 61 74 69 6f 6e 20 75 73 | .network..This.implementation.us |
| a1be0 | 65 73 20 61 20 70 72 65 66 65 72 65 6e 63 65 20 62 61 73 65 64 20 44 46 20 65 6c 65 63 74 69 6f | es.a.preference.based.DF.electio |
| a1c00 | 6e 20 73 70 65 63 69 66 69 65 64 20 62 79 20 64 72 61 66 74 2d 69 65 74 66 2d 62 65 73 73 2d 65 | n.specified.by.draft-ietf-bess-e |
| a1c20 | 76 70 6e 2d 70 72 65 66 2d 64 66 2e 00 54 79 70 69 63 61 6c 6c 79 2c 20 61 20 31 2d 74 6f 2d 31 | vpn-pref-df..Typically,.a.1-to-1 |
| a1c40 | 20 4e 41 54 20 72 75 6c 65 20 6f 6d 69 74 73 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 | .NAT.rule.omits.the.destination. |
| a1c60 | 70 6f 72 74 20 28 61 6c 6c 20 70 6f 72 74 73 29 20 61 6e 64 20 72 65 70 6c 61 63 65 73 20 74 68 | port.(all.ports).and.replaces.th |
| a1c80 | 65 20 70 72 6f 74 6f 63 6f 6c 20 77 69 74 68 20 65 69 74 68 65 72 20 2a 2a 61 6c 6c 2a 2a 20 6f | e.protocol.with.either.**all**.o |
| a1ca0 | 72 20 2a 2a 69 70 2a 2a 2e 00 55 44 50 20 42 72 6f 61 64 63 61 73 74 20 52 65 6c 61 79 00 55 44 | r.**ip**..UDP.Broadcast.Relay.UD |
| a1cc0 | 50 20 6d 6f 64 65 20 77 6f 72 6b 73 20 62 65 74 74 65 72 20 77 69 74 68 20 4e 41 54 3a 00 55 44 | P.mode.works.better.with.NAT:.UD |
| a1ce0 | 50 20 70 6f 72 74 20 31 37 30 31 20 66 6f 72 20 49 50 73 65 63 00 55 44 50 20 70 6f 72 74 20 34 | P.port.1701.for.IPsec.UDP.port.4 |
| a1d00 | 35 30 30 20 28 4e 41 54 2d 54 29 00 55 44 50 20 70 6f 72 74 20 35 30 30 20 28 49 4b 45 29 00 55 | 500.(NAT-T).UDP.port.500.(IKE).U |
| a1d20 | 52 4c 20 46 69 6c 74 65 72 69 6e 67 20 69 73 20 70 72 6f 76 69 64 65 64 20 62 79 20 53 71 75 69 | RL.Filtering.is.provided.by.Squi |
| a1d40 | 64 47 75 61 72 64 5f 2e 00 55 52 4c 20 66 69 6c 74 65 72 69 6e 67 00 55 52 4c 20 77 69 74 68 20 | dGuard_..URL.filtering.URL.with. |
| a1d60 | 73 69 67 6e 61 74 75 72 65 20 6f 66 20 6d 61 73 74 65 72 20 66 6f 72 20 61 75 74 68 20 72 65 70 | signature.of.master.for.auth.rep |
| a1d80 | 6c 79 20 76 65 72 69 66 69 63 61 74 69 6f 6e 00 55 53 42 20 74 6f 20 73 65 72 69 61 6c 20 63 6f | ly.verification.USB.to.serial.co |
| a1da0 | 6e 76 65 72 74 65 72 73 20 77 69 6c 6c 20 68 61 6e 64 6c 65 20 6d 6f 73 74 20 6f 66 20 74 68 65 | nverters.will.handle.most.of.the |
| a1dc0 | 69 72 20 77 6f 72 6b 20 69 6e 20 73 6f 66 74 77 61 72 65 20 73 6f 20 79 6f 75 20 73 68 6f 75 6c | ir.work.in.software.so.you.shoul |
| a1de0 | 64 20 62 65 20 63 61 72 65 66 75 6c 6c 20 77 69 74 68 20 74 68 65 20 73 65 6c 65 63 74 65 64 20 | d.be.carefull.with.the.selected. |
| a1e00 | 62 61 75 64 72 61 74 65 20 61 73 20 73 6f 6d 65 20 74 69 6d 65 73 20 74 68 65 79 20 63 61 6e 27 | baudrate.as.some.times.they.can' |
| a1e20 | 74 20 63 6f 70 65 20 77 69 74 68 20 74 68 65 20 65 78 70 65 63 74 65 64 20 73 70 65 65 64 2e 00 | t.cope.with.the.expected.speed.. |
| a1e40 | 55 55 43 50 20 73 75 62 73 79 73 74 65 6d 00 55 6e 64 65 72 20 73 6f 6d 65 20 63 69 72 63 75 6d | UUCP.subsystem.Under.some.circum |
| a1e60 | 73 74 61 6e 63 65 73 2c 20 4c 52 4f 20 69 73 20 6b 6e 6f 77 6e 20 74 6f 20 6d 6f 64 69 66 79 20 | stances,.LRO.is.known.to.modify. |
| a1e80 | 74 68 65 20 70 61 63 6b 65 74 20 68 65 61 64 65 72 73 20 6f 66 20 66 6f 72 77 61 72 64 65 64 20 | the.packet.headers.of.forwarded. |
| a1ea0 | 74 72 61 66 66 69 63 2c 20 77 68 69 63 68 20 62 72 65 61 6b 73 20 74 68 65 20 65 6e 64 2d 74 6f | traffic,.which.breaks.the.end-to |
| a1ec0 | 2d 65 6e 64 20 70 72 69 6e 63 69 70 6c 65 20 6f 66 20 63 6f 6d 70 75 74 65 72 20 6e 65 74 77 6f | -end.principle.of.computer.netwo |
| a1ee0 | 72 6b 69 6e 67 2e 20 4c 52 4f 20 69 73 20 61 6c 73 6f 20 6f 6e 6c 79 20 61 62 6c 65 20 74 6f 20 | rking..LRO.is.also.only.able.to. |
| a1f00 | 6f 66 66 6c 6f 61 64 20 54 43 50 20 73 65 67 6d 65 6e 74 73 20 65 6e 63 61 70 73 75 6c 61 74 65 | offload.TCP.segments.encapsulate |
| a1f20 | 64 20 69 6e 20 49 50 76 34 20 70 61 63 6b 65 74 73 2e 20 44 75 65 20 74 6f 20 74 68 65 73 65 20 | d.in.IPv4.packets..Due.to.these. |
| a1f40 | 6c 69 6d 69 74 61 74 69 6f 6e 73 2c 20 69 74 20 69 73 20 72 65 63 6f 6d 6d 65 6e 64 65 64 20 74 | limitations,.it.is.recommended.t |
| a1f60 | 6f 20 75 73 65 20 47 52 4f 20 28 47 65 6e 65 72 69 63 20 52 65 63 65 69 76 65 20 4f 66 66 6c 6f | o.use.GRO.(Generic.Receive.Offlo |
| a1f80 | 61 64 29 20 77 68 65 72 65 20 70 6f 73 73 69 62 6c 65 2e 20 4d 6f 72 65 20 69 6e 66 6f 72 6d 61 | ad).where.possible..More.informa |
| a1fa0 | 74 69 6f 6e 20 6f 6e 20 74 68 65 20 6c 69 6d 69 74 61 74 69 6f 6e 73 20 6f 66 20 4c 52 4f 20 63 | tion.on.the.limitations.of.LRO.c |
| a1fc0 | 61 6e 20 62 65 20 66 6f 75 6e 64 20 68 65 72 65 3a 20 68 74 74 70 73 3a 2f 2f 6c 77 6e 2e 6e 65 | an.be.found.here:.https://lwn.ne |
| a1fe0 | 74 2f 41 72 74 69 63 6c 65 73 2f 33 35 38 39 31 30 2f 00 55 6e 69 63 61 73 74 00 55 6e 69 63 61 | t/Articles/358910/.Unicast.Unica |
| a2000 | 73 74 20 56 52 52 50 00 55 6e 69 63 61 73 74 20 56 58 4c 41 4e 00 55 6e 69 74 20 6f 66 20 74 68 | st.VRRP.Unicast.VXLAN.Unit.of.th |
| a2020 | 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 4d 42 2e 00 55 6e 69 74 73 00 55 6e 74 69 6c 20 56 79 | is.command.is.MB..Units.Until.Vy |
| a2040 | 4f 53 20 31 2e 34 2c 20 74 68 65 20 6f 6e 6c 79 20 6f 70 74 69 6f 6e 20 66 6f 72 20 73 69 74 65 | OS.1.4,.the.only.option.for.site |
| a2060 | 2d 74 6f 2d 73 69 74 65 20 4f 70 65 6e 56 50 4e 20 77 69 74 68 6f 75 74 20 50 4b 49 20 77 61 73 | -to-site.OpenVPN.without.PKI.was |
| a2080 | 20 74 6f 20 75 73 65 20 70 72 65 2d 73 68 61 72 65 64 20 6b 65 79 73 2e 20 54 68 61 74 20 6f 70 | .to.use.pre-shared.keys..That.op |
| a20a0 | 74 69 6f 6e 20 69 73 20 73 74 69 6c 6c 20 61 76 61 69 6c 61 62 6c 65 20 62 75 74 20 69 74 20 69 | tion.is.still.available.but.it.i |
| a20c0 | 73 20 64 65 70 72 65 63 61 74 65 64 20 61 6e 64 20 77 69 6c 6c 20 62 65 20 72 65 6d 6f 76 65 64 | s.deprecated.and.will.be.removed |
| a20e0 | 20 69 6e 20 74 68 65 20 66 75 74 75 72 65 2e 20 48 6f 77 65 76 65 72 2c 20 69 66 20 79 6f 75 20 | .in.the.future..However,.if.you. |
| a2100 | 6e 65 65 64 20 74 6f 20 73 65 74 20 75 70 20 61 20 74 75 6e 6e 65 6c 20 74 6f 20 61 6e 20 6f 6c | need.to.set.up.a.tunnel.to.an.ol |
| a2120 | 64 65 72 20 56 79 4f 53 20 76 65 72 73 69 6f 6e 20 6f 72 20 61 20 73 79 73 74 65 6d 20 77 69 74 | der.VyOS.version.or.a.system.wit |
| a2140 | 68 20 6f 6c 64 65 72 20 4f 70 65 6e 56 50 4e 2c 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 73 74 69 | h.older.OpenVPN,.you.need.to.sti |
| a2160 | 6c 6c 20 6e 65 65 64 20 74 6f 20 6b 6e 6f 77 20 68 6f 77 20 74 6f 20 75 73 65 20 69 74 2e 00 55 | ll.need.to.know.how.to.use.it..U |
| a2180 | 70 20 74 6f 20 73 65 76 65 6e 20 71 75 65 75 65 73 20 2d 64 65 66 69 6e 65 64 20 61 73 20 63 6c | p.to.seven.queues.-defined.as.cl |
| a21a0 | 61 73 73 65 73 5f 20 77 69 74 68 20 64 69 66 66 65 72 65 6e 74 20 70 72 69 6f 72 69 74 69 65 73 | asses_.with.different.priorities |
| a21c0 | 2d 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 2e 20 50 61 63 6b 65 74 73 20 61 72 65 | -.can.be.configured..Packets.are |
| a21e0 | 20 70 6c 61 63 65 64 20 69 6e 74 6f 20 71 75 65 75 65 73 20 62 61 73 65 64 20 6f 6e 20 61 73 73 | .placed.into.queues.based.on.ass |
| a2200 | 6f 63 69 61 74 65 64 20 6d 61 74 63 68 20 63 72 69 74 65 72 69 61 2e 20 50 61 63 6b 65 74 73 20 | ociated.match.criteria..Packets. |
| a2220 | 61 72 65 20 74 72 61 6e 73 6d 69 74 74 65 64 20 66 72 6f 6d 20 74 68 65 20 71 75 65 75 65 73 20 | are.transmitted.from.the.queues. |
| a2240 | 69 6e 20 70 72 69 6f 72 69 74 79 20 6f 72 64 65 72 2e 20 49 66 20 63 6c 61 73 73 65 73 20 77 69 | in.priority.order..If.classes.wi |
| a2260 | 74 68 20 61 20 68 69 67 68 65 72 20 70 72 69 6f 72 69 74 79 20 61 72 65 20 62 65 69 6e 67 20 66 | th.a.higher.priority.are.being.f |
| a2280 | 69 6c 6c 65 64 20 77 69 74 68 20 70 61 63 6b 65 74 73 20 63 6f 6e 74 69 6e 75 6f 75 73 6c 79 2c | illed.with.packets.continuously, |
| a22a0 | 20 70 61 63 6b 65 74 73 20 66 72 6f 6d 20 6c 6f 77 65 72 20 70 72 69 6f 72 69 74 79 20 63 6c 61 | .packets.from.lower.priority.cla |
| a22c0 | 73 73 65 73 20 77 69 6c 6c 20 6f 6e 6c 79 20 62 65 20 74 72 61 6e 73 6d 69 74 74 65 64 20 61 66 | sses.will.only.be.transmitted.af |
| a22e0 | 74 65 72 20 74 72 61 66 66 69 63 20 76 6f 6c 75 6d 65 20 66 72 6f 6d 20 68 69 67 68 65 72 20 70 | ter.traffic.volume.from.higher.p |
| a2300 | 72 69 6f 72 69 74 79 20 63 6c 61 73 73 65 73 20 64 65 63 72 65 61 73 65 73 2e 00 55 70 64 61 74 | riority.classes.decreases..Updat |
| a2320 | 65 00 55 70 64 61 74 65 20 63 6f 6e 74 61 69 6e 65 72 20 69 6d 61 67 65 00 55 70 64 61 74 65 20 | e.Update.container.image.Update. |
| a2340 | 67 65 6f 69 70 20 64 61 74 61 62 61 73 65 00 55 70 64 61 74 65 73 00 55 70 64 61 74 65 73 20 66 | geoip.database.Updates.Updates.f |
| a2360 | 72 6f 6d 20 74 68 65 20 52 50 4b 49 20 63 61 63 68 65 20 73 65 72 76 65 72 73 20 61 72 65 20 64 | rom.the.RPKI.cache.servers.are.d |
| a2380 | 69 72 65 63 74 6c 79 20 61 70 70 6c 69 65 64 20 61 6e 64 20 70 61 74 68 20 73 65 6c 65 63 74 69 | irectly.applied.and.path.selecti |
| a23a0 | 6f 6e 20 69 73 20 75 70 64 61 74 65 64 20 61 63 63 6f 72 64 69 6e 67 6c 79 2e 20 28 53 6f 66 74 | on.is.updated.accordingly..(Soft |
| a23c0 | 20 72 65 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d 75 73 74 20 62 65 20 65 6e 61 62 6c 65 64 | .reconfiguration.must.be.enabled |
| a23e0 | 20 66 6f 72 20 74 68 69 73 20 74 6f 20 77 6f 72 6b 29 2e 00 55 70 6c 69 6e 6b 2f 43 6f 72 65 20 | .for.this.to.work)..Uplink/Core. |
| a2400 | 74 72 61 63 6b 69 6e 67 2e 00 55 70 6c 6f 61 64 20 62 61 6e 64 77 69 64 74 68 20 6c 69 6d 69 74 | tracking..Upload.bandwidth.limit |
| a2420 | 20 69 6e 20 6b 62 69 74 2f 73 20 66 6f 72 20 60 3c 75 73 65 72 3e 60 2e 00 55 70 6c 6f 61 64 20 | .in.kbit/s.for.`<user>`..Upload. |
| a2440 | 62 61 6e 64 77 69 64 74 68 20 6c 69 6d 69 74 20 69 6e 20 6b 62 69 74 2f 73 20 66 6f 72 20 66 6f | bandwidth.limit.in.kbit/s.for.fo |
| a2460 | 72 20 75 73 65 72 20 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 60 3c 69 6e 74 65 72 66 61 63 65 3e | r.user.on.interface.`<interface> |
| a2480 | 60 2e 00 55 70 6f 6e 20 72 65 63 65 70 74 69 6f 6e 20 6f 66 20 61 6e 20 69 6e 63 6f 6d 69 6e 67 | `..Upon.reception.of.an.incoming |
| a24a0 | 20 70 61 63 6b 65 74 2c 20 77 68 65 6e 20 61 20 72 65 73 70 6f 6e 73 65 20 69 73 20 73 65 6e 74 | .packet,.when.a.response.is.sent |
| a24c0 | 2c 20 69 74 20 6d 69 67 68 74 20 62 65 20 64 65 73 69 72 65 64 20 74 6f 20 65 6e 73 75 72 65 20 | ,.it.might.be.desired.to.ensure. |
| a24e0 | 74 68 61 74 20 69 74 20 6c 65 61 76 65 73 20 66 72 6f 6d 20 74 68 65 20 73 61 6d 65 20 69 6e 74 | that.it.leaves.from.the.same.int |
| a2500 | 65 72 66 61 63 65 20 61 73 20 74 68 65 20 69 6e 62 6f 75 6e 64 20 6f 6e 65 2e 20 54 68 69 73 20 | erface.as.the.inbound.one..This. |
| a2520 | 63 61 6e 20 62 65 20 61 63 68 69 65 76 65 64 20 62 79 20 65 6e 61 62 6c 69 6e 67 20 73 74 69 63 | can.be.achieved.by.enabling.stic |
| a2540 | 6b 79 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 69 6e 20 74 68 65 20 6c 6f 61 64 20 62 61 6c 61 6e | ky.connections.in.the.load.balan |
| a2560 | 63 69 6e 67 3a 00 55 70 6f 6e 20 73 68 75 74 64 6f 77 6e 2c 20 74 68 69 73 20 6f 70 74 69 6f 6e | cing:.Upon.shutdown,.this.option |
| a2580 | 20 77 69 6c 6c 20 64 65 70 72 65 63 61 74 65 20 74 68 65 20 70 72 65 66 69 78 20 62 79 20 61 6e | .will.deprecate.the.prefix.by.an |
| a25a0 | 6e 6f 75 6e 63 69 6e 67 20 69 74 20 69 6e 20 74 68 65 20 73 68 75 74 64 6f 77 6e 20 52 41 00 55 | nouncing.it.in.the.shutdown.RA.U |
| a25c0 | 73 61 62 6c 65 20 50 6f 72 74 73 20 2f 20 50 6f 72 74 73 20 70 65 72 20 53 75 62 73 63 72 69 62 | sable.Ports./.Ports.per.Subscrib |
| a25e0 | 65 72 00 55 73 61 62 6c 65 20 50 6f 72 74 73 3a 20 36 35 35 33 36 20 2d 20 31 30 32 34 20 3d 20 | er.Usable.Ports:.65536.-.1024.=. |
| a2600 | 36 34 35 31 32 00 55 73 65 20 38 30 32 2e 31 31 61 78 20 70 72 6f 74 6f 63 6f 6c 00 55 73 65 20 | 64512.Use.802.11ax.protocol.Use. |
| a2620 | 38 30 32 2e 31 31 6e 20 70 72 6f 74 6f 63 6f 6c 00 55 73 65 20 3a 61 62 62 72 3a 60 44 48 20 28 | 802.11n.protocol.Use.:abbr:`DH.( |
| a2640 | 44 69 66 66 69 65 e2 80 93 48 65 6c 6c 6d 61 6e 29 60 20 70 61 72 61 6d 65 74 65 72 73 20 66 72 | Diffie...Hellman)`.parameters.fr |
| a2660 | 6f 6d 20 50 4b 49 20 73 75 62 73 79 73 74 65 6d 2e 20 4d 75 73 74 20 62 65 20 61 74 20 6c 65 61 | om.PKI.subsystem..Must.be.at.lea |
| a2680 | 73 74 20 32 30 34 38 20 62 69 74 73 20 69 6e 20 6c 65 6e 67 74 68 2e 00 55 73 65 20 43 41 20 63 | st.2048.bits.in.length..Use.CA.c |
| a26a0 | 65 72 74 69 66 69 63 61 74 65 20 66 72 6f 6d 20 50 4b 49 20 73 75 62 73 79 73 74 65 6d 00 55 73 | ertificate.from.PKI.subsystem.Us |
| a26c0 | 65 20 44 79 6e 44 4e 53 20 61 73 20 79 6f 75 72 20 70 72 65 66 65 72 72 65 64 20 70 72 6f 76 69 | e.DynDNS.as.your.preferred.provi |
| a26e0 | 64 65 72 3a 00 55 73 65 20 49 50 20 66 69 72 65 77 61 6c 6c 00 55 73 65 20 54 4c 53 20 62 75 74 | der:.Use.IP.firewall.Use.TLS.but |
| a2700 | 20 73 6b 69 70 20 68 6f 73 74 20 76 61 6c 69 64 61 74 69 6f 6e 00 55 73 65 20 54 4c 53 20 65 6e | .skip.host.validation.Use.TLS.en |
| a2720 | 63 72 79 70 74 69 6f 6e 2e 00 55 73 65 20 60 3c 73 75 62 6e 65 74 3e 60 20 61 73 20 74 68 65 20 | cryption..Use.`<subnet>`.as.the. |
| a2740 | 49 50 20 70 6f 6f 6c 20 66 6f 72 20 61 6c 6c 20 63 6f 6e 6e 65 63 74 69 6e 67 20 63 6c 69 65 6e | IP.pool.for.all.connecting.clien |
| a2760 | 74 73 2e 00 55 73 65 20 60 60 73 68 6f 77 20 6c 6f 67 20 7c 20 73 74 72 69 70 2d 70 72 69 76 61 | ts..Use.``show.log.|.strip-priva |
| a2780 | 74 65 60 60 20 69 66 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 68 69 64 65 20 70 72 69 76 61 74 65 | te``.if.you.want.to.hide.private |
| a27a0 | 20 64 61 74 61 20 77 68 65 6e 20 73 68 61 72 69 6e 67 20 79 6f 75 72 20 6c 6f 67 73 2e 00 55 73 | .data.when.sharing.your.logs..Us |
| a27c0 | 65 20 60 64 65 6c 65 74 65 20 73 79 73 74 65 6d 20 63 6f 6e 6e 74 72 61 63 6b 20 6d 6f 64 75 6c | e.`delete.system.conntrack.modul |
| a27e0 | 65 73 60 20 74 6f 20 64 65 61 63 74 69 76 65 20 61 6c 6c 20 6d 6f 64 75 6c 65 73 2e 00 55 73 65 | es`.to.deactive.all.modules..Use |
| a2800 | 20 61 20 70 65 72 73 69 73 74 65 6e 74 20 4c 44 41 50 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 20 4e | .a.persistent.LDAP.connection..N |
| a2820 | 6f 72 6d 61 6c 6c 79 20 74 68 65 20 4c 44 41 50 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 69 73 20 6f | ormally.the.LDAP.connection.is.o |
| a2840 | 6e 6c 79 20 6f 70 65 6e 20 77 68 69 6c 65 20 76 61 6c 69 64 61 74 69 6e 67 20 61 20 75 73 65 72 | nly.open.while.validating.a.user |
| a2860 | 6e 61 6d 65 20 74 6f 20 70 72 65 73 65 72 76 65 20 72 65 73 6f 75 72 63 65 73 20 61 74 20 74 68 | name.to.preserve.resources.at.th |
| a2880 | 65 20 4c 44 41 50 20 73 65 72 76 65 72 2e 20 54 68 69 73 20 6f 70 74 69 6f 6e 20 63 61 75 73 65 | e.LDAP.server..This.option.cause |
| a28a0 | 73 20 74 68 65 20 4c 44 41 50 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 6f 20 62 65 20 6b 65 70 74 | s.the.LDAP.connection.to.be.kept |
| a28c0 | 20 6f 70 65 6e 2c 20 61 6c 6c 6f 77 69 6e 67 20 69 74 20 74 6f 20 62 65 20 72 65 75 73 65 64 20 | .open,.allowing.it.to.be.reused. |
| a28e0 | 66 6f 72 20 66 75 72 74 68 65 72 20 75 73 65 72 20 76 61 6c 69 64 61 74 69 6f 6e 73 2e 00 55 73 | for.further.user.validations..Us |
| a2900 | 65 20 61 20 73 70 65 63 69 66 69 63 20 61 64 64 72 65 73 73 2d 67 72 6f 75 70 2e 20 50 72 65 70 | e.a.specific.address-group..Prep |
| a2920 | 65 6e 64 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 66 6f 72 20 69 6e 76 65 72 74 65 64 | end.character.``!``.for.inverted |
| a2940 | 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 2e 00 55 73 65 20 61 20 73 70 65 63 69 66 | .matching.criteria..Use.a.specif |
| a2960 | 69 63 20 61 64 64 72 65 73 73 2d 67 72 6f 75 70 2e 20 50 72 65 70 65 6e 64 69 6e 67 20 74 68 65 | ic.address-group..Prepending.the |
| a2980 | 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 74 6f 20 69 6e 76 65 72 74 20 74 68 65 20 63 | .character.``!``.to.invert.the.c |
| a29a0 | 72 69 74 65 72 69 61 20 74 6f 20 6d 61 74 63 68 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 | riteria.to.match.is.also.support |
| a29c0 | 65 64 2e 00 55 73 65 20 61 20 73 70 65 63 69 66 69 63 20 64 6f 6d 61 69 6e 2d 67 72 6f 75 70 2e | ed..Use.a.specific.domain-group. |
| a29e0 | 20 50 72 65 70 65 6e 64 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 66 6f 72 20 69 6e 76 | .Prepend.character.``!``.for.inv |
| a2a00 | 65 72 74 65 64 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 2e 00 55 73 65 20 61 20 73 | erted.matching.criteria..Use.a.s |
| a2a20 | 70 65 63 69 66 69 63 20 64 6f 6d 61 69 6e 2d 67 72 6f 75 70 2e 20 50 72 65 70 65 6e 64 69 6e 67 | pecific.domain-group..Prepending |
| a2a40 | 20 74 68 65 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 74 6f 20 69 6e 76 65 72 74 20 74 | .the.character.``!``.to.invert.t |
| a2a60 | 68 65 20 63 72 69 74 65 72 69 61 20 74 6f 20 6d 61 74 63 68 20 69 73 20 61 6c 73 6f 20 73 75 70 | he.criteria.to.match.is.also.sup |
| a2a80 | 70 6f 72 74 65 64 2e 00 55 73 65 20 61 20 73 70 65 63 69 66 69 63 20 64 79 6e 61 6d 69 63 2d 61 | ported..Use.a.specific.dynamic-a |
| a2aa0 | 64 64 72 65 73 73 2d 67 72 6f 75 70 2e 20 50 72 65 70 65 6e 64 20 63 68 61 72 61 63 74 65 72 20 | ddress-group..Prepend.character. |
| a2ac0 | 60 60 21 60 60 20 66 6f 72 20 69 6e 76 65 72 74 65 64 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 | ``!``.for.inverted.matching.crit |
| a2ae0 | 65 72 69 61 2e 00 55 73 65 20 61 20 73 70 65 63 69 66 69 63 20 64 79 6e 61 6d 69 63 2d 61 64 64 | eria..Use.a.specific.dynamic-add |
| a2b00 | 72 65 73 73 2d 67 72 6f 75 70 2e 20 50 72 65 70 65 6e 64 69 6e 67 20 74 68 65 20 63 68 61 72 61 | ress-group..Prepending.the.chara |
| a2b20 | 63 74 65 72 20 60 60 21 60 60 20 74 6f 20 69 6e 76 65 72 74 20 74 68 65 20 63 72 69 74 65 72 69 | cter.``!``.to.invert.the.criteri |
| a2b40 | 61 20 74 6f 20 6d 61 74 63 68 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 00 55 73 | a.to.match.is.also.supported..Us |
| a2b60 | 65 20 61 20 73 70 65 63 69 66 69 63 20 6d 61 63 2d 67 72 6f 75 70 2e 20 50 72 65 70 65 6e 64 20 | e.a.specific.mac-group..Prepend. |
| a2b80 | 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 66 6f 72 20 69 6e 76 65 72 74 65 64 20 6d 61 74 | character.``!``.for.inverted.mat |
| a2ba0 | 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 2e 00 55 73 65 20 61 20 73 70 65 63 69 66 69 63 20 6d | ching.criteria..Use.a.specific.m |
| a2bc0 | 61 63 2d 67 72 6f 75 70 2e 20 50 72 65 70 65 6e 64 69 6e 67 20 74 68 65 20 63 68 61 72 61 63 74 | ac-group..Prepending.the.charact |
| a2be0 | 65 72 20 60 60 21 60 60 20 74 6f 20 69 6e 76 65 72 74 20 74 68 65 20 63 72 69 74 65 72 69 61 20 | er.``!``.to.invert.the.criteria. |
| a2c00 | 74 6f 20 6d 61 74 63 68 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 00 55 73 65 20 | to.match.is.also.supported..Use. |
| a2c20 | 61 20 73 70 65 63 69 66 69 63 20 6e 65 74 77 6f 72 6b 2d 67 72 6f 75 70 2e 20 50 72 65 70 65 6e | a.specific.network-group..Prepen |
| a2c40 | 64 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 66 6f 72 20 69 6e 76 65 72 74 65 64 20 6d | d.character.``!``.for.inverted.m |
| a2c60 | 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 2e 00 55 73 65 20 61 20 73 70 65 63 69 66 69 63 | atching.criteria..Use.a.specific |
| a2c80 | 20 6e 65 74 77 6f 72 6b 2d 67 72 6f 75 70 2e 20 50 72 65 70 65 6e 64 69 6e 67 20 74 68 65 20 63 | .network-group..Prepending.the.c |
| a2ca0 | 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 74 6f 20 69 6e 76 65 72 74 20 74 68 65 20 63 72 69 | haracter.``!``.to.invert.the.cri |
| a2cc0 | 74 65 72 69 61 20 74 6f 20 6d 61 74 63 68 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 | teria.to.match.is.also.supported |
| a2ce0 | 2e 00 55 73 65 20 61 20 73 70 65 63 69 66 69 63 20 70 6f 72 74 2d 67 72 6f 75 70 2e 20 50 72 65 | ..Use.a.specific.port-group..Pre |
| a2d00 | 70 65 6e 64 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 66 6f 72 20 69 6e 76 65 72 74 65 | pend.character.``!``.for.inverte |
| a2d20 | 64 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 2e 00 55 73 65 20 61 20 73 70 65 63 69 | d.matching.criteria..Use.a.speci |
| a2d40 | 66 69 63 20 70 6f 72 74 2d 67 72 6f 75 70 2e 20 50 72 65 70 65 6e 64 69 6e 67 20 74 68 65 20 63 | fic.port-group..Prepending.the.c |
| a2d60 | 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 74 6f 20 69 6e 76 65 72 74 20 74 68 65 20 63 72 69 | haracter.``!``.to.invert.the.cri |
| a2d80 | 74 65 72 69 61 20 74 6f 20 6d 61 74 63 68 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 | teria.to.match.is.also.supported |
| a2da0 | 2e 00 55 73 65 20 61 63 74 69 76 65 2d 61 63 74 69 76 65 20 48 41 20 6d 6f 64 65 2e 00 55 73 65 | ..Use.active-active.HA.mode..Use |
| a2dc0 | 20 61 64 64 72 65 73 73 20 60 6d 61 73 71 75 65 72 61 64 65 60 20 28 74 68 65 20 69 6e 74 65 72 | .address.`masquerade`.(the.inter |
| a2de0 | 66 61 63 65 73 20 70 72 69 6d 61 72 79 20 61 64 64 72 65 73 73 29 20 6f 6e 20 72 75 6c 65 20 33 | faces.primary.address).on.rule.3 |
| a2e00 | 30 00 55 73 65 20 61 6e 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 67 65 6e 65 72 61 74 65 64 | 0.Use.an.automatically.generated |
| a2e20 | 20 73 65 6c 66 2d 73 69 67 6e 65 64 20 63 65 72 74 69 66 69 63 61 74 65 00 55 73 65 20 61 6e 79 | .self-signed.certificate.Use.any |
| a2e40 | 20 6c 6f 63 61 6c 20 61 64 64 72 65 73 73 2c 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 61 6e | .local.address,.configured.on.an |
| a2e60 | 79 20 69 6e 74 65 72 66 61 63 65 20 69 66 20 74 68 69 73 20 69 73 20 6e 6f 74 20 73 65 74 2e 00 | y.interface.if.this.is.not.set.. |
| a2e80 | 55 73 65 20 61 75 74 68 20 6b 65 79 20 66 69 6c 65 20 61 74 20 60 60 2f 63 6f 6e 66 69 67 2f 61 | Use.auth.key.file.at.``/config/a |
| a2ea0 | 75 74 68 2f 6d 79 2e 6b 65 79 60 60 00 55 73 65 20 63 65 72 74 69 66 69 63 61 74 65 20 66 72 6f | uth/my.key``.Use.certificate.fro |
| a2ec0 | 6d 20 50 4b 49 20 73 75 62 73 79 73 74 65 6d 00 55 73 65 20 63 6f 6e 66 69 67 75 72 65 64 20 60 | m.PKI.subsystem.Use.configured.` |
| a2ee0 | 3c 75 72 6c 3e 60 20 74 6f 20 64 65 74 65 72 6d 69 6e 65 20 79 6f 75 72 20 49 50 20 61 64 64 72 | <url>`.to.determine.your.IP.addr |
| a2f00 | 65 73 73 2e 20 64 64 63 6c 69 65 6e 74 5f 20 77 69 6c 6c 20 6c 6f 61 64 20 60 3c 75 72 6c 3e 60 | ess..ddclient_.will.load.`<url>` |
| a2f20 | 20 61 6e 64 20 74 72 69 65 73 20 74 6f 20 65 78 74 72 61 63 74 20 79 6f 75 72 20 49 50 20 61 64 | .and.tries.to.extract.your.IP.ad |
| a2f40 | 64 72 65 73 73 20 66 72 6f 6d 20 74 68 65 20 72 65 73 70 6f 6e 73 65 2e 00 55 73 65 20 64 65 53 | dress.from.the.response..Use.deS |
| a2f60 | 45 43 20 28 64 65 64 79 6e 2e 69 6f 29 20 61 73 20 79 6f 75 72 20 70 72 65 66 65 72 72 65 64 20 | EC.(dedyn.io).as.your.preferred. |
| a2f80 | 70 72 6f 76 69 64 65 72 3a 00 55 73 65 20 69 6e 76 65 72 73 65 2d 6d 61 74 63 68 20 74 6f 20 6d | provider:.Use.inverse-match.to.m |
| a2fa0 | 61 74 63 68 20 61 6e 79 74 68 69 6e 67 20 65 78 63 65 70 74 20 74 68 65 20 67 69 76 65 6e 20 63 | atch.anything.except.the.given.c |
| a2fc0 | 6f 75 6e 74 72 79 2d 63 6f 64 65 73 2e 00 55 73 65 20 6c 6f 63 61 6c 20 73 6f 63 6b 65 74 20 66 | ountry-codes..Use.local.socket.f |
| a2fe0 | 6f 72 20 41 50 49 00 55 73 65 20 6c 6f 63 61 6c 20 75 73 65 72 20 60 66 6f 6f 60 20 77 69 74 68 | or.API.Use.local.user.`foo`.with |
| a3000 | 20 70 61 73 73 77 6f 72 64 20 60 62 61 72 60 00 55 73 65 20 74 61 62 20 63 6f 6d 70 6c 65 74 69 | .password.`bar`.Use.tab.completi |
| a3020 | 6f 6e 20 74 6f 20 67 65 74 20 61 20 6c 69 73 74 20 6f 66 20 63 61 74 65 67 6f 72 69 65 73 2e 00 | on.to.get.a.list.of.categories.. |
| a3040 | 55 73 65 20 74 68 65 20 51 52 20 63 6f 64 65 20 74 6f 20 61 64 64 20 74 68 65 20 75 73 65 72 20 | Use.the.QR.code.to.add.the.user. |
| a3060 | 61 63 63 6f 75 6e 74 20 69 6e 20 47 6f 6f 67 6c 65 20 61 75 74 68 65 6e 74 69 63 61 74 6f 72 20 | account.in.Google.authenticator. |
| a3080 | 61 70 70 6c 69 63 61 74 69 6f 6e 20 61 6e 64 20 6f 6e 20 63 6c 69 65 6e 74 20 73 69 64 65 2c 20 | application.and.on.client.side,. |
| a30a0 | 75 73 65 20 74 68 65 20 4f 54 50 20 6e 75 6d 62 65 72 20 61 73 20 70 61 73 73 77 6f 72 64 2e 00 | use.the.OTP.number.as.password.. |
| a30c0 | 55 73 65 20 74 68 65 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 73 70 65 63 69 66 69 65 64 | Use.the.address.of.the.specified |
| a30e0 | 20 69 6e 74 65 72 66 61 63 65 20 6f 6e 20 74 68 65 20 6c 6f 63 61 6c 20 6d 61 63 68 69 6e 65 20 | .interface.on.the.local.machine. |
| a3100 | 61 73 20 74 68 65 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 63 6f 6e | as.the.source.address.of.the.con |
| a3120 | 6e 65 63 74 69 6f 6e 2e 00 55 73 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 74 6f 70 6f 6c | nection..Use.the.following.topol |
| a3140 | 6f 67 79 20 74 6f 20 62 75 69 6c 64 20 61 20 6e 61 74 36 36 20 62 61 73 65 64 20 69 73 6f 6c 61 | ogy.to.build.a.nat66.based.isola |
| a3160 | 74 65 64 20 6e 65 74 77 6f 72 6b 20 62 65 74 77 65 65 6e 20 69 6e 74 65 72 6e 61 6c 20 61 6e 64 | ted.network.between.internal.and |
| a3180 | 20 65 78 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 73 20 28 64 79 6e 61 6d 69 63 20 70 72 65 66 | .external.networks.(dynamic.pref |
| a31a0 | 69 78 20 69 73 20 6e 6f 74 20 73 75 70 70 6f 72 74 65 64 29 3a 00 55 73 65 20 74 68 65 20 66 6f | ix.is.not.supported):.Use.the.fo |
| a31c0 | 6c 6c 6f 77 69 6e 67 20 74 6f 70 6f 6c 6f 67 79 20 74 6f 20 74 72 61 6e 73 6c 61 74 65 20 69 6e | llowing.topology.to.translate.in |
| a31e0 | 74 65 72 6e 61 6c 20 75 73 65 72 20 6c 6f 63 61 6c 20 61 64 64 72 65 73 73 65 73 20 28 60 60 66 | ternal.user.local.addresses.(``f |
| a3200 | 63 3a 3a 2f 37 60 60 29 20 74 6f 20 44 48 43 50 76 36 2d 50 44 20 70 72 6f 76 69 64 65 64 20 70 | c::/7``).to.DHCPv6-PD.provided.p |
| a3220 | 72 65 66 69 78 65 73 20 66 72 6f 6d 20 61 6e 20 49 53 50 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f | refixes.from.an.ISP.connected.to |
| a3240 | 20 61 20 56 79 4f 53 20 48 41 20 70 61 69 72 2e 00 55 73 65 20 74 68 65 20 73 70 65 63 69 66 69 | .a.VyOS.HA.pair..Use.the.specifi |
| a3260 | 65 64 20 61 64 64 72 65 73 73 20 6f 6e 20 74 68 65 20 6c 6f 63 61 6c 20 6d 61 63 68 69 6e 65 20 | ed.address.on.the.local.machine. |
| a3280 | 61 73 20 74 68 65 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 63 6f 6e | as.the.source.address.of.the.con |
| a32a0 | 6e 65 63 74 69 6f 6e 2e 20 4f 6e 6c 79 20 75 73 65 66 75 6c 20 6f 6e 20 73 79 73 74 65 6d 73 20 | nection..Only.useful.on.systems. |
| a32c0 | 77 69 74 68 20 6d 6f 72 65 20 74 68 61 6e 20 6f 6e 65 20 61 64 64 72 65 73 73 2e 00 55 73 65 20 | with.more.than.one.address..Use. |
| a32e0 | 74 68 65 73 65 20 63 6f 6d 6d 61 6e 64 73 20 69 66 20 79 6f 75 20 77 6f 75 6c 64 20 6c 69 6b 65 | these.commands.if.you.would.like |
| a3300 | 20 74 6f 20 73 65 74 20 74 68 65 20 64 69 73 63 6f 76 65 72 79 20 68 65 6c 6c 6f 20 61 6e 64 20 | .to.set.the.discovery.hello.and. |
| a3320 | 68 6f 6c 64 20 74 69 6d 65 20 70 61 72 61 6d 65 74 65 72 73 20 66 6f 72 20 74 68 65 20 74 61 72 | hold.time.parameters.for.the.tar |
| a3340 | 67 65 74 65 64 20 4c 44 50 20 6e 65 69 67 68 62 6f 72 73 2e 00 55 73 65 20 74 68 65 73 65 20 63 | geted.LDP.neighbors..Use.these.c |
| a3360 | 6f 6d 6d 61 6e 64 73 20 69 66 20 79 6f 75 20 77 6f 75 6c 64 20 6c 69 6b 65 20 74 6f 20 73 65 74 | ommands.if.you.would.like.to.set |
| a3380 | 20 74 68 65 20 64 69 73 63 6f 76 65 72 79 20 68 65 6c 6c 6f 20 61 6e 64 20 68 6f 6c 64 20 74 69 | .the.discovery.hello.and.hold.ti |
| a33a0 | 6d 65 20 70 61 72 61 6d 65 74 65 72 73 2e 00 55 73 65 20 74 68 65 73 65 20 63 6f 6d 6d 61 6e 64 | me.parameters..Use.these.command |
| a33c0 | 73 20 74 6f 20 61 6c 73 6f 20 75 73 65 20 49 50 76 34 2c 20 6f 72 20 49 50 76 36 20 66 69 72 65 | s.to.also.use.IPv4,.or.IPv6.fire |
| a33e0 | 77 61 6c 6c 20 72 75 6c 65 73 20 66 6f 72 20 62 72 69 64 67 65 64 20 74 72 61 66 66 69 63 00 55 | wall.rules.for.bridged.traffic.U |
| a3400 | 73 65 20 74 68 65 73 65 20 63 6f 6d 6d 61 6e 64 73 20 74 6f 20 63 6f 6e 74 72 6f 6c 20 74 68 65 | se.these.commands.to.control.the |
| a3420 | 20 65 78 70 6f 72 74 69 6e 67 20 6f 66 20 66 6f 72 77 61 72 64 69 6e 67 20 65 71 75 69 76 61 6c | .exporting.of.forwarding.equival |
| a3440 | 65 6e 63 65 20 63 6c 61 73 73 65 73 20 28 46 45 43 73 29 20 66 6f 72 20 4c 44 50 20 74 6f 20 6e | ence.classes.(FECs).for.LDP.to.n |
| a3460 | 65 69 67 68 62 6f 72 73 2e 20 54 68 69 73 20 77 6f 75 6c 64 20 62 65 20 75 73 65 66 75 6c 20 66 | eighbors..This.would.be.useful.f |
| a3480 | 6f 72 20 65 78 61 6d 70 6c 65 20 6f 6e 20 6f 6e 6c 79 20 61 6e 6e 6f 75 6e 63 69 6e 67 20 74 68 | or.example.on.only.announcing.th |
| a34a0 | 65 20 6c 61 62 65 6c 65 64 20 72 6f 75 74 65 73 20 74 68 61 74 20 61 72 65 20 6e 65 65 64 65 64 | e.labeled.routes.that.are.needed |
| a34c0 | 20 61 6e 64 20 6e 6f 74 20 6f 6e 65 73 20 74 68 61 74 20 61 72 65 20 6e 6f 74 20 6e 65 65 64 65 | .and.not.ones.that.are.not.neede |
| a34e0 | 64 2c 20 73 75 63 68 20 61 73 20 61 6e 6e 6f 75 6e 63 69 6e 67 20 6c 6f 6f 70 62 61 63 6b 20 69 | d,.such.as.announcing.loopback.i |
| a3500 | 6e 74 65 72 66 61 63 65 73 20 61 6e 64 20 6e 6f 20 6f 74 68 65 72 73 2e 00 55 73 65 20 74 68 65 | nterfaces.and.no.others..Use.the |
| a3520 | 73 65 20 63 6f 6d 6d 61 6e 64 73 20 74 6f 20 63 6f 6e 74 72 6f 6c 20 74 68 65 20 69 6d 70 6f 72 | se.commands.to.control.the.impor |
| a3540 | 74 69 6e 67 20 6f 66 20 66 6f 72 77 61 72 64 69 6e 67 20 65 71 75 69 76 61 6c 65 6e 63 65 20 63 | ting.of.forwarding.equivalence.c |
| a3560 | 6c 61 73 73 65 73 20 28 46 45 43 73 29 20 66 6f 72 20 4c 44 50 20 66 72 6f 6d 20 6e 65 69 67 68 | lasses.(FECs).for.LDP.from.neigh |
| a3580 | 62 6f 72 73 2e 20 54 68 69 73 20 77 6f 75 6c 64 20 62 65 20 75 73 65 66 75 6c 20 66 6f 72 20 65 | bors..This.would.be.useful.for.e |
| a35a0 | 78 61 6d 70 6c 65 20 6f 6e 20 6f 6e 6c 79 20 61 63 63 65 70 74 69 6e 67 20 74 68 65 20 6c 61 62 | xample.on.only.accepting.the.lab |
| a35c0 | 65 6c 65 64 20 72 6f 75 74 65 73 20 74 68 61 74 20 61 72 65 20 6e 65 65 64 65 64 20 61 6e 64 20 | eled.routes.that.are.needed.and. |
| a35e0 | 6e 6f 74 20 6f 6e 65 73 20 74 68 61 74 20 61 72 65 20 6e 6f 74 20 6e 65 65 64 65 64 2c 20 73 75 | not.ones.that.are.not.needed,.su |
| a3600 | 63 68 20 61 73 20 61 63 63 65 70 74 69 6e 67 20 6c 6f 6f 70 62 61 63 6b 20 69 6e 74 65 72 66 61 | ch.as.accepting.loopback.interfa |
| a3620 | 63 65 73 20 61 6e 64 20 72 65 6a 65 63 74 69 6e 67 20 61 6c 6c 20 6f 74 68 65 72 73 2e 00 55 73 | ces.and.rejecting.all.others..Us |
| a3640 | 65 20 74 68 69 73 20 50 49 4d 20 63 6f 6d 6d 61 6e 64 20 69 6e 20 74 68 65 20 73 65 6c 65 63 74 | e.this.PIM.command.in.the.select |
| a3660 | 65 64 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 73 65 74 20 74 68 65 20 70 72 69 6f 72 69 74 79 | ed.interface.to.set.the.priority |
| a3680 | 20 28 31 2d 34 32 39 34 39 36 37 32 39 35 29 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 69 6e 66 6c | .(1-4294967295).you.want.to.infl |
| a36a0 | 75 65 6e 63 65 20 69 6e 20 74 68 65 20 65 6c 65 63 74 69 6f 6e 20 6f 66 20 61 20 6e 6f 64 65 20 | uence.in.the.election.of.a.node. |
| a36c0 | 74 6f 20 62 65 63 6f 6d 65 20 74 68 65 20 44 65 73 69 67 6e 61 74 65 64 20 52 6f 75 74 65 72 20 | to.become.the.Designated.Router. |
| a36e0 | 66 6f 72 20 61 20 4c 41 4e 20 73 65 67 6d 65 6e 74 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 70 | for.a.LAN.segment..The.default.p |
| a3700 | 72 69 6f 72 69 74 79 20 69 73 20 31 2c 20 73 65 74 20 61 20 20 68 69 67 68 65 72 20 76 61 6c 75 | riority.is.1,.set.a..higher.valu |
| a3720 | 65 20 74 6f 20 67 69 76 65 20 74 68 65 20 72 6f 75 74 65 72 20 6d 6f 72 65 20 70 72 65 66 65 72 | e.to.give.the.router.more.prefer |
| a3740 | 65 6e 63 65 20 69 6e 20 74 68 65 20 44 52 20 65 6c 65 63 74 69 6f 6e 20 70 72 6f 63 65 73 73 2e | ence.in.the.DR.election.process. |
| a3760 | 00 55 73 65 20 74 68 69 73 20 50 49 4d 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 6d 6f 64 69 66 79 20 | .Use.this.PIM.command.to.modify. |
| a3780 | 74 68 65 20 74 69 6d 65 20 6f 75 74 20 76 61 6c 75 65 20 28 33 31 2d 36 30 30 30 30 20 73 65 63 | the.time.out.value.(31-60000.sec |
| a37a0 | 6f 6e 64 73 29 20 66 6f 72 20 61 6e 20 60 28 53 2c 47 29 20 3c 68 74 74 70 73 3a 2f 2f 74 6f 6f | onds).for.an.`(S,G).<https://too |
| a37c0 | 6c 73 2e 69 65 74 66 2e 6f 72 67 2f 68 74 6d 6c 2f 72 66 63 37 37 36 31 23 73 65 63 74 69 6f 6e | ls.ietf.org/html/rfc7761#section |
| a37e0 | 2d 34 2e 31 3e 60 5f 20 66 6c 6f 77 2e 20 33 31 20 73 65 63 6f 6e 64 73 20 69 73 20 63 68 6f 73 | -4.1>`_.flow..31.seconds.is.chos |
| a3800 | 65 6e 20 66 6f 72 20 61 20 6c 6f 77 65 72 20 62 6f 75 6e 64 20 61 73 20 73 6f 6d 65 20 68 61 72 | en.for.a.lower.bound.as.some.har |
| a3820 | 64 77 61 72 65 20 70 6c 61 74 66 6f 72 6d 73 20 63 61 6e 6e 6f 74 20 73 65 65 20 64 61 74 61 20 | dware.platforms.cannot.see.data. |
| a3840 | 66 6c 6f 77 69 6e 67 20 69 6e 20 62 65 74 74 65 72 20 74 68 61 6e 20 33 30 20 73 65 63 6f 6e 64 | flowing.in.better.than.30.second |
| a3860 | 73 20 63 68 75 6e 6b 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 61 6e 64 20 74 6f 20 73 65 74 | s.chunks..Use.this.comand.to.set |
| a3880 | 20 74 68 65 20 49 50 76 36 20 61 64 64 72 65 73 73 20 70 6f 6f 6c 20 66 72 6f 6d 20 77 68 69 63 | .the.IPv6.address.pool.from.whic |
| a38a0 | 68 20 61 20 50 50 50 6f 45 20 63 6c 69 65 6e 74 20 77 69 6c 6c 20 67 65 74 20 61 6e 20 49 50 76 | h.a.PPPoE.client.will.get.an.IPv |
| a38c0 | 36 20 70 72 65 66 69 78 20 6f 66 20 79 6f 75 72 20 64 65 66 69 6e 65 64 20 6c 65 6e 67 74 68 20 | 6.prefix.of.your.defined.length. |
| a38e0 | 28 6d 61 73 6b 29 20 74 6f 20 74 65 72 6d 69 6e 61 74 65 20 74 68 65 20 50 50 50 6f 45 20 65 6e | (mask).to.terminate.the.PPPoE.en |
| a3900 | 64 70 6f 69 6e 74 20 61 74 20 74 68 65 69 72 20 73 69 64 65 2e 20 54 68 65 20 6d 61 73 6b 20 6c | dpoint.at.their.side..The.mask.l |
| a3920 | 65 6e 67 74 68 20 63 61 6e 20 62 65 20 73 65 74 20 66 72 6f 6d 20 34 38 20 74 6f 20 31 32 38 20 | ength.can.be.set.from.48.to.128. |
| a3940 | 62 69 74 20 6c 6f 6e 67 2c 20 74 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 36 | bit.long,.the.default.value.is.6 |
| a3960 | 34 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 61 6e 64 20 74 6f 20 73 65 74 20 74 68 65 20 49 50 | 4..Use.this.comand.to.set.the.IP |
| a3980 | 76 36 20 61 64 64 72 65 73 73 20 70 6f 6f 6c 20 66 72 6f 6d 20 77 68 69 63 68 20 61 6e 20 49 50 | v6.address.pool.from.which.an.IP |
| a39a0 | 6f 45 20 63 6c 69 65 6e 74 20 77 69 6c 6c 20 67 65 74 20 61 6e 20 49 50 76 36 20 70 72 65 66 69 | oE.client.will.get.an.IPv6.prefi |
| a39c0 | 78 20 6f 66 20 79 6f 75 72 20 64 65 66 69 6e 65 64 20 6c 65 6e 67 74 68 20 28 6d 61 73 6b 29 20 | x.of.your.defined.length.(mask). |
| a39e0 | 74 6f 20 74 65 72 6d 69 6e 61 74 65 20 74 68 65 20 49 50 6f 45 20 65 6e 64 70 6f 69 6e 74 20 61 | to.terminate.the.IPoE.endpoint.a |
| a3a00 | 74 20 74 68 65 69 72 20 73 69 64 65 2e 20 54 68 65 20 6d 61 73 6b 20 6c 65 6e 67 74 68 20 63 61 | t.their.side..The.mask.length.ca |
| a3a20 | 6e 20 62 65 20 73 65 74 20 66 72 6f 6d 20 34 38 20 74 6f 20 31 32 38 20 62 69 74 20 6c 6f 6e 67 | n.be.set.from.48.to.128.bit.long |
| a3a40 | 2c 20 74 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 36 34 2e 00 55 73 65 20 74 | ,.the.default.value.is.64..Use.t |
| a3a60 | 68 69 73 20 63 6f 6d 61 6e 64 20 74 6f 20 73 65 74 20 74 68 65 20 49 50 76 36 20 61 64 64 72 65 | his.comand.to.set.the.IPv6.addre |
| a3a80 | 73 73 20 70 6f 6f 6c 20 66 72 6f 6d 20 77 68 69 63 68 20 61 6e 20 50 50 50 6f 45 20 63 6c 69 65 | ss.pool.from.which.an.PPPoE.clie |
| a3aa0 | 6e 74 20 77 69 6c 6c 20 67 65 74 20 61 6e 20 49 50 76 36 20 70 72 65 66 69 78 20 6f 66 20 79 6f | nt.will.get.an.IPv6.prefix.of.yo |
| a3ac0 | 75 72 20 64 65 66 69 6e 65 64 20 6c 65 6e 67 74 68 20 28 6d 61 73 6b 29 20 74 6f 20 74 65 72 6d | ur.defined.length.(mask).to.term |
| a3ae0 | 69 6e 61 74 65 20 74 68 65 20 50 50 50 6f 45 20 65 6e 64 70 6f 69 6e 74 20 61 74 20 74 68 65 69 | inate.the.PPPoE.endpoint.at.thei |
| a3b00 | 72 20 73 69 64 65 2e 20 54 68 65 20 6d 61 73 6b 20 6c 65 6e 67 74 68 20 63 61 6e 20 62 65 20 73 | r.side..The.mask.length.can.be.s |
| a3b20 | 65 74 20 66 72 6f 6d 20 34 38 20 74 6f 20 31 32 38 20 62 69 74 20 6c 6f 6e 67 2c 20 74 68 65 20 | et.from.48.to.128.bit.long,.the. |
| a3b40 | 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 36 34 2e 00 55 73 65 20 74 68 69 73 20 63 6f | default.value.is.64..Use.this.co |
| a3b60 | 6d 61 6e 64 20 74 6f 20 73 65 74 20 74 68 65 20 49 50 76 36 20 61 64 64 72 65 73 73 20 70 6f 6f | mand.to.set.the.IPv6.address.poo |
| a3b80 | 6c 20 66 72 6f 6d 20 77 68 69 63 68 20 61 6e 20 50 50 54 50 20 63 6c 69 65 6e 74 20 77 69 6c 6c | l.from.which.an.PPTP.client.will |
| a3ba0 | 20 67 65 74 20 61 6e 20 49 50 76 36 20 70 72 65 66 69 78 20 6f 66 20 79 6f 75 72 20 64 65 66 69 | .get.an.IPv6.prefix.of.your.defi |
| a3bc0 | 6e 65 64 20 6c 65 6e 67 74 68 20 28 6d 61 73 6b 29 20 74 6f 20 74 65 72 6d 69 6e 61 74 65 20 74 | ned.length.(mask).to.terminate.t |
| a3be0 | 68 65 20 50 50 54 50 20 65 6e 64 70 6f 69 6e 74 20 61 74 20 74 68 65 69 72 20 73 69 64 65 2e 20 | he.PPTP.endpoint.at.their.side.. |
| a3c00 | 54 68 65 20 6d 61 73 6b 20 6c 65 6e 67 74 68 20 63 61 6e 20 62 65 20 73 65 74 20 66 72 6f 6d 20 | The.mask.length.can.be.set.from. |
| a3c20 | 34 38 20 74 6f 20 31 32 38 20 62 69 74 20 6c 6f 6e 67 2c 20 74 68 65 20 64 65 66 61 75 6c 74 20 | 48.to.128.bit.long,.the.default. |
| a3c40 | 76 61 6c 75 65 20 69 73 20 36 34 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 61 6e 64 20 74 6f 20 | value.is.64..Use.this.comand.to. |
| a3c60 | 73 65 74 20 74 68 65 20 49 50 76 36 20 61 64 64 72 65 73 73 20 70 6f 6f 6c 20 66 72 6f 6d 20 77 | set.the.IPv6.address.pool.from.w |
| a3c80 | 68 69 63 68 20 61 6e 20 53 53 54 50 20 63 6c 69 65 6e 74 20 77 69 6c 6c 20 67 65 74 20 61 6e 20 | hich.an.SSTP.client.will.get.an. |
| a3ca0 | 49 50 76 36 20 70 72 65 66 69 78 20 6f 66 20 79 6f 75 72 20 64 65 66 69 6e 65 64 20 6c 65 6e 67 | IPv6.prefix.of.your.defined.leng |
| a3cc0 | 74 68 20 28 6d 61 73 6b 29 20 74 6f 20 74 65 72 6d 69 6e 61 74 65 20 74 68 65 20 53 53 54 50 20 | th.(mask).to.terminate.the.SSTP. |
| a3ce0 | 65 6e 64 70 6f 69 6e 74 20 61 74 20 74 68 65 69 72 20 73 69 64 65 2e 20 54 68 65 20 6d 61 73 6b | endpoint.at.their.side..The.mask |
| a3d00 | 20 6c 65 6e 67 74 68 20 63 61 6e 20 62 65 20 73 65 74 20 62 65 74 77 65 65 6e 20 34 38 20 61 6e | .length.can.be.set.between.48.an |
| a3d20 | 64 20 31 32 38 20 62 69 74 73 20 6c 6f 6e 67 2c 20 74 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c | d.128.bits.long,.the.default.val |
| a3d40 | 75 65 20 69 73 20 36 34 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 61 6e 64 20 74 6f 20 73 65 74 | ue.is.64..Use.this.comand.to.set |
| a3d60 | 20 74 68 65 20 49 50 76 36 20 61 64 64 72 65 73 73 20 70 6f 6f 6c 20 66 72 6f 6d 20 77 68 69 63 | .the.IPv6.address.pool.from.whic |
| a3d80 | 68 20 61 6e 20 53 53 54 50 20 63 6c 69 65 6e 74 20 77 69 6c 6c 20 67 65 74 20 61 6e 20 49 50 76 | h.an.SSTP.client.will.get.an.IPv |
| a3da0 | 36 20 70 72 65 66 69 78 20 6f 66 20 79 6f 75 72 20 64 65 66 69 6e 65 64 20 6c 65 6e 67 74 68 20 | 6.prefix.of.your.defined.length. |
| a3dc0 | 28 6d 61 73 6b 29 20 74 6f 20 74 65 72 6d 69 6e 61 74 65 20 74 68 65 20 53 53 54 50 20 65 6e 64 | (mask).to.terminate.the.SSTP.end |
| a3de0 | 70 6f 69 6e 74 20 61 74 20 74 68 65 69 72 20 73 69 64 65 2e 20 54 68 65 20 6d 61 73 6b 20 6c 65 | point.at.their.side..The.mask.le |
| a3e00 | 6e 67 74 68 20 63 61 6e 20 62 65 20 73 65 74 20 66 72 6f 6d 20 34 38 20 74 6f 20 31 32 38 20 62 | ngth.can.be.set.from.48.to.128.b |
| a3e20 | 69 74 20 6c 6f 6e 67 2c 20 74 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 36 34 | it.long,.the.default.value.is.64 |
| a3e40 | 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 61 6e 64 20 74 6f 20 73 65 74 20 74 68 65 20 49 50 76 | ..Use.this.comand.to.set.the.IPv |
| a3e60 | 36 20 61 64 64 72 65 73 73 20 70 6f 6f 6c 20 66 72 6f 6d 20 77 68 69 63 68 20 61 6e 20 6c 32 74 | 6.address.pool.from.which.an.l2t |
| a3e80 | 70 20 63 6c 69 65 6e 74 20 77 69 6c 6c 20 67 65 74 20 61 6e 20 49 50 76 36 20 70 72 65 66 69 78 | p.client.will.get.an.IPv6.prefix |
| a3ea0 | 20 6f 66 20 79 6f 75 72 20 64 65 66 69 6e 65 64 20 6c 65 6e 67 74 68 20 28 6d 61 73 6b 29 20 74 | .of.your.defined.length.(mask).t |
| a3ec0 | 6f 20 74 65 72 6d 69 6e 61 74 65 20 74 68 65 20 6c 32 74 70 20 65 6e 64 70 6f 69 6e 74 20 61 74 | o.terminate.the.l2tp.endpoint.at |
| a3ee0 | 20 74 68 65 69 72 20 73 69 64 65 2e 20 54 68 65 20 6d 61 73 6b 20 6c 65 6e 67 74 68 20 63 61 6e | .their.side..The.mask.length.can |
| a3f00 | 20 62 65 20 73 65 74 20 62 65 74 77 65 65 6e 20 34 38 20 61 6e 64 20 31 32 38 20 62 69 74 73 20 | .be.set.between.48.and.128.bits. |
| a3f20 | 6c 6f 6e 67 2c 20 74 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 36 34 2e 00 55 | long,.the.default.value.is.64..U |
| a3f40 | 73 65 20 74 68 69 73 20 63 6f 6d 61 6e 64 20 74 6f 20 73 65 74 20 74 68 65 20 49 50 76 36 20 61 | se.this.comand.to.set.the.IPv6.a |
| a3f60 | 64 64 72 65 73 73 20 70 6f 6f 6c 20 66 72 6f 6d 20 77 68 69 63 68 20 61 6e 20 6c 32 74 70 20 63 | ddress.pool.from.which.an.l2tp.c |
| a3f80 | 6c 69 65 6e 74 20 77 69 6c 6c 20 67 65 74 20 61 6e 20 49 50 76 36 20 70 72 65 66 69 78 20 6f 66 | lient.will.get.an.IPv6.prefix.of |
| a3fa0 | 20 79 6f 75 72 20 64 65 66 69 6e 65 64 20 6c 65 6e 67 74 68 20 28 6d 61 73 6b 29 20 74 6f 20 74 | .your.defined.length.(mask).to.t |
| a3fc0 | 65 72 6d 69 6e 61 74 65 20 74 68 65 20 6c 32 74 70 20 65 6e 64 70 6f 69 6e 74 20 61 74 20 74 68 | erminate.the.l2tp.endpoint.at.th |
| a3fe0 | 65 69 72 20 73 69 64 65 2e 20 54 68 65 20 6d 61 73 6b 20 6c 65 6e 67 74 68 20 63 61 6e 20 62 65 | eir.side..The.mask.length.can.be |
| a4000 | 20 73 65 74 20 66 72 6f 6d 20 34 38 20 74 6f 20 31 32 38 20 62 69 74 20 6c 6f 6e 67 2c 20 74 68 | .set.from.48.to.128.bit.long,.th |
| a4020 | 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 36 34 2e 00 55 73 65 20 74 68 69 73 20 | e.default.value.is.64..Use.this. |
| a4040 | 63 6f 6d 6d 61 6e 64 20 66 6f 72 20 65 76 65 72 79 20 70 6f 6f 6c 20 6f 66 20 63 6c 69 65 6e 74 | command.for.every.pool.of.client |
| a4060 | 20 49 50 20 61 64 64 72 65 73 73 65 73 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 64 65 66 69 6e 65 | .IP.addresses.you.want.to.define |
| a4080 | 2e 20 54 68 65 20 61 64 64 72 65 73 73 65 73 20 6f 66 20 74 68 69 73 20 70 6f 6f 6c 20 77 69 6c | ..The.addresses.of.this.pool.wil |
| a40a0 | 6c 20 62 65 20 67 69 76 65 6e 20 74 6f 20 50 50 50 6f 45 20 63 6c 69 65 6e 74 73 2e 20 59 6f 75 | l.be.given.to.PPPoE.clients..You |
| a40c0 | 20 6d 75 73 74 20 75 73 65 20 43 49 44 52 20 6e 6f 74 61 74 69 6f 6e 20 61 6e 64 20 69 74 20 6d | .must.use.CIDR.notation.and.it.m |
| a40e0 | 75 73 74 20 62 65 20 77 69 74 68 69 6e 20 61 20 2f 32 34 20 73 75 62 6e 65 74 2e 00 55 73 65 20 | ust.be.within.a./24.subnet..Use. |
| a4100 | 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 66 6f 72 20 65 76 65 72 79 20 70 6f 6f 6c 20 6f 66 20 63 | this.command.for.every.pool.of.c |
| a4120 | 6c 69 65 6e 74 20 49 50 20 61 64 64 72 65 73 73 65 73 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 64 | lient.IP.addresses.you.want.to.d |
| a4140 | 65 66 69 6e 65 2e 20 54 68 65 20 61 64 64 72 65 73 73 65 73 20 6f 66 20 74 68 69 73 20 70 6f 6f | efine..The.addresses.of.this.poo |
| a4160 | 6c 20 77 69 6c 6c 20 62 65 20 67 69 76 65 6e 20 74 6f 20 50 50 50 6f 45 20 63 6c 69 65 6e 74 73 | l.will.be.given.to.PPPoE.clients |
| a4180 | 2e 20 59 6f 75 20 6d 75 73 74 20 75 73 65 20 43 49 44 52 20 6e 6f 74 61 74 69 6f 6e 2e 00 55 73 | ..You.must.use.CIDR.notation..Us |
| a41a0 | 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 66 20 79 6f 75 20 77 6f 75 6c 64 20 6c 69 6b 65 | e.this.command.if.you.would.like |
| a41c0 | 20 66 6f 72 20 74 68 65 20 72 6f 75 74 65 72 20 74 6f 20 61 64 76 65 72 74 69 73 65 20 46 45 43 | .for.the.router.to.advertise.FEC |
| a41e0 | 73 20 77 69 74 68 20 61 20 6c 61 62 65 6c 20 6f 66 20 30 20 66 6f 72 20 65 78 70 6c 69 63 69 74 | s.with.a.label.of.0.for.explicit |
| a4200 | 20 6e 75 6c 6c 20 6f 70 65 72 61 74 69 6f 6e 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 | .null.operations..Use.this.comma |
| a4220 | 6e 64 20 69 66 20 79 6f 75 20 77 6f 75 6c 64 20 6c 69 6b 65 20 74 6f 20 63 6f 6e 74 72 6f 6c 20 | nd.if.you.would.like.to.control. |
| a4240 | 74 68 65 20 6c 6f 63 61 6c 20 46 45 43 20 61 6c 6c 6f 63 61 74 69 6f 6e 73 20 66 6f 72 20 4c 44 | the.local.FEC.allocations.for.LD |
| a4260 | 50 2e 20 41 20 67 6f 6f 64 20 65 78 61 6d 70 6c 65 20 77 6f 75 6c 64 20 62 65 20 66 6f 72 20 79 | P..A.good.example.would.be.for.y |
| a4280 | 6f 75 72 20 6c 6f 63 61 6c 20 72 6f 75 74 65 72 20 74 6f 20 6e 6f 74 20 61 6c 6c 6f 63 61 74 65 | our.local.router.to.not.allocate |
| a42a0 | 20 61 20 6c 61 62 65 6c 20 66 6f 72 20 65 76 65 72 79 74 68 69 6e 67 2e 20 4a 75 73 74 20 61 20 | .a.label.for.everything..Just.a. |
| a42c0 | 6c 61 62 65 6c 20 66 6f 72 20 77 68 61 74 20 69 74 27 73 20 75 73 65 66 75 6c 2e 20 41 20 67 6f | label.for.what.it's.useful..A.go |
| a42e0 | 6f 64 20 65 78 61 6d 70 6c 65 20 77 6f 75 6c 64 20 62 65 20 6a 75 73 74 20 61 20 6c 6f 6f 70 62 | od.example.would.be.just.a.loopb |
| a4300 | 61 63 6b 20 6c 61 62 65 6c 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 66 20 79 | ack.label..Use.this.command.if.y |
| a4320 | 6f 75 20 77 6f 75 6c 64 20 6c 69 6b 65 20 74 6f 20 73 65 74 20 74 68 65 20 54 43 50 20 73 65 73 | ou.would.like.to.set.the.TCP.ses |
| a4340 | 73 69 6f 6e 20 68 6f 6c 64 20 74 69 6d 65 20 69 6e 74 65 72 76 61 6c 73 2e 00 55 73 65 20 74 68 | sion.hold.time.intervals..Use.th |
| a4360 | 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 61 6c 6c 6f 77 20 74 68 65 20 73 65 6c 65 63 74 65 64 | is.command.to.allow.the.selected |
| a4380 | 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 6a 6f 69 6e 20 61 20 6d 75 6c 74 69 63 61 73 74 20 67 | .interface.to.join.a.multicast.g |
| a43a0 | 72 6f 75 70 20 64 65 66 69 6e 69 6e 67 20 74 68 65 20 6d 75 6c 74 69 63 61 73 74 20 61 64 64 72 | roup.defining.the.multicast.addr |
| a43c0 | 65 73 73 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 6a 6f 69 6e 20 61 6e 64 20 74 68 65 20 73 6f 75 | ess.you.want.to.join.and.the.sou |
| a43e0 | 72 63 65 20 49 50 20 61 64 64 72 65 73 73 20 74 6f 6f 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d | rce.IP.address.too..Use.this.com |
| a4400 | 6d 61 6e 64 20 74 6f 20 61 6c 6c 6f 77 20 74 68 65 20 73 65 6c 65 63 74 65 64 20 69 6e 74 65 72 | mand.to.allow.the.selected.inter |
| a4420 | 66 61 63 65 20 74 6f 20 6a 6f 69 6e 20 61 20 6d 75 6c 74 69 63 61 73 74 20 67 72 6f 75 70 2e 00 | face.to.join.a.multicast.group.. |
| a4440 | 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 61 6c 6c 6f 77 20 74 68 65 20 73 65 | Use.this.command.to.allow.the.se |
| a4460 | 6c 65 63 74 65 64 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 6a 6f 69 6e 20 61 20 73 6f 75 72 63 | lected.interface.to.join.a.sourc |
| a4480 | 65 2d 73 70 65 63 69 66 69 63 20 6d 75 6c 74 69 63 61 73 74 20 67 72 6f 75 70 2e 00 55 73 65 20 | e-specific.multicast.group..Use. |
| a44a0 | 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 68 65 63 6b 20 6c 6f 67 20 6d 65 73 73 61 67 | this.command.to.check.log.messag |
| a44c0 | 65 73 20 73 70 65 63 69 66 69 63 20 74 6f 20 61 6e 20 69 6e 74 65 72 66 61 63 65 2e 00 55 73 65 | es.specific.to.an.interface..Use |
| a44e0 | 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 68 65 63 6b 20 6c 6f 67 20 6d 65 73 73 61 | .this.command.to.check.log.messa |
| a4500 | 67 65 73 20 77 68 69 63 68 20 69 6e 63 6c 75 64 65 20 65 6e 74 72 69 65 73 20 66 6f 72 20 73 75 | ges.which.include.entries.for.su |
| a4520 | 63 63 65 73 73 66 75 6c 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 61 73 20 77 65 6c 6c 20 61 73 20 | ccessful.connections.as.well.as. |
| a4540 | 66 61 69 6c 75 72 65 73 20 61 6e 64 20 65 72 72 6f 72 73 20 72 65 6c 61 74 65 64 20 74 6f 20 61 | failures.and.errors.related.to.a |
| a4560 | 6c 6c 20 4f 70 65 6e 56 50 4e 20 69 6e 74 65 72 66 61 63 65 73 2e 00 55 73 65 20 74 68 69 73 20 | ll.OpenVPN.interfaces..Use.this. |
| a4580 | 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 68 65 63 6b 20 74 68 65 20 74 75 6e 6e 65 6c 20 73 74 61 74 | command.to.check.the.tunnel.stat |
| a45a0 | 75 73 20 66 6f 72 20 4f 70 65 6e 56 50 4e 20 63 6c 69 65 6e 74 20 69 6e 74 65 72 66 61 63 65 73 | us.for.OpenVPN.client.interfaces |
| a45c0 | 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 68 65 63 6b 20 74 68 65 20 | ..Use.this.command.to.check.the. |
| a45e0 | 74 75 6e 6e 65 6c 20 73 74 61 74 75 73 20 66 6f 72 20 4f 70 65 6e 56 50 4e 20 73 65 72 76 65 72 | tunnel.status.for.OpenVPN.server |
| a4600 | 20 69 6e 74 65 72 66 61 63 65 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f | .interfaces..Use.this.command.to |
| a4620 | 20 63 68 65 63 6b 20 74 68 65 20 74 75 6e 6e 65 6c 20 73 74 61 74 75 73 20 66 6f 72 20 4f 70 65 | .check.the.tunnel.status.for.Ope |
| a4640 | 6e 56 50 4e 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 69 6e 74 65 72 66 61 63 65 73 2e 00 55 73 | nVPN.site-to-site.interfaces..Us |
| a4660 | 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6c 65 61 72 20 42 6f 72 64 65 72 20 47 | e.this.command.to.clear.Border.G |
| a4680 | 61 74 65 77 61 79 20 50 72 6f 74 6f 63 6f 6c 20 73 74 61 74 69 73 74 69 63 73 20 6f 72 20 73 74 | ateway.Protocol.statistics.or.st |
| a46a0 | 61 74 75 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 | atus..Use.this.command.to.config |
| a46c0 | 75 72 65 20 44 48 43 50 76 36 20 50 72 65 66 69 78 20 44 65 6c 65 67 61 74 69 6f 6e 20 28 52 46 | ure.DHCPv6.Prefix.Delegation.(RF |
| a46e0 | 43 33 36 33 33 29 20 6f 6e 20 49 50 6f 45 2e 20 59 6f 75 20 77 69 6c 6c 20 68 61 76 65 20 74 6f | C3633).on.IPoE..You.will.have.to |
| a4700 | 20 73 65 74 20 79 6f 75 72 20 49 50 76 36 20 70 6f 6f 6c 20 61 6e 64 20 74 68 65 20 6c 65 6e 67 | .set.your.IPv6.pool.and.the.leng |
| a4720 | 74 68 20 6f 66 20 74 68 65 20 64 65 6c 65 67 61 74 69 6f 6e 20 70 72 65 66 69 78 2e 20 46 72 6f | th.of.the.delegation.prefix..Fro |
| a4740 | 6d 20 74 68 65 20 64 65 66 69 6e 65 64 20 49 50 76 36 20 70 6f 6f 6c 20 79 6f 75 20 77 69 6c 6c | m.the.defined.IPv6.pool.you.will |
| a4760 | 20 62 65 20 68 61 6e 64 69 6e 67 20 6f 75 74 20 6e 65 74 77 6f 72 6b 73 20 6f 66 20 74 68 65 20 | .be.handing.out.networks.of.the. |
| a4780 | 64 65 66 69 6e 65 64 20 6c 65 6e 67 74 68 20 28 64 65 6c 65 67 61 74 69 6f 6e 2d 70 72 65 66 69 | defined.length.(delegation-prefi |
| a47a0 | 78 29 2e 20 54 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 20 64 65 6c 65 67 61 74 69 6f 6e | x)..The.length.of.the.delegation |
| a47c0 | 20 70 72 65 66 69 78 20 63 61 6e 20 62 65 20 73 65 74 20 66 72 6f 6d 20 33 32 20 74 6f 20 36 34 | .prefix.can.be.set.from.32.to.64 |
| a47e0 | 20 62 69 74 20 6c 6f 6e 67 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 | .bit.long..Use.this.command.to.c |
| a4800 | 6f 6e 66 69 67 75 72 65 20 44 48 43 50 76 36 20 50 72 65 66 69 78 20 44 65 6c 65 67 61 74 69 6f | onfigure.DHCPv6.Prefix.Delegatio |
| a4820 | 6e 20 28 52 46 43 33 36 33 33 29 20 6f 6e 20 50 50 50 6f 45 2e 20 59 6f 75 20 77 69 6c 6c 20 68 | n.(RFC3633).on.PPPoE..You.will.h |
| a4840 | 61 76 65 20 74 6f 20 73 65 74 20 79 6f 75 72 20 49 50 76 36 20 70 6f 6f 6c 20 61 6e 64 20 74 68 | ave.to.set.your.IPv6.pool.and.th |
| a4860 | 65 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 20 64 65 6c 65 67 61 74 69 6f 6e 20 70 72 65 66 69 | e.length.of.the.delegation.prefi |
| a4880 | 78 2e 20 46 72 6f 6d 20 74 68 65 20 64 65 66 69 6e 65 64 20 49 50 76 36 20 70 6f 6f 6c 20 79 6f | x..From.the.defined.IPv6.pool.yo |
| a48a0 | 75 20 77 69 6c 6c 20 62 65 20 68 61 6e 64 69 6e 67 20 6f 75 74 20 6e 65 74 77 6f 72 6b 73 20 6f | u.will.be.handing.out.networks.o |
| a48c0 | 66 20 74 68 65 20 64 65 66 69 6e 65 64 20 6c 65 6e 67 74 68 20 28 64 65 6c 65 67 61 74 69 6f 6e | f.the.defined.length.(delegation |
| a48e0 | 2d 70 72 65 66 69 78 29 2e 20 54 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 20 64 65 6c 65 | -prefix)..The.length.of.the.dele |
| a4900 | 67 61 74 69 6f 6e 20 70 72 65 66 69 78 20 63 61 6e 20 62 65 20 73 65 74 20 66 72 6f 6d 20 33 32 | gation.prefix.can.be.set.from.32 |
| a4920 | 20 74 6f 20 36 34 20 62 69 74 20 6c 6f 6e 67 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e | .to.64.bit.long..Use.this.comman |
| a4940 | 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 44 48 43 50 76 36 20 50 72 65 66 69 78 20 44 65 6c | d.to.configure.DHCPv6.Prefix.Del |
| a4960 | 65 67 61 74 69 6f 6e 20 28 52 46 43 33 36 33 33 29 20 6f 6e 20 50 50 54 50 2e 20 59 6f 75 20 77 | egation.(RFC3633).on.PPTP..You.w |
| a4980 | 69 6c 6c 20 68 61 76 65 20 74 6f 20 73 65 74 20 79 6f 75 72 20 49 50 76 36 20 70 6f 6f 6c 20 61 | ill.have.to.set.your.IPv6.pool.a |
| a49a0 | 6e 64 20 74 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 20 64 65 6c 65 67 61 74 69 6f 6e 20 | nd.the.length.of.the.delegation. |
| a49c0 | 70 72 65 66 69 78 2e 20 46 72 6f 6d 20 74 68 65 20 64 65 66 69 6e 65 64 20 49 50 76 36 20 70 6f | prefix..From.the.defined.IPv6.po |
| a49e0 | 6f 6c 20 79 6f 75 20 77 69 6c 6c 20 62 65 20 68 61 6e 64 69 6e 67 20 6f 75 74 20 6e 65 74 77 6f | ol.you.will.be.handing.out.netwo |
| a4a00 | 72 6b 73 20 6f 66 20 74 68 65 20 64 65 66 69 6e 65 64 20 6c 65 6e 67 74 68 20 28 64 65 6c 65 67 | rks.of.the.defined.length.(deleg |
| a4a20 | 61 74 69 6f 6e 2d 70 72 65 66 69 78 29 2e 20 54 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 | ation-prefix)..The.length.of.the |
| a4a40 | 20 64 65 6c 65 67 61 74 69 6f 6e 20 70 72 65 66 69 78 20 63 61 6e 20 62 65 20 73 65 74 20 66 72 | .delegation.prefix.can.be.set.fr |
| a4a60 | 6f 6d 20 33 32 20 74 6f 20 36 34 20 62 69 74 20 6c 6f 6e 67 2e 00 55 73 65 20 74 68 69 73 20 63 | om.32.to.64.bit.long..Use.this.c |
| a4a80 | 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 44 48 43 50 76 36 20 50 72 65 66 69 | ommand.to.configure.DHCPv6.Prefi |
| a4aa0 | 78 20 44 65 6c 65 67 61 74 69 6f 6e 20 28 52 46 43 33 36 33 33 29 20 6f 6e 20 53 53 54 50 2e 20 | x.Delegation.(RFC3633).on.SSTP.. |
| a4ac0 | 59 6f 75 20 77 69 6c 6c 20 68 61 76 65 20 74 6f 20 73 65 74 20 79 6f 75 72 20 49 50 76 36 20 70 | You.will.have.to.set.your.IPv6.p |
| a4ae0 | 6f 6f 6c 20 61 6e 64 20 74 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 20 64 65 6c 65 67 61 | ool.and.the.length.of.the.delega |
| a4b00 | 74 69 6f 6e 20 70 72 65 66 69 78 2e 20 46 72 6f 6d 20 74 68 65 20 64 65 66 69 6e 65 64 20 49 50 | tion.prefix..From.the.defined.IP |
| a4b20 | 76 36 20 70 6f 6f 6c 20 79 6f 75 20 77 69 6c 6c 20 62 65 20 68 61 6e 64 69 6e 67 20 6f 75 74 20 | v6.pool.you.will.be.handing.out. |
| a4b40 | 6e 65 74 77 6f 72 6b 73 20 6f 66 20 74 68 65 20 64 65 66 69 6e 65 64 20 6c 65 6e 67 74 68 20 28 | networks.of.the.defined.length.( |
| a4b60 | 64 65 6c 65 67 61 74 69 6f 6e 2d 70 72 65 66 69 78 29 2e 20 54 68 65 20 6c 65 6e 67 74 68 20 6f | delegation-prefix)..The.length.o |
| a4b80 | 66 20 74 68 65 20 64 65 6c 65 67 61 74 69 6f 6e 20 70 72 65 66 69 78 20 63 61 6e 20 62 65 20 73 | f.the.delegation.prefix.can.be.s |
| a4ba0 | 65 74 20 62 65 74 77 65 65 6e 20 33 32 20 61 6e 64 20 36 34 20 62 69 74 73 20 6c 6f 6e 67 2e 00 | et.between.32.and.64.bits.long.. |
| a4bc0 | 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 44 48 | Use.this.command.to.configure.DH |
| a4be0 | 43 50 76 36 20 50 72 65 66 69 78 20 44 65 6c 65 67 61 74 69 6f 6e 20 28 52 46 43 33 36 33 33 29 | CPv6.Prefix.Delegation.(RFC3633) |
| a4c00 | 20 6f 6e 20 53 53 54 50 2e 20 59 6f 75 20 77 69 6c 6c 20 68 61 76 65 20 74 6f 20 73 65 74 20 79 | .on.SSTP..You.will.have.to.set.y |
| a4c20 | 6f 75 72 20 49 50 76 36 20 70 6f 6f 6c 20 61 6e 64 20 74 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 | our.IPv6.pool.and.the.length.of. |
| a4c40 | 74 68 65 20 64 65 6c 65 67 61 74 69 6f 6e 20 70 72 65 66 69 78 2e 20 46 72 6f 6d 20 74 68 65 20 | the.delegation.prefix..From.the. |
| a4c60 | 64 65 66 69 6e 65 64 20 49 50 76 36 20 70 6f 6f 6c 20 79 6f 75 20 77 69 6c 6c 20 62 65 20 68 61 | defined.IPv6.pool.you.will.be.ha |
| a4c80 | 6e 64 69 6e 67 20 6f 75 74 20 6e 65 74 77 6f 72 6b 73 20 6f 66 20 74 68 65 20 64 65 66 69 6e 65 | nding.out.networks.of.the.define |
| a4ca0 | 64 20 6c 65 6e 67 74 68 20 28 64 65 6c 65 67 61 74 69 6f 6e 2d 70 72 65 66 69 78 29 2e 20 54 68 | d.length.(delegation-prefix)..Th |
| a4cc0 | 65 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 20 64 65 6c 65 67 61 74 69 6f 6e 20 70 72 65 66 69 | e.length.of.the.delegation.prefi |
| a4ce0 | 78 20 63 61 6e 20 62 65 20 73 65 74 20 66 72 6f 6d 20 33 32 20 74 6f 20 36 34 20 62 69 74 20 6c | x.can.be.set.from.32.to.64.bit.l |
| a4d00 | 6f 6e 67 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 | ong..Use.this.command.to.configu |
| a4d20 | 72 65 20 44 48 43 50 76 36 20 50 72 65 66 69 78 20 44 65 6c 65 67 61 74 69 6f 6e 20 28 52 46 43 | re.DHCPv6.Prefix.Delegation.(RFC |
| a4d40 | 33 36 33 33 29 20 6f 6e 20 6c 32 74 70 2e 20 59 6f 75 20 77 69 6c 6c 20 68 61 76 65 20 74 6f 20 | 3633).on.l2tp..You.will.have.to. |
| a4d60 | 73 65 74 20 79 6f 75 72 20 49 50 76 36 20 70 6f 6f 6c 20 61 6e 64 20 74 68 65 20 6c 65 6e 67 74 | set.your.IPv6.pool.and.the.lengt |
| a4d80 | 68 20 6f 66 20 74 68 65 20 64 65 6c 65 67 61 74 69 6f 6e 20 70 72 65 66 69 78 2e 20 46 72 6f 6d | h.of.the.delegation.prefix..From |
| a4da0 | 20 74 68 65 20 64 65 66 69 6e 65 64 20 49 50 76 36 20 70 6f 6f 6c 20 79 6f 75 20 77 69 6c 6c 20 | .the.defined.IPv6.pool.you.will. |
| a4dc0 | 62 65 20 68 61 6e 64 69 6e 67 20 6f 75 74 20 6e 65 74 77 6f 72 6b 73 20 6f 66 20 74 68 65 20 64 | be.handing.out.networks.of.the.d |
| a4de0 | 65 66 69 6e 65 64 20 6c 65 6e 67 74 68 20 28 64 65 6c 65 67 61 74 69 6f 6e 2d 70 72 65 66 69 78 | efined.length.(delegation-prefix |
| a4e00 | 29 2e 20 54 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 20 64 65 6c 65 67 61 74 69 6f 6e 20 | )..The.length.of.the.delegation. |
| a4e20 | 70 72 65 66 69 78 20 63 61 6e 20 62 65 20 62 65 74 77 65 65 6e 20 33 32 20 61 6e 64 20 36 34 20 | prefix.can.be.between.32.and.64. |
| a4e40 | 62 69 74 73 20 6c 6f 6e 67 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 | bits.long..Use.this.command.to.c |
| a4e60 | 6f 6e 66 69 67 75 72 65 20 44 48 43 50 76 36 20 50 72 65 66 69 78 20 44 65 6c 65 67 61 74 69 6f | onfigure.DHCPv6.Prefix.Delegatio |
| a4e80 | 6e 20 28 52 46 43 33 36 33 33 29 20 6f 6e 20 6c 32 74 70 2e 20 59 6f 75 20 77 69 6c 6c 20 68 61 | n.(RFC3633).on.l2tp..You.will.ha |
| a4ea0 | 76 65 20 74 6f 20 73 65 74 20 79 6f 75 72 20 49 50 76 36 20 70 6f 6f 6c 20 61 6e 64 20 74 68 65 | ve.to.set.your.IPv6.pool.and.the |
| a4ec0 | 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 20 64 65 6c 65 67 61 74 69 6f 6e 20 70 72 65 66 69 78 | .length.of.the.delegation.prefix |
| a4ee0 | 2e 20 46 72 6f 6d 20 74 68 65 20 64 65 66 69 6e 65 64 20 49 50 76 36 20 70 6f 6f 6c 20 79 6f 75 | ..From.the.defined.IPv6.pool.you |
| a4f00 | 20 77 69 6c 6c 20 62 65 20 68 61 6e 64 69 6e 67 20 6f 75 74 20 6e 65 74 77 6f 72 6b 73 20 6f 66 | .will.be.handing.out.networks.of |
| a4f20 | 20 74 68 65 20 64 65 66 69 6e 65 64 20 6c 65 6e 67 74 68 20 28 64 65 6c 65 67 61 74 69 6f 6e 2d | .the.defined.length.(delegation- |
| a4f40 | 70 72 65 66 69 78 29 2e 20 54 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 20 64 65 6c 65 67 | prefix)..The.length.of.the.deleg |
| a4f60 | 61 74 69 6f 6e 20 70 72 65 66 69 78 20 63 61 6e 20 62 65 20 73 65 74 20 66 72 6f 6d 20 33 32 20 | ation.prefix.can.be.set.from.32. |
| a4f80 | 74 6f 20 36 34 20 62 69 74 20 6c 6f 6e 67 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 | to.64.bit.long..Use.this.command |
| a4fa0 | 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 44 48 43 50 76 36 20 50 72 65 66 69 78 20 44 65 6c 65 | .to.configure.DHCPv6.Prefix.Dele |
| a4fc0 | 67 61 74 69 6f 6e 20 28 52 46 43 33 36 33 33 29 2e 20 59 6f 75 20 77 69 6c 6c 20 68 61 76 65 20 | gation.(RFC3633)..You.will.have. |
| a4fe0 | 74 6f 20 73 65 74 20 79 6f 75 72 20 49 50 76 36 20 70 6f 6f 6c 20 61 6e 64 20 74 68 65 20 6c 65 | to.set.your.IPv6.pool.and.the.le |
| a5000 | 6e 67 74 68 20 6f 66 20 74 68 65 20 64 65 6c 65 67 61 74 69 6f 6e 20 70 72 65 66 69 78 2e 20 46 | ngth.of.the.delegation.prefix..F |
| a5020 | 72 6f 6d 20 74 68 65 20 64 65 66 69 6e 65 64 20 49 50 76 36 20 70 6f 6f 6c 20 79 6f 75 20 77 69 | rom.the.defined.IPv6.pool.you.wi |
| a5040 | 6c 6c 20 62 65 20 68 61 6e 64 69 6e 67 20 6f 75 74 20 6e 65 74 77 6f 72 6b 73 20 6f 66 20 74 68 | ll.be.handing.out.networks.of.th |
| a5060 | 65 20 64 65 66 69 6e 65 64 20 6c 65 6e 67 74 68 20 28 64 65 6c 65 67 61 74 69 6f 6e 2d 70 72 65 | e.defined.length.(delegation-pre |
| a5080 | 66 69 78 29 2e 20 54 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 20 64 65 6c 65 67 61 74 69 | fix)..The.length.of.the.delegati |
| a50a0 | 6f 6e 20 70 72 65 66 69 78 20 63 61 6e 20 62 65 20 73 65 74 20 66 72 6f 6d 20 33 32 20 74 6f 20 | on.prefix.can.be.set.from.32.to. |
| a50c0 | 36 34 20 62 69 74 20 6c 6f 6e 67 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f | 64.bit.long..Use.this.command.to |
| a50e0 | 20 63 6f 6e 66 69 67 75 72 65 20 44 79 6e 61 6d 69 63 20 41 75 74 68 6f 72 69 7a 61 74 69 6f 6e | .configure.Dynamic.Authorization |
| a5100 | 20 45 78 74 65 6e 73 69 6f 6e 73 20 74 6f 20 52 41 44 49 55 53 20 73 6f 20 74 68 61 74 20 79 6f | .Extensions.to.RADIUS.so.that.yo |
| a5120 | 75 20 63 61 6e 20 72 65 6d 6f 74 65 6c 79 20 64 69 73 63 6f 6e 6e 65 63 74 20 73 65 73 73 69 6f | u.can.remotely.disconnect.sessio |
| a5140 | 6e 73 20 61 6e 64 20 63 68 61 6e 67 65 20 73 6f 6d 65 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f | ns.and.change.some.authenticatio |
| a5160 | 6e 20 70 61 72 61 6d 65 74 65 72 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 | n.parameters..Use.this.command.t |
| a5180 | 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 22 62 6c 61 63 6b 2d 68 6f 6c 65 22 20 72 6f 75 74 65 | o.configure.a."black-hole".route |
| a51a0 | 20 6f 6e 20 74 68 65 20 72 6f 75 74 65 72 2e 20 41 20 62 6c 61 63 6b 2d 68 6f 6c 65 20 72 6f 75 | .on.the.router..A.black-hole.rou |
| a51c0 | 74 65 20 69 73 20 61 20 72 6f 75 74 65 20 66 6f 72 20 77 68 69 63 68 20 74 68 65 20 73 79 73 74 | te.is.a.route.for.which.the.syst |
| a51e0 | 65 6d 20 73 69 6c 65 6e 74 6c 79 20 64 69 73 63 61 72 64 20 70 61 63 6b 65 74 73 20 74 68 61 74 | em.silently.discard.packets.that |
| a5200 | 20 61 72 65 20 6d 61 74 63 68 65 64 2e 20 54 68 69 73 20 70 72 65 76 65 6e 74 73 20 6e 65 74 77 | .are.matched..This.prevents.netw |
| a5220 | 6f 72 6b 73 20 6c 65 61 6b 69 6e 67 20 6f 75 74 20 70 75 62 6c 69 63 20 69 6e 74 65 72 66 61 63 | orks.leaking.out.public.interfac |
| a5240 | 65 73 2c 20 62 75 74 20 69 74 20 64 6f 65 73 20 6e 6f 74 20 70 72 65 76 65 6e 74 20 74 68 65 6d | es,.but.it.does.not.prevent.them |
| a5260 | 20 66 72 6f 6d 20 62 65 69 6e 67 20 75 73 65 64 20 61 73 20 61 20 6d 6f 72 65 20 73 70 65 63 69 | .from.being.used.as.a.more.speci |
| a5280 | 66 69 63 20 72 6f 75 74 65 20 69 6e 73 69 64 65 20 79 6f 75 72 20 6e 65 74 77 6f 72 6b 2e 00 55 | fic.route.inside.your.network..U |
| a52a0 | 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 4e | se.this.command.to.configure.a.N |
| a52c0 | 65 74 77 6f 72 6b 20 45 6d 75 6c 61 74 6f 72 20 70 6f 6c 69 63 79 20 64 65 66 69 6e 69 6e 67 20 | etwork.Emulator.policy.defining. |
| a52e0 | 69 74 73 20 6e 61 6d 65 20 61 6e 64 20 74 68 65 20 66 69 78 65 64 20 61 6d 6f 75 6e 74 20 6f 66 | its.name.and.the.fixed.amount.of |
| a5300 | 20 74 69 6d 65 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 61 64 64 20 74 6f 20 61 6c 6c 20 70 61 63 | .time.you.want.to.add.to.all.pac |
| a5320 | 6b 65 74 20 67 6f 69 6e 67 20 6f 75 74 20 6f 66 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 2e 20 | ket.going.out.of.the.interface.. |
| a5340 | 54 68 65 20 6c 61 74 65 6e 63 79 20 77 69 6c 6c 20 62 65 20 61 64 64 65 64 20 74 68 72 6f 75 67 | The.latency.will.be.added.throug |
| a5360 | 68 20 74 68 65 20 54 6f 6b 65 6e 20 42 75 63 6b 65 74 20 46 69 6c 74 65 72 20 71 64 69 73 63 2e | h.the.Token.Bucket.Filter.qdisc. |
| a5380 | 20 49 74 20 77 69 6c 6c 20 6f 6e 6c 79 20 74 61 6b 65 20 65 66 66 65 63 74 20 69 66 20 79 6f 75 | .It.will.only.take.effect.if.you |
| a53a0 | 20 68 61 76 65 20 63 6f 6e 66 69 67 75 72 65 64 20 69 74 73 20 62 61 6e 64 77 69 64 74 68 20 74 | .have.configured.its.bandwidth.t |
| a53c0 | 6f 6f 2e 20 59 6f 75 20 63 61 6e 20 75 73 65 20 73 65 63 73 2c 20 6d 73 20 61 6e 64 20 75 73 2e | oo..You.can.use.secs,.ms.and.us. |
| a53e0 | 20 44 65 66 61 75 6c 74 3a 20 35 30 6d 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 | .Default:.50ms..Use.this.command |
| a5400 | 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 50 72 69 6f 72 69 74 79 20 51 75 65 75 65 20 70 | .to.configure.a.Priority.Queue.p |
| a5420 | 6f 6c 69 63 79 2c 20 73 65 74 20 69 74 73 20 6e 61 6d 65 2c 20 73 65 74 20 61 20 63 6c 61 73 73 | olicy,.set.its.name,.set.a.class |
| a5440 | 20 77 69 74 68 20 61 20 70 72 69 6f 72 69 74 79 20 66 72 6f 6d 20 31 20 74 6f 20 37 20 61 6e 64 | .with.a.priority.from.1.to.7.and |
| a5460 | 20 64 65 66 69 6e 65 20 61 20 68 61 72 64 20 6c 69 6d 69 74 20 6f 6e 20 74 68 65 20 72 65 61 6c | .define.a.hard.limit.on.the.real |
| a5480 | 20 71 75 65 75 65 20 73 69 7a 65 2e 20 57 68 65 6e 20 74 68 69 73 20 6c 69 6d 69 74 20 69 73 20 | .queue.size..When.this.limit.is. |
| a54a0 | 72 65 61 63 68 65 64 2c 20 6e 65 77 20 70 61 63 6b 65 74 73 20 61 72 65 20 64 72 6f 70 70 65 64 | reached,.new.packets.are.dropped |
| a54c0 | 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 | ..Use.this.command.to.configure. |
| a54e0 | 61 20 52 61 6e 64 6f 6d 2d 44 65 74 65 63 74 20 70 6f 6c 69 63 79 20 61 6e 64 20 73 65 74 20 69 | a.Random-Detect.policy.and.set.i |
| a5500 | 74 73 20 6e 61 6d 65 2c 20 74 68 65 6e 20 6e 61 6d 65 20 74 68 65 20 49 50 20 50 72 65 63 65 64 | ts.name,.then.name.the.IP.Preced |
| a5520 | 65 6e 63 65 20 66 6f 72 20 74 68 65 20 76 69 72 74 75 61 6c 20 71 75 65 75 65 20 79 6f 75 20 61 | ence.for.the.virtual.queue.you.a |
| a5540 | 72 65 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 61 6e 64 20 77 68 61 74 20 74 68 65 20 6d 61 78 69 | re.configuring.and.what.the.maxi |
| a5560 | 6d 75 6d 20 73 69 7a 65 20 6f 66 20 69 74 73 20 71 75 65 75 65 20 77 69 6c 6c 20 62 65 20 28 66 | mum.size.of.its.queue.will.be.(f |
| a5580 | 72 6f 6d 20 31 20 74 6f 20 31 2d 34 32 39 34 39 36 37 32 39 35 20 70 61 63 6b 65 74 73 29 2e 20 | rom.1.to.1-4294967295.packets).. |
| a55a0 | 50 61 63 6b 65 74 73 20 61 72 65 20 64 72 6f 70 70 65 64 20 77 68 65 6e 20 74 68 65 20 63 75 72 | Packets.are.dropped.when.the.cur |
| a55c0 | 72 65 6e 74 20 71 75 65 75 65 20 6c 65 6e 67 74 68 20 72 65 61 63 68 65 73 20 74 68 69 73 20 76 | rent.queue.length.reaches.this.v |
| a55e0 | 61 6c 75 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 | alue..Use.this.command.to.config |
| a5600 | 75 72 65 20 61 20 52 61 6e 64 6f 6d 2d 44 65 74 65 63 74 20 70 6f 6c 69 63 79 20 61 6e 64 20 73 | ure.a.Random-Detect.policy.and.s |
| a5620 | 65 74 20 69 74 73 20 6e 61 6d 65 2c 20 74 68 65 6e 20 73 74 61 74 65 20 74 68 65 20 49 50 20 50 | et.its.name,.then.state.the.IP.P |
| a5640 | 72 65 63 65 64 65 6e 63 65 20 66 6f 72 20 74 68 65 20 76 69 72 74 75 61 6c 20 71 75 65 75 65 20 | recedence.for.the.virtual.queue. |
| a5660 | 79 6f 75 20 61 72 65 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 61 6e 64 20 77 68 61 74 20 69 74 73 | you.are.configuring.and.what.its |
| a5680 | 20 6d 61 72 6b 20 28 64 72 6f 70 29 20 70 72 6f 62 61 62 69 6c 69 74 79 20 77 69 6c 6c 20 62 65 | .mark.(drop).probability.will.be |
| a56a0 | 2e 20 53 65 74 20 74 68 65 20 70 72 6f 62 61 62 69 6c 69 74 79 20 62 79 20 67 69 76 69 6e 67 20 | ..Set.the.probability.by.giving. |
| a56c0 | 74 68 65 20 4e 20 76 61 6c 75 65 20 6f 66 20 74 68 65 20 66 72 61 63 74 69 6f 6e 20 31 2f 4e 20 | the.N.value.of.the.fraction.1/N. |
| a56e0 | 28 64 65 66 61 75 6c 74 3a 20 31 30 29 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 | (default:.10)..Use.this.command. |
| a5700 | 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 52 61 6e 64 6f 6d 2d 44 65 74 65 63 74 20 70 6f 6c | to.configure.a.Random-Detect.pol |
| a5720 | 69 63 79 20 61 6e 64 20 73 65 74 20 69 74 73 20 6e 61 6d 65 2c 20 74 68 65 6e 20 73 74 61 74 65 | icy.and.set.its.name,.then.state |
| a5740 | 20 74 68 65 20 49 50 20 50 72 65 63 65 64 65 6e 63 65 20 66 6f 72 20 74 68 65 20 76 69 72 74 75 | .the.IP.Precedence.for.the.virtu |
| a5760 | 61 6c 20 71 75 65 75 65 20 79 6f 75 20 61 72 65 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 61 6e 64 | al.queue.you.are.configuring.and |
| a5780 | 20 77 68 61 74 20 69 74 73 20 6d 61 78 69 6d 75 6d 20 74 68 72 65 73 68 6f 6c 64 20 66 6f 72 20 | .what.its.maximum.threshold.for. |
| a57a0 | 72 61 6e 64 6f 6d 20 64 65 74 65 63 74 69 6f 6e 20 77 69 6c 6c 20 62 65 20 28 66 72 6f 6d 20 30 | random.detection.will.be.(from.0 |
| a57c0 | 20 74 6f 20 34 30 39 36 20 70 61 63 6b 65 74 73 2c 20 64 65 66 61 75 6c 74 3a 20 31 38 29 2e 20 | .to.4096.packets,.default:.18).. |
| a57e0 | 41 74 20 74 68 69 73 20 73 69 7a 65 2c 20 74 68 65 20 6d 61 72 6b 69 6e 67 20 28 64 72 6f 70 29 | At.this.size,.the.marking.(drop) |
| a5800 | 20 70 72 6f 62 61 62 69 6c 69 74 79 20 69 73 20 6d 61 78 69 6d 61 6c 2e 00 55 73 65 20 74 68 69 | .probability.is.maximal..Use.thi |
| a5820 | 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 52 61 6e 64 6f 6d 2d | s.command.to.configure.a.Random- |
| a5840 | 44 65 74 65 63 74 20 70 6f 6c 69 63 79 20 61 6e 64 20 73 65 74 20 69 74 73 20 6e 61 6d 65 2c 20 | Detect.policy.and.set.its.name,. |
| a5860 | 74 68 65 6e 20 73 74 61 74 65 20 74 68 65 20 49 50 20 50 72 65 63 65 64 65 6e 63 65 20 66 6f 72 | then.state.the.IP.Precedence.for |
| a5880 | 20 74 68 65 20 76 69 72 74 75 61 6c 20 71 75 65 75 65 20 79 6f 75 20 61 72 65 20 63 6f 6e 66 69 | .the.virtual.queue.you.are.confi |
| a58a0 | 67 75 72 69 6e 67 20 61 6e 64 20 77 68 61 74 20 69 74 73 20 6d 69 6e 69 6d 75 6d 20 74 68 72 65 | guring.and.what.its.minimum.thre |
| a58c0 | 73 68 6f 6c 64 20 66 6f 72 20 72 61 6e 64 6f 6d 20 64 65 74 65 63 74 69 6f 6e 20 77 69 6c 6c 20 | shold.for.random.detection.will. |
| a58e0 | 62 65 20 28 66 72 6f 6d 20 30 20 74 6f 20 34 30 39 36 20 70 61 63 6b 65 74 73 29 2e 20 20 49 66 | be.(from.0.to.4096.packets)...If |
| a5900 | 20 74 68 69 73 20 76 61 6c 75 65 20 69 73 20 65 78 63 65 65 64 65 64 2c 20 70 61 63 6b 65 74 73 | .this.value.is.exceeded,.packets |
| a5920 | 20 73 74 61 72 74 20 62 65 69 6e 67 20 65 6c 69 67 69 62 6c 65 20 66 6f 72 20 62 65 69 6e 67 20 | .start.being.eligible.for.being. |
| a5940 | 64 72 6f 70 70 65 64 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e | dropped..Use.this.command.to.con |
| a5960 | 66 69 67 75 72 65 20 61 20 52 61 6e 64 6f 6d 2d 44 65 74 65 63 74 20 70 6f 6c 69 63 79 20 61 6e | figure.a.Random-Detect.policy.an |
| a5980 | 64 20 73 65 74 20 69 74 73 20 6e 61 6d 65 2c 20 74 68 65 6e 20 73 74 61 74 65 20 74 68 65 20 49 | d.set.its.name,.then.state.the.I |
| a59a0 | 50 20 50 72 65 63 65 64 65 6e 63 65 20 66 6f 72 20 74 68 65 20 76 69 72 74 75 61 6c 20 71 75 65 | P.Precedence.for.the.virtual.que |
| a59c0 | 75 65 20 79 6f 75 20 61 72 65 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 61 6e 64 20 77 68 61 74 20 | ue.you.are.configuring.and.what. |
| a59e0 | 74 68 65 20 73 69 7a 65 20 6f 66 20 69 74 73 20 61 76 65 72 61 67 65 2d 70 61 63 6b 65 74 20 73 | the.size.of.its.average-packet.s |
| a5a00 | 68 6f 75 6c 64 20 62 65 20 28 69 6e 20 62 79 74 65 73 2c 20 64 65 66 61 75 6c 74 3a 20 31 30 32 | hould.be.(in.bytes,.default:.102 |
| a5a20 | 34 29 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 | 4)..Use.this.command.to.configur |
| a5a40 | 65 20 61 20 52 61 6e 64 6f 6d 2d 44 65 74 65 63 74 20 70 6f 6c 69 63 79 2c 20 73 65 74 20 69 74 | e.a.Random-Detect.policy,.set.it |
| a5a60 | 73 20 6e 61 6d 65 20 61 6e 64 20 73 65 74 20 74 68 65 20 61 76 61 69 6c 61 62 6c 65 20 62 61 6e | s.name.and.set.the.available.ban |
| a5a80 | 64 77 69 64 74 68 20 66 6f 72 20 74 68 69 73 20 70 6f 6c 69 63 79 2e 20 49 74 20 69 73 20 75 73 | dwidth.for.this.policy..It.is.us |
| a5aa0 | 65 64 20 66 6f 72 20 63 61 6c 63 75 6c 61 74 69 6e 67 20 74 68 65 20 61 76 65 72 61 67 65 20 71 | ed.for.calculating.the.average.q |
| a5ac0 | 75 65 75 65 20 73 69 7a 65 20 61 66 74 65 72 20 73 6f 6d 65 20 69 64 6c 65 20 74 69 6d 65 2e 20 | ueue.size.after.some.idle.time.. |
| a5ae0 | 49 74 20 73 68 6f 75 6c 64 20 62 65 20 73 65 74 20 74 6f 20 74 68 65 20 62 61 6e 64 77 69 64 74 | It.should.be.set.to.the.bandwidt |
| a5b00 | 68 20 6f 66 20 79 6f 75 72 20 69 6e 74 65 72 66 61 63 65 2e 20 52 61 6e 64 6f 6d 20 44 65 74 65 | h.of.your.interface..Random.Dete |
| a5b20 | 63 74 20 69 73 20 6e 6f 74 20 61 20 73 68 61 70 69 6e 67 20 70 6f 6c 69 63 79 2c 20 74 68 69 73 | ct.is.not.a.shaping.policy,.this |
| a5b40 | 20 63 6f 6d 6d 61 6e 64 20 77 69 6c 6c 20 6e 6f 74 20 73 68 61 70 65 2e 00 55 73 65 20 74 68 69 | .command.will.not.shape..Use.thi |
| a5b60 | 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 52 61 74 65 2d 43 6f | s.command.to.configure.a.Rate-Co |
| a5b80 | 6e 74 72 6f 6c 20 70 6f 6c 69 63 79 2c 20 73 65 74 20 69 74 73 20 6e 61 6d 65 20 61 6e 64 20 74 | ntrol.policy,.set.its.name.and.t |
| a5ba0 | 68 65 20 6d 61 78 69 6d 75 6d 20 61 6d 6f 75 6e 74 20 6f 66 20 74 69 6d 65 20 61 20 70 61 63 6b | he.maximum.amount.of.time.a.pack |
| a5bc0 | 65 74 20 63 61 6e 20 62 65 20 71 75 65 75 65 64 20 28 64 65 66 61 75 6c 74 3a 20 35 30 20 6d 73 | et.can.be.queued.(default:.50.ms |
| a5be0 | 29 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 | )..Use.this.command.to.configure |
| a5c00 | 20 61 20 52 61 74 65 2d 43 6f 6e 74 72 6f 6c 20 70 6f 6c 69 63 79 2c 20 73 65 74 20 69 74 73 20 | .a.Rate-Control.policy,.set.its. |
| a5c20 | 6e 61 6d 65 20 61 6e 64 20 74 68 65 20 72 61 74 65 20 6c 69 6d 69 74 20 79 6f 75 20 77 61 6e 74 | name.and.the.rate.limit.you.want |
| a5c40 | 20 74 6f 20 68 61 76 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f | .to.have..Use.this.command.to.co |
| a5c60 | 6e 66 69 67 75 72 65 20 61 20 52 61 74 65 2d 43 6f 6e 74 72 6f 6c 20 70 6f 6c 69 63 79 2c 20 73 | nfigure.a.Rate-Control.policy,.s |
| a5c80 | 65 74 20 69 74 73 20 6e 61 6d 65 20 61 6e 64 20 74 68 65 20 73 69 7a 65 20 6f 66 20 74 68 65 20 | et.its.name.and.the.size.of.the. |
| a5ca0 | 62 75 63 6b 65 74 20 69 6e 20 62 79 74 65 73 20 77 68 69 63 68 20 77 69 6c 6c 20 62 65 20 61 76 | bucket.in.bytes.which.will.be.av |
| a5cc0 | 61 69 6c 61 62 6c 65 20 66 6f 72 20 62 75 72 73 74 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d | ailable.for.burst..Use.this.comm |
| a5ce0 | 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 52 6f 75 6e 64 2d 52 6f 62 69 6e 20 70 | and.to.configure.a.Round-Robin.p |
| a5d00 | 6f 6c 69 63 79 2c 20 73 65 74 20 69 74 73 20 6e 61 6d 65 2c 20 73 65 74 20 61 20 63 6c 61 73 73 | olicy,.set.its.name,.set.a.class |
| a5d20 | 20 49 44 2c 20 61 6e 64 20 74 68 65 20 71 75 61 6e 74 75 6d 20 66 6f 72 20 74 68 61 74 20 63 6c | .ID,.and.the.quantum.for.that.cl |
| a5d40 | 61 73 73 2e 20 54 68 65 20 64 65 66 69 63 69 74 20 63 6f 75 6e 74 65 72 20 77 69 6c 6c 20 61 64 | ass..The.deficit.counter.will.ad |
| a5d60 | 64 20 74 68 61 74 20 76 61 6c 75 65 20 65 61 63 68 20 72 6f 75 6e 64 2e 00 55 73 65 20 74 68 69 | d.that.value.each.round..Use.thi |
| a5d80 | 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 52 6f 75 6e 64 2d 52 | s.command.to.configure.a.Round-R |
| a5da0 | 6f 62 69 6e 20 70 6f 6c 69 63 79 2c 20 73 65 74 20 69 74 73 20 6e 61 6d 65 2c 20 73 65 74 20 61 | obin.policy,.set.its.name,.set.a |
| a5dc0 | 20 63 6c 61 73 73 20 49 44 2c 20 61 6e 64 20 74 68 65 20 71 75 65 75 65 20 73 69 7a 65 20 69 6e | .class.ID,.and.the.queue.size.in |
| a5de0 | 20 70 61 63 6b 65 74 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f | .packets..Use.this.command.to.co |
| a5e00 | 6e 66 69 67 75 72 65 20 61 20 53 68 61 70 65 72 20 70 6f 6c 69 63 79 2c 20 73 65 74 20 69 74 73 | nfigure.a.Shaper.policy,.set.its |
| a5e20 | 20 6e 61 6d 65 20 61 6e 64 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 62 61 6e 64 77 69 64 74 68 20 | .name.and.the.maximum.bandwidth. |
| a5e40 | 66 6f 72 20 61 6c 6c 20 63 6f 6d 62 69 6e 65 64 20 74 72 61 66 66 69 63 2e 00 55 73 65 20 74 68 | for.all.combined.traffic..Use.th |
| a5e60 | 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 53 68 61 70 65 72 | is.command.to.configure.a.Shaper |
| a5e80 | 20 70 6f 6c 69 63 79 2c 20 73 65 74 20 69 74 73 20 6e 61 6d 65 2c 20 64 65 66 69 6e 65 20 61 20 | .policy,.set.its.name,.define.a. |
| a5ea0 | 63 6c 61 73 73 20 61 6e 64 20 73 65 74 20 74 68 65 20 67 75 61 72 61 6e 74 65 65 64 20 74 72 61 | class.and.set.the.guaranteed.tra |
| a5ec0 | 66 66 69 63 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 61 6c 6c 6f 63 61 74 65 20 74 6f 20 74 68 61 | ffic.you.want.to.allocate.to.tha |
| a5ee0 | 74 20 63 6c 61 73 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e | t.class..Use.this.command.to.con |
| a5f00 | 66 69 67 75 72 65 20 61 20 53 68 61 70 65 72 20 70 6f 6c 69 63 79 2c 20 73 65 74 20 69 74 73 20 | figure.a.Shaper.policy,.set.its. |
| a5f20 | 6e 61 6d 65 2c 20 64 65 66 69 6e 65 20 61 20 63 6c 61 73 73 20 61 6e 64 20 73 65 74 20 74 68 65 | name,.define.a.class.and.set.the |
| a5f40 | 20 6d 61 78 69 6d 75 6d 20 73 70 65 65 64 20 70 6f 73 73 69 62 6c 65 20 66 6f 72 20 74 68 69 73 | .maximum.speed.possible.for.this |
| a5f60 | 20 63 6c 61 73 73 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 63 65 69 6c 69 6e 67 20 76 61 6c 75 | .class..The.default.ceiling.valu |
| a5f80 | 65 20 69 73 20 74 68 65 20 62 61 6e 64 77 69 64 74 68 20 76 61 6c 75 65 2e 00 55 73 65 20 74 68 | e.is.the.bandwidth.value..Use.th |
| a5fa0 | 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 53 68 61 70 65 72 | is.command.to.configure.a.Shaper |
| a5fc0 | 20 70 6f 6c 69 63 79 2c 20 73 65 74 20 69 74 73 20 6e 61 6d 65 2c 20 64 65 66 69 6e 65 20 61 20 | .policy,.set.its.name,.define.a. |
| a5fe0 | 63 6c 61 73 73 20 61 6e 64 20 73 65 74 20 74 68 65 20 70 72 69 6f 72 69 74 79 20 66 6f 72 20 75 | class.and.set.the.priority.for.u |
| a6000 | 73 61 67 65 20 6f 66 20 61 76 61 69 6c 61 62 6c 65 20 62 61 6e 64 77 69 64 74 68 20 6f 6e 63 65 | sage.of.available.bandwidth.once |
| a6020 | 20 67 75 61 72 61 6e 74 65 65 73 20 68 61 76 65 20 62 65 65 6e 20 6d 65 74 2e 20 54 68 65 20 6c | .guarantees.have.been.met..The.l |
| a6040 | 6f 77 65 72 20 74 68 65 20 70 72 69 6f 72 69 74 79 20 6e 75 6d 62 65 72 2c 20 74 68 65 20 68 69 | ower.the.priority.number,.the.hi |
| a6060 | 67 68 65 72 20 74 68 65 20 70 72 69 6f 72 69 74 79 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 70 | gher.the.priority..The.default.p |
| a6080 | 72 69 6f 72 69 74 79 20 76 61 6c 75 65 20 69 73 20 30 2c 20 74 68 65 20 68 69 67 68 65 73 74 20 | riority.value.is.0,.the.highest. |
| a60a0 | 70 72 69 6f 72 69 74 79 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f | priority..Use.this.command.to.co |
| a60c0 | 6e 66 69 67 75 72 65 20 61 20 53 68 61 70 65 72 20 70 6f 6c 69 63 79 2c 20 73 65 74 20 69 74 73 | nfigure.a.Shaper.policy,.set.its |
| a60e0 | 20 6e 61 6d 65 2c 20 64 65 66 69 6e 65 20 61 20 63 6c 61 73 73 20 61 6e 64 20 73 65 74 20 74 68 | .name,.define.a.class.and.set.th |
| a6100 | 65 20 73 69 7a 65 20 6f 66 20 74 68 65 20 60 74 6f 63 6b 65 6e 20 62 75 63 6b 65 74 60 5f 20 69 | e.size.of.the.`tocken.bucket`_.i |
| a6120 | 6e 20 62 79 74 65 73 2c 20 77 68 69 63 68 20 77 69 6c 6c 20 62 65 20 61 76 61 69 6c 61 62 6c 65 | n.bytes,.which.will.be.available |
| a6140 | 20 74 6f 20 62 65 20 73 65 6e 74 20 61 74 20 63 65 69 6c 69 6e 67 20 73 70 65 65 64 20 28 64 65 | .to.be.sent.at.ceiling.speed.(de |
| a6160 | 66 61 75 6c 74 3a 20 31 35 4b 62 29 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 | fault:.15Kb)..Use.this.command.t |
| a6180 | 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 64 61 74 61 2d 72 61 74 65 20 6c 69 6d 69 74 20 74 6f | o.configure.a.data-rate.limit.to |
| a61a0 | 20 50 50 50 4f 6f 45 20 63 6c 69 65 6e 74 73 20 66 6f 72 20 74 72 61 66 66 69 63 20 64 6f 77 6e | .PPPOoE.clients.for.traffic.down |
| a61c0 | 6c 6f 61 64 20 6f 72 20 75 70 6c 6f 61 64 2e 20 54 68 65 20 72 61 74 65 2d 6c 69 6d 69 74 20 69 | load.or.upload..The.rate-limit.i |
| a61e0 | 73 20 73 65 74 20 69 6e 20 6b 62 69 74 2f 73 65 63 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d | s.set.in.kbit/sec..Use.this.comm |
| a6200 | 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 64 72 6f 70 2d 74 61 69 6c 20 70 6f 6c | and.to.configure.a.drop-tail.pol |
| a6220 | 69 63 79 20 28 50 46 49 46 4f 29 2e 20 43 68 6f 6f 73 65 20 61 20 75 6e 69 71 75 65 20 6e 61 6d | icy.(PFIFO)..Choose.a.unique.nam |
| a6240 | 65 20 66 6f 72 20 74 68 69 73 20 70 6f 6c 69 63 79 20 61 6e 64 20 74 68 65 20 73 69 7a 65 20 6f | e.for.this.policy.and.the.size.o |
| a6260 | 66 20 74 68 65 20 71 75 65 75 65 20 62 79 20 73 65 74 74 69 6e 67 20 74 68 65 20 6e 75 6d 62 65 | f.the.queue.by.setting.the.numbe |
| a6280 | 72 20 6f 66 20 70 61 63 6b 65 74 73 20 69 74 20 63 61 6e 20 63 6f 6e 74 61 69 6e 20 28 6d 61 78 | r.of.packets.it.can.contain.(max |
| a62a0 | 69 6d 75 6d 20 34 32 39 34 39 36 37 32 39 35 29 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 | imum.4294967295)..Use.this.comma |
| a62c0 | 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 73 70 65 63 69 66 69 63 20 73 65 73 73 69 | nd.to.configure.a.specific.sessi |
| a62e0 | 6f 6e 20 68 6f 6c 64 20 74 69 6d 65 20 66 6f 72 20 4c 44 50 20 70 65 65 72 73 2e 20 53 65 74 20 | on.hold.time.for.LDP.peers..Set. |
| a6300 | 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 4c 44 50 20 70 65 65 72 20 61 | the.IP.address.of.the.LDP.peer.a |
| a6320 | 6e 64 20 61 20 73 65 73 73 69 6f 6e 20 68 6f 6c 64 20 74 69 6d 65 20 74 68 61 74 20 73 68 6f 75 | nd.a.session.hold.time.that.shou |
| a6340 | 6c 64 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 66 6f 72 20 69 74 2e 20 59 6f 75 20 6d 61 79 | ld.be.configured.for.it..You.may |
| a6360 | 20 68 61 76 65 20 74 6f 20 72 65 73 65 74 20 74 68 65 20 6e 65 69 67 68 62 6f 72 20 66 6f 72 20 | .have.to.reset.the.neighbor.for. |
| a6380 | 74 68 69 73 20 74 6f 20 77 6f 72 6b 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 | this.to.work..Use.this.command.t |
| a63a0 | 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 6e 20 49 6e 67 72 65 73 73 20 50 6f 6c 69 63 65 72 2c 20 | o.configure.an.Ingress.Policer,. |
| a63c0 | 64 65 66 69 6e 69 6e 67 20 69 74 73 20 6e 61 6d 65 20 61 6e 64 20 74 68 65 20 62 75 72 73 74 20 | defining.its.name.and.the.burst. |
| a63e0 | 73 69 7a 65 20 69 6e 20 62 79 74 65 73 20 28 64 65 66 61 75 6c 74 3a 20 31 35 29 20 66 6f 72 20 | size.in.bytes.(default:.15).for. |
| a6400 | 69 74 73 20 64 65 66 61 75 6c 74 20 70 6f 6c 69 63 79 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d | its.default.policy..Use.this.com |
| a6420 | 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 6e 20 49 6e 67 72 65 73 73 20 50 6f 6c | mand.to.configure.an.Ingress.Pol |
| a6440 | 69 63 65 72 2c 20 64 65 66 69 6e 69 6e 67 20 69 74 73 20 6e 61 6d 65 20 61 6e 64 20 74 68 65 20 | icer,.defining.its.name.and.the. |
| a6460 | 6d 61 78 69 6d 75 6d 20 61 6c 6c 6f 77 65 64 20 62 61 6e 64 77 69 64 74 68 20 66 6f 72 20 69 74 | maximum.allowed.bandwidth.for.it |
| a6480 | 73 20 64 65 66 61 75 6c 74 20 70 6f 6c 69 63 79 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 | s.default.policy..Use.this.comma |
| a64a0 | 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 6e 20 49 6e 67 72 65 73 73 20 50 6f 6c 69 63 | nd.to.configure.an.Ingress.Polic |
| a64c0 | 65 72 2c 20 64 65 66 69 6e 69 6e 67 20 69 74 73 20 6e 61 6d 65 2c 20 61 20 63 6c 61 73 73 20 69 | er,.defining.its.name,.a.class.i |
| a64e0 | 64 65 6e 74 69 66 69 65 72 20 28 31 2d 34 30 39 30 29 20 61 6e 64 20 74 68 65 20 62 75 72 73 74 | dentifier.(1-4090).and.the.burst |
| a6500 | 20 73 69 7a 65 20 69 6e 20 62 79 74 65 73 20 66 6f 72 20 74 68 69 73 20 63 6c 61 73 73 20 28 64 | .size.in.bytes.for.this.class.(d |
| a6520 | 65 66 61 75 6c 74 3a 20 31 35 29 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f | efault:.15)..Use.this.command.to |
| a6540 | 20 63 6f 6e 66 69 67 75 72 65 20 61 6e 20 49 6e 67 72 65 73 73 20 50 6f 6c 69 63 65 72 2c 20 64 | .configure.an.Ingress.Policer,.d |
| a6560 | 65 66 69 6e 69 6e 67 20 69 74 73 20 6e 61 6d 65 2c 20 61 20 63 6c 61 73 73 20 69 64 65 6e 74 69 | efining.its.name,.a.class.identi |
| a6580 | 66 69 65 72 20 28 31 2d 34 30 39 30 29 20 61 6e 64 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 61 6c | fier.(1-4090).and.the.maximum.al |
| a65a0 | 6c 6f 77 65 64 20 62 61 6e 64 77 69 64 74 68 20 66 6f 72 20 74 68 69 73 20 63 6c 61 73 73 2e 00 | lowed.bandwidth.for.this.class.. |
| a65c0 | 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 6e | Use.this.command.to.configure.an |
| a65e0 | 20 49 6e 67 72 65 73 73 20 50 6f 6c 69 63 65 72 2c 20 64 65 66 69 6e 69 6e 67 20 69 74 73 20 6e | .Ingress.Policer,.defining.its.n |
| a6600 | 61 6d 65 2c 20 61 20 63 6c 61 73 73 20 69 64 65 6e 74 69 66 69 65 72 20 28 31 2d 34 30 39 30 29 | ame,.a.class.identifier.(1-4090) |
| a6620 | 2c 20 61 20 63 6c 61 73 73 20 6d 61 74 63 68 69 6e 67 20 72 75 6c 65 20 6e 61 6d 65 20 61 6e 64 | ,.a.class.matching.rule.name.and |
| a6640 | 20 69 74 73 20 64 65 73 63 72 69 70 74 69 6f 6e 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 | .its.description..Use.this.comma |
| a6660 | 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 6e 20 49 6e 67 72 65 73 73 20 50 6f 6c 69 63 | nd.to.configure.an.Ingress.Polic |
| a6680 | 65 72 2c 20 64 65 66 69 6e 69 6e 67 20 69 74 73 20 6e 61 6d 65 2c 20 61 20 63 6c 61 73 73 20 69 | er,.defining.its.name,.a.class.i |
| a66a0 | 64 65 6e 74 69 66 69 65 72 20 28 31 2d 34 30 39 30 29 2c 20 61 6e 64 20 74 68 65 20 70 72 69 6f | dentifier.(1-4090),.and.the.prio |
| a66c0 | 72 69 74 79 20 28 30 2d 32 30 2c 20 64 65 66 61 75 6c 74 20 32 30 29 20 69 6e 20 77 68 69 63 68 | rity.(0-20,.default.20).in.which |
| a66e0 | 20 74 68 65 20 72 75 6c 65 20 69 73 20 65 76 61 6c 75 61 74 65 64 20 28 74 68 65 20 6c 6f 77 65 | .the.rule.is.evaluated.(the.lowe |
| a6700 | 72 20 74 68 65 20 6e 75 6d 62 65 72 2c 20 74 68 65 20 68 69 67 68 65 72 20 74 68 65 20 70 72 69 | r.the.number,.the.higher.the.pri |
| a6720 | 6f 72 69 74 79 29 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 | ority)..Use.this.command.to.conf |
| a6740 | 69 67 75 72 65 20 61 6e 20 66 71 2d 63 6f 64 65 6c 20 70 6f 6c 69 63 79 2c 20 73 65 74 20 69 74 | igure.an.fq-codel.policy,.set.it |
| a6760 | 73 20 6e 61 6d 65 20 61 6e 64 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 | s.name.and.the.maximum.number.of |
| a6780 | 20 62 79 74 65 73 20 28 64 65 66 61 75 6c 74 3a 20 31 35 31 34 29 20 74 6f 20 62 65 20 64 65 71 | .bytes.(default:.1514).to.be.deq |
| a67a0 | 75 65 75 65 64 20 66 72 6f 6d 20 61 20 71 75 65 75 65 20 61 74 20 6f 6e 63 65 2e 00 55 73 65 20 | ueued.from.a.queue.at.once..Use. |
| a67c0 | 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 6e 20 66 71 2d | this.command.to.configure.an.fq- |
| a67e0 | 63 6f 64 65 6c 20 70 6f 6c 69 63 79 2c 20 73 65 74 20 69 74 73 20 6e 61 6d 65 20 61 6e 64 20 74 | codel.policy,.set.its.name.and.t |
| a6800 | 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 73 75 62 2d 71 75 65 75 65 73 20 28 64 65 66 61 75 6c 74 | he.number.of.sub-queues.(default |
| a6820 | 3a 20 31 30 32 34 29 20 69 6e 74 6f 20 77 68 69 63 68 20 70 61 63 6b 65 74 73 20 61 72 65 20 63 | :.1024).into.which.packets.are.c |
| a6840 | 6c 61 73 73 69 66 69 65 64 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 | lassified..Use.this.command.to.c |
| a6860 | 6f 6e 66 69 67 75 72 65 20 61 6e 20 66 71 2d 63 6f 64 65 6c 20 70 6f 6c 69 63 79 2c 20 73 65 74 | onfigure.an.fq-codel.policy,.set |
| a6880 | 20 69 74 73 20 6e 61 6d 65 20 61 6e 64 20 74 68 65 20 74 69 6d 65 20 70 65 72 69 6f 64 20 75 73 | .its.name.and.the.time.period.us |
| a68a0 | 65 64 20 62 79 20 74 68 65 20 63 6f 6e 74 72 6f 6c 20 6c 6f 6f 70 20 6f 66 20 43 6f 44 65 6c 20 | ed.by.the.control.loop.of.CoDel. |
| a68c0 | 74 6f 20 64 65 74 65 63 74 20 77 68 65 6e 20 61 20 70 65 72 73 69 73 74 65 6e 74 20 71 75 65 75 | to.detect.when.a.persistent.queu |
| a68e0 | 65 20 69 73 20 64 65 76 65 6c 6f 70 69 6e 67 2c 20 65 6e 73 75 72 69 6e 67 20 74 68 61 74 20 74 | e.is.developing,.ensuring.that.t |
| a6900 | 68 65 20 6d 65 61 73 75 72 65 64 20 6d 69 6e 69 6d 75 6d 20 64 65 6c 61 79 20 64 6f 65 73 20 6e | he.measured.minimum.delay.does.n |
| a6920 | 6f 74 20 62 65 63 6f 6d 65 20 74 6f 6f 20 73 74 61 6c 65 20 28 64 65 66 61 75 6c 74 3a 20 31 30 | ot.become.too.stale.(default:.10 |
| a6940 | 30 6d 73 29 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 | 0ms)..Use.this.command.to.config |
| a6960 | 75 72 65 20 61 6e 20 66 71 2d 63 6f 64 65 6c 20 70 6f 6c 69 63 79 2c 20 73 65 74 20 69 74 73 20 | ure.an.fq-codel.policy,.set.its. |
| a6980 | 6e 61 6d 65 2c 20 61 6e 64 20 64 65 66 69 6e 65 20 61 20 68 61 72 64 20 6c 69 6d 69 74 20 6f 6e | name,.and.define.a.hard.limit.on |
| a69a0 | 20 74 68 65 20 72 65 61 6c 20 71 75 65 75 65 20 73 69 7a 65 2e 20 57 68 65 6e 20 74 68 69 73 20 | .the.real.queue.size..When.this. |
| a69c0 | 6c 69 6d 69 74 20 69 73 20 72 65 61 63 68 65 64 2c 20 6e 65 77 20 70 61 63 6b 65 74 73 20 61 72 | limit.is.reached,.new.packets.ar |
| a69e0 | 65 20 64 72 6f 70 70 65 64 20 28 64 65 66 61 75 6c 74 3a 20 31 30 32 34 30 20 70 61 63 6b 65 74 | e.dropped.(default:.10240.packet |
| a6a00 | 73 29 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 | s)..Use.this.command.to.configur |
| a6a20 | 65 20 61 6e 20 66 71 2d 63 6f 64 65 6c 20 70 6f 6c 69 63 79 2c 20 73 65 74 20 69 74 73 20 6e 61 | e.an.fq-codel.policy,.set.its.na |
| a6a40 | 6d 65 2c 20 61 6e 64 20 64 65 66 69 6e 65 20 74 68 65 20 61 63 63 65 70 74 61 62 6c 65 20 6d 69 | me,.and.define.the.acceptable.mi |
| a6a60 | 6e 69 6d 75 6d 20 73 74 61 6e 64 69 6e 67 2f 70 65 72 73 69 73 74 65 6e 74 20 71 75 65 75 65 20 | nimum.standing/persistent.queue. |
| a6a80 | 64 65 6c 61 79 2e 20 54 68 69 73 20 6d 69 6e 69 6d 75 6d 20 64 65 6c 61 79 20 69 73 20 69 64 65 | delay..This.minimum.delay.is.ide |
| a6aa0 | 6e 74 69 66 69 65 64 20 62 79 20 74 72 61 63 6b 69 6e 67 20 74 68 65 20 6c 6f 63 61 6c 20 6d 69 | ntified.by.tracking.the.local.mi |
| a6ac0 | 6e 69 6d 75 6d 20 71 75 65 75 65 20 64 65 6c 61 79 20 74 68 61 74 20 70 61 63 6b 65 74 73 20 65 | nimum.queue.delay.that.packets.e |
| a6ae0 | 78 70 65 72 69 65 6e 63 65 20 28 64 65 66 61 75 6c 74 3a 20 35 6d 73 29 2e 00 55 73 65 20 74 68 | xperience.(default:.5ms)..Use.th |
| a6b00 | 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 6e 20 69 6e 74 65 72 | is.command.to.configure.an.inter |
| a6b20 | 66 61 63 65 20 77 69 74 68 20 49 47 4d 50 20 73 6f 20 74 68 61 74 20 50 49 4d 20 63 61 6e 20 72 | face.with.IGMP.so.that.PIM.can.r |
| a6b40 | 65 63 65 69 76 65 20 49 47 4d 50 20 72 65 70 6f 72 74 73 20 61 6e 64 20 71 75 65 72 79 20 6f 6e | eceive.IGMP.reports.and.query.on |
| a6b60 | 20 74 68 65 20 73 65 6c 65 63 74 65 64 20 69 6e 74 65 72 66 61 63 65 2e 20 42 79 20 64 65 66 61 | .the.selected.interface..By.defa |
| a6b80 | 75 6c 74 20 49 47 4d 50 20 76 65 72 73 69 6f 6e 20 33 20 77 69 6c 6c 20 62 65 20 75 73 65 64 2e | ult.IGMP.version.3.will.be.used. |
| a6ba0 | 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 | .Use.this.command.to.configure.a |
| a6bc0 | 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 66 6f 72 20 4c 44 50 20 70 65 65 72 73 2e 20 53 65 74 | uthentication.for.LDP.peers..Set |
| a6be0 | 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 4c 44 50 20 70 65 65 72 20 | .the.IP.address.of.the.LDP.peer. |
| a6c00 | 61 6e 64 20 61 20 70 61 73 73 77 6f 72 64 20 74 68 61 74 20 73 68 6f 75 6c 64 20 62 65 20 73 68 | and.a.password.that.should.be.sh |
| a6c20 | 61 72 65 64 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 62 65 63 6f 6d 65 20 6e 65 69 67 68 62 6f 72 | ared.in.order.to.become.neighbor |
| a6c40 | 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 | s..Use.this.command.to.configure |
| a6c60 | 20 69 6e 20 74 68 65 20 73 65 6c 65 63 74 65 64 20 69 6e 74 65 72 66 61 63 65 20 74 68 65 20 49 | .in.the.selected.interface.the.I |
| a6c80 | 47 4d 50 20 68 6f 73 74 20 71 75 65 72 79 20 69 6e 74 65 72 76 61 6c 20 28 31 2d 31 38 30 30 29 | GMP.host.query.interval.(1-1800) |
| a6ca0 | 20 69 6e 20 73 65 63 6f 6e 64 73 20 74 68 61 74 20 50 49 4d 20 77 69 6c 6c 20 75 73 65 2e 00 55 | .in.seconds.that.PIM.will.use..U |
| a6cc0 | 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 69 6e 20 | se.this.command.to.configure.in. |
| a6ce0 | 74 68 65 20 73 65 6c 65 63 74 65 64 20 69 6e 74 65 72 66 61 63 65 20 74 68 65 20 49 47 4d 50 20 | the.selected.interface.the.IGMP. |
| a6d00 | 71 75 65 72 79 20 72 65 73 70 6f 6e 73 65 20 74 69 6d 65 6f 75 74 20 76 61 6c 75 65 20 28 31 30 | query.response.timeout.value.(10 |
| a6d20 | 2d 32 35 30 29 20 69 6e 20 64 65 63 69 73 65 63 6f 6e 64 73 2e 20 49 66 20 61 20 72 65 70 6f 72 | -250).in.deciseconds..If.a.repor |
| a6d40 | 74 20 69 73 20 6e 6f 74 20 72 65 74 75 72 6e 65 64 20 69 6e 20 74 68 65 20 73 70 65 63 69 66 69 | t.is.not.returned.in.the.specifi |
| a6d60 | 65 64 20 74 69 6d 65 2c 20 69 74 20 77 69 6c 6c 20 62 65 20 61 73 73 75 6d 65 64 20 74 68 65 20 | ed.time,.it.will.be.assumed.the. |
| a6d80 | 28 53 2c 47 29 20 6f 72 20 28 2a 2c 47 29 20 73 74 61 74 65 20 3a 72 66 63 3a 60 37 37 36 31 23 | (S,G).or.(*,G).state.:rfc:`7761# |
| a6da0 | 73 65 63 74 69 6f 6e 2d 34 2e 31 60 20 68 61 73 20 74 69 6d 65 64 20 6f 75 74 2e 00 55 73 65 20 | section-4.1`.has.timed.out..Use. |
| a6dc0 | 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 69 6e 20 74 68 65 | this.command.to.configure.in.the |
| a6de0 | 20 73 65 6c 65 63 74 65 64 20 69 6e 74 65 72 66 61 63 65 20 74 68 65 20 49 47 4d 50 20 71 75 65 | .selected.interface.the.IGMP.que |
| a6e00 | 72 79 20 72 65 73 70 6f 6e 73 65 20 74 69 6d 65 6f 75 74 20 76 61 6c 75 65 20 28 31 30 2d 32 35 | ry.response.timeout.value.(10-25 |
| a6e20 | 30 29 20 69 6e 20 64 65 63 69 73 65 63 6f 6e 64 73 2e 20 49 66 20 61 20 72 65 70 6f 72 74 20 69 | 0).in.deciseconds..If.a.report.i |
| a6e40 | 73 20 6e 6f 74 20 72 65 74 75 72 6e 65 64 20 69 6e 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 | s.not.returned.in.the.specified. |
| a6e60 | 74 69 6d 65 2c 20 69 74 20 77 69 6c 6c 20 62 65 20 61 73 73 75 6d 65 64 20 74 68 65 20 28 53 2c | time,.it.will.be.assumed.the.(S, |
| a6e80 | 47 29 20 6f 72 20 28 5c 2a 2c 47 29 20 73 74 61 74 65 20 3a 72 66 63 3a 60 37 37 36 31 23 73 65 | G).or.(\*,G).state.:rfc:`7761#se |
| a6ea0 | 63 74 69 6f 6e 2d 34 2e 31 60 20 68 61 73 20 74 69 6d 65 64 20 6f 75 74 2e 00 55 73 65 20 74 68 | ction-4.1`.has.timed.out..Use.th |
| a6ec0 | 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 69 6e 20 74 68 65 20 73 | is.command.to.configure.in.the.s |
| a6ee0 | 65 6c 65 63 74 65 64 20 69 6e 74 65 72 66 61 63 65 20 74 68 65 20 49 47 4d 50 20 71 75 65 72 79 | elected.interface.the.IGMP.query |
| a6f00 | 20 72 65 73 70 6f 6e 73 65 20 74 69 6d 65 6f 75 74 20 76 61 6c 75 65 20 28 31 30 2d 32 35 30 29 | .response.timeout.value.(10-250) |
| a6f20 | 20 69 6e 20 64 65 63 69 73 65 63 6f 6e 64 73 2e 20 49 66 20 61 20 72 65 70 6f 72 74 20 69 73 20 | .in.deciseconds..If.a.report.is. |
| a6f40 | 6e 6f 74 20 72 65 74 75 72 6e 65 64 20 69 6e 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 74 69 | not.returned.in.the.specified.ti |
| a6f60 | 6d 65 2c 20 69 74 20 77 69 6c 6c 20 62 65 20 61 73 73 75 6d 65 64 20 74 68 65 20 60 28 53 2c 47 | me,.it.will.be.assumed.the.`(S,G |
| a6f80 | 29 20 6f 72 20 28 2a 2c 47 29 20 73 74 61 74 65 20 3c 68 74 74 70 73 3a 2f 2f 74 6f 6f 6c 73 2e | ).or.(*,G).state.<https://tools. |
| a6fa0 | 69 65 74 66 2e 6f 72 67 2f 68 74 6d 6c 2f 72 66 63 37 37 36 31 23 73 65 63 74 69 6f 6e 2d 34 2e | ietf.org/html/rfc7761#section-4. |
| a6fc0 | 31 3e 60 5f 20 68 61 73 20 74 69 6d 65 64 20 6f 75 74 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d | 1>`_.has.timed.out..Use.this.com |
| a6fe0 | 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 69 6e 20 74 68 65 20 73 65 6c 65 63 74 65 | mand.to.configure.in.the.selecte |
| a7000 | 64 20 69 6e 74 65 72 66 61 63 65 20 74 68 65 20 4d 4c 44 20 68 6f 73 74 20 71 75 65 72 79 20 69 | d.interface.the.MLD.host.query.i |
| a7020 | 6e 74 65 72 76 61 6c 20 28 31 2d 36 35 35 33 35 29 20 69 6e 20 73 65 63 6f 6e 64 73 20 74 68 61 | nterval.(1-65535).in.seconds.tha |
| a7040 | 74 20 50 49 4d 20 77 69 6c 6c 20 75 73 65 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 | t.PIM.will.use..The.default.valu |
| a7060 | 65 20 69 73 20 31 32 35 20 73 65 63 6f 6e 64 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 | e.is.125.seconds..Use.this.comma |
| a7080 | 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 20 73 61 6d 70 6c 69 6e 67 20 72 61 | nd.to.configure.the..sampling.ra |
| a70a0 | 74 65 20 66 6f 72 20 66 6c 6f 77 20 61 63 63 6f 75 6e 74 69 6e 67 2e 20 54 68 65 20 73 79 73 74 | te.for.flow.accounting..The.syst |
| a70c0 | 65 6d 20 73 61 6d 70 6c 65 73 20 6f 6e 65 20 69 6e 20 65 76 65 72 79 20 60 3c 72 61 74 65 3e 60 | em.samples.one.in.every.`<rate>` |
| a70e0 | 20 70 61 63 6b 65 74 73 2c 20 77 68 65 72 65 20 60 3c 72 61 74 65 3e 60 20 69 73 20 74 68 65 20 | .packets,.where.`<rate>`.is.the. |
| a7100 | 76 61 6c 75 65 20 63 6f 6e 66 69 67 75 72 65 64 20 66 6f 72 20 74 68 65 20 73 61 6d 70 6c 69 6e | value.configured.for.the.samplin |
| a7120 | 67 2d 72 61 74 65 20 6f 70 74 69 6f 6e 2e 20 54 68 65 20 61 64 76 61 6e 74 61 67 65 20 6f 66 20 | g-rate.option..The.advantage.of. |
| a7140 | 73 61 6d 70 6c 69 6e 67 20 65 76 65 72 79 20 6e 20 70 61 63 6b 65 74 73 2c 20 77 68 65 72 65 20 | sampling.every.n.packets,.where. |
| a7160 | 6e 20 3e 20 31 2c 20 61 6c 6c 6f 77 73 20 79 6f 75 20 74 6f 20 64 65 63 72 65 61 73 65 20 74 68 | n.>.1,.allows.you.to.decrease.th |
| a7180 | 65 20 61 6d 6f 75 6e 74 20 6f 66 20 70 72 6f 63 65 73 73 69 6e 67 20 72 65 73 6f 75 72 63 65 73 | e.amount.of.processing.resources |
| a71a0 | 20 72 65 71 75 69 72 65 64 20 66 6f 72 20 66 6c 6f 77 20 61 63 63 6f 75 6e 74 69 6e 67 2e 20 54 | .required.for.flow.accounting..T |
| a71c0 | 68 65 20 64 69 73 61 64 76 61 6e 74 61 67 65 20 6f 66 20 6e 6f 74 20 73 61 6d 70 6c 69 6e 67 20 | he.disadvantage.of.not.sampling. |
| a71e0 | 65 76 65 72 79 20 70 61 63 6b 65 74 20 69 73 20 74 68 61 74 20 74 68 65 20 73 74 61 74 69 73 74 | every.packet.is.that.the.statist |
| a7200 | 69 63 73 20 70 72 6f 64 75 63 65 64 20 61 72 65 20 65 73 74 69 6d 61 74 65 73 20 6f 66 20 61 63 | ics.produced.are.estimates.of.ac |
| a7220 | 74 75 61 6c 20 64 61 74 61 20 66 6c 6f 77 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e | tual.data.flows..Use.this.comman |
| a7240 | 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 61 6e | d.to.configure.the.IP.address.an |
| a7260 | 64 20 74 68 65 20 73 68 61 72 65 64 20 73 65 63 72 65 74 20 6b 65 79 20 6f 66 20 79 6f 75 72 20 | d.the.shared.secret.key.of.your. |
| a7280 | 52 41 44 49 55 53 20 73 65 72 76 65 72 2e 20 20 59 6f 75 20 63 61 6e 20 68 61 76 65 20 6d 75 6c | RADIUS.server...You.can.have.mul |
| a72a0 | 74 69 70 6c 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 73 20 63 6f 6e 66 69 67 75 72 65 64 20 | tiple.RADIUS.servers.configured. |
| a72c0 | 69 66 20 79 6f 75 20 77 69 73 68 20 74 6f 20 61 63 68 69 65 76 65 20 72 65 64 75 6e 64 61 6e 63 | if.you.wish.to.achieve.redundanc |
| a72e0 | 79 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 | y..Use.this.command.to.configure |
| a7300 | 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 75 73 65 64 20 61 73 20 74 68 65 20 4c 44 50 20 | .the.IP.address.used.as.the.LDP. |
| a7320 | 72 6f 75 74 65 72 2d 69 64 20 6f 66 20 74 68 65 20 6c 6f 63 61 6c 20 64 65 76 69 63 65 2e 00 55 | router-id.of.the.local.device..U |
| a7340 | 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 | se.this.command.to.configure.the |
| a7360 | 20 50 49 4d 20 68 65 6c 6c 6f 20 69 6e 74 65 72 76 61 6c 20 69 6e 20 73 65 63 6f 6e 64 73 20 28 | .PIM.hello.interval.in.seconds.( |
| a7380 | 31 2d 31 38 30 29 20 66 6f 72 20 74 68 65 20 73 65 6c 65 63 74 65 64 20 69 6e 74 65 72 66 61 63 | 1-180).for.the.selected.interfac |
| a73a0 | 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 | e..Use.this.command.to.configure |
| a73c0 | 20 74 68 65 20 62 75 72 73 74 20 73 69 7a 65 20 6f 66 20 74 68 65 20 74 72 61 66 66 69 63 20 69 | .the.burst.size.of.the.traffic.i |
| a73e0 | 6e 20 61 20 4e 65 74 77 6f 72 6b 20 45 6d 75 6c 61 74 6f 72 20 70 6f 6c 69 63 79 2e 20 44 65 66 | n.a.Network.Emulator.policy..Def |
| a7400 | 69 6e 65 20 74 68 65 20 6e 61 6d 65 20 6f 66 20 74 68 65 20 4e 65 74 77 6f 72 6b 20 45 6d 75 6c | ine.the.name.of.the.Network.Emul |
| a7420 | 61 74 6f 72 20 70 6f 6c 69 63 79 20 61 6e 64 20 69 74 73 20 74 72 61 66 66 69 63 20 62 75 72 73 | ator.policy.and.its.traffic.burs |
| a7440 | 74 20 73 69 7a 65 20 28 69 74 20 77 69 6c 6c 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 74 68 | t.size.(it.will.be.configured.th |
| a7460 | 72 6f 75 67 68 20 74 68 65 20 54 6f 6b 65 6e 20 42 75 63 6b 65 74 20 46 69 6c 74 65 72 20 71 64 | rough.the.Token.Bucket.Filter.qd |
| a7480 | 69 73 63 29 2e 20 44 65 66 61 75 6c 74 3a 31 35 6b 62 2e 20 49 74 20 77 69 6c 6c 20 6f 6e 6c 79 | isc)..Default:15kb..It.will.only |
| a74a0 | 20 74 61 6b 65 20 65 66 66 65 63 74 20 69 66 20 79 6f 75 20 68 61 76 65 20 63 6f 6e 66 69 67 75 | .take.effect.if.you.have.configu |
| a74c0 | 72 65 64 20 69 74 73 20 62 61 6e 64 77 69 64 74 68 20 74 6f 6f 2e 00 55 73 65 20 74 68 69 73 20 | red.its.bandwidth.too..Use.this. |
| a74e0 | 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 6c 6f 63 61 6c 20 67 | command.to.configure.the.local.g |
| a7500 | 61 74 65 77 61 79 20 49 50 20 61 64 64 72 65 73 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d | ateway.IP.address..Use.this.comm |
| a7520 | 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 72 61 74 | and.to.configure.the.maximum.rat |
| a7540 | 65 20 61 74 20 77 68 69 63 68 20 74 72 61 66 66 69 63 20 77 69 6c 6c 20 62 65 20 73 68 61 70 65 | e.at.which.traffic.will.be.shape |
| a7560 | 64 20 69 6e 20 61 20 4e 65 74 77 6f 72 6b 20 45 6d 75 6c 61 74 6f 72 20 70 6f 6c 69 63 79 2e 20 | d.in.a.Network.Emulator.policy.. |
| a7580 | 44 65 66 69 6e 65 20 74 68 65 20 6e 61 6d 65 20 6f 66 20 74 68 65 20 70 6f 6c 69 63 79 20 61 6e | Define.the.name.of.the.policy.an |
| a75a0 | 64 20 74 68 65 20 72 61 74 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 | d.the.rate..Use.this.command.to. |
| a75c0 | 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 73 61 6d 70 6c 69 6e 67 20 72 61 74 65 20 66 6f 72 20 | configure.the.sampling.rate.for. |
| a75e0 | 73 46 6c 6f 77 20 61 63 63 6f 75 6e 74 69 6e 67 20 28 64 65 66 61 75 6c 74 3a 20 31 30 30 30 29 | sFlow.accounting.(default:.1000) |
| a7600 | 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 | .Use.this.command.to.configure.t |
| a7620 | 68 65 20 75 73 65 72 6e 61 6d 65 20 61 6e 64 20 74 68 65 20 70 61 73 73 77 6f 72 64 20 6f 66 20 | he.username.and.the.password.of. |
| a7640 | 61 20 6c 6f 63 61 6c 6c 79 20 63 6f 6e 66 69 67 75 72 65 64 20 75 73 65 72 2e 00 55 73 65 20 74 | a.locally.configured.user..Use.t |
| a7660 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 74 72 6f 6c 20 74 68 65 20 6d 61 78 69 6d | his.command.to.control.the.maxim |
| a7680 | 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 65 71 75 61 6c 20 63 6f 73 74 20 70 61 74 68 73 20 74 6f | um.number.of.equal.cost.paths.to |
| a76a0 | 20 72 65 61 63 68 20 61 20 73 70 65 63 69 66 69 63 20 64 65 73 74 69 6e 61 74 69 6f 6e 2e 20 54 | .reach.a.specific.destination..T |
| a76c0 | 68 65 20 75 70 70 65 72 20 6c 69 6d 69 74 20 6d 61 79 20 64 69 66 66 65 72 20 69 66 20 79 6f 75 | he.upper.limit.may.differ.if.you |
| a76e0 | 20 63 68 61 6e 67 65 20 74 68 65 20 76 61 6c 75 65 20 6f 66 20 4d 55 4c 54 49 50 41 54 48 5f 4e | .change.the.value.of.MULTIPATH_N |
| a7700 | 55 4d 20 64 75 72 69 6e 67 20 63 6f 6d 70 69 6c 61 74 69 6f 6e 2e 20 54 68 65 20 64 65 66 61 75 | UM.during.compilation..The.defau |
| a7720 | 6c 74 20 69 73 20 4d 55 4c 54 49 50 41 54 48 5f 4e 55 4d 20 28 36 34 29 2e 00 55 73 65 20 74 68 | lt.is.MULTIPATH_NUM.(64)..Use.th |
| a7740 | 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 72 65 61 74 65 20 61 20 46 61 69 72 2d 51 75 65 75 | is.command.to.create.a.Fair-Queu |
| a7760 | 65 20 70 6f 6c 69 63 79 20 61 6e 64 20 67 69 76 65 20 69 74 20 61 20 6e 61 6d 65 2e 20 49 74 20 | e.policy.and.give.it.a.name..It. |
| a7780 | 69 73 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 53 74 6f 63 68 61 73 74 69 63 20 46 61 69 72 6e | is.based.on.the.Stochastic.Fairn |
| a77a0 | 65 73 73 20 51 75 65 75 65 69 6e 67 20 61 6e 64 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 64 20 | ess.Queueing.and.can.be.applied. |
| a77c0 | 74 6f 20 6f 75 74 62 6f 75 6e 64 20 74 72 61 66 66 69 63 2e 00 55 73 65 20 74 68 69 73 20 63 6f | to.outbound.traffic..Use.this.co |
| a77e0 | 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 49 50 73 65 63 20 69 6e 74 65 72 66 61 63 65 2e | mmand.to.define.IPsec.interface. |
| a7800 | 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 61 20 46 61 | .Use.this.command.to.define.a.Fa |
| a7820 | 69 72 2d 51 75 65 75 65 20 70 6f 6c 69 63 79 2c 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 53 74 | ir-Queue.policy,.based.on.the.St |
| a7840 | 6f 63 68 61 73 74 69 63 20 46 61 69 72 6e 65 73 73 20 51 75 65 75 65 69 6e 67 2c 20 61 6e 64 20 | ochastic.Fairness.Queueing,.and. |
| a7860 | 73 65 74 20 74 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 6d 61 78 69 6d 75 6d 20 70 61 63 6b 65 74 | set.the.number.of.maximum.packet |
| a7880 | 73 20 61 6c 6c 6f 77 65 64 20 74 6f 20 77 61 69 74 20 69 6e 20 74 68 65 20 71 75 65 75 65 2e 20 | s.allowed.to.wait.in.the.queue.. |
| a78a0 | 41 6e 79 20 6f 74 68 65 72 20 70 61 63 6b 65 74 20 77 69 6c 6c 20 62 65 20 64 72 6f 70 70 65 64 | Any.other.packet.will.be.dropped |
| a78c0 | 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 61 20 46 | ..Use.this.command.to.define.a.F |
| a78e0 | 61 69 72 2d 51 75 65 75 65 20 70 6f 6c 69 63 79 2c 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 53 | air-Queue.policy,.based.on.the.S |
| a7900 | 74 6f 63 68 61 73 74 69 63 20 46 61 69 72 6e 65 73 73 20 51 75 65 75 65 69 6e 67 2c 20 61 6e 64 | tochastic.Fairness.Queueing,.and |
| a7920 | 20 73 65 74 20 74 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 73 65 63 6f 6e 64 73 20 61 74 20 77 68 | .set.the.number.of.seconds.at.wh |
| a7940 | 69 63 68 20 61 20 6e 65 77 20 71 75 65 75 65 20 61 6c 67 6f 72 69 74 68 6d 20 70 65 72 74 75 72 | ich.a.new.queue.algorithm.pertur |
| a7960 | 62 61 74 69 6f 6e 20 77 69 6c 6c 20 6f 63 63 75 72 20 28 6d 61 78 69 6d 75 6d 20 34 32 39 34 39 | bation.will.occur.(maximum.42949 |
| a7980 | 36 37 32 39 35 29 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 | 67295)..Use.this.command.to.defi |
| a79a0 | 6e 65 20 64 65 66 61 75 6c 74 20 49 50 76 36 20 61 64 64 72 65 73 73 20 70 6f 6f 6c 20 6e 61 6d | ne.default.IPv6.address.pool.nam |
| a79c0 | 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 64 65 | e..Use.this.command.to.define.de |
| a79e0 | 66 61 75 6c 74 20 61 64 64 72 65 73 73 20 70 6f 6f 6c 20 6e 61 6d 65 2e 00 55 73 65 20 74 68 69 | fault.address.pool.name..Use.thi |
| a7a00 | 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 64 6f 6d 61 69 6e 73 2c 20 6f 6e 65 | s.command.to.define.domains,.one |
| a7a20 | 20 61 74 20 61 20 74 69 6d 65 2c 20 73 6f 20 74 68 61 74 20 74 68 65 20 73 79 73 74 65 6d 20 75 | .at.a.time,.so.that.the.system.u |
| a7a40 | 73 65 73 20 74 68 65 6d 20 74 6f 20 63 6f 6d 70 6c 65 74 65 20 75 6e 71 75 61 6c 69 66 69 65 64 | ses.them.to.complete.unqualified |
| a7a60 | 20 68 6f 73 74 20 6e 61 6d 65 73 2e 20 4d 61 78 69 6d 75 6d 3a 20 36 20 65 6e 74 72 69 65 73 2e | .host.names..Maximum:.6.entries. |
| a7a80 | 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 69 6e 20 74 | .Use.this.command.to.define.in.t |
| a7aa0 | 68 65 20 73 65 6c 65 63 74 65 64 20 69 6e 74 65 72 66 61 63 65 20 77 68 65 74 68 65 72 20 79 6f | he.selected.interface.whether.yo |
| a7ac0 | 75 20 63 68 6f 6f 73 65 20 49 47 4d 50 20 76 65 72 73 69 6f 6e 20 32 20 6f 72 20 33 2e 00 55 73 | u.choose.IGMP.version.2.or.3..Us |
| a7ae0 | 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 69 6e 20 74 68 65 20 | e.this.command.to.define.in.the. |
| a7b00 | 73 65 6c 65 63 74 65 64 20 69 6e 74 65 72 66 61 63 65 20 77 68 65 74 68 65 72 20 79 6f 75 20 63 | selected.interface.whether.you.c |
| a7b20 | 68 6f 6f 73 65 20 49 47 4d 50 20 76 65 72 73 69 6f 6e 20 32 20 6f 72 20 33 2e 20 54 68 65 20 64 | hoose.IGMP.version.2.or.3..The.d |
| a7b40 | 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 33 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d | efault.value.is.3..Use.this.comm |
| a7b60 | 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 72 61 6e | and.to.define.the.IP.address.ran |
| a7b80 | 67 65 20 74 6f 20 62 65 20 67 69 76 65 6e 20 74 6f 20 50 50 50 6f 45 20 63 6c 69 65 6e 74 73 2e | ge.to.be.given.to.PPPoE.clients. |
| a7ba0 | 20 49 66 20 6e 6f 74 61 74 69 6f 6e 20 60 60 78 2e 78 2e 78 2e 78 2d 78 2e 78 2e 78 2e 78 60 60 | .If.notation.``x.x.x.x-x.x.x.x`` |
| a7bc0 | 2c 20 69 74 20 6d 75 73 74 20 62 65 20 77 69 74 68 69 6e 20 61 20 2f 32 34 20 73 75 62 6e 65 74 | ,.it.must.be.within.a./24.subnet |
| a7be0 | 2e 20 49 66 20 6e 6f 74 61 74 69 6f 6e 20 60 60 78 2e 78 2e 78 2e 78 2f 78 60 60 20 69 73 20 75 | ..If.notation.``x.x.x.x/x``.is.u |
| a7c00 | 73 65 64 20 74 68 65 72 65 20 69 73 20 70 6f 73 73 69 62 69 6c 69 74 79 20 74 6f 20 73 65 74 20 | sed.there.is.possibility.to.set. |
| a7c20 | 68 6f 73 74 2f 6e 65 74 6d 61 73 6b 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 | host/netmask..Use.this.command.t |
| a7c40 | 6f 20 64 65 66 69 6e 65 20 74 68 65 20 66 69 72 73 74 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 | o.define.the.first.IP.address.of |
| a7c60 | 20 61 20 70 6f 6f 6c 20 6f 66 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 62 65 20 67 69 76 65 6e | .a.pool.of.addresses.to.be.given |
| a7c80 | 20 74 6f 20 49 50 6f 45 20 63 6c 69 65 6e 74 73 2e 20 49 66 20 6e 6f 74 61 74 69 6f 6e 20 60 60 | .to.IPoE.clients..If.notation.`` |
| a7ca0 | 78 2e 78 2e 78 2e 78 2d 78 2e 78 2e 78 2e 78 60 60 2c 20 69 74 20 6d 75 73 74 20 62 65 20 77 69 | x.x.x.x-x.x.x.x``,.it.must.be.wi |
| a7cc0 | 74 68 69 6e 20 61 20 2f 32 34 20 73 75 62 6e 65 74 2e 20 49 66 20 6e 6f 74 61 74 69 6f 6e 20 60 | thin.a./24.subnet..If.notation.` |
| a7ce0 | 60 78 2e 78 2e 78 2e 78 2f 78 60 60 20 69 73 20 75 73 65 64 20 74 68 65 72 65 20 69 73 20 70 6f | `x.x.x.x/x``.is.used.there.is.po |
| a7d00 | 73 73 69 62 69 6c 69 74 79 20 74 6f 20 73 65 74 20 68 6f 73 74 2f 6e 65 74 6d 61 73 6b 2e 00 55 | ssibility.to.set.host/netmask..U |
| a7d20 | 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 74 68 65 20 66 69 | se.this.command.to.define.the.fi |
| a7d40 | 72 73 74 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 61 20 70 6f 6f 6c 20 6f 66 20 61 64 64 72 | rst.IP.address.of.a.pool.of.addr |
| a7d60 | 65 73 73 65 73 20 74 6f 20 62 65 20 67 69 76 65 6e 20 74 6f 20 50 50 50 6f 45 20 63 6c 69 65 6e | esses.to.be.given.to.PPPoE.clien |
| a7d80 | 74 73 2e 20 49 74 20 6d 75 73 74 20 62 65 20 77 69 74 68 69 6e 20 61 20 2f 32 34 20 73 75 62 6e | ts..It.must.be.within.a./24.subn |
| a7da0 | 65 74 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 74 | et..Use.this.command.to.define.t |
| a7dc0 | 68 65 20 66 69 72 73 74 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 61 20 70 6f 6f 6c 20 6f 66 | he.first.IP.address.of.a.pool.of |
| a7de0 | 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 62 65 20 67 69 76 65 6e 20 74 6f 20 50 50 54 50 20 63 | .addresses.to.be.given.to.PPTP.c |
| a7e00 | 6c 69 65 6e 74 73 2e 20 49 66 20 6e 6f 74 61 74 69 6f 6e 20 60 60 78 2e 78 2e 78 2e 78 2d 78 2e | lients..If.notation.``x.x.x.x-x. |
| a7e20 | 78 2e 78 2e 78 60 60 2c 20 69 74 20 6d 75 73 74 20 62 65 20 77 69 74 68 69 6e 20 61 20 2f 32 34 | x.x.x``,.it.must.be.within.a./24 |
| a7e40 | 20 73 75 62 6e 65 74 2e 20 49 66 20 6e 6f 74 61 74 69 6f 6e 20 60 60 78 2e 78 2e 78 2e 78 2f 78 | .subnet..If.notation.``x.x.x.x/x |
| a7e60 | 60 60 20 69 73 20 75 73 65 64 20 74 68 65 72 65 20 69 73 20 70 6f 73 73 69 62 69 6c 69 74 79 20 | ``.is.used.there.is.possibility. |
| a7e80 | 74 6f 20 73 65 74 20 68 6f 73 74 2f 6e 65 74 6d 61 73 6b 2e 00 55 73 65 20 74 68 69 73 20 63 6f | to.set.host/netmask..Use.this.co |
| a7ea0 | 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 74 68 65 20 66 69 72 73 74 20 49 50 20 61 64 64 | mmand.to.define.the.first.IP.add |
| a7ec0 | 72 65 73 73 20 6f 66 20 61 20 70 6f 6f 6c 20 6f 66 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 62 | ress.of.a.pool.of.addresses.to.b |
| a7ee0 | 65 20 67 69 76 65 6e 20 74 6f 20 53 53 54 50 20 63 6c 69 65 6e 74 73 2e 20 49 66 20 6e 6f 74 61 | e.given.to.SSTP.clients..If.nota |
| a7f00 | 74 69 6f 6e 20 60 60 78 2e 78 2e 78 2e 78 2d 78 2e 78 2e 78 2e 78 60 60 2c 20 69 74 20 6d 75 73 | tion.``x.x.x.x-x.x.x.x``,.it.mus |
| a7f20 | 74 20 62 65 20 77 69 74 68 69 6e 20 61 20 2f 32 34 20 73 75 62 6e 65 74 2e 20 49 66 20 6e 6f 74 | t.be.within.a./24.subnet..If.not |
| a7f40 | 61 74 69 6f 6e 20 60 60 78 2e 78 2e 78 2e 78 2f 78 60 60 20 69 73 20 75 73 65 64 20 74 68 65 72 | ation.``x.x.x.x/x``.is.used.ther |
| a7f60 | 65 20 69 73 20 70 6f 73 73 69 62 69 6c 69 74 79 20 74 6f 20 73 65 74 20 68 6f 73 74 2f 6e 65 74 | e.is.possibility.to.set.host/net |
| a7f80 | 6d 61 73 6b 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 | mask..Use.this.command.to.define |
| a7fa0 | 20 74 68 65 20 66 69 72 73 74 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 61 20 70 6f 6f 6c 20 | .the.first.IP.address.of.a.pool. |
| a7fc0 | 6f 66 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 62 65 20 67 69 76 65 6e 20 74 6f 20 6c 32 74 70 | of.addresses.to.be.given.to.l2tp |
| a7fe0 | 20 63 6c 69 65 6e 74 73 2e 20 49 66 20 6e 6f 74 61 74 69 6f 6e 20 60 60 78 2e 78 2e 78 2e 78 2d | .clients..If.notation.``x.x.x.x- |
| a8000 | 78 2e 78 2e 78 2e 78 60 60 2c 20 69 74 20 6d 75 73 74 20 62 65 20 77 69 74 68 69 6e 20 61 20 2f | x.x.x.x``,.it.must.be.within.a./ |
| a8020 | 32 34 20 73 75 62 6e 65 74 2e 20 49 66 20 6e 6f 74 61 74 69 6f 6e 20 60 60 78 2e 78 2e 78 2e 78 | 24.subnet..If.notation.``x.x.x.x |
| a8040 | 2f 78 60 60 20 69 73 20 75 73 65 64 20 74 68 65 72 65 20 69 73 20 70 6f 73 73 69 62 69 6c 69 74 | /x``.is.used.there.is.possibilit |
| a8060 | 79 20 74 6f 20 73 65 74 20 68 6f 73 74 2f 6e 65 74 6d 61 73 6b 2e 00 55 73 65 20 74 68 69 73 20 | y.to.set.host/netmask..Use.this. |
| a8080 | 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 74 68 65 20 66 69 72 73 74 20 49 50 20 61 | command.to.define.the.first.IP.a |
| a80a0 | 64 64 72 65 73 73 20 6f 66 20 61 20 70 6f 6f 6c 20 6f 66 20 61 64 64 72 65 73 73 65 73 20 74 6f | ddress.of.a.pool.of.addresses.to |
| a80c0 | 20 62 65 20 67 69 76 65 6e 20 74 6f 20 70 70 70 6f 65 20 63 6c 69 65 6e 74 73 2e 20 49 66 20 6e | .be.given.to.pppoe.clients..If.n |
| a80e0 | 6f 74 61 74 69 6f 6e 20 60 60 78 2e 78 2e 78 2e 78 2d 78 2e 78 2e 78 2e 78 60 60 2c 20 69 74 20 | otation.``x.x.x.x-x.x.x.x``,.it. |
| a8100 | 6d 75 73 74 20 62 65 20 77 69 74 68 69 6e 20 61 20 2f 32 34 20 73 75 62 6e 65 74 2e 20 49 66 20 | must.be.within.a./24.subnet..If. |
| a8120 | 6e 6f 74 61 74 69 6f 6e 20 60 60 78 2e 78 2e 78 2e 78 2f 78 60 60 20 69 73 20 75 73 65 64 20 74 | notation.``x.x.x.x/x``.is.used.t |
| a8140 | 68 65 72 65 20 69 73 20 70 6f 73 73 69 62 69 6c 69 74 79 20 74 6f 20 73 65 74 20 68 6f 73 74 2f | here.is.possibility.to.set.host/ |
| a8160 | 6e 65 74 6d 61 73 6b 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 | netmask..Use.this.command.to.def |
| a8180 | 69 6e 65 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 74 68 65 20 50 50 50 6f 45 20 73 65 72 76 | ine.the.interface.the.PPPoE.serv |
| a81a0 | 65 72 20 77 69 6c 6c 20 75 73 65 20 74 6f 20 6c 69 73 74 65 6e 20 66 6f 72 20 50 50 50 6f 45 20 | er.will.use.to.listen.for.PPPoE. |
| a81c0 | 63 6c 69 65 6e 74 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 | clients..Use.this.command.to.def |
| a81e0 | 69 6e 65 20 74 68 65 20 6c 61 73 74 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 61 20 70 6f 6f | ine.the.last.IP.address.of.a.poo |
| a8200 | 6c 20 6f 66 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 62 65 20 67 69 76 65 6e 20 74 6f 20 50 50 | l.of.addresses.to.be.given.to.PP |
| a8220 | 50 6f 45 20 63 6c 69 65 6e 74 73 2e 20 49 74 20 6d 75 73 74 20 62 65 20 77 69 74 68 69 6e 20 61 | PoE.clients..It.must.be.within.a |
| a8240 | 20 2f 32 34 20 73 75 62 6e 65 74 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f | ./24.subnet..Use.this.command.to |
| a8260 | 20 64 65 66 69 6e 65 20 74 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 20 71 75 65 75 65 20 | .define.the.length.of.the.queue. |
| a8280 | 6f 66 20 79 6f 75 72 20 4e 65 74 77 6f 72 6b 20 45 6d 75 6c 61 74 6f 72 20 70 6f 6c 69 63 79 2e | of.your.Network.Emulator.policy. |
| a82a0 | 20 53 65 74 20 74 68 65 20 70 6f 6c 69 63 79 20 6e 61 6d 65 20 61 6e 64 20 74 68 65 20 6d 61 78 | .Set.the.policy.name.and.the.max |
| a82c0 | 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 70 61 63 6b 65 74 73 20 28 31 2d 34 32 39 34 39 36 | imum.number.of.packets.(1-429496 |
| a82e0 | 37 32 39 35 29 20 74 68 65 20 71 75 65 75 65 20 6d 61 79 20 68 6f 6c 64 20 71 75 65 75 65 64 20 | 7295).the.queue.may.hold.queued. |
| a8300 | 61 74 20 61 20 74 69 6d 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 | at.a.time..Use.this.command.to.d |
| a8320 | 65 66 69 6e 65 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 65 6e 74 72 | efine.the.maximum.number.of.entr |
| a8340 | 69 65 73 20 74 6f 20 6b 65 65 70 20 69 6e 20 74 68 65 20 41 52 50 20 63 61 63 68 65 20 28 31 30 | ies.to.keep.in.the.ARP.cache.(10 |
| a8360 | 32 34 2c 20 32 30 34 38 2c 20 34 30 39 36 2c 20 38 31 39 32 2c 20 31 36 33 38 34 2c 20 33 32 37 | 24,.2048,.4096,.8192,.16384,.327 |
| a8380 | 36 38 29 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 | 68)..Use.this.command.to.define. |
| a83a0 | 74 68 65 20 6d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 65 6e 74 72 69 65 73 20 74 6f | the.maximum.number.of.entries.to |
| a83c0 | 20 6b 65 65 70 20 69 6e 20 74 68 65 20 4e 65 69 67 68 62 6f 72 20 63 61 63 68 65 20 28 31 30 32 | .keep.in.the.Neighbor.cache.(102 |
| a83e0 | 34 2c 20 32 30 34 38 2c 20 34 30 39 36 2c 20 38 31 39 32 2c 20 31 36 33 38 34 2c 20 33 32 37 36 | 4,.2048,.4096,.8192,.16384,.3276 |
| a8400 | 38 29 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 74 | 8)..Use.this.command.to.define.t |
| a8420 | 68 65 20 6e 65 78 74 20 61 64 64 72 65 73 73 20 70 6f 6f 6c 20 6e 61 6d 65 2e 00 55 73 65 20 74 | he.next.address.pool.name..Use.t |
| a8440 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 77 68 65 74 68 65 72 20 79 6f | his.command.to.define.whether.yo |
| a8460 | 75 72 20 50 50 50 6f 45 20 63 6c 69 65 6e 74 73 20 77 69 6c 6c 20 6c 6f 63 61 6c 6c 79 20 61 75 | ur.PPPoE.clients.will.locally.au |
| a8480 | 74 68 65 6e 74 69 63 61 74 65 20 69 6e 20 79 6f 75 72 20 56 79 4f 53 20 73 79 73 74 65 6d 20 6f | thenticate.in.your.VyOS.system.o |
| a84a0 | 72 20 69 6e 20 52 41 44 49 55 53 20 73 65 72 76 65 72 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d | r.in.RADIUS.server..Use.this.com |
| a84c0 | 6d 61 6e 64 20 74 6f 20 64 69 72 65 63 74 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 6e | mand.to.direct.an.interface.to.n |
| a84e0 | 6f 74 20 64 65 74 65 63 74 20 61 6e 79 20 70 68 79 73 69 63 61 6c 20 73 74 61 74 65 20 63 68 61 | ot.detect.any.physical.state.cha |
| a8500 | 6e 67 65 73 20 6f 6e 20 61 20 6c 69 6e 6b 2c 20 66 6f 72 20 65 78 61 6d 70 6c 65 2c 20 77 68 65 | nges.on.a.link,.for.example,.whe |
| a8520 | 6e 20 74 68 65 20 63 61 62 6c 65 20 69 73 20 75 6e 70 6c 75 67 67 65 64 2e 00 55 73 65 20 74 68 | n.the.cable.is.unplugged..Use.th |
| a8540 | 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 69 73 61 62 6c 65 20 49 50 76 34 20 64 69 72 65 63 | is.command.to.disable.IPv4.direc |
| a8560 | 74 65 64 20 62 72 6f 61 64 63 61 73 74 20 66 6f 72 77 61 72 64 69 6e 67 20 6f 6e 20 61 6c 6c 20 | ted.broadcast.forwarding.on.all. |
| a8580 | 69 6e 74 65 72 66 61 63 65 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 | interfaces..Use.this.command.to. |
| a85a0 | 64 69 73 61 62 6c 65 20 49 50 76 34 20 66 6f 72 77 61 72 64 69 6e 67 20 6f 6e 20 61 6c 6c 20 69 | disable.IPv4.forwarding.on.all.i |
| a85c0 | 6e 74 65 72 66 61 63 65 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 | nterfaces..Use.this.command.to.d |
| a85e0 | 69 73 61 62 6c 65 20 49 50 76 36 20 66 6f 72 77 61 72 64 69 6e 67 20 6f 6e 20 61 6c 6c 20 69 6e | isable.IPv6.forwarding.on.all.in |
| a8600 | 74 65 72 66 61 63 65 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 69 | terfaces..Use.this.command.to.di |
| a8620 | 73 61 62 6c 65 20 49 50 76 36 20 6f 70 65 72 61 74 69 6f 6e 20 6f 6e 20 69 6e 74 65 72 66 61 63 | sable.IPv6.operation.on.interfac |
| a8640 | 65 20 77 68 65 6e 20 44 75 70 6c 69 63 61 74 65 20 41 64 64 72 65 73 73 20 44 65 74 65 63 74 69 | e.when.Duplicate.Address.Detecti |
| a8660 | 6f 6e 20 66 61 69 6c 73 20 6f 6e 20 4c 69 6e 6b 2d 4c 6f 63 61 6c 20 61 64 64 72 65 73 73 2e 00 | on.fails.on.Link-Local.address.. |
| a8680 | 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 69 73 61 62 6c 65 20 74 68 65 20 | Use.this.command.to.disable.the. |
| a86a0 | 67 65 6e 65 72 61 74 69 6f 6e 20 6f 66 20 45 74 68 65 72 6e 65 74 20 66 6c 6f 77 20 63 6f 6e 74 | generation.of.Ethernet.flow.cont |
| a86c0 | 72 6f 6c 20 28 70 61 75 73 65 20 66 72 61 6d 65 73 29 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d | rol.(pause.frames)..Use.this.com |
| a86e0 | 6d 61 6e 64 20 74 6f 20 65 6d 75 6c 61 74 65 20 6e 6f 69 73 65 20 69 6e 20 61 20 4e 65 74 77 6f | mand.to.emulate.noise.in.a.Netwo |
| a8700 | 72 6b 20 45 6d 75 6c 61 74 6f 72 20 70 6f 6c 69 63 79 2e 20 53 65 74 20 74 68 65 20 70 6f 6c 69 | rk.Emulator.policy..Set.the.poli |
| a8720 | 63 79 20 6e 61 6d 65 20 61 6e 64 20 74 68 65 20 70 65 72 63 65 6e 74 61 67 65 20 6f 66 20 63 6f | cy.name.and.the.percentage.of.co |
| a8740 | 72 72 75 70 74 65 64 20 70 61 63 6b 65 74 73 20 79 6f 75 20 77 61 6e 74 2e 20 41 20 72 61 6e 64 | rrupted.packets.you.want..A.rand |
| a8760 | 6f 6d 20 65 72 72 6f 72 20 77 69 6c 6c 20 62 65 20 69 6e 74 72 6f 64 75 63 65 64 20 69 6e 20 61 | om.error.will.be.introduced.in.a |
| a8780 | 20 72 61 6e 64 6f 6d 20 70 6f 73 69 74 69 6f 6e 20 66 6f 72 20 74 68 65 20 63 68 6f 73 65 6e 20 | .random.position.for.the.chosen. |
| a87a0 | 70 65 72 63 65 6e 74 20 6f 66 20 70 61 63 6b 65 74 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d | percent.of.packets..Use.this.com |
| a87c0 | 6d 61 6e 64 20 74 6f 20 65 6d 75 6c 61 74 65 20 70 61 63 6b 65 74 2d 6c 6f 73 73 20 63 6f 6e 64 | mand.to.emulate.packet-loss.cond |
| a87e0 | 69 74 69 6f 6e 73 20 69 6e 20 61 20 4e 65 74 77 6f 72 6b 20 45 6d 75 6c 61 74 6f 72 20 70 6f 6c | itions.in.a.Network.Emulator.pol |
| a8800 | 69 63 79 2e 20 53 65 74 20 74 68 65 20 70 6f 6c 69 63 79 20 6e 61 6d 65 20 61 6e 64 20 74 68 65 | icy..Set.the.policy.name.and.the |
| a8820 | 20 70 65 72 63 65 6e 74 61 67 65 20 6f 66 20 6c 6f 73 73 20 70 61 63 6b 65 74 73 20 79 6f 75 72 | .percentage.of.loss.packets.your |
| a8840 | 20 74 72 61 66 66 69 63 20 77 69 6c 6c 20 73 75 66 66 65 72 2e 00 55 73 65 20 74 68 69 73 20 63 | .traffic.will.suffer..Use.this.c |
| a8860 | 6f 6d 6d 61 6e 64 20 74 6f 20 65 6d 75 6c 61 74 65 20 70 61 63 6b 65 74 2d 72 65 6f 72 64 65 72 | ommand.to.emulate.packet-reorder |
| a8880 | 69 6e 67 20 63 6f 6e 64 69 74 69 6f 6e 73 20 69 6e 20 61 20 4e 65 74 77 6f 72 6b 20 45 6d 75 6c | ing.conditions.in.a.Network.Emul |
| a88a0 | 61 74 6f 72 20 70 6f 6c 69 63 79 2e 20 53 65 74 20 74 68 65 20 70 6f 6c 69 63 79 20 6e 61 6d 65 | ator.policy..Set.the.policy.name |
| a88c0 | 20 61 6e 64 20 74 68 65 20 70 65 72 63 65 6e 74 61 67 65 20 6f 66 20 72 65 6f 72 64 65 72 65 64 | .and.the.percentage.of.reordered |
| a88e0 | 20 70 61 63 6b 65 74 73 20 79 6f 75 72 20 74 72 61 66 66 69 63 20 77 69 6c 6c 20 73 75 66 66 65 | .packets.your.traffic.will.suffe |
| a8900 | 72 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 65 6e 61 62 6c 65 20 4c 44 | r..Use.this.command.to.enable.LD |
| a8920 | 50 20 6f 6e 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 79 6f 75 20 64 65 66 69 6e 65 2e 00 55 | P.on.the.interface.you.define..U |
| a8940 | 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 65 6e 61 62 6c 65 20 4d 50 4c 53 20 70 | se.this.command.to.enable.MPLS.p |
| a8960 | 72 6f 63 65 73 73 69 6e 67 20 6f 6e 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 79 6f 75 20 64 | rocessing.on.the.interface.you.d |
| a8980 | 65 66 69 6e 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 65 6e 61 62 6c | efine..Use.this.command.to.enabl |
| a89a0 | 65 20 50 49 4d 20 69 6e 20 74 68 65 20 73 65 6c 65 63 74 65 64 20 69 6e 74 65 72 66 61 63 65 20 | e.PIM.in.the.selected.interface. |
| a89c0 | 73 6f 20 74 68 61 74 20 69 74 20 63 61 6e 20 63 6f 6d 6d 75 6e 69 63 61 74 65 20 77 69 74 68 20 | so.that.it.can.communicate.with. |
| a89e0 | 50 49 4d 20 6e 65 69 67 68 62 6f 72 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 | PIM.neighbors..Use.this.command. |
| a8a00 | 74 6f 20 65 6e 61 62 6c 65 20 50 49 4d 76 36 20 69 6e 20 74 68 65 20 73 65 6c 65 63 74 65 64 20 | to.enable.PIMv6.in.the.selected. |
| a8a20 | 69 6e 74 65 72 66 61 63 65 20 73 6f 20 74 68 61 74 20 69 74 20 63 61 6e 20 63 6f 6d 6d 75 6e 69 | interface.so.that.it.can.communi |
| a8a40 | 63 61 74 65 20 77 69 74 68 20 50 49 4d 76 36 20 6e 65 69 67 68 62 6f 72 73 2e 20 54 68 69 73 20 | cate.with.PIMv6.neighbors..This. |
| a8a60 | 63 6f 6d 6d 61 6e 64 20 61 6c 73 6f 20 65 6e 61 62 6c 65 73 20 4d 4c 44 20 72 65 70 6f 72 74 73 | command.also.enables.MLD.reports |
| a8a80 | 20 61 6e 64 20 71 75 65 72 79 20 6f 6e 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 75 6e 6c 65 | .and.query.on.the.interface.unle |
| a8aa0 | 73 73 20 3a 63 66 67 63 6d 64 3a 60 6d 6c 64 20 64 69 73 61 62 6c 65 60 20 69 73 20 63 6f 6e 66 | ss.:cfgcmd:`mld.disable`.is.conf |
| a8ac0 | 69 67 75 72 65 64 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 65 6e 61 62 | igured..Use.this.command.to.enab |
| a8ae0 | 6c 65 20 61 63 71 75 69 73 69 74 69 6f 6e 20 6f 66 20 49 50 76 36 20 61 64 64 72 65 73 73 20 75 | le.acquisition.of.IPv6.address.u |
| a8b00 | 73 69 6e 67 20 73 74 61 74 65 6c 65 73 73 20 61 75 74 6f 63 6f 6e 66 69 67 20 28 53 4c 41 41 43 | sing.stateless.autoconfig.(SLAAC |
| a8b20 | 29 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 65 6e 61 62 6c 65 20 62 61 | )..Use.this.command.to.enable.ba |
| a8b40 | 6e 64 77 69 64 74 68 20 73 68 61 70 69 6e 67 20 76 69 61 20 52 41 44 49 55 53 2e 00 55 73 65 20 | ndwidth.shaping.via.RADIUS..Use. |
| a8b60 | 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 65 6e 61 62 6c 65 20 70 72 6f 78 79 20 41 64 64 | this.command.to.enable.proxy.Add |
| a8b80 | 72 65 73 73 20 52 65 73 6f 6c 75 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c 20 28 41 52 50 29 20 6f | ress.Resolution.Protocol.(ARP).o |
| a8ba0 | 6e 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 2e 20 50 72 6f 78 79 20 41 52 50 20 61 6c 6c 6f | n.this.interface..Proxy.ARP.allo |
| a8bc0 | 77 73 20 61 6e 20 45 74 68 65 72 6e 65 74 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 72 65 73 70 | ws.an.Ethernet.interface.to.resp |
| a8be0 | 6f 6e 64 20 77 69 74 68 20 69 74 73 20 6f 77 6e 20 3a 61 62 62 72 3a 60 4d 41 43 20 28 4d 65 64 | ond.with.its.own.:abbr:`MAC.(Med |
| a8c00 | 69 61 20 41 63 63 65 73 73 20 43 6f 6e 74 72 6f 6c 29 60 20 61 64 64 72 65 73 73 20 74 6f 20 41 | ia.Access.Control)`.address.to.A |
| a8c20 | 52 50 20 72 65 71 75 65 73 74 73 20 66 6f 72 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 49 50 20 61 | RP.requests.for.destination.IP.a |
| a8c40 | 64 64 72 65 73 73 65 73 20 6f 6e 20 73 75 62 6e 65 74 73 20 61 74 74 61 63 68 65 64 20 74 6f 20 | ddresses.on.subnets.attached.to. |
| a8c60 | 6f 74 68 65 72 20 69 6e 74 65 72 66 61 63 65 73 20 6f 6e 20 74 68 65 20 73 79 73 74 65 6d 2e 20 | other.interfaces.on.the.system.. |
| a8c80 | 53 75 62 73 65 71 75 65 6e 74 20 70 61 63 6b 65 74 73 20 73 65 6e 74 20 74 6f 20 74 68 6f 73 65 | Subsequent.packets.sent.to.those |
| a8ca0 | 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 49 50 20 61 64 64 72 65 73 73 65 73 20 61 72 65 20 66 6f | .destination.IP.addresses.are.fo |
| a8cc0 | 72 77 61 72 64 65 64 20 61 70 70 72 6f 70 72 69 61 74 65 6c 79 20 62 79 20 74 68 65 20 73 79 73 | rwarded.appropriately.by.the.sys |
| a8ce0 | 74 65 6d 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 65 6e 61 62 6c 65 20 | tem..Use.this.command.to.enable. |
| a8d00 | 74 61 72 67 65 74 65 64 20 4c 44 50 20 73 65 73 73 69 6f 6e 73 20 74 6f 20 74 68 65 20 6c 6f 63 | targeted.LDP.sessions.to.the.loc |
| a8d20 | 61 6c 20 72 6f 75 74 65 72 2e 20 54 68 65 20 72 6f 75 74 65 72 20 77 69 6c 6c 20 74 68 65 6e 20 | al.router..The.router.will.then. |
| a8d40 | 72 65 73 70 6f 6e 64 20 74 6f 20 61 6e 79 20 73 65 73 73 69 6f 6e 73 20 74 68 61 74 20 61 72 65 | respond.to.any.sessions.that.are |
| a8d60 | 20 74 72 79 69 6e 67 20 74 6f 20 63 6f 6e 6e 65 63 74 20 74 6f 20 69 74 20 74 68 61 74 20 61 72 | .trying.to.connect.to.it.that.ar |
| a8d80 | 65 20 6e 6f 74 20 61 20 6c 69 6e 6b 20 6c 6f 63 61 6c 20 74 79 70 65 20 6f 66 20 54 43 50 20 63 | e.not.a.link.local.type.of.TCP.c |
| a8da0 | 6f 6e 6e 65 63 74 69 6f 6e 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 65 | onnection..Use.this.command.to.e |
| a8dc0 | 6e 61 62 6c 65 20 74 68 65 20 64 65 6c 61 79 20 6f 66 20 50 41 44 4f 20 28 50 50 50 6f 45 20 41 | nable.the.delay.of.PADO.(PPPoE.A |
| a8de0 | 63 74 69 76 65 20 44 69 73 63 6f 76 65 72 79 20 4f 66 66 65 72 29 20 70 61 63 6b 65 74 73 2c 20 | ctive.Discovery.Offer).packets,. |
| a8e00 | 77 68 69 63 68 20 63 61 6e 20 62 65 20 75 73 65 64 20 61 73 20 61 20 73 65 73 73 69 6f 6e 20 62 | which.can.be.used.as.a.session.b |
| a8e20 | 61 6c 61 6e 63 69 6e 67 20 6d 65 63 68 61 6e 69 73 6d 20 77 69 74 68 20 6f 74 68 65 72 20 50 50 | alancing.mechanism.with.other.PP |
| a8e40 | 50 6f 45 20 73 65 72 76 65 72 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f | PoE.servers..Use.this.command.to |
| a8e60 | 20 65 6e 61 62 6c 65 20 74 68 65 20 6c 6f 63 61 6c 20 72 6f 75 74 65 72 20 74 6f 20 74 72 79 20 | .enable.the.local.router.to.try. |
| a8e80 | 61 6e 64 20 63 6f 6e 6e 65 63 74 20 77 69 74 68 20 61 20 74 61 72 67 65 74 65 64 20 4c 44 50 20 | and.connect.with.a.targeted.LDP. |
| a8ea0 | 73 65 73 73 69 6f 6e 20 74 6f 20 61 6e 6f 74 68 65 72 20 72 6f 75 74 65 72 2e 00 55 73 65 20 74 | session.to.another.router..Use.t |
| a8ec0 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 65 6e 61 62 6c 65 20 74 68 65 20 6c 6f 67 67 69 6e | his.command.to.enable.the.loggin |
| a8ee0 | 67 20 6f 66 20 74 68 65 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 6f 6e 20 63 75 73 74 6f | g.of.the.default.action.on.custo |
| a8f00 | 6d 20 63 68 61 69 6e 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 65 6e | m.chains..Use.this.command.to.en |
| a8f20 | 61 62 6c 65 20 74 68 65 20 6c 6f 67 67 69 6e 67 20 6f 66 20 74 68 65 20 64 65 66 61 75 6c 74 20 | able.the.logging.of.the.default. |
| a8f40 | 61 63 74 69 6f 6e 20 6f 6e 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 63 68 61 69 6e 2e 00 55 | action.on.the.specified.chain..U |
| a8f60 | 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 65 6e 61 62 6c 65 20 74 68 65 20 6c 6f | se.this.command.to.enable.the.lo |
| a8f80 | 67 67 69 6e 67 20 6f 66 20 74 68 65 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 2e 00 55 73 65 | gging.of.the.default.action..Use |
| a8fa0 | 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 65 6e 61 62 6c 65 2c 20 64 69 73 61 62 6c 65 | .this.command.to.enable,.disable |
| a8fc0 | 2c 20 6f 72 20 73 70 65 63 69 66 79 20 68 6f 70 20 63 6f 75 6e 74 20 66 6f 72 20 54 54 4c 20 73 | ,.or.specify.hop.count.for.TTL.s |
| a8fe0 | 65 63 75 72 69 74 79 20 66 6f 72 20 4c 44 50 20 70 65 65 72 73 2e 20 42 79 20 64 65 66 61 75 6c | ecurity.for.LDP.peers..By.defaul |
| a9000 | 74 20 74 68 65 20 76 61 6c 75 65 20 69 73 20 73 65 74 20 74 6f 20 32 35 35 20 28 6f 72 20 6d 61 | t.the.value.is.set.to.255.(or.ma |
| a9020 | 78 20 54 54 4c 29 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 66 6c 75 73 | x.TTL)..Use.this.command.to.flus |
| a9040 | 68 20 74 68 65 20 6b 65 72 6e 65 6c 20 49 50 76 36 20 72 6f 75 74 65 20 63 61 63 68 65 2e 20 41 | h.the.kernel.IPv6.route.cache..A |
| a9060 | 6e 20 61 64 64 72 65 73 73 20 63 61 6e 20 62 65 20 61 64 64 65 64 20 74 6f 20 66 6c 75 73 68 20 | n.address.can.be.added.to.flush. |
| a9080 | 69 74 20 6f 6e 6c 79 20 66 6f 72 20 74 68 61 74 20 72 6f 75 74 65 2e 00 55 73 65 20 74 68 69 73 | it.only.for.that.route..Use.this |
| a90a0 | 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 67 65 74 20 61 6e 20 6f 76 65 72 76 69 65 77 20 6f 66 20 61 | .command.to.get.an.overview.of.a |
| a90c0 | 20 7a 6f 6e 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 67 65 74 20 69 | .zone..Use.this.command.to.get.i |
| a90e0 | 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 4f 53 50 46 76 33 2e 00 55 73 65 20 74 68 69 | nformation.about.OSPFv3..Use.thi |
| a9100 | 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 67 65 74 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f | s.command.to.get.information.abo |
| a9120 | 75 74 20 74 68 65 20 52 49 50 4e 47 20 70 72 6f 74 6f 63 6f 6c 00 55 73 65 20 74 68 69 73 20 63 | ut.the.RIPNG.protocol.Use.this.c |
| a9140 | 6f 6d 6d 61 6e 64 20 74 6f 20 69 6e 73 74 72 75 63 74 20 74 68 65 20 73 79 73 74 65 6d 20 74 6f | ommand.to.instruct.the.system.to |
| a9160 | 20 65 73 74 61 62 6c 69 73 68 20 61 20 50 50 50 6f 45 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 61 75 | .establish.a.PPPoE.connection.au |
| a9180 | 74 6f 6d 61 74 69 63 61 6c 6c 79 20 6f 6e 63 65 20 74 72 61 66 66 69 63 20 70 61 73 73 65 73 20 | tomatically.once.traffic.passes. |
| a91a0 | 74 68 72 6f 75 67 68 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 2e 20 41 20 64 69 73 61 62 6c 65 | through.the.interface..A.disable |
| a91c0 | 64 20 6f 6e 2d 64 65 6d 61 6e 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 69 73 20 65 73 74 61 62 6c | d.on-demand.connection.is.establ |
| a91e0 | 69 73 68 65 64 20 61 74 20 62 6f 6f 74 20 74 69 6d 65 20 61 6e 64 20 72 65 6d 61 69 6e 73 20 75 | ished.at.boot.time.and.remains.u |
| a9200 | 70 2e 20 49 66 20 74 68 65 20 6c 69 6e 6b 20 66 61 69 6c 73 20 66 6f 72 20 61 6e 79 20 72 65 61 | p..If.the.link.fails.for.any.rea |
| a9220 | 73 6f 6e 2c 20 74 68 65 20 6c 69 6e 6b 20 69 73 20 62 72 6f 75 67 68 74 20 62 61 63 6b 20 75 70 | son,.the.link.is.brought.back.up |
| a9240 | 20 69 6d 6d 65 64 69 61 74 65 6c 79 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 | .immediately..Use.this.command.t |
| a9260 | 6f 20 6c 69 6e 6b 20 74 68 65 20 50 50 50 6f 45 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 6f 20 61 | o.link.the.PPPoE.connection.to.a |
| a9280 | 20 70 68 79 73 69 63 61 6c 20 69 6e 74 65 72 66 61 63 65 2e 20 45 61 63 68 20 50 50 50 6f 45 20 | .physical.interface..Each.PPPoE. |
| a92a0 | 63 6f 6e 6e 65 63 74 69 6f 6e 20 6d 75 73 74 20 62 65 20 65 73 74 61 62 6c 69 73 68 65 64 20 6f | connection.must.be.established.o |
| a92c0 | 76 65 72 20 61 20 70 68 79 73 69 63 61 6c 20 69 6e 74 65 72 66 61 63 65 2e 20 49 6e 74 65 72 66 | ver.a.physical.interface..Interf |
| a92e0 | 61 63 65 73 20 63 61 6e 20 62 65 20 72 65 67 75 6c 61 72 20 45 74 68 65 72 6e 65 74 20 69 6e 74 | aces.can.be.regular.Ethernet.int |
| a9300 | 65 72 66 61 63 65 73 2c 20 56 49 46 73 20 6f 72 20 62 6f 6e 64 69 6e 67 20 69 6e 74 65 72 66 61 | erfaces,.VIFs.or.bonding.interfa |
| a9320 | 63 65 73 2f 56 49 46 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 6c 6f | ces/VIFs..Use.this.command.to.lo |
| a9340 | 63 61 6c 6c 79 20 63 68 65 63 6b 20 74 68 65 20 61 63 74 69 76 65 20 73 65 73 73 69 6f 6e 73 20 | cally.check.the.active.sessions. |
| a9360 | 69 6e 20 74 68 65 20 49 50 6f 45 20 73 65 72 76 65 72 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d | in.the.IPoE.server..Use.this.com |
| a9380 | 6d 61 6e 64 20 74 6f 20 6c 6f 63 61 6c 6c 79 20 63 68 65 63 6b 20 74 68 65 20 61 63 74 69 76 65 | mand.to.locally.check.the.active |
| a93a0 | 20 73 65 73 73 69 6f 6e 73 20 69 6e 20 74 68 65 20 50 50 50 6f 45 20 73 65 72 76 65 72 2e 00 55 | .sessions.in.the.PPPoE.server..U |
| a93c0 | 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 6c 6f 63 61 6c 6c 79 20 63 68 65 63 6b | se.this.command.to.locally.check |
| a93e0 | 20 74 68 65 20 61 63 74 69 76 65 20 73 65 73 73 69 6f 6e 73 20 69 6e 20 74 68 65 20 50 50 54 50 | .the.active.sessions.in.the.PPTP |
| a9400 | 20 73 65 72 76 65 72 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 6c 6f 63 | .server..Use.this.command.to.loc |
| a9420 | 61 6c 6c 79 20 63 68 65 63 6b 20 74 68 65 20 61 63 74 69 76 65 20 73 65 73 73 69 6f 6e 73 20 69 | ally.check.the.active.sessions.i |
| a9440 | 6e 20 74 68 65 20 53 53 54 50 20 73 65 72 76 65 72 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d | n.the.SSTP.server..Use.this.comm |
| a9460 | 61 6e 64 20 74 6f 20 6d 61 6e 75 61 6c 6c 79 20 63 6f 6e 66 69 67 75 72 65 20 61 20 52 65 6e 64 | and.to.manually.configure.a.Rend |
| a9480 | 65 7a 76 6f 75 73 20 50 6f 69 6e 74 20 66 6f 72 20 50 49 4d 20 73 6f 20 74 68 61 74 20 6a 6f 69 | ezvous.Point.for.PIM.so.that.joi |
| a94a0 | 6e 20 6d 65 73 73 61 67 65 73 20 63 61 6e 20 62 65 20 73 65 6e 74 20 74 68 65 72 65 2e 20 53 65 | n.messages.can.be.sent.there..Se |
| a94c0 | 74 20 74 68 65 20 52 65 6e 64 65 76 6f 75 7a 20 50 6f 69 6e 74 20 61 64 64 72 65 73 73 20 61 6e | t.the.Rendevouz.Point.address.an |
| a94e0 | 64 20 74 68 65 20 6d 61 74 63 68 69 6e 67 20 70 72 65 66 69 78 20 6f 66 20 67 72 6f 75 70 20 72 | d.the.matching.prefix.of.group.r |
| a9500 | 61 6e 67 65 73 20 63 6f 76 65 72 65 64 2e 20 54 68 65 73 65 20 76 61 6c 75 65 73 20 6d 75 73 74 | anges.covered..These.values.must |
| a9520 | 20 62 65 20 73 68 61 72 65 64 20 77 69 74 68 20 65 76 65 72 79 20 72 6f 75 74 65 72 20 70 61 72 | .be.shared.with.every.router.par |
| a9540 | 74 69 63 69 70 61 74 69 6e 67 20 69 6e 20 74 68 65 20 50 49 4d 20 6e 65 74 77 6f 72 6b 2e 00 55 | ticipating.in.the.PIM.network..U |
| a9560 | 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 6e 6f 74 20 69 6e 73 74 61 6c 6c 20 61 | se.this.command.to.not.install.a |
| a9580 | 64 76 65 72 74 69 73 65 64 20 44 4e 53 20 6e 61 6d 65 73 65 72 76 65 72 73 20 69 6e 74 6f 20 74 | dvertised.DNS.nameservers.into.t |
| a95a0 | 68 65 20 6c 6f 63 61 6c 20 73 79 73 74 65 6d 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e | he.local.system..Use.this.comman |
| a95c0 | 64 20 74 6f 20 70 72 65 66 65 72 20 49 50 76 34 20 66 6f 72 20 54 43 50 20 70 65 65 72 20 74 72 | d.to.prefer.IPv4.for.TCP.peer.tr |
| a95e0 | 61 6e 73 70 6f 72 74 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 66 6f 72 20 4c 44 50 20 77 68 65 6e 20 | ansport.connection.for.LDP.when. |
| a9600 | 62 6f 74 68 20 61 6e 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 4c 44 50 20 61 64 64 72 65 73 | both.an.IPv4.and.IPv6.LDP.addres |
| a9620 | 73 20 61 72 65 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 74 68 65 20 73 61 6d 65 20 69 6e 74 | s.are.configured.on.the.same.int |
| a9640 | 65 72 66 61 63 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 72 65 73 65 | erface..Use.this.command.to.rese |
| a9660 | 74 20 49 50 76 36 20 4e 65 69 67 68 62 6f 72 20 44 69 73 63 6f 76 65 72 79 20 50 72 6f 74 6f 63 | t.IPv6.Neighbor.Discovery.Protoc |
| a9680 | 6f 6c 20 63 61 63 68 65 20 66 6f 72 20 61 6e 20 61 64 64 72 65 73 73 20 6f 72 20 69 6e 74 65 72 | ol.cache.for.an.address.or.inter |
| a96a0 | 66 61 63 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 72 65 73 65 74 20 | face..Use.this.command.to.reset. |
| a96c0 | 61 6e 20 4c 44 50 20 6e 65 69 67 68 62 6f 72 2f 54 43 50 20 73 65 73 73 69 6f 6e 20 74 68 61 74 | an.LDP.neighbor/TCP.session.that |
| a96e0 | 20 69 73 20 65 73 74 61 62 6c 69 73 68 65 64 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 | .is.established.Use.this.command |
| a9700 | 20 74 6f 20 72 65 73 65 74 20 74 68 65 20 4f 70 65 6e 56 50 4e 20 70 72 6f 63 65 73 73 20 6f 6e | .to.reset.the.OpenVPN.process.on |
| a9720 | 20 61 20 73 70 65 63 69 66 69 63 20 69 6e 74 65 72 66 61 63 65 2e 00 55 73 65 20 74 68 69 73 20 | .a.specific.interface..Use.this. |
| a9740 | 63 6f 6d 6d 61 6e 64 20 74 6f 20 72 65 73 65 74 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 4f | command.to.reset.the.specified.O |
| a9760 | 70 65 6e 56 50 4e 20 63 6c 69 65 6e 74 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 | penVPN.client..Use.this.command. |
| a9780 | 74 6f 20 72 65 73 74 72 69 63 74 20 74 68 65 20 50 50 50 6f 45 20 73 65 73 73 69 6f 6e 20 6f 6e | to.restrict.the.PPPoE.session.on |
| a97a0 | 20 61 20 67 69 76 65 6e 20 61 63 63 65 73 73 20 63 6f 6e 63 65 6e 74 72 61 74 6f 72 2e 20 4e 6f | .a.given.access.concentrator..No |
| a97c0 | 72 6d 61 6c 6c 79 2c 20 61 20 68 6f 73 74 20 73 65 6e 64 73 20 61 20 50 50 50 6f 45 20 69 6e 69 | rmally,.a.host.sends.a.PPPoE.ini |
| a97e0 | 74 69 61 74 69 6f 6e 20 70 61 63 6b 65 74 20 74 6f 20 73 74 61 72 74 20 74 68 65 20 50 50 50 6f | tiation.packet.to.start.the.PPPo |
| a9800 | 45 20 64 69 73 63 6f 76 65 72 79 20 70 72 6f 63 65 73 73 2c 20 61 20 6e 75 6d 62 65 72 20 6f 66 | E.discovery.process,.a.number.of |
| a9820 | 20 61 63 63 65 73 73 20 63 6f 6e 63 65 6e 74 72 61 74 6f 72 73 20 72 65 73 70 6f 6e 64 20 77 69 | .access.concentrators.respond.wi |
| a9840 | 74 68 20 6f 66 66 65 72 20 70 61 63 6b 65 74 73 20 61 6e 64 20 74 68 65 20 68 6f 73 74 20 73 65 | th.offer.packets.and.the.host.se |
| a9860 | 6c 65 63 74 73 20 6f 6e 65 20 6f 66 20 74 68 65 20 72 65 73 70 6f 6e 64 69 6e 67 20 61 63 63 65 | lects.one.of.the.responding.acce |
| a9880 | 73 73 20 63 6f 6e 63 65 6e 74 72 61 74 6f 72 73 20 74 6f 20 73 65 72 76 65 20 74 68 69 73 20 73 | ss.concentrators.to.serve.this.s |
| a98a0 | 65 73 73 69 6f 6e 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 65 65 20 | ession..Use.this.command.to.see. |
| a98c0 | 4c 44 50 20 69 6e 74 65 72 66 61 63 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 00 55 73 65 20 74 68 | LDP.interface.information.Use.th |
| a98e0 | 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 65 65 20 4c 44 50 20 6e 65 69 67 68 62 6f 72 20 69 | is.command.to.see.LDP.neighbor.i |
| a9900 | 6e 66 6f 72 6d 61 74 69 6f 6e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 | nformation.Use.this.command.to.s |
| a9920 | 65 65 20 64 65 74 61 69 6c 65 64 20 4c 44 50 20 6e 65 69 67 68 62 6f 72 20 69 6e 66 6f 72 6d 61 | ee.detailed.LDP.neighbor.informa |
| a9940 | 74 69 6f 6e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 65 65 20 64 69 73 | tion.Use.this.command.to.see.dis |
| a9960 | 63 6f 76 65 72 79 20 68 65 6c 6c 6f 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 00 55 73 65 20 74 68 69 | covery.hello.information.Use.thi |
| a9980 | 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 65 65 20 74 68 65 20 4c 61 62 65 6c 20 49 6e 66 6f 72 | s.command.to.see.the.Label.Infor |
| a99a0 | 6d 61 74 69 6f 6e 20 42 61 73 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f | mation.Base..Use.this.command.to |
| a99c0 | 20 73 65 74 20 61 20 6e 61 6d 65 20 66 6f 72 20 74 68 69 73 20 50 50 50 6f 45 2d 73 65 72 76 65 | .set.a.name.for.this.PPPoE-serve |
| a99e0 | 72 20 61 63 63 65 73 73 20 63 6f 6e 63 65 6e 74 72 61 74 6f 72 2e 00 55 73 65 20 74 68 69 73 20 | r.access.concentrator..Use.this. |
| a9a00 | 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 65 74 20 72 65 2d 64 69 61 6c 20 64 65 6c 61 79 20 74 69 6d | command.to.set.re-dial.delay.tim |
| a9a20 | 65 20 74 6f 20 62 65 20 75 73 65 64 20 77 69 74 68 20 70 65 72 73 69 73 74 20 50 50 50 6f 45 20 | e.to.be.used.with.persist.PPPoE. |
| a9a40 | 73 65 73 73 69 6f 6e 73 2e 20 57 68 65 6e 20 74 68 65 20 50 50 50 6f 45 20 73 65 73 73 69 6f 6e | sessions..When.the.PPPoE.session |
| a9a60 | 20 69 73 20 74 65 72 6d 69 6e 61 74 65 64 20 62 79 20 70 65 65 72 2c 20 61 6e 64 20 6f 6e 2d 64 | .is.terminated.by.peer,.and.on-d |
| a9a80 | 65 6d 61 6e 64 20 6f 70 74 69 6f 6e 20 69 73 20 6e 6f 74 20 73 65 74 2c 20 74 68 65 20 72 6f 75 | emand.option.is.not.set,.the.rou |
| a9aa0 | 74 65 72 20 77 69 6c 6c 20 61 74 74 65 6d 70 74 20 74 6f 20 72 65 2d 65 73 74 61 62 6c 69 73 68 | ter.will.attempt.to.re-establish |
| a9ac0 | 20 74 68 65 20 50 50 50 6f 45 20 6c 69 6e 6b 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e | .the.PPPoE.link..Use.this.comman |
| a9ae0 | 64 20 74 6f 20 73 65 74 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 6c | d.to.set.the.IP.address.of.the.l |
| a9b00 | 6f 63 61 6c 20 65 6e 64 70 6f 69 6e 74 20 6f 66 20 61 20 50 50 50 6f 45 20 73 65 73 73 69 6f 6e | ocal.endpoint.of.a.PPPoE.session |
| a9b20 | 2e 20 49 66 20 69 74 20 69 73 20 6e 6f 74 20 73 65 74 20 69 74 20 77 69 6c 6c 20 62 65 20 6e 65 | ..If.it.is.not.set.it.will.be.ne |
| a9b40 | 67 6f 74 69 61 74 65 64 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 65 | gotiated..Use.this.command.to.se |
| a9b60 | 74 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 72 65 6d 6f 74 65 20 65 | t.the.IP.address.of.the.remote.e |
| a9b80 | 6e 64 70 6f 69 6e 74 20 6f 66 20 61 20 50 50 50 6f 45 20 73 65 73 73 69 6f 6e 2e 20 49 66 20 69 | ndpoint.of.a.PPPoE.session..If.i |
| a9ba0 | 74 20 69 73 20 6e 6f 74 20 73 65 74 20 69 74 20 77 69 6c 6c 20 62 65 20 6e 65 67 6f 74 69 61 74 | t.is.not.set.it.will.be.negotiat |
| a9bc0 | 65 64 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 65 74 20 74 68 65 20 | ed..Use.this.command.to.set.the. |
| a9be0 | 49 50 76 34 20 6f 72 20 49 50 76 36 20 61 64 64 72 65 73 73 20 6f 66 20 65 76 65 72 79 20 44 6f | IPv4.or.IPv6.address.of.every.Do |
| a9c00 | 6d 61 6e 20 4e 61 6d 65 20 53 65 72 76 65 72 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 63 6f 6e 66 | man.Name.Server.you.want.to.conf |
| a9c20 | 69 67 75 72 65 2e 20 54 68 65 79 20 77 69 6c 6c 20 62 65 20 70 72 6f 70 61 67 61 74 65 64 20 74 | igure..They.will.be.propagated.t |
| a9c40 | 6f 20 50 50 50 6f 45 20 63 6c 69 65 6e 74 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e | o.PPPoE.clients..Use.this.comman |
| a9c60 | 64 20 74 6f 20 73 65 74 20 74 68 65 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 74 72 61 6e 73 70 | d.to.set.the.IPv4.or.IPv6.transp |
| a9c80 | 6f 72 74 2d 61 64 64 72 65 73 73 20 75 73 65 64 20 62 79 20 4c 44 50 2e 00 55 73 65 20 74 68 69 | ort-address.used.by.LDP..Use.thi |
| a9ca0 | 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 65 74 20 74 68 65 20 69 64 6c 65 20 74 69 6d 65 6f 75 | s.command.to.set.the.idle.timeou |
| a9cc0 | 74 20 69 6e 74 65 72 76 61 6c 20 74 6f 20 62 65 20 75 73 65 64 20 77 69 74 68 20 6f 6e 2d 64 65 | t.interval.to.be.used.with.on-de |
| a9ce0 | 6d 61 6e 64 20 50 50 50 6f 45 20 73 65 73 73 69 6f 6e 73 2e 20 57 68 65 6e 20 61 6e 20 6f 6e 2d | mand.PPPoE.sessions..When.an.on- |
| a9d00 | 64 65 6d 61 6e 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 69 73 20 65 73 74 61 62 6c 69 73 68 65 64 | demand.connection.is.established |
| a9d20 | 2c 20 74 68 65 20 6c 69 6e 6b 20 69 73 20 62 72 6f 75 67 68 74 20 75 70 20 6f 6e 6c 79 20 77 68 | ,.the.link.is.brought.up.only.wh |
| a9d40 | 65 6e 20 74 72 61 66 66 69 63 20 69 73 20 73 65 6e 74 20 61 6e 64 20 69 73 20 64 69 73 61 62 6c | en.traffic.is.sent.and.is.disabl |
| a9d60 | 65 64 20 77 68 65 6e 20 74 68 65 20 6c 69 6e 6b 20 69 73 20 69 64 6c 65 20 66 6f 72 20 74 68 65 | ed.when.the.link.is.idle.for.the |
| a9d80 | 20 69 6e 74 65 72 76 61 6c 20 73 70 65 63 69 66 69 65 64 2e 00 55 73 65 20 74 68 69 73 20 63 6f | .interval.specified..Use.this.co |
| a9da0 | 6d 6d 61 6e 64 20 74 6f 20 73 65 74 20 74 68 65 20 70 61 73 73 77 6f 72 64 20 66 6f 72 20 61 75 | mmand.to.set.the.password.for.au |
| a9dc0 | 74 68 65 6e 74 69 63 61 74 69 6e 67 20 77 69 74 68 20 61 20 72 65 6d 6f 74 65 20 50 50 50 6f 45 | thenticating.with.a.remote.PPPoE |
| a9de0 | 20 65 6e 64 70 6f 69 6e 74 2e 20 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 69 73 20 6f 70 74 | .endpoint..Authentication.is.opt |
| a9e00 | 69 6f 6e 61 6c 20 66 72 6f 6d 20 74 68 65 20 73 79 73 74 65 6d 27 73 20 70 6f 69 6e 74 20 6f 66 | ional.from.the.system's.point.of |
| a9e20 | 20 76 69 65 77 20 62 75 74 20 6d 6f 73 74 20 73 65 72 76 69 63 65 20 70 72 6f 76 69 64 65 72 73 | .view.but.most.service.providers |
| a9e40 | 20 72 65 71 75 69 72 65 20 69 74 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f | .require.it..Use.this.command.to |
| a9e60 | 20 73 65 74 20 74 68 65 20 74 61 72 67 65 74 20 74 6f 20 75 73 65 2e 20 41 63 74 69 6f 6e 20 71 | .set.the.target.to.use..Action.q |
| a9e80 | 75 65 75 65 20 6d 75 73 74 20 62 65 20 64 65 66 69 6e 65 64 20 74 6f 20 75 73 65 20 74 68 69 73 | ueue.must.be.defined.to.use.this |
| a9ea0 | 20 73 65 74 74 69 6e 67 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 65 74 | .setting.Use.this.command.to.set |
| a9ec0 | 20 74 68 65 20 75 73 65 72 6e 61 6d 65 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6e 67 | .the.username.for.authenticating |
| a9ee0 | 20 77 69 74 68 20 61 20 72 65 6d 6f 74 65 20 50 50 50 6f 45 20 65 6e 64 70 6f 69 6e 74 2e 20 41 | .with.a.remote.PPPoE.endpoint..A |
| a9f00 | 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 69 73 20 6f 70 74 69 6f 6e 61 6c 20 66 72 6f 6d 20 74 | uthentication.is.optional.from.t |
| a9f20 | 68 65 20 73 79 73 74 65 6d 27 73 20 70 6f 69 6e 74 20 6f 66 20 76 69 65 77 20 62 75 74 20 6d 6f | he.system's.point.of.view.but.mo |
| a9f40 | 73 74 20 73 65 72 76 69 63 65 20 70 72 6f 76 69 64 65 72 73 20 72 65 71 75 69 72 65 20 69 74 2e | st.service.providers.require.it. |
| a9f60 | 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 68 6f 77 20 49 50 76 36 20 42 | .Use.this.command.to.show.IPv6.B |
| a9f80 | 6f 72 64 65 72 20 47 61 74 65 77 61 79 20 50 72 6f 74 6f 63 6f 6c 20 69 6e 66 6f 72 6d 61 74 69 | order.Gateway.Protocol.informati |
| a9fa0 | 6f 6e 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 68 6f 77 20 49 50 76 | on..Use.this.command.to.show.IPv |
| a9fc0 | 36 20 4e 65 69 67 68 62 6f 72 20 44 69 73 63 6f 76 65 72 79 20 50 72 6f 74 6f 63 6f 6c 20 69 6e | 6.Neighbor.Discovery.Protocol.in |
| a9fe0 | 66 6f 72 6d 61 74 69 6f 6e 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 | formation..Use.this.command.to.s |
| aa000 | 68 6f 77 20 49 50 76 36 20 66 6f 72 77 61 72 64 69 6e 67 20 73 74 61 74 75 73 2e 00 55 73 65 20 | how.IPv6.forwarding.status..Use. |
| aa020 | 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 68 6f 77 20 49 50 76 36 20 6d 75 6c 74 69 63 | this.command.to.show.IPv6.multic |
| aa040 | 61 73 74 20 67 72 6f 75 70 20 6d 65 6d 62 65 72 73 68 69 70 2e 00 55 73 65 20 74 68 69 73 20 63 | ast.group.membership..Use.this.c |
| aa060 | 6f 6d 6d 61 6e 64 20 74 6f 20 73 68 6f 77 20 49 50 76 36 20 72 6f 75 74 65 73 2e 00 55 73 65 20 | ommand.to.show.IPv6.routes..Use. |
| aa080 | 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 68 6f 77 20 61 6c 6c 20 49 50 76 36 20 61 63 | this.command.to.show.all.IPv6.ac |
| aa0a0 | 63 65 73 73 20 6c 69 73 74 73 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 | cess.lists.Use.this.command.to.s |
| aa0c0 | 68 6f 77 20 61 6c 6c 20 49 50 76 36 20 70 72 65 66 69 78 20 6c 69 73 74 73 00 55 73 65 20 74 68 | how.all.IPv6.prefix.lists.Use.th |
| aa0e0 | 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 68 6f 77 20 74 68 65 20 73 74 61 74 75 73 20 6f 66 | is.command.to.show.the.status.of |
| aa100 | 20 74 68 65 20 52 49 50 4e 47 20 70 72 6f 74 6f 63 6f 6c 00 55 73 65 20 74 68 69 73 20 63 6f 6d | .the.RIPNG.protocol.Use.this.com |
| aa120 | 6d 61 6e 64 20 74 6f 20 73 70 65 63 69 66 79 20 61 20 44 4e 53 20 73 65 72 76 65 72 20 66 6f 72 | mand.to.specify.a.DNS.server.for |
| aa140 | 20 74 68 65 20 73 79 73 74 65 6d 20 74 6f 20 62 65 20 75 73 65 64 20 66 6f 72 20 44 4e 53 20 6c | .the.system.to.be.used.for.DNS.l |
| aa160 | 6f 6f 6b 75 70 73 2e 20 4d 6f 72 65 20 74 68 61 6e 20 6f 6e 65 20 44 4e 53 20 73 65 72 76 65 72 | ookups..More.than.one.DNS.server |
| aa180 | 20 63 61 6e 20 62 65 20 61 64 64 65 64 2c 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 6f 6e 65 20 61 | .can.be.added,.configuring.one.a |
| aa1a0 | 74 20 61 20 74 69 6d 65 2e 20 42 6f 74 68 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 61 64 64 | t.a.time..Both.IPv4.and.IPv6.add |
| aa1c0 | 72 65 73 73 65 73 20 61 72 65 20 73 75 70 70 6f 72 74 65 64 2e 00 55 73 65 20 74 68 69 73 20 63 | resses.are.supported..Use.this.c |
| aa1e0 | 6f 6d 6d 61 6e 64 20 74 6f 20 73 70 65 63 69 66 79 20 61 20 64 6f 6d 61 69 6e 20 6e 61 6d 65 20 | ommand.to.specify.a.domain.name. |
| aa200 | 74 6f 20 62 65 20 61 70 70 65 6e 64 65 64 20 74 6f 20 64 6f 6d 61 69 6e 2d 6e 61 6d 65 73 20 77 | to.be.appended.to.domain-names.w |
| aa220 | 69 74 68 69 6e 20 55 52 4c 73 20 74 68 61 74 20 64 6f 20 6e 6f 74 20 69 6e 63 6c 75 64 65 20 61 | ithin.URLs.that.do.not.include.a |
| aa240 | 20 64 6f 74 20 60 60 2e 60 60 20 74 68 65 20 64 6f 6d 61 69 6e 20 69 73 20 61 70 70 65 6e 64 65 | .dot.``.``.the.domain.is.appende |
| aa260 | 64 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 70 65 63 69 66 79 20 61 | d..Use.this.command.to.specify.a |
| aa280 | 20 73 65 72 76 69 63 65 20 6e 61 6d 65 20 62 79 20 77 68 69 63 68 20 74 68 65 20 6c 6f 63 61 6c | .service.name.by.which.the.local |
| aa2a0 | 20 50 50 50 6f 45 20 69 6e 74 65 72 66 61 63 65 20 63 61 6e 20 73 65 6c 65 63 74 20 61 63 63 65 | .PPPoE.interface.can.select.acce |
| aa2c0 | 73 73 20 63 6f 6e 63 65 6e 74 72 61 74 6f 72 73 20 74 6f 20 63 6f 6e 6e 65 63 74 20 77 69 74 68 | ss.concentrators.to.connect.with |
| aa2e0 | 2e 20 49 74 20 77 69 6c 6c 20 63 6f 6e 6e 65 63 74 20 74 6f 20 61 6e 79 20 61 63 63 65 73 73 20 | ..It.will.connect.to.any.access. |
| aa300 | 63 6f 6e 63 65 6e 74 72 61 74 6f 72 20 69 66 20 6e 6f 74 20 73 65 74 2e 00 55 73 65 20 74 68 69 | concentrator.if.not.set..Use.thi |
| aa320 | 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 75 73 65 20 4c 61 79 65 72 20 34 20 69 6e 66 6f 72 6d 61 | s.command.to.use.Layer.4.informa |
| aa340 | 74 69 6f 6e 20 66 6f 72 20 49 50 76 34 20 45 43 4d 50 20 68 61 73 68 69 6e 67 2e 00 55 73 65 20 | tion.for.IPv4.ECMP.hashing..Use. |
| aa360 | 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 75 73 65 20 61 20 43 69 73 63 6f 20 6e 6f 6e 2d | this.command.to.use.a.Cisco.non- |
| aa380 | 63 6f 6d 70 6c 69 61 6e 74 20 66 6f 72 6d 61 74 20 74 6f 20 73 65 6e 64 20 61 6e 64 20 69 6e 74 | compliant.format.to.send.and.int |
| aa3a0 | 65 72 70 72 65 74 20 74 68 65 20 44 75 61 6c 2d 53 74 61 63 6b 20 63 61 70 61 62 69 6c 69 74 79 | erpret.the.Dual-Stack.capability |
| aa3c0 | 20 54 4c 56 20 66 6f 72 20 49 50 76 36 20 4c 44 50 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6f 6e 73 | .TLV.for.IPv6.LDP.communications |
| aa3e0 | 2e 20 54 68 69 73 20 69 73 20 72 65 6c 61 74 65 64 20 74 6f 20 3a 72 66 63 3a 60 37 35 35 32 60 | ..This.is.related.to.:rfc:`7552` |
| aa400 | 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 75 73 65 20 6f 72 64 65 72 65 | ..Use.this.command.to.use.ordere |
| aa420 | 64 20 6c 61 62 65 6c 20 64 69 73 74 72 69 62 75 74 69 6f 6e 20 63 6f 6e 74 72 6f 6c 20 6d 6f 64 | d.label.distribution.control.mod |
| aa440 | 65 2e 20 46 52 52 20 62 79 20 64 65 66 61 75 6c 74 20 75 73 65 73 20 69 6e 64 65 70 65 6e 64 65 | e..FRR.by.default.uses.independe |
| aa460 | 6e 74 20 6c 61 62 65 6c 20 64 69 73 74 72 69 62 75 74 69 6f 6e 20 63 6f 6e 74 72 6f 6c 20 6d 6f | nt.label.distribution.control.mo |
| aa480 | 64 65 20 66 6f 72 20 6c 61 62 65 6c 20 64 69 73 74 72 69 62 75 74 69 6f 6e 2e 20 20 54 68 69 73 | de.for.label.distribution...This |
| aa4a0 | 20 69 73 20 72 65 6c 61 74 65 64 20 74 6f 20 3a 72 66 63 3a 60 35 30 33 36 60 2e 00 55 73 65 20 | .is.related.to.:rfc:`5036`..Use. |
| aa4c0 | 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 75 73 65 72 20 4c 61 79 65 72 20 34 20 69 6e 66 | this.command.to.user.Layer.4.inf |
| aa4e0 | 6f 72 6d 61 74 69 6f 6e 20 66 6f 72 20 45 43 4d 50 20 68 61 73 68 69 6e 67 2e 00 55 73 65 20 74 | ormation.for.ECMP.hashing..Use.t |
| aa500 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 76 69 65 77 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 | his.command.to.view.operational. |
| aa520 | 73 74 61 74 75 73 20 61 6e 64 20 64 65 74 61 69 6c 73 20 77 69 72 65 6c 65 73 73 2d 73 70 65 63 | status.and.details.wireless-spec |
| aa540 | 69 66 69 63 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 61 6c 6c 20 77 69 72 65 6c | ific.information.about.all.wirel |
| aa560 | 65 73 73 20 69 6e 74 65 72 66 61 63 65 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 | ess.interfaces..Use.this.command |
| aa580 | 20 74 6f 20 76 69 65 77 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 73 74 61 74 75 73 20 61 6e 64 20 | .to.view.operational.status.and. |
| aa5a0 | 77 69 72 65 6c 65 73 73 2d 73 70 65 63 69 66 69 63 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 | wireless-specific.information.ab |
| aa5c0 | 6f 75 74 20 61 6c 6c 20 77 69 72 65 6c 65 73 73 20 69 6e 74 65 72 66 61 63 65 73 2e 00 55 73 65 | out.all.wireless.interfaces..Use |
| aa5e0 | 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 76 69 65 77 20 77 69 72 65 6c 65 73 73 20 69 | .this.command.to.view.wireless.i |
| aa600 | 6e 74 65 72 66 61 63 65 20 71 75 65 75 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2e 20 54 68 65 20 | nterface.queue.information..The. |
| aa620 | 77 69 72 65 6c 65 73 73 20 69 6e 74 65 72 66 61 63 65 20 69 64 65 6e 74 69 66 69 65 72 20 63 61 | wireless.interface.identifier.ca |
| aa640 | 6e 20 72 61 6e 67 65 20 66 72 6f 6d 20 77 6c 61 6e 30 20 74 6f 20 77 6c 61 6e 39 39 39 2e 00 55 | n.range.from.wlan0.to.wlan999..U |
| aa660 | 73 65 64 20 66 6f 72 20 74 72 6f 75 62 6c 65 73 68 6f 6f 74 69 6e 67 2e 00 55 73 65 64 20 74 6f | sed.for.troubleshooting..Used.to |
| aa680 | 20 62 6c 6f 63 6b 20 61 20 73 70 65 63 69 66 69 63 20 6d 69 6d 65 2d 74 79 70 65 2e 00 55 73 65 | .block.a.specific.mime-type..Use |
| aa6a0 | 64 20 74 6f 20 62 6c 6f 63 6b 20 73 70 65 63 69 66 69 63 20 64 6f 6d 61 69 6e 73 20 62 79 20 74 | d.to.block.specific.domains.by.t |
| aa6c0 | 68 65 20 50 72 6f 78 79 2e 20 53 70 65 63 69 66 79 69 6e 67 20 22 76 79 6f 73 2e 6e 65 74 22 20 | he.Proxy..Specifying."vyos.net". |
| aa6e0 | 77 69 6c 6c 20 62 6c 6f 63 6b 20 61 6c 6c 20 61 63 63 65 73 73 20 74 6f 20 76 79 6f 73 2e 6e 65 | will.block.all.access.to.vyos.ne |
| aa700 | 74 2c 20 61 6e 64 20 73 70 65 63 69 66 79 69 6e 67 20 22 2e 78 78 78 22 20 77 69 6c 6c 20 62 6c | t,.and.specifying.".xxx".will.bl |
| aa720 | 6f 63 6b 20 61 6c 6c 20 61 63 63 65 73 73 20 74 6f 20 55 52 4c 73 20 68 61 76 69 6e 67 20 61 6e | ock.all.access.to.URLs.having.an |
| aa740 | 20 55 52 4c 20 65 6e 64 69 6e 67 20 6f 6e 20 2e 78 78 78 2e 00 55 73 65 72 20 69 6e 74 65 72 66 | .URL.ending.on..xxx..User.interf |
| aa760 | 61 63 65 20 63 61 6e 20 62 65 20 70 75 74 20 74 6f 20 56 52 46 20 63 6f 6e 74 65 78 74 20 76 69 | ace.can.be.put.to.VRF.context.vi |
| aa780 | 61 20 52 41 44 49 55 53 20 41 63 63 65 73 73 2d 41 63 63 65 70 74 20 70 61 63 6b 65 74 2c 20 6f | a.RADIUS.Access-Accept.packet,.o |
| aa7a0 | 72 20 63 68 61 6e 67 65 20 69 74 20 76 69 61 20 52 41 44 49 55 53 20 43 6f 41 2e 20 60 60 41 63 | r.change.it.via.RADIUS.CoA..``Ac |
| aa7c0 | 63 65 6c 2d 56 52 46 2d 4e 61 6d 65 60 60 20 69 73 20 75 73 65 64 20 66 72 6f 6d 20 74 68 65 73 | cel-VRF-Name``.is.used.from.thes |
| aa7e0 | 65 20 70 75 72 70 6f 73 65 73 2e 20 49 74 20 69 73 20 63 75 73 74 6f 6d 20 60 41 43 43 45 4c 2d | e.purposes..It.is.custom.`ACCEL- |
| aa800 | 50 50 50 20 61 74 74 72 69 62 75 74 65 60 5f 2e 20 44 65 66 69 6e 65 20 69 74 20 69 6e 20 79 6f | PPP.attribute`_..Define.it.in.yo |
| aa820 | 75 72 20 52 41 44 49 55 53 20 73 65 72 76 65 72 2e 00 55 73 65 72 2d 6c 65 76 65 6c 20 6d 65 73 | ur.RADIUS.server..User-level.mes |
| aa840 | 73 61 67 65 73 00 55 73 69 6e 67 20 27 73 6f 66 74 2d 72 65 63 6f 6e 66 69 67 75 72 61 74 69 6f | sages.Using.'soft-reconfiguratio |
| aa860 | 6e 27 20 77 65 20 67 65 74 20 74 68 65 20 70 6f 6c 69 63 79 20 75 70 64 61 74 65 20 77 69 74 68 | n'.we.get.the.policy.update.with |
| aa880 | 6f 75 74 20 62 6f 75 6e 63 69 6e 67 20 74 68 65 20 6e 65 69 67 68 62 6f 72 2e 00 55 73 69 6e 67 | out.bouncing.the.neighbor..Using |
| aa8a0 | 20 2a 2a 6f 70 65 6e 76 70 6e 2d 6f 70 74 69 6f 6e 20 2d 72 65 6e 65 67 2d 73 65 63 2a 2a 20 63 | .**openvpn-option.-reneg-sec**.c |
| aa8c0 | 61 6e 20 62 65 20 74 72 69 63 6b 79 2e 20 54 68 69 73 20 6f 70 74 69 6f 6e 20 69 73 20 75 73 65 | an.be.tricky..This.option.is.use |
| aa8e0 | 64 20 74 6f 20 72 65 6e 65 67 6f 74 69 61 74 65 20 64 61 74 61 20 63 68 61 6e 6e 65 6c 20 61 66 | d.to.renegotiate.data.channel.af |
| aa900 | 74 65 72 20 6e 20 73 65 63 6f 6e 64 73 2e 20 57 68 65 6e 20 75 73 65 64 20 61 74 20 62 6f 74 68 | ter.n.seconds..When.used.at.both |
| aa920 | 20 73 65 72 76 65 72 20 61 6e 64 20 63 6c 69 65 6e 74 2c 20 74 68 65 20 6c 6f 77 65 72 20 76 61 | .server.and.client,.the.lower.va |
| aa940 | 6c 75 65 20 77 69 6c 6c 20 74 72 69 67 67 65 72 20 74 68 65 20 72 65 6e 65 67 6f 74 69 61 74 69 | lue.will.trigger.the.renegotiati |
| aa960 | 6f 6e 2e 20 49 66 20 79 6f 75 20 73 65 74 20 69 74 20 74 6f 20 30 20 6f 6e 20 6f 6e 65 20 73 69 | on..If.you.set.it.to.0.on.one.si |
| aa980 | 64 65 20 6f 66 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 28 74 6f 20 64 69 73 61 62 6c 65 | de.of.the.connection.(to.disable |
| aa9a0 | 20 69 74 29 2c 20 74 68 65 20 63 68 6f 73 65 6e 20 76 61 6c 75 65 20 6f 6e 20 74 68 65 20 6f 74 | .it),.the.chosen.value.on.the.ot |
| aa9c0 | 68 65 72 20 73 69 64 65 20 77 69 6c 6c 20 64 65 74 65 72 6d 69 6e 65 20 77 68 65 6e 20 74 68 65 | her.side.will.determine.when.the |
| aa9e0 | 20 72 65 6e 65 67 6f 74 69 61 74 69 6f 6e 20 77 69 6c 6c 20 6f 63 63 75 72 2e 00 55 73 69 6e 67 | .renegotiation.will.occur..Using |
| aaa00 | 20 2a 2a 6f 70 65 6e 76 70 6e 2d 6f 70 74 69 6f 6e 20 2d 72 65 6e 65 67 2d 73 65 63 2a 2a 20 63 | .**openvpn-option.-reneg-sec**.c |
| aaa20 | 61 6e 20 62 65 20 74 72 69 63 6b 79 2e 20 54 68 69 73 20 6f 70 74 69 6f 6e 20 69 73 20 75 73 65 | an.be.tricky..This.option.is.use |
| aaa40 | 64 20 74 6f 20 72 65 6e 65 67 6f 74 69 61 74 65 20 64 61 74 61 20 63 68 61 6e 6e 65 6c 20 61 66 | d.to.renegotiate.data.channel.af |
| aaa60 | 74 65 72 20 6e 20 73 65 63 6f 6e 64 73 2e 20 57 68 65 6e 20 75 73 65 64 20 6f 6e 20 62 6f 74 68 | ter.n.seconds..When.used.on.both |
| aaa80 | 20 74 68 65 20 73 65 72 76 65 72 20 61 6e 64 20 63 6c 69 65 6e 74 2c 20 74 68 65 20 6c 6f 77 65 | .the.server.and.client,.the.lowe |
| aaaa0 | 72 20 76 61 6c 75 65 20 77 69 6c 6c 20 74 72 69 67 67 65 72 20 74 68 65 20 72 65 6e 65 67 6f 74 | r.value.will.trigger.the.renegot |
| aaac0 | 69 61 74 69 6f 6e 2e 20 49 66 20 79 6f 75 20 73 65 74 20 69 74 20 74 6f 20 30 20 6f 6e 20 6f 6e | iation..If.you.set.it.to.0.on.on |
| aaae0 | 65 20 73 69 64 65 20 6f 66 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 28 74 6f 20 64 69 73 | e.side.of.the.connection.(to.dis |
| aab00 | 61 62 6c 65 20 69 74 29 2c 20 74 68 65 20 63 68 6f 73 65 6e 20 76 61 6c 75 65 20 6f 6e 20 74 68 | able.it),.the.chosen.value.on.th |
| aab20 | 65 20 6f 74 68 65 72 20 73 69 64 65 20 77 69 6c 6c 20 64 65 74 65 72 6d 69 6e 65 20 77 68 65 6e | e.other.side.will.determine.when |
| aab40 | 20 74 68 65 20 72 65 6e 65 67 6f 74 69 61 74 69 6f 6e 20 77 69 6c 6c 20 6f 63 63 75 72 2e 00 55 | .the.renegotiation.will.occur..U |
| aab60 | 73 69 6e 67 20 42 47 50 20 63 6f 6e 66 65 64 65 72 61 74 69 6f 6e 00 55 73 69 6e 67 20 42 47 50 | sing.BGP.confederation.Using.BGP |
| aab80 | 20 72 6f 75 74 65 2d 72 65 66 6c 65 63 74 6f 72 73 00 55 73 69 6e 67 20 44 79 6e 61 6d 69 63 20 | .route-reflectors.Using.Dynamic. |
| aaba0 | 46 69 72 65 77 61 6c 6c 20 47 72 6f 75 70 73 00 55 73 69 6e 67 20 4e 65 74 46 6c 6f 77 20 6f 6e | Firewall.Groups.Using.NetFlow.on |
| aabc0 | 20 72 6f 75 74 65 72 73 20 77 69 74 68 20 68 69 67 68 20 74 72 61 66 66 69 63 20 6c 65 76 65 6c | .routers.with.high.traffic.level |
| aabe0 | 73 20 6d 61 79 20 6c 65 61 64 20 74 6f 20 68 69 67 68 20 43 50 55 20 75 73 61 67 65 20 61 6e 64 | s.may.lead.to.high.CPU.usage.and |
| aac00 | 20 6d 61 79 20 61 66 66 65 63 74 20 74 68 65 20 72 6f 75 74 65 72 27 73 20 70 65 72 66 6f 72 6d | .may.affect.the.router's.perform |
| aac20 | 61 6e 63 65 2e 20 49 6e 20 73 75 63 68 20 63 61 73 65 73 2c 20 63 6f 6e 73 69 64 65 72 20 75 73 | ance..In.such.cases,.consider.us |
| aac40 | 69 6e 67 20 73 46 6c 6f 77 20 69 6e 73 74 65 61 64 2e 00 55 73 69 6e 67 20 56 4c 41 4e 20 61 77 | ing.sFlow.instead..Using.VLAN.aw |
| aac60 | 61 72 65 20 42 72 69 64 67 65 00 55 73 69 6e 67 20 61 64 64 72 65 73 73 20 61 6e 64 20 70 6f 72 | are.Bridge.Using.address.and.por |
| aac80 | 74 20 67 72 6f 75 70 73 20 61 6c 6c 6f 77 73 20 79 6f 75 20 74 6f 20 6d 61 6b 65 20 79 6f 75 72 | t.groups.allows.you.to.make.your |
| aaca0 | 20 53 75 72 69 63 61 74 61 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d 6f 72 65 20 66 6c 65 | .Suricata.configuration.more.fle |
| aacc0 | 78 69 62 6c 65 20 61 6e 64 20 6d 61 6e 61 67 65 61 62 6c 65 2e 20 49 6e 73 74 65 61 64 20 6f 66 | xible.and.manageable..Instead.of |
| aace0 | 20 73 70 65 63 69 66 79 69 6e 67 20 49 50 20 61 64 64 72 65 73 73 65 73 20 61 6e 64 20 70 6f 72 | .specifying.IP.addresses.and.por |
| aad00 | 74 73 20 64 69 72 65 63 74 6c 79 20 69 6e 20 65 61 63 68 20 72 75 6c 65 2c 20 79 6f 75 20 63 61 | ts.directly.in.each.rule,.you.ca |
| aad20 | 6e 20 64 65 66 69 6e 65 20 74 68 65 6d 20 6f 6e 63 65 20 69 6e 20 74 68 65 20 76 61 72 73 20 73 | n.define.them.once.in.the.vars.s |
| aad40 | 65 63 74 69 6f 6e 20 61 6e 64 20 74 68 65 6e 20 72 65 66 65 72 65 6e 63 65 20 74 68 65 6d 20 62 | ection.and.then.reference.them.b |
| aad60 | 79 20 67 72 6f 75 70 20 6e 61 6d 65 73 2e 20 54 68 69 73 20 69 73 20 65 73 70 65 63 69 61 6c 6c | y.group.names..This.is.especiall |
| aad80 | 79 20 75 73 65 66 75 6c 20 69 6e 20 6c 61 72 67 65 20 6e 65 74 77 6f 72 6b 73 20 61 6e 64 20 63 | y.useful.in.large.networks.and.c |
| aada0 | 6f 6d 70 6c 65 78 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 73 20 77 68 65 72 65 20 6d 75 6c 74 | omplex.configurations.where.mult |
| aadc0 | 69 70 6c 65 20 49 50 20 61 64 64 72 65 73 73 65 73 20 61 6e 64 20 70 6f 72 74 73 20 6e 65 65 64 | iple.IP.addresses.and.ports.need |
| aade0 | 20 74 6f 20 62 65 20 6d 6f 6e 69 74 6f 72 65 64 2e 00 55 73 69 6e 67 20 64 79 6e 61 6d 69 63 20 | .to.be.monitored..Using.dynamic. |
| aae00 | 66 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 73 2c 20 77 65 20 63 61 6e 20 73 65 63 75 72 65 20 61 | firewall.groups,.we.can.secure.a |
| aae20 | 63 63 65 73 73 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 2c 20 6f 72 20 61 6e 79 20 6f 74 68 65 | ccess.to.the.router,.or.any.othe |
| aae40 | 72 20 64 65 76 69 63 65 20 69 66 20 6e 65 65 64 65 64 2c 20 62 79 20 75 73 69 6e 67 20 74 68 65 | r.device.if.needed,.by.using.the |
| aae60 | 20 74 65 63 68 6e 69 71 75 65 20 6f 66 20 70 6f 72 74 20 6b 6e 6f 63 6b 69 6e 67 2e 00 55 73 69 | .technique.of.port.knocking..Usi |
| aae80 | 6e 67 20 6f 75 72 20 64 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 63 68 61 70 74 65 72 20 2d 20 3a | ng.our.documentation.chapter.-.: |
| aaea0 | 72 65 66 3a 60 70 6b 69 60 20 67 65 6e 65 72 61 74 65 20 61 6e 64 20 69 6e 73 74 61 6c 6c 20 43 | ref:`pki`.generate.and.install.C |
| aaec0 | 41 20 61 6e 64 20 53 65 72 76 65 72 20 63 65 72 74 69 66 69 63 61 74 65 00 55 73 69 6e 67 20 74 | A.and.Server.certificate.Using.t |
| aaee0 | 68 65 20 6f 70 65 72 61 74 69 6f 6e 20 6d 6f 64 65 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 76 69 65 | he.operation.mode.command.to.vie |
| aaf00 | 77 20 42 72 69 64 67 65 20 49 6e 66 6f 72 6d 61 74 69 6f 6e 00 55 73 69 6e 67 20 74 68 69 73 20 | w.Bridge.Information.Using.this. |
| aaf20 | 63 6f 6d 6d 61 6e 64 2c 20 79 6f 75 20 77 69 6c 6c 20 63 72 65 61 74 65 20 61 20 6e 65 77 20 63 | command,.you.will.create.a.new.c |
| aaf40 | 6c 69 65 6e 74 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 77 68 69 63 68 20 63 61 6e 20 63 6f | lient.configuration.which.can.co |
| aaf60 | 6e 6e 65 63 74 20 74 6f 20 60 60 69 6e 74 65 72 66 61 63 65 60 60 20 6f 6e 20 74 68 69 73 20 72 | nnect.to.``interface``.on.this.r |
| aaf80 | 6f 75 74 65 72 2e 20 54 68 65 20 70 75 62 6c 69 63 20 6b 65 79 20 66 72 6f 6d 20 74 68 65 20 73 | outer..The.public.key.from.the.s |
| aafa0 | 70 65 63 69 66 69 65 64 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 61 75 74 6f 6d 61 74 69 63 61 | pecified.interface.is.automatica |
| aafc0 | 6c 6c 79 20 65 78 74 72 61 63 74 65 64 20 61 6e 64 20 65 6d 62 65 64 64 65 64 20 69 6e 74 6f 20 | lly.extracted.and.embedded.into. |
| aafe0 | 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 55 73 75 61 6c 6c 79 20 74 68 69 73 20 | the.configuration..Usually.this. |
| ab000 | 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 73 20 75 73 65 64 20 69 6e 20 50 45 73 20 28 50 72 | configuration.is.used.in.PEs.(Pr |
| ab020 | 6f 76 69 64 65 72 20 45 64 67 65 29 20 74 6f 20 72 65 70 6c 61 63 65 20 74 68 65 20 69 6e 63 6f | ovider.Edge).to.replace.the.inco |
| ab040 | 6d 69 6e 67 20 63 75 73 74 6f 6d 65 72 20 41 53 20 6e 75 6d 62 65 72 20 73 6f 20 74 68 65 20 63 | ming.customer.AS.number.so.the.c |
| ab060 | 6f 6e 6e 65 63 74 65 64 20 43 45 20 28 20 43 75 73 74 6f 6d 65 72 20 45 64 67 65 29 20 63 61 6e | onnected.CE.(.Customer.Edge).can |
| ab080 | 20 75 73 65 20 74 68 65 20 73 61 6d 65 20 41 53 20 6e 75 6d 62 65 72 20 61 73 20 74 68 65 20 6f | .use.the.same.AS.number.as.the.o |
| ab0a0 | 74 68 65 72 20 63 75 73 74 6f 6d 65 72 20 73 69 74 65 73 2e 20 54 68 69 73 20 61 6c 6c 6f 77 73 | ther.customer.sites..This.allows |
| ab0c0 | 20 63 75 73 74 6f 6d 65 72 73 20 6f 66 20 74 68 65 20 70 72 6f 76 69 64 65 72 20 6e 65 74 77 6f | .customers.of.the.provider.netwo |
| ab0e0 | 72 6b 20 74 6f 20 75 73 65 20 74 68 65 20 73 61 6d 65 20 41 53 20 6e 75 6d 62 65 72 20 61 63 72 | rk.to.use.the.same.AS.number.acr |
| ab100 | 6f 73 73 20 74 68 65 69 72 20 73 69 74 65 73 2e 00 56 48 54 20 28 56 65 72 79 20 48 69 67 68 20 | oss.their.sites..VHT.(Very.High. |
| ab120 | 54 68 72 6f 75 67 68 70 75 74 29 20 63 61 70 61 62 69 6c 69 74 69 65 73 20 28 38 30 32 2e 31 31 | Throughput).capabilities.(802.11 |
| ab140 | 61 63 29 00 56 48 54 20 6c 69 6e 6b 20 61 64 61 70 74 61 74 69 6f 6e 20 63 61 70 61 62 69 6c 69 | ac).VHT.link.adaptation.capabili |
| ab160 | 74 69 65 73 00 56 48 54 20 6f 70 65 72 61 74 69 6e 67 20 63 68 61 6e 6e 65 6c 20 63 65 6e 74 65 | ties.VHT.operating.channel.cente |
| ab180 | 72 20 66 72 65 71 75 65 6e 63 79 20 2d 20 63 65 6e 74 65 72 20 66 72 65 71 20 31 20 28 66 6f 72 | r.frequency.-.center.freq.1.(for |
| ab1a0 | 20 75 73 65 20 77 69 74 68 20 38 30 2c 20 38 30 2b 38 30 20 61 6e 64 20 31 36 30 20 6d 6f 64 65 | .use.with.80,.80+80.and.160.mode |
| ab1c0 | 73 29 00 56 48 54 20 6f 70 65 72 61 74 69 6e 67 20 63 68 61 6e 6e 65 6c 20 63 65 6e 74 65 72 20 | s).VHT.operating.channel.center. |
| ab1e0 | 66 72 65 71 75 65 6e 63 79 20 2d 20 63 65 6e 74 65 72 20 66 72 65 71 20 32 20 28 66 6f 72 20 75 | frequency.-.center.freq.2.(for.u |
| ab200 | 73 65 20 77 69 74 68 20 74 68 65 20 38 30 2b 38 30 20 6d 6f 64 65 29 00 56 4c 41 4e 00 56 4c 41 | se.with.the.80+80.mode).VLAN.VLA |
| ab220 | 4e 20 31 30 20 6f 6e 20 6d 65 6d 62 65 72 20 69 6e 74 65 72 66 61 63 65 20 60 65 74 68 32 60 20 | N.10.on.member.interface.`eth2`. |
| ab240 | 28 41 43 43 45 53 53 20 6d 6f 64 65 29 00 56 4c 41 4e 20 45 78 61 6d 70 6c 65 00 56 4c 41 4e 20 | (ACCESS.mode).VLAN.Example.VLAN. |
| ab260 | 4f 70 74 69 6f 6e 73 00 56 4c 41 4e 20 6d 6f 6e 69 74 6f 72 20 66 6f 72 20 61 75 74 6f 6d 61 74 | Options.VLAN.monitor.for.automat |
| ab280 | 69 63 20 63 72 65 61 74 69 6f 6e 20 6f 66 20 56 4c 41 4e 20 69 6e 74 65 72 66 61 63 65 73 20 66 | ic.creation.of.VLAN.interfaces.f |
| ab2a0 | 6f 72 20 73 70 65 63 69 66 69 63 20 75 73 65 72 20 6f 6e 20 73 70 65 63 69 66 69 63 20 3c 69 6e | or.specific.user.on.specific.<in |
| ab2c0 | 74 65 72 66 61 63 65 3e 00 56 4c 41 4e 20 6e 61 6d 65 00 56 4c 41 4e 27 73 20 63 61 6e 20 62 65 | terface>.VLAN.name.VLAN's.can.be |
| ab2e0 | 20 63 72 65 61 74 65 64 20 62 79 20 41 63 63 65 6c 2d 70 70 70 20 6f 6e 20 74 68 65 20 66 6c 79 | .created.by.Accel-ppp.on.the.fly |
| ab300 | 20 76 69 61 20 74 68 65 20 75 73 65 20 6f 66 20 61 20 4b 65 72 6e 65 6c 20 6d 6f 64 75 6c 65 20 | .via.the.use.of.a.Kernel.module. |
| ab320 | 6e 61 6d 65 64 20 60 60 76 6c 61 6e 5f 6d 6f 6e 60 60 2c 20 77 68 69 63 68 20 69 73 20 6d 6f 6e | named.``vlan_mon``,.which.is.mon |
| ab340 | 69 74 6f 72 69 6e 67 20 69 6e 63 6f 6d 69 6e 67 20 76 6c 61 6e 73 20 61 6e 64 20 63 72 65 61 74 | itoring.incoming.vlans.and.creat |
| ab360 | 65 73 20 74 68 65 20 6e 65 63 65 73 73 61 72 79 20 56 4c 41 4e 20 69 66 20 72 65 71 75 69 72 65 | es.the.necessary.VLAN.if.require |
| ab380 | 64 20 61 6e 64 20 61 6c 6c 6f 77 65 64 2e 20 56 79 4f 53 20 73 75 70 70 6f 72 74 73 20 74 68 65 | d.and.allowed..VyOS.supports.the |
| ab3a0 | 20 75 73 65 20 6f 66 20 65 69 74 68 65 72 20 56 4c 41 4e 20 49 44 27 73 20 6f 72 20 65 6e 74 69 | .use.of.either.VLAN.ID's.or.enti |
| ab3c0 | 72 65 20 72 61 6e 67 65 73 2c 20 62 6f 74 68 20 76 61 6c 75 65 73 20 63 61 6e 20 62 65 20 64 65 | re.ranges,.both.values.can.be.de |
| ab3e0 | 66 69 6e 65 64 20 61 74 20 74 68 65 20 73 61 6d 65 20 74 69 6d 65 20 66 6f 72 20 61 6e 20 69 6e | fined.at.the.same.time.for.an.in |
| ab400 | 74 65 72 66 61 63 65 2e 00 56 4c 41 4e 27 73 20 63 61 6e 20 62 65 20 63 72 65 61 74 65 64 20 62 | terface..VLAN's.can.be.created.b |
| ab420 | 79 20 41 63 63 65 6c 2d 70 70 70 20 6f 6e 20 74 68 65 20 66 6c 79 20 76 69 61 20 74 68 65 20 75 | y.Accel-ppp.on.the.fly.via.the.u |
| ab440 | 73 65 20 6f 66 20 61 20 4b 65 72 6e 65 6c 20 6d 6f 64 75 6c 65 20 6e 61 6d 65 64 20 60 76 6c 61 | se.of.a.Kernel.module.named.`vla |
| ab460 | 6e 5f 6d 6f 6e 60 2c 20 77 68 69 63 68 20 69 73 20 6d 6f 6e 69 74 6f 72 69 6e 67 20 69 6e 63 6f | n_mon`,.which.is.monitoring.inco |
| ab480 | 6d 69 6e 67 20 76 6c 61 6e 73 20 61 6e 64 20 63 72 65 61 74 65 73 20 74 68 65 20 6e 65 63 65 73 | ming.vlans.and.creates.the.neces |
| ab4a0 | 73 61 72 79 20 56 4c 41 4e 20 69 66 20 72 65 71 75 69 72 65 64 20 61 6e 64 20 61 6c 6c 6f 77 65 | sary.VLAN.if.required.and.allowe |
| ab4c0 | 64 2e 20 56 79 4f 53 20 73 75 70 70 6f 72 74 73 20 74 68 65 20 75 73 65 20 6f 66 20 65 69 74 68 | d..VyOS.supports.the.use.of.eith |
| ab4e0 | 65 72 20 56 4c 41 4e 20 49 44 27 73 20 6f 72 20 65 6e 74 69 72 65 20 72 61 6e 67 65 73 2c 20 62 | er.VLAN.ID's.or.entire.ranges,.b |
| ab500 | 6f 74 68 20 76 61 6c 75 65 73 20 63 61 6e 20 62 65 20 64 65 66 69 6e 65 64 20 61 74 20 74 68 65 | oth.values.can.be.defined.at.the |
| ab520 | 20 73 61 6d 65 20 74 69 6d 65 20 66 6f 72 20 61 6e 20 69 6e 74 65 72 66 61 63 65 2e 00 56 4d 77 | .same.time.for.an.interface..VMw |
| ab540 | 61 72 65 20 75 73 65 72 73 20 73 68 6f 75 6c 64 20 65 6e 73 75 72 65 20 74 68 61 74 20 61 20 56 | are.users.should.ensure.that.a.V |
| ab560 | 4d 58 4e 45 54 33 20 61 64 61 70 74 65 72 20 69 73 20 75 73 65 64 2e 20 45 31 30 30 30 20 61 64 | MXNET3.adapter.is.used..E1000.ad |
| ab580 | 61 70 74 65 72 73 20 68 61 76 65 20 6b 6e 6f 77 6e 20 69 73 73 75 65 73 20 77 69 74 68 20 47 52 | apters.have.known.issues.with.GR |
| ab5a0 | 45 20 70 72 6f 63 65 73 73 69 6e 67 2e 00 56 50 4e 00 56 50 4e 2d 63 6c 69 65 6e 74 73 20 77 69 | E.processing..VPN.VPN-clients.wi |
| ab5c0 | 6c 6c 20 72 65 71 75 65 73 74 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 70 61 72 61 6d 65 74 | ll.request.configuration.paramet |
| ab5e0 | 65 72 73 2c 20 6f 70 74 69 6f 6e 61 6c 6c 79 20 79 6f 75 20 63 61 6e 20 44 4e 53 20 70 61 72 61 | ers,.optionally.you.can.DNS.para |
| ab600 | 6d 65 74 65 72 20 74 6f 20 74 68 65 20 63 6c 69 65 6e 74 2e 00 56 52 46 00 56 52 46 20 52 6f 75 | meter.to.the.client..VRF.VRF.Rou |
| ab620 | 74 65 20 4c 65 61 6b 69 6e 67 00 56 52 46 20 61 6e 64 20 4e 41 54 00 56 52 46 20 62 6c 75 65 20 | te.Leaking.VRF.and.NAT.VRF.blue. |
| ab640 | 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 00 56 52 46 20 64 65 66 61 75 6c 74 20 72 6f 75 74 69 6e | routing.table.VRF.default.routin |
| ab660 | 67 20 74 61 62 6c 65 00 56 52 46 20 72 65 64 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 00 56 52 | g.table.VRF.red.routing.table.VR |
| ab680 | 46 20 72 6f 75 74 65 20 6c 65 61 6b 69 6e 67 00 56 52 46 20 74 6f 70 6f 6c 6f 67 79 20 65 78 61 | F.route.leaking.VRF.topology.exa |
| ab6a0 | 6d 70 6c 65 00 56 52 52 50 20 28 56 69 72 74 75 61 6c 20 52 6f 75 74 65 72 20 52 65 64 75 6e 64 | mple.VRRP.(Virtual.Router.Redund |
| ab6c0 | 61 6e 63 79 20 50 72 6f 74 6f 63 6f 6c 29 20 70 72 6f 76 69 64 65 73 20 61 63 74 69 76 65 2f 62 | ancy.Protocol).provides.active/b |
| ab6e0 | 61 63 6b 75 70 20 72 65 64 75 6e 64 61 6e 63 79 20 66 6f 72 20 72 6f 75 74 65 72 73 2e 20 45 76 | ackup.redundancy.for.routers..Ev |
| ab700 | 65 72 79 20 56 52 52 50 20 72 6f 75 74 65 72 20 68 61 73 20 61 20 70 68 79 73 69 63 61 6c 20 49 | ery.VRRP.router.has.a.physical.I |
| ab720 | 50 2f 49 50 76 36 20 61 64 64 72 65 73 73 2c 20 61 6e 64 20 61 20 76 69 72 74 75 61 6c 20 61 64 | P/IPv6.address,.and.a.virtual.ad |
| ab740 | 64 72 65 73 73 2e 20 4f 6e 20 73 74 61 72 74 75 70 2c 20 72 6f 75 74 65 72 73 20 65 6c 65 63 74 | dress..On.startup,.routers.elect |
| ab760 | 20 74 68 65 20 6d 61 73 74 65 72 2c 20 61 6e 64 20 74 68 65 20 72 6f 75 74 65 72 20 77 69 74 68 | .the.master,.and.the.router.with |
| ab780 | 20 74 68 65 20 68 69 67 68 65 73 74 20 70 72 69 6f 72 69 74 79 20 62 65 63 6f 6d 65 73 20 74 68 | .the.highest.priority.becomes.th |
| ab7a0 | 65 20 6d 61 73 74 65 72 20 61 6e 64 20 61 73 73 69 67 6e 73 20 74 68 65 20 76 69 72 74 75 61 6c | e.master.and.assigns.the.virtual |
| ab7c0 | 20 61 64 64 72 65 73 73 20 74 6f 20 69 74 73 20 69 6e 74 65 72 66 61 63 65 2e 20 41 6c 6c 20 72 | .address.to.its.interface..All.r |
| ab7e0 | 6f 75 74 65 72 73 20 77 69 74 68 20 6c 6f 77 65 72 20 70 72 69 6f 72 69 74 69 65 73 20 62 65 63 | outers.with.lower.priorities.bec |
| ab800 | 6f 6d 65 20 62 61 63 6b 75 70 20 72 6f 75 74 65 72 73 2e 20 54 68 65 20 6d 61 73 74 65 72 20 74 | ome.backup.routers..The.master.t |
| ab820 | 68 65 6e 20 73 74 61 72 74 73 20 73 65 6e 64 69 6e 67 20 6b 65 65 70 61 6c 69 76 65 20 70 61 63 | hen.starts.sending.keepalive.pac |
| ab840 | 6b 65 74 73 20 74 6f 20 6e 6f 74 69 66 79 20 6f 74 68 65 72 20 72 6f 75 74 65 72 73 20 74 68 61 | kets.to.notify.other.routers.tha |
| ab860 | 74 20 69 74 27 73 20 61 76 61 69 6c 61 62 6c 65 2e 20 49 66 20 74 68 65 20 6d 61 73 74 65 72 20 | t.it's.available..If.the.master. |
| ab880 | 66 61 69 6c 73 20 61 6e 64 20 73 74 6f 70 73 20 73 65 6e 64 69 6e 67 20 6b 65 65 70 61 6c 69 76 | fails.and.stops.sending.keepaliv |
| ab8a0 | 65 20 70 61 63 6b 65 74 73 2c 20 74 68 65 20 72 6f 75 74 65 72 20 77 69 74 68 20 74 68 65 20 6e | e.packets,.the.router.with.the.n |
| ab8c0 | 65 78 74 20 68 69 67 68 65 73 74 20 70 72 69 6f 72 69 74 79 20 62 65 63 6f 6d 65 73 20 74 68 65 | ext.highest.priority.becomes.the |
| ab8e0 | 20 6e 65 77 20 6d 61 73 74 65 72 20 61 6e 64 20 74 61 6b 65 73 20 6f 76 65 72 20 74 68 65 20 76 | .new.master.and.takes.over.the.v |
| ab900 | 69 72 74 75 61 6c 20 61 64 64 72 65 73 73 2e 00 56 52 52 50 20 63 61 6e 20 75 73 65 20 74 77 6f | irtual.address..VRRP.can.use.two |
| ab920 | 20 6d 6f 64 65 73 3a 20 70 72 65 65 6d 70 74 69 76 65 20 61 6e 64 20 6e 6f 6e 2d 70 72 65 65 6d | .modes:.preemptive.and.non-preem |
| ab940 | 70 74 69 76 65 2e 20 49 6e 20 74 68 65 20 70 72 65 65 6d 70 74 69 76 65 20 6d 6f 64 65 2c 20 69 | ptive..In.the.preemptive.mode,.i |
| ab960 | 66 20 61 20 72 6f 75 74 65 72 20 77 69 74 68 20 61 20 68 69 67 68 65 72 20 70 72 69 6f 72 69 74 | f.a.router.with.a.higher.priorit |
| ab980 | 79 20 66 61 69 6c 73 20 61 6e 64 20 74 68 65 6e 20 63 6f 6d 65 73 20 62 61 63 6b 2c 20 72 6f 75 | y.fails.and.then.comes.back,.rou |
| ab9a0 | 74 65 72 73 20 77 69 74 68 20 6c 6f 77 65 72 20 70 72 69 6f 72 69 74 79 20 77 69 6c 6c 20 67 69 | ters.with.lower.priority.will.gi |
| ab9c0 | 76 65 20 75 70 20 74 68 65 69 72 20 6d 61 73 74 65 72 20 73 74 61 74 75 73 2e 20 49 6e 20 6e 6f | ve.up.their.master.status..In.no |
| ab9e0 | 6e 2d 70 72 65 65 6d 70 74 69 76 65 20 6d 6f 64 65 2c 20 74 68 65 20 6e 65 77 6c 79 20 65 6c 65 | n-preemptive.mode,.the.newly.ele |
| aba00 | 63 74 65 64 20 6d 61 73 74 65 72 20 77 69 6c 6c 20 6b 65 65 70 20 74 68 65 20 6d 61 73 74 65 72 | cted.master.will.keep.the.master |
| aba20 | 20 73 74 61 74 75 73 20 61 6e 64 20 74 68 65 20 76 69 72 74 75 61 6c 20 61 64 64 72 65 73 73 20 | .status.and.the.virtual.address. |
| aba40 | 69 6e 64 65 66 69 6e 69 74 65 6c 79 2e 00 56 52 52 50 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 | indefinitely..VRRP.functionality |
| aba60 | 20 63 61 6e 20 62 65 20 65 78 74 65 6e 64 65 64 20 77 69 74 68 20 73 63 72 69 70 74 73 2e 20 56 | .can.be.extended.with.scripts..V |
| aba80 | 79 4f 53 20 73 75 70 70 6f 72 74 73 20 74 77 6f 20 6b 69 6e 64 73 20 6f 66 20 73 63 72 69 70 74 | yOS.supports.two.kinds.of.script |
| abaa0 | 73 3a 20 68 65 61 6c 74 68 20 63 68 65 63 6b 20 73 63 72 69 70 74 73 20 61 6e 64 20 74 72 61 6e | s:.health.check.scripts.and.tran |
| abac0 | 73 69 74 69 6f 6e 20 73 63 72 69 70 74 73 2e 20 48 65 61 6c 74 68 20 63 68 65 63 6b 20 73 63 72 | sition.scripts..Health.check.scr |
| abae0 | 69 70 74 73 20 65 78 65 63 75 74 65 20 63 75 73 74 6f 6d 20 63 68 65 63 6b 73 20 69 6e 20 61 64 | ipts.execute.custom.checks.in.ad |
| abb00 | 64 69 74 69 6f 6e 20 74 6f 20 74 68 65 20 6d 61 73 74 65 72 20 72 6f 75 74 65 72 20 72 65 61 63 | dition.to.the.master.router.reac |
| abb20 | 68 61 62 69 6c 69 74 79 2e 20 54 72 61 6e 73 69 74 69 6f 6e 20 73 63 72 69 70 74 73 20 61 72 65 | hability..Transition.scripts.are |
| abb40 | 20 65 78 65 63 75 74 65 64 20 77 68 65 6e 20 56 52 52 50 20 73 74 61 74 65 20 63 68 61 6e 67 65 | .executed.when.VRRP.state.change |
| abb60 | 73 20 66 72 6f 6d 20 6d 61 73 74 65 72 20 74 6f 20 62 61 63 6b 75 70 20 6f 72 20 66 61 75 6c 74 | s.from.master.to.backup.or.fault |
| abb80 | 20 61 6e 64 20 76 69 63 65 20 76 65 72 73 61 20 61 6e 64 20 63 61 6e 20 62 65 20 75 73 65 64 20 | .and.vice.versa.and.can.be.used. |
| abba0 | 74 6f 20 65 6e 61 62 6c 65 20 6f 72 20 64 69 73 61 62 6c 65 20 63 65 72 74 61 69 6e 20 73 65 72 | to.enable.or.disable.certain.ser |
| abbc0 | 76 69 63 65 73 2c 20 66 6f 72 20 65 78 61 6d 70 6c 65 2e 00 56 52 52 50 20 67 72 6f 75 70 73 20 | vices,.for.example..VRRP.groups. |
| abbe0 | 61 72 65 20 63 72 65 61 74 65 64 20 77 69 74 68 20 74 68 65 20 60 60 73 65 74 20 68 69 67 68 2d | are.created.with.the.``set.high- |
| abc00 | 61 76 61 69 6c 61 62 69 6c 69 74 79 20 76 72 72 70 20 67 72 6f 75 70 20 24 47 52 4f 55 50 5f 4e | availability.vrrp.group.$GROUP_N |
| abc20 | 41 4d 45 60 60 20 63 6f 6d 6d 61 6e 64 73 2e 20 54 68 65 20 72 65 71 75 69 72 65 64 20 70 61 72 | AME``.commands..The.required.par |
| abc40 | 61 6d 65 74 65 72 73 20 61 72 65 20 69 6e 74 65 72 66 61 63 65 2c 20 76 72 69 64 2c 20 61 6e 64 | ameters.are.interface,.vrid,.and |
| abc60 | 20 61 64 64 72 65 73 73 2e 00 56 52 52 50 20 6b 65 65 70 61 6c 69 76 65 20 70 61 63 6b 65 74 73 | .address..VRRP.keepalive.packets |
| abc80 | 20 75 73 65 20 6d 75 6c 74 69 63 61 73 74 2c 20 61 6e 64 20 56 52 52 50 20 73 65 74 75 70 73 20 | .use.multicast,.and.VRRP.setups. |
| abca0 | 61 72 65 20 6c 69 6d 69 74 65 64 20 74 6f 20 61 20 73 69 6e 67 6c 65 20 64 61 74 61 6c 69 6e 6b | are.limited.to.a.single.datalink |
| abcc0 | 20 6c 61 79 65 72 20 73 65 67 6d 65 6e 74 2e 20 59 6f 75 20 63 61 6e 20 73 65 74 75 70 20 6d 75 | .layer.segment..You.can.setup.mu |
| abce0 | 6c 74 69 70 6c 65 20 56 52 52 50 20 67 72 6f 75 70 73 20 28 61 6c 73 6f 20 63 61 6c 6c 65 64 20 | ltiple.VRRP.groups.(also.called. |
| abd00 | 76 69 72 74 75 61 6c 20 72 6f 75 74 65 72 73 29 2e 20 56 69 72 74 75 61 6c 20 72 6f 75 74 65 72 | virtual.routers)..Virtual.router |
| abd20 | 73 20 61 72 65 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 61 20 56 52 49 44 20 28 56 69 72 74 | s.are.identified.by.a.VRID.(Virt |
| abd40 | 75 61 6c 20 52 6f 75 74 65 72 20 49 44 65 6e 74 69 66 69 65 72 29 2e 20 49 66 20 79 6f 75 20 73 | ual.Router.IDentifier)..If.you.s |
| abd60 | 65 74 75 70 20 6d 75 6c 74 69 70 6c 65 20 67 72 6f 75 70 73 20 6f 6e 20 74 68 65 20 73 61 6d 65 | etup.multiple.groups.on.the.same |
| abd80 | 20 69 6e 74 65 72 66 61 63 65 2c 20 74 68 65 69 72 20 56 52 49 44 73 20 6d 75 73 74 20 62 65 20 | .interface,.their.VRIDs.must.be. |
| abda0 | 75 6e 69 71 75 65 20 69 66 20 74 68 65 79 20 75 73 65 20 74 68 65 20 73 61 6d 65 20 61 64 64 72 | unique.if.they.use.the.same.addr |
| abdc0 | 65 73 73 20 66 61 6d 69 6c 79 2c 20 62 75 74 20 69 74 27 73 20 70 6f 73 73 69 62 6c 65 20 28 65 | ess.family,.but.it's.possible.(e |
| abde0 | 76 65 6e 20 69 66 20 6e 6f 74 20 72 65 63 6f 6d 6d 65 6e 64 65 64 20 66 6f 72 20 72 65 61 64 61 | ven.if.not.recommended.for.reada |
| abe00 | 62 69 6c 69 74 79 20 72 65 61 73 6f 6e 73 29 20 74 6f 20 75 73 65 20 64 75 70 6c 69 63 61 74 65 | bility.reasons).to.use.duplicate |
| abe20 | 20 56 52 49 44 73 20 6f 6e 20 64 69 66 66 65 72 65 6e 74 20 69 6e 74 65 72 66 61 63 65 73 2e 00 | .VRIDs.on.different.interfaces.. |
| abe40 | 56 52 52 50 20 70 72 69 6f 72 69 74 79 20 63 61 6e 20 62 65 20 73 65 74 20 77 69 74 68 20 60 60 | VRRP.priority.can.be.set.with.`` |
| abe60 | 70 72 69 6f 72 69 74 79 60 60 20 6f 70 74 69 6f 6e 3a 00 56 54 49 20 2d 20 56 69 72 74 75 61 6c | priority``.option:.VTI.-.Virtual |
| abe80 | 20 54 75 6e 6e 65 6c 20 49 6e 74 65 72 66 61 63 65 00 56 58 4c 41 4e 00 56 58 4c 41 4e 20 69 73 | .Tunnel.Interface.VXLAN.VXLAN.is |
| abea0 | 20 61 6e 20 65 76 6f 6c 75 74 69 6f 6e 20 6f 66 20 65 66 66 6f 72 74 73 20 74 6f 20 73 74 61 6e | .an.evolution.of.efforts.to.stan |
| abec0 | 64 61 72 64 69 7a 65 20 61 6e 20 6f 76 65 72 6c 61 79 20 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e | dardize.an.overlay.encapsulation |
| abee0 | 20 70 72 6f 74 6f 63 6f 6c 2e 20 49 74 20 69 6e 63 72 65 61 73 65 73 20 74 68 65 20 73 63 61 6c | .protocol..It.increases.the.scal |
| abf00 | 61 62 69 6c 69 74 79 20 75 70 20 74 6f 20 31 36 20 6d 69 6c 6c 69 6f 6e 20 6c 6f 67 69 63 61 6c | ability.up.to.16.million.logical |
| abf20 | 20 6e 65 74 77 6f 72 6b 73 20 61 6e 64 20 61 6c 6c 6f 77 73 20 66 6f 72 20 6c 61 79 65 72 20 32 | .networks.and.allows.for.layer.2 |
| abf40 | 20 61 64 6a 61 63 65 6e 63 79 20 61 63 72 6f 73 73 20 49 50 20 6e 65 74 77 6f 72 6b 73 2e 20 4d | .adjacency.across.IP.networks..M |
| abf60 | 75 6c 74 69 63 61 73 74 20 6f 72 20 75 6e 69 63 61 73 74 20 77 69 74 68 20 68 65 61 64 2d 65 6e | ulticast.or.unicast.with.head-en |
| abf80 | 64 20 72 65 70 6c 69 63 61 74 69 6f 6e 20 28 48 45 52 29 20 69 73 20 75 73 65 64 20 74 6f 20 66 | d.replication.(HER).is.used.to.f |
| abfa0 | 6c 6f 6f 64 20 62 72 6f 61 64 63 61 73 74 2c 20 75 6e 6b 6e 6f 77 6e 20 75 6e 69 63 61 73 74 2c | lood.broadcast,.unknown.unicast, |
| abfc0 | 20 61 6e 64 20 6d 75 6c 74 69 63 61 73 74 20 28 42 55 4d 29 20 74 72 61 66 66 69 63 2e 00 56 58 | .and.multicast.(BUM).traffic..VX |
| abfe0 | 4c 41 4e 20 73 70 65 63 69 66 69 63 20 6f 70 74 69 6f 6e 73 00 56 58 4c 41 4e 20 77 61 73 20 6f | LAN.specific.options.VXLAN.was.o |
| ac000 | 66 66 69 63 69 61 6c 6c 79 20 64 6f 63 75 6d 65 6e 74 65 64 20 62 79 20 74 68 65 20 49 45 54 46 | fficially.documented.by.the.IETF |
| ac020 | 20 69 6e 20 3a 72 66 63 3a 60 37 33 34 38 60 2e 00 56 61 6c 69 64 20 76 61 6c 75 65 73 20 61 72 | .in.:rfc:`7348`..Valid.values.ar |
| ac040 | 65 20 30 2e 2e 32 35 35 2e 00 56 61 6c 69 64 20 76 61 6c 75 65 73 20 61 72 65 20 31 2e 2e 36 33 | e.0..255..Valid.values.are.1..63 |
| ac060 | 00 56 61 6c 75 65 00 56 61 6c 75 65 20 74 6f 20 73 65 6e 64 20 74 6f 20 52 41 44 49 55 53 20 73 | .Value.Value.to.send.to.RADIUS.s |
| ac080 | 65 72 76 65 72 20 69 6e 20 4e 41 53 2d 49 50 2d 41 64 64 72 65 73 73 20 61 74 74 72 69 62 75 74 | erver.in.NAS-IP-Address.attribut |
| ac0a0 | 65 20 61 6e 64 20 74 6f 20 62 65 20 6d 61 74 63 68 65 64 20 69 6e 20 44 4d 2f 43 6f 41 20 72 65 | e.and.to.be.matched.in.DM/CoA.re |
| ac0c0 | 71 75 65 73 74 73 2e 20 41 6c 73 6f 20 44 4d 2f 43 6f 41 20 73 65 72 76 65 72 20 77 69 6c 6c 20 | quests..Also.DM/CoA.server.will. |
| ac0e0 | 62 69 6e 64 20 74 6f 20 74 68 61 74 20 61 64 64 72 65 73 73 2e 00 56 61 6c 75 65 20 74 6f 20 73 | bind.to.that.address..Value.to.s |
| ac100 | 65 6e 64 20 74 6f 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 69 6e 20 4e 41 53 2d 49 64 65 6e | end.to.RADIUS.server.in.NAS-Iden |
| ac120 | 74 69 66 69 65 72 20 61 74 74 72 69 62 75 74 65 20 61 6e 64 20 74 6f 20 62 65 20 6d 61 74 63 68 | tifier.attribute.and.to.be.match |
| ac140 | 65 64 20 69 6e 20 44 4d 2f 43 6f 41 20 72 65 71 75 65 73 74 73 2e 00 56 65 72 69 66 69 63 61 74 | ed.in.DM/CoA.requests..Verificat |
| ac160 | 69 6f 6e 00 56 65 72 69 66 69 63 61 74 69 6f 6e 3a 00 56 65 72 69 66 79 20 63 6f 6e 66 69 67 75 | ion.Verification:.Verify.configu |
| ac180 | 72 61 74 69 6f 6e 20 63 68 61 6e 67 65 73 20 68 61 76 65 20 62 65 65 6e 20 72 65 70 6c 69 63 61 | ration.changes.have.been.replica |
| ac1a0 | 74 65 64 20 74 6f 20 52 6f 75 74 65 72 20 42 00 56 65 72 69 66 79 20 74 68 61 74 20 63 6f 6e 6e | ted.to.Router.B.Verify.that.conn |
| ac1c0 | 65 63 74 69 6f 6e 73 20 61 72 65 20 68 69 74 74 69 6e 67 20 74 68 65 20 72 75 6c 65 20 6f 6e 20 | ections.are.hitting.the.rule.on. |
| ac1e0 | 62 6f 74 68 20 73 69 64 65 73 3a 00 56 65 72 73 69 6f 6e 00 56 69 72 74 75 61 6c 20 45 74 68 65 | both.sides:.Version.Virtual.Ethe |
| ac200 | 72 6e 65 74 00 56 69 72 74 75 61 6c 20 53 65 72 76 65 72 20 61 6c 6c 6f 77 73 20 74 6f 20 4c 6f | rnet.Virtual.Server.allows.to.Lo |
| ac220 | 61 64 2d 62 61 6c 61 6e 63 65 20 74 72 61 66 66 69 63 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 76 | ad-balance.traffic.destination.v |
| ac240 | 69 72 74 75 61 6c 2d 61 64 64 72 65 73 73 3a 70 6f 72 74 20 62 65 74 77 65 65 6e 20 73 65 76 65 | irtual-address:port.between.seve |
| ac260 | 72 61 6c 20 72 65 61 6c 20 73 65 72 76 65 72 73 2e 00 56 69 72 74 75 61 6c 2d 73 65 72 76 65 72 | ral.real.servers..Virtual-server |
| ac280 | 00 56 69 72 74 75 61 6c 2d 73 65 72 76 65 72 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 | .Virtual-server.can.be.configure |
| ac2a0 | 64 20 77 69 74 68 20 56 52 52 50 20 76 69 72 74 75 61 6c 20 61 64 64 72 65 73 73 20 6f 72 20 77 | d.with.VRRP.virtual.address.or.w |
| ac2c0 | 69 74 68 6f 75 74 20 56 52 52 50 2e 00 56 6f 6c 75 6d 65 20 69 73 20 65 69 74 68 65 72 20 6d 6f | ithout.VRRP..Volume.is.either.mo |
| ac2e0 | 75 6e 74 65 64 20 61 73 20 72 77 20 28 72 65 61 64 2d 77 72 69 74 65 20 2d 20 64 65 66 61 75 6c | unted.as.rw.(read-write.-.defaul |
| ac300 | 74 29 20 6f 72 20 72 6f 20 28 72 65 61 64 2d 6f 6e 6c 79 29 00 56 79 4f 53 20 31 2e 31 20 73 75 | t).or.ro.(read-only).VyOS.1.1.su |
| ac320 | 70 70 6f 72 74 65 64 20 6c 6f 67 69 6e 20 61 73 20 75 73 65 72 20 60 60 72 6f 6f 74 60 60 2e 20 | pported.login.as.user.``root``.. |
| ac340 | 54 68 69 73 20 68 61 73 20 62 65 65 6e 20 72 65 6d 6f 76 65 64 20 64 75 65 20 74 6f 20 74 69 67 | This.has.been.removed.due.to.tig |
| ac360 | 68 74 65 72 20 73 65 63 75 72 69 74 79 20 69 6e 20 56 79 4f 53 20 31 2e 32 2e 00 56 79 4f 53 20 | hter.security.in.VyOS.1.2..VyOS. |
| ac380 | 31 2e 33 20 28 65 71 75 75 6c 65 75 73 29 20 73 75 70 70 6f 72 74 73 20 44 48 43 50 76 36 2d 50 | 1.3.(equuleus).supports.DHCPv6-P |
| ac3a0 | 44 20 28 3a 72 66 63 3a 60 33 36 33 33 60 29 2e 20 44 48 43 50 76 36 20 50 72 65 66 69 78 20 44 | D.(:rfc:`3633`)..DHCPv6.Prefix.D |
| ac3c0 | 65 6c 65 67 61 74 69 6f 6e 20 69 73 20 73 75 70 70 6f 72 74 65 64 20 62 79 20 6d 6f 73 74 20 49 | elegation.is.supported.by.most.I |
| ac3e0 | 53 50 73 20 77 68 6f 20 70 72 6f 76 69 64 65 20 6e 61 74 69 76 65 20 49 50 76 36 20 66 6f 72 20 | SPs.who.provide.native.IPv6.for. |
| ac400 | 63 6f 6e 73 75 6d 65 72 73 20 6f 6e 20 66 69 78 65 64 20 6e 65 74 77 6f 72 6b 73 2e 00 56 79 4f | consumers.on.fixed.networks..VyO |
| ac420 | 53 20 31 2e 34 20 28 73 61 67 69 74 74 61 29 20 69 6e 74 72 6f 64 75 63 65 64 20 64 79 6e 61 6d | S.1.4.(sagitta).introduced.dynam |
| ac440 | 69 63 20 72 6f 75 74 69 6e 67 20 73 75 70 70 6f 72 74 20 66 6f 72 20 56 52 46 73 2e 00 56 79 4f | ic.routing.support.for.VRFs..VyO |
| ac460 | 53 20 31 2e 34 20 63 68 61 6e 67 65 64 20 74 68 65 20 77 61 79 20 69 6e 20 68 6f 77 20 65 6e 63 | S.1.4.changed.the.way.in.how.enc |
| ac480 | 72 79 70 74 69 6f 6e 20 6b 65 79 73 20 6f 72 20 63 65 72 74 69 66 69 63 61 74 65 73 20 61 72 65 | ryption.keys.or.certificates.are |
| ac4a0 | 20 73 74 6f 72 65 64 20 6f 6e 20 74 68 65 20 73 79 73 74 65 6d 2e 20 49 6e 20 74 68 65 20 70 72 | .stored.on.the.system..In.the.pr |
| ac4c0 | 65 20 56 79 4f 53 20 31 2e 34 20 65 72 61 2c 20 63 65 72 74 69 66 69 63 61 74 65 73 20 67 6f 74 | e.VyOS.1.4.era,.certificates.got |
| ac4e0 | 20 73 74 6f 72 65 64 20 75 6e 64 65 72 20 2f 63 6f 6e 66 69 67 20 61 6e 64 20 65 76 65 72 79 20 | .stored.under./config.and.every. |
| ac500 | 73 65 72 76 69 63 65 20 72 65 66 65 72 65 6e 63 65 64 20 61 20 66 69 6c 65 2e 20 54 68 61 74 20 | service.referenced.a.file..That. |
| ac520 | 6d 61 64 65 20 63 6f 70 79 69 6e 67 20 61 20 72 75 6e 6e 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 | made.copying.a.running.configura |
| ac540 | 74 69 6f 6e 20 66 72 6f 6d 20 73 79 73 74 65 6d 20 41 20 74 6f 20 73 79 73 74 65 6d 20 42 20 61 | tion.from.system.A.to.system.B.a |
| ac560 | 20 62 69 74 20 68 61 72 64 65 72 2c 20 61 73 20 79 6f 75 20 68 61 64 20 74 6f 20 63 6f 70 79 20 | .bit.harder,.as.you.had.to.copy. |
| ac580 | 74 68 65 20 66 69 6c 65 73 20 61 6e 64 20 74 68 65 69 72 20 70 65 72 6d 69 73 73 69 6f 6e 73 20 | the.files.and.their.permissions. |
| ac5a0 | 62 79 20 68 61 6e 64 2e 00 56 79 4f 53 20 31 2e 34 20 63 68 61 6e 67 65 64 20 74 68 65 20 77 61 | by.hand..VyOS.1.4.changed.the.wa |
| ac5c0 | 79 20 69 6e 20 68 6f 77 20 65 6e 63 72 79 74 69 6f 6e 20 6b 65 79 73 20 6f 72 20 63 65 72 74 69 | y.in.how.encrytion.keys.or.certi |
| ac5e0 | 66 69 63 61 74 65 73 20 61 72 65 20 73 74 6f 72 65 64 20 6f 6e 20 74 68 65 20 73 79 73 74 65 6d | ficates.are.stored.on.the.system |
| ac600 | 2e 20 49 6e 20 74 68 65 20 70 72 65 20 56 79 4f 53 20 31 2e 34 20 65 72 61 2c 20 63 65 72 74 69 | ..In.the.pre.VyOS.1.4.era,.certi |
| ac620 | 66 69 63 61 74 65 73 20 67 6f 74 20 73 74 6f 72 65 64 20 75 6e 64 65 72 20 2f 63 6f 6e 66 69 67 | ficates.got.stored.under./config |
| ac640 | 20 61 6e 64 20 65 76 65 72 79 20 73 65 72 76 69 63 65 20 72 65 66 65 72 65 6e 63 65 64 20 61 20 | .and.every.service.referenced.a. |
| ac660 | 66 69 6c 65 2e 20 54 68 61 74 20 6d 61 64 65 20 63 6f 70 79 69 6e 67 20 61 20 72 75 6e 6e 69 6e | file..That.made.copying.a.runnin |
| ac680 | 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 72 6f 6d 20 73 79 73 74 65 6d 20 41 20 74 6f | g.configuration.from.system.A.to |
| ac6a0 | 20 73 79 73 74 65 6d 20 42 20 61 20 62 69 74 20 68 61 72 64 65 72 2c 20 61 73 20 79 6f 75 20 68 | .system.B.a.bit.harder,.as.you.h |
| ac6c0 | 61 64 20 74 6f 20 63 6f 70 79 20 74 68 65 20 66 69 6c 65 73 20 61 6e 64 20 74 68 65 69 72 20 70 | ad.to.copy.the.files.and.their.p |
| ac6e0 | 65 72 6d 69 73 73 69 6f 6e 73 20 62 79 20 68 61 6e 64 2e 00 56 79 4f 53 20 31 2e 34 20 75 73 65 | ermissions.by.hand..VyOS.1.4.use |
| ac700 | 73 20 63 68 72 6f 6e 79 20 69 6e 73 74 65 61 64 20 6f 66 20 6e 74 70 64 20 28 73 65 65 20 3a 76 | s.chrony.instead.of.ntpd.(see.:v |
| ac720 | 79 74 61 73 6b 3a 60 54 33 30 30 38 60 29 20 77 68 69 63 68 20 77 69 6c 6c 20 6e 6f 20 6c 6f 6e | ytask:`T3008`).which.will.no.lon |
| ac740 | 67 65 72 20 61 63 63 65 70 74 20 61 6e 6f 6e 79 6d 6f 75 73 20 4e 54 50 20 72 65 71 75 65 73 74 | ger.accept.anonymous.NTP.request |
| ac760 | 73 20 61 73 20 69 6e 20 56 79 4f 53 20 31 2e 33 2e 20 41 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 | s.as.in.VyOS.1.3..All.configurat |
| ac780 | 69 6f 6e 73 20 77 69 6c 6c 20 62 65 20 6d 69 67 72 61 74 65 64 20 74 6f 20 6b 65 65 70 20 74 68 | ions.will.be.migrated.to.keep.th |
| ac7a0 | 65 20 61 6e 6f 6e 79 6d 6f 75 73 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 2e 20 46 6f 72 20 6e | e.anonymous.functionality..For.n |
| ac7c0 | 65 77 20 73 65 74 75 70 73 20 69 66 20 79 6f 75 20 68 61 76 65 20 63 6c 69 65 6e 74 73 20 75 73 | ew.setups.if.you.have.clients.us |
| ac7e0 | 69 6e 67 20 79 6f 75 72 20 56 79 4f 53 20 69 6e 73 74 61 6c 6c 61 74 69 6f 6e 20 61 73 20 4e 54 | ing.your.VyOS.installation.as.NT |
| ac800 | 50 20 73 65 72 76 65 72 2c 20 79 6f 75 20 6d 75 73 74 20 73 70 65 63 69 66 79 20 74 68 65 20 60 | P.server,.you.must.specify.the.` |
| ac820 | 61 6c 6c 6f 77 2d 63 6c 69 65 6e 74 60 20 64 69 72 65 63 74 69 76 65 2e 00 56 79 4f 53 20 41 72 | allow-client`.directive..VyOS.Ar |
| ac840 | 69 73 74 61 20 45 4f 53 20 73 65 74 75 70 00 56 79 4f 53 20 45 53 50 20 67 72 6f 75 70 20 68 61 | ista.EOS.setup.VyOS.ESP.group.ha |
| ac860 | 73 20 74 68 65 20 6e 65 78 74 20 6f 70 74 69 6f 6e 73 3a 00 56 79 4f 53 20 46 69 65 6c 64 00 56 | s.the.next.options:.VyOS.Field.V |
| ac880 | 79 4f 53 20 49 4b 45 20 67 72 6f 75 70 20 68 61 73 20 74 68 65 20 6e 65 78 74 20 6f 70 74 69 6f | yOS.IKE.group.has.the.next.optio |
| ac8a0 | 6e 73 3a 00 56 79 4f 53 20 4d 49 42 73 00 56 79 4f 53 20 4e 41 54 36 36 20 44 48 43 50 76 36 20 | ns:.VyOS.MIBs.VyOS.NAT66.DHCPv6. |
| ac8c0 | 75 73 69 6e 67 20 61 20 64 75 6d 6d 79 20 69 6e 74 65 72 66 61 63 65 00 56 79 4f 53 20 4e 41 54 | using.a.dummy.interface.VyOS.NAT |
| ac8e0 | 36 36 20 53 69 6d 70 6c 65 20 43 6f 6e 66 69 67 75 72 65 00 56 79 4f 53 20 4e 65 74 77 6f 72 6b | 66.Simple.Configure.VyOS.Network |
| ac900 | 20 45 6d 75 6c 61 74 6f 72 20 70 6f 6c 69 63 79 20 65 6d 75 6c 61 74 65 73 20 74 68 65 20 63 6f | .Emulator.policy.emulates.the.co |
| ac920 | 6e 64 69 74 69 6f 6e 73 20 79 6f 75 20 63 61 6e 20 73 75 66 66 65 72 20 69 6e 20 61 20 72 65 61 | nditions.you.can.suffer.in.a.rea |
| ac940 | 6c 20 6e 65 74 77 6f 72 6b 2e 20 59 6f 75 20 77 69 6c 6c 20 62 65 20 61 62 6c 65 20 74 6f 20 63 | l.network..You.will.be.able.to.c |
| ac960 | 6f 6e 66 69 67 75 72 65 20 74 68 69 6e 67 73 20 6c 69 6b 65 20 72 61 74 65 2c 20 62 75 72 73 74 | onfigure.things.like.rate,.burst |
| ac980 | 2c 20 64 65 6c 61 79 2c 20 70 61 63 6b 65 74 20 6c 6f 73 73 2c 20 70 61 63 6b 65 74 20 63 6f 72 | ,.delay,.packet.loss,.packet.cor |
| ac9a0 | 72 75 70 74 69 6f 6e 20 6f 72 20 70 61 63 6b 65 74 20 72 65 6f 72 64 65 72 69 6e 67 2e 00 56 79 | ruption.or.packet.reordering..Vy |
| ac9c0 | 4f 53 20 4f 70 74 69 6f 6e 00 56 79 4f 53 20 50 6f 6c 69 63 79 2d 42 61 73 65 64 20 52 6f 75 74 | OS.Option.VyOS.Policy-Based.Rout |
| ac9e0 | 69 6e 67 20 28 50 42 52 29 20 77 6f 72 6b 73 20 62 79 20 6d 61 74 63 68 69 6e 67 20 73 6f 75 72 | ing.(PBR).works.by.matching.sour |
| aca00 | 63 65 20 49 50 20 61 64 64 72 65 73 73 20 72 61 6e 67 65 73 20 61 6e 64 20 66 6f 72 77 61 72 64 | ce.IP.address.ranges.and.forward |
| aca20 | 69 6e 67 20 74 68 65 20 74 72 61 66 66 69 63 20 75 73 69 6e 67 20 64 69 66 66 65 72 65 6e 74 20 | ing.the.traffic.using.different. |
| aca40 | 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 73 2e 00 56 79 4f 53 20 53 4e 4d 50 20 73 75 70 70 6f 72 | routing.tables..VyOS.SNMP.suppor |
| aca60 | 74 73 20 62 6f 74 68 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 2e 00 56 79 4f 53 20 61 6c 73 6f | ts.both.IPv4.and.IPv6..VyOS.also |
| aca80 | 20 63 6f 6d 65 73 20 77 69 74 68 20 61 20 62 75 69 6c 64 20 69 6e 20 53 53 54 50 20 73 65 72 76 | .comes.with.a.build.in.SSTP.serv |
| acaa0 | 65 72 2c 20 73 65 65 20 3a 72 65 66 3a 60 73 73 74 70 60 2e 00 56 79 4f 53 20 61 6c 73 6f 20 70 | er,.see.:ref:`sstp`..VyOS.also.p |
| acac0 | 72 6f 76 69 64 65 73 20 44 48 43 50 76 36 20 73 65 72 76 65 72 20 66 75 6e 63 74 69 6f 6e 61 6c | rovides.DHCPv6.server.functional |
| acae0 | 69 74 79 20 77 68 69 63 68 20 69 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 74 68 69 73 20 73 | ity.which.is.described.in.this.s |
| acb00 | 65 63 74 69 6f 6e 2e 00 56 79 4f 53 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 73 20 28 63 75 72 72 | ection..VyOS.also.supports.(curr |
| acb20 | 65 6e 74 6c 79 29 20 74 77 6f 20 64 69 66 66 65 72 65 6e 74 20 6d 6f 64 65 73 20 6f 66 20 61 75 | ently).two.different.modes.of.au |
| acb40 | 74 68 65 6e 74 69 63 61 74 69 6f 6e 2c 20 6c 6f 63 61 6c 20 61 6e 64 20 52 41 44 49 55 53 2e 20 | thentication,.local.and.RADIUS.. |
| acb60 | 54 6f 20 63 72 65 61 74 65 20 61 20 6e 65 77 20 6c 6f 63 61 6c 20 75 73 65 72 20 6e 61 6d 65 64 | To.create.a.new.local.user.named |
| acb80 | 20 60 60 76 79 6f 73 60 60 20 77 69 74 68 20 70 61 73 73 77 6f 72 64 20 60 60 76 79 6f 73 60 60 | .``vyos``.with.password.``vyos`` |
| acba0 | 20 75 73 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 73 2e 00 56 79 4f | .use.the.following.commands..VyO |
| acbc0 | 53 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 73 20 74 77 6f 20 64 69 66 66 65 72 65 6e 74 20 6d 6f | S.also.supports.two.different.mo |
| acbe0 | 64 65 73 20 6f 66 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2c 20 6c 6f 63 61 6c 20 61 6e 64 | des.of.authentication,.local.and |
| acc00 | 20 52 41 44 49 55 53 2e 20 54 6f 20 63 72 65 61 74 65 20 61 20 6e 65 77 20 6c 6f 63 61 6c 20 75 | .RADIUS..To.create.a.new.local.u |
| acc20 | 73 65 72 20 6e 61 6d 65 64 20 22 76 79 6f 73 22 20 77 69 74 68 20 61 20 70 61 73 73 77 6f 72 64 | ser.named."vyos".with.a.password |
| acc40 | 20 6f 66 20 22 76 79 6f 73 22 20 75 73 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d | .of."vyos".use.the.following.com |
| acc60 | 6d 61 6e 64 73 2e 00 56 79 4f 53 20 63 61 6e 20 61 6c 73 6f 20 72 75 6e 20 69 6e 20 44 4d 56 50 | mands..VyOS.can.also.run.in.DMVP |
| acc80 | 4e 20 73 70 6f 6b 65 20 6d 6f 64 65 2e 00 56 79 4f 53 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 | N.spoke.mode..VyOS.can.be.config |
| acca0 | 75 72 65 64 20 74 6f 20 74 72 61 63 6b 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 75 73 69 6e 67 20 | ured.to.track.connections.using. |
| accc0 | 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 73 75 62 73 79 73 74 65 | the.connection.tracking.subsyste |
| acce0 | 6d 2e 20 43 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 62 65 63 6f 6d 65 73 20 6f | m..Connection.tracking.becomes.o |
| acd00 | 70 65 72 61 74 69 6f 6e 61 6c 20 6f 6e 63 65 20 65 69 74 68 65 72 20 73 74 61 74 65 66 75 6c 20 | perational.once.either.stateful. |
| acd20 | 66 69 72 65 77 61 6c 6c 20 6f 72 20 4e 41 54 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 2e 00 56 | firewall.or.NAT.is.configured..V |
| acd40 | 79 4f 53 20 63 61 6e 20 6e 6f 74 20 6f 6e 6c 79 20 61 63 74 20 61 73 20 61 6e 20 4f 70 65 6e 56 | yOS.can.not.only.act.as.an.OpenV |
| acd60 | 50 4e 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 6f 72 20 73 65 72 76 65 72 20 66 6f 72 20 6d 75 | PN.site-to-site.or.server.for.mu |
| acd80 | 6c 74 69 70 6c 65 20 63 6c 69 65 6e 74 73 20 62 75 74 20 79 6f 75 20 63 61 6e 20 61 6c 73 6f 20 | ltiple.clients.but.you.can.also. |
| acda0 | 63 6f 6e 66 69 67 75 72 65 20 61 6e 79 20 56 79 4f 53 20 4f 70 65 6e 56 50 4e 20 69 6e 74 65 72 | configure.any.VyOS.OpenVPN.inter |
| acdc0 | 66 61 63 65 20 61 73 20 61 6e 20 4f 70 65 6e 56 50 4e 20 63 6c 69 65 6e 74 20 74 68 61 74 20 63 | face.as.an.OpenVPN.client.that.c |
| acde0 | 6f 6e 6e 65 63 74 73 20 74 6f 20 61 20 56 79 4f 53 20 4f 70 65 6e 56 50 4e 20 73 65 72 76 65 72 | onnects.to.a.VyOS.OpenVPN.server |
| ace00 | 20 6f 72 20 61 6e 79 20 6f 74 68 65 72 20 4f 70 65 6e 56 50 4e 20 73 65 72 76 65 72 2e 00 56 79 | .or.any.other.OpenVPN.server..Vy |
| ace20 | 4f 53 20 63 61 6e 20 6e 6f 74 20 6f 6e 6c 79 20 61 63 74 20 61 73 20 61 6e 20 4f 70 65 6e 56 50 | OS.can.not.only.act.as.an.OpenVP |
| ace40 | 4e 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 6f 72 20 73 65 72 76 65 72 20 66 6f 72 20 6d 75 6c | N.site-to-site.or.server.for.mul |
| ace60 | 74 69 70 6c 65 20 63 6c 69 65 6e 74 73 2e 20 59 6f 75 20 63 61 6e 20 69 6e 64 65 65 64 20 61 6c | tiple.clients..You.can.indeed.al |
| ace80 | 73 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 6e 79 20 56 79 4f 53 20 4f 70 65 6e 56 50 4e 20 69 6e | so.configure.any.VyOS.OpenVPN.in |
| acea0 | 74 65 72 66 61 63 65 20 61 73 20 61 6e 20 4f 70 65 6e 56 50 4e 20 63 6c 69 65 6e 74 20 63 6f 6e | terface.as.an.OpenVPN.client.con |
| acec0 | 6e 65 63 74 69 6e 67 20 74 6f 20 61 20 56 79 4f 53 20 4f 70 65 6e 56 50 4e 20 73 65 72 76 65 72 | necting.to.a.VyOS.OpenVPN.server |
| acee0 | 20 6f 72 20 61 6e 79 20 6f 74 68 65 72 20 4f 70 65 6e 56 50 4e 20 73 65 72 76 65 72 2e 00 56 79 | .or.any.other.OpenVPN.server..Vy |
| acf00 | 4f 53 20 64 65 66 61 75 6c 74 20 77 69 6c 6c 20 62 65 20 60 61 75 74 6f 60 2e 00 56 79 4f 53 20 | OS.default.will.be.`auto`..VyOS. |
| acf20 | 64 6f 65 73 20 6e 6f 74 20 68 61 76 65 20 61 20 73 70 65 63 69 61 6c 20 63 6f 6d 6d 61 6e 64 20 | does.not.have.a.special.command. |
| acf40 | 74 6f 20 73 74 61 72 74 20 74 68 65 20 42 61 62 65 6c 20 70 72 6f 63 65 73 73 2e 20 54 68 65 20 | to.start.the.Babel.process..The. |
| acf60 | 42 61 62 65 6c 20 70 72 6f 63 65 73 73 20 73 74 61 72 74 73 20 77 68 65 6e 20 74 68 65 20 66 69 | Babel.process.starts.when.the.fi |
| acf80 | 72 73 74 20 42 61 62 65 6c 20 65 6e 61 62 6c 65 64 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 63 | rst.Babel.enabled.interface.is.c |
| acfa0 | 6f 6e 66 69 67 75 72 65 64 2e 00 56 79 4f 53 20 64 6f 65 73 20 6e 6f 74 20 68 61 76 65 20 61 20 | onfigured..VyOS.does.not.have.a. |
| acfc0 | 73 70 65 63 69 61 6c 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 74 61 72 74 20 74 68 65 20 4f 53 50 | special.command.to.start.the.OSP |
| acfe0 | 46 20 70 72 6f 63 65 73 73 2e 20 54 68 65 20 4f 53 50 46 20 70 72 6f 63 65 73 73 20 73 74 61 72 | F.process..The.OSPF.process.star |
| ad000 | 74 73 20 77 68 65 6e 20 74 68 65 20 66 69 72 73 74 20 6f 73 70 66 20 65 6e 61 62 6c 65 64 20 69 | ts.when.the.first.ospf.enabled.i |
| ad020 | 6e 74 65 72 66 61 63 65 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 2e 00 56 79 4f 53 20 64 6f 65 | nterface.is.configured..VyOS.doe |
| ad040 | 73 20 6e 6f 74 20 68 61 76 65 20 61 20 73 70 65 63 69 61 6c 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 | s.not.have.a.special.command.to. |
| ad060 | 73 74 61 72 74 20 74 68 65 20 4f 53 50 46 76 33 20 70 72 6f 63 65 73 73 2e 20 54 68 65 20 4f 53 | start.the.OSPFv3.process..The.OS |
| ad080 | 50 46 76 33 20 70 72 6f 63 65 73 73 20 73 74 61 72 74 73 20 77 68 65 6e 20 74 68 65 20 66 69 72 | PFv3.process.starts.when.the.fir |
| ad0a0 | 73 74 20 6f 73 70 66 20 65 6e 61 62 6c 65 64 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 63 6f 6e | st.ospf.enabled.interface.is.con |
| ad0c0 | 66 69 67 75 72 65 64 2e 00 56 79 4f 53 20 66 61 63 69 6c 69 74 61 74 65 73 20 49 50 20 4d 75 6c | figured..VyOS.facilitates.IP.Mul |
| ad0e0 | 74 69 63 61 73 74 20 62 79 20 73 75 70 70 6f 72 74 69 6e 67 20 2a 2a 50 49 4d 20 53 70 61 72 73 | ticast.by.supporting.**PIM.Spars |
| ad100 | 65 20 4d 6f 64 65 2a 2a 2c 20 2a 2a 49 47 4d 50 2a 2a 20 61 6e 64 20 2a 2a 49 47 4d 50 2d 50 72 | e.Mode**,.**IGMP**.and.**IGMP-Pr |
| ad120 | 6f 78 79 2a 2a 2e 00 56 79 4f 53 20 66 61 63 69 6c 69 74 61 74 65 73 20 49 50 76 36 20 4d 75 6c | oxy**..VyOS.facilitates.IPv6.Mul |
| ad140 | 74 69 63 61 73 74 20 62 79 20 73 75 70 70 6f 72 74 69 6e 67 20 2a 2a 50 49 4d 76 36 2a 2a 20 61 | ticast.by.supporting.**PIMv6**.a |
| ad160 | 6e 64 20 2a 2a 4d 4c 44 2a 2a 2e 00 56 79 4f 53 20 69 6e 63 6c 75 64 65 73 20 74 68 65 20 46 61 | nd.**MLD**..VyOS.includes.the.Fa |
| ad180 | 73 74 4e 65 74 4d 6f 6e 20 43 6f 6d 6d 75 6e 69 74 79 20 45 64 69 74 69 6f 6e 2e 00 56 79 4f 53 | stNetMon.Community.Edition..VyOS |
| ad1a0 | 20 69 73 20 61 62 6c 65 20 74 6f 20 75 70 64 61 74 65 20 61 20 72 65 6d 6f 74 65 20 44 4e 53 20 | .is.able.to.update.a.remote.DNS. |
| ad1c0 | 72 65 63 6f 72 64 20 77 68 65 6e 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 67 65 74 73 20 61 20 | record.when.an.interface.gets.a. |
| ad1e0 | 6e 65 77 20 49 50 20 61 64 64 72 65 73 73 2e 20 49 6e 20 6f 72 64 65 72 20 74 6f 20 64 6f 20 73 | new.IP.address..In.order.to.do.s |
| ad200 | 6f 2c 20 56 79 4f 53 20 69 6e 63 6c 75 64 65 73 20 64 64 63 6c 69 65 6e 74 5f 2c 20 61 20 50 65 | o,.VyOS.includes.ddclient_,.a.Pe |
| ad220 | 72 6c 20 73 63 72 69 70 74 20 77 72 69 74 74 65 6e 20 66 6f 72 20 74 68 69 73 20 6f 6e 6c 79 20 | rl.script.written.for.this.only. |
| ad240 | 6f 6e 65 20 70 75 72 70 6f 73 65 2e 00 56 79 4f 53 20 69 73 20 61 6c 73 6f 20 61 62 6c 65 20 74 | one.purpose..VyOS.is.also.able.t |
| ad260 | 6f 20 75 73 65 20 61 6e 79 20 73 65 72 76 69 63 65 20 72 65 6c 79 69 6e 67 20 6f 6e 20 70 72 6f | o.use.any.service.relying.on.pro |
| ad280 | 74 6f 63 6f 6c 73 20 73 75 70 70 6f 72 74 65 64 20 62 79 20 64 64 63 6c 69 65 6e 74 2e 00 56 79 | tocols.supported.by.ddclient..Vy |
| ad2a0 | 4f 53 20 69 74 73 65 6c 66 20 73 75 70 70 6f 72 74 73 20 53 4e 4d 50 76 32 5f 20 28 76 65 72 73 | OS.itself.supports.SNMPv2_.(vers |
| ad2c0 | 69 6f 6e 20 32 29 20 61 6e 64 20 53 4e 4d 50 76 33 5f 20 28 76 65 72 73 69 6f 6e 20 33 29 20 77 | ion.2).and.SNMPv3_.(version.3).w |
| ad2e0 | 68 65 72 65 20 74 68 65 20 6c 61 74 65 72 20 69 73 20 72 65 63 6f 6d 6d 65 6e 64 65 64 20 62 65 | here.the.later.is.recommended.be |
| ad300 | 63 61 75 73 65 20 6f 66 20 69 6d 70 72 6f 76 65 64 20 73 65 63 75 72 69 74 79 20 28 6f 70 74 69 | cause.of.improved.security.(opti |
| ad320 | 6f 6e 61 6c 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 61 6e 64 20 65 6e 63 72 79 70 74 69 | onal.authentication.and.encrypti |
| ad340 | 6f 6e 29 2e 00 56 79 4f 53 20 6c 65 74 73 20 79 6f 75 20 63 6f 6e 74 72 6f 6c 20 74 72 61 66 66 | on)..VyOS.lets.you.control.traff |
| ad360 | 69 63 20 69 6e 20 6d 61 6e 79 20 64 69 66 66 65 72 65 6e 74 20 77 61 79 73 2c 20 68 65 72 65 20 | ic.in.many.different.ways,.here. |
| ad380 | 77 65 20 77 69 6c 6c 20 63 6f 76 65 72 20 65 76 65 72 79 20 70 6f 73 73 69 62 69 6c 69 74 79 2e | we.will.cover.every.possibility. |
| ad3a0 | 20 59 6f 75 20 63 61 6e 20 63 6f 6e 66 69 67 75 72 65 20 61 73 20 6d 61 6e 79 20 70 6f 6c 69 63 | .You.can.configure.as.many.polic |
| ad3c0 | 69 65 73 20 61 73 20 79 6f 75 20 77 61 6e 74 2c 20 62 75 74 20 79 6f 75 20 77 69 6c 6c 20 6f 6e | ies.as.you.want,.but.you.will.on |
| ad3e0 | 6c 79 20 62 65 20 61 62 6c 65 20 74 6f 20 61 70 70 6c 79 20 6f 6e 65 20 70 6f 6c 69 63 79 20 70 | ly.be.able.to.apply.one.policy.p |
| ad400 | 65 72 20 69 6e 74 65 72 66 61 63 65 20 61 6e 64 20 64 69 72 65 63 74 69 6f 6e 20 28 69 6e 62 6f | er.interface.and.direction.(inbo |
| ad420 | 75 6e 64 20 6f 72 20 6f 75 74 62 6f 75 6e 64 29 2e 00 56 79 4f 53 20 6d 61 6b 65 73 20 75 73 65 | und.or.outbound)..VyOS.makes.use |
| ad440 | 20 6f 66 20 3a 61 62 62 72 3a 60 46 52 52 20 28 46 72 65 65 20 52 61 6e 67 65 20 52 6f 75 74 69 | .of.:abbr:`FRR.(Free.Range.Routi |
| ad460 | 6e 67 29 60 20 61 6e 64 20 77 65 20 77 6f 75 6c 64 20 6c 69 6b 65 20 74 6f 20 74 68 61 6e 6b 20 | ng)`.and.we.would.like.to.thank. |
| ad480 | 74 68 65 6d 20 66 6f 72 20 74 68 65 69 72 20 65 66 66 6f 72 74 21 00 56 79 4f 53 20 6d 61 6b 65 | them.for.their.effort!.VyOS.make |
| ad4a0 | 73 20 75 73 65 20 6f 66 20 4c 69 6e 75 78 20 60 6e 65 74 66 69 6c 74 65 72 20 3c 68 74 74 70 73 | s.use.of.Linux.`netfilter.<https |
| ad4c0 | 3a 2f 2f 6e 65 74 66 69 6c 74 65 72 2e 6f 72 67 2f 3e 60 5f 20 66 6f 72 20 70 61 63 6b 65 74 20 | ://netfilter.org/>`_.for.packet. |
| ad4e0 | 66 69 6c 74 65 72 69 6e 67 2e 00 56 79 4f 53 20 6e 6f 74 20 6f 6e 6c 79 20 63 61 6e 20 6e 6f 77 | filtering..VyOS.not.only.can.now |
| ad500 | 20 6d 61 6e 61 67 65 20 63 65 72 74 69 66 69 63 61 74 65 73 20 69 73 73 75 65 64 20 62 79 20 33 | .manage.certificates.issued.by.3 |
| ad520 | 72 64 20 70 61 72 74 79 20 43 65 72 74 69 66 69 63 61 74 65 20 41 75 74 68 6f 72 69 74 69 65 73 | rd.party.Certificate.Authorities |
| ad540 | 2c 20 69 74 20 63 61 6e 20 61 6c 73 6f 20 61 63 74 20 61 73 20 61 20 43 41 20 6f 6e 20 69 74 73 | ,.it.can.also.act.as.a.CA.on.its |
| ad560 | 20 6f 77 6e 2e 20 59 6f 75 20 63 61 6e 20 63 72 65 61 74 65 20 79 6f 75 72 20 6f 77 6e 20 72 6f | .own..You.can.create.your.own.ro |
| ad580 | 6f 74 20 43 41 20 61 6e 64 20 73 69 67 6e 20 6b 65 79 73 20 77 69 74 68 20 69 74 20 62 79 20 6d | ot.CA.and.sign.keys.with.it.by.m |
| ad5a0 | 61 6b 69 6e 67 20 75 73 65 20 6f 66 20 73 6f 6d 65 20 73 69 6d 70 6c 65 20 6f 70 2d 6d 6f 64 65 | aking.use.of.some.simple.op-mode |
| ad5c0 | 20 63 6f 6d 6d 61 6e 64 73 2e 00 56 79 4f 53 20 6e 6f 77 20 61 6c 73 6f 20 68 61 73 20 74 68 65 | .commands..VyOS.now.also.has.the |
| ad5e0 | 20 61 62 69 6c 69 74 79 20 74 6f 20 63 72 65 61 74 65 20 43 41 73 2c 20 6b 65 79 73 2c 20 44 69 | .ability.to.create.CAs,.keys,.Di |
| ad600 | 66 66 69 65 2d 48 65 6c 6c 6d 61 6e 20 61 6e 64 20 6f 74 68 65 72 20 6b 65 79 70 61 69 72 73 20 | ffie-Hellman.and.other.keypairs. |
| ad620 | 66 72 6f 6d 20 61 6e 20 65 61 73 79 20 74 6f 20 61 63 63 65 73 73 20 6f 70 65 72 61 74 69 6f 6e | from.an.easy.to.access.operation |
| ad640 | 61 6c 20 6c 65 76 65 6c 20 63 6f 6d 6d 61 6e 64 2e 00 56 79 4f 53 20 6f 70 65 72 61 74 69 6f 6e | al.level.command..VyOS.operation |
| ad660 | 61 6c 20 6d 6f 64 65 20 63 6f 6d 6d 61 6e 64 73 20 61 72 65 20 6e 6f 74 20 6f 6e 6c 79 20 61 76 | al.mode.commands.are.not.only.av |
| ad680 | 61 69 6c 61 62 6c 65 20 66 6f 72 20 67 65 6e 65 72 61 74 69 6e 67 20 6b 65 79 73 20 62 75 74 20 | ailable.for.generating.keys.but. |
| ad6a0 | 61 6c 73 6f 20 74 6f 20 64 69 73 70 6c 61 79 20 74 68 65 6d 2e 00 56 79 4f 53 20 70 72 6f 76 69 | also.to.display.them..VyOS.provi |
| ad6c0 | 64 65 20 61 6e 20 48 54 54 50 20 41 50 49 2e 20 59 6f 75 20 63 61 6e 20 75 73 65 20 69 74 20 74 | de.an.HTTP.API..You.can.use.it.t |
| ad6e0 | 6f 20 65 78 65 63 75 74 65 20 6f 70 2d 6d 6f 64 65 20 63 6f 6d 6d 61 6e 64 73 2c 20 75 70 64 61 | o.execute.op-mode.commands,.upda |
| ad700 | 74 65 20 56 79 4f 53 2c 20 73 65 74 20 6f 72 20 64 65 6c 65 74 65 20 63 6f 6e 66 69 67 2e 00 56 | te.VyOS,.set.or.delete.config..V |
| ad720 | 79 4f 53 20 70 72 6f 76 69 64 65 73 20 44 4e 53 20 69 6e 66 72 61 73 74 72 75 63 74 75 72 65 20 | yOS.provides.DNS.infrastructure. |
| ad740 | 66 6f 72 20 73 6d 61 6c 6c 20 6e 65 74 77 6f 72 6b 73 2e 20 49 74 20 69 73 20 64 65 73 69 67 6e | for.small.networks..It.is.design |
| ad760 | 65 64 20 74 6f 20 62 65 20 6c 69 67 68 74 77 65 69 67 68 74 20 61 6e 64 20 68 61 76 65 20 61 20 | ed.to.be.lightweight.and.have.a. |
| ad780 | 73 6d 61 6c 6c 20 66 6f 6f 74 70 72 69 6e 74 2c 20 73 75 69 74 61 62 6c 65 20 66 6f 72 20 72 65 | small.footprint,.suitable.for.re |
| ad7a0 | 73 6f 75 72 63 65 20 63 6f 6e 73 74 72 61 69 6e 65 64 20 72 6f 75 74 65 72 73 20 61 6e 64 20 66 | source.constrained.routers.and.f |
| ad7c0 | 69 72 65 77 61 6c 6c 73 2e 20 46 6f 72 20 74 68 69 73 20 77 65 20 75 74 69 6c 69 7a 65 20 50 6f | irewalls..For.this.we.utilize.Po |
| ad7e0 | 77 65 72 44 4e 53 20 72 65 63 75 72 73 6f 72 2e 00 56 79 4f 53 20 70 72 6f 76 69 64 65 73 20 48 | werDNS.recursor..VyOS.provides.H |
| ad800 | 69 67 68 20 41 76 61 69 6c 61 62 69 6c 69 74 79 20 73 75 70 70 6f 72 74 20 66 6f 72 20 44 48 43 | igh.Availability.support.for.DHC |
| ad820 | 50 20 73 65 72 76 65 72 2e 20 44 48 43 50 20 48 69 67 68 20 41 76 61 69 6c 61 62 69 6c 69 74 79 | P.server..DHCP.High.Availability |
| ad840 | 20 63 61 6e 20 61 63 74 20 69 6e 20 74 77 6f 20 64 69 66 66 65 72 65 6e 74 20 6d 6f 64 65 73 3a | .can.act.in.two.different.modes: |
| ad860 | 00 56 79 4f 53 20 70 72 6f 76 69 64 65 73 20 61 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 67 65 6e 65 | .VyOS.provides.a.command.to.gene |
| ad880 | 72 61 74 65 20 61 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 70 72 6f 66 69 6c 65 20 75 73 65 64 20 62 | rate.a.connection.profile.used.b |
| ad8a0 | 79 20 57 69 6e 64 6f 77 73 20 63 6c 69 65 6e 74 73 20 74 68 61 74 20 77 69 6c 6c 20 63 6f 6e 6e | y.Windows.clients.that.will.conn |
| ad8c0 | 65 63 74 20 74 6f 20 74 68 65 20 22 72 77 22 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 6f 6e 20 6f 75 | ect.to.the."rw".connection.on.ou |
| ad8e0 | 72 20 56 79 4f 53 20 73 65 72 76 65 72 2e 00 56 79 4f 53 20 70 72 6f 76 69 64 65 73 20 70 6f 6c | r.VyOS.server..VyOS.provides.pol |
| ad900 | 69 63 69 65 73 20 63 6f 6d 6d 61 6e 64 73 20 65 78 63 6c 75 73 69 76 65 6c 79 20 66 6f 72 20 42 | icies.commands.exclusively.for.B |
| ad920 | 47 50 20 74 72 61 66 66 69 63 20 66 69 6c 74 65 72 69 6e 67 20 61 6e 64 20 6d 61 6e 69 70 75 6c | GP.traffic.filtering.and.manipul |
| ad940 | 61 74 69 6f 6e 3a 20 2a 2a 61 73 2d 70 61 74 68 2d 6c 69 73 74 2a 2a 20 69 73 20 6f 6e 65 20 6f | ation:.**as-path-list**.is.one.o |
| ad960 | 66 20 74 68 65 6d 2e 00 56 79 4f 53 20 70 72 6f 76 69 64 65 73 20 70 6f 6c 69 63 69 65 73 20 63 | f.them..VyOS.provides.policies.c |
| ad980 | 6f 6d 6d 61 6e 64 73 20 65 78 63 6c 75 73 69 76 65 6c 79 20 66 6f 72 20 42 47 50 20 74 72 61 66 | ommands.exclusively.for.BGP.traf |
| ad9a0 | 66 69 63 20 66 69 6c 74 65 72 69 6e 67 20 61 6e 64 20 6d 61 6e 69 70 75 6c 61 74 69 6f 6e 3a 20 | fic.filtering.and.manipulation:. |
| ad9c0 | 2a 2a 63 6f 6d 6d 75 6e 69 74 79 2d 6c 69 73 74 2a 2a 20 69 73 20 6f 6e 65 20 6f 66 20 74 68 65 | **community-list**.is.one.of.the |
| ad9e0 | 6d 2e 00 56 79 4f 53 20 70 72 6f 76 69 64 65 73 20 70 6f 6c 69 63 69 65 73 20 63 6f 6d 6d 61 6e | m..VyOS.provides.policies.comman |
| ada00 | 64 73 20 65 78 63 6c 75 73 69 76 65 6c 79 20 66 6f 72 20 42 47 50 20 74 72 61 66 66 69 63 20 66 | ds.exclusively.for.BGP.traffic.f |
| ada20 | 69 6c 74 65 72 69 6e 67 20 61 6e 64 20 6d 61 6e 69 70 75 6c 61 74 69 6f 6e 3a 20 2a 2a 65 78 74 | iltering.and.manipulation:.**ext |
| ada40 | 63 6f 6d 6d 75 6e 69 74 79 2d 6c 69 73 74 2a 2a 20 69 73 20 6f 6e 65 20 6f 66 20 74 68 65 6d 2e | community-list**.is.one.of.them. |
| ada60 | 00 56 79 4f 53 20 70 72 6f 76 69 64 65 73 20 70 6f 6c 69 63 69 65 73 20 63 6f 6d 6d 61 6e 64 73 | .VyOS.provides.policies.commands |
| ada80 | 20 65 78 63 6c 75 73 69 76 65 6c 79 20 66 6f 72 20 42 47 50 20 74 72 61 66 66 69 63 20 66 69 6c | .exclusively.for.BGP.traffic.fil |
| adaa0 | 74 65 72 69 6e 67 20 61 6e 64 20 6d 61 6e 69 70 75 6c 61 74 69 6f 6e 3a 20 2a 2a 6c 61 72 67 65 | tering.and.manipulation:.**large |
| adac0 | 2d 63 6f 6d 6d 75 6e 69 74 79 2d 6c 69 73 74 2a 2a 20 69 73 20 6f 6e 65 20 6f 66 20 74 68 65 6d | -community-list**.is.one.of.them |
| adae0 | 2e 00 56 79 4f 53 20 70 72 6f 76 69 64 65 73 20 73 6f 6d 65 20 6f 70 65 72 61 74 69 6f 6e 61 6c | ..VyOS.provides.some.operational |
| adb00 | 20 63 6f 6d 6d 61 6e 64 73 20 6f 6e 20 4f 70 65 6e 56 50 4e 2e 00 56 79 4f 53 20 70 72 6f 76 69 | .commands.on.OpenVPN..VyOS.provi |
| adb20 | 64 65 73 20 73 75 70 70 6f 72 74 20 66 6f 72 20 44 48 43 50 20 66 61 69 6c 6f 76 65 72 2e 20 44 | des.support.for.DHCP.failover..D |
| adb40 | 48 43 50 20 66 61 69 6c 6f 76 65 72 20 6d 75 73 74 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 | HCP.failover.must.be.configured. |
| adb60 | 65 78 70 6c 69 63 69 74 6c 79 20 62 79 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 74 61 74 | explicitly.by.the.following.stat |
| adb80 | 65 6d 65 6e 74 73 2e 00 56 79 4f 53 20 70 72 6f 76 69 64 65 73 20 74 68 69 73 20 75 74 69 6c 69 | ements..VyOS.provides.this.utili |
| adba0 | 74 79 20 74 6f 20 69 6d 70 6f 72 74 20 65 78 69 73 74 69 6e 67 20 63 65 72 74 69 66 69 63 61 74 | ty.to.import.existing.certificat |
| adbc0 | 65 73 2f 6b 65 79 20 66 69 6c 65 73 20 64 69 72 65 63 74 6c 79 20 69 6e 74 6f 20 50 4b 49 20 66 | es/key.files.directly.into.PKI.f |
| adbe0 | 72 6f 6d 20 6f 70 2d 6d 6f 64 65 2e 20 50 72 65 76 69 6f 75 73 20 74 6f 20 56 79 4f 53 20 31 2e | rom.op-mode..Previous.to.VyOS.1. |
| adc00 | 34 2c 20 63 65 72 74 69 66 69 63 61 74 65 73 20 77 65 72 65 20 73 74 6f 72 65 64 20 75 6e 64 65 | 4,.certificates.were.stored.unde |
| adc20 | 72 20 74 68 65 20 2f 63 6f 6e 66 69 67 20 66 6f 6c 64 65 72 20 70 65 72 6d 61 6e 65 6e 74 6c 79 | r.the./config.folder.permanently |
| adc40 | 20 61 6e 64 20 77 69 6c 6c 20 62 65 20 72 65 74 61 69 6e 65 64 20 70 6f 73 74 20 75 70 67 72 61 | .and.will.be.retained.post.upgra |
| adc60 | 64 65 2e 00 56 79 4f 53 20 72 65 76 65 72 73 65 2d 70 72 6f 78 79 20 69 73 20 62 61 6c 61 6e 63 | de..VyOS.reverse-proxy.is.balanc |
| adc80 | 65 72 20 61 6e 64 20 70 72 6f 78 79 20 73 65 72 76 65 72 20 74 68 61 74 20 70 72 6f 76 69 64 65 | er.and.proxy.server.that.provide |
| adca0 | 73 20 68 69 67 68 2d 61 76 61 69 6c 61 62 69 6c 69 74 79 2c 20 6c 6f 61 64 20 62 61 6c 61 6e 63 | s.high-availability,.load.balanc |
| adcc0 | 69 6e 67 20 61 6e 64 20 70 72 6f 78 79 69 6e 67 20 66 6f 72 20 54 43 50 20 28 6c 65 76 65 6c 20 | ing.and.proxying.for.TCP.(level. |
| adce0 | 34 29 20 61 6e 64 20 48 54 54 50 2d 62 61 73 65 64 20 28 6c 65 76 65 6c 20 37 29 20 61 70 70 6c | 4).and.HTTP-based.(level.7).appl |
| add00 | 69 63 61 74 69 6f 6e 73 2e 00 56 79 4f 53 20 73 75 70 70 6f 72 74 73 20 3a 61 62 62 72 3a 60 50 | ications..VyOS.supports.:abbr:`P |
| add20 | 49 4d 2d 53 4d 20 28 50 49 4d 20 53 70 61 72 73 65 20 4d 6f 64 65 29 60 20 61 73 20 77 65 6c 6c | IM-SM.(PIM.Sparse.Mode)`.as.well |
| add40 | 20 61 73 20 3a 61 62 62 72 3a 60 49 47 4d 50 20 28 49 6e 74 65 72 6e 65 74 20 47 72 6f 75 70 20 | .as.:abbr:`IGMP.(Internet.Group. |
| add60 | 4d 61 6e 61 67 65 6d 65 6e 74 20 50 72 6f 74 6f 63 6f 6c 29 60 20 76 32 20 61 6e 64 20 76 33 00 | Management.Protocol)`.v2.and.v3. |
| add80 | 56 79 4f 53 20 73 75 70 70 6f 72 74 73 20 62 6f 74 68 20 49 47 4d 50 20 76 65 72 73 69 6f 6e 20 | VyOS.supports.both.IGMP.version. |
| adda0 | 32 20 61 6e 64 20 76 65 72 73 69 6f 6e 20 33 20 28 77 68 69 63 68 20 61 6c 6c 6f 77 73 20 73 6f | 2.and.version.3.(which.allows.so |
| addc0 | 75 72 63 65 2d 73 70 65 63 69 66 69 63 20 6d 75 6c 74 69 63 61 73 74 29 2e 00 56 79 4f 53 20 73 | urce-specific.multicast)..VyOS.s |
| adde0 | 75 70 70 6f 72 74 73 20 62 6f 74 68 20 4d 4c 44 20 76 65 72 73 69 6f 6e 20 31 20 61 6e 64 20 76 | upports.both.MLD.version.1.and.v |
| ade00 | 65 72 73 69 6f 6e 20 32 20 28 77 68 69 63 68 20 61 6c 6c 6f 77 73 20 73 6f 75 72 63 65 2d 73 70 | ersion.2.(which.allows.source-sp |
| ade20 | 65 63 69 66 69 63 20 6d 75 6c 74 69 63 61 73 74 29 2e 00 56 79 4f 53 20 73 75 70 70 6f 72 74 73 | ecific.multicast)..VyOS.supports |
| ade40 | 20 66 6c 6f 77 2d 61 63 63 6f 75 6e 74 69 6e 67 20 66 6f 72 20 62 6f 74 68 20 49 50 76 34 20 61 | .flow-accounting.for.both.IPv4.a |
| ade60 | 6e 64 20 49 50 76 36 20 74 72 61 66 66 69 63 2e 20 54 68 65 20 73 79 73 74 65 6d 20 61 63 74 73 | nd.IPv6.traffic..The.system.acts |
| ade80 | 20 61 73 20 61 20 66 6c 6f 77 20 65 78 70 6f 72 74 65 72 2c 20 61 6e 64 20 79 6f 75 20 61 72 65 | .as.a.flow.exporter,.and.you.are |
| adea0 | 20 66 72 65 65 20 74 6f 20 75 73 65 20 69 74 20 77 69 74 68 20 61 6e 79 20 63 6f 6d 70 61 74 69 | .free.to.use.it.with.any.compati |
| adec0 | 62 6c 65 20 63 6f 6c 6c 65 63 74 6f 72 2e 00 56 79 4f 53 20 73 75 70 70 6f 72 74 73 20 6d 75 6c | ble.collector..VyOS.supports.mul |
| adee0 | 74 69 2d 66 61 63 74 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 28 4d 46 41 29 20 6f | ti-factor.authentication.(MFA).o |
| adf00 | 72 20 74 77 6f 2d 66 61 63 74 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 75 73 69 6e | r.two-factor.authentication.usin |
| adf20 | 67 20 54 69 6d 65 2d 62 61 73 65 64 20 4f 6e 65 2d 54 69 6d 65 20 50 61 73 73 77 6f 72 64 20 28 | g.Time-based.One-Time.Password.( |
| adf40 | 54 4f 54 50 29 2e 20 43 6f 6d 70 61 74 69 62 6c 65 20 77 69 74 68 20 47 6f 6f 67 6c 65 20 41 75 | TOTP)..Compatible.with.Google.Au |
| adf60 | 74 68 65 6e 74 69 63 61 74 6f 72 20 73 6f 66 74 77 61 72 65 20 74 6f 6b 65 6e 2c 20 6f 74 68 65 | thenticator.software.token,.othe |
| adf80 | 72 20 73 6f 66 74 77 61 72 65 20 74 6f 6b 65 6e 73 2e 00 56 79 4f 53 20 73 75 70 70 6f 72 74 73 | r.software.tokens..VyOS.supports |
| adfa0 | 20 6d 75 6c 74 69 70 6c 65 20 49 4b 45 76 32 20 72 65 6d 6f 74 65 2d 61 63 63 65 73 73 20 63 6f | .multiple.IKEv2.remote-access.co |
| adfc0 | 6e 6e 65 63 74 69 6f 6e 73 2e 20 45 76 65 72 79 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 63 61 6e 20 | nnections..Every.connection.can. |
| adfe0 | 68 61 76 65 20 69 74 73 20 64 65 64 69 63 61 74 65 64 20 49 4b 45 2f 45 53 50 20 63 69 70 68 65 | have.its.dedicated.IKE/ESP.ciphe |
| ae000 | 72 73 2c 20 63 65 72 74 69 66 69 63 61 74 65 73 20 6f 72 20 6c 6f 63 61 6c 20 6c 69 73 74 65 6e | rs,.certificates.or.local.listen |
| ae020 | 20 61 64 64 72 65 73 73 20 66 6f 72 20 65 2e 67 2e 20 69 6e 62 6f 75 6e 64 20 6c 6f 61 64 20 62 | .address.for.e.g..inbound.load.b |
| ae040 | 61 6c 61 6e 63 69 6e 67 2e 00 56 79 4f 53 20 73 75 70 70 6f 72 74 73 20 6d 75 6c 74 69 70 6c 65 | alancing..VyOS.supports.multiple |
| ae060 | 20 49 4b 45 76 32 20 72 65 6d 6f 74 65 2d 61 63 63 65 73 73 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 | .IKEv2.remote-access.connections |
| ae080 | 2e 20 45 76 65 72 79 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 63 61 6e 20 68 61 76 65 20 69 74 73 20 | ..Every.connection.can.have.its. |
| ae0a0 | 6f 77 6e 20 64 65 64 69 63 61 74 65 64 20 49 4b 45 2f 45 53 50 20 63 69 70 68 65 72 73 2c 20 63 | own.dedicated.IKE/ESP.ciphers,.c |
| ae0c0 | 65 72 74 69 66 69 63 61 74 65 73 20 6f 72 20 6c 6f 63 61 6c 20 6c 69 73 74 65 6e 20 61 64 64 72 | ertificates.or.local.listen.addr |
| ae0e0 | 65 73 73 20 66 6f 72 20 65 2e 67 2e 20 69 6e 62 6f 75 6e 64 20 6c 6f 61 64 20 62 61 6c 61 6e 63 | ess.for.e.g..inbound.load.balanc |
| ae100 | 69 6e 67 2e 00 56 79 4f 53 20 73 75 70 70 6f 72 74 73 20 6f 6e 6c 69 6e 65 20 63 68 65 63 6b 69 | ing..VyOS.supports.online.checki |
| ae120 | 6e 67 20 66 6f 72 20 75 70 64 61 74 65 73 00 56 79 4f 53 20 73 75 70 70 6f 72 74 73 20 73 46 6c | ng.for.updates.VyOS.supports.sFl |
| ae140 | 6f 77 20 61 63 63 6f 75 6e 74 69 6e 67 20 66 6f 72 20 62 6f 74 68 20 49 50 76 34 20 61 6e 64 20 | ow.accounting.for.both.IPv4.and. |
| ae160 | 49 50 76 36 20 74 72 61 66 66 69 63 2e 20 54 68 65 20 73 79 73 74 65 6d 20 61 63 74 73 20 61 73 | IPv6.traffic..The.system.acts.as |
| ae180 | 20 61 20 66 6c 6f 77 20 65 78 70 6f 72 74 65 72 2c 20 61 6e 64 20 79 6f 75 20 61 72 65 20 66 72 | .a.flow.exporter,.and.you.are.fr |
| ae1a0 | 65 65 20 74 6f 20 75 73 65 20 69 74 20 77 69 74 68 20 61 6e 79 20 63 6f 6d 70 61 74 69 62 6c 65 | ee.to.use.it.with.any.compatible |
| ae1c0 | 20 63 6f 6c 6c 65 63 74 6f 72 2e 00 56 79 4f 53 20 73 75 70 70 6f 72 74 73 20 73 65 74 74 69 6e | .collector..VyOS.supports.settin |
| ae1e0 | 67 20 74 69 6d 65 6f 75 74 73 20 66 6f 72 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 61 63 63 6f 72 | g.timeouts.for.connections.accor |
| ae200 | 64 69 6e 67 20 74 6f 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 79 70 65 2e 20 59 6f 75 | ding.to.the.connection.type..You |
| ae220 | 20 63 61 6e 20 73 65 74 20 74 69 6d 65 6f 75 74 20 76 61 6c 75 65 73 20 66 6f 72 20 67 65 6e 65 | .can.set.timeout.values.for.gene |
| ae240 | 72 69 63 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2c 20 66 6f 72 20 49 43 4d 50 20 63 6f 6e 6e 65 63 | ric.connections,.for.ICMP.connec |
| ae260 | 74 69 6f 6e 73 2c 20 55 44 50 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2c 20 6f 72 20 66 6f 72 20 54 | tions,.UDP.connections,.or.for.T |
| ae280 | 43 50 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 69 6e 20 61 20 6e 75 6d 62 65 72 20 6f 66 20 64 69 | CP.connections.in.a.number.of.di |
| ae2a0 | 66 66 65 72 65 6e 74 20 73 74 61 74 65 73 2e 00 56 79 4f 53 20 73 75 70 70 6f 72 74 73 20 73 65 | fferent.states..VyOS.supports.se |
| ae2c0 | 74 74 69 6e 67 20 75 70 20 50 50 50 6f 45 20 69 6e 20 74 77 6f 20 64 69 66 66 65 72 65 6e 74 20 | tting.up.PPPoE.in.two.different. |
| ae2e0 | 77 61 79 73 20 74 6f 20 61 20 50 50 50 6f 45 20 69 6e 74 65 72 6e 65 74 20 63 6f 6e 6e 65 63 74 | ways.to.a.PPPoE.internet.connect |
| ae300 | 69 6f 6e 2e 20 54 68 69 73 20 69 73 20 62 65 63 61 75 73 65 20 6d 6f 73 74 20 49 53 50 73 20 70 | ion..This.is.because.most.ISPs.p |
| ae320 | 72 6f 76 69 64 65 20 61 20 6d 6f 64 65 6d 20 74 68 61 74 20 69 73 20 61 6c 73 6f 20 61 20 77 69 | rovide.a.modem.that.is.also.a.wi |
| ae340 | 72 65 6c 65 73 73 20 72 6f 75 74 65 72 2e 00 56 79 4f 53 20 75 73 65 73 20 49 53 43 20 44 48 43 | reless.router..VyOS.uses.ISC.DHC |
| ae360 | 50 20 73 65 72 76 65 72 20 66 6f 72 20 62 6f 74 68 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 | P.server.for.both.IPv4.and.IPv6. |
| ae380 | 61 64 64 72 65 73 73 20 61 73 73 69 67 6e 6d 65 6e 74 2e 00 56 79 4f 53 20 75 73 65 73 20 4b 65 | address.assignment..VyOS.uses.Ke |
| ae3a0 | 61 20 44 48 43 50 20 73 65 72 76 65 72 20 66 6f 72 20 62 6f 74 68 20 49 50 76 34 20 61 6e 64 20 | a.DHCP.server.for.both.IPv4.and. |
| ae3c0 | 49 50 76 36 20 61 64 64 72 65 73 73 20 61 73 73 69 67 6e 6d 65 6e 74 2e 00 56 79 4f 53 20 75 73 | IPv6.address.assignment..VyOS.us |
| ae3e0 | 65 73 20 5b 46 52 52 6f 75 74 69 6e 67 5d 28 68 74 74 70 73 3a 2f 2f 66 72 72 6f 75 74 69 6e 67 | es.[FRRouting](https://frrouting |
| ae400 | 2e 6f 72 67 2f 29 20 61 73 20 74 68 65 20 63 6f 6e 74 72 6f 6c 20 70 6c 61 6e 65 20 66 6f 72 20 | .org/).as.the.control.plane.for. |
| ae420 | 64 79 6e 61 6d 69 63 20 61 6e 64 20 73 74 61 74 69 63 20 72 6f 75 74 69 6e 67 2e 20 54 68 65 20 | dynamic.and.static.routing..The. |
| ae440 | 72 6f 75 74 69 6e 67 20 64 61 65 6d 6f 6e 20 62 65 68 61 76 69 6f 72 20 63 61 6e 20 62 65 20 61 | routing.daemon.behavior.can.be.a |
| ae460 | 64 6a 75 73 74 65 64 20 64 75 72 69 6e 67 20 72 75 6e 74 69 6d 65 2c 20 62 75 74 20 72 65 71 75 | djusted.during.runtime,.but.requ |
| ae480 | 69 72 65 20 65 69 74 68 65 72 20 61 20 72 65 73 74 61 72 74 20 6f 66 20 74 68 65 20 72 6f 75 74 | ire.either.a.restart.of.the.rout |
| ae4a0 | 69 6e 67 20 64 61 65 6d 6f 6e 2c 20 6f 72 20 61 20 72 65 62 6f 6f 74 20 6f 66 20 74 68 65 20 73 | ing.daemon,.or.a.reboot.of.the.s |
| ae4c0 | 79 73 74 65 6d 2e 00 56 79 4f 53 20 75 73 65 73 20 74 68 65 20 60 69 6e 74 65 72 66 61 63 65 73 | ystem..VyOS.uses.the.`interfaces |
| ae4e0 | 20 77 77 61 6e 60 20 73 75 62 73 79 73 74 65 6d 20 66 6f 72 20 63 6f 6e 66 69 67 75 72 61 74 69 | .wwan`.subsystem.for.configurati |
| ae500 | 6f 6e 2e 00 56 79 4f 53 20 75 73 65 73 20 74 68 65 20 60 6d 69 72 72 6f 72 60 20 6f 70 74 69 6f | on..VyOS.uses.the.`mirror`.optio |
| ae520 | 6e 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 70 6f 72 74 20 6d 69 72 72 6f 72 69 6e 67 2e 20 54 | n.to.configure.port.mirroring..T |
| ae540 | 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 73 20 64 69 76 69 64 65 64 20 69 6e 74 6f | he.configuration.is.divided.into |
| ae560 | 20 32 20 64 69 66 66 65 72 65 6e 74 20 64 69 72 65 63 74 69 6f 6e 73 2e 20 44 65 73 74 69 6e 61 | .2.different.directions..Destina |
| ae580 | 74 69 6f 6e 20 70 6f 72 74 73 20 73 68 6f 75 6c 64 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 | tion.ports.should.be.configured. |
| ae5a0 | 66 6f 72 20 64 69 66 66 65 72 65 6e 74 20 74 72 61 66 66 69 63 20 64 69 72 65 63 74 69 6f 6e 73 | for.different.traffic.directions |
| ae5c0 | 2e 00 56 79 4f 53 20 75 74 69 6c 69 7a 65 73 20 60 61 63 63 65 6c 2d 70 70 70 60 5f 20 74 6f 20 | ..VyOS.utilizes.`accel-ppp`_.to. |
| ae5e0 | 70 72 6f 76 69 64 65 20 3a 61 62 62 72 3a 60 49 50 6f 45 20 28 49 6e 74 65 72 6e 65 74 20 50 72 | provide.:abbr:`IPoE.(Internet.Pr |
| ae600 | 6f 74 6f 63 6f 6c 20 6f 76 65 72 20 45 74 68 65 72 6e 65 74 29 60 20 73 65 72 76 65 72 20 66 75 | otocol.over.Ethernet)`.server.fu |
| ae620 | 6e 63 74 69 6f 6e 61 6c 69 74 79 2e 20 49 74 20 63 61 6e 20 62 65 20 75 73 65 64 20 77 69 74 68 | nctionality..It.can.be.used.with |
| ae640 | 20 6c 6f 63 61 6c 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 28 6d 61 63 2d 61 64 64 72 65 | .local.authentication.(mac-addre |
| ae660 | 73 73 29 20 6f 72 20 61 20 63 6f 6e 6e 65 63 74 65 64 20 52 41 44 49 55 53 20 73 65 72 76 65 72 | ss).or.a.connected.RADIUS.server |
| ae680 | 2e 00 56 79 4f 53 20 75 74 69 6c 69 7a 65 73 20 60 61 63 63 65 6c 2d 70 70 70 60 5f 20 74 6f 20 | ..VyOS.utilizes.`accel-ppp`_.to. |
| ae6a0 | 70 72 6f 76 69 64 65 20 50 50 50 6f 45 20 73 65 72 76 65 72 20 66 75 6e 63 74 69 6f 6e 61 6c 69 | provide.PPPoE.server.functionali |
| ae6c0 | 74 79 2e 20 49 74 20 63 61 6e 20 62 65 20 75 73 65 64 20 77 69 74 68 20 6c 6f 63 61 6c 20 61 75 | ty..It.can.be.used.with.local.au |
| ae6e0 | 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6f 72 20 61 20 63 6f 6e 6e 65 63 74 65 64 20 52 41 44 49 | thentication.or.a.connected.RADI |
| ae700 | 55 53 20 73 65 72 76 65 72 2e 00 56 79 4f 53 20 75 74 69 6c 69 7a 65 73 20 61 63 63 65 6c 2d 70 | US.server..VyOS.utilizes.accel-p |
| ae720 | 70 70 5f 20 74 6f 20 70 72 6f 76 69 64 65 20 4c 32 54 50 20 73 65 72 76 65 72 20 66 75 6e 63 74 | pp_.to.provide.L2TP.server.funct |
| ae740 | 69 6f 6e 61 6c 69 74 79 2e 20 49 74 20 63 61 6e 20 62 65 20 75 73 65 64 20 77 69 74 68 20 6c 6f | ionality..It.can.be.used.with.lo |
| ae760 | 63 61 6c 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6f 72 20 61 20 63 6f 6e 6e 65 63 74 65 | cal.authentication.or.a.connecte |
| ae780 | 64 20 52 41 44 49 55 53 20 73 65 72 76 65 72 2e 00 56 79 4f 53 20 75 74 69 6c 69 7a 65 73 20 61 | d.RADIUS.server..VyOS.utilizes.a |
| ae7a0 | 63 63 65 6c 2d 70 70 70 5f 20 74 6f 20 70 72 6f 76 69 64 65 20 53 53 54 50 20 73 65 72 76 65 72 | ccel-ppp_.to.provide.SSTP.server |
| ae7c0 | 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 2e 20 57 65 20 73 75 70 70 6f 72 74 20 62 6f 74 68 20 | .functionality..We.support.both. |
| ae7e0 | 6c 6f 63 61 6c 20 61 6e 64 20 52 41 44 49 55 53 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2e | local.and.RADIUS.authentication. |
| ae800 | 00 57 41 4e 20 4c 6f 61 64 20 42 61 6c 61 63 69 6e 67 20 73 68 6f 75 6c 64 20 6e 6f 74 20 62 65 | .WAN.Load.Balacing.should.not.be |
| ae820 | 20 75 73 65 64 20 77 68 65 6e 20 64 79 6e 61 6d 69 63 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f | .used.when.dynamic.routing.proto |
| ae840 | 63 6f 6c 20 69 73 20 75 73 65 64 2f 6e 65 65 64 65 64 2e 20 54 68 69 73 20 66 65 61 74 75 72 65 | col.is.used/needed..This.feature |
| ae860 | 20 63 72 65 61 74 65 73 20 63 75 73 74 6f 6d 69 7a 65 64 20 72 6f 75 74 69 6e 67 20 74 61 62 6c | .creates.customized.routing.tabl |
| ae880 | 65 73 20 61 6e 64 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 2c 20 74 68 61 74 20 6d 61 6b 65 | es.and.firewall.rules,.that.make |
| ae8a0 | 73 20 69 74 20 69 6e 63 6f 6d 70 61 74 69 62 6c 65 20 74 6f 20 75 73 65 20 77 69 74 68 20 72 6f | s.it.incompatible.to.use.with.ro |
| ae8c0 | 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 73 2e 00 57 41 4e 20 69 6e 74 65 72 66 61 63 65 20 6f | uting.protocols..WAN.interface.o |
| ae8e0 | 6e 20 60 65 74 68 31 60 00 57 41 4e 20 6c 6f 61 64 20 62 61 6c 61 6e 63 69 6e 67 00 57 4c 41 4e | n.`eth1`.WAN.load.balancing.WLAN |
| ae900 | 2f 57 49 46 49 20 2d 20 57 69 72 65 6c 65 73 73 20 4c 41 4e 00 57 4d 4d 2d 50 53 20 55 6e 73 63 | /WIFI.-.Wireless.LAN.WMM-PS.Unsc |
| ae920 | 68 65 64 75 6c 65 64 20 41 75 74 6f 6d 61 74 69 63 20 50 6f 77 65 72 20 53 61 76 65 20 44 65 6c | heduled.Automatic.Power.Save.Del |
| ae940 | 69 76 65 72 79 20 5b 55 2d 41 50 53 44 5d 00 57 50 41 20 70 61 73 73 70 68 72 61 73 65 20 60 60 | ivery.[U-APSD].WPA.passphrase.`` |
| ae960 | 31 32 33 34 35 36 37 38 60 60 00 57 50 41 20 70 61 73 73 70 68 72 61 73 65 20 60 60 73 75 70 65 | 12345678``.WPA.passphrase.``supe |
| ae980 | 72 2d 64 6f 6f 70 65 72 2d 73 65 63 75 72 65 2d 70 61 73 73 70 68 72 61 73 65 60 60 00 57 57 41 | r-dooper-secure-passphrase``.WWA |
| ae9a0 | 4e 20 2d 20 57 69 72 65 6c 65 73 73 20 57 69 64 65 2d 41 72 65 61 2d 4e 65 74 77 6f 72 6b 00 57 | N.-.Wireless.Wide-Area-Network.W |
| ae9c0 | 61 72 6e 69 6e 67 00 57 61 72 6e 69 6e 67 20 63 6f 6e 64 69 74 69 6f 6e 73 00 57 65 20 61 73 73 | arning.Warning.conditions.We.ass |
| ae9e0 | 75 6d 65 20 74 68 61 74 20 74 68 65 20 4c 45 46 54 20 72 6f 75 74 65 72 20 68 61 73 20 73 74 61 | ume.that.the.LEFT.router.has.sta |
| aea00 | 74 69 63 20 31 39 32 2e 30 2e 32 2e 31 30 20 61 64 64 72 65 73 73 20 6f 6e 20 65 74 68 30 2c 20 | tic.192.0.2.10.address.on.eth0,. |
| aea20 | 61 6e 64 20 74 68 65 20 52 49 47 48 54 20 72 6f 75 74 65 72 20 68 61 73 20 61 20 64 79 6e 61 6d | and.the.RIGHT.router.has.a.dynam |
| aea40 | 69 63 20 61 64 64 72 65 73 73 20 6f 6e 20 65 74 68 30 2e 00 57 65 20 63 61 6e 20 61 6c 73 6f 20 | ic.address.on.eth0..We.can.also. |
| aea60 | 63 72 65 61 74 65 20 74 68 65 20 63 65 72 74 69 66 69 63 61 74 65 73 20 75 73 69 6e 67 20 43 65 | create.the.certificates.using.Ce |
| aea80 | 72 62 6f 72 74 20 77 68 69 63 68 20 69 73 20 61 6e 20 65 61 73 79 2d 74 6f 2d 75 73 65 20 63 6c | rbort.which.is.an.easy-to-use.cl |
| aeaa0 | 69 65 6e 74 20 74 68 61 74 20 66 65 74 63 68 65 73 20 61 20 63 65 72 74 69 66 69 63 61 74 65 20 | ient.that.fetches.a.certificate. |
| aeac0 | 66 72 6f 6d 20 4c 65 74 27 73 20 45 6e 63 72 79 70 74 20 61 6e 20 6f 70 65 6e 20 63 65 72 74 69 | from.Let's.Encrypt.an.open.certi |
| aeae0 | 66 69 63 61 74 65 20 61 75 74 68 6f 72 69 74 79 20 6c 61 75 6e 63 68 65 64 20 62 79 20 74 68 65 | ficate.authority.launched.by.the |
| aeb00 | 20 45 46 46 2c 20 4d 6f 7a 69 6c 6c 61 2c 20 61 6e 64 20 6f 74 68 65 72 73 20 61 6e 64 20 64 65 | .EFF,.Mozilla,.and.others.and.de |
| aeb20 | 70 6c 6f 79 73 20 69 74 20 74 6f 20 61 20 77 65 62 20 73 65 72 76 65 72 2e 00 57 65 20 63 61 6e | ploys.it.to.a.web.server..We.can |
| aeb40 | 20 61 6c 73 6f 20 63 72 65 61 74 65 20 74 68 65 20 63 65 72 74 69 66 69 63 61 74 65 73 20 75 73 | .also.create.the.certificates.us |
| aeb60 | 69 6e 67 20 43 65 72 74 62 6f 74 20 77 68 69 63 68 20 69 73 20 61 6e 20 65 61 73 79 2d 74 6f 2d | ing.Certbot.which.is.an.easy-to- |
| aeb80 | 75 73 65 20 63 6c 69 65 6e 74 20 74 68 61 74 20 66 65 74 63 68 65 73 20 61 20 63 65 72 74 69 66 | use.client.that.fetches.a.certif |
| aeba0 | 69 63 61 74 65 20 66 72 6f 6d 20 4c 65 74 27 73 20 45 6e 63 72 79 70 74 20 61 6e 20 6f 70 65 6e | icate.from.Let's.Encrypt.an.open |
| aebc0 | 20 63 65 72 74 69 66 69 63 61 74 65 20 61 75 74 68 6f 72 69 74 79 20 6c 61 75 6e 63 68 65 64 20 | .certificate.authority.launched. |
| aebe0 | 62 79 20 74 68 65 20 45 46 46 2c 20 4d 6f 7a 69 6c 6c 61 2c 20 61 6e 64 20 6f 74 68 65 72 73 20 | by.the.EFF,.Mozilla,.and.others. |
| aec00 | 61 6e 64 20 64 65 70 6c 6f 79 73 20 69 74 20 74 6f 20 61 20 77 65 62 20 73 65 72 76 65 72 2e 00 | and.deploys.it.to.a.web.server.. |
| aec20 | 57 65 20 63 61 6e 20 62 75 69 6c 64 20 72 6f 75 74 65 2d 6d 61 70 73 20 66 6f 72 20 69 6d 70 6f | We.can.build.route-maps.for.impo |
| aec40 | 72 74 20 62 61 73 65 64 20 6f 6e 20 74 68 65 73 65 20 73 74 61 74 65 73 2e 20 48 65 72 65 20 69 | rt.based.on.these.states..Here.i |
| aec60 | 73 20 61 20 73 69 6d 70 6c 65 20 52 50 4b 49 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2c 20 77 | s.a.simple.RPKI.configuration,.w |
| aec80 | 68 65 72 65 20 60 72 6f 75 74 69 6e 61 74 6f 72 60 20 69 73 20 74 68 65 20 52 50 4b 49 2d 76 61 | here.`routinator`.is.the.RPKI-va |
| aeca0 | 6c 69 64 61 74 69 6e 67 20 22 63 61 63 68 65 22 20 73 65 72 76 65 72 20 77 69 74 68 20 69 70 20 | lidating."cache".server.with.ip. |
| aecc0 | 60 31 39 32 2e 30 2e 32 2e 31 60 3a 00 57 65 20 63 61 6e 27 74 20 73 75 70 70 6f 72 74 20 61 6c | `192.0.2.1`:.We.can't.support.al |
| aece0 | 6c 20 64 69 73 70 6c 61 79 73 20 66 72 6f 6d 20 74 68 65 20 62 65 67 69 6e 6e 69 6e 67 2e 20 49 | l.displays.from.the.beginning..I |
| aed00 | 66 20 79 6f 75 72 20 64 69 73 70 6c 61 79 20 74 79 70 65 20 69 73 20 6d 69 73 73 69 6e 67 2c 20 | f.your.display.type.is.missing,. |
| aed20 | 70 6c 65 61 73 65 20 63 72 65 61 74 65 20 61 20 66 65 61 74 75 72 65 20 72 65 71 75 65 73 74 20 | please.create.a.feature.request. |
| aed40 | 76 69 61 20 50 68 61 62 72 69 63 61 74 6f 72 5f 2e 00 57 65 20 63 6f 6e 66 69 67 75 72 65 20 61 | via.Phabricator_..We.configure.a |
| aed60 | 20 6e 65 77 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 6e 61 6d 65 64 20 60 60 72 77 60 60 20 66 6f 72 | .new.connection.named.``rw``.for |
| aed80 | 20 72 6f 61 64 2d 77 61 72 72 69 6f 72 2c 20 74 68 61 74 20 69 64 65 6e 74 69 66 69 65 73 20 69 | .road-warrior,.that.identifies.i |
| aeda0 | 74 73 65 6c 66 20 61 73 20 60 60 31 39 32 2e 30 2e 32 2e 31 60 60 20 74 6f 20 74 68 65 20 63 6c | tself.as.``192.0.2.1``.to.the.cl |
| aedc0 | 69 65 6e 74 73 20 61 6e 64 20 75 73 65 73 20 74 68 65 20 60 60 76 79 6f 73 60 60 20 63 65 72 74 | ients.and.uses.the.``vyos``.cert |
| aede0 | 69 66 69 63 61 74 65 20 73 69 67 6e 65 64 20 62 79 20 74 68 65 20 60 43 41 63 65 72 74 5f 43 6c | ificate.signed.by.the.`CAcert_Cl |
| aee00 | 61 73 73 33 5f 52 6f 6f 74 60 60 20 69 6e 74 65 72 6d 65 64 69 61 74 65 20 43 41 2e 20 57 65 20 | ass3_Root``.intermediate.CA..We. |
| aee20 | 73 65 6c 65 63 74 20 6f 75 72 20 70 72 65 76 69 6f 75 73 6c 79 20 73 70 65 63 69 66 69 65 64 20 | select.our.previously.specified. |
| aee40 | 49 4b 45 2f 45 53 50 20 67 72 6f 75 70 73 20 61 6e 64 20 61 6c 73 6f 20 6c 69 6e 6b 20 74 68 65 | IKE/ESP.groups.and.also.link.the |
| aee60 | 20 49 50 20 61 64 64 72 65 73 73 20 70 6f 6f 6c 20 74 6f 20 64 72 61 77 20 61 64 64 72 65 73 73 | .IP.address.pool.to.draw.address |
| aee80 | 65 73 20 66 72 6f 6d 2e 00 57 65 20 63 6f 75 6c 64 20 65 78 70 61 6e 64 20 6f 6e 20 74 68 69 73 | es.from..We.could.expand.on.this |
| aeea0 | 20 61 6e 64 20 61 6c 73 6f 20 64 65 6e 79 20 6c 69 6e 6b 20 6c 6f 63 61 6c 20 61 6e 64 20 6d 75 | .and.also.deny.link.local.and.mu |
| aeec0 | 6c 74 69 63 61 73 74 20 69 6e 20 74 68 65 20 72 75 6c 65 20 32 30 20 61 63 74 69 6f 6e 20 64 65 | lticast.in.the.rule.20.action.de |
| aeee0 | 6e 79 2e 00 57 65 20 64 6f 20 6e 6f 74 20 68 61 76 65 20 43 4c 49 20 6e 6f 64 65 73 20 66 6f 72 | ny..We.do.not.have.CLI.nodes.for |
| aef00 | 20 65 76 65 72 79 20 73 69 6e 67 6c 65 20 4f 70 65 6e 56 50 4e 20 6f 70 74 69 6f 6e 2e 20 49 66 | .every.single.OpenVPN.option..If |
| aef20 | 20 61 6e 20 6f 70 74 69 6f 6e 20 69 73 20 6d 69 73 73 69 6e 67 2c 20 61 20 66 65 61 74 75 72 65 | .an.option.is.missing,.a.feature |
| aef40 | 20 72 65 71 75 65 73 74 20 73 68 6f 75 6c 64 20 62 65 20 6f 70 65 6e 65 64 20 61 74 20 50 68 61 | .request.should.be.opened.at.Pha |
| aef60 | 62 72 69 63 61 74 6f 72 5f 20 73 6f 20 61 6c 6c 20 75 73 65 72 73 20 63 61 6e 20 62 65 6e 65 66 | bricator_.so.all.users.can.benef |
| aef80 | 69 74 20 66 72 6f 6d 20 69 74 20 28 73 65 65 20 3a 72 65 66 3a 60 69 73 73 75 65 73 5f 66 65 61 | it.from.it.(see.:ref:`issues_fea |
| aefa0 | 74 75 72 65 73 60 29 2e 00 57 65 20 64 6f 6e 27 74 20 72 65 63 6f 6d 65 6e 64 20 74 6f 20 75 73 | tures`)..We.don't.recomend.to.us |
| aefc0 | 65 20 61 72 67 75 6d 65 6e 74 73 2e 20 55 73 69 6e 67 20 65 6e 76 69 72 6f 6e 6d 65 6e 74 73 20 | e.arguments..Using.environments. |
| aefe0 | 69 73 20 6d 6f 72 65 20 70 72 65 66 66 65 72 65 62 6c 65 2e 00 57 65 20 67 65 6e 65 72 61 74 65 | is.more.preffereble..We.generate |
| af000 | 20 61 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 70 72 6f 66 69 6c 65 20 75 73 65 64 20 62 79 20 57 69 | .a.connection.profile.used.by.Wi |
| af020 | 6e 64 6f 77 73 20 63 6c 69 65 6e 74 73 20 74 68 61 74 20 77 69 6c 6c 20 63 6f 6e 6e 65 63 74 20 | ndows.clients.that.will.connect. |
| af040 | 74 6f 20 74 68 65 20 22 72 77 22 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 6f 6e 20 6f 75 72 20 56 79 | to.the."rw".connection.on.our.Vy |
| af060 | 4f 53 20 73 65 72 76 65 72 20 6f 6e 20 74 68 65 20 56 50 4e 20 73 65 72 76 65 72 73 20 49 50 20 | OS.server.on.the.VPN.servers.IP. |
| af080 | 61 64 64 72 65 73 73 2f 66 71 64 6e 20 60 76 70 6e 2e 76 79 6f 73 2e 6e 65 74 60 2e 00 57 65 20 | address/fqdn.`vpn.vyos.net`..We. |
| af0a0 | 6c 69 73 74 65 6e 20 6f 6e 20 70 6f 72 74 20 35 31 38 32 30 00 57 65 20 6e 65 65 64 20 74 6f 20 | listen.on.port.51820.We.need.to. |
| af0c0 | 67 65 6e 65 72 61 74 65 20 74 68 65 20 63 65 72 74 69 66 69 63 61 74 65 20 77 68 69 63 68 20 61 | generate.the.certificate.which.a |
| af0e0 | 75 74 68 65 6e 74 69 63 61 74 65 73 20 75 73 65 72 73 20 77 68 6f 20 61 74 74 65 6d 70 74 20 74 | uthenticates.users.who.attempt.t |
| af100 | 6f 20 61 63 63 65 73 73 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 72 65 73 6f 75 72 63 65 20 74 68 | o.access.the.network.resource.th |
| af120 | 72 6f 75 67 68 20 74 68 65 20 53 53 4c 20 56 50 4e 20 74 75 6e 6e 65 6c 73 2e 20 54 68 65 20 66 | rough.the.SSL.VPN.tunnels..The.f |
| af140 | 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 73 20 77 69 6c 6c 20 63 72 65 61 74 65 20 61 20 | ollowing.commands.will.create.a. |
| af160 | 73 65 6c 66 20 73 69 67 6e 65 64 20 63 65 72 74 69 66 69 63 61 74 65 73 20 61 6e 64 20 77 69 6c | self.signed.certificates.and.wil |
| af180 | 6c 20 62 65 20 73 74 6f 72 65 64 20 69 6e 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 00 57 65 | l.be.stored.in.configuration:.We |
| af1a0 | 20 6e 6f 77 20 75 74 69 6c 69 7a 65 20 60 74 75 6e 65 64 60 20 66 6f 72 20 64 79 6e 61 6d 69 63 | .now.utilize.`tuned`.for.dynamic |
| af1c0 | 20 72 65 73 6f 75 72 63 65 20 62 61 6c 61 6e 63 69 6e 67 20 62 61 73 65 64 20 6f 6e 20 70 72 6f | .resource.balancing.based.on.pro |
| af1e0 | 66 69 6c 65 73 2e 00 57 65 20 6f 6e 6c 79 20 61 6c 6c 6f 77 20 74 68 65 20 31 39 32 2e 31 36 38 | files..We.only.allow.the.192.168 |
| af200 | 2e 32 2e 30 2f 32 34 20 73 75 62 6e 65 74 20 74 6f 20 74 72 61 76 65 6c 20 6f 76 65 72 20 74 68 | .2.0/24.subnet.to.travel.over.th |
| af220 | 65 20 74 75 6e 6e 65 6c 00 57 65 20 6f 6e 6c 79 20 6e 65 65 64 20 61 20 73 69 6e 67 6c 65 20 73 | e.tunnel.We.only.need.a.single.s |
| af240 | 74 65 70 20 66 6f 72 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 3a 00 57 65 20 72 6f 75 74 65 | tep.for.this.interface:.We.route |
| af260 | 20 61 6c 6c 20 74 72 61 66 66 69 63 20 66 6f 72 20 74 68 65 20 31 39 32 2e 31 36 38 2e 32 2e 30 | .all.traffic.for.the.192.168.2.0 |
| af280 | 2f 32 34 20 6e 65 74 77 6f 72 6b 20 74 6f 20 69 6e 74 65 72 66 61 63 65 20 60 77 67 30 31 60 00 | /24.network.to.interface.`wg01`. |
| af2a0 | 57 65 20 75 73 65 20 61 20 76 6f 6e 74 61 69 6e 65 72 20 70 72 6f 76 69 64 69 6e 67 20 74 68 65 | We.use.a.vontainer.providing.the |
| af2c0 | 20 54 41 43 41 43 53 20 73 65 72 76 65 20 72 69 6e 20 74 68 69 73 20 65 78 61 6d 70 6c 65 2e 00 | .TACACS.serve.rin.this.example.. |
| af2e0 | 57 65 20 77 69 6c 6c 20 6f 6e 6c 79 20 61 63 63 65 70 74 20 74 72 61 66 66 69 63 20 63 6f 6d 69 | We.will.only.accept.traffic.comi |
| af300 | 6e 67 20 66 72 6f 6d 20 69 6e 74 65 72 66 61 63 65 20 65 74 68 30 2c 20 70 72 6f 74 6f 63 6f 6c | ng.from.interface.eth0,.protocol |
| af320 | 20 74 63 70 20 61 6e 64 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 70 6f 72 74 20 31 31 32 32 2e 20 | .tcp.and.destination.port.1122.. |
| af340 | 41 6c 6c 20 6f 74 68 65 72 20 74 72 61 66 66 69 63 20 74 72 65 73 70 61 73 73 69 6e 67 20 74 68 | All.other.traffic.trespassing.th |
| af360 | 65 20 72 6f 75 74 65 72 20 73 68 6f 75 6c 64 20 62 65 20 62 6c 6f 63 6b 65 64 2e 00 57 65 20 77 | e.router.should.be.blocked..We.w |
| af380 | 69 6c 6c 20 6f 6e 6c 79 20 61 63 63 65 70 74 20 74 72 61 66 66 69 63 20 63 6f 6d 6d 69 6e 67 20 | ill.only.accept.traffic.comming. |
| af3a0 | 66 72 6f 6d 20 69 6e 74 65 72 66 61 63 65 20 65 74 68 30 2c 20 70 72 6f 74 6f 63 6f 6c 20 74 63 | from.interface.eth0,.protocol.tc |
| af3c0 | 70 20 61 6e 64 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 70 6f 72 74 20 31 31 32 32 2e 20 41 6c 6c | p.and.destination.port.1122..All |
| af3e0 | 20 6f 74 68 65 72 20 74 72 61 66 66 69 63 20 74 72 61 73 70 61 73 73 69 6e 67 20 74 68 65 20 72 | .other.traffic.traspassing.the.r |
| af400 | 6f 75 74 65 72 20 73 68 6f 75 6c 64 20 62 65 20 62 6c 6f 63 6b 65 64 2e 00 57 65 27 6c 6c 20 63 | outer.should.be.blocked..We'll.c |
| af420 | 6f 6e 66 69 67 75 72 65 20 4f 70 65 6e 56 50 4e 20 75 73 69 6e 67 20 73 65 6c 66 2d 73 69 67 6e | onfigure.OpenVPN.using.self-sign |
| af440 | 65 64 20 63 65 72 74 69 66 69 63 61 74 65 73 2c 20 61 6e 64 20 74 68 65 6e 20 64 69 73 63 75 73 | ed.certificates,.and.then.discus |
| af460 | 73 20 74 68 65 20 6c 65 67 61 63 79 20 70 72 65 2d 73 68 61 72 65 64 20 6b 65 79 20 6d 6f 64 65 | s.the.legacy.pre-shared.key.mode |
| af480 | 2e 00 57 65 27 6c 6c 20 75 73 65 20 74 68 65 20 49 4b 45 20 61 6e 64 20 45 53 50 20 67 72 6f 75 | ..We'll.use.the.IKE.and.ESP.grou |
| af4a0 | 70 73 20 63 72 65 61 74 65 64 20 61 62 6f 76 65 20 66 6f 72 20 74 68 69 73 20 56 50 4e 2e 20 42 | ps.created.above.for.this.VPN..B |
| af4c0 | 65 63 61 75 73 65 20 77 65 20 6e 65 65 64 20 61 63 63 65 73 73 20 74 6f 20 32 20 64 69 66 66 65 | ecause.we.need.access.to.2.diffe |
| af4e0 | 72 65 6e 74 20 73 75 62 6e 65 74 73 20 6f 6e 20 74 68 65 20 66 61 72 20 73 69 64 65 2c 20 77 65 | rent.subnets.on.the.far.side,.we |
| af500 | 20 77 69 6c 6c 20 6e 65 65 64 20 74 77 6f 20 64 69 66 66 65 72 65 6e 74 20 74 75 6e 6e 65 6c 73 | .will.need.two.different.tunnels |
| af520 | 2e 20 49 66 20 79 6f 75 20 63 68 61 6e 67 65 64 20 74 68 65 20 6e 61 6d 65 73 20 6f 66 20 74 68 | ..If.you.changed.the.names.of.th |
| af540 | 65 20 45 53 50 20 67 72 6f 75 70 20 61 6e 64 20 49 4b 45 20 67 72 6f 75 70 20 69 6e 20 74 68 65 | e.ESP.group.and.IKE.group.in.the |
| af560 | 20 70 72 65 76 69 6f 75 73 20 73 74 65 70 2c 20 6d 61 6b 65 20 73 75 72 65 20 79 6f 75 20 75 73 | .previous.step,.make.sure.you.us |
| af580 | 65 20 74 68 65 20 63 6f 72 72 65 63 74 20 6e 61 6d 65 73 20 68 65 72 65 20 74 6f 6f 2e 00 57 65 | e.the.correct.names.here.too..We |
| af5a0 | 62 20 50 72 6f 78 79 20 41 75 74 6f 64 69 73 63 6f 76 65 72 79 20 28 57 50 41 44 29 20 55 52 4c | b.Proxy.Autodiscovery.(WPAD).URL |
| af5c0 | 00 57 65 62 70 72 6f 78 79 00 57 65 62 73 65 72 76 65 72 20 73 68 6f 75 6c 64 20 6c 69 73 74 65 | .Webproxy.Webserver.should.liste |
| af5e0 | 6e 20 6f 6e 20 73 70 65 63 69 66 69 65 64 20 70 6f 72 74 2e 00 57 65 62 73 65 72 76 65 72 20 73 | n.on.specified.port..Webserver.s |
| af600 | 68 6f 75 6c 64 20 6f 6e 6c 79 20 6c 69 73 74 65 6e 20 6f 6e 20 73 70 65 63 69 66 69 65 64 20 49 | hould.only.listen.on.specified.I |
| af620 | 50 20 61 64 64 72 65 73 73 00 57 68 65 6e 20 4c 44 50 20 69 73 20 77 6f 72 6b 69 6e 67 2c 20 79 | P.address.When.LDP.is.working,.y |
| af640 | 6f 75 20 77 69 6c 6c 20 62 65 20 61 62 6c 65 20 74 6f 20 73 65 65 20 6c 61 62 65 6c 20 69 6e 66 | ou.will.be.able.to.see.label.inf |
| af660 | 6f 72 6d 61 74 69 6f 6e 20 69 6e 20 74 68 65 20 6f 75 74 63 6f 6d 65 20 6f 66 20 60 60 73 68 6f | ormation.in.the.outcome.of.``sho |
| af680 | 77 20 69 70 20 72 6f 75 74 65 60 60 2e 20 42 65 73 69 64 65 73 20 74 68 61 74 20 69 6e 66 6f 72 | w.ip.route``..Besides.that.infor |
| af6a0 | 6d 61 74 69 6f 6e 2c 20 74 68 65 72 65 20 61 72 65 20 61 6c 73 6f 20 73 70 65 63 69 66 69 63 20 | mation,.there.are.also.specific. |
| af6c0 | 2a 73 68 6f 77 2a 20 63 6f 6d 6d 61 6e 64 73 20 66 6f 72 20 4c 44 50 3a 00 57 68 65 6e 20 50 49 | *show*.commands.for.LDP:.When.PI |
| af6e0 | 4d 20 72 65 63 65 69 76 65 73 20 61 20 72 65 67 69 73 74 65 72 20 70 61 63 6b 65 74 20 74 68 65 | M.receives.a.register.packet.the |
| af700 | 20 73 6f 75 72 63 65 20 6f 66 20 74 68 65 20 70 61 63 6b 65 74 20 77 69 6c 6c 20 62 65 20 63 6f | .source.of.the.packet.will.be.co |
| af720 | 6d 70 61 72 65 64 20 74 6f 20 74 68 65 20 70 72 65 66 69 78 2d 6c 69 73 74 20 73 70 65 63 69 66 | mpared.to.the.prefix-list.specif |
| af740 | 69 65 64 2c 20 61 6e 64 20 69 66 20 61 20 70 65 72 6d 69 74 20 69 73 20 72 65 63 65 69 76 65 64 | ied,.and.if.a.permit.is.received |
| af760 | 20 6e 6f 72 6d 61 6c 20 70 72 6f 63 65 73 73 69 6e 67 20 63 6f 6e 74 69 6e 75 65 73 2e 20 49 66 | .normal.processing.continues..If |
| af780 | 20 61 20 64 65 6e 79 20 69 73 20 72 65 74 75 72 6e 65 64 20 66 6f 72 20 74 68 65 20 73 6f 75 72 | .a.deny.is.returned.for.the.sour |
| af7a0 | 63 65 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 72 65 67 69 73 74 65 72 20 70 61 63 6b 65 | ce.address.of.the.register.packe |
| af7c0 | 74 20 61 20 72 65 67 69 73 74 65 72 20 73 74 6f 70 20 6d 65 73 73 61 67 65 20 69 73 20 73 65 6e | t.a.register.stop.message.is.sen |
| af7e0 | 74 20 74 6f 20 74 68 65 20 73 6f 75 72 63 65 2e 00 57 68 65 6e 20 56 52 46 73 20 61 72 65 20 75 | t.to.the.source..When.VRFs.are.u |
| af800 | 73 65 64 20 69 74 20 69 73 20 6e 6f 74 20 6f 6e 6c 79 20 6d 61 6e 64 61 74 6f 72 79 20 74 6f 20 | sed.it.is.not.only.mandatory.to. |
| af820 | 63 72 65 61 74 65 20 61 20 56 52 46 20 62 75 74 20 61 6c 73 6f 20 74 68 65 20 56 52 46 20 69 74 | create.a.VRF.but.also.the.VRF.it |
| af840 | 73 65 6c 66 20 6e 65 65 64 73 20 74 6f 20 62 65 20 61 73 73 69 67 6e 65 64 20 74 6f 20 61 6e 20 | self.needs.to.be.assigned.to.an. |
| af860 | 69 6e 74 65 72 66 61 63 65 2e 00 57 68 65 6e 20 61 20 60 60 63 75 73 74 6f 6d 60 60 20 44 79 6e | interface..When.a.``custom``.Dyn |
| af880 | 44 4e 53 20 70 72 6f 76 69 64 65 72 20 69 73 20 75 73 65 64 20 74 68 65 20 60 3c 73 65 72 76 65 | DNS.provider.is.used.the.`<serve |
| af8a0 | 72 3e 60 20 77 68 65 72 65 20 75 70 64 61 74 65 20 72 65 71 75 65 73 74 73 20 61 72 65 20 62 65 | r>`.where.update.requests.are.be |
| af8c0 | 69 6e 67 20 73 65 6e 74 20 74 6f 20 6d 75 73 74 20 62 65 20 73 70 65 63 69 66 69 65 64 2e 00 57 | ing.sent.to.must.be.specified..W |
| af8e0 | 68 65 6e 20 61 20 60 60 63 75 73 74 6f 6d 60 60 20 44 79 6e 44 4e 53 20 70 72 6f 76 69 64 65 72 | hen.a.``custom``.DynDNS.provider |
| af900 | 20 69 73 20 75 73 65 64 20 74 68 65 20 70 72 6f 74 6f 63 6f 6c 20 75 73 65 64 20 66 6f 72 20 63 | .is.used.the.protocol.used.for.c |
| af920 | 6f 6d 6d 75 6e 69 63 61 74 69 6e 67 20 74 6f 20 74 68 65 20 70 72 6f 76 69 64 65 72 20 6d 75 73 | ommunicating.to.the.provider.mus |
| af940 | 74 20 62 65 20 73 70 65 63 69 66 69 65 64 20 75 6e 64 65 72 20 60 3c 70 72 6f 74 6f 63 6f 6c 3e | t.be.specified.under.`<protocol> |
| af960 | 60 2e 20 53 65 65 20 74 68 65 20 65 6d 62 65 64 64 65 64 20 63 6f 6d 70 6c 65 74 69 6f 6e 20 68 | `..See.the.embedded.completion.h |
| af980 | 65 6c 70 65 72 20 66 6f 72 20 61 76 61 69 6c 61 62 6c 65 20 70 72 6f 74 6f 63 6f 6c 73 2e 00 57 | elper.for.available.protocols..W |
| af9a0 | 68 65 6e 20 61 20 60 60 63 75 73 74 6f 6d 60 60 20 44 79 6e 44 4e 53 20 70 72 6f 76 69 64 65 72 | hen.a.``custom``.DynDNS.provider |
| af9c0 | 20 69 73 20 75 73 65 64 2c 20 74 68 65 20 70 72 6f 74 6f 63 6f 6c 20 75 73 65 64 20 66 6f 72 20 | .is.used,.the.protocol.used.for. |
| af9e0 | 63 6f 6d 6d 75 6e 69 63 61 74 69 6e 67 20 74 6f 20 74 68 65 20 70 72 6f 76 69 64 65 72 20 6d 75 | communicating.to.the.provider.mu |
| afa00 | 73 74 20 62 65 20 73 70 65 63 69 66 69 65 64 20 75 6e 64 65 72 20 60 3c 70 72 6f 74 6f 63 6f 6c | st.be.specified.under.`<protocol |
| afa20 | 3e 60 2e 20 53 65 65 20 74 68 65 20 65 6d 62 65 64 64 65 64 20 63 6f 6d 70 6c 65 74 69 6f 6e 20 | >`..See.the.embedded.completion. |
| afa40 | 68 65 6c 70 65 72 20 77 68 65 6e 20 65 6e 74 65 72 69 6e 67 20 61 62 6f 76 65 20 63 6f 6d 6d 61 | helper.when.entering.above.comma |
| afa60 | 6e 64 20 66 6f 72 20 61 76 61 69 6c 61 62 6c 65 20 70 72 6f 74 6f 63 6f 6c 73 2e 00 57 68 65 6e | nd.for.available.protocols..When |
| afa80 | 20 61 20 66 61 69 6c 6f 76 65 72 20 6f 63 63 75 72 73 20 69 6e 20 61 63 74 69 76 65 2d 62 61 63 | .a.failover.occurs.in.active-bac |
| afaa0 | 6b 75 70 20 6d 6f 64 65 2c 20 62 6f 6e 64 69 6e 67 20 77 69 6c 6c 20 69 73 73 75 65 20 6f 6e 65 | kup.mode,.bonding.will.issue.one |
| afac0 | 20 6f 72 20 6d 6f 72 65 20 67 72 61 74 75 69 74 6f 75 73 20 41 52 50 73 20 6f 6e 20 74 68 65 20 | .or.more.gratuitous.ARPs.on.the. |
| afae0 | 6e 65 77 6c 79 20 61 63 74 69 76 65 20 73 6c 61 76 65 2e 20 4f 6e 65 20 67 72 61 74 75 69 74 6f | newly.active.slave..One.gratuito |
| afb00 | 75 73 20 41 52 50 20 69 73 20 69 73 73 75 65 64 20 66 6f 72 20 74 68 65 20 62 6f 6e 64 69 6e 67 | us.ARP.is.issued.for.the.bonding |
| afb20 | 20 6d 61 73 74 65 72 20 69 6e 74 65 72 66 61 63 65 20 61 6e 64 20 65 61 63 68 20 56 4c 41 4e 20 | .master.interface.and.each.VLAN. |
| afb40 | 69 6e 74 65 72 66 61 63 65 73 20 63 6f 6e 66 69 67 75 72 65 64 20 61 62 6f 76 65 20 69 74 2c 20 | interfaces.configured.above.it,. |
| afb60 | 70 72 6f 76 69 64 65 64 20 74 68 61 74 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 68 61 73 20 | provided.that.the.interface.has. |
| afb80 | 61 74 20 6c 65 61 73 74 20 6f 6e 65 20 49 50 20 61 64 64 72 65 73 73 20 63 6f 6e 66 69 67 75 72 | at.least.one.IP.address.configur |
| afba0 | 65 64 2e 20 47 72 61 74 75 69 74 6f 75 73 20 41 52 50 73 20 69 73 73 75 65 64 20 66 6f 72 20 56 | ed..Gratuitous.ARPs.issued.for.V |
| afbc0 | 4c 41 4e 20 69 6e 74 65 72 66 61 63 65 73 20 61 72 65 20 74 61 67 67 65 64 20 77 69 74 68 20 74 | LAN.interfaces.are.tagged.with.t |
| afbe0 | 68 65 20 61 70 70 72 6f 70 72 69 61 74 65 20 56 4c 41 4e 20 69 64 2e 00 57 68 65 6e 20 61 20 6c | he.appropriate.VLAN.id..When.a.l |
| afc00 | 69 6e 6b 20 69 73 20 72 65 63 6f 6e 6e 65 63 74 65 64 20 6f 72 20 61 20 6e 65 77 20 73 6c 61 76 | ink.is.reconnected.or.a.new.slav |
| afc20 | 65 20 6a 6f 69 6e 73 20 74 68 65 20 62 6f 6e 64 20 74 68 65 20 72 65 63 65 69 76 65 20 74 72 61 | e.joins.the.bond.the.receive.tra |
| afc40 | 66 66 69 63 20 69 73 20 72 65 64 69 73 74 72 69 62 75 74 65 64 20 61 6d 6f 6e 67 20 61 6c 6c 20 | ffic.is.redistributed.among.all. |
| afc60 | 61 63 74 69 76 65 20 73 6c 61 76 65 73 20 69 6e 20 74 68 65 20 62 6f 6e 64 20 62 79 20 69 6e 69 | active.slaves.in.the.bond.by.ini |
| afc80 | 74 69 61 74 69 6e 67 20 41 52 50 20 52 65 70 6c 69 65 73 20 77 69 74 68 20 74 68 65 20 73 65 6c | tiating.ARP.Replies.with.the.sel |
| afca0 | 65 63 74 65 64 20 4d 41 43 20 61 64 64 72 65 73 73 20 74 6f 20 65 61 63 68 20 6f 66 20 74 68 65 | ected.MAC.address.to.each.of.the |
| afcc0 | 20 63 6c 69 65 6e 74 73 2e 20 54 68 65 20 75 70 64 65 6c 61 79 20 70 61 72 61 6d 65 74 65 72 20 | .clients..The.updelay.parameter. |
| afce0 | 28 64 65 74 61 69 6c 65 64 20 62 65 6c 6f 77 29 20 6d 75 73 74 20 62 65 20 73 65 74 20 74 6f 20 | (detailed.below).must.be.set.to. |
| afd00 | 61 20 76 61 6c 75 65 20 65 71 75 61 6c 20 6f 72 20 67 72 65 61 74 65 72 20 74 68 61 6e 20 74 68 | a.value.equal.or.greater.than.th |
| afd20 | 65 20 73 77 69 74 63 68 27 73 20 66 6f 72 77 61 72 64 69 6e 67 20 64 65 6c 61 79 20 73 6f 20 74 | e.switch's.forwarding.delay.so.t |
| afd40 | 68 61 74 20 74 68 65 20 41 52 50 20 52 65 70 6c 69 65 73 20 73 65 6e 74 20 74 6f 20 74 68 65 20 | hat.the.ARP.Replies.sent.to.the. |
| afd60 | 70 65 65 72 73 20 77 69 6c 6c 20 6e 6f 74 20 62 65 20 62 6c 6f 63 6b 65 64 20 62 79 20 74 68 65 | peers.will.not.be.blocked.by.the |
| afd80 | 20 73 77 69 74 63 68 2e 00 57 68 65 6e 20 61 20 70 61 63 6b 65 74 20 69 73 20 74 6f 20 62 65 20 | .switch..When.a.packet.is.to.be. |
| afda0 | 73 65 6e 74 2c 20 69 74 20 77 69 6c 6c 20 68 61 76 65 20 74 6f 20 67 6f 20 74 68 72 6f 75 67 68 | sent,.it.will.have.to.go.through |
| afdc0 | 20 74 68 61 74 20 71 75 65 75 65 2c 20 73 6f 20 74 68 65 20 70 61 63 6b 65 74 20 77 69 6c 6c 20 | .that.queue,.so.the.packet.will. |
| afde0 | 62 65 20 70 6c 61 63 65 64 20 61 74 20 74 68 65 20 74 61 69 6c 20 6f 66 20 69 74 2e 20 57 68 65 | be.placed.at.the.tail.of.it..Whe |
| afe00 | 6e 20 74 68 65 20 70 61 63 6b 65 74 20 63 6f 6d 70 6c 65 74 65 6c 79 20 67 6f 65 73 20 74 68 72 | n.the.packet.completely.goes.thr |
| afe20 | 6f 75 67 68 20 69 74 2c 20 69 74 20 77 69 6c 6c 20 62 65 20 64 65 71 75 65 75 65 64 20 65 6d 70 | ough.it,.it.will.be.dequeued.emp |
| afe40 | 74 79 69 6e 67 20 69 74 73 20 70 6c 61 63 65 20 69 6e 20 74 68 65 20 71 75 65 75 65 20 61 6e 64 | tying.its.place.in.the.queue.and |
| afe60 | 20 62 65 69 6e 67 20 65 76 65 6e 74 75 61 6c 6c 79 20 68 61 6e 64 65 64 20 74 6f 20 74 68 65 20 | .being.eventually.handed.to.the. |
| afe80 | 4e 49 43 20 74 6f 20 62 65 20 61 63 74 75 61 6c 6c 79 20 73 65 6e 74 20 6f 75 74 2e 00 57 68 65 | NIC.to.be.actually.sent.out..Whe |
| afea0 | 6e 20 61 20 70 65 65 72 20 72 65 63 65 69 76 65 73 20 61 20 6d 61 72 74 69 61 6e 20 6e 65 78 74 | n.a.peer.receives.a.martian.next |
| afec0 | 68 6f 70 20 61 73 20 70 61 72 74 20 6f 66 20 74 68 65 20 4e 4c 52 49 20 66 6f 72 20 61 20 72 6f | hop.as.part.of.the.NLRI.for.a.ro |
| afee0 | 75 74 65 20 70 65 72 6d 69 74 20 74 68 65 20 6e 65 78 74 68 6f 70 20 74 6f 20 62 65 20 75 73 65 | ute.permit.the.nexthop.to.be.use |
| aff00 | 64 20 61 73 20 73 75 63 68 2c 20 69 6e 73 74 65 61 64 20 6f 66 20 72 65 6a 65 63 74 69 6e 67 20 | d.as.such,.instead.of.rejecting. |
| aff20 | 61 6e 64 20 72 65 73 65 74 74 69 6e 67 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 57 68 | and.resetting.the.connection..Wh |
| aff40 | 65 6e 20 61 20 72 6f 75 74 65 20 66 61 69 6c 73 2c 20 61 20 72 6f 75 74 69 6e 67 20 75 70 64 61 | en.a.route.fails,.a.routing.upda |
| aff60 | 74 65 20 69 73 20 73 65 6e 74 20 74 6f 20 77 69 74 68 64 72 61 77 20 74 68 65 20 72 6f 75 74 65 | te.is.sent.to.withdraw.the.route |
| aff80 | 20 66 72 6f 6d 20 74 68 65 20 6e 65 74 77 6f 72 6b 27 73 20 72 6f 75 74 69 6e 67 20 74 61 62 6c | .from.the.network's.routing.tabl |
| affa0 | 65 73 2e 20 57 68 65 6e 20 74 68 65 20 72 6f 75 74 65 20 69 73 20 72 65 2d 65 6e 61 62 6c 65 64 | es..When.the.route.is.re-enabled |
| affc0 | 2c 20 74 68 65 20 63 68 61 6e 67 65 20 69 6e 20 61 76 61 69 6c 61 62 69 6c 69 74 79 20 69 73 20 | ,.the.change.in.availability.is. |
| affe0 | 61 6c 73 6f 20 61 64 76 65 72 74 69 73 65 64 2e 20 41 20 72 6f 75 74 65 20 74 68 61 74 20 63 6f | also.advertised..A.route.that.co |
| b0000 | 6e 74 69 6e 75 61 6c 6c 79 20 66 61 69 6c 73 20 61 6e 64 20 72 65 74 75 72 6e 73 20 72 65 71 75 | ntinually.fails.and.returns.requ |
| b0020 | 69 72 65 73 20 61 20 67 72 65 61 74 20 64 65 61 6c 20 6f 66 20 6e 65 74 77 6f 72 6b 20 74 72 61 | ires.a.great.deal.of.network.tra |
| b0040 | 66 66 69 63 20 74 6f 20 75 70 64 61 74 65 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 61 62 6f 75 74 | ffic.to.update.the.network.about |
| b0060 | 20 74 68 65 20 72 6f 75 74 65 27 73 20 73 74 61 74 75 73 2e 00 57 68 65 6e 20 61 64 64 69 6e 67 | .the.route's.status..When.adding |
| b0080 | 20 49 50 76 36 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 65 78 63 68 61 6e | .IPv6.routing.information.exchan |
| b00a0 | 67 65 20 66 65 61 74 75 72 65 20 74 6f 20 42 47 50 2e 20 54 68 65 72 65 20 77 65 72 65 20 73 6f | ge.feature.to.BGP..There.were.so |
| b00c0 | 6d 65 20 70 72 6f 70 6f 73 61 6c 73 2e 20 3a 61 62 62 72 3a 60 49 45 54 46 20 28 49 6e 74 65 72 | me.proposals..:abbr:`IETF.(Inter |
| b00e0 | 6e 65 74 20 45 6e 67 69 6e 65 65 72 69 6e 67 20 54 61 73 6b 20 46 6f 72 63 65 29 60 20 3a 61 62 | net.Engineering.Task.Force)`.:ab |
| b0100 | 62 72 3a 60 49 44 52 20 28 49 6e 74 65 72 20 44 6f 6d 61 69 6e 20 52 6f 75 74 69 6e 67 29 60 20 | br:`IDR.(Inter.Domain.Routing)`. |
| b0120 | 61 64 6f 70 74 65 64 20 61 20 70 72 6f 70 6f 73 61 6c 20 63 61 6c 6c 65 64 20 4d 75 6c 74 69 70 | adopted.a.proposal.called.Multip |
| b0140 | 72 6f 74 6f 63 6f 6c 20 45 78 74 65 6e 73 69 6f 6e 20 66 6f 72 20 42 47 50 2e 20 54 68 65 20 73 | rotocol.Extension.for.BGP..The.s |
| b0160 | 70 65 63 69 66 69 63 61 74 69 6f 6e 20 69 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 | pecification.is.described.in.:rf |
| b0180 | 63 3a 60 32 32 38 33 60 2e 20 54 68 65 20 70 72 6f 74 6f 63 6f 6c 20 64 6f 65 73 20 6e 6f 74 20 | c:`2283`..The.protocol.does.not. |
| b01a0 | 64 65 66 69 6e 65 20 6e 65 77 20 70 72 6f 74 6f 63 6f 6c 73 2e 20 49 74 20 64 65 66 69 6e 65 73 | define.new.protocols..It.defines |
| b01c0 | 20 6e 65 77 20 61 74 74 72 69 62 75 74 65 73 20 74 6f 20 65 78 69 73 74 69 6e 67 20 42 47 50 2e | .new.attributes.to.existing.BGP. |
| b01e0 | 20 57 68 65 6e 20 69 74 20 69 73 20 75 73 65 64 20 65 78 63 68 61 6e 67 69 6e 67 20 49 50 76 36 | .When.it.is.used.exchanging.IPv6 |
| b0200 | 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 69 74 20 69 73 20 63 61 6c 6c 65 | .routing.information.it.is.calle |
| b0220 | 64 20 42 47 50 2d 34 2b 2e 20 57 68 65 6e 20 69 74 20 69 73 20 75 73 65 64 20 66 6f 72 20 65 78 | d.BGP-4+..When.it.is.used.for.ex |
| b0240 | 63 68 61 6e 67 69 6e 67 20 6d 75 6c 74 69 63 61 73 74 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f 72 | changing.multicast.routing.infor |
| b0260 | 6d 61 74 69 6f 6e 20 69 74 20 69 73 20 63 61 6c 6c 65 64 20 4d 42 47 50 2e 00 57 68 65 6e 20 61 | mation.it.is.called.MBGP..When.a |
| b0280 | 6c 6c 20 74 68 65 20 75 6e 64 65 72 6c 61 79 20 6c 69 6e 6b 73 20 67 6f 20 64 6f 77 6e 20 74 68 | ll.the.underlay.links.go.down.th |
| b02a0 | 65 20 50 45 20 6e 6f 20 6c 6f 6e 67 65 72 20 68 61 73 20 61 63 63 65 73 73 20 74 6f 20 74 68 65 | e.PE.no.longer.has.access.to.the |
| b02c0 | 20 56 78 4c 41 4e 20 2b 6f 76 65 72 6c 61 79 2e 20 54 6f 20 70 72 65 76 65 6e 74 20 62 6c 61 63 | .VxLAN.+overlay..To.prevent.blac |
| b02e0 | 6b 68 6f 6c 69 6e 67 20 6f 66 20 74 72 61 66 66 69 63 20 74 68 65 20 73 65 72 76 65 72 2f 45 53 | kholing.of.traffic.the.server/ES |
| b0300 | 20 6c 69 6e 6b 73 20 61 72 65 20 70 72 6f 74 6f 64 6f 77 6e 65 64 20 6f 6e 20 74 68 65 20 50 45 | .links.are.protodowned.on.the.PE |
| b0320 | 2e 00 57 68 65 6e 20 61 6e 20 61 75 74 68 6f 72 69 74 61 74 69 76 65 20 73 65 72 76 65 72 20 64 | ..When.an.authoritative.server.d |
| b0340 | 6f 65 73 20 6e 6f 74 20 61 6e 73 77 65 72 20 61 20 71 75 65 72 79 20 6f 72 20 73 65 6e 64 73 20 | oes.not.answer.a.query.or.sends. |
| b0360 | 61 20 72 65 70 6c 79 20 74 68 65 20 72 65 63 75 72 73 6f 72 20 64 6f 65 73 20 6e 6f 74 20 6c 69 | a.reply.the.recursor.does.not.li |
| b0380 | 6b 65 2c 20 69 74 20 69 73 20 74 68 72 6f 74 74 6c 65 64 2e 20 41 6e 79 20 73 65 72 76 65 72 73 | ke,.it.is.throttled..Any.servers |
| b03a0 | 20 6d 61 74 63 68 69 6e 67 20 74 68 65 20 73 75 70 70 6c 69 65 64 20 6e 65 74 6d 61 73 6b 73 20 | .matching.the.supplied.netmasks. |
| b03c0 | 77 69 6c 6c 20 6e 65 76 65 72 20 62 65 20 74 68 72 6f 74 74 6c 65 64 2e 00 57 68 65 6e 20 63 6f | will.never.be.throttled..When.co |
| b03e0 | 6e 66 69 67 75 72 65 64 2c 20 50 50 50 6f 45 20 77 69 6c 6c 20 63 72 65 61 74 65 20 74 68 65 20 | nfigured,.PPPoE.will.create.the. |
| b0400 | 6e 65 63 65 73 73 61 72 79 20 56 4c 41 4e 73 20 77 68 65 6e 20 72 65 71 75 69 72 65 64 2e 20 4f | necessary.VLANs.when.required..O |
| b0420 | 6e 63 65 20 74 68 65 20 75 73 65 72 20 73 65 73 73 69 6f 6e 20 68 61 73 20 62 65 65 6e 20 63 61 | nce.the.user.session.has.been.ca |
| b0440 | 6e 63 65 6c 6c 65 64 20 61 6e 64 20 74 68 65 20 56 4c 41 4e 20 69 73 20 6e 6f 74 20 6e 65 65 64 | ncelled.and.the.VLAN.is.not.need |
| b0460 | 65 64 20 61 6e 79 6d 6f 72 65 2c 20 56 79 4f 53 20 77 69 6c 6c 20 72 65 6d 6f 76 65 20 69 74 20 | ed.anymore,.VyOS.will.remove.it. |
| b0480 | 61 67 61 69 6e 2e 00 57 68 65 6e 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 61 20 52 61 6e 64 6f 6d | again..When.configuring.a.Random |
| b04a0 | 2d 44 65 74 65 63 74 20 70 6f 6c 69 63 79 3a 20 2a 2a 74 68 65 20 68 69 67 68 65 72 20 74 68 65 | -Detect.policy:.**the.higher.the |
| b04c0 | 20 70 72 65 63 65 64 65 6e 63 65 20 6e 75 6d 62 65 72 2c 20 74 68 65 20 68 69 67 68 65 72 20 74 | .precedence.number,.the.higher.t |
| b04e0 | 68 65 20 70 72 69 6f 72 69 74 79 2a 2a 2e 00 57 68 65 6e 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 | he.priority**..When.configuring. |
| b0500 | 79 6f 75 72 20 66 69 6c 74 65 72 2c 20 79 6f 75 20 63 61 6e 20 75 73 65 20 74 68 65 20 60 60 54 | your.filter,.you.can.use.the.``T |
| b0520 | 61 62 60 60 20 6b 65 79 20 74 6f 20 73 65 65 20 74 68 65 20 6d 61 6e 79 20 64 69 66 66 65 72 65 | ab``.key.to.see.the.many.differe |
| b0540 | 6e 74 20 70 61 72 61 6d 65 74 65 72 73 20 79 6f 75 20 63 61 6e 20 63 6f 6e 66 69 67 75 72 65 2e | nt.parameters.you.can.configure. |
| b0560 | 00 57 68 65 6e 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 79 6f 75 72 20 74 72 61 66 66 69 63 20 70 | .When.configuring.your.traffic.p |
| b0580 | 6f 6c 69 63 79 2c 20 79 6f 75 20 77 69 6c 6c 20 68 61 76 65 20 74 6f 20 73 65 74 20 64 61 74 61 | olicy,.you.will.have.to.set.data |
| b05a0 | 20 72 61 74 65 20 76 61 6c 75 65 73 2c 20 77 61 74 63 68 20 6f 75 74 20 74 68 65 20 75 6e 69 74 | .rate.values,.watch.out.the.unit |
| b05c0 | 73 20 79 6f 75 20 61 72 65 20 6d 61 6e 61 67 69 6e 67 2c 20 69 74 20 69 73 20 65 61 73 79 20 74 | s.you.are.managing,.it.is.easy.t |
| b05e0 | 6f 20 67 65 74 20 63 6f 6e 66 75 73 65 64 20 77 69 74 68 20 74 68 65 20 64 69 66 66 65 72 65 6e | o.get.confused.with.the.differen |
| b0600 | 74 20 70 72 65 66 69 78 65 73 20 61 6e 64 20 73 75 66 66 69 78 65 73 20 79 6f 75 20 63 61 6e 20 | t.prefixes.and.suffixes.you.can. |
| b0620 | 75 73 65 2e 20 56 79 4f 53 20 77 69 6c 6c 20 61 6c 77 61 79 73 20 73 68 6f 77 20 79 6f 75 20 74 | use..VyOS.will.always.show.you.t |
| b0640 | 68 65 20 64 69 66 66 65 72 65 6e 74 20 75 6e 69 74 73 20 79 6f 75 20 63 61 6e 20 75 73 65 2e 00 | he.different.units.you.can.use.. |
| b0660 | 57 68 65 6e 20 64 65 66 69 6e 69 6e 67 20 61 20 72 75 6c 65 2c 20 69 74 20 69 73 20 65 6e 61 62 | When.defining.a.rule,.it.is.enab |
| b0680 | 6c 65 20 62 79 20 64 65 66 61 75 6c 74 2e 20 49 6e 20 73 6f 6d 65 20 63 61 73 65 73 2c 20 69 74 | le.by.default..In.some.cases,.it |
| b06a0 | 20 69 73 20 75 73 65 66 75 6c 20 74 6f 20 6a 75 73 74 20 64 69 73 61 62 6c 65 20 74 68 65 20 72 | .is.useful.to.just.disable.the.r |
| b06c0 | 75 6c 65 2c 20 72 61 74 68 65 72 20 74 68 61 6e 20 72 65 6d 6f 76 69 6e 67 20 69 74 2e 00 57 68 | ule,.rather.than.removing.it..Wh |
| b06e0 | 65 6e 20 64 65 66 69 6e 69 6e 67 20 61 20 72 75 6c 65 2c 20 69 74 20 69 73 20 65 6e 61 62 6c 65 | en.defining.a.rule,.it.is.enable |
| b0700 | 64 20 62 79 20 64 65 66 61 75 6c 74 2e 20 49 6e 20 73 6f 6d 65 20 63 61 73 65 73 2c 20 69 74 20 | d.by.default..In.some.cases,.it. |
| b0720 | 69 73 20 75 73 65 66 75 6c 20 74 6f 20 6a 75 73 74 20 64 69 73 61 62 6c 65 20 74 68 65 20 72 75 | is.useful.to.just.disable.the.ru |
| b0740 | 6c 65 2c 20 72 61 74 68 65 72 20 74 68 61 6e 20 72 65 6d 6f 76 69 6e 67 20 69 74 2e 00 57 68 65 | le,.rather.than.removing.it..Whe |
| b0760 | 6e 20 64 65 66 69 6e 69 6e 67 20 74 68 65 20 74 72 61 6e 73 6c 61 74 65 64 20 61 64 64 72 65 73 | n.defining.the.translated.addres |
| b0780 | 73 2c 20 63 61 6c 6c 65 64 20 60 60 62 61 63 6b 65 6e 64 73 60 60 2c 20 61 20 60 60 77 65 69 67 | s,.called.``backends``,.a.``weig |
| b07a0 | 68 74 60 60 20 6d 75 73 74 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 2e 20 54 68 69 73 20 6c 65 | ht``.must.be.configured..This.le |
| b07c0 | 74 73 20 74 68 65 20 75 73 65 72 20 64 65 66 69 6e 65 20 6c 6f 61 64 20 62 61 6c 61 6e 63 65 20 | ts.the.user.define.load.balance. |
| b07e0 | 64 69 73 74 72 69 62 75 74 69 6f 6e 20 61 63 63 6f 72 64 69 6e 67 20 74 6f 20 74 68 65 69 72 20 | distribution.according.to.their. |
| b0800 | 6e 65 65 64 73 2e 20 54 68 65 6d 20 73 75 6d 20 6f 66 20 61 6c 6c 20 74 68 65 20 77 65 69 67 68 | needs..Them.sum.of.all.the.weigh |
| b0820 | 74 73 20 64 65 66 69 6e 65 64 20 66 6f 72 20 74 68 65 20 62 61 63 6b 65 6e 64 73 20 73 68 6f 75 | ts.defined.for.the.backends.shou |
| b0840 | 6c 64 20 62 65 20 65 71 75 61 6c 20 74 6f 20 31 30 30 2e 20 49 6e 20 6f 64 65 72 20 77 6f 72 64 | ld.be.equal.to.100..In.oder.word |
| b0860 | 73 2c 20 74 68 65 20 77 65 69 67 68 74 20 64 65 66 69 6e 65 64 20 66 6f 72 20 74 68 65 20 62 61 | s,.the.weight.defined.for.the.ba |
| b0880 | 63 6b 65 6e 64 20 69 73 20 74 68 65 20 70 65 72 63 65 6e 74 61 67 65 20 6f 66 20 74 68 65 20 63 | ckend.is.the.percentage.of.the.c |
| b08a0 | 6f 6e 6e 65 63 74 69 6f 6e 73 20 74 68 61 74 20 77 69 6c 6c 20 72 65 63 65 69 76 65 20 73 75 63 | onnections.that.will.receive.suc |
| b08c0 | 68 20 62 61 63 6b 65 6e 64 2e 00 57 68 65 6e 20 64 65 71 75 65 75 69 6e 67 2c 20 65 61 63 68 20 | h.backend..When.dequeuing,.each. |
| b08e0 | 68 61 73 68 2d 62 75 63 6b 65 74 20 77 69 74 68 20 64 61 74 61 20 69 73 20 71 75 65 72 69 65 64 | hash-bucket.with.data.is.queried |
| b0900 | 20 69 6e 20 61 20 72 6f 75 6e 64 20 72 6f 62 69 6e 20 66 61 73 68 69 6f 6e 2e 20 59 6f 75 20 63 | .in.a.round.robin.fashion..You.c |
| b0920 | 61 6e 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 20 71 | an.configure.the.length.of.the.q |
| b0940 | 75 65 75 65 2e 00 57 68 65 6e 20 64 65 73 69 67 6e 69 6e 67 20 79 6f 75 72 20 4e 41 54 20 72 75 | ueue..When.designing.your.NAT.ru |
| b0960 | 6c 65 73 65 74 20 6c 65 61 76 65 20 73 6f 6d 65 20 73 70 61 63 65 20 62 65 74 77 65 65 6e 20 63 | leset.leave.some.space.between.c |
| b0980 | 6f 6e 73 65 63 75 74 69 76 65 20 72 75 6c 65 73 20 66 6f 72 20 6c 61 74 65 72 20 65 78 74 65 6e | onsecutive.rules.for.later.exten |
| b09a0 | 73 69 6f 6e 2e 20 59 6f 75 72 20 72 75 6c 65 73 65 74 20 63 6f 75 6c 64 20 73 74 61 72 74 20 77 | sion..Your.ruleset.could.start.w |
| b09c0 | 69 74 68 20 6e 75 6d 62 65 72 73 20 31 30 2c 20 32 30 2c 20 33 30 2e 20 59 6f 75 20 74 68 75 73 | ith.numbers.10,.20,.30..You.thus |
| b09e0 | 20 63 61 6e 20 6c 61 74 65 72 20 65 78 74 65 6e 64 20 74 68 65 20 72 75 6c 65 73 65 74 20 61 6e | .can.later.extend.the.ruleset.an |
| b0a00 | 64 20 70 6c 61 63 65 20 6e 65 77 20 72 75 6c 65 73 20 62 65 74 77 65 65 6e 20 65 78 69 73 74 69 | d.place.new.rules.between.existi |
| b0a20 | 6e 67 20 6f 6e 65 73 2e 00 57 68 65 6e 20 64 6f 69 6e 67 20 66 61 75 6c 74 20 69 73 6f 6c 61 74 | ng.ones..When.doing.fault.isolat |
| b0a40 | 69 6f 6e 20 77 69 74 68 20 70 69 6e 67 2c 20 79 6f 75 20 73 68 6f 75 6c 64 20 66 69 72 73 74 20 | ion.with.ping,.you.should.first. |
| b0a60 | 72 75 6e 20 69 74 20 6f 6e 20 74 68 65 20 6c 6f 63 61 6c 20 68 6f 73 74 2c 20 74 6f 20 76 65 72 | run.it.on.the.local.host,.to.ver |
| b0a80 | 69 66 79 20 74 68 61 74 20 74 68 65 20 6c 6f 63 61 6c 20 6e 65 74 77 6f 72 6b 20 69 6e 74 65 72 | ify.that.the.local.network.inter |
| b0aa0 | 66 61 63 65 20 69 73 20 75 70 20 61 6e 64 20 72 75 6e 6e 69 6e 67 2e 20 54 68 65 6e 2c 20 63 6f | face.is.up.and.running..Then,.co |
| b0ac0 | 6e 74 69 6e 75 65 20 77 69 74 68 20 68 6f 73 74 73 20 61 6e 64 20 67 61 74 65 77 61 79 73 20 66 | ntinue.with.hosts.and.gateways.f |
| b0ae0 | 75 72 74 68 65 72 20 64 6f 77 6e 20 74 68 65 20 72 6f 61 64 20 74 6f 77 61 72 64 73 20 79 6f 75 | urther.down.the.road.towards.you |
| b0b00 | 72 20 64 65 73 74 69 6e 61 74 69 6f 6e 2e 20 52 6f 75 6e 64 2d 74 72 69 70 20 74 69 6d 65 20 61 | r.destination..Round-trip.time.a |
| b0b20 | 6e 64 20 70 61 63 6b 65 74 20 6c 6f 73 73 20 73 74 61 74 69 73 74 69 63 73 20 61 72 65 20 63 6f | nd.packet.loss.statistics.are.co |
| b0b40 | 6d 70 75 74 65 64 2e 00 57 68 65 6e 20 66 69 72 73 74 20 63 6f 6e 6e 65 63 74 69 6e 67 20 74 6f | mputed..When.first.connecting.to |
| b0b60 | 20 74 68 65 20 6e 65 77 20 56 50 4e 20 74 68 65 20 75 73 65 72 20 69 73 20 70 72 6f 6d 70 74 65 | .the.new.VPN.the.user.is.prompte |
| b0b80 | 64 20 74 6f 20 65 6e 74 65 72 20 70 72 6f 70 65 72 20 63 72 65 64 65 6e 74 69 61 6c 73 2e 00 57 | d.to.enter.proper.credentials..W |
| b0ba0 | 68 65 6e 20 69 6d 70 6c 65 6d 65 6e 74 69 6e 67 20 43 47 4e 41 54 2c 20 65 6e 73 75 72 69 6e 67 | hen.implementing.CGNAT,.ensuring |
| b0bc0 | 20 74 68 61 74 20 74 68 65 72 65 20 61 72 65 20 65 6e 6f 75 67 68 20 70 6f 72 74 73 20 61 6c 6c | .that.there.are.enough.ports.all |
| b0be0 | 6f 63 61 74 65 64 20 70 65 72 20 73 75 62 73 63 72 69 62 65 72 20 69 73 20 63 72 69 74 69 63 61 | ocated.per.subscriber.is.critica |
| b0c00 | 6c 2e 20 42 65 6c 6f 77 20 69 73 20 61 20 73 75 6d 6d 61 72 79 20 62 61 73 65 64 20 6f 6e 20 52 | l..Below.is.a.summary.based.on.R |
| b0c20 | 46 43 20 36 38 38 38 2e 00 57 68 65 6e 20 6c 6f 61 64 69 6e 67 20 74 68 65 20 63 65 72 74 69 66 | FC.6888..When.loading.the.certif |
| b0c40 | 69 63 61 74 65 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 6d 61 6e 75 61 6c 6c 79 20 73 74 72 69 70 | icate.you.need.to.manually.strip |
| b0c60 | 20 74 68 65 20 60 60 2d 2d 2d 2d 2d 42 45 47 49 4e 20 43 45 52 54 49 46 49 43 41 54 45 2d 2d 2d | .the.``-----BEGIN.CERTIFICATE--- |
| b0c80 | 2d 2d 60 60 20 61 6e 64 20 60 60 2d 2d 2d 2d 2d 45 4e 44 20 43 45 52 54 49 46 49 43 41 54 45 2d | --``.and.``-----END.CERTIFICATE- |
| b0ca0 | 2d 2d 2d 2d 60 60 20 74 61 67 73 2e 20 41 6c 73 6f 2c 20 74 68 65 20 63 65 72 74 69 66 69 63 61 | ----``.tags..Also,.the.certifica |
| b0cc0 | 74 65 2f 6b 65 79 20 6e 65 65 64 73 20 74 6f 20 62 65 20 70 72 65 73 65 6e 74 65 64 20 69 6e 20 | te/key.needs.to.be.presented.in. |
| b0ce0 | 61 20 73 69 6e 67 6c 65 20 6c 69 6e 65 20 77 69 74 68 6f 75 74 20 6c 69 6e 65 20 62 72 65 61 6b | a.single.line.without.line.break |
| b0d00 | 73 20 28 60 60 5c 6e 60 60 29 2c 20 74 68 69 73 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 75 73 69 | s.(``\n``),.this.can.be.done.usi |
| b0d20 | 6e 67 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 68 65 6c 6c 20 63 6f 6d 6d 61 6e 64 3a 00 | ng.the.following.shell.command:. |
| b0d40 | 57 68 65 6e 20 6c 6f 61 64 69 6e 67 20 74 68 65 20 63 65 72 74 69 66 69 63 61 74 65 20 79 6f 75 | When.loading.the.certificate.you |
| b0d60 | 20 6e 65 65 64 20 74 6f 20 6d 61 6e 75 61 6c 6c 79 20 73 74 72 69 70 20 74 68 65 20 60 60 2d 2d | .need.to.manually.strip.the.``-- |
| b0d80 | 2d 2d 2d 42 45 47 49 4e 20 4b 45 59 2d 2d 2d 2d 2d 60 60 20 61 6e 64 20 60 60 2d 2d 2d 2d 2d 45 | ---BEGIN.KEY-----``.and.``-----E |
| b0da0 | 4e 44 20 4b 45 59 2d 2d 2d 2d 2d 60 60 20 74 61 67 73 2e 20 41 6c 73 6f 2c 20 74 68 65 20 63 65 | ND.KEY-----``.tags..Also,.the.ce |
| b0dc0 | 72 74 69 66 69 63 61 74 65 2f 6b 65 79 20 6e 65 65 64 73 20 74 6f 20 62 65 20 70 72 65 73 65 6e | rtificate/key.needs.to.be.presen |
| b0de0 | 74 65 64 20 69 6e 20 61 20 73 69 6e 67 6c 65 20 6c 69 6e 65 20 77 69 74 68 6f 75 74 20 6c 69 6e | ted.in.a.single.line.without.lin |
| b0e00 | 65 20 62 72 65 61 6b 73 20 28 60 60 5c 6e 60 60 29 2c 20 74 68 69 73 20 63 61 6e 20 62 65 20 64 | e.breaks.(``\n``),.this.can.be.d |
| b0e20 | 6f 6e 65 20 75 73 69 6e 67 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 68 65 6c 6c 20 63 6f | one.using.the.following.shell.co |
| b0e40 | 6d 6d 61 6e 64 3a 00 57 68 65 6e 20 6d 61 74 68 63 69 6e 67 20 61 6c 6c 20 70 61 74 74 65 72 6e | mmand:.When.mathcing.all.pattern |
| b0e60 | 73 20 64 65 66 69 6e 65 64 20 69 6e 20 61 20 72 75 6c 65 2c 20 74 68 65 6e 20 64 69 66 66 65 72 | s.defined.in.a.rule,.then.differ |
| b0e80 | 65 6e 74 20 61 63 74 69 6f 6e 73 20 63 61 6e 20 62 65 20 6d 61 64 65 2e 20 54 68 69 73 20 69 6e | ent.actions.can.be.made..This.in |
| b0ea0 | 63 6c 75 64 65 73 20 64 72 6f 70 69 6e 67 20 74 68 65 20 70 61 63 6b 65 74 2c 20 6d 6f 64 69 66 | cludes.droping.the.packet,.modif |
| b0ec0 | 79 69 6e 67 20 63 65 72 74 61 69 6e 20 64 61 74 61 2c 20 6f 72 20 73 65 74 74 69 6e 67 20 61 20 | ying.certain.data,.or.setting.a. |
| b0ee0 | 64 69 66 66 65 72 65 6e 74 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 2e 00 57 68 65 6e 20 6e 6f | different.routing.table..When.no |
| b0f00 | 20 6f 70 74 69 6f 6e 73 2f 70 61 72 61 6d 65 74 65 72 73 20 61 72 65 20 75 73 65 64 2c 20 74 68 | .options/parameters.are.used,.th |
| b0f20 | 65 20 63 6f 6e 74 65 6e 74 73 20 6f 66 20 74 68 65 20 6d 61 69 6e 20 73 79 73 6c 6f 67 20 66 69 | e.contents.of.the.main.syslog.fi |
| b0f40 | 6c 65 20 61 72 65 20 64 69 73 70 6c 61 79 65 64 2e 00 57 68 65 6e 20 6e 6f 2d 72 65 6c 65 61 73 | le.are.displayed..When.no-releas |
| b0f60 | 65 20 69 73 20 73 70 65 63 69 66 69 65 64 2c 20 64 68 63 70 36 63 20 77 69 6c 6c 20 61 76 6f 69 | e.is.specified,.dhcp6c.will.avoi |
| b0f80 | 64 20 73 65 6e 64 69 6e 67 20 61 20 72 65 6c 65 61 73 65 20 6d 65 73 73 61 67 65 20 6f 6e 20 63 | d.sending.a.release.message.on.c |
| b0fa0 | 6c 69 65 6e 74 20 65 78 69 74 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 70 72 65 76 65 6e 74 20 6c | lient.exit.in.order.to.prevent.l |
| b0fc0 | 6f 73 69 6e 67 20 61 6e 20 61 73 73 69 67 6e 65 64 20 61 64 64 72 65 73 73 20 6f 72 20 70 72 65 | osing.an.assigned.address.or.pre |
| b0fe0 | 66 69 78 2e 00 57 68 65 6e 20 6e 6f 2d 72 65 6c 65 61 73 65 20 69 73 20 73 70 65 63 69 66 69 65 | fix..When.no-release.is.specifie |
| b1000 | 64 2c 20 64 68 63 70 36 63 20 77 69 6c 6c 20 73 65 6e 64 20 61 20 72 65 6c 65 61 73 65 20 6d 65 | d,.dhcp6c.will.send.a.release.me |
| b1020 | 73 73 61 67 65 20 6f 6e 20 63 6c 69 65 6e 74 20 65 78 69 74 20 74 6f 20 70 72 65 76 65 6e 74 20 | ssage.on.client.exit.to.prevent. |
| b1040 | 6c 6f 73 69 6e 67 20 61 6e 20 61 73 73 69 67 6e 65 64 20 61 64 64 72 65 73 73 20 6f 72 20 70 72 | losing.an.assigned.address.or.pr |
| b1060 | 65 66 69 78 2e 00 57 68 65 6e 20 70 72 6f 63 65 73 73 69 6e 67 20 70 61 63 6b 65 74 73 20 66 72 | efix..When.processing.packets.fr |
| b1080 | 6f 6d 20 61 20 6e 65 69 67 68 62 6f 72 20 70 72 6f 63 65 73 73 20 74 68 65 20 6e 75 6d 62 65 72 | om.a.neighbor.process.the.number |
| b10a0 | 20 6f 66 20 70 61 63 6b 65 74 73 20 69 6e 63 6f 6d 69 6e 67 20 61 74 20 6f 6e 65 20 74 69 6d 65 | .of.packets.incoming.at.one.time |
| b10c0 | 20 62 65 66 6f 72 65 20 6d 6f 76 69 6e 67 20 6f 6e 20 74 6f 20 74 68 65 20 6e 65 78 74 20 74 61 | .before.moving.on.to.the.next.ta |
| b10e0 | 73 6b 2e 00 57 68 65 6e 20 72 61 70 69 64 2d 63 6f 6d 6d 69 74 20 69 73 20 73 70 65 63 69 66 69 | sk..When.rapid-commit.is.specifi |
| b1100 | 65 64 2c 20 64 68 63 70 36 63 20 77 69 6c 6c 20 69 6e 63 6c 75 64 65 20 61 20 72 61 70 69 64 2d | ed,.dhcp6c.will.include.a.rapid- |
| b1120 | 63 6f 6d 6d 69 74 20 6f 70 74 69 6f 6e 20 69 6e 20 73 6f 6c 69 63 69 74 20 6d 65 73 73 61 67 65 | commit.option.in.solicit.message |
| b1140 | 73 20 61 6e 64 20 77 61 69 74 20 66 6f 72 20 61 6e 20 69 6d 6d 65 64 69 61 74 65 20 72 65 70 6c | s.and.wait.for.an.immediate.repl |
| b1160 | 79 20 69 6e 73 74 65 61 64 20 6f 66 20 61 64 76 65 72 74 69 73 65 6d 65 6e 74 73 2e 00 57 68 65 | y.instead.of.advertisements..Whe |
| b1180 | 6e 20 72 65 6d 6f 74 65 20 70 65 65 72 20 64 6f 65 73 20 6e 6f 74 20 68 61 76 65 20 63 61 70 61 | n.remote.peer.does.not.have.capa |
| b11a0 | 62 69 6c 69 74 79 20 6e 65 67 6f 74 69 61 74 69 6f 6e 20 66 65 61 74 75 72 65 2c 20 72 65 6d 6f | bility.negotiation.feature,.remo |
| b11c0 | 74 65 20 70 65 65 72 20 77 69 6c 6c 20 6e 6f 74 20 73 65 6e 64 20 61 6e 79 20 63 61 70 61 62 69 | te.peer.will.not.send.any.capabi |
| b11e0 | 6c 69 74 69 65 73 20 61 74 20 61 6c 6c 2e 20 49 6e 20 74 68 61 74 20 63 61 73 65 2c 20 62 67 70 | lities.at.all..In.that.case,.bgp |
| b1200 | 20 63 6f 6e 66 69 67 75 72 65 73 20 74 68 65 20 70 65 65 72 20 77 69 74 68 20 63 6f 6e 66 69 67 | .configures.the.peer.with.config |
| b1220 | 75 72 65 64 20 63 61 70 61 62 69 6c 69 74 69 65 73 2e 00 57 68 65 6e 20 72 75 6e 6e 69 6e 67 20 | ured.capabilities..When.running. |
| b1240 | 69 74 20 61 74 20 31 47 62 69 74 20 61 6e 64 20 6c 6f 77 65 72 2c 20 79 6f 75 20 6d 61 79 20 77 | it.at.1Gbit.and.lower,.you.may.w |
| b1260 | 61 6e 74 20 74 6f 20 72 65 64 75 63 65 20 74 68 65 20 60 71 75 65 75 65 2d 6c 69 6d 69 74 60 20 | ant.to.reduce.the.`queue-limit`. |
| b1280 | 74 6f 20 31 30 30 30 20 70 61 63 6b 65 74 73 20 6f 72 20 6c 65 73 73 2e 20 49 6e 20 72 61 74 65 | to.1000.packets.or.less..In.rate |
| b12a0 | 73 20 6c 69 6b 65 20 31 30 4d 62 69 74 2c 20 79 6f 75 20 6d 61 79 20 77 61 6e 74 20 74 6f 20 73 | s.like.10Mbit,.you.may.want.to.s |
| b12c0 | 65 74 20 69 74 20 74 6f 20 36 30 30 20 70 61 63 6b 65 74 73 2e 00 57 68 65 6e 20 73 65 6e 64 69 | et.it.to.600.packets..When.sendi |
| b12e0 | 6e 67 20 50 49 4d 20 68 65 6c 6c 6f 20 70 61 63 6b 65 74 73 20 74 65 6c 6c 20 50 49 4d 20 74 6f | ng.PIM.hello.packets.tell.PIM.to |
| b1300 | 20 6e 6f 74 20 73 65 6e 64 20 61 6e 79 20 76 36 20 73 65 63 6f 6e 64 61 72 79 20 61 64 64 72 65 | .not.send.any.v6.secondary.addre |
| b1320 | 73 73 65 73 20 6f 6e 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 69 73 20 69 6e 66 6f | sses.on.the.interface..This.info |
| b1340 | 72 6d 61 74 69 6f 6e 20 69 73 20 75 73 65 64 20 74 6f 20 61 6c 6c 6f 77 20 50 49 4d 20 74 6f 20 | rmation.is.used.to.allow.PIM.to. |
| b1360 | 75 73 65 20 76 36 20 6e 65 78 74 68 6f 70 73 20 69 6e 20 69 74 27 73 20 64 65 63 69 73 69 6f 6e | use.v6.nexthops.in.it's.decision |
| b1380 | 20 66 6f 72 20 3a 61 62 62 72 3a 60 52 50 46 20 28 52 65 76 65 72 73 65 20 50 61 74 68 20 46 6f | .for.:abbr:`RPF.(Reverse.Path.Fo |
| b13a0 | 72 77 61 72 64 69 6e 67 29 60 20 6c 6f 6f 6b 75 70 20 69 66 20 74 68 69 73 20 6f 70 74 69 6f 6e | rwarding)`.lookup.if.this.option |
| b13c0 | 20 69 73 20 6e 6f 74 20 73 65 74 20 28 64 65 66 61 75 6c 74 29 2e 00 57 68 65 6e 20 73 65 74 20 | .is.not.set.(default)..When.set. |
| b13e0 | 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 65 6e 61 62 6c 65 64 20 66 6f 72 20 22 64 69 | the.interface.is.enabled.for."di |
| b1400 | 61 6c 2d 6f 6e 2d 64 65 6d 61 6e 64 22 2e 00 57 68 65 6e 20 73 70 65 63 69 66 69 65 64 2c 20 74 | al-on-demand"..When.specified,.t |
| b1420 | 68 69 73 20 73 68 6f 75 6c 64 20 62 65 20 74 68 65 20 6f 6e 6c 79 20 6b 65 79 77 6f 72 64 20 66 | his.should.be.the.only.keyword.f |
| b1440 | 6f 72 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 2e 00 57 68 65 6e 20 73 74 61 72 74 69 6e 67 20 | or.the.interface..When.starting. |
| b1460 | 61 20 56 79 4f 53 20 6c 69 76 65 20 73 79 73 74 65 6d 20 28 74 68 65 20 69 6e 73 74 61 6c 6c 61 | a.VyOS.live.system.(the.installa |
| b1480 | 74 69 6f 6e 20 43 44 29 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 6b 65 79 62 6f 61 72 64 | tion.CD).the.configured.keyboard |
| b14a0 | 20 6c 61 79 6f 75 74 20 64 65 66 61 75 6c 74 73 20 74 6f 20 55 53 2e 20 41 73 20 74 68 69 73 20 | .layout.defaults.to.US..As.this. |
| b14c0 | 6d 69 67 68 74 20 6e 6f 74 20 73 75 69 74 65 20 65 76 65 72 79 6f 6e 65 27 73 20 75 73 65 20 63 | might.not.suite.everyone's.use.c |
| b14e0 | 61 73 65 20 79 6f 75 20 63 61 6e 20 61 64 6a 75 73 74 20 74 68 65 20 75 73 65 64 20 6b 65 79 62 | ase.you.can.adjust.the.used.keyb |
| b1500 | 6f 61 72 64 20 6c 61 79 6f 75 74 20 6f 6e 20 74 68 65 20 73 79 73 74 65 6d 20 63 6f 6e 73 6f 6c | oard.layout.on.the.system.consol |
| b1520 | 65 2e 00 57 68 65 6e 20 73 74 61 72 74 69 6e 67 20 61 20 56 79 4f 53 20 6c 69 76 65 20 73 79 73 | e..When.starting.a.VyOS.live.sys |
| b1540 | 74 65 6d 20 28 74 68 65 20 69 6e 73 74 61 6c 6c 61 74 69 6f 6e 20 43 44 29 20 74 68 65 20 63 6f | tem.(the.installation.CD).the.co |
| b1560 | 6e 66 69 67 75 72 65 64 20 6b 65 79 62 6f 61 72 64 20 6c 61 79 6f 75 74 20 64 65 66 61 75 6c 74 | nfigured.keyboard.layout.default |
| b1580 | 73 20 74 6f 20 55 53 2e 20 41 73 20 74 68 69 73 20 6d 69 67 68 74 20 6e 6f 74 20 73 75 69 74 65 | s.to.US..As.this.might.not.suite |
| b15a0 | 20 65 76 65 72 79 6f 6e 65 73 20 75 73 65 20 63 61 73 65 20 79 6f 75 20 63 61 6e 20 61 64 6a 75 | .everyones.use.case.you.can.adju |
| b15c0 | 73 74 20 74 68 65 20 75 73 65 64 20 6b 65 79 62 6f 61 72 64 20 6c 61 79 6f 75 74 20 6f 6e 20 74 | st.the.used.keyboard.layout.on.t |
| b15e0 | 68 65 20 73 79 73 74 65 6d 20 63 6f 6e 73 6f 6c 65 2e 00 57 68 65 6e 20 74 68 65 20 44 48 43 50 | he.system.console..When.the.DHCP |
| b1600 | 20 73 65 72 76 65 72 20 69 73 20 63 6f 6e 73 69 64 65 72 69 6e 67 20 64 79 6e 61 6d 69 63 61 6c | .server.is.considering.dynamical |
| b1620 | 6c 79 20 61 6c 6c 6f 63 61 74 69 6e 67 20 61 6e 20 49 50 20 61 64 64 72 65 73 73 20 74 6f 20 61 | ly.allocating.an.IP.address.to.a |
| b1640 | 20 63 6c 69 65 6e 74 2c 20 69 74 20 66 69 72 73 74 20 73 65 6e 64 73 20 61 6e 20 49 43 4d 50 20 | .client,.it.first.sends.an.ICMP. |
| b1660 | 45 63 68 6f 20 72 65 71 75 65 73 74 20 28 61 20 70 69 6e 67 29 20 74 6f 20 74 68 65 20 61 64 64 | Echo.request.(a.ping).to.the.add |
| b1680 | 72 65 73 73 20 62 65 69 6e 67 20 61 73 73 69 67 6e 65 64 2e 20 49 74 20 77 61 69 74 73 20 66 6f | ress.being.assigned..It.waits.fo |
| b16a0 | 72 20 61 20 73 65 63 6f 6e 64 2c 20 61 6e 64 20 69 66 20 6e 6f 20 49 43 4d 50 20 45 63 68 6f 20 | r.a.second,.and.if.no.ICMP.Echo. |
| b16c0 | 72 65 73 70 6f 6e 73 65 20 68 61 73 20 62 65 65 6e 20 68 65 61 72 64 2c 20 69 74 20 61 73 73 69 | response.has.been.heard,.it.assi |
| b16e0 | 67 6e 73 20 74 68 65 20 61 64 64 72 65 73 73 2e 00 57 68 65 6e 20 74 68 65 20 63 6c 6f 73 65 2d | gns.the.address..When.the.close- |
| b1700 | 61 63 74 69 6f 6e 20 6f 70 74 69 6f 6e 20 69 73 20 73 65 74 20 6f 6e 20 74 68 65 20 70 65 65 72 | action.option.is.set.on.the.peer |
| b1720 | 73 2c 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 2d 74 79 70 65 20 6f 66 20 65 61 63 68 20 70 | s,.the.connection-type.of.each.p |
| b1740 | 65 65 72 20 68 61 73 20 74 6f 20 63 6f 6e 73 69 64 65 72 65 64 20 63 61 72 65 66 75 6c 6c 79 2e | eer.has.to.considered.carefully. |
| b1760 | 20 46 6f 72 20 65 78 61 6d 70 6c 65 2c 20 69 66 20 74 68 65 20 6f 70 74 69 6f 6e 20 69 73 20 73 | .For.example,.if.the.option.is.s |
| b1780 | 65 74 20 6f 6e 20 62 6f 74 68 20 70 65 65 72 73 2c 20 74 68 65 6e 20 62 6f 74 68 20 77 6f 75 6c | et.on.both.peers,.then.both.woul |
| b17a0 | 64 20 61 74 74 65 6d 70 74 20 74 6f 20 69 6e 69 74 69 61 74 65 20 61 6e 64 20 68 6f 6c 64 20 6f | d.attempt.to.initiate.and.hold.o |
| b17c0 | 70 65 6e 20 6d 75 6c 74 69 70 6c 65 20 63 6f 70 69 65 73 20 6f 66 20 65 61 63 68 20 63 68 69 6c | pen.multiple.copies.of.each.chil |
| b17e0 | 64 20 53 41 2e 20 54 68 69 73 20 6d 69 67 68 74 20 6c 65 61 64 20 74 6f 20 69 6e 73 74 61 62 69 | d.SA..This.might.lead.to.instabi |
| b1800 | 6c 69 74 79 20 6f 66 20 74 68 65 20 64 65 76 69 63 65 20 6f 72 20 63 70 75 2f 6d 65 6d 6f 72 79 | lity.of.the.device.or.cpu/memory |
| b1820 | 20 75 74 69 6c 69 7a 61 74 69 6f 6e 2e 00 57 68 65 6e 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 61 | .utilization..When.the.command.a |
| b1840 | 62 6f 76 65 20 69 73 20 73 65 74 2c 20 56 79 4f 53 20 77 69 6c 6c 20 61 6e 73 77 65 72 20 65 76 | bove.is.set,.VyOS.will.answer.ev |
| b1860 | 65 72 79 20 49 43 4d 50 20 65 63 68 6f 20 72 65 71 75 65 73 74 20 61 64 64 72 65 73 73 65 64 20 | ery.ICMP.echo.request.addressed. |
| b1880 | 74 6f 20 69 74 73 65 6c 66 2c 20 62 75 74 20 74 68 61 74 20 77 69 6c 6c 20 6f 6e 6c 79 20 68 61 | to.itself,.but.that.will.only.ha |
| b18a0 | 70 70 65 6e 20 69 66 20 6e 6f 20 6f 74 68 65 72 20 72 75 6c 65 20 69 73 20 61 70 70 6c 69 65 64 | ppen.if.no.other.rule.is.applied |
| b18c0 | 20 64 72 6f 70 70 69 6e 67 20 6f 72 20 72 65 6a 65 63 74 69 6e 67 20 6c 6f 63 61 6c 20 65 63 68 | .dropping.or.rejecting.local.ech |
| b18e0 | 6f 20 72 65 71 75 65 73 74 73 2e 20 49 6e 20 63 61 73 65 20 6f 66 20 63 6f 6e 66 6c 69 63 74 2c | o.requests..In.case.of.conflict, |
| b1900 | 20 56 79 4f 53 20 77 69 6c 6c 20 6e 6f 74 20 61 6e 73 77 65 72 20 49 43 4d 50 20 65 63 68 6f 20 | .VyOS.will.not.answer.ICMP.echo. |
| b1920 | 72 65 71 75 65 73 74 73 2e 00 57 68 65 6e 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 61 62 6f 76 65 | requests..When.the.command.above |
| b1940 | 20 69 73 20 73 65 74 2c 20 56 79 4f 53 20 77 69 6c 6c 20 61 6e 73 77 65 72 20 6e 6f 20 49 43 4d | .is.set,.VyOS.will.answer.no.ICM |
| b1960 | 50 20 65 63 68 6f 20 72 65 71 75 65 73 74 20 61 64 64 72 65 73 73 65 64 20 74 6f 20 69 74 73 65 | P.echo.request.addressed.to.itse |
| b1980 | 6c 66 20 61 74 20 61 6c 6c 2c 20 6e 6f 20 6d 61 74 74 65 72 20 77 68 65 72 65 20 69 74 20 63 6f | lf.at.all,.no.matter.where.it.co |
| b19a0 | 6d 65 73 20 66 72 6f 6d 20 6f 72 20 77 68 65 74 68 65 72 20 6d 6f 72 65 20 73 70 65 63 69 66 69 | mes.from.or.whether.more.specifi |
| b19c0 | 63 20 72 75 6c 65 73 20 61 72 65 20 62 65 69 6e 67 20 61 70 70 6c 69 65 64 20 74 6f 20 61 63 63 | c.rules.are.being.applied.to.acc |
| b19e0 | 65 70 74 20 74 68 65 6d 2e 00 57 68 65 6e 20 74 68 65 20 76 72 72 70 20 67 72 6f 75 70 20 69 73 | ept.them..When.the.vrrp.group.is |
| b1a00 | 20 61 20 6d 65 6d 62 65 72 20 6f 66 20 74 68 65 20 73 79 6e 63 20 67 72 6f 75 70 20 77 69 6c 6c | .a.member.of.the.sync.group.will |
| b1a20 | 20 75 73 65 20 6f 6e 6c 79 20 74 68 65 20 73 79 6e 63 20 67 72 6f 75 70 20 68 65 61 6c 74 68 20 | .use.only.the.sync.group.health. |
| b1a40 | 63 68 65 63 6b 20 73 63 72 69 70 74 2e 20 54 68 69 73 20 65 78 61 6d 70 6c 65 20 73 68 6f 77 73 | check.script..This.example.shows |
| b1a60 | 20 68 6f 77 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 69 74 20 66 6f 72 20 74 68 65 20 73 79 6e | .how.to.configure.it.for.the.syn |
| b1a80 | 63 20 67 72 6f 75 70 3a 00 57 68 65 6e 20 74 69 6d 65 73 74 61 6d 70 69 6e 67 20 69 73 20 65 6e | c.group:.When.timestamping.is.en |
| b1aa0 | 61 62 6c 65 64 20 6f 6e 20 61 6e 20 69 6e 74 65 72 66 61 63 65 2c 20 63 68 72 6f 6e 79 27 73 20 | abled.on.an.interface,.chrony's. |
| b1ac0 | 64 65 66 61 75 6c 74 20 62 65 68 61 76 69 6f 72 20 69 73 20 74 6f 20 74 72 79 20 74 6f 20 63 6f | default.behavior.is.to.try.to.co |
| b1ae0 | 6e 66 69 67 75 72 65 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 6f 6e 6c 79 20 74 69 | nfigure.the.interface.to.only.ti |
| b1b00 | 6d 65 73 74 61 6d 70 20 4e 54 50 20 70 61 63 6b 65 74 73 2e 20 49 66 20 74 68 69 73 20 6d 6f 64 | mestamp.NTP.packets..If.this.mod |
| b1b20 | 65 20 69 73 20 6e 6f 74 20 73 75 70 70 6f 72 74 65 64 2c 20 63 68 72 6f 6e 79 20 77 69 6c 6c 20 | e.is.not.supported,.chrony.will. |
| b1b40 | 61 74 74 65 6d 70 74 20 74 6f 20 73 65 74 20 69 74 20 74 6f 20 74 69 6d 65 73 74 61 6d 70 20 61 | attempt.to.set.it.to.timestamp.a |
| b1b60 | 6c 6c 20 70 61 63 6b 65 74 73 2e 20 49 66 20 6e 65 69 74 68 65 72 20 6f 70 74 69 6f 6e 20 69 73 | ll.packets..If.neither.option.is |
| b1b80 | 20 73 75 70 70 6f 72 74 65 64 20 28 65 2e 67 2e 20 74 68 65 20 4e 49 43 20 63 61 6e 20 6f 6e 6c | .supported.(e.g..the.NIC.can.onl |
| b1ba0 | 79 20 74 69 6d 65 73 74 61 6d 70 20 72 65 63 65 69 76 65 64 20 50 54 50 20 70 61 63 6b 65 74 73 | y.timestamp.received.PTP.packets |
| b1bc0 | 29 2c 20 63 68 72 6f 6e 79 20 77 69 6c 6c 20 6c 65 76 65 72 61 67 65 20 74 69 6d 65 73 74 61 6d | ),.chrony.will.leverage.timestam |
| b1be0 | 70 69 6e 67 20 6f 6e 20 74 72 61 6e 73 6d 69 74 74 65 64 20 70 61 63 6b 65 74 73 20 6f 6e 6c 79 | ping.on.transmitted.packets.only |
| b1c00 | 2c 20 77 68 69 63 68 20 73 74 69 6c 6c 20 70 72 6f 76 69 64 65 73 20 73 6f 6d 65 20 62 65 6e 65 | ,.which.still.provides.some.bene |
| b1c20 | 66 69 74 2e 00 57 68 65 6e 20 75 73 69 6e 67 20 44 48 43 50 20 74 6f 20 72 65 74 72 69 65 76 65 | fit..When.using.DHCP.to.retrieve |
| b1c40 | 20 49 50 76 34 20 61 64 64 72 65 73 73 20 61 6e 64 20 69 66 20 6c 6f 63 61 6c 20 63 75 73 74 6f | .IPv4.address.and.if.local.custo |
| b1c60 | 6d 69 7a 61 74 69 6f 6e 73 20 61 72 65 20 6e 65 65 64 65 64 2c 20 74 68 65 79 20 73 68 6f 75 6c | mizations.are.needed,.they.shoul |
| b1c80 | 64 20 62 65 20 70 6f 73 73 69 62 6c 65 20 75 73 69 6e 67 20 74 68 65 20 65 6e 74 65 72 20 61 6e | d.be.possible.using.the.enter.an |
| b1ca0 | 64 20 65 78 69 74 20 68 6f 6f 6b 73 20 70 72 6f 76 69 64 65 64 2e 20 54 68 65 20 68 6f 6f 6b 20 | d.exit.hooks.provided..The.hook. |
| b1cc0 | 64 69 72 73 20 61 72 65 3a 00 57 68 65 6e 20 75 73 69 6e 67 20 45 56 45 2d 4e 47 20 74 6f 20 6c | dirs.are:.When.using.EVE-NG.to.l |
| b1ce0 | 61 62 20 74 68 69 73 20 65 6e 76 69 72 6f 6e 6d 65 6e 74 20 65 6e 73 75 72 65 20 79 6f 75 20 61 | ab.this.environment.ensure.you.a |
| b1d00 | 72 65 20 75 73 69 6e 67 20 65 31 30 30 30 20 61 73 20 74 68 65 20 64 65 73 69 72 65 64 20 64 72 | re.using.e1000.as.the.desired.dr |
| b1d20 | 69 76 65 72 20 66 6f 72 20 79 6f 75 72 20 56 79 4f 53 20 6e 65 74 77 6f 72 6b 20 69 6e 74 65 72 | iver.for.your.VyOS.network.inter |
| b1d40 | 66 61 63 65 73 2e 20 57 68 65 6e 20 75 73 69 6e 67 20 74 68 65 20 72 65 67 75 6c 61 72 20 76 69 | faces..When.using.the.regular.vi |
| b1d60 | 72 74 69 6f 20 6e 65 74 77 6f 72 6b 20 64 72 69 76 65 72 20 6e 6f 20 4c 41 43 50 20 50 44 55 73 | rtio.network.driver.no.LACP.PDUs |
| b1d80 | 20 77 69 6c 6c 20 62 65 20 73 65 6e 74 20 62 79 20 56 79 4f 53 20 74 68 75 73 20 74 68 65 20 70 | .will.be.sent.by.VyOS.thus.the.p |
| b1da0 | 6f 72 74 2d 63 68 61 6e 6e 65 6c 20 77 69 6c 6c 20 6e 65 76 65 72 20 62 65 63 6f 6d 65 20 61 63 | ort-channel.will.never.become.ac |
| b1dc0 | 74 69 76 65 21 00 57 68 65 6e 20 75 73 69 6e 67 20 4e 41 54 20 66 6f 72 20 61 20 6c 61 72 67 65 | tive!.When.using.NAT.for.a.large |
| b1de0 | 20 6e 75 6d 62 65 72 20 6f 66 20 68 6f 73 74 20 73 79 73 74 65 6d 73 20 69 74 20 72 65 63 6f 6d | .number.of.host.systems.it.recom |
| b1e00 | 6d 65 6e 64 65 64 20 74 68 61 74 20 61 20 6d 69 6e 69 6d 75 6d 20 6f 66 20 31 20 49 50 20 61 64 | mended.that.a.minimum.of.1.IP.ad |
| b1e20 | 64 72 65 73 73 20 69 73 20 75 73 65 64 20 74 6f 20 4e 41 54 20 65 76 65 72 79 20 32 35 36 20 68 | dress.is.used.to.NAT.every.256.h |
| b1e40 | 6f 73 74 20 73 79 73 74 65 6d 73 2e 20 54 68 69 73 20 69 73 20 64 75 65 20 74 6f 20 74 68 65 20 | ost.systems..This.is.due.to.the. |
| b1e60 | 6c 69 6d 69 74 20 6f 66 20 36 35 2c 30 30 30 20 70 6f 72 74 20 6e 75 6d 62 65 72 73 20 61 76 61 | limit.of.65,000.port.numbers.ava |
| b1e80 | 69 6c 61 62 6c 65 20 66 6f 72 20 75 6e 69 71 75 65 20 74 72 61 6e 73 6c 61 74 69 6f 6e 73 20 61 | ilable.for.unique.translations.a |
| b1ea0 | 6e 64 20 61 20 72 65 73 65 72 76 69 6e 67 20 61 6e 20 61 76 65 72 61 67 65 20 6f 66 20 32 30 30 | nd.a.reserving.an.average.of.200 |
| b1ec0 | 2d 33 30 30 20 73 65 73 73 69 6f 6e 73 20 70 65 72 20 68 6f 73 74 20 73 79 73 74 65 6d 2e 00 57 | -300.sessions.per.host.system..W |
| b1ee0 | 68 65 6e 20 75 73 69 6e 67 20 4e 41 54 20 66 6f 72 20 61 20 6c 61 72 67 65 20 6e 75 6d 62 65 72 | hen.using.NAT.for.a.large.number |
| b1f00 | 20 6f 66 20 68 6f 73 74 20 73 79 73 74 65 6d 73 20 69 74 20 72 65 63 6f 6d 6d 65 6e 64 65 64 20 | .of.host.systems.it.recommended. |
| b1f20 | 74 68 61 74 20 61 20 6d 69 6e 69 6d 75 6d 20 6f 66 20 31 20 49 50 20 61 64 64 72 65 73 73 20 69 | that.a.minimum.of.1.IP.address.i |
| b1f40 | 73 20 75 73 65 64 20 74 6f 20 4e 41 54 20 65 76 65 72 79 20 32 35 36 20 70 72 69 76 61 74 65 20 | s.used.to.NAT.every.256.private. |
| b1f60 | 68 6f 73 74 20 73 79 73 74 65 6d 73 2e 20 54 68 69 73 20 69 73 20 64 75 65 20 74 6f 20 74 68 65 | host.systems..This.is.due.to.the |
| b1f80 | 20 6c 69 6d 69 74 20 6f 66 20 36 35 2c 30 30 30 20 70 6f 72 74 20 6e 75 6d 62 65 72 73 20 61 76 | .limit.of.65,000.port.numbers.av |
| b1fa0 | 61 69 6c 61 62 6c 65 20 66 6f 72 20 75 6e 69 71 75 65 20 74 72 61 6e 73 6c 61 74 69 6f 6e 73 20 | ailable.for.unique.translations. |
| b1fc0 | 61 6e 64 20 61 20 72 65 73 65 72 76 69 6e 67 20 61 6e 20 61 76 65 72 61 67 65 20 6f 66 20 32 30 | and.a.reserving.an.average.of.20 |
| b1fe0 | 30 2d 33 30 30 20 73 65 73 73 69 6f 6e 73 20 70 65 72 20 68 6f 73 74 20 73 79 73 74 65 6d 2e 00 | 0-300.sessions.per.host.system.. |
| b2000 | 57 68 65 6e 20 75 73 69 6e 67 20 53 53 48 2c 20 6b 6e 6f 77 6e 2d 68 6f 73 74 73 2d 66 69 6c 65 | When.using.SSH,.known-hosts-file |
| b2020 | 2c 20 70 72 69 76 61 74 65 2d 6b 65 79 2d 66 69 6c 65 20 61 6e 64 20 70 75 62 6c 69 63 2d 6b 65 | ,.private-key-file.and.public-ke |
| b2040 | 79 2d 66 69 6c 65 20 61 72 65 20 6d 61 6e 64 61 74 6f 72 79 20 6f 70 74 69 6f 6e 73 2e 00 57 68 | y-file.are.mandatory.options..Wh |
| b2060 | 65 6e 20 75 73 69 6e 67 20 53 53 48 2c 20 70 72 69 76 61 74 65 2d 6b 65 79 2d 66 69 6c 65 20 61 | en.using.SSH,.private-key-file.a |
| b2080 | 6e 64 20 70 75 62 6c 69 63 2d 6b 65 79 2d 66 69 6c 65 20 61 72 65 20 6d 61 6e 64 61 74 6f 72 79 | nd.public-key-file.are.mandatory |
| b20a0 | 20 6f 70 74 69 6f 6e 73 2e 00 57 68 65 6e 20 75 73 69 6e 67 20 54 69 6d 65 2d 62 61 73 65 64 20 | .options..When.using.Time-based. |
| b20c0 | 6f 6e 65 2d 74 69 6d 65 20 70 61 73 73 77 6f 72 64 20 28 54 4f 54 50 29 20 28 4f 54 50 20 48 4f | one-time.password.(TOTP).(OTP.HO |
| b20e0 | 54 50 2d 74 69 6d 65 29 2c 20 62 65 20 73 75 72 65 20 74 68 61 74 20 74 68 65 20 74 69 6d 65 20 | TP-time),.be.sure.that.the.time. |
| b2100 | 6f 6e 20 74 68 65 20 73 65 72 76 65 72 20 61 6e 64 20 74 68 65 20 4f 54 50 20 74 6f 6b 65 6e 20 | on.the.server.and.the.OTP.token. |
| b2120 | 67 65 6e 65 72 61 74 6f 72 20 61 72 65 20 73 79 6e 63 68 72 6f 6e 69 7a 65 64 20 62 79 20 4e 54 | generator.are.synchronized.by.NT |
| b2140 | 50 00 57 68 65 6e 20 75 73 69 6e 67 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 49 50 73 65 63 20 | P.When.using.site-to-site.IPsec. |
| b2160 | 77 69 74 68 20 56 54 49 20 69 6e 74 65 72 66 61 63 65 73 2c 20 62 65 20 73 75 72 65 20 74 6f 20 | with.VTI.interfaces,.be.sure.to. |
| b2180 | 64 69 73 61 62 6c 65 20 72 6f 75 74 65 20 61 75 74 6f 69 6e 73 74 61 6c 6c 00 57 68 65 6e 20 75 | disable.route.autoinstall.When.u |
| b21a0 | 73 69 6e 67 20 74 68 65 20 49 50 76 36 20 70 72 6f 74 6f 63 6f 6c 2c 20 4d 52 55 20 6d 75 73 74 | sing.the.IPv6.protocol,.MRU.must |
| b21c0 | 20 62 65 20 61 74 20 6c 65 61 73 74 20 31 32 38 30 20 62 79 74 65 73 2e 00 57 68 65 6e 20 75 74 | .be.at.least.1280.bytes..When.ut |
| b21e0 | 69 6c 69 7a 69 6e 67 20 56 79 4f 53 20 69 6e 20 61 6e 20 65 6e 76 69 72 6f 6e 6d 65 6e 74 20 77 | ilizing.VyOS.in.an.environment.w |
| b2200 | 69 74 68 20 41 72 69 73 74 61 20 67 65 61 72 20 79 6f 75 20 63 61 6e 20 75 73 65 20 74 68 69 73 | ith.Arista.gear.you.can.use.this |
| b2220 | 20 62 6c 75 65 20 70 72 69 6e 74 20 61 73 20 61 6e 20 69 6e 69 74 69 61 6c 20 73 65 74 75 70 20 | .blue.print.as.an.initial.setup. |
| b2240 | 74 6f 20 67 65 74 20 61 6e 20 4c 41 43 50 20 62 6f 6e 64 20 2f 20 70 6f 72 74 2d 63 68 61 6e 6e | to.get.an.LACP.bond./.port-chann |
| b2260 | 65 6c 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 62 65 74 77 65 65 6e 20 74 68 6f 73 65 20 74 77 6f | el.operational.between.those.two |
| b2280 | 20 64 65 76 69 63 65 73 2e 00 57 68 65 72 65 20 62 6f 74 68 20 72 6f 75 74 65 73 20 77 65 72 65 | .devices..Where.both.routes.were |
| b22a0 | 20 72 65 63 65 69 76 65 64 20 66 72 6f 6d 20 65 42 47 50 20 70 65 65 72 73 2c 20 74 68 65 6e 20 | .received.from.eBGP.peers,.then. |
| b22c0 | 70 72 65 66 65 72 20 74 68 65 20 72 6f 75 74 65 20 77 68 69 63 68 20 69 73 20 61 6c 72 65 61 64 | prefer.the.route.which.is.alread |
| b22e0 | 79 20 73 65 6c 65 63 74 65 64 2e 20 4e 6f 74 65 20 74 68 61 74 20 74 68 69 73 20 63 68 65 63 6b | y.selected..Note.that.this.check |
| b2300 | 20 69 73 20 6e 6f 74 20 61 70 70 6c 69 65 64 20 69 66 20 3a 63 66 67 63 6d 64 3a 60 62 67 70 20 | .is.not.applied.if.:cfgcmd:`bgp. |
| b2320 | 62 65 73 74 70 61 74 68 20 63 6f 6d 70 61 72 65 2d 72 6f 75 74 65 72 69 64 60 20 69 73 20 63 6f | bestpath.compare-routerid`.is.co |
| b2340 | 6e 66 69 67 75 72 65 64 2e 20 54 68 69 73 20 63 68 65 63 6b 20 63 61 6e 20 70 72 65 76 65 6e 74 | nfigured..This.check.can.prevent |
| b2360 | 20 73 6f 6d 65 20 63 61 73 65 73 20 6f 66 20 6f 73 63 69 6c 6c 61 74 69 6f 6e 2e 00 57 68 65 72 | .some.cases.of.oscillation..Wher |
| b2380 | 65 20 66 69 72 65 77 61 6c 6c 20 62 61 73 65 20 63 68 61 69 6e 20 74 6f 20 63 6f 6e 66 69 67 75 | e.firewall.base.chain.to.configu |
| b23a0 | 72 65 20 66 69 72 65 77 61 6c 6c 20 66 69 6c 74 65 72 69 6e 67 20 72 75 6c 65 73 20 66 6f 72 20 | re.firewall.filtering.rules.for. |
| b23c0 | 74 72 61 6e 73 69 74 20 74 72 61 66 66 69 63 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c | transit.traffic.is.``set.firewal |
| b23e0 | 6c 20 69 70 76 34 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2c 20 77 68 69 | l.ipv4.forward.filter....``,.whi |
| b2400 | 63 68 20 68 61 70 70 65 6e 73 20 69 6e 20 73 74 61 67 65 20 35 2c 20 68 69 67 68 6c 69 67 68 74 | ch.happens.in.stage.5,.highlight |
| b2420 | 65 64 20 77 69 74 68 20 72 65 64 20 63 6f 6c 6f 72 2e 00 57 68 65 72 65 20 66 69 72 65 77 61 6c | ed.with.red.color..Where.firewal |
| b2440 | 6c 20 62 61 73 65 20 63 68 61 69 6e 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 66 69 72 65 77 61 | l.base.chain.to.configure.firewa |
| b2460 | 6c 6c 20 66 69 6c 74 65 72 69 6e 67 20 72 75 6c 65 73 20 66 6f 72 20 74 72 61 6e 73 69 74 20 74 | ll.filtering.rules.for.transit.t |
| b2480 | 72 61 66 66 69 63 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 66 6f | raffic.is.``set.firewall.ipv4.fo |
| b24a0 | 72 77 61 72 64 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2c 20 77 68 69 63 68 20 68 61 70 70 65 6e | rward.filter....``,.which.happen |
| b24c0 | 73 20 69 6e 20 73 74 61 67 65 20 35 2c 20 68 69 67 68 6c 69 67 68 74 65 6e 65 64 20 77 69 74 68 | s.in.stage.5,.highlightened.with |
| b24e0 | 20 72 65 64 20 63 6f 6c 6f 72 2e 00 57 68 65 72 65 20 66 69 72 65 77 61 6c 6c 20 62 61 73 65 20 | .red.color..Where.firewall.base. |
| b2500 | 63 68 61 69 6e 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 66 69 72 65 77 61 6c 6c 20 66 69 6c 74 | chain.to.configure.firewall.filt |
| b2520 | 65 72 69 6e 67 20 72 75 6c 65 73 20 66 6f 72 20 74 72 61 6e 73 69 74 20 74 72 61 66 66 69 63 20 | ering.rules.for.transit.traffic. |
| b2540 | 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 66 6f 72 77 61 72 64 20 66 | is.``set.firewall.ipv6.forward.f |
| b2560 | 69 6c 74 65 72 20 2e 2e 2e 60 60 2c 20 77 68 69 63 68 20 68 61 70 70 65 6e 73 20 69 6e 20 73 74 | ilter....``,.which.happens.in.st |
| b2580 | 61 67 65 20 35 2c 20 68 69 67 68 6c 69 67 68 74 65 64 20 77 69 74 68 20 72 65 64 20 63 6f 6c 6f | age.5,.highlighted.with.red.colo |
| b25a0 | 72 2e 00 57 68 65 72 65 20 66 69 72 65 77 61 6c 6c 20 62 61 73 65 20 63 68 61 69 6e 20 74 6f 20 | r..Where.firewall.base.chain.to. |
| b25c0 | 63 6f 6e 66 69 67 75 72 65 20 66 69 72 65 77 61 6c 6c 20 66 69 6c 74 65 72 69 6e 67 20 72 75 6c | configure.firewall.filtering.rul |
| b25e0 | 65 73 20 66 6f 72 20 74 72 61 6e 73 69 74 20 74 72 61 66 66 69 63 20 69 73 20 60 60 73 65 74 20 | es.for.transit.traffic.is.``set. |
| b2600 | 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 2e 2e 2e | firewall.ipv6.forward.filter.... |
| b2620 | 60 60 2c 20 77 68 69 63 68 20 68 61 70 70 65 6e 73 20 69 6e 20 73 74 61 67 65 20 35 2c 20 68 69 | ``,.which.happens.in.stage.5,.hi |
| b2640 | 67 68 6c 69 67 68 74 65 6e 65 64 20 77 69 74 68 20 72 65 64 20 63 6f 6c 6f 72 2e 00 57 68 65 72 | ghlightened.with.red.color..Wher |
| b2660 | 65 20 72 6f 75 74 65 73 20 77 69 74 68 20 61 20 4d 45 44 20 77 65 72 65 20 72 65 63 65 69 76 65 | e.routes.with.a.MED.were.receive |
| b2680 | 64 20 66 72 6f 6d 20 74 68 65 20 73 61 6d 65 20 41 53 2c 20 70 72 65 66 65 72 20 74 68 65 20 72 | d.from.the.same.AS,.prefer.the.r |
| b26a0 | 6f 75 74 65 20 77 69 74 68 20 74 68 65 20 6c 6f 77 65 73 74 20 4d 45 44 2e 00 57 68 65 72 65 2c | oute.with.the.lowest.MED..Where, |
| b26c0 | 20 6d 61 69 6e 20 6b 65 79 20 77 6f 72 64 73 20 61 6e 64 20 63 6f 6e 66 69 67 75 72 61 74 69 6f | .main.key.words.and.configuratio |
| b26e0 | 6e 20 70 61 74 68 73 20 74 68 61 74 20 6e 65 65 64 73 20 74 6f 20 62 65 20 75 6e 64 65 72 73 74 | n.paths.that.needs.to.be.underst |
| b2700 | 6f 6f 64 3a 00 57 68 65 74 68 65 72 20 74 6f 20 61 63 63 65 70 74 20 44 41 44 20 28 44 75 70 6c | ood:.Whether.to.accept.DAD.(Dupl |
| b2720 | 69 63 61 74 65 20 41 64 64 72 65 73 73 20 44 65 74 65 63 74 69 6f 6e 29 2e 00 57 68 69 63 68 20 | icate.Address.Detection)..Which. |
| b2740 | 67 65 6e 65 72 61 74 65 73 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6e 66 69 67 75 72 | generates.the.following.configur |
| b2760 | 61 74 69 6f 6e 3a 00 57 68 69 63 68 20 72 65 73 75 6c 74 73 20 69 6e 20 61 20 63 6f 6e 66 69 67 | ation:.Which.results.in.a.config |
| b2780 | 75 72 61 74 69 6f 6e 20 6f 66 3a 00 57 68 69 63 68 20 77 6f 75 6c 64 20 67 65 6e 65 72 61 74 65 | uration.of:.Which.would.generate |
| b27a0 | 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 4e 41 54 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 63 | .the.following.NAT.destination.c |
| b27c0 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 00 57 68 69 6c 65 20 2a 2a 6e 65 74 77 6f 72 6b 20 67 72 | onfiguration:.While.**network.gr |
| b27e0 | 6f 75 70 73 2a 2a 20 61 63 63 65 70 74 20 49 50 20 6e 65 74 77 6f 72 6b 73 20 69 6e 20 43 49 44 | oups**.accept.IP.networks.in.CID |
| b2800 | 52 20 6e 6f 74 61 74 69 6f 6e 2c 20 73 70 65 63 69 66 69 63 20 49 50 20 61 64 64 72 65 73 73 65 | R.notation,.specific.IP.addresse |
| b2820 | 73 20 63 61 6e 20 62 65 20 61 64 64 65 64 20 61 73 20 61 20 33 32 2d 62 69 74 20 70 72 65 66 69 | s.can.be.added.as.a.32-bit.prefi |
| b2840 | 78 2e 20 49 66 20 79 6f 75 20 66 6f 72 65 73 65 65 20 74 68 65 20 6e 65 65 64 20 74 6f 20 61 64 | x..If.you.foresee.the.need.to.ad |
| b2860 | 64 20 61 20 6d 69 78 20 6f 66 20 61 64 64 72 65 73 73 65 73 20 61 6e 64 20 6e 65 74 77 6f 72 6b | d.a.mix.of.addresses.and.network |
| b2880 | 73 2c 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 67 72 6f 75 70 20 69 73 20 72 65 63 6f 6d 6d 65 6e | s,.the.network.group.is.recommen |
| b28a0 | 64 65 64 2e 00 57 68 69 6c 65 20 2a 2a 6e 65 74 77 6f 72 6b 20 67 72 6f 75 70 73 2a 2a 20 61 63 | ded..While.**network.groups**.ac |
| b28c0 | 63 65 70 74 20 49 50 20 6e 65 74 77 6f 72 6b 73 20 69 6e 20 43 49 44 52 20 6e 6f 74 61 74 69 6f | cept.IP.networks.in.CIDR.notatio |
| b28e0 | 6e 2c 20 73 70 65 63 69 66 69 63 20 49 50 20 61 64 64 72 65 73 73 65 73 20 63 61 6e 20 62 65 20 | n,.specific.IP.addresses.can.be. |
| b2900 | 61 64 64 65 64 20 61 73 20 61 20 33 32 2d 62 69 74 20 70 72 65 66 69 78 2e 20 49 66 20 79 6f 75 | added.as.a.32-bit.prefix..If.you |
| b2920 | 20 66 6f 72 65 73 65 65 20 74 68 65 20 6e 65 65 64 20 74 6f 20 61 64 64 20 61 20 6d 69 78 20 6f | .foresee.the.need.to.add.a.mix.o |
| b2940 | 66 20 61 64 64 72 65 73 73 65 73 20 61 6e 64 20 6e 65 74 77 6f 72 6b 73 2c 20 74 68 65 6e 20 61 | f.addresses.and.networks,.then.a |
| b2960 | 20 6e 65 74 77 6f 72 6b 20 67 72 6f 75 70 20 69 73 20 72 65 63 6f 6d 6d 65 6e 64 65 64 2e 00 57 | .network.group.is.recommended..W |
| b2980 | 68 69 6c 65 20 6d 61 6e 79 20 61 72 65 20 61 77 61 72 65 20 6f 66 20 4f 70 65 6e 56 50 4e 20 61 | hile.many.are.aware.of.OpenVPN.a |
| b29a0 | 73 20 61 20 43 6c 69 65 6e 74 20 56 50 4e 20 73 6f 6c 75 74 69 6f 6e 2c 20 69 74 20 69 73 20 6f | s.a.Client.VPN.solution,.it.is.o |
| b29c0 | 66 74 65 6e 20 6f 76 65 72 6c 6f 6f 6b 65 64 20 61 73 20 61 20 73 69 74 65 2d 74 6f 2d 73 69 74 | ften.overlooked.as.a.site-to-sit |
| b29e0 | 65 20 56 50 4e 20 73 6f 6c 75 74 69 6f 6e 20 64 75 65 20 74 6f 20 6c 61 63 6b 20 6f 66 20 73 75 | e.VPN.solution.due.to.lack.of.su |
| b2a00 | 70 70 6f 72 74 20 66 6f 72 20 74 68 69 73 20 6d 6f 64 65 20 69 6e 20 6d 61 6e 79 20 72 6f 75 74 | pport.for.this.mode.in.many.rout |
| b2a20 | 65 72 20 70 6c 61 74 66 6f 72 6d 73 2e 00 57 68 69 6c 65 20 6e 6f 72 6d 61 6c 20 47 52 45 20 69 | er.platforms..While.normal.GRE.i |
| b2a40 | 73 20 66 6f 72 20 6c 61 79 65 72 20 33 2c 20 47 52 45 54 41 50 20 69 73 20 66 6f 72 20 6c 61 79 | s.for.layer.3,.GRETAP.is.for.lay |
| b2a60 | 65 72 20 32 2e 20 47 52 45 54 41 50 20 63 61 6e 20 65 6e 63 61 70 73 75 6c 61 74 65 20 45 74 68 | er.2..GRETAP.can.encapsulate.Eth |
| b2a80 | 65 72 6e 65 74 20 66 72 61 6d 65 73 2c 20 74 68 75 73 20 69 74 20 63 61 6e 20 62 65 20 62 72 69 | ernet.frames,.thus.it.can.be.bri |
| b2aa0 | 64 67 65 64 20 77 69 74 68 20 6f 74 68 65 72 20 69 6e 74 65 72 66 61 63 65 73 20 74 6f 20 63 72 | dged.with.other.interfaces.to.cr |
| b2ac0 | 65 61 74 65 20 64 61 74 61 6c 69 6e 6b 20 6c 61 79 65 72 20 73 65 67 6d 65 6e 74 73 20 74 68 61 | eate.datalink.layer.segments.tha |
| b2ae0 | 74 20 73 70 61 6e 20 6d 75 6c 74 69 70 6c 65 20 72 65 6d 6f 74 65 20 73 69 74 65 73 2e 00 57 68 | t.span.multiple.remote.sites..Wh |
| b2b00 | 69 74 65 6c 69 73 74 20 6f 66 20 61 64 64 72 65 73 73 65 73 20 61 6e 64 20 6e 65 74 77 6f 72 6b | itelist.of.addresses.and.network |
| b2b20 | 73 2e 20 41 6c 77 61 79 73 20 61 6c 6c 6f 77 20 69 6e 62 6f 75 6e 64 20 63 6f 6e 6e 65 63 74 69 | s..Always.allow.inbound.connecti |
| b2b40 | 6f 6e 73 20 66 72 6f 6d 20 74 68 65 73 65 20 73 79 73 74 65 6d 73 2e 00 57 69 46 69 2d 36 28 65 | ons.from.these.systems..WiFi-6(e |
| b2b60 | 29 20 2d 20 38 30 32 2e 31 31 61 78 00 57 69 6c 6c 20 61 64 64 20 60 60 70 65 72 73 69 73 74 2d | ).-.802.11ax.Will.add.``persist- |
| b2b80 | 6b 65 79 60 60 20 74 6f 20 74 68 65 20 67 65 6e 65 72 61 74 65 64 20 4f 70 65 6e 56 50 4e 20 63 | key``.to.the.generated.OpenVPN.c |
| b2ba0 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 20 50 6c 65 61 73 65 20 75 73 65 20 74 68 69 73 20 6f 6e | onfiguration..Please.use.this.on |
| b2bc0 | 6c 79 20 61 73 20 6c 61 73 74 20 72 65 73 6f 72 74 20 2d 20 74 68 69 6e 67 73 20 6d 69 67 68 74 | ly.as.last.resort.-.things.might |
| b2be0 | 20 62 72 65 61 6b 20 61 6e 64 20 4f 70 65 6e 56 50 4e 20 77 6f 6e 27 74 20 73 74 61 72 74 20 69 | .break.and.OpenVPN.won't.start.i |
| b2c00 | 66 20 79 6f 75 20 70 61 73 73 20 69 6e 76 61 6c 69 64 20 6f 70 74 69 6f 6e 73 2f 73 79 6e 74 61 | f.you.pass.invalid.options/synta |
| b2c20 | 78 2e 00 57 69 6c 6c 20 61 64 64 20 60 60 70 65 72 73 69 73 74 65 6e 74 2d 6b 65 79 60 60 20 61 | x..Will.add.``persistent-key``.a |
| b2c40 | 74 20 74 68 65 20 65 6e 64 20 6f 66 20 74 68 65 20 67 65 6e 65 72 61 74 65 64 20 4f 70 65 6e 56 | t.the.end.of.the.generated.OpenV |
| b2c60 | 50 4e 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 20 50 6c 65 61 73 65 20 75 73 65 20 74 68 69 | PN.configuration..Please.use.thi |
| b2c80 | 73 20 6f 6e 6c 79 20 61 73 20 6c 61 73 74 20 72 65 73 6f 72 74 20 2d 20 74 68 69 6e 67 73 20 6d | s.only.as.last.resort.-.things.m |
| b2ca0 | 69 67 68 74 20 62 72 65 61 6b 20 61 6e 64 20 4f 70 65 6e 56 50 4e 20 77 6f 6e 27 74 20 73 74 61 | ight.break.and.OpenVPN.won't.sta |
| b2cc0 | 72 74 20 69 66 20 79 6f 75 20 70 61 73 73 20 69 6e 76 61 6c 69 64 20 6f 70 74 69 6f 6e 73 2f 73 | rt.if.you.pass.invalid.options/s |
| b2ce0 | 79 6e 74 61 78 2e 00 57 69 6c 6c 20 61 64 64 20 60 60 70 75 73 68 20 22 6b 65 65 70 61 6c 69 76 | yntax..Will.add.``push."keepaliv |
| b2d00 | 65 20 31 20 31 30 22 60 60 20 74 6f 20 74 68 65 20 67 65 6e 65 72 61 74 65 64 20 4f 70 65 6e 56 | e.1.10"``.to.the.generated.OpenV |
| b2d20 | 50 4e 20 63 6f 6e 66 69 67 20 66 69 6c 65 2e 00 57 69 6c 6c 20 61 64 64 20 60 60 72 6f 75 74 65 | PN.config.file..Will.add.``route |
| b2d40 | 2d 75 70 20 22 2f 63 6f 6e 66 69 67 2f 61 75 74 68 2f 74 75 6e 5f 75 70 2e 73 68 20 61 72 67 31 | -up."/config/auth/tun_up.sh.arg1 |
| b2d60 | 22 60 60 20 74 6f 20 74 68 65 20 67 65 6e 65 72 61 74 65 64 20 4f 70 65 6e 56 50 4e 20 63 6f 6e | "``.to.the.generated.OpenVPN.con |
| b2d80 | 66 69 67 20 66 69 6c 65 2e 20 54 68 65 20 70 61 74 68 20 61 6e 64 20 61 72 67 75 6d 65 6e 74 73 | fig.file..The.path.and.arguments |
| b2da0 | 20 6e 65 65 64 20 74 6f 20 62 65 20 73 69 6e 67 6c 65 2d 20 6f 72 20 64 6f 75 62 6c 65 2d 71 75 | .need.to.be.single-.or.double-qu |
| b2dc0 | 6f 74 65 64 2e 00 57 69 6c 6c 20 62 65 20 72 65 63 6f 72 64 65 64 20 6f 6e 6c 79 20 70 61 63 6b | oted..Will.be.recorded.only.pack |
| b2de0 | 65 74 73 2f 66 6c 6f 77 73 20 6f 6e 20 2a 2a 69 6e 63 6f 6d 69 6e 67 2a 2a 20 64 69 72 65 63 74 | ets/flows.on.**incoming**.direct |
| b2e00 | 69 6f 6e 20 69 6e 20 63 6f 6e 66 69 67 75 72 65 64 20 69 6e 74 65 72 66 61 63 65 73 20 62 79 20 | ion.in.configured.interfaces.by. |
| b2e20 | 64 65 66 61 75 6c 74 2e 00 57 69 6c 6c 20 64 72 6f 70 20 60 3c 73 68 61 72 65 64 2d 6e 65 74 77 | default..Will.drop.`<shared-netw |
| b2e40 | 6f 72 6b 2d 6e 61 6d 65 3e 5f 60 20 66 72 6f 6d 20 63 6c 69 65 6e 74 20 44 4e 53 20 72 65 63 6f | ork-name>_`.from.client.DNS.reco |
| b2e60 | 72 64 2c 20 75 73 69 6e 67 20 6f 6e 6c 79 20 74 68 65 20 68 6f 73 74 20 64 65 63 6c 61 72 61 74 | rd,.using.only.the.host.declarat |
| b2e80 | 69 6f 6e 20 6e 61 6d 65 20 61 6e 64 20 64 6f 6d 61 69 6e 3a 20 60 3c 68 6f 73 74 6e 61 6d 65 3e | ion.name.and.domain:.`<hostname> |
| b2ea0 | 2e 3c 64 6f 6d 61 69 6e 2d 6e 61 6d 65 3e 60 00 57 69 6e 64 6f 77 73 20 31 30 20 64 6f 65 73 20 | .<domain-name>`.Windows.10.does. |
| b2ec0 | 6e 6f 74 20 61 6c 6c 6f 77 20 61 20 75 73 65 72 20 74 6f 20 63 68 6f 6f 73 65 20 74 68 65 20 69 | not.allow.a.user.to.choose.the.i |
| b2ee0 | 6e 74 65 67 72 69 74 79 20 61 6e 64 20 65 6e 63 72 79 70 74 69 6f 6e 20 63 69 70 68 65 72 73 20 | ntegrity.and.encryption.ciphers. |
| b2f00 | 75 73 69 6e 67 20 74 68 65 20 47 55 49 20 61 6e 64 20 69 74 20 75 73 65 73 20 73 6f 6d 65 20 6f | using.the.GUI.and.it.uses.some.o |
| b2f20 | 6c 64 65 72 20 70 72 6f 70 6f 73 61 6c 73 20 62 79 20 64 65 66 61 75 6c 74 2e 20 41 20 75 73 65 | lder.proposals.by.default..A.use |
| b2f40 | 72 20 63 61 6e 20 6f 6e 6c 79 20 63 68 61 6e 67 65 20 74 68 65 20 70 72 6f 70 6f 73 61 6c 73 20 | r.can.only.change.the.proposals. |
| b2f60 | 6f 6e 20 74 68 65 20 63 6c 69 65 6e 74 20 73 69 64 65 20 62 79 20 63 6f 6e 66 69 67 75 72 69 6e | on.the.client.side.by.configurin |
| b2f80 | 67 20 74 68 65 20 49 50 53 65 63 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 70 72 6f 66 69 6c 65 20 76 | g.the.IPSec.connection.profile.v |
| b2fa0 | 69 61 20 50 6f 77 65 72 53 68 65 6c 6c 2e 00 57 69 6e 64 6f 77 73 20 49 6e 74 65 72 6e 65 74 20 | ia.PowerShell..Windows.Internet. |
| b2fc0 | 4e 61 6d 65 20 53 65 72 76 69 63 65 20 28 57 49 4e 53 29 20 73 65 72 76 65 72 73 20 70 72 6f 70 | Name.Service.(WINS).servers.prop |
| b2fe0 | 61 67 61 74 65 64 20 74 6f 20 63 6c 69 65 6e 74 00 57 69 6e 64 6f 77 73 20 65 78 70 65 63 74 73 | agated.to.client.Windows.expects |
| b3000 | 20 74 68 65 20 73 65 72 76 65 72 20 6e 61 6d 65 20 74 6f 20 62 65 20 61 6c 73 6f 20 75 73 65 64 | .the.server.name.to.be.also.used |
| b3020 | 20 69 6e 20 74 68 65 20 73 65 72 76 65 72 27 73 20 63 65 72 74 69 66 69 63 61 74 65 20 63 6f 6d | .in.the.server's.certificate.com |
| b3040 | 6d 6f 6e 20 6e 61 6d 65 2c 20 73 6f 20 69 74 27 73 20 62 65 73 74 20 74 6f 20 75 73 65 20 74 68 | mon.name,.so.it's.best.to.use.th |
| b3060 | 69 73 20 44 4e 53 20 6e 61 6d 65 20 66 6f 72 20 79 6f 75 72 20 56 50 4e 20 63 6f 6e 6e 65 63 74 | is.DNS.name.for.your.VPN.connect |
| b3080 | 69 6f 6e 2e 00 57 69 72 65 47 75 61 72 64 00 57 69 72 65 47 75 61 72 64 20 43 6c 69 65 6e 74 20 | ion..WireGuard.WireGuard.Client. |
| b30a0 | 51 52 20 63 6f 64 65 00 57 69 72 65 47 75 61 72 64 20 69 6e 74 65 72 66 61 63 65 20 69 74 73 65 | QR.code.WireGuard.interface.itse |
| b30c0 | 6c 66 20 75 73 65 73 20 61 64 64 72 65 73 73 20 31 30 2e 31 2e 30 2e 31 2f 33 30 00 57 69 72 65 | lf.uses.address.10.1.0.1/30.Wire |
| b30e0 | 47 75 61 72 64 20 69 73 20 61 6e 20 65 78 74 72 65 6d 65 6c 79 20 73 69 6d 70 6c 65 20 79 65 74 | Guard.is.an.extremely.simple.yet |
| b3100 | 20 66 61 73 74 20 61 6e 64 20 6d 6f 64 65 72 6e 20 56 50 4e 20 74 68 61 74 20 75 74 69 6c 69 7a | .fast.and.modern.VPN.that.utiliz |
| b3120 | 65 73 20 73 74 61 74 65 2d 6f 66 2d 74 68 65 2d 61 72 74 20 63 72 79 70 74 6f 67 72 61 70 68 79 | es.state-of-the-art.cryptography |
| b3140 | 2e 20 53 65 65 20 68 74 74 70 73 3a 2f 2f 77 77 77 2e 77 69 72 65 67 75 61 72 64 2e 63 6f 6d 20 | ..See.https://www.wireguard.com. |
| b3160 | 66 6f 72 20 6d 6f 72 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2e 00 57 69 72 65 47 75 61 72 64 20 | for.more.information..WireGuard. |
| b3180 | 72 65 71 75 69 72 65 73 20 74 68 65 20 67 65 6e 65 72 61 74 69 6f 6e 20 6f 66 20 61 20 6b 65 79 | requires.the.generation.of.a.key |
| b31a0 | 70 61 69 72 2c 20 77 68 69 63 68 20 69 6e 63 6c 75 64 65 73 20 61 20 70 72 69 76 61 74 65 20 6b | pair,.which.includes.a.private.k |
| b31c0 | 65 79 20 74 6f 20 64 65 63 72 79 70 74 20 69 6e 63 6f 6d 69 6e 67 20 74 72 61 66 66 69 63 2c 20 | ey.to.decrypt.incoming.traffic,. |
| b31e0 | 61 6e 64 20 61 20 70 75 62 6c 69 63 20 6b 65 79 20 66 6f 72 20 70 65 65 72 28 73 29 20 74 6f 20 | and.a.public.key.for.peer(s).to. |
| b3200 | 65 6e 63 72 79 70 74 20 74 72 61 66 66 69 63 2e 00 57 69 72 65 6c 65 73 73 20 63 68 61 6e 6e 65 | encrypt.traffic..Wireless.channe |
| b3220 | 6c 20 60 60 31 31 60 60 20 66 6f 72 20 32 2e 34 47 48 7a 00 57 69 72 65 6c 65 73 73 20 63 68 61 | l.``11``.for.2.4GHz.Wireless.cha |
| b3240 | 6e 6e 65 6c 20 60 60 31 60 60 00 57 69 72 65 6c 65 73 73 20 63 68 61 6e 6e 65 6c 20 60 60 35 60 | nnel.``1``.Wireless.channel.``5` |
| b3260 | 60 20 66 6f 72 20 36 47 48 7a 00 57 69 72 65 6c 65 73 73 20 64 65 76 69 63 65 20 74 79 70 65 20 | `.for.6GHz.Wireless.device.type. |
| b3280 | 66 6f 72 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 00 57 69 72 65 6c 65 73 73 20 68 61 72 64 | for.this.interface.Wireless.hard |
| b32a0 | 77 61 72 65 20 64 65 76 69 63 65 20 75 73 65 64 20 61 73 20 75 6e 64 65 72 6c 61 79 20 72 61 64 | ware.device.used.as.underlay.rad |
| b32c0 | 69 6f 2e 00 57 69 72 65 6c 65 73 73 20 6f 70 74 69 6f 6e 73 00 57 69 72 65 6c 65 73 73 20 6f 70 | io..Wireless.options.Wireless.op |
| b32e0 | 74 69 6f 6e 73 20 28 53 74 61 74 69 6f 6e 2f 43 6c 69 65 6e 74 29 00 57 69 72 65 6c 65 73 73 4d | tions.(Station/Client).WirelessM |
| b3300 | 6f 64 65 6d 20 28 57 57 41 4e 29 20 6f 70 74 69 6f 6e 73 00 57 69 74 68 20 56 79 4f 53 20 62 65 | odem.(WWAN).options.With.VyOS.be |
| b3320 | 69 6e 67 20 62 61 73 65 64 20 6f 6e 20 74 6f 70 20 6f 66 20 4c 69 6e 75 78 20 61 6e 64 20 69 74 | ing.based.on.top.of.Linux.and.it |
| b3340 | 73 20 6b 65 72 6e 65 6c 2c 20 74 68 65 20 4e 65 74 66 69 6c 74 65 72 20 70 72 6f 6a 65 63 74 20 | s.kernel,.the.Netfilter.project. |
| b3360 | 63 72 65 61 74 65 64 20 74 68 65 20 69 70 74 61 62 6c 65 73 20 61 6e 64 20 6e 6f 77 20 74 68 65 | created.the.iptables.and.now.the |
| b3380 | 20 73 75 63 63 65 73 73 6f 72 20 6e 66 74 61 62 6c 65 73 20 66 6f 72 20 74 68 65 20 4c 69 6e 75 | .successor.nftables.for.the.Linu |
| b33a0 | 78 20 6b 65 72 6e 65 6c 20 74 6f 20 77 6f 72 6b 20 64 69 72 65 63 74 6c 79 20 6f 6e 20 74 68 65 | x.kernel.to.work.directly.on.the |
| b33c0 | 20 64 61 74 61 20 66 6c 6f 77 73 2e 20 54 68 69 73 20 6e 6f 77 20 65 78 74 65 6e 64 73 20 74 68 | .data.flows..This.now.extends.th |
| b33e0 | 65 20 63 6f 6e 63 65 70 74 20 6f 66 20 7a 6f 6e 65 2d 62 61 73 65 64 20 73 65 63 75 72 69 74 79 | e.concept.of.zone-based.security |
| b3400 | 20 74 6f 20 61 6c 6c 6f 77 20 66 6f 72 20 6d 61 6e 69 70 75 6c 61 74 69 6e 67 20 74 68 65 20 64 | .to.allow.for.manipulating.the.d |
| b3420 | 61 74 61 20 61 74 20 6d 75 6c 74 69 70 6c 65 20 73 74 61 67 65 73 20 6f 6e 63 65 20 61 63 63 65 | ata.at.multiple.stages.once.acce |
| b3440 | 70 74 65 64 20 62 79 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 69 6e 74 65 72 66 61 63 65 20 61 6e | pted.by.the.network.interface.an |
| b3460 | 64 20 74 68 65 20 64 72 69 76 65 72 20 62 65 66 6f 72 65 20 62 65 69 6e 67 20 68 61 6e 64 65 64 | d.the.driver.before.being.handed |
| b3480 | 20 6f 66 66 20 74 6f 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 28 65 2e 67 2e 20 61 20 | .off.to.the.destination.(e.g..a. |
| b34a0 | 77 65 62 20 73 65 72 76 65 72 20 4f 52 20 61 6e 6f 74 68 65 72 20 64 65 76 69 63 65 29 2e 00 57 | web.server.OR.another.device)..W |
| b34c0 | 69 74 68 20 57 69 72 65 47 75 61 72 64 2c 20 61 20 52 6f 61 64 20 57 61 72 72 69 6f 72 20 56 50 | ith.WireGuard,.a.Road.Warrior.VP |
| b34e0 | 4e 20 63 6f 6e 66 69 67 20 69 73 20 73 69 6d 69 6c 61 72 20 74 6f 20 61 20 73 69 74 65 2d 74 6f | N.config.is.similar.to.a.site-to |
| b3500 | 2d 73 69 74 65 20 56 50 4e 2e 20 49 74 20 6a 75 73 74 20 6c 61 63 6b 73 20 74 68 65 20 60 60 61 | -site.VPN..It.just.lacks.the.``a |
| b3520 | 64 64 72 65 73 73 60 60 20 61 6e 64 20 60 60 70 6f 72 74 60 60 20 73 74 61 74 65 6d 65 6e 74 73 | ddress``.and.``port``.statements |
| b3540 | 2e 00 57 69 74 68 20 74 68 65 20 60 60 6e 61 6d 65 2d 73 65 72 76 65 72 60 60 20 6f 70 74 69 6f | ..With.the.``name-server``.optio |
| b3560 | 6e 20 73 65 74 20 74 6f 20 60 60 6e 6f 6e 65 60 60 2c 20 56 79 4f 53 20 77 69 6c 6c 20 69 67 6e | n.set.to.``none``,.VyOS.will.ign |
| b3580 | 6f 72 65 20 74 68 65 20 6e 61 6d 65 73 65 72 76 65 72 73 20 79 6f 75 72 20 49 53 50 20 73 65 6e | ore.the.nameservers.your.ISP.sen |
| b35a0 | 64 73 20 79 6f 75 20 61 6e 64 20 74 68 75 73 20 79 6f 75 20 63 61 6e 20 66 75 6c 6c 79 20 72 65 | ds.you.and.thus.you.can.fully.re |
| b35c0 | 6c 79 20 6f 6e 20 74 68 65 20 6f 6e 65 73 20 79 6f 75 20 68 61 76 65 20 63 6f 6e 66 69 67 75 72 | ly.on.the.ones.you.have.configur |
| b35e0 | 65 64 20 73 74 61 74 69 63 61 6c 6c 79 2e 00 57 69 74 68 20 74 68 65 20 66 69 72 65 77 61 6c 6c | ed.statically..With.the.firewall |
| b3600 | 20 79 6f 75 20 63 61 6e 20 73 65 74 20 72 75 6c 65 73 20 74 6f 20 61 63 63 65 70 74 2c 20 64 72 | .you.can.set.rules.to.accept,.dr |
| b3620 | 6f 70 20 6f 72 20 72 65 6a 65 63 74 20 49 43 4d 50 20 69 6e 2c 20 6f 75 74 20 6f 72 20 6c 6f 63 | op.or.reject.ICMP.in,.out.or.loc |
| b3640 | 61 6c 20 74 72 61 66 66 69 63 2e 20 59 6f 75 20 63 61 6e 20 61 6c 73 6f 20 75 73 65 20 74 68 65 | al.traffic..You.can.also.use.the |
| b3660 | 20 67 65 6e 65 72 61 6c 20 2a 2a 66 69 72 65 77 61 6c 6c 20 61 6c 6c 2d 70 69 6e 67 2a 2a 20 63 | .general.**firewall.all-ping**.c |
| b3680 | 6f 6d 6d 61 6e 64 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 66 66 65 63 74 73 20 6f 6e 6c | ommand..This.command.affects.onl |
| b36a0 | 79 20 74 6f 20 4c 4f 43 41 4c 20 28 70 61 63 6b 65 74 73 20 64 65 73 74 69 6e 65 64 20 66 6f 72 | y.to.LOCAL.(packets.destined.for |
| b36c0 | 20 79 6f 75 72 20 56 79 4f 53 20 73 79 73 74 65 6d 29 2c 20 6e 6f 74 20 74 6f 20 49 4e 20 6f 72 | .your.VyOS.system),.not.to.IN.or |
| b36e0 | 20 4f 55 54 20 74 72 61 66 66 69 63 2e 00 57 69 74 68 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 2c | .OUT.traffic..With.this.command, |
| b3700 | 20 79 6f 75 20 63 61 6e 20 73 70 65 63 69 66 79 20 68 6f 77 20 74 68 65 20 55 52 4c 20 70 61 74 | .you.can.specify.how.the.URL.pat |
| b3720 | 68 20 73 68 6f 75 6c 64 20 62 65 20 6d 61 74 63 68 65 64 20 61 67 61 69 6e 73 74 20 69 6e 63 6f | h.should.be.matched.against.inco |
| b3740 | 6d 69 6e 67 20 72 65 71 75 65 73 74 73 2e 00 57 69 74 68 20 74 68 69 73 20 63 6f 6e 66 69 67 75 | ming.requests..With.this.configu |
| b3760 | 72 61 74 69 6f 6e 2c 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 67 65 74 20 73 73 68 20 61 63 63 65 | ration,.in.order.to.get.ssh.acce |
| b3780 | 73 73 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 2c 20 74 68 65 20 75 73 65 72 20 6e 65 65 64 73 | ss.to.the.router,.the.user.needs |
| b37a0 | 20 74 6f 3a 00 57 69 74 68 20 74 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2c 20 69 6e | .to:.With.this.configuration,.in |
| b37c0 | 20 6f 72 64 65 72 20 74 6f 20 67 65 74 20 73 73 68 20 61 63 63 65 73 73 20 74 6f 20 74 68 65 20 | .order.to.get.ssh.access.to.the. |
| b37e0 | 72 6f 75 74 65 72 2c 20 75 73 65 72 20 6e 65 65 64 73 20 74 6f 3a 00 57 69 74 68 20 7a 6f 6e 65 | router,.user.needs.to:.With.zone |
| b3800 | 2d 62 61 73 65 64 20 66 69 72 65 77 61 6c 6c 73 20 61 20 6e 65 77 20 63 6f 6e 63 65 70 74 20 77 | -based.firewalls.a.new.concept.w |
| b3820 | 61 73 20 69 6d 70 6c 65 6d 65 6e 74 65 64 2c 20 69 6e 20 61 64 64 69 74 69 6f 6e 20 74 6f 20 74 | as.implemented,.in.addition.to.t |
| b3840 | 68 65 20 73 74 61 6e 64 61 72 64 20 69 6e 20 61 6e 64 20 6f 75 74 20 74 72 61 66 66 69 63 20 66 | he.standard.in.and.out.traffic.f |
| b3860 | 6c 6f 77 73 2c 20 61 20 6c 6f 63 61 6c 20 66 6c 6f 77 20 77 61 73 20 61 64 64 65 64 2e 20 54 68 | lows,.a.local.flow.was.added..Th |
| b3880 | 69 73 20 6c 6f 63 61 6c 20 66 6c 6f 77 20 77 61 73 20 66 6f 72 20 74 72 61 66 66 69 63 20 6f 72 | is.local.flow.was.for.traffic.or |
| b38a0 | 69 67 69 6e 61 74 69 6e 67 20 61 6e 64 20 64 65 73 74 69 6e 65 64 20 74 6f 20 74 68 65 20 72 6f | iginating.and.destined.to.the.ro |
| b38c0 | 75 74 65 72 20 69 74 73 65 6c 66 2e 20 57 68 69 63 68 20 6d 65 61 6e 73 20 74 68 61 74 20 61 64 | uter.itself..Which.means.that.ad |
| b38e0 | 64 69 74 69 6f 6e 61 6c 20 72 75 6c 65 73 20 77 65 72 65 20 72 65 71 75 69 72 65 64 20 74 6f 20 | ditional.rules.were.required.to. |
| b3900 | 73 65 63 75 72 65 20 74 68 65 20 66 69 72 65 77 61 6c 6c 20 69 74 73 65 6c 66 20 66 72 6f 6d 20 | secure.the.firewall.itself.from. |
| b3920 | 74 68 65 20 6e 65 74 77 6f 72 6b 2c 20 69 6e 20 61 64 64 69 74 69 6f 6e 20 74 6f 20 74 68 65 20 | the.network,.in.addition.to.the. |
| b3940 | 65 78 69 73 74 69 6e 67 20 69 6e 62 6f 75 6e 64 20 61 6e 64 20 6f 75 74 62 6f 75 6e 64 20 72 75 | existing.inbound.and.outbound.ru |
| b3960 | 6c 65 73 20 66 72 6f 6d 20 74 68 65 20 74 72 61 64 69 74 69 6f 6e 61 6c 20 63 6f 6e 63 65 70 74 | les.from.the.traditional.concept |
| b3980 | 20 61 62 6f 76 65 2e 00 57 69 74 68 20 7a 6f 6e 65 2d 62 61 73 65 64 20 66 69 72 65 77 61 6c 6c | .above..With.zone-based.firewall |
| b39a0 | 73 20 61 20 6e 65 77 20 63 6f 6e 63 65 70 74 20 77 61 73 20 69 6d 70 6c 65 6d 65 6e 74 65 64 2c | s.a.new.concept.was.implemented, |
| b39c0 | 20 69 6e 20 61 64 64 69 74 69 6f 6e 20 74 6f 20 74 68 65 20 73 74 61 6e 64 61 72 64 20 69 6e 20 | .in.addition.to.the.standard.in. |
| b39e0 | 61 6e 64 20 6f 75 74 20 74 72 61 66 66 69 63 20 66 6c 6f 77 73 2c 20 61 20 6c 6f 63 61 6c 20 66 | and.out.traffic.flows,.a.local.f |
| b3a00 | 6c 6f 77 20 77 61 73 20 61 64 64 65 64 2e 20 54 68 69 73 20 6c 6f 63 61 6c 20 77 61 73 20 66 6f | low.was.added..This.local.was.fo |
| b3a20 | 72 20 74 72 61 66 66 69 63 20 6f 72 69 67 69 6e 61 74 69 6e 67 20 61 6e 64 20 64 65 73 74 69 6e | r.traffic.originating.and.destin |
| b3a40 | 65 64 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 2e 20 57 68 69 63 68 20 6d | ed.to.the.router.itself..Which.m |
| b3a60 | 65 61 6e 73 20 61 64 64 69 74 69 6f 6e 61 6c 20 72 75 6c 65 73 20 77 65 72 65 20 72 65 71 75 69 | eans.additional.rules.were.requi |
| b3a80 | 72 65 64 20 74 6f 20 73 65 63 75 72 65 20 74 68 65 20 66 69 72 65 77 61 6c 6c 20 69 74 73 65 6c | red.to.secure.the.firewall.itsel |
| b3aa0 | 66 20 66 72 6f 6d 20 74 68 65 20 6e 65 74 77 6f 72 6b 2c 20 69 6e 20 61 64 64 69 74 69 6f 6e 20 | f.from.the.network,.in.addition. |
| b3ac0 | 74 6f 20 74 68 65 20 65 78 69 73 74 69 6e 67 20 69 6e 62 6f 75 6e 64 20 61 6e 64 20 6f 75 74 62 | to.the.existing.inbound.and.outb |
| b3ae0 | 6f 75 6e 64 20 72 75 6c 65 73 20 66 72 6f 6d 20 74 68 65 20 74 72 61 64 69 74 69 6f 6e 61 6c 20 | ound.rules.from.the.traditional. |
| b3b00 | 63 6f 6e 63 65 70 74 20 61 62 6f 76 65 2e 00 57 69 74 68 20 7a 6f 6e 65 2d 62 61 73 65 64 20 66 | concept.above..With.zone-based.f |
| b3b20 | 69 72 65 77 61 6c 6c 73 20 61 20 6e 65 77 20 63 6f 6e 63 65 70 74 20 77 61 73 20 69 6d 70 6c 65 | irewalls.a.new.concept.was.imple |
| b3b40 | 6d 65 6e 74 65 64 2c 20 69 6e 20 61 64 64 74 69 6f 6e 20 74 6f 20 74 68 65 20 73 74 61 6e 64 61 | mented,.in.addtion.to.the.standa |
| b3b60 | 72 64 20 69 6e 20 61 6e 64 20 6f 75 74 20 74 72 61 66 66 69 63 20 66 6c 6f 77 73 2c 20 61 20 6c | rd.in.and.out.traffic.flows,.a.l |
| b3b80 | 6f 63 61 6c 20 66 6c 6f 77 20 77 61 73 20 61 64 64 65 64 2e 20 54 68 69 73 20 6c 6f 63 61 6c 20 | ocal.flow.was.added..This.local. |
| b3ba0 | 77 61 73 20 66 6f 72 20 74 72 61 66 66 69 63 20 6f 72 69 67 69 6e 61 74 69 6e 67 20 61 6e 64 20 | was.for.traffic.originating.and. |
| b3bc0 | 64 65 73 74 69 6e 65 64 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 2e 20 57 | destined.to.the.router.itself..W |
| b3be0 | 68 69 63 68 20 6d 65 61 6e 73 20 61 64 64 69 74 69 6f 6e 61 6c 20 72 75 6c 65 73 20 77 65 72 65 | hich.means.additional.rules.were |
| b3c00 | 20 72 65 71 75 69 72 65 64 20 74 6f 20 73 65 63 75 72 65 20 74 68 65 20 66 69 72 65 77 61 6c 6c | .required.to.secure.the.firewall |
| b3c20 | 20 69 74 73 65 6c 66 20 66 72 6f 6d 20 74 68 65 20 6e 65 74 77 6f 72 6b 2c 20 69 6e 20 61 64 64 | .itself.from.the.network,.in.add |
| b3c40 | 69 74 69 6f 6e 20 74 6f 20 74 68 65 20 65 78 69 73 74 69 6e 67 20 69 6e 62 6f 75 6e 64 20 61 6e | ition.to.the.existing.inbound.an |
| b3c60 | 64 20 6f 75 74 62 6f 75 6e 64 20 72 75 6c 65 73 20 66 72 6f 6d 20 74 68 65 20 74 72 61 64 69 74 | d.outbound.rules.from.the.tradit |
| b3c80 | 69 6f 6e 61 6c 20 63 6f 6e 63 65 70 74 20 61 62 6f 76 65 2e 00 59 00 59 6f 75 20 61 70 70 6c 79 | ional.concept.above..Y.You.apply |
| b3ca0 | 20 61 20 72 75 6c 65 2d 73 65 74 20 61 6c 77 61 79 73 20 74 6f 20 61 20 7a 6f 6e 65 20 66 72 6f | .a.rule-set.always.to.a.zone.fro |
| b3cc0 | 6d 20 61 6e 20 6f 74 68 65 72 20 7a 6f 6e 65 2c 20 69 74 20 69 73 20 72 65 63 6f 6d 6d 65 6e 64 | m.an.other.zone,.it.is.recommend |
| b3ce0 | 65 64 20 74 6f 20 63 72 65 61 74 65 20 6f 6e 65 20 72 75 6c 65 2d 73 65 74 20 66 6f 72 20 65 61 | ed.to.create.one.rule-set.for.ea |
| b3d00 | 63 68 20 7a 6f 6e 65 20 70 61 69 72 2e 00 59 6f 75 20 61 72 65 20 61 62 6c 65 20 74 6f 20 73 65 | ch.zone.pair..You.are.able.to.se |
| b3d20 | 74 20 70 6f 73 74 2d 6c 6f 67 69 6e 20 6f 72 20 70 72 65 2d 6c 6f 67 69 6e 20 62 61 6e 6e 65 72 | t.post-login.or.pre-login.banner |
| b3d40 | 20 6d 65 73 73 61 67 65 73 20 74 6f 20 64 69 73 70 6c 61 79 20 63 65 72 74 61 69 6e 20 69 6e 66 | .messages.to.display.certain.inf |
| b3d60 | 6f 72 6d 61 74 69 6f 6e 20 66 6f 72 20 74 68 69 73 20 73 79 73 74 65 6d 2e 00 59 6f 75 20 61 72 | ormation.for.this.system..You.ar |
| b3d80 | 65 20 62 65 20 61 62 6c 65 20 74 6f 20 64 6f 77 6e 6c 6f 61 64 20 74 68 65 20 66 69 6c 65 73 20 | e.be.able.to.download.the.files. |
| b3da0 | 75 73 69 6e 67 20 53 43 50 2c 20 6f 6e 63 65 20 74 68 65 20 53 53 48 20 73 65 72 76 69 63 65 20 | using.SCP,.once.the.SSH.service. |
| b3dc0 | 68 61 73 20 62 65 65 6e 20 61 63 74 69 76 61 74 65 64 20 6c 69 6b 65 20 73 6f 00 59 6f 75 20 63 | has.been.activated.like.so.You.c |
| b3de0 | 61 6e 20 61 6c 73 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 74 69 6d 65 20 69 6e 74 65 72 | an.also.configure.the.time.inter |
| b3e00 | 76 61 6c 20 66 6f 72 20 70 72 65 65 6d 70 74 69 6f 6e 20 77 69 74 68 20 74 68 65 20 22 70 72 65 | val.for.preemption.with.the."pre |
| b3e20 | 65 6d 70 74 2d 64 65 6c 61 79 22 20 6f 70 74 69 6f 6e 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 2c | empt-delay".option..For.example, |
| b3e40 | 20 74 6f 20 73 65 74 20 74 68 65 20 68 69 67 68 65 72 20 70 72 69 6f 72 69 74 79 20 72 6f 75 74 | .to.set.the.higher.priority.rout |
| b3e60 | 65 72 20 74 6f 20 74 61 6b 65 20 6f 76 65 72 20 69 6e 20 31 38 30 20 73 65 63 6f 6e 64 73 2c 20 | er.to.take.over.in.180.seconds,. |
| b3e80 | 75 73 65 3a 00 59 6f 75 20 63 61 6e 20 61 6c 73 6f 20 64 65 66 69 6e 65 20 63 75 73 74 6f 6d 20 | use:.You.can.also.define.custom. |
| b3ea0 | 74 69 6d 65 6f 75 74 20 76 61 6c 75 65 73 20 74 6f 20 61 70 70 6c 79 20 74 6f 20 61 20 73 70 65 | timeout.values.to.apply.to.a.spe |
| b3ec0 | 63 69 66 69 63 20 73 75 62 73 65 74 20 6f 66 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2c 20 62 61 73 | cific.subset.of.connections,.bas |
| b3ee0 | 65 64 20 6f 6e 20 61 20 70 61 63 6b 65 74 20 61 6e 64 20 66 6c 6f 77 20 73 65 6c 65 63 74 6f 72 | ed.on.a.packet.and.flow.selector |
| b3f00 | 2e 20 54 6f 20 64 6f 20 74 68 69 73 2c 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 63 72 65 61 74 65 | ..To.do.this,.you.need.to.create |
| b3f20 | 20 61 20 72 75 6c 65 20 64 65 66 69 6e 69 6e 67 20 74 68 65 20 70 61 63 6b 65 74 20 61 6e 64 20 | .a.rule.defining.the.packet.and. |
| b3f40 | 66 6c 6f 77 20 73 65 6c 65 63 74 6f 72 2e 00 59 6f 75 20 63 61 6e 20 61 6c 73 6f 20 6b 65 65 70 | flow.selector..You.can.also.keep |
| b3f60 | 20 64 69 66 66 65 72 65 6e 74 20 44 4e 53 20 7a 6f 6e 65 20 75 70 64 61 74 65 64 2e 20 4a 75 73 | .different.DNS.zone.updated..Jus |
| b3f80 | 74 20 63 72 65 61 74 65 20 61 20 6e 65 77 20 63 6f 6e 66 69 67 20 6e 6f 64 65 3a 20 60 60 73 65 | t.create.a.new.config.node:.``se |
| b3fa0 | 74 20 73 65 72 76 69 63 65 20 64 6e 73 20 64 79 6e 61 6d 69 63 20 69 6e 74 65 72 66 61 63 65 20 | t.service.dns.dynamic.interface. |
| b3fc0 | 3c 69 6e 74 65 72 66 61 63 65 3e 20 72 66 63 32 31 33 36 20 3c 6f 74 68 65 72 2d 73 65 72 76 69 | <interface>.rfc2136.<other-servi |
| b3fe0 | 63 65 2d 6e 61 6d 65 3e 60 60 00 59 6f 75 20 63 61 6e 20 61 6c 73 6f 20 6f 70 74 20 66 6f 72 20 | ce-name>``.You.can.also.opt.for. |
| b4000 | 75 73 69 6e 67 20 60 3a 3a 2f 36 34 60 20 61 73 20 70 72 65 66 69 78 20 66 6f 72 20 79 6f 75 72 | using.`::/64`.as.prefix.for.your |
| b4020 | 20 3a 61 62 62 72 3a 60 52 41 73 20 28 52 6f 75 74 65 72 20 41 64 76 65 72 74 69 73 65 6d 65 6e | .:abbr:`RAs.(Router.Advertisemen |
| b4040 | 74 73 29 60 2e 20 54 68 69 73 20 77 69 6c 6c 20 74 61 6b 65 20 74 68 65 20 49 50 76 36 20 47 55 | ts)`..This.will.take.the.IPv6.GU |
| b4060 | 41 20 70 72 65 66 69 78 20 61 73 73 69 67 6e 65 64 20 74 6f 20 74 68 65 20 69 6e 74 65 72 66 61 | A.prefix.assigned.to.the.interfa |
| b4080 | 63 65 2c 20 77 68 69 63 68 20 63 6f 6d 65 73 20 69 6e 20 68 61 6e 64 79 20 77 68 65 6e 20 75 73 | ce,.which.comes.in.handy.when.us |
| b40a0 | 69 6e 67 20 44 48 43 50 76 36 2d 50 44 2e 00 59 6f 75 20 63 61 6e 20 61 6c 73 6f 20 73 70 65 63 | ing.DHCPv6-PD..You.can.also.spec |
| b40c0 | 69 66 79 20 77 68 69 63 68 20 49 50 76 36 20 61 63 63 65 73 73 2d 6c 69 73 74 20 73 68 6f 75 6c | ify.which.IPv6.access-list.shoul |
| b40e0 | 64 20 62 65 20 73 68 6f 77 6e 3a 00 59 6f 75 20 63 61 6e 20 61 6c 73 6f 20 74 75 6e 65 20 6d 75 | d.be.shown:.You.can.also.tune.mu |
| b4100 | 6c 74 69 63 61 73 74 20 77 69 74 68 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 | lticast.with.the.following.comma |
| b4120 | 6e 64 73 2e 00 59 6f 75 20 63 61 6e 20 61 6c 73 6f 20 75 73 65 20 61 6e 6f 74 68 65 72 20 61 74 | nds..You.can.also.use.another.at |
| b4140 | 74 72 69 62 75 74 65 73 20 66 6f 72 20 69 64 65 6e 74 69 66 79 20 63 6c 69 65 6e 74 20 66 6f 72 | tributes.for.identify.client.for |
| b4160 | 20 64 69 73 63 6f 6e 6e 65 63 74 2c 20 6c 69 6b 65 20 46 72 61 6d 65 64 2d 49 50 2d 41 64 64 72 | .disconnect,.like.Framed-IP-Addr |
| b4180 | 65 73 73 2c 20 41 63 63 74 2d 53 65 73 73 69 6f 6e 2d 49 64 2c 20 65 74 63 2e 20 52 65 73 75 6c | ess,.Acct-Session-Id,.etc..Resul |
| b41a0 | 74 20 63 6f 6d 6d 61 6e 64 73 20 61 70 70 65 61 72 73 20 69 6e 20 6c 6f 67 2e 00 59 6f 75 20 63 | t.commands.appears.in.log..You.c |
| b41c0 | 61 6e 20 61 6c 73 6f 20 77 72 69 74 65 20 61 20 64 65 73 63 72 69 70 74 69 6f 6e 20 66 6f 72 20 | an.also.write.a.description.for. |
| b41e0 | 61 20 66 69 6c 74 65 72 3a 00 59 6f 75 20 63 61 6e 20 61 73 73 69 67 6e 20 6d 75 6c 74 69 70 6c | a.filter:.You.can.assign.multipl |
| b4200 | 65 20 6b 65 79 73 20 74 6f 20 74 68 65 20 73 61 6d 65 20 75 73 65 72 20 62 79 20 75 73 69 6e 67 | e.keys.to.the.same.user.by.using |
| b4220 | 20 61 20 75 6e 69 71 75 65 20 69 64 65 6e 74 69 66 69 65 72 20 70 65 72 20 53 53 48 20 6b 65 79 | .a.unique.identifier.per.SSH.key |
| b4240 | 2e 00 59 6f 75 20 63 61 6e 20 61 76 6f 69 64 20 74 68 65 20 22 6c 65 61 6b 79 22 20 62 65 68 61 | ..You.can.avoid.the."leaky".beha |
| b4260 | 76 69 6f 72 20 62 79 20 75 73 69 6e 67 20 61 20 66 69 72 65 77 61 6c 6c 20 70 6f 6c 69 63 79 20 | vior.by.using.a.firewall.policy. |
| b4280 | 74 68 61 74 20 64 72 6f 70 73 20 22 69 6e 76 61 6c 69 64 22 20 73 74 61 74 65 20 70 61 63 6b 65 | that.drops."invalid".state.packe |
| b42a0 | 74 73 2e 00 59 6f 75 20 63 61 6e 20 63 68 65 63 6b 20 79 6f 75 72 20 4e 49 43 20 64 72 69 76 65 | ts..You.can.check.your.NIC.drive |
| b42c0 | 72 20 62 79 20 69 73 73 75 69 6e 67 20 3a 6f 70 63 6d 64 3a 60 73 68 6f 77 20 69 6e 74 65 72 66 | r.by.issuing.:opcmd:`show.interf |
| b42e0 | 61 63 65 73 20 65 74 68 65 72 6e 65 74 20 65 74 68 30 20 70 68 79 73 69 63 61 6c 20 7c 20 67 72 | aces.ethernet.eth0.physical.|.gr |
| b4300 | 65 70 20 2d 69 20 64 72 69 76 65 72 60 00 59 6f 75 20 63 61 6e 20 63 6f 6e 66 69 67 75 72 65 20 | ep.-i.driver`.You.can.configure. |
| b4320 | 61 20 70 6f 6c 69 63 79 20 69 6e 74 6f 20 61 20 63 6c 61 73 73 20 74 68 72 6f 75 67 68 20 74 68 | a.policy.into.a.class.through.th |
| b4340 | 65 20 60 60 71 75 65 75 65 2d 74 79 70 65 60 60 20 73 65 74 74 69 6e 67 2e 00 59 6f 75 20 63 61 | e.``queue-type``.setting..You.ca |
| b4360 | 6e 20 63 6f 6e 66 69 67 75 72 65 20 63 6c 61 73 73 65 73 20 28 75 70 20 74 6f 20 34 30 39 30 29 | n.configure.classes.(up.to.4090) |
| b4380 | 20 77 69 74 68 20 64 69 66 66 65 72 65 6e 74 20 73 65 74 74 69 6e 67 73 20 61 6e 64 20 61 20 64 | .with.different.settings.and.a.d |
| b43a0 | 65 66 61 75 6c 74 20 70 6f 6c 69 63 79 20 77 68 69 63 68 20 77 69 6c 6c 20 62 65 20 61 70 70 6c | efault.policy.which.will.be.appl |
| b43c0 | 69 65 64 20 74 6f 20 61 6e 79 20 74 72 61 66 66 69 63 20 6e 6f 74 20 6d 61 74 63 68 69 6e 67 20 | ied.to.any.traffic.not.matching. |
| b43e0 | 61 6e 79 20 6f 66 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 63 6c 61 73 73 65 73 2e 00 59 | any.of.the.configured.classes..Y |
| b4400 | 6f 75 20 63 61 6e 20 63 6f 6e 66 69 67 75 72 65 20 6d 75 6c 74 69 70 6c 65 20 69 6e 74 65 72 66 | ou.can.configure.multiple.interf |
| b4420 | 61 63 65 73 20 77 68 69 63 68 20 77 68 6f 75 6c 64 20 70 61 72 74 69 63 69 70 61 74 65 20 69 6e | aces.which.whould.participate.in |
| b4440 | 20 66 6c 6f 77 20 61 63 63 6f 75 6e 74 69 6e 67 2e 00 59 6f 75 20 63 61 6e 20 63 6f 6e 66 69 67 | .flow.accounting..You.can.config |
| b4460 | 75 72 65 20 6d 75 6c 74 69 70 6c 65 20 69 6e 74 65 72 66 61 63 65 73 20 77 68 69 63 68 20 77 68 | ure.multiple.interfaces.which.wh |
| b4480 | 6f 75 6c 64 20 70 61 72 74 69 63 69 70 61 74 65 20 69 6e 20 73 66 6c 6f 77 20 61 63 63 6f 75 6e | ould.participate.in.sflow.accoun |
| b44a0 | 74 69 6e 67 2e 00 59 6f 75 20 63 61 6e 20 63 6f 6e 66 69 67 75 72 65 20 6d 75 6c 74 69 70 6c 65 | ting..You.can.configure.multiple |
| b44c0 | 20 69 6e 74 65 72 66 61 63 65 73 20 77 68 69 63 68 20 77 6f 75 6c 64 20 70 61 72 74 69 63 69 70 | .interfaces.which.would.particip |
| b44e0 | 61 74 65 20 69 6e 20 66 6c 6f 77 20 61 63 63 6f 75 6e 74 69 6e 67 2e 00 59 6f 75 20 63 61 6e 20 | ate.in.flow.accounting..You.can. |
| b4500 | 63 6f 6e 66 69 67 75 72 65 20 6d 75 6c 74 69 70 6c 65 20 69 6e 74 65 72 66 61 63 65 73 20 77 68 | configure.multiple.interfaces.wh |
| b4520 | 69 63 68 20 77 6f 75 6c 64 20 70 61 72 74 69 63 69 70 61 74 65 20 69 6e 20 73 66 6c 6f 77 20 61 | ich.would.participate.in.sflow.a |
| b4540 | 63 63 6f 75 6e 74 69 6e 67 2e 00 59 6f 75 20 63 61 6e 20 63 72 65 61 74 65 20 6d 75 6c 74 69 70 | ccounting..You.can.create.multip |
| b4560 | 6c 65 20 56 4c 41 4e 20 69 6e 74 65 72 66 61 63 65 73 20 6f 6e 20 61 20 70 68 79 73 69 63 61 6c | le.VLAN.interfaces.on.a.physical |
| b4580 | 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 65 20 56 4c 41 4e 20 49 44 20 72 61 6e 67 65 20 69 73 | .interface..The.VLAN.ID.range.is |
| b45a0 | 20 66 72 6f 6d 20 30 20 74 6f 20 34 30 39 34 2e 00 59 6f 75 20 63 61 6e 20 64 65 66 69 6e 65 20 | .from.0.to.4094..You.can.define. |
| b45c0 | 63 75 73 74 6f 6d 20 74 69 6d 65 6f 75 74 20 76 61 6c 75 65 73 20 74 6f 20 61 70 70 6c 79 20 74 | custom.timeout.values.to.apply.t |
| b45e0 | 6f 20 61 20 73 70 65 63 69 66 69 63 20 73 75 62 73 65 74 20 6f 66 20 63 6f 6e 6e 65 63 74 69 6f | o.a.specific.subset.of.connectio |
| b4600 | 6e 73 2c 20 62 61 73 65 64 20 6f 6e 20 61 20 70 61 63 6b 65 74 20 61 6e 64 20 66 6c 6f 77 20 73 | ns,.based.on.a.packet.and.flow.s |
| b4620 | 65 6c 65 63 74 6f 72 2e 20 54 6f 20 64 6f 20 74 68 69 73 2c 20 79 6f 75 20 6e 65 65 64 20 74 6f | elector..To.do.this,.you.need.to |
| b4640 | 20 63 72 65 61 74 65 20 61 20 72 75 6c 65 20 64 65 66 69 6e 69 6e 67 20 74 68 65 20 70 61 63 6b | .create.a.rule.defining.the.pack |
| b4660 | 65 74 20 61 6e 64 20 66 6c 6f 77 20 73 65 6c 65 63 74 6f 72 2e 00 59 6f 75 20 63 61 6e 20 64 69 | et.and.flow.selector..You.can.di |
| b4680 | 73 61 62 6c 65 20 61 20 56 52 52 50 20 67 72 6f 75 70 20 77 69 74 68 20 60 60 64 69 73 61 62 6c | sable.a.VRRP.group.with.``disabl |
| b46a0 | 65 60 60 20 6f 70 74 69 6f 6e 3a 00 59 6f 75 20 63 61 6e 20 67 65 74 20 6d 6f 72 65 20 73 70 65 | e``.option:.You.can.get.more.spe |
| b46c0 | 63 69 66 69 63 20 4f 53 50 46 76 33 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 62 79 20 75 73 69 6e | cific.OSPFv3.information.by.usin |
| b46e0 | 67 20 74 68 65 20 70 61 72 61 6d 65 74 65 72 73 20 73 68 6f 77 6e 20 62 65 6c 6f 77 3a 00 59 6f | g.the.parameters.shown.below:.Yo |
| b4700 | 75 20 63 61 6e 20 6e 6f 74 20 61 73 73 69 67 6e 20 74 68 65 20 73 61 6d 65 20 61 6c 6c 6f 77 65 | u.can.not.assign.the.same.allowe |
| b4720 | 64 2d 69 70 73 20 73 74 61 74 65 6d 65 6e 74 20 74 6f 20 6d 75 6c 74 69 70 6c 65 20 57 69 72 65 | d-ips.statement.to.multiple.Wire |
| b4740 | 47 75 61 72 64 20 70 65 65 72 73 2e 20 54 68 69 73 20 61 20 64 65 73 69 67 6e 20 64 65 63 69 73 | Guard.peers..This.a.design.decis |
| b4760 | 69 6f 6e 2e 20 46 6f 72 20 6d 6f 72 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 70 6c 65 61 73 65 | ion..For.more.information.please |
| b4780 | 20 63 68 65 63 6b 20 74 68 65 20 60 57 69 72 65 47 75 61 72 64 20 6d 61 69 6c 69 6e 67 20 6c 69 | .check.the.`WireGuard.mailing.li |
| b47a0 | 73 74 60 5f 2e 00 59 6f 75 20 63 61 6e 20 6e 6f 74 20 72 75 6e 20 74 68 69 73 20 69 6e 20 61 20 | st`_..You.can.not.run.this.in.a. |
| b47c0 | 56 52 52 50 20 73 65 74 75 70 2c 20 69 66 20 6d 75 6c 74 69 70 6c 65 20 6d 44 4e 53 20 72 65 70 | VRRP.setup,.if.multiple.mDNS.rep |
| b47e0 | 65 61 74 65 72 73 20 61 72 65 20 6c 61 75 6e 63 68 65 64 20 69 6e 20 61 20 73 75 62 6e 65 74 20 | eaters.are.launched.in.a.subnet. |
| b4800 | 79 6f 75 20 77 69 6c 6c 20 65 78 70 65 72 69 65 6e 63 65 20 74 68 65 20 6d 44 4e 53 20 70 61 63 | you.will.experience.the.mDNS.pac |
| b4820 | 6b 65 74 20 73 74 6f 72 6d 20 64 65 61 74 68 21 00 59 6f 75 20 63 61 6e 20 6e 6f 77 20 22 64 69 | ket.storm.death!.You.can.now."di |
| b4840 | 61 6c 22 20 74 68 65 20 70 65 65 72 20 77 69 74 68 20 74 68 65 20 66 6f 6c 6c 77 6f 69 6e 67 20 | al".the.peer.with.the.follwoing. |
| b4860 | 63 6f 6d 6d 61 6e 64 3a 20 60 60 73 73 74 70 63 20 2d 2d 6c 6f 67 2d 6c 65 76 65 6c 20 34 20 2d | command:.``sstpc.--log-level.4.- |
| b4880 | 2d 6c 6f 67 2d 73 74 64 65 72 72 20 2d 2d 75 73 65 72 20 76 79 6f 73 20 2d 2d 70 61 73 73 77 6f | -log-stderr.--user.vyos.--passwo |
| b48a0 | 72 64 20 76 79 6f 73 20 76 70 6e 2e 65 78 61 6d 70 6c 65 2e 63 6f 6d 20 2d 2d 20 63 61 6c 6c 20 | rd.vyos.vpn.example.com.--.call. |
| b48c0 | 76 79 6f 73 60 60 2e 00 59 6f 75 20 63 61 6e 20 6e 6f 77 20 53 53 48 20 69 6e 74 6f 20 79 6f 75 | vyos``..You.can.now.SSH.into.you |
| b48e0 | 72 20 73 79 73 74 65 6d 20 75 73 69 6e 67 20 61 64 6d 69 6e 2f 61 64 6d 69 6e 20 61 73 20 61 20 | r.system.using.admin/admin.as.a. |
| b4900 | 64 65 66 61 75 6c 74 20 75 73 65 72 20 73 75 70 70 6c 69 65 64 20 66 72 6f 6d 20 74 68 65 20 60 | default.user.supplied.from.the.` |
| b4920 | 60 6c 66 6b 65 69 74 65 6c 2f 74 61 63 61 63 73 5f 70 6c 75 73 3a 6c 61 74 65 73 74 60 60 20 63 | `lfkeitel/tacacs_plus:latest``.c |
| b4940 | 6f 6e 74 61 69 6e 65 72 2e 00 59 6f 75 20 63 61 6e 20 6f 6e 6c 79 20 61 70 70 6c 79 20 6f 6e 65 | ontainer..You.can.only.apply.one |
| b4960 | 20 70 6f 6c 69 63 79 20 70 65 72 20 69 6e 74 65 72 66 61 63 65 20 61 6e 64 20 64 69 72 65 63 74 | .policy.per.interface.and.direct |
| b4980 | 69 6f 6e 2c 20 62 75 74 20 79 6f 75 20 63 6f 75 6c 64 20 72 65 75 73 65 20 61 20 70 6f 6c 69 63 | ion,.but.you.could.reuse.a.polic |
| b49a0 | 79 20 6f 6e 20 64 69 66 66 65 72 65 6e 74 20 69 6e 74 65 72 66 61 63 65 73 20 61 6e 64 20 64 69 | y.on.different.interfaces.and.di |
| b49c0 | 72 65 63 74 69 6f 6e 73 3a 00 59 6f 75 20 63 61 6e 20 6f 6e 6c 79 20 73 70 65 63 69 66 79 20 61 | rections:.You.can.only.specify.a |
| b49e0 | 20 73 6f 75 72 63 65 20 6d 61 63 2d 61 64 64 72 65 73 73 20 74 6f 20 6d 61 74 63 68 2e 00 59 6f | .source.mac-address.to.match..Yo |
| b4a00 | 75 20 63 61 6e 20 72 75 6e 20 74 68 65 20 55 44 50 20 62 72 6f 61 64 63 61 73 74 20 72 65 6c 61 | u.can.run.the.UDP.broadcast.rela |
| b4a20 | 79 20 73 65 72 76 69 63 65 20 6f 6e 20 6d 75 6c 74 69 70 6c 65 20 72 6f 75 74 65 72 73 20 63 6f | y.service.on.multiple.routers.co |
| b4a40 | 6e 6e 65 63 74 65 64 20 74 6f 20 61 20 73 75 62 6e 65 74 2e 20 54 68 65 72 65 20 69 73 20 2a 2a | nnected.to.a.subnet..There.is.** |
| b4a60 | 4e 4f 2a 2a 20 55 44 50 20 62 72 6f 61 64 63 61 73 74 20 72 65 6c 61 79 20 70 61 63 6b 65 74 20 | NO**.UDP.broadcast.relay.packet. |
| b4a80 | 73 74 6f 72 6d 21 00 59 6f 75 20 63 61 6e 20 73 70 65 63 69 66 79 20 61 20 73 74 61 74 69 63 20 | storm!.You.can.specify.a.static. |
| b4aa0 | 44 48 43 50 20 61 73 73 69 67 6e 6d 65 6e 74 20 6f 6e 20 61 20 70 65 72 20 68 6f 73 74 20 62 61 | DHCP.assignment.on.a.per.host.ba |
| b4ac0 | 73 69 73 2e 20 59 6f 75 20 77 69 6c 6c 20 6e 65 65 64 20 74 68 65 20 4d 41 43 20 61 64 64 72 65 | sis..You.will.need.the.MAC.addre |
| b4ae0 | 73 73 20 6f 66 20 74 68 65 20 73 74 61 74 69 6f 6e 20 61 6e 64 20 79 6f 75 72 20 64 65 73 69 72 | ss.of.the.station.and.your.desir |
| b4b00 | 65 64 20 49 50 20 61 64 64 72 65 73 73 2e 20 54 68 65 20 61 64 64 72 65 73 73 20 6d 75 73 74 20 | ed.IP.address..The.address.must. |
| b4b20 | 62 65 20 69 6e 73 69 64 65 20 74 68 65 20 73 75 62 6e 65 74 20 64 65 66 69 6e 69 74 69 6f 6e 20 | be.inside.the.subnet.definition. |
| b4b40 | 62 75 74 20 63 61 6e 20 62 65 20 6f 75 74 73 69 64 65 20 6f 66 20 74 68 65 20 72 61 6e 67 65 20 | but.can.be.outside.of.the.range. |
| b4b60 | 73 74 61 74 65 6d 65 6e 74 2e 00 59 6f 75 20 63 61 6e 20 74 65 73 74 20 74 68 65 20 53 4e 4d 50 | statement..You.can.test.the.SNMP |
| b4b80 | 76 33 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 20 66 72 6f 6d 20 61 6e 79 20 6c 69 6e 75 78 20 | v3.functionality.from.any.linux. |
| b4ba0 | 62 61 73 65 64 20 73 79 73 74 65 6d 2c 20 6a 75 73 74 20 72 75 6e 20 74 68 65 20 66 6f 6c 6c 6f | based.system,.just.run.the.follo |
| b4bc0 | 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 3a 20 60 60 73 6e 6d 70 77 61 6c 6b 20 2d 76 20 33 20 2d 75 | wing.command:.``snmpwalk.-v.3.-u |
| b4be0 | 20 76 79 6f 73 20 2d 61 20 53 48 41 20 2d 41 20 76 79 6f 73 31 32 33 34 35 36 37 38 20 2d 78 20 | .vyos.-a.SHA.-A.vyos12345678.-x. |
| b4c00 | 41 45 53 20 2d 58 20 76 79 6f 73 31 32 33 34 35 36 37 38 20 2d 6c 20 61 75 74 68 50 72 69 76 20 | AES.-X.vyos12345678.-l.authPriv. |
| b4c20 | 31 39 32 2e 30 2e 32 2e 31 20 2e 31 60 60 00 59 6f 75 20 63 61 6e 20 75 73 65 20 77 69 6c 64 63 | 192.0.2.1..1``.You.can.use.wildc |
| b4c40 | 61 72 64 20 60 60 2a 60 60 20 74 6f 20 6d 61 74 63 68 20 61 20 67 72 6f 75 70 20 6f 66 20 69 6e | ard.``*``.to.match.a.group.of.in |
| b4c60 | 74 65 72 66 61 63 65 73 2e 00 59 6f 75 20 63 61 6e 20 76 65 72 69 66 79 20 79 6f 75 72 20 56 52 | terfaces..You.can.verify.your.VR |
| b4c80 | 52 50 20 67 72 6f 75 70 20 73 74 61 74 75 73 20 77 69 74 68 20 74 68 65 20 6f 70 65 72 61 74 69 | RP.group.status.with.the.operati |
| b4ca0 | 6f 6e 61 6c 20 6d 6f 64 65 20 60 60 72 75 6e 20 73 68 6f 77 20 76 72 72 70 60 60 20 63 6f 6d 6d | onal.mode.``run.show.vrrp``.comm |
| b4cc0 | 61 6e 64 3a 00 59 6f 75 20 63 61 6e 20 76 69 65 77 20 74 68 61 74 20 74 68 65 20 70 6f 6c 69 63 | and:.You.can.view.that.the.polic |
| b4ce0 | 79 20 69 73 20 62 65 69 6e 67 20 63 6f 72 72 65 63 74 6c 79 20 28 6f 72 20 69 6e 63 6f 72 72 65 | y.is.being.correctly.(or.incorre |
| b4d00 | 63 74 6c 79 29 20 75 74 69 6c 69 73 65 64 20 77 69 74 68 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e | ctly).utilised.with.the.followin |
| b4d20 | 67 20 63 6f 6d 6d 61 6e 64 3a 00 59 6f 75 20 63 61 6e 6e 6f 74 20 65 61 73 69 6c 79 20 72 65 64 | g.command:.You.cannot.easily.red |
| b4d40 | 69 73 74 72 69 62 75 74 65 20 49 50 76 36 20 72 6f 75 74 65 73 20 76 69 61 20 4f 53 50 46 76 33 | istribute.IPv6.routes.via.OSPFv3 |
| b4d60 | 20 6f 6e 20 61 20 57 69 72 65 47 75 61 72 64 20 69 6e 74 65 72 66 61 63 65 20 6c 69 6e 6b 2e 20 | .on.a.WireGuard.interface.link.. |
| b4d80 | 54 68 69 73 20 72 65 71 75 69 72 65 73 20 79 6f 75 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 6c | This.requires.you.to.configure.l |
| b4da0 | 69 6e 6b 2d 6c 6f 63 61 6c 20 61 64 64 72 65 73 73 65 73 20 6d 61 6e 75 61 6c 6c 79 20 6f 6e 20 | ink-local.addresses.manually.on. |
| b4dc0 | 74 68 65 20 57 69 72 65 47 75 61 72 64 20 69 6e 74 65 72 66 61 63 65 73 2c 20 73 65 65 20 3a 76 | the.WireGuard.interfaces,.see.:v |
| b4de0 | 79 74 61 73 6b 3a 60 54 31 34 38 33 60 2e 00 59 6f 75 20 64 6f 20 2a 2a 6e 6f 74 2a 2a 20 6e 65 | ytask:`T1483`..You.do.**not**.ne |
| b4e00 | 65 64 20 74 6f 20 63 6f 70 79 20 74 68 65 20 63 65 72 74 69 66 69 63 61 74 65 20 74 6f 20 74 68 | ed.to.copy.the.certificate.to.th |
| b4e20 | 65 20 6f 74 68 65 72 20 72 6f 75 74 65 72 2e 20 49 6e 73 74 65 61 64 2c 20 79 6f 75 20 6e 65 65 | e.other.router..Instead,.you.nee |
| b4e40 | 64 20 74 6f 20 72 65 74 72 69 65 76 65 20 69 74 73 20 53 48 41 2d 32 35 36 20 66 69 6e 67 65 72 | d.to.retrieve.its.SHA-256.finger |
| b4e60 | 70 72 69 6e 74 2e 20 4f 70 65 6e 56 50 4e 20 6f 6e 6c 79 20 73 75 70 70 6f 72 74 73 20 53 48 41 | print..OpenVPN.only.supports.SHA |
| b4e80 | 2d 32 35 36 20 66 69 6e 67 65 72 70 72 69 6e 74 73 20 61 74 20 74 68 65 20 6d 6f 6d 65 6e 74 2c | -256.fingerprints.at.the.moment, |
| b4ea0 | 20 73 6f 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 75 73 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e | .so.you.need.to.use.the.followin |
| b4ec0 | 67 20 63 6f 6d 6d 61 6e 64 3a 00 59 6f 75 20 6d 61 79 20 61 6c 73 6f 20 61 64 64 69 74 69 6f 6e | g.command:.You.may.also.addition |
| b4ee0 | 61 6c 6c 79 20 63 6f 6e 66 69 67 75 72 65 20 74 69 6d 65 6f 75 74 73 20 66 6f 72 20 64 69 66 66 | ally.configure.timeouts.for.diff |
| b4f00 | 65 72 65 6e 74 20 74 79 70 65 73 20 6f 66 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2e 00 59 6f 75 20 | erent.types.of.connections..You. |
| b4f20 | 6d 61 79 20 65 78 70 65 63 74 20 72 65 61 6c 20 74 68 72 6f 75 67 68 70 75 74 73 20 61 72 6f 75 | may.expect.real.throughputs.arou |
| b4f40 | 6e 64 20 31 30 4d 42 79 74 65 73 2f 73 20 6f 72 20 68 69 67 68 65 72 20 69 6e 20 63 72 6f 77 64 | nd.10MBytes/s.or.higher.in.crowd |
| b4f60 | 65 64 20 61 72 65 61 73 2e 00 59 6f 75 20 6d 61 79 20 65 78 70 65 63 74 20 72 65 61 6c 20 74 68 | ed.areas..You.may.expect.real.th |
| b4f80 | 72 6f 75 67 68 70 75 74 73 20 61 72 6f 75 6e 64 20 35 30 4d 42 79 74 65 73 2f 73 20 74 6f 20 31 | roughputs.around.50MBytes/s.to.1 |
| b4fa0 | 35 30 4d 42 79 74 65 73 2f 73 2c 20 64 65 70 65 6e 64 69 6e 67 20 6f 6e 20 6f 62 73 74 72 75 63 | 50MBytes/s,.depending.on.obstruc |
| b4fc0 | 74 69 6f 6e 73 20 62 79 20 77 61 6c 6c 73 2c 20 77 61 74 65 72 2c 20 6d 65 74 61 6c 20 6f 72 20 | tions.by.walls,.water,.metal.or. |
| b4fe0 | 6f 74 68 65 72 20 6d 61 74 65 72 69 61 6c 73 20 77 69 74 68 20 68 69 67 68 20 65 6c 65 63 74 72 | other.materials.with.high.electr |
| b5000 | 6f 2d 6d 61 67 6e 65 74 69 63 20 64 61 6d 70 65 6e 69 6e 67 20 61 74 20 36 47 48 7a 2e 20 42 65 | o-magnetic.dampening.at.6GHz..Be |
| b5020 | 73 74 20 72 65 73 75 6c 74 73 20 61 72 65 20 61 63 68 69 65 76 65 64 20 77 69 74 68 20 74 68 65 | st.results.are.achieved.with.the |
| b5040 | 20 41 50 20 62 65 69 6e 67 20 69 6e 20 74 68 65 20 73 61 6d 65 20 72 6f 6f 6d 20 61 6e 64 20 69 | .AP.being.in.the.same.room.and.i |
| b5060 | 6e 20 6c 69 6e 65 2d 6f 66 2d 73 69 67 68 74 2e 00 59 6f 75 20 6d 61 79 20 70 72 65 66 65 72 20 | n.line-of-sight..You.may.prefer. |
| b5080 | 6c 6f 63 61 6c 6c 79 20 63 6f 6e 66 69 67 75 72 65 64 20 63 61 70 61 62 69 6c 69 74 69 65 73 20 | locally.configured.capabilities. |
| b50a0 | 6d 6f 72 65 20 74 68 61 6e 20 74 68 65 20 6e 65 67 6f 74 69 61 74 65 64 20 63 61 70 61 62 69 6c | more.than.the.negotiated.capabil |
| b50c0 | 69 74 69 65 73 20 65 76 65 6e 20 74 68 6f 75 67 68 20 72 65 6d 6f 74 65 20 70 65 65 72 20 73 65 | ities.even.though.remote.peer.se |
| b50e0 | 6e 64 73 20 63 61 70 61 62 69 6c 69 74 69 65 73 2e 20 49 66 20 74 68 65 20 70 65 65 72 20 69 73 | nds.capabilities..If.the.peer.is |
| b5100 | 20 63 6f 6e 66 69 67 75 72 65 64 20 62 79 20 3a 63 66 67 63 6d 64 3a 60 6f 76 65 72 72 69 64 65 | .configured.by.:cfgcmd:`override |
| b5120 | 2d 63 61 70 61 62 69 6c 69 74 79 60 2c 20 56 79 4f 53 20 69 67 6e 6f 72 65 73 20 72 65 63 65 69 | -capability`,.VyOS.ignores.recei |
| b5140 | 76 65 64 20 63 61 70 61 62 69 6c 69 74 69 65 73 20 74 68 65 6e 20 6f 76 65 72 72 69 64 65 20 6e | ved.capabilities.then.override.n |
| b5160 | 65 67 6f 74 69 61 74 65 64 20 63 61 70 61 62 69 6c 69 74 69 65 73 20 77 69 74 68 20 63 6f 6e 66 | egotiated.capabilities.with.conf |
| b5180 | 69 67 75 72 65 64 20 76 61 6c 75 65 73 2e 00 59 6f 75 20 6d 61 79 20 77 61 6e 74 20 74 6f 20 64 | igured.values..You.may.want.to.d |
| b51a0 | 69 73 61 62 6c 65 20 73 65 6e 64 69 6e 67 20 43 61 70 61 62 69 6c 69 74 79 20 4e 65 67 6f 74 69 | isable.sending.Capability.Negoti |
| b51c0 | 61 74 69 6f 6e 20 4f 50 45 4e 20 6d 65 73 73 61 67 65 20 6f 70 74 69 6f 6e 61 6c 20 70 61 72 61 | ation.OPEN.message.optional.para |
| b51e0 | 6d 65 74 65 72 20 74 6f 20 74 68 65 20 70 65 65 72 20 77 68 65 6e 20 72 65 6d 6f 74 65 20 70 65 | meter.to.the.peer.when.remote.pe |
| b5200 | 65 72 20 64 6f 65 73 20 6e 6f 74 20 69 6d 70 6c 65 6d 65 6e 74 20 43 61 70 61 62 69 6c 69 74 79 | er.does.not.implement.Capability |
| b5220 | 20 4e 65 67 6f 74 69 61 74 69 6f 6e 2e 20 50 6c 65 61 73 65 20 75 73 65 20 3a 63 66 67 63 6d 64 | .Negotiation..Please.use.:cfgcmd |
| b5240 | 3a 60 64 69 73 61 62 6c 65 2d 63 61 70 61 62 69 6c 69 74 79 2d 6e 65 67 6f 74 69 61 74 69 6f 6e | :`disable-capability-negotiation |
| b5260 | 60 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 69 73 61 62 6c 65 20 74 68 65 20 66 65 61 74 75 72 65 | `.command.to.disable.the.feature |
| b5280 | 2e 00 59 6f 75 20 6e 65 65 64 20 32 20 73 65 70 61 72 61 74 65 20 66 69 72 65 77 61 6c 6c 73 20 | ..You.need.2.separate.firewalls. |
| b52a0 | 74 6f 20 64 65 66 69 6e 65 20 74 72 61 66 66 69 63 3a 20 6f 6e 65 20 66 6f 72 20 65 61 63 68 20 | to.define.traffic:.one.for.each. |
| b52c0 | 64 69 72 65 63 74 69 6f 6e 2e 00 59 6f 75 20 6e 65 65 64 20 74 6f 20 64 69 73 61 62 6c 65 20 74 | direction..You.need.to.disable.t |
| b52e0 | 68 65 20 69 6e 2d 6d 65 6d 6f 72 79 20 74 61 62 6c 65 20 69 6e 20 70 72 6f 64 75 63 74 69 6f 6e | he.in-memory.table.in.production |
| b5300 | 20 65 6e 76 69 72 6f 6e 6d 65 6e 74 73 21 20 55 73 69 6e 67 20 3a 61 62 62 72 3a 60 49 4d 54 20 | .environments!.Using.:abbr:`IMT. |
| b5320 | 28 49 6e 2d 4d 65 6d 6f 72 79 20 54 61 62 6c 65 29 60 20 6d 61 79 20 6c 65 61 64 20 74 6f 20 68 | (In-Memory.Table)`.may.lead.to.h |
| b5340 | 65 61 76 79 20 43 50 55 20 6f 76 65 72 6c 6f 61 64 69 6e 67 20 61 6e 64 20 75 6e 73 74 61 62 6c | eavy.CPU.overloading.and.unstabl |
| b5360 | 65 20 66 6c 6f 77 2d 61 63 63 6f 75 6e 74 69 6e 67 20 62 65 68 61 76 69 6f 72 2e 00 59 6f 75 20 | e.flow-accounting.behavior..You. |
| b5380 | 6e 65 65 64 20 79 6f 75 72 20 50 50 50 6f 45 20 63 72 65 64 65 6e 74 69 61 6c 73 20 66 72 6f 6d | need.your.PPPoE.credentials.from |
| b53a0 | 20 79 6f 75 72 20 44 53 4c 20 49 53 50 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 63 6f 6e 66 69 67 | .your.DSL.ISP.in.order.to.config |
| b53c0 | 75 72 65 20 74 68 69 73 2e 20 54 68 65 20 75 73 75 61 6c 20 75 73 65 72 6e 61 6d 65 20 69 73 20 | ure.this..The.usual.username.is. |
| b53e0 | 69 6e 20 74 68 65 20 66 6f 72 6d 20 6f 66 20 6e 61 6d 65 40 68 6f 73 74 2e 6e 65 74 20 62 75 74 | in.the.form.of.name@host.net.but |
| b5400 | 20 6d 61 79 20 76 61 72 79 20 64 65 70 65 6e 64 69 6e 67 20 6f 6e 20 49 53 50 2e 00 59 6f 75 20 | .may.vary.depending.on.ISP..You. |
| b5420 | 6e 6f 77 20 73 65 65 20 74 68 65 20 6c 6f 6e 67 65 72 20 41 53 20 70 61 74 68 2e 00 59 6f 75 20 | now.see.the.longer.AS.path..You. |
| b5440 | 73 68 6f 75 6c 64 20 61 64 64 20 61 20 66 69 72 65 77 61 6c 6c 20 74 6f 20 79 6f 75 72 20 63 6f | should.add.a.firewall.to.your.co |
| b5460 | 6e 66 69 67 75 72 61 74 69 6f 6e 20 61 62 6f 76 65 20 61 73 20 77 65 6c 6c 20 62 79 20 61 73 73 | nfiguration.above.as.well.by.ass |
| b5480 | 69 67 6e 69 6e 67 20 69 74 20 74 6f 20 74 68 65 20 70 70 70 6f 65 30 20 69 74 73 65 6c 66 20 61 | igning.it.to.the.pppoe0.itself.a |
| b54a0 | 73 20 73 68 6f 77 6e 20 68 65 72 65 3a 00 59 6f 75 20 73 68 6f 75 6c 64 20 61 6c 73 6f 20 65 6e | s.shown.here:.You.should.also.en |
| b54c0 | 73 75 72 65 20 74 68 61 74 20 74 68 65 20 4f 55 54 49 53 44 45 5f 4c 4f 43 41 4c 20 66 69 72 65 | sure.that.the.OUTISDE_LOCAL.fire |
| b54e0 | 77 61 6c 6c 20 67 72 6f 75 70 20 69 73 20 61 70 70 6c 69 65 64 20 74 6f 20 74 68 65 20 57 41 4e | wall.group.is.applied.to.the.WAN |
| b5500 | 20 69 6e 74 65 72 66 61 63 65 20 61 6e 64 20 61 20 64 69 72 65 63 74 69 6f 6e 20 28 6c 6f 63 61 | .interface.and.a.direction.(loca |
| b5520 | 6c 29 2e 00 59 6f 75 20 73 68 6f 75 6c 64 20 61 6c 73 6f 20 65 6e 73 75 72 65 20 74 68 61 74 20 | l)..You.should.also.ensure.that. |
| b5540 | 74 68 65 20 4f 55 54 53 49 44 45 5f 4c 4f 43 41 4c 20 66 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 | the.OUTSIDE_LOCAL.firewall.group |
| b5560 | 20 69 73 20 61 70 70 6c 69 65 64 20 74 6f 20 74 68 65 20 57 41 4e 20 69 6e 74 65 72 66 61 63 65 | .is.applied.to.the.WAN.interface |
| b5580 | 20 61 6e 64 20 61 20 64 69 72 65 63 74 69 6f 6e 20 28 6c 6f 63 61 6c 29 2e 00 59 6f 75 20 77 69 | .and.a.direction.(local)..You.wi |
| b55a0 | 6c 6c 20 61 6c 73 6f 20 6e 65 65 64 20 74 68 65 20 70 75 62 6c 69 63 20 6b 65 79 20 6f 66 20 79 | ll.also.need.the.public.key.of.y |
| b55c0 | 6f 75 72 20 70 65 65 72 20 61 73 20 77 65 6c 6c 20 61 73 20 74 68 65 20 6e 65 74 77 6f 72 6b 28 | our.peer.as.well.as.the.network( |
| b55e0 | 73 29 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 74 75 6e 6e 65 6c 20 28 61 6c 6c 6f 77 65 64 2d 69 | s).you.want.to.tunnel.(allowed-i |
| b5600 | 70 73 29 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 57 69 72 65 47 75 61 72 64 20 74 75 6e | ps).to.configure.a.WireGuard.tun |
| b5620 | 6e 65 6c 2e 20 54 68 65 20 70 75 62 6c 69 63 20 6b 65 79 20 62 65 6c 6f 77 20 69 73 20 61 6c 77 | nel..The.public.key.below.is.alw |
| b5640 | 61 79 73 20 74 68 65 20 70 75 62 6c 69 63 20 6b 65 79 20 66 72 6f 6d 20 79 6f 75 72 20 70 65 65 | ays.the.public.key.from.your.pee |
| b5660 | 72 2c 20 6e 6f 74 20 79 6f 75 72 20 6c 6f 63 61 6c 20 6f 6e 65 2e 00 59 6f 75 72 20 49 53 50 73 | r,.not.your.local.one..Your.ISPs |
| b5680 | 20 6d 6f 64 65 6d 20 69 73 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 70 6f 72 74 20 60 60 65 74 | .modem.is.connected.to.port.``et |
| b56a0 | 68 30 60 60 20 6f 66 20 79 6f 75 72 20 56 79 4f 53 20 62 6f 78 2e 00 59 6f 75 72 20 4c 41 4e 20 | h0``.of.your.VyOS.box..Your.LAN. |
| b56c0 | 63 6f 6e 6e 65 63 74 65 64 20 6f 6e 20 65 74 68 30 20 75 73 65 73 20 70 72 65 66 69 78 20 60 60 | connected.on.eth0.uses.prefix.`` |
| b56e0 | 32 30 30 31 3a 64 62 38 3a 62 65 65 66 3a 32 3a 3a 2f 36 34 60 60 20 77 69 74 68 20 74 68 65 20 | 2001:db8:beef:2::/64``.with.the. |
| b5700 | 72 6f 75 74 65 72 20 62 65 65 69 6e 67 20 60 60 32 30 30 31 3a 64 62 38 3a 62 65 65 66 3a 32 3a | router.beeing.``2001:db8:beef:2: |
| b5720 | 3a 31 60 60 00 5a 65 62 72 61 20 73 75 70 70 6f 72 74 73 20 70 72 65 66 69 78 2d 6c 69 73 74 73 | :1``.Zebra.supports.prefix-lists |
| b5740 | 20 61 6e 64 20 52 6f 75 74 65 20 4d 61 70 73 20 74 6f 20 6d 61 74 63 68 20 72 6f 75 74 65 73 20 | .and.Route.Maps.to.match.routes. |
| b5760 | 72 65 63 65 69 76 65 64 20 66 72 6f 6d 20 6f 74 68 65 72 20 46 52 52 20 63 6f 6d 70 6f 6e 65 6e | received.from.other.FRR.componen |
| b5780 | 74 73 2e 20 54 68 65 20 70 65 72 6d 69 74 2f 64 65 6e 79 20 66 61 63 69 6c 69 74 69 65 73 20 70 | ts..The.permit/deny.facilities.p |
| b57a0 | 72 6f 76 69 64 65 64 20 62 79 20 74 68 65 73 65 20 63 6f 6d 6d 61 6e 64 73 20 63 61 6e 20 62 65 | rovided.by.these.commands.can.be |
| b57c0 | 20 75 73 65 64 20 74 6f 20 66 69 6c 74 65 72 20 77 68 69 63 68 20 72 6f 75 74 65 73 20 7a 65 62 | .used.to.filter.which.routes.zeb |
| b57e0 | 72 61 20 77 69 6c 6c 20 69 6e 73 74 61 6c 6c 20 69 6e 20 74 68 65 20 6b 65 72 6e 65 6c 2e 00 5a | ra.will.install.in.the.kernel..Z |
| b5800 | 65 62 72 61 20 73 75 70 70 6f 72 74 73 20 70 72 65 66 69 78 2d 6c 69 73 74 73 20 61 6e 64 20 52 | ebra.supports.prefix-lists.and.R |
| b5820 | 6f 75 74 65 20 4d 61 70 73 73 20 74 6f 20 6d 61 74 63 68 20 72 6f 75 74 65 73 20 72 65 63 65 69 | oute.Mapss.to.match.routes.recei |
| b5840 | 76 65 64 20 66 72 6f 6d 20 6f 74 68 65 72 20 46 52 52 20 63 6f 6d 70 6f 6e 65 6e 74 73 2e 20 54 | ved.from.other.FRR.components..T |
| b5860 | 68 65 20 70 65 72 6d 69 74 2f 64 65 6e 79 20 66 61 63 69 6c 69 74 69 65 73 20 70 72 6f 76 69 64 | he.permit/deny.facilities.provid |
| b5880 | 65 64 20 62 79 20 74 68 65 73 65 20 63 6f 6d 6d 61 6e 64 73 20 63 61 6e 20 62 65 20 75 73 65 64 | ed.by.these.commands.can.be.used |
| b58a0 | 20 74 6f 20 66 69 6c 74 65 72 20 77 68 69 63 68 20 72 6f 75 74 65 73 20 7a 65 62 72 61 20 77 69 | .to.filter.which.routes.zebra.wi |
| b58c0 | 6c 6c 20 69 6e 73 74 61 6c 6c 20 69 6e 20 74 68 65 20 6b 65 72 6e 65 6c 2e 00 5a 65 62 72 61 2f | ll.install.in.the.kernel..Zebra/ |
| b58e0 | 4b 65 72 6e 65 6c 20 72 6f 75 74 65 20 66 69 6c 74 65 72 69 6e 67 00 5a 6f 6e 65 20 42 61 73 65 | Kernel.route.filtering.Zone.Base |
| b5900 | 64 20 46 69 72 65 77 61 6c 6c 00 5a 6f 6e 65 20 42 61 73 65 64 20 46 69 72 65 77 61 6c 6c 20 28 | d.Firewall.Zone.Based.Firewall.( |
| b5920 | 44 65 70 72 65 63 61 74 65 64 29 00 5a 6f 6e 65 2d 50 6f 6c 69 63 79 20 4f 76 65 72 76 69 65 77 | Deprecated).Zone-Policy.Overview |
| b5940 | 00 5a 6f 6e 65 2d 62 61 73 65 64 20 66 69 72 65 77 61 6c 6c 00 5b 41 2e 42 2e 43 2e 44 5d 20 e2 | .Zone-based.firewall.[A.B.C.D].. |
| b5960 | 80 93 20 6c 69 6e 6b 2d 73 74 61 74 65 2d 69 64 2e 20 57 69 74 68 20 74 68 69 73 20 73 70 65 63 | ...link-state-id..With.this.spec |
| b5980 | 69 66 69 65 64 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 70 6f 72 74 69 | ified.the.command.displays.porti |
| b59a0 | 6f 6e 20 6f 66 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 65 6e 76 69 72 6f 6e 6d 65 6e 74 20 74 68 | on.of.the.network.environment.th |
| b59c0 | 61 74 20 69 73 20 62 65 69 6e 67 20 64 65 73 63 72 69 62 65 64 20 62 79 20 74 68 65 20 61 64 76 | at.is.being.described.by.the.adv |
| b59e0 | 65 72 74 69 73 65 6d 65 6e 74 2e 20 54 68 65 20 76 61 6c 75 65 20 65 6e 74 65 72 65 64 20 64 65 | ertisement..The.value.entered.de |
| b5a00 | 70 65 6e 64 73 20 6f 6e 20 74 68 65 20 61 64 76 65 72 74 69 73 65 6d 65 6e 74 e2 80 99 73 20 4c | pends.on.the.advertisement...s.L |
| b5a20 | 53 20 74 79 70 65 2e 20 49 74 20 6d 75 73 74 20 62 65 20 65 6e 74 65 72 65 64 20 69 6e 20 74 68 | S.type..It.must.be.entered.in.th |
| b5a40 | 65 20 66 6f 72 6d 20 6f 66 20 61 6e 20 49 50 20 61 64 64 72 65 73 73 2e 00 60 31 2e 20 43 72 65 | e.form.of.an.IP.address..`1..Cre |
| b5a60 | 61 74 65 20 61 6e 20 65 76 65 6e 74 20 68 61 6e 64 6c 65 72 60 5f 00 60 32 2e 20 41 64 64 20 72 | ate.an.event.handler`_.`2..Add.r |
| b5a80 | 65 67 65 78 20 74 6f 20 74 68 65 20 73 63 72 69 70 74 60 5f 00 60 33 2e 20 41 64 64 20 61 20 66 | egex.to.the.script`_.`3..Add.a.f |
| b5aa0 | 75 6c 6c 20 70 61 74 68 20 74 6f 20 74 68 65 20 73 63 72 69 70 74 60 5f 00 60 34 2e 20 41 64 64 | ull.path.to.the.script`_.`4..Add |
| b5ac0 | 20 6f 70 74 69 6f 6e 61 6c 20 70 61 72 61 6d 65 74 65 72 73 60 5f 00 60 3c 6e 61 6d 65 3e 60 20 | .optional.parameters`_.`<name>`. |
| b5ae0 | 6d 75 73 74 20 62 65 20 69 64 65 6e 74 69 63 61 6c 20 6f 6e 20 62 6f 74 68 20 73 69 64 65 73 21 | must.be.identical.on.both.sides! |
| b5b00 | 00 60 43 6f 6d 6d 6f 6e 20 41 70 70 6c 69 63 61 74 69 6f 6e 73 20 4b 65 70 74 20 45 6e 68 61 6e | .`Common.Applications.Kept.Enhan |
| b5b20 | 63 65 64 60 5f 20 28 43 41 4b 45 29 20 69 73 20 61 20 63 6f 6d 70 72 65 68 65 6e 73 69 76 65 20 | ced`_.(CAKE).is.a.comprehensive. |
| b5b40 | 71 75 65 75 65 20 6d 61 6e 61 67 65 6d 65 6e 74 20 73 79 73 74 65 6d 2c 20 69 6d 70 6c 65 6d 65 | queue.management.system,.impleme |
| b5b60 | 6e 74 65 64 20 61 73 20 61 20 71 75 65 75 65 20 64 69 73 63 69 70 6c 69 6e 65 20 28 71 64 69 73 | nted.as.a.queue.discipline.(qdis |
| b5b80 | 63 29 20 66 6f 72 20 74 68 65 20 4c 69 6e 75 78 20 6b 65 72 6e 65 6c 2e 20 49 74 20 69 73 20 64 | c).for.the.Linux.kernel..It.is.d |
| b5ba0 | 65 73 69 67 6e 65 64 20 74 6f 20 72 65 70 6c 61 63 65 20 61 6e 64 20 69 6d 70 72 6f 76 65 20 75 | esigned.to.replace.and.improve.u |
| b5bc0 | 70 6f 6e 20 74 68 65 20 63 6f 6d 70 6c 65 78 20 68 69 65 72 61 72 63 68 79 20 6f 66 20 73 69 6d | pon.the.complex.hierarchy.of.sim |
| b5be0 | 70 6c 65 20 71 64 69 73 63 73 20 70 72 65 73 65 6e 74 6c 79 20 72 65 71 75 69 72 65 64 20 74 6f | ple.qdiscs.presently.required.to |
| b5c00 | 20 65 66 66 65 63 74 69 76 65 6c 79 20 74 61 63 6b 6c 65 20 74 68 65 20 62 75 66 66 65 72 62 6c | .effectively.tackle.the.bufferbl |
| b5c20 | 6f 61 74 20 70 72 6f 62 6c 65 6d 20 61 74 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 65 64 67 65 2e | oat.problem.at.the.network.edge. |
| b5c40 | 00 60 60 24 20 74 61 69 6c 20 2d 6e 20 2b 32 20 63 61 2e 6b 65 79 20 7c 20 68 65 61 64 20 2d 6e | .``$.tail.-n.+2.ca.key.|.head.-n |
| b5c60 | 20 2d 31 20 7c 20 74 72 20 2d 64 20 27 5c 6e 27 60 60 00 60 60 24 20 74 61 69 6c 20 2d 6e 20 2b | .-1.|.tr.-d.'\n'``.``$.tail.-n.+ |
| b5c80 | 32 20 63 61 2e 70 65 6d 20 7c 20 68 65 61 64 20 2d 6e 20 2d 31 20 7c 20 74 72 20 2d 64 20 27 5c | 2.ca.pem.|.head.-n.-1.|.tr.-d.'\ |
| b5ca0 | 6e 27 60 60 00 60 60 24 20 74 61 69 6c 20 2d 6e 20 2b 32 20 63 65 72 74 2e 6b 65 79 20 7c 20 68 | n'``.``$.tail.-n.+2.cert.key.|.h |
| b5cc0 | 65 61 64 20 2d 6e 20 2d 31 20 7c 20 74 72 20 2d 64 20 27 5c 6e 27 60 60 00 60 60 24 20 74 61 69 | ead.-n.-1.|.tr.-d.'\n'``.``$.tai |
| b5ce0 | 6c 20 2d 6e 20 2b 32 20 63 65 72 74 2e 70 65 6d 20 7c 20 68 65 61 64 20 2d 6e 20 2d 31 20 7c 20 | l.-n.+2.cert.pem.|.head.-n.-1.|. |
| b5d00 | 74 72 20 2d 64 20 27 5c 6e 27 60 60 00 60 60 2b 60 60 20 73 75 63 63 65 73 73 66 75 6c 00 60 60 | tr.-d.'\n'``.``+``.successful.`` |
| b5d20 | 2d 60 60 20 66 61 69 6c 65 64 00 60 60 2f 63 6f 6e 66 69 67 2f 73 63 72 69 70 74 73 2f 64 68 63 | -``.failed.``/config/scripts/dhc |
| b5d40 | 70 2d 63 6c 69 65 6e 74 2f 70 6f 73 74 2d 68 6f 6f 6b 73 2e 64 2f 60 60 00 60 60 2f 63 6f 6e 66 | p-client/post-hooks.d/``.``/conf |
| b5d60 | 69 67 2f 73 63 72 69 70 74 73 2f 64 68 63 70 2d 63 6c 69 65 6e 74 2f 70 72 65 2d 68 6f 6f 6b 73 | ig/scripts/dhcp-client/pre-hooks |
| b5d80 | 2e 64 2f 60 60 00 60 60 30 2e 70 6f 6f 6c 2e 6e 74 70 2e 6f 72 67 60 60 00 60 60 30 60 60 20 2d | .d/``.``0.pool.ntp.org``.``0``.- |
| b5da0 | 20 32 30 20 6f 72 20 34 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 20 28 64 65 66 | .20.or.40.MHz.channel.width.(def |
| b5dc0 | 61 75 6c 74 29 00 60 60 30 60 60 20 2d 20 48 45 2d 4d 43 53 20 30 2d 37 00 60 60 30 60 60 3a 20 | ault).``0``.-.HE-MCS.0-7.``0``:. |
| b5de0 | 4e 6f 20 72 65 70 6c 61 79 20 77 69 6e 64 6f 77 2c 20 73 74 72 69 63 74 20 63 68 65 63 6b 00 60 | No.replay.window,.strict.check.` |
| b5e00 | 60 31 2d 34 32 39 34 39 36 37 32 39 35 60 60 3a 20 4e 75 6d 62 65 72 20 6f 66 20 70 61 63 6b 65 | `1-4294967295``:.Number.of.packe |
| b5e20 | 74 73 20 74 68 61 74 20 63 6f 75 6c 64 20 62 65 20 6d 69 73 6f 72 64 65 72 65 64 00 60 60 31 2e | ts.that.could.be.misordered.``1. |
| b5e40 | 70 6f 6f 6c 2e 6e 74 70 2e 6f 72 67 60 60 00 60 60 31 31 35 32 30 30 60 60 20 2d 20 31 31 35 2c | pool.ntp.org``.``115200``.-.115, |
| b5e60 | 32 30 30 20 62 70 73 20 28 64 65 66 61 75 6c 74 20 66 6f 72 20 73 65 72 69 61 6c 20 63 6f 6e 73 | 200.bps.(default.for.serial.cons |
| b5e80 | 6f 6c 65 29 00 60 60 31 32 30 30 60 60 20 2d 20 31 32 30 30 20 62 70 73 00 60 60 31 33 31 60 60 | ole).``1200``.-.1200.bps.``131`` |
| b5ea0 | 20 2d 20 32 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 00 60 60 31 33 31 60 60 20 | .-.20.MHz.channel.width.``131``. |
| b5ec0 | 2d 20 32 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 20 28 36 47 48 7a 29 00 60 60 | -.20.MHz.channel.width.(6GHz).`` |
| b5ee0 | 31 33 32 60 60 20 2d 20 34 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 00 60 60 31 | 132``.-.40.MHz.channel.width.``1 |
| b5f00 | 33 32 60 60 20 2d 20 34 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 20 28 36 47 48 | 32``.-.40.MHz.channel.width.(6GH |
| b5f20 | 7a 29 00 60 60 31 33 33 60 60 20 2d 20 38 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 | z).``133``.-.80.MHz.channel.widt |
| b5f40 | 68 00 60 60 31 33 33 60 60 20 2d 20 38 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 | h.``133``.-.80.MHz.channel.width |
| b5f60 | 20 28 36 47 48 7a 29 00 60 60 31 33 34 60 60 20 2d 20 31 36 30 20 4d 48 7a 20 63 68 61 6e 6e 65 | .(6GHz).``134``.-.160.MHz.channe |
| b5f80 | 6c 20 77 69 64 74 68 00 60 60 31 33 34 60 60 20 2d 20 31 36 30 20 4d 48 7a 20 63 68 61 6e 6e 65 | l.width.``134``.-.160.MHz.channe |
| b5fa0 | 6c 20 77 69 64 74 68 20 28 36 47 48 7a 29 00 60 60 31 33 35 60 60 20 2d 20 38 30 2b 38 30 20 4d | l.width.(6GHz).``135``.-.80+80.M |
| b5fc0 | 48 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 00 60 60 31 33 35 60 60 20 2d 20 38 30 2b 38 30 | Hz.channel.width.``135``.-.80+80 |
| b5fe0 | 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 20 28 36 47 48 7a 29 00 60 60 31 39 32 2e | .MHz.channel.width.(6GHz).``192. |
| b6000 | 31 36 38 2e 32 2e 32 35 34 60 60 20 49 50 20 61 64 64 72 65 65 73 73 20 6f 6e 20 56 79 4f 53 20 | 168.2.254``.IP.addreess.on.VyOS. |
| b6020 | 65 74 68 32 20 66 72 6f 6d 20 49 53 50 32 00 60 60 31 39 32 30 30 60 60 20 2d 20 31 39 2c 32 30 | eth2.from.ISP2.``19200``.-.19,20 |
| b6040 | 30 20 62 70 73 00 60 60 31 60 60 20 2d 20 38 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 | 0.bps.``1``.-.80.MHz.channel.wid |
| b6060 | 74 68 00 60 60 31 60 60 20 2d 20 48 45 2d 4d 43 53 20 30 2d 39 00 60 60 32 2e 70 6f 6f 6c 2e 6e | th.``1``.-.HE-MCS.0-9.``2.pool.n |
| b6080 | 74 70 2e 6f 72 67 60 60 00 60 60 32 30 33 2e 30 2e 31 31 33 2e 32 35 34 60 60 20 49 50 20 61 64 | tp.org``.``203.0.113.254``.IP.ad |
| b60a0 | 64 72 65 65 73 73 20 6f 6e 20 56 79 4f 53 20 65 74 68 31 20 66 72 6f 6d 20 49 53 50 31 00 60 60 | dreess.on.VyOS.eth1.from.ISP1.`` |
| b60c0 | 32 34 30 30 60 60 20 2d 20 32 34 30 30 20 62 70 73 00 60 60 32 60 60 20 2d 20 31 36 30 20 4d 48 | 2400``.-.2400.bps.``2``.-.160.MH |
| b60e0 | 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 00 60 60 32 60 60 20 2d 20 48 45 2d 4d 43 53 20 30 | z.channel.width.``2``.-.HE-MCS.0 |
| b6100 | 2d 31 31 00 60 60 33 38 34 30 30 60 60 20 2d 20 33 38 2c 34 30 30 20 62 70 73 20 28 64 65 66 61 | -11.``38400``.-.38,400.bps.(defa |
| b6120 | 75 6c 74 20 66 6f 72 20 58 65 6e 20 63 6f 6e 73 6f 6c 65 29 00 60 60 33 60 60 20 2d 20 38 30 2b | ult.for.Xen.console).``3``.-.80+ |
| b6140 | 38 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 00 60 60 33 60 60 20 2d 20 48 45 2d | 80.MHz.channel.width.``3``.-.HE- |
| b6160 | 4d 43 53 20 69 73 20 6e 6f 74 20 73 75 70 70 6f 72 74 65 64 00 60 60 34 38 30 30 60 60 20 2d 20 | MCS.is.not.supported.``4800``.-. |
| b6180 | 34 38 30 30 20 62 70 73 00 60 60 35 37 36 30 30 60 60 20 2d 20 35 37 2c 36 30 30 20 62 70 73 00 | 4800.bps.``57600``.-.57,600.bps. |
| b61a0 | 60 60 36 34 3a 66 66 39 62 3a 3a 2f 39 36 60 60 20 69 73 20 74 68 65 20 77 65 6c 6c 2d 6b 6e 6f | ``64:ff9b::/96``.is.the.well-kno |
| b61c0 | 77 6e 20 70 72 65 66 69 78 20 66 6f 72 20 49 50 76 34 2d 65 6d 62 65 64 64 65 64 20 49 50 76 36 | wn.prefix.for.IPv4-embedded.IPv6 |
| b61e0 | 20 61 64 64 72 65 73 73 65 73 2e 20 54 68 65 20 70 72 65 66 69 78 20 69 73 20 75 73 65 64 20 74 | .addresses..The.prefix.is.used.t |
| b6200 | 6f 20 72 65 70 72 65 73 65 6e 74 20 49 50 76 34 20 61 64 64 72 65 73 73 65 73 20 69 6e 20 61 6e | o.represent.IPv4.addresses.in.an |
| b6220 | 20 49 50 76 36 20 61 64 64 72 65 73 73 20 66 6f 72 6d 61 74 2e 20 54 68 65 20 49 50 76 34 20 61 | .IPv6.address.format..The.IPv4.a |
| b6240 | 64 64 72 65 73 73 20 69 73 20 65 6e 63 6f 64 65 64 20 69 6e 20 74 68 65 20 6c 6f 77 2d 6f 72 64 | ddress.is.encoded.in.the.low-ord |
| b6260 | 65 72 20 33 32 20 62 69 74 73 20 6f 66 20 74 68 65 20 49 50 76 36 20 61 64 64 72 65 73 73 2e 20 | er.32.bits.of.the.IPv6.address.. |
| b6280 | 54 68 65 20 68 69 67 68 2d 6f 72 64 65 72 20 33 32 20 62 69 74 73 20 61 72 65 20 73 65 74 20 74 | The.high-order.32.bits.are.set.t |
| b62a0 | 6f 20 74 68 65 20 77 65 6c 6c 2d 6b 6e 6f 77 6e 20 70 72 65 66 69 78 20 36 34 3a 66 66 39 62 3a | o.the.well-known.prefix.64:ff9b: |
| b62c0 | 3a 2f 39 36 2e 00 60 60 38 30 32 2e 33 61 64 60 60 20 2d 20 49 45 45 45 20 38 30 32 2e 33 61 64 | :/96..``802.3ad``.-.IEEE.802.3ad |
| b62e0 | 20 44 79 6e 61 6d 69 63 20 6c 69 6e 6b 20 61 67 67 72 65 67 61 74 69 6f 6e 2e 20 43 72 65 61 74 | .Dynamic.link.aggregation..Creat |
| b6300 | 65 73 20 61 67 67 72 65 67 61 74 69 6f 6e 20 67 72 6f 75 70 73 20 74 68 61 74 20 73 68 61 72 65 | es.aggregation.groups.that.share |
| b6320 | 20 74 68 65 20 73 61 6d 65 20 73 70 65 65 64 20 61 6e 64 20 64 75 70 6c 65 78 20 73 65 74 74 69 | .the.same.speed.and.duplex.setti |
| b6340 | 6e 67 73 2e 20 55 74 69 6c 69 7a 65 73 20 61 6c 6c 20 73 6c 61 76 65 73 20 69 6e 20 74 68 65 20 | ngs..Utilizes.all.slaves.in.the. |
| b6360 | 61 63 74 69 76 65 20 61 67 67 72 65 67 61 74 6f 72 20 61 63 63 6f 72 64 69 6e 67 20 74 6f 20 74 | active.aggregator.according.to.t |
| b6380 | 68 65 20 38 30 32 2e 33 61 64 20 73 70 65 63 69 66 69 63 61 74 69 6f 6e 2e 00 60 60 38 31 60 60 | he.802.3ad.specification..``81`` |
| b63a0 | 20 2d 20 32 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 20 28 32 2e 34 47 48 7a 29 | .-.20.MHz.channel.width.(2.4GHz) |
| b63c0 | 00 60 60 38 33 60 60 20 2d 20 34 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 2c 20 | .``83``.-.40.MHz.channel.width,. |
| b63e0 | 73 65 63 6f 6e 64 61 72 79 20 32 30 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 61 62 6f 76 65 20 70 72 | secondary.20MHz.channel.above.pr |
| b6400 | 69 6d 61 72 79 20 63 68 61 6e 6e 65 6c 20 28 32 2e 34 47 48 7a 29 00 60 60 38 34 60 60 20 2d 20 | imary.channel.(2.4GHz).``84``.-. |
| b6420 | 34 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 2c 20 73 65 63 6f 6e 64 61 72 79 20 | 40.MHz.channel.width,.secondary. |
| b6440 | 32 30 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 62 65 6c 6f 77 20 70 72 69 6d 61 72 79 20 63 68 61 6e | 20MHz.channel.below.primary.chan |
| b6460 | 6e 65 6c 20 28 32 2e 34 47 48 7a 29 00 60 60 39 36 30 30 60 60 20 2d 20 39 36 30 30 20 62 70 73 | nel.(2.4GHz).``9600``.-.9600.bps |
| b6480 | 00 60 60 3c 20 64 68 2d 67 72 6f 75 70 20 3e 60 60 20 64 65 66 69 6e 65 73 20 61 20 44 69 66 66 | .``<.dh-group.>``.defines.a.Diff |
| b64a0 | 69 65 2d 48 65 6c 6c 6d 61 6e 20 67 72 6f 75 70 20 66 6f 72 20 50 46 53 3b 00 60 60 40 60 60 20 | ie-Hellman.group.for.PFS;.``@``. |
| b64c0 | 55 73 65 20 40 20 61 73 20 72 65 63 6f 72 64 20 6e 61 6d 65 20 74 6f 20 73 65 74 20 74 68 65 20 | Use.@.as.record.name.to.set.the. |
| b64e0 | 72 65 63 6f 72 64 20 66 6f 72 20 74 68 65 20 72 6f 6f 74 20 64 6f 6d 61 69 6e 2e 00 60 60 4b 6e | record.for.the.root.domain..``Kn |
| b6500 | 6f 77 6e 20 6c 69 6d 69 74 61 74 69 6f 6e 73 3a 60 60 00 60 60 53 74 61 74 65 66 75 6c 2d 49 50 | own.limitations:``.``Stateful-IP |
| b6520 | 76 36 2d 41 64 64 72 65 73 73 2d 50 6f 6f 6c 60 60 20 61 6e 64 20 60 60 44 65 6c 65 67 61 74 65 | v6-Address-Pool``.and.``Delegate |
| b6540 | 64 2d 49 50 76 36 2d 50 72 65 66 69 78 2d 50 6f 6f 6c 60 60 20 61 72 65 20 64 65 66 69 6e 65 64 | d-IPv6-Prefix-Pool``.are.defined |
| b6560 | 20 69 6e 20 52 46 43 36 39 31 31 2e 20 49 66 20 74 68 65 79 20 61 72 65 20 6e 6f 74 20 64 65 66 | .in.RFC6911..If.they.are.not.def |
| b6580 | 69 6e 65 64 20 69 6e 20 79 6f 75 72 20 52 41 44 49 55 53 20 73 65 72 76 65 72 2c 20 61 64 64 20 | ined.in.your.RADIUS.server,.add. |
| b65a0 | 6e 65 77 20 64 69 63 74 69 6f 6e 61 72 79 5f 2e 00 60 60 57 4c 42 5f 49 4e 54 45 52 46 41 43 45 | new.dictionary_..``WLB_INTERFACE |
| b65c0 | 5f 4e 41 4d 45 3d 5b 69 6e 74 65 72 66 61 63 65 6e 61 6d 65 5d 60 60 3a 20 49 6e 74 65 72 66 61 | _NAME=[interfacename]``:.Interfa |
| b65e0 | 63 65 20 74 6f 20 62 65 20 6d 6f 6e 69 74 6f 72 65 64 00 60 60 57 4c 42 5f 49 4e 54 45 52 46 41 | ce.to.be.monitored.``WLB_INTERFA |
| b6600 | 43 45 5f 53 54 41 54 45 3d 5b 41 43 54 49 56 45 7c 46 41 49 4c 45 44 5d 60 60 3a 20 49 6e 74 65 | CE_STATE=[ACTIVE|FAILED]``:.Inte |
| b6620 | 72 66 61 63 65 20 73 74 61 74 65 00 60 60 61 60 60 20 2d 20 38 30 32 2e 31 31 61 20 2d 20 35 34 | rface.state.``a``.-.802.11a.-.54 |
| b6640 | 20 4d 62 69 74 73 2f 73 65 63 00 60 60 61 63 60 60 20 2d 20 38 30 32 2e 31 31 61 63 20 2d 20 31 | .Mbits/sec.``ac``.-.802.11ac.-.1 |
| b6660 | 33 30 30 20 4d 62 69 74 73 2f 73 65 63 00 60 60 61 63 63 65 70 74 2d 6f 77 6e 2d 6e 65 78 74 68 | 300.Mbits/sec.``accept-own-nexth |
| b6680 | 6f 70 60 60 20 2d 20 20 20 20 20 20 20 20 20 20 20 57 65 6c 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d | op``.-...........Well-known.comm |
| b66a0 | 75 6e 69 74 69 65 73 20 76 61 6c 75 65 20 61 63 63 65 70 74 2d 6f 77 6e 2d 6e 65 78 74 68 6f 70 | unities.value.accept-own-nexthop |
| b66c0 | 20 30 78 46 46 46 46 30 30 30 38 00 60 60 61 63 63 65 70 74 2d 6f 77 6e 60 60 20 2d 20 20 20 20 | .0xFFFF0008.``accept-own``.-.... |
| b66e0 | 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 57 65 6c 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d 75 6e | ...............Well-known.commun |
| b6700 | 69 74 69 65 73 20 76 61 6c 75 65 20 41 43 43 45 50 54 5f 4f 57 4e 20 30 78 46 46 46 46 30 30 30 | ities.value.ACCEPT_OWN.0xFFFF000 |
| b6720 | 31 00 60 60 61 63 63 65 70 74 60 60 3a 20 61 63 63 65 70 74 20 74 68 65 20 70 61 63 6b 65 74 2e | 1.``accept``:.accept.the.packet. |
| b6740 | 00 60 60 61 63 63 65 73 73 2d 70 6f 69 6e 74 60 60 20 2d 20 41 63 63 65 73 73 2d 70 6f 69 6e 74 | .``access-point``.-.Access-point |
| b6760 | 20 66 6f 72 77 61 72 64 73 20 70 61 63 6b 65 74 73 20 62 65 74 77 65 65 6e 20 6f 74 68 65 72 20 | .forwards.packets.between.other. |
| b6780 | 6e 6f 64 65 73 00 60 60 61 63 74 69 6f 6e 60 60 20 6b 65 65 70 2d 61 6c 69 76 65 20 66 61 69 6c | nodes.``action``.keep-alive.fail |
| b67a0 | 75 72 65 20 61 63 74 69 6f 6e 3a 00 60 60 61 63 74 69 76 65 2d 62 61 63 6b 75 70 60 60 20 2d 20 | ure.action:.``active-backup``.-. |
| b67c0 | 41 63 74 69 76 65 2d 62 61 63 6b 75 70 20 70 6f 6c 69 63 79 3a 20 4f 6e 6c 79 20 6f 6e 65 20 73 | Active-backup.policy:.Only.one.s |
| b67e0 | 6c 61 76 65 20 69 6e 20 74 68 65 20 62 6f 6e 64 20 69 73 20 61 63 74 69 76 65 2e 20 41 20 64 69 | lave.in.the.bond.is.active..A.di |
| b6800 | 66 66 65 72 65 6e 74 20 73 6c 61 76 65 20 62 65 63 6f 6d 65 73 20 61 63 74 69 76 65 20 69 66 2c | fferent.slave.becomes.active.if, |
| b6820 | 20 61 6e 64 20 6f 6e 6c 79 20 69 66 2c 20 74 68 65 20 61 63 74 69 76 65 20 73 6c 61 76 65 20 66 | .and.only.if,.the.active.slave.f |
| b6840 | 61 69 6c 73 2e 20 54 68 65 20 62 6f 6e 64 27 73 20 4d 41 43 20 61 64 64 72 65 73 73 20 69 73 20 | ails..The.bond's.MAC.address.is. |
| b6860 | 65 78 74 65 72 6e 61 6c 6c 79 20 76 69 73 69 62 6c 65 20 6f 6e 20 6f 6e 6c 79 20 6f 6e 65 20 70 | externally.visible.on.only.one.p |
| b6880 | 6f 72 74 20 28 6e 65 74 77 6f 72 6b 20 61 64 61 70 74 65 72 29 20 74 6f 20 61 76 6f 69 64 20 63 | ort.(network.adapter).to.avoid.c |
| b68a0 | 6f 6e 66 75 73 69 6e 67 20 74 68 65 20 73 77 69 74 63 68 2e 00 60 60 61 63 74 69 76 65 60 60 20 | onfusing.the.switch..``active``. |
| b68c0 | 54 68 69 73 20 69 73 20 74 68 65 20 6c 6f 77 2d 6c 65 76 65 6c 20 66 69 72 6d 77 61 72 65 20 63 | This.is.the.low-level.firmware.c |
| b68e0 | 6f 6e 74 72 6f 6c 20 6d 6f 64 65 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 70 72 6f 66 69 6c 65 | ontrol.mode.based.on.the.profile |
| b6900 | 20 73 65 74 20 61 6e 64 20 74 68 65 20 73 79 73 74 65 6d 20 67 6f 76 65 72 6e 6f 72 20 68 61 73 | .set.and.the.system.governor.has |
| b6920 | 20 6e 6f 20 65 66 66 65 63 74 2e 00 60 60 61 64 61 70 74 69 76 65 2d 6c 6f 61 64 2d 62 61 6c 61 | .no.effect..``adaptive-load-bala |
| b6940 | 6e 63 65 60 60 20 2d 20 41 64 61 70 74 69 76 65 20 6c 6f 61 64 20 62 61 6c 61 6e 63 69 6e 67 3a | nce``.-.Adaptive.load.balancing: |
| b6960 | 20 69 6e 63 6c 75 64 65 73 20 74 72 61 6e 73 6d 69 74 2d 6c 6f 61 64 2d 62 61 6c 61 6e 63 65 20 | .includes.transmit-load-balance. |
| b6980 | 70 6c 75 73 20 72 65 63 65 69 76 65 20 6c 6f 61 64 20 62 61 6c 61 6e 63 69 6e 67 20 66 6f 72 20 | plus.receive.load.balancing.for. |
| b69a0 | 49 50 56 34 20 74 72 61 66 66 69 63 2c 20 61 6e 64 20 64 6f 65 73 20 6e 6f 74 20 72 65 71 75 69 | IPV4.traffic,.and.does.not.requi |
| b69c0 | 72 65 20 61 6e 79 20 73 70 65 63 69 61 6c 20 73 77 69 74 63 68 20 73 75 70 70 6f 72 74 2e 20 54 | re.any.special.switch.support..T |
| b69e0 | 68 65 20 72 65 63 65 69 76 65 20 6c 6f 61 64 20 62 61 6c 61 6e 63 69 6e 67 20 69 73 20 61 63 68 | he.receive.load.balancing.is.ach |
| b6a00 | 69 65 76 65 64 20 62 79 20 41 52 50 20 6e 65 67 6f 74 69 61 74 69 6f 6e 2e 20 54 68 65 20 62 6f | ieved.by.ARP.negotiation..The.bo |
| b6a20 | 6e 64 69 6e 67 20 64 72 69 76 65 72 20 69 6e 74 65 72 63 65 70 74 73 20 74 68 65 20 41 52 50 20 | nding.driver.intercepts.the.ARP. |
| b6a40 | 52 65 70 6c 69 65 73 20 73 65 6e 74 20 62 79 20 74 68 65 20 6c 6f 63 61 6c 20 73 79 73 74 65 6d | Replies.sent.by.the.local.system |
| b6a60 | 20 6f 6e 20 74 68 65 69 72 20 77 61 79 20 6f 75 74 20 61 6e 64 20 6f 76 65 72 77 72 69 74 65 73 | .on.their.way.out.and.overwrites |
| b6a80 | 20 74 68 65 20 73 6f 75 72 63 65 20 68 61 72 64 77 61 72 65 20 61 64 64 72 65 73 73 20 77 69 74 | .the.source.hardware.address.wit |
| b6aa0 | 68 20 74 68 65 20 75 6e 69 71 75 65 20 68 61 72 64 77 61 72 65 20 61 64 64 72 65 73 73 20 6f 66 | h.the.unique.hardware.address.of |
| b6ac0 | 20 6f 6e 65 20 6f 66 20 74 68 65 20 73 6c 61 76 65 73 20 69 6e 20 74 68 65 20 62 6f 6e 64 20 73 | .one.of.the.slaves.in.the.bond.s |
| b6ae0 | 75 63 68 20 74 68 61 74 20 64 69 66 66 65 72 65 6e 74 20 70 65 65 72 73 20 75 73 65 20 64 69 66 | uch.that.different.peers.use.dif |
| b6b00 | 66 65 72 65 6e 74 20 68 61 72 64 77 61 72 65 20 61 64 64 72 65 73 73 65 73 20 66 6f 72 20 74 68 | ferent.hardware.addresses.for.th |
| b6b20 | 65 20 73 65 72 76 65 72 2e 00 60 60 61 64 64 72 65 73 73 60 60 20 49 50 20 61 64 64 72 65 73 73 | e.server..``address``.IP.address |
| b6b40 | 20 6f 72 20 73 75 62 6e 65 74 2e 00 60 60 61 67 67 72 65 73 73 69 76 65 60 60 20 75 73 65 20 41 | .or.subnet..``aggressive``.use.A |
| b6b60 | 67 67 72 65 73 73 69 76 65 20 6d 6f 64 65 20 66 6f 72 20 4b 65 79 20 45 78 63 68 61 6e 67 65 73 | ggressive.mode.for.Key.Exchanges |
| b6b80 | 20 69 6e 20 74 68 65 20 49 4b 45 76 31 20 70 72 6f 74 6f 63 6f 6c 20 61 67 67 72 65 73 73 69 76 | .in.the.IKEv1.protocol.aggressiv |
| b6ba0 | 65 20 6d 6f 64 65 20 69 73 20 6d 75 63 68 20 6d 6f 72 65 20 69 6e 73 65 63 75 72 65 20 63 6f 6d | e.mode.is.much.more.insecure.com |
| b6bc0 | 70 61 72 65 64 20 74 6f 20 4d 61 69 6e 20 6d 6f 64 65 3b 00 60 60 61 6c 6c 2d 61 76 61 69 6c 61 | pared.to.Main.mode;.``all-availa |
| b6be0 | 62 6c 65 60 60 20 61 6c 6c 20 63 68 65 63 6b 69 6e 67 20 74 61 72 67 65 74 20 61 64 64 72 65 73 | ble``.all.checking.target.addres |
| b6c00 | 73 65 73 20 6d 75 73 74 20 62 65 20 61 76 61 69 6c 61 62 6c 65 20 74 6f 20 70 61 73 73 20 74 68 | ses.must.be.available.to.pass.th |
| b6c20 | 69 73 20 63 68 65 63 6b 00 60 60 61 6d 64 5f 70 73 74 61 74 65 3d 7b 6d 6f 64 65 7d 60 60 20 53 | is.check.``amd_pstate={mode}``.S |
| b6c40 | 65 74 73 20 74 68 65 20 70 2d 73 74 61 74 65 20 6d 6f 64 65 00 60 60 61 6e 79 2d 61 76 61 69 6c | ets.the.p-state.mode.``any-avail |
| b6c60 | 61 62 6c 65 60 60 20 61 6e 79 20 6f 66 20 74 68 65 20 63 68 65 63 6b 69 6e 67 20 74 61 72 67 65 | able``.any.of.the.checking.targe |
| b6c80 | 74 20 61 64 64 72 65 73 73 65 73 20 6d 75 73 74 20 62 65 20 61 76 61 69 6c 61 62 6c 65 20 74 6f | t.addresses.must.be.available.to |
| b6ca0 | 20 70 61 73 73 20 74 68 69 73 20 63 68 65 63 6b 00 60 60 61 6e 79 60 60 20 55 73 65 20 61 6e 79 | .pass.this.check.``any``.Use.any |
| b6cc0 | 20 61 73 20 72 65 63 6f 72 64 20 6e 61 6d 65 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 | .as.record.name.to.configure.the |
| b6ce0 | 20 72 65 63 6f 72 64 20 61 73 20 61 20 77 69 6c 64 63 61 72 64 2e 00 60 60 61 75 74 68 65 6e 74 | .record.as.a.wildcard..``authent |
| b6d00 | 69 63 61 74 69 6f 6e 20 6c 6f 63 61 6c 2d 69 64 2f 72 65 6d 6f 74 65 2d 69 64 60 60 20 2d 20 49 | ication.local-id/remote-id``.-.I |
| b6d20 | 4b 45 20 69 64 65 6e 74 69 66 69 63 61 74 69 6f 6e 20 69 73 20 75 73 65 64 20 66 6f 72 20 76 61 | KE.identification.is.used.for.va |
| b6d40 | 6c 69 64 61 74 69 6f 6e 20 6f 66 20 56 50 4e 20 70 65 65 72 20 64 65 76 69 63 65 73 20 64 75 72 | lidation.of.VPN.peer.devices.dur |
| b6d60 | 69 6e 67 20 49 4b 45 20 6e 65 67 6f 74 69 61 74 69 6f 6e 2e 20 49 66 20 79 6f 75 20 64 6f 20 6e | ing.IKE.negotiation..If.you.do.n |
| b6d80 | 6f 74 20 63 6f 6e 66 69 67 75 72 65 20 6c 6f 63 61 6c 2f 72 65 6d 6f 74 65 2d 69 64 65 6e 74 69 | ot.configure.local/remote-identi |
| b6da0 | 74 79 2c 20 74 68 65 20 64 65 76 69 63 65 20 75 73 65 73 20 74 68 65 20 49 50 76 34 20 6f 72 20 | ty,.the.device.uses.the.IPv4.or. |
| b6dc0 | 49 50 76 36 20 61 64 64 72 65 73 73 20 74 68 61 74 20 63 6f 72 72 65 73 70 6f 6e 64 73 20 74 6f | IPv6.address.that.corresponds.to |
| b6de0 | 20 74 68 65 20 6c 6f 63 61 6c 2f 72 65 6d 6f 74 65 20 70 65 65 72 20 62 79 20 64 65 66 61 75 6c | .the.local/remote.peer.by.defaul |
| b6e00 | 74 2e 20 49 6e 20 63 65 72 74 61 69 6e 20 6e 65 74 77 6f 72 6b 20 73 65 74 75 70 73 20 28 6c 69 | t..In.certain.network.setups.(li |
| b6e20 | 6b 65 20 69 70 73 65 63 20 69 6e 74 65 72 66 61 63 65 20 77 69 74 68 20 64 79 6e 61 6d 69 63 20 | ke.ipsec.interface.with.dynamic. |
| b6e40 | 61 64 64 72 65 73 73 2c 20 6f 72 20 62 65 68 69 6e 64 20 74 68 65 20 4e 41 54 20 29 2c 20 74 68 | address,.or.behind.the.NAT.),.th |
| b6e60 | 65 20 49 4b 45 20 49 44 20 72 65 63 65 69 76 65 64 20 66 72 6f 6d 20 74 68 65 20 70 65 65 72 20 | e.IKE.ID.received.from.the.peer. |
| b6e80 | 64 6f 65 73 20 6e 6f 74 20 6d 61 74 63 68 20 74 68 65 20 49 4b 45 20 67 61 74 65 77 61 79 20 63 | does.not.match.the.IKE.gateway.c |
| b6ea0 | 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 74 68 65 20 64 65 76 69 63 65 2e 20 54 68 69 73 20 63 61 | onfigured.on.the.device..This.ca |
| b6ec0 | 6e 20 6c 65 61 64 20 74 6f 20 61 20 50 68 61 73 65 20 31 20 76 61 6c 69 64 61 74 69 6f 6e 20 66 | n.lead.to.a.Phase.1.validation.f |
| b6ee0 | 61 69 6c 75 72 65 2e 20 53 6f 2c 20 6d 61 6b 65 20 73 75 72 65 20 74 6f 20 63 6f 6e 66 69 67 75 | ailure..So,.make.sure.to.configu |
| b6f00 | 72 65 20 74 68 65 20 6c 6f 63 61 6c 2f 72 65 6d 6f 74 65 20 69 64 20 65 78 70 6c 69 63 69 74 6c | re.the.local/remote.id.explicitl |
| b6f20 | 79 20 61 6e 64 20 65 6e 73 75 72 65 20 74 68 61 74 20 74 68 65 20 49 4b 45 20 49 44 20 69 73 20 | y.and.ensure.that.the.IKE.ID.is. |
| b6f40 | 74 68 65 20 73 61 6d 65 20 61 73 20 74 68 65 20 72 65 6d 6f 74 65 2d 69 64 65 6e 74 69 74 79 20 | the.same.as.the.remote-identity. |
| b6f60 | 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 74 68 65 20 70 65 65 72 20 64 65 76 69 63 65 2e 00 60 | configured.on.the.peer.device..` |
| b6f80 | 60 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 60 60 20 2d 20 63 6f 6e 66 69 67 75 72 65 20 61 75 | `authentication``.-.configure.au |
| b6fa0 | 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 62 65 74 77 65 65 6e 20 56 79 4f 53 20 61 6e 64 20 61 20 | thentication.between.VyOS.and.a. |
| b6fc0 | 72 65 6d 6f 74 65 20 70 65 65 72 2e 20 49 66 20 70 72 65 2d 73 68 61 72 65 64 2d 73 65 63 72 65 | remote.peer..If.pre-shared-secre |
| b6fe0 | 74 20 6d 6f 64 65 20 69 73 20 75 73 65 64 2c 20 74 68 65 20 73 65 63 72 65 74 20 6b 65 79 20 6d | t.mode.is.used,.the.secret.key.m |
| b7000 | 75 73 74 20 62 65 20 64 65 66 69 6e 65 64 20 69 6e 20 60 60 73 65 74 20 76 70 6e 20 69 70 73 65 | ust.be.defined.in.``set.vpn.ipse |
| b7020 | 63 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 60 60 20 61 6e 64 20 73 75 62 6f 70 74 69 6f 6e | c.authentication``.and.suboption |
| b7040 | 73 3a 00 60 60 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 60 60 20 2d 20 63 6f 6e 66 69 67 75 72 | s:.``authentication``.-.configur |
| b7060 | 65 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 62 65 74 77 65 65 6e 20 56 79 4f 53 20 61 6e | e.authentication.between.VyOS.an |
| b7080 | 64 20 61 20 72 65 6d 6f 74 65 20 70 65 65 72 2e 20 53 75 62 6f 70 74 69 6f 6e 73 3a 00 60 60 61 | d.a.remote.peer..Suboptions:.``a |
| b70a0 | 78 60 60 20 2d 20 38 30 32 2e 31 31 61 78 20 2d 20 65 78 63 65 65 64 73 20 31 47 42 69 74 2f 73 | x``.-.802.11ax.-.exceeds.1GBit/s |
| b70c0 | 65 63 00 60 60 62 60 60 20 2d 20 38 30 32 2e 31 31 62 20 2d 20 31 31 20 4d 62 69 74 73 2f 73 65 | ec.``b``.-.802.11b.-.11.Mbits/se |
| b70e0 | 63 00 60 60 62 61 62 65 6c 60 60 20 2d 20 42 61 62 65 6c 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 | c.``babel``.-.Babel.routing.prot |
| b7100 | 6f 63 6f 6c 20 28 42 61 62 65 6c 29 00 60 60 62 65 67 69 6e 60 60 20 4d 61 74 63 68 65 73 20 74 | ocol.(Babel).``begin``.Matches.t |
| b7120 | 68 65 20 62 65 67 69 6e 6e 69 6e 67 20 6f 66 20 74 68 65 20 55 52 4c 20 70 61 74 68 00 60 60 62 | he.beginning.of.the.URL.path.``b |
| b7140 | 67 70 60 60 20 2d 20 42 6f 72 64 65 72 20 47 61 74 65 77 61 79 20 50 72 6f 74 6f 63 6f 6c 20 28 | gp``.-.Border.Gateway.Protocol.( |
| b7160 | 42 47 50 29 00 60 60 62 69 6e 64 60 60 20 2d 20 73 65 6c 65 63 74 20 61 20 56 54 49 20 69 6e 74 | BGP).``bind``.-.select.a.VTI.int |
| b7180 | 65 72 66 61 63 65 20 74 6f 20 62 69 6e 64 20 74 6f 20 74 68 69 73 20 70 65 65 72 3b 00 60 60 62 | erface.to.bind.to.this.peer;.``b |
| b71a0 | 6c 61 63 6b 68 6f 6c 65 60 60 20 2d 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 | lackhole``.-.................... |
| b71c0 | 57 65 6c 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d 75 6e 69 74 69 65 73 20 76 61 6c 75 65 20 42 4c 41 | Well-known.communities.value.BLA |
| b71e0 | 43 4b 48 4f 4c 45 20 30 78 46 46 46 46 30 32 39 41 00 60 60 62 72 6f 61 64 63 61 73 74 60 60 20 | CKHOLE.0xFFFF029A.``broadcast``. |
| b7200 | 2d 20 42 72 6f 61 64 63 61 73 74 20 70 6f 6c 69 63 79 3a 20 74 72 61 6e 73 6d 69 74 73 20 65 76 | -.Broadcast.policy:.transmits.ev |
| b7220 | 65 72 79 74 68 69 6e 67 20 6f 6e 20 61 6c 6c 20 73 6c 61 76 65 20 69 6e 74 65 72 66 61 63 65 73 | erything.on.all.slave.interfaces |
| b7240 | 2e 00 60 60 62 75 72 73 74 60 60 3a 20 4e 75 6d 62 65 72 20 6f 66 20 70 61 63 6b 65 74 73 20 61 | ..``burst``:.Number.of.packets.a |
| b7260 | 6c 6c 6f 77 65 64 20 74 6f 20 6f 76 65 72 73 68 6f 6f 74 20 74 68 65 20 6c 69 6d 69 74 20 77 69 | llowed.to.overshoot.the.limit.wi |
| b7280 | 74 68 69 6e 20 60 60 70 65 72 69 6f 64 60 60 2e 20 44 65 66 61 75 6c 74 20 35 2e 00 60 60 63 61 | thin.``period``..Default.5..``ca |
| b72a0 | 2d 63 65 72 74 2d 66 69 6c 65 60 60 20 2d 20 43 41 20 63 65 72 74 69 66 69 63 61 74 65 20 66 69 | -cert-file``.-.CA.certificate.fi |
| b72c0 | 6c 65 2e 20 55 73 69 6e 67 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6e 67 20 72 65 6d | le..Using.for.authenticating.rem |
| b72e0 | 6f 74 65 20 70 65 65 72 3b 00 60 60 63 61 2d 63 65 72 74 69 66 69 63 61 74 65 60 60 20 2d 20 43 | ote.peer;.``ca-certificate``.-.C |
| b7300 | 41 20 63 65 72 74 69 66 69 63 61 74 65 20 69 6e 20 50 4b 49 20 63 6f 6e 66 69 67 75 72 61 74 69 | A.certificate.in.PKI.configurati |
| b7320 | 6f 6e 2e 20 55 73 69 6e 67 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6e 67 20 72 65 6d | on..Using.for.authenticating.rem |
| b7340 | 6f 74 65 20 70 65 65 72 3b 00 60 60 63 64 70 60 60 20 2d 20 4c 69 73 74 65 6e 20 66 6f 72 20 43 | ote.peer;.``cdp``.-.Listen.for.C |
| b7360 | 44 50 20 66 6f 72 20 43 69 73 63 6f 20 72 6f 75 74 65 72 73 2f 73 77 69 74 63 68 65 73 00 60 60 | DP.for.Cisco.routers/switches.`` |
| b7380 | 63 65 72 74 2d 66 69 6c 65 60 60 20 2d 20 63 65 72 74 69 66 69 63 61 74 65 20 66 69 6c 65 2c 20 | cert-file``.-.certificate.file,. |
| b73a0 | 77 68 69 63 68 20 77 69 6c 6c 20 62 65 20 75 73 65 64 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 | which.will.be.used.for.authentic |
| b73c0 | 61 74 69 6e 67 20 6c 6f 63 61 6c 20 72 6f 75 74 65 72 20 6f 6e 20 72 65 6d 6f 74 65 20 70 65 65 | ating.local.router.on.remote.pee |
| b73e0 | 72 3b 00 60 60 63 65 72 74 69 66 69 63 61 74 65 60 60 20 2d 20 63 65 72 74 69 66 69 63 61 74 65 | r;.``certificate``.-.certificate |
| b7400 | 20 66 69 6c 65 20 69 6e 20 50 4b 49 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2c 20 77 68 69 63 | .file.in.PKI.configuration,.whic |
| b7420 | 68 20 77 69 6c 6c 20 62 65 20 75 73 65 64 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6e | h.will.be.used.for.authenticatin |
| b7440 | 67 20 6c 6f 63 61 6c 20 72 6f 75 74 65 72 20 6f 6e 20 72 65 6d 6f 74 65 20 70 65 65 72 3b 00 60 | g.local.router.on.remote.peer;.` |
| b7460 | 60 63 6c 65 61 72 60 60 20 63 6c 6f 73 65 73 20 74 68 65 20 43 48 49 4c 44 5f 53 41 20 61 6e 64 | `clear``.closes.the.CHILD_SA.and |
| b7480 | 20 64 6f 65 73 20 6e 6f 74 20 74 61 6b 65 20 66 75 72 74 68 65 72 20 61 63 74 69 6f 6e 20 28 64 | .does.not.take.further.action.(d |
| b74a0 | 65 66 61 75 6c 74 29 3b 00 60 60 63 6c 65 61 72 60 60 20 73 65 74 20 61 63 74 69 6f 6e 20 74 6f | efault);.``clear``.set.action.to |
| b74c0 | 20 63 6c 65 61 72 3b 00 60 60 63 6c 6f 73 65 2d 61 63 74 69 6f 6e 20 3d 20 6e 6f 6e 65 20 7c 20 | .clear;.``close-action.=.none.|. |
| b74e0 | 63 6c 65 61 72 20 7c 20 68 6f 6c 64 20 7c 20 72 65 73 74 61 72 74 60 60 20 2d 20 64 65 66 69 6e | clear.|.hold.|.restart``.-.defin |
| b7500 | 65 73 20 74 68 65 20 61 63 74 69 6f 6e 20 74 6f 20 74 61 6b 65 20 69 66 20 74 68 65 20 72 65 6d | es.the.action.to.take.if.the.rem |
| b7520 | 6f 74 65 20 70 65 65 72 20 75 6e 65 78 70 65 63 74 65 64 6c 79 20 63 6c 6f 73 65 73 20 61 20 43 | ote.peer.unexpectedly.closes.a.C |
| b7540 | 48 49 4c 44 5f 53 41 20 28 73 65 65 20 61 62 6f 76 65 20 66 6f 72 20 6d 65 61 6e 69 6e 67 20 6f | HILD_SA.(see.above.for.meaning.o |
| b7560 | 66 20 76 61 6c 75 65 73 29 2e 20 41 20 63 6c 6f 73 65 61 63 74 69 6f 6e 20 73 68 6f 75 6c 64 20 | f.values)..A.closeaction.should. |
| b7580 | 6e 6f 74 20 62 65 20 75 73 65 64 20 69 66 20 74 68 65 20 70 65 65 72 20 75 73 65 73 20 72 65 61 | not.be.used.if.the.peer.uses.rea |
| b75a0 | 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6f 72 20 75 6e 69 71 75 65 69 64 73 2e 00 60 60 63 6c | uthentication.or.uniqueids..``cl |
| b75c0 | 6f 73 65 2d 61 63 74 69 6f 6e 20 3d 20 6e 6f 6e 65 20 7c 20 63 6c 65 61 72 20 7c 20 74 72 61 70 | ose-action.=.none.|.clear.|.trap |
| b75e0 | 20 7c 20 73 74 61 72 74 60 60 20 2d 20 64 65 66 69 6e 65 73 20 74 68 65 20 61 63 74 69 6f 6e 20 | .|.start``.-.defines.the.action. |
| b7600 | 74 6f 20 74 61 6b 65 20 69 66 20 74 68 65 20 72 65 6d 6f 74 65 20 70 65 65 72 20 75 6e 65 78 70 | to.take.if.the.remote.peer.unexp |
| b7620 | 65 63 74 65 64 6c 79 20 63 6c 6f 73 65 73 20 61 20 43 48 49 4c 44 5f 53 41 20 28 73 65 65 20 61 | ectedly.closes.a.CHILD_SA.(see.a |
| b7640 | 62 6f 76 65 20 66 6f 72 20 6d 65 61 6e 69 6e 67 20 6f 66 20 76 61 6c 75 65 73 29 2e 20 41 20 63 | bove.for.meaning.of.values)..A.c |
| b7660 | 6c 6f 73 65 61 63 74 69 6f 6e 20 73 68 6f 75 6c 64 20 6e 6f 74 20 62 65 20 75 73 65 64 20 69 66 | loseaction.should.not.be.used.if |
| b7680 | 20 74 68 65 20 70 65 65 72 20 75 73 65 73 20 72 65 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 | .the.peer.uses.reauthentication. |
| b76a0 | 6f 72 20 75 6e 69 71 75 65 69 64 73 2e 00 60 60 63 6c 6f 73 65 2d 61 63 74 69 6f 6e 60 60 20 64 | or.uniqueids..``close-action``.d |
| b76c0 | 65 66 69 6e 65 73 20 74 68 65 20 61 63 74 69 6f 6e 20 74 6f 20 74 61 6b 65 20 69 66 20 74 68 65 | efines.the.action.to.take.if.the |
| b76e0 | 20 72 65 6d 6f 74 65 20 70 65 65 72 20 75 6e 65 78 70 65 63 74 65 64 6c 79 20 63 6c 6f 73 65 73 | .remote.peer.unexpectedly.closes |
| b7700 | 20 61 20 43 48 49 4c 44 5f 53 41 3a 00 60 60 63 6f 6d 70 72 65 73 73 69 6f 6e 60 60 20 20 45 6e | .a.CHILD_SA:.``compression``..En |
| b7720 | 61 62 6c 65 73 20 74 68 65 20 20 49 50 43 6f 6d 70 28 49 50 20 50 61 79 6c 6f 61 64 20 43 6f 6d | ables.the..IPComp(IP.Payload.Com |
| b7740 | 70 72 65 73 73 69 6f 6e 29 20 70 72 6f 74 6f 63 6f 6c 20 77 68 69 63 68 20 61 6c 6c 6f 77 73 20 | pression).protocol.which.allows. |
| b7760 | 63 6f 6d 70 72 65 73 73 69 6e 67 20 74 68 65 20 63 6f 6e 74 65 6e 74 20 6f 66 20 49 50 20 70 61 | compressing.the.content.of.IP.pa |
| b7780 | 63 6b 65 74 73 2e 00 60 60 63 6f 6d 70 72 65 73 73 69 6f 6e 60 60 20 77 68 65 74 68 65 72 20 49 | ckets..``compression``.whether.I |
| b77a0 | 50 43 6f 6d 70 20 63 6f 6d 70 72 65 73 73 69 6f 6e 20 6f 66 20 63 6f 6e 74 65 6e 74 20 69 73 20 | PComp.compression.of.content.is. |
| b77c0 | 70 72 6f 70 6f 73 65 64 20 6f 6e 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 3a 00 60 60 63 6f | proposed.on.the.connection:.``co |
| b77e0 | 6e 6e 65 63 74 65 64 60 60 20 2d 20 43 6f 6e 6e 65 63 74 65 64 20 72 6f 75 74 65 73 20 28 64 69 | nnected``.-.Connected.routes.(di |
| b7800 | 72 65 63 74 6c 79 20 61 74 74 61 63 68 65 64 20 73 75 62 6e 65 74 20 6f 72 20 68 6f 73 74 29 00 | rectly.attached.subnet.or.host). |
| b7820 | 60 60 63 6f 6e 6e 65 63 74 69 6f 6e 2d 74 79 70 65 60 60 20 2d 20 68 6f 77 20 74 6f 20 68 61 6e | ``connection-type``.-.how.to.han |
| b7840 | 64 6c 65 20 74 68 69 73 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 70 72 6f 63 65 73 73 2e 20 50 6f 73 | dle.this.connection.process..Pos |
| b7860 | 73 69 62 6c 65 20 76 61 72 69 61 6e 74 73 3a 00 60 60 63 6f 6e 74 69 6e 75 65 60 60 3a 20 63 6f | sible.variants:.``continue``:.co |
| b7880 | 6e 74 69 6e 75 65 20 70 61 72 73 69 6e 67 20 6e 65 78 74 20 72 75 6c 65 2e 00 60 60 63 72 6c 2d | ntinue.parsing.next.rule..``crl- |
| b78a0 | 66 69 6c 65 60 60 20 2d 20 66 69 6c 65 20 77 69 74 68 20 74 68 65 20 43 65 72 74 69 66 69 63 61 | file``.-.file.with.the.Certifica |
| b78c0 | 74 65 20 52 65 76 6f 63 61 74 69 6f 6e 20 4c 69 73 74 2e 20 55 73 69 6e 67 20 74 6f 20 63 68 65 | te.Revocation.List..Using.to.che |
| b78e0 | 63 6b 20 69 66 20 61 20 63 65 72 74 69 66 69 63 61 74 65 20 66 6f 72 20 74 68 65 20 72 65 6d 6f | ck.if.a.certificate.for.the.remo |
| b7900 | 74 65 20 70 65 65 72 20 69 73 20 76 61 6c 69 64 20 6f 72 20 72 65 76 6f 6b 65 64 3b 00 60 60 64 | te.peer.is.valid.or.revoked;.``d |
| b7920 | 60 60 20 2d 20 45 78 65 63 75 74 69 6f 6e 20 69 6e 74 65 72 76 61 6c 20 69 6e 20 64 61 79 73 00 | ``.-.Execution.interval.in.days. |
| b7940 | 60 60 64 65 61 64 2d 70 65 65 72 2d 64 65 74 65 63 74 69 6f 6e 20 61 63 74 69 6f 6e 20 3d 20 63 | ``dead-peer-detection.action.=.c |
| b7960 | 6c 65 61 72 20 7c 20 68 6f 6c 64 20 7c 20 72 65 73 74 61 72 74 60 60 20 2d 20 52 5f 55 5f 54 48 | lear.|.hold.|.restart``.-.R_U_TH |
| b7980 | 45 52 45 20 6e 6f 74 69 66 69 63 61 74 69 6f 6e 20 6d 65 73 73 61 67 65 73 28 49 4b 45 76 31 29 | ERE.notification.messages(IKEv1) |
| b79a0 | 20 6f 72 20 65 6d 70 74 79 20 49 4e 46 4f 52 4d 41 54 49 4f 4e 41 4c 20 6d 65 73 73 61 67 65 73 | .or.empty.INFORMATIONAL.messages |
| b79c0 | 20 28 49 4b 45 76 32 29 20 61 72 65 20 70 65 72 69 6f 64 69 63 61 6c 6c 79 20 73 65 6e 74 20 69 | .(IKEv2).are.periodically.sent.i |
| b79e0 | 6e 20 6f 72 64 65 72 20 74 6f 20 63 68 65 63 6b 20 74 68 65 20 6c 69 76 65 6c 69 6e 65 73 73 20 | n.order.to.check.the.liveliness. |
| b7a00 | 6f 66 20 74 68 65 20 49 50 73 65 63 20 70 65 65 72 2e 20 54 68 65 20 76 61 6c 75 65 73 20 63 6c | of.the.IPsec.peer..The.values.cl |
| b7a20 | 65 61 72 2c 20 68 6f 6c 64 2c 20 61 6e 64 20 72 65 73 74 61 72 74 20 61 6c 6c 20 61 63 74 69 76 | ear,.hold,.and.restart.all.activ |
| b7a40 | 61 74 65 20 44 50 44 20 61 6e 64 20 64 65 74 65 72 6d 69 6e 65 20 74 68 65 20 61 63 74 69 6f 6e | ate.DPD.and.determine.the.action |
| b7a60 | 20 74 6f 20 70 65 72 66 6f 72 6d 20 6f 6e 20 61 20 74 69 6d 65 6f 75 74 2e 20 57 69 74 68 20 60 | .to.perform.on.a.timeout..With.` |
| b7a80 | 60 63 6c 65 61 72 60 60 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 69 73 20 63 6c 6f 73 65 | `clear``.the.connection.is.close |
| b7aa0 | 64 20 77 69 74 68 20 6e 6f 20 66 75 72 74 68 65 72 20 61 63 74 69 6f 6e 73 20 74 61 6b 65 6e 2e | d.with.no.further.actions.taken. |
| b7ac0 | 20 60 60 68 6f 6c 64 60 60 20 69 6e 73 74 61 6c 6c 73 20 61 20 74 72 61 70 20 70 6f 6c 69 63 79 | .``hold``.installs.a.trap.policy |
| b7ae0 | 2c 20 77 68 69 63 68 20 77 69 6c 6c 20 63 61 74 63 68 20 6d 61 74 63 68 69 6e 67 20 74 72 61 66 | ,.which.will.catch.matching.traf |
| b7b00 | 66 69 63 20 61 6e 64 20 74 72 69 65 73 20 74 6f 20 72 65 2d 6e 65 67 6f 74 69 61 74 65 20 74 68 | fic.and.tries.to.re-negotiate.th |
| b7b20 | 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 6f 6e 20 64 65 6d 61 6e 64 2e 20 60 60 72 65 73 74 61 72 | e.connection.on.demand..``restar |
| b7b40 | 74 60 60 20 77 69 6c 6c 20 69 6d 6d 65 64 69 61 74 65 6c 79 20 74 72 69 67 67 65 72 20 61 6e 20 | t``.will.immediately.trigger.an. |
| b7b60 | 61 74 74 65 6d 70 74 20 74 6f 20 72 65 2d 6e 65 67 6f 74 69 61 74 65 20 74 68 65 20 63 6f 6e 6e | attempt.to.re-negotiate.the.conn |
| b7b80 | 65 63 74 69 6f 6e 2e 00 60 60 64 65 61 64 2d 70 65 65 72 2d 64 65 74 65 63 74 69 6f 6e 20 61 63 | ection..``dead-peer-detection.ac |
| b7ba0 | 74 69 6f 6e 20 3d 20 63 6c 65 61 72 20 7c 20 74 72 61 70 20 7c 20 72 65 73 74 61 72 74 60 60 20 | tion.=.clear.|.trap.|.restart``. |
| b7bc0 | 2d 20 52 5f 55 5f 54 48 45 52 45 20 6e 6f 74 69 66 69 63 61 74 69 6f 6e 20 6d 65 73 73 61 67 65 | -.R_U_THERE.notification.message |
| b7be0 | 73 28 49 4b 45 76 31 29 20 6f 72 20 65 6d 70 74 79 20 49 4e 46 4f 52 4d 41 54 49 4f 4e 41 4c 20 | s(IKEv1).or.empty.INFORMATIONAL. |
| b7c00 | 6d 65 73 73 61 67 65 73 20 28 49 4b 45 76 32 29 20 61 72 65 20 70 65 72 69 6f 64 69 63 61 6c 6c | messages.(IKEv2).are.periodicall |
| b7c20 | 79 20 73 65 6e 74 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 63 68 65 63 6b 20 74 68 65 20 6c 69 76 | y.sent.in.order.to.check.the.liv |
| b7c40 | 65 6c 69 6e 65 73 73 20 6f 66 20 74 68 65 20 49 50 73 65 63 20 70 65 65 72 2e 20 54 68 65 20 76 | eliness.of.the.IPsec.peer..The.v |
| b7c60 | 61 6c 75 65 73 20 63 6c 65 61 72 2c 20 74 72 61 70 2c 20 61 6e 64 20 72 65 73 74 61 72 74 20 61 | alues.clear,.trap,.and.restart.a |
| b7c80 | 6c 6c 20 61 63 74 69 76 61 74 65 20 44 50 44 20 61 6e 64 20 64 65 74 65 72 6d 69 6e 65 20 74 68 | ll.activate.DPD.and.determine.th |
| b7ca0 | 65 20 61 63 74 69 6f 6e 20 74 6f 20 70 65 72 66 6f 72 6d 20 6f 6e 20 61 20 74 69 6d 65 6f 75 74 | e.action.to.perform.on.a.timeout |
| b7cc0 | 2e 20 57 69 74 68 20 60 60 63 6c 65 61 72 60 60 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 | ..With.``clear``.the.connection. |
| b7ce0 | 69 73 20 63 6c 6f 73 65 64 20 77 69 74 68 20 6e 6f 20 66 75 72 74 68 65 72 20 61 63 74 69 6f 6e | is.closed.with.no.further.action |
| b7d00 | 73 20 74 61 6b 65 6e 2e 20 60 60 74 72 61 70 60 60 20 69 6e 73 74 61 6c 6c 73 20 61 20 74 72 61 | s.taken..``trap``.installs.a.tra |
| b7d20 | 70 20 70 6f 6c 69 63 79 2c 20 77 68 69 63 68 20 77 69 6c 6c 20 63 61 74 63 68 20 6d 61 74 63 68 | p.policy,.which.will.catch.match |
| b7d40 | 69 6e 67 20 74 72 61 66 66 69 63 20 61 6e 64 20 74 72 69 65 73 20 74 6f 20 72 65 2d 6e 65 67 6f | ing.traffic.and.tries.to.re-nego |
| b7d60 | 74 69 61 74 65 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 6f 6e 20 64 65 6d 61 6e 64 2e 20 | tiate.the.connection.on.demand.. |
| b7d80 | 60 60 72 65 73 74 61 72 74 60 60 20 77 69 6c 6c 20 69 6d 6d 65 64 69 61 74 65 6c 79 20 74 72 69 | ``restart``.will.immediately.tri |
| b7da0 | 67 67 65 72 20 61 6e 20 61 74 74 65 6d 70 74 20 74 6f 20 72 65 2d 6e 65 67 6f 74 69 61 74 65 20 | gger.an.attempt.to.re-negotiate. |
| b7dc0 | 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 60 60 64 65 61 64 2d 70 65 65 72 2d 64 65 74 65 | the.connection..``dead-peer-dete |
| b7de0 | 63 74 69 6f 6e 60 60 20 63 6f 6e 74 72 6f 6c 73 20 74 68 65 20 75 73 65 20 6f 66 20 74 68 65 20 | ction``.controls.the.use.of.the. |
| b7e00 | 44 65 61 64 20 50 65 65 72 20 44 65 74 65 63 74 69 6f 6e 20 70 72 6f 74 6f 63 6f 6c 20 28 44 50 | Dead.Peer.Detection.protocol.(DP |
| b7e20 | 44 2c 20 52 46 43 20 33 37 30 36 29 20 77 68 65 72 65 20 52 5f 55 5f 54 48 45 52 45 20 6e 6f 74 | D,.RFC.3706).where.R_U_THERE.not |
| b7e40 | 69 66 69 63 61 74 69 6f 6e 20 6d 65 73 73 61 67 65 73 20 28 49 4b 45 76 31 29 20 6f 72 20 65 6d | ification.messages.(IKEv1).or.em |
| b7e60 | 70 74 79 20 49 4e 46 4f 52 4d 41 54 49 4f 4e 41 4c 20 6d 65 73 73 61 67 65 73 20 28 49 4b 45 76 | pty.INFORMATIONAL.messages.(IKEv |
| b7e80 | 32 29 20 61 72 65 20 70 65 72 69 6f 64 69 63 61 6c 6c 79 20 73 65 6e 74 20 69 6e 20 6f 72 64 65 | 2).are.periodically.sent.in.orde |
| b7ea0 | 72 20 74 6f 20 63 68 65 63 6b 20 74 68 65 20 6c 69 76 65 6c 69 6e 65 73 73 20 6f 66 20 74 68 65 | r.to.check.the.liveliness.of.the |
| b7ec0 | 20 49 50 73 65 63 20 70 65 65 72 3a 00 60 60 64 65 66 61 75 6c 74 2d 65 73 70 2d 67 72 6f 75 70 | .IPsec.peer:.``default-esp-group |
| b7ee0 | 60 60 20 2d 20 45 53 50 20 67 72 6f 75 70 20 74 6f 20 75 73 65 20 62 79 20 64 65 66 61 75 6c 74 | ``.-.ESP.group.to.use.by.default |
| b7f00 | 20 66 6f 72 20 74 72 61 66 66 69 63 20 65 6e 63 72 79 70 74 69 6f 6e 2e 20 4d 69 67 68 74 20 62 | .for.traffic.encryption..Might.b |
| b7f20 | 65 20 6f 76 65 72 77 72 69 74 74 65 6e 20 62 79 20 69 6e 64 69 76 69 64 75 61 6c 20 73 65 74 74 | e.overwritten.by.individual.sett |
| b7f40 | 69 6e 67 73 20 66 6f 72 20 74 75 6e 6e 65 6c 20 6f 72 20 56 54 49 20 69 6e 74 65 72 66 61 63 65 | ings.for.tunnel.or.VTI.interface |
| b7f60 | 20 62 69 6e 64 69 6e 67 3b 00 60 60 64 65 73 63 72 69 70 74 69 6f 6e 60 60 20 2d 20 64 65 73 63 | .binding;.``description``.-.desc |
| b7f80 | 72 69 70 74 69 6f 6e 20 66 6f 72 20 74 68 69 73 20 70 65 65 72 3b 00 60 60 64 68 2d 67 72 6f 75 | ription.for.this.peer;.``dh-grou |
| b7fa0 | 70 60 60 20 64 68 2d 67 72 6f 75 70 3b 00 60 60 64 68 63 70 2d 69 6e 74 65 72 66 61 63 65 60 60 | p``.dh-group;.``dhcp-interface`` |
| b7fc0 | 20 2d 20 49 44 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 67 65 6e 65 72 61 74 | .-.ID.for.authentication.generat |
| b7fe0 | 65 64 20 66 72 6f 6d 20 44 48 43 50 20 61 64 64 72 65 73 73 20 64 79 6e 61 6d 69 63 61 6c 6c 79 | ed.from.DHCP.address.dynamically |
| b8000 | 3b 00 60 60 64 68 63 70 2d 69 6e 74 65 72 66 61 63 65 60 60 20 2d 20 75 73 65 20 61 6e 20 49 50 | ;.``dhcp-interface``.-.use.an.IP |
| b8020 | 20 61 64 64 72 65 73 73 2c 20 72 65 63 65 69 76 65 64 20 66 72 6f 6d 20 44 48 43 50 20 66 6f 72 | .address,.received.from.DHCP.for |
| b8040 | 20 49 50 53 65 63 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 77 69 74 68 20 74 68 69 73 20 70 65 65 72 | .IPSec.connection.with.this.peer |
| b8060 | 2c 20 69 6e 73 74 65 61 64 20 6f 66 20 60 60 6c 6f 63 61 6c 2d 61 64 64 72 65 73 73 60 60 3b 00 | ,.instead.of.``local-address``;. |
| b8080 | 60 60 64 69 73 61 62 6c 65 2d 6d 6f 62 69 6b 65 60 60 20 64 69 73 61 62 6c 65 73 20 4d 4f 42 49 | ``disable-mobike``.disables.MOBI |
| b80a0 | 4b 45 20 53 75 70 70 6f 72 74 2e 20 4d 4f 42 49 4b 45 20 69 73 20 6f 6e 6c 79 20 61 76 61 69 6c | KE.Support..MOBIKE.is.only.avail |
| b80c0 | 61 62 6c 65 20 66 6f 72 20 49 4b 45 76 32 20 61 6e 64 20 65 6e 61 62 6c 65 64 20 62 79 20 64 65 | able.for.IKEv2.and.enabled.by.de |
| b80e0 | 66 61 75 6c 74 2e 00 60 60 64 69 73 61 62 6c 65 2d 72 65 6b 65 79 60 60 20 44 6f 20 6e 6f 74 20 | fault..``disable-rekey``.Do.not. |
| b8100 | 6c 6f 63 61 6c 6c 79 20 69 6e 69 74 69 61 74 65 20 61 20 72 65 2d 6b 65 79 20 6f 66 20 74 68 65 | locally.initiate.a.re-key.of.the |
| b8120 | 20 53 41 2c 20 72 65 6d 6f 74 65 20 70 65 65 72 20 6d 75 73 74 20 72 65 2d 6b 65 79 20 62 65 66 | .SA,.remote.peer.must.re-key.bef |
| b8140 | 6f 72 65 20 65 78 70 69 72 61 74 69 6f 6e 2e 00 60 60 64 69 73 61 62 6c 65 2d 72 6f 75 74 65 2d | ore.expiration..``disable-route- |
| b8160 | 61 75 74 6f 69 6e 73 74 61 6c 6c 60 60 20 2d 20 54 68 69 73 20 6f 70 74 69 6f 6e 20 77 68 65 6e | autoinstall``.-.This.option.when |
| b8180 | 20 63 6f 6e 66 69 67 75 72 65 64 20 64 69 73 61 62 6c 65 73 20 74 68 65 20 72 6f 75 74 65 73 20 | .configured.disables.the.routes. |
| b81a0 | 69 6e 73 74 61 6c 6c 65 64 20 69 6e 20 74 68 65 20 64 65 66 61 75 6c 74 20 74 61 62 6c 65 20 32 | installed.in.the.default.table.2 |
| b81c0 | 32 30 20 66 6f 72 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 69 70 73 65 63 2e 20 49 74 20 69 73 | 20.for.site-to-site.ipsec..It.is |
| b81e0 | 20 6d 6f 73 74 6c 79 20 75 73 65 64 20 77 69 74 68 20 56 54 49 20 63 6f 6e 66 69 67 75 72 61 74 | .mostly.used.with.VTI.configurat |
| b8200 | 69 6f 6e 2e 00 60 60 64 69 73 61 62 6c 65 2d 72 6f 75 74 65 2d 61 75 74 6f 69 6e 73 74 61 6c 6c | ion..``disable-route-autoinstall |
| b8220 | 60 60 20 44 6f 20 6e 6f 74 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 69 6e 73 74 61 6c 6c 20 | ``.Do.not.automatically.install. |
| b8240 | 72 6f 75 74 65 73 20 74 6f 20 72 65 6d 6f 74 65 00 60 60 64 69 73 61 62 6c 65 2d 72 6f 75 74 65 | routes.to.remote.``disable-route |
| b8260 | 2d 61 75 74 6f 69 6e 73 74 61 6c 6c 60 60 20 44 6f 20 6e 6f 74 20 61 75 74 6f 6d 61 74 69 63 61 | -autoinstall``.Do.not.automatica |
| b8280 | 6c 6c 79 20 69 6e 73 74 61 6c 6c 20 72 6f 75 74 65 73 20 74 6f 20 72 65 6d 6f 74 65 20 6e 65 74 | lly.install.routes.to.remote.net |
| b82a0 | 77 6f 72 6b 73 3b 00 60 60 64 69 73 61 62 6c 65 60 60 20 2d 20 64 69 73 61 62 6c 65 20 74 68 69 | works;.``disable``.-.disable.thi |
| b82c0 | 73 20 74 75 6e 6e 65 6c 3b 00 60 60 64 69 73 61 62 6c 65 60 60 20 44 69 73 61 62 6c 65 20 50 46 | s.tunnel;.``disable``.Disable.PF |
| b82e0 | 53 3b 00 60 60 64 69 73 61 62 6c 65 60 60 20 64 69 73 61 62 6c 65 20 49 50 43 6f 6d 70 20 63 6f | S;.``disable``.disable.IPComp.co |
| b8300 | 6d 70 72 65 73 73 69 6f 6e 20 28 64 65 66 61 75 6c 74 29 3b 00 60 60 64 69 73 61 62 6c 65 60 60 | mpression.(default);.``disable`` |
| b8320 | 20 64 69 73 61 62 6c 65 20 4d 4f 42 49 4b 45 3b 00 60 60 64 72 6f 70 60 60 3a 20 64 72 6f 70 20 | .disable.MOBIKE;.``drop``:.drop. |
| b8340 | 74 68 65 20 70 61 63 6b 65 74 2e 00 60 60 65 63 64 73 61 2d 73 68 61 32 2d 6e 69 73 74 70 32 35 | the.packet..``ecdsa-sha2-nistp25 |
| b8360 | 36 60 60 00 60 60 65 63 64 73 61 2d 73 68 61 32 2d 6e 69 73 74 70 33 38 34 60 60 00 60 60 65 63 | 6``.``ecdsa-sha2-nistp384``.``ec |
| b8380 | 64 73 61 2d 73 68 61 32 2d 6e 69 73 74 70 35 32 31 60 60 00 60 60 65 64 70 60 60 20 2d 20 4c 69 | dsa-sha2-nistp521``.``edp``.-.Li |
| b83a0 | 73 74 65 6e 20 66 6f 72 20 45 44 50 20 66 6f 72 20 45 78 74 72 65 6d 65 20 72 6f 75 74 65 72 73 | sten.for.EDP.for.Extreme.routers |
| b83c0 | 2f 73 77 69 74 63 68 65 73 00 60 60 65 6e 61 62 6c 65 60 60 20 49 6e 68 65 72 69 74 20 44 69 66 | /switches.``enable``.Inherit.Dif |
| b83e0 | 66 69 65 2d 48 65 6c 6c 6d 61 6e 20 67 72 6f 75 70 20 66 72 6f 6d 20 49 4b 45 20 67 72 6f 75 70 | fie-Hellman.group.from.IKE.group |
| b8400 | 20 28 64 65 66 61 75 6c 74 29 3b 00 60 60 65 6e 61 62 6c 65 60 60 20 65 6e 61 62 6c 65 20 49 50 | .(default);.``enable``.enable.IP |
| b8420 | 43 6f 6d 70 20 63 6f 6d 70 72 65 73 73 69 6f 6e 3b 00 60 60 65 6e 61 62 6c 65 60 60 20 65 6e 61 | Comp.compression;.``enable``.ena |
| b8440 | 62 6c 65 20 4d 4f 42 49 4b 45 20 28 64 65 66 61 75 6c 74 20 66 6f 72 20 49 4b 45 76 32 29 3b 00 | ble.MOBIKE.(default.for.IKEv2);. |
| b8460 | 60 60 65 6e 63 72 79 70 74 69 6f 6e 60 60 20 65 6e 63 72 79 70 74 69 6f 6e 20 61 6c 67 6f 72 69 | ``encryption``.encryption.algori |
| b8480 | 74 68 6d 20 28 64 65 66 61 75 6c 74 20 31 32 38 20 62 69 74 20 41 45 53 2d 43 42 43 29 3b 00 60 | thm.(default.128.bit.AES-CBC);.` |
| b84a0 | 60 65 6e 63 72 79 70 74 69 6f 6e 60 60 20 65 6e 63 72 79 70 74 69 6f 6e 20 61 6c 67 6f 72 69 74 | `encryption``.encryption.algorit |
| b84c0 | 68 6d 3b 00 60 60 65 6e 64 60 60 20 4d 61 74 63 68 65 73 20 74 68 65 20 65 6e 64 20 6f 66 20 74 | hm;.``end``.Matches.the.end.of.t |
| b84e0 | 68 65 20 55 52 4c 20 70 61 74 68 2e 00 60 60 65 73 70 2d 67 72 6f 75 70 60 60 20 2d 20 64 65 66 | he.URL.path..``esp-group``.-.def |
| b8500 | 69 6e 65 20 45 53 50 20 67 72 6f 75 70 20 66 6f 72 20 65 6e 63 72 79 70 74 20 74 72 61 66 66 69 | ine.ESP.group.for.encrypt.traffi |
| b8520 | 63 2c 20 64 65 66 69 6e 65 64 20 62 79 20 74 68 69 73 20 74 75 6e 6e 65 6c 3b 00 60 60 65 73 70 | c,.defined.by.this.tunnel;.``esp |
| b8540 | 2d 67 72 6f 75 70 60 60 20 2d 20 64 65 66 69 6e 65 20 45 53 50 20 67 72 6f 75 70 20 66 6f 72 20 | -group``.-.define.ESP.group.for. |
| b8560 | 65 6e 63 72 79 70 74 20 74 72 61 66 66 69 63 2c 20 70 61 73 73 65 64 20 74 68 69 73 20 56 54 49 | encrypt.traffic,.passed.this.VTI |
| b8580 | 20 69 6e 74 65 72 66 61 63 65 2e 00 60 60 65 78 61 63 74 60 60 20 52 65 71 75 69 72 65 73 20 61 | .interface..``exact``.Requires.a |
| b85a0 | 6e 20 65 78 61 63 74 6c 79 20 6d 61 74 63 68 20 6f 66 20 74 68 65 20 55 52 4c 20 70 61 74 68 00 | n.exactly.match.of.the.URL.path. |
| b85c0 | 60 60 66 64 70 60 60 20 2d 20 4c 69 73 74 65 6e 20 66 6f 72 20 46 44 50 20 66 6f 72 20 46 6f 75 | ``fdp``.-.Listen.for.FDP.for.Fou |
| b85e0 | 6e 64 72 79 20 72 6f 75 74 65 72 73 2f 73 77 69 74 63 68 65 73 00 60 60 66 69 6c 65 60 60 20 2d | ndry.routers/switches.``file``.- |
| b8600 | 20 70 61 74 68 20 74 6f 20 74 68 65 20 6b 65 79 20 66 69 6c 65 3b 00 60 60 66 69 6c 65 6e 61 6d | .path.to.the.key.file;.``filenam |
| b8620 | 65 60 60 20 20 4c 6f 67 20 66 69 6c 65 20 28 64 65 66 61 75 6c 74 3a 20 65 76 65 2e 6a 73 6f 6e | e``..Log.file.(default:.eve.json |
| b8640 | 29 2e 00 60 60 66 69 6c 65 74 79 70 65 60 60 20 20 45 56 45 20 6c 6f 67 67 69 6e 67 20 64 65 73 | )..``filetype``..EVE.logging.des |
| b8660 | 74 69 6e 61 74 69 6f 6e 20 28 64 65 66 61 75 6c 74 3a 20 72 65 67 75 6c 61 72 29 2e 00 60 60 66 | tination.(default:.regular)..``f |
| b8680 | 6c 65 78 76 70 6e 60 60 20 41 6c 6c 6f 77 20 46 6c 65 78 56 50 4e 20 76 65 6e 64 6f 72 20 49 44 | lexvpn``.Allow.FlexVPN.vendor.ID |
| b86a0 | 20 70 61 79 6c 6f 61 64 20 28 49 4b 45 76 32 20 6f 6e 6c 79 29 2e 20 53 65 6e 64 20 74 68 65 20 | .payload.(IKEv2.only)..Send.the. |
| b86c0 | 43 69 73 63 6f 20 46 6c 65 78 56 50 4e 20 76 65 6e 64 6f 72 20 49 44 20 70 61 79 6c 6f 61 64 20 | Cisco.FlexVPN.vendor.ID.payload. |
| b86e0 | 28 49 4b 45 76 32 20 6f 6e 6c 79 29 2c 20 77 68 69 63 68 20 69 73 20 72 65 71 75 69 72 65 64 20 | (IKEv2.only),.which.is.required. |
| b8700 | 69 6e 20 6f 72 64 65 72 20 74 6f 20 6d 61 6b 65 20 43 69 73 63 6f 20 62 72 61 6e 64 20 64 65 76 | in.order.to.make.Cisco.brand.dev |
| b8720 | 69 63 65 73 20 61 6c 6c 6f 77 20 6e 65 67 6f 74 69 61 74 69 6e 67 20 61 20 6c 6f 63 61 6c 20 74 | ices.allow.negotiating.a.local.t |
| b8740 | 72 61 66 66 69 63 20 73 65 6c 65 63 74 6f 72 20 28 66 72 6f 6d 20 73 74 72 6f 6e 67 53 77 61 6e | raffic.selector.(from.strongSwan |
| b8760 | 27 73 20 70 6f 69 6e 74 20 6f 66 20 76 69 65 77 29 20 74 68 61 74 20 69 73 20 6e 6f 74 20 74 68 | 's.point.of.view).that.is.not.th |
| b8780 | 65 20 61 73 73 69 67 6e 65 64 20 76 69 72 74 75 61 6c 20 49 50 20 61 64 64 72 65 73 73 20 69 66 | e.assigned.virtual.IP.address.if |
| b87a0 | 20 73 75 63 68 20 61 6e 20 61 64 64 72 65 73 73 20 69 73 20 72 65 71 75 65 73 74 65 64 20 62 79 | .such.an.address.is.requested.by |
| b87c0 | 20 73 74 72 6f 6e 67 53 77 61 6e 2e 20 53 65 6e 64 69 6e 67 20 74 68 65 20 43 69 73 63 6f 20 46 | .strongSwan..Sending.the.Cisco.F |
| b87e0 | 6c 65 78 56 50 4e 20 76 65 6e 64 6f 72 20 49 44 20 70 72 65 76 65 6e 74 73 20 74 68 65 20 70 65 | lexVPN.vendor.ID.prevents.the.pe |
| b8800 | 65 72 20 66 72 6f 6d 20 6e 61 72 72 6f 77 69 6e 67 20 74 68 65 20 69 6e 69 74 69 61 74 6f 72 27 | er.from.narrowing.the.initiator' |
| b8820 | 73 20 6c 6f 63 61 6c 20 74 72 61 66 66 69 63 20 73 65 6c 65 63 74 6f 72 20 61 6e 64 20 61 6c 6c | s.local.traffic.selector.and.all |
| b8840 | 6f 77 73 20 69 74 20 74 6f 20 65 2e 67 2e 20 6e 65 67 6f 74 69 61 74 65 20 61 20 54 53 20 6f 66 | ows.it.to.e.g..negotiate.a.TS.of |
| b8860 | 20 30 2e 30 2e 30 2e 30 2f 30 20 3d 3d 20 30 2e 30 2e 30 2e 30 2f 30 20 69 6e 73 74 65 61 64 2e | .0.0.0.0/0.==.0.0.0.0/0.instead. |
| b8880 | 20 54 68 69 73 20 68 61 73 20 62 65 65 6e 20 74 65 73 74 65 64 20 77 69 74 68 20 61 20 22 74 75 | .This.has.been.tested.with.a."tu |
| b88a0 | 6e 6e 65 6c 20 6d 6f 64 65 20 69 70 73 65 63 20 69 70 76 34 22 20 43 69 73 63 6f 20 74 65 6d 70 | nnel.mode.ipsec.ipv4".Cisco.temp |
| b88c0 | 6c 61 74 65 20 62 75 74 20 73 68 6f 75 6c 64 20 61 6c 73 6f 20 77 6f 72 6b 20 66 6f 72 20 47 52 | late.but.should.also.work.for.GR |
| b88e0 | 45 20 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e 3b 00 60 60 66 6c 65 78 76 70 6e 60 60 20 41 6c 6c | E.encapsulation;.``flexvpn``.All |
| b8900 | 6f 77 73 20 46 6c 65 78 56 50 4e 20 76 65 6e 64 6f 72 20 49 44 20 70 61 79 6c 6f 61 64 20 28 49 | ows.FlexVPN.vendor.ID.payload.(I |
| b8920 | 4b 45 76 32 20 6f 6e 6c 79 29 2e 20 53 65 6e 64 20 74 68 65 20 43 69 73 63 6f 00 60 60 66 6c 65 | KEv2.only)..Send.the.Cisco.``fle |
| b8940 | 78 76 70 6e 60 60 20 41 6c 6c 6f 77 73 20 46 6c 65 78 56 50 4e 20 76 65 6e 64 6f 72 20 49 44 20 | xvpn``.Allows.FlexVPN.vendor.ID. |
| b8960 | 70 61 79 6c 6f 61 64 20 28 49 4b 45 76 32 20 6f 6e 6c 79 29 2e 20 53 65 6e 64 20 74 68 65 20 43 | payload.(IKEv2.only)..Send.the.C |
| b8980 | 69 73 63 6f 20 46 6c 65 78 56 50 4e 20 76 65 6e 64 6f 72 20 49 44 20 70 61 79 6c 6f 61 64 20 28 | isco.FlexVPN.vendor.ID.payload.( |
| b89a0 | 49 4b 45 76 32 20 6f 6e 6c 79 29 2c 20 77 68 69 63 68 20 69 73 20 72 65 71 75 69 72 65 64 20 69 | IKEv2.only),.which.is.required.i |
| b89c0 | 6e 20 6f 72 64 65 72 20 74 6f 20 6d 61 6b 65 20 43 69 73 63 6f 20 62 72 61 6e 64 20 64 65 76 69 | n.order.to.make.Cisco.brand.devi |
| b89e0 | 63 65 73 20 61 6c 6c 6f 77 20 6e 65 67 6f 74 69 61 74 69 6e 67 20 61 20 6c 6f 63 61 6c 20 74 72 | ces.allow.negotiating.a.local.tr |
| b8a00 | 61 66 66 69 63 20 73 65 6c 65 63 74 6f 72 20 28 66 72 6f 6d 20 73 74 72 6f 6e 67 53 77 61 6e 27 | affic.selector.(from.strongSwan' |
| b8a20 | 73 20 70 6f 69 6e 74 20 6f 66 20 76 69 65 77 29 20 74 68 61 74 20 69 73 20 6e 6f 74 20 74 68 65 | s.point.of.view).that.is.not.the |
| b8a40 | 20 61 73 73 69 67 6e 65 64 20 76 69 72 74 75 61 6c 20 49 50 20 61 64 64 72 65 73 73 20 69 66 20 | .assigned.virtual.IP.address.if. |
| b8a60 | 73 75 63 68 20 61 6e 20 61 64 64 72 65 73 73 20 69 73 20 72 65 71 75 65 73 74 65 64 20 62 79 20 | such.an.address.is.requested.by. |
| b8a80 | 73 74 72 6f 6e 67 53 77 61 6e 2e 20 53 65 6e 64 69 6e 67 20 74 68 65 20 43 69 73 63 6f 20 46 6c | strongSwan..Sending.the.Cisco.Fl |
| b8aa0 | 65 78 56 50 4e 20 76 65 6e 64 6f 72 20 49 44 20 70 72 65 76 65 6e 74 73 20 74 68 65 20 70 65 65 | exVPN.vendor.ID.prevents.the.pee |
| b8ac0 | 72 20 66 72 6f 6d 20 6e 61 72 72 6f 77 69 6e 67 20 74 68 65 20 69 6e 69 74 69 61 74 6f 72 27 73 | r.from.narrowing.the.initiator's |
| b8ae0 | 20 6c 6f 63 61 6c 20 74 72 61 66 66 69 63 20 73 65 6c 65 63 74 6f 72 20 61 6e 64 20 61 6c 6c 6f | .local.traffic.selector.and.allo |
| b8b00 | 77 73 20 69 74 20 74 6f 20 65 2e 67 2e 20 6e 65 67 6f 74 69 61 74 65 20 61 20 54 53 20 6f 66 20 | ws.it.to.e.g..negotiate.a.TS.of. |
| b8b20 | 30 2e 30 2e 30 2e 30 2f 30 20 3d 3d 20 30 2e 30 2e 30 2e 30 2f 30 20 69 6e 73 74 65 61 64 2e 20 | 0.0.0.0/0.==.0.0.0.0/0.instead.. |
| b8b40 | 54 68 69 73 20 68 61 73 20 62 65 65 6e 20 74 65 73 74 65 64 20 77 69 74 68 20 61 20 22 74 75 6e | This.has.been.tested.with.a."tun |
| b8b60 | 6e 65 6c 20 6d 6f 64 65 20 69 70 73 65 63 20 69 70 76 34 22 20 43 69 73 63 6f 20 74 65 6d 70 6c | nel.mode.ipsec.ipv4".Cisco.templ |
| b8b80 | 61 74 65 20 62 75 74 20 73 68 6f 75 6c 64 20 61 6c 73 6f 20 77 6f 72 6b 20 66 6f 72 20 47 52 45 | ate.but.should.also.work.for.GRE |
| b8ba0 | 20 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e 3b 00 60 60 66 6f 72 63 65 2d 75 64 70 2d 65 6e 63 61 | .encapsulation;.``force-udp-enca |
| b8bc0 | 70 73 75 6c 61 74 69 6f 6e 60 60 20 2d 20 66 6f 72 63 65 20 65 6e 63 61 70 73 75 6c 61 74 69 6f | psulation``.-.force.encapsulatio |
| b8be0 | 6e 20 6f 66 20 45 53 50 20 69 6e 74 6f 20 55 44 50 20 64 61 74 61 67 72 61 6d 73 2e 20 55 73 65 | n.of.ESP.into.UDP.datagrams..Use |
| b8c00 | 66 75 6c 20 69 6e 20 63 61 73 65 20 69 66 20 62 65 74 77 65 65 6e 20 6c 6f 63 61 6c 20 61 6e 64 | ful.in.case.if.between.local.and |
| b8c20 | 20 72 65 6d 6f 74 65 20 73 69 64 65 20 69 73 20 66 69 72 65 77 61 6c 6c 20 6f 72 20 4e 41 54 2c | .remote.side.is.firewall.or.NAT, |
| b8c40 | 20 77 68 69 63 68 20 6e 6f 74 20 61 6c 6c 6f 77 73 20 70 61 73 73 69 6e 67 20 70 6c 61 69 6e 20 | .which.not.allows.passing.plain. |
| b8c60 | 45 53 50 20 70 61 63 6b 65 74 73 20 62 65 74 77 65 65 6e 20 74 68 65 6d 3b 00 60 60 67 60 60 20 | ESP.packets.between.them;.``g``. |
| b8c80 | 2d 20 38 30 32 2e 31 31 67 20 2d 20 35 34 20 4d 62 69 74 73 2f 73 65 63 20 28 64 65 66 61 75 6c | -.802.11g.-.54.Mbits/sec.(defaul |
| b8ca0 | 74 29 00 60 60 67 72 61 63 65 66 75 6c 2d 73 68 75 74 64 6f 77 6e 60 60 20 2d 20 20 20 20 20 20 | t).``graceful-shutdown``.-...... |
| b8cc0 | 20 20 20 20 20 20 57 65 6c 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d 75 6e 69 74 69 65 73 20 76 61 6c | ......Well-known.communities.val |
| b8ce0 | 75 65 20 47 52 41 43 45 46 55 4c 5f 53 48 55 54 44 4f 57 4e 20 30 78 46 46 46 46 30 30 30 30 00 | ue.GRACEFUL_SHUTDOWN.0xFFFF0000. |
| b8d00 | 60 60 67 72 6f 75 70 60 60 20 20 41 64 64 72 65 73 73 20 67 72 6f 75 70 2e 00 60 60 67 72 6f 75 | ``group``..Address.group..``grou |
| b8d20 | 70 60 60 20 20 50 6f 72 74 20 67 72 6f 75 70 2e 00 60 60 67 75 69 64 65 64 60 60 20 54 68 65 20 | p``..Port.group..``guided``.The. |
| b8d40 | 64 72 69 76 65 72 20 61 6c 6c 6f 77 73 20 74 6f 20 73 65 74 20 64 65 73 69 72 65 64 20 70 65 72 | driver.allows.to.set.desired.per |
| b8d60 | 66 6f 72 6d 61 6e 63 65 20 6c 65 76 65 6c 73 20 61 6e 64 20 74 68 65 20 66 69 72 6d 77 61 72 65 | formance.levels.and.the.firmware |
| b8d80 | 20 73 65 6c 65 63 74 73 20 61 20 70 65 72 66 6f 72 6d 61 6e 63 65 20 6c 65 76 65 6c 20 69 6e 20 | .selects.a.performance.level.in. |
| b8da0 | 74 68 69 73 20 72 61 6e 67 65 20 61 6e 64 20 66 69 74 74 69 6e 67 20 74 6f 20 74 68 65 20 63 75 | this.range.and.fitting.to.the.cu |
| b8dc0 | 72 72 65 6e 74 20 77 6f 72 6b 6c 6f 61 64 2e 00 60 60 68 60 60 20 2d 20 45 78 65 63 75 74 69 6f | rrent.workload..``h``.-.Executio |
| b8de0 | 6e 20 69 6e 74 65 72 76 61 6c 20 69 6e 20 68 6f 75 72 73 00 60 60 68 61 73 68 60 60 20 68 61 73 | n.interval.in.hours.``hash``.has |
| b8e00 | 68 20 61 6c 67 6f 72 69 74 68 6d 20 28 64 65 66 61 75 6c 74 20 73 68 61 31 29 2e 00 60 60 68 61 | h.algorithm.(default.sha1)..``ha |
| b8e20 | 73 68 60 60 20 68 61 73 68 20 61 6c 67 6f 72 69 74 68 6d 2e 00 60 60 68 6f 6c 64 60 60 20 73 65 | sh``.hash.algorithm..``hold``.se |
| b8e40 | 74 20 61 63 74 69 6f 6e 20 74 6f 20 68 6f 6c 64 20 28 64 65 66 61 75 6c 74 29 00 60 60 68 6f 6c | t.action.to.hold.(default).``hol |
| b8e60 | 64 60 60 20 73 65 74 20 61 63 74 69 6f 6e 20 74 6f 20 68 6f 6c 64 3b 00 60 60 68 74 32 30 60 60 | d``.set.action.to.hold;.``ht20`` |
| b8e80 | 20 2d 20 32 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 00 60 60 68 74 34 30 2b 60 | .-.20.MHz.channel.width.``ht40+` |
| b8ea0 | 60 20 2d 20 42 6f 74 68 20 32 30 20 4d 48 7a 20 61 6e 64 20 34 30 20 4d 48 7a 20 77 69 74 68 20 | `.-.Both.20.MHz.and.40.MHz.with. |
| b8ec0 | 73 65 63 6f 6e 64 61 72 79 20 63 68 61 6e 6e 65 6c 20 61 62 6f 76 65 20 74 68 65 20 70 72 69 6d | secondary.channel.above.the.prim |
| b8ee0 | 61 72 79 20 63 68 61 6e 6e 65 6c 00 60 60 68 74 34 30 2d 60 60 20 2d 20 42 6f 74 68 20 32 30 20 | ary.channel.``ht40-``.-.Both.20. |
| b8f00 | 4d 48 7a 20 61 6e 64 20 34 30 20 4d 48 7a 20 77 69 74 68 20 73 65 63 6f 6e 64 61 72 79 20 63 68 | MHz.and.40.MHz.with.secondary.ch |
| b8f20 | 61 6e 6e 65 6c 20 62 65 6c 6f 77 20 74 68 65 20 70 72 69 6d 61 72 79 20 63 68 61 6e 6e 65 6c 00 | annel.below.the.primary.channel. |
| b8f40 | 60 60 68 76 63 30 60 60 20 2d 20 58 65 6e 20 63 6f 6e 73 6f 6c 65 00 60 60 69 64 60 60 20 2d 20 | ``hvc0``.-.Xen.console.``id``.-. |
| b8f60 | 73 74 61 74 69 63 20 49 44 27 73 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2e 20 | static.ID's.for.authentication.. |
| b8f80 | 49 6e 20 67 65 6e 65 72 61 6c 20 6c 6f 63 61 6c 20 61 6e 64 20 72 65 6d 6f 74 65 20 61 64 64 72 | In.general.local.and.remote.addr |
| b8fa0 | 65 73 73 20 60 60 3c 78 2e 78 2e 78 2e 78 3e 60 60 2c 20 60 60 3c 68 3a 68 3a 68 3a 68 3a 68 3a | ess.``<x.x.x.x>``,.``<h:h:h:h:h: |
| b8fc0 | 68 3a 68 3a 68 3e 60 60 20 6f 72 20 60 60 25 61 6e 79 60 60 3b 00 60 60 69 6b 65 2d 67 72 6f 75 | h:h:h>``.or.``%any``;.``ike-grou |
| b8fe0 | 70 60 60 20 2d 20 49 4b 45 20 67 72 6f 75 70 20 74 6f 20 75 73 65 20 66 6f 72 20 6b 65 79 20 65 | p``.-.IKE.group.to.use.for.key.e |
| b9000 | 78 63 68 61 6e 67 65 73 3b 00 60 60 69 6b 65 76 31 60 60 20 75 73 65 20 49 4b 45 76 31 20 66 6f | xchanges;.``ikev1``.use.IKEv1.fo |
| b9020 | 72 20 4b 65 79 20 45 78 63 68 61 6e 67 65 3b 00 60 60 69 6b 65 76 32 2d 72 65 61 75 74 68 60 60 | r.Key.Exchange;.``ikev2-reauth`` |
| b9040 | 20 2d 20 72 65 61 75 74 68 65 6e 74 69 63 61 74 65 20 72 65 6d 6f 74 65 20 70 65 65 72 20 64 75 | .-.reauthenticate.remote.peer.du |
| b9060 | 72 69 6e 67 20 74 68 65 20 72 65 6b 65 79 69 6e 67 20 70 72 6f 63 65 73 73 2e 20 43 61 6e 20 62 | ring.the.rekeying.process..Can.b |
| b9080 | 65 20 75 73 65 64 20 6f 6e 6c 79 20 77 69 74 68 20 49 4b 45 76 32 2e 20 43 72 65 61 74 65 20 61 | e.used.only.with.IKEv2..Create.a |
| b90a0 | 20 6e 65 77 20 49 4b 45 5f 53 41 20 66 72 6f 6d 20 74 68 65 20 73 63 72 61 74 63 68 20 61 6e 64 | .new.IKE_SA.from.the.scratch.and |
| b90c0 | 20 74 72 79 20 74 6f 20 72 65 63 72 65 61 74 65 20 61 6c 6c 20 49 50 73 65 63 20 53 41 73 3b 00 | .try.to.recreate.all.IPsec.SAs;. |
| b90e0 | 60 60 69 6b 65 76 32 2d 72 65 61 75 74 68 60 60 20 77 68 65 74 68 65 72 20 72 65 6b 65 79 69 6e | ``ikev2-reauth``.whether.rekeyin |
| b9100 | 67 20 6f 66 20 61 6e 20 49 4b 45 5f 53 41 20 73 68 6f 75 6c 64 20 61 6c 73 6f 20 72 65 61 75 74 | g.of.an.IKE_SA.should.also.reaut |
| b9120 | 68 65 6e 74 69 63 61 74 65 20 74 68 65 20 70 65 65 72 2e 20 49 6e 20 49 4b 45 76 31 2c 20 72 65 | henticate.the.peer..In.IKEv1,.re |
| b9140 | 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 69 73 20 61 6c 77 61 79 73 20 64 6f 6e 65 2e 20 53 | authentication.is.always.done..S |
| b9160 | 65 74 74 69 6e 67 20 74 68 69 73 20 70 61 72 61 6d 65 74 65 72 20 65 6e 61 62 6c 65 73 20 72 65 | etting.this.parameter.enables.re |
| b9180 | 6d 6f 74 65 20 68 6f 73 74 20 72 65 2d 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 64 75 72 69 | mote.host.re-authentication.duri |
| b91a0 | 6e 67 20 61 6e 20 49 4b 45 20 72 65 6b 65 79 2e 00 60 60 69 6b 65 76 32 2d 72 65 61 75 74 68 60 | ng.an.IKE.rekey..``ikev2-reauth` |
| b91c0 | 60 20 77 68 65 74 68 65 72 20 72 65 6b 65 79 69 6e 67 20 6f 66 20 61 6e 20 49 4b 45 5f 53 41 20 | `.whether.rekeying.of.an.IKE_SA. |
| b91e0 | 73 68 6f 75 6c 64 20 61 6c 73 6f 20 72 65 61 75 74 68 65 6e 74 69 63 61 74 65 20 74 68 65 20 70 | should.also.reauthenticate.the.p |
| b9200 | 65 65 72 2e 20 49 6e 20 49 4b 45 76 31 2c 20 72 65 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 | eer..In.IKEv1,.reauthentication. |
| b9220 | 69 73 20 61 6c 77 61 79 73 20 64 6f 6e 65 3a 00 60 60 69 6b 65 76 32 60 60 20 75 73 65 20 49 4b | is.always.done:.``ikev2``.use.IK |
| b9240 | 45 76 32 20 66 6f 72 20 4b 65 79 20 45 78 63 68 61 6e 67 65 3b 00 60 60 69 6e 60 60 3a 20 52 75 | Ev2.for.Key.Exchange;.``in``:.Ru |
| b9260 | 6c 65 73 65 74 20 66 6f 72 20 66 6f 72 77 61 72 64 65 64 20 70 61 63 6b 65 74 73 20 6f 6e 20 61 | leset.for.forwarded.packets.on.a |
| b9280 | 6e 20 69 6e 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 00 60 60 69 6e 69 74 63 61 6c 6c 5f 62 | n.inbound.interface.``initcall_b |
| b92a0 | 6c 61 63 6b 6c 69 73 74 3d 61 63 70 69 5f 63 70 75 66 72 65 71 5f 69 6e 69 74 60 60 20 44 69 73 | lacklist=acpi_cpufreq_init``.Dis |
| b92c0 | 61 62 6c 65 20 64 65 66 61 75 6c 74 20 41 43 50 49 20 43 50 55 20 66 72 65 71 75 65 6e 63 79 20 | able.default.ACPI.CPU.frequency. |
| b92e0 | 73 63 61 6c 65 00 60 60 69 6e 69 74 69 61 74 65 60 60 20 2d 20 64 6f 65 73 20 69 6e 69 74 69 61 | scale.``initiate``.-.does.initia |
| b9300 | 6c 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 6f 20 72 65 6d 6f 74 65 20 70 65 65 72 20 69 6d 6d 65 | l.connection.to.remote.peer.imme |
| b9320 | 64 69 61 74 65 6c 79 20 61 66 74 65 72 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 61 6e 64 20 61 66 | diately.after.configuring.and.af |
| b9340 | 74 65 72 20 62 6f 6f 74 2e 20 49 6e 20 74 68 69 73 20 6d 6f 64 65 20 74 68 65 20 63 6f 6e 6e 65 | ter.boot..In.this.mode.the.conne |
| b9360 | 63 74 69 6f 6e 20 77 69 6c 6c 20 6e 6f 74 20 62 65 20 72 65 73 74 61 72 74 65 64 20 69 6e 20 63 | ction.will.not.be.restarted.in.c |
| b9380 | 61 73 65 20 6f 66 20 64 69 73 63 6f 6e 6e 65 63 74 69 6f 6e 2c 20 74 68 65 72 65 66 6f 72 65 20 | ase.of.disconnection,.therefore. |
| b93a0 | 73 68 6f 75 6c 64 20 62 65 20 75 73 65 64 20 6f 6e 6c 79 20 74 6f 67 65 74 68 65 72 20 77 69 74 | should.be.used.only.together.wit |
| b93c0 | 68 20 44 50 44 20 6f 72 20 61 6e 6f 74 68 65 72 20 73 65 73 73 69 6f 6e 20 74 72 61 63 6b 69 6e | h.DPD.or.another.session.trackin |
| b93e0 | 67 20 6d 65 74 68 6f 64 73 3b 00 60 60 69 6e 74 65 6c 5f 69 64 6c 65 2e 6d 61 78 5f 63 73 74 61 | g.methods;.``intel_idle.max_csta |
| b9400 | 74 65 3d 30 60 60 20 44 69 73 61 62 6c 65 20 69 6e 74 65 6c 5f 69 64 6c 65 20 61 6e 64 20 66 61 | te=0``.Disable.intel_idle.and.fa |
| b9420 | 6c 6c 20 62 61 63 6b 20 6f 6e 20 61 63 70 69 5f 69 64 6c 65 00 60 60 69 6e 74 65 72 66 61 63 65 | ll.back.on.acpi_idle.``interface |
| b9440 | 60 60 20 49 6e 74 65 72 66 61 63 65 20 4e 61 6d 65 20 74 6f 20 75 73 65 2e 20 54 68 65 20 6e 61 | ``.Interface.Name.to.use..The.na |
| b9460 | 6d 65 20 6f 66 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 6f 6e 20 77 68 69 63 68 00 60 60 69 | me.of.the.interface.on.which.``i |
| b9480 | 6e 74 65 72 66 61 63 65 60 60 20 49 6e 74 65 72 66 61 63 65 20 4e 61 6d 65 20 74 6f 20 75 73 65 | nterface``.Interface.Name.to.use |
| b94a0 | 2e 20 54 68 65 20 6e 61 6d 65 20 6f 66 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 6f 6e 20 77 | ..The.name.of.the.interface.on.w |
| b94c0 | 68 69 63 68 20 76 69 72 74 75 61 6c 20 49 50 20 61 64 64 72 65 73 73 65 73 20 73 68 6f 75 6c 64 | hich.virtual.IP.addresses.should |
| b94e0 | 20 62 65 20 69 6e 73 74 61 6c 6c 65 64 2e 20 49 66 20 6e 6f 74 20 73 70 65 63 69 66 69 65 64 20 | .be.installed..If.not.specified. |
| b9500 | 74 68 65 20 61 64 64 72 65 73 73 65 73 20 77 69 6c 6c 20 62 65 20 69 6e 73 74 61 6c 6c 65 64 20 | the.addresses.will.be.installed. |
| b9520 | 6f 6e 20 74 68 65 20 6f 75 74 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 3b 00 60 60 69 6e 74 | on.the.outbound.interface;.``int |
| b9540 | 65 72 66 61 63 65 60 60 20 69 73 20 75 73 65 64 20 66 6f 72 20 74 68 65 20 56 79 4f 53 20 43 4c | erface``.is.used.for.the.VyOS.CL |
| b9560 | 49 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 69 64 65 6e 74 69 66 79 20 74 68 65 20 57 69 72 65 47 75 | I.command.to.identify.the.WireGu |
| b9580 | 61 72 64 20 69 6e 74 65 72 66 61 63 65 20 77 68 65 72 65 20 74 68 69 73 20 70 72 69 76 61 74 65 | ard.interface.where.this.private |
| b95a0 | 20 6b 65 79 20 69 73 20 74 6f 20 62 65 20 75 73 65 64 2e 00 60 60 69 6e 74 65 72 6c 65 61 76 65 | .key.is.to.be.used..``interleave |
| b95c0 | 60 60 20 65 6e 61 62 6c 65 73 20 4e 54 50 20 69 6e 74 65 72 6c 65 61 76 65 64 20 6d 6f 64 65 20 | ``.enables.NTP.interleaved.mode. |
| b95e0 | 28 73 65 65 20 60 64 72 61 66 74 2d 6e 74 70 2d 69 6e 74 65 72 6c 65 61 76 65 64 2d 6d 6f 64 65 | (see.`draft-ntp-interleaved-mode |
| b9600 | 73 60 5f 29 2c 20 77 68 69 63 68 20 63 61 6e 20 69 6d 70 72 6f 76 65 20 73 79 6e 63 68 72 6f 6e | s`_),.which.can.improve.synchron |
| b9620 | 69 7a 61 74 69 6f 6e 20 61 63 63 75 72 61 63 79 20 61 6e 64 20 73 74 61 62 69 6c 69 74 79 20 77 | ization.accuracy.and.stability.w |
| b9640 | 68 65 6e 20 73 75 70 70 6f 72 74 65 64 20 62 79 20 62 6f 74 68 20 70 61 72 74 69 65 73 2e 00 60 | hen.supported.by.both.parties..` |
| b9660 | 60 69 6e 74 65 72 6e 65 74 60 60 20 2d 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 | `internet``.-................... |
| b9680 | 20 20 57 65 6c 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d 75 6e 69 74 69 65 73 20 76 61 6c 75 65 20 30 | ..Well-known.communities.value.0 |
| b96a0 | 00 60 60 69 6e 74 65 72 76 61 6c 60 60 20 6b 65 65 70 2d 61 6c 69 76 65 20 69 6e 74 65 72 76 61 | .``interval``.keep-alive.interva |
| b96c0 | 6c 20 69 6e 20 73 65 63 6f 6e 64 73 20 3c 32 2d 38 36 34 30 30 3e 20 28 64 65 66 61 75 6c 74 20 | l.in.seconds.<2-86400>.(default. |
| b96e0 | 33 30 29 3b 00 60 60 69 73 69 73 60 60 20 2d 20 49 6e 74 65 72 6d 65 64 69 61 74 65 20 53 79 73 | 30);.``isis``.-.Intermediate.Sys |
| b9700 | 74 65 6d 20 74 6f 20 49 6e 74 65 72 6d 65 64 69 61 74 65 20 53 79 73 74 65 6d 20 28 49 53 2d 49 | tem.to.Intermediate.System.(IS-I |
| b9720 | 53 29 00 60 60 6a 75 6d 70 60 60 3a 20 6a 75 6d 70 20 74 6f 20 61 6e 6f 74 68 65 72 20 63 75 73 | S).``jump``:.jump.to.another.cus |
| b9740 | 74 6f 6d 20 63 68 61 69 6e 2e 00 60 60 6b 65 72 6e 65 6c 60 60 20 2d 20 4b 65 72 6e 65 6c 20 72 | tom.chain..``kernel``.-.Kernel.r |
| b9760 | 6f 75 74 65 73 00 60 60 6b 65 79 2d 65 78 63 68 61 6e 67 65 60 60 20 77 68 69 63 68 20 70 72 6f | outes.``key-exchange``.which.pro |
| b9780 | 74 6f 63 6f 6c 20 73 68 6f 75 6c 64 20 62 65 20 75 73 65 64 20 74 6f 20 69 6e 69 74 69 61 6c 69 | tocol.should.be.used.to.initiali |
| b97a0 | 7a 65 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 49 66 20 6e 6f 74 20 73 65 74 20 62 6f 74 | ze.the.connection.If.not.set.bot |
| b97c0 | 68 20 70 72 6f 74 6f 63 6f 6c 73 20 61 72 65 20 68 61 6e 64 6c 65 64 20 61 6e 64 20 63 6f 6e 6e | h.protocols.are.handled.and.conn |
| b97e0 | 65 63 74 69 6f 6e 73 20 77 69 6c 6c 20 75 73 65 20 49 4b 45 76 32 20 77 68 65 6e 20 69 6e 69 74 | ections.will.use.IKEv2.when.init |
| b9800 | 69 61 74 69 6e 67 2c 20 62 75 74 20 61 63 63 65 70 74 20 61 6e 79 20 70 72 6f 74 6f 63 6f 6c 20 | iating,.but.accept.any.protocol. |
| b9820 | 76 65 72 73 69 6f 6e 20 77 68 65 6e 20 72 65 73 70 6f 6e 64 69 6e 67 3a 00 60 60 6b 65 79 60 60 | version.when.responding:.``key`` |
| b9840 | 20 2d 20 61 20 70 72 69 76 61 74 65 20 6b 65 79 2c 20 77 68 69 63 68 20 77 69 6c 6c 20 62 65 20 | .-.a.private.key,.which.will.be. |
| b9860 | 75 73 65 64 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6e 67 20 6c 6f 63 61 6c 20 72 6f | used.for.authenticating.local.ro |
| b9880 | 75 74 65 72 20 6f 6e 20 72 65 6d 6f 74 65 20 70 65 65 72 3a 00 60 60 6b 65 79 60 60 20 75 73 65 | uter.on.remote.peer:.``key``.use |
| b98a0 | 20 41 50 49 20 6b 65 79 73 20 63 6f 6e 66 69 67 75 72 65 64 20 69 6e 20 60 60 73 65 72 76 69 63 | .API.keys.configured.in.``servic |
| b98c0 | 65 20 68 74 74 70 73 20 61 70 69 20 6b 65 79 73 60 60 00 60 60 6c 61 74 65 6e 63 79 60 60 3a 20 | e.https.api.keys``.``latency``:. |
| b98e0 | 41 20 73 65 72 76 65 72 20 70 72 6f 66 69 6c 65 20 66 6f 63 75 73 65 64 20 6f 6e 20 6c 6f 77 65 | A.server.profile.focused.on.lowe |
| b9900 | 72 69 6e 67 20 6e 65 74 77 6f 72 6b 20 6c 61 74 65 6e 63 79 2e 20 54 68 69 73 20 70 72 6f 66 69 | ring.network.latency..This.profi |
| b9920 | 6c 65 20 66 61 76 6f 72 73 20 70 65 72 66 6f 72 6d 61 6e 63 65 20 6f 76 65 72 20 70 6f 77 65 72 | le.favors.performance.over.power |
| b9940 | 20 73 61 76 69 6e 67 73 20 62 79 20 73 65 74 74 69 6e 67 20 60 60 69 6e 74 65 6c 5f 70 73 74 61 | .savings.by.setting.``intel_psta |
| b9960 | 74 65 60 60 20 61 6e 64 20 60 60 6d 69 6e 5f 70 65 72 66 5f 70 63 74 3d 31 30 30 60 60 2e 00 60 | te``.and.``min_perf_pct=100``..` |
| b9980 | 60 6c 64 61 70 60 60 20 4c 44 41 50 20 70 72 6f 74 6f 63 6f 6c 20 63 68 65 63 6b 2e 00 60 60 6c | `ldap``.LDAP.protocol.check..``l |
| b99a0 | 65 61 73 74 2d 63 6f 6e 6e 65 63 74 69 6f 6e 60 60 20 44 69 73 74 72 69 62 75 74 65 73 20 72 65 | east-connection``.Distributes.re |
| b99c0 | 71 75 65 73 74 73 20 74 6f 20 74 68 65 20 73 65 72 76 65 72 20 77 69 74 68 20 74 68 65 20 66 65 | quests.to.the.server.with.the.fe |
| b99e0 | 77 65 73 74 20 61 63 74 69 76 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 00 60 60 6c 65 61 73 74 2d | west.active.connections.``least- |
| b9a00 | 63 6f 6e 6e 65 63 74 69 6f 6e 60 60 20 44 69 73 74 72 69 62 75 74 65 73 20 72 65 71 75 65 73 74 | connection``.Distributes.request |
| b9a20 | 73 20 74 70 20 74 6a 65 20 73 65 72 76 65 72 20 77 6f 74 6a 20 74 68 65 20 66 65 77 65 73 74 20 | s.tp.tje.server.wotj.the.fewest. |
| b9a40 | 61 63 74 69 76 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 00 60 60 6c 69 66 65 2d 62 79 74 65 73 60 | active.connections.``life-bytes` |
| b9a60 | 60 20 45 53 50 20 6c 69 66 65 20 69 6e 20 62 79 74 65 73 20 3c 31 30 32 34 2d 32 36 38 34 33 35 | `.ESP.life.in.bytes.<1024-268435 |
| b9a80 | 34 35 36 30 30 30 30 30 3e 2e 20 4e 75 6d 62 65 72 20 6f 66 20 62 79 74 65 73 20 74 72 61 6e 73 | 45600000>..Number.of.bytes.trans |
| b9aa0 | 6d 69 74 74 65 64 20 6f 76 65 72 20 61 6e 20 49 50 73 65 63 20 53 41 20 62 65 66 6f 72 65 20 69 | mitted.over.an.IPsec.SA.before.i |
| b9ac0 | 74 20 65 78 70 69 72 65 73 3b 00 60 60 6c 69 66 65 2d 70 61 63 6b 65 74 73 60 60 20 45 53 50 20 | t.expires;.``life-packets``.ESP. |
| b9ae0 | 6c 69 66 65 20 69 6e 20 70 61 63 6b 65 74 73 20 3c 31 30 30 30 2d 32 36 38 34 33 35 34 35 36 30 | life.in.packets.<1000-2684354560 |
| b9b00 | 30 30 30 30 3e 2e 20 4e 75 6d 62 65 72 20 6f 66 20 70 61 63 6b 65 74 73 20 74 72 61 6e 73 6d 69 | 0000>..Number.of.packets.transmi |
| b9b20 | 74 74 65 64 20 6f 76 65 72 20 61 6e 20 49 50 73 65 63 20 53 41 20 62 65 66 6f 72 65 20 69 74 20 | tted.over.an.IPsec.SA.before.it. |
| b9b40 | 65 78 70 69 72 65 73 3b 00 60 60 6c 69 66 65 74 69 6d 65 60 60 20 45 53 50 20 6c 69 66 65 74 69 | expires;.``lifetime``.ESP.lifeti |
| b9b60 | 6d 65 20 69 6e 20 73 65 63 6f 6e 64 73 20 3c 33 30 2d 38 36 34 30 30 3e 20 28 64 65 66 61 75 6c | me.in.seconds.<30-86400>.(defaul |
| b9b80 | 74 20 33 36 30 30 29 2e 20 48 6f 77 20 6c 6f 6e 67 20 61 20 70 61 72 74 69 63 75 6c 61 72 20 69 | t.3600)..How.long.a.particular.i |
| b9ba0 | 6e 73 74 61 6e 63 65 20 6f 66 20 61 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 28 61 20 73 65 74 20 6f | nstance.of.a.connection.(a.set.o |
| b9bc0 | 66 20 65 6e 63 72 79 70 74 69 6f 6e 2f 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6b 65 79 73 | f.encryption/authentication.keys |
| b9be0 | 20 66 6f 72 20 75 73 65 72 20 70 61 63 6b 65 74 73 29 20 73 68 6f 75 6c 64 20 6c 61 73 74 2c 20 | .for.user.packets).should.last,. |
| b9c00 | 66 72 6f 6d 20 73 75 63 63 65 73 73 66 75 6c 20 6e 65 67 6f 74 69 61 74 69 6f 6e 20 74 6f 20 65 | from.successful.negotiation.to.e |
| b9c20 | 78 70 69 72 79 3b 00 60 60 6c 69 66 65 74 69 6d 65 60 60 20 49 4b 45 20 6c 69 66 65 74 69 6d 65 | xpiry;.``lifetime``.IKE.lifetime |
| b9c40 | 20 69 6e 20 73 65 63 6f 6e 64 73 20 3c 30 2d 38 36 34 30 30 3e 20 28 64 65 66 61 75 6c 74 20 32 | .in.seconds.<0-86400>.(default.2 |
| b9c60 | 38 38 30 30 29 3b 00 60 60 6c 69 66 65 74 69 6d 65 60 60 20 49 4b 45 20 6c 69 66 65 74 69 6d 65 | 8800);.``lifetime``.IKE.lifetime |
| b9c80 | 20 69 6e 20 73 65 63 6f 6e 64 73 20 3c 33 30 2d 38 36 34 30 30 3e 20 28 64 65 66 61 75 6c 74 20 | .in.seconds.<30-86400>.(default. |
| b9ca0 | 32 38 38 30 30 29 3b 00 60 60 6c 6c 67 72 2d 73 74 61 6c 65 60 60 20 2d 20 20 20 20 20 20 20 20 | 28800);.``llgr-stale``.-........ |
| b9cc0 | 20 20 20 20 20 20 20 20 20 20 20 57 65 6c 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d 75 6e 69 74 69 65 | ...........Well-known.communitie |
| b9ce0 | 73 20 76 61 6c 75 65 20 4c 4c 47 52 5f 53 54 41 4c 45 20 30 78 46 46 46 46 30 30 30 36 00 60 60 | s.value.LLGR_STALE.0xFFFF0006.`` |
| b9d00 | 6c 6f 63 61 6c 2d 61 64 64 72 65 73 73 60 60 20 2d 20 6c 6f 63 61 6c 20 49 50 20 61 64 64 72 65 | local-address``.-.local.IP.addre |
| b9d20 | 73 73 20 66 6f 72 20 49 50 53 65 63 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 77 69 74 68 20 74 68 69 | ss.for.IPSec.connection.with.thi |
| b9d40 | 73 20 70 65 65 72 2e 20 49 66 20 64 65 66 69 6e 65 64 20 60 60 61 6e 79 60 60 2c 20 74 68 65 6e | s.peer..If.defined.``any``,.then |
| b9d60 | 20 61 6e 20 49 50 20 61 64 64 72 65 73 73 20 77 68 69 63 68 20 63 6f 6e 66 69 67 75 72 65 64 20 | .an.IP.address.which.configured. |
| b9d80 | 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 77 69 74 68 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 20 | on.interface.with.default.route. |
| b9da0 | 77 69 6c 6c 20 62 65 20 75 73 65 64 3b 00 60 60 6c 6f 63 61 6c 2d 61 73 60 60 20 2d 20 20 20 20 | will.be.used;.``local-as``.-.... |
| b9dc0 | 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 57 65 6c 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d | .................Well-known.comm |
| b9de0 | 75 6e 69 74 69 65 73 20 76 61 6c 75 65 20 4e 4f 5f 45 58 50 4f 52 54 5f 53 55 42 43 4f 4e 46 45 | unities.value.NO_EXPORT_SUBCONFE |
| b9e00 | 44 20 30 78 46 46 46 46 46 46 30 33 00 60 60 6c 6f 63 61 6c 2d 69 64 60 60 20 2d 20 49 44 20 66 | D.0xFFFFFF03.``local-id``.-.ID.f |
| b9e20 | 6f 72 20 74 68 65 20 6c 6f 63 61 6c 20 56 79 4f 53 20 72 6f 75 74 65 72 2e 20 49 66 20 64 65 66 | or.the.local.VyOS.router..If.def |
| b9e40 | 69 6e 65 64 2c 20 64 75 72 69 6e 67 20 74 68 65 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 | ined,.during.the.authentication. |
| b9e60 | 69 74 20 77 69 6c 6c 20 62 65 20 73 65 6e 64 20 74 6f 20 72 65 6d 6f 74 65 20 70 65 65 72 3b 00 | it.will.be.send.to.remote.peer;. |
| b9e80 | 60 60 6c 6f 63 61 6c 2d 6b 65 79 60 60 20 2d 20 6e 61 6d 65 20 6f 66 20 50 4b 49 20 6b 65 79 2d | ``local-key``.-.name.of.PKI.key- |
| b9ea0 | 70 61 69 72 20 77 69 74 68 20 6c 6f 63 61 6c 20 70 72 69 76 61 74 65 20 6b 65 79 00 60 60 6c 6f | pair.with.local.private.key.``lo |
| b9ec0 | 63 61 6c 60 60 20 2d 20 64 65 66 69 6e 65 20 61 20 6c 6f 63 61 6c 20 73 6f 75 72 63 65 20 66 6f | cal``.-.define.a.local.source.fo |
| b9ee0 | 72 20 6d 61 74 63 68 20 74 72 61 66 66 69 63 2c 20 77 68 69 63 68 20 73 68 6f 75 6c 64 20 62 65 | r.match.traffic,.which.should.be |
| b9f00 | 20 65 6e 63 72 79 70 74 65 64 20 61 6e 64 20 73 65 6e 64 20 74 6f 20 74 68 69 73 20 70 65 65 72 | .encrypted.and.send.to.this.peer |
| b9f20 | 3a 00 60 60 6c 6f 63 61 6c 60 60 3a 20 52 75 6c 65 73 65 74 20 66 6f 72 20 70 61 63 6b 65 74 73 | :.``local``:.Ruleset.for.packets |
| b9f40 | 20 64 65 73 74 69 6e 65 64 20 66 6f 72 20 74 68 69 73 20 72 6f 75 74 65 72 00 60 60 6d 60 60 20 | .destined.for.this.router.``m``. |
| b9f60 | 2d 20 45 78 65 63 75 74 69 6f 6e 20 69 6e 74 65 72 76 61 6c 20 69 6e 20 6d 69 6e 75 74 65 73 00 | -.Execution.interval.in.minutes. |
| b9f80 | 60 60 6d 61 69 6e 60 60 20 52 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 75 73 65 64 20 62 79 20 56 | ``main``.Routing.table.used.by.V |
| b9fa0 | 79 4f 53 20 61 6e 64 20 6f 74 68 65 72 20 69 6e 74 65 72 66 61 63 65 73 20 6e 6f 74 20 70 61 72 | yOS.and.other.interfaces.not.par |
| b9fc0 | 74 69 63 69 70 61 74 69 6e 67 20 69 6e 20 50 42 52 00 60 60 6d 61 69 6e 60 60 20 75 73 65 20 4d | ticipating.in.PBR.``main``.use.M |
| b9fe0 | 61 69 6e 20 6d 6f 64 65 20 66 6f 72 20 4b 65 79 20 45 78 63 68 61 6e 67 65 73 20 69 6e 20 74 68 | ain.mode.for.Key.Exchanges.in.th |
| ba000 | 65 20 49 4b 45 76 31 20 50 72 6f 74 6f 63 6f 6c 20 28 52 65 63 6f 6d 6d 65 6e 64 65 64 20 44 65 | e.IKEv1.Protocol.(Recommended.De |
| ba020 | 66 61 75 6c 74 29 3b 00 60 60 6d 65 73 73 61 67 65 60 60 3a 20 46 75 6c 6c 20 6d 65 73 73 61 67 | fault);.``message``:.Full.messag |
| ba040 | 65 20 74 68 61 74 20 68 61 73 20 74 72 69 67 67 65 72 65 64 20 74 68 65 20 73 63 72 69 70 74 2e | e.that.has.triggered.the.script. |
| ba060 | 00 60 60 6d 69 74 69 67 61 74 69 6f 6e 73 3d 6f 66 66 60 60 00 60 60 6d 6f 62 69 6b 65 60 60 20 | .``mitigations=off``.``mobike``. |
| ba080 | 65 6e 61 62 6c 65 20 4d 4f 42 49 4b 45 20 53 75 70 70 6f 72 74 2e 20 4d 4f 42 49 4b 45 20 69 73 | enable.MOBIKE.Support..MOBIKE.is |
| ba0a0 | 20 6f 6e 6c 79 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 49 4b 45 76 32 3a 00 60 60 6d 6f 64 | .only.available.for.IKEv2:.``mod |
| ba0c0 | 65 60 60 20 2d 20 6d 6f 64 65 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 62 65 | e``.-.mode.for.authentication.be |
| ba0e0 | 74 77 65 65 6e 20 56 79 4f 53 20 61 6e 64 20 72 65 6d 6f 74 65 20 70 65 65 72 3a 00 60 60 6d 6f | tween.VyOS.and.remote.peer:.``mo |
| ba100 | 64 65 60 60 20 49 4b 45 76 31 20 50 68 61 73 65 20 31 20 4d 6f 64 65 20 53 65 6c 65 63 74 69 6f | de``.IKEv1.Phase.1.Mode.Selectio |
| ba120 | 6e 3a 00 60 60 6d 6f 64 65 60 60 20 74 68 65 20 74 79 70 65 20 6f 66 20 74 68 65 20 63 6f 6e 6e | n:.``mode``.the.type.of.the.conn |
| ba140 | 65 63 74 69 6f 6e 3a 00 60 60 6d 6f 6e 69 74 6f 72 60 60 20 2d 20 50 61 73 73 69 76 65 6c 79 20 | ection:.``monitor``.-.Passively. |
| ba160 | 6d 6f 6e 69 74 6f 72 20 61 6c 6c 20 70 61 63 6b 65 74 73 20 6f 6e 20 74 68 65 20 66 72 65 71 75 | monitor.all.packets.on.the.frequ |
| ba180 | 65 6e 63 79 2f 63 68 61 6e 6e 65 6c 00 60 60 6d 75 6c 74 69 2d 75 73 65 72 2d 62 65 61 6d 66 6f | ency/channel.``multi-user-beamfo |
| ba1a0 | 72 6d 65 65 60 60 20 2d 20 53 75 70 70 6f 72 74 20 66 6f 72 20 6f 70 65 72 61 74 69 6f 6e 20 61 | rmee``.-.Support.for.operation.a |
| ba1c0 | 73 20 6d 75 6c 74 69 20 75 73 65 72 20 62 65 61 6d 66 6f 72 6d 65 65 00 60 60 6d 75 6c 74 69 2d | s.multi.user.beamformee.``multi- |
| ba1e0 | 75 73 65 72 2d 62 65 61 6d 66 6f 72 6d 65 65 60 60 20 2d 20 53 75 70 70 6f 72 74 20 66 6f 72 20 | user-beamformee``.-.Support.for. |
| ba200 | 6f 70 65 72 61 74 69 6f 6e 20 61 73 20 73 69 6e 67 6c 65 20 75 73 65 72 20 62 65 61 6d 66 6f 72 | operation.as.single.user.beamfor |
| ba220 | 6d 65 72 00 60 60 6d 75 6c 74 69 2d 75 73 65 72 2d 62 65 61 6d 66 6f 72 6d 65 72 60 60 20 2d 20 | mer.``multi-user-beamformer``.-. |
| ba240 | 53 75 70 70 6f 72 74 20 66 6f 72 20 6f 70 65 72 61 74 69 6f 6e 20 61 73 20 6d 75 6c 74 69 20 75 | Support.for.operation.as.multi.u |
| ba260 | 73 65 72 20 62 65 61 6d 66 6f 72 6d 65 72 00 60 60 6d 75 6c 74 69 2d 75 73 65 72 2d 62 65 61 6d | ser.beamformer.``multi-user-beam |
| ba280 | 66 6f 72 6d 65 72 60 60 20 2d 20 53 75 70 70 6f 72 74 20 66 6f 72 20 6f 70 65 72 61 74 69 6f 6e | former``.-.Support.for.operation |
| ba2a0 | 20 61 73 20 73 69 6e 67 6c 65 20 75 73 65 72 20 62 65 61 6d 66 6f 72 6d 65 72 00 60 60 6d 79 73 | .as.single.user.beamformer.``mys |
| ba2c0 | 71 6c 60 60 20 4d 79 53 51 4c 20 70 72 6f 74 6f 63 6f 6c 20 63 68 65 63 6b 2e 00 60 60 6e 60 60 | ql``.MySQL.protocol.check..``n`` |
| ba2e0 | 20 2d 20 38 30 32 2e 31 31 6e 20 2d 20 36 30 30 20 4d 62 69 74 73 2f 73 65 63 00 60 60 6e 61 6d | .-.802.11n.-.600.Mbits/sec.``nam |
| ba300 | 65 60 60 20 69 73 20 75 73 65 64 20 66 6f 72 20 74 68 65 20 56 79 4f 53 20 43 4c 49 20 63 6f 6d | e``.is.used.for.the.VyOS.CLI.com |
| ba320 | 6d 61 6e 64 20 74 6f 20 69 64 65 6e 74 69 66 79 20 74 68 69 73 20 6b 65 79 2e 20 54 68 69 73 20 | mand.to.identify.this.key..This. |
| ba340 | 6b 65 79 20 60 60 6e 61 6d 65 60 60 20 69 73 20 74 68 65 6e 20 75 73 65 64 20 69 6e 20 74 68 65 | key.``name``.is.then.used.in.the |
| ba360 | 20 43 4c 49 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 6f 20 72 65 66 65 72 65 6e 63 65 20 | .CLI.configuration.to.reference. |
| ba380 | 74 68 65 20 6b 65 79 20 69 6e 73 74 61 6e 63 65 2e 00 60 60 6e 65 74 2e 69 70 76 34 2e 63 6f 6e | the.key.instance..``net.ipv4.con |
| ba3a0 | 66 2e 61 6c 6c 2e 61 63 63 65 70 74 5f 72 65 64 69 72 65 63 74 73 60 60 00 60 60 6e 65 74 2e 69 | f.all.accept_redirects``.``net.i |
| ba3c0 | 70 76 34 2e 63 6f 6e 66 2e 61 6c 6c 2e 61 63 63 65 70 74 5f 73 6f 75 72 63 65 5f 72 6f 75 74 65 | pv4.conf.all.accept_source_route |
| ba3e0 | 60 60 00 60 60 6e 65 74 2e 69 70 76 34 2e 63 6f 6e 66 2e 61 6c 6c 2e 6c 6f 67 5f 6d 61 72 74 69 | ``.``net.ipv4.conf.all.log_marti |
| ba400 | 61 6e 73 60 60 00 60 60 6e 65 74 2e 69 70 76 34 2e 63 6f 6e 66 2e 61 6c 6c 2e 72 70 5f 66 69 6c | ans``.``net.ipv4.conf.all.rp_fil |
| ba420 | 74 65 72 60 60 00 60 60 6e 65 74 2e 69 70 76 34 2e 63 6f 6e 66 2e 61 6c 6c 2e 73 65 6e 64 5f 72 | ter``.``net.ipv4.conf.all.send_r |
| ba440 | 65 64 69 72 65 63 74 73 60 60 00 60 60 6e 65 74 2e 69 70 76 34 2e 69 63 6d 70 5f 65 63 68 6f 5f | edirects``.``net.ipv4.icmp_echo_ |
| ba460 | 69 67 6e 6f 72 65 5f 62 72 6f 61 64 63 61 73 74 73 60 60 00 60 60 6e 65 74 2e 69 70 76 34 2e 74 | ignore_broadcasts``.``net.ipv4.t |
| ba480 | 63 70 5f 72 66 63 31 33 33 37 60 60 00 60 60 6e 65 74 2e 69 70 76 34 2e 74 63 70 5f 73 79 6e 63 | cp_rfc1337``.``net.ipv4.tcp_sync |
| ba4a0 | 6f 6f 6b 69 65 73 60 60 00 60 60 6e 65 74 2e 69 70 76 36 2e 63 6f 6e 66 2e 61 6c 6c 2e 61 63 63 | ookies``.``net.ipv6.conf.all.acc |
| ba4c0 | 65 70 74 5f 72 65 64 69 72 65 63 74 73 60 60 00 60 60 6e 65 74 2e 69 70 76 36 2e 63 6f 6e 66 2e | ept_redirects``.``net.ipv6.conf. |
| ba4e0 | 61 6c 6c 2e 61 63 63 65 70 74 5f 73 6f 75 72 63 65 5f 72 6f 75 74 65 60 60 00 60 60 6e 6f 2d 61 | all.accept_source_route``.``no-a |
| ba500 | 64 76 65 72 74 69 73 65 60 60 20 2d 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 57 65 6c | dvertise``.-.................Wel |
| ba520 | 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d 75 6e 69 74 69 65 73 20 76 61 6c 75 65 20 4e 4f 5f 41 44 56 | l-known.communities.value.NO_ADV |
| ba540 | 45 52 54 49 53 45 20 30 78 46 46 46 46 46 46 30 32 00 60 60 6e 6f 2d 65 78 70 6f 72 74 60 60 20 | ERTISE.0xFFFFFF02.``no-export``. |
| ba560 | 2d 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 57 65 6c 6c 2d 6b 6e 6f 77 6e 20 | -....................Well-known. |
| ba580 | 63 6f 6d 6d 75 6e 69 74 69 65 73 20 76 61 6c 75 65 20 4e 4f 5f 45 58 50 4f 52 54 20 30 78 46 46 | communities.value.NO_EXPORT.0xFF |
| ba5a0 | 46 46 46 46 30 31 00 60 60 6e 6f 2d 6c 6c 67 72 60 60 20 2d 20 20 20 20 20 20 20 20 20 20 20 20 | FFFF01.``no-llgr``.-............ |
| ba5c0 | 20 20 20 20 20 20 20 20 20 20 57 65 6c 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d 75 6e 69 74 69 65 73 | ..........Well-known.communities |
| ba5e0 | 20 76 61 6c 75 65 20 4e 4f 5f 4c 4c 47 52 20 30 78 46 46 46 46 30 30 30 37 00 60 60 6e 6f 2d 70 | .value.NO_LLGR.0xFFFF0007.``no-p |
| ba600 | 65 65 72 60 60 20 2d 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 57 65 6c | eer``.-......................Wel |
| ba620 | 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d 75 6e 69 74 69 65 73 20 76 61 6c 75 65 20 4e 4f 50 45 45 52 | l-known.communities.value.NOPEER |
| ba640 | 20 30 78 46 46 46 46 46 46 30 34 00 60 60 6e 6f 60 60 20 64 69 73 61 62 6c 65 20 72 65 6d 6f 74 | .0xFFFFFF04.``no``.disable.remot |
| ba660 | 65 20 68 6f 73 74 20 72 65 2d 61 75 74 68 65 6e 74 69 63 61 74 6f 6e 20 64 75 72 69 6e 67 20 61 | e.host.re-authenticaton.during.a |
| ba680 | 6e 20 49 4b 45 20 72 65 6b 65 79 3b 00 60 60 6e 6f 6e 65 60 60 20 2d 20 45 78 65 63 75 74 69 6f | n.IKE.rekey;.``none``.-.Executio |
| ba6a0 | 6e 20 69 6e 74 65 72 76 61 6c 20 69 6e 20 6d 69 6e 75 74 65 73 00 60 60 6e 6f 6e 65 60 60 20 2d | n.interval.in.minutes.``none``.- |
| ba6c0 | 20 6c 6f 61 64 73 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 6f 6e 6c 79 2c 20 77 68 69 63 | .loads.the.connection.only,.whic |
| ba6e0 | 68 20 74 68 65 6e 20 63 61 6e 20 62 65 20 6d 61 6e 75 61 6c 6c 79 20 69 6e 69 74 69 61 74 65 64 | h.then.can.be.manually.initiated |
| ba700 | 20 6f 72 20 75 73 65 64 20 61 73 20 61 20 72 65 73 70 6f 6e 64 65 72 20 63 6f 6e 66 69 67 75 72 | .or.used.as.a.responder.configur |
| ba720 | 61 74 69 6f 6e 2e 00 60 60 6e 6f 6e 65 60 60 20 73 65 74 20 61 63 74 69 6f 6e 20 74 6f 20 6e 6f | ation..``none``.set.action.to.no |
| ba740 | 6e 65 20 28 64 65 66 61 75 6c 74 29 3b 00 60 60 6e 6f 73 65 6c 65 63 74 60 60 20 6d 61 72 6b 73 | ne.(default);.``noselect``.marks |
| ba760 | 20 74 68 65 20 73 65 72 76 65 72 20 61 73 20 75 6e 75 73 65 64 2c 20 65 78 63 65 70 74 20 66 6f | .the.server.as.unused,.except.fo |
| ba780 | 72 20 64 69 73 70 6c 61 79 20 70 75 72 70 6f 73 65 73 2e 20 54 68 65 20 73 65 72 76 65 72 20 69 | r.display.purposes..The.server.i |
| ba7a0 | 73 20 64 69 73 63 61 72 64 65 64 20 62 79 20 74 68 65 20 73 65 6c 65 63 74 69 6f 6e 20 61 6c 67 | s.discarded.by.the.selection.alg |
| ba7c0 | 6f 72 69 74 68 6d 2e 00 60 60 6e 6f 74 72 61 63 6b 60 60 3a 20 69 67 6e 6f 72 65 20 63 6f 6e 6e | orithm..``notrack``:.ignore.conn |
| ba7e0 | 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 73 79 73 74 65 6d 2e 20 54 68 69 73 20 61 63 74 | ection.tracking.system..This.act |
| ba800 | 69 6f 6e 20 69 73 20 6f 6e 6c 79 20 61 76 61 69 6c 61 62 6c 65 20 69 6e 20 70 72 65 72 6f 75 74 | ion.is.only.available.in.prerout |
| ba820 | 69 6e 67 20 63 68 61 69 6e 2e 00 60 60 6e 74 73 60 60 20 65 6e 61 62 6c 65 73 20 4e 65 74 77 6f | ing.chain..``nts``.enables.Netwo |
| ba840 | 72 6b 20 54 69 6d 65 20 53 65 63 75 72 69 74 79 20 28 4e 54 53 29 20 66 6f 72 20 74 68 65 20 73 | rk.Time.Security.(NTS).for.the.s |
| ba860 | 65 72 76 65 72 20 61 73 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 3a 72 66 63 3a 60 38 39 31 35 | erver.as.specified.in.:rfc:`8915 |
| ba880 | 60 00 60 60 6f 70 74 69 6f 6e 73 60 60 00 60 60 6f 73 70 66 60 60 20 2d 20 4f 70 65 6e 20 53 68 | `.``options``.``ospf``.-.Open.Sh |
| ba8a0 | 6f 72 74 65 73 74 20 50 61 74 68 20 46 69 72 73 74 20 28 4f 53 50 46 76 32 29 00 60 60 6f 73 70 | ortest.Path.First.(OSPFv2).``osp |
| ba8c0 | 66 76 33 60 60 20 2d 20 4f 70 65 6e 20 53 68 6f 72 74 65 73 74 20 50 61 74 68 20 46 69 72 73 74 | fv3``.-.Open.Shortest.Path.First |
| ba8e0 | 20 28 49 50 76 36 29 20 28 4f 53 50 46 76 33 29 00 60 60 6f 75 74 60 60 3a 20 52 75 6c 65 73 65 | .(IPv6).(OSPFv3).``out``:.Rulese |
| ba900 | 74 20 66 6f 72 20 66 6f 72 77 61 72 64 65 64 20 70 61 63 6b 65 74 73 20 6f 6e 20 61 6e 20 6f 75 | t.for.forwarded.packets.on.an.ou |
| ba920 | 74 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 00 60 60 70 61 73 73 69 76 65 60 60 20 54 68 65 | tbound.interface.``passive``.The |
| ba940 | 20 64 72 69 76 65 72 20 61 6c 6c 6f 77 73 20 74 68 65 20 73 79 73 74 65 6d 20 67 6f 76 65 72 6e | .driver.allows.the.system.govern |
| ba960 | 6f 72 20 74 6f 20 6d 61 6e 61 67 65 20 43 50 55 20 66 72 65 71 75 65 6e 63 79 20 77 68 69 6c 65 | or.to.manage.CPU.frequency.while |
| ba980 | 20 70 72 6f 76 69 64 69 6e 67 20 61 76 61 69 6c 61 62 6c 65 20 70 65 72 66 6f 72 6d 61 6e 63 65 | .providing.available.performance |
| ba9a0 | 20 73 74 61 74 65 73 2e 00 60 60 70 61 73 73 70 68 72 61 73 65 60 60 20 2d 20 6c 6f 63 61 6c 20 | .states..``passphrase``.-.local. |
| ba9c0 | 70 72 69 76 61 74 65 20 6b 65 79 20 70 61 73 73 70 68 72 61 73 65 00 60 60 70 61 73 73 70 68 72 | private.key.passphrase.``passphr |
| ba9e0 | 61 73 65 60 60 20 2d 20 70 72 69 76 61 74 65 20 6b 65 79 20 70 61 73 73 70 68 72 61 73 65 2c 20 | ase``.-.private.key.passphrase,. |
| baa00 | 69 66 20 6e 65 65 64 65 64 2e 00 60 60 70 61 73 73 77 6f 72 64 60 60 20 2d 20 70 61 73 73 70 68 | if.needed..``password``.-.passph |
| baa20 | 72 61 73 65 20 70 72 69 76 61 74 65 20 6b 65 79 2c 20 69 66 20 6e 65 65 64 65 64 2e 00 60 60 70 | rase.private.key,.if.needed..``p |
| baa40 | 65 65 72 60 60 20 69 73 20 75 73 65 64 20 66 6f 72 20 74 68 65 20 56 79 4f 53 20 43 4c 49 20 63 | eer``.is.used.for.the.VyOS.CLI.c |
| baa60 | 6f 6d 6d 61 6e 64 20 74 6f 20 69 64 65 6e 74 69 66 79 20 74 68 65 20 57 69 72 65 47 75 61 72 64 | ommand.to.identify.the.WireGuard |
| baa80 | 20 70 65 65 72 20 77 68 65 72 65 20 74 68 69 73 20 73 65 63 72 65 64 20 69 73 20 74 6f 20 62 65 | .peer.where.this.secred.is.to.be |
| baaa0 | 20 75 73 65 64 2e 00 60 60 70 65 65 72 60 60 20 69 73 20 75 73 65 64 20 66 6f 72 20 74 68 65 20 | .used..``peer``.is.used.for.the. |
| baac0 | 56 79 4f 53 20 43 4c 49 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 69 64 65 6e 74 69 66 79 20 74 68 65 | VyOS.CLI.command.to.identify.the |
| baae0 | 20 57 69 72 65 47 75 61 72 64 20 70 65 65 72 20 77 68 65 72 65 20 74 68 69 73 20 73 65 63 72 65 | .WireGuard.peer.where.this.secre |
| bab00 | 74 20 69 73 20 74 6f 20 62 65 20 75 73 65 64 2e 00 60 60 70 65 72 69 6f 64 60 60 3a 20 54 69 6d | t.is.to.be.used..``period``:.Tim |
| bab20 | 65 20 77 69 6e 64 6f 77 20 66 6f 72 20 72 61 74 65 20 63 61 6c 63 75 6c 61 74 69 6f 6e 2e 20 50 | e.window.for.rate.calculation..P |
| bab40 | 6f 73 73 69 62 6c 65 20 76 61 6c 75 65 73 3a 20 60 60 73 65 63 6f 6e 64 60 60 20 28 6f 6e 65 20 | ossible.values:.``second``.(one. |
| bab60 | 73 65 63 6f 6e 64 29 2c 20 60 60 6d 69 6e 75 74 65 60 60 20 28 6f 6e 65 20 6d 69 6e 75 74 65 29 | second),.``minute``.(one.minute) |
| bab80 | 2c 20 60 60 68 6f 75 72 60 60 20 28 6f 6e 65 20 68 6f 75 72 29 2e 20 44 65 66 61 75 6c 74 20 69 | ,.``hour``.(one.hour)..Default.i |
| baba0 | 73 20 60 60 73 65 63 6f 6e 64 60 60 2e 00 60 60 70 66 73 60 60 20 77 68 65 74 68 65 72 20 50 65 | s.``second``..``pfs``.whether.Pe |
| babc0 | 72 66 65 63 74 20 46 6f 72 77 61 72 64 20 53 65 63 72 65 63 79 20 6f 66 20 6b 65 79 73 20 69 73 | rfect.Forward.Secrecy.of.keys.is |
| babe0 | 20 64 65 73 69 72 65 64 20 6f 6e 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 27 73 20 6b 65 79 | .desired.on.the.connection's.key |
| bac00 | 69 6e 67 20 63 68 61 6e 6e 65 6c 20 61 6e 64 20 64 65 66 69 6e 65 73 20 61 20 44 69 66 66 69 65 | ing.channel.and.defines.a.Diffie |
| bac20 | 2d 48 65 6c 6c 6d 61 6e 20 67 72 6f 75 70 20 66 6f 72 20 50 46 53 3a 00 60 60 70 67 73 71 6c 60 | -Hellman.group.for.PFS:.``pgsql` |
| bac40 | 60 20 50 6f 73 74 67 72 65 53 51 4c 20 70 72 6f 74 6f 63 6f 6c 20 63 68 65 63 6b 2e 00 60 60 70 | `.PostgreSQL.protocol.check..``p |
| bac60 | 6f 6f 6c 60 60 20 6d 6f 62 69 6c 69 7a 65 73 20 70 65 72 73 69 73 74 65 6e 74 20 63 6c 69 65 6e | ool``.mobilizes.persistent.clien |
| bac80 | 74 20 6d 6f 64 65 20 61 73 73 6f 63 69 61 74 69 6f 6e 20 77 69 74 68 20 61 20 6e 75 6d 62 65 72 | t.mode.association.with.a.number |
| baca0 | 20 6f 66 20 72 65 6d 6f 74 65 20 73 65 72 76 65 72 73 2e 00 60 60 70 6f 72 74 60 60 20 20 50 6f | .of.remote.servers..``port``..Po |
| bacc0 | 72 74 20 6e 75 6d 62 65 72 2e 00 60 60 70 6f 72 74 60 60 20 2d 20 64 65 66 69 6e 65 20 70 6f 72 | rt.number..``port``.-.define.por |
| bace0 | 74 2e 20 48 61 76 65 20 65 66 66 65 63 74 20 6f 6e 6c 79 20 77 68 65 6e 20 75 73 65 64 20 74 6f | t..Have.effect.only.when.used.to |
| bad00 | 67 65 74 68 65 72 20 77 69 74 68 20 60 60 70 72 65 66 69 78 60 60 3b 00 60 60 70 72 65 2d 73 68 | gether.with.``prefix``;.``pre-sh |
| bad20 | 61 72 65 64 2d 73 65 63 72 65 74 60 60 20 2d 20 75 73 65 20 70 72 65 64 65 66 69 6e 65 64 20 73 | ared-secret``.-.use.predefined.s |
| bad40 | 68 61 72 65 64 20 73 65 63 72 65 74 20 70 68 72 61 73 65 3b 00 60 60 70 72 65 66 65 72 60 60 20 | hared.secret.phrase;.``prefer``. |
| bad60 | 6d 61 72 6b 73 20 74 68 65 20 73 65 72 76 65 72 20 61 73 20 70 72 65 66 65 72 72 65 64 2e 20 41 | marks.the.server.as.preferred..A |
| bad80 | 6c 6c 20 6f 74 68 65 72 20 74 68 69 6e 67 73 20 62 65 69 6e 67 20 65 71 75 61 6c 2c 20 74 68 69 | ll.other.things.being.equal,.thi |
| bada0 | 73 20 68 6f 73 74 20 77 69 6c 6c 20 62 65 20 63 68 6f 73 65 6e 20 66 6f 72 20 73 79 6e 63 68 72 | s.host.will.be.chosen.for.synchr |
| badc0 | 6f 6e 69 7a 61 74 69 6f 6e 20 61 6d 6f 6e 67 20 61 20 73 65 74 20 6f 66 20 63 6f 72 72 65 63 74 | onization.among.a.set.of.correct |
| bade0 | 6c 79 20 6f 70 65 72 61 74 69 6e 67 20 68 6f 73 74 73 2e 00 60 60 70 72 65 66 69 78 60 60 20 2d | ly.operating.hosts..``prefix``.- |
| bae00 | 20 49 50 20 6e 65 74 77 6f 72 6b 20 61 74 20 6c 6f 63 61 6c 20 73 69 64 65 2e 00 60 60 70 72 65 | .IP.network.at.local.side..``pre |
| bae20 | 66 69 78 60 60 20 2d 20 49 50 20 6e 65 74 77 6f 72 6b 20 61 74 20 72 65 6d 6f 74 65 20 73 69 64 | fix``.-.IP.network.at.remote.sid |
| bae40 | 65 2e 00 60 60 70 72 66 60 60 20 70 73 65 75 64 6f 2d 72 61 6e 64 6f 6d 20 66 75 6e 63 74 69 6f | e..``prf``.pseudo-random.functio |
| bae60 | 6e 2e 00 60 60 70 72 69 6f 72 69 74 79 60 60 20 2d 20 41 64 64 20 70 72 69 6f 72 69 74 79 20 66 | n..``priority``.-.Add.priority.f |
| bae80 | 6f 72 20 70 6f 6c 69 63 79 2d 62 61 73 65 64 20 49 50 53 65 63 20 56 50 4e 20 74 75 6e 6e 65 6c | or.policy-based.IPSec.VPN.tunnel |
| baea0 | 73 28 6c 6f 77 65 73 74 20 76 61 6c 75 65 20 6d 6f 72 65 20 70 72 65 66 65 72 61 62 6c 65 29 00 | s(lowest.value.more.preferable). |
| baec0 | 60 60 70 72 6f 63 65 73 73 6f 72 2e 6d 61 78 5f 63 73 74 61 74 65 3d 31 60 60 20 4c 69 6d 69 74 | ``processor.max_cstate=1``.Limit |
| baee0 | 20 70 72 6f 63 65 73 73 6f 72 20 74 6f 20 6d 61 78 69 6d 75 6d 20 43 2d 73 74 61 74 65 20 31 00 | .processor.to.maximum.C-state.1. |
| baf00 | 60 60 70 72 6f 70 6f 73 61 6c 60 60 20 45 53 50 2d 67 72 6f 75 70 20 70 72 6f 70 6f 73 61 6c 20 | ``proposal``.ESP-group.proposal. |
| baf20 | 77 69 74 68 20 6e 75 6d 62 65 72 20 3c 31 2d 36 35 35 33 35 3e 3a 00 60 60 70 72 6f 70 6f 73 61 | with.number.<1-65535>:.``proposa |
| baf40 | 6c 60 60 20 74 68 65 20 6c 69 73 74 20 6f 66 20 70 72 6f 70 6f 73 61 6c 73 20 61 6e 64 20 74 68 | l``.the.list.of.proposals.and.th |
| baf60 | 65 69 72 20 70 61 72 61 6d 65 74 65 72 73 3a 00 60 60 70 72 6f 74 6f 63 6f 6c 60 60 20 2d 20 64 | eir.parameters:.``protocol``.-.d |
| baf80 | 65 66 69 6e 65 20 74 68 65 20 70 72 6f 74 6f 63 6f 6c 20 66 6f 72 20 6d 61 74 63 68 20 74 72 61 | efine.the.protocol.for.match.tra |
| bafa0 | 66 66 69 63 2c 20 77 68 69 63 68 20 73 68 6f 75 6c 64 20 62 65 20 65 6e 63 72 79 70 74 65 64 20 | ffic,.which.should.be.encrypted. |
| bafc0 | 61 6e 64 20 73 65 6e 64 20 74 6f 20 74 68 69 73 20 70 65 65 72 3b 00 60 60 70 73 6b 60 60 20 2d | and.send.to.this.peer;.``psk``.- |
| bafe0 | 20 50 72 65 73 68 61 72 65 64 20 73 65 63 72 65 74 20 6b 65 79 20 6e 61 6d 65 3a 00 60 60 70 74 | .Preshared.secret.key.name:.``pt |
| bb000 | 70 60 60 20 65 6e 61 62 6c 65 73 20 74 68 65 20 50 54 50 20 74 72 61 6e 73 70 6f 72 74 20 66 6f | p``.enables.the.PTP.transport.fo |
| bb020 | 72 20 74 68 69 73 20 73 65 72 76 65 72 20 28 73 65 65 20 3a 72 65 66 3a 60 70 74 70 2d 74 72 61 | r.this.server.(see.:ref:`ptp-tra |
| bb040 | 6e 73 70 6f 72 74 60 29 2e 00 60 60 71 75 65 75 65 60 60 3a 20 45 6e 71 75 65 75 65 20 70 61 63 | nsport`)..``queue``:.Enqueue.pac |
| bb060 | 6b 65 74 20 74 6f 20 75 73 65 72 73 70 61 63 65 2e 00 60 60 72 61 74 65 60 60 3a 20 4e 75 6d 62 | ket.to.userspace..``rate``:.Numb |
| bb080 | 65 72 20 6f 66 20 70 61 63 6b 65 74 73 2e 20 44 65 66 61 75 6c 74 20 35 2e 00 60 60 72 65 63 65 | er.of.packets..Default.5..``rece |
| bb0a0 | 69 76 65 2d 66 69 6c 74 65 72 20 5b 61 6c 6c 7c 6e 74 70 7c 70 74 70 7c 6e 6f 6e 65 5d 60 60 20 | ive-filter.[all|ntp|ptp|none]``. |
| bb0c0 | 73 65 6c 65 63 74 73 20 74 68 65 20 72 65 63 65 69 76 65 20 66 69 6c 74 65 72 20 6d 6f 64 65 2c | selects.the.receive.filter.mode, |
| bb0e0 | 20 77 68 69 63 68 20 63 6f 6e 74 72 6f 6c 73 20 77 68 69 63 68 20 69 6e 62 6f 75 6e 64 20 70 61 | .which.controls.which.inbound.pa |
| bb100 | 63 6b 65 74 73 20 74 68 65 20 4e 49 43 20 61 70 70 6c 69 65 73 20 74 69 6d 65 73 74 61 6d 70 73 | ckets.the.NIC.applies.timestamps |
| bb120 | 20 74 6f 2e 20 54 68 65 20 73 65 6c 65 63 74 65 64 20 6d 6f 64 65 20 6d 75 73 74 20 62 65 20 73 | .to..The.selected.mode.must.be.s |
| bb140 | 75 70 70 6f 72 74 65 64 20 62 79 20 74 68 65 20 4e 49 43 2c 20 6f 72 20 74 69 6d 65 73 74 61 6d | upported.by.the.NIC,.or.timestam |
| bb160 | 70 69 6e 67 20 77 69 6c 6c 20 62 65 20 64 69 73 61 62 6c 65 64 20 66 6f 72 20 74 68 65 20 69 6e | ping.will.be.disabled.for.the.in |
| bb180 | 74 65 72 66 61 63 65 2e 00 60 60 72 65 64 69 73 60 60 20 52 65 64 69 73 20 70 72 6f 74 6f 63 6f | terface..``redis``.Redis.protoco |
| bb1a0 | 6c 20 63 68 65 63 6b 2e 00 60 60 72 65 6a 65 63 74 60 60 3a 20 72 65 6a 65 63 74 20 74 68 65 20 | l.check..``reject``:.reject.the. |
| bb1c0 | 70 61 63 6b 65 74 2e 00 60 60 72 65 6d 6f 74 65 2d 61 64 64 72 65 73 73 60 60 20 2d 20 72 65 6d | packet..``remote-address``.-.rem |
| bb1e0 | 6f 74 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 72 20 68 6f 73 74 6e 61 6d 65 20 66 6f 72 20 49 | ote.IP.address.or.hostname.for.I |
| bb200 | 50 53 65 63 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 61 64 | PSec.connection..IPv4.or.IPv6.ad |
| bb220 | 64 72 65 73 73 20 69 73 20 75 73 65 64 20 77 68 65 6e 20 61 20 70 65 65 72 20 68 61 73 20 61 20 | dress.is.used.when.a.peer.has.a. |
| bb240 | 70 75 62 6c 69 63 20 73 74 61 74 69 63 20 49 50 20 61 64 64 72 65 73 73 2e 20 48 6f 73 74 6e 61 | public.static.IP.address..Hostna |
| bb260 | 6d 65 20 69 73 20 61 20 44 4e 53 20 6e 61 6d 65 20 77 68 69 63 68 20 63 6f 75 6c 64 20 62 65 20 | me.is.a.DNS.name.which.could.be. |
| bb280 | 75 73 65 64 20 77 68 65 6e 20 61 20 70 65 65 72 20 68 61 73 20 61 20 70 75 62 6c 69 63 20 49 50 | used.when.a.peer.has.a.public.IP |
| bb2a0 | 20 61 64 64 72 65 73 73 20 61 6e 64 20 44 4e 53 20 6e 61 6d 65 2c 20 62 75 74 20 61 6e 20 49 50 | .address.and.DNS.name,.but.an.IP |
| bb2c0 | 20 61 64 64 72 65 73 73 20 63 6f 75 6c 64 20 62 65 20 63 68 61 6e 67 65 64 20 66 72 6f 6d 20 74 | .address.could.be.changed.from.t |
| bb2e0 | 69 6d 65 20 74 6f 20 74 69 6d 65 2e 00 60 60 72 65 6d 6f 74 65 2d 69 64 60 60 20 2d 20 64 65 66 | ime.to.time..``remote-id``.-.def |
| bb300 | 69 6e 65 20 61 6e 20 49 44 20 66 6f 72 20 72 65 6d 6f 74 65 20 70 65 65 72 2c 20 69 6e 73 74 65 | ine.an.ID.for.remote.peer,.inste |
| bb320 | 61 64 20 6f 66 20 75 73 69 6e 67 20 70 65 65 72 20 6e 61 6d 65 20 6f 72 20 61 64 64 72 65 73 73 | ad.of.using.peer.name.or.address |
| bb340 | 2e 20 55 73 65 66 75 6c 20 69 6e 20 63 61 73 65 20 69 66 20 74 68 65 20 72 65 6d 6f 74 65 20 70 | ..Useful.in.case.if.the.remote.p |
| bb360 | 65 65 72 20 69 73 20 62 65 68 69 6e 64 20 4e 41 54 20 6f 72 20 69 66 20 60 60 6d 6f 64 65 20 78 | eer.is.behind.NAT.or.if.``mode.x |
| bb380 | 35 30 39 60 60 20 69 73 20 75 73 65 64 3b 00 60 60 72 65 6d 6f 74 65 2d 6b 65 79 60 60 20 2d 20 | 509``.is.used;.``remote-key``.-. |
| bb3a0 | 6e 61 6d 65 20 6f 66 20 50 4b 49 20 6b 65 79 2d 70 61 69 72 20 77 69 74 68 20 72 65 6d 6f 74 65 | name.of.PKI.key-pair.with.remote |
| bb3c0 | 20 70 75 62 6c 69 63 20 6b 65 79 00 60 60 72 65 6d 6f 74 65 60 60 20 2d 20 64 65 66 69 6e 65 20 | .public.key.``remote``.-.define. |
| bb3e0 | 74 68 65 20 72 65 6d 6f 74 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 66 6f 72 20 6d 61 74 63 68 | the.remote.destination.for.match |
| bb400 | 20 74 72 61 66 66 69 63 2c 20 77 68 69 63 68 20 73 68 6f 75 6c 64 20 62 65 20 65 6e 63 72 79 70 | .traffic,.which.should.be.encryp |
| bb420 | 74 65 64 20 61 6e 64 20 73 65 6e 64 20 74 6f 20 74 68 69 73 20 70 65 65 72 3a 00 60 60 72 65 70 | ted.and.send.to.this.peer:.``rep |
| bb440 | 6c 61 79 2d 77 69 6e 64 6f 77 60 60 20 2d 20 49 50 73 65 63 20 72 65 70 6c 61 79 20 77 69 6e 64 | lay-window``.-.IPsec.replay.wind |
| bb460 | 6f 77 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 66 6f 72 20 74 68 69 73 20 43 48 49 4c 44 5f 53 | ow.to.configure.for.this.CHILD_S |
| bb480 | 41 20 28 64 65 66 61 75 6c 74 3a 20 33 32 29 2c 20 61 20 76 61 6c 75 65 20 6f 66 20 30 20 64 69 | A.(default:.32),.a.value.of.0.di |
| bb4a0 | 73 61 62 6c 65 73 20 49 50 73 65 63 20 72 65 70 6c 61 79 20 70 72 6f 74 65 63 74 69 6f 6e 00 60 | sables.IPsec.replay.protection.` |
| bb4c0 | 60 72 65 71 2d 73 73 6c 2d 73 6e 69 60 60 20 53 53 4c 20 53 65 72 76 65 72 20 4e 61 6d 65 20 49 | `req-ssl-sni``.SSL.Server.Name.I |
| bb4e0 | 6e 64 69 63 61 74 69 6f 6e 20 28 53 4e 49 29 20 72 65 71 75 65 73 74 20 6d 61 74 63 68 00 60 60 | ndication.(SNI).request.match.`` |
| bb500 | 72 65 73 70 2d 74 69 6d 65 60 60 3a 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 72 65 73 70 6f 6e 73 | resp-time``:.the.maximum.respons |
| bb520 | 65 20 74 69 6d 65 20 66 6f 72 20 70 69 6e 67 20 69 6e 20 73 65 63 6f 6e 64 73 2e 20 52 61 6e 67 | e.time.for.ping.in.seconds..Rang |
| bb540 | 65 20 31 2e 2e 2e 33 30 2c 20 64 65 66 61 75 6c 74 20 35 00 60 60 72 65 73 70 6f 6e 64 60 60 20 | e.1...30,.default.5.``respond``. |
| bb560 | 2d 20 64 6f 65 73 20 6e 6f 74 20 74 72 79 20 74 6f 20 69 6e 69 74 69 61 74 65 20 61 20 63 6f 6e | -.does.not.try.to.initiate.a.con |
| bb580 | 6e 65 63 74 69 6f 6e 20 74 6f 20 61 20 72 65 6d 6f 74 65 20 70 65 65 72 2e 20 49 6e 20 74 68 69 | nection.to.a.remote.peer..In.thi |
| bb5a0 | 73 20 6d 6f 64 65 2c 20 74 68 65 20 49 50 53 65 63 20 73 65 73 73 69 6f 6e 20 77 69 6c 6c 20 62 | s.mode,.the.IPSec.session.will.b |
| bb5c0 | 65 20 65 73 74 61 62 6c 69 73 68 65 64 20 6f 6e 6c 79 20 61 66 74 65 72 20 69 6e 69 74 69 61 74 | e.established.only.after.initiat |
| bb5e0 | 69 6f 6e 20 66 72 6f 6d 20 61 20 72 65 6d 6f 74 65 20 70 65 65 72 2e 20 43 6f 75 6c 64 20 62 65 | ion.from.a.remote.peer..Could.be |
| bb600 | 20 75 73 65 66 75 6c 20 77 68 65 6e 20 74 68 65 72 65 20 69 73 20 6e 6f 20 64 69 72 65 63 74 20 | .useful.when.there.is.no.direct. |
| bb620 | 63 6f 6e 6e 65 63 74 69 76 69 74 79 20 74 6f 20 74 68 65 20 70 65 65 72 20 64 75 65 20 74 6f 20 | connectivity.to.the.peer.due.to. |
| bb640 | 66 69 72 65 77 61 6c 6c 20 6f 72 20 4e 41 54 20 69 6e 20 74 68 65 20 6d 69 64 64 6c 65 20 6f 66 | firewall.or.NAT.in.the.middle.of |
| bb660 | 20 74 68 65 20 6c 6f 63 61 6c 20 61 6e 64 20 72 65 6d 6f 74 65 20 73 69 64 65 2e 00 60 60 72 65 | .the.local.and.remote.side..``re |
| bb680 | 73 74 61 72 74 60 60 20 69 6d 6d 65 64 69 61 74 65 6c 79 20 74 72 69 65 73 20 74 6f 20 72 65 2d | start``.immediately.tries.to.re- |
| bb6a0 | 6e 65 67 6f 74 69 61 74 65 20 74 68 65 20 43 48 49 4c 44 5f 53 41 20 75 6e 64 65 72 20 61 20 66 | negotiate.the.CHILD_SA.under.a.f |
| bb6c0 | 72 65 73 68 20 49 4b 45 5f 53 41 3b 00 60 60 72 65 73 74 61 72 74 60 60 20 73 65 74 20 61 63 74 | resh.IKE_SA;.``restart``.set.act |
| bb6e0 | 69 6f 6e 20 74 6f 20 72 65 73 74 61 72 74 3b 00 60 60 72 65 74 75 72 6e 60 60 3a 20 52 65 74 75 | ion.to.restart;.``return``:.Retu |
| bb700 | 72 6e 20 66 72 6f 6d 20 74 68 65 20 63 75 72 72 65 6e 74 20 63 68 61 69 6e 20 61 6e 64 20 63 6f | rn.from.the.current.chain.and.co |
| bb720 | 6e 74 69 6e 75 65 20 61 74 20 74 68 65 20 6e 65 78 74 20 72 75 6c 65 20 6f 66 20 74 68 65 20 6c | ntinue.at.the.next.rule.of.the.l |
| bb740 | 61 73 74 20 63 68 61 69 6e 2e 00 60 60 72 69 70 60 60 20 2d 20 52 6f 75 74 69 6e 67 20 49 6e 66 | ast.chain..``rip``.-.Routing.Inf |
| bb760 | 6f 72 6d 61 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c 20 28 52 49 50 29 00 60 60 72 69 70 6e 67 60 | ormation.Protocol.(RIP).``ripng` |
| bb780 | 60 20 2d 20 52 6f 75 74 69 6e 67 20 49 6e 66 6f 72 6d 61 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c | `.-.Routing.Information.Protocol |
| bb7a0 | 20 6e 65 78 74 2d 67 65 6e 65 72 61 74 69 6f 6e 20 28 49 50 76 36 29 20 28 52 49 50 6e 67 29 00 | .next-generation.(IPv6).(RIPng). |
| bb7c0 | 60 60 72 6f 75 6e 64 2d 72 6f 62 69 6e 60 60 20 2d 20 52 6f 75 6e 64 2d 72 6f 62 69 6e 20 70 6f | ``round-robin``.-.Round-robin.po |
| bb7e0 | 6c 69 63 79 3a 20 54 72 61 6e 73 6d 69 74 20 70 61 63 6b 65 74 73 20 69 6e 20 73 65 71 75 65 6e | licy:.Transmit.packets.in.sequen |
| bb800 | 74 69 61 6c 20 6f 72 64 65 72 20 66 72 6f 6d 20 74 68 65 20 66 69 72 73 74 20 61 76 61 69 6c 61 | tial.order.from.the.first.availa |
| bb820 | 62 6c 65 20 73 6c 61 76 65 20 74 68 72 6f 75 67 68 20 74 68 65 20 6c 61 73 74 2e 00 60 60 72 6f | ble.slave.through.the.last..``ro |
| bb840 | 75 6e 64 2d 72 6f 62 69 6e 60 60 20 44 69 73 74 72 69 62 75 74 65 73 20 72 65 71 75 65 73 74 73 | und-robin``.Distributes.requests |
| bb860 | 20 69 6e 20 61 20 63 69 72 63 75 6c 61 72 20 6d 61 6e 6e 65 72 2c 20 73 65 71 75 65 6e 74 69 61 | .in.a.circular.manner,.sequentia |
| bb880 | 6c 6c 79 20 73 65 6e 64 69 6e 67 20 65 61 63 68 20 72 65 71 75 65 73 74 20 74 6f 20 74 68 65 20 | lly.sending.each.request.to.the. |
| bb8a0 | 6e 65 78 74 20 73 65 72 76 65 72 20 69 6e 20 6c 69 6e 65 00 60 60 72 6f 75 74 65 2d 66 69 6c 74 | next.server.in.line.``route-filt |
| bb8c0 | 65 72 2d 74 72 61 6e 73 6c 61 74 65 64 2d 76 34 60 60 20 2d 20 20 20 57 65 6c 6c 2d 6b 6e 6f 77 | er-translated-v4``.-...Well-know |
| bb8e0 | 6e 20 63 6f 6d 6d 75 6e 69 74 69 65 73 20 76 61 6c 75 65 20 52 4f 55 54 45 5f 46 49 4c 54 45 52 | n.communities.value.ROUTE_FILTER |
| bb900 | 5f 54 52 41 4e 53 4c 41 54 45 44 5f 76 34 20 30 78 46 46 46 46 30 30 30 32 00 60 60 72 6f 75 74 | _TRANSLATED_v4.0xFFFF0002.``rout |
| bb920 | 65 2d 66 69 6c 74 65 72 2d 74 72 61 6e 73 6c 61 74 65 64 2d 76 36 60 60 20 2d 20 20 20 57 65 6c | e-filter-translated-v6``.-...Wel |
| bb940 | 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d 75 6e 69 74 69 65 73 20 76 61 6c 75 65 20 52 4f 55 54 45 5f | l-known.communities.value.ROUTE_ |
| bb960 | 46 49 4c 54 45 52 5f 54 52 41 4e 53 4c 41 54 45 44 5f 76 36 20 30 78 46 46 46 46 30 30 30 34 00 | FILTER_TRANSLATED_v6.0xFFFF0004. |
| bb980 | 60 60 72 6f 75 74 65 2d 66 69 6c 74 65 72 2d 76 34 60 60 20 2d 20 20 20 20 20 20 20 20 20 20 20 | ``route-filter-v4``.-........... |
| bb9a0 | 20 20 20 57 65 6c 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d 75 6e 69 74 69 65 73 20 76 61 6c 75 65 20 | ...Well-known.communities.value. |
| bb9c0 | 52 4f 55 54 45 5f 46 49 4c 54 45 52 5f 76 34 20 30 78 46 46 46 46 30 30 30 33 00 60 60 72 6f 75 | ROUTE_FILTER_v4.0xFFFF0003.``rou |
| bb9e0 | 74 65 2d 66 69 6c 74 65 72 2d 76 36 60 60 20 2d 20 20 20 20 20 20 20 20 20 20 20 20 20 20 57 65 | te-filter-v6``.-..............We |
| bba00 | 6c 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d 75 6e 69 74 69 65 73 20 76 61 6c 75 65 20 52 4f 55 54 45 | ll-known.communities.value.ROUTE |
| bba20 | 5f 46 49 4c 54 45 52 5f 76 36 20 30 78 46 46 46 46 30 30 30 35 00 60 60 72 73 61 2d 6b 65 79 2d | _FILTER_v6.0xFFFF0005.``rsa-key- |
| bba40 | 6e 61 6d 65 60 60 20 2d 20 73 68 61 72 65 64 20 52 53 41 20 6b 65 79 20 66 6f 72 20 61 75 74 68 | name``.-.shared.RSA.key.for.auth |
| bba60 | 65 6e 74 69 63 61 74 69 6f 6e 2e 20 54 68 65 20 6b 65 79 20 6d 75 73 74 20 62 65 20 64 65 66 69 | entication..The.key.must.be.defi |
| bba80 | 6e 65 64 20 69 6e 20 74 68 65 20 60 60 73 65 74 20 76 70 6e 20 72 73 61 2d 6b 65 79 73 60 60 20 | ned.in.the.``set.vpn.rsa-keys``. |
| bbaa0 | 73 65 63 74 69 6f 6e 3b 00 60 60 72 73 61 60 60 20 2d 20 6f 70 74 69 6f 6e 73 20 66 6f 72 20 52 | section;.``rsa``.-.options.for.R |
| bbac0 | 53 41 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6d 6f 64 65 3a 00 60 60 72 73 61 60 60 20 | SA.authentication.mode:.``rsa``. |
| bbae0 | 2d 20 75 73 65 20 73 69 6d 70 6c 65 20 73 68 61 72 65 64 20 52 53 41 20 6b 65 79 2e 00 60 60 72 | -.use.simple.shared.RSA.key..``r |
| bbb00 | 73 61 60 60 20 2d 20 75 73 65 20 73 69 6d 70 6c 65 20 73 68 61 72 65 64 20 52 53 41 20 6b 65 79 | sa``.-.use.simple.shared.RSA.key |
| bbb20 | 2e 20 54 68 65 20 6b 65 79 20 6d 75 73 74 20 62 65 20 64 65 66 69 6e 65 64 20 69 6e 20 74 68 65 | ..The.key.must.be.defined.in.the |
| bbb40 | 20 60 60 73 65 74 20 76 70 6e 20 72 73 61 2d 6b 65 79 73 60 60 20 73 65 63 74 69 6f 6e 3b 00 60 | .``set.vpn.rsa-keys``.section;.` |
| bbb60 | 60 73 65 63 72 65 74 60 60 20 2d 20 70 72 65 64 65 66 69 6e 65 64 20 73 68 61 72 65 64 20 73 65 | `secret``.-.predefined.shared.se |
| bbb80 | 63 72 65 74 2e 20 55 73 65 64 20 69 66 20 63 6f 6e 66 69 67 75 72 65 64 20 6d 6f 64 65 20 60 60 | cret..Used.if.configured.mode.`` |
| bbba0 | 70 72 65 2d 73 68 61 72 65 64 2d 73 65 63 72 65 74 60 60 3b 00 60 60 73 65 74 20 66 69 72 65 77 | pre-shared-secret``;.``set.firew |
| bbbc0 | 61 6c 6c 20 62 72 69 64 67 65 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2e | all.bridge.forward.filter....``. |
| bbbe0 | 00 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 62 72 69 64 67 65 20 69 6e 70 75 74 20 66 69 6c | .``set.firewall.bridge.input.fil |
| bbc00 | 74 65 72 20 2e 2e 2e 60 60 2e 00 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 62 72 69 64 67 65 | ter....``..``set.firewall.bridge |
| bbc20 | 20 6f 75 74 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2e 00 60 60 73 65 74 20 66 69 72 65 | .output.filter....``..``set.fire |
| bbc40 | 77 61 6c 6c 20 62 72 69 64 67 65 20 70 72 65 72 6f 75 74 69 6e 67 20 66 69 6c 74 65 72 20 2e 2e | wall.bridge.prerouting.filter... |
| bbc60 | 2e 60 60 2e 00 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 66 6f 72 77 61 72 64 | .``..``set.firewall.ipv4.forward |
| bbc80 | 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2e 00 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 | .filter....``..``set.firewall.ip |
| bbca0 | 76 34 20 69 6e 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2e 00 60 60 73 65 74 20 66 69 72 | v4.input.filter....``..``set.fir |
| bbcc0 | 65 77 61 6c 6c 20 69 70 76 34 20 6f 75 74 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2e 00 | ewall.ipv4.output.filter....``.. |
| bbce0 | 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 66 6f 72 77 61 72 64 20 66 69 6c 74 | ``set.firewall.ipv6.forward.filt |
| bbd00 | 65 72 20 2e 2e 2e 60 60 2e 00 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 69 6e | er....``..``set.firewall.ipv6.in |
| bbd20 | 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2e 00 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c | put.filter....``..``set.firewall |
| bbd40 | 20 69 70 76 36 20 6f 75 74 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2e 00 60 60 73 69 6e | .ipv6.output.filter....``..``sin |
| bbd60 | 67 6c 65 2d 75 73 65 72 2d 62 65 61 6d 66 6f 72 6d 65 65 60 60 20 2d 20 53 75 70 70 6f 72 74 20 | gle-user-beamformee``.-.Support. |
| bbd80 | 66 6f 72 20 6f 70 65 72 61 74 69 6f 6e 20 61 73 20 73 69 6e 67 6c 65 20 75 73 65 72 20 62 65 61 | for.operation.as.single.user.bea |
| bbda0 | 6d 66 6f 72 6d 65 65 00 60 60 73 69 6e 67 6c 65 2d 75 73 65 72 2d 62 65 61 6d 66 6f 72 6d 65 72 | mformee.``single-user-beamformer |
| bbdc0 | 60 60 20 2d 20 53 75 70 70 6f 72 74 20 66 6f 72 20 6f 70 65 72 61 74 69 6f 6e 20 61 73 20 73 69 | ``.-.Support.for.operation.as.si |
| bbde0 | 6e 67 6c 65 20 75 73 65 72 20 62 65 61 6d 66 6f 72 6d 65 72 00 60 60 73 6d 74 70 60 60 20 53 4d | ngle.user.beamformer.``smtp``.SM |
| bbe00 | 54 50 20 70 72 6f 74 6f 63 6f 6c 20 63 68 65 63 6b 2e 00 60 60 73 6f 6e 6d 70 60 60 20 2d 20 4c | TP.protocol.check..``sonmp``.-.L |
| bbe20 | 69 73 74 65 6e 20 66 6f 72 20 53 4f 4e 4d 50 20 66 6f 72 20 4e 6f 72 74 65 6c 20 72 6f 75 74 65 | isten.for.SONMP.for.Nortel.route |
| bbe40 | 72 73 2f 73 77 69 74 63 68 65 73 00 60 60 73 6f 75 72 63 65 2d 61 64 64 72 65 73 73 60 60 20 44 | rs/switches.``source-address``.D |
| bbe60 | 69 73 74 72 69 62 75 74 65 73 20 72 65 71 75 65 73 74 73 20 62 61 73 65 64 20 6f 6e 20 74 68 65 | istributes.requests.based.on.the |
| bbe80 | 20 73 6f 75 72 63 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 63 6c 69 65 6e 74 | .source.IP.address.of.the.client |
| bbea0 | 00 60 60 73 73 68 2d 64 73 73 60 60 00 60 60 73 73 68 2d 65 64 32 35 35 31 39 60 60 00 60 60 73 | .``ssh-dss``.``ssh-ed25519``.``s |
| bbec0 | 73 68 2d 72 73 61 20 41 41 41 41 42 33 4e 7a 61 43 31 79 63 32 45 41 41 41 41 42 41 41 2e 2e 2e | sh-rsa.AAAAB3NzaC1yc2EAAAABAA... |
| bbee0 | 56 42 44 35 6c 4b 77 45 57 42 20 75 73 65 72 6e 61 6d 65 40 68 6f 73 74 2e 65 78 61 6d 70 6c 65 | VBD5lKwEWB.username@host.example |
| bbf00 | 2e 63 6f 6d 60 60 00 60 60 73 73 68 2d 72 73 61 60 60 00 60 60 73 73 6c 2d 66 63 2d 73 6e 69 2d | .com``.``ssh-rsa``.``ssl-fc-sni- |
| bbf20 | 65 6e 64 60 60 20 53 53 4c 20 66 72 6f 6e 74 65 6e 64 20 6d 61 74 63 68 20 65 6e 64 20 6f 66 20 | end``.SSL.frontend.match.end.of. |
| bbf40 | 63 6f 6e 6e 65 63 74 69 6f 6e 20 53 65 72 76 65 72 20 4e 61 6d 65 00 60 60 73 73 6c 2d 66 63 2d | connection.Server.Name.``ssl-fc- |
| bbf60 | 73 6e 69 60 60 20 53 53 4c 20 66 72 6f 6e 74 65 6e 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 53 65 | sni``.SSL.frontend.connection.Se |
| bbf80 | 72 76 65 72 20 4e 61 6d 65 20 49 6e 64 69 63 61 74 69 6f 6e 20 6d 61 74 63 68 00 60 60 73 74 61 | rver.Name.Indication.match.``sta |
| bbfa0 | 72 74 60 60 20 74 72 69 65 73 20 74 6f 20 69 6d 6d 65 64 69 61 74 65 6c 79 20 72 65 2d 63 72 65 | rt``.tries.to.immediately.re-cre |
| bbfc0 | 61 74 65 20 74 68 65 20 43 48 49 4c 44 5f 53 41 3b 00 60 60 73 74 61 74 69 63 60 60 20 2d 20 53 | ate.the.CHILD_SA;.``static``.-.S |
| bbfe0 | 74 61 74 69 63 61 6c 6c 79 20 63 6f 6e 66 69 67 75 72 65 64 20 72 6f 75 74 65 73 00 60 60 73 74 | tatically.configured.routes.``st |
| bc000 | 61 74 69 6f 6e 60 60 20 2d 20 43 6f 6e 6e 65 63 74 73 20 74 6f 20 61 6e 6f 74 68 65 72 20 61 63 | ation``.-.Connects.to.another.ac |
| bc020 | 63 65 73 73 20 70 6f 69 6e 74 00 60 60 73 74 61 74 75 73 20 32 30 30 2d 33 39 39 60 60 20 45 78 | cess.point.``status.200-399``.Ex |
| bc040 | 70 65 63 74 69 6e 67 20 61 20 6e 6f 6e 2d 66 61 69 6c 75 72 65 20 72 65 73 70 6f 6e 73 65 20 63 | pecting.a.non-failure.response.c |
| bc060 | 6f 64 65 00 60 60 73 74 61 74 75 73 20 32 30 30 60 60 20 45 78 70 65 63 74 69 6e 67 20 61 20 32 | ode.``status.200``.Expecting.a.2 |
| bc080 | 30 30 20 72 65 73 70 6f 6e 73 65 20 63 6f 64 65 00 60 60 73 74 72 69 6e 67 20 73 75 63 63 65 73 | 00.response.code.``string.succes |
| bc0a0 | 73 60 60 20 45 78 70 65 63 74 69 6e 67 20 74 68 65 20 73 74 72 69 6e 67 20 60 73 75 63 63 65 73 | s``.Expecting.the.string.`succes |
| bc0c0 | 73 60 20 69 6e 20 74 68 65 20 72 65 73 70 6f 6e 73 65 20 62 6f 64 79 00 60 60 73 79 6e 70 72 6f | s`.in.the.response.body.``synpro |
| bc0e0 | 78 79 60 60 3a 20 73 79 6e 70 72 6f 78 79 20 74 68 65 20 70 61 63 6b 65 74 2e 00 60 60 73 79 73 | xy``:.synproxy.the.packet..``sys |
| bc100 | 63 74 6c 60 60 20 69 73 20 75 73 65 64 20 74 6f 20 6d 6f 64 69 66 79 20 6b 65 72 6e 65 6c 20 70 | ctl``.is.used.to.modify.kernel.p |
| bc120 | 61 72 61 6d 65 74 65 72 73 20 61 74 20 72 75 6e 74 69 6d 65 2e 20 20 54 68 65 20 70 61 72 61 6d | arameters.at.runtime...The.param |
| bc140 | 65 74 65 72 73 20 61 76 61 69 6c 61 62 6c 65 20 61 72 65 20 74 68 6f 73 65 20 6c 69 73 74 65 64 | eters.available.are.those.listed |
| bc160 | 20 75 6e 64 65 72 20 2f 70 72 6f 63 2f 73 79 73 2f 2e 00 60 60 74 61 62 6c 65 20 31 30 60 60 20 | .under./proc/sys/..``table.10``. |
| bc180 | 52 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 75 73 65 64 20 66 6f 72 20 49 53 50 31 00 60 60 74 61 | Routing.table.used.for.ISP1.``ta |
| bc1a0 | 62 6c 65 20 31 30 60 60 20 52 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 75 73 65 64 20 66 6f 72 20 | ble.10``.Routing.table.used.for. |
| bc1c0 | 56 4c 41 4e 20 31 30 20 28 31 39 32 2e 31 36 38 2e 31 38 38 2e 30 2f 32 34 29 00 60 60 74 61 62 | VLAN.10.(192.168.188.0/24).``tab |
| bc1e0 | 6c 65 20 31 31 60 60 20 52 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 75 73 65 64 20 66 6f 72 20 49 | le.11``.Routing.table.used.for.I |
| bc200 | 53 50 32 00 60 60 74 61 62 6c 65 20 31 31 60 60 20 52 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 75 | SP2.``table.11``.Routing.table.u |
| bc220 | 73 65 64 20 66 6f 72 20 56 4c 41 4e 20 31 31 20 28 31 39 32 2e 31 36 38 2e 31 38 39 2e 30 2f 32 | sed.for.VLAN.11.(192.168.189.0/2 |
| bc240 | 34 29 00 60 60 74 61 62 6c 65 60 60 20 2d 20 4e 6f 6e 2d 6d 61 69 6e 20 4b 65 72 6e 65 6c 20 52 | 4).``table``.-.Non-main.Kernel.R |
| bc260 | 6f 75 74 69 6e 67 20 54 61 62 6c 65 00 60 60 74 61 72 67 65 74 60 60 3a 20 74 68 65 20 74 61 72 | outing.Table.``target``:.the.tar |
| bc280 | 67 65 74 20 74 6f 20 62 65 20 73 65 6e 74 20 49 43 4d 50 20 70 61 63 6b 65 74 73 20 74 6f 2c 20 | get.to.be.sent.ICMP.packets.to,. |
| bc2a0 | 61 64 64 72 65 73 73 20 63 61 6e 20 62 65 20 61 6e 20 49 50 76 34 20 61 64 64 72 65 73 73 20 6f | address.can.be.an.IPv4.address.o |
| bc2c0 | 72 20 68 6f 73 74 6e 61 6d 65 00 60 60 74 65 73 74 2d 73 63 72 69 70 74 60 60 3a 20 41 20 75 73 | r.hostname.``test-script``:.A.us |
| bc2e0 | 65 72 20 64 65 66 69 6e 65 64 20 73 63 72 69 70 74 20 6d 75 73 74 20 72 65 74 75 72 6e 20 30 20 | er.defined.script.must.return.0. |
| bc300 | 74 6f 20 62 65 20 63 6f 6e 73 69 64 65 72 65 64 20 73 75 63 63 65 73 73 66 75 6c 20 61 6e 64 20 | to.be.considered.successful.and. |
| bc320 | 6e 6f 6e 2d 7a 65 72 6f 20 74 6f 20 66 61 69 6c 2e 20 53 63 72 69 70 74 73 20 61 72 65 20 6c 6f | non-zero.to.fail..Scripts.are.lo |
| bc340 | 63 61 74 65 64 20 69 6e 20 2f 63 6f 6e 66 69 67 2f 73 63 72 69 70 74 73 2c 20 66 6f 72 20 64 69 | cated.in./config/scripts,.for.di |
| bc360 | 66 66 65 72 65 6e 74 20 6c 6f 63 61 74 69 6f 6e 73 20 74 68 65 20 66 75 6c 6c 20 70 61 74 68 20 | fferent.locations.the.full.path. |
| bc380 | 6e 65 65 64 73 20 74 6f 20 62 65 20 70 72 6f 76 69 64 65 64 00 60 60 74 68 72 65 73 68 6f 6c 64 | needs.to.be.provided.``threshold |
| bc3a0 | 60 60 3a 20 60 60 62 65 6c 6f 77 60 60 20 6f 72 20 60 60 61 62 6f 76 65 60 60 20 74 68 65 20 73 | ``:.``below``.or.``above``.the.s |
| bc3c0 | 70 65 63 69 66 69 65 64 20 72 61 74 65 20 6c 69 6d 69 74 2e 00 60 60 74 68 72 6f 75 67 68 70 75 | pecified.rate.limit..``throughpu |
| bc3e0 | 74 60 60 3a 20 41 20 73 65 72 76 65 72 20 70 72 6f 66 69 6c 65 20 66 6f 63 75 73 65 64 20 6f 6e | t``:.A.server.profile.focused.on |
| bc400 | 20 69 6d 70 72 6f 76 69 6e 67 20 6e 65 74 77 6f 72 6b 20 74 68 72 6f 75 67 68 70 75 74 2e 20 54 | .improving.network.throughput..T |
| bc420 | 68 69 73 20 70 72 6f 66 69 6c 65 20 66 61 76 6f 72 73 20 70 65 72 66 6f 72 6d 61 6e 63 65 20 6f | his.profile.favors.performance.o |
| bc440 | 76 65 72 20 70 6f 77 65 72 20 73 61 76 69 6e 67 73 20 62 79 20 73 65 74 74 69 6e 67 20 60 60 69 | ver.power.savings.by.setting.``i |
| bc460 | 6e 74 65 6c 5f 70 73 74 61 74 65 60 60 20 61 6e 64 20 60 60 6d 61 78 5f 70 65 72 66 5f 70 63 74 | ntel_pstate``.and.``max_perf_pct |
| bc480 | 3d 31 30 30 60 60 20 61 6e 64 20 69 6e 63 72 65 61 73 69 6e 67 20 6b 65 72 6e 65 6c 20 6e 65 74 | =100``.and.increasing.kernel.net |
| bc4a0 | 77 6f 72 6b 20 62 75 66 66 65 72 20 73 69 7a 65 73 2e 00 60 60 74 69 6d 65 31 2e 76 79 6f 73 2e | work.buffer.sizes..``time1.vyos. |
| bc4c0 | 6e 65 74 60 60 00 60 60 74 69 6d 65 32 2e 76 79 6f 73 2e 6e 65 74 60 60 00 60 60 74 69 6d 65 33 | net``.``time2.vyos.net``.``time3 |
| bc4e0 | 2e 76 79 6f 73 2e 6e 65 74 60 60 00 60 60 74 69 6d 65 6f 75 74 60 60 20 6b 65 65 70 2d 61 6c 69 | .vyos.net``.``timeout``.keep-ali |
| bc500 | 76 65 20 74 69 6d 65 6f 75 74 20 69 6e 20 73 65 63 6f 6e 64 73 20 3c 32 2d 38 36 34 30 30 3e 20 | ve.timeout.in.seconds.<2-86400>. |
| bc520 | 28 64 65 66 61 75 6c 74 20 31 32 30 29 20 49 4b 45 76 31 20 6f 6e 6c 79 00 60 60 74 6f 6b 65 6e | (default.120).IKEv1.only.``token |
| bc540 | 60 60 20 75 73 65 20 4a 57 54 20 74 6f 6b 65 6e 73 2e 00 60 60 74 72 61 6e 73 6d 69 74 2d 6c 6f | ``.use.JWT.tokens..``transmit-lo |
| bc560 | 61 64 2d 62 61 6c 61 6e 63 65 60 60 20 2d 20 41 64 61 70 74 69 76 65 20 74 72 61 6e 73 6d 69 74 | ad-balance``.-.Adaptive.transmit |
| bc580 | 20 6c 6f 61 64 20 62 61 6c 61 6e 63 69 6e 67 3a 20 63 68 61 6e 6e 65 6c 20 62 6f 6e 64 69 6e 67 | .load.balancing:.channel.bonding |
| bc5a0 | 20 74 68 61 74 20 64 6f 65 73 20 6e 6f 74 20 72 65 71 75 69 72 65 20 61 6e 79 20 73 70 65 63 69 | .that.does.not.require.any.speci |
| bc5c0 | 61 6c 20 73 77 69 74 63 68 20 73 75 70 70 6f 72 74 2e 00 60 60 74 72 61 6e 73 70 6f 72 74 60 60 | al.switch.support..``transport`` |
| bc5e0 | 20 74 72 61 6e 73 70 6f 72 74 20 6d 6f 64 65 3b 00 60 60 74 72 61 70 60 60 20 20 69 6e 73 74 61 | .transport.mode;.``trap``..insta |
| bc600 | 6c 6c 73 20 61 20 74 72 61 70 20 70 6f 6c 69 63 79 2c 20 77 68 69 63 68 20 77 69 6c 6c 20 63 61 | lls.a.trap.policy,.which.will.ca |
| bc620 | 74 63 68 20 6d 61 74 63 68 69 6e 67 20 74 72 61 66 66 69 63 20 61 6e 64 20 74 72 69 65 73 20 74 | tch.matching.traffic.and.tries.t |
| bc640 | 6f 20 72 65 2d 6e 65 67 6f 74 69 61 74 65 20 74 68 65 20 74 75 6e 6e 65 6c 20 6f 6e 2d 64 65 6d | o.re-negotiate.the.tunnel.on-dem |
| bc660 | 61 6e 64 3b 00 60 60 74 72 61 70 60 60 20 69 6e 73 74 61 6c 6c 73 20 61 20 74 72 61 70 20 70 6f | and;.``trap``.installs.a.trap.po |
| bc680 | 6c 69 63 79 20 66 6f 72 20 74 68 65 20 43 48 49 4c 44 5f 53 41 3b 00 60 60 74 74 6c 2d 6c 69 6d | licy.for.the.CHILD_SA;.``ttl-lim |
| bc6a0 | 69 74 60 60 3a 20 46 6f 72 20 74 68 65 20 55 44 50 20 54 54 4c 20 6c 69 6d 69 74 20 74 65 73 74 | it``:.For.the.UDP.TTL.limit.test |
| bc6c0 | 20 74 68 65 20 68 6f 70 20 63 6f 75 6e 74 20 6c 69 6d 69 74 20 6d 75 73 74 20 62 65 20 73 70 65 | .the.hop.count.limit.must.be.spe |
| bc6e0 | 63 69 66 69 65 64 2e 20 54 68 65 20 6c 69 6d 69 74 20 6d 75 73 74 20 62 65 20 73 68 6f 72 74 65 | cified..The.limit.must.be.shorte |
| bc700 | 72 20 74 68 61 6e 20 74 68 65 20 70 61 74 68 20 6c 65 6e 67 74 68 2c 20 61 6e 20 49 43 4d 50 20 | r.than.the.path.length,.an.ICMP. |
| bc720 | 74 69 6d 65 20 65 78 70 69 72 65 64 20 6d 65 73 73 61 67 65 20 69 73 20 6e 65 65 64 65 64 20 74 | time.expired.message.is.needed.t |
| bc740 | 6f 20 62 65 20 72 65 74 75 72 6e 65 64 20 66 6f 72 20 61 20 73 75 63 63 65 73 73 66 75 6c 20 74 | o.be.returned.for.a.successful.t |
| bc760 | 65 73 74 2e 20 64 65 66 61 75 6c 74 20 31 00 60 60 74 74 79 53 4e 60 60 20 2d 20 53 65 72 69 61 | est..default.1.``ttySN``.-.Seria |
| bc780 | 6c 20 64 65 76 69 63 65 20 6e 61 6d 65 00 60 60 74 74 79 55 53 42 58 60 60 20 2d 20 55 53 42 20 | l.device.name.``ttyUSBX``.-.USB. |
| bc7a0 | 53 65 72 69 61 6c 20 64 65 76 69 63 65 20 6e 61 6d 65 00 60 60 74 75 6e 6e 65 6c 60 60 20 2d 20 | Serial.device.name.``tunnel``.-. |
| bc7c0 | 64 65 66 69 6e 65 20 63 72 69 74 65 72 69 61 20 66 6f 72 20 74 72 61 66 66 69 63 20 74 6f 20 62 | define.criteria.for.traffic.to.b |
| bc7e0 | 65 20 6d 61 74 63 68 65 64 20 66 6f 72 20 65 6e 63 72 79 70 74 69 6e 67 20 61 6e 64 20 73 65 6e | e.matched.for.encrypting.and.sen |
| bc800 | 64 20 69 74 20 74 6f 20 61 20 70 65 65 72 3a 00 60 60 74 75 6e 6e 65 6c 60 60 20 74 75 6e 6e 65 | d.it.to.a.peer:.``tunnel``.tunne |
| bc820 | 6c 20 6d 6f 64 65 20 28 64 65 66 61 75 6c 74 29 3b 00 60 60 74 79 70 65 60 60 20 20 4c 6f 67 20 | l.mode.(default);.``type``..Log. |
| bc840 | 74 79 70 65 73 2e 00 60 60 74 79 70 65 60 60 3a 20 53 70 65 63 69 66 79 20 74 68 65 20 74 79 70 | types..``type``:.Specify.the.typ |
| bc860 | 65 20 6f 66 20 74 65 73 74 2e 20 74 79 70 65 20 63 61 6e 20 62 65 20 70 69 6e 67 2c 20 74 74 6c | e.of.test..type.can.be.ping,.ttl |
| bc880 | 20 6f 72 20 61 20 75 73 65 72 20 64 65 66 69 6e 65 64 20 73 63 72 69 70 74 00 60 60 75 73 65 2d | .or.a.user.defined.script.``use- |
| bc8a0 | 78 35 30 39 2d 69 64 60 60 20 2d 20 75 73 65 20 6c 6f 63 61 6c 20 49 44 20 66 72 6f 6d 20 78 35 | x509-id``.-.use.local.ID.from.x5 |
| bc8c0 | 30 39 20 63 65 72 74 69 66 69 63 61 74 65 2e 20 43 61 6e 6e 6f 74 20 62 65 20 75 73 65 64 20 77 | 09.certificate..Cannot.be.used.w |
| bc8e0 | 68 65 6e 20 60 60 69 64 60 60 20 69 73 20 64 65 66 69 6e 65 64 3b 00 60 60 76 69 72 74 75 61 6c | hen.``id``.is.defined;.``virtual |
| bc900 | 2d 61 64 64 72 65 73 73 60 60 20 2d 20 44 65 66 69 6e 65 73 20 61 20 76 69 72 74 75 61 6c 20 49 | -address``.-.Defines.a.virtual.I |
| bc920 | 50 20 61 64 64 72 65 73 73 20 77 68 69 63 68 20 69 73 20 72 65 71 75 65 73 74 65 64 20 62 79 20 | P.address.which.is.requested.by. |
| bc940 | 74 68 65 20 69 6e 69 74 69 61 74 6f 72 20 61 6e 64 20 6f 6e 65 20 6f 72 20 73 65 76 65 72 61 6c | the.initiator.and.one.or.several |
| bc960 | 20 49 50 76 34 20 61 6e 64 2f 6f 72 20 49 50 76 36 20 61 64 64 72 65 73 73 65 73 20 61 72 65 20 | .IPv4.and/or.IPv6.addresses.are. |
| bc980 | 61 73 73 69 67 6e 65 64 20 66 72 6f 6d 20 6d 75 6c 74 69 70 6c 65 20 70 6f 6f 6c 73 20 62 79 20 | assigned.from.multiple.pools.by. |
| bc9a0 | 74 68 65 20 72 65 73 70 6f 6e 64 65 72 2e 00 60 60 76 69 72 74 75 61 6c 2d 69 70 60 60 20 41 6c | the.responder..``virtual-ip``.Al |
| bc9c0 | 6c 6f 77 20 69 6e 73 74 61 6c 6c 20 76 69 72 74 75 61 6c 2d 69 70 20 61 64 64 72 65 73 73 65 73 | low.install.virtual-ip.addresses |
| bc9e0 | 2e 20 43 6f 6d 6d 61 20 73 65 70 61 72 61 74 65 64 20 6c 69 73 74 20 6f 66 20 76 69 72 74 75 61 | ..Comma.separated.list.of.virtua |
| bca00 | 6c 20 49 50 73 20 74 6f 20 72 65 71 75 65 73 74 20 69 6e 20 49 4b 45 76 32 20 63 6f 6e 66 69 67 | l.IPs.to.request.in.IKEv2.config |
| bca20 | 75 72 61 74 69 6f 6e 20 70 61 79 6c 6f 61 64 73 20 6f 72 20 49 4b 45 76 31 20 4d 6f 64 65 20 43 | uration.payloads.or.IKEv1.Mode.C |
| bca40 | 6f 6e 66 69 67 2e 20 54 68 65 20 77 69 6c 64 63 61 72 64 20 61 64 64 72 65 73 73 65 73 20 30 2e | onfig..The.wildcard.addresses.0. |
| bca60 | 30 2e 30 2e 30 20 61 6e 64 20 3a 3a 20 72 65 71 75 65 73 74 20 61 6e 20 61 72 62 69 74 72 61 72 | 0.0.0.and.::.request.an.arbitrar |
| bca80 | 79 20 61 64 64 72 65 73 73 2c 20 73 70 65 63 69 66 69 63 20 61 64 64 72 65 73 73 65 73 20 6d 61 | y.address,.specific.addresses.ma |
| bcaa0 | 79 20 62 65 20 64 65 66 69 6e 65 64 2e 20 54 68 65 20 72 65 73 70 6f 6e 64 65 72 20 6d 61 79 20 | y.be.defined..The.responder.may. |
| bcac0 | 72 65 74 75 72 6e 20 61 20 64 69 66 66 65 72 65 6e 74 20 61 64 64 72 65 73 73 2c 20 74 68 6f 75 | return.a.different.address,.thou |
| bcae0 | 67 68 2c 20 6f 72 20 6e 6f 6e 65 20 61 74 20 61 6c 6c 2e 00 60 60 76 69 72 74 75 61 6c 2d 69 70 | gh,.or.none.at.all..``virtual-ip |
| bcb00 | 60 60 20 41 6c 6c 6f 77 73 20 74 68 65 20 69 6e 73 74 61 6c 6c 61 74 69 6f 6e 20 6f 66 20 76 69 | ``.Allows.the.installation.of.vi |
| bcb20 | 72 74 75 61 6c 2d 69 70 20 61 64 64 72 65 73 73 65 73 2e 20 41 20 63 6f 6d 6d 61 00 60 60 76 69 | rtual-ip.addresses..A.comma.``vi |
| bcb40 | 72 74 75 61 6c 2d 69 70 60 60 20 41 6c 6c 6f 77 73 20 74 6f 20 69 6e 73 74 61 6c 6c 20 76 69 72 | rtual-ip``.Allows.to.install.vir |
| bcb60 | 74 75 61 6c 2d 69 70 20 61 64 64 72 65 73 73 65 73 2e 20 43 6f 6d 6d 61 20 73 65 70 61 72 61 74 | tual-ip.addresses..Comma.separat |
| bcb80 | 65 64 20 6c 69 73 74 20 6f 66 20 76 69 72 74 75 61 6c 20 49 50 73 20 74 6f 20 72 65 71 75 65 73 | ed.list.of.virtual.IPs.to.reques |
| bcba0 | 74 20 69 6e 20 49 4b 45 76 32 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 70 61 79 6c 6f 61 64 | t.in.IKEv2.configuration.payload |
| bcbc0 | 73 20 6f 72 20 49 4b 45 76 31 20 4d 6f 64 65 20 43 6f 6e 66 69 67 2e 20 54 68 65 20 77 69 6c 64 | s.or.IKEv1.Mode.Config..The.wild |
| bcbe0 | 63 61 72 64 20 61 64 64 72 65 73 73 65 73 20 30 2e 30 2e 30 2e 30 20 61 6e 64 20 3a 3a 20 72 65 | card.addresses.0.0.0.0.and.::.re |
| bcc00 | 71 75 65 73 74 20 61 6e 20 61 72 62 69 74 72 61 72 79 20 61 64 64 72 65 73 73 2c 20 73 70 65 63 | quest.an.arbitrary.address,.spec |
| bcc20 | 69 66 69 63 20 61 64 64 72 65 73 73 65 73 20 6d 61 79 20 62 65 20 64 65 66 69 6e 65 64 2e 20 54 | ific.addresses.may.be.defined..T |
| bcc40 | 68 65 20 72 65 73 70 6f 6e 64 65 72 20 6d 61 79 20 72 65 74 75 72 6e 20 61 20 64 69 66 66 65 72 | he.responder.may.return.a.differ |
| bcc60 | 65 6e 74 20 61 64 64 72 65 73 73 2c 20 74 68 6f 75 67 68 2c 20 6f 72 20 6e 6f 6e 65 20 61 74 20 | ent.address,.though,.or.none.at. |
| bcc80 | 61 6c 6c 2e 20 44 65 66 69 6e 65 20 74 68 65 20 60 60 76 69 72 74 75 61 6c 2d 61 64 64 72 65 73 | all..Define.the.``virtual-addres |
| bcca0 | 73 60 60 20 6f 70 74 69 6f 6e 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 49 50 20 61 | s``.option.to.configure.the.IP.a |
| bccc0 | 64 64 72 65 73 73 20 69 6e 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 68 69 65 72 61 72 63 68 79 | ddress.in.site-to-site.hierarchy |
| bcce0 | 2e 00 60 60 76 6e 63 60 60 20 2d 20 56 69 72 74 75 61 6c 20 4e 65 74 77 6f 72 6b 20 43 6f 6e 74 | ..``vnc``.-.Virtual.Network.Cont |
| bcd00 | 72 6f 6c 20 28 56 4e 43 29 00 60 60 76 74 69 60 60 20 2d 20 75 73 65 20 61 20 56 54 49 20 69 6e | rol.(VNC).``vti``.-.use.a.VTI.in |
| bcd20 | 74 65 72 66 61 63 65 20 66 6f 72 20 74 72 61 66 66 69 63 20 65 6e 63 72 79 70 74 69 6f 6e 2e 20 | terface.for.traffic.encryption.. |
| bcd40 | 41 6e 79 20 74 72 61 66 66 69 63 2c 20 77 68 69 63 68 20 77 69 6c 6c 20 62 65 20 73 65 6e 64 20 | Any.traffic,.which.will.be.send. |
| bcd60 | 74 6f 20 56 54 49 20 69 6e 74 65 72 66 61 63 65 20 77 69 6c 6c 20 62 65 20 65 6e 63 72 79 70 74 | to.VTI.interface.will.be.encrypt |
| bcd80 | 65 64 20 61 6e 64 20 73 65 6e 64 20 74 6f 20 74 68 69 73 20 70 65 65 72 2e 20 55 73 69 6e 67 20 | ed.and.send.to.this.peer..Using. |
| bcda0 | 56 54 49 20 6d 61 6b 65 73 20 49 50 53 65 63 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d 75 | VTI.makes.IPSec.configuration.mu |
| bcdc0 | 63 68 20 66 6c 65 78 69 62 6c 65 20 61 6e 64 20 65 61 73 69 65 72 20 69 6e 20 63 6f 6d 70 6c 65 | ch.flexible.and.easier.in.comple |
| bcde0 | 78 20 73 69 74 75 61 74 69 6f 6e 2c 20 61 6e 64 20 61 6c 6c 6f 77 73 20 74 6f 20 64 79 6e 61 6d | x.situation,.and.allows.to.dynam |
| bce00 | 69 63 61 6c 6c 79 20 61 64 64 2f 64 65 6c 65 74 65 20 72 65 6d 6f 74 65 20 6e 65 74 77 6f 72 6b | ically.add/delete.remote.network |
| bce20 | 73 2c 20 72 65 61 63 68 61 62 6c 65 20 76 69 61 20 61 20 70 65 65 72 2c 20 61 73 20 69 6e 20 74 | s,.reachable.via.a.peer,.as.in.t |
| bce40 | 68 69 73 20 6d 6f 64 65 20 72 6f 75 74 65 72 20 64 6f 6e 27 74 20 6e 65 65 64 20 74 6f 20 63 72 | his.mode.router.don't.need.to.cr |
| bce60 | 65 61 74 65 20 61 64 64 69 74 69 6f 6e 61 6c 20 53 41 2f 70 6f 6c 69 63 79 20 66 6f 72 20 65 61 | eate.additional.SA/policy.for.ea |
| bce80 | 63 68 20 72 65 6d 6f 74 65 20 6e 65 74 77 6f 72 6b 3a 00 60 60 76 79 6f 73 5f 63 65 72 74 60 60 | ch.remote.network:.``vyos_cert`` |
| bcea0 | 20 69 73 20 61 20 6c 65 61 66 20 73 65 72 76 65 72 20 63 65 72 74 69 66 69 63 61 74 65 20 75 73 | .is.a.leaf.server.certificate.us |
| bcec0 | 65 64 20 74 6f 20 69 64 65 6e 74 69 66 79 20 74 68 65 20 56 79 4f 53 20 72 6f 75 74 65 72 2c 20 | ed.to.identify.the.VyOS.router,. |
| bcee0 | 73 69 67 6e 65 64 20 62 79 20 74 68 65 20 73 65 72 76 65 72 20 69 6e 74 65 72 6d 65 64 69 61 72 | signed.by.the.server.intermediar |
| bcf00 | 79 20 43 41 2e 00 60 60 76 79 6f 73 5f 63 6c 69 65 6e 74 5f 63 61 60 60 20 61 6e 64 20 60 60 76 | y.CA..``vyos_client_ca``.and.``v |
| bcf20 | 79 6f 73 5f 73 65 72 76 65 72 5f 63 61 60 60 20 61 72 65 20 69 6e 74 65 72 6d 65 64 69 61 72 79 | yos_server_ca``.are.intermediary |
| bcf40 | 20 63 65 72 74 69 66 69 63 61 74 65 20 61 75 74 68 6f 72 69 74 69 65 73 2c 20 77 68 69 63 68 20 | .certificate.authorities,.which. |
| bcf60 | 61 72 65 20 73 69 67 6e 65 64 20 62 79 20 74 68 65 20 72 6f 6f 74 20 43 41 2e 00 60 60 76 79 6f | are.signed.by.the.root.CA..``vyo |
| bcf80 | 73 5f 65 78 61 6d 70 6c 65 5f 75 73 65 72 60 60 20 69 73 20 61 20 6c 65 61 66 20 63 6c 69 65 6e | s_example_user``.is.a.leaf.clien |
| bcfa0 | 74 20 63 65 72 74 69 66 69 63 61 74 65 20 75 73 65 64 20 74 6f 20 69 64 65 6e 74 69 66 79 20 61 | t.certificate.used.to.identify.a |
| bcfc0 | 20 75 73 65 72 2c 20 73 69 67 6e 65 64 20 62 79 20 63 6c 69 65 6e 74 20 69 6e 74 65 72 6d 65 64 | .user,.signed.by.client.intermed |
| bcfe0 | 69 61 72 79 20 43 41 2e 00 60 60 76 79 6f 73 5f 72 6f 6f 74 5f 63 61 60 60 20 69 73 20 74 68 65 | iary.CA..``vyos_root_ca``.is.the |
| bd000 | 20 72 6f 6f 74 20 63 65 72 74 69 66 69 63 61 74 65 20 61 75 74 68 6f 72 69 74 79 2e 00 60 60 78 | .root.certificate.authority..``x |
| bd020 | 35 30 39 60 60 20 2d 20 6f 70 74 69 6f 6e 73 20 66 6f 72 20 78 35 30 39 20 61 75 74 68 65 6e 74 | 509``.-.options.for.x509.authent |
| bd040 | 69 63 61 74 69 6f 6e 20 6d 6f 64 65 3a 00 60 60 78 35 30 39 60 60 20 2d 20 75 73 65 20 63 65 72 | ication.mode:.``x509``.-.use.cer |
| bd060 | 74 69 66 69 63 61 74 65 73 20 69 6e 66 72 61 73 74 72 75 63 74 75 72 65 20 66 6f 72 20 61 75 74 | tificates.infrastructure.for.aut |
| bd080 | 68 65 6e 74 69 63 61 74 69 6f 6e 2e 00 60 60 78 6f 72 2d 68 61 73 68 60 60 20 2d 20 58 4f 52 20 | hentication..``xor-hash``.-.XOR. |
| bd0a0 | 70 6f 6c 69 63 79 3a 20 54 72 61 6e 73 6d 69 74 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 73 65 | policy:.Transmit.based.on.the.se |
| bd0c0 | 6c 65 63 74 65 64 20 74 72 61 6e 73 6d 69 74 20 68 61 73 68 20 70 6f 6c 69 63 79 2e 20 20 54 68 | lected.transmit.hash.policy...Th |
| bd0e0 | 65 20 64 65 66 61 75 6c 74 20 70 6f 6c 69 63 79 20 69 73 20 61 20 73 69 6d 70 6c 65 20 5b 28 73 | e.default.policy.is.a.simple.[(s |
| bd100 | 6f 75 72 63 65 20 4d 41 43 20 61 64 64 72 65 73 73 20 58 4f 52 27 64 20 77 69 74 68 20 64 65 73 | ource.MAC.address.XOR'd.with.des |
| bd120 | 74 69 6e 61 74 69 6f 6e 20 4d 41 43 20 61 64 64 72 65 73 73 20 58 4f 52 20 70 61 63 6b 65 74 20 | tination.MAC.address.XOR.packet. |
| bd140 | 74 79 70 65 20 49 44 29 20 6d 6f 64 75 6c 6f 20 73 6c 61 76 65 20 63 6f 75 6e 74 5d 2e 20 41 6c | type.ID).modulo.slave.count]..Al |
| bd160 | 74 65 72 6e 61 74 65 20 74 72 61 6e 73 6d 69 74 20 70 6f 6c 69 63 69 65 73 20 6d 61 79 20 62 65 | ternate.transmit.policies.may.be |
| bd180 | 20 73 65 6c 65 63 74 65 64 20 76 69 61 20 74 68 65 20 3a 63 66 67 63 6d 64 3a 60 68 61 73 68 2d | .selected.via.the.:cfgcmd:`hash- |
| bd1a0 | 70 6f 6c 69 63 79 60 20 6f 70 74 69 6f 6e 2c 20 64 65 73 63 72 69 62 65 64 20 62 65 6c 6f 77 2e | policy`.option,.described.below. |
| bd1c0 | 00 60 60 79 65 73 60 60 20 65 6e 61 62 6c 65 20 72 65 6d 6f 74 65 20 68 6f 73 74 20 72 65 2d 61 | .``yes``.enable.remote.host.re-a |
| bd1e0 | 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 64 75 72 69 6e 67 20 61 6e 20 49 4b 45 20 72 65 6b 65 | uthentication.during.an.IKE.reke |
| bd200 | 79 3b 00 60 61 6c 6c 60 3a 20 41 6c 6c 20 72 65 63 65 69 76 65 64 20 70 61 63 6b 65 74 73 20 77 | y;.`all`:.All.received.packets.w |
| bd220 | 69 6c 6c 20 62 65 20 74 69 6d 65 73 74 61 6d 70 65 64 2e 00 60 69 67 6e 6f 72 65 60 3a 20 4e 6f | ill.be.timestamped..`ignore`:.No |
| bd240 | 20 63 6f 72 72 65 63 74 69 6f 6e 20 69 73 20 61 70 70 6c 69 65 64 20 74 6f 20 74 68 65 20 63 6c | .correction.is.applied.to.the.cl |
| bd260 | 6f 63 6b 20 66 6f 72 20 74 68 65 20 6c 65 61 70 20 73 65 63 6f 6e 64 2e 20 54 68 65 20 63 6c 6f | ock.for.the.leap.second..The.clo |
| bd280 | 63 6b 20 77 69 6c 6c 20 62 65 20 63 6f 72 72 65 63 74 65 64 20 6c 61 74 65 72 20 69 6e 20 6e 6f | ck.will.be.corrected.later.in.no |
| bd2a0 | 72 6d 61 6c 20 6f 70 65 72 61 74 69 6f 6e 20 77 68 65 6e 20 6e 65 77 20 6d 65 61 73 75 72 65 6d | rmal.operation.when.new.measurem |
| bd2c0 | 65 6e 74 73 20 61 72 65 20 6d 61 64 65 20 61 6e 64 20 74 68 65 20 65 73 74 69 6d 61 74 65 64 20 | ents.are.made.and.the.estimated. |
| bd2e0 | 6f 66 66 73 65 74 20 69 6e 63 6c 75 64 65 73 20 74 68 65 20 6f 6e 65 20 73 65 63 6f 6e 64 20 65 | offset.includes.the.one.second.e |
| bd300 | 72 72 6f 72 2e 00 60 6e 6f 6e 65 60 3a 20 4e 6f 20 72 65 63 65 69 76 65 64 20 70 61 63 6b 65 74 | rror..`none`:.No.received.packet |
| bd320 | 73 20 77 69 6c 6c 20 62 65 20 74 69 6d 65 73 74 61 6d 70 65 64 2e 20 48 61 72 64 77 61 72 65 20 | s.will.be.timestamped..Hardware. |
| bd340 | 74 69 6d 65 73 74 61 6d 70 69 6e 67 20 6f 66 20 74 72 61 6e 73 6d 69 74 74 65 64 20 70 61 63 6b | timestamping.of.transmitted.pack |
| bd360 | 65 74 73 20 77 69 6c 6c 20 73 74 69 6c 6c 20 62 65 20 6c 65 76 65 72 61 67 65 64 2c 20 69 66 20 | ets.will.still.be.leveraged,.if. |
| bd380 | 73 75 70 70 6f 72 74 65 64 20 62 79 20 74 68 65 20 4e 49 43 2e 00 60 6e 74 70 60 3a 20 4f 6e 6c | supported.by.the.NIC..`ntp`:.Onl |
| bd3a0 | 79 20 72 65 63 65 69 76 65 64 20 20 4e 54 50 20 70 72 6f 74 6f 63 6f 6c 20 70 61 63 6b 65 74 73 | y.received..NTP.protocol.packets |
| bd3c0 | 20 77 69 6c 6c 20 62 65 20 74 69 6d 65 73 74 61 6d 70 65 64 2e 00 60 70 74 70 60 3a 20 4f 6e 6c | .will.be.timestamped..`ptp`:.Onl |
| bd3e0 | 79 20 72 65 63 65 69 76 65 64 20 50 54 50 20 70 72 6f 74 6f 63 6f 6c 20 70 61 63 6b 65 74 73 20 | y.received.PTP.protocol.packets. |
| bd400 | 77 69 6c 6c 20 62 65 20 74 69 6d 65 73 74 61 6d 70 65 64 2e 20 43 6f 6d 62 69 6e 65 64 20 77 69 | will.be.timestamped..Combined.wi |
| bd420 | 74 68 20 74 68 65 20 50 54 50 20 74 72 61 6e 73 70 6f 72 74 20 66 6f 72 20 4e 54 50 20 70 61 63 | th.the.PTP.transport.for.NTP.pac |
| bd440 | 6b 65 74 73 2c 20 74 68 69 73 20 63 61 6e 20 62 65 20 6c 65 76 65 72 61 67 65 64 20 74 6f 20 74 | kets,.this.can.be.leveraged.to.t |
| bd460 | 61 6b 65 20 61 64 76 61 6e 74 61 67 65 20 6f 66 20 68 61 72 64 77 61 72 65 20 74 69 6d 65 73 74 | ake.advantage.of.hardware.timest |
| bd480 | 61 6d 70 69 6e 67 20 6f 6e 20 4e 49 43 73 20 74 68 61 74 20 6f 6e 6c 79 20 73 75 70 70 6f 72 74 | amping.on.NICs.that.only.support |
| bd4a0 | 20 74 68 65 20 70 74 70 20 66 69 6c 74 65 72 20 6d 6f 64 65 2e 00 60 73 6d 65 61 72 60 3a 20 57 | .the.ptp.filter.mode..`smear`:.W |
| bd4c0 | 68 65 6e 20 73 6d 65 61 72 69 6e 67 20 61 20 6c 65 61 70 20 73 65 63 6f 6e 64 2c 20 74 68 65 20 | hen.smearing.a.leap.second,.the. |
| bd4e0 | 6c 65 61 70 20 73 74 61 74 75 73 20 69 73 20 73 75 70 70 72 65 73 73 65 64 20 6f 6e 20 74 68 65 | leap.status.is.suppressed.on.the |
| bd500 | 20 73 65 72 76 65 72 20 61 6e 64 20 74 68 65 20 73 65 72 76 65 64 20 74 69 6d 65 20 69 73 20 63 | .server.and.the.served.time.is.c |
| bd520 | 6f 72 72 65 63 74 65 64 20 73 6c 6f 77 6c 79 20 62 79 20 73 6c 65 77 69 6e 67 20 69 6e 73 74 65 | orrected.slowly.by.slewing.inste |
| bd540 | 61 64 20 6f 66 20 73 74 65 70 70 69 6e 67 2e 20 54 68 65 20 63 6c 69 65 6e 74 73 20 64 6f 20 6e | ad.of.stepping..The.clients.do.n |
| bd560 | 6f 74 20 6e 65 65 64 20 61 6e 79 20 73 70 65 63 69 61 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f | ot.need.any.special.configuratio |
| bd580 | 6e 20 61 73 20 74 68 65 79 20 64 6f 20 6e 6f 74 20 6b 6e 6f 77 20 74 68 65 72 65 20 69 73 20 61 | n.as.they.do.not.know.there.is.a |
| bd5a0 | 6e 79 20 6c 65 61 70 20 73 65 63 6f 6e 64 20 61 6e 64 20 74 68 65 79 20 66 6f 6c 6c 6f 77 20 74 | ny.leap.second.and.they.follow.t |
| bd5c0 | 68 65 20 73 65 72 76 65 72 20 74 69 6d 65 20 77 68 69 63 68 20 65 76 65 6e 74 75 61 6c 6c 79 20 | he.server.time.which.eventually. |
| bd5e0 | 62 72 69 6e 67 73 20 74 68 65 6d 20 62 61 63 6b 20 74 6f 20 55 54 43 2e 20 43 61 72 65 20 6d 75 | brings.them.back.to.UTC..Care.mu |
| bd600 | 73 74 20 62 65 20 74 61 6b 65 6e 20 74 6f 20 65 6e 73 75 72 65 20 74 68 65 79 20 75 73 65 20 6f | st.be.taken.to.ensure.they.use.o |
| bd620 | 6e 6c 79 20 4e 54 50 20 73 65 72 76 65 72 73 20 77 68 69 63 68 20 73 6d 65 61 72 20 74 68 65 20 | nly.NTP.servers.which.smear.the. |
| bd640 | 6c 65 61 70 20 73 65 63 6f 6e 64 20 69 6e 20 65 78 61 63 74 6c 79 20 74 68 65 20 73 61 6d 65 20 | leap.second.in.exactly.the.same. |
| bd660 | 77 61 79 20 66 6f 72 20 73 79 6e 63 68 72 6f 6e 69 73 61 74 69 6f 6e 2e 00 60 73 6f 75 72 63 65 | way.for.synchronisation..`source |
| bd680 | 2d 61 64 64 72 65 73 73 60 20 61 6e 64 20 60 73 6f 75 72 63 65 2d 69 6e 74 65 72 66 61 63 65 60 | -address`.and.`source-interface` |
| bd6a0 | 20 63 61 6e 20 6e 6f 74 20 62 65 20 75 73 65 64 20 61 74 20 74 68 65 20 73 61 6d 65 20 74 69 6d | .can.not.be.used.at.the.same.tim |
| bd6c0 | 65 2e 00 60 73 79 73 74 65 6d 60 3a 20 57 68 65 6e 20 69 6e 73 65 72 74 69 6e 67 20 61 20 6c 65 | e..`system`:.When.inserting.a.le |
| bd6e0 | 61 70 20 73 65 63 6f 6e 64 2c 20 74 68 65 20 6b 65 72 6e 65 6c 20 73 74 65 70 73 20 74 68 65 20 | ap.second,.the.kernel.steps.the. |
| bd700 | 73 79 73 74 65 6d 20 63 6c 6f 63 6b 20 62 61 63 6b 77 61 72 64 73 20 62 79 20 6f 6e 65 20 73 65 | system.clock.backwards.by.one.se |
| bd720 | 63 6f 6e 64 20 77 68 65 6e 20 74 68 65 20 63 6c 6f 63 6b 20 67 65 74 73 20 74 6f 20 30 30 3a 30 | cond.when.the.clock.gets.to.00:0 |
| bd740 | 30 3a 30 30 20 55 54 43 2e 20 57 68 65 6e 20 64 65 6c 65 74 69 6e 67 20 61 20 6c 65 61 70 20 73 | 0:00.UTC..When.deleting.a.leap.s |
| bd760 | 65 63 6f 6e 64 2c 20 69 74 20 73 74 65 70 73 20 66 6f 72 77 61 72 64 20 62 79 20 6f 6e 65 20 73 | econd,.it.steps.forward.by.one.s |
| bd780 | 65 63 6f 6e 64 20 77 68 65 6e 20 74 68 65 20 63 6c 6f 63 6b 20 67 65 74 73 20 74 6f 20 32 33 3a | econd.when.the.clock.gets.to.23: |
| bd7a0 | 35 39 3a 35 39 20 55 54 43 2e 00 60 74 69 6d 65 7a 6f 6e 65 60 3a 20 54 68 69 73 20 64 69 72 65 | 59:59.UTC..`timezone`:.This.dire |
| bd7c0 | 63 74 69 76 65 20 73 70 65 63 69 66 69 65 73 20 61 20 74 69 6d 65 7a 6f 6e 65 20 69 6e 20 74 68 | ctive.specifies.a.timezone.in.th |
| bd7e0 | 65 20 73 79 73 74 65 6d 20 74 69 6d 65 7a 6f 6e 65 20 64 61 74 61 62 61 73 65 20 77 68 69 63 68 | e.system.timezone.database.which |
| bd800 | 20 63 68 72 6f 6e 79 64 20 63 61 6e 20 75 73 65 20 74 6f 20 64 65 74 65 72 6d 69 6e 65 20 77 68 | .chronyd.can.use.to.determine.wh |
| bd820 | 65 6e 20 77 69 6c 6c 20 74 68 65 20 6e 65 78 74 20 6c 65 61 70 20 73 65 63 6f 6e 64 20 6f 63 63 | en.will.the.next.leap.second.occ |
| bd840 | 75 72 20 61 6e 64 20 77 68 61 74 20 69 73 20 74 68 65 20 63 75 72 72 65 6e 74 20 6f 66 66 73 65 | ur.and.what.is.the.current.offse |
| bd860 | 74 20 62 65 74 77 65 65 6e 20 54 41 49 20 61 6e 64 20 55 54 43 2e 20 49 74 20 77 69 6c 6c 20 70 | t.between.TAI.and.UTC..It.will.p |
| bd880 | 65 72 69 6f 64 69 63 61 6c 6c 79 20 63 68 65 63 6b 20 69 66 20 32 33 3a 35 39 3a 35 39 20 61 6e | eriodically.check.if.23:59:59.an |
| bd8a0 | 64 20 32 33 3a 35 39 3a 36 30 20 61 72 65 20 76 61 6c 69 64 20 74 69 6d 65 73 20 69 6e 20 74 68 | d.23:59:60.are.valid.times.in.th |
| bd8c0 | 65 20 74 69 6d 65 7a 6f 6e 65 2e 20 54 68 69 73 20 6e 6f 72 6d 61 6c 6c 79 20 77 6f 72 6b 73 20 | e.timezone..This.normally.works. |
| bd8e0 | 77 69 74 68 20 74 68 65 20 72 69 67 68 74 2f 55 54 43 20 74 69 6d 65 7a 6f 6e 65 20 77 68 69 63 | with.the.right/UTC.timezone.whic |
| bd900 | 68 20 69 73 20 74 68 65 20 64 65 66 61 75 6c 74 00 60 74 77 65 65 74 20 62 79 20 45 76 69 6c 4d | h.is.the.default.`tweet.by.EvilM |
| bd920 | 6f 67 60 5f 2c 20 32 30 32 30 2d 30 32 2d 32 31 00 61 20 62 61 6e 64 77 69 64 74 68 20 74 65 73 | og`_,.2020-02-21.a.bandwidth.tes |
| bd940 | 74 20 6f 76 65 72 20 74 68 65 20 56 50 4e 20 67 6f 74 20 74 68 65 73 65 20 72 65 73 75 6c 74 73 | t.over.the.VPN.got.these.results |
| bd960 | 3a 00 61 20 62 6c 61 6e 6b 20 69 6e 64 69 63 61 74 65 73 20 74 68 61 74 20 6e 6f 20 74 65 73 74 | :.a.blank.indicates.that.no.test |
| bd980 | 20 68 61 73 20 62 65 65 6e 20 63 61 72 72 69 65 64 20 6f 75 74 00 61 65 73 32 35 36 20 45 6e 63 | .has.been.carried.out.aes256.Enc |
| bd9a0 | 72 79 70 74 69 6f 6e 00 61 6c 65 72 74 00 61 6c 6c 00 61 6e 20 52 44 20 2f 20 52 54 4c 49 53 54 | ryption.alert.all.an.RD./.RTLIST |
| bd9c0 | 00 61 6e 20 69 6e 74 65 72 66 61 63 65 20 77 69 74 68 20 61 20 6e 65 78 74 68 6f 70 00 61 6e 79 | .an.interface.with.a.nexthop.any |
| bd9e0 | 3a 20 61 6e 79 20 49 50 20 61 64 64 72 65 73 73 20 74 6f 20 6d 61 74 63 68 2e 00 61 6e 79 3a 20 | :.any.IP.address.to.match..any:. |
| bda00 | 61 6e 79 20 49 50 76 36 20 61 64 64 72 65 73 73 20 74 6f 20 6d 61 74 63 68 2e 00 61 75 74 68 00 | any.IPv6.address.to.match..auth. |
| bda20 | 61 75 74 68 6f 72 69 7a 61 74 69 6f 6e 00 61 75 74 6f 20 2d 20 69 6e 74 65 72 66 61 63 65 20 64 | authorization.auto.-.interface.d |
| bda40 | 75 70 6c 65 78 20 73 65 74 74 69 6e 67 20 69 73 20 61 75 74 6f 2d 6e 65 67 6f 74 69 61 74 65 64 | uplex.setting.is.auto-negotiated |
| bda60 | 00 61 75 74 6f 20 2d 20 69 6e 74 65 72 66 61 63 65 20 73 70 65 65 64 20 69 73 20 61 75 74 6f 2d | .auto.-.interface.speed.is.auto- |
| bda80 | 6e 65 67 6f 74 69 61 74 65 64 00 62 67 70 64 00 62 6f 6e 64 69 6e 67 00 62 6f 6f 74 2d 73 69 7a | negotiated.bgpd.bonding.boot-siz |
| bdaa0 | 65 00 62 6f 6f 74 66 69 6c 65 2d 6e 61 6d 65 00 62 6f 6f 74 66 69 6c 65 2d 6e 61 6d 65 2c 20 66 | e.bootfile-name.bootfile-name,.f |
| bdac0 | 69 6c 65 6e 61 6d 65 00 62 6f 6f 74 66 69 6c 65 2d 73 65 72 76 65 72 00 62 6f 6f 74 66 69 6c 65 | ilename.bootfile-server.bootfile |
| bdae0 | 2d 73 69 7a 65 00 62 72 69 64 67 65 00 63 6c 69 65 6e 74 20 65 78 61 6d 70 6c 65 20 28 64 65 62 | -size.bridge.client.example.(deb |
| bdb00 | 69 61 6e 20 39 29 00 63 6c 69 65 6e 74 2d 70 72 65 66 69 78 2d 6c 65 6e 67 74 68 00 63 6c 6f 63 | ian.9).client-prefix-length.cloc |
| bdb20 | 6b 00 63 6c 6f 63 6b 20 64 61 65 6d 6f 6e 20 28 6e 6f 74 65 20 32 29 00 63 72 69 74 00 63 72 6f | k.clock.daemon.(note.2).crit.cro |
| bdb40 | 6e 00 64 61 65 6d 6f 6e 00 64 64 63 6c 69 65 6e 74 5f 20 68 61 73 20 61 6e 6f 74 68 65 72 20 77 | n.daemon.ddclient_.has.another.w |
| bdb60 | 61 79 20 74 6f 20 64 65 74 65 72 6d 69 6e 65 20 74 68 65 20 57 41 4e 20 49 50 20 61 64 64 72 65 | ay.to.determine.the.WAN.IP.addre |
| bdb80 | 73 73 2e 20 54 68 69 73 20 69 73 20 63 6f 6e 74 72 6f 6c 6c 65 64 20 62 79 3a 00 64 64 63 6c 69 | ss..This.is.controlled.by:.ddcli |
| bdba0 | 65 6e 74 5f 20 75 73 65 73 20 74 77 6f 20 6d 65 74 68 6f 64 73 20 74 6f 20 75 70 64 61 74 65 20 | ent_.uses.two.methods.to.update. |
| bdbc0 | 61 20 44 4e 53 20 72 65 63 6f 72 64 2e 20 54 68 65 20 66 69 72 73 74 20 6f 6e 65 20 77 69 6c 6c | a.DNS.record..The.first.one.will |
| bdbe0 | 20 73 65 6e 64 20 75 70 64 61 74 65 73 20 64 69 72 65 63 74 6c 79 20 74 6f 20 74 68 65 20 44 4e | .send.updates.directly.to.the.DN |
| bdc00 | 53 20 64 61 65 6d 6f 6e 2c 20 69 6e 20 63 6f 6d 70 6c 69 61 6e 63 65 20 77 69 74 68 20 3a 72 66 | S.daemon,.in.compliance.with.:rf |
| bdc20 | 63 3a 60 32 31 33 36 60 2e 20 54 68 65 20 73 65 63 6f 6e 64 20 6f 6e 65 20 69 6e 76 6f 6c 76 65 | c:`2136`..The.second.one.involve |
| bdc40 | 73 20 61 20 74 68 69 72 64 20 70 61 72 74 79 20 73 65 72 76 69 63 65 2c 20 6c 69 6b 65 20 44 79 | s.a.third.party.service,.like.Dy |
| bdc60 | 6e 44 4e 53 2e 63 6f 6d 20 6f 72 20 61 6e 79 20 6f 74 68 65 72 20 73 69 6d 69 6c 61 72 20 77 65 | nDNS.com.or.any.other.similar.we |
| bdc80 | 62 73 69 74 65 2e 20 54 68 69 73 20 6d 65 74 68 6f 64 20 75 73 65 73 20 48 54 54 50 20 72 65 71 | bsite..This.method.uses.HTTP.req |
| bdca0 | 75 65 73 74 73 20 74 6f 20 74 72 61 6e 73 6d 69 74 20 74 68 65 20 6e 65 77 20 49 50 20 61 64 64 | uests.to.transmit.the.new.IP.add |
| bdcc0 | 72 65 73 73 2e 20 59 6f 75 20 63 61 6e 20 63 6f 6e 66 69 67 75 72 65 20 62 6f 74 68 20 69 6e 20 | ress..You.can.configure.both.in. |
| bdce0 | 56 79 4f 53 2e 00 64 64 63 6c 69 65 6e 74 5f 20 75 73 65 73 20 74 77 6f 20 6d 65 74 68 6f 64 73 | VyOS..ddclient_.uses.two.methods |
| bdd00 | 20 74 6f 20 75 70 64 61 74 65 20 61 20 44 4e 53 20 72 65 63 6f 72 64 2e 20 54 68 65 20 66 69 72 | .to.update.a.DNS.record..The.fir |
| bdd20 | 73 74 20 6f 6e 65 20 77 69 6c 6c 20 73 65 6e 64 20 75 70 64 61 74 65 73 20 64 69 72 65 63 74 6c | st.one.will.send.updates.directl |
| bdd40 | 79 20 74 6f 20 74 68 65 20 44 4e 53 20 64 61 65 6d 6f 6e 2c 20 69 6e 20 63 6f 6d 70 6c 69 61 6e | y.to.the.DNS.daemon,.in.complian |
| bdd60 | 63 65 20 77 69 74 68 20 3a 72 66 63 3a 60 32 31 33 36 60 2e 20 54 68 65 20 73 65 63 6f 6e 64 20 | ce.with.:rfc:`2136`..The.second. |
| bdd80 | 6f 6e 65 20 69 6e 76 6f 6c 76 65 73 20 61 20 74 68 69 72 64 20 70 61 72 74 79 20 73 65 72 76 69 | one.involves.a.third.party.servi |
| bdda0 | 63 65 2c 20 6c 69 6b 65 20 44 79 6e 44 4e 53 2e 63 6f 6d 20 6f 72 20 61 6e 79 20 6f 74 68 65 72 | ce,.like.DynDNS.com.or.any.other |
| bddc0 | 20 73 75 63 68 20 73 65 72 76 69 63 65 20 70 72 6f 76 69 64 65 72 2e 20 54 68 69 73 20 6d 65 74 | .such.service.provider..This.met |
| bdde0 | 68 6f 64 20 75 73 65 73 20 48 54 54 50 20 72 65 71 75 65 73 74 73 20 74 6f 20 74 72 61 6e 73 6d | hod.uses.HTTP.requests.to.transm |
| bde00 | 69 74 20 74 68 65 20 6e 65 77 20 49 50 20 61 64 64 72 65 73 73 2e 20 59 6f 75 20 63 61 6e 20 63 | it.the.new.IP.address..You.can.c |
| bde20 | 6f 6e 66 69 67 75 72 65 20 62 6f 74 68 20 69 6e 20 56 79 4f 53 2e 00 64 64 63 6c 69 65 6e 74 5f | onfigure.both.in.VyOS..ddclient_ |
| bde40 | 20 77 69 6c 6c 20 73 6b 69 70 20 61 6e 79 20 61 64 64 72 65 73 73 20 6c 6f 63 61 74 65 64 20 62 | .will.skip.any.address.located.b |
| bde60 | 65 66 6f 72 65 20 74 68 65 20 73 74 72 69 6e 67 20 73 65 74 20 69 6e 20 60 3c 70 61 74 74 65 72 | efore.the.string.set.in.`<patter |
| bde80 | 6e 3e 60 2e 00 64 65 62 75 67 00 64 65 63 72 65 6d 65 6e 74 2d 6c 69 66 65 74 69 6d 65 00 64 65 | n>`..debug.decrement-lifetime.de |
| bdea0 | 66 61 75 6c 74 20 6d 69 6e 2d 74 68 72 65 73 68 6f 6c 64 00 64 65 66 61 75 6c 74 2d 6c 65 61 73 | fault.min-threshold.default-leas |
| bdec0 | 65 2d 74 69 6d 65 2c 20 6d 61 78 2d 6c 65 61 73 65 2d 74 69 6d 65 00 64 65 66 61 75 6c 74 2d 6c | e-time,.max-lease-time.default-l |
| bdee0 | 69 66 65 74 69 6d 65 00 64 65 66 61 75 6c 74 2d 70 72 65 66 65 72 65 6e 63 65 00 64 65 66 61 75 | ifetime.default-preference.defau |
| bdf00 | 6c 74 2d 72 6f 75 74 65 72 00 64 65 70 72 65 63 61 74 65 2d 70 72 65 66 69 78 00 64 65 73 74 69 | lt-router.deprecate-prefix.desti |
| bdf20 | 6e 61 74 69 6f 6e 2d 68 61 73 68 69 6e 67 00 64 68 63 70 2d 73 65 72 76 65 72 2d 69 64 65 6e 74 | nation-hashing.dhcp-server-ident |
| bdf40 | 69 66 69 65 72 00 64 69 72 65 63 74 00 64 69 72 65 63 74 6f 72 79 00 64 69 73 61 62 6c 65 3a 20 | ifier.direct.directory.disable:. |
| bdf60 | 4e 6f 20 73 6f 75 72 63 65 20 76 61 6c 69 64 61 74 69 6f 6e 00 64 6e 73 73 6c 00 64 6f 6d 61 69 | No.source.validation.dnssl.domai |
| bdf80 | 6e 2d 6e 61 6d 65 00 64 6f 6d 61 69 6e 2d 6e 61 6d 65 2d 73 65 72 76 65 72 73 00 64 6f 6d 61 69 | n-name.domain-name-servers.domai |
| bdfa0 | 6e 2d 73 65 61 72 63 68 00 65 6d 65 72 67 00 65 6e 61 62 6c 65 20 6f 72 20 64 69 73 61 62 6c 65 | n-search.emerg.enable.or.disable |
| bdfc0 | 20 20 49 43 4d 50 76 34 20 72 65 64 69 72 65 63 74 20 6d 65 73 73 61 67 65 73 20 73 65 6e 64 20 | ..ICMPv4.redirect.messages.send. |
| bdfe0 | 62 79 20 56 79 4f 53 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 79 73 74 65 6d 20 70 61 72 | by.VyOS.The.following.system.par |
| be000 | 61 6d 65 74 65 72 20 77 69 6c 6c 20 62 65 20 61 6c 74 65 72 65 64 3a 00 65 6e 61 62 6c 65 20 6f | ameter.will.be.altered:.enable.o |
| be020 | 72 20 64 69 73 61 62 6c 65 20 49 43 4d 50 76 34 20 72 65 64 69 72 65 63 74 20 6d 65 73 73 61 67 | r.disable.ICMPv4.redirect.messag |
| be040 | 65 73 20 73 65 6e 64 20 62 79 20 56 79 4f 53 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 79 | es.send.by.VyOS.The.following.sy |
| be060 | 73 74 65 6d 20 70 61 72 61 6d 65 74 65 72 20 77 69 6c 6c 20 62 65 20 61 6c 74 65 72 65 64 3a 00 | stem.parameter.will.be.altered:. |
| be080 | 65 6e 61 62 6c 65 20 6f 72 20 64 69 73 61 62 6c 65 20 6f 66 20 49 43 4d 50 76 34 20 6f 72 20 49 | enable.or.disable.of.ICMPv4.or.I |
| be0a0 | 43 4d 50 76 36 20 72 65 64 69 72 65 63 74 20 6d 65 73 73 61 67 65 73 20 61 63 63 65 70 74 65 64 | CMPv6.redirect.messages.accepted |
| be0c0 | 20 62 79 20 56 79 4f 53 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 79 73 74 65 6d 20 70 | .by.VyOS..The.following.system.p |
| be0e0 | 61 72 61 6d 65 74 65 72 20 77 69 6c 6c 20 62 65 20 61 6c 74 65 72 65 64 3a 00 65 6e 61 62 6c 65 | arameter.will.be.altered:.enable |
| be100 | 20 6f 72 20 64 69 73 61 62 6c 65 20 74 68 65 20 6c 6f 67 67 69 6e 67 20 6f 66 20 6d 61 72 74 69 | .or.disable.the.logging.of.marti |
| be120 | 61 6e 20 49 50 76 34 20 70 61 63 6b 65 74 73 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 | an.IPv4.packets..The.following.s |
| be140 | 79 73 74 65 6d 20 70 61 72 61 6d 65 74 65 72 20 77 69 6c 6c 20 62 65 20 61 6c 74 65 72 65 64 3a | ystem.parameter.will.be.altered: |
| be160 | 00 65 72 72 00 65 74 68 65 72 6e 65 74 00 65 78 61 63 74 2d 6d 61 74 63 68 3a 20 65 78 61 63 74 | .err.ethernet.exact-match:.exact |
| be180 | 20 6d 61 74 63 68 20 6f 66 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 70 72 65 66 69 78 65 73 2e 00 | .match.of.the.network.prefixes.. |
| be1a0 | 65 78 63 6c 75 64 65 00 66 61 69 6c 6f 76 65 72 00 66 61 73 74 3a 20 52 65 71 75 65 73 74 20 70 | exclude.failover.fast:.Request.p |
| be1c0 | 61 72 74 6e 65 72 20 74 6f 20 74 72 61 6e 73 6d 69 74 20 4c 41 43 50 44 55 73 20 65 76 65 72 79 | artner.to.transmit.LACPDUs.every |
| be1e0 | 20 31 20 73 65 63 6f 6e 64 00 66 69 6c 65 20 3c 66 69 6c 65 20 6e 61 6d 65 3e 00 66 69 6c 74 65 | .1.second.file.<file.name>.filte |
| be200 | 72 2d 6c 69 73 74 00 66 74 70 00 66 75 6c 6c 20 2d 20 61 6c 77 61 79 73 20 75 73 65 20 66 75 6c | r-list.ftp.full.-.always.use.ful |
| be220 | 6c 2d 64 75 70 6c 65 78 00 67 65 6e 65 76 65 00 68 61 6c 66 20 2d 20 61 6c 77 61 79 73 20 75 73 | l-duplex.geneve.half.-.always.us |
| be240 | 65 20 68 61 6c 66 2d 64 75 70 6c 65 78 00 68 6f 70 2d 6c 69 6d 69 74 00 68 6f 73 74 3a 20 73 69 | e.half-duplex.hop-limit.host:.si |
| be260 | 6e 67 6c 65 20 68 6f 73 74 20 49 50 20 61 64 64 72 65 73 73 20 74 6f 20 6d 61 74 63 68 2e 00 68 | ngle.host.IP.address.to.match..h |
| be280 | 74 74 70 73 3a 2f 2f 61 63 63 65 73 73 2e 72 65 64 68 61 74 2e 63 6f 6d 2f 73 69 74 65 73 2f 64 | ttps://access.redhat.com/sites/d |
| be2a0 | 65 66 61 75 6c 74 2f 66 69 6c 65 73 2f 61 74 74 61 63 68 6d 65 6e 74 73 2f 32 30 31 35 30 31 2d | efault/files/attachments/201501- |
| be2c0 | 70 65 72 66 2d 62 72 69 65 66 2d 6c 6f 77 2d 6c 61 74 65 6e 63 79 2d 74 75 6e 69 6e 67 2d 72 68 | perf-brief-low-latency-tuning-rh |
| be2e0 | 65 6c 37 2d 76 32 2e 31 2e 70 64 66 00 68 74 74 70 73 3a 2f 2f 63 6f 6d 6d 75 6e 69 74 79 2e 6f | el7-v2.1.pdf.https://community.o |
| be300 | 70 65 6e 76 70 6e 2e 6e 65 74 2f 6f 70 65 6e 76 70 6e 2f 77 69 6b 69 2f 44 61 74 61 43 68 61 6e | penvpn.net/openvpn/wiki/DataChan |
| be320 | 6e 65 6c 4f 66 66 6c 6f 61 64 2f 46 65 61 74 75 72 65 73 00 68 74 74 70 73 3a 2f 2f 64 6f 63 73 | nelOffload/Features.https://docs |
| be340 | 2e 6b 65 72 6e 65 6c 2e 6f 72 67 2f 61 64 6d 69 6e 2d 67 75 69 64 65 2f 70 6d 2f 61 6d 64 2d 70 | .kernel.org/admin-guide/pm/amd-p |
| be360 | 73 74 61 74 65 2e 68 74 6d 6c 00 69 66 20 74 68 65 72 65 20 69 73 20 61 20 73 75 70 70 6f 72 74 | state.html.if.there.is.a.support |
| be380 | 65 64 20 64 65 76 69 63 65 2c 20 65 6e 61 62 6c 65 20 49 6e 74 65 6c c2 ae 20 51 41 54 00 69 66 | ed.device,.enable.Intel...QAT.if |
| be3a0 | 20 74 68 65 72 65 20 69 73 20 6e 6f 6e 20 64 65 76 69 63 65 20 74 68 65 20 63 6f 6d 6d 61 6e 64 | .there.is.non.device.the.command |
| be3c0 | 20 77 69 6c 6c 20 73 68 6f 77 20 60 60 60 4e 6f 20 51 41 54 20 64 65 76 69 63 65 20 66 6f 75 6e | .will.show.```No.QAT.device.foun |
| be3e0 | 64 60 60 60 00 69 6e 66 6f 00 69 6e 68 65 72 69 74 20 6d 61 74 63 68 65 73 20 66 72 6f 6d 20 61 | d```.info.inherit.matches.from.a |
| be400 | 6e 6f 74 68 65 72 20 67 72 6f 75 70 00 69 6e 74 65 72 76 61 6c 00 69 6e 76 61 6c 69 64 00 69 6e | nother.group.interval.invalid.in |
| be420 | 76 65 72 73 65 2d 6d 61 74 63 68 3a 20 6e 65 74 77 6f 72 6b 2f 6e 65 74 6d 61 73 6b 20 74 6f 20 | verse-match:.network/netmask.to. |
| be440 | 6d 61 74 63 68 20 28 72 65 71 75 69 72 65 73 20 6e 65 74 77 6f 72 6b 20 62 65 20 64 65 66 69 6e | match.(requires.network.be.defin |
| be460 | 65 64 29 2e 00 69 70 2d 66 6f 72 77 61 72 64 69 6e 67 00 69 73 69 73 64 00 69 74 20 63 61 6e 20 | ed)..ip-forwarding.isisd.it.can. |
| be480 | 62 65 20 75 73 65 64 20 77 69 74 68 20 61 6e 79 20 4e 49 43 00 69 74 20 63 61 6e 20 62 65 20 75 | be.used.with.any.NIC.it.can.be.u |
| be4a0 | 73 65 64 20 77 69 74 68 20 61 6e 79 20 4e 49 43 2c 00 69 74 20 64 6f 65 73 20 6e 6f 74 20 69 6e | sed.with.any.NIC,.it.does.not.in |
| be4c0 | 63 72 65 61 73 65 20 68 61 72 64 77 61 72 65 20 64 65 76 69 63 65 20 69 6e 74 65 72 72 75 70 74 | crease.hardware.device.interrupt |
| be4e0 | 20 72 61 74 65 20 28 61 6c 74 68 6f 75 67 68 20 69 74 20 64 6f 65 73 20 69 6e 74 72 6f 64 75 63 | .rate.(although.it.does.introduc |
| be500 | 65 20 69 6e 74 65 72 2d 70 72 6f 63 65 73 73 6f 72 20 69 6e 74 65 72 72 75 70 74 73 20 28 49 50 | e.inter-processor.interrupts.(IP |
| be520 | 49 73 29 29 2e 00 69 74 20 64 6f 65 73 20 6e 6f 74 20 69 6e 63 72 65 61 73 65 20 68 61 72 64 77 | Is))..it.does.not.increase.hardw |
| be540 | 61 72 65 20 64 65 76 69 63 65 20 69 6e 74 65 72 72 75 70 74 20 72 61 74 65 2c 20 61 6c 74 68 6f | are.device.interrupt.rate,.altho |
| be560 | 75 67 68 20 69 74 20 64 6f 65 73 20 69 6e 74 72 6f 64 75 63 65 20 69 6e 74 65 72 2d 70 72 6f 63 | ugh.it.does.introduce.inter-proc |
| be580 | 65 73 73 6f 72 20 69 6e 74 65 72 72 75 70 74 73 20 28 49 50 49 73 29 00 6b 65 72 6e 00 6c 32 74 | essor.interrupts.(IPIs).kern.l2t |
| be5a0 | 70 76 33 00 6c 64 70 64 00 6c 65 61 73 65 00 6c 65 61 73 74 2d 63 6f 6e 6e 65 63 74 69 6f 6e 00 | pv3.ldpd.lease.least-connection. |
| be5c0 | 6c 65 66 74 20 6c 6f 63 61 6c 5f 69 70 3a 20 31 39 32 2e 31 36 38 2e 30 2e 31 30 20 23 20 56 50 | left.local_ip:.192.168.0.10.#.VP |
| be5e0 | 4e 20 47 61 74 65 77 61 79 2c 20 62 65 68 69 6e 64 20 4e 41 54 20 64 65 76 69 63 65 00 6c 65 66 | N.Gateway,.behind.NAT.device.lef |
| be600 | 74 20 6c 6f 63 61 6c 5f 69 70 3a 20 60 31 39 38 2e 35 31 2e 31 30 30 2e 33 60 20 23 20 73 65 72 | t.local_ip:.`198.51.100.3`.#.ser |
| be620 | 76 65 72 20 73 69 64 65 20 57 41 4e 20 49 50 00 6c 65 66 74 20 70 75 62 6c 69 63 5f 69 70 3a 31 | ver.side.WAN.IP.left.public_ip:1 |
| be640 | 37 32 2e 31 38 2e 32 30 31 2e 31 30 00 6c 65 66 74 20 73 75 62 6e 65 74 3a 20 60 31 39 32 2e 31 | 72.18.201.10.left.subnet:.`192.1 |
| be660 | 36 38 2e 30 2e 30 2f 32 34 60 20 73 69 74 65 31 2c 20 73 65 72 76 65 72 20 73 69 64 65 20 28 69 | 68.0.0/24`.site1,.server.side.(i |
| be680 | 2e 65 2e 20 6c 6f 63 61 6c 69 74 79 2c 20 61 63 74 75 61 6c 6c 79 20 74 68 65 72 65 20 69 73 20 | .e..locality,.actually.there.is. |
| be6a0 | 6e 6f 20 63 6c 69 65 6e 74 20 6f 72 20 73 65 72 76 65 72 20 72 6f 6c 65 73 29 00 6c 69 6e 6b 2d | no.client.or.server.roles).link- |
| be6c0 | 6d 74 75 00 6c 6f 63 61 6c 20 75 73 65 20 30 20 28 6c 6f 63 61 6c 30 29 00 6c 6f 63 61 6c 20 75 | mtu.local.use.0.(local0).local.u |
| be6e0 | 73 65 20 31 20 28 6c 6f 63 61 6c 31 29 00 6c 6f 63 61 6c 20 75 73 65 20 32 20 28 6c 6f 63 61 6c | se.1.(local1).local.use.2.(local |
| be700 | 32 29 00 6c 6f 63 61 6c 20 75 73 65 20 33 20 28 6c 6f 63 61 6c 33 29 00 6c 6f 63 61 6c 20 75 73 | 2).local.use.3.(local3).local.us |
| be720 | 65 20 34 20 28 6c 6f 63 61 6c 34 29 00 6c 6f 63 61 6c 20 75 73 65 20 35 20 28 6c 6f 63 61 6c 35 | e.4.(local4).local.use.5.(local5 |
| be740 | 29 00 6c 6f 63 61 6c 20 75 73 65 20 37 20 28 6c 6f 63 61 6c 37 29 00 6c 6f 63 61 6c 30 00 6c 6f | ).local.use.7.(local7).local0.lo |
| be760 | 63 61 6c 31 00 6c 6f 63 61 6c 32 00 6c 6f 63 61 6c 33 00 6c 6f 63 61 6c 34 00 6c 6f 63 61 6c 35 | cal1.local2.local3.local4.local5 |
| be780 | 00 6c 6f 63 61 6c 36 00 6c 6f 63 61 6c 37 00 6c 6f 63 61 6c 69 74 79 2d 62 61 73 65 64 2d 6c 65 | .local6.local7.locality-based-le |
| be7a0 | 61 73 74 2d 63 6f 6e 6e 65 63 74 69 6f 6e 00 6c 6f 67 61 6c 65 72 74 00 6c 6f 67 61 75 64 69 74 | ast-connection.logalert.logaudit |
| be7c0 | 00 6c 6f 6f 73 65 3a 20 45 61 63 68 20 69 6e 63 6f 6d 69 6e 67 20 70 61 63 6b 65 74 27 73 20 73 | .loose:.Each.incoming.packet's.s |
| be7e0 | 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 69 73 20 61 6c 73 6f 20 74 65 73 74 65 64 20 61 67 61 | ource.address.is.also.tested.aga |
| be800 | 69 6e 73 74 20 74 68 65 20 46 49 42 20 61 6e 64 20 69 66 20 74 68 65 20 73 6f 75 72 63 65 20 61 | inst.the.FIB.and.if.the.source.a |
| be820 | 64 64 72 65 73 73 20 69 73 20 6e 6f 74 20 72 65 61 63 68 61 62 6c 65 20 76 69 61 20 61 6e 79 20 | ddress.is.not.reachable.via.any. |
| be840 | 69 6e 74 65 72 66 61 63 65 20 74 68 65 20 70 61 63 6b 65 74 20 63 68 65 63 6b 20 77 69 6c 6c 20 | interface.the.packet.check.will. |
| be860 | 66 61 69 6c 2e 00 6c 70 72 00 6d 44 4e 53 20 52 65 70 65 61 74 65 72 00 6d 44 4e 53 20 72 65 70 | fail..lpr.mDNS.Repeater.mDNS.rep |
| be880 | 65 61 74 65 72 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 74 6f 20 72 65 2d 62 72 | eater.can.be.configured.to.re-br |
| be8a0 | 6f 61 64 63 61 73 74 20 6f 6e 6c 79 20 73 70 65 63 69 66 69 63 20 73 65 72 76 69 63 65 73 2e 20 | oadcast.only.specific.services.. |
| be8c0 | 42 79 20 64 65 66 61 75 6c 74 2c 20 61 6c 6c 20 73 65 72 76 69 63 65 73 20 61 72 65 20 72 65 2d | By.default,.all.services.are.re- |
| be8e0 | 62 72 6f 61 64 63 61 73 74 65 64 2e 00 6d 44 4e 53 20 72 65 70 65 61 74 65 72 20 63 61 6e 20 62 | broadcasted..mDNS.repeater.can.b |
| be900 | 65 20 65 6e 61 62 6c 65 64 20 65 69 74 68 65 72 20 6f 6e 20 49 50 76 34 20 73 6f 63 6b 65 74 20 | e.enabled.either.on.IPv4.socket. |
| be920 | 6f 72 20 6f 6e 20 49 50 76 36 20 73 6f 63 6b 65 74 20 6f 72 20 62 6f 74 68 20 74 6f 20 72 65 2d | or.on.IPv6.socket.or.both.to.re- |
| be940 | 62 72 6f 61 64 63 61 73 74 2e 20 42 79 20 64 65 66 61 75 6c 74 2c 20 6d 44 4e 53 20 72 65 70 65 | broadcast..By.default,.mDNS.repe |
| be960 | 61 74 65 72 20 77 69 6c 6c 20 6c 69 73 74 65 6e 20 6f 6e 20 62 6f 74 68 20 49 50 76 34 20 61 6e | ater.will.listen.on.both.IPv4.an |
| be980 | 64 20 49 50 76 36 2e 00 6d 44 4e 53 20 72 65 70 65 61 74 65 72 20 63 61 6e 20 62 65 20 74 65 6d | d.IPv6..mDNS.repeater.can.be.tem |
| be9a0 | 70 6f 72 61 72 69 6c 79 20 64 69 73 61 62 6c 65 64 20 77 69 74 68 6f 75 74 20 64 65 6c 65 74 69 | porarily.disabled.without.deleti |
| be9c0 | 6e 67 20 74 68 65 20 73 65 72 76 69 63 65 20 75 73 69 6e 67 00 6d 61 69 6c 00 6d 61 6e 61 67 65 | ng.the.service.using.mail.manage |
| be9e0 | 64 2d 66 6c 61 67 00 6d 61 74 63 68 2d 66 72 61 67 3a 20 53 65 63 6f 6e 64 20 61 6e 64 20 66 75 | d-flag.match-frag:.Second.and.fu |
| bea00 | 72 74 68 65 72 20 66 72 61 67 6d 65 6e 74 73 20 6f 66 20 66 72 61 67 6d 65 6e 74 65 64 20 70 61 | rther.fragments.of.fragmented.pa |
| bea20 | 63 6b 65 74 73 2e 00 6d 61 74 63 68 2d 69 70 73 65 63 3a 20 6d 61 74 63 68 20 69 6e 62 6f 75 6e | ckets..match-ipsec:.match.inboun |
| bea40 | 64 20 49 50 73 65 63 20 70 61 63 6b 65 74 73 2e 00 6d 61 74 63 68 2d 6e 6f 6e 2d 66 72 61 67 3a | d.IPsec.packets..match-non-frag: |
| bea60 | 20 48 65 61 64 20 66 72 61 67 6d 65 6e 74 73 20 6f 72 20 75 6e 66 72 61 67 6d 65 6e 74 65 64 20 | .Head.fragments.or.unfragmented. |
| bea80 | 70 61 63 6b 65 74 73 2e 00 6d 61 74 63 68 2d 6e 6f 6e 65 3a 20 6d 61 74 63 68 20 69 6e 62 6f 75 | packets..match-none:.match.inbou |
| beaa0 | 6e 64 20 6e 6f 6e 2d 49 50 73 65 63 20 70 61 63 6b 65 74 73 2e 00 6d 69 6e 69 6d 61 6c 20 63 6f | nd.non-IPsec.packets..minimal.co |
| beac0 | 6e 66 69 67 00 6d 6f 72 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 72 65 6c 61 74 65 64 20 49 47 | nfig.more.information.related.IG |
| beae0 | 50 20 20 2d 20 3a 72 65 66 3a 60 72 6f 75 74 69 6e 67 2d 69 73 69 73 60 00 6d 6f 72 65 20 69 6e | P..-.:ref:`routing-isis`.more.in |
| beb00 | 66 6f 72 6d 61 74 69 6f 6e 20 72 65 6c 61 74 65 64 20 49 47 50 20 20 2d 20 3a 72 65 66 3a 60 72 | formation.related.IGP..-.:ref:`r |
| beb20 | 6f 75 74 69 6e 67 2d 6f 73 70 66 60 00 6e 61 6d 65 2d 73 65 72 76 65 72 00 6e 65 74 62 69 6f 73 | outing-ospf`.name-server.netbios |
| beb40 | 2d 6e 61 6d 65 2d 73 65 72 76 65 72 73 00 6e 65 74 77 6f 72 6b 3a 20 6e 65 74 77 6f 72 6b 2f 6e | -name-servers.network:.network/n |
| beb60 | 65 74 6d 61 73 6b 20 74 6f 20 6d 61 74 63 68 20 28 72 65 71 75 69 72 65 73 20 69 6e 76 65 72 73 | etmask.to.match.(requires.invers |
| beb80 | 65 2d 6d 61 74 63 68 20 62 65 20 64 65 66 69 6e 65 64 29 20 42 55 47 2c 20 4e 4f 20 69 6e 76 65 | e-match.be.defined).BUG,.NO.inve |
| beba0 | 72 74 2d 6d 61 74 63 68 20 6f 70 74 69 6f 6e 20 69 6e 20 61 63 63 65 73 73 2d 6c 69 73 74 36 00 | rt-match.option.in.access-list6. |
| bebc0 | 6e 65 74 77 6f 72 6b 3a 20 6e 65 74 77 6f 72 6b 2f 6e 65 74 6d 61 73 6b 20 74 6f 20 6d 61 74 63 | network:.network/netmask.to.matc |
| bebe0 | 68 20 28 72 65 71 75 69 72 65 73 20 69 6e 76 65 72 73 65 2d 6d 61 74 63 68 20 62 65 20 64 65 66 | h.(requires.inverse-match.be.def |
| bec00 | 69 6e 65 64 29 2e 00 6e 65 74 77 6f 72 6b 73 3b 00 6e 65 77 73 00 6e 65 78 74 2d 73 65 72 76 65 | ined)..networks;.news.next-serve |
| bec20 | 72 00 6e 6f 2d 61 75 74 6f 6e 6f 6d 6f 75 73 2d 66 6c 61 67 00 6e 6f 2d 6f 6e 2d 6c 69 6e 6b 2d | r.no-autonomous-flag.no-on-link- |
| bec40 | 66 6c 61 67 00 6e 6f 74 66 6f 75 6e 64 00 6e 6f 74 69 63 65 00 6e 74 70 00 6e 74 70 2d 73 65 72 | flag.notfound.notice.ntp.ntp-ser |
| bec60 | 76 65 72 00 6e 74 70 2d 73 65 72 76 65 72 73 00 6f 6e 65 20 72 75 6c 65 20 77 69 74 68 20 61 20 | ver.ntp-servers.one.rule.with.a. |
| bec80 | 4c 41 4e 20 28 69 6e 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 29 20 61 6e 64 20 74 68 65 20 | LAN.(inbound-interface).and.the. |
| beca0 | 57 41 4e 20 28 69 6e 74 65 72 66 61 63 65 29 2e 00 6f 70 65 6e 76 70 6e 00 6f 73 70 66 36 64 00 | WAN.(interface)..openvpn.ospf6d. |
| becc0 | 6f 73 70 66 64 00 6f 73 70 66 64 20 73 75 70 70 6f 72 74 73 20 4f 70 61 71 75 65 20 4c 53 41 20 | ospfd.ospfd.supports.Opaque.LSA. |
| bece0 | 3a 72 66 63 3a 60 32 33 37 30 60 20 61 73 20 70 61 72 74 69 61 6c 20 73 75 70 70 6f 72 74 20 66 | :rfc:`2370`.as.partial.support.f |
| bed00 | 6f 72 20 4d 50 4c 53 20 54 72 61 66 66 69 63 20 45 6e 67 69 6e 65 65 72 69 6e 67 20 4c 53 41 73 | or.MPLS.Traffic.Engineering.LSAs |
| bed20 | 2e 20 54 68 65 20 6f 70 61 71 75 65 2d 6c 73 61 20 63 61 70 61 62 69 6c 69 74 79 20 6d 75 73 74 | ..The.opaque-lsa.capability.must |
| bed40 | 20 62 65 20 65 6e 61 62 6c 65 64 20 69 6e 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e | .be.enabled.in.the.configuration |
| bed60 | 2e 00 6f 74 68 65 72 2d 63 6f 6e 66 69 67 2d 66 6c 61 67 00 70 61 67 65 73 20 74 6f 20 73 6f 72 | ..other-config-flag.pages.to.sor |
| bed80 | 74 00 70 6f 6c 69 63 79 20 61 73 2d 70 61 74 68 2d 6c 69 73 74 00 70 6f 6c 69 63 79 20 63 6f 6d | t.policy.as-path-list.policy.com |
| beda0 | 6d 75 6e 69 74 79 2d 6c 69 73 74 00 70 6f 6c 69 63 79 20 65 78 74 63 6f 6d 6d 75 6e 69 74 79 2d | munity-list.policy.extcommunity- |
| bedc0 | 6c 69 73 74 00 70 6f 6c 69 63 79 20 6c 61 72 67 65 2d 63 6f 6d 6d 75 6e 69 74 79 2d 6c 69 73 74 | list.policy.large-community-list |
| bede0 | 00 70 6f 70 2d 73 65 72 76 65 72 00 70 72 65 66 65 72 72 65 64 2d 6c 69 66 65 74 69 6d 65 00 70 | .pop-server.preferred-lifetime.p |
| bee00 | 72 65 66 69 78 2d 6c 69 73 74 2c 20 64 69 73 74 72 69 62 75 74 65 2d 6c 69 73 74 00 70 73 65 75 | refix-list,.distribute-list.pseu |
| bee20 | 64 6f 2d 65 74 68 65 72 6e 65 74 00 72 61 6e 67 65 00 72 65 61 63 68 61 62 6c 65 2d 74 69 6d 65 | do-ethernet.range.reachable-time |
| bee40 | 00 72 65 73 65 74 20 63 6f 6d 6d 61 6e 64 73 00 72 65 74 72 61 6e 73 2d 74 69 6d 65 72 00 72 66 | .reset.commands.retrans-timer.rf |
| bee60 | 63 33 34 34 32 2d 73 74 61 74 69 63 2d 72 6f 75 74 65 2c 20 77 69 6e 64 6f 77 73 2d 73 74 61 74 | c3442-static-route,.windows-stat |
| bee80 | 69 63 2d 72 6f 75 74 65 00 72 66 63 33 37 36 38 2d 63 6f 6d 70 61 74 69 62 69 6c 69 74 79 00 72 | ic-route.rfc3768-compatibility.r |
| beea0 | 69 67 68 74 20 6c 6f 63 61 6c 5f 69 70 3a 20 31 37 32 2e 31 38 2e 32 30 32 2e 31 30 20 23 20 72 | ight.local_ip:.172.18.202.10.#.r |
| beec0 | 69 67 68 74 20 73 69 64 65 20 57 41 4e 20 49 50 00 72 69 67 68 74 20 6c 6f 63 61 6c 5f 69 70 3a | ight.side.WAN.IP.right.local_ip: |
| beee0 | 20 60 32 30 33 2e 30 2e 31 31 33 2e 32 60 20 23 20 72 65 6d 6f 74 65 20 6f 66 66 69 63 65 20 73 | .`203.0.113.2`.#.remote.office.s |
| bef00 | 69 64 65 20 57 41 4e 20 49 50 00 72 69 67 68 74 20 73 75 62 6e 65 74 3a 20 60 31 30 2e 30 2e 30 | ide.WAN.IP.right.subnet:.`10.0.0 |
| bef20 | 2e 30 2f 32 34 60 20 73 69 74 65 32 2c 72 65 6d 6f 74 65 20 6f 66 66 69 63 65 20 73 69 64 65 00 | .0/24`.site2,remote.office.side. |
| bef40 | 72 69 70 64 00 72 6f 75 6e 64 2d 72 6f 62 69 6e 00 72 6f 75 74 65 2d 6d 61 70 00 72 6f 75 74 65 | ripd.round-robin.route-map.route |
| bef60 | 72 73 00 73 46 6c 6f 77 00 73 46 6c 6f 77 20 69 73 20 61 20 74 65 63 68 6e 6f 6c 6f 67 79 20 74 | rs.sFlow.sFlow.is.a.technology.t |
| bef80 | 68 61 74 20 65 6e 61 62 6c 65 73 20 6d 6f 6e 69 74 6f 72 69 6e 67 20 6f 66 20 6e 65 74 77 6f 72 | hat.enables.monitoring.of.networ |
| befa0 | 6b 20 74 72 61 66 66 69 63 20 62 79 20 73 65 6e 64 69 6e 67 20 73 61 6d 70 6c 65 64 20 70 61 63 | k.traffic.by.sending.sampled.pac |
| befc0 | 6b 65 74 73 20 74 6f 20 61 20 63 6f 6c 6c 65 63 74 6f 72 20 64 65 76 69 63 65 2e 00 73 65 63 75 | kets.to.a.collector.device..secu |
| befe0 | 72 69 74 79 00 73 65 70 61 72 61 74 65 64 20 6c 69 73 74 20 6f 66 20 76 69 72 74 75 61 6c 20 49 | rity.separated.list.of.virtual.I |
| bf000 | 50 73 20 74 6f 20 72 65 71 75 65 73 74 20 69 6e 20 49 4b 45 76 32 20 63 6f 6e 66 69 67 75 72 61 | Ps.to.request.in.IKEv2.configura |
| bf020 | 74 69 6f 6e 20 70 61 79 6c 6f 61 64 73 20 6f 72 20 49 4b 45 76 31 20 4d 6f 64 65 20 43 6f 6e 66 | tion.payloads.or.IKEv1.Mode.Conf |
| bf040 | 69 67 2e 20 54 68 65 20 77 69 6c 64 63 61 72 64 20 61 64 64 72 65 73 73 65 73 20 30 2e 30 2e 30 | ig..The.wildcard.addresses.0.0.0 |
| bf060 | 2e 30 20 61 6e 64 20 3a 3a 20 72 65 71 75 65 73 74 20 61 6e 20 61 72 62 69 74 72 61 72 79 20 61 | .0.and.::.request.an.arbitrary.a |
| bf080 | 64 64 72 65 73 73 2c 20 73 70 65 63 69 66 69 63 20 61 64 64 72 65 73 73 65 73 20 6d 61 79 20 62 | ddress,.specific.addresses.may.b |
| bf0a0 | 65 20 64 65 66 69 6e 65 64 2e 20 54 68 65 20 72 65 73 70 6f 6e 64 65 72 20 6d 61 79 20 72 65 74 | e.defined..The.responder.may.ret |
| bf0c0 | 75 72 6e 20 61 20 64 69 66 66 65 72 65 6e 74 20 61 64 64 72 65 73 73 2c 20 6f 72 20 6e 6f 6e 65 | urn.a.different.address,.or.none |
| bf0e0 | 20 61 74 20 61 6c 6c 2e 20 44 65 66 69 6e 65 20 74 68 65 20 60 60 76 69 72 74 75 61 6c 2d 61 64 | .at.all..Define.the.``virtual-ad |
| bf100 | 64 72 65 73 73 60 60 20 6f 70 74 69 6f 6e 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 | dress``.option.to.configure.the. |
| bf120 | 49 50 20 61 64 64 72 65 73 73 20 69 6e 20 61 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 68 69 65 | IP.address.in.a.site-to-site.hie |
| bf140 | 72 61 72 63 68 79 2e 00 73 65 72 76 65 72 20 65 78 61 6d 70 6c 65 00 73 65 72 76 65 72 2d 69 64 | rarchy..server.example.server-id |
| bf160 | 65 6e 74 69 66 69 65 72 00 73 65 74 20 61 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 6e 64 2f 6f | entifier.set.a.destination.and/o |
| bf180 | 72 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 2e 20 41 63 63 65 70 74 65 64 20 69 6e 70 75 74 | r.source.address..Accepted.input |
| bf1a0 | 3a 00 73 68 61 32 35 36 20 48 61 73 68 65 73 00 73 68 6f 77 20 63 6f 6d 6d 61 6e 64 73 00 73 69 | :.sha256.Hashes.show.commands.si |
| bf1c0 | 61 64 64 72 00 73 6c 6f 77 3a 20 52 65 71 75 65 73 74 20 70 61 72 74 6e 65 72 20 74 6f 20 74 72 | addr.slow:.Request.partner.to.tr |
| bf1e0 | 61 6e 73 6d 69 74 20 4c 41 43 50 44 55 73 20 65 76 65 72 79 20 33 30 20 73 65 63 6f 6e 64 73 00 | ansmit.LACPDUs.every.30.seconds. |
| bf200 | 73 6d 74 70 2d 73 65 72 76 65 72 00 73 6f 66 74 77 61 72 65 20 66 69 6c 74 65 72 73 20 63 61 6e | smtp-server.software.filters.can |
| bf220 | 20 65 61 73 69 6c 79 20 62 65 20 61 64 64 65 64 20 74 6f 20 68 61 73 68 20 6f 76 65 72 20 6e 65 | .easily.be.added.to.hash.over.ne |
| bf240 | 77 20 70 72 6f 74 6f 63 6f 6c 73 00 73 6f 66 74 77 61 72 65 20 66 69 6c 74 65 72 73 20 63 61 6e | w.protocols.software.filters.can |
| bf260 | 20 65 61 73 69 6c 79 20 62 65 20 61 64 64 65 64 20 74 6f 20 68 61 73 68 20 6f 76 65 72 20 6e 65 | .easily.be.added.to.hash.over.ne |
| bf280 | 77 20 70 72 6f 74 6f 63 6f 6c 73 2c 00 73 6f 75 72 63 65 2d 68 61 73 68 69 6e 67 00 73 70 6f 6b | w.protocols,.source-hashing.spok |
| bf2a0 | 65 30 31 2d 73 70 6f 6b 65 30 34 00 73 70 6f 6b 65 30 35 00 73 74 61 74 69 63 2d 6d 61 70 70 69 | e01-spoke04.spoke05.static-mappi |
| bf2c0 | 6e 67 00 73 74 61 74 69 63 2d 72 6f 75 74 65 00 73 74 72 69 63 74 3a 20 45 61 63 68 20 69 6e 63 | ng.static-route.strict:.Each.inc |
| bf2e0 | 6f 6d 69 6e 67 20 70 61 63 6b 65 74 20 69 73 20 74 65 73 74 65 64 20 61 67 61 69 6e 73 74 20 74 | oming.packet.is.tested.against.t |
| bf300 | 68 65 20 46 49 42 20 61 6e 64 20 69 66 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 6e | he.FIB.and.if.the.interface.is.n |
| bf320 | 6f 74 20 74 68 65 20 62 65 73 74 20 72 65 76 65 72 73 65 20 70 61 74 68 20 74 68 65 20 70 61 63 | ot.the.best.reverse.path.the.pac |
| bf340 | 6b 65 74 20 63 68 65 63 6b 20 77 69 6c 6c 20 66 61 69 6c 2e 20 42 79 20 64 65 66 61 75 6c 74 20 | ket.check.will.fail..By.default. |
| bf360 | 66 61 69 6c 65 64 20 70 61 63 6b 65 74 73 20 61 72 65 20 64 69 73 63 61 72 64 65 64 2e 00 73 75 | failed.packets.are.discarded..su |
| bf380 | 62 6e 65 74 2d 6d 61 73 6b 00 73 75 72 69 63 61 74 61 00 73 79 73 6c 6f 67 00 74 61 69 6c 00 74 | bnet-mask.suricata.syslog.tail.t |
| bf3a0 | 63 5f 20 69 73 20 61 20 70 6f 77 65 72 66 75 6c 20 74 6f 6f 6c 20 66 6f 72 20 54 72 61 66 66 69 | c_.is.a.powerful.tool.for.Traffi |
| bf3c0 | 63 20 43 6f 6e 74 72 6f 6c 20 66 6f 75 6e 64 20 61 74 20 74 68 65 20 4c 69 6e 75 78 20 6b 65 72 | c.Control.found.at.the.Linux.ker |
| bf3e0 | 6e 65 6c 2e 20 48 6f 77 65 76 65 72 2c 20 69 74 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 | nel..However,.its.configuration. |
| bf400 | 69 73 20 6f 66 74 65 6e 20 63 6f 6e 73 69 64 65 72 65 64 20 61 20 63 75 6d 62 65 72 73 6f 6d 65 | is.often.considered.a.cumbersome |
| bf420 | 20 74 61 73 6b 2e 20 46 6f 72 74 75 6e 61 74 65 6c 79 2c 20 56 79 4f 53 20 65 61 73 65 73 20 74 | .task..Fortunately,.VyOS.eases.t |
| bf440 | 68 65 20 6a 6f 62 20 74 68 72 6f 75 67 68 20 69 74 73 20 43 4c 49 2c 20 77 68 69 6c 65 20 75 73 | he.job.through.its.CLI,.while.us |
| bf460 | 69 6e 67 20 60 60 74 63 60 60 20 61 73 20 62 61 63 6b 65 6e 64 2e 00 74 66 74 70 2d 73 65 72 76 | ing.``tc``.as.backend..tftp-serv |
| bf480 | 65 72 2d 6e 61 6d 65 00 74 68 69 73 20 6f 70 74 69 6f 6e 20 61 6c 6c 6f 77 73 20 74 6f 20 63 6f | er-name.this.option.allows.to.co |
| bf4a0 | 6e 66 69 67 75 72 65 20 70 72 65 66 69 78 2d 73 69 64 20 6f 6e 20 53 52 2e 20 54 68 65 20 e2 80 | nfigure.prefix-sid.on.SR..The... |
| bf4c0 | 98 6e 6f 2d 70 68 70 2d 66 6c 61 67 e2 80 99 20 6d 65 61 6e 73 20 4e 4f 20 50 65 6e 75 6c 74 69 | .no-php-flag....means.NO.Penulti |
| bf4e0 | 6d 61 74 65 20 48 6f 70 20 50 6f 70 70 69 6e 67 20 74 68 61 74 20 61 6c 6c 6f 77 73 20 53 52 20 | mate.Hop.Popping.that.allows.SR. |
| bf500 | 6e 6f 64 65 20 74 6f 20 72 65 71 75 65 73 74 20 74 6f 20 69 74 73 20 6e 65 69 67 68 62 6f 72 20 | node.to.request.to.its.neighbor. |
| bf520 | 74 6f 20 6e 6f 74 20 70 6f 70 20 74 68 65 20 6c 61 62 65 6c 2e 20 54 68 65 20 e2 80 98 65 78 70 | to.not.pop.the.label..The....exp |
| bf540 | 6c 69 63 69 74 2d 6e 75 6c 6c e2 80 99 20 66 6c 61 67 20 61 6c 6c 6f 77 73 20 53 52 20 6e 6f 64 | licit-null....flag.allows.SR.nod |
| bf560 | 65 20 74 6f 20 72 65 71 75 65 73 74 20 74 6f 20 69 74 73 20 6e 65 69 67 68 62 6f 72 20 74 6f 20 | e.to.request.to.its.neighbor.to. |
| bf580 | 73 65 6e 64 20 49 50 20 70 61 63 6b 65 74 20 77 69 74 68 20 74 68 65 20 45 58 50 4c 49 43 49 54 | send.IP.packet.with.the.EXPLICIT |
| bf5a0 | 2d 4e 55 4c 4c 20 6c 61 62 65 6c 2e 20 54 68 65 20 e2 80 98 6e 2d 66 6c 61 67 2d 63 6c 65 61 72 | -NULL.label..The....n-flag-clear |
| bf5c0 | e2 80 99 20 6f 70 74 69 6f 6e 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 65 78 70 6c 69 63 | ....option.can.be.used.to.explic |
| bf5e0 | 69 74 6c 79 20 63 6c 65 61 72 20 74 68 65 20 4e 6f 64 65 20 66 6c 61 67 20 74 68 61 74 20 69 73 | itly.clear.the.Node.flag.that.is |
| bf600 | 20 73 65 74 20 62 79 20 64 65 66 61 75 6c 74 20 66 6f 72 20 50 72 65 66 69 78 2d 53 49 44 73 20 | .set.by.default.for.Prefix-SIDs. |
| bf620 | 61 73 73 6f 63 69 61 74 65 64 20 74 6f 20 6c 6f 6f 70 62 61 63 6b 20 61 64 64 72 65 73 73 65 73 | associated.to.loopback.addresses |
| bf640 | 2e 20 54 68 69 73 20 6f 70 74 69 6f 6e 20 69 73 20 6e 65 63 65 73 73 61 72 79 20 74 6f 20 63 6f | ..This.option.is.necessary.to.co |
| bf660 | 6e 66 69 67 75 72 65 20 41 6e 79 63 61 73 74 2d 53 49 44 73 2e 00 74 69 6d 65 2d 6f 66 66 73 65 | nfigure.Anycast-SIDs..time-offse |
| bf680 | 74 00 74 69 6d 65 2d 73 65 72 76 65 72 00 74 69 6d 65 2d 73 65 72 76 65 72 73 00 74 75 6e 6e 65 | t.time-server.time-servers.tunne |
| bf6a0 | 6c 00 75 73 65 20 36 20 28 6c 6f 63 61 6c 36 29 00 75 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e | l.use.6.(local6).use.this.comman |
| bf6c0 | 64 20 74 6f 20 63 68 65 63 6b 20 69 66 20 74 68 65 72 65 20 69 73 20 61 6e 20 49 6e 74 65 6c c2 | d.to.check.if.there.is.an.Intel. |
| bf6e0 | ae 20 51 41 54 20 73 75 70 70 6f 72 74 65 64 20 50 72 6f 63 65 73 73 6f 72 20 69 6e 20 79 6f 75 | ..QAT.supported.Processor.in.you |
| bf700 | 72 20 73 79 73 74 65 6d 2e 00 75 73 65 72 00 75 75 63 70 00 76 61 6c 69 64 00 76 61 6c 69 64 2d | r.system..user.uucp.valid.valid- |
| bf720 | 6c 69 66 65 74 69 6d 65 00 76 65 74 68 20 69 6e 74 65 72 66 61 63 65 73 20 6e 65 65 64 20 74 6f | lifetime.veth.interfaces.need.to |
| bf740 | 20 62 65 20 63 72 65 61 74 65 64 20 69 6e 20 70 61 69 72 73 20 2d 20 69 74 27 73 20 63 61 6c 6c | .be.created.in.pairs.-.it's.call |
| bf760 | 65 64 20 74 68 65 20 70 65 65 72 20 6e 61 6d 65 00 76 69 72 74 75 61 6c 20 49 50 20 61 64 64 72 | ed.the.peer.name.virtual.IP.addr |
| bf780 | 65 73 73 65 73 20 73 68 6f 75 6c 64 20 62 65 20 69 6e 73 74 61 6c 6c 65 64 2e 20 49 66 20 6e 6f | esses.should.be.installed..If.no |
| bf7a0 | 74 20 73 70 65 63 69 66 69 65 64 20 74 68 65 20 61 64 64 72 65 73 73 65 73 20 77 69 6c 6c 20 62 | t.specified.the.addresses.will.b |
| bf7c0 | 65 20 69 6e 73 74 61 6c 6c 65 64 20 6f 6e 20 74 68 65 20 6f 75 74 62 6f 75 6e 64 20 69 6e 74 65 | e.installed.on.the.outbound.inte |
| bf7e0 | 72 66 61 63 65 3b 00 76 78 6c 61 6e 00 77 61 72 6e 69 6e 67 00 77 65 20 64 65 73 63 72 69 62 65 | rface;.vxlan.warning.we.describe |
| bf800 | 64 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 53 52 20 49 53 49 53 20 2f 20 53 52 | d.the.configuration.SR.ISIS./.SR |
| bf820 | 20 4f 53 50 46 20 75 73 69 6e 67 20 32 20 63 6f 6e 6e 65 63 74 65 64 20 77 69 74 68 20 74 68 65 | .OSPF.using.2.connected.with.the |
| bf840 | 6d 20 74 6f 20 73 68 61 72 65 20 6c 61 62 65 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2e 00 77 65 | m.to.share.label.information..we |
| bf860 | 69 67 68 74 65 64 2d 6c 65 61 73 74 2d 63 6f 6e 6e 65 63 74 69 6f 6e 00 77 65 69 67 68 74 65 64 | ighted-least-connection.weighted |
| bf880 | 2d 72 6f 75 6e 64 2d 72 6f 62 69 6e 00 77 68 69 6c 65 20 61 20 2a 62 79 74 65 2a 20 69 73 20 77 | -round-robin.while.a.*byte*.is.w |
| bf8a0 | 72 69 74 74 65 6e 20 61 73 20 61 20 73 69 6e 67 6c 65 20 2a 2a 62 2a 2a 2e 00 77 69 6e 73 2d 73 | ritten.as.a.single.**b**..wins-s |
| bf8c0 | 65 72 76 65 72 00 77 69 72 65 67 75 61 72 64 00 77 69 72 65 6c 65 73 73 00 77 69 74 68 20 3a 63 | erver.wireguard.wireless.with.:c |
| bf8e0 | 66 67 63 6d 64 3a 60 73 65 74 20 73 79 73 74 65 6d 20 61 63 63 65 6c 65 72 61 74 69 6f 6e 20 71 | fgcmd:`set.system.acceleration.q |
| bf900 | 61 74 60 20 6f 6e 20 62 6f 74 68 20 73 79 73 74 65 6d 73 20 74 68 65 20 62 61 6e 64 77 69 64 74 | at`.on.both.systems.the.bandwidt |
| bf920 | 68 20 69 6e 63 72 65 61 73 65 73 2e 00 77 70 61 64 2d 75 72 6c 00 77 70 61 64 2d 75 72 6c 2c 20 | h.increases..wpad-url.wpad-url,. |
| bf940 | 77 70 61 64 2d 75 72 6c 20 63 6f 64 65 20 32 35 32 20 3d 20 74 65 78 74 00 77 77 61 6e 00 7a 65 | wpad-url.code.252.=.text.wwan.ze |
| bf960 | 62 72 61 00 4d 49 4d 45 2d 56 65 72 73 69 6f 6e 3a 20 31 2e 30 0a 43 6f 6e 74 65 6e 74 2d 54 79 | bra.MIME-Version:.1.0.Content-Ty |
| bf980 | 70 65 3a 20 74 65 78 74 2f 70 6c 61 69 6e 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0a 43 6f | pe:.text/plain;.charset=UTF-8.Co |
| bf9a0 | 6e 74 65 6e 74 2d 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 38 62 69 74 0a 58 2d | ntent-Transfer-Encoding:.8bit.X- |
| bf9c0 | 47 65 6e 65 72 61 74 6f 72 3a 20 4c 6f 63 61 6c 61 7a 79 20 28 68 74 74 70 73 3a 2f 2f 6c 6f 63 | Generator:.Localazy.(https://loc |
| bf9e0 | 61 6c 61 7a 79 2e 63 6f 6d 29 0a 50 72 6f 6a 65 63 74 2d 49 64 2d 56 65 72 73 69 6f 6e 3a 20 0a | alazy.com).Project-Id-Version:.. |
| bfa00 | 4c 61 6e 67 75 61 67 65 3a 20 70 74 0a 50 6c 75 72 61 6c 2d 46 6f 72 6d 73 3a 20 6e 70 6c 75 72 | Language:.pt.Plural-Forms:.nplur |
| bfa20 | 61 6c 73 3d 32 3b 20 70 6c 75 72 61 6c 3d 28 6e 3e 3d 30 20 26 26 20 6e 3c 3d 31 29 20 3f 20 30 | als=2;.plural=(n>=0.&&.n<=1).?.0 |
| bfa40 | 20 3a 20 31 3b 0a 00 21 3c 68 3a 68 3a 68 3a 68 3a 68 3a 68 3a 68 3a 68 2f 78 3e 3a 20 4d 61 74 | .:.1;..!<h:h:h:h:h:h:h:h/x>:.Mat |
| bfa60 | 63 68 20 65 76 65 72 79 74 68 69 6e 67 20 65 78 63 65 70 74 20 74 68 65 20 73 70 65 63 69 66 69 | ch.everything.except.the.specifi |
| bfa80 | 65 64 20 70 72 65 66 69 78 2e 00 21 3c 68 3a 68 3a 68 3a 68 3a 68 3a 68 3a 68 3a 68 3e 2d 3c 68 | ed.prefix..!<h:h:h:h:h:h:h:h>-<h |
| bfaa0 | 3a 68 3a 68 3a 68 3a 68 3a 68 3a 68 3a 68 3e 3a 20 4d 61 74 63 68 20 65 76 65 72 79 74 68 69 6e | :h:h:h:h:h:h:h>:.Match.everythin |
| bfac0 | 67 20 65 78 63 65 70 74 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 72 61 6e 67 65 2e 00 21 3c | g.except.the.specified.range..!< |
| bfae0 | 68 3a 68 3a 68 3a 68 3a 68 3a 68 3a 68 3a 68 3e 3a 20 4d 61 74 63 68 20 65 76 65 72 79 74 68 69 | h:h:h:h:h:h:h:h>:.Match.everythi |
| bfb00 | 6e 67 20 65 78 63 65 70 74 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 61 64 64 72 65 73 73 2e | ng.except.the.specified.address. |
| bfb20 | 00 21 3c 78 2e 78 2e 78 2e 78 2f 78 3e 3a 20 4d 61 74 63 68 20 65 76 65 72 79 74 68 69 6e 67 20 | .!<x.x.x.x/x>:.Match.everything. |
| bfb40 | 65 78 63 65 70 74 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 73 75 62 6e 65 74 2e 00 21 3c 78 | except.the.specified.subnet..!<x |
| bfb60 | 2e 78 2e 78 2e 78 3e 2d 3c 78 2e 78 2e 78 2e 78 3e 3a 20 4d 61 74 63 68 20 65 76 65 72 79 74 68 | .x.x.x>-<x.x.x.x>:.Match.everyth |
| bfb80 | 69 6e 67 20 65 78 63 65 70 74 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 72 61 6e 67 65 2e 00 | ing.except.the.specified.range.. |
| bfba0 | 21 3c 78 2e 78 2e 78 2e 78 3e 3a 20 4d 61 74 63 68 20 65 76 65 72 79 74 68 69 6e 67 20 65 78 63 | !<x.x.x.x>:.Match.everything.exc |
| bfbc0 | 65 70 74 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 61 64 64 72 65 73 73 2e 00 22 4d 61 6e 61 | ept.the.specified.address.."Mana |
| bfbe0 | 67 65 64 20 61 64 64 72 65 73 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 22 20 66 6c 61 67 00 | ged.address.configuration".flag. |
| bfc00 | 22 4f 74 68 65 72 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 22 20 66 6c 61 67 00 23 23 23 23 23 | "Other.configuration".flag.##### |
| bfc20 | 23 23 23 23 23 23 23 23 23 23 23 23 23 23 c3 a4 23 23 23 23 23 23 23 23 23 23 23 23 23 20 46 6c | ##############..#############.Fl |
| bfc40 | 6f 77 74 61 62 6c 65 73 20 46 69 72 65 77 61 6c 6c 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 | owtables.Firewall.Configuration. |
| bfc60 | 23 23 23 23 23 23 23 23 23 23 23 23 23 23 23 23 23 23 23 23 23 23 23 23 23 23 23 23 23 23 23 23 | ################################ |
| bfc80 | 23 00 28 54 68 69 73 20 63 61 6e 20 62 65 20 75 73 65 66 75 6c 20 77 68 65 6e 20 61 20 63 61 6c | #.(This.can.be.useful.when.a.cal |
| bfca0 | 6c 65 64 20 73 65 72 76 69 63 65 20 68 61 73 20 6d 61 6e 79 20 61 6e 64 2f 6f 72 20 6f 66 74 65 | led.service.has.many.and/or.ofte |
| bfcc0 | 6e 20 63 68 61 6e 67 69 6e 67 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 65 73 | n.changing.destination.addresses |
| bfce0 | 20 2d 20 65 2e 67 2e 20 4e 65 74 66 6c 69 78 2e 29 00 2a 2a 28 44 65 66 61 75 6c 74 29 2a 2a 20 | .-.e.g..Netflix.).**(Default)**. |
| bfd00 | 46 6c 6f 77 73 20 61 72 65 20 64 65 66 69 6e 65 64 20 62 79 20 74 68 65 20 35 2d 74 75 70 6c 65 | Flows.are.defined.by.the.5-tuple |
| bfd20 | 2c 20 66 61 69 72 6e 65 73 73 20 69 73 20 61 70 70 6c 69 65 64 20 6f 76 65 72 20 73 6f 75 72 63 | ,.fairness.is.applied.over.sourc |
| bfd40 | 65 20 61 6e 64 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 65 73 20 61 6e 64 20 | e.and.destination.addresses.and. |
| bfd60 | 61 6c 73 6f 20 6f 76 65 72 20 69 6e 64 69 76 69 64 75 61 6c 20 66 6c 6f 77 73 2e 00 2a 2a 31 2d | also.over.individual.flows..**1- |
| bfd80 | 32 35 34 2a 2a 20 e2 80 93 20 69 6e 74 65 72 66 61 63 65 73 20 77 69 74 68 20 61 20 63 68 61 6e | 254**.....interfaces.with.a.chan |
| bfda0 | 6e 65 6c 20 6e 75 6d 62 65 72 20 69 6e 74 65 72 66 65 72 65 20 77 69 74 68 20 69 6e 74 65 72 66 | nel.number.interfere.with.interf |
| bfdc0 | 65 72 69 6e 67 20 69 6e 74 65 72 66 61 63 65 73 20 61 6e 64 20 69 6e 74 65 72 66 61 63 65 73 20 | ering.interfaces.and.interfaces. |
| bfde0 | 77 69 74 68 20 74 68 65 20 73 61 6d 65 20 63 68 61 6e 6e 65 6c 20 6e 75 6d 62 65 72 2e 20 2a 2a | with.the.same.channel.number..** |
| bfe00 | 69 6e 74 65 72 66 65 72 69 6e 67 2a 2a 20 e2 80 93 20 69 6e 74 65 72 66 65 72 69 6e 67 20 69 6e | interfering**.....interfering.in |
| bfe20 | 74 65 72 66 61 63 65 73 20 61 72 65 20 61 73 73 75 6d 65 64 20 74 6f 20 69 6e 74 65 72 66 65 72 | terfaces.are.assumed.to.interfer |
| bfe40 | 65 20 77 69 74 68 20 61 6c 6c 20 6f 74 68 65 72 20 63 68 61 6e 6e 65 6c 73 20 65 78 63 65 70 74 | e.with.all.other.channels.except |
| bfe60 | 20 6e 6f 6e 69 6e 74 65 72 66 65 72 69 6e 67 20 63 68 61 6e 6e 65 6c 73 2e 20 2a 2a 6e 6f 6e 69 | .noninterfering.channels..**noni |
| bfe80 | 6e 74 65 72 66 65 72 69 6e 67 2a 2a 20 e2 80 93 20 6e 6f 6e 69 6e 74 65 72 66 65 72 69 6e 67 20 | nterfering**.....noninterfering. |
| bfea0 | 69 6e 74 65 72 66 61 63 65 73 20 61 72 65 20 61 73 73 75 6d 65 64 20 74 6f 20 6f 6e 6c 79 20 69 | interfaces.are.assumed.to.only.i |
| bfec0 | 6e 74 65 72 66 65 72 65 20 77 69 74 68 20 74 68 65 6d 73 65 6c 76 65 73 2e 00 2a 2a 31 2e 20 43 | nterfere.with.themselves..**1..C |
| bfee0 | 6f 6e 66 69 72 6d 20 49 50 20 63 6f 6e 6e 65 63 74 69 76 69 74 79 20 62 65 74 77 65 65 6e 20 74 | onfirm.IP.connectivity.between.t |
| bff00 | 75 6e 6e 65 6c 20 73 6f 75 72 63 65 2d 61 64 64 72 65 73 73 20 61 6e 64 20 72 65 6d 6f 74 65 3a | unnel.source-address.and.remote: |
| bff20 | 2a 2a 00 2a 2a 31 30 2a 2a 20 2d 20 3a 61 62 62 72 3a 60 49 50 46 49 58 20 28 49 50 20 46 6c 6f | **.**10**.-.:abbr:`IPFIX.(IP.Flo |
| bff40 | 77 20 49 6e 66 6f 72 6d 61 74 69 6f 6e 20 45 78 70 6f 72 74 29 60 20 61 73 20 70 65 72 20 3a 72 | w.Information.Export)`.as.per.:r |
| bff60 | 66 63 3a 60 33 39 31 37 60 00 2a 2a 32 2e 20 43 6f 6e 66 69 72 6d 20 74 68 65 20 6c 69 6e 6b 20 | fc:`3917`.**2..Confirm.the.link. |
| bff80 | 74 79 70 65 20 68 61 73 20 62 65 65 6e 20 73 65 74 20 74 6f 20 47 52 45 3a 2a 2a 00 2a 2a 33 2e | type.has.been.set.to.GRE:**.**3. |
| bffa0 | 20 43 6f 6e 66 69 72 6d 20 49 50 20 63 6f 6e 6e 65 63 74 69 76 69 74 79 20 61 63 72 6f 73 73 20 | .Confirm.IP.connectivity.across. |
| bffc0 | 74 68 65 20 74 75 6e 6e 65 6c 3a 2a 2a 00 2a 2a 35 2a 2a 20 2d 20 4d 6f 73 74 20 63 6f 6d 6d 6f | the.tunnel:**.**5**.-.Most.commo |
| bffe0 | 6e 20 76 65 72 73 69 6f 6e 2c 20 62 75 74 20 72 65 73 74 72 69 63 74 65 64 20 74 6f 20 49 50 76 | n.version,.but.restricted.to.IPv |
| c0000 | 34 20 66 6c 6f 77 73 20 6f 6e 6c 79 00 2a 2a 39 2a 2a 20 2d 20 4e 65 74 46 6c 6f 77 20 76 65 72 | 4.flows.only.**9**.-.NetFlow.ver |
| c0020 | 73 69 6f 6e 20 39 20 28 64 65 66 61 75 6c 74 29 00 2a 2a 41 53 20 70 61 74 68 20 6c 65 6e 67 74 | sion.9.(default).**AS.path.lengt |
| c0040 | 68 20 63 68 65 63 6b 2a 2a 00 2a 2a 41 63 74 69 76 65 2d 61 63 74 69 76 65 2a 2a 3a 20 62 6f 74 | h.check**.**Active-active**:.bot |
| c0060 | 68 20 44 48 43 50 20 73 65 72 76 65 72 73 20 77 69 6c 6c 20 72 65 73 70 6f 6e 64 20 74 6f 20 44 | h.DHCP.servers.will.respond.to.D |
| c0080 | 48 43 50 20 72 65 71 75 65 73 74 73 2e 20 49 66 20 60 60 6d 6f 64 65 60 60 20 69 73 20 6e 6f 74 | HCP.requests..If.``mode``.is.not |
| c00a0 | 20 64 65 66 69 6e 65 64 2c 20 74 68 69 73 20 69 73 20 74 68 65 20 64 65 66 61 75 6c 74 20 62 65 | .defined,.this.is.the.default.be |
| c00c0 | 68 61 76 69 6f 72 2e 00 2a 2a 41 63 74 69 76 65 2d 70 61 73 73 69 76 65 2a 2a 3a 20 6f 6e 6c 79 | havior..**Active-passive**:.only |
| c00e0 | 20 60 60 70 72 69 6d 61 72 79 60 60 20 73 65 72 76 65 72 20 77 69 6c 6c 20 72 65 73 70 6f 6e 64 | .``primary``.server.will.respond |
| c0100 | 20 74 6f 20 44 48 43 50 20 72 65 71 75 65 73 74 73 2e 20 49 66 20 74 68 69 73 20 73 65 72 76 65 | .to.DHCP.requests..If.this.serve |
| c0120 | 72 20 67 6f 65 73 20 6f 66 66 6c 69 6e 65 2c 20 74 68 65 6e 20 60 60 73 65 63 6f 6e 64 61 72 79 | r.goes.offline,.then.``secondary |
| c0140 | 60 60 20 73 65 72 76 65 72 20 77 69 6c 6c 20 74 61 6b 65 20 70 6c 61 63 65 2e 00 2a 2a 41 6c 72 | ``.server.will.take.place..**Alr |
| c0160 | 65 61 64 79 2d 73 65 6c 65 63 74 65 64 20 65 78 74 65 72 6e 61 6c 20 63 68 65 63 6b 2a 2a 00 2a | eady-selected.external.check**.* |
| c0180 | 2a 41 70 70 6c 69 63 61 74 69 6f 6e 20 43 6f 6d 70 61 74 69 62 69 6c 69 74 79 2a 2a 3a 20 53 6f | *Application.Compatibility**:.So |
| c01a0 | 6d 65 20 61 70 70 6c 69 63 61 74 69 6f 6e 73 20 61 6e 64 20 70 72 6f 74 6f 63 6f 6c 73 20 6d 61 | me.applications.and.protocols.ma |
| c01c0 | 79 20 6e 6f 74 20 77 6f 72 6b 20 77 65 6c 6c 20 77 69 74 68 20 43 47 4e 41 54 20 64 75 65 20 74 | y.not.work.well.with.CGNAT.due.t |
| c01e0 | 6f 20 74 68 65 69 72 20 72 65 6c 69 61 6e 63 65 20 6f 6e 20 75 6e 69 71 75 65 20 70 75 62 6c 69 | o.their.reliance.on.unique.publi |
| c0200 | 63 20 49 50 20 61 64 64 72 65 73 73 65 73 2e 00 2a 2a 41 70 70 6c 69 65 73 20 74 6f 3a 2a 2a 20 | c.IP.addresses..**Applies.to:**. |
| c0220 | 49 6e 62 6f 75 6e 64 20 74 72 61 66 66 69 63 2e 00 2a 2a 41 70 70 6c 69 65 73 20 74 6f 3a 2a 2a | Inbound.traffic..**Applies.to:** |
| c0240 | 20 4f 75 74 62 6f 75 6e 64 20 54 72 61 66 66 69 63 2e 00 2a 2a 41 70 70 6c 69 65 73 20 74 6f 3a | .Outbound.Traffic..**Applies.to: |
| c0260 | 2a 2a 20 4f 75 74 62 6f 75 6e 64 20 74 72 61 66 66 69 63 2e 00 2a 2a 41 70 70 6c 79 20 74 68 65 | **.Outbound.traffic..**Apply.the |
| c0280 | 20 74 72 61 66 66 69 63 20 70 6f 6c 69 63 79 20 74 6f 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 | .traffic.policy.to.an.interface. |
| c02a0 | 69 6e 67 72 65 73 73 20 6f 72 20 65 67 72 65 73 73 2a 2a 2e 00 2a 2a 42 72 69 64 67 65 20 50 6f | ingress.or.egress**..**Bridge.Po |
| c02c0 | 72 74 3f 2a 2a 3a 20 63 68 6f 6f 73 65 20 61 70 70 72 6f 70 69 61 74 65 20 70 61 74 68 20 62 61 | rt?**:.choose.appropiate.path.ba |
| c02e0 | 73 65 64 20 6f 6e 20 69 66 20 69 6e 74 65 72 66 61 63 65 20 77 65 72 65 20 74 68 65 20 70 61 63 | sed.on.if.interface.were.the.pac |
| c0300 | 6b 65 74 20 77 61 73 20 72 65 63 65 69 76 65 64 20 69 73 20 70 61 72 74 20 6f 66 20 61 20 62 72 | ket.was.received.is.part.of.a.br |
| c0320 | 69 64 67 65 2c 20 6f 72 20 6e 6f 74 2e 00 2a 2a 42 72 69 64 67 65 20 50 6f 72 74 3f 2a 2a 3a 20 | idge,.or.not..**Bridge.Port?**:. |
| c0340 | 63 68 6f 6f 73 65 20 61 70 70 72 6f 70 72 69 61 74 65 20 70 61 74 68 20 62 61 73 65 64 20 6f 6e | choose.appropriate.path.based.on |
| c0360 | 20 77 68 65 74 68 65 72 20 69 6e 74 65 72 66 61 63 65 20 77 68 65 72 65 20 74 68 65 20 70 61 63 | .whether.interface.where.the.pac |
| c0380 | 6b 65 74 20 77 61 73 20 72 65 63 65 69 76 65 64 20 69 73 20 70 61 72 74 20 6f 66 20 61 20 62 72 | ket.was.received.is.part.of.a.br |
| c03a0 | 69 64 67 65 2c 20 6f 72 20 6e 6f 74 2e 00 2a 2a 43 61 6c 63 75 6c 61 74 65 20 74 68 65 20 4e 75 | idge,.or.not..**Calculate.the.Nu |
| c03c0 | 6d 62 65 72 20 6f 66 20 53 75 62 73 63 72 69 62 65 72 73 20 70 65 72 20 50 75 62 6c 69 63 20 49 | mber.of.Subscribers.per.Public.I |
| c03e0 | 50 2a 2a 3a 00 2a 2a 43 69 73 63 6f 20 49 4f 53 20 52 6f 75 74 65 72 3a 2a 2a 00 2a 2a 43 6c 69 | P**:.**Cisco.IOS.Router:**.**Cli |
| c0400 | 65 6e 74 20 49 50 20 61 64 64 72 65 73 73 20 76 69 61 20 49 50 20 72 61 6e 67 65 20 64 65 66 69 | ent.IP.address.via.IP.range.defi |
| c0420 | 6e 69 74 69 6f 6e 2a 2a 00 2a 2a 43 6c 69 65 6e 74 20 49 50 20 73 75 62 6e 65 74 73 20 76 69 61 | nition**.**Client.IP.subnets.via |
| c0440 | 20 43 49 44 52 20 6e 6f 74 61 74 69 6f 6e 2a 2a 00 2a 2a 43 6c 75 73 74 65 72 2d 4c 69 73 74 20 | .CIDR.notation**.**Cluster-List. |
| c0460 | 6c 65 6e 67 74 68 20 63 68 65 63 6b 2a 2a 00 2a 2a 43 6f 6e 6e 74 72 61 63 6b 20 49 67 6e 6f 72 | length.check**.**Conntrack.Ignor |
| c0480 | 65 2a 2a 3a 20 72 75 6c 65 73 20 64 65 66 69 6e 65 64 20 75 6e 64 65 72 20 60 60 73 65 74 20 73 | e**:.rules.defined.under.``set.s |
| c04a0 | 79 73 74 65 6d 20 63 6f 6e 6e 74 72 61 63 6b 20 69 67 6e 6f 72 65 20 5b 69 70 76 34 20 7c 20 69 | ystem.conntrack.ignore.[ipv4.|.i |
| c04c0 | 70 76 36 5d 20 2e 2e 2e 60 60 2e 00 2a 2a 43 6f 6e 6e 74 72 61 63 6b 20 49 67 6e 6f 72 65 2a 2a | pv6]....``..**Conntrack.Ignore** |
| c04e0 | 3a 20 72 75 6c 65 73 20 64 65 66 69 6e 65 64 20 75 6e 64 65 72 20 60 60 73 65 74 20 73 79 73 74 | :.rules.defined.under.``set.syst |
| c0500 | 65 6d 20 63 6f 6e 6e 74 72 61 63 6b 20 69 67 6e 6f 72 65 20 5b 69 70 76 34 20 7c 20 69 70 76 36 | em.conntrack.ignore.[ipv4.|.ipv6 |
| c0520 | 5d 20 2e 2e 2e 60 60 2e 20 53 74 61 72 74 69 6e 67 20 66 72 6f 6d 20 76 79 6f 73 2d 31 2e 35 2d | ]....``..Starting.from.vyos-1.5- |
| c0540 | 72 6f 6c 6c 69 6e 67 2d 32 30 32 34 30 36 31 32 30 30 32 30 2c 20 63 6f 6e 66 69 67 75 72 61 74 | rolling-202406120020,.configurat |
| c0560 | 69 6f 6e 20 64 6f 6e 65 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 63 61 6e 20 62 65 20 | ion.done.in.this.section.can.be. |
| c0580 | 64 6f 6e 65 20 69 6e 20 60 60 66 69 72 65 77 61 6c 6c 20 5b 69 70 76 34 20 7c 20 69 70 76 36 5d | done.in.``firewall.[ipv4.|.ipv6] |
| c05a0 | 20 70 72 65 72 6f 75 74 69 6e 67 20 2e 2e 2e 60 60 2e 20 46 6f 72 20 63 6f 6d 70 61 74 69 62 69 | .prerouting....``..For.compatibi |
| c05c0 | 6c 69 74 79 20 72 65 61 73 6f 6e 73 2c 20 74 68 69 73 20 66 65 61 74 75 72 65 20 69 73 20 73 74 | lity.reasons,.this.feature.is.st |
| c05e0 | 69 6c 6c 20 70 72 65 73 65 6e 74 2c 20 62 75 74 20 69 74 20 77 69 6c 6c 20 62 65 20 72 65 6d 6f | ill.present,.but.it.will.be.remo |
| c0600 | 76 65 64 20 69 6e 20 74 68 65 20 66 75 74 75 72 65 2e 00 2a 2a 43 6f 73 74 2d 45 66 66 65 63 74 | ved.in.the.future..**Cost-Effect |
| c0620 | 69 76 65 2a 2a 3a 20 52 65 64 75 63 65 73 20 74 68 65 20 63 6f 73 74 20 61 73 73 6f 63 69 61 74 | ive**:.Reduces.the.cost.associat |
| c0640 | 65 64 20 77 69 74 68 20 61 63 71 75 69 72 69 6e 67 20 61 64 64 69 74 69 6f 6e 61 6c 20 70 75 62 | ed.with.acquiring.additional.pub |
| c0660 | 6c 69 63 20 49 50 76 34 20 61 64 64 72 65 73 73 65 73 2e 00 2a 2a 43 72 65 61 74 65 20 61 20 74 | lic.IPv4.addresses..**Create.a.t |
| c0680 | 72 61 66 66 69 63 20 70 6f 6c 69 63 79 2a 2a 2e 00 2a 2a 44 48 43 50 28 76 36 29 2a 2a 00 2a 2a | raffic.policy**..**DHCP(v6)**.** |
| c06a0 | 44 48 43 50 76 36 20 50 72 65 66 69 78 20 44 65 6c 65 67 61 74 69 6f 6e 20 28 50 44 29 2a 2a 00 | DHCPv6.Prefix.Delegation.(PD)**. |
| c06c0 | 2a 2a 44 65 73 74 69 6e 61 74 69 6f 6e 20 4e 41 54 2a 2a 3a 20 72 75 6c 65 73 20 64 65 66 69 6e | **Destination.NAT**:.rules.defin |
| c06e0 | 65 64 20 75 6e 64 65 72 20 60 60 73 65 74 20 5b 6e 61 74 20 7c 20 6e 61 74 36 36 5d 20 64 65 73 | ed.under.``set.[nat.|.nat66].des |
| c0700 | 74 69 6e 61 74 69 6f 6e 2e 2e 2e 60 60 2e 00 2a 2a 44 65 73 74 69 6e 61 74 69 6f 6e 20 69 73 20 | tination...``..**Destination.is. |
| c0720 | 74 68 65 20 72 6f 75 74 65 72 3f 2a 2a 3a 20 63 68 6f 6f 73 65 20 61 6e 20 61 70 70 72 6f 70 72 | the.router?**:.choose.an.appropr |
| c0740 | 69 61 74 65 20 70 61 74 68 20 62 61 73 65 64 20 6f 6e 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 49 | iate.path.based.on.destination.I |
| c0760 | 50 20 61 64 64 72 65 73 73 2e 20 54 72 61 6e 73 69 74 20 66 6f 72 77 61 72 64 20 63 6f 6e 74 69 | P.address..Transit.forward.conti |
| c0780 | 6e 75 65 73 20 74 6f 20 2a 2a 66 6f 72 77 61 72 64 2a 2a 2c 20 77 68 69 6c 65 20 74 72 61 66 66 | nues.to.**forward**,.while.traff |
| c07a0 | 69 63 20 77 68 65 72 65 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 49 50 20 61 64 64 72 | ic.where.the.destination.IP.addr |
| c07c0 | 65 73 73 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 74 68 65 20 72 6f 75 74 65 72 20 | ess.is.configured.on.the.router. |
| c07e0 | 63 6f 6e 74 69 6e 75 65 73 20 74 6f 20 2a 2a 69 6e 70 75 74 2a 2a 2e 00 2a 2a 44 65 73 74 69 6e | continues.to.**input**..**Destin |
| c0800 | 61 74 69 6f 6e 20 69 73 20 74 68 65 20 72 6f 75 74 65 72 3f 2a 2a 3a 20 63 68 6f 6f 73 65 20 61 | ation.is.the.router?**:.choose.a |
| c0820 | 70 70 72 6f 70 69 61 74 65 20 70 61 74 68 20 62 61 73 65 64 20 6f 6e 20 64 65 73 74 69 6e 61 74 | ppropiate.path.based.on.destinat |
| c0840 | 69 6f 6e 20 49 50 20 61 64 64 72 65 73 73 2e 20 54 72 61 6e 73 69 74 20 66 6f 72 77 61 72 64 20 | ion.IP.address..Transit.forward. |
| c0860 | 63 6f 6e 74 69 6e 75 6e 65 73 20 74 6f 20 2a 2a 66 6f 72 77 61 72 64 2a 2a 2c 20 77 68 69 6c 65 | continunes.to.**forward**,.while |
| c0880 | 20 74 72 61 66 66 69 63 20 74 68 61 74 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 49 50 20 61 64 64 | .traffic.that.destination.IP.add |
| c08a0 | 72 65 73 73 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 74 68 65 20 72 6f 75 74 65 72 | ress.is.configured.on.the.router |
| c08c0 | 20 63 6f 6e 74 69 6e 75 65 73 20 74 6f 20 2a 2a 69 6e 70 75 74 2a 2a 2e 00 2a 2a 44 65 73 74 69 | .continues.to.**input**..**Desti |
| c08e0 | 6e 61 74 69 6f 6e 20 69 73 20 74 68 65 20 72 6f 75 74 65 72 3f 2a 2a 3a 20 63 68 6f 6f 73 65 20 | nation.is.the.router?**:.choose. |
| c0900 | 61 70 70 72 6f 70 72 69 61 74 65 20 70 61 74 68 20 62 61 73 65 64 20 6f 6e 20 64 65 73 74 69 6e | appropriate.path.based.on.destin |
| c0920 | 61 74 69 6f 6e 20 49 50 20 61 64 64 72 65 73 73 2e 20 54 72 61 6e 73 69 74 20 66 6f 72 77 61 72 | ation.IP.address..Transit.forwar |
| c0940 | 64 20 63 6f 6e 74 69 6e 75 65 73 20 74 6f 20 2a 2a 66 6f 72 77 61 72 64 2a 2a 2c 20 77 68 69 6c | d.continues.to.**forward**,.whil |
| c0960 | 65 20 74 72 61 66 66 69 63 20 74 68 61 74 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 49 50 20 61 64 | e.traffic.that.destination.IP.ad |
| c0980 | 64 72 65 73 73 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 74 68 65 20 72 6f 75 74 65 | dress.is.configured.on.the.route |
| c09a0 | 72 20 63 6f 6e 74 69 6e 75 65 73 20 74 6f 20 2a 2a 69 6e 70 75 74 2a 2a 2e 00 2a 2a 44 6f 63 75 | r.continues.to.**input**..**Docu |
| c09c0 | 6d 65 6e 74 61 74 69 6f 6e 20 75 6e 64 65 72 20 64 65 76 65 6c 6f 70 6d 65 6e 74 2a 2a 00 2a 2a | mentation.under.development**.** |
| c09e0 | 45 73 74 69 6d 61 74 65 20 50 6f 72 74 73 20 4e 65 65 64 65 64 20 70 65 72 20 53 75 62 73 63 72 | Estimate.Ports.Needed.per.Subscr |
| c0a00 | 69 62 65 72 2a 2a 3a 00 2a 2a 45 74 68 65 72 6e 65 74 20 28 70 72 6f 74 6f 63 6f 6c 2c 20 64 65 | iber**:.**Ethernet.(protocol,.de |
| c0a20 | 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 6f 72 20 73 6f 75 72 63 65 20 61 64 64 72 | stination.address.or.source.addr |
| c0a40 | 65 73 73 29 2a 2a 00 2a 2a 45 78 61 6d 70 6c 65 3a 2a 2a 00 2a 2a 45 78 74 65 72 6e 61 6c 20 63 | ess)**.**Example:**.**External.c |
| c0a60 | 68 65 63 6b 2a 2a 00 2a 2a 46 69 72 65 77 61 6c 6c 20 50 72 65 72 6f 75 74 69 6e 67 2a 2a 3a 20 | heck**.**Firewall.Prerouting**:. |
| c0a80 | 63 6f 6d 6d 61 6e 64 73 20 66 6f 75 6e 64 20 75 6e 64 65 72 20 60 60 73 65 74 20 66 69 72 65 77 | commands.found.under.``set.firew |
| c0aa0 | 61 6c 6c 20 69 70 76 34 20 70 72 65 72 6f 75 74 69 6e 67 20 72 61 77 20 2e 2e 2e 60 60 00 2a 2a | all.ipv4.prerouting.raw....``.** |
| c0ac0 | 46 69 72 65 77 61 6c 6c 20 50 72 65 72 6f 75 74 69 6e 67 2a 2a 3a 20 63 6f 6d 6d 61 6e 64 73 20 | Firewall.Prerouting**:.commands. |
| c0ae0 | 66 6f 75 6e 64 20 75 6e 64 65 72 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 | found.under.``set.firewall.ipv6. |
| c0b00 | 70 72 65 72 6f 75 74 69 6e 67 20 72 61 77 20 2e 2e 2e 60 60 00 2a 2a 46 69 72 65 77 61 6c 6c 20 | prerouting.raw....``.**Firewall. |
| c0b20 | 6d 61 72 6b 2a 2a 00 2a 2a 46 69 72 65 77 61 6c 6c 20 70 72 65 72 6f 75 74 69 6e 67 2a 2a 3a 20 | mark**.**Firewall.prerouting**:. |
| c0b40 | 72 75 6c 65 73 20 64 65 66 69 6e 65 64 20 75 6e 64 65 72 20 60 60 73 65 74 20 66 69 72 65 77 61 | rules.defined.under.``set.firewa |
| c0b60 | 6c 6c 20 5b 69 70 76 34 20 7c 20 69 70 76 36 5d 20 70 72 65 72 6f 75 74 69 6e 67 20 72 61 77 2e | ll.[ipv4.|.ipv6].prerouting.raw. |
| c0b80 | 2e 2e 60 60 2e 20 41 6c 6c 20 72 75 6c 65 73 20 64 65 66 69 6e 65 64 20 69 6e 20 74 68 69 73 20 | ..``..All.rules.defined.in.this. |
| c0ba0 | 73 65 63 74 69 6f 6e 20 61 72 65 20 70 72 6f 63 65 73 73 65 64 20 62 65 66 6f 72 65 20 63 6f 6e | section.are.processed.before.con |
| c0bc0 | 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 73 75 62 73 79 73 74 65 6d 2e 00 2a 2a 46 6c | nection.tracking.subsystem..**Fl |
| c0be0 | 6f 77 74 61 62 6c 65 20 52 65 66 65 72 65 6e 63 65 3a 2a 2a 20 68 74 74 70 73 3a 2f 2f 64 6f 63 | owtable.Reference:**.https://doc |
| c0c00 | 73 2e 6b 65 72 6e 65 6c 2e 6f 72 67 2f 6e 65 74 77 6f 72 6b 69 6e 67 2f 6e 66 5f 66 6c 6f 77 74 | s.kernel.org/networking/nf_flowt |
| c0c20 | 61 62 6c 65 2e 68 74 6d 6c 00 2a 2a 46 6f 72 20 6d 6f 72 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e | able.html.**For.more.information |
| c0c40 | 2a 2a 20 6f 66 20 4e 65 74 66 69 6c 74 65 72 20 68 6f 6f 6b 73 20 61 6e 64 20 4c 69 6e 75 78 20 | **.of.Netfilter.hooks.and.Linux. |
| c0c60 | 6e 65 74 77 6f 72 6b 69 6e 67 20 70 61 63 6b 65 74 20 66 6c 6f 77 73 20 63 61 6e 20 62 65 20 66 | networking.packet.flows.can.be.f |
| c0c80 | 6f 75 6e 64 20 69 6e 20 60 4e 65 74 66 69 6c 74 65 72 2d 48 6f 6f 6b 73 20 3c 68 74 74 70 73 3a | ound.in.`Netfilter-Hooks.<https: |
| c0ca0 | 2f 2f 77 69 6b 69 2e 6e 66 74 61 62 6c 65 73 2e 6f 72 67 2f 77 69 6b 69 2d 6e 66 74 61 62 6c 65 | //wiki.nftables.org/wiki-nftable |
| c0cc0 | 73 2f 69 6e 64 65 78 2e 70 68 70 2f 4e 65 74 66 69 6c 74 65 72 5f 68 6f 6f 6b 73 3e 60 5f 00 2a | s/index.php/Netfilter_hooks>`_.* |
| c0ce0 | 2a 46 6f 72 77 61 72 64 20 28 42 72 69 64 67 65 29 2a 2a 3a 20 73 74 61 67 65 20 77 68 65 72 65 | *Forward.(Bridge)**:.stage.where |
| c0d00 | 20 74 72 61 66 66 69 63 20 74 68 61 74 20 69 73 20 74 72 61 73 73 70 61 73 69 6e 67 20 74 68 72 | .traffic.that.is.trasspasing.thr |
| c0d20 | 6f 75 67 68 20 74 68 65 20 62 72 69 64 67 65 20 69 73 20 66 69 6c 74 65 72 65 64 20 61 6e 64 20 | ough.the.bridge.is.filtered.and. |
| c0d40 | 63 6f 6e 74 72 6f 6c 6c 65 64 3a 00 2a 2a 46 6f 72 77 61 72 64 20 28 42 72 69 64 67 65 29 2a 2a | controlled:.**Forward.(Bridge)** |
| c0d60 | 3a 20 73 74 61 67 65 20 77 68 65 72 65 20 74 72 61 66 66 69 63 20 74 68 61 74 20 69 73 20 74 72 | :.stage.where.traffic.that.is.tr |
| c0d80 | 65 73 70 61 73 69 6e 67 20 74 68 72 6f 75 67 68 20 74 68 65 20 62 72 69 64 67 65 20 69 73 20 66 | espasing.through.the.bridge.is.f |
| c0da0 | 69 6c 74 65 72 65 64 20 61 6e 64 20 63 6f 6e 74 72 6f 6c 6c 65 64 3a 00 2a 2a 46 6f 72 77 61 72 | iltered.and.controlled:.**Forwar |
| c0dc0 | 64 20 28 42 72 69 64 67 65 29 2a 2a 3a 20 73 74 61 67 65 20 77 68 65 72 65 20 74 72 61 66 66 69 | d.(Bridge)**:.stage.where.traffi |
| c0de0 | 63 20 74 68 61 74 20 69 73 20 74 72 65 73 70 61 73 73 69 6e 67 20 74 68 72 6f 75 67 68 20 74 68 | c.that.is.trespassing.through.th |
| c0e00 | 65 20 62 72 69 64 67 65 20 69 73 20 66 69 6c 74 65 72 65 64 20 61 6e 64 20 63 6f 6e 74 72 6f 6c | e.bridge.is.filtered.and.control |
| c0e20 | 6c 65 64 3a 00 2a 2a 46 6f 72 77 61 72 64 2a 2a 3a 20 73 74 61 67 65 20 77 68 65 72 65 20 74 72 | led:.**Forward**:.stage.where.tr |
| c0e40 | 61 6e 73 69 74 20 74 72 61 66 66 69 63 20 63 61 6e 20 62 65 20 66 69 6c 74 65 72 65 64 20 61 6e | ansit.traffic.can.be.filtered.an |
| c0e60 | 64 20 63 6f 6e 74 72 6f 6c 6c 65 64 2e 20 54 68 69 73 20 69 6e 63 6c 75 64 65 73 20 69 70 76 34 | d.controlled..This.includes.ipv4 |
| c0e80 | 20 61 6e 64 20 69 70 76 36 20 66 69 6c 74 65 72 69 6e 67 20 72 75 6c 65 73 2c 20 64 65 66 69 6e | .and.ipv6.filtering.rules,.defin |
| c0ea0 | 65 64 20 69 6e 3a 00 2a 2a 48 61 72 64 77 61 72 65 20 6f 66 66 6c 6f 61 64 3a 2a 2a 20 73 68 6f | ed.in:.**Hardware.offload:**.sho |
| c0ec0 | 75 6c 64 20 62 65 20 73 75 70 70 6f 72 74 65 64 20 62 79 20 74 68 65 20 4e 49 43 73 20 75 73 65 | uld.be.supported.by.the.NICs.use |
| c0ee0 | 64 2e 00 2a 2a 49 47 50 20 63 6f 73 74 20 63 68 65 63 6b 2a 2a 00 2a 2a 49 50 76 34 20 28 44 53 | d..**IGP.cost.check**.**IPv4.(DS |
| c0f00 | 43 50 20 76 61 6c 75 65 2c 20 6d 61 78 69 6d 75 6d 20 70 61 63 6b 65 74 20 6c 65 6e 67 74 68 2c | CP.value,.maximum.packet.length, |
| c0f20 | 20 70 72 6f 74 6f 63 6f 6c 2c 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 2c 2a 2a 20 2a 2a 64 | .protocol,.source.address,**.**d |
| c0f40 | 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 2c 20 73 6f 75 72 63 65 20 70 6f 72 74 2c | estination.address,.source.port, |
| c0f60 | 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 70 6f 72 74 20 6f 72 20 54 43 50 20 66 6c 61 67 73 29 2a | .destination.port.or.TCP.flags)* |
| c0f80 | 2a 00 2a 2a 49 50 76 34 20 41 64 64 72 65 73 73 20 43 6f 6e 73 65 72 76 61 74 69 6f 6e 2a 2a 3a | *.**IPv4.Address.Conservation**: |
| c0fa0 | 20 43 47 4e 41 54 20 68 65 6c 70 73 20 6d 69 74 69 67 61 74 65 20 74 68 65 20 65 78 68 61 75 73 | .CGNAT.helps.mitigate.the.exhaus |
| c0fc0 | 74 69 6f 6e 20 6f 66 20 49 50 76 34 20 61 64 64 72 65 73 73 65 73 20 62 79 20 61 6c 6c 6f 77 69 | tion.of.IPv4.addresses.by.allowi |
| c0fe0 | 6e 67 20 6d 75 6c 74 69 70 6c 65 20 63 75 73 74 6f 6d 65 72 73 20 74 6f 20 73 68 61 72 65 20 61 | ng.multiple.customers.to.share.a |
| c1000 | 20 73 69 6e 67 6c 65 20 70 75 62 6c 69 63 20 49 50 20 61 64 64 72 65 73 73 2e 00 2a 2a 49 50 76 | .single.public.IP.address..**IPv |
| c1020 | 36 20 28 44 53 43 50 20 76 61 6c 75 65 2c 20 6d 61 78 69 6d 75 6d 20 70 61 79 6c 6f 61 64 20 6c | 6.(DSCP.value,.maximum.payload.l |
| c1040 | 65 6e 67 74 68 2c 20 70 72 6f 74 6f 63 6f 6c 2c 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 2c | ength,.protocol,.source.address, |
| c1060 | 2a 2a 20 2a 2a 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 2c 20 73 6f 75 72 63 65 | **.**destination.address,.source |
| c1080 | 20 70 6f 72 74 2c 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 70 6f 72 74 20 6f 72 20 54 43 50 20 66 | .port,.destination.port.or.TCP.f |
| c10a0 | 6c 61 67 73 29 2a 2a 00 2a 2a 49 66 20 79 6f 75 20 61 72 65 20 6c 6f 6f 6b 69 6e 67 20 66 6f 72 | lags)**.**If.you.are.looking.for |
| c10c0 | 20 61 20 70 6f 6c 69 63 79 20 66 6f 72 20 79 6f 75 72 20 6f 75 74 62 6f 75 6e 64 20 74 72 61 66 | .a.policy.for.your.outbound.traf |
| c10e0 | 66 69 63 2a 2a 20 62 75 74 20 79 6f 75 20 64 6f 6e 27 74 20 6b 6e 6f 77 20 77 68 69 63 68 20 6f | fic**.but.you.don't.know.which.o |
| c1100 | 6e 65 20 79 6f 75 20 6e 65 65 64 20 61 6e 64 20 79 6f 75 20 64 6f 6e 27 74 20 77 61 6e 74 20 74 | ne.you.need.and.you.don't.want.t |
| c1120 | 6f 20 67 6f 20 74 68 72 6f 75 67 68 20 65 76 65 72 79 20 70 6f 73 73 69 62 6c 65 20 70 6f 6c 69 | o.go.through.every.possible.poli |
| c1140 | 63 79 20 73 68 6f 77 6e 20 68 65 72 65 2c 20 2a 2a 6f 75 72 20 62 65 74 20 69 73 20 74 68 61 74 | cy.shown.here,.**our.bet.is.that |
| c1160 | 20 68 69 67 68 6c 79 20 6c 69 6b 65 6c 79 20 79 6f 75 20 61 72 65 20 6c 6f 6f 6b 69 6e 67 20 66 | .highly.likely.you.are.looking.f |
| c1180 | 6f 72 20 61 2a 2a 20 53 68 61 70 65 72 5f 20 2a 2a 70 6f 6c 69 63 79 20 61 6e 64 20 79 6f 75 20 | or.a**.Shaper_.**policy.and.you. |
| c11a0 | 77 61 6e 74 20 74 6f 2a 2a 20 3a 72 65 66 3a 60 73 65 74 20 69 74 73 20 71 75 65 75 65 73 20 3c | want.to**.:ref:`set.its.queues.< |
| c11c0 | 65 6d 62 65 64 3e 60 20 2a 2a 61 73 20 46 51 2d 43 6f 44 65 6c 2a 2a 2e 00 2a 2a 49 6d 70 6f 72 | embed>`.**as.FQ-CoDel**..**Impor |
| c11e0 | 74 61 6e 74 20 6e 6f 74 65 20 61 62 6f 75 74 20 63 6f 6e 6e 74 72 61 63 6b 20 69 67 6e 6f 72 65 | tant.note.about.conntrack.ignore |
| c1200 | 20 72 75 6c 65 73 3a 2a 2a 20 53 74 61 72 74 69 6e 67 20 66 72 6f 6d 20 76 79 6f 73 2d 31 2e 35 | .rules:**.Starting.from.vyos-1.5 |
| c1220 | 2d 72 6f 6c 6c 69 6e 67 2d 32 30 32 34 30 36 31 32 30 30 32 30 2c 20 69 67 6e 6f 72 65 20 72 75 | -rolling-202406120020,.ignore.ru |
| c1240 | 6c 65 73 20 63 61 6e 20 62 65 20 64 65 66 69 6e 65 64 20 69 6e 20 60 60 73 65 74 20 66 69 72 65 | les.can.be.defined.in.``set.fire |
| c1260 | 77 61 6c 6c 20 5b 69 70 76 34 20 7c 20 69 70 76 36 5d 20 70 72 65 72 6f 75 74 69 6e 67 20 72 61 | wall.[ipv4.|.ipv6].prerouting.ra |
| c1280 | 77 20 2e 2e 2e 60 60 2e 20 49 74 27 73 20 65 78 70 65 63 74 65 64 20 74 68 61 74 20 69 6e 20 74 | w....``..It's.expected.that.in.t |
| c12a0 | 68 65 20 66 75 74 75 72 65 20 74 68 65 20 63 6f 6e 6e 74 72 61 63 6b 20 69 67 6e 6f 72 65 20 72 | he.future.the.conntrack.ignore.r |
| c12c0 | 75 6c 65 73 20 77 69 6c 6c 20 62 65 20 72 65 6d 6f 76 65 64 2e 00 2a 2a 49 6d 70 6f 72 74 61 6e | ules.will.be.removed..**Importan |
| c12e0 | 74 20 6e 6f 74 65 20 61 62 6f 75 74 20 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 73 3a 2a 2a 20 | t.note.about.default-actions:**. |
| c1300 | 49 66 20 61 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 66 6f 72 20 61 6e 79 20 62 61 73 65 | If.a.default.action.for.any.base |
| c1320 | 20 63 68 61 69 6e 20 69 73 20 6e 6f 74 20 64 65 66 69 6e 65 64 2c 20 74 68 65 6e 20 74 68 65 20 | .chain.is.not.defined,.then.the. |
| c1340 | 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 2a 2a 61 63 63 65 70 | default.action.is.set.to.**accep |
| c1360 | 74 2a 2a 20 66 6f 72 20 74 68 61 74 20 63 68 61 69 6e 2e 20 46 6f 72 20 63 75 73 74 6f 6d 20 63 | t**.for.that.chain..For.custom.c |
| c1380 | 68 61 69 6e 73 2c 20 69 66 20 74 68 65 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 69 73 20 | hains,.if.the.default.action.is. |
| c13a0 | 6e 6f 74 20 64 65 66 69 6e 65 64 2c 20 74 68 65 6e 20 74 68 65 20 64 65 66 61 75 6c 74 2d 61 63 | not.defined,.then.the.default-ac |
| c13c0 | 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 2a 2a 64 72 6f 70 2a 2a 00 2a 2a 49 6d 70 6f 72 74 | tion.is.set.to.**drop**.**Import |
| c13e0 | 61 6e 74 20 6e 6f 74 65 20 61 62 6f 75 74 20 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 73 3a 2a | ant.note.about.default-actions:* |
| c1400 | 2a 20 49 66 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 66 6f 72 20 61 6e 79 20 62 61 73 65 | *.If.default.action.for.any.base |
| c1420 | 20 63 68 61 69 6e 20 69 73 20 6e 6f 74 20 64 65 66 69 6e 65 64 2c 20 74 68 65 6e 20 74 68 65 20 | .chain.is.not.defined,.then.the. |
| c1440 | 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 2a 2a 61 63 63 65 70 | default.action.is.set.to.**accep |
| c1460 | 74 2a 2a 20 66 6f 72 20 74 68 61 74 20 63 68 61 69 6e 2e 20 46 6f 72 20 63 75 73 74 6f 6d 20 63 | t**.for.that.chain..For.custom.c |
| c1480 | 68 61 69 6e 73 2c 20 69 66 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 69 73 20 6e 6f 74 20 | hains,.if.default.action.is.not. |
| c14a0 | 64 65 66 69 6e 65 64 2c 20 74 68 65 6e 20 74 68 65 20 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e | defined,.then.the.default-action |
| c14c0 | 20 69 73 20 73 65 74 20 74 6f 20 2a 2a 64 72 6f 70 2a 2a 00 2a 2a 49 6d 70 6f 72 74 61 6e 74 20 | .is.set.to.**drop**.**Important. |
| c14e0 | 6e 6f 74 65 20 61 62 6f 75 74 20 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 73 3a 2a 2a 20 49 66 | note.about.default-actions:**.If |
| c1500 | 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 66 6f 72 20 61 6e 79 20 62 61 73 65 20 63 68 61 | .default.action.for.any.base.cha |
| c1520 | 69 6e 20 69 73 20 6e 6f 74 20 64 65 66 69 6e 65 64 2c 20 74 68 65 6e 20 74 68 65 20 64 65 66 61 | in.is.not.defined,.then.the.defa |
| c1540 | 75 6c 74 20 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 2a 2a 61 63 63 65 70 74 2a 2a 20 | ult.action.is.set.to.**accept**. |
| c1560 | 66 6f 72 20 74 68 61 74 20 63 68 61 69 6e 2e 20 46 6f 72 20 63 75 73 74 6f 6d 20 63 68 61 69 6e | for.that.chain..For.custom.chain |
| c1580 | 73 2c 20 69 66 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 69 73 20 6e 6f 74 20 64 65 66 69 | s,.if.default.action.is.not.defi |
| c15a0 | 6e 65 64 2c 20 74 68 65 6e 20 74 68 65 20 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 20 69 73 20 | ned,.then.the.default-action.is. |
| c15c0 | 73 65 74 20 74 6f 20 2a 2a 64 72 6f 70 2a 2a 2e 00 2a 2a 49 6d 70 6f 72 74 61 6e 74 20 6e 6f 74 | set.to.**drop**..**Important.not |
| c15e0 | 65 20 61 62 6f 75 74 20 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 73 3a 2a 2a 20 49 66 20 64 65 | e.about.default-actions:**.If.de |
| c1600 | 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 66 6f 72 20 61 6e 79 20 63 68 61 69 6e 20 69 73 20 6e 6f | fault.action.for.any.chain.is.no |
| c1620 | 74 20 64 65 66 69 6e 65 64 2c 20 74 68 65 6e 20 74 68 65 20 64 65 66 61 75 6c 74 20 61 63 74 69 | t.defined,.then.the.default.acti |
| c1640 | 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 2a 2a 61 63 63 65 70 74 2a 2a 20 66 6f 72 20 74 68 61 74 | on.is.set.to.**accept**.for.that |
| c1660 | 20 63 68 61 69 6e 2e 20 4f 6e 6c 79 20 66 6f 72 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 73 2c 20 | .chain..Only.for.custom.chains,. |
| c1680 | 74 68 65 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 2a 2a 64 | the.default.action.is.set.to.**d |
| c16a0 | 72 6f 70 2a 2a 2e 00 2a 2a 49 6d 70 6f 72 74 61 6e 74 20 6e 6f 74 65 20 61 62 6f 75 74 20 64 65 | rop**..**Important.note.about.de |
| c16c0 | 66 61 75 6c 74 2d 61 63 74 69 6f 6e 73 3a 2a 2a 20 49 66 20 64 65 66 61 75 6c 74 20 61 63 74 69 | fault-actions:**.If.default.acti |
| c16e0 | 6f 6e 20 66 6f 72 20 61 6e 79 20 63 68 61 69 6e 20 69 73 20 6e 6f 74 20 64 65 66 69 6e 65 64 2c | on.for.any.chain.is.not.defined, |
| c1700 | 20 74 68 65 6e 20 74 68 65 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 | .then.the.default.action.is.set. |
| c1720 | 74 6f 20 2a 2a 64 72 6f 70 2a 2a 20 66 6f 72 20 74 68 61 74 20 63 68 61 69 6e 2e 00 2a 2a 49 6d | to.**drop**.for.that.chain..**Im |
| c1740 | 70 6f 72 74 61 6e 74 20 6e 6f 74 65 20 61 62 6f 75 74 20 64 65 66 61 75 6c 74 2d 61 63 74 69 6f | portant.note.about.default-actio |
| c1760 | 6e 73 3a 2a 2a 20 49 66 20 74 68 65 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 66 6f 72 20 | ns:**.If.the.default.action.for. |
| c1780 | 61 6e 79 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 20 6e 6f 74 20 64 65 66 69 6e 65 64 2c 20 74 | any.base.chain.is.not.defined,.t |
| c17a0 | 68 65 6e 20 74 68 65 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f | hen.the.default.action.is.set.to |
| c17c0 | 20 2a 2a 61 63 63 65 70 74 2a 2a 20 66 6f 72 20 74 68 61 74 20 63 68 61 69 6e 2e 20 46 6f 72 20 | .**accept**.for.that.chain..For. |
| c17e0 | 63 75 73 74 6f 6d 20 63 68 61 69 6e 73 20 69 66 20 61 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f | custom.chains.if.a.default.actio |
| c1800 | 6e 20 69 73 20 6e 6f 74 20 64 65 66 69 6e 65 64 20 74 68 65 6e 20 74 68 65 20 64 65 66 61 75 6c | n.is.not.defined.then.the.defaul |
| c1820 | 74 2d 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 2a 2a 64 72 6f 70 2a 2a 2e 00 2a 2a 49 | t-action.is.set.to.**drop**..**I |
| c1840 | 6d 70 6f 72 74 61 6e 74 20 6e 6f 74 65 20 61 62 6f 75 74 20 64 65 66 61 75 6c 74 2d 61 63 74 69 | mportant.note.about.default-acti |
| c1860 | 6f 6e 73 3a 2a 2a 20 49 66 20 74 68 65 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 66 6f 72 | ons:**.If.the.default.action.for |
| c1880 | 20 61 6e 79 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 20 6e 6f 74 20 64 65 66 69 6e 65 64 2c 20 | .any.base.chain.is.not.defined,. |
| c18a0 | 74 68 65 6e 20 74 68 65 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 | then.the.default.action.is.set.t |
| c18c0 | 6f 20 2a 2a 61 63 63 65 70 74 2a 2a 20 66 6f 72 20 74 68 61 74 20 63 68 61 69 6e 2e 20 46 6f 72 | o.**accept**.for.that.chain..For |
| c18e0 | 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 73 2c 20 69 66 20 74 68 65 20 64 65 66 61 75 6c 74 20 61 | .custom.chains,.if.the.default.a |
| c1900 | 63 74 69 6f 6e 20 69 73 20 6e 6f 74 20 64 65 66 69 6e 65 64 2c 20 74 68 65 6e 20 74 68 65 20 64 | ction.is.not.defined,.then.the.d |
| c1920 | 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 2a 2a 64 72 6f 70 2a 2a | efault-action.is.set.to.**drop** |
| c1940 | 2e 00 2a 2a 49 6d 70 6f 72 74 61 6e 74 20 6e 6f 74 65 20 6f 6e 20 75 73 61 67 65 20 6f 66 20 74 | ..**Important.note.on.usage.of.t |
| c1960 | 65 72 6d 73 3a 2a 2a 20 54 68 65 20 66 69 72 65 77 61 6c 6c 20 6d 61 6b 65 73 20 75 73 65 20 6f | erms:**.The.firewall.makes.use.o |
| c1980 | 66 20 74 68 65 20 74 65 72 6d 73 20 60 66 6f 72 77 61 72 64 60 2c 20 60 69 6e 70 75 74 60 2c 20 | f.the.terms.`forward`,.`input`,. |
| c19a0 | 61 6e 64 20 60 6f 75 74 70 75 74 60 20 66 6f 72 20 66 69 72 65 77 61 6c 6c 20 70 6f 6c 69 63 79 | and.`output`.for.firewall.policy |
| c19c0 | 2e 20 4d 6f 72 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 66 20 4e 65 74 66 69 6c 74 65 72 20 | ..More.information.of.Netfilter. |
| c19e0 | 68 6f 6f 6b 73 20 61 6e 64 20 4c 69 6e 75 78 20 6e 65 74 77 6f 72 6b 69 6e 67 20 70 61 63 6b 65 | hooks.and.Linux.networking.packe |
| c1a00 | 74 20 66 6c 6f 77 73 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 69 6e 20 60 4e 65 74 66 69 6c 74 | t.flows.can.be.found.in.`Netfilt |
| c1a20 | 65 72 2d 48 6f 6f 6b 73 20 3c 68 74 74 70 73 3a 2f 2f 77 69 6b 69 2e 6e 66 74 61 62 6c 65 73 2e | er-Hooks.<https://wiki.nftables. |
| c1a40 | 6f 72 67 2f 77 69 6b 69 2d 6e 66 74 61 62 6c 65 73 2f 69 6e 64 65 78 2e 70 68 70 2f 4e 65 74 66 | org/wiki-nftables/index.php/Netf |
| c1a60 | 69 6c 74 65 72 5f 68 6f 6f 6b 73 3e 60 5f 00 2a 2a 49 6d 70 6f 72 74 61 6e 74 20 6e 6f 74 65 20 | ilter_hooks>`_.**Important.note. |
| c1a80 | 6f 6e 20 75 73 61 67 65 20 6f 66 20 74 65 72 6d 73 3a 2a 2a 20 54 68 65 20 66 69 72 65 77 61 6c | on.usage.of.terms:**.The.firewal |
| c1aa0 | 6c 20 6d 61 6b 65 73 20 75 73 65 20 6f 66 20 74 68 65 20 74 65 72 6d 73 20 60 69 6e 60 2c 20 60 | l.makes.use.of.the.terms.`in`,.` |
| c1ac0 | 6f 75 74 60 2c 20 61 6e 64 20 60 6c 6f 63 61 6c 60 20 66 6f 72 20 66 69 72 65 77 61 6c 6c 20 70 | out`,.and.`local`.for.firewall.p |
| c1ae0 | 6f 6c 69 63 79 2e 20 55 73 65 72 73 20 65 78 70 65 72 69 65 6e 63 65 64 20 77 69 74 68 20 6e 65 | olicy..Users.experienced.with.ne |
| c1b00 | 74 66 69 6c 74 65 72 20 6f 66 74 65 6e 20 63 6f 6e 66 75 73 65 20 60 69 6e 60 20 74 6f 20 62 65 | tfilter.often.confuse.`in`.to.be |
| c1b20 | 20 61 20 72 65 66 65 72 65 6e 63 65 20 74 6f 20 74 68 65 20 60 49 4e 50 55 54 60 20 63 68 61 69 | .a.reference.to.the.`INPUT`.chai |
| c1b40 | 6e 2c 20 61 6e 64 20 60 6f 75 74 60 20 74 68 65 20 60 4f 55 54 50 55 54 60 20 63 68 61 69 6e 20 | n,.and.`out`.the.`OUTPUT`.chain. |
| c1b60 | 66 72 6f 6d 20 6e 65 74 66 69 6c 74 65 72 2e 20 54 68 69 73 20 69 73 20 6e 6f 74 20 74 68 65 20 | from.netfilter..This.is.not.the. |
| c1b80 | 63 61 73 65 2e 20 54 68 65 73 65 20 69 6e 73 74 65 61 64 20 69 6e 64 69 63 61 74 65 20 74 68 65 | case..These.instead.indicate.the |
| c1ba0 | 20 75 73 65 20 6f 66 20 74 68 65 20 60 46 4f 52 57 41 52 44 60 20 63 68 61 69 6e 20 61 6e 64 20 | .use.of.the.`FORWARD`.chain.and. |
| c1bc0 | 65 69 74 68 65 72 20 74 68 65 20 69 6e 70 75 74 20 6f 72 20 6f 75 74 70 75 74 20 69 6e 74 65 72 | either.the.input.or.output.inter |
| c1be0 | 66 61 63 65 2e 20 54 68 65 20 60 49 4e 50 55 54 60 20 63 68 61 69 6e 2c 20 77 68 69 63 68 20 69 | face..The.`INPUT`.chain,.which.i |
| c1c00 | 73 20 75 73 65 64 20 66 6f 72 20 6c 6f 63 61 6c 20 74 72 61 66 66 69 63 20 74 6f 20 74 68 65 20 | s.used.for.local.traffic.to.the. |
| c1c20 | 4f 53 2c 20 69 73 20 61 20 72 65 66 65 72 65 6e 63 65 20 74 6f 20 61 73 20 60 6c 6f 63 61 6c 60 | OS,.is.a.reference.to.as.`local` |
| c1c40 | 20 77 69 74 68 20 72 65 73 70 65 63 74 20 74 6f 20 69 74 73 20 69 6e 70 75 74 20 69 6e 74 65 72 | .with.respect.to.its.input.inter |
| c1c60 | 66 61 63 65 2e 00 2a 2a 49 6d 70 6f 72 74 61 6e 74 20 6e 6f 74 65 3a 2a 2a 20 54 68 69 73 20 64 | face..**Important.note:**.This.d |
| c1c80 | 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 69 73 20 76 61 6c 69 64 20 6f 6e 6c 79 20 66 6f 72 20 56 | ocumentation.is.valid.only.for.V |
| c1ca0 | 79 4f 53 20 53 61 67 69 74 74 61 20 70 72 69 6f 72 20 74 6f 20 31 2e 34 2d 72 6f 6c 6c 69 6e 67 | yOS.Sagitta.prior.to.1.4-rolling |
| c1cc0 | 2d 32 30 32 33 30 38 30 34 30 35 35 37 00 2a 2a 49 6d 70 6f 72 74 61 6e 74 20 6e 6f 74 65 3a 2a | -202308040557.**Important.note:* |
| c1ce0 | 2a 20 54 68 69 73 20 64 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 69 73 20 76 61 6c 69 64 20 6f 6e | *.This.documentation.is.valid.on |
| c1d00 | 6c 79 20 66 6f 72 20 56 79 4f 53 20 53 61 67 69 74 74 61 20 70 72 69 6f 72 20 74 6f 20 31 2e 34 | ly.for.VyOS.Sagitta.prior.to.1.4 |
| c1d20 | 2d 72 6f 6c 6c 69 6e 67 2d 59 59 59 59 4d 4d 44 44 48 48 6d 6d 00 2a 2a 49 6e 70 75 74 20 28 42 | -rolling-YYYYMMDDHHmm.**Input.(B |
| c1d40 | 72 69 64 67 65 29 2a 2a 3a 20 73 74 61 67 65 20 77 68 65 72 65 20 74 72 61 66 66 69 63 20 64 65 | ridge)**:.stage.where.traffic.de |
| c1d60 | 73 74 69 6e 65 64 20 66 6f 72 20 74 68 65 20 62 72 69 64 67 65 20 69 74 73 65 6c 66 20 63 61 6e | stined.for.the.bridge.itself.can |
| c1d80 | 20 62 65 20 66 69 6c 74 65 72 65 64 20 61 6e 64 20 63 6f 6e 74 72 6f 6c 6c 65 64 3a 00 2a 2a 49 | .be.filtered.and.controlled:.**I |
| c1da0 | 6e 70 75 74 2a 2a 3a 20 73 74 61 67 65 20 77 68 65 72 65 20 74 72 61 66 66 69 63 20 64 65 73 74 | nput**:.stage.where.traffic.dest |
| c1dc0 | 69 6e 61 74 65 64 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 20 63 61 6e 20 | inated.to.the.router.itself.can. |
| c1de0 | 62 65 20 66 69 6c 74 65 72 65 64 20 61 6e 64 20 63 6f 6e 74 72 6f 6c 6c 65 64 2e 20 54 68 69 73 | be.filtered.and.controlled..This |
| c1e00 | 20 69 73 20 77 68 65 72 65 20 61 6c 6c 20 72 75 6c 65 73 20 66 6f 72 20 73 65 63 75 72 69 6e 67 | .is.where.all.rules.for.securing |
| c1e20 | 20 74 68 65 20 72 6f 75 74 65 72 20 73 68 6f 75 6c 64 20 74 61 6b 65 20 70 6c 61 63 65 2e 20 54 | .the.router.should.take.place..T |
| c1e40 | 68 69 73 20 69 6e 63 6c 75 64 65 73 20 69 70 76 34 20 61 6e 64 20 69 70 76 36 20 66 69 6c 74 65 | his.includes.ipv4.and.ipv6.filte |
| c1e60 | 72 69 6e 67 20 72 75 6c 65 73 2c 20 64 65 66 69 6e 65 64 20 69 6e 3a 00 2a 2a 49 6e 70 75 74 2a | ring.rules,.defined.in:.**Input* |
| c1e80 | 2a 3a 20 73 74 61 67 65 20 77 68 65 72 65 20 74 72 61 66 66 69 63 20 64 65 73 74 69 6e 65 64 20 | *:.stage.where.traffic.destined. |
| c1ea0 | 66 6f 72 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 20 63 61 6e 20 62 65 20 66 69 6c | for.the.router.itself.can.be.fil |
| c1ec0 | 74 65 72 65 64 20 61 6e 64 20 63 6f 6e 74 72 6f 6c 6c 65 64 2e 20 54 68 69 73 20 69 73 20 77 68 | tered.and.controlled..This.is.wh |
| c1ee0 | 65 72 65 20 61 6c 6c 20 72 75 6c 65 73 20 66 6f 72 20 73 65 63 75 72 69 6e 67 20 74 68 65 20 72 | ere.all.rules.for.securing.the.r |
| c1f00 | 6f 75 74 65 72 20 73 68 6f 75 6c 64 20 74 61 6b 65 20 70 6c 61 63 65 2e 20 54 68 69 73 20 69 6e | outer.should.take.place..This.in |
| c1f20 | 63 6c 75 64 65 73 20 69 70 76 34 20 61 6e 64 20 69 70 76 36 20 66 69 6c 74 65 72 69 6e 67 20 72 | cludes.ipv4.and.ipv6.filtering.r |
| c1f40 | 75 6c 65 73 2c 20 64 65 66 69 6e 65 64 20 69 6e 3a 00 2a 2a 49 6e 74 65 72 66 61 63 65 20 6e 61 | ules,.defined.in:.**Interface.na |
| c1f60 | 6d 65 2a 2a 00 2a 2a 4c 45 46 54 2a 2a 00 2a 2a 4c 45 46 54 3a 2a 2a 20 2a 20 57 41 4e 20 69 6e | me**.**LEFT**.**LEFT:**.*.WAN.in |
| c1f80 | 74 65 72 66 61 63 65 20 6f 6e 20 60 65 74 68 30 2e 32 30 31 60 20 2a 20 60 65 74 68 30 2e 32 30 | terface.on.`eth0.201`.*.`eth0.20 |
| c1fa0 | 31 60 20 69 6e 74 65 72 66 61 63 65 20 49 50 3a 20 60 31 37 32 2e 31 38 2e 32 30 31 2e 31 30 2f | 1`.interface.IP:.`172.18.201.10/ |
| c1fc0 | 32 34 60 20 2a 20 60 76 74 69 31 30 60 20 69 6e 74 65 72 66 61 63 65 20 49 50 3a 20 60 31 30 2e | 24`.*.`vti10`.interface.IP:.`10. |
| c1fe0 | 30 2e 30 2e 32 2f 33 31 60 20 2a 20 60 64 75 6d 30 60 20 69 6e 74 65 72 66 61 63 65 20 49 50 3a | 0.0.2/31`.*.`dum0`.interface.IP: |
| c2000 | 20 60 31 30 2e 30 2e 31 31 2e 31 2f 32 34 60 20 28 66 6f 72 20 74 65 73 74 69 6e 67 20 70 75 72 | .`10.0.11.1/24`.(for.testing.pur |
| c2020 | 70 6f 73 65 73 29 00 2a 2a 4c 61 79 65 72 20 33 20 62 72 69 64 67 65 2a 2a 3a 20 57 68 65 6e 20 | poses).**Layer.3.bridge**:.When. |
| c2040 | 61 6e 20 49 50 20 61 64 64 72 65 73 73 20 69 73 20 61 73 73 69 67 6e 65 64 20 74 6f 20 74 68 65 | an.IP.address.is.assigned.to.the |
| c2060 | 20 62 72 69 64 67 65 20 69 6e 74 65 72 66 61 63 65 2c 20 61 6e 64 20 69 66 20 74 72 61 66 66 69 | .bridge.interface,.and.if.traffi |
| c2080 | 63 20 69 73 20 73 65 6e 74 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 20 74 6f 20 74 68 69 73 20 | c.is.sent.to.the.router.to.this. |
| c20a0 | 49 50 20 28 66 6f 72 20 65 78 61 6d 70 6c 65 20 75 73 69 6e 67 20 73 75 63 68 20 49 50 20 61 73 | IP.(for.example.using.such.IP.as |
| c20c0 | 20 64 65 66 61 75 6c 74 20 67 61 74 65 77 61 79 29 2c 20 74 68 65 6e 20 72 75 6c 65 73 20 64 65 | .default.gateway),.then.rules.de |
| c20e0 | 66 69 6e 65 64 20 66 6f 72 20 2a 2a 62 72 69 64 67 65 20 66 69 72 65 77 61 6c 6c 2a 2a 20 77 6f | fined.for.**bridge.firewall**.wo |
| c2100 | 6e 27 74 20 6d 61 74 63 68 2c 20 61 6e 64 20 66 69 72 65 77 61 6c 6c 20 61 6e 61 6c 79 73 69 73 | n't.match,.and.firewall.analysis |
| c2120 | 20 63 6f 6e 74 69 6e 75 65 73 20 61 74 20 2a 2a 49 50 20 6c 61 79 65 72 2a 2a 2e 00 2a 2a 4c 65 | .continues.at.**IP.layer**..**Le |
| c2140 | 61 66 32 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 2a 2a 00 2a 2a 4c 65 61 66 33 20 63 6f 6e | af2.configuration:**.**Leaf3.con |
| c2160 | 66 69 67 75 72 61 74 69 6f 6e 3a 2a 2a 00 2a 2a 4c 69 6e 75 78 20 73 79 73 74 65 6d 64 2d 6e 65 | figuration:**.**Linux.systemd-ne |
| c2180 | 74 77 6f 72 6b 64 3a 2a 2a 00 2a 2a 4c 6f 63 61 6c 20 70 72 65 66 65 72 65 6e 63 65 20 63 68 65 | tworkd:**.**Local.preference.che |
| c21a0 | 63 6b 2a 2a 00 2a 2a 4c 6f 63 61 6c 20 72 6f 75 74 65 20 63 68 65 63 6b 2a 2a 00 2a 2a 4d 45 44 | ck**.**Local.route.check**.**MED |
| c21c0 | 20 63 68 65 63 6b 2a 2a 00 2a 2a 4d 75 6c 74 69 2d 70 61 74 68 20 63 68 65 63 6b 2a 2a 00 2a 2a | .check**.**Multi-path.check**.** |
| c21e0 | 4e 6f 64 65 20 31 2a 2a 00 2a 2a 4e 6f 64 65 20 31 3a 2a 2a 00 2a 2a 4e 6f 64 65 20 32 2a 2a 00 | Node.1**.**Node.1:**.**Node.2**. |
| c2200 | 2a 2a 4e 6f 64 65 20 32 3a 2a 2a 00 2a 2a 4e 6f 64 65 31 3a 2a 2a 00 2a 2a 4e 6f 64 65 32 3a 2a | **Node.2:**.**Node1:**.**Node2:* |
| c2220 | 2a 00 2a 2a 4f 50 54 49 4f 4e 41 4c 3a 2a 2a 20 45 78 63 6c 75 64 65 20 49 6e 74 65 72 2d 56 4c | *.**OPTIONAL:**.Exclude.Inter-VL |
| c2240 | 41 4e 20 74 72 61 66 66 69 63 20 28 62 65 74 77 65 65 6e 20 56 4c 41 4e 31 30 20 61 6e 64 20 56 | AN.traffic.(between.VLAN10.and.V |
| c2260 | 4c 41 4e 31 31 29 20 66 72 6f 6d 20 50 42 52 00 2a 2a 4f 53 50 46 20 6e 65 74 77 6f 72 6b 20 72 | LAN11).from.PBR.**OSPF.network.r |
| c2280 | 6f 75 74 69 6e 67 20 74 61 62 6c 65 2a 2a 20 e2 80 93 20 69 6e 63 6c 75 64 65 73 20 61 20 6c 69 | outing.table**.....includes.a.li |
| c22a0 | 73 74 20 6f 66 20 61 63 71 75 69 72 65 64 20 72 6f 75 74 65 73 20 66 6f 72 20 61 6c 6c 20 61 63 | st.of.acquired.routes.for.all.ac |
| c22c0 | 63 65 73 73 69 62 6c 65 20 6e 65 74 77 6f 72 6b 73 20 28 6f 72 20 61 67 67 72 65 67 61 74 65 64 | cessible.networks.(or.aggregated |
| c22e0 | 20 61 72 65 61 20 72 61 6e 67 65 73 29 20 6f 66 20 4f 53 50 46 20 73 79 73 74 65 6d 2e 20 22 49 | .area.ranges).of.OSPF.system.."I |
| c2300 | 41 22 20 66 6c 61 67 20 6d 65 61 6e 73 20 74 68 61 74 20 72 6f 75 74 65 20 64 65 73 74 69 6e 61 | A".flag.means.that.route.destina |
| c2320 | 74 69 6f 6e 20 69 73 20 69 6e 20 74 68 65 20 61 72 65 61 20 74 6f 20 77 68 69 63 68 20 74 68 65 | tion.is.in.the.area.to.which.the |
| c2340 | 20 72 6f 75 74 65 72 20 69 73 20 6e 6f 74 20 63 6f 6e 6e 65 63 74 65 64 2c 20 69 2e 65 2e 20 69 | .router.is.not.connected,.i.e..i |
| c2360 | 74 e2 80 99 73 20 61 6e 20 69 6e 74 65 72 2d 61 72 65 61 20 70 61 74 68 2e 20 49 6e 20 73 71 75 | t...s.an.inter-area.path..In.squ |
| c2380 | 61 72 65 20 62 72 61 63 6b 65 74 73 20 61 20 73 75 6d 6d 61 72 79 20 6d 65 74 72 69 63 20 66 6f | are.brackets.a.summary.metric.fo |
| c23a0 | 72 20 61 6c 6c 20 6c 69 6e 6b 73 20 74 68 72 6f 75 67 68 20 77 68 69 63 68 20 61 20 70 61 74 68 | r.all.links.through.which.a.path |
| c23c0 | 20 6c 69 65 73 20 74 6f 20 74 68 69 73 20 6e 65 74 77 6f 72 6b 20 69 73 20 73 70 65 63 69 66 69 | .lies.to.this.network.is.specifi |
| c23e0 | 65 64 2e 20 22 76 69 61 22 20 70 72 65 66 69 78 20 64 65 66 69 6e 65 73 20 61 20 72 6f 75 74 65 | ed.."via".prefix.defines.a.route |
| c2400 | 72 2d 67 61 74 65 77 61 79 2c 20 69 2e 65 2e 20 74 68 65 20 66 69 72 73 74 20 72 6f 75 74 65 72 | r-gateway,.i.e..the.first.router |
| c2420 | 20 6f 6e 20 74 68 65 20 77 61 79 20 74 6f 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 28 | .on.the.way.to.the.destination.( |
| c2440 | 6e 65 78 74 20 68 6f 70 29 2e 20 2a 2a 4f 53 50 46 20 72 6f 75 74 65 72 20 72 6f 75 74 69 6e 67 | next.hop)..**OSPF.router.routing |
| c2460 | 20 74 61 62 6c 65 2a 2a 20 e2 80 93 20 69 6e 63 6c 75 64 65 73 20 61 20 6c 69 73 74 20 6f 66 20 | .table**.....includes.a.list.of. |
| c2480 | 61 63 71 75 69 72 65 64 20 72 6f 75 74 65 73 20 74 6f 20 61 6c 6c 20 61 63 63 65 73 73 69 62 6c | acquired.routes.to.all.accessibl |
| c24a0 | 65 20 41 42 52 73 20 61 6e 64 20 41 53 42 52 73 2e 20 2a 2a 4f 53 50 46 20 65 78 74 65 72 6e 61 | e.ABRs.and.ASBRs..**OSPF.externa |
| c24c0 | 6c 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 2a 2a 20 e2 80 93 20 69 6e 63 6c 75 64 65 73 20 61 | l.routing.table**.....includes.a |
| c24e0 | 20 6c 69 73 74 20 6f 66 20 61 63 71 75 69 72 65 64 20 72 6f 75 74 65 73 20 74 68 61 74 20 61 72 | .list.of.acquired.routes.that.ar |
| c2500 | 65 20 65 78 74 65 72 6e 61 6c 20 74 6f 20 74 68 65 20 4f 53 50 46 20 70 72 6f 63 65 73 73 2e 20 | e.external.to.the.OSPF.process.. |
| c2520 | 22 45 22 20 66 6c 61 67 20 70 6f 69 6e 74 73 20 74 6f 20 74 68 65 20 65 78 74 65 72 6e 61 6c 20 | "E".flag.points.to.the.external. |
| c2540 | 6c 69 6e 6b 20 6d 65 74 72 69 63 20 74 79 70 65 20 28 45 31 20 e2 80 93 20 6d 65 74 72 69 63 20 | link.metric.type.(E1.....metric. |
| c2560 | 74 79 70 65 20 31 2c 20 45 32 20 e2 80 93 20 6d 65 74 72 69 63 20 74 79 70 65 20 32 29 2e 20 45 | type.1,.E2.....metric.type.2)..E |
| c2580 | 78 74 65 72 6e 61 6c 20 6c 69 6e 6b 20 6d 65 74 72 69 63 20 69 73 20 70 72 69 6e 74 65 64 20 69 | xternal.link.metric.is.printed.i |
| c25a0 | 6e 20 74 68 65 20 22 3c 6d 65 74 72 69 63 20 6f 66 20 74 68 65 20 72 6f 75 74 65 72 20 77 68 69 | n.the."<metric.of.the.router.whi |
| c25c0 | 63 68 20 61 64 76 65 72 74 69 73 65 64 20 74 68 65 20 6c 69 6e 6b 3e 2f 3c 6c 69 6e 6b 20 6d 65 | ch.advertised.the.link>/<link.me |
| c25e0 | 74 72 69 63 3e 22 20 66 6f 72 6d 61 74 2e 00 2a 2a 4f 6e 65 20 67 61 74 65 77 61 79 3a 2a 2a 00 | tric>".format..**One.gateway:**. |
| c2600 | 2a 2a 4f 72 69 67 69 6e 20 63 68 65 63 6b 2a 2a 00 2a 2a 4f 75 74 70 75 74 20 28 42 72 69 64 67 | **Origin.check**.**Output.(Bridg |
| c2620 | 65 29 2a 2a 3a 20 73 74 61 67 65 20 77 68 65 72 65 20 74 72 61 66 66 69 63 20 74 68 61 74 20 6f | e)**:.stage.where.traffic.that.o |
| c2640 | 72 69 67 69 6e 61 74 65 73 20 66 72 6f 6d 20 74 68 65 20 62 72 69 64 67 65 20 69 74 73 65 6c 66 | riginates.from.the.bridge.itself |
| c2660 | 20 63 61 6e 20 62 65 20 66 69 6c 74 65 72 65 64 20 61 6e 64 20 63 6f 6e 74 72 6f 6c 6c 65 64 3a | .can.be.filtered.and.controlled: |
| c2680 | 00 2a 2a 4f 75 74 70 75 74 20 46 69 6c 74 65 72 2a 2a 3a 20 60 60 73 65 74 20 66 69 72 65 77 61 | .**Output.Filter**:.``set.firewa |
| c26a0 | 6c 6c 20 5b 69 70 76 34 20 7c 20 69 70 76 36 5d 20 6f 75 74 70 75 74 20 66 69 6c 74 65 72 20 2e | ll.[ipv4.|.ipv6].output.filter.. |
| c26c0 | 2e 2e 60 60 2e 00 2a 2a 4f 75 74 70 75 74 20 46 69 6c 74 65 72 2a 2a 3a 20 60 60 73 65 74 20 66 | ..``..**Output.Filter**:.``set.f |
| c26e0 | 69 72 65 77 61 6c 6c 20 69 70 76 34 20 6f 75 74 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 | irewall.ipv4.output.filter....`` |
| c2700 | 2e 20 52 75 6c 65 73 20 64 65 66 69 6e 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 | ..Rules.defined.in.this.section. |
| c2720 | 61 72 65 20 70 72 6f 63 65 73 73 65 64 20 61 66 74 65 72 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 | are.processed.after.connection.t |
| c2740 | 72 61 63 6b 69 6e 67 20 73 75 62 73 79 73 74 65 6d 2e 00 2a 2a 4f 75 74 70 75 74 20 46 69 6c 74 | racking.subsystem..**Output.Filt |
| c2760 | 65 72 2a 2a 3a 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 6f 75 74 70 75 74 | er**:.``set.firewall.ipv6.output |
| c2780 | 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2e 20 52 75 6c 65 73 20 64 65 66 69 6e 65 64 20 69 6e 20 | .filter....``..Rules.defined.in. |
| c27a0 | 74 68 69 73 20 73 65 63 74 69 6f 6e 20 61 72 65 20 70 72 6f 63 65 73 73 65 64 20 61 66 74 65 72 | this.section.are.processed.after |
| c27c0 | 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 73 75 62 73 79 73 74 65 6d 2e 00 | .connection.tracking.subsystem.. |
| c27e0 | 2a 2a 4f 75 74 70 75 74 20 50 72 65 72 6f 75 74 69 6e 67 2a 2a 3a 20 60 60 73 65 74 20 66 69 72 | **Output.Prerouting**:.``set.fir |
| c2800 | 65 77 61 6c 6c 20 5b 69 70 76 34 20 7c 20 69 70 76 36 5d 20 6f 75 74 70 75 74 20 66 69 6c 74 65 | ewall.[ipv4.|.ipv6].output.filte |
| c2820 | 72 20 2e 2e 2e 60 60 2e 20 41 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 2a 2a 50 72 65 72 6f | r....``..As.described.in.**Prero |
| c2840 | 75 74 69 6e 67 2a 2a 2c 20 72 75 6c 65 73 20 64 65 66 69 6e 65 64 20 69 6e 20 74 68 69 73 20 73 | uting**,.rules.defined.in.this.s |
| c2860 | 65 63 74 69 6f 6e 20 61 72 65 20 70 72 6f 63 65 73 73 65 64 20 62 65 66 6f 72 65 20 63 6f 6e 6e | ection.are.processed.before.conn |
| c2880 | 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 73 75 62 73 79 73 74 65 6d 2e 00 2a 2a 4f 75 74 | ection.tracking.subsystem..**Out |
| c28a0 | 70 75 74 20 50 72 65 72 6f 75 74 69 6e 67 2a 2a 3a 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c | put.Prerouting**:.``set.firewall |
| c28c0 | 20 69 70 76 34 20 6f 75 74 70 75 74 20 72 61 77 20 2e 2e 2e 60 60 2e 20 41 73 20 64 65 73 63 72 | .ipv4.output.raw....``..As.descr |
| c28e0 | 69 62 65 64 20 69 6e 20 2a 2a 50 72 65 72 6f 75 74 69 6e 67 2a 2a 2c 20 72 75 6c 65 73 20 64 65 | ibed.in.**Prerouting**,.rules.de |
| c2900 | 66 69 6e 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 61 72 65 20 70 72 6f 63 65 73 | fined.in.this.section.are.proces |
| c2920 | 73 65 64 20 62 65 66 6f 72 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 73 | sed.before.connection.tracking.s |
| c2940 | 75 62 73 79 73 74 65 6d 2e 00 2a 2a 4f 75 74 70 75 74 20 50 72 65 72 6f 75 74 69 6e 67 2a 2a 3a | ubsystem..**Output.Prerouting**: |
| c2960 | 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 6f 75 74 70 75 74 20 72 61 77 20 | .``set.firewall.ipv6.output.raw. |
| c2980 | 2e 2e 2e 60 60 2e 20 41 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 2a 2a 50 72 65 72 6f 75 74 | ...``..As.described.in.**Prerout |
| c29a0 | 69 6e 67 2a 2a 2c 20 72 75 6c 65 73 20 64 65 66 69 6e 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 | ing**,.rules.defined.in.this.sec |
| c29c0 | 74 69 6f 6e 20 61 72 65 20 70 72 6f 63 65 73 73 65 64 20 62 65 66 6f 72 65 20 63 6f 6e 6e 65 63 | tion.are.processed.before.connec |
| c29e0 | 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 73 75 62 73 79 73 74 65 6d 2e 00 2a 2a 4f 75 74 70 75 | tion.tracking.subsystem..**Outpu |
| c2a00 | 74 2a 2a 3a 20 73 74 61 67 65 20 77 68 65 72 65 20 74 72 61 66 66 69 63 20 74 68 61 74 20 69 73 | t**:.stage.where.traffic.that.is |
| c2a20 | 20 6f 72 69 67 69 6e 61 74 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 | .originated.by.the.router.itself |
| c2a40 | 20 63 61 6e 20 62 65 20 66 69 6c 74 65 72 65 64 20 61 6e 64 20 63 6f 6e 74 72 6f 6c 6c 65 64 2e | .can.be.filtered.and.controlled. |
| c2a60 | 20 42 61 72 65 20 69 6e 20 6d 69 6e 64 20 74 68 61 74 20 74 68 69 73 20 74 72 61 66 66 69 63 20 | .Bare.in.mind.that.this.traffic. |
| c2a80 | 63 61 6e 20 62 65 20 61 20 6e 65 77 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 6f 72 69 67 69 6e 74 65 | can.be.a.new.connection.originte |
| c2aa0 | 64 20 62 79 20 61 20 69 6e 74 65 72 6e 61 6c 20 70 72 6f 63 65 73 73 20 72 75 6e 6e 69 6e 67 20 | d.by.a.internal.process.running. |
| c2ac0 | 6f 6e 20 56 79 4f 53 20 72 6f 75 74 65 72 2c 20 73 75 63 68 20 61 73 20 4e 54 50 2c 20 6f 72 20 | on.VyOS.router,.such.as.NTP,.or. |
| c2ae0 | 63 61 6e 20 62 65 20 61 20 72 65 73 70 6f 6e 73 65 20 74 6f 20 74 72 61 66 66 69 63 20 72 65 63 | can.be.a.response.to.traffic.rec |
| c2b00 | 65 69 76 65 64 20 65 78 74 65 72 6e 61 6c 79 20 74 68 72 6f 75 67 68 20 2a 2a 69 6e 70 75 74 74 | eived.externaly.through.**inputt |
| c2b20 | 2a 2a 20 28 66 6f 72 20 65 78 61 6d 70 6c 65 20 72 65 73 70 6f 6e 73 65 20 74 6f 20 61 6e 20 73 | **.(for.example.response.to.an.s |
| c2b40 | 73 68 20 6c 6f 67 69 6e 20 61 74 74 65 6d 70 74 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 29 2e | sh.login.attempt.to.the.router). |
| c2b60 | 20 54 68 69 73 20 69 6e 63 6c 75 64 65 73 20 69 70 76 34 20 61 6e 64 20 69 70 76 36 20 66 69 6c | .This.includes.ipv4.and.ipv6.fil |
| c2b80 | 74 65 72 69 6e 67 20 72 75 6c 65 73 2c 20 64 65 66 69 6e 65 64 20 69 6e 3a 00 2a 2a 4f 75 74 70 | tering.rules,.defined.in:.**Outp |
| c2ba0 | 75 74 2a 2a 3a 20 73 74 61 67 65 20 77 68 65 72 65 20 74 72 61 66 66 69 63 20 74 68 61 74 20 6f | ut**:.stage.where.traffic.that.o |
| c2bc0 | 72 69 67 69 6e 61 74 65 73 20 66 72 6f 6d 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 | riginates.from.the.router.itself |
| c2be0 | 20 63 61 6e 20 62 65 20 66 69 6c 74 65 72 65 64 20 61 6e 64 20 63 6f 6e 74 72 6f 6c 6c 65 64 2e | .can.be.filtered.and.controlled. |
| c2c00 | 20 42 65 61 72 20 69 6e 20 6d 69 6e 64 20 74 68 61 74 20 74 68 69 73 20 74 72 61 66 66 69 63 20 | .Bear.in.mind.that.this.traffic. |
| c2c20 | 63 61 6e 20 62 65 20 61 20 6e 65 77 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 6f 72 69 67 69 6e 61 74 | can.be.a.new.connection.originat |
| c2c40 | 65 64 20 62 79 20 61 20 69 6e 74 65 72 6e 61 6c 20 70 72 6f 63 65 73 73 20 72 75 6e 6e 69 6e 67 | ed.by.a.internal.process.running |
| c2c60 | 20 6f 6e 20 56 79 4f 53 20 72 6f 75 74 65 72 2c 20 73 75 63 68 20 61 73 20 4e 54 50 2c 20 6f 72 | .on.VyOS.router,.such.as.NTP,.or |
| c2c80 | 20 61 20 72 65 73 70 6f 6e 73 65 20 74 6f 20 74 72 61 66 66 69 63 20 72 65 63 65 69 76 65 64 20 | .a.response.to.traffic.received. |
| c2ca0 | 65 78 74 65 72 6e 61 6c 6c 79 20 74 68 72 6f 75 67 68 20 2a 2a 69 6e 70 75 74 2a 2a 20 28 66 6f | externally.through.**input**.(fo |
| c2cc0 | 72 20 65 78 61 6d 70 6c 65 20 72 65 73 70 6f 6e 73 65 20 74 6f 20 61 6e 20 73 73 68 20 6c 6f 67 | r.example.response.to.an.ssh.log |
| c2ce0 | 69 6e 20 61 74 74 65 6d 70 74 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 29 2e 20 54 68 69 73 20 | in.attempt.to.the.router)..This. |
| c2d00 | 69 6e 63 6c 75 64 65 73 20 69 70 76 34 20 61 6e 64 20 69 70 76 36 20 66 69 6c 74 65 72 69 6e 67 | includes.ipv4.and.ipv6.filtering |
| c2d20 | 20 72 75 6c 65 73 2c 20 64 65 66 69 6e 65 64 20 69 6e 3a 00 2a 2a 4f 75 74 70 75 74 2a 2a 3a 20 | .rules,.defined.in:.**Output**:. |
| c2d40 | 73 74 61 67 65 20 77 68 65 72 65 20 74 72 61 66 66 69 63 20 74 68 61 74 20 6f 72 69 67 69 6e 61 | stage.where.traffic.that.origina |
| c2d60 | 74 65 73 20 66 72 6f 6d 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 20 63 61 6e 20 62 | tes.from.the.router.itself.can.b |
| c2d80 | 65 20 66 69 6c 74 65 72 65 64 20 61 6e 64 20 63 6f 6e 74 72 6f 6c 6c 65 64 2e 20 42 65 61 72 20 | e.filtered.and.controlled..Bear. |
| c2da0 | 69 6e 20 6d 69 6e 64 20 74 68 61 74 20 74 68 69 73 20 74 72 61 66 66 69 63 20 63 61 6e 20 62 65 | in.mind.that.this.traffic.can.be |
| c2dc0 | 20 61 20 6e 65 77 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 6f 72 69 67 69 6e 61 74 65 64 20 62 79 20 | .a.new.connection.originated.by. |
| c2de0 | 61 20 69 6e 74 65 72 6e 61 6c 20 70 72 6f 63 65 73 73 20 72 75 6e 6e 69 6e 67 20 6f 6e 20 56 79 | a.internal.process.running.on.Vy |
| c2e00 | 4f 53 20 72 6f 75 74 65 72 2c 20 73 75 63 68 20 61 73 20 4e 54 50 2c 20 6f 72 20 61 20 72 65 73 | OS.router,.such.as.NTP,.or.a.res |
| c2e20 | 70 6f 6e 73 65 20 74 6f 20 74 72 61 66 66 69 63 20 72 65 63 65 69 76 65 64 20 65 78 74 65 72 6e | ponse.to.traffic.received.extern |
| c2e40 | 61 6c 6c 79 20 74 68 72 6f 75 67 68 20 2a 2a 69 6e 70 75 74 2a 2a 20 28 66 6f 72 20 65 78 61 6d | ally.through.**input**.(for.exam |
| c2e60 | 70 6c 65 20 72 65 73 70 6f 6e 73 65 20 74 6f 20 61 6e 20 73 73 68 20 6c 6f 67 69 6e 20 61 74 74 | ple.response.to.an.ssh.login.att |
| c2e80 | 65 6d 70 74 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 29 2e 20 54 68 69 73 20 69 6e 63 6c 75 64 | empt.to.the.router)..This.includ |
| c2ea0 | 65 73 20 69 70 76 34 20 61 6e 64 20 69 70 76 36 20 72 75 6c 65 73 2c 20 61 6e 64 20 74 77 6f 20 | es.ipv4.and.ipv6.rules,.and.two. |
| c2ec0 | 64 69 66 66 65 72 65 6e 74 20 73 65 63 74 69 6f 6e 73 20 61 72 65 20 70 72 65 73 65 6e 74 3a 00 | different.sections.are.present:. |
| c2ee0 | 2a 2a 4f 75 74 70 75 74 2a 2a 3a 20 73 74 61 67 65 20 77 68 65 72 65 20 74 72 61 66 66 69 63 20 | **Output**:.stage.where.traffic. |
| c2f00 | 74 68 61 74 20 6f 72 69 67 69 6e 61 74 65 73 20 66 72 6f 6d 20 74 68 65 20 72 6f 75 74 65 72 20 | that.originates.from.the.router. |
| c2f20 | 69 74 73 65 6c 66 20 63 61 6e 20 62 65 20 66 69 6c 74 65 72 65 64 20 61 6e 64 20 63 6f 6e 74 72 | itself.can.be.filtered.and.contr |
| c2f40 | 6f 6c 6c 65 64 2e 20 42 65 61 72 20 69 6e 20 6d 69 6e 64 20 74 68 61 74 20 74 68 69 73 20 74 72 | olled..Bear.in.mind.that.this.tr |
| c2f60 | 61 66 66 69 63 20 63 61 6e 20 62 65 20 61 20 6e 65 77 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 6f 72 | affic.can.be.a.new.connection.or |
| c2f80 | 69 67 69 6e 61 74 65 64 20 62 79 20 61 20 69 6e 74 65 72 6e 61 6c 20 70 72 6f 63 65 73 73 20 72 | iginated.by.a.internal.process.r |
| c2fa0 | 75 6e 6e 69 6e 67 20 6f 6e 20 56 79 4f 53 20 72 6f 75 74 65 72 2c 20 73 75 63 68 20 61 73 20 4e | unning.on.VyOS.router,.such.as.N |
| c2fc0 | 54 50 2c 20 6f 72 20 61 20 72 65 73 70 6f 6e 73 65 20 74 6f 20 74 72 61 66 66 69 63 20 72 65 63 | TP,.or.a.response.to.traffic.rec |
| c2fe0 | 65 69 76 65 64 20 65 78 74 65 72 6e 61 6c 79 20 74 68 72 6f 75 67 68 20 2a 2a 69 6e 70 75 74 2a | eived.externaly.through.**input* |
| c3000 | 2a 20 28 66 6f 72 20 65 78 61 6d 70 6c 65 20 72 65 73 70 6f 6e 73 65 20 74 6f 20 61 6e 20 73 73 | *.(for.example.response.to.an.ss |
| c3020 | 68 20 6c 6f 67 69 6e 20 61 74 74 65 6d 70 74 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 29 2e 20 | h.login.attempt.to.the.router).. |
| c3040 | 54 68 69 73 20 69 6e 63 6c 75 64 65 73 20 69 70 76 34 20 61 6e 64 20 69 70 76 36 20 66 69 6c 74 | This.includes.ipv4.and.ipv6.filt |
| c3060 | 65 72 69 6e 67 20 72 75 6c 65 73 2c 20 64 65 66 69 6e 65 64 20 69 6e 3a 00 2a 2a 4f 75 74 70 75 | ering.rules,.defined.in:.**Outpu |
| c3080 | 74 2a 2a 3a 20 73 74 61 67 65 20 77 68 65 72 65 20 74 72 61 66 66 69 63 20 74 68 61 74 20 6f 72 | t**:.stage.where.traffic.that.or |
| c30a0 | 69 67 69 6e 61 74 65 73 20 66 72 6f 6d 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 20 | iginates.from.the.router.itself. |
| c30c0 | 63 61 6e 20 62 65 20 66 69 6c 74 65 72 65 64 20 61 6e 64 20 63 6f 6e 74 72 6f 6c 6c 65 64 2e 20 | can.be.filtered.and.controlled.. |
| c30e0 | 42 65 61 72 20 69 6e 20 6d 69 6e 64 20 74 68 61 74 20 74 68 69 73 20 74 72 61 66 66 69 63 20 63 | Bear.in.mind.that.this.traffic.c |
| c3100 | 61 6e 20 62 65 20 61 20 6e 65 77 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 6f 72 69 67 69 6e 61 74 65 | an.be.a.new.connection.originate |
| c3120 | 64 20 62 79 20 61 20 69 6e 74 65 72 6e 61 6c 20 70 72 6f 63 65 73 73 20 72 75 6e 6e 69 6e 67 20 | d.by.a.internal.process.running. |
| c3140 | 6f 6e 20 56 79 4f 53 20 72 6f 75 74 65 72 2c 20 73 75 63 68 20 61 73 20 4e 54 50 2c 20 6f 72 20 | on.VyOS.router,.such.as.NTP,.or. |
| c3160 | 61 20 72 65 73 70 6f 6e 73 65 20 74 6f 20 74 72 61 66 66 69 63 20 72 65 63 65 69 76 65 64 20 65 | a.response.to.traffic.received.e |
| c3180 | 78 74 65 72 6e 61 6c 79 20 74 68 72 6f 75 67 68 20 2a 2a 69 6e 70 75 74 74 2a 2a 20 28 66 6f 72 | xternaly.through.**inputt**.(for |
| c31a0 | 20 65 78 61 6d 70 6c 65 20 72 65 73 70 6f 6e 73 65 20 74 6f 20 61 6e 20 73 73 68 20 6c 6f 67 69 | .example.response.to.an.ssh.logi |
| c31c0 | 6e 20 61 74 74 65 6d 70 74 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 29 2e 20 54 68 69 73 20 69 | n.attempt.to.the.router)..This.i |
| c31e0 | 6e 63 6c 75 64 65 73 20 69 70 76 34 20 61 6e 64 20 69 70 76 36 20 66 69 6c 74 65 72 69 6e 67 20 | ncludes.ipv4.and.ipv6.filtering. |
| c3200 | 72 75 6c 65 73 2c 20 64 65 66 69 6e 65 64 20 69 6e 3a 00 2a 2a 4f 75 74 70 75 74 2a 2a 3a 20 73 | rules,.defined.in:.**Output**:.s |
| c3220 | 74 61 67 65 20 77 68 65 72 65 20 74 72 61 66 66 69 63 20 74 68 61 74 20 6f 72 69 67 69 6e 61 74 | tage.where.traffic.that.originat |
| c3240 | 65 73 20 66 72 6f 6d 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 20 63 61 6e 20 62 65 | es.from.the.router.itself.can.be |
| c3260 | 20 66 69 6c 74 65 72 65 64 20 61 6e 64 20 63 6f 6e 74 72 6f 6c 6c 65 64 2e 20 42 65 61 72 20 69 | .filtered.and.controlled..Bear.i |
| c3280 | 6e 20 6d 69 6e 64 20 74 68 61 74 20 74 68 69 73 20 74 72 61 66 66 69 63 20 63 61 6e 20 62 65 20 | n.mind.that.this.traffic.can.be. |
| c32a0 | 61 20 6e 65 77 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 6f 72 69 67 69 6e 61 74 65 64 20 62 79 20 61 | a.new.connection.originated.by.a |
| c32c0 | 20 69 6e 74 65 72 6e 61 6c 20 70 72 6f 63 65 73 73 20 72 75 6e 6e 69 6e 67 20 6f 6e 20 74 68 65 | .internal.process.running.on.the |
| c32e0 | 20 56 79 4f 53 20 72 6f 75 74 65 72 20 73 75 63 68 20 61 73 20 4e 54 50 2c 20 6f 72 20 61 20 72 | .VyOS.router.such.as.NTP,.or.a.r |
| c3300 | 65 73 70 6f 6e 73 65 20 74 6f 20 74 72 61 66 66 69 63 20 72 65 63 65 69 76 65 64 20 65 78 74 65 | esponse.to.traffic.received.exte |
| c3320 | 72 6e 61 6c 6c 79 20 74 68 72 6f 75 67 68 20 2a 2a 69 6e 70 75 74 2a 2a 20 28 66 6f 72 20 65 78 | rnally.through.**input**.(for.ex |
| c3340 | 61 6d 70 6c 65 20 72 65 73 70 6f 6e 73 65 20 74 6f 20 61 6e 20 73 73 68 20 6c 6f 67 69 6e 20 61 | ample.response.to.an.ssh.login.a |
| c3360 | 74 74 65 6d 70 74 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 29 2e 20 54 68 69 73 20 69 6e 63 6c | ttempt.to.the.router)..This.incl |
| c3380 | 75 64 65 73 20 69 70 76 34 20 61 6e 64 20 69 70 76 36 20 72 75 6c 65 73 2c 20 61 6e 64 20 74 77 | udes.ipv4.and.ipv6.rules,.and.tw |
| c33a0 | 6f 20 64 69 66 66 65 72 65 6e 74 20 73 65 63 74 69 6f 6e 73 20 61 72 65 20 70 72 65 73 65 6e 74 | o.different.sections.are.present |
| c33c0 | 3a 00 2a 2a 50 65 65 72 20 61 64 64 72 65 73 73 2a 2a 00 2a 2a 50 65 72 66 6f 72 6d 61 6e 63 65 | :.**Peer.address**.**Performance |
| c33e0 | 20 4f 76 65 72 68 65 61 64 73 2a 2a 3a 20 54 68 65 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 70 72 | .Overheads**:.The.translation.pr |
| c3400 | 6f 63 65 73 73 20 63 61 6e 20 69 6e 74 72 6f 64 75 63 65 20 6c 61 74 65 6e 63 79 20 61 6e 64 20 | ocess.can.introduce.latency.and. |
| c3420 | 70 6f 74 65 6e 74 69 61 6c 20 70 65 72 66 6f 72 6d 61 6e 63 65 20 62 6f 74 74 6c 65 6e 65 63 6b | potential.performance.bottleneck |
| c3440 | 73 2c 20 65 73 70 65 63 69 61 6c 6c 79 20 75 6e 64 65 72 20 68 69 67 68 20 6c 6f 61 64 2e 00 2a | s,.especially.under.high.load..* |
| c3460 | 2a 50 6f 6c 69 63 79 20 52 6f 75 74 65 2a 2a 3a 20 72 75 6c 65 73 20 64 65 66 69 6e 65 64 20 75 | *Policy.Route**:.rules.defined.u |
| c3480 | 6e 64 65 72 20 60 60 73 65 74 20 70 6f 6c 69 63 79 20 5b 72 6f 75 74 65 20 7c 20 72 6f 75 74 65 | nder.``set.policy.[route.|.route |
| c34a0 | 36 5d 20 2e 2e 2e 60 60 2e 00 2a 2a 50 6f 6c 69 63 79 20 64 65 66 69 6e 69 74 69 6f 6e 3a 2a 2a | 6]....``..**Policy.definition:** |
| c34c0 | 00 2a 2a 50 6f 72 74 20 41 6c 6c 6f 63 61 74 69 6f 6e 20 4c 69 6d 69 74 73 2a 2a 3a 20 45 61 63 | .**Port.Allocation.Limits**:.Eac |
| c34e0 | 68 20 70 75 62 6c 69 63 20 49 50 20 61 64 64 72 65 73 73 20 68 61 73 20 61 20 6c 69 6d 69 74 65 | h.public.IP.address.has.a.limite |
| c3500 | 64 20 6e 75 6d 62 65 72 20 6f 66 20 70 6f 72 74 73 2c 20 77 68 69 63 68 20 63 61 6e 20 62 65 20 | d.number.of.ports,.which.can.be. |
| c3520 | 65 78 68 61 75 73 74 65 64 2c 20 61 66 66 65 63 74 69 6e 67 20 74 68 65 20 61 62 69 6c 69 74 79 | exhausted,.affecting.the.ability |
| c3540 | 20 74 6f 20 65 73 74 61 62 6c 69 73 68 20 6e 65 77 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2e 00 2a | .to.establish.new.connections..* |
| c3560 | 2a 50 6f 72 74 20 43 6f 6e 74 72 6f 6c 20 50 72 6f 74 6f 63 6f 6c 2a 2a 3a 20 50 43 50 20 69 73 | *Port.Control.Protocol**:.PCP.is |
| c3580 | 20 6e 6f 74 20 69 6d 70 6c 65 6d 65 6e 74 65 64 2e 00 2a 2a 50 6f 73 74 72 6f 75 74 69 6e 67 2a | .not.implemented..**Postrouting* |
| c35a0 | 2a 3a 20 61 73 20 69 6e 20 2a 2a 50 72 65 72 6f 75 74 69 6e 67 2a 2a 2c 20 73 65 76 65 72 61 6c | *:.as.in.**Prerouting**,.several |
| c35c0 | 20 61 63 74 69 6f 6e 73 20 64 65 66 69 6e 65 64 20 69 6e 20 64 69 66 66 65 72 65 6e 74 20 70 61 | .actions.defined.in.different.pa |
| c35e0 | 72 74 73 20 6f 66 20 56 79 4f 53 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 61 72 65 20 70 65 | rts.of.VyOS.configuration.are.pe |
| c3600 | 72 66 6f 72 6d 65 64 20 69 6e 20 74 68 69 73 20 73 74 61 67 65 2e 20 54 68 69 73 20 69 6e 63 6c | rformed.in.this.stage..This.incl |
| c3620 | 75 64 65 73 3a 00 2a 2a 50 72 65 72 6f 75 74 69 6e 67 20 28 42 72 69 64 67 65 29 2a 2a 3a 20 61 | udes:.**Prerouting.(Bridge)**:.a |
| c3640 | 6c 6c 20 70 61 63 6b 65 74 73 20 74 68 61 74 20 61 72 65 20 72 65 63 65 69 76 65 64 20 62 79 20 | ll.packets.that.are.received.by. |
| c3660 | 74 68 65 20 62 72 69 64 67 65 20 61 72 65 20 70 72 6f 63 65 73 73 65 64 20 69 6e 20 74 68 69 73 | the.bridge.are.processed.in.this |
| c3680 | 20 73 74 61 67 65 2c 20 72 65 67 61 72 64 6c 65 73 73 20 6f 66 20 74 68 65 20 64 65 73 74 69 6e | .stage,.regardless.of.the.destin |
| c36a0 | 61 74 69 6f 6e 20 6f 66 20 74 68 65 20 70 61 63 6b 65 74 2e 20 46 69 72 73 74 20 66 69 6c 74 65 | ation.of.the.packet..First.filte |
| c36c0 | 72 73 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 64 20 68 65 72 65 2c 20 61 6e 64 2f 6f 72 20 61 | rs.can.be.applied.here,.and/or.a |
| c36e0 | 6c 73 6f 20 63 6f 6e 66 69 67 75 72 65 20 72 75 6c 65 73 20 66 6f 72 20 69 67 6e 6f 72 69 6e 67 | lso.configure.rules.for.ignoring |
| c3700 | 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 73 79 73 74 65 6d 2c 20 61 6e 64 | .connection.tracking.system,.and |
| c3720 | 20 61 6c 73 6f 20 61 70 70 6c 79 20 70 6f 6c 69 63 79 20 72 6f 75 74 69 6e 67 20 75 73 69 6e 67 | .also.apply.policy.routing.using |
| c3740 | 20 60 60 73 65 74 60 60 20 6f 70 74 69 6f 6e 20 77 68 69 6c 65 20 64 65 66 69 6e 69 6e 67 20 74 | .``set``.option.while.defining.t |
| c3760 | 68 65 20 72 75 6c 65 2e 20 54 68 65 20 72 65 6c 65 76 61 6e 74 20 63 6f 6e 66 69 67 75 72 61 74 | he.rule..The.relevant.configurat |
| c3780 | 69 6f 6e 20 74 68 61 74 20 61 63 74 73 20 69 6e 3a 00 2a 2a 50 72 65 72 6f 75 74 69 6e 67 20 28 | ion.that.acts.in:.**Prerouting.( |
| c37a0 | 42 72 69 64 67 65 29 2a 2a 3a 20 61 6c 6c 20 70 61 63 6b 65 74 73 20 74 68 61 74 20 61 72 65 20 | Bridge)**:.all.packets.that.are. |
| c37c0 | 72 65 63 65 69 76 65 64 20 62 79 20 74 68 65 20 62 72 69 64 67 65 20 61 72 65 20 70 72 6f 63 65 | received.by.the.bridge.are.proce |
| c37e0 | 73 73 65 64 20 69 6e 20 74 68 69 73 20 73 74 61 67 65 2c 20 72 65 67 61 72 64 6c 65 73 73 20 6f | ssed.in.this.stage,.regardless.o |
| c3800 | 66 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 6f 66 20 74 68 65 20 70 61 63 6b 65 74 2e | f.the.destination.of.the.packet. |
| c3820 | 20 46 69 72 73 74 20 66 69 6c 74 65 72 73 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 64 20 68 65 | .First.filters.can.be.applied.he |
| c3840 | 72 65 2c 20 61 6e 64 2f 6f 72 20 61 6c 73 6f 20 63 6f 6e 66 69 67 75 72 65 20 72 75 6c 65 73 20 | re,.and/or.also.configure.rules. |
| c3860 | 66 6f 72 20 69 67 6e 6f 72 69 6e 67 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 | for.ignoring.connection.tracking |
| c3880 | 20 73 79 73 74 65 6d 2e 20 54 68 65 20 72 65 6c 65 76 61 6e 74 20 63 6f 6e 66 69 67 75 72 61 74 | .system..The.relevant.configurat |
| c38a0 | 69 6f 6e 20 74 68 61 74 20 61 63 74 73 20 69 6e 3a 00 2a 2a 50 72 65 72 6f 75 74 69 6e 67 2a 2a | ion.that.acts.in:.**Prerouting** |
| c38c0 | 3a 20 41 6c 6c 20 70 61 63 6b 65 74 73 20 74 68 61 74 20 61 72 65 20 72 65 63 65 69 76 65 64 20 | :.All.packets.that.are.received. |
| c38e0 | 62 79 20 74 68 65 20 72 6f 75 74 65 72 20 61 72 65 20 70 72 6f 63 65 73 73 65 64 20 69 6e 20 74 | by.the.router.are.processed.in.t |
| c3900 | 68 69 73 20 73 74 61 67 65 2c 20 72 65 67 61 72 64 6c 65 73 73 20 6f 66 20 74 68 65 20 64 65 73 | his.stage,.regardless.of.the.des |
| c3920 | 74 69 6e 61 74 69 6f 6e 20 6f 66 20 74 68 65 20 70 61 63 6b 65 74 2e 20 53 74 61 72 74 69 6e 67 | tination.of.the.packet..Starting |
| c3940 | 20 66 72 6f 6d 20 76 79 6f 73 2d 31 2e 35 2d 72 6f 6c 6c 69 6e 67 2d 32 30 32 34 30 36 31 32 30 | .from.vyos-1.5-rolling-202406120 |
| c3960 | 30 32 30 2c 20 61 20 6e 65 77 20 73 65 63 74 69 6f 6e 20 77 61 73 20 61 64 64 65 64 20 74 6f 20 | 020,.a.new.section.was.added.to. |
| c3980 | 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 20 54 68 65 72 65 20 61 72 | firewall.configuration..There.ar |
| c39a0 | 65 20 73 65 76 65 72 61 6c 20 61 63 74 69 6f 6e 73 20 74 68 61 74 20 63 61 6e 20 62 65 20 64 6f | e.several.actions.that.can.be.do |
| c39c0 | 6e 65 20 69 6e 20 74 68 69 73 20 73 74 61 67 65 2c 20 61 6e 64 20 63 75 72 72 65 6e 74 6c 79 20 | ne.in.this.stage,.and.currently. |
| c39e0 | 74 68 65 73 65 20 61 63 74 69 6f 6e 73 20 61 72 65 20 61 6c 73 6f 20 64 65 66 69 6e 65 64 20 69 | these.actions.are.also.defined.i |
| c3a00 | 6e 20 64 69 66 66 65 72 65 6e 74 20 70 61 72 74 73 20 69 6e 20 56 79 4f 53 20 63 6f 6e 66 69 67 | n.different.parts.in.VyOS.config |
| c3a20 | 75 72 61 74 69 6f 6e 2e 20 4f 72 64 65 72 20 69 73 20 69 6d 70 6f 72 74 61 6e 74 2c 20 61 6e 64 | uration..Order.is.important,.and |
| c3a40 | 20 72 65 6c 65 76 61 6e 74 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 61 63 74 | .relevant.configuration.that.act |
| c3a60 | 73 20 69 6e 20 74 68 69 73 20 73 74 61 67 65 20 61 72 65 3a 00 2a 2a 50 72 65 72 6f 75 74 69 6e | s.in.this.stage.are:.**Preroutin |
| c3a80 | 67 2a 2a 3a 20 41 6c 6c 20 70 61 63 6b 65 74 73 20 74 68 61 74 20 61 72 65 20 72 65 63 65 69 76 | g**:.All.packets.that.are.receiv |
| c3aa0 | 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 20 61 72 65 20 70 72 6f 63 65 73 73 65 64 20 69 | ed.by.the.router.are.processed.i |
| c3ac0 | 6e 20 74 68 69 73 20 73 74 61 67 65 2c 20 72 65 67 61 72 64 6c 65 73 73 20 6f 66 20 74 68 65 20 | n.this.stage,.regardless.of.the. |
| c3ae0 | 64 65 73 74 69 6e 61 74 69 6f 6e 20 6f 66 20 74 68 65 20 70 61 63 6b 65 74 2e 20 53 74 61 72 74 | destination.of.the.packet..Start |
| c3b00 | 69 6e 67 20 66 72 6f 6d 20 76 79 6f 73 2d 31 2e 35 2d 72 6f 6c 6c 69 6e 67 2d 32 30 32 34 30 36 | ing.from.vyos-1.5-rolling-202406 |
| c3b20 | 31 32 30 30 32 30 2c 20 61 20 6e 65 77 20 73 65 63 74 69 6f 6e 20 77 61 73 20 61 64 64 65 64 20 | 120020,.a.new.section.was.added. |
| c3b40 | 74 6f 20 74 68 65 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 20 54 | to.the.firewall.configuration..T |
| c3b60 | 68 65 72 65 20 61 72 65 20 73 65 76 65 72 61 6c 20 61 63 74 69 6f 6e 73 20 74 68 61 74 20 63 61 | here.are.several.actions.that.ca |
| c3b80 | 6e 20 62 65 20 64 6f 6e 65 20 69 6e 20 74 68 69 73 20 73 74 61 67 65 2c 20 61 6e 64 20 63 75 72 | n.be.done.in.this.stage,.and.cur |
| c3ba0 | 72 65 6e 74 6c 79 20 74 68 65 73 65 20 61 63 74 69 6f 6e 73 20 61 72 65 20 61 6c 73 6f 20 64 65 | rently.these.actions.are.also.de |
| c3bc0 | 66 69 6e 65 64 20 69 6e 20 64 69 66 66 65 72 65 6e 74 20 70 61 72 74 73 20 6f 66 20 74 68 65 20 | fined.in.different.parts.of.the. |
| c3be0 | 56 79 4f 53 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 20 4f 72 64 65 72 20 69 73 20 69 6d 70 | VyOS.configuration..Order.is.imp |
| c3c00 | 6f 72 74 61 6e 74 2c 20 61 6e 64 20 74 68 65 20 72 65 6c 65 76 61 6e 74 20 63 6f 6e 66 69 67 75 | ortant,.and.the.relevant.configu |
| c3c20 | 72 61 74 69 6f 6e 20 74 68 61 74 20 61 63 74 73 20 69 6e 20 74 68 69 73 20 73 74 61 67 65 20 61 | ration.that.acts.in.this.stage.a |
| c3c40 | 72 65 3a 00 2a 2a 50 72 65 72 6f 75 74 69 6e 67 2a 2a 3a 20 73 65 76 65 72 61 6c 20 61 63 74 69 | re:.**Prerouting**:.several.acti |
| c3c60 | 6f 6e 73 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 69 6e 20 74 68 69 73 20 73 74 61 67 65 2c 20 61 | ons.can.be.done.in.this.stage,.a |
| c3c80 | 6e 64 20 63 75 72 72 65 6e 74 6c 79 20 74 68 65 73 65 20 61 63 74 69 6f 6e 73 20 61 72 65 20 64 | nd.currently.these.actions.are.d |
| c3ca0 | 65 66 69 6e 65 64 20 69 6e 20 64 69 66 66 65 72 65 6e 74 20 70 61 72 74 73 20 69 6e 20 56 79 4f | efined.in.different.parts.in.VyO |
| c3cc0 | 53 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 20 4f 72 64 65 72 20 69 73 20 69 6d 70 6f 72 74 | S.configuration..Order.is.import |
| c3ce0 | 61 6e 74 2c 20 61 6e 64 20 61 6c 6c 20 74 68 65 73 65 20 61 63 74 69 6f 6e 73 20 61 72 65 20 70 | ant,.and.all.these.actions.are.p |
| c3d00 | 65 72 66 6f 72 6d 65 64 20 62 65 66 6f 72 65 20 61 6e 79 20 61 63 74 69 6f 6e 73 20 64 65 66 69 | erformed.before.any.actions.defi |
| c3d20 | 6e 65 64 20 75 6e 64 65 72 20 60 60 66 69 72 65 77 61 6c 6c 60 60 20 73 65 63 74 69 6f 6e 2e 20 | ned.under.``firewall``.section.. |
| c3d40 | 52 65 6c 65 76 61 6e 74 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 61 63 74 73 | Relevant.configuration.that.acts |
| c3d60 | 20 69 6e 20 74 68 69 73 20 73 74 61 67 65 20 61 72 65 3a 00 2a 2a 50 72 65 72 6f 75 74 69 6e 67 | .in.this.stage.are:.**Prerouting |
| c3d80 | 2a 2a 3a 20 73 65 76 65 72 61 6c 20 61 63 74 69 6f 6e 73 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 | **:.several.actions.can.be.done. |
| c3da0 | 69 6e 20 74 68 69 73 20 73 74 61 67 65 2c 20 61 6e 64 20 63 75 72 72 65 6e 74 6c 79 20 74 68 65 | in.this.stage,.and.currently.the |
| c3dc0 | 73 65 20 61 63 74 69 6f 6e 73 20 61 72 65 20 64 65 66 69 6e 65 64 20 69 6e 20 64 69 66 66 65 72 | se.actions.are.defined.in.differ |
| c3de0 | 65 6e 74 20 70 61 72 74 73 20 69 6e 20 76 79 6f 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e | ent.parts.in.vyos.configuration. |
| c3e00 | 20 4f 72 64 65 72 20 69 73 20 69 6d 70 6f 72 74 61 6e 74 2c 20 61 6e 64 20 61 6c 6c 20 74 68 65 | .Order.is.important,.and.all.the |
| c3e20 | 73 65 20 61 63 74 69 6f 6e 73 20 61 72 65 20 70 65 72 66 6f 72 6d 65 64 20 62 65 66 6f 72 65 20 | se.actions.are.performed.before. |
| c3e40 | 61 6e 79 20 61 63 74 69 6f 6e 73 20 64 65 66 69 6e 65 20 75 6e 64 65 72 20 60 60 66 69 72 65 77 | any.actions.define.under.``firew |
| c3e60 | 61 6c 6c 60 60 20 73 65 63 74 69 6f 6e 2e 20 52 65 6c 65 76 61 6e 74 20 63 6f 6e 66 69 67 75 72 | all``.section..Relevant.configur |
| c3e80 | 61 74 69 6f 6e 20 74 68 61 74 20 61 63 74 73 20 69 6e 20 74 68 69 73 20 73 74 61 67 65 20 61 72 | ation.that.acts.in.this.stage.ar |
| c3ea0 | 65 3a 00 2a 2a 50 72 69 6d 61 72 79 2a 2a 00 2a 2a 51 75 65 75 65 69 6e 67 20 64 69 73 63 69 70 | e:.**Primary**.**Queueing.discip |
| c3ec0 | 6c 69 6e 65 2a 2a 20 46 61 69 72 2f 46 6c 6f 77 20 51 75 65 75 65 20 43 6f 44 65 6c 2e 00 2a 2a | line**.Fair/Flow.Queue.CoDel..** |
| c3ee0 | 51 75 65 75 65 69 6e 67 20 64 69 73 63 69 70 6c 69 6e 65 3a 2a 2a 20 44 65 66 69 63 69 74 20 52 | Queueing.discipline:**.Deficit.R |
| c3f00 | 6f 75 6e 64 20 52 6f 62 69 6e 2e 00 2a 2a 51 75 65 75 65 69 6e 67 20 64 69 73 63 69 70 6c 69 6e | ound.Robin..**Queueing.disciplin |
| c3f20 | 65 3a 2a 2a 20 44 65 66 69 63 69 74 20 6d 6f 64 65 2e 00 2a 2a 51 75 65 75 65 69 6e 67 20 64 69 | e:**.Deficit.mode..**Queueing.di |
| c3f40 | 73 63 69 70 6c 69 6e 65 3a 2a 2a 20 47 65 6e 65 72 61 6c 69 7a 65 64 20 52 61 6e 64 6f 6d 20 45 | scipline:**.Generalized.Random.E |
| c3f60 | 61 72 6c 79 20 44 72 6f 70 2e 00 2a 2a 51 75 65 75 65 69 6e 67 20 64 69 73 63 69 70 6c 69 6e 65 | arly.Drop..**Queueing.discipline |
| c3f80 | 3a 2a 2a 20 48 69 65 72 61 72 63 68 69 63 61 6c 20 54 6f 6b 65 6e 20 42 75 63 6b 65 74 2e 00 2a | :**.Hierarchical.Token.Bucket..* |
| c3fa0 | 2a 51 75 65 75 65 69 6e 67 20 64 69 73 63 69 70 6c 69 6e 65 3a 2a 2a 20 49 6e 67 72 65 73 73 20 | *Queueing.discipline:**.Ingress. |
| c3fc0 | 70 6f 6c 69 63 65 72 2e 00 2a 2a 51 75 65 75 65 69 6e 67 20 64 69 73 63 69 70 6c 69 6e 65 3a 2a | policer..**Queueing.discipline:* |
| c3fe0 | 2a 20 50 46 49 46 4f 20 28 50 61 63 6b 65 74 20 46 69 72 73 74 20 49 6e 20 46 69 72 73 74 20 4f | *.PFIFO.(Packet.First.In.First.O |
| c4000 | 75 74 29 2e 00 2a 2a 51 75 65 75 65 69 6e 67 20 64 69 73 63 69 70 6c 69 6e 65 3a 2a 2a 20 50 52 | ut)..**Queueing.discipline:**.PR |
| c4020 | 49 4f 2e 00 2a 2a 51 75 65 75 65 69 6e 67 20 64 69 73 63 69 70 6c 69 6e 65 3a 2a 2a 20 53 46 51 | IO..**Queueing.discipline:**.SFQ |
| c4040 | 20 28 53 74 6f 63 68 61 73 74 69 63 20 46 61 69 72 6e 65 73 73 20 51 75 65 75 69 6e 67 29 2e 00 | .(Stochastic.Fairness.Queuing).. |
| c4060 | 2a 2a 51 75 65 75 65 69 6e 67 20 64 69 73 63 69 70 6c 69 6e 65 3a 2a 2a 20 54 6f 63 6b 65 6e 20 | **Queueing.discipline:**.Tocken. |
| c4080 | 42 75 63 6b 65 74 20 46 69 6c 74 65 72 2e 00 2a 2a 51 75 65 75 65 69 6e 67 20 64 69 73 63 69 70 | Bucket.Filter..**Queueing.discip |
| c40a0 | 6c 69 6e 65 3a 2a 2a 20 54 6f 6b 65 6e 20 42 75 63 6b 65 74 20 46 69 6c 74 65 72 2e 00 2a 2a 51 | line:**.Token.Bucket.Filter..**Q |
| c40c0 | 75 65 75 65 69 6e 67 20 64 69 73 63 69 70 6c 69 6e 65 3a 2a 2a 20 6e 65 74 65 6d 20 28 4e 65 74 | ueueing.discipline:**.netem.(Net |
| c40e0 | 77 6f 72 6b 20 45 6d 75 6c 61 74 6f 72 29 20 2b 20 54 42 46 20 28 54 6f 6b 65 6e 20 42 75 63 6b | work.Emulator).+.TBF.(Token.Buck |
| c4100 | 65 74 20 46 69 6c 74 65 72 29 2e 00 2a 2a 52 31 20 4d 41 43 73 65 63 30 31 2a 2a 00 2a 2a 52 31 | et.Filter)..**R1.MACsec01**.**R1 |
| c4120 | 20 53 74 61 74 69 63 20 4b 65 79 2a 2a 00 2a 2a 52 31 2a 2a 00 2a 2a 52 32 20 4d 41 43 73 65 63 | .Static.Key**.**R1**.**R2.MACsec |
| c4140 | 30 32 2a 2a 00 2a 2a 52 32 20 53 74 61 74 69 63 20 4b 65 79 2a 2a 00 2a 2a 52 32 2a 2a 00 2a 2a | 02**.**R2.Static.Key**.**R2**.** |
| c4160 | 52 41 44 49 55 53 20 62 61 73 65 64 20 49 50 20 70 6f 6f 6c 73 20 28 46 72 61 6d 65 64 2d 49 50 | RADIUS.based.IP.pools.(Framed-IP |
| c4180 | 2d 41 64 64 72 65 73 73 29 2a 2a 00 2a 2a 52 41 44 49 55 53 20 73 65 73 73 69 6f 6e 73 20 6d 61 | -Address)**.**RADIUS.sessions.ma |
| c41a0 | 6e 61 67 65 6d 65 6e 74 20 44 4d 2f 43 6f 41 2a 2a 00 2a 2a 52 49 47 48 54 2a 2a 00 2a 2a 52 49 | nagement.DM/CoA**.**RIGHT**.**RI |
| c41c0 | 47 48 54 3a 2a 2a 20 2a 20 57 41 4e 20 69 6e 74 65 72 66 61 63 65 20 6f 6e 20 60 65 74 68 30 2e | GHT:**.*.WAN.interface.on.`eth0. |
| c41e0 | 32 30 32 60 20 2a 20 60 65 74 68 30 2e 32 30 31 60 20 69 6e 74 65 72 66 61 63 65 20 49 50 3a 20 | 202`.*.`eth0.201`.interface.IP:. |
| c4200 | 60 31 37 32 2e 31 38 2e 32 30 32 2e 31 30 2f 32 34 60 20 2a 20 60 76 74 69 31 30 60 20 69 6e 74 | `172.18.202.10/24`.*.`vti10`.int |
| c4220 | 65 72 66 61 63 65 20 49 50 3a 20 60 31 30 2e 30 2e 30 2e 33 2f 33 31 60 20 2a 20 60 64 75 6d 30 | erface.IP:.`10.0.0.3/31`.*.`dum0 |
| c4240 | 60 20 69 6e 74 65 72 66 61 63 65 20 49 50 3a 20 60 31 30 2e 30 2e 31 32 2e 31 2f 32 34 60 20 28 | `.interface.IP:.`10.0.12.1/24`.( |
| c4260 | 66 6f 72 20 74 65 73 74 69 6e 67 20 70 75 72 70 6f 73 65 73 29 00 2a 2a 52 6f 75 74 65 72 20 31 | for.testing.purposes).**Router.1 |
| c4280 | 2a 2a 00 2a 2a 52 6f 75 74 65 72 20 32 2a 2a 00 2a 2a 52 6f 75 74 65 72 20 33 2a 2a 00 2a 2a 52 | **.**Router.2**.**Router.3**.**R |
| c42a0 | 6f 75 74 65 72 2d 49 44 20 63 68 65 63 6b 2a 2a 00 2a 2a 52 6f 75 74 65 73 20 6c 65 61 72 6e 65 | outer-ID.check**.**Routes.learne |
| c42c0 | 64 20 61 66 74 65 72 20 72 6f 75 74 69 6e 67 20 70 6f 6c 69 63 79 20 61 70 70 6c 69 65 64 3a 2a | d.after.routing.policy.applied:* |
| c42e0 | 2a 00 2a 2a 52 6f 75 74 65 73 20 6c 65 61 72 6e 65 64 20 62 65 66 6f 72 65 20 72 6f 75 74 69 6e | *.**Routes.learned.before.routin |
| c4300 | 67 20 70 6f 6c 69 63 79 20 61 70 70 6c 69 65 64 3a 2a 2a 00 2a 2a 53 57 31 2a 2a 00 2a 2a 53 57 | g.policy.applied:**.**SW1**.**SW |
| c4320 | 32 2a 2a 00 2a 2a 53 63 61 6c 61 62 69 6c 69 74 79 2a 2a 3a 20 49 53 50 73 20 63 61 6e 20 73 75 | 2**.**Scalability**:.ISPs.can.su |
| c4340 | 70 70 6f 72 74 20 6d 6f 72 65 20 63 75 73 74 6f 6d 65 72 73 20 77 69 74 68 6f 75 74 20 6e 65 65 | pport.more.customers.without.nee |
| c4360 | 64 69 6e 67 20 61 20 70 72 6f 70 6f 72 74 69 6f 6e 61 6c 20 69 6e 63 72 65 61 73 65 20 69 6e 20 | ding.a.proportional.increase.in. |
| c4380 | 70 75 62 6c 69 63 20 49 50 20 61 64 64 72 65 73 73 65 73 2e 00 2a 2a 53 65 63 6f 6e 64 61 72 79 | public.IP.addresses..**Secondary |
| c43a0 | 2a 2a 00 2a 2a 53 65 74 74 69 6e 67 20 75 70 20 49 50 53 65 63 2a 2a 00 2a 2a 53 65 74 74 69 6e | **.**Setting.up.IPSec**.**Settin |
| c43c0 | 67 20 75 70 20 74 68 65 20 47 52 45 20 74 75 6e 6e 65 6c 2a 2a 00 2a 2a 53 6f 75 72 63 65 20 4e | g.up.the.GRE.tunnel**.**Source.N |
| c43e0 | 41 54 2a 2a 3a 20 72 75 6c 65 73 20 64 65 66 69 6e 65 64 20 75 6e 64 65 72 20 60 60 73 65 74 20 | AT**:.rules.defined.under.``set. |
| c4400 | 5b 6e 61 74 20 7c 20 6e 61 74 36 36 5d 20 64 65 73 74 69 6e 61 74 69 6f 6e 2e 2e 2e 60 60 2e 00 | [nat.|.nat66].destination...``.. |
| c4420 | 2a 2a 53 70 69 6e 65 31 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 2a 2a 00 2a 2a 53 74 61 74 | **Spine1.Configuration:**.**Stat |
| c4440 | 75 73 2a 2a 00 2a 2a 54 6f 20 73 65 65 20 74 68 65 20 72 65 64 69 73 74 72 69 62 75 74 65 64 20 | us**.**To.see.the.redistributed. |
| c4460 | 72 6f 75 74 65 73 3a 2a 2a 00 2a 2a 54 6f 74 61 6c 20 50 6f 72 74 73 20 41 76 61 69 6c 61 62 6c | routes:**.**Total.Ports.Availabl |
| c4480 | 65 2a 2a 3a 00 2a 2a 54 72 61 63 65 61 62 69 6c 69 74 79 20 49 73 73 75 65 73 2a 2a 3a 20 53 69 | e**:.**Traceability.Issues**:.Si |
| c44a0 | 6e 63 65 20 6d 75 6c 74 69 70 6c 65 20 75 73 65 72 73 20 73 68 61 72 65 20 74 68 65 20 73 61 6d | nce.multiple.users.share.the.sam |
| c44c0 | 65 20 70 75 62 6c 69 63 20 49 50 20 61 64 64 72 65 73 73 2c 20 74 72 61 63 6b 69 6e 67 20 69 6e | e.public.IP.address,.tracking.in |
| c44e0 | 64 69 76 69 64 75 61 6c 20 75 73 65 72 73 20 66 6f 72 20 73 65 63 75 72 69 74 79 20 61 6e 64 20 | dividual.users.for.security.and. |
| c4500 | 6c 65 67 61 6c 20 70 75 72 70 6f 73 65 73 20 63 61 6e 20 62 65 20 63 68 61 6c 6c 65 6e 67 69 6e | legal.purposes.can.be.challengin |
| c4520 | 67 2e 00 2a 2a 54 77 6f 20 67 61 74 65 77 61 79 73 20 61 6e 64 20 64 69 66 66 65 72 65 6e 74 20 | g..**Two.gateways.and.different. |
| c4540 | 6d 65 74 72 69 63 73 3a 2a 2a 00 2a 2a 56 4c 41 4e 20 49 44 2a 2a 00 2a 2a 56 79 4f 53 20 52 6f | metrics:**.**VLAN.ID**.**VyOS.Ro |
| c4560 | 75 74 65 72 3a 2a 2a 00 2a 2a 57 65 69 67 68 74 20 63 68 65 63 6b 2a 2a 00 2a 2a 61 64 64 72 65 | uter:**.**Weight.check**.**addre |
| c4580 | 73 73 2a 2a 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 20 6d 75 6c 74 69 70 6c 65 20 74 | ss**.can.be.specified.multiple.t |
| c45a0 | 69 6d 65 73 20 61 73 20 49 50 76 34 20 61 6e 64 2f 6f 72 20 49 50 76 36 20 61 64 64 72 65 73 73 | imes.as.IPv4.and/or.IPv6.address |
| c45c0 | 2c 20 65 2e 67 2e 20 31 39 32 2e 30 2e 32 2e 31 2f 32 34 20 61 6e 64 2f 6f 72 20 32 30 30 31 3a | ,.e.g..192.0.2.1/24.and/or.2001: |
| c45e0 | 64 62 38 3a 3a 31 2f 36 34 00 2a 2a 61 64 64 72 65 73 73 2a 2a 20 63 61 6e 20 62 65 20 73 70 65 | db8::1/64.**address**.can.be.spe |
| c4600 | 63 69 66 69 65 64 20 6d 75 6c 74 69 70 6c 65 20 74 69 6d 65 73 2c 20 65 2e 67 2e 20 31 39 32 2e | cified.multiple.times,.e.g..192. |
| c4620 | 31 36 38 2e 31 30 30 2e 31 20 61 6e 64 2f 6f 72 20 31 39 32 2e 31 36 38 2e 31 30 30 2e 30 2f 32 | 168.100.1.and/or.192.168.100.0/2 |
| c4640 | 34 00 2a 2a 61 6c 6c 6f 77 2a 2a 20 2d 20 4e 65 67 6f 74 69 61 74 65 20 49 50 76 34 20 6f 6e 6c | 4.**allow**.-.Negotiate.IPv4.onl |
| c4660 | 79 20 69 66 20 63 6c 69 65 6e 74 20 72 65 71 75 65 73 74 73 20 28 44 65 66 61 75 6c 74 20 76 61 | y.if.client.requests.(Default.va |
| c4680 | 6c 75 65 29 00 2a 2a 61 6c 6c 6f 77 2a 2a 20 2d 20 4e 65 67 6f 74 69 61 74 65 20 49 50 76 36 20 | lue).**allow**.-.Negotiate.IPv6. |
| c46a0 | 6f 6e 6c 79 20 69 66 20 63 6c 69 65 6e 74 20 72 65 71 75 65 73 74 73 00 2a 2a 61 6c 6c 6f 77 2d | only.if.client.requests.**allow- |
| c46c0 | 68 6f 73 74 2d 6e 65 74 77 6f 72 6b 73 2a 2a 20 63 61 6e 6e 6f 74 20 62 65 20 75 73 65 64 20 77 | host-networks**.cannot.be.used.w |
| c46e0 | 69 74 68 20 2a 2a 6e 65 74 77 6f 72 6b 2a 2a 00 2a 2a 61 6c 77 61 79 73 2a 2a 3a 20 52 65 73 74 | ith.**network**.**always**:.Rest |
| c4700 | 61 72 74 20 63 6f 6e 74 61 69 6e 65 72 73 20 77 68 65 6e 20 74 68 65 79 20 65 78 69 74 2c 20 72 | art.containers.when.they.exit,.r |
| c4720 | 65 67 61 72 64 6c 65 73 73 20 6f 66 20 73 74 61 74 75 73 2c 20 72 65 74 72 79 69 6e 67 20 69 6e | egardless.of.status,.retrying.in |
| c4740 | 64 65 66 69 6e 69 74 65 6c 79 00 2a 2a 61 70 70 65 6e 64 3a 2a 2a 20 54 68 65 20 72 65 6c 61 79 | definitely.**append:**.The.relay |
| c4760 | 20 61 67 65 6e 74 20 69 73 20 61 6c 6c 6f 77 65 64 20 74 6f 20 61 70 70 65 6e 64 20 69 74 73 20 | .agent.is.allowed.to.append.its. |
| c4780 | 6f 77 6e 20 72 65 6c 61 79 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 6f 20 61 20 72 65 63 65 69 | own.relay.information.to.a.recei |
| c47a0 | 76 65 64 20 44 48 43 50 20 70 61 63 6b 65 74 2c 20 64 69 73 72 65 67 61 72 64 69 6e 67 20 72 65 | ved.DHCP.packet,.disregarding.re |
| c47c0 | 6c 61 79 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 6c 72 65 61 64 79 20 70 72 65 73 65 6e 74 20 | lay.information.already.present. |
| c47e0 | 69 6e 20 74 68 65 20 70 61 63 6b 65 74 2e 00 2a 2a 61 70 70 6c 69 63 61 74 69 6f 6e 2a 2a 3a 20 | in.the.packet..**application**:. |
| c4800 | 61 6e 61 6c 79 7a 65 73 20 72 65 63 65 69 76 65 64 20 66 6c 6f 77 20 64 61 74 61 20 69 6e 20 74 | analyzes.received.flow.data.in.t |
| c4820 | 68 65 20 63 6f 6e 74 65 78 74 20 6f 66 20 69 6e 74 72 75 73 69 6f 6e 20 64 65 74 65 63 74 69 6f | he.context.of.intrusion.detectio |
| c4840 | 6e 20 6f 72 20 74 72 61 66 66 69 63 20 70 72 6f 66 69 6c 69 6e 67 2c 20 66 6f 72 20 65 78 61 6d | n.or.traffic.profiling,.for.exam |
| c4860 | 70 6c 65 00 2a 2a 61 75 74 6f 2a 2a 20 e2 80 93 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 64 | ple.**auto**.....automatically.d |
| c4880 | 65 74 65 72 6d 69 6e 65 73 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 74 79 70 65 2e 20 2a 2a | etermines.the.interface.type..** |
| c48a0 | 77 69 72 65 64 2a 2a 20 e2 80 93 20 65 6e 61 62 6c 65 73 20 6f 70 74 69 6d 69 73 61 74 69 6f 6e | wired**.....enables.optimisation |
| c48c0 | 73 20 66 6f 72 20 77 69 72 65 64 20 69 6e 74 65 72 66 61 63 65 73 2e 20 2a 2a 77 69 72 65 6c 65 | s.for.wired.interfaces..**wirele |
| c48e0 | 73 73 2a 2a 20 e2 80 93 20 64 69 73 61 62 6c 65 73 20 61 20 6e 75 6d 62 65 72 20 6f 66 20 6f 70 | ss**.....disables.a.number.of.op |
| c4900 | 74 69 6d 69 73 61 74 69 6f 6e 73 20 74 68 61 74 20 61 72 65 20 6f 6e 6c 79 20 63 6f 72 72 65 63 | timisations.that.are.only.correc |
| c4920 | 74 20 6f 6e 20 77 69 72 65 64 20 69 6e 74 65 72 66 61 63 65 73 2e 20 53 70 65 63 69 66 79 69 6e | t.on.wired.interfaces..Specifyin |
| c4940 | 67 20 77 69 72 65 6c 65 73 73 20 69 73 20 61 6c 77 61 79 73 20 63 6f 72 72 65 63 74 2c 20 62 75 | g.wireless.is.always.correct,.bu |
| c4960 | 74 20 6d 61 79 20 63 61 75 73 65 20 73 6c 6f 77 65 72 20 63 6f 6e 76 65 72 67 65 6e 63 65 20 61 | t.may.cause.slower.convergence.a |
| c4980 | 6e 64 20 65 78 74 72 61 20 72 6f 75 74 69 6e 67 20 74 72 61 66 66 69 63 2e 00 2a 2a 62 61 6e 2d | nd.extra.routing.traffic..**ban- |
| c49a0 | 74 69 6d 65 2a 2a 20 61 6e 64 20 2a 2a 74 68 72 65 73 68 6f 6c 64 2a 2a 3a 20 74 68 65 73 65 20 | time**.and.**threshold**:.these. |
| c49c0 | 76 61 6c 75 65 73 20 61 72 65 20 6b 65 70 74 20 76 65 72 79 20 6c 6f 77 20 69 6e 20 6f 72 64 65 | values.are.kept.very.low.in.orde |
| c49e0 | 72 20 74 6f 20 65 61 73 69 6c 79 20 69 64 65 6e 74 69 66 79 20 61 6e 64 20 67 65 6e 65 72 61 74 | r.to.easily.identify.and.generat |
| c4a00 | 65 20 61 6e 64 20 61 74 74 61 63 6b 2e 00 2a 2a 62 72 6f 61 64 63 61 73 74 2a 2a 20 e2 80 93 20 | e.and.attack..**broadcast**..... |
| c4a20 | 62 72 6f 61 64 63 61 73 74 20 49 50 20 61 64 64 72 65 73 73 65 73 20 64 69 73 74 72 69 62 75 74 | broadcast.IP.addresses.distribut |
| c4a40 | 69 6f 6e 2e 20 2a 2a 6e 6f 6e 2d 62 72 6f 61 64 63 61 73 74 2a 2a 20 e2 80 93 20 61 64 64 72 65 | ion..**non-broadcast**.....addre |
| c4a60 | 73 73 20 64 69 73 74 72 69 62 75 74 69 6f 6e 20 69 6e 20 4e 42 4d 41 20 6e 65 74 77 6f 72 6b 73 | ss.distribution.in.NBMA.networks |
| c4a80 | 20 74 6f 70 6f 6c 6f 67 79 2e 20 2a 2a 70 6f 69 6e 74 2d 74 6f 2d 6d 75 6c 74 69 70 6f 69 6e 74 | .topology..**point-to-multipoint |
| c4aa0 | 2a 2a 20 e2 80 93 20 61 64 64 72 65 73 73 20 64 69 73 74 72 69 62 75 74 69 6f 6e 20 69 6e 20 70 | **.....address.distribution.in.p |
| c4ac0 | 6f 69 6e 74 2d 74 6f 2d 6d 75 6c 74 69 70 6f 69 6e 74 20 6e 65 74 77 6f 72 6b 73 2e 20 2a 2a 70 | oint-to-multipoint.networks..**p |
| c4ae0 | 6f 69 6e 74 2d 74 6f 2d 70 6f 69 6e 74 2a 2a 20 e2 80 93 20 61 64 64 72 65 73 73 20 64 69 73 74 | oint-to-point**.....address.dist |
| c4b00 | 72 69 62 75 74 69 6f 6e 20 69 6e 20 70 6f 69 6e 74 2d 74 6f 2d 70 6f 69 6e 74 20 6e 65 74 77 6f | ribution.in.point-to-point.netwo |
| c4b20 | 72 6b 73 2e 00 2a 2a 62 72 6f 61 64 63 61 73 74 2a 2a 20 e2 80 93 20 62 72 6f 61 64 63 61 73 74 | rks..**broadcast**.....broadcast |
| c4b40 | 20 49 50 20 61 64 64 72 65 73 73 65 73 20 64 69 73 74 72 69 62 75 74 69 6f 6e 2e 20 2a 2a 70 6f | .IP.addresses.distribution..**po |
| c4b60 | 69 6e 74 2d 74 6f 2d 70 6f 69 6e 74 2a 2a 20 e2 80 93 20 61 64 64 72 65 73 73 20 64 69 73 74 72 | int-to-point**.....address.distr |
| c4b80 | 69 62 75 74 69 6f 6e 20 69 6e 20 70 6f 69 6e 74 2d 74 6f 2d 70 6f 69 6e 74 20 6e 65 74 77 6f 72 | ibution.in.point-to-point.networ |
| c4ba0 | 6b 73 2e 00 2a 2a 63 61 6c 6c 69 6e 67 2d 73 69 64 2a 2a 20 2d 20 43 61 6c 63 75 6c 61 74 65 20 | ks..**calling-sid**.-.Calculate. |
| c4bc0 | 69 6e 74 65 72 66 61 63 65 20 69 64 65 6e 74 69 66 69 65 72 20 66 72 6f 6d 20 63 61 6c 6c 69 6e | interface.identifier.from.callin |
| c4be0 | 67 2d 73 74 61 74 69 6f 6e 2d 69 64 2e 00 2a 2a 63 69 73 63 6f 2a 2a 20 e2 80 93 20 61 20 72 6f | g-station-id..**cisco**.....a.ro |
| c4c00 | 75 74 65 72 20 77 69 6c 6c 20 62 65 20 63 6f 6e 73 69 64 65 72 65 64 20 61 73 20 41 42 52 20 69 | uter.will.be.considered.as.ABR.i |
| c4c20 | 66 20 69 74 20 68 61 73 20 73 65 76 65 72 61 6c 20 63 6f 6e 66 69 67 75 72 65 64 20 6c 69 6e 6b | f.it.has.several.configured.link |
| c4c40 | 73 20 74 6f 20 74 68 65 20 6e 65 74 77 6f 72 6b 73 20 69 6e 20 64 69 66 66 65 72 65 6e 74 20 61 | s.to.the.networks.in.different.a |
| c4c60 | 72 65 61 73 20 6f 6e 65 20 6f 66 20 77 68 69 63 68 20 69 73 20 61 20 62 61 63 6b 62 6f 6e 65 20 | reas.one.of.which.is.a.backbone. |
| c4c80 | 61 72 65 61 2e 20 4d 6f 72 65 6f 76 65 72 2c 20 74 68 65 20 6c 69 6e 6b 20 74 6f 20 74 68 65 20 | area..Moreover,.the.link.to.the. |
| c4ca0 | 62 61 63 6b 62 6f 6e 65 20 61 72 65 61 20 73 68 6f 75 6c 64 20 62 65 20 61 63 74 69 76 65 20 28 | backbone.area.should.be.active.( |
| c4cc0 | 77 6f 72 6b 69 6e 67 29 2e 20 2a 2a 69 62 6d 2a 2a 20 e2 80 93 20 69 64 65 6e 74 69 63 61 6c 20 | working)..**ibm**.....identical. |
| c4ce0 | 74 6f 20 22 63 69 73 63 6f 22 20 6d 6f 64 65 6c 20 62 75 74 20 69 6e 20 74 68 69 73 20 63 61 73 | to."cisco".model.but.in.this.cas |
| c4d00 | 65 20 61 20 62 61 63 6b 62 6f 6e 65 20 61 72 65 61 20 6c 69 6e 6b 20 6d 61 79 20 6e 6f 74 20 62 | e.a.backbone.area.link.may.not.b |
| c4d20 | 65 20 61 63 74 69 76 65 2e 20 2a 2a 73 74 61 6e 64 61 72 64 2a 2a 20 e2 80 93 20 72 6f 75 74 65 | e.active..**standard**.....route |
| c4d40 | 72 20 68 61 73 20 73 65 76 65 72 61 6c 20 61 63 74 69 76 65 20 6c 69 6e 6b 73 20 74 6f 20 64 69 | r.has.several.active.links.to.di |
| c4d60 | 66 66 65 72 65 6e 74 20 61 72 65 61 73 2e 20 2a 2a 73 68 6f 72 74 63 75 74 2a 2a 20 e2 80 93 20 | fferent.areas..**shortcut**..... |
| c4d80 | 69 64 65 6e 74 69 63 61 6c 20 74 6f 20 22 73 74 61 6e 64 61 72 64 22 20 62 75 74 20 69 6e 20 74 | identical.to."standard".but.in.t |
| c4da0 | 68 69 73 20 6d 6f 64 65 6c 20 61 20 72 6f 75 74 65 72 20 69 73 20 61 6c 6c 6f 77 65 64 20 74 6f | his.model.a.router.is.allowed.to |
| c4dc0 | 20 75 73 65 20 61 20 63 6f 6e 6e 65 63 74 65 64 20 61 72 65 61 73 20 74 6f 70 6f 6c 6f 67 79 20 | .use.a.connected.areas.topology. |
| c4de0 | 77 69 74 68 6f 75 74 20 69 6e 76 6f 6c 76 69 6e 67 20 61 20 62 61 63 6b 62 6f 6e 65 20 61 72 65 | without.involving.a.backbone.are |
| c4e00 | 61 20 66 6f 72 20 69 6e 74 65 72 2d 61 72 65 61 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2e 00 2a 2a | a.for.inter-area.connections..** |
| c4e20 | 63 6f 6c 6c 65 63 74 6f 72 2a 2a 3a 20 72 65 73 70 6f 6e 73 69 62 6c 65 20 66 6f 72 20 72 65 63 | collector**:.responsible.for.rec |
| c4e40 | 65 70 74 69 6f 6e 2c 20 73 74 6f 72 61 67 65 20 61 6e 64 20 70 72 65 2d 70 72 6f 63 65 73 73 69 | eption,.storage.and.pre-processi |
| c4e60 | 6e 67 20 6f 66 20 66 6c 6f 77 20 64 61 74 61 20 72 65 63 65 69 76 65 64 20 66 72 6f 6d 20 61 20 | ng.of.flow.data.received.from.a. |
| c4e80 | 66 6c 6f 77 20 65 78 70 6f 72 74 65 72 00 2a 2a 64 65 66 61 75 6c 74 2a 2a 20 e2 80 93 20 20 74 | flow.exporter.**default**......t |
| c4ea0 | 68 69 73 20 61 72 65 61 20 77 69 6c 6c 20 62 65 20 75 73 65 64 20 66 6f 72 20 73 68 6f 72 74 63 | his.area.will.be.used.for.shortc |
| c4ec0 | 75 74 74 69 6e 67 20 6f 6e 6c 79 20 69 66 20 41 42 52 20 64 6f 65 73 20 6e 6f 74 20 68 61 76 65 | utting.only.if.ABR.does.not.have |
| c4ee0 | 20 61 20 6c 69 6e 6b 20 74 6f 20 74 68 65 20 62 61 63 6b 62 6f 6e 65 20 61 72 65 61 20 6f 72 20 | .a.link.to.the.backbone.area.or. |
| c4f00 | 74 68 69 73 20 6c 69 6e 6b 20 77 61 73 20 6c 6f 73 74 2e 20 2a 2a 65 6e 61 62 6c 65 2a 2a 20 e2 | this.link.was.lost..**enable**.. |
| c4f20 | 80 93 20 74 68 65 20 61 72 65 61 20 77 69 6c 6c 20 62 65 20 75 73 65 64 20 66 6f 72 20 73 68 6f | ...the.area.will.be.used.for.sho |
| c4f40 | 72 74 63 75 74 74 69 6e 67 20 65 76 65 72 79 20 74 69 6d 65 20 74 68 65 20 72 6f 75 74 65 20 74 | rtcutting.every.time.the.route.t |
| c4f60 | 68 61 74 20 67 6f 65 73 20 74 68 72 6f 75 67 68 20 69 74 20 69 73 20 63 68 65 61 70 65 72 2e 20 | hat.goes.through.it.is.cheaper.. |
| c4f80 | 2a 2a 64 69 73 61 62 6c 65 2a 2a 20 e2 80 93 20 74 68 69 73 20 61 72 65 61 20 69 73 20 6e 65 76 | **disable**.....this.area.is.nev |
| c4fa0 | 65 72 20 75 73 65 64 20 62 79 20 41 42 52 20 66 6f 72 20 72 6f 75 74 65 73 20 73 68 6f 72 74 63 | er.used.by.ABR.for.routes.shortc |
| c4fc0 | 75 74 74 69 6e 67 2e 00 2a 2a 64 65 66 61 75 6c 74 2a 2a 20 e2 80 93 20 65 6e 61 62 6c 65 20 73 | utting..**default**.....enable.s |
| c4fe0 | 70 6c 69 74 2d 68 6f 72 69 7a 6f 6e 20 6f 6e 20 77 69 72 65 64 20 69 6e 74 65 72 66 61 63 65 73 | plit-horizon.on.wired.interfaces |
| c5000 | 2c 20 61 6e 64 20 64 69 73 61 62 6c 65 20 73 70 6c 69 74 2d 68 6f 72 69 7a 6f 6e 20 6f 6e 20 77 | ,.and.disable.split-horizon.on.w |
| c5020 | 69 72 65 6c 65 73 73 20 69 6e 74 65 72 66 61 63 65 73 2e 20 2a 2a 65 6e 61 62 6c 65 2a 2a 20 e2 | ireless.interfaces..**enable**.. |
| c5040 | 80 93 20 65 6e 61 62 6c 65 20 73 70 6c 69 74 2d 68 6f 72 69 7a 6f 6e 20 6f 6e 20 74 68 69 73 20 | ...enable.split-horizon.on.this. |
| c5060 | 69 6e 74 65 72 66 61 63 65 73 2e 20 2a 2a 64 69 73 61 62 6c 65 2a 2a 20 e2 80 93 20 64 69 73 61 | interfaces..**disable**.....disa |
| c5080 | 62 6c 65 20 73 70 6c 69 74 2d 68 6f 72 69 7a 6f 6e 20 6f 6e 20 74 68 69 73 20 69 6e 74 65 72 66 | ble.split-horizon.on.this.interf |
| c50a0 | 61 63 65 73 2e 00 2a 2a 64 65 6e 79 2a 2a 20 2d 20 44 6f 20 6e 6f 74 20 6e 65 67 6f 74 69 61 74 | aces..**deny**.-.Do.not.negotiat |
| c50c0 | 65 20 49 50 76 34 00 2a 2a 64 65 6e 79 2a 2a 20 2d 20 44 6f 20 6e 6f 74 20 6e 65 67 6f 74 69 61 | e.IPv4.**deny**.-.Do.not.negotia |
| c50e0 | 74 65 20 49 50 76 36 20 28 64 65 66 61 75 6c 74 20 76 61 6c 75 65 29 00 2a 2a 64 65 6e 79 2a 2a | te.IPv6.(default.value).**deny** |
| c5100 | 20 2d 20 64 65 6e 79 20 6d 70 70 65 00 2a 2a 64 65 6e 79 2a 2a 3a 20 44 65 6e 79 20 73 65 63 6f | .-.deny.mppe.**deny**:.Deny.seco |
| c5120 | 6e 64 20 73 65 73 73 69 6f 6e 20 61 75 74 68 6f 72 69 7a 61 74 69 6f 6e 2e 00 2a 2a 64 65 73 74 | nd.session.authorization..**dest |
| c5140 | 69 6e 61 74 69 6f 6e 2a 2a 20 2d 20 73 70 65 63 69 66 79 20 77 68 69 63 68 20 70 61 63 6b 65 74 | ination**.-.specify.which.packet |
| c5160 | 73 20 74 68 65 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 77 69 6c 6c 20 62 65 20 61 70 70 6c 69 65 | s.the.translation.will.be.applie |
| c5180 | 64 20 74 6f 2c 20 6f 6e 6c 79 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 64 65 73 74 69 6e 61 74 | d.to,.only.based.on.the.destinat |
| c51a0 | 69 6f 6e 20 61 64 64 72 65 73 73 20 61 6e 64 2f 6f 72 20 70 6f 72 74 20 6e 75 6d 62 65 72 20 63 | ion.address.and/or.port.number.c |
| c51c0 | 6f 6e 66 69 67 75 72 65 64 2e 00 2a 2a 64 68 63 70 2a 2a 20 69 6e 74 65 72 66 61 63 65 20 61 64 | onfigured..**dhcp**.interface.ad |
| c51e0 | 64 72 65 73 73 20 69 73 20 72 65 63 65 69 76 65 64 20 62 79 20 44 48 43 50 20 66 72 6f 6d 20 61 | dress.is.received.by.DHCP.from.a |
| c5200 | 20 44 48 43 50 20 73 65 72 76 65 72 20 6f 6e 20 74 68 69 73 20 73 65 67 6d 65 6e 74 2e 00 2a 2a | .DHCP.server.on.this.segment..** |
| c5220 | 64 68 63 70 76 36 2a 2a 20 69 6e 74 65 72 66 61 63 65 20 61 64 64 72 65 73 73 20 69 73 20 72 65 | dhcpv6**.interface.address.is.re |
| c5240 | 63 65 69 76 65 64 20 62 79 20 44 48 43 50 76 36 20 66 72 6f 6d 20 61 20 44 48 43 50 76 36 20 73 | ceived.by.DHCPv6.from.a.DHCPv6.s |
| c5260 | 65 72 76 65 72 20 6f 6e 20 74 68 69 73 20 73 65 67 6d 65 6e 74 2e 00 2a 2a 64 69 73 61 62 6c 65 | erver.on.this.segment..**disable |
| c5280 | 2a 2a 3a 20 44 69 73 61 62 6c 65 73 20 73 65 73 73 69 6f 6e 20 63 6f 6e 74 72 6f 6c 2e 00 2a 2a | **:.Disables.session.control..** |
| c52a0 | 64 69 73 63 61 72 64 3a 2a 2a 20 52 65 63 65 69 76 65 64 20 70 61 63 6b 65 74 73 20 77 68 69 63 | discard:**.Received.packets.whic |
| c52c0 | 68 20 61 6c 72 65 61 64 79 20 63 6f 6e 74 61 69 6e 20 72 65 6c 61 79 20 69 6e 66 6f 72 6d 61 74 | h.already.contain.relay.informat |
| c52e0 | 69 6f 6e 20 77 69 6c 6c 20 62 65 20 64 69 73 63 61 72 64 65 64 2e 00 2a 2a 64 6f 77 6e 73 74 72 | ion.will.be.discarded..**downstr |
| c5300 | 65 61 6d 3a 2a 2a 20 44 6f 77 6e 73 74 72 65 61 6d 20 6e 65 74 77 6f 72 6b 20 69 6e 74 65 72 66 | eam:**.Downstream.network.interf |
| c5320 | 61 63 65 73 20 61 72 65 20 74 68 65 20 64 69 73 74 72 69 62 75 74 69 6f 6e 20 69 6e 74 65 72 66 | aces.are.the.distribution.interf |
| c5340 | 61 63 65 73 20 74 6f 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 6e 65 74 77 6f 72 6b 73 | aces.to.the.destination.networks |
| c5360 | 2c 20 77 68 65 72 65 20 6d 75 6c 74 69 63 61 73 74 20 63 6c 69 65 6e 74 73 20 63 61 6e 20 6a 6f | ,.where.multicast.clients.can.jo |
| c5380 | 69 6e 20 67 72 6f 75 70 73 20 61 6e 64 20 72 65 63 65 69 76 65 20 6d 75 6c 74 69 63 61 73 74 20 | in.groups.and.receive.multicast. |
| c53a0 | 64 61 74 61 2e 20 4f 6e 65 20 6f 72 20 6d 6f 72 65 20 64 6f 77 6e 73 74 72 65 61 6d 20 69 6e 74 | data..One.or.more.downstream.int |
| c53c0 | 65 72 66 61 63 65 73 20 6d 75 73 74 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 2e 00 2a 2a 65 78 | erfaces.must.be.configured..**ex |
| c53e0 | 70 6f 72 74 65 72 2a 2a 3a 20 61 67 67 72 65 67 61 74 65 73 20 70 61 63 6b 65 74 73 20 69 6e 74 | porter**:.aggregates.packets.int |
| c5400 | 6f 20 66 6c 6f 77 73 20 61 6e 64 20 65 78 70 6f 72 74 73 20 66 6c 6f 77 20 72 65 63 6f 72 64 73 | o.flows.and.exports.flow.records |
| c5420 | 20 74 6f 77 61 72 64 73 20 6f 6e 65 20 6f 72 20 6d 6f 72 65 20 66 6c 6f 77 20 63 6f 6c 6c 65 63 | .towards.one.or.more.flow.collec |
| c5440 | 74 6f 72 73 00 2a 2a 66 69 72 65 77 61 6c 6c 20 61 6c 6c 2d 70 69 6e 67 2a 2a 20 61 66 66 65 63 | tors.**firewall.all-ping**.affec |
| c5460 | 74 73 20 6f 6e 6c 79 20 74 6f 20 4c 4f 43 41 4c 20 61 6e 64 20 69 74 20 61 6c 77 61 79 73 20 62 | ts.only.to.LOCAL.and.it.always.b |
| c5480 | 65 68 61 76 65 73 20 69 6e 20 74 68 65 20 6d 6f 73 74 20 72 65 73 74 72 69 63 74 69 76 65 20 77 | ehaves.in.the.most.restrictive.w |
| c54a0 | 61 79 00 2a 2a 66 69 72 65 77 61 6c 6c 20 67 6c 6f 62 61 6c 2d 6f 70 74 69 6f 6e 73 20 61 6c 6c | ay.**firewall.global-options.all |
| c54c0 | 2d 70 69 6e 67 2a 2a 20 61 66 66 65 63 74 73 20 6f 6e 6c 79 20 74 6f 20 4c 4f 43 41 4c 20 61 6e | -ping**.affects.only.to.LOCAL.an |
| c54e0 | 64 20 69 74 20 61 6c 77 61 79 73 20 62 65 68 61 76 65 73 20 69 6e 20 74 68 65 20 6d 6f 73 74 20 | d.it.always.behaves.in.the.most. |
| c5500 | 72 65 73 74 72 69 63 74 69 76 65 20 77 61 79 00 2a 2a 66 6f 72 77 61 72 64 3a 2a 2a 20 41 6c 6c | restrictive.way.**forward:**.All |
| c5520 | 20 70 61 63 6b 65 74 73 20 61 72 65 20 66 6f 72 77 61 72 64 65 64 2c 20 72 65 6c 61 79 20 69 6e | .packets.are.forwarded,.relay.in |
| c5540 | 66 6f 72 6d 61 74 69 6f 6e 20 61 6c 72 65 61 64 79 20 70 72 65 73 65 6e 74 20 77 69 6c 6c 20 62 | formation.already.present.will.b |
| c5560 | 65 20 69 67 6e 6f 72 65 64 2e 00 2a 2a 69 6e 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 2a 2a | e.ignored..**inbound-interface** |
| c5580 | 20 2d 20 61 70 70 6c 69 63 61 62 6c 65 20 6f 6e 6c 79 20 74 6f 20 3a 72 65 66 3a 60 64 65 73 74 | .-.applicable.only.to.:ref:`dest |
| c55a0 | 69 6e 61 74 69 6f 6e 2d 6e 61 74 60 2e 20 49 74 20 63 6f 6e 66 69 67 75 72 65 73 20 74 68 65 20 | ination-nat`..It.configures.the. |
| c55c0 | 69 6e 74 65 72 66 61 63 65 20 77 68 69 63 68 20 69 73 20 75 73 65 64 20 66 6f 72 20 74 68 65 20 | interface.which.is.used.for.the. |
| c55e0 | 69 6e 73 69 64 65 20 74 72 61 66 66 69 63 20 74 68 65 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 72 | inside.traffic.the.translation.r |
| c5600 | 75 6c 65 20 61 70 70 6c 69 65 73 20 74 6f 2e 00 2a 2a 69 6e 62 6f 75 6e 64 2d 69 6e 74 65 72 66 | ule.applies.to..**inbound-interf |
| c5620 | 61 63 65 2a 2a 20 2d 20 61 70 70 6c 69 63 61 62 6c 65 20 6f 6e 6c 79 20 74 6f 20 3a 72 65 66 3a | ace**.-.applicable.only.to.:ref: |
| c5640 | 60 64 65 73 74 69 6e 61 74 69 6f 6e 2d 6e 61 74 60 2e 20 49 74 20 63 6f 6e 66 69 67 75 72 65 73 | `destination-nat`..It.configures |
| c5660 | 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 77 68 69 63 68 20 69 73 20 75 73 65 64 20 66 6f 72 | .the.interface.which.is.used.for |
| c5680 | 20 74 68 65 20 69 6e 73 69 64 65 20 74 72 61 66 66 69 63 20 74 68 65 20 74 72 61 6e 73 6c 61 74 | .the.inside.traffic.the.translat |
| c56a0 | 69 6f 6e 20 72 75 6c 65 20 61 70 70 6c 69 65 73 20 74 6f 2e 20 49 6e 74 65 72 66 61 63 65 20 67 | ion.rule.applies.to..Interface.g |
| c56c0 | 72 6f 75 70 73 2c 20 69 6e 76 65 72 74 65 64 20 73 65 6c 65 63 74 69 6f 6e 20 61 6e 64 20 77 69 | roups,.inverted.selection.and.wi |
| c56e0 | 6c 64 63 61 72 64 2c 20 61 72 65 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 00 2a 2a 69 70 | ldcard,.are.also.supported..**ip |
| c5700 | 76 34 2d 61 64 64 72 2a 2a 20 2d 20 43 61 6c 63 75 6c 61 74 65 20 69 6e 74 65 72 66 61 63 65 20 | v4-addr**.-.Calculate.interface. |
| c5720 | 69 64 65 6e 74 69 66 69 65 72 20 66 72 6f 6d 20 49 50 76 34 20 61 64 64 72 65 73 73 2e 00 2a 2a | identifier.from.IPv4.address..** |
| c5740 | 6c 32 2a 2a 3a 20 49 74 20 6d 65 61 6e 73 20 74 68 61 74 20 63 6c 69 65 6e 74 73 20 61 72 65 20 | l2**:.It.means.that.clients.are. |
| c5760 | 6f 6e 20 73 61 6d 65 20 6e 65 74 77 6f 72 6b 20 77 68 65 72 65 20 69 6e 74 65 72 66 61 63 65 20 | on.same.network.where.interface. |
| c5780 | 69 73 2e 2a 2a 28 64 65 66 61 75 6c 74 29 2a 2a 00 2a 2a 6c 33 2a 2a 3a 20 49 74 20 6d 65 61 6e | is.**(default)**.**l3**:.It.mean |
| c57a0 | 73 20 74 68 61 74 20 63 6c 69 65 6e 74 20 61 72 65 20 62 65 68 69 6e 64 20 73 6f 6d 65 20 72 6f | s.that.client.are.behind.some.ro |
| c57c0 | 75 74 65 72 2e 00 2a 2a 6c 61 79 65 72 32 2a 2a 20 2d 20 55 73 65 73 20 58 4f 52 20 6f 66 20 68 | uter..**layer2**.-.Uses.XOR.of.h |
| c57e0 | 61 72 64 77 61 72 65 20 4d 41 43 20 61 64 64 72 65 73 73 65 73 20 61 6e 64 20 70 61 63 6b 65 74 | ardware.MAC.addresses.and.packet |
| c5800 | 20 74 79 70 65 20 49 44 20 66 69 65 6c 64 20 74 6f 20 67 65 6e 65 72 61 74 65 20 74 68 65 20 68 | .type.ID.field.to.generate.the.h |
| c5820 | 61 73 68 2e 20 54 68 65 20 66 6f 72 6d 75 6c 61 20 69 73 00 2a 2a 6c 61 79 65 72 32 2b 33 2a 2a | ash..The.formula.is.**layer2+3** |
| c5840 | 20 2d 20 54 68 69 73 20 70 6f 6c 69 63 79 20 75 73 65 73 20 61 20 63 6f 6d 62 69 6e 61 74 69 6f | .-.This.policy.uses.a.combinatio |
| c5860 | 6e 20 6f 66 20 6c 61 79 65 72 32 20 61 6e 64 20 6c 61 79 65 72 33 20 70 72 6f 74 6f 63 6f 6c 20 | n.of.layer2.and.layer3.protocol. |
| c5880 | 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 6f 20 67 65 6e 65 72 61 74 65 20 74 68 65 20 68 61 73 68 | information.to.generate.the.hash |
| c58a0 | 2e 20 55 73 65 73 20 58 4f 52 20 6f 66 20 68 61 72 64 77 61 72 65 20 4d 41 43 20 61 64 64 72 65 | ..Uses.XOR.of.hardware.MAC.addre |
| c58c0 | 73 73 65 73 20 61 6e 64 20 49 50 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 67 65 6e 65 72 61 74 | sses.and.IP.addresses.to.generat |
| c58e0 | 65 20 74 68 65 20 68 61 73 68 2e 20 54 68 65 20 66 6f 72 6d 75 6c 61 20 69 73 3a 00 2a 2a 6c 61 | e.the.hash..The.formula.is:.**la |
| c5900 | 79 65 72 33 2b 34 2a 2a 20 2d 20 54 68 69 73 20 70 6f 6c 69 63 79 20 75 73 65 73 20 75 70 70 65 | yer3+4**.-.This.policy.uses.uppe |
| c5920 | 72 20 6c 61 79 65 72 20 70 72 6f 74 6f 63 6f 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2c 20 77 68 | r.layer.protocol.information,.wh |
| c5940 | 65 6e 20 61 76 61 69 6c 61 62 6c 65 2c 20 74 6f 20 67 65 6e 65 72 61 74 65 20 74 68 65 20 68 61 | en.available,.to.generate.the.ha |
| c5960 | 73 68 2e 20 54 68 69 73 20 61 6c 6c 6f 77 73 20 66 6f 72 20 74 72 61 66 66 69 63 20 74 6f 20 61 | sh..This.allows.for.traffic.to.a |
| c5980 | 20 70 61 72 74 69 63 75 6c 61 72 20 6e 65 74 77 6f 72 6b 20 70 65 65 72 20 74 6f 20 73 70 61 6e | .particular.network.peer.to.span |
| c59a0 | 20 6d 75 6c 74 69 70 6c 65 20 73 6c 61 76 65 73 2c 20 61 6c 74 68 6f 75 67 68 20 61 20 73 69 6e | .multiple.slaves,.although.a.sin |
| c59c0 | 67 6c 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 77 69 6c 6c 20 6e 6f 74 20 73 70 61 6e 20 6d 75 6c | gle.connection.will.not.span.mul |
| c59e0 | 74 69 70 6c 65 20 73 6c 61 76 65 73 2e 00 2a 2a 6c 65 66 74 2a 2a 00 2a 2a 6c 65 76 65 6c 2d 31 | tiple.slaves..**left**.**level-1 |
| c5a00 | 2a 2a 20 2d 20 41 63 74 20 61 73 20 61 20 73 74 61 74 69 6f 6e 20 28 4c 65 76 65 6c 20 31 29 20 | **.-.Act.as.a.station.(Level.1). |
| c5a20 | 72 6f 75 74 65 72 20 6f 6e 6c 79 2e 00 2a 2a 6c 65 76 65 6c 2d 31 2a 2a 20 2d 20 4c 65 76 65 6c | router.only..**level-1**.-.Level |
| c5a40 | 2d 31 20 6f 6e 6c 79 20 61 64 6a 61 63 65 6e 63 69 65 73 20 61 72 65 20 66 6f 72 6d 65 64 2e 00 | -1.only.adjacencies.are.formed.. |
| c5a60 | 2a 2a 6c 65 76 65 6c 2d 31 2d 32 2a 2a 20 2d 20 41 63 74 20 61 73 20 61 20 73 74 61 74 69 6f 6e | **level-1-2**.-.Act.as.a.station |
| c5a80 | 20 28 4c 65 76 65 6c 20 31 29 20 72 6f 75 74 65 72 20 61 6e 64 20 61 72 65 61 20 28 4c 65 76 65 | .(Level.1).router.and.area.(Leve |
| c5aa0 | 6c 20 32 29 20 72 6f 75 74 65 72 2e 00 2a 2a 6c 65 76 65 6c 2d 31 2d 32 2a 2a 20 2d 20 4c 65 76 | l.2).router..**level-1-2**.-.Lev |
| c5ac0 | 65 6c 2d 31 2d 32 20 61 64 6a 61 63 65 6e 63 69 65 73 20 61 72 65 20 66 6f 72 6d 65 64 00 2a 2a | el-1-2.adjacencies.are.formed.** |
| c5ae0 | 6c 65 76 65 6c 2d 32 2d 6f 6e 6c 79 2a 2a 20 2d 20 41 63 74 20 61 73 20 61 6e 20 61 72 65 61 20 | level-2-only**.-.Act.as.an.area. |
| c5b00 | 28 4c 65 76 65 6c 20 32 29 20 72 6f 75 74 65 72 20 6f 6e 6c 79 2e 00 2a 2a 6c 65 76 65 6c 2d 32 | (Level.2).router.only..**level-2 |
| c5b20 | 2d 6f 6e 6c 79 2a 2a 20 2d 20 4c 65 76 65 6c 2d 32 20 6f 6e 6c 79 20 61 64 6a 61 63 65 6e 63 69 | -only**.-.Level-2.only.adjacenci |
| c5b40 | 65 73 20 61 72 65 20 66 6f 72 6d 65 64 00 2a 2a 6c 6f 63 61 6c 20 73 69 64 65 20 2d 20 63 6f 6d | es.are.formed.**local.side.-.com |
| c5b60 | 6d 61 6e 64 73 2a 2a 00 2a 2a 6c 6f 63 61 6c 2a 2a 3a 20 41 6c 6c 20 61 75 74 68 65 6e 74 69 63 | mands**.**local**:.All.authentic |
| c5b80 | 61 74 69 6f 6e 20 71 75 65 72 69 65 73 20 61 72 65 20 68 61 6e 64 6c 65 64 20 6c 6f 63 61 6c 6c | ation.queries.are.handled.locall |
| c5ba0 | 79 2e 00 2a 2a 6c 6f 63 61 6c 2a 2a 3a 20 49 74 20 6d 65 61 6e 73 20 74 68 61 74 20 63 6c 69 65 | y..**local**:.It.means.that.clie |
| c5bc0 | 6e 74 20 61 72 65 20 62 65 68 69 6e 64 20 73 6f 6d 65 20 72 6f 75 74 65 72 2e 00 2a 2a 6c 6f 67 | nt.are.behind.some.router..**log |
| c5be0 | 2d 66 61 69 6c 2a 2a 20 49 6e 20 74 68 69 73 20 6d 6f 64 65 2c 20 74 68 65 20 72 65 63 75 72 73 | -fail**.In.this.mode,.the.recurs |
| c5c00 | 6f 72 20 77 69 6c 6c 20 61 74 74 65 6d 70 74 20 74 6f 20 76 61 6c 69 64 61 74 65 20 61 6c 6c 20 | or.will.attempt.to.validate.all. |
| c5c20 | 64 61 74 61 20 69 74 20 72 65 74 72 69 65 76 65 73 20 66 72 6f 6d 20 61 75 74 68 6f 72 69 74 61 | data.it.retrieves.from.authorita |
| c5c40 | 74 69 76 65 20 73 65 72 76 65 72 73 2c 20 72 65 67 61 72 64 6c 65 73 73 20 6f 66 20 74 68 65 20 | tive.servers,.regardless.of.the. |
| c5c60 | 63 6c 69 65 6e 74 27 73 20 44 4e 53 53 45 43 20 64 65 73 69 72 65 73 2c 20 61 6e 64 20 77 69 6c | client's.DNSSEC.desires,.and.wil |
| c5c80 | 6c 20 6c 6f 67 20 74 68 65 20 76 61 6c 69 64 61 74 69 6f 6e 20 72 65 73 75 6c 74 2e 20 54 68 69 | l.log.the.validation.result..Thi |
| c5ca0 | 73 20 6d 6f 64 65 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 64 65 74 65 72 6d 69 6e 65 20 | s.mode.can.be.used.to.determine. |
| c5cc0 | 74 68 65 20 65 78 74 72 61 20 6c 6f 61 64 20 61 6e 64 20 61 6d 6f 75 6e 74 20 6f 66 20 70 6f 73 | the.extra.load.and.amount.of.pos |
| c5ce0 | 73 69 62 6c 79 20 62 6f 67 75 73 20 61 6e 73 77 65 72 73 20 62 65 66 6f 72 65 20 74 75 72 6e 69 | sibly.bogus.answers.before.turni |
| c5d00 | 6e 67 20 6f 6e 20 66 75 6c 6c 2d 62 6c 6f 77 6e 20 76 61 6c 69 64 61 74 69 6f 6e 2e 20 52 65 73 | ng.on.full-blown.validation..Res |
| c5d20 | 70 6f 6e 73 65 73 20 74 6f 20 63 6c 69 65 6e 74 20 71 75 65 72 69 65 73 20 61 72 65 20 74 68 65 | ponses.to.client.queries.are.the |
| c5d40 | 20 73 61 6d 65 20 61 73 20 77 69 74 68 20 70 72 6f 63 65 73 73 2e 00 2a 2a 6c 6f 6f 6b 75 70 2d | .same.as.with.process..**lookup- |
| c5d60 | 61 2a 2a 20 41 20 46 6c 61 67 2e 00 2a 2a 6c 6f 6f 6b 75 70 2d 73 72 76 2a 2a 20 53 20 66 6c 61 | a**.A.Flag..**lookup-srv**.S.fla |
| c5d80 | 67 2e 00 2a 2a 6e 61 72 72 6f 77 2a 2a 20 2d 20 55 73 65 20 6f 6c 64 20 73 74 79 6c 65 20 6f 66 | g..**narrow**.-.Use.old.style.of |
| c5da0 | 20 54 4c 56 73 20 77 69 74 68 20 6e 61 72 72 6f 77 20 6d 65 74 72 69 63 2e 00 2a 2a 6e 65 74 2d | .TLVs.with.narrow.metric..**net- |
| c5dc0 | 61 64 6d 69 6e 2a 2a 3a 20 4e 65 74 77 6f 72 6b 20 6f 70 65 72 61 74 69 6f 6e 73 20 28 69 6e 74 | admin**:.Network.operations.(int |
| c5de0 | 65 72 66 61 63 65 2c 20 66 69 72 65 77 61 6c 6c 2c 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 73 | erface,.firewall,.routing.tables |
| c5e00 | 29 00 2a 2a 6e 65 74 2d 62 69 6e 64 2d 73 65 72 76 69 63 65 2a 2a 3a 20 42 69 6e 64 20 61 20 73 | ).**net-bind-service**:.Bind.a.s |
| c5e20 | 6f 63 6b 65 74 20 74 6f 20 70 72 69 76 69 6c 65 67 65 64 20 70 6f 72 74 73 20 28 70 6f 72 74 20 | ocket.to.privileged.ports.(port. |
| c5e40 | 6e 75 6d 62 65 72 73 20 6c 65 73 73 20 74 68 61 6e 20 31 30 32 34 29 00 2a 2a 6e 65 74 2d 72 61 | numbers.less.than.1024).**net-ra |
| c5e60 | 77 2a 2a 3a 20 50 65 72 6d 69 73 73 69 6f 6e 20 74 6f 20 63 72 65 61 74 65 20 72 61 77 20 6e 65 | w**:.Permission.to.create.raw.ne |
| c5e80 | 74 77 6f 72 6b 20 73 6f 63 6b 65 74 73 00 2a 2a 6e 6f 2a 2a 3a 20 44 6f 20 6e 6f 74 20 72 65 73 | twork.sockets.**no**:.Do.not.res |
| c5ea0 | 74 61 72 74 20 63 6f 6e 74 61 69 6e 65 72 73 20 6f 6e 20 65 78 69 74 00 2a 2a 6e 6f 61 75 74 68 | tart.containers.on.exit.**noauth |
| c5ec0 | 2a 2a 3a 20 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 64 69 73 61 62 6c 65 64 00 2a 2a 6e 6f | **:.Authentication.disabled.**no |
| c5ee0 | 61 75 74 68 2a 2a 3a 20 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 64 69 73 61 62 6c 65 64 2e | auth**:.Authentication.disabled. |
| c5f00 | 00 2a 2a 6f 66 66 2a 2a 20 49 6e 20 74 68 69 73 20 6d 6f 64 65 2c 20 6e 6f 20 44 4e 53 53 45 43 | .**off**.In.this.mode,.no.DNSSEC |
| c5f20 | 20 70 72 6f 63 65 73 73 69 6e 67 20 74 61 6b 65 73 20 70 6c 61 63 65 2e 20 54 68 65 20 72 65 63 | .processing.takes.place..The.rec |
| c5f40 | 75 72 73 6f 72 20 77 69 6c 6c 20 6e 6f 74 20 73 65 74 20 74 68 65 20 44 4e 53 53 45 43 20 4f 4b | ursor.will.not.set.the.DNSSEC.OK |
| c5f60 | 20 28 44 4f 29 20 62 69 74 20 69 6e 20 74 68 65 20 6f 75 74 67 6f 69 6e 67 20 71 75 65 72 69 65 | .(DO).bit.in.the.outgoing.querie |
| c5f80 | 73 20 61 6e 64 20 77 69 6c 6c 20 69 67 6e 6f 72 65 20 74 68 65 20 44 4f 20 61 6e 64 20 41 44 20 | s.and.will.ignore.the.DO.and.AD. |
| c5fa0 | 62 69 74 73 20 69 6e 20 71 75 65 72 69 65 73 2e 00 2a 2a 6f 6e 2d 66 61 69 6c 75 72 65 2a 2a 3a | bits.in.queries..**on-failure**: |
| c5fc0 | 20 52 65 73 74 61 72 74 20 63 6f 6e 74 61 69 6e 65 72 73 20 77 68 65 6e 20 74 68 65 79 20 65 78 | .Restart.containers.when.they.ex |
| c5fe0 | 69 74 20 77 69 74 68 20 61 20 6e 6f 6e 2d 7a 65 72 6f 20 65 78 69 74 20 63 6f 64 65 2c 20 72 65 | it.with.a.non-zero.exit.code,.re |
| c6000 | 74 72 79 69 6e 67 20 69 6e 64 65 66 69 6e 69 74 65 6c 79 20 28 64 65 66 61 75 6c 74 29 00 2a 2a | trying.indefinitely.(default).** |
| c6020 | 6f 72 64 65 72 2a 2a 20 52 75 6c 65 20 6f 72 64 65 72 2e 20 52 65 71 75 69 72 65 73 20 60 3c 76 | order**.Rule.order..Requires.`<v |
| c6040 | 61 6c 75 65 3e 60 2e 00 2a 2a 6f 75 74 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 2a 2a 20 2d | alue>`..**outbound-interface**.- |
| c6060 | 20 61 70 70 6c 69 63 61 62 6c 65 20 6f 6e 6c 79 20 74 6f 20 3a 72 65 66 3a 60 73 6f 75 72 63 65 | .applicable.only.to.:ref:`source |
| c6080 | 2d 6e 61 74 60 2e 20 49 74 20 63 6f 6e 66 69 67 75 72 65 73 20 74 68 65 20 69 6e 74 65 72 66 61 | -nat`..It.configures.the.interfa |
| c60a0 | 63 65 20 77 68 69 63 68 20 69 73 20 75 73 65 64 20 66 6f 72 20 74 68 65 20 6f 75 74 73 69 64 65 | ce.which.is.used.for.the.outside |
| c60c0 | 20 74 72 61 66 66 69 63 20 74 68 61 74 20 74 68 69 73 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 72 | .traffic.that.this.translation.r |
| c60e0 | 75 6c 65 20 61 70 70 6c 69 65 73 20 74 6f 2e 00 2a 2a 6f 75 74 62 6f 75 6e 64 2d 69 6e 74 65 72 | ule.applies.to..**outbound-inter |
| c6100 | 66 61 63 65 2a 2a 20 2d 20 61 70 70 6c 69 63 61 62 6c 65 20 6f 6e 6c 79 20 74 6f 20 3a 72 65 66 | face**.-.applicable.only.to.:ref |
| c6120 | 3a 60 73 6f 75 72 63 65 2d 6e 61 74 60 2e 20 49 74 20 63 6f 6e 66 69 67 75 72 65 73 20 74 68 65 | :`source-nat`..It.configures.the |
| c6140 | 20 69 6e 74 65 72 66 61 63 65 20 77 68 69 63 68 20 69 73 20 75 73 65 64 20 66 6f 72 20 74 68 65 | .interface.which.is.used.for.the |
| c6160 | 20 6f 75 74 73 69 64 65 20 74 72 61 66 66 69 63 20 74 68 61 74 20 74 68 69 73 20 74 72 61 6e 73 | .outside.traffic.that.this.trans |
| c6180 | 6c 61 74 69 6f 6e 20 72 75 6c 65 20 61 70 70 6c 69 65 73 20 74 6f 2e 20 49 6e 74 65 72 66 61 63 | lation.rule.applies.to..Interfac |
| c61a0 | 65 20 67 72 6f 75 70 73 2c 20 69 6e 76 65 72 74 65 64 20 73 65 6c 65 63 74 69 6f 6e 20 61 6e 64 | e.groups,.inverted.selection.and |
| c61c0 | 20 77 69 6c 64 63 61 72 64 2c 20 61 72 65 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 00 2a | .wildcard,.are.also.supported..* |
| c61e0 | 2a 70 72 65 66 65 72 2a 2a 20 2d 20 41 73 6b 20 63 6c 69 65 6e 74 20 66 6f 72 20 49 50 76 34 20 | *prefer**.-.Ask.client.for.IPv4. |
| c6200 | 6e 65 67 6f 74 69 61 74 69 6f 6e 2c 20 64 6f 20 6e 6f 74 20 66 61 69 6c 20 69 66 20 69 74 20 72 | negotiation,.do.not.fail.if.it.r |
| c6220 | 65 6a 65 63 74 73 00 2a 2a 70 72 65 66 65 72 2a 2a 20 2d 20 41 73 6b 20 63 6c 69 65 6e 74 20 66 | ejects.**prefer**.-.Ask.client.f |
| c6240 | 6f 72 20 49 50 76 36 20 6e 65 67 6f 74 69 61 74 69 6f 6e 2c 20 64 6f 20 6e 6f 74 20 66 61 69 6c | or.IPv6.negotiation,.do.not.fail |
| c6260 | 20 69 66 20 69 74 20 72 65 6a 65 63 74 73 00 2a 2a 70 72 65 66 65 72 2a 2a 20 2d 20 61 73 6b 20 | .if.it.rejects.**prefer**.-.ask. |
| c6280 | 63 6c 69 65 6e 74 20 66 6f 72 20 6d 70 70 65 2c 20 69 66 20 69 74 20 72 65 6a 65 63 74 73 20 64 | client.for.mppe,.if.it.rejects.d |
| c62a0 | 6f 6e 27 74 20 66 61 69 6c 00 2a 2a 70 72 65 66 65 72 2a 2a 20 2d 20 61 73 6b 20 63 6c 69 65 6e | on't.fail.**prefer**.-.ask.clien |
| c62c0 | 74 20 66 6f 72 20 6d 70 70 65 2c 20 69 66 20 69 74 20 72 65 6a 65 63 74 73 20 64 6f 6e 27 74 20 | t.for.mppe,.if.it.rejects.don't. |
| c62e0 | 66 61 69 6c 2e 20 28 44 65 66 61 75 6c 74 20 76 61 6c 75 65 29 00 2a 2a 70 72 65 66 65 72 65 6e | fail..(Default.value).**preferen |
| c6300 | 63 65 2a 2a 20 52 75 6c 65 20 70 72 65 66 65 72 65 6e 63 65 2e 20 52 65 71 75 69 72 65 73 20 60 | ce**.Rule.preference..Requires.` |
| c6320 | 3c 76 61 6c 75 65 3e 60 2e 20 44 65 66 61 75 6c 74 73 20 74 6f 20 30 20 69 66 20 6e 6f 74 20 73 | <value>`..Defaults.to.0.if.not.s |
| c6340 | 65 74 2e 00 2a 2a 70 72 6f 63 65 73 73 2a 2a 20 57 68 65 6e 20 64 6e 73 73 65 63 20 69 73 20 73 | et..**process**.When.dnssec.is.s |
| c6360 | 65 74 20 74 6f 20 70 72 6f 63 65 73 73 20 74 68 65 20 62 65 68 61 76 69 6f 72 20 69 73 20 73 69 | et.to.process.the.behavior.is.si |
| c6380 | 6d 69 6c 61 72 20 74 6f 20 70 72 6f 63 65 73 73 2d 6e 6f 2d 76 61 6c 69 64 61 74 65 2e 20 48 6f | milar.to.process-no-validate..Ho |
| c63a0 | 77 65 76 65 72 2c 20 74 68 65 20 72 65 63 75 72 73 6f 72 20 77 69 6c 6c 20 74 72 79 20 74 6f 20 | wever,.the.recursor.will.try.to. |
| c63c0 | 76 61 6c 69 64 61 74 65 20 74 68 65 20 64 61 74 61 20 69 66 20 61 74 20 6c 65 61 73 74 20 6f 6e | validate.the.data.if.at.least.on |
| c63e0 | 65 20 6f 66 20 74 68 65 20 44 4f 20 6f 72 20 41 44 20 62 69 74 73 20 69 73 20 73 65 74 20 69 6e | e.of.the.DO.or.AD.bits.is.set.in |
| c6400 | 20 74 68 65 20 71 75 65 72 79 3b 20 69 6e 20 74 68 61 74 20 63 61 73 65 2c 20 69 74 20 77 69 6c | .the.query;.in.that.case,.it.wil |
| c6420 | 6c 20 73 65 74 20 74 68 65 20 41 44 2d 62 69 74 20 69 6e 20 74 68 65 20 72 65 73 70 6f 6e 73 65 | l.set.the.AD-bit.in.the.response |
| c6440 | 20 77 68 65 6e 20 74 68 65 20 64 61 74 61 20 69 73 20 76 61 6c 69 64 61 74 65 64 20 73 75 63 63 | .when.the.data.is.validated.succ |
| c6460 | 65 73 73 66 75 6c 6c 79 2c 20 6f 72 20 73 65 6e 64 20 53 45 52 56 46 41 49 4c 20 77 68 65 6e 20 | essfully,.or.send.SERVFAIL.when. |
| c6480 | 74 68 65 20 76 61 6c 69 64 61 74 69 6f 6e 20 63 6f 6d 65 73 20 75 70 20 62 6f 67 75 73 2e 00 2a | the.validation.comes.up.bogus..* |
| c64a0 | 2a 70 72 6f 63 65 73 73 2d 6e 6f 2d 76 61 6c 69 64 61 74 65 2a 2a 20 49 6e 20 74 68 69 73 20 6d | *process-no-validate**.In.this.m |
| c64c0 | 6f 64 65 20 74 68 65 20 72 65 63 75 72 73 6f 72 20 61 63 74 73 20 61 73 20 61 20 22 73 65 63 75 | ode.the.recursor.acts.as.a."secu |
| c64e0 | 72 69 74 79 20 61 77 61 72 65 2c 20 6e 6f 6e 2d 76 61 6c 69 64 61 74 69 6e 67 22 20 6e 61 6d 65 | rity.aware,.non-validating".name |
| c6500 | 73 65 72 76 65 72 2c 20 6d 65 61 6e 69 6e 67 20 69 74 20 77 69 6c 6c 20 73 65 74 20 74 68 65 20 | server,.meaning.it.will.set.the. |
| c6520 | 44 4f 2d 62 69 74 20 6f 6e 20 6f 75 74 67 6f 69 6e 67 20 71 75 65 72 69 65 73 20 61 6e 64 20 77 | DO-bit.on.outgoing.queries.and.w |
| c6540 | 69 6c 6c 20 70 72 6f 76 69 64 65 20 44 4e 53 53 45 43 20 72 65 6c 61 74 65 64 20 52 52 73 65 74 | ill.provide.DNSSEC.related.RRset |
| c6560 | 73 20 28 4e 53 45 43 2c 20 52 52 53 49 47 29 20 74 6f 20 63 6c 69 65 6e 74 73 20 74 68 61 74 20 | s.(NSEC,.RRSIG).to.clients.that. |
| c6580 | 61 73 6b 20 66 6f 72 20 74 68 65 6d 20 28 62 79 20 6d 65 61 6e 73 20 6f 66 20 61 20 44 4f 2d 62 | ask.for.them.(by.means.of.a.DO-b |
| c65a0 | 69 74 20 69 6e 20 74 68 65 20 71 75 65 72 79 29 2c 20 65 78 63 65 70 74 20 66 6f 72 20 7a 6f 6e | it.in.the.query),.except.for.zon |
| c65c0 | 65 73 20 70 72 6f 76 69 64 65 64 20 74 68 72 6f 75 67 68 20 74 68 65 20 61 75 74 68 2d 7a 6f 6e | es.provided.through.the.auth-zon |
| c65e0 | 65 73 20 73 65 74 74 69 6e 67 2e 20 49 74 20 77 69 6c 6c 20 6e 6f 74 20 64 6f 20 61 6e 79 20 76 | es.setting..It.will.not.do.any.v |
| c6600 | 61 6c 69 64 61 74 69 6f 6e 20 69 6e 20 74 68 69 73 20 6d 6f 64 65 2c 20 6e 6f 74 20 65 76 65 6e | alidation.in.this.mode,.not.even |
| c6620 | 20 77 68 65 6e 20 72 65 71 75 65 73 74 65 64 20 62 79 20 74 68 65 20 63 6c 69 65 6e 74 2e 00 2a | .when.requested.by.the.client..* |
| c6640 | 2a 70 72 6f 74 6f 63 6f 6c 2a 2a 20 2d 20 73 70 65 63 69 66 79 20 77 68 69 63 68 20 74 79 70 65 | *protocol**.-.specify.which.type |
| c6660 | 73 20 6f 66 20 70 72 6f 74 6f 63 6f 6c 73 20 74 68 69 73 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 | s.of.protocols.this.translation. |
| c6680 | 72 75 6c 65 20 61 70 70 6c 69 65 73 20 74 6f 2e 20 4f 6e 6c 79 20 70 61 63 6b 65 74 73 20 6d 61 | rule.applies.to..Only.packets.ma |
| c66a0 | 74 63 68 69 6e 67 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 70 72 6f 74 6f 63 6f 6c 20 61 72 | tching.the.specified.protocol.ar |
| c66c0 | 65 20 4e 41 54 65 64 2e 20 42 79 20 64 65 66 61 75 6c 74 20 74 68 69 73 20 61 70 70 6c 69 65 73 | e.NATed..By.default.this.applies |
| c66e0 | 20 74 6f 20 60 61 6c 6c 60 20 70 72 6f 74 6f 63 6f 6c 73 2e 00 2a 2a 70 72 6f 74 6f 63 6f 6c 2d | .to.`all`.protocols..**protocol- |
| c6700 | 73 70 65 63 69 66 69 63 2a 2a 20 50 20 66 6c 61 67 2e 00 2a 2a 72 61 64 69 75 73 2a 2a 3a 20 41 | specific**.P.flag..**radius**:.A |
| c6720 | 6c 6c 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 71 75 65 72 69 65 73 20 61 72 65 20 68 61 | ll.authentication.queries.are.ha |
| c6740 | 6e 64 6c 65 64 20 62 79 20 61 20 63 6f 6e 66 69 67 75 72 65 64 20 52 41 44 49 55 53 20 73 65 72 | ndled.by.a.configured.RADIUS.ser |
| c6760 | 76 65 72 2e 00 2a 2a 72 61 6e 64 6f 6d 2a 2a 20 2d 20 52 61 6e 64 6f 6d 20 69 6e 74 65 72 66 61 | ver..**random**.-.Random.interfa |
| c6780 | 63 65 20 69 64 65 6e 74 69 66 69 65 72 20 66 6f 72 20 49 50 76 36 00 2a 2a 72 65 67 65 78 70 2a | ce.identifier.for.IPv6.**regexp* |
| c67a0 | 2a 20 52 65 67 75 6c 61 72 20 65 78 70 72 65 73 73 69 6f 6e 2e 20 52 65 71 75 69 72 65 73 20 60 | *.Regular.expression..Requires.` |
| c67c0 | 3c 76 61 6c 75 65 3e 60 2e 00 2a 2a 72 65 6d 6f 74 65 20 73 69 64 65 20 2d 20 63 6f 6d 6d 61 6e | <value>`..**remote.side.-.comman |
| c67e0 | 64 73 2a 2a 00 2a 2a 72 65 70 6c 61 63 65 2a 2a 3a 20 54 65 72 6d 69 6e 61 74 65 20 66 69 72 73 | ds**.**replace**:.Terminate.firs |
| c6800 | 74 20 73 65 73 73 69 6f 6e 20 77 68 65 6e 20 73 65 63 6f 6e 64 20 69 73 20 61 75 74 68 6f 72 69 | t.session.when.second.is.authori |
| c6820 | 7a 65 64 20 2a 2a 28 64 65 66 61 75 6c 74 29 2a 2a 00 2a 2a 72 65 70 6c 61 63 65 3a 2a 2a 20 52 | zed.**(default)**.**replace:**.R |
| c6840 | 65 6c 61 79 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 6c 72 65 61 64 79 20 70 72 65 73 65 6e 74 | elay.information.already.present |
| c6860 | 20 69 6e 20 61 20 70 61 63 6b 65 74 20 69 73 20 73 74 72 69 70 70 65 64 20 61 6e 64 20 72 65 70 | .in.a.packet.is.stripped.and.rep |
| c6880 | 6c 61 63 65 64 20 77 69 74 68 20 74 68 65 20 72 6f 75 74 65 72 27 73 20 6f 77 6e 20 72 65 6c 61 | laced.with.the.router's.own.rela |
| c68a0 | 79 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 73 65 74 2e 00 2a 2a 72 65 70 6c 61 63 65 6d 65 6e 74 | y.information.set..**replacement |
| c68c0 | 2a 2a 20 52 65 70 6c 61 63 65 6d 65 6e 74 20 44 4e 53 20 6e 61 6d 65 2e 00 2a 2a 72 65 71 75 69 | **.Replacement.DNS.name..**requi |
| c68e0 | 72 65 2a 2a 20 2d 20 52 65 71 75 69 72 65 20 49 50 76 34 20 6e 65 67 6f 74 69 61 74 69 6f 6e 00 | re**.-.Require.IPv4.negotiation. |
| c6900 | 2a 2a 72 65 71 75 69 72 65 2a 2a 20 2d 20 52 65 71 75 69 72 65 20 49 50 76 36 20 6e 65 67 6f 74 | **require**.-.Require.IPv6.negot |
| c6920 | 69 61 74 69 6f 6e 00 2a 2a 72 65 71 75 69 72 65 2a 2a 20 2d 20 61 73 6b 20 63 6c 69 65 6e 74 20 | iation.**require**.-.ask.client. |
| c6940 | 66 6f 72 20 6d 70 70 65 2c 20 69 66 20 69 74 20 72 65 6a 65 63 74 73 20 64 72 6f 70 20 63 6f 6e | for.mppe,.if.it.rejects.drop.con |
| c6960 | 6e 65 63 74 69 6f 6e 00 2a 2a 72 65 73 6f 6c 76 65 2d 75 72 69 2a 2a 20 55 20 66 6c 61 67 2e 00 | nection.**resolve-uri**.U.flag.. |
| c6980 | 2a 2a 72 69 67 68 74 2a 2a 00 2a 2a 73 65 72 76 69 63 65 2a 2a 20 53 65 72 76 69 63 65 20 74 79 | **right**.**service**.Service.ty |
| c69a0 | 70 65 2e 20 52 65 71 75 69 72 65 73 20 60 3c 76 61 6c 75 65 3e 60 2e 00 2a 2a 73 65 74 70 63 61 | pe..Requires.`<value>`..**setpca |
| c69c0 | 70 2a 2a 3a 20 43 61 70 61 62 69 6c 69 74 79 20 73 65 74 73 20 28 66 72 6f 6d 20 62 6f 75 6e 64 | p**:.Capability.sets.(from.bound |
| c69e0 | 65 64 20 6f 72 20 69 6e 68 65 72 69 74 65 64 20 73 65 74 29 00 2a 2a 73 68 61 72 65 64 2a 2a 3a | ed.or.inherited.set).**shared**: |
| c6a00 | 20 4d 75 6c 74 69 70 6c 65 20 63 6c 69 65 6e 74 73 20 73 68 61 72 65 20 74 68 65 20 73 61 6d 65 | .Multiple.clients.share.the.same |
| c6a20 | 20 6e 65 74 77 6f 72 6b 2e 20 2a 2a 28 64 65 66 61 75 6c 74 29 2a 2a 00 2a 2a 73 6f 75 72 63 65 | .network..**(default)**.**source |
| c6a40 | 2a 2a 20 2d 20 73 70 65 63 69 66 69 65 73 20 77 68 69 63 68 20 70 61 63 6b 65 74 73 20 74 68 65 | **.-.specifies.which.packets.the |
| c6a60 | 20 4e 41 54 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 72 75 6c 65 20 61 70 70 6c 69 65 73 20 74 6f | .NAT.translation.rule.applies.to |
| c6a80 | 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 70 61 63 6b 65 74 73 20 73 6f 75 72 63 65 20 49 50 20 | .based.on.the.packets.source.IP. |
| c6aa0 | 61 64 64 72 65 73 73 20 61 6e 64 2f 6f 72 20 73 6f 75 72 63 65 20 70 6f 72 74 2e 20 4f 6e 6c 79 | address.and/or.source.port..Only |
| c6ac0 | 20 6d 61 74 63 68 69 6e 67 20 70 61 63 6b 65 74 73 20 61 72 65 20 63 6f 6e 73 69 64 65 72 65 64 | .matching.packets.are.considered |
| c6ae0 | 20 66 6f 72 20 4e 41 54 2e 00 2a 2a 73 79 73 2d 61 64 6d 69 6e 2a 2a 3a 20 41 64 6d 69 6e 69 73 | .for.NAT..**sys-admin**:.Adminis |
| c6b00 | 74 61 74 69 6f 6e 20 6f 70 65 72 61 74 69 6f 6e 73 20 28 71 75 6f 74 61 63 74 6c 2c 20 6d 6f 75 | tation.operations.(quotactl,.mou |
| c6b20 | 6e 74 2c 20 73 65 74 68 6f 73 74 6e 61 6d 65 2c 20 73 65 74 64 6f 6d 61 69 6e 61 6d 65 29 00 2a | nt,.sethostname,.setdomainame).* |
| c6b40 | 2a 73 79 73 2d 61 64 6d 69 6e 2a 2a 3a 20 41 64 6d 69 6e 69 73 74 72 61 74 69 6f 6e 20 6f 70 65 | *sys-admin**:.Administration.ope |
| c6b60 | 72 61 74 69 6f 6e 73 20 28 71 75 6f 74 61 63 74 6c 2c 20 6d 6f 75 6e 74 2c 20 73 65 74 68 6f 73 | rations.(quotactl,.mount,.sethos |
| c6b80 | 74 6e 61 6d 65 2c 20 73 65 74 64 6f 6d 61 69 6e 61 6d 65 29 00 2a 2a 73 79 73 2d 74 69 6d 65 2a | tname,.setdomainame).**sys-time* |
| c6ba0 | 2a 3a 20 50 65 72 6d 69 73 73 69 6f 6e 20 74 6f 20 73 65 74 20 73 79 73 74 65 6d 20 63 6c 6f 63 | *:.Permission.to.set.system.cloc |
| c6bc0 | 6b 00 2a 2a 74 72 61 6e 73 69 74 69 6f 6e 2a 2a 20 2d 20 53 65 6e 64 20 61 6e 64 20 61 63 63 65 | k.**transition**.-.Send.and.acce |
| c6be0 | 70 74 20 62 6f 74 68 20 73 74 79 6c 65 73 20 6f 66 20 54 4c 56 73 20 64 75 72 69 6e 67 20 74 72 | pt.both.styles.of.TLVs.during.tr |
| c6c00 | 61 6e 73 69 74 69 6f 6e 2e 00 2a 2a 75 70 73 74 72 65 61 6d 3a 2a 2a 20 54 68 65 20 75 70 73 74 | ansition..**upstream:**.The.upst |
| c6c20 | 72 65 61 6d 20 6e 65 74 77 6f 72 6b 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 74 68 65 20 6f 75 | ream.network.interface.is.the.ou |
| c6c40 | 74 67 6f 69 6e 67 20 69 6e 74 65 72 66 61 63 65 20 77 68 69 63 68 20 69 73 20 72 65 73 70 6f 6e | tgoing.interface.which.is.respon |
| c6c60 | 73 69 62 6c 65 20 66 6f 72 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6e 67 20 74 6f 20 61 76 61 69 6c | sible.for.communicating.to.avail |
| c6c80 | 61 62 6c 65 20 6d 75 6c 74 69 63 61 73 74 20 64 61 74 61 20 73 6f 75 72 63 65 73 2e 20 54 68 65 | able.multicast.data.sources..The |
| c6ca0 | 72 65 20 63 61 6e 20 6f 6e 6c 79 20 62 65 20 6f 6e 65 20 75 70 73 74 72 65 61 6d 20 69 6e 74 65 | re.can.only.be.one.upstream.inte |
| c6cc0 | 72 66 61 63 65 2e 00 2a 2a 76 61 6c 69 64 61 74 65 2a 2a 20 54 68 65 20 68 69 67 68 65 73 74 20 | rface..**validate**.The.highest. |
| c6ce0 | 6d 6f 64 65 20 6f 66 20 44 4e 53 53 45 43 20 70 72 6f 63 65 73 73 69 6e 67 2e 20 49 6e 20 74 68 | mode.of.DNSSEC.processing..In.th |
| c6d00 | 69 73 20 6d 6f 64 65 2c 20 61 6c 6c 20 71 75 65 72 69 65 73 20 77 69 6c 6c 20 62 65 20 76 61 6c | is.mode,.all.queries.will.be.val |
| c6d20 | 69 64 61 74 65 64 20 61 6e 64 20 77 69 6c 6c 20 62 65 20 61 6e 73 77 65 72 65 64 20 77 69 74 68 | idated.and.will.be.answered.with |
| c6d40 | 20 61 20 53 45 52 56 46 41 49 4c 20 69 6e 20 63 61 73 65 20 6f 66 20 62 6f 67 75 73 20 64 61 74 | .a.SERVFAIL.in.case.of.bogus.dat |
| c6d60 | 61 2c 20 72 65 67 61 72 64 6c 65 73 73 20 6f 66 20 74 68 65 20 63 6c 69 65 6e 74 27 73 20 72 65 | a,.regardless.of.the.client's.re |
| c6d80 | 71 75 65 73 74 2e 00 2a 2a 76 6c 61 6e 2a 2a 3a 20 4f 6e 65 20 56 4c 41 4e 20 70 65 72 20 63 6c | quest..**vlan**:.One.VLAN.per.cl |
| c6da0 | 69 65 6e 74 2e 00 2a 2a 77 69 64 65 2a 2a 20 2d 20 55 73 65 20 6e 65 77 20 73 74 79 6c 65 20 6f | ient..**wide**.-.Use.new.style.o |
| c6dc0 | 66 20 54 4c 56 73 20 74 6f 20 63 61 72 72 79 20 77 69 64 65 72 20 6d 65 74 72 69 63 2e 00 2a 2a | f.TLVs.to.carry.wider.metric..** |
| c6de0 | 78 3a 78 3a 78 3a 78 2a 2a 20 2d 20 53 70 65 63 69 66 79 20 69 6e 74 65 72 66 61 63 65 20 69 64 | x:x:x:x**.-.Specify.interface.id |
| c6e00 | 65 6e 74 69 66 69 65 72 20 66 6f 72 20 49 50 76 36 00 2a 62 67 70 64 2a 20 73 75 70 70 6f 72 74 | entifier.for.IPv6.*bgpd*.support |
| c6e20 | 73 20 4d 75 6c 74 69 70 72 6f 74 6f 63 6f 6c 20 45 78 74 65 6e 73 69 6f 6e 20 66 6f 72 20 42 47 | s.Multiprotocol.Extension.for.BG |
| c6e40 | 50 2e 20 53 6f 20 69 66 20 61 20 72 65 6d 6f 74 65 20 70 65 65 72 20 73 75 70 70 6f 72 74 73 20 | P..So.if.a.remote.peer.supports. |
| c6e60 | 74 68 65 20 70 72 6f 74 6f 63 6f 6c 2c 20 2a 62 67 70 64 2a 20 63 61 6e 20 65 78 63 68 61 6e 67 | the.protocol,.*bgpd*.can.exchang |
| c6e80 | 65 20 49 50 76 36 20 61 6e 64 2f 6f 72 20 6d 75 6c 74 69 63 61 73 74 20 72 6f 75 74 69 6e 67 20 | e.IPv6.and/or.multicast.routing. |
| c6ea0 | 69 6e 66 6f 72 6d 61 74 69 6f 6e 2e 00 30 00 30 20 69 66 20 6e 6f 74 20 64 65 66 69 6e 65 64 2c | information..0.0.if.not.defined, |
| c6ec0 | 20 77 68 69 63 68 20 6d 65 61 6e 73 20 6e 6f 20 72 65 66 72 65 73 68 69 6e 67 2e 00 30 20 69 66 | .which.means.no.refreshing..0.if |
| c6ee0 | 20 6e 6f 74 20 64 65 66 69 6e 65 64 2e 00 30 30 30 30 30 30 00 30 30 31 30 31 30 00 30 30 31 31 | .not.defined..000000.001010.0011 |
| c6f00 | 30 30 00 30 30 31 31 31 30 00 30 31 30 30 31 30 00 30 31 30 31 30 30 00 30 31 30 31 31 30 00 30 | 00.001110.010010.010100.010110.0 |
| c6f20 | 31 31 30 31 30 00 30 31 31 31 30 30 00 30 31 31 31 31 30 00 30 3a 20 44 69 73 61 62 6c 65 20 44 | 11010.011100.011110.0:.Disable.D |
| c6f40 | 41 44 00 31 00 31 20 69 66 20 6e 6f 74 20 64 65 66 69 6e 65 64 2e 00 31 2d 74 6f 2d 31 20 4e 41 | AD.1.1.if.not.defined..1-to-1.NA |
| c6f60 | 54 00 31 2e 20 43 72 65 61 74 65 20 61 6e 20 65 76 65 6e 74 20 68 61 6e 64 6c 65 72 00 31 2e 20 | T.1..Create.an.event.handler.1.. |
| c6f80 | 46 69 72 73 74 20 70 61 63 6b 65 74 20 69 73 20 72 65 63 65 69 76 65 64 20 6f 6e 20 65 68 74 30 | First.packet.is.received.on.eht0 |
| c6fa0 | 2c 20 77 69 74 68 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 31 39 32 2e 30 | ,.with.destination.address.192.0 |
| c6fc0 | 2e 32 2e 31 30 30 2c 20 70 72 6f 74 6f 63 6f 6c 20 74 63 70 20 61 6e 64 20 64 65 73 74 69 6e 61 | .2.100,.protocol.tcp.and.destina |
| c6fe0 | 74 69 6f 6e 20 70 6f 72 74 20 31 31 32 32 2e 20 41 73 73 75 6d 65 20 73 75 63 68 20 64 65 73 74 | tion.port.1122..Assume.such.dest |
| c7000 | 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 69 73 20 72 65 61 63 68 61 62 6c 65 20 74 68 72 | ination.address.is.reachable.thr |
| c7020 | 6f 75 67 68 20 69 6e 74 65 72 66 61 63 65 20 65 74 68 31 2e 00 31 2e 20 46 69 72 73 74 20 70 61 | ough.interface.eth1..1..First.pa |
| c7040 | 63 6b 65 74 20 69 73 20 72 65 63 65 69 76 65 64 20 6f 6e 20 65 74 68 30 2c 20 77 69 74 68 20 64 | cket.is.received.on.eth0,.with.d |
| c7060 | 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 31 39 32 2e 30 2e 32 2e 31 30 30 2c 20 | estination.address.192.0.2.100,. |
| c7080 | 70 72 6f 74 6f 63 6f 6c 20 74 63 70 20 61 6e 64 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 70 6f 72 | protocol.tcp.and.destination.por |
| c70a0 | 74 20 31 31 32 32 2e 20 41 73 73 75 6d 65 20 73 75 63 68 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 | t.1122..Assume.such.destination. |
| c70c0 | 61 64 64 72 65 73 73 20 69 73 20 72 65 61 63 68 61 62 6c 65 20 74 68 72 6f 75 67 68 20 69 6e 74 | address.is.reachable.through.int |
| c70e0 | 65 72 66 61 63 65 20 65 74 68 31 2e 00 31 2e 20 46 69 72 73 74 6c 79 2c 20 61 20 70 61 63 6b 65 | erface.eth1..1..Firstly,.a.packe |
| c7100 | 74 20 69 73 20 72 65 63 65 69 76 65 64 20 6f 6e 20 65 74 68 30 2c 20 77 69 74 68 20 64 65 73 74 | t.is.received.on.eth0,.with.dest |
| c7120 | 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 31 39 32 2e 30 2e 32 2e 31 30 30 2c 20 70 72 6f | ination.address.192.0.2.100,.pro |
| c7140 | 74 6f 63 6f 6c 20 74 63 70 20 61 6e 64 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 70 6f 72 74 20 31 | tocol.tcp.and.destination.port.1 |
| c7160 | 31 32 32 2e 20 41 73 73 75 6d 65 20 73 75 63 68 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 | 122..Assume.such.destination.add |
| c7180 | 72 65 73 73 20 69 73 20 72 65 61 63 68 61 62 6c 65 20 74 68 72 6f 75 67 68 20 69 6e 74 65 72 66 | ress.is.reachable.through.interf |
| c71a0 | 61 63 65 20 65 74 68 31 2e 00 31 2e 20 47 65 6e 65 72 61 74 65 20 61 20 6e 65 77 20 54 43 50 20 | ace.eth1..1..Generate.a.new.TCP. |
| c71c0 | 63 6f 6e 6e 65 63 74 69 6f 6e 20 77 69 74 68 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 70 6f 72 74 | connection.with.destination.port |
| c71e0 | 20 39 39 39 30 2e 20 41 73 20 73 68 6f 77 6e 20 6e 65 78 74 2c 20 61 20 6e 65 77 20 65 6e 74 72 | .9990..As.shown.next,.a.new.entr |
| c7200 | 79 20 77 61 73 20 61 64 64 65 64 20 74 6f 20 64 79 6e 61 6d 69 63 20 66 69 72 65 77 61 6c 6c 20 | y.was.added.to.dynamic.firewall. |
| c7220 | 67 72 6f 75 70 20 2a 2a 50 4e 5f 30 31 2a 2a 00 31 30 00 31 30 20 2d 20 31 30 20 4d 42 69 74 2f | group.**PN_01**.10.10.-.10.MBit/ |
| c7240 | 73 00 31 30 2e 30 2e 30 2e 30 20 74 6f 20 31 30 2e 32 35 35 2e 32 35 35 2e 32 35 35 20 28 43 49 | s.10.0.0.0.to.10.255.255.255.(CI |
| c7260 | 44 52 3a 20 31 30 2e 30 2e 30 2e 30 2f 38 29 00 31 30 30 20 2d 20 31 30 30 20 4d 42 69 74 2f 73 | DR:.10.0.0.0/8).100.-.100.MBit/s |
| c7280 | 00 31 30 30 30 20 2d 20 31 20 47 42 69 74 2f 73 00 31 30 30 30 30 20 2d 20 31 30 20 47 42 69 74 | .1000.-.1.GBit/s.10000.-.10.GBit |
| c72a0 | 2f 73 00 31 30 30 30 30 30 20 2d 20 31 30 30 20 47 42 69 74 2f 73 00 31 30 30 30 31 30 00 31 30 | /s.100000.-.100.GBit/s.100010.10 |
| c72c0 | 30 31 30 30 00 31 30 30 31 31 30 00 31 30 31 31 31 30 00 31 31 00 31 31 39 00 31 32 00 31 32 31 | 0100.100110.101110.11.119.12.121 |
| c72e0 | 2c 20 32 34 39 00 31 33 00 31 34 00 31 35 00 31 36 00 31 37 00 31 37 32 2e 31 36 2e 30 2e 30 20 | ,.249.13.14.15.16.17.172.16.0.0. |
| c7300 | 74 6f 20 31 37 32 2e 33 31 2e 32 35 35 2e 32 35 35 20 28 43 49 44 52 3a 20 31 37 32 2e 31 36 2e | to.172.31.255.255.(CIDR:.172.16. |
| c7320 | 30 2e 30 2f 31 32 29 00 31 38 00 31 39 00 31 39 32 2e 31 36 38 2e 30 2e 30 20 74 6f 20 31 39 32 | 0.0/12).18.19.192.168.0.0.to.192 |
| c7340 | 2e 31 36 38 2e 32 35 35 2e 32 35 35 20 28 43 49 44 52 3a 20 31 39 32 2e 31 36 38 2e 30 2e 30 2f | .168.255.255.(CIDR:.192.168.0.0/ |
| c7360 | 31 36 29 00 31 3a 20 45 6e 61 62 6c 65 20 44 41 44 20 28 64 65 66 61 75 6c 74 29 00 32 00 32 2e | 16).1:.Enable.DAD.(default).2.2. |
| c7380 | 20 41 64 64 20 72 65 67 65 78 20 74 6f 20 74 68 65 20 73 63 72 69 70 74 00 32 2e 20 47 65 6e 65 | .Add.regex.to.the.script.2..Gene |
| c73a0 | 72 61 74 65 20 61 20 6e 65 77 20 54 43 50 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 77 69 74 68 20 64 | rate.a.new.TCP.connection.with.d |
| c73c0 | 65 73 74 69 6e 61 74 69 6f 6e 20 70 6f 72 74 20 39 39 39 31 2e 20 41 73 20 73 68 6f 77 6e 20 6e | estination.port.9991..As.shown.n |
| c73e0 | 65 78 74 2c 20 61 20 6e 65 77 20 65 6e 74 72 79 20 77 61 73 20 61 64 64 65 64 20 74 6f 20 64 79 | ext,.a.new.entry.was.added.to.dy |
| c7400 | 6e 61 6d 69 63 20 66 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 20 2a 2a 50 4e 5f 30 32 2a 2a 00 32 | namic.firewall.group.**PN_02**.2 |
| c7420 | 2e 20 53 69 6e 63 65 20 74 68 69 73 20 69 73 20 74 68 65 20 66 69 72 73 74 20 70 61 63 6b 65 74 | ..Since.this.is.the.first.packet |
| c7440 | 2c 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 73 74 61 74 75 73 20 6f 66 20 74 68 69 73 20 63 6f 6e 6e | ,.connection.status.of.this.conn |
| c7460 | 65 63 74 69 6f 6e 2c 20 73 6f 20 66 61 72 20 69 73 20 2a 2a 6e 65 77 2a 2a 2e 20 53 6f 20 6e 65 | ection,.so.far.is.**new**..So.ne |
| c7480 | 69 74 68 65 72 20 72 75 6c 65 20 31 30 20 6e 6f 72 20 32 30 20 61 72 65 20 76 61 6c 69 64 2e 00 | ither.rule.10.nor.20.are.valid.. |
| c74a0 | 32 30 00 32 31 00 32 32 00 32 33 00 32 35 30 30 20 2d 20 32 2e 35 20 47 42 69 74 2f 73 00 32 35 | 20.21.22.23.2500.-.2.5.GBit/s.25 |
| c74c0 | 30 30 30 20 2d 20 32 35 20 47 42 69 74 2f 73 00 32 35 32 00 32 36 00 32 38 00 32 3a 20 45 6e 61 | 000.-.25.GBit/s.252.26.28.2:.Ena |
| c74e0 | 62 6c 65 20 44 41 44 2c 20 61 6e 64 20 64 69 73 61 62 6c 65 20 49 50 76 36 20 6f 70 65 72 61 74 | ble.DAD,.and.disable.IPv6.operat |
| c7500 | 69 6f 6e 20 69 66 20 4d 41 43 2d 62 61 73 65 64 20 64 75 70 6c 69 63 61 74 65 20 6c 69 6e 6b 2d | ion.if.MAC-based.duplicate.link- |
| c7520 | 6c 6f 63 61 6c 20 61 64 64 72 65 73 73 20 68 61 73 20 62 65 65 6e 20 66 6f 75 6e 64 2e 00 32 46 | local.address.has.been.found..2F |
| c7540 | 41 20 4f 54 50 20 73 75 70 70 6f 72 74 00 33 00 33 2e 20 41 64 64 20 61 20 66 75 6c 6c 20 70 61 | A.OTP.support.3.3..Add.a.full.pa |
| c7560 | 74 68 20 74 6f 20 74 68 65 20 73 63 72 69 70 74 00 33 2e 20 47 65 6e 65 72 61 74 65 20 61 20 6e | th.to.the.script.3..Generate.a.n |
| c7580 | 65 77 20 54 43 50 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 77 69 74 68 20 64 65 73 74 69 6e 61 74 69 | ew.TCP.connection.with.destinati |
| c75a0 | 6f 6e 20 70 6f 72 74 20 39 39 39 32 2e 20 41 73 20 73 68 6f 77 6e 20 6e 65 78 74 2c 20 61 20 6e | on.port.9992..As.shown.next,.a.n |
| c75c0 | 65 77 20 65 6e 74 72 79 20 77 61 73 20 61 64 64 65 64 20 74 6f 20 64 79 6e 61 6d 69 63 20 66 69 | ew.entry.was.added.to.dynamic.fi |
| c75e0 | 72 65 77 61 6c 6c 20 67 72 6f 75 70 20 2a 2a 41 4c 4c 4f 57 45 44 2a 2a 00 33 30 00 33 34 00 33 | rewall.group.**ALLOWED**.30.34.3 |
| c7600 | 36 00 33 38 00 34 00 34 2e 20 41 64 64 20 6f 70 74 69 6f 6e 61 6c 20 70 61 72 61 6d 65 74 65 72 | 6.38.4.4..Add.optional.parameter |
| c7620 | 73 00 34 2e 20 4f 6e 63 65 20 61 6e 20 61 6e 73 77 65 72 20 66 72 6f 6d 20 73 65 72 76 65 72 20 | s.4..Once.an.answer.from.server. |
| c7640 | 31 39 32 2e 30 2e 32 2e 31 30 30 20 69 73 20 73 65 65 6e 20 69 6e 20 6f 70 70 6f 73 69 74 65 20 | 192.0.2.100.is.seen.in.opposite. |
| c7660 | 64 69 72 65 63 74 69 6f 6e 2c 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 73 74 61 74 65 20 77 69 6c 6c | direction,.connection.state.will |
| c7680 | 20 62 65 20 74 72 69 67 67 65 72 65 64 20 74 6f 20 2a 2a 65 73 74 61 62 6c 69 73 68 65 64 2a 2a | .be.triggered.to.**established** |
| c76a0 | 2c 20 73 6f 20 74 68 69 73 20 72 65 70 6c 79 20 69 73 20 61 63 63 65 70 74 65 64 20 69 6e 20 72 | ,.so.this.reply.is.accepted.in.r |
| c76c0 | 75 6c 65 20 32 30 2e 00 34 2e 20 4f 6e 63 65 20 61 6e 73 77 65 72 20 66 72 6f 6d 20 73 65 72 76 | ule.20..4..Once.answer.from.serv |
| c76e0 | 65 72 20 31 39 32 2e 30 2e 32 2e 31 30 30 20 69 73 20 73 65 65 6e 20 69 6e 20 6f 70 70 6f 73 69 | er.192.0.2.100.is.seen.in.opposi |
| c7700 | 74 65 20 64 69 72 65 63 74 69 6f 6e 2c 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 73 74 61 74 65 20 77 | te.direction,.connection.state.w |
| c7720 | 69 6c 6c 20 62 65 20 74 72 69 67 67 65 72 65 64 20 74 6f 20 2a 2a 65 73 74 61 62 6c 69 73 68 65 | ill.be.triggered.to.**establishe |
| c7740 | 64 2a 2a 2c 20 73 6f 20 74 68 69 73 20 72 65 70 6c 79 20 69 73 20 61 63 63 65 70 74 65 64 20 69 | d**,.so.this.reply.is.accepted.i |
| c7760 | 6e 20 72 75 6c 65 20 31 30 2e 00 34 2e 20 4f 6e 63 65 20 61 6e 73 77 65 72 20 66 72 6f 6d 20 73 | n.rule.10..4..Once.answer.from.s |
| c7780 | 65 72 76 65 72 20 31 39 32 2e 30 2e 32 2e 31 30 30 20 69 73 20 73 65 65 6e 20 69 6e 20 6f 70 70 | erver.192.0.2.100.is.seen.in.opp |
| c77a0 | 6f 73 69 74 65 20 64 69 72 65 63 74 69 6f 6e 2c 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 73 74 61 74 | osite.direction,.connection.stat |
| c77c0 | 65 20 77 69 6c 6c 20 62 65 20 74 72 69 67 67 65 72 65 64 20 74 6f 20 2a 2a 65 73 74 61 62 6c 69 | e.will.be.triggered.to.**establi |
| c77e0 | 73 68 65 64 2a 2a 2c 20 73 6f 20 74 68 69 73 20 72 65 70 6c 79 20 69 73 20 61 63 63 65 70 74 65 | shed**,.so.this.reply.is.accepte |
| c7800 | 64 20 69 6e 20 72 75 6c 65 20 32 30 2e 00 34 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 73 20 6d 61 | d.in.rule.20..40.MHz.channels.ma |
| c7820 | 79 20 73 77 69 74 63 68 20 74 68 65 69 72 20 70 72 69 6d 61 72 79 20 61 6e 64 20 73 65 63 6f 6e | y.switch.their.primary.and.secon |
| c7840 | 64 61 72 79 20 63 68 61 6e 6e 65 6c 73 20 69 66 20 6e 65 65 64 65 64 20 6f 72 20 63 72 65 61 74 | dary.channels.if.needed.or.creat |
| c7860 | 69 6f 6e 20 6f 66 20 34 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 6d 61 79 62 65 20 72 65 6a 65 | ion.of.40.MHz.channel.maybe.reje |
| c7880 | 63 74 65 64 20 62 61 73 65 64 20 6f 6e 20 6f 76 65 72 6c 61 70 70 69 6e 67 20 42 53 53 65 73 2e | cted.based.on.overlapping.BSSes. |
| c78a0 | 20 54 68 65 73 65 20 63 68 61 6e 67 65 73 20 61 72 65 20 64 6f 6e 65 20 61 75 74 6f 6d 61 74 69 | .These.changes.are.done.automati |
| c78c0 | 63 61 6c 6c 79 20 77 68 65 6e 20 68 6f 73 74 61 70 64 20 69 73 20 73 65 74 74 69 6e 67 20 75 70 | cally.when.hostapd.is.setting.up |
| c78e0 | 20 74 68 65 20 34 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 2e 00 34 30 30 30 30 20 2d 20 34 30 20 | .the.40.MHz.channel..40000.-.40. |
| c7900 | 47 42 69 74 2f 73 00 34 32 00 34 34 00 34 36 00 35 00 35 20 69 66 20 6e 6f 74 20 64 65 66 69 6e | GBit/s.42.44.46.5.5.if.not.defin |
| c7920 | 65 64 2e 00 35 2e 20 53 65 63 6f 6e 64 20 70 61 63 6b 65 74 20 66 6f 72 20 74 68 69 73 20 63 6f | ed..5..Second.packet.for.this.co |
| c7940 | 6e 6e 65 63 74 69 6f 6e 20 69 73 20 72 65 63 65 69 76 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 | nnection.is.received.by.the.rout |
| c7960 | 65 72 2e 20 53 69 6e 63 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 73 74 61 74 65 20 69 73 20 2a 2a | er..Since.connection.state.is.** |
| c7980 | 65 73 74 61 62 6c 69 73 68 65 64 2a 2a 2c 20 74 68 65 6e 20 72 75 6c 65 20 31 30 20 69 73 20 68 | established**,.then.rule.10.is.h |
| c79a0 | 69 74 2c 20 61 6e 64 20 61 20 6e 65 77 20 65 6e 74 72 79 20 69 6e 20 74 68 65 20 66 6c 6f 77 74 | it,.and.a.new.entry.in.the.flowt |
| c79c0 | 61 62 6c 65 20 46 54 30 31 20 69 73 20 61 64 64 65 64 20 66 6f 72 20 74 68 69 73 20 63 6f 6e 6e | able.FT01.is.added.for.this.conn |
| c79e0 | 65 63 74 69 6f 6e 2e 00 35 2e 20 54 68 65 20 73 65 63 6f 6e 64 20 70 61 63 6b 65 74 20 66 6f 72 | ection..5..The.second.packet.for |
| c7a00 | 20 74 68 69 73 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 69 73 20 72 65 63 65 69 76 65 64 20 62 79 20 | .this.connection.is.received.by. |
| c7a20 | 74 68 65 20 72 6f 75 74 65 72 2e 20 53 69 6e 63 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 73 74 61 | the.router..Since.connection.sta |
| c7a40 | 74 65 20 69 73 20 2a 2a 65 73 74 61 62 6c 69 73 68 65 64 2a 2a 2c 20 74 68 65 6e 20 72 75 6c 65 | te.is.**established**,.then.rule |
| c7a60 | 20 31 30 20 69 73 20 68 69 74 2c 20 61 6e 64 20 61 20 6e 65 77 20 65 6e 74 72 79 20 69 6e 20 74 | .10.is.hit,.and.a.new.entry.in.t |
| c7a80 | 68 65 20 66 6c 6f 77 74 61 62 6c 65 20 46 54 30 31 20 69 73 20 61 64 64 65 64 20 66 6f 72 20 74 | he.flowtable.FT01.is.added.for.t |
| c7aa0 | 68 69 73 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 35 30 30 30 20 2d 20 35 20 47 42 69 74 2f 73 00 | his.connection..5000.-.5.GBit/s. |
| c7ac0 | 35 30 30 30 30 20 2d 20 35 30 20 47 42 69 74 2f 73 00 35 34 00 36 00 36 2e 20 41 6c 6c 20 73 75 | 50000.-.50.GBit/s.54.6.6..All.su |
| c7ae0 | 62 73 65 63 75 65 6e 74 20 70 61 63 6b 65 74 73 20 77 69 6c 6c 20 73 6b 69 70 20 74 72 61 64 69 | bsecuent.packets.will.skip.tradi |
| c7b00 | 74 69 6f 6e 61 6c 20 70 61 74 68 2c 20 61 6e 64 20 77 69 6c 6c 20 62 65 20 6f 66 66 6c 6f 61 64 | tional.path,.and.will.be.offload |
| c7b20 | 65 64 20 61 6e 64 20 77 69 6c 6c 20 75 73 65 20 74 68 65 20 2a 2a 46 61 73 74 20 50 61 74 68 2a | ed.and.will.use.the.**Fast.Path* |
| c7b40 | 2a 2e 00 36 2e 20 41 6c 6c 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 70 61 63 6b 65 74 73 20 | *..6..All.the.following.packets. |
| c7b60 | 77 69 6c 6c 20 73 6b 69 70 20 74 68 65 20 74 72 61 64 69 74 69 6f 6e 61 6c 20 70 61 74 68 2c 20 | will.skip.the.traditional.path,. |
| c7b80 | 77 69 6c 6c 20 62 65 20 6f 66 66 6c 6f 61 64 65 64 20 61 6e 64 20 75 73 65 20 74 68 65 20 2a 2a | will.be.offloaded.and.use.the.** |
| c7ba0 | 46 61 73 74 20 50 61 74 68 2a 2a 2e 00 36 2e 20 41 6c 6c 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e | Fast.Path**..6..All.the.followin |
| c7bc0 | 67 20 70 61 63 6b 65 74 73 20 77 69 6c 6c 20 73 6b 69 70 20 74 72 61 64 69 74 69 6f 6e 61 6c 20 | g.packets.will.skip.traditional. |
| c7be0 | 70 61 74 68 2c 20 61 6e 64 20 77 69 6c 6c 20 62 65 20 6f 66 66 6c 6f 61 64 65 64 20 61 6e 64 20 | path,.and.will.be.offloaded.and. |
| c7c00 | 77 69 6c 6c 20 75 73 65 20 74 68 65 20 2a 2a 46 61 73 74 20 50 61 74 68 2a 2a 2e 00 36 34 35 31 | will.use.the.**Fast.Path**..6451 |
| c7c20 | 32 20 2f 20 31 30 30 30 20 e2 89 88 20 36 34 20 73 75 62 73 63 72 69 62 65 72 73 20 70 65 72 20 | 2./.1000.....64.subscribers.per. |
| c7c40 | 70 75 62 6c 69 63 20 49 50 00 36 36 00 36 36 25 20 6f 66 20 74 72 61 66 66 69 63 20 69 73 20 72 | public.IP.66.66%.of.traffic.is.r |
| c7c60 | 6f 75 74 65 64 20 74 6f 20 65 74 68 30 2c 20 65 74 68 31 20 67 65 74 73 20 33 33 25 20 6f 66 20 | outed.to.eth0,.eth1.gets.33%.of. |
| c7c80 | 74 72 61 66 66 69 63 2e 00 36 37 00 36 39 00 36 69 6e 34 20 28 53 49 54 29 00 36 69 6e 34 20 75 | traffic..67.69.6in4.(SIT).6in4.u |
| c7ca0 | 73 65 73 20 74 75 6e 6e 65 6c 69 6e 67 20 74 6f 20 65 6e 63 61 70 73 75 6c 61 74 65 20 49 50 76 | ses.tunneling.to.encapsulate.IPv |
| c7cc0 | 36 20 74 72 61 66 66 69 63 20 6f 76 65 72 20 49 50 76 34 20 6c 69 6e 6b 73 20 61 73 20 64 65 66 | 6.traffic.over.IPv4.links.as.def |
| c7ce0 | 69 6e 65 64 20 69 6e 20 3a 72 66 63 3a 60 34 32 31 33 60 2e 20 54 68 65 20 36 69 6e 34 20 74 72 | ined.in.:rfc:`4213`..The.6in4.tr |
| c7d00 | 61 66 66 69 63 20 69 73 20 73 65 6e 74 20 6f 76 65 72 20 49 50 76 34 20 69 6e 73 69 64 65 20 49 | affic.is.sent.over.IPv4.inside.I |
| c7d20 | 50 76 34 20 70 61 63 6b 65 74 73 20 77 68 6f 73 65 20 49 50 20 68 65 61 64 65 72 73 20 68 61 76 | Pv4.packets.whose.IP.headers.hav |
| c7d40 | 65 20 74 68 65 20 49 50 20 70 72 6f 74 6f 63 6f 6c 20 6e 75 6d 62 65 72 20 73 65 74 20 74 6f 20 | e.the.IP.protocol.number.set.to. |
| c7d60 | 34 31 2e 20 54 68 69 73 20 70 72 6f 74 6f 63 6f 6c 20 6e 75 6d 62 65 72 20 69 73 20 73 70 65 63 | 41..This.protocol.number.is.spec |
| c7d80 | 69 66 69 63 61 6c 6c 79 20 64 65 73 69 67 6e 61 74 65 64 20 66 6f 72 20 49 50 76 36 20 65 6e 63 | ifically.designated.for.IPv6.enc |
| c7da0 | 61 70 73 75 6c 61 74 69 6f 6e 2c 20 74 68 65 20 49 50 76 34 20 70 61 63 6b 65 74 20 68 65 61 64 | apsulation,.the.IPv4.packet.head |
| c7dc0 | 65 72 20 69 73 20 69 6d 6d 65 64 69 61 74 65 6c 79 20 66 6f 6c 6c 6f 77 65 64 20 62 79 20 74 68 | er.is.immediately.followed.by.th |
| c7de0 | 65 20 49 50 76 36 20 70 61 63 6b 65 74 20 62 65 69 6e 67 20 63 61 72 72 69 65 64 2e 20 54 68 65 | e.IPv6.packet.being.carried..The |
| c7e00 | 20 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e 20 6f 76 65 72 68 65 61 64 20 69 73 20 74 68 65 20 73 | .encapsulation.overhead.is.the.s |
| c7e20 | 69 7a 65 20 6f 66 20 74 68 65 20 49 50 76 34 20 68 65 61 64 65 72 20 6f 66 20 32 30 20 62 79 74 | ize.of.the.IPv4.header.of.20.byt |
| c7e40 | 65 73 2c 20 74 68 65 72 65 66 6f 72 65 20 77 69 74 68 20 61 6e 20 4d 54 55 20 6f 66 20 31 35 30 | es,.therefore.with.an.MTU.of.150 |
| c7e60 | 30 20 62 79 74 65 73 2c 20 49 50 76 36 20 70 61 63 6b 65 74 73 20 6f 66 20 31 34 38 30 20 62 79 | 0.bytes,.IPv6.packets.of.1480.by |
| c7e80 | 74 65 73 20 63 61 6e 20 62 65 20 73 65 6e 74 20 77 69 74 68 6f 75 74 20 66 72 61 67 6d 65 6e 74 | tes.can.be.sent.without.fragment |
| c7ea0 | 61 74 69 6f 6e 2e 20 54 68 69 73 20 74 75 6e 6e 65 6c 69 6e 67 20 74 65 63 68 6e 69 71 75 65 20 | ation..This.tunneling.technique. |
| c7ec0 | 69 73 20 66 72 65 71 75 65 6e 74 6c 79 20 75 73 65 64 20 62 79 20 49 50 76 36 20 74 75 6e 6e 65 | is.frequently.used.by.IPv6.tunne |
| c7ee0 | 6c 20 62 72 6f 6b 65 72 73 20 6c 69 6b 65 20 60 48 75 72 72 69 63 61 6e 65 20 45 6c 65 63 74 72 | l.brokers.like.`Hurricane.Electr |
| c7f00 | 69 63 60 5f 2e 00 37 00 37 30 00 38 00 38 30 32 2e 31 71 20 56 4c 41 4e 20 69 6e 74 65 72 66 61 | ic`_..7.70.8.802.1q.VLAN.interfa |
| c7f20 | 63 65 73 20 61 72 65 20 72 65 70 72 65 73 65 6e 74 65 64 20 61 73 20 76 69 72 74 75 61 6c 20 73 | ces.are.represented.as.virtual.s |
| c7f40 | 75 62 2d 69 6e 74 65 72 66 61 63 65 73 20 69 6e 20 56 79 4f 53 2e 20 54 68 65 20 74 65 72 6d 20 | ub-interfaces.in.VyOS..The.term. |
| c7f60 | 75 73 65 64 20 66 6f 72 20 74 68 69 73 20 69 73 20 60 60 76 69 66 60 60 2e 00 39 00 3a 61 62 62 | used.for.this.is.``vif``..9.:abb |
| c7f80 | 72 3a 60 41 46 49 20 28 41 64 64 72 65 73 73 20 66 61 6d 69 6c 79 20 61 75 74 68 6f 72 69 74 79 | r:`AFI.(Address.family.authority |
| c7fa0 | 20 69 64 65 6e 74 69 66 69 65 72 29 60 20 2d 20 60 60 34 39 60 60 20 54 68 65 20 41 46 49 20 76 | .identifier)`.-.``49``.The.AFI.v |
| c7fc0 | 61 6c 75 65 20 34 39 20 69 73 20 77 68 61 74 20 49 53 2d 49 53 20 75 73 65 73 20 66 6f 72 20 70 | alue.49.is.what.IS-IS.uses.for.p |
| c7fe0 | 72 69 76 61 74 65 20 61 64 64 72 65 73 73 69 6e 67 2e 00 3a 61 62 62 72 3a 60 41 46 49 20 28 41 | rivate.addressing..:abbr:`AFI.(A |
| c8000 | 64 64 72 65 73 73 20 66 61 6d 69 6c 79 20 61 75 74 68 6f 72 69 74 79 20 69 64 65 6e 74 69 66 69 | ddress.family.authority.identifi |
| c8020 | 65 72 29 60 20 2d 20 60 60 34 39 60 60 20 54 68 65 20 41 46 49 20 76 61 6c 75 65 20 34 39 20 69 | er)`.-.``49``.The.AFI.value.49.i |
| c8040 | 73 20 77 68 61 74 20 4f 70 65 6e 46 61 62 72 69 63 20 75 73 65 73 20 66 6f 72 20 70 72 69 76 61 | s.what.OpenFabric.uses.for.priva |
| c8060 | 74 65 20 61 64 64 72 65 73 73 69 6e 67 2e 00 3a 61 62 62 72 3a 60 41 52 50 20 28 41 64 64 72 65 | te.addressing..:abbr:`ARP.(Addre |
| c8080 | 73 73 20 52 65 73 6f 6c 75 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c 29 60 20 69 73 20 61 20 63 6f | ss.Resolution.Protocol)`.is.a.co |
| c80a0 | 6d 6d 75 6e 69 63 61 74 69 6f 6e 20 70 72 6f 74 6f 63 6f 6c 20 75 73 65 64 20 66 6f 72 20 64 69 | mmunication.protocol.used.for.di |
| c80c0 | 73 63 6f 76 65 72 69 6e 67 20 74 68 65 20 6c 69 6e 6b 20 6c 61 79 65 72 20 61 64 64 72 65 73 73 | scovering.the.link.layer.address |
| c80e0 | 2c 20 73 75 63 68 20 61 73 20 61 20 4d 41 43 20 61 64 64 72 65 73 73 2c 20 61 73 73 6f 63 69 61 | ,.such.as.a.MAC.address,.associa |
| c8100 | 74 65 64 20 77 69 74 68 20 61 20 67 69 76 65 6e 20 69 6e 74 65 72 6e 65 74 20 6c 61 79 65 72 20 | ted.with.a.given.internet.layer. |
| c8120 | 61 64 64 72 65 73 73 2c 20 74 79 70 69 63 61 6c 6c 79 20 61 6e 20 49 50 76 34 20 61 64 64 72 65 | address,.typically.an.IPv4.addre |
| c8140 | 73 73 2e 20 54 68 69 73 20 6d 61 70 70 69 6e 67 20 69 73 20 61 20 63 72 69 74 69 63 61 6c 20 66 | ss..This.mapping.is.a.critical.f |
| c8160 | 75 6e 63 74 69 6f 6e 20 69 6e 20 74 68 65 20 49 6e 74 65 72 6e 65 74 20 70 72 6f 74 6f 63 6f 6c | unction.in.the.Internet.protocol |
| c8180 | 20 73 75 69 74 65 2e 20 41 52 50 20 77 61 73 20 64 65 66 69 6e 65 64 20 69 6e 20 31 39 38 32 20 | .suite..ARP.was.defined.in.1982. |
| c81a0 | 62 79 20 3a 72 66 63 3a 60 38 32 36 60 20 77 68 69 63 68 20 69 73 20 49 6e 74 65 72 6e 65 74 20 | by.:rfc:`826`.which.is.Internet. |
| c81c0 | 53 74 61 6e 64 61 72 64 20 53 54 44 20 33 37 2e 00 3a 61 62 62 72 3a 60 42 46 44 20 28 42 69 64 | Standard.STD.37..:abbr:`BFD.(Bid |
| c81e0 | 69 72 65 63 74 69 6f 6e 61 6c 20 46 6f 72 77 61 72 64 69 6e 67 20 44 65 74 65 63 74 69 6f 6e 29 | irectional.Forwarding.Detection) |
| c8200 | 60 20 69 73 20 64 65 73 63 72 69 62 65 64 20 61 6e 64 20 65 78 74 65 6e 64 65 64 20 62 79 20 74 | `.is.described.and.extended.by.t |
| c8220 | 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 52 46 43 73 3a 20 3a 72 66 63 3a 60 35 38 38 30 60 2c 20 | he.following.RFCs:.:rfc:`5880`,. |
| c8240 | 3a 72 66 63 3a 60 35 38 38 31 60 20 61 6e 64 20 3a 72 66 63 3a 60 35 38 38 33 60 2e 00 3a 61 62 | :rfc:`5881`.and.:rfc:`5883`..:ab |
| c8260 | 62 72 3a 60 42 47 50 20 28 42 6f 72 64 65 72 20 47 61 74 65 77 61 79 20 50 72 6f 74 6f 63 6f 6c | br:`BGP.(Border.Gateway.Protocol |
| c8280 | 29 60 20 69 73 20 6f 6e 65 20 6f 66 20 74 68 65 20 45 78 74 65 72 69 6f 72 20 47 61 74 65 77 61 | )`.is.one.of.the.Exterior.Gatewa |
| c82a0 | 79 20 50 72 6f 74 6f 63 6f 6c 73 20 61 6e 64 20 74 68 65 20 64 65 20 66 61 63 74 6f 20 73 74 61 | y.Protocols.and.the.de.facto.sta |
| c82c0 | 6e 64 61 72 64 20 69 6e 74 65 72 64 6f 6d 61 69 6e 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 | ndard.interdomain.routing.protoc |
| c82e0 | 6f 6c 2e 20 54 68 65 20 6c 61 74 65 73 74 20 42 47 50 20 76 65 72 73 69 6f 6e 20 69 73 20 34 2e | ol..The.latest.BGP.version.is.4. |
| c8300 | 20 42 47 50 2d 34 20 69 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 31 37 37 | .BGP-4.is.described.in.:rfc:`177 |
| c8320 | 31 60 20 61 6e 64 20 75 70 64 61 74 65 64 20 62 79 20 3a 72 66 63 3a 60 34 32 37 31 60 2e 20 3a | 1`.and.updated.by.:rfc:`4271`..: |
| c8340 | 72 66 63 3a 60 32 38 35 38 60 20 61 64 64 73 20 6d 75 6c 74 69 70 72 6f 74 6f 63 6f 6c 20 73 75 | rfc:`2858`.adds.multiprotocol.su |
| c8360 | 70 70 6f 72 74 20 74 6f 20 42 47 50 2e 00 3a 61 62 62 72 3a 60 43 47 4e 41 54 20 28 43 61 72 72 | pport.to.BGP..:abbr:`CGNAT.(Carr |
| c8380 | 69 65 72 2d 47 72 61 64 65 20 4e 65 74 77 6f 72 6b 20 41 64 64 72 65 73 73 20 54 72 61 6e 73 6c | ier-Grade.Network.Address.Transl |
| c83a0 | 61 74 69 6f 6e 29 60 20 2c 20 61 6c 73 6f 20 6b 6e 6f 77 6e 20 61 73 20 4c 61 72 67 65 2d 53 63 | ation)`.,.also.known.as.Large-Sc |
| c83c0 | 61 6c 65 20 4e 41 54 20 28 4c 53 4e 29 2c 20 69 73 20 61 20 74 79 70 65 20 6f 66 20 6e 65 74 77 | ale.NAT.(LSN),.is.a.type.of.netw |
| c83e0 | 6f 72 6b 20 61 64 64 72 65 73 73 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 75 73 65 64 20 62 79 20 | ork.address.translation.used.by. |
| c8400 | 49 6e 74 65 72 6e 65 74 20 53 65 72 76 69 63 65 20 50 72 6f 76 69 64 65 72 73 20 28 49 53 50 73 | Internet.Service.Providers.(ISPs |
| c8420 | 29 20 74 6f 20 65 6e 61 62 6c 65 20 6d 75 6c 74 69 70 6c 65 20 70 72 69 76 61 74 65 20 49 50 20 | ).to.enable.multiple.private.IP. |
| c8440 | 61 64 64 72 65 73 73 65 73 20 74 6f 20 73 68 61 72 65 20 61 20 73 69 6e 67 6c 65 20 70 75 62 6c | addresses.to.share.a.single.publ |
| c8460 | 69 63 20 49 50 20 61 64 64 72 65 73 73 2e 20 54 68 69 73 20 74 65 63 68 6e 69 71 75 65 20 68 65 | ic.IP.address..This.technique.he |
| c8480 | 6c 70 73 20 74 6f 20 63 6f 6e 73 65 72 76 65 20 74 68 65 20 6c 69 6d 69 74 65 64 20 49 50 76 34 | lps.to.conserve.the.limited.IPv4 |
| c84a0 | 20 61 64 64 72 65 73 73 20 73 70 61 63 65 2e 20 54 68 65 20 31 30 30 2e 36 34 2e 30 2e 30 2f 31 | .address.space..The.100.64.0.0/1 |
| c84c0 | 30 20 61 64 64 72 65 73 73 20 62 6c 6f 63 6b 20 69 73 20 72 65 73 65 72 76 65 64 20 66 6f 72 20 | 0.address.block.is.reserved.for. |
| c84e0 | 75 73 65 20 69 6e 20 63 61 72 72 69 65 72 2d 67 72 61 64 65 20 4e 41 54 00 3a 61 62 62 72 3a 60 | use.in.carrier-grade.NAT.:abbr:` |
| c8500 | 43 4b 4e 20 28 4d 41 43 73 65 63 20 63 6f 6e 6e 65 63 74 69 76 69 74 79 20 61 73 73 6f 63 69 61 | CKN.(MACsec.connectivity.associa |
| c8520 | 74 69 6f 6e 20 6e 61 6d 65 29 60 20 6b 65 79 00 3a 61 62 62 72 3a 60 44 4d 56 50 4e 20 28 44 79 | tion.name)`.key.:abbr:`DMVPN.(Dy |
| c8540 | 6e 61 6d 69 63 20 4d 75 6c 74 69 70 6f 69 6e 74 20 56 69 72 74 75 61 6c 20 50 72 69 76 61 74 65 | namic.Multipoint.Virtual.Private |
| c8560 | 20 4e 65 74 77 6f 72 6b 29 60 20 69 73 20 61 20 64 79 6e 61 6d 69 63 20 3a 61 62 62 72 3a 60 56 | .Network)`.is.a.dynamic.:abbr:`V |
| c8580 | 50 4e 20 28 56 69 72 74 75 61 6c 20 50 72 69 76 61 74 65 20 4e 65 74 77 6f 72 6b 29 60 20 74 65 | PN.(Virtual.Private.Network)`.te |
| c85a0 | 63 68 6e 6f 6c 6f 67 79 20 6f 72 69 67 69 6e 61 6c 6c 79 20 64 65 76 65 6c 6f 70 65 64 20 62 79 | chnology.originally.developed.by |
| c85c0 | 20 43 69 73 63 6f 2e 20 57 68 69 6c 65 20 74 68 65 69 72 20 69 6d 70 6c 65 6d 65 6e 74 61 74 69 | .Cisco..While.their.implementati |
| c85e0 | 6f 6e 20 77 61 73 20 73 6f 6d 65 77 68 61 74 20 70 72 6f 70 72 69 65 74 61 72 79 2c 20 74 68 65 | on.was.somewhat.proprietary,.the |
| c8600 | 20 75 6e 64 65 72 6c 79 69 6e 67 20 74 65 63 68 6e 6f 6c 6f 67 69 65 73 20 61 72 65 20 61 63 74 | .underlying.technologies.are.act |
| c8620 | 75 61 6c 6c 79 20 73 74 61 6e 64 61 72 64 73 20 62 61 73 65 64 2e 20 54 68 65 20 74 68 72 65 65 | ually.standards.based..The.three |
| c8640 | 20 74 65 63 68 6e 6f 6c 6f 67 69 65 73 20 61 72 65 3a 00 3a 61 62 62 72 3a 60 44 4e 41 54 20 28 | .technologies.are:.:abbr:`DNAT.( |
| c8660 | 44 65 73 74 69 6e 61 74 69 6f 6e 20 4e 65 74 77 6f 72 6b 20 41 64 64 72 65 73 73 20 54 72 61 6e | Destination.Network.Address.Tran |
| c8680 | 73 6c 61 74 69 6f 6e 29 60 20 63 68 61 6e 67 65 73 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f | slation)`.changes.the.destinatio |
| c86a0 | 6e 20 61 64 64 72 65 73 73 20 6f 66 20 70 61 63 6b 65 74 73 20 70 61 73 73 69 6e 67 20 74 68 72 | n.address.of.packets.passing.thr |
| c86c0 | 6f 75 67 68 20 74 68 65 20 72 6f 75 74 65 72 2c 20 77 68 69 6c 65 20 3a 72 65 66 3a 60 73 6f 75 | ough.the.router,.while.:ref:`sou |
| c86e0 | 72 63 65 2d 6e 61 74 60 20 63 68 61 6e 67 65 73 20 74 68 65 20 73 6f 75 72 63 65 20 61 64 64 72 | rce-nat`.changes.the.source.addr |
| c8700 | 65 73 73 20 6f 66 20 70 61 63 6b 65 74 73 2e 20 44 4e 41 54 20 69 73 20 74 79 70 69 63 61 6c 6c | ess.of.packets..DNAT.is.typicall |
| c8720 | 79 20 75 73 65 64 20 77 68 65 6e 20 61 6e 20 65 78 74 65 72 6e 61 6c 20 28 70 75 62 6c 69 63 29 | y.used.when.an.external.(public) |
| c8740 | 20 68 6f 73 74 20 6e 65 65 64 73 20 74 6f 20 69 6e 69 74 69 61 74 65 20 61 20 73 65 73 73 69 6f | .host.needs.to.initiate.a.sessio |
| c8760 | 6e 20 77 69 74 68 20 61 6e 20 69 6e 74 65 72 6e 61 6c 20 28 70 72 69 76 61 74 65 29 20 68 6f 73 | n.with.an.internal.(private).hos |
| c8780 | 74 2e 20 41 20 63 75 73 74 6f 6d 65 72 20 6e 65 65 64 73 20 74 6f 20 61 63 63 65 73 73 20 61 20 | t..A.customer.needs.to.access.a. |
| c87a0 | 70 72 69 76 61 74 65 20 73 65 72 76 69 63 65 20 62 65 68 69 6e 64 20 74 68 65 20 72 6f 75 74 65 | private.service.behind.the.route |
| c87c0 | 72 73 20 70 75 62 6c 69 63 20 49 50 2e 20 41 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 69 73 20 65 73 | rs.public.IP..A.connection.is.es |
| c87e0 | 74 61 62 6c 69 73 68 65 64 20 77 69 74 68 20 74 68 65 20 72 6f 75 74 65 72 73 20 70 75 62 6c 69 | tablished.with.the.routers.publi |
| c8800 | 63 20 49 50 20 61 64 64 72 65 73 73 20 6f 6e 20 61 20 77 65 6c 6c 20 6b 6e 6f 77 6e 20 70 6f 72 | c.IP.address.on.a.well.known.por |
| c8820 | 74 20 61 6e 64 20 74 68 75 73 20 61 6c 6c 20 74 72 61 66 66 69 63 20 66 6f 72 20 74 68 69 73 20 | t.and.thus.all.traffic.for.this. |
| c8840 | 70 6f 72 74 20 69 73 20 72 65 77 72 69 74 74 65 6e 20 74 6f 20 61 64 64 72 65 73 73 20 74 68 65 | port.is.rewritten.to.address.the |
| c8860 | 20 69 6e 74 65 72 6e 61 6c 20 28 70 72 69 76 61 74 65 29 20 68 6f 73 74 2e 00 3a 61 62 62 72 3a | .internal.(private).host..:abbr: |
| c8880 | 60 45 41 50 20 28 45 78 74 65 6e 73 69 62 6c 65 20 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 | `EAP.(Extensible.Authentication. |
| c88a0 | 50 72 6f 74 6f 63 6f 6c 29 60 20 6f 76 65 72 20 4c 41 4e 20 28 45 41 50 6f 4c 29 20 69 73 20 61 | Protocol)`.over.LAN.(EAPoL).is.a |
| c88c0 | 20 6e 65 74 77 6f 72 6b 20 70 6f 72 74 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 70 72 6f | .network.port.authentication.pro |
| c88e0 | 74 6f 63 6f 6c 20 75 73 65 64 20 69 6e 20 49 45 45 45 20 38 30 32 2e 31 58 20 28 50 6f 72 74 20 | tocol.used.in.IEEE.802.1X.(Port. |
| c8900 | 42 61 73 65 64 20 4e 65 74 77 6f 72 6b 20 41 63 63 65 73 73 20 43 6f 6e 74 72 6f 6c 29 20 64 65 | Based.Network.Access.Control).de |
| c8920 | 76 65 6c 6f 70 65 64 20 74 6f 20 67 69 76 65 20 61 20 67 65 6e 65 72 69 63 20 6e 65 74 77 6f 72 | veloped.to.give.a.generic.networ |
| c8940 | 6b 20 73 69 67 6e 2d 6f 6e 20 74 6f 20 61 63 63 65 73 73 20 6e 65 74 77 6f 72 6b 20 72 65 73 6f | k.sign-on.to.access.network.reso |
| c8960 | 75 72 63 65 73 2e 00 3a 61 62 62 72 3a 60 45 55 49 2d 36 34 20 28 36 34 2d 42 69 74 20 45 78 74 | urces..:abbr:`EUI-64.(64-Bit.Ext |
| c8980 | 65 6e 64 65 64 20 55 6e 69 71 75 65 20 49 64 65 6e 74 69 66 69 65 72 29 60 20 61 73 20 73 70 65 | ended.Unique.Identifier)`.as.spe |
| c89a0 | 63 69 66 69 65 64 20 69 6e 20 3a 72 66 63 3a 60 34 32 39 31 60 20 61 6c 6c 6f 77 73 20 61 20 68 | cified.in.:rfc:`4291`.allows.a.h |
| c89c0 | 6f 73 74 20 74 6f 20 61 73 73 69 67 6e 20 69 74 65 73 6c 66 20 61 20 75 6e 69 71 75 65 20 36 34 | ost.to.assign.iteslf.a.unique.64 |
| c89e0 | 2d 42 69 74 20 49 50 76 36 20 61 64 64 72 65 73 73 2e 00 3a 61 62 62 72 3a 60 47 45 4e 45 56 45 | -Bit.IPv6.address..:abbr:`GENEVE |
| c8a00 | 20 28 47 65 6e 65 72 69 63 20 4e 65 74 77 6f 72 6b 20 56 69 72 74 75 61 6c 69 7a 61 74 69 6f 6e | .(Generic.Network.Virtualization |
| c8a20 | 20 45 6e 63 61 70 73 75 6c 61 74 69 6f 6e 29 60 20 73 75 70 70 6f 72 74 73 20 61 6c 6c 20 6f 66 | .Encapsulation)`.supports.all.of |
| c8a40 | 20 74 68 65 20 63 61 70 61 62 69 6c 69 74 69 65 73 20 6f 66 20 3a 61 62 62 72 3a 60 56 58 4c 41 | .the.capabilities.of.:abbr:`VXLA |
| c8a60 | 4e 20 28 56 69 72 74 75 61 6c 20 45 78 74 65 6e 73 69 62 6c 65 20 4c 41 4e 29 60 2c 20 3a 61 62 | N.(Virtual.Extensible.LAN)`,.:ab |
| c8a80 | 62 72 3a 60 4e 56 47 52 45 20 28 4e 65 74 77 6f 72 6b 20 56 69 72 74 75 61 6c 69 7a 61 74 69 6f | br:`NVGRE.(Network.Virtualizatio |
| c8aa0 | 6e 20 75 73 69 6e 67 20 47 65 6e 65 72 69 63 20 52 6f 75 74 69 6e 67 20 45 6e 63 61 70 73 75 6c | n.using.Generic.Routing.Encapsul |
| c8ac0 | 61 74 69 6f 6e 29 60 2c 20 61 6e 64 20 3a 61 62 62 72 3a 60 53 54 54 20 28 53 74 61 74 65 6c 65 | ation)`,.and.:abbr:`STT.(Statele |
| c8ae0 | 73 73 20 54 72 61 6e 73 70 6f 72 74 20 54 75 6e 6e 65 6c 69 6e 67 29 60 20 61 6e 64 20 77 61 73 | ss.Transport.Tunneling)`.and.was |
| c8b00 | 20 64 65 73 69 67 6e 65 64 20 74 6f 20 6f 76 65 72 63 6f 6d 65 20 74 68 65 69 72 20 70 65 72 63 | .designed.to.overcome.their.perc |
| c8b20 | 65 69 76 65 64 20 6c 69 6d 69 74 61 74 69 6f 6e 73 2e 20 4d 61 6e 79 20 62 65 6c 69 65 76 65 20 | eived.limitations..Many.believe. |
| c8b40 | 47 45 4e 45 56 45 20 63 6f 75 6c 64 20 65 76 65 6e 74 75 61 6c 6c 79 20 72 65 70 6c 61 63 65 20 | GENEVE.could.eventually.replace. |
| c8b60 | 74 68 65 73 65 20 65 61 72 6c 69 65 72 20 66 6f 72 6d 61 74 73 20 65 6e 74 69 72 65 6c 79 2e 00 | these.earlier.formats.entirely.. |
| c8b80 | 3a 61 62 62 72 3a 60 47 52 45 20 28 47 65 6e 65 72 69 63 20 52 6f 75 74 69 6e 67 20 45 6e 63 61 | :abbr:`GRE.(Generic.Routing.Enca |
| c8ba0 | 70 73 75 6c 61 74 69 6f 6e 29 60 2c 20 47 52 45 2f 49 50 73 65 63 20 28 6f 72 20 49 50 49 50 2f | psulation)`,.GRE/IPsec.(or.IPIP/ |
| c8bc0 | 49 50 73 65 63 2c 20 53 49 54 2f 49 50 73 65 63 2c 20 6f 72 20 61 6e 79 20 6f 74 68 65 72 20 73 | IPsec,.SIT/IPsec,.or.any.other.s |
| c8be0 | 74 61 74 65 6c 65 73 73 20 74 75 6e 6e 65 6c 20 70 72 6f 74 6f 63 6f 6c 20 6f 76 65 72 20 49 50 | tateless.tunnel.protocol.over.IP |
| c8c00 | 73 65 63 29 20 69 73 20 74 68 65 20 75 73 75 61 6c 20 77 61 79 20 74 6f 20 70 72 6f 74 65 63 74 | sec).is.the.usual.way.to.protect |
| c8c20 | 20 74 68 65 20 74 72 61 66 66 69 63 20 69 6e 73 69 64 65 20 61 20 74 75 6e 6e 65 6c 2e 00 3a 61 | .the.traffic.inside.a.tunnel..:a |
| c8c40 | 62 62 72 3a 60 47 52 4f 20 28 47 65 6e 65 72 69 63 20 72 65 63 65 69 76 65 20 6f 66 66 6c 6f 61 | bbr:`GRO.(Generic.receive.offloa |
| c8c60 | 64 29 60 20 69 73 20 74 68 65 20 63 6f 6d 70 6c 65 6d 65 6e 74 20 74 6f 20 47 53 4f 2e 20 49 64 | d)`.is.the.complement.to.GSO..Id |
| c8c80 | 65 61 6c 6c 79 20 61 6e 79 20 66 72 61 6d 65 20 61 73 73 65 6d 62 6c 65 64 20 62 79 20 47 52 4f | eally.any.frame.assembled.by.GRO |
| c8ca0 | 20 73 68 6f 75 6c 64 20 62 65 20 73 65 67 6d 65 6e 74 65 64 20 74 6f 20 63 72 65 61 74 65 20 61 | .should.be.segmented.to.create.a |
| c8cc0 | 6e 20 69 64 65 6e 74 69 63 61 6c 20 73 65 71 75 65 6e 63 65 20 6f 66 20 66 72 61 6d 65 73 20 75 | n.identical.sequence.of.frames.u |
| c8ce0 | 73 69 6e 67 20 47 53 4f 2c 20 61 6e 64 20 61 6e 79 20 73 65 71 75 65 6e 63 65 20 6f 66 20 66 72 | sing.GSO,.and.any.sequence.of.fr |
| c8d00 | 61 6d 65 73 20 73 65 67 6d 65 6e 74 65 64 20 62 79 20 47 53 4f 20 73 68 6f 75 6c 64 20 62 65 20 | ames.segmented.by.GSO.should.be. |
| c8d20 | 61 62 6c 65 20 74 6f 20 62 65 20 72 65 61 73 73 65 6d 62 6c 65 64 20 62 61 63 6b 20 74 6f 20 74 | able.to.be.reassembled.back.to.t |
| c8d40 | 68 65 20 6f 72 69 67 69 6e 61 6c 20 62 79 20 47 52 4f 2e 20 54 68 65 20 6f 6e 6c 79 20 65 78 63 | he.original.by.GRO..The.only.exc |
| c8d60 | 65 70 74 69 6f 6e 20 74 6f 20 74 68 69 73 20 69 73 20 49 50 76 34 20 49 44 20 69 6e 20 74 68 65 | eption.to.this.is.IPv4.ID.in.the |
| c8d80 | 20 63 61 73 65 20 74 68 61 74 20 74 68 65 20 44 46 20 62 69 74 20 69 73 20 73 65 74 20 66 6f 72 | .case.that.the.DF.bit.is.set.for |
| c8da0 | 20 61 20 67 69 76 65 6e 20 49 50 20 68 65 61 64 65 72 2e 20 49 66 20 74 68 65 20 76 61 6c 75 65 | .a.given.IP.header..If.the.value |
| c8dc0 | 20 6f 66 20 74 68 65 20 49 50 76 34 20 49 44 20 69 73 20 6e 6f 74 20 73 65 71 75 65 6e 74 69 61 | .of.the.IPv4.ID.is.not.sequentia |
| c8de0 | 6c 6c 79 20 69 6e 63 72 65 6d 65 6e 74 69 6e 67 20 69 74 20 77 69 6c 6c 20 62 65 20 61 6c 74 65 | lly.incrementing.it.will.be.alte |
| c8e00 | 72 65 64 20 73 6f 20 74 68 61 74 20 69 74 20 69 73 20 77 68 65 6e 20 61 20 66 72 61 6d 65 20 61 | red.so.that.it.is.when.a.frame.a |
| c8e20 | 73 73 65 6d 62 6c 65 64 20 76 69 61 20 47 52 4f 20 69 73 20 73 65 67 6d 65 6e 74 65 64 20 76 69 | ssembled.via.GRO.is.segmented.vi |
| c8e40 | 61 20 47 53 4f 2e 00 3a 61 62 62 72 3a 60 47 53 4f 20 28 47 65 6e 65 72 69 63 20 53 65 67 6d 65 | a.GSO..:abbr:`GSO.(Generic.Segme |
| c8e60 | 6e 74 61 74 69 6f 6e 20 4f 66 66 6c 6f 61 64 29 60 20 69 73 20 61 20 70 75 72 65 20 73 6f 66 74 | ntation.Offload)`.is.a.pure.soft |
| c8e80 | 77 61 72 65 20 6f 66 66 6c 6f 61 64 20 74 68 61 74 20 69 73 20 6d 65 61 6e 74 20 74 6f 20 64 65 | ware.offload.that.is.meant.to.de |
| c8ea0 | 61 6c 20 77 69 74 68 20 63 61 73 65 73 20 77 68 65 72 65 20 64 65 76 69 63 65 20 64 72 69 76 65 | al.with.cases.where.device.drive |
| c8ec0 | 72 73 20 63 61 6e 6e 6f 74 20 70 65 72 66 6f 72 6d 20 74 68 65 20 6f 66 66 6c 6f 61 64 73 20 64 | rs.cannot.perform.the.offloads.d |
| c8ee0 | 65 73 63 72 69 62 65 64 20 61 62 6f 76 65 2e 20 57 68 61 74 20 6f 63 63 75 72 73 20 69 6e 20 47 | escribed.above..What.occurs.in.G |
| c8f00 | 53 4f 20 69 73 20 74 68 61 74 20 61 20 67 69 76 65 6e 20 73 6b 62 75 66 66 20 77 69 6c 6c 20 68 | SO.is.that.a.given.skbuff.will.h |
| c8f20 | 61 76 65 20 69 74 73 20 64 61 74 61 20 62 72 6f 6b 65 6e 20 6f 75 74 20 6f 76 65 72 20 6d 75 6c | ave.its.data.broken.out.over.mul |
| c8f40 | 74 69 70 6c 65 20 73 6b 62 75 66 66 73 20 74 68 61 74 20 68 61 76 65 20 62 65 65 6e 20 72 65 73 | tiple.skbuffs.that.have.been.res |
| c8f60 | 69 7a 65 64 20 74 6f 20 6d 61 74 63 68 20 74 68 65 20 4d 53 53 20 70 72 6f 76 69 64 65 64 20 76 | ized.to.match.the.MSS.provided.v |
| c8f80 | 69 61 20 73 6b 62 5f 73 68 69 6e 66 6f 28 29 2d 3e 67 73 6f 5f 73 69 7a 65 2e 00 3a 61 62 62 72 | ia.skb_shinfo()->gso_size..:abbr |
| c8fa0 | 3a 60 49 47 4d 50 20 28 49 6e 74 65 72 6e 65 74 20 47 72 6f 75 70 20 4d 61 6e 61 67 65 6d 65 6e | :`IGMP.(Internet.Group.Managemen |
| c8fc0 | 74 20 50 72 6f 74 6f 63 6f 6c 29 60 20 70 72 6f 78 79 20 73 65 6e 64 73 20 49 47 4d 50 20 68 6f | t.Protocol)`.proxy.sends.IGMP.ho |
| c8fe0 | 73 74 20 6d 65 73 73 61 67 65 73 20 6f 6e 20 62 65 68 61 6c 66 20 6f 66 20 61 20 63 6f 6e 6e 65 | st.messages.on.behalf.of.a.conne |
| c9000 | 63 74 65 64 20 63 6c 69 65 6e 74 2e 20 54 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d | cted.client..The.configuration.m |
| c9020 | 75 73 74 20 64 65 66 69 6e 65 20 6f 6e 65 2c 20 61 6e 64 20 6f 6e 6c 79 20 6f 6e 65 20 75 70 73 | ust.define.one,.and.only.one.ups |
| c9040 | 74 72 65 61 6d 20 69 6e 74 65 72 66 61 63 65 2c 20 61 6e 64 20 6f 6e 65 20 6f 72 20 6d 6f 72 65 | tream.interface,.and.one.or.more |
| c9060 | 20 64 6f 77 6e 73 74 72 65 61 6d 20 69 6e 74 65 72 66 61 63 65 73 2e 00 3a 61 62 62 72 3a 60 49 | .downstream.interfaces..:abbr:`I |
| c9080 | 50 53 65 63 20 28 49 50 20 53 65 63 75 72 69 74 79 29 60 20 2d 20 74 6f 6f 20 6d 61 6e 79 20 52 | PSec.(IP.Security)`.-.too.many.R |
| c90a0 | 46 43 73 20 74 6f 20 6c 69 73 74 2c 20 62 75 74 20 73 74 61 72 74 20 77 69 74 68 20 3a 72 66 63 | FCs.to.list,.but.start.with.:rfc |
| c90c0 | 3a 60 34 33 30 31 60 00 3a 61 62 62 72 3a 60 49 53 2d 49 53 20 28 49 6e 74 65 72 6d 65 64 69 61 | :`4301`.:abbr:`IS-IS.(Intermedia |
| c90e0 | 74 65 20 53 79 73 74 65 6d 20 74 6f 20 49 6e 74 65 72 6d 65 64 69 61 74 65 20 53 79 73 74 65 6d | te.System.to.Intermediate.System |
| c9100 | 29 60 20 69 73 20 61 20 6c 69 6e 6b 2d 73 74 61 74 65 20 69 6e 74 65 72 69 6f 72 20 67 61 74 65 | )`.is.a.link-state.interior.gate |
| c9120 | 77 61 79 20 70 72 6f 74 6f 63 6f 6c 20 28 49 47 50 29 20 77 68 69 63 68 20 69 73 20 64 65 73 63 | way.protocol.(IGP).which.is.desc |
| c9140 | 72 69 62 65 64 20 69 6e 20 49 53 4f 31 30 35 38 39 2c 20 3a 72 66 63 3a 60 31 31 39 35 60 2c 20 | ribed.in.ISO10589,.:rfc:`1195`,. |
| c9160 | 3a 72 66 63 3a 60 35 33 30 38 60 2e 20 49 53 2d 49 53 20 72 75 6e 73 20 74 68 65 20 44 69 6a 6b | :rfc:`5308`..IS-IS.runs.the.Dijk |
| c9180 | 73 74 72 61 20 73 68 6f 72 74 65 73 74 2d 70 61 74 68 20 66 69 72 73 74 20 28 53 50 46 29 20 61 | stra.shortest-path.first.(SPF).a |
| c91a0 | 6c 67 6f 72 69 74 68 6d 20 74 6f 20 63 72 65 61 74 65 20 61 20 64 61 74 61 62 61 73 65 20 6f 66 | lgorithm.to.create.a.database.of |
| c91c0 | 20 74 68 65 20 6e 65 74 77 6f 72 6b e2 80 99 73 20 74 6f 70 6f 6c 6f 67 79 2c 20 61 6e 64 20 66 | .the.network...s.topology,.and.f |
| c91e0 | 72 6f 6d 20 74 68 61 74 20 64 61 74 61 62 61 73 65 20 74 6f 20 64 65 74 65 72 6d 69 6e 65 20 74 | rom.that.database.to.determine.t |
| c9200 | 68 65 20 62 65 73 74 20 28 74 68 61 74 20 69 73 2c 20 6c 6f 77 65 73 74 20 63 6f 73 74 29 20 70 | he.best.(that.is,.lowest.cost).p |
| c9220 | 61 74 68 20 74 6f 20 61 20 64 65 73 74 69 6e 61 74 69 6f 6e 2e 20 54 68 65 20 69 6e 74 65 72 6d | ath.to.a.destination..The.interm |
| c9240 | 65 64 69 61 74 65 20 73 79 73 74 65 6d 73 20 28 74 68 65 20 6e 61 6d 65 20 66 6f 72 20 72 6f 75 | ediate.systems.(the.name.for.rou |
| c9260 | 74 65 72 73 29 20 65 78 63 68 61 6e 67 65 20 74 6f 70 6f 6c 6f 67 79 20 69 6e 66 6f 72 6d 61 74 | ters).exchange.topology.informat |
| c9280 | 69 6f 6e 20 77 69 74 68 20 74 68 65 69 72 20 64 69 72 65 63 74 6c 79 20 63 6f 6e 65 6e 63 74 65 | ion.with.their.directly.conencte |
| c92a0 | 64 20 6e 65 69 67 68 62 6f 72 73 2e 20 49 53 2d 49 53 20 72 75 6e 73 20 64 69 72 65 63 74 6c 79 | d.neighbors..IS-IS.runs.directly |
| c92c0 | 20 6f 6e 20 74 68 65 20 64 61 74 61 20 6c 69 6e 6b 20 6c 61 79 65 72 20 28 4c 61 79 65 72 20 32 | .on.the.data.link.layer.(Layer.2 |
| c92e0 | 29 2e 20 49 53 2d 49 53 20 61 64 64 72 65 73 73 65 73 20 61 72 65 20 63 61 6c 6c 65 64 20 3a 61 | )..IS-IS.addresses.are.called.:a |
| c9300 | 62 62 72 3a 60 4e 45 54 73 20 28 4e 65 74 77 6f 72 6b 20 45 6e 74 69 74 79 20 54 69 74 6c 65 73 | bbr:`NETs.(Network.Entity.Titles |
| c9320 | 29 60 20 61 6e 64 20 63 61 6e 20 62 65 20 38 20 74 6f 20 32 30 20 62 79 74 65 73 20 6c 6f 6e 67 | )`.and.can.be.8.to.20.bytes.long |
| c9340 | 2c 20 62 75 74 20 61 72 65 20 67 65 6e 65 72 61 6c 6c 79 20 31 30 20 62 79 74 65 73 20 6c 6f 6e | ,.but.are.generally.10.bytes.lon |
| c9360 | 67 2e 20 54 68 65 20 74 72 65 65 20 64 61 74 61 62 61 73 65 20 74 68 61 74 20 69 73 20 63 72 65 | g..The.tree.database.that.is.cre |
| c9380 | 61 74 65 64 20 77 69 74 68 20 49 53 2d 49 53 20 69 73 20 73 69 6d 69 6c 61 72 20 74 6f 20 74 68 | ated.with.IS-IS.is.similar.to.th |
| c93a0 | 65 20 6f 6e 65 20 74 68 61 74 20 69 73 20 63 72 65 61 74 65 64 20 77 69 74 68 20 4f 53 50 46 20 | e.one.that.is.created.with.OSPF. |
| c93c0 | 69 6e 20 74 68 61 74 20 74 68 65 20 70 61 74 68 73 20 63 68 6f 73 65 6e 20 73 68 6f 75 6c 64 20 | in.that.the.paths.chosen.should. |
| c93e0 | 62 65 20 73 69 6d 69 6c 61 72 2e 20 43 6f 6d 70 61 72 69 73 6f 6e 73 20 74 6f 20 4f 53 50 46 20 | be.similar..Comparisons.to.OSPF. |
| c9400 | 61 72 65 20 69 6e 65 76 69 74 61 62 6c 65 20 61 6e 64 20 6f 66 74 65 6e 20 61 72 65 20 72 65 61 | are.inevitable.and.often.are.rea |
| c9420 | 73 6f 6e 61 62 6c 65 20 6f 6e 65 73 20 74 6f 20 6d 61 6b 65 20 69 6e 20 72 65 67 61 72 64 73 20 | sonable.ones.to.make.in.regards. |
| c9440 | 74 6f 20 74 68 65 20 77 61 79 20 61 20 6e 65 74 77 6f 72 6b 20 77 69 6c 6c 20 72 65 73 70 6f 6e | to.the.way.a.network.will.respon |
| c9460 | 64 20 77 69 74 68 20 65 69 74 68 65 72 20 49 47 50 2e 00 3a 61 62 62 72 3a 60 49 53 2d 49 53 20 | d.with.either.IGP..:abbr:`IS-IS. |
| c9480 | 28 49 6e 74 65 72 6d 65 64 69 61 74 65 20 53 79 73 74 65 6d 20 74 6f 20 49 6e 74 65 72 6d 65 64 | (Intermediate.System.to.Intermed |
| c94a0 | 69 61 74 65 20 53 79 73 74 65 6d 29 60 20 69 73 20 61 20 6c 69 6e 6b 2d 73 74 61 74 65 20 69 6e | iate.System)`.is.a.link-state.in |
| c94c0 | 74 65 72 69 6f 72 20 67 61 74 65 77 61 79 20 70 72 6f 74 6f 63 6f 6c 20 28 49 47 50 29 20 77 68 | terior.gateway.protocol.(IGP).wh |
| c94e0 | 69 63 68 20 69 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 49 53 4f 31 30 35 38 39 2c 20 3a 72 | ich.is.described.in.ISO10589,.:r |
| c9500 | 66 63 3a 60 31 31 39 35 60 2c 20 3a 72 66 63 3a 60 35 33 30 38 60 2e 20 49 53 2d 49 53 20 72 75 | fc:`1195`,.:rfc:`5308`..IS-IS.ru |
| c9520 | 6e 73 20 74 68 65 20 44 69 6a 6b 73 74 72 61 20 73 68 6f 72 74 65 73 74 2d 70 61 74 68 20 66 69 | ns.the.Dijkstra.shortest-path.fi |
| c9540 | 72 73 74 20 28 53 50 46 29 20 61 6c 67 6f 72 69 74 68 6d 20 74 6f 20 63 72 65 61 74 65 20 61 20 | rst.(SPF).algorithm.to.create.a. |
| c9560 | 64 61 74 61 62 61 73 65 20 6f 66 20 74 68 65 20 6e 65 74 77 6f 72 6b e2 80 99 73 20 74 6f 70 6f | database.of.the.network...s.topo |
| c9580 | 6c 6f 67 79 2c 20 61 6e 64 20 66 72 6f 6d 20 74 68 61 74 20 64 61 74 61 62 61 73 65 20 74 6f 20 | logy,.and.from.that.database.to. |
| c95a0 | 64 65 74 65 72 6d 69 6e 65 20 74 68 65 20 62 65 73 74 20 28 74 68 61 74 20 69 73 2c 20 6c 6f 77 | determine.the.best.(that.is,.low |
| c95c0 | 65 73 74 20 63 6f 73 74 29 20 70 61 74 68 20 74 6f 20 61 20 64 65 73 74 69 6e 61 74 69 6f 6e 2e | est.cost).path.to.a.destination. |
| c95e0 | 20 54 68 65 20 69 6e 74 65 72 6d 65 64 69 61 74 65 20 73 79 73 74 65 6d 73 20 28 74 68 65 20 6e | .The.intermediate.systems.(the.n |
| c9600 | 61 6d 65 20 66 6f 72 20 72 6f 75 74 65 72 73 29 20 65 78 63 68 61 6e 67 65 20 74 6f 70 6f 6c 6f | ame.for.routers).exchange.topolo |
| c9620 | 67 79 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 77 69 74 68 20 74 68 65 69 72 20 64 69 72 65 63 74 | gy.information.with.their.direct |
| c9640 | 6c 79 20 63 6f 6e 6e 65 63 74 65 64 20 6e 65 69 67 68 62 6f 72 73 2e 20 49 53 2d 49 53 20 72 75 | ly.connected.neighbors..IS-IS.ru |
| c9660 | 6e 73 20 64 69 72 65 63 74 6c 79 20 6f 6e 20 74 68 65 20 64 61 74 61 20 6c 69 6e 6b 20 6c 61 79 | ns.directly.on.the.data.link.lay |
| c9680 | 65 72 20 28 4c 61 79 65 72 20 32 29 2e 20 49 53 2d 49 53 20 61 64 64 72 65 73 73 65 73 20 61 72 | er.(Layer.2)..IS-IS.addresses.ar |
| c96a0 | 65 20 63 61 6c 6c 65 64 20 3a 61 62 62 72 3a 60 4e 45 54 73 20 28 4e 65 74 77 6f 72 6b 20 45 6e | e.called.:abbr:`NETs.(Network.En |
| c96c0 | 74 69 74 79 20 54 69 74 6c 65 73 29 60 20 61 6e 64 20 63 61 6e 20 62 65 20 38 20 74 6f 20 32 30 | tity.Titles)`.and.can.be.8.to.20 |
| c96e0 | 20 62 79 74 65 73 20 6c 6f 6e 67 2c 20 62 75 74 20 61 72 65 20 67 65 6e 65 72 61 6c 6c 79 20 31 | .bytes.long,.but.are.generally.1 |
| c9700 | 30 20 62 79 74 65 73 20 6c 6f 6e 67 2e 20 54 68 65 20 74 72 65 65 20 64 61 74 61 62 61 73 65 20 | 0.bytes.long..The.tree.database. |
| c9720 | 74 68 61 74 20 69 73 20 63 72 65 61 74 65 64 20 77 69 74 68 20 49 53 2d 49 53 20 69 73 20 73 69 | that.is.created.with.IS-IS.is.si |
| c9740 | 6d 69 6c 61 72 20 74 6f 20 74 68 65 20 6f 6e 65 20 74 68 61 74 20 69 73 20 63 72 65 61 74 65 64 | milar.to.the.one.that.is.created |
| c9760 | 20 77 69 74 68 20 4f 53 50 46 20 69 6e 20 74 68 61 74 20 74 68 65 20 70 61 74 68 73 20 63 68 6f | .with.OSPF.in.that.the.paths.cho |
| c9780 | 73 65 6e 20 73 68 6f 75 6c 64 20 62 65 20 73 69 6d 69 6c 61 72 2e 20 43 6f 6d 70 61 72 69 73 6f | sen.should.be.similar..Compariso |
| c97a0 | 6e 73 20 74 6f 20 4f 53 50 46 20 61 72 65 20 69 6e 65 76 69 74 61 62 6c 65 20 61 6e 64 20 6f 66 | ns.to.OSPF.are.inevitable.and.of |
| c97c0 | 74 65 6e 20 61 72 65 20 72 65 61 73 6f 6e 61 62 6c 65 20 6f 6e 65 73 20 74 6f 20 6d 61 6b 65 20 | ten.are.reasonable.ones.to.make. |
| c97e0 | 69 6e 20 72 65 67 61 72 64 73 20 74 6f 20 74 68 65 20 77 61 79 20 61 20 6e 65 74 77 6f 72 6b 20 | in.regards.to.the.way.a.network. |
| c9800 | 77 69 6c 6c 20 72 65 73 70 6f 6e 64 20 77 69 74 68 20 65 69 74 68 65 72 20 49 47 50 2e 00 3a 61 | will.respond.with.either.IGP..:a |
| c9820 | 62 62 72 3a 60 4c 33 56 50 4e 20 56 52 46 73 20 28 20 4c 61 79 65 72 20 33 20 56 69 72 74 75 61 | bbr:`L3VPN.VRFs.(.Layer.3.Virtua |
| c9840 | 6c 20 50 72 69 76 61 74 65 20 4e 65 74 77 6f 72 6b 73 20 29 60 20 62 67 70 64 20 73 75 70 70 6f | l.Private.Networks.)`.bgpd.suppo |
| c9860 | 72 74 73 20 66 6f 72 20 49 50 76 34 20 52 46 43 20 34 33 36 34 20 61 6e 64 20 49 50 76 36 20 52 | rts.for.IPv4.RFC.4364.and.IPv6.R |
| c9880 | 46 43 20 34 36 35 39 2e 20 4c 33 56 50 4e 20 72 6f 75 74 65 73 2c 20 61 6e 64 20 74 68 65 69 72 | FC.4659..L3VPN.routes,.and.their |
| c98a0 | 20 61 73 73 6f 63 69 61 74 65 64 20 56 52 46 20 4d 50 4c 53 20 6c 61 62 65 6c 73 2c 20 63 61 6e | .associated.VRF.MPLS.labels,.can |
| c98c0 | 20 62 65 20 64 69 73 74 72 69 62 75 74 65 64 20 74 6f 20 56 50 4e 20 53 41 46 49 20 6e 65 69 67 | .be.distributed.to.VPN.SAFI.neig |
| c98e0 | 68 62 6f 72 73 20 69 6e 20 74 68 65 20 64 65 66 61 75 6c 74 2c 20 69 2e 65 2e 2c 20 6e 6f 6e 20 | hbors.in.the.default,.i.e.,.non. |
| c9900 | 56 52 46 2c 20 42 47 50 20 69 6e 73 74 61 6e 63 65 2e 20 56 52 46 20 4d 50 4c 53 20 6c 61 62 65 | VRF,.BGP.instance..VRF.MPLS.labe |
| c9920 | 6c 73 20 61 72 65 20 72 65 61 63 68 65 64 20 75 73 69 6e 67 20 63 6f 72 65 20 4d 50 4c 53 20 6c | ls.are.reached.using.core.MPLS.l |
| c9940 | 61 62 65 6c 73 20 77 68 69 63 68 20 61 72 65 20 64 69 73 74 72 69 62 75 74 65 64 20 75 73 69 6e | abels.which.are.distributed.usin |
| c9960 | 67 20 4c 44 50 20 6f 72 20 42 47 50 20 6c 61 62 65 6c 65 64 20 75 6e 69 63 61 73 74 2e 20 62 67 | g.LDP.or.BGP.labeled.unicast..bg |
| c9980 | 70 64 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 73 20 69 6e 74 65 72 2d 56 52 46 20 72 6f 75 74 65 | pd.also.supports.inter-VRF.route |
| c99a0 | 20 6c 65 61 6b 69 6e 67 2e 00 3a 61 62 62 72 3a 60 4c 44 50 20 28 4c 61 62 65 6c 20 44 69 73 74 | .leaking..:abbr:`LDP.(Label.Dist |
| c99c0 | 72 69 62 75 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c 29 60 20 69 73 20 61 20 54 43 50 20 62 61 73 | ribution.Protocol)`.is.a.TCP.bas |
| c99e0 | 65 64 20 4d 50 4c 53 20 73 69 67 6e 61 6c 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 20 74 68 61 74 20 | ed.MPLS.signaling.protocol.that. |
| c9a00 | 64 69 73 74 72 69 62 75 74 65 73 20 6c 61 62 65 6c 73 20 63 72 65 61 74 69 6e 67 20 4d 50 4c 53 | distributes.labels.creating.MPLS |
| c9a20 | 20 6c 61 62 65 6c 20 73 77 69 74 63 68 65 64 20 70 61 74 68 73 20 69 6e 20 61 20 64 79 6e 61 6d | .label.switched.paths.in.a.dynam |
| c9a40 | 69 63 20 6d 61 6e 6e 65 72 2e 20 4c 44 50 20 69 73 20 6e 6f 74 20 61 20 72 6f 75 74 69 6e 67 20 | ic.manner..LDP.is.not.a.routing. |
| c9a60 | 70 72 6f 74 6f 63 6f 6c 2c 20 61 73 20 69 74 20 72 65 6c 69 65 73 20 6f 6e 20 6f 74 68 65 72 20 | protocol,.as.it.relies.on.other. |
| c9a80 | 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 73 20 66 6f 72 20 66 6f 72 77 61 72 64 69 6e 67 | routing.protocols.for.forwarding |
| c9aa0 | 20 64 65 63 69 73 69 6f 6e 73 2e 20 4c 44 50 20 63 61 6e 6e 6f 74 20 62 6f 6f 74 73 74 72 61 70 | .decisions..LDP.cannot.bootstrap |
| c9ac0 | 20 69 74 73 65 6c 66 2c 20 61 6e 64 20 74 68 65 72 65 66 6f 72 65 20 72 65 6c 69 65 73 20 6f 6e | .itself,.and.therefore.relies.on |
| c9ae0 | 20 73 61 69 64 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 73 20 66 6f 72 20 63 6f 6d 6d | .said.routing.protocols.for.comm |
| c9b00 | 75 6e 69 63 61 74 69 6f 6e 20 77 69 74 68 20 6f 74 68 65 72 20 72 6f 75 74 65 72 73 20 74 68 61 | unication.with.other.routers.tha |
| c9b20 | 74 20 75 73 65 20 4c 44 50 2e 00 3a 61 62 62 72 3a 60 4c 4c 44 50 20 28 4c 69 6e 6b 20 4c 61 79 | t.use.LDP..:abbr:`LLDP.(Link.Lay |
| c9b40 | 65 72 20 44 69 73 63 6f 76 65 72 79 20 50 72 6f 74 6f 63 6f 6c 29 60 20 69 73 20 61 20 76 65 6e | er.Discovery.Protocol)`.is.a.ven |
| c9b60 | 64 6f 72 2d 6e 65 75 74 72 61 6c 20 6c 69 6e 6b 20 6c 61 79 65 72 20 70 72 6f 74 6f 63 6f 6c 20 | dor-neutral.link.layer.protocol. |
| c9b80 | 69 6e 20 74 68 65 20 49 6e 74 65 72 6e 65 74 20 50 72 6f 74 6f 63 6f 6c 20 53 75 69 74 65 20 75 | in.the.Internet.Protocol.Suite.u |
| c9ba0 | 73 65 64 20 62 79 20 6e 65 74 77 6f 72 6b 20 64 65 76 69 63 65 73 20 66 6f 72 20 61 64 76 65 72 | sed.by.network.devices.for.adver |
| c9bc0 | 74 69 73 69 6e 67 20 74 68 65 69 72 20 69 64 65 6e 74 69 74 79 2c 20 63 61 70 61 62 69 6c 69 74 | tising.their.identity,.capabilit |
| c9be0 | 69 65 73 2c 20 61 6e 64 20 6e 65 69 67 68 62 6f 72 73 20 6f 6e 20 61 6e 20 49 45 45 45 20 38 30 | ies,.and.neighbors.on.an.IEEE.80 |
| c9c00 | 32 20 6c 6f 63 61 6c 20 61 72 65 61 20 6e 65 74 77 6f 72 6b 2c 20 70 72 69 6e 63 69 70 61 6c 6c | 2.local.area.network,.principall |
| c9c20 | 79 20 77 69 72 65 64 20 45 74 68 65 72 6e 65 74 2e 20 54 68 65 20 70 72 6f 74 6f 63 6f 6c 20 69 | y.wired.Ethernet..The.protocol.i |
| c9c40 | 73 20 66 6f 72 6d 61 6c 6c 79 20 72 65 66 65 72 72 65 64 20 74 6f 20 62 79 20 74 68 65 20 49 45 | s.formally.referred.to.by.the.IE |
| c9c60 | 45 45 20 61 73 20 53 74 61 74 69 6f 6e 20 61 6e 64 20 4d 65 64 69 61 20 41 63 63 65 73 73 20 43 | EE.as.Station.and.Media.Access.C |
| c9c80 | 6f 6e 74 72 6f 6c 20 43 6f 6e 6e 65 63 74 69 76 69 74 79 20 44 69 73 63 6f 76 65 72 79 20 73 70 | ontrol.Connectivity.Discovery.sp |
| c9ca0 | 65 63 69 66 69 65 64 20 69 6e 20 49 45 45 45 20 38 30 32 2e 31 41 42 20 61 6e 64 20 49 45 45 45 | ecified.in.IEEE.802.1AB.and.IEEE |
| c9cc0 | 20 38 30 32 2e 33 2d 32 30 31 32 20 73 65 63 74 69 6f 6e 20 36 20 63 6c 61 75 73 65 20 37 39 2e | .802.3-2012.section.6.clause.79. |
| c9ce0 | 00 3a 61 62 62 72 3a 60 4c 52 4f 20 28 4c 61 72 67 65 20 52 65 63 65 69 76 65 20 4f 66 66 6c 6f | .:abbr:`LRO.(Large.Receive.Offlo |
| c9d00 | 61 64 29 60 20 69 73 20 61 20 74 65 63 68 6e 69 71 75 65 20 64 65 73 69 67 6e 65 64 20 74 6f 20 | ad)`.is.a.technique.designed.to. |
| c9d20 | 62 6f 6f 73 74 20 74 68 65 20 65 66 66 69 63 69 65 6e 63 79 20 6f 66 20 68 6f 77 20 79 6f 75 72 | boost.the.efficiency.of.how.your |
| c9d40 | 20 63 6f 6d 70 75 74 65 72 27 73 20 6e 65 74 77 6f 72 6b 20 69 6e 74 65 72 66 61 63 65 20 63 61 | .computer's.network.interface.ca |
| c9d60 | 72 64 20 28 4e 49 43 29 20 70 72 6f 63 65 73 73 65 73 20 69 6e 63 6f 6d 69 6e 67 20 6e 65 74 77 | rd.(NIC).processes.incoming.netw |
| c9d80 | 6f 72 6b 20 74 72 61 66 66 69 63 2e 20 54 79 70 69 63 61 6c 6c 79 2c 20 6e 65 74 77 6f 72 6b 20 | ork.traffic..Typically,.network. |
| c9da0 | 64 61 74 61 20 61 72 72 69 76 65 73 20 69 6e 20 73 6d 61 6c 6c 65 72 20 63 68 75 6e 6b 73 20 63 | data.arrives.in.smaller.chunks.c |
| c9dc0 | 61 6c 6c 65 64 20 70 61 63 6b 65 74 73 2e 20 50 72 6f 63 65 73 73 69 6e 67 20 65 61 63 68 20 70 | alled.packets..Processing.each.p |
| c9de0 | 61 63 6b 65 74 20 69 6e 64 69 76 69 64 75 61 6c 6c 79 20 63 6f 6e 73 75 6d 65 73 20 43 50 55 20 | acket.individually.consumes.CPU. |
| c9e00 | 28 63 65 6e 74 72 61 6c 20 70 72 6f 63 65 73 73 69 6e 67 20 75 6e 69 74 29 20 72 65 73 6f 75 72 | (central.processing.unit).resour |
| c9e20 | 63 65 73 2e 20 4c 6f 74 73 20 6f 66 20 73 6d 61 6c 6c 20 70 61 63 6b 65 74 73 20 63 61 6e 20 6c | ces..Lots.of.small.packets.can.l |
| c9e40 | 65 61 64 20 74 6f 20 61 20 70 65 72 66 6f 72 6d 61 6e 63 65 20 62 6f 74 74 6c 65 6e 65 63 6b 2e | ead.to.a.performance.bottleneck. |
| c9e60 | 20 49 6e 73 74 65 61 64 20 6f 66 20 68 61 6e 64 69 6e 67 20 74 68 65 20 43 50 55 20 65 61 63 68 | .Instead.of.handing.the.CPU.each |
| c9e80 | 20 70 61 63 6b 65 74 20 61 73 20 69 74 20 63 6f 6d 65 73 20 69 6e 2c 20 4c 52 4f 20 69 6e 73 74 | .packet.as.it.comes.in,.LRO.inst |
| c9ea0 | 72 75 63 74 73 20 74 68 65 20 4e 49 43 20 74 6f 20 63 6f 6d 62 69 6e 65 20 6d 75 6c 74 69 70 6c | ructs.the.NIC.to.combine.multipl |
| c9ec0 | 65 20 69 6e 63 6f 6d 69 6e 67 20 70 61 63 6b 65 74 73 20 69 6e 74 6f 20 61 20 73 69 6e 67 6c 65 | e.incoming.packets.into.a.single |
| c9ee0 | 2c 20 6c 61 72 67 65 72 20 70 61 63 6b 65 74 2e 20 54 68 69 73 20 6c 61 72 67 65 72 20 70 61 63 | ,.larger.packet..This.larger.pac |
| c9f00 | 6b 65 74 20 69 73 20 74 68 65 6e 20 70 61 73 73 65 64 20 74 6f 20 74 68 65 20 43 50 55 20 66 6f | ket.is.then.passed.to.the.CPU.fo |
| c9f20 | 72 20 70 72 6f 63 65 73 73 69 6e 67 2e 00 3a 61 62 62 72 3a 60 4d 46 50 20 28 4d 61 6e 61 67 65 | r.processing..:abbr:`MFP.(Manage |
| c9f40 | 6d 65 6e 74 20 46 72 61 6d 65 20 50 72 6f 74 65 63 74 69 6f 6e 29 60 20 69 73 20 72 65 71 75 69 | ment.Frame.Protection)`.is.requi |
| c9f60 | 72 65 64 20 66 6f 72 20 57 50 41 33 2e 00 3a 61 62 62 72 3a 60 4d 4b 41 20 28 4d 41 43 73 65 63 | red.for.WPA3..:abbr:`MKA.(MACsec |
| c9f80 | 20 4b 65 79 20 41 67 72 65 65 6d 65 6e 74 20 70 72 6f 74 6f 63 6f 6c 29 60 20 69 73 20 75 73 65 | .Key.Agreement.protocol)`.is.use |
| c9fa0 | 64 20 74 6f 20 73 79 6e 63 68 72 6f 6e 69 7a 65 20 6b 65 79 73 20 62 65 74 77 65 65 6e 20 69 6e | d.to.synchronize.keys.between.in |
| c9fc0 | 64 69 76 69 64 75 61 6c 20 70 65 65 72 73 2e 00 3a 61 62 62 72 3a 60 4d 50 4c 53 20 28 4d 75 6c | dividual.peers..:abbr:`MPLS.(Mul |
| c9fe0 | 74 69 2d 50 72 6f 74 6f 63 6f 6c 20 4c 61 62 65 6c 20 53 77 69 74 63 68 69 6e 67 29 60 20 69 73 | ti-Protocol.Label.Switching)`.is |
| ca000 | 20 61 20 70 61 63 6b 65 74 20 66 6f 72 77 61 72 64 69 6e 67 20 70 61 72 61 64 69 67 6d 20 77 68 | .a.packet.forwarding.paradigm.wh |
| ca020 | 69 63 68 20 64 69 66 66 65 72 73 20 66 72 6f 6d 20 72 65 67 75 6c 61 72 20 49 50 20 66 6f 72 77 | ich.differs.from.regular.IP.forw |
| ca040 | 61 72 64 69 6e 67 2e 20 49 6e 73 74 65 61 64 20 6f 66 20 49 50 20 61 64 64 72 65 73 73 65 73 20 | arding..Instead.of.IP.addresses. |
| ca060 | 62 65 69 6e 67 20 75 73 65 64 20 74 6f 20 6d 61 6b 65 20 74 68 65 20 64 65 63 69 73 69 6f 6e 20 | being.used.to.make.the.decision. |
| ca080 | 6f 6e 20 66 69 6e 64 69 6e 67 20 74 68 65 20 65 78 69 74 20 69 6e 74 65 72 66 61 63 65 2c 20 61 | on.finding.the.exit.interface,.a |
| ca0a0 | 20 72 6f 75 74 65 72 20 77 69 6c 6c 20 69 6e 73 74 65 61 64 20 75 73 65 20 61 6e 20 65 78 61 63 | .router.will.instead.use.an.exac |
| ca0c0 | 74 20 6d 61 74 63 68 20 6f 6e 20 61 20 33 32 20 62 69 74 2f 34 20 62 79 74 65 20 68 65 61 64 65 | t.match.on.a.32.bit/4.byte.heade |
| ca0e0 | 72 20 63 61 6c 6c 65 64 20 74 68 65 20 4d 50 4c 53 20 6c 61 62 65 6c 2e 20 54 68 69 73 20 6c 61 | r.called.the.MPLS.label..This.la |
| ca100 | 62 65 6c 20 69 73 20 69 6e 73 65 72 74 65 64 20 62 65 74 77 65 65 6e 20 74 68 65 20 65 74 68 65 | bel.is.inserted.between.the.ethe |
| ca120 | 72 6e 65 74 20 28 6c 61 79 65 72 20 32 29 20 68 65 61 64 65 72 20 61 6e 64 20 74 68 65 20 49 50 | rnet.(layer.2).header.and.the.IP |
| ca140 | 20 28 6c 61 79 65 72 20 33 29 20 68 65 61 64 65 72 2e 20 4f 6e 65 20 63 61 6e 20 73 74 61 74 69 | .(layer.3).header..One.can.stati |
| ca160 | 63 61 6c 6c 79 20 6f 72 20 64 79 6e 61 6d 69 63 61 6c 6c 79 20 61 73 73 69 67 6e 20 6c 61 62 65 | cally.or.dynamically.assign.labe |
| ca180 | 6c 20 61 6c 6c 6f 63 61 74 69 6f 6e 73 2c 20 62 75 74 20 77 65 20 77 69 6c 6c 20 66 6f 63 75 73 | l.allocations,.but.we.will.focus |
| ca1a0 | 20 6f 6e 20 64 79 6e 61 6d 69 63 20 61 6c 6c 6f 63 61 74 69 6f 6e 20 6f 66 20 6c 61 62 65 6c 73 | .on.dynamic.allocation.of.labels |
| ca1c0 | 20 75 73 69 6e 67 20 73 6f 6d 65 20 73 6f 72 74 20 6f 66 20 6c 61 62 65 6c 20 64 69 73 74 72 69 | .using.some.sort.of.label.distri |
| ca1e0 | 62 75 74 69 6f 6e 20 70 72 6f 74 6f 63 6f 6c 20 28 73 75 63 68 20 61 73 20 74 68 65 20 61 70 74 | bution.protocol.(such.as.the.apt |
| ca200 | 6c 79 20 6e 61 6d 65 64 20 4c 61 62 65 6c 20 44 69 73 74 72 69 62 75 74 69 6f 6e 20 50 72 6f 74 | ly.named.Label.Distribution.Prot |
| ca220 | 6f 63 6f 6c 20 2f 20 4c 44 50 2c 20 52 65 73 6f 75 72 63 65 20 52 65 73 65 72 76 61 74 69 6f 6e | ocol./.LDP,.Resource.Reservation |
| ca240 | 20 50 72 6f 74 6f 63 6f 6c 20 2f 20 52 53 56 50 2c 20 6f 72 20 53 65 67 6d 65 6e 74 20 52 6f 75 | .Protocol./.RSVP,.or.Segment.Rou |
| ca260 | 74 69 6e 67 20 74 68 72 6f 75 67 68 20 4f 53 50 46 2f 49 53 49 53 29 2e 20 54 68 65 73 65 20 70 | ting.through.OSPF/ISIS)..These.p |
| ca280 | 72 6f 74 6f 63 6f 6c 73 20 61 6c 6c 6f 77 20 66 6f 72 20 74 68 65 20 63 72 65 61 74 69 6f 6e 20 | rotocols.allow.for.the.creation. |
| ca2a0 | 6f 66 20 61 20 75 6e 69 64 69 72 65 63 74 69 6f 6e 61 6c 2f 75 6e 69 63 61 73 74 20 70 61 74 68 | of.a.unidirectional/unicast.path |
| ca2c0 | 20 63 61 6c 6c 65 64 20 61 20 6c 61 62 65 6c 65 64 20 73 77 69 74 63 68 65 64 20 70 61 74 68 20 | .called.a.labeled.switched.path. |
| ca2e0 | 28 69 6e 69 74 69 61 6c 69 7a 65 64 20 61 73 20 4c 53 50 29 20 74 68 72 6f 75 67 68 6f 75 74 20 | (initialized.as.LSP).throughout. |
| ca300 | 74 68 65 20 6e 65 74 77 6f 72 6b 20 74 68 61 74 20 6f 70 65 72 61 74 65 73 20 76 65 72 79 20 6d | the.network.that.operates.very.m |
| ca320 | 75 63 68 20 6c 69 6b 65 20 61 20 74 75 6e 6e 65 6c 20 74 68 72 6f 75 67 68 20 74 68 65 20 6e 65 | uch.like.a.tunnel.through.the.ne |
| ca340 | 74 77 6f 72 6b 2e 20 41 6e 20 65 61 73 79 20 77 61 79 20 6f 66 20 74 68 69 6e 6b 69 6e 67 20 61 | twork..An.easy.way.of.thinking.a |
| ca360 | 62 6f 75 74 20 68 6f 77 20 61 6e 20 4d 50 4c 53 20 4c 53 50 20 61 63 74 75 61 6c 6c 79 20 66 6f | bout.how.an.MPLS.LSP.actually.fo |
| ca380 | 72 77 61 72 64 73 20 74 72 61 66 66 69 63 20 74 68 72 6f 75 67 68 6f 75 74 20 61 20 6e 65 74 77 | rwards.traffic.throughout.a.netw |
| ca3a0 | 6f 72 6b 20 69 73 20 74 6f 20 74 68 69 6e 6b 20 6f 66 20 61 20 47 52 45 20 74 75 6e 6e 65 6c 2e | ork.is.to.think.of.a.GRE.tunnel. |
| ca3c0 | 20 54 68 65 79 20 61 72 65 20 6e 6f 74 20 74 68 65 20 73 61 6d 65 20 69 6e 20 68 6f 77 20 74 68 | .They.are.not.the.same.in.how.th |
| ca3e0 | 65 79 20 6f 70 65 72 61 74 65 2c 20 62 75 74 20 74 68 65 79 20 61 72 65 20 74 68 65 20 73 61 6d | ey.operate,.but.they.are.the.sam |
| ca400 | 65 20 69 6e 20 68 6f 77 20 74 68 65 79 20 68 61 6e 64 6c 65 20 74 68 65 20 74 75 6e 6e 65 6c 65 | e.in.how.they.handle.the.tunnele |
| ca420 | 64 20 70 61 63 6b 65 74 2e 20 49 74 20 77 6f 75 6c 64 20 62 65 20 67 6f 6f 64 20 74 6f 20 74 68 | d.packet..It.would.be.good.to.th |
| ca440 | 69 6e 6b 20 6f 66 20 4d 50 4c 53 20 61 73 20 61 20 74 75 6e 6e 65 6c 69 6e 67 20 74 65 63 68 6e | ink.of.MPLS.as.a.tunneling.techn |
| ca460 | 6f 6c 6f 67 79 20 74 68 61 74 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 74 72 61 6e 73 70 | ology.that.can.be.used.to.transp |
| ca480 | 6f 72 74 20 6d 61 6e 79 20 64 69 66 66 65 72 65 6e 74 20 74 79 70 65 73 20 6f 66 20 70 61 63 6b | ort.many.different.types.of.pack |
| ca4a0 | 65 74 73 2c 20 74 6f 20 61 69 64 20 69 6e 20 74 72 61 66 66 69 63 20 65 6e 67 69 6e 65 65 72 69 | ets,.to.aid.in.traffic.engineeri |
| ca4c0 | 6e 67 20 62 79 20 61 6c 6c 6f 77 69 6e 67 20 6f 6e 65 20 74 6f 20 73 70 65 63 69 66 79 20 70 61 | ng.by.allowing.one.to.specify.pa |
| ca4e0 | 74 68 73 20 74 68 72 6f 75 67 68 6f 75 74 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 28 75 73 69 6e | ths.throughout.the.network.(usin |
| ca500 | 67 20 52 53 56 50 20 6f 72 20 53 52 29 2c 20 61 6e 64 20 74 6f 20 67 65 6e 65 72 61 6c 6c 79 20 | g.RSVP.or.SR),.and.to.generally. |
| ca520 | 61 6c 6c 6f 77 20 66 6f 72 20 65 61 73 69 65 72 20 69 6e 74 72 61 2f 69 6e 74 65 72 20 6e 65 74 | allow.for.easier.intra/inter.net |
| ca540 | 77 6f 72 6b 20 74 72 61 6e 73 70 6f 72 74 20 6f 66 20 64 61 74 61 20 70 61 63 6b 65 74 73 2e 00 | work.transport.of.data.packets.. |
| ca560 | 3a 61 62 62 72 3a 60 4e 41 54 20 28 4e 65 74 77 6f 72 6b 20 41 64 64 72 65 73 73 20 54 72 61 6e | :abbr:`NAT.(Network.Address.Tran |
| ca580 | 73 6c 61 74 69 6f 6e 29 60 20 69 73 20 61 20 63 6f 6d 6d 6f 6e 20 6d 65 74 68 6f 64 20 6f 66 20 | slation)`.is.a.common.method.of. |
| ca5a0 | 72 65 6d 61 70 70 69 6e 67 20 6f 6e 65 20 49 50 20 61 64 64 72 65 73 73 20 73 70 61 63 65 20 69 | remapping.one.IP.address.space.i |
| ca5c0 | 6e 74 6f 20 61 6e 6f 74 68 65 72 20 62 79 20 6d 6f 64 69 66 79 69 6e 67 20 6e 65 74 77 6f 72 6b | nto.another.by.modifying.network |
| ca5e0 | 20 61 64 64 72 65 73 73 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 69 6e 20 74 68 65 20 49 50 20 68 | .address.information.in.the.IP.h |
| ca600 | 65 61 64 65 72 20 6f 66 20 70 61 63 6b 65 74 73 20 77 68 69 6c 65 20 74 68 65 79 20 61 72 65 20 | eader.of.packets.while.they.are. |
| ca620 | 69 6e 20 74 72 61 6e 73 69 74 20 61 63 72 6f 73 73 20 61 20 74 72 61 66 66 69 63 20 72 6f 75 74 | in.transit.across.a.traffic.rout |
| ca640 | 69 6e 67 20 64 65 76 69 63 65 2e 20 54 68 65 20 74 65 63 68 6e 69 71 75 65 20 77 61 73 20 6f 72 | ing.device..The.technique.was.or |
| ca660 | 69 67 69 6e 61 6c 6c 79 20 75 73 65 64 20 61 73 20 61 20 73 68 6f 72 74 63 75 74 20 74 6f 20 61 | iginally.used.as.a.shortcut.to.a |
| ca680 | 76 6f 69 64 20 74 68 65 20 6e 65 65 64 20 74 6f 20 72 65 61 64 64 72 65 73 73 20 65 76 65 72 79 | void.the.need.to.readdress.every |
| ca6a0 | 20 68 6f 73 74 20 77 68 65 6e 20 61 20 6e 65 74 77 6f 72 6b 20 77 61 73 20 6d 6f 76 65 64 2e 20 | .host.when.a.network.was.moved.. |
| ca6c0 | 49 74 20 68 61 73 20 62 65 63 6f 6d 65 20 61 20 70 6f 70 75 6c 61 72 20 61 6e 64 20 65 73 73 65 | It.has.become.a.popular.and.esse |
| ca6e0 | 6e 74 69 61 6c 20 74 6f 6f 6c 20 69 6e 20 63 6f 6e 73 65 72 76 69 6e 67 20 67 6c 6f 62 61 6c 20 | ntial.tool.in.conserving.global. |
| ca700 | 61 64 64 72 65 73 73 20 73 70 61 63 65 20 69 6e 20 74 68 65 20 66 61 63 65 20 6f 66 20 49 50 76 | address.space.in.the.face.of.IPv |
| ca720 | 34 20 61 64 64 72 65 73 73 20 65 78 68 61 75 73 74 69 6f 6e 2e 20 4f 6e 65 20 49 6e 74 65 72 6e | 4.address.exhaustion..One.Intern |
| ca740 | 65 74 2d 72 6f 75 74 61 62 6c 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 61 20 4e 41 54 20 | et-routable.IP.address.of.a.NAT. |
| ca760 | 67 61 74 65 77 61 79 20 63 61 6e 20 62 65 20 75 73 65 64 20 66 6f 72 20 61 6e 20 65 6e 74 69 72 | gateway.can.be.used.for.an.entir |
| ca780 | 65 20 70 72 69 76 61 74 65 20 6e 65 74 77 6f 72 6b 2e 00 3a 61 62 62 72 3a 60 4e 41 54 20 28 4e | e.private.network..:abbr:`NAT.(N |
| ca7a0 | 65 74 77 6f 72 6b 20 41 64 64 72 65 73 73 20 54 72 61 6e 73 6c 61 74 69 6f 6e 29 60 20 69 73 20 | etwork.Address.Translation)`.is. |
| ca7c0 | 63 6f 6e 66 69 67 75 72 65 64 20 65 6e 74 69 72 65 6c 79 20 6f 6e 20 61 20 73 65 72 69 65 73 20 | configured.entirely.on.a.series. |
| ca7e0 | 6f 66 20 73 6f 20 63 61 6c 6c 65 64 20 60 72 75 6c 65 73 60 2e 20 52 75 6c 65 73 20 61 72 65 20 | of.so.called.`rules`..Rules.are. |
| ca800 | 6e 75 6d 62 65 72 65 64 20 61 6e 64 20 65 76 61 6c 75 61 74 65 64 20 62 79 20 74 68 65 20 75 6e | numbered.and.evaluated.by.the.un |
| ca820 | 64 65 72 6c 79 69 6e 67 20 4f 53 20 69 6e 20 6e 75 6d 65 72 69 63 61 6c 20 6f 72 64 65 72 21 20 | derlying.OS.in.numerical.order!. |
| ca840 | 54 68 65 20 72 75 6c 65 20 6e 75 6d 62 65 72 73 20 63 61 6e 20 62 65 20 63 68 61 6e 67 65 73 20 | The.rule.numbers.can.be.changes. |
| ca860 | 62 79 20 75 74 69 6c 69 7a 69 6e 67 20 74 68 65 20 3a 63 66 67 63 6d 64 3a 60 72 65 6e 61 6d 65 | by.utilizing.the.:cfgcmd:`rename |
| ca880 | 60 20 61 6e 64 20 3a 63 66 67 63 6d 64 3a 60 63 6f 70 79 60 20 63 6f 6d 6d 61 6e 64 73 2e 00 3a | `.and.:cfgcmd:`copy`.commands..: |
| ca8a0 | 61 62 62 72 3a 60 4e 41 54 36 34 20 28 49 50 76 36 2d 74 6f 2d 49 50 76 34 20 50 72 65 66 69 78 | abbr:`NAT64.(IPv6-to-IPv4.Prefix |
| ca8c0 | 20 54 72 61 6e 73 6c 61 74 69 6f 6e 29 60 20 69 73 20 61 20 63 72 69 74 69 63 61 6c 20 63 6f 6d | .Translation)`.is.a.critical.com |
| ca8e0 | 70 6f 6e 65 6e 74 20 69 6e 20 6d 6f 64 65 72 6e 20 6e 65 74 77 6f 72 6b 69 6e 67 2c 20 66 61 63 | ponent.in.modern.networking,.fac |
| ca900 | 69 6c 69 74 61 74 69 6e 67 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6f 6e 20 62 65 74 77 65 65 6e 20 | ilitating.communication.between. |
| ca920 | 49 50 76 36 20 61 6e 64 20 49 50 76 34 20 6e 65 74 77 6f 72 6b 73 2e 20 54 68 69 73 20 64 6f 63 | IPv6.and.IPv4.networks..This.doc |
| ca940 | 75 6d 65 6e 74 61 74 69 6f 6e 20 6f 75 74 6c 69 6e 65 73 20 74 68 65 20 73 65 74 75 70 2c 20 63 | umentation.outlines.the.setup,.c |
| ca960 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2c 20 61 6e 64 20 75 73 61 67 65 20 6f 66 20 74 68 65 20 4e | onfiguration,.and.usage.of.the.N |
| ca980 | 41 54 36 34 20 66 65 61 74 75 72 65 20 69 6e 20 79 6f 75 72 20 70 72 6f 6a 65 63 74 2e 20 57 68 | AT64.feature.in.your.project..Wh |
| ca9a0 | 65 74 68 65 72 20 79 6f 75 20 61 72 65 20 74 72 61 6e 73 69 74 69 6f 6e 69 6e 67 20 74 6f 20 49 | ether.you.are.transitioning.to.I |
| ca9c0 | 50 76 36 20 6f 72 20 6e 65 65 64 20 74 6f 20 73 65 61 6d 6c 65 73 73 6c 79 20 63 6f 6e 6e 65 63 | Pv6.or.need.to.seamlessly.connec |
| ca9e0 | 74 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 64 65 76 69 63 65 73 2e 20 4e 41 54 36 34 20 69 | t.IPv4.and.IPv6.devices..NAT64.i |
| caa00 | 73 20 61 20 73 74 61 74 65 66 75 6c 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 6d 65 63 68 61 6e 69 | s.a.stateful.translation.mechani |
| caa20 | 73 6d 20 74 68 61 74 20 74 72 61 6e 73 6c 61 74 65 73 20 49 50 76 36 20 61 64 64 72 65 73 73 65 | sm.that.translates.IPv6.addresse |
| caa40 | 73 20 74 6f 20 49 50 76 34 20 61 64 64 72 65 73 73 65 73 20 61 6e 64 20 49 50 76 34 20 61 64 64 | s.to.IPv4.addresses.and.IPv4.add |
| caa60 | 72 65 73 73 65 73 20 74 6f 20 49 50 76 36 20 61 64 64 72 65 73 73 65 73 2e 20 4e 41 54 36 34 20 | resses.to.IPv6.addresses..NAT64. |
| caa80 | 69 73 20 75 73 65 64 20 74 6f 20 65 6e 61 62 6c 65 20 49 50 76 36 2d 6f 6e 6c 79 20 63 6c 69 65 | is.used.to.enable.IPv6-only.clie |
| caaa0 | 6e 74 73 20 74 6f 20 63 6f 6e 74 61 63 74 20 49 50 76 34 20 73 65 72 76 65 72 73 20 75 73 69 6e | nts.to.contact.IPv4.servers.usin |
| caac0 | 67 20 75 6e 69 63 61 73 74 20 55 44 50 2c 20 54 43 50 2c 20 6f 72 20 49 43 4d 50 2e 00 3a 61 62 | g.unicast.UDP,.TCP,.or.ICMP..:ab |
| caae0 | 62 72 3a 60 4e 45 54 20 28 4e 65 74 77 6f 72 6b 20 45 6e 74 69 74 79 20 54 69 74 6c 65 29 60 20 | br:`NET.(Network.Entity.Title)`. |
| cab00 | 73 65 6c 65 63 74 6f 72 3a 20 60 60 30 30 60 60 20 4d 75 73 74 20 61 6c 77 61 79 73 20 62 65 20 | selector:.``00``.Must.always.be. |
| cab20 | 30 30 2e 20 54 68 69 73 20 73 65 74 74 69 6e 67 20 69 6e 64 69 63 61 74 65 73 20 22 74 68 69 73 | 00..This.setting.indicates."this |
| cab40 | 20 73 79 73 74 65 6d 22 20 6f 72 20 22 6c 6f 63 61 6c 20 73 79 73 74 65 6d 2e 22 00 3a 61 62 62 | .system".or."local.system.".:abb |
| cab60 | 72 3a 60 4e 48 52 50 20 28 4e 65 78 74 20 48 6f 70 20 52 65 73 6f 6c 75 74 69 6f 6e 20 50 72 6f | r:`NHRP.(Next.Hop.Resolution.Pro |
| cab80 | 74 6f 63 6f 6c 29 60 20 3a 72 66 63 3a 60 32 33 33 32 60 00 3a 61 62 62 72 3a 60 4e 50 54 76 36 | tocol)`.:rfc:`2332`.:abbr:`NPTv6 |
| caba0 | 20 28 49 50 76 36 2d 74 6f 2d 49 50 76 36 20 4e 65 74 77 6f 72 6b 20 50 72 65 66 69 78 20 54 72 | .(IPv6-to-IPv6.Network.Prefix.Tr |
| cabc0 | 61 6e 73 6c 61 74 69 6f 6e 29 60 20 69 73 20 61 6e 20 61 64 64 72 65 73 73 20 74 72 61 6e 73 6c | anslation)`.is.an.address.transl |
| cabe0 | 61 74 69 6f 6e 20 74 65 63 68 6e 6f 6c 6f 67 79 20 62 61 73 65 64 20 6f 6e 20 49 50 76 36 20 6e | ation.technology.based.on.IPv6.n |
| cac00 | 65 74 77 6f 72 6b 73 2c 20 75 73 65 64 20 74 6f 20 63 6f 6e 76 65 72 74 20 61 6e 20 49 50 76 36 | etworks,.used.to.convert.an.IPv6 |
| cac20 | 20 61 64 64 72 65 73 73 20 70 72 65 66 69 78 20 69 6e 20 61 6e 20 49 50 76 36 20 6d 65 73 73 61 | .address.prefix.in.an.IPv6.messa |
| cac40 | 67 65 20 69 6e 74 6f 20 61 6e 6f 74 68 65 72 20 49 50 76 36 20 61 64 64 72 65 73 73 20 70 72 65 | ge.into.another.IPv6.address.pre |
| cac60 | 66 69 78 2e 20 57 65 20 63 61 6c 6c 20 74 68 69 73 20 61 64 64 72 65 73 73 20 74 72 61 6e 73 6c | fix..We.call.this.address.transl |
| cac80 | 61 74 69 6f 6e 20 6d 65 74 68 6f 64 20 4e 41 54 36 36 2e 20 44 65 76 69 63 65 73 20 74 68 61 74 | ation.method.NAT66..Devices.that |
| caca0 | 20 73 75 70 70 6f 72 74 20 74 68 65 20 4e 41 54 36 36 20 66 75 6e 63 74 69 6f 6e 20 61 72 65 20 | .support.the.NAT66.function.are. |
| cacc0 | 63 61 6c 6c 65 64 20 4e 41 54 36 36 20 64 65 76 69 63 65 73 2c 20 77 68 69 63 68 20 63 61 6e 20 | called.NAT66.devices,.which.can. |
| cace0 | 70 72 6f 76 69 64 65 20 4e 41 54 36 36 20 73 6f 75 72 63 65 20 61 6e 64 20 64 65 73 74 69 6e 61 | provide.NAT66.source.and.destina |
| cad00 | 74 69 6f 6e 20 61 64 64 72 65 73 73 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 66 75 6e 63 74 69 6f | tion.address.translation.functio |
| cad20 | 6e 73 2e 00 3a 61 62 62 72 3a 60 4e 54 50 20 28 4e 65 74 77 6f 72 6b 20 54 69 6d 65 20 50 72 6f | ns..:abbr:`NTP.(Network.Time.Pro |
| cad40 | 74 6f 63 6f 6c 60 29 20 69 73 20 61 20 6e 65 74 77 6f 72 6b 69 6e 67 20 70 72 6f 74 6f 63 6f 6c | tocol`).is.a.networking.protocol |
| cad60 | 20 66 6f 72 20 63 6c 6f 63 6b 20 73 79 6e 63 68 72 6f 6e 69 7a 61 74 69 6f 6e 20 62 65 74 77 65 | .for.clock.synchronization.betwe |
| cad80 | 65 6e 20 63 6f 6d 70 75 74 65 72 20 73 79 73 74 65 6d 73 20 6f 76 65 72 20 70 61 63 6b 65 74 2d | en.computer.systems.over.packet- |
| cada0 | 73 77 69 74 63 68 65 64 2c 20 76 61 72 69 61 62 6c 65 2d 6c 61 74 65 6e 63 79 20 64 61 74 61 20 | switched,.variable-latency.data. |
| cadc0 | 6e 65 74 77 6f 72 6b 73 2e 20 49 6e 20 6f 70 65 72 61 74 69 6f 6e 20 73 69 6e 63 65 20 62 65 66 | networks..In.operation.since.bef |
| cade0 | 6f 72 65 20 31 39 38 35 2c 20 4e 54 50 20 69 73 20 6f 6e 65 20 6f 66 20 74 68 65 20 6f 6c 64 65 | ore.1985,.NTP.is.one.of.the.olde |
| cae00 | 73 74 20 49 6e 74 65 72 6e 65 74 20 70 72 6f 74 6f 63 6f 6c 73 20 69 6e 20 63 75 72 72 65 6e 74 | st.Internet.protocols.in.current |
| cae20 | 20 75 73 65 2e 00 3a 61 62 62 72 3a 60 4f 53 50 46 20 28 4f 70 65 6e 20 53 68 6f 72 74 65 73 74 | .use..:abbr:`OSPF.(Open.Shortest |
| cae40 | 20 50 61 74 68 20 46 69 72 73 74 29 60 20 69 73 20 61 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f | .Path.First)`.is.a.routing.proto |
| cae60 | 63 6f 6c 20 66 6f 72 20 49 6e 74 65 72 6e 65 74 20 50 72 6f 74 6f 63 6f 6c 20 28 49 50 29 20 6e | col.for.Internet.Protocol.(IP).n |
| cae80 | 65 74 77 6f 72 6b 73 2e 20 49 74 20 75 73 65 73 20 61 20 6c 69 6e 6b 20 73 74 61 74 65 20 72 6f | etworks..It.uses.a.link.state.ro |
| caea0 | 75 74 69 6e 67 20 28 4c 53 52 29 20 61 6c 67 6f 72 69 74 68 6d 20 61 6e 64 20 66 61 6c 6c 73 20 | uting.(LSR).algorithm.and.falls. |
| caec0 | 69 6e 74 6f 20 74 68 65 20 67 72 6f 75 70 20 6f 66 20 69 6e 74 65 72 69 6f 72 20 67 61 74 65 77 | into.the.group.of.interior.gatew |
| caee0 | 61 79 20 70 72 6f 74 6f 63 6f 6c 73 20 28 49 47 50 73 29 2c 20 6f 70 65 72 61 74 69 6e 67 20 77 | ay.protocols.(IGPs),.operating.w |
| caf00 | 69 74 68 69 6e 20 61 20 73 69 6e 67 6c 65 20 61 75 74 6f 6e 6f 6d 6f 75 73 20 73 79 73 74 65 6d | ithin.a.single.autonomous.system |
| caf20 | 20 28 41 53 29 2e 20 49 74 20 69 73 20 64 65 66 69 6e 65 64 20 61 73 20 4f 53 50 46 20 56 65 72 | .(AS)..It.is.defined.as.OSPF.Ver |
| caf40 | 73 69 6f 6e 20 32 20 69 6e 20 3a 72 66 63 3a 60 32 33 32 38 60 20 28 31 39 39 38 29 20 66 6f 72 | sion.2.in.:rfc:`2328`.(1998).for |
| caf60 | 20 49 50 76 34 2e 20 55 70 64 61 74 65 73 20 66 6f 72 20 49 50 76 36 20 61 72 65 20 73 70 65 63 | .IPv4..Updates.for.IPv6.are.spec |
| caf80 | 69 66 69 65 64 20 61 73 20 4f 53 50 46 20 56 65 72 73 69 6f 6e 20 33 20 69 6e 20 3a 72 66 63 3a | ified.as.OSPF.Version.3.in.:rfc: |
| cafa0 | 60 35 33 34 30 60 20 28 32 30 30 38 29 2e 20 4f 53 50 46 20 73 75 70 70 6f 72 74 73 20 74 68 65 | `5340`.(2008)..OSPF.supports.the |
| cafc0 | 20 3a 61 62 62 72 3a 60 43 49 44 52 20 28 43 6c 61 73 73 6c 65 73 73 20 49 6e 74 65 72 2d 44 6f | .:abbr:`CIDR.(Classless.Inter-Do |
| cafe0 | 6d 61 69 6e 20 52 6f 75 74 69 6e 67 29 60 20 61 64 64 72 65 73 73 69 6e 67 20 6d 6f 64 65 6c 2e | main.Routing)`.addressing.model. |
| cb000 | 00 3a 61 62 62 72 3a 60 50 49 4d 20 28 50 72 6f 74 6f 63 6f 6c 20 49 6e 64 65 70 65 6e 64 65 6e | .:abbr:`PIM.(Protocol.Independen |
| cb020 | 74 20 4d 75 6c 74 69 63 61 73 74 29 60 20 6d 75 73 74 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 | t.Multicast)`.must.be.configured |
| cb040 | 20 69 6e 20 65 76 65 72 79 20 69 6e 74 65 72 66 61 63 65 20 6f 66 20 65 76 65 72 79 20 70 61 72 | .in.every.interface.of.every.par |
| cb060 | 74 69 63 69 70 61 74 69 6e 67 20 72 6f 75 74 65 72 2e 20 45 76 65 72 79 20 72 6f 75 74 65 72 20 | ticipating.router..Every.router. |
| cb080 | 6d 75 73 74 20 61 6c 73 6f 20 68 61 76 65 20 74 68 65 20 6c 6f 63 61 74 69 6f 6e 20 6f 66 20 74 | must.also.have.the.location.of.t |
| cb0a0 | 68 65 20 52 65 6e 64 65 76 6f 75 7a 20 50 6f 69 6e 74 20 6d 61 6e 75 61 6c 6c 79 20 63 6f 6e 66 | he.Rendevouz.Point.manually.conf |
| cb0c0 | 69 67 75 72 65 64 2e 20 54 68 65 6e 2c 20 75 6e 69 64 69 72 65 63 74 69 6f 6e 61 6c 20 73 68 61 | igured..Then,.unidirectional.sha |
| cb0e0 | 72 65 64 20 74 72 65 65 73 20 72 6f 6f 74 65 64 20 61 74 20 74 68 65 20 52 65 6e 64 65 76 6f 75 | red.trees.rooted.at.the.Rendevou |
| cb100 | 7a 20 50 6f 69 6e 74 20 77 69 6c 6c 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 62 65 20 62 75 | z.Point.will.automatically.be.bu |
| cb120 | 69 6c 74 20 66 6f 72 20 6d 75 6c 74 69 63 61 73 74 20 64 69 73 74 72 69 62 75 74 69 6f 6e 2e 00 | ilt.for.multicast.distribution.. |
| cb140 | 3a 61 62 62 72 3a 60 50 50 50 6f 45 20 28 50 6f 69 6e 74 2d 74 6f 2d 50 6f 69 6e 74 20 50 72 6f | :abbr:`PPPoE.(Point-to-Point.Pro |
| cb160 | 74 6f 63 6f 6c 20 6f 76 65 72 20 45 74 68 65 72 6e 65 74 29 60 20 69 73 20 61 20 6e 65 74 77 6f | tocol.over.Ethernet)`.is.a.netwo |
| cb180 | 72 6b 20 70 72 6f 74 6f 63 6f 6c 20 66 6f 72 20 65 6e 63 61 70 73 75 6c 61 74 69 6e 67 20 50 50 | rk.protocol.for.encapsulating.PP |
| cb1a0 | 50 20 66 72 61 6d 65 73 20 69 6e 73 69 64 65 20 45 74 68 65 72 6e 65 74 20 66 72 61 6d 65 73 2e | P.frames.inside.Ethernet.frames. |
| cb1c0 | 20 49 74 20 61 70 70 65 61 72 65 64 20 69 6e 20 31 39 39 39 2c 20 69 6e 20 74 68 65 20 63 6f 6e | .It.appeared.in.1999,.in.the.con |
| cb1e0 | 74 65 78 74 20 6f 66 20 74 68 65 20 62 6f 6f 6d 20 6f 66 20 44 53 4c 20 61 73 20 74 68 65 20 73 | text.of.the.boom.of.DSL.as.the.s |
| cb200 | 6f 6c 75 74 69 6f 6e 20 66 6f 72 20 74 75 6e 6e 65 6c 69 6e 67 20 70 61 63 6b 65 74 73 20 6f 76 | olution.for.tunneling.packets.ov |
| cb220 | 65 72 20 74 68 65 20 44 53 4c 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 6f 20 74 68 65 20 3a 61 62 | er.the.DSL.connection.to.the.:ab |
| cb240 | 62 72 3a 60 49 53 50 73 20 28 49 6e 74 65 72 6e 65 74 20 53 65 72 76 69 63 65 20 50 72 6f 76 69 | br:`ISPs.(Internet.Service.Provi |
| cb260 | 64 65 72 73 29 60 20 49 50 20 6e 65 74 77 6f 72 6b 2c 20 61 6e 64 20 66 72 6f 6d 20 74 68 65 72 | ders)`.IP.network,.and.from.ther |
| cb280 | 65 20 74 6f 20 74 68 65 20 72 65 73 74 20 6f 66 20 74 68 65 20 49 6e 74 65 72 6e 65 74 2e 20 41 | e.to.the.rest.of.the.Internet..A |
| cb2a0 | 20 32 30 30 35 20 6e 65 74 77 6f 72 6b 69 6e 67 20 62 6f 6f 6b 20 6e 6f 74 65 64 20 74 68 61 74 | .2005.networking.book.noted.that |
| cb2c0 | 20 22 4d 6f 73 74 20 44 53 4c 20 70 72 6f 76 69 64 65 72 73 20 75 73 65 20 50 50 50 6f 45 2c 20 | ."Most.DSL.providers.use.PPPoE,. |
| cb2e0 | 77 68 69 63 68 20 70 72 6f 76 69 64 65 73 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2c 20 65 | which.provides.authentication,.e |
| cb300 | 6e 63 72 79 70 74 69 6f 6e 2c 20 61 6e 64 20 63 6f 6d 70 72 65 73 73 69 6f 6e 2e 22 20 54 79 70 | ncryption,.and.compression.".Typ |
| cb320 | 69 63 61 6c 20 75 73 65 20 6f 66 20 50 50 50 6f 45 20 69 6e 76 6f 6c 76 65 73 20 6c 65 76 65 72 | ical.use.of.PPPoE.involves.lever |
| cb340 | 61 67 69 6e 67 20 74 68 65 20 50 50 50 20 66 61 63 69 6c 69 74 69 65 73 20 66 6f 72 20 61 75 74 | aging.the.PPP.facilities.for.aut |
| cb360 | 68 65 6e 74 69 63 61 74 69 6e 67 20 74 68 65 20 75 73 65 72 20 77 69 74 68 20 61 20 75 73 65 72 | henticating.the.user.with.a.user |
| cb380 | 6e 61 6d 65 20 61 6e 64 20 70 61 73 73 77 6f 72 64 2c 20 70 72 65 64 6f 6d 69 6e 61 74 65 6c 79 | name.and.password,.predominately |
| cb3a0 | 20 76 69 61 20 74 68 65 20 50 41 50 20 70 72 6f 74 6f 63 6f 6c 20 61 6e 64 20 6c 65 73 73 20 6f | .via.the.PAP.protocol.and.less.o |
| cb3c0 | 66 74 65 6e 20 76 69 61 20 43 48 41 50 2e 00 3a 61 62 62 72 3a 60 52 41 73 20 28 52 6f 75 74 65 | ften.via.CHAP..:abbr:`RAs.(Route |
| cb3e0 | 72 20 61 64 76 65 72 74 69 73 65 6d 65 6e 74 73 29 60 20 61 72 65 20 64 65 73 63 72 69 62 65 64 | r.advertisements)`.are.described |
| cb400 | 20 69 6e 20 3a 72 66 63 3a 60 34 38 36 31 23 73 65 63 74 69 6f 6e 2d 34 2e 36 2e 32 60 2e 20 54 | .in.:rfc:`4861#section-4.6.2`..T |
| cb420 | 68 65 79 20 61 72 65 20 70 61 72 74 20 6f 66 20 77 68 61 74 20 69 73 20 6b 6e 6f 77 6e 20 61 73 | hey.are.part.of.what.is.known.as |
| cb440 | 20 3a 61 62 62 72 3a 60 53 4c 41 41 43 20 28 53 74 61 74 65 6c 65 73 73 20 41 64 64 72 65 73 73 | .:abbr:`SLAAC.(Stateless.Address |
| cb460 | 20 41 75 74 6f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 29 60 2e 00 3a 61 62 62 72 3a 60 52 49 50 | .Autoconfiguration)`..:abbr:`RIP |
| cb480 | 20 28 52 6f 75 74 69 6e 67 20 49 6e 66 6f 72 6d 61 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c 29 60 | .(Routing.Information.Protocol)` |
| cb4a0 | 20 69 73 20 61 20 77 69 64 65 6c 79 20 64 65 70 6c 6f 79 65 64 20 69 6e 74 65 72 69 6f 72 20 67 | .is.a.widely.deployed.interior.g |
| cb4c0 | 61 74 65 77 61 79 20 70 72 6f 74 6f 63 6f 6c 2e 20 52 49 50 20 77 61 73 20 64 65 76 65 6c 6f 70 | ateway.protocol..RIP.was.develop |
| cb4e0 | 65 64 20 69 6e 20 74 68 65 20 31 39 37 30 73 20 61 74 20 58 65 72 6f 78 20 4c 61 62 73 20 61 73 | ed.in.the.1970s.at.Xerox.Labs.as |
| cb500 | 20 70 61 72 74 20 6f 66 20 74 68 65 20 58 4e 53 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f | .part.of.the.XNS.routing.protoco |
| cb520 | 6c 2e 20 52 49 50 20 69 73 20 61 20 64 69 73 74 61 6e 63 65 2d 76 65 63 74 6f 72 20 70 72 6f 74 | l..RIP.is.a.distance-vector.prot |
| cb540 | 6f 63 6f 6c 20 61 6e 64 20 69 73 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 42 65 6c 6c 6d 61 6e | ocol.and.is.based.on.the.Bellman |
| cb560 | 2d 46 6f 72 64 20 61 6c 67 6f 72 69 74 68 6d 73 2e 20 41 73 20 61 20 64 69 73 74 61 6e 63 65 2d | -Ford.algorithms..As.a.distance- |
| cb580 | 76 65 63 74 6f 72 20 70 72 6f 74 6f 63 6f 6c 2c 20 52 49 50 20 72 6f 75 74 65 72 20 73 65 6e 64 | vector.protocol,.RIP.router.send |
| cb5a0 | 20 75 70 64 61 74 65 73 20 74 6f 20 69 74 73 20 6e 65 69 67 68 62 6f 72 73 20 70 65 72 69 6f 64 | .updates.to.its.neighbors.period |
| cb5c0 | 69 63 61 6c 6c 79 2c 20 74 68 75 73 20 61 6c 6c 6f 77 69 6e 67 20 74 68 65 20 63 6f 6e 76 65 72 | ically,.thus.allowing.the.conver |
| cb5e0 | 67 65 6e 63 65 20 74 6f 20 61 20 6b 6e 6f 77 6e 20 74 6f 70 6f 6c 6f 67 79 2e 20 49 6e 20 65 61 | gence.to.a.known.topology..In.ea |
| cb600 | 63 68 20 75 70 64 61 74 65 2c 20 74 68 65 20 64 69 73 74 61 6e 63 65 20 74 6f 20 61 6e 79 20 67 | ch.update,.the.distance.to.any.g |
| cb620 | 69 76 65 6e 20 6e 65 74 77 6f 72 6b 20 77 69 6c 6c 20 62 65 20 62 72 6f 61 64 63 61 73 74 20 74 | iven.network.will.be.broadcast.t |
| cb640 | 6f 20 69 74 73 20 6e 65 69 67 68 62 6f 72 69 6e 67 20 72 6f 75 74 65 72 2e 00 3a 61 62 62 72 3a | o.its.neighboring.router..:abbr: |
| cb660 | 60 52 50 4b 49 20 28 52 65 73 6f 75 72 63 65 20 50 75 62 6c 69 63 20 4b 65 79 20 49 6e 66 72 61 | `RPKI.(Resource.Public.Key.Infra |
| cb680 | 73 74 72 75 63 74 75 72 65 29 60 20 69 73 20 61 20 66 72 61 6d 65 77 6f 72 6b 20 3a 61 62 62 72 | structure)`.is.a.framework.:abbr |
| cb6a0 | 3a 60 50 4b 49 20 28 50 75 62 6c 69 63 20 4b 65 79 20 49 6e 66 72 61 73 74 72 75 63 74 75 72 65 | :`PKI.(Public.Key.Infrastructure |
| cb6c0 | 29 60 20 64 65 73 69 67 6e 65 64 20 74 6f 20 73 65 63 75 72 65 20 74 68 65 20 49 6e 74 65 72 6e | )`.designed.to.secure.the.Intern |
| cb6e0 | 65 74 20 72 6f 75 74 69 6e 67 20 69 6e 66 72 61 73 74 72 75 63 74 75 72 65 2e 20 49 74 20 61 73 | et.routing.infrastructure..It.as |
| cb700 | 73 6f 63 69 61 74 65 73 20 42 47 50 20 72 6f 75 74 65 20 61 6e 6e 6f 75 6e 63 65 6d 65 6e 74 73 | sociates.BGP.route.announcements |
| cb720 | 20 77 69 74 68 20 74 68 65 20 63 6f 72 72 65 63 74 20 6f 72 69 67 69 6e 61 74 69 6e 67 20 3a 61 | .with.the.correct.originating.:a |
| cb740 | 62 62 72 3a 60 41 53 4e 20 28 41 75 74 6f 6e 6f 6d 75 73 20 53 79 73 74 65 6d 20 4e 75 6d 62 65 | bbr:`ASN.(Autonomus.System.Numbe |
| cb760 | 72 29 60 20 77 68 69 63 68 20 42 47 50 20 72 6f 75 74 65 72 73 20 63 61 6e 20 74 68 65 6e 20 75 | r)`.which.BGP.routers.can.then.u |
| cb780 | 73 65 20 74 6f 20 63 68 65 63 6b 20 65 61 63 68 20 72 6f 75 74 65 20 61 67 61 69 6e 73 74 20 74 | se.to.check.each.route.against.t |
| cb7a0 | 68 65 20 63 6f 72 72 65 73 70 6f 6e 64 69 6e 67 20 3a 61 62 62 72 3a 60 52 4f 41 20 28 52 6f 75 | he.corresponding.:abbr:`ROA.(Rou |
| cb7c0 | 74 65 20 4f 72 69 67 69 6e 20 41 75 74 68 6f 72 69 73 61 74 69 6f 6e 29 60 20 66 6f 72 20 76 61 | te.Origin.Authorisation)`.for.va |
| cb7e0 | 6c 69 64 69 74 79 2e 20 52 50 4b 49 20 69 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 | lidity..RPKI.is.described.in.:rf |
| cb800 | 63 3a 60 36 34 38 30 60 2e 00 3a 61 62 62 72 3a 60 52 50 4b 49 20 28 52 65 73 6f 75 72 63 65 20 | c:`6480`..:abbr:`RPKI.(Resource. |
| cb820 | 50 75 62 6c 69 63 20 4b 65 79 20 49 6e 66 72 61 73 74 72 75 63 74 75 72 65 29 60 20 69 73 20 61 | Public.Key.Infrastructure)`.is.a |
| cb840 | 20 66 72 61 6d 65 77 6f 72 6b 20 64 65 73 69 67 6e 65 64 20 74 6f 20 73 65 63 75 72 65 20 74 68 | .framework.designed.to.secure.th |
| cb860 | 65 20 49 6e 74 65 72 6e 65 74 20 72 6f 75 74 69 6e 67 20 69 6e 66 72 61 73 74 72 75 63 74 75 72 | e.Internet.routing.infrastructur |
| cb880 | 65 2e 20 49 74 20 61 73 73 6f 63 69 61 74 65 73 20 42 47 50 20 72 6f 75 74 65 20 61 6e 6e 6f 75 | e..It.associates.BGP.route.annou |
| cb8a0 | 6e 63 65 6d 65 6e 74 73 20 77 69 74 68 20 74 68 65 20 63 6f 72 72 65 63 74 20 6f 72 69 67 69 6e | ncements.with.the.correct.origin |
| cb8c0 | 61 74 69 6e 67 20 3a 61 62 62 72 3a 60 41 53 4e 20 28 41 75 74 6f 6e 6f 6d 75 73 20 53 79 73 74 | ating.:abbr:`ASN.(Autonomus.Syst |
| cb8e0 | 65 6d 20 4e 75 6d 62 65 72 29 60 20 77 68 69 63 68 20 42 47 50 20 72 6f 75 74 65 72 73 20 63 61 | em.Number)`.which.BGP.routers.ca |
| cb900 | 6e 20 74 68 65 6e 20 75 73 65 20 74 6f 20 63 68 65 63 6b 20 65 61 63 68 20 72 6f 75 74 65 20 61 | n.then.use.to.check.each.route.a |
| cb920 | 67 61 69 6e 73 74 20 74 68 65 20 63 6f 72 72 65 73 70 6f 6e 64 69 6e 67 20 3a 61 62 62 72 3a 60 | gainst.the.corresponding.:abbr:` |
| cb940 | 52 4f 41 20 28 52 6f 75 74 65 20 4f 72 69 67 69 6e 20 41 75 74 68 6f 72 69 73 61 74 69 6f 6e 29 | ROA.(Route.Origin.Authorisation) |
| cb960 | 60 20 66 6f 72 20 76 61 6c 69 64 69 74 79 2e 20 52 50 4b 49 20 69 73 20 64 65 73 63 72 69 62 65 | `.for.validity..RPKI.is.describe |
| cb980 | 64 20 69 6e 20 3a 72 66 63 3a 60 36 34 38 30 60 2e 00 3a 61 62 62 72 3a 60 52 50 53 20 28 52 65 | d.in.:rfc:`6480`..:abbr:`RPS.(Re |
| cb9a0 | 63 65 69 76 65 20 50 61 63 6b 65 74 20 53 74 65 65 72 69 6e 67 29 60 20 69 73 20 6c 6f 67 69 63 | ceive.Packet.Steering)`.is.logic |
| cb9c0 | 61 6c 6c 79 20 61 20 73 6f 66 74 77 61 72 65 20 69 6d 70 6c 65 6d 65 6e 74 61 74 69 6f 6e 20 6f | ally.a.software.implementation.o |
| cb9e0 | 66 20 3a 61 62 62 72 3a 60 52 53 53 20 28 52 65 63 65 69 76 65 20 53 69 64 65 20 53 63 61 6c 69 | f.:abbr:`RSS.(Receive.Side.Scali |
| cba00 | 6e 67 29 60 2e 20 42 65 69 6e 67 20 69 6e 20 73 6f 66 74 77 61 72 65 2c 20 69 74 20 69 73 20 6e | ng)`..Being.in.software,.it.is.n |
| cba20 | 65 63 65 73 73 61 72 69 6c 79 20 63 61 6c 6c 65 64 20 6c 61 74 65 72 20 69 6e 20 74 68 65 20 64 | ecessarily.called.later.in.the.d |
| cba40 | 61 74 61 70 61 74 68 2e 20 57 68 65 72 65 61 73 20 52 53 53 20 73 65 6c 65 63 74 73 20 74 68 65 | atapath..Whereas.RSS.selects.the |
| cba60 | 20 71 75 65 75 65 20 61 6e 64 20 68 65 6e 63 65 20 43 50 55 20 74 68 61 74 20 77 69 6c 6c 20 72 | .queue.and.hence.CPU.that.will.r |
| cba80 | 75 6e 20 74 68 65 20 68 61 72 64 77 61 72 65 20 69 6e 74 65 72 72 75 70 74 20 68 61 6e 64 6c 65 | un.the.hardware.interrupt.handle |
| cbaa0 | 72 2c 20 52 50 53 20 73 65 6c 65 63 74 73 20 74 68 65 20 43 50 55 20 74 6f 20 70 65 72 66 6f 72 | r,.RPS.selects.the.CPU.to.perfor |
| cbac0 | 6d 20 70 72 6f 74 6f 63 6f 6c 20 70 72 6f 63 65 73 73 69 6e 67 20 61 62 6f 76 65 20 74 68 65 20 | m.protocol.processing.above.the. |
| cbae0 | 69 6e 74 65 72 72 75 70 74 20 68 61 6e 64 6c 65 72 2e 20 54 68 69 73 20 69 73 20 61 63 63 6f 6d | interrupt.handler..This.is.accom |
| cbb00 | 70 6c 69 73 68 65 64 20 62 79 20 70 6c 61 63 69 6e 67 20 74 68 65 20 70 61 63 6b 65 74 20 6f 6e | plished.by.placing.the.packet.on |
| cbb20 | 20 74 68 65 20 64 65 73 69 72 65 64 20 43 50 55 27 73 20 62 61 63 6b 6c 6f 67 20 71 75 65 75 65 | .the.desired.CPU's.backlog.queue |
| cbb40 | 20 61 6e 64 20 77 61 6b 69 6e 67 20 75 70 20 74 68 65 20 43 50 55 20 66 6f 72 20 70 72 6f 63 65 | .and.waking.up.the.CPU.for.proce |
| cbb60 | 73 73 69 6e 67 2e 20 52 50 53 20 68 61 73 20 73 6f 6d 65 20 61 64 76 61 6e 74 61 67 65 73 20 6f | ssing..RPS.has.some.advantages.o |
| cbb80 | 76 65 72 20 52 53 53 3a 00 3a 61 62 62 72 3a 60 53 4c 41 41 43 20 28 53 74 61 74 65 6c 65 73 73 | ver.RSS:.:abbr:`SLAAC.(Stateless |
| cbba0 | 20 41 64 64 72 65 73 73 20 41 75 74 6f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 29 60 20 3a 72 66 | .Address.Autoconfiguration)`.:rf |
| cbbc0 | 63 3a 60 34 38 36 32 60 2e 20 49 50 76 36 20 68 6f 73 74 73 20 63 61 6e 20 63 6f 6e 66 69 67 75 | c:`4862`..IPv6.hosts.can.configu |
| cbbe0 | 72 65 20 74 68 65 6d 73 65 6c 76 65 73 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 77 68 65 6e | re.themselves.automatically.when |
| cbc00 | 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 61 6e 20 49 50 76 36 20 6e 65 74 77 6f 72 6b 20 75 73 | .connected.to.an.IPv6.network.us |
| cbc20 | 69 6e 67 20 74 68 65 20 4e 65 69 67 68 62 6f 72 20 44 69 73 63 6f 76 65 72 79 20 50 72 6f 74 6f | ing.the.Neighbor.Discovery.Proto |
| cbc40 | 63 6f 6c 20 76 69 61 20 3a 61 62 62 72 3a 60 49 43 4d 50 76 36 20 28 49 6e 74 65 72 6e 65 74 20 | col.via.:abbr:`ICMPv6.(Internet. |
| cbc60 | 43 6f 6e 74 72 6f 6c 20 4d 65 73 73 61 67 65 20 50 72 6f 74 6f 63 6f 6c 20 76 65 72 73 69 6f 6e | Control.Message.Protocol.version |
| cbc80 | 20 36 29 60 20 72 6f 75 74 65 72 20 64 69 73 63 6f 76 65 72 79 20 6d 65 73 73 61 67 65 73 2e 20 | .6)`.router.discovery.messages.. |
| cbca0 | 57 68 65 6e 20 66 69 72 73 74 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 61 20 6e 65 74 77 6f 72 | When.first.connected.to.a.networ |
| cbcc0 | 6b 2c 20 61 20 68 6f 73 74 20 73 65 6e 64 73 20 61 20 6c 69 6e 6b 2d 6c 6f 63 61 6c 20 72 6f 75 | k,.a.host.sends.a.link-local.rou |
| cbce0 | 74 65 72 20 73 6f 6c 69 63 69 74 61 74 69 6f 6e 20 6d 75 6c 74 69 63 61 73 74 20 72 65 71 75 65 | ter.solicitation.multicast.reque |
| cbd00 | 73 74 20 66 6f 72 20 69 74 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 70 61 72 61 6d 65 74 | st.for.its.configuration.paramet |
| cbd20 | 65 72 73 3b 20 72 6f 75 74 65 72 73 20 72 65 73 70 6f 6e 64 20 74 6f 20 73 75 63 68 20 61 20 72 | ers;.routers.respond.to.such.a.r |
| cbd40 | 65 71 75 65 73 74 20 77 69 74 68 20 61 20 72 6f 75 74 65 72 20 61 64 76 65 72 74 69 73 65 6d 65 | equest.with.a.router.advertiseme |
| cbd60 | 6e 74 20 70 61 63 6b 65 74 20 74 68 61 74 20 63 6f 6e 74 61 69 6e 73 20 49 6e 74 65 72 6e 65 74 | nt.packet.that.contains.Internet |
| cbd80 | 20 4c 61 79 65 72 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 70 61 72 61 6d 65 74 65 72 73 2e | .Layer.configuration.parameters. |
| cbda0 | 00 3a 61 62 62 72 3a 60 53 4e 41 54 20 28 53 6f 75 72 63 65 20 4e 65 74 77 6f 72 6b 20 41 64 64 | .:abbr:`SNAT.(Source.Network.Add |
| cbdc0 | 72 65 73 73 20 54 72 61 6e 73 6c 61 74 69 6f 6e 29 60 20 69 73 20 74 68 65 20 6d 6f 73 74 20 63 | ress.Translation)`.is.the.most.c |
| cbde0 | 6f 6d 6d 6f 6e 20 66 6f 72 6d 20 6f 66 20 3a 61 62 62 72 3a 60 4e 41 54 20 28 4e 65 74 77 6f 72 | ommon.form.of.:abbr:`NAT.(Networ |
| cbe00 | 6b 20 41 64 64 72 65 73 73 20 54 72 61 6e 73 6c 61 74 69 6f 6e 29 60 20 61 6e 64 20 69 73 20 74 | k.Address.Translation)`.and.is.t |
| cbe20 | 79 70 69 63 61 6c 6c 79 20 72 65 66 65 72 72 65 64 20 74 6f 20 73 69 6d 70 6c 79 20 61 73 20 4e | ypically.referred.to.simply.as.N |
| cbe40 | 41 54 2e 20 54 6f 20 62 65 20 6d 6f 72 65 20 63 6f 72 72 65 63 74 2c 20 77 68 61 74 20 6d 6f 73 | AT..To.be.more.correct,.what.mos |
| cbe60 | 74 20 70 65 6f 70 6c 65 20 72 65 66 65 72 20 74 6f 20 61 73 20 3a 61 62 62 72 3a 60 4e 41 54 20 | t.people.refer.to.as.:abbr:`NAT. |
| cbe80 | 28 4e 65 74 77 6f 72 6b 20 41 64 64 72 65 73 73 20 54 72 61 6e 73 6c 61 74 69 6f 6e 29 60 20 69 | (Network.Address.Translation)`.i |
| cbea0 | 73 20 61 63 74 75 61 6c 6c 79 20 74 68 65 20 70 72 6f 63 65 73 73 20 6f 66 20 3a 61 62 62 72 3a | s.actually.the.process.of.:abbr: |
| cbec0 | 60 50 41 54 20 28 50 6f 72 74 20 41 64 64 72 65 73 73 20 54 72 61 6e 73 6c 61 74 69 6f 6e 29 60 | `PAT.(Port.Address.Translation)` |
| cbee0 | 2c 20 6f 72 20 4e 41 54 20 6f 76 65 72 6c 6f 61 64 2e 20 53 4e 41 54 20 69 73 20 74 79 70 69 63 | ,.or.NAT.overload..SNAT.is.typic |
| cbf00 | 61 6c 6c 79 20 75 73 65 64 20 62 79 20 69 6e 74 65 72 6e 61 6c 20 75 73 65 72 73 2f 70 72 69 76 | ally.used.by.internal.users/priv |
| cbf20 | 61 74 65 20 68 6f 73 74 73 20 74 6f 20 61 63 63 65 73 73 20 74 68 65 20 49 6e 74 65 72 6e 65 74 | ate.hosts.to.access.the.Internet |
| cbf40 | 20 2d 20 74 68 65 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 69 73 20 74 72 61 6e 73 6c 61 | .-.the.source.address.is.transla |
| cbf60 | 74 65 64 20 61 6e 64 20 74 68 75 73 20 6b 65 70 74 20 70 72 69 76 61 74 65 2e 00 3a 61 62 62 72 | ted.and.thus.kept.private..:abbr |
| cbf80 | 3a 60 53 4e 41 54 36 34 20 28 49 50 76 36 2d 74 6f 2d 49 50 76 34 20 53 6f 75 72 63 65 20 41 64 | :`SNAT64.(IPv6-to-IPv4.Source.Ad |
| cbfa0 | 64 72 65 73 73 20 54 72 61 6e 73 6c 61 74 69 6f 6e 29 60 20 69 73 20 61 20 73 74 61 74 65 66 75 | dress.Translation)`.is.a.statefu |
| cbfc0 | 6c 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 6d 65 63 68 61 6e 69 73 6d 20 74 68 61 74 20 74 72 61 | l.translation.mechanism.that.tra |
| cbfe0 | 6e 73 6c 61 74 65 73 20 49 50 76 36 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 49 50 76 34 20 61 | nslates.IPv6.addresses.to.IPv4.a |
| cc000 | 64 64 72 65 73 73 65 73 2e 00 3a 61 62 62 72 3a 60 53 4e 4d 50 20 28 53 69 6d 70 6c 65 20 4e 65 | ddresses..:abbr:`SNMP.(Simple.Ne |
| cc020 | 74 77 6f 72 6b 20 4d 61 6e 61 67 65 6d 65 6e 74 20 50 72 6f 74 6f 63 6f 6c 29 60 20 69 73 20 61 | twork.Management.Protocol)`.is.a |
| cc040 | 6e 20 49 6e 74 65 72 6e 65 74 20 53 74 61 6e 64 61 72 64 20 70 72 6f 74 6f 63 6f 6c 20 66 6f 72 | n.Internet.Standard.protocol.for |
| cc060 | 20 63 6f 6c 6c 65 63 74 69 6e 67 20 61 6e 64 20 6f 72 67 61 6e 69 7a 69 6e 67 20 69 6e 66 6f 72 | .collecting.and.organizing.infor |
| cc080 | 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 6d 61 6e 61 67 65 64 20 64 65 76 69 63 65 73 20 6f 6e 20 | mation.about.managed.devices.on. |
| cc0a0 | 49 50 20 6e 65 74 77 6f 72 6b 73 20 61 6e 64 20 66 6f 72 20 6d 6f 64 69 66 79 69 6e 67 20 74 68 | IP.networks.and.for.modifying.th |
| cc0c0 | 61 74 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 6f 20 63 68 61 6e 67 65 20 64 65 76 69 63 65 20 | at.information.to.change.device. |
| cc0e0 | 62 65 68 61 76 69 6f 72 2e 20 44 65 76 69 63 65 73 20 74 68 61 74 20 74 79 70 69 63 61 6c 6c 79 | behavior..Devices.that.typically |
| cc100 | 20 73 75 70 70 6f 72 74 20 53 4e 4d 50 20 69 6e 63 6c 75 64 65 20 63 61 62 6c 65 20 6d 6f 64 65 | .support.SNMP.include.cable.mode |
| cc120 | 6d 73 2c 20 72 6f 75 74 65 72 73 2c 20 73 77 69 74 63 68 65 73 2c 20 73 65 72 76 65 72 73 2c 20 | ms,.routers,.switches,.servers,. |
| cc140 | 77 6f 72 6b 73 74 61 74 69 6f 6e 73 2c 20 70 72 69 6e 74 65 72 73 2c 20 61 6e 64 20 6d 6f 72 65 | workstations,.printers,.and.more |
| cc160 | 2e 00 3a 61 62 62 72 3a 60 53 4e 50 54 76 36 20 28 53 6f 75 72 63 65 20 49 50 76 36 2d 74 6f 2d | ..:abbr:`SNPTv6.(Source.IPv6-to- |
| cc180 | 49 50 76 36 20 4e 65 74 77 6f 72 6b 20 50 72 65 66 69 78 20 54 72 61 6e 73 6c 61 74 69 6f 6e 29 | IPv6.Network.Prefix.Translation) |
| cc1a0 | 60 20 54 68 65 20 63 6f 6e 76 65 72 73 69 6f 6e 20 66 75 6e 63 74 69 6f 6e 20 69 73 20 6d 61 69 | `.The.conversion.function.is.mai |
| cc1c0 | 6e 6c 79 20 75 73 65 64 20 69 6e 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 63 65 6e 61 72 | nly.used.in.the.following.scenar |
| cc1e0 | 69 6f 73 3a 00 3a 61 62 62 72 3a 60 53 53 48 20 28 53 65 63 75 72 65 20 53 68 65 6c 6c 29 60 20 | ios:.:abbr:`SSH.(Secure.Shell)`. |
| cc200 | 69 73 20 61 20 63 72 79 70 74 6f 67 72 61 70 68 69 63 20 6e 65 74 77 6f 72 6b 20 70 72 6f 74 6f | is.a.cryptographic.network.proto |
| cc220 | 63 6f 6c 20 66 6f 72 20 6f 70 65 72 61 74 69 6e 67 20 6e 65 74 77 6f 72 6b 20 73 65 72 76 69 63 | col.for.operating.network.servic |
| cc240 | 65 73 20 73 65 63 75 72 65 6c 79 20 6f 76 65 72 20 61 6e 20 75 6e 73 65 63 75 72 65 64 20 6e 65 | es.securely.over.an.unsecured.ne |
| cc260 | 74 77 6f 72 6b 2e 20 54 68 65 20 73 74 61 6e 64 61 72 64 20 54 43 50 20 70 6f 72 74 20 66 6f 72 | twork..The.standard.TCP.port.for |
| cc280 | 20 53 53 48 20 69 73 20 32 32 2e 20 54 68 65 20 62 65 73 74 20 6b 6e 6f 77 6e 20 65 78 61 6d 70 | .SSH.is.22..The.best.known.examp |
| cc2a0 | 6c 65 20 61 70 70 6c 69 63 61 74 69 6f 6e 20 69 73 20 66 6f 72 20 72 65 6d 6f 74 65 20 6c 6f 67 | le.application.is.for.remote.log |
| cc2c0 | 69 6e 20 74 6f 20 63 6f 6d 70 75 74 65 72 20 73 79 73 74 65 6d 73 20 62 79 20 75 73 65 72 73 2e | in.to.computer.systems.by.users. |
| cc2e0 | 00 3a 61 62 62 72 3a 60 53 53 54 50 20 28 53 65 63 75 72 65 20 53 6f 63 6b 65 74 20 54 75 6e 6e | .:abbr:`SSTP.(Secure.Socket.Tunn |
| cc300 | 65 6c 69 6e 67 20 50 72 6f 74 6f 63 6f 6c 29 60 20 69 73 20 61 20 66 6f 72 6d 20 6f 66 20 3a 61 | eling.Protocol)`.is.a.form.of.:a |
| cc320 | 62 62 72 3a 60 56 50 4e 20 28 56 69 72 74 75 61 6c 20 50 72 69 76 61 74 65 20 4e 65 74 77 6f 72 | bbr:`VPN.(Virtual.Private.Networ |
| cc340 | 6b 29 60 20 74 75 6e 6e 65 6c 20 74 68 61 74 20 70 72 6f 76 69 64 65 73 20 61 20 6d 65 63 68 61 | k)`.tunnel.that.provides.a.mecha |
| cc360 | 6e 69 73 6d 20 74 6f 20 74 72 61 6e 73 70 6f 72 74 20 50 50 50 20 74 72 61 66 66 69 63 20 74 68 | nism.to.transport.PPP.traffic.th |
| cc380 | 72 6f 75 67 68 20 61 6e 20 53 53 4c 2f 54 4c 53 20 63 68 61 6e 6e 65 6c 2e 20 53 53 4c 2f 54 4c | rough.an.SSL/TLS.channel..SSL/TL |
| cc3a0 | 53 20 70 72 6f 76 69 64 65 73 20 74 72 61 6e 73 70 6f 72 74 2d 6c 65 76 65 6c 20 73 65 63 75 72 | S.provides.transport-level.secur |
| cc3c0 | 69 74 79 20 77 69 74 68 20 6b 65 79 20 6e 65 67 6f 74 69 61 74 69 6f 6e 2c 20 65 6e 63 72 79 70 | ity.with.key.negotiation,.encryp |
| cc3e0 | 74 69 6f 6e 20 61 6e 64 20 74 72 61 66 66 69 63 20 69 6e 74 65 67 72 69 74 79 20 63 68 65 63 6b | tion.and.traffic.integrity.check |
| cc400 | 69 6e 67 2e 20 54 68 65 20 75 73 65 20 6f 66 20 53 53 4c 2f 54 4c 53 20 6f 76 65 72 20 54 43 50 | ing..The.use.of.SSL/TLS.over.TCP |
| cc420 | 20 70 6f 72 74 20 34 34 33 20 61 6c 6c 6f 77 73 20 53 53 54 50 20 74 6f 20 70 61 73 73 20 74 68 | .port.443.allows.SSTP.to.pass.th |
| cc440 | 72 6f 75 67 68 20 76 69 72 74 75 61 6c 6c 79 20 61 6c 6c 20 66 69 72 65 77 61 6c 6c 73 20 61 6e | rough.virtually.all.firewalls.an |
| cc460 | 64 20 70 72 6f 78 79 20 73 65 72 76 65 72 73 20 65 78 63 65 70 74 20 66 6f 72 20 61 75 74 68 65 | d.proxy.servers.except.for.authe |
| cc480 | 6e 74 69 63 61 74 65 64 20 77 65 62 20 70 72 6f 78 69 65 73 2e 00 3a 61 62 62 72 3a 60 53 53 54 | nticated.web.proxies..:abbr:`SST |
| cc4a0 | 50 20 28 53 65 63 75 72 65 20 53 6f 63 6b 65 74 20 54 75 6e 6e 65 6c 69 6e 67 20 50 72 6f 74 6f | P.(Secure.Socket.Tunneling.Proto |
| cc4c0 | 63 6f 6c 29 60 20 69 73 20 61 20 66 6f 72 6d 20 6f 66 20 3a 61 62 62 72 3a 60 56 54 50 20 28 56 | col)`.is.a.form.of.:abbr:`VTP.(V |
| cc4e0 | 69 72 74 75 61 6c 20 50 72 69 76 61 74 65 20 4e 65 74 77 6f 72 6b 29 60 20 74 75 6e 6e 65 6c 20 | irtual.Private.Network)`.tunnel. |
| cc500 | 74 68 61 74 20 70 72 6f 76 69 64 65 73 20 61 20 6d 65 63 68 61 6e 69 73 6d 20 74 6f 20 74 72 61 | that.provides.a.mechanism.to.tra |
| cc520 | 6e 73 70 6f 72 74 20 50 50 50 20 74 72 61 66 66 69 63 20 74 68 72 6f 75 67 68 20 61 6e 20 53 53 | nsport.PPP.traffic.through.an.SS |
| cc540 | 4c 2f 54 4c 53 20 63 68 61 6e 6e 65 6c 2e 20 53 53 4c 2f 54 4c 53 20 70 72 6f 76 69 64 65 73 20 | L/TLS.channel..SSL/TLS.provides. |
| cc560 | 74 72 61 6e 73 70 6f 72 74 2d 6c 65 76 65 6c 20 73 65 63 75 72 69 74 79 20 77 69 74 68 20 6b 65 | transport-level.security.with.ke |
| cc580 | 79 20 6e 65 67 6f 74 69 61 74 69 6f 6e 2c 20 65 6e 63 72 79 70 74 69 6f 6e 20 61 6e 64 20 74 72 | y.negotiation,.encryption.and.tr |
| cc5a0 | 61 66 66 69 63 20 69 6e 74 65 67 72 69 74 79 20 63 68 65 63 6b 69 6e 67 2e 20 54 68 65 20 75 73 | affic.integrity.checking..The.us |
| cc5c0 | 65 20 6f 66 20 53 53 4c 2f 54 4c 53 20 6f 76 65 72 20 54 43 50 20 70 6f 72 74 20 34 34 33 20 28 | e.of.SSL/TLS.over.TCP.port.443.( |
| cc5e0 | 62 79 20 64 65 66 61 75 6c 74 2c 20 70 6f 72 74 20 63 61 6e 20 62 65 20 63 68 61 6e 67 65 64 29 | by.default,.port.can.be.changed) |
| cc600 | 20 61 6c 6c 6f 77 73 20 53 53 54 50 20 74 6f 20 70 61 73 73 20 74 68 72 6f 75 67 68 20 76 69 72 | .allows.SSTP.to.pass.through.vir |
| cc620 | 74 75 61 6c 6c 79 20 61 6c 6c 20 66 69 72 65 77 61 6c 6c 73 20 61 6e 64 20 70 72 6f 78 79 20 73 | tually.all.firewalls.and.proxy.s |
| cc640 | 65 72 76 65 72 73 20 65 78 63 65 70 74 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 65 64 20 | ervers.except.for.authenticated. |
| cc660 | 77 65 62 20 70 72 6f 78 69 65 73 2e 00 3a 61 62 62 72 3a 60 53 54 50 20 28 53 70 61 6e 6e 69 6e | web.proxies..:abbr:`STP.(Spannin |
| cc680 | 67 20 54 72 65 65 20 50 72 6f 74 6f 63 6f 6c 29 60 20 69 73 20 61 20 6e 65 74 77 6f 72 6b 20 70 | g.Tree.Protocol)`.is.a.network.p |
| cc6a0 | 72 6f 74 6f 63 6f 6c 20 74 68 61 74 20 62 75 69 6c 64 73 20 61 20 6c 6f 6f 70 2d 66 72 65 65 20 | rotocol.that.builds.a.loop-free. |
| cc6c0 | 6c 6f 67 69 63 61 6c 20 74 6f 70 6f 6c 6f 67 79 20 66 6f 72 20 45 74 68 65 72 6e 65 74 20 6e 65 | logical.topology.for.Ethernet.ne |
| cc6e0 | 74 77 6f 72 6b 73 2e 20 54 68 65 20 62 61 73 69 63 20 66 75 6e 63 74 69 6f 6e 20 6f 66 20 53 54 | tworks..The.basic.function.of.ST |
| cc700 | 50 20 69 73 20 74 6f 20 70 72 65 76 65 6e 74 20 62 72 69 64 67 65 20 6c 6f 6f 70 73 20 61 6e 64 | P.is.to.prevent.bridge.loops.and |
| cc720 | 20 74 68 65 20 62 72 6f 61 64 63 61 73 74 20 72 61 64 69 61 74 69 6f 6e 20 74 68 61 74 20 72 65 | .the.broadcast.radiation.that.re |
| cc740 | 73 75 6c 74 73 20 66 72 6f 6d 20 74 68 65 6d 2e 20 53 70 61 6e 6e 69 6e 67 20 74 72 65 65 20 61 | sults.from.them..Spanning.tree.a |
| cc760 | 6c 73 6f 20 61 6c 6c 6f 77 73 20 61 20 6e 65 74 77 6f 72 6b 20 64 65 73 69 67 6e 20 74 6f 20 69 | lso.allows.a.network.design.to.i |
| cc780 | 6e 63 6c 75 64 65 20 62 61 63 6b 75 70 20 6c 69 6e 6b 73 20 70 72 6f 76 69 64 69 6e 67 20 66 61 | nclude.backup.links.providing.fa |
| cc7a0 | 75 6c 74 20 74 6f 6c 65 72 61 6e 63 65 20 69 66 20 61 6e 20 61 63 74 69 76 65 20 6c 69 6e 6b 20 | ult.tolerance.if.an.active.link. |
| cc7c0 | 66 61 69 6c 73 2e 00 3a 61 62 62 72 3a 60 54 46 54 50 20 28 54 72 69 76 69 61 6c 20 46 69 6c 65 | fails..:abbr:`TFTP.(Trivial.File |
| cc7e0 | 20 54 72 61 6e 73 66 65 72 20 50 72 6f 74 6f 63 6f 6c 29 60 20 69 73 20 61 20 73 69 6d 70 6c 65 | .Transfer.Protocol)`.is.a.simple |
| cc800 | 2c 20 6c 6f 63 6b 73 74 65 70 20 66 69 6c 65 20 74 72 61 6e 73 66 65 72 20 70 72 6f 74 6f 63 6f | ,.lockstep.file.transfer.protoco |
| cc820 | 6c 20 77 68 69 63 68 20 61 6c 6c 6f 77 73 20 61 20 63 6c 69 65 6e 74 20 74 6f 20 67 65 74 20 61 | l.which.allows.a.client.to.get.a |
| cc840 | 20 66 69 6c 65 20 66 72 6f 6d 20 6f 72 20 70 75 74 20 61 20 66 69 6c 65 20 6f 6e 74 6f 20 61 20 | .file.from.or.put.a.file.onto.a. |
| cc860 | 72 65 6d 6f 74 65 20 68 6f 73 74 2e 20 4f 6e 65 20 6f 66 20 69 74 73 20 70 72 69 6d 61 72 79 20 | remote.host..One.of.its.primary. |
| cc880 | 75 73 65 73 20 69 73 20 69 6e 20 74 68 65 20 65 61 72 6c 79 20 73 74 61 67 65 73 20 6f 66 20 6e | uses.is.in.the.early.stages.of.n |
| cc8a0 | 6f 64 65 73 20 62 6f 6f 74 69 6e 67 20 66 72 6f 6d 20 61 20 6c 6f 63 61 6c 20 61 72 65 61 20 6e | odes.booting.from.a.local.area.n |
| cc8c0 | 65 74 77 6f 72 6b 2e 20 54 46 54 50 20 68 61 73 20 62 65 65 6e 20 75 73 65 64 20 66 6f 72 20 74 | etwork..TFTP.has.been.used.for.t |
| cc8e0 | 68 69 73 20 61 70 70 6c 69 63 61 74 69 6f 6e 20 62 65 63 61 75 73 65 20 69 74 20 69 73 20 76 65 | his.application.because.it.is.ve |
| cc900 | 72 79 20 73 69 6d 70 6c 65 20 74 6f 20 69 6d 70 6c 65 6d 65 6e 74 2e 00 3a 61 62 62 72 3a 60 56 | ry.simple.to.implement..:abbr:`V |
| cc920 | 4e 49 20 28 56 69 72 74 75 61 6c 20 4e 65 74 77 6f 72 6b 20 49 64 65 6e 74 69 66 69 65 72 29 60 | NI.(Virtual.Network.Identifier)` |
| cc940 | 20 69 73 20 61 6e 20 69 64 65 6e 74 69 66 69 65 72 20 66 6f 72 20 61 20 75 6e 69 71 75 65 20 65 | .is.an.identifier.for.a.unique.e |
| cc960 | 6c 65 6d 65 6e 74 20 6f 66 20 61 20 76 69 72 74 75 61 6c 20 6e 65 74 77 6f 72 6b 2e 20 20 49 6e | lement.of.a.virtual.network...In |
| cc980 | 20 6d 61 6e 79 20 73 69 74 75 61 74 69 6f 6e 73 20 74 68 69 73 20 6d 61 79 20 72 65 70 72 65 73 | .many.situations.this.may.repres |
| cc9a0 | 65 6e 74 20 61 6e 20 4c 32 20 73 65 67 6d 65 6e 74 2c 20 68 6f 77 65 76 65 72 2c 20 74 68 65 20 | ent.an.L2.segment,.however,.the. |
| cc9c0 | 63 6f 6e 74 72 6f 6c 20 70 6c 61 6e 65 20 64 65 66 69 6e 65 73 20 74 68 65 20 66 6f 72 77 61 72 | control.plane.defines.the.forwar |
| cc9e0 | 64 69 6e 67 20 73 65 6d 61 6e 74 69 63 73 20 6f 66 20 64 65 63 61 70 73 75 6c 61 74 65 64 20 70 | ding.semantics.of.decapsulated.p |
| cca00 | 61 63 6b 65 74 73 2e 20 54 68 65 20 56 4e 49 20 4d 41 59 20 62 65 20 75 73 65 64 20 61 73 20 70 | ackets..The.VNI.MAY.be.used.as.p |
| cca20 | 61 72 74 20 6f 66 20 45 43 4d 50 20 66 6f 72 77 61 72 64 69 6e 67 20 64 65 63 69 73 69 6f 6e 73 | art.of.ECMP.forwarding.decisions |
| cca40 | 20 6f 72 20 4d 41 59 20 62 65 20 75 73 65 64 20 61 73 20 61 20 6d 65 63 68 61 6e 69 73 6d 20 74 | .or.MAY.be.used.as.a.mechanism.t |
| cca60 | 6f 20 64 69 73 74 69 6e 67 75 69 73 68 20 62 65 74 77 65 65 6e 20 6f 76 65 72 6c 61 70 70 69 6e | o.distinguish.between.overlappin |
| cca80 | 67 20 61 64 64 72 65 73 73 20 73 70 61 63 65 73 20 63 6f 6e 74 61 69 6e 65 64 20 69 6e 20 74 68 | g.address.spaces.contained.in.th |
| ccaa0 | 65 20 65 6e 63 61 70 73 75 6c 61 74 65 64 20 70 61 63 6b 65 74 20 77 68 65 6e 20 6c 6f 61 64 20 | e.encapsulated.packet.when.load. |
| ccac0 | 62 61 6c 61 6e 63 69 6e 67 20 61 63 72 6f 73 73 20 43 50 55 73 2e 00 3a 61 62 62 72 3a 60 56 52 | balancing.across.CPUs..:abbr:`VR |
| ccae0 | 46 20 28 56 69 72 74 75 61 6c 20 52 6f 75 74 69 6e 67 20 61 6e 64 20 46 6f 72 77 61 72 64 69 6e | F.(Virtual.Routing.and.Forwardin |
| ccb00 | 67 29 60 20 64 65 76 69 63 65 73 20 63 6f 6d 62 69 6e 65 64 20 77 69 74 68 20 69 70 20 72 75 6c | g)`.devices.combined.with.ip.rul |
| ccb20 | 65 73 20 70 72 6f 76 69 64 65 73 20 74 68 65 20 61 62 69 6c 69 74 79 20 74 6f 20 63 72 65 61 74 | es.provides.the.ability.to.creat |
| ccb40 | 65 20 76 69 72 74 75 61 6c 20 72 6f 75 74 69 6e 67 20 61 6e 64 20 66 6f 72 77 61 72 64 69 6e 67 | e.virtual.routing.and.forwarding |
| ccb60 | 20 64 6f 6d 61 69 6e 73 20 28 61 6b 61 20 56 52 46 73 2c 20 56 52 46 2d 6c 69 74 65 20 74 6f 20 | .domains.(aka.VRFs,.VRF-lite.to. |
| ccb80 | 62 65 20 73 70 65 63 69 66 69 63 29 20 69 6e 20 74 68 65 20 4c 69 6e 75 78 20 6e 65 74 77 6f 72 | be.specific).in.the.Linux.networ |
| ccba0 | 6b 20 73 74 61 63 6b 2e 20 4f 6e 65 20 75 73 65 20 63 61 73 65 20 69 73 20 74 68 65 20 6d 75 6c | k.stack..One.use.case.is.the.mul |
| ccbc0 | 74 69 2d 74 65 6e 61 6e 63 79 20 70 72 6f 62 6c 65 6d 20 77 68 65 72 65 20 65 61 63 68 20 74 65 | ti-tenancy.problem.where.each.te |
| ccbe0 | 6e 61 6e 74 20 68 61 73 20 74 68 65 69 72 20 6f 77 6e 20 75 6e 69 71 75 65 20 72 6f 75 74 69 6e | nant.has.their.own.unique.routin |
| ccc00 | 67 20 74 61 62 6c 65 73 20 61 6e 64 20 69 6e 20 74 68 65 20 76 65 72 79 20 6c 65 61 73 74 20 6e | g.tables.and.in.the.very.least.n |
| ccc20 | 65 65 64 20 64 69 66 66 65 72 65 6e 74 20 64 65 66 61 75 6c 74 20 67 61 74 65 77 61 79 73 2e 00 | eed.different.default.gateways.. |
| ccc40 | 3a 61 62 62 72 3a 60 56 58 4c 41 4e 20 28 56 69 72 74 75 61 6c 20 45 78 74 65 6e 73 69 62 6c 65 | :abbr:`VXLAN.(Virtual.Extensible |
| ccc60 | 20 4c 41 4e 29 60 20 69 73 20 61 20 6e 65 74 77 6f 72 6b 20 76 69 72 74 75 61 6c 69 7a 61 74 69 | .LAN)`.is.a.network.virtualizati |
| ccc80 | 6f 6e 20 74 65 63 68 6e 6f 6c 6f 67 79 20 74 68 61 74 20 61 74 74 65 6d 70 74 73 20 74 6f 20 61 | on.technology.that.attempts.to.a |
| ccca0 | 64 64 72 65 73 73 20 74 68 65 20 73 63 61 6c 61 62 69 6c 69 74 79 20 70 72 6f 62 6c 65 6d 73 20 | ddress.the.scalability.problems. |
| cccc0 | 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 6c 61 72 67 65 20 63 6c 6f 75 64 20 63 6f 6d 70 | associated.with.large.cloud.comp |
| ccce0 | 75 74 69 6e 67 20 64 65 70 6c 6f 79 6d 65 6e 74 73 2e 20 49 74 20 75 73 65 73 20 61 20 56 4c 41 | uting.deployments..It.uses.a.VLA |
| ccd00 | 4e 2d 6c 69 6b 65 20 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e 20 74 65 63 68 6e 69 71 75 65 20 74 | N-like.encapsulation.technique.t |
| ccd20 | 6f 20 65 6e 63 61 70 73 75 6c 61 74 65 20 4f 53 49 20 6c 61 79 65 72 20 32 20 45 74 68 65 72 6e | o.encapsulate.OSI.layer.2.Ethern |
| ccd40 | 65 74 20 66 72 61 6d 65 73 20 77 69 74 68 69 6e 20 6c 61 79 65 72 20 34 20 55 44 50 20 64 61 74 | et.frames.within.layer.4.UDP.dat |
| ccd60 | 61 67 72 61 6d 73 2c 20 75 73 69 6e 67 20 34 37 38 39 20 61 73 20 74 68 65 20 64 65 66 61 75 6c | agrams,.using.4789.as.the.defaul |
| ccd80 | 74 20 49 41 4e 41 2d 61 73 73 69 67 6e 65 64 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 55 44 50 20 | t.IANA-assigned.destination.UDP. |
| ccda0 | 70 6f 72 74 20 6e 75 6d 62 65 72 2e 20 56 58 4c 41 4e 20 65 6e 64 70 6f 69 6e 74 73 2c 20 77 68 | port.number..VXLAN.endpoints,.wh |
| ccdc0 | 69 63 68 20 74 65 72 6d 69 6e 61 74 65 20 56 58 4c 41 4e 20 74 75 6e 6e 65 6c 73 20 61 6e 64 20 | ich.terminate.VXLAN.tunnels.and. |
| ccde0 | 6d 61 79 20 62 65 20 65 69 74 68 65 72 20 76 69 72 74 75 61 6c 20 6f 72 20 70 68 79 73 69 63 61 | may.be.either.virtual.or.physica |
| cce00 | 6c 20 73 77 69 74 63 68 20 70 6f 72 74 73 2c 20 61 72 65 20 6b 6e 6f 77 6e 20 61 73 20 3a 61 62 | l.switch.ports,.are.known.as.:ab |
| cce20 | 62 72 3a 60 56 54 45 50 73 20 28 56 58 4c 41 4e 20 74 75 6e 6e 65 6c 20 65 6e 64 70 6f 69 6e 74 | br:`VTEPs.(VXLAN.tunnel.endpoint |
| cce40 | 73 29 60 2e 00 3a 61 62 62 72 3a 60 57 41 50 20 28 57 69 72 65 6c 65 73 73 20 41 63 63 65 73 73 | s)`..:abbr:`WAP.(Wireless.Access |
| cce60 | 2d 50 6f 69 6e 74 29 60 20 6d 6f 64 65 20 70 72 6f 76 69 64 65 73 20 6e 65 74 77 6f 72 6b 20 61 | -Point)`.mode.provides.network.a |
| cce80 | 63 63 65 73 73 20 74 6f 20 63 6f 6e 6e 65 63 74 69 6e 67 20 73 74 61 74 69 6f 6e 73 20 69 66 20 | ccess.to.connecting.stations.if. |
| ccea0 | 74 68 65 20 70 68 79 73 69 63 61 6c 20 68 61 72 64 77 61 72 65 20 73 75 70 70 6f 72 74 73 20 61 | the.physical.hardware.supports.a |
| ccec0 | 63 74 69 6e 67 20 61 73 20 61 20 57 41 50 00 3a 61 62 62 72 3a 60 57 41 50 20 28 57 69 72 65 6c | cting.as.a.WAP.:abbr:`WAP.(Wirel |
| ccee0 | 65 73 73 20 41 63 63 65 73 73 2d 50 6f 69 6e 74 29 60 20 70 72 6f 76 69 64 65 73 20 6e 65 74 77 | ess.Access-Point)`.provides.netw |
| ccf00 | 6f 72 6b 20 61 63 63 65 73 73 20 74 6f 20 63 6f 6e 6e 65 63 74 69 6e 67 20 73 74 61 74 69 6f 6e | ork.access.to.connecting.station |
| ccf20 | 73 20 69 66 20 74 68 65 20 70 68 79 73 69 63 61 6c 20 68 61 72 64 77 61 72 65 20 73 75 70 70 6f | s.if.the.physical.hardware.suppo |
| ccf40 | 72 74 73 20 61 63 74 69 6e 67 20 61 73 20 61 20 57 41 50 00 3a 61 62 62 72 3a 60 57 4c 41 4e 20 | rts.acting.as.a.WAP.:abbr:`WLAN. |
| ccf60 | 28 57 69 72 65 6c 65 73 73 20 4c 41 4e 29 60 20 69 6e 74 65 72 66 61 63 65 20 70 72 6f 76 69 64 | (Wireless.LAN)`.interface.provid |
| ccf80 | 65 20 38 30 32 2e 31 31 20 28 61 2f 62 2f 67 2f 6e 2f 61 63 29 20 77 69 72 65 6c 65 73 73 20 73 | e.802.11.(a/b/g/n/ac).wireless.s |
| ccfa0 | 75 70 70 6f 72 74 20 28 63 6f 6d 6d 6f 6e 6c 79 20 72 65 66 65 72 72 65 64 20 74 6f 20 61 73 20 | upport.(commonly.referred.to.as. |
| ccfc0 | 57 69 2d 46 69 29 20 62 79 20 6d 65 61 6e 73 20 6f 66 20 63 6f 6d 70 61 74 69 62 6c 65 20 68 61 | Wi-Fi).by.means.of.compatible.ha |
| ccfe0 | 72 64 77 61 72 65 2e 20 49 66 20 79 6f 75 72 20 68 61 72 64 77 61 72 65 20 73 75 70 70 6f 72 74 | rdware..If.your.hardware.support |
| cd000 | 73 20 69 74 2c 20 56 79 4f 53 20 73 75 70 70 6f 72 74 73 20 6d 75 6c 74 69 70 6c 65 20 6c 6f 67 | s.it,.VyOS.supports.multiple.log |
| cd020 | 69 63 61 6c 20 77 69 72 65 6c 65 73 73 20 69 6e 74 65 72 66 61 63 65 73 20 70 65 72 20 70 68 79 | ical.wireless.interfaces.per.phy |
| cd040 | 73 69 63 61 6c 20 64 65 76 69 63 65 2e 00 3a 61 62 62 72 3a 60 57 50 41 20 28 57 69 2d 46 69 20 | sical.device..:abbr:`WPA.(Wi-Fi. |
| cd060 | 50 72 6f 74 65 63 74 65 64 20 41 63 63 65 73 73 29 60 20 61 6e 64 20 57 50 41 32 20 45 6e 74 65 | Protected.Access)`.and.WPA2.Ente |
| cd080 | 72 70 72 69 73 65 20 69 6e 20 63 6f 6d 62 69 6e 61 74 69 6f 6e 20 77 69 74 68 20 38 30 32 2e 31 | rprise.in.combination.with.802.1 |
| cd0a0 | 78 20 62 61 73 65 64 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 63 61 6e 20 62 65 20 75 73 | x.based.authentication.can.be.us |
| cd0c0 | 65 64 20 74 6f 20 61 75 74 68 65 6e 74 69 63 61 74 65 20 75 73 65 72 73 20 6f 72 20 63 6f 6d 70 | ed.to.authenticate.users.or.comp |
| cd0e0 | 75 74 65 72 73 20 69 6e 20 61 20 64 6f 6d 61 69 6e 2e 00 3a 61 62 62 72 3a 60 57 50 41 20 28 57 | uters.in.a.domain..:abbr:`WPA.(W |
| cd100 | 69 2d 46 69 20 50 72 6f 74 65 63 74 65 64 20 41 63 63 65 73 73 29 60 2c 20 57 50 41 32 20 45 6e | i-Fi.Protected.Access)`,.WPA2.En |
| cd120 | 74 65 72 70 72 69 73 65 20 61 6e 64 20 57 50 41 33 20 45 6e 74 65 72 70 72 69 73 65 20 69 6e 20 | terprise.and.WPA3.Enterprise.in. |
| cd140 | 63 6f 6d 62 69 6e 61 74 69 6f 6e 20 77 69 74 68 20 38 30 32 2e 31 78 20 62 61 73 65 64 20 61 75 | combination.with.802.1x.based.au |
| cd160 | 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 61 75 74 68 | thentication.can.be.used.to.auth |
| cd180 | 65 6e 74 69 63 61 74 65 20 75 73 65 72 73 20 6f 72 20 63 6f 6d 70 75 74 65 72 73 20 69 6e 20 61 | enticate.users.or.computers.in.a |
| cd1a0 | 20 64 6f 6d 61 69 6e 2e 00 3a 61 62 62 72 3a 60 6d 47 52 45 20 28 4d 75 6c 74 69 70 6f 69 6e 74 | .domain..:abbr:`mGRE.(Multipoint |
| cd1c0 | 20 47 65 6e 65 72 69 63 20 52 6f 75 74 69 6e 67 20 45 6e 63 61 70 73 75 6c 61 74 69 6f 6e 29 60 | .Generic.Routing.Encapsulation)` |
| cd1e0 | 20 3a 72 66 63 3a 60 31 37 30 32 60 00 3a 63 66 67 63 6d 64 3a 60 61 64 76 2d 72 6f 75 74 65 72 | .:rfc:`1702`.:cfgcmd:`adv-router |
| cd200 | 20 3c 41 2e 42 2e 43 2e 44 3e 60 20 e2 80 93 20 72 6f 75 74 65 72 20 69 64 2c 20 77 68 69 63 68 | .<A.B.C.D>`.....router.id,.which |
| cd220 | 20 6c 69 6e 6b 20 61 64 76 65 72 74 69 73 65 6d 65 6e 74 73 20 6e 65 65 64 20 74 6f 20 62 65 20 | .link.advertisements.need.to.be. |
| cd240 | 72 65 76 69 65 77 65 64 2e 00 3a 63 66 67 63 6d 64 3a 60 73 65 6c 66 2d 6f 72 69 67 69 6e 61 74 | reviewed..:cfgcmd:`self-originat |
| cd260 | 65 60 20 64 69 73 70 6c 61 79 73 20 6f 6e 6c 79 20 73 65 6c 66 2d 6f 72 69 67 69 6e 61 74 65 64 | e`.displays.only.self-originated |
| cd280 | 20 4c 53 41 73 20 66 72 6f 6d 20 74 68 65 20 6c 6f 63 61 6c 20 72 6f 75 74 65 72 2e 00 3a 63 66 | .LSAs.from.the.local.router..:cf |
| cd2a0 | 67 63 6d 64 3a 60 73 65 74 20 73 65 72 76 69 63 65 20 63 6f 6e 6e 74 72 61 63 6b 2d 73 79 6e 63 | gcmd:`set.service.conntrack-sync |
| cd2c0 | 20 69 6e 74 65 72 66 61 63 65 20 65 74 68 30 20 70 65 65 72 20 31 39 32 2e 31 36 38 2e 30 2e 32 | .interface.eth0.peer.192.168.0.2 |
| cd2e0 | 35 30 60 00 3a 63 6f 64 65 3a 60 73 65 74 20 73 65 72 76 69 63 65 20 77 65 62 70 72 6f 78 79 20 | 50`.:code:`set.service.webproxy. |
| cd300 | 75 72 6c 2d 66 69 6c 74 65 72 69 6e 67 20 73 71 75 69 64 67 75 61 72 64 20 61 75 74 6f 2d 75 70 | url-filtering.squidguard.auto-up |
| cd320 | 64 61 74 65 20 75 70 64 61 74 65 2d 68 6f 75 72 20 32 33 60 00 3a 63 6f 64 65 3a 60 73 65 74 20 | date.update-hour.23`.:code:`set. |
| cd340 | 73 65 72 76 69 63 65 20 77 65 62 70 72 6f 78 79 20 75 72 6c 2d 66 69 6c 74 65 72 69 6e 67 20 73 | service.webproxy.url-filtering.s |
| cd360 | 71 75 69 64 67 75 61 72 64 20 62 6c 6f 63 6b 2d 63 61 74 65 67 6f 72 79 20 61 64 73 60 00 3a 63 | quidguard.block-category.ads`.:c |
| cd380 | 6f 64 65 3a 60 73 65 74 20 73 65 72 76 69 63 65 20 77 65 62 70 72 6f 78 79 20 75 72 6c 2d 66 69 | ode:`set.service.webproxy.url-fi |
| cd3a0 | 6c 74 65 72 69 6e 67 20 73 71 75 69 64 67 75 61 72 64 20 62 6c 6f 63 6b 2d 63 61 74 65 67 6f 72 | ltering.squidguard.block-categor |
| cd3c0 | 79 20 6d 61 6c 77 61 72 65 60 00 3a 63 6f 64 65 3a 60 73 65 74 20 73 65 72 76 69 63 65 20 77 65 | y.malware`.:code:`set.service.we |
| cd3e0 | 62 70 72 6f 78 79 20 77 68 69 74 65 6c 69 73 74 20 64 65 73 74 69 6e 61 74 69 6f 6e 2d 61 64 64 | bproxy.whitelist.destination-add |
| cd400 | 72 65 73 73 20 31 39 32 2e 30 2e 32 2e 30 2f 32 34 60 00 3a 63 6f 64 65 3a 60 73 65 74 20 73 65 | ress.192.0.2.0/24`.:code:`set.se |
| cd420 | 72 76 69 63 65 20 77 65 62 70 72 6f 78 79 20 77 68 69 74 65 6c 69 73 74 20 64 65 73 74 69 6e 61 | rvice.webproxy.whitelist.destina |
| cd440 | 74 69 6f 6e 2d 61 64 64 72 65 73 73 20 31 39 38 2e 35 31 2e 31 30 30 2e 33 33 60 00 3a 63 6f 64 | tion-address.198.51.100.33`.:cod |
| cd460 | 65 3a 60 73 65 74 20 73 65 72 76 69 63 65 20 77 65 62 70 72 6f 78 79 20 77 68 69 74 65 6c 69 73 | e:`set.service.webproxy.whitelis |
| cd480 | 74 20 73 6f 75 72 63 65 2d 61 64 64 72 65 73 73 20 31 39 32 2e 31 36 38 2e 31 2e 32 60 00 3a 63 | t.source-address.192.168.1.2`.:c |
| cd4a0 | 6f 64 65 3a 60 73 65 74 20 73 65 72 76 69 63 65 20 77 65 62 70 72 6f 78 79 20 77 68 69 74 65 6c | ode:`set.service.webproxy.whitel |
| cd4c0 | 69 73 74 20 73 6f 75 72 63 65 2d 61 64 64 72 65 73 73 20 31 39 32 2e 31 36 38 2e 32 2e 30 2f 32 | ist.source-address.192.168.2.0/2 |
| cd4e0 | 34 60 00 3a 64 6f 63 3a 60 43 6f 6e 6e 74 72 61 63 6b 20 49 67 6e 6f 72 65 3c 2f 63 6f 6e 66 69 | 4`.:doc:`Conntrack.Ignore</confi |
| cd500 | 67 75 72 61 74 69 6f 6e 2f 73 79 73 74 65 6d 2f 63 6f 6e 6e 74 72 61 63 6b 3e 60 3a 20 60 60 73 | guration/system/conntrack>`:.``s |
| cd520 | 65 74 20 73 79 73 74 65 6d 20 63 6f 6e 6e 74 72 61 63 6b 20 69 67 6e 6f 72 65 20 69 70 76 34 2e | et.system.conntrack.ignore.ipv4. |
| cd540 | 2e 2e 60 60 00 3a 64 6f 63 3a 60 43 6f 6e 6e 74 72 61 63 6b 20 49 67 6e 6f 72 65 3c 2f 63 6f 6e | ..``.:doc:`Conntrack.Ignore</con |
| cd560 | 66 69 67 75 72 61 74 69 6f 6e 2f 73 79 73 74 65 6d 2f 63 6f 6e 6e 74 72 61 63 6b 3e 60 3a 20 60 | figuration/system/conntrack>`:.` |
| cd580 | 60 73 65 74 20 73 79 73 74 65 6d 20 63 6f 6e 6e 74 72 61 63 6b 20 69 67 6e 6f 72 65 20 69 70 76 | `set.system.conntrack.ignore.ipv |
| cd5a0 | 36 2e 2e 2e 60 60 00 3a 64 6f 63 3a 60 44 65 73 74 69 6e 61 74 69 6f 6e 20 4e 41 54 3c 2f 63 6f | 6...``.:doc:`Destination.NAT</co |
| cd5c0 | 6e 66 69 67 75 72 61 74 69 6f 6e 2f 6e 61 74 2f 6e 61 74 34 34 3e 60 3a 20 63 6f 6d 6d 61 6e 64 | nfiguration/nat/nat44>`:.command |
| cd5e0 | 73 20 66 6f 75 6e 64 20 75 6e 64 65 72 20 60 60 73 65 74 20 6e 61 74 20 64 65 73 74 69 6e 61 74 | s.found.under.``set.nat.destinat |
| cd600 | 69 6f 6e 20 2e 2e 2e 60 60 00 3a 64 6f 63 3a 60 44 65 73 74 69 6e 61 74 69 6f 6e 20 4e 41 54 3c | ion....``.:doc:`Destination.NAT< |
| cd620 | 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 6e 61 74 2f 6e 61 74 34 34 3e 60 3a 20 63 6f 6d 6d | /configuration/nat/nat44>`:.comm |
| cd640 | 61 6e 64 73 20 66 6f 75 6e 64 20 75 6e 64 65 72 20 60 60 73 65 74 20 6e 61 74 36 36 20 64 65 73 | ands.found.under.``set.nat66.des |
| cd660 | 74 69 6e 61 74 69 6f 6e 20 2e 2e 2e 60 60 00 3a 64 6f 63 3a 60 50 6f 6c 69 63 79 20 52 6f 75 74 | tination....``.:doc:`Policy.Rout |
| cd680 | 65 3c 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 70 6f 6c 69 63 79 2f 72 6f 75 74 65 3e 60 3a | e</configuration/policy/route>`: |
| cd6a0 | 20 63 6f 6d 6d 61 6e 64 73 20 66 6f 75 6e 64 20 75 6e 64 65 72 20 60 60 73 65 74 20 70 6f 6c 69 | .commands.found.under.``set.poli |
| cd6c0 | 63 79 20 72 6f 75 74 65 20 2e 2e 2e 60 60 00 3a 64 6f 63 3a 60 50 6f 6c 69 63 79 20 52 6f 75 74 | cy.route....``.:doc:`Policy.Rout |
| cd6e0 | 65 3c 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 70 6f 6c 69 63 79 2f 72 6f 75 74 65 3e 60 3a | e</configuration/policy/route>`: |
| cd700 | 20 63 6f 6d 6d 61 6e 64 73 20 66 6f 75 6e 64 20 75 6e 64 65 72 20 60 60 73 65 74 20 70 6f 6c 69 | .commands.found.under.``set.poli |
| cd720 | 63 79 20 72 6f 75 74 65 36 20 2e 2e 2e 60 60 00 3a 6c 61 73 74 70 72 6f 6f 66 72 65 61 64 3a 32 | cy.route6....``.:lastproofread:2 |
| cd740 | 30 32 31 2d 30 37 2d 31 32 00 3a 6f 70 63 6d 64 3a 60 67 65 6e 65 72 61 74 65 20 70 6b 69 20 77 | 021-07-12.:opcmd:`generate.pki.w |
| cd760 | 69 72 65 67 75 61 72 64 20 6b 65 79 2d 70 61 69 72 60 2e 00 3a 72 65 66 3a 60 72 6f 75 74 69 6e | ireguard.key-pair`..:ref:`routin |
| cd780 | 67 2d 62 67 70 60 00 3a 72 65 66 3a 60 72 6f 75 74 69 6e 67 2d 62 67 70 60 3a 20 60 60 73 65 74 | g-bgp`.:ref:`routing-bgp`:.``set |
| cd7a0 | 20 76 72 66 20 6e 61 6d 65 20 3c 6e 61 6d 65 3e 20 70 72 6f 74 6f 63 6f 6c 73 20 62 67 70 20 2e | .vrf.name.<name>.protocols.bgp.. |
| cd7c0 | 2e 2e 60 60 00 3a 72 65 66 3a 60 72 6f 75 74 69 6e 67 2d 69 73 69 73 60 00 3a 72 65 66 3a 60 72 | ..``.:ref:`routing-isis`.:ref:`r |
| cd7e0 | 6f 75 74 69 6e 67 2d 69 73 69 73 60 3a 20 60 60 73 65 74 20 76 72 66 20 6e 61 6d 65 20 3c 6e 61 | outing-isis`:.``set.vrf.name.<na |
| cd800 | 6d 65 3e 20 70 72 6f 74 6f 63 6f 6c 73 20 69 73 69 73 20 2e 2e 2e 60 60 00 3a 72 65 66 3a 60 72 | me>.protocols.isis....``.:ref:`r |
| cd820 | 6f 75 74 69 6e 67 2d 6f 73 70 66 60 00 3a 72 65 66 3a 60 72 6f 75 74 69 6e 67 2d 6f 73 70 66 60 | outing-ospf`.:ref:`routing-ospf` |
| cd840 | 3a 20 60 60 73 65 74 20 76 72 66 20 6e 61 6d 65 20 3c 6e 61 6d 65 3e 20 70 72 6f 74 6f 63 6f 6c | :.``set.vrf.name.<name>.protocol |
| cd860 | 73 20 6f 73 70 66 20 2e 2e 2e 60 60 00 3a 72 65 66 3a 60 72 6f 75 74 69 6e 67 2d 6f 73 70 66 76 | s.ospf....``.:ref:`routing-ospfv |
| cd880 | 33 60 00 3a 72 65 66 3a 60 72 6f 75 74 69 6e 67 2d 6f 73 70 66 76 33 60 3a 20 60 60 73 65 74 20 | 3`.:ref:`routing-ospfv3`:.``set. |
| cd8a0 | 76 72 66 20 6e 61 6d 65 20 3c 6e 61 6d 65 3e 20 70 72 6f 74 6f 63 6f 6c 73 20 6f 73 70 66 76 33 | vrf.name.<name>.protocols.ospfv3 |
| cd8c0 | 20 2e 2e 2e 60 60 00 3a 72 65 66 3a 60 72 6f 75 74 69 6e 67 2d 73 74 61 74 69 63 60 00 3a 72 65 | ....``.:ref:`routing-static`.:re |
| cd8e0 | 66 3a 60 72 6f 75 74 69 6e 67 2d 73 74 61 74 69 63 60 3a 20 60 60 73 65 74 20 76 72 66 20 6e 61 | f:`routing-static`:.``set.vrf.na |
| cd900 | 6d 65 20 3c 6e 61 6d 65 3e 20 70 72 6f 74 6f 63 6f 6c 73 20 73 74 61 74 69 63 20 2e 2e 2e 60 60 | me.<name>.protocols.static....`` |
| cd920 | 00 3a 72 66 63 3a 60 32 31 33 31 60 20 73 74 61 74 65 73 3a 20 54 68 65 20 63 6c 69 65 6e 74 20 | .:rfc:`2131`.states:.The.client. |
| cd940 | 4d 41 59 20 63 68 6f 6f 73 65 20 74 6f 20 65 78 70 6c 69 63 69 74 6c 79 20 70 72 6f 76 69 64 65 | MAY.choose.to.explicitly.provide |
| cd960 | 20 74 68 65 20 69 64 65 6e 74 69 66 69 65 72 20 74 68 72 6f 75 67 68 20 74 68 65 20 27 63 6c 69 | .the.identifier.through.the.'cli |
| cd980 | 65 6e 74 20 69 64 65 6e 74 69 66 69 65 72 27 20 6f 70 74 69 6f 6e 2e 20 49 66 20 74 68 65 20 63 | ent.identifier'.option..If.the.c |
| cd9a0 | 6c 69 65 6e 74 20 73 75 70 70 6c 69 65 73 20 61 20 27 63 6c 69 65 6e 74 20 69 64 65 6e 74 69 66 | lient.supplies.a.'client.identif |
| cd9c0 | 69 65 72 27 2c 20 74 68 65 20 63 6c 69 65 6e 74 20 4d 55 53 54 20 75 73 65 20 74 68 65 20 73 61 | ier',.the.client.MUST.use.the.sa |
| cd9e0 | 6d 65 20 27 63 6c 69 65 6e 74 20 69 64 65 6e 74 69 66 69 65 72 27 20 69 6e 20 61 6c 6c 20 73 75 | me.'client.identifier'.in.all.su |
| cda00 | 62 73 65 71 75 65 6e 74 20 6d 65 73 73 61 67 65 73 2c 20 61 6e 64 20 74 68 65 20 73 65 72 76 65 | bsequent.messages,.and.the.serve |
| cda20 | 72 20 4d 55 53 54 20 75 73 65 20 74 68 61 74 20 69 64 65 6e 74 69 66 69 65 72 20 74 6f 20 69 64 | r.MUST.use.that.identifier.to.id |
| cda40 | 65 6e 74 69 66 79 20 74 68 65 20 63 6c 69 65 6e 74 2e 00 3a 72 66 63 3a 60 32 31 33 36 60 20 42 | entify.the.client..:rfc:`2136`.B |
| cda60 | 61 73 65 64 00 3a 72 66 63 3a 60 32 33 32 38 60 2c 20 74 68 65 20 73 75 63 63 65 73 73 6f 72 20 | ased.:rfc:`2328`,.the.successor. |
| cda80 | 74 6f 20 3a 72 66 63 3a 60 31 35 38 33 60 2c 20 73 75 67 67 65 73 74 73 20 61 63 63 6f 72 64 69 | to.:rfc:`1583`,.suggests.accordi |
| cdaa0 | 6e 67 20 74 6f 20 73 65 63 74 69 6f 6e 20 47 2e 32 20 28 63 68 61 6e 67 65 73 29 20 69 6e 20 73 | ng.to.section.G.2.(changes).in.s |
| cdac0 | 65 63 74 69 6f 6e 20 31 36 2e 34 2e 31 20 61 20 63 68 61 6e 67 65 20 74 6f 20 74 68 65 20 70 61 | ection.16.4.1.a.change.to.the.pa |
| cdae0 | 74 68 20 70 72 65 66 65 72 65 6e 63 65 20 61 6c 67 6f 72 69 74 68 6d 20 74 68 61 74 20 70 72 65 | th.preference.algorithm.that.pre |
| cdb00 | 76 65 6e 74 73 20 70 6f 73 73 69 62 6c 65 20 72 6f 75 74 69 6e 67 20 6c 6f 6f 70 73 20 74 68 61 | vents.possible.routing.loops.tha |
| cdb20 | 74 20 77 65 72 65 20 70 6f 73 73 69 62 6c 65 20 69 6e 20 74 68 65 20 6f 6c 64 20 76 65 72 73 69 | t.were.possible.in.the.old.versi |
| cdb40 | 6f 6e 20 6f 66 20 4f 53 50 46 76 32 2e 20 4d 6f 72 65 20 73 70 65 63 69 66 69 63 61 6c 6c 79 20 | on.of.OSPFv2..More.specifically. |
| cdb60 | 69 74 20 64 65 6d 61 6e 64 73 20 74 68 61 74 20 69 6e 74 65 72 2d 61 72 65 61 20 70 61 74 68 73 | it.demands.that.inter-area.paths |
| cdb80 | 20 61 6e 64 20 69 6e 74 72 61 2d 61 72 65 61 20 62 61 63 6b 62 6f 6e 65 20 70 61 74 68 20 61 72 | .and.intra-area.backbone.path.ar |
| cdba0 | 65 20 6e 6f 77 20 6f 66 20 65 71 75 61 6c 20 70 72 65 66 65 72 65 6e 63 65 20 62 75 74 20 73 74 | e.now.of.equal.preference.but.st |
| cdbc0 | 69 6c 6c 20 62 6f 74 68 20 70 72 65 66 65 72 72 65 64 20 74 6f 20 65 78 74 65 72 6e 61 6c 20 70 | ill.both.preferred.to.external.p |
| cdbe0 | 61 74 68 73 2e 00 3a 72 66 63 3a 60 36 35 39 38 60 20 2d 20 49 41 4e 41 2d 52 65 73 65 72 76 65 | aths..:rfc:`6598`.-.IANA-Reserve |
| cdc00 | 64 20 49 50 76 34 20 50 72 65 66 69 78 20 66 6f 72 20 53 68 61 72 65 64 20 41 64 64 72 65 73 73 | d.IPv4.Prefix.for.Shared.Address |
| cdc20 | 20 53 70 61 63 65 00 3a 72 66 63 3a 60 36 38 38 38 60 20 2d 20 52 65 71 75 69 72 65 6d 65 6e 74 | .Space.:rfc:`6888`.-.Requirement |
| cdc40 | 73 20 66 6f 72 20 43 47 4e 41 54 00 3a 76 79 74 61 73 6b 3a 60 54 33 36 34 32 60 20 64 65 73 63 | s.for.CGNAT.:vytask:`T3642`.desc |
| cdc60 | 72 69 62 65 73 20 61 20 6e 65 77 20 43 4c 49 20 73 75 62 73 79 73 74 65 6d 20 74 68 61 74 20 73 | ribes.a.new.CLI.subsystem.that.s |
| cdc80 | 65 72 76 65 73 20 61 73 20 61 20 22 63 65 72 74 73 74 6f 72 65 22 20 74 6f 20 61 6c 6c 20 73 65 | erves.as.a."certstore".to.all.se |
| cdca0 | 72 76 69 63 65 73 20 72 65 71 75 69 72 69 6e 67 20 61 6e 79 20 6b 69 6e 64 20 6f 66 20 65 6e 63 | rvices.requiring.any.kind.of.enc |
| cdcc0 | 72 79 70 74 69 6f 6e 20 6b 65 79 28 73 29 2e 20 49 6e 20 73 68 6f 72 74 2c 20 70 75 62 6c 69 63 | ryption.key(s)..In.short,.public |
| cdce0 | 20 61 6e 64 20 70 72 69 76 61 74 65 20 63 65 72 74 69 66 69 63 61 74 65 73 20 61 72 65 20 6e 6f | .and.private.certificates.are.no |
| cdd00 | 77 20 73 74 6f 72 65 64 20 69 6e 20 50 4b 43 53 23 38 20 66 6f 72 6d 61 74 20 69 6e 20 74 68 65 | w.stored.in.PKCS#8.format.in.the |
| cdd20 | 20 72 65 67 75 6c 61 72 20 56 79 4f 53 20 43 4c 49 2e 20 4b 65 79 73 20 63 61 6e 20 6e 6f 77 20 | .regular.VyOS.CLI..Keys.can.now. |
| cdd40 | 62 65 20 61 64 64 65 64 2c 20 65 64 69 74 65 64 2c 20 61 6e 64 20 64 65 6c 65 74 65 64 20 75 73 | be.added,.edited,.and.deleted.us |
| cdd60 | 69 6e 67 20 74 68 65 20 72 65 67 75 6c 61 72 20 73 65 74 2f 65 64 69 74 2f 64 65 6c 65 74 65 20 | ing.the.regular.set/edit/delete. |
| cdd80 | 43 4c 49 20 63 6f 6d 6d 61 6e 64 73 2e 00 3c 31 2d 36 35 35 33 35 3e 3a 20 4e 75 6d 62 65 72 65 | CLI.commands..<1-65535>:.Numbere |
| cdda0 | 64 20 70 6f 72 74 2e 00 3c 61 61 3a 6e 6e 3a 6e 6e 3e 3a 20 45 78 74 65 6e 64 65 64 20 63 6f 6d | d.port..<aa:nn:nn>:.Extended.com |
| cddc0 | 6d 75 6e 69 74 79 20 6c 69 73 74 20 72 65 67 75 6c 61 72 20 65 78 70 72 65 73 73 69 6f 6e 2e 00 | munity.list.regular.expression.. |
| cdde0 | 3c 68 3a 68 3a 68 3a 68 3a 68 3a 68 3a 68 3a 68 2f 78 3e 3a 20 49 50 76 36 20 70 72 65 66 69 78 | <h:h:h:h:h:h:h:h/x>:.IPv6.prefix |
| cde00 | 20 74 6f 20 6d 61 74 63 68 2e 00 3c 68 3a 68 3a 68 3a 68 3a 68 3a 68 3a 68 3a 68 3e 2d 3c 68 3a | .to.match..<h:h:h:h:h:h:h:h>-<h: |
| cde20 | 68 3a 68 3a 68 3a 68 3a 68 3a 68 3a 68 3e 3a 20 49 50 76 36 20 72 61 6e 67 65 20 74 6f 20 6d 61 | h:h:h:h:h:h:h>:.IPv6.range.to.ma |
| cde40 | 74 63 68 2e 00 3c 68 3a 68 3a 68 3a 68 3a 68 3a 68 3a 68 3a 68 3e 3a 20 49 50 76 36 20 61 64 64 | tch..<h:h:h:h:h:h:h:h>:.IPv6.add |
| cde60 | 72 65 73 73 20 74 6f 20 6d 61 74 63 68 2e 00 3c 6c 69 6e 65 73 3e 00 3c 6e 75 6d 62 65 72 3e 20 | ress.to.match..<lines>.<number>. |
| cde80 | 6d 75 73 74 20 62 65 20 66 72 6f 6d 20 33 34 20 2d 20 31 37 33 2e 20 46 6f 72 20 38 30 20 4d 48 | must.be.from.34.-.173..For.80.MH |
| cdea0 | 7a 20 63 68 61 6e 6e 65 6c 73 20 69 74 20 73 68 6f 75 6c 64 20 62 65 20 63 68 61 6e 6e 65 6c 20 | z.channels.it.should.be.channel. |
| cdec0 | 2b 20 36 2e 00 3c 6e 75 6d 62 65 72 3e 20 6d 75 73 74 20 62 65 20 6f 6e 65 20 6f 66 3a 00 3c 6e | +.6..<number>.must.be.one.of:.<n |
| cdee0 | 75 6d 62 65 72 3e 20 6d 75 73 74 20 62 65 20 77 69 74 68 69 6e 20 31 2e 2e 32 33 33 2e 20 46 6f | umber>.must.be.within.1..233..Fo |
| cdf00 | 72 20 38 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 73 20 69 74 20 73 68 6f 75 6c 64 20 62 65 20 63 | r.80.MHz.channels.it.should.be.c |
| cdf20 | 68 61 6e 6e 65 6c 20 2b 20 36 20 61 6e 64 20 66 6f 72 20 31 36 30 20 4d 48 7a 20 63 68 61 6e 6e | hannel.+.6.and.for.160.MHz.chann |
| cdf40 | 65 6c 73 2c 20 69 74 20 73 68 6f 75 6c 64 20 62 65 20 63 68 61 6e 6e 65 6c 20 2b 20 31 34 2e 00 | els,.it.should.be.channel.+.14.. |
| cdf60 | 3c 6e 75 6d 62 65 72 3e 20 e2 80 93 20 61 72 65 61 20 69 64 65 6e 74 69 66 69 65 72 20 74 68 72 | <number>.....area.identifier.thr |
| cdf80 | 6f 75 67 68 20 77 68 69 63 68 20 61 20 76 69 72 74 75 61 6c 20 6c 69 6e 6b 20 67 6f 65 73 2e 20 | ough.which.a.virtual.link.goes.. |
| cdfa0 | 3c 41 2e 42 2e 43 2e 44 3e 20 e2 80 93 20 41 42 52 20 72 6f 75 74 65 72 2d 69 64 20 77 69 74 68 | <A.B.C.D>.....ABR.router-id.with |
| cdfc0 | 20 77 68 69 63 68 20 61 20 76 69 72 74 75 61 6c 20 6c 69 6e 6b 20 69 73 20 65 73 74 61 62 6c 69 | .which.a.virtual.link.is.establi |
| cdfe0 | 73 68 65 64 2e 20 56 69 72 74 75 61 6c 20 6c 69 6e 6b 20 6d 75 73 74 20 62 65 20 63 6f 6e 66 69 | shed..Virtual.link.must.be.confi |
| ce000 | 67 75 72 65 64 20 6f 6e 20 62 6f 74 68 20 72 6f 75 74 65 72 73 2e 00 3c 70 6f 72 74 20 6e 61 6d | gured.on.both.routers..<port.nam |
| ce020 | 65 3e 3a 20 4e 61 6d 65 64 20 70 6f 72 74 20 28 61 6e 79 20 6e 61 6d 65 20 69 6e 20 2f 65 74 63 | e>:.Named.port.(any.name.in./etc |
| ce040 | 2f 73 65 72 76 69 63 65 73 2c 20 65 2e 67 2e 2c 20 68 74 74 70 29 2e 00 3c 72 74 20 61 61 3a 6e | /services,.e.g.,.http)..<rt.aa:n |
| ce060 | 6e 3a 6e 6e 3e 3a 20 52 6f 75 74 65 20 54 61 72 67 65 74 20 72 65 67 75 6c 61 72 20 65 78 70 72 | n:nn>:.Route.Target.regular.expr |
| ce080 | 65 73 73 69 6f 6e 2e 00 3c 73 6f 6f 20 61 61 3a 6e 6e 3a 6e 6e 3e 3a 20 53 69 74 65 20 6f 66 20 | ession..<soo.aa:nn:nn>:.Site.of. |
| ce0a0 | 4f 72 69 67 69 6e 20 72 65 67 75 6c 61 72 20 65 78 70 72 65 73 73 69 6f 6e 2e 00 3c 73 74 61 72 | Origin.regular.expression..<star |
| ce0c0 | 74 3e 2d 3c 65 6e 64 3e 3a 20 4e 75 6d 62 65 72 65 64 20 70 6f 72 74 20 72 61 6e 67 65 20 28 65 | t>-<end>:.Numbered.port.range.(e |
| ce0e0 | 2e 67 2e 2c 20 31 30 30 31 2d 31 30 30 35 29 2e 00 3c 78 2e 78 2e 78 2e 78 2f 78 3e 3a 20 53 75 | .g.,.1001-1005)..<x.x.x.x/x>:.Su |
| ce100 | 62 6e 65 74 20 74 6f 20 6d 61 74 63 68 2e 00 3c 78 2e 78 2e 78 2e 78 3e 2d 3c 78 2e 78 2e 78 2e | bnet.to.match..<x.x.x.x>-<x.x.x. |
| ce120 | 78 3e 3a 20 49 50 20 72 61 6e 67 65 20 74 6f 20 6d 61 74 63 68 2e 00 3c 78 2e 78 2e 78 2e 78 3e | x>:.IP.range.to.match..<x.x.x.x> |
| ce140 | 3a 20 49 50 20 61 64 64 72 65 73 73 20 74 6f 20 6d 61 74 63 68 2e 00 41 20 2a 2a 64 6f 6d 61 69 | :.IP.address.to.match..A.**domai |
| ce160 | 6e 20 67 72 6f 75 70 2a 2a 20 72 65 70 72 65 73 65 6e 74 73 20 61 20 63 6f 6c 6c 65 63 74 69 6f | n.group**.represents.a.collectio |
| ce180 | 6e 20 6f 66 20 64 6f 6d 61 69 6e 73 2e 00 41 20 2a 2a 6d 61 63 20 67 72 6f 75 70 2a 2a 20 72 65 | n.of.domains..A.**mac.group**.re |
| ce1a0 | 70 72 65 73 65 6e 74 73 20 61 20 63 6f 6c 6c 65 63 74 69 6f 6e 20 6f 66 20 6d 61 63 20 61 64 64 | presents.a.collection.of.mac.add |
| ce1c0 | 72 65 73 73 65 73 2e 00 41 20 2a 2a 70 6f 72 74 20 67 72 6f 75 70 2a 2a 20 72 65 70 72 65 73 65 | resses..A.**port.group**.represe |
| ce1e0 | 6e 74 73 20 6f 6e 6c 79 20 70 6f 72 74 20 6e 75 6d 62 65 72 73 2c 20 6e 6f 74 20 74 68 65 20 70 | nts.only.port.numbers,.not.the.p |
| ce200 | 72 6f 74 6f 63 6f 6c 2e 20 50 6f 72 74 20 67 72 6f 75 70 73 20 63 61 6e 20 62 65 20 72 65 66 65 | rotocol..Port.groups.can.be.refe |
| ce220 | 72 65 6e 63 65 64 20 66 6f 72 20 65 69 74 68 65 72 20 54 43 50 20 6f 72 20 55 44 50 2e 20 49 74 | renced.for.either.TCP.or.UDP..It |
| ce240 | 20 69 73 20 72 65 63 6f 6d 6d 65 6e 64 65 64 20 74 68 61 74 20 54 43 50 20 61 6e 64 20 55 44 50 | .is.recommended.that.TCP.and.UDP |
| ce260 | 20 67 72 6f 75 70 73 20 61 72 65 20 63 72 65 61 74 65 64 20 73 65 70 61 72 61 74 65 6c 79 20 74 | .groups.are.created.separately.t |
| ce280 | 6f 20 61 76 6f 69 64 20 61 63 63 69 64 65 6e 74 61 6c 6c 79 20 66 69 6c 74 65 72 69 6e 67 20 75 | o.avoid.accidentally.filtering.u |
| ce2a0 | 6e 6e 65 63 65 73 73 61 72 79 20 70 6f 72 74 73 2e 20 52 61 6e 67 65 73 20 6f 66 20 70 6f 72 74 | nnecessary.ports..Ranges.of.port |
| ce2c0 | 73 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 20 62 79 20 75 73 69 6e 67 20 60 2d 60 2e | s.can.be.specified.by.using.`-`. |
| ce2e0 | 00 41 20 2a 62 69 74 2a 20 69 73 20 77 72 69 74 74 65 6e 20 61 73 20 2a 2a 62 69 74 2a 2a 2c 00 | .A.*bit*.is.written.as.**bit**,. |
| ce300 | 41 20 34 20 73 74 65 70 20 70 6f 72 74 20 6b 6e 6f 63 6b 69 6e 67 20 65 78 61 6d 70 6c 65 20 69 | A.4.step.port.knocking.example.i |
| ce320 | 73 20 73 68 6f 77 6e 20 6e 65 78 74 3a 00 41 20 3a 61 62 62 72 3a 60 4e 49 53 20 28 4e 65 74 77 | s.shown.next:.A.:abbr:`NIS.(Netw |
| ce340 | 6f 72 6b 20 49 6e 66 6f 72 6d 61 74 69 6f 6e 20 53 65 72 76 69 63 65 29 60 20 64 6f 6d 61 69 6e | ork.Information.Service)`.domain |
| ce360 | 20 63 61 6e 20 62 65 20 73 65 74 20 74 6f 20 62 65 20 75 73 65 64 20 66 6f 72 20 44 48 43 50 76 | .can.be.set.to.be.used.for.DHCPv |
| ce380 | 36 20 63 6c 69 65 6e 74 73 2e 00 41 20 42 47 50 20 63 6f 6e 66 65 64 65 72 61 74 69 6f 6e 20 64 | 6.clients..A.BGP.confederation.d |
| ce3a0 | 69 76 69 64 65 73 20 6f 75 72 20 41 53 20 69 6e 74 6f 20 73 75 62 2d 41 53 65 73 20 74 6f 20 72 | ivides.our.AS.into.sub-ASes.to.r |
| ce3c0 | 65 64 75 63 65 20 74 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 72 65 71 75 69 72 65 64 20 49 42 47 | educe.the.number.of.required.IBG |
| ce3e0 | 50 20 70 65 65 72 69 6e 67 73 2e 20 57 69 74 68 69 6e 20 61 20 73 75 62 2d 41 53 20 77 65 20 73 | P.peerings..Within.a.sub-AS.we.s |
| ce400 | 74 69 6c 6c 20 72 65 71 75 69 72 65 20 66 75 6c 6c 2d 6d 65 73 68 20 49 42 47 50 20 62 75 74 20 | till.require.full-mesh.IBGP.but. |
| ce420 | 62 65 74 77 65 65 6e 20 74 68 65 73 65 20 73 75 62 2d 41 53 65 73 20 77 65 20 75 73 65 20 73 6f | between.these.sub-ASes.we.use.so |
| ce440 | 6d 65 74 68 69 6e 67 20 74 68 61 74 20 6c 6f 6f 6b 73 20 6c 69 6b 65 20 45 42 47 50 20 62 75 74 | mething.that.looks.like.EBGP.but |
| ce460 | 20 62 65 68 61 76 65 73 20 6c 69 6b 65 20 49 42 47 50 20 28 63 61 6c 6c 65 64 20 63 6f 6e 66 65 | .behaves.like.IBGP.(called.confe |
| ce480 | 64 65 72 61 74 69 6f 6e 20 42 47 50 29 2e 20 43 6f 6e 66 65 64 65 72 61 74 69 6f 6e 20 6d 65 63 | deration.BGP)..Confederation.mec |
| ce4a0 | 68 61 6e 69 73 6d 20 69 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 35 30 36 | hanism.is.described.in.:rfc:`506 |
| ce4c0 | 35 60 00 41 20 42 47 50 2d 73 70 65 61 6b 69 6e 67 20 72 6f 75 74 65 72 20 6c 69 6b 65 20 56 79 | 5`.A.BGP-speaking.router.like.Vy |
| ce4e0 | 4f 53 20 63 61 6e 20 72 65 74 72 69 65 76 65 20 52 4f 41 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 | OS.can.retrieve.ROA.information. |
| ce500 | 66 72 6f 6d 20 52 50 4b 49 20 22 52 65 6c 79 69 6e 67 20 50 61 72 74 79 20 73 6f 66 74 77 61 72 | from.RPKI."Relying.Party.softwar |
| ce520 | 65 22 20 28 6f 66 74 65 6e 20 6a 75 73 74 20 63 61 6c 6c 65 64 20 61 6e 20 22 52 50 4b 49 20 73 | e".(often.just.called.an."RPKI.s |
| ce540 | 65 72 76 65 72 22 20 6f 72 20 22 52 50 4b 49 20 76 61 6c 69 64 61 74 6f 72 22 29 20 62 79 20 75 | erver".or."RPKI.validator").by.u |
| ce560 | 73 69 6e 67 20 3a 61 62 62 72 3a 60 52 54 52 20 28 52 50 4b 49 20 74 6f 20 52 6f 75 74 65 72 29 | sing.:abbr:`RTR.(RPKI.to.Router) |
| ce580 | 60 20 70 72 6f 74 6f 63 6f 6c 2e 20 54 68 65 72 65 20 61 72 65 20 73 65 76 65 72 61 6c 20 6f 70 | `.protocol..There.are.several.op |
| ce5a0 | 65 6e 20 73 6f 75 72 63 65 20 69 6d 70 6c 65 6d 65 6e 74 61 74 69 6f 6e 73 20 74 6f 20 63 68 6f | en.source.implementations.to.cho |
| ce5c0 | 6f 73 65 20 66 72 6f 6d 2c 20 73 75 63 68 20 61 73 20 4e 4c 4e 65 74 4c 61 62 73 27 20 52 6f 75 | ose.from,.such.as.NLNetLabs'.Rou |
| ce5e0 | 74 69 6e 61 74 6f 72 5f 20 28 77 72 69 74 74 65 6e 20 69 6e 20 52 75 73 74 29 2c 20 43 6c 6f 75 | tinator_.(written.in.Rust),.Clou |
| ce600 | 64 66 6c 61 72 65 27 73 20 47 6f 52 54 52 5f 20 61 6e 64 20 4f 63 74 6f 52 50 4b 49 5f 20 28 77 | dflare's.GoRTR_.and.OctoRPKI_.(w |
| ce620 | 72 69 74 74 65 6e 20 69 6e 20 47 6f 29 2c 20 61 6e 64 20 52 49 50 45 20 4e 43 43 27 73 20 52 50 | ritten.in.Go),.and.RIPE.NCC's.RP |
| ce640 | 4b 49 20 56 61 6c 69 64 61 74 6f 72 5f 20 28 77 72 69 74 74 65 6e 20 69 6e 20 4a 61 76 61 29 2e | KI.Validator_.(written.in.Java). |
| ce660 | 20 54 68 65 20 52 54 52 20 70 72 6f 74 6f 63 6f 6c 20 69 73 20 64 65 73 63 72 69 62 65 64 20 69 | .The.RTR.protocol.is.described.i |
| ce680 | 6e 20 3a 72 66 63 3a 60 38 32 31 30 60 2e 00 41 20 42 47 50 2d 73 70 65 61 6b 69 6e 67 20 72 6f | n.:rfc:`8210`..A.BGP-speaking.ro |
| ce6a0 | 75 74 65 72 20 6c 69 6b 65 20 56 79 4f 53 20 63 61 6e 20 72 65 74 72 69 65 76 65 20 52 4f 41 20 | uter.like.VyOS.can.retrieve.ROA. |
| ce6c0 | 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 72 6f 6d 20 52 50 4b 49 20 22 52 65 6c 79 69 6e 67 20 50 | information.from.RPKI."Relying.P |
| ce6e0 | 61 72 74 79 20 73 6f 66 74 77 61 72 65 22 20 28 6f 66 74 65 6e 20 6a 75 73 74 20 63 61 6c 6c 65 | arty.software".(often.just.calle |
| ce700 | 64 20 61 6e 20 22 52 50 4b 49 20 73 65 72 76 65 72 22 20 6f 72 20 22 52 50 4b 49 20 76 61 6c 69 | d.an."RPKI.server".or."RPKI.vali |
| ce720 | 64 61 74 6f 72 22 29 20 62 79 20 75 73 69 6e 67 20 3a 61 62 62 72 3a 60 52 54 52 20 28 52 50 4b | dator").by.using.:abbr:`RTR.(RPK |
| ce740 | 49 20 74 6f 20 52 6f 75 74 65 72 29 60 20 70 72 6f 74 6f 63 6f 6c 2e 20 54 68 65 72 65 20 61 72 | I.to.Router)`.protocol..There.ar |
| ce760 | 65 20 73 65 76 65 72 61 6c 20 6f 70 65 6e 20 73 6f 75 72 63 65 20 69 6d 70 6c 65 6d 65 6e 74 61 | e.several.open.source.implementa |
| ce780 | 74 69 6f 6e 73 20 74 6f 20 63 68 6f 6f 73 65 20 66 72 6f 6d 2c 20 73 75 63 68 20 61 73 20 4e 4c | tions.to.choose.from,.such.as.NL |
| ce7a0 | 4e 65 74 4c 61 62 73 27 20 52 6f 75 74 69 6e 61 74 6f 72 5f 20 28 77 72 69 74 74 65 6e 20 69 6e | NetLabs'.Routinator_.(written.in |
| ce7c0 | 20 52 75 73 74 29 2c 20 4f 70 65 6e 42 53 44 27 73 20 72 70 6b 69 2d 63 6c 69 65 6e 74 5f 20 28 | .Rust),.OpenBSD's.rpki-client_.( |
| ce7e0 | 77 72 69 74 74 65 6e 20 69 6e 20 43 29 2c 20 61 6e 64 20 53 74 61 79 52 54 52 5f 20 28 77 72 69 | written.in.C),.and.StayRTR_.(wri |
| ce800 | 74 74 65 6e 20 69 6e 20 47 6f 29 2e 20 54 68 65 20 52 54 52 20 70 72 6f 74 6f 63 6f 6c 20 69 73 | tten.in.Go)..The.RTR.protocol.is |
| ce820 | 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 38 32 31 30 60 2e 00 41 20 42 72 69 | .described.in.:rfc:`8210`..A.Bri |
| ce840 | 64 67 65 20 69 73 20 61 20 77 61 79 20 74 6f 20 63 6f 6e 6e 65 63 74 20 74 77 6f 20 45 74 68 65 | dge.is.a.way.to.connect.two.Ethe |
| ce860 | 72 6e 65 74 20 73 65 67 6d 65 6e 74 73 20 74 6f 67 65 74 68 65 72 20 69 6e 20 61 20 70 72 6f 74 | rnet.segments.together.in.a.prot |
| ce880 | 6f 63 6f 6c 20 69 6e 64 65 70 65 6e 64 65 6e 74 20 77 61 79 2e 20 50 61 63 6b 65 74 73 20 61 72 | ocol.independent.way..Packets.ar |
| ce8a0 | 65 20 66 6f 72 77 61 72 64 65 64 20 62 61 73 65 64 20 6f 6e 20 45 74 68 65 72 6e 65 74 20 61 64 | e.forwarded.based.on.Ethernet.ad |
| ce8c0 | 64 72 65 73 73 2c 20 72 61 74 68 65 72 20 74 68 61 6e 20 49 50 20 61 64 64 72 65 73 73 20 28 6c | dress,.rather.than.IP.address.(l |
| ce8e0 | 69 6b 65 20 61 20 72 6f 75 74 65 72 29 2e 20 53 69 6e 63 65 20 66 6f 72 77 61 72 64 69 6e 67 20 | ike.a.router)..Since.forwarding. |
| ce900 | 69 73 20 64 6f 6e 65 20 61 74 20 4c 61 79 65 72 20 32 2c 20 61 6c 6c 20 70 72 6f 74 6f 63 6f 6c | is.done.at.Layer.2,.all.protocol |
| ce920 | 73 20 63 61 6e 20 67 6f 20 74 72 61 6e 73 70 61 72 65 6e 74 6c 79 20 74 68 72 6f 75 67 68 20 61 | s.can.go.transparently.through.a |
| ce940 | 20 62 72 69 64 67 65 2e 20 54 68 65 20 4c 69 6e 75 78 20 62 72 69 64 67 65 20 63 6f 64 65 20 69 | .bridge..The.Linux.bridge.code.i |
| ce960 | 6d 70 6c 65 6d 65 6e 74 73 20 61 20 73 75 62 73 65 74 20 6f 66 20 74 68 65 20 41 4e 53 49 2f 49 | mplements.a.subset.of.the.ANSI/I |
| ce980 | 45 45 45 20 38 30 32 2e 31 64 20 73 74 61 6e 64 61 72 64 2e 00 41 20 47 52 45 20 74 75 6e 6e 65 | EEE.802.1d.standard..A.GRE.tunne |
| ce9a0 | 6c 20 6f 70 65 72 61 74 65 73 20 61 74 20 6c 61 79 65 72 20 33 20 6f 66 20 74 68 65 20 4f 53 49 | l.operates.at.layer.3.of.the.OSI |
| ce9c0 | 20 6d 6f 64 65 6c 20 61 6e 64 20 69 73 20 72 65 70 72 65 73 65 6e 74 65 64 20 62 79 20 49 50 20 | .model.and.is.represented.by.IP. |
| ce9e0 | 70 72 6f 74 6f 63 6f 6c 20 34 37 2e 20 54 68 65 20 6d 61 69 6e 20 62 65 6e 65 66 69 74 20 6f 66 | protocol.47..The.main.benefit.of |
| cea00 | 20 61 20 47 52 45 20 74 75 6e 6e 65 6c 20 69 73 20 74 68 61 74 20 79 6f 75 20 61 72 65 20 61 62 | .a.GRE.tunnel.is.that.you.are.ab |
| cea20 | 6c 65 20 74 6f 20 63 61 72 72 79 20 6d 75 6c 74 69 70 6c 65 20 70 72 6f 74 6f 63 6f 6c 73 20 69 | le.to.carry.multiple.protocols.i |
| cea40 | 6e 73 69 64 65 20 74 68 65 20 73 61 6d 65 20 74 75 6e 6e 65 6c 2e 20 47 52 45 20 61 6c 73 6f 20 | nside.the.same.tunnel..GRE.also. |
| cea60 | 73 75 70 70 6f 72 74 73 20 6d 75 6c 74 69 63 61 73 74 20 74 72 61 66 66 69 63 20 61 6e 64 20 73 | supports.multicast.traffic.and.s |
| cea80 | 75 70 70 6f 72 74 73 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 73 20 74 68 61 74 20 6c | upports.routing.protocols.that.l |
| ceaa0 | 65 76 65 72 61 67 65 20 6d 75 6c 74 69 63 61 73 74 20 74 6f 20 66 6f 72 6d 20 6e 65 69 67 68 62 | everage.multicast.to.form.neighb |
| ceac0 | 6f 72 20 61 64 6a 61 63 65 6e 63 69 65 73 2e 00 41 20 52 75 6c 65 2d 53 65 74 20 63 61 6e 20 62 | or.adjacencies..A.Rule-Set.can.b |
| ceae0 | 65 20 61 70 70 6c 69 65 64 20 74 6f 20 65 76 65 72 79 20 69 6e 74 65 72 66 61 63 65 3a 00 41 20 | e.applied.to.every.interface:.A. |
| ceb00 | 53 4e 54 50 20 73 65 72 76 65 72 20 61 64 64 72 65 73 73 20 63 61 6e 20 62 65 20 73 70 65 63 69 | SNTP.server.address.can.be.speci |
| ceb20 | 66 69 65 64 20 66 6f 72 20 44 48 43 50 76 36 20 63 6c 69 65 6e 74 73 2e 00 41 20 56 52 46 20 64 | fied.for.DHCPv6.clients..A.VRF.d |
| ceb40 | 65 76 69 63 65 20 69 73 20 63 72 65 61 74 65 64 20 77 69 74 68 20 61 6e 20 61 73 73 6f 63 69 61 | evice.is.created.with.an.associa |
| ceb60 | 74 65 64 20 72 6f 75 74 65 20 74 61 62 6c 65 2e 20 4e 65 74 77 6f 72 6b 20 69 6e 74 65 72 66 61 | ted.route.table..Network.interfa |
| ceb80 | 63 65 73 20 61 72 65 20 74 68 65 6e 20 65 6e 73 6c 61 76 65 64 20 74 6f 20 61 20 56 52 46 20 64 | ces.are.then.enslaved.to.a.VRF.d |
| ceba0 | 65 76 69 63 65 2e 00 41 20 56 79 4f 53 20 47 52 45 20 74 75 6e 6e 65 6c 20 63 61 6e 20 63 61 72 | evice..A.VyOS.GRE.tunnel.can.car |
| cebc0 | 72 79 20 62 6f 74 68 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 74 72 61 66 66 69 63 20 61 6e | ry.both.IPv4.and.IPv6.traffic.an |
| cebe0 | 64 20 63 61 6e 20 61 6c 73 6f 20 62 65 20 63 72 65 61 74 65 64 20 6f 76 65 72 20 65 69 74 68 65 | d.can.also.be.created.over.eithe |
| cec00 | 72 20 49 50 76 34 20 28 67 72 65 29 20 6f 72 20 49 50 76 36 20 28 69 70 36 67 72 65 29 2e 00 41 | r.IPv4.(gre).or.IPv6.(ip6gre)..A |
| cec20 | 20 56 79 4f 53 20 72 6f 75 74 65 72 20 77 69 74 68 20 74 77 6f 20 69 6e 74 65 72 66 61 63 65 73 | .VyOS.router.with.two.interfaces |
| cec40 | 20 2d 20 65 74 68 30 20 28 57 41 4e 29 20 61 6e 64 20 65 74 68 31 20 28 4c 41 4e 29 20 2d 20 69 | .-.eth0.(WAN).and.eth1.(LAN).-.i |
| cec60 | 73 20 72 65 71 75 69 72 65 64 20 74 6f 20 69 6d 70 6c 65 6d 65 6e 74 20 61 20 73 70 6c 69 74 2d | s.required.to.implement.a.split- |
| cec80 | 68 6f 72 69 7a 6f 6e 20 44 4e 53 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 6f 72 20 65 78 | horizon.DNS.configuration.for.ex |
| ceca0 | 61 6d 70 6c 65 2e 63 6f 6d 2e 00 41 20 62 61 73 69 63 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e | ample.com..A.basic.configuration |
| cecc0 | 20 72 65 71 75 69 72 65 73 20 61 20 74 75 6e 6e 65 6c 20 73 6f 75 72 63 65 20 28 73 6f 75 72 63 | .requires.a.tunnel.source.(sourc |
| cece0 | 65 2d 61 64 64 72 65 73 73 29 2c 20 61 20 74 75 6e 6e 65 6c 20 64 65 73 74 69 6e 61 74 69 6f 6e | e-address),.a.tunnel.destination |
| ced00 | 20 28 72 65 6d 6f 74 65 29 2c 20 61 6e 20 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e 20 74 79 70 65 | .(remote),.an.encapsulation.type |
| ced20 | 20 28 67 72 65 29 2c 20 61 6e 64 20 61 6e 20 61 64 64 72 65 73 73 20 28 69 70 76 34 2f 69 70 76 | .(gre),.and.an.address.(ipv4/ipv |
| ced40 | 36 29 2e 20 42 65 6c 6f 77 20 69 73 20 61 20 62 61 73 69 63 20 49 50 76 34 20 6f 6e 6c 79 20 63 | 6)..Below.is.a.basic.IPv4.only.c |
| ced60 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 65 78 61 6d 70 6c 65 20 74 61 6b 65 6e 20 66 72 6f 6d 20 | onfiguration.example.taken.from. |
| ced80 | 61 20 56 79 4f 53 20 72 6f 75 74 65 72 20 61 6e 64 20 61 20 43 69 73 63 6f 20 49 4f 53 20 72 6f | a.VyOS.router.and.a.Cisco.IOS.ro |
| ceda0 | 75 74 65 72 2e 20 54 68 65 20 6d 61 69 6e 20 64 69 66 66 65 72 65 6e 63 65 20 62 65 74 77 65 65 | uter..The.main.difference.betwee |
| cedc0 | 6e 20 74 68 65 73 65 20 74 77 6f 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 73 20 69 73 20 74 68 | n.these.two.configurations.is.th |
| cede0 | 61 74 20 56 79 4f 53 20 72 65 71 75 69 72 65 73 20 79 6f 75 20 65 78 70 6c 69 63 69 74 6c 79 20 | at.VyOS.requires.you.explicitly. |
| cee00 | 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e 20 74 79 70 65 | configure.the.encapsulation.type |
| cee20 | 2e 20 54 68 65 20 43 69 73 63 6f 20 72 6f 75 74 65 72 20 64 65 66 61 75 6c 74 73 20 74 6f 20 47 | ..The.Cisco.router.defaults.to.G |
| cee40 | 52 45 20 49 50 20 6f 74 68 65 72 77 69 73 65 20 69 74 20 77 6f 75 6c 64 20 68 61 76 65 20 74 6f | RE.IP.otherwise.it.would.have.to |
| cee60 | 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 61 73 20 77 65 6c 6c 2e 00 41 20 62 61 73 69 63 20 | .be.configured.as.well..A.basic. |
| cee80 | 69 6e 74 72 6f 64 75 63 74 69 6f 6e 20 74 6f 20 7a 6f 6e 65 2d 62 61 73 65 64 20 66 69 72 65 77 | introduction.to.zone-based.firew |
| ceea0 | 61 6c 6c 73 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 60 68 65 72 65 20 3c 68 74 74 70 73 3a 2f | alls.can.be.found.`here.<https:/ |
| ceec0 | 2f 73 75 70 70 6f 72 74 2e 76 79 6f 73 2e 69 6f 2f 65 6e 2f 6b 62 2f 61 72 74 69 63 6c 65 73 2f | /support.vyos.io/en/kb/articles/ |
| ceee0 | 61 2d 70 72 69 6d 65 72 2d 74 6f 2d 7a 6f 6e 65 2d 62 61 73 65 64 2d 66 69 72 65 77 61 6c 6c 3e | a-primer-to-zone-based-firewall> |
| cef00 | 60 5f 2c 20 61 6e 64 20 61 6e 20 65 78 61 6d 70 6c 65 20 61 74 20 3a 72 65 66 3a 60 65 78 61 6d | `_,.and.an.example.at.:ref:`exam |
| cef20 | 70 6c 65 73 2d 7a 6f 6e 65 2d 70 6f 6c 69 63 79 60 2e 00 41 20 62 72 69 64 67 65 20 6e 61 6d 65 | ples-zone-policy`..A.bridge.name |
| cef40 | 64 20 60 62 72 31 30 30 60 00 41 20 62 72 69 65 66 20 64 65 73 63 72 69 70 74 69 6f 6e 20 77 68 | d.`br100`.A.brief.description.wh |
| cef60 | 61 74 20 74 68 69 73 20 6e 65 74 77 6f 72 6b 20 69 73 20 61 6c 6c 20 61 62 6f 75 74 2e 00 41 20 | at.this.network.is.all.about..A. |
| cef80 | 63 6c 61 73 73 20 63 61 6e 20 68 61 76 65 20 6d 75 6c 74 69 70 6c 65 20 6d 61 74 63 68 20 66 69 | class.can.have.multiple.match.fi |
| cefa0 | 6c 74 65 72 73 3a 00 41 20 63 6f 6d 6d 6f 6e 20 65 78 61 6d 70 6c 65 20 69 73 20 74 68 65 20 63 | lters:.A.common.example.is.the.c |
| cefc0 | 61 73 65 20 6f 66 20 73 6f 6d 65 20 70 6f 6c 69 63 69 65 73 20 77 68 69 63 68 2c 20 69 6e 20 6f | ase.of.some.policies.which,.in.o |
| cefe0 | 72 64 65 72 20 74 6f 20 62 65 20 65 66 66 65 63 74 69 76 65 2c 20 74 68 65 79 20 6e 65 65 64 20 | rder.to.be.effective,.they.need. |
| cf000 | 74 6f 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 74 68 | to.be.applied.to.an.interface.th |
| cf020 | 61 74 20 69 73 20 64 69 72 65 63 74 6c 79 20 63 6f 6e 6e 65 63 74 65 64 20 77 68 65 72 65 20 74 | at.is.directly.connected.where.t |
| cf040 | 68 65 20 62 6f 74 74 6c 65 6e 65 63 6b 20 69 73 2e 20 49 66 20 79 6f 75 72 20 72 6f 75 74 65 72 | he.bottleneck.is..If.your.router |
| cf060 | 20 69 73 20 6e 6f 74 20 64 69 72 65 63 74 6c 79 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 74 68 | .is.not.directly.connected.to.th |
| cf080 | 65 20 62 6f 74 74 6c 65 6e 65 63 6b 2c 20 62 75 74 20 73 6f 6d 65 20 68 6f 70 20 62 65 66 6f 72 | e.bottleneck,.but.some.hop.befor |
| cf0a0 | 65 20 69 74 2c 20 79 6f 75 20 63 61 6e 20 65 6d 75 6c 61 74 65 20 74 68 65 20 62 6f 74 74 6c 65 | e.it,.you.can.emulate.the.bottle |
| cf0c0 | 6e 65 63 6b 20 62 79 20 65 6d 62 65 64 64 69 6e 67 20 79 6f 75 72 20 6e 6f 6e 2d 73 68 61 70 69 | neck.by.embedding.your.non-shapi |
| cf0e0 | 6e 67 20 70 6f 6c 69 63 79 20 69 6e 74 6f 20 61 20 63 6c 61 73 73 66 75 6c 20 73 68 61 70 69 6e | ng.policy.into.a.classful.shapin |
| cf100 | 67 20 6f 6e 65 20 73 6f 20 74 68 61 74 20 69 74 20 74 61 6b 65 73 20 65 66 66 65 63 74 2e 00 41 | g.one.so.that.it.takes.effect..A |
| cf120 | 20 63 6f 6d 70 6c 65 74 65 20 4c 44 41 50 20 61 75 74 68 20 4f 70 65 6e 56 50 4e 20 63 6f 6e 66 | .complete.LDAP.auth.OpenVPN.conf |
| cf140 | 69 67 75 72 61 74 69 6f 6e 20 63 6f 75 6c 64 20 6c 6f 6f 6b 20 6c 69 6b 65 20 74 68 65 20 66 6f | iguration.could.look.like.the.fo |
| cf160 | 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 6c 65 3a 00 41 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e | llowing.example:.A.configuration |
| cf180 | 20 65 78 61 6d 70 6c 65 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 69 6e 20 74 68 69 73 20 73 65 | .example.can.be.found.in.this.se |
| cf1a0 | 63 74 69 6f 6e 2e 20 49 6e 20 74 68 69 73 20 73 69 6d 70 6c 69 66 69 65 64 20 73 63 65 6e 61 72 | ction..In.this.simplified.scenar |
| cf1c0 | 69 6f 2c 20 6d 61 69 6e 20 74 68 69 6e 67 73 20 74 6f 20 62 65 20 63 6f 6e 73 69 64 65 72 65 64 | io,.main.things.to.be.considered |
| cf1e0 | 20 61 72 65 3a 00 41 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 61 74 74 65 6d 70 74 20 77 69 6c 6c 20 | .are:.A.connection.attempt.will. |
| cf200 | 62 65 20 73 68 6f 77 6e 20 61 73 3a 00 41 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 20 69 73 20 | be.shown.as:.A.default.route.is. |
| cf220 | 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 69 6e 73 74 61 6c 6c 65 64 20 6f 6e 63 65 20 74 68 65 | automatically.installed.once.the |
| cf240 | 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 75 70 2e 20 54 6f 20 63 68 61 6e 67 65 20 74 68 69 73 | .interface.is.up..To.change.this |
| cf260 | 20 62 65 68 61 76 69 6f 72 20 75 73 65 20 74 68 65 20 60 60 6e 6f 2d 64 65 66 61 75 6c 74 2d 72 | .behavior.use.the.``no-default-r |
| cf280 | 6f 75 74 65 60 60 20 43 4c 49 20 6f 70 74 69 6f 6e 2e 00 41 20 64 65 73 63 72 69 70 74 69 6f 6e | oute``.CLI.option..A.description |
| cf2a0 | 20 63 61 6e 20 62 65 20 61 64 64 65 64 20 66 6f 72 20 65 61 63 68 20 61 6e 64 20 65 76 65 72 79 | .can.be.added.for.each.and.every |
| cf2c0 | 20 75 6e 69 71 75 65 20 72 65 6c 61 79 20 49 44 2e 20 54 68 69 73 20 69 73 20 75 73 65 66 75 6c | .unique.relay.ID..This.is.useful |
| cf2e0 | 20 74 6f 20 64 69 73 74 69 6e 67 75 69 73 68 20 62 65 74 77 65 65 6e 20 6d 75 6c 74 69 70 6c 65 | .to.distinguish.between.multiple |
| cf300 | 20 64 69 66 66 65 72 65 6e 74 20 70 6f 72 74 73 2f 61 70 70 6c 69 61 63 74 69 6f 6e 73 2e 00 41 | .different.ports/appliactions..A |
| cf320 | 20 64 65 73 63 72 69 70 74 69 6f 6e 20 63 61 6e 20 62 65 20 61 64 64 65 64 20 66 6f 72 20 65 61 | .description.can.be.added.for.ea |
| cf340 | 63 68 20 61 6e 64 20 65 76 65 72 79 20 75 6e 69 71 75 65 20 72 65 6c 61 79 20 49 44 2e 20 54 68 | ch.and.every.unique.relay.ID..Th |
| cf360 | 69 73 20 69 73 20 75 73 65 66 75 6c 20 74 6f 20 64 69 73 74 69 6e 67 75 69 73 68 20 62 65 74 77 | is.is.useful.to.distinguish.betw |
| cf380 | 65 65 6e 20 6d 75 6c 74 69 70 6c 65 20 64 69 66 66 65 72 65 6e 74 20 70 6f 72 74 73 2f 61 70 70 | een.multiple.different.ports/app |
| cf3a0 | 6c 69 63 61 74 69 6f 6e 73 2e 00 41 20 64 69 73 61 62 6c 65 64 20 67 72 6f 75 70 20 77 69 6c 6c | lications..A.disabled.group.will |
| cf3c0 | 20 62 65 20 72 65 6d 6f 76 65 64 20 66 72 6f 6d 20 74 68 65 20 56 52 52 50 20 70 72 6f 63 65 73 | .be.removed.from.the.VRRP.proces |
| cf3e0 | 73 20 61 6e 64 20 79 6f 75 72 20 72 6f 75 74 65 72 20 77 69 6c 6c 20 6e 6f 74 20 70 61 72 74 69 | s.and.your.router.will.not.parti |
| cf400 | 63 69 70 61 74 65 20 69 6e 20 56 52 52 50 20 66 6f 72 20 74 68 61 74 20 56 52 49 44 2e 20 49 74 | cipate.in.VRRP.for.that.VRID..It |
| cf420 | 20 77 69 6c 6c 20 64 69 73 61 70 70 65 61 72 20 66 72 6f 6d 20 6f 70 65 72 61 74 69 6f 6e 61 6c | .will.disappear.from.operational |
| cf440 | 20 6d 6f 64 65 20 63 6f 6d 6d 61 6e 64 73 20 6f 75 74 70 75 74 2c 20 72 61 74 68 65 72 20 74 68 | .mode.commands.output,.rather.th |
| cf460 | 61 6e 20 65 6e 74 65 72 20 74 68 65 20 62 61 63 6b 75 70 20 73 74 61 74 65 2e 00 41 20 64 6f 6d | an.enter.the.backup.state..A.dom |
| cf480 | 61 69 6e 20 6e 61 6d 65 20 69 73 20 74 68 65 20 6c 61 62 65 6c 20 28 6e 61 6d 65 29 20 61 73 73 | ain.name.is.the.label.(name).ass |
| cf4a0 | 69 67 6e 65 64 20 74 6f 20 61 20 63 6f 6d 70 75 74 65 72 20 6e 65 74 77 6f 72 6b 20 61 6e 64 20 | igned.to.a.computer.network.and. |
| cf4c0 | 69 73 20 74 68 75 73 20 75 6e 69 71 75 65 2e 20 56 79 4f 53 20 61 70 70 65 6e 64 73 20 74 68 65 | is.thus.unique..VyOS.appends.the |
| cf4e0 | 20 64 6f 6d 61 69 6e 20 6e 61 6d 65 20 61 73 20 61 20 73 75 66 66 69 78 20 74 6f 20 61 6e 79 20 | .domain.name.as.a.suffix.to.any. |
| cf500 | 75 6e 71 75 61 6c 69 66 69 65 64 20 6e 61 6d 65 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 2c 20 69 | unqualified.name..For.example,.i |
| cf520 | 66 20 79 6f 75 20 73 65 74 20 74 68 65 20 64 6f 6d 61 69 6e 20 6e 61 6d 65 20 60 65 78 61 6d 70 | f.you.set.the.domain.name.`examp |
| cf540 | 6c 65 2e 63 6f 6d 60 2c 20 61 6e 64 20 79 6f 75 20 77 6f 75 6c 64 20 70 69 6e 67 20 74 68 65 20 | le.com`,.and.you.would.ping.the. |
| cf560 | 75 6e 71 75 61 6c 69 66 69 65 64 20 6e 61 6d 65 20 6f 66 20 60 63 72 75 78 60 2c 20 74 68 65 6e | unqualified.name.of.`crux`,.then |
| cf580 | 20 56 79 4f 53 20 71 75 61 6c 69 66 69 65 73 20 74 68 65 20 6e 61 6d 65 20 74 6f 20 60 63 72 75 | .VyOS.qualifies.the.name.to.`cru |
| cf5a0 | 78 2e 65 78 61 6d 70 6c 65 2e 63 6f 6d 60 2e 00 41 20 64 75 6d 6d 79 20 69 6e 74 65 72 66 61 63 | x.example.com`..A.dummy.interfac |
| cf5c0 | 65 20 66 6f 72 20 74 68 65 20 70 72 6f 76 69 64 65 72 2d 61 73 73 69 67 6e 65 64 20 49 50 3b 00 | e.for.the.provider-assigned.IP;. |
| cf5e0 | 41 20 66 69 72 65 77 61 6c 6c 20 6d 61 72 6b 20 60 60 66 77 6d 61 72 6b 60 60 20 61 6c 6c 6f 77 | A.firewall.mark.``fwmark``.allow |
| cf600 | 73 20 75 73 69 6e 67 20 6d 75 6c 74 69 70 6c 65 20 70 6f 72 74 73 20 66 6f 72 20 68 69 67 68 2d | s.using.multiple.ports.for.high- |
| cf620 | 61 76 61 69 6c 61 62 69 6c 69 74 79 20 76 69 72 74 75 61 6c 2d 73 65 72 76 65 72 2e 20 49 74 20 | availability.virtual-server..It. |
| cf640 | 75 73 65 73 20 66 77 6d 61 72 6b 20 76 61 6c 75 65 2e 00 41 20 66 75 6c 6c 20 65 78 61 6d 70 6c | uses.fwmark.value..A.full.exampl |
| cf660 | 65 20 6f 66 20 61 20 54 75 6e 6e 65 6c 62 72 6f 6b 65 72 2e 6e 65 74 20 63 6f 6e 66 69 67 20 63 | e.of.a.Tunnelbroker.net.config.c |
| cf680 | 61 6e 20 62 65 20 66 6f 75 6e 64 20 61 74 20 3a 72 65 66 3a 60 68 65 72 65 20 3c 65 78 61 6d 70 | an.be.found.at.:ref:`here.<examp |
| cf6a0 | 6c 65 73 2d 74 75 6e 6e 65 6c 62 72 6f 6b 65 72 2d 69 70 76 36 3e 60 2e 00 41 20 67 65 6e 65 72 | les-tunnelbroker-ipv6>`..A.gener |
| cf6c0 | 69 63 20 60 3c 6e 61 6d 65 3e 60 20 72 65 66 65 72 65 6e 63 69 6e 67 20 74 68 69 73 20 73 79 6e | ic.`<name>`.referencing.this.syn |
| cf6e0 | 63 20 73 65 72 76 69 63 65 2e 00 41 20 68 6f 73 74 6e 61 6d 65 20 69 73 20 74 68 65 20 6c 61 62 | c.service..A.hostname.is.the.lab |
| cf700 | 65 6c 20 28 6e 61 6d 65 29 20 61 73 73 69 67 6e 65 64 20 74 6f 20 61 20 6e 65 74 77 6f 72 6b 20 | el.(name).assigned.to.a.network. |
| cf720 | 64 65 76 69 63 65 20 28 61 20 68 6f 73 74 29 20 6f 6e 20 61 20 6e 65 74 77 6f 72 6b 20 61 6e 64 | device.(a.host).on.a.network.and |
| cf740 | 20 69 73 20 75 73 65 64 20 74 6f 20 64 69 73 74 69 6e 67 75 69 73 68 20 6f 6e 65 20 64 65 76 69 | .is.used.to.distinguish.one.devi |
| cf760 | 63 65 20 66 72 6f 6d 20 61 6e 6f 74 68 65 72 20 6f 6e 20 73 70 65 63 69 66 69 63 20 6e 65 74 77 | ce.from.another.on.specific.netw |
| cf780 | 6f 72 6b 73 20 6f 72 20 6f 76 65 72 20 74 68 65 20 69 6e 74 65 72 6e 65 74 2e 20 4f 6e 20 74 68 | orks.or.over.the.internet..On.th |
| cf7a0 | 65 20 6f 74 68 65 72 20 68 61 6e 64 20 74 68 69 73 20 77 69 6c 6c 20 62 65 20 74 68 65 20 6e 61 | e.other.hand.this.will.be.the.na |
| cf7c0 | 6d 65 20 77 68 69 63 68 20 61 70 70 65 61 72 73 20 6f 6e 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 | me.which.appears.on.the.command. |
| cf7e0 | 6c 69 6e 65 20 70 72 6f 6d 70 74 2e 00 41 20 68 75 6d 61 6e 20 72 65 61 64 61 62 6c 65 20 64 65 | line.prompt..A.human.readable.de |
| cf800 | 73 63 72 69 70 74 69 6f 6e 20 77 68 61 74 20 74 68 69 73 20 43 41 20 69 73 20 61 62 6f 75 74 2e | scription.what.this.CA.is.about. |
| cf820 | 00 41 20 68 75 6d 61 6e 20 72 65 61 64 61 62 6c 65 20 64 65 73 63 72 69 70 74 69 6f 6e 20 77 68 | .A.human.readable.description.wh |
| cf840 | 61 74 20 74 68 69 73 20 63 65 72 74 69 66 69 63 61 74 65 20 69 73 20 61 62 6f 75 74 2e 00 41 20 | at.this.certificate.is.about..A. |
| cf860 | 6c 69 6e 6b 20 63 61 6e 20 62 65 20 73 65 74 75 70 20 66 6f 72 20 75 70 6c 69 6e 6b 20 74 72 61 | link.can.be.setup.for.uplink.tra |
| cf880 | 63 6b 69 6e 67 20 76 69 61 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 6c 65 3a | cking.via.the.following.example: |
| cf8a0 | 00 41 20 6c 6f 6f 6b 62 61 63 6b 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 61 6c 77 61 79 73 20 | .A.lookback.interface.is.always. |
| cf8c0 | 75 70 2c 20 74 68 75 73 20 69 74 20 63 6f 75 6c 64 20 62 65 20 75 73 65 64 20 66 6f 72 20 6d 61 | up,.thus.it.could.be.used.for.ma |
| cf8e0 | 6e 61 67 65 6d 65 6e 74 20 74 72 61 66 66 69 63 20 6f 72 20 61 73 20 73 6f 75 72 63 65 2f 64 65 | nagement.traffic.or.as.source/de |
| cf900 | 73 74 69 6e 61 74 69 6f 6e 20 66 6f 72 20 61 6e 64 20 3a 61 62 62 72 3a 60 49 47 50 20 28 49 6e | stination.for.and.:abbr:`IGP.(In |
| cf920 | 74 65 72 69 6f 72 20 47 61 74 65 77 61 79 20 50 72 6f 74 6f 63 6f 6c 29 60 20 6c 69 6b 65 20 3a | terior.Gateway.Protocol)`.like.: |
| cf940 | 72 65 66 3a 60 72 6f 75 74 69 6e 67 2d 62 67 70 60 20 73 6f 20 79 6f 75 72 20 69 6e 74 65 72 6e | ref:`routing-bgp`.so.your.intern |
| cf960 | 61 6c 20 42 47 50 20 6c 69 6e 6b 20 69 73 20 6e 6f 74 20 64 65 70 65 6e 64 65 6e 74 20 6f 6e 20 | al.BGP.link.is.not.dependent.on. |
| cf980 | 70 68 79 73 69 63 61 6c 20 6c 69 6e 6b 20 73 74 61 74 65 73 20 61 6e 64 20 6d 75 6c 74 69 70 6c | physical.link.states.and.multipl |
| cf9a0 | 65 20 72 6f 75 74 65 73 20 63 61 6e 20 62 65 20 63 68 6f 73 65 6e 20 74 6f 20 74 68 65 20 64 65 | e.routes.can.be.chosen.to.the.de |
| cf9c0 | 73 74 69 6e 61 74 69 6f 6e 2e 20 41 20 3a 72 65 66 3a 60 64 75 6d 6d 79 2d 69 6e 74 65 72 66 61 | stination..A.:ref:`dummy-interfa |
| cf9e0 | 63 65 60 20 49 6e 74 65 72 66 61 63 65 20 73 68 6f 75 6c 64 20 61 6c 77 61 79 73 20 62 65 20 70 | ce`.Interface.should.always.be.p |
| cfa00 | 72 65 66 65 72 72 65 64 20 6f 76 65 72 20 61 20 3a 72 65 66 3a 60 6c 6f 6f 70 62 61 63 6b 2d 69 | referred.over.a.:ref:`loopback-i |
| cfa20 | 6e 74 65 72 66 61 63 65 60 20 69 6e 74 65 72 66 61 63 65 2e 00 41 20 6c 6f 6f 70 62 61 63 6b 20 | nterface`.interface..A.loopback. |
| cfa40 | 69 6e 74 65 72 66 61 63 65 20 69 73 20 61 6c 77 61 79 73 20 75 70 2c 20 74 68 75 73 20 69 74 20 | interface.is.always.up,.thus.it. |
| cfa60 | 63 6f 75 6c 64 20 62 65 20 75 73 65 64 20 66 6f 72 20 6d 61 6e 61 67 65 6d 65 6e 74 20 74 72 61 | could.be.used.for.management.tra |
| cfa80 | 66 66 69 63 20 6f 72 20 61 73 20 73 6f 75 72 63 65 2f 64 65 73 74 69 6e 61 74 69 6f 6e 20 66 6f | ffic.or.as.source/destination.fo |
| cfaa0 | 72 20 61 6e 64 20 3a 61 62 62 72 3a 60 49 47 50 20 28 49 6e 74 65 72 69 6f 72 20 47 61 74 65 77 | r.and.:abbr:`IGP.(Interior.Gatew |
| cfac0 | 61 79 20 50 72 6f 74 6f 63 6f 6c 29 60 20 6c 69 6b 65 20 3a 72 65 66 3a 60 72 6f 75 74 69 6e 67 | ay.Protocol)`.like.:ref:`routing |
| cfae0 | 2d 62 67 70 60 20 73 6f 20 79 6f 75 72 20 69 6e 74 65 72 6e 61 6c 20 42 47 50 20 6c 69 6e 6b 20 | -bgp`.so.your.internal.BGP.link. |
| cfb00 | 69 73 20 6e 6f 74 20 64 65 70 65 6e 64 65 6e 74 20 6f 6e 20 70 68 79 73 69 63 61 6c 20 6c 69 6e | is.not.dependent.on.physical.lin |
| cfb20 | 6b 20 73 74 61 74 65 73 20 61 6e 64 20 6d 75 6c 74 69 70 6c 65 20 72 6f 75 74 65 73 20 63 61 6e | k.states.and.multiple.routes.can |
| cfb40 | 20 62 65 20 63 68 6f 73 65 6e 20 74 6f 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 2e 20 41 | .be.chosen.to.the.destination..A |
| cfb60 | 20 3a 72 65 66 3a 60 64 75 6d 6d 79 2d 69 6e 74 65 72 66 61 63 65 60 20 49 6e 74 65 72 66 61 63 | .:ref:`dummy-interface`.Interfac |
| cfb80 | 65 20 73 68 6f 75 6c 64 20 61 6c 77 61 79 73 20 62 65 20 70 72 65 66 65 72 72 65 64 20 6f 76 65 | e.should.always.be.preferred.ove |
| cfba0 | 72 20 61 20 3a 72 65 66 3a 60 6c 6f 6f 70 62 61 63 6b 2d 69 6e 74 65 72 66 61 63 65 60 20 69 6e | r.a.:ref:`loopback-interface`.in |
| cfbc0 | 74 65 72 66 61 63 65 2e 00 41 20 6d 61 6e 61 67 65 64 20 64 65 76 69 63 65 20 69 73 20 61 20 6e | terface..A.managed.device.is.a.n |
| cfbe0 | 65 74 77 6f 72 6b 20 6e 6f 64 65 20 74 68 61 74 20 69 6d 70 6c 65 6d 65 6e 74 73 20 61 6e 20 53 | etwork.node.that.implements.an.S |
| cfc00 | 4e 4d 50 20 69 6e 74 65 72 66 61 63 65 20 74 68 61 74 20 61 6c 6c 6f 77 73 20 75 6e 69 64 69 72 | NMP.interface.that.allows.unidir |
| cfc20 | 65 63 74 69 6f 6e 61 6c 20 28 72 65 61 64 2d 6f 6e 6c 79 29 20 6f 72 20 62 69 64 69 72 65 63 74 | ectional.(read-only).or.bidirect |
| cfc40 | 69 6f 6e 61 6c 20 28 72 65 61 64 20 61 6e 64 20 77 72 69 74 65 29 20 61 63 63 65 73 73 20 74 6f | ional.(read.and.write).access.to |
| cfc60 | 20 6e 6f 64 65 2d 73 70 65 63 69 66 69 63 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2e 20 4d 61 6e 61 | .node-specific.information..Mana |
| cfc80 | 67 65 64 20 64 65 76 69 63 65 73 20 65 78 63 68 61 6e 67 65 20 6e 6f 64 65 2d 73 70 65 63 69 66 | ged.devices.exchange.node-specif |
| cfca0 | 69 63 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 77 69 74 68 20 74 68 65 20 4e 4d 53 73 2e 20 53 6f | ic.information.with.the.NMSs..So |
| cfcc0 | 6d 65 74 69 6d 65 73 20 63 61 6c 6c 65 64 20 6e 65 74 77 6f 72 6b 20 65 6c 65 6d 65 6e 74 73 2c | metimes.called.network.elements, |
| cfce0 | 20 74 68 65 20 6d 61 6e 61 67 65 64 20 64 65 76 69 63 65 73 20 63 61 6e 20 62 65 20 61 6e 79 20 | .the.managed.devices.can.be.any. |
| cfd00 | 74 79 70 65 20 6f 66 20 64 65 76 69 63 65 2c 20 69 6e 63 6c 75 64 69 6e 67 2c 20 62 75 74 20 6e | type.of.device,.including,.but.n |
| cfd20 | 6f 74 20 6c 69 6d 69 74 65 64 20 74 6f 2c 20 72 6f 75 74 65 72 73 2c 20 61 63 63 65 73 73 20 73 | ot.limited.to,.routers,.access.s |
| cfd40 | 65 72 76 65 72 73 2c 20 73 77 69 74 63 68 65 73 2c 20 63 61 62 6c 65 20 6d 6f 64 65 6d 73 2c 20 | ervers,.switches,.cable.modems,. |
| cfd60 | 62 72 69 64 67 65 73 2c 20 68 75 62 73 2c 20 49 50 20 74 65 6c 65 70 68 6f 6e 65 73 2c 20 49 50 | bridges,.hubs,.IP.telephones,.IP |
| cfd80 | 20 76 69 64 65 6f 20 63 61 6d 65 72 61 73 2c 20 63 6f 6d 70 75 74 65 72 20 68 6f 73 74 73 2c 20 | .video.cameras,.computer.hosts,. |
| cfda0 | 61 6e 64 20 70 72 69 6e 74 65 72 73 2e 00 41 20 6d 61 74 63 68 20 66 69 6c 74 65 72 20 63 61 6e | and.printers..A.match.filter.can |
| cfdc0 | 20 63 6f 6e 74 61 69 6e 20 6d 75 6c 74 69 70 6c 65 20 63 72 69 74 65 72 69 61 20 61 6e 64 20 77 | .contain.multiple.criteria.and.w |
| cfde0 | 69 6c 6c 20 6d 61 74 63 68 20 74 72 61 66 66 69 63 20 69 66 20 61 6c 6c 20 74 68 6f 73 65 20 63 | ill.match.traffic.if.all.those.c |
| cfe00 | 72 69 74 65 72 69 61 20 61 72 65 20 74 72 75 65 2e 00 41 20 6d 61 74 63 68 20 67 72 6f 75 70 20 | riteria.are.true..A.match.group. |
| cfe20 | 63 61 6e 20 63 6f 6e 74 61 69 6e 20 6d 75 6c 74 69 70 6c 65 20 63 72 69 74 65 72 69 61 20 61 6e | can.contain.multiple.criteria.an |
| cfe40 | 64 20 69 6e 68 65 72 69 74 20 74 68 65 6d 20 69 6e 20 74 68 65 20 73 61 6d 65 20 70 6f 6c 69 63 | d.inherit.them.in.the.same.polic |
| cfe60 | 79 2e 00 41 20 6d 6f 6e 69 74 6f 72 65 64 20 73 74 61 74 69 63 20 72 6f 75 74 65 20 63 6f 6e 64 | y..A.monitored.static.route.cond |
| cfe80 | 69 74 69 6f 6e 73 20 74 68 65 20 69 6e 73 74 61 6c 6c 61 74 69 6f 6e 20 74 6f 20 74 68 65 20 52 | itions.the.installation.to.the.R |
| cfea0 | 49 42 20 6f 6e 20 74 68 65 20 42 46 44 20 73 65 73 73 69 6f 6e 20 72 75 6e 6e 69 6e 67 20 73 74 | IB.on.the.BFD.session.running.st |
| cfec0 | 61 74 65 3a 20 77 68 65 6e 20 42 46 44 20 73 65 73 73 69 6f 6e 20 69 73 20 75 70 20 74 68 65 20 | ate:.when.BFD.session.is.up.the. |
| cfee0 | 72 6f 75 74 65 20 69 73 20 69 6e 73 74 61 6c 6c 65 64 20 74 6f 20 52 49 42 2c 20 62 75 74 20 77 | route.is.installed.to.RIB,.but.w |
| cff00 | 68 65 6e 20 74 68 65 20 42 46 44 20 73 65 73 73 69 6f 6e 20 69 73 20 64 6f 77 6e 20 69 74 20 69 | hen.the.BFD.session.is.down.it.i |
| cff20 | 73 20 72 65 6d 6f 76 65 64 20 66 72 6f 6d 20 74 68 65 20 52 49 42 2e 00 41 20 6e 65 74 77 6f 72 | s.removed.from.the.RIB..A.networ |
| cff40 | 6b 20 6d 61 6e 61 67 65 6d 65 6e 74 20 73 74 61 74 69 6f 6e 20 65 78 65 63 75 74 65 73 20 61 70 | k.management.station.executes.ap |
| cff60 | 70 6c 69 63 61 74 69 6f 6e 73 20 74 68 61 74 20 6d 6f 6e 69 74 6f 72 20 61 6e 64 20 63 6f 6e 74 | plications.that.monitor.and.cont |
| cff80 | 72 6f 6c 20 6d 61 6e 61 67 65 64 20 64 65 76 69 63 65 73 2e 20 4e 4d 53 73 20 70 72 6f 76 69 64 | rol.managed.devices..NMSs.provid |
| cffa0 | 65 20 74 68 65 20 62 75 6c 6b 20 6f 66 20 74 68 65 20 70 72 6f 63 65 73 73 69 6e 67 20 61 6e 64 | e.the.bulk.of.the.processing.and |
| cffc0 | 20 6d 65 6d 6f 72 79 20 72 65 73 6f 75 72 63 65 73 20 72 65 71 75 69 72 65 64 20 66 6f 72 20 6e | .memory.resources.required.for.n |
| cffe0 | 65 74 77 6f 72 6b 20 6d 61 6e 61 67 65 6d 65 6e 74 2e 20 4f 6e 65 20 6f 72 20 6d 6f 72 65 20 4e | etwork.management..One.or.more.N |
| d0000 | 4d 53 73 20 6d 61 79 20 65 78 69 73 74 20 6f 6e 20 61 6e 79 20 6d 61 6e 61 67 65 64 20 6e 65 74 | MSs.may.exist.on.any.managed.net |
| d0020 | 77 6f 72 6b 2e 00 41 20 6e 65 77 20 69 6e 74 65 72 66 61 63 65 20 62 65 63 6f 6d 65 73 20 70 72 | work..A.new.interface.becomes.pr |
| d0040 | 65 73 65 6e 74 20 60 60 50 6f 72 74 2d 63 68 61 6e 6e 65 6c 31 60 60 2c 20 61 6c 6c 20 63 6f 6e | esent.``Port-channel1``,.all.con |
| d0060 | 66 69 67 75 72 61 74 69 6f 6e 20 6c 69 6b 65 20 61 6c 6c 6f 77 65 64 20 56 4c 41 4e 20 69 6e 74 | figuration.like.allowed.VLAN.int |
| d0080 | 65 72 66 61 63 65 73 2c 20 53 54 50 20 77 69 6c 6c 20 68 61 70 70 65 6e 20 68 65 72 65 2e 00 41 | erfaces,.STP.will.happen.here..A |
| d00a0 | 20 70 61 63 6b 65 74 20 72 61 74 65 20 6c 69 6d 69 74 20 63 61 6e 20 62 65 20 73 65 74 20 66 6f | .packet.rate.limit.can.be.set.fo |
| d00c0 | 72 20 61 20 72 75 6c 65 20 74 6f 20 61 70 70 6c 79 20 74 68 65 20 72 75 6c 65 20 74 6f 20 74 72 | r.a.rule.to.apply.the.rule.to.tr |
| d00e0 | 61 66 66 69 63 20 61 62 6f 76 65 20 6f 72 20 62 65 6c 6f 77 20 61 20 73 70 65 63 69 66 69 65 64 | affic.above.or.below.a.specified |
| d0100 | 20 74 68 72 65 73 68 6f 6c 64 2e 20 54 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 72 61 74 | .threshold..To.configure.the.rat |
| d0120 | 65 20 6c 69 6d 69 74 69 6e 67 20 75 73 65 3a 00 41 20 70 61 63 6b 65 74 20 74 68 61 74 20 66 69 | e.limiting.use:.A.packet.that.fi |
| d0140 | 6e 64 73 20 61 20 6d 61 74 63 68 69 6e 67 20 65 6e 74 72 79 20 69 6e 20 74 68 65 20 66 6c 6f 77 | nds.a.matching.entry.in.the.flow |
| d0160 | 74 61 62 6c 65 20 28 66 6c 6f 77 74 61 62 6c 65 20 68 69 74 29 20 69 73 20 74 72 61 6e 73 6d 69 | table.(flowtable.hit).is.transmi |
| d0180 | 74 74 65 64 20 74 6f 20 74 68 65 20 6f 75 74 70 75 74 20 6e 65 74 64 65 76 69 63 65 2c 20 68 65 | tted.to.the.output.netdevice,.he |
| d01a0 | 6e 63 65 2c 20 70 61 63 6b 65 74 73 20 62 79 70 61 73 73 20 74 68 65 20 63 6c 61 73 73 69 63 20 | nce,.packets.bypass.the.classic. |
| d01c0 | 49 50 20 66 6f 72 77 61 72 64 69 6e 67 20 70 61 74 68 20 61 6e 64 20 75 73 65 73 20 74 68 65 20 | IP.forwarding.path.and.uses.the. |
| d01e0 | 2a 2a 46 61 73 74 20 50 61 74 68 2a 2a 20 28 6f 72 61 6e 67 65 20 63 69 72 63 6c 65 73 20 70 61 | **Fast.Path**.(orange.circles.pa |
| d0200 | 74 68 29 2e 20 54 68 65 20 76 69 73 69 62 6c 65 20 65 66 66 65 63 74 20 69 73 20 74 68 61 74 20 | th)..The.visible.effect.is.that. |
| d0220 | 79 6f 75 20 64 6f 20 6e 6f 74 20 73 65 65 20 74 68 65 73 65 20 70 61 63 6b 65 74 73 20 66 72 6f | you.do.not.see.these.packets.fro |
| d0240 | 6d 20 61 6e 79 20 6f 66 20 74 68 65 20 4e 65 74 66 69 6c 74 65 72 20 68 6f 6f 6b 73 20 63 6f 6d | m.any.of.the.Netfilter.hooks.com |
| d0260 | 69 6e 67 20 61 66 74 65 72 20 69 6e 67 72 65 73 73 2e 20 49 6e 20 63 61 73 65 20 74 68 61 74 20 | ing.after.ingress..In.case.that. |
| d0280 | 74 68 65 72 65 20 69 73 20 6e 6f 20 6d 61 74 63 68 69 6e 67 20 65 6e 74 72 79 20 69 6e 20 74 68 | there.is.no.matching.entry.in.th |
| d02a0 | 65 20 66 6c 6f 77 74 61 62 6c 65 20 28 66 6c 6f 77 74 61 62 6c 65 20 6d 69 73 73 29 2c 20 74 68 | e.flowtable.(flowtable.miss),.th |
| d02c0 | 65 20 70 61 63 6b 65 74 20 66 6f 6c 6c 6f 77 73 20 74 68 65 20 63 6c 61 73 73 69 63 20 49 50 20 | e.packet.follows.the.classic.IP. |
| d02e0 | 66 6f 72 77 61 72 64 69 6e 67 20 70 61 74 68 2e 00 41 20 70 65 6e 61 6c 74 79 20 6f 66 20 31 30 | forwarding.path..A.penalty.of.10 |
| d0300 | 30 30 20 69 73 20 61 73 73 65 73 73 65 64 20 65 61 63 68 20 74 69 6d 65 20 74 68 65 20 72 6f 75 | 00.is.assessed.each.time.the.rou |
| d0320 | 74 65 20 66 61 69 6c 73 2e 20 57 68 65 6e 20 74 68 65 20 70 65 6e 61 6c 74 69 65 73 20 72 65 61 | te.fails..When.the.penalties.rea |
| d0340 | 63 68 20 61 20 70 72 65 64 65 66 69 6e 65 64 20 74 68 72 65 73 68 6f 6c 64 20 28 73 75 70 70 72 | ch.a.predefined.threshold.(suppr |
| d0360 | 65 73 73 2d 76 61 6c 75 65 29 2c 20 74 68 65 20 72 6f 75 74 65 72 20 73 74 6f 70 73 20 61 64 76 | ess-value),.the.router.stops.adv |
| d0380 | 65 72 74 69 73 69 6e 67 20 74 68 65 20 72 6f 75 74 65 2e 00 41 20 70 68 79 73 69 63 61 6c 20 69 | ertising.the.route..A.physical.i |
| d03a0 | 6e 74 65 72 66 61 63 65 20 69 73 20 72 65 71 75 69 72 65 64 20 74 6f 20 63 6f 6e 6e 65 63 74 20 | nterface.is.required.to.connect. |
| d03c0 | 74 68 69 73 20 4d 41 43 73 65 63 20 69 6e 73 74 61 6e 63 65 20 74 6f 2e 20 54 72 61 66 66 69 63 | this.MACsec.instance.to..Traffic |
| d03e0 | 20 6c 65 61 76 69 6e 67 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 20 77 69 6c 6c 20 6e 6f 77 | .leaving.this.interface.will.now |
| d0400 | 20 62 65 20 61 75 74 68 65 6e 74 69 63 61 74 65 64 2f 65 6e 63 72 79 70 74 65 64 2e 00 41 20 70 | .be.authenticated/encrypted..A.p |
| d0420 | 6f 6f 6c 20 6f 66 20 61 64 64 72 65 73 73 65 73 20 63 61 6e 20 62 65 20 64 65 66 69 6e 65 64 20 | ool.of.addresses.can.be.defined. |
| d0440 | 62 79 20 75 73 69 6e 67 20 61 20 68 79 70 68 65 6e 20 62 65 74 77 65 65 6e 20 74 77 6f 20 49 50 | by.using.a.hyphen.between.two.IP |
| d0460 | 20 61 64 64 72 65 73 73 65 73 3a 00 41 20 70 6f 72 74 20 63 61 6e 20 62 65 20 73 65 74 20 62 79 | .addresses:.A.port.can.be.set.by |
| d0480 | 20 6e 75 6d 62 65 72 20 6f 72 20 6e 61 6d 65 20 61 73 20 64 65 66 69 6e 65 64 20 69 6e 20 60 60 | .number.or.name.as.defined.in.`` |
| d04a0 | 2f 65 74 63 2f 73 65 72 76 69 63 65 73 60 60 2e 00 41 20 70 6f 72 74 20 63 61 6e 20 62 65 20 73 | /etc/services``..A.port.can.be.s |
| d04c0 | 65 74 20 77 69 74 68 20 61 20 70 6f 72 74 20 6e 75 6d 62 65 72 20 6f 72 20 61 20 6e 61 6d 65 20 | et.with.a.port.number.or.a.name. |
| d04e0 | 77 68 69 63 68 20 69 73 20 68 65 72 65 20 64 65 66 69 6e 65 64 3a 20 60 60 2f 65 74 63 2f 73 65 | which.is.here.defined:.``/etc/se |
| d0500 | 72 76 69 63 65 73 60 60 2e 00 41 20 71 75 65 72 79 20 66 6f 72 20 77 68 69 63 68 20 74 68 65 72 | rvices``..A.query.for.which.ther |
| d0520 | 65 20 69 73 20 61 75 74 68 6f 72 69 74 61 74 69 76 65 6c 79 20 6e 6f 20 61 6e 73 77 65 72 20 69 | e.is.authoritatively.no.answer.i |
| d0540 | 73 20 63 61 63 68 65 64 20 74 6f 20 71 75 69 63 6b 6c 79 20 64 65 6e 79 20 61 20 72 65 63 6f 72 | s.cached.to.quickly.deny.a.recor |
| d0560 | 64 27 73 20 65 78 69 73 74 65 6e 63 65 20 6c 61 74 65 72 20 6f 6e 2c 20 77 69 74 68 6f 75 74 20 | d's.existence.later.on,.without. |
| d0580 | 70 75 74 74 69 6e 67 20 61 20 68 65 61 76 79 20 6c 6f 61 64 20 6f 6e 20 74 68 65 20 72 65 6d 6f | putting.a.heavy.load.on.the.remo |
| d05a0 | 74 65 20 73 65 72 76 65 72 2e 20 49 6e 20 70 72 61 63 74 69 63 65 2c 20 63 61 63 68 65 73 20 63 | te.server..In.practice,.caches.c |
| d05c0 | 61 6e 20 62 65 63 6f 6d 65 20 73 61 74 75 72 61 74 65 64 20 77 69 74 68 20 68 75 6e 64 72 65 64 | an.become.saturated.with.hundred |
| d05e0 | 73 20 6f 66 20 74 68 6f 75 73 61 6e 64 73 20 6f 66 20 68 6f 73 74 73 20 77 68 69 63 68 20 61 72 | s.of.thousands.of.hosts.which.ar |
| d0600 | 65 20 74 72 69 65 64 20 6f 6e 6c 79 20 6f 6e 63 65 2e 00 41 20 72 65 63 65 69 76 65 64 20 4e 48 | e.tried.only.once..A.received.NH |
| d0620 | 52 50 20 54 72 61 66 66 69 63 20 49 6e 64 69 63 61 74 69 6f 6e 20 77 69 6c 6c 20 74 72 69 67 67 | RP.Traffic.Indication.will.trigg |
| d0640 | 65 72 20 74 68 65 20 72 65 73 6f 6c 75 74 69 6f 6e 20 61 6e 64 20 65 73 74 61 62 6c 69 73 68 6d | er.the.resolution.and.establishm |
| d0660 | 65 6e 74 20 6f 66 20 61 20 73 68 6f 72 74 63 75 74 20 72 6f 75 74 65 2e 00 41 20 72 6f 75 74 69 | ent.of.a.shortcut.route..A.routi |
| d0680 | 6e 67 20 74 61 62 6c 65 20 49 44 20 63 61 6e 20 6e 6f 74 20 62 65 20 6d 6f 64 69 66 69 65 64 20 | ng.table.ID.can.not.be.modified. |
| d06a0 | 6f 6e 63 65 20 69 74 20 69 73 20 61 73 73 69 67 6e 65 64 2e 20 49 74 20 63 61 6e 20 6f 6e 6c 79 | once.it.is.assigned..It.can.only |
| d06c0 | 20 62 65 20 63 68 61 6e 67 65 64 20 62 79 20 64 65 6c 65 74 69 6e 67 20 61 6e 64 20 72 65 2d 61 | .be.changed.by.deleting.and.re-a |
| d06e0 | 64 64 69 6e 67 20 74 68 65 20 56 52 46 20 69 6e 73 74 61 6e 63 65 2e 00 41 20 72 75 6c 65 2d 73 | dding.the.VRF.instance..A.rule-s |
| d0700 | 65 74 20 69 73 20 61 20 6e 61 6d 65 64 20 63 6f 6c 6c 65 63 74 69 6f 6e 20 6f 66 20 66 69 72 65 | et.is.a.named.collection.of.fire |
| d0720 | 77 61 6c 6c 20 72 75 6c 65 73 20 74 68 61 74 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 64 20 74 | wall.rules.that.can.be.applied.t |
| d0740 | 6f 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 6f 72 20 61 20 7a 6f 6e 65 2e 20 45 61 63 68 20 72 | o.an.interface.or.a.zone..Each.r |
| d0760 | 75 6c 65 20 69 73 20 6e 75 6d 62 65 72 65 64 2c 20 68 61 73 20 61 6e 20 61 63 74 69 6f 6e 20 74 | ule.is.numbered,.has.an.action.t |
| d0780 | 6f 20 61 70 70 6c 79 20 69 66 20 74 68 65 20 72 75 6c 65 20 69 73 20 6d 61 74 63 68 65 64 2c 20 | o.apply.if.the.rule.is.matched,. |
| d07a0 | 61 6e 64 20 74 68 65 20 61 62 69 6c 69 74 79 20 74 6f 20 73 70 65 63 69 66 79 20 74 68 65 20 63 | and.the.ability.to.specify.the.c |
| d07c0 | 72 69 74 65 72 69 61 20 74 6f 20 6d 61 74 63 68 2e 20 44 61 74 61 20 70 61 63 6b 65 74 73 20 67 | riteria.to.match..Data.packets.g |
| d07e0 | 6f 20 74 68 72 6f 75 67 68 20 74 68 65 20 72 75 6c 65 73 20 66 72 6f 6d 20 31 20 2d 20 39 39 39 | o.through.the.rules.from.1.-.999 |
| d0800 | 39 39 39 2c 20 61 74 20 74 68 65 20 66 69 72 73 74 20 6d 61 74 63 68 20 74 68 65 20 61 63 74 69 | 999,.at.the.first.match.the.acti |
| d0820 | 6f 6e 20 6f 66 20 74 68 65 20 72 75 6c 65 20 77 69 6c 6c 20 62 65 20 65 78 65 63 75 74 65 64 2e | on.of.the.rule.will.be.executed. |
| d0840 | 00 41 20 72 75 6c 65 2d 73 65 74 20 69 73 20 61 20 6e 61 6d 65 64 20 63 6f 6c 6c 65 63 74 69 6f | .A.rule-set.is.a.named.collectio |
| d0860 | 6e 20 6f 66 20 72 75 6c 65 73 20 74 68 61 74 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 64 20 74 | n.of.rules.that.can.be.applied.t |
| d0880 | 6f 20 61 6e 20 69 6e 74 65 72 66 61 63 65 2e 20 45 61 63 68 20 72 75 6c 65 20 69 73 20 6e 75 6d | o.an.interface..Each.rule.is.num |
| d08a0 | 62 65 72 65 64 2c 20 68 61 73 20 61 6e 20 61 63 74 69 6f 6e 20 74 6f 20 61 70 70 6c 79 20 69 66 | bered,.has.an.action.to.apply.if |
| d08c0 | 20 74 68 65 20 72 75 6c 65 20 69 73 20 6d 61 74 63 68 65 64 2c 20 61 6e 64 20 74 68 65 20 61 62 | .the.rule.is.matched,.and.the.ab |
| d08e0 | 69 6c 69 74 79 20 74 6f 20 73 70 65 63 69 66 79 20 74 68 65 20 63 72 69 74 65 72 69 61 20 74 6f | ility.to.specify.the.criteria.to |
| d0900 | 20 6d 61 74 63 68 2e 20 44 61 74 61 20 70 61 63 6b 65 74 73 20 67 6f 20 74 68 72 6f 75 67 68 20 | .match..Data.packets.go.through. |
| d0920 | 74 68 65 20 72 75 6c 65 73 20 66 72 6f 6d 20 31 20 2d 20 39 39 39 39 39 39 2c 20 61 74 20 74 68 | the.rules.from.1.-.999999,.at.th |
| d0940 | 65 20 66 69 72 73 74 20 6d 61 74 63 68 20 74 68 65 20 61 63 74 69 6f 6e 20 6f 66 20 74 68 65 20 | e.first.match.the.action.of.the. |
| d0960 | 72 75 6c 65 20 77 69 6c 6c 20 62 65 20 65 78 65 63 75 74 65 64 2e 00 41 20 73 63 72 69 70 74 20 | rule.will.be.executed..A.script. |
| d0980 | 63 61 6e 20 62 65 20 72 75 6e 20 77 68 65 6e 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 73 74 61 | can.be.run.when.an.interface.sta |
| d09a0 | 74 65 20 63 68 61 6e 67 65 20 6f 63 63 75 72 73 2e 20 53 63 72 69 70 74 73 20 61 72 65 20 72 75 | te.change.occurs..Scripts.are.ru |
| d09c0 | 6e 20 66 72 6f 6d 20 2f 63 6f 6e 66 69 67 2f 73 63 72 69 70 74 73 2c 20 66 6f 72 20 61 20 64 69 | n.from./config/scripts,.for.a.di |
| d09e0 | 66 66 65 72 65 6e 74 20 6c 6f 63 61 74 69 6f 6e 20 73 70 65 63 69 66 79 20 74 68 65 20 66 75 6c | fferent.location.specify.the.ful |
| d0a00 | 6c 20 70 61 74 68 3a 00 41 20 73 65 67 6d 65 6e 74 20 49 44 20 74 68 61 74 20 63 6f 6e 74 61 69 | l.path:.A.segment.ID.that.contai |
| d0a20 | 6e 73 20 61 6e 20 49 50 20 61 64 64 72 65 73 73 20 70 72 65 66 69 78 20 63 61 6c 63 75 6c 61 74 | ns.an.IP.address.prefix.calculat |
| d0a40 | 65 64 20 62 79 20 61 6e 20 49 47 50 20 69 6e 20 74 68 65 20 73 65 72 76 69 63 65 20 70 72 6f 76 | ed.by.an.IGP.in.the.service.prov |
| d0a60 | 69 64 65 72 20 63 6f 72 65 20 6e 65 74 77 6f 72 6b 2e 20 50 72 65 66 69 78 20 53 49 44 73 20 61 | ider.core.network..Prefix.SIDs.a |
| d0a80 | 72 65 20 67 6c 6f 62 61 6c 6c 79 20 75 6e 69 71 75 65 2c 20 74 68 69 73 20 76 61 6c 75 65 20 69 | re.globally.unique,.this.value.i |
| d0aa0 | 6e 64 65 6e 74 69 66 79 20 69 74 00 41 20 73 65 6e 64 69 6e 67 20 73 74 61 74 69 6f 6e 20 28 63 | ndentify.it.A.sending.station.(c |
| d0ac0 | 6f 6d 70 75 74 65 72 20 6f 72 20 6e 65 74 77 6f 72 6b 20 73 77 69 74 63 68 29 20 6d 61 79 20 62 | omputer.or.network.switch).may.b |
| d0ae0 | 65 20 74 72 61 6e 73 6d 69 74 74 69 6e 67 20 64 61 74 61 20 66 61 73 74 65 72 20 74 68 61 6e 20 | e.transmitting.data.faster.than. |
| d0b00 | 74 68 65 20 6f 74 68 65 72 20 65 6e 64 20 6f 66 20 74 68 65 20 6c 69 6e 6b 20 63 61 6e 20 61 63 | the.other.end.of.the.link.can.ac |
| d0b20 | 63 65 70 74 20 69 74 2e 20 55 73 69 6e 67 20 66 6c 6f 77 20 63 6f 6e 74 72 6f 6c 2c 20 74 68 65 | cept.it..Using.flow.control,.the |
| d0b40 | 20 72 65 63 65 69 76 69 6e 67 20 73 74 61 74 69 6f 6e 20 63 61 6e 20 73 69 67 6e 61 6c 20 74 68 | .receiving.station.can.signal.th |
| d0b60 | 65 20 73 65 6e 64 65 72 20 72 65 71 75 65 73 74 69 6e 67 20 73 75 73 70 65 6e 73 69 6f 6e 20 6f | e.sender.requesting.suspension.o |
| d0b80 | 66 20 74 72 61 6e 73 6d 69 73 73 69 6f 6e 73 20 75 6e 74 69 6c 20 74 68 65 20 72 65 63 65 69 76 | f.transmissions.until.the.receiv |
| d0ba0 | 65 72 20 63 61 74 63 68 65 73 20 75 70 2e 00 41 20 73 68 61 72 65 64 20 6e 65 74 77 6f 72 6b 20 | er.catches.up..A.shared.network. |
| d0bc0 | 6e 61 6d 65 64 20 60 60 4e 45 54 31 60 60 20 73 65 72 76 65 73 20 73 75 62 6e 65 74 20 60 60 32 | named.``NET1``.serves.subnet.``2 |
| d0be0 | 30 30 31 3a 64 62 38 3a 3a 2f 36 34 60 60 00 41 20 73 68 61 72 65 64 20 6e 65 74 77 6f 72 6b 20 | 001:db8::/64``.A.shared.network. |
| d0c00 | 6e 61 6d 65 64 20 60 60 50 44 2d 4e 45 54 60 60 20 73 65 72 76 65 73 20 73 75 62 6e 65 74 20 60 | named.``PD-NET``.serves.subnet.` |
| d0c20 | 60 32 30 30 31 3a 64 62 38 3a 3a 2f 36 34 60 60 2e 00 41 20 73 69 6d 70 6c 65 20 42 47 50 20 63 | `2001:db8::/64``..A.simple.BGP.c |
| d0c40 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 76 69 61 20 49 50 76 36 2e 00 41 20 73 69 6d 70 6c 65 20 | onfiguration.via.IPv6..A.simple. |
| d0c60 | 52 61 6e 64 6f 6d 20 45 61 72 6c 79 20 44 65 74 65 63 74 69 6f 6e 20 28 52 45 44 29 20 70 6f 6c | Random.Early.Detection.(RED).pol |
| d0c80 | 69 63 79 20 77 6f 75 6c 64 20 73 74 61 72 74 20 72 61 6e 64 6f 6d 6c 79 20 64 72 6f 70 70 69 6e | icy.would.start.randomly.droppin |
| d0ca0 | 67 20 70 61 63 6b 65 74 73 20 66 72 6f 6d 20 61 20 71 75 65 75 65 20 62 65 66 6f 72 65 20 69 74 | g.packets.from.a.queue.before.it |
| d0cc0 | 20 72 65 61 63 68 65 73 20 69 74 73 20 71 75 65 75 65 20 6c 69 6d 69 74 20 74 68 75 73 20 61 76 | .reaches.its.queue.limit.thus.av |
| d0ce0 | 6f 69 64 69 6e 67 20 63 6f 6e 67 65 73 74 69 6f 6e 2e 20 54 68 61 74 20 69 73 20 67 6f 6f 64 20 | oiding.congestion..That.is.good. |
| d0d00 | 66 6f 72 20 54 43 50 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 61 73 20 74 68 65 20 67 72 61 64 75 | for.TCP.connections.as.the.gradu |
| d0d20 | 61 6c 20 64 72 6f 70 70 69 6e 67 20 6f 66 20 70 61 63 6b 65 74 73 20 61 63 74 73 20 61 73 20 61 | al.dropping.of.packets.acts.as.a |
| d0d40 | 20 73 69 67 6e 61 6c 20 66 6f 72 20 74 68 65 20 73 65 6e 64 65 72 20 74 6f 20 64 65 63 72 65 61 | .signal.for.the.sender.to.decrea |
| d0d60 | 73 65 20 69 74 73 20 74 72 61 6e 73 6d 69 73 73 69 6f 6e 20 72 61 74 65 2e 00 41 20 73 69 6d 70 | se.its.transmission.rate..A.simp |
| d0d80 | 6c 65 20 65 42 47 50 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 00 41 20 73 69 6d 70 6c 65 20 | le.eBGP.configuration:.A.simple. |
| d0da0 | 65 78 61 6d 70 6c 65 20 6f 66 20 53 68 61 70 65 72 20 75 73 69 6e 67 20 70 72 69 6f 72 69 74 69 | example.of.Shaper.using.prioriti |
| d0dc0 | 65 73 2e 00 41 20 73 69 6d 70 6c 65 20 65 78 61 6d 70 6c 65 20 6f 66 20 61 6e 20 46 51 2d 43 6f | es..A.simple.example.of.an.FQ-Co |
| d0de0 | 44 65 6c 20 70 6f 6c 69 63 79 20 77 6f 72 6b 69 6e 67 20 69 6e 73 69 64 65 20 61 20 53 68 61 70 | Del.policy.working.inside.a.Shap |
| d0e00 | 65 72 20 6f 6e 65 2e 00 41 20 73 69 6d 70 6c 69 66 69 65 64 20 74 72 61 66 66 69 63 20 66 6c 6f | er.one..A.simplified.traffic.flo |
| d0e20 | 77 20 64 69 61 67 72 61 6d 2c 20 62 61 73 65 64 20 6f 6e 20 4e 65 74 66 69 6c 74 65 72 20 70 61 | w.diagram,.based.on.Netfilter.pa |
| d0e40 | 63 6b 65 74 20 66 6c 6f 77 2c 20 69 73 20 73 68 6f 77 6e 20 6e 65 78 74 2c 20 69 6e 20 6f 72 64 | cket.flow,.is.shown.next,.in.ord |
| d0e60 | 65 72 20 74 6f 20 68 61 76 65 20 61 20 66 75 6c 6c 20 76 69 65 77 20 61 6e 64 20 75 6e 64 65 72 | er.to.have.a.full.view.and.under |
| d0e80 | 73 74 61 6e 64 69 6e 67 20 6f 66 20 68 6f 77 20 70 61 63 6b 65 74 73 20 61 72 65 20 70 72 6f 63 | standing.of.how.packets.are.proc |
| d0ea0 | 65 73 73 65 64 2c 20 61 6e 64 20 77 68 61 74 20 70 6f 73 73 69 62 6c 65 20 70 61 74 68 73 20 74 | essed,.and.what.possible.paths.t |
| d0ec0 | 72 61 66 66 69 63 20 63 61 6e 20 74 61 6b 65 2e 00 41 20 73 69 6d 70 6c 69 66 69 65 64 20 74 72 | raffic.can.take..A.simplified.tr |
| d0ee0 | 61 66 66 69 63 20 66 6c 6f 77 2c 20 62 61 73 65 64 20 6f 6e 20 4e 65 74 66 69 6c 74 65 72 20 70 | affic.flow,.based.on.Netfilter.p |
| d0f00 | 61 63 6b 65 74 20 66 6c 6f 77 2c 20 69 73 20 73 68 6f 77 6e 20 6e 65 78 74 2c 20 69 6e 20 6f 72 | acket.flow,.is.shown.next,.in.or |
| d0f20 | 64 65 72 20 74 6f 20 68 61 76 65 20 61 20 66 75 6c 6c 20 76 69 65 77 20 61 6e 64 20 75 6e 64 65 | der.to.have.a.full.view.and.unde |
| d0f40 | 72 73 74 61 6e 64 69 6e 67 20 6f 66 20 68 6f 77 20 70 61 63 6b 65 74 73 20 61 72 65 20 70 72 6f | rstanding.of.how.packets.are.pro |
| d0f60 | 63 65 73 73 65 64 2c 20 61 6e 64 20 77 68 61 74 20 70 6f 73 73 69 62 6c 65 20 70 61 74 68 73 20 | cessed,.and.what.possible.paths. |
| d0f80 | 63 61 6e 20 74 61 6b 65 2e 00 41 20 73 69 6e 67 6c 65 20 69 6e 74 65 72 6e 61 6c 20 6e 65 74 77 | can.take..A.single.internal.netw |
| d0fa0 | 6f 72 6b 20 61 6e 64 20 65 78 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 2e 20 55 73 65 20 74 68 | ork.and.external.network..Use.th |
| d0fc0 | 65 20 4e 41 54 36 36 20 64 65 76 69 63 65 20 74 6f 20 63 6f 6e 6e 65 63 74 20 61 20 73 69 6e 67 | e.NAT66.device.to.connect.a.sing |
| d0fe0 | 6c 65 20 69 6e 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 20 61 6e 64 20 70 75 62 6c 69 63 20 6e | le.internal.network.and.public.n |
| d1000 | 65 74 77 6f 72 6b 2c 20 61 6e 64 20 74 68 65 20 68 6f 73 74 73 20 69 6e 20 74 68 65 20 69 6e 74 | etwork,.and.the.hosts.in.the.int |
| d1020 | 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 20 75 73 65 20 49 50 76 36 20 61 64 64 72 65 73 73 20 70 | ernal.network.use.IPv6.address.p |
| d1040 | 72 65 66 69 78 65 73 20 74 68 61 74 20 6f 6e 6c 79 20 73 75 70 70 6f 72 74 20 72 6f 75 74 69 6e | refixes.that.only.support.routin |
| d1060 | 67 20 77 69 74 68 69 6e 20 74 68 65 20 6c 6f 63 61 6c 20 72 61 6e 67 65 2e 20 57 68 65 6e 20 61 | g.within.the.local.range..When.a |
| d1080 | 20 68 6f 73 74 20 69 6e 20 74 68 65 20 69 6e 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 20 61 63 | .host.in.the.internal.network.ac |
| d10a0 | 63 65 73 73 65 73 20 74 68 65 20 65 78 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 2c 20 74 68 65 | cesses.the.external.network,.the |
| d10c0 | 20 73 6f 75 72 63 65 20 49 50 76 36 20 61 64 64 72 65 73 73 20 70 72 65 66 69 78 20 69 6e 20 74 | .source.IPv6.address.prefix.in.t |
| d10e0 | 68 65 20 6d 65 73 73 61 67 65 20 77 69 6c 6c 20 62 65 20 63 6f 6e 76 65 72 74 65 64 20 69 6e 74 | he.message.will.be.converted.int |
| d1100 | 6f 20 61 20 67 6c 6f 62 61 6c 20 75 6e 69 63 61 73 74 20 49 50 76 36 20 61 64 64 72 65 73 73 20 | o.a.global.unicast.IPv6.address. |
| d1120 | 70 72 65 66 69 78 20 62 79 20 74 68 65 20 4e 41 54 36 36 20 64 65 76 69 63 65 2e 00 41 20 73 74 | prefix.by.the.NAT66.device..A.st |
| d1140 | 61 74 69 6f 6e 20 61 63 74 73 20 61 73 20 61 20 57 69 2d 46 69 20 63 6c 69 65 6e 74 20 61 63 63 | ation.acts.as.a.Wi-Fi.client.acc |
| d1160 | 65 73 73 69 6e 67 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 74 68 72 6f 75 67 68 20 61 6e 20 61 76 | essing.the.network.through.an.av |
| d1180 | 61 69 6c 61 62 6c 65 20 57 41 50 00 41 20 73 79 6e 63 20 67 72 6f 75 70 20 61 6c 6c 6f 77 73 20 | ailable.WAP.A.sync.group.allows. |
| d11a0 | 56 52 52 50 20 67 72 6f 75 70 73 20 74 6f 20 74 72 61 6e 73 69 74 69 6f 6e 20 74 6f 67 65 74 68 | VRRP.groups.to.transition.togeth |
| d11c0 | 65 72 2e 00 41 20 74 79 70 69 63 61 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 75 73 69 6e | er..A.typical.configuration.usin |
| d11e0 | 67 20 32 20 6e 6f 64 65 73 2e 00 41 20 74 79 70 69 63 61 6c 20 70 72 6f 62 6c 65 6d 20 77 69 74 | g.2.nodes..A.typical.problem.wit |
| d1200 | 68 20 75 73 69 6e 67 20 4e 41 54 20 61 6e 64 20 68 6f 73 74 69 6e 67 20 70 75 62 6c 69 63 20 73 | h.using.NAT.and.hosting.public.s |
| d1220 | 65 72 76 65 72 73 20 69 73 20 74 68 65 20 61 62 69 6c 69 74 79 20 66 6f 72 20 69 6e 74 65 72 6e | ervers.is.the.ability.for.intern |
| d1240 | 61 6c 20 73 79 73 74 65 6d 73 20 74 6f 20 72 65 61 63 68 20 61 6e 20 69 6e 74 65 72 6e 61 6c 20 | al.systems.to.reach.an.internal. |
| d1260 | 73 65 72 76 65 72 20 75 73 69 6e 67 20 69 74 27 73 20 65 78 74 65 72 6e 61 6c 20 49 50 20 61 64 | server.using.it's.external.IP.ad |
| d1280 | 64 72 65 73 73 2e 20 54 68 65 20 73 6f 6c 75 74 69 6f 6e 20 74 6f 20 74 68 69 73 20 69 73 20 75 | dress..The.solution.to.this.is.u |
| d12a0 | 73 75 61 6c 6c 79 20 74 68 65 20 75 73 65 20 6f 66 20 73 70 6c 69 74 2d 44 4e 53 20 74 6f 20 63 | sually.the.use.of.split-DNS.to.c |
| d12c0 | 6f 72 72 65 63 74 6c 79 20 70 6f 69 6e 74 20 68 6f 73 74 20 73 79 73 74 65 6d 73 20 74 6f 20 74 | orrectly.point.host.systems.to.t |
| d12e0 | 68 65 20 69 6e 74 65 72 6e 61 6c 20 61 64 64 72 65 73 73 20 77 68 65 6e 20 72 65 71 75 65 73 74 | he.internal.address.when.request |
| d1300 | 73 20 61 72 65 20 6d 61 64 65 20 69 6e 74 65 72 6e 61 6c 6c 79 2e 20 42 65 63 61 75 73 65 20 6d | s.are.made.internally..Because.m |
| d1320 | 61 6e 79 20 73 6d 61 6c 6c 65 72 20 6e 65 74 77 6f 72 6b 73 20 6c 61 63 6b 20 44 4e 53 20 69 6e | any.smaller.networks.lack.DNS.in |
| d1340 | 66 72 61 73 74 72 75 63 74 75 72 65 2c 20 61 20 77 6f 72 6b 2d 61 72 6f 75 6e 64 20 69 73 20 63 | frastructure,.a.work-around.is.c |
| d1360 | 6f 6d 6d 6f 6e 6c 79 20 64 65 70 6c 6f 79 65 64 20 74 6f 20 66 61 63 69 6c 69 74 61 74 65 20 74 | ommonly.deployed.to.facilitate.t |
| d1380 | 68 65 20 74 72 61 66 66 69 63 20 62 79 20 4e 41 54 69 6e 67 20 74 68 65 20 72 65 71 75 65 73 74 | he.traffic.by.NATing.the.request |
| d13a0 | 20 66 72 6f 6d 20 69 6e 74 65 72 6e 61 6c 20 68 6f 73 74 73 20 74 6f 20 74 68 65 20 73 6f 75 72 | .from.internal.hosts.to.the.sour |
| d13c0 | 63 65 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 69 6e 74 65 72 6e 61 6c 20 69 6e 74 65 72 | ce.address.of.the.internal.inter |
| d13e0 | 66 61 63 65 20 6f 6e 20 74 68 65 20 66 69 72 65 77 61 6c 6c 2e 00 41 20 75 73 65 72 20 66 72 69 | face.on.the.firewall..A.user.fri |
| d1400 | 65 6e 64 6c 79 20 61 6c 69 61 73 20 66 6f 72 20 74 68 69 73 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e | endly.alias.for.this.connection. |
| d1420 | 20 43 61 6e 20 62 65 20 75 73 65 64 20 69 6e 73 74 65 61 64 20 6f 66 20 74 68 65 20 64 65 76 69 | .Can.be.used.instead.of.the.devi |
| d1440 | 63 65 20 6e 61 6d 65 20 77 68 65 6e 20 63 6f 6e 6e 65 63 74 69 6e 67 2e 00 41 20 75 73 65 72 20 | ce.name.when.connecting..A.user. |
| d1460 | 66 72 69 65 6e 64 6c 79 20 64 65 73 63 72 69 70 74 69 6f 6e 20 69 64 65 6e 74 69 66 79 69 6e 67 | friendly.description.identifying |
| d1480 | 20 74 68 65 20 63 6f 6e 6e 65 63 74 65 64 20 70 65 72 69 70 68 65 72 61 6c 2e 00 41 20 76 61 6c | .the.connected.peripheral..A.val |
| d14a0 | 75 65 20 6f 66 20 30 20 64 69 73 61 62 6c 65 73 20 41 52 50 20 6d 6f 6e 69 74 6f 72 69 6e 67 2e | ue.of.0.disables.ARP.monitoring. |
| d14c0 | 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 30 2e 00 41 20 76 61 6c 75 65 | .The.default.value.is.0..A.value |
| d14e0 | 20 6f 66 20 32 39 36 20 77 6f 72 6b 73 20 77 65 6c 6c 20 6f 6e 20 76 65 72 79 20 73 6c 6f 77 20 | .of.296.works.well.on.very.slow. |
| d1500 | 6c 69 6e 6b 73 20 28 34 30 20 62 79 74 65 73 20 66 6f 72 20 54 43 50 2f 49 50 20 68 65 61 64 65 | links.(40.bytes.for.TCP/IP.heade |
| d1520 | 72 20 2b 20 32 35 36 20 62 79 74 65 73 20 6f 66 20 64 61 74 61 29 2e 00 41 20 76 65 72 79 20 73 | r.+.256.bytes.of.data)..A.very.s |
| d1540 | 6d 61 6c 6c 20 62 75 66 66 65 72 20 77 69 6c 6c 20 73 6f 6f 6e 20 73 74 61 72 74 20 64 72 6f 70 | mall.buffer.will.soon.start.drop |
| d1560 | 70 69 6e 67 20 70 61 63 6b 65 74 73 2e 00 41 20 7a 6f 6e 65 20 6d 75 73 74 20 62 65 20 63 6f 6e | ping.packets..A.zone.must.be.con |
| d1580 | 66 69 67 75 72 65 64 20 62 65 66 6f 72 65 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 61 | figured.before.an.interface.is.a |
| d15a0 | 73 73 69 67 6e 65 64 20 74 6f 20 69 74 20 61 6e 64 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 63 | ssigned.to.it.and.an.interface.c |
| d15c0 | 61 6e 20 62 65 20 61 73 73 69 67 6e 65 64 20 74 6f 20 6f 6e 6c 79 20 61 20 73 69 6e 67 6c 65 20 | an.be.assigned.to.only.a.single. |
| d15e0 | 7a 6f 6e 65 2e 00 41 43 4d 45 00 41 43 4d 45 20 44 69 72 65 63 74 6f 72 79 20 52 65 73 6f 75 72 | zone..ACME.ACME.Directory.Resour |
| d1600 | 63 65 20 55 52 49 2e 00 41 50 49 00 41 52 50 00 41 62 6f 76 65 20 63 6f 6d 6d 61 6e 64 20 77 69 | ce.URI..API.ARP.Above.command.wi |
| d1620 | 6c 6c 20 75 73 65 20 60 31 30 2e 30 2e 30 2e 33 60 20 61 73 20 73 6f 75 72 63 65 20 49 50 76 34 | ll.use.`10.0.0.3`.as.source.IPv4 |
| d1640 | 20 61 64 64 72 65 73 73 20 66 6f 72 20 61 6c 6c 20 52 41 44 49 55 53 20 71 75 65 72 69 65 73 20 | .address.for.all.RADIUS.queries. |
| d1660 | 6f 6e 20 74 68 69 73 20 4e 41 53 2e 00 41 62 6f 76 65 2c 20 63 6f 6d 6d 61 6e 64 20 73 79 6e 74 | on.this.NAS..Above,.command.synt |
| d1680 | 61 78 20 69 73 6e 20 6e 6f 74 65 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 64 79 6e 61 6d 69 | ax.isn.noted.to.configure.dynami |
| d16a0 | 63 20 64 6e 73 20 6f 6e 20 61 20 73 70 65 63 69 66 69 63 20 69 6e 74 65 72 66 61 63 65 2e 20 49 | c.dns.on.a.specific.interface..I |
| d16c0 | 74 20 69 73 20 70 6f 73 73 69 62 6c 65 20 74 6f 20 6f 76 65 72 6c 6f 6f 6b 20 74 68 65 20 61 64 | t.is.possible.to.overlook.the.ad |
| d16e0 | 64 69 74 69 6f 6e 61 6c 20 61 64 64 72 65 73 73 20 6f 70 74 69 6f 6e 2c 20 77 65 62 2c 20 77 68 | ditional.address.option,.web,.wh |
| d1700 | 65 6e 20 63 6f 6d 70 6c 65 74 65 69 6e 67 20 74 68 6f 73 65 20 63 6f 6d 6d 61 6e 64 73 2e 20 64 | en.completeing.those.commands..d |
| d1720 | 64 63 6c 69 65 6e 74 5f 20 68 61 73 20 61 6e 6f 74 68 65 72 20 77 61 79 20 74 6f 20 64 65 74 65 | dclient_.has.another.way.to.dete |
| d1740 | 72 6d 69 6e 65 20 74 68 65 20 57 41 4e 20 49 50 20 61 64 64 72 65 73 73 2c 20 75 73 69 6e 67 20 | rmine.the.WAN.IP.address,.using. |
| d1760 | 61 20 77 65 62 2d 62 61 73 65 64 20 75 72 6c 20 74 6f 20 64 65 74 65 72 6d 69 6e 65 20 74 68 65 | a.web-based.url.to.determine.the |
| d1780 | 20 65 78 74 65 72 6e 61 6c 20 49 50 2e 20 45 61 63 68 20 6f 66 20 74 68 65 20 63 6f 6d 6d 61 6e | .external.IP..Each.of.the.comman |
| d17a0 | 64 73 20 61 62 6f 76 65 20 77 69 6c 6c 20 6e 65 65 64 20 74 6f 20 62 65 20 6d 6f 64 69 66 69 65 | ds.above.will.need.to.be.modifie |
| d17c0 | 64 20 74 6f 20 75 73 65 20 27 77 65 62 27 20 61 73 20 74 68 65 20 27 69 6e 74 65 72 66 61 63 65 | d.to.use.'web'.as.the.'interface |
| d17e0 | 27 20 73 70 65 63 69 66 69 65 64 20 69 66 20 74 68 69 73 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 | '.specified.if.this.functionalit |
| d1800 | 79 20 69 73 20 74 6f 20 62 65 20 75 74 69 6c 69 7a 65 64 2e 00 41 63 63 65 6c 65 72 61 74 69 6f | y.is.to.be.utilized..Acceleratio |
| d1820 | 6e 00 41 63 63 65 70 74 20 53 53 48 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 66 6f 72 20 74 68 65 | n.Accept.SSH.connections.for.the |
| d1840 | 20 67 69 76 65 6e 20 60 3c 64 65 76 69 63 65 3e 60 20 6f 6e 20 54 43 50 20 70 6f 72 74 20 60 3c | .given.`<device>`.on.TCP.port.`< |
| d1860 | 70 6f 72 74 3e 60 2e 20 41 66 74 65 72 20 73 75 63 63 65 73 73 66 75 6c 6c 20 61 75 74 68 65 6e | port>`..After.successfull.authen |
| d1880 | 74 69 63 61 74 69 6f 6e 20 74 68 65 20 75 73 65 72 20 77 69 6c 6c 20 62 65 20 64 69 72 65 63 74 | tication.the.user.will.be.direct |
| d18a0 | 6c 79 20 64 72 6f 70 70 65 64 20 74 6f 20 74 68 65 20 63 6f 6e 6e 65 63 74 65 64 20 73 65 72 69 | ly.dropped.to.the.connected.seri |
| d18c0 | 61 6c 20 64 65 76 69 63 65 2e 00 41 63 63 65 70 74 20 6f 6e 6c 79 20 63 65 72 74 61 69 6e 20 70 | al.device..Accept.only.certain.p |
| d18e0 | 72 6f 74 6f 63 6f 6c 73 3a 20 59 6f 75 20 6d 61 79 20 77 61 6e 74 20 74 6f 20 72 65 70 6c 69 63 | rotocols:.You.may.want.to.replic |
| d1900 | 61 74 65 20 74 68 65 20 73 74 61 74 65 20 6f 66 20 66 6c 6f 77 73 20 64 65 70 65 6e 64 69 6e 67 | ate.the.state.of.flows.depending |
| d1920 | 20 6f 6e 20 74 68 65 69 72 20 6c 61 79 65 72 20 34 20 70 72 6f 74 6f 63 6f 6c 2e 00 41 63 63 65 | .on.their.layer.4.protocol..Acce |
| d1940 | 70 74 20 70 65 65 72 20 69 6e 74 65 72 66 61 63 65 20 69 64 65 6e 74 69 66 69 65 72 2e 20 42 79 | pt.peer.interface.identifier..By |
| d1960 | 20 64 65 66 61 75 6c 74 20 69 73 20 6e 6f 74 20 64 65 66 69 6e 65 64 2e 00 41 63 63 65 70 74 20 | .default.is.not.defined..Accept. |
| d1980 | 70 65 65 72 20 69 6e 74 65 72 66 61 63 65 20 69 64 65 6e 74 69 66 69 65 72 2e 20 42 79 20 64 65 | peer.interface.identifier..By.de |
| d19a0 | 66 61 75 6c 74 20 74 68 69 73 20 69 73 20 6e 6f 74 20 64 65 66 69 6e 65 64 2e 00 41 63 63 65 70 | fault.this.is.not.defined..Accep |
| d19c0 | 74 61 62 6c 65 20 72 61 74 65 20 6f 66 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 28 65 2e 67 2e 20 | table.rate.of.connections.(e.g.. |
| d19e0 | 31 2f 6d 69 6e 2c 20 36 30 2f 73 65 63 29 00 41 63 63 65 73 73 20 4c 69 73 74 20 50 6f 6c 69 63 | 1/min,.60/sec).Access.List.Polic |
| d1a00 | 79 00 41 63 63 65 73 73 20 4c 69 73 74 73 00 41 63 74 69 6f 6e 20 6d 75 73 74 20 62 65 20 74 61 | y.Access.Lists.Action.must.be.ta |
| d1a20 | 6b 65 6e 20 69 6d 6d 65 64 69 61 74 65 6c 79 20 2d 20 41 20 63 6f 6e 64 69 74 69 6f 6e 20 74 68 | ken.immediately.-.A.condition.th |
| d1a40 | 61 74 20 73 68 6f 75 6c 64 20 62 65 20 63 6f 72 72 65 63 74 65 64 20 69 6d 6d 65 64 69 61 74 65 | at.should.be.corrected.immediate |
| d1a60 | 6c 79 2c 20 73 75 63 68 20 61 73 20 61 20 63 6f 72 72 75 70 74 65 64 20 73 79 73 74 65 6d 20 64 | ly,.such.as.a.corrupted.system.d |
| d1a80 | 61 74 61 62 61 73 65 2e 00 41 63 74 69 6f 6e 20 77 68 69 63 68 20 77 69 6c 6c 20 62 65 20 72 75 | atabase..Action.which.will.be.ru |
| d1aa0 | 6e 20 6f 6e 63 65 20 74 68 65 20 63 74 72 6c 2d 61 6c 74 2d 64 65 6c 20 6b 65 79 73 74 72 6f 6b | n.once.the.ctrl-alt-del.keystrok |
| d1ac0 | 65 20 69 73 20 72 65 63 65 69 76 65 64 2e 00 41 63 74 69 6f 6e 73 00 41 63 74 69 76 65 20 44 69 | e.is.received..Actions.Active.Di |
| d1ae0 | 72 65 63 74 6f 72 79 00 41 63 74 69 76 65 20 68 65 61 6c 74 68 20 63 68 65 63 6b 20 62 61 63 6b | rectory.Active.health.check.back |
| d1b00 | 65 6e 64 20 73 65 72 76 65 72 00 41 64 64 20 4e 54 41 20 28 6e 65 67 61 74 69 76 65 20 74 72 75 | end.server.Add.NTA.(negative.tru |
| d1b20 | 73 74 20 61 6e 63 68 6f 72 29 20 66 6f 72 20 74 68 69 73 20 64 6f 6d 61 69 6e 2e 20 54 68 69 73 | st.anchor).for.this.domain..This |
| d1b40 | 20 6d 75 73 74 20 62 65 20 73 65 74 20 69 66 20 74 68 65 20 64 6f 6d 61 69 6e 20 64 6f 65 73 20 | .must.be.set.if.the.domain.does. |
| d1b60 | 6e 6f 74 20 73 75 70 70 6f 72 74 20 44 4e 53 53 45 43 2e 00 41 64 64 20 50 6f 77 65 72 20 43 6f | not.support.DNSSEC..Add.Power.Co |
| d1b80 | 6e 73 74 72 61 69 6e 74 20 65 6c 65 6d 65 6e 74 20 74 6f 20 42 65 61 63 6f 6e 20 61 6e 64 20 50 | nstraint.element.to.Beacon.and.P |
| d1ba0 | 72 6f 62 65 20 52 65 73 70 6f 6e 73 65 20 66 72 61 6d 65 73 2e 00 41 64 64 20 61 20 66 6f 72 77 | robe.Response.frames..Add.a.forw |
| d1bc0 | 61 72 64 69 6e 67 20 72 75 6c 65 20 6d 61 74 63 68 69 6e 67 20 55 44 50 20 70 6f 72 74 20 6f 6e | arding.rule.matching.UDP.port.on |
| d1be0 | 20 79 6f 75 72 20 69 6e 74 65 72 6e 65 74 20 72 6f 75 74 65 72 2e 00 41 64 64 20 61 20 68 6f 73 | .your.internet.router..Add.a.hos |
| d1c00 | 74 20 64 65 76 69 63 65 20 74 6f 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 2e 00 41 64 64 20 61 | t.device.to.the.container..Add.a |
| d1c20 | 63 63 65 73 73 2d 63 6f 6e 74 72 6f 6c 20 64 69 72 65 63 74 69 76 65 20 74 6f 20 61 6c 6c 6f 77 | ccess-control.directive.to.allow |
| d1c40 | 20 6f 72 20 64 65 6e 79 20 75 73 65 72 73 20 61 6e 64 20 67 72 6f 75 70 73 2e 20 44 69 72 65 63 | .or.deny.users.and.groups..Direc |
| d1c60 | 74 69 76 65 73 20 61 72 65 20 70 72 6f 63 65 73 73 65 64 20 69 6e 20 74 68 65 20 66 6f 6c 6c 6f | tives.are.processed.in.the.follo |
| d1c80 | 77 69 6e 67 20 6f 72 64 65 72 20 6f 66 20 70 72 65 63 65 64 65 6e 63 65 3a 20 60 60 64 65 6e 79 | wing.order.of.precedence:.``deny |
| d1ca0 | 2d 75 73 65 72 73 60 60 2c 20 60 60 61 6c 6c 6f 77 2d 75 73 65 72 73 60 60 2c 20 60 60 64 65 6e | -users``,.``allow-users``,.``den |
| d1cc0 | 79 2d 67 72 6f 75 70 73 60 60 20 61 6e 64 20 60 60 61 6c 6c 6f 77 2d 67 72 6f 75 70 73 60 60 2e | y-groups``.and.``allow-groups``. |
| d1ce0 | 00 41 64 64 20 63 75 73 74 6f 6d 20 65 6e 76 69 72 6f 6e 6d 65 6e 74 20 76 61 72 69 61 62 6c 65 | .Add.custom.environment.variable |
| d1d00 | 73 2e 20 4d 75 6c 74 69 70 6c 65 20 65 6e 76 69 72 6f 6e 6d 65 6e 74 20 76 61 72 69 61 62 6c 65 | s..Multiple.environment.variable |
| d1d20 | 73 20 61 72 65 20 61 6c 6c 6f 77 65 64 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d | s.are.allowed..The.following.com |
| d1d40 | 6d 61 6e 64 73 20 74 72 61 6e 73 6c 61 74 65 20 74 6f 20 22 2d 65 20 6b 65 79 3d 76 61 6c 75 65 | mands.translate.to."-e.key=value |
| d1d60 | 22 20 77 68 65 6e 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 20 69 73 20 63 72 65 61 74 65 64 2e | ".when.the.container.is.created. |
| d1d80 | 00 41 64 64 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 73 20 66 6f 72 20 72 6f 75 74 69 6e 67 20 | .Add.default.routes.for.routing. |
| d1da0 | 60 60 74 61 62 6c 65 20 31 30 60 60 20 61 6e 64 20 60 60 74 61 62 6c 65 20 31 31 60 60 00 41 64 | ``table.10``.and.``table.11``.Ad |
| d1dc0 | 64 20 64 65 73 63 72 69 70 74 69 6f 6e 20 74 6f 20 66 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 73 | d.description.to.firewall.groups |
| d1de0 | 3a 00 41 64 64 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 | :.Add.destination.IP.address.of. |
| d1e00 | 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 6f 20 61 20 64 79 6e 61 6d 69 63 20 61 64 64 72 | the.connection.to.a.dynamic.addr |
| d1e20 | 65 73 73 20 67 72 6f 75 70 3a 00 41 64 64 20 6d 65 74 61 64 61 74 61 20 6c 61 62 65 6c 20 66 6f | ess.group:.Add.metadata.label.fo |
| d1e40 | 72 20 74 68 69 73 20 63 6f 6e 74 61 69 6e 65 72 2e 00 41 64 64 20 6d 75 6c 74 69 70 6c 65 20 73 | r.this.container..Add.multiple.s |
| d1e60 | 6f 75 72 63 65 20 49 50 20 69 6e 20 6f 6e 65 20 72 75 6c 65 20 77 69 74 68 20 73 61 6d 65 20 70 | ource.IP.in.one.rule.with.same.p |
| d1e80 | 72 69 6f 72 69 74 79 00 41 64 64 20 6e 65 77 20 70 6f 72 74 20 74 6f 20 53 53 4c 2d 70 6f 72 74 | riority.Add.new.port.to.SSL-port |
| d1ea0 | 73 20 61 63 6c 2e 20 50 6f 72 74 73 20 69 6e 63 6c 75 64 65 64 20 62 79 20 64 65 66 61 75 6c 74 | s.acl..Ports.included.by.default |
| d1ec0 | 20 69 6e 20 53 53 4c 2d 70 6f 72 74 73 20 61 63 6c 3a 20 34 34 33 00 41 64 64 20 6e 65 77 20 70 | .in.SSL-ports.acl:.443.Add.new.p |
| d1ee0 | 6f 72 74 20 74 6f 20 53 61 66 65 2d 70 6f 72 74 73 20 61 63 6c 2e 20 50 6f 72 74 73 20 69 6e 63 | ort.to.Safe-ports.acl..Ports.inc |
| d1f00 | 6c 75 64 65 64 20 62 79 20 64 65 66 61 75 6c 74 20 69 6e 20 53 61 66 65 2d 70 6f 72 74 73 20 61 | luded.by.default.in.Safe-ports.a |
| d1f20 | 63 6c 3a 20 32 31 2c 20 37 30 2c 20 38 30 2c 20 32 31 30 2c 20 32 38 30 2c 20 34 34 33 2c 20 34 | cl:.21,.70,.80,.210,.280,.443,.4 |
| d1f40 | 38 38 2c 20 35 39 31 2c 20 37 37 37 2c 20 38 37 33 2c 20 31 30 32 35 2d 36 35 35 33 35 00 41 64 | 88,.591,.777,.873,.1025-65535.Ad |
| d1f60 | 64 20 6f 72 20 72 65 70 6c 61 63 65 20 42 47 50 20 63 6f 6d 6d 75 6e 69 74 79 20 61 74 74 72 69 | d.or.replace.BGP.community.attri |
| d1f80 | 62 75 74 65 20 69 6e 20 66 6f 72 6d 61 74 20 60 60 3c 30 2d 36 35 35 33 35 3a 30 2d 36 35 35 33 | bute.in.format.``<0-65535:0-6553 |
| d1fa0 | 35 3e 60 60 20 6f 72 20 66 72 6f 6d 20 77 65 6c 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d 75 6e 69 74 | 5>``.or.from.well-known.communit |
| d1fc0 | 79 20 6c 69 73 74 00 41 64 64 20 6f 72 20 72 65 70 6c 61 63 65 20 42 47 50 20 6c 61 72 67 65 2d | y.list.Add.or.replace.BGP.large- |
| d1fe0 | 63 6f 6d 6d 75 6e 69 74 79 20 61 74 74 72 69 62 75 74 65 20 69 6e 20 66 6f 72 6d 61 74 20 60 60 | community.attribute.in.format.`` |
| d2000 | 3c 30 2d 34 32 39 34 39 36 37 32 39 35 3a 30 2d 34 32 39 34 39 36 37 32 39 35 3a 30 2d 34 32 39 | <0-4294967295:0-4294967295:0-429 |
| d2020 | 34 39 36 37 32 39 35 3e 60 60 00 41 64 64 20 70 6f 6c 69 63 79 20 72 6f 75 74 65 20 6d 61 74 63 | 4967295>``.Add.policy.route.matc |
| d2040 | 68 69 6e 67 20 56 4c 41 4e 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 65 73 00 41 64 64 20 70 | hing.VLAN.source.addresses.Add.p |
| d2060 | 75 62 6c 69 63 20 6b 65 79 20 70 6f 72 74 69 6f 6e 20 66 6f 72 20 74 68 65 20 63 65 72 74 69 66 | ublic.key.portion.for.the.certif |
| d2080 | 69 63 61 74 65 20 6e 61 6d 65 64 20 60 6e 61 6d 65 60 20 74 6f 20 74 68 65 20 56 79 4f 53 20 43 | icate.named.`name`.to.the.VyOS.C |
| d20a0 | 4c 49 2e 00 41 64 64 20 73 6f 75 72 63 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 | LI..Add.source.IP.address.of.the |
| d20c0 | 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 6f 20 61 20 64 79 6e 61 6d 69 63 20 61 64 64 72 65 73 73 | .connection.to.a.dynamic.address |
| d20e0 | 20 67 72 6f 75 70 3a 00 41 64 64 20 74 68 65 20 43 41 73 20 70 72 69 76 61 74 65 20 6b 65 79 20 | .group:.Add.the.CAs.private.key. |
| d2100 | 74 6f 20 74 68 65 20 56 79 4f 53 20 43 4c 49 2e 20 54 68 69 73 20 73 68 6f 75 6c 64 20 6e 65 76 | to.the.VyOS.CLI..This.should.nev |
| d2120 | 65 72 20 6c 65 61 76 65 20 74 68 65 20 73 79 73 74 65 6d 2c 20 61 6e 64 20 69 73 20 6f 6e 6c 79 | er.leave.the.system,.and.is.only |
| d2140 | 20 72 65 71 75 69 72 65 64 20 69 66 20 79 6f 75 20 75 73 65 20 56 79 4f 53 20 61 73 20 79 6f 75 | .required.if.you.use.VyOS.as.you |
| d2160 | 72 20 63 65 72 74 69 66 69 63 61 74 65 20 67 65 6e 65 72 61 74 6f 72 20 61 73 20 6d 65 6e 74 69 | r.certificate.generator.as.menti |
| d2180 | 6f 6e 65 64 20 61 62 6f 76 65 2e 00 41 64 64 20 74 68 65 20 63 6f 6d 6d 61 6e 64 73 20 66 72 6f | oned.above..Add.the.commands.fro |
| d21a0 | 6d 20 53 6e 69 70 70 65 74 20 69 6e 20 74 68 65 20 57 69 6e 64 6f 77 73 20 73 69 64 65 20 76 69 | m.Snippet.in.the.Windows.side.vi |
| d21c0 | 61 20 50 6f 77 65 72 53 68 65 6c 6c 2e 20 41 6c 73 6f 20 69 6d 70 6f 72 74 20 74 68 65 20 72 6f | a.PowerShell..Also.import.the.ro |
| d21e0 | 6f 74 20 43 41 20 63 65 72 74 20 74 6f 20 74 68 65 20 57 69 6e 64 6f 77 73 20 e2 80 9c 54 72 75 | ot.CA.cert.to.the.Windows....Tru |
| d2200 | 73 74 65 64 20 52 6f 6f 74 20 43 65 72 74 69 66 69 63 61 74 69 6f 6e 20 41 75 74 68 6f 72 69 74 | sted.Root.Certification.Authorit |
| d2220 | 69 65 73 e2 80 9d 20 61 6e 64 20 65 73 74 61 62 6c 69 73 68 20 74 68 65 20 63 6f 6e 6e 65 63 74 | ies....and.establish.the.connect |
| d2240 | 69 6f 6e 2e 00 41 64 64 20 74 68 65 20 70 72 69 76 61 74 65 20 6b 65 79 20 70 6f 72 74 69 6f 6e | ion..Add.the.private.key.portion |
| d2260 | 20 6f 66 20 74 68 69 73 20 63 65 72 74 69 66 69 63 61 74 65 20 74 6f 20 74 68 65 20 43 4c 49 2e | .of.this.certificate.to.the.CLI. |
| d2280 | 20 54 68 69 73 20 73 68 6f 75 6c 64 20 6e 65 76 65 72 20 6c 65 61 76 65 20 74 68 65 20 73 79 73 | .This.should.never.leave.the.sys |
| d22a0 | 74 65 6d 20 61 73 20 69 74 20 69 73 20 75 73 65 64 20 74 6f 20 64 65 63 72 79 70 74 20 74 68 65 | tem.as.it.is.used.to.decrypt.the |
| d22c0 | 20 64 61 74 61 2e 00 41 64 64 20 74 68 65 20 70 75 62 6c 69 63 20 43 41 20 63 65 72 74 69 66 69 | .data..Add.the.public.CA.certifi |
| d22e0 | 63 61 74 65 20 66 6f 72 20 74 68 65 20 43 41 20 6e 61 6d 65 64 20 60 6e 61 6d 65 60 20 74 6f 20 | cate.for.the.CA.named.`name`.to. |
| d2300 | 74 68 65 20 56 79 4f 53 20 43 4c 49 2e 00 41 64 64 69 6e 67 20 61 20 32 46 41 20 77 69 74 68 20 | the.VyOS.CLI..Adding.a.2FA.with. |
| d2320 | 61 6e 20 4f 54 50 2d 6b 65 79 00 41 64 64 69 6e 67 20 65 6c 65 6d 65 6e 74 73 20 74 6f 20 44 79 | an.OTP-key.Adding.elements.to.Dy |
| d2340 | 6e 61 6d 69 63 20 46 69 72 65 77 61 6c 6c 20 47 72 6f 75 70 73 00 41 64 64 69 74 69 6f 6e 61 6c | namic.Firewall.Groups.Additional |
| d2360 | 20 67 6c 6f 62 61 6c 20 70 61 72 61 6d 65 74 65 72 73 20 61 72 65 20 73 65 74 2c 20 69 6e 63 6c | .global.parameters.are.set,.incl |
| d2380 | 75 64 69 6e 67 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 63 6f 6e 6e 65 63 74 | uding.the.maximum.number.connect |
| d23a0 | 69 6f 6e 20 6c 69 6d 69 74 20 6f 66 20 34 30 30 30 20 61 6e 64 20 61 20 6d 69 6e 69 6d 75 6d 20 | ion.limit.of.4000.and.a.minimum. |
| d23c0 | 54 4c 53 20 76 65 72 73 69 6f 6e 20 6f 66 20 31 2e 33 2e 00 41 64 64 69 74 69 6f 6e 61 6c 20 6f | TLS.version.of.1.3..Additional.o |
| d23e0 | 70 74 69 6f 6e 20 74 6f 20 72 75 6e 20 54 46 54 50 20 73 65 72 76 65 72 20 69 6e 20 74 68 65 20 | ption.to.run.TFTP.server.in.the. |
| d2400 | 3a 61 62 62 72 3a 60 56 52 46 20 28 56 69 72 74 75 61 6c 20 52 6f 75 74 69 6e 67 20 61 6e 64 20 | :abbr:`VRF.(Virtual.Routing.and. |
| d2420 | 46 6f 72 77 61 72 64 69 6e 67 29 60 20 63 6f 6e 74 65 78 74 00 41 64 64 69 74 69 6f 6e 61 6c 6c | Forwarding)`.context.Additionall |
| d2440 | 79 20 79 6f 75 20 73 68 6f 75 6c 64 20 6b 65 65 70 20 69 6e 20 6d 69 6e 64 20 74 68 61 74 20 74 | y.you.should.keep.in.mind.that.t |
| d2460 | 68 69 73 20 66 65 61 74 75 72 65 20 66 75 6e 64 61 6d 65 6e 74 61 6c 6c 79 20 64 69 73 61 62 6c | his.feature.fundamentally.disabl |
| d2480 | 65 73 20 74 68 65 20 61 62 69 6c 69 74 79 20 74 6f 20 75 73 65 20 77 69 64 65 6c 79 20 64 65 70 | es.the.ability.to.use.widely.dep |
| d24a0 | 6c 6f 79 65 64 20 42 47 50 20 66 65 61 74 75 72 65 73 2e 20 42 47 50 20 75 6e 6e 75 6d 62 65 72 | loyed.BGP.features..BGP.unnumber |
| d24c0 | 65 64 2c 20 68 6f 73 74 6e 61 6d 65 20 73 75 70 70 6f 72 74 2c 20 41 53 34 2c 20 41 64 64 70 61 | ed,.hostname.support,.AS4,.Addpa |
| d24e0 | 74 68 2c 20 52 6f 75 74 65 20 52 65 66 72 65 73 68 2c 20 4f 52 46 2c 20 44 79 6e 61 6d 69 63 20 | th,.Route.Refresh,.ORF,.Dynamic. |
| d2500 | 43 61 70 61 62 69 6c 69 74 69 65 73 2c 20 61 6e 64 20 67 72 61 63 65 66 75 6c 20 72 65 73 74 61 | Capabilities,.and.graceful.resta |
| d2520 | 72 74 2e 00 41 64 64 69 74 69 6f 6e 61 6c 6c 79 2c 20 65 61 63 68 20 63 6c 69 65 6e 74 20 6e 65 | rt..Additionally,.each.client.ne |
| d2540 | 65 64 73 20 61 20 63 6f 70 79 20 6f 66 20 63 61 20 63 65 72 74 20 61 6e 64 20 69 74 73 20 6f 77 | eds.a.copy.of.ca.cert.and.its.ow |
| d2560 | 6e 20 63 6c 69 65 6e 74 20 6b 65 79 20 61 6e 64 20 63 65 72 74 20 66 69 6c 65 73 2e 20 54 68 65 | n.client.key.and.cert.files..The |
| d2580 | 20 66 69 6c 65 73 20 61 72 65 20 70 6c 61 69 6e 74 65 78 74 20 73 6f 20 74 68 65 79 20 6d 61 79 | .files.are.plaintext.so.they.may |
| d25a0 | 20 62 65 20 63 6f 70 69 65 64 20 65 69 74 68 65 72 20 6d 61 6e 75 61 6c 6c 79 20 66 72 6f 6d 20 | .be.copied.either.manually.from. |
| d25c0 | 74 68 65 20 43 4c 49 2e 20 43 6c 69 65 6e 74 20 6b 65 79 20 61 6e 64 20 63 65 72 74 20 66 69 6c | the.CLI..Client.key.and.cert.fil |
| d25e0 | 65 73 20 73 68 6f 75 6c 64 20 62 65 20 73 69 67 6e 65 64 20 77 69 74 68 20 74 68 65 20 70 72 6f | es.should.be.signed.with.the.pro |
| d2600 | 70 65 72 20 63 61 20 63 65 72 74 20 61 6e 64 20 67 65 6e 65 72 61 74 65 64 20 6f 6e 20 74 68 65 | per.ca.cert.and.generated.on.the |
| d2620 | 20 73 65 72 76 65 72 20 73 69 64 65 2e 00 41 64 64 69 74 69 6f 6e 61 6c 6c 79 2c 20 65 61 63 68 | .server.side..Additionally,.each |
| d2640 | 20 63 6c 69 65 6e 74 20 6e 65 65 64 73 20 61 20 63 6f 70 79 20 6f 66 20 63 61 20 63 65 72 74 20 | .client.needs.a.copy.of.ca.cert. |
| d2660 | 61 6e 64 20 69 74 73 20 6f 77 6e 20 63 6c 69 65 6e 74 20 6b 65 79 20 61 6e 64 20 63 65 72 74 20 | and.its.own.client.key.and.cert. |
| d2680 | 66 69 6c 65 73 2e 20 54 68 65 20 66 69 6c 65 73 20 61 72 65 20 70 6c 61 69 6e 74 65 78 74 20 73 | files..The.files.are.plaintext.s |
| d26a0 | 6f 20 74 68 65 79 20 6d 61 79 20 62 65 20 63 6f 70 69 65 64 20 6d 61 6e 75 61 6c 6c 79 20 66 72 | o.they.may.be.copied.manually.fr |
| d26c0 | 6f 6d 20 74 68 65 20 43 4c 49 2e 20 43 6c 69 65 6e 74 20 6b 65 79 20 61 6e 64 20 63 65 72 74 20 | om.the.CLI..Client.key.and.cert. |
| d26e0 | 66 69 6c 65 73 20 73 68 6f 75 6c 64 20 62 65 20 73 69 67 6e 65 64 20 77 69 74 68 20 74 68 65 20 | files.should.be.signed.with.the. |
| d2700 | 70 72 6f 70 65 72 20 63 61 20 63 65 72 74 20 61 6e 64 20 67 65 6e 65 72 61 74 65 64 20 6f 6e 20 | proper.ca.cert.and.generated.on. |
| d2720 | 74 68 65 20 73 65 72 76 65 72 20 73 69 64 65 2e 00 41 64 64 69 74 69 6f 6e 61 6c 6c 79 2c 20 77 | the.server.side..Additionally,.w |
| d2740 | 65 20 77 61 6e 74 20 74 6f 20 75 73 65 20 56 50 4e 73 20 6f 6e 6c 79 20 6f 6e 20 6f 75 72 20 65 | e.want.to.use.VPNs.only.on.our.e |
| d2760 | 74 68 31 20 69 6e 74 65 72 66 61 63 65 20 28 74 68 65 20 65 78 74 65 72 6e 61 6c 20 69 6e 74 65 | th1.interface.(the.external.inte |
| d2780 | 72 66 61 63 65 20 69 6e 20 74 68 65 20 69 6d 61 67 65 20 61 62 6f 76 65 29 00 41 64 64 72 65 73 | rface.in.the.image.above).Addres |
| d27a0 | 73 00 41 64 64 72 65 73 73 20 43 6f 6e 76 65 72 73 69 6f 6e 00 41 64 64 72 65 73 73 20 46 61 6d | s.Address.Conversion.Address.Fam |
| d27c0 | 69 6c 69 65 73 00 41 64 64 72 65 73 73 20 47 72 6f 75 70 73 00 41 64 64 72 65 73 73 20 67 72 6f | ilies.Address.Groups.Address.gro |
| d27e0 | 75 70 73 20 61 72 65 20 75 73 65 66 75 6c 20 77 68 65 6e 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 | ups.are.useful.when.you.need.to. |
| d2800 | 63 72 65 61 74 65 20 72 75 6c 65 73 20 74 68 61 74 20 61 70 70 6c 79 20 74 6f 20 73 70 65 63 69 | create.rules.that.apply.to.speci |
| d2820 | 66 69 63 20 49 50 20 61 64 64 72 65 73 73 65 73 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 2c 20 69 | fic.IP.addresses..For.example,.i |
| d2840 | 66 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 63 72 65 61 74 65 20 61 20 72 75 6c 65 20 74 68 61 74 | f.you.want.to.create.a.rule.that |
| d2860 | 20 6d 6f 6e 69 74 6f 72 73 20 74 72 61 66 66 69 63 20 67 6f 69 6e 67 20 74 6f 20 6f 72 20 66 72 | .monitors.traffic.going.to.or.fr |
| d2880 | 6f 6d 20 61 20 73 70 65 63 69 66 69 63 20 49 50 20 61 64 64 72 65 73 73 2c 20 79 6f 75 20 63 61 | om.a.specific.IP.address,.you.ca |
| d28a0 | 6e 20 75 73 65 20 74 68 65 20 67 72 6f 75 70 20 6e 61 6d 65 20 69 6e 73 74 65 61 64 20 6f 66 20 | n.use.the.group.name.instead.of. |
| d28c0 | 74 68 65 20 61 63 74 75 61 6c 20 49 50 20 61 64 64 72 65 73 73 2e 20 54 68 69 73 20 73 69 6d 70 | the.actual.IP.address..This.simp |
| d28e0 | 6c 69 66 69 65 73 20 72 75 6c 65 20 6d 61 6e 61 67 65 6d 65 6e 74 20 61 6e 64 20 6d 61 6b 65 73 | lifies.rule.management.and.makes |
| d2900 | 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d 6f 72 65 20 66 6c 65 78 69 62 6c 65 | .the.configuration.more.flexible |
| d2920 | 2e 00 41 64 64 72 65 73 73 20 70 6f 6f 6c 20 73 68 61 6c 6c 20 62 65 20 60 60 32 30 30 31 3a 64 | ..Address.pool.shall.be.``2001:d |
| d2940 | 62 38 3a 3a 31 30 30 60 60 20 74 68 72 6f 75 67 68 20 60 60 32 30 30 31 3a 64 62 38 3a 3a 31 39 | b8::100``.through.``2001:db8::19 |
| d2960 | 39 60 60 2e 00 41 64 64 72 65 73 73 20 70 6f 6f 6c 73 00 41 64 64 72 65 73 73 20 74 6f 20 6c 69 | 9``..Address.pools.Address.to.li |
| d2980 | 73 74 65 6e 20 66 6f 72 20 48 54 54 50 53 20 72 65 71 75 65 73 74 73 00 41 64 64 73 20 72 65 67 | sten.for.HTTPS.requests.Adds.reg |
| d29a0 | 69 73 74 72 79 20 74 6f 20 6c 69 73 74 20 6f 66 20 75 6e 71 75 61 6c 69 66 69 65 64 2d 73 65 61 | istry.to.list.of.unqualified-sea |
| d29c0 | 72 63 68 2d 72 65 67 69 73 74 72 69 65 73 2e 20 42 79 20 64 65 66 61 75 6c 74 2c 20 66 6f 72 20 | rch-registries..By.default,.for. |
| d29e0 | 61 6e 79 20 69 6d 61 67 65 20 74 68 61 74 20 64 6f 65 73 20 6e 6f 74 20 69 6e 63 6c 75 64 65 20 | any.image.that.does.not.include. |
| d2a00 | 74 68 65 20 72 65 67 69 73 74 72 79 20 69 6e 20 74 68 65 20 69 6d 61 67 65 20 6e 61 6d 65 2c 20 | the.registry.in.the.image.name,. |
| d2a20 | 56 79 4f 53 20 77 69 6c 6c 20 75 73 65 20 64 6f 63 6b 65 72 2e 69 6f 20 61 6e 64 20 71 75 61 79 | VyOS.will.use.docker.io.and.quay |
| d2a40 | 2e 69 6f 20 61 73 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 20 72 65 67 69 73 74 72 79 2e 00 41 | .io.as.the.container.registry..A |
| d2a60 | 64 64 73 20 72 65 67 69 73 74 72 79 20 74 6f 20 6c 69 73 74 20 6f 66 20 75 6e 71 75 61 6c 69 66 | dds.registry.to.list.of.unqualif |
| d2a80 | 69 65 64 2d 73 65 61 72 63 68 2d 72 65 67 69 73 74 72 69 65 73 2e 20 42 79 20 64 65 66 61 75 6c | ied-search-registries..By.defaul |
| d2aa0 | 74 2c 20 66 6f 72 20 61 6e 79 20 69 6d 61 67 65 20 74 68 61 74 20 64 6f 65 73 20 6e 6f 74 20 69 | t,.for.any.image.that.does.not.i |
| d2ac0 | 6e 63 6c 75 64 65 20 74 68 65 20 72 65 67 69 73 74 72 79 20 69 6e 20 74 68 65 20 69 6d 61 67 65 | nclude.the.registry.in.the.image |
| d2ae0 | 20 6e 61 6d 65 2c 20 56 79 6f 73 20 77 69 6c 6c 20 75 73 65 20 64 6f 63 6b 65 72 2e 69 6f 20 61 | .name,.Vyos.will.use.docker.io.a |
| d2b00 | 73 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 20 72 65 67 69 73 74 72 79 2e 00 41 64 64 73 20 74 | s.the.container.registry..Adds.t |
| d2b20 | 68 65 20 50 6f 77 65 72 20 43 6f 6e 73 74 72 61 69 6e 74 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 | he.Power.Constraint.information. |
| d2b40 | 65 6c 65 6d 65 6e 74 20 74 6f 20 42 65 61 63 6f 6e 20 61 6e 64 20 50 72 6f 62 65 20 52 65 73 70 | element.to.Beacon.and.Probe.Resp |
| d2b60 | 6f 6e 73 65 20 66 72 61 6d 65 73 2e 00 41 64 6d 69 6e 69 73 74 72 61 74 69 76 65 20 44 69 73 74 | onse.frames..Administrative.Dist |
| d2b80 | 61 6e 63 65 00 41 64 76 61 6e 63 65 64 20 49 6e 74 65 72 66 61 63 65 20 4f 70 74 69 6f 6e 73 00 | ance.Advanced.Interface.Options. |
| d2ba0 | 41 64 76 61 6e 63 65 64 20 4f 70 74 69 6f 6e 73 00 41 64 76 61 6e 63 65 64 20 63 6f 6e 66 69 67 | Advanced.Options.Advanced.config |
| d2bc0 | 75 72 61 74 69 6f 6e 20 63 61 6e 20 62 65 20 75 73 65 64 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 | uration.can.be.used.in.order.to. |
| d2be0 | 61 70 70 6c 79 20 73 6f 75 72 63 65 20 6f 72 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 4e 41 54 2c | apply.source.or.destination.NAT, |
| d2c00 | 20 61 6e 64 20 77 69 74 68 69 6e 20 61 20 73 69 6e 67 6c 65 20 72 75 6c 65 2c 20 62 65 20 61 62 | .and.within.a.single.rule,.be.ab |
| d2c20 | 6c 65 20 74 6f 20 64 65 66 69 6e 65 20 6d 75 6c 74 69 70 6c 65 20 74 72 61 6e 73 6c 61 74 65 64 | le.to.define.multiple.translated |
| d2c40 | 20 61 64 64 72 65 73 73 65 73 2c 20 73 6f 20 4e 41 54 20 62 61 6c 61 6e 63 65 73 20 74 68 65 20 | .addresses,.so.NAT.balances.the. |
| d2c60 | 74 72 61 6e 73 6c 61 74 69 6f 6e 73 20 61 6d 6f 6e 67 20 74 68 65 6d 2e 00 41 64 76 61 6e 74 61 | translations.among.them..Advanta |
| d2c80 | 67 65 73 20 6f 66 20 43 47 4e 41 54 00 41 64 76 61 6e 74 61 67 65 73 20 6f 66 20 4f 70 65 6e 56 | ges.of.CGNAT.Advantages.of.OpenV |
| d2ca0 | 50 4e 20 61 72 65 3a 00 41 64 76 65 72 74 69 73 65 20 44 4e 53 20 73 65 72 76 65 72 20 70 65 72 | PN.are:.Advertise.DNS.server.per |
| d2cc0 | 20 68 74 74 70 73 3a 2f 2f 74 6f 6f 6c 73 2e 69 65 74 66 2e 6f 72 67 2f 68 74 6d 6c 2f 72 66 63 | .https://tools.ietf.org/html/rfc |
| d2ce0 | 36 31 30 36 00 41 64 76 65 72 74 69 73 65 6d 65 6e 74 20 49 6e 74 65 72 76 61 6c 20 4f 70 74 69 | 6106.Advertisement.Interval.Opti |
| d2d00 | 6f 6e 20 28 73 70 65 63 69 66 69 65 64 20 62 79 20 4d 6f 62 69 6c 65 20 49 50 76 36 29 20 69 73 | on.(specified.by.Mobile.IPv6).is |
| d2d20 | 20 61 6c 77 61 79 73 20 69 6e 63 6c 75 64 65 64 20 69 6e 20 52 6f 75 74 65 72 20 41 64 76 65 72 | .always.included.in.Router.Adver |
| d2d40 | 74 69 73 65 6d 65 6e 74 73 20 75 6e 6c 65 73 73 20 74 68 69 73 20 6f 70 74 69 6f 6e 20 69 73 20 | tisements.unless.this.option.is. |
| d2d60 | 73 65 74 2e 00 41 64 76 65 72 74 69 73 69 6e 67 20 61 20 4e 41 54 36 34 20 50 72 65 66 69 78 00 | set..Advertising.a.NAT64.Prefix. |
| d2d80 | 41 64 76 65 72 74 69 73 69 6e 67 20 61 20 50 72 65 66 69 78 00 41 66 74 65 72 20 63 6f 6d 6d 69 | Advertising.a.Prefix.After.commi |
| d2da0 | 74 20 74 68 65 20 70 6c 61 69 6e 74 65 78 74 20 70 61 73 73 77 6f 72 64 73 20 77 69 6c 6c 20 62 | t.the.plaintext.passwords.will.b |
| d2dc0 | 65 20 68 61 73 68 65 64 20 61 6e 64 20 73 74 6f 72 65 64 20 69 6e 20 79 6f 75 72 20 63 6f 6e 66 | e.hashed.and.stored.in.your.conf |
| d2de0 | 69 67 75 72 61 74 69 6f 6e 2e 20 54 68 65 20 72 65 73 75 6c 74 69 6e 67 20 43 4c 49 20 63 6f 6e | iguration..The.resulting.CLI.con |
| d2e00 | 66 69 67 20 77 69 6c 6c 20 6c 6f 6f 6b 20 6c 69 6b 65 3a 00 41 66 74 65 72 20 63 6f 6d 6d 69 74 | fig.will.look.like:.After.commit |
| d2e20 | 74 69 6e 67 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 77 65 20 63 61 6e 20 76 65 | ting.the.configuration.we.can.ve |
| d2e40 | 72 69 66 79 20 61 6c 6c 20 6c 65 61 6b 65 64 20 72 6f 75 74 65 73 20 61 72 65 20 69 6e 73 74 61 | rify.all.leaked.routes.are.insta |
| d2e60 | 6c 6c 65 64 2c 20 61 6e 64 20 74 72 79 20 74 6f 20 49 43 4d 50 20 70 69 6e 67 20 50 43 31 20 66 | lled,.and.try.to.ICMP.ping.PC1.f |
| d2e80 | 72 6f 6d 20 50 43 33 2e 00 41 66 74 65 72 20 63 6f 6d 70 6c 65 74 69 6e 67 20 74 68 65 20 73 65 | rom.PC3..After.completing.the.se |
| d2ea0 | 72 76 69 63 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 6e 20 63 6f 6e 66 69 67 75 72 61 | rvice.configuration.in.configura |
| d2ec0 | 74 69 6f 6e 20 6d 6f 64 65 2c 20 74 68 65 20 6d 61 69 6e 20 63 6f 6e 66 69 67 75 72 61 74 69 6f | tion.mode,.the.main.configuratio |
| d2ee0 | 6e 20 66 69 6c 65 20 73 75 72 69 63 61 74 61 2e 79 61 6d 6c 20 69 73 20 63 72 65 61 74 65 64 2c | n.file.suricata.yaml.is.created, |
| d2f00 | 20 69 6e 74 6f 20 77 68 69 63 68 20 61 6c 6c 20 73 70 65 63 69 66 69 65 64 20 70 61 72 61 6d 65 | .into.which.all.specified.parame |
| d2f20 | 74 65 72 73 20 61 72 65 20 61 64 64 65 64 2e 20 54 68 65 6e 2c 20 74 6f 20 65 6e 73 75 72 65 20 | ters.are.added..Then,.to.ensure. |
| d2f40 | 70 72 6f 70 65 72 20 6f 70 65 72 61 74 69 6f 6e 2c 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 3a 6f | proper.operation,.the.command.:o |
| d2f60 | 70 63 6d 64 3a 60 75 70 64 61 74 65 20 73 75 72 69 63 61 74 61 60 20 6d 75 73 74 20 62 65 20 72 | pcmd:`update.suricata`.must.be.r |
| d2f80 | 75 6e 20 66 72 6f 6d 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 6d 6f 64 65 2c 20 77 61 69 74 69 6e | un.from.operational.mode,.waitin |
| d2fa0 | 67 20 66 6f 72 20 53 75 72 69 63 61 74 61 20 74 6f 20 75 70 64 61 74 65 20 61 6c 6c 20 69 74 73 | g.for.Suricata.to.update.all.its |
| d2fc0 | 20 72 75 6c 65 73 2c 20 77 68 69 63 68 20 61 72 65 20 75 73 65 64 20 66 6f 72 20 61 6e 61 6c 79 | .rules,.which.are.used.for.analy |
| d2fe0 | 7a 69 6e 67 20 74 72 61 66 66 69 63 20 66 6f 72 20 74 68 72 65 61 74 73 20 61 6e 64 20 61 74 74 | zing.traffic.for.threats.and.att |
| d3000 | 61 63 6b 73 2e 00 41 66 74 65 72 20 74 68 65 20 50 4b 49 20 63 65 72 74 73 20 61 72 65 20 61 6c | acks..After.the.PKI.certs.are.al |
| d3020 | 6c 20 73 65 74 20 75 70 20 77 65 20 63 61 6e 20 73 74 61 72 74 20 63 6f 6e 66 69 67 75 72 69 6e | l.set.up.we.can.start.configurin |
| d3040 | 67 20 6f 75 72 20 49 50 53 65 63 2f 49 4b 45 20 70 72 6f 70 6f 73 61 6c 73 20 75 73 65 64 20 66 | g.our.IPSec/IKE.proposals.used.f |
| d3060 | 6f 72 20 6b 65 79 2d 65 78 63 68 61 6e 67 65 20 65 6e 64 20 64 61 74 61 20 65 6e 63 72 79 70 74 | or.key-exchange.end.data.encrypt |
| d3080 | 69 6f 6e 2e 20 54 68 65 20 75 73 65 64 20 65 6e 63 72 79 70 74 69 6f 6e 20 63 69 70 68 65 72 73 | ion..The.used.encryption.ciphers |
| d30a0 | 20 61 6e 64 20 69 6e 74 65 67 72 69 74 79 20 61 6c 67 6f 72 69 74 68 6d 73 20 76 61 72 79 20 66 | .and.integrity.algorithms.vary.f |
| d30c0 | 72 6f 6d 20 6f 70 65 72 61 74 69 6e 67 20 73 79 73 74 65 6d 20 74 6f 20 6f 70 65 72 61 74 69 6e | rom.operating.system.to.operatin |
| d30e0 | 67 20 73 79 73 74 65 6d 2e 20 54 68 65 20 6f 6e 65 73 20 75 73 65 64 20 69 6e 20 74 68 69 73 20 | g.system..The.ones.used.in.this. |
| d3100 | 65 78 61 6d 70 6c 65 20 61 72 65 20 76 61 6c 69 64 61 74 65 64 20 74 6f 20 77 6f 72 6b 20 6f 6e | example.are.validated.to.work.on |
| d3120 | 20 57 69 6e 64 6f 77 73 20 31 30 2e 00 41 66 74 65 72 20 74 68 65 20 50 4b 49 20 63 65 72 74 73 | .Windows.10..After.the.PKI.certs |
| d3140 | 20 61 72 65 20 61 6c 6c 20 73 65 74 20 75 70 20 77 65 20 63 61 6e 20 73 74 61 72 74 20 63 6f 6e | .are.all.set.up.we.can.start.con |
| d3160 | 66 69 67 75 72 69 6e 67 20 6f 75 72 20 49 50 53 65 63 2f 49 4b 45 20 70 72 6f 70 6f 73 61 6c 73 | figuring.our.IPSec/IKE.proposals |
| d3180 | 20 75 73 65 64 20 66 6f 72 20 6b 65 79 2d 65 78 63 68 61 6e 67 65 20 65 6e 64 20 64 61 74 61 20 | .used.for.key-exchange.end.data. |
| d31a0 | 65 6e 63 72 79 70 74 69 6f 6e 2e 20 54 68 65 20 75 73 65 64 20 65 6e 63 72 79 70 74 69 6f 6e 20 | encryption..The.used.encryption. |
| d31c0 | 63 69 70 68 65 72 73 20 61 6e 64 20 69 6e 74 65 67 72 69 74 79 20 61 6c 67 6f 72 69 74 68 6d 73 | ciphers.and.integrity.algorithms |
| d31e0 | 20 76 61 72 79 20 66 72 6f 6d 20 6f 70 65 72 61 74 69 6e 67 20 73 79 73 74 65 6d 20 74 6f 20 6f | .vary.from.operating.system.to.o |
| d3200 | 70 65 72 61 74 69 6e 67 20 73 79 73 74 65 6d 2e 20 54 68 65 20 6f 6e 65 73 20 75 73 65 64 20 69 | perating.system..The.ones.used.i |
| d3220 | 6e 20 74 68 69 73 20 70 6f 73 74 20 61 72 65 20 76 61 6c 69 64 61 74 65 64 20 74 6f 20 77 6f 72 | n.this.post.are.validated.to.wor |
| d3240 | 6b 20 6f 6e 20 62 6f 74 68 20 57 69 6e 64 6f 77 73 20 31 30 20 61 6e 64 20 69 4f 53 2f 69 50 61 | k.on.both.Windows.10.and.iOS/iPa |
| d3260 | 64 4f 53 20 31 34 20 74 6f 20 31 37 2e 00 41 66 74 65 72 20 77 65 20 68 61 76 65 20 69 6d 70 6f | dOS.14.to.17..After.we.have.impo |
| d3280 | 72 74 65 64 20 74 68 65 20 43 41 20 63 65 72 74 69 66 69 63 61 74 65 28 73 29 20 77 65 20 63 61 | rted.the.CA.certificate(s).we.ca |
| d32a0 | 6e 20 6e 6f 77 20 69 6d 70 6f 72 74 20 61 6e 64 20 61 64 64 20 63 65 72 74 69 66 69 63 61 74 65 | n.now.import.and.add.certificate |
| d32c0 | 73 20 75 73 65 64 20 62 79 20 73 65 72 76 69 63 65 73 20 6f 6e 20 74 68 69 73 20 72 6f 75 74 65 | s.used.by.services.on.this.route |
| d32e0 | 72 2e 00 41 66 74 65 72 20 79 6f 75 20 6f 62 74 61 69 6e 20 79 6f 75 72 20 73 65 72 76 65 72 20 | r..After.you.obtain.your.server. |
| d3300 | 63 65 72 74 69 66 69 63 61 74 65 20 79 6f 75 20 63 61 6e 20 69 6d 70 6f 72 74 20 69 74 20 66 72 | certificate.you.can.import.it.fr |
| d3320 | 6f 6d 20 61 20 66 69 6c 65 20 6f 6e 20 74 68 65 20 6c 6f 63 61 6c 20 66 69 6c 65 73 79 73 74 65 | om.a.file.on.the.local.filesyste |
| d3340 | 6d 2c 20 6f 72 20 70 61 73 74 65 20 69 74 20 69 6e 74 6f 20 74 68 65 20 43 4c 49 2e 20 50 6c 65 | m,.or.paste.it.into.the.CLI..Ple |
| d3360 | 61 73 65 20 6e 6f 74 65 20 74 68 61 74 20 77 68 65 6e 20 65 6e 74 65 72 69 6e 67 20 74 68 65 20 | ase.note.that.when.entering.the. |
| d3380 | 63 65 72 74 69 66 69 63 61 74 65 20 6d 61 6e 75 61 6c 6c 79 20 79 6f 75 20 6e 65 65 64 20 74 6f | certificate.manually.you.need.to |
| d33a0 | 20 73 74 72 69 70 20 74 68 65 20 60 60 2d 2d 2d 2d 2d 42 45 47 49 4e 20 4b 45 59 2d 2d 2d 2d 2d | .strip.the.``-----BEGIN.KEY----- |
| d33c0 | 60 60 20 61 6e 64 20 60 60 2d 2d 2d 2d 2d 45 4e 44 20 4b 45 59 2d 2d 2d 2d 2d 60 60 20 74 61 67 | ``.and.``-----END.KEY-----``.tag |
| d33e0 | 73 2e 20 41 6c 73 6f 2c 20 74 68 65 20 63 65 72 74 69 66 69 63 61 74 65 20 6f 72 20 6b 65 79 20 | s..Also,.the.certificate.or.key. |
| d3400 | 6e 65 65 64 73 20 74 6f 20 62 65 20 70 72 65 73 65 6e 74 65 64 20 69 6e 20 61 20 73 69 6e 67 6c | needs.to.be.presented.in.a.singl |
| d3420 | 65 20 6c 69 6e 65 20 77 69 74 68 6f 75 74 20 6c 69 6e 65 20 62 72 65 61 6b 73 20 28 60 60 5c 6e | e.line.without.line.breaks.(``\n |
| d3440 | 60 60 29 2e 00 41 66 74 65 72 20 79 6f 75 20 6f 62 74 61 69 6e 65 64 20 79 6f 75 72 20 73 65 72 | ``)..After.you.obtained.your.ser |
| d3460 | 76 65 72 20 63 65 72 74 69 66 69 63 61 74 65 20 79 6f 75 20 63 61 6e 20 69 6d 70 6f 72 74 20 69 | ver.certificate.you.can.import.i |
| d3480 | 74 20 66 72 6f 6d 20 61 20 66 69 6c 65 20 6f 6e 20 74 68 65 20 6c 6f 63 61 6c 20 66 69 6c 65 73 | t.from.a.file.on.the.local.files |
| d34a0 | 79 73 74 65 6d 2c 20 6f 72 20 70 61 73 74 65 20 69 74 20 69 6e 74 6f 20 74 68 65 20 43 4c 49 2e | ystem,.or.paste.it.into.the.CLI. |
| d34c0 | 20 50 6c 65 61 73 65 20 6e 6f 74 65 20 74 68 61 74 20 77 68 65 6e 20 65 6e 74 65 72 69 6e 67 20 | .Please.note.that.when.entering. |
| d34e0 | 74 68 65 20 63 65 72 74 69 66 69 63 61 74 65 20 6d 61 6e 75 61 6c 6c 79 20 79 6f 75 20 6e 65 65 | the.certificate.manually.you.nee |
| d3500 | 64 20 74 6f 20 73 74 72 69 70 20 74 68 65 20 60 60 2d 2d 2d 2d 2d 42 45 47 49 4e 20 4b 45 59 2d | d.to.strip.the.``-----BEGIN.KEY- |
| d3520 | 2d 2d 2d 2d 60 60 20 61 6e 64 20 60 60 2d 2d 2d 2d 2d 45 4e 44 20 4b 45 59 2d 2d 2d 2d 2d 60 60 | ----``.and.``-----END.KEY-----`` |
| d3540 | 20 74 61 67 73 2e 20 41 6c 73 6f 2c 20 74 68 65 20 63 65 72 74 69 66 69 63 61 74 65 20 6f 72 20 | .tags..Also,.the.certificate.or. |
| d3560 | 6b 65 79 20 6e 65 65 64 73 20 74 6f 20 62 65 20 70 72 65 73 65 6e 74 65 64 20 69 6e 20 61 20 73 | key.needs.to.be.presented.in.a.s |
| d3580 | 69 6e 67 6c 65 20 6c 69 6e 65 20 77 69 74 68 6f 75 74 20 6c 69 6e 65 20 62 72 65 61 6b 73 20 28 | ingle.line.without.line.breaks.( |
| d35a0 | 60 60 5c 6e 60 60 29 2e 00 41 67 65 6e 74 20 2d 20 73 6f 66 74 77 61 72 65 20 77 68 69 63 68 20 | ``\n``)..Agent.-.software.which. |
| d35c0 | 72 75 6e 73 20 6f 6e 20 6d 61 6e 61 67 65 64 20 64 65 76 69 63 65 73 00 41 6c 65 72 74 00 41 6c | runs.on.managed.devices.Alert.Al |
| d35e0 | 67 6f 72 69 74 68 6d 00 41 6c 69 61 73 65 73 00 41 6c 6c 20 44 4e 53 20 72 65 71 75 65 73 74 73 | gorithm.Aliases.All.DNS.requests |
| d3600 | 20 66 6f 72 20 65 78 61 6d 70 6c 65 2e 63 6f 6d 20 6d 75 73 74 20 62 65 20 66 6f 72 77 61 72 64 | .for.example.com.must.be.forward |
| d3620 | 65 64 20 74 6f 20 61 20 44 4e 53 20 73 65 72 76 65 72 20 61 74 20 31 39 32 2e 30 2e 32 2e 32 35 | ed.to.a.DNS.server.at.192.0.2.25 |
| d3640 | 34 20 61 6e 64 20 32 30 30 31 3a 64 62 38 3a 63 61 66 65 3a 3a 31 00 41 6c 6c 20 53 4e 4d 50 20 | 4.and.2001:db8:cafe::1.All.SNMP. |
| d3660 | 4d 49 42 73 20 61 72 65 20 6c 6f 63 61 74 65 64 20 69 6e 20 65 61 63 68 20 69 6d 61 67 65 20 6f | MIBs.are.located.in.each.image.o |
| d3680 | 66 20 56 79 4f 53 20 68 65 72 65 3a 20 60 60 2f 75 73 72 2f 73 68 61 72 65 2f 73 6e 6d 70 2f 6d | f.VyOS.here:.``/usr/share/snmp/m |
| d36a0 | 69 62 73 2f 60 60 00 41 6c 6c 20 61 76 61 69 6c 61 62 6c 65 20 57 57 41 4e 20 63 61 72 64 73 20 | ibs/``.All.available.WWAN.cards. |
| d36c0 | 68 61 76 65 20 61 20 62 75 69 6c 64 20 69 6e 2c 20 72 65 70 72 6f 67 72 61 6d 6d 61 62 6c 65 20 | have.a.build.in,.reprogrammable. |
| d36e0 | 66 69 72 6d 77 61 72 65 2e 20 4d 6f 73 74 20 6f 66 20 74 68 65 20 76 65 6e 64 6f 72 73 20 70 72 | firmware..Most.of.the.vendors.pr |
| d3700 | 6f 76 69 64 65 20 61 20 72 65 67 75 6c 61 72 20 75 70 64 61 74 65 20 74 6f 20 74 68 65 20 66 69 | ovide.a.regular.update.to.the.fi |
| d3720 | 72 6d 77 61 72 65 20 75 73 65 64 20 69 6e 20 74 68 65 20 62 61 73 65 62 61 6e 64 20 63 68 69 70 | rmware.used.in.the.baseband.chip |
| d3740 | 2e 00 41 6c 6c 20 61 76 61 69 6c 61 62 6c 65 20 57 57 41 4e 20 63 61 72 64 73 20 68 61 76 65 20 | ..All.available.WWAN.cards.have. |
| d3760 | 61 20 62 75 69 6c 74 2d 69 6e 2c 20 72 65 70 72 6f 67 72 61 6d 6d 61 62 6c 65 20 66 69 72 6d 77 | a.built-in,.reprogrammable.firmw |
| d3780 | 61 72 65 2e 20 4d 6f 73 74 20 76 65 6e 64 6f 72 73 20 70 72 6f 76 69 64 65 20 72 65 67 75 6c 61 | are..Most.vendors.provide.regula |
| d37a0 | 72 20 75 70 64 61 74 65 73 20 74 6f 20 66 69 72 6d 77 61 72 65 20 75 73 65 64 20 69 6e 20 74 68 | r.updates.to.firmware.used.in.th |
| d37c0 | 65 20 62 61 73 65 62 61 6e 64 20 63 68 69 70 2e 00 41 6c 6c 20 63 65 72 74 69 66 69 63 61 74 65 | e.baseband.chip..All.certificate |
| d37e0 | 73 20 73 68 6f 75 6c 64 20 62 65 20 73 74 6f 72 65 64 20 6f 6e 20 56 79 4f 53 20 75 6e 64 65 72 | s.should.be.stored.on.VyOS.under |
| d3800 | 20 60 60 2f 63 6f 6e 66 69 67 2f 61 75 74 68 60 60 2e 20 49 66 20 63 65 72 74 69 66 69 63 61 74 | .``/config/auth``..If.certificat |
| d3820 | 65 73 20 61 72 65 20 6e 6f 74 20 73 74 6f 72 65 64 20 69 6e 20 74 68 65 20 60 60 2f 63 6f 6e 66 | es.are.not.stored.in.the.``/conf |
| d3840 | 69 67 60 60 20 64 69 72 65 63 74 6f 72 79 20 74 68 65 79 20 77 69 6c 6c 20 6e 6f 74 20 62 65 20 | ig``.directory.they.will.not.be. |
| d3860 | 6d 69 67 72 61 74 65 64 20 64 75 72 69 6e 67 20 61 20 73 6f 66 74 77 61 72 65 20 75 70 64 61 74 | migrated.during.a.software.updat |
| d3880 | 65 2e 00 41 6c 6c 20 66 61 63 69 6c 69 74 69 65 73 00 41 6c 6c 20 69 6e 74 65 72 66 61 63 65 73 | e..All.facilities.All.interfaces |
| d38a0 | 20 75 73 65 64 20 66 6f 72 20 74 68 65 20 44 48 43 50 20 72 65 6c 61 79 20 6d 75 73 74 20 62 65 | .used.for.the.DHCP.relay.must.be |
| d38c0 | 20 63 6f 6e 66 69 67 75 72 65 64 2e 20 54 68 69 73 20 69 6e 63 6c 75 64 65 73 20 74 68 65 20 75 | .configured..This.includes.the.u |
| d38e0 | 70 6c 69 6e 6b 20 74 6f 20 74 68 65 20 44 48 43 50 20 73 65 72 76 65 72 2e 00 41 6c 6c 20 69 74 | plink.to.the.DHCP.server..All.it |
| d3900 | 65 6d 73 20 69 6e 20 61 20 73 79 6e 63 20 67 72 6f 75 70 20 73 68 6f 75 6c 64 20 62 65 20 73 69 | ems.in.a.sync.group.should.be.si |
| d3920 | 6d 69 6c 61 72 6c 79 20 63 6f 6e 66 69 67 75 72 65 64 2e 20 49 66 20 6f 6e 65 20 56 52 52 50 20 | milarly.configured..If.one.VRRP. |
| d3940 | 67 72 6f 75 70 20 69 73 20 73 65 74 20 74 6f 20 61 20 64 69 66 66 65 72 65 6e 74 20 70 72 65 65 | group.is.set.to.a.different.pree |
| d3960 | 6d 70 74 69 6f 6e 20 64 65 6c 61 79 20 6f 72 20 70 72 69 6f 72 69 74 79 2c 20 69 74 20 77 6f 75 | mption.delay.or.priority,.it.wou |
| d3980 | 6c 64 20 72 65 73 75 6c 74 20 69 6e 20 61 6e 20 65 6e 64 6c 65 73 73 20 74 72 61 6e 73 69 74 69 | ld.result.in.an.endless.transiti |
| d39a0 | 6f 6e 20 6c 6f 6f 70 2e 00 41 6c 6c 20 6f 74 68 65 72 20 44 4e 53 20 72 65 71 75 65 73 74 73 20 | on.loop..All.other.DNS.requests. |
| d39c0 | 77 69 6c 6c 20 62 65 20 66 6f 72 77 61 72 64 65 64 20 74 6f 20 61 20 64 69 66 66 65 72 65 6e 74 | will.be.forwarded.to.a.different |
| d39e0 | 20 73 65 74 20 6f 66 20 44 4e 53 20 73 65 72 76 65 72 73 20 61 74 20 31 39 32 2e 30 2e 32 2e 31 | .set.of.DNS.servers.at.192.0.2.1 |
| d3a00 | 2c 20 31 39 32 2e 30 2e 32 2e 32 2c 20 32 30 30 31 3a 64 62 38 3a 3a 31 3a 66 66 66 66 20 61 6e | ,.192.0.2.2,.2001:db8::1:ffff.an |
| d3a20 | 64 20 32 30 30 31 3a 64 62 38 3a 3a 32 3a 66 66 66 66 00 41 6c 6c 20 72 65 70 6c 79 20 73 69 7a | d.2001:db8::2:ffff.All.reply.siz |
| d3a40 | 65 73 20 61 72 65 20 61 63 63 65 70 74 65 64 20 62 79 20 64 65 66 61 75 6c 74 2e 00 41 6c 6c 20 | es.are.accepted.by.default..All. |
| d3a60 | 72 6f 75 74 65 72 73 20 69 6e 20 74 68 65 20 50 49 4d 20 6e 65 74 77 6f 72 6b 20 6d 75 73 74 20 | routers.in.the.PIM.network.must. |
| d3a80 | 61 67 72 65 65 20 6f 6e 20 74 68 65 73 65 20 76 61 6c 75 65 73 2e 00 41 6c 6c 20 73 63 72 69 70 | agree.on.these.values..All.scrip |
| d3aa0 | 74 73 20 65 78 63 65 63 75 74 65 64 20 74 68 69 73 20 77 61 79 20 61 72 65 20 65 78 65 63 75 74 | ts.excecuted.this.way.are.execut |
| d3ac0 | 65 64 20 61 73 20 72 6f 6f 74 20 75 73 65 72 20 2d 20 74 68 69 73 20 6d 61 79 20 62 65 20 64 61 | ed.as.root.user.-.this.may.be.da |
| d3ae0 | 6e 67 65 72 6f 75 73 2e 20 54 6f 67 65 74 68 65 72 20 77 69 74 68 20 3a 72 65 66 3a 60 63 6f 6d | ngerous..Together.with.:ref:`com |
| d3b00 | 6d 61 6e 64 2d 73 63 72 69 70 74 69 6e 67 60 20 74 68 69 73 20 63 61 6e 20 62 65 20 75 73 65 64 | mand-scripting`.this.can.be.used |
| d3b20 | 20 66 6f 72 20 61 75 74 6f 6d 61 74 69 6e 67 20 28 72 65 2d 29 63 6f 6e 66 69 67 75 72 61 74 69 | .for.automating.(re-)configurati |
| d3b40 | 6f 6e 2e 00 41 6c 6c 20 73 63 72 69 70 74 73 20 65 78 65 63 75 74 65 64 20 74 68 69 73 20 77 61 | on..All.scripts.executed.this.wa |
| d3b60 | 79 20 61 72 65 20 65 78 65 63 75 74 65 64 20 61 73 20 72 6f 6f 74 20 75 73 65 72 20 2d 20 74 68 | y.are.executed.as.root.user.-.th |
| d3b80 | 69 73 20 6d 61 79 20 62 65 20 64 61 6e 67 65 72 6f 75 73 2e 20 54 6f 67 65 74 68 65 72 20 77 69 | is.may.be.dangerous..Together.wi |
| d3ba0 | 74 68 20 3a 72 65 66 3a 60 63 6f 6d 6d 61 6e 64 2d 73 63 72 69 70 74 69 6e 67 60 20 74 68 69 73 | th.:ref:`command-scripting`.this |
| d3bc0 | 20 63 61 6e 20 62 65 20 75 73 65 64 20 66 6f 72 20 61 75 74 6f 6d 61 74 69 6e 67 20 28 72 65 2d | .can.be.used.for.automating.(re- |
| d3be0 | 29 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 41 6c 6c 20 74 68 65 73 65 20 72 75 6c 65 73 20 | )configuration..All.these.rules. |
| d3c00 | 77 69 74 68 20 4f 54 43 20 77 69 6c 6c 20 68 65 6c 70 20 74 6f 20 64 65 74 65 63 74 20 61 6e 64 | with.OTC.will.help.to.detect.and |
| d3c20 | 20 6d 69 74 69 67 61 74 65 20 72 6f 75 74 65 20 6c 65 61 6b 73 20 61 6e 64 20 68 61 70 70 65 6e | .mitigate.route.leaks.and.happen |
| d3c40 | 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 69 66 20 6c 6f 63 61 6c 2d 72 6f 6c 65 20 69 73 20 | .automatically.if.local-role.is. |
| d3c60 | 73 65 74 2e 00 41 6c 6c 20 74 68 6f 73 65 20 70 72 6f 74 6f 63 6f 6c 73 20 61 72 65 20 67 72 6f | set..All.those.protocols.are.gro |
| d3c80 | 75 70 65 64 20 75 6e 64 65 72 20 60 60 69 6e 74 65 72 66 61 63 65 73 20 74 75 6e 6e 65 6c 60 60 | uped.under.``interfaces.tunnel`` |
| d3ca0 | 20 69 6e 20 56 79 4f 53 2e 20 4c 65 74 27 73 20 74 61 6b 65 20 61 20 63 6c 6f 73 65 72 20 6c 6f | .in.VyOS..Let's.take.a.closer.lo |
| d3cc0 | 6f 6b 20 61 74 20 74 68 65 20 70 72 6f 74 6f 63 6f 6c 73 20 61 6e 64 20 6f 70 74 69 6f 6e 73 20 | ok.at.the.protocols.and.options. |
| d3ce0 | 63 75 72 72 65 6e 74 6c 79 20 73 75 70 70 6f 72 74 65 64 20 62 79 20 56 79 4f 53 2e 00 41 6c 6c | currently.supported.by.VyOS..All |
| d3d00 | 20 74 72 61 66 66 69 63 20 62 65 74 77 65 65 6e 20 7a 6f 6e 65 73 20 69 73 20 61 66 66 65 63 74 | .traffic.between.zones.is.affect |
| d3d20 | 65 64 20 62 79 20 65 78 69 73 74 69 6e 67 20 70 6f 6c 69 63 69 65 73 00 41 6c 6c 20 74 72 61 66 | ed.by.existing.policies.All.traf |
| d3d40 | 66 69 63 20 74 6f 20 61 6e 64 20 66 72 6f 6d 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 77 69 74 | fic.to.and.from.an.interface.wit |
| d3d60 | 68 69 6e 20 61 20 7a 6f 6e 65 20 69 73 20 70 65 72 6d 69 74 74 65 64 2e 00 41 6c 6c 20 74 75 6e | hin.a.zone.is.permitted..All.tun |
| d3d80 | 6e 65 6c 20 73 65 73 73 69 6f 6e 73 20 63 61 6e 20 62 65 20 63 68 65 63 6b 65 64 20 76 69 61 3a | nel.sessions.can.be.checked.via: |
| d3da0 | 00 41 6c 6c 2d 41 63 74 69 76 65 20 4d 75 6c 74 69 68 6f 6d 69 6e 67 20 69 73 20 75 73 65 64 20 | .All-Active.Multihoming.is.used. |
| d3dc0 | 66 6f 72 20 72 65 64 75 6e 64 61 6e 63 79 20 61 6e 64 20 6c 6f 61 64 20 73 68 61 72 69 6e 67 2e | for.redundancy.and.load.sharing. |
| d3de0 | 20 53 65 72 76 65 72 73 20 61 72 65 20 61 74 74 61 63 68 65 64 20 74 6f 20 74 77 6f 20 6f 72 20 | .Servers.are.attached.to.two.or. |
| d3e00 | 6d 6f 72 65 20 50 45 73 20 61 6e 64 20 74 68 65 20 6c 69 6e 6b 73 20 61 72 65 20 62 6f 6e 64 65 | more.PEs.and.the.links.are.bonde |
| d3e20 | 64 20 28 6c 69 6e 6b 2d 61 67 67 72 65 67 61 74 69 6f 6e 29 2e 20 54 68 69 73 20 67 72 6f 75 70 | d.(link-aggregation)..This.group |
| d3e40 | 20 6f 66 20 73 65 72 76 65 72 20 6c 69 6e 6b 73 20 69 73 20 72 65 66 65 72 72 65 64 20 74 6f 20 | .of.server.links.is.referred.to. |
| d3e60 | 61 73 20 61 6e 20 3a 61 62 62 72 3a 60 45 53 20 28 45 74 68 65 72 6e 65 74 20 53 65 67 6d 65 6e | as.an.:abbr:`ES.(Ethernet.Segmen |
| d3e80 | 74 29 60 2e 00 41 6c 6c 6f 63 61 74 69 6f 6e 20 63 6c 69 65 6e 74 73 20 69 70 20 61 64 64 72 65 | t)`..Allocation.clients.ip.addre |
| d3ea0 | 73 73 65 73 20 62 79 20 52 41 44 49 55 53 00 41 6c 6c 6f 77 20 60 60 73 73 68 60 60 20 64 79 6e | sses.by.RADIUS.Allow.``ssh``.dyn |
| d3ec0 | 61 6d 69 63 2d 70 72 6f 74 65 63 74 69 6f 6e 2e 00 41 6c 6c 6f 77 20 61 63 63 65 73 73 20 74 6f | amic-protection..Allow.access.to |
| d3ee0 | 20 73 69 74 65 73 20 69 6e 20 61 20 64 6f 6d 61 69 6e 20 77 69 74 68 6f 75 74 20 72 65 74 72 69 | .sites.in.a.domain.without.retri |
| d3f00 | 65 76 69 6e 67 20 74 68 65 6d 20 66 72 6f 6d 20 74 68 65 20 50 72 6f 78 79 20 63 61 63 68 65 2e | eving.them.from.the.Proxy.cache. |
| d3f20 | 20 53 70 65 63 69 66 79 69 6e 67 20 22 76 79 6f 73 2e 6e 65 74 22 20 77 69 6c 6c 20 61 6c 6c 6f | .Specifying."vyos.net".will.allo |
| d3f40 | 77 20 61 63 63 65 73 73 20 74 6f 20 76 79 6f 73 2e 6e 65 74 20 62 75 74 20 74 68 65 20 70 61 67 | w.access.to.vyos.net.but.the.pag |
| d3f60 | 65 73 20 61 63 63 65 73 73 65 64 20 77 69 6c 6c 20 6e 6f 74 20 62 65 20 63 61 63 68 65 64 2e 20 | es.accessed.will.not.be.cached.. |
| d3f80 | 49 74 20 75 73 65 66 75 6c 20 66 6f 72 20 77 6f 72 6b 69 6e 67 20 61 72 6f 75 6e 64 20 70 72 6f | It.useful.for.working.around.pro |
| d3fa0 | 62 6c 65 6d 73 20 77 69 74 68 20 22 49 66 2d 4d 6f 64 69 66 69 65 64 2d 53 69 6e 63 65 22 20 63 | blems.with."If-Modified-Since".c |
| d3fc0 | 68 65 63 6b 69 6e 67 20 61 74 20 63 65 72 74 61 69 6e 20 73 69 74 65 73 2e 00 41 6c 6c 6f 77 20 | hecking.at.certain.sites..Allow. |
| d3fe0 | 62 67 70 20 74 6f 20 6e 65 67 6f 74 69 61 74 65 20 74 68 65 20 65 78 74 65 6e 64 65 64 2d 6e 65 | bgp.to.negotiate.the.extended-ne |
| d4000 | 78 74 68 6f 70 20 63 61 70 61 62 69 6c 69 74 79 20 77 69 74 68 20 69 74 e2 80 99 73 20 70 65 65 | xthop.capability.with.it...s.pee |
| d4020 | 72 2e 20 49 66 20 79 6f 75 20 61 72 65 20 70 65 65 72 69 6e 67 20 6f 76 65 72 20 61 20 49 50 76 | r..If.you.are.peering.over.a.IPv |
| d4040 | 36 20 4c 69 6e 6b 2d 4c 6f 63 61 6c 20 61 64 64 72 65 73 73 20 74 68 65 6e 20 74 68 69 73 20 63 | 6.Link-Local.address.then.this.c |
| d4060 | 61 70 61 62 69 6c 69 74 79 20 69 73 20 74 75 72 6e 65 64 20 6f 6e 20 61 75 74 6f 6d 61 74 69 63 | apability.is.turned.on.automatic |
| d4080 | 61 6c 6c 79 2e 20 49 66 20 79 6f 75 20 61 72 65 20 70 65 65 72 69 6e 67 20 6f 76 65 72 20 61 20 | ally..If.you.are.peering.over.a. |
| d40a0 | 49 50 76 36 20 47 6c 6f 62 61 6c 20 41 64 64 72 65 73 73 20 74 68 65 6e 20 74 75 72 6e 69 6e 67 | IPv6.Global.Address.then.turning |
| d40c0 | 20 6f 6e 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 77 69 6c 6c 20 61 6c 6c 6f 77 20 42 47 50 20 | .on.this.command.will.allow.BGP. |
| d40e0 | 74 6f 20 69 6e 73 74 61 6c 6c 20 49 50 76 34 20 72 6f 75 74 65 73 20 77 69 74 68 20 49 50 76 36 | to.install.IPv4.routes.with.IPv6 |
| d4100 | 20 6e 65 78 74 68 6f 70 73 20 69 66 20 79 6f 75 20 64 6f 20 6e 6f 74 20 68 61 76 65 20 49 50 76 | .nexthops.if.you.do.not.have.IPv |
| d4120 | 34 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 69 6e 74 65 72 66 61 63 65 73 2e 00 41 6c 6c 6f | 4.configured.on.interfaces..Allo |
| d4140 | 77 20 63 72 6f 73 73 2d 6f 72 69 67 69 6e 20 72 65 71 75 65 73 74 73 20 66 72 6f 6d 20 60 3c 6f | w.cross-origin.requests.from.`<o |
| d4160 | 72 69 67 69 6e 3e 60 2e 00 41 6c 6c 6f 77 20 65 78 70 6c 69 63 69 74 20 49 50 76 36 20 61 64 64 | rigin>`..Allow.explicit.IPv6.add |
| d4180 | 72 65 73 73 20 66 6f 72 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 2e 00 41 6c 6c 6f 77 20 68 6f | ress.for.the.interface..Allow.ho |
| d41a0 | 73 74 20 6e 65 74 77 6f 72 6b 69 6e 67 20 69 6e 20 61 20 63 6f 6e 74 61 69 6e 65 72 2e 20 54 68 | st.networking.in.a.container..Th |
| d41c0 | 65 20 6e 65 74 77 6f 72 6b 20 73 74 61 63 6b 20 6f 66 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 | e.network.stack.of.the.container |
| d41e0 | 20 69 73 20 6e 6f 74 20 69 73 6f 6c 61 74 65 64 20 66 72 6f 6d 20 74 68 65 20 68 6f 73 74 20 61 | .is.not.isolated.from.the.host.a |
| d4200 | 6e 64 20 77 69 6c 6c 20 75 73 65 20 74 68 65 20 68 6f 73 74 20 49 50 2e 00 41 6c 6c 6f 77 20 6c | nd.will.use.the.host.IP..Allow.l |
| d4220 | 69 73 74 69 6e 67 20 61 64 64 69 74 69 6f 6e 61 6c 20 63 75 73 74 6f 6d 20 64 6f 6d 61 69 6e 73 | isting.additional.custom.domains |
| d4240 | 20 74 6f 20 62 65 20 62 72 6f 77 73 65 64 20 28 69 6e 20 61 64 64 69 74 69 6f 6e 20 74 6f 20 74 | .to.be.browsed.(in.addition.to.t |
| d4260 | 68 65 20 64 65 66 61 75 6c 74 20 60 60 6c 6f 63 61 6c 60 60 29 20 73 6f 20 74 68 61 74 20 74 68 | he.default.``local``).so.that.th |
| d4280 | 65 79 20 63 61 6e 20 62 65 20 72 65 66 6c 65 63 74 65 64 2e 00 41 6c 6c 6f 77 20 74 68 69 73 20 | ey.can.be.reflected..Allow.this. |
| d42a0 | 42 46 44 20 70 65 65 72 20 74 6f 20 6e 6f 74 20 62 65 20 64 69 72 65 63 74 6c 79 20 63 6f 6e 6e | BFD.peer.to.not.be.directly.conn |
| d42c0 | 65 63 74 65 64 00 41 6c 6c 6f 77 65 64 20 76 61 6c 75 65 73 20 66 70 72 20 54 43 50 20 66 6c 61 | ected.Allowed.values.fpr.TCP.fla |
| d42e0 | 67 73 3a 20 60 60 53 59 4e 60 60 2c 20 60 60 41 43 4b 60 60 2c 20 60 60 46 49 4e 60 60 2c 20 60 | gs:.``SYN``,.``ACK``,.``FIN``,.` |
| d4300 | 60 52 53 54 60 60 2c 20 60 60 55 52 47 60 60 2c 20 60 60 50 53 48 60 60 2c 20 60 60 41 4c 4c 60 | `RST``,.``URG``,.``PSH``,.``ALL` |
| d4320 | 60 20 57 68 65 6e 20 73 70 65 63 69 66 79 69 6e 67 20 6d 6f 72 65 20 74 68 61 6e 20 6f 6e 65 20 | `.When.specifying.more.than.one. |
| d4340 | 66 6c 61 67 2c 20 66 6c 61 67 73 20 73 68 6f 75 6c 64 20 62 65 20 63 6f 6d 6d 61 20 73 65 70 61 | flag,.flags.should.be.comma.sepa |
| d4360 | 72 61 74 65 64 2e 20 54 68 65 20 60 60 21 60 60 20 6e 65 67 61 74 65 20 74 68 65 20 73 65 6c 65 | rated..The.``!``.negate.the.sele |
| d4380 | 63 74 65 64 20 70 72 6f 74 6f 63 6f 6c 2e 00 41 6c 6c 6f 77 65 64 20 76 61 6c 75 65 73 20 66 70 | cted.protocol..Allowed.values.fp |
| d43a0 | 72 20 54 43 50 20 66 6c 61 67 73 3a 20 60 60 61 63 6b 60 60 2c 20 60 60 63 77 72 60 60 2c 20 60 | r.TCP.flags:.``ack``,.``cwr``,.` |
| d43c0 | 60 65 63 6e 60 60 2c 20 60 60 66 69 6e 60 60 2c 20 60 60 70 73 68 60 60 2c 20 60 60 72 73 74 60 | `ecn``,.``fin``,.``psh``,.``rst` |
| d43e0 | 60 2c 20 60 60 73 79 6e 60 60 20 61 6e 64 20 60 60 75 72 67 60 60 2e 20 4d 75 6c 74 69 70 6c 65 | `,.``syn``.and.``urg``..Multiple |
| d4400 | 20 76 61 6c 75 65 73 20 61 72 65 20 73 75 70 70 6f 72 74 65 64 2c 20 61 6e 64 20 66 6f 72 20 69 | .values.are.supported,.and.for.i |
| d4420 | 6e 76 65 72 74 65 64 20 73 65 6c 65 63 74 69 6f 6e 20 75 73 65 20 60 60 6e 6f 74 60 60 2c 20 61 | nverted.selection.use.``not``,.a |
| d4440 | 73 20 73 68 6f 77 6e 20 69 6e 20 74 68 65 20 65 78 61 6d 70 6c 65 2e 00 41 6c 6c 6f 77 73 20 73 | s.shown.in.the.example..Allows.s |
| d4460 | 70 65 63 69 66 69 63 20 56 4c 41 4e 20 49 44 73 20 74 6f 20 70 61 73 73 20 74 68 72 6f 75 67 68 | pecific.VLAN.IDs.to.pass.through |
| d4480 | 20 74 68 65 20 62 72 69 64 67 65 20 6d 65 6d 62 65 72 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 | .the.bridge.member.interface..Th |
| d44a0 | 69 73 20 63 61 6e 20 65 69 74 68 65 72 20 62 65 20 61 6e 20 69 6e 64 69 76 69 64 75 61 6c 20 56 | is.can.either.be.an.individual.V |
| d44c0 | 4c 41 4e 20 69 64 20 6f 72 20 61 20 72 61 6e 67 65 20 6f 66 20 56 4c 41 4e 20 69 64 73 20 64 65 | LAN.id.or.a.range.of.VLAN.ids.de |
| d44e0 | 6c 69 6d 69 74 65 64 20 62 79 20 61 20 68 79 70 68 65 6e 2e 00 41 6c 6c 6f 77 73 20 74 6f 20 64 | limited.by.a.hyphen..Allows.to.d |
| d4500 | 65 66 69 6e 65 20 55 52 4c 20 70 61 74 68 20 6d 61 74 63 68 69 6e 67 20 72 75 6c 65 73 20 66 6f | efine.URL.path.matching.rules.fo |
| d4520 | 72 20 61 20 73 70 65 63 69 66 69 63 20 73 65 72 76 69 63 65 2e 00 41 6c 6c 6f 77 73 20 79 6f 75 | r.a.specific.service..Allows.you |
| d4540 | 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 6e 65 78 74 2d 68 6f 70 20 69 6e 74 65 72 | .to.configure.the.next-hop.inter |
| d4560 | 66 61 63 65 20 66 6f 72 20 61 6e 20 69 6e 74 65 72 66 61 63 65 2d 62 61 73 65 64 20 49 50 76 34 | face.for.an.interface-based.IPv4 |
| d4580 | 20 73 74 61 74 69 63 20 72 6f 75 74 65 2e 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 20 77 69 6c | .static.route..`<interface>`.wil |
| d45a0 | 6c 20 62 65 20 74 68 65 20 6e 65 78 74 2d 68 6f 70 20 69 6e 74 65 72 66 61 63 65 20 77 68 65 72 | l.be.the.next-hop.interface.wher |
| d45c0 | 65 20 74 72 61 66 66 69 63 20 69 73 20 72 6f 75 74 65 64 20 66 6f 72 20 74 68 65 20 67 69 76 65 | e.traffic.is.routed.for.the.give |
| d45e0 | 6e 20 60 3c 73 75 62 6e 65 74 3e 60 2e 00 41 6c 6c 6f 77 73 20 79 6f 75 20 74 6f 20 63 6f 6e 66 | n.`<subnet>`..Allows.you.to.conf |
| d4600 | 69 67 75 72 65 20 74 68 65 20 6e 65 78 74 2d 68 6f 70 20 69 6e 74 65 72 66 61 63 65 20 66 6f 72 | igure.the.next-hop.interface.for |
| d4620 | 20 61 6e 20 69 6e 74 65 72 66 61 63 65 2d 62 61 73 65 64 20 49 50 76 36 20 73 74 61 74 69 63 20 | .an.interface-based.IPv6.static. |
| d4640 | 72 6f 75 74 65 2e 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 20 77 69 6c 6c 20 62 65 20 74 68 65 | route..`<interface>`.will.be.the |
| d4660 | 20 6e 65 78 74 2d 68 6f 70 20 69 6e 74 65 72 66 61 63 65 20 77 68 65 72 65 20 74 72 61 66 66 69 | .next-hop.interface.where.traffi |
| d4680 | 63 20 69 73 20 72 6f 75 74 65 64 20 66 6f 72 20 74 68 65 20 67 69 76 65 6e 20 60 3c 73 75 62 6e | c.is.routed.for.the.given.`<subn |
| d46a0 | 65 74 3e 60 2e 00 41 6c 72 65 61 64 79 20 6c 65 61 72 6e 65 64 20 6b 6e 6f 77 6e 5f 68 6f 73 74 | et>`..Already.learned.known_host |
| d46c0 | 73 20 66 69 6c 65 73 20 6f 66 20 63 6c 69 65 6e 74 73 20 6e 65 65 64 20 61 6e 20 75 70 64 61 74 | s.files.of.clients.need.an.updat |
| d46e0 | 65 20 61 73 20 74 68 65 20 70 75 62 6c 69 63 20 6b 65 79 20 77 69 6c 6c 20 63 68 61 6e 67 65 2e | e.as.the.public.key.will.change. |
| d4700 | 00 41 6c 73 6f 2c 20 2a 2a 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 2a 2a 20 69 73 20 61 6e 20 | .Also,.**default-action**.is.an. |
| d4720 | 61 63 74 69 6f 6e 20 74 68 61 74 20 74 61 6b 65 73 20 70 6c 61 63 65 20 77 68 65 6e 65 76 65 72 | action.that.takes.place.whenever |
| d4740 | 20 61 20 70 61 63 6b 65 74 20 64 6f 65 73 20 6e 6f 74 20 6d 61 74 63 68 20 61 6e 79 20 72 75 6c | .a.packet.does.not.match.any.rul |
| d4760 | 65 20 69 6e 20 69 74 27 73 20 63 68 61 69 6e 2e 20 46 6f 72 20 62 61 73 65 20 63 68 61 69 6e 73 | e.in.it's.chain..For.base.chains |
| d4780 | 2c 20 70 6f 73 73 69 62 6c 65 20 6f 70 74 69 6f 6e 73 20 66 6f 72 20 2a 2a 64 65 66 61 75 6c 74 | ,.possible.options.for.**default |
| d47a0 | 2d 61 63 74 69 6f 6e 2a 2a 20 61 72 65 20 2a 2a 61 63 63 65 70 74 2a 2a 20 6f 72 20 2a 2a 64 72 | -action**.are.**accept**.or.**dr |
| d47c0 | 6f 70 2a 2a 2e 00 41 6c 73 6f 2c 20 2a 2a 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 2a 2a 20 69 | op**..Also,.**default-action**.i |
| d47e0 | 73 20 61 6e 20 61 63 74 69 6f 6e 20 74 68 61 74 20 74 61 6b 65 73 20 70 6c 61 63 65 20 77 68 65 | s.an.action.that.takes.place.whe |
| d4800 | 6e 65 76 65 72 20 61 20 70 61 63 6b 65 74 20 64 6f 65 73 20 6e 6f 74 20 6d 61 74 63 68 20 61 6e | never.a.packet.does.not.match.an |
| d4820 | 79 20 72 75 6c 65 20 69 6e 20 69 74 73 27 20 63 68 61 69 6e 2e 20 46 6f 72 20 62 61 73 65 20 63 | y.rule.in.its'.chain..For.base.c |
| d4840 | 68 61 69 6e 73 2c 20 70 6f 73 73 69 62 6c 65 20 6f 70 74 69 6f 6e 73 20 66 6f 72 20 2a 2a 64 65 | hains,.possible.options.for.**de |
| d4860 | 66 61 75 6c 74 2d 61 63 74 69 6f 6e 2a 2a 20 61 72 65 20 2a 2a 61 63 63 65 70 74 2a 2a 20 6f 72 | fault-action**.are.**accept**.or |
| d4880 | 20 2a 2a 64 72 6f 70 2a 2a 2e 00 41 6c 73 6f 2c 20 66 6f 72 20 62 61 63 6b 77 61 72 64 73 20 63 | .**drop**..Also,.for.backwards.c |
| d48a0 | 6f 6d 70 61 74 69 62 69 6c 69 74 79 20 74 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2c | ompatibility.this.configuration, |
| d48c0 | 20 77 68 69 63 68 20 75 73 65 73 20 67 65 6e 65 72 69 63 20 69 6e 74 65 72 66 61 63 65 20 64 65 | .which.uses.generic.interface.de |
| d48e0 | 66 69 6e 69 74 69 6f 6e 2c 20 69 73 20 73 74 69 6c 6c 20 76 61 6c 69 64 3a 00 41 6c 73 6f 2c 20 | finition,.is.still.valid:.Also,. |
| d4900 | 66 6f 72 20 74 68 6f 73 65 20 77 68 6f 20 68 61 76 65 6e 27 74 20 75 70 64 61 74 65 64 20 74 6f | for.those.who.haven't.updated.to |
| d4920 | 20 6e 65 77 65 72 20 76 65 72 73 69 6f 6e 2c 20 6c 65 67 61 63 79 20 64 6f 63 75 6d 65 6e 74 61 | .newer.version,.legacy.documenta |
| d4940 | 74 69 6f 6e 20 69 73 20 73 74 69 6c 6c 20 70 72 65 73 65 6e 74 20 61 6e 64 20 76 61 6c 69 64 20 | tion.is.still.present.and.valid. |
| d4960 | 66 6f 72 20 61 6c 6c 20 73 61 67 69 74 74 61 20 76 65 72 73 69 6f 6e 20 70 72 69 6f 72 20 74 6f | for.all.sagitta.version.prior.to |
| d4980 | 20 56 79 4f 53 20 31 2e 34 2d 72 6f 6c 6c 69 6e 67 2d 32 30 32 33 30 38 30 34 30 35 35 37 3a 00 | .VyOS.1.4-rolling-202308040557:. |
| d49a0 | 41 6c 73 6f 2c 20 69 66 20 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 60 60 71 75 65 75 | Also,.if.action.is.set.to.``queu |
| d49c0 | 65 60 60 2c 20 75 73 65 20 6e 65 78 74 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 70 65 63 69 66 79 | e``,.use.next.command.to.specify |
| d49e0 | 20 74 68 65 20 71 75 65 75 65 20 6f 70 74 69 6f 6e 73 2e 20 50 6f 73 73 69 62 6c 65 20 6f 70 74 | .the.queue.options..Possible.opt |
| d4a00 | 69 6f 6e 73 20 61 72 65 20 60 60 62 79 70 61 73 73 60 60 20 61 6e 64 20 60 60 66 61 6e 6f 75 74 | ions.are.``bypass``.and.``fanout |
| d4a20 | 60 60 3a 00 41 6c 73 6f 2c 20 69 6e 20 3a 72 65 66 3a 60 64 65 73 74 69 6e 61 74 69 6f 6e 2d 6e | ``:.Also,.in.:ref:`destination-n |
| d4a40 | 61 74 60 2c 20 72 65 64 69 72 65 63 74 69 6f 6e 20 74 6f 20 6c 6f 63 61 6c 68 6f 73 74 20 69 73 | at`,.redirection.to.localhost.is |
| d4a60 | 20 73 75 70 70 6f 72 74 65 64 2e 20 54 68 65 20 72 65 64 69 72 65 63 74 20 73 74 61 74 65 6d 65 | .supported..The.redirect.stateme |
| d4a80 | 6e 74 20 69 73 20 61 20 73 70 65 63 69 61 6c 20 66 6f 72 6d 20 6f 66 20 64 6e 61 74 20 77 68 69 | nt.is.a.special.form.of.dnat.whi |
| d4aa0 | 63 68 20 61 6c 77 61 79 73 20 74 72 61 6e 73 6c 61 74 65 73 20 74 68 65 20 64 65 73 74 69 6e 61 | ch.always.translates.the.destina |
| d4ac0 | 74 69 6f 6e 20 61 64 64 72 65 73 73 20 74 6f 20 74 68 65 20 6c 6f 63 61 6c 20 68 6f 73 74 e2 80 | tion.address.to.the.local.host.. |
| d4ae0 | 99 73 20 6f 6e 65 2e 00 41 6c 73 6f 2c 20 73 70 65 63 69 66 69 63 20 74 69 6d 65 6f 75 74 20 63 | .s.one..Also,.specific.timeout.c |
| d4b00 | 61 6e 20 62 65 20 64 65 66 69 6e 65 64 20 70 65 72 20 72 75 6c 65 2e 20 49 6e 20 63 61 73 65 20 | an.be.defined.per.rule..In.case. |
| d4b20 | 72 75 6c 65 20 67 65 74 73 20 61 20 68 69 74 2c 20 73 6f 75 72 63 65 20 6f 72 20 64 65 73 74 69 | rule.gets.a.hit,.source.or.desti |
| d4b40 | 6e 61 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 77 69 6c 6c 20 62 65 20 61 64 64 65 64 | natination.address.will.be.added |
| d4b60 | 20 74 6f 20 74 68 65 20 67 72 6f 75 70 2c 20 61 6e 64 20 74 68 69 73 20 65 6c 65 6d 65 6e 74 20 | .to.the.group,.and.this.element. |
| d4b80 | 77 69 6c 6c 20 72 65 6d 61 69 6e 20 69 6e 20 74 68 65 20 67 72 6f 75 70 20 75 6e 74 69 6c 20 74 | will.remain.in.the.group.until.t |
| d4ba0 | 69 6d 65 6f 75 74 20 65 78 70 69 72 65 73 2e 20 49 66 20 6e 6f 20 74 69 6d 65 6f 75 74 20 69 73 | imeout.expires..If.no.timeout.is |
| d4bc0 | 20 64 65 66 69 6e 65 64 2c 20 74 68 65 6e 20 74 68 65 20 65 6c 65 6d 65 6e 74 20 77 69 6c 6c 20 | .defined,.then.the.element.will. |
| d4be0 | 72 65 6d 61 69 6e 20 69 6e 20 74 68 65 20 67 72 6f 75 70 20 75 6e 74 69 6c 20 6e 65 78 74 20 72 | remain.in.the.group.until.next.r |
| d4c00 | 65 62 6f 6f 74 2c 20 6f 72 20 75 6e 74 69 6c 20 61 20 6e 65 77 20 63 6f 6d 6d 69 74 20 74 68 61 | eboot,.or.until.a.new.commit.tha |
| d4c20 | 74 20 63 68 61 6e 67 65 73 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e | t.changes.firewall.configuration |
| d4c40 | 20 69 73 20 64 6f 6e 65 2e 00 41 6c 73 6f 2c 20 73 70 65 63 69 66 69 63 20 74 69 6d 65 6f 75 74 | .is.done..Also,.specific.timeout |
| d4c60 | 73 20 63 61 6e 20 62 65 20 64 65 66 69 6e 65 64 20 70 65 72 20 72 75 6c 65 2e 20 49 6e 20 63 61 | s.can.be.defined.per.rule..In.ca |
| d4c80 | 73 65 20 72 75 6c 65 20 67 65 74 73 20 61 20 68 69 74 2c 20 61 20 73 6f 75 72 63 65 20 6f 72 20 | se.rule.gets.a.hit,.a.source.or. |
| d4ca0 | 64 65 73 74 69 6e 61 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 77 69 6c 6c 20 62 65 20 | destinatination.address.will.be. |
| d4cc0 | 61 64 64 65 64 20 74 6f 20 74 68 65 20 67 72 6f 75 70 2c 20 61 6e 64 20 74 68 69 73 20 65 6c 65 | added.to.the.group,.and.this.ele |
| d4ce0 | 6d 65 6e 74 20 77 69 6c 6c 20 72 65 6d 61 69 6e 20 69 6e 20 74 68 65 20 67 72 6f 75 70 20 75 6e | ment.will.remain.in.the.group.un |
| d4d00 | 74 69 6c 20 74 68 65 20 74 69 6d 65 6f 75 74 20 65 78 70 69 72 65 73 2e 20 49 66 20 6e 6f 20 74 | til.the.timeout.expires..If.no.t |
| d4d20 | 69 6d 65 6f 75 74 20 69 73 20 64 65 66 69 6e 65 64 2c 20 74 68 65 6e 20 74 68 65 20 65 6c 65 6d | imeout.is.defined,.then.the.elem |
| d4d40 | 65 6e 74 20 77 69 6c 6c 20 72 65 6d 61 69 6e 20 69 6e 20 74 68 65 20 67 72 6f 75 70 20 75 6e 74 | ent.will.remain.in.the.group.unt |
| d4d60 | 69 6c 20 6e 65 78 74 20 72 65 62 6f 6f 74 2c 20 6f 72 20 75 6e 74 69 6c 20 61 20 6e 65 77 20 63 | il.next.reboot,.or.until.a.new.c |
| d4d80 | 6f 6d 6d 69 74 20 74 68 61 74 20 63 68 61 6e 67 65 73 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 | ommit.that.changes.firewall.conf |
| d4da0 | 69 67 75 72 61 74 69 6f 6e 20 69 73 20 64 6f 6e 65 2e 00 41 6c 74 65 72 6e 61 74 65 20 52 6f 75 | iguration.is.done..Alternate.Rou |
| d4dc0 | 74 69 6e 67 20 54 61 62 6c 65 73 00 41 6c 74 65 72 6e 61 74 65 20 72 6f 75 74 69 6e 67 20 74 61 | ting.Tables.Alternate.routing.ta |
| d4de0 | 62 6c 65 73 20 61 72 65 20 75 73 65 64 20 77 69 74 68 20 70 6f 6c 69 63 79 20 62 61 73 65 64 20 | bles.are.used.with.policy.based. |
| d4e00 | 72 6f 75 74 69 6e 67 20 62 79 20 75 74 69 6c 69 7a 69 6e 67 20 3a 72 65 66 3a 60 76 72 66 60 2e | routing.by.utilizing.:ref:`vrf`. |
| d4e20 | 00 41 6c 74 65 72 6e 61 74 69 76 65 20 74 6f 20 6d 75 6c 74 69 63 61 73 74 2c 20 74 68 65 20 72 | .Alternative.to.multicast,.the.r |
| d4e40 | 65 6d 6f 74 65 20 49 50 76 34 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 56 58 4c 41 4e 20 | emote.IPv4.address.of.the.VXLAN. |
| d4e60 | 74 75 6e 6e 65 6c 20 63 61 6e 20 62 65 20 73 65 74 20 64 69 72 65 63 74 6c 79 2e 20 4c 65 74 27 | tunnel.can.be.set.directly..Let' |
| d4e80 | 73 20 63 68 61 6e 67 65 20 74 68 65 20 4d 75 6c 74 69 63 61 73 74 20 65 78 61 6d 70 6c 65 20 66 | s.change.the.Multicast.example.f |
| d4ea0 | 72 6f 6d 20 61 62 6f 76 65 3a 00 41 6c 74 65 72 6e 61 74 69 76 65 6c 79 20 74 6f 20 6d 75 6c 74 | rom.above:.Alternatively.to.mult |
| d4ec0 | 69 63 61 73 74 2c 20 74 68 65 20 72 65 6d 6f 74 65 20 49 50 76 34 20 61 64 64 72 65 73 73 20 6f | icast,.the.remote.IPv4.address.o |
| d4ee0 | 66 20 74 68 65 20 56 58 4c 41 4e 20 74 75 6e 6e 65 6c 20 63 61 6e 20 62 65 20 73 65 74 20 64 69 | f.the.VXLAN.tunnel.can.be.set.di |
| d4f00 | 72 65 63 74 6c 79 2e 20 4c 65 74 27 73 20 63 68 61 6e 67 65 20 74 68 65 20 4d 75 6c 74 69 63 61 | rectly..Let's.change.the.Multica |
| d4f20 | 73 74 20 65 78 61 6d 70 6c 65 20 66 72 6f 6d 20 61 62 6f 76 65 3a 00 41 6c 77 61 79 73 20 65 78 | st.example.from.above:.Always.ex |
| d4f40 | 63 6c 75 64 65 20 74 68 69 73 20 61 64 64 72 65 73 73 20 66 72 6f 6d 20 61 6e 79 20 64 65 66 69 | clude.this.address.from.any.defi |
| d4f60 | 6e 65 64 20 72 61 6e 67 65 2e 20 54 68 69 73 20 61 64 64 72 65 73 73 20 77 69 6c 6c 20 6e 65 76 | ned.range..This.address.will.nev |
| d4f80 | 65 72 20 62 65 20 61 73 73 69 67 6e 65 64 20 62 79 20 74 68 65 20 44 48 43 50 20 73 65 72 76 65 | er.be.assigned.by.the.DHCP.serve |
| d4fa0 | 72 2e 00 41 6e 20 2a 2a 69 6e 74 65 72 66 61 63 65 20 67 72 6f 75 70 2a 2a 20 72 65 70 72 65 73 | r..An.**interface.group**.repres |
| d4fc0 | 65 6e 74 73 20 61 20 63 6f 6c 6c 65 63 74 69 6f 6e 20 6f 66 20 69 6e 74 65 72 66 61 63 65 73 2e | ents.a.collection.of.interfaces. |
| d4fe0 | 00 41 6e 20 41 53 20 69 73 20 61 20 63 6f 6e 6e 65 63 74 65 64 20 67 72 6f 75 70 20 6f 66 20 6f | .An.AS.is.a.connected.group.of.o |
| d5000 | 6e 65 20 6f 72 20 6d 6f 72 65 20 49 50 20 70 72 65 66 69 78 65 73 20 72 75 6e 20 62 79 20 6f 6e | ne.or.more.IP.prefixes.run.by.on |
| d5020 | 65 20 6f 72 20 6d 6f 72 65 20 6e 65 74 77 6f 72 6b 20 6f 70 65 72 61 74 6f 72 73 20 77 68 69 63 | e.or.more.network.operators.whic |
| d5040 | 68 20 68 61 73 20 61 20 53 49 4e 47 4c 45 20 61 6e 64 20 43 4c 45 41 52 4c 59 20 44 45 46 49 4e | h.has.a.SINGLE.and.CLEARLY.DEFIN |
| d5060 | 45 44 20 72 6f 75 74 69 6e 67 20 70 6f 6c 69 63 79 2e 00 41 6e 20 45 74 68 65 72 6e 65 74 20 53 | ED.routing.policy..An.Ethernet.S |
| d5080 | 65 67 6d 65 6e 74 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 62 79 20 73 70 65 63 | egment.can.be.configured.by.spec |
| d50a0 | 69 66 79 69 6e 67 20 61 20 73 79 73 74 65 6d 2d 4d 41 43 20 61 6e 64 20 61 20 6c 6f 63 61 6c 20 | ifying.a.system-MAC.and.a.local. |
| d50c0 | 64 69 73 63 72 69 6d 69 6e 61 74 6f 72 20 6f 72 20 61 20 63 6f 6d 70 6c 65 74 65 20 45 53 49 4e | discriminator.or.a.complete.ESIN |
| d50e0 | 41 4d 45 20 61 67 61 69 6e 73 74 20 74 68 65 20 62 6f 6e 64 20 69 6e 74 65 72 66 61 63 65 20 6f | AME.against.the.bond.interface.o |
| d5100 | 6e 20 74 68 65 20 50 45 2e 00 41 6e 20 49 50 76 34 20 54 43 50 20 66 69 6c 74 65 72 20 77 69 6c | n.the.PE..An.IPv4.TCP.filter.wil |
| d5120 | 6c 20 6f 6e 6c 79 20 6d 61 74 63 68 20 70 61 63 6b 65 74 73 20 77 69 74 68 20 61 6e 20 49 50 76 | l.only.match.packets.with.an.IPv |
| d5140 | 34 20 68 65 61 64 65 72 20 6c 65 6e 67 74 68 20 6f 66 20 32 30 20 62 79 74 65 73 20 28 77 68 69 | 4.header.length.of.20.bytes.(whi |
| d5160 | 63 68 20 69 73 20 74 68 65 20 6d 61 6a 6f 72 69 74 79 20 6f 66 20 49 50 76 34 20 70 61 63 6b 65 | ch.is.the.majority.of.IPv4.packe |
| d5180 | 74 73 20 61 6e 79 77 61 79 29 2e 00 41 6e 20 53 4e 4d 50 2d 6d 61 6e 61 67 65 64 20 6e 65 74 77 | ts.anyway)..An.SNMP-managed.netw |
| d51a0 | 6f 72 6b 20 63 6f 6e 73 69 73 74 73 20 6f 66 20 74 68 72 65 65 20 6b 65 79 20 63 6f 6d 70 6f 6e | ork.consists.of.three.key.compon |
| d51c0 | 65 6e 74 73 3a 00 41 6e 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 20 73 70 65 63 69 66 79 69 6e | ents:.An.`<interface>`.specifyin |
| d51e0 | 67 20 77 68 69 63 68 20 73 6c 61 76 65 20 69 73 20 74 68 65 20 70 72 69 6d 61 72 79 20 64 65 76 | g.which.slave.is.the.primary.dev |
| d5200 | 69 63 65 2e 20 54 68 65 20 73 70 65 63 69 66 69 65 64 20 64 65 76 69 63 65 20 77 69 6c 6c 20 61 | ice..The.specified.device.will.a |
| d5220 | 6c 77 61 79 73 20 62 65 20 74 68 65 20 61 63 74 69 76 65 20 73 6c 61 76 65 20 77 68 69 6c 65 20 | lways.be.the.active.slave.while. |
| d5240 | 69 74 20 69 73 20 61 76 61 69 6c 61 62 6c 65 2e 20 4f 6e 6c 79 20 77 68 65 6e 20 74 68 65 20 70 | it.is.available..Only.when.the.p |
| d5260 | 72 69 6d 61 72 79 20 69 73 20 6f 66 66 2d 6c 69 6e 65 20 77 69 6c 6c 20 61 6c 74 65 72 6e 61 74 | rimary.is.off-line.will.alternat |
| d5280 | 65 20 64 65 76 69 63 65 73 20 62 65 20 75 73 65 64 2e 20 54 68 69 73 20 69 73 20 75 73 65 66 75 | e.devices.be.used..This.is.usefu |
| d52a0 | 6c 20 77 68 65 6e 20 6f 6e 65 20 73 6c 61 76 65 20 69 73 20 70 72 65 66 65 72 72 65 64 20 6f 76 | l.when.one.slave.is.preferred.ov |
| d52c0 | 65 72 20 61 6e 6f 74 68 65 72 2c 20 65 2e 67 2e 2c 20 77 68 65 6e 20 6f 6e 65 20 73 6c 61 76 65 | er.another,.e.g.,.when.one.slave |
| d52e0 | 20 68 61 73 20 68 69 67 68 65 72 20 74 68 72 6f 75 67 68 70 75 74 20 74 68 61 6e 20 61 6e 6f 74 | .has.higher.throughput.than.anot |
| d5300 | 68 65 72 2e 00 41 6e 20 61 64 64 69 74 69 6f 6e 61 6c 20 6c 61 79 65 72 20 6f 66 20 73 79 6d 6d | her..An.additional.layer.of.symm |
| d5320 | 65 74 72 69 63 2d 6b 65 79 20 63 72 79 70 74 6f 20 63 61 6e 20 62 65 20 75 73 65 64 20 6f 6e 20 | etric-key.crypto.can.be.used.on. |
| d5340 | 74 6f 70 20 6f 66 20 74 68 65 20 61 73 79 6d 6d 65 74 72 69 63 20 63 72 79 70 74 6f 2e 00 41 6e | top.of.the.asymmetric.crypto..An |
| d5360 | 20 61 64 64 69 74 69 6f 6e 61 6c 20 6c 61 79 65 72 20 6f 66 20 73 79 6d 6d 65 74 72 69 63 2d 6b | .additional.layer.of.symmetric-k |
| d5380 | 65 79 20 63 72 79 70 74 6f 20 63 61 6e 20 62 65 20 75 73 65 64 20 6f 6e 20 74 6f 70 20 6f 66 20 | ey.crypto.can.be.used.on.top.of. |
| d53a0 | 74 68 65 20 61 73 79 6d 6d 65 74 72 69 63 20 63 72 79 70 74 6f 2e 20 54 68 69 73 20 63 6f 6d 6d | the.asymmetric.crypto..This.comm |
| d53c0 | 61 6e 64 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 63 72 65 61 74 65 73 20 66 6f 72 20 79 6f | and.automatically.creates.for.yo |
| d53e0 | 75 20 74 68 65 20 72 65 71 75 69 72 65 64 20 43 4c 49 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 69 6e | u.the.required.CLI.command.to.in |
| d5400 | 73 74 61 6c 6c 20 74 68 69 73 20 50 53 4b 20 66 6f 72 20 61 20 67 69 76 65 6e 20 70 65 65 72 2e | stall.this.PSK.for.a.given.peer. |
| d5420 | 00 41 6e 20 61 64 64 69 74 69 6f 6e 61 6c 20 6c 61 79 65 72 20 6f 66 20 73 79 6d 6d 65 74 72 69 | .An.additional.layer.of.symmetri |
| d5440 | 63 2d 6b 65 79 20 63 72 79 70 74 6f 20 63 61 6e 20 62 65 20 75 73 65 64 20 6f 6e 20 74 6f 70 20 | c-key.crypto.can.be.used.on.top. |
| d5460 | 6f 66 20 74 68 65 20 61 73 79 6d 6d 65 74 72 69 63 20 63 72 79 70 74 6f 2e 20 54 68 69 73 20 63 | of.the.asymmetric.crypto..This.c |
| d5480 | 6f 6d 6d 61 6e 64 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 63 72 65 61 74 65 73 20 74 68 65 | ommand.automatically.creates.the |
| d54a0 | 20 72 65 71 75 69 72 65 64 20 43 4c 49 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 69 6e 73 74 61 6c 6c | .required.CLI.command.to.install |
| d54c0 | 20 74 68 69 73 20 50 53 4b 20 66 6f 72 20 61 20 67 69 76 65 6e 20 70 65 65 72 2e 00 41 6e 20 61 | .this.PSK.for.a.given.peer..An.a |
| d54e0 | 64 64 69 74 69 6f 6e 61 6c 20 6c 61 79 65 72 20 6f 66 20 73 79 6d 6d 65 74 72 69 63 2d 6b 65 79 | dditional.layer.of.symmetric-key |
| d5500 | 20 63 72 79 70 74 6f 20 63 61 6e 20 62 65 20 75 73 65 64 20 6f 6e 20 74 6f 70 20 6f 66 20 74 68 | .crypto.can.be.used.on.top.of.th |
| d5520 | 65 20 61 73 79 6d 6d 65 74 72 69 63 20 63 72 79 70 74 6f 2e 20 54 68 69 73 20 69 73 20 6f 70 74 | e.asymmetric.crypto..This.is.opt |
| d5540 | 69 6f 6e 61 6c 2e 00 41 6e 20 61 64 76 61 6e 74 61 67 65 20 6f 66 20 74 68 69 73 20 73 63 68 65 | ional..An.advantage.of.this.sche |
| d5560 | 6d 65 20 69 73 20 74 68 61 74 20 79 6f 75 20 67 65 74 20 61 20 72 65 61 6c 20 69 6e 74 65 72 66 | me.is.that.you.get.a.real.interf |
| d5580 | 61 63 65 20 77 69 74 68 20 69 74 73 20 6f 77 6e 20 61 64 64 72 65 73 73 2c 20 77 68 69 63 68 20 | ace.with.its.own.address,.which. |
| d55a0 | 6d 61 6b 65 73 20 69 74 20 65 61 73 69 65 72 20 74 6f 20 73 65 74 75 70 20 73 74 61 74 69 63 20 | makes.it.easier.to.setup.static. |
| d55c0 | 72 6f 75 74 65 73 20 6f 72 20 75 73 65 20 64 79 6e 61 6d 69 63 20 72 6f 75 74 69 6e 67 20 70 72 | routes.or.use.dynamic.routing.pr |
| d55e0 | 6f 74 6f 63 6f 6c 73 20 77 69 74 68 6f 75 74 20 68 61 76 69 6e 67 20 74 6f 20 6d 6f 64 69 66 79 | otocols.without.having.to.modify |
| d5600 | 20 49 50 73 65 63 20 70 6f 6c 69 63 69 65 73 2e 20 54 68 65 20 6f 74 68 65 72 20 61 64 76 61 6e | .IPsec.policies..The.other.advan |
| d5620 | 74 61 67 65 20 69 73 20 74 68 61 74 20 69 74 20 67 72 65 61 74 6c 79 20 73 69 6d 70 6c 69 66 69 | tage.is.that.it.greatly.simplifi |
| d5640 | 65 73 20 72 6f 75 74 65 72 20 74 6f 20 72 6f 75 74 65 72 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6f | es.router.to.router.communicatio |
| d5660 | 6e 2c 20 77 68 69 63 68 20 63 61 6e 20 62 65 20 74 72 69 63 6b 79 20 77 69 74 68 20 70 6c 61 69 | n,.which.can.be.tricky.with.plai |
| d5680 | 6e 20 49 50 73 65 63 20 62 65 63 61 75 73 65 20 74 68 65 20 65 78 74 65 72 6e 61 6c 20 6f 75 74 | n.IPsec.because.the.external.out |
| d56a0 | 67 6f 69 6e 67 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 72 6f 75 74 65 72 20 75 73 75 61 | going.address.of.the.router.usua |
| d56c0 | 6c 6c 79 20 64 6f 65 73 6e 27 74 20 6d 61 74 63 68 20 74 68 65 20 49 50 73 65 63 20 70 6f 6c 69 | lly.doesn't.match.the.IPsec.poli |
| d56e0 | 63 79 20 6f 66 20 61 20 74 79 70 69 63 61 6c 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 73 65 74 | cy.of.a.typical.site-to-site.set |
| d5700 | 75 70 20 61 6e 64 20 79 6f 75 20 77 6f 75 6c 64 20 6e 65 65 64 20 74 6f 20 61 64 64 20 73 70 65 | up.and.you.would.need.to.add.spe |
| d5720 | 63 69 61 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 6f 72 20 69 74 2c 20 6f 72 20 61 64 | cial.configuration.for.it,.or.ad |
| d5740 | 6a 75 73 74 20 74 68 65 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 6f | just.the.source.address.of.the.o |
| d5760 | 75 74 67 6f 69 6e 67 20 74 72 61 66 66 69 63 20 6f 66 20 79 6f 75 72 20 61 70 70 6c 69 63 61 74 | utgoing.traffic.of.your.applicat |
| d5780 | 69 6f 6e 73 2e 20 47 52 45 2f 49 50 73 65 63 20 68 61 73 20 6e 6f 20 73 75 63 68 20 70 72 6f 62 | ions..GRE/IPsec.has.no.such.prob |
| d57a0 | 6c 65 6d 20 61 6e 64 20 69 73 20 63 6f 6d 70 6c 65 74 65 6c 79 20 74 72 61 6e 73 70 61 72 65 6e | lem.and.is.completely.transparen |
| d57c0 | 74 20 66 6f 72 20 61 70 70 6c 69 63 61 74 69 6f 6e 73 2e 00 41 6e 20 61 64 76 61 6e 74 61 67 65 | t.for.applications..An.advantage |
| d57e0 | 20 6f 66 20 74 68 69 73 20 73 63 68 65 6d 65 20 69 73 20 74 68 61 74 20 79 6f 75 20 67 65 74 20 | .of.this.scheme.is.that.you.get. |
| d5800 | 61 20 72 65 61 6c 20 69 6e 74 65 72 66 61 63 65 20 77 69 74 68 20 69 74 73 20 6f 77 6e 20 61 64 | a.real.interface.with.its.own.ad |
| d5820 | 64 72 65 73 73 2c 20 77 68 69 63 68 20 6d 61 6b 65 73 20 69 74 20 65 61 73 69 65 72 20 74 6f 20 | dress,.which.makes.it.easier.to. |
| d5840 | 73 65 74 75 70 20 73 74 61 74 69 63 20 72 6f 75 74 65 73 20 6f 72 20 75 73 65 20 64 79 6e 61 6d | setup.static.routes.or.use.dynam |
| d5860 | 69 63 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 73 20 77 69 74 68 6f 75 74 20 68 61 76 | ic.routing.protocols.without.hav |
| d5880 | 69 6e 67 20 74 6f 20 6d 6f 64 69 66 79 20 49 50 73 65 63 20 70 6f 6c 69 63 69 65 73 2e 20 54 68 | ing.to.modify.IPsec.policies..Th |
| d58a0 | 65 20 6f 74 68 65 72 20 61 64 76 61 6e 74 61 67 65 20 69 73 20 74 68 61 74 20 69 74 20 67 72 65 | e.other.advantage.is.that.it.gre |
| d58c0 | 61 74 6c 79 20 73 69 6d 70 6c 69 66 69 65 73 20 72 6f 75 74 65 72 20 74 6f 20 72 6f 75 74 65 72 | atly.simplifies.router.to.router |
| d58e0 | 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6f 6e 2c 20 77 68 69 63 68 20 63 61 6e 20 62 65 20 74 72 69 | .communication,.which.can.be.tri |
| d5900 | 63 6b 79 20 77 69 74 68 20 70 6c 61 69 6e 20 49 50 73 65 63 20 62 65 63 61 75 73 65 20 74 68 65 | cky.with.plain.IPsec.because.the |
| d5920 | 20 65 78 74 65 72 6e 61 6c 20 6f 75 74 67 6f 69 6e 67 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 | .external.outgoing.address.of.th |
| d5940 | 65 20 72 6f 75 74 65 72 20 75 73 75 61 6c 6c 79 20 64 6f 65 73 6e 27 74 20 6d 61 74 63 68 20 74 | e.router.usually.doesn't.match.t |
| d5960 | 68 65 20 49 50 73 65 63 20 70 6f 6c 69 63 79 20 6f 66 20 74 79 70 69 63 61 6c 20 73 69 74 65 2d | he.IPsec.policy.of.typical.site- |
| d5980 | 74 6f 2d 73 69 74 65 20 73 65 74 75 70 20 61 6e 64 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 61 64 | to-site.setup.and.you.need.to.ad |
| d59a0 | 64 20 73 70 65 63 69 61 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 6f 72 20 69 74 2c 20 | d.special.configuration.for.it,. |
| d59c0 | 6f 72 20 61 64 6a 75 73 74 20 74 68 65 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 66 6f 72 | or.adjust.the.source.address.for |
| d59e0 | 20 6f 75 74 67 6f 69 6e 67 20 74 72 61 66 66 69 63 20 6f 66 20 79 6f 75 72 20 61 70 70 6c 69 63 | .outgoing.traffic.of.your.applic |
| d5a00 | 61 74 69 6f 6e 73 2e 20 47 52 45 2f 49 50 73 65 63 20 68 61 73 20 6e 6f 20 73 75 63 68 20 70 72 | ations..GRE/IPsec.has.no.such.pr |
| d5a20 | 6f 62 6c 65 6d 20 61 6e 64 20 69 73 20 63 6f 6d 70 6c 65 74 65 6c 79 20 74 72 61 6e 73 70 61 72 | oblem.and.is.completely.transpar |
| d5a40 | 65 6e 74 20 66 6f 72 20 74 68 65 20 61 70 70 6c 69 63 61 74 69 6f 6e 73 2e 00 41 6e 20 61 67 65 | ent.for.the.applications..An.age |
| d5a60 | 6e 74 20 69 73 20 61 20 6e 65 74 77 6f 72 6b 2d 6d 61 6e 61 67 65 6d 65 6e 74 20 73 6f 66 74 77 | nt.is.a.network-management.softw |
| d5a80 | 61 72 65 20 6d 6f 64 75 6c 65 20 74 68 61 74 20 72 65 73 69 64 65 73 20 6f 6e 20 61 20 6d 61 6e | are.module.that.resides.on.a.man |
| d5aa0 | 61 67 65 64 20 64 65 76 69 63 65 2e 20 41 6e 20 61 67 65 6e 74 20 68 61 73 20 6c 6f 63 61 6c 20 | aged.device..An.agent.has.local. |
| d5ac0 | 6b 6e 6f 77 6c 65 64 67 65 20 6f 66 20 6d 61 6e 61 67 65 6d 65 6e 74 20 69 6e 66 6f 72 6d 61 74 | knowledge.of.management.informat |
| d5ae0 | 69 6f 6e 20 61 6e 64 20 74 72 61 6e 73 6c 61 74 65 73 20 74 68 61 74 20 69 6e 66 6f 72 6d 61 74 | ion.and.translates.that.informat |
| d5b00 | 69 6f 6e 20 74 6f 20 6f 72 20 66 72 6f 6d 20 61 6e 20 53 4e 4d 50 2d 73 70 65 63 69 66 69 63 20 | ion.to.or.from.an.SNMP-specific. |
| d5b20 | 66 6f 72 6d 2e 00 41 6e 20 61 6c 74 65 72 6e 61 74 65 20 63 6f 6d 6d 61 6e 64 20 63 6f 75 6c 64 | form..An.alternate.command.could |
| d5b40 | 20 62 65 20 22 6d 70 6c 73 2d 74 65 20 6f 6e 22 20 28 54 72 61 66 66 69 63 20 45 6e 67 69 6e 65 | .be."mpls-te.on".(Traffic.Engine |
| d5b60 | 65 72 69 6e 67 29 00 41 6e 20 61 72 62 69 74 72 61 72 79 20 6e 65 74 6d 61 73 6b 20 63 61 6e 20 | ering).An.arbitrary.netmask.can. |
| d5b80 | 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 6d 61 73 6b 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 | be.applied.to.mask.addresses.to. |
| d5ba0 | 6f 6e 6c 79 20 6d 61 74 63 68 20 61 67 61 69 6e 73 74 20 61 20 73 70 65 63 69 66 69 63 20 70 6f | only.match.against.a.specific.po |
| d5bc0 | 72 74 69 6f 6e 2e 00 41 6e 20 61 72 62 69 74 72 61 72 79 20 6e 65 74 6d 61 73 6b 20 63 61 6e 20 | rtion..An.arbitrary.netmask.can. |
| d5be0 | 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 6d 61 73 6b 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 | be.applied.to.mask.addresses.to. |
| d5c00 | 6f 6e 6c 79 20 6d 61 74 63 68 20 61 67 61 69 6e 73 74 20 61 20 73 70 65 63 69 66 69 63 20 70 6f | only.match.against.a.specific.po |
| d5c20 | 72 74 69 6f 6e 2e 20 54 68 69 73 20 69 73 20 70 61 72 74 69 63 75 6c 61 72 6c 79 20 75 73 65 66 | rtion..This.is.particularly.usef |
| d5c40 | 75 6c 20 77 69 74 68 20 49 50 76 36 20 61 6e 64 20 61 20 7a 6f 6e 65 2d 62 61 73 65 64 20 66 69 | ul.with.IPv6.and.a.zone-based.fi |
| d5c60 | 72 65 77 61 6c 6c 20 61 73 20 72 75 6c 65 73 20 77 69 6c 6c 20 72 65 6d 61 69 6e 20 76 61 6c 69 | rewall.as.rules.will.remain.vali |
| d5c80 | 64 20 69 66 20 74 68 65 20 49 50 76 36 20 70 72 65 66 69 78 20 63 68 61 6e 67 65 73 20 61 6e 64 | d.if.the.IPv6.prefix.changes.and |
| d5ca0 | 20 74 68 65 20 68 6f 73 74 20 70 6f 72 74 69 6f 6e 20 6f 66 20 73 79 73 74 65 6d 73 20 49 50 76 | .the.host.portion.of.systems.IPv |
| d5cc0 | 36 20 61 64 64 72 65 73 73 20 69 73 20 73 74 61 74 69 63 20 28 66 6f 72 20 65 78 61 6d 70 6c 65 | 6.address.is.static.(for.example |
| d5ce0 | 2c 20 77 69 74 68 20 53 4c 41 41 43 20 6f 72 20 60 74 6f 6b 65 6e 69 73 65 64 20 49 50 76 36 20 | ,.with.SLAAC.or.`tokenised.IPv6. |
| d5d00 | 61 64 64 72 65 73 73 65 73 20 3c 68 74 74 70 73 3a 2f 2f 64 61 74 61 74 72 61 63 6b 65 72 2e 69 | addresses.<https://datatracker.i |
| d5d20 | 65 74 66 2e 6f 72 67 2f 64 6f 63 2f 69 64 2f 64 72 61 66 74 2d 63 68 6f 77 6e 2d 36 6d 61 6e 2d | etf.org/doc/id/draft-chown-6man- |
| d5d40 | 74 6f 6b 65 6e 69 73 65 64 2d 69 70 76 36 2d 69 64 65 6e 74 69 66 69 65 72 73 2d 30 32 2e 74 78 | tokenised-ipv6-identifiers-02.tx |
| d5d60 | 74 3e 60 5f 29 00 41 6e 20 61 72 62 69 74 72 61 72 79 20 6e 65 74 6d 61 73 6b 20 63 61 6e 20 62 | t>`_).An.arbitrary.netmask.can.b |
| d5d80 | 65 20 61 70 70 6c 69 65 64 20 74 6f 20 6d 61 73 6b 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 6f | e.applied.to.mask.addresses.to.o |
| d5da0 | 6e 6c 79 20 6d 61 74 63 68 20 61 67 61 69 6e 73 74 20 61 20 73 70 65 63 69 66 69 63 20 70 6f 72 | nly.match.against.a.specific.por |
| d5dc0 | 74 69 6f 6e 2e 20 54 68 69 73 20 69 73 20 70 61 72 74 69 63 75 6c 61 72 6c 79 20 75 73 65 66 75 | tion..This.is.particularly.usefu |
| d5de0 | 6c 20 77 69 74 68 20 49 50 76 36 20 61 6e 64 20 61 20 7a 6f 6e 65 2d 62 61 73 65 64 20 66 69 72 | l.with.IPv6.and.a.zone-based.fir |
| d5e00 | 65 77 61 6c 6c 20 61 73 20 72 75 6c 65 73 20 77 69 6c 6c 20 72 65 6d 61 69 6e 20 76 61 6c 69 64 | ewall.as.rules.will.remain.valid |
| d5e20 | 20 69 66 20 74 68 65 20 49 50 76 36 20 70 72 65 66 69 78 20 63 68 61 6e 67 65 73 20 61 6e 64 20 | .if.the.IPv6.prefix.changes.and. |
| d5e40 | 74 68 65 20 68 6f 73 74 20 70 6f 72 74 69 6f 6e 20 6f 66 20 73 79 73 74 65 6d 73 20 49 50 76 36 | the.host.portion.of.systems.IPv6 |
| d5e60 | 20 61 64 64 72 65 73 73 20 69 73 20 73 74 61 74 69 63 20 28 66 6f 72 20 65 78 61 6d 70 6c 65 2c | .address.is.static.(for.example, |
| d5e80 | 20 77 69 74 68 20 53 4c 41 41 43 20 6f 72 20 60 74 6f 6b 65 6e 69 73 65 64 20 49 50 76 36 20 61 | .with.SLAAC.or.`tokenised.IPv6.a |
| d5ea0 | 64 64 72 65 73 73 65 73 20 3c 68 74 74 70 73 3a 2f 2f 64 61 74 61 74 72 61 63 6b 65 72 2e 69 65 | ddresses.<https://datatracker.ie |
| d5ec0 | 74 66 2e 6f 72 67 2f 64 6f 63 2f 69 64 2f 64 72 61 66 74 2d 63 68 6f 77 6e 2d 36 6d 61 6e 2d 74 | tf.org/doc/id/draft-chown-6man-t |
| d5ee0 | 6f 6b 65 6e 69 73 65 64 2d 69 70 76 36 2d 69 64 65 6e 74 69 66 69 65 72 73 2d 30 32 2e 74 78 74 | okenised-ipv6-identifiers-02.txt |
| d5f00 | 3e 60 5f 29 2e 00 41 6e 20 61 72 62 69 74 72 61 72 79 20 6e 65 74 6d 61 73 6b 20 63 61 6e 20 62 | >`_)..An.arbitrary.netmask.can.b |
| d5f20 | 65 20 61 70 70 6c 69 65 64 20 74 6f 20 6d 61 73 6b 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 6f | e.applied.to.mask.addresses.to.o |
| d5f40 | 6e 6c 79 20 6d 61 74 63 68 20 61 67 61 69 6e 73 74 20 61 20 73 70 65 63 69 66 69 63 20 70 6f 72 | nly.match.against.a.specific.por |
| d5f60 | 74 69 6f 6e 2e 20 54 68 69 73 20 69 73 20 70 61 72 74 69 63 75 6c 61 72 6c 79 20 75 73 65 66 75 | tion..This.is.particularly.usefu |
| d5f80 | 6c 20 77 69 74 68 20 49 50 76 36 20 61 73 20 72 75 6c 65 73 20 77 69 6c 6c 20 72 65 6d 61 69 6e | l.with.IPv6.as.rules.will.remain |
| d5fa0 | 20 76 61 6c 69 64 20 69 66 20 74 68 65 20 49 50 76 36 20 70 72 65 66 69 78 20 63 68 61 6e 67 65 | .valid.if.the.IPv6.prefix.change |
| d5fc0 | 73 20 61 6e 64 20 74 68 65 20 68 6f 73 74 20 70 6f 72 74 69 6f 6e 20 6f 66 20 73 79 73 74 65 6d | s.and.the.host.portion.of.system |
| d5fe0 | 73 20 49 50 76 36 20 61 64 64 72 65 73 73 20 69 73 20 73 74 61 74 69 63 20 28 66 6f 72 20 65 78 | s.IPv6.address.is.static.(for.ex |
| d6000 | 61 6d 70 6c 65 2c 20 77 69 74 68 20 53 4c 41 41 43 20 6f 72 20 60 74 6f 6b 65 6e 69 73 65 64 20 | ample,.with.SLAAC.or.`tokenised. |
| d6020 | 49 50 76 36 20 61 64 64 72 65 73 73 65 73 20 3c 68 74 74 70 73 3a 2f 2f 64 61 74 61 74 72 61 63 | IPv6.addresses.<https://datatrac |
| d6040 | 6b 65 72 2e 69 65 74 66 2e 6f 72 67 20 2f 64 6f 63 2f 69 64 2f 64 72 61 66 74 2d 63 68 6f 77 6e | ker.ietf.org./doc/id/draft-chown |
| d6060 | 2d 36 6d 61 6e 2d 74 6f 6b 65 6e 69 73 65 64 2d 69 70 76 36 2d 69 64 65 6e 74 69 66 69 65 72 73 | -6man-tokenised-ipv6-identifiers |
| d6080 | 2d 30 32 2e 74 78 74 3e 60 5f 29 00 41 6e 20 61 72 62 69 74 72 61 72 79 20 6e 65 74 6d 61 73 6b | -02.txt>`_).An.arbitrary.netmask |
| d60a0 | 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 6d 61 73 6b 20 61 64 64 72 65 73 73 65 | .can.be.applied.to.mask.addresse |
| d60c0 | 73 20 74 6f 20 6f 6e 6c 79 20 6d 61 74 63 68 20 61 67 61 69 6e 73 74 20 61 20 73 70 65 63 69 66 | s.to.only.match.against.a.specif |
| d60e0 | 69 63 20 70 6f 72 74 69 6f 6e 2e 20 54 68 69 73 20 69 73 20 70 61 72 74 69 63 75 6c 61 72 6c 79 | ic.portion..This.is.particularly |
| d6100 | 20 75 73 65 66 75 6c 20 77 69 74 68 20 49 50 76 36 20 61 73 20 72 75 6c 65 73 20 77 69 6c 6c 20 | .useful.with.IPv6.as.rules.will. |
| d6120 | 72 65 6d 61 69 6e 20 76 61 6c 69 64 20 69 66 20 74 68 65 20 49 50 76 36 20 70 72 65 66 69 78 20 | remain.valid.if.the.IPv6.prefix. |
| d6140 | 63 68 61 6e 67 65 73 20 61 6e 64 20 74 68 65 20 68 6f 73 74 20 70 6f 72 74 69 6f 6e 20 6f 66 20 | changes.and.the.host.portion.of. |
| d6160 | 73 79 73 74 65 6d 73 20 49 50 76 36 20 61 64 64 72 65 73 73 20 69 73 20 73 74 61 74 69 63 20 28 | systems.IPv6.address.is.static.( |
| d6180 | 66 6f 72 20 65 78 61 6d 70 6c 65 2c 20 77 69 74 68 20 53 4c 41 41 43 20 6f 72 20 60 74 6f 6b 65 | for.example,.with.SLAAC.or.`toke |
| d61a0 | 6e 69 73 65 64 20 49 50 76 36 20 61 64 64 72 65 73 73 65 73 20 3c 68 74 74 70 73 3a 2f 2f 64 61 | nised.IPv6.addresses.<https://da |
| d61c0 | 74 61 74 72 61 63 6b 65 72 2e 69 65 74 66 2e 6f 72 67 2f 64 6f 63 2f 69 64 2f 64 72 61 66 74 2d | tatracker.ietf.org/doc/id/draft- |
| d61e0 | 63 68 6f 77 6e 2d 36 6d 61 6e 2d 74 6f 6b 65 6e 69 73 65 64 2d 69 70 76 36 2d 69 64 65 6e 74 69 | chown-6man-tokenised-ipv6-identi |
| d6200 | 66 69 65 72 73 2d 30 32 2e 74 78 74 3e 60 5f 29 00 41 6e 20 62 61 73 69 63 20 69 6e 74 72 6f 64 | fiers-02.txt>`_).An.basic.introd |
| d6220 | 75 63 74 69 6f 6e 20 74 6f 20 7a 6f 6e 65 2d 62 61 73 65 64 20 66 69 72 65 77 61 6c 6c 73 20 63 | uction.to.zone-based.firewalls.c |
| d6240 | 61 6e 20 62 65 20 66 6f 75 6e 64 20 60 68 65 72 65 20 3c 68 74 74 70 73 3a 2f 2f 73 75 70 70 6f | an.be.found.`here.<https://suppo |
| d6260 | 72 74 2e 76 79 6f 73 2e 69 6f 2f 65 6e 2f 6b 62 2f 61 72 74 69 63 6c 65 73 2f 61 2d 70 72 69 6d | rt.vyos.io/en/kb/articles/a-prim |
| d6280 | 65 72 2d 74 6f 2d 7a 6f 6e 65 2d 62 61 73 65 64 2d 66 69 72 65 77 61 6c 6c 3e 60 5f 2c 20 61 6e | er-to-zone-based-firewall>`_,.an |
| d62a0 | 64 20 61 6e 20 65 78 61 6d 70 6c 65 20 61 74 20 3a 72 65 66 3a 60 65 78 61 6d 70 6c 65 73 2d 7a | d.an.example.at.:ref:`examples-z |
| d62c0 | 6f 6e 65 2d 70 6f 6c 69 63 79 60 2e 00 41 6e 20 65 78 61 6d 70 6c 65 20 6f 66 20 61 20 63 6f 6e | one-policy`..An.example.of.a.con |
| d62e0 | 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 73 65 6e 64 73 20 60 60 74 65 6c 65 67 72 61 66 | figuration.that.sends.``telegraf |
| d6300 | 60 60 20 6d 65 74 72 69 63 73 20 74 6f 20 72 65 6d 6f 74 65 20 60 60 49 6e 66 6c 75 78 44 42 20 | ``.metrics.to.remote.``InfluxDB. |
| d6320 | 32 60 60 00 41 6e 20 65 78 61 6d 70 6c 65 20 6f 66 20 63 72 65 61 74 69 6e 67 20 61 20 56 4c 41 | 2``.An.example.of.creating.a.VLA |
| d6340 | 4e 2d 61 77 61 72 65 20 62 72 69 64 67 65 20 69 73 20 61 73 20 66 6f 6c 6c 6f 77 73 3a 00 41 6e | N-aware.bridge.is.as.follows:.An |
| d6360 | 20 65 78 61 6d 70 6c 65 20 6f 66 20 6b 65 79 20 67 65 6e 65 72 61 74 69 6f 6e 3a 00 41 6e 20 65 | .example.of.key.generation:.An.e |
| d6380 | 78 61 6d 70 6c 65 20 6f 66 20 74 68 65 20 64 61 74 61 20 63 61 70 74 75 72 65 64 20 62 79 20 61 | xample.of.the.data.captured.by.a |
| d63a0 | 20 46 52 45 45 52 41 44 49 55 53 20 73 65 72 76 65 72 20 77 69 74 68 20 73 71 6c 20 61 63 63 6f | .FREERADIUS.server.with.sql.acco |
| d63c0 | 75 6e 74 69 6e 67 3a 00 41 6e 20 65 78 61 6d 70 6c 65 3a 00 41 6e 20 6f 70 74 69 6f 6e 20 74 68 | unting:.An.example:.An.option.th |
| d63e0 | 61 74 20 74 61 6b 65 73 20 61 20 71 75 6f 74 65 64 20 73 74 72 69 6e 67 20 69 73 20 73 65 74 20 | at.takes.a.quoted.string.is.set. |
| d6400 | 62 79 20 72 65 70 6c 61 63 69 6e 67 20 61 6c 6c 20 71 75 6f 74 65 20 63 68 61 72 61 63 74 65 72 | by.replacing.all.quote.character |
| d6420 | 73 20 77 69 74 68 20 74 68 65 20 73 74 72 69 6e 67 20 60 60 26 71 75 6f 74 3b 60 60 20 69 6e 73 | s.with.the.string.``"``.ins |
| d6440 | 69 64 65 20 74 68 65 20 73 74 61 74 69 63 2d 6d 61 70 70 69 6e 67 2d 70 61 72 61 6d 65 74 65 72 | ide.the.static-mapping-parameter |
| d6460 | 73 20 76 61 6c 75 65 2e 20 54 68 65 20 72 65 73 75 6c 74 69 6e 67 20 6c 69 6e 65 20 69 6e 20 64 | s.value..The.resulting.line.in.d |
| d6480 | 68 63 70 64 2e 63 6f 6e 66 20 77 69 6c 6c 20 62 65 20 60 60 6f 70 74 69 6f 6e 20 70 78 65 6c 69 | hcpd.conf.will.be.``option.pxeli |
| d64a0 | 6e 75 78 2e 63 6f 6e 66 69 67 66 69 6c 65 20 22 70 78 65 6c 69 6e 75 78 2e 63 66 67 2f 30 31 2d | nux.configfile."pxelinux.cfg/01- |
| d64c0 | 30 30 2d 31 35 2d 31 37 2d 34 34 2d 32 64 2d 61 61 22 3b 60 60 2e 00 41 6e 61 6c 79 73 69 73 20 | 00-15-17-44-2d-aa";``..Analysis. |
| d64e0 | 6f 6e 20 77 68 61 74 20 68 61 70 70 65 6e 73 20 66 6f 72 20 64 65 73 69 72 65 64 20 63 6f 6e 6e | on.what.happens.for.desired.conn |
| d6500 | 65 63 74 69 6f 6e 3a 00 41 6e 64 20 62 61 73 65 20 63 68 61 69 6e 20 66 6f 72 20 74 72 61 66 66 | ection:.And.base.chain.for.traff |
| d6520 | 69 63 20 67 65 6e 65 72 61 74 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 20 69 73 20 60 60 | ic.generated.by.the.router.is.`` |
| d6540 | 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 6f 75 74 70 75 74 20 2e 2e 2e 60 60 2c 20 | set.firewall.ipv4.output....``,. |
| d6560 | 77 68 65 72 65 20 74 77 6f 20 73 75 62 2d 63 68 61 69 6e 73 20 61 72 65 20 61 76 61 69 6c 61 62 | where.two.sub-chains.are.availab |
| d6580 | 6c 65 3a 20 2a 2a 66 69 6c 74 65 72 2a 2a 20 61 6e 64 20 2a 2a 72 61 77 2a 2a 3a 00 41 6e 64 20 | le:.**filter**.and.**raw**:.And. |
| d65a0 | 62 61 73 65 20 63 68 61 69 6e 20 66 6f 72 20 74 72 61 66 66 69 63 20 67 65 6e 65 72 61 74 65 64 | base.chain.for.traffic.generated |
| d65c0 | 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c | .by.the.router.is.``set.firewall |
| d65e0 | 20 69 70 76 34 20 6f 75 74 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 00 41 6e 64 20 62 61 | .ipv4.output.filter....``.And.ba |
| d6600 | 73 65 20 63 68 61 69 6e 20 66 6f 72 20 74 72 61 66 66 69 63 20 67 65 6e 65 72 61 74 65 64 20 62 | se.chain.for.traffic.generated.b |
| d6620 | 79 20 74 68 65 20 72 6f 75 74 65 72 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 | y.the.router.is.``set.firewall.i |
| d6640 | 70 76 36 20 6f 75 74 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 00 41 6e 64 20 62 61 73 65 | pv6.output.filter....``.And.base |
| d6660 | 20 63 68 61 69 6e 20 66 6f 72 20 74 72 61 66 66 69 63 20 67 65 6e 65 72 61 74 65 64 20 62 79 20 | .chain.for.traffic.generated.by. |
| d6680 | 74 68 65 20 72 6f 75 74 65 72 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 | the.router.is.``set.firewall.ipv |
| d66a0 | 36 20 6f 75 74 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2c 20 77 68 65 72 65 20 74 77 6f | 6.output.filter....``,.where.two |
| d66c0 | 20 73 75 62 2d 63 68 61 69 6e 73 20 61 72 65 20 61 76 61 69 6c 61 62 6c 65 3a 20 2a 2a 66 69 6c | .sub-chains.are.available:.**fil |
| d66e0 | 74 65 72 2a 2a 20 61 6e 64 20 2a 2a 72 61 77 2a 2a 3a 00 41 6e 64 20 63 6f 6e 74 65 6e 74 20 6f | ter**.and.**raw**:.And.content.o |
| d6700 | 66 20 74 68 65 20 73 63 72 69 70 74 3a 00 41 6e 64 20 66 6f 72 20 69 70 76 36 3a 00 41 6e 64 20 | f.the.script:.And.for.ipv6:.And. |
| d6720 | 66 6f 72 20 74 72 61 66 66 69 63 20 74 68 61 74 20 6f 72 69 67 69 6e 61 74 65 73 20 66 72 6f 6d | for.traffic.that.originates.from |
| d6740 | 20 74 68 65 20 62 72 69 64 67 65 20 69 74 73 65 6c 66 2c 20 74 68 65 20 62 61 73 65 20 63 68 61 | .the.bridge.itself,.the.base.cha |
| d6760 | 69 6e 20 69 73 20 2a 2a 6f 75 74 70 75 74 2a 2a 2c 20 62 61 73 65 20 63 6f 6d 6d 61 6e 64 20 69 | in.is.**output**,.base.command.i |
| d6780 | 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 62 72 69 64 67 65 20 6f 75 74 70 75 74 20 66 | s.``set.firewall.bridge.output.f |
| d67a0 | 69 6c 74 65 72 20 2e 2e 2e 60 60 2c 20 61 6e 64 20 74 68 65 20 70 61 74 68 20 69 73 3a 00 41 6e | ilter....``,.and.the.path.is:.An |
| d67c0 | 64 20 6e 65 78 74 2c 20 73 6f 6d 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 65 78 61 6d 70 | d.next,.some.configuration.examp |
| d67e0 | 6c 65 20 77 68 65 72 65 20 67 72 6f 75 70 73 20 61 72 65 20 75 73 65 64 3a 00 41 6e 64 20 6f 70 | le.where.groups.are.used:.And.op |
| d6800 | 2d 6d 6f 64 65 20 63 6f 6d 6d 61 6e 64 73 3a 00 41 6e 64 20 74 68 65 20 62 61 73 65 20 63 68 61 | -mode.commands:.And.the.base.cha |
| d6820 | 69 6e 20 66 6f 72 20 74 72 61 66 66 69 63 20 67 65 6e 65 72 61 74 65 64 20 62 79 20 74 68 65 20 | in.for.traffic.generated.by.the. |
| d6840 | 72 6f 75 74 65 72 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 6f 75 | router.is.``set.firewall.ipv4.ou |
| d6860 | 74 70 75 74 20 2e 2e 2e 60 60 2c 20 77 68 65 72 65 20 74 77 6f 20 73 75 62 2d 63 68 61 69 6e 73 | tput....``,.where.two.sub-chains |
| d6880 | 20 61 72 65 20 61 76 61 69 6c 61 62 6c 65 3a 20 2a 2a 66 69 6c 74 65 72 2a 2a 20 61 6e 64 20 2a | .are.available:.**filter**.and.* |
| d68a0 | 2a 72 61 77 2a 2a 3a 00 41 6e 64 20 74 68 65 20 62 61 73 65 20 63 68 61 69 6e 20 66 6f 72 20 74 | *raw**:.And.the.base.chain.for.t |
| d68c0 | 72 61 66 66 69 63 20 67 65 6e 65 72 61 74 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 20 69 | raffic.generated.by.the.router.i |
| d68e0 | 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 6f 75 74 70 75 74 20 2e 2e 2e | s.``set.firewall.ipv6.output.... |
| d6900 | 60 60 2c 20 77 68 65 72 65 20 74 77 6f 20 73 75 62 2d 63 68 61 69 6e 73 20 61 72 65 20 61 76 61 | ``,.where.two.sub-chains.are.ava |
| d6920 | 69 6c 61 62 6c 65 3a 20 2a 2a 66 69 6c 74 65 72 2a 2a 20 61 6e 64 20 2a 2a 72 61 77 2a 2a 3a 00 | ilable:.**filter**.and.**raw**:. |
| d6940 | 41 6e 64 20 74 68 65 20 64 69 66 66 65 72 65 6e 74 20 49 50 76 34 20 2a 2a 72 65 73 65 74 2a 2a | And.the.different.IPv4.**reset** |
| d6960 | 20 63 6f 6d 6d 61 6e 64 73 20 61 76 61 69 6c 61 62 6c 65 3a 00 41 6e 64 20 74 68 65 6e 20 68 61 | .commands.available:.And.then.ha |
| d6980 | 73 68 20 69 73 20 72 65 64 75 63 65 64 20 6d 6f 64 75 6c 6f 20 73 6c 61 76 65 20 63 6f 75 6e 74 | sh.is.reduced.modulo.slave.count |
| d69a0 | 2e 00 41 6e 64 2c 20 74 6f 20 70 72 69 6e 74 20 6f 6e 6c 79 20 62 72 69 64 67 65 20 66 69 72 65 | ..And,.to.print.only.bridge.fire |
| d69c0 | 77 61 6c 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 3a 00 41 6e 6f 74 68 65 72 20 74 65 72 6d 20 6f | wall.information:.Another.term.o |
| d69e0 | 66 74 65 6e 20 75 73 65 64 20 66 6f 72 20 44 4e 41 54 20 69 73 20 2a 2a 31 2d 74 6f 2d 31 20 4e | ften.used.for.DNAT.is.**1-to-1.N |
| d6a00 | 41 54 2a 2a 2e 20 46 6f 72 20 61 20 31 2d 74 6f 2d 31 20 4e 41 54 20 63 6f 6e 66 69 67 75 72 61 | AT**..For.a.1-to-1.NAT.configura |
| d6a20 | 74 69 6f 6e 2c 20 62 6f 74 68 20 44 4e 41 54 20 61 6e 64 20 53 4e 41 54 20 61 72 65 20 75 73 65 | tion,.both.DNAT.and.SNAT.are.use |
| d6a40 | 64 20 74 6f 20 4e 41 54 20 61 6c 6c 20 74 72 61 66 66 69 63 20 66 72 6f 6d 20 61 6e 20 65 78 74 | d.to.NAT.all.traffic.from.an.ext |
| d6a60 | 65 72 6e 61 6c 20 49 50 20 61 64 64 72 65 73 73 20 74 6f 20 61 6e 20 69 6e 74 65 72 6e 61 6c 20 | ernal.IP.address.to.an.internal. |
| d6a80 | 49 50 20 61 64 64 72 65 73 73 20 61 6e 64 20 76 69 63 65 2d 76 65 72 73 61 2e 00 41 6e 6f 74 68 | IP.address.and.vice-versa..Anoth |
| d6aa0 | 65 72 20 74 68 69 6e 67 20 74 6f 20 6b 65 65 70 20 69 6e 20 6d 69 6e 64 20 77 69 74 68 20 4c 44 | er.thing.to.keep.in.mind.with.LD |
| d6ac0 | 50 20 69 73 20 74 68 61 74 20 6d 75 63 68 20 6c 69 6b 65 20 42 47 50 2c 20 69 74 20 69 73 20 61 | P.is.that.much.like.BGP,.it.is.a |
| d6ae0 | 20 70 72 6f 74 6f 63 6f 6c 20 74 68 61 74 20 72 75 6e 73 20 6f 6e 20 74 6f 70 20 6f 66 20 54 43 | .protocol.that.runs.on.top.of.TC |
| d6b00 | 50 2e 20 49 74 20 68 6f 77 65 76 65 72 20 64 6f 65 73 20 6e 6f 74 20 68 61 76 65 20 61 6e 20 61 | P..It.however.does.not.have.an.a |
| d6b20 | 62 69 6c 69 74 79 20 74 6f 20 64 6f 20 73 6f 6d 65 74 68 69 6e 67 20 6c 69 6b 65 20 61 20 72 65 | bility.to.do.something.like.a.re |
| d6b40 | 66 72 65 73 68 20 63 61 70 61 62 69 6c 69 74 79 20 6c 69 6b 65 20 42 47 50 73 20 72 6f 75 74 65 | fresh.capability.like.BGPs.route |
| d6b60 | 20 72 65 66 72 65 73 68 20 63 61 70 61 62 69 6c 69 74 79 2e 20 54 68 65 72 65 66 6f 72 65 20 6f | .refresh.capability..Therefore.o |
| d6b80 | 6e 65 20 6d 69 67 68 74 20 68 61 76 65 20 74 6f 20 72 65 73 65 74 20 74 68 65 20 6e 65 69 67 68 | ne.might.have.to.reset.the.neigh |
| d6ba0 | 62 6f 72 20 66 6f 72 20 61 20 63 61 70 61 62 69 6c 69 74 79 20 63 68 61 6e 67 65 20 6f 72 20 61 | bor.for.a.capability.change.or.a |
| d6bc0 | 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 68 61 6e 67 65 20 74 6f 20 77 6f 72 6b 2e 00 41 | .configuration.change.to.work..A |
| d6be0 | 70 70 6c 65 20 69 4f 53 2f 69 50 61 64 4f 53 20 28 31 34 2e 32 2b 29 00 41 70 70 6c 65 20 69 4f | pple.iOS/iPadOS.(14.2+).Apple.iO |
| d6c00 | 53 2f 69 50 61 64 4f 53 20 65 78 70 65 63 74 73 20 74 68 65 20 73 65 72 76 65 72 20 6e 61 6d 65 | S/iPadOS.expects.the.server.name |
| d6c20 | 20 74 6f 20 62 65 20 61 6c 73 6f 20 75 73 65 64 20 69 6e 20 74 68 65 20 73 65 72 76 65 72 27 73 | .to.be.also.used.in.the.server's |
| d6c40 | 20 63 65 72 74 69 66 69 63 61 74 65 20 63 6f 6d 6d 6f 6e 20 6e 61 6d 65 2c 20 73 6f 20 69 74 27 | .certificate.common.name,.so.it' |
| d6c60 | 73 20 62 65 73 74 20 74 6f 20 75 73 65 20 74 68 69 73 20 44 4e 53 20 6e 61 6d 65 20 66 6f 72 20 | s.best.to.use.this.DNS.name.for. |
| d6c80 | 79 6f 75 72 20 56 50 4e 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 41 70 70 6c 79 20 61 20 72 6f 75 | your.VPN.connection..Apply.a.rou |
| d6ca0 | 74 65 2d 6d 61 70 20 66 69 6c 74 65 72 20 74 6f 20 72 6f 75 74 65 73 20 66 6f 72 20 74 68 65 20 | te-map.filter.to.routes.for.the. |
| d6cc0 | 73 70 65 63 69 66 69 65 64 20 70 72 6f 74 6f 63 6f 6c 2e 00 41 70 70 6c 79 20 61 20 72 6f 75 74 | specified.protocol..Apply.a.rout |
| d6ce0 | 65 2d 6d 61 70 20 66 69 6c 74 65 72 20 74 6f 20 72 6f 75 74 65 73 20 66 6f 72 20 74 68 65 20 73 | e-map.filter.to.routes.for.the.s |
| d6d00 | 70 65 63 69 66 69 65 64 20 70 72 6f 74 6f 63 6f 6c 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 | pecified.protocol..The.following |
| d6d20 | 20 70 72 6f 74 6f 63 6f 6c 73 20 63 61 6e 20 62 65 20 75 73 65 64 3a 20 61 6e 79 2c 20 62 61 62 | .protocols.can.be.used:.any,.bab |
| d6d40 | 65 6c 2c 20 62 67 70 2c 20 63 6f 6e 6e 65 63 74 65 64 2c 20 65 69 67 72 70 2c 20 69 73 69 73 2c | el,.bgp,.connected,.eigrp,.isis, |
| d6d60 | 20 6b 65 72 6e 65 6c 2c 20 6f 73 70 66 2c 20 72 69 70 2c 20 73 74 61 74 69 63 2c 20 74 61 62 6c | .kernel,.ospf,.rip,.static,.tabl |
| d6d80 | 65 00 41 70 70 6c 79 20 61 20 72 6f 75 74 65 2d 6d 61 70 20 66 69 6c 74 65 72 20 74 6f 20 72 6f | e.Apply.a.route-map.filter.to.ro |
| d6da0 | 75 74 65 73 20 66 6f 72 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 70 72 6f 74 6f 63 6f 6c 2e | utes.for.the.specified.protocol. |
| d6dc0 | 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 73 20 63 61 6e 20 62 65 20 | .The.following.protocols.can.be. |
| d6de0 | 75 73 65 64 3a 20 61 6e 79 2c 20 62 61 62 65 6c 2c 20 62 67 70 2c 20 63 6f 6e 6e 65 63 74 65 64 | used:.any,.babel,.bgp,.connected |
| d6e00 | 2c 20 69 73 69 73 2c 20 6b 65 72 6e 65 6c 2c 20 6f 73 70 66 76 33 2c 20 72 69 70 6e 67 2c 20 73 | ,.isis,.kernel,.ospfv3,.ripng,.s |
| d6e20 | 74 61 74 69 63 2c 20 74 61 62 6c 65 00 41 70 70 6c 79 20 72 6f 75 74 69 6e 67 20 70 6f 6c 69 63 | tatic,.table.Apply.routing.polic |
| d6e40 | 79 20 74 6f 20 2a 2a 69 6e 62 6f 75 6e 64 2a 2a 20 64 69 72 65 63 74 69 6f 6e 20 6f 66 20 6f 75 | y.to.**inbound**.direction.of.ou |
| d6e60 | 74 20 56 4c 41 4e 20 69 6e 74 65 72 66 61 63 65 73 00 41 70 70 6c 79 69 6e 67 20 61 20 52 75 6c | t.VLAN.interfaces.Applying.a.Rul |
| d6e80 | 65 2d 53 65 74 20 74 6f 20 61 20 5a 6f 6e 65 00 41 70 70 6c 79 69 6e 67 20 61 20 52 75 6c 65 2d | e-Set.to.a.Zone.Applying.a.Rule- |
| d6ea0 | 53 65 74 20 74 6f 20 61 6e 20 49 6e 74 65 72 66 61 63 65 00 41 70 70 6c 79 69 6e 67 20 61 20 74 | Set.to.an.Interface.Applying.a.t |
| d6ec0 | 72 61 66 66 69 63 20 70 6f 6c 69 63 79 00 41 72 65 61 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e | raffic.policy.Area.Configuration |
| d6ee0 | 00 41 72 65 61 20 69 64 65 6e 74 69 66 69 65 72 3a 20 60 60 30 30 30 31 60 60 20 49 53 2d 49 53 | .Area.identifier:.``0001``.IS-IS |
| d6f00 | 20 61 72 65 61 20 6e 75 6d 62 65 72 20 28 6e 75 6d 62 65 72 69 63 61 6c 20 61 72 65 61 20 60 60 | .area.number.(numberical.area.`` |
| d6f20 | 31 60 60 29 00 41 72 65 61 20 69 64 65 6e 74 69 66 69 65 72 3a 20 60 60 30 30 30 31 60 60 20 49 | 1``).Area.identifier:.``0001``.I |
| d6f40 | 53 2d 49 53 20 61 72 65 61 20 6e 75 6d 62 65 72 20 28 6e 75 6d 65 72 69 63 61 6c 20 61 72 65 61 | S-IS.area.number.(numerical.area |
| d6f60 | 20 60 60 31 60 60 29 00 41 72 65 61 20 69 64 65 6e 74 69 66 69 65 72 3a 20 60 60 30 30 30 31 60 | .``1``).Area.identifier:.``0001` |
| d6f80 | 60 20 4f 70 65 6e 46 61 62 72 69 63 20 61 72 65 61 20 6e 75 6d 62 65 72 20 28 6e 75 6d 65 72 69 | `.OpenFabric.area.number.(numeri |
| d6fa0 | 63 61 6c 20 61 72 65 61 20 60 60 31 60 60 29 00 41 72 67 75 6d 65 6e 74 73 20 77 68 69 63 68 20 | cal.area.``1``).Arguments.which. |
| d6fc0 | 77 69 6c 6c 20 62 65 20 70 61 73 73 65 64 20 74 6f 20 74 68 65 20 65 78 65 63 75 74 61 62 6c 65 | will.be.passed.to.the.executable |
| d6fe0 | 2e 00 41 72 69 73 74 61 20 45 4f 53 00 41 72 75 62 61 2f 48 50 00 41 73 20 49 6e 74 65 72 6e 65 | ..Arista.EOS.Aruba/HP.As.Interne |
| d7000 | 74 20 77 69 64 65 20 50 4d 54 55 20 64 69 73 63 6f 76 65 72 79 20 72 61 72 65 6c 79 20 77 6f 72 | t.wide.PMTU.discovery.rarely.wor |
| d7020 | 6b 73 2c 20 77 65 20 73 6f 6d 65 74 69 6d 65 73 20 6e 65 65 64 20 74 6f 20 63 6c 61 6d 70 20 6f | ks,.we.sometimes.need.to.clamp.o |
| d7040 | 75 72 20 54 43 50 20 4d 53 53 20 76 61 6c 75 65 20 74 6f 20 61 20 73 70 65 63 69 66 69 63 20 76 | ur.TCP.MSS.value.to.a.specific.v |
| d7060 | 61 6c 75 65 2e 20 54 68 69 73 20 69 73 20 61 20 66 69 65 6c 64 20 69 6e 20 74 68 65 20 54 43 50 | alue..This.is.a.field.in.the.TCP |
| d7080 | 20 6f 70 74 69 6f 6e 73 20 70 61 72 74 20 6f 66 20 61 20 53 59 4e 20 70 61 63 6b 65 74 2e 20 42 | .options.part.of.a.SYN.packet..B |
| d70a0 | 79 20 73 65 74 74 69 6e 67 20 74 68 65 20 4d 53 53 20 76 61 6c 75 65 2c 20 79 6f 75 20 61 72 65 | y.setting.the.MSS.value,.you.are |
| d70c0 | 20 74 65 6c 6c 69 6e 67 20 74 68 65 20 72 65 6d 6f 74 65 20 73 69 64 65 20 75 6e 65 71 75 69 76 | .telling.the.remote.side.unequiv |
| d70e0 | 6f 63 61 6c 6c 79 20 27 64 6f 20 6e 6f 74 20 74 72 79 20 74 6f 20 73 65 6e 64 20 6d 65 20 70 61 | ocally.'do.not.try.to.send.me.pa |
| d7100 | 63 6b 65 74 73 20 62 69 67 67 65 72 20 74 68 61 6e 20 74 68 69 73 20 76 61 6c 75 65 27 2e 00 41 | ckets.bigger.than.this.value'..A |
| d7120 | 73 20 53 53 54 50 20 70 72 6f 76 69 64 65 73 20 50 50 50 20 76 69 61 20 61 20 53 53 4c 2f 54 4c | s.SSTP.provides.PPP.via.a.SSL/TL |
| d7140 | 53 20 63 68 61 6e 6e 65 6c 20 74 68 65 20 75 73 65 20 6f 66 20 65 69 74 68 65 72 20 70 75 62 6c | S.channel.the.use.of.either.publ |
| d7160 | 69 63 61 6c 6c 79 20 73 69 67 6e 65 64 20 63 65 72 74 69 66 69 63 61 74 65 73 20 61 73 20 77 65 | ically.signed.certificates.as.we |
| d7180 | 6c 6c 20 61 73 20 61 20 70 72 69 76 61 74 65 20 50 4b 49 20 69 73 20 72 65 71 75 69 72 65 64 2e | ll.as.a.private.PKI.is.required. |
| d71a0 | 00 41 73 20 53 53 54 50 20 70 72 6f 76 69 64 65 73 20 50 50 50 20 76 69 61 20 61 20 53 53 4c 2f | .As.SSTP.provides.PPP.via.a.SSL/ |
| d71c0 | 54 4c 53 20 63 68 61 6e 6e 65 6c 20 74 68 65 20 75 73 65 20 6f 66 20 65 69 74 68 65 72 20 70 75 | TLS.channel.the.use.of.either.pu |
| d71e0 | 62 6c 69 63 6c 79 20 73 69 67 6e 65 64 20 63 65 72 74 69 66 69 63 61 74 65 73 20 6f 72 20 70 72 | blicly.signed.certificates.or.pr |
| d7200 | 69 76 61 74 65 20 50 4b 49 20 69 73 20 72 65 71 75 69 72 65 64 2e 00 41 73 20 56 79 4f 53 20 69 | ivate.PKI.is.required..As.VyOS.i |
| d7220 | 73 20 4c 69 6e 75 78 20 62 61 73 65 64 20 74 68 65 20 64 65 66 61 75 6c 74 20 70 6f 72 74 20 75 | s.Linux.based.the.default.port.u |
| d7240 | 73 65 64 20 69 73 20 6e 6f 74 20 75 73 69 6e 67 20 34 37 38 39 20 61 73 20 74 68 65 20 64 65 66 | sed.is.not.using.4789.as.the.def |
| d7260 | 61 75 6c 74 20 49 41 4e 41 2d 61 73 73 69 67 6e 65 64 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 55 | ault.IANA-assigned.destination.U |
| d7280 | 44 50 20 70 6f 72 74 20 6e 75 6d 62 65 72 2e 20 49 6e 73 74 65 61 64 20 56 79 4f 53 20 75 73 65 | DP.port.number..Instead.VyOS.use |
| d72a0 | 73 20 74 68 65 20 4c 69 6e 75 78 20 64 65 66 61 75 6c 74 20 70 6f 72 74 20 6f 66 20 38 34 37 32 | s.the.Linux.default.port.of.8472 |
| d72c0 | 2e 00 41 73 20 56 79 4f 53 20 69 73 20 62 61 73 65 64 20 6f 6e 20 4c 69 6e 75 78 20 61 6e 64 20 | ..As.VyOS.is.based.on.Linux.and. |
| d72e0 | 74 68 65 72 65 20 77 61 73 20 6e 6f 20 6f 66 66 69 63 69 61 6c 20 49 41 4e 41 20 70 6f 72 74 20 | there.was.no.official.IANA.port. |
| d7300 | 61 73 73 69 67 6e 65 64 20 66 6f 72 20 56 58 4c 41 4e 2c 20 56 79 4f 53 20 75 73 65 73 20 61 20 | assigned.for.VXLAN,.VyOS.uses.a. |
| d7320 | 64 65 66 61 75 6c 74 20 70 6f 72 74 20 6f 66 20 38 34 37 32 2e 20 59 6f 75 20 63 61 6e 20 63 68 | default.port.of.8472..You.can.ch |
| d7340 | 61 6e 67 65 20 74 68 65 20 70 6f 72 74 20 6f 6e 20 61 20 70 65 72 20 56 58 4c 41 4e 20 69 6e 74 | ange.the.port.on.a.per.VXLAN.int |
| d7360 | 65 72 66 61 63 65 20 62 61 73 69 73 20 74 6f 20 67 65 74 20 69 74 20 77 6f 72 6b 69 6e 67 20 61 | erface.basis.to.get.it.working.a |
| d7380 | 63 72 6f 73 73 20 6d 75 6c 74 69 70 6c 65 20 76 65 6e 64 6f 72 73 2e 00 41 73 20 56 79 4f 53 20 | cross.multiple.vendors..As.VyOS. |
| d73a0 | 69 73 20 62 61 73 65 64 20 6f 6e 20 4c 69 6e 75 78 20 69 74 20 6c 65 76 65 72 61 67 65 73 20 69 | is.based.on.Linux.it.leverages.i |
| d73c0 | 74 73 20 66 69 72 65 77 61 6c 6c 2e 20 54 68 65 20 4e 65 74 66 69 6c 74 65 72 20 70 72 6f 6a 65 | ts.firewall..The.Netfilter.proje |
| d73e0 | 63 74 20 63 72 65 61 74 65 64 20 69 70 74 61 62 6c 65 73 20 61 6e 64 20 69 74 73 20 73 75 63 63 | ct.created.iptables.and.its.succ |
| d7400 | 65 73 73 6f 72 20 6e 66 74 61 62 6c 65 73 20 66 6f 72 20 74 68 65 20 4c 69 6e 75 78 20 6b 65 72 | essor.nftables.for.the.Linux.ker |
| d7420 | 6e 65 6c 20 74 6f 20 77 6f 72 6b 20 64 69 72 65 63 74 6c 79 20 6f 6e 20 70 61 63 6b 65 74 20 64 | nel.to.work.directly.on.packet.d |
| d7440 | 61 74 61 20 66 6c 6f 77 73 2e 20 54 68 69 73 20 6e 6f 77 20 65 78 74 65 6e 64 73 20 74 68 65 20 | ata.flows..This.now.extends.the. |
| d7460 | 63 6f 6e 63 65 70 74 20 6f 66 20 7a 6f 6e 65 2d 62 61 73 65 64 20 73 65 63 75 72 69 74 79 20 74 | concept.of.zone-based.security.t |
| d7480 | 6f 20 61 6c 6c 6f 77 20 66 6f 72 20 6d 61 6e 69 70 75 6c 61 74 69 6e 67 20 74 68 65 20 64 61 74 | o.allow.for.manipulating.the.dat |
| d74a0 | 61 20 61 74 20 6d 75 6c 74 69 70 6c 65 20 73 74 61 67 65 73 20 6f 6e 63 65 20 61 63 63 65 70 74 | a.at.multiple.stages.once.accept |
| d74c0 | 65 64 20 62 79 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 69 6e 74 65 72 66 61 63 65 20 61 6e 64 20 | ed.by.the.network.interface.and. |
| d74e0 | 74 68 65 20 64 72 69 76 65 72 20 62 65 66 6f 72 65 20 62 65 69 6e 67 20 68 61 6e 64 65 64 20 6f | the.driver.before.being.handed.o |
| d7500 | 66 66 20 74 6f 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 28 65 2e 67 2e 2c 20 61 20 77 | ff.to.the.destination.(e.g.,.a.w |
| d7520 | 65 62 20 73 65 72 76 65 72 20 4f 52 20 61 6e 6f 74 68 65 72 20 64 65 76 69 63 65 29 2e 00 41 73 | eb.server.OR.another.device)..As |
| d7540 | 20 56 79 4f 53 20 6d 61 6b 65 73 20 75 73 65 20 6f 66 20 74 68 65 20 51 4d 49 20 69 6e 74 65 72 | .VyOS.makes.use.of.the.QMI.inter |
| d7560 | 66 61 63 65 20 74 6f 20 63 6f 6e 6e 65 63 74 20 74 6f 20 74 68 65 20 57 57 41 4e 20 6d 6f 64 65 | face.to.connect.to.the.WWAN.mode |
| d7580 | 6d 20 63 61 72 64 73 2c 20 61 6c 73 6f 20 74 68 65 20 66 69 72 6d 77 61 72 65 20 63 61 6e 20 62 | m.cards,.also.the.firmware.can.b |
| d75a0 | 65 20 72 65 70 72 6f 67 72 61 6d 6d 65 64 2e 00 41 73 20 56 79 4f 53 20 6d 61 6b 65 73 20 75 73 | e.reprogrammed..As.VyOS.makes.us |
| d75c0 | 65 20 6f 66 20 74 68 65 20 51 4d 49 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 63 6f 6e 6e 65 63 | e.of.the.QMI.interface.to.connec |
| d75e0 | 74 20 74 6f 20 74 68 65 20 57 57 41 4e 20 6d 6f 64 65 6d 20 63 61 72 64 73 2c 20 74 68 65 20 66 | t.to.the.WWAN.modem.cards,.the.f |
| d7600 | 69 72 6d 77 61 72 65 20 63 61 6e 20 62 65 20 72 65 70 72 6f 67 72 61 6d 6d 65 64 2e 00 41 73 20 | irmware.can.be.reprogrammed..As. |
| d7620 | 61 20 72 65 66 65 72 65 6e 63 65 3a 20 66 6f 72 20 31 30 6d 62 69 74 2f 73 20 6f 6e 20 49 6e 74 | a.reference:.for.10mbit/s.on.Int |
| d7640 | 65 6c 2c 20 79 6f 75 20 6d 69 67 68 74 20 6e 65 65 64 20 61 74 20 6c 65 61 73 74 20 31 30 6b 62 | el,.you.might.need.at.least.10kb |
| d7660 | 79 74 65 20 62 75 66 66 65 72 20 69 66 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 72 65 61 63 68 20 | yte.buffer.if.you.want.to.reach. |
| d7680 | 79 6f 75 72 20 63 6f 6e 66 69 67 75 72 65 64 20 72 61 74 65 2e 00 41 73 20 61 20 72 65 73 75 6c | your.configured.rate..As.a.resul |
| d76a0 | 74 2c 20 74 68 65 20 70 72 6f 63 65 73 73 69 6e 67 20 6f 66 20 65 61 63 68 20 70 61 63 6b 65 74 | t,.the.processing.of.each.packet |
| d76c0 | 20 62 65 63 6f 6d 65 73 20 6d 6f 72 65 20 65 66 66 69 63 69 65 6e 74 2c 20 70 6f 74 65 6e 74 69 | .becomes.more.efficient,.potenti |
| d76e0 | 61 6c 6c 79 20 6c 65 76 65 72 61 67 69 6e 67 20 68 61 72 64 77 61 72 65 20 65 6e 63 72 79 70 74 | ally.leveraging.hardware.encrypt |
| d7700 | 69 6f 6e 20 6f 66 66 6c 6f 61 64 69 6e 67 20 73 75 70 70 6f 72 74 20 61 76 61 69 6c 61 62 6c 65 | ion.offloading.support.available |
| d7720 | 20 69 6e 20 74 68 65 20 6b 65 72 6e 65 6c 2e 00 41 73 20 61 6e 20 61 6c 74 65 72 6e 61 74 69 76 | .in.the.kernel..As.an.alternativ |
| d7740 | 65 20 74 6f 20 61 70 70 6c 79 69 6e 67 20 70 6f 6c 69 63 79 20 74 6f 20 61 6e 20 69 6e 74 65 72 | e.to.applying.policy.to.an.inter |
| d7760 | 66 61 63 65 20 64 69 72 65 63 74 6c 79 2c 20 61 20 7a 6f 6e 65 2d 62 61 73 65 64 20 66 69 72 65 | face.directly,.a.zone-based.fire |
| d7780 | 77 61 6c 6c 20 63 61 6e 20 62 65 20 63 72 65 61 74 65 64 20 74 6f 20 73 69 6d 70 6c 69 66 79 20 | wall.can.be.created.to.simplify. |
| d77a0 | 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 77 68 65 6e 20 6d 75 6c 74 69 70 6c 65 20 69 6e 74 65 | configuration.when.multiple.inte |
| d77c0 | 72 66 61 63 65 73 20 62 65 6c 6f 6e 67 20 74 6f 20 74 68 65 20 73 61 6d 65 20 73 65 63 75 72 69 | rfaces.belong.to.the.same.securi |
| d77e0 | 74 79 20 7a 6f 6e 65 2e 20 49 6e 73 74 65 61 64 20 6f 66 20 61 70 70 6c 79 69 6e 67 20 72 75 6c | ty.zone..Instead.of.applying.rul |
| d7800 | 65 2d 73 65 74 73 20 74 6f 20 69 6e 74 65 72 66 61 63 65 73 2c 20 74 68 65 79 20 61 72 65 20 61 | e-sets.to.interfaces,.they.are.a |
| d7820 | 70 70 6c 69 65 64 20 74 6f 20 73 6f 75 72 63 65 20 7a 6f 6e 65 2d 64 65 73 74 69 6e 61 74 69 6f | pplied.to.source.zone-destinatio |
| d7840 | 6e 20 7a 6f 6e 65 20 70 61 69 72 73 2e 00 41 73 20 61 6e 79 20 6f 74 68 65 72 20 66 69 72 65 77 | n.zone.pairs..As.any.other.firew |
| d7860 | 61 6c 6c 20 67 72 6f 75 70 2c 20 64 79 6e 61 6d 69 63 20 66 69 72 65 77 61 6c 6c 20 67 72 6f 75 | all.group,.dynamic.firewall.grou |
| d7880 | 70 73 20 63 61 6e 20 62 65 20 75 73 65 64 20 69 6e 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 | ps.can.be.used.in.firewall.rules |
| d78a0 | 20 61 73 20 6d 61 74 63 68 69 6e 67 20 6f 70 74 69 6f 6e 73 2e 20 46 6f 72 20 65 78 61 6d 70 6c | .as.matching.options..For.exampl |
| d78c0 | 65 3a 00 41 73 20 62 6f 74 68 20 4d 69 63 72 6f 73 6f 66 74 20 57 69 6e 64 6f 77 73 20 61 6e 64 | e:.As.both.Microsoft.Windows.and |
| d78e0 | 20 41 70 70 6c 65 20 69 4f 53 2f 69 50 61 64 4f 53 20 6f 6e 6c 79 20 73 75 70 70 6f 72 74 20 61 | .Apple.iOS/iPadOS.only.support.a |
| d7900 | 20 63 65 72 74 61 69 6e 20 73 65 74 20 6f 66 20 65 6e 63 72 79 70 74 69 6f 6e 20 63 69 70 68 65 | .certain.set.of.encryption.ciphe |
| d7920 | 72 73 20 61 6e 64 20 69 6e 74 65 67 72 69 74 79 20 61 6c 67 6f 72 69 74 68 6d 73 20 77 65 20 77 | rs.and.integrity.algorithms.we.w |
| d7940 | 69 6c 6c 20 76 61 6c 69 64 61 74 65 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 49 4b 45 2f | ill.validate.the.configured.IKE/ |
| d7960 | 45 53 50 20 70 72 6f 70 6f 73 61 6c 73 20 61 6e 64 20 6f 6e 6c 79 20 6c 69 73 74 20 74 68 65 20 | ESP.proposals.and.only.list.the. |
| d7980 | 63 6f 6d 70 61 74 69 62 6c 65 20 6f 6e 65 73 20 74 6f 20 74 68 65 20 75 73 65 72 20 e2 80 94 20 | compatible.ones.to.the.user..... |
| d79a0 | 69 66 20 6d 75 6c 74 69 70 6c 65 20 61 72 65 20 64 65 66 69 6e 65 64 2e 20 49 66 20 74 68 65 72 | if.multiple.are.defined..If.ther |
| d79c0 | 65 20 61 72 65 20 6e 6f 20 6d 61 74 63 68 69 6e 67 20 70 72 6f 70 6f 73 61 6c 73 20 66 6f 75 6e | e.are.no.matching.proposals.foun |
| d79e0 | 64 20 e2 80 94 20 77 65 20 63 61 6e 20 6e 6f 74 20 67 65 6e 65 72 61 74 65 20 61 20 70 72 6f 66 | d.....we.can.not.generate.a.prof |
| d7a00 | 69 6c 65 20 66 6f 72 20 79 6f 75 2e 00 41 73 20 64 65 73 63 72 69 62 65 64 2c 20 66 69 72 73 74 | ile.for.you..As.described,.first |
| d7a20 | 20 70 61 63 6b 65 74 20 77 69 6c 6c 20 62 65 20 65 76 61 6c 75 61 74 65 64 20 62 79 20 61 6c 6c | .packet.will.be.evaluated.by.all |
| d7a40 | 20 74 68 65 20 66 69 72 65 77 61 6c 6c 20 70 61 74 68 2c 20 73 6f 20 64 65 73 69 72 65 64 20 63 | .the.firewall.path,.so.desired.c |
| d7a60 | 6f 6e 6e 65 63 74 69 6f 6e 20 73 68 6f 75 6c 64 20 62 65 20 65 78 70 6c 69 63 69 74 65 6c 79 20 | onnection.should.be.explicitely. |
| d7a80 | 61 63 63 65 70 74 65 64 2e 20 53 61 6d 65 20 74 68 69 6e 67 20 73 68 6f 75 6c 64 20 62 65 20 74 | accepted..Same.thing.should.be.t |
| d7aa0 | 61 6b 65 6e 20 69 6e 74 6f 20 61 63 63 6f 75 6e 74 20 66 6f 72 20 74 72 61 66 66 69 63 20 69 6e | aken.into.account.for.traffic.in |
| d7ac0 | 20 72 65 76 65 72 73 65 20 6f 72 64 65 72 2e 20 49 6e 20 6d 6f 73 74 20 63 61 73 65 73 20 73 74 | .reverse.order..In.most.cases.st |
| d7ae0 | 61 74 65 20 70 6f 6c 69 63 69 65 73 20 61 72 65 20 75 73 65 64 20 69 6e 20 6f 72 64 65 72 20 74 | ate.policies.are.used.in.order.t |
| d7b00 | 6f 20 61 63 63 65 70 74 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 69 6e 20 72 65 76 65 72 73 65 20 70 | o.accept.connection.in.reverse.p |
| d7b20 | 61 74 63 68 2e 00 41 73 20 64 65 73 63 72 69 62 65 64 2c 20 66 69 72 73 74 20 70 61 63 6b 65 74 | atch..As.described,.first.packet |
| d7b40 | 20 77 69 6c 6c 20 62 65 20 65 76 61 6c 75 61 74 65 64 20 62 79 20 61 6c 6c 20 74 68 65 20 66 69 | .will.be.evaluated.by.all.the.fi |
| d7b60 | 72 65 77 61 6c 6c 20 70 61 74 68 2c 20 73 6f 20 64 65 73 69 72 65 64 20 63 6f 6e 6e 65 63 74 69 | rewall.path,.so.desired.connecti |
| d7b80 | 6f 6e 20 73 68 6f 75 6c 64 20 62 65 20 65 78 70 6c 69 63 69 74 6c 79 20 61 63 63 65 70 74 65 64 | on.should.be.explicitly.accepted |
| d7ba0 | 2e 20 53 61 6d 65 20 74 68 69 6e 67 20 73 68 6f 75 6c 64 20 62 65 20 74 61 6b 65 6e 20 69 6e 74 | ..Same.thing.should.be.taken.int |
| d7bc0 | 6f 20 61 63 63 6f 75 6e 74 20 66 6f 72 20 74 72 61 66 66 69 63 20 69 6e 20 72 65 76 65 72 73 65 | o.account.for.traffic.in.reverse |
| d7be0 | 20 6f 72 64 65 72 2e 20 49 6e 20 6d 6f 73 74 20 63 61 73 65 73 20 73 74 61 74 65 20 70 6f 6c 69 | .order..In.most.cases.state.poli |
| d7c00 | 63 69 65 73 20 61 72 65 20 75 73 65 64 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 61 63 63 65 70 74 | cies.are.used.in.order.to.accept |
| d7c20 | 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 69 6e 20 72 65 76 65 72 73 65 20 70 61 74 63 68 2e 00 41 73 | .connection.in.reverse.patch..As |
| d7c40 | 20 64 65 73 63 72 69 62 65 64 2c 20 74 68 65 20 66 69 72 73 74 20 70 61 63 6b 65 74 20 77 69 6c | .described,.the.first.packet.wil |
| d7c60 | 6c 20 62 65 20 65 76 61 6c 75 61 74 65 64 20 62 79 20 74 68 65 20 66 69 72 65 77 61 6c 6c 20 70 | l.be.evaluated.by.the.firewall.p |
| d7c80 | 61 74 68 2c 20 73 6f 20 61 20 64 65 73 69 72 65 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 73 68 6f | ath,.so.a.desired.connection.sho |
| d7ca0 | 75 6c 64 20 62 65 20 65 78 70 6c 69 63 69 74 6c 79 20 61 63 63 65 70 74 65 64 2e 20 53 61 6d 65 | uld.be.explicitly.accepted..Same |
| d7cc0 | 20 74 68 69 6e 67 20 73 68 6f 75 6c 64 20 62 65 20 74 61 6b 65 6e 20 69 6e 74 6f 20 61 63 63 6f | .thing.should.be.taken.into.acco |
| d7ce0 | 75 6e 74 20 66 6f 72 20 74 72 61 66 66 69 63 20 69 6e 20 72 65 76 65 72 73 65 20 6f 72 64 65 72 | unt.for.traffic.in.reverse.order |
| d7d00 | 2e 20 49 6e 20 6d 6f 73 74 20 63 61 73 65 73 20 73 74 61 74 65 20 70 6f 6c 69 63 69 65 73 20 61 | ..In.most.cases.state.policies.a |
| d7d20 | 72 65 20 75 73 65 64 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 61 63 63 65 70 74 20 61 20 63 6f 6e | re.used.in.order.to.accept.a.con |
| d7d40 | 6e 65 63 74 69 6f 6e 20 69 6e 20 74 68 65 20 72 65 76 65 72 73 65 20 70 61 74 68 2e 00 41 73 20 | nection.in.the.reverse.path..As. |
| d7d60 | 6d 6f 72 65 20 61 6e 64 20 6d 6f 72 65 20 72 6f 75 74 65 72 73 20 72 75 6e 20 6f 6e 20 48 79 70 | more.and.more.routers.run.on.Hyp |
| d7d80 | 65 72 76 69 73 6f 72 73 2c 20 65 78 70 65 63 69 61 6c 6c 79 20 77 69 74 68 20 61 20 3a 61 62 62 | ervisors,.expecially.with.a.:abb |
| d7da0 | 72 3a 60 4e 4f 53 20 28 4e 65 74 77 6f 72 6b 20 4f 70 65 72 61 74 69 6e 67 20 53 79 73 74 65 6d | r:`NOS.(Network.Operating.System |
| d7dc0 | 29 60 20 61 73 20 56 79 4f 53 2c 20 69 74 20 6d 61 6b 65 73 20 66 65 77 65 72 20 61 6e 64 20 66 | )`.as.VyOS,.it.makes.fewer.and.f |
| d7de0 | 65 77 65 72 20 73 65 6e 73 65 20 74 6f 20 75 73 65 20 73 74 61 74 69 63 20 72 65 73 6f 75 72 63 | ewer.sense.to.use.static.resourc |
| d7e00 | 65 20 62 69 6e 64 69 6e 67 73 20 6c 69 6b 65 20 60 60 73 6d 70 2d 61 66 66 69 6e 69 74 79 60 60 | e.bindings.like.``smp-affinity`` |
| d7e20 | 20 61 73 20 70 72 65 73 65 6e 74 20 69 6e 20 56 79 4f 53 20 31 2e 32 20 61 6e 64 20 65 61 72 6c | .as.present.in.VyOS.1.2.and.earl |
| d7e40 | 69 65 72 20 74 6f 20 70 69 6e 20 63 65 72 74 61 69 6e 20 69 6e 74 65 72 72 75 70 74 20 68 61 6e | ier.to.pin.certain.interrupt.han |
| d7e60 | 64 6c 65 72 73 20 74 6f 20 73 70 65 63 69 66 69 63 20 43 50 55 73 2e 00 41 73 20 6e 65 74 77 6f | dlers.to.specific.CPUs..As.netwo |
| d7e80 | 72 6b 20 61 64 64 72 65 73 73 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 6d 6f 64 69 66 69 65 73 20 | rk.address.translation.modifies. |
| d7ea0 | 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 69 6e 20 70 61 | the.IP.address.information.in.pa |
| d7ec0 | 63 6b 65 74 73 2c 20 4e 41 54 20 69 6d 70 6c 65 6d 65 6e 74 61 74 69 6f 6e 73 20 6d 61 79 20 76 | ckets,.NAT.implementations.may.v |
| d7ee0 | 61 72 79 20 69 6e 20 74 68 65 69 72 20 73 70 65 63 69 66 69 63 20 62 65 68 61 76 69 6f 72 20 69 | ary.in.their.specific.behavior.i |
| d7f00 | 6e 20 76 61 72 69 6f 75 73 20 61 64 64 72 65 73 73 69 6e 67 20 63 61 73 65 73 20 61 6e 64 20 74 | n.various.addressing.cases.and.t |
| d7f20 | 68 65 69 72 20 65 66 66 65 63 74 20 6f 6e 20 6e 65 74 77 6f 72 6b 20 74 72 61 66 66 69 63 2e 20 | heir.effect.on.network.traffic.. |
| d7f40 | 54 68 65 20 73 70 65 63 69 66 69 63 73 20 6f 66 20 4e 41 54 20 62 65 68 61 76 69 6f 72 20 61 72 | The.specifics.of.NAT.behavior.ar |
| d7f60 | 65 20 6e 6f 74 20 63 6f 6d 6d 6f 6e 6c 79 20 64 6f 63 75 6d 65 6e 74 65 64 20 62 79 20 76 65 6e | e.not.commonly.documented.by.ven |
| d7f80 | 64 6f 72 73 20 6f 66 20 65 71 75 69 70 6d 65 6e 74 20 63 6f 6e 74 61 69 6e 69 6e 67 20 4e 41 54 | dors.of.equipment.containing.NAT |
| d7fa0 | 20 69 6d 70 6c 65 6d 65 6e 74 61 74 69 6f 6e 73 2e 00 41 73 20 6f 66 20 56 79 4f 53 20 31 2e 34 | .implementations..As.of.VyOS.1.4 |
| d7fc0 | 2c 20 4f 70 65 6e 56 50 4e 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 6d 6f 64 65 20 63 61 6e 20 | ,.OpenVPN.site-to-site.mode.can. |
| d7fe0 | 75 73 65 20 65 69 74 68 65 72 20 70 72 65 2d 73 68 61 72 65 64 20 6b 65 79 73 20 6f 72 20 78 2e | use.either.pre-shared.keys.or.x. |
| d8000 | 35 30 39 20 63 65 72 74 69 66 69 63 61 74 65 73 2e 00 41 73 20 70 65 72 20 64 65 66 61 75 6c 74 | 509.certificates..As.per.default |
| d8020 | 20 61 6e 64 20 69 66 20 6e 6f 74 20 6f 74 68 65 72 77 69 73 65 20 64 65 66 69 6e 65 64 2c 20 6d | .and.if.not.otherwise.defined,.m |
| d8040 | 73 63 68 61 70 2d 76 32 20 69 73 20 62 65 69 6e 67 20 75 73 65 64 20 66 6f 72 20 61 75 74 68 65 | schap-v2.is.being.used.for.authe |
| d8060 | 6e 74 69 63 61 74 69 6f 6e 20 61 6e 64 20 6d 70 70 65 20 31 32 38 2d 62 69 74 20 28 73 74 61 74 | ntication.and.mppe.128-bit.(stat |
| d8080 | 65 6c 65 73 73 29 20 66 6f 72 20 65 6e 63 72 79 70 74 69 6f 6e 2e 20 49 66 20 6e 6f 20 67 61 74 | eless).for.encryption..If.no.gat |
| d80a0 | 65 77 61 79 2d 61 64 64 72 65 73 73 20 69 73 20 73 65 74 20 77 69 74 68 69 6e 20 74 68 65 20 63 | eway-address.is.set.within.the.c |
| d80c0 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2c 20 74 68 65 20 6c 6f 77 65 73 74 20 49 50 20 6f 75 74 20 | onfiguration,.the.lowest.IP.out. |
| d80e0 | 6f 66 20 74 68 65 20 2f 32 34 20 63 6c 69 65 6e 74 2d 69 70 2d 70 6f 6f 6c 20 69 73 20 62 65 69 | of.the./24.client-ip-pool.is.bei |
| d8100 | 6e 67 20 75 73 65 64 2e 20 46 6f 72 20 69 6e 73 74 61 6e 63 65 2c 20 69 6e 20 74 68 65 20 65 78 | ng.used..For.instance,.in.the.ex |
| d8120 | 61 6d 70 6c 65 20 62 65 6c 6f 77 20 69 74 20 77 6f 75 6c 64 20 62 65 20 31 39 32 2e 31 36 38 2e | ample.below.it.would.be.192.168. |
| d8140 | 30 2e 31 2e 00 41 73 20 73 61 69 64 20 62 65 66 6f 72 65 2c 20 6f 6e 63 65 20 66 69 72 65 77 61 | 0.1..As.said.before,.once.firewa |
| d8160 | 6c 6c 20 67 72 6f 75 70 73 20 61 72 65 20 63 72 65 61 74 65 64 2c 20 74 68 65 79 20 63 61 6e 20 | ll.groups.are.created,.they.can. |
| d8180 | 62 65 20 72 65 66 65 72 65 6e 63 65 64 20 65 69 74 68 65 72 20 69 6e 20 66 69 72 65 77 61 6c 6c | be.referenced.either.in.firewall |
| d81a0 | 2c 20 6e 61 74 2c 20 6e 61 74 36 36 20 61 6e 64 2f 6f 72 20 70 6f 6c 69 63 79 2d 72 6f 75 74 65 | ,.nat,.nat66.and/or.policy-route |
| d81c0 | 20 72 75 6c 65 73 2e 00 41 73 20 73 68 6f 77 6e 20 69 6e 20 74 68 65 20 65 78 61 6d 70 6c 65 20 | .rules..As.shown.in.the.example. |
| d81e0 | 61 62 6f 76 65 2c 20 6f 6e 65 20 6f 66 20 74 68 65 20 70 6f 73 73 69 62 69 6c 69 74 69 65 73 20 | above,.one.of.the.possibilities. |
| d8200 | 74 6f 20 6d 61 74 63 68 20 70 61 63 6b 65 74 73 20 69 73 20 62 61 73 65 64 20 6f 6e 20 6d 61 72 | to.match.packets.is.based.on.mar |
| d8220 | 6b 73 20 64 6f 6e 65 20 62 79 20 74 68 65 20 66 69 72 65 77 61 6c 6c 2c 20 60 74 68 61 74 20 63 | ks.done.by.the.firewall,.`that.c |
| d8240 | 61 6e 20 67 69 76 65 20 79 6f 75 20 61 20 67 72 65 61 74 20 64 65 61 6c 20 6f 66 20 66 6c 65 78 | an.give.you.a.great.deal.of.flex |
| d8260 | 69 62 69 6c 69 74 79 60 5f 2e 00 41 73 20 73 68 6f 77 6e 20 69 6e 20 74 68 65 20 6c 61 73 74 20 | ibility`_..As.shown.in.the.last. |
| d8280 | 63 6f 6d 6d 61 6e 64 20 6f 66 20 74 68 65 20 65 78 61 6d 70 6c 65 20 61 62 6f 76 65 2c 20 74 68 | command.of.the.example.above,.th |
| d82a0 | 65 20 60 71 75 65 75 65 2d 74 79 70 65 60 20 73 65 74 74 69 6e 67 20 61 6c 6c 6f 77 73 20 74 68 | e.`queue-type`.setting.allows.th |
| d82c0 | 65 73 65 20 63 6f 6d 62 69 6e 61 74 69 6f 6e 73 2e 20 59 6f 75 20 77 69 6c 6c 20 62 65 20 61 62 | ese.combinations..You.will.be.ab |
| d82e0 | 6c 65 20 74 6f 20 75 73 65 20 69 74 20 69 6e 20 6d 61 6e 79 20 70 6f 6c 69 63 69 65 73 2e 00 41 | le.to.use.it.in.many.policies..A |
| d8300 | 73 20 74 68 65 20 65 78 61 6d 70 6c 65 20 69 6d 61 67 65 20 62 65 6c 6f 77 20 73 68 6f 77 73 2c | s.the.example.image.below.shows, |
| d8320 | 20 74 68 65 20 64 65 76 69 63 65 20 6e 6f 77 20 6e 65 65 64 73 20 72 75 6c 65 73 20 74 6f 20 61 | .the.device.now.needs.rules.to.a |
| d8340 | 6c 6c 6f 77 2f 62 6c 6f 63 6b 20 74 72 61 66 66 69 63 20 74 6f 20 6f 72 20 66 72 6f 6d 20 74 68 | llow/block.traffic.to.or.from.th |
| d8360 | 65 20 73 65 72 76 69 63 65 73 20 72 75 6e 6e 69 6e 67 20 6f 6e 20 74 68 65 20 64 65 76 69 63 65 | e.services.running.on.the.device |
| d8380 | 20 74 68 61 74 20 68 61 76 65 20 6f 70 65 6e 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 6f 6e 20 74 | .that.have.open.connections.on.t |
| d83a0 | 68 61 74 20 69 6e 74 65 72 66 61 63 65 2e 00 41 73 20 74 68 65 20 65 78 61 6d 70 6c 65 20 69 6d | hat.interface..As.the.example.im |
| d83c0 | 61 67 65 20 62 65 6c 6f 77 20 73 68 6f 77 73 2c 20 74 68 65 20 64 65 76 69 63 65 20 77 61 73 20 | age.below.shows,.the.device.was. |
| d83e0 | 63 6f 6e 66 69 67 75 72 65 64 20 77 69 74 68 20 72 75 6c 65 73 20 62 6c 6f 63 6b 69 6e 67 20 69 | configured.with.rules.blocking.i |
| d8400 | 6e 62 6f 75 6e 64 20 6f 72 20 6f 75 74 62 6f 75 6e 64 20 74 72 61 66 66 69 63 20 6f 6e 20 65 61 | nbound.or.outbound.traffic.on.ea |
| d8420 | 63 68 20 69 6e 74 65 72 66 61 63 65 2e 00 41 73 20 74 68 65 20 6e 61 6d 65 20 69 6d 70 6c 69 65 | ch.interface..As.the.name.implie |
| d8440 | 73 2c 20 69 74 27 73 20 49 50 76 34 20 65 6e 63 61 70 73 75 6c 61 74 65 64 20 69 6e 20 49 50 76 | s,.it's.IPv4.encapsulated.in.IPv |
| d8460 | 36 2c 20 61 73 20 73 69 6d 70 6c 65 20 61 73 20 74 68 61 74 2e 00 41 73 20 77 65 6c 6c 20 61 73 | 6,.as.simple.as.that..As.well.as |
| d8480 | 20 74 68 65 20 62 65 6c 6f 77 20 74 6f 20 61 6c 6c 6f 77 20 4e 41 54 2d 74 72 61 76 65 72 73 61 | .the.below.to.allow.NAT-traversa |
| d84a0 | 6c 20 28 77 68 65 6e 20 4e 41 54 20 69 73 20 64 65 74 65 63 74 65 64 20 62 79 20 74 68 65 20 56 | l.(when.NAT.is.detected.by.the.V |
| d84c0 | 50 4e 20 63 6c 69 65 6e 74 2c 20 45 53 50 20 69 73 20 65 6e 63 61 70 73 75 6c 61 74 65 64 20 69 | PN.client,.ESP.is.encapsulated.i |
| d84e0 | 6e 20 55 44 50 20 66 6f 72 20 4e 41 54 2d 74 72 61 76 65 72 73 61 6c 29 3a 00 41 73 20 77 69 74 | n.UDP.for.NAT-traversal):.As.wit |
| d8500 | 68 20 6f 74 68 65 72 20 70 6f 6c 69 63 69 65 73 2c 20 52 6f 75 6e 64 2d 52 6f 62 69 6e 20 63 61 | h.other.policies,.Round-Robin.ca |
| d8520 | 6e 20 65 6d 62 65 64 5f 20 61 6e 6f 74 68 65 72 20 70 6f 6c 69 63 79 20 69 6e 74 6f 20 61 20 63 | n.embed_.another.policy.into.a.c |
| d8540 | 6c 61 73 73 20 74 68 72 6f 75 67 68 20 74 68 65 20 60 60 71 75 65 75 65 2d 74 79 70 65 60 60 20 | lass.through.the.``queue-type``. |
| d8560 | 73 65 74 74 69 6e 67 2e 00 41 73 20 77 69 74 68 20 6f 74 68 65 72 20 70 6f 6c 69 63 69 65 73 2c | setting..As.with.other.policies, |
| d8580 | 20 53 68 61 70 65 72 20 63 61 6e 20 65 6d 62 65 64 5f 20 6f 74 68 65 72 20 70 6f 6c 69 63 69 65 | .Shaper.can.embed_.other.policie |
| d85a0 | 73 20 69 6e 74 6f 20 69 74 73 20 63 6c 61 73 73 65 73 20 74 68 72 6f 75 67 68 20 74 68 65 20 60 | s.into.its.classes.through.the.` |
| d85c0 | 60 71 75 65 75 65 2d 74 79 70 65 60 60 20 73 65 74 74 69 6e 67 20 61 6e 64 20 74 68 65 6e 20 63 | `queue-type``.setting.and.then.c |
| d85e0 | 6f 6e 66 69 67 75 72 65 20 74 68 65 69 72 20 70 61 72 61 6d 65 74 65 72 73 2e 00 41 73 20 77 69 | onfigure.their.parameters..As.wi |
| d8600 | 74 68 20 6f 74 68 65 72 20 70 6f 6c 69 63 69 65 73 2c 20 79 6f 75 20 63 61 6e 20 64 65 66 69 6e | th.other.policies,.you.can.defin |
| d8620 | 65 20 64 69 66 66 65 72 65 6e 74 20 74 79 70 65 20 6f 66 20 6d 61 74 63 68 69 6e 67 20 72 75 6c | e.different.type.of.matching.rul |
| d8640 | 65 73 20 66 6f 72 20 79 6f 75 72 20 63 6c 61 73 73 65 73 3a 00 41 73 20 77 69 74 68 20 6f 74 68 | es.for.your.classes:.As.with.oth |
| d8660 | 65 72 20 70 6f 6c 69 63 69 65 73 2c 20 79 6f 75 20 63 61 6e 20 65 6d 62 65 64 5f 20 6f 74 68 65 | er.policies,.you.can.embed_.othe |
| d8680 | 72 20 70 6f 6c 69 63 69 65 73 20 69 6e 74 6f 20 74 68 65 20 63 6c 61 73 73 65 73 20 28 61 6e 64 | r.policies.into.the.classes.(and |
| d86a0 | 20 64 65 66 61 75 6c 74 29 20 6f 66 20 79 6f 75 72 20 50 72 69 6f 72 69 74 79 20 51 75 65 75 65 | .default).of.your.Priority.Queue |
| d86c0 | 20 70 6f 6c 69 63 79 20 74 68 72 6f 75 67 68 20 74 68 65 20 60 60 71 75 65 75 65 2d 74 79 70 65 | .policy.through.the.``queue-type |
| d86e0 | 60 60 20 73 65 74 74 69 6e 67 3a 00 41 73 20 79 6f 75 20 63 61 6e 20 73 65 65 20 69 6e 20 74 68 | ``.setting:.As.you.can.see.in.th |
| d8700 | 65 20 65 78 61 6d 70 6c 65 20 68 65 72 65 2c 20 79 6f 75 20 63 61 6e 20 61 73 73 69 67 6e 20 74 | e.example.here,.you.can.assign.t |
| d8720 | 68 65 20 73 61 6d 65 20 72 75 6c 65 2d 73 65 74 20 74 6f 20 73 65 76 65 72 61 6c 20 69 6e 74 65 | he.same.rule-set.to.several.inte |
| d8740 | 72 66 61 63 65 73 2e 20 41 6e 20 69 6e 74 65 72 66 61 63 65 20 63 61 6e 20 6f 6e 6c 79 20 68 61 | rfaces..An.interface.can.only.ha |
| d8760 | 76 65 20 6f 6e 65 20 72 75 6c 65 2d 73 65 74 20 70 65 72 20 63 68 61 69 6e 2e 00 41 73 20 79 6f | ve.one.rule-set.per.chain..As.yo |
| d8780 | 75 20 63 61 6e 20 73 65 65 2c 20 4c 65 61 66 32 20 61 6e 64 20 4c 65 61 66 33 20 63 6f 6e 66 69 | u.can.see,.Leaf2.and.Leaf3.confi |
| d87a0 | 67 75 72 61 74 69 6f 6e 20 69 73 20 61 6c 6d 6f 73 74 20 69 64 65 6e 74 69 63 61 6c 2e 20 54 68 | guration.is.almost.identical..Th |
| d87c0 | 65 72 65 20 61 72 65 20 6c 6f 74 73 20 6f 66 20 63 6f 6d 6d 61 6e 64 73 20 61 62 6f 76 65 2c 20 | ere.are.lots.of.commands.above,. |
| d87e0 | 49 27 6c 6c 20 74 72 79 20 74 6f 20 69 6e 74 6f 20 6d 6f 72 65 20 64 65 74 61 69 6c 20 62 65 6c | I'll.try.to.into.more.detail.bel |
| d8800 | 6f 77 2c 20 63 6f 6d 6d 61 6e 64 20 64 65 73 63 72 69 70 74 69 6f 6e 73 20 61 72 65 20 70 6c 61 | ow,.command.descriptions.are.pla |
| d8820 | 63 65 64 20 75 6e 64 65 72 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 62 6f 78 65 73 3a 00 41 73 20 | ced.under.the.command.boxes:.As. |
| d8840 | 79 6f 75 20 63 61 6e 20 73 65 65 2c 20 74 68 65 20 4c 65 61 66 32 20 61 6e 64 20 4c 65 61 66 33 | you.can.see,.the.Leaf2.and.Leaf3 |
| d8860 | 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 73 20 61 72 65 20 61 6c 6d 6f 73 74 20 69 64 65 6e 74 | .configurations.are.almost.ident |
| d8880 | 69 63 61 6c 2e 20 54 68 65 72 65 20 61 72 65 20 6c 6f 74 73 20 6f 66 20 63 6f 6d 6d 61 6e 64 73 | ical..There.are.lots.of.commands |
| d88a0 | 20 61 62 6f 76 65 2c 20 49 27 6c 6c 20 74 72 79 20 74 6f 20 67 6f 20 69 6e 74 6f 20 6d 6f 72 65 | .above,.I'll.try.to.go.into.more |
| d88c0 | 20 64 65 74 61 69 6c 20 62 65 6c 6f 77 2e 20 43 6f 6d 6d 61 6e 64 20 64 65 73 63 72 69 70 74 69 | .detail.below..Command.descripti |
| d88e0 | 6f 6e 73 20 61 72 65 20 70 6c 61 63 65 64 20 75 6e 64 65 72 20 74 68 65 20 63 6f 6d 6d 61 6e 64 | ons.are.placed.under.the.command |
| d8900 | 20 62 6f 78 65 73 3a 00 41 73 73 69 67 6e 20 60 3c 6d 65 6d 62 65 72 3e 60 20 69 6e 74 65 72 66 | .boxes:.Assign.`<member>`.interf |
| d8920 | 61 63 65 20 74 6f 20 62 72 69 64 67 65 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 2e 20 41 20 63 | ace.to.bridge.`<interface>`..A.c |
| d8940 | 6f 6d 70 6c 65 74 69 6f 6e 20 68 65 6c 70 65 72 20 77 69 6c 6c 20 68 65 6c 70 20 79 6f 75 20 77 | ompletion.helper.will.help.you.w |
| d8960 | 69 74 68 20 61 6c 6c 20 61 6c 6c 6f 77 65 64 20 69 6e 74 65 72 66 61 63 65 73 20 77 68 69 63 68 | ith.all.allowed.interfaces.which |
| d8980 | 20 63 61 6e 20 62 65 20 62 72 69 64 67 65 64 2e 20 54 68 69 73 20 69 6e 63 6c 75 64 65 73 20 3a | .can.be.bridged..This.includes.: |
| d89a0 | 72 65 66 3a 60 65 74 68 65 72 6e 65 74 2d 69 6e 74 65 72 66 61 63 65 60 2c 20 3a 72 65 66 3a 60 | ref:`ethernet-interface`,.:ref:` |
| d89c0 | 62 6f 6e 64 2d 69 6e 74 65 72 66 61 63 65 60 2c 20 3a 72 65 66 3a 60 6c 32 74 70 76 33 2d 69 6e | bond-interface`,.:ref:`l2tpv3-in |
| d89e0 | 74 65 72 66 61 63 65 60 2c 20 3a 72 65 66 3a 60 6f 70 65 6e 76 70 6e 60 2c 20 3a 72 65 66 3a 60 | terface`,.:ref:`openvpn`,.:ref:` |
| d8a00 | 76 78 6c 61 6e 2d 69 6e 74 65 72 66 61 63 65 60 2c 20 3a 72 65 66 3a 60 77 69 72 65 6c 65 73 73 | vxlan-interface`,.:ref:`wireless |
| d8a20 | 2d 69 6e 74 65 72 66 61 63 65 60 2c 20 3a 72 65 66 3a 60 74 75 6e 6e 65 6c 2d 69 6e 74 65 72 66 | -interface`,.:ref:`tunnel-interf |
| d8a40 | 61 63 65 60 20 61 6e 64 20 3a 72 65 66 3a 60 67 65 6e 65 76 65 2d 69 6e 74 65 72 66 61 63 65 60 | ace`.and.:ref:`geneve-interface` |
| d8a60 | 2e 00 41 73 73 69 67 6e 20 61 20 73 70 65 63 69 66 69 63 20 62 61 63 6b 65 6e 64 20 74 6f 20 61 | ..Assign.a.specific.backend.to.a |
| d8a80 | 20 72 75 6c 65 00 41 73 73 69 67 6e 20 61 20 73 74 61 74 69 63 20 49 50 20 61 64 64 72 65 73 73 | .rule.Assign.a.static.IP.address |
| d8aa0 | 20 74 6f 20 60 3c 75 73 65 72 3e 60 20 61 63 63 6f 75 6e 74 2e 00 41 73 73 69 67 6e 20 69 6e 74 | .to.`<user>`.account..Assign.int |
| d8ac0 | 65 72 66 61 63 65 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 60 3c 69 6e 74 65 72 66 61 63 65 | erface.identified.by.`<interface |
| d8ae0 | 3e 60 20 74 6f 20 56 52 46 20 6e 61 6d 65 64 20 60 3c 6e 61 6d 65 3e 60 2e 00 41 73 73 69 67 6e | >`.to.VRF.named.`<name>`..Assign |
| d8b00 | 20 6d 65 6d 62 65 72 20 69 6e 74 65 72 66 61 63 65 73 20 74 6f 20 50 6f 72 74 43 68 61 6e 6e 65 | .member.interfaces.to.PortChanne |
| d8b20 | 6c 00 41 73 73 69 67 6e 20 73 74 61 74 69 63 20 49 50 20 61 64 64 72 65 73 73 20 74 6f 20 60 3c | l.Assign.static.IP.address.to.`< |
| d8b40 | 75 73 65 72 3e 60 20 61 63 63 6f 75 6e 74 2e 00 41 73 73 69 67 6e 20 74 68 65 20 49 50 20 61 64 | user>`.account..Assign.the.IP.ad |
| d8b60 | 64 72 65 73 73 20 74 6f 20 74 68 69 73 20 6d 61 63 68 69 6e 65 20 66 6f 72 20 60 3c 74 69 6d 65 | dress.to.this.machine.for.`<time |
| d8b80 | 3e 60 20 73 65 63 6f 6e 64 73 2e 00 41 73 73 69 67 6e 20 74 68 65 20 53 53 48 20 70 75 62 6c 69 | >`.seconds..Assign.the.SSH.publi |
| d8ba0 | 63 20 6b 65 79 20 70 6f 72 74 69 6f 6e 20 60 3c 6b 65 79 3e 60 20 69 64 65 6e 74 69 66 69 65 64 | c.key.portion.`<key>`.identified |
| d8bc0 | 20 62 79 20 70 65 72 2d 6b 65 79 20 60 3c 69 64 65 6e 74 69 66 69 65 72 3e 60 20 74 6f 20 74 68 | .by.per-key.`<identifier>`.to.th |
| d8be0 | 65 20 6c 6f 63 61 6c 20 75 73 65 72 20 60 3c 75 73 65 72 6e 61 6d 65 3e 60 2e 00 41 73 73 6f 63 | e.local.user.`<username>`..Assoc |
| d8c00 | 69 61 74 65 73 20 74 68 65 20 70 72 65 76 69 6f 75 73 6c 79 20 67 65 6e 65 72 61 74 65 64 20 70 | iates.the.previously.generated.p |
| d8c20 | 72 69 76 61 74 65 20 6b 65 79 20 74 6f 20 61 20 73 70 65 63 69 66 69 63 20 57 69 72 65 47 75 61 | rivate.key.to.a.specific.WireGua |
| d8c40 | 72 64 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 65 20 70 72 69 76 61 74 65 20 6b 65 79 20 63 61 | rd.interface..The.private.key.ca |
| d8c60 | 6e 20 62 65 20 67 65 6e 65 72 61 74 65 20 76 69 61 20 74 68 65 20 63 6f 6d 6d 61 6e 64 00 41 73 | n.be.generate.via.the.command.As |
| d8c80 | 73 75 72 65 20 74 68 61 74 20 79 6f 75 72 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 20 61 6c | sure.that.your.firewall.rules.al |
| d8ca0 | 6c 6f 77 20 74 68 65 20 74 72 61 66 66 69 63 2c 20 69 6e 20 77 68 69 63 68 20 63 61 73 65 20 79 | low.the.traffic,.in.which.case.y |
| d8cc0 | 6f 75 20 68 61 76 65 20 61 20 77 6f 72 6b 69 6e 67 20 56 50 4e 20 75 73 69 6e 67 20 57 69 72 65 | ou.have.a.working.VPN.using.Wire |
| d8ce0 | 47 75 61 72 64 2e 00 41 73 73 75 72 65 64 20 46 6f 72 77 61 72 64 69 6e 67 28 41 46 29 20 31 31 | Guard..Assured.Forwarding(AF).11 |
| d8d00 | 00 41 73 73 75 72 65 64 20 46 6f 72 77 61 72 64 69 6e 67 28 41 46 29 20 31 32 00 41 73 73 75 72 | .Assured.Forwarding(AF).12.Assur |
| d8d20 | 65 64 20 46 6f 72 77 61 72 64 69 6e 67 28 41 46 29 20 31 33 00 41 73 73 75 72 65 64 20 46 6f 72 | ed.Forwarding(AF).13.Assured.For |
| d8d40 | 77 61 72 64 69 6e 67 28 41 46 29 20 32 31 00 41 73 73 75 72 65 64 20 46 6f 72 77 61 72 64 69 6e | warding(AF).21.Assured.Forwardin |
| d8d60 | 67 28 41 46 29 20 32 32 00 41 73 73 75 72 65 64 20 46 6f 72 77 61 72 64 69 6e 67 28 41 46 29 20 | g(AF).22.Assured.Forwarding(AF). |
| d8d80 | 32 33 00 41 73 73 75 72 65 64 20 46 6f 72 77 61 72 64 69 6e 67 28 41 46 29 20 33 31 00 41 73 73 | 23.Assured.Forwarding(AF).31.Ass |
| d8da0 | 75 72 65 64 20 46 6f 72 77 61 72 64 69 6e 67 28 41 46 29 20 33 32 00 41 73 73 75 72 65 64 20 46 | ured.Forwarding(AF).32.Assured.F |
| d8dc0 | 6f 72 77 61 72 64 69 6e 67 28 41 46 29 20 33 33 00 41 73 73 75 72 65 64 20 46 6f 72 77 61 72 64 | orwarding(AF).33.Assured.Forward |
| d8de0 | 69 6e 67 28 41 46 29 20 34 31 00 41 73 73 75 72 65 64 20 46 6f 72 77 61 72 64 69 6e 67 28 41 46 | ing(AF).41.Assured.Forwarding(AF |
| d8e00 | 29 20 34 32 00 41 73 73 75 72 65 64 20 46 6f 72 77 61 72 64 69 6e 67 28 41 46 29 20 34 33 00 41 | ).42.Assured.Forwarding(AF).43.A |
| d8e20 | 74 20 65 76 65 72 79 20 72 6f 75 6e 64 2c 20 74 68 65 20 64 65 66 69 63 69 74 20 63 6f 75 6e 74 | t.every.round,.the.deficit.count |
| d8e40 | 65 72 20 61 64 64 73 20 74 68 65 20 71 75 61 6e 74 75 6d 20 73 6f 20 74 68 61 74 20 65 76 65 6e | er.adds.the.quantum.so.that.even |
| d8e60 | 20 6c 61 72 67 65 20 70 61 63 6b 65 74 73 20 77 69 6c 6c 20 68 61 76 65 20 74 68 65 69 72 20 6f | .large.packets.will.have.their.o |
| d8e80 | 70 70 6f 72 74 75 6e 69 74 79 20 74 6f 20 62 65 20 64 65 71 75 65 75 65 64 2e 00 41 74 20 74 68 | pportunity.to.be.dequeued..At.th |
| d8ea0 | 65 20 6d 6f 6d 65 6e 74 20 69 74 20 6e 6f 74 20 70 6f 73 73 69 62 6c 65 20 74 6f 20 6c 6f 6f 6b | e.moment.it.not.possible.to.look |
| d8ec0 | 20 61 74 20 74 68 65 20 77 68 6f 6c 65 20 66 69 72 65 77 61 6c 6c 20 6c 6f 67 20 77 69 74 68 20 | .at.the.whole.firewall.log.with. |
| d8ee0 | 56 79 4f 53 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 63 6f 6d 6d 61 6e 64 73 2e 20 41 6c 6c 20 6c | VyOS.operational.commands..All.l |
| d8f00 | 6f 67 73 20 77 69 6c 6c 20 73 61 76 65 20 74 6f 20 60 60 2f 76 61 72 2f 6c 6f 67 73 2f 6d 65 73 | ogs.will.save.to.``/var/logs/mes |
| d8f20 | 73 61 67 65 73 60 60 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 3a 20 60 60 67 72 65 70 20 27 31 30 | sages``..For.example:.``grep.'10 |
| d8f40 | 2e 31 30 2e 30 2e 31 30 27 20 2f 76 61 72 2f 6c 6f 67 2f 6d 65 73 73 61 67 65 73 60 60 00 41 74 | .10.0.10'./var/log/messages``.At |
| d8f60 | 20 74 68 65 20 74 69 6d 65 20 6f 66 20 74 68 69 73 20 77 72 69 74 69 6e 67 20 74 68 65 20 66 6f | .the.time.of.this.writing.the.fo |
| d8f80 | 6c 6c 6f 77 69 6e 67 20 64 69 73 70 6c 61 79 73 20 61 72 65 20 73 75 70 70 6f 72 74 65 64 3a 00 | llowing.displays.are.supported:. |
| d8fa0 | 41 74 20 76 65 72 79 20 6c 6f 77 20 72 61 74 65 73 20 28 62 65 6c 6f 77 20 33 4d 62 69 74 29 2c | At.very.low.rates.(below.3Mbit), |
| d8fc0 | 20 62 65 73 69 64 65 73 20 74 75 6e 69 6e 67 20 60 71 75 61 6e 74 75 6d 60 20 28 33 30 30 20 6b | .besides.tuning.`quantum`.(300.k |
| d8fe0 | 65 65 70 73 20 62 65 69 6e 67 20 6f 6b 29 20 79 6f 75 20 6d 61 79 20 61 6c 73 6f 20 77 61 6e 74 | eeps.being.ok).you.may.also.want |
| d9000 | 20 74 6f 20 69 6e 63 72 65 61 73 65 20 60 74 61 72 67 65 74 60 20 74 6f 20 73 6f 6d 65 74 68 69 | .to.increase.`target`.to.somethi |
| d9020 | 6e 67 20 6c 69 6b 65 20 31 35 6d 73 20 61 6e 64 20 69 6e 63 72 65 61 73 65 20 60 69 6e 74 65 72 | ng.like.15ms.and.increase.`inter |
| d9040 | 76 61 6c 60 20 74 6f 20 73 6f 6d 65 74 68 69 6e 67 20 61 72 6f 75 6e 64 20 31 35 30 20 6d 73 2e | val`.to.something.around.150.ms. |
| d9060 | 00 41 74 74 61 63 68 65 73 20 75 73 65 72 2d 64 65 66 69 6e 65 64 20 6e 65 74 77 6f 72 6b 20 74 | .Attaches.user-defined.network.t |
| d9080 | 6f 20 61 20 63 6f 6e 74 61 69 6e 65 72 2e 20 4f 6e 6c 79 20 6f 6e 65 20 6e 65 74 77 6f 72 6b 20 | o.a.container..Only.one.network. |
| d90a0 | 6d 75 73 74 20 62 65 20 73 70 65 63 69 66 69 65 64 20 61 6e 64 20 6d 75 73 74 20 61 6c 72 65 61 | must.be.specified.and.must.alrea |
| d90c0 | 64 79 20 65 78 69 73 74 2e 00 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 00 41 75 74 68 65 6e 74 | dy.exist..Authentication.Authent |
| d90e0 | 69 63 61 74 69 6f 6e 20 28 45 41 50 6f 4c 29 00 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 41 | ication.(EAPoL).Authentication.A |
| d9100 | 64 76 61 6e 63 65 64 20 4f 70 74 69 6f 6e 73 00 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 61 | dvanced.Options.Authentication.a |
| d9120 | 70 70 6c 69 63 61 74 69 6f 6e 20 63 6c 69 65 6e 74 2d 69 64 2e 00 41 75 74 68 65 6e 74 69 63 61 | pplication.client-id..Authentica |
| d9140 | 74 69 6f 6e 20 61 70 70 6c 69 63 61 74 69 6f 6e 20 63 6c 69 65 6e 74 2d 73 65 63 72 65 74 2e 00 | tion.application.client-secret.. |
| d9160 | 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 61 70 70 6c 69 63 61 74 69 6f 6e 20 74 65 6e 61 6e | Authentication.application.tenan |
| d9180 | 74 2d 69 64 00 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 69 73 20 64 6f 6e 65 20 62 79 20 75 | t-id.Authentication.is.done.by.u |
| d91a0 | 73 69 6e 67 20 74 68 65 20 60 60 6f 70 65 6e 76 70 6e 2d 61 75 74 68 2d 6c 64 61 70 2e 73 6f 60 | sing.the.``openvpn-auth-ldap.so` |
| d91c0 | 60 20 70 6c 75 67 69 6e 20 77 68 69 63 68 20 69 73 20 73 68 69 70 70 65 64 20 77 69 74 68 20 65 | `.plugin.which.is.shipped.with.e |
| d91e0 | 76 65 72 79 20 56 79 4f 53 20 69 6e 73 74 61 6c 6c 61 74 69 6f 6e 2e 20 41 20 64 65 64 69 63 61 | very.VyOS.installation..A.dedica |
| d9200 | 74 65 64 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 69 6c 65 20 69 73 20 72 65 71 75 69 72 | ted.configuration.file.is.requir |
| d9220 | 65 64 2e 20 49 74 20 69 73 20 62 65 73 74 20 70 72 61 63 74 69 73 65 20 74 6f 20 73 74 6f 72 65 | ed..It.is.best.practise.to.store |
| d9240 | 20 69 74 20 69 6e 20 60 60 2f 63 6f 6e 66 69 67 60 60 20 74 6f 20 73 75 72 76 69 76 65 20 69 6d | .it.in.``/config``.to.survive.im |
| d9260 | 61 67 65 20 75 70 64 61 74 65 73 00 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6f 72 67 61 6e | age.updates.Authentication.organ |
| d9280 | 69 7a 61 74 69 6f 6e 20 6e 61 6d 65 00 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 74 6f 6b 65 | ization.name.Authentication.toke |
| d92a0 | 6e 00 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 e2 80 93 20 74 6f 20 76 65 72 69 66 79 20 74 | n.Authentication.....to.verify.t |
| d92c0 | 68 61 74 20 74 68 65 20 6d 65 73 73 61 67 65 20 69 73 20 66 72 6f 6d 20 61 20 76 61 6c 69 64 20 | hat.the.message.is.from.a.valid. |
| d92e0 | 73 6f 75 72 63 65 2e 00 41 75 74 68 6f 72 69 74 61 74 69 76 65 20 7a 6f 6e 65 73 00 41 75 74 68 | source..Authoritative.zones.Auth |
| d9300 | 6f 72 69 7a 61 74 69 6f 6e 20 74 6f 6b 65 6e 00 41 75 74 6f 6d 61 74 69 63 20 56 4c 41 4e 20 43 | orization.token.Automatic.VLAN.C |
| d9320 | 72 65 61 74 69 6f 6e 00 41 75 74 6f 6d 61 74 69 63 20 56 4c 41 4e 20 63 72 65 61 74 69 6f 6e 00 | reation.Automatic.VLAN.creation. |
| d9340 | 41 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 63 72 65 61 74 65 20 42 46 44 20 73 65 73 73 69 6f 6e | Automatically.create.BFD.session |
| d9360 | 20 66 6f 72 20 65 61 63 68 20 52 49 50 20 70 65 65 72 20 64 69 73 63 6f 76 65 72 65 64 20 69 6e | .for.each.RIP.peer.discovered.in |
| d9380 | 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 2e 20 57 68 65 6e 20 74 68 65 20 42 46 44 20 73 65 | .this.interface..When.the.BFD.se |
| d93a0 | 73 73 69 6f 6e 20 6d 6f 6e 69 74 6f 72 20 73 69 67 6e 61 6c 69 7a 65 20 74 68 61 74 20 74 68 65 | ssion.monitor.signalize.that.the |
| d93c0 | 20 6c 69 6e 6b 20 69 73 20 64 6f 77 6e 20 74 68 65 20 52 49 50 20 70 65 65 72 20 69 73 20 72 65 | .link.is.down.the.RIP.peer.is.re |
| d93e0 | 6d 6f 76 65 64 20 61 6e 64 20 61 6c 6c 20 74 68 65 20 6c 65 61 72 6e 65 64 20 72 6f 75 74 65 73 | moved.and.all.the.learned.routes |
| d9400 | 20 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 74 68 61 74 20 70 65 65 72 20 61 72 65 20 72 | .associated.with.that.peer.are.r |
| d9420 | 65 6d 6f 76 65 64 2e 00 41 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 72 65 62 6f 6f 74 20 73 79 73 | emoved..Automatically.reboot.sys |
| d9440 | 74 65 6d 20 6f 6e 20 6b 65 72 6e 65 6c 20 70 61 6e 69 63 20 61 66 74 65 72 20 36 30 20 73 65 63 | tem.on.kernel.panic.after.60.sec |
| d9460 | 6f 6e 64 73 2e 00 41 75 74 6f 6e 6f 6d 6f 75 73 20 53 79 73 74 65 6d 73 00 41 76 61 69 6c 61 62 | onds..Autonomous.Systems.Availab |
| d9480 | 6c 65 20 68 65 61 6c 74 68 20 63 68 65 63 6b 20 70 72 6f 74 6f 63 6f 6c 73 3a 00 41 76 6f 69 64 | le.health.check.protocols:.Avoid |
| d94a0 | 69 6e 67 20 22 6c 65 61 6b 79 22 20 4e 41 54 00 41 7a 75 72 65 2d 64 61 74 61 2d 65 78 70 6c 6f | ing."leaky".NAT.Azure-data-explo |
| d94c0 | 72 65 72 00 42 46 44 00 42 46 44 20 53 74 61 74 69 63 20 52 6f 75 74 65 20 4d 6f 6e 69 74 6f 72 | rer.BFD.BFD.Static.Route.Monitor |
| d94e0 | 69 6e 67 00 42 46 44 20 73 65 6e 64 73 20 6c 6f 74 73 20 6f 66 20 73 6d 61 6c 6c 20 55 44 50 20 | ing.BFD.sends.lots.of.small.UDP. |
| d9500 | 70 61 63 6b 65 74 73 20 76 65 72 79 20 71 75 69 63 6b 6c 79 20 74 6f 20 65 6e 73 75 72 65 73 20 | packets.very.quickly.to.ensures. |
| d9520 | 74 68 61 74 20 74 68 65 20 70 65 65 72 20 69 73 20 73 74 69 6c 6c 20 61 6c 69 76 65 2e 00 42 47 | that.the.peer.is.still.alive..BG |
| d9540 | 50 00 42 47 50 20 2d 20 41 53 20 50 61 74 68 20 50 6f 6c 69 63 79 00 42 47 50 20 2d 20 43 6f 6d | P.BGP.-.AS.Path.Policy.BGP.-.Com |
| d9560 | 6d 75 6e 69 74 79 20 4c 69 73 74 00 42 47 50 20 2d 20 45 78 74 65 6e 64 65 64 20 43 6f 6d 6d 75 | munity.List.BGP.-.Extended.Commu |
| d9580 | 6e 69 74 79 20 4c 69 73 74 00 42 47 50 20 2d 20 4c 61 72 67 65 20 43 6f 6d 6d 75 6e 69 74 79 20 | nity.List.BGP.-.Large.Community. |
| d95a0 | 4c 69 73 74 00 42 47 50 20 45 78 61 6d 70 6c 65 00 42 47 50 20 52 6f 75 74 65 72 20 43 6f 6e 66 | List.BGP.Example.BGP.Router.Conf |
| d95c0 | 69 67 75 72 61 74 69 6f 6e 00 42 47 50 20 53 63 61 6c 69 6e 67 20 43 6f 6e 66 69 67 75 72 61 74 | iguration.BGP.Scaling.Configurat |
| d95e0 | 69 6f 6e 00 42 47 50 20 61 67 67 72 65 67 61 74 6f 72 20 61 74 74 72 69 62 75 74 65 3a 20 41 53 | ion.BGP.aggregator.attribute:.AS |
| d9600 | 20 6e 75 6d 62 65 72 20 6f 72 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 61 6e 20 61 67 67 72 | .number.or.IP.address.of.an.aggr |
| d9620 | 65 67 61 74 69 6f 6e 2e 00 42 47 50 20 61 73 2d 70 61 74 68 20 6c 69 73 74 20 74 6f 20 6d 61 74 | egation..BGP.as-path.list.to.mat |
| d9640 | 63 68 2e 00 42 47 50 20 61 74 6f 6d 69 63 20 61 67 67 72 65 67 61 74 65 20 61 74 74 72 69 62 75 | ch..BGP.atomic.aggregate.attribu |
| d9660 | 74 65 2e 00 42 47 50 20 63 6f 6d 6d 75 6e 69 74 79 2d 6c 69 73 74 20 74 6f 20 6d 61 74 63 68 2e | te..BGP.community-list.to.match. |
| d9680 | 00 42 47 50 20 65 78 74 65 6e 64 65 64 20 63 6f 6d 6d 75 6e 69 74 79 20 74 6f 20 6d 61 74 63 68 | .BGP.extended.community.to.match |
| d96a0 | 2e 00 42 47 50 20 72 6f 6c 65 73 20 61 72 65 20 64 65 66 69 6e 65 64 20 69 6e 20 52 46 43 20 3a | ..BGP.roles.are.defined.in.RFC.: |
| d96c0 | 72 66 63 3a 60 39 32 33 34 60 20 61 6e 64 20 70 72 6f 76 69 64 65 20 61 6e 20 65 61 73 79 20 77 | rfc:`9234`.and.provide.an.easy.w |
| d96e0 | 61 79 20 74 6f 20 61 64 64 20 72 6f 75 74 65 20 6c 65 61 6b 20 70 72 65 76 65 6e 74 69 6f 6e 2c | ay.to.add.route.leak.prevention, |
| d9700 | 20 64 65 74 65 63 74 69 6f 6e 20 61 6e 64 20 6d 69 74 69 67 61 74 69 6f 6e 2e 20 54 68 65 20 6c | .detection.and.mitigation..The.l |
| d9720 | 6f 63 61 6c 20 52 6f 6c 65 20 76 61 6c 75 65 20 69 73 20 6e 65 67 6f 74 69 61 74 65 64 20 77 69 | ocal.Role.value.is.negotiated.wi |
| d9740 | 74 68 20 74 68 65 20 6e 65 77 20 42 47 50 20 52 6f 6c 65 20 63 61 70 61 62 69 6c 69 74 79 20 77 | th.the.new.BGP.Role.capability.w |
| d9760 | 68 69 63 68 20 68 61 73 20 61 20 62 75 69 6c 74 2d 69 6e 20 63 68 65 63 6b 20 6f 66 20 74 68 65 | hich.has.a.built-in.check.of.the |
| d9780 | 20 63 6f 72 72 65 73 70 6f 6e 64 69 6e 67 20 76 61 6c 75 65 2e 20 49 6e 20 63 61 73 65 20 6f 66 | .corresponding.value..In.case.of |
| d97a0 | 20 61 20 6d 69 73 6d 61 74 63 68 20 74 68 65 20 6e 65 77 20 4f 50 45 4e 20 52 6f 6c 65 73 20 4d | .a.mismatch.the.new.OPEN.Roles.M |
| d97c0 | 69 73 6d 61 74 63 68 20 4e 6f 74 69 66 69 63 61 74 69 6f 6e 20 3c 32 2c 20 31 31 3e 20 77 6f 75 | ismatch.Notification.<2,.11>.wou |
| d97e0 | 6c 64 20 62 65 20 73 65 6e 74 2e 20 54 68 65 20 63 6f 72 72 65 63 74 20 52 6f 6c 65 20 70 61 69 | ld.be.sent..The.correct.Role.pai |
| d9800 | 72 73 20 61 72 65 3a 00 42 47 50 20 72 6f 75 74 65 72 73 20 63 6f 6e 6e 65 63 74 65 64 20 69 6e | rs.are:.BGP.routers.connected.in |
| d9820 | 73 69 64 65 20 74 68 65 20 73 61 6d 65 20 41 53 20 74 68 72 6f 75 67 68 20 42 47 50 20 62 65 6c | side.the.same.AS.through.BGP.bel |
| d9840 | 6f 6e 67 20 74 6f 20 61 6e 20 69 6e 74 65 72 6e 61 6c 20 42 47 50 20 73 65 73 73 69 6f 6e 2c 20 | ong.to.an.internal.BGP.session,. |
| d9860 | 6f 72 20 49 42 47 50 2e 20 49 6e 20 6f 72 64 65 72 20 74 6f 20 70 72 65 76 65 6e 74 20 72 6f 75 | or.IBGP..In.order.to.prevent.rou |
| d9880 | 74 69 6e 67 20 74 61 62 6c 65 20 6c 6f 6f 70 73 2c 20 49 42 47 50 20 73 70 65 61 6b 65 72 20 64 | ting.table.loops,.IBGP.speaker.d |
| d98a0 | 6f 65 73 20 6e 6f 74 20 61 64 76 65 72 74 69 73 65 20 49 42 47 50 2d 6c 65 61 72 6e 65 64 20 72 | oes.not.advertise.IBGP-learned.r |
| d98c0 | 6f 75 74 65 73 20 74 6f 20 6f 74 68 65 72 20 49 42 47 50 20 73 70 65 61 6b 65 72 20 28 53 70 6c | outes.to.other.IBGP.speaker.(Spl |
| d98e0 | 69 74 20 48 6f 72 69 7a 6f 6e 20 6d 65 63 68 61 6e 69 73 6d 29 2e 20 41 73 20 73 75 63 68 2c 20 | it.Horizon.mechanism)..As.such,. |
| d9900 | 49 42 47 50 20 72 65 71 75 69 72 65 73 20 61 20 66 75 6c 6c 20 6d 65 73 68 20 6f 66 20 61 6c 6c | IBGP.requires.a.full.mesh.of.all |
| d9920 | 20 70 65 65 72 73 2e 20 46 6f 72 20 6c 61 72 67 65 20 6e 65 74 77 6f 72 6b 73 2c 20 74 68 69 73 | .peers..For.large.networks,.this |
| d9940 | 20 71 75 69 63 6b 6c 79 20 62 65 63 6f 6d 65 73 20 75 6e 73 63 61 6c 61 62 6c 65 2e 00 42 47 50 | .quickly.becomes.unscalable..BGP |
| d9960 | 20 72 6f 75 74 65 73 20 6d 61 79 20 62 65 20 6c 65 61 6b 65 64 20 28 69 2e 65 2e 20 63 6f 70 69 | .routes.may.be.leaked.(i.e..copi |
| d9980 | 65 64 29 20 62 65 74 77 65 65 6e 20 61 20 75 6e 69 63 61 73 74 20 56 52 46 20 52 49 42 20 61 6e | ed).between.a.unicast.VRF.RIB.an |
| d99a0 | 64 20 74 68 65 20 56 50 4e 20 53 41 46 49 20 52 49 42 20 6f 66 20 74 68 65 20 64 65 66 61 75 6c | d.the.VPN.SAFI.RIB.of.the.defaul |
| d99c0 | 74 20 56 52 46 20 66 6f 72 20 75 73 65 20 69 6e 20 4d 50 4c 53 2d 62 61 73 65 64 20 4c 33 56 50 | t.VRF.for.use.in.MPLS-based.L3VP |
| d99e0 | 4e 73 2e 20 55 6e 69 63 61 73 74 20 72 6f 75 74 65 73 20 6d 61 79 20 61 6c 73 6f 20 62 65 20 6c | Ns..Unicast.routes.may.also.be.l |
| d9a00 | 65 61 6b 65 64 20 62 65 74 77 65 65 6e 20 61 6e 79 20 56 52 46 73 20 28 69 6e 63 6c 75 64 69 6e | eaked.between.any.VRFs.(includin |
| d9a20 | 67 20 74 68 65 20 75 6e 69 63 61 73 74 20 52 49 42 20 6f 66 20 74 68 65 20 64 65 66 61 75 6c 74 | g.the.unicast.RIB.of.the.default |
| d9a40 | 20 42 47 50 20 69 6e 73 74 61 6e 63 65 29 2e 20 41 20 73 68 6f 72 74 63 75 74 20 73 79 6e 74 61 | .BGP.instance)..A.shortcut.synta |
| d9a60 | 78 20 69 73 20 61 6c 73 6f 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 73 70 65 63 69 66 79 69 | x.is.also.available.for.specifyi |
| d9a80 | 6e 67 20 6c 65 61 6b 69 6e 67 20 66 72 6f 6d 20 6f 6e 65 20 56 52 46 20 74 6f 20 61 6e 6f 74 68 | ng.leaking.from.one.VRF.to.anoth |
| d9aa0 | 65 72 20 56 52 46 20 75 73 69 6e 67 20 74 68 65 20 64 65 66 61 75 6c 74 20 69 6e 73 74 61 6e 63 | er.VRF.using.the.default.instanc |
| d9ac0 | 65 e2 80 99 73 20 56 50 4e 20 52 49 42 20 61 73 20 74 68 65 20 69 6e 74 65 6d 65 64 69 61 72 79 | e...s.VPN.RIB.as.the.intemediary |
| d9ae0 | 20 2e 20 41 20 63 6f 6d 6d 6f 6e 20 61 70 70 6c 69 63 61 74 69 6f 6e 20 6f 66 20 74 68 65 20 56 | ...A.common.application.of.the.V |
| d9b00 | 52 46 2d 56 52 46 20 66 65 61 74 75 72 65 20 69 73 20 74 6f 20 63 6f 6e 6e 65 63 74 20 61 20 63 | RF-VRF.feature.is.to.connect.a.c |
| d9b20 | 75 73 74 6f 6d 65 72 e2 80 99 73 20 70 72 69 76 61 74 65 20 72 6f 75 74 69 6e 67 20 64 6f 6d 61 | ustomer...s.private.routing.doma |
| d9b40 | 69 6e 20 74 6f 20 61 20 70 72 6f 76 69 64 65 72 e2 80 99 73 20 56 50 4e 20 73 65 72 76 69 63 65 | in.to.a.provider...s.VPN.service |
| d9b60 | 2e 20 4c 65 61 6b 69 6e 67 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 20 66 72 6f 6d 20 74 68 65 | ..Leaking.is.configured.from.the |
| d9b80 | 20 70 6f 69 6e 74 20 6f 66 20 76 69 65 77 20 6f 66 20 61 6e 20 69 6e 64 69 76 69 64 75 61 6c 20 | .point.of.view.of.an.individual. |
| d9ba0 | 56 52 46 3a 20 69 6d 70 6f 72 74 20 72 65 66 65 72 73 20 74 6f 20 72 6f 75 74 65 73 20 6c 65 61 | VRF:.import.refers.to.routes.lea |
| d9bc0 | 6b 65 64 20 66 72 6f 6d 20 56 50 4e 20 74 6f 20 61 20 75 6e 69 63 61 73 74 20 56 52 46 2c 20 77 | ked.from.VPN.to.a.unicast.VRF,.w |
| d9be0 | 68 65 72 65 61 73 20 65 78 70 6f 72 74 20 72 65 66 65 72 73 20 74 6f 20 72 6f 75 74 65 73 20 6c | hereas.export.refers.to.routes.l |
| d9c00 | 65 61 6b 65 64 20 66 72 6f 6d 20 61 20 75 6e 69 63 61 73 74 20 56 52 46 20 74 6f 20 56 50 4e 2e | eaked.from.a.unicast.VRF.to.VPN. |
| d9c20 | 00 42 53 53 20 63 6f 6c 6f 72 69 6e 67 20 68 65 6c 70 73 20 74 6f 20 70 72 65 76 65 6e 74 20 63 | .BSS.coloring.helps.to.prevent.c |
| d9c40 | 68 61 6e 6e 65 6c 20 6a 61 6d 6d 69 6e 67 20 77 68 65 6e 20 6d 75 6c 74 69 70 6c 65 20 41 50 73 | hannel.jamming.when.multiple.APs |
| d9c60 | 20 75 73 65 20 74 68 65 20 73 61 6d 65 20 63 68 61 6e 6e 65 6c 73 2e 00 42 55 4d 20 74 72 61 66 | .use.the.same.channels..BUM.traf |
| d9c80 | 66 69 63 20 69 73 20 72 78 65 64 20 76 69 61 20 74 68 65 20 6f 76 65 72 6c 61 79 20 62 79 20 61 | fic.is.rxed.via.the.overlay.by.a |
| d9ca0 | 6c 6c 20 50 45 73 20 61 74 74 61 63 68 65 64 20 74 6f 20 61 20 73 65 72 76 65 72 20 62 75 74 20 | ll.PEs.attached.to.a.server.but. |
| d9cc0 | 6f 6e 6c 79 20 74 68 65 20 44 46 20 63 61 6e 20 66 6f 72 77 61 72 64 20 74 68 65 20 64 65 2d 63 | only.the.DF.can.forward.the.de-c |
| d9ce0 | 61 70 73 75 6c 61 74 65 64 20 74 72 61 66 66 69 63 20 74 6f 20 74 68 65 20 61 63 63 65 73 73 20 | apsulated.traffic.to.the.access. |
| d9d00 | 70 6f 72 74 2e 20 54 6f 20 61 63 63 6f 6d 6d 6f 64 61 74 65 20 74 68 61 74 20 6e 6f 6e 2d 44 46 | port..To.accommodate.that.non-DF |
| d9d20 | 20 66 69 6c 74 65 72 73 20 61 72 65 20 69 6e 73 74 61 6c 6c 65 64 20 69 6e 20 74 68 65 20 64 61 | .filters.are.installed.in.the.da |
| d9d40 | 74 61 70 6c 61 6e 65 20 74 6f 20 64 72 6f 70 20 74 68 65 20 74 72 61 66 66 69 63 2e 00 42 61 62 | taplane.to.drop.the.traffic..Bab |
| d9d60 | 65 6c 00 42 61 62 65 6c 20 61 20 64 75 61 6c 20 73 74 61 63 6b 20 70 72 6f 74 6f 63 6f 6c 2e 20 | el.Babel.a.dual.stack.protocol.. |
| d9d80 | 41 20 73 69 6e 67 6c 65 20 42 61 62 65 6c 20 69 6e 73 74 61 6e 63 65 20 69 73 20 61 62 6c 65 20 | A.single.Babel.instance.is.able. |
| d9da0 | 74 6f 20 70 65 72 66 6f 72 6d 20 72 6f 75 74 69 6e 67 20 66 6f 72 20 62 6f 74 68 20 49 50 76 34 | to.perform.routing.for.both.IPv4 |
| d9dc0 | 20 61 6e 64 20 49 50 76 36 2e 00 42 61 62 65 6c 20 69 73 20 61 20 6d 6f 64 65 72 6e 20 72 6f 75 | .and.IPv6..Babel.is.a.modern.rou |
| d9de0 | 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 20 64 65 73 69 67 6e 65 64 20 74 6f 20 62 65 20 72 6f 62 | ting.protocol.designed.to.be.rob |
| d9e00 | 75 73 74 20 61 6e 64 20 65 66 66 69 63 69 65 6e 74 20 62 6f 74 68 20 69 6e 20 6f 72 64 69 6e 61 | ust.and.efficient.both.in.ordina |
| d9e20 | 72 79 20 77 69 72 65 64 20 6e 65 74 77 6f 72 6b 73 20 61 6e 64 20 69 6e 20 77 69 72 65 6c 65 73 | ry.wired.networks.and.in.wireles |
| d9e40 | 73 20 6d 65 73 68 20 6e 65 74 77 6f 72 6b 73 2e 20 42 79 20 64 65 66 61 75 6c 74 2c 20 69 74 20 | s.mesh.networks..By.default,.it. |
| d9e60 | 75 73 65 73 20 68 6f 70 2d 63 6f 75 6e 74 20 6f 6e 20 77 69 72 65 64 20 6e 65 74 77 6f 72 6b 73 | uses.hop-count.on.wired.networks |
| d9e80 | 20 61 6e 64 20 61 20 76 61 72 69 61 6e 74 20 6f 66 20 45 54 58 20 6f 6e 20 77 69 72 65 6c 65 73 | .and.a.variant.of.ETX.on.wireles |
| d9ea0 | 73 20 6c 69 6e 6b 73 2c 20 49 74 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 74 6f | s.links,.It.can.be.configured.to |
| d9ec0 | 20 74 61 6b 65 20 72 61 64 69 6f 20 64 69 76 65 72 73 69 74 79 20 69 6e 74 6f 20 61 63 63 6f 75 | .take.radio.diversity.into.accou |
| d9ee0 | 6e 74 20 61 6e 64 20 74 6f 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 63 6f 6d 70 75 74 65 20 | nt.and.to.automatically.compute. |
| d9f00 | 61 20 6c 69 6e 6b 27 73 20 6c 61 74 65 6e 63 79 20 61 6e 64 20 69 6e 63 6c 75 64 65 20 69 74 20 | a.link's.latency.and.include.it. |
| d9f20 | 69 6e 20 74 68 65 20 6d 65 74 72 69 63 2e 20 49 74 20 69 73 20 64 65 66 69 6e 65 64 20 69 6e 20 | in.the.metric..It.is.defined.in. |
| d9f40 | 3a 72 66 63 3a 60 38 39 36 36 60 2e 00 42 61 63 6b 65 6e 64 00 42 61 63 6b 65 6e 64 20 73 65 72 | :rfc:`8966`..Backend.Backend.ser |
| d9f60 | 76 69 63 65 20 63 65 72 74 69 66 69 63 61 74 65 73 20 61 72 65 20 63 68 65 63 6b 65 64 20 61 67 | vice.certificates.are.checked.ag |
| d9f80 | 61 69 6e 73 74 20 74 68 65 20 63 65 72 74 69 66 69 63 61 74 65 20 61 75 74 68 6f 72 69 74 79 20 | ainst.the.certificate.authority. |
| d9fa0 | 73 70 65 63 69 66 69 65 64 20 69 6e 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2c 20 | specified.in.the.configuration,. |
| d9fc0 | 77 68 69 63 68 20 63 6f 75 6c 64 20 62 65 20 61 6e 20 69 6e 74 65 72 6e 61 6c 20 43 41 2e 00 42 | which.could.be.an.internal.CA..B |
| d9fe0 | 61 6c 61 6e 63 65 20 61 6c 67 6f 72 69 74 68 6d 73 3a 00 42 61 6c 61 6e 63 69 6e 67 20 52 75 6c | alance.algorithms:.Balancing.Rul |
| da000 | 65 73 00 42 61 6c 61 6e 63 69 6e 67 20 62 61 73 65 64 20 6f 6e 20 64 6f 6d 61 69 6e 20 6e 61 6d | es.Balancing.based.on.domain.nam |
| da020 | 65 00 42 61 6c 61 6e 63 69 6e 67 20 77 69 74 68 20 48 54 54 50 20 68 65 61 6c 74 68 20 63 68 65 | e.Balancing.with.HTTP.health.che |
| da040 | 63 6b 73 00 42 61 6e 64 77 69 64 74 68 20 53 68 61 70 69 6e 67 00 42 61 6e 64 77 69 64 74 68 20 | cks.Bandwidth.Shaping.Bandwidth. |
| da060 | 53 68 61 70 69 6e 67 20 66 6f 72 20 6c 6f 63 61 6c 20 75 73 65 72 73 00 42 61 6e 64 77 69 64 74 | Shaping.for.local.users.Bandwidt |
| da080 | 68 20 72 61 74 65 20 6c 69 6d 69 74 73 20 63 61 6e 20 62 65 20 73 65 74 20 66 6f 72 20 6c 6f 63 | h.rate.limits.can.be.set.for.loc |
| da0a0 | 61 6c 20 75 73 65 72 73 20 6f 72 20 52 41 44 49 55 53 20 62 61 73 65 64 20 61 74 74 72 69 62 75 | al.users.or.RADIUS.based.attribu |
| da0c0 | 74 65 73 2e 00 42 61 6e 64 77 69 64 74 68 20 72 61 74 65 20 6c 69 6d 69 74 73 20 63 61 6e 20 62 | tes..Bandwidth.rate.limits.can.b |
| da0e0 | 65 20 73 65 74 20 66 6f 72 20 6c 6f 63 61 6c 20 75 73 65 72 73 20 6f 72 20 76 69 61 20 52 41 44 | e.set.for.local.users.or.via.RAD |
| da100 | 49 55 53 20 62 61 73 65 64 20 61 74 74 72 69 62 75 74 65 73 2e 00 42 61 6e 64 77 69 64 74 68 20 | IUS.based.attributes..Bandwidth. |
| da120 | 72 61 74 65 20 6c 69 6d 69 74 73 20 63 61 6e 20 62 65 20 73 65 74 20 66 6f 72 20 6c 6f 63 61 6c | rate.limits.can.be.set.for.local |
| da140 | 20 75 73 65 72 73 20 77 69 74 68 69 6e 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 | .users.within.the.configuration. |
| da160 | 6f 72 20 76 69 61 20 52 41 44 49 55 53 20 62 61 73 65 64 20 61 74 74 72 69 62 75 74 65 73 2e 00 | or.via.RADIUS.based.attributes.. |
| da180 | 42 61 73 65 20 63 68 61 69 6e 20 66 6f 72 20 74 72 61 66 66 69 63 20 74 6f 77 61 72 64 73 20 74 | Base.chain.for.traffic.towards.t |
| da1a0 | 68 65 20 72 6f 75 74 65 72 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 | he.router.is.``set.firewall.ipv4 |
| da1c0 | 20 69 6e 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 00 42 61 73 65 20 63 68 61 69 6e 20 66 | .input.filter....``.Base.chain.f |
| da1e0 | 6f 72 20 74 72 61 66 66 69 63 20 74 6f 77 61 72 64 73 20 74 68 65 20 72 6f 75 74 65 72 20 69 73 | or.traffic.towards.the.router.is |
| da200 | 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 69 6e 70 75 74 20 66 69 6c 74 65 | .``set.firewall.ipv6.input.filte |
| da220 | 72 20 2e 2e 2e 60 60 00 42 61 73 65 20 63 68 61 69 6e 20 69 73 20 66 6f 72 20 74 72 61 66 66 69 | r....``.Base.chain.is.for.traffi |
| da240 | 63 20 74 6f 77 61 72 64 20 74 68 65 20 72 6f 75 74 65 72 20 69 73 20 60 60 73 65 74 20 66 69 72 | c.toward.the.router.is.``set.fir |
| da260 | 65 77 61 6c 6c 20 69 70 76 34 20 69 6e 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 00 42 61 | ewall.ipv4.input.filter....``.Ba |
| da280 | 73 65 20 63 68 61 69 6e 20 69 73 20 66 6f 72 20 74 72 61 66 66 69 63 20 74 6f 77 61 72 64 20 74 | se.chain.is.for.traffic.toward.t |
| da2a0 | 68 65 20 72 6f 75 74 65 72 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 | he.router.is.``set.firewall.ipv6 |
| da2c0 | 20 69 6e 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 00 42 61 73 65 6c 69 6e 65 20 44 4d 56 | .input.filter....``.Baseline.DMV |
| da2e0 | 50 4e 20 74 6f 70 6f 6c 6f 67 79 00 42 61 73 69 63 20 43 6f 6e 63 65 70 74 73 00 42 61 73 69 63 | PN.topology.Basic.Concepts.Basic |
| da300 | 20 63 6f 6d 6d 61 6e 64 73 00 42 61 73 69 63 20 66 69 6c 74 65 72 69 6e 67 20 63 61 6e 20 62 65 | .commands.Basic.filtering.can.be |
| da320 | 20 64 6f 6e 65 20 75 73 69 6e 67 20 61 63 63 65 73 73 2d 6c 69 73 74 20 61 6e 64 20 61 63 63 65 | .done.using.access-list.and.acce |
| da340 | 73 73 2d 6c 69 73 74 36 2e 00 42 61 73 69 63 20 66 69 6c 74 65 72 69 6e 67 20 63 6f 75 6c 64 20 | ss-list6..Basic.filtering.could. |
| da360 | 61 6c 73 6f 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 49 50 76 36 20 74 72 61 66 66 69 63 2e | also.be.applied.to.IPv6.traffic. |
| da380 | 00 42 61 73 69 63 20 73 65 74 75 70 00 42 65 20 73 75 72 65 20 74 6f 20 73 65 74 20 61 20 73 61 | .Basic.setup.Be.sure.to.set.a.sa |
| da3a0 | 6e 65 20 64 65 66 61 75 6c 74 20 63 6f 6e 66 69 67 20 69 6e 20 74 68 65 20 64 65 66 61 75 6c 74 | ne.default.config.in.the.default |
| da3c0 | 20 63 6f 6e 66 69 67 20 66 69 6c 65 2c 20 74 68 69 73 20 77 69 6c 6c 20 62 65 20 6c 6f 61 64 65 | .config.file,.this.will.be.loade |
| da3e0 | 64 20 69 6e 20 74 68 65 20 63 61 73 65 20 74 68 61 74 20 61 20 75 73 65 72 20 69 73 20 61 75 74 | d.in.the.case.that.a.user.is.aut |
| da400 | 68 65 6e 74 69 63 61 74 65 64 20 61 6e 64 20 6e 6f 20 66 69 6c 65 20 69 73 20 66 6f 75 6e 64 20 | henticated.and.no.file.is.found. |
| da420 | 69 6e 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 64 69 72 65 63 74 6f 72 79 20 6d 61 74 63 | in.the.configured.directory.matc |
| da440 | 68 69 6e 67 20 74 68 65 20 75 73 65 72 73 20 75 73 65 72 6e 61 6d 65 2f 67 72 6f 75 70 2e 00 42 | hing.the.users.username/group..B |
| da460 | 65 61 63 6f 6e 20 50 72 6f 74 65 63 74 69 6f 6e 3a 20 6d 61 6e 61 67 65 6d 65 6e 74 20 66 72 61 | eacon.Protection:.management.fra |
| da480 | 6d 65 20 70 72 6f 74 65 63 74 69 6f 6e 20 66 6f 72 20 42 65 61 63 6f 6e 20 66 72 61 6d 65 73 2e | me.protection.for.Beacon.frames. |
| da4a0 | 00 42 65 61 6d 66 6f 72 6d 69 6e 67 20 63 61 70 61 62 69 6c 69 74 69 65 73 3a 00 42 65 63 61 75 | .Beamforming.capabilities:.Becau |
| da4c0 | 73 65 20 61 6e 20 61 67 67 72 65 67 61 74 6f 72 20 63 61 6e 6e 6f 74 20 62 65 20 61 63 74 69 76 | se.an.aggregator.cannot.be.activ |
| da4e0 | 65 20 77 69 74 68 6f 75 74 20 61 74 20 6c 65 61 73 74 20 6f 6e 65 20 61 76 61 69 6c 61 62 6c 65 | e.without.at.least.one.available |
| da500 | 20 6c 69 6e 6b 2c 20 73 65 74 74 69 6e 67 20 74 68 69 73 20 6f 70 74 69 6f 6e 20 74 6f 20 30 20 | .link,.setting.this.option.to.0. |
| da520 | 6f 72 20 74 6f 20 31 20 68 61 73 20 74 68 65 20 65 78 61 63 74 20 73 61 6d 65 20 65 66 66 65 63 | or.to.1.has.the.exact.same.effec |
| da540 | 74 2e 00 42 65 63 61 75 73 65 20 65 78 69 73 74 69 6e 67 20 73 65 73 73 69 6f 6e 73 20 64 6f 20 | t..Because.existing.sessions.do. |
| da560 | 6e 6f 74 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 66 61 69 6c 20 6f 76 65 72 20 74 6f 20 61 | not.automatically.fail.over.to.a |
| da580 | 20 6e 65 77 20 70 61 74 68 2c 20 74 68 65 20 73 65 73 73 69 6f 6e 20 74 61 62 6c 65 20 63 61 6e | .new.path,.the.session.table.can |
| da5a0 | 20 62 65 20 66 6c 75 73 68 65 64 20 6f 6e 20 65 61 63 68 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 73 | .be.flushed.on.each.connection.s |
| da5c0 | 74 61 74 65 20 63 68 61 6e 67 65 3a 00 42 65 66 6f 72 65 20 65 6e 61 62 6c 69 6e 67 20 61 6e 79 | tate.change:.Before.enabling.any |
| da5e0 | 20 68 61 72 64 77 61 72 65 20 73 65 67 6d 65 6e 74 61 74 69 6f 6e 20 6f 66 66 6c 6f 61 64 20 61 | .hardware.segmentation.offload.a |
| da600 | 20 63 6f 72 72 65 73 70 6f 6e 64 69 6e 67 20 73 6f 66 74 77 61 72 65 20 6f 66 66 6c 6f 61 64 20 | .corresponding.software.offload. |
| da620 | 69 73 20 72 65 71 75 69 72 65 64 20 69 6e 20 47 53 4f 2e 20 4f 74 68 65 72 77 69 73 65 20 69 74 | is.required.in.GSO..Otherwise.it |
| da640 | 20 62 65 63 6f 6d 65 73 20 70 6f 73 73 69 62 6c 65 20 66 6f 72 20 61 20 66 72 61 6d 65 20 74 6f | .becomes.possible.for.a.frame.to |
| da660 | 20 62 65 20 72 65 2d 72 6f 75 74 65 64 20 62 65 74 77 65 65 6e 20 64 65 76 69 63 65 73 20 61 6e | .be.re-routed.between.devices.an |
| da680 | 64 20 65 6e 64 20 75 70 20 62 65 69 6e 67 20 75 6e 61 62 6c 65 20 74 6f 20 62 65 20 74 72 61 6e | d.end.up.being.unable.to.be.tran |
| da6a0 | 73 6d 69 74 74 65 64 2e 00 42 65 66 6f 72 65 20 74 65 73 74 69 6e 67 2c 20 77 65 20 63 61 6e 20 | smitted..Before.testing,.we.can. |
| da6c0 | 63 68 65 63 6b 20 6d 65 6d 62 65 72 73 20 6f 66 20 66 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 73 | check.members.of.firewall.groups |
| da6e0 | 3a 00 42 65 66 6f 72 65 20 74 65 73 74 69 6e 67 2c 20 77 65 20 63 61 6e 20 63 68 65 63 6b 20 74 | :.Before.testing,.we.can.check.t |
| da700 | 68 65 20 6d 65 6d 62 65 72 73 20 6f 66 20 66 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 73 3a 00 42 | he.members.of.firewall.groups:.B |
| da720 | 65 66 6f 72 65 20 79 6f 75 20 61 72 65 20 61 62 6c 65 20 74 6f 20 61 70 70 6c 79 20 61 20 72 75 | efore.you.are.able.to.apply.a.ru |
| da740 | 6c 65 2d 73 65 74 20 74 6f 20 61 20 7a 6f 6e 65 20 79 6f 75 20 68 61 76 65 20 74 6f 20 63 72 65 | le-set.to.a.zone.you.have.to.cre |
| da760 | 61 74 65 20 74 68 65 20 7a 6f 6e 65 73 20 66 69 72 73 74 2e 00 42 65 6c 6f 77 20 61 72 65 20 61 | ate.the.zones.first..Below.are.a |
| da780 | 20 6c 69 73 74 20 6f 66 20 72 65 63 6f 72 64 20 74 79 70 65 73 20 61 76 61 69 6c 61 62 6c 65 20 | .list.of.record.types.available. |
| da7a0 | 74 6f 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 77 69 74 68 69 6e 20 56 79 4f 53 2e 20 53 6f | to.be.configured.within.VyOS..So |
| da7c0 | 6d 65 20 72 65 63 6f 72 64 73 20 73 75 70 70 6f 72 74 20 73 70 65 63 69 61 6c 20 60 3c 6e 61 6d | me.records.support.special.`<nam |
| da7e0 | 65 3e 60 20 6b 65 79 77 6f 72 64 73 3a 00 42 65 6c 6f 77 20 66 6c 6f 77 2d 63 68 61 72 74 20 63 | e>`.keywords:.Below.flow-chart.c |
| da800 | 6f 75 6c 64 20 62 65 20 61 20 71 75 69 63 6b 20 72 65 66 65 72 65 6e 63 65 20 66 6f 72 20 74 68 | ould.be.a.quick.reference.for.th |
| da820 | 65 20 63 6c 6f 73 65 2d 61 63 74 69 6f 6e 20 63 6f 6d 62 69 6e 61 74 69 6f 6e 20 64 65 70 65 6e | e.close-action.combination.depen |
| da840 | 64 69 6e 67 20 6f 6e 20 68 6f 77 20 74 68 65 20 70 65 65 72 20 69 73 20 63 6f 6e 66 69 67 75 72 | ding.on.how.the.peer.is.configur |
| da860 | 65 64 2e 00 42 65 6c 6f 77 20 69 73 20 61 6e 20 65 78 61 6d 70 6c 65 20 74 6f 20 63 6f 6e 66 69 | ed..Below.is.an.example.to.confi |
| da880 | 67 75 72 65 20 61 20 4c 4e 53 3a 00 42 65 73 74 20 65 66 66 6f 72 74 20 74 72 61 66 66 69 63 2c | gure.a.LNS:.Best.effort.traffic, |
| da8a0 | 20 64 65 66 61 75 6c 74 00 42 65 74 77 65 65 6e 20 63 6f 6d 70 75 74 65 72 73 2c 20 74 68 65 20 | .default.Between.computers,.the. |
| da8c0 | 6d 6f 73 74 20 63 6f 6d 6d 6f 6e 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 75 73 65 64 20 77 | most.common.configuration.used.w |
| da8e0 | 61 73 20 22 38 4e 31 22 3a 20 65 69 67 68 74 20 62 69 74 20 63 68 61 72 61 63 74 65 72 73 2c 20 | as."8N1":.eight.bit.characters,. |
| da900 | 77 69 74 68 20 6f 6e 65 20 73 74 61 72 74 20 62 69 74 2c 20 6f 6e 65 20 73 74 6f 70 20 62 69 74 | with.one.start.bit,.one.stop.bit |
| da920 | 2c 20 61 6e 64 20 6e 6f 20 70 61 72 69 74 79 20 62 69 74 2e 20 54 68 75 73 20 31 30 20 42 61 75 | ,.and.no.parity.bit..Thus.10.Bau |
| da940 | 64 20 74 69 6d 65 73 20 61 72 65 20 75 73 65 64 20 74 6f 20 73 65 6e 64 20 61 20 73 69 6e 67 6c | d.times.are.used.to.send.a.singl |
| da960 | 65 20 63 68 61 72 61 63 74 65 72 2c 20 61 6e 64 20 73 6f 20 64 69 76 69 64 69 6e 67 20 74 68 65 | e.character,.and.so.dividing.the |
| da980 | 20 73 69 67 6e 61 6c 6c 69 6e 67 20 62 69 74 2d 72 61 74 65 20 62 79 20 74 65 6e 20 72 65 73 75 | .signalling.bit-rate.by.ten.resu |
| da9a0 | 6c 74 73 20 69 6e 20 74 68 65 20 6f 76 65 72 61 6c 6c 20 74 72 61 6e 73 6d 69 73 73 69 6f 6e 20 | lts.in.the.overall.transmission. |
| da9c0 | 73 70 65 65 64 20 69 6e 20 63 68 61 72 61 63 74 65 72 73 20 70 65 72 20 73 65 63 6f 6e 64 2e 20 | speed.in.characters.per.second.. |
| da9e0 | 54 68 69 73 20 69 73 20 61 6c 73 6f 20 74 68 65 20 64 65 66 61 75 6c 74 20 73 65 74 74 69 6e 67 | This.is.also.the.default.setting |
| daa00 | 20 69 66 20 6e 6f 6e 65 20 6f 66 20 74 68 6f 73 65 20 6f 70 74 69 6f 6e 73 20 61 72 65 20 64 65 | .if.none.of.those.options.are.de |
| daa20 | 66 69 6e 65 64 2e 00 42 69 64 69 72 65 63 74 69 6f 6e 61 6c 20 4e 41 54 00 42 69 6e 61 72 79 20 | fined..Bidirectional.NAT.Binary. |
| daa40 | 76 61 6c 75 65 00 42 69 6e 64 20 63 6f 6e 74 61 69 6e 65 72 20 6e 65 74 77 6f 72 6b 20 74 6f 20 | value.Bind.container.network.to. |
| daa60 | 61 20 67 69 76 65 6e 20 56 52 46 20 69 6e 73 74 61 6e 63 65 2e 00 42 69 6e 64 20 6c 69 73 74 65 | a.given.VRF.instance..Bind.liste |
| daa80 | 6e 65 72 20 74 6f 20 73 70 65 63 69 66 69 63 20 69 6e 74 65 72 66 61 63 65 2f 61 64 64 72 65 73 | ner.to.specific.interface/addres |
| daaa0 | 73 2c 20 6d 61 6e 64 61 74 6f 72 79 20 66 6f 72 20 49 50 76 36 00 42 69 6e 64 73 20 65 74 68 31 | s,.mandatory.for.IPv6.Binds.eth1 |
| daac0 | 2e 32 34 31 20 61 6e 64 20 76 78 6c 61 6e 32 34 31 20 74 6f 20 65 61 63 68 20 6f 74 68 65 72 20 | .241.and.vxlan241.to.each.other. |
| daae0 | 62 79 20 6d 61 6b 69 6e 67 20 74 68 65 6d 20 62 6f 74 68 20 6d 65 6d 62 65 72 20 69 6e 74 65 72 | by.making.them.both.member.inter |
| dab00 | 66 61 63 65 73 20 6f 66 20 74 68 65 20 73 61 6d 65 20 62 72 69 64 67 65 2e 00 42 6c 61 63 6b 68 | faces.of.the.same.bridge..Blackh |
| dab20 | 6f 6c 65 00 42 6c 6f 63 6b 20 73 6f 75 72 63 65 20 49 50 20 69 6e 20 73 65 63 6f 6e 64 73 2e 20 | ole.Block.source.IP.in.seconds.. |
| dab40 | 53 75 62 73 65 71 75 65 6e 74 20 62 6c 6f 63 6b 73 20 69 6e 63 72 65 61 73 65 20 62 79 20 61 20 | Subsequent.blocks.increase.by.a. |
| dab60 | 66 61 63 74 6f 72 20 6f 66 20 31 2e 35 20 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 31 32 30 | factor.of.1.5.The.default.is.120 |
| dab80 | 2e 00 42 6c 6f 63 6b 20 73 6f 75 72 63 65 20 49 50 20 77 68 65 6e 20 74 68 65 69 72 20 63 75 6d | ..Block.source.IP.when.their.cum |
| daba0 | 75 6c 61 74 69 76 65 20 61 74 74 61 63 6b 20 73 63 6f 72 65 20 65 78 63 65 65 64 73 20 74 68 72 | ulative.attack.score.exceeds.thr |
| dabc0 | 65 73 68 6f 6c 64 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 33 30 2e 00 42 6c 6f 63 6b | eshold..The.default.is.30..Block |
| dabe0 | 69 6e 67 20 63 61 6c 6c 20 77 69 74 68 20 6e 6f 20 74 69 6d 65 6f 75 74 2e 20 53 79 73 74 65 6d | ing.call.with.no.timeout..System |
| dac00 | 20 77 69 6c 6c 20 62 65 63 6f 6d 65 20 75 6e 72 65 73 70 6f 6e 73 69 76 65 20 69 66 20 73 63 72 | .will.become.unresponsive.if.scr |
| dac20 | 69 70 74 20 64 6f 65 73 20 6e 6f 74 20 72 65 74 75 72 6e 21 00 42 6f 61 72 64 65 72 20 47 61 74 | ipt.does.not.return!.Boarder.Gat |
| dac40 | 65 77 61 79 20 50 72 6f 74 6f 63 6f 6c 20 28 42 47 50 29 20 6f 72 69 67 69 6e 20 63 6f 64 65 20 | eway.Protocol.(BGP).origin.code. |
| dac60 | 74 6f 20 6d 61 74 63 68 2e 00 42 6f 6e 64 20 2f 20 4c 69 6e 6b 20 41 67 67 72 65 67 61 74 69 6f | to.match..Bond./.Link.Aggregatio |
| dac80 | 6e 00 42 6f 6e 64 20 6f 70 74 69 6f 6e 73 00 42 6f 6f 74 20 69 6d 61 67 65 20 6c 65 6e 67 74 68 | n.Bond.options.Boot.image.length |
| daca0 | 20 69 6e 20 35 31 32 2d 6f 63 74 65 74 20 62 6c 6f 63 6b 73 00 42 6f 6f 74 73 74 72 61 70 20 66 | .in.512-octet.blocks.Bootstrap.f |
| dacc0 | 69 6c 65 20 6e 61 6d 65 00 42 6f 74 68 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 6d 75 6c 74 | ile.name.Both.IPv4.and.IPv6.mult |
| dace0 | 69 63 61 73 74 20 69 73 20 70 6f 73 73 69 62 6c 65 2e 00 42 6f 74 68 20 6c 6f 63 61 6c 20 61 64 | icast.is.possible..Both.local.ad |
| dad00 | 6d 69 6e 69 73 74 65 72 65 64 20 61 6e 64 20 72 65 6d 6f 74 65 20 61 64 6d 69 6e 69 73 74 65 72 | ministered.and.remote.administer |
| dad20 | 65 64 20 3a 61 62 62 72 3a 60 52 41 44 49 55 53 20 28 52 65 6d 6f 74 65 20 41 75 74 68 65 6e 74 | ed.:abbr:`RADIUS.(Remote.Authent |
| dad40 | 69 63 61 74 69 6f 6e 20 44 69 61 6c 2d 49 6e 20 55 73 65 72 20 53 65 72 76 69 63 65 29 60 20 61 | ication.Dial-In.User.Service)`.a |
| dad60 | 63 63 6f 75 6e 74 73 20 61 72 65 20 73 75 70 70 6f 72 74 65 64 2e 00 42 6f 74 68 20 72 65 70 6c | ccounts.are.supported..Both.repl |
| dad80 | 69 65 73 20 61 6e 64 20 72 65 71 75 65 73 74 73 20 74 79 70 65 20 67 72 61 74 75 69 74 6f 75 73 | ies.and.requests.type.gratuitous |
| dada0 | 20 61 72 70 20 77 69 6c 6c 20 74 72 69 67 67 65 72 20 74 68 65 20 41 52 50 20 74 61 62 6c 65 20 | .arp.will.trigger.the.ARP.table. |
| dadc0 | 74 6f 20 62 65 20 75 70 64 61 74 65 64 2c 20 69 66 20 74 68 69 73 20 73 65 74 74 69 6e 67 20 69 | to.be.updated,.if.this.setting.i |
| dade0 | 73 20 6f 6e 2e 00 42 72 61 6e 63 68 20 31 27 73 20 72 6f 75 74 65 72 20 6d 69 67 68 74 20 68 61 | s.on..Branch.1's.router.might.ha |
| dae00 | 76 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 6c 69 6e 65 73 3a 00 42 72 69 64 67 65 00 42 | ve.the.following.lines:.Bridge.B |
| dae20 | 72 69 64 67 65 20 46 69 72 65 77 61 6c 6c 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 42 72 69 | ridge.Firewall.Configuration.Bri |
| dae40 | 64 67 65 20 4f 70 74 69 6f 6e 73 00 42 72 69 64 67 65 20 52 75 6c 65 73 00 42 72 69 64 67 65 20 | dge.Options.Bridge.Rules.Bridge. |
| dae60 | 61 6e 73 77 65 72 73 20 6f 6e 20 49 50 20 61 64 64 72 65 73 73 20 31 39 32 2e 30 2e 32 2e 31 2f | answers.on.IP.address.192.0.2.1/ |
| dae80 | 32 34 20 61 6e 64 20 32 30 30 31 3a 64 62 38 3a 3a 66 66 66 66 2f 36 34 00 42 72 69 64 67 65 20 | 24.and.2001:db8::ffff/64.Bridge. |
| daea0 | 6d 61 78 69 6d 75 6d 20 61 67 69 6e 67 20 60 3c 74 69 6d 65 3e 60 20 69 6e 20 73 65 63 6f 6e 64 | maximum.aging.`<time>`.in.second |
| daec0 | 73 20 28 64 65 66 61 75 6c 74 3a 20 32 30 29 2e 00 42 72 69 64 67 65 3a 00 42 75 72 73 74 20 63 | s.(default:.20)..Bridge:.Burst.c |
| daee0 | 6f 75 6e 74 00 42 75 73 69 6e 65 73 73 20 55 73 65 72 73 00 42 75 74 20 62 65 66 6f 72 65 20 6c | ount.Business.Users.But.before.l |
| daf00 | 65 61 72 6e 69 6e 67 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 79 6f 75 72 20 70 6f 6c 69 63 79 | earning.to.configure.your.policy |
| daf20 | 2c 20 77 65 20 77 69 6c 6c 20 77 61 72 6e 20 79 6f 75 20 61 62 6f 75 74 20 74 68 65 20 64 69 66 | ,.we.will.warn.you.about.the.dif |
| daf40 | 66 65 72 65 6e 74 20 75 6e 69 74 73 20 79 6f 75 20 63 61 6e 20 75 73 65 20 61 6e 64 20 61 6c 73 | ferent.units.you.can.use.and.als |
| daf60 | 6f 20 73 68 6f 77 20 79 6f 75 20 77 68 61 74 20 2a 63 6c 61 73 73 65 73 2a 20 61 72 65 20 61 6e | o.show.you.what.*classes*.are.an |
| daf80 | 64 20 68 6f 77 20 74 68 65 79 20 77 6f 72 6b 2c 20 61 73 20 73 6f 6d 65 20 70 6f 6c 69 63 69 65 | d.how.they.work,.as.some.policie |
| dafa0 | 73 20 6d 61 79 20 72 65 71 75 69 72 65 20 79 6f 75 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 | s.may.require.you.to.configure.t |
| dafc0 | 68 65 6d 2e 00 42 79 20 64 65 66 61 75 6c 74 20 56 52 52 50 20 75 73 65 73 20 6d 75 6c 74 69 63 | hem..By.default.VRRP.uses.multic |
| dafe0 | 61 73 74 20 70 61 63 6b 65 74 73 2e 20 49 66 20 79 6f 75 72 20 6e 65 74 77 6f 72 6b 20 64 6f 65 | ast.packets..If.your.network.doe |
| db000 | 73 20 6e 6f 74 20 73 75 70 70 6f 72 74 20 6d 75 6c 74 69 63 61 73 74 20 66 6f 72 20 77 68 61 74 | s.not.support.multicast.for.what |
| db020 | 65 76 65 72 20 72 65 61 73 6f 6e 2c 20 79 6f 75 20 63 61 6e 20 6d 61 6b 65 20 56 52 52 50 20 75 | ever.reason,.you.can.make.VRRP.u |
| db040 | 73 65 20 75 6e 69 63 61 73 74 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6f 6e 20 69 6e 73 74 65 61 64 | se.unicast.communication.instead |
| db060 | 2e 00 42 79 20 64 65 66 61 75 6c 74 20 56 52 52 50 20 75 73 65 73 20 70 72 65 65 6d 70 74 69 6f | ..By.default.VRRP.uses.preemptio |
| db080 | 6e 2e 20 59 6f 75 20 63 61 6e 20 64 69 73 61 62 6c 65 20 69 74 20 77 69 74 68 20 74 68 65 20 22 | n..You.can.disable.it.with.the." |
| db0a0 | 6e 6f 2d 70 72 65 65 6d 70 74 22 20 6f 70 74 69 6f 6e 3a 00 42 79 20 64 65 66 61 75 6c 74 20 60 | no-preempt".option:.By.default.` |
| db0c0 | 73 74 72 69 63 74 2d 6c 73 61 2d 63 68 65 63 6b 69 6e 67 60 20 69 73 20 63 6f 6e 66 69 67 75 72 | strict-lsa-checking`.is.configur |
| db0e0 | 65 64 20 74 68 65 6e 20 74 68 65 20 68 65 6c 70 65 72 20 77 69 6c 6c 20 61 62 6f 72 74 20 74 68 | ed.then.the.helper.will.abort.th |
| db100 | 65 20 47 72 61 63 65 66 75 6c 20 52 65 73 74 61 72 74 20 77 68 65 6e 20 61 20 4c 53 41 20 63 68 | e.Graceful.Restart.when.a.LSA.ch |
| db120 | 61 6e 67 65 20 6f 63 63 75 72 73 20 77 68 69 63 68 20 61 66 66 65 63 74 73 20 74 68 65 20 72 65 | ange.occurs.which.affects.the.re |
| db140 | 73 74 61 72 74 69 6e 67 20 72 6f 75 74 65 72 2e 00 42 79 20 64 65 66 61 75 6c 74 20 74 68 65 20 | starting.router..By.default.the. |
| db160 | 73 63 6f 70 65 20 6f 66 20 74 68 65 20 70 6f 72 74 20 62 69 6e 64 69 6e 67 73 20 66 6f 72 20 75 | scope.of.the.port.bindings.for.u |
| db180 | 6e 62 6f 75 6e 64 20 73 6f 63 6b 65 74 73 20 69 73 20 6c 69 6d 69 74 65 64 20 74 6f 20 74 68 65 | nbound.sockets.is.limited.to.the |
| db1a0 | 20 64 65 66 61 75 6c 74 20 56 52 46 2e 20 54 68 61 74 20 69 73 2c 20 69 74 20 77 69 6c 6c 20 6e | .default.VRF..That.is,.it.will.n |
| db1c0 | 6f 74 20 62 65 20 6d 61 74 63 68 65 64 20 62 79 20 70 61 63 6b 65 74 73 20 61 72 72 69 76 69 6e | ot.be.matched.by.packets.arrivin |
| db1e0 | 67 20 6f 6e 20 69 6e 74 65 72 66 61 63 65 73 20 65 6e 73 6c 61 76 65 64 20 74 6f 20 61 20 56 52 | g.on.interfaces.enslaved.to.a.VR |
| db200 | 46 20 61 6e 64 20 70 72 6f 63 65 73 73 65 73 20 6d 61 79 20 62 69 6e 64 20 74 6f 20 74 68 65 20 | F.and.processes.may.bind.to.the. |
| db220 | 73 61 6d 65 20 70 6f 72 74 20 69 66 20 74 68 65 79 20 62 69 6e 64 20 74 6f 20 61 20 56 52 46 2e | same.port.if.they.bind.to.a.VRF. |
| db240 | 00 42 79 20 64 65 66 61 75 6c 74 2c 20 46 52 52 20 77 69 6c 6c 20 62 72 69 6e 67 20 75 70 20 70 | .By.default,.FRR.will.bring.up.p |
| db260 | 65 65 72 69 6e 67 20 77 69 74 68 20 6d 69 6e 69 6d 61 6c 20 63 6f 6d 6d 6f 6e 20 63 61 70 61 62 | eering.with.minimal.common.capab |
| db280 | 69 6c 69 74 79 20 66 6f 72 20 74 68 65 20 62 6f 74 68 20 73 69 64 65 73 2e 20 46 6f 72 20 65 78 | ility.for.the.both.sides..For.ex |
| db2a0 | 61 6d 70 6c 65 2c 20 69 66 20 74 68 65 20 6c 6f 63 61 6c 20 72 6f 75 74 65 72 20 68 61 73 20 75 | ample,.if.the.local.router.has.u |
| db2c0 | 6e 69 63 61 73 74 20 61 6e 64 20 6d 75 6c 74 69 63 61 73 74 20 63 61 70 61 62 69 6c 69 74 69 65 | nicast.and.multicast.capabilitie |
| db2e0 | 73 20 61 6e 64 20 74 68 65 20 72 65 6d 6f 74 65 20 72 6f 75 74 65 72 20 6f 6e 6c 79 20 68 61 73 | s.and.the.remote.router.only.has |
| db300 | 20 75 6e 69 63 61 73 74 20 63 61 70 61 62 69 6c 69 74 79 20 74 68 65 20 6c 6f 63 61 6c 20 72 6f | .unicast.capability.the.local.ro |
| db320 | 75 74 65 72 20 77 69 6c 6c 20 65 73 74 61 62 6c 69 73 68 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 | uter.will.establish.the.connecti |
| db340 | 6f 6e 20 77 69 74 68 20 75 6e 69 63 61 73 74 20 6f 6e 6c 79 20 63 61 70 61 62 69 6c 69 74 79 2e | on.with.unicast.only.capability. |
| db360 | 20 57 68 65 6e 20 74 68 65 72 65 20 61 72 65 20 6e 6f 20 63 6f 6d 6d 6f 6e 20 63 61 70 61 62 69 | .When.there.are.no.common.capabi |
| db380 | 6c 69 74 69 65 73 2c 20 46 52 52 20 73 65 6e 64 73 20 55 6e 73 75 70 70 6f 72 74 65 64 20 43 61 | lities,.FRR.sends.Unsupported.Ca |
| db3a0 | 70 61 62 69 6c 69 74 79 20 65 72 72 6f 72 20 61 6e 64 20 74 68 65 6e 20 72 65 73 65 74 73 20 74 | pability.error.and.then.resets.t |
| db3c0 | 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 42 79 20 64 65 66 61 75 6c 74 2c 20 56 79 4f 53 20 | he.connection..By.default,.VyOS. |
| db3e0 | 64 6f 65 73 20 6e 6f 74 20 61 64 76 65 72 74 69 73 65 20 61 20 64 65 66 61 75 6c 74 20 72 6f 75 | does.not.advertise.a.default.rou |
| db400 | 74 65 20 28 30 2e 30 2e 30 2e 30 2f 30 29 20 65 76 65 6e 20 69 66 20 69 74 20 69 73 20 69 6e 20 | te.(0.0.0.0/0).even.if.it.is.in. |
| db420 | 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 2e 20 57 68 65 6e 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 | routing.table..When.you.want.to. |
| db440 | 61 6e 6e 6f 75 6e 63 65 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 73 20 74 6f 20 74 68 65 20 70 | announce.default.routes.to.the.p |
| db460 | 65 65 72 2c 20 75 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 2e 20 55 73 69 6e 67 20 6f 70 74 | eer,.use.this.command..Using.opt |
| db480 | 69 6f 6e 61 6c 20 61 72 67 75 6d 65 6e 74 20 3a 63 66 67 63 6d 64 3a 60 72 6f 75 74 65 2d 6d 61 | ional.argument.:cfgcmd:`route-ma |
| db4a0 | 70 60 20 79 6f 75 20 63 61 6e 20 69 6e 6a 65 63 74 20 74 68 65 20 64 65 66 61 75 6c 74 20 72 6f | p`.you.can.inject.the.default.ro |
| db4c0 | 75 74 65 20 74 6f 20 67 69 76 65 6e 20 6e 65 69 67 68 62 6f 72 20 6f 6e 6c 79 20 69 66 20 74 68 | ute.to.given.neighbor.only.if.th |
| db4e0 | 65 20 63 6f 6e 64 69 74 69 6f 6e 73 20 69 6e 20 74 68 65 20 72 6f 75 74 65 20 6d 61 70 20 61 72 | e.conditions.in.the.route.map.ar |
| db500 | 65 20 6d 65 74 2e 00 42 79 20 64 65 66 61 75 6c 74 2c 20 61 20 6e 65 77 20 74 6f 6b 65 6e 20 69 | e.met..By.default,.a.new.token.i |
| db520 | 73 20 67 65 6e 65 72 61 74 65 64 20 65 76 65 72 79 20 33 30 20 73 65 63 6f 6e 64 73 20 62 79 20 | s.generated.every.30.seconds.by. |
| db540 | 74 68 65 20 6d 6f 62 69 6c 65 20 61 70 70 6c 69 63 61 74 69 6f 6e 2e 20 49 6e 20 6f 72 64 65 72 | the.mobile.application..In.order |
| db560 | 20 74 6f 20 63 6f 6d 70 65 6e 73 61 74 65 20 66 6f 72 20 70 6f 73 73 69 62 6c 65 20 74 69 6d 65 | .to.compensate.for.possible.time |
| db580 | 2d 73 6b 65 77 20 62 65 74 77 65 65 6e 20 74 68 65 20 63 6c 69 65 6e 74 20 61 6e 64 20 74 68 65 | -skew.between.the.client.and.the |
| db5a0 | 20 73 65 72 76 65 72 2c 20 61 6e 20 65 78 74 72 61 20 74 6f 6b 65 6e 20 62 65 66 6f 72 65 20 61 | .server,.an.extra.token.before.a |
| db5c0 | 6e 64 20 61 66 74 65 72 20 74 68 65 20 63 75 72 72 65 6e 74 20 74 69 6d 65 20 69 73 20 61 6c 6c | nd.after.the.current.time.is.all |
| db5e0 | 6f 77 65 64 2e 20 54 68 69 73 20 61 6c 6c 6f 77 73 20 66 6f 72 20 61 20 74 69 6d 65 20 73 6b 65 | owed..This.allows.for.a.time.ske |
| db600 | 77 20 6f 66 20 75 70 20 74 6f 20 33 30 20 73 65 63 6f 6e 64 73 20 62 65 74 77 65 65 6e 20 61 75 | w.of.up.to.30.seconds.between.au |
| db620 | 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 73 65 72 76 65 72 20 61 6e 64 20 63 6c 69 65 6e 74 2e 00 | thentication.server.and.client.. |
| db640 | 42 79 20 64 65 66 61 75 6c 74 2c 20 64 64 63 6c 69 65 6e 74 5f 20 77 69 6c 6c 20 75 70 64 61 74 | By.default,.ddclient_.will.updat |
| db660 | 65 20 61 20 64 79 6e 61 6d 69 63 20 64 6e 73 20 72 65 63 6f 72 64 20 75 73 69 6e 67 20 74 68 65 | e.a.dynamic.dns.record.using.the |
| db680 | 20 49 50 20 61 64 64 72 65 73 73 20 64 69 72 65 63 74 6c 79 20 61 74 74 61 63 68 65 64 20 74 6f | .IP.address.directly.attached.to |
| db6a0 | 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 2e 20 49 66 20 79 6f 75 72 20 56 79 4f 53 20 69 6e 73 | .the.interface..If.your.VyOS.ins |
| db6c0 | 74 61 6e 63 65 20 69 73 20 62 65 68 69 6e 64 20 4e 41 54 2c 20 79 6f 75 72 20 72 65 63 6f 72 64 | tance.is.behind.NAT,.your.record |
| db6e0 | 20 77 69 6c 6c 20 62 65 20 75 70 64 61 74 65 64 20 74 6f 20 70 6f 69 6e 74 20 74 6f 20 79 6f 75 | .will.be.updated.to.point.to.you |
| db700 | 72 20 69 6e 74 65 72 6e 61 6c 20 49 50 2e 00 42 79 20 64 65 66 61 75 6c 74 2c 20 65 6e 61 62 6c | r.internal.IP..By.default,.enabl |
| db720 | 69 6e 67 20 52 50 4b 49 20 64 6f 65 73 20 6e 6f 74 20 63 68 61 6e 67 65 20 62 65 73 74 20 70 61 | ing.RPKI.does.not.change.best.pa |
| db740 | 74 68 20 73 65 6c 65 63 74 69 6f 6e 2e 20 49 6e 20 70 61 72 74 69 63 75 6c 61 72 2c 20 69 6e 76 | th.selection..In.particular,.inv |
| db760 | 61 6c 69 64 20 70 72 65 66 69 78 65 73 20 77 69 6c 6c 20 73 74 69 6c 6c 20 62 65 20 63 6f 6e 73 | alid.prefixes.will.still.be.cons |
| db780 | 69 64 65 72 65 64 20 64 75 72 69 6e 67 20 62 65 73 74 20 70 61 74 68 20 73 65 6c 65 63 74 69 6f | idered.during.best.path.selectio |
| db7a0 | 6e 2e 20 48 6f 77 65 76 65 72 2c 20 74 68 65 20 72 6f 75 74 65 72 20 63 61 6e 20 62 65 20 63 6f | n..However,.the.router.can.be.co |
| db7c0 | 6e 66 69 67 75 72 65 64 20 74 6f 20 69 67 6e 6f 72 65 20 61 6c 6c 20 69 6e 76 61 6c 69 64 20 70 | nfigured.to.ignore.all.invalid.p |
| db7e0 | 72 65 66 69 78 65 73 2e 00 42 79 20 64 65 66 61 75 6c 74 2c 20 66 6f 72 20 73 77 69 74 63 68 65 | refixes..By.default,.for.switche |
| db800 | 64 20 74 72 61 66 66 69 63 2c 20 6f 6e 6c 79 20 74 68 65 20 72 75 6c 65 73 20 64 65 66 69 6e 65 | d.traffic,.only.the.rules.define |
| db820 | 64 20 75 6e 64 65 72 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 62 72 69 64 67 65 60 60 20 | d.under.``set.firewall.bridge``. |
| db840 | 61 72 65 20 61 70 70 6c 69 65 64 2e 20 54 68 65 72 65 20 61 72 65 20 74 77 6f 20 67 6c 6f 62 61 | are.applied..There.are.two.globa |
| db860 | 6c 2d 6f 70 74 69 6f 6e 73 20 74 68 61 74 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 | l-options.that.can.be.configured |
| db880 | 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 66 6f 72 63 65 20 64 65 65 70 65 72 20 61 6e 61 6c 79 73 | .in.order.to.force.deeper.analys |
| db8a0 | 69 73 20 6f 66 20 74 68 65 20 70 61 63 6b 65 74 20 6f 6e 20 74 68 65 20 49 50 20 6c 61 79 65 72 | is.of.the.packet.on.the.IP.layer |
| db8c0 | 2e 20 54 68 65 73 65 20 6f 70 74 69 6f 6e 73 20 61 72 65 3a 00 42 79 20 64 65 66 61 75 6c 74 2c | ..These.options.are:.By.default, |
| db8e0 | 20 69 74 20 73 75 70 70 6f 72 74 73 20 62 6f 74 68 20 70 6c 61 6e 6e 65 64 20 61 6e 64 20 75 6e | .it.supports.both.planned.and.un |
| db900 | 70 6c 61 6e 6e 65 64 20 6f 75 74 61 67 65 73 2e 00 42 79 20 64 65 66 61 75 6c 74 2c 20 6c 6f 63 | planned.outages..By.default,.loc |
| db920 | 61 6c 6c 79 20 61 64 76 65 72 74 69 73 65 64 20 70 72 65 66 69 78 65 73 20 75 73 65 20 74 68 65 | ally.advertised.prefixes.use.the |
| db940 | 20 69 6d 70 6c 69 63 69 74 2d 6e 75 6c 6c 20 6c 61 62 65 6c 20 74 6f 20 65 6e 63 6f 64 65 20 69 | .implicit-null.label.to.encode.i |
| db960 | 6e 20 74 68 65 20 6f 75 74 67 6f 69 6e 67 20 4e 4c 52 49 2e 00 42 79 20 64 65 66 61 75 6c 74 2c | n.the.outgoing.NLRI..By.default, |
| db980 | 20 6e 67 69 6e 78 20 65 78 70 6f 73 65 73 20 74 68 65 20 6c 6f 63 61 6c 20 41 50 49 20 6f 6e 20 | .nginx.exposes.the.local.API.on. |
| db9a0 | 61 6c 6c 20 76 69 72 74 75 61 6c 20 73 65 72 76 65 72 73 2e 20 55 73 65 20 74 68 69 73 20 74 6f | all.virtual.servers..Use.this.to |
| db9c0 | 20 72 65 73 74 72 69 63 74 20 6e 67 69 6e 78 20 74 6f 20 6f 6e 65 20 6f 72 20 6d 6f 72 65 20 76 | .restrict.nginx.to.one.or.more.v |
| db9e0 | 69 72 74 75 61 6c 20 68 6f 73 74 73 2e 00 42 79 20 64 65 66 61 75 6c 74 2c 20 72 65 63 6f 72 64 | irtual.hosts..By.default,.record |
| dba00 | 65 64 20 66 6c 6f 77 73 20 77 69 6c 6c 20 62 65 20 73 61 76 65 64 20 69 6e 74 65 72 6e 61 6c 6c | ed.flows.will.be.saved.internall |
| dba20 | 79 20 61 6e 64 20 63 61 6e 20 62 65 20 6c 69 73 74 65 64 20 77 69 74 68 20 74 68 65 20 43 4c 49 | y.and.can.be.listed.with.the.CLI |
| dba40 | 20 63 6f 6d 6d 61 6e 64 2e 20 59 6f 75 20 6d 61 79 20 64 69 73 61 62 6c 65 20 75 73 69 6e 67 20 | .command..You.may.disable.using. |
| dba60 | 74 68 65 20 6c 6f 63 61 6c 20 69 6e 2d 6d 65 6d 6f 72 79 20 74 61 62 6c 65 20 77 69 74 68 20 74 | the.local.in-memory.table.with.t |
| dba80 | 68 65 20 63 6f 6d 6d 61 6e 64 3a 00 42 79 20 64 65 66 61 75 6c 74 2c 20 74 68 65 20 42 47 50 20 | he.command:.By.default,.the.BGP. |
| dbaa0 | 70 72 65 66 69 78 20 69 73 20 61 64 76 65 72 74 69 73 65 64 20 65 76 65 6e 20 69 66 20 69 74 27 | prefix.is.advertised.even.if.it' |
| dbac0 | 73 20 6e 6f 74 20 70 72 65 73 65 6e 74 20 69 6e 20 74 68 65 20 72 6f 75 74 69 6e 67 20 74 61 62 | s.not.present.in.the.routing.tab |
| dbae0 | 6c 65 2e 20 54 68 69 73 20 62 65 68 61 76 69 6f 75 72 20 64 69 66 66 65 72 73 20 66 72 6f 6d 20 | le..This.behaviour.differs.from. |
| dbb00 | 74 68 65 20 69 6d 70 6c 65 6d 65 6e 74 61 74 69 6f 6e 20 6f 66 20 73 6f 6d 65 20 76 65 6e 64 6f | the.implementation.of.some.vendo |
| dbb20 | 72 73 2e 00 42 79 20 64 65 66 61 75 6c 74 2c 20 74 68 69 73 20 62 72 69 64 67 69 6e 67 20 69 73 | rs..By.default,.this.bridging.is |
| dbb40 | 20 61 6c 6c 6f 77 65 64 2e 00 42 79 20 64 65 66 61 75 6c 74 2c 20 77 68 65 6e 20 56 79 4f 53 20 | .allowed..By.default,.when.VyOS. |
| dbb60 | 72 65 63 65 69 76 65 73 20 61 6e 20 49 43 4d 50 20 65 63 68 6f 20 72 65 71 75 65 73 74 20 70 61 | receives.an.ICMP.echo.request.pa |
| dbb80 | 63 6b 65 74 20 64 65 73 74 69 6e 65 64 20 66 6f 72 20 69 74 73 65 6c 66 2c 20 69 74 20 77 69 6c | cket.destined.for.itself,.it.wil |
| dbba0 | 6c 20 61 6e 73 77 65 72 20 77 69 74 68 20 61 6e 20 49 43 4d 50 20 65 63 68 6f 20 72 65 70 6c 79 | l.answer.with.an.ICMP.echo.reply |
| dbbc0 | 2c 20 75 6e 6c 65 73 73 20 79 6f 75 20 61 76 6f 69 64 20 69 74 20 74 68 72 6f 75 67 68 20 69 74 | ,.unless.you.avoid.it.through.it |
| dbbe0 | 73 20 66 69 72 65 77 61 6c 6c 2e 00 42 79 20 64 65 66 61 75 6c 74 2c 20 77 68 65 6e 20 56 79 4f | s.firewall..By.default,.when.VyO |
| dbc00 | 53 20 72 65 63 65 69 76 65 73 20 61 6e 20 49 43 4d 50 20 65 63 68 6f 20 72 65 71 75 65 73 74 20 | S.receives.an.ICMP.echo.request. |
| dbc20 | 70 61 63 6b 65 74 20 64 65 73 74 69 6e 65 64 20 66 6f 72 20 69 74 73 65 6c 66 2c 20 69 74 20 77 | packet.destined.for.itself,.it.w |
| dbc40 | 69 6c 6c 20 61 6e 73 77 65 72 20 77 69 74 68 20 61 6e 20 49 43 4d 50 20 65 63 68 6f 20 72 65 70 | ill.answer.with.an.ICMP.echo.rep |
| dbc60 | 6c 79 2c 20 75 6e 6c 65 73 73 20 79 6f 75 20 70 72 65 76 65 6e 74 20 69 74 20 74 68 72 6f 75 67 | ly,.unless.you.prevent.it.throug |
| dbc80 | 68 20 69 74 73 20 66 69 72 65 77 61 6c 6c 2e 00 42 79 20 75 73 69 6e 67 20 50 73 65 75 64 6f 2d | h.its.firewall..By.using.Pseudo- |
| dbca0 | 45 74 68 65 72 6e 65 74 20 69 6e 74 65 72 66 61 63 65 73 20 74 68 65 72 65 20 77 69 6c 6c 20 62 | Ethernet.interfaces.there.will.b |
| dbcc0 | 65 20 6c 65 73 73 20 73 79 73 74 65 6d 20 6f 76 65 72 68 65 61 64 20 63 6f 6d 70 61 72 65 64 20 | e.less.system.overhead.compared. |
| dbce0 | 74 6f 20 72 75 6e 6e 69 6e 67 20 61 20 74 72 61 64 69 74 69 6f 6e 61 6c 20 62 72 69 64 67 69 6e | to.running.a.traditional.bridgin |
| dbd00 | 67 20 61 70 70 72 6f 61 63 68 2e 20 50 73 65 75 64 6f 2d 45 74 68 65 72 6e 65 74 20 69 6e 74 65 | g.approach..Pseudo-Ethernet.inte |
| dbd20 | 72 66 61 63 65 73 20 63 61 6e 20 61 6c 73 6f 20 62 65 20 75 73 65 64 20 74 6f 20 77 6f 72 6b 61 | rfaces.can.also.be.used.to.worka |
| dbd40 | 72 6f 75 6e 64 20 74 68 65 20 67 65 6e 65 72 61 6c 20 6c 69 6d 69 74 20 6f 66 20 34 30 39 36 20 | round.the.general.limit.of.4096. |
| dbd60 | 76 69 72 74 75 61 6c 20 4c 41 4e 73 20 28 56 4c 41 4e 73 29 20 70 65 72 20 70 68 79 73 69 63 61 | virtual.LANs.(VLANs).per.physica |
| dbd80 | 6c 20 45 74 68 65 72 6e 65 74 20 70 6f 72 74 2c 20 73 69 6e 63 65 20 74 68 61 74 20 6c 69 6d 69 | l.Ethernet.port,.since.that.limi |
| dbda0 | 74 20 69 73 20 77 69 74 68 20 72 65 73 70 65 63 74 20 74 6f 20 61 20 73 69 6e 67 6c 65 20 4d 41 | t.is.with.respect.to.a.single.MA |
| dbdc0 | 43 20 61 64 64 72 65 73 73 2e 00 42 79 70 61 73 73 69 6e 67 20 74 68 65 20 77 65 62 70 72 6f 78 | C.address..Bypassing.the.webprox |
| dbde0 | 79 00 43 41 20 28 43 65 72 74 69 66 69 63 61 74 65 20 41 75 74 68 6f 72 69 74 79 29 00 43 41 4b | y.CA.(Certificate.Authority).CAK |
| dbe00 | 45 00 43 47 4e 41 54 00 43 47 4e 41 54 20 77 6f 72 6b 73 20 62 79 20 70 6c 61 63 69 6e 67 20 61 | E.CGNAT.CGNAT.works.by.placing.a |
| dbe20 | 20 4e 41 54 20 64 65 76 69 63 65 20 77 69 74 68 69 6e 20 74 68 65 20 49 53 50 27 73 20 6e 65 74 | .NAT.device.within.the.ISP's.net |
| dbe40 | 77 6f 72 6b 2e 20 54 68 69 73 20 64 65 76 69 63 65 20 74 72 61 6e 73 6c 61 74 65 73 20 70 72 69 | work..This.device.translates.pri |
| dbe60 | 76 61 74 65 20 49 50 20 61 64 64 72 65 73 73 65 73 20 66 72 6f 6d 20 63 75 73 74 6f 6d 65 72 20 | vate.IP.addresses.from.customer. |
| dbe80 | 6e 65 74 77 6f 72 6b 73 20 74 6f 20 61 20 6c 69 6d 69 74 65 64 20 70 6f 6f 6c 20 6f 66 20 70 75 | networks.to.a.limited.pool.of.pu |
| dbea0 | 62 6c 69 63 20 49 50 20 61 64 64 72 65 73 73 65 73 20 61 73 73 69 67 6e 65 64 20 74 6f 20 74 68 | blic.IP.addresses.assigned.to.th |
| dbec0 | 65 20 49 53 50 2e 20 54 68 69 73 20 61 6c 6c 6f 77 73 20 6d 61 6e 79 20 63 75 73 74 6f 6d 65 72 | e.ISP..This.allows.many.customer |
| dbee0 | 73 20 74 6f 20 73 68 61 72 65 20 61 20 73 6d 61 6c 6c 65 72 20 6e 75 6d 62 65 72 20 6f 66 20 70 | s.to.share.a.smaller.number.of.p |
| dbf00 | 75 62 6c 69 63 20 49 50 20 61 64 64 72 65 73 73 65 73 2e 00 43 52 49 54 49 43 2f 45 43 50 00 43 | ublic.IP.addresses..CRITIC/ECP.C |
| dbf20 | 61 6c 6c 20 61 6e 6f 74 68 65 72 20 72 6f 75 74 65 2d 6d 61 70 20 70 6f 6c 69 63 79 20 6f 6e 20 | all.another.route-map.policy.on. |
| dbf40 | 6d 61 74 63 68 2e 00 43 61 70 61 62 69 6c 69 74 79 20 4e 65 67 6f 74 69 61 74 69 6f 6e 00 43 65 | match..Capability.Negotiation.Ce |
| dbf60 | 72 74 61 69 6e 20 76 65 6e 64 6f 72 73 20 75 73 65 20 62 72 6f 61 64 63 61 73 74 73 20 74 6f 20 | rtain.vendors.use.broadcasts.to. |
| dbf80 | 69 64 65 6e 74 69 66 79 20 74 68 65 69 72 20 65 71 75 69 70 6d 65 6e 74 20 77 69 74 68 69 6e 20 | identify.their.equipment.within. |
| dbfa0 | 6f 6e 65 20 65 74 68 65 72 6e 65 74 20 73 65 67 6d 65 6e 74 2e 20 55 6e 66 6f 72 74 75 6e 61 74 | one.ethernet.segment..Unfortunat |
| dbfc0 | 65 6c 79 20 69 66 20 79 6f 75 20 73 70 6c 69 74 20 79 6f 75 72 20 6e 65 74 77 6f 72 6b 20 77 69 | ely.if.you.split.your.network.wi |
| dbfe0 | 74 68 20 6d 75 6c 74 69 70 6c 65 20 56 4c 41 4e 73 20 79 6f 75 20 6c 6f 6f 73 65 20 74 68 65 20 | th.multiple.VLANs.you.loose.the. |
| dc000 | 61 62 69 6c 69 74 79 20 6f 66 20 69 64 65 6e 74 69 66 79 69 6e 67 20 79 6f 75 72 20 65 71 75 69 | ability.of.identifying.your.equi |
| dc020 | 70 6d 65 6e 74 2e 00 43 65 72 74 69 66 69 63 61 74 65 20 41 75 74 68 6f 72 69 74 79 20 28 43 41 | pment..Certificate.Authority.(CA |
| dc040 | 29 00 43 65 72 74 69 66 69 63 61 74 65 20 72 65 76 6f 63 61 74 69 6f 6e 20 6c 69 73 74 20 69 6e | ).Certificate.revocation.list.in |
| dc060 | 20 50 45 4d 20 66 6f 72 6d 61 74 2e 00 43 65 72 74 69 66 69 63 61 74 65 73 00 43 68 61 6e 67 65 | .PEM.format..Certificates.Change |
| dc080 | 20 73 79 73 74 65 6d 20 6b 65 79 62 6f 61 72 64 20 6c 61 79 6f 75 74 20 74 6f 20 67 69 76 65 6e | .system.keyboard.layout.to.given |
| dc0a0 | 20 6c 61 6e 67 75 61 67 65 2e 00 43 68 61 6e 67 65 20 74 68 65 20 64 65 66 61 75 6c 74 2d 61 63 | .language..Change.the.default-ac |
| dc0c0 | 74 69 6f 6e 20 77 69 74 68 20 74 68 69 73 20 73 65 74 74 69 6e 67 2e 00 43 68 61 6e 67 65 73 20 | tion.with.this.setting..Changes. |
| dc0e0 | 69 6e 20 42 47 50 20 70 6f 6c 69 63 69 65 73 20 72 65 71 75 69 72 65 20 74 68 65 20 42 47 50 20 | in.BGP.policies.require.the.BGP. |
| dc100 | 73 65 73 73 69 6f 6e 20 74 6f 20 62 65 20 63 6c 65 61 72 65 64 2e 20 43 6c 65 61 72 69 6e 67 20 | session.to.be.cleared..Clearing. |
| dc120 | 68 61 73 20 61 20 6c 61 72 67 65 20 6e 65 67 61 74 69 76 65 20 69 6d 70 61 63 74 20 6f 6e 20 6e | has.a.large.negative.impact.on.n |
| dc140 | 65 74 77 6f 72 6b 20 6f 70 65 72 61 74 69 6f 6e 73 2e 20 53 6f 66 74 20 72 65 63 6f 6e 66 69 67 | etwork.operations..Soft.reconfig |
| dc160 | 75 72 61 74 69 6f 6e 20 65 6e 61 62 6c 65 73 20 79 6f 75 20 74 6f 20 67 65 6e 65 72 61 74 65 20 | uration.enables.you.to.generate. |
| dc180 | 69 6e 62 6f 75 6e 64 20 75 70 64 61 74 65 73 20 66 72 6f 6d 20 61 20 6e 65 69 67 68 62 6f 72 2c | inbound.updates.from.a.neighbor, |
| dc1a0 | 20 63 68 61 6e 67 65 20 61 6e 64 20 61 63 74 69 76 61 74 65 20 42 47 50 20 70 6f 6c 69 63 69 65 | .change.and.activate.BGP.policie |
| dc1c0 | 73 20 77 69 74 68 6f 75 74 20 63 6c 65 61 72 69 6e 67 20 74 68 65 20 42 47 50 20 73 65 73 73 69 | s.without.clearing.the.BGP.sessi |
| dc1e0 | 6f 6e 2e 00 43 68 61 6e 67 65 73 20 74 6f 20 74 68 65 20 4e 41 54 20 73 79 73 74 65 6d 20 6f 6e | on..Changes.to.the.NAT.system.on |
| dc200 | 6c 79 20 61 66 66 65 63 74 20 6e 65 77 6c 79 20 65 73 74 61 62 6c 69 73 68 65 64 20 63 6f 6e 6e | ly.affect.newly.established.conn |
| dc220 | 65 63 74 69 6f 6e 73 2e 20 41 6c 72 65 61 64 79 20 65 73 74 61 62 6c 69 73 68 65 64 20 63 6f 6e | ections..Already.established.con |
| dc240 | 6e 65 63 74 69 6f 6e 73 20 61 72 65 20 6e 6f 74 20 61 66 66 65 63 74 65 64 2e 00 43 68 61 6e 67 | nections.are.not.affected..Chang |
| dc260 | 69 6e 67 20 74 68 65 20 6b 65 79 6d 61 70 20 6f 6e 6c 79 20 68 61 73 20 61 6e 20 65 66 66 65 63 | ing.the.keymap.only.has.an.effec |
| dc280 | 74 20 6f 6e 20 74 68 65 20 73 79 73 74 65 6d 20 63 6f 6e 73 6f 6c 65 2c 20 75 73 69 6e 67 20 53 | t.on.the.system.console,.using.S |
| dc2a0 | 53 48 20 6f 72 20 53 65 72 69 61 6c 20 72 65 6d 6f 74 65 20 61 63 63 65 73 73 20 74 6f 20 74 68 | SH.or.Serial.remote.access.to.th |
| dc2c0 | 65 20 64 65 76 69 63 65 20 69 73 20 6e 6f 74 20 61 66 66 65 63 74 65 64 20 61 73 20 74 68 65 20 | e.device.is.not.affected.as.the. |
| dc2e0 | 6b 65 79 62 6f 61 72 64 20 6c 61 79 6f 75 74 20 68 65 72 65 20 63 6f 72 72 65 73 70 6f 6e 64 73 | keyboard.layout.here.corresponds |
| dc300 | 20 74 6f 20 79 6f 75 72 20 61 63 63 65 73 73 20 73 79 73 74 65 6d 2e 00 43 68 61 6e 6e 65 6c 20 | .to.your.access.system..Channel. |
| dc320 | 6e 75 6d 62 65 72 20 28 49 45 45 45 20 38 30 32 2e 31 31 29 2c 20 66 6f 72 20 32 2e 34 47 68 7a | number.(IEEE.802.11),.for.2.4Ghz |
| dc340 | 20 28 38 30 32 2e 31 31 20 62 2f 67 2f 6e 29 20 63 68 61 6e 6e 65 6c 73 20 72 61 6e 67 65 20 66 | .(802.11.b/g/n).channels.range.f |
| dc360 | 72 6f 6d 20 31 2d 31 34 2e 20 4f 6e 20 35 47 68 7a 20 28 38 30 32 2e 31 31 20 61 2f 68 2f 6a 2f | rom.1-14..On.5Ghz.(802.11.a/h/j/ |
| dc380 | 6e 2f 61 63 29 20 63 68 61 6e 6e 65 6c 73 20 61 76 61 69 6c 61 62 6c 65 20 61 72 65 20 30 2c 20 | n/ac).channels.available.are.0,. |
| dc3a0 | 33 34 20 74 6f 20 31 37 33 00 43 68 61 6e 6e 65 6c 20 6e 75 6d 62 65 72 20 28 49 45 45 45 20 38 | 34.to.173.Channel.number.(IEEE.8 |
| dc3c0 | 30 32 2e 31 31 29 2c 20 66 6f 72 20 32 2e 34 47 68 7a 20 28 38 30 32 2e 31 31 20 62 2f 67 2f 6e | 02.11),.for.2.4Ghz.(802.11.b/g/n |
| dc3e0 | 29 20 63 68 61 6e 6e 65 6c 73 20 72 61 6e 67 65 20 66 72 6f 6d 20 31 2d 31 34 2e 20 4f 6e 20 35 | ).channels.range.from.1-14..On.5 |
| dc400 | 47 68 7a 20 28 38 30 32 2e 31 31 20 61 2f 68 2f 6a 2f 6e 2f 61 63 29 20 63 68 61 6e 6e 65 6c 73 | Ghz.(802.11.a/h/j/n/ac).channels |
| dc420 | 20 61 76 61 69 6c 61 62 6c 65 20 61 72 65 20 30 2c 20 33 34 20 74 6f 20 31 37 33 2e 20 4f 6e 20 | .available.are.0,.34.to.173..On. |
| dc440 | 36 47 48 7a 20 28 38 30 32 2e 31 31 20 61 78 29 20 63 68 61 6e 6e 65 6c 73 20 72 61 6e 67 65 20 | 6GHz.(802.11.ax).channels.range. |
| dc460 | 66 72 6f 6d 20 31 20 74 6f 20 32 33 33 2e 00 43 68 61 6e 6e 65 6c 20 6e 75 6d 62 65 72 20 28 49 | from.1.to.233..Channel.number.(I |
| dc480 | 45 45 45 20 38 30 32 2e 31 31 29 2c 20 66 6f 72 20 32 2e 34 47 68 7a 20 28 38 30 32 2e 31 31 20 | EEE.802.11),.for.2.4Ghz.(802.11. |
| dc4a0 | 62 2f 67 2f 6e 2f 61 78 29 20 63 68 61 6e 6e 65 6c 73 20 72 61 6e 67 65 20 66 72 6f 6d 20 31 2d | b/g/n/ax).channels.range.from.1- |
| dc4c0 | 31 34 2e 20 4f 6e 20 35 47 68 7a 20 28 38 30 32 2e 31 31 20 61 2f 68 2f 6a 2f 6e 2f 61 63 29 20 | 14..On.5Ghz.(802.11.a/h/j/n/ac). |
| dc4e0 | 63 68 61 6e 6e 65 6c 73 20 61 76 61 69 6c 61 62 6c 65 20 61 72 65 20 30 2c 20 33 34 20 74 6f 20 | channels.available.are.0,.34.to. |
| dc500 | 31 37 37 2e 20 4f 6e 20 36 47 48 7a 20 28 38 30 32 2e 31 31 20 61 78 29 20 63 68 61 6e 6e 65 6c | 177..On.6GHz.(802.11.ax).channel |
| dc520 | 73 20 72 61 6e 67 65 20 66 72 6f 6d 20 31 20 74 6f 20 32 33 33 2e 00 43 68 65 63 6b 20 69 66 20 | s.range.from.1.to.233..Check.if. |
| dc540 | 74 68 65 20 49 6e 74 65 6c c2 ae 20 51 41 54 20 64 65 76 69 63 65 20 69 73 20 75 70 20 61 6e 64 | the.Intel...QAT.device.is.up.and |
| dc560 | 20 72 65 61 64 79 20 74 6f 20 64 6f 20 74 68 65 20 6a 6f 62 2e 00 43 68 65 63 6b 20 73 74 61 74 | .ready.to.do.the.job..Check.stat |
| dc580 | 75 73 00 43 68 65 63 6b 20 74 68 65 20 6d 61 6e 79 20 70 61 72 61 6d 65 74 65 72 73 20 61 76 61 | us.Check.the.many.parameters.ava |
| dc5a0 | 69 6c 61 62 6c 65 20 66 6f 72 20 74 68 65 20 60 73 68 6f 77 20 69 70 76 36 20 72 6f 75 74 65 60 | ilable.for.the.`show.ipv6.route` |
| dc5c0 | 20 63 6f 6d 6d 61 6e 64 3a 00 43 68 65 63 6b 3a 00 43 68 65 63 6b 69 6e 67 20 63 6f 6e 6e 65 63 | .command:.Check:.Checking.connec |
| dc5e0 | 74 69 6f 6e 73 00 43 68 65 63 6b 73 00 43 68 65 63 6b 73 20 66 6f 72 20 74 68 65 20 65 78 69 73 | tions.Checks.Checks.for.the.exis |
| dc600 | 74 65 6e 63 65 20 6f 66 20 74 68 65 20 53 75 72 69 63 61 74 61 20 63 6f 6e 66 69 67 75 72 61 74 | tence.of.the.Suricata.configurat |
| dc620 | 69 6f 6e 20 66 69 6c 65 2c 20 75 70 64 61 74 65 73 20 74 68 65 20 73 65 72 76 69 63 65 2c 20 61 | ion.file,.updates.the.service,.a |
| dc640 | 6e 64 20 74 68 65 6e 20 72 65 73 74 61 72 74 73 20 69 74 2e 20 49 66 20 74 68 65 20 63 6f 6e 66 | nd.then.restarts.it..If.the.conf |
| dc660 | 69 67 75 72 61 74 69 6f 6e 20 66 69 6c 65 20 69 73 20 6e 6f 74 20 66 6f 75 6e 64 2c 20 61 20 6d | iguration.file.is.not.found,.a.m |
| dc680 | 65 73 73 61 67 65 20 69 6e 64 69 63 61 74 65 73 20 74 68 61 74 20 53 75 72 69 63 61 74 61 20 69 | essage.indicates.that.Suricata.i |
| dc6a0 | 73 20 6e 6f 74 20 63 6f 6e 66 69 67 75 72 65 64 2e 00 43 68 6f 6f 73 65 20 79 6f 75 72 20 60 60 | s.not.configured..Choose.your.`` |
| dc6c0 | 64 69 72 65 63 74 6f 72 79 60 60 20 6c 6f 63 61 74 69 6f 6e 20 63 61 72 65 66 75 6c 6c 79 20 6f | directory``.location.carefully.o |
| dc6e0 | 72 20 79 6f 75 20 77 69 6c 6c 20 6c 6f 6f 73 65 20 74 68 65 20 63 6f 6e 74 65 6e 74 20 6f 6e 20 | r.you.will.loose.the.content.on. |
| dc700 | 69 6d 61 67 65 20 75 70 67 72 61 64 65 73 2e 20 41 6e 79 20 64 69 72 65 63 74 6f 72 79 20 75 6e | image.upgrades..Any.directory.un |
| dc720 | 64 65 72 20 60 60 2f 63 6f 6e 66 69 67 60 60 20 69 73 20 73 61 76 65 20 61 74 20 74 68 69 73 20 | der.``/config``.is.save.at.this. |
| dc740 | 77 69 6c 6c 20 62 65 20 6d 69 67 72 61 74 65 64 2e 00 43 69 73 63 6f 20 43 61 74 61 6c 79 73 74 | will.be.migrated..Cisco.Catalyst |
| dc760 | 00 43 69 73 63 6f 20 61 6e 64 20 41 6c 6c 69 65 64 20 54 65 6c 65 73 79 6e 20 63 61 6c 6c 20 69 | .Cisco.and.Allied.Telesyn.call.i |
| dc780 | 74 20 50 72 69 76 61 74 65 20 56 4c 41 4e 00 43 6c 61 6d 70 20 4d 53 53 20 66 6f 72 20 61 20 73 | t.Private.VLAN.Clamp.MSS.for.a.s |
| dc7a0 | 70 65 63 69 66 69 63 20 49 50 00 43 6c 61 73 73 20 74 72 65 61 74 6d 65 6e 74 00 43 6c 61 73 73 | pecific.IP.Class.treatment.Class |
| dc7c0 | 65 73 00 43 6c 61 73 73 6c 65 73 73 20 73 74 61 74 69 63 20 72 6f 75 74 65 00 43 6c 65 61 72 20 | es.Classless.static.route.Clear. |
| dc7e0 | 61 6c 6c 20 42 47 50 20 65 78 74 63 6f 6d 6d 75 6e 69 74 69 65 73 2e 00 43 6c 69 65 6e 74 00 43 | all.BGP.extcommunities..Client.C |
| dc800 | 6c 69 65 6e 74 20 41 64 64 72 65 73 73 20 50 6f 6f 6c 73 00 43 6c 69 65 6e 74 20 41 75 74 68 65 | lient.Address.Pools.Client.Authe |
| dc820 | 6e 74 69 63 61 74 69 6f 6e 00 43 6c 69 65 6e 74 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 43 | ntication.Client.Configuration.C |
| dc840 | 6c 69 65 6e 74 20 49 50 20 50 6f 6f 6c 20 41 64 76 61 6e 63 65 64 20 4f 70 74 69 6f 6e 73 00 43 | lient.IP.Pool.Advanced.Options.C |
| dc860 | 6c 69 65 6e 74 20 49 50 20 61 64 64 72 65 73 73 65 73 20 77 69 6c 6c 20 62 65 20 70 72 6f 76 69 | lient.IP.addresses.will.be.provi |
| dc880 | 64 65 64 20 66 72 6f 6d 20 70 6f 6f 6c 20 60 31 39 32 2e 30 2e 32 2e 30 2f 32 35 60 00 43 6c 69 | ded.from.pool.`192.0.2.0/25`.Cli |
| dc8a0 | 65 6e 74 20 53 69 64 65 00 43 6c 69 65 6e 74 20 53 69 64 65 20 3a 00 43 6c 69 65 6e 74 20 63 6f | ent.Side.Client.Side.:.Client.co |
| dc8c0 | 6e 66 69 67 75 72 61 74 69 6f 6e 00 43 6c 69 65 6e 74 20 64 6f 6d 61 69 6e 20 6e 61 6d 65 00 43 | nfiguration.Client.domain.name.C |
| dc8e0 | 6c 69 65 6e 74 20 64 6f 6d 61 69 6e 20 73 65 61 72 63 68 00 43 6c 69 65 6e 74 20 69 73 6f 6c 61 | lient.domain.search.Client.isola |
| dc900 | 74 69 6f 6e 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 70 72 65 76 65 6e 74 20 6c 6f 77 2d | tion.can.be.used.to.prevent.low- |
| dc920 | 6c 65 76 65 6c 20 62 72 69 64 67 69 6e 67 20 6f 66 20 66 72 61 6d 65 73 20 62 65 74 77 65 65 6e | level.bridging.of.frames.between |
| dc940 | 20 61 73 73 6f 63 69 61 74 65 64 20 73 74 61 74 69 6f 6e 73 20 69 6e 20 74 68 65 20 42 53 53 2e | .associated.stations.in.the.BSS. |
| dc960 | 00 43 6c 69 65 6e 74 3a 00 43 6c 69 65 6e 74 73 20 61 72 65 20 69 64 65 6e 74 69 66 69 65 64 20 | .Client:.Clients.are.identified. |
| dc980 | 62 79 20 74 68 65 20 43 4e 20 66 69 65 6c 64 20 6f 66 20 74 68 65 69 72 20 78 2e 35 30 39 20 63 | by.the.CN.field.of.their.x.509.c |
| dc9a0 | 65 72 74 69 66 69 63 61 74 65 73 2c 20 69 6e 20 74 68 69 73 20 65 78 61 6d 70 6c 65 20 74 68 65 | ertificates,.in.this.example.the |
| dc9c0 | 20 43 4e 20 69 73 20 60 60 63 6c 69 65 6e 74 30 60 60 3a 00 43 6c 69 65 6e 74 73 20 72 65 63 65 | .CN.is.``client0``:.Clients.rece |
| dc9e0 | 69 76 69 6e 67 20 61 64 76 65 72 74 69 73 65 20 6d 65 73 73 61 67 65 73 20 66 72 6f 6d 20 6d 75 | iving.advertise.messages.from.mu |
| dca00 | 6c 74 69 70 6c 65 20 73 65 72 76 65 72 73 20 63 68 6f 6f 73 65 20 74 68 65 20 73 65 72 76 65 72 | ltiple.servers.choose.the.server |
| dca20 | 20 77 69 74 68 20 74 68 65 20 68 69 67 68 65 73 74 20 70 72 65 66 65 72 65 6e 63 65 20 76 61 6c | .with.the.highest.preference.val |
| dca40 | 75 65 2e 20 54 68 65 20 72 61 6e 67 65 20 66 6f 72 20 74 68 69 73 20 76 61 6c 75 65 20 69 73 20 | ue..The.range.for.this.value.is. |
| dca60 | 60 60 30 2e 2e 2e 32 35 35 60 60 2e 00 43 6c 6f 63 6b 20 64 61 65 6d 6f 6e 00 43 6f 6d 6d 61 6e | ``0...255``..Clock.daemon.Comman |
| dca80 | 64 20 63 6f 6d 70 6c 65 74 69 6f 6e 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 6c 69 73 74 | d.completion.can.be.used.to.list |
| dcaa0 | 20 61 76 61 69 6c 61 62 6c 65 20 74 69 6d 65 20 7a 6f 6e 65 73 2e 20 54 68 65 20 61 64 6a 75 73 | .available.time.zones..The.adjus |
| dcac0 | 74 6d 65 6e 74 20 66 6f 72 20 64 61 79 6c 69 67 68 74 20 74 69 6d 65 20 77 69 6c 6c 20 74 61 6b | tment.for.daylight.time.will.tak |
| dcae0 | 65 20 70 6c 61 63 65 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 62 61 73 65 64 20 6f 6e 20 74 | e.place.automatically.based.on.t |
| dcb00 | 68 65 20 74 69 6d 65 20 6f 66 20 79 65 61 72 2e 00 43 6f 6d 6d 61 6e 64 20 66 6f 72 20 64 69 73 | he.time.of.year..Command.for.dis |
| dcb20 | 61 62 6c 69 6e 67 20 61 20 72 75 6c 65 20 62 75 74 20 6b 65 65 70 20 69 74 20 69 6e 20 74 68 65 | abling.a.rule.but.keep.it.in.the |
| dcb40 | 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 43 6f 6d 6d 61 6e 64 20 73 68 6f 75 6c 64 20 70 | .configuration..Command.should.p |
| dcb60 | 72 6f 62 61 62 6c 79 20 62 65 20 65 78 74 65 6e 64 65 64 20 74 6f 20 6c 69 73 74 20 61 6c 73 6f | robably.be.extended.to.list.also |
| dcb80 | 20 74 68 65 20 72 65 61 6c 20 69 6e 74 65 72 66 61 63 65 73 20 61 73 73 69 67 6e 65 64 20 74 6f | .the.real.interfaces.assigned.to |
| dcba0 | 20 74 68 69 73 20 6f 6e 65 20 56 52 46 20 74 6f 20 67 65 74 20 61 20 62 65 74 74 65 72 20 6f 76 | .this.one.VRF.to.get.a.better.ov |
| dcbc0 | 65 72 76 69 65 77 2e 00 43 6f 6d 6d 61 6e 64 20 75 73 65 64 20 74 6f 20 75 70 64 61 74 65 20 47 | erview..Command.used.to.update.G |
| dcbe0 | 65 6f 49 50 20 64 61 74 61 62 61 73 65 20 61 6e 64 20 66 69 72 65 77 61 6c 6c 20 73 65 74 73 2e | eoIP.database.and.firewall.sets. |
| dcc00 | 00 43 6f 6d 6d 61 6e 64 73 00 43 6f 6d 6d 61 6e 64 73 20 75 73 65 64 20 66 6f 72 20 74 68 69 73 | .Commands.Commands.used.for.this |
| dcc20 | 20 74 61 73 6b 20 61 72 65 3a 00 43 6f 6d 6d 6f 6e 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2c | .task.are:.Common.configuration, |
| dcc40 | 20 76 61 6c 69 64 20 66 6f 72 20 62 6f 74 68 20 70 72 69 6d 61 72 79 20 61 6e 64 20 73 65 63 6f | .valid.for.both.primary.and.seco |
| dcc60 | 6e 64 61 72 79 20 6e 6f 64 65 2e 00 43 6f 6d 6d 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 63 6f 6e | ndary.node..Common.interface.con |
| dcc80 | 66 69 67 75 72 61 74 69 6f 6e 00 43 6f 6d 6d 6f 6e 20 70 61 72 61 6d 65 74 65 72 73 00 43 6f 6d | figuration.Common.parameters.Com |
| dcca0 | 70 72 65 73 73 69 6f 6e 20 69 73 20 67 65 6e 65 72 61 6c 6c 79 20 6e 6f 74 20 72 65 63 6f 6d 6d | pression.is.generally.not.recomm |
| dccc0 | 65 6e 64 65 64 2e 20 56 50 4e 20 74 75 6e 6e 65 6c 73 20 77 68 69 63 68 20 75 73 65 20 63 6f 6d | ended..VPN.tunnels.which.use.com |
| dcce0 | 70 72 65 73 73 69 6f 6e 20 61 72 65 20 73 75 73 63 65 70 74 69 62 6c 65 20 74 6f 20 74 68 65 20 | pression.are.susceptible.to.the. |
| dcd00 | 56 4f 52 41 4c 43 45 20 61 74 74 61 63 6b 20 76 65 63 74 6f 72 2e 20 45 6e 61 62 6c 65 20 63 6f | VORALCE.attack.vector..Enable.co |
| dcd20 | 6d 70 72 65 73 73 69 6f 6e 20 69 66 20 6e 65 65 64 65 64 2e 00 43 6f 6e 63 6c 75 73 69 6f 6e 00 | mpression.if.needed..Conclusion. |
| dcd40 | 43 6f 6e 66 65 64 65 72 61 74 69 6f 6e 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 43 6f 6e 66 | Confederation.Configuration.Conf |
| dcd60 | 69 64 65 6e 74 69 61 6c 69 74 79 20 e2 80 93 20 45 6e 63 72 79 70 74 69 6f 6e 20 6f 66 20 70 61 | identiality.....Encryption.of.pa |
| dcd80 | 63 6b 65 74 73 20 74 6f 20 70 72 65 76 65 6e 74 20 73 6e 6f 6f 70 69 6e 67 20 62 79 20 61 6e 20 | ckets.to.prevent.snooping.by.an. |
| dcda0 | 75 6e 61 75 74 68 6f 72 69 7a 65 64 20 73 6f 75 72 63 65 2e 00 43 6f 6e 66 69 67 20 53 79 6e 63 | unauthorized.source..Config.Sync |
| dcdc0 | 00 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 45 78 61 | .Configuration.Configuration.Exa |
| dcde0 | 6d 70 6c 65 00 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 45 78 61 6d 70 6c 65 73 00 43 6f 6e 66 | mple.Configuration.Examples.Conf |
| dce00 | 69 67 75 72 61 74 69 6f 6e 20 47 75 69 64 65 00 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 4f 70 | iguration.Guide.Configuration.Op |
| dce20 | 74 69 6f 6e 73 00 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 73 20 63 6f 76 | tions.Configuration.commands.cov |
| dce40 | 65 72 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 3a 00 43 6f 6e 66 69 67 75 72 61 74 | ered.in.this.section:.Configurat |
| dce60 | 69 6f 6e 20 63 6f 6d 6d 61 6e 64 73 20 66 6f 72 20 74 68 65 20 70 72 69 76 61 74 65 20 61 6e 64 | ion.commands.for.the.private.and |
| dce80 | 20 70 75 62 6c 69 63 20 6b 65 79 20 77 69 6c 6c 20 62 65 20 64 69 73 70 6c 61 79 65 64 20 6f 6e | .public.key.will.be.displayed.on |
| dcea0 | 20 74 68 65 20 73 63 72 65 65 6e 20 77 68 69 63 68 20 6e 65 65 64 73 20 74 6f 20 62 65 20 73 65 | .the.screen.which.needs.to.be.se |
| dcec0 | 74 20 6f 6e 20 74 68 65 20 72 6f 75 74 65 72 20 66 69 72 73 74 2e 20 4e 6f 74 65 20 74 68 65 20 | t.on.the.router.first..Note.the. |
| dcee0 | 63 6f 6d 6d 61 6e 64 20 77 69 74 68 20 74 68 65 20 70 75 62 6c 69 63 20 6b 65 79 20 28 73 65 74 | command.with.the.public.key.(set |
| dcf00 | 20 70 6b 69 20 6b 65 79 2d 70 61 69 72 20 69 70 73 65 63 2d 4c 45 46 54 20 70 75 62 6c 69 63 20 | .pki.key-pair.ipsec-LEFT.public. |
| dcf20 | 6b 65 79 20 27 4d 49 49 42 49 6a 41 4e 42 67 6b 71 68 2e 2e 2e 27 29 2e 20 54 68 65 6e 20 64 6f | key.'MIIBIjANBgkqh...')..Then.do |
| dcf40 | 20 74 68 65 20 73 61 6d 65 20 6f 6e 20 74 68 65 20 6f 70 70 6f 73 69 74 65 20 72 6f 75 74 65 72 | .the.same.on.the.opposite.router |
| dcf60 | 3a 00 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 73 20 77 69 6c 6c 20 64 69 | :.Configuration.commands.will.di |
| dcf80 | 73 70 6c 61 79 2e 20 4e 6f 74 65 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 77 69 74 68 20 74 68 65 | splay..Note.the.command.with.the |
| dcfa0 | 20 70 75 62 6c 69 63 20 6b 65 79 20 28 73 65 74 20 70 6b 69 20 6b 65 79 2d 70 61 69 72 20 69 70 | .public.key.(set.pki.key-pair.ip |
| dcfc0 | 73 65 63 2d 4c 45 46 54 20 70 75 62 6c 69 63 20 6b 65 79 20 27 4d 49 49 42 49 6a 41 4e 42 67 6b | sec-LEFT.public.key.'MIIBIjANBgk |
| dcfe0 | 71 68 2e 2e 2e 27 29 2e 20 54 68 65 6e 20 64 6f 20 74 68 65 20 73 61 6d 65 20 6f 6e 20 74 68 65 | qh...')..Then.do.the.same.on.the |
| dd000 | 20 6f 70 70 6f 73 69 74 65 20 72 6f 75 74 65 72 3a 00 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 | .opposite.router:.Configuration. |
| dd020 | 65 78 61 6d 70 6c 65 3a 00 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 6f 72 20 74 68 65 73 65 | example:.Configuration.for.these |
| dd040 | 20 65 78 70 6f 72 74 65 64 20 72 6f 75 74 65 73 20 6d 75 73 74 2c 20 61 74 20 61 20 6d 69 6e 69 | .exported.routes.must,.at.a.mini |
| dd060 | 6d 75 6d 2c 20 73 70 65 63 69 66 79 20 74 68 65 73 65 20 74 77 6f 20 70 61 72 61 6d 65 74 65 72 | mum,.specify.these.two.parameter |
| dd080 | 73 2e 00 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 66 20 3a 72 65 66 3a 60 72 6f 75 74 69 6e | s..Configuration.of.:ref:`routin |
| dd0a0 | 67 2d 73 74 61 74 69 63 60 00 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 66 20 61 20 44 48 43 | g-static`.Configuration.of.a.DHC |
| dd0c0 | 50 20 48 41 20 70 61 69 72 3a 00 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 66 20 61 20 44 48 | P.HA.pair:.Configuration.of.a.DH |
| dd0e0 | 43 50 20 66 61 69 6c 6f 76 65 72 20 70 61 69 72 00 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f | CP.failover.pair.Configuration.o |
| dd100 | 66 20 72 6f 75 74 65 20 6c 65 61 6b 69 6e 67 20 62 65 74 77 65 65 6e 20 61 20 75 6e 69 63 61 73 | f.route.leaking.between.a.unicas |
| dd120 | 74 20 56 52 46 20 52 49 42 20 61 6e 64 20 74 68 65 20 56 50 4e 20 53 41 46 49 20 52 49 42 20 6f | t.VRF.RIB.and.the.VPN.SAFI.RIB.o |
| dd140 | 66 20 74 68 65 20 64 65 66 61 75 6c 74 20 56 52 46 20 69 73 20 61 63 63 6f 6d 70 6c 69 73 68 65 | f.the.default.VRF.is.accomplishe |
| dd160 | 64 20 76 69 61 20 63 6f 6d 6d 61 6e 64 73 20 69 6e 20 74 68 65 20 63 6f 6e 74 65 78 74 20 6f 66 | d.via.commands.in.the.context.of |
| dd180 | 20 61 20 56 52 46 20 61 64 64 72 65 73 73 2d 66 61 6d 69 6c 79 2e 00 43 6f 6e 66 69 67 75 72 61 | .a.VRF.address-family..Configura |
| dd1a0 | 74 69 6f 6e 20 6f 66 20 74 68 65 20 6c 6f 67 67 69 6e 67 20 66 69 6c 65 2e 00 43 6f 6e 66 69 67 | tion.of.the.logging.file..Config |
| dd1c0 | 75 72 61 74 69 6f 6e 20 72 65 73 79 6e 63 68 72 6f 6e 69 7a 61 74 69 6f 6e 2e 20 57 69 74 68 20 | uration.resynchronization..With. |
| dd1e0 | 74 68 65 20 63 75 72 72 65 6e 74 20 69 6d 70 6c 65 6d 65 6e 74 61 74 69 6f 6e 20 6f 66 20 60 73 | the.current.implementation.of.`s |
| dd200 | 65 72 76 69 63 65 20 63 6f 6e 66 69 67 2d 73 79 6e 63 60 2c 20 74 68 65 20 73 65 63 6f 6e 64 61 | ervice.config-sync`,.the.seconda |
| dd220 | 72 79 20 6e 6f 64 65 20 6d 75 73 74 20 62 65 20 6f 6e 6c 69 6e 65 2e 00 43 6f 6e 66 69 67 75 72 | ry.node.must.be.online..Configur |
| dd240 | 61 74 69 6f 6e 20 73 79 6e 63 68 72 6f 6e 69 7a 61 74 69 6f 6e 20 28 63 6f 6e 66 69 67 20 73 79 | ation.synchronization.(config.sy |
| dd260 | 6e 63 29 20 69 73 20 61 20 66 65 61 74 75 72 65 20 6f 66 20 56 79 4f 53 20 74 68 61 74 20 70 65 | nc).is.a.feature.of.VyOS.that.pe |
| dd280 | 72 6d 69 74 73 20 73 79 6e 63 68 72 6f 6e 69 7a 61 74 69 6f 6e 20 6f 66 20 74 68 65 20 63 6f 6e | rmits.synchronization.of.the.con |
| dd2a0 | 66 69 67 75 72 61 74 69 6f 6e 20 6f 66 20 6f 6e 65 20 56 79 4f 53 20 72 6f 75 74 65 72 20 74 6f | figuration.of.one.VyOS.router.to |
| dd2c0 | 20 61 6e 6f 74 68 65 72 20 69 6e 20 61 20 6e 65 74 77 6f 72 6b 2e 00 43 6f 6e 66 69 67 75 72 65 | .another.in.a.network..Configure |
| dd2e0 | 00 43 6f 6e 66 69 67 75 72 65 20 3a 61 62 62 72 3a 60 4d 54 55 20 28 4d 61 78 69 6d 75 6d 20 54 | .Configure.:abbr:`MTU.(Maximum.T |
| dd300 | 72 61 6e 73 6d 69 73 73 69 6f 6e 20 55 6e 69 74 29 60 20 6f 6e 20 67 69 76 65 6e 20 60 3c 69 6e | ransmission.Unit)`.on.given.`<in |
| dd320 | 74 65 72 66 61 63 65 3e 60 2e 20 49 74 20 69 73 20 74 68 65 20 73 69 7a 65 20 28 69 6e 20 62 79 | terface>`..It.is.the.size.(in.by |
| dd340 | 74 65 73 29 20 6f 66 20 74 68 65 20 6c 61 72 67 65 73 74 20 65 74 68 65 72 6e 65 74 20 66 72 61 | tes).of.the.largest.ethernet.fra |
| dd360 | 6d 65 20 73 65 6e 74 20 6f 6e 20 74 68 69 73 20 6c 69 6e 6b 2e 00 43 6f 6e 66 69 67 75 72 65 20 | me.sent.on.this.link..Configure. |
| dd380 | 42 46 44 00 43 6f 6e 66 69 67 75 72 65 20 44 4e 53 20 60 3c 72 65 63 6f 72 64 3e 60 20 77 68 69 | BFD.Configure.DNS.`<record>`.whi |
| dd3a0 | 63 68 20 73 68 6f 75 6c 64 20 62 65 20 75 70 64 61 74 65 64 2e 20 54 68 69 73 20 63 61 6e 20 62 | ch.should.be.updated..This.can.b |
| dd3c0 | 65 20 73 65 74 20 6d 75 6c 74 69 70 6c 65 20 74 69 6d 65 73 2e 00 43 6f 6e 66 69 67 75 72 65 20 | e.set.multiple.times..Configure. |
| dd3e0 | 44 4e 53 20 60 3c 7a 6f 6e 65 3e 60 20 74 6f 20 62 65 20 75 70 64 61 74 65 64 2e 00 43 6f 6e 66 | DNS.`<zone>`.to.be.updated..Conf |
| dd400 | 69 67 75 72 65 20 47 45 4e 45 56 45 20 74 75 6e 6e 65 6c 20 66 61 72 20 65 6e 64 2f 72 65 6d 6f | igure.GENEVE.tunnel.far.end/remo |
| dd420 | 74 65 20 74 75 6e 6e 65 6c 20 65 6e 64 70 6f 69 6e 74 2e 00 43 6f 6e 66 69 67 75 72 65 20 47 72 | te.tunnel.endpoint..Configure.Gr |
| dd440 | 61 63 65 66 75 6c 20 52 65 73 74 61 72 74 20 3a 72 66 63 3a 60 33 36 32 33 60 20 68 65 6c 70 65 | aceful.Restart.:rfc:`3623`.helpe |
| dd460 | 72 20 73 75 70 70 6f 72 74 2e 20 42 79 20 64 65 66 61 75 6c 74 2c 20 68 65 6c 70 65 72 20 73 75 | r.support..By.default,.helper.su |
| dd480 | 70 70 6f 72 74 20 69 73 20 64 69 73 61 62 6c 65 64 20 66 6f 72 20 61 6c 6c 20 6e 65 69 67 68 62 | pport.is.disabled.for.all.neighb |
| dd4a0 | 6f 75 72 73 2e 20 54 68 69 73 20 63 6f 6e 66 69 67 20 65 6e 61 62 6c 65 73 2f 64 69 73 61 62 6c | ours..This.config.enables/disabl |
| dd4c0 | 65 73 20 68 65 6c 70 65 72 20 73 75 70 70 6f 72 74 20 6f 6e 20 74 68 69 73 20 72 6f 75 74 65 72 | es.helper.support.on.this.router |
| dd4e0 | 20 66 6f 72 20 61 6c 6c 20 6e 65 69 67 68 62 6f 75 72 73 2e 00 43 6f 6e 66 69 67 75 72 65 20 47 | .for.all.neighbours..Configure.G |
| dd500 | 72 61 63 65 66 75 6c 20 52 65 73 74 61 72 74 20 3a 72 66 63 3a 60 33 36 32 33 60 20 72 65 73 74 | raceful.Restart.:rfc:`3623`.rest |
| dd520 | 61 72 74 69 6e 67 20 73 75 70 70 6f 72 74 2e 20 57 68 65 6e 20 65 6e 61 62 6c 65 64 2c 20 74 68 | arting.support..When.enabled,.th |
| dd540 | 65 20 64 65 66 61 75 6c 74 20 67 72 61 63 65 20 70 65 72 69 6f 64 20 69 73 20 31 32 30 20 73 65 | e.default.grace.period.is.120.se |
| dd560 | 63 6f 6e 64 73 2e 00 43 6f 6e 66 69 67 75 72 65 20 49 43 4d 50 20 74 68 72 65 73 68 6f 6c 64 20 | conds..Configure.ICMP.threshold. |
| dd580 | 70 61 72 61 6d 65 74 65 72 73 2e 00 43 6f 6e 66 69 67 75 72 65 20 49 50 20 61 64 64 72 65 73 73 | parameters..Configure.IP.address |
| dd5a0 | 20 6f 66 20 74 68 65 20 44 48 43 50 20 60 3c 73 65 72 76 65 72 3e 60 20 77 68 69 63 68 20 77 69 | .of.the.DHCP.`<server>`.which.wi |
| dd5c0 | 6c 6c 20 68 61 6e 64 6c 65 20 74 68 65 20 72 65 6c 61 79 65 64 20 70 61 63 6b 65 74 73 2e 00 43 | ll.handle.the.relayed.packets..C |
| dd5e0 | 6f 6e 66 69 67 75 72 65 20 52 41 44 49 55 53 20 60 3c 73 65 72 76 65 72 3e 60 20 61 6e 64 20 69 | onfigure.RADIUS.`<server>`.and.i |
| dd600 | 74 73 20 72 65 71 75 69 72 65 64 20 70 6f 72 74 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 | ts.required.port.for.authenticat |
| dd620 | 69 6f 6e 20 72 65 71 75 65 73 74 73 2e 00 43 6f 6e 66 69 67 75 72 65 20 52 41 44 49 55 53 20 60 | ion.requests..Configure.RADIUS.` |
| dd640 | 3c 73 65 72 76 65 72 3e 60 20 61 6e 64 20 69 74 73 20 72 65 71 75 69 72 65 64 20 73 68 61 72 65 | <server>`.and.its.required.share |
| dd660 | 64 20 60 3c 73 65 63 72 65 74 3e 60 20 66 6f 72 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6e 67 20 77 | d.`<secret>`.for.communicating.w |
| dd680 | 69 74 68 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 2e 00 43 6f 6e 66 69 67 75 72 65 | ith.the.RADIUS.server..Configure |
| dd6a0 | 20 53 4e 41 54 20 72 75 6c 65 20 28 34 30 29 20 74 6f 20 6f 6e 6c 79 20 4e 41 54 20 70 61 63 6b | .SNAT.rule.(40).to.only.NAT.pack |
| dd6c0 | 65 74 73 20 77 69 74 68 20 61 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 6f | ets.with.a.destination.address.o |
| dd6e0 | 66 20 31 39 32 2e 30 2e 32 2e 31 2e 00 43 6f 6e 66 69 67 75 72 65 20 54 43 50 20 74 68 72 65 73 | f.192.0.2.1..Configure.TCP.thres |
| dd700 | 68 6f 6c 64 20 70 61 72 61 6d 65 74 65 72 73 00 43 6f 6e 66 69 67 75 72 65 20 55 44 50 20 74 68 | hold.parameters.Configure.UDP.th |
| dd720 | 72 65 73 68 6f 6c 64 20 70 61 72 61 6d 65 74 65 72 73 00 43 6f 6e 66 69 67 75 72 65 20 60 3c 6d | reshold.parameters.Configure.`<m |
| dd740 | 65 73 73 61 67 65 3e 60 20 77 68 69 63 68 20 69 73 20 73 68 6f 77 6e 20 61 66 74 65 72 20 75 73 | essage>`.which.is.shown.after.us |
| dd760 | 65 72 20 68 61 73 20 6c 6f 67 67 65 64 20 69 6e 20 74 6f 20 74 68 65 20 73 79 73 74 65 6d 2e 00 | er.has.logged.in.to.the.system.. |
| dd780 | 43 6f 6e 66 69 67 75 72 65 20 60 3c 6d 65 73 73 61 67 65 3e 60 20 77 68 69 63 68 20 69 73 20 73 | Configure.`<message>`.which.is.s |
| dd7a0 | 68 6f 77 6e 20 64 75 72 69 6e 67 20 53 53 48 20 63 6f 6e 6e 65 63 74 20 61 6e 64 20 62 65 66 6f | hown.during.SSH.connect.and.befo |
| dd7c0 | 72 65 20 61 20 75 73 65 72 20 69 73 20 6c 6f 67 67 65 64 20 69 6e 2e 00 43 6f 6e 66 69 67 75 72 | re.a.user.is.logged.in..Configur |
| dd7e0 | 65 20 60 3c 70 61 73 73 77 6f 72 64 3e 60 20 75 73 65 64 20 77 68 65 6e 20 61 75 74 68 65 6e 74 | e.`<password>`.used.when.authent |
| dd800 | 69 63 61 74 69 6e 67 20 74 68 65 20 75 70 64 61 74 65 20 72 65 71 75 65 73 74 20 66 6f 72 20 44 | icating.the.update.request.for.D |
| dd820 | 79 6e 44 4e 53 20 73 65 72 76 69 63 65 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 60 3c 73 65 | ynDNS.service.identified.by.`<se |
| dd840 | 72 76 69 63 65 2d 6e 61 6d 65 3e 60 2e 00 43 6f 6e 66 69 67 75 72 65 20 60 3c 70 61 73 73 77 6f | rvice-name>`..Configure.`<passwo |
| dd860 | 72 64 3e 60 20 75 73 65 64 20 77 68 65 6e 20 61 75 74 68 65 6e 74 69 63 61 74 69 6e 67 20 74 68 | rd>`.used.when.authenticating.th |
| dd880 | 65 20 75 70 64 61 74 65 20 72 65 71 75 65 73 74 20 66 6f 72 20 44 79 6e 44 4e 53 20 73 65 72 76 | e.update.request.for.DynDNS.serv |
| dd8a0 | 69 63 65 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 60 3c 73 65 72 76 69 63 65 3e 60 2e 00 43 | ice.identified.by.`<service>`..C |
| dd8c0 | 6f 6e 66 69 67 75 72 65 20 60 3c 75 73 65 72 6e 61 6d 65 3e 60 20 75 73 65 64 20 77 68 65 6e 20 | onfigure.`<username>`.used.when. |
| dd8e0 | 61 75 74 68 65 6e 74 69 63 61 74 69 6e 67 20 74 68 65 20 75 70 64 61 74 65 20 72 65 71 75 65 73 | authenticating.the.update.reques |
| dd900 | 74 20 66 6f 72 20 44 79 6e 44 4e 53 20 73 65 72 76 69 63 65 20 69 64 65 6e 74 69 66 69 65 64 20 | t.for.DynDNS.service.identified. |
| dd920 | 62 79 20 60 3c 73 65 72 76 69 63 65 2d 6e 61 6d 65 3e 60 2e 00 43 6f 6e 66 69 67 75 72 65 20 60 | by.`<service-name>`..Configure.` |
| dd940 | 3c 75 73 65 72 6e 61 6d 65 3e 60 20 75 73 65 64 20 77 68 65 6e 20 61 75 74 68 65 6e 74 69 63 61 | <username>`.used.when.authentica |
| dd960 | 74 69 6e 67 20 74 68 65 20 75 70 64 61 74 65 20 72 65 71 75 65 73 74 20 66 6f 72 20 44 79 6e 44 | ting.the.update.request.for.DynD |
| dd980 | 4e 53 20 73 65 72 76 69 63 65 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 60 3c 73 65 72 76 69 | NS.service.identified.by.`<servi |
| dd9a0 | 63 65 3e 60 2e 20 46 6f 72 20 4e 61 6d 65 63 68 65 61 70 2c 20 73 65 74 20 74 68 65 20 3c 64 6f | ce>`..For.Namecheap,.set.the.<do |
| dd9c0 | 6d 61 69 6e 3e 20 79 6f 75 20 77 69 73 68 20 74 6f 20 75 70 64 61 74 65 2e 00 43 6f 6e 66 69 67 | main>.you.wish.to.update..Config |
| dd9e0 | 75 72 65 20 61 20 55 52 4c 20 74 68 61 74 20 63 6f 6e 74 61 69 6e 73 20 69 6e 66 6f 72 6d 61 74 | ure.a.URL.that.contains.informat |
| dda00 | 69 6f 6e 20 61 62 6f 75 74 20 69 6d 61 67 65 73 2e 00 43 6f 6e 66 69 67 75 72 65 20 61 20 73 46 | ion.about.images..Configure.a.sF |
| dda20 | 6c 6f 77 20 61 67 65 6e 74 20 61 64 64 72 65 73 73 2e 20 49 74 20 63 61 6e 20 62 65 20 49 50 76 | low.agent.address..It.can.be.IPv |
| dda40 | 34 20 6f 72 20 49 50 76 36 20 61 64 64 72 65 73 73 2c 20 62 75 74 20 79 6f 75 20 6d 75 73 74 20 | 4.or.IPv6.address,.but.you.must. |
| dda60 | 73 65 74 20 74 68 65 20 73 61 6d 65 20 70 72 6f 74 6f 63 6f 6c 2c 20 77 68 69 63 68 20 69 73 20 | set.the.same.protocol,.which.is. |
| dda80 | 75 73 65 64 20 66 6f 72 20 73 46 6c 6f 77 20 63 6f 6c 6c 65 63 74 6f 72 20 61 64 64 72 65 73 73 | used.for.sFlow.collector.address |
| ddaa0 | 65 73 2e 20 42 79 20 64 65 66 61 75 6c 74 2c 20 75 73 69 6e 67 20 72 6f 75 74 65 72 2d 69 64 20 | es..By.default,.using.router-id. |
| ddac0 | 66 72 6f 6d 20 42 47 50 20 6f 72 20 4f 53 50 46 20 70 72 6f 74 6f 63 6f 6c 2c 20 6f 72 20 74 68 | from.BGP.or.OSPF.protocol,.or.th |
| ddae0 | 65 20 70 72 69 6d 61 72 79 20 49 50 20 61 64 64 72 65 73 73 20 66 72 6f 6d 20 74 68 65 20 66 69 | e.primary.IP.address.from.the.fi |
| ddb00 | 72 73 74 20 69 6e 74 65 72 66 61 63 65 2e 00 43 6f 6e 66 69 67 75 72 65 20 61 20 73 74 61 74 69 | rst.interface..Configure.a.stati |
| ddb20 | 63 20 72 6f 75 74 65 20 66 6f 72 20 3c 73 75 62 6e 65 74 3e 20 75 73 69 6e 67 20 67 61 74 65 77 | c.route.for.<subnet>.using.gatew |
| ddb40 | 61 79 20 3c 61 64 64 72 65 73 73 3e 20 2c 20 75 73 65 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 | ay.<address>.,.use.source.addres |
| ddb60 | 73 20 74 6f 20 69 6e 64 65 6e 74 69 66 79 20 74 68 65 20 70 65 65 72 20 77 68 65 6e 20 69 73 20 | s.to.indentify.the.peer.when.is. |
| ddb80 | 6d 75 6c 74 69 2d 68 6f 70 20 73 65 73 73 69 6f 6e 20 61 6e 64 20 74 68 65 20 67 61 74 65 77 61 | multi-hop.session.and.the.gatewa |
| ddba0 | 79 20 61 64 64 72 65 73 73 20 61 73 20 42 46 44 20 70 65 65 72 20 64 65 73 74 69 6e 61 74 69 6f | y.address.as.BFD.peer.destinatio |
| ddbc0 | 6e 20 61 64 64 72 65 73 73 2e 00 43 6f 6e 66 69 67 75 72 65 20 61 20 73 74 61 74 69 63 20 72 6f | n.address..Configure.a.static.ro |
| ddbe0 | 75 74 65 20 66 6f 72 20 3c 73 75 62 6e 65 74 3e 20 75 73 69 6e 67 20 67 61 74 65 77 61 79 20 3c | ute.for.<subnet>.using.gateway.< |
| ddc00 | 61 64 64 72 65 73 73 3e 20 61 6e 64 20 75 73 65 20 74 68 65 20 67 61 74 65 77 61 79 20 61 64 64 | address>.and.use.the.gateway.add |
| ddc20 | 72 65 73 73 20 61 73 20 42 46 44 20 70 65 65 72 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 | ress.as.BFD.peer.destination.add |
| ddc40 | 72 65 73 73 2e 00 43 6f 6e 66 69 67 75 72 65 20 61 64 64 72 65 73 73 20 6f 66 20 4e 65 74 46 6c | ress..Configure.address.of.NetFl |
| ddc60 | 6f 77 20 63 6f 6c 6c 65 63 74 6f 72 2e 20 4e 65 74 46 6c 6f 77 20 73 65 72 76 65 72 20 61 74 20 | ow.collector..NetFlow.server.at. |
| ddc80 | 60 3c 61 64 64 72 65 73 73 3e 60 20 63 61 6e 20 62 65 20 62 6f 74 68 20 6c 69 73 74 65 6e 69 6e | `<address>`.can.be.both.listenin |
| ddca0 | 67 20 6f 6e 20 61 6e 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 61 64 64 72 65 73 73 2e 00 43 6f | g.on.an.IPv4.or.IPv6.address..Co |
| ddcc0 | 6e 66 69 67 75 72 65 20 61 64 64 72 65 73 73 20 6f 66 20 73 46 6c 6f 77 20 63 6f 6c 6c 65 63 74 | nfigure.address.of.sFlow.collect |
| ddce0 | 6f 72 2e 20 73 46 6c 6f 77 20 73 65 72 76 65 72 20 61 74 20 3c 61 64 64 72 65 73 73 3e 20 63 61 | or..sFlow.server.at.<address>.ca |
| ddd00 | 6e 20 62 65 20 62 6f 74 68 20 6c 69 73 74 65 6e 69 6e 67 20 6f 6e 20 61 6e 20 49 50 76 34 20 6f | n.be.both.listening.on.an.IPv4.o |
| ddd20 | 72 20 49 50 76 36 20 61 64 64 72 65 73 73 2e 00 43 6f 6e 66 69 67 75 72 65 20 61 64 64 72 65 73 | r.IPv6.address..Configure.addres |
| ddd40 | 73 20 6f 66 20 73 46 6c 6f 77 20 63 6f 6c 6c 65 63 74 6f 72 2e 20 73 46 6c 6f 77 20 73 65 72 76 | s.of.sFlow.collector..sFlow.serv |
| ddd60 | 65 72 20 61 74 20 60 3c 61 64 64 72 65 73 73 3e 60 20 63 61 6e 20 62 65 20 61 6e 20 49 50 76 34 | er.at.`<address>`.can.be.an.IPv4 |
| ddd80 | 20 6f 72 20 49 50 76 36 20 61 64 64 72 65 73 73 2e 20 42 75 74 20 79 6f 75 20 63 61 6e 6e 6f 74 | .or.IPv6.address..But.you.cannot |
| ddda0 | 20 65 78 70 6f 72 74 20 74 6f 20 62 6f 74 68 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 63 6f | .export.to.both.IPv4.and.IPv6.co |
| dddc0 | 6c 6c 65 63 74 6f 72 73 20 61 74 20 74 68 65 20 73 61 6d 65 20 74 69 6d 65 21 00 43 6f 6e 66 69 | llectors.at.the.same.time!.Confi |
| ddde0 | 67 75 72 65 20 61 67 65 6e 74 20 49 50 20 61 64 64 72 65 73 73 20 61 73 73 6f 63 69 61 74 65 64 | gure.agent.IP.address.associated |
| dde00 | 20 77 69 74 68 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 2e 00 43 6f 6e 66 69 67 75 72 65 20 | .with.this.interface..Configure. |
| dde20 | 61 67 67 72 65 67 61 74 69 6f 6e 20 64 65 6c 61 79 20 74 69 6d 65 72 20 69 6e 74 65 72 76 61 6c | aggregation.delay.timer.interval |
| dde40 | 2e 00 43 6f 6e 66 69 67 75 72 65 20 61 6c 65 72 74 20 73 63 72 69 70 74 20 74 68 61 74 20 77 69 | ..Configure.alert.script.that.wi |
| dde60 | 6c 6c 20 62 65 20 65 78 65 63 75 74 65 64 20 77 68 65 6e 20 61 6e 20 61 74 74 61 63 6b 20 69 73 | ll.be.executed.when.an.attack.is |
| dde80 | 20 64 65 74 65 63 74 65 64 2e 00 43 6f 6e 66 69 67 75 72 65 20 61 6e 20 61 63 63 6f 75 6e 74 69 | .detected..Configure.an.accounti |
| ddea0 | 6e 67 20 73 65 72 76 65 72 20 61 6e 64 20 65 6e 61 62 6c 65 20 61 63 63 6f 75 6e 74 69 6e 67 20 | ng.server.and.enable.accounting. |
| ddec0 | 77 69 74 68 3a 00 43 6f 6e 66 69 67 75 72 65 20 61 6e 64 20 65 6e 61 62 6c 65 20 63 6f 6c 6c 65 | with:.Configure.and.enable.colle |
| ddee0 | 63 74 69 6f 6e 20 6f 66 20 66 6c 6f 77 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 6f 72 20 74 68 | ction.of.flow.information.for.th |
| ddf00 | 65 20 69 6e 74 65 72 66 61 63 65 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 3c 69 6e 74 65 72 | e.interface.identified.by.<inter |
| ddf20 | 66 61 63 65 3e 2e 00 43 6f 6e 66 69 67 75 72 65 20 61 6e 64 20 65 6e 61 62 6c 65 20 63 6f 6c 6c | face>..Configure.and.enable.coll |
| ddf40 | 65 63 74 69 6f 6e 20 6f 66 20 66 6c 6f 77 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 6f 72 20 74 | ection.of.flow.information.for.t |
| ddf60 | 68 65 20 69 6e 74 65 72 66 61 63 65 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 60 3c 69 6e 74 | he.interface.identified.by.`<int |
| ddf80 | 65 72 66 61 63 65 3e 60 2e 00 43 6f 6e 66 69 67 75 72 65 20 61 75 74 6f 2d 63 68 65 63 6b 69 6e | erface>`..Configure.auto-checkin |
| ddfa0 | 67 20 66 6f 72 20 6e 65 77 20 69 6d 61 67 65 73 00 43 6f 6e 66 69 67 75 72 65 20 62 61 63 6b 65 | g.for.new.images.Configure.backe |
| ddfc0 | 6e 64 20 60 3c 6e 61 6d 65 3e 60 20 6d 6f 64 65 20 54 43 50 20 6f 72 20 48 54 54 50 00 43 6f 6e | nd.`<name>`.mode.TCP.or.HTTP.Con |
| ddfe0 | 66 69 67 75 72 65 20 62 6f 74 68 20 72 6f 75 74 65 72 73 20 28 61 20 61 6e 64 20 62 29 20 66 6f | figure.both.routers.(a.and.b).fo |
| de000 | 72 20 44 48 43 50 76 36 2d 50 44 20 76 69 61 20 64 75 6d 6d 79 20 69 6e 74 65 72 66 61 63 65 3a | r.DHCPv6-PD.via.dummy.interface: |
| de020 | 00 43 6f 6e 66 69 67 75 72 65 20 64 69 72 65 63 74 69 6f 6e 20 66 6f 72 20 70 72 6f 63 65 73 73 | .Configure.direction.for.process |
| de040 | 69 6e 67 20 74 72 61 66 66 69 63 2e 00 43 6f 6e 66 69 67 75 72 65 20 65 69 74 68 65 72 20 6f 6e | ing.traffic..Configure.either.on |
| de060 | 65 20 6f 72 20 74 77 6f 20 73 74 6f 70 20 62 69 74 73 2e 20 54 68 69 73 20 64 65 66 61 75 6c 74 | e.or.two.stop.bits..This.default |
| de080 | 73 20 74 6f 20 6f 6e 65 20 73 74 6f 70 20 62 69 74 73 20 69 66 20 6c 65 66 74 20 75 6e 63 6f 6e | s.to.one.stop.bits.if.left.uncon |
| de0a0 | 66 69 67 75 72 65 64 2e 00 43 6f 6e 66 69 67 75 72 65 20 65 69 74 68 65 72 20 73 65 76 65 6e 20 | figured..Configure.either.seven. |
| de0c0 | 6f 72 20 65 69 67 68 74 20 64 61 74 61 20 62 69 74 73 2e 20 54 68 69 73 20 64 65 66 61 75 6c 74 | or.eight.data.bits..This.default |
| de0e0 | 73 20 74 6f 20 65 69 67 68 74 20 64 61 74 61 20 62 69 74 73 20 69 66 20 6c 65 66 74 20 75 6e 63 | s.to.eight.data.bits.if.left.unc |
| de100 | 6f 6e 66 69 67 75 72 65 64 2e 00 43 6f 6e 66 69 67 75 72 65 20 67 65 6e 65 72 61 6c 20 74 68 72 | onfigured..Configure.general.thr |
| de120 | 65 73 68 6f 6c 64 20 70 61 72 61 6d 65 74 65 72 73 2e 00 43 6f 6e 66 69 67 75 72 65 20 68 6f 77 | eshold.parameters..Configure.how |
| de140 | 20 6c 6f 6e 67 20 61 6e 20 49 50 20 28 61 74 74 61 63 6b 65 72 29 20 73 68 6f 75 6c 64 20 62 65 | .long.an.IP.(attacker).should.be |
| de160 | 20 6b 65 70 74 20 69 6e 20 62 6c 6f 63 6b 65 64 20 73 74 61 74 65 2e 20 44 65 66 61 75 6c 74 20 | .kept.in.blocked.state..Default. |
| de180 | 76 61 6c 75 65 20 69 73 20 31 39 30 30 2e 00 43 6f 6e 66 69 67 75 72 65 20 69 6e 64 69 76 69 64 | value.is.1900..Configure.individ |
| de1a0 | 75 61 6c 20 62 72 69 64 67 65 20 70 6f 72 74 20 60 3c 70 72 69 6f 72 69 74 79 3e 60 2e 00 43 6f | ual.bridge.port.`<priority>`..Co |
| de1c0 | 6e 66 69 67 75 72 65 20 69 6e 74 65 72 66 61 63 65 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 20 | nfigure.interface.`<interface>`. |
| de1e0 | 77 69 74 68 20 6f 6e 65 20 6f 72 20 6d 6f 72 65 20 69 6e 74 65 72 66 61 63 65 20 61 64 64 72 65 | with.one.or.more.interface.addre |
| de200 | 73 73 65 73 2e 00 43 6f 6e 66 69 67 75 72 65 20 69 6e 74 65 72 66 61 63 65 2d 73 70 65 63 69 66 | sses..Configure.interface-specif |
| de220 | 69 63 20 48 6f 73 74 2f 52 6f 75 74 65 72 20 62 65 68 61 76 69 6f 75 72 2e 20 49 66 20 73 65 74 | ic.Host/Router.behaviour..If.set |
| de240 | 2c 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 77 69 6c 6c 20 73 77 69 74 63 68 20 74 6f 20 68 | ,.the.interface.will.switch.to.h |
| de260 | 6f 73 74 20 6d 6f 64 65 20 61 6e 64 20 49 50 76 36 20 66 6f 72 77 61 72 64 69 6e 67 20 77 69 6c | ost.mode.and.IPv6.forwarding.wil |
| de280 | 6c 20 62 65 20 64 69 73 61 62 6c 65 64 20 6f 6e 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 2e | l.be.disabled.on.this.interface. |
| de2a0 | 00 43 6f 6e 66 69 67 75 72 65 20 6c 69 73 74 65 6e 20 69 6e 74 65 72 66 61 63 65 20 66 6f 72 20 | .Configure.listen.interface.for. |
| de2c0 | 6d 69 72 72 6f 72 69 6e 67 20 74 72 61 66 66 69 63 2e 00 43 6f 6e 66 69 67 75 72 65 20 6c 6f 63 | mirroring.traffic..Configure.loc |
| de2e0 | 61 6c 20 49 50 76 34 20 61 64 64 72 65 73 73 20 74 6f 20 6c 69 73 74 65 6e 20 66 6f 72 20 73 66 | al.IPv4.address.to.listen.for.sf |
| de300 | 6c 6f 77 2e 00 43 6f 6e 66 69 67 75 72 65 20 6d 61 78 69 6d 75 6d 20 61 6c 6c 6f 77 65 64 20 63 | low..Configure.maximum.allowed.c |
| de320 | 6c 6f 63 6b 20 73 6c 6f 70 20 69 6e 20 73 65 63 6f 6e 64 73 20 28 64 65 66 61 75 6c 74 3a 20 31 | lock.slop.in.seconds.(default:.1 |
| de340 | 38 30 29 00 43 6f 6e 66 69 67 75 72 65 20 6e 65 77 20 53 4e 4d 50 20 75 73 65 72 20 6e 61 6d 65 | 80).Configure.new.SNMP.user.name |
| de360 | 64 20 22 76 79 6f 73 22 20 77 69 74 68 20 70 61 73 73 77 6f 72 64 20 22 76 79 6f 73 31 32 33 34 | d."vyos".with.password."vyos1234 |
| de380 | 35 36 37 38 22 00 43 6f 6e 66 69 67 75 72 65 20 6e 65 78 74 2d 68 6f 70 20 60 3c 61 64 64 72 65 | 5678".Configure.next-hop.`<addre |
| de3a0 | 73 73 3e 60 20 61 6e 64 20 60 3c 74 61 72 67 65 74 2d 61 64 64 72 65 73 73 3e 60 20 66 6f 72 20 | ss>`.and.`<target-address>`.for. |
| de3c0 | 61 6e 20 49 50 76 34 20 73 74 61 74 69 63 20 72 6f 75 74 65 2e 20 53 70 65 63 69 66 79 20 74 68 | an.IPv4.static.route..Specify.th |
| de3e0 | 65 20 74 61 72 67 65 74 20 49 50 76 34 20 61 64 64 72 65 73 73 20 66 6f 72 20 68 65 61 6c 74 68 | e.target.IPv4.address.for.health |
| de400 | 20 63 68 65 63 6b 69 6e 67 2e 00 43 6f 6e 66 69 67 75 72 65 20 6e 65 78 74 2d 68 6f 70 20 60 3c | .checking..Configure.next-hop.`< |
| de420 | 61 64 64 72 65 73 73 3e 60 20 66 6f 72 20 61 6e 20 49 50 76 34 20 73 74 61 74 69 63 20 72 6f 75 | address>`.for.an.IPv4.static.rou |
| de440 | 74 65 2e 20 4d 75 6c 74 69 70 6c 65 20 73 74 61 74 69 63 20 72 6f 75 74 65 73 20 63 61 6e 20 62 | te..Multiple.static.routes.can.b |
| de460 | 65 20 63 72 65 61 74 65 64 2e 00 43 6f 6e 66 69 67 75 72 65 20 6e 65 78 74 2d 68 6f 70 20 60 3c | e.created..Configure.next-hop.`< |
| de480 | 61 64 64 72 65 73 73 3e 60 20 66 6f 72 20 61 6e 20 49 50 76 36 20 73 74 61 74 69 63 20 72 6f 75 | address>`.for.an.IPv6.static.rou |
| de4a0 | 74 65 2e 20 4d 75 6c 74 69 70 6c 65 20 73 74 61 74 69 63 20 72 6f 75 74 65 73 20 63 61 6e 20 62 | te..Multiple.static.routes.can.b |
| de4c0 | 65 20 63 72 65 61 74 65 64 2e 00 43 6f 6e 66 69 67 75 72 65 20 6e 75 6d 62 65 72 20 6f 66 20 64 | e.created..Configure.number.of.d |
| de4e0 | 69 67 69 74 73 20 74 6f 20 75 73 65 20 66 6f 72 20 74 6f 74 70 20 68 61 73 68 20 28 64 65 66 61 | igits.to.use.for.totp.hash.(defa |
| de500 | 75 6c 74 3a 20 36 29 00 43 6f 6e 66 69 67 75 72 65 20 6f 6e 65 20 6f 66 20 74 68 65 20 70 72 65 | ult:.6).Configure.one.of.the.pre |
| de520 | 64 65 66 69 6e 65 64 20 73 79 73 74 65 6d 20 70 65 72 66 6f 72 6d 61 6e 63 65 20 70 72 6f 66 69 | defined.system.performance.profi |
| de540 | 6c 65 73 2e 00 43 6f 6e 66 69 67 75 72 65 20 6f 6e 65 20 6f 72 20 6d 6f 72 65 20 61 74 74 72 69 | les..Configure.one.or.more.attri |
| de560 | 62 75 74 65 73 20 74 6f 20 74 68 65 20 67 69 76 65 6e 20 4e 54 50 20 73 65 72 76 65 72 2e 00 43 | butes.to.the.given.NTP.server..C |
| de580 | 6f 6e 66 69 67 75 72 65 20 6f 6e 65 20 6f 72 20 6d 6f 72 65 20 73 65 72 76 65 72 73 20 66 6f 72 | onfigure.one.or.more.servers.for |
| de5a0 | 20 73 79 6e 63 68 72 6f 6e 69 73 61 74 69 6f 6e 2e 20 53 65 72 76 65 72 20 6e 61 6d 65 20 63 61 | .synchronisation..Server.name.ca |
| de5c0 | 6e 20 62 65 20 65 69 74 68 65 72 20 61 6e 20 49 50 20 61 64 64 72 65 73 73 20 6f 72 20 3a 61 62 | n.be.either.an.IP.address.or.:ab |
| de5e0 | 62 72 3a 60 46 51 44 4e 20 28 46 75 6c 6c 79 20 51 75 61 6c 69 66 69 65 64 20 44 6f 6d 61 69 6e | br:`FQDN.(Fully.Qualified.Domain |
| de600 | 20 4e 61 6d 65 29 60 2e 00 43 6f 6e 66 69 67 75 72 65 20 6f 70 74 69 6f 6e 61 6c 20 54 54 4c 20 | .Name)`..Configure.optional.TTL. |
| de620 | 76 61 6c 75 65 20 6f 6e 20 74 68 65 20 67 69 76 65 6e 20 72 65 73 6f 75 72 63 65 20 72 65 63 6f | value.on.the.given.resource.reco |
| de640 | 72 64 2e 20 54 68 69 73 20 64 65 66 61 75 6c 74 73 20 74 6f 20 36 30 30 20 73 65 63 6f 6e 64 73 | rd..This.defaults.to.600.seconds |
| de660 | 2e 00 43 6f 6e 66 69 67 75 72 65 20 70 68 79 73 69 63 61 6c 20 69 6e 74 65 72 66 61 63 65 20 64 | ..Configure.physical.interface.d |
| de680 | 75 70 6c 65 78 20 73 65 74 74 69 6e 67 2e 00 43 6f 6e 66 69 67 75 72 65 20 70 68 79 73 69 63 61 | uplex.setting..Configure.physica |
| de6a0 | 6c 20 69 6e 74 65 72 66 61 63 65 20 73 70 65 65 64 20 73 65 74 74 69 6e 67 2e 00 43 6f 6e 66 69 | l.interface.speed.setting..Confi |
| de6c0 | 67 75 72 65 20 70 6f 72 74 20 6d 69 72 72 6f 72 69 6e 67 20 66 6f 72 20 60 69 6e 74 65 72 66 61 | gure.port.mirroring.for.`interfa |
| de6e0 | 63 65 60 20 69 6e 62 6f 75 6e 64 20 74 72 61 66 66 69 63 20 61 6e 64 20 63 6f 70 79 20 74 68 65 | ce`.inbound.traffic.and.copy.the |
| de700 | 20 74 72 61 66 66 69 63 20 74 6f 20 60 6d 6f 6e 69 74 6f 72 2d 69 6e 74 65 72 66 61 63 65 60 00 | .traffic.to.`monitor-interface`. |
| de720 | 43 6f 6e 66 69 67 75 72 65 20 70 6f 72 74 20 6d 69 72 72 6f 72 69 6e 67 20 66 6f 72 20 60 69 6e | Configure.port.mirroring.for.`in |
| de740 | 74 65 72 66 61 63 65 60 20 6f 75 74 62 6f 75 6e 64 20 74 72 61 66 66 69 63 20 61 6e 64 20 63 6f | terface`.outbound.traffic.and.co |
| de760 | 70 79 20 74 68 65 20 74 72 61 66 66 69 63 20 74 6f 20 60 6d 6f 6e 69 74 6f 72 2d 69 6e 74 65 72 | py.the.traffic.to.`monitor-inter |
| de780 | 66 61 63 65 60 00 43 6f 6e 66 69 67 75 72 65 20 70 6f 72 74 20 6e 75 6d 62 65 72 20 6f 66 20 72 | face`.Configure.port.number.of.r |
| de7a0 | 65 6d 6f 74 65 20 56 58 4c 41 4e 20 65 6e 64 70 6f 69 6e 74 2e 00 43 6f 6e 66 69 67 75 72 65 20 | emote.VXLAN.endpoint..Configure. |
| de7c0 | 70 6f 72 74 20 6e 75 6d 62 65 72 20 74 6f 20 62 65 20 75 73 65 64 20 66 6f 72 20 73 66 6c 6f 77 | port.number.to.be.used.for.sflow |
| de7e0 | 20 63 6f 6e 65 63 74 69 6f 6e 2e 20 44 65 66 61 75 6c 74 20 70 6f 72 74 20 69 73 20 36 33 34 33 | .conection..Default.port.is.6343 |
| de800 | 2e 00 43 6f 6e 66 69 67 75 72 65 20 70 6f 72 74 20 6e 75 6d 62 65 72 20 74 6f 20 62 65 20 75 73 | ..Configure.port.number.to.be.us |
| de820 | 65 64 20 66 6f 72 20 73 66 6c 6f 77 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 20 44 65 66 61 75 6c 74 | ed.for.sflow.connection..Default |
| de840 | 20 70 6f 72 74 20 69 73 20 36 33 34 33 2e 00 43 6f 6e 66 69 67 75 72 65 20 70 72 6f 74 6f 63 6f | .port.is.6343..Configure.protoco |
| de860 | 6c 20 75 73 65 64 20 66 6f 72 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6f 6e 20 74 6f 20 72 65 6d 6f | l.used.for.communication.to.remo |
| de880 | 74 65 20 73 79 73 6c 6f 67 20 68 6f 73 74 2e 20 54 68 69 73 20 63 61 6e 20 62 65 20 65 69 74 68 | te.syslog.host..This.can.be.eith |
| de8a0 | 65 72 20 55 44 50 20 6f 72 20 54 43 50 2e 00 43 6f 6e 66 69 67 75 72 65 20 70 72 6f 78 79 20 70 | er.UDP.or.TCP..Configure.proxy.p |
| de8c0 | 6f 72 74 20 69 66 20 69 74 20 64 6f 65 73 20 6e 6f 74 20 6c 69 73 74 65 6e 20 74 6f 20 74 68 65 | ort.if.it.does.not.listen.to.the |
| de8e0 | 20 64 65 66 61 75 6c 74 20 70 6f 72 74 20 38 30 2e 00 43 6f 6e 66 69 67 75 72 65 20 72 65 71 75 | .default.port.80..Configure.requ |
| de900 | 65 73 74 73 20 74 6f 20 74 68 65 20 62 61 63 6b 65 6e 64 20 73 65 72 76 65 72 20 74 6f 20 75 73 | ests.to.the.backend.server.to.us |
| de920 | 65 20 53 53 4c 20 65 6e 63 72 79 70 74 69 6f 6e 20 61 6e 64 20 61 75 74 68 65 6e 74 69 63 61 74 | e.SSL.encryption.and.authenticat |
| de940 | 65 20 62 61 63 6b 65 6e 64 20 61 67 61 69 6e 73 74 20 3c 63 61 2d 63 65 72 74 69 66 69 63 61 74 | e.backend.against.<ca-certificat |
| de960 | 65 3e 00 43 6f 6e 66 69 67 75 72 65 20 72 65 71 75 65 73 74 73 20 74 6f 20 74 68 65 20 62 61 63 | e>.Configure.requests.to.the.bac |
| de980 | 6b 65 6e 64 20 73 65 72 76 65 72 20 74 6f 20 75 73 65 20 53 53 4c 20 65 6e 63 72 79 70 74 69 6f | kend.server.to.use.SSL.encryptio |
| de9a0 | 6e 20 77 69 74 68 6f 75 74 20 76 61 6c 69 64 61 74 69 6e 67 20 73 65 72 76 65 72 20 63 65 72 74 | n.without.validating.server.cert |
| de9c0 | 69 66 69 63 61 74 65 00 43 6f 6e 66 69 67 75 72 65 20 73 46 6c 6f 77 20 61 67 65 6e 74 20 49 50 | ificate.Configure.sFlow.agent.IP |
| de9e0 | 76 34 20 6f 72 20 49 50 76 36 20 61 64 64 72 65 73 73 00 43 6f 6e 66 69 67 75 72 65 20 73 63 68 | v4.or.IPv6.address.Configure.sch |
| dea00 | 65 64 75 6c 65 20 63 6f 75 6e 74 65 72 2d 70 6f 6c 6c 69 6e 67 20 69 6e 20 73 65 63 6f 6e 64 73 | edule.counter-polling.in.seconds |
| dea20 | 20 28 64 65 66 61 75 6c 74 3a 20 33 30 29 00 43 6f 6e 66 69 67 75 72 65 20 73 65 72 76 69 63 65 | .(default:.30).Configure.service |
| dea40 | 20 60 3c 6e 61 6d 65 3e 60 20 6d 6f 64 65 20 54 43 50 20 6f 72 20 48 54 54 50 00 43 6f 6e 66 69 | .`<name>`.mode.TCP.or.HTTP.Confi |
| dea60 | 67 75 72 65 20 73 65 72 76 69 63 65 20 60 3c 6e 61 6d 65 3e 60 20 74 6f 20 75 73 65 20 74 68 65 | gure.service.`<name>`.to.use.the |
| dea80 | 20 62 61 63 6b 65 6e 64 20 3c 6e 61 6d 65 3e 00 43 6f 6e 66 69 67 75 72 65 20 73 65 73 73 69 6f | .backend.<name>.Configure.sessio |
| deaa0 | 6e 20 74 69 6d 65 6f 75 74 20 61 66 74 65 72 20 77 68 69 63 68 20 74 68 65 20 75 73 65 72 20 77 | n.timeout.after.which.the.user.w |
| deac0 | 69 6c 6c 20 62 65 20 6c 6f 67 67 65 64 20 6f 75 74 2e 00 43 6f 6e 66 69 67 75 72 65 20 73 74 65 | ill.be.logged.out..Configure.ste |
| deae0 | 70 20 76 61 6c 75 65 20 66 6f 72 20 74 6f 74 70 20 69 6e 20 73 65 63 6f 6e 64 73 20 28 64 65 66 | p.value.for.totp.in.seconds.(def |
| deb00 | 61 75 6c 74 3a 20 33 30 29 00 43 6f 6e 66 69 67 75 72 65 20 73 79 73 74 65 6d 20 64 6f 6d 61 69 | ault:.30).Configure.system.domai |
| deb20 | 6e 20 6e 61 6d 65 2e 20 41 20 64 6f 6d 61 69 6e 20 6e 61 6d 65 20 6d 75 73 74 20 73 74 61 72 74 | n.name..A.domain.name.must.start |
| deb40 | 20 61 6e 64 20 65 6e 64 20 77 69 74 68 20 61 20 6c 65 74 74 65 72 20 6f 72 20 64 69 67 69 74 2c | .and.end.with.a.letter.or.digit, |
| deb60 | 20 61 6e 64 20 68 61 76 65 20 61 73 20 69 6e 74 65 72 69 6f 72 20 63 68 61 72 61 63 74 65 72 73 | .and.have.as.interior.characters |
| deb80 | 20 6f 6e 6c 79 20 6c 65 74 74 65 72 73 2c 20 64 69 67 69 74 73 2c 20 6f 72 20 61 20 68 79 70 68 | .only.letters,.digits,.or.a.hyph |
| deba0 | 65 6e 2e 00 43 6f 6e 66 69 67 75 72 65 20 74 68 65 20 41 2d 73 69 64 65 20 72 6f 75 74 65 72 20 | en..Configure.the.A-side.router. |
| debc0 | 66 6f 72 20 4e 50 54 76 36 20 75 73 69 6e 67 20 74 68 65 20 70 72 65 66 69 78 65 73 20 61 62 6f | for.NPTv6.using.the.prefixes.abo |
| debe0 | 76 65 3a 00 43 6f 6e 66 69 67 75 72 65 20 74 68 65 20 42 2d 73 69 64 65 20 72 6f 75 74 65 72 20 | ve:.Configure.the.B-side.router. |
| dec00 | 66 6f 72 20 4e 50 54 76 36 20 75 73 69 6e 67 20 74 68 65 20 70 72 65 66 69 78 65 73 20 61 62 6f | for.NPTv6.using.the.prefixes.abo |
| dec20 | 76 65 3a 00 43 6f 6e 66 69 67 75 72 65 20 74 68 65 20 44 4e 53 20 60 3c 73 65 72 76 65 72 3e 60 | ve:.Configure.the.DNS.`<server>` |
| dec40 | 20 49 50 2f 46 51 44 4e 20 75 73 65 64 20 77 68 65 6e 20 75 70 64 61 74 69 6e 67 20 74 68 69 73 | .IP/FQDN.used.when.updating.this |
| dec60 | 20 64 79 6e 61 6d 69 63 20 61 73 73 69 67 6e 6d 65 6e 74 2e 00 43 6f 6e 66 69 67 75 72 65 20 74 | .dynamic.assignment..Configure.t |
| dec80 | 68 65 20 48 54 54 50 20 41 50 49 20 73 65 72 76 69 63 65 20 6f 6e 20 52 6f 75 74 65 72 20 42 00 | he.HTTP.API.service.on.Router.B. |
| deca0 | 43 6f 6e 66 69 67 75 72 65 20 74 68 65 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 6c 69 73 74 65 | Configure.the.IPv4.or.IPv6.liste |
| decc0 | 6e 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 54 46 54 50 20 73 65 72 76 65 72 2e 20 4d 75 | n.address.of.the.TFTP.server..Mu |
| dece0 | 6c 74 69 70 6c 65 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 61 64 64 72 65 73 73 65 73 20 63 | ltiple.IPv4.and.IPv6.addresses.c |
| ded00 | 61 6e 20 62 65 20 67 69 76 65 6e 2e 20 54 68 65 72 65 20 77 69 6c 6c 20 62 65 20 6f 6e 65 20 54 | an.be.given..There.will.be.one.T |
| ded20 | 46 54 50 20 73 65 72 76 65 72 20 69 6e 73 74 61 6e 63 65 73 20 6c 69 73 74 65 6e 69 6e 67 20 6f | FTP.server.instances.listening.o |
| ded40 | 6e 20 65 61 63 68 20 49 50 20 61 64 64 72 65 73 73 2e 00 43 6f 6e 66 69 67 75 72 65 20 74 68 65 | n.each.IP.address..Configure.the |
| ded60 | 20 63 6f 6e 66 69 67 2d 73 79 6e 63 20 73 65 72 76 69 63 65 20 6f 6e 20 52 6f 75 74 65 72 20 41 | .config-sync.service.on.Router.A |
| ded80 | 00 43 6f 6e 66 69 67 75 72 65 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 | .Configure.the.connection.tracki |
| deda0 | 6e 67 20 70 72 6f 74 6f 63 6f 6c 20 68 65 6c 70 65 72 20 6d 6f 64 75 6c 65 73 2e 20 41 6c 6c 20 | ng.protocol.helper.modules..All. |
| dedc0 | 6d 6f 64 75 6c 65 73 20 61 72 65 20 65 6e 61 62 6c 65 20 62 79 20 64 65 66 61 75 6c 74 2e 00 43 | modules.are.enable.by.default..C |
| dede0 | 6f 6e 66 69 67 75 72 65 20 74 68 65 20 64 69 73 63 72 65 74 65 20 70 6f 72 74 20 75 6e 64 65 72 | onfigure.the.discrete.port.under |
| dee00 | 20 77 68 69 63 68 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 63 61 6e 20 62 65 20 | .which.the.RADIUS.server.can.be. |
| dee20 | 72 65 61 63 68 65 64 2e 00 43 6f 6e 66 69 67 75 72 65 20 74 68 65 20 64 69 73 63 72 65 74 65 20 | reached..Configure.the.discrete. |
| dee40 | 70 6f 72 74 20 75 6e 64 65 72 20 77 68 69 63 68 20 74 68 65 20 54 41 43 41 43 53 20 73 65 72 76 | port.under.which.the.TACACS.serv |
| dee60 | 65 72 20 63 61 6e 20 62 65 20 72 65 61 63 68 65 64 2e 00 43 6f 6e 66 69 67 75 72 65 20 74 68 65 | er.can.be.reached..Configure.the |
| dee80 | 20 6c 6f 61 64 2d 62 61 6c 61 6e 63 69 6e 67 20 68 61 70 72 6f 78 79 20 73 65 72 76 69 63 65 20 | .load-balancing.haproxy.service. |
| deea0 | 66 6f 72 20 48 54 54 50 2e 00 43 6f 6e 66 69 67 75 72 65 20 74 68 65 20 6c 6f 61 64 2d 62 61 6c | for.HTTP..Configure.the.load-bal |
| deec0 | 61 6e 63 69 6e 67 20 72 65 76 65 72 73 65 2d 70 72 6f 78 79 20 73 65 72 76 69 63 65 20 66 6f 72 | ancing.reverse-proxy.service.for |
| deee0 | 20 48 54 54 50 2e 00 43 6f 6e 66 69 67 75 72 65 20 74 68 65 20 74 69 6d 65 73 74 61 6d 70 69 6e | .HTTP..Configure.the.timestampin |
| def00 | 67 20 62 65 68 61 76 69 6f 72 20 77 69 74 68 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 6f 70 | g.behavior.with.the.following.op |
| def20 | 74 69 6f 6e 3a 00 43 6f 6e 66 69 67 75 72 65 20 74 69 6d 65 20 64 72 69 66 74 20 69 6e 20 73 65 | tion:.Configure.time.drift.in.se |
| def40 | 63 6f 6e 64 73 20 28 64 65 66 61 75 6c 74 3a 20 30 29 00 43 6f 6e 66 69 67 75 72 65 20 74 72 61 | conds.(default:.0).Configure.tra |
| def60 | 66 66 69 63 20 63 61 70 74 75 72 65 20 6d 6f 64 65 2e 00 43 6f 6e 66 69 67 75 72 65 20 75 73 65 | ffic.capture.mode..Configure.use |
| def80 | 72 20 64 65 66 69 6e 65 64 20 3a 61 62 62 72 3a 60 4d 41 43 20 28 4d 65 64 69 61 20 41 63 63 65 | r.defined.:abbr:`MAC.(Media.Acce |
| defa0 | 73 73 20 43 6f 6e 74 72 6f 6c 29 60 20 61 64 64 72 65 73 73 20 6f 6e 20 67 69 76 65 6e 20 60 3c | ss.Control)`.address.on.given.`< |
| defc0 | 69 6e 74 65 72 66 61 63 65 3e 60 2e 00 43 6f 6e 66 69 67 75 72 65 20 77 61 74 65 72 6d 61 72 6b | interface>`..Configure.watermark |
| defe0 | 20 77 61 72 6e 69 6e 67 20 67 65 6e 65 72 61 74 69 6f 6e 20 66 6f 72 20 61 6e 20 49 47 4d 50 20 | .warning.generation.for.an.IGMP. |
| df000 | 67 72 6f 75 70 20 6c 69 6d 69 74 2e 20 47 65 6e 65 72 61 74 65 73 20 77 61 72 6e 69 6e 67 20 6f | group.limit..Generates.warning.o |
| df020 | 6e 63 65 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 67 72 6f 75 70 20 6c 69 6d 69 74 20 69 | nce.the.configured.group.limit.i |
| df040 | 73 20 72 65 61 63 68 65 64 20 77 68 69 6c 65 20 61 64 64 69 6e 67 20 6e 65 77 20 67 72 6f 75 70 | s.reached.while.adding.new.group |
| df060 | 73 2e 00 43 6f 6e 66 69 67 75 72 65 64 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 60 3c 69 64 | s..Configured.routing.table.`<id |
| df080 | 3e 60 20 69 73 20 75 73 65 64 20 62 79 20 56 52 46 20 60 3c 6e 61 6d 65 3e 60 2e 00 43 6f 6e 66 | >`.is.used.by.VRF.`<name>`..Conf |
| df0a0 | 69 67 75 72 65 64 20 76 61 6c 75 65 00 43 6f 6e 66 69 67 75 72 65 73 20 68 61 72 64 77 61 72 65 | igured.value.Configures.hardware |
| df0c0 | 20 74 69 6d 65 73 74 61 6d 70 69 6e 67 20 6f 6e 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 3c | .timestamping.on.the.interface.< |
| df0e0 | 69 6e 74 65 72 66 61 63 65 3e 2e 20 54 68 65 20 73 70 65 63 69 61 6c 20 76 61 6c 75 65 20 60 61 | interface>..The.special.value.`a |
| df100 | 6c 6c 60 20 63 61 6e 20 61 6c 73 6f 20 62 65 20 73 70 65 63 69 66 69 65 64 20 74 6f 20 65 6e 61 | ll`.can.also.be.specified.to.ena |
| df120 | 62 6c 65 20 74 69 6d 65 73 74 61 6d 70 69 6e 67 20 6f 6e 20 61 6c 6c 20 69 6e 74 65 72 66 61 63 | ble.timestamping.on.all.interfac |
| df140 | 65 73 20 74 68 61 74 20 73 75 70 70 6f 72 74 20 69 74 2e 00 43 6f 6e 66 69 67 75 72 65 73 20 74 | es.that.support.it..Configures.t |
| df160 | 68 65 20 42 47 50 20 73 70 65 61 6b 65 72 20 73 6f 20 74 68 61 74 20 69 74 20 6f 6e 6c 79 20 61 | he.BGP.speaker.so.that.it.only.a |
| df180 | 63 63 65 70 74 73 20 69 6e 62 6f 75 6e 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 66 72 6f 6d 2c | ccepts.inbound.connections.from, |
| df1a0 | 20 62 75 74 20 64 6f 65 73 20 6e 6f 74 20 69 6e 69 74 69 61 74 65 20 6f 75 74 62 6f 75 6e 64 20 | .but.does.not.initiate.outbound. |
| df1c0 | 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 74 6f 20 74 68 65 20 70 65 65 72 20 6f 72 20 70 65 65 72 20 | connections.to.the.peer.or.peer. |
| df1e0 | 67 72 6f 75 70 2e 00 43 6f 6e 66 69 67 75 72 65 73 20 74 68 65 20 50 54 50 20 70 6f 72 74 2e 20 | group..Configures.the.PTP.port.. |
| df200 | 42 79 20 64 65 66 61 75 6c 74 2c 20 74 68 65 20 73 74 61 6e 64 61 72 64 20 70 6f 72 74 20 33 31 | By.default,.the.standard.port.31 |
| df220 | 39 20 69 73 20 75 73 65 64 2e 00 43 6f 6e 66 69 67 75 72 65 73 20 74 68 65 20 72 69 6e 67 20 62 | 9.is.used..Configures.the.ring.b |
| df240 | 75 66 66 65 72 20 73 69 7a 65 20 6f 66 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 2e 00 43 6f 6e | uffer.size.of.the.interface..Con |
| df260 | 66 69 67 75 72 69 6e 67 20 48 54 20 6d 6f 64 65 20 6f 70 74 69 6f 6e 73 20 69 73 20 72 65 71 75 | figuring.HT.mode.options.is.requ |
| df280 | 69 72 65 64 20 77 68 65 6e 20 75 73 69 6e 67 20 38 30 32 2e 31 31 6e 20 6f 72 20 38 30 32 2e 31 | ired.when.using.802.11n.or.802.1 |
| df2a0 | 31 61 78 20 61 74 20 32 2e 34 47 48 7a 2e 00 43 6f 6e 66 69 67 75 72 69 6e 67 20 49 50 6f 45 20 | 1ax.at.2.4GHz..Configuring.IPoE. |
| df2c0 | 53 65 72 76 65 72 00 43 6f 6e 66 69 67 75 72 69 6e 67 20 49 50 73 65 63 00 43 6f 6e 66 69 67 75 | Server.Configuring.IPsec.Configu |
| df2e0 | 72 69 6e 67 20 4c 32 54 50 20 53 65 72 76 65 72 00 43 6f 6e 66 69 67 75 72 69 6e 67 20 4c 4e 53 | ring.L2TP.Server.Configuring.LNS |
| df300 | 20 28 4c 32 54 50 20 4e 65 74 77 6f 72 6b 20 53 65 72 76 65 72 29 00 43 6f 6e 66 69 67 75 72 69 | .(L2TP.Network.Server).Configuri |
| df320 | 6e 67 20 50 50 50 6f 45 20 53 65 72 76 65 72 00 43 6f 6e 66 69 67 75 72 69 6e 67 20 50 50 54 50 | ng.PPPoE.Server.Configuring.PPTP |
| df340 | 20 53 65 72 76 65 72 00 43 6f 6e 66 69 67 75 72 69 6e 67 20 52 41 44 49 55 53 20 61 63 63 6f 75 | .Server.Configuring.RADIUS.accou |
| df360 | 6e 74 69 6e 67 00 43 6f 6e 66 69 67 75 72 69 6e 67 20 52 41 44 49 55 53 20 61 75 74 68 65 6e 74 | nting.Configuring.RADIUS.authent |
| df380 | 69 63 61 74 69 6f 6e 00 43 6f 6e 66 69 67 75 72 69 6e 67 20 53 53 54 50 20 53 65 72 76 65 72 00 | ication.Configuring.SSTP.Server. |
| df3a0 | 43 6f 6e 66 69 67 75 72 69 6e 67 20 53 53 54 50 20 63 6c 69 65 6e 74 00 43 6f 6e 66 69 67 75 72 | Configuring.SSTP.client.Configur |
| df3c0 | 69 6e 67 20 56 79 4f 53 20 74 6f 20 61 63 74 20 61 73 20 79 6f 75 72 20 49 50 53 65 63 20 61 63 | ing.VyOS.to.act.as.your.IPSec.ac |
| df3e0 | 63 65 73 73 20 63 6f 6e 63 65 6e 74 72 61 74 6f 72 20 69 73 20 6f 6e 65 20 74 68 69 6e 67 2c 20 | cess.concentrator.is.one.thing,. |
| df400 | 62 75 74 20 79 6f 75 20 70 72 6f 62 61 62 6c 79 20 6e 65 65 64 20 74 6f 20 73 65 74 75 70 20 79 | but.you.probably.need.to.setup.y |
| df420 | 6f 75 72 20 63 6c 69 65 6e 74 20 63 6f 6e 6e 65 63 74 69 6e 67 20 74 6f 20 74 68 65 20 73 65 72 | our.client.connecting.to.the.ser |
| df440 | 76 65 72 20 73 6f 20 74 68 65 79 20 63 61 6e 20 74 61 6c 6b 20 74 6f 20 74 68 65 20 49 50 53 65 | ver.so.they.can.talk.to.the.IPSe |
| df460 | 63 20 67 61 74 65 77 61 79 2e 00 43 6f 6e 66 69 67 75 72 69 6e 67 20 61 20 6c 69 73 74 65 6e 2d | c.gateway..Configuring.a.listen- |
| df480 | 61 64 64 72 65 73 73 20 69 73 20 65 73 73 65 6e 74 69 61 6c 20 66 6f 72 20 74 68 65 20 73 65 72 | address.is.essential.for.the.ser |
| df4a0 | 76 69 63 65 20 74 6f 20 77 6f 72 6b 2e 00 43 6f 6e 6e 65 63 74 2f 44 69 73 63 6f 6e 6e 65 63 74 | vice.to.work..Connect/Disconnect |
| df4c0 | 00 43 6f 6e 6e 65 63 74 65 64 20 63 6c 69 65 6e 74 20 73 68 6f 75 6c 64 20 75 73 65 20 60 3c 61 | .Connected.client.should.use.`<a |
| df4e0 | 64 64 72 65 73 73 3e 60 20 61 73 20 74 68 65 69 72 20 44 4e 53 20 73 65 72 76 65 72 2e 20 54 68 | ddress>`.as.their.DNS.server..Th |
| df500 | 69 73 20 63 6f 6d 6d 61 6e 64 20 61 63 63 65 70 74 73 20 62 6f 74 68 20 49 50 76 34 20 61 6e 64 | is.command.accepts.both.IPv4.and |
| df520 | 20 49 50 76 36 20 61 64 64 72 65 73 73 65 73 2e 20 55 70 20 74 6f 20 74 77 6f 20 6e 61 6d 65 73 | .IPv6.addresses..Up.to.two.names |
| df540 | 65 72 76 65 72 73 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 66 6f 72 20 49 50 76 | ervers.can.be.configured.for.IPv |
| df560 | 34 2c 20 75 70 20 74 6f 20 74 68 72 65 65 20 66 6f 72 20 49 50 76 36 2e 00 43 6f 6e 6e 65 63 74 | 4,.up.to.three.for.IPv6..Connect |
| df580 | 65 64 20 63 6c 69 65 6e 74 73 20 73 68 6f 75 6c 64 20 75 73 65 20 60 3c 61 64 64 72 65 73 73 3e | ed.clients.should.use.`<address> |
| df5a0 | 60 20 61 73 20 74 68 65 69 72 20 44 4e 53 20 73 65 72 76 65 72 2e 20 54 68 69 73 20 63 6f 6d 6d | `.as.their.DNS.server..This.comm |
| df5c0 | 61 6e 64 20 61 63 63 65 70 74 73 20 62 6f 74 68 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 61 | and.accepts.both.IPv4.and.IPv6.a |
| df5e0 | 64 64 72 65 73 73 65 73 2e 20 55 70 20 74 6f 20 74 77 6f 20 6e 61 6d 65 73 65 72 76 65 72 73 20 | ddresses..Up.to.two.nameservers. |
| df600 | 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 66 6f 72 20 49 50 76 34 2c 20 75 70 20 74 | can.be.configured.for.IPv4,.up.t |
| df620 | 6f 20 74 68 72 65 65 20 66 6f 72 20 49 50 76 36 2e 00 43 6f 6e 6e 65 63 74 69 6f 6e 73 20 74 6f | o.three.for.IPv6..Connections.to |
| df640 | 20 74 68 65 20 52 50 4b 49 20 63 61 63 68 69 6e 67 20 73 65 72 76 65 72 20 63 61 6e 20 6e 6f 74 | .the.RPKI.caching.server.can.not |
| df660 | 20 6f 6e 6c 79 20 62 65 20 65 73 74 61 62 6c 69 73 68 65 64 20 62 79 20 48 54 54 50 2f 54 4c 53 | .only.be.established.by.HTTP/TLS |
| df680 | 20 62 75 74 20 79 6f 75 20 63 61 6e 20 61 6c 73 6f 20 72 65 6c 79 20 6f 6e 20 61 20 73 65 63 75 | .but.you.can.also.rely.on.a.secu |
| df6a0 | 72 65 20 53 53 48 20 73 65 73 73 69 6f 6e 20 74 6f 20 74 68 65 20 73 65 72 76 65 72 2e 20 54 6f | re.SSH.session.to.the.server..To |
| df6c0 | 20 65 6e 61 62 6c 65 20 53 53 48 20 79 6f 75 20 66 69 72 73 74 20 6e 65 65 64 20 74 6f 20 63 72 | .enable.SSH.you.first.need.to.cr |
| df6e0 | 65 61 74 65 20 79 6f 75 72 73 65 6c 73 20 61 6e 20 53 53 48 20 63 6c 69 65 6e 74 20 6b 65 79 70 | eate.yoursels.an.SSH.client.keyp |
| df700 | 61 69 72 20 75 73 69 6e 67 20 60 60 67 65 6e 65 72 61 74 65 20 73 73 68 20 63 6c 69 65 6e 74 2d | air.using.``generate.ssh.client- |
| df720 | 6b 65 79 20 2f 63 6f 6e 66 69 67 2f 61 75 74 68 2f 69 64 5f 72 73 61 5f 72 70 6b 69 60 60 2e 20 | key./config/auth/id_rsa_rpki``.. |
| df740 | 4f 6e 63 65 20 79 6f 75 72 20 6b 65 79 20 69 73 20 63 72 65 61 74 65 64 20 79 6f 75 20 63 61 6e | Once.your.key.is.created.you.can |
| df760 | 20 73 65 74 75 70 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 43 6f 6e 6e 65 63 74 69 6f | .setup.the.connection..Connectio |
| df780 | 6e 73 20 74 6f 20 74 68 65 20 52 50 4b 49 20 63 61 63 68 69 6e 67 20 73 65 72 76 65 72 20 63 61 | ns.to.the.RPKI.caching.server.ca |
| df7a0 | 6e 20 6e 6f 74 20 6f 6e 6c 79 20 62 65 20 65 73 74 61 62 6c 69 73 68 65 64 20 62 79 20 48 54 54 | n.not.only.be.established.by.HTT |
| df7c0 | 50 2f 54 4c 53 20 62 75 74 20 79 6f 75 20 63 61 6e 20 61 6c 73 6f 20 72 65 6c 79 20 6f 6e 20 61 | P/TLS.but.you.can.also.rely.on.a |
| df7e0 | 20 73 65 63 75 72 65 20 53 53 48 20 73 65 73 73 69 6f 6e 20 74 6f 20 74 68 65 20 73 65 72 76 65 | .secure.SSH.session.to.the.serve |
| df800 | 72 2e 20 54 6f 20 65 6e 61 62 6c 65 20 53 53 48 2c 20 66 69 72 73 74 20 79 6f 75 20 6e 65 65 64 | r..To.enable.SSH,.first.you.need |
| df820 | 20 74 6f 20 63 72 65 61 74 65 20 61 6e 20 53 53 48 20 63 6c 69 65 6e 74 20 6b 65 79 70 61 69 72 | .to.create.an.SSH.client.keypair |
| df840 | 20 75 73 69 6e 67 20 60 60 67 65 6e 65 72 61 74 65 20 73 73 68 20 63 6c 69 65 6e 74 2d 6b 65 79 | .using.``generate.ssh.client-key |
| df860 | 20 2f 63 6f 6e 66 69 67 2f 61 75 74 68 2f 69 64 5f 72 73 61 5f 72 70 6b 69 60 60 2e 20 4f 6e 63 | ./config/auth/id_rsa_rpki``..Onc |
| df880 | 65 20 79 6f 75 72 20 6b 65 79 20 69 73 20 63 72 65 61 74 65 64 20 79 6f 75 20 63 61 6e 20 73 65 | e.your.key.is.created.you.can.se |
| df8a0 | 74 75 70 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 43 6f 6e 6e 65 63 74 69 6f 6e 73 20 | tup.the.connection..Connections. |
| df8c0 | 74 6f 20 74 68 65 20 52 50 4b 49 20 63 61 63 68 69 6e 67 20 73 65 72 76 65 72 20 63 61 6e 20 6e | to.the.RPKI.caching.server.can.n |
| df8e0 | 6f 74 20 6f 6e 6c 79 20 62 65 20 65 73 74 61 62 6c 69 73 68 65 64 20 62 79 20 54 43 50 20 75 73 | ot.only.be.established.by.TCP.us |
| df900 | 69 6e 67 20 74 68 65 20 52 54 52 20 70 72 6f 74 6f 63 6f 6c 20 62 75 74 20 79 6f 75 20 63 61 6e | ing.the.RTR.protocol.but.you.can |
| df920 | 20 61 6c 73 6f 20 72 65 6c 79 20 6f 6e 20 61 20 73 65 63 75 72 65 20 53 53 48 20 73 65 73 73 69 | .also.rely.on.a.secure.SSH.sessi |
| df940 | 6f 6e 20 74 6f 20 74 68 65 20 73 65 72 76 65 72 2e 20 54 68 69 73 20 70 72 6f 76 69 64 65 73 20 | on.to.the.server..This.provides. |
| df960 | 74 72 61 6e 73 70 6f 72 74 20 69 6e 74 65 67 72 69 74 79 20 61 6e 64 20 63 6f 6e 66 69 64 65 6e | transport.integrity.and.confiden |
| df980 | 74 69 61 6c 69 74 79 20 61 6e 64 20 69 74 20 69 73 20 61 20 67 6f 6f 64 20 69 64 65 61 20 69 66 | tiality.and.it.is.a.good.idea.if |
| df9a0 | 20 79 6f 75 72 20 76 61 6c 69 64 61 74 69 6f 6e 20 73 6f 66 74 77 61 72 65 20 73 75 70 70 6f 72 | .your.validation.software.suppor |
| df9c0 | 74 73 20 69 74 2e 20 20 54 6f 20 65 6e 61 62 6c 65 20 53 53 48 2c 20 66 69 72 73 74 20 79 6f 75 | ts.it...To.enable.SSH,.first.you |
| df9e0 | 20 6e 65 65 64 20 74 6f 20 63 72 65 61 74 65 20 61 6e 20 53 53 48 20 63 6c 69 65 6e 74 20 6b 65 | .need.to.create.an.SSH.client.ke |
| dfa00 | 79 70 61 69 72 20 75 73 69 6e 67 20 60 60 67 65 6e 65 72 61 74 65 20 73 73 68 20 63 6c 69 65 6e | ypair.using.``generate.ssh.clien |
| dfa20 | 74 2d 6b 65 79 20 2f 63 6f 6e 66 69 67 2f 61 75 74 68 2f 69 64 5f 72 73 61 5f 72 70 6b 69 60 60 | t-key./config/auth/id_rsa_rpki`` |
| dfa40 | 2e 20 4f 6e 63 65 20 79 6f 75 72 20 6b 65 79 20 69 73 20 63 72 65 61 74 65 64 20 79 6f 75 20 63 | ..Once.your.key.is.created.you.c |
| dfa60 | 61 6e 20 73 65 74 75 70 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 43 6f 6e 6e 74 72 61 | an.setup.the.connection..Conntra |
| dfa80 | 63 6b 00 43 6f 6e 6e 74 72 61 63 6b 20 53 79 6e 63 00 43 6f 6e 6e 74 72 61 63 6b 20 53 79 6e 63 | ck.Conntrack.Sync.Conntrack.Sync |
| dfaa0 | 20 45 78 61 6d 70 6c 65 00 43 6f 6e 6e 74 72 61 63 6b 20 69 67 6e 6f 72 65 20 72 75 6c 65 73 00 | .Example.Conntrack.ignore.rules. |
| dfac0 | 43 6f 6e 6e 74 72 61 63 6b 20 6c 6f 67 00 43 6f 6e 73 69 64 65 72 61 74 69 6f 6e 73 00 43 6f 6e | Conntrack.log.Considerations.Con |
| dfae0 | 73 6f 6c 65 00 43 6f 6e 73 6f 6c 65 20 53 65 72 76 65 72 00 43 6f 6e 73 74 72 61 69 6e 20 74 68 | sole.Console.Server.Constrain.th |
| dfb00 | 65 20 6d 65 6d 6f 72 79 20 61 76 61 69 6c 61 62 6c 65 20 74 6f 20 74 68 65 20 63 6f 6e 74 61 69 | e.memory.available.to.the.contai |
| dfb20 | 6e 65 72 2e 00 43 6f 6e 74 61 69 6e 65 72 00 43 6f 6e 74 61 69 6e 65 72 20 4e 65 74 77 6f 72 6b | ner..Container.Container.Network |
| dfb40 | 73 00 43 6f 6e 74 61 69 6e 65 72 20 52 65 67 69 73 74 72 79 00 43 6f 6e 74 72 61 63 6b 20 54 69 | s.Container.Registry.Contrack.Ti |
| dfb60 | 6d 65 6f 75 74 73 00 43 6f 6e 76 65 72 74 20 74 68 65 20 61 64 64 72 65 73 73 20 70 72 65 66 69 | meouts.Convert.the.address.prefi |
| dfb80 | 78 20 6f 66 20 61 20 73 69 6e 67 6c 65 20 60 66 63 30 30 3a 3a 2f 36 34 60 20 6e 65 74 77 6f 72 | x.of.a.single.`fc00::/64`.networ |
| dfba0 | 6b 20 74 6f 20 60 66 63 30 31 3a 3a 2f 36 34 60 00 43 6f 6e 76 65 72 74 20 74 68 65 20 61 64 64 | k.to.`fc01::/64`.Convert.the.add |
| dfbc0 | 72 65 73 73 20 70 72 65 66 69 78 20 6f 66 20 61 20 73 69 6e 67 6c 65 20 60 66 63 30 31 3a 3a 2f | ress.prefix.of.a.single.`fc01::/ |
| dfbe0 | 36 34 60 20 6e 65 74 77 6f 72 6b 20 74 6f 20 60 66 63 30 30 3a 3a 2f 36 34 60 00 43 6f 70 79 20 | 64`.network.to.`fc00::/64`.Copy. |
| dfc00 | 74 68 65 20 6b 65 79 2c 20 61 73 20 69 74 20 69 73 20 6e 6f 74 20 73 74 6f 72 65 64 20 6f 6e 20 | the.key,.as.it.is.not.stored.on. |
| dfc20 | 74 68 65 20 6c 6f 63 61 6c 20 66 69 6c 65 73 79 73 74 65 6d 2e 20 42 65 63 61 75 73 65 20 69 74 | the.local.filesystem..Because.it |
| dfc40 | 20 69 73 20 61 20 73 79 6d 6d 65 74 72 69 63 20 6b 65 79 2c 20 6f 6e 6c 79 20 79 6f 75 20 61 6e | .is.a.symmetric.key,.only.you.an |
| dfc60 | 64 20 79 6f 75 72 20 70 65 65 72 20 73 68 6f 75 6c 64 20 68 61 76 65 20 6b 6e 6f 77 6c 65 64 67 | d.your.peer.should.have.knowledg |
| dfc80 | 65 20 6f 66 20 69 74 73 20 63 6f 6e 74 65 6e 74 2e 20 4d 61 6b 65 20 73 75 72 65 20 79 6f 75 20 | e.of.its.content..Make.sure.you. |
| dfca0 | 64 69 73 74 72 69 62 75 74 65 20 74 68 65 20 6b 65 79 20 69 6e 20 61 20 73 61 66 65 20 6d 61 6e | distribute.the.key.in.a.safe.man |
| dfcc0 | 6e 65 72 2c 00 43 6f 75 6e 74 72 79 20 63 6f 64 65 20 28 49 53 4f 2f 49 45 43 20 33 31 36 36 2d | ner,.Country.code.(ISO/IEC.3166- |
| dfce0 | 31 29 2e 20 55 73 65 64 20 74 6f 20 73 65 74 20 72 65 67 75 6c 61 74 6f 72 79 20 64 6f 6d 61 69 | 1)..Used.to.set.regulatory.domai |
| dfd00 | 6e 2e 20 53 65 74 20 61 73 20 6e 65 65 64 65 64 20 74 6f 20 69 6e 64 69 63 61 74 65 20 63 6f 75 | n..Set.as.needed.to.indicate.cou |
| dfd20 | 6e 74 72 79 20 69 6e 20 77 68 69 63 68 20 64 65 76 69 63 65 20 69 73 20 6f 70 65 72 61 74 69 6e | ntry.in.which.device.is.operatin |
| dfd40 | 67 2e 20 54 68 69 73 20 63 61 6e 20 6c 69 6d 69 74 20 61 76 61 69 6c 61 62 6c 65 20 63 68 61 6e | g..This.can.limit.available.chan |
| dfd60 | 6e 65 6c 73 20 61 6e 64 20 74 72 61 6e 73 6d 69 74 20 70 6f 77 65 72 2e 00 43 6f 75 6e 74 72 79 | nels.and.transmit.power..Country |
| dfd80 | 20 63 6f 64 65 20 28 49 53 4f 2f 49 45 43 20 33 31 36 36 2d 31 29 2e 20 55 73 65 64 20 74 6f 20 | .code.(ISO/IEC.3166-1)..Used.to. |
| dfda0 | 73 65 74 20 72 65 67 75 6c 61 74 6f 72 79 20 64 6f 6d 61 69 6e 2e 20 53 65 74 20 61 73 20 6e 65 | set.regulatory.domain..Set.as.ne |
| dfdc0 | 65 64 65 64 20 74 6f 20 69 6e 64 69 63 61 74 65 20 63 6f 75 6e 74 72 79 20 69 6e 20 77 68 69 63 | eded.to.indicate.country.in.whic |
| dfde0 | 68 20 74 68 65 20 62 6f 78 20 69 73 20 6f 70 65 72 61 74 69 6e 67 2e 20 54 68 69 73 20 63 61 6e | h.the.box.is.operating..This.can |
| dfe00 | 20 6c 69 6d 69 74 20 61 76 61 69 6c 61 62 6c 65 20 63 68 61 6e 6e 65 6c 73 20 61 6e 64 20 74 72 | .limit.available.channels.and.tr |
| dfe20 | 61 6e 73 6d 69 74 20 70 6f 77 65 72 2e 00 43 72 65 61 74 20 63 6f 6d 6d 75 6e 69 74 79 2d 6c 69 | ansmit.power..Creat.community-li |
| dfe40 | 73 74 20 70 6f 6c 69 63 79 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 6e 61 6d 65 20 3c 74 65 | st.policy.identified.by.name.<te |
| dfe60 | 78 74 3e 2e 00 43 72 65 61 74 20 65 78 74 63 6f 6d 6d 75 6e 69 74 79 2d 6c 69 73 74 20 70 6f 6c | xt>..Creat.extcommunity-list.pol |
| dfe80 | 69 63 79 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 6e 61 6d 65 20 3c 74 65 78 74 3e 2e 00 43 | icy.identified.by.name.<text>..C |
| dfea0 | 72 65 61 74 65 20 44 48 43 50 20 61 64 64 72 65 73 73 20 72 61 6e 67 65 20 77 69 74 68 20 61 20 | reate.DHCP.address.range.with.a. |
| dfec0 | 72 61 6e 67 65 20 69 64 20 6f 66 20 60 3c 6e 3e 60 2e 20 44 48 43 50 20 6c 65 61 73 65 73 20 61 | range.id.of.`<n>`..DHCP.leases.a |
| dfee0 | 72 65 20 74 61 6b 65 6e 20 66 72 6f 6d 20 74 68 69 73 20 70 6f 6f 6c 2e 20 54 68 65 20 70 6f 6f | re.taken.from.this.pool..The.poo |
| dff00 | 6c 20 73 74 61 72 74 73 20 61 74 20 61 64 64 72 65 73 73 20 60 3c 61 64 64 72 65 73 73 3e 60 2e | l.starts.at.address.`<address>`. |
| dff20 | 00 43 72 65 61 74 65 20 44 48 43 50 20 61 64 64 72 65 73 73 20 72 61 6e 67 65 20 77 69 74 68 20 | .Create.DHCP.address.range.with. |
| dff40 | 61 20 72 61 6e 67 65 20 69 64 20 6f 66 20 60 3c 6e 3e 60 2e 20 44 48 43 50 20 6c 65 61 73 65 73 | a.range.id.of.`<n>`..DHCP.leases |
| dff60 | 20 61 72 65 20 74 61 6b 65 6e 20 66 72 6f 6d 20 74 68 69 73 20 70 6f 6f 6c 2e 20 54 68 65 20 70 | .are.taken.from.this.pool..The.p |
| dff80 | 6f 6f 6c 20 73 74 6f 70 73 20 77 69 74 68 20 61 64 64 72 65 73 73 20 60 3c 61 64 64 72 65 73 73 | ool.stops.with.address.`<address |
| dffa0 | 3e 60 2e 00 43 72 65 61 74 65 20 44 4e 53 20 72 65 63 6f 72 64 20 70 65 72 20 63 6c 69 65 6e 74 | >`..Create.DNS.record.per.client |
| dffc0 | 20 6c 65 61 73 65 2c 20 62 79 20 61 64 64 69 6e 67 20 63 6c 69 65 6e 74 73 20 74 6f 20 2f 65 74 | .lease,.by.adding.clients.to./et |
| dffe0 | 63 2f 68 6f 73 74 73 20 66 69 6c 65 2e 20 45 6e 74 72 79 20 77 69 6c 6c 20 68 61 76 65 20 66 6f | c/hosts.file..Entry.will.have.fo |
| e0000 | 72 6d 61 74 3a 20 60 3c 73 68 61 72 65 64 2d 6e 65 74 77 6f 72 6b 2d 6e 61 6d 65 3e 5f 3c 68 6f | rmat:.`<shared-network-name>_<ho |
| e0020 | 73 74 6e 61 6d 65 3e 2e 3c 64 6f 6d 61 69 6e 2d 6e 61 6d 65 3e 60 00 43 72 65 61 74 65 20 60 3c | stname>.<domain-name>`.Create.`< |
| e0040 | 75 73 65 72 3e 60 20 66 6f 72 20 6c 6f 63 61 6c 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 | user>`.for.local.authentication. |
| e0060 | 6f 6e 20 74 68 69 73 20 73 79 73 74 65 6d 2e 20 54 68 65 20 75 73 65 72 73 20 70 61 73 73 77 6f | on.this.system..The.users.passwo |
| e0080 | 72 64 20 77 69 6c 6c 20 62 65 20 73 65 74 20 74 6f 20 60 3c 70 61 73 73 3e 60 2e 00 43 72 65 61 | rd.will.be.set.to.`<pass>`..Crea |
| e00a0 | 74 65 20 60 60 31 37 32 2e 31 38 2e 32 30 31 2e 30 2f 32 34 60 60 20 61 73 20 61 20 73 75 62 6e | te.``172.18.201.0/24``.as.a.subn |
| e00c0 | 65 74 20 77 69 74 68 69 6e 20 60 60 4e 45 54 31 60 60 20 61 6e 64 20 70 61 73 73 20 61 64 64 72 | et.within.``NET1``.and.pass.addr |
| e00e0 | 65 73 73 20 6f 66 20 55 6e 69 66 69 20 63 6f 6e 74 72 6f 6c 6c 65 72 20 61 74 20 60 60 31 37 32 | ess.of.Unifi.controller.at.``172 |
| e0100 | 2e 31 36 2e 31 30 30 2e 31 60 60 20 74 6f 20 63 6c 69 65 6e 74 73 20 6f 66 20 74 68 61 74 20 73 | .16.100.1``.to.clients.of.that.s |
| e0120 | 75 62 6e 65 74 2e 00 43 72 65 61 74 65 20 61 20 43 41 20 63 68 61 69 6e 20 61 6e 64 20 6c 65 61 | ubnet..Create.a.CA.chain.and.lea |
| e0140 | 66 20 63 65 72 74 69 66 69 63 61 74 65 73 00 43 72 65 61 74 65 20 61 20 62 61 73 69 63 20 62 72 | f.certificates.Create.a.basic.br |
| e0160 | 69 64 67 65 00 43 72 65 61 74 65 20 61 20 66 69 6c 65 20 6e 61 6d 65 64 20 60 60 56 79 4f 53 2d | idge.Create.a.file.named.``VyOS- |
| e0180 | 31 2e 33 2e 36 2e 31 2e 34 2e 31 2e 34 34 36 34 31 2e 43 6f 6e 66 69 67 4d 67 6d 74 2d 43 6f 6d | 1.3.6.1.4.1.44641.ConfigMgmt-Com |
| e01a0 | 6d 61 6e 64 73 60 60 20 75 73 69 6e 67 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6e 74 | mands``.using.the.following.cont |
| e01c0 | 65 6e 74 3a 00 43 72 65 61 74 65 20 61 20 6c 6f 61 64 20 62 61 6c 61 6e 63 69 6e 67 20 72 75 6c | ent:.Create.a.load.balancing.rul |
| e01e0 | 65 2c 20 69 74 20 63 61 6e 20 62 65 20 61 20 6e 75 6d 62 65 72 20 62 65 74 77 65 65 6e 20 31 20 | e,.it.can.be.a.number.between.1. |
| e0200 | 61 6e 64 20 39 39 39 39 3a 00 43 72 65 61 74 65 20 61 20 6e 65 77 20 3a 61 62 62 72 3a 60 43 41 | and.9999:.Create.a.new.:abbr:`CA |
| e0220 | 20 28 43 65 72 74 69 66 69 63 61 74 65 20 41 75 74 68 6f 72 69 74 79 29 60 20 61 6e 64 20 6f 75 | .(Certificate.Authority)`.and.ou |
| e0240 | 74 70 75 74 20 74 68 65 20 43 41 73 20 70 75 62 6c 69 63 20 61 6e 64 20 70 72 69 76 61 74 65 20 | tput.the.CAs.public.and.private. |
| e0260 | 6b 65 79 20 6f 6e 20 74 68 65 20 63 6f 6e 73 6f 6c 65 2e 00 43 72 65 61 74 65 20 61 20 6e 65 77 | key.on.the.console..Create.a.new |
| e0280 | 20 44 48 43 50 20 73 74 61 74 69 63 20 6d 61 70 70 69 6e 67 20 6e 61 6d 65 64 20 60 3c 64 65 73 | .DHCP.static.mapping.named.`<des |
| e02a0 | 63 72 69 70 74 69 6f 6e 3e 60 20 77 68 69 63 68 20 69 73 20 76 61 6c 69 64 20 66 6f 72 20 74 68 | cription>`.which.is.valid.for.th |
| e02c0 | 65 20 68 6f 73 74 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 69 74 73 20 44 48 43 50 20 75 6e | e.host.identified.by.its.DHCP.un |
| e02e0 | 69 71 75 65 20 69 64 65 6e 74 69 66 69 65 72 20 28 44 55 49 44 29 20 60 3c 69 64 65 6e 74 69 66 | ique.identifier.(DUID).`<identif |
| e0300 | 69 65 72 3e 60 2e 00 43 72 65 61 74 65 20 61 20 6e 65 77 20 44 48 43 50 20 73 74 61 74 69 63 20 | ier>`..Create.a.new.DHCP.static. |
| e0320 | 6d 61 70 70 69 6e 67 20 6e 61 6d 65 64 20 60 3c 64 65 73 63 72 69 70 74 69 6f 6e 3e 60 20 77 68 | mapping.named.`<description>`.wh |
| e0340 | 69 63 68 20 69 73 20 76 61 6c 69 64 20 66 6f 72 20 74 68 65 20 68 6f 73 74 20 69 64 65 6e 74 69 | ich.is.valid.for.the.host.identi |
| e0360 | 66 69 65 64 20 62 79 20 69 74 73 20 4d 41 43 20 60 3c 61 64 64 72 65 73 73 3e 60 2e 00 43 72 65 | fied.by.its.MAC.`<address>`..Cre |
| e0380 | 61 74 65 20 61 20 6e 65 77 20 56 4c 41 4e 20 69 6e 74 65 72 66 61 63 65 20 6f 6e 20 69 6e 74 65 | ate.a.new.VLAN.interface.on.inte |
| e03a0 | 72 66 61 63 65 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 20 75 73 69 6e 67 20 74 68 65 20 56 4c | rface.`<interface>`.using.the.VL |
| e03c0 | 41 4e 20 6e 75 6d 62 65 72 20 70 72 6f 76 69 64 65 64 20 76 69 61 20 60 3c 76 6c 61 6e 2d 69 64 | AN.number.provided.via.`<vlan-id |
| e03e0 | 3e 60 2e 00 43 72 65 61 74 65 20 61 20 6e 65 77 20 56 52 46 20 69 6e 73 74 61 6e 63 65 20 77 69 | >`..Create.a.new.VRF.instance.wi |
| e0400 | 74 68 20 60 3c 6e 61 6d 65 3e 60 20 61 6e 64 20 60 3c 69 64 3e 60 2e 20 54 68 65 20 6e 61 6d 65 | th.`<name>`.and.`<id>`..The.name |
| e0420 | 20 69 73 20 75 73 65 64 20 77 68 65 6e 20 70 6c 61 63 69 6e 67 20 69 6e 64 69 76 69 64 75 61 6c | .is.used.when.placing.individual |
| e0440 | 20 69 6e 74 65 72 66 61 63 65 73 20 69 6e 74 6f 20 74 68 65 20 56 52 46 2e 00 43 72 65 61 74 65 | .interfaces.into.the.VRF..Create |
| e0460 | 20 61 20 6e 65 77 20 70 75 62 6c 69 63 2f 70 72 69 76 61 74 65 20 6b 65 79 70 61 69 72 20 61 6e | .a.new.public/private.keypair.an |
| e0480 | 64 20 6f 75 74 70 75 74 20 74 68 65 20 63 65 72 74 69 66 69 63 61 74 65 20 6f 6e 20 74 68 65 20 | d.output.the.certificate.on.the. |
| e04a0 | 63 6f 6e 73 6f 6c 65 2e 00 43 72 65 61 74 65 20 61 20 6e 65 77 20 70 75 62 6c 69 63 2f 70 72 69 | console..Create.a.new.public/pri |
| e04c0 | 76 61 74 65 20 6b 65 79 70 61 69 72 20 77 68 69 63 68 20 69 73 20 73 69 67 6e 65 64 20 62 79 20 | vate.keypair.which.is.signed.by. |
| e04e0 | 74 68 65 20 43 41 20 72 65 66 65 72 65 6e 63 65 64 20 62 79 20 60 63 61 2d 6e 61 6d 65 60 2e 20 | the.CA.referenced.by.`ca-name`.. |
| e0500 | 54 68 65 20 73 69 67 6e 65 64 20 63 65 72 74 69 66 69 63 61 74 65 20 69 73 20 74 68 65 6e 20 6f | The.signed.certificate.is.then.o |
| e0520 | 75 74 70 75 74 20 74 6f 20 74 68 65 20 63 6f 6e 73 6f 6c 65 2e 00 43 72 65 61 74 65 20 61 20 6e | utput.to.the.console..Create.a.n |
| e0540 | 65 77 20 73 65 6c 66 2d 73 69 67 6e 65 64 20 63 65 72 74 69 66 69 63 61 74 65 2e 20 54 68 65 20 | ew.self-signed.certificate..The. |
| e0560 | 70 75 62 6c 69 63 2f 70 72 69 76 61 74 65 20 69 73 20 74 68 65 6e 20 73 68 6f 77 6e 20 6f 6e 20 | public/private.is.then.shown.on. |
| e0580 | 74 68 65 20 63 6f 6e 73 6f 6c 65 2e 00 43 72 65 61 74 65 20 61 20 6e 65 77 20 73 75 62 6f 72 64 | the.console..Create.a.new.subord |
| e05a0 | 69 6e 61 74 65 20 3a 61 62 62 72 3a 60 43 41 20 28 43 65 72 74 69 66 69 63 61 74 65 20 41 75 74 | inate.:abbr:`CA.(Certificate.Aut |
| e05c0 | 68 6f 72 69 74 79 29 60 20 61 6e 64 20 73 69 67 6e 20 69 74 20 75 73 69 6e 67 20 74 68 65 20 70 | hority)`.and.sign.it.using.the.p |
| e05e0 | 72 69 76 61 74 65 20 6b 65 79 20 72 65 66 65 72 65 6e 63 65 64 20 62 79 20 60 63 61 2d 6e 61 6d | rivate.key.referenced.by.`ca-nam |
| e0600 | 65 60 2e 00 43 72 65 61 74 65 20 61 20 6e 65 77 20 73 75 62 6f 72 64 69 6e 61 74 65 20 3a 61 62 | e`..Create.a.new.subordinate.:ab |
| e0620 | 62 72 3a 60 43 41 20 28 43 65 72 74 69 66 69 63 61 74 65 20 41 75 74 68 6f 72 69 74 79 29 60 20 | br:`CA.(Certificate.Authority)`. |
| e0640 | 61 6e 64 20 73 69 67 6e 20 69 74 20 75 73 69 6e 67 20 74 68 65 20 70 72 69 76 61 74 65 20 6b 65 | and.sign.it.using.the.private.ke |
| e0660 | 79 20 72 65 66 65 72 65 6e 63 65 64 20 62 79 20 60 6e 61 6d 65 60 2e 00 43 72 65 61 74 65 20 61 | y.referenced.by.`name`..Create.a |
| e0680 | 20 70 65 65 72 20 61 73 20 79 6f 75 20 77 6f 75 6c 64 20 77 68 65 6e 20 79 6f 75 20 73 70 65 63 | .peer.as.you.would.when.you.spec |
| e06a0 | 69 66 79 20 61 6e 20 41 53 4e 2c 20 65 78 63 65 70 74 20 74 68 61 74 20 69 66 20 74 68 65 20 70 | ify.an.ASN,.except.that.if.the.p |
| e06c0 | 65 65 72 73 20 41 53 4e 20 69 73 20 64 69 66 66 65 72 65 6e 74 20 74 68 61 6e 20 6d 69 6e 65 20 | eers.ASN.is.different.than.mine. |
| e06e0 | 61 73 20 73 70 65 63 69 66 69 65 64 20 75 6e 64 65 72 20 74 68 65 20 3a 63 66 67 63 6d 64 3a 60 | as.specified.under.the.:cfgcmd:` |
| e0700 | 70 72 6f 74 6f 63 6f 6c 73 20 62 67 70 20 3c 61 73 6e 3e 60 20 63 6f 6d 6d 61 6e 64 20 74 68 65 | protocols.bgp.<asn>`.command.the |
| e0720 | 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 77 69 6c 6c 20 62 65 20 64 65 6e 69 65 64 2e 00 43 72 65 61 | .connection.will.be.denied..Crea |
| e0740 | 74 65 20 61 20 70 65 65 72 20 61 73 20 79 6f 75 20 77 6f 75 6c 64 20 77 68 65 6e 20 79 6f 75 20 | te.a.peer.as.you.would.when.you. |
| e0760 | 73 70 65 63 69 66 79 20 61 6e 20 41 53 4e 2c 20 65 78 63 65 70 74 20 74 68 61 74 20 69 66 20 74 | specify.an.ASN,.except.that.if.t |
| e0780 | 68 65 20 70 65 65 72 73 20 41 53 4e 20 69 73 20 74 68 65 20 73 61 6d 65 20 61 73 20 6d 69 6e 65 | he.peers.ASN.is.the.same.as.mine |
| e07a0 | 20 61 73 20 73 70 65 63 69 66 69 65 64 20 75 6e 64 65 72 20 74 68 65 20 3a 63 66 67 63 6d 64 3a | .as.specified.under.the.:cfgcmd: |
| e07c0 | 60 70 72 6f 74 6f 63 6f 6c 73 20 62 67 70 20 3c 61 73 6e 3e 60 20 63 6f 6d 6d 61 6e 64 20 74 68 | `protocols.bgp.<asn>`.command.th |
| e07e0 | 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 77 69 6c 6c 20 62 65 20 64 65 6e 69 65 64 2e 00 43 72 65 | e.connection.will.be.denied..Cre |
| e0800 | 61 74 65 20 61 20 73 74 61 74 69 63 20 68 6f 73 74 6e 61 6d 65 20 6d 61 70 70 69 6e 67 20 77 68 | ate.a.static.hostname.mapping.wh |
| e0820 | 69 63 68 20 77 69 6c 6c 20 61 6c 77 61 79 73 20 72 65 73 6f 6c 76 65 20 74 68 65 20 6e 61 6d 65 | ich.will.always.resolve.the.name |
| e0840 | 20 60 3c 68 6f 73 74 6e 61 6d 65 3e 60 20 74 6f 20 49 50 20 61 64 64 72 65 73 73 20 60 3c 61 64 | .`<hostname>`.to.IP.address.`<ad |
| e0860 | 64 72 65 73 73 3e 60 2e 00 43 72 65 61 74 65 20 61 73 2d 70 61 74 68 2d 70 6f 6c 69 63 79 20 69 | dress>`..Create.as-path-policy.i |
| e0880 | 64 65 6e 74 69 66 69 65 64 20 62 79 20 6e 61 6d 65 20 3c 74 65 78 74 3e 2e 00 43 72 65 61 74 65 | dentified.by.name.<text>..Create |
| e08a0 | 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 20 69 6e 20 66 6f 72 77 61 72 64 20 63 68 61 69 6e 2c | .firewall.rule.in.forward.chain, |
| e08c0 | 20 61 6e 64 20 64 65 66 69 6e 65 20 77 68 69 63 68 20 66 6c 6f 77 74 62 61 6c 65 20 73 68 6f 75 | .and.define.which.flowtbale.shou |
| e08e0 | 6c 64 20 62 65 20 75 73 65 64 2e 20 4f 6e 6c 79 20 61 70 70 6c 69 63 61 62 6c 65 20 69 66 20 61 | ld.be.used..Only.applicable.if.a |
| e0900 | 63 74 69 6f 6e 20 69 73 20 60 60 6f 66 66 6c 6f 61 64 60 60 2e 00 43 72 65 61 74 65 20 66 69 72 | ction.is.``offload``..Create.fir |
| e0920 | 65 77 61 6c 6c 20 72 75 6c 65 20 69 6e 20 66 6f 72 77 61 72 64 20 63 68 61 69 6e 2c 20 61 6e 64 | ewall.rule.in.forward.chain,.and |
| e0940 | 20 73 65 74 20 61 63 74 69 6f 6e 20 74 6f 20 60 60 6f 66 66 6c 6f 61 64 60 60 2e 00 43 72 65 61 | .set.action.to.``offload``..Crea |
| e0960 | 74 65 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 3a 20 63 72 65 61 74 65 20 61 20 66 69 72 65 77 | te.firewall.rule:.create.a.firew |
| e0980 | 61 6c 6c 20 72 75 6c 65 2c 20 73 65 74 74 69 6e 67 20 61 63 74 69 6f 6e 20 74 6f 20 60 60 6f 66 | all.rule,.setting.action.to.``of |
| e09a0 | 66 6c 6f 61 64 60 60 20 61 6e 64 20 75 73 69 6e 67 20 64 65 73 69 72 65 64 20 66 6c 6f 77 74 61 | fload``.and.using.desired.flowta |
| e09c0 | 62 6c 65 20 66 6f 72 20 60 60 6f 66 66 6c 6f 61 64 2d 74 61 72 67 65 74 60 60 2e 00 43 72 65 61 | ble.for.``offload-target``..Crea |
| e09e0 | 74 65 20 66 6c 6f 77 74 61 62 6c 65 3a 20 63 72 65 61 74 65 20 66 6c 6f 77 74 61 62 6c 65 2c 20 | te.flowtable:.create.flowtable,. |
| e0a00 | 77 68 69 63 68 20 69 6e 63 6c 75 64 65 73 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 73 20 74 68 | which.includes.the.interfaces.th |
| e0a20 | 61 74 20 61 72 65 20 67 6f 69 6e 67 20 74 6f 20 62 65 20 75 73 65 64 20 62 79 20 74 68 65 20 66 | at.are.going.to.be.used.by.the.f |
| e0a40 | 6c 6f 77 74 61 62 6c 65 2e 00 43 72 65 61 74 65 20 6c 61 72 67 65 2d 63 6f 6d 6d 75 6e 69 74 79 | lowtable..Create.large-community |
| e0a60 | 2d 6c 69 73 74 20 70 6f 6c 69 63 79 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 6e 61 6d 65 20 | -list.policy.identified.by.name. |
| e0a80 | 3c 74 65 78 74 3e 2e 00 43 72 65 61 74 65 20 6e 61 6d 65 64 20 60 3c 61 6c 69 61 73 3e 60 20 66 | <text>..Create.named.`<alias>`.f |
| e0aa0 | 6f 72 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 73 74 61 74 69 63 20 6d 61 70 70 69 6e 67 | or.the.configured.static.mapping |
| e0ac0 | 20 66 6f 72 20 60 3c 68 6f 73 74 6e 61 6d 65 3e 60 2e 20 54 68 75 73 20 74 68 65 20 61 64 64 72 | .for.`<hostname>`..Thus.the.addr |
| e0ae0 | 65 73 73 20 63 6f 6e 66 69 67 75 72 65 64 20 61 73 20 3a 63 66 67 63 6d 64 3a 60 73 65 74 20 73 | ess.configured.as.:cfgcmd:`set.s |
| e0b00 | 79 73 74 65 6d 20 73 74 61 74 69 63 2d 68 6f 73 74 2d 6d 61 70 70 69 6e 67 20 68 6f 73 74 2d 6e | ystem.static-host-mapping.host-n |
| e0b20 | 61 6d 65 20 3c 68 6f 73 74 6e 61 6d 65 3e 20 69 6e 65 74 20 3c 61 64 64 72 65 73 73 3e 60 20 63 | ame.<hostname>.inet.<address>`.c |
| e0b40 | 61 6e 20 62 65 20 72 65 61 63 68 65 64 20 76 69 61 20 6d 75 6c 74 69 70 6c 65 20 6e 61 6d 65 73 | an.be.reached.via.multiple.names |
| e0b60 | 2e 00 43 72 65 61 74 65 20 6e 65 77 20 3a 72 66 63 3a 60 32 31 33 36 60 20 44 4e 53 20 75 70 64 | ..Create.new.:rfc:`2136`.DNS.upd |
| e0b80 | 61 74 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 77 68 69 63 68 20 77 69 6c 6c 20 75 70 64 | ate.configuration.which.will.upd |
| e0ba0 | 61 74 65 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 61 73 73 69 67 6e 65 64 20 74 6f 20 60 | ate.the.IP.address.assigned.to.` |
| e0bc0 | 3c 69 6e 74 65 72 66 61 63 65 3e 60 20 6f 6e 20 74 68 65 20 73 65 72 76 69 63 65 20 79 6f 75 20 | <interface>`.on.the.service.you. |
| e0be0 | 63 6f 6e 66 69 67 75 72 65 64 20 75 6e 64 65 72 20 60 3c 73 65 72 76 69 63 65 2d 6e 61 6d 65 3e | configured.under.`<service-name> |
| e0c00 | 60 2e 00 43 72 65 61 74 65 20 6e 65 77 20 56 52 46 20 69 6e 73 74 61 6e 63 65 20 77 69 74 68 20 | `..Create.new.VRF.instance.with. |
| e0c20 | 60 3c 6e 61 6d 65 3e 60 2e 20 54 68 65 20 6e 61 6d 65 20 69 73 20 75 73 65 64 20 77 68 65 6e 20 | `<name>`..The.name.is.used.when. |
| e0c40 | 70 6c 61 63 69 6e 67 20 69 6e 64 69 76 69 64 75 61 6c 20 69 6e 74 65 72 66 61 63 65 73 20 69 6e | placing.individual.interfaces.in |
| e0c60 | 74 6f 20 74 68 65 20 56 52 46 2e 00 43 72 65 61 74 65 20 6e 65 77 20 64 79 6e 61 6d 69 63 20 44 | to.the.VRF..Create.new.dynamic.D |
| e0c80 | 4e 53 20 75 70 64 61 74 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 77 68 69 63 68 20 77 69 | NS.update.configuration.which.wi |
| e0ca0 | 6c 6c 20 75 70 64 61 74 65 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 61 73 73 69 67 6e 65 | ll.update.the.IP.address.assigne |
| e0cc0 | 64 20 74 6f 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 20 6f 6e 20 74 68 65 20 73 65 72 76 69 63 | d.to.`<interface>`.on.the.servic |
| e0ce0 | 65 20 79 6f 75 20 63 6f 6e 66 69 67 75 72 65 64 20 75 6e 64 65 72 20 60 3c 73 65 72 76 69 63 65 | e.you.configured.under.`<service |
| e0d00 | 2d 6e 61 6d 65 3e 60 2e 00 43 72 65 61 74 65 20 6e 65 77 20 73 79 73 74 65 6d 20 75 73 65 72 20 | -name>`..Create.new.system.user. |
| e0d20 | 77 69 74 68 20 75 73 65 72 6e 61 6d 65 20 60 3c 6e 61 6d 65 3e 60 20 61 6e 64 20 72 65 61 6c 2d | with.username.`<name>`.and.real- |
| e0d40 | 6e 61 6d 65 20 73 70 65 63 69 66 69 65 64 20 62 79 20 60 3c 73 74 72 69 6e 67 3e 60 2e 00 43 72 | name.specified.by.`<string>`..Cr |
| e0d60 | 65 61 74 65 20 73 65 72 76 69 63 65 20 60 3c 6e 61 6d 65 3e 60 20 74 6f 20 6c 69 73 74 65 6e 20 | eate.service.`<name>`.to.listen. |
| e0d80 | 6f 6e 20 3c 70 6f 72 74 3e 00 43 72 65 61 74 65 73 20 61 20 6e 61 6d 65 64 20 63 6f 6e 74 61 69 | on.<port>.Creates.a.named.contai |
| e0da0 | 6e 65 72 20 6e 65 74 77 6f 72 6b 00 43 72 65 61 74 65 73 20 6c 6f 63 61 6c 20 49 50 6f 45 20 75 | ner.network.Creates.local.IPoE.u |
| e0dc0 | 73 65 72 20 77 69 74 68 20 75 73 65 72 6e 61 6d 65 3d 2a 2a 3c 69 6e 74 65 72 66 61 63 65 3e 2a | ser.with.username=**<interface>* |
| e0de0 | 2a 20 61 6e 64 20 70 61 73 73 77 6f 72 64 3d 2a 2a 3c 4d 41 43 3e 2a 2a 20 28 6d 61 63 2d 61 64 | *.and.password=**<MAC>**.(mac-ad |
| e0e00 | 64 72 65 73 73 29 00 43 72 65 61 74 65 73 20 73 74 61 74 69 63 20 70 65 65 72 20 6d 61 70 70 69 | dress).Creates.static.peer.mappi |
| e0e20 | 6e 67 20 6f 66 20 70 72 6f 74 6f 63 6f 6c 2d 61 64 64 72 65 73 73 20 74 6f 20 3a 61 62 62 72 3a | ng.of.protocol-address.to.:abbr: |
| e0e40 | 60 4e 42 4d 41 20 28 4e 6f 6e 2d 62 72 6f 61 64 63 61 73 74 20 6d 75 6c 74 69 70 6c 65 2d 61 63 | `NBMA.(Non-broadcast.multiple-ac |
| e0e60 | 63 65 73 73 20 6e 65 74 77 6f 72 6b 29 60 20 61 64 64 72 65 73 73 2e 00 43 72 65 61 74 69 6e 67 | cess.network)`.address..Creating |
| e0e80 | 20 61 20 62 72 69 64 67 65 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 76 65 72 79 20 73 69 6d 70 | .a.bridge.interface.is.very.simp |
| e0ea0 | 6c 65 2e 20 49 6e 20 74 68 69 73 20 65 78 61 6d 70 6c 65 2c 20 77 65 20 77 69 6c 6c 20 68 61 76 | le..In.this.example,.we.will.hav |
| e0ec0 | 65 3a 00 43 72 65 61 74 69 6e 67 20 61 20 66 6c 6f 77 20 74 61 62 6c 65 3a 00 43 72 65 61 74 69 | e:.Creating.a.flow.table:.Creati |
| e0ee0 | 6e 67 20 61 20 74 72 61 66 66 69 63 20 70 6f 6c 69 63 79 00 43 72 65 61 74 69 6e 67 20 72 75 6c | ng.a.traffic.policy.Creating.rul |
| e0f00 | 65 73 20 66 6f 72 20 75 73 69 6e 67 20 66 6c 6f 77 20 74 61 62 6c 65 73 3a 00 43 72 65 64 65 6e | es.for.using.flow.tables:.Creden |
| e0f20 | 74 69 61 6c 73 20 63 61 6e 20 62 65 20 64 65 66 69 6e 65 64 20 68 65 72 65 20 61 6e 64 20 77 69 | tials.can.be.defined.here.and.wi |
| e0f40 | 6c 6c 20 6f 6e 6c 79 20 62 65 20 75 73 65 64 20 77 68 65 6e 20 61 64 64 69 6e 67 20 61 20 63 6f | ll.only.be.used.when.adding.a.co |
| e0f60 | 6e 74 61 69 6e 65 72 20 69 6d 61 67 65 20 74 6f 20 74 68 65 20 73 79 73 74 65 6d 2e 00 43 72 69 | ntainer.image.to.the.system..Cri |
| e0f80 | 74 69 63 61 6c 00 43 72 69 74 69 63 61 6c 20 63 6f 6e 64 69 74 69 6f 6e 73 20 2d 20 65 2e 67 2e | tical.Critical.conditions.-.e.g. |
| e0fa0 | 20 68 61 72 64 20 64 72 69 76 65 20 65 72 72 6f 72 73 2e 00 43 72 79 73 74 61 6c 66 6f 6e 74 7a | .hard.drive.errors..Crystalfontz |
| e0fc0 | 20 43 46 41 2d 35 33 33 00 43 72 79 73 74 61 6c 66 6f 6e 74 7a 20 43 46 41 2d 36 33 31 00 43 72 | .CFA-533.Crystalfontz.CFA-631.Cr |
| e0fe0 | 79 73 74 61 6c 66 6f 6e 74 7a 20 43 46 41 2d 36 33 33 00 43 72 79 73 74 61 6c 66 6f 6e 74 7a 20 | ystalfontz.CFA-633.Crystalfontz. |
| e1000 | 43 46 41 2d 36 33 35 00 43 75 72 20 48 6f 70 20 4c 69 6d 69 74 00 43 75 72 72 65 6e 74 6c 79 20 | CFA-635.Cur.Hop.Limit.Currently. |
| e1020 | 64 6f 65 73 20 6e 6f 74 20 64 6f 20 6d 75 63 68 20 61 73 20 63 61 63 68 69 6e 67 20 69 73 20 6e | does.not.do.much.as.caching.is.n |
| e1040 | 6f 74 20 69 6d 70 6c 65 6d 65 6e 74 65 64 2e 00 43 75 72 72 65 6e 74 6c 79 20 64 79 6e 61 6d 69 | ot.implemented..Currently.dynami |
| e1060 | 63 20 72 6f 75 74 69 6e 67 20 69 73 20 73 75 70 70 6f 72 74 65 64 20 66 6f 72 20 74 68 65 20 66 | c.routing.is.supported.for.the.f |
| e1080 | 6f 6c 6c 6f 77 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 73 3a 00 43 75 73 74 6f 6d 20 46 69 6c 65 00 | ollowing.protocols:.Custom.File. |
| e10a0 | 43 75 73 74 6f 6d 20 62 72 69 64 67 65 20 66 69 72 65 77 61 6c 6c 20 63 68 61 69 6e 73 20 63 61 | Custom.bridge.firewall.chains.ca |
| e10c0 | 6e 20 62 65 20 63 72 65 61 74 65 20 77 69 74 68 20 63 6f 6d 6d 61 6e 64 20 60 60 73 65 74 20 66 | n.be.create.with.command.``set.f |
| e10e0 | 69 72 65 77 61 6c 6c 20 62 72 69 64 67 65 20 6e 61 6d 65 20 3c 6e 61 6d 65 3e 20 2e 2e 2e 60 60 | irewall.bridge.name.<name>....`` |
| e1100 | 2e 20 49 6e 20 6f 72 64 65 72 20 74 6f 20 75 73 65 20 73 75 63 68 20 63 75 73 74 6f 6d 20 63 68 | ..In.order.to.use.such.custom.ch |
| e1120 | 61 69 6e 2c 20 61 20 72 75 6c 65 20 77 69 74 68 20 61 63 74 69 6f 6e 20 6a 75 6d 70 2c 20 61 6e | ain,.a.rule.with.action.jump,.an |
| e1140 | 64 20 74 68 65 20 61 70 70 72 6f 70 69 61 74 65 20 74 61 72 67 65 74 20 73 68 6f 75 6c 64 20 62 | d.the.appropiate.target.should.b |
| e1160 | 65 20 64 65 66 69 6e 65 64 20 69 6e 20 61 20 62 61 73 65 20 63 68 61 69 6e 2e 00 43 75 73 74 6f | e.defined.in.a.base.chain..Custo |
| e1180 | 6d 20 62 72 69 64 67 65 20 66 69 72 65 77 61 6c 6c 20 63 68 61 69 6e 73 20 63 61 6e 20 62 65 20 | m.bridge.firewall.chains.can.be. |
| e11a0 | 63 72 65 61 74 65 20 77 69 74 68 20 63 6f 6d 6d 61 6e 64 20 60 60 73 65 74 20 66 69 72 65 77 61 | create.with.command.``set.firewa |
| e11c0 | 6c 6c 20 62 72 69 64 67 65 20 6e 61 6d 65 20 3c 6e 61 6d 65 3e 20 2e 2e 2e 60 60 2e 20 49 6e 20 | ll.bridge.name.<name>....``..In. |
| e11e0 | 6f 72 64 65 72 20 74 6f 20 75 73 65 20 73 75 63 68 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 2c 20 | order.to.use.such.custom.chain,. |
| e1200 | 61 20 72 75 6c 65 20 77 69 74 68 20 61 63 74 69 6f 6e 20 6a 75 6d 70 2c 20 61 6e 64 20 74 68 65 | a.rule.with.action.jump,.and.the |
| e1220 | 20 61 70 70 72 6f 70 72 69 61 74 65 20 74 61 72 67 65 74 20 73 68 6f 75 6c 64 20 62 65 20 64 65 | .appropriate.target.should.be.de |
| e1240 | 66 69 6e 65 64 20 69 6e 20 61 20 62 61 73 65 20 63 68 61 69 6e 2e 00 43 75 73 74 6f 6d 20 62 72 | fined.in.a.base.chain..Custom.br |
| e1260 | 69 64 67 65 20 66 69 72 65 77 61 6c 6c 20 63 68 61 69 6e 73 20 63 61 6e 20 62 65 20 63 72 65 61 | idge.firewall.chains.can.be.crea |
| e1280 | 74 65 64 20 77 69 74 68 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 60 60 73 65 74 20 66 69 72 65 77 | ted.with.the.command.``set.firew |
| e12a0 | 61 6c 6c 20 62 72 69 64 67 65 20 6e 61 6d 65 20 3c 6e 61 6d 65 3e 20 2e 2e 2e 60 60 2e 20 49 6e | all.bridge.name.<name>....``..In |
| e12c0 | 20 6f 72 64 65 72 20 74 6f 20 75 73 65 20 73 75 63 68 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 2c | .order.to.use.such.custom.chain, |
| e12e0 | 20 61 20 72 75 6c 65 20 77 69 74 68 20 61 63 74 69 6f 6e 20 6a 75 6d 70 2c 20 61 6e 64 20 74 68 | .a.rule.with.action.jump,.and.th |
| e1300 | 65 20 61 70 70 72 6f 70 72 69 61 74 65 20 74 61 72 67 65 74 20 73 68 6f 75 6c 64 20 62 65 20 64 | e.appropriate.target.should.be.d |
| e1320 | 65 66 69 6e 65 64 20 69 6e 20 61 20 62 61 73 65 20 63 68 61 69 6e 2e 00 43 75 73 74 6f 6d 20 66 | efined.in.a.base.chain..Custom.f |
| e1340 | 69 72 65 77 61 6c 6c 20 63 68 61 69 6e 73 20 63 61 6e 20 62 65 20 63 72 65 61 74 65 64 2c 20 77 | irewall.chains.can.be.created,.w |
| e1360 | 69 74 68 20 63 6f 6d 6d 61 6e 64 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 5b 69 70 76 | ith.commands.``set.firewall.[ipv |
| e1380 | 34 20 7c 20 69 70 76 36 5d 20 5b 6e 61 6d 65 20 7c 20 69 70 76 36 2d 6e 61 6d 65 5d 20 3c 6e 61 | 4.|.ipv6].[name.|.ipv6-name].<na |
| e13a0 | 6d 65 3e 20 2e 2e 2e 60 60 2e 20 49 6e 20 6f 72 64 65 72 20 74 6f 20 75 73 65 20 73 75 63 68 20 | me>....``..In.order.to.use.such. |
| e13c0 | 63 75 73 74 6f 6d 20 63 68 61 69 6e 2c 20 61 20 72 75 6c 65 20 77 69 74 68 20 2a 2a 61 63 74 69 | custom.chain,.a.rule.with.**acti |
| e13e0 | 6f 6e 20 6a 75 6d 70 2a 2a 2c 20 61 6e 64 20 74 68 65 20 61 70 70 72 6f 70 69 61 74 65 20 2a 2a | on.jump**,.and.the.appropiate.** |
| e1400 | 74 61 72 67 65 74 2a 2a 20 73 68 6f 75 6c 64 20 62 65 20 64 65 66 69 6e 65 64 20 69 6e 20 61 20 | target**.should.be.defined.in.a. |
| e1420 | 62 61 73 65 20 63 68 61 69 6e 2e 00 43 75 73 74 6f 6d 20 66 69 72 65 77 61 6c 6c 20 63 68 61 69 | base.chain..Custom.firewall.chai |
| e1440 | 6e 73 20 63 61 6e 20 62 65 20 63 72 65 61 74 65 64 2c 20 77 69 74 68 20 63 6f 6d 6d 61 6e 64 73 | ns.can.be.created,.with.commands |
| e1460 | 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 6e 61 6d 65 20 3c 6e 61 6d 65 3e | .``set.firewall.ipv4.name.<name> |
| e1480 | 20 2e 2e 2e 60 60 2e 20 49 6e 20 6f 72 64 65 72 20 74 6f 20 75 73 65 20 73 75 63 68 20 63 75 73 | ....``..In.order.to.use.such.cus |
| e14a0 | 74 6f 6d 20 63 68 61 69 6e 2c 20 61 20 72 75 6c 65 20 77 69 74 68 20 2a 2a 61 63 74 69 6f 6e 20 | tom.chain,.a.rule.with.**action. |
| e14c0 | 6a 75 6d 70 2a 2a 2c 20 61 6e 64 20 74 68 65 20 61 70 70 72 6f 70 69 61 74 65 20 2a 2a 74 61 72 | jump**,.and.the.appropiate.**tar |
| e14e0 | 67 65 74 2a 2a 20 73 68 6f 75 6c 64 20 62 65 20 64 65 66 69 6e 65 64 20 69 6e 20 61 20 62 61 73 | get**.should.be.defined.in.a.bas |
| e1500 | 65 20 63 68 61 69 6e 2e 00 43 75 73 74 6f 6d 20 66 69 72 65 77 61 6c 6c 20 63 68 61 69 6e 73 20 | e.chain..Custom.firewall.chains. |
| e1520 | 63 61 6e 20 62 65 20 63 72 65 61 74 65 64 2c 20 77 69 74 68 20 63 6f 6d 6d 61 6e 64 73 20 60 60 | can.be.created,.with.commands.`` |
| e1540 | 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 6e 61 6d 65 20 3c 6e 61 6d 65 3e 20 2e 2e | set.firewall.ipv4.name.<name>... |
| e1560 | 2e 60 60 2e 20 49 6e 20 6f 72 64 65 72 20 74 6f 20 75 73 65 20 73 75 63 68 20 63 75 73 74 6f 6d | .``..In.order.to.use.such.custom |
| e1580 | 20 63 68 61 69 6e 2c 20 61 20 72 75 6c 65 20 77 69 74 68 20 2a 2a 61 63 74 69 6f 6e 20 6a 75 6d | .chain,.a.rule.with.**action.jum |
| e15a0 | 70 2a 2a 2c 20 61 6e 64 20 74 68 65 20 61 70 70 72 6f 70 72 69 61 74 65 20 2a 2a 74 61 72 67 65 | p**,.and.the.appropriate.**targe |
| e15c0 | 74 2a 2a 20 73 68 6f 75 6c 64 20 62 65 20 64 65 66 69 6e 65 64 20 69 6e 20 61 20 62 61 73 65 20 | t**.should.be.defined.in.a.base. |
| e15e0 | 63 68 61 69 6e 2e 00 43 75 73 74 6f 6d 20 66 69 72 65 77 61 6c 6c 20 63 68 61 69 6e 73 20 63 61 | chain..Custom.firewall.chains.ca |
| e1600 | 6e 20 62 65 20 63 72 65 61 74 65 64 2c 20 77 69 74 68 20 63 6f 6d 6d 61 6e 64 73 20 60 60 73 65 | n.be.created,.with.commands.``se |
| e1620 | 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 6e 61 6d 65 20 3c 6e 61 6d 65 3e 20 2e 2e 2e 60 | t.firewall.ipv6.name.<name>....` |
| e1640 | 60 2e 20 49 6e 20 6f 72 64 65 72 20 74 6f 20 75 73 65 20 73 75 63 68 20 63 75 73 74 6f 6d 20 63 | `..In.order.to.use.such.custom.c |
| e1660 | 68 61 69 6e 2c 20 61 20 72 75 6c 65 20 77 69 74 68 20 2a 2a 61 63 74 69 6f 6e 20 6a 75 6d 70 2a | hain,.a.rule.with.**action.jump* |
| e1680 | 2a 2c 20 61 6e 64 20 74 68 65 20 61 70 70 72 6f 70 69 61 74 65 20 2a 2a 74 61 72 67 65 74 2a 2a | *,.and.the.appropiate.**target** |
| e16a0 | 20 73 68 6f 75 6c 64 20 62 65 20 64 65 66 69 6e 65 64 20 69 6e 20 61 20 62 61 73 65 20 63 68 61 | .should.be.defined.in.a.base.cha |
| e16c0 | 69 6e 2e 00 43 75 73 74 6f 6d 20 66 69 72 65 77 61 6c 6c 20 63 68 61 69 6e 73 20 63 61 6e 20 62 | in..Custom.firewall.chains.can.b |
| e16e0 | 65 20 63 72 65 61 74 65 64 2c 20 77 69 74 68 20 63 6f 6d 6d 61 6e 64 73 20 60 60 73 65 74 20 66 | e.created,.with.commands.``set.f |
| e1700 | 69 72 65 77 61 6c 6c 20 69 70 76 36 20 6e 61 6d 65 20 3c 6e 61 6d 65 3e 20 2e 2e 2e 60 60 2e 20 | irewall.ipv6.name.<name>....``.. |
| e1720 | 49 6e 20 6f 72 64 65 72 20 74 6f 20 75 73 65 20 73 75 63 68 20 63 75 73 74 6f 6d 20 63 68 61 69 | In.order.to.use.such.custom.chai |
| e1740 | 6e 2c 20 61 20 72 75 6c 65 20 77 69 74 68 20 2a 2a 61 63 74 69 6f 6e 20 6a 75 6d 70 2a 2a 2c 20 | n,.a.rule.with.**action.jump**,. |
| e1760 | 61 6e 64 20 74 68 65 20 61 70 70 72 6f 70 72 69 61 74 65 20 2a 2a 74 61 72 67 65 74 2a 2a 20 73 | and.the.appropriate.**target**.s |
| e1780 | 68 6f 75 6c 64 20 62 65 20 64 65 66 69 6e 65 64 20 69 6e 20 61 20 62 61 73 65 20 63 68 61 69 6e | hould.be.defined.in.a.base.chain |
| e17a0 | 2e 00 43 75 73 74 6f 6d 20 68 65 61 6c 74 68 2d 63 68 65 63 6b 20 73 63 72 69 70 74 20 61 6c 6c | ..Custom.health-check.script.all |
| e17c0 | 6f 77 73 20 63 68 65 63 6b 69 6e 67 20 72 65 61 6c 2d 73 65 72 76 65 72 20 61 76 61 69 6c 61 62 | ows.checking.real-server.availab |
| e17e0 | 69 6c 69 74 79 00 43 75 73 74 6f 6d 69 7a 65 64 20 69 67 6e 6f 72 65 20 72 75 6c 65 73 2c 20 62 | ility.Customized.ignore.rules,.b |
| e1800 | 61 73 65 64 20 6f 6e 20 61 20 70 61 63 6b 65 74 20 61 6e 64 20 66 6c 6f 77 20 73 65 6c 65 63 74 | ased.on.a.packet.and.flow.select |
| e1820 | 6f 72 2e 00 44 43 4f 20 63 61 6e 20 62 65 20 65 6e 61 62 6c 65 64 20 66 6f 72 20 62 6f 74 68 20 | or..DCO.can.be.enabled.for.both. |
| e1840 | 6e 65 77 20 61 6e 64 20 65 78 69 73 74 69 6e 67 20 74 75 6e 6e 65 6c 73 2c 56 79 4f 53 20 61 64 | new.and.existing.tunnels,VyOS.ad |
| e1860 | 64 73 20 61 6e 20 6f 70 74 69 6f 6e 20 69 6e 20 65 61 63 68 20 74 75 6e 6e 65 6c 20 63 6f 6e 66 | ds.an.option.in.each.tunnel.conf |
| e1880 | 69 67 75 72 61 74 69 6f 6e 20 77 68 65 72 65 20 77 65 20 63 61 6e 20 65 6e 61 62 6c 65 20 74 68 | iguration.where.we.can.enable.th |
| e18a0 | 69 73 20 66 75 6e 63 74 69 6f 6e 20 20 2e 54 68 65 20 63 75 72 72 65 6e 74 20 62 65 73 74 20 70 | is.function...The.current.best.p |
| e18c0 | 72 61 63 74 69 63 65 20 69 73 20 74 6f 20 63 72 65 61 74 65 20 61 20 6e 65 77 20 74 75 6e 6e 65 | ractice.is.to.create.a.new.tunne |
| e18e0 | 6c 20 77 69 74 68 20 44 43 4f 20 74 6f 20 6d 69 6e 69 6d 69 7a 65 20 74 68 65 20 63 68 61 6e 63 | l.with.DCO.to.minimize.the.chanc |
| e1900 | 65 20 6f 66 20 70 72 6f 62 6c 65 6d 73 20 77 69 74 68 20 65 78 69 73 74 69 6e 67 20 63 6c 69 65 | e.of.problems.with.existing.clie |
| e1920 | 6e 74 73 2e 00 44 43 4f 20 63 61 6e 20 62 65 20 65 6e 61 62 6c 65 64 20 66 6f 72 20 62 6f 74 68 | nts..DCO.can.be.enabled.for.both |
| e1940 | 20 6e 65 77 20 61 6e 64 20 65 78 69 73 74 69 6e 67 20 74 75 6e 6e 65 6c 73 2e 20 56 79 4f 53 20 | .new.and.existing.tunnels..VyOS. |
| e1960 | 61 64 64 73 20 61 6e 20 6f 70 74 69 6f 6e 20 69 6e 20 65 61 63 68 20 74 75 6e 6e 65 6c 20 63 6f | adds.an.option.in.each.tunnel.co |
| e1980 | 6e 66 69 67 75 72 61 74 69 6f 6e 20 77 68 65 72 65 20 77 65 20 63 61 6e 20 65 6e 61 62 6c 65 20 | nfiguration.where.we.can.enable. |
| e19a0 | 74 68 69 73 20 66 75 6e 63 74 69 6f 6e 2e 20 54 68 65 20 63 75 72 72 65 6e 74 20 62 65 73 74 20 | this.function..The.current.best. |
| e19c0 | 70 72 61 63 74 69 63 65 20 69 73 20 74 6f 20 63 72 65 61 74 65 20 61 20 6e 65 77 20 74 75 6e 6e | practice.is.to.create.a.new.tunn |
| e19e0 | 65 6c 20 77 69 74 68 20 44 43 4f 20 74 6f 20 6d 69 6e 69 6d 69 7a 65 20 74 68 65 20 63 68 61 6e | el.with.DCO.to.minimize.the.chan |
| e1a00 | 63 65 20 6f 66 20 70 72 6f 62 6c 65 6d 73 20 77 69 74 68 20 65 78 69 73 74 69 6e 67 20 63 6c 69 | ce.of.problems.with.existing.cli |
| e1a20 | 65 6e 74 73 2e 00 44 43 4f 20 73 75 70 70 6f 72 74 20 69 73 20 61 20 70 65 72 2d 74 75 6e 6e 65 | ents..DCO.support.is.a.per-tunne |
| e1a40 | 6c 20 6f 70 74 69 6f 6e 20 61 6e 64 20 69 74 20 69 73 20 6e 6f 74 20 61 75 74 6f 6d 61 74 69 63 | l.option.and.it.is.not.automatic |
| e1a60 | 61 6c 6c 79 20 65 6e 61 62 6c 65 64 20 62 79 20 64 65 66 61 75 6c 74 20 66 6f 72 20 6e 65 77 20 | ally.enabled.by.default.for.new. |
| e1a80 | 6f 72 20 75 70 67 72 61 64 65 64 20 74 75 6e 6e 65 6c 73 2e 20 45 78 69 73 74 69 6e 67 20 74 75 | or.upgraded.tunnels..Existing.tu |
| e1aa0 | 6e 6e 65 6c 73 20 77 69 6c 6c 20 63 6f 6e 74 69 6e 75 65 20 74 6f 20 66 75 6e 63 74 69 6f 6e 20 | nnels.will.continue.to.function. |
| e1ac0 | 61 73 20 74 68 65 79 20 68 61 76 65 20 69 6e 20 74 68 65 20 70 61 73 74 2e 00 44 44 6f 53 20 50 | as.they.have.in.the.past..DDoS.P |
| e1ae0 | 72 6f 74 65 63 74 69 6f 6e 00 44 48 20 47 72 6f 75 70 20 31 34 00 44 48 43 50 20 48 69 67 68 20 | rotection.DH.Group.14.DHCP.High. |
| e1b00 | 41 76 61 69 6c 61 62 69 6c 69 74 79 20 6d 75 73 74 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 | Availability.must.be.configured. |
| e1b20 | 65 78 70 6c 69 63 69 74 6c 79 20 62 79 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 74 61 74 | explicitly.by.the.following.stat |
| e1b40 | 65 6d 65 6e 74 73 20 6f 6e 20 62 6f 74 68 20 73 65 72 76 65 72 73 3a 00 44 48 43 50 20 52 65 6c | ements.on.both.servers:.DHCP.Rel |
| e1b60 | 61 79 00 44 48 43 50 20 53 65 72 76 65 72 00 44 48 43 50 20 66 61 69 6c 6f 76 65 72 20 70 61 72 | ay.DHCP.Server.DHCP.failover.par |
| e1b80 | 61 6d 65 74 65 72 73 00 44 48 43 50 20 6c 65 61 73 65 20 72 61 6e 67 65 00 44 48 43 50 20 72 61 | ameters.DHCP.lease.range.DHCP.ra |
| e1ba0 | 6e 67 65 20 73 70 61 6e 73 20 66 72 6f 6d 20 60 31 39 32 2e 31 36 38 2e 31 38 39 2e 31 30 60 20 | nge.spans.from.`192.168.189.10`. |
| e1bc0 | 2d 20 60 31 39 32 2e 31 36 38 2e 31 38 39 2e 32 35 30 60 00 44 48 43 50 20 72 65 6c 61 79 20 65 | -.`192.168.189.250`.DHCP.relay.e |
| e1be0 | 78 61 6d 70 6c 65 00 44 48 43 50 20 73 65 72 76 65 72 20 69 73 20 6c 6f 63 61 74 65 64 20 61 74 | xample.DHCP.server.is.located.at |
| e1c00 | 20 49 50 76 34 20 61 64 64 72 65 73 73 20 31 30 2e 30 2e 31 2e 34 20 6f 6e 20 60 60 65 74 68 32 | .IPv4.address.10.0.1.4.on.``eth2 |
| e1c20 | 60 60 2e 00 44 48 43 50 76 36 20 61 64 64 72 65 73 73 20 70 6f 6f 6c 73 20 6d 75 73 74 20 62 65 | ``..DHCPv6.address.pools.must.be |
| e1c40 | 20 63 6f 6e 66 69 67 75 72 65 64 20 66 6f 72 20 74 68 65 20 73 79 73 74 65 6d 20 74 6f 20 61 63 | .configured.for.the.system.to.ac |
| e1c60 | 74 20 61 73 20 61 20 44 48 43 50 76 36 20 73 65 72 76 65 72 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 | t.as.a.DHCPv6.server..The.follow |
| e1c80 | 69 6e 67 20 65 78 61 6d 70 6c 65 20 64 65 73 63 72 69 62 65 73 20 61 20 63 6f 6d 6d 6f 6e 20 73 | ing.example.describes.a.common.s |
| e1ca0 | 63 65 6e 61 72 69 6f 2e 00 44 48 43 50 76 36 20 72 65 6c 61 79 20 65 78 61 6d 70 6c 65 00 44 48 | cenario..DHCPv6.relay.example.DH |
| e1cc0 | 43 50 76 36 20 72 65 71 75 65 73 74 73 20 61 72 65 20 72 65 63 65 69 76 65 64 20 62 79 20 74 68 | CPv6.requests.are.received.by.th |
| e1ce0 | 65 20 72 6f 75 74 65 72 20 6f 6e 20 60 6c 69 73 74 65 6e 69 6e 67 20 69 6e 74 65 72 66 61 63 65 | e.router.on.`listening.interface |
| e1d00 | 60 20 60 60 65 74 68 31 60 60 00 44 4d 56 50 4e 00 44 4d 56 50 4e 20 65 78 61 6d 70 6c 65 20 6e | `.``eth1``.DMVPN.DMVPN.example.n |
| e1d20 | 65 74 77 6f 72 6b 00 44 4d 56 50 4e 20 6e 65 74 77 6f 72 6b 00 44 4d 56 50 4e 20 6f 6e 6c 79 20 | etwork.DMVPN.network.DMVPN.only. |
| e1d40 | 61 75 74 6f 6d 61 74 65 73 20 74 68 65 20 74 75 6e 6e 65 6c 20 65 6e 64 70 6f 69 6e 74 20 64 69 | automates.the.tunnel.endpoint.di |
| e1d60 | 73 63 6f 76 65 72 79 20 61 6e 64 20 73 65 74 75 70 2e 20 41 20 63 6f 6d 70 6c 65 74 65 20 73 6f | scovery.and.setup..A.complete.so |
| e1d80 | 6c 75 74 69 6f 6e 20 61 6c 73 6f 20 69 6e 63 6f 72 70 6f 72 61 74 65 73 20 74 68 65 20 75 73 65 | lution.also.incorporates.the.use |
| e1da0 | 20 6f 66 20 61 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 2e 20 42 47 50 20 69 73 20 70 | .of.a.routing.protocol..BGP.is.p |
| e1dc0 | 61 72 74 69 63 75 6c 61 72 6c 79 20 77 65 6c 6c 20 73 75 69 74 65 64 20 66 6f 72 20 75 73 65 20 | articularly.well.suited.for.use. |
| e1de0 | 77 69 74 68 20 44 4d 56 50 4e 2e 00 44 4e 41 54 00 44 4e 41 54 20 69 73 20 74 79 70 69 63 61 6c | with.DMVPN..DNAT.DNAT.is.typical |
| e1e00 | 6c 79 20 72 65 66 65 72 72 65 64 20 74 6f 20 61 73 20 61 20 2a 2a 50 6f 72 74 20 46 6f 72 77 61 | ly.referred.to.as.a.**Port.Forwa |
| e1e20 | 72 64 2a 2a 2e 20 57 68 65 6e 20 75 73 69 6e 67 20 56 79 4f 53 20 61 73 20 61 20 4e 41 54 20 72 | rd**..When.using.VyOS.as.a.NAT.r |
| e1e40 | 6f 75 74 65 72 20 61 6e 64 20 66 69 72 65 77 61 6c 6c 2c 20 61 20 63 6f 6d 6d 6f 6e 20 63 6f 6e | outer.and.firewall,.a.common.con |
| e1e60 | 66 69 67 75 72 61 74 69 6f 6e 20 74 61 73 6b 20 69 73 20 74 6f 20 72 65 64 69 72 65 63 74 20 69 | figuration.task.is.to.redirect.i |
| e1e80 | 6e 63 6f 6d 69 6e 67 20 74 72 61 66 66 69 63 20 74 6f 20 61 20 73 79 73 74 65 6d 20 62 65 68 69 | ncoming.traffic.to.a.system.behi |
| e1ea0 | 6e 64 20 74 68 65 20 66 69 72 65 77 61 6c 6c 2e 00 44 4e 41 54 20 72 75 6c 65 20 31 30 20 72 65 | nd.the.firewall..DNAT.rule.10.re |
| e1ec0 | 70 6c 61 63 65 73 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 6f | places.the.destination.address.o |
| e1ee0 | 66 20 61 6e 20 69 6e 62 6f 75 6e 64 20 70 61 63 6b 65 74 20 77 69 74 68 20 31 39 32 2e 30 2e 32 | f.an.inbound.packet.with.192.0.2 |
| e1f00 | 2e 31 30 00 44 4e 41 54 36 36 00 44 4e 53 20 46 6f 72 77 61 72 64 69 6e 67 00 44 4e 53 20 6e 61 | .10.DNAT66.DNS.Forwarding.DNS.na |
| e1f20 | 6d 65 20 73 65 72 76 65 72 73 00 44 4e 53 20 73 65 61 72 63 68 20 6c 69 73 74 20 74 6f 20 61 64 | me.servers.DNS.search.list.to.ad |
| e1f40 | 76 65 72 74 69 73 65 00 44 4e 53 20 73 65 72 76 65 72 20 49 50 76 34 20 61 64 64 72 65 73 73 00 | vertise.DNS.server.IPv4.address. |
| e1f60 | 44 4e 53 20 73 65 72 76 65 72 20 69 73 20 6c 6f 63 61 74 65 64 20 61 74 20 60 60 32 30 30 31 3a | DNS.server.is.located.at.``2001: |
| e1f80 | 64 62 38 3a 3a 66 66 66 66 60 60 00 44 4e 53 53 4c 00 44 53 43 50 20 76 61 6c 75 65 73 20 61 73 | db8::ffff``.DNSSL.DSCP.values.as |
| e1fa0 | 20 70 65 72 20 3a 72 66 63 3a 60 32 34 37 34 60 20 61 6e 64 20 3a 72 66 63 3a 60 34 35 39 35 60 | .per.:rfc:`2474`.and.:rfc:`4595` |
| e1fc0 | 3a 00 44 53 53 53 2f 43 43 4b 20 4d 6f 64 65 20 69 6e 20 34 30 20 4d 48 7a 2c 20 74 68 69 73 20 | :.DSSS/CCK.Mode.in.40.MHz,.this. |
| e1fe0 | 73 65 74 73 20 60 60 5b 44 53 53 53 5f 43 43 4b 2d 34 30 5d 60 60 00 44 61 74 61 20 69 73 20 70 | sets.``[DSSS_CCK-40]``.Data.is.p |
| e2000 | 72 6f 76 69 64 65 64 20 62 79 20 44 42 2d 49 50 2e 63 6f 6d 20 75 6e 64 65 72 20 43 43 2d 42 59 | rovided.by.DB-IP.com.under.CC-BY |
| e2020 | 2d 34 2e 30 20 6c 69 63 65 6e 73 65 2e 20 41 74 74 72 69 62 75 74 69 6f 6e 20 72 65 71 75 69 72 | -4.0.license..Attribution.requir |
| e2040 | 65 64 2c 20 70 65 72 6d 69 74 73 20 72 65 64 69 73 74 72 69 62 75 74 69 6f 6e 20 73 6f 20 77 65 | ed,.permits.redistribution.so.we |
| e2060 | 20 63 61 6e 20 69 6e 63 6c 75 64 65 20 61 20 64 61 74 61 62 61 73 65 20 69 6e 20 69 6d 61 67 65 | .can.include.a.database.in.image |
| e2080 | 73 28 7e 33 4d 42 20 63 6f 6d 70 72 65 73 73 65 64 29 2e 20 49 6e 63 6c 75 64 65 73 20 63 72 6f | s(~3MB.compressed)..Includes.cro |
| e20a0 | 6e 20 73 63 72 69 70 74 20 28 6d 61 6e 75 61 6c 6c 79 20 63 61 6c 6c 61 62 6c 65 20 62 79 20 6f | n.script.(manually.callable.by.o |
| e20c0 | 70 2d 6d 6f 64 65 20 75 70 64 61 74 65 20 67 65 6f 69 70 29 20 74 6f 20 6b 65 65 70 20 64 61 74 | p-mode.update.geoip).to.keep.dat |
| e20e0 | 61 62 61 73 65 20 61 6e 64 20 72 75 6c 65 73 20 75 70 64 61 74 65 64 2e 00 44 65 62 75 67 00 44 | abase.and.rules.updated..Debug.D |
| e2100 | 65 62 75 67 2d 6c 65 76 65 6c 20 6d 65 73 73 61 67 65 73 20 2d 20 4d 65 73 73 61 67 65 73 20 74 | ebug-level.messages.-.Messages.t |
| e2120 | 68 61 74 20 63 6f 6e 74 61 69 6e 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6e 6f 72 6d 61 6c 6c 79 | hat.contain.information.normally |
| e2140 | 20 6f 66 20 75 73 65 20 6f 6e 6c 79 20 77 68 65 6e 20 64 65 62 75 67 67 69 6e 67 20 61 20 70 72 | .of.use.only.when.debugging.a.pr |
| e2160 | 6f 67 72 61 6d 2e 00 44 65 66 61 75 6c 74 00 44 65 66 61 75 6c 74 20 31 2e 00 44 65 66 61 75 6c | ogram..Default.Default.1..Defaul |
| e2180 | 74 20 47 61 74 65 77 61 79 2f 52 6f 75 74 65 00 44 65 66 61 75 6c 74 20 52 6f 75 74 65 72 20 50 | t.Gateway/Route.Default.Router.P |
| e21a0 | 72 65 66 65 72 65 6e 63 65 00 44 65 66 61 75 6c 74 20 62 65 68 61 76 69 6f 72 20 2d 20 64 6f 6e | reference.Default.behavior.-.don |
| e21c0 | 27 74 20 61 73 6b 20 63 6c 69 65 6e 74 20 66 6f 72 20 6d 70 70 65 2c 20 62 75 74 20 61 6c 6c 6f | 't.ask.client.for.mppe,.but.allo |
| e21e0 | 77 20 69 74 20 69 66 20 63 6c 69 65 6e 74 20 77 61 6e 74 73 2e 20 50 6c 65 61 73 65 20 6e 6f 74 | w.it.if.client.wants..Please.not |
| e2200 | 65 20 74 68 61 74 20 52 41 44 49 55 53 20 6d 61 79 20 6f 76 65 72 72 69 64 65 20 74 68 69 73 20 | e.that.RADIUS.may.override.this. |
| e2220 | 6f 70 74 69 6f 6e 20 62 79 20 4d 53 2d 4d 50 50 45 2d 45 6e 63 72 79 70 74 69 6f 6e 2d 50 6f 6c | option.by.MS-MPPE-Encryption-Pol |
| e2240 | 69 63 79 20 61 74 74 72 69 62 75 74 65 2e 00 44 65 66 61 75 6c 74 20 62 65 68 61 76 69 6f 72 20 | icy.attribute..Default.behavior. |
| e2260 | 2d 20 64 6f 6e 27 74 20 61 73 6b 20 74 68 65 20 63 6c 69 65 6e 74 20 66 6f 72 20 6d 70 70 65 2c | -.don't.ask.the.client.for.mppe, |
| e2280 | 20 62 75 74 20 61 6c 6c 6f 77 20 69 74 20 69 66 20 74 68 65 20 63 6c 69 65 6e 74 20 77 61 6e 74 | .but.allow.it.if.the.client.want |
| e22a0 | 73 2e 20 50 6c 65 61 73 65 20 6e 6f 74 65 20 74 68 61 74 20 52 41 44 49 55 53 20 6d 61 79 20 6f | s..Please.note.that.RADIUS.may.o |
| e22c0 | 76 65 72 72 69 64 65 20 74 68 69 73 20 6f 70 74 69 6f 6e 20 62 79 20 4d 53 2d 4d 50 50 45 2d 45 | verride.this.option.by.MS-MPPE-E |
| e22e0 | 6e 63 72 79 70 74 69 6f 6e 2d 50 6f 6c 69 63 79 20 61 74 74 72 69 62 75 74 65 2e 00 44 65 66 61 | ncryption-Policy.attribute..Defa |
| e2300 | 75 6c 74 20 62 65 68 61 76 69 6f 72 20 2d 20 64 6f 6e 27 74 20 61 73 6b 20 74 68 65 20 63 6c 69 | ult.behavior.-.don't.ask.the.cli |
| e2320 | 65 6e 74 20 66 6f 72 20 6d 70 70 65 2c 20 62 75 74 20 61 6c 6c 6f 77 20 69 74 20 69 66 20 74 68 | ent.for.mppe,.but.allow.it.if.th |
| e2340 | 65 20 63 6c 69 65 6e 74 20 77 61 6e 74 73 2e 20 50 6c 65 61 73 65 20 6e 6f 74 65 20 74 68 61 74 | e.client.wants..Please.note.that |
| e2360 | 20 52 41 44 49 55 53 20 6d 61 79 20 6f 76 65 72 72 69 64 65 20 74 68 69 73 20 6f 70 74 69 6f 6e | .RADIUS.may.override.this.option |
| e2380 | 20 77 69 74 68 20 74 68 65 20 4d 53 2d 4d 50 50 45 2d 45 6e 63 72 79 70 74 69 6f 6e 2d 50 6f 6c | .with.the.MS-MPPE-Encryption-Pol |
| e23a0 | 69 63 79 20 61 74 74 72 69 62 75 74 65 2e 00 44 65 66 61 75 6c 74 20 67 61 74 65 77 61 79 20 61 | icy.attribute..Default.gateway.a |
| e23c0 | 6e 64 20 44 4e 53 20 73 65 72 76 65 72 20 69 73 20 61 74 20 60 31 39 32 2e 30 2e 32 2e 32 35 34 | nd.DNS.server.is.at.`192.0.2.254 |
| e23e0 | 60 00 44 65 66 61 75 6c 74 20 69 73 20 30 20 66 6f 72 20 75 6e 6c 69 6d 69 74 65 64 2e 20 46 6f | `.Default.is.0.for.unlimited..Fo |
| e2400 | 72 20 65 78 61 6d 70 6c 65 2c 20 31 2e 32 35 20 6c 69 6d 69 74 73 20 74 68 65 20 63 6f 6e 74 61 | r.example,.1.25.limits.the.conta |
| e2420 | 69 6e 65 72 20 74 6f 20 75 73 65 20 75 70 20 74 6f 20 31 2e 32 35 20 63 6f 72 65 73 20 77 6f 72 | iner.to.use.up.to.1.25.cores.wor |
| e2440 | 74 68 20 6f 66 20 43 50 55 20 74 69 6d 65 2e 20 54 68 69 73 20 63 61 6e 20 62 65 20 61 20 64 65 | th.of.CPU.time..This.can.be.a.de |
| e2460 | 63 69 6d 61 6c 20 6e 75 6d 62 65 72 20 77 69 74 68 20 75 70 20 74 6f 20 74 68 72 65 65 20 64 65 | cimal.number.with.up.to.three.de |
| e2480 | 63 69 6d 61 6c 20 70 6c 61 63 65 73 2e 00 44 65 66 61 75 6c 74 20 69 73 20 33 31 30 30 00 44 65 | cimal.places..Default.is.3100.De |
| e24a0 | 66 61 75 6c 74 20 69 73 20 35 31 32 20 4d 42 2e 20 55 73 65 20 30 20 4d 42 20 66 6f 72 20 75 6e | fault.is.512.MB..Use.0.MB.for.un |
| e24c0 | 6c 69 6d 69 74 65 64 20 6d 65 6d 6f 72 79 2e 00 44 65 66 61 75 6c 74 20 69 73 20 60 60 61 6e 79 | limited.memory..Default.is.``any |
| e24e0 | 2d 61 76 61 69 6c 61 62 6c 65 60 60 2e 00 44 65 66 61 75 6c 74 20 69 73 20 60 60 69 63 6d 70 60 | -available``..Default.is.``icmp` |
| e2500 | 60 2e 00 44 65 66 61 75 6c 74 20 69 73 20 74 6f 20 64 65 74 65 63 74 73 20 70 68 79 73 69 63 61 | `..Default.is.to.detects.physica |
| e2520 | 6c 20 6c 69 6e 6b 20 73 74 61 74 65 20 63 68 61 6e 67 65 73 2e 00 44 65 66 61 75 6c 74 20 70 6f | l.link.state.changes..Default.po |
| e2540 | 72 74 20 69 73 20 33 31 32 38 2e 00 44 65 66 61 75 6c 74 3a 20 31 00 44 65 66 61 75 6c 74 3a 20 | rt.is.3128..Default:.1.Default:. |
| e2560 | 34 34 33 00 44 65 66 61 75 6c 74 73 20 74 6f 20 27 75 69 64 27 00 44 65 66 61 75 6c 74 73 20 74 | 443.Defaults.to.'uid'.Defaults.t |
| e2580 | 6f 20 32 32 35 2e 30 2e 30 2e 35 30 2e 00 44 65 66 61 75 6c 74 73 20 74 6f 20 60 60 75 73 60 60 | o.225.0.0.50..Defaults.to.``us`` |
| e25a0 | 2e 00 44 65 66 69 6e 65 20 43 6f 6e 65 63 74 69 6f 6e 20 54 69 6d 65 6f 75 74 73 00 44 65 66 69 | ..Define.Conection.Timeouts.Defi |
| e25c0 | 6e 65 20 49 50 76 34 20 61 6e 64 2f 6f 72 20 49 50 76 36 20 70 72 65 66 69 78 20 66 6f 72 20 61 | ne.IPv4.and/or.IPv6.prefix.for.a |
| e25e0 | 20 67 69 76 65 6e 20 6e 65 74 77 6f 72 6b 20 6e 61 6d 65 2e 20 42 6f 74 68 20 49 50 76 34 20 61 | .given.network.name..Both.IPv4.a |
| e2600 | 6e 64 20 49 50 76 36 20 63 61 6e 20 62 65 20 75 73 65 64 20 69 6e 20 70 61 72 61 6c 6c 65 6c 2e | nd.IPv6.can.be.used.in.parallel. |
| e2620 | 00 44 65 66 69 6e 65 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 70 72 65 66 69 78 20 66 6f 72 20 | .Define.IPv4.or.IPv6.prefix.for. |
| e2640 | 61 20 67 69 76 65 6e 20 6e 65 74 77 6f 72 6b 20 6e 61 6d 65 2e 20 4f 6e 6c 79 20 6f 6e 65 20 49 | a.given.network.name..Only.one.I |
| e2660 | 50 76 34 20 61 6e 64 20 6f 6e 65 20 49 50 76 36 20 70 72 65 66 69 78 20 63 61 6e 20 62 65 20 75 | Pv4.and.one.IPv6.prefix.can.be.u |
| e2680 | 73 65 64 20 70 65 72 20 6e 65 74 77 6f 72 6b 20 6e 61 6d 65 2e 00 44 65 66 69 6e 65 20 49 50 76 | sed.per.network.name..Define.IPv |
| e26a0 | 34 2f 49 50 76 36 20 6d 61 6e 61 67 65 6d 65 6e 74 20 61 64 64 72 65 73 73 20 74 72 61 6e 73 6d | 4/IPv6.management.address.transm |
| e26c0 | 69 74 74 65 64 20 76 69 61 20 4c 4c 44 50 2e 20 4d 75 6c 74 69 70 6c 65 20 61 64 64 72 65 73 73 | itted.via.LLDP..Multiple.address |
| e26e0 | 65 73 20 63 61 6e 20 62 65 20 64 65 66 69 6e 65 64 2e 20 4f 6e 6c 79 20 61 64 64 72 65 73 73 65 | es.can.be.defined..Only.addresse |
| e2700 | 73 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 74 68 65 20 73 79 73 74 65 6d 20 77 69 6c 6c 20 62 | s.connected.to.the.system.will.b |
| e2720 | 65 20 74 72 61 6e 73 6d 69 74 74 65 64 2e 00 44 65 66 69 6e 65 20 61 20 49 50 76 34 20 6f 72 20 | e.transmitted..Define.a.IPv4.or. |
| e2740 | 49 50 76 36 20 4e 65 74 77 6f 72 6b 20 67 72 6f 75 70 2e 00 44 65 66 69 6e 65 20 61 20 49 50 76 | IPv6.Network.group..Define.a.IPv |
| e2760 | 34 20 6f 72 20 61 20 49 50 76 36 20 61 64 64 72 65 73 73 20 67 72 6f 75 70 00 44 65 66 69 6e 65 | 4.or.a.IPv6.address.group.Define |
| e2780 | 20 61 20 5a 6f 6e 65 00 44 65 66 69 6e 65 20 61 20 64 69 73 63 72 65 74 65 20 73 6f 75 72 63 65 | .a.Zone.Define.a.discrete.source |
| e27a0 | 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 31 30 30 2e 36 34 2e 30 2e 31 20 66 6f 72 20 53 4e | .IP.address.of.100.64.0.1.for.SN |
| e27c0 | 41 54 20 72 75 6c 65 20 32 30 00 44 65 66 69 6e 65 20 61 20 64 6f 6d 61 69 6e 20 67 72 6f 75 70 | AT.rule.20.Define.a.domain.group |
| e27e0 | 2e 00 44 65 66 69 6e 65 20 61 20 6d 61 63 20 67 72 6f 75 70 2e 00 44 65 66 69 6e 65 20 61 20 70 | ..Define.a.mac.group..Define.a.p |
| e2800 | 6f 72 74 20 67 72 6f 75 70 2e 20 41 20 70 6f 72 74 20 6e 61 6d 65 20 63 61 6e 20 62 65 20 61 6e | ort.group..A.port.name.can.be.an |
| e2820 | 79 20 6e 61 6d 65 20 64 65 66 69 6e 65 64 20 69 6e 20 2f 65 74 63 2f 73 65 72 76 69 63 65 73 2e | y.name.defined.in./etc/services. |
| e2840 | 20 65 2e 67 2e 3a 20 68 74 74 70 00 44 65 66 69 6e 65 20 61 6c 6c 6f 77 65 64 20 63 69 70 68 65 | .e.g.:.http.Define.allowed.ciphe |
| e2860 | 72 73 20 75 73 65 64 20 66 6f 72 20 74 68 65 20 53 53 48 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 20 | rs.used.for.the.SSH.connection.. |
| e2880 | 41 20 6e 75 6d 62 65 72 20 6f 66 20 61 6c 6c 6f 77 65 64 20 63 69 70 68 65 72 73 20 63 61 6e 20 | A.number.of.allowed.ciphers.can. |
| e28a0 | 62 65 20 73 70 65 63 69 66 69 65 64 2c 20 75 73 65 20 6d 75 6c 74 69 70 6c 65 20 6f 63 63 75 72 | be.specified,.use.multiple.occur |
| e28c0 | 72 65 6e 63 65 73 20 74 6f 20 61 6c 6c 6f 77 20 6d 75 6c 74 69 70 6c 65 20 63 69 70 68 65 72 73 | rences.to.allow.multiple.ciphers |
| e28e0 | 2e 00 44 65 66 69 6e 65 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 67 72 6f 75 70 2e 20 57 69 6c | ..Define.an.interface.group..Wil |
| e2900 | 64 63 61 72 64 20 61 72 65 20 61 63 63 65 70 74 65 64 20 74 6f 6f 2e 00 44 65 66 69 6e 65 20 62 | dcard.are.accepted.too..Define.b |
| e2920 | 65 68 61 76 69 6f 72 20 66 6f 72 20 67 72 61 74 75 69 74 6f 75 73 20 41 52 50 20 66 72 61 6d 65 | ehavior.for.gratuitous.ARP.frame |
| e2940 | 73 20 77 68 6f 27 73 20 49 50 20 69 73 20 6e 6f 74 20 61 6c 72 65 61 64 79 20 70 72 65 73 65 6e | s.who's.IP.is.not.already.presen |
| e2960 | 74 20 69 6e 20 74 68 65 20 41 52 50 20 74 61 62 6c 65 2e 20 49 66 20 63 6f 6e 66 69 67 75 72 65 | t.in.the.ARP.table..If.configure |
| e2980 | 64 20 63 72 65 61 74 65 20 6e 65 77 20 65 6e 74 72 69 65 73 20 69 6e 20 74 68 65 20 41 52 50 20 | d.create.new.entries.in.the.ARP. |
| e29a0 | 74 61 62 6c 65 2e 00 44 65 66 69 6e 65 20 62 65 68 61 76 69 6f 72 20 66 6f 72 20 67 72 61 74 75 | table..Define.behavior.for.gratu |
| e29c0 | 69 74 6f 75 73 20 41 52 50 20 66 72 61 6d 65 73 20 77 68 6f 73 65 20 49 50 20 69 73 20 6e 6f 74 | itous.ARP.frames.whose.IP.is.not |
| e29e0 | 20 61 6c 72 65 61 64 79 20 70 72 65 73 65 6e 74 20 69 6e 20 74 68 65 20 41 52 50 20 74 61 62 6c | .already.present.in.the.ARP.tabl |
| e2a00 | 65 2e 20 49 66 20 63 6f 6e 66 69 67 75 72 65 64 20 63 72 65 61 74 65 20 6e 65 77 20 65 6e 74 72 | e..If.configured.create.new.entr |
| e2a20 | 69 65 73 20 69 6e 20 74 68 65 20 41 52 50 20 74 61 62 6c 65 2e 00 44 65 66 69 6e 65 20 64 69 66 | ies.in.the.ARP.table..Define.dif |
| e2a40 | 66 65 72 65 6e 74 20 6d 6f 64 65 73 20 66 6f 72 20 49 50 20 64 69 72 65 63 74 65 64 20 62 72 6f | ferent.modes.for.IP.directed.bro |
| e2a60 | 61 64 63 61 73 74 20 66 6f 72 77 61 72 64 69 6e 67 20 61 73 20 64 65 73 63 72 69 62 65 64 20 69 | adcast.forwarding.as.described.i |
| e2a80 | 6e 20 3a 72 66 63 3a 60 31 38 31 32 60 20 61 6e 64 20 3a 72 66 63 3a 60 32 36 34 34 60 2e 00 44 | n.:rfc:`1812`.and.:rfc:`2644`..D |
| e2aa0 | 65 66 69 6e 65 20 64 69 66 66 65 72 65 6e 74 20 6d 6f 64 65 73 20 66 6f 72 20 73 65 6e 64 69 6e | efine.different.modes.for.sendin |
| e2ac0 | 67 20 72 65 70 6c 69 65 73 20 69 6e 20 72 65 73 70 6f 6e 73 65 20 74 6f 20 72 65 63 65 69 76 65 | g.replies.in.response.to.receive |
| e2ae0 | 64 20 41 52 50 20 72 65 71 75 65 73 74 73 20 74 68 61 74 20 72 65 73 6f 6c 76 65 20 6c 6f 63 61 | d.ARP.requests.that.resolve.loca |
| e2b00 | 6c 20 74 61 72 67 65 74 20 49 50 20 61 64 64 72 65 73 73 65 73 3a 00 44 65 66 69 6e 65 20 64 69 | l.target.IP.addresses:.Define.di |
| e2b20 | 66 66 65 72 65 6e 74 20 72 65 73 74 72 69 63 74 69 6f 6e 20 6c 65 76 65 6c 73 20 66 6f 72 20 61 | fferent.restriction.levels.for.a |
| e2b40 | 6e 6e 6f 75 6e 63 69 6e 67 20 74 68 65 20 6c 6f 63 61 6c 20 73 6f 75 72 63 65 20 49 50 20 61 64 | nnouncing.the.local.source.IP.ad |
| e2b60 | 64 72 65 73 73 20 66 72 6f 6d 20 49 50 20 70 61 63 6b 65 74 73 20 69 6e 20 41 52 50 20 72 65 71 | dress.from.IP.packets.in.ARP.req |
| e2b80 | 75 65 73 74 73 20 73 65 6e 74 20 6f 6e 20 69 6e 74 65 72 66 61 63 65 2e 00 44 65 66 69 6e 65 20 | uests.sent.on.interface..Define. |
| e2ba0 | 68 6f 77 20 74 6f 20 68 61 6e 64 6c 65 20 6c 65 61 66 2d 73 65 6f 6e 64 73 2e 00 44 65 66 69 6e | how.to.handle.leaf-seonds..Defin |
| e2bc0 | 65 20 68 6f 77 20 74 6f 20 68 61 6e 64 6c 65 20 6c 65 61 70 2d 73 65 63 6f 6e 64 73 2e 00 44 65 | e.how.to.handle.leap-seconds..De |
| e2be0 | 66 69 6e 65 20 69 6e 74 65 72 66 61 63 65 73 20 74 6f 20 62 65 20 75 73 65 64 20 69 6e 20 74 68 | fine.interfaces.to.be.used.in.th |
| e2c00 | 65 20 66 6c 6f 77 74 61 62 6c 65 2e 00 44 65 66 69 6e 65 20 6c 65 6e 67 68 74 20 6f 66 20 65 78 | e.flowtable..Define.lenght.of.ex |
| e2c20 | 63 6c 75 64 65 20 70 72 65 66 69 78 20 69 6e 20 60 3c 70 64 2d 70 72 65 66 69 78 3e 60 2e 00 44 | clude.prefix.in.`<pd-prefix>`..D |
| e2c40 | 65 66 69 6e 65 20 6c 65 6e 67 74 68 20 6f 66 20 70 61 63 6b 65 74 20 70 61 79 6c 6f 61 64 20 74 | efine.length.of.packet.payload.t |
| e2c60 | 6f 20 69 6e 63 6c 75 64 65 20 69 6e 20 6e 65 74 6c 69 6e 6b 20 6d 65 73 73 61 67 65 2e 20 4f 6e | o.include.in.netlink.message..On |
| e2c80 | 6c 79 20 61 70 70 6c 69 63 61 62 6c 65 20 69 66 20 72 75 6c 65 20 6c 6f 67 20 69 73 20 65 6e 61 | ly.applicable.if.rule.log.is.ena |
| e2ca0 | 62 6c 65 20 61 6e 64 20 6c 6f 67 20 67 72 6f 75 70 20 69 73 20 64 65 66 69 6e 65 64 2e 00 44 65 | ble.and.log.group.is.defined..De |
| e2cc0 | 66 69 6e 65 20 6c 65 6e 67 74 68 20 6f 66 20 70 61 63 6b 65 74 20 70 61 79 6c 6f 61 64 20 74 6f | fine.length.of.packet.payload.to |
| e2ce0 | 20 69 6e 63 6c 75 64 65 20 69 6e 20 6e 65 74 6c 69 6e 6b 20 6d 65 73 73 61 67 65 2e 20 4f 6e 6c | .include.in.netlink.message..Onl |
| e2d00 | 79 20 61 70 70 6c 69 63 61 62 6c 65 20 69 66 20 72 75 6c 65 20 6c 6f 67 20 69 73 20 65 6e 61 62 | y.applicable.if.rule.log.is.enab |
| e2d20 | 6c 65 64 20 61 6e 64 20 74 68 65 20 6c 6f 67 20 67 72 6f 75 70 20 69 73 20 64 65 66 69 6e 65 64 | led.and.the.log.group.is.defined |
| e2d40 | 2e 00 44 65 66 69 6e 65 20 6c 6f 67 20 67 72 6f 75 70 20 74 6f 20 73 65 6e 64 20 6d 65 73 73 61 | ..Define.log.group.to.send.messa |
| e2d60 | 67 65 20 74 6f 2e 20 4f 6e 6c 79 20 61 70 70 6c 69 63 61 62 6c 65 20 69 66 20 72 75 6c 65 20 6c | ge.to..Only.applicable.if.rule.l |
| e2d80 | 6f 67 20 69 73 20 65 6e 61 62 6c 65 2e 00 44 65 66 69 6e 65 20 6c 6f 67 2d 6c 65 76 65 6c 2e 20 | og.is.enable..Define.log-level.. |
| e2da0 | 4f 6e 6c 79 20 61 70 70 6c 69 63 61 62 6c 65 20 69 66 20 72 75 6c 65 20 6c 6f 67 20 69 73 20 65 | Only.applicable.if.rule.log.is.e |
| e2dc0 | 6e 61 62 6c 65 2e 00 44 65 66 69 6e 65 20 6c 6f 67 2d 6c 65 76 65 6c 2e 20 4f 6e 6c 79 20 61 70 | nable..Define.log-level..Only.ap |
| e2de0 | 70 6c 69 63 61 62 6c 65 20 69 66 20 72 75 6c 65 20 6c 6f 67 20 69 73 20 65 6e 61 62 6c 65 64 2e | plicable.if.rule.log.is.enabled. |
| e2e00 | 00 44 65 66 69 6e 65 20 6e 75 6d 62 65 72 20 6f 66 20 70 61 63 6b 65 74 73 20 74 6f 20 71 75 65 | .Define.number.of.packets.to.que |
| e2e20 | 75 65 20 69 6e 73 69 64 65 20 74 68 65 20 6b 65 72 6e 65 6c 20 62 65 66 6f 72 65 20 73 65 6e 64 | ue.inside.the.kernel.before.send |
| e2e40 | 69 6e 67 20 74 68 65 6d 20 74 6f 20 75 73 65 72 73 70 61 63 65 2e 20 4f 6e 6c 79 20 61 70 70 6c | ing.them.to.userspace..Only.appl |
| e2e60 | 69 63 61 62 6c 65 20 69 66 20 72 75 6c 65 20 6c 6f 67 20 69 73 20 65 6e 61 62 6c 65 20 61 6e 64 | icable.if.rule.log.is.enable.and |
| e2e80 | 20 6c 6f 67 20 67 72 6f 75 70 20 69 73 20 64 65 66 69 6e 65 64 2e 00 44 65 66 69 6e 65 20 6f 70 | .log.group.is.defined..Define.op |
| e2ea0 | 65 72 61 74 69 6f 6e 20 6d 6f 64 65 20 6f 66 20 48 69 67 68 20 41 76 61 69 6c 61 62 69 6c 69 74 | eration.mode.of.High.Availabilit |
| e2ec0 | 79 20 66 65 61 74 75 72 65 2e 20 44 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 66 20 63 6f 6d 6d | y.feature..Default.value.if.comm |
| e2ee0 | 61 6e 64 20 69 73 20 6e 6f 74 20 73 70 65 63 69 66 69 65 64 20 69 73 20 60 61 63 74 69 76 65 2d | and.is.not.specified.is.`active- |
| e2f00 | 61 63 74 69 76 65 60 00 44 65 66 69 6e 65 20 74 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 70 61 63 | active`.Define.the.length.of.pac |
| e2f20 | 6b 65 74 20 70 61 79 6c 6f 61 64 20 74 6f 20 69 6e 63 6c 75 64 65 20 69 6e 20 61 20 6e 65 74 6c | ket.payload.to.include.in.a.netl |
| e2f40 | 69 6e 6b 20 6d 65 73 73 61 67 65 2e 20 4f 6e 6c 79 20 61 70 70 6c 69 63 61 62 6c 65 20 69 66 20 | ink.message..Only.applicable.if. |
| e2f60 | 72 75 6c 65 20 6c 6f 67 20 69 73 20 65 6e 61 62 6c 65 64 20 61 6e 64 20 6c 6f 67 20 67 72 6f 75 | rule.log.is.enabled.and.log.grou |
| e2f80 | 70 20 69 73 20 64 65 66 69 6e 65 64 2e 00 44 65 66 69 6e 65 20 74 68 65 20 6c 6f 67 20 67 72 6f | p.is.defined..Define.the.log.gro |
| e2fa0 | 75 70 20 74 6f 20 73 65 6e 64 20 6d 65 73 73 61 67 65 73 20 74 6f 2e 20 4f 6e 6c 79 20 61 70 70 | up.to.send.messages.to..Only.app |
| e2fc0 | 6c 69 63 61 62 6c 65 20 69 66 20 72 75 6c 65 20 6c 6f 67 20 69 73 20 65 6e 61 62 6c 65 64 2e 00 | licable.if.rule.log.is.enabled.. |
| e2fe0 | 44 65 66 69 6e 65 20 74 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 70 61 63 6b 65 74 73 20 74 6f 20 | Define.the.number.of.packets.to. |
| e3000 | 71 75 65 75 65 20 69 6e 73 69 64 65 20 74 68 65 20 6b 65 72 6e 65 6c 20 62 65 66 6f 72 65 20 73 | queue.inside.the.kernel.before.s |
| e3020 | 65 6e 64 69 6e 67 20 74 68 65 6d 20 74 6f 20 75 73 65 72 73 70 61 63 65 2e 20 4f 6e 6c 79 20 61 | ending.them.to.userspace..Only.a |
| e3040 | 70 70 6c 69 63 61 62 6c 65 20 69 66 20 72 75 6c 65 20 6c 6f 67 20 69 73 20 65 6e 61 62 6c 65 64 | pplicable.if.rule.log.is.enabled |
| e3060 | 20 61 6e 64 20 6c 6f 67 20 67 72 6f 75 70 20 69 73 20 64 65 66 69 6e 65 64 2e 00 44 65 66 69 6e | .and.log.group.is.defined..Defin |
| e3080 | 65 20 74 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 70 61 63 6b 65 74 73 20 74 6f 20 71 75 65 75 65 | e.the.number.of.packets.to.queue |
| e30a0 | 20 69 6e 73 69 64 65 20 74 68 65 20 6b 65 72 6e 65 6c 20 62 65 66 6f 72 65 20 73 65 6e 64 69 6e | .inside.the.kernel.before.sendin |
| e30c0 | 67 20 74 68 65 6d 20 74 6f 20 75 73 65 72 73 70 61 63 65 2e 20 4f 6e 6c 79 20 61 70 70 6c 69 63 | g.them.to.userspace..Only.applic |
| e30e0 | 61 62 6c 65 20 69 66 20 72 75 6c 65 20 6c 6f 67 20 69 73 20 65 6e 61 62 6c 65 64 20 61 6e 64 20 | able.if.rule.log.is.enabled.and. |
| e3100 | 74 68 65 20 6c 6f 67 20 67 72 6f 75 70 20 69 73 20 64 65 66 69 6e 65 64 2e 00 44 65 66 69 6e 65 | the.log.group.is.defined..Define |
| e3120 | 20 74 68 65 20 74 69 6d 65 20 69 6e 74 65 72 76 61 6c 20 74 6f 20 75 70 64 61 74 65 20 74 68 65 | .the.time.interval.to.update.the |
| e3140 | 20 6c 6f 63 61 6c 20 63 61 63 68 65 00 44 65 66 69 6e 65 20 74 68 65 20 7a 6f 6e 65 20 61 73 20 | .local.cache.Define.the.zone.as. |
| e3160 | 61 20 6c 6f 63 61 6c 20 7a 6f 6e 65 2e 20 41 20 6c 6f 63 61 6c 20 7a 6f 6e 65 20 68 61 73 20 6e | a.local.zone..A.local.zone.has.n |
| e3180 | 6f 20 69 6e 74 65 72 66 61 63 65 73 20 61 6e 64 20 77 69 6c 6c 20 62 65 20 61 70 70 6c 69 65 64 | o.interfaces.and.will.be.applied |
| e31a0 | 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 2e 00 44 65 66 69 6e 65 20 74 79 | .to.the.router.itself..Define.ty |
| e31c0 | 70 65 20 6f 66 20 6f 66 66 6c 6f 61 64 20 74 6f 20 62 65 20 75 73 65 64 20 62 79 20 74 68 65 20 | pe.of.offload.to.be.used.by.the. |
| e31e0 | 66 6c 6f 77 74 61 62 6c 65 3a 20 60 60 68 61 72 64 77 61 72 65 60 60 20 6f 72 20 60 60 73 6f 66 | flowtable:.``hardware``.or.``sof |
| e3200 | 74 77 61 72 65 60 60 2e 20 42 79 20 64 65 66 61 75 6c 74 2c 20 60 60 73 6f 66 74 77 61 72 65 60 | tware``..By.default,.``software` |
| e3220 | 60 20 6f 66 66 6c 6f 61 64 20 69 73 20 75 73 65 64 2e 00 44 65 66 69 6e 65 20 75 73 65 64 20 65 | `.offload.is.used..Define.used.e |
| e3240 | 74 68 65 72 74 79 70 65 20 6f 66 20 62 72 69 64 67 65 20 69 6e 74 65 72 66 61 63 65 2e 00 44 65 | thertype.of.bridge.interface..De |
| e3260 | 66 69 6e 65 64 20 74 68 65 20 49 50 76 34 2c 20 49 50 76 36 20 6f 72 20 46 51 44 4e 20 61 6e 64 | fined.the.IPv4,.IPv6.or.FQDN.and |
| e3280 | 20 70 6f 72 74 20 6e 75 6d 62 65 72 20 6f 66 20 74 68 65 20 63 61 63 68 69 6e 67 20 52 50 4b 49 | .port.number.of.the.caching.RPKI |
| e32a0 | 20 63 61 63 68 69 6e 67 20 69 6e 73 74 61 6e 63 65 20 77 68 69 63 68 20 69 73 20 75 73 65 64 2e | .caching.instance.which.is.used. |
| e32c0 | 00 44 65 66 69 6e 65 73 20 61 6c 74 65 72 6e 61 74 65 20 73 6f 75 72 63 65 73 20 66 6f 72 20 6d | .Defines.alternate.sources.for.m |
| e32e0 | 75 6c 74 69 63 61 73 74 69 6e 67 20 61 6e 64 20 49 47 4d 50 20 64 61 74 61 2e 20 54 68 65 20 6e | ulticasting.and.IGMP.data..The.n |
| e3300 | 65 74 77 6f 72 6b 20 61 64 64 72 65 73 73 20 6d 75 73 74 20 62 65 20 6f 6e 20 74 68 65 20 66 6f | etwork.address.must.be.on.the.fo |
| e3320 | 6c 6c 6f 77 69 6e 67 20 66 6f 72 6d 61 74 20 27 61 2e 62 2e 63 2e 64 2f 6e 27 2e 20 42 79 20 64 | llowing.format.'a.b.c.d/n'..By.d |
| e3340 | 65 66 61 75 6c 74 2c 20 74 68 65 20 72 6f 75 74 65 72 20 77 69 6c 6c 20 61 63 63 65 70 74 20 64 | efault,.the.router.will.accept.d |
| e3360 | 61 74 61 20 66 72 6f 6d 20 73 6f 75 72 63 65 73 20 6f 6e 20 74 68 65 20 73 61 6d 65 20 6e 65 74 | ata.from.sources.on.the.same.net |
| e3380 | 77 6f 72 6b 20 61 73 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 61 6e 20 69 6e 74 65 72 66 61 | work.as.configured.on.an.interfa |
| e33a0 | 63 65 2e 20 49 66 20 74 68 65 20 6d 75 6c 74 69 63 61 73 74 20 73 6f 75 72 63 65 20 6c 69 65 73 | ce..If.the.multicast.source.lies |
| e33c0 | 20 6f 6e 20 61 20 72 65 6d 6f 74 65 20 6e 65 74 77 6f 72 6b 2c 20 6f 6e 65 20 6d 75 73 74 20 64 | .on.a.remote.network,.one.must.d |
| e33e0 | 65 66 69 6e 65 20 66 72 6f 6d 20 77 68 65 72 65 20 74 72 61 66 66 69 63 20 73 68 6f 75 6c 64 20 | efine.from.where.traffic.should. |
| e3400 | 62 65 20 61 63 63 65 70 74 65 64 2e 00 44 65 66 69 6e 65 73 20 61 6e 20 6f 66 66 2d 4e 42 4d 41 | be.accepted..Defines.an.off-NBMA |
| e3420 | 20 6e 65 74 77 6f 72 6b 20 70 72 65 66 69 78 20 66 6f 72 20 77 68 69 63 68 20 74 68 65 20 47 52 | .network.prefix.for.which.the.GR |
| e3440 | 45 20 69 6e 74 65 72 66 61 63 65 20 77 69 6c 6c 20 61 63 74 20 61 73 20 61 20 67 61 74 65 77 61 | E.interface.will.act.as.a.gatewa |
| e3460 | 79 2e 20 54 68 69 73 20 61 6e 20 61 6c 74 65 72 6e 61 74 69 76 65 20 74 6f 20 64 65 66 69 6e 69 | y..This.an.alternative.to.defini |
| e3480 | 6e 67 20 6c 6f 63 61 6c 20 69 6e 74 65 72 66 61 63 65 73 20 77 69 74 68 20 73 68 6f 72 74 63 75 | ng.local.interfaces.with.shortcu |
| e34a0 | 74 2d 64 65 73 74 69 6e 61 74 69 6f 6e 20 66 6c 61 67 2e 00 44 65 66 69 6e 65 73 20 62 6c 61 63 | t-destination.flag..Defines.blac |
| e34c0 | 6b 68 6f 6c 65 20 64 69 73 74 61 6e 63 65 20 66 6f 72 20 74 68 69 73 20 72 6f 75 74 65 2c 20 72 | khole.distance.for.this.route,.r |
| e34e0 | 6f 75 74 65 73 20 77 69 74 68 20 73 6d 61 6c 6c 65 72 20 61 64 6d 69 6e 69 73 74 72 61 74 69 76 | outes.with.smaller.administrativ |
| e3500 | 65 20 64 69 73 74 61 6e 63 65 20 61 72 65 20 65 6c 65 63 74 65 64 20 70 72 69 6f 72 20 74 6f 20 | e.distance.are.elected.prior.to. |
| e3520 | 74 68 6f 73 65 20 77 69 74 68 20 61 20 68 69 67 68 65 72 20 64 69 73 74 61 6e 63 65 2e 00 44 65 | those.with.a.higher.distance..De |
| e3540 | 66 69 6e 65 73 20 6d 69 6e 69 6d 75 6d 20 61 63 63 65 70 74 61 62 6c 65 20 4d 54 55 2e 20 49 66 | fines.minimum.acceptable.MTU..If |
| e3560 | 20 63 6c 69 65 6e 74 20 77 69 6c 6c 20 74 72 79 20 74 6f 20 6e 65 67 6f 74 69 61 74 65 20 6c 65 | .client.will.try.to.negotiate.le |
| e3580 | 73 73 20 74 68 65 6e 20 73 70 65 63 69 66 69 65 64 20 4d 54 55 20 74 68 65 6e 20 69 74 20 77 69 | ss.then.specified.MTU.then.it.wi |
| e35a0 | 6c 6c 20 62 65 20 4e 41 4b 65 64 20 6f 72 20 64 69 73 63 6f 6e 6e 65 63 74 65 64 20 69 66 20 72 | ll.be.NAKed.or.disconnected.if.r |
| e35c0 | 65 6a 65 63 74 73 20 67 72 65 61 74 65 72 20 4d 54 55 2e 20 44 65 66 61 75 6c 74 20 76 61 6c 75 | ejects.greater.MTU..Default.valu |
| e35e0 | 65 20 69 73 20 2a 2a 31 30 30 2a 2a 2e 00 44 65 66 69 6e 65 73 20 6e 65 78 74 2d 68 6f 70 20 64 | e.is.**100**..Defines.next-hop.d |
| e3600 | 69 73 74 61 6e 63 65 20 66 6f 72 20 74 68 69 73 20 72 6f 75 74 65 2c 20 72 6f 75 74 65 73 20 77 | istance.for.this.route,.routes.w |
| e3620 | 69 74 68 20 73 6d 61 6c 6c 65 72 20 61 64 6d 69 6e 69 73 74 72 61 74 69 76 65 20 64 69 73 74 61 | ith.smaller.administrative.dista |
| e3640 | 6e 63 65 20 61 72 65 20 65 6c 65 63 74 65 64 20 70 72 69 6f 72 20 74 6f 20 74 68 6f 73 65 20 77 | nce.are.elected.prior.to.those.w |
| e3660 | 69 74 68 20 61 20 68 69 67 68 65 72 20 64 69 73 74 61 6e 63 65 2e 00 44 65 66 69 6e 65 73 20 70 | ith.a.higher.distance..Defines.p |
| e3680 | 72 65 66 65 72 72 65 64 20 4d 52 55 2e 20 42 79 20 64 65 66 61 75 6c 74 20 69 73 20 6e 6f 74 20 | referred.MRU..By.default.is.not. |
| e36a0 | 64 65 66 69 6e 65 64 2e 00 44 65 66 69 6e 65 73 20 70 72 6f 74 6f 63 6f 6c 73 20 66 6f 72 20 63 | defined..Defines.protocols.for.c |
| e36c0 | 68 65 63 6b 69 6e 67 20 41 52 50 2c 20 49 43 4d 50 2c 20 54 43 50 00 44 65 66 69 6e 65 73 20 74 | hecking.ARP,.ICMP,.TCP.Defines.t |
| e36e0 | 68 65 20 6d 61 78 69 6d 75 6d 20 60 3c 6e 75 6d 62 65 72 3e 60 20 6f 66 20 75 6e 61 6e 73 77 65 | he.maximum.`<number>`.of.unanswe |
| e3700 | 72 65 64 20 65 63 68 6f 20 72 65 71 75 65 73 74 73 2e 20 55 70 6f 6e 20 72 65 61 63 68 69 6e 67 | red.echo.requests..Upon.reaching |
| e3720 | 20 74 68 65 20 76 61 6c 75 65 20 60 3c 6e 75 6d 62 65 72 3e 60 2c 20 74 68 65 20 73 65 73 73 69 | .the.value.`<number>`,.the.sessi |
| e3740 | 6f 6e 20 77 69 6c 6c 20 62 65 20 72 65 73 65 74 2e 00 44 65 66 69 6e 65 73 20 74 68 65 20 6d 61 | on.will.be.reset..Defines.the.ma |
| e3760 | 78 69 6d 75 6d 20 60 3c 6e 75 6d 62 65 72 3e 60 20 6f 66 20 75 6e 61 6e 73 77 65 72 65 64 20 65 | ximum.`<number>`.of.unanswered.e |
| e3780 | 63 68 6f 20 72 65 71 75 65 73 74 73 2e 20 55 70 6f 6e 20 72 65 61 63 68 69 6e 67 20 74 68 65 20 | cho.requests..Upon.reaching.the. |
| e37a0 | 76 61 6c 75 65 20 60 3c 6e 75 6d 62 65 72 3e 60 2c 20 74 68 65 20 73 65 73 73 69 6f 6e 20 77 69 | value.`<number>`,.the.session.wi |
| e37c0 | 6c 6c 20 62 65 20 72 65 73 65 74 2e 20 44 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 2a 2a | ll.be.reset..Default.value.is.** |
| e37e0 | 33 2a 2a 2e 00 44 65 66 69 6e 65 73 20 74 68 65 20 6d 69 6e 69 6d 75 6d 20 61 63 63 65 70 74 61 | 3**..Defines.the.minimum.accepta |
| e3800 | 62 6c 65 20 4d 54 55 2e 20 49 66 20 61 20 63 6c 69 65 6e 74 20 74 72 69 65 73 20 74 6f 20 6e 65 | ble.MTU..If.a.client.tries.to.ne |
| e3820 | 67 6f 74 69 61 74 65 20 61 6e 20 4d 54 55 20 6c 6f 77 65 72 20 74 68 61 6e 20 74 68 69 73 20 69 | gotiate.an.MTU.lower.than.this.i |
| e3840 | 74 20 77 69 6c 6c 20 62 65 20 4e 41 4b 65 64 2c 20 61 6e 64 20 64 69 73 63 6f 6e 6e 65 63 74 65 | t.will.be.NAKed,.and.disconnecte |
| e3860 | 64 20 69 66 20 69 74 20 72 65 6a 65 63 74 73 20 61 20 67 72 65 61 74 65 72 20 4d 54 55 2e 20 44 | d.if.it.rejects.a.greater.MTU..D |
| e3880 | 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 2a 2a 31 30 30 2a 2a 2e 00 44 65 66 69 6e 65 73 | efault.value.is.**100**..Defines |
| e38a0 | 20 74 68 65 20 72 6f 75 6e 64 2d 74 72 69 70 20 74 69 6d 65 20 75 73 65 64 20 66 6f 72 20 61 63 | .the.round-trip.time.used.for.ac |
| e38c0 | 74 69 76 65 20 71 75 65 75 65 20 6d 61 6e 61 67 65 6d 65 6e 74 20 28 41 51 4d 29 20 69 6e 20 6d | tive.queue.management.(AQM).in.m |
| e38e0 | 69 6c 6c 69 73 65 63 6f 6e 64 73 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 | illiseconds..The.default.value.i |
| e3900 | 73 20 31 30 30 2e 00 44 65 66 69 6e 65 73 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 64 65 76 | s.100..Defines.the.specified.dev |
| e3920 | 69 63 65 20 61 73 20 61 20 73 79 73 74 65 6d 20 63 6f 6e 73 6f 6c 65 2e 20 41 76 61 69 6c 61 62 | ice.as.a.system.console..Availab |
| e3940 | 6c 65 20 63 6f 6e 73 6f 6c 65 20 64 65 76 69 63 65 73 20 63 61 6e 20 62 65 20 28 73 65 65 20 63 | le.console.devices.can.be.(see.c |
| e3960 | 6f 6d 70 6c 65 74 69 6f 6e 20 68 65 6c 70 65 72 29 3a 00 44 65 66 69 6e 69 6e 67 20 44 79 6e 61 | ompletion.helper):.Defining.Dyna |
| e3980 | 6d 69 63 20 41 64 64 72 65 73 73 20 47 72 6f 75 70 73 00 44 65 66 69 6e 69 6e 67 20 50 65 65 72 | mic.Address.Groups.Defining.Peer |
| e39a0 | 73 00 44 65 6c 65 67 61 74 65 20 70 72 65 66 69 78 65 73 20 66 72 6f 6d 20 60 3c 70 64 2d 70 72 | s.Delegate.prefixes.from.`<pd-pr |
| e39c0 | 65 66 69 78 3e 60 20 74 6f 20 63 6c 69 65 6e 74 73 20 69 6e 20 73 75 62 6e 65 74 20 60 3c 70 72 | efix>`.to.clients.in.subnet.`<pr |
| e39e0 | 65 66 69 78 3e 60 2e 20 52 61 6e 67 65 20 69 73 20 64 65 66 69 6e 65 64 20 62 79 20 60 3c 6c 65 | efix>`..Range.is.defined.by.`<le |
| e3a00 | 6e 67 68 74 3e 60 20 69 6e 20 62 69 74 73 2c 20 33 32 20 74 6f 20 36 34 2e 00 44 65 6c 65 67 61 | nght>`.in.bits,.32.to.64..Delega |
| e3a20 | 74 65 20 70 72 65 66 69 78 65 73 20 66 72 6f 6d 20 74 68 65 20 72 61 6e 67 65 20 69 6e 64 69 63 | te.prefixes.from.the.range.indic |
| e3a40 | 61 74 65 64 20 62 79 20 74 68 65 20 73 74 61 72 74 20 61 6e 64 20 73 74 6f 70 20 71 75 61 6c 69 | ated.by.the.start.and.stop.quali |
| e3a60 | 66 69 65 72 2e 00 44 65 6c 65 74 65 20 42 47 50 20 63 6f 6d 6d 75 6e 69 74 69 65 73 20 6d 61 74 | fier..Delete.BGP.communities.mat |
| e3a80 | 63 68 69 6e 67 20 74 68 65 20 63 6f 6d 6d 75 6e 69 74 79 2d 6c 69 73 74 2e 00 44 65 6c 65 74 65 | ching.the.community-list..Delete |
| e3aa0 | 20 42 47 50 20 63 6f 6d 6d 75 6e 69 74 69 65 73 20 6d 61 74 63 68 69 6e 67 20 74 68 65 20 6c 61 | .BGP.communities.matching.the.la |
| e3ac0 | 72 67 65 2d 63 6f 6d 6d 75 6e 69 74 79 2d 6c 69 73 74 2e 00 44 65 6c 65 74 65 20 4c 6f 67 73 00 | rge-community-list..Delete.Logs. |
| e3ae0 | 44 65 6c 65 74 65 20 61 20 70 61 72 74 69 63 75 6c 61 72 20 63 6f 6e 74 61 69 6e 65 72 20 69 6d | Delete.a.particular.container.im |
| e3b00 | 61 67 65 20 62 61 73 65 64 20 6f 6e 20 69 74 27 73 20 69 6d 61 67 65 20 49 44 2e 20 59 6f 75 20 | age.based.on.it's.image.ID..You. |
| e3b20 | 63 61 6e 20 61 6c 73 6f 20 64 65 6c 65 74 65 20 61 6c 6c 20 63 6f 6e 74 61 69 6e 65 72 20 69 6d | can.also.delete.all.container.im |
| e3b40 | 61 67 65 73 20 61 74 20 6f 6e 63 65 2e 00 44 65 6c 65 74 65 20 61 6c 6c 20 42 47 50 20 63 6f 6d | ages.at.once..Delete.all.BGP.com |
| e3b60 | 6d 75 6e 69 74 69 65 73 00 44 65 6c 65 74 65 20 61 6c 6c 20 42 47 50 20 6c 61 72 67 65 2d 63 6f | munities.Delete.all.BGP.large-co |
| e3b80 | 6d 6d 75 6e 69 74 69 65 73 00 44 65 6c 65 74 65 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 20 66 | mmunities.Delete.default.route.f |
| e3ba0 | 72 6f 6d 20 74 68 65 20 73 79 73 74 65 6d 2e 00 44 65 6c 65 74 65 73 20 74 68 65 20 73 70 65 63 | rom.the.system..Deletes.the.spec |
| e3bc0 | 69 66 69 65 64 20 75 73 65 72 2d 64 65 66 69 6e 65 64 20 66 69 6c 65 20 3c 74 65 78 74 3e 20 69 | ified.user-defined.file.<text>.i |
| e3be0 | 6e 20 74 68 65 20 2f 76 61 72 2f 6c 6f 67 2f 75 73 65 72 20 64 69 72 65 63 74 6f 72 79 00 44 65 | n.the./var/log/user.directory.De |
| e3c00 | 70 65 6e 64 69 6e 67 20 6f 6e 20 74 68 65 20 6c 6f 63 61 74 69 6f 6e 2c 20 6e 6f 74 20 61 6c 6c | pending.on.the.location,.not.all |
| e3c20 | 20 6f 66 20 74 68 65 73 65 20 63 68 61 6e 6e 65 6c 73 20 6d 61 79 20 62 65 20 61 76 61 69 6c 61 | .of.these.channels.may.be.availa |
| e3c40 | 62 6c 65 20 66 6f 72 20 75 73 65 21 00 44 65 73 63 72 69 70 74 69 6f 6e 00 44 65 73 70 69 74 65 | ble.for.use!.Description.Despite |
| e3c60 | 20 74 68 65 20 44 72 6f 70 2d 54 61 69 6c 20 70 6f 6c 69 63 79 20 64 6f 65 73 20 6e 6f 74 20 73 | .the.Drop-Tail.policy.does.not.s |
| e3c80 | 6c 6f 77 20 64 6f 77 6e 20 70 61 63 6b 65 74 73 2c 20 69 66 20 6d 61 6e 79 20 70 61 63 6b 65 74 | low.down.packets,.if.many.packet |
| e3ca0 | 73 20 61 72 65 20 74 6f 20 62 65 20 73 65 6e 74 2c 20 74 68 65 79 20 63 6f 75 6c 64 20 67 65 74 | s.are.to.be.sent,.they.could.get |
| e3cc0 | 20 64 72 6f 70 70 65 64 20 77 68 65 6e 20 74 72 79 69 6e 67 20 74 6f 20 67 65 74 20 65 6e 71 75 | .dropped.when.trying.to.get.enqu |
| e3ce0 | 65 75 65 64 20 61 74 20 74 68 65 20 74 61 69 6c 2e 20 54 68 69 73 20 63 61 6e 20 68 61 70 70 65 | eued.at.the.tail..This.can.happe |
| e3d00 | 6e 20 69 66 20 74 68 65 20 71 75 65 75 65 20 68 61 73 20 73 74 69 6c 6c 20 6e 6f 74 20 62 65 65 | n.if.the.queue.has.still.not.bee |
| e3d20 | 6e 20 61 62 6c 65 20 74 6f 20 72 65 6c 65 61 73 65 20 65 6e 6f 75 67 68 20 70 61 63 6b 65 74 73 | n.able.to.release.enough.packets |
| e3d40 | 20 66 72 6f 6d 20 69 74 73 20 68 65 61 64 2e 00 44 65 73 70 69 74 65 20 74 68 65 20 66 61 63 74 | .from.its.head..Despite.the.fact |
| e3d60 | 20 74 68 61 74 20 41 44 20 69 73 20 61 20 73 75 70 65 72 73 65 74 20 6f 66 20 4c 44 41 50 00 44 | .that.AD.is.a.superset.of.LDAP.D |
| e3d80 | 65 73 74 69 6e 61 74 69 6f 6e 20 41 64 64 72 65 73 73 00 44 65 73 74 69 6e 61 74 69 6f 6e 20 4e | estination.Address.Destination.N |
| e3da0 | 41 54 00 44 65 73 74 69 6e 61 74 69 6f 6e 20 50 72 65 66 69 78 00 44 65 74 61 69 6c 65 64 20 69 | AT.Destination.Prefix.Detailed.i |
| e3dc0 | 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 22 63 69 73 63 6f 22 20 61 6e 64 20 22 69 62 | nformation.about."cisco".and."ib |
| e3de0 | 6d 22 20 6d 6f 64 65 6c 73 20 64 69 66 66 65 72 65 6e 63 65 73 20 63 61 6e 20 62 65 20 66 6f 75 | m".models.differences.can.be.fou |
| e3e00 | 6e 64 20 69 6e 20 3a 72 66 63 3a 60 33 35 30 39 60 2e 20 41 20 22 73 68 6f 72 74 63 75 74 22 20 | nd.in.:rfc:`3509`..A."shortcut". |
| e3e20 | 6d 6f 64 65 6c 20 61 6c 6c 6f 77 73 20 41 42 52 20 74 6f 20 63 72 65 61 74 65 20 72 6f 75 74 65 | model.allows.ABR.to.create.route |
| e3e40 | 73 20 62 65 74 77 65 65 6e 20 61 72 65 61 73 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 74 6f 70 | s.between.areas.based.on.the.top |
| e3e60 | 6f 6c 6f 67 79 20 6f 66 20 74 68 65 20 61 72 65 61 73 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 | ology.of.the.areas.connected.to. |
| e3e80 | 74 68 69 73 20 72 6f 75 74 65 72 20 62 75 74 20 6e 6f 74 20 75 73 69 6e 67 20 61 20 62 61 63 6b | this.router.but.not.using.a.back |
| e3ea0 | 62 6f 6e 65 20 61 72 65 61 20 69 6e 20 63 61 73 65 20 69 66 20 6e 6f 6e 2d 62 61 63 6b 62 6f 6e | bone.area.in.case.if.non-backbon |
| e3ec0 | 65 20 72 6f 75 74 65 20 77 69 6c 6c 20 62 65 20 63 68 65 61 70 65 72 2e 20 46 6f 72 20 6d 6f 72 | e.route.will.be.cheaper..For.mor |
| e3ee0 | 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 22 73 68 6f 72 74 63 75 74 22 20 6d | e.information.about."shortcut".m |
| e3f00 | 6f 64 65 6c 2c 20 73 65 65 20 3a 74 3a 60 6f 73 70 66 2d 73 68 6f 72 74 63 75 74 2d 61 62 72 2d | odel,.see.:t:`ospf-shortcut-abr- |
| e3f20 | 30 32 2e 74 78 74 60 00 44 65 74 65 72 6d 69 6e 65 73 20 68 6f 77 20 6f 70 65 6e 6e 68 72 70 20 | 02.txt`.Determines.how.opennhrp. |
| e3f40 | 64 61 65 6d 6f 6e 20 73 68 6f 75 6c 64 20 73 6f 66 74 20 73 77 69 74 63 68 20 74 68 65 20 6d 75 | daemon.should.soft.switch.the.mu |
| e3f60 | 6c 74 69 63 61 73 74 20 74 72 61 66 66 69 63 2e 20 43 75 72 72 65 6e 74 6c 79 2c 20 6d 75 6c 74 | lticast.traffic..Currently,.mult |
| e3f80 | 69 63 61 73 74 20 74 72 61 66 66 69 63 20 69 73 20 63 61 70 74 75 72 65 64 20 62 79 20 6f 70 65 | icast.traffic.is.captured.by.ope |
| e3fa0 | 6e 6e 68 72 70 20 64 61 65 6d 6f 6e 20 75 73 69 6e 67 20 61 20 70 61 63 6b 65 74 20 73 6f 63 6b | nnhrp.daemon.using.a.packet.sock |
| e3fc0 | 65 74 2c 20 61 6e 64 20 72 65 73 65 6e 74 20 62 61 63 6b 20 74 6f 20 70 72 6f 70 65 72 20 64 65 | et,.and.resent.back.to.proper.de |
| e3fe0 | 73 74 69 6e 61 74 69 6f 6e 73 2e 20 54 68 69 73 20 6d 65 61 6e 73 20 74 68 61 74 20 6d 75 6c 74 | stinations..This.means.that.mult |
| e4000 | 69 63 61 73 74 20 70 61 63 6b 65 74 20 73 65 6e 64 69 6e 67 20 69 73 20 43 50 55 20 69 6e 74 65 | icast.packet.sending.is.CPU.inte |
| e4020 | 6e 73 69 76 65 2e 00 44 65 76 69 63 65 20 69 73 20 69 6e 63 61 70 61 62 6c 65 20 6f 66 20 34 30 | nsive..Device.is.incapable.of.40 |
| e4040 | 20 4d 48 7a 2c 20 64 6f 20 6e 6f 74 20 61 64 76 65 72 74 69 73 65 2e 20 54 68 69 73 20 73 65 74 | .MHz,.do.not.advertise..This.set |
| e4060 | 73 20 60 60 5b 34 30 2d 49 4e 54 4f 4c 45 52 41 4e 54 5d 60 60 00 44 65 76 69 63 65 73 20 65 76 | s.``[40-INTOLERANT]``.Devices.ev |
| e4080 | 61 6c 75 61 74 69 6e 67 20 77 68 65 74 68 65 72 20 61 6e 20 49 50 76 34 20 61 64 64 72 65 73 73 | aluating.whether.an.IPv4.address |
| e40a0 | 20 69 73 20 70 75 62 6c 69 63 20 6d 75 73 74 20 62 65 20 75 70 64 61 74 65 64 20 74 6f 20 72 65 | .is.public.must.be.updated.to.re |
| e40c0 | 63 6f 67 6e 69 7a 65 20 74 68 65 20 6e 65 77 20 61 64 64 72 65 73 73 20 73 70 61 63 65 2e 20 41 | cognize.the.new.address.space..A |
| e40e0 | 6c 6c 6f 63 61 74 69 6e 67 20 6d 6f 72 65 20 70 72 69 76 61 74 65 20 49 50 76 34 20 61 64 64 72 | llocating.more.private.IPv4.addr |
| e4100 | 65 73 73 20 73 70 61 63 65 20 66 6f 72 20 4e 41 54 20 64 65 76 69 63 65 73 20 6d 69 67 68 74 20 | ess.space.for.NAT.devices.might. |
| e4120 | 70 72 6f 6c 6f 6e 67 20 74 68 65 20 74 72 61 6e 73 69 74 69 6f 6e 20 74 6f 20 49 50 76 36 2e 00 | prolong.the.transition.to.IPv6.. |
| e4140 | 44 69 66 66 65 72 65 6e 74 20 4e 41 54 20 54 79 70 65 73 00 44 69 66 66 69 65 2d 48 65 6c 6c 6d | Different.NAT.Types.Diffie-Hellm |
| e4160 | 61 6e 20 70 61 72 61 6d 65 74 65 72 73 00 44 69 72 65 63 74 69 6f 6e 3a 20 2a 2a 69 6e 2a 2a 20 | an.parameters.Direction:.**in**. |
| e4180 | 61 6e 64 20 2a 2a 6f 75 74 2a 2a 2e 20 50 72 6f 74 65 63 74 20 70 75 62 6c 69 63 20 6e 65 74 77 | and.**out**..Protect.public.netw |
| e41a0 | 6f 72 6b 20 66 72 6f 6d 20 65 78 74 65 72 6e 61 6c 20 61 74 74 61 63 6b 73 2c 20 61 6e 64 20 69 | ork.from.external.attacks,.and.i |
| e41c0 | 64 65 6e 74 69 66 79 20 69 6e 74 65 72 6e 61 6c 20 61 74 74 61 63 6b 73 20 74 6f 77 61 72 64 73 | dentify.internal.attacks.towards |
| e41e0 | 20 69 6e 74 65 72 6e 65 74 2e 00 44 69 73 61 62 6c 65 20 28 6c 6f 63 6b 29 20 61 63 63 6f 75 6e | .internet..Disable.(lock).accoun |
| e4200 | 74 2e 20 55 73 65 72 20 77 69 6c 6c 20 6e 6f 74 20 62 65 20 61 62 6c 65 20 74 6f 20 6c 6f 67 20 | t..User.will.not.be.able.to.log. |
| e4220 | 69 6e 2e 00 44 69 73 61 62 6c 65 20 43 50 55 20 70 6f 77 65 72 20 73 61 76 69 6e 67 20 6d 65 63 | in..Disable.CPU.power.saving.mec |
| e4240 | 68 61 6e 69 73 6d 73 20 61 6c 73 6f 20 6b 6e 6f 77 6e 20 61 73 20 43 20 73 74 61 74 65 73 2e 00 | hanisms.also.known.as.C.states.. |
| e4260 | 44 69 73 61 62 6c 65 20 43 6f 6d 70 72 65 73 73 69 6f 6e 20 43 6f 6e 74 72 6f 6c 20 50 72 6f 74 | Disable.Compression.Control.Prot |
| e4280 | 6f 63 6f 6c 20 28 43 43 50 29 2e 20 43 43 50 20 69 73 20 65 6e 61 62 6c 65 64 20 62 79 20 64 65 | ocol.(CCP)..CCP.is.enabled.by.de |
| e42a0 | 66 61 75 6c 74 2e 00 44 69 73 61 62 6c 65 20 4d 4c 44 20 72 65 70 6f 72 74 73 20 61 6e 64 20 71 | fault..Disable.MLD.reports.and.q |
| e42c0 | 75 65 72 79 20 6f 6e 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 2e 00 44 69 73 61 62 6c 65 20 60 | uery.on.the.interface..Disable.` |
| e42e0 | 3c 75 73 65 72 3e 60 20 61 63 63 6f 75 6e 74 2e 00 44 69 73 61 62 6c 65 20 61 20 42 46 44 20 70 | <user>`.account..Disable.a.BFD.p |
| e4300 | 65 65 72 00 44 69 73 61 62 6c 65 20 61 20 63 6f 6e 74 61 69 6e 65 72 2e 00 44 69 73 61 62 6c 65 | eer.Disable.a.container..Disable |
| e4320 | 20 61 20 67 69 76 65 6e 20 63 6f 6e 74 61 69 6e 65 72 20 72 65 67 69 73 74 72 79 00 44 69 73 61 | .a.given.container.registry.Disa |
| e4340 | 62 6c 65 20 61 6c 6c 20 6f 70 74 69 6f 6e 61 6c 20 43 50 55 20 6d 69 74 69 67 61 74 69 6f 6e 73 | ble.all.optional.CPU.mitigations |
| e4360 | 2e 20 54 68 69 73 20 69 6d 70 72 6f 76 65 73 20 73 79 73 74 65 6d 20 70 65 72 66 6f 72 6d 61 6e | ..This.improves.system.performan |
| e4380 | 63 65 2c 20 62 75 74 20 69 74 20 6d 61 79 20 61 6c 73 6f 20 65 78 70 6f 73 65 20 75 73 65 72 73 | ce,.but.it.may.also.expose.users |
| e43a0 | 20 74 6f 20 73 65 76 65 72 61 6c 20 43 50 55 20 76 75 6c 6e 65 72 61 62 69 6c 69 74 69 65 73 2e | .to.several.CPU.vulnerabilities. |
| e43c0 | 00 44 69 73 61 62 6c 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 6c 6f 67 67 69 6e 67 20 76 69 61 20 | .Disable.connection.logging.via. |
| e43e0 | 53 79 73 6c 6f 67 2e 00 44 69 73 61 62 6c 65 20 63 6f 6e 6e 74 72 61 63 6b 20 6c 6f 6f 73 65 20 | Syslog..Disable.conntrack.loose. |
| e4400 | 74 72 61 63 6b 20 6f 70 74 69 6f 6e 00 44 69 73 61 62 6c 65 20 64 68 63 70 2d 72 65 6c 61 79 20 | track.option.Disable.dhcp-relay. |
| e4420 | 73 65 72 76 69 63 65 2e 00 44 69 73 61 62 6c 65 20 64 68 63 70 76 36 2d 72 65 6c 61 79 20 73 65 | service..Disable.dhcpv6-relay.se |
| e4440 | 72 76 69 63 65 2e 00 44 69 73 61 62 6c 65 20 67 69 76 65 6e 20 60 3c 69 6e 74 65 72 66 61 63 65 | rvice..Disable.given.`<interface |
| e4460 | 3e 60 2e 20 49 74 20 77 69 6c 6c 20 62 65 20 70 6c 61 63 65 64 20 69 6e 20 61 64 6d 69 6e 69 73 | >`..It.will.be.placed.in.adminis |
| e4480 | 74 72 61 74 69 76 65 6c 79 20 64 6f 77 6e 20 28 60 60 41 2f 44 60 60 29 20 73 74 61 74 65 2e 00 | tratively.down.(``A/D``).state.. |
| e44a0 | 44 69 73 61 62 6c 65 20 68 6f 73 74 69 6e 67 20 61 75 74 68 6f 72 69 74 61 74 69 76 65 20 7a 6f | Disable.hosting.authoritative.zo |
| e44c0 | 6e 65 20 66 6f 72 20 60 3c 64 6f 6d 61 69 6e 2d 6e 61 6d 65 3e 60 20 77 69 74 68 6f 75 74 20 64 | ne.for.`<domain-name>`.without.d |
| e44e0 | 65 6c 65 74 69 6e 67 20 66 72 6f 6d 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 44 69 73 61 | eleting.from.configuration..Disa |
| e4500 | 62 6c 65 20 69 6d 6d 65 64 69 61 74 65 20 73 65 73 73 69 6f 6e 20 72 65 73 65 74 20 69 66 20 70 | ble.immediate.session.reset.if.p |
| e4520 | 65 65 72 27 73 20 63 6f 6e 6e 65 63 74 65 64 20 6c 69 6e 6b 20 67 6f 65 73 20 64 6f 77 6e 2e 00 | eer's.connected.link.goes.down.. |
| e4540 | 44 69 73 61 62 6c 65 20 70 61 73 73 77 6f 72 64 20 62 61 73 65 64 20 61 75 74 68 65 6e 74 69 63 | Disable.password.based.authentic |
| e4560 | 61 74 69 6f 6e 2e 20 4c 6f 67 69 6e 20 76 69 61 20 53 53 48 20 6b 65 79 73 20 6f 6e 6c 79 2e 20 | ation..Login.via.SSH.keys.only.. |
| e4580 | 54 68 69 73 20 68 61 72 64 65 6e 73 20 73 65 63 75 72 69 74 79 21 00 44 69 73 61 62 6c 65 20 73 | This.hardens.security!.Disable.s |
| e45a0 | 65 6e 64 69 6e 67 20 61 6e 64 20 72 65 63 65 69 76 69 6e 67 20 50 49 4d 20 63 6f 6e 74 72 6f 6c | ending.and.receiving.PIM.control |
| e45c0 | 20 70 61 63 6b 65 74 73 20 6f 6e 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 2e 00 44 69 73 61 62 | .packets.on.the.interface..Disab |
| e45e0 | 6c 65 20 73 70 65 63 69 66 69 63 20 72 65 63 6f 72 64 20 77 69 74 68 6f 75 74 20 64 65 6c 65 74 | le.specific.record.without.delet |
| e4600 | 69 6e 67 20 69 74 20 66 72 6f 6d 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 44 69 73 61 62 | ing.it.from.configuration..Disab |
| e4620 | 6c 65 20 74 68 65 20 68 6f 73 74 20 76 61 6c 69 64 61 74 69 6f 6e 20 74 68 72 6f 75 67 68 20 72 | le.the.host.validation.through.r |
| e4640 | 65 76 65 72 73 65 20 44 4e 53 20 6c 6f 6f 6b 75 70 73 20 2d 20 63 61 6e 20 73 70 65 65 64 75 70 | everse.DNS.lookups.-.can.speedup |
| e4660 | 20 6c 6f 67 69 6e 20 74 69 6d 65 20 77 68 65 6e 20 72 65 76 65 72 73 65 20 6c 6f 6f 6b 75 70 20 | .login.time.when.reverse.lookup. |
| e4680 | 69 73 20 6e 6f 74 20 70 6f 73 73 69 62 6c 65 2e 00 44 69 73 61 62 6c 65 20 74 68 65 20 70 65 65 | is.not.possible..Disable.the.pee |
| e46a0 | 72 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 44 69 73 61 62 6c 65 20 74 68 69 73 20 49 50 76 | r.configuration.Disable.this.IPv |
| e46c0 | 34 20 73 74 61 74 69 63 20 72 6f 75 74 65 20 65 6e 74 72 79 2e 00 44 69 73 61 62 6c 65 20 74 68 | 4.static.route.entry..Disable.th |
| e46e0 | 69 73 20 49 50 76 36 20 73 74 61 74 69 63 20 72 6f 75 74 65 20 65 6e 74 72 79 2e 00 44 69 73 61 | is.IPv6.static.route.entry..Disa |
| e4700 | 62 6c 65 20 74 68 69 73 20 73 65 72 76 69 63 65 2e 00 44 69 73 61 62 6c 65 20 74 72 61 6e 73 6d | ble.this.service..Disable.transm |
| e4720 | 69 74 20 6f 66 20 4c 4c 44 50 20 66 72 61 6d 65 73 20 6f 6e 20 67 69 76 65 6e 20 60 3c 69 6e 74 | it.of.LLDP.frames.on.given.`<int |
| e4740 | 65 72 66 61 63 65 3e 60 2e 20 55 73 65 66 75 6c 20 74 6f 20 65 78 63 6c 75 64 65 20 63 65 72 74 | erface>`..Useful.to.exclude.cert |
| e4760 | 61 69 6e 20 69 6e 74 65 72 66 61 63 65 73 20 66 72 6f 6d 20 4c 4c 44 50 20 77 68 65 6e 20 60 60 | ain.interfaces.from.LLDP.when.`` |
| e4780 | 61 6c 6c 60 60 20 68 61 76 65 20 62 65 65 6e 20 65 6e 61 62 6c 65 64 2e 00 44 69 73 61 62 6c 65 | all``.have.been.enabled..Disable |
| e47a0 | 64 20 62 79 20 64 65 66 61 75 6c 74 20 2d 20 6e 6f 20 6b 65 72 6e 65 6c 20 6d 6f 64 75 6c 65 20 | d.by.default.-.no.kernel.module. |
| e47c0 | 6c 6f 61 64 65 64 2e 00 44 69 73 61 62 6c 65 73 20 63 61 63 68 69 6e 67 20 6f 66 20 70 65 65 72 | loaded..Disables.caching.of.peer |
| e47e0 | 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 72 6f 6d 20 66 6f 72 77 61 72 64 65 64 20 4e 48 52 50 | .information.from.forwarded.NHRP |
| e4800 | 20 52 65 73 6f 6c 75 74 69 6f 6e 20 52 65 70 6c 79 20 70 61 63 6b 65 74 73 2e 20 54 68 69 73 20 | .Resolution.Reply.packets..This. |
| e4820 | 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 72 65 64 75 63 65 20 6d 65 6d 6f 72 79 20 63 6f 6e | can.be.used.to.reduce.memory.con |
| e4840 | 73 75 6d 70 74 69 6f 6e 20 6f 6e 20 62 69 67 20 4e 42 4d 41 20 73 75 62 6e 65 74 73 2e 00 44 69 | sumption.on.big.NBMA.subnets..Di |
| e4860 | 73 61 62 6c 65 73 20 66 6c 6f 77 20 69 73 6f 6c 61 74 69 6f 6e 2c 20 61 6c 6c 20 74 72 61 66 66 | sables.flow.isolation,.all.traff |
| e4880 | 69 63 20 70 61 73 73 65 73 20 74 68 72 6f 75 67 68 20 61 20 73 69 6e 67 6c 65 20 71 75 65 75 65 | ic.passes.through.a.single.queue |
| e48a0 | 2e 00 44 69 73 61 62 6c 65 73 20 69 6e 74 65 72 66 61 63 65 2d 62 61 73 65 64 20 49 50 76 34 20 | ..Disables.interface-based.IPv4. |
| e48c0 | 73 74 61 74 69 63 20 72 6f 75 74 65 2e 00 44 69 73 61 62 6c 65 73 20 69 6e 74 65 72 66 61 63 65 | static.route..Disables.interface |
| e48e0 | 2d 62 61 73 65 64 20 49 50 76 36 20 73 74 61 74 69 63 20 72 6f 75 74 65 2e 00 44 69 73 61 62 6c | -based.IPv6.static.route..Disabl |
| e4900 | 65 73 20 71 75 69 63 6b 6c 65 61 76 65 20 6d 6f 64 65 2e 20 49 6e 20 74 68 69 73 20 6d 6f 64 65 | es.quickleave.mode..In.this.mode |
| e4920 | 20 74 68 65 20 64 61 65 6d 6f 6e 20 77 69 6c 6c 20 6e 6f 74 20 73 65 6e 64 20 61 20 4c 65 61 76 | .the.daemon.will.not.send.a.Leav |
| e4940 | 65 20 49 47 4d 50 20 6d 65 73 73 61 67 65 20 75 70 73 74 72 65 61 6d 20 61 73 20 73 6f 6f 6e 20 | e.IGMP.message.upstream.as.soon. |
| e4960 | 61 73 20 69 74 20 72 65 63 65 69 76 65 73 20 61 20 4c 65 61 76 65 20 6d 65 73 73 61 67 65 20 66 | as.it.receives.a.Leave.message.f |
| e4980 | 6f 72 20 61 6e 79 20 64 6f 77 6e 73 74 72 65 61 6d 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 65 | or.any.downstream.interface..The |
| e49a0 | 20 64 61 65 6d 6f 6e 20 77 69 6c 6c 20 6e 6f 74 20 61 73 6b 20 66 6f 72 20 4d 65 6d 62 65 72 73 | .daemon.will.not.ask.for.Members |
| e49c0 | 68 69 70 20 72 65 70 6f 72 74 73 20 6f 6e 20 74 68 65 20 64 6f 77 6e 73 74 72 65 61 6d 20 69 6e | hip.reports.on.the.downstream.in |
| e49e0 | 74 65 72 66 61 63 65 73 2c 20 61 6e 64 20 69 66 20 61 20 72 65 70 6f 72 74 20 69 73 20 72 65 63 | terfaces,.and.if.a.report.is.rec |
| e4a00 | 65 69 76 65 64 20 74 68 65 20 67 72 6f 75 70 20 69 73 20 6e 6f 74 20 6a 6f 69 6e 65 64 20 61 67 | eived.the.group.is.not.joined.ag |
| e4a20 | 61 69 6e 20 74 68 65 20 75 70 73 74 72 65 61 6d 2e 00 44 69 73 61 62 6c 65 73 20 77 65 62 20 66 | ain.the.upstream..Disables.web.f |
| e4a40 | 69 6c 74 65 72 69 6e 67 20 77 69 74 68 6f 75 74 20 64 69 73 63 61 72 64 69 6e 67 20 63 6f 6e 66 | iltering.without.discarding.conf |
| e4a60 | 69 67 75 72 61 74 69 6f 6e 2e 00 44 69 73 61 62 6c 65 73 20 77 65 62 20 70 72 6f 78 79 20 74 72 | iguration..Disables.web.proxy.tr |
| e4a80 | 61 6e 73 70 61 72 65 6e 74 20 6d 6f 64 65 20 61 74 20 61 20 6c 69 73 74 65 6e 69 6e 67 20 61 64 | ansparent.mode.at.a.listening.ad |
| e4aa0 | 64 72 65 73 73 2e 00 44 69 73 61 62 6c 69 6e 67 20 41 64 76 65 72 74 69 73 65 6d 65 6e 74 73 00 | dress..Disabling.Advertisements. |
| e4ac0 | 44 69 73 61 62 6c 69 6e 67 20 61 20 56 52 52 50 20 67 72 6f 75 70 00 44 69 73 61 62 6c 69 6e 67 | Disabling.a.VRRP.group.Disabling |
| e4ae0 | 20 74 68 65 20 65 6e 63 72 79 70 74 69 6f 6e 20 6f 6e 20 74 68 65 20 6c 69 6e 6b 20 62 79 20 72 | .the.encryption.on.the.link.by.r |
| e4b00 | 65 6d 6f 76 69 6e 67 20 60 60 73 65 63 75 72 69 74 79 20 65 6e 63 72 79 70 74 60 60 20 77 69 6c | emoving.``security.encrypt``.wil |
| e4b20 | 6c 20 73 68 6f 77 20 74 68 65 20 75 6e 65 6e 63 72 79 70 74 65 64 20 62 75 74 20 61 75 74 68 65 | l.show.the.unencrypted.but.authe |
| e4b40 | 6e 74 69 63 61 74 65 64 20 63 6f 6e 74 65 6e 74 2e 00 44 69 73 61 64 76 61 6e 74 61 67 65 73 20 | nticated.content..Disadvantages. |
| e4b60 | 61 72 65 3a 00 44 69 73 61 73 73 6f 63 69 61 74 65 20 73 74 61 74 69 6f 6e 73 20 62 61 73 65 64 | are:.Disassociate.stations.based |
| e4b80 | 20 6f 6e 20 65 78 63 65 73 73 69 76 65 20 74 72 61 6e 73 6d 69 73 73 69 6f 6e 20 66 61 69 6c 75 | .on.excessive.transmission.failu |
| e4ba0 | 72 65 73 20 6f 72 20 6f 74 68 65 72 20 69 6e 64 69 63 61 74 69 6f 6e 73 20 6f 66 20 63 6f 6e 6e | res.or.other.indications.of.conn |
| e4bc0 | 65 63 74 69 6f 6e 20 6c 6f 73 73 2e 00 44 69 73 70 6c 61 79 20 49 50 76 34 20 72 6f 75 74 69 6e | ection.loss..Display.IPv4.routin |
| e4be0 | 67 20 74 61 62 6c 65 20 66 6f 72 20 56 52 46 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 60 3c | g.table.for.VRF.identified.by.`< |
| e4c00 | 6e 61 6d 65 3e 60 2e 00 44 69 73 70 6c 61 79 20 49 50 76 36 20 72 6f 75 74 69 6e 67 20 74 61 62 | name>`..Display.IPv6.routing.tab |
| e4c20 | 6c 65 20 66 6f 72 20 56 52 46 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 60 3c 6e 61 6d 65 3e | le.for.VRF.identified.by.`<name> |
| e4c40 | 60 2e 00 44 69 73 70 6c 61 79 20 4c 6f 67 73 00 44 69 73 70 6c 61 79 20 4f 54 50 20 6b 65 79 20 | `..Display.Logs.Display.OTP.key. |
| e4c60 | 66 6f 72 20 75 73 65 72 00 44 69 73 70 6c 61 79 20 61 6c 6c 20 61 75 74 68 6f 72 69 7a 61 74 69 | for.user.Display.all.authorizati |
| e4c80 | 6f 6e 20 61 74 74 65 6d 70 74 73 20 6f 66 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 69 6d 61 | on.attempts.of.the.specified.ima |
| e4ca0 | 67 65 00 44 69 73 70 6c 61 79 20 61 6c 6c 20 6b 6e 6f 77 6e 20 41 52 50 20 74 61 62 6c 65 20 65 | ge.Display.all.known.ARP.table.e |
| e4cc0 | 6e 74 72 69 65 73 20 6f 6e 20 61 20 67 69 76 65 6e 20 69 6e 74 65 72 66 61 63 65 20 6f 6e 6c 79 | ntries.on.a.given.interface.only |
| e4ce0 | 20 28 60 65 74 68 31 60 29 3a 00 44 69 73 70 6c 61 79 20 61 6c 6c 20 6b 6e 6f 77 6e 20 41 52 50 | .(`eth1`):.Display.all.known.ARP |
| e4d00 | 20 74 61 62 6c 65 20 65 6e 74 72 69 65 73 20 73 70 61 6e 6e 69 6e 67 20 61 63 72 6f 73 73 20 61 | .table.entries.spanning.across.a |
| e4d20 | 6c 6c 20 69 6e 74 65 72 66 61 63 65 73 00 44 69 73 70 6c 61 79 20 63 6f 6e 74 65 6e 74 73 20 6f | ll.interfaces.Display.contents.o |
| e4d40 | 66 20 61 20 73 70 65 63 69 66 69 65 64 20 75 73 65 72 2d 64 65 66 69 6e 65 64 20 6c 6f 67 20 66 | f.a.specified.user-defined.log.f |
| e4d60 | 69 6c 65 20 6f 66 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 69 6d 61 67 65 00 44 69 73 70 6c | ile.of.the.specified.image.Displ |
| e4d80 | 61 79 20 63 6f 6e 74 65 6e 74 73 20 6f 66 20 61 6c 6c 20 6d 61 73 74 65 72 20 6c 6f 67 20 66 69 | ay.contents.of.all.master.log.fi |
| e4da0 | 6c 65 73 20 6f 66 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 69 6d 61 67 65 00 44 69 73 70 6c | les.of.the.specified.image.Displ |
| e4dc0 | 61 79 20 6c 61 73 74 20 6c 69 6e 65 73 20 6f 66 20 74 68 65 20 73 79 73 74 65 6d 20 6c 6f 67 20 | ay.last.lines.of.the.system.log. |
| e4de0 | 6f 66 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 69 6d 61 67 65 00 44 69 73 70 6c 61 79 20 6c | of.the.specified.image.Display.l |
| e4e00 | 69 73 74 20 6f 66 20 61 6c 6c 20 75 73 65 72 2d 64 65 66 69 6e 65 64 20 6c 6f 67 20 66 69 6c 65 | ist.of.all.user-defined.log.file |
| e4e20 | 73 20 6f 66 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 69 6d 61 67 65 00 44 69 73 70 6c 61 79 | s.of.the.specified.image.Display |
| e4e40 | 20 6c 6f 67 20 66 69 6c 65 73 20 6f 66 20 67 69 76 65 6e 20 63 61 74 65 67 6f 72 79 20 6f 6e 20 | .log.files.of.given.category.on. |
| e4e60 | 74 68 65 20 63 6f 6e 73 6f 6c 65 2e 20 55 73 65 20 74 61 62 20 63 6f 6d 70 6c 65 74 69 6f 6e 20 | the.console..Use.tab.completion. |
| e4e80 | 74 6f 20 67 65 74 20 61 20 6c 69 73 74 20 6f 66 20 61 76 61 69 6c 61 62 6c 65 20 63 61 74 65 67 | to.get.a.list.of.available.categ |
| e4ea0 | 6f 72 69 65 73 2e 20 54 68 6f 73 20 63 61 74 65 67 6f 72 69 65 73 20 63 6f 75 6c 64 20 62 65 3a | ories..Thos.categories.could.be: |
| e4ec0 | 20 61 6c 6c 2c 20 61 75 74 68 6f 72 69 7a 61 74 69 6f 6e 2c 20 63 6c 75 73 74 65 72 2c 20 63 6f | .all,.authorization,.cluster,.co |
| e4ee0 | 6e 6e 74 72 61 63 6b 2d 73 79 6e 63 2c 20 64 68 63 70 2c 20 64 69 72 65 63 74 6f 72 79 2c 20 64 | nntrack-sync,.dhcp,.directory,.d |
| e4f00 | 6e 73 2c 20 66 69 6c 65 2c 20 66 69 72 65 77 61 6c 6c 2c 20 68 74 74 70 73 2c 20 69 6d 61 67 65 | ns,.file,.firewall,.https,.image |
| e4f20 | 20 6c 6c 64 70 2c 20 6e 61 74 2c 20 6f 70 65 6e 76 70 6e 2c 20 73 6e 6d 70 2c 20 74 61 69 6c 2c | .lldp,.nat,.openvpn,.snmp,.tail, |
| e4f40 | 20 76 70 6e 2c 20 76 72 72 70 00 44 69 73 70 6c 61 79 20 6c 6f 67 20 66 69 6c 65 73 20 6f 66 20 | .vpn,.vrrp.Display.log.files.of. |
| e4f60 | 67 69 76 65 6e 20 63 61 74 65 67 6f 72 79 20 6f 6e 20 74 68 65 20 63 6f 6e 73 6f 6c 65 2e 20 55 | given.category.on.the.console..U |
| e4f80 | 73 65 20 74 61 62 20 63 6f 6d 70 6c 65 74 69 6f 6e 20 74 6f 20 67 65 74 20 61 20 6c 69 73 74 20 | se.tab.completion.to.get.a.list. |
| e4fa0 | 6f 66 20 61 76 61 69 6c 61 62 6c 65 20 63 61 74 65 67 6f 72 69 65 73 2e 20 54 68 6f 73 65 20 63 | of.available.categories..Those.c |
| e4fc0 | 61 74 65 67 6f 72 69 65 73 20 63 6f 75 6c 64 20 62 65 3a 20 61 6c 6c 2c 20 61 75 74 68 6f 72 69 | ategories.could.be:.all,.authori |
| e4fe0 | 7a 61 74 69 6f 6e 2c 20 63 6c 75 73 74 65 72 2c 20 63 6f 6e 6e 74 72 61 63 6b 2d 73 79 6e 63 2c | zation,.cluster,.conntrack-sync, |
| e5000 | 20 64 68 63 70 2c 20 64 69 72 65 63 74 6f 72 79 2c 20 64 6e 73 2c 20 66 69 6c 65 2c 20 66 69 72 | .dhcp,.directory,.dns,.file,.fir |
| e5020 | 65 77 61 6c 6c 2c 20 68 74 74 70 73 2c 20 69 6d 61 67 65 20 6c 6c 64 70 2c 20 6e 61 74 2c 20 6f | ewall,.https,.image.lldp,.nat,.o |
| e5040 | 70 65 6e 76 70 6e 2c 20 73 6e 6d 70 2c 20 74 61 69 6c 2c 20 76 70 6e 2c 20 76 72 72 70 00 44 69 | penvpn,.snmp,.tail,.vpn,.vrrp.Di |
| e5060 | 73 70 6c 61 79 73 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 61 6c 6c 20 6e 65 69 | splays.information.about.all.nei |
| e5080 | 67 68 62 6f 72 73 20 64 69 73 63 6f 76 65 72 65 64 20 76 69 61 20 4c 4c 44 50 2e 00 44 69 73 70 | ghbors.discovered.via.LLDP..Disp |
| e50a0 | 6c 61 79 73 20 71 75 65 75 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 6f 72 20 61 20 50 50 50 | lays.queue.information.for.a.PPP |
| e50c0 | 6f 45 20 69 6e 74 65 72 66 61 63 65 2e 00 44 69 73 70 6c 61 79 73 20 74 68 65 20 72 6f 75 74 65 | oE.interface..Displays.the.route |
| e50e0 | 20 70 61 63 6b 65 74 73 20 74 61 6b 65 6e 20 74 6f 20 61 20 6e 65 74 77 6f 72 6b 20 68 6f 73 74 | .packets.taken.to.a.network.host |
| e5100 | 20 75 74 69 6c 69 7a 69 6e 67 20 56 52 46 20 69 6e 73 74 61 6e 63 65 20 69 64 65 6e 74 69 66 69 | .utilizing.VRF.instance.identifi |
| e5120 | 65 64 20 62 79 20 60 3c 6e 61 6d 65 3e 60 2e 20 57 68 65 6e 20 75 73 69 6e 67 20 74 68 65 20 49 | ed.by.`<name>`..When.using.the.I |
| e5140 | 50 76 34 20 6f 72 20 49 50 76 36 20 6f 70 74 69 6f 6e 2c 20 64 69 73 70 6c 61 79 73 20 74 68 65 | Pv4.or.IPv6.option,.displays.the |
| e5160 | 20 72 6f 75 74 65 20 70 61 63 6b 65 74 73 20 74 61 6b 65 6e 20 74 6f 20 74 68 65 20 67 69 76 65 | .route.packets.taken.to.the.give |
| e5180 | 6e 20 68 6f 73 74 73 20 49 50 20 61 64 64 72 65 73 73 20 66 61 6d 69 6c 79 2e 20 54 68 69 73 20 | n.hosts.IP.address.family..This. |
| e51a0 | 6f 70 74 69 6f 6e 20 69 73 20 75 73 65 66 75 6c 20 77 68 65 6e 20 74 68 65 20 68 6f 73 74 20 69 | option.is.useful.when.the.host.i |
| e51c0 | 73 20 73 70 65 63 69 66 69 65 64 20 61 73 20 61 20 68 6f 73 74 6e 61 6d 65 20 72 61 74 68 65 72 | s.specified.as.a.hostname.rather |
| e51e0 | 20 74 68 61 6e 20 61 6e 20 49 50 20 61 64 64 72 65 73 73 2e 00 44 6f 20 2a 6e 6f 74 2a 20 6d 61 | .than.an.IP.address..Do.*not*.ma |
| e5200 | 6e 75 61 6c 6c 79 20 65 64 69 74 20 60 2f 65 74 63 2f 68 6f 73 74 73 60 2e 20 54 68 69 73 20 66 | nually.edit.`/etc/hosts`..This.f |
| e5220 | 69 6c 65 20 77 69 6c 6c 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 62 65 20 72 65 67 65 6e 65 | ile.will.automatically.be.regene |
| e5240 | 72 61 74 65 64 20 6f 6e 20 62 6f 6f 74 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 73 65 74 74 69 | rated.on.boot.based.on.the.setti |
| e5260 | 6e 67 73 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 2c 20 77 68 69 63 68 20 6d 65 61 6e 73 | ngs.in.this.section,.which.means |
| e5280 | 20 79 6f 75 27 6c 6c 20 6c 6f 73 65 20 61 6c 6c 20 79 6f 75 72 20 6d 61 6e 75 61 6c 20 65 64 69 | .you'll.lose.all.your.manual.edi |
| e52a0 | 74 73 2e 20 49 6e 73 74 65 61 64 2c 20 63 6f 6e 66 69 67 75 72 65 20 73 74 61 74 69 63 20 68 6f | ts..Instead,.configure.static.ho |
| e52c0 | 73 74 20 6d 61 70 70 69 6e 67 73 20 61 73 20 66 6f 6c 6c 6f 77 73 2e 00 44 6f 20 6e 6f 74 20 61 | st.mappings.as.follows..Do.not.a |
| e52e0 | 6c 6c 6f 77 20 49 50 76 34 20 6e 65 78 74 68 6f 70 20 74 72 61 63 6b 69 6e 67 20 74 6f 20 72 65 | llow.IPv4.nexthop.tracking.to.re |
| e5300 | 73 6f 6c 76 65 20 76 69 61 20 74 68 65 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 2e 20 54 68 69 | solve.via.the.default.route..Thi |
| e5320 | 73 20 70 61 72 61 6d 65 74 65 72 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 20 70 65 72 2d 56 52 | s.parameter.is.configured.per-VR |
| e5340 | 46 2c 20 73 6f 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 69 73 20 61 6c 73 6f 20 61 76 61 69 6c 61 | F,.so.the.command.is.also.availa |
| e5360 | 62 6c 65 20 69 6e 20 74 68 65 20 56 52 46 20 73 75 62 6e 6f 64 65 2e 00 44 6f 20 6e 6f 74 20 61 | ble.in.the.VRF.subnode..Do.not.a |
| e5380 | 6c 6c 6f 77 20 49 50 76 36 20 6e 65 78 74 68 6f 70 20 74 72 61 63 6b 69 6e 67 20 74 6f 20 72 65 | llow.IPv6.nexthop.tracking.to.re |
| e53a0 | 73 6f 6c 76 65 20 76 69 61 20 74 68 65 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 2e 20 54 68 69 | solve.via.the.default.route..Thi |
| e53c0 | 73 20 70 61 72 61 6d 65 74 65 72 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 20 70 65 72 2d 56 52 | s.parameter.is.configured.per-VR |
| e53e0 | 46 2c 20 73 6f 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 69 73 20 61 6c 73 6f 20 61 76 61 69 6c 61 | F,.so.the.command.is.also.availa |
| e5400 | 62 6c 65 20 69 6e 20 74 68 65 20 56 52 46 20 73 75 62 6e 6f 64 65 2e 00 44 6f 20 6e 6f 74 20 61 | ble.in.the.VRF.subnode..Do.not.a |
| e5420 | 73 73 69 67 6e 20 61 20 6c 69 6e 6b 2d 6c 6f 63 61 6c 20 49 50 76 36 20 61 64 64 72 65 73 73 20 | ssign.a.link-local.IPv6.address. |
| e5440 | 74 6f 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 2e 00 44 6f 20 6e 6f 74 20 63 6f 6e 66 69 67 | to.this.interface..Do.not.config |
| e5460 | 75 72 65 20 49 46 42 20 61 73 20 74 68 65 20 66 69 72 73 74 20 73 74 65 70 2e 20 46 69 72 73 74 | ure.IFB.as.the.first.step..First |
| e5480 | 20 63 72 65 61 74 65 20 65 76 65 72 79 74 68 69 6e 67 20 65 6c 73 65 20 6f 66 20 79 6f 75 72 20 | .create.everything.else.of.your. |
| e54a0 | 74 72 61 66 66 69 63 2d 70 6f 6c 69 63 79 2c 20 61 6e 64 20 74 68 65 6e 20 79 6f 75 20 63 61 6e | traffic-policy,.and.then.you.can |
| e54c0 | 20 63 6f 6e 66 69 67 75 72 65 20 49 46 42 2e 20 4f 74 68 65 72 77 69 73 65 20 79 6f 75 20 6d 69 | .configure.IFB..Otherwise.you.mi |
| e54e0 | 67 68 74 20 67 65 74 20 74 68 65 20 60 60 52 54 4e 45 54 4c 49 4e 4b 20 61 6e 73 77 65 72 3a 20 | ght.get.the.``RTNETLINK.answer:. |
| e5500 | 46 69 6c 65 20 65 78 69 73 74 73 60 60 20 65 72 72 6f 72 2c 20 77 68 69 63 68 20 63 61 6e 20 62 | File.exists``.error,.which.can.b |
| e5520 | 65 20 73 6f 6c 76 65 64 20 77 69 74 68 20 60 60 73 75 64 6f 20 69 70 20 6c 69 6e 6b 20 64 65 6c | e.solved.with.``sudo.ip.link.del |
| e5540 | 65 74 65 20 69 66 62 30 60 60 2e 00 44 6f 20 6e 6f 74 20 6c 65 61 76 65 20 69 6e 74 72 6f 73 70 | ete.ifb0``..Do.not.leave.introsp |
| e5560 | 65 63 74 69 6f 6e 20 65 6e 61 62 6c 65 64 20 69 6e 20 70 72 6f 64 75 63 74 69 6f 6e 2c 20 69 74 | ection.enabled.in.production,.it |
| e5580 | 20 69 73 20 61 20 73 65 63 75 72 69 74 79 20 72 69 73 6b 2e 00 44 6f 20 6e 6f 74 20 73 65 6e 64 | .is.a.security.risk..Do.not.send |
| e55a0 | 20 48 61 72 64 20 52 65 73 65 74 20 43 45 41 53 45 20 4e 6f 74 69 66 69 63 61 74 69 6f 6e 20 66 | .Hard.Reset.CEASE.Notification.f |
| e55c0 | 6f 72 20 22 41 64 6d 69 6e 69 73 74 72 61 74 69 76 65 20 52 65 73 65 74 22 20 65 76 65 6e 74 73 | or."Administrative.Reset".events |
| e55e0 | 2e 20 57 68 65 6e 20 73 65 74 20 61 6e 64 20 47 72 61 63 65 66 75 6c 20 52 65 73 74 61 72 74 20 | ..When.set.and.Graceful.Restart. |
| e5600 | 4e 6f 74 69 66 69 63 61 74 69 6f 6e 20 63 61 70 61 62 69 6c 69 74 79 20 69 73 20 65 78 63 68 61 | Notification.capability.is.excha |
| e5620 | 6e 67 65 64 20 62 65 74 77 65 65 6e 20 74 68 65 20 70 65 65 72 73 2c 20 47 72 61 63 65 66 75 6c | nged.between.the.peers,.Graceful |
| e5640 | 20 52 65 73 74 61 72 74 20 70 72 6f 63 65 64 75 72 65 73 20 61 70 70 6c 79 2c 20 61 6e 64 20 72 | .Restart.procedures.apply,.and.r |
| e5660 | 6f 75 74 65 73 20 77 69 6c 6c 20 62 65 20 72 65 74 61 69 6e 65 64 2e 00 44 6f 20 6e 6f 74 20 75 | outes.will.be.retained..Do.not.u |
| e5680 | 73 65 20 74 68 65 20 6c 6f 63 61 6c 20 60 60 2f 65 74 63 2f 68 6f 73 74 73 60 60 20 66 69 6c 65 | se.the.local.``/etc/hosts``.file |
| e56a0 | 20 69 6e 20 6e 61 6d 65 20 72 65 73 6f 6c 75 74 69 6f 6e 2e 20 56 79 4f 53 20 44 48 43 50 20 73 | .in.name.resolution..VyOS.DHCP.s |
| e56c0 | 65 72 76 65 72 20 77 69 6c 6c 20 75 73 65 20 74 68 69 73 20 66 69 6c 65 20 74 6f 20 61 64 64 20 | erver.will.use.this.file.to.add. |
| e56e0 | 72 65 73 6f 6c 76 65 72 73 20 74 6f 20 61 73 73 69 67 6e 65 64 20 61 64 64 72 65 73 73 65 73 2e | resolvers.to.assigned.addresses. |
| e5700 | 00 44 6f 65 73 20 6e 6f 74 20 6e 65 65 64 20 74 6f 20 62 65 20 75 73 65 64 20 74 6f 67 65 74 68 | .Does.not.need.to.be.used.togeth |
| e5720 | 65 72 20 77 69 74 68 20 70 72 6f 78 79 5f 61 72 70 2e 00 44 6f 6d 61 69 6e 00 44 6f 6d 61 69 6e | er.with.proxy_arp..Domain.Domain |
| e5740 | 20 47 72 6f 75 70 73 00 44 6f 6d 61 69 6e 20 4e 61 6d 65 00 44 6f 6d 61 69 6e 20 6e 61 6d 65 28 | .Groups.Domain.Name.Domain.name( |
| e5760 | 73 29 20 66 6f 72 20 77 68 69 63 68 20 74 6f 20 6f 62 74 61 69 6e 20 63 65 72 74 69 66 69 63 61 | s).for.which.to.obtain.certifica |
| e5780 | 74 65 00 44 6f 6d 61 69 6e 20 6e 61 6d 65 73 20 63 61 6e 20 69 6e 63 6c 75 64 65 20 6c 65 74 74 | te.Domain.names.can.include.lett |
| e57a0 | 65 72 73 2c 20 6e 75 6d 62 65 72 73 2c 20 68 79 70 68 65 6e 73 20 61 6e 64 20 70 65 72 69 6f 64 | ers,.numbers,.hyphens.and.period |
| e57c0 | 73 20 77 69 74 68 20 61 20 6d 61 78 69 6d 75 6d 20 6c 65 6e 67 74 68 20 6f 66 20 32 35 33 20 63 | s.with.a.maximum.length.of.253.c |
| e57e0 | 68 61 72 61 63 74 65 72 73 2e 00 44 6f 6d 61 69 6e 20 6e 61 6d 65 73 20 74 6f 20 61 70 70 6c 79 | haracters..Domain.names.to.apply |
| e5800 | 2c 20 6d 75 6c 74 69 70 6c 65 20 64 6f 6d 61 69 6e 2d 6e 61 6d 65 73 20 63 61 6e 20 62 65 20 73 | ,.multiple.domain-names.can.be.s |
| e5820 | 70 65 63 69 66 69 65 64 2e 00 44 6f 6d 61 69 6e 20 73 65 61 72 63 68 20 6f 72 64 65 72 00 44 6f | pecified..Domain.search.order.Do |
| e5840 | 6e 27 74 20 62 65 20 61 66 72 61 69 64 20 74 68 61 74 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 72 | n't.be.afraid.that.you.need.to.r |
| e5860 | 65 2d 64 6f 20 79 6f 75 72 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 20 4b 65 79 20 74 72 61 | e-do.your.configuration..Key.tra |
| e5880 | 6e 73 66 6f 72 6d 61 74 69 6f 6e 20 69 73 20 68 61 6e 64 6c 65 64 2c 20 61 73 20 61 6c 77 61 79 | nsformation.is.handled,.as.alway |
| e58a0 | 73 2c 20 62 79 20 6f 75 72 20 6d 69 67 72 61 74 69 6f 6e 20 73 63 72 69 70 74 73 2c 20 73 6f 20 | s,.by.our.migration.scripts,.so. |
| e58c0 | 74 68 69 73 20 77 69 6c 6c 20 62 65 20 61 20 73 6d 6f 6f 74 68 20 74 72 61 6e 73 69 74 69 6f 6e | this.will.be.a.smooth.transition |
| e58e0 | 20 66 6f 72 20 79 6f 75 21 00 44 6f 6e 27 74 20 66 6f 72 67 65 74 2c 20 74 68 65 20 43 49 44 52 | .for.you!.Don't.forget,.the.CIDR |
| e5900 | 20 64 65 63 6c 61 72 65 64 20 69 6e 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 73 74 61 74 65 6d 65 | .declared.in.the.network.stateme |
| e5920 | 6e 74 20 2a 2a 4d 55 53 54 20 65 78 69 73 74 20 69 6e 20 79 6f 75 72 20 72 6f 75 74 69 6e 67 20 | nt.**MUST.exist.in.your.routing. |
| e5940 | 74 61 62 6c 65 20 28 64 79 6e 61 6d 69 63 20 6f 72 20 73 74 61 74 69 63 29 2c 20 74 68 65 20 62 | table.(dynamic.or.static),.the.b |
| e5960 | 65 73 74 20 77 61 79 20 74 6f 20 6d 61 6b 65 20 73 75 72 65 20 74 68 61 74 20 69 73 20 74 72 75 | est.way.to.make.sure.that.is.tru |
| e5980 | 65 20 69 73 20 63 72 65 61 74 69 6e 67 20 61 20 73 74 61 74 69 63 20 72 6f 75 74 65 3a 2a 2a 00 | e.is.creating.a.static.route:**. |
| e59a0 | 44 6f 6e 27 74 20 66 6f 72 67 65 74 2c 20 74 68 65 20 43 49 44 52 20 64 65 63 6c 61 72 65 64 20 | Don't.forget,.the.CIDR.declared. |
| e59c0 | 69 6e 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 73 74 61 74 65 6d 65 6e 74 20 4d 55 53 54 20 2a 2a | in.the.network.statement.MUST.** |
| e59e0 | 65 78 69 73 74 20 69 6e 20 79 6f 75 72 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 28 64 79 6e | exist.in.your.routing.table.(dyn |
| e5a00 | 61 6d 69 63 20 6f 72 20 73 74 61 74 69 63 29 2c 20 74 68 65 20 62 65 73 74 20 77 61 79 20 74 6f | amic.or.static),.the.best.way.to |
| e5a20 | 20 6d 61 6b 65 20 73 75 72 65 20 74 68 61 74 20 69 73 20 74 72 75 65 20 69 73 20 63 72 65 61 74 | .make.sure.that.is.true.is.creat |
| e5a40 | 69 6e 67 20 61 20 73 74 61 74 69 63 20 72 6f 75 74 65 3a 2a 2a 00 44 6f 6e 27 74 20 67 65 74 20 | ing.a.static.route:**.Don't.get. |
| e5a60 | 63 6f 6e 66 75 73 65 64 20 61 62 6f 75 74 20 74 68 65 20 75 73 65 64 20 2f 33 31 20 74 75 6e 6e | confused.about.the.used./31.tunn |
| e5a80 | 65 6c 20 73 75 62 6e 65 74 2e 20 3a 72 66 63 3a 60 33 30 32 31 60 20 67 69 76 65 73 20 79 6f 75 | el.subnet..:rfc:`3021`.gives.you |
| e5aa0 | 20 61 64 64 69 74 69 6f 6e 61 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 6f 72 20 75 73 69 6e | .additional.information.for.usin |
| e5ac0 | 67 20 2f 33 31 20 73 75 62 6e 65 74 73 20 6f 6e 20 70 6f 69 6e 74 2d 74 6f 2d 70 6f 69 6e 74 20 | g./31.subnets.on.point-to-point. |
| e5ae0 | 6c 69 6e 6b 73 2e 00 44 6f 77 6e 6c 6f 61 64 20 62 61 6e 64 77 69 64 74 68 20 6c 69 6d 69 74 20 | links..Download.bandwidth.limit. |
| e5b00 | 69 6e 20 6b 62 69 74 2f 73 20 66 6f 72 20 60 3c 75 73 65 72 3e 60 2e 00 44 6f 77 6e 6c 6f 61 64 | in.kbit/s.for.`<user>`..Download |
| e5b20 | 20 62 61 6e 64 77 69 64 74 68 20 6c 69 6d 69 74 20 69 6e 20 6b 62 69 74 2f 73 20 66 6f 72 20 75 | .bandwidth.limit.in.kbit/s.for.u |
| e5b40 | 73 65 72 20 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 2e 00 | ser.on.interface.`<interface>`.. |
| e5b60 | 44 6f 77 6e 6c 6f 61 64 2f 55 70 64 61 74 65 20 63 6f 6d 70 6c 65 74 65 20 62 6c 61 63 6b 6c 69 | Download/Update.complete.blackli |
| e5b80 | 73 74 00 44 6f 77 6e 6c 6f 61 64 2f 55 70 64 61 74 65 20 70 61 72 74 69 61 6c 20 62 6c 61 63 6b | st.Download/Update.partial.black |
| e5ba0 | 6c 69 73 74 2e 00 44 72 6f 70 20 41 53 2d 4e 55 4d 42 45 52 20 66 72 6f 6d 20 74 68 65 20 42 47 | list..Drop.AS-NUMBER.from.the.BG |
| e5bc0 | 50 20 41 53 20 70 61 74 68 2e 00 44 72 6f 70 20 54 61 69 6c 00 44 72 6f 70 20 72 61 74 65 00 44 | P.AS.path..Drop.Tail.Drop.rate.D |
| e5be0 | 72 6f 70 70 65 64 20 70 61 63 6b 65 74 73 20 72 65 70 6f 72 74 65 64 20 6f 6e 20 44 52 4f 50 4d | ropped.packets.reported.on.DROPM |
| e5c00 | 4f 4e 20 4e 65 74 6c 69 6e 6b 20 63 68 61 6e 6e 65 6c 20 62 79 20 4c 69 6e 75 78 20 6b 65 72 6e | ON.Netlink.channel.by.Linux.kern |
| e5c20 | 65 6c 20 61 72 65 20 65 78 70 6f 72 74 65 64 20 76 69 61 20 74 68 65 20 73 74 61 6e 64 61 72 64 | el.are.exported.via.the.standard |
| e5c40 | 20 73 46 6c 6f 77 20 76 35 20 65 78 74 65 6e 73 69 6f 6e 20 66 6f 72 20 72 65 70 6f 72 74 69 6e | .sFlow.v5.extension.for.reportin |
| e5c60 | 67 20 64 72 6f 70 70 65 64 20 70 61 63 6b 65 74 73 00 44 75 61 6c 2d 53 74 61 63 6b 20 49 50 76 | g.dropped.packets.Dual-Stack.IPv |
| e5c80 | 34 2f 49 50 76 36 20 70 72 6f 76 69 73 69 6f 6e 69 6e 67 20 77 69 74 68 20 50 72 65 66 69 78 20 | 4/IPv6.provisioning.with.Prefix. |
| e5ca0 | 44 65 6c 65 67 61 74 69 6f 6e 00 44 75 65 20 74 6f 20 61 20 72 61 63 65 20 63 6f 6e 64 69 74 69 | Delegation.Due.to.a.race.conditi |
| e5cc0 | 6f 6e 20 74 68 61 74 20 63 61 6e 20 6c 65 61 64 20 74 6f 20 61 20 66 61 69 6c 75 72 65 20 64 75 | on.that.can.lead.to.a.failure.du |
| e5ce0 | 72 69 6e 67 20 62 6f 6f 74 20 70 72 6f 63 65 73 73 2c 20 61 6c 6c 20 69 6e 74 65 72 66 61 63 65 | ring.boot.process,.all.interface |
| e5d00 | 73 20 61 72 65 20 69 6e 69 74 69 61 6c 69 7a 65 64 20 62 65 66 6f 72 65 20 66 69 72 65 77 61 6c | s.are.initialized.before.firewal |
| e5d20 | 6c 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 2e 20 54 68 69 73 20 6c 65 61 64 73 20 74 6f 20 61 | l.is.configured..This.leads.to.a |
| e5d40 | 20 73 69 74 75 61 74 69 6f 6e 20 77 68 65 72 65 20 74 68 65 20 73 79 73 74 65 6d 20 69 73 20 6f | .situation.where.the.system.is.o |
| e5d60 | 70 65 6e 20 74 6f 20 61 6c 6c 20 74 72 61 66 66 69 63 2c 20 61 6e 64 20 63 61 6e 20 62 65 20 63 | pen.to.all.traffic,.and.can.be.c |
| e5d80 | 6f 6e 73 69 64 65 72 65 64 20 61 73 20 61 20 73 65 63 75 72 69 74 79 20 72 69 73 6b 2e 00 44 75 | onsidered.as.a.security.risk..Du |
| e5da0 | 6d 6d 79 00 44 75 6d 6d 79 20 69 6e 74 65 72 66 61 63 65 00 44 75 6d 6d 79 20 69 6e 74 65 72 66 | mmy.Dummy.interface.Dummy.interf |
| e5dc0 | 61 63 65 73 20 63 61 6e 20 62 65 20 75 73 65 64 20 61 73 20 69 6e 74 65 72 66 61 63 65 73 20 74 | aces.can.be.used.as.interfaces.t |
| e5de0 | 68 61 74 20 61 6c 77 61 79 73 20 73 74 61 79 20 75 70 20 28 69 6e 20 74 68 65 20 73 61 6d 65 20 | hat.always.stay.up.(in.the.same. |
| e5e00 | 66 61 73 68 69 6f 6e 20 74 6f 20 6c 6f 6f 70 62 61 63 6b 73 20 69 6e 20 43 69 73 63 6f 20 49 4f | fashion.to.loopbacks.in.Cisco.IO |
| e5e20 | 53 29 2c 20 6f 72 20 66 6f 72 20 74 65 73 74 69 6e 67 20 70 75 72 70 6f 73 65 73 2e 00 44 75 70 | S),.or.for.testing.purposes..Dup |
| e5e40 | 6c 69 63 61 74 65 20 70 61 63 6b 65 74 73 20 61 72 65 20 6e 6f 74 20 69 6e 63 6c 75 64 65 64 20 | licate.packets.are.not.included. |
| e5e60 | 69 6e 20 74 68 65 20 70 61 63 6b 65 74 20 6c 6f 73 73 20 63 61 6c 63 75 6c 61 74 69 6f 6e 2c 20 | in.the.packet.loss.calculation,. |
| e5e80 | 61 6c 74 68 6f 75 67 68 20 74 68 65 20 72 6f 75 6e 64 2d 74 72 69 70 20 74 69 6d 65 20 6f 66 20 | although.the.round-trip.time.of. |
| e5ea0 | 74 68 65 73 65 20 70 61 63 6b 65 74 73 20 69 73 20 75 73 65 64 20 69 6e 20 63 61 6c 63 75 6c 61 | these.packets.is.used.in.calcula |
| e5ec0 | 74 69 6e 67 20 74 68 65 20 6d 69 6e 69 6d 75 6d 2f 20 61 76 65 72 61 67 65 2f 6d 61 78 69 6d 75 | ting.the.minimum/.average/maximu |
| e5ee0 | 6d 20 72 6f 75 6e 64 2d 74 72 69 70 20 74 69 6d 65 20 6e 75 6d 62 65 72 73 2e 00 44 75 72 69 6e | m.round-trip.time.numbers..Durin |
| e5f00 | 67 20 69 6e 69 74 69 61 6c 20 64 65 70 6c 6f 79 6d 65 6e 74 20 77 65 20 72 65 63 6f 6d 6d 65 6e | g.initial.deployment.we.recommen |
| e5f20 | 64 20 75 73 69 6e 67 20 74 68 65 20 73 74 61 67 69 6e 67 20 41 50 49 20 6f 66 20 4c 65 74 73 45 | d.using.the.staging.API.of.LetsE |
| e5f40 | 6e 63 72 79 70 74 20 74 6f 20 70 72 65 76 65 6e 74 20 61 6e 64 20 62 6c 61 63 6b 6c 69 73 74 69 | ncrypt.to.prevent.and.blacklisti |
| e5f60 | 6e 67 20 6f 66 20 79 6f 75 72 20 73 79 73 74 65 6d 2e 20 54 68 65 20 41 50 49 20 65 6e 64 70 6f | ng.of.your.system..The.API.endpo |
| e5f80 | 69 6e 74 20 69 73 20 68 74 74 70 73 3a 2f 2f 61 63 6d 65 2d 73 74 61 67 69 6e 67 2d 76 30 32 2e | int.is.https://acme-staging-v02. |
| e5fa0 | 61 70 69 2e 6c 65 74 73 65 6e 63 72 79 70 74 2e 6f 72 67 2f 64 69 72 65 63 74 6f 72 79 00 44 75 | api.letsencrypt.org/directory.Du |
| e5fc0 | 72 69 6e 67 20 70 72 6f 66 69 6c 65 20 69 6d 70 6f 72 74 2c 20 74 68 65 20 75 73 65 72 20 69 73 | ring.profile.import,.the.user.is |
| e5fe0 | 20 61 73 6b 65 64 20 74 6f 20 65 6e 74 65 72 20 69 74 73 20 49 50 53 65 63 20 63 72 65 64 65 6e | .asked.to.enter.its.IPSec.creden |
| e6000 | 74 69 61 6c 73 20 28 75 73 65 72 6e 61 6d 65 20 61 6e 64 20 70 61 73 73 77 6f 72 64 29 20 77 68 | tials.(username.and.password).wh |
| e6020 | 69 63 68 20 69 73 20 73 74 6f 72 65 64 20 6f 6e 20 74 68 65 20 6d 6f 62 69 6c 65 2e 00 44 79 6e | ich.is.stored.on.the.mobile..Dyn |
| e6040 | 61 6d 69 63 20 44 4e 53 00 44 79 6e 61 6d 69 63 20 47 72 6f 75 70 73 00 44 79 6e 61 6d 69 63 20 | amic.DNS.Dynamic.Groups.Dynamic. |
| e6060 | 61 64 64 72 65 73 73 20 67 72 6f 75 70 20 69 73 20 73 75 70 70 6f 72 74 65 64 20 62 79 20 62 6f | address.group.is.supported.by.bo |
| e6080 | 74 68 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 66 61 6d 69 6c 69 65 73 2e 20 43 6f 6d 6d 61 | th.IPv4.and.IPv6.families..Comma |
| e60a0 | 6e 64 73 20 75 73 65 64 20 74 6f 20 64 65 66 69 6e 65 20 64 79 6e 61 6d 69 63 20 49 50 76 34 7c | nds.used.to.define.dynamic.IPv4| |
| e60c0 | 49 50 76 36 20 61 64 64 72 65 73 73 20 67 72 6f 75 70 73 20 61 72 65 3a 00 44 79 6e 61 6d 69 63 | IPv6.address.groups.are:.Dynamic |
| e60e0 | 2d 70 72 6f 74 65 63 74 69 6f 6e 00 45 41 50 6f 4c 20 63 6f 6d 65 73 20 77 69 74 68 20 61 6e 20 | -protection.EAPoL.comes.with.an. |
| e6100 | 69 64 65 6e 74 69 66 79 20 6f 70 74 69 6f 6e 2e 20 57 65 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c | identify.option..We.automaticall |
| e6120 | 79 20 75 73 65 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 4d 41 43 20 61 64 64 72 65 73 73 20 | y.use.the.interface.MAC.address. |
| e6140 | 61 73 20 69 64 65 6e 74 69 74 79 20 70 61 72 61 6d 65 74 65 72 2e 00 45 53 50 20 28 45 6e 63 61 | as.identity.parameter..ESP.(Enca |
| e6160 | 70 73 75 6c 61 74 69 6e 67 20 53 65 63 75 72 69 74 79 20 50 61 79 6c 6f 61 64 29 20 41 74 74 72 | psulating.Security.Payload).Attr |
| e6180 | 69 62 75 74 65 73 00 45 53 50 20 50 68 61 73 65 3a 00 45 53 50 20 69 73 20 75 73 65 64 20 74 6f | ibutes.ESP.Phase:.ESP.is.used.to |
| e61a0 | 20 70 72 6f 76 69 64 65 20 63 6f 6e 66 69 64 65 6e 74 69 61 6c 69 74 79 2c 20 64 61 74 61 20 6f | .provide.confidentiality,.data.o |
| e61c0 | 72 69 67 69 6e 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2c 20 63 6f 6e 6e 65 63 74 69 6f 6e | rigin.authentication,.connection |
| e61e0 | 6c 65 73 73 20 69 6e 74 65 67 72 69 74 79 2c 20 61 6e 20 61 6e 74 69 2d 72 65 70 6c 61 79 20 73 | less.integrity,.an.anti-replay.s |
| e6200 | 65 72 76 69 63 65 20 28 61 20 66 6f 72 6d 20 6f 66 20 70 61 72 74 69 61 6c 20 73 65 71 75 65 6e | ervice.(a.form.of.partial.sequen |
| e6220 | 63 65 20 69 6e 74 65 67 72 69 74 79 29 2c 20 61 6e 64 20 6c 69 6d 69 74 65 64 20 74 72 61 66 66 | ce.integrity),.and.limited.traff |
| e6240 | 69 63 20 66 6c 6f 77 20 63 6f 6e 66 69 64 65 6e 74 69 61 6c 69 74 79 2e 20 68 74 74 70 73 3a 2f | ic.flow.confidentiality..https:/ |
| e6260 | 2f 64 61 74 61 74 72 61 63 6b 65 72 2e 69 65 74 66 2e 6f 72 67 2f 64 6f 63 2f 68 74 6d 6c 2f 72 | /datatracker.ietf.org/doc/html/r |
| e6280 | 66 63 34 33 30 33 00 45 56 50 4e 20 4d 75 6c 74 69 68 6f 6d 69 6e 67 00 45 56 50 4e 2d 4d 48 20 | fc4303.EVPN.Multihoming.EVPN-MH. |
| e62a0 | 69 73 20 69 6e 74 65 6e 64 65 64 20 61 73 20 61 20 72 65 70 6c 61 63 65 6d 65 6e 74 20 66 6f 72 | is.intended.as.a.replacement.for |
| e62c0 | 20 4d 4c 41 47 20 6f 72 20 41 6e 79 63 61 73 74 20 56 54 45 50 73 2e 20 49 6e 20 6d 75 6c 74 69 | .MLAG.or.Anycast.VTEPs..In.multi |
| e62e0 | 68 6f 6d 69 6e 67 20 65 61 63 68 20 50 45 20 68 61 73 20 61 6e 20 75 6e 69 71 75 65 20 56 54 45 | homing.each.PE.has.an.unique.VTE |
| e6300 | 50 20 61 64 64 72 65 73 73 20 77 68 69 63 68 20 72 65 71 75 69 72 65 73 20 74 68 65 20 69 6e 74 | P.address.which.requires.the.int |
| e6320 | 72 6f 64 75 63 74 69 6f 6e 20 6f 66 20 61 20 6e 65 77 20 64 61 74 61 70 6c 61 6e 65 20 63 6f 6e | roduction.of.a.new.dataplane.con |
| e6340 | 73 74 72 75 63 74 2c 20 4d 41 43 2d 45 43 4d 50 2e 20 48 65 72 65 20 61 20 4d 41 43 2f 46 44 42 | struct,.MAC-ECMP..Here.a.MAC/FDB |
| e6360 | 20 65 6e 74 72 79 20 63 61 6e 20 70 6f 69 6e 74 20 74 6f 20 61 20 6c 69 73 74 20 6f 66 20 72 65 | .entry.can.point.to.a.list.of.re |
| e6380 | 6d 6f 74 65 20 50 45 73 2f 56 54 45 50 73 2e 00 45 61 63 68 20 3a 61 62 62 72 3a 60 41 53 20 28 | mote.PEs/VTEPs..Each.:abbr:`AS.( |
| e63a0 | 41 75 74 6f 6e 6f 6d 6f 75 73 20 53 79 73 74 65 6d 29 60 20 68 61 73 20 61 6e 20 69 64 65 6e 74 | Autonomous.System)`.has.an.ident |
| e63c0 | 69 66 79 69 6e 67 20 6e 75 6d 62 65 72 20 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 69 74 | ifying.number.associated.with.it |
| e63e0 | 20 63 61 6c 6c 65 64 20 61 6e 20 3a 61 62 62 72 3a 60 41 53 4e 20 28 41 75 74 6f 6e 6f 6d 6f 75 | .called.an.:abbr:`ASN.(Autonomou |
| e6400 | 73 20 53 79 73 74 65 6d 20 4e 75 6d 62 65 72 29 60 2e 20 54 68 69 73 20 69 73 20 61 20 74 77 6f | s.System.Number)`..This.is.a.two |
| e6420 | 20 6f 63 74 65 74 20 76 61 6c 75 65 20 72 61 6e 67 69 6e 67 20 69 6e 20 76 61 6c 75 65 20 66 72 | .octet.value.ranging.in.value.fr |
| e6440 | 6f 6d 20 31 20 74 6f 20 36 35 35 33 35 2e 20 54 68 65 20 41 53 20 6e 75 6d 62 65 72 73 20 36 34 | om.1.to.65535..The.AS.numbers.64 |
| e6460 | 35 31 32 20 74 68 72 6f 75 67 68 20 36 35 35 33 35 20 61 72 65 20 64 65 66 69 6e 65 64 20 61 73 | 512.through.65535.are.defined.as |
| e6480 | 20 70 72 69 76 61 74 65 20 41 53 20 6e 75 6d 62 65 72 73 2e 20 50 72 69 76 61 74 65 20 41 53 20 | .private.AS.numbers..Private.AS. |
| e64a0 | 6e 75 6d 62 65 72 73 20 6d 75 73 74 20 6e 6f 74 20 62 65 20 61 64 76 65 72 74 69 73 65 64 20 6f | numbers.must.not.be.advertised.o |
| e64c0 | 6e 20 74 68 65 20 67 6c 6f 62 61 6c 20 49 6e 74 65 72 6e 65 74 2e 20 54 68 65 20 32 2d 62 79 74 | n.the.global.Internet..The.2-byt |
| e64e0 | 65 20 41 53 20 6e 75 6d 62 65 72 20 72 61 6e 67 65 20 68 61 73 20 62 65 65 6e 20 65 78 68 61 75 | e.AS.number.range.has.been.exhau |
| e6500 | 73 74 65 64 2e 20 34 2d 62 79 74 65 20 41 53 20 6e 75 6d 62 65 72 73 20 61 72 65 20 73 70 65 63 | sted..4-byte.AS.numbers.are.spec |
| e6520 | 69 66 69 65 64 20 69 6e 20 3a 72 66 63 3a 60 36 37 39 33 60 2c 20 61 6e 64 20 70 72 6f 76 69 64 | ified.in.:rfc:`6793`,.and.provid |
| e6540 | 65 20 61 20 70 6f 6f 6c 20 6f 66 20 34 32 39 34 39 36 37 32 39 36 20 41 53 20 6e 75 6d 62 65 72 | e.a.pool.of.4294967296.AS.number |
| e6560 | 73 2e 00 45 61 63 68 20 4e 65 74 66 69 6c 74 65 72 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 69 73 20 | s..Each.Netfilter.connection.is. |
| e6580 | 75 6e 69 71 75 65 6c 79 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 61 20 28 6c 61 79 65 72 2d | uniquely.identified.by.a.(layer- |
| e65a0 | 33 20 70 72 6f 74 6f 63 6f 6c 2c 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 2c 20 64 65 73 74 | 3.protocol,.source.address,.dest |
| e65c0 | 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 2c 20 6c 61 79 65 72 2d 34 20 70 72 6f 74 6f 63 6f | ination.address,.layer-4.protoco |
| e65e0 | 6c 2c 20 6c 61 79 65 72 2d 34 20 6b 65 79 29 20 74 75 70 6c 65 2e 20 54 68 65 20 6c 61 79 65 72 | l,.layer-4.key).tuple..The.layer |
| e6600 | 2d 34 20 6b 65 79 20 64 65 70 65 6e 64 73 20 6f 6e 20 74 68 65 20 74 72 61 6e 73 70 6f 72 74 20 | -4.key.depends.on.the.transport. |
| e6620 | 70 72 6f 74 6f 63 6f 6c 3b 20 66 6f 72 20 54 43 50 2f 55 44 50 20 69 74 20 69 73 20 74 68 65 20 | protocol;.for.TCP/UDP.it.is.the. |
| e6640 | 70 6f 72 74 20 6e 75 6d 62 65 72 73 2c 20 66 6f 72 20 74 75 6e 6e 65 6c 73 20 69 74 20 63 61 6e | port.numbers,.for.tunnels.it.can |
| e6660 | 20 62 65 20 74 68 65 69 72 20 74 75 6e 6e 65 6c 20 49 44 2c 20 62 75 74 20 6f 74 68 65 72 77 69 | .be.their.tunnel.ID,.but.otherwi |
| e6680 | 73 65 20 69 73 20 6a 75 73 74 20 7a 65 72 6f 2c 20 61 73 20 69 66 20 69 74 20 77 65 72 65 20 6e | se.is.just.zero,.as.if.it.were.n |
| e66a0 | 6f 74 20 70 61 72 74 20 6f 66 20 74 68 65 20 74 75 70 6c 65 2e 20 54 6f 20 62 65 20 61 62 6c 65 | ot.part.of.the.tuple..To.be.able |
| e66c0 | 20 74 6f 20 69 6e 73 70 65 63 74 20 74 68 65 20 54 43 50 20 70 6f 72 74 20 69 6e 20 61 6c 6c 20 | .to.inspect.the.TCP.port.in.all. |
| e66e0 | 63 61 73 65 73 2c 20 70 61 63 6b 65 74 73 20 77 69 6c 6c 20 62 65 20 6d 61 6e 64 61 74 6f 72 69 | cases,.packets.will.be.mandatori |
| e6700 | 6c 79 20 64 65 66 72 61 67 6d 65 6e 74 65 64 2e 00 45 61 63 68 20 56 58 4c 41 4e 20 73 65 67 6d | ly.defragmented..Each.VXLAN.segm |
| e6720 | 65 6e 74 20 69 73 20 69 64 65 6e 74 69 66 69 65 64 20 74 68 72 6f 75 67 68 20 61 20 32 34 2d 62 | ent.is.identified.through.a.24-b |
| e6740 | 69 74 20 73 65 67 6d 65 6e 74 20 49 44 2c 20 74 65 72 6d 65 64 20 74 68 65 20 3a 61 62 62 72 3a | it.segment.ID,.termed.the.:abbr: |
| e6760 | 60 56 4e 49 20 28 56 58 4c 41 4e 20 4e 65 74 77 6f 72 6b 20 49 64 65 6e 74 69 66 69 65 72 20 28 | `VNI.(VXLAN.Network.Identifier.( |
| e6780 | 6f 72 20 56 58 4c 41 4e 20 53 65 67 6d 65 6e 74 20 49 44 29 29 60 2c 20 54 68 69 73 20 61 6c 6c | or.VXLAN.Segment.ID))`,.This.all |
| e67a0 | 6f 77 73 20 75 70 20 74 6f 20 31 36 4d 20 56 58 4c 41 4e 20 73 65 67 6d 65 6e 74 73 20 74 6f 20 | ows.up.to.16M.VXLAN.segments.to. |
| e67c0 | 63 6f 65 78 69 73 74 20 77 69 74 68 69 6e 20 74 68 65 20 73 61 6d 65 20 61 64 6d 69 6e 69 73 74 | coexist.within.the.same.administ |
| e67e0 | 72 61 74 69 76 65 20 64 6f 6d 61 69 6e 2e 00 45 61 63 68 20 62 72 69 64 67 65 20 68 61 73 20 61 | rative.domain..Each.bridge.has.a |
| e6800 | 20 72 65 6c 61 74 69 76 65 20 70 72 69 6f 72 69 74 79 20 61 6e 64 20 63 6f 73 74 2e 20 45 61 63 | .relative.priority.and.cost..Eac |
| e6820 | 68 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 61 | h.interface.is.associated.with.a |
| e6840 | 20 70 6f 72 74 20 28 6e 75 6d 62 65 72 29 20 69 6e 20 74 68 65 20 53 54 50 20 63 6f 64 65 2e 20 | .port.(number).in.the.STP.code.. |
| e6860 | 45 61 63 68 20 68 61 73 20 61 20 70 72 69 6f 72 69 74 79 20 61 6e 64 20 61 20 63 6f 73 74 2c 20 | Each.has.a.priority.and.a.cost,. |
| e6880 | 74 68 61 74 20 69 73 20 75 73 65 64 20 74 6f 20 64 65 63 69 64 65 20 77 68 69 63 68 20 69 73 20 | that.is.used.to.decide.which.is. |
| e68a0 | 74 68 65 20 73 68 6f 72 74 65 73 74 20 70 61 74 68 20 74 6f 20 66 6f 72 77 61 72 64 20 61 20 70 | the.shortest.path.to.forward.a.p |
| e68c0 | 61 63 6b 65 74 2e 20 54 68 65 20 6c 6f 77 65 73 74 20 63 6f 73 74 20 70 61 74 68 20 69 73 20 61 | acket..The.lowest.cost.path.is.a |
| e68e0 | 6c 77 61 79 73 20 75 73 65 64 20 75 6e 6c 65 73 73 20 74 68 65 20 6f 74 68 65 72 20 70 61 74 68 | lways.used.unless.the.other.path |
| e6900 | 20 69 73 20 64 6f 77 6e 2e 20 49 66 20 79 6f 75 20 68 61 76 65 20 6d 75 6c 74 69 70 6c 65 20 62 | .is.down..If.you.have.multiple.b |
| e6920 | 72 69 64 67 65 73 20 61 6e 64 20 69 6e 74 65 72 66 61 63 65 73 20 74 68 65 6e 20 79 6f 75 20 6d | ridges.and.interfaces.then.you.m |
| e6940 | 61 79 20 6e 65 65 64 20 74 6f 20 61 64 6a 75 73 74 20 74 68 65 20 70 72 69 6f 72 69 74 69 65 73 | ay.need.to.adjust.the.priorities |
| e6960 | 20 74 6f 20 61 63 68 69 65 76 65 20 6f 70 74 69 6d 75 6d 20 70 65 72 66 6f 72 6d 61 6e 63 65 2e | .to.achieve.optimum.performance. |
| e6980 | 00 45 61 63 68 20 62 72 6f 61 64 63 61 73 74 20 72 65 6c 61 79 20 69 6e 73 74 61 6e 63 65 20 63 | .Each.broadcast.relay.instance.c |
| e69a0 | 61 6e 20 62 65 20 69 6e 64 69 76 69 64 75 61 6c 6c 79 20 64 69 73 61 62 6c 65 64 20 77 69 74 68 | an.be.individually.disabled.with |
| e69c0 | 6f 75 74 20 64 65 6c 65 74 69 6e 67 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 6e 6f 64 65 | out.deleting.the.configured.node |
| e69e0 | 20 62 79 20 75 73 69 6e 67 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 3a | .by.using.the.following.command: |
| e6a00 | 00 45 61 63 68 20 63 6c 61 73 73 20 63 61 6e 20 68 61 76 65 20 61 20 67 75 61 72 61 6e 74 65 65 | .Each.class.can.have.a.guarantee |
| e6a20 | 64 20 70 61 72 74 20 6f 66 20 74 68 65 20 74 6f 74 61 6c 20 62 61 6e 64 77 69 64 74 68 20 64 65 | d.part.of.the.total.bandwidth.de |
| e6a40 | 66 69 6e 65 64 20 66 6f 72 20 74 68 65 20 77 68 6f 6c 65 20 70 6f 6c 69 63 79 2c 20 73 6f 20 61 | fined.for.the.whole.policy,.so.a |
| e6a60 | 6c 6c 20 74 68 6f 73 65 20 73 68 61 72 65 73 20 74 6f 67 65 74 68 65 72 20 73 68 6f 75 6c 64 20 | ll.those.shares.together.should. |
| e6a80 | 6e 6f 74 20 62 65 20 68 69 67 68 65 72 20 74 68 61 6e 20 74 68 65 20 70 6f 6c 69 63 79 27 73 20 | not.be.higher.than.the.policy's. |
| e6aa0 | 77 68 6f 6c 65 20 62 61 6e 64 77 69 64 74 68 2e 00 45 61 63 68 20 63 6c 61 73 73 20 69 73 20 61 | whole.bandwidth..Each.class.is.a |
| e6ac0 | 73 73 69 67 6e 65 64 20 61 20 64 65 66 69 63 69 74 20 63 6f 75 6e 74 65 72 20 28 74 68 65 20 6e | ssigned.a.deficit.counter.(the.n |
| e6ae0 | 75 6d 62 65 72 20 6f 66 20 62 79 74 65 73 20 74 68 61 74 20 61 20 66 6c 6f 77 20 69 73 20 61 6c | umber.of.bytes.that.a.flow.is.al |
| e6b00 | 6c 6f 77 65 64 20 74 6f 20 74 72 61 6e 73 6d 69 74 20 77 68 65 6e 20 69 74 20 69 73 20 69 74 73 | lowed.to.transmit.when.it.is.its |
| e6b20 | 20 74 75 72 6e 29 20 69 6e 69 74 69 61 6c 69 7a 65 64 20 74 6f 20 71 75 61 6e 74 75 6d 2e 20 51 | .turn).initialized.to.quantum..Q |
| e6b40 | 75 61 6e 74 75 6d 20 69 73 20 61 20 70 61 72 61 6d 65 74 65 72 20 79 6f 75 20 63 6f 6e 66 69 67 | uantum.is.a.parameter.you.config |
| e6b60 | 75 72 65 20 77 68 69 63 68 20 61 63 74 73 20 6c 69 6b 65 20 61 20 63 72 65 64 69 74 20 6f 66 20 | ure.which.acts.like.a.credit.of. |
| e6b80 | 66 69 78 20 62 79 74 65 73 20 74 68 65 20 63 6f 75 6e 74 65 72 20 72 65 63 65 69 76 65 73 20 6f | fix.bytes.the.counter.receives.o |
| e6ba0 | 6e 20 65 61 63 68 20 72 6f 75 6e 64 2e 20 54 68 65 6e 20 74 68 65 20 52 6f 75 6e 64 2d 52 6f 62 | n.each.round..Then.the.Round-Rob |
| e6bc0 | 69 6e 20 70 6f 6c 69 63 79 20 73 74 61 72 74 73 20 6d 6f 76 69 6e 67 20 69 74 73 20 52 6f 75 6e | in.policy.starts.moving.its.Roun |
| e6be0 | 64 20 52 6f 62 69 6e 20 70 6f 69 6e 74 65 72 20 74 68 72 6f 75 67 68 20 74 68 65 20 71 75 65 75 | d.Robin.pointer.through.the.queu |
| e6c00 | 65 73 2e 20 49 66 20 74 68 65 20 64 65 66 69 63 69 74 20 63 6f 75 6e 74 65 72 20 69 73 20 67 72 | es..If.the.deficit.counter.is.gr |
| e6c20 | 65 61 74 65 72 20 74 68 61 6e 20 74 68 65 20 70 61 63 6b 65 74 27 73 20 73 69 7a 65 20 61 74 20 | eater.than.the.packet's.size.at. |
| e6c40 | 74 68 65 20 68 65 61 64 20 6f 66 20 74 68 65 20 71 75 65 75 65 2c 20 74 68 69 73 20 70 61 63 6b | the.head.of.the.queue,.this.pack |
| e6c60 | 65 74 20 77 69 6c 6c 20 62 65 20 73 65 6e 74 20 61 6e 64 20 74 68 65 20 76 61 6c 75 65 20 6f 66 | et.will.be.sent.and.the.value.of |
| e6c80 | 20 74 68 65 20 63 6f 75 6e 74 65 72 20 77 69 6c 6c 20 62 65 20 64 65 63 72 65 6d 65 6e 74 65 64 | .the.counter.will.be.decremented |
| e6ca0 | 20 62 79 20 74 68 65 20 70 61 63 6b 65 74 20 73 69 7a 65 2e 20 54 68 65 6e 2c 20 74 68 65 20 73 | .by.the.packet.size..Then,.the.s |
| e6cc0 | 69 7a 65 20 6f 66 20 74 68 65 20 6e 65 78 74 20 70 61 63 6b 65 74 20 77 69 6c 6c 20 62 65 20 63 | ize.of.the.next.packet.will.be.c |
| e6ce0 | 6f 6d 70 61 72 65 64 20 74 6f 20 74 68 65 20 63 6f 75 6e 74 65 72 20 76 61 6c 75 65 20 61 67 61 | ompared.to.the.counter.value.aga |
| e6d00 | 69 6e 2c 20 72 65 70 65 61 74 69 6e 67 20 74 68 65 20 70 72 6f 63 65 73 73 2e 20 4f 6e 63 65 20 | in,.repeating.the.process..Once. |
| e6d20 | 74 68 65 20 71 75 65 75 65 20 69 73 20 65 6d 70 74 79 20 6f 72 20 74 68 65 20 76 61 6c 75 65 20 | the.queue.is.empty.or.the.value. |
| e6d40 | 6f 66 20 74 68 65 20 63 6f 75 6e 74 65 72 20 69 73 20 69 6e 73 75 66 66 69 63 69 65 6e 74 2c 20 | of.the.counter.is.insufficient,. |
| e6d60 | 74 68 65 20 52 6f 75 6e 64 2d 52 6f 62 69 6e 20 70 6f 69 6e 74 65 72 20 77 69 6c 6c 20 6d 6f 76 | the.Round-Robin.pointer.will.mov |
| e6d80 | 65 20 74 6f 20 74 68 65 20 6e 65 78 74 20 71 75 65 75 65 2e 20 49 66 20 74 68 65 20 71 75 65 75 | e.to.the.next.queue..If.the.queu |
| e6da0 | 65 20 69 73 20 65 6d 70 74 79 2c 20 74 68 65 20 76 61 6c 75 65 20 6f 66 20 74 68 65 20 64 65 66 | e.is.empty,.the.value.of.the.def |
| e6dc0 | 69 63 69 74 20 63 6f 75 6e 74 65 72 20 69 73 20 72 65 73 65 74 20 74 6f 20 30 2e 00 45 61 63 68 | icit.counter.is.reset.to.0..Each |
| e6de0 | 20 64 79 6e 61 6d 69 63 20 4e 48 53 20 77 69 6c 6c 20 67 65 74 20 61 20 70 65 65 72 20 65 6e 74 | .dynamic.NHS.will.get.a.peer.ent |
| e6e00 | 72 79 20 77 69 74 68 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 6e 65 74 77 6f 72 6b 20 61 | ry.with.the.configured.network.a |
| e6e20 | 64 64 72 65 73 73 20 61 6e 64 20 74 68 65 20 64 69 73 63 6f 76 65 72 65 64 20 4e 42 4d 41 20 61 | ddress.and.the.discovered.NBMA.a |
| e6e40 | 64 64 72 65 73 73 2e 00 45 61 63 68 20 68 65 61 6c 74 68 20 63 68 65 63 6b 20 69 73 20 63 6f 6e | ddress..Each.health.check.is.con |
| e6e60 | 66 69 67 75 72 65 64 20 69 6e 20 69 74 73 20 6f 77 6e 20 74 65 73 74 2c 20 74 65 73 74 73 20 61 | figured.in.its.own.test,.tests.a |
| e6e80 | 72 65 20 6e 75 6d 62 65 72 65 64 20 61 6e 64 20 70 72 6f 63 65 73 73 65 64 20 69 6e 20 6e 75 6d | re.numbered.and.processed.in.num |
| e6ea0 | 65 72 69 63 20 6f 72 64 65 72 2e 20 46 6f 72 20 6d 75 6c 74 69 20 74 61 72 67 65 74 20 68 65 61 | eric.order..For.multi.target.hea |
| e6ec0 | 6c 74 68 20 63 68 65 63 6b 69 6e 67 20 6d 75 6c 74 69 70 6c 65 20 74 65 73 74 73 20 63 61 6e 20 | lth.checking.multiple.tests.can. |
| e6ee0 | 62 65 20 64 65 66 69 6e 65 64 3a 00 45 61 63 68 20 69 6e 64 69 76 69 64 75 61 6c 20 63 6f 6e 66 | be.defined:.Each.individual.conf |
| e6f00 | 69 67 75 72 65 64 20 63 6f 6e 73 6f 6c 65 2d 73 65 72 76 65 72 20 64 65 76 69 63 65 20 63 61 6e | igured.console-server.device.can |
| e6f20 | 20 62 65 20 64 69 72 65 63 74 6c 79 20 65 78 70 6f 73 65 64 20 74 6f 20 74 68 65 20 6f 75 74 73 | .be.directly.exposed.to.the.outs |
| e6f40 | 69 64 65 20 77 6f 72 6c 64 2e 20 41 20 75 73 65 72 20 63 61 6e 20 64 69 72 65 63 74 6c 79 20 63 | ide.world..A.user.can.directly.c |
| e6f60 | 6f 6e 6e 65 63 74 20 76 69 61 20 53 53 48 20 74 6f 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 64 | onnect.via.SSH.to.the.configured |
| e6f80 | 20 70 6f 72 74 2e 00 45 61 63 68 20 6e 6f 64 65 20 28 48 75 62 20 61 6e 64 20 53 70 6f 6b 65 29 | .port..Each.node.(Hub.and.Spoke) |
| e6fa0 | 20 75 73 65 73 20 61 6e 20 49 50 20 61 64 64 72 65 73 73 20 66 72 6f 6d 20 74 68 65 20 6e 65 74 | .uses.an.IP.address.from.the.net |
| e6fc0 | 77 6f 72 6b 20 31 37 32 2e 31 36 2e 32 35 33 2e 31 32 38 2f 32 39 2e 00 45 61 63 68 20 6f 66 20 | work.172.16.253.128/29..Each.of. |
| e6fe0 | 74 68 65 20 69 6e 73 74 61 6c 6c 20 63 6f 6d 6d 61 6e 64 20 73 68 6f 75 6c 64 20 62 65 20 61 70 | the.install.command.should.be.ap |
| e7000 | 70 6c 69 65 64 20 74 6f 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 61 6e 64 20 63 | plied.to.the.configuration.and.c |
| e7020 | 6f 6d 6d 69 74 65 64 20 62 65 66 6f 72 65 20 75 73 69 6e 67 20 75 6e 64 65 72 20 74 68 65 20 6f | ommited.before.using.under.the.o |
| e7040 | 70 65 6e 63 6f 6e 6e 65 63 74 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 00 45 61 63 68 20 73 | penconnect.configuration:.Each.s |
| e7060 | 69 74 65 2d 74 6f 2d 73 69 74 65 20 70 65 65 72 20 68 61 73 20 74 68 65 20 6e 65 78 74 20 6f 70 | ite-to-site.peer.has.the.next.op |
| e7080 | 74 69 6f 6e 73 3a 00 45 61 63 68 20 73 75 62 73 63 72 69 62 65 72 20 77 69 6c 6c 20 62 65 20 61 | tions:.Each.subscriber.will.be.a |
| e70a0 | 6c 6c 6f 63 61 74 65 64 20 61 20 6d 61 78 69 6d 75 6d 20 6f 66 20 32 30 30 30 20 70 6f 72 74 73 | llocated.a.maximum.of.2000.ports |
| e70c0 | 20 66 72 6f 6d 20 74 68 65 20 65 78 74 65 72 6e 61 6c 20 70 6f 6f 6c 2e 00 45 65 6e 61 62 6c 65 | .from.the.external.pool..Eenable |
| e70e0 | 73 20 74 68 65 20 47 65 6e 65 72 69 63 20 50 72 6f 74 6f 63 6f 6c 20 65 78 74 65 6e 73 69 6f 6e | s.the.Generic.Protocol.extension |
| e7100 | 20 28 56 58 4c 41 4e 2d 47 50 45 29 2e 20 43 75 72 72 65 6e 74 6c 79 2c 20 74 68 69 73 20 69 73 | .(VXLAN-GPE)..Currently,.this.is |
| e7120 | 20 6f 6e 6c 79 20 73 75 70 70 6f 72 74 65 64 20 74 6f 67 65 74 68 65 72 20 77 69 74 68 20 74 68 | .only.supported.together.with.th |
| e7140 | 65 20 65 78 74 65 72 6e 61 6c 20 6b 65 79 77 6f 72 64 2e 00 45 6d 61 69 6c 20 61 64 64 72 65 73 | e.external.keyword..Email.addres |
| e7160 | 73 20 74 6f 20 61 73 73 6f 63 69 61 74 65 20 77 69 74 68 20 63 65 72 74 69 66 69 63 61 74 65 00 | s.to.associate.with.certificate. |
| e7180 | 45 6d 61 69 6c 20 75 73 65 64 20 66 6f 72 20 72 65 67 69 73 74 72 61 74 69 6f 6e 20 61 6e 64 20 | Email.used.for.registration.and. |
| e71a0 | 72 65 63 6f 76 65 72 79 20 63 6f 6e 74 61 63 74 2e 00 45 6d 62 65 64 64 69 6e 67 20 6f 6e 65 20 | recovery.contact..Embedding.one. |
| e71c0 | 70 6f 6c 69 63 79 20 69 6e 74 6f 20 61 6e 6f 74 68 65 72 20 6f 6e 65 00 45 6d 65 72 67 65 6e 63 | policy.into.another.one.Emergenc |
| e71e0 | 79 00 45 6e 61 62 6c 65 20 3a 61 62 62 72 3a 60 42 4d 50 20 28 42 47 50 20 4d 6f 6e 69 74 6f 72 | y.Enable.:abbr:`BMP.(BGP.Monitor |
| e7200 | 69 6e 67 20 50 72 6f 74 6f 63 6f 6c 29 60 20 73 75 70 70 6f 72 74 00 45 6e 61 62 6c 65 20 42 46 | ing.Protocol)`.support.Enable.BF |
| e7220 | 44 20 66 6f 72 20 49 53 49 53 20 6f 6e 20 61 6e 20 69 6e 74 65 72 66 61 63 65 00 45 6e 61 62 6c | D.for.ISIS.on.an.interface.Enabl |
| e7240 | 65 20 42 46 44 20 66 6f 72 20 4f 53 50 46 20 6f 6e 20 61 6e 20 69 6e 74 65 72 66 61 63 65 00 45 | e.BFD.for.OSPF.on.an.interface.E |
| e7260 | 6e 61 62 6c 65 20 42 46 44 20 66 6f 72 20 4f 53 50 46 76 33 20 6f 6e 20 61 6e 20 69 6e 74 65 72 | nable.BFD.for.OSPFv3.on.an.inter |
| e7280 | 66 61 63 65 00 45 6e 61 62 6c 65 20 42 46 44 20 69 6e 20 42 47 50 00 45 6e 61 62 6c 65 20 42 46 | face.Enable.BFD.in.BGP.Enable.BF |
| e72a0 | 44 20 69 6e 20 49 53 49 53 00 45 6e 61 62 6c 65 20 42 46 44 20 69 6e 20 4f 53 50 46 00 45 6e 61 | D.in.ISIS.Enable.BFD.in.OSPF.Ena |
| e72c0 | 62 6c 65 20 42 46 44 20 6f 6e 20 61 20 42 47 50 20 70 65 65 72 20 67 72 6f 75 70 00 45 6e 61 62 | ble.BFD.on.a.BGP.peer.group.Enab |
| e72e0 | 6c 65 20 42 46 44 20 6f 6e 20 61 20 73 69 6e 67 6c 65 20 42 47 50 20 6e 65 69 67 68 62 6f 72 00 | le.BFD.on.a.single.BGP.neighbor. |
| e7300 | 45 6e 61 62 6c 65 20 44 48 43 50 20 66 61 69 6c 6f 76 65 72 20 63 6f 6e 66 69 67 75 72 61 74 69 | Enable.DHCP.failover.configurati |
| e7320 | 6f 6e 20 66 6f 72 20 74 68 69 73 20 61 64 64 72 65 73 73 20 70 6f 6f 6c 2e 00 45 6e 61 62 6c 65 | on.for.this.address.pool..Enable |
| e7340 | 20 47 72 61 70 68 51 4c 20 53 63 68 65 6d 61 20 69 6e 74 72 6f 73 70 65 63 74 69 6f 6e 2e 00 45 | .GraphQL.Schema.introspection..E |
| e7360 | 6e 61 62 6c 65 20 48 54 2d 64 65 6c 61 79 65 64 20 42 6c 6f 63 6b 20 41 63 6b 20 60 60 5b 44 45 | nable.HT-delayed.Block.Ack.``[DE |
| e7380 | 4c 41 59 45 44 2d 42 41 5d 60 60 00 45 6e 61 62 6c 65 20 49 43 4d 50 20 52 6f 75 74 65 72 20 44 | LAYED-BA]``.Enable.ICMP.Router.D |
| e73a0 | 69 73 63 6f 76 65 72 79 20 50 72 6f 74 6f 63 6f 6c 20 73 75 70 70 6f 72 74 00 45 6e 61 62 6c 65 | iscovery.Protocol.support.Enable |
| e73c0 | 20 49 47 4d 50 20 61 6e 64 20 4d 4c 44 20 71 75 65 72 69 65 72 2e 00 45 6e 61 62 6c 65 20 49 47 | .IGMP.and.MLD.querier..Enable.IG |
| e73e0 | 4d 50 20 61 6e 64 20 4d 4c 44 20 73 6e 6f 6f 70 69 6e 67 2e 00 45 6e 61 62 6c 65 20 49 50 20 66 | MP.and.MLD.snooping..Enable.IP.f |
| e7400 | 6f 72 77 61 72 64 69 6e 67 20 6f 6e 20 63 6c 69 65 6e 74 00 45 6e 61 62 6c 65 20 49 53 2d 49 53 | orwarding.on.client.Enable.IS-IS |
| e7420 | 00 45 6e 61 62 6c 65 20 49 53 2d 49 53 20 61 6e 64 20 49 47 50 2d 4c 44 50 20 73 79 6e 63 68 72 | .Enable.IS-IS.and.IGP-LDP.synchr |
| e7440 | 6f 6e 69 7a 61 74 69 6f 6e 00 45 6e 61 62 6c 65 20 49 53 2d 49 53 20 61 6e 64 20 72 65 64 69 73 | onization.Enable.IS-IS.and.redis |
| e7460 | 74 72 69 62 75 74 65 20 72 6f 75 74 65 73 20 6e 6f 74 20 6e 61 74 69 76 65 6c 79 20 69 6e 20 49 | tribute.routes.not.natively.in.I |
| e7480 | 53 2d 49 53 00 45 6e 61 62 6c 65 20 49 53 2d 49 53 20 77 69 74 68 20 53 65 67 6d 65 6e 74 20 52 | S-IS.Enable.IS-IS.with.Segment.R |
| e74a0 | 6f 75 74 69 6e 67 20 28 45 78 70 65 72 69 6d 65 6e 74 61 6c 29 00 45 6e 61 62 6c 65 20 4c 2d 53 | outing.(Experimental).Enable.L-S |
| e74c0 | 49 47 20 54 58 4f 50 20 70 72 6f 74 65 63 74 69 6f 6e 20 63 61 70 61 62 69 6c 69 74 79 00 45 6e | IG.TXOP.protection.capability.En |
| e74e0 | 61 62 6c 65 20 4c 44 50 43 20 28 4c 6f 77 20 44 65 6e 73 69 74 79 20 50 61 72 69 74 79 20 43 68 | able.LDPC.(Low.Density.Parity.Ch |
| e7500 | 65 63 6b 29 20 63 6f 64 69 6e 67 20 63 61 70 61 62 69 6c 69 74 79 00 45 6e 61 62 6c 65 20 4c 44 | eck).coding.capability.Enable.LD |
| e7520 | 50 43 20 63 6f 64 69 6e 67 20 63 61 70 61 62 69 6c 69 74 79 00 45 6e 61 62 6c 65 20 4c 4c 44 50 | PC.coding.capability.Enable.LLDP |
| e7540 | 20 73 65 72 76 69 63 65 00 45 6e 61 62 6c 65 20 4f 53 50 46 00 45 6e 61 62 6c 65 20 4f 53 50 46 | .service.Enable.OSPF.Enable.OSPF |
| e7560 | 20 61 6e 64 20 49 47 50 2d 4c 44 50 20 73 79 6e 63 68 72 6f 6e 69 7a 61 74 69 6f 6e 3a 00 45 6e | .and.IGP-LDP.synchronization:.En |
| e7580 | 61 62 6c 65 20 4f 53 50 46 20 77 69 74 68 20 53 65 67 6d 65 6e 74 20 52 6f 75 74 69 6e 67 20 28 | able.OSPF.with.Segment.Routing.( |
| e75a0 | 45 78 70 65 72 69 6d 65 6e 74 61 6c 29 3a 00 45 6e 61 62 6c 65 20 4f 53 50 46 20 77 69 74 68 20 | Experimental):.Enable.OSPF.with. |
| e75c0 | 72 6f 75 74 65 20 72 65 64 69 73 74 72 69 62 75 74 69 6f 6e 20 6f 66 20 74 68 65 20 6c 6f 6f 70 | route.redistribution.of.the.loop |
| e75e0 | 62 61 63 6b 20 61 6e 64 20 64 65 66 61 75 6c 74 20 6f 72 69 67 69 6e 61 74 65 3a 00 45 6e 61 62 | back.and.default.originate:.Enab |
| e7600 | 6c 65 20 4f 54 50 20 32 46 41 20 66 6f 72 20 75 73 65 72 20 60 75 73 65 72 6e 61 6d 65 60 20 77 | le.OTP.2FA.for.user.`username`.w |
| e7620 | 69 74 68 20 64 65 66 61 75 6c 74 20 73 65 74 74 69 6e 67 73 2c 20 75 73 69 6e 67 20 74 68 65 20 | ith.default.settings,.using.the. |
| e7640 | 42 41 53 45 33 32 20 65 6e 63 6f 64 65 64 20 32 46 41 2f 4d 46 41 20 6b 65 79 20 73 70 65 63 69 | BASE32.encoded.2FA/MFA.key.speci |
| e7660 | 66 69 65 64 20 62 79 20 60 3c 6b 65 79 3e 60 2e 00 45 6e 61 62 6c 65 20 4f 70 65 6e 46 61 62 72 | fied.by.`<key>`..Enable.OpenFabr |
| e7680 | 69 63 00 45 6e 61 62 6c 65 20 4f 70 65 6e 56 50 4e 20 44 61 74 61 20 43 68 61 6e 6e 65 6c 20 4f | ic.Enable.OpenVPN.Data.Channel.O |
| e76a0 | 66 66 6c 6f 61 64 20 66 65 61 74 75 72 65 20 62 79 20 6c 6f 61 64 69 6e 67 20 74 68 65 20 61 70 | ffload.feature.by.loading.the.ap |
| e76c0 | 70 72 6f 70 72 69 61 74 65 20 6b 65 72 6e 65 6c 20 6d 6f 64 75 6c 65 2e 00 45 6e 61 62 6c 65 20 | propriate.kernel.module..Enable. |
| e76e0 | 50 52 45 46 36 34 20 6f 70 74 69 6f 6e 20 61 73 20 6f 75 74 6c 69 6e 65 64 20 69 6e 20 3a 72 66 | PREF64.option.as.outlined.in.:rf |
| e7700 | 63 3a 60 38 37 38 31 60 2e 00 45 6e 61 62 6c 65 20 52 45 53 54 20 41 50 49 00 45 6e 61 62 6c 65 | c:`8781`..Enable.REST.API.Enable |
| e7720 | 20 53 4e 4d 50 00 45 6e 61 62 6c 65 20 53 4e 4d 50 20 71 75 65 72 69 65 73 20 6f 66 20 74 68 65 | .SNMP.Enable.SNMP.queries.of.the |
| e7740 | 20 4c 4c 44 50 20 64 61 74 61 62 61 73 65 00 45 6e 61 62 6c 65 20 53 4e 4d 50 20 73 75 70 70 6f | .LLDP.database.Enable.SNMP.suppo |
| e7760 | 72 74 20 66 6f 72 20 61 6e 20 69 6e 64 69 76 69 64 75 61 6c 20 72 6f 75 74 69 6e 67 20 64 61 65 | rt.for.an.individual.routing.dae |
| e7780 | 6d 6f 6e 2e 00 45 6e 61 62 6c 65 20 53 54 50 00 45 6e 61 62 6c 65 20 54 46 54 50 20 73 65 72 76 | mon..Enable.STP.Enable.TFTP.serv |
| e77a0 | 69 63 65 20 62 79 20 73 70 65 63 69 66 79 69 6e 67 20 74 68 65 20 60 3c 64 69 72 65 63 74 6f 72 | ice.by.specifying.the.`<director |
| e77c0 | 79 3e 60 20 77 68 69 63 68 20 77 69 6c 6c 20 62 65 20 75 73 65 64 20 74 6f 20 73 65 72 76 65 20 | y>`.which.will.be.used.to.serve. |
| e77e0 | 66 69 6c 65 73 2e 00 45 6e 61 62 6c 65 20 56 48 54 20 54 58 4f 50 20 50 6f 77 65 72 20 53 61 76 | files..Enable.VHT.TXOP.Power.Sav |
| e7800 | 65 20 4d 6f 64 65 00 45 6e 61 62 6c 65 20 56 4c 41 4e 2d 41 77 61 72 65 20 42 72 69 64 67 65 00 | e.Mode.Enable.VLAN-Aware.Bridge. |
| e7820 | 45 6e 61 62 6c 65 20 61 75 74 6f 6d 61 74 69 63 20 72 65 64 69 72 65 63 74 20 66 72 6f 6d 20 68 | Enable.automatic.redirect.from.h |
| e7840 | 74 74 70 20 74 6f 20 68 74 74 70 73 2e 00 45 6e 61 62 6c 65 20 63 72 65 61 74 69 6f 6e 20 6f 66 | ttp.to.https..Enable.creation.of |
| e7860 | 20 73 68 6f 72 74 63 75 74 20 72 6f 75 74 65 73 2e 00 45 6e 61 62 6c 65 20 64 69 66 66 65 72 65 | .shortcut.routes..Enable.differe |
| e7880 | 6e 74 20 74 79 70 65 73 20 6f 66 20 68 61 72 64 77 61 72 65 20 6f 66 66 6c 6f 61 64 69 6e 67 20 | nt.types.of.hardware.offloading. |
| e78a0 | 6f 6e 20 74 68 65 20 67 69 76 65 6e 20 4e 49 43 2e 00 45 6e 61 62 6c 65 20 67 69 76 65 6e 20 6c | on.the.given.NIC..Enable.given.l |
| e78c0 | 65 67 61 63 79 20 70 72 6f 74 6f 63 6f 6c 20 6f 6e 20 74 68 69 73 20 4c 4c 44 50 20 69 6e 73 74 | egacy.protocol.on.this.LLDP.inst |
| e78e0 | 61 6e 63 65 2e 20 4c 65 67 61 63 79 20 70 72 6f 74 6f 63 6f 6c 73 20 69 6e 63 6c 75 64 65 3a 00 | ance..Legacy.protocols.include:. |
| e7900 | 45 6e 61 62 6c 65 20 6c 61 79 65 72 20 37 20 48 54 54 50 20 68 65 61 6c 74 68 20 63 68 65 63 6b | Enable.layer.7.HTTP.health.check |
| e7920 | 00 45 6e 61 62 6c 65 20 6c 6f 67 67 69 6e 67 20 66 6f 72 20 74 68 65 20 6d 61 74 63 68 65 64 20 | .Enable.logging.for.the.matched. |
| e7940 | 70 61 63 6b 65 74 2e 20 49 66 20 74 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f | packet..If.this.configuration.co |
| e7960 | 6d 6d 61 6e 64 20 69 73 20 6e 6f 74 20 70 72 65 73 65 6e 74 2c 20 74 68 65 6e 20 6c 6f 67 20 69 | mmand.is.not.present,.then.log.i |
| e7980 | 73 20 6e 6f 74 20 65 6e 61 62 6c 65 64 2e 00 45 6e 61 62 6c 65 20 6c 6f 67 67 69 6e 67 20 66 6f | s.not.enabled..Enable.logging.fo |
| e79a0 | 72 20 74 68 65 20 6d 61 74 63 68 65 64 20 70 61 63 6b 65 74 2e 20 49 66 20 74 68 69 73 20 63 6f | r.the.matched.packet..If.this.co |
| e79c0 | 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 20 69 73 20 6e 6f 74 20 70 72 65 73 65 | nfiguration.command.is.not.prese |
| e79e0 | 6e 74 2c 20 74 68 65 6e 20 74 68 65 20 6c 6f 67 20 69 73 20 6e 6f 74 20 65 6e 61 62 6c 65 64 2e | nt,.then.the.log.is.not.enabled. |
| e7a00 | 00 45 6e 61 62 6c 65 20 6c 6f 67 67 69 6e 67 20 6f 66 20 49 50 20 61 64 64 72 65 73 73 20 61 6e | .Enable.logging.of.IP.address.an |
| e7a20 | 64 20 70 6f 72 74 73 20 61 6c 6c 6f 63 61 74 69 6f 6e 73 2e 00 45 6e 61 62 6c 65 20 6f 72 20 44 | d.ports.allocations..Enable.or.D |
| e7a40 | 69 73 61 62 6c 65 20 56 79 4f 53 20 74 6f 20 62 65 20 3a 72 66 63 3a 60 31 33 33 37 60 20 63 6f | isable.VyOS.to.be.:rfc:`1337`.co |
| e7a60 | 6e 66 6f 72 6d 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 79 73 74 65 6d 20 70 61 72 61 | nform..The.following.system.para |
| e7a80 | 6d 65 74 65 72 20 77 69 6c 6c 20 62 65 20 61 6c 74 65 72 65 64 3a 00 45 6e 61 62 6c 65 20 6f 72 | meter.will.be.altered:.Enable.or |
| e7aa0 | 20 44 69 73 61 62 6c 65 20 56 79 4f 53 20 74 6f 20 62 65 20 3a 72 66 63 3a 60 31 33 33 37 60 20 | .Disable.VyOS.to.be.:rfc:`1337`. |
| e7ac0 | 63 6f 6e 66 6f 72 6d 61 6e 74 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 79 73 74 65 6d | conformant..The.following.system |
| e7ae0 | 20 70 61 72 61 6d 65 74 65 72 20 77 69 6c 6c 20 62 65 20 61 6c 74 65 72 65 64 3a 00 45 6e 61 62 | .parameter.will.be.altered:.Enab |
| e7b00 | 6c 65 20 6f 72 20 44 69 73 61 62 6c 65 20 69 66 20 56 79 4f 53 20 75 73 65 20 49 50 76 34 20 54 | le.or.Disable.if.VyOS.use.IPv4.T |
| e7b20 | 43 50 20 53 59 4e 20 43 6f 6f 6b 69 65 73 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 79 | CP.SYN.Cookies..The.following.sy |
| e7b40 | 73 74 65 6d 20 70 61 72 61 6d 65 74 65 72 20 77 69 6c 6c 20 62 65 20 61 6c 74 65 72 65 64 3a 00 | stem.parameter.will.be.altered:. |
| e7b60 | 45 6e 61 62 6c 65 20 6f 72 20 64 69 73 61 62 6c 65 20 49 43 4d 50 76 34 20 6f 72 20 49 43 4d 50 | Enable.or.disable.ICMPv4.or.ICMP |
| e7b80 | 76 36 20 72 65 64 69 72 65 63 74 20 6d 65 73 73 61 67 65 73 20 62 65 69 6e 67 20 61 63 63 65 70 | v6.redirect.messages.being.accep |
| e7ba0 | 74 65 64 20 62 79 20 56 79 4f 53 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 79 73 74 65 | ted.by.VyOS..The.following.syste |
| e7bc0 | 6d 20 70 61 72 61 6d 65 74 65 72 73 20 77 69 6c 6c 20 62 65 20 61 6c 74 65 72 65 64 3a 00 45 6e | m.parameters.will.be.altered:.En |
| e7be0 | 61 62 6c 65 20 6f 72 20 64 69 73 61 62 6c 65 20 49 43 4d 50 76 34 20 72 65 64 69 72 65 63 74 20 | able.or.disable.ICMPv4.redirect. |
| e7c00 | 6d 65 73 73 61 67 65 73 20 62 65 69 6e 67 20 73 65 6e 74 20 62 79 20 56 79 4f 53 20 54 68 65 20 | messages.being.sent.by.VyOS.The. |
| e7c20 | 66 6f 6c 6c 6f 77 69 6e 67 20 73 79 73 74 65 6d 20 70 61 72 61 6d 65 74 65 72 20 77 69 6c 6c 20 | following.system.parameter.will. |
| e7c40 | 62 65 20 61 6c 74 65 72 65 64 3a 00 45 6e 61 62 6c 65 20 6f 72 20 64 69 73 61 62 6c 65 20 69 66 | be.altered:.Enable.or.disable.if |
| e7c60 | 20 56 79 4f 53 20 75 73 65 73 20 49 50 76 34 20 54 43 50 20 53 59 4e 20 43 6f 6f 6b 69 65 73 2e | .VyOS.uses.IPv4.TCP.SYN.Cookies. |
| e7c80 | 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 79 73 74 65 6d 20 70 61 72 61 6d 65 74 65 72 20 | .The.following.system.parameter. |
| e7ca0 | 77 69 6c 6c 20 62 65 20 61 6c 74 65 72 65 64 3a 00 45 6e 61 62 6c 65 20 6f 72 20 64 69 73 61 62 | will.be.altered:.Enable.or.disab |
| e7cc0 | 6c 65 20 6c 6f 67 67 69 6e 67 20 66 6f 72 20 74 68 65 20 6d 61 74 63 68 65 64 20 70 61 63 6b 65 | le.logging.for.the.matched.packe |
| e7ce0 | 74 2e 00 45 6e 61 62 6c 65 20 6f 72 20 64 69 73 61 62 6c 65 20 74 68 65 20 6c 6f 67 67 69 6e 67 | t..Enable.or.disable.the.logging |
| e7d00 | 20 6f 66 20 6d 61 72 74 69 61 6e 20 49 50 76 34 20 70 61 63 6b 65 74 73 2e 20 54 68 65 20 66 6f | .of.martian.IPv4.packets..The.fo |
| e7d20 | 6c 6c 6f 77 69 6e 67 20 73 79 73 74 65 6d 20 70 61 72 61 6d 65 74 65 72 20 77 69 6c 6c 20 62 65 | llowing.system.parameter.will.be |
| e7d40 | 20 61 6c 74 65 72 65 64 3a 00 45 6e 61 62 6c 65 20 6f 73 70 66 20 6f 6e 20 61 6e 20 69 6e 74 65 | .altered:.Enable.ospf.on.an.inte |
| e7d60 | 72 66 61 63 65 20 61 6e 64 20 73 65 74 20 61 73 73 6f 63 69 61 74 65 64 20 61 72 65 61 2e 00 45 | rface.and.set.associated.area..E |
| e7d80 | 6e 61 62 6c 65 20 70 6f 6c 69 63 79 20 66 6f 72 20 73 6f 75 72 63 65 20 76 61 6c 69 64 61 74 69 | nable.policy.for.source.validati |
| e7da0 | 6f 6e 20 62 79 20 72 65 76 65 72 73 65 64 20 70 61 74 68 2c 20 61 73 20 73 70 65 63 69 66 69 65 | on.by.reversed.path,.as.specifie |
| e7dc0 | 64 20 69 6e 20 3a 72 66 63 3a 60 33 37 30 34 60 2e 20 43 75 72 72 65 6e 74 20 72 65 63 6f 6d 6d | d.in.:rfc:`3704`..Current.recomm |
| e7de0 | 65 6e 64 65 64 20 70 72 61 63 74 69 63 65 20 69 6e 20 3a 72 66 63 3a 60 33 37 30 34 60 20 69 73 | ended.practice.in.:rfc:`3704`.is |
| e7e00 | 20 74 6f 20 65 6e 61 62 6c 65 20 73 74 72 69 63 74 20 6d 6f 64 65 20 74 6f 20 70 72 65 76 65 6e | .to.enable.strict.mode.to.preven |
| e7e20 | 74 20 49 50 20 73 70 6f 6f 66 69 6e 67 20 66 72 6f 6d 20 44 44 6f 73 20 61 74 74 61 63 6b 73 2e | t.IP.spoofing.from.DDos.attacks. |
| e7e40 | 20 49 66 20 75 73 69 6e 67 20 61 73 79 6d 6d 65 74 72 69 63 20 72 6f 75 74 69 6e 67 20 6f 72 20 | .If.using.asymmetric.routing.or. |
| e7e60 | 6f 74 68 65 72 20 63 6f 6d 70 6c 69 63 61 74 65 64 20 72 6f 75 74 69 6e 67 2c 20 74 68 65 6e 20 | other.complicated.routing,.then. |
| e7e80 | 6c 6f 6f 73 65 20 6d 6f 64 65 20 69 73 20 72 65 63 6f 6d 6d 65 6e 64 65 64 2e 00 45 6e 61 62 6c | loose.mode.is.recommended..Enabl |
| e7ea0 | 65 20 72 65 63 65 69 76 69 6e 67 20 50 50 44 55 20 75 73 69 6e 67 20 53 54 42 43 20 28 53 70 61 | e.receiving.PPDU.using.STBC.(Spa |
| e7ec0 | 63 65 20 54 69 6d 65 20 42 6c 6f 63 6b 20 43 6f 64 69 6e 67 29 00 45 6e 61 62 6c 65 20 73 61 6d | ce.Time.Block.Coding).Enable.sam |
| e7ee0 | 70 6c 69 6e 67 20 6f 66 20 70 61 63 6b 65 74 73 2c 20 77 68 69 63 68 20 77 69 6c 6c 20 62 65 20 | pling.of.packets,.which.will.be. |
| e7f00 | 74 72 61 6e 73 6d 69 74 74 65 64 20 74 6f 20 73 46 6c 6f 77 20 63 6f 6c 6c 65 63 74 6f 72 73 2e | transmitted.to.sFlow.collectors. |
| e7f20 | 00 45 6e 61 62 6c 65 20 73 65 6e 64 69 6e 67 20 50 50 44 55 20 75 73 69 6e 67 20 53 54 42 43 20 | .Enable.sending.PPDU.using.STBC. |
| e7f40 | 28 53 70 61 63 65 20 54 69 6d 65 20 42 6c 6f 63 6b 20 43 6f 64 69 6e 67 29 00 45 6e 61 62 6c 65 | (Space.Time.Block.Coding).Enable |
| e7f60 | 20 73 65 6e 64 69 6e 67 20 6f 66 20 43 69 73 63 6f 20 73 74 79 6c 65 20 4e 48 52 50 20 54 72 61 | .sending.of.Cisco.style.NHRP.Tra |
| e7f80 | 66 66 69 63 20 49 6e 64 69 63 61 74 69 6f 6e 20 70 61 63 6b 65 74 73 2e 20 49 66 20 74 68 69 73 | ffic.Indication.packets..If.this |
| e7fa0 | 20 69 73 20 65 6e 61 62 6c 65 64 20 61 6e 64 20 6f 70 65 6e 6e 68 72 70 20 64 65 74 65 63 74 73 | .is.enabled.and.opennhrp.detects |
| e7fc0 | 20 61 20 66 6f 72 77 61 72 64 65 64 20 20 70 61 63 6b 65 74 2c 20 69 74 20 77 69 6c 6c 20 73 65 | .a.forwarded..packet,.it.will.se |
| e7fe0 | 6e 64 20 61 20 6d 65 73 73 61 67 65 20 74 6f 20 74 68 65 20 6f 72 69 67 69 6e 61 6c 20 73 65 6e | nd.a.message.to.the.original.sen |
| e8000 | 64 65 72 20 6f 66 20 74 68 65 20 70 61 63 6b 65 74 20 69 6e 73 74 72 75 63 74 69 6e 67 20 69 74 | der.of.the.packet.instructing.it |
| e8020 | 20 74 6f 20 63 72 65 61 74 65 20 61 20 64 69 72 65 63 74 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 77 | .to.create.a.direct.connection.w |
| e8040 | 69 74 68 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 2e 20 54 68 69 73 20 69 73 20 62 61 73 | ith.the.destination..This.is.bas |
| e8060 | 69 63 61 6c 6c 79 20 61 20 70 72 6f 74 6f 63 6f 6c 20 69 6e 64 65 70 65 6e 64 65 6e 74 20 65 71 | ically.a.protocol.independent.eq |
| e8080 | 75 69 76 61 6c 65 6e 74 20 6f 66 20 49 43 4d 50 20 72 65 64 69 72 65 63 74 2e 00 45 6e 61 62 6c | uivalent.of.ICMP.redirect..Enabl |
| e80a0 | 65 20 73 70 61 6e 6e 69 6e 67 20 74 72 65 65 20 70 72 6f 74 6f 63 6f 6c 2e 20 53 54 50 20 69 73 | e.spanning.tree.protocol..STP.is |
| e80c0 | 20 64 69 73 61 62 6c 65 64 20 62 79 20 64 65 66 61 75 6c 74 2e 00 45 6e 61 62 6c 65 20 74 68 65 | .disabled.by.default..Enable.the |
| e80e0 | 20 4f 70 61 71 75 65 2d 4c 53 41 20 63 61 70 61 62 69 6c 69 74 79 20 28 72 66 63 32 33 37 30 29 | .Opaque-LSA.capability.(rfc2370) |
| e8100 | 2c 20 6e 65 63 65 73 73 61 72 79 20 74 6f 20 74 72 61 6e 73 70 6f 72 74 20 6c 61 62 65 6c 20 6f | ,.necessary.to.transport.label.o |
| e8120 | 6e 20 49 47 50 00 45 6e 61 62 6c 65 20 74 68 69 73 20 66 65 61 74 75 72 65 20 63 61 75 73 65 73 | n.IGP.Enable.this.feature.causes |
| e8140 | 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 72 65 73 65 74 2e 00 45 6e 61 62 6c 65 20 74 72 61 6e | .an.interface.reset..Enable.tran |
| e8160 | 73 6d 69 73 73 69 6f 6e 20 6f 66 20 4c 4c 44 50 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 6e 20 | smission.of.LLDP.information.on. |
| e8180 | 67 69 76 65 6e 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 2e 20 59 6f 75 20 63 61 6e 20 61 6c 73 | given.`<interface>`..You.can.als |
| e81a0 | 6f 20 73 61 79 20 60 60 61 6c 6c 60 60 20 68 65 72 65 20 73 6f 20 4c 4c 44 50 20 69 73 20 74 75 | o.say.``all``.here.so.LLDP.is.tu |
| e81c0 | 72 6e 65 64 20 6f 6e 20 6f 6e 20 65 76 65 72 79 20 69 6e 74 65 72 66 61 63 65 2e 00 45 6e 61 62 | rned.on.on.every.interface..Enab |
| e81e0 | 6c 65 64 20 6f 6e 2d 64 65 6d 61 6e 64 20 50 50 50 6f 45 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 | led.on-demand.PPPoE.connections. |
| e8200 | 62 72 69 6e 67 20 75 70 20 74 68 65 20 6c 69 6e 6b 20 6f 6e 6c 79 20 77 68 65 6e 20 74 72 61 66 | bring.up.the.link.only.when.traf |
| e8220 | 66 69 63 20 6e 65 65 64 73 20 74 6f 20 70 61 73 73 20 74 68 69 73 20 6c 69 6e 6b 2e 20 20 49 66 | fic.needs.to.pass.this.link...If |
| e8240 | 20 74 68 65 20 6c 69 6e 6b 20 66 61 69 6c 73 20 66 6f 72 20 61 6e 79 20 72 65 61 73 6f 6e 2c 20 | .the.link.fails.for.any.reason,. |
| e8260 | 74 68 65 20 6c 69 6e 6b 20 69 73 20 62 72 6f 75 67 68 74 20 62 61 63 6b 20 75 70 20 61 75 74 6f | the.link.is.brought.back.up.auto |
| e8280 | 6d 61 74 69 63 61 6c 6c 79 20 6f 6e 63 65 20 74 72 61 66 66 69 63 20 70 61 73 73 65 73 20 74 68 | matically.once.traffic.passes.th |
| e82a0 | 65 20 69 6e 74 65 72 66 61 63 65 20 61 67 61 69 6e 2e 20 49 66 20 79 6f 75 20 63 6f 6e 66 69 67 | e.interface.again..If.you.config |
| e82c0 | 75 72 65 20 61 6e 20 6f 6e 2d 64 65 6d 61 6e 64 20 50 50 50 6f 45 20 63 6f 6e 6e 65 63 74 69 6f | ure.an.on-demand.PPPoE.connectio |
| e82e0 | 6e 2c 20 79 6f 75 20 6d 75 73 74 20 61 6c 73 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 69 | n,.you.must.also.configure.the.i |
| e8300 | 64 6c 65 20 74 69 6d 65 6f 75 74 20 70 65 72 69 6f 64 2c 20 61 66 74 65 72 20 77 68 69 63 68 20 | dle.timeout.period,.after.which. |
| e8320 | 61 6e 20 69 64 6c 65 20 50 50 50 6f 45 20 6c 69 6e 6b 20 77 69 6c 6c 20 62 65 20 64 69 73 63 6f | an.idle.PPPoE.link.will.be.disco |
| e8340 | 6e 6e 65 63 74 65 64 2e 20 41 20 6e 6f 6e 2d 7a 65 72 6f 20 69 64 6c 65 20 74 69 6d 65 6f 75 74 | nnected..A.non-zero.idle.timeout |
| e8360 | 20 77 69 6c 6c 20 6e 65 76 65 72 20 64 69 73 63 6f 6e 6e 65 63 74 20 74 68 65 20 6c 69 6e 6b 20 | .will.never.disconnect.the.link. |
| e8380 | 61 66 74 65 72 20 69 74 20 66 69 72 73 74 20 63 61 6d 65 20 75 70 2e 00 45 6e 61 62 6c 65 73 20 | after.it.first.came.up..Enables. |
| e83a0 | 43 69 73 63 6f 20 73 74 79 6c 65 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6f 6e 20 4e 48 | Cisco.style.authentication.on.NH |
| e83c0 | 52 50 20 70 61 63 6b 65 74 73 2e 20 54 68 69 73 20 65 6d 62 65 64 73 20 74 68 65 20 73 65 63 72 | RP.packets..This.embeds.the.secr |
| e83e0 | 65 74 20 70 6c 61 69 6e 74 65 78 74 20 70 61 73 73 77 6f 72 64 20 74 6f 20 74 68 65 20 6f 75 74 | et.plaintext.password.to.the.out |
| e8400 | 67 6f 69 6e 67 20 4e 48 52 50 20 70 61 63 6b 65 74 73 2e 20 49 6e 63 6f 6d 69 6e 67 20 4e 48 52 | going.NHRP.packets..Incoming.NHR |
| e8420 | 50 20 70 61 63 6b 65 74 73 20 6f 6e 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 20 61 72 65 20 | P.packets.on.this.interface.are. |
| e8440 | 64 69 73 63 61 72 64 65 64 20 75 6e 6c 65 73 73 20 74 68 65 20 73 65 63 72 65 74 20 70 61 73 73 | discarded.unless.the.secret.pass |
| e8460 | 77 6f 72 64 20 69 73 20 70 72 65 73 65 6e 74 2e 20 4d 61 78 69 6d 75 6d 20 6c 65 6e 67 74 68 20 | word.is.present..Maximum.length. |
| e8480 | 6f 66 20 74 68 65 20 73 65 63 72 65 74 20 69 73 20 38 20 63 68 61 72 61 63 74 65 72 73 2e 00 45 | of.the.secret.is.8.characters..E |
| e84a0 | 6e 61 62 6c 65 73 20 48 54 54 50 20 68 65 61 6c 74 68 20 63 68 65 63 6b 73 20 75 73 69 6e 67 20 | nables.HTTP.health.checks.using. |
| e84c0 | 4f 50 54 49 4f 4e 20 48 54 54 50 20 72 65 71 75 65 73 74 73 20 61 67 61 69 6e 73 74 20 27 2f 27 | OPTION.HTTP.requests.against.'/' |
| e84e0 | 20 61 6e 64 20 65 78 70 65 63 74 69 6e 67 20 61 20 73 75 63 63 65 73 73 66 75 6c 20 72 65 73 70 | .and.expecting.a.successful.resp |
| e8500 | 6f 6e 73 65 20 63 6f 64 65 20 69 6e 20 74 68 65 20 32 30 30 2d 33 39 39 20 72 61 6e 67 65 2e 00 | onse.code.in.the.200-399.range.. |
| e8520 | 45 6e 61 62 6c 65 73 20 61 6e 20 4d 50 4c 53 20 6c 61 62 65 6c 20 74 6f 20 62 65 20 61 74 74 61 | Enables.an.MPLS.label.to.be.atta |
| e8540 | 63 68 65 64 20 74 6f 20 61 20 72 6f 75 74 65 20 65 78 70 6f 72 74 65 64 20 66 72 6f 6d 20 74 68 | ched.to.a.route.exported.from.th |
| e8560 | 65 20 63 75 72 72 65 6e 74 20 75 6e 69 63 61 73 74 20 56 52 46 20 74 6f 20 56 50 4e 2e 20 49 66 | e.current.unicast.VRF.to.VPN..If |
| e8580 | 20 74 68 65 20 76 61 6c 75 65 20 73 70 65 63 69 66 69 65 64 20 69 73 20 61 75 74 6f 2c 20 74 68 | .the.value.specified.is.auto,.th |
| e85a0 | 65 20 6c 61 62 65 6c 20 76 61 6c 75 65 20 69 73 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 61 | e.label.value.is.automatically.a |
| e85c0 | 73 73 69 67 6e 65 64 20 66 72 6f 6d 20 61 20 70 6f 6f 6c 20 6d 61 69 6e 74 61 69 6e 65 64 2e 00 | ssigned.from.a.pool.maintained.. |
| e85e0 | 45 6e 61 62 6c 65 73 20 61 6e 64 20 63 6f 6e 66 69 67 75 72 65 73 20 70 2d 73 74 61 74 65 20 64 | Enables.and.configures.p-state.d |
| e8600 | 72 69 76 65 72 20 66 6f 72 20 6d 6f 64 65 72 6e 20 41 4d 44 20 52 79 7a 65 6e 20 61 6e 64 20 45 | river.for.modern.AMD.Ryzen.and.E |
| e8620 | 70 79 63 20 43 50 55 73 2e 00 45 6e 61 62 6c 65 73 20 62 61 6e 64 77 69 64 74 68 20 73 68 61 70 | pyc.CPUs..Enables.bandwidth.shap |
| e8640 | 69 6e 67 20 76 69 61 20 52 41 44 49 55 53 2e 00 45 6e 61 62 6c 65 73 20 69 6d 70 6f 72 74 20 6f | ing.via.RADIUS..Enables.import.o |
| e8660 | 72 20 65 78 70 6f 72 74 20 6f 66 20 72 6f 75 74 65 73 20 62 65 74 77 65 65 6e 20 74 68 65 20 63 | r.export.of.routes.between.the.c |
| e8680 | 75 72 72 65 6e 74 20 75 6e 69 63 61 73 74 20 56 52 46 20 61 6e 64 20 56 50 4e 2e 00 45 6e 61 62 | urrent.unicast.VRF.and.VPN..Enab |
| e86a0 | 6c 65 73 20 74 68 65 20 47 65 6e 65 72 69 63 20 50 72 6f 74 6f 63 6f 6c 20 65 78 74 65 6e 73 69 | les.the.Generic.Protocol.extensi |
| e86c0 | 6f 6e 20 28 56 58 4c 41 4e 2d 47 50 45 29 2e 20 43 75 72 72 65 6e 74 6c 79 2c 20 74 68 69 73 20 | on.(VXLAN-GPE)..Currently,.this. |
| e86e0 | 69 73 20 6f 6e 6c 79 20 73 75 70 70 6f 72 74 65 64 20 74 6f 67 65 74 68 65 72 20 77 69 74 68 20 | is.only.supported.together.with. |
| e8700 | 74 68 65 20 65 78 74 65 72 6e 61 6c 20 6b 65 79 77 6f 72 64 2e 00 45 6e 61 62 6c 65 73 20 74 68 | the.external.keyword..Enables.th |
| e8720 | 65 20 4e 54 50 20 64 61 65 6d 6f 6e 20 50 54 50 20 74 72 61 6e 73 70 6f 72 74 2e 20 54 68 65 20 | e.NTP.daemon.PTP.transport..The. |
| e8740 | 4e 54 50 20 64 61 65 6d 6f 6e 20 77 69 6c 6c 20 6c 69 73 74 65 6e 20 6f 6e 20 74 68 65 20 63 6f | NTP.daemon.will.listen.on.the.co |
| e8760 | 6e 66 69 67 75 72 65 64 20 50 54 50 20 70 6f 72 74 2e 20 4e 6f 74 65 20 74 68 61 74 20 6f 6e 65 | nfigured.PTP.port..Note.that.one |
| e8780 | 20 6f 72 20 6d 6f 72 65 20 73 65 72 76 65 72 73 20 6d 75 73 74 20 62 65 20 69 6e 64 69 76 69 64 | .or.more.servers.must.be.individ |
| e87a0 | 75 61 6c 6c 79 20 65 6e 61 62 6c 65 64 20 66 6f 72 20 50 54 50 20 62 65 66 6f 72 65 20 74 68 65 | ually.enabled.for.PTP.before.the |
| e87c0 | 20 64 61 65 6d 6f 6e 20 77 69 6c 6c 20 73 79 6e 63 68 72 6f 6e 69 7a 65 20 6f 76 65 72 20 74 68 | .daemon.will.synchronize.over.th |
| e87e0 | 65 20 74 72 61 6e 73 70 6f 72 74 2e 00 45 6e 61 62 6c 65 73 20 74 68 65 20 65 63 68 6f 20 74 72 | e.transport..Enables.the.echo.tr |
| e8800 | 61 6e 73 6d 69 73 73 69 6f 6e 20 6d 6f 64 65 00 45 6e 61 62 6c 65 73 20 74 68 65 20 72 6f 6f 74 | ansmission.mode.Enables.the.root |
| e8820 | 20 70 61 72 74 69 74 69 6f 6e 20 61 75 74 6f 2d 65 78 74 65 6e 73 69 6f 6e 20 61 6e 64 20 72 65 | .partition.auto-extension.and.re |
| e8840 | 73 69 7a 65 73 20 74 6f 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 61 76 61 69 6c 61 62 6c 65 20 73 | sizes.to.the.maximum.available.s |
| e8860 | 70 61 63 65 20 6f 6e 20 73 79 73 74 65 6d 20 62 6f 6f 74 2e 00 45 6e 61 62 6c 69 6e 67 20 41 64 | pace.on.system.boot..Enabling.Ad |
| e8880 | 76 65 72 74 69 73 6d 65 6e 74 73 00 45 6e 61 62 6c 69 6e 67 20 4f 70 65 6e 56 50 4e 20 44 43 4f | vertisments.Enabling.OpenVPN.DCO |
| e88a0 | 00 45 6e 61 62 6c 69 6e 67 20 53 53 48 20 6f 6e 6c 79 20 72 65 71 75 69 72 65 73 20 79 6f 75 20 | .Enabling.SSH.only.requires.you. |
| e88c0 | 74 6f 20 73 70 65 63 69 66 79 20 74 68 65 20 70 6f 72 74 20 60 60 3c 70 6f 72 74 3e 60 60 20 79 | to.specify.the.port.``<port>``.y |
| e88e0 | 6f 75 20 77 61 6e 74 20 53 53 48 20 74 6f 20 6c 69 73 74 65 6e 20 6f 6e 2e 20 42 79 20 64 65 66 | ou.want.SSH.to.listen.on..By.def |
| e8900 | 61 75 6c 74 2c 20 53 53 48 20 72 75 6e 73 20 6f 6e 20 70 6f 72 74 20 32 32 2e 00 45 6e 61 62 6c | ault,.SSH.runs.on.port.22..Enabl |
| e8920 | 69 6e 67 20 74 68 69 73 20 66 75 6e 63 74 69 6f 6e 20 69 6e 63 72 65 61 73 65 73 20 74 68 65 20 | ing.this.function.increases.the. |
| e8940 | 72 69 73 6b 20 6f 66 20 62 61 6e 64 77 69 64 74 68 20 73 61 74 75 72 61 74 69 6f 6e 2e 00 45 6e | risk.of.bandwidth.saturation..En |
| e8960 | 66 6f 72 63 65 20 73 74 72 69 63 74 20 70 61 74 68 20 63 68 65 63 6b 69 6e 67 00 45 6e 66 6f 72 | force.strict.path.checking.Enfor |
| e8980 | 63 65 20 73 74 72 69 63 74 20 70 61 74 68 20 63 68 65 63 6b 69 6e 67 2e 00 45 6e 73 6c 61 76 65 | ce.strict.path.checking..Enslave |
| e89a0 | 20 60 3c 6d 65 6d 62 65 72 3e 60 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 62 6f 6e 64 20 60 3c | .`<member>`.interface.to.bond.`< |
| e89c0 | 69 6e 74 65 72 66 61 63 65 3e 60 2e 00 45 6e 73 75 72 65 20 74 68 61 74 20 77 68 65 6e 20 63 6f | interface>`..Ensure.that.when.co |
| e89e0 | 6d 70 61 72 69 6e 67 20 72 6f 75 74 65 73 20 77 68 65 72 65 20 62 6f 74 68 20 61 72 65 20 65 71 | mparing.routes.where.both.are.eq |
| e8a00 | 75 61 6c 20 6f 6e 20 6d 6f 73 74 20 6d 65 74 72 69 63 73 2c 20 69 6e 63 6c 75 64 69 6e 67 20 6c | ual.on.most.metrics,.including.l |
| e8a20 | 6f 63 61 6c 2d 70 72 65 66 2c 20 41 53 5f 50 41 54 48 20 6c 65 6e 67 74 68 2c 20 49 47 50 20 63 | ocal-pref,.AS_PATH.length,.IGP.c |
| e8a40 | 6f 73 74 2c 20 4d 45 44 2c 20 74 68 61 74 20 74 68 65 20 74 69 65 20 69 73 20 62 72 6f 6b 65 6e | ost,.MED,.that.the.tie.is.broken |
| e8a60 | 20 62 61 73 65 64 20 6f 6e 20 72 6f 75 74 65 72 2d 49 44 2e 00 45 6e 74 65 72 70 72 69 73 65 20 | .based.on.router-ID..Enterprise. |
| e8a80 | 69 6e 73 74 61 6c 6c 61 74 69 6f 6e 73 20 75 73 75 61 6c 6c 79 20 73 68 69 70 20 61 20 6b 69 6e | installations.usually.ship.a.kin |
| e8aa0 | 64 20 6f 66 20 64 69 72 65 63 74 6f 72 79 20 73 65 72 76 69 63 65 20 77 68 69 63 68 20 69 73 20 | d.of.directory.service.which.is. |
| e8ac0 | 75 73 65 64 20 74 6f 20 68 61 76 65 20 61 20 73 69 6e 67 6c 65 20 70 61 73 73 77 6f 72 64 20 73 | used.to.have.a.single.password.s |
| e8ae0 | 74 6f 72 65 20 66 6f 72 20 61 6c 6c 20 65 6d 70 6c 6f 79 65 65 73 2e 20 56 79 4f 53 20 61 6e 64 | tore.for.all.employees..VyOS.and |
| e8b00 | 20 4f 70 65 6e 56 50 4e 20 73 75 70 70 6f 72 74 20 75 73 69 6e 67 20 4c 44 41 50 2f 41 44 20 61 | .OpenVPN.support.using.LDAP/AD.a |
| e8b20 | 73 20 73 69 6e 67 6c 65 20 75 73 65 72 20 62 61 63 6b 65 6e 64 2e 00 45 72 69 63 73 73 6f 6e 20 | s.single.user.backend..Ericsson. |
| e8b40 | 63 61 6c 6c 20 69 74 20 4d 41 43 2d 46 6f 72 63 65 64 20 46 6f 72 77 61 72 64 69 6e 67 20 28 52 | call.it.MAC-Forced.Forwarding.(R |
| e8b60 | 46 43 20 44 72 61 66 74 29 00 45 72 72 6f 72 00 45 72 72 6f 72 20 63 6f 6e 64 69 74 69 6f 6e 73 | FC.Draft).Error.Error.conditions |
| e8b80 | 00 45 73 74 61 62 6c 69 73 68 65 64 20 73 65 73 73 69 6f 6e 73 20 63 61 6e 20 62 65 20 76 69 65 | .Established.sessions.can.be.vie |
| e8ba0 | 77 65 64 20 75 73 69 6e 67 20 74 68 65 20 2a 2a 73 68 6f 77 20 6c 32 74 70 2d 73 65 72 76 65 72 | wed.using.the.**show.l2tp-server |
| e8bc0 | 20 73 65 73 73 69 6f 6e 73 2a 2a 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 63 6f 6d 6d 61 6e 64 00 | .sessions**.operational.command. |
| e8be0 | 45 74 68 65 72 6e 65 74 00 45 74 68 65 72 6e 65 74 20 66 6c 6f 77 20 63 6f 6e 74 72 6f 6c 20 69 | Ethernet.Ethernet.flow.control.i |
| e8c00 | 73 20 61 20 6d 65 63 68 61 6e 69 73 6d 20 66 6f 72 20 74 65 6d 70 6f 72 61 72 69 6c 79 20 73 74 | s.a.mechanism.for.temporarily.st |
| e8c20 | 6f 70 70 69 6e 67 20 74 68 65 20 74 72 61 6e 73 6d 69 73 73 69 6f 6e 20 6f 66 20 64 61 74 61 20 | opping.the.transmission.of.data. |
| e8c40 | 6f 6e 20 45 74 68 65 72 6e 65 74 20 66 61 6d 69 6c 79 20 63 6f 6d 70 75 74 65 72 20 6e 65 74 77 | on.Ethernet.family.computer.netw |
| e8c60 | 6f 72 6b 73 2e 20 54 68 65 20 67 6f 61 6c 20 6f 66 20 74 68 69 73 20 6d 65 63 68 61 6e 69 73 6d | orks..The.goal.of.this.mechanism |
| e8c80 | 20 69 73 20 74 6f 20 65 6e 73 75 72 65 20 7a 65 72 6f 20 70 61 63 6b 65 74 20 6c 6f 73 73 20 69 | .is.to.ensure.zero.packet.loss.i |
| e8ca0 | 6e 20 74 68 65 20 70 72 65 73 65 6e 63 65 20 6f 66 20 6e 65 74 77 6f 72 6b 20 63 6f 6e 67 65 73 | n.the.presence.of.network.conges |
| e8cc0 | 74 69 6f 6e 2e 00 45 74 68 65 72 6e 65 74 20 6f 70 74 69 6f 6e 73 00 45 74 68 65 72 74 79 70 65 | tion..Ethernet.options.Ethertype |
| e8ce0 | 20 60 60 30 78 38 31 30 30 60 60 20 69 73 20 75 73 65 64 20 66 6f 72 20 60 60 38 30 32 2e 31 71 | .``0x8100``.is.used.for.``802.1q |
| e8d00 | 60 60 20 61 6e 64 20 65 74 68 65 72 74 79 70 65 20 60 60 30 78 38 38 61 38 60 60 20 69 73 20 75 | ``.and.ethertype.``0x88a8``.is.u |
| e8d20 | 73 65 64 20 66 6f 72 20 60 60 38 30 32 2e 31 61 64 60 60 2e 00 45 76 65 6e 74 20 48 61 6e 64 6c | sed.for.``802.1ad``..Event.Handl |
| e8d40 | 65 72 00 45 76 65 6e 74 20 48 61 6e 64 6c 65 72 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 53 | er.Event.Handler.Configuration.S |
| e8d60 | 74 65 70 73 00 45 76 65 6e 74 20 48 61 6e 64 6c 65 72 20 54 65 63 68 6e 6f 6c 6f 67 79 20 4f 76 | teps.Event.Handler.Technology.Ov |
| e8d80 | 65 72 76 69 65 77 00 45 76 65 6e 74 20 68 61 6e 64 6c 65 72 20 61 6c 6c 6f 77 73 20 79 6f 75 20 | erview.Event.handler.allows.you. |
| e8da0 | 74 6f 20 65 78 65 63 75 74 65 20 73 63 72 69 70 74 73 20 77 68 65 6e 20 61 20 73 74 72 69 6e 67 | to.execute.scripts.when.a.string |
| e8dc0 | 20 74 68 61 74 20 6d 61 74 63 68 65 73 20 61 20 72 65 67 65 78 20 6f 72 20 61 20 72 65 67 65 78 | .that.matches.a.regex.or.a.regex |
| e8de0 | 20 77 69 74 68 20 61 20 73 65 72 76 69 63 65 20 6e 61 6d 65 20 61 70 70 65 61 72 73 20 69 6e 20 | .with.a.service.name.appears.in. |
| e8e00 | 6a 6f 75 72 6e 61 6c 64 20 6c 6f 67 73 2e 20 59 6f 75 20 63 61 6e 20 70 61 73 73 20 76 61 72 69 | journald.logs..You.can.pass.vari |
| e8e20 | 61 62 6c 65 73 2c 20 61 72 67 75 6d 65 6e 74 73 2c 20 61 6e 64 20 61 20 66 75 6c 6c 20 6d 61 74 | ables,.arguments,.and.a.full.mat |
| e8e40 | 63 68 69 6e 67 20 73 74 72 69 6e 67 20 74 6f 20 74 68 65 20 73 63 72 69 70 74 2e 00 45 76 65 6e | ching.string.to.the.script..Even |
| e8e60 | 74 20 68 61 6e 64 6c 65 72 20 73 63 72 69 70 74 00 45 76 65 6e 74 20 68 61 6e 64 6c 65 72 20 74 | t.handler.script.Event.handler.t |
| e8e80 | 68 61 74 20 6d 6f 6e 69 74 6f 72 73 20 74 68 65 20 73 74 61 74 65 20 6f 66 20 69 6e 74 65 72 66 | hat.monitors.the.state.of.interf |
| e8ea0 | 61 63 65 20 65 74 68 30 2e 00 45 76 65 72 79 20 4e 41 54 20 72 75 6c 65 20 68 61 73 20 61 20 74 | ace.eth0..Every.NAT.rule.has.a.t |
| e8ec0 | 72 61 6e 73 6c 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 20 64 65 66 69 6e 65 64 2e 20 54 68 65 20 | ranslation.command.defined..The. |
| e8ee0 | 61 64 64 72 65 73 73 20 64 65 66 69 6e 65 64 20 66 6f 72 20 74 68 65 20 74 72 61 6e 73 6c 61 74 | address.defined.for.the.translat |
| e8f00 | 69 6f 6e 20 69 73 20 74 68 65 20 61 64 64 72 65 73 73 20 75 73 65 64 20 77 68 65 6e 20 74 68 65 | ion.is.the.address.used.when.the |
| e8f20 | 20 61 64 64 72 65 73 73 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 69 6e 20 61 20 70 61 63 6b 65 74 | .address.information.in.a.packet |
| e8f40 | 20 69 73 20 72 65 70 6c 61 63 65 64 2e 00 45 76 65 72 79 20 53 4e 41 54 36 36 20 72 75 6c 65 20 | .is.replaced..Every.SNAT66.rule. |
| e8f60 | 68 61 73 20 61 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 20 64 65 66 69 6e 65 | has.a.translation.command.define |
| e8f80 | 64 2e 20 54 68 65 20 70 72 65 66 69 78 20 64 65 66 69 6e 65 64 20 66 6f 72 20 74 68 65 20 74 72 | d..The.prefix.defined.for.the.tr |
| e8fa0 | 61 6e 73 6c 61 74 69 6f 6e 20 69 73 20 74 68 65 20 70 72 65 66 69 78 20 75 73 65 64 20 77 68 65 | anslation.is.the.prefix.used.whe |
| e8fc0 | 6e 20 74 68 65 20 61 64 64 72 65 73 73 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 69 6e 20 61 20 70 | n.the.address.information.in.a.p |
| e8fe0 | 61 63 6b 65 74 20 69 73 20 72 65 70 6c 61 63 65 64 2e e3 80 81 00 45 76 65 72 79 20 53 53 48 20 | acket.is.replaced.....Every.SSH. |
| e9000 | 6b 65 79 20 63 6f 6d 65 73 20 69 6e 20 74 68 72 65 65 20 70 61 72 74 73 3a 00 45 76 65 72 79 20 | key.comes.in.three.parts:.Every. |
| e9020 | 53 53 48 20 70 75 62 6c 69 63 20 6b 65 79 20 70 6f 72 74 69 6f 6e 20 72 65 66 65 72 65 6e 63 65 | SSH.public.key.portion.reference |
| e9040 | 64 20 62 79 20 60 3c 69 64 65 6e 74 69 66 69 65 72 3e 60 20 72 65 71 75 69 72 65 73 20 74 68 65 | d.by.`<identifier>`.requires.the |
| e9060 | 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 66 20 74 68 65 20 60 3c 74 79 70 65 3e 60 20 6f | .configuration.of.the.`<type>`.o |
| e9080 | 66 20 70 75 62 6c 69 63 2d 6b 65 79 20 75 73 65 64 2e 20 54 68 69 73 20 74 79 70 65 20 63 61 6e | f.public-key.used..This.type.can |
| e90a0 | 20 62 65 20 61 6e 79 20 6f 66 3a 00 45 76 65 72 79 20 55 44 50 20 70 6f 72 74 20 77 68 69 63 68 | .be.any.of:.Every.UDP.port.which |
| e90c0 | 20 77 69 6c 6c 20 62 65 20 66 6f 72 77 61 72 64 20 72 65 71 75 69 72 65 73 20 6f 6e 65 20 75 6e | .will.be.forward.requires.one.un |
| e90e0 | 69 71 75 65 20 49 44 2e 20 43 75 72 72 65 6e 74 6c 79 20 77 65 20 73 75 70 70 6f 72 74 20 39 39 | ique.ID..Currently.we.support.99 |
| e9100 | 20 49 44 73 21 00 45 76 65 72 79 20 56 69 72 74 75 61 6c 20 45 74 68 65 72 6e 65 74 20 69 6e 74 | .IDs!.Every.Virtual.Ethernet.int |
| e9120 | 65 72 66 61 63 65 73 20 62 65 68 61 76 65 73 20 6c 69 6b 65 20 61 20 72 65 61 6c 20 45 74 68 65 | erfaces.behaves.like.a.real.Ethe |
| e9140 | 72 6e 65 74 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 65 79 20 63 61 6e 20 68 61 76 65 20 49 50 | rnet.interface..They.can.have.IP |
| e9160 | 76 34 2f 49 50 76 36 20 61 64 64 72 65 73 73 65 73 20 63 6f 6e 66 69 67 75 72 65 64 2c 20 6f 72 | v4/IPv6.addresses.configured,.or |
| e9180 | 20 63 61 6e 20 72 65 71 75 65 73 74 20 61 64 64 72 65 73 73 65 73 20 62 79 20 44 48 43 50 2f 20 | .can.request.addresses.by.DHCP/. |
| e91a0 | 44 48 43 50 76 36 20 61 6e 64 20 61 72 65 20 61 73 73 6f 63 69 61 74 65 64 2f 6d 61 70 70 65 64 | DHCPv6.and.are.associated/mapped |
| e91c0 | 20 77 69 74 68 20 61 20 72 65 61 6c 20 65 74 68 65 72 6e 65 74 20 70 6f 72 74 2e 20 54 68 69 73 | .with.a.real.ethernet.port..This |
| e91e0 | 20 61 6c 73 6f 20 6d 61 6b 65 73 20 50 73 65 75 64 6f 2d 45 74 68 65 72 6e 65 74 20 69 6e 74 65 | .also.makes.Pseudo-Ethernet.inte |
| e9200 | 72 66 61 63 65 73 20 69 6e 74 65 72 65 73 74 69 6e 67 20 66 6f 72 20 74 65 73 74 69 6e 67 20 70 | rfaces.interesting.for.testing.p |
| e9220 | 75 72 70 6f 73 65 73 2e 20 41 20 50 73 65 75 64 6f 2d 45 74 68 65 72 6e 65 74 20 64 65 76 69 63 | urposes..A.Pseudo-Ethernet.devic |
| e9240 | 65 20 77 69 6c 6c 20 69 6e 68 65 72 69 74 20 63 68 61 72 61 63 74 65 72 69 73 74 69 63 73 20 28 | e.will.inherit.characteristics.( |
| e9260 | 73 70 65 65 64 2c 20 64 75 70 6c 65 78 2c 20 2e 2e 2e 29 20 66 72 6f 6d 20 69 74 73 20 70 68 79 | speed,.duplex,....).from.its.phy |
| e9280 | 73 69 63 61 6c 20 70 61 72 65 6e 74 20 28 74 68 65 20 73 6f 20 63 61 6c 6c 65 64 20 6c 69 6e 6b | sical.parent.(the.so.called.link |
| e92a0 | 29 20 69 6e 74 65 72 66 61 63 65 2e 00 45 76 65 72 79 20 57 57 41 4e 20 63 6f 6e 6e 65 63 74 69 | ).interface..Every.WWAN.connecti |
| e92c0 | 6f 6e 20 72 65 71 75 69 72 65 73 20 61 6e 20 3a 61 62 62 72 3a 60 41 50 4e 20 28 41 63 63 65 73 | on.requires.an.:abbr:`APN.(Acces |
| e92e0 | 73 20 50 6f 69 6e 74 20 4e 61 6d 65 29 60 20 77 68 69 63 68 20 69 73 20 75 73 65 64 20 62 79 20 | s.Point.Name)`.which.is.used.by. |
| e9300 | 74 68 65 20 63 6c 69 65 6e 74 20 74 6f 20 64 69 61 6c 20 69 6e 74 6f 20 74 68 65 20 49 53 50 73 | the.client.to.dial.into.the.ISPs |
| e9320 | 20 6e 65 74 77 6f 72 6b 2e 20 54 68 69 73 20 69 73 20 61 20 6d 61 6e 64 61 74 6f 72 79 20 70 61 | .network..This.is.a.mandatory.pa |
| e9340 | 72 61 6d 65 74 65 72 2e 20 43 6f 6e 74 61 63 74 20 79 6f 75 72 20 53 65 72 76 69 63 65 20 50 72 | rameter..Contact.your.Service.Pr |
| e9360 | 6f 76 69 64 65 72 20 66 6f 72 20 63 6f 72 72 65 63 74 20 41 50 4e 2e 00 45 76 65 72 79 20 63 6f | ovider.for.correct.APN..Every.co |
| e9380 | 6e 6e 65 63 74 69 6f 6e 2f 72 65 6d 6f 74 65 2d 61 63 63 65 73 73 20 70 6f 6f 6c 20 77 65 20 63 | nnection/remote-access.pool.we.c |
| e93a0 | 6f 6e 66 69 67 75 72 65 20 61 6c 73 6f 20 6e 65 65 64 73 20 61 20 70 6f 6f 6c 20 77 68 65 72 65 | onfigure.also.needs.a.pool.where |
| e93c0 | 20 77 65 20 63 61 6e 20 64 72 61 77 20 6f 75 72 20 63 6c 69 65 6e 74 20 49 50 20 61 64 64 72 65 | .we.can.draw.our.client.IP.addre |
| e93e0 | 73 73 65 73 20 66 72 6f 6d 2e 20 57 65 20 70 72 6f 76 69 64 65 20 6f 6e 65 20 49 50 76 34 20 61 | sses.from..We.provide.one.IPv4.a |
| e9400 | 6e 64 20 49 50 76 36 20 70 6f 6f 6c 2e 20 41 75 74 68 6f 72 69 7a 65 64 20 63 6c 69 65 6e 74 73 | nd.IPv6.pool..Authorized.clients |
| e9420 | 20 77 69 6c 6c 20 72 65 63 65 69 76 65 20 61 6e 20 49 50 76 34 20 61 64 64 72 65 73 73 20 66 72 | .will.receive.an.IPv4.address.fr |
| e9440 | 6f 6d 20 74 68 65 20 31 39 32 2e 30 2e 32 2e 31 32 38 2f 32 35 20 70 72 65 66 69 78 20 61 6e 64 | om.the.192.0.2.128/25.prefix.and |
| e9460 | 20 61 6e 20 49 50 76 36 20 61 64 64 72 65 73 73 20 66 72 6f 6d 20 74 68 65 20 32 30 30 31 3a 64 | .an.IPv6.address.from.the.2001:d |
| e9480 | 62 38 3a 32 30 30 30 3a 3a 2f 36 34 20 70 72 65 66 69 78 2e 20 57 65 20 63 61 6e 20 61 6c 73 6f | b8:2000::/64.prefix..We.can.also |
| e94a0 | 20 73 65 6e 64 20 73 6f 6d 65 20 44 4e 53 20 6e 61 6d 65 73 65 72 76 65 72 73 20 64 6f 77 6e 20 | .send.some.DNS.nameservers.down. |
| e94c0 | 66 6f 72 20 6f 75 72 20 63 6c 69 65 6e 74 73 20 74 6f 20 75 73 65 20 77 69 74 68 20 74 68 65 69 | for.our.clients.to.use.with.thei |
| e94e0 | 72 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 45 76 65 72 79 20 63 6f 6e 6e 65 63 74 69 6f 6e 2f 72 | r.connection..Every.connection/r |
| e9500 | 65 6d 6f 74 65 2d 61 63 63 65 73 73 20 70 6f 6f 6c 20 77 65 20 63 6f 6e 66 69 67 75 72 65 20 61 | emote-access.pool.we.configure.a |
| e9520 | 6c 73 6f 20 6e 65 65 64 73 20 61 20 70 6f 6f 6c 20 77 68 65 72 65 20 77 65 20 63 61 6e 20 64 72 | lso.needs.a.pool.where.we.can.dr |
| e9540 | 61 77 20 6f 75 72 20 63 6c 69 65 6e 74 20 49 50 20 61 64 64 72 65 73 73 65 73 20 66 72 6f 6d 2e | aw.our.client.IP.addresses.from. |
| e9560 | 20 57 65 20 70 72 6f 76 69 64 65 20 6f 6e 65 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 70 6f | .We.provide.one.IPv4.and.IPv6.po |
| e9580 | 6f 6c 2e 20 41 75 74 68 6f 72 69 7a 65 64 20 63 6c 69 65 6e 74 73 20 77 69 6c 6c 20 72 65 63 65 | ol..Authorized.clients.will.rece |
| e95a0 | 69 76 65 20 61 6e 20 49 50 76 34 20 61 64 64 72 65 73 73 20 66 72 6f 6d 20 74 68 65 20 31 39 32 | ive.an.IPv4.address.from.the.192 |
| e95c0 | 2e 30 2e 32 2e 31 32 38 2f 32 35 20 70 72 65 66 69 78 20 61 6e 64 20 61 6e 20 49 50 76 36 20 61 | .0.2.128/25.prefix.and.an.IPv6.a |
| e95e0 | 64 64 72 65 73 73 20 66 72 6f 6d 20 74 68 65 20 32 30 30 31 3a 64 62 38 3a 32 30 30 30 3a 3a 2f | ddress.from.the.2001:db8:2000::/ |
| e9600 | 36 34 20 70 72 65 66 69 78 2e 20 57 65 20 63 61 6e 20 61 6c 73 6f 20 73 65 6e 64 20 73 6f 6d 65 | 64.prefix..We.can.also.send.some |
| e9620 | 20 44 4e 53 20 6e 61 6d 65 73 65 72 76 65 72 73 20 64 6f 77 6e 20 74 6f 20 6f 75 72 20 63 6c 69 | .DNS.nameservers.down.to.our.cli |
| e9640 | 65 6e 74 73 20 75 73 65 64 20 6f 6e 20 74 68 65 69 72 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 45 | ents.used.on.their.connection..E |
| e9660 | 76 65 72 79 20 63 6f 6e 6e 65 63 74 69 6f 6e 2f 72 65 6d 6f 74 65 2d 61 63 63 65 73 73 20 70 6f | very.connection/remote-access.po |
| e9680 | 6f 6c 20 77 65 20 63 6f 6e 66 69 67 75 72 65 20 61 6c 73 6f 20 6e 65 65 64 73 20 61 20 70 6f 6f | ol.we.configure.also.needs.a.poo |
| e96a0 | 6c 20 77 68 65 72 65 20 77 65 20 63 61 6e 20 64 72 61 77 20 6f 75 72 20 63 6c 69 65 6e 74 20 49 | l.where.we.can.draw.our.client.I |
| e96c0 | 50 20 61 64 64 72 65 73 73 65 73 20 66 72 6f 6d 2e 20 57 65 20 70 72 6f 76 69 64 65 20 6f 6e 65 | P.addresses.from..We.provide.one |
| e96e0 | 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 70 6f 6f 6c 2e 20 41 75 74 68 6f 72 69 7a 65 64 20 | .IPv4.and.IPv6.pool..Authorized. |
| e9700 | 63 6c 69 65 6e 74 73 20 77 69 6c 6c 20 72 65 63 65 69 76 65 20 61 6e 20 49 50 76 34 20 61 64 64 | clients.will.receive.an.IPv4.add |
| e9720 | 72 65 73 73 20 66 72 6f 6d 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 49 50 76 34 20 70 72 | ress.from.the.configured.IPv4.pr |
| e9740 | 65 66 69 78 20 61 6e 64 20 61 6e 20 49 50 76 36 20 61 64 64 72 65 73 73 20 66 72 6f 6d 20 74 68 | efix.and.an.IPv6.address.from.th |
| e9760 | 65 20 49 50 76 36 20 70 72 65 66 69 78 2e 20 57 65 20 63 61 6e 20 61 6c 73 6f 20 73 65 6e 64 20 | e.IPv6.prefix..We.can.also.send. |
| e9780 | 73 6f 6d 65 20 44 4e 53 20 6e 61 6d 65 73 65 72 76 65 72 73 20 64 6f 77 6e 20 74 6f 20 6f 75 72 | some.DNS.nameservers.down.to.our |
| e97a0 | 20 63 6c 69 65 6e 74 73 20 75 73 65 64 20 6f 6e 20 74 68 65 69 72 20 63 6f 6e 6e 65 63 74 69 6f | .clients.used.on.their.connectio |
| e97c0 | 6e 2e 00 45 78 61 6d 70 6c 65 00 45 78 61 6d 70 6c 65 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e | n..Example.Example.Configuration |
| e97e0 | 00 45 78 61 6d 70 6c 65 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 20 57 69 46 69 2d 36 20 61 | .Example.Configuration:.WiFi-6.a |
| e9800 | 74 20 32 2e 34 47 48 7a 00 45 78 61 6d 70 6c 65 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 20 | t.2.4GHz.Example.Configuration:. |
| e9820 | 57 69 46 69 2d 36 65 20 61 74 20 36 47 48 7a 00 45 78 61 6d 70 6c 65 20 49 50 76 36 20 6f 6e 6c | WiFi-6e.at.6GHz.Example.IPv6.onl |
| e9840 | 79 3a 00 45 78 61 6d 70 6c 65 20 4e 65 74 77 6f 72 6b 00 45 78 61 6d 70 6c 65 20 50 61 72 74 69 | y:.Example.Network.Example.Parti |
| e9860 | 61 6c 20 43 6f 6e 66 69 67 00 45 78 61 6d 70 6c 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 | al.Config.Example.configuration. |
| e9880 | 66 6f 72 20 57 69 72 65 47 75 61 72 64 20 69 6e 74 65 72 66 61 63 65 73 3a 00 45 78 61 6d 70 6c | for.WireGuard.interfaces:.Exampl |
| e98a0 | 65 20 66 6f 72 20 63 68 61 6e 67 69 6e 67 20 72 61 74 65 2d 6c 69 6d 69 74 20 76 69 61 20 52 41 | e.for.changing.rate-limit.via.RA |
| e98c0 | 44 49 55 53 20 43 6f 41 2e 00 45 78 61 6d 70 6c 65 20 66 6f 72 20 63 6f 6e 66 69 67 75 72 69 6e | DIUS.CoA..Example.for.configurin |
| e98e0 | 67 20 61 20 73 69 6d 70 6c 65 20 4c 32 54 50 20 6f 76 65 72 20 49 50 73 65 63 20 56 50 4e 20 66 | g.a.simple.L2TP.over.IPsec.VPN.f |
| e9900 | 6f 72 20 72 65 6d 6f 74 65 20 61 63 63 65 73 73 20 28 77 6f 72 6b 73 20 77 69 74 68 20 6e 61 74 | or.remote.access.(works.with.nat |
| e9920 | 69 76 65 20 57 69 6e 64 6f 77 73 20 61 6e 64 20 4d 61 63 20 56 50 4e 20 63 6c 69 65 6e 74 73 29 | ive.Windows.and.Mac.VPN.clients) |
| e9940 | 3a 00 45 78 61 6d 70 6c 65 20 6f 66 20 72 65 64 69 72 65 63 74 69 6f 6e 3a 00 45 78 61 6d 70 6c | :.Example.of.redirection:.Exampl |
| e9960 | 65 20 6f 66 20 73 65 74 74 69 6e 67 20 75 70 20 61 20 62 61 73 69 63 20 43 47 4e 41 54 20 63 6f | e.of.setting.up.a.basic.CGNAT.co |
| e9980 | 6e 66 69 67 75 72 61 74 69 6f 6e 3a 20 49 6e 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 | nfiguration:.In.the.following.ex |
| e99a0 | 61 6d 70 6c 65 2c 20 77 65 20 64 65 66 69 6e 65 20 61 6e 20 65 78 74 65 72 6e 61 6c 20 70 6f 6f | ample,.we.define.an.external.poo |
| e99c0 | 6c 20 6e 61 6d 65 64 20 60 65 78 74 2d 31 60 20 77 69 74 68 20 6f 6e 65 20 65 78 74 65 72 6e 61 | l.named.`ext-1`.with.one.externa |
| e99e0 | 6c 20 49 50 20 61 64 64 72 65 73 73 00 45 78 61 6d 70 6c 65 20 73 79 6e 70 72 6f 78 79 00 45 78 | l.IP.address.Example.synproxy.Ex |
| e9a00 | 61 6d 70 6c 65 2c 20 66 72 6f 6d 20 72 61 64 69 75 73 2d 73 65 72 76 65 72 20 73 65 6e 64 20 63 | ample,.from.radius-server.send.c |
| e9a20 | 6f 6d 6d 61 6e 64 20 66 6f 72 20 64 69 73 63 6f 6e 6e 65 63 74 20 63 6c 69 65 6e 74 20 77 69 74 | ommand.for.disconnect.client.wit |
| e9a40 | 68 20 75 73 65 72 6e 61 6d 65 20 74 65 73 74 00 45 78 61 6d 70 6c 65 3a 00 45 78 61 6d 70 6c 65 | h.username.test.Example:.Example |
| e9a60 | 3a 20 41 20 68 6f 75 73 65 68 6f 6c 64 20 6d 69 67 68 74 20 6e 65 65 64 20 31 30 30 30 20 70 6f | :.A.household.might.need.1000.po |
| e9a80 | 72 74 73 20 74 6f 20 65 6e 73 75 72 65 20 73 6d 6f 6f 74 68 20 6f 70 65 72 61 74 69 6f 6e 20 66 | rts.to.ensure.smooth.operation.f |
| e9aa0 | 6f 72 20 6d 75 6c 74 69 70 6c 65 20 64 65 76 69 63 65 73 20 61 6e 64 20 61 70 70 6c 69 63 61 74 | or.multiple.devices.and.applicat |
| e9ac0 | 69 6f 6e 73 2e 00 45 78 61 6d 70 6c 65 3a 20 44 65 6c 65 67 61 74 65 20 61 20 2f 36 34 20 70 72 | ions..Example:.Delegate.a./64.pr |
| e9ae0 | 65 66 69 78 20 74 6f 20 69 6e 74 65 72 66 61 63 65 20 65 74 68 38 20 77 68 69 63 68 20 77 69 6c | efix.to.interface.eth8.which.wil |
| e9b00 | 6c 20 75 73 65 20 61 20 6c 6f 63 61 6c 20 61 64 64 72 65 73 73 20 6f 6e 20 74 68 69 73 20 72 6f | l.use.a.local.address.on.this.ro |
| e9b20 | 75 74 65 72 20 6f 66 20 60 60 3c 70 72 65 66 69 78 3e 3a 3a 66 66 66 66 60 60 2c 20 61 73 20 74 | uter.of.``<prefix>::ffff``,.as.t |
| e9b40 | 68 65 20 61 64 64 72 65 73 73 20 36 35 35 33 34 20 77 69 6c 6c 20 63 6f 72 72 65 73 70 6f 6e 64 | he.address.65534.will.correspond |
| e9b60 | 20 74 6f 20 60 60 66 66 66 66 60 60 20 69 6e 20 68 65 78 61 64 65 63 69 6d 61 6c 20 6e 6f 74 61 | .to.``ffff``.in.hexadecimal.nota |
| e9b80 | 74 69 6f 6e 2e 00 45 78 61 6d 70 6c 65 3a 20 46 6f 72 20 61 6e 20 7e 38 2c 30 30 30 20 68 6f 73 | tion..Example:.For.an.~8,000.hos |
| e9ba0 | 74 20 6e 65 74 77 6f 72 6b 20 61 20 73 6f 75 72 63 65 20 4e 41 54 20 70 6f 6f 6c 20 6f 66 20 33 | t.network.a.source.NAT.pool.of.3 |
| e9bc0 | 32 20 49 50 20 61 64 64 72 65 73 73 65 73 20 69 73 20 72 65 63 6f 6d 6d 65 6e 64 65 64 2e 00 45 | 2.IP.addresses.is.recommended..E |
| e9be0 | 78 61 6d 70 6c 65 3a 20 49 66 20 49 44 20 69 73 20 31 20 61 6e 64 20 74 68 65 20 63 6c 69 65 6e | xample:.If.ID.is.1.and.the.clien |
| e9c00 | 74 20 69 73 20 64 65 6c 65 67 61 74 65 64 20 61 6e 20 49 50 76 36 20 70 72 65 66 69 78 20 32 30 | t.is.delegated.an.IPv6.prefix.20 |
| e9c20 | 30 31 3a 64 62 38 3a 66 66 66 66 3a 3a 2f 34 38 2c 20 64 68 63 70 36 63 20 77 69 6c 6c 20 63 6f | 01:db8:ffff::/48,.dhcp6c.will.co |
| e9c40 | 6d 62 69 6e 65 20 74 68 65 20 74 77 6f 20 76 61 6c 75 65 73 20 69 6e 74 6f 20 61 20 73 69 6e 67 | mbine.the.two.values.into.a.sing |
| e9c60 | 6c 65 20 49 50 76 36 20 70 72 65 66 69 78 2c 20 32 30 30 31 3a 64 62 38 3a 66 66 66 66 3a 31 3a | le.IPv6.prefix,.2001:db8:ffff:1: |
| e9c80 | 3a 2f 36 34 2c 20 61 6e 64 20 77 69 6c 6c 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 70 72 65 | :/64,.and.will.configure.the.pre |
| e9ca0 | 66 69 78 20 6f 6e 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 69 6e 74 65 72 66 61 63 65 2e 00 | fix.on.the.specified.interface.. |
| e9cc0 | 45 78 61 6d 70 6c 65 3a 20 4d 69 72 72 6f 72 20 74 68 65 20 69 6e 62 6f 75 6e 64 20 74 72 61 66 | Example:.Mirror.the.inbound.traf |
| e9ce0 | 66 69 63 20 6f 66 20 60 62 6f 6e 64 31 60 20 70 6f 72 74 20 74 6f 20 60 65 74 68 33 60 00 45 78 | fic.of.`bond1`.port.to.`eth3`.Ex |
| e9d00 | 61 6d 70 6c 65 3a 20 4d 69 72 72 6f 72 20 74 68 65 20 69 6e 62 6f 75 6e 64 20 74 72 61 66 66 69 | ample:.Mirror.the.inbound.traffi |
| e9d20 | 63 20 6f 66 20 60 62 72 31 60 20 70 6f 72 74 20 74 6f 20 60 65 74 68 33 60 00 45 78 61 6d 70 6c | c.of.`br1`.port.to.`eth3`.Exampl |
| e9d40 | 65 3a 20 4d 69 72 72 6f 72 20 74 68 65 20 69 6e 62 6f 75 6e 64 20 74 72 61 66 66 69 63 20 6f 66 | e:.Mirror.the.inbound.traffic.of |
| e9d60 | 20 60 65 74 68 31 60 20 70 6f 72 74 20 74 6f 20 60 65 74 68 33 60 00 45 78 61 6d 70 6c 65 3a 20 | .`eth1`.port.to.`eth3`.Example:. |
| e9d80 | 4d 69 72 72 6f 72 20 74 68 65 20 6f 75 74 62 6f 75 6e 64 20 74 72 61 66 66 69 63 20 6f 66 20 60 | Mirror.the.outbound.traffic.of.` |
| e9da0 | 62 6f 6e 64 31 60 20 70 6f 72 74 20 74 6f 20 60 65 74 68 33 60 00 45 78 61 6d 70 6c 65 3a 20 4d | bond1`.port.to.`eth3`.Example:.M |
| e9dc0 | 69 72 72 6f 72 20 74 68 65 20 6f 75 74 62 6f 75 6e 64 20 74 72 61 66 66 69 63 20 6f 66 20 60 62 | irror.the.outbound.traffic.of.`b |
| e9de0 | 72 31 60 20 70 6f 72 74 20 74 6f 20 60 65 74 68 33 60 00 45 78 61 6d 70 6c 65 3a 20 4d 69 72 72 | r1`.port.to.`eth3`.Example:.Mirr |
| e9e00 | 6f 72 20 74 68 65 20 6f 75 74 62 6f 75 6e 64 20 74 72 61 66 66 69 63 20 6f 66 20 60 65 74 68 31 | or.the.outbound.traffic.of.`eth1 |
| e9e20 | 60 20 70 6f 72 74 20 74 6f 20 60 65 74 68 33 60 00 45 78 61 6d 70 6c 65 3a 20 50 72 65 66 69 78 | `.port.to.`eth3`.Example:.Prefix |
| e9e40 | 20 4c 69 73 74 73 00 45 78 61 6d 70 6c 65 3a 20 53 65 74 20 60 65 74 68 30 60 20 6d 65 6d 62 65 | .Lists.Example:.Set.`eth0`.membe |
| e9e60 | 72 20 70 6f 72 74 20 74 6f 20 62 65 20 61 6c 6c 6f 77 65 64 20 56 4c 41 4e 20 34 00 45 78 61 6d | r.port.to.be.allowed.VLAN.4.Exam |
| e9e80 | 70 6c 65 3a 20 53 65 74 20 60 65 74 68 30 60 20 6d 65 6d 62 65 72 20 70 6f 72 74 20 74 6f 20 62 | ple:.Set.`eth0`.member.port.to.b |
| e9ea0 | 65 20 61 6c 6c 6f 77 65 64 20 56 4c 41 4e 20 36 2d 38 00 45 78 61 6d 70 6c 65 3a 20 53 65 74 20 | e.allowed.VLAN.6-8.Example:.Set. |
| e9ec0 | 60 65 74 68 30 60 20 6d 65 6d 62 65 72 20 70 6f 72 74 20 74 6f 20 62 65 20 6e 61 74 69 76 65 20 | `eth0`.member.port.to.be.native. |
| e9ee0 | 56 4c 41 4e 20 32 00 45 78 61 6d 70 6c 65 3a 20 74 6f 20 62 65 20 61 70 70 65 6e 64 65 64 20 69 | VLAN.2.Example:.to.be.appended.i |
| e9f00 | 73 20 73 65 74 20 74 6f 20 60 60 76 79 6f 73 2e 6e 65 74 60 60 20 61 6e 64 20 74 68 65 20 55 52 | s.set.to.``vyos.net``.and.the.UR |
| e9f20 | 4c 20 72 65 63 65 69 76 65 64 20 69 73 20 60 60 77 77 77 2f 66 6f 6f 2e 68 74 6d 6c 60 60 2c 20 | L.received.is.``www/foo.html``,. |
| e9f40 | 74 68 65 20 73 79 73 74 65 6d 20 77 69 6c 6c 20 75 73 65 20 74 68 65 20 67 65 6e 65 72 61 74 65 | the.system.will.use.the.generate |
| e9f60 | 64 2c 20 66 69 6e 61 6c 20 55 52 4c 20 6f 66 20 60 60 77 77 77 2e 76 79 6f 73 2e 6e 65 74 2f 66 | d,.final.URL.of.``www.vyos.net/f |
| e9f80 | 6f 6f 2e 68 74 6d 6c 60 60 2e 00 45 78 61 6d 70 6c 65 73 00 45 78 61 6d 70 6c 65 73 20 6f 66 20 | oo.html``..Examples.Examples.of. |
| e9fa0 | 70 6f 6c 69 63 69 65 73 20 75 73 61 67 65 3a 00 45 78 61 6d 70 6c 65 73 3a 00 45 78 63 6c 75 64 | policies.usage:.Examples:.Exclud |
| e9fc0 | 65 20 49 50 20 61 64 64 72 65 73 73 65 73 20 66 72 6f 6d 20 60 60 56 52 52 50 20 70 61 63 6b 65 | e.IP.addresses.from.``VRRP.packe |
| e9fe0 | 74 73 60 60 2e 20 54 68 69 73 20 6f 70 74 69 6f 6e 20 60 60 65 78 63 6c 75 64 65 64 2d 61 64 64 | ts``..This.option.``excluded-add |
| ea000 | 72 65 73 73 60 60 20 69 73 20 75 73 65 64 20 77 68 65 6e 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 | ress``.is.used.when.you.want.to. |
| ea020 | 73 65 74 20 49 50 76 34 20 2b 20 49 50 76 36 20 61 64 64 72 65 73 73 65 73 20 6f 6e 20 74 68 65 | set.IPv4.+.IPv6.addresses.on.the |
| ea040 | 20 73 61 6d 65 20 76 69 72 74 75 61 6c 20 69 6e 74 65 72 66 61 63 65 20 6f 72 20 77 68 65 6e 20 | .same.virtual.interface.or.when. |
| ea060 | 75 73 65 64 20 6d 6f 72 65 20 74 68 61 6e 20 32 30 20 49 50 20 61 64 64 72 65 73 73 65 73 2e 00 | used.more.than.20.IP.addresses.. |
| ea080 | 45 78 63 6c 75 64 65 20 60 3c 65 78 63 6c 75 64 65 2d 70 72 65 66 69 78 3e 60 20 66 72 6f 6d 20 | Exclude.`<exclude-prefix>`.from. |
| ea0a0 | 60 3c 70 64 2d 70 72 65 66 69 78 3e 60 2e 00 45 78 63 6c 75 64 65 20 61 64 64 72 65 73 73 00 45 | `<pd-prefix>`..Exclude.address.E |
| ea0c0 | 78 63 6c 75 64 65 20 74 72 61 66 66 69 63 00 45 78 69 74 20 70 6f 6c 69 63 79 20 6f 6e 20 6d 61 | xclude.traffic.Exit.policy.on.ma |
| ea0e0 | 74 63 68 3a 20 67 6f 20 74 6f 20 6e 65 78 74 20 73 65 71 75 65 6e 63 65 20 6e 75 6d 62 65 72 2e | tch:.go.to.next.sequence.number. |
| ea100 | 00 45 78 69 74 20 70 6f 6c 69 63 79 20 6f 6e 20 6d 61 74 63 68 3a 20 67 6f 20 74 6f 20 72 75 6c | .Exit.policy.on.match:.go.to.rul |
| ea120 | 65 20 3c 31 2d 36 35 35 33 35 3e 00 45 78 70 65 64 69 74 65 64 20 66 6f 72 77 61 72 64 69 6e 67 | e.<1-65535>.Expedited.forwarding |
| ea140 | 20 28 45 46 29 00 45 78 70 6c 61 6e 61 74 69 6f 6e 00 45 78 70 6c 69 63 69 74 6c 79 20 64 65 63 | .(EF).Explanation.Explicitly.dec |
| ea160 | 6c 61 72 65 20 49 44 20 66 6f 72 20 74 68 69 73 20 6d 69 6e 69 6f 6e 20 74 6f 20 75 73 65 20 28 | lare.ID.for.this.minion.to.use.( |
| ea180 | 64 65 66 61 75 6c 74 3a 20 68 6f 73 74 6e 61 6d 65 29 00 45 78 74 65 72 6e 61 6c 20 44 48 43 50 | default:.hostname).External.DHCP |
| ea1a0 | 76 36 20 73 65 72 76 65 72 20 69 73 20 61 74 20 32 30 30 31 3a 64 62 38 3a 3a 34 00 45 78 74 65 | v6.server.is.at.2001:db8::4.Exte |
| ea1c0 | 72 6e 61 6c 20 52 6f 75 74 65 20 53 75 6d 6d 61 72 69 73 61 74 69 6f 6e 00 45 78 74 65 72 6e 61 | rnal.Route.Summarisation.Externa |
| ea1e0 | 6c 20 61 64 64 72 65 73 73 20 73 65 71 75 65 6e 63 65 73 00 45 78 74 65 72 6e 61 6c 20 61 74 74 | l.address.sequences.External.att |
| ea200 | 61 63 6b 3a 20 61 6e 20 61 74 74 61 63 6b 20 66 72 6f 6d 20 74 68 65 20 69 6e 74 65 72 6e 65 74 | ack:.an.attack.from.the.internet |
| ea220 | 20 74 6f 77 61 72 64 73 20 61 6e 20 69 6e 74 65 72 6e 61 6c 20 49 50 20 69 73 20 69 64 65 6e 74 | .towards.an.internal.IP.is.ident |
| ea240 | 69 66 79 2e 20 49 6e 20 74 68 69 73 20 63 61 73 65 2c 20 61 6c 6c 20 63 6f 6e 6e 65 63 74 69 6f | ify..In.this.case,.all.connectio |
| ea260 | 6e 73 20 74 6f 77 61 72 64 73 20 73 75 63 68 20 49 50 20 77 69 6c 6c 20 62 65 20 62 6c 6f 63 6b | ns.towards.such.IP.will.be.block |
| ea280 | 65 64 00 46 51 2d 43 6f 44 65 6c 00 46 51 2d 43 6f 44 65 6c 20 66 69 67 68 74 73 20 62 75 66 66 | ed.FQ-CoDel.FQ-CoDel.fights.buff |
| ea2a0 | 65 72 62 6c 6f 61 74 20 61 6e 64 20 72 65 64 75 63 65 73 20 6c 61 74 65 6e 63 79 20 77 69 74 68 | erbloat.and.reduces.latency.with |
| ea2c0 | 6f 75 74 20 74 68 65 20 6e 65 65 64 20 6f 66 20 63 6f 6d 70 6c 65 78 20 63 6f 6e 66 69 67 75 72 | out.the.need.of.complex.configur |
| ea2e0 | 61 74 69 6f 6e 73 2e 20 49 74 20 68 61 73 20 62 65 63 6f 6d 65 20 74 68 65 20 6e 65 77 20 64 65 | ations..It.has.become.the.new.de |
| ea300 | 66 61 75 6c 74 20 51 75 65 75 65 69 6e 67 20 44 69 73 63 69 70 6c 69 6e 65 20 66 6f 72 20 74 68 | fault.Queueing.Discipline.for.th |
| ea320 | 65 20 69 6e 74 65 72 66 61 63 65 73 20 6f 66 20 73 6f 6d 65 20 47 4e 55 2f 4c 69 6e 75 78 20 64 | e.interfaces.of.some.GNU/Linux.d |
| ea340 | 69 73 74 72 69 62 75 74 69 6f 6e 73 2e 00 46 51 2d 43 6f 44 65 6c 20 69 73 20 62 61 73 65 64 20 | istributions..FQ-CoDel.is.based. |
| ea360 | 6f 6e 20 61 20 6d 6f 64 69 66 69 65 64 20 44 65 66 69 63 69 74 20 52 6f 75 6e 64 20 52 6f 62 69 | on.a.modified.Deficit.Round.Robi |
| ea380 | 6e 20 28 44 52 52 5f 29 20 71 75 65 75 65 20 73 63 68 65 64 75 6c 65 72 20 77 69 74 68 20 74 68 | n.(DRR_).queue.scheduler.with.th |
| ea3a0 | 65 20 43 6f 44 65 6c 20 41 63 74 69 76 65 20 51 75 65 75 65 20 4d 61 6e 61 67 65 6d 65 6e 74 20 | e.CoDel.Active.Queue.Management. |
| ea3c0 | 28 41 51 4d 29 20 61 6c 67 6f 72 69 74 68 6d 20 6f 70 65 72 61 74 69 6e 67 20 6f 6e 20 65 61 63 | (AQM).algorithm.operating.on.eac |
| ea3e0 | 68 20 71 75 65 75 65 2e 00 46 51 2d 43 6f 44 65 6c 20 69 73 20 74 75 6e 65 64 20 74 6f 20 72 75 | h.queue..FQ-CoDel.is.tuned.to.ru |
| ea400 | 6e 20 6f 6b 20 77 69 74 68 20 69 74 73 20 64 65 66 61 75 6c 74 20 70 61 72 61 6d 65 74 65 72 73 | n.ok.with.its.default.parameters |
| ea420 | 20 61 74 20 31 30 47 62 69 74 20 73 70 65 65 64 73 2e 20 49 74 20 6d 69 67 68 74 20 77 6f 72 6b | .at.10Gbit.speeds..It.might.work |
| ea440 | 20 6f 6b 20 74 6f 6f 20 61 74 20 6f 74 68 65 72 20 73 70 65 65 64 73 20 77 69 74 68 6f 75 74 20 | .ok.too.at.other.speeds.without. |
| ea460 | 63 6f 6e 66 69 67 75 72 69 6e 67 20 61 6e 79 74 68 69 6e 67 2c 20 62 75 74 20 68 65 72 65 20 77 | configuring.anything,.but.here.w |
| ea480 | 65 20 77 69 6c 6c 20 65 78 70 6c 61 69 6e 20 73 6f 6d 65 20 63 61 73 65 73 20 77 68 65 6e 20 79 | e.will.explain.some.cases.when.y |
| ea4a0 | 6f 75 20 6d 69 67 68 74 20 77 61 6e 74 20 74 6f 20 74 75 6e 65 20 69 74 73 20 70 61 72 61 6d 65 | ou.might.want.to.tune.its.parame |
| ea4c0 | 74 65 72 73 2e 00 46 51 2d 43 6f 64 65 6c 20 69 73 20 61 20 6e 6f 6e 2d 73 68 61 70 69 6e 67 20 | ters..FQ-Codel.is.a.non-shaping. |
| ea4e0 | 28 77 6f 72 6b 2d 63 6f 6e 73 65 72 76 69 6e 67 29 20 70 6f 6c 69 63 79 2c 20 73 6f 20 69 74 20 | (work-conserving).policy,.so.it. |
| ea500 | 77 69 6c 6c 20 6f 6e 6c 79 20 62 65 20 75 73 65 66 75 6c 20 69 66 20 79 6f 75 72 20 6f 75 74 67 | will.only.be.useful.if.your.outg |
| ea520 | 6f 69 6e 67 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 72 65 61 6c 6c 79 20 66 75 6c 6c 2e 20 49 | oing.interface.is.really.full..I |
| ea540 | 66 20 69 74 20 69 73 20 6e 6f 74 2c 20 56 79 4f 53 20 77 69 6c 6c 20 6e 6f 74 20 6f 77 6e 20 74 | f.it.is.not,.VyOS.will.not.own.t |
| ea560 | 68 65 20 71 75 65 75 65 20 61 6e 64 20 46 51 2d 43 6f 64 65 6c 20 77 69 6c 6c 20 68 61 76 65 20 | he.queue.and.FQ-Codel.will.have. |
| ea580 | 6e 6f 20 65 66 66 65 63 74 2e 20 49 66 20 74 68 65 72 65 20 69 73 20 62 61 6e 64 77 69 64 74 68 | no.effect..If.there.is.bandwidth |
| ea5a0 | 20 61 76 61 69 6c 61 62 6c 65 20 6f 6e 20 74 68 65 20 70 68 79 73 69 63 61 6c 20 6c 69 6e 6b 2c | .available.on.the.physical.link, |
| ea5c0 | 20 79 6f 75 20 63 61 6e 20 65 6d 62 65 64 5f 20 46 51 2d 43 6f 64 65 6c 20 69 6e 74 6f 20 61 20 | .you.can.embed_.FQ-Codel.into.a. |
| ea5e0 | 63 6c 61 73 73 66 75 6c 20 73 68 61 70 69 6e 67 20 70 6f 6c 69 63 79 20 74 6f 20 6d 61 6b 65 20 | classful.shaping.policy.to.make. |
| ea600 | 73 75 72 65 20 69 74 20 6f 77 6e 73 20 74 68 65 20 71 75 65 75 65 2e 20 49 66 20 79 6f 75 20 61 | sure.it.owns.the.queue..If.you.a |
| ea620 | 72 65 20 6e 6f 74 20 73 75 72 65 20 69 66 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 65 6d 62 65 64 | re.not.sure.if.you.need.to.embed |
| ea640 | 20 79 6f 75 72 20 46 51 2d 43 6f 44 65 6c 20 70 6f 6c 69 63 79 20 69 6e 74 6f 20 61 20 53 68 61 | .your.FQ-CoDel.policy.into.a.Sha |
| ea660 | 70 65 72 2c 20 64 6f 20 69 74 2e 00 46 52 52 00 46 52 52 20 6f 66 66 65 72 73 20 6f 6e 6c 79 20 | per,.do.it..FRR.FRR.offers.only. |
| ea680 | 70 61 72 74 69 61 6c 20 73 75 70 70 6f 72 74 20 66 6f 72 20 73 6f 6d 65 20 6f 66 20 74 68 65 20 | partial.support.for.some.of.the. |
| ea6a0 | 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 20 65 78 74 65 6e 73 69 6f 6e 73 20 74 68 61 74 | routing.protocol.extensions.that |
| ea6c0 | 20 61 72 65 20 75 73 65 64 20 77 69 74 68 20 4d 50 4c 53 2d 54 45 3b 20 69 74 20 64 6f 65 73 20 | .are.used.with.MPLS-TE;.it.does. |
| ea6e0 | 6e 6f 74 20 73 75 70 70 6f 72 74 20 61 20 63 6f 6d 70 6c 65 74 65 20 52 53 56 50 2d 54 45 20 73 | not.support.a.complete.RSVP-TE.s |
| ea700 | 6f 6c 75 74 69 6f 6e 2e 00 46 52 52 20 73 75 70 70 6f 72 74 73 20 61 20 6e 65 77 20 77 61 79 20 | olution..FRR.supports.a.new.way. |
| ea720 | 6f 66 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 56 4c 41 4e 2d 74 6f 2d 56 4e 49 20 6d 61 70 70 69 | of.configuring.VLAN-to-VNI.mappi |
| ea740 | 6e 67 73 20 66 6f 72 20 45 56 50 4e 2d 56 58 4c 41 4e 2c 20 77 68 65 6e 20 77 6f 72 6b 69 6e 67 | ngs.for.EVPN-VXLAN,.when.working |
| ea760 | 20 77 69 74 68 20 74 68 65 20 4c 69 6e 75 78 20 6b 65 72 6e 65 6c 2e 20 49 6e 20 74 68 69 73 20 | .with.the.Linux.kernel..In.this. |
| ea780 | 6e 65 77 20 77 61 79 2c 20 74 68 65 20 6d 61 70 70 69 6e 67 20 6f 66 20 61 20 56 4c 41 4e 20 74 | new.way,.the.mapping.of.a.VLAN.t |
| ea7a0 | 6f 20 61 20 3a 61 62 62 72 3a 60 56 4e 49 20 28 56 58 4c 41 4e 20 4e 65 74 77 6f 72 6b 20 49 64 | o.a.:abbr:`VNI.(VXLAN.Network.Id |
| ea7c0 | 65 6e 74 69 66 69 65 72 20 28 6f 72 20 56 58 4c 41 4e 20 53 65 67 6d 65 6e 74 20 49 44 29 29 60 | entifier.(or.VXLAN.Segment.ID))` |
| ea7e0 | 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 20 61 67 61 69 6e 73 74 20 61 20 63 6f 6e 74 61 69 6e | .is.configured.against.a.contain |
| ea800 | 65 72 20 56 58 4c 41 4e 20 69 6e 74 65 72 66 61 63 65 20 77 68 69 63 68 20 69 73 20 72 65 66 65 | er.VXLAN.interface.which.is.refe |
| ea820 | 72 72 65 64 20 74 6f 20 61 73 20 61 20 3a 61 62 62 72 3a 60 53 56 44 20 28 53 69 6e 67 6c 65 20 | rred.to.as.a.:abbr:`SVD.(Single. |
| ea840 | 56 58 4c 41 4e 20 64 65 76 69 63 65 29 60 2e 00 46 54 50 20 64 61 65 6d 6f 6e 00 46 61 63 69 6c | VXLAN.device)`..FTP.daemon.Facil |
| ea860 | 69 74 69 65 73 00 46 61 63 69 6c 69 74 69 65 73 20 63 61 6e 20 62 65 20 61 64 6a 75 73 74 65 64 | ities.Facilities.can.be.adjusted |
| ea880 | 20 74 6f 20 6d 65 65 74 20 74 68 65 20 6e 65 65 64 73 20 6f 66 20 74 68 65 20 75 73 65 72 3a 00 | .to.meet.the.needs.of.the.user:. |
| ea8a0 | 46 61 63 69 6c 69 74 79 20 43 6f 64 65 00 46 61 69 6c 6f 76 65 72 00 46 61 69 6c 6f 76 65 72 20 | Facility.Code.Failover.Failover. |
| ea8c0 | 52 6f 75 74 65 73 00 46 61 69 6c 6f 76 65 72 20 6d 65 63 68 61 6e 69 73 6d 20 74 6f 20 75 73 65 | Routes.Failover.mechanism.to.use |
| ea8e0 | 20 66 6f 72 20 63 6f 6e 6e 74 72 61 63 6b 2d 73 79 6e 63 2e 00 46 61 69 6c 6f 76 65 72 20 72 6f | .for.conntrack-sync..Failover.ro |
| ea900 | 75 74 65 73 20 61 72 65 20 6d 61 6e 75 61 6c 6c 79 20 63 6f 6e 66 69 67 75 72 65 64 20 72 6f 75 | utes.are.manually.configured.rou |
| ea920 | 74 65 73 2c 20 62 75 74 20 74 68 65 79 20 69 6e 73 74 61 6c 6c 20 74 6f 20 74 68 65 20 72 6f 75 | tes,.but.they.install.to.the.rou |
| ea940 | 74 69 6e 67 20 74 61 62 6c 65 20 69 66 20 74 68 65 20 68 65 61 6c 74 68 2d 63 68 65 63 6b 20 74 | ting.table.if.the.health-check.t |
| ea960 | 61 72 67 65 74 20 69 73 20 61 6c 69 76 65 2e 20 49 66 20 74 68 65 20 74 61 72 67 65 74 20 69 73 | arget.is.alive..If.the.target.is |
| ea980 | 20 6e 6f 74 20 61 6c 69 76 65 20 74 68 65 20 72 6f 75 74 65 20 69 73 20 72 65 6d 6f 76 65 64 20 | .not.alive.the.route.is.removed. |
| ea9a0 | 66 72 6f 6d 20 74 68 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 75 6e 74 69 6c 20 74 68 65 | from.the.routing.table.until.the |
| ea9c0 | 20 74 61 72 67 65 74 20 77 69 6c 6c 20 62 65 20 61 76 61 69 6c 61 62 6c 65 2e 00 46 61 69 6c 6f | .target.will.be.available..Failo |
| ea9e0 | 76 65 72 20 72 6f 75 74 65 73 20 61 72 65 20 6d 61 6e 75 61 6c 6c 79 20 63 6f 6e 66 69 67 75 72 | ver.routes.are.manually.configur |
| eaa00 | 65 64 20 72 6f 75 74 65 73 2c 20 62 75 74 20 74 68 65 79 20 6f 6e 6c 79 20 69 6e 73 74 61 6c 6c | ed.routes,.but.they.only.install |
| eaa20 | 20 74 6f 20 74 68 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 69 66 20 74 68 65 20 68 65 61 | .to.the.routing.table.if.the.hea |
| eaa40 | 6c 74 68 2d 63 68 65 63 6b 20 74 61 72 67 65 74 20 69 73 20 61 6c 69 76 65 2e 20 49 66 20 74 68 | lth-check.target.is.alive..If.th |
| eaa60 | 65 20 74 61 72 67 65 74 20 69 73 20 6e 6f 74 20 61 6c 69 76 65 20 74 68 65 20 72 6f 75 74 65 20 | e.target.is.not.alive.the.route. |
| eaa80 | 69 73 20 72 65 6d 6f 76 65 64 20 66 72 6f 6d 20 74 68 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c | is.removed.from.the.routing.tabl |
| eaaa0 | 65 20 75 6e 74 69 6c 20 74 68 65 20 74 61 72 67 65 74 20 62 65 63 6f 6d 65 73 20 61 76 61 69 6c | e.until.the.target.becomes.avail |
| eaac0 | 61 62 6c 65 2e 00 46 61 69 72 20 51 75 65 75 65 00 46 61 69 72 20 51 75 65 75 65 20 69 73 20 61 | able..Fair.Queue.Fair.Queue.is.a |
| eaae0 | 20 6e 6f 6e 2d 73 68 61 70 69 6e 67 20 28 77 6f 72 6b 2d 63 6f 6e 73 65 72 76 69 6e 67 29 20 70 | .non-shaping.(work-conserving).p |
| eab00 | 6f 6c 69 63 79 2c 20 73 6f 20 69 74 20 77 69 6c 6c 20 6f 6e 6c 79 20 62 65 20 75 73 65 66 75 6c | olicy,.so.it.will.only.be.useful |
| eab20 | 20 69 66 20 79 6f 75 72 20 6f 75 74 67 6f 69 6e 67 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 72 | .if.your.outgoing.interface.is.r |
| eab40 | 65 61 6c 6c 79 20 66 75 6c 6c 2e 20 49 66 20 69 74 20 69 73 20 6e 6f 74 2c 20 56 79 4f 53 20 77 | eally.full..If.it.is.not,.VyOS.w |
| eab60 | 69 6c 6c 20 6e 6f 74 20 6f 77 6e 20 74 68 65 20 71 75 65 75 65 20 61 6e 64 20 46 61 69 72 20 51 | ill.not.own.the.queue.and.Fair.Q |
| eab80 | 75 65 75 65 20 77 69 6c 6c 20 68 61 76 65 20 6e 6f 20 65 66 66 65 63 74 2e 20 49 66 20 74 68 65 | ueue.will.have.no.effect..If.the |
| eaba0 | 72 65 20 69 73 20 62 61 6e 64 77 69 64 74 68 20 61 76 61 69 6c 61 62 6c 65 20 6f 6e 20 74 68 65 | re.is.bandwidth.available.on.the |
| eabc0 | 20 70 68 79 73 69 63 61 6c 20 6c 69 6e 6b 2c 20 79 6f 75 20 63 61 6e 20 65 6d 62 65 64 5f 20 46 | .physical.link,.you.can.embed_.F |
| eabe0 | 61 69 72 2d 51 75 65 75 65 20 69 6e 74 6f 20 61 20 63 6c 61 73 73 66 75 6c 20 73 68 61 70 69 6e | air-Queue.into.a.classful.shapin |
| eac00 | 67 20 70 6f 6c 69 63 79 20 74 6f 20 6d 61 6b 65 20 73 75 72 65 20 69 74 20 6f 77 6e 73 20 74 68 | g.policy.to.make.sure.it.owns.th |
| eac20 | 65 20 71 75 65 75 65 2e 00 46 61 69 72 20 51 75 65 75 65 20 69 73 20 61 20 77 6f 72 6b 2d 63 6f | e.queue..Fair.Queue.is.a.work-co |
| eac40 | 6e 73 65 72 76 69 6e 67 20 73 63 68 65 64 75 6c 65 72 20 77 68 69 63 68 20 73 63 68 65 64 75 6c | nserving.scheduler.which.schedul |
| eac60 | 65 73 20 74 68 65 20 74 72 61 6e 73 6d 69 73 73 69 6f 6e 20 6f 66 20 70 61 63 6b 65 74 73 20 62 | es.the.transmission.of.packets.b |
| eac80 | 61 73 65 64 20 6f 6e 20 66 6c 6f 77 73 2c 20 74 68 61 74 20 69 73 2c 20 69 74 20 62 61 6c 61 6e | ased.on.flows,.that.is,.it.balan |
| eaca0 | 63 65 73 20 74 72 61 66 66 69 63 20 64 69 73 74 72 69 62 75 74 69 6e 67 20 69 74 20 74 68 72 6f | ces.traffic.distributing.it.thro |
| eacc0 | 75 67 68 20 64 69 66 66 65 72 65 6e 74 20 73 75 62 2d 71 75 65 75 65 73 20 69 6e 20 6f 72 64 65 | ugh.different.sub-queues.in.orde |
| eace0 | 72 20 74 6f 20 65 6e 73 75 72 65 20 66 61 69 72 6e 65 73 73 20 73 6f 20 74 68 61 74 20 65 61 63 | r.to.ensure.fairness.so.that.eac |
| ead00 | 68 20 66 6c 6f 77 20 69 73 20 61 62 6c 65 20 74 6f 20 73 65 6e 64 20 64 61 74 61 20 69 6e 20 74 | h.flow.is.able.to.send.data.in.t |
| ead20 | 75 72 6e 2c 20 70 72 65 76 65 6e 74 69 6e 67 20 61 6e 79 20 73 69 6e 67 6c 65 20 6f 6e 65 20 66 | urn,.preventing.any.single.one.f |
| ead40 | 72 6f 6d 20 64 72 6f 77 6e 69 6e 67 20 6f 75 74 20 74 68 65 20 72 65 73 74 2e 00 46 61 73 74 4e | rom.drowning.out.the.rest..FastN |
| ead60 | 65 74 4d 6f 6e 00 46 61 73 74 4e 65 74 4d 6f 6e 20 69 73 20 61 20 68 69 67 68 2d 70 65 72 66 6f | etMon.FastNetMon.is.a.high-perfo |
| ead80 | 72 6d 61 6e 63 65 20 44 44 6f 53 20 64 65 74 65 63 74 6f 72 2f 73 65 6e 73 6f 72 20 62 75 69 6c | rmance.DDoS.detector/sensor.buil |
| eada0 | 74 20 6f 6e 20 74 6f 70 20 6f 66 20 6d 75 6c 74 69 70 6c 65 20 70 61 63 6b 65 74 20 63 61 70 74 | t.on.top.of.multiple.packet.capt |
| eadc0 | 75 72 65 20 65 6e 67 69 6e 65 73 3a 20 4e 65 74 46 6c 6f 77 2c 20 49 50 46 49 58 2c 20 73 46 6c | ure.engines:.NetFlow,.IPFIX,.sFl |
| eade0 | 6f 77 2c 20 41 46 5f 50 41 43 4b 45 54 20 28 70 6f 72 74 20 6d 69 72 72 6f 72 29 2e 20 49 74 20 | ow,.AF_PACKET.(port.mirror)..It. |
| eae00 | 63 61 6e 20 64 65 74 65 63 74 20 68 6f 73 74 73 20 69 6e 20 74 68 65 20 64 65 70 6c 6f 79 65 64 | can.detect.hosts.in.the.deployed |
| eae20 | 20 6e 65 74 77 6f 72 6b 20 73 65 6e 64 69 6e 67 20 6f 72 20 72 65 63 65 69 76 69 6e 67 20 6c 61 | .network.sending.or.receiving.la |
| eae40 | 72 67 65 20 76 6f 6c 75 6d 65 73 20 6f 66 20 74 72 61 66 66 69 63 2c 20 70 61 63 6b 65 74 73 2f | rge.volumes.of.traffic,.packets/ |
| eae60 | 62 79 74 65 73 2f 66 6c 6f 77 73 20 70 65 72 20 73 65 63 6f 6e 64 20 61 6e 64 20 70 65 72 66 6f | bytes/flows.per.second.and.perfo |
| eae80 | 72 6d 20 61 20 63 6f 6e 66 69 67 75 72 61 62 6c 65 20 61 63 74 69 6f 6e 20 74 6f 20 68 61 6e 64 | rm.a.configurable.action.to.hand |
| eaea0 | 6c 65 20 74 68 61 74 20 65 76 65 6e 74 2c 20 73 75 63 68 20 61 73 20 63 61 6c 6c 69 6e 67 20 61 | le.that.event,.such.as.calling.a |
| eaec0 | 20 63 75 73 74 6f 6d 20 73 63 72 69 70 74 2e 00 46 65 61 74 75 72 65 73 20 6f 66 20 74 68 65 20 | .custom.script..Features.of.the. |
| eaee0 | 43 75 72 72 65 6e 74 20 49 6d 70 6c 65 6d 65 6e 74 61 74 69 6f 6e 00 46 69 65 6c 64 00 46 69 6c | Current.Implementation.Field.Fil |
| eaf00 | 65 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 60 3c 66 69 6c 65 6e 61 6d 65 3e 60 20 63 6f 6e | e.identified.by.`<filename>`.con |
| eaf20 | 74 61 69 6e 69 6e 67 20 74 68 65 20 54 53 49 47 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 | taining.the.TSIG.authentication. |
| eaf40 | 6b 65 79 20 66 6f 72 20 52 46 43 32 31 33 36 20 6e 73 75 70 64 61 74 65 20 6f 6e 20 72 65 6d 6f | key.for.RFC2136.nsupdate.on.remo |
| eaf60 | 74 65 20 44 4e 53 20 73 65 72 76 65 72 2e 00 46 69 6c 65 20 69 64 65 6e 74 69 66 69 65 64 20 62 | te.DNS.server..File.identified.b |
| eaf80 | 79 20 60 3c 6b 65 79 66 69 6c 65 3e 60 20 63 6f 6e 74 61 69 6e 69 6e 67 20 74 68 65 20 73 65 63 | y.`<keyfile>`.containing.the.sec |
| eafa0 | 72 65 74 20 52 4e 44 43 20 6b 65 79 20 73 68 61 72 65 64 20 77 69 74 68 20 72 65 6d 6f 74 65 20 | ret.RNDC.key.shared.with.remote. |
| eafc0 | 44 4e 53 20 73 65 72 76 65 72 2e 00 46 69 6c 74 65 72 20 54 79 70 65 2d 33 20 73 75 6d 6d 61 72 | DNS.server..Filter.Type-3.summar |
| eafe0 | 79 2d 4c 53 41 73 20 61 6e 6e 6f 75 6e 63 65 64 20 74 6f 20 6f 74 68 65 72 20 61 72 65 61 73 20 | y-LSAs.announced.to.other.areas. |
| eb000 | 6f 72 69 67 69 6e 61 74 65 64 20 66 72 6f 6d 20 69 6e 74 72 61 2d 20 61 72 65 61 20 70 61 74 68 | originated.from.intra-.area.path |
| eb020 | 73 20 66 72 6f 6d 20 73 70 65 63 69 66 69 65 64 20 61 72 65 61 2e 20 54 68 69 73 20 63 6f 6d 6d | s.from.specified.area..This.comm |
| eb040 | 61 6e 64 20 6d 61 6b 65 73 20 73 65 6e 73 65 20 69 6e 20 41 42 52 20 6f 6e 6c 79 2e 00 46 69 6c | and.makes.sense.in.ABR.only..Fil |
| eb060 | 74 65 72 20 73 79 73 6c 6f 67 20 6d 65 73 73 61 67 65 73 20 62 61 73 65 64 20 6f 6e 20 66 61 63 | ter.syslog.messages.based.on.fac |
| eb080 | 69 6c 69 74 79 20 61 6e 64 20 6c 65 76 65 6c 2e 00 46 69 6c 74 65 72 20 74 72 61 66 66 69 63 20 | ility.and.level..Filter.traffic. |
| eb0a0 | 62 61 73 65 64 20 6f 6e 20 73 6f 75 72 63 65 2f 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 | based.on.source/destination.addr |
| eb0c0 | 65 73 73 2e 00 46 69 6c 74 65 72 2d 49 64 3d 32 30 30 30 2f 33 30 30 30 20 28 6d 65 61 6e 73 20 | ess..Filter-Id=2000/3000.(means. |
| eb0e0 | 32 30 30 30 4b 62 69 74 20 64 6f 77 6e 2d 73 74 72 65 61 6d 20 72 61 74 65 20 61 6e 64 20 33 30 | 2000Kbit.down-stream.rate.and.30 |
| eb100 | 30 30 4b 62 69 74 20 75 70 2d 73 74 72 65 61 6d 20 72 61 74 65 29 00 46 69 6c 74 65 72 2d 49 64 | 00Kbit.up-stream.rate).Filter-Id |
| eb120 | 3d 35 30 30 30 2f 34 30 30 30 20 28 6d 65 61 6e 73 20 35 30 30 30 4b 62 69 74 20 64 6f 77 6e 2d | =5000/4000.(means.5000Kbit.down- |
| eb140 | 73 74 72 65 61 6d 20 72 61 74 65 20 61 6e 64 20 34 30 30 30 4b 62 69 74 20 75 70 2d 73 74 72 65 | stream.rate.and.4000Kbit.up-stre |
| eb160 | 61 6d 20 72 61 74 65 29 20 49 66 20 61 74 74 72 69 62 75 74 65 20 46 69 6c 74 65 72 2d 49 64 20 | am.rate).If.attribute.Filter-Id. |
| eb180 | 72 65 64 65 66 69 6e 65 64 2c 20 72 65 70 6c 61 63 65 20 69 74 20 69 6e 20 52 41 44 49 55 53 20 | redefined,.replace.it.in.RADIUS. |
| eb1a0 | 43 6f 41 20 72 65 71 75 65 73 74 2e 00 46 69 6c 74 65 72 69 6e 67 00 46 69 6c 74 65 72 69 6e 67 | CoA.request..Filtering.Filtering |
| eb1c0 | 20 69 73 20 75 73 65 64 20 66 6f 72 20 62 6f 74 68 20 69 6e 70 75 74 20 61 6e 64 20 6f 75 74 70 | .is.used.for.both.input.and.outp |
| eb1e0 | 75 74 20 6f 66 20 74 68 65 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2e 20 4f | ut.of.the.routing.information..O |
| eb200 | 6e 63 65 20 66 69 6c 74 65 72 69 6e 67 20 69 73 20 64 65 66 69 6e 65 64 2c 20 69 74 20 63 61 6e | nce.filtering.is.defined,.it.can |
| eb220 | 20 62 65 20 61 70 70 6c 69 65 64 20 69 6e 20 61 6e 79 20 64 69 72 65 63 74 69 6f 6e 2e 20 56 79 | .be.applied.in.any.direction..Vy |
| eb240 | 4f 53 20 6d 61 6b 65 73 20 66 69 6c 74 65 72 69 6e 67 20 70 6f 73 73 69 62 6c 65 20 75 73 69 6e | OS.makes.filtering.possible.usin |
| eb260 | 67 20 61 63 6c 73 20 61 6e 64 20 70 72 65 66 69 78 20 6c 69 73 74 73 2e 00 46 69 6e 61 6c 6c 79 | g.acls.and.prefix.lists..Finally |
| eb280 | 2c 20 74 6f 20 61 70 70 6c 79 20 74 68 65 20 70 6f 6c 69 63 79 20 72 6f 75 74 65 20 74 6f 20 69 | ,.to.apply.the.policy.route.to.i |
| eb2a0 | 6e 67 72 65 73 73 20 74 72 61 66 66 69 63 20 6f 6e 20 6f 75 72 20 4c 41 4e 20 69 6e 74 65 72 66 | ngress.traffic.on.our.LAN.interf |
| eb2c0 | 61 63 65 2c 20 77 65 20 75 73 65 3a 00 46 69 72 65 77 61 6c 6c 00 46 69 72 65 77 61 6c 6c 20 2d | ace,.we.use:.Firewall.Firewall.- |
| eb2e0 | 20 49 50 76 34 20 52 75 6c 65 73 00 46 69 72 65 77 61 6c 6c 20 2d 20 49 50 76 36 20 52 75 6c 65 | .IPv4.Rules.Firewall.-.IPv6.Rule |
| eb300 | 73 00 46 69 72 65 77 61 6c 6c 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 46 69 72 65 77 61 6c | s.Firewall.Configuration.Firewal |
| eb320 | 6c 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 28 44 65 70 72 65 63 61 74 65 64 29 00 46 69 72 | l.Configuration.(Deprecated).Fir |
| eb340 | 65 77 61 6c 6c 20 44 65 73 63 72 69 70 74 69 6f 6e 00 46 69 72 65 77 61 6c 6c 20 45 78 63 65 70 | ewall.Description.Firewall.Excep |
| eb360 | 74 69 6f 6e 73 00 46 69 72 65 77 61 6c 6c 20 4c 6f 67 73 00 46 69 72 65 77 61 6c 6c 20 52 75 6c | tions.Firewall.Logs.Firewall.Rul |
| eb380 | 65 73 00 46 69 72 65 77 61 6c 6c 20 62 61 73 65 20 63 68 61 69 6e 20 74 6f 20 63 6f 6e 66 69 67 | es.Firewall.base.chain.to.config |
| eb3a0 | 75 72 65 20 66 69 72 65 77 61 6c 6c 20 66 69 6c 74 65 72 69 6e 67 20 72 75 6c 65 73 20 66 6f 72 | ure.firewall.filtering.rules.for |
| eb3c0 | 20 74 72 61 6e 73 69 74 20 74 72 61 66 66 69 63 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 | .transit.traffic.is.``set.firewa |
| eb3e0 | 6c 6c 20 69 70 76 34 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2c 20 77 68 | ll.ipv4.forward.filter....``,.wh |
| eb400 | 69 63 68 20 68 61 70 70 65 6e 73 20 69 6e 20 73 74 61 67 65 20 35 2c 20 68 69 67 68 6c 69 67 68 | ich.happens.in.stage.5,.highligh |
| eb420 | 74 65 64 20 77 69 74 68 20 72 65 64 20 63 6f 6c 6f 72 2e 00 46 69 72 65 77 61 6c 6c 20 62 61 73 | ted.with.red.color..Firewall.bas |
| eb440 | 65 20 63 68 61 69 6e 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 66 69 72 65 77 61 6c 6c 20 66 69 | e.chain.to.configure.firewall.fi |
| eb460 | 6c 74 65 72 69 6e 67 20 72 75 6c 65 73 20 66 6f 72 20 74 72 61 6e 73 69 74 20 74 72 61 66 66 69 | ltering.rules.for.transit.traffi |
| eb480 | 63 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 66 6f 72 77 61 72 64 | c.is.``set.firewall.ipv6.forward |
| eb4a0 | 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2c 20 77 68 69 63 68 20 68 61 70 70 65 6e 73 20 69 6e 20 | .filter....``,.which.happens.in. |
| eb4c0 | 73 74 61 67 65 20 35 2c 20 68 69 67 68 6c 69 67 68 74 65 64 20 77 69 74 68 20 72 65 64 20 63 6f | stage.5,.highlighted.with.red.co |
| eb4e0 | 6c 6f 72 2e 00 46 69 72 65 77 61 6c 6c 20 64 79 6e 61 6d 69 63 20 67 72 6f 75 70 73 20 61 72 65 | lor..Firewall.dynamic.groups.are |
| eb500 | 20 64 69 66 66 65 72 65 6e 74 20 66 72 6f 6d 20 61 6c 6c 20 74 68 65 20 67 72 6f 75 70 73 20 64 | .different.from.all.the.groups.d |
| eb520 | 65 66 69 6e 65 64 20 70 72 65 76 69 6f 75 73 6c 79 20 62 65 63 61 75 73 65 2c 20 6e 6f 74 20 6f | efined.previously.because,.not.o |
| eb540 | 6e 6c 79 20 74 68 65 79 20 63 61 6e 20 62 65 20 75 73 65 64 20 61 73 20 73 6f 75 72 63 65 2f 64 | nly.they.can.be.used.as.source/d |
| eb560 | 65 73 74 69 6e 61 74 69 6f 6e 20 69 6e 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 2c 20 62 75 | estination.in.firewall.rules,.bu |
| eb580 | 74 20 6d 65 6d 62 65 72 73 20 6f 66 20 74 68 65 73 65 20 67 72 6f 75 70 73 20 61 72 65 20 6e 6f | t.members.of.these.groups.are.no |
| eb5a0 | 74 20 64 65 66 69 6e 65 64 20 73 74 61 74 69 63 61 6c 6c 79 20 75 73 69 6e 67 20 76 79 6f 73 20 | t.defined.statically.using.vyos. |
| eb5c0 | 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 46 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 73 00 46 | configuration..Firewall.groups.F |
| eb5e0 | 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 73 20 72 65 70 72 65 73 65 6e 74 20 63 6f 6c 6c 65 63 74 | irewall.groups.represent.collect |
| eb600 | 69 6f 6e 73 20 6f 66 20 49 50 20 61 64 64 72 65 73 73 65 73 2c 20 6e 65 74 77 6f 72 6b 73 2c 20 | ions.of.IP.addresses,.networks,. |
| eb620 | 70 6f 72 74 73 2c 20 6d 61 63 20 61 64 64 72 65 73 73 65 73 20 6f 72 20 64 6f 6d 61 69 6e 73 2e | ports,.mac.addresses.or.domains. |
| eb640 | 20 4f 6e 63 65 20 63 72 65 61 74 65 64 2c 20 61 20 67 72 6f 75 70 20 63 61 6e 20 62 65 20 72 65 | .Once.created,.a.group.can.be.re |
| eb660 | 66 65 72 65 6e 63 65 64 20 62 79 20 66 69 72 65 77 61 6c 6c 2c 20 6e 61 74 20 61 6e 64 20 70 6f | ferenced.by.firewall,.nat.and.po |
| eb680 | 6c 69 63 79 20 72 6f 75 74 65 20 72 75 6c 65 73 20 61 73 20 65 69 74 68 65 72 20 61 20 73 6f 75 | licy.route.rules.as.either.a.sou |
| eb6a0 | 72 63 65 20 6f 72 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 6d 61 74 63 68 65 72 2e 20 4d 65 6d 62 | rce.or.destination.matcher..Memb |
| eb6c0 | 65 72 73 20 63 61 6e 20 62 65 20 61 64 64 65 64 20 6f 72 20 72 65 6d 6f 76 65 64 20 66 72 6f 6d | ers.can.be.added.or.removed.from |
| eb6e0 | 20 61 20 67 72 6f 75 70 20 77 69 74 68 6f 75 74 20 63 68 61 6e 67 65 73 20 74 6f 2c 20 6f 72 20 | .a.group.without.changes.to,.or. |
| eb700 | 74 68 65 20 6e 65 65 64 20 74 6f 20 72 65 6c 6f 61 64 2c 20 69 6e 64 69 76 69 64 75 61 6c 20 66 | the.need.to.reload,.individual.f |
| eb720 | 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 2e 00 46 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 73 20 72 | irewall.rules..Firewall.groups.r |
| eb740 | 65 70 72 65 73 65 6e 74 20 63 6f 6c 6c 65 63 74 69 6f 6e 73 20 6f 66 20 49 50 20 61 64 64 72 65 | epresent.collections.of.IP.addre |
| eb760 | 73 73 65 73 2c 20 6e 65 74 77 6f 72 6b 73 2c 20 70 6f 72 74 73 2c 20 6d 61 63 20 61 64 64 72 65 | sses,.networks,.ports,.mac.addre |
| eb780 | 73 73 65 73 2c 20 64 6f 6d 61 69 6e 73 20 6f 72 20 69 6e 74 65 72 66 61 63 65 73 2e 20 4f 6e 63 | sses,.domains.or.interfaces..Onc |
| eb7a0 | 65 20 63 72 65 61 74 65 64 2c 20 61 20 67 72 6f 75 70 20 63 61 6e 20 62 65 20 72 65 66 65 72 65 | e.created,.a.group.can.be.refere |
| eb7c0 | 6e 63 65 64 20 62 79 20 66 69 72 65 77 61 6c 6c 2c 20 6e 61 74 20 61 6e 64 20 70 6f 6c 69 63 79 | nced.by.firewall,.nat.and.policy |
| eb7e0 | 20 72 6f 75 74 65 20 72 75 6c 65 73 20 61 73 20 65 69 74 68 65 72 20 61 20 73 6f 75 72 63 65 20 | .route.rules.as.either.a.source. |
| eb800 | 6f 72 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 6d 61 74 63 68 65 72 2c 20 61 6e 64 20 61 73 20 69 | or.destination.matcher,.and.as.i |
| eb820 | 6e 62 70 75 6e 64 2f 6f 75 74 62 6f 75 6e 64 20 69 6e 20 74 68 65 20 63 61 73 65 20 6f 66 20 69 | nbpund/outbound.in.the.case.of.i |
| eb840 | 6e 74 65 72 66 61 63 65 20 67 72 6f 75 70 2e 00 46 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 73 20 | nterface.group..Firewall.groups. |
| eb860 | 72 65 70 72 65 73 65 6e 74 20 63 6f 6c 6c 65 63 74 69 6f 6e 73 20 6f 66 20 49 50 20 61 64 64 72 | represent.collections.of.IP.addr |
| eb880 | 65 73 73 65 73 2c 20 6e 65 74 77 6f 72 6b 73 2c 20 70 6f 72 74 73 2c 20 6d 61 63 20 61 64 64 72 | esses,.networks,.ports,.mac.addr |
| eb8a0 | 65 73 73 65 73 2c 20 64 6f 6d 61 69 6e 73 20 6f 72 20 69 6e 74 65 72 66 61 63 65 73 2e 20 4f 6e | esses,.domains.or.interfaces..On |
| eb8c0 | 63 65 20 63 72 65 61 74 65 64 2c 20 61 20 67 72 6f 75 70 20 63 61 6e 20 62 65 20 72 65 66 65 72 | ce.created,.a.group.can.be.refer |
| eb8e0 | 65 6e 63 65 64 20 62 79 20 66 69 72 65 77 61 6c 6c 2c 20 6e 61 74 20 61 6e 64 20 70 6f 6c 69 63 | enced.by.firewall,.nat.and.polic |
| eb900 | 79 20 72 6f 75 74 65 20 72 75 6c 65 73 20 61 73 20 65 69 74 68 65 72 20 61 20 73 6f 75 72 63 65 | y.route.rules.as.either.a.source |
| eb920 | 20 6f 72 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 6d 61 74 63 68 65 72 2c 20 61 6e 64 2f 6f 72 20 | .or.destination.matcher,.and/or. |
| eb940 | 61 73 20 69 6e 62 6f 75 6e 64 2f 6f 75 74 62 6f 75 6e 64 20 69 6e 20 74 68 65 20 63 61 73 65 20 | as.inbound/outbound.in.the.case. |
| eb960 | 6f 66 20 69 6e 74 65 72 66 61 63 65 20 67 72 6f 75 70 2e 00 46 69 72 65 77 61 6c 6c 20 6d 61 72 | of.interface.group..Firewall.mar |
| eb980 | 6b 2e 20 49 74 20 70 6f 73 73 69 62 6c 65 20 74 6f 20 6c 6f 61 64 62 61 6c 61 6e 63 69 6e 67 20 | k..It.possible.to.loadbalancing. |
| eb9a0 | 74 72 61 66 66 69 63 20 62 61 73 65 64 20 6f 6e 20 60 60 66 77 6d 61 72 6b 60 60 20 76 61 6c 75 | traffic.based.on.``fwmark``.valu |
| eb9c0 | 65 00 46 69 72 65 77 61 6c 6c 20 70 6f 6c 69 63 79 20 63 61 6e 20 61 6c 73 6f 20 62 65 20 61 70 | e.Firewall.policy.can.also.be.ap |
| eb9e0 | 70 6c 69 65 64 20 74 6f 20 74 68 65 20 74 75 6e 6e 65 6c 20 69 6e 74 65 72 66 61 63 65 20 66 6f | plied.to.the.tunnel.interface.fo |
| eba00 | 72 20 60 6c 6f 63 61 6c 60 2c 20 60 69 6e 60 2c 20 61 6e 64 20 60 6f 75 74 60 20 64 69 72 65 63 | r.`local`,.`in`,.and.`out`.direc |
| eba20 | 74 69 6f 6e 73 20 61 6e 64 20 66 75 6e 63 74 69 6f 6e 73 20 69 64 65 6e 74 69 63 61 6c 6c 79 20 | tions.and.functions.identically. |
| eba40 | 74 6f 20 65 74 68 65 72 6e 65 74 20 69 6e 74 65 72 66 61 63 65 73 2e 00 46 69 72 65 77 61 6c 6c | to.ethernet.interfaces..Firewall |
| eba60 | 20 72 75 6c 65 73 20 61 72 65 20 77 72 69 74 74 65 6e 20 61 73 20 6e 6f 72 6d 61 6c 2c 20 75 73 | .rules.are.written.as.normal,.us |
| eba80 | 69 6e 67 20 74 68 65 20 69 6e 74 65 72 6e 61 6c 20 49 50 20 61 64 64 72 65 73 73 20 61 73 20 74 | ing.the.internal.IP.address.as.t |
| ebaa0 | 68 65 20 73 6f 75 72 63 65 20 6f 66 20 6f 75 74 62 6f 75 6e 64 20 72 75 6c 65 73 20 61 6e 64 20 | he.source.of.outbound.rules.and. |
| ebac0 | 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 6f 66 20 69 6e 62 6f 75 6e 64 20 72 75 6c 65 73 | the.destination.of.inbound.rules |
| ebae0 | 2e 00 46 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 20 66 6f 72 20 44 65 73 74 69 6e 61 74 69 6f 6e | ..Firewall.rules.for.Destination |
| ebb00 | 20 4e 41 54 00 46 69 72 65 77 61 6c 6c 2d 4c 65 67 61 63 79 00 46 69 72 6d 77 61 72 65 20 55 70 | .NAT.Firewall-Legacy.Firmware.Up |
| ebb20 | 64 61 74 65 00 46 69 72 73 74 20 68 6f 70 20 69 6e 74 65 72 66 61 63 65 20 6f 66 20 61 20 72 6f | date.First.hop.interface.of.a.ro |
| ebb40 | 75 74 65 20 74 6f 20 6d 61 74 63 68 2e 00 46 69 72 73 74 20 6f 66 20 61 6c 6c 20 79 6f 75 20 6d | ute.to.match..First.of.all.you.m |
| ebb60 | 75 73 74 20 63 6f 6e 66 69 67 75 72 65 20 42 47 50 20 72 6f 75 74 65 72 20 77 69 74 68 20 74 68 | ust.configure.BGP.router.with.th |
| ebb80 | 65 20 3a 61 62 62 72 3a 60 41 53 4e 20 28 41 75 74 6f 6e 6f 6d 6f 75 73 20 53 79 73 74 65 6d 20 | e.:abbr:`ASN.(Autonomous.System. |
| ebba0 | 4e 75 6d 62 65 72 29 60 2e 20 54 68 65 20 41 53 20 6e 75 6d 62 65 72 20 69 73 20 61 6e 20 69 64 | Number)`..The.AS.number.is.an.id |
| ebbc0 | 65 6e 74 69 66 69 65 72 20 66 6f 72 20 74 68 65 20 61 75 74 6f 6e 6f 6d 6f 75 73 20 73 79 73 74 | entifier.for.the.autonomous.syst |
| ebbe0 | 65 6d 2e 20 54 68 65 20 42 47 50 20 70 72 6f 74 6f 63 6f 6c 20 75 73 65 73 20 74 68 65 20 41 53 | em..The.BGP.protocol.uses.the.AS |
| ebc00 | 20 6e 75 6d 62 65 72 20 66 6f 72 20 64 65 74 65 63 74 69 6e 67 20 77 68 65 74 68 65 72 20 74 68 | .number.for.detecting.whether.th |
| ebc20 | 65 20 42 47 50 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 69 73 20 69 6e 74 65 72 6e 61 6c 20 6f 72 20 | e.BGP.connection.is.internal.or. |
| ebc40 | 65 78 74 65 72 6e 61 6c 2e 20 56 79 4f 53 20 64 6f 65 73 20 6e 6f 74 20 68 61 76 65 20 61 20 73 | external..VyOS.does.not.have.a.s |
| ebc60 | 70 65 63 69 61 6c 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 74 61 72 74 20 74 68 65 20 42 47 50 20 | pecial.command.to.start.the.BGP. |
| ebc80 | 70 72 6f 63 65 73 73 2e 20 54 68 65 20 42 47 50 20 70 72 6f 63 65 73 73 20 73 74 61 72 74 73 20 | process..The.BGP.process.starts. |
| ebca0 | 77 68 65 6e 20 74 68 65 20 66 69 72 73 74 20 6e 65 69 67 68 62 6f 72 20 69 73 20 63 6f 6e 66 69 | when.the.first.neighbor.is.confi |
| ebcc0 | 67 75 72 65 64 2e 00 46 69 72 73 74 20 6f 66 20 61 6c 6c 2c 20 77 65 20 6e 65 65 64 20 74 6f 20 | gured..First.of.all,.we.need.to. |
| ebce0 | 63 72 65 61 74 65 20 61 20 43 41 20 72 6f 6f 74 20 63 65 72 74 69 66 69 63 61 74 65 20 61 6e 64 | create.a.CA.root.certificate.and |
| ebd00 | 20 73 65 72 76 65 72 20 63 65 72 74 69 66 69 63 61 74 65 20 6f 6e 20 74 68 65 20 73 65 72 76 65 | .server.certificate.on.the.serve |
| ebd20 | 72 20 73 69 64 65 2e 00 46 69 72 73 74 20 73 63 65 6e 61 72 69 6f 3a 20 61 70 70 6c 79 20 64 65 | r.side..First.scenario:.apply.de |
| ebd40 | 73 74 69 6e 61 74 69 6f 6e 20 4e 41 54 20 66 6f 72 20 61 6c 6c 20 48 54 54 50 20 74 72 61 66 66 | stination.NAT.for.all.HTTP.traff |
| ebd60 | 69 63 20 63 6f 6d 6d 69 6e 67 20 74 68 72 6f 75 67 68 20 69 6e 74 65 72 66 61 63 65 20 65 74 68 | ic.comming.through.interface.eth |
| ebd80 | 30 2c 20 61 6e 64 20 75 73 65 72 20 34 20 62 61 63 6b 65 6e 64 73 2e 20 46 69 72 73 74 20 62 61 | 0,.and.user.4.backends..First.ba |
| ebda0 | 63 6b 65 6e 64 20 73 68 6f 75 6c 64 20 72 65 63 65 69 76 65 64 20 33 30 25 20 6f 66 20 74 68 65 | ckend.should.received.30%.of.the |
| ebdc0 | 20 72 65 71 75 65 73 74 2c 20 73 65 63 6f 6e 64 20 62 61 63 6b 65 6e 64 20 73 68 6f 75 6c 64 20 | .request,.second.backend.should. |
| ebde0 | 67 65 74 20 32 30 25 2c 20 74 68 69 72 64 20 31 35 25 20 61 6e 64 20 74 68 65 20 66 6f 75 72 74 | get.20%,.third.15%.and.the.fourt |
| ebe00 | 68 20 33 35 25 20 57 65 20 77 69 6c 6c 20 75 73 65 20 73 6f 75 72 63 65 20 61 6e 64 20 64 65 73 | h.35%.We.will.use.source.and.des |
| ebe20 | 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 66 6f 72 20 68 61 73 68 20 67 65 6e 65 72 61 | tination.address.for.hash.genera |
| ebe40 | 74 69 6f 6e 2e 00 46 69 72 73 74 20 73 74 65 70 73 00 46 69 72 73 74 20 74 68 65 20 4f 54 50 20 | tion..First.steps.First.the.OTP. |
| ebe60 | 6b 65 79 73 20 6d 75 73 74 20 62 65 20 67 65 6e 65 72 61 74 65 64 20 61 6e 64 20 73 65 6e 74 20 | keys.must.be.generated.and.sent. |
| ebe80 | 74 6f 20 74 68 65 20 75 73 65 72 20 61 6e 64 20 74 6f 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 | to.the.user.and.to.the.configura |
| ebea0 | 74 69 6f 6e 3a 00 46 69 72 73 74 20 77 65 20 6e 65 65 64 20 74 6f 20 73 70 65 63 69 66 79 20 74 | tion:.First.we.need.to.specify.t |
| ebec0 | 68 65 20 62 61 73 69 63 20 73 65 74 74 69 6e 67 73 2e 20 31 31 39 34 2f 55 44 50 20 69 73 20 74 | he.basic.settings..1194/UDP.is.t |
| ebee0 | 68 65 20 64 65 66 61 75 6c 74 2e 20 54 68 65 20 60 60 70 65 72 73 69 73 74 65 6e 74 2d 74 75 6e | he.default..The.``persistent-tun |
| ebf00 | 6e 65 6c 60 60 20 6f 70 74 69 6f 6e 20 69 73 20 72 65 63 6f 6d 6d 65 6e 64 65 64 2c 20 61 73 20 | nel``.option.is.recommended,.as. |
| ebf20 | 69 74 20 70 72 65 76 65 6e 74 73 20 74 68 65 20 54 55 4e 2f 54 41 50 20 64 65 76 69 63 65 20 66 | it.prevents.the.TUN/TAP.device.f |
| ebf40 | 72 6f 6d 20 63 6c 6f 73 69 6e 67 20 6f 6e 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 72 65 73 65 74 73 | rom.closing.on.connection.resets |
| ebf60 | 20 6f 72 20 64 61 65 6d 6f 6e 20 72 65 6c 6f 61 64 73 2e 00 46 69 72 73 74 20 77 65 20 6e 65 65 | .or.daemon.reloads..First.we.nee |
| ebf80 | 64 20 74 6f 20 73 70 65 63 69 66 79 20 74 68 65 20 62 61 73 69 63 20 73 65 74 74 69 6e 67 73 2e | d.to.specify.the.basic.settings. |
| ebfa0 | 20 31 31 39 34 2f 55 44 50 20 69 73 20 74 68 65 20 64 65 66 61 75 6c 74 2e 20 54 68 65 20 60 60 | .1194/UDP.is.the.default..The.`` |
| ebfc0 | 70 65 72 73 69 73 74 65 6e 74 2d 74 75 6e 6e 65 6c 60 60 20 6f 70 74 69 6f 6e 20 69 73 20 72 65 | persistent-tunnel``.option.is.re |
| ebfe0 | 63 6f 6d 6d 65 6e 64 65 64 2c 20 69 74 20 70 72 65 76 65 6e 74 73 20 74 68 65 20 54 55 4e 2f 54 | commended,.it.prevents.the.TUN/T |
| ec000 | 41 50 20 64 65 76 69 63 65 20 66 72 6f 6d 20 63 6c 6f 73 69 6e 67 20 6f 6e 20 63 6f 6e 6e 65 63 | AP.device.from.closing.on.connec |
| ec020 | 74 69 6f 6e 20 72 65 73 65 74 73 20 6f 72 20 64 61 65 6d 6f 6e 20 72 65 6c 6f 61 64 73 2e 00 46 | tion.resets.or.daemon.reloads..F |
| ec040 | 69 72 73 74 20 79 6f 75 20 77 69 6c 6c 20 6e 65 65 64 20 74 6f 20 64 65 70 6c 6f 79 20 61 6e 20 | irst.you.will.need.to.deploy.an. |
| ec060 | 52 50 4b 49 20 76 61 6c 69 64 61 74 6f 72 20 66 6f 72 20 79 6f 75 72 20 72 6f 75 74 65 72 73 20 | RPKI.validator.for.your.routers. |
| ec080 | 74 6f 20 75 73 65 2e 20 4e 4c 6e 65 74 20 4c 61 62 73 20 70 72 6f 76 69 64 65 73 20 61 20 63 6f | to.use..NLnet.Labs.provides.a.co |
| ec0a0 | 6c 6c 65 63 74 69 6f 6e 20 6f 66 20 73 6f 66 74 77 61 72 65 5f 20 79 6f 75 20 63 61 6e 20 63 6f | llection.of.software_.you.can.co |
| ec0c0 | 6d 70 61 72 65 20 61 6e 64 20 73 65 74 74 6c 65 20 6f 6e 20 6f 6e 65 2e 20 4f 6e 63 65 20 79 6f | mpare.and.settle.on.one..Once.yo |
| ec0e0 | 75 72 20 73 65 72 76 65 72 20 69 73 20 72 75 6e 6e 69 6e 67 20 79 6f 75 20 63 61 6e 20 73 74 61 | ur.server.is.running.you.can.sta |
| ec100 | 72 74 20 76 61 6c 69 64 61 74 69 6e 67 20 61 6e 6e 6f 75 6e 63 65 6d 65 6e 74 73 2e 00 46 69 72 | rt.validating.announcements..Fir |
| ec120 | 73 74 20 79 6f 75 20 77 69 6c 6c 20 6e 65 65 64 20 74 6f 20 64 65 70 6c 6f 79 20 61 6e 20 52 50 | st.you.will.need.to.deploy.an.RP |
| ec140 | 4b 49 20 76 61 6c 69 64 61 74 6f 72 20 66 6f 72 20 79 6f 75 72 20 72 6f 75 74 65 72 73 20 74 6f | KI.validator.for.your.routers.to |
| ec160 | 20 75 73 65 2e 20 54 68 65 20 52 49 50 45 20 4e 43 43 20 68 65 6c 70 66 75 6c 6c 79 20 70 72 6f | .use..The.RIPE.NCC.helpfully.pro |
| ec180 | 76 69 64 65 20 60 73 6f 6d 65 20 69 6e 73 74 72 75 63 74 69 6f 6e 73 60 5f 20 74 6f 20 67 65 74 | vide.`some.instructions`_.to.get |
| ec1a0 | 20 79 6f 75 20 73 74 61 72 74 65 64 20 77 69 74 68 20 73 65 76 65 72 61 6c 20 64 69 66 66 65 72 | .you.started.with.several.differ |
| ec1c0 | 65 6e 74 20 6f 70 74 69 6f 6e 73 2e 20 20 4f 6e 63 65 20 79 6f 75 72 20 73 65 72 76 65 72 20 69 | ent.options...Once.your.server.i |
| ec1e0 | 73 20 72 75 6e 6e 69 6e 67 20 79 6f 75 20 63 61 6e 20 73 74 61 72 74 20 76 61 6c 69 64 61 74 69 | s.running.you.can.start.validati |
| ec200 | 6e 67 20 61 6e 6e 6f 75 6e 63 65 6d 65 6e 74 73 2e 00 46 69 72 73 74 2c 20 61 6c 6c 20 74 72 61 | ng.announcements..First,.all.tra |
| ec220 | 66 66 69 63 20 69 73 20 72 65 63 65 69 76 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 2c 20 | ffic.is.received.by.the.router,. |
| ec240 | 61 6e 64 20 69 74 20 69 73 20 70 72 6f 63 65 73 73 65 64 20 69 6e 20 74 68 65 20 2a 2a 70 72 65 | and.it.is.processed.in.the.**pre |
| ec260 | 72 6f 75 74 69 6e 67 2a 2a 20 73 65 63 74 69 6f 6e 2e 00 46 69 72 73 74 2c 20 6f 6e 20 62 6f 74 | routing**.section..First,.on.bot |
| ec280 | 68 20 72 6f 75 74 65 72 73 20 72 75 6e 20 74 68 65 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 63 6f | h.routers.run.the.operational.co |
| ec2a0 | 6d 6d 61 6e 64 20 22 67 65 6e 65 72 61 74 65 20 70 6b 69 20 6b 65 79 2d 70 61 69 72 20 69 6e 73 | mmand."generate.pki.key-pair.ins |
| ec2c0 | 74 61 6c 6c 20 3c 6b 65 79 2d 70 61 69 72 20 6e 61 6d 3e 3e 22 2e 20 59 6f 75 20 6d 61 79 20 63 | tall.<key-pair.nam>>"..You.may.c |
| ec2e0 | 68 6f 6f 73 65 20 64 69 66 66 65 72 65 6e 74 20 6c 65 6e 67 74 68 20 74 68 61 6e 20 32 30 34 38 | hoose.different.length.than.2048 |
| ec300 | 20 6f 66 20 63 6f 75 72 73 65 2e 00 46 69 72 73 74 2c 20 6f 6e 20 62 6f 74 68 20 72 6f 75 74 65 | .of.course..First,.on.both.route |
| ec320 | 72 73 20 72 75 6e 20 74 68 65 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 63 6f 6d 6d 61 6e 64 20 22 | rs.run.the.operational.command." |
| ec340 | 67 65 6e 65 72 61 74 65 20 70 6b 69 20 6b 65 79 2d 70 61 69 72 20 69 6e 73 74 61 6c 6c 20 3c 6b | generate.pki.key-pair.install.<k |
| ec360 | 65 79 2d 70 61 69 72 20 6e 61 6d 65 3e 22 2e 20 59 6f 75 20 6d 61 79 20 63 68 6f 6f 73 65 20 64 | ey-pair.name>"..You.may.choose.d |
| ec380 | 69 66 66 65 72 65 6e 74 20 6c 65 6e 67 74 68 20 74 68 61 6e 20 32 30 34 38 20 6f 66 20 63 6f 75 | ifferent.length.than.2048.of.cou |
| ec3a0 | 72 73 65 2e 00 46 69 72 73 74 2c 20 6f 6e 65 20 6f 66 20 74 68 65 20 73 79 73 74 65 6d 73 20 67 | rse..First,.one.of.the.systems.g |
| ec3c0 | 65 6e 65 72 61 74 65 20 74 68 65 20 6b 65 79 20 75 73 69 6e 67 20 74 68 65 20 3a 72 65 66 3a 60 | enerate.the.key.using.the.:ref:` |
| ec3e0 | 67 65 6e 65 72 61 74 65 20 70 6b 69 20 6f 70 65 6e 76 70 6e 20 73 68 61 72 65 64 2d 73 65 63 72 | generate.pki.openvpn.shared-secr |
| ec400 | 65 74 3c 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 70 6b 69 2f 69 6e 64 65 78 3a 70 6b 69 3e 60 | et<configuration/pki/index:pki>` |
| ec420 | 20 63 6f 6d 6d 61 6e 64 2e 20 4f 6e 63 65 20 67 65 6e 65 72 61 74 65 64 2c 20 79 6f 75 20 77 69 | .command..Once.generated,.you.wi |
| ec440 | 6c 6c 20 6e 65 65 64 20 74 6f 20 69 6e 73 74 61 6c 6c 20 74 68 69 73 20 6b 65 79 20 6f 6e 20 74 | ll.need.to.install.this.key.on.t |
| ec460 | 68 65 20 6c 6f 63 61 6c 20 73 79 73 74 65 6d 2c 20 74 68 65 6e 20 63 6f 70 79 20 61 6e 64 20 69 | he.local.system,.then.copy.and.i |
| ec480 | 6e 73 74 61 6c 6c 20 74 68 69 73 20 6b 65 79 20 74 6f 20 74 68 65 20 72 65 6d 6f 74 65 20 72 6f | nstall.this.key.to.the.remote.ro |
| ec4a0 | 75 74 65 72 2e 00 46 69 72 73 74 2c 20 77 65 20 63 72 65 61 74 65 20 74 68 65 20 72 6f 6f 74 20 | uter..First,.we.create.the.root. |
| ec4c0 | 63 65 72 74 69 66 69 63 61 74 65 20 61 75 74 68 6f 72 69 74 79 2e 00 46 69 72 73 74 2c 20 79 6f | certificate.authority..First,.yo |
| ec4e0 | 75 20 6e 65 65 64 20 74 6f 20 67 65 6e 65 72 61 74 65 20 61 20 6b 65 79 20 62 79 20 72 75 6e 6e | u.need.to.generate.a.key.by.runn |
| ec500 | 69 6e 67 20 60 60 72 75 6e 20 67 65 6e 65 72 61 74 65 20 70 6b 69 20 6f 70 65 6e 76 70 6e 20 73 | ing.``run.generate.pki.openvpn.s |
| ec520 | 68 61 72 65 64 2d 73 65 63 72 65 74 20 69 6e 73 74 61 6c 6c 20 3c 6e 61 6d 65 3e 60 60 20 66 72 | hared-secret.install.<name>``.fr |
| ec540 | 6f 6d 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d 6f 64 65 2e 20 59 6f 75 20 63 61 6e 20 75 | om.configuration.mode..You.can.u |
| ec560 | 73 65 20 61 6e 79 20 6e 61 6d 65 2c 20 77 65 20 77 69 6c 6c 20 75 73 65 20 60 60 73 32 73 60 60 | se.any.name,.we.will.use.``s2s`` |
| ec580 | 2e 00 46 6c 61 73 68 00 46 6c 61 73 68 20 4f 76 65 72 72 69 64 65 00 46 6c 65 78 56 50 4e 20 76 | ..Flash.Flash.Override.FlexVPN.v |
| ec5a0 | 65 6e 64 6f 72 20 49 44 20 70 61 79 6c 6f 61 64 20 28 49 4b 45 76 32 20 6f 6e 6c 79 29 2c 20 77 | endor.ID.payload.(IKEv2.only),.w |
| ec5c0 | 68 69 63 68 20 69 73 20 72 65 71 75 69 72 65 64 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 6d 61 6b | hich.is.required.in.order.to.mak |
| ec5e0 | 65 20 43 69 73 63 6f 20 62 72 61 6e 64 20 64 65 76 69 63 65 73 20 61 6c 6c 6f 77 20 6e 65 67 6f | e.Cisco.brand.devices.allow.nego |
| ec600 | 74 69 61 74 69 6e 67 20 61 20 6c 6f 63 61 6c 20 74 72 61 66 66 69 63 20 73 65 6c 65 63 74 6f 72 | tiating.a.local.traffic.selector |
| ec620 | 20 28 66 72 6f 6d 20 73 74 72 6f 6e 67 53 77 61 6e 27 73 20 70 6f 69 6e 74 20 6f 66 20 76 69 65 | .(from.strongSwan's.point.of.vie |
| ec640 | 77 29 20 74 68 61 74 20 69 73 20 6e 6f 74 20 74 68 65 20 61 73 73 69 67 6e 65 64 20 76 69 72 74 | w).that.is.not.the.assigned.virt |
| ec660 | 75 61 6c 20 49 50 20 61 64 64 72 65 73 73 20 69 66 20 73 75 63 68 20 61 6e 20 61 64 64 72 65 73 | ual.IP.address.if.such.an.addres |
| ec680 | 73 20 69 73 20 72 65 71 75 65 73 74 65 64 20 62 79 20 73 74 72 6f 6e 67 53 77 61 6e 2e 20 53 65 | s.is.requested.by.strongSwan..Se |
| ec6a0 | 6e 64 69 6e 67 20 74 68 65 20 43 69 73 63 6f 20 46 6c 65 78 56 50 4e 20 76 65 6e 64 6f 72 20 49 | nding.the.Cisco.FlexVPN.vendor.I |
| ec6c0 | 44 20 70 72 65 76 65 6e 74 73 20 74 68 65 20 70 65 65 72 20 66 72 6f 6d 20 6e 61 72 72 6f 77 69 | D.prevents.the.peer.from.narrowi |
| ec6e0 | 6e 67 20 74 68 65 20 69 6e 69 74 69 61 74 6f 72 27 73 20 6c 6f 63 61 6c 20 74 72 61 66 66 69 63 | ng.the.initiator's.local.traffic |
| ec700 | 20 73 65 6c 65 63 74 6f 72 20 61 6e 64 20 61 6c 6c 6f 77 73 20 69 74 20 74 6f 20 65 2e 67 2e 20 | .selector.and.allows.it.to.e.g.. |
| ec720 | 6e 65 67 6f 74 69 61 74 65 20 61 20 54 53 20 6f 66 20 30 2e 30 2e 30 2e 30 2f 30 20 3d 3d 20 30 | negotiate.a.TS.of.0.0.0.0/0.==.0 |
| ec740 | 2e 30 2e 30 2e 30 2f 30 20 69 6e 73 74 65 61 64 2e 20 54 68 69 73 20 68 61 73 20 62 65 65 6e 20 | .0.0.0/0.instead..This.has.been. |
| ec760 | 74 65 73 74 65 64 20 77 69 74 68 20 61 20 22 74 75 6e 6e 65 6c 20 6d 6f 64 65 20 69 70 73 65 63 | tested.with.a."tunnel.mode.ipsec |
| ec780 | 20 69 70 76 34 22 20 43 69 73 63 6f 20 74 65 6d 70 6c 61 74 65 20 62 75 74 20 73 68 6f 75 6c 64 | .ipv4".Cisco.template.but.should |
| ec7a0 | 20 61 6c 73 6f 20 77 6f 72 6b 20 66 6f 72 20 47 52 45 20 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e | .also.work.for.GRE.encapsulation |
| ec7c0 | 3b 00 46 6c 6f 77 20 41 63 63 6f 75 6e 74 69 6e 67 00 46 6c 6f 77 20 45 78 70 6f 72 74 00 46 6c | ;.Flow.Accounting.Flow.Export.Fl |
| ec7e0 | 6f 77 20 61 6e 64 20 70 61 63 6b 65 74 2d 62 61 73 65 64 20 62 61 6c 61 6e 63 69 6e 67 00 46 6c | ow.and.packet-based.balancing.Fl |
| ec800 | 6f 77 73 20 61 72 65 20 64 65 66 69 6e 65 64 20 62 79 20 73 6f 75 72 63 65 2d 64 65 73 74 69 6e | ows.are.defined.by.source-destin |
| ec820 | 61 74 69 6f 6e 20 68 6f 73 74 20 70 61 69 72 73 2e 00 46 6c 6f 77 73 20 61 72 65 20 64 65 66 69 | ation.host.pairs..Flows.are.defi |
| ec840 | 6e 65 64 20 62 79 20 74 68 65 20 35 2d 74 75 70 6c 65 2e 20 46 61 69 72 6e 65 73 73 20 69 73 20 | ned.by.the.5-tuple..Fairness.is. |
| ec860 | 61 70 70 6c 69 65 64 20 66 69 72 73 74 20 6f 76 65 72 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 | applied.first.over.destination.a |
| ec880 | 64 64 72 65 73 73 65 73 2c 20 74 68 65 6e 20 6f 76 65 72 20 69 6e 64 69 76 69 64 75 61 6c 20 66 | ddresses,.then.over.individual.f |
| ec8a0 | 6c 6f 77 73 2e 00 46 6c 6f 77 73 20 61 72 65 20 64 65 66 69 6e 65 64 20 62 79 20 74 68 65 20 35 | lows..Flows.are.defined.by.the.5 |
| ec8c0 | 2d 74 75 70 6c 65 2e 20 46 61 69 72 6e 65 73 73 20 69 73 20 61 70 70 6c 69 65 64 20 66 69 72 73 | -tuple..Fairness.is.applied.firs |
| ec8e0 | 74 20 6f 76 65 72 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 65 73 2c 20 74 68 65 6e 20 6f 76 | t.over.source.addresses,.then.ov |
| ec900 | 65 72 20 69 6e 64 69 76 69 64 75 61 6c 20 66 6c 6f 77 73 2e 00 46 6c 6f 77 73 20 61 72 65 20 64 | er.individual.flows..Flows.are.d |
| ec920 | 65 66 69 6e 65 64 20 62 79 20 74 68 65 20 65 6e 74 69 72 65 20 35 2d 74 75 70 6c 65 20 28 73 6f | efined.by.the.entire.5-tuple.(so |
| ec940 | 75 72 63 65 20 49 50 20 61 64 64 72 65 73 73 2c 20 73 6f 75 72 63 65 20 70 6f 72 74 2c 20 64 65 | urce.IP.address,.source.port,.de |
| ec960 | 73 74 69 6e 61 74 69 6f 6e 20 49 50 20 61 64 64 72 65 73 73 2c 20 64 65 73 74 69 6e 61 74 69 6f | stination.IP.address,.destinatio |
| ec980 | 6e 20 70 6f 72 74 2c 20 74 72 61 6e 73 70 6f 72 74 20 70 72 6f 74 6f 63 6f 6c 29 2e 00 46 6c 6f | n.port,.transport.protocol)..Flo |
| ec9a0 | 77 73 20 61 72 65 20 64 65 66 69 6e 65 64 20 6f 6e 6c 79 20 62 79 20 64 65 73 74 69 6e 61 74 69 | ws.are.defined.only.by.destinati |
| ec9c0 | 6f 6e 20 61 64 64 72 65 73 73 2e 00 46 6c 6f 77 73 20 61 72 65 20 64 65 66 69 6e 65 64 20 6f 6e | on.address..Flows.are.defined.on |
| ec9e0 | 6c 79 20 62 79 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 2e 00 46 6c 6f 77 73 20 63 61 6e 20 | ly.by.source.address..Flows.can. |
| eca00 | 62 65 20 65 78 70 6f 72 74 65 64 20 76 69 61 20 74 77 6f 20 64 69 66 66 65 72 65 6e 74 20 70 72 | be.exported.via.two.different.pr |
| eca20 | 6f 74 6f 63 6f 6c 73 3a 20 4e 65 74 46 6c 6f 77 20 28 76 65 72 73 69 6f 6e 73 20 35 2c 20 39 20 | otocols:.NetFlow.(versions.5,.9. |
| eca40 | 61 6e 64 20 31 30 2f 49 50 46 49 58 29 20 61 6e 64 20 73 46 6c 6f 77 2e 20 41 64 64 69 74 69 6f | and.10/IPFIX).and.sFlow..Additio |
| eca60 | 6e 61 6c 6c 79 2c 20 79 6f 75 20 6d 61 79 20 73 61 76 65 20 66 6c 6f 77 73 20 74 6f 20 61 6e 20 | nally,.you.may.save.flows.to.an. |
| eca80 | 69 6e 2d 6d 65 6d 6f 72 79 20 74 61 62 6c 65 20 69 6e 74 65 72 6e 61 6c 6c 79 20 69 6e 20 61 20 | in-memory.table.internally.in.a. |
| ecaa0 | 72 6f 75 74 65 72 2e 00 46 6c 6f 77 74 61 62 6c 65 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 | router..Flowtable.Configuration. |
| ecac0 | 46 6c 6f 77 74 61 62 6c 65 73 20 20 61 6c 6c 6f 77 73 20 79 6f 75 20 74 6f 20 64 65 66 69 6e 65 | Flowtables..allows.you.to.define |
| ecae0 | 20 61 20 66 61 73 74 70 61 74 68 20 74 68 72 6f 75 67 68 20 74 68 65 20 66 6c 6f 77 74 61 62 6c | .a.fastpath.through.the.flowtabl |
| ecb00 | 65 20 64 61 74 61 70 61 74 68 2e 20 54 68 65 20 66 6c 6f 77 74 61 62 6c 65 20 73 75 70 70 6f 72 | e.datapath..The.flowtable.suppor |
| ecb20 | 74 73 20 66 6f 72 20 74 68 65 20 6c 61 79 65 72 20 33 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 | ts.for.the.layer.3.IPv4.and.IPv6 |
| ecb40 | 20 61 6e 64 20 74 68 65 20 6c 61 79 65 72 20 34 20 54 43 50 20 61 6e 64 20 55 44 50 20 70 72 6f | .and.the.layer.4.TCP.and.UDP.pro |
| ecb60 | 74 6f 63 6f 6c 73 2e 00 46 6c 6f 77 74 61 62 6c 65 73 20 46 69 72 65 77 61 6c 6c 20 43 6f 6e 66 | tocols..Flowtables.Firewall.Conf |
| ecb80 | 69 67 75 72 61 74 69 6f 6e 00 46 6c 6f 77 74 61 62 6c 65 73 20 61 6c 6c 6f 77 20 79 6f 75 20 74 | iguration.Flowtables.allow.you.t |
| ecba0 | 6f 20 64 65 66 69 6e 65 20 61 20 66 61 73 74 70 61 74 68 20 74 68 72 6f 75 67 68 20 74 68 65 20 | o.define.a.fastpath.through.the. |
| ecbc0 | 66 6c 6f 77 74 61 62 6c 65 20 64 61 74 61 70 61 74 68 2e 20 54 68 65 20 66 6c 6f 77 74 61 62 6c | flowtable.datapath..The.flowtabl |
| ecbe0 | 65 20 73 75 70 70 6f 72 74 73 20 66 6f 72 20 74 68 65 20 6c 61 79 65 72 20 33 20 49 50 76 34 20 | e.supports.for.the.layer.3.IPv4. |
| ecc00 | 61 6e 64 20 49 50 76 36 20 61 6e 64 20 74 68 65 20 6c 61 79 65 72 20 34 20 54 43 50 20 61 6e 64 | and.IPv6.and.the.layer.4.TCP.and |
| ecc20 | 20 55 44 50 20 70 72 6f 74 6f 63 6f 6c 73 2e 00 46 6c 75 73 68 69 6e 67 20 74 68 65 20 73 65 73 | .UDP.protocols..Flushing.the.ses |
| ecc40 | 73 69 6f 6e 20 74 61 62 6c 65 20 77 69 6c 6c 20 63 61 75 73 65 20 6f 74 68 65 72 20 63 6f 6e 6e | sion.table.will.cause.other.conn |
| ecc60 | 65 63 74 69 6f 6e 73 20 74 6f 20 66 61 6c 6c 20 62 61 63 6b 20 66 72 6f 6d 20 66 6c 6f 77 2d 62 | ections.to.fall.back.from.flow-b |
| ecc80 | 61 73 65 64 20 74 6f 20 70 61 63 6b 65 74 2d 62 61 73 65 64 20 62 61 6c 61 6e 63 69 6e 67 20 75 | ased.to.packet-based.balancing.u |
| ecca0 | 6e 74 69 6c 20 65 61 63 68 20 66 6c 6f 77 20 69 73 20 72 65 65 73 74 61 62 6c 69 73 68 65 64 2e | ntil.each.flow.is.reestablished. |
| eccc0 | 00 46 6f 6c 6c 6f 77 20 74 68 65 20 53 53 48 20 64 79 6e 61 6d 69 63 2d 70 72 6f 74 65 63 74 69 | .Follow.the.SSH.dynamic-protecti |
| ecce0 | 6f 6e 20 6c 6f 67 2e 00 46 6f 6c 6c 6f 77 20 74 68 65 20 53 53 48 20 73 65 72 76 65 72 20 6c 6f | on.log..Follow.the.SSH.server.lo |
| ecd00 | 67 2e 00 46 6f 6c 6c 6f 77 20 74 68 65 20 69 6e 73 74 72 75 63 74 69 6f 6e 73 20 74 6f 20 67 65 | g..Follow.the.instructions.to.ge |
| ecd20 | 6e 65 72 61 74 65 20 43 41 20 63 65 72 74 20 28 69 6e 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e | nerate.CA.cert.(in.configuration |
| ecd40 | 20 6d 6f 64 65 29 3a 00 46 6f 6c 6c 6f 77 20 74 68 65 20 69 6e 73 74 72 75 63 74 69 6f 6e 73 20 | .mode):.Follow.the.instructions. |
| ecd60 | 74 6f 20 67 65 6e 65 72 61 74 65 20 73 65 72 76 65 72 20 63 65 72 74 20 28 69 6e 20 63 6f 6e 66 | to.generate.server.cert.(in.conf |
| ecd80 | 69 67 75 72 61 74 69 6f 6e 20 6d 6f 64 65 29 3a 00 46 6f 6c 6c 6f 77 20 74 68 65 20 6c 6f 67 73 | iguration.mode):.Follow.the.logs |
| ecda0 | 20 66 6f 72 20 6d 44 4e 53 20 72 65 70 65 61 74 65 72 20 73 65 72 76 69 63 65 2e 00 46 6f 72 20 | .for.mDNS.repeater.service..For. |
| ecdc0 | 3a 72 65 66 3a 60 62 69 64 69 72 65 63 74 69 6f 6e 61 6c 2d 6e 61 74 60 20 61 20 72 75 6c 65 20 | :ref:`bidirectional-nat`.a.rule. |
| ecde0 | 66 6f 72 20 62 6f 74 68 20 3a 72 65 66 3a 60 73 6f 75 72 63 65 2d 6e 61 74 60 20 61 6e 64 20 3a | for.both.:ref:`source-nat`.and.: |
| ece00 | 72 65 66 3a 60 64 65 73 74 69 6e 61 74 69 6f 6e 2d 6e 61 74 60 20 6e 65 65 64 73 20 74 6f 20 62 | ref:`destination-nat`.needs.to.b |
| ece20 | 65 20 63 72 65 61 74 65 64 2e 00 46 6f 72 20 3a 72 65 66 3a 60 64 65 73 74 69 6e 61 74 69 6f 6e | e.created..For.:ref:`destination |
| ece40 | 2d 6e 61 74 60 20 72 75 6c 65 73 20 74 68 65 20 70 61 63 6b 65 74 73 20 64 65 73 74 69 6e 61 74 | -nat`.rules.the.packets.destinat |
| ece60 | 69 6f 6e 20 61 64 64 72 65 73 73 20 77 69 6c 6c 20 62 65 20 72 65 70 6c 61 63 65 64 20 62 79 20 | ion.address.will.be.replaced.by. |
| ece80 | 74 68 65 20 73 70 65 63 69 66 69 65 64 20 61 64 64 72 65 73 73 20 69 6e 20 74 68 65 20 60 74 72 | the.specified.address.in.the.`tr |
| ecea0 | 61 6e 73 6c 61 74 69 6f 6e 20 61 64 64 72 65 73 73 60 20 63 6f 6d 6d 61 6e 64 2e 00 46 6f 72 20 | anslation.address`.command..For. |
| ecec0 | 3a 72 65 66 3a 60 73 6f 75 72 63 65 2d 6e 61 74 60 20 72 75 6c 65 73 20 74 68 65 20 70 61 63 6b | :ref:`source-nat`.rules.the.pack |
| ecee0 | 65 74 73 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 77 69 6c 6c 20 62 65 20 72 65 70 6c 61 | ets.source.address.will.be.repla |
| ecf00 | 63 65 64 20 77 69 74 68 20 74 68 65 20 61 64 64 72 65 73 73 20 73 70 65 63 69 66 69 65 64 20 69 | ced.with.the.address.specified.i |
| ecf20 | 6e 20 74 68 65 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 2e 20 41 20 70 6f 72 | n.the.translation.command..A.por |
| ecf40 | 74 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 63 61 6e 20 61 6c 73 6f 20 62 65 20 73 70 65 63 69 66 | t.translation.can.also.be.specif |
| ecf60 | 69 65 64 20 61 6e 64 20 69 73 20 70 61 72 74 20 6f 66 20 74 68 65 20 74 72 61 6e 73 6c 61 74 69 | ied.and.is.part.of.the.translati |
| ecf80 | 6f 6e 20 61 64 64 72 65 73 73 2e 00 46 6f 72 20 45 6e 63 72 79 70 74 69 6f 6e 3a 00 46 6f 72 20 | on.address..For.Encryption:.For. |
| ecfa0 | 48 61 73 68 69 6e 67 3a 00 46 6f 72 20 49 53 2d 49 53 20 74 6f 70 20 6f 70 65 72 61 74 65 20 63 | Hashing:.For.IS-IS.top.operate.c |
| ecfc0 | 6f 72 72 65 63 74 6c 79 2c 20 6f 6e 65 20 6d 75 73 74 20 64 6f 20 74 68 65 20 65 71 75 69 76 61 | orrectly,.one.must.do.the.equiva |
| ecfe0 | 6c 65 6e 74 20 6f 66 20 61 20 52 6f 75 74 65 72 20 49 44 20 69 6e 20 43 4c 4e 53 2e 20 54 68 69 | lent.of.a.Router.ID.in.CLNS..Thi |
| ed000 | 73 20 52 6f 75 74 65 72 20 49 44 20 69 73 20 63 61 6c 6c 65 64 20 74 68 65 20 3a 61 62 62 72 3a | s.Router.ID.is.called.the.:abbr: |
| ed020 | 60 4e 45 54 20 28 4e 65 74 77 6f 72 6b 20 45 6e 74 69 74 79 20 54 69 74 6c 65 29 60 2e 20 54 68 | `NET.(Network.Entity.Title)`..Th |
| ed040 | 69 73 20 6d 75 73 74 20 62 65 20 75 6e 69 71 75 65 20 66 6f 72 20 65 61 63 68 20 61 6e 64 20 65 | is.must.be.unique.for.each.and.e |
| ed060 | 76 65 72 79 20 72 6f 75 74 65 72 20 74 68 61 74 20 69 73 20 6f 70 65 72 61 74 69 6e 67 20 69 6e | very.router.that.is.operating.in |
| ed080 | 20 49 53 2d 49 53 2e 20 49 74 20 61 6c 73 6f 20 6d 75 73 74 20 6e 6f 74 20 62 65 20 64 75 70 6c | .IS-IS..It.also.must.not.be.dupl |
| ed0a0 | 69 63 61 74 65 64 20 6f 74 68 65 72 77 69 73 65 20 74 68 65 20 73 61 6d 65 20 69 73 73 75 65 73 | icated.otherwise.the.same.issues |
| ed0c0 | 20 74 68 61 74 20 6f 63 63 75 72 20 77 69 74 68 69 6e 20 4f 53 50 46 20 77 69 6c 6c 20 6f 63 63 | .that.occur.within.OSPF.will.occ |
| ed0e0 | 75 72 20 77 69 74 68 69 6e 20 49 53 2d 49 53 20 77 68 65 6e 20 69 74 20 63 6f 6d 65 73 20 74 6f | ur.within.IS-IS.when.it.comes.to |
| ed100 | 20 73 61 69 64 20 64 75 70 6c 69 63 61 74 69 6f 6e 2e 00 46 6f 72 20 49 6e 63 6f 6d 69 6e 67 20 | .said.duplication..For.Incoming. |
| ed120 | 61 6e 64 20 49 6d 70 6f 72 74 20 52 6f 75 74 65 2d 6d 61 70 73 20 69 66 20 77 65 20 72 65 63 65 | and.Import.Route-maps.if.we.rece |
| ed140 | 69 76 65 20 61 20 76 36 20 67 6c 6f 62 61 6c 20 61 6e 64 20 76 36 20 4c 4c 20 61 64 64 72 65 73 | ive.a.v6.global.and.v6.LL.addres |
| ed160 | 73 20 66 6f 72 20 74 68 65 20 72 6f 75 74 65 2c 20 74 68 65 6e 20 70 72 65 66 65 72 20 74 6f 20 | s.for.the.route,.then.prefer.to. |
| ed180 | 75 73 65 20 74 68 65 20 67 6c 6f 62 61 6c 20 61 64 64 72 65 73 73 20 61 73 20 74 68 65 20 6e 65 | use.the.global.address.as.the.ne |
| ed1a0 | 78 74 68 6f 70 2e 00 46 6f 72 20 4c 6f 63 61 6c 20 55 73 65 72 73 00 46 6f 72 20 4f 70 65 6e 46 | xthop..For.Local.Users.For.OpenF |
| ed1c0 | 61 62 72 69 63 20 74 6f 20 6f 70 65 72 61 74 65 20 63 6f 72 72 65 63 74 6c 79 2c 20 6f 6e 65 20 | abric.to.operate.correctly,.one. |
| ed1e0 | 6d 75 73 74 20 64 6f 20 74 68 65 20 65 71 75 69 76 61 6c 65 6e 74 20 6f 66 20 61 20 52 6f 75 74 | must.do.the.equivalent.of.a.Rout |
| ed200 | 65 72 20 49 44 20 69 6e 20 43 6f 6e 6e 65 63 74 69 6f 6e 6c 65 73 73 20 4e 65 74 77 6f 72 6b 20 | er.ID.in.Connectionless.Network. |
| ed220 | 53 65 72 76 69 63 65 20 28 43 4c 4e 53 29 2e 20 54 68 69 73 20 52 6f 75 74 65 72 20 49 44 20 69 | Service.(CLNS)..This.Router.ID.i |
| ed240 | 73 20 63 61 6c 6c 65 64 20 74 68 65 20 3a 61 62 62 72 3a 60 4e 45 54 20 28 4e 65 74 77 6f 72 6b | s.called.the.:abbr:`NET.(Network |
| ed260 | 20 45 6e 74 69 74 79 20 54 69 74 6c 65 29 60 2e 20 54 68 65 20 73 79 73 74 65 6d 20 69 64 65 6e | .Entity.Title)`..The.system.iden |
| ed280 | 74 69 66 69 65 72 20 6d 75 73 74 20 62 65 20 75 6e 69 71 75 65 20 77 69 74 68 69 6e 20 74 68 65 | tifier.must.be.unique.within.the |
| ed2a0 | 20 6e 65 74 77 6f 72 6b 00 46 6f 72 20 52 41 44 49 55 53 20 75 73 65 72 73 00 46 6f 72 20 55 53 | .network.For.RADIUS.users.For.US |
| ed2c0 | 42 20 70 6f 72 74 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 70 6c 65 61 73 65 20 72 65 66 6f 72 20 | B.port.information.please.refor. |
| ed2e0 | 74 6f 3a 20 3a 72 65 66 3a 60 68 61 72 64 77 61 72 65 5f 75 73 62 60 2e 00 46 6f 72 20 61 20 68 | to:.:ref:`hardware_usb`..For.a.h |
| ed300 | 65 61 64 73 74 61 72 74 20 79 6f 75 20 63 61 6e 20 75 73 65 20 74 68 65 20 62 65 6c 6f 77 20 65 | eadstart.you.can.use.the.below.e |
| ed320 | 78 61 6d 70 6c 65 20 6f 6e 20 68 6f 77 20 74 6f 20 62 75 69 6c 64 20 61 20 62 6f 6e 64 20 77 69 | xample.on.how.to.build.a.bond.wi |
| ed340 | 74 68 20 74 77 6f 20 69 6e 74 65 72 66 61 63 65 73 20 66 72 6f 6d 20 56 79 4f 53 20 74 6f 20 61 | th.two.interfaces.from.VyOS.to.a |
| ed360 | 20 4a 75 6e 69 70 65 72 20 45 58 20 53 77 69 74 63 68 20 73 79 73 74 65 6d 2e 00 46 6f 72 20 61 | .Juniper.EX.Switch.system..For.a |
| ed380 | 20 68 65 61 64 73 74 61 72 74 20 79 6f 75 20 63 61 6e 20 75 73 65 20 74 68 65 20 62 65 6c 6f 77 | .headstart.you.can.use.the.below |
| ed3a0 | 20 65 78 61 6d 70 6c 65 20 6f 6e 20 68 6f 77 20 74 6f 20 62 75 69 6c 64 20 61 20 62 6f 6e 64 2c | .example.on.how.to.build.a.bond, |
| ed3c0 | 70 6f 72 74 2d 63 68 61 6e 6e 65 6c 20 77 69 74 68 20 74 77 6f 20 69 6e 74 65 72 66 61 63 65 73 | port-channel.with.two.interfaces |
| ed3e0 | 20 66 72 6f 6d 20 56 79 4f 53 20 74 6f 20 61 20 41 72 75 62 61 2f 48 50 20 32 35 31 30 47 20 73 | .from.VyOS.to.a.Aruba/HP.2510G.s |
| ed400 | 77 69 74 63 68 2e 00 46 6f 72 20 61 20 6c 61 72 67 65 20 61 6d 6f 75 6e 74 20 6f 66 20 70 72 69 | witch..For.a.large.amount.of.pri |
| ed420 | 76 61 74 65 20 6d 61 63 68 69 6e 65 73 20 62 65 68 69 6e 64 20 74 68 65 20 4e 41 54 20 79 6f 75 | vate.machines.behind.the.NAT.you |
| ed440 | 72 20 61 64 64 72 65 73 73 20 70 6f 6f 6c 20 6d 69 67 68 74 20 74 6f 20 62 65 20 62 69 67 67 65 | r.address.pool.might.to.be.bigge |
| ed460 | 72 2e 20 55 73 65 20 61 6e 79 20 61 64 64 72 65 73 73 20 69 6e 20 74 68 65 20 72 61 6e 67 65 20 | r..Use.any.address.in.the.range. |
| ed480 | 31 30 30 2e 36 34 2e 30 2e 31 30 20 2d 20 31 30 30 2e 36 34 2e 30 2e 32 30 20 6f 6e 20 53 4e 41 | 100.64.0.10.-.100.64.0.20.on.SNA |
| ed4a0 | 54 20 72 75 6c 65 20 34 30 20 77 68 65 6e 20 64 6f 69 6e 67 20 74 68 65 20 74 72 61 6e 73 6c 61 | T.rule.40.when.doing.the.transla |
| ed4c0 | 74 69 6f 6e 00 46 6f 72 20 61 20 73 69 6d 70 6c 65 20 68 6f 6d 65 20 6e 65 74 77 6f 72 6b 20 75 | tion.For.a.simple.home.network.u |
| ed4e0 | 73 69 6e 67 20 6a 75 73 74 20 74 68 65 20 49 53 50 27 73 20 65 71 75 69 70 6d 65 6e 74 2c 20 74 | sing.just.the.ISP's.equipment,.t |
| ed500 | 68 69 73 20 69 73 20 75 73 75 61 6c 6c 79 20 64 65 73 69 72 61 62 6c 65 2e 20 42 75 74 20 69 66 | his.is.usually.desirable..But.if |
| ed520 | 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 72 75 6e 20 56 79 4f 53 20 61 73 20 79 6f 75 72 20 66 69 | .you.want.to.run.VyOS.as.your.fi |
| ed540 | 72 65 77 61 6c 6c 20 61 6e 64 20 72 6f 75 74 65 72 2c 20 74 68 69 73 20 77 69 6c 6c 20 72 65 73 | rewall.and.router,.this.will.res |
| ed560 | 75 6c 74 20 69 6e 20 68 61 76 69 6e 67 20 61 20 64 6f 75 62 6c 65 20 4e 41 54 20 61 6e 64 20 66 | ult.in.having.a.double.NAT.and.f |
| ed580 | 69 72 65 77 61 6c 6c 20 73 65 74 75 70 2e 20 54 68 69 73 20 72 65 73 75 6c 74 73 20 69 6e 20 61 | irewall.setup..This.results.in.a |
| ed5a0 | 20 66 65 77 20 65 78 74 72 61 20 6c 61 79 65 72 73 20 6f 66 20 63 6f 6d 70 6c 65 78 69 74 79 2c | .few.extra.layers.of.complexity, |
| ed5c0 | 20 70 61 72 74 69 63 75 6c 61 72 6c 79 20 69 66 20 79 6f 75 20 75 73 65 20 73 6f 6d 65 20 4e 41 | .particularly.if.you.use.some.NA |
| ed5e0 | 54 20 6f 72 20 74 75 6e 6e 65 6c 20 66 65 61 74 75 72 65 73 2e 00 46 6f 72 20 63 6f 6e 6e 65 63 | T.or.tunnel.features..For.connec |
| ed600 | 74 69 6f 6e 6c 65 73 73 20 70 72 6f 74 6f 63 6f 6c 73 20 61 73 20 6c 69 6b 65 20 49 43 4d 50 20 | tionless.protocols.as.like.ICMP. |
| ed620 | 61 6e 64 20 55 44 50 2c 20 61 20 66 6c 6f 77 20 69 73 20 63 6f 6e 73 69 64 65 72 65 64 20 63 6f | and.UDP,.a.flow.is.considered.co |
| ed640 | 6d 70 6c 65 74 65 20 6f 6e 63 65 20 6e 6f 20 6d 6f 72 65 20 70 61 63 6b 65 74 73 20 66 6f 72 20 | mplete.once.no.more.packets.for. |
| ed660 | 74 68 69 73 20 66 6c 6f 77 20 61 70 70 65 61 72 20 61 66 74 65 72 20 63 6f 6e 66 69 67 75 72 61 | this.flow.appear.after.configura |
| ed680 | 62 6c 65 20 74 69 6d 65 6f 75 74 2e 00 46 6f 72 20 65 76 65 72 79 20 63 6c 69 65 6e 74 20 69 6e | ble.timeout..For.every.client.in |
| ed6a0 | 20 74 68 65 20 6f 70 65 6e 76 70 6e 20 73 65 72 76 65 72 20 63 6f 6e 66 69 67 75 72 61 74 69 6f | .the.openvpn.server.configuratio |
| ed6c0 | 6e 20 61 20 74 6f 74 70 20 73 65 63 72 65 74 20 69 73 20 63 72 65 61 74 65 64 2e 20 54 6f 20 64 | n.a.totp.secret.is.created..To.d |
| ed6e0 | 69 73 70 6c 61 79 20 74 68 65 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 69 6e 66 6f 72 6d | isplay.the.authentication.inform |
| ed700 | 61 74 69 6f 6e 2c 20 75 73 65 20 74 68 65 20 63 6f 6d 6d 61 6e 64 3a 00 46 6f 72 20 65 78 61 6d | ation,.use.the.command:.For.exam |
| ed720 | 70 6c 65 2c 20 69 66 20 70 72 6f 62 6c 65 6d 73 20 77 69 74 68 20 70 6f 6f 72 20 74 69 6d 65 20 | ple,.if.problems.with.poor.time. |
| ed740 | 73 79 6e 63 68 72 6f 6e 69 7a 61 74 69 6f 6e 20 61 72 65 20 65 78 70 65 72 69 65 6e 63 65 64 2c | synchronization.are.experienced, |
| ed760 | 20 74 68 65 20 77 69 6e 64 6f 77 20 63 61 6e 20 62 65 20 69 6e 63 72 65 61 73 65 64 20 66 72 6f | .the.window.can.be.increased.fro |
| ed780 | 6d 20 69 74 73 20 64 65 66 61 75 6c 74 20 73 69 7a 65 20 6f 66 20 33 20 70 65 72 6d 69 74 74 65 | m.its.default.size.of.3.permitte |
| ed7a0 | 64 20 63 6f 64 65 73 20 28 6f 6e 65 20 70 72 65 76 69 6f 75 73 20 63 6f 64 65 2c 20 74 68 65 20 | d.codes.(one.previous.code,.the. |
| ed7c0 | 63 75 72 72 65 6e 74 20 63 6f 64 65 2c 20 74 68 65 20 6e 65 78 74 20 63 6f 64 65 29 20 74 6f 20 | current.code,.the.next.code).to. |
| ed7e0 | 31 37 20 70 65 72 6d 69 74 74 65 64 20 63 6f 64 65 73 20 28 74 68 65 20 38 20 70 72 65 76 69 6f | 17.permitted.codes.(the.8.previo |
| ed800 | 75 73 20 63 6f 64 65 73 2c 20 74 68 65 20 63 75 72 72 65 6e 74 20 63 6f 64 65 2c 20 61 6e 64 20 | us.codes,.the.current.code,.and. |
| ed820 | 74 68 65 20 38 20 6e 65 78 74 20 63 6f 64 65 73 29 2e 20 54 68 69 73 20 77 69 6c 6c 20 70 65 72 | the.8.next.codes)..This.will.per |
| ed840 | 6d 69 74 20 66 6f 72 20 61 20 74 69 6d 65 20 73 6b 65 77 20 6f 66 20 75 70 20 74 6f 20 34 20 6d | mit.for.a.time.skew.of.up.to.4.m |
| ed860 | 69 6e 75 74 65 73 20 62 65 74 77 65 65 6e 20 63 6c 69 65 6e 74 20 61 6e 64 20 73 65 72 76 65 72 | inutes.between.client.and.server |
| ed880 | 2e 00 46 6f 72 20 65 78 61 6d 70 6c 65 3a 00 46 6f 72 20 66 69 72 65 77 61 6c 6c 20 66 69 6c 74 | ..For.example:.For.firewall.filt |
| ed8a0 | 65 72 69 6e 67 2c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 73 68 6f 75 6c 64 20 62 65 20 64 | ering,.configuration.should.be.d |
| ed8c0 | 6f 6e 65 20 69 6e 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 5b 69 70 76 34 20 7c 20 69 70 | one.in.``set.firewall.[ipv4.|.ip |
| ed8e0 | 76 36 5d 20 2e 2e 2e 60 60 00 46 6f 72 20 66 69 72 65 77 61 6c 6c 20 66 69 6c 74 65 72 69 6e 67 | v6]....``.For.firewall.filtering |
| ed900 | 2c 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 20 6e 65 65 64 20 74 6f 20 62 65 20 63 72 65 61 | ,.firewall.rules.need.to.be.crea |
| ed920 | 74 65 64 2e 20 45 61 63 68 20 72 75 6c 65 20 69 73 20 6e 75 6d 62 65 72 65 64 2c 20 68 61 73 20 | ted..Each.rule.is.numbered,.has. |
| ed940 | 61 6e 20 61 63 74 69 6f 6e 20 74 6f 20 61 70 70 6c 79 20 69 66 20 74 68 65 20 72 75 6c 65 20 69 | an.action.to.apply.if.the.rule.i |
| ed960 | 73 20 6d 61 74 63 68 65 64 2c 20 61 6e 64 20 74 68 65 20 61 62 69 6c 69 74 79 20 74 6f 20 73 70 | s.matched,.and.the.ability.to.sp |
| ed980 | 65 63 69 66 79 20 6d 75 6c 74 69 70 6c 65 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 | ecify.multiple.matching.criteria |
| ed9a0 | 2e 20 44 61 74 61 20 70 61 63 6b 65 74 73 20 67 6f 20 74 68 72 6f 75 67 68 20 74 68 65 20 72 75 | ..Data.packets.go.through.the.ru |
| ed9c0 | 6c 65 73 20 66 72 6f 6d 20 31 20 2d 20 39 39 39 39 39 39 2c 20 73 6f 20 6f 72 64 65 72 20 69 73 | les.from.1.-.999999,.so.order.is |
| ed9e0 | 20 63 72 75 63 69 61 6c 2e 20 41 74 20 74 68 65 20 66 69 72 73 74 20 6d 61 74 63 68 20 74 68 65 | .crucial..At.the.first.match.the |
| eda00 | 20 61 63 74 69 6f 6e 20 6f 66 20 74 68 65 20 72 75 6c 65 20 77 69 6c 6c 20 62 65 20 65 78 65 63 | .action.of.the.rule.will.be.exec |
| eda20 | 75 74 65 64 2e 00 46 6f 72 20 66 69 72 65 77 61 6c 6c 20 66 69 6c 74 65 72 69 6e 67 2c 20 66 69 | uted..For.firewall.filtering,.fi |
| eda40 | 72 65 77 61 6c 6c 20 72 75 6c 65 73 20 6e 65 65 64 73 20 74 6f 20 62 65 20 63 72 65 61 74 65 64 | rewall.rules.needs.to.be.created |
| eda60 | 2e 20 45 61 63 68 20 72 75 6c 65 20 69 73 20 6e 75 6d 62 65 72 65 64 2c 20 68 61 73 20 61 6e 20 | ..Each.rule.is.numbered,.has.an. |
| eda80 | 61 63 74 69 6f 6e 20 74 6f 20 61 70 70 6c 79 20 69 66 20 74 68 65 20 72 75 6c 65 20 69 73 20 6d | action.to.apply.if.the.rule.is.m |
| edaa0 | 61 74 63 68 65 64 2c 20 61 6e 64 20 74 68 65 20 61 62 69 6c 69 74 79 20 74 6f 20 73 70 65 63 69 | atched,.and.the.ability.to.speci |
| edac0 | 66 79 20 6d 75 6c 74 69 70 6c 65 20 63 72 69 74 65 72 69 61 20 6d 61 74 63 68 65 72 73 2e 20 44 | fy.multiple.criteria.matchers..D |
| edae0 | 61 74 61 20 70 61 63 6b 65 74 73 20 67 6f 20 74 68 72 6f 75 67 68 20 74 68 65 20 72 75 6c 65 73 | ata.packets.go.through.the.rules |
| edb00 | 20 66 72 6f 6d 20 31 20 2d 20 39 39 39 39 39 39 2c 20 73 6f 20 6f 72 64 65 72 20 69 73 20 63 72 | .from.1.-.999999,.so.order.is.cr |
| edb20 | 75 63 69 61 6c 2e 20 41 74 20 74 68 65 20 66 69 72 73 74 20 6d 61 74 63 68 20 74 68 65 20 61 63 | ucial..At.the.first.match.the.ac |
| edb40 | 74 69 6f 6e 20 6f 66 20 74 68 65 20 72 75 6c 65 20 77 69 6c 6c 20 62 65 20 65 78 65 63 75 74 65 | tion.of.the.rule.will.be.execute |
| edb60 | 64 2e 00 46 6f 72 20 66 72 61 67 6d 65 6e 74 65 64 20 54 43 50 20 6f 72 20 55 44 50 20 70 61 63 | d..For.fragmented.TCP.or.UDP.pac |
| edb80 | 6b 65 74 73 20 61 6e 64 20 61 6c 6c 20 6f 74 68 65 72 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 | kets.and.all.other.IPv4.and.IPv6 |
| edba0 | 20 70 72 6f 74 6f 63 6f 6c 20 74 72 61 66 66 69 63 2c 20 74 68 65 20 73 6f 75 72 63 65 20 61 6e | .protocol.traffic,.the.source.an |
| edbc0 | 64 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 70 6f 72 74 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 69 | d.destination.port.information.i |
| edbe0 | 73 20 6f 6d 69 74 74 65 64 2e 20 46 6f 72 20 6e 6f 6e 2d 49 50 20 74 72 61 66 66 69 63 2c 20 74 | s.omitted..For.non-IP.traffic,.t |
| edc00 | 68 65 20 66 6f 72 6d 75 6c 61 20 69 73 20 74 68 65 20 73 61 6d 65 20 61 73 20 66 6f 72 20 74 68 | he.formula.is.the.same.as.for.th |
| edc20 | 65 20 6c 61 79 65 72 32 20 74 72 61 6e 73 6d 69 74 20 68 61 73 68 20 70 6f 6c 69 63 79 2e 00 46 | e.layer2.transmit.hash.policy..F |
| edc40 | 6f 72 20 67 65 6e 65 72 61 74 69 6e 67 20 61 6e 20 4f 54 50 20 6b 65 79 20 69 6e 20 56 79 4f 53 | or.generating.an.OTP.key.in.VyOS |
| edc60 | 2c 20 79 6f 75 20 63 61 6e 20 75 73 65 20 74 68 65 20 43 4c 49 20 63 6f 6d 6d 61 6e 64 20 28 6f | ,.you.can.use.the.CLI.command.(o |
| edc80 | 70 65 72 61 74 69 6f 6e 61 6c 20 6d 6f 64 65 29 3a 00 46 6f 72 20 69 6e 62 6f 75 6e 64 20 75 70 | perational.mode):.For.inbound.up |
| edca0 | 64 61 74 65 73 20 74 68 65 20 6f 72 64 65 72 20 6f 66 20 70 72 65 66 65 72 65 6e 63 65 20 69 73 | dates.the.order.of.preference.is |
| edcc0 | 3a 00 46 6f 72 20 69 6e 73 74 61 6e 63 65 2c 20 77 69 74 68 20 3a 63 6f 64 65 3a 60 73 65 74 20 | :.For.instance,.with.:code:`set. |
| edce0 | 71 6f 73 20 70 6f 6c 69 63 79 20 73 68 61 70 65 72 20 4d 59 2d 53 48 41 50 45 52 20 63 6c 61 73 | qos.policy.shaper.MY-SHAPER.clas |
| edd00 | 73 20 33 30 20 73 65 74 2d 64 73 63 70 20 45 46 60 20 79 6f 75 20 77 6f 75 6c 64 20 62 65 20 6d | s.30.set-dscp.EF`.you.would.be.m |
| edd20 | 6f 64 69 66 79 69 6e 67 20 74 68 65 20 44 53 43 50 20 66 69 65 6c 64 20 76 61 6c 75 65 20 6f 66 | odifying.the.DSCP.field.value.of |
| edd40 | 20 70 61 63 6b 65 74 73 20 69 6e 20 74 68 61 74 20 63 6c 61 73 73 20 74 6f 20 45 78 70 65 64 69 | .packets.in.that.class.to.Expedi |
| edd60 | 74 65 20 46 6f 72 77 61 72 64 69 6e 67 2e 00 46 6f 72 20 69 70 76 34 3a 00 46 6f 72 20 6c 61 74 | te.Forwarding..For.ipv4:.For.lat |
| edd80 | 65 73 74 20 72 65 6c 65 61 73 65 73 2c 20 72 65 66 65 72 20 74 68 65 20 60 66 69 72 65 77 61 6c | est.releases,.refer.the.`firewal |
| edda0 | 6c 20 28 69 6e 74 65 72 66 61 63 65 2d 67 72 6f 75 70 73 29 20 3c 68 74 74 70 73 3a 2f 2f 64 6f | l.(interface-groups).<https://do |
| eddc0 | 63 73 2e 76 79 6f 73 2e 69 6f 2f 65 6e 2f 6c 61 74 65 73 74 2f 63 6f 6e 66 69 67 75 72 61 74 69 | cs.vyos.io/en/latest/configurati |
| edde0 | 6f 6e 2f 66 69 72 65 77 61 6c 6c 2f 67 65 6e 65 72 61 6c 2e 68 74 6d 6c 23 69 6e 74 65 72 66 61 | on/firewall/general.html#interfa |
| ede00 | 63 65 2d 67 72 6f 75 70 73 3e 60 5f 20 6d 61 69 6e 20 70 61 67 65 20 74 6f 20 63 6f 6e 66 69 67 | ce-groups>`_.main.page.to.config |
| ede20 | 75 72 65 20 7a 6f 6e 65 20 62 61 73 65 64 20 72 75 6c 65 73 2e 20 4e 65 77 20 73 79 6e 74 61 78 | ure.zone.based.rules..New.syntax |
| ede40 | 20 77 61 73 20 69 6e 74 72 6f 64 75 63 65 64 20 68 65 72 65 20 3a 76 79 74 61 73 6b 3a 60 54 35 | .was.introduced.here.:vytask:`T5 |
| ede60 | 31 36 30 60 00 46 6f 72 20 6c 61 74 65 73 74 20 72 65 6c 65 61 73 65 73 2c 20 72 65 66 65 72 20 | 160`.For.latest.releases,.refer. |
| ede80 | 74 68 65 20 60 66 69 72 65 77 61 6c 6c 20 3c 68 74 74 70 73 3a 2f 2f 64 6f 63 73 2e 76 79 6f 73 | the.`firewall.<https://docs.vyos |
| edea0 | 2e 69 6f 2f 65 6e 2f 6c 61 74 65 73 74 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 66 69 72 65 | .io/en/latest/configuration/fire |
| edec0 | 77 61 6c 6c 2f 67 65 6e 65 72 61 6c 2e 68 74 6d 6c 23 69 6e 74 65 72 66 61 63 65 2d 67 72 6f 75 | wall/general.html#interface-grou |
| edee0 | 70 73 3e 60 5f 20 6d 61 69 6e 20 70 61 67 65 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 7a 6f 6e | ps>`_.main.page.to.configure.zon |
| edf00 | 65 20 62 61 73 65 64 20 72 75 6c 65 73 2e 20 4e 65 77 20 73 79 6e 74 61 78 20 77 61 73 20 69 6e | e.based.rules..New.syntax.was.in |
| edf20 | 74 72 6f 64 75 63 65 64 20 68 65 72 65 20 3a 76 79 74 61 73 6b 3a 60 54 35 31 36 30 60 00 46 6f | troduced.here.:vytask:`T5160`.Fo |
| edf40 | 72 20 6d 6f 72 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 6e 20 68 6f 77 20 4d 50 4c 53 20 6c | r.more.information.on.how.MPLS.l |
| edf60 | 61 62 65 6c 20 73 77 69 74 63 68 69 6e 67 20 77 6f 72 6b 73 2c 20 70 6c 65 61 73 65 20 67 6f 20 | abel.switching.works,.please.go. |
| edf80 | 76 69 73 69 74 20 60 57 69 6b 69 70 65 64 69 61 20 28 4d 50 4c 53 29 60 5f 2e 00 46 6f 72 20 6d | visit.`Wikipedia.(MPLS)`_..For.m |
| edfa0 | 75 6c 74 69 20 68 6f 70 20 73 65 73 73 69 6f 6e 73 20 6f 6e 6c 79 2e 20 43 6f 6e 66 69 67 75 72 | ulti.hop.sessions.only..Configur |
| edfc0 | 65 20 74 68 65 20 6d 69 6e 69 6d 75 6d 20 65 78 70 65 63 74 65 64 20 54 54 4c 20 66 6f 72 20 61 | e.the.minimum.expected.TTL.for.a |
| edfe0 | 6e 20 69 6e 63 6f 6d 69 6e 67 20 42 46 44 20 63 6f 6e 74 72 6f 6c 20 70 61 63 6b 65 74 2e 00 46 | n.incoming.BFD.control.packet..F |
| ee000 | 6f 72 20 6e 65 74 77 6f 72 6b 20 6d 61 69 6e 74 65 6e 61 6e 63 65 2c 20 69 74 27 73 20 61 20 67 | or.network.maintenance,.it's.a.g |
| ee020 | 6f 6f 64 20 69 64 65 61 20 74 6f 20 64 69 72 65 63 74 20 75 73 65 72 73 20 74 6f 20 61 20 62 61 | ood.idea.to.direct.users.to.a.ba |
| ee040 | 63 6b 75 70 20 73 65 72 76 65 72 20 73 6f 20 74 68 61 74 20 74 68 65 20 70 72 69 6d 61 72 79 20 | ckup.server.so.that.the.primary. |
| ee060 | 73 65 72 76 65 72 20 63 61 6e 20 62 65 20 73 61 66 65 6c 79 20 74 61 6b 65 6e 20 6f 75 74 20 6f | server.can.be.safely.taken.out.o |
| ee080 | 66 20 73 65 72 76 69 63 65 2e 20 49 74 27 73 20 70 6f 73 73 69 62 6c 65 20 74 6f 20 73 77 69 74 | f.service..It's.possible.to.swit |
| ee0a0 | 63 68 20 79 6f 75 72 20 50 50 50 6f 45 20 73 65 72 76 65 72 20 74 6f 20 6d 61 69 6e 74 65 6e 61 | ch.your.PPPoE.server.to.maintena |
| ee0c0 | 6e 63 65 20 6d 6f 64 65 20 77 68 65 72 65 20 69 74 20 6d 61 69 6e 74 61 69 6e 73 20 61 6c 72 65 | nce.mode.where.it.maintains.alre |
| ee0e0 | 61 64 79 20 65 73 74 61 62 6c 69 73 68 65 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2c 20 62 75 74 | ady.established.connections,.but |
| ee100 | 20 72 65 66 75 73 65 73 20 6e 65 77 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 61 74 74 65 6d 70 74 73 | .refuses.new.connection.attempts |
| ee120 | 2e 00 46 6f 72 20 6e 65 74 77 6f 72 6b 73 20 63 6f 6e 73 69 73 74 69 6e 67 20 6f 66 20 56 79 4f | ..For.networks.consisting.of.VyO |
| ee140 | 53 20 61 6e 64 20 6f 74 68 65 72 20 4c 69 6e 75 78 20 73 79 73 74 65 6d 73 20 72 75 6e 6e 69 6e | S.and.other.Linux.systems.runnin |
| ee160 | 67 20 72 65 6c 61 74 69 76 65 6c 79 20 72 65 63 65 6e 74 20 76 65 72 73 69 6f 6e 73 20 6f 66 20 | g.relatively.recent.versions.of. |
| ee180 | 74 68 65 20 63 68 72 6f 6e 79 20 64 61 65 6d 6f 6e 2c 20 4e 54 50 20 70 61 63 6b 65 74 73 20 63 | the.chrony.daemon,.NTP.packets.c |
| ee1a0 | 61 6e 20 62 65 20 22 74 75 6e 6e 65 6c 65 64 22 20 6f 76 65 72 20 50 54 50 2e 20 4e 54 50 20 6f | an.be."tunneled".over.PTP..NTP.o |
| ee1c0 | 76 65 72 20 50 54 50 20 70 72 6f 76 69 64 65 73 20 74 68 65 20 62 65 73 74 20 6f 66 20 62 6f 74 | ver.PTP.provides.the.best.of.bot |
| ee1e0 | 68 20 77 6f 72 6c 64 73 2c 20 6c 65 76 65 72 61 67 69 6e 67 20 68 61 72 64 77 61 72 65 20 73 75 | h.worlds,.leveraging.hardware.su |
| ee200 | 70 70 6f 72 74 20 66 6f 72 20 74 69 6d 65 73 74 61 6d 70 69 6e 67 20 50 54 50 20 70 61 63 6b 65 | pport.for.timestamping.PTP.packe |
| ee220 | 74 73 20 77 68 69 6c 65 20 72 65 74 61 69 6e 69 6e 67 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 | ts.while.retaining.the.configura |
| ee240 | 74 69 6f 6e 20 66 6c 65 78 69 62 69 6c 69 74 79 20 61 6e 64 20 66 61 75 6c 74 20 74 6f 6c 65 72 | tion.flexibility.and.fault.toler |
| ee260 | 61 6e 63 65 20 6f 66 20 4e 54 50 2e 00 46 6f 72 20 6f 70 74 69 6d 61 6c 20 73 63 61 6c 61 62 69 | ance.of.NTP..For.optimal.scalabi |
| ee280 | 6c 69 74 79 2c 20 4d 75 6c 74 69 63 61 73 74 20 73 68 6f 75 6c 64 6e 27 74 20 62 65 20 75 73 65 | lity,.Multicast.shouldn't.be.use |
| ee2a0 | 64 20 61 74 20 61 6c 6c 2c 20 62 75 74 20 69 6e 73 74 65 61 64 20 75 73 65 20 42 47 50 20 74 6f | d.at.all,.but.instead.use.BGP.to |
| ee2c0 | 20 73 69 67 6e 61 6c 20 61 6c 6c 20 63 6f 6e 6e 65 63 74 65 64 20 64 65 76 69 63 65 73 20 62 65 | .signal.all.connected.devices.be |
| ee2e0 | 74 77 65 65 6e 20 6c 65 61 76 65 73 2e 20 55 6e 66 6f 72 74 75 6e 61 74 65 6c 79 2c 20 56 79 4f | tween.leaves..Unfortunately,.VyO |
| ee300 | 53 20 64 6f 65 73 20 6e 6f 74 20 79 65 74 20 73 75 70 70 6f 72 74 20 74 68 69 73 2e 00 46 6f 72 | S.does.not.yet.support.this..For |
| ee320 | 20 6f 75 74 62 6f 75 6e 64 20 75 70 64 61 74 65 73 20 74 68 65 20 6f 72 64 65 72 20 6f 66 20 70 | .outbound.updates.the.order.of.p |
| ee340 | 72 65 66 65 72 65 6e 63 65 20 69 73 3a 00 46 6f 72 20 72 65 66 65 72 65 6e 63 65 2c 20 61 20 64 | reference.is:.For.reference,.a.d |
| ee360 | 65 73 63 72 69 70 74 69 6f 6e 20 63 61 6e 20 62 65 20 64 65 66 69 6e 65 64 20 66 6f 72 20 65 76 | escription.can.be.defined.for.ev |
| ee380 | 65 72 79 20 64 65 66 69 6e 65 64 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 2e 00 46 6f 72 20 72 65 | ery.defined.custom.chain..For.re |
| ee3a0 | 66 65 72 65 6e 63 65 2c 20 61 20 64 65 73 63 72 69 70 74 69 6f 6e 20 63 61 6e 20 62 65 20 64 65 | ference,.a.description.can.be.de |
| ee3c0 | 66 69 6e 65 64 20 66 6f 72 20 65 76 65 72 79 20 73 69 6e 67 6c 65 20 72 75 6c 65 2c 20 61 6e 64 | fined.for.every.single.rule,.and |
| ee3e0 | 20 66 6f 72 20 65 76 65 72 79 20 64 65 66 69 6e 65 64 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 2e | .for.every.defined.custom.chain. |
| ee400 | 00 46 6f 72 20 73 65 63 75 72 69 74 79 2c 20 74 68 65 20 6c 69 73 74 65 6e 20 61 64 64 72 65 73 | .For.security,.the.listen.addres |
| ee420 | 73 20 73 68 6f 75 6c 64 20 6f 6e 6c 79 20 62 65 20 75 73 65 64 20 6f 6e 20 69 6e 74 65 72 6e 61 | s.should.only.be.used.on.interna |
| ee440 | 6c 2f 74 72 75 73 74 65 64 20 6e 65 74 77 6f 72 6b 73 21 00 46 6f 72 20 73 65 72 69 61 6c 20 76 | l/trusted.networks!.For.serial.v |
| ee460 | 69 61 20 55 53 42 20 70 6f 72 74 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 70 6c 65 61 73 65 20 72 | ia.USB.port.information.please.r |
| ee480 | 65 66 6f 72 20 74 6f 3a 20 3a 72 65 66 3a 60 68 61 72 64 77 61 72 65 5f 75 73 62 60 2e 00 46 6f | efor.to:.:ref:`hardware_usb`..Fo |
| ee4a0 | 72 20 73 69 6d 70 6c 69 63 69 74 79 20 77 65 27 6c 6c 20 61 73 73 75 6d 65 20 74 68 61 74 20 74 | r.simplicity.we'll.assume.that.t |
| ee4c0 | 68 65 20 70 72 6f 74 6f 63 6f 6c 20 69 73 20 47 52 45 2c 20 69 74 27 73 20 6e 6f 74 20 68 61 72 | he.protocol.is.GRE,.it's.not.har |
| ee4e0 | 64 20 74 6f 20 67 75 65 73 73 20 77 68 61 74 20 6e 65 65 64 73 20 74 6f 20 62 65 20 63 68 61 6e | d.to.guess.what.needs.to.be.chan |
| ee500 | 67 65 64 20 74 6f 20 6d 61 6b 65 20 69 74 20 77 6f 72 6b 20 77 69 74 68 20 61 20 64 69 66 66 65 | ged.to.make.it.work.with.a.diffe |
| ee520 | 72 65 6e 74 20 70 72 6f 74 6f 63 6f 6c 2e 20 57 65 20 61 73 73 75 6d 65 20 74 68 61 74 20 49 50 | rent.protocol..We.assume.that.IP |
| ee540 | 73 65 63 20 77 69 6c 6c 20 75 73 65 20 70 72 65 2d 73 68 61 72 65 64 20 73 65 63 72 65 74 20 61 | sec.will.use.pre-shared.secret.a |
| ee560 | 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 61 6e 64 20 77 69 6c 6c 20 75 73 65 20 41 45 53 31 32 | uthentication.and.will.use.AES12 |
| ee580 | 38 2f 53 48 41 31 20 66 6f 72 20 74 68 65 20 63 69 70 68 65 72 20 61 6e 64 20 68 61 73 68 2e 20 | 8/SHA1.for.the.cipher.and.hash.. |
| ee5a0 | 41 64 6a 75 73 74 20 74 68 69 73 20 61 73 20 6e 65 63 65 73 73 61 72 79 2e 00 46 6f 72 20 74 68 | Adjust.this.as.necessary..For.th |
| ee5c0 | 65 20 3a 72 65 66 3a 60 64 65 73 74 69 6e 61 74 69 6f 6e 2d 6e 61 74 36 36 60 20 72 75 6c 65 2c | e.:ref:`destination-nat66`.rule, |
| ee5e0 | 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 | .the.destination.address.of.the. |
| ee600 | 70 61 63 6b 65 74 20 69 73 72 65 70 6c 61 63 65 64 20 62 79 20 74 68 65 20 61 64 64 72 65 73 73 | packet.isreplaced.by.the.address |
| ee620 | 20 63 61 6c 63 75 6c 61 74 65 64 20 66 72 6f 6d 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 61 | .calculated.from.the.specified.a |
| ee640 | 64 64 72 65 73 73 20 6f 72 20 70 72 65 66 69 78 20 69 6e 20 74 68 65 20 60 74 72 61 6e 73 6c 61 | ddress.or.prefix.in.the.`transla |
| ee660 | 74 69 6f 6e 20 61 64 64 72 65 73 73 60 20 63 6f 6d 6d 61 6e 64 00 46 6f 72 20 74 68 65 20 4f 70 | tion.address`.command.For.the.Op |
| ee680 | 65 6e 56 50 4e 20 74 72 61 66 66 69 63 20 74 6f 20 70 61 73 73 20 74 68 72 6f 75 67 68 20 74 68 | enVPN.traffic.to.pass.through.th |
| ee6a0 | 65 20 57 41 4e 20 69 6e 74 65 72 66 61 63 65 2c 20 79 6f 75 20 6d 75 73 74 20 63 72 65 61 74 65 | e.WAN.interface,.you.must.create |
| ee6c0 | 20 61 20 66 69 72 65 77 61 6c 6c 20 65 78 63 65 70 74 69 6f 6e 2e 00 46 6f 72 20 74 68 65 20 57 | .a.firewall.exception..For.the.W |
| ee6e0 | 69 72 65 47 75 61 72 64 20 74 72 61 66 66 69 63 20 74 6f 20 70 61 73 73 20 74 68 72 6f 75 67 68 | ireGuard.traffic.to.pass.through |
| ee700 | 20 74 68 65 20 57 41 4e 20 69 6e 74 65 72 66 61 63 65 2c 20 79 6f 75 20 6d 75 73 74 20 63 72 65 | .the.WAN.interface,.you.must.cre |
| ee720 | 61 74 65 20 61 20 66 69 72 65 77 61 6c 6c 20 65 78 63 65 70 74 69 6f 6e 2e 00 46 6f 72 20 74 68 | ate.a.firewall.exception..For.th |
| ee740 | 65 20 61 76 65 72 61 67 65 20 75 73 65 72 20 61 20 73 65 72 69 61 6c 20 63 6f 6e 73 6f 6c 65 20 | e.average.user.a.serial.console. |
| ee760 | 68 61 73 20 6e 6f 20 61 64 76 61 6e 74 61 67 65 20 6f 76 65 72 20 61 20 63 6f 6e 73 6f 6c 65 20 | has.no.advantage.over.a.console. |
| ee780 | 6f 66 66 65 72 65 64 20 62 79 20 61 20 64 69 72 65 63 74 6c 79 20 61 74 74 61 63 68 65 64 20 6b | offered.by.a.directly.attached.k |
| ee7a0 | 65 79 62 6f 61 72 64 20 61 6e 64 20 73 63 72 65 65 6e 2e 20 53 65 72 69 61 6c 20 63 6f 6e 73 6f | eyboard.and.screen..Serial.conso |
| ee7c0 | 6c 65 73 20 61 72 65 20 6d 75 63 68 20 73 6c 6f 77 65 72 2c 20 74 61 6b 69 6e 67 20 75 70 20 74 | les.are.much.slower,.taking.up.t |
| ee7e0 | 6f 20 61 20 73 65 63 6f 6e 64 20 74 6f 20 66 69 6c 6c 20 61 20 38 30 20 63 6f 6c 75 6d 6e 20 62 | o.a.second.to.fill.a.80.column.b |
| ee800 | 79 20 32 34 20 6c 69 6e 65 20 73 63 72 65 65 6e 2e 20 53 65 72 69 61 6c 20 63 6f 6e 73 6f 6c 65 | y.24.line.screen..Serial.console |
| ee820 | 73 20 67 65 6e 65 72 61 6c 6c 79 20 6f 6e 6c 79 20 73 75 70 70 6f 72 74 20 6e 6f 6e 2d 70 72 6f | s.generally.only.support.non-pro |
| ee840 | 70 6f 72 74 69 6f 6e 61 6c 20 41 53 43 49 49 20 74 65 78 74 2c 20 77 69 74 68 20 6c 69 6d 69 74 | portional.ASCII.text,.with.limit |
| ee860 | 65 64 20 73 75 70 70 6f 72 74 20 66 6f 72 20 6c 61 6e 67 75 61 67 65 73 20 6f 74 68 65 72 20 74 | ed.support.for.languages.other.t |
| ee880 | 68 61 6e 20 45 6e 67 6c 69 73 68 2e 00 46 6f 72 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e | han.English..For.the.destination |
| ee8a0 | 2c 20 67 72 6f 75 70 73 20 63 61 6e 20 61 6c 73 6f 20 62 65 20 75 73 65 64 20 69 6e 73 74 65 61 | ,.groups.can.also.be.used.instea |
| ee8c0 | 64 20 6f 66 20 61 6e 20 61 64 64 72 65 73 73 2e 00 46 6f 72 20 74 68 65 20 69 6e 67 72 65 73 73 | d.of.an.address..For.the.ingress |
| ee8e0 | 20 74 72 61 66 66 69 63 20 6f 66 20 61 6e 20 69 6e 74 65 72 66 61 63 65 2c 20 74 68 65 72 65 20 | .traffic.of.an.interface,.there. |
| ee900 | 69 73 20 6f 6e 6c 79 20 6f 6e 65 20 70 6f 6c 69 63 79 20 79 6f 75 20 63 61 6e 20 64 69 72 65 63 | is.only.one.policy.you.can.direc |
| ee920 | 74 6c 79 20 61 70 70 6c 79 2c 20 61 20 2a 2a 4c 69 6d 69 74 65 72 2a 2a 20 70 6f 6c 69 63 79 2e | tly.apply,.a.**Limiter**.policy. |
| ee940 | 20 59 6f 75 20 63 61 6e 6e 6f 74 20 61 70 70 6c 79 20 61 20 73 68 61 70 69 6e 67 20 70 6f 6c 69 | .You.cannot.apply.a.shaping.poli |
| ee960 | 63 79 20 64 69 72 65 63 74 6c 79 20 74 6f 20 74 68 65 20 69 6e 67 72 65 73 73 20 74 72 61 66 66 | cy.directly.to.the.ingress.traff |
| ee980 | 69 63 20 6f 66 20 61 6e 79 20 69 6e 74 65 72 66 61 63 65 20 62 65 63 61 75 73 65 20 73 68 61 70 | ic.of.any.interface.because.shap |
| ee9a0 | 69 6e 67 20 6f 6e 6c 79 20 77 6f 72 6b 73 20 66 6f 72 20 6f 75 74 62 6f 75 6e 64 20 74 72 61 66 | ing.only.works.for.outbound.traf |
| ee9c0 | 66 69 63 2e 00 46 6f 72 20 74 68 65 20 73 61 6b 65 20 6f 66 20 64 65 6d 6f 6e 73 74 72 61 74 69 | fic..For.the.sake.of.demonstrati |
| ee9e0 | 6f 6e 2c 20 60 65 78 61 6d 70 6c 65 20 23 31 20 69 6e 20 74 68 65 20 6f 66 66 69 63 69 61 6c 20 | on,.`example.#1.in.the.official. |
| eea00 | 64 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 3c 68 74 74 70 73 3a 2f 2f 77 77 77 2e 7a 61 62 62 69 | documentation.<https://www.zabbi |
| eea20 | 78 2e 63 6f 6d 2f 64 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 2f 63 75 72 72 65 6e 74 2f 6d 61 6e 75 | x.com/documentation/current/manu |
| eea40 | 61 6c 2f 20 69 6e 73 74 61 6c 6c 61 74 69 6f 6e 2f 63 6f 6e 74 61 69 6e 65 72 73 3e 60 5f 20 74 | al/.installation/containers>`_.t |
| eea60 | 6f 20 74 68 65 20 64 65 63 6c 61 72 61 74 69 76 65 20 56 79 4f 53 20 43 4c 49 20 73 79 6e 74 61 | o.the.declarative.VyOS.CLI.synta |
| eea80 | 78 2e 00 46 6f 72 20 74 68 65 20 73 61 6b 65 20 6f 66 20 64 65 6d 6f 6e 73 74 72 61 74 69 6f 6e | x..For.the.sake.of.demonstration |
| eeaa0 | 2c 20 60 65 78 61 6d 70 6c 65 20 23 31 20 69 6e 20 74 68 65 20 6f 66 66 69 63 69 61 6c 20 64 6f | ,.`example.#1.in.the.official.do |
| eeac0 | 63 75 6d 65 6e 74 61 74 69 6f 6e 20 3c 68 74 74 70 73 3a 2f 2f 77 77 77 2e 7a 61 62 62 69 78 2e | cumentation.<https://www.zabbix. |
| eeae0 | 63 6f 6d 2f 64 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 2f 63 75 72 72 65 6e 74 2f 6d 61 6e 75 61 6c | com/documentation/current/manual |
| eeb00 | 2f 69 6e 73 74 61 6c 6c 61 74 69 6f 6e 2f 63 6f 6e 74 61 69 6e 65 72 73 3e 60 5f 20 74 6f 20 74 | /installation/containers>`_.to.t |
| eeb20 | 68 65 20 64 65 63 6c 61 72 61 74 69 76 65 20 56 79 4f 53 20 43 4c 49 20 73 79 6e 74 61 78 2e 00 | he.declarative.VyOS.CLI.syntax.. |
| eeb40 | 46 6f 72 20 74 72 61 66 66 69 63 20 64 65 73 74 69 6e 65 64 20 74 6f 20 74 68 65 20 72 6f 75 74 | For.traffic.destined.to.the.rout |
| eeb60 | 65 72 20 69 74 73 65 6c 66 2c 20 6f 72 20 74 68 61 74 20 6e 65 65 64 73 20 74 6f 20 62 65 20 72 | er.itself,.or.that.needs.to.be.r |
| eeb80 | 6f 75 74 65 64 20 28 61 73 73 75 6d 69 6e 67 20 61 20 6c 61 79 65 72 33 20 62 72 69 64 67 65 20 | outed.(assuming.a.layer3.bridge. |
| eeba0 | 69 73 20 63 6f 6e 66 69 67 75 72 65 64 29 2c 20 74 68 65 20 62 61 73 65 20 63 68 61 69 6e 20 69 | is.configured),.the.base.chain.i |
| eebc0 | 73 20 2a 2a 69 6e 70 75 74 2a 2a 2c 20 74 68 65 20 62 61 73 65 20 63 6f 6d 6d 61 6e 64 20 69 73 | s.**input**,.the.base.command.is |
| eebe0 | 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 62 72 69 64 67 65 20 69 6e 70 75 74 20 66 69 6c | .``set.firewall.bridge.input.fil |
| eec00 | 74 65 72 20 2e 2e 2e 60 60 20 61 6e 64 20 74 68 65 20 70 61 74 68 20 69 73 3a 00 46 6f 72 20 74 | ter....``.and.the.path.is:.For.t |
| eec20 | 72 61 66 66 69 63 20 6f 72 69 67 69 6e 61 74 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 2c | raffic.originated.by.the.router, |
| eec40 | 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 20 2a 2a 6f 75 74 70 75 74 20 66 69 6c 74 65 72 2a 2a | .base.chain.is.**output.filter** |
| eec60 | 3a 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 5b 69 70 76 34 20 7c 20 69 70 76 36 5d 20 6f | :.``set.firewall.[ipv4.|.ipv6].o |
| eec80 | 75 74 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 00 46 6f 72 20 74 72 61 66 66 69 63 20 74 | utput.filter....``.For.traffic.t |
| eeca0 | 68 61 74 20 6e 65 65 64 73 20 74 6f 20 62 65 20 66 6f 72 77 61 72 64 65 64 20 69 6e 74 65 72 6e | hat.needs.to.be.forwarded.intern |
| eecc0 | 61 6c 6c 79 20 62 79 20 74 68 65 20 62 72 69 64 67 65 2c 20 62 61 73 65 20 63 68 61 69 6e 20 69 | ally.by.the.bridge,.base.chain.i |
| eece0 | 73 20 69 73 20 2a 2a 66 6f 72 77 61 72 64 2a 2a 2c 20 61 6e 64 20 69 74 27 73 20 62 61 73 65 20 | s.is.**forward**,.and.it's.base. |
| eed00 | 63 6f 6d 6d 61 6e 64 20 66 6f 72 20 66 69 6c 74 65 72 69 6e 67 20 69 73 20 60 60 73 65 74 20 66 | command.for.filtering.is.``set.f |
| eed20 | 69 72 65 77 61 6c 6c 20 62 72 69 64 67 65 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 2e 2e | irewall.bridge.forward.filter... |
| eed40 | 2e 60 60 2c 20 77 68 69 63 68 20 68 61 70 70 65 6e 73 20 69 6e 20 73 74 61 67 65 20 34 2c 20 68 | .``,.which.happens.in.stage.4,.h |
| eed60 | 69 67 68 6c 69 67 68 74 65 64 20 77 69 74 68 20 72 65 64 20 63 6f 6c 6f 72 2e 00 46 6f 72 20 74 | ighlighted.with.red.color..For.t |
| eed80 | 72 61 66 66 69 63 20 74 68 61 74 20 6e 65 65 64 73 20 74 6f 20 62 65 20 66 6f 72 77 61 72 65 64 | raffic.that.needs.to.be.forwared |
| eeda0 | 20 69 6e 74 65 72 6e 61 6c 6c 79 20 62 79 20 74 68 65 20 62 72 69 64 67 65 2c 20 62 61 73 65 20 | .internally.by.the.bridge,.base. |
| eedc0 | 63 68 61 69 6e 20 69 73 20 69 73 20 2a 2a 66 6f 72 77 61 72 64 2a 2a 2c 20 61 6e 64 20 69 74 27 | chain.is.is.**forward**,.and.it' |
| eede0 | 73 20 62 61 73 65 20 63 6f 6d 6d 61 6e 64 20 66 6f 72 20 66 69 6c 74 65 72 69 6e 67 20 69 73 20 | s.base.command.for.filtering.is. |
| eee00 | 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 62 72 69 64 67 65 20 66 6f 72 77 61 72 64 20 66 69 | ``set.firewall.bridge.forward.fi |
| eee20 | 6c 74 65 72 20 2e 2e 2e 60 60 00 46 6f 72 20 74 72 61 66 66 69 63 20 74 68 61 74 20 6e 65 65 64 | lter....``.For.traffic.that.need |
| eee40 | 73 20 74 6f 20 62 65 20 66 6f 72 77 61 72 65 64 20 69 6e 74 65 72 6e 61 6c 6c 79 20 62 79 20 74 | s.to.be.forwared.internally.by.t |
| eee60 | 68 65 20 62 72 69 64 67 65 2c 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 20 69 73 20 2a 2a 66 6f | he.bridge,.base.chain.is.is.**fo |
| eee80 | 72 77 61 72 64 2a 2a 2c 20 61 6e 64 20 69 74 27 73 20 62 61 73 65 20 63 6f 6d 6d 61 6e 64 20 66 | rward**,.and.it's.base.command.f |
| eeea0 | 6f 72 20 66 69 6c 74 65 72 69 6e 67 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 62 | or.filtering.is.``set.firewall.b |
| eeec0 | 72 69 64 67 65 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2c 20 77 68 69 63 | ridge.forward.filter....``,.whic |
| eeee0 | 68 20 68 61 70 70 65 6e 73 20 69 6e 20 73 74 61 67 65 20 34 2c 20 68 69 67 68 6c 69 67 68 74 65 | h.happens.in.stage.4,.highlighte |
| eef00 | 6e 65 64 20 77 69 74 68 20 72 65 64 20 63 6f 6c 6f 72 2e 00 46 6f 72 20 74 72 61 66 66 69 63 20 | ned.with.red.color..For.traffic. |
| eef20 | 74 68 61 74 20 6e 65 65 64 73 20 74 6f 20 62 65 20 73 77 69 74 63 68 65 64 20 69 6e 74 65 72 6e | that.needs.to.be.switched.intern |
| eef40 | 61 6c 6c 79 20 62 79 20 74 68 65 20 62 72 69 64 67 65 2c 20 62 61 73 65 20 63 68 61 69 6e 20 69 | ally.by.the.bridge,.base.chain.i |
| eef60 | 73 20 2a 2a 66 6f 72 77 61 72 64 2a 2a 2c 20 61 6e 64 20 69 74 27 73 20 62 61 73 65 20 63 6f 6d | s.**forward**,.and.it's.base.com |
| eef80 | 6d 61 6e 64 20 66 6f 72 20 66 69 6c 74 65 72 69 6e 67 20 69 73 20 60 60 73 65 74 20 66 69 72 65 | mand.for.filtering.is.``set.fire |
| eefa0 | 77 61 6c 6c 20 62 72 69 64 67 65 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 | wall.bridge.forward.filter....`` |
| eefc0 | 2c 20 77 68 69 63 68 20 68 61 70 70 65 6e 73 20 69 6e 20 73 74 61 67 65 20 34 2c 20 68 69 67 68 | ,.which.happens.in.stage.4,.high |
| eefe0 | 6c 69 67 68 74 65 64 20 77 69 74 68 20 72 65 64 20 63 6f 6c 6f 72 2e 00 46 6f 72 20 74 72 61 66 | lighted.with.red.color..For.traf |
| ef000 | 66 69 63 20 74 6f 77 61 72 64 73 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 2c 20 62 | fic.towards.the.router.itself,.b |
| ef020 | 61 73 65 20 63 68 61 69 6e 20 69 73 20 2a 2a 69 6e 70 75 74 20 66 69 6c 74 65 72 2a 2a 3a 20 60 | ase.chain.is.**input.filter**:.` |
| ef040 | 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 5b 69 70 76 34 20 7c 20 69 70 76 36 5d 20 69 6e 70 75 | `set.firewall.[ipv4.|.ipv6].inpu |
| ef060 | 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 00 46 6f 72 20 74 72 61 66 66 69 63 20 74 6f 77 61 72 | t.filter....``.For.traffic.towar |
| ef080 | 64 73 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 2c 20 62 61 73 65 20 63 68 61 69 6e | ds.the.router.itself,.base.chain |
| ef0a0 | 20 69 73 20 2a 2a 69 6e 70 75 74 2a 2a 2c 20 77 68 69 6c 65 20 74 72 61 66 66 69 63 20 6f 72 69 | .is.**input**,.while.traffic.ori |
| ef0c0 | 67 69 6e 61 74 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 2c 20 62 61 73 65 20 63 68 61 69 | ginated.by.the.router,.base.chai |
| ef0e0 | 6e 20 69 73 20 2a 2a 6f 75 74 70 75 74 2a 2a 2e 20 41 20 6e 65 77 20 73 69 6d 70 6c 69 66 69 65 | n.is.**output**..A.new.simplifie |
| ef100 | 64 20 70 61 63 6b 65 74 20 66 6c 6f 77 20 64 69 61 67 72 61 6d 20 69 73 20 73 68 6f 77 6e 20 6e | d.packet.flow.diagram.is.shown.n |
| ef120 | 65 78 74 2c 20 77 68 69 63 68 20 73 68 6f 77 73 20 74 68 65 20 70 61 74 68 20 66 6f 72 20 74 72 | ext,.which.shows.the.path.for.tr |
| ef140 | 61 66 66 69 63 20 64 65 73 74 69 6e 61 74 65 64 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 20 69 | affic.destinated.to.the.router.i |
| ef160 | 74 73 65 6c 66 2c 20 61 6e 64 20 74 72 61 66 66 69 63 20 67 65 6e 65 72 61 74 65 64 20 62 79 20 | tself,.and.traffic.generated.by. |
| ef180 | 74 68 65 20 72 6f 75 74 65 72 20 28 73 74 61 72 74 69 6e 67 20 66 72 6f 6d 20 63 69 72 63 6c 65 | the.router.(starting.from.circle |
| ef1a0 | 20 6e 75 6d 62 65 72 20 36 29 3a 00 46 6f 72 20 74 72 61 66 66 69 63 20 74 6f 77 61 72 64 73 20 | .number.6):.For.traffic.towards. |
| ef1c0 | 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 2c 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 | the.router.itself,.base.chain.is |
| ef1e0 | 20 2a 2a 69 6e 70 75 74 2a 2a 2c 20 77 68 69 6c 65 20 74 72 61 66 66 69 63 20 6f 72 69 67 69 6e | .**input**,.while.traffic.origin |
| ef200 | 61 74 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 2c 20 62 61 73 65 20 63 68 61 69 6e 20 69 | ated.by.the.router,.base.chain.i |
| ef220 | 73 20 2a 2a 6f 75 74 70 75 74 2a 2a 2e 20 41 20 6e 65 77 20 73 69 6d 70 6c 69 66 69 65 64 20 70 | s.**output**..A.new.simplified.p |
| ef240 | 61 63 6b 65 74 20 66 6c 6f 77 20 64 69 61 67 72 61 6d 20 69 73 20 73 68 6f 77 6e 20 6e 65 78 74 | acket.flow.diagram.is.shown.next |
| ef260 | 2c 20 77 68 69 63 68 20 73 68 6f 77 73 20 74 68 65 20 70 61 74 68 20 66 6f 72 20 74 72 61 66 66 | ,.which.shows.the.path.for.traff |
| ef280 | 69 63 20 64 65 73 74 69 6e 65 64 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 | ic.destined.to.the.router.itself |
| ef2a0 | 2c 20 61 6e 64 20 74 72 61 66 66 69 63 20 67 65 6e 65 72 61 74 65 64 20 62 79 20 74 68 65 20 72 | ,.and.traffic.generated.by.the.r |
| ef2c0 | 6f 75 74 65 72 20 28 73 74 61 72 74 69 6e 67 20 66 72 6f 6d 20 63 69 72 63 6c 65 20 6e 75 6d 62 | outer.(starting.from.circle.numb |
| ef2e0 | 65 72 20 36 29 3a 00 46 6f 72 20 74 72 61 66 66 69 63 20 74 6f 77 61 72 64 73 20 74 68 65 20 72 | er.6):.For.traffic.towards.the.r |
| ef300 | 6f 75 74 65 72 20 69 74 73 65 6c 66 2c 20 74 68 65 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 20 | outer.itself,.the.base.chain.is. |
| ef320 | 2a 2a 69 6e 70 75 74 2a 2a 2c 20 77 68 69 6c 65 20 74 72 61 66 66 69 63 20 6f 72 69 67 69 6e 61 | **input**,.while.traffic.origina |
| ef340 | 74 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 20 68 61 73 20 74 68 65 20 62 61 73 65 20 63 | ted.by.the.router.has.the.base.c |
| ef360 | 68 61 69 6e 20 2a 2a 6f 75 74 70 75 74 2a 2a 2e 20 41 20 6e 65 77 20 73 69 6d 70 6c 69 66 69 65 | hain.**output**..A.new.simplifie |
| ef380 | 64 20 70 61 63 6b 65 74 20 66 6c 6f 77 20 64 69 61 67 72 61 6d 20 69 73 20 73 68 6f 77 6e 20 6e | d.packet.flow.diagram.is.shown.n |
| ef3a0 | 65 78 74 2c 20 77 68 69 63 68 20 73 68 6f 77 73 20 74 68 65 20 70 61 74 68 20 66 6f 72 20 74 72 | ext,.which.shows.the.path.for.tr |
| ef3c0 | 61 66 66 69 63 20 64 65 73 74 69 6e 65 64 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 | affic.destined.to.the.router.its |
| ef3e0 | 65 6c 66 2c 20 61 6e 64 20 74 72 61 66 66 69 63 20 67 65 6e 65 72 61 74 65 64 20 62 79 20 74 68 | elf,.and.traffic.generated.by.th |
| ef400 | 65 20 72 6f 75 74 65 72 20 28 73 74 61 72 74 69 6e 67 20 66 72 6f 6d 20 63 69 72 63 6c 65 20 6e | e.router.(starting.from.circle.n |
| ef420 | 75 6d 62 65 72 20 36 29 3a 00 46 6f 72 20 74 72 61 6e 73 69 74 20 74 72 61 66 66 69 63 2c 20 77 | umber.6):.For.transit.traffic,.w |
| ef440 | 68 69 63 68 20 69 73 20 72 65 63 65 69 76 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 20 61 | hich.is.received.by.the.router.a |
| ef460 | 6e 64 20 66 6f 72 77 61 72 64 65 64 2c 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 20 2a 2a 66 6f | nd.forwarded,.base.chain.is.**fo |
| ef480 | 72 77 61 72 64 20 66 69 6c 74 65 72 2a 2a 3a 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 5b | rward.filter**:.``set.firewall.[ |
| ef4a0 | 69 70 76 34 20 7c 20 69 70 76 36 5d 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 2e 2e 2e 60 | ipv4.|.ipv6].forward.filter....` |
| ef4c0 | 60 00 46 6f 72 20 74 72 61 6e 73 69 74 20 74 72 61 66 66 69 63 2c 20 77 68 69 63 68 20 69 73 20 | `.For.transit.traffic,.which.is. |
| ef4e0 | 72 65 63 65 69 76 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 20 61 6e 64 20 66 6f 72 77 61 | received.by.the.router.and.forwa |
| ef500 | 72 64 65 64 2c 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 20 2a 2a 66 6f 72 77 61 72 64 2a 2a 2e | rded,.base.chain.is.**forward**. |
| ef520 | 20 41 20 73 69 6d 70 6c 69 66 69 65 64 20 70 61 63 6b 65 74 20 66 6c 6f 77 20 64 69 61 67 72 61 | .A.simplified.packet.flow.diagra |
| ef540 | 6d 20 66 6f 72 20 74 72 61 6e 73 69 74 20 74 72 61 66 66 69 63 20 69 73 20 73 68 6f 77 6e 20 6e | m.for.transit.traffic.is.shown.n |
| ef560 | 65 78 74 3a 00 46 6f 72 20 74 72 61 6e 73 69 74 20 74 72 61 66 66 69 63 2c 20 77 68 69 63 68 20 | ext:.For.transit.traffic,.which. |
| ef580 | 69 73 20 72 65 63 65 69 76 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 20 61 6e 64 20 66 6f | is.received.by.the.router.and.fo |
| ef5a0 | 72 77 61 72 64 65 64 2c 20 74 68 65 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 20 2a 2a 66 6f 72 | rwarded,.the.base.chain.is.**for |
| ef5c0 | 77 61 72 64 2a 2a 2e 20 41 20 73 69 6d 70 6c 69 66 69 65 64 20 70 61 63 6b 65 74 20 66 6c 6f 77 | ward**..A.simplified.packet.flow |
| ef5e0 | 20 64 69 61 67 72 61 6d 20 66 6f 72 20 74 72 61 6e 73 69 74 20 74 72 61 66 66 69 63 20 69 73 20 | .diagram.for.transit.traffic.is. |
| ef600 | 73 68 6f 77 6e 20 6e 65 78 74 3a 00 46 6f 72 20 77 65 62 20 61 70 70 6c 69 63 61 74 69 6f 6e 20 | shown.next:.For.web.application. |
| ef620 | 70 72 6f 76 69 64 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 74 68 65 69 | providing.information.about.thei |
| ef640 | 72 20 73 74 61 74 65 20 48 54 54 50 20 68 65 61 6c 74 68 20 63 68 65 63 6b 73 20 63 61 6e 20 62 | r.state.HTTP.health.checks.can.b |
| ef660 | 65 20 75 73 65 64 20 74 6f 20 64 65 74 65 72 6d 69 6e 65 20 74 68 65 69 72 20 61 76 61 69 6c 61 | e.used.to.determine.their.availa |
| ef680 | 62 69 6c 69 74 79 2e 00 46 6f 72 6d 61 6c 6c 79 2c 20 61 20 76 69 72 74 75 61 6c 20 6c 69 6e 6b | bility..Formally,.a.virtual.link |
| ef6a0 | 20 6c 6f 6f 6b 73 20 6c 69 6b 65 20 61 20 70 6f 69 6e 74 2d 74 6f 2d 70 6f 69 6e 74 20 6e 65 74 | .looks.like.a.point-to-point.net |
| ef6c0 | 77 6f 72 6b 20 63 6f 6e 6e 65 63 74 69 6e 67 20 74 77 6f 20 41 42 52 20 66 72 6f 6d 20 6f 6e 65 | work.connecting.two.ABR.from.one |
| ef6e0 | 20 61 72 65 61 20 6f 6e 65 20 6f 66 20 77 68 69 63 68 20 70 68 79 73 69 63 61 6c 6c 79 20 63 6f | .area.one.of.which.physically.co |
| ef700 | 6e 6e 65 63 74 65 64 20 74 6f 20 61 20 62 61 63 6b 62 6f 6e 65 20 61 72 65 61 2e 20 54 68 69 73 | nnected.to.a.backbone.area..This |
| ef720 | 20 70 73 65 75 64 6f 2d 6e 65 74 77 6f 72 6b 20 69 73 20 63 6f 6e 73 69 64 65 72 65 64 20 74 6f | .pseudo-network.is.considered.to |
| ef740 | 20 62 65 6c 6f 6e 67 20 74 6f 20 61 20 62 61 63 6b 62 6f 6e 65 20 61 72 65 61 2e 00 46 6f 72 77 | .belong.to.a.backbone.area..Forw |
| ef760 | 61 72 64 20 69 6e 63 6f 6d 69 6e 67 20 44 4e 53 20 71 75 65 72 69 65 73 20 74 6f 20 74 68 65 20 | ard.incoming.DNS.queries.to.the. |
| ef780 | 44 4e 53 20 73 65 72 76 65 72 73 20 63 6f 6e 66 69 67 75 72 65 64 20 75 6e 64 65 72 20 74 68 65 | DNS.servers.configured.under.the |
| ef7a0 | 20 60 60 73 79 73 74 65 6d 20 6e 61 6d 65 2d 73 65 72 76 65 72 60 60 20 6e 6f 64 65 73 2e 00 46 | .``system.name-server``.nodes..F |
| ef7c0 | 6f 72 77 61 72 64 20 6d 65 74 68 6f 64 00 46 6f 72 77 61 72 64 20 72 65 63 65 69 76 65 64 20 71 | orward.method.Forward.received.q |
| ef7e0 | 75 65 72 69 65 73 20 66 6f 72 20 61 20 70 61 72 74 69 63 75 6c 61 72 20 64 6f 6d 61 69 6e 20 28 | ueries.for.a.particular.domain.( |
| ef800 | 73 70 65 63 69 66 69 65 64 20 76 69 61 20 60 64 6f 6d 61 69 6e 2d 6e 61 6d 65 60 29 20 74 6f 20 | specified.via.`domain-name`).to. |
| ef820 | 61 20 67 69 76 65 6e 20 6e 61 6d 65 73 65 72 76 65 72 2e 20 4d 75 6c 74 69 70 6c 65 20 6e 61 6d | a.given.nameserver..Multiple.nam |
| ef840 | 65 73 65 72 76 65 72 73 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 2e 20 59 6f 75 20 63 | eservers.can.be.specified..You.c |
| ef860 | 61 6e 20 75 73 65 20 74 68 69 73 20 66 65 61 74 75 72 65 20 66 6f 72 20 61 20 44 4e 53 20 73 70 | an.use.this.feature.for.a.DNS.sp |
| ef880 | 6c 69 74 2d 68 6f 72 69 7a 6f 6e 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 46 6f 75 72 20 | lit-horizon.configuration..Four. |
| ef8a0 | 70 6f 6c 69 63 69 65 73 20 66 6f 72 20 72 65 66 6f 72 77 61 72 64 69 6e 67 20 44 48 43 50 20 70 | policies.for.reforwarding.DHCP.p |
| ef8c0 | 61 63 6b 65 74 73 20 65 78 69 73 74 3a 00 46 72 6f 6d 20 3a 72 66 63 3a 60 31 39 33 30 60 3a 00 | ackets.exist:.From.:rfc:`1930`:. |
| ef8e0 | 46 72 6f 6d 20 61 20 73 65 63 75 72 69 74 79 20 70 65 72 73 70 65 63 74 69 76 65 2c 20 69 74 20 | From.a.security.perspective,.it. |
| ef900 | 69 73 20 6e 6f 74 20 72 65 63 6f 6d 6d 65 6e 64 65 64 20 74 6f 20 6c 65 74 20 61 20 74 68 69 72 | is.not.recommended.to.let.a.thir |
| ef920 | 64 20 70 61 72 74 79 20 63 72 65 61 74 65 20 61 6e 64 20 73 68 61 72 65 20 74 68 65 20 70 72 69 | d.party.create.and.share.the.pri |
| ef940 | 76 61 74 65 20 6b 65 79 20 66 6f 72 20 61 20 73 65 63 75 72 65 64 20 63 6f 6e 6e 65 63 74 69 6f | vate.key.for.a.secured.connectio |
| ef960 | 6e 2e 20 59 6f 75 20 73 68 6f 75 6c 64 20 63 72 65 61 74 65 20 74 68 65 20 70 72 69 76 61 74 65 | n..You.should.create.the.private |
| ef980 | 20 70 6f 72 74 69 6f 6e 20 6f 6e 20 79 6f 75 72 20 6f 77 6e 20 61 6e 64 20 6f 6e 6c 79 20 68 61 | .portion.on.your.own.and.only.ha |
| ef9a0 | 6e 64 20 6f 75 74 20 74 68 65 20 70 75 62 6c 69 63 20 6b 65 79 2e 20 50 6c 65 61 73 65 20 6b 65 | nd.out.the.public.key..Please.ke |
| ef9c0 | 65 70 20 74 68 69 73 20 69 6e 20 6d 69 6e 64 20 77 68 65 6e 20 75 73 69 6e 67 20 74 68 69 73 20 | ep.this.in.mind.when.using.this. |
| ef9e0 | 63 6f 6e 76 65 6e 69 65 6e 63 65 20 66 65 61 74 75 72 65 2e 00 46 72 6f 6d 20 6d 61 69 6e 20 73 | convenience.feature..From.main.s |
| efa00 | 74 72 75 63 74 75 72 65 20 64 65 66 69 6e 65 64 20 69 6e 20 3a 64 6f 63 3a 60 46 69 72 65 77 61 | tructure.defined.in.:doc:`Firewa |
| efa20 | 6c 6c 20 4f 76 65 72 76 69 65 77 3c 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 66 69 72 65 77 | ll.Overview</configuration/firew |
| efa40 | 61 6c 6c 2f 69 6e 64 65 78 3e 60 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 79 6f 75 20 | all/index>`.in.this.section.you. |
| efa60 | 63 61 6e 20 66 69 6e 64 20 64 65 74 61 69 6c 65 64 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 6e | can.find.detailed.information.on |
| efa80 | 6c 79 20 66 6f 72 20 74 68 65 20 6e 65 78 74 20 70 61 72 74 20 6f 66 20 74 68 65 20 67 65 6e 65 | ly.for.the.next.part.of.the.gene |
| efaa0 | 72 61 6c 20 73 74 72 75 63 74 75 72 65 3a 00 46 72 6f 6d 20 74 68 65 20 6d 61 69 6e 20 73 74 72 | ral.structure:.From.the.main.str |
| efac0 | 75 63 74 75 72 65 20 64 65 66 69 6e 65 64 20 69 6e 20 3a 64 6f 63 3a 60 46 69 72 65 77 61 6c 6c | ucture.defined.in.:doc:`Firewall |
| efae0 | 20 4f 76 65 72 76 69 65 77 3c 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 66 69 72 65 77 61 6c | .Overview</configuration/firewal |
| efb00 | 6c 2f 69 6e 64 65 78 3e 60 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 79 6f 75 20 63 61 | l/index>`.in.this.section.you.ca |
| efb20 | 6e 20 66 69 6e 64 20 64 65 74 61 69 6c 65 64 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 6e 6c 79 | n.find.detailed.information.only |
| efb40 | 20 66 6f 72 20 74 68 65 20 6e 65 78 74 20 70 61 72 74 20 6f 66 20 74 68 65 20 67 65 6e 65 72 61 | .for.the.next.part.of.the.genera |
| efb60 | 6c 20 73 74 72 75 63 74 75 72 65 3a 00 46 75 72 74 68 65 72 20 52 65 61 64 69 6e 67 00 46 77 6d | l.structure:.Further.Reading.Fwm |
| efb80 | 61 72 6b 00 47 45 4e 45 56 45 00 47 45 4e 45 56 45 20 69 73 20 64 65 73 69 67 6e 65 64 20 74 6f | ark.GENEVE.GENEVE.is.designed.to |
| efba0 | 20 73 75 70 70 6f 72 74 20 6e 65 74 77 6f 72 6b 20 76 69 72 74 75 61 6c 69 7a 61 74 69 6f 6e 20 | .support.network.virtualization. |
| efbc0 | 75 73 65 20 63 61 73 65 73 2c 20 77 68 65 72 65 20 74 75 6e 6e 65 6c 73 20 61 72 65 20 74 79 70 | use.cases,.where.tunnels.are.typ |
| efbe0 | 69 63 61 6c 6c 79 20 65 73 74 61 62 6c 69 73 68 65 64 20 74 6f 20 61 63 74 20 61 73 20 61 20 62 | ically.established.to.act.as.a.b |
| efc00 | 61 63 6b 70 6c 61 6e 65 20 62 65 74 77 65 65 6e 20 74 68 65 20 76 69 72 74 75 61 6c 20 73 77 69 | ackplane.between.the.virtual.swi |
| efc20 | 74 63 68 65 73 20 72 65 73 69 64 69 6e 67 20 69 6e 20 68 79 70 65 72 76 69 73 6f 72 73 2c 20 70 | tches.residing.in.hypervisors,.p |
| efc40 | 68 79 73 69 63 61 6c 20 73 77 69 74 63 68 65 73 2c 20 6f 72 20 6d 69 64 64 6c 65 62 6f 78 65 73 | hysical.switches,.or.middleboxes |
| efc60 | 20 6f 72 20 6f 74 68 65 72 20 61 70 70 6c 69 61 6e 63 65 73 2e 20 41 6e 20 61 72 62 69 74 72 61 | .or.other.appliances..An.arbitra |
| efc80 | 72 79 20 49 50 20 6e 65 74 77 6f 72 6b 20 63 61 6e 20 62 65 20 75 73 65 64 20 61 73 20 61 6e 20 | ry.IP.network.can.be.used.as.an. |
| efca0 | 75 6e 64 65 72 6c 61 79 20 61 6c 74 68 6f 75 67 68 20 43 6c 6f 73 20 6e 65 74 77 6f 72 6b 73 20 | underlay.although.Clos.networks. |
| efcc0 | 2d 20 41 20 74 65 63 68 6e 69 71 75 65 20 66 6f 72 20 63 6f 6d 70 6f 73 69 6e 67 20 6e 65 74 77 | -.A.technique.for.composing.netw |
| efce0 | 6f 72 6b 20 66 61 62 72 69 63 73 20 6c 61 72 67 65 72 20 74 68 61 6e 20 61 20 73 69 6e 67 6c 65 | ork.fabrics.larger.than.a.single |
| efd00 | 20 73 77 69 74 63 68 20 77 68 69 6c 65 20 6d 61 69 6e 74 61 69 6e 69 6e 67 20 6e 6f 6e 2d 62 6c | .switch.while.maintaining.non-bl |
| efd20 | 6f 63 6b 69 6e 67 20 62 61 6e 64 77 69 64 74 68 20 61 63 72 6f 73 73 20 63 6f 6e 6e 65 63 74 69 | ocking.bandwidth.across.connecti |
| efd40 | 6f 6e 20 70 6f 69 6e 74 73 2e 20 45 43 4d 50 20 69 73 20 75 73 65 64 20 74 6f 20 64 69 76 69 64 | on.points..ECMP.is.used.to.divid |
| efd60 | 65 20 74 72 61 66 66 69 63 20 61 63 72 6f 73 73 20 74 68 65 20 6d 75 6c 74 69 70 6c 65 20 6c 69 | e.traffic.across.the.multiple.li |
| efd80 | 6e 6b 73 20 61 6e 64 20 73 77 69 74 63 68 65 73 20 74 68 61 74 20 63 6f 6e 73 74 69 74 75 74 65 | nks.and.switches.that.constitute |
| efda0 | 20 74 68 65 20 66 61 62 72 69 63 2e 20 53 6f 6d 65 74 69 6d 65 73 20 74 65 72 6d 65 64 20 22 6c | .the.fabric..Sometimes.termed."l |
| efdc0 | 65 61 66 20 61 6e 64 20 73 70 69 6e 65 22 20 6f 72 20 22 66 61 74 20 74 72 65 65 22 20 74 6f 70 | eaf.and.spine".or."fat.tree".top |
| efde0 | 6f 6c 6f 67 69 65 73 2e 00 47 45 4e 45 56 45 20 69 73 20 64 65 73 69 67 6e 65 64 20 74 6f 20 73 | ologies..GENEVE.is.designed.to.s |
| efe00 | 75 70 70 6f 72 74 20 6e 65 74 77 6f 72 6b 20 76 69 72 74 75 61 6c 69 7a 61 74 69 6f 6e 20 75 73 | upport.network.virtualization.us |
| efe20 | 65 20 63 61 73 65 73 2c 20 77 68 65 72 65 20 74 75 6e 6e 65 6c 73 20 61 72 65 20 74 79 70 69 63 | e.cases,.where.tunnels.are.typic |
| efe40 | 61 6c 6c 79 20 65 73 74 61 62 6c 69 73 68 65 64 20 74 6f 20 61 63 74 20 61 73 20 61 20 62 61 63 | ally.established.to.act.as.a.bac |
| efe60 | 6b 70 6c 61 6e 65 20 62 65 74 77 65 65 6e 20 74 68 65 20 76 69 72 74 75 61 6c 20 73 77 69 74 63 | kplane.between.the.virtual.switc |
| efe80 | 68 65 73 20 72 65 73 69 64 69 6e 67 20 69 6e 20 68 79 70 65 72 76 69 73 6f 72 73 2c 20 70 68 79 | hes.residing.in.hypervisors,.phy |
| efea0 | 73 69 63 61 6c 20 73 77 69 74 63 68 65 73 2c 20 6f 72 20 6d 69 64 64 6c 65 62 6f 78 65 73 20 6f | sical.switches,.or.middleboxes.o |
| efec0 | 72 20 6f 74 68 65 72 20 61 70 70 6c 69 61 6e 63 65 73 2e 20 41 6e 20 61 72 62 69 74 72 61 72 79 | r.other.appliances..An.arbitrary |
| efee0 | 20 49 50 20 6e 65 74 77 6f 72 6b 20 63 61 6e 20 62 65 20 75 73 65 64 20 61 73 20 61 6e 20 75 6e | .IP.network.can.be.used.as.an.un |
| eff00 | 64 65 72 6c 61 79 20 74 68 72 6f 75 67 68 20 43 6c 6f 73 20 6e 65 74 77 6f 72 6b 73 20 2d 20 41 | derlay.through.Clos.networks.-.A |
| eff20 | 20 74 65 63 68 6e 69 71 75 65 20 66 6f 72 20 63 6f 6d 70 6f 73 69 6e 67 20 6e 65 74 77 6f 72 6b | .technique.for.composing.network |
| eff40 | 20 66 61 62 72 69 63 73 20 6c 61 72 67 65 72 20 74 68 61 6e 20 61 20 73 69 6e 67 6c 65 20 73 77 | .fabrics.larger.than.a.single.sw |
| eff60 | 69 74 63 68 20 77 68 69 6c 65 20 6d 61 69 6e 74 61 69 6e 69 6e 67 20 6e 6f 6e 2d 62 6c 6f 63 6b | itch.while.maintaining.non-block |
| eff80 | 69 6e 67 20 62 61 6e 64 77 69 64 74 68 20 61 63 72 6f 73 73 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 | ing.bandwidth.across.connection. |
| effa0 | 70 6f 69 6e 74 73 2e 20 45 43 4d 50 20 69 73 20 75 73 65 64 20 74 6f 20 64 69 76 69 64 65 20 74 | points..ECMP.is.used.to.divide.t |
| effc0 | 72 61 66 66 69 63 20 61 63 72 6f 73 73 20 74 68 65 20 6d 75 6c 74 69 70 6c 65 20 6c 69 6e 6b 73 | raffic.across.the.multiple.links |
| effe0 | 20 61 6e 64 20 73 77 69 74 63 68 65 73 20 74 68 61 74 20 63 6f 6e 73 74 69 74 75 74 65 20 74 68 | .and.switches.that.constitute.th |
| f0000 | 65 20 66 61 62 72 69 63 2e 20 53 6f 6d 65 74 69 6d 65 73 20 74 65 72 6d 65 64 20 22 6c 65 61 66 | e.fabric..Sometimes.termed."leaf |
| f0020 | 20 61 6e 64 20 73 70 69 6e 65 22 20 6f 72 20 22 66 61 74 20 74 72 65 65 22 20 74 6f 70 6f 6c 6f | .and.spine".or."fat.tree".topolo |
| f0040 | 67 69 65 73 2e 00 47 45 4e 45 56 45 20 6f 70 74 69 6f 6e 73 00 47 52 45 20 69 73 20 61 20 77 65 | gies..GENEVE.options.GRE.is.a.we |
| f0060 | 6c 6c 20 64 65 66 69 6e 65 64 20 73 74 61 6e 64 61 72 64 20 74 68 61 74 20 69 73 20 63 6f 6d 6d | ll.defined.standard.that.is.comm |
| f0080 | 6f 6e 20 69 6e 20 6d 6f 73 74 20 6e 65 74 77 6f 72 6b 73 2e 20 57 68 69 6c 65 20 6e 6f 74 20 69 | on.in.most.networks..While.not.i |
| f00a0 | 6e 68 65 72 65 6e 74 6c 79 20 64 69 66 66 69 63 75 6c 74 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 | nherently.difficult.to.configure |
| f00c0 | 20 74 68 65 72 65 20 61 72 65 20 61 20 63 6f 75 70 6c 65 20 6f 66 20 74 68 69 6e 67 73 20 74 6f | .there.are.a.couple.of.things.to |
| f00e0 | 20 6b 65 65 70 20 69 6e 20 6d 69 6e 64 20 74 6f 20 6d 61 6b 65 20 73 75 72 65 20 74 68 65 20 63 | .keep.in.mind.to.make.sure.the.c |
| f0100 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 70 65 72 66 6f 72 6d 73 20 61 73 20 65 78 70 65 63 74 65 | onfiguration.performs.as.expecte |
| f0120 | 64 2e 20 41 20 63 6f 6d 6d 6f 6e 20 63 61 75 73 65 20 66 6f 72 20 47 52 45 20 74 75 6e 6e 65 6c | d..A.common.cause.for.GRE.tunnel |
| f0140 | 73 20 74 6f 20 66 61 69 6c 20 74 6f 20 63 6f 6d 65 20 75 70 20 63 6f 72 72 65 63 74 6c 79 20 69 | s.to.fail.to.come.up.correctly.i |
| f0160 | 6e 63 6c 75 64 65 20 41 43 4c 20 6f 72 20 46 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 | nclude.ACL.or.Firewall.configura |
| f0180 | 74 69 6f 6e 73 20 74 68 61 74 20 61 72 65 20 64 69 73 63 61 72 64 69 6e 67 20 49 50 20 70 72 6f | tions.that.are.discarding.IP.pro |
| f01a0 | 74 6f 63 6f 6c 20 34 37 20 6f 72 20 62 6c 6f 63 6b 69 6e 67 20 79 6f 75 72 20 73 6f 75 72 63 65 | tocol.47.or.blocking.your.source |
| f01c0 | 2f 64 65 73 74 69 6e 61 74 69 6f 6e 20 74 72 61 66 66 69 63 2e 00 47 52 45 20 69 73 20 61 6c 73 | /destination.traffic..GRE.is.als |
| f01e0 | 6f 20 74 68 65 20 6f 6e 6c 79 20 63 6c 61 73 73 69 63 20 70 72 6f 74 6f 63 6f 6c 20 74 68 61 74 | o.the.only.classic.protocol.that |
| f0200 | 20 61 6c 6c 6f 77 73 20 63 72 65 61 74 69 6e 67 20 6d 75 6c 74 69 70 6c 65 20 74 75 6e 6e 65 6c | .allows.creating.multiple.tunnel |
| f0220 | 73 20 77 69 74 68 20 74 68 65 20 73 61 6d 65 20 73 6f 75 72 63 65 20 61 6e 64 20 64 65 73 74 69 | s.with.the.same.source.and.desti |
| f0240 | 6e 61 74 69 6f 6e 20 64 75 65 20 74 6f 20 69 74 73 20 73 75 70 70 6f 72 74 20 66 6f 72 20 74 75 | nation.due.to.its.support.for.tu |
| f0260 | 6e 6e 65 6c 20 6b 65 79 73 2e 20 44 65 73 70 69 74 65 20 69 74 73 20 6e 61 6d 65 2c 20 74 68 69 | nnel.keys..Despite.its.name,.thi |
| f0280 | 73 20 66 65 61 74 75 72 65 20 68 61 73 20 6e 6f 74 68 69 6e 67 20 74 6f 20 64 6f 20 77 69 74 68 | s.feature.has.nothing.to.do.with |
| f02a0 | 20 73 65 63 75 72 69 74 79 3a 20 69 74 27 73 20 73 69 6d 70 6c 79 20 61 6e 20 69 64 65 6e 74 69 | .security:.it's.simply.an.identi |
| f02c0 | 66 69 65 72 20 74 68 61 74 20 61 6c 6c 6f 77 73 20 72 6f 75 74 65 72 73 20 74 6f 20 74 65 6c 6c | fier.that.allows.routers.to.tell |
| f02e0 | 20 6f 6e 65 20 74 75 6e 6e 65 6c 20 66 72 6f 6d 20 61 6e 6f 74 68 65 72 2e 00 47 52 45 20 69 73 | .one.tunnel.from.another..GRE.is |
| f0300 | 20 6f 66 74 65 6e 20 73 65 65 6e 20 61 73 20 61 20 6f 6e 65 20 73 69 7a 65 20 66 69 74 73 20 61 | .often.seen.as.a.one.size.fits.a |
| f0320 | 6c 6c 20 73 6f 6c 75 74 69 6f 6e 20 77 68 65 6e 20 69 74 20 63 6f 6d 65 73 20 74 6f 20 63 6c 61 | ll.solution.when.it.comes.to.cla |
| f0340 | 73 73 69 63 20 49 50 20 74 75 6e 6e 65 6c 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 73 2c 20 61 6e 64 | ssic.IP.tunneling.protocols,.and |
| f0360 | 20 66 6f 72 20 61 20 67 6f 6f 64 20 72 65 61 73 6f 6e 2e 20 48 6f 77 65 76 65 72 2c 20 74 68 65 | .for.a.good.reason..However,.the |
| f0380 | 72 65 20 61 72 65 20 6d 6f 72 65 20 73 70 65 63 69 61 6c 69 7a 65 64 20 6f 70 74 69 6f 6e 73 2c | re.are.more.specialized.options, |
| f03a0 | 20 61 6e 64 20 6d 61 6e 79 20 6f 66 20 74 68 65 6d 20 61 72 65 20 73 75 70 70 6f 72 74 65 64 20 | .and.many.of.them.are.supported. |
| f03c0 | 62 79 20 56 79 4f 53 2e 20 54 68 65 72 65 20 61 72 65 20 61 6c 73 6f 20 72 61 74 68 65 72 20 6f | by.VyOS..There.are.also.rather.o |
| f03e0 | 62 73 63 75 72 65 20 47 52 45 20 6f 70 74 69 6f 6e 73 20 74 68 61 74 20 63 61 6e 20 62 65 20 75 | bscure.GRE.options.that.can.be.u |
| f0400 | 73 65 66 75 6c 2e 00 47 52 45 2f 49 50 49 50 2f 53 49 54 20 61 6e 64 20 49 50 73 65 63 20 61 72 | seful..GRE/IPIP/SIT.and.IPsec.ar |
| f0420 | 65 20 77 69 64 65 6c 79 20 61 63 63 65 70 74 65 64 20 73 74 61 6e 64 61 72 64 73 2c 20 77 68 69 | e.widely.accepted.standards,.whi |
| f0440 | 63 68 20 6d 61 6b 65 20 74 68 69 73 20 73 63 68 65 6d 65 20 65 61 73 79 20 74 6f 20 69 6d 70 6c | ch.make.this.scheme.easy.to.impl |
| f0460 | 65 6d 65 6e 74 20 62 65 74 77 65 65 6e 20 56 79 4f 53 20 61 6e 64 20 76 69 72 74 75 61 6c 6c 79 | ement.between.VyOS.and.virtually |
| f0480 | 20 61 6e 79 20 6f 74 68 65 72 20 72 6f 75 74 65 72 2e 00 47 52 45 54 41 50 00 47 65 6e 65 61 72 | .any.other.router..GRETAP.Genear |
| f04a0 | 61 74 65 20 61 20 6e 65 77 20 4f 70 65 6e 56 50 4e 20 73 68 61 72 65 64 20 73 65 63 72 65 74 2e | ate.a.new.OpenVPN.shared.secret. |
| f04c0 | 20 54 68 65 20 67 65 6e 65 72 61 74 65 64 20 73 65 63 72 65 64 20 69 73 20 74 68 65 20 6f 75 74 | .The.generated.secred.is.the.out |
| f04e0 | 70 75 74 20 74 6f 20 74 68 65 20 63 6f 6e 73 6f 6c 65 2e 00 47 65 6e 65 61 72 61 74 65 20 61 20 | put.to.the.console..Genearate.a. |
| f0500 | 6e 65 77 20 4f 70 65 6e 56 50 4e 20 73 68 61 72 65 64 20 73 65 63 72 65 74 2e 20 54 68 65 20 67 | new.OpenVPN.shared.secret..The.g |
| f0520 | 65 6e 65 72 61 74 65 64 20 73 65 63 72 65 74 20 69 73 20 74 68 65 20 6f 75 74 70 75 74 20 74 6f | enerated.secret.is.the.output.to |
| f0540 | 20 74 68 65 20 63 6f 6e 73 6f 6c 65 2e 00 47 65 6e 65 72 61 6c 00 47 65 6e 65 72 61 6c 20 43 6f | .the.console..General.General.Co |
| f0560 | 6e 66 69 67 75 72 61 74 69 6f 6e 00 47 65 6e 65 72 61 6c 20 63 6f 6d 6d 61 6e 64 73 20 66 6f 72 | nfiguration.General.commands.for |
| f0580 | 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2c 20 63 6f 75 6e 74 65 72 | .firewall.configuration,.counter |
| f05a0 | 20 61 6e 64 20 73 74 61 74 69 73 63 69 74 73 3a 00 47 65 6e 65 72 61 6c 20 63 6f 6d 6d 61 6e 64 | .and.statiscits:.General.command |
| f05c0 | 73 20 66 6f 72 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2c 20 63 6f | s.for.firewall.configuration,.co |
| f05e0 | 75 6e 74 65 72 20 61 6e 64 20 73 74 61 74 69 73 74 69 63 73 3a 00 47 65 6e 65 72 61 6c 20 65 78 | unter.and.statistics:.General.ex |
| f0600 | 61 6d 70 6c 65 00 47 65 6e 65 72 61 74 65 20 3a 61 62 62 72 3a 60 4d 4b 41 20 28 4d 41 43 73 65 | ample.Generate.:abbr:`MKA.(MACse |
| f0620 | 63 20 4b 65 79 20 41 67 72 65 65 6d 65 6e 74 20 70 72 6f 74 6f 63 6f 6c 29 60 20 43 41 4b 20 6b | c.Key.Agreement.protocol)`.CAK.k |
| f0640 | 65 79 20 31 32 38 20 6f 72 20 32 35 36 20 62 69 74 73 2e 00 47 65 6e 65 72 61 74 65 20 3a 61 62 | ey.128.or.256.bits..Generate.:ab |
| f0660 | 62 72 3a 60 4d 4b 41 20 28 4d 41 43 73 65 63 20 4b 65 79 20 41 67 72 65 65 6d 65 6e 74 20 70 72 | br:`MKA.(MACsec.Key.Agreement.pr |
| f0680 | 6f 74 6f 63 6f 6c 29 60 20 43 41 4b 20 6b 65 79 2e 00 47 65 6e 65 72 61 74 65 20 4b 65 79 70 61 | otocol)`.CAK.key..Generate.Keypa |
| f06a0 | 69 72 00 47 65 6e 65 72 61 74 65 20 61 20 57 69 72 65 47 75 61 72 64 20 70 72 65 2d 73 68 61 72 | ir.Generate.a.WireGuard.pre-shar |
| f06c0 | 65 64 20 73 65 63 72 65 74 20 75 73 65 64 20 66 6f 72 20 70 65 65 72 73 20 74 6f 20 63 6f 6d 6d | ed.secret.used.for.peers.to.comm |
| f06e0 | 75 6e 69 63 61 74 65 2e 00 47 65 6e 65 72 61 74 65 20 61 20 6e 65 77 20 4f 70 65 6e 56 50 4e 20 | unicate..Generate.a.new.OpenVPN. |
| f0700 | 73 68 61 72 65 64 20 73 65 63 72 65 74 2e 20 54 68 65 20 67 65 6e 65 72 61 74 65 64 20 73 65 63 | shared.secret..The.generated.sec |
| f0720 | 72 65 74 20 69 73 20 74 68 65 20 6f 75 74 70 75 74 20 74 6f 20 74 68 65 20 63 6f 6e 73 6f 6c 65 | ret.is.the.output.to.the.console |
| f0740 | 2e 00 47 65 6e 65 72 61 74 65 20 61 20 6e 65 77 20 57 69 72 65 47 75 61 72 64 20 70 75 62 6c 69 | ..Generate.a.new.WireGuard.publi |
| f0760 | 63 2f 70 72 69 76 61 74 65 20 6b 65 79 20 70 6f 72 74 69 6f 6e 20 61 6e 64 20 6f 75 74 70 75 74 | c/private.key.portion.and.output |
| f0780 | 20 74 68 65 20 72 65 73 75 6c 74 20 74 6f 20 74 68 65 20 63 6f 6e 73 6f 6c 65 2e 00 47 65 6e 65 | .the.result.to.the.console..Gene |
| f07a0 | 72 61 74 65 20 61 20 6e 65 77 20 73 65 74 20 6f 66 20 3a 61 62 62 72 3a 60 44 48 20 28 44 69 66 | rate.a.new.set.of.:abbr:`DH.(Dif |
| f07c0 | 66 69 65 2d 48 65 6c 6c 6d 61 6e 29 60 20 70 61 72 61 6d 65 74 65 72 73 2e 20 54 68 65 20 6b 65 | fie-Hellman)`.parameters..The.ke |
| f07e0 | 79 20 73 69 7a 65 20 69 73 20 72 65 71 75 65 73 74 65 64 20 62 79 20 74 68 65 20 43 4c 49 20 61 | y.size.is.requested.by.the.CLI.a |
| f0800 | 6e 64 20 64 65 66 61 75 6c 74 73 20 74 6f 20 32 30 34 38 20 62 69 74 2e 00 47 65 6e 65 72 61 74 | nd.defaults.to.2048.bit..Generat |
| f0820 | 65 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d 6f 64 65 20 63 6f 6d 6d 61 6e 64 | e.the.configuration.mode.command |
| f0840 | 73 20 74 6f 20 61 64 64 20 61 20 70 75 62 6c 69 63 20 6b 65 79 20 66 6f 72 20 3a 72 65 66 3a 60 | s.to.add.a.public.key.for.:ref:` |
| f0860 | 73 73 68 5f 6b 65 79 5f 62 61 73 65 64 5f 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 60 2e 20 60 | ssh_key_based_authentication`..` |
| f0880 | 60 3c 6c 6f 63 61 74 69 6f 6e 3e 60 60 20 63 61 6e 20 62 65 20 61 20 6c 6f 63 61 6c 20 70 61 74 | `<location>``.can.be.a.local.pat |
| f08a0 | 68 20 6f 72 20 61 20 55 52 4c 20 70 6f 69 6e 74 69 6e 67 20 61 74 20 61 20 72 65 6d 6f 74 65 20 | h.or.a.URL.pointing.at.a.remote. |
| f08c0 | 66 69 6c 65 2e 00 47 65 6e 65 72 61 74 65 73 20 61 20 6b 65 79 70 61 69 72 2c 20 77 68 69 63 68 | file..Generates.a.keypair,.which |
| f08e0 | 20 69 6e 63 6c 75 64 65 73 20 74 68 65 20 70 75 62 6c 69 63 20 61 6e 64 20 70 72 69 76 61 74 65 | .includes.the.public.and.private |
| f0900 | 20 70 61 72 74 73 2c 20 61 6e 64 20 62 75 69 6c 64 20 61 20 63 6f 6e 66 69 67 75 72 61 74 69 6f | .parts,.and.build.a.configuratio |
| f0920 | 6e 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 69 6e 73 74 61 6c 6c 20 74 68 69 73 20 6b 65 79 20 74 6f | n.command.to.install.this.key.to |
| f0940 | 20 60 60 69 6e 74 65 72 66 61 63 65 60 60 2e 00 47 65 6e 65 72 61 74 65 73 20 61 20 6b 65 79 70 | .``interface``..Generates.a.keyp |
| f0960 | 61 69 72 2c 20 77 68 69 63 68 20 69 6e 63 6c 75 64 65 73 20 74 68 65 20 70 75 62 6c 69 63 20 61 | air,.which.includes.the.public.a |
| f0980 | 6e 64 20 70 72 69 76 61 74 65 20 70 61 72 74 73 2c 20 61 6e 64 20 62 75 69 6c 64 73 20 61 20 63 | nd.private.parts,.and.builds.a.c |
| f09a0 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 69 6e 73 74 61 6c 6c 20 | onfiguration.command.to.install. |
| f09c0 | 74 68 69 73 20 6b 65 79 20 74 6f 20 60 60 69 6e 74 65 72 66 61 63 65 60 60 2e 00 47 65 6e 65 72 | this.key.to.``interface``..Gener |
| f09e0 | 61 74 65 73 20 74 68 65 20 6b 65 79 70 61 69 72 2c 20 77 68 69 63 68 20 69 6e 63 6c 75 64 65 73 | ates.the.keypair,.which.includes |
| f0a00 | 20 74 68 65 20 70 75 62 6c 69 63 20 61 6e 64 20 70 72 69 76 61 74 65 20 70 61 72 74 73 2e 20 54 | .the.public.and.private.parts..T |
| f0a20 | 68 65 20 6b 65 79 20 69 73 20 6e 6f 74 20 73 74 6f 72 65 64 20 6f 6e 20 74 68 65 20 73 79 73 74 | he.key.is.not.stored.on.the.syst |
| f0a40 | 65 6d 20 2d 20 6f 6e 6c 79 20 61 20 6b 65 79 70 61 69 72 20 69 73 20 67 65 6e 65 72 61 74 65 64 | em.-.only.a.keypair.is.generated |
| f0a60 | 2e 00 47 65 6e 65 72 69 63 20 52 6f 75 74 69 6e 67 20 45 6e 63 61 70 73 75 6c 61 74 69 6f 6e 20 | ..Generic.Routing.Encapsulation. |
| f0a80 | 28 47 52 45 29 00 47 65 6e 65 76 65 20 48 65 61 64 65 72 3a 00 47 65 74 20 61 20 6c 69 73 74 20 | (GRE).Geneve.Header:.Get.a.list. |
| f0aa0 | 6f 66 20 61 6c 6c 20 77 69 72 65 67 75 61 72 64 20 69 6e 74 65 72 66 61 63 65 73 00 47 65 74 20 | of.all.wireguard.interfaces.Get. |
| f0ac0 | 61 6e 20 6f 76 65 72 76 69 65 77 20 6f 76 65 72 20 74 68 65 20 65 6e 63 72 79 70 74 69 6f 6e 20 | an.overview.over.the.encryption. |
| f0ae0 | 63 6f 75 6e 74 65 72 73 2e 00 47 65 74 20 64 65 74 61 69 6c 65 64 20 69 6e 66 6f 72 6d 61 74 69 | counters..Get.detailed.informati |
| f0b00 | 6f 6e 20 61 62 6f 75 74 20 4c 4c 44 50 20 6e 65 69 67 68 62 6f 72 73 2e 00 47 65 74 20 74 68 65 | on.about.LLDP.neighbors..Get.the |
| f0b20 | 20 44 48 43 50 76 36 2d 50 44 20 70 72 65 66 69 78 65 73 20 66 72 6f 6d 20 62 6f 74 68 20 72 6f | .DHCPv6-PD.prefixes.from.both.ro |
| f0b40 | 75 74 65 72 73 3a 00 47 65 74 74 69 6e 67 20 73 74 61 72 74 65 64 00 47 69 76 65 6e 20 74 68 65 | uters:.Getting.started.Given.the |
| f0b60 | 20 66 61 63 74 20 74 68 61 74 20 6f 70 65 6e 20 44 4e 53 20 72 65 63 75 72 73 6f 72 73 20 63 6f | .fact.that.open.DNS.recursors.co |
| f0b80 | 75 6c 64 20 62 65 20 75 73 65 64 20 6f 6e 20 44 44 6f 53 20 61 6d 70 6c 69 66 69 63 61 74 69 6f | uld.be.used.on.DDoS.amplificatio |
| f0ba0 | 6e 20 61 74 74 61 63 6b 73 2c 20 79 6f 75 20 6d 75 73 74 20 63 6f 6e 66 69 67 75 72 65 20 74 68 | n.attacks,.you.must.configure.th |
| f0bc0 | 65 20 6e 65 74 77 6f 72 6b 73 20 77 68 69 63 68 20 61 72 65 20 61 6c 6c 6f 77 65 64 20 74 6f 20 | e.networks.which.are.allowed.to. |
| f0be0 | 75 73 65 20 74 68 69 73 20 72 65 63 75 72 73 6f 72 2e 20 41 20 6e 65 74 77 6f 72 6b 20 6f 66 20 | use.this.recursor..A.network.of. |
| f0c00 | 60 60 30 2e 30 2e 30 2e 30 2f 30 60 60 20 6f 72 20 60 60 3a 3a 2f 30 60 60 20 77 6f 75 6c 64 20 | ``0.0.0.0/0``.or.``::/0``.would. |
| f0c20 | 61 6c 6c 6f 77 20 61 6c 6c 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 6e 65 74 77 6f 72 6b 73 | allow.all.IPv4.and.IPv6.networks |
| f0c40 | 20 74 6f 20 71 75 65 72 79 20 74 68 69 73 20 73 65 72 76 65 72 2e 20 54 68 69 73 20 69 73 20 67 | .to.query.this.server..This.is.g |
| f0c60 | 65 6e 65 72 61 6c 6c 79 20 61 20 62 61 64 20 69 64 65 61 2e 00 47 69 76 65 6e 20 74 68 65 20 66 | enerally.a.bad.idea..Given.the.f |
| f0c80 | 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 6c 65 20 77 65 20 68 61 76 65 20 6f 6e 65 20 56 79 4f | ollowing.example.we.have.one.VyO |
| f0ca0 | 53 20 72 6f 75 74 65 72 20 61 63 74 69 6e 67 20 61 73 20 4f 70 65 6e 56 50 4e 20 73 65 72 76 65 | S.router.acting.as.OpenVPN.serve |
| f0cc0 | 72 20 61 6e 64 20 61 6e 6f 74 68 65 72 20 56 79 4f 53 20 72 6f 75 74 65 72 20 61 63 74 69 6e 67 | r.and.another.VyOS.router.acting |
| f0ce0 | 20 61 73 20 4f 70 65 6e 56 50 4e 20 63 6c 69 65 6e 74 2e 20 54 68 65 20 73 65 72 76 65 72 20 61 | .as.OpenVPN.client..The.server.a |
| f0d00 | 6c 73 6f 20 70 75 73 68 65 73 20 61 20 73 74 61 74 69 63 20 63 6c 69 65 6e 74 20 49 50 20 61 64 | lso.pushes.a.static.client.IP.ad |
| f0d20 | 64 72 65 73 73 20 74 6f 20 74 68 65 20 4f 70 65 6e 56 50 4e 20 63 6c 69 65 6e 74 2e 20 52 65 6d | dress.to.the.OpenVPN.client..Rem |
| f0d40 | 65 6d 62 65 72 2c 20 63 6c 69 65 6e 74 73 20 61 72 65 20 69 64 65 6e 74 69 66 69 65 64 20 75 73 | ember,.clients.are.identified.us |
| f0d60 | 69 6e 67 20 74 68 65 69 72 20 43 4e 20 61 74 74 72 69 62 75 74 65 20 69 6e 20 74 68 65 20 53 53 | ing.their.CN.attribute.in.the.SS |
| f0d80 | 4c 20 63 65 72 74 69 66 69 63 61 74 65 2e 00 47 69 76 65 6e 20 74 68 65 20 66 6f 6c 6c 6f 77 69 | L.certificate..Given.the.followi |
| f0da0 | 6e 67 20 65 78 61 6d 70 6c 65 20 77 65 20 68 61 76 65 20 6f 6e 65 20 56 79 4f 53 20 72 6f 75 74 | ng.example.we.have.one.VyOS.rout |
| f0dc0 | 65 72 20 61 63 74 69 6e 67 20 61 73 20 61 6e 20 4f 70 65 6e 56 50 4e 20 73 65 72 76 65 72 20 61 | er.acting.as.an.OpenVPN.server.a |
| f0de0 | 6e 64 20 61 6e 6f 74 68 65 72 20 56 79 4f 53 20 72 6f 75 74 65 72 20 61 63 74 69 6e 67 20 61 73 | nd.another.VyOS.router.acting.as |
| f0e00 | 20 61 6e 20 4f 70 65 6e 56 50 4e 20 63 6c 69 65 6e 74 2e 20 54 68 65 20 73 65 72 76 65 72 20 61 | .an.OpenVPN.client..The.server.a |
| f0e20 | 6c 73 6f 20 70 75 73 68 65 73 20 61 20 73 74 61 74 69 63 20 63 6c 69 65 6e 74 20 49 50 20 61 64 | lso.pushes.a.static.client.IP.ad |
| f0e40 | 64 72 65 73 73 20 74 6f 20 74 68 65 20 4f 70 65 6e 56 50 4e 20 63 6c 69 65 6e 74 2e 20 52 65 6d | dress.to.the.OpenVPN.client..Rem |
| f0e60 | 65 6d 62 65 72 2c 20 63 6c 69 65 6e 74 73 20 61 72 65 20 69 64 65 6e 74 69 66 69 65 64 20 75 73 | ember,.clients.are.identified.us |
| f0e80 | 69 6e 67 20 74 68 65 69 72 20 43 4e 20 61 74 74 72 69 62 75 74 65 20 69 6e 20 74 68 65 20 53 53 | ing.their.CN.attribute.in.the.SS |
| f0ea0 | 4c 20 63 65 72 74 69 66 69 63 61 74 65 2e 00 47 6c 6f 61 62 61 6c 00 47 6c 6f 62 61 6c 00 47 6c | L.certificate..Gloabal.Global.Gl |
| f0ec0 | 6f 62 61 6c 20 41 64 76 61 6e 63 65 64 20 6f 70 74 69 6f 6e 73 00 47 6c 6f 62 61 6c 20 4f 70 74 | obal.Advanced.options.Global.Opt |
| f0ee0 | 69 6f 6e 73 00 47 6c 6f 62 61 6c 20 4f 70 74 69 6f 6e 73 20 46 69 72 65 77 61 6c 6c 20 43 6f 6e | ions.Global.Options.Firewall.Con |
| f0f00 | 66 69 67 75 72 61 74 69 6f 6e 00 47 6c 6f 62 61 6c 20 6f 70 74 69 6f 6e 73 00 47 6c 6f 62 61 6c | figuration.Global.options.Global |
| f0f20 | 20 70 61 72 61 6d 65 74 65 72 73 00 47 6c 6f 62 61 6c 20 73 65 74 74 69 6e 67 73 00 47 72 61 63 | .parameters.Global.settings.Grac |
| f0f40 | 65 66 75 6c 20 52 65 73 74 61 72 74 00 47 72 61 70 68 51 4c 00 47 72 61 74 75 69 74 6f 75 73 20 | eful.Restart.GraphQL.Gratuitous. |
| f0f60 | 41 52 50 00 47 72 6f 75 70 73 00 47 72 6f 75 70 73 20 6e 65 65 64 20 74 6f 20 68 61 76 65 20 75 | ARP.Groups.Groups.need.to.have.u |
| f0f80 | 6e 69 71 75 65 20 6e 61 6d 65 73 2e 20 45 76 65 6e 20 74 68 6f 75 67 68 20 73 6f 6d 65 20 63 6f | nique.names..Even.though.some.co |
| f0fa0 | 6e 74 61 69 6e 20 49 50 76 34 20 61 64 64 72 65 73 73 65 73 20 61 6e 64 20 6f 74 68 65 72 73 20 | ntain.IPv4.addresses.and.others. |
| f0fc0 | 63 6f 6e 74 61 69 6e 20 49 50 76 36 20 61 64 64 72 65 73 73 65 73 2c 20 74 68 65 79 20 73 74 69 | contain.IPv6.addresses,.they.sti |
| f0fe0 | 6c 6c 20 6e 65 65 64 20 74 6f 20 68 61 76 65 20 75 6e 69 71 75 65 20 6e 61 6d 65 73 2c 20 73 6f | ll.need.to.have.unique.names,.so |
| f1000 | 20 79 6f 75 20 6d 61 79 20 77 61 6e 74 20 74 6f 20 61 70 70 65 6e 64 20 22 2d 76 34 22 20 6f 72 | .you.may.want.to.append."-v4".or |
| f1020 | 20 22 2d 76 36 22 20 74 6f 20 79 6f 75 72 20 67 72 6f 75 70 20 6e 61 6d 65 73 2e 00 48 45 20 28 | ."-v6".to.your.group.names..HE.( |
| f1040 | 48 69 67 68 20 45 66 66 69 63 69 65 6e 63 79 29 20 63 61 70 61 62 69 6c 69 74 69 65 73 20 28 38 | High.Efficiency).capabilities.(8 |
| f1060 | 30 32 2e 31 31 61 78 29 00 48 45 20 6f 70 65 72 61 74 69 6e 67 20 63 68 61 6e 6e 65 6c 20 63 65 | 02.11ax).HE.operating.channel.ce |
| f1080 | 6e 74 65 72 20 66 72 65 71 75 65 6e 63 79 20 2d 20 63 65 6e 74 65 72 20 66 72 65 71 20 31 20 28 | nter.frequency.-.center.freq.1.( |
| f10a0 | 66 6f 72 20 75 73 65 20 77 69 74 68 20 38 30 2c 20 38 30 2b 38 30 20 61 6e 64 20 31 36 30 20 6d | for.use.with.80,.80+80.and.160.m |
| f10c0 | 6f 64 65 73 29 00 48 45 20 6f 70 65 72 61 74 69 6e 67 20 63 68 61 6e 6e 65 6c 20 63 65 6e 74 65 | odes).HE.operating.channel.cente |
| f10e0 | 72 20 66 72 65 71 75 65 6e 63 79 20 2d 20 63 65 6e 74 65 72 20 66 72 65 71 20 32 20 28 66 6f 72 | r.frequency.-.center.freq.2.(for |
| f1100 | 20 75 73 65 20 77 69 74 68 20 74 68 65 20 38 30 2b 38 30 20 6d 6f 64 65 29 00 48 50 20 4c 54 34 | .use.with.the.80+80.mode).HP.LT4 |
| f1120 | 31 32 30 20 53 6e 61 70 64 72 61 67 6f 6e 20 58 35 20 4c 54 45 00 48 51 27 73 20 72 6f 75 74 65 | 120.Snapdragon.X5.LTE.HQ's.route |
| f1140 | 72 20 72 65 71 75 69 72 65 73 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 74 65 70 73 20 74 | r.requires.the.following.steps.t |
| f1160 | 6f 20 67 65 6e 65 72 61 74 65 20 63 72 79 70 74 6f 20 6d 61 74 65 72 69 61 6c 73 20 66 6f 72 20 | o.generate.crypto.materials.for. |
| f1180 | 74 68 65 20 42 72 61 6e 63 68 20 31 3a 00 48 54 20 28 48 69 67 68 20 54 68 72 6f 75 67 68 70 75 | the.Branch.1:.HT.(High.Throughpu |
| f11a0 | 74 29 20 63 61 70 61 62 69 6c 69 74 69 65 73 20 28 38 30 32 2e 31 31 6e 29 00 48 54 54 50 20 41 | t).capabilities.(802.11n).HTTP.A |
| f11c0 | 50 49 00 48 54 54 50 20 62 61 73 65 64 20 73 65 72 76 69 63 65 73 00 48 54 54 50 20 62 61 73 69 | PI.HTTP.based.services.HTTP.basi |
| f11e0 | 63 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 75 73 65 72 6e 61 6d 65 00 48 54 54 50 20 62 | c.authentication.username.HTTP.b |
| f1200 | 61 73 69 63 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2e 00 48 54 54 50 20 63 68 65 63 6b 73 | asic.authentication..HTTP.checks |
| f1220 | 00 48 54 54 50 20 63 6c 69 65 6e 74 00 48 54 54 50 20 68 65 61 6c 74 68 20 63 68 65 63 6b 00 48 | .HTTP.client.HTTP.health.check.H |
| f1240 | 54 54 50 2d 41 50 49 00 48 61 69 72 70 69 6e 20 4e 41 54 2f 4e 41 54 20 52 65 66 6c 65 63 74 69 | TTP-API.Hairpin.NAT/NAT.Reflecti |
| f1260 | 6f 6e 00 48 61 6e 64 20 6f 75 74 20 70 72 65 66 69 78 65 73 20 6f 66 20 73 69 7a 65 20 60 3c 6c | on.Hand.out.prefixes.of.size.`<l |
| f1280 | 65 6e 67 74 68 3e 60 20 69 6e 20 62 69 74 73 20 66 72 6f 6d 20 60 3c 70 64 2d 70 72 65 66 69 78 | ength>`.in.bits.from.`<pd-prefix |
| f12a0 | 3e 60 20 74 6f 20 63 6c 69 65 6e 74 73 20 69 6e 20 73 75 62 6e 65 74 20 60 3c 70 72 65 66 69 78 | >`.to.clients.in.subnet.`<prefix |
| f12c0 | 3e 60 20 77 68 65 6e 20 74 68 65 20 72 65 71 75 65 73 74 20 66 6f 72 20 70 72 65 66 69 78 20 64 | >`.when.the.request.for.prefix.d |
| f12e0 | 65 6c 65 67 61 74 69 6f 6e 2e 00 48 61 6e 64 20 6f 75 74 20 70 72 65 66 69 78 65 73 20 6f 66 20 | elegation..Hand.out.prefixes.of. |
| f1300 | 73 69 7a 65 20 60 3c 6c 65 6e 67 74 68 3e 60 20 74 6f 20 63 6c 69 65 6e 74 73 20 69 6e 20 73 75 | size.`<length>`.to.clients.in.su |
| f1320 | 62 6e 65 74 20 60 3c 70 72 65 66 69 78 3e 60 20 77 68 65 6e 20 74 68 65 79 20 72 65 71 75 65 73 | bnet.`<prefix>`.when.they.reques |
| f1340 | 74 20 66 6f 72 20 70 72 65 66 69 78 20 64 65 6c 65 67 61 74 69 6f 6e 2e 00 48 61 6e 64 6c 69 6e | t.for.prefix.delegation..Handlin |
| f1360 | 67 20 61 6e 64 20 6d 6f 6e 69 74 6f 72 69 6e 67 00 48 61 70 72 6f 78 79 00 48 61 70 72 6f 78 79 | g.and.monitoring.Haproxy.Haproxy |
| f1380 | 20 69 73 20 61 20 62 61 6c 61 6e 63 65 72 20 61 6e 64 20 70 72 6f 78 79 20 73 65 72 76 65 72 20 | .is.a.balancer.and.proxy.server. |
| f13a0 | 74 68 61 74 20 70 72 6f 76 69 64 65 73 20 68 69 67 68 2d 61 76 61 69 6c 61 62 69 6c 69 74 79 2c | that.provides.high-availability, |
| f13c0 | 20 6c 6f 61 64 20 62 61 6c 61 6e 63 69 6e 67 20 61 6e 64 20 70 72 6f 78 79 69 6e 67 20 66 6f 72 | .load.balancing.and.proxying.for |
| f13e0 | 20 54 43 50 20 28 6c 65 76 65 6c 20 34 29 20 61 6e 64 20 48 54 54 50 2d 62 61 73 65 64 20 28 6c | .TCP.(level.4).and.HTTP-based.(l |
| f1400 | 65 76 65 6c 20 37 29 20 61 70 70 6c 69 63 61 74 69 6f 6e 73 2e 00 48 61 72 64 77 61 72 65 20 54 | evel.7).applications..Hardware.T |
| f1420 | 69 6d 65 73 74 61 6d 70 69 6e 67 20 6f 66 20 4e 54 50 20 50 61 63 6b 65 74 73 00 48 61 72 64 77 | imestamping.of.NTP.Packets.Hardw |
| f1440 | 61 72 65 20 74 69 6d 65 73 74 61 6d 70 69 6e 67 20 64 65 70 65 6e 64 73 20 6f 6e 20 4e 49 43 20 | are.timestamping.depends.on.NIC. |
| f1460 | 73 75 70 70 6f 72 74 2e 20 53 6f 6d 65 20 4e 49 43 73 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 | support..Some.NICs.can.be.config |
| f1480 | 75 72 65 64 20 74 6f 20 61 70 70 6c 79 20 74 69 6d 65 73 74 61 6d 70 73 20 74 6f 20 61 6e 79 20 | ured.to.apply.timestamps.to.any. |
| f14a0 | 69 6e 63 6f 6d 69 6e 67 20 70 61 63 6b 65 74 2c 20 77 68 69 6c 65 20 6f 74 68 65 72 73 20 6f 6e | incoming.packet,.while.others.on |
| f14c0 | 6c 79 20 73 75 70 70 6f 72 74 20 61 70 70 6c 79 69 6e 67 20 74 69 6d 65 73 74 61 6d 70 73 20 74 | ly.support.applying.timestamps.t |
| f14e0 | 6f 20 73 70 65 63 69 66 69 63 20 70 72 6f 74 6f 63 6f 6c 73 20 28 65 2e 67 2e 20 50 54 50 29 2e | o.specific.protocols.(e.g..PTP). |
| f1500 | 00 48 61 76 69 6e 67 20 63 6f 6e 74 72 6f 6c 20 6f 76 65 72 20 74 68 65 20 6d 61 74 63 68 69 6e | .Having.control.over.the.matchin |
| f1520 | 67 20 6f 66 20 49 4e 56 41 4c 49 44 20 73 74 61 74 65 20 74 72 61 66 66 69 63 2c 20 65 2e 67 2e | g.of.INVALID.state.traffic,.e.g. |
| f1540 | 20 74 68 65 20 61 62 69 6c 69 74 79 20 74 6f 20 73 65 6c 65 63 74 69 76 65 6c 79 20 6c 6f 67 2c | .the.ability.to.selectively.log, |
| f1560 | 20 69 73 20 61 6e 20 69 6d 70 6f 72 74 61 6e 74 20 74 72 6f 75 62 6c 65 73 68 6f 6f 74 69 6e 67 | .is.an.important.troubleshooting |
| f1580 | 20 74 6f 6f 6c 20 66 6f 72 20 6f 62 73 65 72 76 69 6e 67 20 62 72 6f 6b 65 6e 20 70 72 6f 74 6f | .tool.for.observing.broken.proto |
| f15a0 | 63 6f 6c 20 62 65 68 61 76 69 6f 72 2e 20 46 6f 72 20 74 68 69 73 20 72 65 61 73 6f 6e 2c 20 56 | col.behavior..For.this.reason,.V |
| f15c0 | 79 4f 53 20 64 6f 65 73 20 6e 6f 74 20 67 6c 6f 62 61 6c 6c 79 20 64 72 6f 70 20 69 6e 76 61 6c | yOS.does.not.globally.drop.inval |
| f15e0 | 69 64 20 73 74 61 74 65 20 74 72 61 66 66 69 63 2c 20 69 6e 73 74 65 61 64 20 61 6c 6c 6f 77 69 | id.state.traffic,.instead.allowi |
| f1600 | 6e 67 20 74 68 65 20 6f 70 65 72 61 74 6f 72 20 74 6f 20 6d 61 6b 65 20 74 68 65 20 64 65 74 65 | ng.the.operator.to.make.the.dete |
| f1620 | 72 6d 69 6e 61 74 69 6f 6e 20 6f 6e 20 68 6f 77 20 74 68 65 20 74 72 61 66 66 69 63 20 69 73 20 | rmination.on.how.the.traffic.is. |
| f1640 | 68 61 6e 64 6c 65 64 2e 00 48 65 61 6c 74 68 20 63 68 65 63 6b 20 73 63 72 69 70 74 73 00 48 65 | handled..Health.check.scripts.He |
| f1660 | 61 6c 74 68 20 63 68 65 63 6b 73 00 48 65 61 6c 74 68 20 63 68 65 63 6b 73 20 63 61 6e 20 61 6c | alth.checks.Health.checks.can.al |
| f1680 | 73 6f 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 66 6f 72 20 54 43 50 20 6d 6f 64 65 20 62 61 | so.be.configured.for.TCP.mode.ba |
| f16a0 | 63 6b 65 6e 64 73 2e 20 59 6f 75 20 63 61 6e 20 63 6f 6e 66 69 67 75 72 65 20 70 72 6f 74 6f 63 | ckends..You.can.configure.protoc |
| f16c0 | 6f 6c 20 61 77 61 72 65 20 63 68 65 63 6b 73 20 66 6f 72 20 61 20 72 61 6e 67 65 20 6f 66 20 4c | ol.aware.checks.for.a.range.of.L |
| f16e0 | 61 79 65 72 20 37 20 70 72 6f 74 6f 63 6f 6c 73 3a 00 48 65 61 6c 74 68 2d 63 68 65 63 6b 00 48 | ayer.7.protocols:.Health-check.H |
| f1700 | 65 72 65 20 61 72 65 20 73 6f 6d 65 20 65 78 61 6d 70 6c 65 73 20 66 6f 72 20 61 70 70 6c 79 69 | ere.are.some.examples.for.applyi |
| f1720 | 6e 67 20 61 20 72 75 6c 65 2d 73 65 74 20 74 6f 20 61 6e 20 69 6e 74 65 72 66 61 63 65 00 48 65 | ng.a.rule-set.to.an.interface.He |
| f1740 | 72 65 20 69 73 20 61 20 73 65 63 6f 6e 64 20 65 78 61 6d 70 6c 65 20 6f 66 20 61 20 64 75 61 6c | re.is.a.second.example.of.a.dual |
| f1760 | 2d 73 74 61 63 6b 20 74 75 6e 6e 65 6c 20 6f 76 65 72 20 49 50 76 36 20 62 65 74 77 65 65 6e 20 | -stack.tunnel.over.IPv6.between. |
| f1780 | 61 20 56 79 4f 53 20 72 6f 75 74 65 72 20 61 6e 64 20 61 20 4c 69 6e 75 78 20 68 6f 73 74 20 75 | a.VyOS.router.and.a.Linux.host.u |
| f17a0 | 73 69 6e 67 20 73 79 73 74 65 6d 64 2d 6e 65 74 77 6f 72 6b 64 2e 00 48 65 72 65 20 69 73 20 61 | sing.systemd-networkd..Here.is.a |
| f17c0 | 6e 20 65 78 61 6d 70 6c 65 20 3a 61 62 62 72 3a 60 4e 45 54 20 28 4e 65 74 77 6f 72 6b 20 45 6e | n.example.:abbr:`NET.(Network.En |
| f17e0 | 74 69 74 79 20 54 69 74 6c 65 29 60 20 76 61 6c 75 65 3a 00 48 65 72 65 20 69 73 20 61 6e 20 65 | tity.Title)`.value:.Here.is.an.e |
| f1800 | 78 61 6d 70 6c 65 20 6f 66 20 73 75 63 68 20 63 6f 6d 6d 61 6e 64 3a 00 48 65 72 65 20 69 73 20 | xample.of.such.command:.Here.is. |
| f1820 | 61 6e 20 65 78 61 6d 70 6c 65 20 72 6f 75 74 65 2d 6d 61 70 20 74 6f 20 61 70 70 6c 79 20 74 6f | an.example.route-map.to.apply.to |
| f1840 | 20 72 6f 75 74 65 73 20 6c 65 61 72 6e 65 64 20 61 74 20 69 6d 70 6f 72 74 2e 20 49 6e 20 74 68 | .routes.learned.at.import..In.th |
| f1860 | 69 73 20 66 69 6c 74 65 72 20 77 65 20 72 65 6a 65 63 74 20 70 72 65 66 69 78 65 73 20 77 69 74 | is.filter.we.reject.prefixes.wit |
| f1880 | 68 20 74 68 65 20 73 74 61 74 65 20 60 69 6e 76 61 6c 69 64 60 2c 20 61 6e 64 20 73 65 74 20 61 | h.the.state.`invalid`,.and.set.a |
| f18a0 | 20 68 69 67 68 65 72 20 60 6c 6f 63 61 6c 2d 70 72 65 66 65 72 65 6e 63 65 60 20 69 66 20 74 68 | .higher.`local-preference`.if.th |
| f18c0 | 65 20 70 72 65 66 69 78 20 69 73 20 52 50 4b 49 20 60 76 61 6c 69 64 60 20 72 61 74 68 65 72 20 | e.prefix.is.RPKI.`valid`.rather. |
| f18e0 | 74 68 61 6e 20 6d 65 72 65 6c 79 20 60 6e 6f 74 66 6f 75 6e 64 60 2e 00 48 65 72 65 20 69 73 20 | than.merely.`notfound`..Here.is. |
| f1900 | 61 6e 20 65 78 61 6d 70 6c 65 20 77 65 72 65 20 6d 75 6c 74 69 70 6c 65 20 67 72 6f 75 70 73 20 | an.example.were.multiple.groups. |
| f1920 | 61 72 65 20 63 72 65 61 74 65 64 3a 00 48 65 72 65 20 69 73 20 74 68 65 20 72 6f 75 74 69 6e 67 | are.created:.Here.is.the.routing |
| f1940 | 20 74 61 62 6c 65 73 20 73 68 6f 77 69 6e 67 20 74 68 65 20 4d 50 4c 53 20 73 65 67 6d 65 6e 74 | .tables.showing.the.MPLS.segment |
| f1960 | 20 72 6f 75 74 69 6e 67 20 6c 61 62 65 6c 20 6f 70 65 72 61 74 69 6f 6e 73 3a 00 48 65 72 65 20 | .routing.label.operations:.Here. |
| f1980 | 77 65 20 70 72 6f 76 69 64 65 20 74 77 6f 20 65 78 61 6d 70 6c 65 73 20 6f 6e 20 68 6f 77 20 74 | we.provide.two.examples.on.how.t |
| f19a0 | 6f 20 61 70 70 6c 79 20 4e 41 54 20 4c 6f 61 64 20 42 61 6c 61 6e 63 65 2e 00 48 65 72 65 27 73 | o.apply.NAT.Load.Balance..Here's |
| f19c0 | 20 61 6e 20 65 78 74 72 61 63 74 20 6f 66 20 61 20 73 69 6d 70 6c 65 20 31 2d 74 6f 2d 31 20 4e | .an.extract.of.a.simple.1-to-1.N |
| f19e0 | 41 54 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 77 69 74 68 20 6f 6e 65 20 69 6e 74 65 72 6e | AT.configuration.with.one.intern |
| f1a00 | 61 6c 20 61 6e 64 20 6f 6e 65 20 65 78 74 65 72 6e 61 6c 20 69 6e 74 65 72 66 61 63 65 3a 00 48 | al.and.one.external.interface:.H |
| f1a20 | 65 72 65 27 73 20 6f 6e 65 20 65 78 61 6d 70 6c 65 20 6f 66 20 61 20 6e 65 74 77 6f 72 6b 20 65 | ere's.one.example.of.a.network.e |
| f1a40 | 6e 76 69 72 6f 6e 6d 65 6e 74 20 66 6f 72 20 61 6e 20 41 53 50 2e 20 54 68 65 20 41 53 50 20 72 | nvironment.for.an.ASP..The.ASP.r |
| f1a60 | 65 71 75 65 73 74 73 20 74 68 61 74 20 61 6c 6c 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 66 72 6f | equests.that.all.connections.fro |
| f1a80 | 6d 20 74 68 69 73 20 63 6f 6d 70 61 6e 79 20 73 68 6f 75 6c 64 20 63 6f 6d 65 20 66 72 6f 6d 20 | m.this.company.should.come.from. |
| f1aa0 | 31 37 32 2e 32 39 2e 34 31 2e 38 39 20 2d 20 61 6e 20 61 64 64 72 65 73 73 20 74 68 61 74 20 69 | 172.29.41.89.-.an.address.that.i |
| f1ac0 | 73 20 61 73 73 69 67 6e 65 64 20 62 79 20 74 68 65 20 41 53 50 20 61 6e 64 20 6e 6f 74 20 69 6e | s.assigned.by.the.ASP.and.not.in |
| f1ae0 | 20 75 73 65 20 61 74 20 74 68 65 20 63 75 73 74 6f 6d 65 72 20 73 69 74 65 2e 00 48 65 72 65 27 | .use.at.the.customer.site..Here' |
| f1b00 | 73 20 74 68 65 20 49 50 20 72 6f 75 74 65 73 20 74 68 61 74 20 61 72 65 20 70 6f 70 75 6c 61 74 | s.the.IP.routes.that.are.populat |
| f1b20 | 65 64 2e 20 4a 75 73 74 20 74 68 65 20 6c 6f 6f 70 62 61 63 6b 3a 00 48 65 72 65 27 73 20 74 68 | ed..Just.the.loopback:.Here's.th |
| f1b40 | 65 20 49 50 20 72 6f 75 74 65 73 20 74 68 61 74 20 61 72 65 20 70 6f 70 75 6c 61 74 65 64 3a 00 | e.IP.routes.that.are.populated:. |
| f1b60 | 48 65 72 65 27 73 20 74 68 65 20 6e 65 69 67 68 62 6f 72 73 20 75 70 3a 00 48 65 72 65 27 73 20 | Here's.the.neighbors.up:.Here's. |
| f1b80 | 74 68 65 20 72 6f 75 74 65 73 3a 00 48 65 77 6c 65 74 74 2d 50 61 63 6b 61 72 64 20 63 61 6c 6c | the.routes:.Hewlett-Packard.call |
| f1ba0 | 20 69 74 20 53 6f 75 72 63 65 2d 50 6f 72 74 20 66 69 6c 74 65 72 69 6e 67 20 6f 72 20 70 6f 72 | .it.Source-Port.filtering.or.por |
| f1bc0 | 74 2d 69 73 6f 6c 61 74 69 6f 6e 00 48 69 67 68 00 48 69 67 68 20 41 76 61 69 6c 61 62 69 6c 69 | t-isolation.High.High.Availabili |
| f1be0 | 74 79 00 48 69 67 68 20 61 76 61 69 6c 61 62 69 6c 69 74 79 00 48 6f 6d 65 20 55 73 65 72 73 00 | ty.High.availability.Home.Users. |
| f1c00 | 48 6f 70 20 63 6f 75 6e 74 20 66 69 65 6c 64 20 6f 66 20 74 68 65 20 6f 75 74 67 6f 69 6e 67 20 | Hop.count.field.of.the.outgoing. |
| f1c20 | 52 41 20 70 61 63 6b 65 74 73 00 48 6f 73 74 20 49 6e 66 6f 72 6d 61 74 69 6f 6e 00 48 6f 73 74 | RA.packets.Host.Information.Host |
| f1c40 | 20 6e 61 6d 65 00 48 6f 73 74 20 73 70 65 63 69 66 69 63 20 6d 61 70 70 69 6e 67 20 73 68 61 6c | .name.Host.specific.mapping.shal |
| f1c60 | 6c 20 62 65 20 6e 61 6d 65 64 20 60 60 63 6c 69 65 6e 74 31 60 60 00 48 6f 73 74 6e 61 6d 65 00 | l.be.named.``client1``.Hostname. |
| f1c80 | 48 6f 77 20 61 6e 20 49 50 20 61 64 64 72 65 73 73 20 69 73 20 61 73 73 69 67 6e 65 64 20 74 6f | How.an.IP.address.is.assigned.to |
| f1ca0 | 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 69 6e 20 3a 72 65 66 3a 60 65 74 68 65 72 6e 65 74 2d | .an.interface.in.:ref:`ethernet- |
| f1cc0 | 69 6e 74 65 72 66 61 63 65 60 2e 20 54 68 69 73 20 73 65 63 74 69 6f 6e 20 73 68 6f 77 73 20 68 | interface`..This.section.shows.h |
| f1ce0 | 6f 77 20 74 6f 20 73 74 61 74 69 63 61 6c 6c 79 20 6d 61 70 20 61 6e 20 49 50 20 61 64 64 72 65 | ow.to.statically.map.an.IP.addre |
| f1d00 | 73 73 20 74 6f 20 61 20 68 6f 73 74 6e 61 6d 65 20 66 6f 72 20 6c 6f 63 61 6c 20 28 6d 65 61 6e | ss.to.a.hostname.for.local.(mean |
| f1d20 | 69 6e 67 20 6f 6e 20 74 68 69 73 20 56 79 4f 53 20 69 6e 73 74 61 6e 63 65 29 20 6e 61 6d 65 20 | ing.on.this.VyOS.instance).name. |
| f1d40 | 72 65 73 6f 6c 75 74 69 6f 6e 2e 20 54 68 69 73 20 69 73 20 74 68 65 20 56 79 4f 53 20 65 71 75 | resolution..This.is.the.VyOS.equ |
| f1d60 | 69 76 61 6c 65 6e 74 20 74 6f 20 60 2f 65 74 63 2f 68 6f 73 74 73 60 20 66 69 6c 65 20 65 6e 74 | ivalent.to.`/etc/hosts`.file.ent |
| f1d80 | 72 69 65 73 2e 00 48 6f 77 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 45 76 65 6e 74 20 48 61 6e | ries..How.to.configure.Event.Han |
| f1da0 | 64 6c 65 72 00 48 6f 77 20 74 6f 20 6d 61 6b 65 20 69 74 20 77 6f 72 6b 00 48 6f 77 65 76 65 72 | dler.How.to.make.it.work.However |
| f1dc0 | 2c 20 6e 6f 77 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 6d 61 6b 65 20 49 50 73 65 63 20 77 6f 72 | ,.now.you.need.to.make.IPsec.wor |
| f1de0 | 6b 20 77 69 74 68 20 64 79 6e 61 6d 69 63 20 61 64 64 72 65 73 73 20 6f 6e 20 6f 6e 65 20 73 69 | k.with.dynamic.address.on.one.si |
| f1e00 | 64 65 2e 20 54 68 65 20 74 72 69 63 6b 79 20 70 61 72 74 20 69 73 20 74 68 61 74 20 70 72 65 2d | de..The.tricky.part.is.that.pre- |
| f1e20 | 73 68 61 72 65 64 20 73 65 63 72 65 74 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 64 6f 65 | shared.secret.authentication.doe |
| f1e40 | 73 6e 27 74 20 77 6f 72 6b 20 77 69 74 68 20 64 79 6e 61 6d 69 63 20 61 64 64 72 65 73 73 2c 20 | sn't.work.with.dynamic.address,. |
| f1e60 | 73 6f 20 77 65 27 6c 6c 20 68 61 76 65 20 74 6f 20 75 73 65 20 52 53 41 20 6b 65 79 73 2e 00 48 | so.we'll.have.to.use.RSA.keys..H |
| f1e80 | 6f 77 65 76 65 72 2c 20 73 69 6e 63 65 20 56 79 4f 53 20 31 2e 34 2c 20 69 74 20 69 73 20 70 6f | owever,.since.VyOS.1.4,.it.is.po |
| f1ea0 | 73 73 69 62 6c 65 20 74 6f 20 76 65 72 69 66 79 20 73 65 6c 66 2d 73 69 67 6e 65 64 20 63 65 72 | ssible.to.verify.self-signed.cer |
| f1ec0 | 74 69 66 69 63 61 74 65 73 20 75 73 69 6e 67 20 63 65 72 74 69 66 69 63 61 74 65 20 66 69 6e 67 | tificates.using.certificate.fing |
| f1ee0 | 65 72 70 72 69 6e 74 73 2e 00 48 6f 77 65 76 65 72 2c 20 73 70 6c 69 74 2d 74 75 6e 6e 65 6c 69 | erprints..However,.split-tunneli |
| f1f00 | 6e 67 20 63 61 6e 20 62 65 20 61 63 68 69 65 76 65 64 20 62 79 20 73 70 65 63 69 66 79 69 6e 67 | ng.can.be.achieved.by.specifying |
| f1f20 | 20 74 68 65 20 72 65 6d 6f 74 65 20 73 75 62 6e 65 74 73 2e 20 54 68 69 73 20 65 6e 73 75 72 65 | .the.remote.subnets..This.ensure |
| f1f40 | 73 20 74 68 61 74 20 6f 6e 6c 79 20 74 72 61 66 66 69 63 20 64 65 73 74 69 6e 65 64 20 66 6f 72 | s.that.only.traffic.destined.for |
| f1f60 | 20 74 68 65 20 72 65 6d 6f 74 65 20 73 69 74 65 20 69 73 20 73 65 6e 74 20 6f 76 65 72 20 74 68 | .the.remote.site.is.sent.over.th |
| f1f80 | 65 20 74 75 6e 6e 65 6c 2e 20 41 6c 6c 20 6f 74 68 65 72 20 74 72 61 66 66 69 63 20 69 73 20 75 | e.tunnel..All.other.traffic.is.u |
| f1fa0 | 6e 61 66 66 65 63 74 65 64 2e 00 48 75 61 77 65 69 20 4d 45 39 30 39 73 2d 31 32 30 20 6d 69 6e | naffected..Huawei.ME909s-120.min |
| f1fc0 | 69 50 43 49 65 20 63 61 72 64 20 28 4c 54 45 29 00 48 75 61 77 65 69 20 4d 45 39 30 39 75 2d 35 | iPCIe.card.(LTE).Huawei.ME909u-5 |
| f1fe0 | 32 31 20 6d 69 6e 69 50 43 49 65 20 63 61 72 64 20 28 4c 54 45 29 00 48 75 62 00 49 45 45 45 20 | 21.miniPCIe.card.(LTE).Hub.IEEE. |
| f2000 | 38 30 32 2e 31 58 2f 4d 41 43 73 65 63 20 70 72 65 2d 73 68 61 72 65 64 20 6b 65 79 20 6d 6f 64 | 802.1X/MACsec.pre-shared.key.mod |
| f2020 | 65 2e 20 54 68 69 73 20 61 6c 6c 6f 77 73 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 4d 41 43 73 65 | e..This.allows.configuring.MACse |
| f2040 | 63 20 77 69 74 68 20 61 20 70 72 65 2d 73 68 61 72 65 64 20 6b 65 79 20 75 73 69 6e 67 20 61 20 | c.with.a.pre-shared.key.using.a. |
| f2060 | 3a 61 62 62 72 3a 60 43 41 4b 20 28 4d 41 43 73 65 63 20 63 6f 6e 6e 65 63 74 69 76 69 74 79 20 | :abbr:`CAK.(MACsec.connectivity. |
| f2080 | 61 73 73 6f 63 69 61 74 69 6f 6e 20 6b 65 79 29 60 20 61 6e 64 20 3a 61 62 62 72 3a 60 43 4b 4e | association.key)`.and.:abbr:`CKN |
| f20a0 | 20 28 4d 41 43 73 65 63 20 63 6f 6e 6e 65 63 74 69 76 69 74 79 20 61 73 73 6f 63 69 61 74 69 6f | .(MACsec.connectivity.associatio |
| f20c0 | 6e 20 6e 61 6d 65 29 60 20 70 61 69 72 2e 00 49 45 45 45 20 38 30 32 2e 31 58 2f 4d 41 43 73 65 | n.name)`.pair..IEEE.802.1X/MACse |
| f20e0 | 63 20 72 65 70 6c 61 79 20 70 72 6f 74 65 63 74 69 6f 6e 20 77 69 6e 64 6f 77 2e 20 54 68 69 73 | c.replay.protection.window..This |
| f2100 | 20 64 65 74 65 72 6d 69 6e 65 73 20 61 20 77 69 6e 64 6f 77 20 69 6e 20 77 68 69 63 68 20 72 65 | .determines.a.window.in.which.re |
| f2120 | 70 6c 61 79 20 69 73 20 74 6f 6c 65 72 61 74 65 64 2c 20 74 6f 20 61 6c 6c 6f 77 20 72 65 63 65 | play.is.tolerated,.to.allow.rece |
| f2140 | 69 70 74 20 6f 66 20 66 72 61 6d 65 73 20 74 68 61 74 20 68 61 76 65 20 62 65 65 6e 20 6d 69 73 | ipt.of.frames.that.have.been.mis |
| f2160 | 6f 72 64 65 72 65 64 20 62 79 20 74 68 65 20 6e 65 74 77 6f 72 6b 2e 00 49 45 45 45 20 38 30 32 | ordered.by.the.network..IEEE.802 |
| f2180 | 2e 31 61 64 5f 20 77 61 73 20 61 6e 20 45 74 68 65 72 6e 65 74 20 6e 65 74 77 6f 72 6b 69 6e 67 | .1ad_.was.an.Ethernet.networking |
| f21a0 | 20 73 74 61 6e 64 61 72 64 20 69 6e 66 6f 72 6d 61 6c 6c 79 20 6b 6e 6f 77 6e 20 61 73 20 51 69 | .standard.informally.known.as.Qi |
| f21c0 | 6e 51 20 61 73 20 61 6e 20 61 6d 65 6e 64 6d 65 6e 74 20 74 6f 20 49 45 45 45 20 73 74 61 6e 64 | nQ.as.an.amendment.to.IEEE.stand |
| f21e0 | 61 72 64 20 38 30 32 2e 31 71 20 56 4c 41 4e 20 69 6e 74 65 72 66 61 63 65 73 20 61 73 20 64 65 | ard.802.1q.VLAN.interfaces.as.de |
| f2200 | 73 63 72 69 62 65 64 20 61 62 6f 76 65 2e 20 38 30 32 2e 31 61 64 20 77 61 73 20 69 6e 63 6f 72 | scribed.above..802.1ad.was.incor |
| f2220 | 70 6f 72 61 74 65 64 20 69 6e 74 6f 20 74 68 65 20 62 61 73 65 20 38 30 32 2e 31 71 5f 20 73 74 | porated.into.the.base.802.1q_.st |
| f2240 | 61 6e 64 61 72 64 20 69 6e 20 32 30 31 31 2e 20 54 68 65 20 74 65 63 68 6e 69 71 75 65 20 69 73 | andard.in.2011..The.technique.is |
| f2260 | 20 61 6c 73 6f 20 6b 6e 6f 77 6e 20 61 73 20 70 72 6f 76 69 64 65 72 20 62 72 69 64 67 69 6e 67 | .also.known.as.provider.bridging |
| f2280 | 2c 20 53 74 61 63 6b 65 64 20 56 4c 41 4e 73 2c 20 6f 72 20 73 69 6d 70 6c 79 20 51 69 6e 51 20 | ,.Stacked.VLANs,.or.simply.QinQ. |
| f22a0 | 6f 72 20 51 2d 69 6e 2d 51 2e 20 22 51 2d 69 6e 2d 51 22 20 63 61 6e 20 66 6f 72 20 73 75 70 70 | or.Q-in-Q.."Q-in-Q".can.for.supp |
| f22c0 | 6f 72 74 65 64 20 64 65 76 69 63 65 73 20 61 70 70 6c 79 20 74 6f 20 43 2d 74 61 67 20 73 74 61 | orted.devices.apply.to.C-tag.sta |
| f22e0 | 63 6b 69 6e 67 20 6f 6e 20 43 2d 74 61 67 20 28 45 74 68 65 72 6e 65 74 20 54 79 70 65 20 3d 20 | cking.on.C-tag.(Ethernet.Type.=. |
| f2300 | 30 78 38 31 30 30 29 2e 00 49 45 45 45 20 38 30 32 2e 31 71 5f 2c 20 6f 66 74 65 6e 20 72 65 66 | 0x8100)..IEEE.802.1q_,.often.ref |
| f2320 | 65 72 72 65 64 20 74 6f 20 61 73 20 44 6f 74 31 71 2c 20 69 73 20 74 68 65 20 6e 65 74 77 6f 72 | erred.to.as.Dot1q,.is.the.networ |
| f2340 | 6b 69 6e 67 20 73 74 61 6e 64 61 72 64 20 74 68 61 74 20 73 75 70 70 6f 72 74 73 20 76 69 72 74 | king.standard.that.supports.virt |
| f2360 | 75 61 6c 20 4c 41 4e 73 20 28 56 4c 41 4e 73 29 20 6f 6e 20 61 6e 20 49 45 45 45 20 38 30 32 2e | ual.LANs.(VLANs).on.an.IEEE.802. |
| f2380 | 33 20 45 74 68 65 72 6e 65 74 20 6e 65 74 77 6f 72 6b 2e 20 54 68 65 20 73 74 61 6e 64 61 72 64 | 3.Ethernet.network..The.standard |
| f23a0 | 20 64 65 66 69 6e 65 73 20 61 20 73 79 73 74 65 6d 20 6f 66 20 56 4c 41 4e 20 74 61 67 67 69 6e | .defines.a.system.of.VLAN.taggin |
| f23c0 | 67 20 66 6f 72 20 45 74 68 65 72 6e 65 74 20 66 72 61 6d 65 73 20 61 6e 64 20 74 68 65 20 61 63 | g.for.Ethernet.frames.and.the.ac |
| f23e0 | 63 6f 6d 70 61 6e 79 69 6e 67 20 70 72 6f 63 65 64 75 72 65 73 20 74 6f 20 62 65 20 75 73 65 64 | companying.procedures.to.be.used |
| f2400 | 20 62 79 20 62 72 69 64 67 65 73 20 61 6e 64 20 73 77 69 74 63 68 65 73 20 69 6e 20 68 61 6e 64 | .by.bridges.and.switches.in.hand |
| f2420 | 6c 69 6e 67 20 73 75 63 68 20 66 72 61 6d 65 73 2e 20 54 68 65 20 73 74 61 6e 64 61 72 64 20 61 | ling.such.frames..The.standard.a |
| f2440 | 6c 73 6f 20 63 6f 6e 74 61 69 6e 73 20 70 72 6f 76 69 73 69 6f 6e 73 20 66 6f 72 20 61 20 71 75 | lso.contains.provisions.for.a.qu |
| f2460 | 61 6c 69 74 79 2d 6f 66 2d 73 65 72 76 69 63 65 20 70 72 69 6f 72 69 74 69 7a 61 74 69 6f 6e 20 | ality-of-service.prioritization. |
| f2480 | 73 63 68 65 6d 65 20 63 6f 6d 6d 6f 6e 6c 79 20 6b 6e 6f 77 6e 20 61 73 20 49 45 45 45 20 38 30 | scheme.commonly.known.as.IEEE.80 |
| f24a0 | 32 2e 31 70 20 61 6e 64 20 64 65 66 69 6e 65 73 20 74 68 65 20 47 65 6e 65 72 69 63 20 41 74 74 | 2.1p.and.defines.the.Generic.Att |
| f24c0 | 72 69 62 75 74 65 20 52 65 67 69 73 74 72 61 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c 2e 00 49 45 | ribute.Registration.Protocol..IE |
| f24e0 | 54 46 20 70 75 62 6c 69 73 68 65 64 20 3a 72 66 63 3a 60 36 35 39 38 60 2c 20 64 65 74 61 69 6c | TF.published.:rfc:`6598`,.detail |
| f2500 | 69 6e 67 20 61 20 73 68 61 72 65 64 20 61 64 64 72 65 73 73 20 73 70 61 63 65 20 66 6f 72 20 75 | ing.a.shared.address.space.for.u |
| f2520 | 73 65 20 69 6e 20 49 53 50 20 43 47 4e 20 64 65 70 6c 6f 79 6d 65 6e 74 73 20 74 68 61 74 20 63 | se.in.ISP.CGN.deployments.that.c |
| f2540 | 61 6e 20 68 61 6e 64 6c 65 20 74 68 65 20 73 61 6d 65 20 6e 65 74 77 6f 72 6b 20 70 72 65 66 69 | an.handle.the.same.network.prefi |
| f2560 | 78 65 73 20 6f 63 63 75 72 72 69 6e 67 20 62 6f 74 68 20 6f 6e 20 69 6e 62 6f 75 6e 64 20 61 6e | xes.occurring.both.on.inbound.an |
| f2580 | 64 20 6f 75 74 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 73 2e 20 41 52 49 4e 20 72 65 74 75 | d.outbound.interfaces..ARIN.retu |
| f25a0 | 72 6e 65 64 20 61 64 64 72 65 73 73 20 73 70 61 63 65 20 74 6f 20 74 68 65 20 3a 61 62 62 72 3a | rned.address.space.to.the.:abbr: |
| f25c0 | 60 49 41 4e 41 20 28 49 6e 74 65 72 6e 65 74 20 41 73 73 69 67 6e 65 64 20 4e 75 6d 62 65 72 73 | `IANA.(Internet.Assigned.Numbers |
| f25e0 | 20 41 75 74 68 6f 72 69 74 79 29 60 20 66 6f 72 20 74 68 69 73 20 61 6c 6c 6f 63 61 74 69 6f 6e | .Authority)`.for.this.allocation |
| f2600 | 2e 00 49 47 4d 50 20 2d 20 49 6e 74 65 72 6e 65 74 20 47 72 6f 75 70 20 4d 61 6e 61 67 65 6d 65 | ..IGMP.-.Internet.Group.Manageme |
| f2620 | 6e 74 20 50 72 6f 74 6f 63 6f 6c 29 00 49 47 4d 50 20 50 72 6f 78 79 00 49 4b 45 20 28 49 6e 74 | nt.Protocol).IGMP.Proxy.IKE.(Int |
| f2640 | 65 72 6e 65 74 20 4b 65 79 20 45 78 63 68 61 6e 67 65 29 20 41 74 74 72 69 62 75 74 65 73 00 49 | ernet.Key.Exchange).Attributes.I |
| f2660 | 4b 45 20 50 68 61 73 65 3a 00 49 4b 45 20 70 65 72 66 6f 72 6d 73 20 6d 75 74 75 61 6c 20 61 75 | KE.Phase:.IKE.performs.mutual.au |
| f2680 | 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 62 65 74 77 65 65 6e 20 74 77 6f 20 70 61 72 74 69 65 73 | thentication.between.two.parties |
| f26a0 | 20 61 6e 64 20 65 73 74 61 62 6c 69 73 68 65 73 20 61 6e 20 49 4b 45 20 73 65 63 75 72 69 74 79 | .and.establishes.an.IKE.security |
| f26c0 | 20 61 73 73 6f 63 69 61 74 69 6f 6e 20 28 53 41 29 20 74 68 61 74 20 69 6e 63 6c 75 64 65 73 20 | .association.(SA).that.includes. |
| f26e0 | 73 68 61 72 65 64 20 73 65 63 72 65 74 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 68 61 74 20 63 | shared.secret.information.that.c |
| f2700 | 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 65 66 66 69 63 69 65 6e 74 6c 79 20 65 73 74 61 62 6c | an.be.used.to.efficiently.establ |
| f2720 | 69 73 68 20 53 41 73 20 66 6f 72 20 45 6e 63 61 70 73 75 6c 61 74 69 6e 67 20 53 65 63 75 72 69 | ish.SAs.for.Encapsulating.Securi |
| f2740 | 74 79 20 50 61 79 6c 6f 61 64 20 28 45 53 50 29 20 6f 72 20 41 75 74 68 65 6e 74 69 63 61 74 69 | ty.Payload.(ESP).or.Authenticati |
| f2760 | 6f 6e 20 48 65 61 64 65 72 20 28 41 48 29 20 61 6e 64 20 61 20 73 65 74 20 6f 66 20 63 72 79 70 | on.Header.(AH).and.a.set.of.cryp |
| f2780 | 74 6f 67 72 61 70 68 69 63 20 61 6c 67 6f 72 69 74 68 6d 73 20 74 6f 20 62 65 20 75 73 65 64 20 | tographic.algorithms.to.be.used. |
| f27a0 | 62 79 20 74 68 65 20 53 41 73 20 74 6f 20 70 72 6f 74 65 63 74 20 74 68 65 20 74 72 61 66 66 69 | by.the.SAs.to.protect.the.traffi |
| f27c0 | 63 20 74 68 61 74 20 74 68 65 79 20 63 61 72 72 79 2e 20 68 74 74 70 73 3a 2f 2f 64 61 74 61 74 | c.that.they.carry..https://datat |
| f27e0 | 72 61 63 6b 65 72 2e 69 65 74 66 2e 6f 72 67 2f 64 6f 63 2f 68 74 6d 6c 2f 72 66 63 35 39 39 36 | racker.ietf.org/doc/html/rfc5996 |
| f2800 | 00 49 4b 45 76 31 00 49 4b 45 76 32 00 49 4b 45 76 32 20 49 50 53 65 63 20 72 6f 61 64 2d 77 61 | .IKEv1.IKEv2.IKEv2.IPSec.road-wa |
| f2820 | 72 72 69 6f 72 73 20 72 65 6d 6f 74 65 2d 61 63 63 65 73 73 20 56 50 4e 00 49 50 00 49 50 20 61 | rriors.remote-access.VPN.IP.IP.a |
| f2840 | 64 64 72 65 73 73 00 49 50 20 61 64 64 72 65 73 73 20 60 60 31 39 32 2e 31 36 38 2e 31 2e 31 30 | ddress.IP.address.``192.168.1.10 |
| f2860 | 30 60 60 20 73 68 61 6c 6c 20 62 65 20 73 74 61 74 69 63 61 6c 6c 79 20 6d 61 70 70 65 64 20 74 | 0``.shall.be.statically.mapped.t |
| f2880 | 6f 20 63 6c 69 65 6e 74 20 6e 61 6d 65 64 20 60 60 63 6c 69 65 6e 74 31 60 60 00 49 50 20 61 64 | o.client.named.``client1``.IP.ad |
| f28a0 | 64 72 65 73 73 20 60 60 31 39 32 2e 31 36 38 2e 32 2e 31 2f 32 34 60 60 00 49 50 20 61 64 64 72 | dress.``192.168.2.1/24``.IP.addr |
| f28c0 | 65 73 73 20 66 6f 72 20 44 48 43 50 20 73 65 72 76 65 72 20 69 64 65 6e 74 69 66 69 65 72 00 49 | ess.for.DHCP.server.identifier.I |
| f28e0 | 50 20 61 64 64 72 65 73 73 20 6f 66 20 4e 54 50 20 73 65 72 76 65 72 00 49 50 20 61 64 64 72 65 | P.address.of.NTP.server.IP.addre |
| f2900 | 73 73 20 6f 66 20 50 4f 50 33 20 73 65 72 76 65 72 00 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 | ss.of.POP3.server.IP.address.of. |
| f2920 | 53 4d 54 50 20 73 65 72 76 65 72 00 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 72 6f 75 74 65 20 | SMTP.server.IP.address.of.route. |
| f2940 | 74 6f 20 6d 61 74 63 68 2c 20 62 61 73 65 64 20 6f 6e 20 61 63 63 65 73 73 2d 6c 69 73 74 2e 00 | to.match,.based.on.access-list.. |
| f2960 | 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 72 6f 75 74 65 20 74 6f 20 6d 61 74 63 68 2c 20 62 61 | IP.address.of.route.to.match,.ba |
| f2980 | 73 65 64 20 6f 6e 20 70 72 65 66 69 78 2d 6c 69 73 74 2e 00 49 50 20 61 64 64 72 65 73 73 20 6f | sed.on.prefix-list..IP.address.o |
| f29a0 | 66 20 72 6f 75 74 65 20 74 6f 20 6d 61 74 63 68 2c 20 62 61 73 65 64 20 6f 6e 20 73 70 65 63 69 | f.route.to.match,.based.on.speci |
| f29c0 | 66 69 65 64 20 70 72 65 66 69 78 2d 6c 65 6e 67 74 68 2e 20 4e 6f 74 65 20 74 68 61 74 20 74 68 | fied.prefix-length..Note.that.th |
| f29e0 | 69 73 20 63 61 6e 20 62 65 20 75 73 65 64 20 66 6f 72 20 6b 65 72 6e 65 6c 20 72 6f 75 74 65 73 | is.can.be.used.for.kernel.routes |
| f2a00 | 20 6f 6e 6c 79 2e 20 44 6f 20 6e 6f 74 20 61 70 70 6c 79 20 74 6f 20 74 68 65 20 72 6f 75 74 65 | .only..Do.not.apply.to.the.route |
| f2a20 | 73 20 6f 66 20 64 79 6e 61 6d 69 63 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 73 20 28 | s.of.dynamic.routing.protocols.( |
| f2a40 | 65 2e 67 2e 20 42 47 50 2c 20 52 49 50 2c 20 4f 53 46 50 29 2c 20 61 73 20 74 68 69 73 20 63 61 | e.g..BGP,.RIP,.OSFP),.as.this.ca |
| f2a60 | 6e 20 6c 65 61 64 20 74 6f 20 75 6e 65 78 70 65 63 74 65 64 20 72 65 73 75 6c 74 73 2e 2e 00 49 | n.lead.to.unexpected.results...I |
| f2a80 | 50 20 61 64 64 72 65 73 73 20 74 6f 20 65 78 63 6c 75 64 65 20 66 72 6f 6d 20 44 48 43 50 20 6c | P.address.to.exclude.from.DHCP.l |
| f2aa0 | 65 61 73 65 20 72 61 6e 67 65 00 49 50 20 61 64 64 72 65 73 73 65 73 20 6f 72 20 6e 65 74 77 6f | ease.range.IP.addresses.or.netwo |
| f2ac0 | 72 6b 73 20 66 6f 72 20 77 68 69 63 68 20 6c 6f 63 61 6c 20 63 6f 6e 6e 74 72 61 63 6b 20 65 6e | rks.for.which.local.conntrack.en |
| f2ae0 | 74 72 69 65 73 20 77 69 6c 6c 20 6e 6f 74 20 62 65 20 73 79 6e 63 65 64 00 49 50 20 6d 61 6e 61 | tries.will.not.be.synced.IP.mana |
| f2b00 | 67 65 6d 65 6e 74 20 61 64 64 72 65 73 73 00 49 50 20 6d 61 73 71 75 65 72 61 64 69 6e 67 20 69 | gement.address.IP.masquerading.i |
| f2b20 | 73 20 61 20 74 65 63 68 6e 69 71 75 65 20 74 68 61 74 20 68 69 64 65 73 20 61 6e 20 65 6e 74 69 | s.a.technique.that.hides.an.enti |
| f2b40 | 72 65 20 49 50 20 61 64 64 72 65 73 73 20 73 70 61 63 65 2c 20 75 73 75 61 6c 6c 79 20 63 6f 6e | re.IP.address.space,.usually.con |
| f2b60 | 73 69 73 74 69 6e 67 20 6f 66 20 70 72 69 76 61 74 65 20 49 50 20 61 64 64 72 65 73 73 65 73 2c | sisting.of.private.IP.addresses, |
| f2b80 | 20 62 65 68 69 6e 64 20 61 20 73 69 6e 67 6c 65 20 49 50 20 61 64 64 72 65 73 73 20 69 6e 20 61 | .behind.a.single.IP.address.in.a |
| f2ba0 | 6e 6f 74 68 65 72 2c 20 75 73 75 61 6c 6c 79 20 70 75 62 6c 69 63 20 61 64 64 72 65 73 73 20 73 | nother,.usually.public.address.s |
| f2bc0 | 70 61 63 65 2e 20 54 68 65 20 68 69 64 64 65 6e 20 61 64 64 72 65 73 73 65 73 20 61 72 65 20 63 | pace..The.hidden.addresses.are.c |
| f2be0 | 68 61 6e 67 65 64 20 69 6e 74 6f 20 61 20 73 69 6e 67 6c 65 20 28 70 75 62 6c 69 63 29 20 49 50 | hanged.into.a.single.(public).IP |
| f2c00 | 20 61 64 64 72 65 73 73 20 61 73 20 74 68 65 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 6f | .address.as.the.source.address.o |
| f2c20 | 66 20 74 68 65 20 6f 75 74 67 6f 69 6e 67 20 49 50 20 70 61 63 6b 65 74 73 20 73 6f 20 74 68 65 | f.the.outgoing.IP.packets.so.the |
| f2c40 | 79 20 61 70 70 65 61 72 20 61 73 20 6f 72 69 67 69 6e 61 74 69 6e 67 20 6e 6f 74 20 66 72 6f 6d | y.appear.as.originating.not.from |
| f2c60 | 20 74 68 65 20 68 69 64 64 65 6e 20 68 6f 73 74 20 62 75 74 20 66 72 6f 6d 20 74 68 65 20 72 6f | .the.hidden.host.but.from.the.ro |
| f2c80 | 75 74 69 6e 67 20 64 65 76 69 63 65 20 69 74 73 65 6c 66 2e 20 42 65 63 61 75 73 65 20 6f 66 20 | uting.device.itself..Because.of. |
| f2ca0 | 74 68 65 20 70 6f 70 75 6c 61 72 69 74 79 20 6f 66 20 74 68 69 73 20 74 65 63 68 6e 69 71 75 65 | the.popularity.of.this.technique |
| f2cc0 | 20 74 6f 20 63 6f 6e 73 65 72 76 65 20 49 50 76 34 20 61 64 64 72 65 73 73 20 73 70 61 63 65 2c | .to.conserve.IPv4.address.space, |
| f2ce0 | 20 74 68 65 20 74 65 72 6d 20 4e 41 54 20 68 61 73 20 62 65 63 6f 6d 65 20 76 69 72 74 75 61 6c | .the.term.NAT.has.become.virtual |
| f2d00 | 6c 79 20 73 79 6e 6f 6e 79 6d 6f 75 73 20 77 69 74 68 20 49 50 20 6d 61 73 71 75 65 72 61 64 69 | ly.synonymous.with.IP.masqueradi |
| f2d20 | 6e 67 2e 00 49 50 20 6e 65 78 74 2d 68 6f 70 20 6f 66 20 72 6f 75 74 65 20 74 6f 20 6d 61 74 63 | ng..IP.next-hop.of.route.to.matc |
| f2d40 | 68 2c 20 62 61 73 65 64 20 6f 6e 20 61 63 63 65 73 73 2d 6c 69 73 74 2e 00 49 50 20 6e 65 78 74 | h,.based.on.access-list..IP.next |
| f2d60 | 2d 68 6f 70 20 6f 66 20 72 6f 75 74 65 20 74 6f 20 6d 61 74 63 68 2c 20 62 61 73 65 64 20 6f 6e | -hop.of.route.to.match,.based.on |
| f2d80 | 20 69 70 20 61 64 64 72 65 73 73 2e 00 49 50 20 6e 65 78 74 2d 68 6f 70 20 6f 66 20 72 6f 75 74 | .ip.address..IP.next-hop.of.rout |
| f2da0 | 65 20 74 6f 20 6d 61 74 63 68 2c 20 62 61 73 65 64 20 6f 6e 20 70 72 65 66 69 78 20 6c 65 6e 67 | e.to.match,.based.on.prefix.leng |
| f2dc0 | 74 68 2e 00 49 50 20 6e 65 78 74 2d 68 6f 70 20 6f 66 20 72 6f 75 74 65 20 74 6f 20 6d 61 74 63 | th..IP.next-hop.of.route.to.matc |
| f2de0 | 68 2c 20 62 61 73 65 64 20 6f 6e 20 70 72 65 66 69 78 2d 6c 69 73 74 2e 00 49 50 20 6e 65 78 74 | h,.based.on.prefix-list..IP.next |
| f2e00 | 2d 68 6f 70 20 6f 66 20 72 6f 75 74 65 20 74 6f 20 6d 61 74 63 68 2c 20 62 61 73 65 64 20 6f 6e | -hop.of.route.to.match,.based.on |
| f2e20 | 20 74 79 70 65 2e 00 49 50 20 70 72 65 63 65 64 65 6e 63 65 20 61 73 20 64 65 66 69 6e 65 64 20 | .type..IP.precedence.as.defined. |
| f2e40 | 69 6e 20 3a 72 66 63 3a 60 37 39 31 60 3a 00 49 50 20 70 72 6f 74 6f 63 6f 6c 20 6e 75 6d 62 65 | in.:rfc:`791`:.IP.protocol.numbe |
| f2e60 | 72 20 35 30 20 28 45 53 50 29 00 49 50 20 72 6f 75 74 65 20 73 6f 75 72 63 65 20 6f 66 20 72 6f | r.50.(ESP).IP.route.source.of.ro |
| f2e80 | 75 74 65 20 74 6f 20 6d 61 74 63 68 2c 20 62 61 73 65 64 20 6f 6e 20 61 63 63 65 73 73 2d 6c 69 | ute.to.match,.based.on.access-li |
| f2ea0 | 73 74 2e 00 49 50 20 72 6f 75 74 65 20 73 6f 75 72 63 65 20 6f 66 20 72 6f 75 74 65 20 74 6f 20 | st..IP.route.source.of.route.to. |
| f2ec0 | 6d 61 74 63 68 2c 20 62 61 73 65 64 20 6f 6e 20 70 72 65 66 69 78 2d 6c 69 73 74 2e 00 49 50 36 | match,.based.on.prefix-list..IP6 |
| f2ee0 | 49 50 36 00 49 50 49 50 00 49 50 49 50 36 00 49 50 53 65 63 20 49 4b 45 20 61 6e 64 20 45 53 50 | IP6.IPIP.IPIP6.IPSec.IKE.and.ESP |
| f2f00 | 00 49 50 53 65 63 20 49 4b 45 20 61 6e 64 20 45 53 50 20 47 72 6f 75 70 73 3b 00 49 50 53 65 63 | .IPSec.IKE.and.ESP.Groups;.IPSec |
| f2f20 | 20 49 4b 45 76 32 20 52 65 6d 6f 74 65 20 41 63 63 65 73 73 20 56 50 4e 00 49 50 53 65 63 20 49 | .IKEv2.Remote.Access.VPN.IPSec.I |
| f2f40 | 4b 45 76 32 20 73 69 74 65 32 73 69 74 65 20 56 50 4e 00 49 50 53 65 63 20 49 4b 45 76 32 20 73 | KEv2.site2site.VPN.IPSec.IKEv2.s |
| f2f60 | 69 74 65 32 73 69 74 65 20 56 50 4e 20 28 73 6f 75 72 63 65 20 2e 2f 64 72 61 77 2e 69 6f 2f 76 | ite2site.VPN.(source../draw.io/v |
| f2f80 | 70 6e 5f 73 32 73 5f 69 6b 65 76 32 2e 64 72 61 77 69 6f 29 00 49 50 53 65 63 20 56 50 4e 20 54 | pn_s2s_ikev2.drawio).IPSec.VPN.T |
| f2fa0 | 75 6e 6e 65 6c 73 00 49 50 53 65 63 20 56 50 4e 20 74 75 6e 6e 65 6c 73 2e 00 49 50 53 65 63 3a | unnels.IPSec.VPN.tunnels..IPSec: |
| f2fc0 | 00 49 50 6f 45 20 53 65 72 76 65 72 00 49 50 6f 45 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 | .IPoE.Server.IPoE.can.be.configu |
| f2fe0 | 72 65 20 6f 6e 20 64 69 66 66 65 72 65 6e 74 20 69 6e 74 65 72 66 61 63 65 73 2c 20 69 74 20 77 | re.on.different.interfaces,.it.w |
| f3000 | 69 6c 6c 20 64 65 70 65 6e 64 20 6f 6e 20 65 61 63 68 20 73 70 65 63 69 66 69 63 20 73 69 74 75 | ill.depend.on.each.specific.situ |
| f3020 | 61 74 69 6f 6e 20 77 68 69 63 68 20 69 6e 74 65 72 66 61 63 65 20 77 69 6c 6c 20 70 72 6f 76 69 | ation.which.interface.will.provi |
| f3040 | 64 65 20 49 50 6f 45 20 74 6f 20 63 6c 69 65 6e 74 73 2e 20 54 68 65 20 63 6c 69 65 6e 74 73 20 | de.IPoE.to.clients..The.clients. |
| f3060 | 6d 61 63 20 61 64 64 72 65 73 73 20 61 6e 64 20 74 68 65 20 69 6e 63 6f 6d 69 6e 67 20 69 6e 74 | mac.address.and.the.incoming.int |
| f3080 | 65 72 66 61 63 65 20 69 73 20 62 65 69 6e 67 20 75 73 65 64 20 61 73 20 63 6f 6e 74 72 6f 6c 20 | erface.is.being.used.as.control. |
| f30a0 | 70 61 72 61 6d 65 74 65 72 2c 20 74 6f 20 61 75 74 68 65 6e 74 69 63 61 74 65 20 61 20 63 6c 69 | parameter,.to.authenticate.a.cli |
| f30c0 | 65 6e 74 2e 00 49 50 6f 45 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 64 | ent..IPoE.can.be.configured.on.d |
| f30e0 | 69 66 66 65 72 65 6e 74 20 69 6e 74 65 72 66 61 63 65 73 2c 20 69 74 20 77 69 6c 6c 20 64 65 70 | ifferent.interfaces,.it.will.dep |
| f3100 | 65 6e 64 20 6f 6e 20 65 61 63 68 20 73 70 65 63 69 66 69 63 20 73 69 74 75 61 74 69 6f 6e 20 77 | end.on.each.specific.situation.w |
| f3120 | 68 69 63 68 20 69 6e 74 65 72 66 61 63 65 20 77 69 6c 6c 20 70 72 6f 76 69 64 65 20 49 50 6f 45 | hich.interface.will.provide.IPoE |
| f3140 | 20 74 6f 20 63 6c 69 65 6e 74 73 2e 20 54 68 65 20 63 6c 69 65 6e 74 27 73 20 6d 61 63 20 61 64 | .to.clients..The.client's.mac.ad |
| f3160 | 64 72 65 73 73 20 61 6e 64 20 74 68 65 20 69 6e 63 6f 6d 69 6e 67 20 69 6e 74 65 72 66 61 63 65 | dress.and.the.incoming.interface |
| f3180 | 20 69 73 20 62 65 69 6e 67 20 75 73 65 64 20 61 73 20 63 6f 6e 74 72 6f 6c 20 70 61 72 61 6d 65 | .is.being.used.as.control.parame |
| f31a0 | 74 65 72 2c 20 74 6f 20 61 75 74 68 65 6e 74 69 63 61 74 65 20 61 20 63 6c 69 65 6e 74 2e 00 49 | ter,.to.authenticate.a.client..I |
| f31c0 | 50 6f 45 20 69 73 20 61 20 6d 65 74 68 6f 64 20 6f 66 20 64 65 6c 69 76 65 72 69 6e 67 20 61 6e | PoE.is.a.method.of.delivering.an |
| f31e0 | 20 49 50 20 70 61 79 6c 6f 61 64 20 6f 76 65 72 20 61 6e 20 45 74 68 65 72 6e 65 74 2d 62 61 73 | .IP.payload.over.an.Ethernet-bas |
| f3200 | 65 64 20 61 63 63 65 73 73 20 6e 65 74 77 6f 72 6b 20 6f 72 20 61 6e 20 61 63 63 65 73 73 20 6e | ed.access.network.or.an.access.n |
| f3220 | 65 74 77 6f 72 6b 20 75 73 69 6e 67 20 62 72 69 64 67 65 64 20 45 74 68 65 72 6e 65 74 20 6f 76 | etwork.using.bridged.Ethernet.ov |
| f3240 | 65 72 20 41 73 79 6e 63 68 72 6f 6e 6f 75 73 20 54 72 61 6e 73 66 65 72 20 4d 6f 64 65 20 28 41 | er.Asynchronous.Transfer.Mode.(A |
| f3260 | 54 4d 29 20 77 69 74 68 6f 75 74 20 75 73 69 6e 67 20 50 50 50 6f 45 2e 20 49 74 20 64 69 72 65 | TM).without.using.PPPoE..It.dire |
| f3280 | 63 74 6c 79 20 65 6e 63 61 70 73 75 6c 61 74 65 73 20 74 68 65 20 49 50 20 64 61 74 61 67 72 61 | ctly.encapsulates.the.IP.datagra |
| f32a0 | 6d 73 20 69 6e 20 45 74 68 65 72 6e 65 74 20 66 72 61 6d 65 73 2c 20 75 73 69 6e 67 20 74 68 65 | ms.in.Ethernet.frames,.using.the |
| f32c0 | 20 73 74 61 6e 64 61 72 64 20 3a 72 66 63 3a 60 38 39 34 60 20 65 6e 63 61 70 73 75 6c 61 74 69 | .standard.:rfc:`894`.encapsulati |
| f32e0 | 6f 6e 2e 00 49 50 6f 45 20 73 65 72 76 65 72 20 77 69 6c 6c 20 6c 69 73 74 65 6e 20 6f 6e 20 69 | on..IPoE.server.will.listen.on.i |
| f3300 | 6e 74 65 72 66 61 63 65 73 20 65 74 68 31 2e 35 30 20 61 6e 64 20 65 74 68 31 2e 35 31 00 49 50 | nterfaces.eth1.50.and.eth1.51.IP |
| f3320 | 73 65 63 00 49 50 73 65 63 20 70 6f 6c 69 63 79 20 6d 61 74 63 68 69 6e 67 20 47 52 45 00 49 50 | sec.IPsec.policy.matching.GRE.IP |
| f3340 | 76 34 00 49 50 76 34 20 46 69 72 65 77 61 6c 6c 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 49 | v4.IPv4.Firewall.Configuration.I |
| f3360 | 50 76 34 20 61 64 64 72 65 73 73 20 6f 66 20 6e 65 78 74 20 62 6f 6f 74 73 74 72 61 70 20 73 65 | Pv4.address.of.next.bootstrap.se |
| f3380 | 72 76 65 72 00 49 50 76 34 20 61 64 64 72 65 73 73 20 6f 66 20 72 6f 75 74 65 72 20 6f 6e 20 74 | rver.IPv4.address.of.router.on.t |
| f33a0 | 68 65 20 63 6c 69 65 6e 74 27 73 20 73 75 62 6e 65 74 00 49 50 76 34 20 6f 72 20 49 50 76 36 20 | he.client's.subnet.IPv4.or.IPv6. |
| f33c0 | 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 6f 66 20 4e 65 74 46 6c 6f 77 20 70 61 63 6b 65 74 | source.address.of.NetFlow.packet |
| f33e0 | 73 00 49 50 76 34 20 70 65 65 72 69 6e 67 00 49 50 76 34 20 72 65 6c 61 79 00 49 50 76 34 20 72 | s.IPv4.peering.IPv4.relay.IPv4.r |
| f3400 | 6f 75 74 65 20 61 6e 64 20 49 50 76 36 20 72 6f 75 74 65 20 70 6f 6c 69 63 69 65 73 20 61 72 65 | oute.and.IPv6.route.policies.are |
| f3420 | 20 64 65 66 69 6e 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 2e 20 54 68 65 73 65 20 | .defined.in.this.section..These. |
| f3440 | 72 6f 75 74 65 20 70 6f 6c 69 63 69 65 73 20 63 61 6e 20 74 68 65 6e 20 62 65 20 61 73 73 6f 63 | route.policies.can.then.be.assoc |
| f3460 | 69 61 74 65 64 20 74 6f 20 69 6e 74 65 72 66 61 63 65 73 2e 00 49 50 76 34 20 72 6f 75 74 65 20 | iated.to.interfaces..IPv4.route. |
| f3480 | 73 6f 75 72 63 65 3a 20 62 67 70 2c 20 63 6f 6e 6e 65 63 74 65 64 2c 20 65 69 67 72 70 2c 20 69 | source:.bgp,.connected,.eigrp,.i |
| f34a0 | 73 69 73 2c 20 6b 65 72 6e 65 6c 2c 20 6e 68 72 70 2c 20 6f 73 70 66 2c 20 72 69 70 2c 20 73 74 | sis,.kernel,.nhrp,.ospf,.rip,.st |
| f34c0 | 61 74 69 63 2e 00 49 50 76 34 20 73 65 72 76 65 72 00 49 50 76 34 2f 49 50 76 36 20 72 65 6d 6f | atic..IPv4.server.IPv4/IPv6.remo |
| f34e0 | 74 65 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 56 58 4c 41 4e 20 74 75 6e 6e 65 6c 2e 20 | te.address.of.the.VXLAN.tunnel.. |
| f3500 | 41 6c 74 65 72 6e 61 74 69 76 65 20 74 6f 20 6d 75 6c 74 69 63 61 73 74 2c 20 74 68 65 20 72 65 | Alternative.to.multicast,.the.re |
| f3520 | 6d 6f 74 65 20 49 50 76 34 2f 49 50 76 36 20 61 64 64 72 65 73 73 20 63 61 6e 20 73 65 74 20 64 | mote.IPv4/IPv6.address.can.set.d |
| f3540 | 69 72 65 63 74 6c 79 2e 00 49 50 76 34 2f 49 50 76 36 20 72 65 6d 6f 74 65 20 61 64 64 72 65 73 | irectly..IPv4/IPv6.remote.addres |
| f3560 | 73 20 6f 66 20 74 68 65 20 56 58 4c 41 4e 20 74 75 6e 6e 65 6c 2e 20 41 6e 20 61 6c 74 65 72 6e | s.of.the.VXLAN.tunnel..An.altern |
| f3580 | 61 74 69 76 65 20 74 6f 20 6d 75 6c 74 69 63 61 73 74 2c 20 74 68 65 20 72 65 6d 6f 74 65 20 49 | ative.to.multicast,.the.remote.I |
| f35a0 | 50 76 34 2f 49 50 76 36 20 61 64 64 72 65 73 73 20 63 61 6e 20 62 65 20 73 65 74 20 64 69 72 65 | Pv4/IPv6.address.can.be.set.dire |
| f35c0 | 63 74 6c 79 2e 00 49 50 76 36 00 49 50 76 36 20 41 63 63 65 73 73 20 4c 69 73 74 00 49 50 76 36 | ctly..IPv6.IPv6.Access.List.IPv6 |
| f35e0 | 20 41 64 76 61 6e 63 65 64 20 4f 70 74 69 6f 6e 73 00 49 50 76 36 20 44 48 43 50 76 36 2d 50 44 | .Advanced.Options.IPv6.DHCPv6-PD |
| f3600 | 20 45 78 61 6d 70 6c 65 00 49 50 76 36 20 44 4e 53 20 61 64 64 72 65 73 73 65 73 20 61 72 65 20 | .Example.IPv6.DNS.addresses.are. |
| f3620 | 6f 70 74 69 6f 6e 61 6c 2e 00 49 50 76 36 20 46 69 72 65 77 61 6c 6c 20 43 6f 6e 66 69 67 75 72 | optional..IPv6.Firewall.Configur |
| f3640 | 61 74 69 6f 6e 00 49 50 76 36 20 4d 75 6c 74 69 63 61 73 74 00 49 50 76 36 20 50 72 65 66 69 78 | ation.IPv6.Multicast.IPv6.Prefix |
| f3660 | 20 44 65 6c 65 67 61 74 69 6f 6e 00 49 50 76 36 20 50 72 65 66 69 78 20 4c 69 73 74 73 00 49 50 | .Delegation.IPv6.Prefix.Lists.IP |
| f3680 | 76 36 20 53 4c 41 41 43 20 61 6e 64 20 49 41 2d 50 44 00 49 50 76 36 20 54 43 50 20 66 69 6c 74 | v6.SLAAC.and.IA-PD.IPv6.TCP.filt |
| f36a0 | 65 72 73 20 77 69 6c 6c 20 6f 6e 6c 79 20 6d 61 74 63 68 20 49 50 76 36 20 70 61 63 6b 65 74 73 | ers.will.only.match.IPv6.packets |
| f36c0 | 20 77 69 74 68 20 6e 6f 20 68 65 61 64 65 72 20 65 78 74 65 6e 73 69 6f 6e 2c 20 73 65 65 20 68 | .with.no.header.extension,.see.h |
| f36e0 | 74 74 70 73 3a 2f 2f 65 6e 2e 77 69 6b 69 70 65 64 69 61 2e 6f 72 67 2f 77 69 6b 69 2f 49 50 76 | ttps://en.wikipedia.org/wiki/IPv |
| f3700 | 36 5f 70 61 63 6b 65 74 23 45 78 74 65 6e 73 69 6f 6e 5f 68 65 61 64 65 72 73 00 49 50 76 36 20 | 6_packet#Extension_headers.IPv6. |
| f3720 | 61 64 64 72 65 73 73 20 60 60 32 30 30 31 3a 64 62 38 3a 3a 31 30 31 60 60 20 73 68 61 6c 6c 20 | address.``2001:db8::101``.shall. |
| f3740 | 62 65 20 73 74 61 74 69 63 61 6c 6c 79 20 6d 61 70 70 65 64 00 49 50 76 36 20 61 64 64 72 65 73 | be.statically.mapped.IPv6.addres |
| f3760 | 73 20 6f 66 20 72 6f 75 74 65 20 74 6f 20 6d 61 74 63 68 2c 20 62 61 73 65 64 20 6f 6e 20 49 50 | s.of.route.to.match,.based.on.IP |
| f3780 | 76 36 20 61 63 63 65 73 73 2d 6c 69 73 74 2e 00 49 50 76 36 20 61 64 64 72 65 73 73 20 6f 66 20 | v6.access-list..IPv6.address.of. |
| f37a0 | 72 6f 75 74 65 20 74 6f 20 6d 61 74 63 68 2c 20 62 61 73 65 64 20 6f 6e 20 49 50 76 36 20 70 72 | route.to.match,.based.on.IPv6.pr |
| f37c0 | 65 66 69 78 2d 6c 69 73 74 2e 00 49 50 76 36 20 61 64 64 72 65 73 73 20 6f 66 20 72 6f 75 74 65 | efix-list..IPv6.address.of.route |
| f37e0 | 20 74 6f 20 6d 61 74 63 68 2c 20 62 61 73 65 64 20 6f 6e 20 73 70 65 63 69 66 69 65 64 20 70 72 | .to.match,.based.on.specified.pr |
| f3800 | 65 66 69 78 2d 6c 65 6e 67 74 68 2e 20 4e 6f 74 65 20 74 68 61 74 20 74 68 69 73 20 63 61 6e 20 | efix-length..Note.that.this.can. |
| f3820 | 62 65 20 75 73 65 64 20 66 6f 72 20 6b 65 72 6e 65 6c 20 72 6f 75 74 65 73 20 6f 6e 6c 79 2e 20 | be.used.for.kernel.routes.only.. |
| f3840 | 44 6f 20 6e 6f 74 20 61 70 70 6c 79 20 74 6f 20 74 68 65 20 72 6f 75 74 65 73 20 6f 66 20 64 79 | Do.not.apply.to.the.routes.of.dy |
| f3860 | 6e 61 6d 69 63 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 73 20 28 65 2e 67 2e 20 42 47 | namic.routing.protocols.(e.g..BG |
| f3880 | 50 2c 20 52 49 50 2c 20 4f 53 46 50 29 2c 20 61 73 20 74 68 69 73 20 63 61 6e 20 6c 65 61 64 20 | P,.RIP,.OSFP),.as.this.can.lead. |
| f38a0 | 74 6f 20 75 6e 65 78 70 65 63 74 65 64 20 72 65 73 75 6c 74 73 2e 2e 00 49 50 76 36 20 63 6c 69 | to.unexpected.results...IPv6.cli |
| f38c0 | 65 6e 74 27 73 20 70 72 65 66 69 78 00 49 50 76 36 20 63 6c 69 65 6e 74 27 73 20 70 72 65 66 69 | ent's.prefix.IPv6.client's.prefi |
| f38e0 | 78 20 61 73 73 69 67 6e 6d 65 6e 74 00 49 50 76 36 20 64 65 66 61 75 6c 74 20 63 6c 69 65 6e 74 | x.assignment.IPv6.default.client |
| f3900 | 27 73 20 70 6f 6f 6c 20 61 73 73 69 67 6e 6d 65 6e 74 00 49 50 76 36 20 70 65 65 72 69 6e 67 00 | 's.pool.assignment.IPv6.peering. |
| f3920 | 49 50 76 36 20 70 72 65 66 69 78 20 60 60 32 30 30 31 3a 64 62 38 3a 30 3a 31 30 31 3a 3a 2f 36 | IPv6.prefix.``2001:db8:0:101::/6 |
| f3940 | 34 60 60 20 73 68 61 6c 6c 20 62 65 20 73 74 61 74 69 63 61 6c 6c 79 20 6d 61 70 70 65 64 00 49 | 4``.shall.be.statically.mapped.I |
| f3960 | 50 76 36 20 70 72 65 66 69 78 2e 00 49 50 76 36 20 72 65 6c 61 79 00 49 50 76 36 20 72 6f 75 74 | Pv6.prefix..IPv6.relay.IPv6.rout |
| f3980 | 65 20 73 6f 75 72 63 65 3a 20 62 67 70 2c 20 63 6f 6e 6e 65 63 74 65 64 2c 20 65 69 67 72 70 2c | e.source:.bgp,.connected,.eigrp, |
| f39a0 | 20 69 73 69 73 2c 20 6b 65 72 6e 65 6c 2c 20 6e 68 72 70 2c 20 6f 73 70 66 76 33 2c 20 72 69 70 | .isis,.kernel,.nhrp,.ospfv3,.rip |
| f39c0 | 6e 67 2c 20 73 74 61 74 69 63 2e 00 49 50 76 36 20 73 65 72 76 65 72 00 49 50 76 36 20 73 75 70 | ng,.static..IPv6.server.IPv6.sup |
| f39e0 | 70 6f 72 74 00 49 53 2d 49 53 00 49 53 2d 49 53 20 47 6c 6f 62 61 6c 20 43 6f 6e 66 69 67 75 72 | port.IS-IS.IS-IS.Global.Configur |
| f3a00 | 61 74 69 6f 6e 00 49 53 2d 49 53 20 53 52 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 49 53 43 | ation.IS-IS.SR.Configuration.ISC |
| f3a20 | 2d 44 48 43 50 20 4f 70 74 69 6f 6e 20 6e 61 6d 65 00 49 64 65 6e 74 69 74 79 20 42 61 73 65 64 | -DHCP.Option.name.Identity.Based |
| f3a40 | 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 49 66 20 2a 2a 6d 61 78 2d 74 68 72 65 73 68 6f 6c | .Configuration.If.**max-threshol |
| f3a60 | 64 2a 2a 20 69 73 20 73 65 74 20 62 75 74 20 2a 2a 6d 69 6e 2d 74 68 72 65 73 68 6f 6c 64 20 69 | d**.is.set.but.**min-threshold.i |
| f3a80 | 73 20 6e 6f 74 2c 20 74 68 65 6e 20 2a 2a 6d 69 6e 2d 74 68 72 65 73 68 6f 6c 64 2a 2a 20 69 73 | s.not,.then.**min-threshold**.is |
| f3aa0 | 20 73 63 61 6c 65 64 20 74 6f 20 35 30 25 20 6f 66 20 2a 2a 6d 61 78 2d 74 68 72 65 73 68 6f 6c | .scaled.to.50%.of.**max-threshol |
| f3ac0 | 64 2a 2a 2e 00 49 66 20 3a 63 66 67 63 6d 64 3a 60 73 74 72 69 63 74 60 20 69 73 20 73 65 74 20 | d**..If.:cfgcmd:`strict`.is.set. |
| f3ae0 | 74 68 65 20 42 47 50 20 73 65 73 73 69 6f 6e 20 77 6f 6e e2 80 99 74 20 62 65 63 6f 6d 65 20 65 | the.BGP.session.won...t.become.e |
| f3b00 | 73 74 61 62 6c 69 73 68 65 64 20 75 6e 74 69 6c 20 74 68 65 20 42 47 50 20 6e 65 69 67 68 62 6f | stablished.until.the.BGP.neighbo |
| f3b20 | 72 20 73 65 74 73 20 6c 6f 63 61 6c 20 52 6f 6c 65 20 6f 6e 20 69 74 73 20 73 69 64 65 2e 20 54 | r.sets.local.Role.on.its.side..T |
| f3b40 | 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 70 61 72 61 6d 65 74 65 72 20 69 73 20 64 | his.configuration.parameter.is.d |
| f3b60 | 65 66 69 6e 65 64 20 69 6e 20 52 46 43 20 3a 72 66 63 3a 60 39 32 33 34 60 20 61 6e 64 20 69 73 | efined.in.RFC.:rfc:`9234`.and.is |
| f3b80 | 20 75 73 65 64 20 74 6f 20 65 6e 66 6f 72 63 65 20 74 68 65 20 63 6f 72 72 65 73 70 6f 6e 64 69 | .used.to.enforce.the.correspondi |
| f3ba0 | 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 61 74 20 79 6f 75 72 20 63 6f 75 6e 74 65 72 | ng.configuration.at.your.counter |
| f3bc0 | 2d 70 61 72 74 73 20 73 69 64 65 2e 00 49 66 20 41 52 50 20 6d 6f 6e 69 74 6f 72 69 6e 67 20 69 | -parts.side..If.ARP.monitoring.i |
| f3be0 | 73 20 75 73 65 64 20 69 6e 20 61 6e 20 65 74 68 65 72 63 68 61 6e 6e 65 6c 20 63 6f 6d 70 61 74 | s.used.in.an.etherchannel.compat |
| f3c00 | 69 62 6c 65 20 6d 6f 64 65 20 28 6d 6f 64 65 73 20 72 6f 75 6e 64 2d 72 6f 62 69 6e 20 61 6e 64 | ible.mode.(modes.round-robin.and |
| f3c20 | 20 78 6f 72 2d 68 61 73 68 29 2c 20 74 68 65 20 73 77 69 74 63 68 20 73 68 6f 75 6c 64 20 62 65 | .xor-hash),.the.switch.should.be |
| f3c40 | 20 63 6f 6e 66 69 67 75 72 65 64 20 69 6e 20 61 20 6d 6f 64 65 20 74 68 61 74 20 65 76 65 6e 6c | .configured.in.a.mode.that.evenl |
| f3c60 | 79 20 64 69 73 74 72 69 62 75 74 65 73 20 70 61 63 6b 65 74 73 20 61 63 72 6f 73 73 20 61 6c 6c | y.distributes.packets.across.all |
| f3c80 | 20 6c 69 6e 6b 73 2e 20 49 66 20 74 68 65 20 73 77 69 74 63 68 20 69 73 20 63 6f 6e 66 69 67 75 | .links..If.the.switch.is.configu |
| f3ca0 | 72 65 64 20 74 6f 20 64 69 73 74 72 69 62 75 74 65 20 74 68 65 20 70 61 63 6b 65 74 73 20 69 6e | red.to.distribute.the.packets.in |
| f3cc0 | 20 61 6e 20 58 4f 52 20 66 61 73 68 69 6f 6e 2c 20 61 6c 6c 20 72 65 70 6c 69 65 73 20 66 72 6f | .an.XOR.fashion,.all.replies.fro |
| f3ce0 | 6d 20 74 68 65 20 41 52 50 20 74 61 72 67 65 74 73 20 77 69 6c 6c 20 62 65 20 72 65 63 65 69 76 | m.the.ARP.targets.will.be.receiv |
| f3d00 | 65 64 20 6f 6e 20 74 68 65 20 73 61 6d 65 20 6c 69 6e 6b 20 77 68 69 63 68 20 63 6f 75 6c 64 20 | ed.on.the.same.link.which.could. |
| f3d20 | 63 61 75 73 65 20 74 68 65 20 6f 74 68 65 72 20 74 65 61 6d 20 6d 65 6d 62 65 72 73 20 74 6f 20 | cause.the.other.team.members.to. |
| f3d40 | 66 61 69 6c 2e 00 49 66 20 43 41 20 69 73 20 70 72 65 73 65 6e 74 2c 20 74 68 69 73 20 63 65 72 | fail..If.CA.is.present,.this.cer |
| f3d60 | 74 69 66 69 63 61 74 65 20 77 69 6c 6c 20 62 65 20 69 6e 63 6c 75 64 65 64 20 69 6e 20 67 65 6e | tificate.will.be.included.in.gen |
| f3d80 | 65 72 61 74 65 64 20 43 52 4c 73 00 49 66 20 43 4c 49 20 6f 70 74 69 6f 6e 20 69 73 20 6e 6f 74 | erated.CRLs.If.CLI.option.is.not |
| f3da0 | 20 73 70 65 63 69 66 69 65 64 2c 20 74 68 69 73 20 66 65 61 74 75 72 65 20 69 73 20 64 69 73 61 | .specified,.this.feature.is.disa |
| f3dc0 | 62 6c 65 64 2e 00 49 66 20 50 49 4d 20 68 61 73 20 74 68 65 20 61 20 63 68 6f 69 63 65 20 6f 66 | bled..If.PIM.has.the.a.choice.of |
| f3de0 | 20 45 43 4d 50 20 6e 65 78 74 68 6f 70 73 20 66 6f 72 20 61 20 70 61 72 74 69 63 75 6c 61 72 20 | .ECMP.nexthops.for.a.particular. |
| f3e00 | 3a 61 62 62 72 3a 60 52 50 46 20 28 52 65 76 65 72 73 65 20 50 61 74 68 20 46 6f 72 77 61 72 64 | :abbr:`RPF.(Reverse.Path.Forward |
| f3e20 | 69 6e 67 29 60 2c 20 50 49 4d 20 77 69 6c 6c 20 63 61 75 73 65 20 53 2c 47 20 66 6c 6f 77 73 20 | ing)`,.PIM.will.cause.S,G.flows. |
| f3e40 | 74 6f 20 62 65 20 73 70 72 65 61 64 20 6f 75 74 20 61 6d 6f 6e 67 73 74 20 74 68 65 20 6e 65 78 | to.be.spread.out.amongst.the.nex |
| f3e60 | 74 68 6f 70 73 2e 20 49 66 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 6e 6f 74 20 73 70 | thops..If.this.command.is.not.sp |
| f3e80 | 65 63 69 66 69 65 64 20 74 68 65 6e 20 74 68 65 20 66 69 72 73 74 20 6e 65 78 74 68 6f 70 20 66 | ecified.then.the.first.nexthop.f |
| f3ea0 | 6f 75 6e 64 20 77 69 6c 6c 20 62 65 20 75 73 65 64 2e 00 49 66 20 50 49 4d 20 69 73 20 75 73 69 | ound.will.be.used..If.PIM.is.usi |
| f3ec0 | 6e 67 20 45 43 4d 50 20 61 6e 64 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 67 6f 65 73 20 64 6f | ng.ECMP.and.an.interface.goes.do |
| f3ee0 | 77 6e 2c 20 63 61 75 73 65 20 50 49 4d 20 74 6f 20 72 65 62 61 6c 61 6e 63 65 20 61 6c 6c 20 53 | wn,.cause.PIM.to.rebalance.all.S |
| f3f00 | 2c 47 20 66 6c 6f 77 73 20 61 63 72 6f 73 73 20 74 68 65 20 72 65 6d 61 69 6e 69 6e 67 20 6e 65 | ,G.flows.across.the.remaining.ne |
| f3f20 | 78 74 68 6f 70 73 2e 20 49 66 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 6e 6f 74 20 63 | xthops..If.this.command.is.not.c |
| f3f40 | 6f 6e 66 69 67 75 72 65 64 20 50 49 4d 20 6f 6e 6c 79 20 6d 6f 64 69 66 69 65 73 20 74 68 6f 73 | onfigured.PIM.only.modifies.thos |
| f3f60 | 65 20 53 2c 47 20 66 6c 6f 77 73 20 74 68 61 74 20 77 65 72 65 20 75 73 69 6e 67 20 74 68 65 20 | e.S,G.flows.that.were.using.the. |
| f3f80 | 69 6e 74 65 72 66 61 63 65 20 74 68 61 74 20 77 65 6e 74 20 64 6f 77 6e 2e 00 49 66 20 60 60 61 | interface.that.went.down..If.``a |
| f3fa0 | 6c 69 61 73 60 60 20 69 73 20 73 65 74 2c 20 69 74 20 63 61 6e 20 62 65 20 75 73 65 64 20 69 6e | lias``.is.set,.it.can.be.used.in |
| f3fc0 | 73 74 65 61 64 20 6f 66 20 74 68 65 20 64 65 76 69 63 65 20 77 68 65 6e 20 63 6f 6e 6e 65 63 74 | stead.of.the.device.when.connect |
| f3fe0 | 69 6e 67 2e 00 49 66 20 60 60 61 6c 6c 60 60 20 69 73 20 73 70 65 63 69 66 69 65 64 2c 20 72 65 | ing..If.``all``.is.specified,.re |
| f4000 | 6d 6f 76 65 20 61 6c 6c 20 41 53 20 6e 75 6d 62 65 72 73 20 66 72 6f 6d 20 74 68 65 20 41 53 5f | move.all.AS.numbers.from.the.AS_ |
| f4020 | 50 41 54 48 20 6f 66 20 74 68 65 20 42 47 50 20 70 61 74 68 27 73 20 4e 4c 52 49 2e 00 49 66 20 | PATH.of.the.BGP.path's.NLRI..If. |
| f4040 | 61 20 6c 6f 63 61 6c 20 66 69 72 65 77 61 6c 6c 20 70 6f 6c 69 63 79 20 69 73 20 69 6e 20 70 6c | a.local.firewall.policy.is.in.pl |
| f4060 | 61 63 65 20 6f 6e 20 79 6f 75 72 20 65 78 74 65 72 6e 61 6c 20 69 6e 74 65 72 66 61 63 65 20 79 | ace.on.your.external.interface.y |
| f4080 | 6f 75 20 77 69 6c 6c 20 6e 65 65 64 20 74 6f 20 61 6c 6c 6f 77 20 74 68 65 20 70 6f 72 74 73 20 | ou.will.need.to.allow.the.ports. |
| f40a0 | 62 65 6c 6f 77 3a 00 49 66 20 61 20 72 65 67 69 73 74 72 79 20 69 73 20 6e 6f 74 20 73 70 65 63 | below:.If.a.registry.is.not.spec |
| f40c0 | 69 66 69 65 64 2c 20 44 6f 63 6b 65 72 2e 69 6f 20 77 69 6c 6c 20 62 65 20 75 73 65 64 20 61 73 | ified,.Docker.io.will.be.used.as |
| f40e0 | 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 20 72 65 67 69 73 74 72 79 20 75 6e 6c 65 73 73 20 61 | .the.container.registry.unless.a |
| f4100 | 6e 20 61 6c 74 65 72 6e 61 74 69 76 65 20 72 65 67 69 73 74 72 79 20 69 73 20 73 70 65 63 69 66 | n.alternative.registry.is.specif |
| f4120 | 69 65 64 20 75 73 69 6e 67 20 2a 2a 73 65 74 20 63 6f 6e 74 61 69 6e 65 72 20 72 65 67 69 73 74 | ied.using.**set.container.regist |
| f4140 | 72 79 20 3c 6e 61 6d 65 3e 2a 2a 20 6f 72 20 74 68 65 20 72 65 67 69 73 74 72 79 20 69 73 20 69 | ry.<name>**.or.the.registry.is.i |
| f4160 | 6e 63 6c 75 64 65 64 20 69 6e 20 74 68 65 20 69 6d 61 67 65 20 6e 61 6d 65 00 49 66 20 61 20 72 | ncluded.in.the.image.name.If.a.r |
| f4180 | 65 73 70 6f 6e 73 65 20 69 73 20 68 65 61 72 64 2c 20 74 68 65 20 6c 65 61 73 65 20 69 73 20 61 | esponse.is.heard,.the.lease.is.a |
| f41a0 | 62 61 6e 64 6f 6e 65 64 2c 20 61 6e 64 20 74 68 65 20 73 65 72 76 65 72 20 64 6f 65 73 20 6e 6f | bandoned,.and.the.server.does.no |
| f41c0 | 74 20 72 65 73 70 6f 6e 64 20 74 6f 20 74 68 65 20 63 6c 69 65 6e 74 2e 20 54 68 65 20 6c 65 61 | t.respond.to.the.client..The.lea |
| f41e0 | 73 65 20 77 69 6c 6c 20 72 65 6d 61 69 6e 20 61 62 61 6e 64 6f 6e 65 64 20 66 6f 72 20 61 20 6d | se.will.remain.abandoned.for.a.m |
| f4200 | 69 6e 69 6d 75 6d 20 6f 66 20 61 62 61 6e 64 6f 6e 2d 6c 65 61 73 65 2d 74 69 6d 65 20 73 65 63 | inimum.of.abandon-lease-time.sec |
| f4220 | 6f 6e 64 73 20 28 64 65 66 61 75 6c 74 73 20 74 6f 20 32 34 20 68 6f 75 72 73 29 2e 00 49 66 20 | onds.(defaults.to.24.hours)..If. |
| f4240 | 61 20 72 6f 75 74 65 20 68 61 73 20 61 6e 20 4f 52 49 47 49 4e 41 54 4f 52 5f 49 44 20 61 74 74 | a.route.has.an.ORIGINATOR_ID.att |
| f4260 | 72 69 62 75 74 65 20 62 65 63 61 75 73 65 20 69 74 20 68 61 73 20 62 65 65 6e 20 72 65 66 6c 65 | ribute.because.it.has.been.refle |
| f4280 | 63 74 65 64 2c 20 74 68 61 74 20 4f 52 49 47 49 4e 41 54 4f 52 5f 49 44 20 77 69 6c 6c 20 62 65 | cted,.that.ORIGINATOR_ID.will.be |
| f42a0 | 20 75 73 65 64 2e 20 4f 74 68 65 72 77 69 73 65 2c 20 74 68 65 20 72 6f 75 74 65 72 2d 49 44 20 | .used..Otherwise,.the.router-ID. |
| f42c0 | 6f 66 20 74 68 65 20 70 65 65 72 20 74 68 65 20 72 6f 75 74 65 20 77 61 73 20 72 65 63 65 69 76 | of.the.peer.the.route.was.receiv |
| f42e0 | 65 64 20 66 72 6f 6d 20 77 69 6c 6c 20 62 65 20 75 73 65 64 2e 00 49 66 20 61 20 72 75 6c 65 20 | ed.from.will.be.used..If.a.rule. |
| f4300 | 69 73 20 64 65 66 69 6e 65 64 2c 20 74 68 65 6e 20 61 6e 20 61 63 74 69 6f 6e 20 6d 75 73 74 20 | is.defined,.then.an.action.must. |
| f4320 | 62 65 20 64 65 66 69 6e 65 64 20 66 6f 72 20 69 74 2e 20 54 68 69 73 20 74 65 6c 6c 73 20 74 68 | be.defined.for.it..This.tells.th |
| f4340 | 65 20 66 69 72 65 77 61 6c 6c 20 77 68 61 74 20 74 6f 20 64 6f 20 69 66 20 61 6c 6c 20 63 72 69 | e.firewall.what.to.do.if.all.cri |
| f4360 | 74 65 72 69 61 20 6d 61 74 63 68 65 72 73 20 64 65 66 69 6e 65 64 20 66 6f 72 20 73 75 63 68 20 | teria.matchers.defined.for.such. |
| f4380 | 72 75 6c 65 20 64 6f 20 6d 61 74 63 68 2e 00 49 66 20 61 20 72 75 6c 65 20 69 73 20 64 65 66 69 | rule.do.match..If.a.rule.is.defi |
| f43a0 | 6e 65 64 2c 20 74 68 65 6e 20 61 6e 20 61 63 74 69 6f 6e 20 6d 75 73 74 20 62 65 20 64 65 66 69 | ned,.then.an.action.must.be.defi |
| f43c0 | 6e 65 64 20 66 6f 72 20 69 74 2e 20 54 68 69 73 20 74 65 6c 6c 73 20 74 68 65 20 66 69 72 65 77 | ned.for.it..This.tells.the.firew |
| f43e0 | 61 6c 6c 20 77 68 61 74 20 74 6f 20 64 6f 20 69 66 20 61 6c 6c 20 6d 61 74 63 68 69 6e 67 20 63 | all.what.to.do.if.all.matching.c |
| f4400 | 72 69 74 65 72 65 61 20 69 6e 20 74 68 65 20 72 75 6c 65 20 61 72 65 20 6d 65 74 2e 00 49 66 20 | riterea.in.the.rule.are.met..If. |
| f4420 | 61 20 72 75 6c 65 20 69 73 20 64 65 66 69 6e 65 64 2c 20 74 68 65 6e 20 61 6e 20 61 63 74 69 6f | a.rule.is.defined,.then.an.actio |
| f4440 | 6e 20 6d 75 73 74 20 62 65 20 64 65 66 69 6e 65 64 20 66 6f 72 20 69 74 2e 20 54 68 69 73 20 74 | n.must.be.defined.for.it..This.t |
| f4460 | 65 6c 6c 73 20 74 68 65 20 66 69 72 65 77 61 6c 6c 20 77 68 61 74 20 74 6f 20 64 6f 20 69 66 20 | ells.the.firewall.what.to.do.if. |
| f4480 | 61 6c 6c 20 6f 66 20 74 68 65 20 63 72 69 74 65 72 69 61 20 64 65 66 69 6e 65 64 20 66 6f 72 20 | all.of.the.criteria.defined.for. |
| f44a0 | 74 68 61 74 20 72 75 6c 65 20 6d 61 74 63 68 2e 00 49 66 20 61 20 74 68 65 72 65 20 61 72 65 20 | that.rule.match..If.a.there.are. |
| f44c0 | 6e 6f 20 66 72 65 65 20 61 64 64 72 65 73 73 65 73 20 62 75 74 20 74 68 65 72 65 20 61 72 65 20 | no.free.addresses.but.there.are. |
| f44e0 | 61 62 61 6e 64 6f 6e 65 64 20 49 50 20 61 64 64 72 65 73 73 65 73 2c 20 74 68 65 20 44 48 43 50 | abandoned.IP.addresses,.the.DHCP |
| f4500 | 20 73 65 72 76 65 72 20 77 69 6c 6c 20 61 74 74 65 6d 70 74 20 74 6f 20 72 65 63 6c 61 69 6d 20 | .server.will.attempt.to.reclaim. |
| f4520 | 61 6e 20 61 62 61 6e 64 6f 6e 65 64 20 49 50 20 61 64 64 72 65 73 73 20 72 65 67 61 72 64 6c 65 | an.abandoned.IP.address.regardle |
| f4540 | 73 73 20 6f 66 20 74 68 65 20 76 61 6c 75 65 20 6f 66 20 61 62 61 6e 64 6f 6e 2d 6c 65 61 73 65 | ss.of.the.value.of.abandon-lease |
| f4560 | 2d 74 69 6d 65 2e 00 49 66 20 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 60 60 71 75 65 | -time..If.action.is.set.to.``que |
| f4580 | 75 65 60 60 2c 20 75 73 65 20 6e 65 78 74 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 70 65 63 69 66 | ue``,.use.next.command.to.specif |
| f45a0 | 79 20 74 68 65 20 71 75 65 75 65 20 74 61 72 67 65 74 2e 20 52 61 6e 67 65 20 69 73 20 61 6c 73 | y.the.queue.target..Range.is.als |
| f45c0 | 6f 20 73 75 70 70 6f 72 74 65 64 3a 00 49 66 20 61 6e 20 49 53 50 20 64 65 70 6c 6f 79 73 20 61 | o.supported:.If.an.ISP.deploys.a |
| f45e0 | 20 3a 61 62 62 72 3a 60 43 47 4e 20 28 43 61 72 72 69 65 72 2d 67 72 61 64 65 20 4e 41 54 29 60 | .:abbr:`CGN.(Carrier-grade.NAT)` |
| f4600 | 2c 20 61 6e 64 20 75 73 65 73 20 3a 72 66 63 3a 60 31 39 31 38 60 20 61 64 64 72 65 73 73 20 73 | ,.and.uses.:rfc:`1918`.address.s |
| f4620 | 70 61 63 65 20 74 6f 20 6e 75 6d 62 65 72 20 63 75 73 74 6f 6d 65 72 20 67 61 74 65 77 61 79 73 | pace.to.number.customer.gateways |
| f4640 | 2c 20 74 68 65 20 72 69 73 6b 20 6f 66 20 61 64 64 72 65 73 73 20 63 6f 6c 6c 69 73 69 6f 6e 2c | ,.the.risk.of.address.collision, |
| f4660 | 20 61 6e 64 20 74 68 65 72 65 66 6f 72 65 20 72 6f 75 74 69 6e 67 20 66 61 69 6c 75 72 65 73 2c | .and.therefore.routing.failures, |
| f4680 | 20 61 72 69 73 65 73 20 77 68 65 6e 20 74 68 65 20 63 75 73 74 6f 6d 65 72 20 6e 65 74 77 6f 72 | .arises.when.the.customer.networ |
| f46a0 | 6b 20 61 6c 72 65 61 64 79 20 75 73 65 73 20 61 6e 20 3a 72 66 63 3a 60 31 39 31 38 60 20 61 64 | k.already.uses.an.:rfc:`1918`.ad |
| f46c0 | 64 72 65 73 73 20 73 70 61 63 65 2e 00 49 66 20 61 6e 20 61 6e 6f 74 68 65 72 20 62 72 69 64 67 | dress.space..If.an.another.bridg |
| f46e0 | 65 20 69 6e 20 74 68 65 20 73 70 61 6e 6e 69 6e 67 20 74 72 65 65 20 64 6f 65 73 20 6e 6f 74 20 | e.in.the.spanning.tree.does.not. |
| f4700 | 73 65 6e 64 20 6f 75 74 20 61 20 68 65 6c 6c 6f 20 70 61 63 6b 65 74 20 66 6f 72 20 61 20 6c 6f | send.out.a.hello.packet.for.a.lo |
| f4720 | 6e 67 20 70 65 72 69 6f 64 20 6f 66 20 74 69 6d 65 2c 20 69 74 20 69 73 20 61 73 73 75 6d 65 64 | ng.period.of.time,.it.is.assumed |
| f4740 | 20 74 6f 20 62 65 20 64 65 61 64 2e 00 49 66 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 | .to.be.dead..If.an.interface.is. |
| f4760 | 61 74 74 61 63 68 65 64 20 74 6f 20 61 20 6e 6f 6e 2d 64 65 66 61 75 6c 74 20 76 72 66 2c 20 77 | attached.to.a.non-default.vrf,.w |
| f4780 | 68 65 6e 20 75 73 69 6e 67 20 2a 2a 69 6e 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 2a 2a 2c | hen.using.**inbound-interface**, |
| f47a0 | 20 74 68 65 20 76 72 66 20 6e 61 6d 65 20 6d 75 73 74 20 62 65 20 75 73 65 64 2e 20 46 6f 72 20 | .the.vrf.name.must.be.used..For. |
| f47c0 | 65 78 61 6d 70 6c 65 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 66 6f 72 77 | example.``set.firewall.ipv4.forw |
| f47e0 | 61 72 64 20 66 69 6c 74 65 72 20 72 75 6c 65 20 31 30 20 69 6e 62 6f 75 6e 64 2d 69 6e 74 65 72 | ard.filter.rule.10.inbound-inter |
| f4800 | 66 61 63 65 20 6e 61 6d 65 20 4d 47 4d 54 60 60 00 49 66 20 61 6e 20 69 6e 74 65 72 66 61 63 65 | face.name.MGMT``.If.an.interface |
| f4820 | 20 69 73 20 61 74 74 61 63 68 65 64 20 74 6f 20 61 20 6e 6f 6e 2d 64 65 66 61 75 6c 74 20 76 72 | .is.attached.to.a.non-default.vr |
| f4840 | 66 2c 20 77 68 65 6e 20 75 73 69 6e 67 20 2a 2a 69 6e 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 | f,.when.using.**inbound-interfac |
| f4860 | 65 2a 2a 2c 20 74 68 65 20 76 72 66 20 6e 61 6d 65 20 6d 75 73 74 20 62 65 20 75 73 65 64 2e 20 | e**,.the.vrf.name.must.be.used.. |
| f4880 | 46 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 | For.example.``set.firewall.ipv6. |
| f48a0 | 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 72 75 6c 65 20 31 30 20 69 6e 62 6f 75 6e 64 2d 69 | forward.filter.rule.10.inbound-i |
| f48c0 | 6e 74 65 72 66 61 63 65 20 6e 61 6d 65 20 4d 47 4d 54 60 60 00 49 66 20 61 6e 20 69 6e 74 65 72 | nterface.name.MGMT``.If.an.inter |
| f48e0 | 66 61 63 65 20 69 73 20 61 74 74 61 63 68 65 64 20 74 6f 20 61 20 6e 6f 6e 2d 64 65 66 61 75 6c | face.is.attached.to.a.non-defaul |
| f4900 | 74 20 76 72 66 2c 20 77 68 65 6e 20 75 73 69 6e 67 20 2a 2a 69 6e 62 6f 75 6e 64 2d 69 6e 74 65 | t.vrf,.when.using.**inbound-inte |
| f4920 | 72 66 61 63 65 2a 2a 2c 20 76 72 66 20 6e 61 6d 65 20 6d 75 73 74 20 62 65 20 75 73 65 64 2e 20 | rface**,.vrf.name.must.be.used.. |
| f4940 | 46 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 | For.example.``set.firewall.ipv4. |
| f4960 | 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 72 75 6c 65 20 31 30 20 69 6e 62 6f 75 6e 64 2d 69 | forward.filter.rule.10.inbound-i |
| f4980 | 6e 74 65 72 66 61 63 65 20 6e 61 6d 65 20 4d 47 4d 54 60 60 00 49 66 20 61 6e 20 69 6e 74 65 72 | nterface.name.MGMT``.If.an.inter |
| f49a0 | 66 61 63 65 20 69 73 20 61 74 74 61 63 68 65 64 20 74 6f 20 61 20 6e 6f 6e 2d 64 65 66 61 75 6c | face.is.attached.to.a.non-defaul |
| f49c0 | 74 20 76 72 66 2c 20 77 68 65 6e 20 75 73 69 6e 67 20 2a 2a 69 6e 62 6f 75 6e 64 2d 69 6e 74 65 | t.vrf,.when.using.**inbound-inte |
| f49e0 | 72 66 61 63 65 2a 2a 2c 20 76 72 66 20 6e 61 6d 65 20 6d 75 73 74 20 62 65 20 75 73 65 64 2e 20 | rface**,.vrf.name.must.be.used.. |
| f4a00 | 46 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 | For.example.``set.firewall.ipv6. |
| f4a20 | 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 72 75 6c 65 20 31 30 20 69 6e 62 6f 75 6e 64 2d 69 | forward.filter.rule.10.inbound-i |
| f4a40 | 6e 74 65 72 66 61 63 65 20 6e 61 6d 65 20 4d 47 4d 54 60 60 00 49 66 20 61 6e 20 69 6e 74 65 72 | nterface.name.MGMT``.If.an.inter |
| f4a60 | 66 61 63 65 20 69 73 20 61 74 74 61 63 68 65 64 20 74 6f 20 61 20 6e 6f 6e 2d 64 65 66 61 75 6c | face.is.attached.to.a.non-defaul |
| f4a80 | 74 20 76 72 66 2c 20 77 68 65 6e 20 75 73 69 6e 67 20 2a 2a 6f 75 74 62 6f 75 6e 64 2d 69 6e 74 | t.vrf,.when.using.**outbound-int |
| f4aa0 | 65 72 66 61 63 65 2a 2a 2c 20 72 65 61 6c 20 69 6e 74 65 72 66 61 63 65 20 6e 61 6d 65 20 6d 75 | erface**,.real.interface.name.mu |
| f4ac0 | 73 74 20 62 65 20 75 73 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 73 65 74 20 66 69 | st.be.used..For.example.``set.fi |
| f4ae0 | 72 65 77 61 6c 6c 20 69 70 76 34 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 72 75 6c 65 20 | rewall.ipv4.forward.filter.rule. |
| f4b00 | 31 30 20 6f 75 74 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 20 6e 61 6d 65 20 65 74 68 30 60 | 10.outbound-interface.name.eth0` |
| f4b20 | 60 00 49 66 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 61 74 74 61 63 68 65 64 20 74 6f | `.If.an.interface.is.attached.to |
| f4b40 | 20 61 20 6e 6f 6e 2d 64 65 66 61 75 6c 74 20 76 72 66 2c 20 77 68 65 6e 20 75 73 69 6e 67 20 2a | .a.non-default.vrf,.when.using.* |
| f4b60 | 2a 6f 75 74 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 2a 2a 2c 20 72 65 61 6c 20 69 6e 74 65 | *outbound-interface**,.real.inte |
| f4b80 | 72 66 61 63 65 20 6e 61 6d 65 20 6d 75 73 74 20 62 65 20 75 73 65 64 2e 20 46 6f 72 20 65 78 61 | rface.name.must.be.used..For.exa |
| f4ba0 | 6d 70 6c 65 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 66 6f 72 77 61 72 64 | mple.``set.firewall.ipv6.forward |
| f4bc0 | 20 66 69 6c 74 65 72 20 72 75 6c 65 20 31 30 20 6f 75 74 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 | .filter.rule.10.outbound-interfa |
| f4be0 | 63 65 20 6e 61 6d 65 20 65 74 68 30 60 60 00 49 66 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 69 | ce.name.eth0``.If.an.interface.i |
| f4c00 | 73 20 61 74 74 61 63 68 65 64 20 74 6f 20 61 20 6e 6f 6e 2d 64 65 66 61 75 6c 74 20 76 72 66 2c | s.attached.to.a.non-default.vrf, |
| f4c20 | 20 77 68 65 6e 20 75 73 69 6e 67 20 2a 2a 6f 75 74 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 | .when.using.**outbound-interface |
| f4c40 | 2a 2a 2c 20 74 68 65 20 72 65 61 6c 20 69 6e 74 65 72 66 61 63 65 20 6e 61 6d 65 20 6d 75 73 74 | **,.the.real.interface.name.must |
| f4c60 | 20 62 65 20 75 73 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 73 65 74 20 66 69 72 65 | .be.used..For.example.``set.fire |
| f4c80 | 77 61 6c 6c 20 69 70 76 34 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 72 75 6c 65 20 31 30 | wall.ipv4.forward.filter.rule.10 |
| f4ca0 | 20 6f 75 74 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 20 6e 61 6d 65 20 65 74 68 30 60 60 00 | .outbound-interface.name.eth0``. |
| f4cc0 | 49 66 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 61 74 74 61 63 68 65 64 20 74 6f 20 61 | If.an.interface.is.attached.to.a |
| f4ce0 | 20 6e 6f 6e 2d 64 65 66 61 75 6c 74 20 76 72 66 2c 20 77 68 65 6e 20 75 73 69 6e 67 20 2a 2a 6f | .non-default.vrf,.when.using.**o |
| f4d00 | 75 74 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 2a 2a 2c 20 74 68 65 20 72 65 61 6c 20 69 6e | utbound-interface**,.the.real.in |
| f4d20 | 74 65 72 66 61 63 65 20 6e 61 6d 65 20 6d 75 73 74 20 62 65 20 75 73 65 64 2e 20 46 6f 72 20 65 | terface.name.must.be.used..For.e |
| f4d40 | 78 61 6d 70 6c 65 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 66 6f 72 77 61 | xample.``set.firewall.ipv6.forwa |
| f4d60 | 72 64 20 66 69 6c 74 65 72 20 72 75 6c 65 20 31 30 20 6f 75 74 62 6f 75 6e 64 2d 69 6e 74 65 72 | rd.filter.rule.10.outbound-inter |
| f4d80 | 66 61 63 65 20 6e 61 6d 65 20 65 74 68 30 60 60 00 49 66 20 63 68 6f 6f 73 69 6e 67 20 61 20 76 | face.name.eth0``.If.choosing.a.v |
| f4da0 | 61 6c 75 65 20 62 65 6c 6f 77 20 33 31 20 73 65 63 6f 6e 64 73 20 62 65 20 61 77 61 72 65 20 74 | alue.below.31.seconds.be.aware.t |
| f4dc0 | 68 61 74 20 73 6f 6d 65 20 68 61 72 64 77 61 72 65 20 70 6c 61 74 66 6f 72 6d 73 20 63 61 6e 6e | hat.some.hardware.platforms.cann |
| f4de0 | 6f 74 20 73 65 65 20 64 61 74 61 20 66 6c 6f 77 69 6e 67 20 69 6e 20 62 65 74 74 65 72 20 74 68 | ot.see.data.flowing.in.better.th |
| f4e00 | 61 6e 20 33 30 20 73 65 63 6f 6e 64 20 63 68 75 6e 6b 73 2e 00 49 66 20 63 6f 6e 66 69 67 75 72 | an.30.second.chunks..If.configur |
| f4e20 | 65 64 2c 20 69 6e 63 6f 6d 69 6e 67 20 49 50 20 64 69 72 65 63 74 65 64 20 62 72 6f 61 64 63 61 | ed,.incoming.IP.directed.broadca |
| f4e40 | 73 74 20 70 61 63 6b 65 74 73 20 6f 6e 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 20 77 69 6c | st.packets.on.this.interface.wil |
| f4e60 | 6c 20 62 65 20 66 6f 72 77 61 72 64 65 64 2e 00 49 66 20 63 6f 6e 66 69 67 75 72 65 64 2c 20 72 | l.be.forwarded..If.configured,.r |
| f4e80 | 65 70 6c 79 20 6f 6e 6c 79 20 69 66 20 74 68 65 20 74 61 72 67 65 74 20 49 50 20 61 64 64 72 65 | eply.only.if.the.target.IP.addre |
| f4ea0 | 73 73 20 69 73 20 6c 6f 63 61 6c 20 61 64 64 72 65 73 73 20 63 6f 6e 66 69 67 75 72 65 64 20 6f | ss.is.local.address.configured.o |
| f4ec0 | 6e 20 74 68 65 20 69 6e 63 6f 6d 69 6e 67 20 69 6e 74 65 72 66 61 63 65 2e 00 49 66 20 63 6f 6e | n.the.incoming.interface..If.con |
| f4ee0 | 66 69 67 75 72 65 64 2c 20 74 72 79 20 74 6f 20 61 76 6f 69 64 20 6c 6f 63 61 6c 20 61 64 64 72 | figured,.try.to.avoid.local.addr |
| f4f00 | 65 73 73 65 73 20 74 68 61 74 20 61 72 65 20 6e 6f 74 20 69 6e 20 74 68 65 20 74 61 72 67 65 74 | esses.that.are.not.in.the.target |
| f4f20 | 27 73 20 73 75 62 6e 65 74 20 66 6f 72 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 | 's.subnet.for.this.interface..Th |
| f4f40 | 69 73 20 6d 6f 64 65 20 69 73 20 75 73 65 66 75 6c 20 77 68 65 6e 20 74 61 72 67 65 74 20 68 6f | is.mode.is.useful.when.target.ho |
| f4f60 | 73 74 73 20 72 65 61 63 68 61 62 6c 65 20 76 69 61 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 | sts.reachable.via.this.interface |
| f4f80 | 20 72 65 71 75 69 72 65 20 74 68 65 20 73 6f 75 72 63 65 20 49 50 20 61 64 64 72 65 73 73 20 69 | .require.the.source.IP.address.i |
| f4fa0 | 6e 20 41 52 50 20 72 65 71 75 65 73 74 73 20 74 6f 20 62 65 20 70 61 72 74 20 6f 66 20 74 68 65 | n.ARP.requests.to.be.part.of.the |
| f4fc0 | 69 72 20 6c 6f 67 69 63 61 6c 20 6e 65 74 77 6f 72 6b 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e | ir.logical.network.configured.on |
| f4fe0 | 20 74 68 65 20 72 65 63 65 69 76 69 6e 67 20 69 6e 74 65 72 66 61 63 65 2e 20 57 68 65 6e 20 77 | .the.receiving.interface..When.w |
| f5000 | 65 20 67 65 6e 65 72 61 74 65 20 74 68 65 20 72 65 71 75 65 73 74 20 77 65 20 77 69 6c 6c 20 63 | e.generate.the.request.we.will.c |
| f5020 | 68 65 63 6b 20 61 6c 6c 20 6f 75 72 20 73 75 62 6e 65 74 73 20 74 68 61 74 20 69 6e 63 6c 75 64 | heck.all.our.subnets.that.includ |
| f5040 | 65 20 74 68 65 20 74 61 72 67 65 74 20 49 50 20 61 6e 64 20 77 69 6c 6c 20 70 72 65 73 65 72 76 | e.the.target.IP.and.will.preserv |
| f5060 | 65 20 74 68 65 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 69 66 20 69 74 20 69 73 20 66 72 | e.the.source.address.if.it.is.fr |
| f5080 | 6f 6d 20 73 75 63 68 20 73 75 62 6e 65 74 2e 20 49 66 20 74 68 65 72 65 20 69 73 20 6e 6f 20 73 | om.such.subnet..If.there.is.no.s |
| f50a0 | 75 63 68 20 73 75 62 6e 65 74 20 77 65 20 73 65 6c 65 63 74 20 73 6f 75 72 63 65 20 61 64 64 72 | uch.subnet.we.select.source.addr |
| f50c0 | 65 73 73 20 61 63 63 6f 72 64 69 6e 67 20 74 6f 20 74 68 65 20 72 75 6c 65 73 20 66 6f 72 20 6c | ess.according.to.the.rules.for.l |
| f50e0 | 65 76 65 6c 20 32 2e 00 49 66 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 56 58 4c 41 4e 20 69 6e 20 | evel.2..If.configuring.VXLAN.in. |
| f5100 | 61 20 56 79 4f 53 20 76 69 72 74 75 61 6c 20 6d 61 63 68 69 6e 65 2c 20 65 6e 73 75 72 65 20 74 | a.VyOS.virtual.machine,.ensure.t |
| f5120 | 68 61 74 20 4d 41 43 20 73 70 6f 6f 66 69 6e 67 20 28 48 79 70 65 72 2d 56 29 20 6f 72 20 46 6f | hat.MAC.spoofing.(Hyper-V).or.Fo |
| f5140 | 72 67 65 64 20 54 72 61 6e 73 6d 69 74 73 20 28 45 53 58 29 20 61 72 65 20 70 65 72 6d 69 74 74 | rged.Transmits.(ESX).are.permitt |
| f5160 | 65 64 2c 20 6f 74 68 65 72 77 69 73 65 20 66 6f 72 77 61 72 64 65 64 20 66 72 61 6d 65 73 20 6d | ed,.otherwise.forwarded.frames.m |
| f5180 | 61 79 20 62 65 20 62 6c 6f 63 6b 65 64 20 62 79 20 74 68 65 20 68 79 70 65 72 76 69 73 6f 72 2e | ay.be.blocked.by.the.hypervisor. |
| f51a0 | 00 49 66 20 65 69 74 68 65 72 20 69 73 20 73 65 74 20 62 6f 74 68 20 6d 75 73 74 20 62 65 20 73 | .If.either.is.set.both.must.be.s |
| f51c0 | 65 74 2e 00 49 66 20 66 6f 72 77 61 72 64 69 6e 67 20 74 72 61 66 66 69 63 20 74 6f 20 61 20 64 | et..If.forwarding.traffic.to.a.d |
| f51e0 | 69 66 66 65 72 65 6e 74 20 70 6f 72 74 20 74 68 61 6e 20 69 74 20 69 73 20 61 72 72 69 76 69 6e | ifferent.port.than.it.is.arrivin |
| f5200 | 67 20 6f 6e 2c 20 79 6f 75 20 6d 61 79 20 61 6c 73 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 | g.on,.you.may.also.configure.the |
| f5220 | 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 70 6f 72 74 20 75 73 69 6e 67 20 60 73 65 74 20 6e 61 74 | .translation.port.using.`set.nat |
| f5240 | 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 72 75 6c 65 20 5b 6e 5d 20 74 72 61 6e 73 6c 61 74 69 6f | .destination.rule.[n].translatio |
| f5260 | 6e 20 70 6f 72 74 60 2e 00 49 66 20 67 75 61 72 61 6e 74 65 65 64 20 74 72 61 66 66 69 63 20 66 | n.port`..If.guaranteed.traffic.f |
| f5280 | 6f 72 20 61 20 63 6c 61 73 73 20 69 73 20 6d 65 74 20 61 6e 64 20 74 68 65 72 65 20 69 73 20 72 | or.a.class.is.met.and.there.is.r |
| f52a0 | 6f 6f 6d 20 66 6f 72 20 6d 6f 72 65 20 74 72 61 66 66 69 63 2c 20 74 68 65 20 63 65 69 6c 69 6e | oom.for.more.traffic,.the.ceilin |
| f52c0 | 67 20 70 61 72 61 6d 65 74 65 72 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 73 65 74 20 68 | g.parameter.can.be.used.to.set.h |
| f52e0 | 6f 77 20 6d 75 63 68 20 6d 6f 72 65 20 62 61 6e 64 77 69 64 74 68 20 63 6f 75 6c 64 20 62 65 20 | ow.much.more.bandwidth.could.be. |
| f5300 | 75 73 65 64 2e 20 49 66 20 67 75 61 72 61 6e 74 65 65 64 20 74 72 61 66 66 69 63 20 69 73 20 6d | used..If.guaranteed.traffic.is.m |
| f5320 | 65 74 20 61 6e 64 20 74 68 65 72 65 20 61 72 65 20 73 65 76 65 72 61 6c 20 63 6c 61 73 73 65 73 | et.and.there.are.several.classes |
| f5340 | 20 77 69 6c 6c 69 6e 67 20 74 6f 20 75 73 65 20 74 68 65 69 72 20 63 65 69 6c 69 6e 67 73 2c 20 | .willing.to.use.their.ceilings,. |
| f5360 | 74 68 65 20 70 72 69 6f 72 69 74 79 20 70 61 72 61 6d 65 74 65 72 20 77 69 6c 6c 20 65 73 74 61 | the.priority.parameter.will.esta |
| f5380 | 62 6c 69 73 68 20 74 68 65 20 6f 72 64 65 72 20 69 6e 20 77 68 69 63 68 20 74 68 61 74 20 61 64 | blish.the.order.in.which.that.ad |
| f53a0 | 64 69 74 69 6f 6e 61 6c 20 74 72 61 66 66 69 63 20 77 69 6c 6c 20 62 65 20 61 6c 6c 6f 63 61 74 | ditional.traffic.will.be.allocat |
| f53c0 | 65 64 2e 20 50 72 69 6f 72 69 74 79 20 63 61 6e 20 62 65 20 61 6e 79 20 6e 75 6d 62 65 72 20 66 | ed..Priority.can.be.any.number.f |
| f53e0 | 72 6f 6d 20 30 20 74 6f 20 37 2e 20 54 68 65 20 6c 6f 77 65 72 20 74 68 65 20 6e 75 6d 62 65 72 | rom.0.to.7..The.lower.the.number |
| f5400 | 2c 20 74 68 65 20 68 69 67 68 65 72 20 74 68 65 20 70 72 69 6f 72 69 74 79 2e 00 49 66 20 69 6e | ,.the.higher.the.priority..If.in |
| f5420 | 74 65 72 66 61 63 65 20 77 65 72 65 20 74 68 65 20 70 61 63 6b 65 74 20 77 61 73 20 72 65 63 65 | terface.were.the.packet.was.rece |
| f5440 | 69 76 65 64 20 69 73 20 70 61 72 74 20 6f 66 20 61 20 62 72 69 64 67 65 2c 20 74 68 65 6e 20 70 | ived.is.part.of.a.bridge,.then.p |
| f5460 | 61 63 6b 65 74 20 69 73 20 70 72 6f 63 65 73 73 65 64 20 61 74 20 74 68 65 20 2a 2a 42 72 69 64 | acket.is.processed.at.the.**Brid |
| f5480 | 67 65 20 4c 61 79 65 72 2a 2a 2c 20 77 68 69 63 68 20 63 6f 6e 74 61 69 6e 73 20 61 20 76 65 72 | ge.Layer**,.which.contains.a.ver |
| f54a0 | 20 62 61 73 69 63 20 73 65 74 75 70 20 77 68 65 72 65 20 66 6f 72 20 62 72 69 64 67 65 20 66 69 | .basic.setup.where.for.bridge.fi |
| f54c0 | 6c 74 65 72 69 6e 67 3a 00 49 66 20 69 6e 74 65 72 66 61 63 65 20 77 65 72 65 20 74 68 65 20 70 | ltering:.If.interface.were.the.p |
| f54e0 | 61 63 6b 65 74 20 77 61 73 20 72 65 63 65 69 76 65 64 20 69 73 6e 27 74 20 70 61 72 74 20 6f 66 | acket.was.received.isn't.part.of |
| f5500 | 20 61 20 62 72 69 64 67 65 2c 20 74 68 65 6e 20 70 61 63 6b 65 74 20 69 73 20 70 72 6f 63 65 73 | .a.bridge,.then.packet.is.proces |
| f5520 | 73 65 64 20 61 74 20 74 68 65 20 2a 2a 49 50 20 4c 61 79 65 72 2a 2a 3a 00 49 66 20 69 74 27 73 | sed.at.the.**IP.Layer**:.If.it's |
| f5540 | 20 6e 6f 74 20 64 72 6f 70 70 65 64 2c 20 74 68 65 6e 20 74 68 65 20 70 61 63 6b 65 74 20 69 73 | .not.dropped,.then.the.packet.is |
| f5560 | 20 73 65 6e 74 20 74 6f 20 2a 2a 49 50 20 4c 61 79 65 72 2a 2a 2c 20 61 6e 64 20 77 69 6c 6c 20 | .sent.to.**IP.Layer**,.and.will. |
| f5580 | 62 65 20 70 72 6f 63 65 73 73 65 64 20 62 79 20 74 68 65 20 2a 2a 49 50 20 4c 61 79 65 72 2a 2a | be.processed.by.the.**IP.Layer** |
| f55a0 | 20 66 69 72 65 77 61 6c 6c 3a 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 72 75 6c 65 73 65 74 2e | .firewall:.IPv4.or.IPv6.ruleset. |
| f55c0 | 20 43 68 65 63 6b 20 6f 6e 63 65 20 61 67 61 69 6e 20 74 68 65 20 3a 64 6f 63 3a 60 67 65 6e 65 | .Check.once.again.the.:doc:`gene |
| f55e0 | 72 61 6c 20 70 61 63 6b 65 74 20 66 6c 6f 77 20 64 69 61 67 72 61 6d 3c 2f 63 6f 6e 66 69 67 75 | ral.packet.flow.diagram</configu |
| f5600 | 72 61 74 69 6f 6e 2f 66 69 72 65 77 61 6c 6c 2f 69 6e 64 65 78 3e 60 20 69 66 20 6e 65 65 64 65 | ration/firewall/index>`.if.neede |
| f5620 | 64 2e 00 49 66 20 69 74 27 73 20 76 69 74 61 6c 20 74 68 61 74 20 74 68 65 20 64 61 65 6d 6f 6e | d..If.it's.vital.that.the.daemon |
| f5640 | 20 73 68 6f 75 6c 64 20 61 63 74 20 65 78 61 63 74 6c 79 20 6c 69 6b 65 20 61 20 72 65 61 6c 20 | .should.act.exactly.like.a.real. |
| f5660 | 6d 75 6c 74 69 63 61 73 74 20 63 6c 69 65 6e 74 20 6f 6e 20 74 68 65 20 75 70 73 74 72 65 61 6d | multicast.client.on.the.upstream |
| f5680 | 20 69 6e 74 65 72 66 61 63 65 2c 20 74 68 69 73 20 66 75 6e 63 74 69 6f 6e 20 73 68 6f 75 6c 64 | .interface,.this.function.should |
| f56a0 | 20 62 65 20 65 6e 61 62 6c 65 64 2e 00 49 66 20 6b 6e 6f 77 6e 2c 20 74 68 65 20 49 50 20 6f 66 | .be.enabled..If.known,.the.IP.of |
| f56c0 | 20 74 68 65 20 72 65 6d 6f 74 65 20 72 6f 75 74 65 72 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 | .the.remote.router.can.be.config |
| f56e0 | 75 72 65 64 20 75 73 69 6e 67 20 74 68 65 20 60 60 72 65 6d 6f 74 65 2d 68 6f 73 74 60 60 20 64 | ured.using.the.``remote-host``.d |
| f5700 | 69 72 65 63 74 69 76 65 3b 20 69 66 20 75 6e 6b 6e 6f 77 6e 2c 20 69 74 20 63 61 6e 20 62 65 20 | irective;.if.unknown,.it.can.be. |
| f5720 | 6f 6d 69 74 74 65 64 2e 20 57 65 20 77 69 6c 6c 20 61 73 73 75 6d 65 20 61 20 64 79 6e 61 6d 69 | omitted..We.will.assume.a.dynami |
| f5740 | 63 20 49 50 20 66 6f 72 20 6f 75 72 20 72 65 6d 6f 74 65 20 72 6f 75 74 65 72 2e 00 49 66 20 6c | c.IP.for.our.remote.router..If.l |
| f5760 | 6f 67 67 69 6e 67 20 74 6f 20 61 20 6c 6f 63 61 6c 20 75 73 65 72 20 61 63 63 6f 75 6e 74 20 69 | ogging.to.a.local.user.account.i |
| f5780 | 73 20 63 6f 6e 66 69 67 75 72 65 64 2c 20 61 6c 6c 20 64 65 66 69 6e 65 64 20 6c 6f 67 20 6d 65 | s.configured,.all.defined.log.me |
| f57a0 | 73 73 61 67 65 73 20 61 72 65 20 64 69 73 70 6c 61 79 20 6f 6e 20 74 68 65 20 63 6f 6e 73 6f 6c | ssages.are.display.on.the.consol |
| f57c0 | 65 20 69 66 20 74 68 65 20 6c 6f 63 61 6c 20 75 73 65 72 20 69 73 20 6c 6f 67 67 65 64 20 69 6e | e.if.the.local.user.is.logged.in |
| f57e0 | 2c 20 69 66 20 74 68 65 20 75 73 65 72 20 69 73 20 6e 6f 74 20 6c 6f 67 67 65 64 20 69 6e 2c 20 | ,.if.the.user.is.not.logged.in,. |
| f5800 | 6e 6f 20 6d 65 73 73 61 67 65 73 20 61 72 65 20 62 65 69 6e 67 20 64 69 73 70 6c 61 79 65 64 2e | no.messages.are.being.displayed. |
| f5820 | 20 46 6f 72 20 61 6e 20 65 78 70 6c 61 6e 61 74 69 6f 6e 20 6f 6e 20 3a 72 65 66 3a 60 73 79 73 | .For.an.explanation.on.:ref:`sys |
| f5840 | 6c 6f 67 5f 66 61 63 69 6c 69 74 69 65 73 60 20 6b 65 79 77 6f 72 64 73 20 61 6e 64 20 3a 72 65 | log_facilities`.keywords.and.:re |
| f5860 | 66 3a 60 73 79 73 6c 6f 67 5f 73 65 76 65 72 69 74 79 5f 6c 65 76 65 6c 60 20 6b 65 79 77 6f 72 | f:`syslog_severity_level`.keywor |
| f5880 | 64 73 20 73 65 65 20 74 61 62 6c 65 73 20 62 65 6c 6f 77 2e 00 49 66 20 6d 61 6b 69 6e 67 20 75 | ds.see.tables.below..If.making.u |
| f58a0 | 73 65 20 6f 66 20 6d 75 6c 74 69 70 6c 65 20 74 75 6e 6e 65 6c 73 2c 20 4f 70 65 6e 56 50 4e 20 | se.of.multiple.tunnels,.OpenVPN. |
| f58c0 | 6d 75 73 74 20 68 61 76 65 20 61 20 77 61 79 20 74 6f 20 64 69 73 74 69 6e 67 75 69 73 68 20 62 | must.have.a.way.to.distinguish.b |
| f58e0 | 65 74 77 65 65 6e 20 64 69 66 66 65 72 65 6e 74 20 74 75 6e 6e 65 6c 73 20 61 73 69 64 65 20 66 | etween.different.tunnels.aside.f |
| f5900 | 72 6f 6d 20 74 68 65 20 70 72 65 2d 73 68 61 72 65 64 2d 6b 65 79 2e 20 54 68 69 73 20 69 73 20 | rom.the.pre-shared-key..This.is. |
| f5920 | 65 69 74 68 65 72 20 62 79 20 72 65 66 65 72 65 6e 63 69 6e 67 20 49 50 20 61 64 64 72 65 73 73 | either.by.referencing.IP.address |
| f5940 | 20 6f 72 20 70 6f 72 74 20 6e 75 6d 62 65 72 2e 20 4f 6e 65 20 6f 70 74 69 6f 6e 20 69 73 20 74 | .or.port.number..One.option.is.t |
| f5960 | 6f 20 64 65 64 69 63 61 74 65 20 61 20 70 75 62 6c 69 63 20 49 50 20 74 6f 20 65 61 63 68 20 74 | o.dedicate.a.public.IP.to.each.t |
| f5980 | 75 6e 6e 65 6c 2e 20 41 6e 6f 74 68 65 72 20 6f 70 74 69 6f 6e 20 69 73 20 74 6f 20 64 65 64 69 | unnel..Another.option.is.to.dedi |
| f59a0 | 63 61 74 65 20 61 20 70 6f 72 74 20 6e 75 6d 62 65 72 20 74 6f 20 65 61 63 68 20 74 75 6e 6e 65 | cate.a.port.number.to.each.tunne |
| f59c0 | 6c 20 28 65 2e 67 2e 20 31 31 39 35 2c 31 31 39 36 2c 31 31 39 37 2e 2e 2e 29 2e 00 49 66 20 6d | l.(e.g..1195,1196,1197...)..If.m |
| f59e0 | 75 6c 74 69 2d 70 61 74 68 69 6e 67 20 69 73 20 65 6e 61 62 6c 65 64 2c 20 74 68 65 6e 20 63 68 | ulti-pathing.is.enabled,.then.ch |
| f5a00 | 65 63 6b 20 77 68 65 74 68 65 72 20 74 68 65 20 72 6f 75 74 65 73 20 6e 6f 74 20 79 65 74 20 64 | eck.whether.the.routes.not.yet.d |
| f5a20 | 69 73 74 69 6e 67 75 69 73 68 65 64 20 69 6e 20 70 72 65 66 65 72 65 6e 63 65 20 6d 61 79 20 62 | istinguished.in.preference.may.b |
| f5a40 | 65 20 63 6f 6e 73 69 64 65 72 65 64 20 65 71 75 61 6c 2e 20 49 66 20 3a 63 66 67 63 6d 64 3a 60 | e.considered.equal..If.:cfgcmd:` |
| f5a60 | 62 67 70 20 62 65 73 74 70 61 74 68 20 61 73 2d 70 61 74 68 20 6d 75 6c 74 69 70 61 74 68 2d 72 | bgp.bestpath.as-path.multipath-r |
| f5a80 | 65 6c 61 78 60 20 69 73 20 73 65 74 2c 20 61 6c 6c 20 73 75 63 68 20 72 6f 75 74 65 73 20 61 72 | elax`.is.set,.all.such.routes.ar |
| f5aa0 | 65 20 63 6f 6e 73 69 64 65 72 65 64 20 65 71 75 61 6c 2c 20 6f 74 68 65 72 77 69 73 65 20 72 6f | e.considered.equal,.otherwise.ro |
| f5ac0 | 75 74 65 73 20 72 65 63 65 69 76 65 64 20 76 69 61 20 69 42 47 50 20 77 69 74 68 20 69 64 65 6e | utes.received.via.iBGP.with.iden |
| f5ae0 | 74 69 63 61 6c 20 41 53 5f 50 41 54 48 73 20 6f 72 20 72 6f 75 74 65 73 20 72 65 63 65 69 76 65 | tical.AS_PATHs.or.routes.receive |
| f5b00 | 64 20 66 72 6f 6d 20 65 42 47 50 20 6e 65 69 67 68 62 6f 75 72 73 20 69 6e 20 74 68 65 20 73 61 | d.from.eBGP.neighbours.in.the.sa |
| f5b20 | 6d 65 20 41 53 20 61 72 65 20 63 6f 6e 73 69 64 65 72 65 64 20 65 71 75 61 6c 2e 00 49 66 20 6e | me.AS.are.considered.equal..If.n |
| f5b40 | 6f 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 6f 20 61 6e 20 52 50 4b 49 20 63 61 63 68 65 20 73 65 | o.connection.to.an.RPKI.cache.se |
| f5b60 | 72 76 65 72 20 63 61 6e 20 62 65 20 65 73 74 61 62 6c 69 73 68 65 64 20 61 66 74 65 72 20 61 20 | rver.can.be.established.after.a. |
| f5b80 | 70 72 65 2d 64 65 66 69 6e 65 64 20 74 69 6d 65 6f 75 74 2c 20 74 68 65 20 72 6f 75 74 65 72 20 | pre-defined.timeout,.the.router. |
| f5ba0 | 77 69 6c 6c 20 70 72 6f 63 65 73 73 20 72 6f 75 74 65 73 20 77 69 74 68 6f 75 74 20 70 72 65 66 | will.process.routes.without.pref |
| f5bc0 | 69 78 20 6f 72 69 67 69 6e 20 76 61 6c 69 64 61 74 69 6f 6e 2e 20 49 74 20 73 74 69 6c 6c 20 77 | ix.origin.validation..It.still.w |
| f5be0 | 69 6c 6c 20 74 72 79 20 74 6f 20 65 73 74 61 62 6c 69 73 68 20 61 20 63 6f 6e 6e 65 63 74 69 6f | ill.try.to.establish.a.connectio |
| f5c00 | 6e 20 74 6f 20 61 6e 20 52 50 4b 49 20 63 61 63 68 65 20 73 65 72 76 65 72 20 69 6e 20 74 68 65 | n.to.an.RPKI.cache.server.in.the |
| f5c20 | 20 62 61 63 6b 67 72 6f 75 6e 64 2e 00 49 66 20 6e 6f 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 69 | .background..If.no.destination.i |
| f5c40 | 73 20 73 70 65 63 69 66 69 65 64 20 74 68 65 20 72 75 6c 65 20 77 69 6c 6c 20 6d 61 74 63 68 20 | s.specified.the.rule.will.match. |
| f5c60 | 6f 6e 20 61 6e 79 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 61 6e 64 20 70 | on.any.destination.address.and.p |
| f5c80 | 6f 72 74 2e 00 49 66 20 6e 6f 20 69 70 20 70 72 65 66 69 78 20 6c 69 73 74 20 69 73 20 73 70 65 | ort..If.no.ip.prefix.list.is.spe |
| f5ca0 | 63 69 66 69 65 64 2c 20 69 74 20 61 63 74 73 20 61 73 20 70 65 72 6d 69 74 2e 20 49 66 20 69 70 | cified,.it.acts.as.permit..If.ip |
| f5cc0 | 20 70 72 65 66 69 78 20 6c 69 73 74 20 69 73 20 64 65 66 69 6e 65 64 2c 20 61 6e 64 20 6e 6f 20 | .prefix.list.is.defined,.and.no. |
| f5ce0 | 6d 61 74 63 68 20 69 73 20 66 6f 75 6e 64 2c 20 64 65 66 61 75 6c 74 20 64 65 6e 79 20 69 73 20 | match.is.found,.default.deny.is. |
| f5d00 | 61 70 70 6c 69 65 64 2e 00 49 66 20 6e 6f 20 6f 70 74 69 6f 6e 20 69 73 20 73 70 65 63 69 66 69 | applied..If.no.option.is.specifi |
| f5d20 | 65 64 2c 20 74 68 69 73 20 64 65 66 61 75 6c 74 73 20 74 6f 20 60 61 6c 6c 60 2e 00 49 66 20 6e | ed,.this.defaults.to.`all`..If.n |
| f5d40 | 6f 74 20 73 65 74 20 28 64 65 66 61 75 6c 74 29 20 61 6c 6c 6f 77 73 20 79 6f 75 20 74 6f 20 68 | ot.set.(default).allows.you.to.h |
| f5d60 | 61 76 65 20 6d 75 6c 74 69 70 6c 65 20 6e 65 74 77 6f 72 6b 20 69 6e 74 65 72 66 61 63 65 73 20 | ave.multiple.network.interfaces. |
| f5d80 | 6f 6e 20 74 68 65 20 73 61 6d 65 20 73 75 62 6e 65 74 2c 20 61 6e 64 20 68 61 76 65 20 74 68 65 | on.the.same.subnet,.and.have.the |
| f5da0 | 20 41 52 50 73 20 66 6f 72 20 65 61 63 68 20 69 6e 74 65 72 66 61 63 65 20 62 65 20 61 6e 73 77 | .ARPs.for.each.interface.be.answ |
| f5dc0 | 65 72 65 64 20 62 61 73 65 64 20 6f 6e 20 77 68 65 74 68 65 72 20 6f 72 20 6e 6f 74 20 74 68 65 | ered.based.on.whether.or.not.the |
| f5de0 | 20 6b 65 72 6e 65 6c 20 77 6f 75 6c 64 20 72 6f 75 74 65 20 61 20 70 61 63 6b 65 74 20 66 72 6f | .kernel.would.route.a.packet.fro |
| f5e00 | 6d 20 74 68 65 20 41 52 50 27 64 20 49 50 20 6f 75 74 20 74 68 61 74 20 69 6e 74 65 72 66 61 63 | m.the.ARP'd.IP.out.that.interfac |
| f5e20 | 65 20 28 74 68 65 72 65 66 6f 72 65 20 79 6f 75 20 6d 75 73 74 20 75 73 65 20 73 6f 75 72 63 65 | e.(therefore.you.must.use.source |
| f5e40 | 20 62 61 73 65 64 20 72 6f 75 74 69 6e 67 20 66 6f 72 20 74 68 69 73 20 74 6f 20 77 6f 72 6b 29 | .based.routing.for.this.to.work) |
| f5e60 | 2e 00 49 66 20 6f 70 74 69 6f 6e 61 6c 20 70 72 6f 66 69 6c 65 20 70 61 72 61 6d 65 74 65 72 20 | ..If.optional.profile.parameter. |
| f5e80 | 69 73 20 75 73 65 64 2c 20 73 65 6c 65 63 74 20 61 20 42 46 44 20 70 72 6f 66 69 6c 65 20 66 6f | is.used,.select.a.BFD.profile.fo |
| f5ea0 | 72 20 74 68 65 20 42 46 44 20 73 65 73 73 69 6f 6e 73 20 63 72 65 61 74 65 64 20 76 69 61 20 74 | r.the.BFD.sessions.created.via.t |
| f5ec0 | 68 69 73 20 69 6e 74 65 72 66 61 63 65 2e 00 49 66 20 73 65 74 20 74 68 65 20 6b 65 72 6e 65 6c | his.interface..If.set.the.kernel |
| f5ee0 | 20 63 61 6e 20 72 65 73 70 6f 6e 64 20 74 6f 20 61 72 70 20 72 65 71 75 65 73 74 73 20 77 69 74 | .can.respond.to.arp.requests.wit |
| f5f00 | 68 20 61 64 64 72 65 73 73 65 73 20 66 72 6f 6d 20 6f 74 68 65 72 20 69 6e 74 65 72 66 61 63 65 | h.addresses.from.other.interface |
| f5f20 | 73 2e 20 54 68 69 73 20 6d 61 79 20 73 65 65 6d 20 77 72 6f 6e 67 20 62 75 74 20 69 74 20 75 73 | s..This.may.seem.wrong.but.it.us |
| f5f40 | 75 61 6c 6c 79 20 6d 61 6b 65 73 20 73 65 6e 73 65 2c 20 62 65 63 61 75 73 65 20 69 74 20 69 6e | ually.makes.sense,.because.it.in |
| f5f60 | 63 72 65 61 73 65 73 20 74 68 65 20 63 68 61 6e 63 65 20 6f 66 20 73 75 63 63 65 73 73 66 75 6c | creases.the.chance.of.successful |
| f5f80 | 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6f 6e 2e 20 49 50 20 61 64 64 72 65 73 73 65 73 20 61 72 65 | .communication..IP.addresses.are |
| f5fa0 | 20 6f 77 6e 65 64 20 62 79 20 74 68 65 20 63 6f 6d 70 6c 65 74 65 20 68 6f 73 74 20 6f 6e 20 4c | .owned.by.the.complete.host.on.L |
| f5fc0 | 69 6e 75 78 2c 20 6e 6f 74 20 62 79 20 70 61 72 74 69 63 75 6c 61 72 20 69 6e 74 65 72 66 61 63 | inux,.not.by.particular.interfac |
| f5fe0 | 65 73 2e 20 4f 6e 6c 79 20 66 6f 72 20 6d 6f 72 65 20 63 6f 6d 70 6c 65 78 20 73 65 74 75 70 73 | es..Only.for.more.complex.setups |
| f6000 | 20 6c 69 6b 65 20 6c 6f 61 64 2d 62 61 6c 61 6e 63 69 6e 67 2c 20 64 6f 65 73 20 74 68 69 73 20 | .like.load-balancing,.does.this. |
| f6020 | 62 65 68 61 76 69 6f 75 72 20 63 61 75 73 65 20 70 72 6f 62 6c 65 6d 73 2e 00 49 66 20 73 65 74 | behaviour.cause.problems..If.set |
| f6040 | 20 74 6f 20 61 6e 20 65 6d 70 74 79 20 73 74 72 69 6e 67 2c 20 74 68 65 20 6c 61 62 65 6c 20 77 | .to.an.empty.string,.the.label.w |
| f6060 | 69 6c 6c 20 6e 6f 74 20 62 65 20 61 64 64 65 64 2e 20 54 68 69 73 20 69 73 20 4e 4f 54 20 72 65 | ill.not.be.added..This.is.NOT.re |
| f6080 | 63 6f 6d 6d 65 6e 64 65 64 2c 20 61 73 20 69 74 20 6d 61 6b 65 73 20 69 74 20 69 6d 70 6f 73 73 | commended,.as.it.makes.it.imposs |
| f60a0 | 69 62 6c 65 20 74 6f 20 64 69 66 66 65 72 65 6e 74 69 61 74 65 20 62 65 74 77 65 65 6e 20 6d 75 | ible.to.differentiate.between.mu |
| f60c0 | 6c 74 69 70 6c 65 20 6d 65 74 72 69 63 73 2e 00 49 66 20 73 65 74 20 74 6f 20 65 6e 61 62 6c 65 | ltiple.metrics..If.set.to.enable |
| f60e0 | 2c 20 6f 70 65 6e 76 70 6e 2d 6f 74 70 20 77 69 6c 6c 20 65 78 70 65 63 74 20 70 61 73 73 77 6f | ,.openvpn-otp.will.expect.passwo |
| f6100 | 72 64 20 61 73 20 72 65 73 75 6c 74 20 6f 66 20 63 68 61 6c 6c 65 6e 67 65 2f 20 72 65 73 70 6f | rd.as.result.of.challenge/.respo |
| f6120 | 6e 73 65 20 70 72 6f 74 6f 63 6f 6c 2e 00 49 66 20 73 65 74 2c 20 49 50 76 34 20 64 69 72 65 63 | nse.protocol..If.set,.IPv4.direc |
| f6140 | 74 65 64 20 62 72 6f 61 64 63 61 73 74 20 66 6f 72 77 61 72 64 69 6e 67 20 77 69 6c 6c 20 62 65 | ted.broadcast.forwarding.will.be |
| f6160 | 20 63 6f 6d 70 6c 65 74 65 6c 79 20 64 69 73 61 62 6c 65 64 20 72 65 67 61 72 64 6c 65 73 73 20 | .completely.disabled.regardless. |
| f6180 | 6f 66 20 77 68 65 74 68 65 72 20 70 65 72 2d 69 6e 74 65 72 66 61 63 65 20 64 69 72 65 63 74 65 | of.whether.per-interface.directe |
| f61a0 | 64 20 62 72 6f 61 64 63 61 73 74 20 66 6f 72 77 61 72 64 69 6e 67 20 69 73 20 65 6e 61 62 6c 65 | d.broadcast.forwarding.is.enable |
| f61c0 | 64 20 6f 72 20 6e 6f 74 2e 00 49 66 20 73 65 74 2c 20 74 68 65 20 64 6f 6d 61 69 6e 20 70 61 72 | d.or.not..If.set,.the.domain.par |
| f61e0 | 74 20 6f 66 20 74 68 65 20 68 6f 73 74 6e 61 6d 65 20 69 73 20 61 6c 77 61 79 73 20 73 65 6e 74 | t.of.the.hostname.is.always.sent |
| f6200 | 2c 20 65 76 65 6e 20 77 69 74 68 69 6e 20 74 68 65 20 73 61 6d 65 20 64 6f 6d 61 69 6e 20 61 73 | ,.even.within.the.same.domain.as |
| f6220 | 20 74 68 65 20 72 65 63 65 69 76 69 6e 67 20 73 79 73 74 65 6d 2e 00 49 66 20 73 65 74 2c 20 74 | .the.receiving.system..If.set,.t |
| f6240 | 68 65 20 72 6f 75 74 65 72 20 77 69 6c 6c 20 6e 6f 20 6c 6f 6e 67 65 72 20 73 65 6e 64 20 70 65 | he.router.will.no.longer.send.pe |
| f6260 | 72 69 6f 64 69 63 20 72 6f 75 74 65 72 20 61 64 76 65 72 74 69 73 65 6d 65 6e 74 73 20 61 6e 64 | riodic.router.advertisements.and |
| f6280 | 20 77 69 6c 6c 20 6e 6f 74 20 72 65 73 70 6f 6e 64 20 74 6f 20 72 6f 75 74 65 72 20 73 6f 6c 69 | .will.not.respond.to.router.soli |
| f62a0 | 63 69 74 61 74 69 6f 6e 73 2e 00 49 66 20 73 75 66 66 69 78 20 69 73 20 6f 6d 69 74 74 65 64 2c | citations..If.suffix.is.omitted, |
| f62c0 | 20 6d 69 6e 75 74 65 73 20 61 72 65 20 69 6d 70 6c 69 65 64 2e 00 49 66 20 74 68 65 20 3a 63 66 | .minutes.are.implied..If.the.:cf |
| f62e0 | 67 63 6d 64 3a 60 6e 6f 2d 70 72 65 70 65 6e 64 60 20 61 74 74 72 69 62 75 74 65 20 69 73 20 73 | gcmd:`no-prepend`.attribute.is.s |
| f6300 | 70 65 63 69 66 69 65 64 2c 20 74 68 65 6e 20 74 68 65 20 73 75 70 70 6c 69 65 64 20 6c 6f 63 61 | pecified,.then.the.supplied.loca |
| f6320 | 6c 2d 61 73 20 69 73 20 6e 6f 74 20 70 72 65 70 65 6e 64 65 64 20 74 6f 20 74 68 65 20 72 65 63 | l-as.is.not.prepended.to.the.rec |
| f6340 | 65 69 76 65 64 20 41 53 5f 50 41 54 48 2e 00 49 66 20 74 68 65 20 3a 63 66 67 63 6d 64 3a 60 72 | eived.AS_PATH..If.the.:cfgcmd:`r |
| f6360 | 65 70 6c 61 63 65 2d 61 73 60 20 61 74 74 72 69 62 75 74 65 20 69 73 20 73 70 65 63 69 66 69 65 | eplace-as`.attribute.is.specifie |
| f6380 | 64 2c 20 74 68 65 6e 20 6f 6e 6c 79 20 74 68 65 20 73 75 70 70 6c 69 65 64 20 6c 6f 63 61 6c 2d | d,.then.only.the.supplied.local- |
| f63a0 | 61 73 20 69 73 20 70 72 65 70 65 6e 64 65 64 20 74 6f 20 74 68 65 20 41 53 5f 50 41 54 48 20 77 | as.is.prepended.to.the.AS_PATH.w |
| f63c0 | 68 65 6e 20 74 72 61 6e 73 6d 69 74 74 69 6e 67 20 6c 6f 63 61 6c 2d 72 6f 75 74 65 20 75 70 64 | hen.transmitting.local-route.upd |
| f63e0 | 61 74 65 73 20 74 6f 20 74 68 69 73 20 70 65 65 72 2e 00 49 66 20 74 68 65 20 41 52 50 20 74 61 | ates.to.this.peer..If.the.ARP.ta |
| f6400 | 62 6c 65 20 61 6c 72 65 61 64 79 20 63 6f 6e 74 61 69 6e 73 20 74 68 65 20 49 50 20 61 64 64 72 | ble.already.contains.the.IP.addr |
| f6420 | 65 73 73 20 6f 66 20 74 68 65 20 67 72 61 74 75 69 74 6f 75 73 20 61 72 70 20 66 72 61 6d 65 2c | ess.of.the.gratuitous.arp.frame, |
| f6440 | 20 74 68 65 20 61 72 70 20 74 61 62 6c 65 20 77 69 6c 6c 20 62 65 20 75 70 64 61 74 65 64 20 72 | .the.arp.table.will.be.updated.r |
| f6460 | 65 67 61 72 64 6c 65 73 73 20 69 66 20 74 68 69 73 20 73 65 74 74 69 6e 67 20 69 73 20 6f 6e 20 | egardless.if.this.setting.is.on. |
| f6480 | 6f 72 20 6f 66 66 2e 00 49 66 20 74 68 65 20 41 53 2d 50 61 74 68 20 66 6f 72 20 74 68 65 20 72 | or.off..If.the.AS-Path.for.the.r |
| f64a0 | 6f 75 74 65 20 68 61 73 20 61 20 70 72 69 76 61 74 65 20 41 53 4e 20 62 65 74 77 65 65 6e 20 70 | oute.has.a.private.ASN.between.p |
| f64c0 | 75 62 6c 69 63 20 41 53 4e 73 2c 20 69 74 20 69 73 20 61 73 73 75 6d 65 64 20 74 68 61 74 20 74 | ublic.ASNs,.it.is.assumed.that.t |
| f64e0 | 68 69 73 20 69 73 20 61 20 64 65 73 69 67 6e 20 63 68 6f 69 63 65 2c 20 61 6e 64 20 74 68 65 20 | his.is.a.design.choice,.and.the. |
| f6500 | 70 72 69 76 61 74 65 20 41 53 4e 20 69 73 20 6e 6f 74 20 72 65 6d 6f 76 65 64 2e 00 49 66 20 74 | private.ASN.is.not.removed..If.t |
| f6520 | 68 65 20 41 53 2d 50 61 74 68 20 66 6f 72 20 74 68 65 20 72 6f 75 74 65 20 68 61 73 20 6f 6e 6c | he.AS-Path.for.the.route.has.onl |
| f6540 | 79 20 70 72 69 76 61 74 65 20 41 53 4e 73 2c 20 74 68 65 20 70 72 69 76 61 74 65 20 41 53 4e 73 | y.private.ASNs,.the.private.ASNs |
| f6560 | 20 61 72 65 20 72 65 6d 6f 76 65 64 2e 00 49 66 20 74 68 65 20 49 50 20 70 72 65 66 69 78 20 6d | .are.removed..If.the.IP.prefix.m |
| f6580 | 61 73 6b 20 69 73 20 70 72 65 73 65 6e 74 2c 20 69 74 20 64 69 72 65 63 74 73 20 6f 70 65 6e 6e | ask.is.present,.it.directs.openn |
| f65a0 | 68 72 70 20 74 6f 20 75 73 65 20 74 68 69 73 20 70 65 65 72 20 61 73 20 61 20 6e 65 78 74 20 68 | hrp.to.use.this.peer.as.a.next.h |
| f65c0 | 6f 70 20 73 65 72 76 65 72 20 77 68 65 6e 20 73 65 6e 64 69 6e 67 20 52 65 73 6f 6c 75 74 69 6f | op.server.when.sending.Resolutio |
| f65e0 | 6e 20 52 65 71 75 65 73 74 73 20 6d 61 74 63 68 69 6e 67 20 74 68 69 73 20 73 75 62 6e 65 74 2e | n.Requests.matching.this.subnet. |
| f6600 | 00 49 66 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 73 65 6e 64 73 20 74 68 65 20 | .If.the.RADIUS.server.sends.the. |
| f6620 | 61 74 74 72 69 62 75 74 65 20 60 60 44 65 6c 65 67 61 74 65 64 2d 49 50 76 36 2d 50 72 65 66 69 | attribute.``Delegated-IPv6-Prefi |
| f6640 | 78 2d 50 6f 6f 6c 60 60 2c 20 49 50 76 36 20 64 65 6c 65 67 61 74 69 6f 6e 20 70 65 66 69 78 20 | x-Pool``,.IPv6.delegation.pefix. |
| f6660 | 77 69 6c 6c 20 62 65 20 61 6c 6c 6f 63 61 74 65 64 20 66 72 6f 6d 20 61 20 70 72 65 64 65 66 69 | will.be.allocated.from.a.predefi |
| f6680 | 6e 65 64 20 49 50 76 36 20 70 6f 6f 6c 20 60 60 64 65 6c 65 67 61 74 65 60 60 20 77 68 6f 73 65 | ned.IPv6.pool.``delegate``.whose |
| f66a0 | 20 6e 61 6d 65 20 65 71 75 61 6c 73 20 74 68 65 20 61 74 74 72 69 62 75 74 65 20 76 61 6c 75 65 | .name.equals.the.attribute.value |
| f66c0 | 2e 00 49 66 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 73 65 6e 64 73 20 74 68 65 | ..If.the.RADIUS.server.sends.the |
| f66e0 | 20 61 74 74 72 69 62 75 74 65 20 60 60 44 65 6c 65 67 61 74 65 64 2d 49 50 76 36 2d 50 72 65 66 | .attribute.``Delegated-IPv6-Pref |
| f6700 | 69 78 2d 50 6f 6f 6c 60 60 2c 20 61 6e 20 49 50 76 36 20 64 65 6c 65 67 61 74 69 6f 6e 20 70 72 | ix-Pool``,.an.IPv6.delegation.pr |
| f6720 | 65 66 69 78 20 77 69 6c 6c 20 62 65 20 61 6c 6c 6f 63 61 74 65 64 20 66 72 6f 6d 20 61 20 70 72 | efix.will.be.allocated.from.a.pr |
| f6740 | 65 64 65 66 69 6e 65 64 20 49 50 76 36 20 70 6f 6f 6c 20 60 60 64 65 6c 65 67 61 74 65 60 60 20 | edefined.IPv6.pool.``delegate``. |
| f6760 | 77 68 6f 73 65 20 6e 61 6d 65 20 65 71 75 61 6c 73 20 74 68 65 20 61 74 74 72 69 62 75 74 65 20 | whose.name.equals.the.attribute. |
| f6780 | 76 61 6c 75 65 2e 00 49 66 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 73 65 6e 64 | value..If.the.RADIUS.server.send |
| f67a0 | 73 20 74 68 65 20 61 74 74 72 69 62 75 74 65 20 60 60 46 72 61 6d 65 64 2d 49 50 2d 41 64 64 72 | s.the.attribute.``Framed-IP-Addr |
| f67c0 | 65 73 73 60 60 20 74 68 65 6e 20 74 68 69 73 20 49 50 20 61 64 64 72 65 73 73 20 77 69 6c 6c 20 | ess``.then.this.IP.address.will. |
| f67e0 | 62 65 20 61 6c 6c 6f 63 61 74 65 64 20 74 6f 20 74 68 65 20 63 6c 69 65 6e 74 20 61 6e 64 20 74 | be.allocated.to.the.client.and.t |
| f6800 | 68 65 20 6f 70 74 69 6f 6e 20 60 60 64 65 66 61 75 6c 74 2d 70 6f 6f 6c 60 60 20 77 69 74 68 69 | he.option.``default-pool``.withi |
| f6820 | 6e 20 74 68 65 20 43 4c 49 20 63 6f 6e 66 69 67 20 69 73 20 62 65 69 6e 67 20 69 67 6e 6f 72 65 | n.the.CLI.config.is.being.ignore |
| f6840 | 64 2e 00 49 66 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 73 65 6e 64 73 20 74 68 | d..If.the.RADIUS.server.sends.th |
| f6860 | 65 20 61 74 74 72 69 62 75 74 65 20 60 60 46 72 61 6d 65 64 2d 49 50 2d 41 64 64 72 65 73 73 60 | e.attribute.``Framed-IP-Address` |
| f6880 | 60 20 74 68 65 6e 20 74 68 69 73 20 49 50 20 61 64 64 72 65 73 73 20 77 69 6c 6c 20 62 65 20 61 | `.then.this.IP.address.will.be.a |
| f68a0 | 6c 6c 6f 63 61 74 65 64 20 74 6f 20 74 68 65 20 63 6c 69 65 6e 74 20 61 6e 64 20 74 68 65 20 6f | llocated.to.the.client.and.the.o |
| f68c0 | 70 74 69 6f 6e 20 60 60 64 65 66 61 75 6c 74 2d 70 6f 6f 6c 60 60 20 77 69 74 68 69 6e 20 74 68 | ption.``default-pool``.within.th |
| f68e0 | 65 20 43 4c 49 20 63 6f 6e 66 69 67 20 77 69 6c 6c 20 62 65 20 69 67 6e 6f 72 65 64 2e 00 49 66 | e.CLI.config.will.be.ignored..If |
| f6900 | 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 73 65 6e 64 73 20 74 68 65 20 61 74 74 | .the.RADIUS.server.sends.the.att |
| f6920 | 72 69 62 75 74 65 20 60 60 46 72 61 6d 65 64 2d 49 50 2d 41 64 64 72 65 73 73 60 60 20 74 68 65 | ribute.``Framed-IP-Address``.the |
| f6940 | 6e 20 74 68 69 73 20 49 50 20 61 64 64 72 65 73 73 20 77 69 6c 6c 20 62 65 20 61 6c 6c 6f 63 61 | n.this.IP.address.will.be.alloca |
| f6960 | 74 65 64 20 74 6f 20 74 68 65 20 63 6c 69 65 6e 74 20 61 6e 64 20 74 68 65 20 6f 70 74 69 6f 6e | ted.to.the.client.and.the.option |
| f6980 | 20 60 60 64 65 66 61 75 6c 74 2d 70 6f 6f 6c 60 60 20 77 69 74 68 69 6e 20 74 68 65 20 43 4c 49 | .``default-pool``.within.the.CLI |
| f69a0 | 20 63 6f 6e 66 69 67 20 77 69 6c 6c 20 62 65 69 6e 67 20 69 67 6e 6f 72 65 64 2e 00 49 66 20 74 | .config.will.being.ignored..If.t |
| f69c0 | 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 73 65 6e 64 73 20 74 68 65 20 61 74 74 72 69 | he.RADIUS.server.sends.the.attri |
| f69e0 | 62 75 74 65 20 60 60 46 72 61 6d 65 64 2d 49 50 2d 41 64 64 72 65 73 73 60 60 20 74 68 65 6e 20 | bute.``Framed-IP-Address``.then. |
| f6a00 | 74 68 69 73 20 49 50 20 61 64 64 72 65 73 73 20 77 69 6c 6c 20 62 65 20 61 6c 6c 6f 63 61 74 65 | this.IP.address.will.be.allocate |
| f6a20 | 64 20 74 6f 20 74 68 65 20 63 6c 69 65 6e 74 20 61 6e 64 20 74 68 65 20 6f 70 74 69 6f 6e 20 69 | d.to.the.client.and.the.option.i |
| f6a40 | 70 2d 70 6f 6f 6c 20 77 69 74 68 69 6e 20 74 68 65 20 43 4c 49 20 63 6f 6e 66 69 67 20 69 73 20 | p-pool.within.the.CLI.config.is. |
| f6a60 | 62 65 69 6e 67 20 69 67 6e 6f 72 65 64 2e 00 49 66 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 | being.ignored..If.the.RADIUS.ser |
| f6a80 | 76 65 72 20 73 65 6e 64 73 20 74 68 65 20 61 74 74 72 69 62 75 74 65 20 60 60 46 72 61 6d 65 64 | ver.sends.the.attribute.``Framed |
| f6aa0 | 2d 50 6f 6f 6c 60 60 2c 20 49 50 20 61 64 64 72 65 73 73 20 77 69 6c 6c 20 62 65 20 61 6c 6c 6f | -Pool``,.IP.address.will.be.allo |
| f6ac0 | 63 61 74 65 64 20 66 72 6f 6d 20 61 20 70 72 65 64 65 66 69 6e 65 64 20 49 50 20 70 6f 6f 6c 20 | cated.from.a.predefined.IP.pool. |
| f6ae0 | 77 68 6f 73 65 20 6e 61 6d 65 20 65 71 75 61 6c 73 20 74 68 65 20 61 74 74 72 69 62 75 74 65 20 | whose.name.equals.the.attribute. |
| f6b00 | 76 61 6c 75 65 2e 00 49 66 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 73 65 6e 64 | value..If.the.RADIUS.server.send |
| f6b20 | 73 20 74 68 65 20 61 74 74 72 69 62 75 74 65 20 60 60 46 72 61 6d 65 64 2d 50 6f 6f 6c 60 60 2c | s.the.attribute.``Framed-Pool``, |
| f6b40 | 20 74 68 65 6e 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 77 69 6c 6c 20 62 65 20 61 6c 6c | .then.the.IP.address.will.be.all |
| f6b60 | 6f 63 61 74 65 64 20 66 72 6f 6d 20 61 20 70 72 65 64 65 66 69 6e 65 64 20 49 50 20 70 6f 6f 6c | ocated.from.a.predefined.IP.pool |
| f6b80 | 20 77 68 6f 73 65 20 6e 61 6d 65 20 65 71 75 61 6c 73 20 74 68 65 20 61 74 74 72 69 62 75 74 65 | .whose.name.equals.the.attribute |
| f6ba0 | 20 76 61 6c 75 65 2e 00 49 66 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 73 65 6e | .value..If.the.RADIUS.server.sen |
| f6bc0 | 64 73 20 74 68 65 20 61 74 74 72 69 62 75 74 65 20 60 60 53 74 61 74 65 66 75 6c 2d 49 50 76 36 | ds.the.attribute.``Stateful-IPv6 |
| f6be0 | 2d 41 64 64 72 65 73 73 2d 50 6f 6f 6c 60 60 2c 20 49 50 76 36 20 61 64 64 72 65 73 73 20 77 69 | -Address-Pool``,.IPv6.address.wi |
| f6c00 | 6c 6c 20 62 65 20 61 6c 6c 6f 63 61 74 65 64 20 66 72 6f 6d 20 61 20 70 72 65 64 65 66 69 6e 65 | ll.be.allocated.from.a.predefine |
| f6c20 | 64 20 49 50 76 36 20 70 6f 6f 6c 20 60 60 70 72 65 66 69 78 60 60 20 77 68 6f 73 65 20 6e 61 6d | d.IPv6.pool.``prefix``.whose.nam |
| f6c40 | 65 20 65 71 75 61 6c 73 20 74 68 65 20 61 74 74 72 69 62 75 74 65 20 76 61 6c 75 65 2e 00 49 66 | e.equals.the.attribute.value..If |
| f6c60 | 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 73 65 6e 64 73 20 74 68 65 20 61 74 74 | .the.RADIUS.server.sends.the.att |
| f6c80 | 72 69 62 75 74 65 20 60 60 53 74 61 74 65 66 75 6c 2d 49 50 76 36 2d 41 64 64 72 65 73 73 2d 50 | ribute.``Stateful-IPv6-Address-P |
| f6ca0 | 6f 6f 6c 60 60 2c 20 74 68 65 20 49 50 76 36 20 61 64 64 72 65 73 73 20 77 69 6c 6c 20 62 65 20 | ool``,.the.IPv6.address.will.be. |
| f6cc0 | 61 6c 6c 6f 63 61 74 65 64 20 66 72 6f 6d 20 61 20 70 72 65 64 65 66 69 6e 65 64 20 49 50 76 36 | allocated.from.a.predefined.IPv6 |
| f6ce0 | 20 70 6f 6f 6c 20 60 60 70 72 65 66 69 78 60 60 20 77 68 6f 73 65 20 6e 61 6d 65 20 65 71 75 61 | .pool.``prefix``.whose.name.equa |
| f6d00 | 6c 73 20 74 68 65 20 61 74 74 72 69 62 75 74 65 20 76 61 6c 75 65 2e 00 49 66 20 74 68 65 20 52 | ls.the.attribute.value..If.the.R |
| f6d20 | 41 44 49 55 53 20 73 65 72 76 65 72 20 75 73 65 73 20 74 68 65 20 61 74 74 72 69 62 75 74 65 20 | ADIUS.server.uses.the.attribute. |
| f6d40 | 60 60 4e 41 53 2d 50 6f 72 74 2d 49 64 60 60 2c 20 70 70 70 20 74 75 6e 6e 65 6c 73 20 77 69 6c | ``NAS-Port-Id``,.ppp.tunnels.wil |
| f6d60 | 6c 20 62 65 20 72 65 6e 61 6d 65 64 2e 00 49 66 20 74 68 65 20 61 76 65 72 61 67 65 20 71 75 65 | l.be.renamed..If.the.average.que |
| f6d80 | 75 65 20 73 69 7a 65 20 69 73 20 6c 6f 77 65 72 20 74 68 61 6e 20 74 68 65 20 2a 2a 6d 69 6e 2d | ue.size.is.lower.than.the.**min- |
| f6da0 | 74 68 72 65 73 68 6f 6c 64 2a 2a 2c 20 61 6e 20 61 72 72 69 76 69 6e 67 20 70 61 63 6b 65 74 20 | threshold**,.an.arriving.packet. |
| f6dc0 | 77 69 6c 6c 20 62 65 20 70 6c 61 63 65 64 20 69 6e 20 74 68 65 20 71 75 65 75 65 2e 00 49 66 20 | will.be.placed.in.the.queue..If. |
| f6de0 | 74 68 65 20 63 75 72 72 65 6e 74 20 71 75 65 75 65 20 73 69 7a 65 20 69 73 20 6c 61 72 67 65 72 | the.current.queue.size.is.larger |
| f6e00 | 20 74 68 61 6e 20 2a 2a 71 75 65 75 65 2d 6c 69 6d 69 74 2a 2a 2c 20 74 68 65 6e 20 70 61 63 6b | .than.**queue-limit**,.then.pack |
| f6e20 | 65 74 73 20 77 69 6c 6c 20 62 65 20 64 72 6f 70 70 65 64 2e 20 54 68 65 20 61 76 65 72 61 67 65 | ets.will.be.dropped..The.average |
| f6e40 | 20 71 75 65 75 65 20 73 69 7a 65 20 64 65 70 65 6e 64 73 20 6f 6e 20 69 74 73 20 66 6f 72 6d 65 | .queue.size.depends.on.its.forme |
| f6e60 | 72 20 61 76 65 72 61 67 65 20 73 69 7a 65 20 61 6e 64 20 69 74 73 20 63 75 72 72 65 6e 74 20 6f | r.average.size.and.its.current.o |
| f6e80 | 6e 65 2e 00 49 66 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 77 68 65 72 65 20 74 68 65 20 70 | ne..If.the.interface.where.the.p |
| f6ea0 | 61 63 6b 65 74 20 77 61 73 20 72 65 63 65 69 76 65 64 20 69 73 20 70 61 72 74 20 6f 66 20 61 20 | acket.was.received.is.part.of.a. |
| f6ec0 | 62 72 69 64 67 65 2c 20 74 68 65 6e 20 70 61 63 6b 65 74 69 73 20 70 72 6f 63 65 73 73 65 64 20 | bridge,.then.packetis.processed. |
| f6ee0 | 61 74 20 74 68 65 20 2a 2a 42 72 69 64 67 65 20 4c 61 79 65 72 2a 2a 2c 20 77 68 69 63 68 20 63 | at.the.**Bridge.Layer**,.which.c |
| f6f00 | 6f 6e 74 61 69 6e 73 20 61 20 62 61 73 69 63 20 73 65 74 75 70 20 66 6f 72 20 62 72 69 64 67 65 | ontains.a.basic.setup.for.bridge |
| f6f20 | 20 66 69 6c 74 65 72 69 6e 67 3a 00 49 66 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 77 68 65 | .filtering:.If.the.interface.whe |
| f6f40 | 72 65 20 74 68 65 20 70 61 63 6b 65 74 20 77 61 73 20 72 65 63 65 69 76 65 64 20 69 73 20 70 61 | re.the.packet.was.received.is.pa |
| f6f60 | 72 74 20 6f 66 20 61 20 62 72 69 64 67 65 2c 20 74 68 65 6e 20 74 68 65 20 70 61 63 6b 65 74 20 | rt.of.a.bridge,.then.the.packet. |
| f6f80 | 69 73 20 70 72 6f 63 65 73 73 65 64 20 61 74 20 74 68 65 20 2a 2a 42 72 69 64 67 65 20 4c 61 79 | is.processed.at.the.**Bridge.Lay |
| f6fa0 | 65 72 2a 2a 2c 20 77 68 69 63 68 20 63 6f 6e 74 61 69 6e 73 20 61 20 62 61 73 69 63 20 73 65 74 | er**,.which.contains.a.basic.set |
| f6fc0 | 75 70 20 66 6f 72 20 62 72 69 64 67 65 20 66 69 6c 74 65 72 69 6e 67 3a 00 49 66 20 74 68 65 20 | up.for.bridge.filtering:.If.the. |
| f6fe0 | 69 6e 74 65 72 66 61 63 65 20 77 68 65 72 65 20 74 68 65 20 70 61 63 6b 65 74 20 77 61 73 20 72 | interface.where.the.packet.was.r |
| f7000 | 65 63 65 69 76 65 64 20 69 73 20 70 61 72 74 20 6f 66 20 61 20 62 72 69 64 67 65 2c 20 74 68 65 | eceived.is.part.of.a.bridge,.the |
| f7020 | 6e 20 74 68 65 20 70 61 63 6b 65 74 20 69 73 20 70 72 6f 63 65 73 73 65 64 20 61 74 20 74 68 65 | n.the.packet.is.processed.at.the |
| f7040 | 20 2a 2a 42 72 69 64 67 65 20 4c 61 79 65 72 2a 2a 3a 00 49 66 20 74 68 65 20 69 6e 74 65 72 66 | .**Bridge.Layer**:.If.the.interf |
| f7060 | 61 63 65 20 77 68 65 72 65 20 74 68 65 20 70 61 63 6b 65 74 20 77 61 73 20 72 65 63 65 69 76 65 | ace.where.the.packet.was.receive |
| f7080 | 64 20 69 73 6e 27 74 20 70 61 72 74 20 6f 66 20 61 20 62 72 69 64 67 65 2c 20 74 68 65 6e 20 70 | d.isn't.part.of.a.bridge,.then.p |
| f70a0 | 61 63 6b 65 74 20 69 73 20 70 72 6f 63 65 73 73 65 64 20 61 74 20 74 68 65 20 2a 2a 49 50 20 4c | acket.is.processed.at.the.**IP.L |
| f70c0 | 61 79 65 72 2a 2a 3a 00 49 66 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 77 68 65 72 65 20 74 | ayer**:.If.the.interface.where.t |
| f70e0 | 68 65 20 70 61 63 6b 65 74 20 77 61 73 20 72 65 63 65 69 76 65 64 20 69 73 6e 27 74 20 70 61 72 | he.packet.was.received.isn't.par |
| f7100 | 74 20 6f 66 20 61 20 62 72 69 64 67 65 2c 20 74 68 65 6e 20 70 61 63 6b 65 74 69 73 20 70 72 6f | t.of.a.bridge,.then.packetis.pro |
| f7120 | 63 65 73 73 65 64 20 61 74 20 74 68 65 20 2a 2a 49 50 20 4c 61 79 65 72 2a 2a 3a 00 49 66 20 74 | cessed.at.the.**IP.Layer**:.If.t |
| f7140 | 68 65 20 70 72 6f 74 6f 63 6f 6c 20 69 73 20 49 50 76 36 20 74 68 65 6e 20 74 68 65 20 73 6f 75 | he.protocol.is.IPv6.then.the.sou |
| f7160 | 72 63 65 20 61 6e 64 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 65 73 20 61 72 | rce.and.destination.addresses.ar |
| f7180 | 65 20 66 69 72 73 74 20 68 61 73 68 65 64 20 75 73 69 6e 67 20 69 70 76 36 5f 61 64 64 72 5f 68 | e.first.hashed.using.ipv6_addr_h |
| f71a0 | 61 73 68 2e 00 49 66 20 74 68 65 20 73 74 61 74 69 63 61 6c 6c 79 20 6d 61 70 70 65 64 20 70 65 | ash..If.the.statically.mapped.pe |
| f71c0 | 65 72 20 69 73 20 72 75 6e 6e 69 6e 67 20 43 69 73 63 6f 20 49 4f 53 2c 20 73 70 65 63 69 66 79 | er.is.running.Cisco.IOS,.specify |
| f71e0 | 20 74 68 65 20 63 69 73 63 6f 20 6b 65 79 77 6f 72 64 2e 20 49 74 20 69 73 20 75 73 65 64 20 74 | .the.cisco.keyword..It.is.used.t |
| f7200 | 6f 20 66 69 78 20 73 74 61 74 69 63 61 6c 6c 79 20 74 68 65 20 52 65 67 69 73 74 72 61 74 69 6f | o.fix.statically.the.Registratio |
| f7220 | 6e 20 52 65 71 75 65 73 74 20 49 44 20 73 6f 20 74 68 61 74 20 61 20 6d 61 74 63 68 69 6e 67 20 | n.Request.ID.so.that.a.matching. |
| f7240 | 50 75 72 67 65 20 52 65 71 75 65 73 74 20 63 61 6e 20 62 65 20 73 65 6e 74 20 69 66 20 4e 42 4d | Purge.Request.can.be.sent.if.NBM |
| f7260 | 41 20 61 64 64 72 65 73 73 20 68 61 73 20 63 68 61 6e 67 65 64 2e 20 54 68 69 73 20 69 73 20 74 | A.address.has.changed..This.is.t |
| f7280 | 6f 20 77 6f 72 6b 20 61 72 6f 75 6e 64 20 62 72 6f 6b 65 6e 20 49 4f 53 20 77 68 69 63 68 20 72 | o.work.around.broken.IOS.which.r |
| f72a0 | 65 71 75 69 72 65 73 20 50 75 72 67 65 20 52 65 71 75 65 73 74 20 49 44 20 74 6f 20 6d 61 74 63 | equires.Purge.Request.ID.to.matc |
| f72c0 | 68 20 74 68 65 20 6f 72 69 67 69 6e 61 6c 20 52 65 67 69 73 74 72 61 74 69 6f 6e 20 52 65 71 75 | h.the.original.Registration.Requ |
| f72e0 | 65 73 74 20 49 44 2e 00 49 66 20 74 68 65 20 73 79 73 74 65 6d 20 64 65 74 65 63 74 73 20 61 6e | est.ID..If.the.system.detects.an |
| f7300 | 20 75 6e 63 6f 6e 66 69 67 75 72 65 64 20 77 69 72 65 6c 65 73 73 20 64 65 76 69 63 65 2c 20 69 | .unconfigured.wireless.device,.i |
| f7320 | 74 20 77 69 6c 6c 20 62 65 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 61 64 64 65 64 20 74 68 | t.will.be.automatically.added.th |
| f7340 | 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 72 65 65 2c 20 73 70 65 63 69 66 79 69 6e 67 | e.configuration.tree,.specifying |
| f7360 | 20 61 6e 79 20 64 65 74 65 63 74 65 64 20 73 65 74 74 69 6e 67 73 20 28 66 6f 72 20 65 78 61 6d | .any.detected.settings.(for.exam |
| f7380 | 70 6c 65 2c 20 69 74 73 20 4d 41 43 20 61 64 64 72 65 73 73 29 20 61 6e 64 20 63 6f 6e 66 69 67 | ple,.its.MAC.address).and.config |
| f73a0 | 75 72 65 64 20 74 6f 20 72 75 6e 20 69 6e 20 6d 6f 6e 69 74 6f 72 20 6d 6f 64 65 2e 00 49 66 20 | ured.to.run.in.monitor.mode..If. |
| f73c0 | 74 68 65 20 74 61 62 6c 65 20 69 73 20 65 6d 70 74 79 20 61 6e 64 20 79 6f 75 20 68 61 76 65 20 | the.table.is.empty.and.you.have. |
| f73e0 | 61 20 77 61 72 6e 69 6e 67 20 6d 65 73 73 61 67 65 2c 20 69 74 20 6d 65 61 6e 73 20 63 6f 6e 6e | a.warning.message,.it.means.conn |
| f7400 | 74 72 61 63 6b 20 69 73 20 6e 6f 74 20 65 6e 61 62 6c 65 64 2e 20 54 6f 20 65 6e 61 62 6c 65 20 | track.is.not.enabled..To.enable. |
| f7420 | 63 6f 6e 6e 74 72 61 63 6b 2c 20 6a 75 73 74 20 63 72 65 61 74 65 20 61 20 4e 41 54 20 6f 72 20 | conntrack,.just.create.a.NAT.or. |
| f7440 | 61 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 2e 20 3a 63 66 67 63 6d 64 3a 60 73 65 74 20 66 69 | a.firewall.rule..:cfgcmd:`set.fi |
| f7460 | 72 65 77 61 6c 6c 20 73 74 61 74 65 2d 70 6f 6c 69 63 79 20 65 73 74 61 62 6c 69 73 68 65 64 20 | rewall.state-policy.established. |
| f7480 | 61 63 74 69 6f 6e 20 61 63 63 65 70 74 60 00 49 66 20 74 68 65 72 65 20 61 72 65 20 6e 6f 20 66 | action.accept`.If.there.are.no.f |
| f74a0 | 72 65 65 20 61 64 64 72 65 73 73 65 73 20 62 75 74 20 74 68 65 72 65 20 61 72 65 20 61 62 61 6e | ree.addresses.but.there.are.aban |
| f74c0 | 64 6f 6e 65 64 20 49 50 20 61 64 64 72 65 73 73 65 73 2c 20 74 68 65 20 44 48 43 50 20 73 65 72 | doned.IP.addresses,.the.DHCP.ser |
| f74e0 | 76 65 72 20 77 69 6c 6c 20 61 74 74 65 6d 70 74 20 74 6f 20 72 65 63 6c 61 69 6d 20 61 6e 20 61 | ver.will.attempt.to.reclaim.an.a |
| f7500 | 62 61 6e 64 6f 6e 65 64 20 49 50 20 61 64 64 72 65 73 73 20 72 65 67 61 72 64 6c 65 73 73 20 6f | bandoned.IP.address.regardless.o |
| f7520 | 66 20 74 68 65 20 76 61 6c 75 65 20 6f 66 20 61 62 61 6e 64 6f 6e 2d 6c 65 61 73 65 2d 74 69 6d | f.the.value.of.abandon-lease-tim |
| f7540 | 65 2e 00 49 66 20 74 68 65 72 65 20 69 73 20 53 4e 41 54 20 72 75 6c 65 73 20 6f 6e 20 65 74 68 | e..If.there.is.SNAT.rules.on.eth |
| f7560 | 31 2c 20 6e 65 65 64 20 74 6f 20 61 64 64 20 65 78 63 6c 75 64 65 20 72 75 6c 65 00 49 66 20 74 | 1,.need.to.add.exclude.rule.If.t |
| f7580 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 69 6e 76 6f 6b 65 64 20 66 72 6f 6d 20 63 6f 6e 66 | his.command.is.invoked.from.conf |
| f75a0 | 69 67 75 72 65 20 6d 6f 64 65 20 77 69 74 68 20 74 68 65 20 60 60 72 75 6e 60 60 20 70 72 65 66 | igure.mode.with.the.``run``.pref |
| f75c0 | 69 78 20 74 68 65 20 6b 65 79 20 69 73 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 69 6e 73 74 | ix.the.key.is.automatically.inst |
| f75e0 | 61 6c 6c 65 64 20 74 6f 20 74 68 65 20 61 70 70 72 6f 70 72 69 61 74 65 20 69 6e 74 65 72 66 61 | alled.to.the.appropriate.interfa |
| f7600 | 63 65 3a 00 49 66 20 74 68 69 73 20 69 73 20 73 65 74 20 74 68 65 20 72 65 6c 61 79 20 61 67 65 | ce:.If.this.is.set.the.relay.age |
| f7620 | 6e 74 20 77 69 6c 6c 20 69 6e 73 65 72 74 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 49 44 2e | nt.will.insert.the.interface.ID. |
| f7640 | 20 54 68 69 73 20 6f 70 74 69 6f 6e 20 69 73 20 73 65 74 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c | .This.option.is.set.automaticall |
| f7660 | 79 20 69 66 20 6d 6f 72 65 20 74 68 61 6e 20 6f 6e 65 20 6c 69 73 74 65 6e 69 6e 67 20 69 6e 74 | y.if.more.than.one.listening.int |
| f7680 | 65 72 66 61 63 65 73 20 61 72 65 20 69 6e 20 75 73 65 2e 00 49 66 20 74 68 69 73 20 6f 70 74 69 | erfaces.are.in.use..If.this.opti |
| f76a0 | 6f 6e 20 69 73 20 65 6e 61 62 6c 65 64 2c 20 74 68 65 6e 20 74 68 65 20 61 6c 72 65 61 64 79 2d | on.is.enabled,.then.the.already- |
| f76c0 | 73 65 6c 65 63 74 65 64 20 63 68 65 63 6b 2c 20 77 68 65 72 65 20 61 6c 72 65 61 64 79 20 73 65 | selected.check,.where.already.se |
| f76e0 | 6c 65 63 74 65 64 20 65 42 47 50 20 72 6f 75 74 65 73 20 61 72 65 20 70 72 65 66 65 72 72 65 64 | lected.eBGP.routes.are.preferred |
| f7700 | 2c 20 69 73 20 73 6b 69 70 70 65 64 2e 00 49 66 20 74 68 69 73 20 6f 70 74 69 6f 6e 20 69 73 20 | ,.is.skipped..If.this.option.is. |
| f7720 | 67 69 76 65 6e 2c 20 6f 6e 6c 79 20 53 53 54 50 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 74 6f 20 | given,.only.SSTP.connections.to. |
| f7740 | 74 68 65 20 73 70 65 63 69 66 69 65 64 20 68 6f 73 74 20 61 6e 64 20 77 69 74 68 20 74 68 65 20 | the.specified.host.and.with.the. |
| f7760 | 73 61 6d 65 20 54 4c 53 20 53 4e 49 20 77 69 6c 6c 20 62 65 20 61 6c 6c 6f 77 65 64 2e 00 49 66 | same.TLS.SNI.will.be.allowed..If |
| f7780 | 20 74 68 69 73 20 6f 70 74 69 6f 6e 20 69 73 20 73 70 65 63 69 66 69 65 64 20 61 6e 64 20 69 73 | .this.option.is.specified.and.is |
| f77a0 | 20 67 72 65 61 74 65 72 20 74 68 61 6e 20 30 2c 20 74 68 65 6e 20 74 68 65 20 50 50 50 20 6d 6f | .greater.than.0,.then.the.PPP.mo |
| f77c0 | 64 75 6c 65 20 77 69 6c 6c 20 73 65 6e 64 20 4c 43 50 20 65 63 68 6f 20 72 65 71 75 65 73 74 73 | dule.will.send.LCP.echo.requests |
| f77e0 | 20 65 76 65 72 79 20 60 3c 69 6e 74 65 72 76 61 6c 3e 60 20 73 65 63 6f 6e 64 73 2e 20 44 65 66 | .every.`<interval>`.seconds..Def |
| f7800 | 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 2a 2a 33 30 2a 2a 2e 00 49 66 20 74 68 69 73 20 6f 70 | ault.value.is.**30**..If.this.op |
| f7820 | 74 69 6f 6e 20 69 73 20 73 70 65 63 69 66 69 65 64 20 61 6e 64 20 69 73 20 67 72 65 61 74 65 72 | tion.is.specified.and.is.greater |
| f7840 | 20 74 68 61 6e 20 30 2c 20 74 68 65 6e 20 74 68 65 20 50 50 50 20 6d 6f 64 75 6c 65 20 77 69 6c | .than.0,.then.the.PPP.module.wil |
| f7860 | 6c 20 73 65 6e 64 20 4c 43 50 20 70 69 6e 67 73 20 6f 66 20 74 68 65 20 65 63 68 6f 20 72 65 71 | l.send.LCP.pings.of.the.echo.req |
| f7880 | 75 65 73 74 20 65 76 65 72 79 20 60 3c 69 6e 74 65 72 76 61 6c 3e 60 20 73 65 63 6f 6e 64 73 2e | uest.every.`<interval>`.seconds. |
| f78a0 | 00 49 66 20 74 68 69 73 20 6f 70 74 69 6f 6e 20 69 73 20 73 70 65 63 69 66 69 65 64 20 61 6e 64 | .If.this.option.is.specified.and |
| f78c0 | 20 69 73 20 67 72 65 61 74 65 72 20 74 68 61 6e 20 30 2c 20 74 68 65 6e 20 74 68 65 20 50 50 50 | .is.greater.than.0,.then.the.PPP |
| f78e0 | 20 6d 6f 64 75 6c 65 20 77 69 6c 6c 20 73 65 6e 64 20 4c 43 50 20 70 69 6e 67 73 20 6f 66 20 74 | .module.will.send.LCP.pings.of.t |
| f7900 | 68 65 20 65 63 68 6f 20 72 65 71 75 65 73 74 20 65 76 65 72 79 20 60 3c 69 6e 74 65 72 76 61 6c | he.echo.request.every.`<interval |
| f7920 | 3e 60 20 73 65 63 6f 6e 64 73 2e 20 44 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 2a 2a 33 | >`.seconds..Default.value.is.**3 |
| f7940 | 30 2a 2a 2e 00 49 66 20 74 68 69 73 20 6f 70 74 69 6f 6e 20 69 73 20 75 6e 73 65 74 20 28 64 65 | 0**..If.this.option.is.unset.(de |
| f7960 | 66 61 75 6c 74 29 2c 20 69 6e 63 6f 6d 69 6e 67 20 49 50 20 64 69 72 65 63 74 65 64 20 62 72 6f | fault),.incoming.IP.directed.bro |
| f7980 | 61 64 63 61 73 74 20 70 61 63 6b 65 74 73 20 77 69 6c 6c 20 6e 6f 74 20 62 65 20 66 6f 72 77 61 | adcast.packets.will.not.be.forwa |
| f79a0 | 72 64 65 64 2e 00 49 66 20 74 68 69 73 20 6f 70 74 69 6f 6e 20 69 73 20 75 6e 73 65 74 20 28 64 | rded..If.this.option.is.unset.(d |
| f79c0 | 65 66 61 75 6c 74 29 2c 20 72 65 70 6c 79 20 66 6f 72 20 61 6e 79 20 6c 6f 63 61 6c 20 74 61 72 | efault),.reply.for.any.local.tar |
| f79e0 | 67 65 74 20 49 50 20 61 64 64 72 65 73 73 2c 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 61 6e | get.IP.address,.configured.on.an |
| f7a00 | 79 20 69 6e 74 65 72 66 61 63 65 2e 00 49 66 20 74 68 69 73 20 70 61 72 61 6d 65 74 65 72 20 69 | y.interface..If.this.parameter.i |
| f7a20 | 73 20 6e 6f 74 20 73 65 74 20 6f 72 20 30 2c 20 61 6e 20 6f 6e 2d 64 65 6d 61 6e 64 20 6c 69 6e | s.not.set.or.0,.an.on-demand.lin |
| f7a40 | 6b 20 77 69 6c 6c 20 6e 6f 74 20 62 65 20 74 61 6b 65 6e 20 64 6f 77 6e 20 77 68 65 6e 20 69 74 | k.will.not.be.taken.down.when.it |
| f7a60 | 20 69 73 20 69 64 6c 65 20 61 6e 64 20 61 66 74 65 72 20 74 68 65 20 69 6e 69 74 69 61 6c 20 65 | .is.idle.and.after.the.initial.e |
| f7a80 | 73 74 61 62 6c 69 73 68 6d 65 6e 74 20 6f 66 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 20 | stablishment.of.the.connection.. |
| f7aa0 | 49 74 20 77 69 6c 6c 20 73 74 61 79 20 75 70 20 66 6f 72 65 76 65 72 2e 00 49 66 20 74 68 69 73 | It.will.stay.up.forever..If.this |
| f7ac0 | 20 70 61 72 61 6d 65 74 65 72 20 69 73 20 6e 6f 74 20 73 65 74 2c 20 74 68 65 20 64 65 66 61 75 | .parameter.is.not.set,.the.defau |
| f7ae0 | 6c 74 20 68 6f 6c 64 6f 66 66 20 74 69 6d 65 20 69 73 20 33 30 20 73 65 63 6f 6e 64 73 2e 00 49 | lt.holdoff.time.is.30.seconds..I |
| f7b00 | 66 20 75 6e 73 65 74 2c 20 69 6e 63 6f 6d 69 6e 67 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 74 6f | f.unset,.incoming.connections.to |
| f7b20 | 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 77 69 6c 6c 20 75 73 65 20 74 68 65 20 | .the.RADIUS.server.will.use.the. |
| f7b40 | 6e 65 61 72 65 73 74 20 69 6e 74 65 72 66 61 63 65 20 61 64 64 72 65 73 73 20 70 6f 69 6e 74 69 | nearest.interface.address.pointi |
| f7b60 | 6e 67 20 74 6f 77 61 72 64 73 20 74 68 65 20 73 65 72 76 65 72 20 2d 20 6d 61 6b 69 6e 67 20 69 | ng.towards.the.server.-.making.i |
| f7b80 | 74 20 65 72 72 6f 72 20 70 72 6f 6e 65 20 6f 6e 20 65 2e 67 2e 20 4f 53 50 46 20 6e 65 74 77 6f | t.error.prone.on.e.g..OSPF.netwo |
| f7ba0 | 72 6b 73 20 77 68 65 6e 20 61 20 6c 69 6e 6b 20 66 61 69 6c 73 20 61 6e 64 20 61 20 62 61 63 6b | rks.when.a.link.fails.and.a.back |
| f7bc0 | 75 70 20 72 6f 75 74 65 20 69 73 20 74 61 6b 65 6e 2e 00 49 66 20 75 6e 73 65 74 2c 20 69 6e 63 | up.route.is.taken..If.unset,.inc |
| f7be0 | 6f 6d 69 6e 67 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 74 6f 20 74 68 65 20 54 41 43 41 43 53 20 | oming.connections.to.the.TACACS. |
| f7c00 | 73 65 72 76 65 72 20 77 69 6c 6c 20 75 73 65 20 74 68 65 20 6e 65 61 72 65 73 74 20 69 6e 74 65 | server.will.use.the.nearest.inte |
| f7c20 | 72 66 61 63 65 20 61 64 64 72 65 73 73 20 70 6f 69 6e 74 69 6e 67 20 74 6f 77 61 72 64 73 20 74 | rface.address.pointing.towards.t |
| f7c40 | 68 65 20 73 65 72 76 65 72 20 2d 20 6d 61 6b 69 6e 67 20 69 74 20 65 72 72 6f 72 20 70 72 6f 6e | he.server.-.making.it.error.pron |
| f7c60 | 65 20 6f 6e 20 65 2e 67 2e 20 4f 53 50 46 20 6e 65 74 77 6f 72 6b 73 20 77 68 65 6e 20 61 20 6c | e.on.e.g..OSPF.networks.when.a.l |
| f7c80 | 69 6e 6b 20 66 61 69 6c 73 20 61 6e 64 20 61 20 62 61 63 6b 75 70 20 72 6f 75 74 65 20 69 73 20 | ink.fails.and.a.backup.route.is. |
| f7ca0 | 74 61 6b 65 6e 2e 00 49 66 20 79 6f 75 20 61 70 70 6c 79 20 61 20 70 61 72 61 6d 65 74 65 72 20 | taken..If.you.apply.a.parameter. |
| f7cc0 | 74 6f 20 61 6e 20 69 6e 64 69 76 69 64 75 61 6c 20 6e 65 69 67 68 62 6f 72 20 49 50 20 61 64 64 | to.an.individual.neighbor.IP.add |
| f7ce0 | 72 65 73 73 2c 20 79 6f 75 20 6f 76 65 72 72 69 64 65 20 74 68 65 20 61 63 74 69 6f 6e 20 64 65 | ress,.you.override.the.action.de |
| f7d00 | 66 69 6e 65 64 20 66 6f 72 20 61 20 70 65 65 72 20 67 72 6f 75 70 20 74 68 61 74 20 69 6e 63 6c | fined.for.a.peer.group.that.incl |
| f7d20 | 75 64 65 73 20 74 68 61 74 20 49 50 20 61 64 64 72 65 73 73 2e 00 49 66 20 79 6f 75 20 61 72 65 | udes.that.IP.address..If.you.are |
| f7d40 | 20 61 20 68 61 63 6b 65 72 20 6f 72 20 77 61 6e 74 20 74 6f 20 74 72 79 20 6f 6e 20 79 6f 75 72 | .a.hacker.or.want.to.try.on.your |
| f7d60 | 20 6f 77 6e 20 77 65 20 73 75 70 70 6f 72 74 20 70 61 73 73 69 6e 67 20 72 61 77 20 4f 70 65 6e | .own.we.support.passing.raw.Open |
| f7d80 | 56 50 4e 20 6f 70 74 69 6f 6e 73 20 74 6f 20 4f 70 65 6e 56 50 4e 2e 00 49 66 20 79 6f 75 20 61 | VPN.options.to.OpenVPN..If.you.a |
| f7da0 | 72 65 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 61 20 56 52 46 20 66 6f 72 20 6d 61 6e 61 67 65 6d | re.configuring.a.VRF.for.managem |
| f7dc0 | 65 6e 74 20 70 75 72 70 6f 73 65 73 2c 20 74 68 65 72 65 20 69 73 20 63 75 72 72 65 6e 74 6c 79 | ent.purposes,.there.is.currently |
| f7de0 | 20 6e 6f 20 77 61 79 20 74 6f 20 66 6f 72 63 65 20 73 79 73 74 65 6d 20 44 4e 53 20 74 72 61 66 | .no.way.to.force.system.DNS.traf |
| f7e00 | 66 69 63 20 76 69 61 20 61 20 73 70 65 63 69 66 69 63 20 56 52 46 2e 00 49 66 20 79 6f 75 20 61 | fic.via.a.specific.VRF..If.you.a |
| f7e20 | 72 65 20 6e 65 77 20 74 6f 20 74 68 65 73 65 20 72 6f 75 74 69 6e 67 20 73 65 63 75 72 69 74 79 | re.new.to.these.routing.security |
| f7e40 | 20 74 65 63 68 6e 6f 6c 6f 67 69 65 73 20 74 68 65 6e 20 74 68 65 72 65 20 69 73 20 61 6e 20 60 | .technologies.then.there.is.an.` |
| f7e60 | 65 78 63 65 6c 6c 65 6e 74 20 67 75 69 64 65 20 74 6f 20 52 50 4b 49 60 5f 20 62 79 20 4e 4c 6e | excellent.guide.to.RPKI`_.by.NLn |
| f7e80 | 65 74 20 4c 61 62 73 20 77 68 69 63 68 20 77 69 6c 6c 20 67 65 74 20 79 6f 75 20 75 70 20 74 6f | et.Labs.which.will.get.you.up.to |
| f7ea0 | 20 73 70 65 65 64 20 76 65 72 79 20 71 75 69 63 6b 6c 79 2e 20 54 68 65 69 72 20 64 6f 63 75 6d | .speed.very.quickly..Their.docum |
| f7ec0 | 65 6e 74 61 74 69 6f 6e 20 65 78 70 6c 61 69 6e 73 20 65 76 65 72 79 74 68 69 6e 67 20 66 72 6f | entation.explains.everything.fro |
| f7ee0 | 6d 20 77 68 61 74 20 52 50 4b 49 20 69 73 20 74 6f 20 64 65 70 6c 6f 79 69 6e 67 20 69 74 20 69 | m.what.RPKI.is.to.deploying.it.i |
| f7f00 | 6e 20 70 72 6f 64 75 63 74 69 6f 6e 2e 20 49 74 20 61 6c 73 6f 20 68 61 73 20 73 6f 6d 65 20 60 | n.production..It.also.has.some.` |
| f7f20 | 68 65 6c 70 20 61 6e 64 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 67 75 69 64 61 6e 63 65 60 5f 20 | help.and.operational.guidance`_. |
| f7f40 | 69 6e 63 6c 75 64 69 6e 67 20 22 57 68 61 74 20 63 61 6e 20 49 20 64 6f 20 61 62 6f 75 74 20 6d | including."What.can.I.do.about.m |
| f7f60 | 79 20 72 6f 75 74 65 20 68 61 76 69 6e 67 20 61 6e 20 49 6e 76 61 6c 69 64 20 73 74 61 74 65 3f | y.route.having.an.Invalid.state? |
| f7f80 | 22 00 49 66 20 79 6f 75 20 61 72 65 20 72 65 73 70 6f 6e 73 69 62 6c 65 20 66 6f 72 20 74 68 65 | ".If.you.are.responsible.for.the |
| f7fa0 | 20 67 6c 6f 62 61 6c 20 61 64 64 72 65 73 73 65 73 20 61 73 73 69 67 6e 65 64 20 74 6f 20 79 6f | .global.addresses.assigned.to.yo |
| f7fc0 | 75 72 20 6e 65 74 77 6f 72 6b 2c 20 70 6c 65 61 73 65 20 6d 61 6b 65 20 73 75 72 65 20 74 68 61 | ur.network,.please.make.sure.tha |
| f7fe0 | 74 20 79 6f 75 72 20 70 72 65 66 69 78 65 73 20 68 61 76 65 20 52 4f 41 73 20 61 73 73 6f 63 69 | t.your.prefixes.have.ROAs.associ |
| f8000 | 61 74 65 64 20 77 69 74 68 20 74 68 65 6d 20 74 6f 20 61 76 6f 69 64 20 62 65 69 6e 67 20 60 6e | ated.with.them.to.avoid.being.`n |
| f8020 | 6f 74 66 6f 75 6e 64 60 20 62 79 20 52 50 4b 49 2e 20 46 6f 72 20 6d 6f 73 74 20 41 53 4e 73 20 | otfound`.by.RPKI..For.most.ASNs. |
| f8040 | 74 68 69 73 20 77 69 6c 6c 20 69 6e 76 6f 6c 76 65 20 70 75 62 6c 69 73 68 69 6e 67 20 52 4f 41 | this.will.involve.publishing.ROA |
| f8060 | 73 20 76 69 61 20 79 6f 75 72 20 3a 61 62 62 72 3a 60 52 49 52 20 28 52 65 67 69 6f 6e 61 6c 20 | s.via.your.:abbr:`RIR.(Regional. |
| f8080 | 49 6e 74 65 72 6e 65 74 20 52 65 67 69 73 74 72 79 29 60 20 28 52 49 50 45 20 4e 43 43 2c 20 41 | Internet.Registry)`.(RIPE.NCC,.A |
| f80a0 | 50 4e 49 43 2c 20 41 52 49 4e 2c 20 4c 41 43 4e 49 43 20 6f 72 20 41 46 52 49 4e 49 43 29 2c 20 | PNIC,.ARIN,.LACNIC.or.AFRINIC),. |
| f80c0 | 61 6e 64 20 69 73 20 73 6f 6d 65 74 68 69 6e 67 20 79 6f 75 20 61 72 65 20 65 6e 63 6f 75 72 61 | and.is.something.you.are.encoura |
| f80e0 | 67 65 64 20 74 6f 20 64 6f 20 77 68 65 6e 65 76 65 72 20 79 6f 75 20 70 6c 61 6e 20 74 6f 20 61 | ged.to.do.whenever.you.plan.to.a |
| f8100 | 6e 6e 6f 75 6e 63 65 20 61 64 64 72 65 73 73 65 73 20 69 6e 74 6f 20 74 68 65 20 44 46 5a 2e 00 | nnounce.addresses.into.the.DFZ.. |
| f8120 | 49 66 20 79 6f 75 20 61 72 65 20 72 65 73 70 6f 6e 73 69 62 6c 65 20 66 6f 72 20 74 68 65 20 67 | If.you.are.responsible.for.the.g |
| f8140 | 6c 6f 62 61 6c 20 61 64 64 72 65 73 73 65 73 20 61 73 73 69 67 6e 65 64 20 74 6f 20 79 6f 75 72 | lobal.addresses.assigned.to.your |
| f8160 | 20 6e 65 74 77 6f 72 6b 2c 20 70 6c 65 61 73 65 20 6d 61 6b 65 20 73 75 72 65 20 74 68 61 74 20 | .network,.please.make.sure.that. |
| f8180 | 79 6f 75 72 20 70 72 65 66 69 78 65 73 20 68 61 76 65 20 52 4f 41 73 20 61 73 73 6f 63 69 61 74 | your.prefixes.have.ROAs.associat |
| f81a0 | 65 64 20 77 69 74 68 20 74 68 65 6d 20 74 6f 20 61 76 6f 69 64 20 62 65 69 6e 67 20 60 6e 6f 74 | ed.with.them.to.avoid.being.`not |
| f81c0 | 66 6f 75 6e 64 60 20 62 79 20 52 50 4b 49 2e 20 46 6f 72 20 6d 6f 73 74 20 41 53 4e 73 20 74 68 | found`.by.RPKI..For.most.ASNs.th |
| f81e0 | 69 73 20 77 69 6c 6c 20 69 6e 76 6f 6c 76 65 20 70 75 62 6c 69 73 68 69 6e 67 20 52 4f 41 73 20 | is.will.involve.publishing.ROAs. |
| f8200 | 76 69 61 20 79 6f 75 72 20 3a 61 62 62 72 3a 60 52 49 52 20 28 52 65 67 69 6f 6e 61 6c 20 49 6e | via.your.:abbr:`RIR.(Regional.In |
| f8220 | 74 65 72 6e 65 74 20 52 65 67 69 73 74 72 79 29 60 20 28 52 49 50 45 20 4e 43 43 2c 20 41 50 4e | ternet.Registry)`.(RIPE.NCC,.APN |
| f8240 | 49 43 2c 20 41 52 49 4e 2c 20 4c 41 43 4e 49 43 2c 20 6f 72 20 41 46 52 49 4e 49 43 29 2c 20 61 | IC,.ARIN,.LACNIC,.or.AFRINIC),.a |
| f8260 | 6e 64 20 69 73 20 73 6f 6d 65 74 68 69 6e 67 20 79 6f 75 20 61 72 65 20 65 6e 63 6f 75 72 61 67 | nd.is.something.you.are.encourag |
| f8280 | 65 64 20 74 6f 20 64 6f 20 77 68 65 6e 65 76 65 72 20 79 6f 75 20 70 6c 61 6e 20 74 6f 20 61 6e | ed.to.do.whenever.you.plan.to.an |
| f82a0 | 6e 6f 75 6e 63 65 20 61 64 64 72 65 73 73 65 73 20 69 6e 74 6f 20 74 68 65 20 44 46 5a 2e 00 49 | nounce.addresses.into.the.DFZ..I |
| f82c0 | 66 20 79 6f 75 20 61 72 65 20 75 73 69 6e 67 20 46 51 2d 43 6f 44 65 6c 20 65 6d 62 65 64 64 65 | f.you.are.using.FQ-CoDel.embedde |
| f82e0 | 64 20 69 6e 74 6f 20 53 68 61 70 65 72 5f 20 61 6e 64 20 79 6f 75 20 68 61 76 65 20 6c 61 72 67 | d.into.Shaper_.and.you.have.larg |
| f8300 | 65 20 72 61 74 65 73 20 28 31 30 30 4d 62 69 74 20 61 6e 64 20 61 62 6f 76 65 29 2c 20 79 6f 75 | e.rates.(100Mbit.and.above),.you |
| f8320 | 20 6d 61 79 20 63 6f 6e 73 69 64 65 72 20 69 6e 63 72 65 61 73 69 6e 67 20 60 71 75 61 6e 74 75 | .may.consider.increasing.`quantu |
| f8340 | 6d 60 20 74 6f 20 38 30 30 30 20 6f 72 20 68 69 67 68 65 72 20 73 6f 20 74 68 61 74 20 74 68 65 | m`.to.8000.or.higher.so.that.the |
| f8360 | 20 73 63 68 65 64 75 6c 65 72 20 73 61 76 65 73 20 43 50 55 2e 00 49 66 20 79 6f 75 20 61 72 65 | .scheduler.saves.CPU..If.you.are |
| f8380 | 20 75 73 69 6e 67 20 4f 53 50 46 20 61 73 20 49 47 50 2c 20 61 6c 77 61 79 73 20 74 68 65 20 63 | .using.OSPF.as.IGP,.always.the.c |
| f83a0 | 6c 6f 73 65 73 74 20 69 6e 74 65 72 66 61 63 65 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 74 68 | losest.interface.connected.to.th |
| f83c0 | 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 69 73 20 75 73 65 64 2e 20 57 69 74 68 20 56 79 | e.RADIUS.server.is.used..With.Vy |
| f83e0 | 4f 53 20 31 2e 32 20 79 6f 75 20 63 61 6e 20 62 69 6e 64 20 61 6c 6c 20 6f 75 74 67 6f 69 6e 67 | OS.1.2.you.can.bind.all.outgoing |
| f8400 | 20 52 41 44 49 55 53 20 72 65 71 75 65 73 74 73 20 74 6f 20 61 20 73 69 6e 67 6c 65 20 73 6f 75 | .RADIUS.requests.to.a.single.sou |
| f8420 | 72 63 65 20 49 50 20 65 2e 67 2e 20 74 68 65 20 6c 6f 6f 70 62 61 63 6b 20 69 6e 74 65 72 66 61 | rce.IP.e.g..the.loopback.interfa |
| f8440 | 63 65 2e 00 49 66 20 79 6f 75 20 61 72 65 20 75 73 69 6e 67 20 4f 53 50 46 20 61 73 20 49 47 50 | ce..If.you.are.using.OSPF.as.IGP |
| f8460 | 2c 20 61 6c 77 61 79 73 20 74 68 65 20 63 6c 6f 73 65 73 74 20 69 6e 74 65 72 66 61 63 65 20 63 | ,.always.the.closest.interface.c |
| f8480 | 6f 6e 6e 65 63 74 65 64 20 74 6f 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 69 73 | onnected.to.the.RADIUS.server.is |
| f84a0 | 20 75 73 65 64 2e 20 59 6f 75 20 63 61 6e 20 62 69 6e 64 20 61 6c 6c 20 6f 75 74 67 6f 69 6e 67 | .used..You.can.bind.all.outgoing |
| f84c0 | 20 52 41 44 49 55 53 20 72 65 71 75 65 73 74 73 20 74 6f 20 61 20 73 69 6e 67 6c 65 20 73 6f 75 | .RADIUS.requests.to.a.single.sou |
| f84e0 | 72 63 65 20 49 50 20 65 2e 67 2e 20 74 68 65 20 6c 6f 6f 70 62 61 63 6b 20 69 6e 74 65 72 66 61 | rce.IP.e.g..the.loopback.interfa |
| f8500 | 63 65 2e 00 49 66 20 79 6f 75 20 61 72 65 20 75 73 69 6e 67 20 4f 53 50 46 20 61 73 20 79 6f 75 | ce..If.you.are.using.OSPF.as.you |
| f8520 | 72 20 49 47 50 2c 20 75 73 65 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 63 6f 6e 6e 65 63 74 | r.IGP,.use.the.interface.connect |
| f8540 | 65 64 20 63 6c 6f 73 65 73 74 20 74 6f 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 2e | ed.closest.to.the.RADIUS.server. |
| f8560 | 20 59 6f 75 20 63 61 6e 20 62 69 6e 64 20 61 6c 6c 20 6f 75 74 67 6f 69 6e 67 20 52 41 44 49 55 | .You.can.bind.all.outgoing.RADIU |
| f8580 | 53 20 72 65 71 75 65 73 74 73 20 74 6f 20 61 20 73 69 6e 67 6c 65 20 73 6f 75 72 63 65 20 49 50 | S.requests.to.a.single.source.IP |
| f85a0 | 20 65 2e 67 2e 20 74 68 65 20 6c 6f 6f 70 62 61 63 6b 20 69 6e 74 65 72 66 61 63 65 2e 00 49 66 | .e.g..the.loopback.interface..If |
| f85c0 | 20 79 6f 75 20 63 68 61 6e 67 65 20 74 68 65 20 64 65 66 61 75 6c 74 20 65 6e 63 72 79 70 74 69 | .you.change.the.default.encrypti |
| f85e0 | 6f 6e 20 61 6e 64 20 68 61 73 68 69 6e 67 20 61 6c 67 6f 72 69 74 68 6d 73 2c 20 62 65 20 73 75 | on.and.hashing.algorithms,.be.su |
| f8600 | 72 65 20 74 68 61 74 20 74 68 65 20 6c 6f 63 61 6c 20 61 6e 64 20 72 65 6d 6f 74 65 20 65 6e 64 | re.that.the.local.and.remote.end |
| f8620 | 73 20 68 61 76 65 20 6d 61 74 63 68 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 73 2c 20 | s.have.matching.configurations,. |
| f8640 | 6f 74 68 65 72 77 69 73 65 20 74 68 65 20 74 75 6e 6e 65 6c 20 77 69 6c 6c 20 6e 6f 74 20 63 6f | otherwise.the.tunnel.will.not.co |
| f8660 | 6d 65 20 75 70 2e 00 49 66 20 79 6f 75 20 63 68 6f 6f 73 65 20 61 6e 79 20 61 73 20 74 68 65 20 | me.up..If.you.choose.any.as.the. |
| f8680 | 6f 70 74 69 6f 6e 20 74 68 61 74 20 77 69 6c 6c 20 63 61 75 73 65 20 61 6c 6c 20 70 72 6f 74 6f | option.that.will.cause.all.proto |
| f86a0 | 63 6f 6c 73 20 74 68 61 74 20 61 72 65 20 73 65 6e 64 69 6e 67 20 72 6f 75 74 65 73 20 74 6f 20 | cols.that.are.sending.routes.to. |
| f86c0 | 7a 65 62 72 61 2e 00 49 66 20 79 6f 75 20 63 6f 6e 66 69 67 75 72 65 20 61 20 63 6c 61 73 73 20 | zebra..If.you.configure.a.class. |
| f86e0 | 66 6f 72 20 2a 2a 56 6f 49 50 20 74 72 61 66 66 69 63 2a 2a 2c 20 64 6f 6e 27 74 20 67 69 76 65 | for.**VoIP.traffic**,.don't.give |
| f8700 | 20 69 74 20 61 6e 79 20 2a 63 65 69 6c 69 6e 67 2a 2c 20 6f 74 68 65 72 77 69 73 65 20 6e 65 77 | .it.any.*ceiling*,.otherwise.new |
| f8720 | 20 56 6f 49 50 20 63 61 6c 6c 73 20 63 6f 75 6c 64 20 73 74 61 72 74 20 77 68 65 6e 20 74 68 65 | .VoIP.calls.could.start.when.the |
| f8740 | 20 6c 69 6e 6b 20 69 73 20 61 76 61 69 6c 61 62 6c 65 20 61 6e 64 20 67 65 74 20 73 75 64 64 65 | .link.is.available.and.get.sudde |
| f8760 | 6e 6c 79 20 64 72 6f 70 70 65 64 20 77 68 65 6e 20 6f 74 68 65 72 20 63 6c 61 73 73 65 73 20 73 | nly.dropped.when.other.classes.s |
| f8780 | 74 61 72 74 20 75 73 69 6e 67 20 74 68 65 69 72 20 61 73 73 69 67 6e 65 64 20 2a 62 61 6e 64 77 | tart.using.their.assigned.*bandw |
| f87a0 | 69 64 74 68 2a 20 73 68 61 72 65 2e 00 49 66 20 79 6f 75 20 65 6e 61 62 6c 65 20 74 68 69 73 2c | idth*.share..If.you.enable.this, |
| f87c0 | 20 79 6f 75 20 77 69 6c 6c 20 70 72 6f 62 61 62 6c 79 20 77 61 6e 74 20 74 6f 20 73 65 74 20 64 | .you.will.probably.want.to.set.d |
| f87e0 | 69 76 65 72 73 69 74 79 2d 66 61 63 74 6f 72 20 61 6e 64 20 63 68 61 6e 6e 65 6c 20 62 65 6c 6f | iversity-factor.and.channel.belo |
| f8800 | 77 2e 00 49 66 20 79 6f 75 20 65 6e 74 65 72 20 61 20 76 61 6c 75 65 20 73 6d 61 6c 6c 65 72 20 | w..If.you.enter.a.value.smaller. |
| f8820 | 74 68 61 6e 20 36 30 20 73 65 63 6f 6e 64 73 20 62 65 20 61 77 61 72 65 20 74 68 61 74 20 74 68 | than.60.seconds.be.aware.that.th |
| f8840 | 69 73 20 63 61 6e 20 61 6e 64 20 77 69 6c 6c 20 61 66 66 65 63 74 20 63 6f 6e 76 65 72 67 65 6e | is.can.and.will.affect.convergen |
| f8860 | 63 65 20 61 74 20 73 63 61 6c 65 2e 00 49 66 20 79 6f 75 20 66 65 65 6c 20 62 65 74 74 65 72 20 | ce.at.scale..If.you.feel.better. |
| f8880 | 66 6f 72 77 61 72 64 69 6e 67 20 61 6c 6c 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 72 65 | forwarding.all.authentication.re |
| f88a0 | 71 75 65 73 74 73 20 74 6f 20 79 6f 75 72 20 65 6e 74 65 72 70 72 69 73 65 73 20 52 41 44 49 55 | quests.to.your.enterprises.RADIU |
| f88c0 | 53 20 73 65 72 76 65 72 2c 20 75 73 65 20 74 68 65 20 63 6f 6d 6d 61 6e 64 73 20 62 65 6c 6f 77 | S.server,.use.the.commands.below |
| f88e0 | 2e 00 49 66 20 79 6f 75 20 68 61 70 70 65 6e 20 74 6f 20 72 75 6e 20 74 68 69 73 20 69 6e 20 61 | ..If.you.happen.to.run.this.in.a |
| f8900 | 20 76 69 72 74 75 61 6c 20 65 6e 76 69 72 6f 6e 6d 65 6e 74 20 6c 69 6b 65 20 62 79 20 45 56 45 | .virtual.environment.like.by.EVE |
| f8920 | 2d 4e 47 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 65 6e 73 75 72 65 20 79 6f 75 72 20 56 79 4f 53 | -NG.you.need.to.ensure.your.VyOS |
| f8940 | 20 4e 49 43 20 69 73 20 73 65 74 20 74 6f 20 75 73 65 20 74 68 65 20 65 31 30 30 30 20 64 72 69 | .NIC.is.set.to.use.the.e1000.dri |
| f8960 | 76 65 72 2e 20 55 73 69 6e 67 20 74 68 65 20 64 65 66 61 75 6c 74 20 60 60 76 69 72 74 69 6f 2d | ver..Using.the.default.``virtio- |
| f8980 | 6e 65 74 2d 70 63 69 60 60 20 6f 72 20 74 68 65 20 60 60 76 6d 78 6e 65 74 33 60 60 20 64 72 69 | net-pci``.or.the.``vmxnet3``.dri |
| f89a0 | 76 65 72 20 77 69 6c 6c 20 6e 6f 74 20 77 6f 72 6b 2e 20 49 43 4d 50 20 6d 65 73 73 61 67 65 73 | ver.will.not.work..ICMP.messages |
| f89c0 | 20 77 69 6c 6c 20 6e 6f 74 20 62 65 20 70 72 6f 70 65 72 6c 79 20 70 72 6f 63 65 73 73 65 64 2e | .will.not.be.properly.processed. |
| f89e0 | 20 54 68 65 79 20 61 72 65 20 76 69 73 69 62 6c 65 20 6f 6e 20 74 68 65 20 76 69 72 74 75 61 6c | .They.are.visible.on.the.virtual |
| f8a00 | 20 77 69 72 65 20 62 75 74 20 77 69 6c 6c 20 6e 6f 74 20 6d 61 6b 65 20 69 74 20 66 75 6c 6c 79 | .wire.but.will.not.make.it.fully |
| f8a20 | 20 75 70 20 74 68 65 20 6e 65 74 77 6f 72 6b 69 6e 67 20 73 74 61 63 6b 2e 00 49 66 20 79 6f 75 | .up.the.networking.stack..If.you |
| f8a40 | 20 68 61 70 70 65 6e 20 74 6f 20 75 73 65 20 53 6f 6c 61 72 57 69 6e 64 73 20 4f 72 69 6f 6e 20 | .happen.to.use.SolarWinds.Orion. |
| f8a60 | 61 73 20 4e 4d 53 20 79 6f 75 20 63 61 6e 20 61 6c 73 6f 20 75 73 65 20 74 68 65 20 44 65 76 69 | as.NMS.you.can.also.use.the.Devi |
| f8a80 | 63 65 20 54 65 6d 70 6c 61 74 65 73 20 4d 61 6e 61 67 65 6d 65 6e 74 2e 20 41 20 74 65 6d 70 6c | ce.Templates.Management..A.templ |
| f8aa0 | 61 74 65 20 66 6f 72 20 56 79 4f 53 20 63 61 6e 20 62 65 20 65 61 73 69 6c 79 20 69 6d 70 6f 72 | ate.for.VyOS.can.be.easily.impor |
| f8ac0 | 74 65 64 2e 00 49 66 20 79 6f 75 20 68 61 70 70 65 6e 65 64 20 74 6f 20 75 73 65 20 61 20 43 69 | ted..If.you.happened.to.use.a.Ci |
| f8ae0 | 73 63 6f 20 4e 4d 2d 31 36 41 20 2d 20 53 69 78 74 65 65 6e 20 50 6f 72 74 20 41 73 79 6e 63 20 | sco.NM-16A.-.Sixteen.Port.Async. |
| f8b00 | 4e 65 74 77 6f 72 6b 20 4d 6f 64 75 6c 65 20 6f 72 20 4e 4d 2d 33 32 41 20 2d 20 54 68 69 72 74 | Network.Module.or.NM-32A.-.Thirt |
| f8b20 | 79 2d 74 77 6f 20 50 6f 72 74 20 41 73 79 6e 63 20 4e 65 74 77 6f 72 6b 20 4d 6f 64 75 6c 65 20 | y-two.Port.Async.Network.Module. |
| f8b40 | 2d 20 74 68 69 73 20 69 73 20 79 6f 75 72 20 56 79 4f 53 20 72 65 70 6c 61 63 65 6d 65 6e 74 2e | -.this.is.your.VyOS.replacement. |
| f8b60 | 00 49 66 20 79 6f 75 20 68 61 76 65 20 61 20 6c 6f 74 20 6f 66 20 69 6e 74 65 72 66 61 63 65 73 | .If.you.have.a.lot.of.interfaces |
| f8b80 | 2c 20 61 6e 64 2f 6f 72 20 61 20 6c 6f 74 20 6f 66 20 73 75 62 6e 65 74 73 2c 20 74 68 65 6e 20 | ,.and/or.a.lot.of.subnets,.then. |
| f8ba0 | 65 6e 61 62 6c 69 6e 67 20 4f 53 50 46 20 76 69 61 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 6d | enabling.OSPF.via.this.command.m |
| f8bc0 | 61 79 20 72 65 73 75 6c 74 20 69 6e 20 61 20 73 6c 69 67 68 74 20 70 65 72 66 6f 72 6d 61 6e 63 | ay.result.in.a.slight.performanc |
| f8be0 | 65 20 69 6d 70 72 6f 76 65 6d 65 6e 74 2e 00 49 66 20 79 6f 75 20 68 61 76 65 20 63 6f 6e 66 69 | e.improvement..If.you.have.confi |
| f8c00 | 67 75 72 65 64 20 74 68 65 20 60 49 4e 53 49 44 45 2d 4f 55 54 60 20 70 6f 6c 69 63 79 2c 20 79 | gured.the.`INSIDE-OUT`.policy,.y |
| f8c20 | 6f 75 20 77 69 6c 6c 20 6e 65 65 64 20 74 6f 20 61 64 64 20 61 64 64 69 74 69 6f 6e 61 6c 20 72 | ou.will.need.to.add.additional.r |
| f8c40 | 75 6c 65 73 20 74 6f 20 70 65 72 6d 69 74 20 69 6e 62 6f 75 6e 64 20 4e 41 54 20 74 72 61 66 66 | ules.to.permit.inbound.NAT.traff |
| f8c60 | 69 63 2e 00 49 66 20 79 6f 75 20 68 61 76 65 20 6d 75 6c 74 69 70 6c 65 20 61 64 64 72 65 73 73 | ic..If.you.have.multiple.address |
| f8c80 | 65 73 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 61 20 70 61 72 74 69 63 75 6c 61 72 20 69 6e | es.configured.on.a.particular.in |
| f8ca0 | 74 65 72 66 61 63 65 20 61 6e 64 20 77 6f 75 6c 64 20 6c 69 6b 65 20 50 49 4d 20 74 6f 20 75 73 | terface.and.would.like.PIM.to.us |
| f8cc0 | 65 20 61 20 73 70 65 63 69 66 69 63 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 61 73 73 6f | e.a.specific.source.address.asso |
| f8ce0 | 63 69 61 74 65 64 20 77 69 74 68 20 74 68 61 74 20 69 6e 74 65 72 66 61 63 65 2e 00 49 66 20 79 | ciated.with.that.interface..If.y |
| f8d00 | 6f 75 20 6e 65 65 64 20 74 6f 20 73 61 6d 70 6c 65 20 61 6c 73 6f 20 65 67 72 65 73 73 20 74 72 | ou.need.to.sample.also.egress.tr |
| f8d20 | 61 66 66 69 63 2c 20 79 6f 75 20 6d 61 79 20 77 61 6e 74 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 | affic,.you.may.want.to.configure |
| f8d40 | 20 65 67 72 65 73 73 20 66 6c 6f 77 2d 61 63 63 6f 75 6e 74 69 6e 67 3a 00 49 66 20 79 6f 75 20 | .egress.flow-accounting:.If.you. |
| f8d60 | 6f 6e 6c 79 20 77 61 6e 74 20 74 6f 20 63 68 65 63 6b 20 69 66 20 74 68 65 20 75 73 65 72 20 61 | only.want.to.check.if.the.user.a |
| f8d80 | 63 63 6f 75 6e 74 20 69 73 20 65 6e 61 62 6c 65 64 20 61 6e 64 20 63 61 6e 20 61 75 74 68 65 6e | ccount.is.enabled.and.can.authen |
| f8da0 | 74 69 63 61 74 65 20 28 61 67 61 69 6e 73 74 20 74 68 65 20 70 72 69 6d 61 72 79 20 67 72 6f 75 | ticate.(against.the.primary.grou |
| f8dc0 | 70 29 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 6e 69 70 70 65 64 20 69 73 20 73 75 66 66 | p).the.following.snipped.is.suff |
| f8de0 | 69 63 69 65 6e 74 3a 00 49 66 20 79 6f 75 20 73 65 74 20 61 20 63 75 73 74 6f 6d 20 52 41 44 49 | icient:.If.you.set.a.custom.RADI |
| f8e00 | 55 53 20 61 74 74 72 69 62 75 74 65 20 79 6f 75 20 6d 75 73 74 20 64 65 66 69 6e 65 20 69 74 20 | US.attribute.you.must.define.it. |
| f8e20 | 6f 6e 20 62 6f 74 68 20 64 69 63 74 69 6f 6e 61 72 69 65 73 20 61 74 20 52 41 44 49 55 53 20 73 | on.both.dictionaries.at.RADIUS.s |
| f8e40 | 65 72 76 65 72 20 61 6e 64 20 63 6c 69 65 6e 74 2c 20 77 68 69 63 68 20 69 73 20 74 68 65 20 76 | erver.and.client,.which.is.the.v |
| f8e60 | 79 6f 73 20 72 6f 75 74 65 72 20 69 6e 20 6f 75 72 20 65 78 61 6d 70 6c 65 2e 00 49 66 20 79 6f | yos.router.in.our.example..If.yo |
| f8e80 | 75 20 73 65 74 20 61 20 63 75 73 74 6f 6d 20 52 41 44 49 55 53 20 61 74 74 72 69 62 75 74 65 20 | u.set.a.custom.RADIUS.attribute. |
| f8ea0 | 79 6f 75 20 6d 75 73 74 20 64 65 66 69 6e 65 20 69 74 20 6f 6e 20 62 6f 74 68 20 64 69 63 74 69 | you.must.define.it.on.both.dicti |
| f8ec0 | 6f 6e 61 72 69 65 73 20 61 74 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 61 6e 64 20 63 6c 69 | onaries.at.RADIUS.server.and.cli |
| f8ee0 | 65 6e 74 2e 00 49 66 20 79 6f 75 20 73 65 74 20 61 20 63 75 73 74 6f 6d 20 52 41 44 49 55 53 20 | ent..If.you.set.a.custom.RADIUS. |
| f8f00 | 61 74 74 72 69 62 75 74 65 20 79 6f 75 20 6d 75 73 74 20 64 65 66 69 6e 65 20 69 74 20 6f 6e 20 | attribute.you.must.define.it.on. |
| f8f20 | 62 6f 74 68 20 64 69 63 74 69 6f 6e 61 72 69 65 73 20 6f 6e 20 74 68 65 20 52 41 44 49 55 53 20 | both.dictionaries.on.the.RADIUS. |
| f8f40 | 73 65 72 76 65 72 20 61 6e 64 20 63 6c 69 65 6e 74 2e 00 49 66 20 79 6f 75 20 73 70 65 63 69 66 | server.and.client..If.you.specif |
| f8f60 | 79 20 61 20 73 65 72 76 65 72 20 74 6f 20 62 65 20 63 68 65 63 6b 65 64 20 62 75 74 20 64 6f 20 | y.a.server.to.be.checked.but.do. |
| f8f80 | 6e 6f 74 20 63 6f 6e 66 69 67 75 72 65 20 61 20 70 72 6f 74 6f 63 6f 6c 2c 20 61 20 62 61 73 69 | not.configure.a.protocol,.a.basi |
| f8fa0 | 63 20 54 43 50 20 68 65 61 6c 74 68 20 63 68 65 63 6b 20 77 69 6c 6c 20 62 65 20 61 74 74 65 6d | c.TCP.health.check.will.be.attem |
| f8fc0 | 70 74 65 64 2e 20 41 20 73 65 72 76 65 72 20 73 68 61 6c 6c 20 62 65 20 64 65 65 6d 65 64 20 6f | pted..A.server.shall.be.deemed.o |
| f8fe0 | 6e 6c 69 6e 65 20 69 66 20 69 74 20 72 65 73 70 6f 6e 73 65 73 20 74 6f 20 61 20 63 6f 6e 6e 65 | nline.if.it.responses.to.a.conne |
| f9000 | 63 74 69 6f 6e 20 61 74 74 65 6d 70 74 20 77 69 74 68 20 61 20 76 61 6c 69 64 20 60 60 53 59 4e | ction.attempt.with.a.valid.``SYN |
| f9020 | 2f 41 43 4b 60 60 20 70 61 63 6b 65 74 2e 00 49 66 20 79 6f 75 20 75 73 65 20 55 53 42 20 74 6f | /ACK``.packet..If.you.use.USB.to |
| f9040 | 20 73 65 72 69 61 6c 20 63 6f 6e 76 65 72 74 65 72 73 20 66 6f 72 20 63 6f 6e 6e 65 63 74 69 6e | .serial.converters.for.connectin |
| f9060 | 67 20 74 6f 20 79 6f 75 72 20 56 79 4f 53 20 61 70 70 6c 69 61 6e 63 65 20 70 6c 65 61 73 65 20 | g.to.your.VyOS.appliance.please. |
| f9080 | 6e 6f 74 65 20 74 68 61 74 20 6d 6f 73 74 20 6f 66 20 74 68 65 6d 20 75 73 65 20 73 6f 66 74 77 | note.that.most.of.them.use.softw |
| f90a0 | 61 72 65 20 65 6d 75 6c 61 74 69 6f 6e 20 77 69 74 68 6f 75 74 20 66 6c 6f 77 20 63 6f 6e 74 72 | are.emulation.without.flow.contr |
| f90c0 | 6f 6c 2e 20 54 68 69 73 20 6d 65 61 6e 73 20 79 6f 75 20 73 68 6f 75 6c 64 20 73 74 61 72 74 20 | ol..This.means.you.should.start. |
| f90e0 | 77 69 74 68 20 61 20 63 6f 6d 6d 6f 6e 20 62 61 75 64 20 72 61 74 65 20 28 6d 6f 73 74 20 6c 69 | with.a.common.baud.rate.(most.li |
| f9100 | 6b 65 6c 79 20 39 36 30 30 20 62 61 75 64 29 20 61 73 20 6f 74 68 65 72 77 69 73 65 20 79 6f 75 | kely.9600.baud).as.otherwise.you |
| f9120 | 20 70 72 6f 62 61 62 6c 79 20 63 61 6e 20 6e 6f 74 20 63 6f 6e 6e 65 63 74 20 74 6f 20 74 68 65 | .probably.can.not.connect.to.the |
| f9140 | 20 64 65 76 69 63 65 20 75 73 69 6e 67 20 68 69 67 68 20 73 70 65 65 64 20 62 61 75 64 20 72 61 | .device.using.high.speed.baud.ra |
| f9160 | 74 65 73 20 61 73 20 79 6f 75 72 20 73 65 72 69 61 6c 20 63 6f 6e 76 65 72 74 65 72 20 73 69 6d | tes.as.your.serial.converter.sim |
| f9180 | 70 6c 79 20 63 61 6e 20 6e 6f 74 20 70 72 6f 63 65 73 73 20 74 68 69 73 20 64 61 74 61 20 72 61 | ply.can.not.process.this.data.ra |
| f91a0 | 74 65 2e 00 49 66 20 79 6f 75 20 75 73 65 20 61 20 73 65 6c 66 2d 73 69 67 6e 65 64 20 63 65 72 | te..If.you.use.a.self-signed.cer |
| f91c0 | 74 69 66 69 63 61 74 65 2c 20 64 6f 20 6e 6f 74 20 66 6f 72 67 65 74 20 74 6f 20 69 6e 73 74 61 | tificate,.do.not.forget.to.insta |
| f91e0 | 6c 6c 20 43 41 20 6f 6e 20 74 68 65 20 63 6c 69 65 6e 74 20 73 69 64 65 2e 00 49 66 20 79 6f 75 | ll.CA.on.the.client.side..If.you |
| f9200 | 20 77 61 6e 74 20 74 6f 20 63 68 61 6e 67 65 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 6e 75 6d 62 | .want.to.change.the.maximum.numb |
| f9220 | 65 72 20 6f 66 20 66 6c 6f 77 73 2c 20 77 68 69 63 68 20 61 72 65 20 74 72 61 63 6b 69 6e 67 20 | er.of.flows,.which.are.tracking. |
| f9240 | 73 69 6d 75 6c 74 61 6e 65 6f 75 73 6c 79 2c 20 79 6f 75 20 6d 61 79 20 64 6f 20 74 68 69 73 20 | simultaneously,.you.may.do.this. |
| f9260 | 77 69 74 68 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 28 64 65 66 61 75 6c 74 20 38 31 39 32 29 | with.this.command.(default.8192) |
| f9280 | 2e 00 49 66 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 64 69 73 61 62 6c 65 20 61 20 72 75 6c 65 20 | ..If.you.want.to.disable.a.rule. |
| f92a0 | 62 75 74 20 6c 65 74 20 69 74 20 69 6e 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e | but.let.it.in.the.configuration. |
| f92c0 | 00 49 66 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 68 61 76 65 20 61 64 6d 69 6e 20 75 73 65 72 73 | .If.you.want.to.have.admin.users |
| f92e0 | 20 74 6f 20 61 75 74 68 65 6e 74 69 63 61 74 65 20 76 69 61 20 52 41 44 49 55 53 20 69 74 20 69 | .to.authenticate.via.RADIUS.it.i |
| f9300 | 73 20 65 73 73 65 6e 74 69 61 6c 20 74 6f 20 73 65 6e 74 20 74 68 65 20 60 60 43 69 73 63 6f 2d | s.essential.to.sent.the.``Cisco- |
| f9320 | 41 56 2d 50 61 69 72 20 73 68 65 6c 6c 3a 70 72 69 76 2d 6c 76 6c 3d 31 35 60 60 20 61 74 74 72 | AV-Pair.shell:priv-lvl=15``.attr |
| f9340 | 69 62 75 74 65 2e 20 57 69 74 68 6f 75 74 20 74 68 65 20 61 74 74 72 69 62 75 74 65 20 79 6f 75 | ibute..Without.the.attribute.you |
| f9360 | 20 77 69 6c 6c 20 6f 6e 6c 79 20 67 65 74 20 72 65 67 75 6c 61 72 2c 20 6e 6f 6e 20 70 72 69 76 | .will.only.get.regular,.non.priv |
| f9380 | 69 6c 65 67 75 65 64 2c 20 73 79 73 74 65 6d 20 75 73 65 72 73 2e 00 49 66 20 79 6f 75 20 77 61 | ilegued,.system.users..If.you.wa |
| f93a0 | 6e 74 20 74 6f 20 75 73 65 20 65 78 69 73 74 69 6e 67 20 62 6c 61 63 6b 6c 69 73 74 73 20 79 6f | nt.to.use.existing.blacklists.yo |
| f93c0 | 75 20 68 61 76 65 20 74 6f 20 63 72 65 61 74 65 2f 64 6f 77 6e 6c 6f 61 64 20 61 20 64 61 74 61 | u.have.to.create/download.a.data |
| f93e0 | 62 61 73 65 20 66 69 72 73 74 2e 20 4f 74 68 65 72 77 69 73 65 20 79 6f 75 20 77 69 6c 6c 20 6e | base.first..Otherwise.you.will.n |
| f9400 | 6f 74 20 62 65 20 61 62 6c 65 20 74 6f 20 63 6f 6d 6d 69 74 20 74 68 65 20 63 6f 6e 66 69 67 20 | ot.be.able.to.commit.the.config. |
| f9420 | 63 68 61 6e 67 65 73 2e 00 49 66 20 79 6f 75 20 77 61 6e 74 20 79 6f 75 72 20 72 6f 75 74 65 72 | changes..If.you.want.your.router |
| f9440 | 20 74 6f 20 66 6f 72 77 61 72 64 20 44 48 43 50 20 72 65 71 75 65 73 74 73 20 74 6f 20 61 6e 20 | .to.forward.DHCP.requests.to.an. |
| f9460 | 65 78 74 65 72 6e 61 6c 20 44 48 43 50 20 73 65 72 76 65 72 20 79 6f 75 20 63 61 6e 20 63 6f 6e | external.DHCP.server.you.can.con |
| f9480 | 66 69 67 75 72 65 20 74 68 65 20 73 79 73 74 65 6d 20 74 6f 20 61 63 74 20 61 73 20 61 20 44 48 | figure.the.system.to.act.as.a.DH |
| f94a0 | 43 50 20 72 65 6c 61 79 20 61 67 65 6e 74 2e 20 54 68 65 20 44 48 43 50 20 72 65 6c 61 79 20 61 | CP.relay.agent..The.DHCP.relay.a |
| f94c0 | 67 65 6e 74 20 77 6f 72 6b 73 20 77 69 74 68 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 61 64 | gent.works.with.IPv4.and.IPv6.ad |
| f94e0 | 64 72 65 73 73 65 73 2e 00 49 66 20 79 6f 75 20 77 61 6e 74 2c 20 6e 65 65 64 2c 20 61 6e 64 20 | dresses..If.you.want,.need,.and. |
| f9500 | 73 68 6f 75 6c 64 20 75 73 65 20 6d 6f 72 65 20 61 64 76 61 6e 63 65 64 20 65 6e 63 72 79 70 74 | should.use.more.advanced.encrypt |
| f9520 | 69 6f 6e 20 63 69 70 68 65 72 73 20 28 64 65 66 61 75 6c 74 20 69 73 20 73 74 69 6c 6c 20 33 44 | ion.ciphers.(default.is.still.3D |
| f9540 | 45 53 29 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 70 72 6f 76 69 73 69 6f 6e 20 79 6f 75 72 20 64 | ES).you.need.to.provision.your.d |
| f9560 | 65 76 69 63 65 20 75 73 69 6e 67 20 61 20 73 6f 2d 63 61 6c 6c 65 64 20 22 44 65 76 69 63 65 20 | evice.using.a.so-called."Device. |
| f9580 | 50 72 6f 66 69 6c 65 22 2e 20 41 20 70 72 6f 66 69 6c 65 20 69 73 20 61 20 73 69 6d 70 6c 65 20 | Profile"..A.profile.is.a.simple. |
| f95a0 | 74 65 78 74 20 66 69 6c 65 20 63 6f 6e 74 61 69 6e 69 6e 67 20 58 4d 4c 20 6e 6f 64 65 73 20 77 | text.file.containing.XML.nodes.w |
| f95c0 | 69 74 68 20 61 20 60 60 2e 6d 6f 62 69 6c 65 63 6f 6e 66 69 67 60 60 20 66 69 6c 65 20 65 78 74 | ith.a.``.mobileconfig``.file.ext |
| f95e0 | 65 6e 73 69 6f 6e 20 74 68 61 74 20 63 61 6e 20 62 65 20 73 65 6e 74 20 61 6e 64 20 6f 70 65 6e | ension.that.can.be.sent.and.open |
| f9600 | 65 64 20 6f 6e 20 61 6e 79 20 64 65 76 69 63 65 20 66 72 6f 6d 20 61 6e 20 45 2d 4d 61 69 6c 2e | ed.on.any.device.from.an.E-Mail. |
| f9620 | 00 49 66 20 79 6f 75 27 72 65 20 6d 61 6b 69 6e 67 20 75 73 65 20 6f 66 20 6d 75 6c 74 69 70 6c | .If.you're.making.use.of.multipl |
| f9640 | 65 20 74 75 6e 6e 65 6c 73 2c 20 4f 70 65 6e 56 50 4e 20 6d 75 73 74 20 68 61 76 65 20 61 20 77 | e.tunnels,.OpenVPN.must.have.a.w |
| f9660 | 61 79 20 74 6f 20 64 69 73 74 69 6e 67 75 69 73 68 20 62 65 74 77 65 65 6e 20 64 69 66 66 65 72 | ay.to.distinguish.between.differ |
| f9680 | 65 6e 74 20 74 75 6e 6e 65 6c 73 20 61 73 69 64 65 20 66 72 6f 6d 20 74 68 65 20 70 72 65 2d 73 | ent.tunnels.aside.from.the.pre-s |
| f96a0 | 68 61 72 65 64 2d 6b 65 79 2e 20 54 68 69 73 20 69 73 20 64 6f 6e 65 20 65 69 74 68 65 72 20 62 | hared-key..This.is.done.either.b |
| f96c0 | 79 20 72 65 66 65 72 65 6e 63 69 6e 67 20 49 50 20 61 64 64 72 65 73 73 65 73 20 6f 72 20 70 6f | y.referencing.IP.addresses.or.po |
| f96e0 | 72 74 20 6e 75 6d 62 65 72 73 2e 20 4f 6e 65 20 6f 70 74 69 6f 6e 20 69 73 20 74 6f 20 64 65 64 | rt.numbers..One.option.is.to.ded |
| f9700 | 69 63 61 74 65 20 61 20 70 75 62 6c 69 63 20 49 50 20 74 6f 20 65 61 63 68 20 74 75 6e 6e 65 6c | icate.a.public.IP.to.each.tunnel |
| f9720 | 2e 20 41 6e 6f 74 68 65 72 20 6f 70 74 69 6f 6e 20 69 73 20 74 6f 20 64 65 64 69 63 61 74 65 20 | ..Another.option.is.to.dedicate. |
| f9740 | 61 20 70 6f 72 74 20 6e 75 6d 62 65 72 20 74 6f 20 65 61 63 68 20 74 75 6e 6e 65 6c 20 28 65 2e | a.port.number.to.each.tunnel.(e. |
| f9760 | 67 2e 20 31 31 39 35 2c 31 31 39 36 2c 31 31 39 37 2e 2e 2e 29 2e 00 49 66 20 79 6f 75 27 76 65 | g..1195,1196,1197...)..If.you've |
| f9780 | 20 63 6f 6d 70 6c 65 74 65 64 20 61 6c 6c 20 74 68 65 20 61 62 6f 76 65 20 73 74 65 70 73 20 79 | .completed.all.the.above.steps.y |
| f97a0 | 6f 75 20 6e 6f 20 64 6f 75 62 74 20 77 61 6e 74 20 74 6f 20 73 65 65 20 69 66 20 69 74 27 73 20 | ou.no.doubt.want.to.see.if.it's. |
| f97c0 | 61 6c 6c 20 77 6f 72 6b 69 6e 67 2e 00 49 67 6e 6f 72 65 20 41 53 5f 50 41 54 48 20 6c 65 6e 67 | all.working..Ignore.AS_PATH.leng |
| f97e0 | 74 68 20 77 68 65 6e 20 73 65 6c 65 63 74 69 6e 67 20 61 20 72 6f 75 74 65 00 49 67 6e 6f 72 65 | th.when.selecting.a.route.Ignore |
| f9800 | 20 56 52 52 50 20 6d 61 69 6e 20 69 6e 74 65 72 66 61 63 65 20 66 61 75 6c 74 73 00 49 6d 61 67 | .VRRP.main.interface.faults.Imag |
| f9820 | 65 20 74 68 61 6e 6b 66 75 6c 6c 79 20 62 6f 72 72 6f 77 65 64 20 66 72 6f 6d 20 68 74 74 70 73 | e.thankfully.borrowed.from.https |
| f9840 | 3a 2f 2f 65 6e 2e 77 69 6b 69 70 65 64 69 61 2e 6f 72 67 2f 77 69 6b 69 2f 46 69 6c 65 3a 53 4e | ://en.wikipedia.org/wiki/File:SN |
| f9860 | 4d 50 5f 63 6f 6d 6d 75 6e 69 63 61 74 69 6f 6e 5f 70 72 69 6e 63 69 70 6c 65 73 5f 64 69 61 67 | MP_communication_principles_diag |
| f9880 | 72 61 6d 2e 50 4e 47 20 77 68 69 63 68 20 69 73 20 75 6e 64 65 72 20 74 68 65 20 47 4e 55 20 46 | ram.PNG.which.is.under.the.GNU.F |
| f98a0 | 72 65 65 20 44 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 4c 69 63 65 6e 73 65 00 49 6d 61 67 69 6e | ree.Documentation.License.Imagin |
| f98c0 | 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 74 6f 70 6f 6c 6f 67 79 00 49 6d 6d 65 64 69 61 | e.the.following.topology.Immedia |
| f98e0 | 74 65 00 49 6d 70 6c 65 6d 65 6e 74 65 64 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 3a 72 66 | te.Implemented.the.following.:rf |
| f9900 | 63 3a 60 36 38 38 38 60 20 20 72 65 71 75 69 72 65 6d 65 6e 74 73 3a 00 49 6d 70 6f 72 74 20 66 | c:`6888`..requirements:.Import.f |
| f9920 | 69 6c 65 73 20 74 6f 20 50 4b 49 20 66 6f 72 6d 61 74 00 49 6d 70 6f 72 74 20 74 68 65 20 43 41 | iles.to.PKI.format.Import.the.CA |
| f9940 | 73 20 70 72 69 76 61 74 65 20 6b 65 79 20 70 6f 72 74 69 6f 6e 20 74 6f 20 74 68 65 20 43 4c 49 | s.private.key.portion.to.the.CLI |
| f9960 | 2e 20 54 68 69 73 20 73 68 6f 75 6c 64 20 6e 65 76 65 72 20 6c 65 61 76 65 20 74 68 65 20 73 79 | ..This.should.never.leave.the.sy |
| f9980 | 73 74 65 6d 20 61 73 20 69 74 20 69 73 20 75 73 65 64 20 74 6f 20 64 65 63 72 79 70 74 20 74 68 | stem.as.it.is.used.to.decrypt.th |
| f99a0 | 65 20 64 61 74 61 2e 20 54 68 65 20 6b 65 79 20 69 73 20 72 65 71 75 69 72 65 64 20 69 66 20 79 | e.data..The.key.is.required.if.y |
| f99c0 | 6f 75 20 75 73 65 20 56 79 4f 53 20 61 73 20 79 6f 75 72 20 63 65 72 74 69 66 69 63 61 74 65 20 | ou.use.VyOS.as.your.certificate. |
| f99e0 | 67 65 6e 65 72 61 74 6f 72 2e 00 49 6d 70 6f 72 74 20 74 68 65 20 4f 70 65 6e 56 50 4e 20 73 68 | generator..Import.the.OpenVPN.sh |
| f9a00 | 61 72 65 64 20 73 65 63 72 65 74 20 73 74 6f 72 65 64 20 69 6e 20 66 69 6c 65 20 74 6f 20 74 68 | ared.secret.stored.in.file.to.th |
| f9a20 | 65 20 56 79 4f 53 20 43 4c 49 2e 00 49 6d 70 6f 72 74 20 74 68 65 20 63 65 72 74 69 66 69 63 61 | e.VyOS.CLI..Import.the.certifica |
| f9a40 | 74 65 20 66 72 6f 6d 20 74 68 65 20 66 69 6c 65 20 74 6f 20 56 79 4f 53 20 43 4c 49 2e 00 49 6d | te.from.the.file.to.VyOS.CLI..Im |
| f9a60 | 70 6f 72 74 20 74 68 65 20 70 72 69 76 61 74 65 20 6b 65 79 20 6f 66 20 74 68 65 20 63 65 72 74 | port.the.private.key.of.the.cert |
| f9a80 | 69 66 69 63 61 74 65 20 74 6f 20 74 68 65 20 56 79 4f 53 20 43 4c 49 2e 20 54 68 69 73 20 73 68 | ificate.to.the.VyOS.CLI..This.sh |
| f9aa0 | 6f 75 6c 64 20 6e 65 76 65 72 20 6c 65 61 76 65 20 74 68 65 20 73 79 73 74 65 6d 20 61 73 20 69 | ould.never.leave.the.system.as.i |
| f9ac0 | 74 20 69 73 20 75 73 65 64 20 74 6f 20 64 65 63 72 79 70 74 20 74 68 65 20 64 61 74 61 2e 00 49 | t.is.used.to.decrypt.the.data..I |
| f9ae0 | 6d 70 6f 72 74 20 74 68 65 20 70 75 62 6c 69 63 20 43 41 20 63 65 72 74 69 66 69 63 61 74 65 20 | mport.the.public.CA.certificate. |
| f9b00 | 66 72 6f 6d 20 74 68 65 20 64 65 66 69 6e 65 64 20 66 69 6c 65 20 74 6f 20 56 79 4f 53 20 43 4c | from.the.defined.file.to.VyOS.CL |
| f9b20 | 49 2e 00 49 6d 70 6f 72 74 65 64 20 70 72 65 66 69 78 65 73 20 64 75 72 69 6e 67 20 74 68 65 20 | I..Imported.prefixes.during.the. |
| f9b40 | 76 61 6c 69 64 61 74 69 6f 6e 20 6d 61 79 20 68 61 76 65 20 76 61 6c 75 65 73 3a 00 49 6e 20 3a | validation.may.have.values:.In.: |
| f9b60 | 72 66 63 3a 60 33 30 36 39 60 20 69 74 20 69 73 20 63 61 6c 6c 65 64 20 56 4c 41 4e 20 41 67 67 | rfc:`3069`.it.is.called.VLAN.Agg |
| f9b80 | 72 65 67 61 74 69 6f 6e 00 49 6e 20 3a 76 79 74 61 73 6b 3a 60 54 32 31 39 39 60 20 74 68 65 20 | regation.In.:vytask:`T2199`.the. |
| f9ba0 | 73 79 6e 74 61 78 20 6f 66 20 74 68 65 20 7a 6f 6e 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e | syntax.of.the.zone.configuration |
| f9bc0 | 20 77 61 73 20 63 68 61 6e 67 65 64 2e 20 54 68 65 20 7a 6f 6e 65 20 63 6f 6e 66 69 67 75 72 61 | .was.changed..The.zone.configura |
| f9be0 | 74 69 6f 6e 20 6d 6f 76 65 64 20 66 72 6f 6d 20 60 60 7a 6f 6e 65 2d 70 6f 6c 69 63 79 20 7a 6f | tion.moved.from.``zone-policy.zo |
| f9c00 | 6e 65 20 3c 6e 61 6d 65 3e 60 60 20 74 6f 20 60 60 66 69 72 65 77 61 6c 6c 20 7a 6f 6e 65 20 3c | ne.<name>``.to.``firewall.zone.< |
| f9c20 | 6e 61 6d 65 3e 60 60 2e 00 49 6e 20 45 74 68 65 72 6e 65 74 20 62 72 69 64 67 69 6e 67 20 63 6f | name>``..In.Ethernet.bridging.co |
| f9c40 | 6e 66 69 67 75 72 61 74 69 6f 6e 73 2c 20 4f 70 65 6e 56 50 4e 27 73 20 73 65 72 76 65 72 20 6d | nfigurations,.OpenVPN's.server.m |
| f9c60 | 6f 64 65 20 63 61 6e 20 62 65 20 73 65 74 20 61 73 20 61 20 27 62 72 69 64 67 65 27 20 77 68 65 | ode.can.be.set.as.a.'bridge'.whe |
| f9c80 | 72 65 20 74 68 65 20 56 50 4e 20 74 75 6e 6e 65 6c 20 65 6e 63 61 70 73 75 6c 61 74 65 73 20 65 | re.the.VPN.tunnel.encapsulates.e |
| f9ca0 | 6e 74 69 72 65 20 45 74 68 65 72 6e 65 74 20 66 72 61 6d 65 73 20 28 75 70 20 74 6f 20 31 35 31 | ntire.Ethernet.frames.(up.to.151 |
| f9cc0 | 34 20 62 79 74 65 73 29 20 69 6e 73 74 65 61 64 20 6f 66 20 6a 75 73 74 20 49 50 20 70 61 63 6b | 4.bytes).instead.of.just.IP.pack |
| f9ce0 | 65 74 73 20 28 75 70 20 74 6f 20 31 35 30 30 20 62 79 74 65 73 29 2e 20 54 68 69 73 20 73 65 74 | ets.(up.to.1500.bytes)..This.set |
| f9d00 | 75 70 20 61 6c 6c 6f 77 73 20 63 6c 69 65 6e 74 73 20 74 6f 20 74 72 61 6e 73 6d 69 74 20 4c 61 | up.allows.clients.to.transmit.La |
| f9d20 | 79 65 72 20 32 20 66 72 61 6d 65 73 20 74 68 72 6f 75 67 68 20 74 68 65 20 4f 70 65 6e 56 50 4e | yer.2.frames.through.the.OpenVPN |
| f9d40 | 20 74 75 6e 6e 65 6c 2e 20 42 65 6c 6f 77 2c 20 77 65 20 6f 75 74 6c 69 6e 65 20 61 20 62 61 73 | .tunnel..Below,.we.outline.a.bas |
| f9d60 | 69 63 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 6f 20 61 63 68 69 65 76 65 20 74 68 69 73 | ic.configuration.to.achieve.this |
| f9d80 | 3a 00 49 6e 20 49 6e 74 65 72 6e 65 74 20 50 72 6f 74 6f 63 6f 6c 20 56 65 72 73 69 6f 6e 20 36 | :.In.Internet.Protocol.Version.6 |
| f9da0 | 20 28 49 50 76 36 29 20 6e 65 74 77 6f 72 6b 73 2c 20 74 68 65 20 66 75 6e 63 74 69 6f 6e 61 6c | .(IPv6).networks,.the.functional |
| f9dc0 | 69 74 79 20 6f 66 20 41 52 50 20 69 73 20 70 72 6f 76 69 64 65 64 20 62 79 20 74 68 65 20 4e 65 | ity.of.ARP.is.provided.by.the.Ne |
| f9de0 | 69 67 68 62 6f 72 20 44 69 73 63 6f 76 65 72 79 20 50 72 6f 74 6f 63 6f 6c 20 28 4e 44 50 29 2e | ighbor.Discovery.Protocol.(NDP). |
| f9e00 | 00 49 6e 20 50 72 69 6f 72 69 74 79 20 51 75 65 75 65 20 77 65 20 64 6f 20 6e 6f 74 20 64 65 66 | .In.Priority.Queue.we.do.not.def |
| f9e20 | 69 6e 65 20 63 6c 61 73 65 73 20 77 69 74 68 20 61 20 6d 65 61 6e 69 6e 67 6c 65 73 73 20 63 6c | ine.clases.with.a.meaningless.cl |
| f9e40 | 61 73 73 20 49 44 20 6e 75 6d 62 65 72 20 62 75 74 20 77 69 74 68 20 61 20 63 6c 61 73 73 20 70 | ass.ID.number.but.with.a.class.p |
| f9e60 | 72 69 6f 72 69 74 79 20 6e 75 6d 62 65 72 20 28 31 2d 37 29 2e 20 54 68 65 20 6c 6f 77 65 72 20 | riority.number.(1-7)..The.lower. |
| f9e80 | 74 68 65 20 6e 75 6d 62 65 72 2c 20 74 68 65 20 68 69 67 68 65 72 20 74 68 65 20 70 72 69 6f 72 | the.number,.the.higher.the.prior |
| f9ea0 | 69 74 79 2e 00 49 6e 20 50 72 69 6f 72 69 74 79 20 51 75 65 75 65 20 77 65 20 64 6f 20 6e 6f 74 | ity..In.Priority.Queue.we.do.not |
| f9ec0 | 20 64 65 66 69 6e 65 20 63 6c 61 73 73 65 73 20 77 69 74 68 20 61 20 6d 65 61 6e 69 6e 67 6c 65 | .define.classes.with.a.meaningle |
| f9ee0 | 73 73 20 63 6c 61 73 73 20 49 44 20 6e 75 6d 62 65 72 20 62 75 74 20 77 69 74 68 20 61 20 63 6c | ss.class.ID.number.but.with.a.cl |
| f9f00 | 61 73 73 20 70 72 69 6f 72 69 74 79 20 6e 75 6d 62 65 72 20 28 31 2d 37 29 2e 20 54 68 65 20 6c | ass.priority.number.(1-7)..The.l |
| f9f20 | 6f 77 65 72 20 74 68 65 20 6e 75 6d 62 65 72 2c 20 74 68 65 20 68 69 67 68 65 72 20 74 68 65 20 | ower.the.number,.the.higher.the. |
| f9f40 | 70 72 69 6f 72 69 74 79 2e 00 49 6e 20 56 79 4f 53 20 74 68 65 20 74 65 72 6d 73 20 60 60 76 69 | priority..In.VyOS.the.terms.``vi |
| f9f60 | 66 2d 73 60 60 20 61 6e 64 20 60 60 76 69 66 2d 63 60 60 20 73 74 61 6e 64 20 66 6f 72 20 74 68 | f-s``.and.``vif-c``.stand.for.th |
| f9f80 | 65 20 65 74 68 65 72 74 79 70 65 20 74 61 67 73 20 74 68 61 74 20 61 72 65 20 75 73 65 64 2e 00 | e.ethertype.tags.that.are.used.. |
| f9fa0 | 49 6e 20 56 79 4f 53 2c 20 38 30 32 2e 31 31 61 78 20 69 73 20 6f 6e 6c 79 20 69 6d 70 6c 65 6d | In.VyOS,.802.11ax.is.only.implem |
| f9fc0 | 65 6e 74 65 64 20 66 6f 72 20 32 2e 34 47 48 7a 20 61 6e 64 20 36 47 48 7a 2e 00 49 6e 20 56 79 | ented.for.2.4GHz.and.6GHz..In.Vy |
| f9fe0 | 4f 53 2c 20 38 30 32 2e 31 31 61 78 20 69 73 20 6f 6e 6c 79 20 69 6d 70 6c 65 6d 65 6e 74 65 64 | OS,.802.11ax.is.only.implemented |
| fa000 | 20 66 6f 72 20 36 47 48 7a 20 61 73 20 6f 66 20 79 65 74 2e 00 49 6e 20 56 79 4f 53 2c 20 45 53 | .for.6GHz.as.of.yet..In.VyOS,.ES |
| fa020 | 50 20 61 74 74 72 69 62 75 74 65 73 20 61 72 65 20 73 70 65 63 69 66 69 65 64 20 74 68 72 6f 75 | P.attributes.are.specified.throu |
| fa040 | 67 68 20 45 53 50 20 67 72 6f 75 70 73 2e 20 4d 75 6c 74 69 70 6c 65 20 70 72 6f 70 6f 73 61 6c | gh.ESP.groups..Multiple.proposal |
| fa060 | 73 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 61 20 73 69 6e 67 6c 65 20 67 | s.can.be.specified.in.a.single.g |
| fa080 | 72 6f 75 70 2e 00 49 6e 20 56 79 4f 53 2c 20 49 4b 45 20 61 74 74 72 69 62 75 74 65 73 20 61 72 | roup..In.VyOS,.IKE.attributes.ar |
| fa0a0 | 65 20 73 70 65 63 69 66 69 65 64 20 74 68 72 6f 75 67 68 20 49 4b 45 20 67 72 6f 75 70 73 2e 20 | e.specified.through.IKE.groups.. |
| fa0c0 | 4d 75 6c 74 69 70 6c 65 20 70 72 6f 70 6f 73 61 6c 73 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 | Multiple.proposals.can.be.specif |
| fa0e0 | 69 65 64 20 69 6e 20 61 20 73 69 6e 67 6c 65 20 67 72 6f 75 70 2e 00 49 6e 20 56 79 4f 53 2c 20 | ied.in.a.single.group..In.VyOS,. |
| fa100 | 61 20 63 6c 61 73 73 20 69 73 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 61 20 6e 75 6d 62 65 | a.class.is.identified.by.a.numbe |
| fa120 | 72 20 79 6f 75 20 63 61 6e 20 63 68 6f 6f 73 65 20 77 68 65 6e 20 63 6f 6e 66 69 67 75 72 69 6e | r.you.can.choose.when.configurin |
| fa140 | 67 20 69 74 2e 00 49 6e 20 61 20 6d 69 6e 69 6d 61 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e | g.it..In.a.minimal.configuration |
| fa160 | 2c 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 6d 75 73 74 20 62 65 20 70 72 6f 76 69 64 65 64 | ,.the.following.must.be.provided |
| fa180 | 3a 00 49 6e 20 61 20 6d 75 6c 74 69 70 6c 65 20 56 4c 41 4e 20 68 65 61 64 65 72 20 63 6f 6e 74 | :.In.a.multiple.VLAN.header.cont |
| fa1a0 | 65 78 74 2c 20 6f 75 74 20 6f 66 20 63 6f 6e 76 65 6e 69 65 6e 63 65 20 74 68 65 20 74 65 72 6d | ext,.out.of.convenience.the.term |
| fa1c0 | 20 22 56 4c 41 4e 20 74 61 67 22 20 6f 72 20 6a 75 73 74 20 22 74 61 67 22 20 66 6f 72 20 73 68 | ."VLAN.tag".or.just."tag".for.sh |
| fa1e0 | 6f 72 74 20 69 73 20 6f 66 74 65 6e 20 75 73 65 64 20 69 6e 20 70 6c 61 63 65 20 6f 66 20 22 38 | ort.is.often.used.in.place.of."8 |
| fa200 | 30 32 2e 31 71 5f 20 56 4c 41 4e 20 68 65 61 64 65 72 22 2e 20 51 69 6e 51 20 61 6c 6c 6f 77 73 | 02.1q_.VLAN.header"..QinQ.allows |
| fa220 | 20 6d 75 6c 74 69 70 6c 65 20 56 4c 41 4e 20 74 61 67 73 20 69 6e 20 61 6e 20 45 74 68 65 72 6e | .multiple.VLAN.tags.in.an.Ethern |
| fa240 | 65 74 20 66 72 61 6d 65 3b 20 74 6f 67 65 74 68 65 72 20 74 68 65 73 65 20 74 61 67 73 20 63 6f | et.frame;.together.these.tags.co |
| fa260 | 6e 73 74 69 74 75 74 65 20 61 20 74 61 67 20 73 74 61 63 6b 2e 20 57 68 65 6e 20 75 73 65 64 20 | nstitute.a.tag.stack..When.used. |
| fa280 | 69 6e 20 74 68 65 20 63 6f 6e 74 65 78 74 20 6f 66 20 61 6e 20 45 74 68 65 72 6e 65 74 20 66 72 | in.the.context.of.an.Ethernet.fr |
| fa2a0 | 61 6d 65 2c 20 61 20 51 69 6e 51 20 66 72 61 6d 65 20 69 73 20 61 20 66 72 61 6d 65 20 74 68 61 | ame,.a.QinQ.frame.is.a.frame.tha |
| fa2c0 | 74 20 68 61 73 20 32 20 56 4c 41 4e 20 38 30 32 2e 31 71 5f 20 68 65 61 64 65 72 73 20 28 64 6f | t.has.2.VLAN.802.1q_.headers.(do |
| fa2e0 | 75 62 6c 65 2d 74 61 67 67 65 64 29 2e 00 49 6e 20 61 20 6e 75 74 73 68 65 6c 6c 2c 20 74 68 65 | uble-tagged)..In.a.nutshell,.the |
| fa300 | 20 63 75 72 72 65 6e 74 20 69 6d 70 6c 65 6d 65 6e 74 61 74 69 6f 6e 20 70 72 6f 76 69 64 65 73 | .current.implementation.provides |
| fa320 | 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 66 65 61 74 75 72 65 73 3a 00 49 6e 20 61 64 64 69 | .the.following.features:.In.addi |
| fa340 | 74 69 6f 6e 20 74 6f 20 3a 61 62 62 72 3a 60 52 41 44 49 55 53 20 28 52 65 6d 6f 74 65 20 41 75 | tion.to.:abbr:`RADIUS.(Remote.Au |
| fa360 | 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 44 69 61 6c 2d 49 6e 20 55 73 65 72 20 53 65 72 76 69 63 | thentication.Dial-In.User.Servic |
| fa380 | 65 29 60 2c 20 3a 61 62 62 72 3a 60 54 41 43 41 43 53 20 28 54 65 72 6d 69 6e 61 6c 20 41 63 63 | e)`,.:abbr:`TACACS.(Terminal.Acc |
| fa3a0 | 65 73 73 20 43 6f 6e 74 72 6f 6c 6c 65 72 20 41 63 63 65 73 73 20 43 6f 6e 74 72 6f 6c 20 53 79 | ess.Controller.Access.Control.Sy |
| fa3c0 | 73 74 65 6d 29 60 20 63 61 6e 20 61 6c 73 6f 20 62 65 20 66 6f 75 6e 64 20 69 6e 20 6c 61 72 67 | stem)`.can.also.be.found.in.larg |
| fa3e0 | 65 20 64 65 70 6c 6f 79 6d 65 6e 74 73 2e 00 49 6e 20 61 64 64 69 74 69 6f 6e 20 74 6f 20 64 69 | e.deployments..In.addition.to.di |
| fa400 | 73 70 6c 61 79 69 6e 67 20 66 6c 6f 77 20 61 63 63 6f 75 6e 74 69 6e 67 20 69 6e 66 6f 72 6d 61 | splaying.flow.accounting.informa |
| fa420 | 74 69 6f 6e 20 6c 6f 63 61 6c 6c 79 2c 20 6f 6e 65 20 63 61 6e 20 61 6c 73 6f 20 65 78 70 6f 72 | tion.locally,.one.can.also.expor |
| fa440 | 74 65 64 20 74 68 65 6d 20 74 6f 20 61 20 63 6f 6c 6c 65 63 74 69 6f 6e 20 73 65 72 76 65 72 2e | ted.them.to.a.collection.server. |
| fa460 | 00 49 6e 20 61 64 64 69 74 69 6f 6e 20 74 6f 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 61 62 6f 76 | .In.addition.to.the.command.abov |
| fa480 | 65 2c 20 74 68 65 20 6f 75 74 70 75 74 20 69 73 20 69 6e 20 61 20 66 6f 72 6d 61 74 20 77 68 69 | e,.the.output.is.in.a.format.whi |
| fa4a0 | 63 68 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 64 69 72 65 63 74 6c 79 20 69 6d 70 6f 72 | ch.can.be.used.to.directly.impor |
| fa4c0 | 74 20 74 68 65 20 6b 65 79 20 69 6e 74 6f 20 74 68 65 20 56 79 4f 53 20 43 4c 49 20 62 79 20 73 | t.the.key.into.the.VyOS.CLI.by.s |
| fa4e0 | 69 6d 70 6c 79 20 63 6f 70 79 2d 70 61 73 74 69 6e 67 20 74 68 65 20 6f 75 74 70 75 74 20 66 72 | imply.copy-pasting.the.output.fr |
| fa500 | 6f 6d 20 6f 70 2d 6d 6f 64 65 20 69 6e 74 6f 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d 6f | om.op-mode.into.configuration.mo |
| fa520 | 64 65 2e 00 49 6e 20 61 64 64 69 74 69 6f 6e 20 77 65 20 73 65 74 75 70 20 49 50 76 36 20 3a 61 | de..In.addition.we.setup.IPv6.:a |
| fa540 | 62 62 72 3a 60 52 41 20 28 52 6f 75 74 65 72 20 41 64 76 65 72 74 69 73 65 6d 65 6e 74 73 29 60 | bbr:`RA.(Router.Advertisements)` |
| fa560 | 20 74 6f 20 6d 61 6b 65 20 74 68 65 20 70 72 65 66 69 78 20 6b 6e 6f 77 6e 20 6f 6e 20 74 68 65 | .to.make.the.prefix.known.on.the |
| fa580 | 20 65 74 68 30 20 6c 69 6e 6b 2e 00 49 6e 20 61 64 64 69 74 69 6f 6e 20 79 6f 75 20 63 61 6e 20 | .eth0.link..In.addition.you.can. |
| fa5a0 | 61 6c 73 6f 20 64 69 73 61 62 6c 65 20 74 68 65 20 77 68 6f 6c 65 20 73 65 72 76 69 63 65 20 77 | also.disable.the.whole.service.w |
| fa5c0 | 69 74 68 6f 75 74 20 74 68 65 20 6e 65 65 64 20 74 6f 20 72 65 6d 6f 76 65 20 69 74 20 66 72 6f | ithout.the.need.to.remove.it.fro |
| fa5e0 | 6d 20 74 68 65 20 63 75 72 72 65 6e 74 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 49 6e 20 | m.the.current.configuration..In. |
| fa600 | 61 64 64 69 74 69 6f 6e 20 79 6f 75 20 77 69 6c 6c 20 73 70 65 63 69 66 69 79 20 74 68 65 20 49 | addition.you.will.specifiy.the.I |
| fa620 | 50 20 61 64 64 72 65 73 73 20 6f 72 20 46 51 44 4e 20 66 6f 72 20 74 68 65 20 63 6c 69 65 6e 74 | P.address.or.FQDN.for.the.client |
| fa640 | 20 77 68 65 72 65 20 69 74 20 77 69 6c 6c 20 63 6f 6e 6e 65 63 74 20 74 6f 2e 20 54 68 65 20 61 | .where.it.will.connect.to..The.a |
| fa660 | 64 64 72 65 73 73 20 70 61 72 61 6d 65 74 65 72 20 63 61 6e 20 62 65 20 75 73 65 64 20 75 70 20 | ddress.parameter.can.be.used.up. |
| fa680 | 74 6f 20 74 77 6f 20 74 69 6d 65 73 20 61 6e 64 20 69 73 20 75 73 65 64 20 74 6f 20 61 73 73 69 | to.two.times.and.is.used.to.assi |
| fa6a0 | 67 6e 20 74 68 65 20 63 6c 69 65 6e 74 73 20 73 70 65 63 69 66 69 63 20 49 50 76 34 20 28 2f 33 | gn.the.clients.specific.IPv4.(/3 |
| fa6c0 | 32 29 20 6f 72 20 49 50 76 36 20 28 2f 31 32 38 29 20 61 64 64 72 65 73 73 2e 00 49 6e 20 61 64 | 2).or.IPv6.(/128).address..In.ad |
| fa6e0 | 64 69 74 69 6f 6e 20 79 6f 75 20 77 69 6c 6c 20 73 70 65 63 69 66 79 20 74 68 65 20 49 50 20 61 | dition.you.will.specify.the.IP.a |
| fa700 | 64 64 72 65 73 73 20 6f 72 20 46 51 44 4e 20 66 6f 72 20 74 68 65 20 63 6c 69 65 6e 74 20 77 68 | ddress.or.FQDN.for.the.client.wh |
| fa720 | 65 72 65 20 69 74 20 77 69 6c 6c 20 63 6f 6e 6e 65 63 74 20 74 6f 2e 20 54 68 65 20 61 64 64 72 | ere.it.will.connect.to..The.addr |
| fa740 | 65 73 73 20 70 61 72 61 6d 65 74 65 72 20 63 61 6e 20 62 65 20 75 73 65 64 20 75 70 20 74 6f 20 | ess.parameter.can.be.used.up.to. |
| fa760 | 74 77 6f 20 74 69 6d 65 73 20 61 6e 64 20 69 73 20 75 73 65 64 20 74 6f 20 61 73 73 69 67 6e 20 | two.times.and.is.used.to.assign. |
| fa780 | 74 68 65 20 63 6c 69 65 6e 74 73 20 73 70 65 63 69 66 69 63 20 49 50 76 34 20 28 2f 33 32 29 20 | the.clients.specific.IPv4.(/32). |
| fa7a0 | 6f 72 20 49 50 76 36 20 28 2f 31 32 38 29 20 61 64 64 72 65 73 73 2e 00 49 6e 20 61 64 64 69 74 | or.IPv6.(/128).address..In.addit |
| fa7c0 | 69 6f 6e 2c 20 79 6f 75 20 63 61 6e 20 73 70 65 63 69 66 79 20 6d 61 6e 79 20 6f 74 68 65 72 20 | ion,.you.can.specify.many.other. |
| fa7e0 | 70 61 72 61 6d 65 74 65 72 73 20 74 6f 20 67 65 74 20 42 47 50 20 69 6e 66 6f 72 6d 61 74 69 6f | parameters.to.get.BGP.informatio |
| fa800 | 6e 3a 00 49 6e 20 61 6e 20 2a 2a 61 64 64 72 65 73 73 20 67 72 6f 75 70 2a 2a 20 61 20 73 69 6e | n:.In.an.**address.group**.a.sin |
| fa820 | 67 6c 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 72 20 49 50 20 61 64 64 72 65 73 73 20 72 61 6e | gle.IP.address.or.IP.address.ran |
| fa840 | 67 65 20 69 73 20 64 65 66 69 6e 65 64 2e 00 49 6e 20 61 6e 20 2a 2a 61 64 64 72 65 73 73 20 67 | ge.is.defined..In.an.**address.g |
| fa860 | 72 6f 75 70 2a 2a 20 61 20 73 69 6e 67 6c 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 72 20 49 50 | roup**.a.single.IP.address.or.IP |
| fa880 | 20 61 64 64 72 65 73 73 20 72 61 6e 67 65 73 20 61 72 65 20 64 65 66 69 6e 65 64 2e 00 49 6e 20 | .address.ranges.are.defined..In. |
| fa8a0 | 62 6f 74 68 20 63 61 73 65 73 2c 20 77 65 20 77 69 6c 6c 20 75 73 65 20 74 68 65 20 66 6f 6c 6c | both.cases,.we.will.use.the.foll |
| fa8c0 | 6f 77 69 6e 67 20 73 65 74 74 69 6e 67 73 3a 00 49 6e 20 63 61 73 65 20 6f 66 20 70 65 65 72 2d | owing.settings:.In.case.of.peer- |
| fa8e0 | 70 65 65 72 20 72 65 6c 61 74 69 6f 6e 73 68 69 70 20 72 6f 75 74 65 73 20 63 61 6e 20 62 65 20 | peer.relationship.routes.can.be. |
| fa900 | 72 65 63 65 69 76 65 64 20 6f 6e 6c 79 20 69 66 20 4f 54 43 20 76 61 6c 75 65 20 69 73 20 65 71 | received.only.if.OTC.value.is.eq |
| fa920 | 75 61 6c 20 74 6f 20 79 6f 75 72 20 6e 65 69 67 68 62 6f 72 20 41 53 20 6e 75 6d 62 65 72 2e 00 | ual.to.your.neighbor.AS.number.. |
| fa940 | 49 6e 20 63 61 73 65 2c 20 69 66 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 63 61 74 63 68 20 73 6f | In.case,.if.you.need.to.catch.so |
| fa960 | 6d 65 20 6c 6f 67 73 20 66 72 6f 6d 20 66 6c 6f 77 2d 61 63 63 6f 75 6e 74 69 6e 67 20 64 61 65 | me.logs.from.flow-accounting.dae |
| fa980 | 6d 6f 6e 2c 20 79 6f 75 20 6d 61 79 20 63 6f 6e 66 69 67 75 72 65 20 6c 6f 67 67 69 6e 67 20 66 | mon,.you.may.configure.logging.f |
| fa9a0 | 61 63 69 6c 69 74 79 3a 00 49 6e 20 63 6f 6e 74 72 61 73 74 20 74 6f 20 73 69 6d 70 6c 65 20 52 | acility:.In.contrast.to.simple.R |
| fa9c0 | 45 44 2c 20 56 79 4f 53 27 20 52 61 6e 64 6f 6d 2d 44 65 74 65 63 74 20 75 73 65 73 20 61 20 47 | ED,.VyOS'.Random-Detect.uses.a.G |
| fa9e0 | 65 6e 65 72 61 6c 69 7a 65 64 20 52 61 6e 64 6f 6d 20 45 61 72 6c 79 20 44 65 74 65 63 74 20 70 | eneralized.Random.Early.Detect.p |
| faa00 | 6f 6c 69 63 79 20 74 68 61 74 20 70 72 6f 76 69 64 65 73 20 64 69 66 66 65 72 65 6e 74 20 76 69 | olicy.that.provides.different.vi |
| faa20 | 72 74 75 61 6c 20 71 75 65 75 65 73 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 49 50 20 50 72 65 | rtual.queues.based.on.the.IP.Pre |
| faa40 | 63 65 64 65 6e 63 65 20 76 61 6c 75 65 20 73 6f 20 74 68 61 74 20 73 6f 6d 65 20 76 69 72 74 75 | cedence.value.so.that.some.virtu |
| faa60 | 61 6c 20 71 75 65 75 65 73 20 63 61 6e 20 64 72 6f 70 20 6d 6f 72 65 20 70 61 63 6b 65 74 73 20 | al.queues.can.drop.more.packets. |
| faa80 | 74 68 61 6e 20 6f 74 68 65 72 73 2e 00 49 6e 20 66 61 69 6c 6f 76 65 72 20 6d 6f 64 65 2c 20 6f | than.others..In.failover.mode,.o |
| faaa0 | 6e 65 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 73 65 74 20 74 6f 20 62 65 20 74 68 65 20 70 72 | ne.interface.is.set.to.be.the.pr |
| faac0 | 69 6d 61 72 79 20 69 6e 74 65 72 66 61 63 65 20 61 6e 64 20 6f 74 68 65 72 20 69 6e 74 65 72 66 | imary.interface.and.other.interf |
| faae0 | 61 63 65 73 20 61 72 65 20 73 65 63 6f 6e 64 61 72 79 20 6f 72 20 73 70 61 72 65 2e 20 49 6e 73 | aces.are.secondary.or.spare..Ins |
| fab00 | 74 65 61 64 20 6f 66 20 62 61 6c 61 6e 63 69 6e 67 20 74 72 61 66 66 69 63 20 61 63 72 6f 73 73 | tead.of.balancing.traffic.across |
| fab20 | 20 61 6c 6c 20 68 65 61 6c 74 68 79 20 69 6e 74 65 72 66 61 63 65 73 2c 20 6f 6e 6c 79 20 74 68 | .all.healthy.interfaces,.only.th |
| fab40 | 65 20 70 72 69 6d 61 72 79 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 75 73 65 64 20 61 6e 64 20 | e.primary.interface.is.used.and. |
| fab60 | 69 6e 20 63 61 73 65 20 6f 66 20 66 61 69 6c 75 72 65 2c 20 61 20 73 65 63 6f 6e 64 61 72 79 20 | in.case.of.failure,.a.secondary. |
| fab80 | 69 6e 74 65 72 66 61 63 65 20 73 65 6c 65 63 74 65 64 20 66 72 6f 6d 20 74 68 65 20 70 6f 6f 6c | interface.selected.from.the.pool |
| faba0 | 20 6f 66 20 61 76 61 69 6c 61 62 6c 65 20 69 6e 74 65 72 66 61 63 65 73 20 74 61 6b 65 73 20 6f | .of.available.interfaces.takes.o |
| fabc0 | 76 65 72 2e 20 54 68 65 20 70 72 69 6d 61 72 79 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 73 65 | ver..The.primary.interface.is.se |
| fabe0 | 6c 65 63 74 65 64 20 62 61 73 65 64 20 6f 6e 20 69 74 73 20 77 65 69 67 68 74 20 61 6e 64 20 68 | lected.based.on.its.weight.and.h |
| fac00 | 65 61 6c 74 68 2c 20 6f 74 68 65 72 73 20 62 65 63 6f 6d 65 20 73 65 63 6f 6e 64 61 72 79 20 69 | ealth,.others.become.secondary.i |
| fac20 | 6e 74 65 72 66 61 63 65 73 2e 20 53 65 63 6f 6e 64 61 72 79 20 69 6e 74 65 72 66 61 63 65 73 20 | nterfaces..Secondary.interfaces. |
| fac40 | 74 6f 20 74 61 6b 65 20 6f 76 65 72 20 61 20 66 61 69 6c 65 64 20 70 72 69 6d 61 72 79 20 69 6e | to.take.over.a.failed.primary.in |
| fac60 | 74 65 72 66 61 63 65 20 61 72 65 20 63 68 6f 73 65 6e 20 66 72 6f 6d 20 74 68 65 20 6c 6f 61 64 | terface.are.chosen.from.the.load |
| fac80 | 20 62 61 6c 61 6e 63 65 72 27 73 20 69 6e 74 65 72 66 61 63 65 20 70 6f 6f 6c 2c 20 64 65 70 65 | .balancer's.interface.pool,.depe |
| faca0 | 6e 64 69 6e 67 20 6f 6e 20 74 68 65 69 72 20 77 65 69 67 68 74 20 61 6e 64 20 68 65 61 6c 74 68 | nding.on.their.weight.and.health |
| facc0 | 2e 20 49 6e 74 65 72 66 61 63 65 20 72 6f 6c 65 73 20 63 61 6e 20 61 6c 73 6f 20 62 65 20 73 65 | ..Interface.roles.can.also.be.se |
| face0 | 6c 65 63 74 65 64 20 62 61 73 65 64 20 6f 6e 20 72 75 6c 65 20 6f 72 64 65 72 20 62 79 20 69 6e | lected.based.on.rule.order.by.in |
| fad00 | 63 6c 75 64 69 6e 67 20 69 6e 74 65 72 66 61 63 65 73 20 69 6e 20 62 61 6c 61 6e 63 69 6e 67 20 | cluding.interfaces.in.balancing. |
| fad20 | 72 75 6c 65 73 20 61 6e 64 20 6f 72 64 65 72 69 6e 67 20 74 68 6f 73 65 20 72 75 6c 65 73 20 61 | rules.and.ordering.those.rules.a |
| fad40 | 63 63 6f 72 64 69 6e 67 6c 79 2e 20 54 6f 20 70 75 74 20 74 68 65 20 6c 6f 61 64 20 62 61 6c 61 | ccordingly..To.put.the.load.bala |
| fad60 | 6e 63 65 72 20 69 6e 20 66 61 69 6c 6f 76 65 72 20 6d 6f 64 65 2c 20 63 72 65 61 74 65 20 61 20 | ncer.in.failover.mode,.create.a. |
| fad80 | 66 61 69 6c 6f 76 65 72 20 72 75 6c 65 3a 00 49 6e 20 66 69 72 65 77 61 6c 6c 20 62 72 69 64 67 | failover.rule:.In.firewall.bridg |
| fada0 | 65 20 72 75 6c 65 73 2c 20 74 68 65 20 61 63 74 69 6f 6e 20 63 61 6e 20 62 65 3a 00 49 6e 20 67 | e.rules,.the.action.can.be:.In.g |
| fadc0 | 65 6e 65 72 61 6c 2c 20 4f 53 50 46 20 70 72 6f 74 6f 63 6f 6c 20 72 65 71 75 69 72 65 73 20 61 | eneral,.OSPF.protocol.requires.a |
| fade0 | 20 62 61 63 6b 62 6f 6e 65 20 61 72 65 61 20 28 61 72 65 61 20 30 29 20 74 6f 20 62 65 20 63 6f | .backbone.area.(area.0).to.be.co |
| fae00 | 68 65 72 65 6e 74 20 61 6e 64 20 66 75 6c 6c 79 20 63 6f 6e 6e 65 63 74 65 64 2e 20 49 2e 65 2e | herent.and.fully.connected..I.e. |
| fae20 | 20 61 6e 79 20 62 61 63 6b 62 6f 6e 65 20 61 72 65 61 20 72 6f 75 74 65 72 20 6d 75 73 74 20 68 | .any.backbone.area.router.must.h |
| fae40 | 61 76 65 20 61 20 72 6f 75 74 65 20 74 6f 20 61 6e 79 20 6f 74 68 65 72 20 62 61 63 6b 62 6f 6e | ave.a.route.to.any.other.backbon |
| fae60 | 65 20 61 72 65 61 20 72 6f 75 74 65 72 2e 20 4d 6f 72 65 6f 76 65 72 2c 20 65 76 65 72 79 20 41 | e.area.router..Moreover,.every.A |
| fae80 | 42 52 20 6d 75 73 74 20 68 61 76 65 20 61 20 6c 69 6e 6b 20 74 6f 20 62 61 63 6b 62 6f 6e 65 20 | BR.must.have.a.link.to.backbone. |
| faea0 | 61 72 65 61 2e 20 48 6f 77 65 76 65 72 2c 20 69 74 20 69 73 20 6e 6f 74 20 61 6c 77 61 79 73 20 | area..However,.it.is.not.always. |
| faec0 | 70 6f 73 73 69 62 6c 65 20 74 6f 20 68 61 76 65 20 61 20 70 68 79 73 69 63 61 6c 20 6c 69 6e 6b | possible.to.have.a.physical.link |
| faee0 | 20 74 6f 20 61 20 62 61 63 6b 62 6f 6e 65 20 61 72 65 61 2e 20 49 6e 20 74 68 69 73 20 63 61 73 | .to.a.backbone.area..In.this.cas |
| faf00 | 65 20 62 65 74 77 65 65 6e 20 74 77 6f 20 41 42 52 20 28 6f 6e 65 20 6f 66 20 74 68 65 6d 20 68 | e.between.two.ABR.(one.of.them.h |
| faf20 | 61 73 20 61 20 6c 69 6e 6b 20 74 6f 20 74 68 65 20 62 61 63 6b 62 6f 6e 65 20 61 72 65 61 29 20 | as.a.link.to.the.backbone.area). |
| faf40 | 69 6e 20 74 68 65 20 61 72 65 61 20 28 6e 6f 74 20 73 74 75 62 20 61 72 65 61 29 20 61 20 76 69 | in.the.area.(not.stub.area).a.vi |
| faf60 | 72 74 75 61 6c 20 6c 69 6e 6b 20 69 73 20 6f 72 67 61 6e 69 7a 65 64 2e 00 49 6e 20 6c 61 72 67 | rtual.link.is.organized..In.larg |
| faf80 | 65 20 64 65 70 6c 6f 79 6d 65 6e 74 73 20 69 74 20 69 73 20 6e 6f 74 20 72 65 61 73 6f 6e 61 62 | e.deployments.it.is.not.reasonab |
| fafa0 | 6c 65 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 65 61 63 68 20 75 73 65 72 20 69 6e 64 69 76 69 | le.to.configure.each.user.indivi |
| fafc0 | 64 75 61 6c 6c 79 20 6f 6e 20 65 76 65 72 79 20 73 79 73 74 65 6d 2e 20 56 79 4f 53 20 73 75 70 | dually.on.every.system..VyOS.sup |
| fafe0 | 70 6f 72 74 73 20 75 73 69 6e 67 20 3a 61 62 62 72 3a 60 52 41 44 49 55 53 20 28 52 65 6d 6f 74 | ports.using.:abbr:`RADIUS.(Remot |
| fb000 | 65 20 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 44 69 61 6c 2d 49 6e 20 55 73 65 72 20 53 65 | e.Authentication.Dial-In.User.Se |
| fb020 | 72 76 69 63 65 29 60 20 73 65 72 76 65 72 73 20 61 73 20 62 61 63 6b 65 6e 64 20 66 6f 72 20 75 | rvice)`.servers.as.backend.for.u |
| fb040 | 73 65 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2e 00 49 6e 20 6f 72 64 65 72 20 66 6f 72 | ser.authentication..In.order.for |
| fb060 | 20 66 6c 6f 77 20 61 63 63 6f 75 6e 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 6f 20 | .flow.accounting.information.to. |
| fb080 | 62 65 20 63 6f 6c 6c 65 63 74 65 64 20 61 6e 64 20 64 69 73 70 6c 61 79 65 64 20 66 6f 72 20 61 | be.collected.and.displayed.for.a |
| fb0a0 | 6e 20 69 6e 74 65 72 66 61 63 65 2c 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 6d 75 73 74 20 | n.interface,.the.interface.must. |
| fb0c0 | 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 66 6f 72 20 66 6c 6f 77 20 61 63 63 6f 75 6e 74 69 6e | be.configured.for.flow.accountin |
| fb0e0 | 67 2e 00 49 6e 20 6f 72 64 65 72 20 66 6f 72 20 74 68 65 20 70 72 69 6d 61 72 79 20 61 6e 64 20 | g..In.order.for.the.primary.and. |
| fb100 | 74 68 65 20 73 65 63 6f 6e 64 61 72 79 20 44 48 43 50 20 73 65 72 76 65 72 20 74 6f 20 6b 65 65 | the.secondary.DHCP.server.to.kee |
| fb120 | 70 20 74 68 65 69 72 20 6c 65 61 73 65 20 74 61 62 6c 65 73 20 69 6e 20 73 79 6e 63 2c 20 74 68 | p.their.lease.tables.in.sync,.th |
| fb140 | 65 79 20 6d 75 73 74 20 62 65 20 61 62 6c 65 20 74 6f 20 72 65 61 63 68 20 65 61 63 68 20 6f 74 | ey.must.be.able.to.reach.each.ot |
| fb160 | 68 65 72 20 6f 6e 20 54 43 50 20 70 6f 72 74 20 36 34 37 2e 20 49 66 20 79 6f 75 20 68 61 76 65 | her.on.TCP.port.647..If.you.have |
| fb180 | 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 20 69 6e 20 65 66 66 65 63 74 2c 20 61 64 6a 75 73 | .firewall.rules.in.effect,.adjus |
| fb1a0 | 74 20 74 68 65 6d 20 61 63 63 6f 72 64 69 6e 67 6c 79 2e 00 49 6e 20 6f 72 64 65 72 20 66 6f 72 | t.them.accordingly..In.order.for |
| fb1c0 | 20 74 68 65 20 73 79 73 74 65 6d 20 74 6f 20 75 73 65 20 61 6e 64 20 63 6f 6d 70 6c 65 74 65 20 | .the.system.to.use.and.complete. |
| fb1e0 | 75 6e 71 75 61 6c 69 66 69 65 64 20 68 6f 73 74 20 6e 61 6d 65 73 2c 20 61 20 6c 69 73 74 20 63 | unqualified.host.names,.a.list.c |
| fb200 | 61 6e 20 62 65 20 64 65 66 69 6e 65 64 20 77 68 69 63 68 20 77 69 6c 6c 20 62 65 20 75 73 65 64 | an.be.defined.which.will.be.used |
| fb220 | 20 66 6f 72 20 64 6f 6d 61 69 6e 20 73 65 61 72 63 68 65 73 2e 00 49 6e 20 6f 72 64 65 72 20 74 | .for.domain.searches..In.order.t |
| fb240 | 6f 20 61 6c 6c 6f 77 20 66 6f 72 20 4c 44 50 20 6f 6e 20 74 68 65 20 6c 6f 63 61 6c 20 72 6f 75 | o.allow.for.LDP.on.the.local.rou |
| fb260 | 74 65 72 20 74 6f 20 65 78 63 68 61 6e 67 65 20 6c 61 62 65 6c 20 61 64 76 65 72 74 69 73 65 6d | ter.to.exchange.label.advertisem |
| fb280 | 65 6e 74 73 20 77 69 74 68 20 6f 74 68 65 72 20 72 6f 75 74 65 72 73 2c 20 61 20 54 43 50 20 73 | ents.with.other.routers,.a.TCP.s |
| fb2a0 | 65 73 73 69 6f 6e 20 77 69 6c 6c 20 62 65 20 65 73 74 61 62 6c 69 73 68 65 64 20 62 65 74 77 65 | ession.will.be.established.betwe |
| fb2c0 | 65 6e 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 64 69 73 63 6f 76 65 72 65 64 20 61 6e 64 20 | en.automatically.discovered.and. |
| fb2e0 | 73 74 61 74 69 63 61 6c 6c 79 20 61 73 73 69 67 6e 65 64 20 72 6f 75 74 65 72 73 2e 20 4c 44 50 | statically.assigned.routers..LDP |
| fb300 | 20 77 69 6c 6c 20 74 72 79 20 74 6f 20 65 73 74 61 62 6c 69 73 68 20 61 20 54 43 50 20 73 65 73 | .will.try.to.establish.a.TCP.ses |
| fb320 | 73 69 6f 6e 20 74 6f 20 74 68 65 20 2a 2a 74 72 61 6e 73 70 6f 72 74 20 61 64 64 72 65 73 73 2a | sion.to.the.**transport.address* |
| fb340 | 2a 20 6f 66 20 6f 74 68 65 72 20 72 6f 75 74 65 72 73 2e 20 54 68 65 72 65 66 6f 72 65 20 66 6f | *.of.other.routers..Therefore.fo |
| fb360 | 72 20 4c 44 50 20 74 6f 20 66 75 6e 63 74 69 6f 6e 20 70 72 6f 70 65 72 6c 79 20 70 6c 65 61 73 | r.LDP.to.function.properly.pleas |
| fb380 | 65 20 6d 61 6b 65 20 73 75 72 65 20 74 68 65 20 74 72 61 6e 73 70 6f 72 74 20 61 64 64 72 65 73 | e.make.sure.the.transport.addres |
| fb3a0 | 73 20 69 73 20 73 68 6f 77 6e 20 69 6e 20 74 68 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 | s.is.shown.in.the.routing.table. |
| fb3c0 | 61 6e 64 20 72 65 61 63 68 61 62 6c 65 20 74 6f 20 74 72 61 66 66 69 63 20 61 74 20 61 6c 6c 20 | and.reachable.to.traffic.at.all. |
| fb3e0 | 74 69 6d 65 73 2e 00 49 6e 20 6f 72 64 65 72 20 74 6f 20 63 6f 6e 74 72 6f 6c 20 61 6e 64 20 6d | times..In.order.to.control.and.m |
| fb400 | 6f 64 69 66 79 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 68 61 74 20 69 | odify.routing.information.that.i |
| fb420 | 73 20 65 78 63 68 61 6e 67 65 64 20 62 65 74 77 65 65 6e 20 70 65 65 72 73 20 79 6f 75 20 63 61 | s.exchanged.between.peers.you.ca |
| fb440 | 6e 20 75 73 65 20 72 6f 75 74 65 2d 6d 61 70 2c 20 66 69 6c 74 65 72 2d 6c 69 73 74 2c 20 70 72 | n.use.route-map,.filter-list,.pr |
| fb460 | 65 66 69 78 2d 6c 69 73 74 2c 20 64 69 73 74 72 69 62 75 74 65 2d 6c 69 73 74 2e 00 49 6e 20 6f | efix-list,.distribute-list..In.o |
| fb480 | 72 64 65 72 20 74 6f 20 64 65 66 69 6e 65 20 77 68 69 63 68 20 74 72 61 66 66 69 63 20 67 6f 65 | rder.to.define.which.traffic.goe |
| fb4a0 | 73 20 69 6e 74 6f 20 77 68 69 63 68 20 63 6c 61 73 73 2c 20 79 6f 75 20 64 65 66 69 6e 65 20 66 | s.into.which.class,.you.define.f |
| fb4c0 | 69 6c 74 65 72 73 20 28 74 68 61 74 20 69 73 2c 20 74 68 65 20 6d 61 74 63 68 69 6e 67 20 63 72 | ilters.(that.is,.the.matching.cr |
| fb4e0 | 69 74 65 72 69 61 29 2e 20 50 61 63 6b 65 74 73 20 67 6f 20 74 68 72 6f 75 67 68 20 74 68 65 73 | iteria)..Packets.go.through.thes |
| fb500 | 65 20 6d 61 74 63 68 69 6e 67 20 72 75 6c 65 73 20 28 61 73 20 69 6e 20 74 68 65 20 72 75 6c 65 | e.matching.rules.(as.in.the.rule |
| fb520 | 73 20 6f 66 20 61 20 66 69 72 65 77 61 6c 6c 29 20 61 6e 64 2c 20 69 66 20 61 20 70 61 63 6b 65 | s.of.a.firewall).and,.if.a.packe |
| fb540 | 74 20 6d 61 74 63 68 65 73 20 74 68 65 20 66 69 6c 74 65 72 2c 20 69 74 20 69 73 20 61 73 73 69 | t.matches.the.filter,.it.is.assi |
| fb560 | 67 6e 65 64 20 74 6f 20 74 68 61 74 20 63 6c 61 73 73 2e 00 49 6e 20 6f 72 64 65 72 20 74 6f 20 | gned.to.that.class..In.order.to. |
| fb580 | 68 61 76 65 20 56 79 4f 53 20 54 72 61 66 66 69 63 20 43 6f 6e 74 72 6f 6c 20 77 6f 72 6b 69 6e | have.VyOS.Traffic.Control.workin |
| fb5a0 | 67 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 66 6f 6c 6c 6f 77 20 32 20 73 74 65 70 73 3a 00 49 6e | g.you.need.to.follow.2.steps:.In |
| fb5c0 | 20 6f 72 64 65 72 20 74 6f 20 68 61 76 65 20 66 75 6c 6c 20 63 6f 6e 74 72 6f 6c 20 61 6e 64 20 | .order.to.have.full.control.and. |
| fb5e0 | 6d 61 6b 65 20 75 73 65 20 6f 66 20 6d 75 6c 74 69 70 6c 65 20 73 74 61 74 69 63 20 70 75 62 6c | make.use.of.multiple.static.publ |
| fb600 | 69 63 20 49 50 20 61 64 64 72 65 73 73 65 73 2c 20 79 6f 75 72 20 56 79 4f 53 20 77 69 6c 6c 20 | ic.IP.addresses,.your.VyOS.will. |
| fb620 | 68 61 76 65 20 74 6f 20 69 6e 69 74 69 61 74 65 20 74 68 65 20 50 50 50 6f 45 20 63 6f 6e 6e 65 | have.to.initiate.the.PPPoE.conne |
| fb640 | 63 74 69 6f 6e 20 61 6e 64 20 63 6f 6e 74 72 6f 6c 20 69 74 2e 20 49 6e 20 6f 72 64 65 72 20 66 | ction.and.control.it..In.order.f |
| fb660 | 6f 72 20 74 68 69 73 20 6d 65 74 68 6f 64 20 74 6f 20 77 6f 72 6b 2c 20 79 6f 75 20 77 69 6c 6c | or.this.method.to.work,.you.will |
| fb680 | 20 68 61 76 65 20 74 6f 20 66 69 67 75 72 65 20 6f 75 74 20 68 6f 77 20 74 6f 20 6d 61 6b 65 20 | .have.to.figure.out.how.to.make. |
| fb6a0 | 79 6f 75 72 20 44 53 4c 20 4d 6f 64 65 6d 2f 52 6f 75 74 65 72 20 73 77 69 74 63 68 20 69 6e 74 | your.DSL.Modem/Router.switch.int |
| fb6c0 | 6f 20 61 20 42 72 69 64 67 65 64 20 4d 6f 64 65 20 73 6f 20 69 74 20 6f 6e 6c 79 20 61 63 74 73 | o.a.Bridged.Mode.so.it.only.acts |
| fb6e0 | 20 61 73 20 61 20 44 53 4c 20 54 72 61 6e 73 63 65 69 76 65 72 20 64 65 76 69 63 65 20 74 6f 20 | .as.a.DSL.Transceiver.device.to. |
| fb700 | 63 6f 6e 6e 65 63 74 20 62 65 74 77 65 65 6e 20 74 68 65 20 45 74 68 65 72 6e 65 74 20 6c 69 6e | connect.between.the.Ethernet.lin |
| fb720 | 6b 20 6f 66 20 79 6f 75 72 20 56 79 4f 53 20 61 6e 64 20 74 68 65 20 70 68 6f 6e 65 20 63 61 62 | k.of.your.VyOS.and.the.phone.cab |
| fb740 | 6c 65 2e 20 4f 6e 63 65 20 79 6f 75 72 20 44 53 4c 20 54 72 61 6e 73 63 65 69 76 65 72 20 69 73 | le..Once.your.DSL.Transceiver.is |
| fb760 | 20 69 6e 20 42 72 69 64 67 65 20 4d 6f 64 65 2c 20 79 6f 75 20 73 68 6f 75 6c 64 20 67 65 74 20 | .in.Bridge.Mode,.you.should.get. |
| fb780 | 6e 6f 20 49 50 20 61 64 64 72 65 73 73 20 66 72 6f 6d 20 69 74 2e 20 50 6c 65 61 73 65 20 6d 61 | no.IP.address.from.it..Please.ma |
| fb7a0 | 6b 65 20 73 75 72 65 20 79 6f 75 20 63 6f 6e 6e 65 63 74 20 74 6f 20 74 68 65 20 45 74 68 65 72 | ke.sure.you.connect.to.the.Ether |
| fb7c0 | 6e 65 74 20 50 6f 72 74 20 31 20 69 66 20 79 6f 75 72 20 44 53 4c 20 54 72 61 6e 73 63 65 69 76 | net.Port.1.if.your.DSL.Transceiv |
| fb7e0 | 65 72 20 68 61 73 20 61 20 73 77 69 74 63 68 2c 20 61 73 20 73 6f 6d 65 20 6f 66 20 74 68 65 6d | er.has.a.switch,.as.some.of.them |
| fb800 | 20 6f 6e 6c 79 20 77 6f 72 6b 20 74 68 69 73 20 77 61 79 2e 00 49 6e 20 6f 72 64 65 72 20 74 6f | .only.work.this.way..In.order.to |
| fb820 | 20 6d 61 70 20 73 70 65 63 69 66 69 63 20 49 50 76 36 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 | .map.specific.IPv6.addresses.to. |
| fb840 | 73 70 65 63 69 66 69 63 20 68 6f 73 74 73 20 73 74 61 74 69 63 20 6d 61 70 70 69 6e 67 73 20 63 | specific.hosts.static.mappings.c |
| fb860 | 61 6e 20 62 65 20 63 72 65 61 74 65 64 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 | an.be.created..The.following.exa |
| fb880 | 6d 70 6c 65 20 65 78 70 6c 61 69 6e 73 20 74 68 65 20 70 72 6f 63 65 73 73 2e 00 49 6e 20 6f 72 | mple.explains.the.process..In.or |
| fb8a0 | 64 65 72 20 74 6f 20 6d 69 6e 69 6d 69 7a 65 20 74 68 65 20 66 6c 6f 6f 64 69 6e 67 20 6f 66 20 | der.to.minimize.the.flooding.of. |
| fb8c0 | 41 52 50 20 61 6e 64 20 4e 44 20 6d 65 73 73 61 67 65 73 20 69 6e 20 74 68 65 20 56 58 4c 41 4e | ARP.and.ND.messages.in.the.VXLAN |
| fb8e0 | 20 6e 65 74 77 6f 72 6b 2c 20 45 56 50 4e 20 69 6e 63 6c 75 64 65 73 20 70 72 6f 76 69 73 69 6f | .network,.EVPN.includes.provisio |
| fb900 | 6e 73 20 3a 72 66 63 3a 60 37 34 33 32 23 73 65 63 74 69 6f 6e 2d 31 30 60 20 74 68 61 74 20 61 | ns.:rfc:`7432#section-10`.that.a |
| fb920 | 6c 6c 6f 77 20 70 61 72 74 69 63 69 70 61 74 69 6e 67 20 56 54 45 50 73 20 74 6f 20 73 75 70 70 | llow.participating.VTEPs.to.supp |
| fb940 | 72 65 73 73 20 73 75 63 68 20 6d 65 73 73 61 67 65 73 20 69 6e 20 63 61 73 65 20 74 68 65 79 20 | ress.such.messages.in.case.they. |
| fb960 | 6b 6e 6f 77 20 74 68 65 20 4d 41 43 2d 49 50 20 62 69 6e 64 69 6e 67 20 61 6e 64 20 63 61 6e 20 | know.the.MAC-IP.binding.and.can. |
| fb980 | 72 65 70 6c 79 20 6f 6e 20 62 65 68 61 6c 66 20 6f 66 20 74 68 65 20 72 65 6d 6f 74 65 20 68 6f | reply.on.behalf.of.the.remote.ho |
| fb9a0 | 73 74 2e 00 49 6e 20 6f 72 64 65 72 20 74 6f 20 73 65 70 61 72 61 74 65 20 74 72 61 66 66 69 63 | st..In.order.to.separate.traffic |
| fb9c0 | 2c 20 46 61 69 72 20 51 75 65 75 65 20 75 73 65 73 20 61 20 63 6c 61 73 73 69 66 69 65 72 20 62 | ,.Fair.Queue.uses.a.classifier.b |
| fb9e0 | 61 73 65 64 20 6f 6e 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 2c 20 64 65 73 74 69 6e 61 74 | ased.on.source.address,.destinat |
| fba00 | 69 6f 6e 20 61 64 64 72 65 73 73 20 61 6e 64 20 73 6f 75 72 63 65 20 70 6f 72 74 2e 20 54 68 65 | ion.address.and.source.port..The |
| fba20 | 20 61 6c 67 6f 72 69 74 68 6d 20 65 6e 71 75 65 75 65 73 20 70 61 63 6b 65 74 73 20 74 6f 20 68 | .algorithm.enqueues.packets.to.h |
| fba40 | 61 73 68 20 62 75 63 6b 65 74 73 20 62 61 73 65 64 20 6f 6e 20 74 68 6f 73 65 20 74 72 65 65 20 | ash.buckets.based.on.those.tree. |
| fba60 | 70 61 72 61 6d 65 74 65 72 73 2e 20 45 61 63 68 20 6f 66 20 74 68 65 73 65 20 62 75 63 6b 65 74 | parameters..Each.of.these.bucket |
| fba80 | 73 20 73 68 6f 75 6c 64 20 72 65 70 72 65 73 65 6e 74 20 61 20 75 6e 69 71 75 65 20 66 6c 6f 77 | s.should.represent.a.unique.flow |
| fbaa0 | 2e 20 42 65 63 61 75 73 65 20 6d 75 6c 74 69 70 6c 65 20 66 6c 6f 77 73 20 6d 61 79 20 67 65 74 | ..Because.multiple.flows.may.get |
| fbac0 | 20 68 61 73 68 65 64 20 74 6f 20 74 68 65 20 73 61 6d 65 20 62 75 63 6b 65 74 2c 20 74 68 65 20 | .hashed.to.the.same.bucket,.the. |
| fbae0 | 68 61 73 68 69 6e 67 20 61 6c 67 6f 72 69 74 68 6d 20 69 73 20 70 65 72 74 75 72 62 65 64 20 61 | hashing.algorithm.is.perturbed.a |
| fbb00 | 74 20 63 6f 6e 66 69 67 75 72 61 62 6c 65 20 69 6e 74 65 72 76 61 6c 73 20 73 6f 20 74 68 61 74 | t.configurable.intervals.so.that |
| fbb20 | 20 74 68 65 20 75 6e 66 61 69 72 6e 65 73 73 20 6c 61 73 74 73 20 6f 6e 6c 79 20 66 6f 72 20 61 | .the.unfairness.lasts.only.for.a |
| fbb40 | 20 73 68 6f 72 74 20 77 68 69 6c 65 2e 20 50 65 72 74 75 72 62 61 74 69 6f 6e 20 6d 61 79 20 68 | .short.while..Perturbation.may.h |
| fbb60 | 6f 77 65 76 65 72 20 63 61 75 73 65 20 73 6f 6d 65 20 69 6e 61 64 76 65 72 74 65 6e 74 20 70 61 | owever.cause.some.inadvertent.pa |
| fbb80 | 63 6b 65 74 20 72 65 6f 72 64 65 72 69 6e 67 20 74 6f 20 6f 63 63 75 72 2e 20 41 6e 20 61 64 76 | cket.reordering.to.occur..An.adv |
| fbba0 | 69 73 61 62 6c 65 20 76 61 6c 75 65 20 63 6f 75 6c 64 20 62 65 20 31 30 20 73 65 63 6f 6e 64 73 | isable.value.could.be.10.seconds |
| fbbc0 | 2e 00 49 6e 20 6f 72 64 65 72 20 74 6f 20 75 73 65 20 50 49 4d 2c 20 69 74 20 69 73 20 6e 65 63 | ..In.order.to.use.PIM,.it.is.nec |
| fbbe0 | 65 73 73 61 72 79 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 3a 61 62 62 72 3a 60 52 50 20 | essary.to.configure.a.:abbr:`RP. |
| fbc00 | 28 52 65 6e 64 65 7a 76 6f 75 73 20 50 6f 69 6e 74 29 60 20 66 6f 72 20 6a 6f 69 6e 20 6d 65 73 | (Rendezvous.Point)`.for.join.mes |
| fbc20 | 73 61 67 65 73 20 74 6f 20 62 65 20 73 65 6e 74 20 74 6f 2e 20 43 75 72 72 65 6e 74 6c 79 20 74 | sages.to.be.sent.to..Currently.t |
| fbc40 | 68 65 20 6f 6e 6c 79 20 6d 65 74 68 6f 64 6f 6c 6f 67 79 20 74 6f 20 64 6f 20 74 68 69 73 20 69 | he.only.methodology.to.do.this.i |
| fbc60 | 73 20 76 69 61 20 73 74 61 74 69 63 20 72 65 6e 64 65 7a 76 6f 75 73 20 70 6f 69 6e 74 20 63 6f | s.via.static.rendezvous.point.co |
| fbc80 | 6d 6d 61 6e 64 73 2e 00 49 6e 20 6f 72 64 65 72 20 74 6f 20 75 73 65 20 54 53 4f 2f 4c 52 4f 20 | mmands..In.order.to.use.TSO/LRO. |
| fbca0 | 77 69 74 68 20 56 4d 58 4e 45 54 33 20 61 64 61 70 74 65 72 73 2c 20 74 68 65 20 53 47 20 6f 66 | with.VMXNET3.adapters,.the.SG.of |
| fbcc0 | 66 6c 6f 61 64 69 6e 67 20 6f 70 74 69 6f 6e 20 6d 75 73 74 20 61 6c 73 6f 20 62 65 20 65 6e 61 | floading.option.must.also.be.ena |
| fbce0 | 62 6c 65 64 2e 00 49 6e 20 6f 72 64 65 72 20 74 6f 20 75 73 65 20 54 53 4f 2f 4c 52 4f 20 77 69 | bled..In.order.to.use.TSO/LRO.wi |
| fbd00 | 74 68 20 56 4d 58 4e 45 54 33 20 61 64 61 74 65 72 73 20 6f 6e 65 20 6d 75 73 74 20 61 6c 73 6f | th.VMXNET3.adaters.one.must.also |
| fbd20 | 20 65 6e 61 62 6c 65 20 74 68 65 20 53 47 20 6f 66 66 6c 6f 61 64 69 6e 67 20 6f 70 74 69 6f 6e | .enable.the.SG.offloading.option |
| fbd40 | 2e 00 49 6e 20 6f 72 64 65 72 20 74 6f 20 75 73 65 20 66 6c 6f 77 74 61 62 6c 65 73 2c 20 74 68 | ..In.order.to.use.flowtables,.th |
| fbd60 | 65 20 6d 69 6e 69 6d 61 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6e 65 65 64 65 64 20 69 | e.minimal.configuration.needed.i |
| fbd80 | 6e 63 6c 75 64 65 73 3a 00 49 6e 20 6f 74 68 65 72 20 77 6f 72 64 73 20 69 74 20 61 6c 6c 6f 77 | ncludes:.In.other.words.it.allow |
| fbda0 | 73 20 63 6f 6e 74 72 6f 6c 20 6f 66 20 77 68 69 63 68 20 63 61 72 64 73 20 28 75 73 75 61 6c 6c | s.control.of.which.cards.(usuall |
| fbdc0 | 79 20 31 29 20 77 69 6c 6c 20 72 65 73 70 6f 6e 64 20 74 6f 20 61 6e 20 61 72 70 20 72 65 71 75 | y.1).will.respond.to.an.arp.requ |
| fbde0 | 65 73 74 2e 00 49 6e 20 6f 74 68 65 72 20 77 6f 72 64 73 2c 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 | est..In.other.words,.connection. |
| fbe00 | 74 72 61 63 6b 69 6e 67 20 68 61 73 20 61 6c 72 65 61 64 79 20 6f 62 73 65 72 76 65 64 20 74 68 | tracking.has.already.observed.th |
| fbe20 | 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 62 65 20 63 6c 6f 73 65 64 20 61 6e 64 20 68 61 73 20 74 | e.connection.be.closed.and.has.t |
| fbe40 | 72 61 6e 73 69 74 69 6f 6e 20 74 68 65 20 66 6c 6f 77 20 74 6f 20 49 4e 56 41 4c 49 44 20 74 6f | ransition.the.flow.to.INVALID.to |
| fbe60 | 20 70 72 65 76 65 6e 74 20 61 74 74 61 63 6b 73 20 66 72 6f 6d 20 61 74 74 65 6d 70 74 69 6e 67 | .prevent.attacks.from.attempting |
| fbe80 | 20 74 6f 20 72 65 75 73 65 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 49 6e 20 6f 75 72 | .to.reuse.the.connection..In.our |
| fbea0 | 20 65 78 61 6d 70 6c 65 20 74 68 65 20 63 65 72 74 69 66 69 63 61 74 65 20 6e 61 6d 65 20 69 73 | .example.the.certificate.name.is |
| fbec0 | 20 63 61 6c 6c 65 64 20 76 79 6f 73 3a 00 49 6e 20 6f 75 72 20 65 78 61 6d 70 6c 65 2c 20 77 65 | .called.vyos:.In.our.example,.we |
| fbee0 | 20 75 73 65 64 20 74 68 65 20 6b 65 79 20 6e 61 6d 65 20 60 60 6f 70 65 6e 76 70 6e 2d 31 60 60 | .used.the.key.name.``openvpn-1`` |
| fbf00 | 20 77 68 69 63 68 20 77 65 20 77 69 6c 6c 20 72 65 66 65 72 65 6e 63 65 20 69 6e 20 6f 75 72 20 | .which.we.will.reference.in.our. |
| fbf20 | 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 49 6e 20 6f 75 72 20 65 78 61 6d 70 6c 65 2c 20 77 | configuration..In.our.example,.w |
| fbf40 | 65 20 77 69 6c 6c 20 62 65 20 66 6f 72 77 61 72 64 69 6e 67 20 77 65 62 20 73 65 72 76 65 72 20 | e.will.be.forwarding.web.server. |
| fbf60 | 74 72 61 66 66 69 63 20 74 6f 20 61 6e 20 69 6e 74 65 72 6e 61 6c 20 77 65 62 20 73 65 72 76 65 | traffic.to.an.internal.web.serve |
| fbf80 | 72 20 6f 6e 20 31 39 32 2e 31 36 38 2e 30 2e 31 30 30 2e 20 48 54 54 50 20 74 72 61 66 66 69 63 | r.on.192.168.0.100..HTTP.traffic |
| fbfa0 | 20 6d 61 6b 65 73 20 75 73 65 20 6f 66 20 74 68 65 20 54 43 50 20 70 72 6f 74 6f 63 6f 6c 20 6f | .makes.use.of.the.TCP.protocol.o |
| fbfc0 | 6e 20 70 6f 72 74 20 38 30 2e 20 46 6f 72 20 6f 74 68 65 72 20 63 6f 6d 6d 6f 6e 20 70 6f 72 74 | n.port.80..For.other.common.port |
| fbfe0 | 20 6e 75 6d 62 65 72 73 2c 20 73 65 65 3a 20 68 74 74 70 73 3a 2f 2f 65 6e 2e 77 69 6b 69 70 65 | .numbers,.see:.https://en.wikipe |
| fc000 | 64 69 61 2e 6f 72 67 2f 77 69 6b 69 2f 4c 69 73 74 5f 6f 66 5f 54 43 50 5f 61 6e 64 5f 55 44 50 | dia.org/wiki/List_of_TCP_and_UDP |
| fc020 | 5f 70 6f 72 74 5f 6e 75 6d 62 65 72 73 00 49 6e 20 70 72 69 6e 63 69 70 6c 65 2c 20 76 61 6c 75 | _port_numbers.In.principle,.valu |
| fc040 | 65 73 20 6d 75 73 74 20 62 65 20 3a 63 6f 64 65 3a 60 6d 69 6e 2d 74 68 72 65 73 68 6f 6c 64 60 | es.must.be.:code:`min-threshold` |
| fc060 | 20 3c 20 3a 63 6f 64 65 3a 60 6d 61 78 2d 74 68 72 65 73 68 6f 6c 64 60 20 3c 20 3a 63 6f 64 65 | .<.:code:`max-threshold`.<.:code |
| fc080 | 3a 60 71 75 65 75 65 2d 6c 69 6d 69 74 60 2e 00 49 6e 20 73 68 6f 72 74 2c 20 44 4d 56 50 4e 20 | :`queue-limit`..In.short,.DMVPN. |
| fc0a0 | 70 72 6f 76 69 64 65 73 20 74 68 65 20 63 61 70 61 62 69 6c 69 74 79 20 66 6f 72 20 63 72 65 61 | provides.the.capability.for.crea |
| fc0c0 | 74 69 6e 67 20 61 20 64 79 6e 61 6d 69 63 2d 6d 65 73 68 20 56 50 4e 20 6e 65 74 77 6f 72 6b 20 | ting.a.dynamic-mesh.VPN.network. |
| fc0e0 | 77 69 74 68 6f 75 74 20 68 61 76 69 6e 67 20 74 6f 20 70 72 65 2d 63 6f 6e 66 69 67 75 72 65 20 | without.having.to.pre-configure. |
| fc100 | 28 73 74 61 74 69 63 29 20 61 6c 6c 20 70 6f 73 73 69 62 6c 65 20 74 75 6e 6e 65 6c 20 65 6e 64 | (static).all.possible.tunnel.end |
| fc120 | 2d 70 6f 69 6e 74 20 70 65 65 72 73 2e 00 49 6e 20 73 6f 6d 65 20 63 61 73 65 20 77 68 65 72 65 | -point.peers..In.some.case.where |
| fc140 | 20 77 65 20 6e 65 65 64 20 74 6f 20 68 61 76 65 20 61 6e 20 6f 72 67 61 6e 69 7a 61 74 69 6f 6e | .we.need.to.have.an.organization |
| fc160 | 20 6f 66 20 6f 75 72 20 6d 61 74 63 68 69 6e 67 20 73 65 6c 65 63 74 69 6f 6e 2c 20 69 6e 20 6f | .of.our.matching.selection,.in.o |
| fc180 | 72 64 65 72 20 74 6f 20 62 65 20 6d 6f 72 65 20 66 6c 65 78 69 62 6c 65 20 61 6e 64 20 6f 72 67 | rder.to.be.more.flexible.and.org |
| fc1a0 | 61 6e 69 7a 65 20 77 69 74 68 20 6f 75 72 20 66 69 6c 74 65 72 20 64 65 66 69 6e 69 74 69 6f 6e | anize.with.our.filter.definition |
| fc1c0 | 2e 20 57 65 20 63 61 6e 20 61 70 70 6c 79 20 74 72 61 66 66 69 63 20 6d 61 74 63 68 20 67 72 6f | ..We.can.apply.traffic.match.gro |
| fc1e0 | 75 70 73 2c 20 61 6c 6c 6f 77 69 6e 67 20 75 73 20 74 6f 20 63 72 65 61 74 65 20 64 69 73 74 69 | ups,.allowing.us.to.create.disti |
| fc200 | 6e 63 74 20 66 69 6c 74 65 72 20 67 72 6f 75 70 73 20 77 69 74 68 69 6e 20 6f 75 72 20 70 6f 6c | nct.filter.groups.within.our.pol |
| fc220 | 69 63 79 20 61 6e 64 20 64 65 66 69 6e 65 20 76 61 72 69 6f 75 73 20 70 61 72 61 6d 65 74 65 72 | icy.and.define.various.parameter |
| fc240 | 73 20 66 6f 72 20 65 61 63 68 20 67 72 6f 75 70 3a 00 49 6e 20 73 6f 6d 65 20 63 61 73 65 73 20 | s.for.each.group:.In.some.cases. |
| fc260 | 69 74 20 6d 61 79 20 62 65 20 6d 6f 72 65 20 63 6f 6e 76 65 6e 69 65 6e 74 20 74 6f 20 65 6e 61 | it.may.be.more.convenient.to.ena |
| fc280 | 62 6c 65 20 4f 53 50 46 20 6f 6e 20 61 20 70 65 72 20 69 6e 74 65 72 66 61 63 65 2f 73 75 62 6e | ble.OSPF.on.a.per.interface/subn |
| fc2a0 | 65 74 20 62 61 73 69 73 20 3a 63 66 67 63 6d 64 3a 60 73 65 74 20 70 72 6f 74 6f 63 6f 6c 73 20 | et.basis.:cfgcmd:`set.protocols. |
| fc2c0 | 6f 73 70 66 20 69 6e 74 65 72 66 61 63 65 20 3c 69 6e 74 65 72 66 61 63 65 3e 20 61 72 65 61 20 | ospf.interface.<interface>.area. |
| fc2e0 | 3c 78 2e 78 2e 78 2e 78 20 7c 20 78 3e 60 00 49 6e 20 74 68 65 20 3a 72 65 66 3a 60 63 72 65 61 | <x.x.x.x.|.x>`.In.the.:ref:`crea |
| fc300 | 74 69 6e 67 5f 61 5f 74 72 61 66 66 69 63 5f 70 6f 6c 69 63 79 60 20 73 65 63 74 69 6f 6e 20 79 | ting_a_traffic_policy`.section.y |
| fc320 | 6f 75 20 77 69 6c 6c 20 73 65 65 20 74 68 61 74 20 73 6f 6d 65 20 6f 66 20 74 68 65 20 70 6f 6c | ou.will.see.that.some.of.the.pol |
| fc340 | 69 63 69 65 73 20 75 73 65 20 2a 63 6c 61 73 73 65 73 2a 2e 20 54 68 6f 73 65 20 70 6f 6c 69 63 | icies.use.*classes*..Those.polic |
| fc360 | 69 65 73 20 6c 65 74 20 79 6f 75 20 64 69 73 74 72 69 62 75 74 65 20 74 72 61 66 66 69 63 20 69 | ies.let.you.distribute.traffic.i |
| fc380 | 6e 74 6f 20 64 69 66 66 65 72 65 6e 74 20 63 6c 61 73 73 65 73 20 61 63 63 6f 72 64 69 6e 67 20 | nto.different.classes.according. |
| fc3a0 | 74 6f 20 64 69 66 66 65 72 65 6e 74 20 70 61 72 61 6d 65 74 65 72 73 20 79 6f 75 20 63 61 6e 20 | to.different.parameters.you.can. |
| fc3c0 | 63 68 6f 6f 73 65 2e 20 53 6f 2c 20 61 20 63 6c 61 73 73 20 69 73 20 6a 75 73 74 20 61 20 73 70 | choose..So,.a.class.is.just.a.sp |
| fc3e0 | 65 63 69 66 69 63 20 74 79 70 65 20 6f 66 20 74 72 61 66 66 69 63 20 79 6f 75 20 73 65 6c 65 63 | ecific.type.of.traffic.you.selec |
| fc400 | 74 2e 00 49 6e 20 74 68 65 20 56 79 4f 53 20 43 4c 49 2c 20 61 20 6b 65 79 20 70 6f 69 6e 74 20 | t..In.the.VyOS.CLI,.a.key.point. |
| fc420 | 6f 66 74 65 6e 20 6f 76 65 72 6c 6f 6f 6b 65 64 20 69 73 20 74 68 61 74 20 72 61 74 68 65 72 20 | often.overlooked.is.that.rather. |
| fc440 | 74 68 61 6e 20 62 65 69 6e 67 20 63 6f 6e 66 69 67 75 72 65 64 20 75 73 69 6e 67 20 74 68 65 20 | than.being.configured.using.the. |
| fc460 | 60 73 65 74 20 76 70 6e 60 20 73 74 61 6e 7a 61 2c 20 4f 70 65 6e 56 50 4e 20 69 73 20 63 6f 6e | `set.vpn`.stanza,.OpenVPN.is.con |
| fc480 | 66 69 67 75 72 65 64 20 61 73 20 61 20 6e 65 74 77 6f 72 6b 20 69 6e 74 65 72 66 61 63 65 20 75 | figured.as.a.network.interface.u |
| fc4a0 | 73 69 6e 67 20 60 73 65 74 20 69 6e 74 65 72 66 61 63 65 73 20 6f 70 65 6e 76 70 6e 60 2e 00 49 | sing.`set.interfaces.openvpn`..I |
| fc4c0 | 6e 20 74 68 65 20 61 62 6f 76 65 20 65 78 61 6d 70 6c 65 2c 20 61 6e 20 65 78 74 65 72 6e 61 6c | n.the.above.example,.an.external |
| fc4e0 | 20 49 50 20 6f 66 20 31 39 32 2e 30 2e 32 2e 32 20 69 73 20 61 73 73 75 6d 65 64 2e 00 49 6e 20 | .IP.of.192.0.2.2.is.assumed..In. |
| fc500 | 74 68 65 20 61 67 65 20 6f 66 20 76 65 72 79 20 66 61 73 74 20 6e 65 74 77 6f 72 6b 73 2c 20 61 | the.age.of.very.fast.networks,.a |
| fc520 | 20 73 65 63 6f 6e 64 20 6f 66 20 75 6e 72 65 61 63 68 61 62 69 6c 69 74 79 20 6d 61 79 20 65 71 | .second.of.unreachability.may.eq |
| fc540 | 75 61 6c 20 6d 69 6c 6c 69 6f 6e 73 20 6f 66 20 6c 6f 73 74 20 70 61 63 6b 65 74 73 2e 20 54 68 | ual.millions.of.lost.packets..Th |
| fc560 | 65 20 69 64 65 61 20 62 65 68 69 6e 64 20 42 46 44 20 69 73 20 74 6f 20 64 65 74 65 63 74 20 76 | e.idea.behind.BFD.is.to.detect.v |
| fc580 | 65 72 79 20 71 75 69 63 6b 6c 79 20 77 68 65 6e 20 61 20 70 65 65 72 20 69 73 20 64 6f 77 6e 20 | ery.quickly.when.a.peer.is.down. |
| fc5a0 | 61 6e 64 20 74 61 6b 65 20 61 63 74 69 6f 6e 20 65 78 74 72 65 6d 65 6c 79 20 66 61 73 74 2e 00 | and.take.action.extremely.fast.. |
| fc5c0 | 49 6e 20 74 68 65 20 63 61 73 65 20 6f 66 20 4c 32 54 50 76 33 2c 20 74 68 65 20 66 65 61 74 75 | In.the.case.of.L2TPv3,.the.featu |
| fc5e0 | 72 65 73 20 6c 6f 73 74 20 61 72 65 20 74 65 6c 65 74 72 61 66 66 69 63 20 65 6e 67 69 6e 65 65 | res.lost.are.teletraffic.enginee |
| fc600 | 72 69 6e 67 20 66 65 61 74 75 72 65 73 20 63 6f 6e 73 69 64 65 72 65 64 20 69 6d 70 6f 72 74 61 | ring.features.considered.importa |
| fc620 | 6e 74 20 69 6e 20 4d 50 4c 53 2e 20 48 6f 77 65 76 65 72 2c 20 74 68 65 72 65 20 69 73 20 6e 6f | nt.in.MPLS..However,.there.is.no |
| fc640 | 20 72 65 61 73 6f 6e 20 74 68 65 73 65 20 66 65 61 74 75 72 65 73 20 63 6f 75 6c 64 20 6e 6f 74 | .reason.these.features.could.not |
| fc660 | 20 62 65 20 72 65 2d 65 6e 67 69 6e 65 65 72 65 64 20 69 6e 20 6f 72 20 6f 6e 20 74 6f 70 20 6f | .be.re-engineered.in.or.on.top.o |
| fc680 | 66 20 4c 32 54 50 76 33 20 69 6e 20 6c 61 74 65 72 20 70 72 6f 64 75 63 74 73 2e 00 49 6e 20 74 | f.L2TPv3.in.later.products..In.t |
| fc6a0 | 68 65 20 63 61 73 65 20 74 68 65 20 61 76 65 72 61 67 65 20 71 75 65 75 65 20 73 69 7a 65 20 69 | he.case.the.average.queue.size.i |
| fc6c0 | 73 20 62 65 74 77 65 65 6e 20 2a 2a 6d 69 6e 2d 74 68 72 65 73 68 6f 6c 64 2a 2a 20 61 6e 64 20 | s.between.**min-threshold**.and. |
| fc6e0 | 2a 2a 6d 61 78 2d 74 68 72 65 73 68 6f 6c 64 2a 2a 2c 20 74 68 65 6e 20 61 6e 20 61 72 72 69 76 | **max-threshold**,.then.an.arriv |
| fc700 | 69 6e 67 20 70 61 63 6b 65 74 20 77 6f 75 6c 64 20 62 65 20 65 69 74 68 65 72 20 64 72 6f 70 70 | ing.packet.would.be.either.dropp |
| fc720 | 65 64 20 6f 72 20 70 6c 61 63 65 64 20 69 6e 20 74 68 65 20 71 75 65 75 65 2c 20 69 74 20 77 69 | ed.or.placed.in.the.queue,.it.wi |
| fc740 | 6c 6c 20 64 65 70 65 6e 64 20 6f 6e 20 74 68 65 20 64 65 66 69 6e 65 64 20 2a 2a 6d 61 72 6b 2d | ll.depend.on.the.defined.**mark- |
| fc760 | 70 72 6f 62 61 62 69 6c 69 74 79 2a 2a 2e 00 49 6e 20 74 68 65 20 63 61 73 65 20 79 6f 75 20 77 | probability**..In.the.case.you.w |
| fc780 | 61 6e 74 20 74 6f 20 61 70 70 6c 79 20 73 6f 6d 65 20 6b 69 6e 64 20 6f 66 20 2a 2a 73 68 61 70 | ant.to.apply.some.kind.of.**shap |
| fc7a0 | 69 6e 67 2a 2a 20 74 6f 20 79 6f 75 72 20 2a 2a 69 6e 62 6f 75 6e 64 2a 2a 20 74 72 61 66 66 69 | ing**.to.your.**inbound**.traffi |
| fc7c0 | 63 2c 20 63 68 65 63 6b 20 74 68 65 20 69 6e 67 72 65 73 73 2d 73 68 61 70 69 6e 67 5f 20 73 65 | c,.check.the.ingress-shaping_.se |
| fc7e0 | 63 74 69 6f 6e 2e 00 49 6e 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 61 62 6f 76 65 2c 20 77 65 20 | ction..In.the.command.above,.we. |
| fc800 | 73 65 74 20 74 68 65 20 74 79 70 65 20 6f 66 20 70 6f 6c 69 63 79 20 77 65 20 61 72 65 20 67 6f | set.the.type.of.policy.we.are.go |
| fc820 | 69 6e 67 20 74 6f 20 77 6f 72 6b 20 77 69 74 68 20 61 6e 64 20 74 68 65 20 6e 61 6d 65 20 77 65 | ing.to.work.with.and.the.name.we |
| fc840 | 20 63 68 6f 6f 73 65 20 66 6f 72 20 69 74 3b 20 61 20 63 6c 61 73 73 20 28 73 6f 20 74 68 61 74 | .choose.for.it;.a.class.(so.that |
| fc860 | 20 77 65 20 63 61 6e 20 64 69 66 66 65 72 65 6e 74 69 61 74 65 20 73 6f 6d 65 20 74 72 61 66 66 | .we.can.differentiate.some.traff |
| fc880 | 69 63 29 20 61 6e 64 20 61 6e 20 69 64 65 6e 74 69 66 69 61 62 6c 65 20 6e 75 6d 62 65 72 20 66 | ic).and.an.identifiable.number.f |
| fc8a0 | 6f 72 20 74 68 61 74 20 63 6c 61 73 73 3b 20 74 68 65 6e 20 77 65 20 63 6f 6e 66 69 67 75 72 65 | or.that.class;.then.we.configure |
| fc8c0 | 20 61 20 6d 61 74 63 68 69 6e 67 20 72 75 6c 65 20 28 6f 72 20 66 69 6c 74 65 72 29 20 61 6e 64 | .a.matching.rule.(or.filter).and |
| fc8e0 | 20 61 20 6e 61 6d 65 20 66 6f 72 20 69 74 2e 00 49 6e 20 74 68 65 20 65 6e 64 2c 20 61 6e 20 58 | .a.name.for.it..In.the.end,.an.X |
| fc900 | 4d 4c 20 73 74 72 75 63 74 75 72 65 20 69 73 20 67 65 6e 65 72 61 74 65 64 20 77 68 69 63 68 20 | ML.structure.is.generated.which. |
| fc920 | 63 61 6e 20 62 65 20 73 61 76 65 64 20 61 73 20 60 60 76 79 6f 73 2e 6d 6f 62 69 6c 65 63 6f 6e | can.be.saved.as.``vyos.mobilecon |
| fc940 | 66 69 67 60 60 20 61 6e 64 20 73 65 6e 74 20 74 6f 20 74 68 65 20 64 65 76 69 63 65 20 62 79 20 | fig``.and.sent.to.the.device.by. |
| fc960 | 45 2d 4d 61 69 6c 20 77 68 65 72 65 20 69 74 20 6c 61 74 65 72 20 63 61 6e 20 62 65 20 69 6d 70 | E-Mail.where.it.later.can.be.imp |
| fc980 | 6f 72 74 65 64 2e 00 49 6e 20 74 68 65 20 65 78 61 6d 70 6c 65 20 61 62 6f 76 65 2c 20 74 68 65 | orted..In.the.example.above,.the |
| fc9a0 | 20 66 69 72 73 74 20 34 39 39 20 73 65 73 73 69 6f 6e 73 20 63 6f 6e 6e 65 63 74 20 77 69 74 68 | .first.499.sessions.connect.with |
| fc9c0 | 6f 75 74 20 64 65 6c 61 79 2e 20 50 41 44 4f 20 70 61 63 6b 65 74 73 20 77 69 6c 6c 20 62 65 20 | out.delay..PADO.packets.will.be. |
| fc9e0 | 64 65 6c 61 79 65 64 20 35 30 20 6d 73 20 66 6f 72 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 66 72 6f | delayed.50.ms.for.connection.fro |
| fca00 | 6d 20 35 30 30 20 74 6f 20 39 39 39 2c 20 74 68 69 73 20 74 72 69 63 6b 20 61 6c 6c 6f 77 73 20 | m.500.to.999,.this.trick.allows. |
| fca20 | 6f 74 68 65 72 20 50 50 50 6f 45 20 73 65 72 76 65 72 73 20 73 65 6e 64 20 50 41 44 4f 20 66 61 | other.PPPoE.servers.send.PADO.fa |
| fca40 | 73 74 65 72 20 61 6e 64 20 63 6c 69 65 6e 74 73 20 77 69 6c 6c 20 63 6f 6e 6e 65 63 74 20 74 6f | ster.and.clients.will.connect.to |
| fca60 | 20 6f 74 68 65 72 20 73 65 72 76 65 72 73 2e 20 4c 61 73 74 20 63 6f 6d 6d 61 6e 64 20 73 61 79 | .other.servers..Last.command.say |
| fca80 | 73 20 74 68 61 74 20 74 68 69 73 20 50 50 50 6f 45 20 73 65 72 76 65 72 20 63 61 6e 20 73 65 72 | s.that.this.PPPoE.server.can.ser |
| fcaa0 | 76 65 20 6f 6e 6c 79 20 33 30 30 30 20 63 6c 69 65 6e 74 73 2e 00 49 6e 20 74 68 65 20 65 78 61 | ve.only.3000.clients..In.the.exa |
| fcac0 | 6d 70 6c 65 20 75 73 65 64 20 66 6f 72 20 74 68 65 20 51 75 69 63 6b 20 53 74 61 72 74 20 63 6f | mple.used.for.the.Quick.Start.co |
| fcae0 | 6e 66 69 67 75 72 61 74 69 6f 6e 20 61 62 6f 76 65 2c 20 77 65 20 64 65 6d 6f 6e 73 74 72 61 74 | nfiguration.above,.we.demonstrat |
| fcb00 | 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 00 49 | e.the.following.configuration:.I |
| fcb20 | 6e 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 6c 65 20 77 65 20 63 61 6e 20 73 | n.the.following.example.we.can.s |
| fcb40 | 65 65 20 61 20 62 61 73 69 63 20 6d 75 6c 74 69 63 61 73 74 20 73 65 74 75 70 3a 00 49 6e 20 74 | ee.a.basic.multicast.setup:.In.t |
| fcb60 | 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 6c 65 2c 20 62 6f 74 68 20 60 55 73 65 72 | he.following.example,.both.`User |
| fcb80 | 31 60 20 61 6e 64 20 60 55 73 65 72 32 60 20 77 69 6c 6c 20 62 65 20 61 62 6c 65 20 74 6f 20 53 | 1`.and.`User2`.will.be.able.to.S |
| fcba0 | 53 48 20 69 6e 74 6f 20 56 79 4f 53 20 61 73 20 75 73 65 72 20 60 60 76 79 6f 73 60 60 20 75 73 | SH.into.VyOS.as.user.``vyos``.us |
| fcbc0 | 69 6e 67 20 74 68 65 69 72 20 76 65 72 79 20 6f 77 6e 20 6b 65 79 73 2e 20 60 55 73 65 72 31 60 | ing.their.very.own.keys..`User1` |
| fcbe0 | 20 69 73 20 72 65 73 74 72 69 63 74 65 64 20 74 6f 20 6f 6e 6c 79 20 62 65 20 61 62 6c 65 20 74 | .is.restricted.to.only.be.able.t |
| fcc00 | 6f 20 63 6f 6e 6e 65 63 74 20 66 72 6f 6d 20 61 20 73 69 6e 67 6c 65 20 49 50 20 61 64 64 72 65 | o.connect.from.a.single.IP.addre |
| fcc20 | 73 73 2e 20 49 6e 20 61 64 64 69 74 69 6f 6e 20 69 66 20 70 61 73 73 77 6f 72 64 20 62 61 73 65 | ss..In.addition.if.password.base |
| fcc40 | 20 6c 6f 67 69 6e 20 69 73 20 77 61 6e 74 65 64 20 66 6f 72 20 74 68 65 20 60 60 76 79 6f 73 60 | .login.is.wanted.for.the.``vyos` |
| fcc60 | 60 20 75 73 65 72 20 61 20 32 46 41 2f 4d 46 41 20 6b 65 79 63 6f 64 65 20 69 73 20 72 65 71 75 | `.user.a.2FA/MFA.keycode.is.requ |
| fcc80 | 69 72 65 64 20 69 6e 20 61 64 64 69 74 69 6f 6e 20 74 6f 20 74 68 65 20 70 61 73 73 77 6f 72 64 | ired.in.addition.to.the.password |
| fcca0 | 2e 00 49 6e 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 6c 65 2c 20 74 68 65 20 | ..In.the.following.example,.the. |
| fccc0 | 49 50 73 20 66 6f 72 20 74 68 65 20 72 65 6d 6f 74 65 20 63 6c 69 65 6e 74 73 20 61 72 65 20 64 | IPs.for.the.remote.clients.are.d |
| fcce0 | 65 66 69 6e 65 64 20 69 6e 20 74 68 65 20 70 65 65 72 73 2e 20 54 68 69 73 20 61 6c 6c 6f 77 73 | efined.in.the.peers..This.allows |
| fcd00 | 20 74 68 65 20 70 65 65 72 73 20 74 6f 20 69 6e 74 65 72 61 63 74 20 77 69 74 68 20 6f 6e 65 20 | .the.peers.to.interact.with.one. |
| fcd20 | 61 6e 6f 74 68 65 72 2e 20 49 6e 20 63 6f 6d 70 61 72 69 73 6f 6e 20 74 6f 20 74 68 65 20 73 69 | another..In.comparison.to.the.si |
| fcd40 | 74 65 2d 74 6f 2d 73 69 74 65 20 65 78 61 6d 70 6c 65 20 74 68 65 20 60 60 70 65 72 73 69 73 74 | te-to-site.example.the.``persist |
| fcd60 | 65 6e 74 2d 6b 65 65 70 61 6c 69 76 65 60 60 20 66 6c 61 67 20 69 73 20 73 65 74 20 74 6f 20 31 | ent-keepalive``.flag.is.set.to.1 |
| fcd80 | 35 20 73 65 63 6f 6e 64 73 20 74 6f 20 61 73 73 75 72 65 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 | 5.seconds.to.assure.the.connecti |
| fcda0 | 6f 6e 20 69 73 20 6b 65 70 74 20 61 6c 69 76 65 2e 20 54 68 69 73 20 69 73 20 6d 61 69 6e 6c 79 | on.is.kept.alive..This.is.mainly |
| fcdc0 | 20 72 65 6c 65 76 61 6e 74 20 69 66 20 6f 6e 65 20 6f 66 20 74 68 65 20 70 65 65 72 73 20 69 73 | .relevant.if.one.of.the.peers.is |
| fcde0 | 20 62 65 68 69 6e 64 20 4e 41 54 20 61 6e 64 20 63 61 6e 27 74 20 62 65 20 63 6f 6e 6e 65 63 74 | .behind.NAT.and.can't.be.connect |
| fce00 | 65 64 20 74 6f 20 69 66 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 69 73 20 6c 6f 73 74 2e | ed.to.if.the.connection.is.lost. |
| fce20 | 20 54 6f 20 62 65 20 65 66 66 65 63 74 69 76 65 20 74 68 69 73 20 76 61 6c 75 65 20 6e 65 65 64 | .To.be.effective.this.value.need |
| fce40 | 73 20 74 6f 20 62 65 20 6c 6f 77 65 72 20 74 68 61 6e 20 74 68 65 20 55 44 50 20 74 69 6d 65 6f | s.to.be.lower.than.the.UDP.timeo |
| fce60 | 75 74 2e 00 49 6e 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 6c 65 2c 20 77 68 | ut..In.the.following.example,.wh |
| fce80 | 65 6e 20 56 4c 41 4e 39 20 74 72 61 6e 73 69 74 69 6f 6e 73 2c 20 56 4c 41 4e 32 30 20 77 69 6c | en.VLAN9.transitions,.VLAN20.wil |
| fcea0 | 6c 20 61 6c 73 6f 20 74 72 61 6e 73 69 74 69 6f 6e 3a 00 49 6e 20 74 68 65 20 66 75 74 75 72 65 | l.also.transition:.In.the.future |
| fcec0 | 20 74 68 69 73 20 69 73 20 65 78 70 65 63 74 65 64 20 74 6f 20 62 65 20 61 20 76 65 72 79 20 75 | .this.is.expected.to.be.a.very.u |
| fcee0 | 73 65 66 75 6c 20 70 72 6f 74 6f 63 6f 6c 20 28 74 68 6f 75 67 68 20 74 68 65 72 65 20 61 72 65 | seful.protocol.(though.there.are |
| fcf00 | 20 60 6f 74 68 65 72 20 70 72 6f 70 6f 73 61 6c 73 60 5f 29 2e 00 49 6e 20 74 68 65 20 6e 65 78 | .`other.proposals`_)..In.the.nex |
| fcf20 | 74 20 65 78 61 6d 70 6c 65 20 61 6c 6c 20 74 72 61 66 66 69 63 20 64 65 73 74 69 6e 65 64 20 74 | t.example.all.traffic.destined.t |
| fcf40 | 6f 20 60 60 32 30 33 2e 30 2e 31 31 33 2e 31 60 60 20 61 6e 64 20 70 6f 72 74 20 60 60 38 32 38 | o.``203.0.113.1``.and.port.``828 |
| fcf60 | 30 60 60 20 70 72 6f 74 6f 63 6f 6c 20 54 43 50 20 69 73 20 62 61 6c 61 6e 63 65 64 20 62 65 74 | 0``.protocol.TCP.is.balanced.bet |
| fcf80 | 77 65 65 6e 20 32 20 72 65 61 6c 20 73 65 72 76 65 72 73 20 60 60 31 39 32 2e 30 2e 32 2e 31 31 | ween.2.real.servers.``192.0.2.11 |
| fcfa0 | 60 60 20 61 6e 64 20 60 60 31 39 32 2e 30 2e 32 2e 31 32 60 60 20 74 6f 20 70 6f 72 74 20 60 60 | ``.and.``192.0.2.12``.to.port.`` |
| fcfc0 | 38 30 60 60 00 49 6e 20 74 68 65 20 70 61 73 74 20 28 56 79 4f 53 20 31 2e 31 29 20 75 73 65 64 | 80``.In.the.past.(VyOS.1.1).used |
| fcfe0 | 20 61 20 67 61 74 65 77 61 79 2d 61 64 64 72 65 73 73 20 63 6f 6e 66 69 67 75 72 65 64 20 75 6e | .a.gateway-address.configured.un |
| fd000 | 64 65 72 20 74 68 65 20 73 79 73 74 65 6d 20 74 72 65 65 20 28 3a 63 66 67 63 6d 64 3a 60 73 65 | der.the.system.tree.(:cfgcmd:`se |
| fd020 | 74 20 73 79 73 74 65 6d 20 67 61 74 65 77 61 79 2d 61 64 64 72 65 73 73 20 3c 61 64 64 72 65 73 | t.system.gateway-address.<addres |
| fd040 | 73 3e 60 29 2c 20 74 68 69 73 20 69 73 20 6e 6f 20 6c 6f 6e 67 65 72 20 73 75 70 70 6f 72 74 65 | s>`),.this.is.no.longer.supporte |
| fd060 | 64 20 61 6e 64 20 65 78 69 73 74 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 73 20 61 72 | d.and.existing.configurations.ar |
| fd080 | 65 20 6d 69 67 72 61 74 65 64 20 74 6f 20 74 68 65 20 6e 65 77 20 43 4c 49 20 63 6f 6d 6d 61 6e | e.migrated.to.the.new.CLI.comman |
| fd0a0 | 64 2e 00 49 6e 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 72 65 65 2c 20 61 6c 6c 20 68 61 72 | d..In.this.command.tree,.all.har |
| fd0c0 | 64 77 61 72 65 20 61 63 63 65 6c 65 72 61 74 69 6f 6e 20 6f 70 74 69 6f 6e 73 20 77 69 6c 6c 20 | dware.acceleration.options.will. |
| fd0e0 | 62 65 20 68 61 6e 64 6c 65 64 2e 20 41 74 20 74 68 65 20 6d 6f 6d 65 6e 74 20 6f 6e 6c 79 20 60 | be.handled..At.the.moment.only.` |
| fd100 | 49 6e 74 65 6c c2 ae 20 51 41 54 60 5f 20 69 73 20 73 75 70 70 6f 72 74 65 64 00 49 6e 20 74 68 | Intel...QAT`_.is.supported.In.th |
| fd120 | 69 73 20 65 78 61 6d 70 6c 65 20 61 6c 6c 20 74 72 61 66 66 69 63 20 64 65 73 74 69 6e 65 64 20 | is.example.all.traffic.destined. |
| fd140 | 74 6f 20 70 6f 72 74 73 20 22 38 30 2c 20 32 32 32 32 2c 20 38 38 38 38 22 20 70 72 6f 74 6f 63 | to.ports."80,.2222,.8888".protoc |
| fd160 | 6f 6c 20 54 43 50 20 6d 61 72 6b 73 20 74 6f 20 66 77 6d 61 72 6b 20 22 31 31 31 22 20 61 6e 64 | ol.TCP.marks.to.fwmark."111".and |
| fd180 | 20 62 61 6c 61 6e 63 65 64 20 62 65 74 77 65 65 6e 20 32 20 72 65 61 6c 20 73 65 72 76 65 72 73 | .balanced.between.2.real.servers |
| fd1a0 | 2e 20 50 6f 72 74 20 22 30 22 20 69 73 20 72 65 71 75 69 72 65 64 20 69 66 20 6d 75 6c 74 69 70 | ..Port."0".is.required.if.multip |
| fd1c0 | 6c 65 20 70 6f 72 74 73 20 61 72 65 20 75 73 65 64 2e 00 49 6e 20 74 68 69 73 20 65 78 61 6d 70 | le.ports.are.used..In.this.examp |
| fd1e0 | 6c 65 20 69 6d 61 67 65 2c 20 61 20 73 69 6d 70 6c 69 66 65 64 20 74 72 61 66 66 69 63 20 66 6c | le.image,.a.simplifed.traffic.fl |
| fd200 | 6f 77 20 69 73 20 73 68 6f 77 6e 20 74 6f 20 68 65 6c 70 20 70 72 6f 76 69 64 65 20 63 6f 6e 74 | ow.is.shown.to.help.provide.cont |
| fd220 | 65 78 74 20 74 6f 20 74 68 65 20 74 65 72 6d 73 20 6f 66 20 60 66 6f 72 77 61 72 64 60 2c 20 60 | ext.to.the.terms.of.`forward`,.` |
| fd240 | 69 6e 70 75 74 60 2c 20 61 6e 64 20 60 6f 75 74 70 75 74 60 20 66 6f 72 20 74 68 65 20 6e 65 77 | input`,.and.`output`.for.the.new |
| fd260 | 20 66 69 72 65 77 61 6c 6c 20 43 4c 49 20 66 6f 72 6d 61 74 2e 00 49 6e 20 74 68 69 73 20 65 78 | .firewall.CLI.format..In.this.ex |
| fd280 | 61 6d 70 6c 65 20 77 65 20 77 69 6c 6c 20 75 73 65 20 74 68 65 20 6d 6f 73 74 20 63 6f 6d 70 6c | ample.we.will.use.the.most.compl |
| fd2a0 | 69 63 61 74 65 64 20 63 61 73 65 3a 20 61 20 73 65 74 75 70 20 77 68 65 72 65 20 65 61 63 68 20 | icated.case:.a.setup.where.each. |
| fd2c0 | 63 6c 69 65 6e 74 20 69 73 20 61 20 72 6f 75 74 65 72 20 74 68 61 74 20 68 61 73 20 69 74 73 20 | client.is.a.router.that.has.its. |
| fd2e0 | 6f 77 6e 20 73 75 62 6e 65 74 20 28 74 68 69 6e 6b 20 48 51 20 61 6e 64 20 62 72 61 6e 63 68 20 | own.subnet.(think.HQ.and.branch. |
| fd300 | 6f 66 66 69 63 65 73 29 2c 20 73 69 6e 63 65 20 73 69 6d 70 6c 65 72 20 73 65 74 75 70 73 20 61 | offices),.since.simpler.setups.a |
| fd320 | 72 65 20 73 75 62 73 65 74 73 20 6f 66 20 69 74 2e 00 49 6e 20 74 68 69 73 20 65 78 61 6d 70 6c | re.subsets.of.it..In.this.exampl |
| fd340 | 65 2c 20 73 6f 6d 65 20 2a 4f 70 65 6e 4e 49 43 2a 20 73 65 72 76 65 72 73 20 61 72 65 20 75 73 | e,.some.*OpenNIC*.servers.are.us |
| fd360 | 65 64 2c 20 74 77 6f 20 49 50 76 34 20 61 64 64 72 65 73 73 65 73 20 61 6e 64 20 74 77 6f 20 49 | ed,.two.IPv4.addresses.and.two.I |
| fd380 | 50 76 36 20 61 64 64 72 65 73 73 65 73 3a 00 49 6e 20 74 68 69 73 20 65 78 61 6d 70 6c 65 2c 20 | Pv6.addresses:.In.this.example,. |
| fd3a0 | 77 65 20 63 61 6e 20 6f 62 73 65 72 76 65 20 74 68 61 74 20 64 69 66 66 65 72 65 6e 74 20 44 53 | we.can.observe.that.different.DS |
| fd3c0 | 43 50 20 63 72 69 74 65 72 69 61 20 61 72 65 20 64 65 66 69 6e 65 64 20 62 61 73 65 64 20 6f 6e | CP.criteria.are.defined.based.on |
| fd3e0 | 20 6f 75 72 20 51 6f 53 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 77 69 74 68 69 6e 20 74 68 | .our.QoS.configuration.within.th |
| fd400 | 65 20 73 61 6d 65 20 70 6f 6c 69 63 79 20 67 72 6f 75 70 2e 00 49 6e 20 74 68 69 73 20 65 78 61 | e.same.policy.group..In.this.exa |
| fd420 | 6d 70 6c 65 2c 20 77 65 20 75 73 65 20 2a 2a 6d 61 73 71 75 65 72 61 64 65 2a 2a 20 61 73 20 74 | mple,.we.use.**masquerade**.as.t |
| fd440 | 68 65 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 69 6e 73 74 65 61 64 20 6f | he.translation.address.instead.o |
| fd460 | 66 20 61 6e 20 49 50 20 61 64 64 72 65 73 73 2e 20 54 68 65 20 2a 2a 6d 61 73 71 75 65 72 61 64 | f.an.IP.address..The.**masquerad |
| fd480 | 65 2a 2a 20 74 61 72 67 65 74 20 69 73 20 65 66 66 65 63 74 69 76 65 6c 79 20 61 6e 20 61 6c 69 | e**.target.is.effectively.an.ali |
| fd4a0 | 61 73 20 74 6f 20 73 61 79 20 22 75 73 65 20 77 68 61 74 65 76 65 72 20 49 50 20 61 64 64 72 65 | as.to.say."use.whatever.IP.addre |
| fd4c0 | 73 73 20 69 73 20 6f 6e 20 74 68 65 20 6f 75 74 67 6f 69 6e 67 20 69 6e 74 65 72 66 61 63 65 22 | ss.is.on.the.outgoing.interface" |
| fd4e0 | 2c 20 72 61 74 68 65 72 20 74 68 61 6e 20 61 20 73 74 61 74 69 63 61 6c 6c 79 20 63 6f 6e 66 69 | ,.rather.than.a.statically.confi |
| fd500 | 67 75 72 65 64 20 49 50 20 61 64 64 72 65 73 73 2e 20 54 68 69 73 20 69 73 20 75 73 65 66 75 6c | gured.IP.address..This.is.useful |
| fd520 | 20 69 66 20 79 6f 75 20 75 73 65 20 44 48 43 50 20 66 6f 72 20 79 6f 75 72 20 6f 75 74 67 6f 69 | .if.you.use.DHCP.for.your.outgoi |
| fd540 | 6e 67 20 69 6e 74 65 72 66 61 63 65 20 61 6e 64 20 64 6f 20 6e 6f 74 20 6b 6e 6f 77 20 77 68 61 | ng.interface.and.do.not.know.wha |
| fd560 | 74 20 74 68 65 20 65 78 74 65 72 6e 61 6c 20 61 64 64 72 65 73 73 20 77 69 6c 6c 20 62 65 2e 00 | t.the.external.address.will.be.. |
| fd580 | 49 6e 20 74 68 69 73 20 65 78 61 6d 70 6c 65 2c 20 77 65 20 77 69 6c 6c 20 62 65 20 75 73 69 6e | In.this.example,.we.will.be.usin |
| fd5a0 | 67 20 74 68 65 20 65 78 61 6d 70 6c 65 20 51 75 69 63 6b 20 53 74 61 72 74 20 63 6f 6e 66 69 67 | g.the.example.Quick.Start.config |
| fd5c0 | 75 72 61 74 69 6f 6e 20 61 62 6f 76 65 20 61 73 20 61 20 73 74 61 72 74 69 6e 67 20 70 6f 69 6e | uration.above.as.a.starting.poin |
| fd5e0 | 74 2e 00 49 6e 20 74 68 69 73 20 6d 65 74 68 6f 64 2c 20 74 68 65 20 44 53 4c 20 4d 6f 64 65 6d | t..In.this.method,.the.DSL.Modem |
| fd600 | 2f 52 6f 75 74 65 72 20 63 6f 6e 6e 65 63 74 73 20 74 6f 20 74 68 65 20 49 53 50 20 66 6f 72 20 | /Router.connects.to.the.ISP.for. |
| fd620 | 79 6f 75 20 77 69 74 68 20 79 6f 75 72 20 63 72 65 64 65 6e 74 69 61 6c 73 20 70 72 65 70 72 6f | you.with.your.credentials.prepro |
| fd640 | 67 72 61 6d 6d 65 64 20 69 6e 74 6f 20 74 68 65 20 64 65 76 69 63 65 2e 20 54 68 69 73 20 67 69 | grammed.into.the.device..This.gi |
| fd660 | 76 65 73 20 79 6f 75 20 61 6e 20 3a 72 66 63 3a 60 31 39 31 38 60 20 61 64 64 72 65 73 73 2c 20 | ves.you.an.:rfc:`1918`.address,. |
| fd680 | 73 75 63 68 20 61 73 20 60 60 31 39 32 2e 31 36 38 2e 31 2e 30 2f 32 34 60 60 20 62 79 20 64 65 | such.as.``192.168.1.0/24``.by.de |
| fd6a0 | 66 61 75 6c 74 2e 00 49 6e 20 74 68 69 73 20 73 63 65 6e 61 72 69 6f 3a 00 49 6e 20 74 68 69 73 | fault..In.this.scenario:.In.this |
| fd6c0 | 20 73 65 63 74 69 6f 6e 20 74 68 65 72 65 27 73 20 75 73 65 66 75 6c 20 69 6e 66 6f 72 6d 61 74 | .section.there's.useful.informat |
| fd6e0 | 69 6f 6e 20 6f 66 20 61 6c 6c 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f | ion.of.all.firewall.configuratio |
| fd700 | 6e 20 74 68 61 74 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 72 65 67 61 72 64 69 6e 67 20 49 50 76 | n.that.can.be.done.regarding.IPv |
| fd720 | 34 2c 20 61 6e 64 20 61 70 70 72 6f 70 69 61 74 65 20 6f 70 2d 6d 6f 64 65 20 63 6f 6d 6d 61 6e | 4,.and.appropiate.op-mode.comman |
| fd740 | 64 73 2e 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 73 20 63 6f 76 65 72 | ds..Configuration.commands.cover |
| fd760 | 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 3a 00 49 6e 20 74 68 69 73 20 73 65 63 74 | ed.in.this.section:.In.this.sect |
| fd780 | 69 6f 6e 20 74 68 65 72 65 27 73 20 75 73 65 66 75 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f | ion.there's.useful.information.o |
| fd7a0 | 66 20 61 6c 6c 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 | f.all.firewall.configuration.tha |
| fd7c0 | 74 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 72 65 67 61 72 64 69 6e 67 20 49 50 76 34 2c 20 61 6e | t.can.be.done.regarding.IPv4,.an |
| fd7e0 | 64 20 61 70 70 72 6f 70 72 69 61 74 65 20 6f 70 2d 6d 6f 64 65 20 63 6f 6d 6d 61 6e 64 73 2e 20 | d.appropriate.op-mode.commands.. |
| fd800 | 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 73 20 63 6f 76 65 72 65 64 20 69 | Configuration.commands.covered.i |
| fd820 | 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 3a 00 49 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 | n.this.section:.In.this.section. |
| fd840 | 74 68 65 72 65 27 73 20 75 73 65 66 75 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 66 20 61 6c | there's.useful.information.of.al |
| fd860 | 6c 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 63 61 | l.firewall.configuration.that.ca |
| fd880 | 6e 20 62 65 20 64 6f 6e 65 20 72 65 67 61 72 64 69 6e 67 20 49 50 76 36 2c 20 61 6e 64 20 61 70 | n.be.done.regarding.IPv6,.and.ap |
| fd8a0 | 70 72 6f 70 69 61 74 65 20 6f 70 2d 6d 6f 64 65 20 63 6f 6d 6d 61 6e 64 73 2e 20 43 6f 6e 66 69 | propiate.op-mode.commands..Confi |
| fd8c0 | 67 75 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 73 20 63 6f 76 65 72 65 64 20 69 6e 20 74 68 69 | guration.commands.covered.in.thi |
| fd8e0 | 73 20 73 65 63 74 69 6f 6e 3a 00 49 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 74 68 65 72 65 | s.section:.In.this.section.there |
| fd900 | 27 73 20 75 73 65 66 75 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 66 20 61 6c 6c 20 66 69 72 | 's.useful.information.of.all.fir |
| fd920 | 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 63 61 6e 20 62 65 20 | ewall.configuration.that.can.be. |
| fd940 | 64 6f 6e 65 20 72 65 67 61 72 64 69 6e 67 20 49 50 76 36 2c 20 61 6e 64 20 61 70 70 72 6f 70 72 | done.regarding.IPv6,.and.appropr |
| fd960 | 69 61 74 65 20 6f 70 2d 6d 6f 64 65 20 63 6f 6d 6d 61 6e 64 73 2e 20 43 6f 6e 66 69 67 75 72 61 | iate.op-mode.commands..Configura |
| fd980 | 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 73 20 63 6f 76 65 72 65 64 20 69 6e 20 74 68 69 73 20 73 65 | tion.commands.covered.in.this.se |
| fd9a0 | 63 74 69 6f 6e 3a 00 49 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 74 68 65 72 65 27 73 20 75 | ction:.In.this.section.there's.u |
| fd9c0 | 73 65 66 75 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 66 20 61 6c 6c 20 66 69 72 65 77 61 6c | seful.information.of.all.firewal |
| fd9e0 | 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 63 61 6e 20 62 65 20 64 6f 6e 65 | l.configuration.that.can.be.done |
| fda00 | 20 72 65 67 61 72 64 69 6e 67 20 62 72 69 64 67 65 2c 20 61 6e 64 20 61 70 70 72 6f 70 69 61 74 | .regarding.bridge,.and.appropiat |
| fda20 | 65 20 6f 70 2d 6d 6f 64 65 20 63 6f 6d 6d 61 6e 64 73 2e 20 43 6f 6e 66 69 67 75 72 61 74 69 6f | e.op-mode.commands..Configuratio |
| fda40 | 6e 20 63 6f 6d 6d 61 6e 64 73 20 63 6f 76 65 72 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 | n.commands.covered.in.this.secti |
| fda60 | 6f 6e 3a 00 49 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 74 68 65 72 65 27 73 20 75 73 65 66 | on:.In.this.section.there's.usef |
| fda80 | 75 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 66 20 61 6c 6c 20 66 69 72 65 77 61 6c 6c 20 63 | ul.information.of.all.firewall.c |
| fdaa0 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 72 65 | onfiguration.that.can.be.done.re |
| fdac0 | 67 61 72 64 69 6e 67 20 62 72 69 64 67 65 2c 20 61 6e 64 20 61 70 70 72 6f 70 72 69 61 74 65 20 | garding.bridge,.and.appropriate. |
| fdae0 | 6f 70 2d 6d 6f 64 65 20 63 6f 6d 6d 61 6e 64 73 2e 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 | op-mode.commands..Configuration. |
| fdb00 | 63 6f 6d 6d 61 6e 64 73 20 63 6f 76 65 72 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e | commands.covered.in.this.section |
| fdb20 | 3a 00 49 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 74 68 65 72 65 27 73 20 75 73 65 66 75 6c | :.In.this.section.there's.useful |
| fdb40 | 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 66 20 61 6c 6c 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e | .information.of.all.firewall.con |
| fdb60 | 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 72 65 67 61 | figuration.that.can.be.done.rega |
| fdb80 | 72 64 69 6e 67 20 66 6c 6f 77 74 61 62 6c 65 73 00 49 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e | rding.flowtables.In.this.section |
| fdba0 | 20 74 68 65 72 65 27 73 20 75 73 65 66 75 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 66 20 61 | .there's.useful.information.of.a |
| fdbc0 | 6c 6c 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 63 | ll.firewall.configuration.that.c |
| fdbe0 | 61 6e 20 62 65 20 64 6f 6e 65 20 72 65 67 61 72 64 69 6e 67 20 66 6c 6f 77 74 61 62 6c 65 73 2e | an.be.done.regarding.flowtables. |
| fdc00 | 00 49 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 74 68 65 72 65 27 73 20 75 73 65 66 75 6c 20 | .In.this.section.there's.useful. |
| fdc20 | 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 66 20 61 6c 6c 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 | information.of.all.firewall.conf |
| fdc40 | 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 69 73 20 6e 65 65 64 65 64 20 66 6f 72 20 7a 6f 6e | iguration.that.is.needed.for.zon |
| fdc60 | 65 2d 62 61 73 65 64 20 66 69 72 65 77 61 6c 6c 2e 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 | e-based.firewall..Configuration. |
| fdc80 | 63 6f 6d 6d 61 6e 64 73 20 63 6f 76 65 72 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e | commands.covered.in.this.section |
| fdca0 | 3a 00 49 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 74 68 65 72 65 27 73 20 75 73 65 66 75 6c | :.In.this.section.there's.useful |
| fdcc0 | 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 6e 20 61 6c 6c 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e | .information.on.all.firewall.con |
| fdce0 | 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 72 65 67 61 | figuration.that.can.be.done.rega |
| fdd00 | 72 64 69 6e 67 20 49 50 76 34 2c 20 61 6e 64 20 61 70 70 72 6f 70 72 69 61 74 65 20 6f 70 2d 6d | rding.IPv4,.and.appropriate.op-m |
| fdd20 | 6f 64 65 20 63 6f 6d 6d 61 6e 64 73 2e 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f 6d 6d | ode.commands..Configuration.comm |
| fdd40 | 61 6e 64 73 20 63 6f 76 65 72 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 3a 00 49 6e | ands.covered.in.this.section:.In |
| fdd60 | 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 74 68 65 72 65 27 73 20 75 73 65 66 75 6c 20 69 6e 66 | .this.section.there's.useful.inf |
| fdd80 | 6f 72 6d 61 74 69 6f 6e 20 6f 6e 20 61 6c 6c 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 | ormation.on.all.firewall.configu |
| fdda0 | 72 61 74 69 6f 6e 20 74 68 61 74 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 72 65 67 61 72 64 69 6e | ration.that.can.be.done.regardin |
| fddc0 | 67 20 49 50 76 36 2c 20 61 6e 64 20 61 70 70 72 6f 70 72 69 61 74 65 20 6f 70 2d 6d 6f 64 65 20 | g.IPv6,.and.appropriate.op-mode. |
| fdde0 | 63 6f 6d 6d 61 6e 64 73 2e 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 73 | commands..Configuration.commands |
| fde00 | 20 63 6f 76 65 72 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 3a 00 49 6e 20 74 68 69 | .covered.in.this.section:.In.thi |
| fde20 | 73 20 73 65 63 74 69 6f 6e 20 74 68 65 72 65 27 73 20 75 73 65 66 75 6c 20 69 6e 66 6f 72 6d 61 | s.section.there's.useful.informa |
| fde40 | 74 69 6f 6e 20 6f 6e 20 61 6c 6c 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 | tion.on.all.firewall.configurati |
| fde60 | 6f 6e 20 74 68 61 74 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 72 65 67 61 72 64 69 6e 67 20 62 72 | on.that.can.be.done.regarding.br |
| fde80 | 69 64 67 65 73 2c 20 61 6e 64 20 61 70 70 72 6f 70 72 69 61 74 65 20 6f 70 2d 6d 6f 64 65 20 63 | idges,.and.appropriate.op-mode.c |
| fdea0 | 6f 6d 6d 61 6e 64 73 2e 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 73 20 | ommands..Configuration.commands. |
| fdec0 | 63 6f 76 65 72 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 3a 00 49 6e 20 74 68 69 73 | covered.in.this.section:.In.this |
| fdee0 | 20 73 65 63 74 69 6f 6e 20 74 68 65 72 65 27 73 20 75 73 65 66 75 6c 20 69 6e 66 6f 72 6d 61 74 | .section.there's.useful.informat |
| fdf00 | 69 6f 6e 20 6f 6e 20 61 6c 6c 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f | ion.on.all.firewall.configuratio |
| fdf20 | 6e 20 74 68 61 74 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 72 65 67 61 72 64 69 6e 67 20 66 6c 6f | n.that.can.be.done.regarding.flo |
| fdf40 | 77 74 61 62 6c 65 73 2e 00 49 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 74 68 65 72 65 27 73 | wtables..In.this.section.there's |
| fdf60 | 20 75 73 65 66 75 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 6e 20 61 6c 6c 20 66 69 72 65 77 | .useful.information.on.all.firew |
| fdf80 | 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 69 73 20 6e 65 65 64 65 64 | all.configuration.that.is.needed |
| fdfa0 | 20 66 6f 72 20 74 68 65 20 7a 6f 6e 65 2d 62 61 73 65 64 20 66 69 72 65 77 61 6c 6c 2e 20 43 6f | .for.the.zone-based.firewall..Co |
| fdfc0 | 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 73 20 63 6f 76 65 72 65 64 20 69 6e 20 | nfiguration.commands.covered.in. |
| fdfe0 | 74 68 69 73 20 73 65 63 74 69 6f 6e 3a 00 49 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 79 6f | this.section:.In.this.section.yo |
| fe000 | 75 20 63 61 6e 20 66 69 6e 64 20 61 6c 6c 20 75 73 65 66 75 6c 20 66 69 72 65 77 61 6c 6c 20 6f | u.can.find.all.useful.firewall.o |
| fe020 | 70 2d 6d 6f 64 65 20 63 6f 6d 6d 61 6e 64 73 2e 00 49 6e 20 74 72 61 6e 73 70 61 72 65 6e 74 20 | p-mode.commands..In.transparent. |
| fe040 | 70 72 6f 78 79 20 6d 6f 64 65 2c 20 61 6c 6c 20 74 72 61 66 66 69 63 20 61 72 72 69 76 69 6e 67 | proxy.mode,.all.traffic.arriving |
| fe060 | 20 6f 6e 20 70 6f 72 74 20 38 30 20 61 6e 64 20 64 65 73 74 69 6e 65 64 20 66 6f 72 20 74 68 65 | .on.port.80.and.destined.for.the |
| fe080 | 20 49 6e 74 65 72 6e 65 74 20 69 73 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 66 6f 72 77 61 | .Internet.is.automatically.forwa |
| fe0a0 | 72 64 65 64 20 74 68 72 6f 75 67 68 20 74 68 65 20 70 72 6f 78 79 2e 20 54 68 69 73 20 61 6c 6c | rded.through.the.proxy..This.all |
| fe0c0 | 6f 77 73 20 69 6d 6d 65 64 69 61 74 65 20 70 72 6f 78 79 20 66 6f 72 77 61 72 64 69 6e 67 20 77 | ows.immediate.proxy.forwarding.w |
| fe0e0 | 69 74 68 6f 75 74 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 63 6c 69 65 6e 74 20 62 72 6f 77 73 65 | ithout.configuring.client.browse |
| fe100 | 72 73 2e 00 49 6e 20 74 79 70 69 63 61 6c 20 75 73 65 73 20 6f 66 20 53 4e 4d 50 2c 20 6f 6e 65 | rs..In.typical.uses.of.SNMP,.one |
| fe120 | 20 6f 72 20 6d 6f 72 65 20 61 64 6d 69 6e 69 73 74 72 61 74 69 76 65 20 63 6f 6d 70 75 74 65 72 | .or.more.administrative.computer |
| fe140 | 73 20 63 61 6c 6c 65 64 20 6d 61 6e 61 67 65 72 73 20 68 61 76 65 20 74 68 65 20 74 61 73 6b 20 | s.called.managers.have.the.task. |
| fe160 | 6f 66 20 6d 6f 6e 69 74 6f 72 69 6e 67 20 6f 72 20 6d 61 6e 61 67 69 6e 67 20 61 20 67 72 6f 75 | of.monitoring.or.managing.a.grou |
| fe180 | 70 20 6f 66 20 68 6f 73 74 73 20 6f 72 20 64 65 76 69 63 65 73 20 6f 6e 20 61 20 63 6f 6d 70 75 | p.of.hosts.or.devices.on.a.compu |
| fe1a0 | 74 65 72 20 6e 65 74 77 6f 72 6b 2e 20 45 61 63 68 20 6d 61 6e 61 67 65 64 20 73 79 73 74 65 6d | ter.network..Each.managed.system |
| fe1c0 | 20 65 78 65 63 75 74 65 73 20 61 20 73 6f 66 74 77 61 72 65 20 63 6f 6d 70 6f 6e 65 6e 74 20 63 | .executes.a.software.component.c |
| fe1e0 | 61 6c 6c 65 64 20 61 6e 20 61 67 65 6e 74 20 77 68 69 63 68 20 72 65 70 6f 72 74 73 20 69 6e 66 | alled.an.agent.which.reports.inf |
| fe200 | 6f 72 6d 61 74 69 6f 6e 20 76 69 61 20 53 4e 4d 50 20 74 6f 20 74 68 65 20 6d 61 6e 61 67 65 72 | ormation.via.SNMP.to.the.manager |
| fe220 | 2e 00 49 6e 20 7a 6f 6e 65 2d 62 61 73 65 64 20 70 6f 6c 69 63 79 2c 20 69 6e 74 65 72 66 61 63 | ..In.zone-based.policy,.interfac |
| fe240 | 65 73 20 61 72 65 20 61 73 73 69 67 6e 65 64 20 74 6f 20 7a 6f 6e 65 73 2c 20 61 6e 64 20 69 6e | es.are.assigned.to.zones,.and.in |
| fe260 | 73 70 65 63 74 69 6f 6e 20 70 6f 6c 69 63 79 20 69 73 20 61 70 70 6c 69 65 64 20 74 6f 20 74 72 | spection.policy.is.applied.to.tr |
| fe280 | 61 66 66 69 63 20 6d 6f 76 69 6e 67 20 62 65 74 77 65 65 6e 20 74 68 65 20 7a 6f 6e 65 73 20 61 | affic.moving.between.the.zones.a |
| fe2a0 | 6e 64 20 61 63 74 65 64 20 6f 6e 20 61 63 63 6f 72 64 69 6e 67 20 74 6f 20 66 69 72 65 77 61 6c | nd.acted.on.according.to.firewal |
| fe2c0 | 6c 20 72 75 6c 65 73 2e 20 41 20 5a 6f 6e 65 20 69 73 20 61 20 67 72 6f 75 70 20 6f 66 20 69 6e | l.rules..A.Zone.is.a.group.of.in |
| fe2e0 | 74 65 72 66 61 63 65 73 20 74 68 61 74 20 68 61 76 65 20 73 69 6d 69 6c 61 72 20 66 75 6e 63 74 | terfaces.that.have.similar.funct |
| fe300 | 69 6f 6e 73 20 6f 72 20 66 65 61 74 75 72 65 73 2e 20 49 74 20 65 73 74 61 62 6c 69 73 68 65 73 | ions.or.features..It.establishes |
| fe320 | 20 74 68 65 20 73 65 63 75 72 69 74 79 20 62 6f 72 64 65 72 73 20 6f 66 20 61 20 6e 65 74 77 6f | .the.security.borders.of.a.netwo |
| fe340 | 72 6b 2e 20 41 20 7a 6f 6e 65 20 64 65 66 69 6e 65 73 20 61 20 62 6f 75 6e 64 61 72 79 20 77 68 | rk..A.zone.defines.a.boundary.wh |
| fe360 | 65 72 65 20 74 72 61 66 66 69 63 20 69 73 20 73 75 62 6a 65 63 74 65 64 20 74 6f 20 70 6f 6c 69 | ere.traffic.is.subjected.to.poli |
| fe380 | 63 79 20 72 65 73 74 72 69 63 74 69 6f 6e 73 20 61 73 20 69 74 20 63 72 6f 73 73 65 73 20 74 6f | cy.restrictions.as.it.crosses.to |
| fe3a0 | 20 61 6e 6f 74 68 65 72 20 72 65 67 69 6f 6e 20 6f 66 20 61 20 6e 65 74 77 6f 72 6b 2e 00 49 6e | .another.region.of.a.network..In |
| fe3c0 | 20 7a 6f 6e 65 2d 62 61 73 65 64 20 70 6f 6c 69 63 79 2c 20 69 6e 74 65 72 66 61 63 65 73 20 61 | .zone-based.policy,.interfaces.a |
| fe3e0 | 72 65 20 61 73 73 69 67 6e 65 64 20 74 6f 20 7a 6f 6e 65 73 2c 20 61 6e 64 20 69 6e 73 70 65 63 | re.assigned.to.zones,.and.inspec |
| fe400 | 74 69 6f 6e 20 70 6f 6c 69 63 79 20 69 73 20 61 70 70 6c 69 65 64 20 74 6f 20 74 72 61 66 66 69 | tion.policy.is.applied.to.traffi |
| fe420 | 63 20 6d 6f 76 69 6e 67 20 62 65 74 77 65 65 6e 20 74 68 65 20 7a 6f 6e 65 73 20 61 6e 64 20 61 | c.moving.between.the.zones.and.a |
| fe440 | 63 74 65 64 20 6f 6e 20 61 63 63 6f 72 64 69 6e 67 20 74 6f 20 66 69 72 65 77 61 6c 6c 20 72 75 | cted.on.according.to.firewall.ru |
| fe460 | 6c 65 73 2e 20 41 20 7a 6f 6e 65 20 69 73 20 61 20 67 72 6f 75 70 20 6f 66 20 69 6e 74 65 72 66 | les..A.zone.is.a.group.of.interf |
| fe480 | 61 63 65 73 20 74 68 61 74 20 68 61 76 65 20 73 69 6d 69 6c 61 72 20 66 75 6e 63 74 69 6f 6e 73 | aces.that.have.similar.functions |
| fe4a0 | 20 6f 72 20 66 65 61 74 75 72 65 73 2e 20 49 74 20 65 73 74 61 62 6c 69 73 68 65 73 20 74 68 65 | .or.features..It.establishes.the |
| fe4c0 | 20 73 65 63 75 72 69 74 79 20 62 6f 72 64 65 72 73 20 6f 66 20 61 20 6e 65 74 77 6f 72 6b 2e 20 | .security.borders.of.a.network.. |
| fe4e0 | 41 20 7a 6f 6e 65 20 64 65 66 69 6e 65 73 20 61 20 62 6f 75 6e 64 61 72 79 20 77 68 65 72 65 20 | A.zone.defines.a.boundary.where. |
| fe500 | 74 72 61 66 66 69 63 20 69 73 20 73 75 62 6a 65 63 74 65 64 20 74 6f 20 70 6f 6c 69 63 79 20 72 | traffic.is.subjected.to.policy.r |
| fe520 | 65 73 74 72 69 63 74 69 6f 6e 73 20 61 73 20 69 74 20 63 72 6f 73 73 65 73 20 74 6f 20 61 6e 6f | estrictions.as.it.crosses.to.ano |
| fe540 | 74 68 65 72 20 72 65 67 69 6f 6e 20 6f 66 20 61 20 6e 65 74 77 6f 72 6b 2e 00 49 6e 62 6f 75 6e | ther.region.of.a.network..Inboun |
| fe560 | 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 74 6f 20 61 20 57 41 4e 20 69 6e 74 65 72 66 61 63 65 | d.connections.to.a.WAN.interface |
| fe580 | 20 63 61 6e 20 62 65 20 69 6d 70 72 6f 70 65 72 6c 79 20 68 61 6e 64 6c 65 64 20 77 68 65 6e 20 | .can.be.improperly.handled.when. |
| fe5a0 | 74 68 65 20 72 65 70 6c 79 20 69 73 20 73 65 6e 74 20 62 61 63 6b 20 74 6f 20 74 68 65 20 63 6c | the.reply.is.sent.back.to.the.cl |
| fe5c0 | 69 65 6e 74 2e 00 49 6e 63 6f 6d 69 6e 67 20 74 72 61 66 66 69 63 20 69 73 20 72 65 63 65 69 76 | ient..Incoming.traffic.is.receiv |
| fe5e0 | 65 64 20 62 79 20 74 68 65 20 63 75 72 72 65 6e 74 20 73 6c 61 76 65 2e 20 49 66 20 74 68 65 20 | ed.by.the.current.slave..If.the. |
| fe600 | 72 65 63 65 69 76 69 6e 67 20 73 6c 61 76 65 20 66 61 69 6c 73 2c 20 61 6e 6f 74 68 65 72 20 73 | receiving.slave.fails,.another.s |
| fe620 | 6c 61 76 65 20 74 61 6b 65 73 20 6f 76 65 72 20 74 68 65 20 4d 41 43 20 61 64 64 72 65 73 73 20 | lave.takes.over.the.MAC.address. |
| fe640 | 6f 66 20 74 68 65 20 66 61 69 6c 65 64 20 72 65 63 65 69 76 69 6e 67 20 73 6c 61 76 65 2e 00 49 | of.the.failed.receiving.slave..I |
| fe660 | 6e 63 72 65 61 73 65 20 4d 61 78 69 6d 75 6d 20 4d 50 44 55 20 6c 65 6e 67 74 68 20 74 6f 20 37 | ncrease.Maximum.MPDU.length.to.7 |
| fe680 | 39 39 31 20 6f 72 20 31 31 34 35 34 20 6f 63 74 65 74 73 20 28 64 65 66 61 75 6c 74 20 33 38 39 | 991.or.11454.octets.(default.389 |
| fe6a0 | 35 20 6f 63 74 65 74 73 29 00 49 6e 64 69 63 61 74 69 6f 6e 00 49 6e 64 69 76 69 64 75 61 6c 20 | 5.octets).Indication.Individual. |
| fe6c0 | 43 6c 69 65 6e 74 20 53 75 62 6e 65 74 00 49 6e 66 6f 72 6d 20 63 6c 69 65 6e 74 20 74 68 61 74 | Client.Subnet.Inform.client.that |
| fe6e0 | 20 74 68 65 20 44 4e 53 20 73 65 72 76 65 72 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 61 74 20 | .the.DNS.server.can.be.found.at. |
| fe700 | 60 3c 61 64 64 72 65 73 73 3e 60 2e 00 49 6e 66 6f 72 6d 61 74 69 6f 6e 20 67 61 74 68 65 72 65 | `<address>`..Information.gathere |
| fe720 | 64 20 77 69 74 68 20 4c 4c 44 50 20 69 73 20 73 74 6f 72 65 64 20 69 6e 20 74 68 65 20 64 65 76 | d.with.LLDP.is.stored.in.the.dev |
| fe740 | 69 63 65 20 61 73 20 61 20 3a 61 62 62 72 3a 60 4d 49 42 20 28 4d 61 6e 61 67 65 6d 65 6e 74 20 | ice.as.a.:abbr:`MIB.(Management. |
| fe760 | 49 6e 66 6f 72 6d 61 74 69 6f 6e 20 44 61 74 61 62 61 73 65 29 60 20 61 6e 64 20 63 61 6e 20 62 | Information.Database)`.and.can.b |
| fe780 | 65 20 71 75 65 72 69 65 64 20 77 69 74 68 20 3a 61 62 62 72 3a 60 53 4e 4d 50 20 28 53 69 6d 70 | e.queried.with.:abbr:`SNMP.(Simp |
| fe7a0 | 6c 65 20 4e 65 74 77 6f 72 6b 20 4d 61 6e 61 67 65 6d 65 6e 74 20 50 72 6f 74 6f 63 6f 6c 29 60 | le.Network.Management.Protocol)` |
| fe7c0 | 20 61 73 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 3a 72 66 63 3a 60 32 39 32 32 60 2e 20 54 68 | .as.specified.in.:rfc:`2922`..Th |
| fe7e0 | 65 20 74 6f 70 6f 6c 6f 67 79 20 6f 66 20 61 6e 20 4c 4c 44 50 2d 65 6e 61 62 6c 65 64 20 6e 65 | e.topology.of.an.LLDP-enabled.ne |
| fe800 | 74 77 6f 72 6b 20 63 61 6e 20 62 65 20 64 69 73 63 6f 76 65 72 65 64 20 62 79 20 63 72 61 77 6c | twork.can.be.discovered.by.crawl |
| fe820 | 69 6e 67 20 74 68 65 20 68 6f 73 74 73 20 61 6e 64 20 71 75 65 72 79 69 6e 67 20 74 68 69 73 20 | ing.the.hosts.and.querying.this. |
| fe840 | 64 61 74 61 62 61 73 65 2e 20 49 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 68 61 74 20 6d 61 79 20 62 | database..Information.that.may.b |
| fe860 | 65 20 72 65 74 72 69 65 76 65 64 20 69 6e 63 6c 75 64 65 3a 00 49 6e 66 6f 72 6d 61 74 69 6f 6e | e.retrieved.include:.Information |
| fe880 | 61 6c 00 49 6e 66 6f 72 6d 61 74 69 6f 6e 61 6c 20 6d 65 73 73 61 67 65 73 00 49 6e 70 75 74 20 | al.Informational.messages.Input. |
| fe8a0 | 66 72 6f 6d 20 60 65 74 68 30 60 20 6e 65 74 77 6f 72 6b 20 69 6e 74 65 72 66 61 63 65 00 49 6e | from.`eth0`.network.interface.In |
| fe8c0 | 73 70 65 63 74 20 6c 6f 67 73 3a 00 49 6e 73 74 61 6c 6c 20 74 68 65 20 63 6c 69 65 6e 74 20 73 | spect.logs:.Install.the.client.s |
| fe8e0 | 6f 66 74 77 61 72 65 20 76 69 61 20 61 70 74 20 61 6e 64 20 65 78 65 63 75 74 65 20 70 70 74 70 | oftware.via.apt.and.execute.pptp |
| fe900 | 73 65 74 75 70 20 74 6f 20 67 65 6e 65 72 61 74 65 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 | setup.to.generate.the.configurat |
| fe920 | 69 6f 6e 2e 00 49 6e 73 74 65 61 64 20 6f 66 20 61 20 6e 75 6d 65 72 69 63 61 6c 20 4d 53 53 20 | ion..Instead.of.a.numerical.MSS. |
| fe940 | 76 61 6c 75 65 20 60 63 6c 61 6d 70 2d 6d 73 73 2d 74 6f 2d 70 6d 74 75 60 20 63 61 6e 20 62 65 | value.`clamp-mss-to-pmtu`.can.be |
| fe960 | 20 75 73 65 64 20 74 6f 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 73 65 74 20 74 68 65 20 70 | .used.to.automatically.set.the.p |
| fe980 | 72 6f 70 65 72 20 76 61 6c 75 65 2e 00 49 6e 73 74 65 61 64 20 6f 66 20 70 61 73 73 77 6f 72 64 | roper.value..Instead.of.password |
| fe9a0 | 20 6f 6e 6c 79 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2c 20 32 46 41 20 70 61 73 73 77 6f | .only.authentication,.2FA.passwo |
| fe9c0 | 72 64 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 2b 20 4f 54 50 20 6b 65 79 20 63 61 6e 20 | rd.authentication.+.OTP.key.can. |
| fe9e0 | 62 65 20 75 73 65 64 2e 20 41 6c 74 65 72 6e 61 74 69 76 65 6c 79 2c 20 4f 54 50 20 61 75 74 68 | be.used..Alternatively,.OTP.auth |
| fea00 | 65 6e 74 69 63 61 74 69 6f 6e 20 6f 6e 6c 79 2c 20 77 69 74 68 6f 75 74 20 61 20 70 61 73 73 77 | entication.only,.without.a.passw |
| fea20 | 6f 72 64 2c 20 63 61 6e 20 62 65 20 75 73 65 64 2e 20 54 6f 20 64 6f 20 74 68 69 73 2c 20 61 6e | ord,.can.be.used..To.do.this,.an |
| fea40 | 20 4f 54 50 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d 75 73 74 20 62 65 20 61 64 64 65 64 | .OTP.configuration.must.be.added |
| fea60 | 20 74 6f 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 61 62 6f 76 65 3a 00 49 6e 73 | .to.the.configuration.above:.Ins |
| fea80 | 74 65 61 64 20 6f 66 20 73 65 6e 64 69 6e 67 20 74 68 65 20 72 65 61 6c 20 73 79 73 74 65 6d 20 | tead.of.sending.the.real.system. |
| feaa0 | 68 6f 73 74 6e 61 6d 65 20 74 6f 20 74 68 65 20 44 48 43 50 20 73 65 72 76 65 72 2c 20 6f 76 65 | hostname.to.the.DHCP.server,.ove |
| feac0 | 72 77 72 69 74 65 20 74 68 65 20 68 6f 73 74 2d 6e 61 6d 65 20 77 69 74 68 20 74 68 69 73 20 67 | rwrite.the.host-name.with.this.g |
| feae0 | 69 76 65 6e 2d 76 61 6c 75 65 2e 00 49 6e 73 74 65 61 64 2c 20 6d 65 6d 62 65 72 73 20 6f 66 20 | iven-value..Instead,.members.of. |
| feb00 | 74 68 65 73 65 20 67 72 6f 75 70 73 20 61 72 65 20 61 64 64 65 64 20 64 79 6e 61 6d 69 63 61 6c | these.groups.are.added.dynamical |
| feb20 | 6c 79 20 75 73 69 6e 67 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 2e 00 49 6e 74 65 67 72 69 | ly.using.firewall.rules..Integri |
| feb40 | 74 79 20 e2 80 93 20 4d 65 73 73 61 67 65 20 69 6e 74 65 67 72 69 74 79 20 74 6f 20 65 6e 73 75 | ty.....Message.integrity.to.ensu |
| feb60 | 72 65 20 74 68 61 74 20 61 20 70 61 63 6b 65 74 20 68 61 73 20 6e 6f 74 20 62 65 65 6e 20 74 61 | re.that.a.packet.has.not.been.ta |
| feb80 | 6d 70 65 72 65 64 20 77 68 69 6c 65 20 69 6e 20 74 72 61 6e 73 69 74 20 69 6e 63 6c 75 64 69 6e | mpered.while.in.transit.includin |
| feba0 | 67 20 61 6e 20 6f 70 74 69 6f 6e 61 6c 20 70 61 63 6b 65 74 20 72 65 70 6c 61 79 20 70 72 6f 74 | g.an.optional.packet.replay.prot |
| febc0 | 65 63 74 69 6f 6e 20 6d 65 63 68 61 6e 69 73 6d 2e 00 49 6e 74 65 6c 20 41 58 32 30 30 00 49 6e | ection.mechanism..Intel.AX200.In |
| febe0 | 74 65 6c c2 ae 20 51 41 54 00 49 6e 74 65 72 63 6f 6e 6e 65 63 74 20 74 68 65 20 67 6c 6f 62 61 | tel...QAT.Interconnect.the.globa |
| fec00 | 6c 20 56 52 46 20 77 69 74 68 20 76 72 66 20 22 72 65 64 22 20 75 73 69 6e 67 20 74 68 65 20 76 | l.VRF.with.vrf."red".using.the.v |
| fec20 | 65 74 68 31 30 20 3c 2d 3e 20 76 65 74 68 20 31 31 20 70 61 69 72 00 49 6e 74 65 72 66 61 63 65 | eth10.<->.veth.11.pair.Interface |
| fec40 | 20 2a 2a 65 74 68 30 2a 2a 20 75 73 65 64 20 74 6f 20 63 6f 6e 6e 65 63 74 20 74 6f 20 75 70 73 | .**eth0**.used.to.connect.to.ups |
| fec60 | 74 72 65 61 6d 2e 00 49 6e 74 65 72 66 61 63 65 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 49 | tream..Interface.Configuration.I |
| fec80 | 6e 74 65 72 66 61 63 65 20 47 72 6f 75 70 73 00 49 6e 74 65 72 66 61 63 65 20 52 6f 75 74 65 73 | nterface.Groups.Interface.Routes |
| feca0 | 00 49 6e 74 65 72 66 61 63 65 20 60 65 74 68 31 60 20 4c 41 4e 20 69 73 20 62 65 68 69 6e 64 20 | .Interface.`eth1`.LAN.is.behind. |
| fecc0 | 4e 41 54 2e 20 49 6e 20 6f 72 64 65 72 20 74 6f 20 73 75 62 73 63 72 69 62 65 20 60 31 30 2e 30 | NAT..In.order.to.subscribe.`10.0 |
| fece0 | 2e 30 2e 30 2f 32 33 60 20 73 75 62 6e 65 74 20 6d 75 6c 74 69 63 61 73 74 20 77 68 69 63 68 20 | .0.0/23`.subnet.multicast.which. |
| fed00 | 69 73 20 69 6e 20 60 65 74 68 30 60 20 57 41 4e 20 77 65 20 6e 65 65 64 20 74 6f 20 63 6f 6e 66 | is.in.`eth0`.WAN.we.need.to.conf |
| fed20 | 69 67 75 72 65 20 69 67 6d 70 2d 70 72 6f 78 79 2e 00 49 6e 74 65 72 66 61 63 65 20 63 6f 6e 66 | igure.igmp-proxy..Interface.conf |
| fed40 | 69 67 75 72 61 74 69 6f 6e 00 49 6e 74 65 72 66 61 63 65 20 66 6f 72 20 44 48 43 50 20 52 65 6c | iguration.Interface.for.DHCP.Rel |
| fed60 | 61 79 20 41 67 65 6e 74 20 74 6f 20 66 6f 72 77 61 72 64 20 72 65 71 75 65 73 74 73 20 6f 75 74 | ay.Agent.to.forward.requests.out |
| fed80 | 2e 00 49 6e 74 65 72 66 61 63 65 20 66 6f 72 20 44 48 43 50 20 52 65 6c 61 79 20 41 67 65 6e 74 | ..Interface.for.DHCP.Relay.Agent |
| feda0 | 20 74 6f 20 6c 69 73 74 65 6e 20 66 6f 72 20 72 65 71 75 65 73 74 73 2e 00 49 6e 74 65 72 66 61 | .to.listen.for.requests..Interfa |
| fedc0 | 63 65 20 73 70 65 63 69 66 69 63 20 63 6f 6d 6d 61 6e 64 73 00 49 6e 74 65 72 66 61 63 65 20 74 | ce.specific.commands.Interface.t |
| fede0 | 6f 20 75 73 65 20 66 6f 72 20 73 79 6e 63 69 6e 67 20 63 6f 6e 6e 74 72 61 63 6b 20 65 6e 74 72 | o.use.for.syncing.conntrack.entr |
| fee00 | 69 65 73 2e 00 49 6e 74 65 72 66 61 63 65 20 75 73 65 64 20 66 6f 72 20 56 58 4c 41 4e 20 75 6e | ies..Interface.used.for.VXLAN.un |
| fee20 | 64 65 72 6c 61 79 2e 20 54 68 69 73 20 69 73 20 6d 61 6e 64 61 74 6f 72 79 20 77 68 65 6e 20 75 | derlay..This.is.mandatory.when.u |
| fee40 | 73 69 6e 67 20 56 58 4c 41 4e 20 76 69 61 20 61 20 6d 75 6c 74 69 63 61 73 74 20 6e 65 74 77 6f | sing.VXLAN.via.a.multicast.netwo |
| fee60 | 72 6b 2e 20 56 58 4c 41 4e 20 74 72 61 66 66 69 63 20 77 69 6c 6c 20 61 6c 77 61 79 73 20 65 6e | rk..VXLAN.traffic.will.always.en |
| fee80 | 74 65 72 20 61 6e 64 20 65 78 69 74 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 2e 00 49 6e 74 | ter.and.exit.this.interface..Int |
| feea0 | 65 72 66 61 63 65 20 77 65 69 67 68 74 00 49 6e 74 65 72 66 61 63 65 73 00 49 6e 74 65 72 66 61 | erface.weight.Interfaces.Interfa |
| feec0 | 63 65 73 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 49 6e 74 65 72 66 61 63 65 73 20 74 68 61 | ces.Configuration.Interfaces.tha |
| feee0 | 74 20 70 61 72 74 69 63 69 70 61 74 65 20 69 6e 20 74 68 65 20 44 48 43 50 20 72 65 6c 61 79 20 | t.participate.in.the.DHCP.relay. |
| fef00 | 70 72 6f 63 65 73 73 2e 20 49 66 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 75 73 65 64 | process..If.this.command.is.used |
| fef20 | 2c 20 61 74 20 6c 65 61 73 74 20 74 77 6f 20 65 6e 74 72 69 65 73 20 6f 66 20 69 74 20 61 72 65 | ,.at.least.two.entries.of.it.are |
| fef40 | 20 72 65 71 75 69 72 65 64 3a 20 6f 6e 65 20 66 6f 72 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 | .required:.one.for.the.interface |
| fef60 | 20 74 68 61 74 20 63 61 70 74 75 72 65 73 20 74 68 65 20 64 68 63 70 2d 72 65 71 75 65 73 74 73 | .that.captures.the.dhcp-requests |
| fef80 | 2c 20 61 6e 64 20 6f 6e 65 20 66 6f 72 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 66 | ,.and.one.for.the.interface.to.f |
| fefa0 | 6f 72 77 61 72 64 20 73 75 63 68 20 72 65 71 75 65 73 74 73 2e 20 41 20 77 61 72 6e 69 6e 67 20 | orward.such.requests..A.warning. |
| fefc0 | 6d 65 73 73 61 67 65 20 77 69 6c 6c 20 62 65 20 73 68 6f 77 6e 20 69 66 20 74 68 69 73 20 63 6f | message.will.be.shown.if.this.co |
| fefe0 | 6d 6d 61 6e 64 20 69 73 20 75 73 65 64 2c 20 73 69 6e 63 65 20 6e 65 77 20 69 6d 70 6c 65 6d 65 | mmand.is.used,.since.new.impleme |
| ff000 | 6e 74 61 74 69 6f 6e 73 20 73 68 6f 75 6c 64 20 75 73 65 20 60 60 6c 69 73 74 65 6e 2d 69 6e 74 | ntations.should.use.``listen-int |
| ff020 | 65 72 66 61 63 65 60 60 20 61 6e 64 20 60 60 75 70 73 74 72 65 61 6d 2d 69 6e 74 65 72 66 61 63 | erface``.and.``upstream-interfac |
| ff040 | 65 60 60 2e 00 49 6e 74 65 72 66 61 63 65 73 20 77 68 6f 73 65 20 44 48 43 50 20 63 6c 69 65 6e | e``..Interfaces.whose.DHCP.clien |
| ff060 | 74 20 6e 61 6d 65 73 65 72 76 65 72 73 20 74 6f 20 66 6f 72 77 61 72 64 20 72 65 71 75 65 73 74 | t.nameservers.to.forward.request |
| ff080 | 73 20 74 6f 2e 00 49 6e 74 65 72 66 61 63 65 73 2c 20 74 68 65 69 72 20 77 65 69 67 68 74 20 61 | s.to..Interfaces,.their.weight.a |
| ff0a0 | 6e 64 20 74 68 65 20 74 79 70 65 20 6f 66 20 74 72 61 66 66 69 63 20 74 6f 20 62 65 20 62 61 6c | nd.the.type.of.traffic.to.be.bal |
| ff0c0 | 61 6e 63 65 64 20 61 72 65 20 64 65 66 69 6e 65 64 20 69 6e 20 6e 75 6d 62 65 72 65 64 20 62 61 | anced.are.defined.in.numbered.ba |
| ff0e0 | 6c 61 6e 63 69 6e 67 20 72 75 6c 65 20 73 65 74 73 2e 20 54 68 65 20 72 75 6c 65 20 73 65 74 73 | lancing.rule.sets..The.rule.sets |
| ff100 | 20 61 72 65 20 65 78 65 63 75 74 65 64 20 69 6e 20 6e 75 6d 65 72 69 63 61 6c 20 6f 72 64 65 72 | .are.executed.in.numerical.order |
| ff120 | 20 61 67 61 69 6e 73 74 20 6f 75 74 67 6f 69 6e 67 20 70 61 63 6b 65 74 73 2e 20 49 6e 20 63 61 | .against.outgoing.packets..In.ca |
| ff140 | 73 65 20 6f 66 20 61 20 6d 61 74 63 68 20 74 68 65 20 70 61 63 6b 65 74 20 69 73 20 73 65 6e 74 | se.of.a.match.the.packet.is.sent |
| ff160 | 20 74 68 72 6f 75 67 68 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 73 70 65 63 69 66 69 65 64 20 | .through.an.interface.specified. |
| ff180 | 69 6e 20 74 68 65 20 6d 61 74 63 68 69 6e 67 20 72 75 6c 65 2e 20 49 66 20 61 20 70 61 63 6b 65 | in.the.matching.rule..If.a.packe |
| ff1a0 | 74 20 64 6f 65 73 6e 27 74 20 6d 61 74 63 68 20 61 6e 79 20 72 75 6c 65 20 69 74 20 69 73 20 73 | t.doesn't.match.any.rule.it.is.s |
| ff1c0 | 65 6e 74 20 62 79 20 75 73 69 6e 67 20 74 68 65 20 73 79 73 74 65 6d 20 72 6f 75 74 69 6e 67 20 | ent.by.using.the.system.routing. |
| ff1e0 | 74 61 62 6c 65 2e 20 52 75 6c 65 20 6e 75 6d 62 65 72 73 20 63 61 6e 27 74 20 62 65 20 63 68 61 | table..Rule.numbers.can't.be.cha |
| ff200 | 6e 67 65 64 2e 00 49 6e 74 65 72 6e 61 6c 20 61 74 74 61 63 6b 3a 20 61 6e 20 61 74 74 61 63 6b | nged..Internal.attack:.an.attack |
| ff220 | 20 66 72 6f 6d 20 74 68 65 20 69 6e 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 20 28 67 65 6e 65 | .from.the.internal.network.(gene |
| ff240 | 72 61 74 65 64 20 62 79 20 61 20 63 75 73 74 6f 6d 65 72 29 20 74 6f 77 61 72 64 73 20 74 68 65 | rated.by.a.customer).towards.the |
| ff260 | 20 69 6e 74 65 72 6e 65 74 20 69 73 20 69 64 65 6e 74 69 66 79 2e 20 49 6e 20 74 68 69 73 20 63 | .internet.is.identify..In.this.c |
| ff280 | 61 73 65 2c 20 61 6c 6c 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 66 72 6f 6d 20 74 68 69 73 20 70 | ase,.all.connections.from.this.p |
| ff2a0 | 61 72 74 69 63 75 6c 61 72 20 49 50 2f 43 75 73 74 6f 6d 65 72 20 77 69 6c 6c 20 62 65 20 62 6c | articular.IP/Customer.will.be.bl |
| ff2c0 | 6f 63 6b 65 64 2e 00 49 6e 74 65 72 6e 61 6c 6c 79 2c 20 69 6e 20 66 6c 6f 77 2d 61 63 63 6f 75 | ocked..Internally,.in.flow-accou |
| ff2e0 | 6e 74 69 6e 67 20 70 72 6f 63 65 73 73 65 73 20 65 78 69 73 74 20 61 20 62 75 66 66 65 72 20 66 | nting.processes.exist.a.buffer.f |
| ff300 | 6f 72 20 64 61 74 61 20 65 78 63 68 61 6e 67 69 6e 67 20 62 65 74 77 65 65 6e 20 63 6f 72 65 20 | or.data.exchanging.between.core. |
| ff320 | 70 72 6f 63 65 73 73 20 61 6e 64 20 70 6c 75 67 69 6e 73 20 28 65 61 63 68 20 65 78 70 6f 72 74 | process.and.plugins.(each.export |
| ff340 | 20 74 61 72 67 65 74 20 69 73 20 61 20 73 65 70 61 72 61 74 65 64 20 70 6c 75 67 69 6e 29 2e 20 | .target.is.a.separated.plugin).. |
| ff360 | 49 66 20 79 6f 75 20 68 61 76 65 20 68 69 67 68 20 74 72 61 66 66 69 63 20 6c 65 76 65 6c 73 20 | If.you.have.high.traffic.levels. |
| ff380 | 6f 72 20 6e 6f 74 65 64 20 73 6f 6d 65 20 70 72 6f 62 6c 65 6d 73 20 77 69 74 68 20 6d 69 73 73 | or.noted.some.problems.with.miss |
| ff3a0 | 65 64 20 72 65 63 6f 72 64 73 20 6f 72 20 73 74 6f 70 70 69 6e 67 20 65 78 70 6f 72 74 69 6e 67 | ed.records.or.stopping.exporting |
| ff3c0 | 2c 20 79 6f 75 20 6d 61 79 20 74 72 79 20 74 6f 20 69 6e 63 72 65 61 73 65 20 61 20 64 65 66 61 | ,.you.may.try.to.increase.a.defa |
| ff3e0 | 75 6c 74 20 62 75 66 66 65 72 20 73 69 7a 65 20 28 31 30 20 4d 69 42 29 20 77 69 74 68 20 74 68 | ult.buffer.size.(10.MiB).with.th |
| ff400 | 65 20 6e 65 78 74 20 63 6f 6d 6d 61 6e 64 3a 00 49 6e 74 65 72 6e 65 74 20 4b 65 79 20 45 78 63 | e.next.command:.Internet.Key.Exc |
| ff420 | 68 61 6e 67 65 20 76 65 72 73 69 6f 6e 20 32 20 28 49 4b 45 76 32 29 20 69 73 20 61 20 74 75 6e | hange.version.2.(IKEv2).is.a.tun |
| ff440 | 6e 65 6c 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 2c 20 62 61 73 65 64 20 6f 6e 20 49 50 73 65 63 2c | neling.protocol,.based.on.IPsec, |
| ff460 | 20 74 68 61 74 20 65 73 74 61 62 6c 69 73 68 65 73 20 61 20 73 65 63 75 72 65 20 56 50 4e 20 63 | .that.establishes.a.secure.VPN.c |
| ff480 | 6f 6d 6d 75 6e 69 63 61 74 69 6f 6e 20 62 65 74 77 65 65 6e 20 56 50 4e 20 64 65 76 69 63 65 73 | ommunication.between.VPN.devices |
| ff4a0 | 2c 20 20 61 6e 64 20 64 65 66 69 6e 65 73 20 6e 65 67 6f 74 69 61 74 69 6f 6e 20 61 6e 64 20 61 | ,..and.defines.negotiation.and.a |
| ff4c0 | 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 70 72 6f 63 65 73 73 65 73 20 66 6f 72 20 49 50 73 65 | uthentication.processes.for.IPse |
| ff4e0 | 63 20 73 65 63 75 72 69 74 79 20 61 73 73 6f 63 69 61 74 69 6f 6e 73 20 28 53 41 73 29 2e 20 49 | c.security.associations.(SAs)..I |
| ff500 | 74 20 69 73 20 6f 66 74 65 6e 20 6b 6e 6f 77 6e 20 61 73 20 49 4b 45 76 32 2f 49 50 53 65 63 20 | t.is.often.known.as.IKEv2/IPSec. |
| ff520 | 6f 72 20 49 50 53 65 63 20 49 4b 45 76 32 20 72 65 6d 6f 74 65 2d 61 63 63 65 73 73 20 e2 80 94 | or.IPSec.IKEv2.remote-access.... |
| ff540 | 20 6f 72 20 72 6f 61 64 2d 77 61 72 72 69 6f 72 73 20 61 73 20 6f 74 68 65 72 73 20 63 61 6c 6c | .or.road-warriors.as.others.call |
| ff560 | 20 69 74 2e 00 49 6e 74 65 72 6e 65 74 20 4b 65 79 20 45 78 63 68 61 6e 67 65 20 76 65 72 73 69 | .it..Internet.Key.Exchange.versi |
| ff580 | 6f 6e 20 32 2c 20 49 4b 45 76 32 20 66 6f 72 20 73 68 6f 72 74 2c 20 69 73 20 61 20 72 65 71 75 | on.2,.IKEv2.for.short,.is.a.requ |
| ff5a0 | 65 73 74 2f 72 65 73 70 6f 6e 73 65 20 70 72 6f 74 6f 63 6f 6c 20 64 65 76 65 6c 6f 70 65 64 20 | est/response.protocol.developed. |
| ff5c0 | 62 79 20 62 6f 74 68 20 43 69 73 63 6f 20 61 6e 64 20 4d 69 63 72 6f 73 6f 66 74 2e 20 49 74 20 | by.both.Cisco.and.Microsoft..It. |
| ff5e0 | 69 73 20 75 73 65 64 20 74 6f 20 65 73 74 61 62 6c 69 73 68 20 61 6e 64 20 73 65 63 75 72 65 20 | is.used.to.establish.and.secure. |
| ff600 | 49 50 76 34 2f 49 50 76 36 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2c 20 62 65 20 69 74 20 61 20 73 | IPv4/IPv6.connections,.be.it.a.s |
| ff620 | 69 74 65 2d 74 6f 2d 73 69 74 65 20 56 50 4e 20 6f 72 20 66 72 6f 6d 20 61 20 72 6f 61 64 2d 77 | ite-to-site.VPN.or.from.a.road-w |
| ff640 | 61 72 72 69 6f 72 20 63 6f 6e 6e 65 63 74 69 6e 67 20 74 6f 20 61 20 68 75 62 20 73 69 74 65 2e | arrior.connecting.to.a.hub.site. |
| ff660 | 20 49 4b 45 76 32 2c 20 77 68 65 6e 20 72 75 6e 20 69 6e 20 70 6f 69 6e 74 2d 74 6f 2d 6d 75 6c | .IKEv2,.when.run.in.point-to-mul |
| ff680 | 74 69 70 6f 69 6e 74 2c 20 6f 72 20 72 65 6d 6f 74 65 2d 61 63 63 65 73 73 2f 72 6f 61 64 2d 77 | tipoint,.or.remote-access/road-w |
| ff6a0 | 61 72 72 69 6f 72 20 6d 6f 64 65 2c 20 73 65 63 75 72 65 73 20 74 68 65 20 73 65 72 76 65 72 2d | arrior.mode,.secures.the.server- |
| ff6c0 | 73 69 64 65 20 77 69 74 68 20 61 6e 6f 74 68 65 72 20 6c 61 79 65 72 20 62 79 20 75 73 69 6e 67 | side.with.another.layer.by.using |
| ff6e0 | 20 61 6e 20 78 35 30 39 20 73 69 67 6e 65 64 20 73 65 72 76 65 72 20 63 65 72 74 69 66 69 63 61 | .an.x509.signed.server.certifica |
| ff700 | 74 65 2e 00 49 6e 74 65 72 6e 65 74 77 6f 72 6b 20 43 6f 6e 74 72 6f 6c 00 49 6e 74 65 72 76 61 | te..Internetwork.Control.Interva |
| ff720 | 6c 00 49 6e 74 65 72 76 61 6c 20 28 69 6e 20 73 65 63 6f 6e 64 73 29 20 66 6f 72 20 73 65 6e 64 | l.Interval.(in.seconds).for.send |
| ff740 | 69 6e 67 20 6d 61 72 6b 20 6d 65 73 73 61 67 65 73 20 74 6f 20 74 68 65 20 73 79 73 6c 6f 67 20 | ing.mark.messages.to.the.syslog. |
| ff760 | 69 6e 70 75 74 20 74 6f 20 69 6e 64 69 63 61 74 65 20 74 68 61 74 20 74 68 65 20 6c 6f 67 67 69 | input.to.indicate.that.the.loggi |
| ff780 | 6e 67 20 73 79 73 74 65 6d 20 69 73 20 66 75 6e 63 74 69 6f 6e 69 6e 67 2e 00 49 6e 74 65 72 76 | ng.system.is.functioning..Interv |
| ff7a0 | 61 6c 20 69 6e 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 00 49 6e 74 65 72 76 61 6c 20 69 6e 20 6d | al.in.milliseconds.Interval.in.m |
| ff7c0 | 69 6e 75 74 65 73 20 62 65 74 77 65 65 6e 20 75 70 64 61 74 65 73 20 28 64 65 66 61 75 6c 74 3a | inutes.between.updates.(default: |
| ff7e0 | 20 36 30 29 00 49 6e 74 72 6f 64 75 63 69 6e 67 20 72 6f 75 74 65 20 72 65 66 6c 65 63 74 6f 72 | .60).Introducing.route.reflector |
| ff800 | 73 20 72 65 6d 6f 76 65 73 20 74 68 65 20 6e 65 65 64 20 66 6f 72 20 74 68 65 20 66 75 6c 6c 2d | s.removes.the.need.for.the.full- |
| ff820 | 6d 65 73 68 2e 20 57 68 65 6e 20 79 6f 75 20 63 6f 6e 66 69 67 75 72 65 20 61 20 72 6f 75 74 65 | mesh..When.you.configure.a.route |
| ff840 | 20 72 65 66 6c 65 63 74 6f 72 20 79 6f 75 20 68 61 76 65 20 74 6f 20 74 65 6c 6c 20 74 68 65 20 | .reflector.you.have.to.tell.the. |
| ff860 | 72 6f 75 74 65 72 20 77 68 65 74 68 65 72 20 74 68 65 20 6f 74 68 65 72 20 49 42 47 50 20 72 6f | router.whether.the.other.IBGP.ro |
| ff880 | 75 74 65 72 20 69 73 20 61 20 63 6c 69 65 6e 74 20 6f 72 20 6e 6f 6e 2d 63 6c 69 65 6e 74 2e 20 | uter.is.a.client.or.non-client.. |
| ff8a0 | 41 20 63 6c 69 65 6e 74 20 69 73 20 61 6e 20 49 42 47 50 20 72 6f 75 74 65 72 20 74 68 61 74 20 | A.client.is.an.IBGP.router.that. |
| ff8c0 | 74 68 65 20 72 6f 75 74 65 20 72 65 66 6c 65 63 74 6f 72 20 77 69 6c 6c 20 e2 80 9c 72 65 66 6c | the.route.reflector.will....refl |
| ff8e0 | 65 63 74 e2 80 9d 20 72 6f 75 74 65 73 20 74 6f 2c 20 74 68 65 20 6e 6f 6e 2d 63 6c 69 65 6e 74 | ect....routes.to,.the.non-client |
| ff900 | 20 69 73 20 6a 75 73 74 20 61 20 72 65 67 75 6c 61 72 20 49 42 47 50 20 6e 65 69 67 68 62 6f 72 | .is.just.a.regular.IBGP.neighbor |
| ff920 | 2e 20 52 6f 75 74 65 20 72 65 66 6c 65 63 74 6f 72 73 20 6d 65 63 68 61 6e 69 73 6d 20 69 73 20 | ..Route.reflectors.mechanism.is. |
| ff940 | 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 34 34 35 36 60 20 61 6e 64 20 75 70 64 | described.in.:rfc:`4456`.and.upd |
| ff960 | 61 74 65 64 20 62 79 20 3a 72 66 63 3a 60 37 36 30 36 60 2e 00 49 6e 74 72 75 73 69 6f 6e 20 44 | ated.by.:rfc:`7606`..Intrusion.D |
| ff980 | 65 74 65 63 74 69 6f 6e 20 28 49 44 53 29 3a 20 41 6e 61 6c 79 7a 65 73 20 6e 65 74 77 6f 72 6b | etection.(IDS):.Analyzes.network |
| ff9a0 | 20 74 72 61 66 66 69 63 20 61 6e 64 20 64 65 74 65 63 74 73 20 73 75 73 70 69 63 69 6f 75 73 20 | .traffic.and.detects.suspicious. |
| ff9c0 | 61 63 74 69 76 69 74 69 65 73 2c 20 61 74 74 61 63 6b 73 2c 20 61 6e 64 20 6d 61 6c 69 63 69 6f | activities,.attacks,.and.malicio |
| ff9e0 | 75 73 20 74 72 61 66 66 69 63 2e 20 49 6e 74 72 75 73 69 6f 6e 20 50 72 65 76 65 6e 74 69 6f 6e | us.traffic..Intrusion.Prevention |
| ffa00 | 20 28 49 50 53 29 3a 20 42 6c 6f 63 6b 73 20 6f 72 20 6d 6f 64 69 66 69 65 73 20 73 75 73 70 69 | .(IPS):.Blocks.or.modifies.suspi |
| ffa20 | 63 69 6f 75 73 20 74 72 61 66 66 69 63 20 69 6e 20 72 65 61 6c 2d 74 69 6d 65 2c 20 70 72 65 76 | cious.traffic.in.real-time,.prev |
| ffa40 | 65 6e 74 69 6e 67 20 61 74 74 61 63 6b 73 20 62 65 66 6f 72 65 20 74 68 65 79 20 70 65 6e 65 74 | enting.attacks.before.they.penet |
| ffa60 | 72 61 74 65 20 74 68 65 20 6e 65 74 77 6f 72 6b 2e 20 4e 65 74 77 6f 72 6b 20 53 65 63 75 72 69 | rate.the.network..Network.Securi |
| ffa80 | 74 79 20 4d 6f 6e 69 74 6f 72 69 6e 67 20 28 4e 53 4d 29 3a 20 43 6f 6c 6c 65 63 74 73 20 61 6e | ty.Monitoring.(NSM):.Collects.an |
| ffaa0 | 64 20 61 6e 61 6c 79 7a 65 73 20 6e 65 74 77 6f 72 6b 20 64 61 74 61 20 74 6f 20 64 65 74 65 63 | d.analyzes.network.data.to.detec |
| ffac0 | 74 20 61 6e 6f 6d 61 6c 69 65 73 20 61 6e 64 20 69 64 65 6e 74 69 66 79 20 74 68 72 65 61 74 73 | t.anomalies.and.identify.threats |
| ffae0 | 2e 20 4d 75 6c 74 69 2d 50 72 6f 74 6f 63 6f 6c 20 53 75 70 70 6f 72 74 3a 20 53 75 72 69 63 61 | ..Multi-Protocol.Support:.Surica |
| ffb00 | 74 61 20 73 75 70 70 6f 72 74 73 20 61 6e 61 6c 79 73 69 73 20 6f 66 20 76 61 72 69 6f 75 73 20 | ta.supports.analysis.of.various. |
| ffb20 | 6e 65 74 77 6f 72 6b 20 70 72 6f 74 6f 63 6f 6c 73 20 73 75 63 68 20 61 73 20 48 54 54 50 2c 20 | network.protocols.such.as.HTTP,. |
| ffb40 | 46 54 50 2c 20 53 4d 42 2c 20 61 6e 64 20 6d 61 6e 79 20 6f 74 68 65 72 73 2e 20 49 6e 20 63 6f | FTP,.SMB,.and.many.others..In.co |
| ffb60 | 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d 6f 64 65 2c 20 74 68 65 20 63 6f 6d 6d 61 6e 64 73 20 61 | nfiguration.mode,.the.commands.a |
| ffb80 | 72 65 20 61 73 20 66 6f 6c 6c 6f 77 73 3a 00 49 74 20 64 69 73 61 62 6c 65 73 20 74 72 61 6e 73 | re.as.follows:.It.disables.trans |
| ffba0 | 70 61 72 65 6e 74 20 68 75 67 65 20 70 61 67 65 73 2c 20 61 6e 64 20 61 75 74 6f 6d 61 74 69 63 | parent.huge.pages,.and.automatic |
| ffbc0 | 20 4e 55 4d 41 20 62 61 6c 61 6e 63 69 6e 67 2e 20 49 74 20 61 6c 73 6f 20 75 73 65 73 20 63 70 | .NUMA.balancing..It.also.uses.cp |
| ffbe0 | 75 70 6f 77 65 72 20 74 6f 20 73 65 74 20 74 68 65 20 70 65 72 66 6f 72 6d 61 6e 63 65 20 63 70 | upower.to.set.the.performance.cp |
| ffc00 | 75 66 72 65 71 20 67 6f 76 65 72 6e 6f 72 2c 20 61 6e 64 20 72 65 71 75 65 73 74 73 20 61 20 63 | ufreq.governor,.and.requests.a.c |
| ffc20 | 70 75 5f 64 6d 61 5f 6c 61 74 65 6e 63 79 20 76 61 6c 75 65 20 6f 66 20 31 2e 20 49 74 20 61 6c | pu_dma_latency.value.of.1..It.al |
| ffc40 | 73 6f 20 73 65 74 73 20 62 75 73 79 5f 72 65 61 64 20 61 6e 64 20 62 75 73 79 5f 70 6f 6c 6c 20 | so.sets.busy_read.and.busy_poll. |
| ffc60 | 74 69 6d 65 73 20 74 6f 20 35 30 20 75 73 2c 20 61 6e 64 20 74 63 70 5f 66 61 73 74 6f 70 65 6e | times.to.50.us,.and.tcp_fastopen |
| ffc80 | 20 74 6f 20 33 2e 00 49 74 20 65 6e 61 62 6c 65 73 20 74 72 61 6e 73 70 61 72 65 6e 74 20 68 75 | .to.3..It.enables.transparent.hu |
| ffca0 | 67 65 20 70 61 67 65 73 2c 20 61 6e 64 20 75 73 65 73 20 63 70 75 70 6f 77 65 72 20 74 6f 20 73 | ge.pages,.and.uses.cpupower.to.s |
| ffcc0 | 65 74 20 74 68 65 20 70 65 72 66 6f 72 6d 61 6e 63 65 20 63 70 75 66 72 65 71 20 67 6f 76 65 72 | et.the.performance.cpufreq.gover |
| ffce0 | 6e 6f 72 2e 20 49 74 20 61 6c 73 6f 20 73 65 74 73 20 60 60 6b 65 72 6e 65 6c 2e 73 63 68 65 64 | nor..It.also.sets.``kernel.sched |
| ffd00 | 5f 6d 69 6e 5f 67 72 61 6e 75 6c 61 72 69 74 79 5f 6e 73 60 60 20 74 6f 20 31 30 20 75 73 2c 20 | _min_granularity_ns``.to.10.us,. |
| ffd20 | 60 60 6b 65 72 6e 65 6c 2e 73 63 68 65 64 5f 77 61 6b 65 75 70 5f 67 72 61 6e 75 6c 61 72 69 74 | ``kernel.sched_wakeup_granularit |
| ffd40 | 79 5f 6e 73 60 60 20 74 6f 20 31 35 20 75 73 73 2c 20 61 6e 64 20 60 60 76 6d 2e 64 69 72 74 79 | y_ns``.to.15.uss,.and.``vm.dirty |
| ffd60 | 5f 72 61 74 69 6f 60 60 20 74 6f 20 34 30 25 2e 00 49 74 20 67 65 6e 65 72 61 74 65 73 20 74 68 | _ratio``.to.40%..It.generates.th |
| ffd80 | 65 20 6b 65 79 70 61 69 72 2c 20 77 68 69 63 68 20 69 6e 63 6c 75 64 65 73 20 74 68 65 20 70 75 | e.keypair,.which.includes.the.pu |
| ffda0 | 62 6c 69 63 20 61 6e 64 20 70 72 69 76 61 74 65 20 70 61 72 74 73 2e 20 54 68 65 20 6b 65 79 20 | blic.and.private.parts..The.key. |
| ffdc0 | 69 73 20 6e 6f 74 20 73 74 6f 72 65 64 20 6f 6e 20 74 68 65 20 73 79 73 74 65 6d 20 2d 20 6f 6e | is.not.stored.on.the.system.-.on |
| ffde0 | 6c 79 20 61 20 6b 65 79 70 61 69 72 20 69 73 20 67 65 6e 65 72 61 74 65 64 2e 00 49 74 20 68 61 | ly.a.keypair.is.generated..It.ha |
| ffe00 | 6e 64 73 20 6f 75 74 20 70 72 65 66 69 78 65 73 20 60 60 32 30 30 31 3a 64 62 38 3a 30 3a 31 30 | nds.out.prefixes.``2001:db8:0:10 |
| ffe20 | 3a 3a 2f 36 34 60 60 20 74 68 72 6f 75 67 68 20 60 60 32 30 30 31 3a 64 62 38 3a 30 3a 31 66 3a | ::/64``.through.``2001:db8:0:1f: |
| ffe40 | 3a 2f 36 34 60 60 2e 00 49 74 20 68 65 6c 70 73 20 74 6f 20 73 75 70 70 6f 72 74 20 61 73 20 48 | :/64``..It.helps.to.support.as.H |
| ffe60 | 45 4c 50 45 52 20 6f 6e 6c 79 20 66 6f 72 20 70 6c 61 6e 6e 65 64 20 72 65 73 74 61 72 74 73 2e | ELPER.only.for.planned.restarts. |
| ffe80 | 00 49 74 20 68 65 6c 70 73 20 74 6f 20 74 68 69 6e 6b 20 6f 66 20 74 68 65 20 73 79 6e 74 61 78 | .It.helps.to.think.of.the.syntax |
| ffea0 | 20 61 73 3a 20 28 73 65 65 20 62 65 6c 6f 77 29 2e 20 54 68 65 20 27 72 75 6c 65 2d 73 65 74 27 | .as:.(see.below)..The.'rule-set' |
| ffec0 | 20 73 68 6f 75 6c 64 20 62 65 20 77 72 69 74 74 65 6e 20 66 72 6f 6d 20 74 68 65 20 70 65 72 73 | .should.be.written.from.the.pers |
| ffee0 | 70 65 63 74 69 76 65 20 6f 66 3a 20 2a 53 6f 75 72 63 65 20 5a 6f 6e 65 2a 2d 74 6f 2d 3e 2a 44 | pective.of:.*Source.Zone*-to->*D |
| fff00 | 65 73 74 69 6e 61 74 69 6f 6e 20 5a 6f 6e 65 2a 00 49 74 20 69 73 20 63 6f 6d 70 61 74 69 62 6c | estination.Zone*.It.is.compatibl |
| fff20 | 65 20 77 69 74 68 20 43 69 73 63 6f 20 28 52 29 20 41 6e 79 43 6f 6e 6e 65 63 74 20 28 52 29 20 | e.with.Cisco.(R).AnyConnect.(R). |
| fff40 | 63 6c 69 65 6e 74 73 2e 00 49 74 20 69 73 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 60 60 65 74 | clients..It.is.connected.to.``et |
| fff60 | 68 31 60 60 00 49 74 20 69 73 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 60 60 65 74 68 31 60 60 | h1``.It.is.connected.to.``eth1`` |
| fff80 | 2e 00 49 74 20 69 73 20 68 69 67 68 6c 79 20 72 65 63 6f 6d 6d 65 6e 64 65 64 20 74 6f 20 75 73 | ..It.is.highly.recommended.to.us |
| fffa0 | 65 20 53 53 48 20 6b 65 79 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2e 20 42 79 20 64 65 66 | e.SSH.key.authentication..By.def |
| fffc0 | 61 75 6c 74 20 74 68 65 72 65 20 69 73 20 6f 6e 6c 79 20 6f 6e 65 20 75 73 65 72 20 28 60 60 76 | ault.there.is.only.one.user.(``v |
| fffe0 | 79 6f 73 60 60 29 2c 20 61 6e 64 20 79 6f 75 20 63 61 6e 20 61 73 73 69 67 6e 20 61 6e 79 20 6e | yos``),.and.you.can.assign.any.n |
| 100000 | 75 6d 62 65 72 20 6f 66 20 6b 65 79 73 20 74 6f 20 74 68 61 74 20 75 73 65 72 2e 20 59 6f 75 20 | umber.of.keys.to.that.user..You. |
| 100020 | 63 61 6e 20 67 65 6e 65 72 61 74 65 20 61 20 73 73 68 20 6b 65 79 20 77 69 74 68 20 74 68 65 20 | can.generate.a.ssh.key.with.the. |
| 100040 | 60 60 73 73 68 2d 6b 65 79 67 65 6e 60 60 20 63 6f 6d 6d 61 6e 64 20 6f 6e 20 79 6f 75 72 20 6c | ``ssh-keygen``.command.on.your.l |
| 100060 | 6f 63 61 6c 20 6d 61 63 68 69 6e 65 2c 20 77 68 69 63 68 20 77 69 6c 6c 20 28 62 79 20 64 65 66 | ocal.machine,.which.will.(by.def |
| 100080 | 61 75 6c 74 29 20 73 61 76 65 20 69 74 20 61 73 20 60 60 7e 2f 2e 73 73 68 2f 69 64 5f 72 73 61 | ault).save.it.as.``~/.ssh/id_rsa |
| 1000a0 | 2e 70 75 62 60 60 2e 00 49 74 20 69 73 20 68 69 67 68 6c 79 20 72 65 63 6f 6d 6d 65 6e 64 65 64 | .pub``..It.is.highly.recommended |
| 1000c0 | 20 74 6f 20 75 73 65 20 74 68 65 20 73 61 6d 65 20 61 64 64 72 65 73 73 20 66 6f 72 20 62 6f 74 | .to.use.the.same.address.for.bot |
| 1000e0 | 68 20 74 68 65 20 4c 44 50 20 72 6f 75 74 65 72 2d 69 64 20 61 6e 64 20 74 68 65 20 64 69 73 63 | h.the.LDP.router-id.and.the.disc |
| 100100 | 6f 76 65 72 79 20 74 72 61 6e 73 70 6f 72 74 20 61 64 64 72 65 73 73 2c 20 62 75 74 20 66 6f 72 | overy.transport.address,.but.for |
| 100120 | 20 56 79 4f 53 20 4d 50 4c 53 20 4c 44 50 20 74 6f 20 77 6f 72 6b 20 62 6f 74 68 20 70 61 72 61 | .VyOS.MPLS.LDP.to.work.both.para |
| 100140 | 6d 65 74 65 72 73 20 6d 75 73 74 20 62 65 20 65 78 70 6c 69 63 69 74 6c 79 20 73 65 74 20 69 6e | meters.must.be.explicitly.set.in |
| 100160 | 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 49 74 20 69 73 20 69 6d 70 6f 72 74 | .the.configuration..It.is.import |
| 100180 | 61 6e 74 20 74 6f 20 6e 6f 74 65 20 74 68 61 74 20 77 68 65 6e 20 63 72 65 61 74 69 6e 67 20 66 | ant.to.note.that.when.creating.f |
| 1001a0 | 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 20 74 68 61 74 20 74 68 65 20 44 4e 41 54 20 74 72 61 6e | irewall.rules.that.the.DNAT.tran |
| 1001c0 | 73 6c 61 74 69 6f 6e 20 6f 63 63 75 72 73 20 2a 2a 62 65 66 6f 72 65 2a 2a 20 74 72 61 66 66 69 | slation.occurs.**before**.traffi |
| 1001e0 | 63 20 74 72 61 76 65 72 73 65 73 20 74 68 65 20 66 69 72 65 77 61 6c 6c 2e 20 49 6e 20 6f 74 68 | c.traverses.the.firewall..In.oth |
| 100200 | 65 72 20 77 6f 72 64 73 2c 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 | er.words,.the.destination.addres |
| 100220 | 73 20 68 61 73 20 61 6c 72 65 61 64 79 20 62 65 65 6e 20 74 72 61 6e 73 6c 61 74 65 64 20 74 6f | s.has.already.been.translated.to |
| 100240 | 20 31 39 32 2e 31 36 38 2e 30 2e 31 30 30 2e 00 49 74 20 69 73 20 69 6d 70 6f 72 74 61 6e 74 20 | .192.168.0.100..It.is.important. |
| 100260 | 74 6f 20 6e 6f 74 65 20 74 68 61 74 20 77 68 65 6e 20 63 72 65 61 74 69 6e 67 20 66 69 72 65 77 | to.note.that.when.creating.firew |
| 100280 | 61 6c 6c 20 72 75 6c 65 73 2c 20 74 68 65 20 44 4e 41 54 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 | all.rules,.the.DNAT.translation. |
| 1002a0 | 6f 63 63 75 72 73 20 2a 2a 62 65 66 6f 72 65 2a 2a 20 74 72 61 66 66 69 63 20 74 72 61 76 65 72 | occurs.**before**.traffic.traver |
| 1002c0 | 73 65 73 20 74 68 65 20 66 69 72 65 77 61 6c 6c 2e 20 49 6e 20 6f 74 68 65 72 20 77 6f 72 64 73 | ses.the.firewall..In.other.words |
| 1002e0 | 2c 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 68 61 73 20 61 6c | ,.the.destination.address.has.al |
| 100300 | 72 65 61 64 79 20 62 65 65 6e 20 74 72 61 6e 73 6c 61 74 65 64 20 74 6f 20 31 39 32 2e 31 36 38 | ready.been.translated.to.192.168 |
| 100320 | 2e 30 2e 31 30 30 2e 00 49 74 20 69 73 20 6e 6f 74 20 73 75 66 66 69 63 69 65 6e 74 20 74 6f 20 | .0.100..It.is.not.sufficient.to. |
| 100340 | 6f 6e 6c 79 20 63 6f 6e 66 69 67 75 72 65 20 61 20 4c 33 56 50 4e 20 56 52 46 73 20 62 75 74 20 | only.configure.a.L3VPN.VRFs.but. |
| 100360 | 4c 33 56 50 4e 20 56 52 46 73 20 6d 75 73 74 20 62 65 20 6d 61 69 6e 74 61 69 6e 65 64 2c 20 74 | L3VPN.VRFs.must.be.maintained,.t |
| 100380 | 6f 6f 2e 46 6f 72 20 4c 33 56 50 4e 20 56 52 46 20 6d 61 69 6e 74 65 6e 61 6e 63 65 20 74 68 65 | oo.For.L3VPN.VRF.maintenance.the |
| 1003a0 | 20 66 6f 6c 6c 6f 77 69 6e 67 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 63 6f 6d 6d 61 6e 64 73 20 | .following.operational.commands. |
| 1003c0 | 61 72 65 20 69 6e 20 70 6c 61 63 65 2e 00 49 74 20 69 73 20 6e 6f 74 20 73 75 66 66 69 63 69 65 | are.in.place..It.is.not.sufficie |
| 1003e0 | 6e 74 20 74 6f 20 6f 6e 6c 79 20 63 6f 6e 66 69 67 75 72 65 20 61 20 56 52 46 20 62 75 74 20 56 | nt.to.only.configure.a.VRF.but.V |
| 100400 | 52 46 73 20 6d 75 73 74 20 62 65 20 6d 61 69 6e 74 61 69 6e 65 64 2c 20 74 6f 6f 2e 20 46 6f 72 | RFs.must.be.maintained,.too..For |
| 100420 | 20 56 52 46 20 6d 61 69 6e 74 65 6e 61 6e 63 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 6f | .VRF.maintenance.the.following.o |
| 100440 | 70 65 72 61 74 69 6f 6e 61 6c 20 63 6f 6d 6d 61 6e 64 73 20 61 72 65 20 69 6e 20 70 6c 61 63 65 | perational.commands.are.in.place |
| 100460 | 2e 00 49 74 20 69 73 20 6e 6f 74 20 76 61 6c 69 64 20 74 6f 20 75 73 65 20 74 68 65 20 60 76 69 | ..It.is.not.valid.to.use.the.`vi |
| 100480 | 66 20 31 60 20 6f 70 74 69 6f 6e 20 66 6f 72 20 56 4c 41 4e 20 61 77 61 72 65 20 62 72 69 64 67 | f.1`.option.for.VLAN.aware.bridg |
| 1004a0 | 65 73 20 62 65 63 61 75 73 65 20 56 4c 41 4e 20 61 77 61 72 65 20 62 72 69 64 67 65 73 20 61 73 | es.because.VLAN.aware.bridges.as |
| 1004c0 | 73 75 6d 65 20 74 68 61 74 20 61 6c 6c 20 75 6e 6c 61 62 65 6c 65 64 20 70 61 63 6b 65 74 73 20 | sume.that.all.unlabeled.packets. |
| 1004e0 | 62 65 6c 6f 6e 67 20 74 6f 20 74 68 65 20 64 65 66 61 75 6c 74 20 56 4c 41 4e 20 31 20 6d 65 6d | belong.to.the.default.VLAN.1.mem |
| 100500 | 62 65 72 20 61 6e 64 20 74 68 61 74 20 74 68 65 20 56 4c 41 4e 20 49 44 20 6f 66 20 74 68 65 20 | ber.and.that.the.VLAN.ID.of.the. |
| 100520 | 62 72 69 64 67 65 27 73 20 70 61 72 65 6e 74 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 61 6c 77 | bridge's.parent.interface.is.alw |
| 100540 | 61 79 73 20 31 00 49 74 20 69 73 20 70 6f 73 73 69 62 6c 65 20 74 6f 20 65 6e 68 61 6e 63 65 20 | ays.1.It.is.possible.to.enhance. |
| 100560 | 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 73 65 63 75 72 69 74 79 20 62 79 20 75 73 69 6e 67 | authentication.security.by.using |
| 100580 | 20 74 68 65 20 3a 61 62 62 72 3a 60 32 46 41 20 28 54 77 6f 2d 66 61 63 74 6f 72 20 61 75 74 68 | .the.:abbr:`2FA.(Two-factor.auth |
| 1005a0 | 65 6e 74 69 63 61 74 69 6f 6e 29 60 2f 3a 61 62 62 72 3a 60 4d 46 41 20 28 4d 75 6c 74 69 2d 66 | entication)`/:abbr:`MFA.(Multi-f |
| 1005c0 | 61 63 74 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 29 60 20 66 65 61 74 75 72 65 20 74 | actor.authentication)`.feature.t |
| 1005e0 | 6f 67 65 74 68 65 72 20 77 69 74 68 20 3a 61 62 62 72 3a 60 4f 54 50 20 28 4f 6e 65 2d 54 69 6d | ogether.with.:abbr:`OTP.(One-Tim |
| 100600 | 65 2d 50 61 64 29 60 20 6f 6e 20 56 79 4f 53 2e 20 3a 61 62 62 72 3a 60 32 46 41 20 28 54 77 6f | e-Pad)`.on.VyOS..:abbr:`2FA.(Two |
| 100620 | 2d 66 61 63 74 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 29 60 2f 3a 61 62 62 72 3a 60 | -factor.authentication)`/:abbr:` |
| 100640 | 4d 46 41 20 28 4d 75 6c 74 69 2d 66 61 63 74 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e | MFA.(Multi-factor.authentication |
| 100660 | 29 60 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 20 69 6e 64 65 70 65 6e 64 65 6e 74 6c 79 20 70 | )`.is.configured.independently.p |
| 100680 | 65 72 20 65 61 63 68 20 75 73 65 72 2e 20 49 66 20 61 6e 20 4f 54 50 20 6b 65 79 20 69 73 20 63 | er.each.user..If.an.OTP.key.is.c |
| 1006a0 | 6f 6e 66 69 67 75 72 65 64 20 66 6f 72 20 61 20 75 73 65 72 2c 20 32 46 41 2f 4d 46 41 20 69 73 | onfigured.for.a.user,.2FA/MFA.is |
| 1006c0 | 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 65 6e 61 62 6c 65 64 20 66 6f 72 20 74 68 61 74 20 | .automatically.enabled.for.that. |
| 1006e0 | 70 61 72 74 69 63 75 6c 61 72 20 75 73 65 72 2e 20 49 66 20 61 20 75 73 65 72 20 64 6f 65 73 20 | particular.user..If.a.user.does. |
| 100700 | 6e 6f 74 20 68 61 76 65 20 61 6e 20 4f 54 50 20 6b 65 79 20 63 6f 6e 66 69 67 75 72 65 64 2c 20 | not.have.an.OTP.key.configured,. |
| 100720 | 74 68 65 72 65 20 69 73 20 6e 6f 20 32 46 41 2f 4d 46 41 20 63 68 65 63 6b 20 66 6f 72 20 74 68 | there.is.no.2FA/MFA.check.for.th |
| 100740 | 61 74 20 75 73 65 72 2e 00 49 74 20 69 73 20 70 6f 73 73 69 62 6c 65 20 74 6f 20 70 65 72 6d 69 | at.user..It.is.possible.to.permi |
| 100760 | 74 20 42 47 50 20 69 6e 73 74 61 6c 6c 20 56 50 4e 20 70 72 65 66 69 78 65 73 20 77 69 74 68 6f | t.BGP.install.VPN.prefixes.witho |
| 100780 | 75 74 20 74 72 61 6e 73 70 6f 72 74 20 6c 61 62 65 6c 73 2e 20 54 68 69 73 20 63 6f 6e 66 69 67 | ut.transport.labels..This.config |
| 1007a0 | 75 72 61 74 69 6f 6e 20 77 69 6c 6c 20 69 6e 73 74 61 6c 6c 20 56 50 4e 20 70 72 65 66 69 78 65 | uration.will.install.VPN.prefixe |
| 1007c0 | 73 20 6f 72 69 67 69 6e 61 74 65 64 20 66 72 6f 6d 20 61 6e 20 65 2d 62 67 70 20 73 65 73 73 69 | s.originated.from.an.e-bgp.sessi |
| 1007e0 | 6f 6e 2c 20 61 6e 64 20 77 69 74 68 20 74 68 65 20 6e 65 78 74 2d 68 6f 70 20 64 69 72 65 63 74 | on,.and.with.the.next-hop.direct |
| 100800 | 6c 79 20 63 6f 6e 6e 65 63 74 65 64 2e 00 49 74 20 69 73 20 70 6f 73 73 69 62 6c 65 20 74 6f 20 | ly.connected..It.is.possible.to. |
| 100820 | 73 70 65 63 69 66 79 20 61 20 73 74 61 74 69 63 20 72 6f 75 74 65 20 66 6f 72 20 69 70 76 36 20 | specify.a.static.route.for.ipv6. |
| 100840 | 70 72 65 66 69 78 65 73 20 75 73 69 6e 67 20 61 6e 20 53 52 76 36 20 73 65 67 6d 65 6e 74 73 20 | prefixes.using.an.SRv6.segments. |
| 100860 | 69 6e 73 74 72 75 63 74 69 6f 6e 2e 20 54 68 65 20 60 2f 60 20 73 65 70 61 72 61 74 6f 72 20 63 | instruction..The.`/`.separator.c |
| 100880 | 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 73 70 65 63 69 66 79 20 6d 75 6c 74 69 70 6c 65 20 73 | an.be.used.to.specify.multiple.s |
| 1008a0 | 65 67 6d 65 6e 74 20 69 6e 73 74 72 75 63 74 69 6f 6e 73 2e 00 49 74 20 69 73 20 70 6f 73 73 69 | egment.instructions..It.is.possi |
| 1008c0 | 62 6c 65 20 74 6f 20 75 73 65 20 65 69 74 68 65 72 20 4d 75 6c 74 69 63 61 73 74 20 6f 72 20 55 | ble.to.use.either.Multicast.or.U |
| 1008e0 | 6e 69 63 61 73 74 20 74 6f 20 73 79 6e 63 20 63 6f 6e 6e 74 72 61 63 6b 20 74 72 61 66 66 69 63 | nicast.to.sync.conntrack.traffic |
| 100900 | 2e 20 4d 6f 73 74 20 65 78 61 6d 70 6c 65 73 20 62 65 6c 6f 77 20 73 68 6f 77 20 4d 75 6c 74 69 | ..Most.examples.below.show.Multi |
| 100920 | 63 61 73 74 2c 20 62 75 74 20 75 6e 69 63 61 73 74 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 | cast,.but.unicast.can.be.specifi |
| 100940 | 65 64 20 62 79 20 75 73 69 6e 67 20 74 68 65 20 22 70 65 65 72 22 20 6b 65 79 77 6f 72 6b 20 61 | ed.by.using.the."peer".keywork.a |
| 100960 | 66 74 65 72 20 74 68 65 20 73 70 65 63 69 66 69 63 65 64 20 69 6e 74 65 72 66 61 63 65 2c 20 61 | fter.the.specificed.interface,.a |
| 100980 | 73 20 69 6e 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 6c 65 3a 00 49 74 20 69 | s.in.the.following.example:.It.i |
| 1009a0 | 73 20 70 6f 73 73 69 62 6c 65 20 74 6f 20 75 73 65 20 65 69 74 68 65 72 20 4d 75 6c 74 69 63 61 | s.possible.to.use.either.Multica |
| 1009c0 | 73 74 20 6f 72 20 55 6e 69 63 61 73 74 20 74 6f 20 73 79 6e 63 20 63 6f 6e 6e 74 72 61 63 6b 20 | st.or.Unicast.to.sync.conntrack. |
| 1009e0 | 74 72 61 66 66 69 63 2e 20 4d 6f 73 74 20 65 78 61 6d 70 6c 65 73 20 62 65 6c 6f 77 20 73 68 6f | traffic..Most.examples.below.sho |
| 100a00 | 77 20 4d 75 6c 74 69 63 61 73 74 2c 20 62 75 74 20 75 6e 69 63 61 73 74 20 63 61 6e 20 62 65 20 | w.Multicast,.but.unicast.can.be. |
| 100a20 | 73 70 65 63 69 66 69 65 64 20 62 79 20 75 73 69 6e 67 20 74 68 65 20 22 70 65 65 72 22 20 6b 65 | specified.by.using.the."peer".ke |
| 100a40 | 79 77 6f 72 6b 20 61 66 74 65 72 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 69 6e 74 65 72 66 | ywork.after.the.specified.interf |
| 100a60 | 61 63 65 2c 20 61 73 20 69 6e 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 6c 65 | ace,.as.in.the.following.example |
| 100a80 | 3a 00 49 74 20 69 73 20 76 65 72 79 20 65 61 73 79 20 74 6f 20 6d 69 73 63 6f 6e 66 69 67 75 72 | :.It.is.very.easy.to.misconfigur |
| 100aa0 | 65 20 6d 75 6c 74 69 63 61 73 74 20 72 65 70 65 61 74 69 6e 67 20 69 66 20 79 6f 75 20 68 61 76 | e.multicast.repeating.if.you.hav |
| 100ac0 | 65 20 6d 75 6c 74 69 70 6c 65 20 4e 48 53 65 73 2e 00 49 74 20 75 73 65 73 20 61 20 73 69 6e 67 | e.multiple.NHSes..It.uses.a.sing |
| 100ae0 | 6c 65 20 54 43 50 20 6f 72 20 55 44 50 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 61 6e 64 20 64 6f 65 | le.TCP.or.UDP.connection.and.doe |
| 100b00 | 73 20 6e 6f 74 20 72 65 6c 79 20 6f 6e 20 70 61 63 6b 65 74 20 73 6f 75 72 63 65 20 61 64 64 72 | s.not.rely.on.packet.source.addr |
| 100b20 | 65 73 73 65 73 2c 20 73 6f 20 69 74 20 77 69 6c 6c 20 77 6f 72 6b 20 65 76 65 6e 20 74 68 72 6f | esses,.so.it.will.work.even.thro |
| 100b40 | 75 67 68 20 61 20 64 6f 75 62 6c 65 20 4e 41 54 3a 20 70 65 72 66 65 63 74 20 66 6f 72 20 70 75 | ugh.a.double.NAT:.perfect.for.pu |
| 100b60 | 62 6c 69 63 20 68 6f 74 73 70 6f 74 73 20 61 6e 64 20 73 75 63 68 00 49 74 20 75 73 65 73 20 61 | blic.hotspots.and.such.It.uses.a |
| 100b80 | 20 73 74 6f 63 68 61 73 74 69 63 20 6d 6f 64 65 6c 20 74 6f 20 63 6c 61 73 73 69 66 79 20 69 6e | .stochastic.model.to.classify.in |
| 100ba0 | 63 6f 6d 69 6e 67 20 70 61 63 6b 65 74 73 20 69 6e 74 6f 20 64 69 66 66 65 72 65 6e 74 20 66 6c | coming.packets.into.different.fl |
| 100bc0 | 6f 77 73 20 61 6e 64 20 69 73 20 75 73 65 64 20 74 6f 20 70 72 6f 76 69 64 65 20 61 20 66 61 69 | ows.and.is.used.to.provide.a.fai |
| 100be0 | 72 20 73 68 61 72 65 20 6f 66 20 74 68 65 20 62 61 6e 64 77 69 64 74 68 20 74 6f 20 61 6c 6c 20 | r.share.of.the.bandwidth.to.all. |
| 100c00 | 74 68 65 20 66 6c 6f 77 73 20 75 73 69 6e 67 20 74 68 65 20 71 75 65 75 65 2e 20 45 61 63 68 20 | the.flows.using.the.queue..Each. |
| 100c20 | 66 6c 6f 77 20 69 73 20 6d 61 6e 61 67 65 64 20 62 79 20 74 68 65 20 43 6f 44 65 6c 20 71 75 65 | flow.is.managed.by.the.CoDel.que |
| 100c40 | 75 69 6e 67 20 20 64 69 73 63 69 70 6c 69 6e 65 2e 20 52 65 6f 72 64 65 72 69 6e 67 20 77 69 74 | uing..discipline..Reordering.wit |
| 100c60 | 68 69 6e 20 61 20 66 6c 6f 77 20 69 73 20 61 76 6f 69 64 65 64 20 73 69 6e 63 65 20 43 6f 64 65 | hin.a.flow.is.avoided.since.Code |
| 100c80 | 6c 20 69 6e 74 65 72 6e 61 6c 6c 79 20 75 73 65 73 20 61 20 46 49 46 4f 20 71 75 65 75 65 2e 00 | l.internally.uses.a.FIFO.queue.. |
| 100ca0 | 49 74 20 77 69 6c 6c 20 62 65 20 63 6f 6d 62 69 6e 65 64 20 77 69 74 68 20 74 68 65 20 64 65 6c | It.will.be.combined.with.the.del |
| 100cc0 | 65 67 61 74 65 64 20 70 72 65 66 69 78 20 61 6e 64 20 74 68 65 20 73 6c 61 2d 69 64 20 74 6f 20 | egated.prefix.and.the.sla-id.to. |
| 100ce0 | 66 6f 72 6d 20 61 20 63 6f 6d 70 6c 65 74 65 20 69 6e 74 65 72 66 61 63 65 20 61 64 64 72 65 73 | form.a.complete.interface.addres |
| 100d00 | 73 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 74 6f 20 75 73 65 20 74 68 65 20 45 55 49 | s..The.default.is.to.use.the.EUI |
| 100d20 | 2d 36 34 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 2e 00 49 74 | -64.address.of.the.interface..It |
| 100d40 | 27 73 20 65 61 73 79 20 74 6f 20 73 65 74 75 70 20 61 6e 64 20 6f 66 66 65 72 73 20 76 65 72 79 | 's.easy.to.setup.and.offers.very |
| 100d60 | 20 66 6c 65 78 69 62 6c 65 20 73 70 6c 69 74 20 74 75 6e 6e 65 6c 69 6e 67 00 49 74 27 73 20 6e | .flexible.split.tunneling.It's.n |
| 100d80 | 6f 74 20 6c 69 6b 65 6c 79 20 74 68 61 74 20 61 6e 79 6f 6e 65 20 77 69 6c 6c 20 6e 65 65 64 20 | ot.likely.that.anyone.will.need. |
| 100da0 | 69 74 20 61 6e 79 20 74 69 6d 65 20 73 6f 6f 6e 2c 20 62 75 74 20 69 74 20 64 6f 65 73 20 65 78 | it.any.time.soon,.but.it.does.ex |
| 100dc0 | 69 73 74 2e 00 49 74 27 73 20 73 6c 6f 77 65 72 20 74 68 61 6e 20 49 50 73 65 63 20 64 75 65 20 | ist..It's.slower.than.IPsec.due. |
| 100de0 | 74 6f 20 68 69 67 68 65 72 20 70 72 6f 74 6f 63 6f 6c 20 6f 76 65 72 68 65 61 64 20 61 6e 64 20 | to.higher.protocol.overhead.and. |
| 100e00 | 74 68 65 20 66 61 63 74 20 69 74 20 72 75 6e 73 20 69 6e 20 75 73 65 72 20 6d 6f 64 65 20 77 68 | the.fact.it.runs.in.user.mode.wh |
| 100e20 | 69 6c 65 20 49 50 73 65 63 2c 20 6f 6e 20 4c 69 6e 75 78 2c 20 69 73 20 69 6e 20 6b 65 72 6e 65 | ile.IPsec,.on.Linux,.is.in.kerne |
| 100e40 | 6c 20 6d 6f 64 65 00 49 74 27 73 20 74 69 6d 65 20 74 6f 20 63 68 65 63 6b 20 63 6f 6e 6e 74 72 | l.mode.It's.time.to.check.conntr |
| 100e60 | 61 63 6b 20 74 61 62 6c 65 2c 20 74 6f 20 73 65 65 20 69 66 20 61 6e 79 20 63 6f 6e 6e 65 63 74 | ack.table,.to.see.if.any.connect |
| 100e80 | 69 6f 6e 20 77 61 73 20 61 63 63 65 70 74 65 64 2c 20 61 6e 64 20 69 66 20 77 61 73 20 70 72 6f | ion.was.accepted,.and.if.was.pro |
| 100ea0 | 70 65 72 6c 79 20 6f 66 66 6c 6f 61 64 65 64 00 49 74 27 73 20 74 69 6d 65 20 74 6f 20 63 68 65 | perly.offloaded.It's.time.to.che |
| 100ec0 | 63 6b 20 74 68 65 20 63 6f 6e 6e 74 72 61 63 6b 20 74 61 62 6c 65 2c 20 74 6f 20 73 65 65 20 69 | ck.the.conntrack.table,.to.see.i |
| 100ee0 | 66 20 61 6e 79 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 77 65 72 65 20 61 63 63 65 70 74 65 64 2c | f.any.connections.were.accepted, |
| 100f00 | 20 61 6e 64 20 69 66 20 69 74 20 77 61 73 20 70 72 6f 70 65 72 6c 79 20 6f 66 66 6c 6f 61 64 65 | .and.if.it.was.properly.offloade |
| 100f20 | 64 00 4a 6f 69 6e 20 61 20 67 69 76 65 6e 20 56 52 46 2e 20 54 68 69 73 20 77 69 6c 6c 20 6f 70 | d.Join.a.given.VRF..This.will.op |
| 100f40 | 65 6e 20 61 20 6e 65 77 20 73 75 62 73 68 65 6c 6c 20 77 69 74 68 69 6e 20 74 68 65 20 73 70 65 | en.a.new.subshell.within.the.spe |
| 100f60 | 63 69 66 69 65 64 20 56 52 46 2e 00 4a 75 6d 70 20 74 6f 20 61 20 64 69 66 66 65 72 65 6e 74 20 | cified.VRF..Jump.to.a.different. |
| 100f80 | 72 75 6c 65 20 69 6e 20 74 68 69 73 20 72 6f 75 74 65 2d 6d 61 70 20 6f 6e 20 61 20 6d 61 74 63 | rule.in.this.route-map.on.a.matc |
| 100fa0 | 68 2e 00 4a 75 6e 69 70 65 72 20 45 58 20 53 77 69 74 63 68 00 4b 65 72 6e 65 6c 00 4b 65 72 6e | h..Juniper.EX.Switch.Kernel.Kern |
| 100fc0 | 65 6c 20 50 61 72 61 6d 65 74 65 72 73 3a 20 6b 65 72 6e 65 6c 2e 6d 73 67 6d 61 78 2c 20 6b 65 | el.Parameters:.kernel.msgmax,.ke |
| 100fe0 | 72 6e 65 6c 2e 6d 73 67 6d 6e 62 2c 20 6b 65 72 6e 65 6c 2e 6d 73 67 6d 6e 69 2c 20 6b 65 72 6e | rnel.msgmnb,.kernel.msgmni,.kern |
| 101000 | 65 6c 2e 73 65 6d 2c 20 6b 65 72 6e 65 6c 2e 73 68 6d 61 6c 6c 2c 20 6b 65 72 6e 65 6c 2e 73 68 | el.sem,.kernel.shmall,.kernel.sh |
| 101020 | 6d 6d 61 78 2c 20 6b 65 72 6e 65 6c 2e 73 68 6d 6d 6e 69 2c 20 6b 65 72 6e 65 6c 2e 73 68 6d 5f | mmax,.kernel.shmmni,.kernel.shm_ |
| 101040 | 72 6d 69 64 5f 66 6f 72 63 65 64 00 4b 65 72 6e 65 6c 20 6d 65 73 73 61 67 65 73 00 4b 65 79 20 | rmid_forced.Kernel.messages.Key. |
| 101060 | 42 61 73 65 64 20 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 00 4b 65 79 20 47 65 6e 65 72 61 74 | Based.Authentication.Key.Generat |
| 101080 | 69 6f 6e 00 4b 65 79 20 4d 61 6e 61 67 65 6d 65 6e 74 00 4b 65 79 20 50 61 72 61 6d 65 74 65 72 | ion.Key.Management.Key.Parameter |
| 1010a0 | 73 3a 00 4b 65 79 20 50 6f 69 6e 74 73 3a 00 4b 65 79 20 65 78 63 68 61 6e 67 65 20 61 6e 64 20 | s:.Key.Points:.Key.exchange.and. |
| 1010c0 | 70 61 79 6c 6f 61 64 20 65 6e 63 72 79 70 74 69 6f 6e 20 69 73 20 64 6f 6e 65 20 75 73 69 6e 67 | payload.encryption.is.done.using |
| 1010e0 | 20 49 4b 45 20 61 6e 64 20 45 53 50 20 70 72 6f 70 6f 73 61 6c 73 20 61 73 20 6b 6e 6f 77 6e 20 | .IKE.and.ESP.proposals.as.known. |
| 101100 | 66 72 6f 6d 20 49 4b 45 76 31 20 62 75 74 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 61 | from.IKEv1.but.the.connections.a |
| 101120 | 72 65 20 66 61 73 74 65 72 20 74 6f 20 65 73 74 61 62 6c 69 73 68 2c 20 6d 6f 72 65 20 72 65 6c | re.faster.to.establish,.more.rel |
| 101140 | 69 61 62 6c 65 2c 20 61 6e 64 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 20 72 6f 61 6d 69 6e 67 20 | iable,.and.also.support.roaming. |
| 101160 | 66 72 6f 6d 20 49 50 20 74 6f 20 49 50 20 28 63 61 6c 6c 65 64 20 4d 4f 42 49 4b 45 20 77 68 69 | from.IP.to.IP.(called.MOBIKE.whi |
| 101180 | 63 68 20 6d 61 6b 65 73 20 73 75 72 65 20 79 6f 75 72 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 64 6f | ch.makes.sure.your.connection.do |
| 1011a0 | 65 73 20 6e 6f 74 20 64 72 6f 70 20 77 68 65 6e 20 63 68 61 6e 67 69 6e 67 20 6e 65 74 77 6f 72 | es.not.drop.when.changing.networ |
| 1011c0 | 6b 73 20 66 72 6f 6d 20 65 2e 67 2e 20 57 49 46 49 20 74 6f 20 4c 54 45 20 61 6e 64 20 62 61 63 | ks.from.e.g..WIFI.to.LTE.and.bac |
| 1011e0 | 6b 29 2e 20 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 63 61 6e 20 62 65 20 61 63 68 69 65 76 | k)..Authentication.can.be.achiev |
| 101200 | 65 64 20 77 69 74 68 20 58 2e 35 30 39 20 63 65 72 74 69 66 69 63 61 74 65 73 2e 00 4b 65 79 20 | ed.with.X.509.certificates..Key. |
| 101220 | 65 78 63 68 61 6e 67 65 20 61 6e 64 20 70 61 79 6c 6f 61 64 20 65 6e 63 72 79 70 74 69 6f 6e 20 | exchange.and.payload.encryption. |
| 101240 | 69 73 20 73 74 69 6c 6c 20 64 6f 6e 65 20 75 73 69 6e 67 20 49 4b 45 20 61 6e 64 20 45 53 50 20 | is.still.done.using.IKE.and.ESP. |
| 101260 | 70 72 6f 70 6f 73 61 6c 73 20 61 73 20 6b 6e 6f 77 6e 20 66 72 6f 6d 20 49 4b 45 76 31 20 62 75 | proposals.as.known.from.IKEv1.bu |
| 101280 | 74 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 61 72 65 20 66 61 73 74 65 72 20 74 6f 20 | t.the.connections.are.faster.to. |
| 1012a0 | 65 73 74 61 62 6c 69 73 68 2c 20 6d 6f 72 65 20 72 65 6c 69 61 62 6c 65 2c 20 61 6e 64 20 61 6c | establish,.more.reliable,.and.al |
| 1012c0 | 73 6f 20 73 75 70 70 6f 72 74 20 72 6f 61 6d 69 6e 67 20 66 72 6f 6d 20 49 50 20 74 6f 20 49 50 | so.support.roaming.from.IP.to.IP |
| 1012e0 | 20 28 63 61 6c 6c 65 64 20 4d 4f 42 49 4b 45 20 77 68 69 63 68 20 6d 61 6b 65 73 20 73 75 72 65 | .(called.MOBIKE.which.makes.sure |
| 101300 | 20 79 6f 75 72 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 64 6f 65 73 20 6e 6f 74 20 64 72 6f 70 20 77 | .your.connection.does.not.drop.w |
| 101320 | 68 65 6e 20 63 68 61 6e 67 69 6e 67 20 6e 65 74 77 6f 72 6b 73 20 66 72 6f 6d 20 65 2e 67 2e 20 | hen.changing.networks.from.e.g.. |
| 101340 | 57 49 46 49 20 74 6f 20 4c 54 45 20 61 6e 64 20 62 61 63 6b 29 2e 00 4b 65 79 20 75 73 61 67 65 | WIFI.to.LTE.and.back)..Key.usage |
| 101360 | 20 28 43 4c 49 29 00 4b 65 79 62 6f 61 72 64 20 4c 61 79 6f 75 74 00 4b 65 79 70 61 69 72 73 00 | .(CLI).Keyboard.Layout.Keypairs. |
| 101380 | 4b 65 79 77 6f 72 64 00 4b 6e 6f 77 6e 20 69 73 73 75 65 73 00 4c 32 54 50 00 4c 32 54 50 20 6f | Keyword.Known.issues.L2TP.L2TP.o |
| 1013a0 | 76 65 72 20 49 50 73 65 63 00 4c 32 54 50 76 33 00 4c 32 54 50 76 33 20 63 61 6e 20 62 65 20 72 | ver.IPsec.L2TPv3.L2TPv3.can.be.r |
| 1013c0 | 65 67 61 72 64 65 64 20 61 73 20 62 65 69 6e 67 20 74 6f 20 4d 50 4c 53 20 77 68 61 74 20 49 50 | egarded.as.being.to.MPLS.what.IP |
| 1013e0 | 20 69 73 20 74 6f 20 41 54 4d 3a 20 61 20 73 69 6d 70 6c 69 66 69 65 64 20 76 65 72 73 69 6f 6e | .is.to.ATM:.a.simplified.version |
| 101400 | 20 6f 66 20 74 68 65 20 73 61 6d 65 20 63 6f 6e 63 65 70 74 2c 20 77 69 74 68 20 6d 75 63 68 20 | .of.the.same.concept,.with.much. |
| 101420 | 6f 66 20 74 68 65 20 73 61 6d 65 20 62 65 6e 65 66 69 74 20 61 63 68 69 65 76 65 64 20 61 74 20 | of.the.same.benefit.achieved.at. |
| 101440 | 61 20 66 72 61 63 74 69 6f 6e 20 6f 66 20 74 68 65 20 65 66 66 6f 72 74 2c 20 61 74 20 74 68 65 | a.fraction.of.the.effort,.at.the |
| 101460 | 20 63 6f 73 74 20 6f 66 20 6c 6f 73 69 6e 67 20 73 6f 6d 65 20 74 65 63 68 6e 69 63 61 6c 20 66 | .cost.of.losing.some.technical.f |
| 101480 | 65 61 74 75 72 65 73 20 63 6f 6e 73 69 64 65 72 65 64 20 6c 65 73 73 20 69 6d 70 6f 72 74 61 6e | eatures.considered.less.importan |
| 1014a0 | 74 20 69 6e 20 74 68 65 20 6d 61 72 6b 65 74 2e 00 4c 32 54 50 76 33 20 69 73 20 64 65 73 63 72 | t.in.the.market..L2TPv3.is.descr |
| 1014c0 | 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 33 39 32 31 60 2e 00 4c 32 54 50 76 33 20 69 73 20 64 | ibed.in.:rfc:`3921`..L2TPv3.is.d |
| 1014e0 | 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 33 39 33 31 60 2e 00 4c 32 54 50 76 33 20 | escribed.in.:rfc:`3931`..L2TPv3. |
| 101500 | 6f 70 74 69 6f 6e 73 00 4c 32 54 50 76 33 3a 00 4c 33 56 50 4e 20 56 52 46 73 00 4c 44 41 50 00 | options.L2TPv3:.L3VPN.VRFs.LDAP. |
| 101520 | 4c 44 41 50 20 70 72 6f 74 6f 63 6f 6c 20 76 65 72 73 69 6f 6e 2e 20 44 65 66 61 75 6c 74 73 20 | LDAP.protocol.version..Defaults. |
| 101540 | 74 6f 20 33 20 69 66 20 6e 6f 74 20 73 70 65 63 69 66 69 65 64 2e 00 4c 44 41 50 20 73 65 61 72 | to.3.if.not.specified..LDAP.sear |
| 101560 | 63 68 20 66 69 6c 74 65 72 20 74 6f 20 6c 6f 63 61 74 65 20 74 68 65 20 75 73 65 72 20 44 4e 2e | ch.filter.to.locate.the.user.DN. |
| 101580 | 20 52 65 71 75 69 72 65 64 20 69 66 20 74 68 65 20 75 73 65 72 73 20 61 72 65 20 69 6e 20 61 20 | .Required.if.the.users.are.in.a. |
| 1015a0 | 68 69 65 72 61 72 63 68 79 20 62 65 6c 6f 77 20 74 68 65 20 62 61 73 65 20 44 4e 2c 20 6f 72 20 | hierarchy.below.the.base.DN,.or. |
| 1015c0 | 69 66 20 74 68 65 20 6c 6f 67 69 6e 20 6e 61 6d 65 20 69 73 20 6e 6f 74 20 77 68 61 74 20 62 75 | if.the.login.name.is.not.what.bu |
| 1015e0 | 69 6c 64 73 20 74 68 65 20 75 73 65 72 20 73 70 65 63 69 66 69 63 20 70 61 72 74 20 6f 66 20 74 | ilds.the.user.specific.part.of.t |
| 101600 | 68 65 20 75 73 65 72 73 20 44 4e 2e 00 4c 4c 44 50 00 4c 4c 44 50 20 70 65 72 66 6f 72 6d 73 20 | he.users.DN..LLDP.LLDP.performs. |
| 101620 | 66 75 6e 63 74 69 6f 6e 73 20 73 69 6d 69 6c 61 72 20 74 6f 20 73 65 76 65 72 61 6c 20 70 72 6f | functions.similar.to.several.pro |
| 101640 | 70 72 69 65 74 61 72 79 20 70 72 6f 74 6f 63 6f 6c 73 2c 20 73 75 63 68 20 61 73 20 3a 61 62 62 | prietary.protocols,.such.as.:abb |
| 101660 | 72 3a 60 43 44 50 20 28 43 69 73 63 6f 20 44 69 73 63 6f 76 65 72 79 20 50 72 6f 74 6f 63 6f 6c | r:`CDP.(Cisco.Discovery.Protocol |
| 101680 | 29 60 2c 20 3a 61 62 62 72 3a 60 46 44 50 20 28 46 6f 75 6e 64 72 79 20 44 69 73 63 6f 76 65 72 | )`,.:abbr:`FDP.(Foundry.Discover |
| 1016a0 | 79 20 50 72 6f 74 6f 63 6f 6c 29 60 2c 20 3a 61 62 62 72 3a 60 4e 44 50 20 28 4e 6f 72 74 65 6c | y.Protocol)`,.:abbr:`NDP.(Nortel |
| 1016c0 | 20 44 69 73 63 6f 76 65 72 79 20 50 72 6f 74 6f 63 6f 6c 29 60 20 61 6e 64 20 3a 61 62 62 72 3a | .Discovery.Protocol)`.and.:abbr: |
| 1016e0 | 60 4c 4c 54 44 20 28 4c 69 6e 6b 20 4c 61 79 65 72 20 54 6f 70 6f 6c 6f 67 79 20 44 69 73 63 6f | `LLTD.(Link.Layer.Topology.Disco |
| 101700 | 76 65 72 79 29 60 2e 00 4c 4e 53 20 28 4c 32 54 50 20 4e 65 74 77 6f 72 6b 20 53 65 72 76 65 72 | very)`..LNS.(L2TP.Network.Server |
| 101720 | 29 00 4c 4e 53 20 61 72 65 20 6f 66 74 65 6e 20 75 73 65 64 20 74 6f 20 63 6f 6e 6e 65 63 74 20 | ).LNS.are.often.used.to.connect. |
| 101740 | 74 6f 20 61 20 4c 41 43 20 28 4c 32 54 50 20 41 63 63 65 73 73 20 43 6f 6e 63 65 6e 74 72 61 74 | to.a.LAC.(L2TP.Access.Concentrat |
| 101760 | 6f 72 29 2e 00 4c 61 62 65 6c 20 44 69 73 74 72 69 62 75 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c | or)..Label.Distribution.Protocol |
| 101780 | 00 4c 61 62 65 6c 20 74 6f 20 75 73 65 20 66 6f 72 20 74 68 65 20 6d 65 74 72 69 63 20 6e 61 6d | .Label.to.use.for.the.metric.nam |
| 1017a0 | 65 20 77 68 65 6e 20 73 65 6e 64 69 6e 67 20 6d 65 74 72 69 63 73 2e 00 4c 61 73 74 6c 79 2c 20 | e.when.sending.metrics..Lastly,. |
| 1017c0 | 77 65 20 63 61 6e 20 63 72 65 61 74 65 20 74 68 65 20 6c 65 61 66 20 63 65 72 74 69 66 69 63 61 | we.can.create.the.leaf.certifica |
| 1017e0 | 74 65 73 20 74 68 61 74 20 64 65 76 69 63 65 73 20 61 6e 64 20 75 73 65 72 73 20 77 69 6c 6c 20 | tes.that.devices.and.users.will. |
| 101800 | 75 74 69 6c 69 73 65 2e 00 4c 61 79 65 72 20 32 20 54 75 6e 6e 65 6c 6c 69 6e 67 20 50 72 6f 74 | utilise..Layer.2.Tunnelling.Prot |
| 101820 | 6f 63 6f 6c 20 56 65 72 73 69 6f 6e 20 33 20 69 73 20 61 6e 20 49 45 54 46 20 73 74 61 6e 64 61 | ocol.Version.3.is.an.IETF.standa |
| 101840 | 72 64 20 72 65 6c 61 74 65 64 20 74 6f 20 4c 32 54 50 20 74 68 61 74 20 63 61 6e 20 62 65 20 75 | rd.related.to.L2TP.that.can.be.u |
| 101860 | 73 65 64 20 61 73 20 61 6e 20 61 6c 74 65 72 6e 61 74 69 76 65 20 70 72 6f 74 6f 63 6f 6c 20 74 | sed.as.an.alternative.protocol.t |
| 101880 | 6f 20 3a 72 65 66 3a 60 6d 70 6c 73 60 20 66 6f 72 20 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e 20 | o.:ref:`mpls`.for.encapsulation. |
| 1018a0 | 6f 66 20 6d 75 6c 74 69 70 72 6f 74 6f 63 6f 6c 20 4c 61 79 65 72 20 32 20 63 6f 6d 6d 75 6e 69 | of.multiprotocol.Layer.2.communi |
| 1018c0 | 63 61 74 69 6f 6e 73 20 74 72 61 66 66 69 63 20 6f 76 65 72 20 49 50 20 6e 65 74 77 6f 72 6b 73 | cations.traffic.over.IP.networks |
| 1018e0 | 2e 20 4c 69 6b 65 20 4c 32 54 50 2c 20 4c 32 54 50 76 33 20 70 72 6f 76 69 64 65 73 20 61 20 70 | ..Like.L2TP,.L2TPv3.provides.a.p |
| 101900 | 73 65 75 64 6f 2d 77 69 72 65 20 73 65 72 76 69 63 65 20 62 75 74 20 69 73 20 73 63 61 6c 65 64 | seudo-wire.service.but.is.scaled |
| 101920 | 20 74 6f 20 66 69 74 20 63 61 72 72 69 65 72 20 72 65 71 75 69 72 65 6d 65 6e 74 73 2e 00 4c 65 | .to.fit.carrier.requirements..Le |
| 101940 | 61 73 65 20 74 69 6d 65 20 77 69 6c 6c 20 62 65 20 6c 65 66 74 20 61 74 20 74 68 65 20 64 65 66 | ase.time.will.be.left.at.the.def |
| 101960 | 61 75 6c 74 20 76 61 6c 75 65 20 77 68 69 63 68 20 69 73 20 32 34 20 68 6f 75 72 73 00 4c 65 61 | ault.value.which.is.24.hours.Lea |
| 101980 | 73 65 20 74 69 6d 65 6f 75 74 20 69 6e 20 73 65 63 6f 6e 64 73 20 28 64 65 66 61 75 6c 74 3a 20 | se.timeout.in.seconds.(default:. |
| 1019a0 | 38 36 34 30 30 29 00 4c 65 67 61 63 79 20 46 69 72 65 77 61 6c 6c 00 4c 65 74 20 53 4e 4d 50 20 | 86400).Legacy.Firewall.Let.SNMP. |
| 1019c0 | 64 61 65 6d 6f 6e 20 6c 69 73 74 65 6e 20 6f 6e 6c 79 20 6f 6e 20 49 50 20 61 64 64 72 65 73 73 | daemon.listen.only.on.IP.address |
| 1019e0 | 20 31 39 32 2e 30 2e 32 2e 31 00 4c 65 74 27 73 20 61 73 73 75 6d 65 20 50 43 34 20 6f 6e 20 4c | .192.0.2.1.Let's.assume.PC4.on.L |
| 101a00 | 65 61 66 32 20 77 61 6e 74 73 20 74 6f 20 70 69 6e 67 20 50 43 35 20 6f 6e 20 4c 65 61 66 33 2e | eaf2.wants.to.ping.PC5.on.Leaf3. |
| 101a20 | 20 49 6e 73 74 65 61 64 20 6f 66 20 73 65 74 74 69 6e 67 20 4c 65 61 66 33 20 61 73 20 6f 75 72 | .Instead.of.setting.Leaf3.as.our |
| 101a40 | 20 72 65 6d 6f 74 65 20 65 6e 64 20 6d 61 6e 75 61 6c 6c 79 2c 20 4c 65 61 66 32 20 65 6e 63 61 | .remote.end.manually,.Leaf2.enca |
| 101a60 | 70 73 75 6c 61 74 65 73 20 74 68 65 20 70 61 63 6b 65 74 20 69 6e 74 6f 20 61 20 55 44 50 2d 70 | psulates.the.packet.into.a.UDP-p |
| 101a80 | 61 63 6b 65 74 20 61 6e 64 20 73 65 6e 64 73 20 69 74 20 74 6f 20 69 74 73 20 64 65 73 69 67 6e | acket.and.sends.it.to.its.design |
| 101aa0 | 61 74 65 64 20 6d 75 6c 74 69 63 61 73 74 2d 61 64 64 72 65 73 73 20 76 69 61 20 53 70 69 6e 65 | ated.multicast-address.via.Spine |
| 101ac0 | 31 2e 20 57 68 65 6e 20 53 70 69 6e 65 31 20 72 65 63 65 69 76 65 73 20 74 68 69 73 20 70 61 63 | 1..When.Spine1.receives.this.pac |
| 101ae0 | 6b 65 74 20 69 74 20 66 6f 72 77 61 72 64 73 20 69 74 20 74 6f 20 61 6c 6c 20 6f 74 68 65 72 20 | ket.it.forwards.it.to.all.other. |
| 101b00 | 6c 65 61 76 65 73 20 77 68 6f 20 68 61 73 20 6a 6f 69 6e 65 64 20 74 68 65 20 73 61 6d 65 20 6d | leaves.who.has.joined.the.same.m |
| 101b20 | 75 6c 74 69 63 61 73 74 2d 67 72 6f 75 70 2c 20 69 6e 20 74 68 69 73 20 63 61 73 65 20 4c 65 61 | ulticast-group,.in.this.case.Lea |
| 101b40 | 66 33 2e 20 57 68 65 6e 20 4c 65 61 66 33 20 72 65 63 65 69 76 65 73 20 74 68 65 20 70 61 63 6b | f3..When.Leaf3.receives.the.pack |
| 101b60 | 65 74 20 69 74 20 66 6f 72 77 61 72 64 73 20 69 74 2c 20 77 68 69 6c 65 20 61 74 20 74 68 65 20 | et.it.forwards.it,.while.at.the. |
| 101b80 | 73 61 6d 65 20 74 69 6d 65 20 6c 65 61 72 6e 69 6e 67 20 74 68 61 74 20 50 43 34 20 69 73 20 72 | same.time.learning.that.PC4.is.r |
| 101ba0 | 65 61 63 68 61 62 6c 65 20 62 65 68 69 6e 64 20 4c 65 61 66 32 2c 20 62 65 63 61 75 73 65 20 74 | eachable.behind.Leaf2,.because.t |
| 101bc0 | 68 65 20 65 6e 63 61 70 73 75 6c 61 74 65 64 20 70 61 63 6b 65 74 20 68 61 64 20 4c 65 61 66 32 | he.encapsulated.packet.had.Leaf2 |
| 101be0 | 27 73 20 49 50 20 61 64 64 72 65 73 73 20 73 65 74 20 61 73 20 73 6f 75 72 63 65 20 49 50 2e 00 | 's.IP.address.set.as.source.IP.. |
| 101c00 | 4c 65 74 27 73 20 61 73 73 75 6d 65 20 50 43 34 20 6f 6e 20 4c 65 61 66 32 20 77 61 6e 74 73 20 | Let's.assume.PC4.on.Leaf2.wants. |
| 101c20 | 74 6f 20 70 69 6e 67 20 50 43 35 20 6f 6e 20 4c 65 61 66 33 2e 20 49 6e 73 74 65 61 64 20 6f 66 | to.ping.PC5.on.Leaf3..Instead.of |
| 101c40 | 20 73 65 74 74 69 6e 67 20 4c 65 61 66 33 20 61 73 20 6f 75 72 20 72 65 6d 6f 74 65 20 65 6e 64 | .setting.Leaf3.as.our.remote.end |
| 101c60 | 20 6d 61 6e 75 61 6c 6c 79 2c 20 4c 65 61 66 32 20 65 6e 63 61 70 73 75 6c 61 74 65 73 20 74 68 | .manually,.Leaf2.encapsulates.th |
| 101c80 | 65 20 70 61 63 6b 65 74 20 69 6e 74 6f 20 61 20 55 44 50 2d 70 61 63 6b 65 74 20 61 6e 64 20 73 | e.packet.into.a.UDP-packet.and.s |
| 101ca0 | 65 6e 64 73 20 69 74 20 74 6f 20 69 74 73 27 20 64 65 73 69 67 6e 61 74 65 64 20 6d 75 6c 74 69 | ends.it.to.its'.designated.multi |
| 101cc0 | 63 61 73 74 2d 61 64 64 72 65 73 73 20 76 69 61 20 53 70 69 6e 65 31 2e 20 57 68 65 6e 20 53 70 | cast-address.via.Spine1..When.Sp |
| 101ce0 | 69 6e 65 31 20 72 65 63 65 69 76 65 73 20 74 68 69 73 20 70 61 63 6b 65 74 20 69 74 20 66 6f 72 | ine1.receives.this.packet.it.for |
| 101d00 | 77 61 72 64 73 20 69 74 20 74 6f 20 61 6c 6c 20 6f 74 68 65 72 20 6c 65 61 76 65 73 20 77 68 6f | wards.it.to.all.other.leaves.who |
| 101d20 | 20 68 61 73 20 6a 6f 69 6e 65 64 20 74 68 65 20 73 61 6d 65 20 6d 75 6c 74 69 63 61 73 74 2d 67 | .has.joined.the.same.multicast-g |
| 101d40 | 72 6f 75 70 2c 20 69 6e 20 74 68 69 73 20 63 61 73 65 20 4c 65 61 66 33 2e 20 57 68 65 6e 20 4c | roup,.in.this.case.Leaf3..When.L |
| 101d60 | 65 61 66 33 20 72 65 63 65 69 76 65 73 20 74 68 65 20 70 61 63 6b 65 74 20 69 74 20 66 6f 72 77 | eaf3.receives.the.packet.it.forw |
| 101d80 | 61 72 64 73 20 69 74 2c 20 77 68 69 6c 65 20 61 74 20 74 68 65 20 73 61 6d 65 20 74 69 6d 65 20 | ards.it,.while.at.the.same.time. |
| 101da0 | 6c 65 61 72 6e 69 6e 67 20 74 68 61 74 20 50 43 34 20 69 73 20 72 65 61 63 68 61 62 6c 65 20 62 | learning.that.PC4.is.reachable.b |
| 101dc0 | 65 68 69 6e 64 20 4c 65 61 66 32 2c 20 62 65 63 61 75 73 65 20 74 68 65 20 65 6e 63 61 70 73 75 | ehind.Leaf2,.because.the.encapsu |
| 101de0 | 6c 61 74 65 64 20 70 61 63 6b 65 74 20 68 61 64 20 4c 65 61 66 32 27 73 20 49 50 20 61 64 64 72 | lated.packet.had.Leaf2's.IP.addr |
| 101e00 | 65 73 73 20 73 65 74 20 61 73 20 73 6f 75 72 63 65 20 49 50 2e 00 4c 65 74 27 73 20 61 73 73 75 | ess.set.as.source.IP..Let's.assu |
| 101e20 | 6d 65 20 77 65 20 68 61 76 65 20 74 77 6f 20 44 48 43 50 20 57 41 4e 20 69 6e 74 65 72 66 61 63 | me.we.have.two.DHCP.WAN.interfac |
| 101e40 | 65 73 20 61 6e 64 20 6f 6e 65 20 4c 41 4e 20 28 65 74 68 32 29 3a 00 4c 65 74 27 73 20 62 75 69 | es.and.one.LAN.(eth2):.Let's.bui |
| 101e60 | 6c 64 20 61 20 73 69 6d 70 6c 65 20 56 50 4e 20 62 65 74 77 65 65 6e 20 32 20 49 6e 74 65 6c c2 | ld.a.simple.VPN.between.2.Intel. |
| 101e80 | ae 20 51 41 54 20 72 65 61 64 79 20 64 65 76 69 63 65 73 2e 00 4c 65 74 27 73 20 65 78 70 61 6e | ..QAT.ready.devices..Let's.expan |
| 101ea0 | 64 20 74 68 65 20 65 78 61 6d 70 6c 65 20 66 72 6f 6d 20 61 62 6f 76 65 20 61 6e 64 20 61 64 64 | d.the.example.from.above.and.add |
| 101ec0 | 20 77 65 69 67 68 74 20 74 6f 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 73 2e 20 54 68 65 20 62 | .weight.to.the.interfaces..The.b |
| 101ee0 | 61 6e 64 77 69 64 74 68 20 66 72 6f 6d 20 65 74 68 30 20 69 73 20 6c 61 72 67 65 72 20 74 68 61 | andwidth.from.eth0.is.larger.tha |
| 101f00 | 6e 20 65 74 68 31 2e 20 50 65 72 20 64 65 66 61 75 6c 74 2c 20 6f 75 74 62 6f 75 6e 64 20 74 72 | n.eth1..Per.default,.outbound.tr |
| 101f20 | 61 66 66 69 63 20 69 73 20 64 69 73 74 72 69 62 75 74 65 64 20 72 61 6e 64 6f 6d 6c 79 20 61 63 | affic.is.distributed.randomly.ac |
| 101f40 | 72 6f 73 73 20 61 76 61 69 6c 61 62 6c 65 20 69 6e 74 65 72 66 61 63 65 73 2e 20 57 65 69 67 68 | ross.available.interfaces..Weigh |
| 101f60 | 74 73 20 63 61 6e 20 62 65 20 61 73 73 69 67 6e 65 64 20 74 6f 20 69 6e 74 65 72 66 61 63 65 73 | ts.can.be.assigned.to.interfaces |
| 101f80 | 20 74 6f 20 69 6e 66 6c 75 65 6e 63 65 20 74 68 65 20 62 61 6c 61 6e 63 69 6e 67 2e 00 4c 65 74 | .to.influence.the.balancing..Let |
| 101fa0 | 73 20 61 73 73 75 6d 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 74 6f 70 6f 6c 6f 67 79 3a | s.assume.the.following.topology: |
| 101fc0 | 00 4c 65 76 65 6c 20 34 20 62 61 6c 61 6e 63 69 6e 67 00 4c 69 66 65 74 69 6d 65 20 61 73 73 6f | .Level.4.balancing.Lifetime.asso |
| 101fe0 | 63 69 61 74 65 64 20 77 69 74 68 20 74 68 65 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 72 20 69 | ciated.with.the.default.router.i |
| 102000 | 6e 20 75 6e 69 74 73 20 6f 66 20 73 65 63 6f 6e 64 73 00 4c 69 66 65 74 69 6d 65 20 69 6e 20 64 | n.units.of.seconds.Lifetime.in.d |
| 102020 | 61 79 73 3b 20 64 65 66 61 75 6c 74 20 69 73 20 33 36 35 00 4c 69 66 65 74 69 6d 65 20 69 73 20 | ays;.default.is.365.Lifetime.is. |
| 102040 | 64 65 63 72 65 6d 65 6e 74 65 64 20 62 79 20 74 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 73 65 63 | decremented.by.the.number.of.sec |
| 102060 | 6f 6e 64 73 20 73 69 6e 63 65 20 74 68 65 20 6c 61 73 74 20 52 41 20 2d 20 75 73 65 20 69 6e 20 | onds.since.the.last.RA.-.use.in. |
| 102080 | 63 6f 6e 6a 75 6e 63 74 69 6f 6e 20 77 69 74 68 20 61 20 44 48 43 50 76 36 2d 50 44 20 70 72 65 | conjunction.with.a.DHCPv6-PD.pre |
| 1020a0 | 66 69 78 00 4c 69 6b 65 20 6f 6e 20 4d 69 63 72 6f 73 6f 66 74 20 57 69 6e 64 6f 77 73 2c 20 41 | fix.Like.on.Microsoft.Windows,.A |
| 1020c0 | 70 70 6c 65 20 69 4f 53 2f 69 50 61 64 4f 53 20 6f 75 74 20 6f 66 20 74 68 65 20 62 6f 78 20 64 | pple.iOS/iPadOS.out.of.the.box.d |
| 1020e0 | 6f 65 73 20 6e 6f 74 20 65 78 70 6f 73 65 20 61 6c 6c 20 61 76 61 69 6c 61 62 6c 65 20 56 50 4e | oes.not.expose.all.available.VPN |
| 102100 | 20 6f 70 74 69 6f 6e 73 20 76 69 61 20 74 68 65 20 64 65 76 69 63 65 20 47 55 49 2e 00 4c 69 6d | .options.via.the.device.GUI..Lim |
| 102120 | 69 74 20 61 6c 6c 6f 77 65 64 20 63 69 70 68 65 72 20 61 6c 67 6f 72 69 74 68 6d 73 20 75 73 65 | it.allowed.cipher.algorithms.use |
| 102140 | 64 20 64 75 72 69 6e 67 20 53 53 4c 2f 54 4c 53 20 68 61 6e 64 73 68 61 6b 65 00 4c 69 6d 69 74 | d.during.SSL/TLS.handshake.Limit |
| 102160 | 20 6c 6f 67 69 6e 73 20 74 6f 20 60 3c 6c 69 6d 69 74 3e 60 20 70 65 72 20 65 76 65 72 79 20 60 | .logins.to.`<limit>`.per.every.` |
| 102180 | 60 72 61 74 65 2d 74 69 6d 65 60 60 20 73 65 63 6f 6e 64 73 2e 20 52 61 74 65 20 6c 69 6d 69 74 | `rate-time``.seconds..Rate.limit |
| 1021a0 | 20 6d 75 73 74 20 62 65 20 62 65 74 77 65 65 6e 20 31 20 61 6e 64 20 31 30 20 61 74 74 65 6d 70 | .must.be.between.1.and.10.attemp |
| 1021c0 | 74 73 2e 00 4c 69 6d 69 74 20 6c 6f 67 69 6e 73 20 74 6f 20 60 60 72 61 74 65 2d 6c 69 6d 69 74 | ts..Limit.logins.to.``rate-limit |
| 1021e0 | 60 60 20 61 74 74 65 6d 70 73 20 70 65 72 20 65 76 65 72 79 20 60 3c 73 65 63 6f 6e 64 73 3e 60 | ``.attemps.per.every.`<seconds>` |
| 102200 | 2e 20 52 61 74 65 20 74 69 6d 65 20 6d 75 73 74 20 62 65 20 62 65 74 77 65 65 6e 20 31 35 20 61 | ..Rate.time.must.be.between.15.a |
| 102220 | 6e 64 20 36 30 30 20 73 65 63 6f 6e 64 73 2e 00 4c 69 6d 69 74 20 6d 61 78 69 6d 75 6d 20 6e 75 | nd.600.seconds..Limit.maximum.nu |
| 102240 | 6d 62 65 72 20 6f 66 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 00 4c 69 6d 69 74 65 72 00 4c 69 6d 69 | mber.of.connections.Limiter.Limi |
| 102260 | 74 65 72 20 69 73 20 6f 6e 65 20 6f 66 20 74 68 6f 73 65 20 70 6f 6c 69 63 69 65 73 20 74 68 61 | ter.is.one.of.those.policies.tha |
| 102280 | 74 20 75 73 65 73 20 63 6c 61 73 73 65 73 5f 20 28 49 6e 67 72 65 73 73 20 71 64 69 73 63 20 69 | t.uses.classes_.(Ingress.qdisc.i |
| 1022a0 | 73 20 61 63 74 75 61 6c 6c 79 20 61 20 63 6c 61 73 73 6c 65 73 73 20 70 6f 6c 69 63 79 20 62 75 | s.actually.a.classless.policy.bu |
| 1022c0 | 74 20 66 69 6c 74 65 72 73 20 64 6f 20 77 6f 72 6b 20 69 6e 20 69 74 29 2e 00 4c 69 6d 69 74 73 | t.filters.do.work.in.it)..Limits |
| 1022e0 | 00 4c 69 6e 65 20 70 72 69 6e 74 65 72 20 73 75 62 73 79 73 74 65 6d 00 4c 69 6e 6b 20 4d 54 55 | .Line.printer.subsystem.Link.MTU |
| 102300 | 20 76 61 6c 75 65 20 70 6c 61 63 65 64 20 69 6e 20 52 41 73 2c 20 65 78 63 6c 75 64 65 64 20 69 | .value.placed.in.RAs,.excluded.i |
| 102320 | 6e 20 52 41 73 20 69 66 20 75 6e 73 65 74 00 4c 69 6e 6b 20 4d 54 55 20 76 61 6c 75 65 20 70 6c | n.RAs.if.unset.Link.MTU.value.pl |
| 102340 | 61 63 65 64 20 69 6e 20 52 41 73 2c 20 65 78 6c 75 64 65 64 20 69 6e 20 52 41 73 20 69 66 20 75 | aced.in.RAs,.exluded.in.RAs.if.u |
| 102360 | 6e 73 65 74 00 4c 69 6e 6b 20 61 67 67 72 65 67 61 74 69 6f 6e 00 4c 69 6e 75 78 20 6e 65 74 66 | nset.Link.aggregation.Linux.netf |
| 102380 | 69 6c 74 65 72 20 77 69 6c 6c 20 6e 6f 74 20 4e 41 54 20 74 72 61 66 66 69 63 20 6d 61 72 6b 65 | ilter.will.not.NAT.traffic.marke |
| 1023a0 | 64 20 61 73 20 49 4e 56 41 4c 49 44 2e 20 54 68 69 73 20 6f 66 74 65 6e 20 63 6f 6e 66 75 73 65 | d.as.INVALID..This.often.confuse |
| 1023c0 | 73 20 70 65 6f 70 6c 65 20 69 6e 74 6f 20 74 68 69 6e 6b 69 6e 67 20 74 68 61 74 20 4c 69 6e 75 | s.people.into.thinking.that.Linu |
| 1023e0 | 78 20 28 6f 72 20 73 70 65 63 69 66 69 63 61 6c 6c 79 20 56 79 4f 53 29 20 68 61 73 20 61 20 62 | x.(or.specifically.VyOS).has.a.b |
| 102400 | 72 6f 6b 65 6e 20 4e 41 54 20 69 6d 70 6c 65 6d 65 6e 74 61 74 69 6f 6e 20 62 65 63 61 75 73 65 | roken.NAT.implementation.because |
| 102420 | 20 6e 6f 6e 2d 4e 41 54 65 64 20 74 72 61 66 66 69 63 20 69 73 20 73 65 65 6e 20 6c 65 61 76 69 | .non-NATed.traffic.is.seen.leavi |
| 102440 | 6e 67 20 61 6e 20 65 78 74 65 72 6e 61 6c 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 69 73 20 69 | ng.an.external.interface..This.i |
| 102460 | 73 20 61 63 74 75 61 6c 6c 79 20 77 6f 72 6b 69 6e 67 20 61 73 20 69 6e 74 65 6e 64 65 64 2c 20 | s.actually.working.as.intended,. |
| 102480 | 61 6e 64 20 61 20 70 61 63 6b 65 74 20 63 61 70 74 75 72 65 20 6f 66 20 74 68 65 20 22 6c 65 61 | and.a.packet.capture.of.the."lea |
| 1024a0 | 6b 79 22 20 74 72 61 66 66 69 63 20 73 68 6f 75 6c 64 20 72 65 76 65 61 6c 20 74 68 61 74 20 74 | ky".traffic.should.reveal.that.t |
| 1024c0 | 68 65 20 74 72 61 66 66 69 63 20 69 73 20 65 69 74 68 65 72 20 61 6e 20 61 64 64 69 74 69 6f 6e | he.traffic.is.either.an.addition |
| 1024e0 | 61 6c 20 54 43 50 20 22 52 53 54 22 2c 20 22 46 49 4e 2c 41 43 4b 22 2c 20 6f 72 20 22 52 53 54 | al.TCP."RST",."FIN,ACK",.or."RST |
| 102500 | 2c 41 43 4b 22 20 73 65 6e 74 20 62 79 20 63 6c 69 65 6e 74 20 73 79 73 74 65 6d 73 20 61 66 74 | ,ACK".sent.by.client.systems.aft |
| 102520 | 65 72 20 4c 69 6e 75 78 20 6e 65 74 66 69 6c 74 65 72 20 63 6f 6e 73 69 64 65 72 73 20 74 68 65 | er.Linux.netfilter.considers.the |
| 102540 | 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 63 6c 6f 73 65 64 2e 20 54 68 65 20 6d 6f 73 74 20 63 6f 6d | .connection.closed..The.most.com |
| 102560 | 6d 6f 6e 20 69 73 20 74 68 65 20 61 64 64 69 74 69 6f 6e 61 6c 20 54 43 50 20 52 53 54 20 73 6f | mon.is.the.additional.TCP.RST.so |
| 102580 | 6d 65 20 68 6f 73 74 20 69 6d 70 6c 65 6d 65 6e 74 61 74 69 6f 6e 73 20 73 65 6e 64 20 61 66 74 | me.host.implementations.send.aft |
| 1025a0 | 65 72 20 74 65 72 6d 69 6e 61 74 69 6e 67 20 61 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 28 77 68 69 | er.terminating.a.connection.(whi |
| 1025c0 | 63 68 20 69 73 20 69 6d 70 6c 65 6d 65 6e 74 61 74 69 6f 6e 2d 73 70 65 63 69 66 69 63 29 2e 00 | ch.is.implementation-specific).. |
| 1025e0 | 4c 69 73 74 20 61 6c 6c 20 4d 41 43 73 65 63 20 69 6e 74 65 72 66 61 63 65 73 2e 00 4c 69 73 74 | List.all.MACsec.interfaces..List |
| 102600 | 20 6f 66 20 66 61 63 69 6c 69 74 69 65 73 20 75 73 65 64 20 62 79 20 73 79 73 6c 6f 67 2e 20 4d | .of.facilities.used.by.syslog..M |
| 102620 | 6f 73 74 20 66 61 63 69 6c 69 74 69 65 73 20 6e 61 6d 65 73 20 61 72 65 20 73 65 6c 66 20 65 78 | ost.facilities.names.are.self.ex |
| 102640 | 70 6c 61 6e 61 74 6f 72 79 2e 20 46 61 63 69 6c 69 74 69 65 73 20 6c 6f 63 61 6c 30 20 2d 20 6c | planatory..Facilities.local0.-.l |
| 102660 | 6f 63 61 6c 37 20 63 6f 6d 6d 6f 6e 20 75 73 61 67 65 20 69 73 20 66 2e 65 2e 20 61 73 20 6e 65 | ocal7.common.usage.is.f.e..as.ne |
| 102680 | 74 77 6f 72 6b 20 6c 6f 67 73 20 66 61 63 69 6c 69 74 69 65 73 20 66 6f 72 20 6e 6f 64 65 73 20 | twork.logs.facilities.for.nodes. |
| 1026a0 | 61 6e 64 20 6e 65 74 77 6f 72 6b 20 65 71 75 69 70 6d 65 6e 74 2e 20 47 65 6e 65 72 61 6c 6c 79 | and.network.equipment..Generally |
| 1026c0 | 20 69 74 20 64 65 70 65 6e 64 73 20 6f 6e 20 74 68 65 20 73 69 74 75 61 74 69 6f 6e 20 68 6f 77 | .it.depends.on.the.situation.how |
| 1026e0 | 20 74 6f 20 63 6c 61 73 73 69 66 79 20 6c 6f 67 73 20 61 6e 64 20 70 75 74 20 74 68 65 6d 20 74 | .to.classify.logs.and.put.them.t |
| 102700 | 6f 20 66 61 63 69 6c 69 74 69 65 73 2e 20 53 65 65 20 66 61 63 69 6c 69 74 69 65 73 20 6d 6f 72 | o.facilities..See.facilities.mor |
| 102720 | 65 20 61 73 20 61 20 74 6f 6f 6c 20 72 61 74 68 65 72 20 74 68 61 6e 20 61 20 64 69 72 65 63 74 | e.as.a.tool.rather.than.a.direct |
| 102740 | 69 76 65 20 74 6f 20 66 6f 6c 6c 6f 77 2e 00 4c 69 73 74 20 6f 66 20 6e 65 74 77 6f 72 6b 73 20 | ive.to.follow..List.of.networks. |
| 102760 | 6f 72 20 63 6c 69 65 6e 74 20 61 64 64 72 65 73 73 65 73 20 70 65 72 6d 69 74 74 65 64 20 74 6f | or.client.addresses.permitted.to |
| 102780 | 20 63 6f 6e 74 61 63 74 20 74 68 69 73 20 4e 54 50 20 73 65 72 76 65 72 2e 00 4c 69 73 74 20 6f | .contact.this.NTP.server..List.o |
| 1027a0 | 66 20 73 75 70 70 6f 72 74 65 64 20 4d 41 43 73 3a 20 60 60 68 6d 61 63 2d 6d 64 35 60 60 2c 20 | f.supported.MACs:.``hmac-md5``,. |
| 1027c0 | 60 60 68 6d 61 63 2d 6d 64 35 2d 39 36 60 60 2c 20 60 60 68 6d 61 63 2d 72 69 70 65 6d 64 31 36 | ``hmac-md5-96``,.``hmac-ripemd16 |
| 1027e0 | 30 60 60 2c 20 60 60 68 6d 61 63 2d 73 68 61 31 60 60 2c 20 60 60 68 6d 61 63 2d 73 68 61 31 2d | 0``,.``hmac-sha1``,.``hmac-sha1- |
| 102800 | 39 36 60 60 2c 20 60 60 68 6d 61 63 2d 73 68 61 32 2d 32 35 36 60 60 2c 20 60 60 68 6d 61 63 2d | 96``,.``hmac-sha2-256``,.``hmac- |
| 102820 | 73 68 61 32 2d 35 31 32 60 60 2c 20 60 60 75 6d 61 63 2d 36 34 40 6f 70 65 6e 73 73 68 2e 63 6f | sha2-512``,.``umac-64@openssh.co |
| 102840 | 6d 60 60 2c 20 60 60 75 6d 61 63 2d 31 32 38 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 | m``,.``umac-128@openssh.com``,.` |
| 102860 | 60 68 6d 61 63 2d 6d 64 35 2d 65 74 6d 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 68 | `hmac-md5-etm@openssh.com``,.``h |
| 102880 | 6d 61 63 2d 6d 64 35 2d 39 36 2d 65 74 6d 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 | mac-md5-96-etm@openssh.com``,.`` |
| 1028a0 | 68 6d 61 63 2d 72 69 70 65 6d 64 31 36 30 2d 65 74 6d 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 | hmac-ripemd160-etm@openssh.com`` |
| 1028c0 | 2c 20 60 60 68 6d 61 63 2d 73 68 61 31 2d 65 74 6d 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c | ,.``hmac-sha1-etm@openssh.com``, |
| 1028e0 | 20 60 60 68 6d 61 63 2d 73 68 61 31 2d 39 36 2d 65 74 6d 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 | .``hmac-sha1-96-etm@openssh.com` |
| 102900 | 60 2c 20 60 60 68 6d 61 63 2d 73 68 61 32 2d 32 35 36 2d 65 74 6d 40 6f 70 65 6e 73 73 68 2e 63 | `,.``hmac-sha2-256-etm@openssh.c |
| 102920 | 6f 6d 60 60 2c 20 60 60 68 6d 61 63 2d 73 68 61 32 2d 35 31 32 2d 65 74 6d 40 6f 70 65 6e 73 73 | om``,.``hmac-sha2-512-etm@openss |
| 102940 | 68 2e 63 6f 6d 60 60 2c 20 60 60 75 6d 61 63 2d 36 34 2d 65 74 6d 40 6f 70 65 6e 73 73 68 2e 63 | h.com``,.``umac-64-etm@openssh.c |
| 102960 | 6f 6d 60 60 2c 20 60 60 75 6d 61 63 2d 31 32 38 2d 65 74 6d 40 6f 70 65 6e 73 73 68 2e 63 6f 6d | om``,.``umac-128-etm@openssh.com |
| 102980 | 60 60 00 4c 69 73 74 20 6f 66 20 73 75 70 70 6f 72 74 65 64 20 61 6c 67 6f 72 69 74 68 6d 73 3a | ``.List.of.supported.algorithms: |
| 1029a0 | 20 60 60 64 69 66 66 69 65 2d 68 65 6c 6c 6d 61 6e 2d 67 72 6f 75 70 31 2d 73 68 61 31 60 60 2c | .``diffie-hellman-group1-sha1``, |
| 1029c0 | 20 60 60 64 69 66 66 69 65 2d 68 65 6c 6c 6d 61 6e 2d 67 72 6f 75 70 31 34 2d 73 68 61 31 60 60 | .``diffie-hellman-group14-sha1`` |
| 1029e0 | 2c 20 60 60 64 69 66 66 69 65 2d 68 65 6c 6c 6d 61 6e 2d 67 72 6f 75 70 31 34 2d 73 68 61 32 35 | ,.``diffie-hellman-group14-sha25 |
| 102a00 | 36 60 60 2c 20 60 60 64 69 66 66 69 65 2d 68 65 6c 6c 6d 61 6e 2d 67 72 6f 75 70 31 36 2d 73 68 | 6``,.``diffie-hellman-group16-sh |
| 102a20 | 61 35 31 32 60 60 2c 20 60 60 64 69 66 66 69 65 2d 68 65 6c 6c 6d 61 6e 2d 67 72 6f 75 70 31 38 | a512``,.``diffie-hellman-group18 |
| 102a40 | 2d 73 68 61 35 31 32 60 60 2c 20 60 60 64 69 66 66 69 65 2d 68 65 6c 6c 6d 61 6e 2d 67 72 6f 75 | -sha512``,.``diffie-hellman-grou |
| 102a60 | 70 2d 65 78 63 68 61 6e 67 65 2d 73 68 61 31 60 60 2c 20 60 60 64 69 66 66 69 65 2d 68 65 6c 6c | p-exchange-sha1``,.``diffie-hell |
| 102a80 | 6d 61 6e 2d 67 72 6f 75 70 2d 65 78 63 68 61 6e 67 65 2d 73 68 61 32 35 36 60 60 2c 20 60 60 65 | man-group-exchange-sha256``,.``e |
| 102aa0 | 63 64 68 2d 73 68 61 32 2d 6e 69 73 74 70 32 35 36 60 60 2c 20 60 60 65 63 64 68 2d 73 68 61 32 | cdh-sha2-nistp256``,.``ecdh-sha2 |
| 102ac0 | 2d 6e 69 73 74 70 33 38 34 60 60 2c 20 60 60 65 63 64 68 2d 73 68 61 32 2d 6e 69 73 74 70 35 32 | -nistp384``,.``ecdh-sha2-nistp52 |
| 102ae0 | 31 60 60 2c 20 60 60 63 75 72 76 65 32 35 35 31 39 2d 73 68 61 32 35 36 60 60 20 61 6e 64 20 60 | 1``,.``curve25519-sha256``.and.` |
| 102b00 | 60 63 75 72 76 65 32 35 35 31 39 2d 73 68 61 32 35 36 40 6c 69 62 73 73 68 2e 6f 72 67 60 60 2e | `curve25519-sha256@libssh.org``. |
| 102b20 | 00 4c 69 73 74 20 6f 66 20 73 75 70 70 6f 72 74 65 64 20 61 6c 67 6f 72 69 74 68 6d 73 3a 20 60 | .List.of.supported.algorithms:.` |
| 102b40 | 60 73 73 68 2d 65 64 32 35 35 31 39 60 60 2c 20 60 60 73 73 68 2d 65 64 32 35 35 31 39 2d 63 65 | `ssh-ed25519``,.``ssh-ed25519-ce |
| 102b60 | 72 74 2d 76 30 31 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 73 6b 2d 73 73 68 2d 65 | rt-v01@openssh.com``,.``sk-ssh-e |
| 102b80 | 64 32 35 35 31 39 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 73 6b 2d 73 73 68 2d 65 | d25519@openssh.com``,.``sk-ssh-e |
| 102ba0 | 64 32 35 35 31 39 2d 63 65 72 74 2d 76 30 31 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 | d25519-cert-v01@openssh.com``,.` |
| 102bc0 | 60 65 63 64 73 61 2d 73 68 61 32 2d 6e 69 73 74 70 32 35 36 60 60 2c 20 60 60 65 63 64 73 61 2d | `ecdsa-sha2-nistp256``,.``ecdsa- |
| 102be0 | 73 68 61 32 2d 6e 69 73 74 70 32 35 36 2d 63 65 72 74 2d 76 30 31 40 6f 70 65 6e 73 73 68 2e 63 | sha2-nistp256-cert-v01@openssh.c |
| 102c00 | 6f 6d 60 60 2c 20 60 60 65 63 64 73 61 2d 73 68 61 32 2d 6e 69 73 74 70 33 38 34 60 60 2c 20 60 | om``,.``ecdsa-sha2-nistp384``,.` |
| 102c20 | 60 65 63 64 73 61 2d 73 68 61 32 2d 6e 69 73 74 70 33 38 34 2d 63 65 72 74 2d 76 30 31 40 6f 70 | `ecdsa-sha2-nistp384-cert-v01@op |
| 102c40 | 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 65 63 64 73 61 2d 73 68 61 32 2d 6e 69 73 74 70 35 | enssh.com``,.``ecdsa-sha2-nistp5 |
| 102c60 | 32 31 60 60 2c 20 60 60 65 63 64 73 61 2d 73 68 61 32 2d 6e 69 73 74 70 35 32 31 2d 63 65 72 74 | 21``,.``ecdsa-sha2-nistp521-cert |
| 102c80 | 2d 76 30 31 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 73 6b 2d 65 63 64 73 61 2d 73 | -v01@openssh.com``,.``sk-ecdsa-s |
| 102ca0 | 68 61 32 2d 6e 69 73 74 70 32 35 36 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 73 6b | ha2-nistp256@openssh.com``,.``sk |
| 102cc0 | 2d 65 63 64 73 61 2d 73 68 61 32 2d 6e 69 73 74 70 32 35 36 2d 63 65 72 74 2d 76 30 31 40 6f 70 | -ecdsa-sha2-nistp256-cert-v01@op |
| 102ce0 | 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 77 65 62 61 75 74 68 6e 2d 73 6b 2d 65 63 64 73 61 | enssh.com``,.``webauthn-sk-ecdsa |
| 102d00 | 2d 73 68 61 32 2d 6e 69 73 74 70 32 35 36 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 | -sha2-nistp256@openssh.com``,.`` |
| 102d20 | 73 73 68 2d 64 73 73 60 60 2c 20 60 60 73 73 68 2d 64 73 73 2d 63 65 72 74 2d 76 30 31 40 6f 70 | ssh-dss``,.``ssh-dss-cert-v01@op |
| 102d40 | 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 73 73 68 2d 72 73 61 60 60 2c 20 60 60 73 73 68 2d | enssh.com``,.``ssh-rsa``,.``ssh- |
| 102d60 | 72 73 61 2d 63 65 72 74 2d 76 30 31 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 72 73 | rsa-cert-v01@openssh.com``,.``rs |
| 102d80 | 61 2d 73 68 61 32 2d 32 35 36 60 60 2c 20 60 60 72 73 61 2d 73 68 61 32 2d 32 35 36 2d 63 65 72 | a-sha2-256``,.``rsa-sha2-256-cer |
| 102da0 | 74 2d 76 30 31 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 72 73 61 2d 73 68 61 32 2d | t-v01@openssh.com``,.``rsa-sha2- |
| 102dc0 | 35 31 32 60 60 2c 20 60 60 72 73 61 2d 73 68 61 32 2d 35 31 32 2d 63 65 72 74 2d 76 30 31 40 6f | 512``,.``rsa-sha2-512-cert-v01@o |
| 102de0 | 70 65 6e 73 73 68 2e 63 6f 6d 60 60 00 4c 69 73 74 20 6f 66 20 73 75 70 70 6f 72 74 65 64 20 63 | penssh.com``.List.of.supported.c |
| 102e00 | 69 70 68 65 72 73 3a 20 60 60 33 64 65 73 2d 63 62 63 60 60 2c 20 60 60 61 65 73 31 32 38 2d 63 | iphers:.``3des-cbc``,.``aes128-c |
| 102e20 | 62 63 60 60 2c 20 60 60 61 65 73 31 39 32 2d 63 62 63 60 60 2c 20 60 60 61 65 73 32 35 36 2d 63 | bc``,.``aes192-cbc``,.``aes256-c |
| 102e40 | 62 63 60 60 2c 20 60 60 61 65 73 31 32 38 2d 63 74 72 60 60 2c 20 60 60 61 65 73 31 39 32 2d 63 | bc``,.``aes128-ctr``,.``aes192-c |
| 102e60 | 74 72 60 60 2c 20 60 60 61 65 73 32 35 36 2d 63 74 72 60 60 2c 20 60 60 61 72 63 66 6f 75 72 31 | tr``,.``aes256-ctr``,.``arcfour1 |
| 102e80 | 32 38 60 60 2c 20 60 60 61 72 63 66 6f 75 72 32 35 36 60 60 2c 20 60 60 61 72 63 66 6f 75 72 60 | 28``,.``arcfour256``,.``arcfour` |
| 102ea0 | 60 2c 20 60 60 62 6c 6f 77 66 69 73 68 2d 63 62 63 60 60 2c 20 60 60 63 61 73 74 31 32 38 2d 63 | `,.``blowfish-cbc``,.``cast128-c |
| 102ec0 | 62 63 60 60 00 4c 69 73 74 20 6f 66 20 77 65 6c 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d 75 6e 69 74 | bc``.List.of.well-known.communit |
| 102ee0 | 69 65 73 00 4c 69 73 74 65 6e 20 66 6f 72 20 44 48 43 50 20 72 65 71 75 65 73 74 73 20 6f 6e 20 | ies.Listen.for.DHCP.requests.on. |
| 102f00 | 69 6e 74 65 72 66 61 63 65 20 60 60 65 74 68 31 60 60 2e 00 4c 69 73 74 73 20 56 52 46 73 20 74 | interface.``eth1``..Lists.VRFs.t |
| 102f20 | 68 61 74 20 68 61 76 65 20 62 65 65 6e 20 63 72 65 61 74 65 64 00 4c 6f 61 64 20 42 61 6c 61 6e | hat.have.been.created.Load.Balan |
| 102f40 | 63 65 00 4c 6f 61 64 20 42 61 6c 61 6e 63 69 6e 67 00 4c 6f 61 64 20 74 68 65 20 63 6f 6e 74 61 | ce.Load.Balancing.Load.the.conta |
| 102f60 | 69 6e 65 72 20 69 6d 61 67 65 20 69 6e 20 6f 70 2d 6d 6f 64 65 2e 00 4c 6f 61 64 2d 62 61 6c 61 | iner.image.in.op-mode..Load-bala |
| 102f80 | 6e 63 69 6e 67 00 4c 6f 61 64 2d 62 61 6c 61 6e 63 69 6e 67 20 61 6c 67 6f 72 69 74 68 6d 73 20 | ncing.Load-balancing.algorithms. |
| 102fa0 | 74 6f 20 62 65 20 75 73 65 64 20 66 6f 72 20 64 69 73 74 72 69 62 75 74 65 64 20 72 65 71 75 65 | to.be.used.for.distributed.reque |
| 102fc0 | 73 74 73 20 61 6d 6f 6e 67 20 74 68 65 20 61 76 61 69 6c 61 62 6c 65 20 73 65 72 76 65 72 73 00 | sts.among.the.available.servers. |
| 102fe0 | 4c 6f 61 64 2d 62 61 6c 61 6e 63 69 6e 67 20 61 6c 67 6f 72 69 74 68 6d 73 20 74 6f 20 62 65 20 | Load-balancing.algorithms.to.be. |
| 103000 | 75 73 65 64 20 66 6f 72 20 64 69 73 74 72 69 62 75 74 69 6e 64 20 72 65 71 75 65 73 74 73 20 61 | used.for.distributind.requests.a |
| 103020 | 6d 6f 6e 67 20 74 68 65 20 76 61 69 6c 61 62 6c 65 20 73 65 72 76 65 72 73 00 4c 6f 61 64 2d 62 | mong.the.vailable.servers.Load-b |
| 103040 | 61 6c 61 6e 63 69 6e 67 20 73 63 68 65 64 75 6c 65 20 61 6c 67 6f 72 69 74 68 6d 3a 00 4c 6f 63 | alancing.schedule.algorithm:.Loc |
| 103060 | 61 6c 00 4c 6f 63 61 6c 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 2d 20 41 6e 6e 6f 74 61 74 | al.Local.Configuration.-.Annotat |
| 103080 | 65 64 3a 00 4c 6f 63 61 6c 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 00 4c 6f 63 61 6c 20 49 | ed:.Local.Configuration:.Local.I |
| 1030a0 | 50 20 60 3c 61 64 64 72 65 73 73 3e 60 20 75 73 65 64 20 77 68 65 6e 20 63 6f 6d 6d 75 6e 69 63 | P.`<address>`.used.when.communic |
| 1030c0 | 61 74 69 6e 67 20 74 6f 20 74 68 65 20 48 41 20 70 65 65 72 2e 00 4c 6f 63 61 6c 20 49 50 20 60 | ating.to.the.HA.peer..Local.IP.` |
| 1030e0 | 3c 61 64 64 72 65 73 73 3e 60 20 75 73 65 64 20 77 68 65 6e 20 63 6f 6d 6d 75 6e 69 63 61 74 69 | <address>`.used.when.communicati |
| 103100 | 6e 67 20 74 6f 20 74 68 65 20 66 61 69 6c 6f 76 65 72 20 70 65 65 72 2e 00 4c 6f 63 61 6c 20 49 | ng.to.the.failover.peer..Local.I |
| 103120 | 50 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 6c 69 73 74 65 6e 20 6f 6e 00 4c 6f 63 61 6c 20 49 | P.addresses.to.listen.on.Local.I |
| 103140 | 50 76 34 20 61 64 64 72 65 73 73 65 73 20 66 6f 72 20 73 65 72 76 69 63 65 20 74 6f 20 6c 69 73 | Pv4.addresses.for.service.to.lis |
| 103160 | 74 65 6e 20 6f 6e 2e 00 4c 6f 63 61 6c 20 52 6f 75 74 65 20 49 50 76 34 00 4c 6f 63 61 6c 20 52 | ten.on..Local.Route.IPv4.Local.R |
| 103180 | 6f 75 74 65 20 49 50 76 36 00 4c 6f 63 61 6c 20 52 6f 75 74 65 20 50 6f 6c 69 63 79 00 4c 6f 63 | oute.IPv6.Local.Route.Policy.Loc |
| 1031a0 | 61 6c 20 55 73 65 72 20 41 63 63 6f 75 6e 74 00 4c 6f 63 61 6c 20 70 61 74 68 20 74 68 61 74 20 | al.User.Account.Local.path.that. |
| 1031c0 | 69 6e 63 6c 75 64 65 73 20 74 68 65 20 6b 6e 6f 77 6e 20 68 6f 73 74 73 20 66 69 6c 65 2e 00 4c | includes.the.known.hosts.file..L |
| 1031e0 | 6f 63 61 6c 20 70 61 74 68 20 74 68 61 74 20 69 6e 63 6c 75 64 65 73 20 74 68 65 20 70 72 69 76 | ocal.path.that.includes.the.priv |
| 103200 | 61 74 65 20 6b 65 79 20 66 69 6c 65 20 6f 66 20 74 68 65 20 72 6f 75 74 65 72 2e 00 4c 6f 63 61 | ate.key.file.of.the.router..Loca |
| 103220 | 6c 20 70 61 74 68 20 74 68 61 74 20 69 6e 63 6c 75 64 65 73 20 74 68 65 20 70 75 62 6c 69 63 20 | l.path.that.includes.the.public. |
| 103240 | 6b 65 79 20 66 69 6c 65 20 6f 66 20 74 68 65 20 72 6f 75 74 65 72 2e 00 4c 6f 63 61 6c 20 72 6f | key.file.of.the.router..Local.ro |
| 103260 | 75 74 65 00 4c 6f 63 61 6c 6c 79 20 63 6f 6e 6e 65 63 74 20 74 6f 20 73 65 72 69 61 6c 20 70 6f | ute.Locally.connect.to.serial.po |
| 103280 | 72 74 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 60 3c 64 65 76 69 63 65 3e 60 2e 00 4c 6f 63 | rt.identified.by.`<device>`..Loc |
| 1032a0 | 61 6c 6c 79 20 73 69 67 6e 69 66 69 63 61 6e 74 20 61 64 6d 69 6e 69 73 74 72 61 74 69 76 65 20 | ally.significant.administrative. |
| 1032c0 | 64 69 73 74 61 6e 63 65 2e 00 4c 6f 67 20 61 6c 65 72 74 00 4c 6f 67 20 61 75 64 69 74 00 4c 6f | distance..Log.alert.Log.audit.Lo |
| 1032e0 | 67 20 63 68 61 6e 67 65 73 20 69 6e 20 61 64 6a 61 63 65 6e 63 79 20 73 74 61 74 65 2e 00 4c 6f | g.changes.in.adjacency.state..Lo |
| 103300 | 67 20 65 76 65 72 79 74 68 69 6e 67 00 4c 6f 67 20 6d 65 73 73 61 67 65 73 20 66 72 6f 6d 20 61 | g.everything.Log.messages.from.a |
| 103320 | 20 73 70 65 63 69 66 69 65 64 20 69 6d 61 67 65 20 63 61 6e 20 62 65 20 64 69 73 70 6c 61 79 65 | .specified.image.can.be.displaye |
| 103340 | 64 20 6f 6e 20 74 68 65 20 63 6f 6e 73 6f 6c 65 2e 20 44 65 74 61 69 6c 73 20 6f 66 20 61 6c 6c | d.on.the.console..Details.of.all |
| 103360 | 6f 77 65 64 20 70 61 72 61 6d 65 74 65 72 73 3a 00 4c 6f 67 20 73 79 73 6c 6f 67 20 6d 65 73 73 | owed.parameters:.Log.syslog.mess |
| 103380 | 61 67 65 73 20 74 6f 20 60 60 2f 64 65 76 2f 63 6f 6e 73 6f 6c 65 60 60 2c 20 66 6f 72 20 61 6e | ages.to.``/dev/console``,.for.an |
| 1033a0 | 20 65 78 70 6c 61 6e 61 74 69 6f 6e 20 6f 6e 20 3a 72 65 66 3a 60 73 79 73 6c 6f 67 5f 66 61 63 | .explanation.on.:ref:`syslog_fac |
| 1033c0 | 69 6c 69 74 69 65 73 60 20 6b 65 79 77 6f 72 64 73 20 61 6e 64 20 3a 72 65 66 3a 60 73 79 73 6c | ilities`.keywords.and.:ref:`sysl |
| 1033e0 | 6f 67 5f 73 65 76 65 72 69 74 79 5f 6c 65 76 65 6c 60 20 6b 65 79 77 6f 72 64 73 20 73 65 65 20 | og_severity_level`.keywords.see. |
| 103400 | 74 61 62 6c 65 73 20 62 65 6c 6f 77 2e 00 4c 6f 67 20 73 79 73 6c 6f 67 20 6d 65 73 73 61 67 65 | tables.below..Log.syslog.message |
| 103420 | 73 20 74 6f 20 66 69 6c 65 20 73 70 65 63 69 66 69 65 64 20 76 69 61 20 60 3c 66 69 6c 65 6e 61 | s.to.file.specified.via.`<filena |
| 103440 | 6d 65 3e 60 2c 20 66 6f 72 20 61 6e 20 65 78 70 6c 61 6e 61 74 69 6f 6e 20 6f 6e 20 3a 72 65 66 | me>`,.for.an.explanation.on.:ref |
| 103460 | 3a 60 73 79 73 6c 6f 67 5f 66 61 63 69 6c 69 74 69 65 73 60 20 6b 65 79 77 6f 72 64 73 20 61 6e | :`syslog_facilities`.keywords.an |
| 103480 | 64 20 3a 72 65 66 3a 60 73 79 73 6c 6f 67 5f 73 65 76 65 72 69 74 79 5f 6c 65 76 65 6c 60 20 6b | d.:ref:`syslog_severity_level`.k |
| 1034a0 | 65 79 77 6f 72 64 73 20 73 65 65 20 74 61 62 6c 65 73 20 62 65 6c 6f 77 2e 00 4c 6f 67 20 73 79 | eywords.see.tables.below..Log.sy |
| 1034c0 | 73 6c 6f 67 20 6d 65 73 73 61 67 65 73 20 74 6f 20 72 65 6d 6f 74 65 20 68 6f 73 74 20 73 70 65 | slog.messages.to.remote.host.spe |
| 1034e0 | 63 69 66 69 65 64 20 62 79 20 60 3c 61 64 64 72 65 73 73 3e 60 2e 20 54 68 65 20 61 64 64 72 65 | cified.by.`<address>`..The.addre |
| 103500 | 73 73 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 20 62 79 20 65 69 74 68 65 72 20 46 51 | ss.can.be.specified.by.either.FQ |
| 103520 | 44 4e 20 6f 72 20 49 50 20 61 64 64 72 65 73 73 2e 20 46 6f 72 20 61 6e 20 65 78 70 6c 61 6e 61 | DN.or.IP.address..For.an.explana |
| 103540 | 74 69 6f 6e 20 6f 6e 20 3a 72 65 66 3a 60 73 79 73 6c 6f 67 5f 66 61 63 69 6c 69 74 69 65 73 60 | tion.on.:ref:`syslog_facilities` |
| 103560 | 20 6b 65 79 77 6f 72 64 73 20 61 6e 64 20 3a 72 65 66 3a 60 73 79 73 6c 6f 67 5f 73 65 76 65 72 | .keywords.and.:ref:`syslog_sever |
| 103580 | 69 74 79 5f 6c 65 76 65 6c 60 20 6b 65 79 77 6f 72 64 73 20 73 65 65 20 74 61 62 6c 65 73 20 62 | ity_level`.keywords.see.tables.b |
| 1035a0 | 65 6c 6f 77 2e 00 4c 6f 67 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e | elow..Log.the.connection.trackin |
| 1035c0 | 67 20 65 76 65 6e 74 73 20 70 65 72 20 70 72 6f 74 6f 63 6f 6c 2e 00 4c 6f 67 20 74 68 65 20 63 | g.events.per.protocol..Log.the.c |
| 1035e0 | 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 65 76 65 6e 74 73 20 70 65 72 20 74 79 | onnection.tracking.events.per.ty |
| 103600 | 70 65 2e 00 4c 6f 67 67 69 6e 67 00 4c 6f 67 67 69 6e 67 20 63 61 6e 20 62 65 20 65 6e 61 62 6c | pe..Logging.Logging.can.be.enabl |
| 103620 | 65 20 66 6f 72 20 65 76 65 72 79 20 73 69 6e 67 6c 65 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 | e.for.every.single.firewall.rule |
| 103640 | 2e 20 49 66 20 65 6e 61 62 6c 65 64 2c 20 6f 74 68 65 72 20 6c 6f 67 20 6f 70 74 69 6f 6e 73 20 | ..If.enabled,.other.log.options. |
| 103660 | 63 61 6e 20 62 65 20 64 65 66 69 6e 65 64 2e 00 4c 6f 67 67 69 6e 67 20 74 6f 20 61 20 72 65 6d | can.be.defined..Logging.to.a.rem |
| 103680 | 6f 74 65 20 68 6f 73 74 20 6c 65 61 76 65 73 20 74 68 65 20 6c 6f 63 61 6c 20 6c 6f 67 67 69 6e | ote.host.leaves.the.local.loggin |
| 1036a0 | 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 6e 74 61 63 74 2c 20 69 74 20 63 61 6e 20 62 | g.configuration.intact,.it.can.b |
| 1036c0 | 65 20 63 6f 6e 66 69 67 75 72 65 64 20 69 6e 20 70 61 72 61 6c 6c 65 6c 20 74 6f 20 61 20 63 75 | e.configured.in.parallel.to.a.cu |
| 1036e0 | 73 74 6f 6d 20 66 69 6c 65 20 6f 72 20 63 6f 6e 73 6f 6c 65 20 6c 6f 67 67 69 6e 67 2e 20 59 6f | stom.file.or.console.logging..Yo |
| 103700 | 75 20 63 61 6e 20 6c 6f 67 20 74 6f 20 6d 75 6c 74 69 70 6c 65 20 68 6f 73 74 73 20 61 74 20 74 | u.can.log.to.multiple.hosts.at.t |
| 103720 | 68 65 20 73 61 6d 65 20 74 69 6d 65 2c 20 75 73 69 6e 67 20 65 69 74 68 65 72 20 54 43 50 20 6f | he.same.time,.using.either.TCP.o |
| 103740 | 72 20 55 44 50 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 73 65 6e 64 69 6e 67 20 74 68 | r.UDP..The.default.is.sending.th |
| 103760 | 65 20 6d 65 73 73 61 67 65 73 20 76 69 61 20 70 6f 72 74 20 35 31 34 2f 55 44 50 2e 00 4c 6f 67 | e.messages.via.port.514/UDP..Log |
| 103780 | 69 6e 20 42 61 6e 6e 65 72 00 4c 6f 67 69 6e 20 6c 69 6d 69 74 73 00 4c 6f 67 69 6e 2f 55 73 65 | in.Banner.Login.limits.Login/Use |
| 1037a0 | 72 20 4d 61 6e 61 67 65 6d 65 6e 74 00 4c 6f 6b 69 00 4c 6f 6f 70 20 46 72 65 65 20 41 6c 74 65 | r.Management.Loki.Loop.Free.Alte |
| 1037c0 | 72 6e 61 74 65 20 28 4c 46 41 29 00 4c 6f 6f 70 62 61 63 6b 00 4c 6f 6f 70 62 61 63 6b 73 20 6f | rnate.(LFA).Loopback.Loopbacks.o |
| 1037e0 | 63 63 75 72 73 20 61 74 20 74 68 65 20 49 50 20 6c 65 76 65 6c 20 74 68 65 20 73 61 6d 65 20 77 | ccurs.at.the.IP.level.the.same.w |
| 103800 | 61 79 20 61 73 20 66 6f 72 20 6f 74 68 65 72 20 69 6e 74 65 72 66 61 63 65 73 2c 20 65 74 68 65 | ay.as.for.other.interfaces,.ethe |
| 103820 | 72 6e 65 74 20 66 72 61 6d 65 73 20 61 72 65 20 6e 6f 74 20 66 6f 72 77 61 72 64 65 64 20 62 65 | rnet.frames.are.not.forwarded.be |
| 103840 | 74 77 65 65 6e 20 50 73 65 75 64 6f 2d 45 74 68 65 72 6e 65 74 20 69 6e 74 65 72 66 61 63 65 73 | tween.Pseudo-Ethernet.interfaces |
| 103860 | 2e 00 4c 6f 77 00 4d 41 43 20 47 72 6f 75 70 73 00 4d 41 43 20 61 64 64 72 65 73 73 20 61 67 69 | ..Low.MAC.Groups.MAC.address.agi |
| 103880 | 6e 67 20 60 3c 74 69 6d 65 60 3e 20 69 6e 20 73 65 63 6f 6e 64 73 20 28 64 65 66 61 75 6c 74 3a | ng.`<time`>.in.seconds.(default: |
| 1038a0 | 20 33 30 30 29 2e 00 4d 41 43 2f 50 48 59 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 00 4d 41 43 56 4c | .300)..MAC/PHY.information.MACVL |
| 1038c0 | 41 4e 20 2d 20 50 73 65 75 64 6f 20 45 74 68 65 72 6e 65 74 00 4d 41 43 73 65 63 00 4d 41 43 73 | AN.-.Pseudo.Ethernet.MACsec.MACs |
| 1038e0 | 65 63 20 69 73 20 61 6e 20 49 45 45 45 20 73 74 61 6e 64 61 72 64 20 28 49 45 45 45 20 38 30 32 | ec.is.an.IEEE.standard.(IEEE.802 |
| 103900 | 2e 31 41 45 29 20 66 6f 72 20 4d 41 43 20 73 65 63 75 72 69 74 79 2c 20 69 6e 74 72 6f 64 75 63 | .1AE).for.MAC.security,.introduc |
| 103920 | 65 64 20 69 6e 20 32 30 30 36 2e 20 49 74 20 64 65 66 69 6e 65 73 20 61 20 77 61 79 20 74 6f 20 | ed.in.2006..It.defines.a.way.to. |
| 103940 | 65 73 74 61 62 6c 69 73 68 20 61 20 70 72 6f 74 6f 63 6f 6c 20 69 6e 64 65 70 65 6e 64 65 6e 74 | establish.a.protocol.independent |
| 103960 | 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 62 65 74 77 65 65 6e 20 74 77 6f 20 68 6f 73 74 73 20 77 69 | .connection.between.two.hosts.wi |
| 103980 | 74 68 20 64 61 74 61 20 63 6f 6e 66 69 64 65 6e 74 69 61 6c 69 74 79 2c 20 61 75 74 68 65 6e 74 | th.data.confidentiality,.authent |
| 1039a0 | 69 63 69 74 79 20 61 6e 64 2f 6f 72 20 69 6e 74 65 67 72 69 74 79 2c 20 75 73 69 6e 67 20 47 43 | icity.and/or.integrity,.using.GC |
| 1039c0 | 4d 2d 41 45 53 2d 31 32 38 2e 20 4d 41 43 73 65 63 20 6f 70 65 72 61 74 65 73 20 6f 6e 20 74 68 | M-AES-128..MACsec.operates.on.th |
| 1039e0 | 65 20 45 74 68 65 72 6e 65 74 20 6c 61 79 65 72 20 61 6e 64 20 61 73 20 73 75 63 68 20 69 73 20 | e.Ethernet.layer.and.as.such.is. |
| 103a00 | 61 20 6c 61 79 65 72 20 32 20 70 72 6f 74 6f 63 6f 6c 2c 20 77 68 69 63 68 20 6d 65 61 6e 73 20 | a.layer.2.protocol,.which.means. |
| 103a20 | 69 74 27 73 20 64 65 73 69 67 6e 65 64 20 74 6f 20 73 65 63 75 72 65 20 74 72 61 66 66 69 63 20 | it's.designed.to.secure.traffic. |
| 103a40 | 77 69 74 68 69 6e 20 61 20 6c 61 79 65 72 20 32 20 6e 65 74 77 6f 72 6b 2c 20 69 6e 63 6c 75 64 | within.a.layer.2.network,.includ |
| 103a60 | 69 6e 67 20 44 48 43 50 20 6f 72 20 41 52 50 20 72 65 71 75 65 73 74 73 2e 20 49 74 20 64 6f 65 | ing.DHCP.or.ARP.requests..It.doe |
| 103a80 | 73 20 6e 6f 74 20 63 6f 6d 70 65 74 65 20 77 69 74 68 20 6f 74 68 65 72 20 73 65 63 75 72 69 74 | s.not.compete.with.other.securit |
| 103aa0 | 79 20 73 6f 6c 75 74 69 6f 6e 73 20 73 75 63 68 20 61 73 20 49 50 73 65 63 20 28 6c 61 79 65 72 | y.solutions.such.as.IPsec.(layer |
| 103ac0 | 20 33 29 20 6f 72 20 54 4c 53 20 28 6c 61 79 65 72 20 34 29 2c 20 61 73 20 61 6c 6c 20 74 68 6f | .3).or.TLS.(layer.4),.as.all.tho |
| 103ae0 | 73 65 20 73 6f 6c 75 74 69 6f 6e 73 20 61 72 65 20 75 73 65 64 20 66 6f 72 20 74 68 65 69 72 20 | se.solutions.are.used.for.their. |
| 103b00 | 6f 77 6e 20 73 70 65 63 69 66 69 63 20 75 73 65 20 63 61 73 65 73 2e 00 4d 41 43 73 65 63 20 69 | own.specific.use.cases..MACsec.i |
| 103b20 | 73 20 61 6e 20 69 6e 74 65 72 65 73 74 69 6e 67 20 61 6c 74 65 72 6e 61 74 69 76 65 20 74 6f 20 | s.an.interesting.alternative.to. |
| 103b40 | 65 78 69 73 74 69 6e 67 20 74 75 6e 6e 65 6c 69 6e 67 20 73 6f 6c 75 74 69 6f 6e 73 20 74 68 61 | existing.tunneling.solutions.tha |
| 103b60 | 74 20 70 72 6f 74 65 63 74 73 20 6c 61 79 65 72 20 32 20 62 79 20 70 65 72 66 6f 72 6d 69 6e 67 | t.protects.layer.2.by.performing |
| 103b80 | 20 69 6e 74 65 67 72 69 74 79 2c 20 6f 72 69 67 69 6e 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f | .integrity,.origin.authenticatio |
| 103ba0 | 6e 2c 20 61 6e 64 20 6f 70 74 69 6f 6e 61 6c 6c 79 20 65 6e 63 72 79 70 74 69 6f 6e 2e 20 54 68 | n,.and.optionally.encryption..Th |
| 103bc0 | 65 20 74 79 70 69 63 61 6c 20 75 73 65 20 63 61 73 65 20 69 73 20 74 6f 20 75 73 65 20 4d 41 43 | e.typical.use.case.is.to.use.MAC |
| 103be0 | 73 65 63 20 62 65 74 77 65 65 6e 20 68 6f 73 74 73 20 61 6e 64 20 61 63 63 65 73 73 20 73 77 69 | sec.between.hosts.and.access.swi |
| 103c00 | 74 63 68 65 73 2c 20 62 65 74 77 65 65 6e 20 74 77 6f 20 68 6f 73 74 73 2c 20 6f 72 20 62 65 74 | tches,.between.two.hosts,.or.bet |
| 103c20 | 77 65 65 6e 20 74 77 6f 20 73 77 69 74 63 68 65 73 2e 20 69 6e 20 74 68 69 73 20 65 78 61 6d 70 | ween.two.switches..in.this.examp |
| 103c40 | 6c 65 20 62 65 6c 6f 77 2c 20 77 65 20 75 73 65 20 56 58 4c 41 4e 20 61 6e 64 20 4d 41 43 73 65 | le.below,.we.use.VXLAN.and.MACse |
| 103c60 | 63 20 74 6f 20 73 65 63 75 72 65 20 74 68 65 20 74 75 6e 6e 65 6c 2e 00 4d 41 43 73 65 63 20 6f | c.to.secure.the.tunnel..MACsec.o |
| 103c80 | 6e 6c 79 20 70 72 6f 76 69 64 65 73 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 62 79 20 64 | nly.provides.authentication.by.d |
| 103ca0 | 65 66 61 75 6c 74 2c 20 65 6e 63 72 79 70 74 69 6f 6e 20 69 73 20 6f 70 74 69 6f 6e 61 6c 2e 20 | efault,.encryption.is.optional.. |
| 103cc0 | 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 77 69 6c 6c 20 65 6e 61 62 6c 65 20 65 6e 63 72 79 70 74 | This.command.will.enable.encrypt |
| 103ce0 | 69 6f 6e 20 66 6f 72 20 61 6c 6c 20 6f 75 74 67 6f 69 6e 67 20 70 61 63 6b 65 74 73 2e 00 4d 41 | ion.for.all.outgoing.packets..MA |
| 103d00 | 43 73 65 63 20 6f 70 74 69 6f 6e 73 00 4d 41 43 73 65 63 20 6f 76 65 72 20 77 61 6e 00 4d 44 49 | Csec.options.MACsec.over.wan.MDI |
| 103d20 | 20 70 6f 77 65 72 00 4d 46 41 20 54 4f 54 50 20 6f 70 74 69 6f 6e 73 00 4d 46 41 2f 32 46 41 20 | .power.MFA.TOTP.options.MFA/2FA. |
| 103d40 | 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 75 73 69 6e 67 20 4f 54 50 20 28 6f 6e 65 20 74 69 | authentication.using.OTP.(one.ti |
| 103d60 | 6d 65 20 70 61 73 73 77 6f 72 64 73 29 00 4d 50 4c 53 00 4d 50 4c 53 20 73 75 70 70 6f 72 74 20 | me.passwords).MPLS.MPLS.support. |
| 103d80 | 69 6e 20 56 79 4f 53 20 69 73 20 6e 6f 74 20 66 69 6e 69 73 68 65 64 20 79 65 74 2c 20 61 6e 64 | in.VyOS.is.not.finished.yet,.and |
| 103da0 | 20 74 68 65 72 65 66 6f 72 65 20 69 74 73 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 20 69 73 20 | .therefore.its.functionality.is. |
| 103dc0 | 6c 69 6d 69 74 65 64 2e 20 43 75 72 72 65 6e 74 6c 79 20 74 68 65 72 65 20 69 73 20 6e 6f 20 73 | limited..Currently.there.is.no.s |
| 103de0 | 75 70 70 6f 72 74 20 66 6f 72 20 4d 50 4c 53 20 65 6e 61 62 6c 65 64 20 56 50 4e 20 73 65 72 76 | upport.for.MPLS.enabled.VPN.serv |
| 103e00 | 69 63 65 73 20 73 75 63 68 20 61 73 20 4c 32 56 50 4e 73 20 61 6e 64 20 6d 56 50 4e 73 2e 20 52 | ices.such.as.L2VPNs.and.mVPNs..R |
| 103e20 | 53 56 50 20 73 75 70 70 6f 72 74 20 69 73 20 61 6c 73 6f 20 6e 6f 74 20 70 72 65 73 65 6e 74 20 | SVP.support.is.also.not.present. |
| 103e40 | 61 73 20 74 68 65 20 75 6e 64 65 72 6c 79 69 6e 67 20 72 6f 75 74 69 6e 67 20 73 74 61 63 6b 20 | as.the.underlying.routing.stack. |
| 103e60 | 28 46 52 52 29 20 64 6f 65 73 20 6e 6f 74 20 69 6d 70 6c 65 6d 65 6e 74 20 69 74 2e 20 43 75 72 | (FRR).does.not.implement.it..Cur |
| 103e80 | 72 65 6e 74 6c 79 20 56 79 4f 53 20 69 6d 70 6c 65 6d 65 6e 74 73 20 4c 44 50 20 61 73 20 64 65 | rently.VyOS.implements.LDP.as.de |
| 103ea0 | 73 63 72 69 62 65 64 20 69 6e 20 52 46 43 20 35 30 33 36 3b 20 6f 74 68 65 72 20 4c 44 50 20 73 | scribed.in.RFC.5036;.other.LDP.s |
| 103ec0 | 74 61 6e 64 61 72 64 20 61 72 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 6f 6e 65 73 3a 20 | tandard.are.the.following.ones:. |
| 103ee0 | 52 46 43 20 36 37 32 30 2c 20 52 46 43 20 36 36 36 37 2c 20 52 46 43 20 35 39 31 39 2c 20 52 46 | RFC.6720,.RFC.6667,.RFC.5919,.RF |
| 103f00 | 43 20 35 35 36 31 2c 20 52 46 43 20 37 35 35 32 2c 20 52 46 43 20 34 34 34 37 2e 20 42 65 63 61 | C.5561,.RFC.7552,.RFC.4447..Beca |
| 103f20 | 75 73 65 20 4d 50 4c 53 20 69 73 20 61 6c 72 65 61 64 79 20 61 76 61 69 6c 61 62 6c 65 20 28 46 | use.MPLS.is.already.available.(F |
| 103f40 | 52 52 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 73 20 52 46 43 20 33 30 33 31 29 2e 00 4d 53 53 20 | RR.also.supports.RFC.3031)..MSS. |
| 103f60 | 76 61 6c 75 65 20 3d 20 4d 54 55 20 2d 20 32 30 20 28 49 50 20 68 65 61 64 65 72 29 20 2d 20 32 | value.=.MTU.-.20.(IP.header).-.2 |
| 103f80 | 30 20 28 54 43 50 20 68 65 61 64 65 72 29 2c 20 72 65 73 75 6c 74 69 6e 67 20 69 6e 20 31 34 35 | 0.(TCP.header),.resulting.in.145 |
| 103fa0 | 32 20 62 79 74 65 73 20 6f 6e 20 61 20 31 34 39 32 20 62 79 74 65 20 4d 54 55 2e 00 4d 53 53 20 | 2.bytes.on.a.1492.byte.MTU..MSS. |
| 103fc0 | 76 61 6c 75 65 20 3d 20 4d 54 55 20 2d 20 34 30 20 28 49 50 76 36 20 68 65 61 64 65 72 29 20 2d | value.=.MTU.-.40.(IPv6.header).- |
| 103fe0 | 20 32 30 20 28 54 43 50 20 68 65 61 64 65 72 29 2c 20 72 65 73 75 6c 74 69 6e 67 20 69 6e 20 31 | .20.(TCP.header),.resulting.in.1 |
| 104000 | 34 33 32 20 62 79 74 65 73 20 6f 6e 20 61 20 31 34 39 32 20 62 79 74 65 20 4d 54 55 2e 00 4d 54 | 432.bytes.on.a.1492.byte.MTU..MT |
| 104020 | 55 00 4d 61 69 6c 20 73 79 73 74 65 6d 00 4d 61 69 6e 20 6e 6f 74 65 73 20 72 65 67 61 72 64 69 | U.Mail.system.Main.notes.regardi |
| 104040 | 6e 67 20 74 68 69 73 20 70 61 63 6b 65 74 20 66 6c 6f 77 20 61 6e 64 20 74 65 72 6d 69 6e 6f 6c | ng.this.packet.flow.and.terminol |
| 104060 | 6f 67 79 20 75 73 65 64 20 69 6e 20 56 79 4f 53 20 66 69 72 65 77 61 6c 6c 3a 00 4d 61 69 6e 20 | ogy.used.in.VyOS.firewall:.Main. |
| 104080 | 73 74 72 75 63 74 75 72 65 20 56 79 4f 53 20 66 69 72 65 77 61 6c 6c 20 63 6c 69 20 69 73 20 73 | structure.VyOS.firewall.cli.is.s |
| 1040a0 | 68 6f 77 6e 20 6e 65 78 74 3a 00 4d 61 69 6e 20 73 74 72 75 63 74 75 72 65 20 69 73 20 73 68 6f | hown.next:.Main.structure.is.sho |
| 1040c0 | 77 6e 20 6e 65 78 74 3a 00 4d 61 69 6e 74 65 6e 61 6e 63 65 20 6d 6f 64 65 00 4d 61 6b 65 20 63 | wn.next:.Maintenance.mode.Make.c |
| 1040e0 | 6f 6e 66 69 67 2d 73 79 6e 63 20 72 65 6c 65 76 61 6e 74 20 63 68 61 6e 67 65 73 20 74 6f 20 52 | onfig-sync.relevant.changes.to.R |
| 104100 | 6f 75 74 65 72 20 41 27 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 4d 61 6b 65 20 73 75 72 | outer.A's.configuration.Make.sur |
| 104120 | 65 20 63 6f 6e 6e 74 72 61 63 6b 20 69 73 20 65 6e 61 62 6c 65 64 20 62 79 20 72 75 6e 6e 69 6e | e.conntrack.is.enabled.by.runnin |
| 104140 | 67 20 61 6e 64 20 73 68 6f 77 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 74 | g.and.show.connection.tracking.t |
| 104160 | 61 62 6c 65 2e 00 4d 61 6e 61 67 65 20 69 6e 74 65 72 6e 61 6c 20 71 75 65 75 65 20 73 69 7a 65 | able..Manage.internal.queue.size |
| 104180 | 2c 20 64 65 66 61 75 6c 74 20 73 69 7a 65 20 69 73 20 34 30 39 36 20 65 76 65 6e 74 73 2e 00 4d | ,.default.size.is.4096.events..M |
| 1041a0 | 61 6e 61 67 65 20 6c 6f 67 20 6c 65 76 65 6c 00 4d 61 6e 61 67 65 64 20 64 65 76 69 63 65 73 00 | anage.log.level.Managed.devices. |
| 1041c0 | 4d 61 6e 61 67 65 6d 65 6e 74 20 46 72 61 6d 65 20 50 72 6f 74 65 63 74 69 6f 6e 20 28 4d 46 50 | Management.Frame.Protection.(MFP |
| 1041e0 | 29 20 61 63 63 6f 72 64 69 6e 67 20 74 6f 20 49 45 45 45 20 38 30 32 2e 31 31 77 00 4d 61 6e 64 | ).according.to.IEEE.802.11w.Mand |
| 104200 | 61 74 6f 72 79 20 53 65 74 74 69 6e 67 73 00 4d 61 6e 75 61 6c 20 4e 65 69 67 68 62 6f 72 20 43 | atory.Settings.Manual.Neighbor.C |
| 104220 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 4d 61 6e 75 61 6c 6c 79 20 74 72 69 67 67 65 72 20 63 65 | onfiguration.Manually.trigger.ce |
| 104240 | 72 74 69 66 69 63 61 74 65 20 72 65 6e 65 77 61 6c 2e 20 54 68 69 73 20 77 69 6c 6c 20 62 65 20 | rtificate.renewal..This.will.be. |
| 104260 | 64 6f 6e 65 20 74 77 69 63 65 20 61 20 64 61 79 2e 00 4d 61 70 73 20 74 68 65 20 56 4e 49 20 74 | done.twice.a.day..Maps.the.VNI.t |
| 104280 | 6f 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 56 4c 41 4e 20 69 64 2e 20 54 68 65 20 56 4c 41 | o.the.specified.VLAN.id..The.VLA |
| 1042a0 | 4e 20 63 61 6e 20 74 68 65 6e 20 62 65 20 63 6f 6e 73 75 6d 65 64 20 62 79 20 61 20 62 72 69 64 | N.can.then.be.consumed.by.a.brid |
| 1042c0 | 67 65 2e 00 4d 61 72 6b 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 61 73 20 6f 66 66 6c 69 6e | ge..Mark.RADIUS.server.as.offlin |
| 1042e0 | 65 20 66 6f 72 20 74 68 69 73 20 67 69 76 65 6e 20 60 3c 74 69 6d 65 3e 60 20 69 6e 20 73 65 63 | e.for.this.given.`<time>`.in.sec |
| 104300 | 6f 6e 64 73 2e 00 4d 61 72 6b 20 74 68 65 20 43 41 73 20 70 72 69 76 61 74 65 20 6b 65 79 20 61 | onds..Mark.the.CAs.private.key.a |
| 104320 | 73 20 70 61 73 73 77 6f 72 64 20 70 72 6f 74 65 63 74 65 64 2e 20 55 73 65 72 20 69 73 20 61 73 | s.password.protected..User.is.as |
| 104340 | 6b 65 64 20 66 6f 72 20 74 68 65 20 70 61 73 73 77 6f 72 64 20 77 68 65 6e 20 74 68 65 20 6b 65 | ked.for.the.password.when.the.ke |
| 104360 | 79 20 69 73 20 72 65 66 65 72 65 6e 63 65 64 2e 00 4d 61 72 6b 20 74 68 65 20 70 72 69 76 61 74 | y.is.referenced..Mark.the.privat |
| 104380 | 65 20 6b 65 79 20 61 73 20 70 61 73 73 77 6f 72 64 20 70 72 6f 74 65 63 74 65 64 2e 20 55 73 65 | e.key.as.password.protected..Use |
| 1043a0 | 72 20 69 73 20 61 73 6b 65 64 20 66 6f 72 20 74 68 65 20 70 61 73 73 77 6f 72 64 20 77 68 65 6e | r.is.asked.for.the.password.when |
| 1043c0 | 20 74 68 65 20 6b 65 79 20 69 73 20 72 65 66 65 72 65 6e 63 65 64 2e 00 4d 61 74 63 68 20 42 47 | .the.key.is.referenced..Match.BG |
| 1043e0 | 50 20 6c 61 72 67 65 20 63 6f 6d 6d 75 6e 69 74 69 65 73 2e 00 4d 61 74 63 68 20 49 50 20 61 64 | P.large.communities..Match.IP.ad |
| 104400 | 64 72 65 73 73 65 73 20 62 61 73 65 64 20 6f 6e 20 69 74 73 20 67 65 6f 6c 6f 63 61 74 69 6f 6e | dresses.based.on.its.geolocation |
| 104420 | 2e 20 4d 6f 72 65 20 69 6e 66 6f 3a 20 60 67 65 6f 69 70 20 6d 61 74 63 68 69 6e 67 20 3c 68 74 | ..More.info:.`geoip.matching.<ht |
| 104440 | 74 70 73 3a 2f 2f 77 69 6b 69 2e 6e 66 74 61 62 6c 65 73 2e 6f 72 67 2f 77 69 6b 69 2d 6e 66 74 | tps://wiki.nftables.org/wiki-nft |
| 104460 | 61 62 6c 65 73 2f 69 6e 64 65 78 2e 70 68 70 2f 47 65 6f 49 50 5f 6d 61 74 63 68 69 6e 67 3e 60 | ables/index.php/GeoIP_matching>` |
| 104480 | 5f 2e 00 4d 61 74 63 68 20 49 50 20 61 64 64 72 65 73 73 65 73 20 62 61 73 65 64 20 6f 6e 20 69 | _..Match.IP.addresses.based.on.i |
| 1044a0 | 74 73 20 67 65 6f 6c 6f 63 61 74 69 6f 6e 2e 20 4d 6f 72 65 20 69 6e 66 6f 3a 20 60 67 65 6f 69 | ts.geolocation..More.info:.`geoi |
| 1044c0 | 70 20 6d 61 74 63 68 69 6e 67 20 3c 68 74 74 70 73 3a 2f 2f 77 69 6b 69 2e 6e 66 74 61 62 6c 65 | p.matching.<https://wiki.nftable |
| 1044e0 | 73 2e 6f 72 67 2f 77 69 6b 69 2d 6e 66 74 61 62 6c 65 73 2f 69 6e 64 65 78 2e 70 68 70 2f 47 65 | s.org/wiki-nftables/index.php/Ge |
| 104500 | 6f 49 50 5f 6d 61 74 63 68 69 6e 67 3e 60 5f 2e 20 55 73 65 20 69 6e 76 65 72 73 65 2d 6d 61 74 | oIP_matching>`_..Use.inverse-mat |
| 104520 | 63 68 20 74 6f 20 6d 61 74 63 68 20 61 6e 79 74 68 69 6e 67 20 65 78 63 65 70 74 20 74 68 65 20 | ch.to.match.anything.except.the. |
| 104540 | 67 69 76 65 6e 20 63 6f 75 6e 74 72 79 2d 63 6f 64 65 73 2e 00 4d 61 74 63 68 20 52 50 4b 49 20 | given.country-codes..Match.RPKI. |
| 104560 | 76 61 6c 69 64 61 74 69 6f 6e 20 72 65 73 75 6c 74 2e 00 4d 61 74 63 68 20 61 20 70 72 6f 74 6f | validation.result..Match.a.proto |
| 104580 | 63 6f 6c 20 63 72 69 74 65 72 69 61 2e 20 41 20 70 72 6f 74 6f 63 6f 6c 20 6e 75 6d 62 65 72 20 | col.criteria..A.protocol.number. |
| 1045a0 | 6f 72 20 61 20 6e 61 6d 65 20 77 68 69 63 68 20 69 73 20 64 65 66 69 6e 65 64 20 69 6e 3a 20 60 | or.a.name.which.is.defined.in:.` |
| 1045c0 | 60 2f 65 74 63 2f 70 72 6f 74 6f 63 6f 6c 73 60 60 2e 20 53 70 65 63 69 61 6c 20 6e 61 6d 65 73 | `/etc/protocols``..Special.names |
| 1045e0 | 20 61 72 65 20 60 60 61 6c 6c 60 60 20 66 6f 72 20 61 6c 6c 20 70 72 6f 74 6f 63 6f 6c 73 20 61 | .are.``all``.for.all.protocols.a |
| 104600 | 6e 64 20 60 60 74 63 70 5f 75 64 70 60 60 20 66 6f 72 20 74 63 70 20 61 6e 64 20 75 64 70 20 62 | nd.``tcp_udp``.for.tcp.and.udp.b |
| 104620 | 61 73 65 64 20 70 61 63 6b 65 74 73 2e 20 54 68 65 20 60 60 21 60 60 20 6e 65 67 61 74 65 73 20 | ased.packets..The.``!``.negates. |
| 104640 | 74 68 65 20 73 65 6c 65 63 74 65 64 20 70 72 6f 74 6f 63 6f 6c 2e 00 4d 61 74 63 68 20 61 20 70 | the.selected.protocol..Match.a.p |
| 104660 | 72 6f 74 6f 63 6f 6c 20 63 72 69 74 65 72 69 61 2e 20 41 20 70 72 6f 74 6f 63 6f 6c 20 6e 75 6d | rotocol.criteria..A.protocol.num |
| 104680 | 62 65 72 20 6f 72 20 61 20 6e 61 6d 65 20 77 68 69 63 68 20 69 73 20 68 65 72 65 20 64 65 66 69 | ber.or.a.name.which.is.here.defi |
| 1046a0 | 6e 65 64 3a 20 60 60 2f 65 74 63 2f 70 72 6f 74 6f 63 6f 6c 73 60 60 2e 20 53 70 65 63 69 61 6c | ned:.``/etc/protocols``..Special |
| 1046c0 | 20 6e 61 6d 65 73 20 61 72 65 20 60 60 61 6c 6c 60 60 20 66 6f 72 20 61 6c 6c 20 70 72 6f 74 6f | .names.are.``all``.for.all.proto |
| 1046e0 | 63 6f 6c 73 20 61 6e 64 20 60 60 74 63 70 5f 75 64 70 60 60 20 66 6f 72 20 74 63 70 20 61 6e 64 | cols.and.``tcp_udp``.for.tcp.and |
| 104700 | 20 75 64 70 20 62 61 73 65 64 20 70 61 63 6b 65 74 73 2e 20 54 68 65 20 60 60 21 60 60 20 6e 65 | .udp.based.packets..The.``!``.ne |
| 104720 | 67 61 74 65 20 74 68 65 20 73 65 6c 65 63 74 65 64 20 70 72 6f 74 6f 63 6f 6c 2e 00 4d 61 74 63 | gate.the.selected.protocol..Matc |
| 104740 | 68 20 61 67 61 69 6e 73 74 20 74 68 65 20 73 74 61 74 65 20 6f 66 20 61 20 70 61 63 6b 65 74 2e | h.against.the.state.of.a.packet. |
| 104760 | 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 56 4c 41 4e 20 69 64 65 6e 74 69 66 69 65 72 2e | .Match.based.on.VLAN.identifier. |
| 104780 | 20 52 61 6e 67 65 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 00 4d 61 74 63 68 20 | .Range.is.also.supported..Match. |
| 1047a0 | 62 61 73 65 64 20 6f 6e 20 56 4c 41 4e 20 70 72 69 6f 72 69 74 79 20 28 50 72 69 6f 72 69 74 79 | based.on.VLAN.priority.(Priority |
| 1047c0 | 20 43 6f 64 65 20 50 6f 69 6e 74 20 2d 20 50 43 50 29 2e 20 52 61 6e 67 65 20 69 73 20 61 6c 73 | .Code.Point.-.PCP)..Range.is.als |
| 1047e0 | 6f 20 73 75 70 70 6f 72 74 65 64 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 63 6f 6e 6e | o.supported..Match.based.on.conn |
| 104800 | 65 63 74 69 6f 6e 20 6d 61 72 6b 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 63 6f 6e 6e | ection.mark..Match.based.on.conn |
| 104820 | 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 20 68 65 6c 70 65 72 20 | ection.tracking.protocol.helper. |
| 104840 | 6d 6f 64 75 6c 65 20 74 6f 20 73 65 63 75 72 65 20 75 73 65 20 6f 66 20 74 68 61 74 20 68 65 6c | module.to.secure.use.of.that.hel |
| 104860 | 70 65 72 20 6d 6f 64 75 6c 65 2e 20 53 65 65 20 62 65 6c 6f 77 20 66 6f 72 20 70 6f 73 73 69 62 | per.module..See.below.for.possib |
| 104880 | 6c 65 20 63 6f 6d 70 6c 65 74 69 6f 6e 73 20 60 3c 6d 6f 64 75 6c 65 3e 60 2e 00 4d 61 74 63 68 | le.completions.`<module>`..Match |
| 1048a0 | 20 62 61 73 65 64 20 6f 6e 20 64 73 63 70 20 76 61 6c 75 65 20 63 72 69 74 65 72 69 61 2e 20 4d | .based.on.dscp.value.criteria..M |
| 1048c0 | 75 6c 74 69 70 6c 65 20 76 61 6c 75 65 73 20 66 72 6f 6d 20 30 20 74 6f 20 36 33 20 61 6e 64 20 | ultiple.values.from.0.to.63.and. |
| 1048e0 | 72 61 6e 67 65 73 20 61 72 65 20 73 75 70 70 6f 72 74 65 64 2e 00 4d 61 74 63 68 20 62 61 73 65 | ranges.are.supported..Match.base |
| 104900 | 64 20 6f 6e 20 64 73 63 70 20 76 61 6c 75 65 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 | d.on.dscp.value..Match.based.on. |
| 104920 | 66 72 61 67 6d 65 6e 74 20 63 72 69 74 65 72 69 61 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f | fragment.criteria..Match.based.o |
| 104940 | 6e 20 66 72 61 67 6d 65 6e 74 61 74 69 6f 6e 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 | n.fragmentation..Match.based.on. |
| 104960 | 69 63 6d 70 20 63 6f 64 65 20 61 6e 64 20 74 79 70 65 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 | icmp.code.and.type..Match.based. |
| 104980 | 6f 6e 20 69 63 6d 70 20 74 79 70 65 2d 6e 61 6d 65 20 63 72 69 74 65 72 69 61 2e 20 55 73 65 20 | on.icmp.type-name.criteria..Use. |
| 1049a0 | 74 61 62 20 66 6f 72 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 77 68 61 74 20 2a | tab.for.information.about.what.* |
| 1049c0 | 2a 74 79 70 65 2d 6e 61 6d 65 2a 2a 20 63 72 69 74 65 72 69 61 20 61 72 65 20 73 75 70 70 6f 72 | *type-name**.criteria.are.suppor |
| 1049e0 | 74 65 64 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 69 63 6d 70 20 74 79 70 65 2d 6e 61 | ted..Match.based.on.icmp.type-na |
| 104a00 | 6d 65 2e 20 55 73 65 20 74 61 62 20 66 6f 72 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 | me..Use.tab.for.information.abou |
| 104a20 | 74 20 77 68 61 74 20 2a 2a 74 79 70 65 2d 6e 61 6d 65 2a 2a 20 63 72 69 74 65 72 69 61 20 61 72 | t.what.**type-name**.criteria.ar |
| 104a40 | 65 20 73 75 70 70 6f 72 74 65 64 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 69 63 6d 70 | e.supported..Match.based.on.icmp |
| 104a60 | 76 36 20 74 79 70 65 2d 6e 61 6d 65 20 63 72 69 74 65 72 69 61 2e 20 55 73 65 20 74 61 62 20 66 | v6.type-name.criteria..Use.tab.f |
| 104a80 | 6f 72 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 77 68 61 74 20 2a 2a 74 79 70 65 | or.information.about.what.**type |
| 104aa0 | 2d 6e 61 6d 65 2a 2a 20 63 72 69 74 65 72 69 61 20 61 72 65 20 73 75 70 70 6f 72 74 65 64 2e 00 | -name**.criteria.are.supported.. |
| 104ac0 | 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 69 63 6d 70 76 36 20 74 79 70 65 2d 6e 61 6d 65 2e | Match.based.on.icmpv6.type-name. |
| 104ae0 | 20 55 73 65 20 74 61 62 20 66 6f 72 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 77 | .Use.tab.for.information.about.w |
| 104b00 | 68 61 74 20 2a 2a 74 79 70 65 2d 6e 61 6d 65 2a 2a 20 63 72 69 74 65 72 69 61 20 61 72 65 20 73 | hat.**type-name**.criteria.are.s |
| 104b20 | 75 70 70 6f 72 74 65 64 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 69 63 6d 70 7c 69 63 | upported..Match.based.on.icmp|ic |
| 104b40 | 6d 70 76 36 20 63 6f 64 65 20 61 6e 64 20 74 79 70 65 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 | mpv6.code.and.type..Match.based. |
| 104b60 | 6f 6e 20 69 63 6d 70 7c 69 63 6d 70 76 36 20 74 79 70 65 2d 6e 61 6d 65 20 63 72 69 74 65 72 69 | on.icmp|icmpv6.type-name.criteri |
| 104b80 | 61 2e 20 55 73 65 20 74 61 62 20 66 6f 72 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 | a..Use.tab.for.information.about |
| 104ba0 | 20 77 68 61 74 20 2a 2a 74 79 70 65 2d 6e 61 6d 65 2a 2a 20 63 72 69 74 65 72 69 61 20 61 72 65 | .what.**type-name**.criteria.are |
| 104bc0 | 20 73 75 70 70 6f 72 74 65 64 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 69 63 6d 70 7c | .supported..Match.based.on.icmp| |
| 104be0 | 69 63 6d 70 76 36 20 74 79 70 65 2d 6e 61 6d 65 20 63 72 69 74 65 72 69 61 2e 20 55 73 65 20 74 | icmpv6.type-name.criteria..Use.t |
| 104c00 | 61 62 20 66 6f 72 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 77 68 61 74 20 74 79 | ab.for.information.about.what.ty |
| 104c20 | 70 65 2d 6e 61 6d 65 20 63 72 69 74 65 72 69 61 20 61 72 65 20 73 75 70 70 6f 72 74 65 64 2e 00 | pe-name.criteria.are.supported.. |
| 104c40 | 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 69 6e 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 | Match.based.on.inbound.interface |
| 104c60 | 20 67 72 6f 75 70 2e 20 50 72 65 70 65 6e 64 69 6e 67 20 63 68 61 72 61 63 74 65 72 20 60 60 21 | .group..Prepending.character.``! |
| 104c80 | 60 60 20 66 6f 72 20 69 6e 76 65 72 74 65 64 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 | ``.for.inverted.matching.criteri |
| 104ca0 | 61 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 | a.is.also.supportd..For.example. |
| 104cc0 | 60 60 21 49 46 41 43 45 5f 47 52 4f 55 50 60 60 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 | ``!IFACE_GROUP``.Match.based.on. |
| 104ce0 | 69 6e 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 20 67 72 6f 75 70 2e 20 50 72 65 70 65 6e 64 | inbound.interface.group..Prepend |
| 104d00 | 69 6e 67 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 66 6f 72 20 69 6e 76 65 72 74 65 64 | ing.character.``!``.for.inverted |
| 104d20 | 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f | .matching.criteria.is.also.suppo |
| 104d40 | 72 74 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 21 49 46 41 43 45 5f 47 52 4f 55 50 | rted..For.example.``!IFACE_GROUP |
| 104d60 | 60 60 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 69 6e 62 6f 75 6e 64 20 69 6e 74 65 72 66 | ``.Match.based.on.inbound.interf |
| 104d80 | 61 63 65 2e 20 57 69 6c 63 61 72 64 20 60 60 2a 60 60 20 63 61 6e 20 62 65 20 75 73 65 64 2e 20 | ace..Wilcard.``*``.can.be.used.. |
| 104da0 | 46 6f 72 20 65 78 61 6d 70 6c 65 3a 20 60 60 65 74 68 32 2a 60 60 00 4d 61 74 63 68 20 62 61 73 | For.example:.``eth2*``.Match.bas |
| 104dc0 | 65 64 20 6f 6e 20 69 6e 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 2e 20 57 69 6c 63 61 72 64 | ed.on.inbound.interface..Wilcard |
| 104de0 | 20 60 60 2a 60 60 20 63 61 6e 20 62 65 20 75 73 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 3a | .``*``.can.be.used..For.example: |
| 104e00 | 20 60 60 65 74 68 32 2a 60 60 2e 20 50 72 65 70 65 6e 64 69 6e 67 20 63 68 61 72 61 63 74 65 72 | .``eth2*``..Prepending.character |
| 104e20 | 20 60 60 21 60 60 20 66 6f 72 20 69 6e 76 65 72 74 65 64 20 6d 61 74 63 68 69 6e 67 20 63 72 69 | .``!``.for.inverted.matching.cri |
| 104e40 | 74 65 72 69 61 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 64 2e 20 46 6f 72 20 65 78 61 6d | teria.is.also.supportd..For.exam |
| 104e60 | 70 6c 65 20 60 60 21 65 74 68 32 60 60 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 69 6e 62 | ple.``!eth2``.Match.based.on.inb |
| 104e80 | 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 2e 20 57 69 6c 64 63 61 72 64 20 60 60 2a 60 60 20 63 | ound.interface..Wildcard.``*``.c |
| 104ea0 | 61 6e 20 62 65 20 75 73 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 3a 20 60 60 65 74 68 32 2a | an.be.used..For.example:.``eth2* |
| 104ec0 | 60 60 2e 20 50 72 65 70 65 6e 64 69 6e 67 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 66 | ``..Prepending.character.``!``.f |
| 104ee0 | 6f 72 20 69 6e 76 65 72 74 65 64 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 20 69 73 | or.inverted.matching.criteria.is |
| 104f00 | 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 21 | .also.supported..For.example.``! |
| 104f20 | 65 74 68 32 60 60 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 69 6e 62 6f 75 6e 64 20 69 6e | eth2``.Match.based.on.inbound.in |
| 104f40 | 74 65 72 66 61 63 65 2e 20 57 69 6c 64 63 61 72 64 20 60 60 2a 60 60 20 63 61 6e 20 62 65 20 75 | terface..Wildcard.``*``.can.be.u |
| 104f60 | 73 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 3a 20 60 60 65 74 68 32 2a 60 60 2e 20 50 72 65 | sed..For.example:.``eth2*``..Pre |
| 104f80 | 70 65 6e 64 69 6e 67 20 74 68 65 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 74 6f 20 69 | pending.the.character.``!``.to.i |
| 104fa0 | 6e 76 65 72 74 20 74 68 65 20 63 72 69 74 65 72 69 61 20 74 6f 20 6d 61 74 63 68 20 69 73 20 61 | nvert.the.criteria.to.match.is.a |
| 104fc0 | 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 21 65 74 | lso.supported..For.example.``!et |
| 104fe0 | 68 32 60 60 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 69 6e 62 6f 75 6e 64 2f 6f 75 74 62 | h2``.Match.based.on.inbound/outb |
| 105000 | 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 2e 20 57 69 6c 63 61 72 64 20 60 60 2a 60 60 20 63 61 | ound.interface..Wilcard.``*``.ca |
| 105020 | 6e 20 62 65 20 75 73 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 3a 20 60 60 65 74 68 32 2a 60 | n.be.used..For.example:.``eth2*` |
| 105040 | 60 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 69 70 73 65 63 20 63 72 69 74 65 72 69 61 2e | `.Match.based.on.ipsec.criteria. |
| 105060 | 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 69 70 73 65 63 2e 00 4d 61 74 63 68 20 62 61 73 | .Match.based.on.ipsec..Match.bas |
| 105080 | 65 64 20 6f 6e 20 6e 61 74 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 73 74 61 74 75 73 2e 00 4d 61 74 | ed.on.nat.connection.status..Mat |
| 1050a0 | 63 68 20 62 61 73 65 64 20 6f 6e 20 6f 75 74 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 20 67 | ch.based.on.outbound.interface.g |
| 1050c0 | 72 6f 75 70 2e 20 50 72 65 70 65 6e 64 69 6e 67 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 | roup..Prepending.character.``!`` |
| 1050e0 | 20 66 6f 72 20 69 6e 76 65 72 74 65 64 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 20 | .for.inverted.matching.criteria. |
| 105100 | 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 | is.also.supportd..For.example.`` |
| 105120 | 21 49 46 41 43 45 5f 47 52 4f 55 50 60 60 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 6f 75 | !IFACE_GROUP``.Match.based.on.ou |
| 105140 | 74 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 20 67 72 6f 75 70 2e 20 50 72 65 70 65 6e 64 69 | tbound.interface.group..Prependi |
| 105160 | 6e 67 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 66 6f 72 20 69 6e 76 65 72 74 65 64 20 | ng.character.``!``.for.inverted. |
| 105180 | 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 | matching.criteria.is.also.suppor |
| 1051a0 | 74 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 21 49 46 41 43 45 5f 47 52 4f 55 50 60 | ted..For.example.``!IFACE_GROUP` |
| 1051c0 | 60 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 6f 75 74 62 6f 75 6e 64 20 69 6e 74 65 72 66 | `.Match.based.on.outbound.interf |
| 1051e0 | 61 63 65 20 67 72 6f 75 70 2e 20 50 72 65 70 65 6e 64 69 6e 67 20 74 68 65 20 63 68 61 72 61 63 | ace.group..Prepending.the.charac |
| 105200 | 74 65 72 20 60 60 21 60 60 20 74 6f 20 69 6e 76 65 72 74 20 74 68 65 20 63 72 69 74 65 72 69 61 | ter.``!``.to.invert.the.criteria |
| 105220 | 20 74 6f 20 6d 61 74 63 68 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 20 46 6f 72 | .to.match.is.also.supported..For |
| 105240 | 20 65 78 61 6d 70 6c 65 20 60 60 21 49 46 41 43 45 5f 47 52 4f 55 50 60 60 00 4d 61 74 63 68 20 | .example.``!IFACE_GROUP``.Match. |
| 105260 | 62 61 73 65 64 20 6f 6e 20 6f 75 74 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 2e 20 57 69 6c | based.on.outbound.interface..Wil |
| 105280 | 63 61 72 64 20 60 60 2a 60 60 20 63 61 6e 20 62 65 20 75 73 65 64 2e 20 46 6f 72 20 65 78 61 6d | card.``*``.can.be.used..For.exam |
| 1052a0 | 70 6c 65 3a 20 60 60 65 74 68 32 2a 60 60 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 6f 75 | ple:.``eth2*``.Match.based.on.ou |
| 1052c0 | 74 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 2e 20 57 69 6c 63 61 72 64 20 60 60 2a 60 60 20 | tbound.interface..Wilcard.``*``. |
| 1052e0 | 63 61 6e 20 62 65 20 75 73 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 3a 20 60 60 65 74 68 32 | can.be.used..For.example:.``eth2 |
| 105300 | 2a 60 60 2e 20 50 72 65 70 65 6e 64 69 6e 67 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 | *``..Prepending.character.``!``. |
| 105320 | 66 6f 72 20 69 6e 76 65 72 74 65 64 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 20 69 | for.inverted.matching.criteria.i |
| 105340 | 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 21 | s.also.supportd..For.example.``! |
| 105360 | 65 74 68 32 60 60 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 6f 75 74 62 6f 75 6e 64 20 69 | eth2``.Match.based.on.outbound.i |
| 105380 | 6e 74 65 72 66 61 63 65 2e 20 57 69 6c 64 63 61 72 64 20 60 60 2a 60 60 20 63 61 6e 20 62 65 20 | nterface..Wildcard.``*``.can.be. |
| 1053a0 | 75 73 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 3a 20 60 60 65 74 68 32 2a 60 60 2e 20 50 72 | used..For.example:.``eth2*``..Pr |
| 1053c0 | 65 70 65 6e 64 69 6e 67 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 66 6f 72 20 69 6e 76 | epending.character.``!``.for.inv |
| 1053e0 | 65 72 74 65 64 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 20 69 73 20 61 6c 73 6f 20 | erted.matching.criteria.is.also. |
| 105400 | 73 75 70 70 6f 72 74 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 21 65 74 68 32 60 60 | supported..For.example.``!eth2`` |
| 105420 | 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 6f 75 74 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 | .Match.based.on.outbound.interfa |
| 105440 | 63 65 2e 20 57 69 6c 64 63 61 72 64 20 60 60 2a 60 60 20 63 61 6e 20 62 65 20 75 73 65 64 2e 20 | ce..Wildcard.``*``.can.be.used.. |
| 105460 | 46 6f 72 20 65 78 61 6d 70 6c 65 3a 20 60 60 65 74 68 32 2a 60 60 2e 20 50 72 65 70 65 6e 64 69 | For.example:.``eth2*``..Prependi |
| 105480 | 6e 67 20 74 68 65 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 74 6f 20 69 6e 76 65 72 74 | ng.the.character.``!``.to.invert |
| 1054a0 | 20 74 68 65 20 63 72 69 74 65 72 69 61 20 74 6f 20 6d 61 74 63 68 20 69 73 20 61 6c 73 6f 20 73 | .the.criteria.to.match.is.also.s |
| 1054c0 | 75 70 70 6f 72 74 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 21 65 74 68 32 60 60 00 | upported..For.example.``!eth2``. |
| 1054e0 | 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 70 61 63 6b 65 74 20 6c 65 6e 67 74 68 20 63 72 69 | Match.based.on.packet.length.cri |
| 105500 | 74 65 72 69 61 2e 20 4d 75 6c 74 69 70 6c 65 20 76 61 6c 75 65 73 20 66 72 6f 6d 20 31 20 74 6f | teria..Multiple.values.from.1.to |
| 105520 | 20 36 35 35 33 35 20 61 6e 64 20 72 61 6e 67 65 73 20 61 72 65 20 73 75 70 70 6f 72 74 65 64 2e | .65535.and.ranges.are.supported. |
| 105540 | 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 70 61 63 6b 65 74 20 74 79 70 65 20 63 72 69 74 | .Match.based.on.packet.type.crit |
| 105560 | 65 72 69 61 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 70 72 6f 74 6f 63 6f 6c 20 6e 75 | eria..Match.based.on.protocol.nu |
| 105580 | 6d 62 65 72 20 6f 72 20 6e 61 6d 65 20 61 73 20 64 65 66 69 6e 65 64 20 69 6e 20 60 60 2f 65 74 | mber.or.name.as.defined.in.``/et |
| 1055a0 | 63 2f 70 72 6f 74 6f 63 6f 6c 73 60 60 2e 20 53 70 65 63 69 61 6c 20 6e 61 6d 65 73 20 61 72 65 | c/protocols``..Special.names.are |
| 1055c0 | 20 60 60 61 6c 6c 60 60 20 66 6f 72 20 61 6c 6c 20 70 72 6f 74 6f 63 6f 6c 73 20 61 6e 64 20 60 | .``all``.for.all.protocols.and.` |
| 1055e0 | 60 74 63 70 5f 75 64 70 60 60 20 66 6f 72 20 74 63 70 20 61 6e 64 20 75 64 70 20 62 61 73 65 64 | `tcp_udp``.for.tcp.and.udp.based |
| 105600 | 20 70 61 63 6b 65 74 73 2e 20 54 68 65 20 60 60 21 60 60 20 6e 65 67 61 74 65 73 20 74 68 65 20 | .packets..The.``!``.negates.the. |
| 105620 | 73 65 6c 65 63 74 65 64 20 70 72 6f 74 6f 63 6f 6c 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f | selected.protocol..Match.based.o |
| 105640 | 6e 20 72 65 63 65 6e 74 6c 79 20 73 65 65 6e 20 73 6f 75 72 63 65 73 2e 00 4d 61 74 63 68 20 62 | n.recently.seen.sources..Match.b |
| 105660 | 61 73 65 64 20 6f 6e 20 73 6f 75 72 63 65 20 61 6e 64 2f 6f 72 20 64 65 73 74 69 6e 61 74 69 6f | ased.on.source.and/or.destinatio |
| 105680 | 6e 20 61 64 64 72 65 73 73 2e 20 54 68 69 73 20 69 73 20 73 69 6d 69 6c 61 72 20 74 6f 20 74 68 | n.address..This.is.similar.to.th |
| 1056a0 | 65 20 6e 65 74 77 6f 72 6b 20 67 72 6f 75 70 73 20 70 61 72 74 2c 20 62 75 74 20 68 65 72 65 20 | e.network.groups.part,.but.here. |
| 1056c0 | 79 6f 75 20 61 72 65 20 61 62 6c 65 20 74 6f 20 6e 65 67 61 74 65 20 74 68 65 20 6d 61 74 63 68 | you.are.able.to.negate.the.match |
| 1056e0 | 69 6e 67 20 61 64 64 72 65 73 73 65 73 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 74 68 | ing.addresses..Match.based.on.th |
| 105700 | 65 20 45 74 68 65 72 6e 65 74 20 74 79 70 65 20 6f 66 20 74 68 65 20 70 61 63 6b 65 74 20 77 68 | e.Ethernet.type.of.the.packet.wh |
| 105720 | 65 6e 20 69 74 20 69 73 20 56 4c 41 4e 20 74 61 67 67 65 64 2e 00 4d 61 74 63 68 20 62 61 73 65 | en.it.is.VLAN.tagged..Match.base |
| 105740 | 64 20 6f 6e 20 74 68 65 20 45 74 68 65 72 6e 65 74 20 74 79 70 65 20 6f 66 20 74 68 65 20 70 61 | d.on.the.Ethernet.type.of.the.pa |
| 105760 | 63 6b 65 74 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 69 6e 62 6f 75 6e 64 | cket..Match.based.on.the.inbound |
| 105780 | 20 69 6e 74 65 72 66 61 63 65 20 67 72 6f 75 70 2e 20 50 72 65 70 65 6e 64 69 6e 67 20 74 68 65 | .interface.group..Prepending.the |
| 1057a0 | 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 74 6f 20 69 6e 76 65 72 74 20 74 68 65 20 63 | .character.``!``.to.invert.the.c |
| 1057c0 | 72 69 74 65 72 69 61 20 74 6f 20 6d 61 74 63 68 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 | riteria.to.match.is.also.support |
| 1057e0 | 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 21 49 46 41 43 45 5f 47 52 4f 55 50 60 60 | ed..For.example.``!IFACE_GROUP`` |
| 105800 | 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 61 76 65 72 | .Match.based.on.the.maximum.aver |
| 105820 | 61 67 65 20 72 61 74 65 2c 20 73 70 65 63 69 66 69 65 64 20 61 73 20 2a 2a 69 6e 74 65 67 65 72 | age.rate,.specified.as.**integer |
| 105840 | 2f 75 6e 69 74 2a 2a 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 2a 2a 35 2f 6d 69 6e 75 74 65 73 | /unit**..For.example.**5/minutes |
| 105860 | 2a 2a 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 6e 75 | **.Match.based.on.the.maximum.nu |
| 105880 | 6d 62 65 72 20 6f 66 20 70 61 63 6b 65 74 73 20 74 6f 20 61 6c 6c 6f 77 20 69 6e 20 65 78 63 65 | mber.of.packets.to.allow.in.exce |
| 1058a0 | 73 73 20 6f 66 20 72 61 74 65 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 70 | ss.of.rate..Match.based.on.the.p |
| 1058c0 | 61 63 6b 65 74 20 6c 65 6e 67 74 68 2e 20 4d 75 6c 74 69 70 6c 65 20 76 61 6c 75 65 73 20 66 72 | acket.length..Multiple.values.fr |
| 1058e0 | 6f 6d 20 31 20 74 6f 20 36 35 35 33 35 20 61 6e 64 20 72 61 6e 67 65 73 20 61 72 65 20 73 75 70 | om.1.to.65535.and.ranges.are.sup |
| 105900 | 70 6f 72 74 65 64 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 70 61 63 6b 65 | ported..Match.based.on.the.packe |
| 105920 | 74 20 74 79 70 65 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 76 6c 61 6e 20 49 44 2e 20 | t.type..Match.based.on.vlan.ID.. |
| 105940 | 52 61 6e 67 65 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 00 4d 61 74 63 68 20 62 | Range.is.also.supported..Match.b |
| 105960 | 61 73 65 64 20 6f 6e 20 76 6c 61 6e 20 70 72 69 6f 72 69 74 79 28 70 63 70 29 2e 20 52 61 6e 67 | ased.on.vlan.priority(pcp)..Rang |
| 105980 | 65 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 00 4d 61 74 63 68 20 62 61 73 65 73 | e.is.also.supported..Match.bases |
| 1059a0 | 20 6f 6e 20 72 65 63 65 6e 74 6c 79 20 73 65 65 6e 20 73 6f 75 72 63 65 73 2e 00 4d 61 74 63 68 | .on.recently.seen.sources..Match |
| 1059c0 | 20 63 72 69 74 65 72 69 61 20 62 61 73 65 64 20 6f 6e 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 6d 61 | .criteria.based.on.connection.ma |
| 1059e0 | 72 6b 2e 00 4d 61 74 63 68 20 63 72 69 74 65 72 69 61 20 62 61 73 65 64 20 6f 6e 20 6e 61 74 20 | rk..Match.criteria.based.on.nat. |
| 105a00 | 63 6f 6e 6e 65 63 74 69 6f 6e 20 73 74 61 74 75 73 2e 00 4d 61 74 63 68 20 63 72 69 74 65 72 69 | connection.status..Match.criteri |
| 105a20 | 61 20 62 61 73 65 64 20 6f 6e 20 73 6f 75 72 63 65 20 61 6e 64 2f 6f 72 20 64 65 73 74 69 6e 61 | a.based.on.source.and/or.destina |
| 105a40 | 74 69 6f 6e 20 61 64 64 72 65 73 73 2e 20 54 68 69 73 20 69 73 20 73 69 6d 69 6c 61 72 20 74 6f | tion.address..This.is.similar.to |
| 105a60 | 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 67 72 6f 75 70 73 20 70 61 72 74 2c 20 62 75 74 20 68 65 | .the.network.groups.part,.but.he |
| 105a80 | 72 65 20 79 6f 75 20 61 72 65 20 61 62 6c 65 20 74 6f 20 6e 65 67 61 74 65 20 74 68 65 20 6d 61 | re.you.are.able.to.negate.the.ma |
| 105aa0 | 74 63 68 69 6e 67 20 61 64 64 72 65 73 73 65 73 2e 00 4d 61 74 63 68 20 63 72 69 74 65 72 69 61 | tching.addresses..Match.criteria |
| 105ac0 | 20 62 61 73 65 64 20 6f 6e 20 73 6f 75 72 63 65 20 61 6e 64 2f 6f 72 20 64 65 73 74 69 6e 61 74 | .based.on.source.and/or.destinat |
| 105ae0 | 69 6f 6e 20 6d 61 63 2d 61 64 64 72 65 73 73 2e 00 4d 61 74 63 68 20 64 6f 6d 61 69 6e 20 6e 61 | ion.mac-address..Match.domain.na |
| 105b00 | 6d 65 00 4d 61 74 63 68 20 66 69 72 65 77 61 6c 6c 20 6d 61 72 6b 20 76 61 6c 75 65 00 4d 61 74 | me.Match.firewall.mark.value.Mat |
| 105b20 | 63 68 20 68 6f 70 2d 6c 69 6d 69 74 20 70 61 72 61 6d 65 74 65 72 2c 20 77 68 65 72 65 20 27 65 | ch.hop-limit.parameter,.where.'e |
| 105b40 | 71 27 20 73 74 61 6e 64 73 20 66 6f 72 20 27 65 71 75 61 6c 27 3b 20 27 67 74 27 20 73 74 61 6e | q'.stands.for.'equal';.'gt'.stan |
| 105b60 | 64 73 20 66 6f 72 20 27 67 72 65 61 74 65 72 20 74 68 61 6e 27 2c 20 61 6e 64 20 27 6c 74 27 20 | ds.for.'greater.than',.and.'lt'. |
| 105b80 | 73 74 61 6e 64 73 20 66 6f 72 20 27 6c 65 73 73 20 74 68 61 6e 27 2e 00 4d 61 74 63 68 20 6c 6f | stands.for.'less.than'..Match.lo |
| 105ba0 | 63 61 6c 20 70 72 65 66 65 72 65 6e 63 65 2e 00 4d 61 74 63 68 20 72 6f 75 74 65 20 6d 65 74 72 | cal.preference..Match.route.metr |
| 105bc0 | 69 63 2e 00 4d 61 74 63 68 20 74 68 65 20 68 6f 70 2d 6c 69 6d 69 74 20 70 61 72 61 6d 65 74 65 | ic..Match.the.hop-limit.paramete |
| 105be0 | 72 2c 20 77 68 65 72 65 20 27 65 71 27 20 73 74 61 6e 64 73 20 66 6f 72 20 27 65 71 75 61 6c 27 | r,.where.'eq'.stands.for.'equal' |
| 105c00 | 3b 20 27 67 74 27 20 73 74 61 6e 64 73 20 66 6f 72 20 27 67 72 65 61 74 65 72 20 74 68 61 6e 27 | ;.'gt'.stands.for.'greater.than' |
| 105c20 | 2c 20 61 6e 64 20 27 6c 74 27 20 73 74 61 6e 64 73 20 66 6f 72 20 27 6c 65 73 73 20 74 68 61 6e | ,.and.'lt'.stands.for.'less.than |
| 105c40 | 27 2e 00 4d 61 74 63 68 20 74 68 65 20 74 69 6d 65 20 74 6f 20 6c 69 76 65 20 70 61 72 61 6d 65 | '..Match.the.time.to.live.parame |
| 105c60 | 74 65 72 2c 20 77 68 65 72 65 20 27 65 71 27 20 73 74 61 6e 64 73 20 66 6f 72 20 27 65 71 75 61 | ter,.where.'eq'.stands.for.'equa |
| 105c80 | 6c 27 3b 20 27 67 74 27 20 73 74 61 6e 64 73 20 66 6f 72 20 27 67 72 65 61 74 65 72 20 74 68 61 | l';.'gt'.stands.for.'greater.tha |
| 105ca0 | 6e 27 2c 20 61 6e 64 20 27 6c 74 27 20 73 74 61 6e 64 73 20 66 6f 72 20 27 6c 65 73 73 20 74 68 | n',.and.'lt'.stands.for.'less.th |
| 105cc0 | 61 6e 27 2e 00 4d 61 74 63 68 20 74 69 6d 65 20 74 6f 20 6c 69 76 65 20 70 61 72 61 6d 65 74 65 | an'..Match.time.to.live.paramete |
| 105ce0 | 72 2c 20 77 68 65 72 65 20 27 65 71 27 20 73 74 61 6e 64 73 20 66 6f 72 20 27 65 71 75 61 6c 27 | r,.where.'eq'.stands.for.'equal' |
| 105d00 | 3b 20 27 67 74 27 20 73 74 61 6e 64 73 20 66 6f 72 20 27 67 72 65 61 74 65 72 20 74 68 61 6e 27 | ;.'gt'.stands.for.'greater.than' |
| 105d20 | 2c 20 61 6e 64 20 27 6c 74 27 20 73 74 61 6e 64 73 20 66 6f 72 20 27 6c 65 73 73 20 74 68 61 6e | ,.and.'lt'.stands.for.'less.than |
| 105d40 | 27 2e 00 4d 61 74 63 68 20 77 68 65 6e 20 27 63 6f 75 6e 74 27 20 61 6d 6f 75 6e 74 20 6f 66 20 | '..Match.when.'count'.amount.of. |
| 105d60 | 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 61 72 65 20 73 65 65 6e 20 77 69 74 68 69 6e 20 27 74 69 6d | connections.are.seen.within.'tim |
| 105d80 | 65 27 2e 20 54 68 65 73 65 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 20 63 61 6e 20 | e'..These.matching.criteria.can. |
| 105da0 | 62 65 20 75 73 65 64 20 74 6f 20 62 6c 6f 63 6b 20 62 72 75 74 65 2d 66 6f 72 63 65 20 61 74 74 | be.used.to.block.brute-force.att |
| 105dc0 | 65 6d 70 74 73 2e 00 4d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 00 4d 61 74 63 68 69 6e | empts..Matching.criteria.Matchin |
| 105de0 | 67 20 74 72 61 66 66 69 63 00 4d 61 78 69 6d 75 6d 20 41 2d 4d 53 44 55 20 6c 65 6e 67 74 68 20 | g.traffic.Maximum.A-MSDU.length. |
| 105e00 | 33 38 33 39 20 28 64 65 66 61 75 6c 74 29 20 6f 72 20 37 39 33 35 20 6f 63 74 65 74 73 00 4d 61 | 3839.(default).or.7935.octets.Ma |
| 105e20 | 78 69 6d 75 6d 20 54 72 61 6e 73 6d 69 73 73 69 6f 6e 20 55 6e 69 74 20 28 4d 54 55 29 20 28 64 | ximum.Transmission.Unit.(MTU).(d |
| 105e40 | 65 66 61 75 6c 74 3a 20 2a 2a 31 34 33 36 2a 2a 29 00 4d 61 78 69 6d 75 6d 20 54 72 61 6e 73 6d | efault:.**1436**).Maximum.Transm |
| 105e60 | 69 73 73 69 6f 6e 20 55 6e 69 74 20 28 4d 54 55 29 20 28 64 65 66 61 75 6c 74 3a 20 2a 2a 31 34 | ission.Unit.(MTU).(default:.**14 |
| 105e80 | 39 32 2a 2a 29 00 4d 61 78 69 6d 75 6d 20 54 72 61 6e 73 6d 69 73 73 69 6f 6e 20 55 6e 69 74 20 | 92**).Maximum.Transmission.Unit. |
| 105ea0 | 28 4d 54 55 29 20 28 64 65 66 61 75 6c 74 3a 20 2a 2a 31 35 30 30 2a 2a 29 00 4d 61 78 69 6d 75 | (MTU).(default:.**1500**).Maximu |
| 105ec0 | 6d 20 61 63 63 65 70 74 65 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 72 61 74 65 20 28 65 2e 67 2e | m.accepted.connection.rate.(e.g. |
| 105ee0 | 20 31 2f 6d 69 6e 2c 20 36 30 2f 73 65 63 29 00 4d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f | .1/min,.60/sec).Maximum.number.o |
| 105f00 | 66 20 44 4e 53 20 63 61 63 68 65 20 65 6e 74 72 69 65 73 2e 20 31 20 6d 69 6c 6c 69 6f 6e 20 70 | f.DNS.cache.entries..1.million.p |
| 105f20 | 65 72 20 43 50 55 20 63 6f 72 65 20 77 69 6c 6c 20 67 65 6e 65 72 61 6c 6c 79 20 73 75 66 66 69 | er.CPU.core.will.generally.suffi |
| 105f40 | 63 65 20 66 6f 72 20 6d 6f 73 74 20 69 6e 73 74 61 6c 6c 61 74 69 6f 6e 73 2e 00 4d 61 78 69 6d | ce.for.most.installations..Maxim |
| 105f60 | 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 49 50 76 34 20 6e 61 6d 65 73 65 72 76 65 72 73 00 4d 61 | um.number.of.IPv4.nameservers.Ma |
| 105f80 | 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 61 75 74 68 65 6e 74 69 63 61 74 6f 72 20 70 72 | ximum.number.of.authenticator.pr |
| 105fa0 | 6f 63 65 73 73 65 73 20 74 6f 20 73 70 61 77 6e 2e 20 49 66 20 79 6f 75 20 73 74 61 72 74 20 74 | ocesses.to.spawn..If.you.start.t |
| 105fc0 | 6f 6f 20 66 65 77 20 53 71 75 69 64 20 77 69 6c 6c 20 68 61 76 65 20 74 6f 20 77 61 69 74 20 66 | oo.few.Squid.will.have.to.wait.f |
| 105fe0 | 6f 72 20 74 68 65 6d 20 74 6f 20 70 72 6f 63 65 73 73 20 61 20 62 61 63 6b 6c 6f 67 20 6f 66 20 | or.them.to.process.a.backlog.of. |
| 106000 | 63 72 65 64 65 6e 74 69 61 6c 20 76 65 72 69 66 69 63 61 74 69 6f 6e 73 2c 20 73 6c 6f 77 69 6e | credential.verifications,.slowin |
| 106020 | 67 20 69 74 20 64 6f 77 6e 2e 20 57 68 65 6e 20 70 61 73 73 77 6f 72 64 20 76 65 72 69 66 69 63 | g.it.down..When.password.verific |
| 106040 | 61 74 69 6f 6e 73 20 61 72 65 20 64 6f 6e 65 20 76 69 61 20 61 20 28 73 6c 6f 77 29 20 6e 65 74 | ations.are.done.via.a.(slow).net |
| 106060 | 77 6f 72 6b 20 79 6f 75 20 61 72 65 20 6c 69 6b 65 6c 79 20 74 6f 20 6e 65 65 64 20 6c 6f 74 73 | work.you.are.likely.to.need.lots |
| 106080 | 20 6f 66 20 61 75 74 68 65 6e 74 69 63 61 74 6f 72 20 70 72 6f 63 65 73 73 65 73 2e 00 4d 61 78 | .of.authenticator.processes..Max |
| 1060a0 | 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 63 6f 6e 63 75 72 72 65 6e 74 20 73 65 73 73 69 6f | imum.number.of.concurrent.sessio |
| 1060c0 | 6e 20 73 74 61 72 74 20 61 74 74 65 6d 70 74 73 00 4d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 | n.start.attempts.Maximum.number. |
| 1060e0 | 6f 66 20 73 74 61 74 69 6f 6e 73 20 61 6c 6c 6f 77 65 64 20 69 6e 20 73 74 61 74 69 6f 6e 20 74 | of.stations.allowed.in.station.t |
| 106100 | 61 62 6c 65 2e 20 4e 65 77 20 73 74 61 74 69 6f 6e 73 20 77 69 6c 6c 20 62 65 20 72 65 6a 65 63 | able..New.stations.will.be.rejec |
| 106120 | 74 65 64 20 61 66 74 65 72 20 74 68 65 20 73 74 61 74 69 6f 6e 20 74 61 62 6c 65 20 69 73 20 66 | ted.after.the.station.table.is.f |
| 106140 | 75 6c 6c 2e 20 49 45 45 45 20 38 30 32 2e 31 31 20 68 61 73 20 61 20 6c 69 6d 69 74 20 6f 66 20 | ull..IEEE.802.11.has.a.limit.of. |
| 106160 | 32 30 30 37 20 64 69 66 66 65 72 65 6e 74 20 61 73 73 6f 63 69 61 74 69 6f 6e 20 49 44 73 2c 20 | 2007.different.association.IDs,. |
| 106180 | 73 6f 20 74 68 69 73 20 6e 75 6d 62 65 72 20 73 68 6f 75 6c 64 20 6e 6f 74 20 62 65 20 6c 61 72 | so.this.number.should.not.be.lar |
| 1061a0 | 67 65 72 20 74 68 61 6e 20 74 68 61 74 2e 00 4d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 | ger.than.that..Maximum.number.of |
| 1061c0 | 20 74 69 6d 65 73 20 61 6e 20 65 78 70 69 72 65 64 20 72 65 63 6f 72 64 e2 80 99 73 20 54 54 4c | .times.an.expired.record...s.TTL |
| 1061e0 | 20 69 73 20 65 78 74 65 6e 64 65 64 20 62 79 20 33 30 73 20 77 68 65 6e 20 73 65 72 76 69 6e 67 | .is.extended.by.30s.when.serving |
| 106200 | 20 73 74 61 6c 65 2e 20 45 78 74 65 6e 73 69 6f 6e 20 6f 6e 6c 79 20 6f 63 63 75 72 73 20 69 66 | .stale..Extension.only.occurs.if |
| 106220 | 20 61 20 72 65 63 6f 72 64 20 63 61 6e 6e 6f 74 20 62 65 20 72 65 66 72 65 73 68 65 64 2e 20 41 | .a.record.cannot.be.refreshed..A |
| 106240 | 20 76 61 6c 75 65 20 6f 66 20 30 20 6d 65 61 6e 73 20 74 68 65 20 53 65 72 76 65 20 53 74 61 6c | .value.of.0.means.the.Serve.Stal |
| 106260 | 65 20 6d 65 63 68 61 6e 69 73 6d 20 69 73 20 6e 6f 74 20 75 73 65 64 2e 20 54 6f 20 61 6c 6c 6f | e.mechanism.is.not.used..To.allo |
| 106280 | 77 20 72 65 63 6f 72 64 73 20 62 65 63 6f 6d 69 6e 67 20 73 74 61 6c 65 20 74 6f 20 62 65 20 73 | w.records.becoming.stale.to.be.s |
| 1062a0 | 65 72 76 65 64 20 66 6f 72 20 61 6e 20 68 6f 75 72 2c 20 75 73 65 20 61 20 76 61 6c 75 65 20 6f | erved.for.an.hour,.use.a.value.o |
| 1062c0 | 66 20 31 32 30 2e 00 4d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 74 72 69 65 73 20 74 | f.120..Maximum.number.of.tries.t |
| 1062e0 | 6f 20 73 65 6e 64 20 41 63 63 65 73 73 2d 52 65 71 75 65 73 74 2f 41 63 63 6f 75 6e 74 69 6e 67 | o.send.Access-Request/Accounting |
| 106300 | 2d 52 65 71 75 65 73 74 20 71 75 65 72 69 65 73 00 4d 65 64 69 75 6d 00 4d 65 6d 62 65 72 20 49 | -Request.queries.Medium.Member.I |
| 106320 | 6e 74 65 72 66 61 63 65 73 00 4d 65 6d 62 65 72 20 69 6e 74 65 72 66 61 63 65 73 20 60 65 74 68 | nterfaces.Member.interfaces.`eth |
| 106340 | 31 60 20 61 6e 64 20 56 4c 41 4e 20 31 30 20 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 60 65 74 68 | 1`.and.VLAN.10.on.interface.`eth |
| 106360 | 32 60 00 4d 65 73 73 61 67 65 73 20 67 65 6e 65 72 61 74 65 64 20 69 6e 74 65 72 6e 61 6c 6c 79 | 2`.Messages.generated.internally |
| 106380 | 20 62 79 20 73 79 73 6c 6f 67 64 00 4d 65 74 72 69 73 20 76 65 72 73 69 6f 6e 2c 20 74 68 65 20 | .by.syslogd.Metris.version,.the. |
| 1063a0 | 64 65 66 61 75 6c 74 20 69 73 20 60 60 32 60 60 00 4d 69 63 72 6f 73 6f 66 74 20 57 69 6e 64 6f | default.is.``2``.Microsoft.Windo |
| 1063c0 | 77 73 20 28 31 30 2b 29 00 4d 69 63 72 6f 73 6f 66 74 20 57 69 6e 64 6f 77 73 20 65 78 70 65 63 | ws.(10+).Microsoft.Windows.expec |
| 1063e0 | 74 73 20 74 68 65 20 73 65 72 76 65 72 20 6e 61 6d 65 20 74 6f 20 62 65 20 61 6c 73 6f 20 75 73 | ts.the.server.name.to.be.also.us |
| 106400 | 65 64 20 69 6e 20 74 68 65 20 73 65 72 76 65 72 27 73 20 63 65 72 74 69 66 69 63 61 74 65 20 63 | ed.in.the.server's.certificate.c |
| 106420 | 6f 6d 6d 6f 6e 20 6e 61 6d 65 2c 20 73 6f 20 69 74 27 73 20 62 65 73 74 20 74 6f 20 75 73 65 20 | ommon.name,.so.it's.best.to.use. |
| 106440 | 74 68 69 73 20 44 4e 53 20 6e 61 6d 65 20 66 6f 72 20 79 6f 75 72 20 56 50 4e 20 63 6f 6e 6e 65 | this.DNS.name.for.your.VPN.conne |
| 106460 | 63 74 69 6f 6e 2e 00 4d 69 6e 20 61 6e 64 20 6d 61 78 20 69 6e 74 65 72 76 61 6c 73 20 62 65 74 | ction..Min.and.max.intervals.bet |
| 106480 | 77 65 65 6e 20 75 6e 73 6f 6c 69 63 69 74 65 64 20 6d 75 6c 74 69 63 61 73 74 20 52 41 73 00 4d | ween.unsolicited.multicast.RAs.M |
| 1064a0 | 69 6e 69 6d 75 6d 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 65 74 20 69 73 20 70 72 6f 76 69 | inimum.firewall.ruleset.is.provi |
| 1064c0 | 64 65 64 2c 20 77 68 69 63 68 20 69 6e 63 6c 75 64 65 73 20 73 6f 6d 65 20 66 69 6c 74 65 72 69 | ded,.which.includes.some.filteri |
| 1064e0 | 6e 67 20 72 75 6c 65 73 2c 20 61 6e 64 20 61 70 70 72 6f 70 72 69 61 74 65 20 72 75 6c 65 73 20 | ng.rules,.and.appropriate.rules. |
| 106500 | 66 6f 72 20 75 73 69 6e 67 20 66 6c 6f 77 74 61 62 6c 65 20 6f 66 66 6c 6f 61 64 20 63 61 70 61 | for.using.flowtable.offload.capa |
| 106520 | 62 69 6c 69 74 69 65 73 2e 00 4d 69 6e 75 6d 75 6d 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 | bilities..Minumum.firewall.rules |
| 106540 | 65 74 20 69 73 20 70 72 6f 76 69 64 65 64 2c 20 77 68 69 63 68 20 69 6e 63 6c 75 64 65 73 20 73 | et.is.provided,.which.includes.s |
| 106560 | 6f 6d 65 20 66 69 6c 74 65 72 69 6e 67 20 72 75 6c 65 73 2c 20 61 6e 64 20 61 70 70 72 6f 70 69 | ome.filtering.rules,.and.appropi |
| 106580 | 61 74 65 20 72 75 6c 65 73 20 66 6f 72 20 75 73 69 6e 67 20 66 6c 6f 77 74 61 62 6c 65 20 6f 66 | ate.rules.for.using.flowtable.of |
| 1065a0 | 66 6c 6f 61 64 20 63 61 70 61 62 69 6c 69 74 69 65 73 2e 00 4d 6f 64 69 66 79 20 74 68 65 20 6a | fload.capabilities..Modify.the.j |
| 1065c0 | 6f 69 6e 2f 70 72 75 6e 65 20 69 6e 74 65 72 76 61 6c 20 74 68 61 74 20 50 49 4d 20 75 73 65 73 | oin/prune.interval.that.PIM.uses |
| 1065e0 | 20 74 6f 20 74 68 65 20 6e 65 77 20 76 61 6c 75 65 2e 20 54 69 6d 65 20 69 73 20 73 70 65 63 69 | .to.the.new.value..Time.is.speci |
| 106600 | 66 69 65 64 20 69 6e 20 73 65 63 6f 6e 64 73 2e 00 4d 6f 64 69 66 79 20 74 68 65 20 74 69 6d 65 | fied.in.seconds..Modify.the.time |
| 106620 | 20 6f 75 74 20 76 61 6c 75 65 20 66 6f 72 20 61 20 53 2c 47 20 66 6c 6f 77 20 66 72 6f 6d 20 31 | .out.value.for.a.S,G.flow.from.1 |
| 106640 | 2d 36 35 35 33 35 20 73 65 63 6f 6e 64 73 20 61 74 20 3a 61 62 62 72 3a 60 52 50 20 28 52 65 6e | -65535.seconds.at.:abbr:`RP.(Ren |
| 106660 | 64 65 7a 76 6f 75 73 20 50 6f 69 6e 74 29 60 2e 20 54 68 65 20 6e 6f 72 6d 61 6c 20 6b 65 65 70 | dezvous.Point)`..The.normal.keep |
| 106680 | 61 6c 69 76 65 20 70 65 72 69 6f 64 20 66 6f 72 20 74 68 65 20 4b 41 54 28 53 2c 47 29 20 64 65 | alive.period.for.the.KAT(S,G).de |
| 1066a0 | 66 61 75 6c 74 73 20 74 6f 20 32 31 30 20 73 65 63 6f 6e 64 73 2e 20 48 6f 77 65 76 65 72 2c 20 | faults.to.210.seconds..However,. |
| 1066c0 | 61 74 20 74 68 65 20 3a 61 62 62 72 3a 60 52 50 20 28 52 65 6e 64 65 7a 76 6f 75 73 20 50 6f 69 | at.the.:abbr:`RP.(Rendezvous.Poi |
| 1066e0 | 6e 74 29 60 2c 20 74 68 65 20 6b 65 65 70 61 6c 69 76 65 20 70 65 72 69 6f 64 20 6d 75 73 74 20 | nt)`,.the.keepalive.period.must. |
| 106700 | 62 65 20 61 74 20 6c 65 61 73 74 20 74 68 65 20 52 65 67 69 73 74 65 72 5f 53 75 70 70 72 65 73 | be.at.least.the.Register_Suppres |
| 106720 | 73 69 6f 6e 5f 54 69 6d 65 2c 20 6f 72 20 74 68 65 20 52 50 20 6d 61 79 20 74 69 6d 65 20 6f 75 | sion_Time,.or.the.RP.may.time.ou |
| 106740 | 74 20 74 68 65 20 28 53 2c 47 29 20 73 74 61 74 65 20 62 65 66 6f 72 65 20 74 68 65 20 6e 65 78 | t.the.(S,G).state.before.the.nex |
| 106760 | 74 20 4e 75 6c 6c 2d 52 65 67 69 73 74 65 72 20 61 72 72 69 76 65 73 2e 20 54 68 75 73 2c 20 74 | t.Null-Register.arrives..Thus,.t |
| 106780 | 68 65 20 4b 41 54 28 53 2c 47 29 20 69 73 20 73 65 74 20 74 6f 20 6d 61 78 28 4b 65 65 70 61 6c | he.KAT(S,G).is.set.to.max(Keepal |
| 1067a0 | 69 76 65 5f 50 65 72 69 6f 64 2c 20 52 50 5f 4b 65 65 70 61 6c 69 76 65 5f 50 65 72 69 6f 64 29 | ive_Period,.RP_Keepalive_Period) |
| 1067c0 | 20 77 68 65 6e 20 61 20 52 65 67 69 73 74 65 72 2d 53 74 6f 70 20 69 73 20 73 65 6e 74 2e 00 4d | .when.a.Register-Stop.is.sent..M |
| 1067e0 | 6f 64 69 66 79 20 74 68 65 20 74 69 6d 65 20 6f 75 74 20 76 61 6c 75 65 20 66 6f 72 20 61 20 53 | odify.the.time.out.value.for.a.S |
| 106800 | 2c 47 20 66 6c 6f 77 20 66 72 6f 6d 20 31 2d 36 35 35 33 35 20 73 65 63 6f 6e 64 73 2e 20 49 66 | ,G.flow.from.1-65535.seconds..If |
| 106820 | 20 63 68 6f 6f 73 69 6e 67 20 61 20 76 61 6c 75 65 20 62 65 6c 6f 77 20 33 31 20 73 65 63 6f 6e | .choosing.a.value.below.31.secon |
| 106840 | 64 73 20 62 65 20 61 77 61 72 65 20 74 68 61 74 20 73 6f 6d 65 20 68 61 72 64 77 61 72 65 20 70 | ds.be.aware.that.some.hardware.p |
| 106860 | 6c 61 74 66 6f 72 6d 73 20 63 61 6e 6e 6f 74 20 73 65 65 20 64 61 74 61 20 66 6c 6f 77 69 6e 67 | latforms.cannot.see.data.flowing |
| 106880 | 20 69 6e 20 62 65 74 74 65 72 20 74 68 61 6e 20 33 30 20 73 65 63 6f 6e 64 20 63 68 75 6e 6b 73 | .in.better.than.30.second.chunks |
| 1068a0 | 2e 00 4d 6f 64 69 66 79 20 74 68 65 20 74 69 6d 65 20 74 68 61 74 20 70 69 6d 20 77 69 6c 6c 20 | ..Modify.the.time.that.pim.will. |
| 1068c0 | 72 65 67 69 73 74 65 72 20 73 75 70 70 72 65 73 73 20 61 20 46 48 52 20 77 69 6c 6c 20 73 65 6e | register.suppress.a.FHR.will.sen |
| 1068e0 | 64 20 72 65 67 69 73 74 65 72 20 6e 6f 74 69 66 69 63 61 74 69 6f 6e 73 20 74 6f 20 74 68 65 20 | d.register.notifications.to.the. |
| 106900 | 6b 65 72 6e 65 6c 2e 00 4d 6f 6e 69 74 6f 72 20 6d 6f 64 65 20 6c 65 74 73 20 74 68 65 20 73 79 | kernel..Monitor.mode.lets.the.sy |
| 106920 | 73 74 65 6d 20 70 61 73 73 69 76 65 6c 79 20 6d 6f 6e 69 74 6f 72 20 77 69 72 65 6c 65 73 73 20 | stem.passively.monitor.wireless. |
| 106940 | 74 72 61 66 66 69 63 00 4d 6f 6e 69 74 6f 72 2c 20 74 68 65 20 73 79 73 74 65 6d 20 70 61 73 73 | traffic.Monitor,.the.system.pass |
| 106960 | 69 76 65 6c 79 20 6d 6f 6e 69 74 6f 72 73 20 61 6e 79 20 6b 69 6e 64 20 6f 66 20 77 69 72 65 6c | ively.monitors.any.kind.of.wirel |
| 106980 | 65 73 73 20 74 72 61 66 66 69 63 00 4d 6f 6e 69 74 6f 72 69 6e 67 00 4d 6f 6e 69 74 6f 72 69 6e | ess.traffic.Monitoring.Monitorin |
| 1069a0 | 67 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 20 77 69 74 68 20 60 60 74 65 6c 65 67 72 61 66 60 | g.functionality.with.``telegraf` |
| 1069c0 | 60 20 61 6e 64 20 60 60 49 6e 66 6c 75 78 44 42 20 32 60 60 20 69 73 20 70 72 6f 76 69 64 65 64 | `.and.``InfluxDB.2``.is.provided |
| 1069e0 | 2e 20 54 65 6c 65 67 72 61 66 20 69 73 20 74 68 65 20 6f 70 65 6e 20 73 6f 75 72 63 65 20 73 65 | ..Telegraf.is.the.open.source.se |
| 106a00 | 72 76 65 72 20 61 67 65 6e 74 20 74 6f 20 68 65 6c 70 20 79 6f 75 20 63 6f 6c 6c 65 63 74 20 6d | rver.agent.to.help.you.collect.m |
| 106a20 | 65 74 72 69 63 73 2c 20 65 76 65 6e 74 73 20 61 6e 64 20 6c 6f 67 73 20 66 72 6f 6d 20 79 6f 75 | etrics,.events.and.logs.from.you |
| 106a40 | 72 20 72 6f 75 74 65 72 73 2e 00 4d 6f 72 65 20 64 65 74 61 69 6c 73 20 61 62 6f 75 74 20 74 68 | r.routers..More.details.about.th |
| 106a60 | 65 20 49 50 73 65 63 20 61 6e 64 20 56 54 49 20 69 73 73 75 65 20 61 6e 64 20 6f 70 74 69 6f 6e | e.IPsec.and.VTI.issue.and.option |
| 106a80 | 20 64 69 73 61 62 6c 65 2d 72 6f 75 74 65 2d 61 75 74 6f 69 6e 73 74 61 6c 6c 20 68 74 74 70 73 | .disable-route-autoinstall.https |
| 106aa0 | 3a 2f 2f 62 6c 6f 67 2e 76 79 6f 73 2e 69 6f 2f 76 79 6f 73 2d 31 2d 64 6f 74 2d 32 2d 30 2d 64 | ://blog.vyos.io/vyos-1-dot-2-0-d |
| 106ac0 | 65 76 65 6c 6f 70 6d 65 6e 74 2d 6e 65 77 73 2d 69 6e 2d 6a 75 6c 79 00 4d 6f 73 74 20 6f 70 65 | evelopment-news-in-july.Most.ope |
| 106ae0 | 72 61 74 69 6e 67 20 73 79 73 74 65 6d 73 20 69 6e 63 6c 75 64 65 20 6e 61 74 69 76 65 20 63 6c | rating.systems.include.native.cl |
| 106b00 | 69 65 6e 74 20 73 75 70 70 6f 72 74 20 66 6f 72 20 49 50 73 65 63 20 49 4b 45 76 32 20 56 50 4e | ient.support.for.IPsec.IKEv2.VPN |
| 106b20 | 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2c 20 61 6e 64 20 6f 74 68 65 72 73 20 74 79 70 69 63 61 6c | .connections,.and.others.typical |
| 106b40 | 6c 79 20 68 61 76 65 20 61 6e 20 61 70 70 20 6f 72 20 61 64 64 2d 6f 6e 20 70 61 63 6b 61 67 65 | ly.have.an.app.or.add-on.package |
| 106b60 | 20 77 68 69 63 68 20 61 64 64 73 20 74 68 65 20 63 61 70 61 62 69 6c 69 74 79 2e 20 54 68 69 73 | .which.adds.the.capability..This |
| 106b80 | 20 73 65 63 74 69 6f 6e 20 63 6f 76 65 72 73 20 49 50 73 65 63 20 49 4b 45 76 32 20 63 6c 69 65 | .section.covers.IPsec.IKEv2.clie |
| 106ba0 | 6e 74 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 6f 72 20 57 69 6e 64 6f 77 73 20 31 30 2e | nt.configuration.for.Windows.10. |
| 106bc0 | 00 4d 6f 75 6e 74 20 61 20 76 6f 6c 75 6d 65 20 69 6e 74 6f 20 74 68 65 20 63 6f 6e 74 61 69 6e | .Mount.a.volume.into.the.contain |
| 106be0 | 65 72 00 4d 75 6c 74 69 00 4d 75 6c 74 69 2d 63 6c 69 65 6e 74 20 73 65 72 76 65 72 20 69 73 20 | er.Multi.Multi-client.server.is. |
| 106c00 | 74 68 65 20 6d 6f 73 74 20 70 6f 70 75 6c 61 72 20 4f 70 65 6e 56 50 4e 20 6d 6f 64 65 20 6f 6e | the.most.popular.OpenVPN.mode.on |
| 106c20 | 20 72 6f 75 74 65 72 73 2e 20 49 74 20 61 6c 77 61 79 73 20 75 73 65 73 20 78 2e 35 30 39 20 61 | .routers..It.always.uses.x.509.a |
| 106c40 | 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 61 6e 64 20 74 68 65 72 65 66 6f 72 65 20 72 65 71 75 | uthentication.and.therefore.requ |
| 106c60 | 69 72 65 73 20 61 20 50 4b 49 20 73 65 74 75 70 2e 20 52 65 66 65 72 20 74 68 69 73 20 74 6f 70 | ires.a.PKI.setup..Refer.this.top |
| 106c80 | 69 63 20 3a 72 65 66 3a 60 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 70 6b 69 2f 69 6e 64 65 78 | ic.:ref:`configuration/pki/index |
| 106ca0 | 3a 70 6b 69 60 20 74 6f 20 67 65 6e 65 72 61 74 65 20 61 20 43 41 20 63 65 72 74 69 66 69 63 61 | :pki`.to.generate.a.CA.certifica |
| 106cc0 | 74 65 2c 20 61 20 73 65 72 76 65 72 20 63 65 72 74 69 66 69 63 61 74 65 20 61 6e 64 20 6b 65 79 | te,.a.server.certificate.and.key |
| 106ce0 | 2c 20 61 20 63 65 72 74 69 66 69 63 61 74 65 20 72 65 76 6f 63 61 74 69 6f 6e 20 6c 69 73 74 2c | ,.a.certificate.revocation.list, |
| 106d00 | 20 61 20 44 69 66 66 69 65 2d 48 65 6c 6c 6d 61 6e 20 6b 65 79 20 65 78 63 68 61 6e 67 65 20 70 | .a.Diffie-Hellman.key.exchange.p |
| 106d20 | 61 72 61 6d 65 74 65 72 73 20 66 69 6c 65 2e 20 59 6f 75 20 64 6f 20 6e 6f 74 20 6e 65 65 64 20 | arameters.file..You.do.not.need. |
| 106d40 | 63 6c 69 65 6e 74 20 63 65 72 74 69 66 69 63 61 74 65 73 20 61 6e 64 20 6b 65 79 73 20 66 6f 72 | client.certificates.and.keys.for |
| 106d60 | 20 74 68 65 20 73 65 72 76 65 72 20 73 65 74 75 70 2e 00 4d 75 6c 74 69 2d 63 6c 69 65 6e 74 20 | .the.server.setup..Multi-client. |
| 106d80 | 73 65 72 76 65 72 20 69 73 20 74 68 65 20 6d 6f 73 74 20 70 6f 70 75 6c 61 72 20 4f 70 65 6e 56 | server.is.the.most.popular.OpenV |
| 106da0 | 50 4e 20 6d 6f 64 65 20 6f 6e 20 72 6f 75 74 65 72 73 2e 20 49 74 20 61 6c 77 61 79 73 20 75 73 | PN.mode.on.routers..It.always.us |
| 106dc0 | 65 73 20 78 2e 35 30 39 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 61 6e 64 20 74 68 65 72 | es.x.509.authentication.and.ther |
| 106de0 | 65 66 6f 72 65 20 72 65 71 75 69 72 65 73 20 61 20 50 4b 49 20 73 65 74 75 70 2e 20 52 65 66 65 | efore.requires.a.PKI.setup..Refe |
| 106e00 | 72 20 74 68 69 73 20 74 6f 70 69 63 20 3a 72 65 66 3a 60 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e | r.this.topic.:ref:`configuration |
| 106e20 | 2f 70 6b 69 2f 69 6e 64 65 78 3a 70 6b 69 60 20 74 6f 20 67 65 6e 65 72 61 74 65 20 61 20 43 41 | /pki/index:pki`.to.generate.a.CA |
| 106e40 | 20 63 65 72 74 69 66 69 63 61 74 65 2c 20 61 20 73 65 72 76 65 72 20 63 65 72 74 69 66 69 63 61 | .certificate,.a.server.certifica |
| 106e60 | 74 65 20 61 6e 64 20 6b 65 79 2c 20 61 20 63 65 72 74 69 66 69 63 61 74 65 20 72 65 76 6f 63 61 | te.and.key,.a.certificate.revoca |
| 106e80 | 74 69 6f 6e 20 6c 69 73 74 2c 20 61 6e 64 20 61 20 44 69 66 66 69 65 2d 48 65 6c 6c 6d 61 6e 20 | tion.list,.and.a.Diffie-Hellman. |
| 106ea0 | 6b 65 79 20 65 78 63 68 61 6e 67 65 20 70 61 72 61 6d 65 74 65 72 73 20 66 69 6c 65 2e 20 59 6f | key.exchange.parameters.file..Yo |
| 106ec0 | 75 20 64 6f 20 6e 6f 74 20 6e 65 65 64 20 63 6c 69 65 6e 74 20 63 65 72 74 69 66 69 63 61 74 65 | u.do.not.need.client.certificate |
| 106ee0 | 73 20 61 6e 64 20 6b 65 79 73 20 66 6f 72 20 74 68 65 20 73 65 72 76 65 72 20 73 65 74 75 70 2e | s.and.keys.for.the.server.setup. |
| 106f00 | 00 4d 75 6c 74 69 2d 66 61 63 74 6f 72 20 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 00 4d 75 6c | .Multi-factor.Authentication.Mul |
| 106f20 | 74 69 2d 68 6f 6d 65 64 2e 20 49 6e 20 61 20 6d 75 6c 74 69 2d 68 6f 6d 65 64 20 6e 65 74 77 6f | ti-homed..In.a.multi-homed.netwo |
| 106f40 | 72 6b 20 65 6e 76 69 72 6f 6e 6d 65 6e 74 2c 20 74 68 65 20 4e 41 54 36 36 20 64 65 76 69 63 65 | rk.environment,.the.NAT66.device |
| 106f60 | 20 63 6f 6e 6e 65 63 74 73 20 74 6f 20 61 6e 20 69 6e 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b | .connects.to.an.internal.network |
| 106f80 | 20 61 6e 64 20 73 69 6d 75 6c 74 61 6e 65 6f 75 73 6c 79 20 63 6f 6e 6e 65 63 74 73 20 74 6f 20 | .and.simultaneously.connects.to. |
| 106fa0 | 64 69 66 66 65 72 65 6e 74 20 65 78 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 73 2e 20 41 64 64 | different.external.networks..Add |
| 106fc0 | 72 65 73 73 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 | ress.translation.can.be.configur |
| 106fe0 | 65 64 20 6f 6e 20 65 61 63 68 20 65 78 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 20 73 69 64 65 | ed.on.each.external.network.side |
| 107000 | 20 69 6e 74 65 72 66 61 63 65 20 6f 66 20 74 68 65 20 4e 41 54 36 36 20 64 65 76 69 63 65 20 74 | .interface.of.the.NAT66.device.t |
| 107020 | 6f 20 63 6f 6e 76 65 72 74 20 74 68 65 20 73 61 6d 65 20 69 6e 74 65 72 6e 61 6c 20 6e 65 74 77 | o.convert.the.same.internal.netw |
| 107040 | 6f 72 6b 20 61 64 64 72 65 73 73 20 69 6e 74 6f 20 64 69 66 66 65 72 65 6e 74 20 65 78 74 65 72 | ork.address.into.different.exter |
| 107060 | 6e 61 6c 20 6e 65 74 77 6f 72 6b 20 61 64 64 72 65 73 73 65 73 2c 20 61 6e 64 20 72 65 61 6c 69 | nal.network.addresses,.and.reali |
| 107080 | 7a 65 20 74 68 65 20 6d 61 70 70 69 6e 67 20 6f 66 20 74 68 65 20 73 61 6d 65 20 69 6e 74 65 72 | ze.the.mapping.of.the.same.inter |
| 1070a0 | 6e 61 6c 20 61 64 64 72 65 73 73 20 74 6f 20 6d 75 6c 74 69 70 6c 65 20 65 78 74 65 72 6e 61 6c | nal.address.to.multiple.external |
| 1070c0 | 20 61 64 64 72 65 73 73 65 73 2e 00 4d 75 6c 74 69 3a 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 | .addresses..Multi:.can.be.specif |
| 1070e0 | 69 65 64 20 6d 75 6c 74 69 70 6c 65 20 74 69 6d 65 73 2e 00 4d 75 6c 74 69 63 61 73 74 00 4d 75 | ied.multiple.times..Multicast.Mu |
| 107100 | 6c 74 69 63 61 73 74 20 44 4e 53 20 75 73 65 73 20 74 68 65 20 32 32 34 2e 30 2e 30 2e 32 35 31 | lticast.DNS.uses.the.224.0.0.251 |
| 107120 | 20 61 64 64 72 65 73 73 2c 20 77 68 69 63 68 20 69 73 20 22 61 64 6d 69 6e 69 73 74 72 61 74 69 | .address,.which.is."administrati |
| 107140 | 76 65 6c 79 20 73 63 6f 70 65 64 22 20 61 6e 64 20 64 6f 65 73 20 6e 6f 74 20 6c 65 61 76 65 20 | vely.scoped".and.does.not.leave. |
| 107160 | 74 68 65 20 73 75 62 6e 65 74 2e 20 49 74 20 72 65 74 72 61 6e 73 6d 69 74 73 20 6d 44 4e 53 20 | the.subnet..It.retransmits.mDNS. |
| 107180 | 70 61 63 6b 65 74 73 20 66 72 6f 6d 20 6f 6e 65 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 6f 74 | packets.from.one.interface.to.ot |
| 1071a0 | 68 65 72 20 69 6e 74 65 72 66 61 63 65 73 2e 20 54 68 69 73 20 65 6e 61 62 6c 65 73 20 73 75 70 | her.interfaces..This.enables.sup |
| 1071c0 | 70 6f 72 74 20 66 6f 72 20 65 2e 67 2e 20 41 70 70 6c 65 20 41 69 72 70 6c 61 79 20 64 65 76 69 | port.for.e.g..Apple.Airplay.devi |
| 1071e0 | 63 65 73 20 61 63 72 6f 73 73 20 6d 75 6c 74 69 70 6c 65 20 56 4c 41 4e 73 2e 00 4d 75 6c 74 69 | ces.across.multiple.VLANs..Multi |
| 107200 | 63 61 73 74 20 44 4e 53 20 75 73 65 73 20 74 68 65 20 72 65 73 65 72 76 65 64 20 61 64 64 72 65 | cast.DNS.uses.the.reserved.addre |
| 107220 | 73 73 20 60 60 32 32 34 2e 30 2e 30 2e 32 35 31 60 60 2c 20 77 68 69 63 68 20 69 73 20 60 22 61 | ss.``224.0.0.251``,.which.is.`"a |
| 107240 | 64 6d 69 6e 69 73 74 72 61 74 69 76 65 6c 79 20 73 63 6f 70 65 64 22 60 20 61 6e 64 20 64 6f 65 | dministratively.scoped"`.and.doe |
| 107260 | 73 20 6e 6f 74 20 6c 65 61 76 65 20 74 68 65 20 73 75 62 6e 65 74 2e 20 6d 44 4e 53 20 72 65 70 | s.not.leave.the.subnet..mDNS.rep |
| 107280 | 65 61 74 65 72 20 72 65 74 72 61 6e 73 6d 69 74 73 20 6d 44 4e 53 20 70 61 63 6b 65 74 73 20 66 | eater.retransmits.mDNS.packets.f |
| 1072a0 | 72 6f 6d 20 6f 6e 65 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 6f 74 68 65 72 20 69 6e 74 65 72 | rom.one.interface.to.other.inter |
| 1072c0 | 66 61 63 65 73 2e 20 54 68 69 73 20 65 6e 61 62 6c 65 73 20 73 75 70 70 6f 72 74 20 66 6f 72 20 | faces..This.enables.support.for. |
| 1072e0 | 64 65 76 69 63 65 73 20 75 73 69 6e 67 20 6d 44 4e 53 20 64 69 73 63 6f 76 65 72 79 20 28 6c 69 | devices.using.mDNS.discovery.(li |
| 107300 | 6b 65 20 6e 65 74 77 6f 72 6b 20 70 72 69 6e 74 65 72 73 2c 20 41 70 70 6c 65 20 41 69 72 70 6c | ke.network.printers,.Apple.Airpl |
| 107320 | 61 79 2c 20 43 68 72 6f 6d 65 63 61 73 74 2c 20 76 61 72 69 6f 75 73 20 49 50 20 62 61 73 65 64 | ay,.Chromecast,.various.IP.based |
| 107340 | 20 68 6f 6d 65 2d 61 75 74 6f 6d 61 74 69 6f 6e 20 64 65 76 69 63 65 73 20 65 74 63 29 20 61 63 | .home-automation.devices.etc).ac |
| 107360 | 72 6f 73 73 20 6d 75 6c 74 69 70 6c 65 20 56 4c 41 4e 73 2e 00 4d 75 6c 74 69 63 61 73 74 20 56 | ross.multiple.VLANs..Multicast.V |
| 107380 | 58 4c 41 4e 00 4d 75 6c 74 69 63 61 73 74 20 67 72 6f 75 70 20 61 64 64 72 65 73 73 20 66 6f 72 | XLAN.Multicast.group.address.for |
| 1073a0 | 20 56 58 4c 41 4e 20 69 6e 74 65 72 66 61 63 65 2e 20 56 58 4c 41 4e 20 74 75 6e 6e 65 6c 73 20 | .VXLAN.interface..VXLAN.tunnels. |
| 1073c0 | 63 61 6e 20 62 65 20 62 75 69 6c 74 20 65 69 74 68 65 72 20 76 69 61 20 4d 75 6c 74 69 63 61 73 | can.be.built.either.via.Multicas |
| 1073e0 | 74 20 6f 72 20 76 69 61 20 55 6e 69 63 61 73 74 2e 00 4d 75 6c 74 69 63 61 73 74 20 67 72 6f 75 | t.or.via.Unicast..Multicast.grou |
| 107400 | 70 20 61 64 64 72 65 73 73 20 66 6f 72 20 74 68 65 20 56 58 4c 41 4e 20 69 6e 74 65 72 66 61 63 | p.address.for.the.VXLAN.interfac |
| 107420 | 65 2e 20 56 58 4c 41 4e 20 74 75 6e 6e 65 6c 73 20 63 61 6e 20 62 65 20 62 75 69 6c 74 20 65 69 | e..VXLAN.tunnels.can.be.built.ei |
| 107440 | 74 68 65 72 20 76 69 61 20 4d 75 6c 74 69 63 61 73 74 20 6f 72 20 76 69 61 20 55 6e 69 63 61 73 | ther.via.Multicast.or.via.Unicas |
| 107460 | 74 2e 00 4d 75 6c 74 69 63 61 73 74 20 67 72 6f 75 70 20 74 6f 20 75 73 65 20 66 6f 72 20 73 79 | t..Multicast.group.to.use.for.sy |
| 107480 | 6e 63 69 6e 67 20 63 6f 6e 6e 74 72 61 63 6b 20 65 6e 74 72 69 65 73 2e 00 4d 75 6c 74 69 63 61 | ncing.conntrack.entries..Multica |
| 1074a0 | 73 74 20 72 65 63 65 69 76 65 72 73 20 77 69 6c 6c 20 74 61 6c 6b 20 49 47 4d 50 20 74 6f 20 74 | st.receivers.will.talk.IGMP.to.t |
| 1074c0 | 68 65 69 72 20 6c 6f 63 61 6c 20 72 6f 75 74 65 72 2c 20 73 6f 2c 20 62 65 73 69 64 65 73 20 68 | heir.local.router,.so,.besides.h |
| 1074e0 | 61 76 69 6e 67 20 50 49 4d 20 63 6f 6e 66 69 67 75 72 65 64 20 69 6e 20 65 76 65 72 79 20 72 6f | aving.PIM.configured.in.every.ro |
| 107500 | 75 74 65 72 2c 20 49 47 4d 50 20 6d 75 73 74 20 61 6c 73 6f 20 62 65 20 63 6f 6e 66 69 67 75 72 | uter,.IGMP.must.also.be.configur |
| 107520 | 65 64 20 69 6e 20 61 6e 79 20 72 6f 75 74 65 72 20 77 68 65 72 65 20 74 68 65 72 65 20 63 6f 75 | ed.in.any.router.where.there.cou |
| 107540 | 6c 64 20 62 65 20 61 20 6d 75 6c 74 69 63 61 73 74 20 72 65 63 65 69 76 65 72 20 6c 6f 63 61 6c | ld.be.a.multicast.receiver.local |
| 107560 | 6c 79 20 63 6f 6e 6e 65 63 74 65 64 2e 00 4d 75 6c 74 69 63 61 73 74 20 72 65 63 65 69 76 65 72 | ly.connected..Multicast.receiver |
| 107580 | 73 20 77 69 6c 6c 20 74 61 6c 6b 20 4d 4c 44 20 74 6f 20 74 68 65 69 72 20 6c 6f 63 61 6c 20 72 | s.will.talk.MLD.to.their.local.r |
| 1075a0 | 6f 75 74 65 72 2c 20 73 6f 2c 20 62 65 73 69 64 65 73 20 68 61 76 69 6e 67 20 50 49 4d 76 36 20 | outer,.so,.besides.having.PIMv6. |
| 1075c0 | 63 6f 6e 66 69 67 75 72 65 64 20 69 6e 20 65 76 65 72 79 20 72 6f 75 74 65 72 2c 20 4d 4c 44 20 | configured.in.every.router,.MLD. |
| 1075e0 | 6d 75 73 74 20 61 6c 73 6f 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 69 6e 20 61 6e 79 20 72 | must.also.be.configured.in.any.r |
| 107600 | 6f 75 74 65 72 20 77 68 65 72 65 20 74 68 65 72 65 20 63 6f 75 6c 64 20 62 65 20 61 20 6d 75 6c | outer.where.there.could.be.a.mul |
| 107620 | 74 69 63 61 73 74 20 72 65 63 65 69 76 65 72 20 6c 6f 63 61 6c 6c 79 20 63 6f 6e 6e 65 63 74 65 | ticast.receiver.locally.connecte |
| 107640 | 64 2e 00 4d 75 6c 74 69 63 61 73 74 2d 72 6f 75 74 69 6e 67 20 69 73 20 72 65 71 75 69 72 65 64 | d..Multicast-routing.is.required |
| 107660 | 20 66 6f 72 20 74 68 65 20 6c 65 61 76 65 73 20 74 6f 20 66 6f 72 77 61 72 64 20 74 72 61 66 66 | .for.the.leaves.to.forward.traff |
| 107680 | 69 63 20 62 65 74 77 65 65 6e 20 65 61 63 68 20 6f 74 68 65 72 20 69 6e 20 61 20 6d 6f 72 65 20 | ic.between.each.other.in.a.more. |
| 1076a0 | 73 63 61 6c 61 62 6c 65 20 77 61 79 2e 20 54 68 69 73 20 61 6c 73 6f 20 72 65 71 75 69 72 65 73 | scalable.way..This.also.requires |
| 1076c0 | 20 50 49 4d 20 74 6f 20 62 65 20 65 6e 61 62 6c 65 64 20 74 6f 77 61 72 64 73 20 74 68 65 20 6c | .PIM.to.be.enabled.towards.the.l |
| 1076e0 | 65 61 76 65 73 20 73 6f 20 74 68 61 74 20 74 68 65 20 53 70 69 6e 65 20 63 61 6e 20 6c 65 61 72 | eaves.so.that.the.Spine.can.lear |
| 107700 | 6e 20 77 68 61 74 20 6d 75 6c 74 69 63 61 73 74 20 67 72 6f 75 70 73 20 65 61 63 68 20 4c 65 61 | n.what.multicast.groups.each.Lea |
| 107720 | 66 20 65 78 70 65 63 74 73 20 74 72 61 66 66 69 63 20 66 72 6f 6d 2e 00 4d 75 6c 74 69 70 6c 65 | f.expects.traffic.from..Multiple |
| 107740 | 20 44 4e 53 20 73 65 72 76 65 72 73 20 63 61 6e 20 62 65 20 64 65 66 69 6e 65 64 2e 00 4d 75 6c | .DNS.servers.can.be.defined..Mul |
| 107760 | 74 69 70 6c 65 20 52 50 4b 49 20 63 61 63 68 69 6e 67 20 69 6e 73 74 61 6e 63 65 73 20 63 61 6e | tiple.RPKI.caching.instances.can |
| 107780 | 20 62 65 20 73 75 70 70 6c 69 65 64 20 61 6e 64 20 74 68 65 79 20 6e 65 65 64 20 61 20 70 72 65 | .be.supplied.and.they.need.a.pre |
| 1077a0 | 66 65 72 65 6e 63 65 20 69 6e 20 77 68 69 63 68 20 74 68 65 69 72 20 72 65 73 75 6c 74 20 73 65 | ference.in.which.their.result.se |
| 1077c0 | 74 73 20 61 72 65 20 75 73 65 64 2e 00 4d 75 6c 74 69 70 6c 65 20 55 70 6c 69 6e 6b 73 00 4d 75 | ts.are.used..Multiple.Uplinks.Mu |
| 1077e0 | 6c 74 69 70 6c 65 20 56 4c 41 4e 20 74 6f 20 56 4e 49 20 6d 61 70 70 69 6e 67 73 20 63 61 6e 20 | ltiple.VLAN.to.VNI.mappings.can. |
| 107800 | 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 61 67 61 69 6e 73 74 20 74 68 65 20 73 61 6d 65 20 53 | be.configured.against.the.same.S |
| 107820 | 56 44 2e 20 54 68 69 73 20 61 6c 6c 6f 77 73 20 66 6f 72 20 61 20 73 69 67 6e 69 66 69 63 61 6e | VD..This.allows.for.a.significan |
| 107840 | 74 20 73 63 61 6c 69 6e 67 20 6f 66 20 74 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 56 4e 49 73 20 | t.scaling.of.the.number.of.VNIs. |
| 107860 | 73 69 6e 63 65 20 61 20 73 65 70 61 72 61 74 65 20 56 58 4c 41 4e 20 69 6e 74 65 72 66 61 63 65 | since.a.separate.VXLAN.interface |
| 107880 | 20 69 73 20 6e 6f 20 6c 6f 6e 67 65 72 20 72 65 71 75 69 72 65 64 20 66 6f 72 20 65 61 63 68 20 | .is.no.longer.required.for.each. |
| 1078a0 | 56 4e 49 2e 00 4d 75 6c 74 69 70 6c 65 20 61 6c 69 61 73 65 73 20 63 61 6e 20 62 65 20 73 70 65 | VNI..Multiple.aliases.can.be.spe |
| 1078c0 | 63 69 66 69 65 64 20 70 65 72 20 68 6f 73 74 2d 6e 61 6d 65 2e 00 4d 75 6c 74 69 70 6c 65 20 61 | cified.per.host-name..Multiple.a |
| 1078e0 | 6c 69 61 73 65 73 20 63 61 6e 20 70 65 20 73 70 65 63 69 66 69 65 64 20 70 65 72 20 68 6f 73 74 | liases.can.pe.specified.per.host |
| 107900 | 2d 6e 61 6d 65 2e 00 4d 75 6c 74 69 70 6c 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 70 6f 72 74 | -name..Multiple.destination.port |
| 107920 | 73 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 20 61 73 20 61 20 63 6f 6d 6d 61 2d 73 65 | s.can.be.specified.as.a.comma-se |
| 107940 | 70 61 72 61 74 65 64 20 6c 69 73 74 2e 20 54 68 65 20 77 68 6f 6c 65 20 6c 69 73 74 20 63 61 6e | parated.list..The.whole.list.can |
| 107960 | 20 61 6c 73 6f 20 62 65 20 22 6e 65 67 61 74 65 64 22 20 75 73 69 6e 67 20 27 21 27 2e 20 46 6f | .also.be."negated".using.'!'..Fo |
| 107980 | 72 20 65 78 61 6d 70 6c 65 3a 20 27 21 32 32 2c 74 65 6c 6e 65 74 2c 68 74 74 70 2c 31 32 33 2c | r.example:.'!22,telnet,http,123, |
| 1079a0 | 31 30 30 31 2d 31 30 30 35 27 00 4d 75 6c 74 69 70 6c 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 | 1001-1005'.Multiple.destination. |
| 1079c0 | 70 6f 72 74 73 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 20 61 73 20 61 20 63 6f 6d 6d | ports.can.be.specified.as.a.comm |
| 1079e0 | 61 2d 73 65 70 61 72 61 74 65 64 20 6c 69 73 74 2e 20 54 68 65 20 77 68 6f 6c 65 20 6c 69 73 74 | a-separated.list..The.whole.list |
| 107a00 | 20 63 61 6e 20 61 6c 73 6f 20 62 65 20 22 6e 65 67 61 74 65 64 22 20 75 73 69 6e 67 20 27 21 27 | .can.also.be."negated".using.'!' |
| 107a20 | 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 3a 20 60 21 32 32 2c 74 65 6c 6e 65 74 2c 68 74 74 70 2c | ..For.example:.`!22,telnet,http, |
| 107a40 | 31 32 33 2c 31 30 30 31 2d 31 30 30 35 60 60 00 4d 75 6c 74 69 70 6c 65 20 65 78 74 65 72 6e 61 | 123,1001-1005``.Multiple.externa |
| 107a60 | 6c 20 61 64 64 72 65 73 73 65 73 00 4d 75 6c 74 69 70 6c 65 20 69 6e 74 65 72 66 61 63 65 73 20 | l.addresses.Multiple.interfaces. |
| 107a80 | 6d 61 79 20 62 65 20 73 70 65 63 69 66 69 65 64 2e 00 4d 75 6c 74 69 70 6c 65 20 6e 65 74 77 6f | may.be.specified..Multiple.netwo |
| 107aa0 | 72 6b 73 2f 63 6c 69 65 6e 74 20 49 50 20 61 64 64 72 65 73 73 65 73 20 63 61 6e 20 62 65 20 63 | rks/client.IP.addresses.can.be.c |
| 107ac0 | 6f 6e 66 69 67 75 72 65 64 2e 00 4d 75 6c 74 69 70 6c 65 20 73 65 72 76 65 72 73 20 63 61 6e 20 | onfigured..Multiple.servers.can. |
| 107ae0 | 62 65 20 73 70 65 63 69 66 69 65 64 2e 00 4d 75 6c 74 69 70 6c 65 20 73 65 72 76 69 63 65 73 20 | be.specified..Multiple.services. |
| 107b00 | 63 61 6e 20 62 65 20 75 73 65 64 20 70 65 72 20 69 6e 74 65 72 66 61 63 65 2e 20 4a 75 73 74 20 | can.be.used.per.interface..Just. |
| 107b20 | 73 70 65 63 69 66 79 20 61 73 20 6d 61 6e 79 20 73 65 72 76 69 63 65 73 20 70 65 72 20 69 6e 74 | specify.as.many.services.per.int |
| 107b40 | 65 72 66 61 63 65 20 61 73 20 79 6f 75 20 6c 69 6b 65 21 00 4d 75 6c 74 69 70 6c 65 20 73 6f 75 | erface.as.you.like!.Multiple.sou |
| 107b60 | 72 63 65 20 70 6f 72 74 73 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 20 61 73 20 61 20 | rce.ports.can.be.specified.as.a. |
| 107b80 | 63 6f 6d 6d 61 2d 73 65 70 61 72 61 74 65 64 20 6c 69 73 74 2e 20 54 68 65 20 77 68 6f 6c 65 20 | comma-separated.list..The.whole. |
| 107ba0 | 6c 69 73 74 20 63 61 6e 20 61 6c 73 6f 20 62 65 20 22 6e 65 67 61 74 65 64 22 20 75 73 69 6e 67 | list.can.also.be."negated".using |
| 107bc0 | 20 60 60 21 60 60 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 3a 00 4d 75 6c 74 69 70 6c 65 20 74 61 | .``!``..For.example:.Multiple.ta |
| 107be0 | 72 67 65 74 20 49 50 20 61 64 64 72 65 73 73 65 73 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 | rget.IP.addresses.can.be.specifi |
| 107c00 | 65 64 2e 20 41 74 20 6c 65 61 73 74 20 6f 6e 65 20 49 50 20 61 64 64 72 65 73 73 20 6d 75 73 74 | ed..At.least.one.IP.address.must |
| 107c20 | 20 62 65 20 67 69 76 65 6e 20 66 6f 72 20 41 52 50 20 6d 6f 6e 69 74 6f 72 69 6e 67 20 74 6f 20 | .be.given.for.ARP.monitoring.to. |
| 107c40 | 66 75 6e 63 74 69 6f 6e 2e 00 4d 75 6c 74 69 70 6c 65 20 75 73 65 72 73 20 63 61 6e 20 63 6f 6e | function..Multiple.users.can.con |
| 107c60 | 6e 65 63 74 20 74 6f 20 74 68 65 20 73 61 6d 65 20 73 65 72 69 61 6c 20 64 65 76 69 63 65 20 62 | nect.to.the.same.serial.device.b |
| 107c80 | 75 74 20 6f 6e 6c 79 20 6f 6e 65 20 69 73 20 61 6c 6c 6f 77 65 64 20 74 6f 20 77 72 69 74 65 20 | ut.only.one.is.allowed.to.write. |
| 107ca0 | 74 6f 20 74 68 65 20 63 6f 6e 73 6f 6c 65 20 70 6f 72 74 2e 00 4d 75 6c 74 69 70 72 6f 74 6f 63 | to.the.console.port..Multiprotoc |
| 107cc0 | 6f 6c 20 65 78 74 65 6e 73 69 6f 6e 73 20 65 6e 61 62 6c 65 20 42 47 50 20 74 6f 20 63 61 72 72 | ol.extensions.enable.BGP.to.carr |
| 107ce0 | 79 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 6f 72 20 6d 75 6c 74 69 70 | y.routing.information.for.multip |
| 107d00 | 6c 65 20 6e 65 74 77 6f 72 6b 20 6c 61 79 65 72 20 70 72 6f 74 6f 63 6f 6c 73 2e 20 42 47 50 20 | le.network.layer.protocols..BGP. |
| 107d20 | 73 75 70 70 6f 72 74 73 20 61 6e 20 41 64 64 72 65 73 73 20 46 61 6d 69 6c 79 20 49 64 65 6e 74 | supports.an.Address.Family.Ident |
| 107d40 | 69 66 69 65 72 20 28 41 46 49 29 20 66 6f 72 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 2e 00 4e | ifier.(AFI).for.IPv4.and.IPv6..N |
| 107d60 | 00 4e 41 54 00 4e 41 54 20 28 73 70 65 63 69 66 69 63 61 6c 6c 79 2c 20 53 6f 75 72 63 65 20 4e | .NAT.NAT.(specifically,.Source.N |
| 107d80 | 41 54 29 3b 00 4e 41 54 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 4e 41 54 20 4c 6f 61 64 20 | AT);.NAT.Configuration.NAT.Load. |
| 107da0 | 42 61 6c 61 6e 63 65 00 4e 41 54 20 4c 6f 61 64 20 42 61 6c 61 6e 63 65 20 75 73 65 73 20 61 6e | Balance.NAT.Load.Balance.uses.an |
| 107dc0 | 20 61 6c 67 6f 72 69 74 68 6d 20 74 68 61 74 20 67 65 6e 65 72 61 74 65 73 20 61 20 68 61 73 68 | .algorithm.that.generates.a.hash |
| 107de0 | 20 61 6e 64 20 62 61 73 65 64 20 6f 6e 20 69 74 2c 20 74 68 65 6e 20 69 74 20 61 70 70 6c 69 65 | .and.based.on.it,.then.it.applie |
| 107e00 | 73 20 63 6f 72 72 65 73 70 6f 6e 64 69 6e 67 20 74 72 61 6e 73 6c 61 74 69 6f 6e 2e 20 54 68 69 | s.corresponding.translation..Thi |
| 107e20 | 73 20 68 61 73 68 20 63 61 6e 20 62 65 20 67 65 6e 65 72 61 74 65 64 20 72 61 6e 64 6f 6d 6c 79 | s.hash.can.be.generated.randomly |
| 107e40 | 2c 20 6f 72 20 63 61 6e 20 75 73 65 20 64 61 74 61 20 66 72 6f 6d 20 74 68 65 20 69 70 20 68 65 | ,.or.can.use.data.from.the.ip.he |
| 107e60 | 61 64 65 72 3a 20 73 6f 75 72 63 65 2d 61 64 64 72 65 73 73 2c 20 64 65 73 74 69 6e 61 74 69 6f | ader:.source-address,.destinatio |
| 107e80 | 6e 2d 61 64 64 72 65 73 73 2c 20 73 6f 75 72 63 65 2d 70 6f 72 74 20 61 6e 64 2f 6f 72 20 64 65 | n-address,.source-port.and/or.de |
| 107ea0 | 73 74 69 6e 61 74 69 6f 6e 2d 70 6f 72 74 2e 20 42 79 20 64 65 66 61 75 6c 74 2c 20 69 74 20 77 | stination-port..By.default,.it.w |
| 107ec0 | 69 6c 6c 20 67 65 6e 65 72 61 74 65 20 74 68 65 20 68 61 73 68 20 72 61 6e 64 6f 6d 6c 79 2e 00 | ill.generate.the.hash.randomly.. |
| 107ee0 | 4e 41 54 20 52 75 6c 65 73 65 74 00 4e 41 54 20 62 65 66 6f 72 65 20 56 50 4e 00 4e 41 54 20 62 | NAT.Ruleset.NAT.before.VPN.NAT.b |
| 107f00 | 65 66 6f 72 65 20 56 50 4e 20 54 6f 70 6f 6c 6f 67 79 00 4e 41 54 2c 20 52 6f 75 74 69 6e 67 2c | efore.VPN.Topology.NAT,.Routing, |
| 107f20 | 20 46 69 72 65 77 61 6c 6c 20 49 6e 74 65 72 61 63 74 69 6f 6e 00 4e 41 54 34 34 00 4e 41 54 36 | .Firewall.Interaction.NAT44.NAT6 |
| 107f40 | 34 00 4e 41 54 36 34 20 63 6c 69 65 6e 74 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 00 4e 41 | 4.NAT64.client.configuration:.NA |
| 107f60 | 54 36 34 20 70 72 65 66 69 78 20 6d 61 73 6b 20 6d 75 73 74 20 62 65 20 6f 6e 65 20 6f 66 3a 20 | T64.prefix.mask.must.be.one.of:. |
| 107f80 | 2f 33 32 2c 20 2f 34 30 2c 20 2f 34 38 2c 20 2f 35 36 2c 20 2f 36 34 20 6f 72 20 39 36 2e 00 4e | /32,./40,./48,./56,./64.or.96..N |
| 107fa0 | 41 54 36 34 20 73 65 72 76 65 72 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 00 4e 41 54 36 36 | AT64.server.configuration:.NAT66 |
| 107fc0 | 28 4e 50 54 76 36 29 00 4e 48 52 50 20 70 72 6f 76 69 64 65 73 20 74 68 65 20 64 79 6e 61 6d 69 | (NPTv6).NHRP.provides.the.dynami |
| 107fe0 | 63 20 74 75 6e 6e 65 6c 20 65 6e 64 70 6f 69 6e 74 20 64 69 73 63 6f 76 65 72 79 20 6d 65 63 68 | c.tunnel.endpoint.discovery.mech |
| 108000 | 61 6e 69 73 6d 20 28 65 6e 64 70 6f 69 6e 74 20 72 65 67 69 73 74 72 61 74 69 6f 6e 2c 20 61 6e | anism.(endpoint.registration,.an |
| 108020 | 64 20 65 6e 64 70 6f 69 6e 74 20 64 69 73 63 6f 76 65 72 79 2f 6c 6f 6f 6b 75 70 29 2c 20 6d 47 | d.endpoint.discovery/lookup),.mG |
| 108040 | 52 45 20 70 72 6f 76 69 64 65 73 20 74 68 65 20 74 75 6e 6e 65 6c 20 65 6e 63 61 70 73 75 6c 61 | RE.provides.the.tunnel.encapsula |
| 108060 | 74 69 6f 6e 20 69 74 73 65 6c 66 2c 20 61 6e 64 20 74 68 65 20 49 50 53 65 63 20 70 72 6f 74 6f | tion.itself,.and.the.IPSec.proto |
| 108080 | 63 6f 6c 73 20 68 61 6e 64 6c 65 20 74 68 65 20 6b 65 79 20 65 78 63 68 61 6e 67 65 2c 20 61 6e | cols.handle.the.key.exchange,.an |
| 1080a0 | 64 20 63 72 79 70 74 6f 20 6d 65 63 68 61 6e 69 73 6d 2e 00 4e 54 50 00 4e 54 50 20 69 73 20 69 | d.crypto.mechanism..NTP.NTP.is.i |
| 1080c0 | 6e 74 65 6e 64 65 64 20 74 6f 20 73 79 6e 63 68 72 6f 6e 69 7a 65 20 61 6c 6c 20 70 61 72 74 69 | ntended.to.synchronize.all.parti |
| 1080e0 | 63 69 70 61 74 69 6e 67 20 63 6f 6d 70 75 74 65 72 73 20 74 6f 20 77 69 74 68 69 6e 20 61 20 66 | cipating.computers.to.within.a.f |
| 108100 | 65 77 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 20 6f 66 20 3a 61 62 62 72 3a 60 55 54 43 20 28 43 | ew.milliseconds.of.:abbr:`UTC.(C |
| 108120 | 6f 6f 72 64 69 6e 61 74 65 64 20 55 6e 69 76 65 72 73 61 6c 20 54 69 6d 65 29 60 2e 20 49 74 20 | oordinated.Universal.Time)`..It. |
| 108140 | 75 73 65 73 20 74 68 65 20 69 6e 74 65 72 73 65 63 74 69 6f 6e 20 61 6c 67 6f 72 69 74 68 6d 2c | uses.the.intersection.algorithm, |
| 108160 | 20 61 20 6d 6f 64 69 66 69 65 64 20 76 65 72 73 69 6f 6e 20 6f 66 20 4d 61 72 7a 75 6c 6c 6f 27 | .a.modified.version.of.Marzullo' |
| 108180 | 73 20 61 6c 67 6f 72 69 74 68 6d 2c 20 74 6f 20 73 65 6c 65 63 74 20 61 63 63 75 72 61 74 65 20 | s.algorithm,.to.select.accurate. |
| 1081a0 | 74 69 6d 65 20 73 65 72 76 65 72 73 20 61 6e 64 20 69 73 20 64 65 73 69 67 6e 65 64 20 74 6f 20 | time.servers.and.is.designed.to. |
| 1081c0 | 6d 69 74 69 67 61 74 65 20 74 68 65 20 65 66 66 65 63 74 73 20 6f 66 20 76 61 72 69 61 62 6c 65 | mitigate.the.effects.of.variable |
| 1081e0 | 20 6e 65 74 77 6f 72 6b 20 6c 61 74 65 6e 63 79 2e 20 4e 54 50 20 63 61 6e 20 75 73 75 61 6c 6c | .network.latency..NTP.can.usuall |
| 108200 | 79 20 6d 61 69 6e 74 61 69 6e 20 74 69 6d 65 20 74 6f 20 77 69 74 68 69 6e 20 74 65 6e 73 20 6f | y.maintain.time.to.within.tens.o |
| 108220 | 66 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 20 6f 76 65 72 20 74 68 65 20 70 75 62 6c 69 63 20 49 | f.milliseconds.over.the.public.I |
| 108240 | 6e 74 65 72 6e 65 74 2c 20 61 6e 64 20 63 61 6e 20 61 63 68 69 65 76 65 20 62 65 74 74 65 72 20 | nternet,.and.can.achieve.better. |
| 108260 | 74 68 61 6e 20 6f 6e 65 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 20 61 63 63 75 72 61 63 79 20 69 6e | than.one.millisecond.accuracy.in |
| 108280 | 20 6c 6f 63 61 6c 20 61 72 65 61 20 6e 65 74 77 6f 72 6b 73 20 75 6e 64 65 72 20 69 64 65 61 6c | .local.area.networks.under.ideal |
| 1082a0 | 20 63 6f 6e 64 69 74 69 6f 6e 73 2e 20 41 73 79 6d 6d 65 74 72 69 63 20 72 6f 75 74 65 73 20 61 | .conditions..Asymmetric.routes.a |
| 1082c0 | 6e 64 20 6e 65 74 77 6f 72 6b 20 63 6f 6e 67 65 73 74 69 6f 6e 20 63 61 6e 20 63 61 75 73 65 20 | nd.network.congestion.can.cause. |
| 1082e0 | 65 72 72 6f 72 73 20 6f 66 20 31 30 30 20 6d 73 20 6f 72 20 6d 6f 72 65 2e 00 4e 54 50 20 70 72 | errors.of.100.ms.or.more..NTP.pr |
| 108300 | 6f 63 65 73 73 20 77 69 6c 6c 20 6f 6e 6c 79 20 6c 69 73 74 65 6e 20 6f 6e 20 74 68 65 20 73 70 | ocess.will.only.listen.on.the.sp |
| 108320 | 65 63 69 66 69 65 64 20 49 50 20 61 64 64 72 65 73 73 2e 20 59 6f 75 20 6d 75 73 74 20 73 70 65 | ecified.IP.address..You.must.spe |
| 108340 | 63 69 66 79 20 74 68 65 20 60 3c 61 64 64 72 65 73 73 3e 60 20 61 6e 64 20 6f 70 74 69 6f 6e 61 | cify.the.`<address>`.and.optiona |
| 108360 | 6c 6c 79 20 74 68 65 20 70 65 72 6d 69 74 74 65 64 20 63 6c 69 65 6e 74 73 2e 20 4d 75 6c 74 69 | lly.the.permitted.clients..Multi |
| 108380 | 70 6c 65 20 6c 69 73 74 65 6e 20 61 64 64 72 65 73 73 65 73 20 63 61 6e 20 62 65 20 63 6f 6e 66 | ple.listen.addresses.can.be.conf |
| 1083a0 | 69 67 75 72 65 64 2e 00 4e 54 50 20 70 72 6f 63 65 73 73 20 77 69 6c 6c 20 6f 6e 6c 79 20 6c 69 | igured..NTP.process.will.only.li |
| 1083c0 | 73 74 65 6e 20 6f 6e 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 49 50 20 61 64 64 72 65 73 73 | sten.on.the.specified.IP.address |
| 1083e0 | 2e 20 59 6f 75 20 6d 75 73 74 20 73 70 65 63 69 66 79 20 74 68 65 20 60 3c 61 64 64 72 65 73 73 | ..You.must.specify.the.`<address |
| 108400 | 3e 60 20 61 6e 64 20 6f 70 74 69 6f 6e 61 6c 6c 79 20 74 68 65 20 70 65 72 6d 69 74 74 65 64 20 | >`.and.optionally.the.permitted. |
| 108420 | 63 6c 69 65 6e 74 73 2e 20 4d 75 6c 74 69 70 6c 65 20 6c 69 73 74 65 6e 20 61 64 64 72 65 73 73 | clients..Multiple.listen.address |
| 108440 | 65 73 20 66 6f 72 20 73 61 6d 65 20 49 50 20 66 61 6d 69 6c 79 20 69 73 20 6e 6f 20 6c 6f 6e 67 | es.for.same.IP.family.is.no.long |
| 108460 | 65 72 20 73 75 70 70 6f 72 74 65 64 2e 20 4f 6e 6c 79 20 6f 6e 65 20 49 50 76 34 20 61 6e 64 20 | er.supported..Only.one.IPv4.and. |
| 108480 | 6f 6e 65 20 49 50 76 36 20 61 64 64 72 65 73 73 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 | one.IPv6.address.can.be.configur |
| 1084a0 | 65 64 2c 20 75 73 69 6e 67 20 73 65 70 61 72 61 74 65 20 63 6f 6d 6d 61 6e 64 73 20 66 6f 72 20 | ed,.using.separate.commands.for. |
| 1084c0 | 65 61 63 68 2e 00 4e 54 50 20 73 75 62 73 79 73 74 65 6d 00 4e 54 50 20 73 75 70 70 6c 69 65 73 | each..NTP.subsystem.NTP.supplies |
| 1084e0 | 20 61 20 77 61 72 6e 69 6e 67 20 6f 66 20 61 6e 79 20 69 6d 70 65 6e 64 69 6e 67 20 6c 65 61 70 | .a.warning.of.any.impending.leap |
| 108500 | 20 73 65 63 6f 6e 64 20 61 64 6a 75 73 74 6d 65 6e 74 2c 20 62 75 74 20 6e 6f 20 69 6e 66 6f 72 | .second.adjustment,.but.no.infor |
| 108520 | 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 6c 6f 63 61 6c 20 74 69 6d 65 20 7a 6f 6e 65 73 20 6f 72 | mation.about.local.time.zones.or |
| 108540 | 20 64 61 79 6c 69 67 68 74 20 73 61 76 69 6e 67 20 74 69 6d 65 20 69 73 20 74 72 61 6e 73 6d 69 | .daylight.saving.time.is.transmi |
| 108560 | 74 74 65 64 2e 00 4e 61 6d 65 20 53 65 72 76 65 72 00 4e 61 6d 65 20 6f 66 20 69 6e 73 74 61 6c | tted..Name.Server.Name.of.instal |
| 108580 | 6c 65 64 20 63 65 72 74 69 66 69 63 61 74 65 20 61 75 74 68 6f 72 69 74 79 20 63 65 72 74 69 66 | led.certificate.authority.certif |
| 1085a0 | 69 63 61 74 65 2e 00 4e 61 6d 65 20 6f 66 20 69 6e 73 74 61 6c 6c 65 64 20 73 65 72 76 65 72 20 | icate..Name.of.installed.server. |
| 1085c0 | 63 65 72 74 69 66 69 63 61 74 65 2e 00 4e 61 6d 65 20 6f 66 20 73 74 61 74 69 63 20 6d 61 70 70 | certificate..Name.of.static.mapp |
| 1085e0 | 69 6e 67 00 4e 61 6d 65 20 6f 66 20 74 68 65 20 73 69 6e 67 6c 65 20 74 61 62 6c 65 20 4f 6e 6c | ing.Name.of.the.single.table.Onl |
| 108600 | 79 20 69 66 20 73 65 74 20 67 72 6f 75 70 2d 6d 65 74 72 69 63 73 20 73 69 6e 67 6c 65 2d 74 61 | y.if.set.group-metrics.single-ta |
| 108620 | 62 6c 65 2e 00 4e 61 6d 65 20 6f 72 20 49 50 76 34 20 61 64 64 72 65 73 73 20 6f 66 20 54 46 54 | ble..Name.or.IPv4.address.of.TFT |
| 108640 | 50 20 73 65 72 76 65 72 00 4e 65 74 42 49 4f 53 20 6f 76 65 72 20 54 43 50 2f 49 50 20 6e 61 6d | P.server.NetBIOS.over.TCP/IP.nam |
| 108660 | 65 20 73 65 72 76 65 72 00 4e 65 74 46 6c 6f 77 00 4e 65 74 46 6c 6f 77 20 2f 20 49 50 46 49 58 | e.server.NetFlow.NetFlow./.IPFIX |
| 108680 | 00 4e 65 74 46 6c 6f 77 20 65 6e 67 69 6e 65 2d 69 64 20 77 68 69 63 68 20 77 69 6c 6c 20 61 70 | .NetFlow.engine-id.which.will.ap |
| 1086a0 | 70 65 61 72 20 69 6e 20 4e 65 74 46 6c 6f 77 20 64 61 74 61 2e 20 54 68 65 20 72 61 6e 67 65 20 | pear.in.NetFlow.data..The.range. |
| 1086c0 | 69 73 20 30 20 74 6f 20 32 35 35 2e 00 4e 65 74 46 6c 6f 77 20 69 73 20 61 20 66 65 61 74 75 72 | is.0.to.255..NetFlow.is.a.featur |
| 1086e0 | 65 20 74 68 61 74 20 77 61 73 20 69 6e 74 72 6f 64 75 63 65 64 20 6f 6e 20 43 69 73 63 6f 20 72 | e.that.was.introduced.on.Cisco.r |
| 108700 | 6f 75 74 65 72 73 20 61 72 6f 75 6e 64 20 31 39 39 36 20 74 68 61 74 20 70 72 6f 76 69 64 65 73 | outers.around.1996.that.provides |
| 108720 | 20 74 68 65 20 61 62 69 6c 69 74 79 20 74 6f 20 63 6f 6c 6c 65 63 74 20 49 50 20 6e 65 74 77 6f | .the.ability.to.collect.IP.netwo |
| 108740 | 72 6b 20 74 72 61 66 66 69 63 20 61 73 20 69 74 20 65 6e 74 65 72 73 20 6f 72 20 65 78 69 74 73 | rk.traffic.as.it.enters.or.exits |
| 108760 | 20 61 6e 20 69 6e 74 65 72 66 61 63 65 2e 20 42 79 20 61 6e 61 6c 79 7a 69 6e 67 20 74 68 65 20 | .an.interface..By.analyzing.the. |
| 108780 | 64 61 74 61 20 70 72 6f 76 69 64 65 64 20 62 79 20 4e 65 74 46 6c 6f 77 2c 20 61 20 6e 65 74 77 | data.provided.by.NetFlow,.a.netw |
| 1087a0 | 6f 72 6b 20 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 20 63 61 6e 20 64 65 74 65 72 6d 69 6e 65 20 | ork.administrator.can.determine. |
| 1087c0 | 74 68 69 6e 67 73 20 73 75 63 68 20 61 73 20 74 68 65 20 73 6f 75 72 63 65 20 61 6e 64 20 64 65 | things.such.as.the.source.and.de |
| 1087e0 | 73 74 69 6e 61 74 69 6f 6e 20 6f 66 20 74 72 61 66 66 69 63 2c 20 63 6c 61 73 73 20 6f 66 20 73 | stination.of.traffic,.class.of.s |
| 108800 | 65 72 76 69 63 65 2c 20 61 6e 64 20 74 68 65 20 63 61 75 73 65 73 20 6f 66 20 63 6f 6e 67 65 73 | ervice,.and.the.causes.of.conges |
| 108820 | 74 69 6f 6e 2e 20 41 20 74 79 70 69 63 61 6c 20 66 6c 6f 77 20 6d 6f 6e 69 74 6f 72 69 6e 67 20 | tion..A.typical.flow.monitoring. |
| 108840 | 73 65 74 75 70 20 28 75 73 69 6e 67 20 4e 65 74 46 6c 6f 77 29 20 63 6f 6e 73 69 73 74 73 20 6f | setup.(using.NetFlow).consists.o |
| 108860 | 66 20 74 68 72 65 65 20 6d 61 69 6e 20 63 6f 6d 70 6f 6e 65 6e 74 73 3a 00 4e 65 74 46 6c 6f 77 | f.three.main.components:.NetFlow |
| 108880 | 20 69 73 20 75 73 75 61 6c 6c 79 20 65 6e 61 62 6c 65 64 20 6f 6e 20 61 20 70 65 72 2d 69 6e 74 | .is.usually.enabled.on.a.per-int |
| 1088a0 | 65 72 66 61 63 65 20 62 61 73 69 73 20 74 6f 20 6c 69 6d 69 74 20 6c 6f 61 64 20 6f 6e 20 74 68 | erface.basis.to.limit.load.on.th |
| 1088c0 | 65 20 72 6f 75 74 65 72 20 63 6f 6d 70 6f 6e 65 6e 74 73 20 69 6e 76 6f 6c 76 65 64 20 69 6e 20 | e.router.components.involved.in. |
| 1088e0 | 4e 65 74 46 6c 6f 77 2c 20 6f 72 20 74 6f 20 6c 69 6d 69 74 20 74 68 65 20 61 6d 6f 75 6e 74 20 | NetFlow,.or.to.limit.the.amount. |
| 108900 | 6f 66 20 4e 65 74 46 6c 6f 77 20 72 65 63 6f 72 64 73 20 65 78 70 6f 72 74 65 64 2e 00 4e 65 74 | of.NetFlow.records.exported..Net |
| 108920 | 46 6c 6f 77 20 76 35 20 65 78 61 6d 70 6c 65 3a 00 4e 65 74 66 69 6c 74 65 72 20 62 61 73 65 64 | Flow.v5.example:.Netfilter.based |
| 108940 | 00 4e 65 74 6d 61 73 6b 20 67 72 65 61 74 65 72 20 74 68 61 6e 20 6c 65 6e 67 74 68 2e 00 4e 65 | .Netmask.greater.than.length..Ne |
| 108960 | 74 6d 61 73 6b 20 6c 65 73 73 20 74 68 61 6e 20 6c 65 6e 67 74 68 00 4e 65 74 77 6f 72 6b 20 41 | tmask.less.than.length.Network.A |
| 108980 | 64 76 65 72 74 69 73 65 6d 65 6e 74 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 4e 65 74 77 6f | dvertisement.Configuration.Netwo |
| 1089a0 | 72 6b 20 43 6f 6e 74 72 6f 6c 00 4e 65 74 77 6f 72 6b 20 45 6d 75 6c 61 74 6f 72 00 4e 65 74 77 | rk.Control.Network.Emulator.Netw |
| 1089c0 | 6f 72 6b 20 47 72 6f 75 70 73 00 4e 65 74 77 6f 72 6b 20 49 44 20 28 53 53 49 44 29 20 60 60 45 | ork.Groups.Network.ID.(SSID).``E |
| 1089e0 | 6e 74 65 72 70 72 69 73 65 2d 54 45 53 54 60 60 00 4e 65 74 77 6f 72 6b 20 49 44 20 28 53 53 49 | nterprise-TEST``.Network.ID.(SSI |
| 108a00 | 44 29 20 60 60 54 45 53 54 60 60 00 4e 65 74 77 6f 72 6b 20 49 44 20 28 53 53 49 44 29 20 60 60 | D).``TEST``.Network.ID.(SSID).`` |
| 108a20 | 74 65 73 74 2e 61 78 60 60 00 4e 65 74 77 6f 72 6b 20 54 6f 70 6f 6c 6f 67 79 20 44 69 61 67 72 | test.ax``.Network.Topology.Diagr |
| 108a40 | 61 6d 00 4e 65 74 77 6f 72 6b 20 6d 61 6e 61 67 65 6d 65 6e 74 20 73 74 61 74 69 6f 6e 20 28 4e | am.Network.management.station.(N |
| 108a60 | 4d 53 29 20 2d 20 73 6f 66 74 77 61 72 65 20 77 68 69 63 68 20 72 75 6e 73 20 6f 6e 20 74 68 65 | MS).-.software.which.runs.on.the |
| 108a80 | 20 6d 61 6e 61 67 65 72 00 4e 65 74 77 6f 72 6b 20 6e 65 77 73 20 73 75 62 73 79 73 74 65 6d 00 | .manager.Network.news.subsystem. |
| 108aa0 | 4e 65 74 77 6f 72 6b 20 74 6f 20 62 65 20 70 72 6f 74 65 63 74 65 64 3a 20 31 39 32 2e 30 2e 32 | Network.to.be.protected:.192.0.2 |
| 108ac0 | 2e 30 2f 32 34 20 28 70 75 62 6c 69 63 20 49 50 73 20 75 73 65 20 62 79 20 63 75 73 74 6f 6d 65 | .0/24.(public.IPs.use.by.custome |
| 108ae0 | 72 73 29 00 4e 65 74 77 6f 72 6b 73 20 61 6c 6c 6f 77 65 64 20 74 6f 20 71 75 65 72 79 20 74 68 | rs).Networks.allowed.to.query.th |
| 108b00 | 69 73 20 73 65 72 76 65 72 00 4e 65 77 20 75 73 65 72 20 77 69 6c 6c 20 75 73 65 20 53 48 41 2f | is.server.New.user.will.use.SHA/ |
| 108b20 | 41 45 53 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 61 6e 64 20 70 72 69 76 61 | AES.for.authentication.and.priva |
| 108b40 | 63 79 00 4e 65 78 74 20 69 74 20 69 73 20 6e 65 63 65 73 73 61 72 79 20 74 6f 20 63 6f 6e 66 69 | cy.Next.it.is.necessary.to.confi |
| 108b60 | 67 75 72 65 20 32 46 41 20 66 6f 72 20 4f 70 65 6e 43 6f 6e 6e 65 63 74 3a 00 4e 65 78 74 2d 68 | gure.2FA.for.OpenConnect:.Next-h |
| 108b80 | 6f 70 20 69 6e 74 65 72 66 61 63 65 20 66 6f 72 20 74 68 65 20 72 6f 75 74 65 00 4e 65 78 74 68 | op.interface.for.the.route.Nexth |
| 108ba0 | 6f 70 20 49 50 20 61 64 64 72 65 73 73 2e 00 4e 65 78 74 68 6f 70 20 49 50 76 36 20 61 64 64 72 | op.IP.address..Nexthop.IPv6.addr |
| 108bc0 | 65 73 73 20 74 6f 20 6d 61 74 63 68 2e 00 4e 65 78 74 68 6f 70 20 49 50 76 36 20 61 64 64 72 65 | ess.to.match..Nexthop.IPv6.addre |
| 108be0 | 73 73 2e 00 4e 65 78 74 68 6f 70 20 54 72 61 63 6b 69 6e 67 00 4e 65 78 74 68 6f 70 20 74 72 61 | ss..Nexthop.Tracking.Nexthop.tra |
| 108c00 | 63 6b 69 6e 67 20 72 65 73 6f 6c 76 65 20 6e 65 78 74 68 6f 70 73 20 76 69 61 20 74 68 65 20 64 | cking.resolve.nexthops.via.the.d |
| 108c20 | 65 66 61 75 6c 74 20 72 6f 75 74 65 20 62 79 20 64 65 66 61 75 6c 74 2e 20 54 68 69 73 20 69 73 | efault.route.by.default..This.is |
| 108c40 | 20 65 6e 61 62 6c 65 64 20 62 79 20 64 65 66 61 75 6c 74 20 66 6f 72 20 61 20 74 72 61 64 69 74 | .enabled.by.default.for.a.tradit |
| 108c60 | 69 6f 6e 61 6c 20 70 72 6f 66 69 6c 65 20 6f 66 20 46 52 52 20 77 68 69 63 68 20 77 65 20 75 73 | ional.profile.of.FRR.which.we.us |
| 108c80 | 65 2e 20 49 74 20 61 6e 64 20 63 61 6e 20 62 65 20 64 69 73 61 62 6c 65 64 20 69 66 20 79 6f 75 | e..It.and.can.be.disabled.if.you |
| 108ca0 | 20 64 6f 20 6e 6f 74 20 77 61 6e 27 74 20 74 6f 20 65 2e 67 2e 20 61 6c 6c 6f 77 20 42 47 50 20 | .do.not.wan't.to.e.g..allow.BGP. |
| 108cc0 | 74 6f 20 70 65 65 72 20 61 63 72 6f 73 73 20 74 68 65 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 | to.peer.across.the.default.route |
| 108ce0 | 2e 00 4e 65 78 74 68 6f 70 20 74 72 61 63 6b 69 6e 67 20 72 65 73 6f 6c 76 65 20 6e 65 78 74 68 | ..Nexthop.tracking.resolve.nexth |
| 108d00 | 6f 70 73 20 76 69 61 20 74 68 65 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 20 62 79 20 64 65 66 | ops.via.the.default.route.by.def |
| 108d20 | 61 75 6c 74 2e 20 54 68 69 73 20 69 73 20 65 6e 61 62 6c 65 64 20 62 79 20 64 65 66 61 75 6c 74 | ault..This.is.enabled.by.default |
| 108d40 | 20 66 6f 72 20 61 20 74 72 61 64 69 74 69 6f 6e 61 6c 20 70 72 6f 66 69 6c 65 20 6f 66 20 46 52 | .for.a.traditional.profile.of.FR |
| 108d60 | 52 20 77 68 69 63 68 20 77 65 20 75 73 65 2e 20 49 74 20 61 6e 64 20 63 61 6e 20 62 65 20 64 69 | R.which.we.use..It.and.can.be.di |
| 108d80 | 73 61 62 6c 65 64 20 69 66 20 79 6f 75 20 64 6f 20 6e 6f 74 20 77 61 6e 74 20 74 6f 20 65 2e 67 | sabled.if.you.do.not.want.to.e.g |
| 108da0 | 2e 20 61 6c 6c 6f 77 20 42 47 50 20 74 6f 20 70 65 65 72 20 61 63 72 6f 73 73 20 74 68 65 20 64 | ..allow.BGP.to.peer.across.the.d |
| 108dc0 | 65 66 61 75 6c 74 20 72 6f 75 74 65 2e 00 4e 6f 20 52 4f 41 20 65 78 69 73 74 73 20 77 68 69 63 | efault.route..No.ROA.exists.whic |
| 108de0 | 68 20 63 6f 76 65 72 73 20 74 68 61 74 20 70 72 65 66 69 78 2e 20 55 6e 66 6f 72 74 75 6e 61 74 | h.covers.that.prefix..Unfortunat |
| 108e00 | 65 6c 79 20 74 68 69 73 20 69 73 20 74 68 65 20 63 61 73 65 20 66 6f 72 20 61 62 6f 75 74 20 34 | ely.this.is.the.case.for.about.4 |
| 108e20 | 30 25 2d 35 30 25 20 6f 66 20 74 68 65 20 70 72 65 66 69 78 65 73 20 77 68 69 63 68 20 77 65 72 | 0%-50%.of.the.prefixes.which.wer |
| 108e40 | 65 20 61 6e 6e 6f 75 6e 63 65 64 20 74 6f 20 74 68 65 20 3a 61 62 62 72 3a 60 44 46 5a 20 28 64 | e.announced.to.the.:abbr:`DFZ.(d |
| 108e60 | 65 66 61 75 6c 74 2d 66 72 65 65 20 7a 6f 6e 65 29 60 20 61 74 20 74 68 65 20 73 74 61 72 74 20 | efault-free.zone)`.at.the.start. |
| 108e80 | 6f 66 20 32 30 32 34 2e 00 4e 6f 20 52 4f 41 20 65 78 69 73 74 73 20 77 68 69 63 68 20 63 6f 76 | of.2024..No.ROA.exists.which.cov |
| 108ea0 | 65 72 73 20 74 68 61 74 20 70 72 65 66 69 78 2e 20 55 6e 66 6f 72 74 75 6e 61 74 65 6c 79 20 74 | ers.that.prefix..Unfortunately.t |
| 108ec0 | 68 69 73 20 69 73 20 74 68 65 20 63 61 73 65 20 66 6f 72 20 61 62 6f 75 74 20 38 30 25 20 6f 66 | his.is.the.case.for.about.80%.of |
| 108ee0 | 20 74 68 65 20 49 50 76 34 20 70 72 65 66 69 78 65 73 20 77 68 69 63 68 20 77 65 72 65 20 61 6e | .the.IPv4.prefixes.which.were.an |
| 108f00 | 6e 6f 75 6e 63 65 64 20 74 6f 20 74 68 65 20 3a 61 62 62 72 3a 60 44 46 5a 20 28 64 65 66 61 75 | nounced.to.the.:abbr:`DFZ.(defau |
| 108f20 | 6c 74 2d 66 72 65 65 20 7a 6f 6e 65 29 60 20 61 74 20 74 68 65 20 73 74 61 72 74 20 6f 66 20 32 | lt-free.zone)`.at.the.start.of.2 |
| 108f40 | 30 32 30 00 4e 6f 20 56 4c 41 4e 20 74 61 67 67 69 6e 67 20 72 65 71 75 69 72 65 64 20 62 79 20 | 020.No.VLAN.tagging.required.by. |
| 108f60 | 79 6f 75 72 20 49 53 50 2e 00 4e 6f 20 72 6f 75 74 65 20 69 73 20 73 75 70 70 72 65 73 73 65 64 | your.ISP..No.route.is.suppressed |
| 108f80 | 20 69 6e 64 65 66 69 6e 69 74 65 6c 79 2e 20 4d 61 78 69 6d 75 6d 2d 73 75 70 70 72 65 73 73 2d | .indefinitely..Maximum-suppress- |
| 108fa0 | 74 69 6d 65 20 64 65 66 69 6e 65 73 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 74 69 6d 65 20 61 20 | time.defines.the.maximum.time.a. |
| 108fc0 | 72 6f 75 74 65 20 63 61 6e 20 62 65 20 73 75 70 70 72 65 73 73 65 64 20 62 65 66 6f 72 65 20 69 | route.can.be.suppressed.before.i |
| 108fe0 | 74 20 69 73 20 72 65 2d 61 64 76 65 72 74 69 73 65 64 2e 00 4e 6f 20 73 75 70 70 6f 72 74 20 66 | t.is.re-advertised..No.support.f |
| 109000 | 6f 72 20 53 52 4c 42 00 4e 6f 20 73 75 70 70 6f 72 74 20 66 6f 72 20 62 69 6e 64 69 6e 67 20 53 | or.SRLB.No.support.for.binding.S |
| 109020 | 49 44 00 4e 6f 20 73 75 70 70 6f 72 74 20 66 6f 72 20 6c 65 76 65 6c 20 72 65 64 69 73 74 72 69 | ID.No.support.for.level.redistri |
| 109040 | 62 75 74 69 6f 6e 20 28 4c 31 20 74 6f 20 4c 32 20 6f 72 20 4c 32 20 74 6f 20 4c 31 29 00 4e 6f | bution.(L1.to.L2.or.L2.to.L1).No |
| 109060 | 6e 2d 74 72 61 6e 73 70 61 72 65 6e 74 20 70 72 6f 78 79 69 6e 67 20 72 65 71 75 69 72 65 73 20 | n-transparent.proxying.requires. |
| 109080 | 74 68 61 74 20 74 68 65 20 63 6c 69 65 6e 74 20 62 72 6f 77 73 65 72 73 20 62 65 20 63 6f 6e 66 | that.the.client.browsers.be.conf |
| 1090a0 | 69 67 75 72 65 64 20 77 69 74 68 20 74 68 65 20 70 72 6f 78 79 20 73 65 74 74 69 6e 67 73 20 62 | igured.with.the.proxy.settings.b |
| 1090c0 | 65 66 6f 72 65 20 72 65 71 75 65 73 74 73 20 61 72 65 20 72 65 64 69 72 65 63 74 65 64 2e 20 54 | efore.requests.are.redirected..T |
| 1090e0 | 68 65 20 61 64 76 61 6e 74 61 67 65 20 6f 66 20 74 68 69 73 20 69 73 20 74 68 61 74 20 74 68 65 | he.advantage.of.this.is.that.the |
| 109100 | 20 63 6c 69 65 6e 74 20 77 65 62 20 62 72 6f 77 73 65 72 20 63 61 6e 20 64 65 74 65 63 74 20 74 | .client.web.browser.can.detect.t |
| 109120 | 68 61 74 20 61 20 70 72 6f 78 79 20 69 73 20 69 6e 20 75 73 65 20 61 6e 64 20 63 61 6e 20 62 65 | hat.a.proxy.is.in.use.and.can.be |
| 109140 | 68 61 76 65 20 61 63 63 6f 72 64 69 6e 67 6c 79 2e 20 49 6e 20 61 64 64 69 74 69 6f 6e 2c 20 77 | have.accordingly..In.addition,.w |
| 109160 | 65 62 2d 74 72 61 6e 73 6d 69 74 74 65 64 20 6d 61 6c 77 61 72 65 20 63 61 6e 20 73 6f 6d 65 74 | eb-transmitted.malware.can.somet |
| 109180 | 69 6d 65 73 20 62 65 20 62 6c 6f 63 6b 65 64 20 62 79 20 61 20 6e 6f 6e 2d 74 72 61 6e 73 70 61 | imes.be.blocked.by.a.non-transpa |
| 1091a0 | 72 65 6e 74 20 77 65 62 20 70 72 6f 78 79 2c 20 73 69 6e 63 65 20 74 68 65 79 20 61 72 65 20 6e | rent.web.proxy,.since.they.are.n |
| 1091c0 | 6f 74 20 61 77 61 72 65 20 6f 66 20 74 68 65 20 70 72 6f 78 79 20 73 65 74 74 69 6e 67 73 2e 00 | ot.aware.of.the.proxy.settings.. |
| 1091e0 | 4e 6f 6e 65 20 6f 66 20 74 68 65 20 6f 70 65 72 61 74 69 6e 67 20 73 79 73 74 65 6d 73 20 68 61 | None.of.the.operating.systems.ha |
| 109200 | 76 65 20 63 6c 69 65 6e 74 20 73 6f 66 74 77 61 72 65 20 69 6e 73 74 61 6c 6c 65 64 20 62 79 20 | ve.client.software.installed.by. |
| 109220 | 64 65 66 61 75 6c 74 00 4e 6f 72 6d 61 6c 20 62 75 74 20 73 69 67 6e 69 66 69 63 61 6e 74 20 63 | default.Normal.but.significant.c |
| 109240 | 6f 6e 64 69 74 69 6f 6e 73 20 2d 20 63 6f 6e 64 69 74 69 6f 6e 73 20 74 68 61 74 20 61 72 65 20 | onditions.-.conditions.that.are. |
| 109260 | 6e 6f 74 20 65 72 72 6f 72 20 63 6f 6e 64 69 74 69 6f 6e 73 2c 20 62 75 74 20 74 68 61 74 20 6d | not.error.conditions,.but.that.m |
| 109280 | 61 79 20 72 65 71 75 69 72 65 20 73 70 65 63 69 61 6c 20 68 61 6e 64 6c 69 6e 67 2e 00 4e 6f 74 | ay.require.special.handling..Not |
| 1092a0 | 20 61 6c 6c 20 3a 72 66 63 3a 60 36 38 38 38 60 20 72 65 71 75 69 72 65 6d 65 6e 74 73 20 61 72 | .all.:rfc:`6888`.requirements.ar |
| 1092c0 | 65 20 69 6d 70 6c 65 6d 65 6e 74 65 64 20 69 6e 20 43 47 4e 41 54 2e 00 4e 6f 74 20 61 6c 6c 20 | e.implemented.in.CGNAT..Not.all. |
| 1092e0 | 74 72 61 6e 73 6d 69 74 20 70 6f 6c 69 63 69 65 73 20 6d 61 79 20 62 65 20 38 30 32 2e 33 61 64 | transmit.policies.may.be.802.3ad |
| 109300 | 20 63 6f 6d 70 6c 69 61 6e 74 2c 20 70 61 72 74 69 63 75 6c 61 72 6c 79 20 69 6e 20 72 65 67 61 | .compliant,.particularly.in.rega |
| 109320 | 72 64 73 20 74 6f 20 74 68 65 20 70 61 63 6b 65 74 20 6d 69 73 6f 72 64 65 72 69 6e 67 20 72 65 | rds.to.the.packet.misordering.re |
| 109340 | 71 75 69 72 65 6d 65 6e 74 73 20 6f 66 20 73 65 63 74 69 6f 6e 20 34 33 2e 32 2e 34 20 6f 66 20 | quirements.of.section.43.2.4.of. |
| 109360 | 74 68 65 20 38 30 32 2e 33 61 64 20 73 74 61 6e 64 61 72 64 2e 00 4e 6f 74 65 20 74 68 61 74 20 | the.802.3ad.standard..Note.that. |
| 109380 | 64 65 6c 65 74 69 6e 67 20 74 68 65 20 6c 6f 67 20 66 69 6c 65 20 64 6f 65 73 20 6e 6f 74 20 73 | deleting.the.log.file.does.not.s |
| 1093a0 | 74 6f 70 20 74 68 65 20 73 79 73 74 65 6d 20 66 72 6f 6d 20 6c 6f 67 67 69 6e 67 20 65 76 65 6e | top.the.system.from.logging.even |
| 1093c0 | 74 73 2e 20 49 66 20 79 6f 75 20 75 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 77 68 69 6c | ts..If.you.use.this.command.whil |
| 1093e0 | 65 20 74 68 65 20 73 79 73 74 65 6d 20 69 73 20 6c 6f 67 67 69 6e 67 20 65 76 65 6e 74 73 2c 20 | e.the.system.is.logging.events,. |
| 109400 | 6f 6c 64 20 6c 6f 67 20 65 76 65 6e 74 73 20 77 69 6c 6c 20 62 65 20 64 65 6c 65 74 65 64 2c 20 | old.log.events.will.be.deleted,. |
| 109420 | 62 75 74 20 65 76 65 6e 74 73 20 61 66 74 65 72 20 74 68 65 20 64 65 6c 65 74 65 20 6f 70 65 72 | but.events.after.the.delete.oper |
| 109440 | 61 74 69 6f 6e 20 77 69 6c 6c 20 62 65 20 72 65 63 6f 72 64 65 64 20 69 6e 20 74 68 65 20 6e 65 | ation.will.be.recorded.in.the.ne |
| 109460 | 77 20 66 69 6c 65 2e 20 54 6f 20 64 65 6c 65 74 65 20 74 68 65 20 66 69 6c 65 20 61 6c 74 6f 67 | w.file..To.delete.the.file.altog |
| 109480 | 65 74 68 65 72 2c 20 66 69 72 73 74 20 64 65 6c 65 74 65 20 6c 6f 67 67 69 6e 67 20 74 6f 20 74 | ether,.first.delete.logging.to.t |
| 1094a0 | 68 65 20 66 69 6c 65 20 75 73 69 6e 67 20 73 79 73 74 65 6d 20 73 79 73 6c 6f 67 20 3a 72 65 66 | he.file.using.system.syslog.:ref |
| 1094c0 | 3a 60 63 75 73 74 6f 6d 2d 66 69 6c 65 60 20 63 6f 6d 6d 61 6e 64 2c 20 61 6e 64 20 74 68 65 6e | :`custom-file`.command,.and.then |
| 1094e0 | 20 64 65 6c 65 74 65 20 74 68 65 20 66 69 6c 65 2e 00 4e 6f 74 65 20 74 68 65 20 63 6f 6d 6d 61 | .delete.the.file..Note.the.comma |
| 109500 | 6e 64 20 77 69 74 68 20 74 68 65 20 70 75 62 6c 69 63 20 6b 65 79 20 28 73 65 74 20 70 6b 69 20 | nd.with.the.public.key.(set.pki. |
| 109520 | 6b 65 79 2d 70 61 69 72 20 69 70 73 65 63 2d 52 49 47 48 54 20 70 75 62 6c 69 63 20 6b 65 79 20 | key-pair.ipsec-RIGHT.public.key. |
| 109540 | 27 46 41 41 4f 43 41 51 38 41 4d 49 49 2e 2e 2e 27 29 2e 00 4e 6f 74 65 3a 20 63 65 72 74 69 66 | 'FAAOCAQ8AMII...')..Note:.certif |
| 109560 | 69 63 61 74 65 20 6e 61 6d 65 73 20 64 6f 6e 27 74 20 6d 61 74 74 65 72 2c 20 77 65 20 75 73 65 | icate.names.don't.matter,.we.use |
| 109580 | 20 27 6f 70 65 6e 76 70 6e 2d 6c 6f 63 61 6c 27 20 61 6e 64 20 27 6f 70 65 6e 76 70 6e 2d 72 65 | .'openvpn-local'.and.'openvpn-re |
| 1095a0 | 6d 6f 74 65 27 20 62 75 74 20 74 68 65 79 20 63 61 6e 20 62 65 20 61 72 62 69 74 72 61 72 79 2e | mote'.but.they.can.be.arbitrary. |
| 1095c0 | 00 4e 6f 74 69 63 65 00 4e 6f 77 20 63 6f 6e 66 69 67 75 72 65 20 63 6f 6e 6e 74 72 61 63 6b 2d | .Notice.Now.configure.conntrack- |
| 1095e0 | 73 79 6e 63 20 73 65 72 76 69 63 65 20 6f 6e 20 60 60 72 6f 75 74 65 72 31 60 60 20 2a 2a 61 6e | sync.service.on.``router1``.**an |
| 109600 | 64 2a 2a 20 60 60 72 6f 75 74 65 72 32 60 60 00 4e 6f 77 20 74 68 65 20 6e 6f 74 65 64 20 70 75 | d**.``router2``.Now.the.noted.pu |
| 109620 | 62 6c 69 63 20 6b 65 79 73 20 73 68 6f 75 6c 64 20 62 65 20 65 6e 74 65 72 65 64 20 6f 6e 20 74 | blic.keys.should.be.entered.on.t |
| 109640 | 68 65 20 6f 70 70 6f 73 69 74 65 20 72 6f 75 74 65 72 73 2e 00 4e 6f 77 20 74 68 65 20 75 73 65 | he.opposite.routers..Now.the.use |
| 109660 | 72 20 63 61 6e 20 63 6f 6e 6e 65 63 74 20 74 68 72 6f 75 67 68 20 73 73 68 20 74 6f 20 74 68 65 | r.can.connect.through.ssh.to.the |
| 109680 | 20 72 6f 75 74 65 72 20 28 61 73 73 75 6d 69 6e 67 20 73 73 68 20 69 73 20 63 6f 6e 66 69 67 75 | .router.(assuming.ssh.is.configu |
| 1096a0 | 72 65 64 29 2e 00 4e 6f 77 20 75 73 65 72 20 63 61 6e 20 63 6f 6e 6e 65 63 74 20 74 68 72 6f 75 | red)..Now.user.can.connect.throu |
| 1096c0 | 67 68 20 73 73 68 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 20 28 61 73 73 75 6d 69 6e 67 20 73 | gh.ssh.to.the.router.(assuming.s |
| 1096e0 | 73 68 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 29 2e 00 4e 6f 77 20 77 65 20 61 64 64 20 74 68 | sh.is.configured)..Now.we.add.th |
| 109700 | 65 20 6f 70 74 69 6f 6e 20 74 6f 20 74 68 65 20 73 63 6f 70 65 2c 20 61 64 61 70 74 20 74 6f 20 | e.option.to.the.scope,.adapt.to. |
| 109720 | 79 6f 75 72 20 73 65 74 75 70 00 4e 6f 77 20 77 65 20 6e 65 65 64 20 74 6f 20 73 70 65 63 69 66 | your.setup.Now.we.need.to.specif |
| 109740 | 79 20 74 68 65 20 73 65 72 76 65 72 20 6e 65 74 77 6f 72 6b 20 73 65 74 74 69 6e 67 73 2e 20 49 | y.the.server.network.settings..I |
| 109760 | 6e 20 61 6c 6c 20 63 61 73 65 73 20 77 65 20 6e 65 65 64 20 74 6f 20 73 70 65 63 69 66 79 20 74 | n.all.cases.we.need.to.specify.t |
| 109780 | 68 65 20 73 75 62 6e 65 74 20 66 6f 72 20 63 6c 69 65 6e 74 20 74 75 6e 6e 65 6c 20 65 6e 64 70 | he.subnet.for.client.tunnel.endp |
| 1097a0 | 6f 69 6e 74 73 2e 20 53 69 6e 63 65 20 77 65 20 77 61 6e 74 20 63 6c 69 65 6e 74 73 20 74 6f 20 | oints..Since.we.want.clients.to. |
| 1097c0 | 61 63 63 65 73 73 20 61 20 73 70 65 63 69 66 69 63 20 6e 65 74 77 6f 72 6b 20 62 65 68 69 6e 64 | access.a.specific.network.behind |
| 1097e0 | 20 6f 75 72 20 72 6f 75 74 65 72 2c 20 77 65 20 77 69 6c 6c 20 75 73 65 20 61 20 70 75 73 68 2d | .our.router,.we.will.use.a.push- |
| 109800 | 72 6f 75 74 65 20 6f 70 74 69 6f 6e 20 66 6f 72 20 69 6e 73 74 61 6c 6c 69 6e 67 20 74 68 61 74 | route.option.for.installing.that |
| 109820 | 20 72 6f 75 74 65 20 6f 6e 20 63 6c 69 65 6e 74 73 2e 00 4e 6f 77 20 77 68 65 6e 20 63 6f 6e 6e | .route.on.clients..Now.when.conn |
| 109840 | 65 63 74 69 6e 67 20 74 68 65 20 75 73 65 72 20 77 69 6c 6c 20 66 69 72 73 74 20 62 65 20 61 73 | ecting.the.user.will.first.be.as |
| 109860 | 6b 65 64 20 66 6f 72 20 74 68 65 20 70 61 73 73 77 6f 72 64 20 61 6e 64 20 74 68 65 6e 20 74 68 | ked.for.the.password.and.then.th |
| 109880 | 65 20 4f 54 50 20 6b 65 79 2e 00 4e 6f 77 20 79 6f 75 20 61 72 65 20 72 65 61 64 79 20 74 6f 20 | e.OTP.key..Now.you.are.ready.to. |
| 1098a0 | 73 65 74 75 70 20 49 50 73 65 63 2e 20 54 68 65 20 6b 65 79 20 70 6f 69 6e 74 73 3a 00 4e 6f 77 | setup.IPsec..The.key.points:.Now |
| 1098c0 | 20 79 6f 75 20 61 72 65 20 72 65 61 64 79 20 74 6f 20 73 65 74 75 70 20 49 50 73 65 63 2e 20 59 | .you.are.ready.to.setup.IPsec..Y |
| 1098e0 | 6f 75 27 6c 6c 20 6e 65 65 64 20 74 6f 20 75 73 65 20 61 6e 20 49 44 20 69 6e 73 74 65 61 64 20 | ou'll.need.to.use.an.ID.instead. |
| 109900 | 6f 66 20 61 64 64 72 65 73 73 20 66 6f 72 20 74 68 65 20 70 65 65 72 2e 00 4e 75 6d 62 65 72 20 | of.address.for.the.peer..Number. |
| 109920 | 6f 66 20 61 6e 74 65 6e 6e 61 73 20 6f 6e 20 74 68 69 73 20 63 61 72 64 00 4e 75 6d 62 65 72 20 | of.antennas.on.this.card.Number. |
| 109940 | 6f 66 20 62 69 74 73 20 6f 66 20 63 6c 69 65 6e 74 20 49 50 76 34 20 61 64 64 72 65 73 73 20 74 | of.bits.of.client.IPv4.address.t |
| 109960 | 6f 20 70 61 73 73 20 77 68 65 6e 20 73 65 6e 64 69 6e 67 20 45 44 4e 53 20 43 6c 69 65 6e 74 20 | o.pass.when.sending.EDNS.Client. |
| 109980 | 53 75 62 6e 65 74 20 61 64 64 72 65 73 73 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2e 00 4e 75 6d 62 | Subnet.address.information..Numb |
| 1099a0 | 65 72 20 6f 66 20 6c 69 6e 65 73 20 74 6f 20 62 65 20 64 69 73 70 6c 61 79 65 64 2c 20 64 65 66 | er.of.lines.to.be.displayed,.def |
| 1099c0 | 61 75 6c 74 20 31 30 00 4f 53 50 46 00 4f 53 50 46 20 53 52 20 20 43 6f 6e 66 69 67 75 72 61 74 | ault.10.OSPF.OSPF.SR..Configurat |
| 1099e0 | 69 6f 6e 00 4f 53 50 46 20 69 73 20 61 20 77 69 64 65 6c 79 20 75 73 65 64 20 49 47 50 20 69 6e | ion.OSPF.is.a.widely.used.IGP.in |
| 109a00 | 20 6c 61 72 67 65 20 65 6e 74 65 72 70 72 69 73 65 20 6e 65 74 77 6f 72 6b 73 2e 00 4f 53 50 46 | .large.enterprise.networks..OSPF |
| 109a20 | 20 72 6f 75 74 69 6e 67 20 64 65 76 69 63 65 73 20 6e 6f 72 6d 61 6c 6c 79 20 64 69 73 63 6f 76 | .routing.devices.normally.discov |
| 109a40 | 65 72 20 74 68 65 69 72 20 6e 65 69 67 68 62 6f 72 73 20 64 79 6e 61 6d 69 63 61 6c 6c 79 20 62 | er.their.neighbors.dynamically.b |
| 109a60 | 79 20 6c 69 73 74 65 6e 69 6e 67 20 74 6f 20 74 68 65 20 62 72 6f 61 64 63 61 73 74 20 6f 72 20 | y.listening.to.the.broadcast.or. |
| 109a80 | 6d 75 6c 74 69 63 61 73 74 20 68 65 6c 6c 6f 20 70 61 63 6b 65 74 73 20 6f 6e 20 74 68 65 20 6e | multicast.hello.packets.on.the.n |
| 109aa0 | 65 74 77 6f 72 6b 2e 20 42 65 63 61 75 73 65 20 61 6e 20 4e 42 4d 41 20 6e 65 74 77 6f 72 6b 20 | etwork..Because.an.NBMA.network. |
| 109ac0 | 64 6f 65 73 20 6e 6f 74 20 73 75 70 70 6f 72 74 20 62 72 6f 61 64 63 61 73 74 20 28 6f 72 20 6d | does.not.support.broadcast.(or.m |
| 109ae0 | 75 6c 74 69 63 61 73 74 29 2c 20 74 68 65 20 64 65 76 69 63 65 20 63 61 6e 6e 6f 74 20 64 69 73 | ulticast),.the.device.cannot.dis |
| 109b00 | 63 6f 76 65 72 20 69 74 73 20 6e 65 69 67 68 62 6f 72 73 20 64 79 6e 61 6d 69 63 61 6c 6c 79 2c | cover.its.neighbors.dynamically, |
| 109b20 | 20 73 6f 20 79 6f 75 20 6d 75 73 74 20 63 6f 6e 66 69 67 75 72 65 20 61 6c 6c 20 74 68 65 20 6e | .so.you.must.configure.all.the.n |
| 109b40 | 65 69 67 68 62 6f 72 73 20 73 74 61 74 69 63 61 6c 6c 79 2e 00 4f 53 50 46 76 32 20 28 49 50 76 | eighbors.statically..OSPFv2.(IPv |
| 109b60 | 34 29 00 4f 53 50 46 76 33 20 28 49 50 76 36 29 00 4f 54 50 2d 6b 65 79 20 67 65 6e 65 72 61 74 | 4).OSPFv3.(IPv6).OTP-key.generat |
| 109b80 | 69 6f 6e 00 4f 66 66 6c 6f 61 64 69 6e 67 00 4f 66 66 73 65 74 20 6f 66 20 74 68 65 20 63 6c 69 | ion.Offloading.Offset.of.the.cli |
| 109ba0 | 65 6e 74 27 73 20 73 75 62 6e 65 74 20 69 6e 20 73 65 63 6f 6e 64 73 20 66 72 6f 6d 20 43 6f 6f | ent's.subnet.in.seconds.from.Coo |
| 109bc0 | 72 64 69 6e 61 74 65 64 20 55 6e 69 76 65 72 73 61 6c 20 54 69 6d 65 20 28 55 54 43 29 00 4f 66 | rdinated.Universal.Time.(UTC).Of |
| 109be0 | 74 65 6e 20 77 65 20 6e 65 65 64 20 74 6f 20 65 6d 62 65 64 20 6f 6e 65 20 70 6f 6c 69 63 79 20 | ten.we.need.to.embed.one.policy. |
| 109c00 | 69 6e 74 6f 20 61 6e 6f 74 68 65 72 20 6f 6e 65 2e 20 49 74 20 69 73 20 70 6f 73 73 69 62 6c 65 | into.another.one..It.is.possible |
| 109c20 | 20 74 6f 20 64 6f 20 73 6f 20 6f 6e 20 63 6c 61 73 73 66 75 6c 20 70 6f 6c 69 63 69 65 73 2c 20 | .to.do.so.on.classful.policies,. |
| 109c40 | 62 79 20 61 74 74 61 63 68 69 6e 67 20 61 20 6e 65 77 20 70 6f 6c 69 63 79 20 69 6e 74 6f 20 61 | by.attaching.a.new.policy.into.a |
| 109c60 | 20 63 6c 61 73 73 2e 20 46 6f 72 20 69 6e 73 74 61 6e 63 65 2c 20 79 6f 75 20 6d 69 67 68 74 20 | .class..For.instance,.you.might. |
| 109c80 | 77 61 6e 74 20 74 6f 20 61 70 70 6c 79 20 64 69 66 66 65 72 65 6e 74 20 70 6f 6c 69 63 69 65 73 | want.to.apply.different.policies |
| 109ca0 | 20 74 6f 20 74 68 65 20 64 69 66 66 65 72 65 6e 74 20 63 6c 61 73 73 65 73 20 6f 66 20 61 20 52 | .to.the.different.classes.of.a.R |
| 109cc0 | 6f 75 6e 64 2d 52 6f 62 69 6e 20 70 6f 6c 69 63 79 20 79 6f 75 20 68 61 76 65 20 63 6f 6e 66 69 | ound-Robin.policy.you.have.confi |
| 109ce0 | 67 75 72 65 64 2e 00 4f 66 74 65 6e 20 79 6f 75 20 77 69 6c 6c 20 61 6c 73 6f 20 68 61 76 65 20 | gured..Often.you.will.also.have. |
| 109d00 | 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 79 6f 75 72 20 2a 64 65 66 61 75 6c 74 2a 20 74 72 61 66 | to.configure.your.*default*.traf |
| 109d20 | 66 69 63 20 69 6e 20 74 68 65 20 73 61 6d 65 20 77 61 79 20 79 6f 75 20 64 6f 20 77 69 74 68 20 | fic.in.the.same.way.you.do.with. |
| 109d40 | 61 20 63 6c 61 73 73 2e 20 2a 44 65 66 61 75 6c 74 2a 20 63 61 6e 20 62 65 20 63 6f 6e 73 69 64 | a.class..*Default*.can.be.consid |
| 109d60 | 65 72 65 64 20 61 20 63 6c 61 73 73 20 61 73 20 69 74 20 62 65 68 61 76 65 73 20 6c 69 6b 65 20 | ered.a.class.as.it.behaves.like. |
| 109d80 | 74 68 61 74 2e 20 49 74 20 63 6f 6e 74 61 69 6e 73 20 61 6e 79 20 74 72 61 66 66 69 63 20 74 68 | that..It.contains.any.traffic.th |
| 109da0 | 61 74 20 64 69 64 20 6e 6f 74 20 6d 61 74 63 68 20 61 6e 79 20 6f 66 20 74 68 65 20 64 65 66 69 | at.did.not.match.any.of.the.defi |
| 109dc0 | 6e 65 64 20 63 6c 61 73 73 65 73 2c 20 73 6f 20 69 74 20 69 73 20 6c 69 6b 65 20 61 6e 20 6f 70 | ned.classes,.so.it.is.like.an.op |
| 109de0 | 65 6e 20 63 6c 61 73 73 2c 20 61 20 63 6c 61 73 73 20 77 69 74 68 6f 75 74 20 6d 61 74 63 68 69 | en.class,.a.class.without.matchi |
| 109e00 | 6e 67 20 66 69 6c 74 65 72 73 2e 00 4f 6e 20 61 63 74 69 76 65 20 72 6f 75 74 65 72 20 72 75 6e | ng.filters..On.active.router.run |
| 109e20 | 3a 00 4f 6e 20 62 6f 74 68 20 73 69 64 65 73 2c 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 67 65 6e | :.On.both.sides,.you.need.to.gen |
| 109e40 | 65 72 61 74 65 20 61 20 73 65 6c 66 2d 73 69 67 6e 65 64 20 63 65 72 74 69 66 69 63 61 74 65 2c | erate.a.self-signed.certificate, |
| 109e60 | 20 70 72 65 66 65 72 72 61 62 6c 79 20 75 73 69 6e 67 20 74 68 65 20 22 65 63 22 20 28 65 6c 6c | .preferrably.using.the."ec".(ell |
| 109e80 | 69 70 74 69 63 20 63 75 72 76 65 29 20 74 79 70 65 2e 20 59 6f 75 20 63 61 6e 20 67 65 6e 65 72 | iptic.curve).type..You.can.gener |
| 109ea0 | 61 74 65 20 74 68 65 6d 20 62 79 20 65 78 65 63 75 74 69 6e 67 20 63 6f 6d 6d 61 6e 64 20 60 60 | ate.them.by.executing.command.`` |
| 109ec0 | 72 75 6e 20 67 65 6e 65 72 61 74 65 20 70 6b 69 20 63 65 72 74 69 66 69 63 61 74 65 20 73 65 6c | run.generate.pki.certificate.sel |
| 109ee0 | 66 2d 73 69 67 6e 65 64 20 69 6e 73 74 61 6c 6c 20 3c 6e 61 6d 65 3e 60 60 20 69 6e 20 74 68 65 | f-signed.install.<name>``.in.the |
| 109f00 | 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d 6f 64 65 2e 20 4f 6e 63 65 20 74 68 65 20 63 6f | .configuration.mode..Once.the.co |
| 109f20 | 6d 6d 61 6e 64 20 69 73 20 63 6f 6d 70 6c 65 74 65 2c 20 69 74 20 77 69 6c 6c 20 61 64 64 20 74 | mmand.is.complete,.it.will.add.t |
| 109f40 | 68 65 20 63 65 72 74 69 66 69 63 61 74 65 20 74 6f 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 | he.certificate.to.the.configurat |
| 109f60 | 69 6f 6e 20 73 65 73 73 69 6f 6e 2c 20 74 6f 20 74 68 65 20 60 60 70 6b 69 60 60 20 73 75 62 74 | ion.session,.to.the.``pki``.subt |
| 109f80 | 72 65 65 2e 20 59 6f 75 20 63 61 6e 20 74 68 65 6e 20 72 65 76 69 65 77 20 74 68 65 20 70 72 6f | ree..You.can.then.review.the.pro |
| 109fa0 | 70 6f 73 65 64 20 63 68 61 6e 67 65 73 20 61 6e 64 20 63 6f 6d 6d 69 74 20 74 68 65 6d 2e 00 4f | posed.changes.and.commit.them..O |
| 109fc0 | 6e 20 6c 6f 77 20 72 61 74 65 73 20 28 62 65 6c 6f 77 20 34 30 4d 62 69 74 29 20 79 6f 75 20 6d | n.low.rates.(below.40Mbit).you.m |
| 109fe0 | 61 79 20 77 61 6e 74 20 74 6f 20 74 75 6e 65 20 60 71 75 61 6e 74 75 6d 60 20 64 6f 77 6e 20 74 | ay.want.to.tune.`quantum`.down.t |
| 10a000 | 6f 20 73 6f 6d 65 74 68 69 6e 67 20 6c 69 6b 65 20 33 30 30 20 62 79 74 65 73 2e 00 4f 6e 20 6d | o.something.like.300.bytes..On.m |
| 10a020 | 6f 73 74 20 73 63 65 6e 61 72 69 6f 73 2c 20 74 68 65 72 65 27 73 20 6e 6f 20 6e 65 65 64 20 74 | ost.scenarios,.there's.no.need.t |
| 10a040 | 6f 20 63 68 61 6e 67 65 20 73 70 65 63 69 66 69 63 20 70 61 72 61 6d 65 74 65 72 73 2c 20 61 6e | o.change.specific.parameters,.an |
| 10a060 | 64 20 75 73 69 6e 67 20 64 65 66 61 75 6c 74 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 73 | d.using.default.configuration.is |
| 10a080 | 20 65 6e 6f 75 67 68 2e 20 42 75 74 20 74 68 65 72 65 20 61 72 65 20 63 61 73 65 73 20 77 65 72 | .enough..But.there.are.cases.wer |
| 10a0a0 | 65 20 65 78 74 72 61 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 73 20 6e 65 65 64 65 64 2e | e.extra.configuration.is.needed. |
| 10a0c0 | 00 4f 6e 20 73 74 61 6e 64 62 79 20 72 6f 75 74 65 72 20 72 75 6e 3a 00 4f 6e 20 73 79 73 74 65 | .On.standby.router.run:.On.syste |
| 10a0e0 | 6d 73 20 77 69 74 68 20 6d 75 6c 74 69 70 6c 65 20 72 65 64 75 6e 64 61 6e 74 20 75 70 6c 69 6e | ms.with.multiple.redundant.uplin |
| 10a100 | 6b 73 20 61 6e 64 20 72 6f 75 74 65 73 2c 20 69 74 27 73 20 61 20 67 6f 6f 64 20 69 64 65 61 20 | ks.and.routes,.it's.a.good.idea. |
| 10a120 | 74 6f 20 75 73 65 20 61 20 64 65 64 69 63 61 74 65 64 20 61 64 64 72 65 73 73 20 66 6f 72 20 6d | to.use.a.dedicated.address.for.m |
| 10a140 | 61 6e 61 67 65 6d 65 6e 74 20 61 6e 64 20 64 79 6e 61 6d 69 63 20 72 6f 75 74 69 6e 67 20 70 72 | anagement.and.dynamic.routing.pr |
| 10a160 | 6f 74 6f 63 6f 6c 73 2e 20 48 6f 77 65 76 65 72 2c 20 61 73 73 69 67 6e 69 6e 67 20 74 68 61 74 | otocols..However,.assigning.that |
| 10a180 | 20 61 64 64 72 65 73 73 20 74 6f 20 61 20 70 68 79 73 69 63 61 6c 20 6c 69 6e 6b 20 69 73 20 72 | .address.to.a.physical.link.is.r |
| 10a1a0 | 69 73 6b 79 3a 20 69 66 20 74 68 61 74 20 6c 69 6e 6b 20 67 6f 65 73 20 64 6f 77 6e 2c 20 74 68 | isky:.if.that.link.goes.down,.th |
| 10a1c0 | 61 74 20 61 64 64 72 65 73 73 20 77 69 6c 6c 20 62 65 63 6f 6d 65 20 69 6e 61 63 63 65 73 73 69 | at.address.will.become.inaccessi |
| 10a1e0 | 62 6c 65 2e 20 41 20 63 6f 6d 6d 6f 6e 20 73 6f 6c 75 74 69 6f 6e 20 69 73 20 74 6f 20 61 73 73 | ble..A.common.solution.is.to.ass |
| 10a200 | 69 67 6e 20 74 68 65 20 6d 61 6e 61 67 65 6d 65 6e 74 20 61 64 64 72 65 73 73 20 74 6f 20 61 20 | ign.the.management.address.to.a. |
| 10a220 | 6c 6f 6f 70 62 61 63 6b 20 6f 72 20 61 20 64 75 6d 6d 79 20 69 6e 74 65 72 66 61 63 65 20 61 6e | loopback.or.a.dummy.interface.an |
| 10a240 | 64 20 61 64 76 65 72 74 69 73 65 20 74 68 61 74 20 61 64 64 72 65 73 73 20 76 69 61 20 61 6c 6c | d.advertise.that.address.via.all |
| 10a260 | 20 70 68 79 73 69 63 61 6c 20 6c 69 6e 6b 73 2c 20 73 6f 20 74 68 61 74 20 69 74 27 73 20 72 65 | .physical.links,.so.that.it's.re |
| 10a280 | 61 63 68 61 62 6c 65 20 74 68 72 6f 75 67 68 20 61 6e 79 20 6f 66 20 74 68 65 6d 2e 20 53 69 6e | achable.through.any.of.them..Sin |
| 10a2a0 | 63 65 20 69 6e 20 4c 69 6e 75 78 2d 62 61 73 65 64 20 73 79 73 74 65 6d 73 2c 20 74 68 65 72 65 | ce.in.Linux-based.systems,.there |
| 10a2c0 | 20 63 61 6e 20 62 65 20 6f 6e 6c 79 20 6f 6e 65 20 6c 6f 6f 70 62 61 63 6b 20 69 6e 74 65 72 66 | .can.be.only.one.loopback.interf |
| 10a2e0 | 61 63 65 2c 20 69 74 27 73 20 62 65 74 74 65 72 20 74 6f 20 75 73 65 20 61 20 64 75 6d 6d 79 20 | ace,.it's.better.to.use.a.dummy. |
| 10a300 | 69 6e 74 65 72 66 61 63 65 20 66 6f 72 20 74 68 61 74 20 70 75 72 70 6f 73 65 2c 20 73 69 6e 63 | interface.for.that.purpose,.sinc |
| 10a320 | 65 20 74 68 65 79 20 63 61 6e 20 62 65 20 61 64 64 65 64 2c 20 72 65 6d 6f 76 65 64 2c 20 61 6e | e.they.can.be.added,.removed,.an |
| 10a340 | 64 20 74 61 6b 65 6e 20 75 70 20 61 6e 64 20 64 6f 77 6e 20 69 6e 64 65 70 65 6e 64 65 6e 74 6c | d.taken.up.and.down.independentl |
| 10a360 | 79 2e 00 4f 6e 20 74 68 65 20 4c 45 46 54 20 28 73 74 61 74 69 63 20 61 64 64 72 65 73 73 29 3a | y..On.the.LEFT.(static.address): |
| 10a380 | 00 4f 6e 20 74 68 65 20 4c 45 46 54 3a 00 4f 6e 20 74 68 65 20 52 49 47 48 54 20 28 64 79 6e 61 | .On.the.LEFT:.On.the.RIGHT.(dyna |
| 10a3a0 | 6d 69 63 20 61 64 64 72 65 73 73 29 3a 00 4f 6e 20 74 68 65 20 52 49 47 48 54 2c 20 73 65 74 75 | mic.address):.On.the.RIGHT,.setu |
| 10a3c0 | 70 20 62 79 20 61 6e 61 6c 6f 67 79 20 61 6e 64 20 73 77 61 70 20 6c 6f 63 61 6c 20 61 6e 64 20 | p.by.analogy.and.swap.local.and. |
| 10a3e0 | 72 65 6d 6f 74 65 20 61 64 64 72 65 73 73 65 73 2e 00 4f 6e 20 74 68 65 20 52 49 47 48 54 3a 00 | remote.addresses..On.the.RIGHT:. |
| 10a400 | 4f 6e 20 74 68 65 20 61 63 74 69 76 65 20 72 6f 75 74 65 72 2c 20 79 6f 75 20 73 68 6f 75 6c 64 | On.the.active.router,.you.should |
| 10a420 | 20 68 61 76 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 69 6e 20 74 68 65 20 69 6e 74 65 72 6e 61 | .have.information.in.the.interna |
| 10a440 | 6c 2d 63 61 63 68 65 20 6f 66 20 63 6f 6e 6e 74 72 61 63 6b 2d 73 79 6e 63 2e 20 54 68 65 20 73 | l-cache.of.conntrack-sync..The.s |
| 10a460 | 61 6d 65 20 63 75 72 72 65 6e 74 20 61 63 74 69 76 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 6e | ame.current.active.connections.n |
| 10a480 | 75 6d 62 65 72 20 73 68 6f 75 6c 64 20 62 65 20 73 68 6f 77 6e 20 69 6e 20 74 68 65 20 65 78 74 | umber.should.be.shown.in.the.ext |
| 10a4a0 | 65 72 6e 61 6c 2d 63 61 63 68 65 20 6f 66 20 74 68 65 20 73 74 61 6e 64 62 79 20 72 6f 75 74 65 | ernal-cache.of.the.standby.route |
| 10a4c0 | 72 00 4f 6e 20 74 68 65 20 69 6e 69 74 69 61 74 6f 72 2c 20 77 65 20 6e 65 65 64 20 74 6f 20 73 | r.On.the.initiator,.we.need.to.s |
| 10a4e0 | 65 74 20 74 68 65 20 72 65 6d 6f 74 65 2d 69 64 20 6f 70 74 69 6f 6e 20 73 6f 20 74 68 61 74 20 | et.the.remote-id.option.so.that. |
| 10a500 | 69 74 20 63 61 6e 20 69 64 65 6e 74 69 66 79 20 49 4b 45 20 74 72 61 66 66 69 63 20 66 72 6f 6d | it.can.identify.IKE.traffic.from |
| 10a520 | 20 74 68 65 20 72 65 73 70 6f 6e 64 65 72 20 63 6f 72 72 65 63 74 6c 79 2e 00 4f 6e 20 74 68 65 | .the.responder.correctly..On.the |
| 10a540 | 20 69 6e 69 74 69 61 74 6f 72 2c 20 77 65 20 73 65 74 20 74 68 65 20 70 65 65 72 20 61 64 64 72 | .initiator,.we.set.the.peer.addr |
| 10a560 | 65 73 73 20 74 6f 20 69 74 73 20 70 75 62 6c 69 63 20 61 64 64 72 65 73 73 2c 20 62 75 74 20 6f | ess.to.its.public.address,.but.o |
| 10a580 | 6e 20 74 68 65 20 72 65 73 70 6f 6e 64 65 72 20 77 65 20 6f 6e 6c 79 20 73 65 74 20 74 68 65 20 | n.the.responder.we.only.set.the. |
| 10a5a0 | 69 64 2e 00 4f 6e 20 74 68 65 20 6c 61 73 74 20 68 6f 70 20 72 6f 75 74 65 72 20 69 66 20 69 74 | id..On.the.last.hop.router.if.it |
| 10a5c0 | 20 69 73 20 64 65 73 69 72 65 64 20 74 6f 20 6e 6f 74 20 73 77 69 74 63 68 20 6f 76 65 72 20 74 | .is.desired.to.not.switch.over.t |
| 10a5e0 | 6f 20 74 68 65 20 53 50 54 20 74 72 65 65 20 63 6f 6e 66 69 67 75 72 65 20 74 68 69 73 20 63 6f | o.the.SPT.tree.configure.this.co |
| 10a600 | 6d 6d 61 6e 64 2e 00 4f 6e 20 74 68 65 20 72 65 73 70 6f 6e 64 65 72 2c 20 77 65 20 6e 65 65 64 | mmand..On.the.responder,.we.need |
| 10a620 | 20 74 6f 20 73 65 74 20 74 68 65 20 6c 6f 63 61 6c 20 69 64 20 73 6f 20 74 68 61 74 20 69 6e 69 | .to.set.the.local.id.so.that.ini |
| 10a640 | 74 69 61 74 6f 72 20 63 61 6e 20 6b 6e 6f 77 20 77 68 6f 27 73 20 74 61 6c 6b 69 6e 67 20 74 6f | tiator.can.know.who's.talking.to |
| 10a660 | 20 69 74 20 66 6f 72 20 74 68 65 20 70 6f 69 6e 74 20 23 33 20 74 6f 20 77 6f 72 6b 2e 00 4f 6e | .it.for.the.point.#3.to.work..On |
| 10a680 | 63 65 20 61 20 63 6c 61 73 73 20 68 61 73 20 61 20 66 69 6c 74 65 72 20 63 6f 6e 66 69 67 75 72 | ce.a.class.has.a.filter.configur |
| 10a6a0 | 65 64 2c 20 79 6f 75 20 77 69 6c 6c 20 61 6c 73 6f 20 68 61 76 65 20 74 6f 20 64 65 66 69 6e 65 | ed,.you.will.also.have.to.define |
| 10a6c0 | 20 77 68 61 74 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 64 6f 20 77 69 74 68 20 74 68 65 20 74 72 | .what.you.want.to.do.with.the.tr |
| 10a6e0 | 61 66 66 69 63 20 6f 66 20 74 68 61 74 20 63 6c 61 73 73 2c 20 77 68 61 74 20 73 70 65 63 69 66 | affic.of.that.class,.what.specif |
| 10a700 | 69 63 20 54 72 61 66 66 69 63 2d 43 6f 6e 74 72 6f 6c 20 74 72 65 61 74 6d 65 6e 74 20 79 6f 75 | ic.Traffic-Control.treatment.you |
| 10a720 | 20 77 61 6e 74 20 74 6f 20 67 69 76 65 20 69 74 2e 20 59 6f 75 20 77 69 6c 6c 20 68 61 76 65 20 | .want.to.give.it..You.will.have. |
| 10a740 | 64 69 66 66 65 72 65 6e 74 20 70 6f 73 73 69 62 69 6c 69 74 69 65 73 20 64 65 70 65 6e 64 69 6e | different.possibilities.dependin |
| 10a760 | 67 20 6f 6e 20 74 68 65 20 54 72 61 66 66 69 63 20 50 6f 6c 69 63 79 20 79 6f 75 20 61 72 65 20 | g.on.the.Traffic.Policy.you.are. |
| 10a780 | 63 6f 6e 66 69 67 75 72 69 6e 67 2e 00 4f 6e 63 65 20 61 20 6e 65 69 67 68 62 6f 72 20 68 61 73 | configuring..Once.a.neighbor.has |
| 10a7a0 | 20 62 65 65 6e 20 66 6f 75 6e 64 2c 20 74 68 65 20 65 6e 74 72 79 20 69 73 20 63 6f 6e 73 69 64 | .been.found,.the.entry.is.consid |
| 10a7c0 | 65 72 65 64 20 74 6f 20 62 65 20 76 61 6c 69 64 20 66 6f 72 20 61 74 20 6c 65 61 73 74 20 66 6f | ered.to.be.valid.for.at.least.fo |
| 10a7e0 | 72 20 74 68 69 73 20 73 70 65 63 69 66 69 63 20 74 69 6d 65 2e 20 41 6e 20 65 6e 74 72 79 27 73 | r.this.specific.time..An.entry's |
| 10a800 | 20 76 61 6c 69 64 69 74 79 20 77 69 6c 6c 20 62 65 20 65 78 74 65 6e 64 65 64 20 69 66 20 69 74 | .validity.will.be.extended.if.it |
| 10a820 | 20 72 65 63 65 69 76 65 73 20 70 6f 73 69 74 69 76 65 20 66 65 65 64 62 61 63 6b 20 66 72 6f 6d | .receives.positive.feedback.from |
| 10a840 | 20 68 69 67 68 65 72 20 6c 65 76 65 6c 20 70 72 6f 74 6f 63 6f 6c 73 2e 00 4f 6e 63 65 20 61 20 | .higher.level.protocols..Once.a. |
| 10a860 | 72 6f 75 74 65 20 69 73 20 61 73 73 65 73 73 65 64 20 61 20 70 65 6e 61 6c 74 79 2c 20 74 68 65 | route.is.assessed.a.penalty,.the |
| 10a880 | 20 70 65 6e 61 6c 74 79 20 69 73 20 64 65 63 72 65 61 73 65 64 20 62 79 20 68 61 6c 66 20 65 61 | .penalty.is.decreased.by.half.ea |
| 10a8a0 | 63 68 20 74 69 6d 65 20 61 20 70 72 65 64 65 66 69 6e 65 64 20 61 6d 6f 75 6e 74 20 6f 66 20 74 | ch.time.a.predefined.amount.of.t |
| 10a8c0 | 69 6d 65 20 65 6c 61 70 73 65 73 20 28 68 61 6c 66 2d 6c 69 66 65 2d 74 69 6d 65 29 2e 20 57 68 | ime.elapses.(half-life-time)..Wh |
| 10a8e0 | 65 6e 20 74 68 65 20 61 63 63 75 6d 75 6c 61 74 65 64 20 70 65 6e 61 6c 74 69 65 73 20 66 61 6c | en.the.accumulated.penalties.fal |
| 10a900 | 6c 20 62 65 6c 6f 77 20 61 20 70 72 65 64 65 66 69 6e 65 64 20 74 68 72 65 73 68 6f 6c 64 20 28 | l.below.a.predefined.threshold.( |
| 10a920 | 72 65 75 73 65 2d 76 61 6c 75 65 29 2c 20 74 68 65 20 72 6f 75 74 65 20 69 73 20 75 6e 73 75 70 | reuse-value),.the.route.is.unsup |
| 10a940 | 70 72 65 73 73 65 64 20 61 6e 64 20 61 64 64 65 64 20 62 61 63 6b 20 69 6e 74 6f 20 74 68 65 20 | pressed.and.added.back.into.the. |
| 10a960 | 42 47 50 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 2e 00 4f 6e 63 65 20 61 20 74 72 61 66 66 69 | BGP.routing.table..Once.a.traffi |
| 10a980 | 63 2d 70 6f 6c 69 63 79 20 69 73 20 63 72 65 61 74 65 64 2c 20 79 6f 75 20 63 61 6e 20 61 70 70 | c-policy.is.created,.you.can.app |
| 10a9a0 | 6c 79 20 69 74 20 74 6f 20 61 6e 20 69 6e 74 65 72 66 61 63 65 3a 00 4f 6e 63 65 20 61 20 75 73 | ly.it.to.an.interface:.Once.a.us |
| 10a9c0 | 65 72 20 68 61 73 20 32 46 41 2f 4f 54 50 20 63 6f 6e 66 69 67 75 72 65 64 20 61 67 61 69 6e 73 | er.has.2FA/OTP.configured.agains |
| 10a9e0 | 74 20 74 68 65 69 72 20 61 63 63 6f 75 6e 74 2c 20 74 68 65 79 20 6d 75 73 74 20 6c 6f 67 69 6e | t.their.account,.they.must.login |
| 10aa00 | 20 75 73 69 6e 67 20 74 68 65 69 72 20 70 61 73 73 77 6f 72 64 20 77 69 74 68 20 74 68 65 20 4f | .using.their.password.with.the.O |
| 10aa20 | 54 50 20 63 6f 64 65 20 61 70 70 65 6e 64 65 64 20 74 6f 20 69 74 2e 20 46 6f 72 20 65 78 61 6d | TP.code.appended.to.it..For.exam |
| 10aa40 | 70 6c 65 3a 20 49 66 20 74 68 65 20 75 73 65 72 73 20 70 61 73 73 77 6f 72 64 20 69 73 20 76 79 | ple:.If.the.users.password.is.vy |
| 10aa60 | 6f 73 72 6f 63 6b 73 20 61 6e 64 20 74 68 65 20 4f 54 50 20 63 6f 64 65 20 69 73 20 38 31 37 34 | osrocks.and.the.OTP.code.is.8174 |
| 10aa80 | 35 34 20 74 68 65 6e 20 74 68 65 79 20 77 6f 75 6c 64 20 65 6e 74 65 72 20 74 68 65 69 72 20 70 | 54.then.they.would.enter.their.p |
| 10aaa0 | 61 73 73 77 6f 72 64 20 61 73 20 76 79 6f 73 72 6f 63 6b 73 38 31 37 34 35 34 00 4f 6e 63 65 20 | assword.as.vyosrocks817454.Once. |
| 10aac0 | 63 72 65 61 74 65 64 20 69 6e 20 74 68 65 20 73 79 73 74 65 6d 2c 20 50 73 65 75 64 6f 2d 45 74 | created.in.the.system,.Pseudo-Et |
| 10aae0 | 68 65 72 6e 65 74 20 69 6e 74 65 72 66 61 63 65 73 20 63 61 6e 20 62 65 20 72 65 66 65 72 65 6e | hernet.interfaces.can.be.referen |
| 10ab00 | 63 65 64 20 69 6e 20 74 68 65 20 65 78 61 63 74 20 73 61 6d 65 20 77 61 79 20 61 73 20 6f 74 68 | ced.in.the.exact.same.way.as.oth |
| 10ab20 | 65 72 20 45 74 68 65 72 6e 65 74 20 69 6e 74 65 72 66 61 63 65 73 2e 20 4e 6f 74 65 73 20 61 62 | er.Ethernet.interfaces..Notes.ab |
| 10ab40 | 6f 75 74 20 75 73 69 6e 67 20 50 73 65 75 64 6f 2d 20 45 74 68 65 72 6e 65 74 20 69 6e 74 65 72 | out.using.Pseudo-.Ethernet.inter |
| 10ab60 | 66 61 63 65 73 3a 00 4f 6e 63 65 20 64 79 6e 61 6d 69 63 20 66 69 72 65 77 61 6c 6c 20 67 72 6f | faces:.Once.dynamic.firewall.gro |
| 10ab80 | 75 70 73 20 61 72 65 20 64 65 66 69 6e 65 64 2c 20 74 68 65 79 20 73 68 6f 75 6c 64 20 62 65 20 | ups.are.defined,.they.should.be. |
| 10aba0 | 75 73 65 64 20 69 6e 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 20 69 6e 20 6f 72 64 65 72 20 | used.in.firewall.rules.in.order. |
| 10abc0 | 74 6f 20 64 79 6e 61 6d 69 63 61 6c 6c 79 20 61 64 64 20 65 6c 65 6d 65 6e 74 73 20 74 6f 20 69 | to.dynamically.add.elements.to.i |
| 10abe0 | 74 2e 00 4f 6e 63 65 20 66 6c 6f 77 20 61 63 63 6f 75 6e 74 69 6e 67 20 69 73 20 63 6f 6e 66 69 | t..Once.flow.accounting.is.confi |
| 10ac00 | 67 75 72 65 64 20 6f 6e 20 61 6e 20 69 6e 74 65 72 66 61 63 65 73 20 69 74 20 70 72 6f 76 69 64 | gured.on.an.interfaces.it.provid |
| 10ac20 | 65 73 20 74 68 65 20 61 62 69 6c 69 74 79 20 74 6f 20 64 69 73 70 6c 61 79 20 63 61 70 74 75 72 | es.the.ability.to.display.captur |
| 10ac40 | 65 64 20 6e 65 74 77 6f 72 6b 20 74 72 61 66 66 69 63 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 | ed.network.traffic.information.f |
| 10ac60 | 6f 72 20 61 6c 6c 20 63 6f 6e 66 69 67 75 72 65 64 20 69 6e 74 65 72 66 61 63 65 73 2e 00 4f 6e | or.all.configured.interfaces..On |
| 10ac80 | 63 65 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 69 73 20 63 6f 6d 70 6c 65 74 65 64 2c 20 69 74 20 | ce.the.command.is.completed,.it. |
| 10aca0 | 77 69 6c 6c 20 61 64 64 20 74 68 65 20 63 65 72 74 69 66 69 63 61 74 65 20 74 6f 20 74 68 65 20 | will.add.the.certificate.to.the. |
| 10acc0 | 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 73 65 73 73 69 6f 6e 2c 20 74 6f 20 74 68 65 20 70 6b | configuration.session,.to.the.pk |
| 10ace0 | 69 20 73 75 62 74 72 65 65 2e 20 59 6f 75 20 63 61 6e 20 74 68 65 6e 20 72 65 76 69 65 77 20 74 | i.subtree..You.can.then.review.t |
| 10ad00 | 68 65 20 70 72 6f 70 6f 73 65 64 20 63 68 61 6e 67 65 73 20 61 6e 64 20 63 6f 6d 6d 69 74 20 74 | he.proposed.changes.and.commit.t |
| 10ad20 | 68 65 6d 2e 00 4f 6e 63 65 20 74 68 65 20 66 69 72 73 74 20 70 61 63 6b 65 74 20 6f 66 20 74 68 | hem..Once.the.first.packet.of.th |
| 10ad40 | 65 20 66 6c 6f 77 20 73 75 63 63 65 73 73 66 75 6c 6c 79 20 67 6f 65 73 20 74 68 72 6f 75 67 68 | e.flow.successfully.goes.through |
| 10ad60 | 20 74 68 65 20 49 50 20 66 6f 72 77 61 72 64 69 6e 67 20 70 61 74 68 20 28 62 6c 61 63 6b 20 63 | .the.IP.forwarding.path.(black.c |
| 10ad80 | 69 72 63 6c 65 73 20 70 61 74 68 29 2c 20 66 72 6f 6d 20 74 68 65 20 73 65 63 6f 6e 64 20 70 61 | ircles.path),.from.the.second.pa |
| 10ada0 | 63 6b 65 74 20 6f 6e 2c 20 79 6f 75 20 6d 69 67 68 74 20 64 65 63 69 64 65 20 74 6f 20 6f 66 66 | cket.on,.you.might.decide.to.off |
| 10adc0 | 6c 6f 61 64 20 74 68 65 20 66 6c 6f 77 20 74 6f 20 74 68 65 20 66 6c 6f 77 74 61 62 6c 65 20 74 | load.the.flow.to.the.flowtable.t |
| 10ade0 | 68 72 6f 75 67 68 20 79 6f 75 72 20 72 75 6c 65 73 65 74 2e 20 54 68 65 20 66 6c 6f 77 74 61 62 | hrough.your.ruleset..The.flowtab |
| 10ae00 | 6c 65 20 69 6e 66 72 61 73 74 72 75 63 74 75 72 65 20 70 72 6f 76 69 64 65 73 20 61 20 72 75 6c | le.infrastructure.provides.a.rul |
| 10ae20 | 65 20 61 63 74 69 6f 6e 20 74 68 61 74 20 61 6c 6c 6f 77 73 20 79 6f 75 20 74 6f 20 73 70 65 63 | e.action.that.allows.you.to.spec |
| 10ae40 | 69 66 79 20 77 68 65 6e 20 74 6f 20 61 64 64 20 61 20 66 6c 6f 77 20 74 6f 20 74 68 65 20 66 6c | ify.when.to.add.a.flow.to.the.fl |
| 10ae60 | 6f 77 74 61 62 6c 65 20 28 4f 6e 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 69 6e 67 2c 20 72 | owtable.(On.forward.filtering,.r |
| 10ae80 | 65 64 20 63 69 72 63 6c 65 20 6e 75 6d 62 65 72 20 36 29 00 4f 6e 63 65 20 74 68 65 20 6c 6f 63 | ed.circle.number.6).Once.the.loc |
| 10aea0 | 61 6c 20 74 75 6e 6e 65 6c 20 65 6e 64 70 6f 69 6e 74 20 60 60 73 65 74 20 73 65 72 76 69 63 65 | al.tunnel.endpoint.``set.service |
| 10aec0 | 20 70 70 70 6f 65 2d 73 65 72 76 65 72 20 67 61 74 65 77 61 79 2d 61 64 64 72 65 73 73 20 27 31 | .pppoe-server.gateway-address.'1 |
| 10aee0 | 30 2e 31 2e 31 2e 32 27 60 60 20 68 61 73 20 62 65 65 6e 20 64 65 66 69 6e 65 64 2c 20 74 68 65 | 0.1.1.2'``.has.been.defined,.the |
| 10af00 | 20 63 6c 69 65 6e 74 20 49 50 20 70 6f 6f 6c 20 63 61 6e 20 62 65 20 65 69 74 68 65 72 20 64 65 | .client.IP.pool.can.be.either.de |
| 10af20 | 66 69 6e 65 64 20 61 73 20 61 20 72 61 6e 67 65 20 6f 72 20 61 73 20 73 75 62 6e 65 74 20 75 73 | fined.as.a.range.or.as.subnet.us |
| 10af40 | 69 6e 67 20 43 49 44 52 20 6e 6f 74 61 74 69 6f 6e 2e 20 49 66 20 74 68 65 20 43 49 44 52 20 6e | ing.CIDR.notation..If.the.CIDR.n |
| 10af60 | 6f 74 61 74 69 6f 6e 20 69 73 20 75 73 65 64 2c 20 6d 75 6c 74 69 70 6c 65 20 73 75 62 6e 65 74 | otation.is.used,.multiple.subnet |
| 10af80 | 73 20 63 61 6e 20 62 65 20 73 65 74 75 70 20 77 68 69 63 68 20 61 72 65 20 75 73 65 64 20 73 65 | s.can.be.setup.which.are.used.se |
| 10afa0 | 71 75 65 6e 74 69 61 6c 6c 79 2e 00 4f 6e 63 65 20 74 68 65 20 6d 61 74 63 68 69 6e 67 20 72 75 | quentially..Once.the.matching.ru |
| 10afc0 | 6c 65 73 20 61 72 65 20 73 65 74 20 66 6f 72 20 61 20 63 6c 61 73 73 2c 20 79 6f 75 20 63 61 6e | les.are.set.for.a.class,.you.can |
| 10afe0 | 20 73 74 61 72 74 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 68 6f 77 20 79 6f 75 20 77 61 6e 74 20 | .start.configuring.how.you.want. |
| 10b000 | 6d 61 74 63 68 69 6e 67 20 74 72 61 66 66 69 63 20 74 6f 20 62 65 68 61 76 65 2e 00 4f 6e 63 65 | matching.traffic.to.behave..Once |
| 10b020 | 20 74 68 65 20 75 73 65 72 20 69 73 20 63 6f 6e 6e 65 63 74 65 64 2c 20 74 68 65 20 75 73 65 72 | .the.user.is.connected,.the.user |
| 10b040 | 20 73 65 73 73 69 6f 6e 20 69 73 20 75 73 69 6e 67 20 74 68 65 20 73 65 74 20 6c 69 6d 69 74 73 | .session.is.using.the.set.limits |
| 10b060 | 20 61 6e 64 20 63 61 6e 20 62 65 20 64 69 73 70 6c 61 79 65 64 20 76 69 61 20 27 73 68 6f 77 20 | .and.can.be.displayed.via.'show. |
| 10b080 | 70 70 70 6f 65 2d 73 65 72 76 65 72 20 73 65 73 73 69 6f 6e 73 27 2e 00 4f 6e 63 65 20 74 68 65 | pppoe-server.sessions'..Once.the |
| 10b0a0 | 20 75 73 65 72 20 69 73 20 63 6f 6e 6e 65 63 74 65 64 2c 20 74 68 65 20 75 73 65 72 20 73 65 73 | .user.is.connected,.the.user.ses |
| 10b0c0 | 73 69 6f 6e 20 69 73 20 75 73 69 6e 67 20 74 68 65 20 73 65 74 20 6c 69 6d 69 74 73 20 61 6e 64 | sion.is.using.the.set.limits.and |
| 10b0e0 | 20 63 61 6e 20 62 65 20 64 69 73 70 6c 61 79 65 64 20 76 69 61 20 60 60 73 68 6f 77 20 70 70 70 | .can.be.displayed.via.``show.ppp |
| 10b100 | 6f 65 2d 73 65 72 76 65 72 20 73 65 73 73 69 6f 6e 73 60 60 2e 00 4f 6e 63 65 20 79 6f 75 20 63 | oe-server.sessions``..Once.you.c |
| 10b120 | 6f 6d 6d 69 74 20 74 68 65 20 61 62 6f 76 65 20 63 68 61 6e 67 65 73 20 79 6f 75 20 63 61 6e 20 | ommit.the.above.changes.you.can. |
| 10b140 | 63 72 65 61 74 65 20 61 20 63 6f 6e 66 69 67 20 66 69 6c 65 20 69 6e 20 74 68 65 20 2f 63 6f 6e | create.a.config.file.in.the./con |
| 10b160 | 66 69 67 2f 61 75 74 68 2f 6f 63 73 65 72 76 2f 63 6f 6e 66 69 67 2d 70 65 72 2d 75 73 65 72 20 | fig/auth/ocserv/config-per-user. |
| 10b180 | 64 69 72 65 63 74 6f 72 79 20 74 68 61 74 20 6d 61 74 63 68 65 73 20 61 20 75 73 65 72 6e 61 6d | directory.that.matches.a.usernam |
| 10b1a0 | 65 20 6f 66 20 61 20 75 73 65 72 20 79 6f 75 20 68 61 76 65 20 63 72 65 61 74 65 64 20 65 2e 67 | e.of.a.user.you.have.created.e.g |
| 10b1c0 | 2e 20 22 74 73 74 22 2e 20 4e 6f 77 20 77 68 65 6e 20 6c 6f 67 67 69 6e 67 20 69 6e 20 77 69 74 | .."tst"..Now.when.logging.in.wit |
| 10b1e0 | 68 20 74 68 65 20 22 74 73 74 22 20 75 73 65 72 20 74 68 65 20 63 6f 6e 66 69 67 20 6f 70 74 69 | h.the."tst".user.the.config.opti |
| 10b200 | 6f 6e 73 20 79 6f 75 20 73 65 74 20 69 6e 20 74 68 69 73 20 66 69 6c 65 20 77 69 6c 6c 20 62 65 | ons.you.set.in.this.file.will.be |
| 10b220 | 20 6c 6f 61 64 65 64 2e 00 4f 6e 63 65 20 79 6f 75 20 68 61 76 65 20 61 6e 20 45 74 68 65 72 6e | .loaded..Once.you.have.an.Ethern |
| 10b240 | 65 74 20 64 65 76 69 63 65 20 63 6f 6e 6e 65 63 74 65 64 2c 20 69 2e 65 2e 20 60 65 74 68 30 60 | et.device.connected,.i.e..`eth0` |
| 10b260 | 2c 20 74 68 65 6e 20 79 6f 75 20 63 61 6e 20 63 6f 6e 66 69 67 75 72 65 20 69 74 20 74 6f 20 6f | ,.then.you.can.configure.it.to.o |
| 10b280 | 70 65 6e 20 74 68 65 20 50 50 50 6f 45 20 73 65 73 73 69 6f 6e 20 66 6f 72 20 79 6f 75 20 61 6e | pen.the.PPPoE.session.for.you.an |
| 10b2a0 | 64 20 79 6f 75 72 20 44 53 4c 20 54 72 61 6e 73 63 65 69 76 65 72 20 28 4d 6f 64 65 6d 2f 52 6f | d.your.DSL.Transceiver.(Modem/Ro |
| 10b2c0 | 75 74 65 72 29 20 6a 75 73 74 20 61 63 74 73 20 74 6f 20 74 72 61 6e 73 6c 61 74 65 20 79 6f 75 | uter).just.acts.to.translate.you |
| 10b2e0 | 72 20 6d 65 73 73 61 67 65 73 20 69 6e 20 61 20 77 61 79 20 74 68 61 74 20 76 44 53 4c 2f 61 44 | r.messages.in.a.way.that.vDSL/aD |
| 10b300 | 53 4c 20 75 6e 64 65 72 73 74 61 6e 64 73 2e 00 4f 6e 63 65 20 79 6f 75 20 68 61 76 65 20 73 65 | SL.understands..Once.you.have.se |
| 10b320 | 74 75 70 20 79 6f 75 72 20 53 53 54 50 20 73 65 72 76 65 72 20 74 68 65 72 65 20 63 6f 6d 65 73 | tup.your.SSTP.server.there.comes |
| 10b340 | 20 74 68 65 20 74 69 6d 65 20 74 6f 20 64 6f 20 73 6f 6d 65 20 62 61 73 69 63 20 74 65 73 74 69 | .the.time.to.do.some.basic.testi |
| 10b360 | 6e 67 2e 20 54 68 65 20 4c 69 6e 75 78 20 63 6c 69 65 6e 74 20 75 73 65 64 20 66 6f 72 20 74 65 | ng..The.Linux.client.used.for.te |
| 10b380 | 73 74 69 6e 67 20 69 73 20 63 61 6c 6c 65 64 20 73 73 74 70 63 5f 2e 20 73 73 74 70 63 5f 20 72 | sting.is.called.sstpc_..sstpc_.r |
| 10b3a0 | 65 71 75 69 72 65 73 20 61 20 50 50 50 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 70 65 65 72 | equires.a.PPP.configuration/peer |
| 10b3c0 | 20 66 69 6c 65 2e 00 4f 6e 63 65 20 79 6f 75 72 20 72 6f 75 74 65 72 73 20 61 72 65 20 63 6f 6e | .file..Once.your.routers.are.con |
| 10b3e0 | 66 69 67 75 72 65 64 20 74 6f 20 72 65 6a 65 63 74 20 52 50 4b 49 2d 69 6e 76 61 6c 69 64 20 70 | figured.to.reject.RPKI-invalid.p |
| 10b400 | 72 65 66 69 78 65 73 2c 20 79 6f 75 20 63 61 6e 20 74 65 73 74 20 77 68 65 74 68 65 72 20 74 68 | refixes,.you.can.test.whether.th |
| 10b420 | 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 73 20 77 6f 72 6b 69 6e 67 20 63 6f 72 72 65 | e.configuration.is.working.corre |
| 10b440 | 63 74 6c 79 20 75 73 69 6e 67 20 43 6c 6f 75 64 66 6c 61 72 65 27 73 20 74 65 73 74 5f 20 77 65 | ctly.using.Cloudflare's.test_.we |
| 10b460 | 62 73 69 74 65 2e 20 4b 65 65 70 20 69 6e 20 6d 69 6e 64 20 74 68 61 74 20 69 6e 20 6f 72 64 65 | bsite..Keep.in.mind.that.in.orde |
| 10b480 | 72 20 66 6f 72 20 74 68 69 73 20 74 6f 20 77 6f 72 6b 2c 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 | r.for.this.to.work,.you.need.to. |
| 10b4a0 | 68 61 76 65 20 6e 6f 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 73 20 6f 72 20 61 6e 79 74 68 69 | have.no.default.routes.or.anythi |
| 10b4c0 | 6e 67 20 65 6c 73 65 20 74 68 61 74 20 77 6f 75 6c 64 20 73 74 69 6c 6c 20 73 65 6e 64 20 74 72 | ng.else.that.would.still.send.tr |
| 10b4e0 | 61 66 66 69 63 20 74 6f 20 52 50 4b 49 2d 69 6e 76 61 6c 69 64 20 64 65 73 74 69 6e 61 74 69 6f | affic.to.RPKI-invalid.destinatio |
| 10b500 | 6e 73 2e 00 4f 6e 63 65 20 79 6f 75 72 20 72 6f 75 74 65 72 73 20 61 72 65 20 63 6f 6e 66 69 67 | ns..Once.your.routers.are.config |
| 10b520 | 75 72 65 64 20 74 6f 20 72 65 6a 65 63 74 20 52 50 4b 49 2d 69 6e 76 61 6c 69 64 20 70 72 65 66 | ured.to.reject.RPKI-invalid.pref |
| 10b540 | 69 78 65 73 2c 20 79 6f 75 20 63 61 6e 20 74 65 73 74 20 77 68 65 74 68 65 72 20 74 68 65 20 63 | ixes,.you.can.test.whether.the.c |
| 10b560 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 73 20 77 6f 72 6b 69 6e 67 20 63 6f 72 72 65 63 74 6c | onfiguration.is.working.correctl |
| 10b580 | 79 20 75 73 69 6e 67 20 74 68 65 20 60 52 49 50 45 20 4c 61 62 73 20 52 50 4b 49 20 54 65 73 74 | y.using.the.`RIPE.Labs.RPKI.Test |
| 10b5a0 | 60 5f 20 65 78 70 65 72 69 6d 65 6e 74 61 6c 20 74 6f 6f 6c 2e 00 4f 6e 65 20 54 79 70 65 2d 33 | `_.experimental.tool..One.Type-3 |
| 10b5c0 | 20 73 75 6d 6d 61 72 79 2d 4c 53 41 20 77 69 74 68 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f 20 3c | .summary-LSA.with.routing.info.< |
| 10b5e0 | 45 2e 46 2e 47 2e 48 2f 4d 3e 20 69 73 20 61 6e 6e 6f 75 6e 63 65 64 20 69 6e 74 6f 20 62 61 63 | E.F.G.H/M>.is.announced.into.bac |
| 10b600 | 6b 62 6f 6e 65 20 61 72 65 61 20 69 66 20 64 65 66 69 6e 65 64 20 61 72 65 61 20 63 6f 6e 74 61 | kbone.area.if.defined.area.conta |
| 10b620 | 69 6e 73 20 61 74 20 6c 65 61 73 74 20 6f 6e 65 20 69 6e 74 72 61 2d 61 72 65 61 20 6e 65 74 77 | ins.at.least.one.intra-area.netw |
| 10b640 | 6f 72 6b 20 28 69 2e 65 2e 20 64 65 73 63 72 69 62 65 64 20 77 69 74 68 20 72 6f 75 74 65 72 2d | ork.(i.e..described.with.router- |
| 10b660 | 4c 53 41 20 6f 72 20 6e 65 74 77 6f 72 6b 2d 4c 53 41 29 20 66 72 6f 6d 20 72 61 6e 67 65 20 3c | LSA.or.network-LSA).from.range.< |
| 10b680 | 41 2e 42 2e 43 2e 44 2f 4d 3e 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 6d 61 6b 65 73 20 73 | A.B.C.D/M>..This.command.makes.s |
| 10b6a0 | 65 6e 73 65 20 69 6e 20 41 42 52 20 6f 6e 6c 79 2e 00 4f 6e 65 20 69 6d 70 6c 69 63 69 74 20 65 | ense.in.ABR.only..One.implicit.e |
| 10b6c0 | 6e 76 69 72 6f 6e 6d 65 6e 74 20 65 78 69 73 74 73 2e 00 4f 6e 65 20 6f 66 20 74 68 65 20 69 6d | nvironment.exists..One.of.the.im |
| 10b6e0 | 70 6f 72 74 61 6e 74 20 66 65 61 74 75 72 65 73 20 62 75 69 6c 74 20 6f 6e 20 74 6f 70 20 6f 66 | portant.features.built.on.top.of |
| 10b700 | 20 74 68 65 20 4e 65 74 66 69 6c 74 65 72 20 66 72 61 6d 65 77 6f 72 6b 20 69 73 20 63 6f 6e 6e | .the.Netfilter.framework.is.conn |
| 10b720 | 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 2e 20 43 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 | ection.tracking..Connection.trac |
| 10b740 | 6b 69 6e 67 20 61 6c 6c 6f 77 73 20 74 68 65 20 6b 65 72 6e 65 6c 20 74 6f 20 6b 65 65 70 20 74 | king.allows.the.kernel.to.keep.t |
| 10b760 | 72 61 63 6b 20 6f 66 20 61 6c 6c 20 6c 6f 67 69 63 61 6c 20 6e 65 74 77 6f 72 6b 20 63 6f 6e 6e | rack.of.all.logical.network.conn |
| 10b780 | 65 63 74 69 6f 6e 73 20 6f 72 20 73 65 73 73 69 6f 6e 73 2c 20 61 6e 64 20 74 68 65 72 65 62 79 | ections.or.sessions,.and.thereby |
| 10b7a0 | 20 72 65 6c 61 74 65 20 61 6c 6c 20 6f 66 20 74 68 65 20 70 61 63 6b 65 74 73 20 77 68 69 63 68 | .relate.all.of.the.packets.which |
| 10b7c0 | 20 6d 61 79 20 6d 61 6b 65 20 75 70 20 74 68 61 74 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 20 4e 41 | .may.make.up.that.connection..NA |
| 10b7e0 | 54 20 72 65 6c 69 65 73 20 6f 6e 20 74 68 69 73 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 6f 20 | T.relies.on.this.information.to. |
| 10b800 | 74 72 61 6e 73 6c 61 74 65 20 61 6c 6c 20 72 65 6c 61 74 65 64 20 70 61 63 6b 65 74 73 20 69 6e | translate.all.related.packets.in |
| 10b820 | 20 74 68 65 20 73 61 6d 65 20 77 61 79 2c 20 61 6e 64 20 69 70 74 61 62 6c 65 73 20 63 61 6e 20 | .the.same.way,.and.iptables.can. |
| 10b840 | 75 73 65 20 74 68 69 73 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 6f 20 61 63 74 20 61 73 20 61 | use.this.information.to.act.as.a |
| 10b860 | 20 73 74 61 74 65 66 75 6c 20 66 69 72 65 77 61 6c 6c 2e 00 4f 6e 65 20 6f 66 20 74 68 65 20 75 | .stateful.firewall..One.of.the.u |
| 10b880 | 73 65 73 20 6f 66 20 46 61 69 72 20 51 75 65 75 65 20 6d 69 67 68 74 20 62 65 20 74 68 65 20 6d | ses.of.Fair.Queue.might.be.the.m |
| 10b8a0 | 69 74 69 67 61 74 69 6f 6e 20 6f 66 20 44 65 6e 69 61 6c 20 6f 66 20 53 65 72 76 69 63 65 20 61 | itigation.of.Denial.of.Service.a |
| 10b8c0 | 74 74 61 63 6b 73 2e 00 4f 6e 6c 79 20 38 30 32 2e 31 51 2d 74 61 67 67 65 64 20 70 61 63 6b 65 | ttacks..Only.802.1Q-tagged.packe |
| 10b8e0 | 74 73 20 61 72 65 20 61 63 63 65 70 74 65 64 20 6f 6e 20 45 74 68 65 72 6e 65 74 20 76 69 66 73 | ts.are.accepted.on.Ethernet.vifs |
| 10b900 | 2e 00 4f 6e 6c 79 20 56 52 52 50 20 69 73 20 73 75 70 70 6f 72 74 65 64 2e 20 52 65 71 75 69 72 | ..Only.VRRP.is.supported..Requir |
| 10b920 | 65 64 20 6f 70 74 69 6f 6e 2e 00 4f 6e 6c 79 20 61 6c 6c 6f 77 20 63 65 72 74 61 69 6e 20 49 50 | ed.option..Only.allow.certain.IP |
| 10b940 | 20 61 64 64 72 65 73 73 65 73 20 6f 72 20 70 72 65 66 69 78 65 73 20 74 6f 20 61 63 63 65 73 73 | .addresses.or.prefixes.to.access |
| 10b960 | 20 74 68 65 20 68 74 74 70 73 20 77 65 62 73 65 72 76 65 72 2e 00 4f 6e 6c 79 20 69 6e 20 74 68 | .the.https.webserver..Only.in.th |
| 10b980 | 65 20 73 6f 75 72 63 65 20 63 72 69 74 65 72 69 61 2c 20 79 6f 75 20 63 61 6e 20 73 70 65 63 69 | e.source.criteria,.you.can.speci |
| 10b9a0 | 66 79 20 61 20 6d 61 63 2d 61 64 64 72 65 73 73 2e 00 4f 6e 6c 79 20 6f 6e 65 20 53 52 47 42 20 | fy.a.mac-address..Only.one.SRGB. |
| 10b9c0 | 61 6e 64 20 64 65 66 61 75 6c 74 20 53 50 46 20 41 6c 67 6f 72 69 74 68 6d 20 69 73 20 73 75 70 | and.default.SPF.Algorithm.is.sup |
| 10b9e0 | 70 6f 72 74 65 64 00 4f 6e 6c 79 20 72 65 71 75 65 73 74 20 61 6e 20 61 64 64 72 65 73 73 20 66 | ported.Only.request.an.address.f |
| 10ba00 | 72 6f 6d 20 74 68 65 20 44 48 43 50 20 73 65 72 76 65 72 20 62 75 74 20 64 6f 20 6e 6f 74 20 72 | rom.the.DHCP.server.but.do.not.r |
| 10ba20 | 65 71 75 65 73 74 20 61 20 64 65 66 61 75 6c 74 20 67 61 74 65 77 61 79 2e 00 4f 6e 6c 79 20 72 | equest.a.default.gateway..Only.r |
| 10ba40 | 65 71 75 65 73 74 20 61 6e 20 61 64 64 72 65 73 73 20 66 72 6f 6d 20 74 68 65 20 50 50 50 6f 45 | equest.an.address.from.the.PPPoE |
| 10ba60 | 20 73 65 72 76 65 72 20 62 75 74 20 64 6f 20 6e 6f 74 20 69 6e 73 74 61 6c 6c 20 61 6e 79 20 64 | .server.but.do.not.install.any.d |
| 10ba80 | 65 66 61 75 6c 74 20 72 6f 75 74 65 2e 00 4f 6e 6c 79 20 72 65 71 75 65 73 74 20 61 6e 20 61 64 | efault.route..Only.request.an.ad |
| 10baa0 | 64 72 65 73 73 20 66 72 6f 6d 20 74 68 65 20 53 53 54 50 20 73 65 72 76 65 72 20 62 75 74 20 64 | dress.from.the.SSTP.server.but.d |
| 10bac0 | 6f 20 6e 6f 74 20 69 6e 73 74 61 6c 6c 20 61 6e 79 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 2e | o.not.install.any.default.route. |
| 10bae0 | 00 4f 6e 6c 79 20 74 68 65 20 74 79 70 65 20 28 60 60 73 73 68 2d 72 73 61 60 60 29 20 61 6e 64 | .Only.the.type.(``ssh-rsa``).and |
| 10bb00 | 20 74 68 65 20 6b 65 79 20 28 60 60 41 41 41 42 33 4e 2e 2e 2e 60 60 29 20 61 72 65 20 75 73 65 | .the.key.(``AAAB3N...``).are.use |
| 10bb20 | 64 2e 20 4e 6f 74 65 20 74 68 61 74 20 74 68 65 20 6b 65 79 20 77 69 6c 6c 20 75 73 75 61 6c 6c | d..Note.that.the.key.will.usuall |
| 10bb40 | 79 20 62 65 20 73 65 76 65 72 61 6c 20 68 75 6e 64 72 65 64 20 63 68 61 72 61 63 74 65 72 73 20 | y.be.several.hundred.characters. |
| 10bb60 | 6c 6f 6e 67 2c 20 61 6e 64 20 79 6f 75 20 77 69 6c 6c 20 6e 65 65 64 20 74 6f 20 63 6f 70 79 20 | long,.and.you.will.need.to.copy. |
| 10bb80 | 61 6e 64 20 70 61 73 74 65 20 69 74 2e 20 53 6f 6d 65 20 74 65 72 6d 69 6e 61 6c 20 65 6d 75 6c | and.paste.it..Some.terminal.emul |
| 10bba0 | 61 74 6f 72 73 20 6d 61 79 20 61 63 63 69 64 65 6e 74 61 6c 6c 79 20 73 70 6c 69 74 20 74 68 69 | ators.may.accidentally.split.thi |
| 10bbc0 | 73 20 6f 76 65 72 20 73 65 76 65 72 61 6c 20 6c 69 6e 65 73 2e 20 42 65 20 61 74 74 65 6e 74 69 | s.over.several.lines..Be.attenti |
| 10bbe0 | 76 65 20 77 68 65 6e 20 79 6f 75 20 70 61 73 74 65 20 69 74 20 74 68 61 74 20 69 74 20 6f 6e 6c | ve.when.you.paste.it.that.it.onl |
| 10bc00 | 79 20 70 61 73 74 65 73 20 61 73 20 61 20 73 69 6e 67 6c 65 20 6c 69 6e 65 2e 20 54 68 65 20 74 | y.pastes.as.a.single.line..The.t |
| 10bc20 | 68 69 72 64 20 70 61 72 74 20 69 73 20 73 69 6d 70 6c 79 20 61 6e 20 69 64 65 6e 74 69 66 69 65 | hird.part.is.simply.an.identifie |
| 10bc40 | 72 2c 20 61 6e 64 20 69 73 20 66 6f 72 20 79 6f 75 72 20 6f 77 6e 20 72 65 66 65 72 65 6e 63 65 | r,.and.is.for.your.own.reference |
| 10bc60 | 2e 00 4f 6e 6c 79 20 77 6f 72 6b 73 20 77 69 74 68 20 61 20 56 58 4c 41 4e 20 64 65 76 69 63 65 | ..Only.works.with.a.VXLAN.device |
| 10bc80 | 20 77 69 74 68 20 65 78 74 65 72 6e 61 6c 20 66 6c 61 67 20 73 65 74 2e 00 4f 70 2d 6d 6f 64 65 | .with.external.flag.set..Op-mode |
| 10bca0 | 20 63 68 65 63 6b 20 76 69 72 74 75 61 6c 2d 73 65 72 76 65 72 20 73 74 61 74 75 73 00 4f 70 65 | .check.virtual-server.status.Ope |
| 10bcc0 | 6e 43 6f 6e 6e 65 63 74 00 4f 70 65 6e 43 6f 6e 6e 65 63 74 20 63 61 6e 20 62 65 20 63 6f 6e 66 | nConnect.OpenConnect.can.be.conf |
| 10bce0 | 69 67 75 72 65 64 20 74 6f 20 73 65 6e 64 20 61 63 63 6f 75 6e 74 69 6e 67 20 69 6e 66 6f 72 6d | igured.to.send.accounting.inform |
| 10bd00 | 61 74 69 6f 6e 20 74 6f 20 61 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 74 6f 20 63 61 70 74 | ation.to.a.RADIUS.server.to.capt |
| 10bd20 | 75 72 65 20 75 73 65 72 20 73 65 73 73 69 6f 6e 20 64 61 74 61 20 73 75 63 68 20 61 73 20 74 69 | ure.user.session.data.such.as.ti |
| 10bd40 | 6d 65 20 6f 66 20 63 6f 6e 6e 65 63 74 2f 64 69 73 63 6f 6e 6e 65 63 74 2c 20 64 61 74 61 20 74 | me.of.connect/disconnect,.data.t |
| 10bd60 | 72 61 6e 73 66 65 72 72 65 64 2c 20 61 6e 64 20 73 6f 20 6f 6e 2e 00 4f 70 65 6e 43 6f 6e 6e 65 | ransferred,.and.so.on..OpenConne |
| 10bd80 | 63 74 20 73 65 72 76 65 72 20 6d 61 74 63 68 65 73 20 74 68 65 20 66 69 6c 65 6e 61 6d 65 20 69 | ct.server.matches.the.filename.i |
| 10bda0 | 6e 20 61 20 63 61 73 65 20 73 65 6e 73 69 74 69 76 65 20 6d 61 6e 6e 65 72 2c 20 6d 61 6b 65 20 | n.a.case.sensitive.manner,.make. |
| 10bdc0 | 73 75 72 65 20 74 68 65 20 75 73 65 72 6e 61 6d 65 2f 67 72 6f 75 70 20 6e 61 6d 65 20 79 6f 75 | sure.the.username/group.name.you |
| 10bde0 | 20 63 6f 6e 66 69 67 75 72 65 20 6d 61 74 63 68 65 73 20 74 68 65 20 66 69 6c 65 6e 61 6d 65 20 | .configure.matches.the.filename. |
| 10be00 | 65 78 61 63 74 6c 79 2e 00 4f 70 65 6e 43 6f 6e 6e 65 63 74 20 73 75 70 70 6f 72 74 73 20 61 20 | exactly..OpenConnect.supports.a. |
| 10be20 | 73 75 62 73 65 74 20 6f 66 20 69 74 27 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 70 74 | subset.of.it's.configuration.opt |
| 10be40 | 69 6f 6e 73 20 74 6f 20 62 65 20 61 70 70 6c 69 65 64 20 6f 6e 20 61 20 70 65 72 20 75 73 65 72 | ions.to.be.applied.on.a.per.user |
| 10be60 | 2f 67 72 6f 75 70 20 62 61 73 69 73 2c 20 66 6f 72 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 | /group.basis,.for.configuration. |
| 10be80 | 70 75 72 70 6f 73 65 73 20 77 65 20 72 65 66 65 72 20 74 6f 20 74 68 69 73 20 66 75 6e 63 74 69 | purposes.we.refer.to.this.functi |
| 10bea0 | 6f 6e 61 6c 69 74 79 20 61 73 20 22 49 64 65 6e 74 69 74 79 20 62 61 73 65 64 20 63 6f 6e 66 69 | onality.as."Identity.based.confi |
| 10bec0 | 67 22 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 60 4f 70 65 6e 43 6f 6e 6e 65 63 74 20 53 | g"..The.following.`OpenConnect.S |
| 10bee0 | 65 72 76 65 72 20 4d 61 6e 75 61 6c 20 3c 68 74 74 70 73 3a 2f 2f 6f 63 73 65 72 76 2e 67 69 74 | erver.Manual.<https://ocserv.git |
| 10bf00 | 6c 61 62 2e 69 6f 2f 77 77 77 2f 6d 61 6e 75 61 6c 2e 68 74 6d 6c 23 3a 7e 3a 74 65 78 74 3d 43 | lab.io/www/manual.html#:~:text=C |
| 10bf20 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 25 32 30 66 69 6c 65 73 25 32 30 74 68 61 74 25 20 32 30 77 | onfiguration%20files%20that%.20w |
| 10bf40 | 69 6c 6c 25 32 30 62 65 25 32 30 61 70 70 6c 69 65 64 25 32 30 70 65 72 25 32 30 75 73 65 72 25 | ill%20be%20applied%20per%20user% |
| 10bf60 | 32 30 63 6f 6e 6e 65 63 74 69 6f 6e 25 32 30 6f 72 25 30 41 25 32 33 25 32 30 70 65 72 25 32 30 | 20connection%20or%0A%23%20per%20 |
| 10bf80 | 67 72 6f 75 70 3e 60 5f 20 6f 75 74 6c 69 6e 65 73 20 74 68 65 20 73 65 74 20 6f 66 20 63 6f 6e | group>`_.outlines.the.set.of.con |
| 10bfa0 | 66 69 67 75 72 61 74 69 6f 6e 20 6f 70 74 69 6f 6e 73 20 74 68 61 74 20 61 72 65 20 61 6c 6c 6f | figuration.options.that.are.allo |
| 10bfc0 | 77 65 64 2e 20 54 68 69 73 20 63 61 6e 20 62 65 20 6c 65 76 65 72 61 67 65 64 20 74 6f 20 61 70 | wed..This.can.be.leveraged.to.ap |
| 10bfe0 | 70 6c 79 20 64 69 66 66 65 72 65 6e 74 20 73 65 74 73 20 6f 66 20 63 6f 6e 66 69 67 73 20 74 6f | ply.different.sets.of.configs.to |
| 10c000 | 20 64 69 66 66 65 72 65 6e 74 20 75 73 65 72 73 20 6f 72 20 67 72 6f 75 70 73 20 6f 66 20 75 73 | .different.users.or.groups.of.us |
| 10c020 | 65 72 73 2e 00 4f 70 65 6e 43 6f 6e 6e 65 63 74 2d 63 6f 6d 70 61 74 69 62 6c 65 20 73 65 72 76 | ers..OpenConnect-compatible.serv |
| 10c040 | 65 72 20 66 65 61 74 75 72 65 20 68 61 73 20 62 65 65 6e 20 61 76 61 69 6c 61 62 6c 65 20 73 69 | er.feature.has.been.available.si |
| 10c060 | 6e 63 65 20 45 71 75 75 6c 65 75 73 20 28 31 2e 33 29 2e 20 4f 70 65 6e 63 6f 6e 6e 65 63 74 20 | nce.Equuleus.(1.3)..Openconnect. |
| 10c080 | 56 50 4e 20 73 75 70 70 6f 72 74 73 20 53 53 4c 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 61 6e 64 20 | VPN.supports.SSL.connection.and. |
| 10c0a0 | 6f 66 66 65 72 73 20 66 75 6c 6c 20 6e 65 74 77 6f 72 6b 20 61 63 63 65 73 73 2e 20 53 53 4c 20 | offers.full.network.access..SSL. |
| 10c0c0 | 56 50 4e 20 6e 65 74 77 6f 72 6b 20 65 78 74 65 6e 73 69 6f 6e 20 63 6f 6e 6e 65 63 74 73 20 74 | VPN.network.extension.connects.t |
| 10c0e0 | 68 65 20 65 6e 64 2d 75 73 65 72 20 73 79 73 74 65 6d 20 74 6f 20 74 68 65 20 63 6f 72 70 6f 72 | he.end-user.system.to.the.corpor |
| 10c100 | 61 74 65 20 6e 65 74 77 6f 72 6b 20 77 69 74 68 20 61 63 63 65 73 73 20 63 6f 6e 74 72 6f 6c 73 | ate.network.with.access.controls |
| 10c120 | 20 62 61 73 65 64 20 6f 6e 6c 79 20 6f 6e 20 6e 65 74 77 6f 72 6b 20 6c 61 79 65 72 20 69 6e 66 | .based.only.on.network.layer.inf |
| 10c140 | 6f 72 6d 61 74 69 6f 6e 2c 20 73 75 63 68 20 61 73 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 49 50 | ormation,.such.as.destination.IP |
| 10c160 | 20 61 64 64 72 65 73 73 20 61 6e 64 20 70 6f 72 74 20 6e 75 6d 62 65 72 2e 20 53 6f 2c 20 69 74 | .address.and.port.number..So,.it |
| 10c180 | 20 70 72 6f 76 69 64 65 73 20 73 61 66 65 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6f 6e 20 66 6f 72 | .provides.safe.communication.for |
| 10c1a0 | 20 61 6c 6c 20 74 79 70 65 73 20 6f 66 20 64 65 76 69 63 65 20 74 72 61 66 66 69 63 20 61 63 72 | .all.types.of.device.traffic.acr |
| 10c1c0 | 6f 73 73 20 70 75 62 6c 69 63 20 6e 65 74 77 6f 72 6b 73 20 61 6e 64 20 70 72 69 76 61 74 65 20 | oss.public.networks.and.private. |
| 10c1e0 | 6e 65 74 77 6f 72 6b 73 2c 20 61 6c 73 6f 20 65 6e 63 72 79 70 74 73 20 74 68 65 20 74 72 61 66 | networks,.also.encrypts.the.traf |
| 10c200 | 66 69 63 20 77 69 74 68 20 53 53 4c 20 70 72 6f 74 6f 63 6f 6c 2e 00 4f 70 65 6e 43 6f 6e 6e 65 | fic.with.SSL.protocol..OpenConne |
| 10c220 | 63 74 2d 63 6f 6d 70 61 74 69 62 6c 65 20 73 65 72 76 65 72 20 66 65 61 74 75 72 65 20 69 73 20 | ct-compatible.server.feature.is. |
| 10c240 | 61 76 61 69 6c 61 62 6c 65 20 66 72 6f 6d 20 74 68 69 73 20 72 65 6c 65 61 73 65 2e 20 4f 70 65 | available.from.this.release..Ope |
| 10c260 | 6e 63 6f 6e 6e 65 63 74 20 56 50 4e 20 73 75 70 70 6f 72 74 73 20 53 53 4c 20 63 6f 6e 6e 65 63 | nconnect.VPN.supports.SSL.connec |
| 10c280 | 74 69 6f 6e 20 61 6e 64 20 6f 66 66 65 72 73 20 66 75 6c 6c 20 6e 65 74 77 6f 72 6b 20 61 63 63 | tion.and.offers.full.network.acc |
| 10c2a0 | 65 73 73 2e 20 53 53 4c 20 56 50 4e 20 6e 65 74 77 6f 72 6b 20 65 78 74 65 6e 73 69 6f 6e 20 63 | ess..SSL.VPN.network.extension.c |
| 10c2c0 | 6f 6e 6e 65 63 74 73 20 74 68 65 20 65 6e 64 2d 75 73 65 72 20 73 79 73 74 65 6d 20 74 6f 20 74 | onnects.the.end-user.system.to.t |
| 10c2e0 | 68 65 20 63 6f 72 70 6f 72 61 74 65 20 6e 65 74 77 6f 72 6b 20 77 69 74 68 20 61 63 63 65 73 73 | he.corporate.network.with.access |
| 10c300 | 20 63 6f 6e 74 72 6f 6c 73 20 62 61 73 65 64 20 6f 6e 6c 79 20 6f 6e 20 6e 65 74 77 6f 72 6b 20 | .controls.based.only.on.network. |
| 10c320 | 6c 61 79 65 72 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2c 20 73 75 63 68 20 61 73 20 64 65 73 74 69 | layer.information,.such.as.desti |
| 10c340 | 6e 61 74 69 6f 6e 20 49 50 20 61 64 64 72 65 73 73 20 61 6e 64 20 70 6f 72 74 20 6e 75 6d 62 65 | nation.IP.address.and.port.numbe |
| 10c360 | 72 2e 20 53 6f 2c 20 69 74 20 70 72 6f 76 69 64 65 73 20 73 61 66 65 20 63 6f 6d 6d 75 6e 69 63 | r..So,.it.provides.safe.communic |
| 10c380 | 61 74 69 6f 6e 20 66 6f 72 20 61 6c 6c 20 74 79 70 65 73 20 6f 66 20 64 65 76 69 63 65 20 74 72 | ation.for.all.types.of.device.tr |
| 10c3a0 | 61 66 66 69 63 20 61 63 72 6f 73 73 20 70 75 62 6c 69 63 20 6e 65 74 77 6f 72 6b 73 20 61 6e 64 | affic.across.public.networks.and |
| 10c3c0 | 20 70 72 69 76 61 74 65 20 6e 65 74 77 6f 72 6b 73 2c 20 61 6c 73 6f 20 65 6e 63 72 79 70 74 73 | .private.networks,.also.encrypts |
| 10c3e0 | 20 74 68 65 20 74 72 61 66 66 69 63 20 77 69 74 68 20 53 53 4c 20 70 72 6f 74 6f 63 6f 6c 2e 00 | .the.traffic.with.SSL.protocol.. |
| 10c400 | 4f 70 65 6e 46 61 62 72 69 63 00 4f 70 65 6e 46 61 62 72 69 63 20 47 6c 6f 62 61 6c 20 43 6f 6e | OpenFabric.OpenFabric.Global.Con |
| 10c420 | 66 69 67 75 72 61 74 69 6f 6e 00 4f 70 65 6e 46 61 62 72 69 63 20 61 20 64 75 61 6c 20 73 74 61 | figuration.OpenFabric.a.dual.sta |
| 10c440 | 63 6b 20 70 72 6f 74 6f 63 6f 6c 2e 20 41 20 73 69 6e 67 6c 65 20 4f 70 65 6e 46 61 62 72 69 63 | ck.protocol..A.single.OpenFabric |
| 10c460 | 20 69 6e 73 74 61 6e 63 65 20 69 73 20 61 62 6c 65 20 74 6f 20 70 65 72 66 6f 72 6d 20 72 6f 75 | .instance.is.able.to.perform.rou |
| 10c480 | 74 69 6e 67 20 66 6f 72 20 62 6f 74 68 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 2e 00 4f 70 65 | ting.for.both.IPv4.and.IPv6..Ope |
| 10c4a0 | 6e 46 61 62 72 69 63 2c 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 60 64 72 61 66 74 2d 77 68 69 | nFabric,.specified.in.`draft-whi |
| 10c4c0 | 74 65 2d 6f 70 65 6e 66 61 62 72 69 63 2d 30 36 2e 74 78 74 20 3c 68 74 74 70 73 3a 2f 2f 64 61 | te-openfabric-06.txt.<https://da |
| 10c4e0 | 74 61 74 72 61 63 6b 65 72 2e 69 65 74 66 2e 6f 72 67 2f 64 6f 63 2f 68 74 6d 6c 2f 64 72 61 66 | tatracker.ietf.org/doc/html/draf |
| 10c500 | 74 2d 77 68 69 74 65 2d 6f 70 65 6e 66 61 62 72 69 63 2d 30 36 3e 60 5f 2c 20 69 73 20 61 20 72 | t-white-openfabric-06>`_,.is.a.r |
| 10c520 | 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 20 64 65 72 69 76 65 64 20 66 72 6f 6d 20 49 53 2d | outing.protocol.derived.from.IS- |
| 10c540 | 49 53 2c 20 70 72 6f 76 69 64 69 6e 67 20 6c 69 6e 6b 2d 73 74 61 74 65 20 72 6f 75 74 69 6e 67 | IS,.providing.link-state.routing |
| 10c560 | 20 77 69 74 68 20 65 66 66 69 63 69 65 6e 74 20 66 6c 6f 6f 64 69 6e 67 20 66 6f 72 20 74 6f 70 | .with.efficient.flooding.for.top |
| 10c580 | 6f 6c 6f 67 69 65 73 20 6c 69 6b 65 20 73 70 69 6e 65 2d 6c 65 61 66 20 6e 65 74 77 6f 72 6b 73 | ologies.like.spine-leaf.networks |
| 10c5a0 | 2e 00 4f 70 65 6e 56 50 4e 00 4f 70 65 6e 56 50 4e 20 2a 2a 77 69 6c 6c 20 6e 6f 74 2a 2a 20 61 | ..OpenVPN.OpenVPN.**will.not**.a |
| 10c5c0 | 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 63 72 65 61 74 65 20 72 6f 75 74 65 73 20 69 6e 20 74 68 | utomatically.create.routes.in.th |
| 10c5e0 | 65 20 6b 65 72 6e 65 6c 20 66 6f 72 20 63 6c 69 65 6e 74 20 73 75 62 6e 65 74 73 20 77 68 65 6e | e.kernel.for.client.subnets.when |
| 10c600 | 20 74 68 65 79 20 63 6f 6e 6e 65 63 74 20 61 6e 64 20 77 69 6c 6c 20 6f 6e 6c 79 20 75 73 65 20 | .they.connect.and.will.only.use. |
| 10c620 | 63 6c 69 65 6e 74 2d 73 75 62 6e 65 74 20 61 73 73 6f 63 69 61 74 69 6f 6e 20 69 6e 74 65 72 6e | client-subnet.association.intern |
| 10c640 | 61 6c 6c 79 2c 20 73 6f 20 77 65 20 6e 65 65 64 20 74 6f 20 63 72 65 61 74 65 20 61 20 72 6f 75 | ally,.so.we.need.to.create.a.rou |
| 10c660 | 74 65 20 74 6f 20 74 68 65 20 31 30 2e 32 33 2e 30 2e 30 2f 32 30 20 6e 65 74 77 6f 72 6b 20 6f | te.to.the.10.23.0.0/20.network.o |
| 10c680 | 75 72 73 65 6c 76 65 73 3a 00 4f 70 65 6e 56 50 4e 20 44 43 4f 20 69 73 20 6e 6f 74 20 61 20 66 | urselves:.OpenVPN.DCO.is.not.a.f |
| 10c6a0 | 75 6c 6c 79 20 73 75 70 70 6f 72 74 65 64 20 4f 70 65 6e 56 50 4e 20 66 65 61 74 75 72 65 2c 20 | ully.supported.OpenVPN.feature,. |
| 10c6c0 | 61 6e 64 20 69 73 20 63 75 72 72 65 6e 74 6c 79 20 63 6f 6e 73 69 64 65 72 65 64 20 65 78 70 65 | and.is.currently.considered.expe |
| 10c6e0 | 72 69 6d 65 6e 74 61 6c 2e 20 46 75 72 74 68 65 72 6d 6f 72 65 2c 20 74 68 65 72 65 20 61 72 65 | rimental..Furthermore,.there.are |
| 10c700 | 20 63 65 72 74 61 69 6e 20 4f 70 65 6e 56 50 4e 20 66 65 61 74 75 72 65 73 20 61 6e 64 20 75 73 | .certain.OpenVPN.features.and.us |
| 10c720 | 65 20 63 61 73 65 73 20 74 68 61 74 20 72 65 6d 61 69 6e 20 69 6e 63 6f 6d 70 61 74 69 62 6c 65 | e.cases.that.remain.incompatible |
| 10c740 | 20 77 69 74 68 20 44 43 4f 2e 20 54 6f 20 67 65 74 20 61 20 63 6f 6d 70 72 65 68 65 6e 73 69 76 | .with.DCO..To.get.a.comprehensiv |
| 10c760 | 65 20 75 6e 64 65 72 73 74 61 6e 64 69 6e 67 20 6f 66 20 74 68 65 20 6c 69 6d 69 74 61 74 69 6f | e.understanding.of.the.limitatio |
| 10c780 | 6e 73 20 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 44 43 4f 2c 20 72 65 66 65 72 20 74 6f | ns.associated.with.DCO,.refer.to |
| 10c7a0 | 20 74 68 65 20 6c 69 73 74 20 6f 66 20 6b 6e 6f 77 6e 20 6c 69 6d 69 74 61 74 69 6f 6e 73 20 69 | .the.list.of.known.limitations.i |
| 10c7c0 | 6e 20 74 68 65 20 64 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 2e 00 4f 70 65 6e 56 50 4e 20 44 43 4f | n.the.documentation..OpenVPN.DCO |
| 10c7e0 | 20 69 73 20 6e 6f 74 20 66 75 6c 6c 20 4f 70 65 6e 56 50 4e 20 66 65 61 74 75 72 65 73 20 73 75 | .is.not.full.OpenVPN.features.su |
| 10c800 | 70 70 6f 72 74 65 64 20 2c 20 69 73 20 63 75 72 72 65 6e 74 6c 79 20 63 6f 6e 73 69 64 65 72 65 | pported.,.is.currently.considere |
| 10c820 | 64 20 65 78 70 65 72 69 6d 65 6e 74 61 6c 2e 20 46 75 72 74 68 65 72 6d 6f 72 65 2c 20 74 68 65 | d.experimental..Furthermore,.the |
| 10c840 | 72 65 20 61 72 65 20 63 65 72 74 61 69 6e 20 4f 70 65 6e 56 50 4e 20 66 65 61 74 75 72 65 73 20 | re.are.certain.OpenVPN.features. |
| 10c860 | 61 6e 64 20 75 73 65 20 63 61 73 65 73 20 74 68 61 74 20 72 65 6d 61 69 6e 20 69 6e 63 6f 6d 70 | and.use.cases.that.remain.incomp |
| 10c880 | 61 74 69 62 6c 65 20 77 69 74 68 20 44 43 4f 2e 20 54 6f 20 67 65 74 20 61 20 63 6f 6d 70 72 65 | atible.with.DCO..To.get.a.compre |
| 10c8a0 | 68 65 6e 73 69 76 65 20 75 6e 64 65 72 73 74 61 6e 64 69 6e 67 20 6f 66 20 74 68 65 20 6c 69 6d | hensive.understanding.of.the.lim |
| 10c8c0 | 69 74 61 74 69 6f 6e 73 20 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 44 43 4f 2c 20 72 65 | itations.associated.with.DCO,.re |
| 10c8e0 | 66 65 72 20 74 6f 20 74 68 65 20 6c 69 73 74 20 6f 66 20 6b 6e 6f 77 6e 20 6c 69 6d 69 74 61 74 | fer.to.the.list.of.known.limitat |
| 10c900 | 69 6f 6e 73 20 69 6e 20 74 68 65 20 64 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 2e 00 4f 70 65 6e 56 | ions.in.the.documentation..OpenV |
| 10c920 | 50 4e 20 44 61 74 61 20 43 68 61 6e 6e 65 6c 20 4f 66 66 6c 6f 61 64 20 28 44 43 4f 29 00 4f 70 | PN.Data.Channel.Offload.(DCO).Op |
| 10c940 | 65 6e 56 50 4e 20 44 61 74 61 20 43 68 61 6e 6e 65 6c 20 4f 66 66 6c 6f 61 64 20 28 44 43 4f 29 | enVPN.Data.Channel.Offload.(DCO) |
| 10c960 | 20 65 6e 61 62 6c 65 73 20 73 69 67 6e 69 66 69 63 61 6e 74 20 70 65 72 66 6f 72 6d 61 6e 63 65 | .enables.significant.performance |
| 10c980 | 20 65 6e 68 61 6e 63 65 6d 65 6e 74 20 69 6e 20 65 6e 63 72 79 70 74 65 64 20 4f 70 65 6e 56 50 | .enhancement.in.encrypted.OpenVP |
| 10c9a0 | 4e 20 64 61 74 61 20 70 72 6f 63 65 73 73 69 6e 67 2e 20 42 79 20 6d 69 6e 69 6d 69 7a 69 6e 67 | N.data.processing..By.minimizing |
| 10c9c0 | 20 63 6f 6e 74 65 78 74 20 73 77 69 74 63 68 69 6e 67 20 66 6f 72 20 65 61 63 68 20 70 61 63 6b | .context.switching.for.each.pack |
| 10c9e0 | 65 74 2c 20 44 43 4f 20 65 66 66 65 63 74 69 76 65 6c 79 20 72 65 64 75 63 65 73 20 6f 76 65 72 | et,.DCO.effectively.reduces.over |
| 10ca00 | 68 65 61 64 2e 20 54 68 69 73 20 6f 70 74 69 6d 69 7a 61 74 69 6f 6e 20 69 73 20 61 63 68 69 65 | head..This.optimization.is.achie |
| 10ca20 | 76 65 64 20 62 79 20 6b 65 65 70 69 6e 67 20 6d 6f 73 74 20 64 61 74 61 20 68 61 6e 64 6c 69 6e | ved.by.keeping.most.data.handlin |
| 10ca40 | 67 20 74 61 73 6b 73 20 77 69 74 68 69 6e 20 74 68 65 20 6b 65 72 6e 65 6c 2c 20 61 76 6f 69 64 | g.tasks.within.the.kernel,.avoid |
| 10ca60 | 69 6e 67 20 66 72 65 71 75 65 6e 74 20 73 77 69 74 63 68 65 73 20 62 65 74 77 65 65 6e 20 6b 65 | ing.frequent.switches.between.ke |
| 10ca80 | 72 6e 65 6c 20 61 6e 64 20 75 73 65 72 20 73 70 61 63 65 20 66 6f 72 20 65 6e 63 72 79 70 74 69 | rnel.and.user.space.for.encrypti |
| 10caa0 | 6f 6e 20 61 6e 64 20 70 61 63 6b 65 74 20 68 61 6e 64 6c 69 6e 67 2e 00 4f 70 65 6e 56 50 4e 20 | on.and.packet.handling..OpenVPN. |
| 10cac0 | 4c 6f 67 73 00 4f 70 65 6e 56 50 4e 20 61 6c 6c 6f 77 73 20 66 6f 72 20 65 69 74 68 65 72 20 54 | Logs.OpenVPN.allows.for.either.T |
| 10cae0 | 43 50 20 6f 72 20 55 44 50 2e 20 55 44 50 20 77 69 6c 6c 20 70 72 6f 76 69 64 65 20 74 68 65 20 | CP.or.UDP..UDP.will.provide.the. |
| 10cb00 | 6c 6f 77 65 73 74 20 6c 61 74 65 6e 63 79 2c 20 77 68 69 6c 65 20 54 43 50 20 77 69 6c 6c 20 77 | lowest.latency,.while.TCP.will.w |
| 10cb20 | 6f 72 6b 20 62 65 74 74 65 72 20 66 6f 72 20 6c 6f 73 73 79 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 | ork.better.for.lossy.connections |
| 10cb40 | 3b 20 67 65 6e 65 72 61 6c 6c 79 20 55 44 50 20 69 73 20 70 72 65 66 65 72 72 65 64 20 77 68 65 | ;.generally.UDP.is.preferred.whe |
| 10cb60 | 6e 20 70 6f 73 73 69 62 6c 65 2e 00 4f 70 65 6e 56 50 4e 20 69 73 20 70 6f 70 75 6c 61 72 20 66 | n.possible..OpenVPN.is.popular.f |
| 10cb80 | 6f 72 20 63 6c 69 65 6e 74 2d 73 65 72 76 65 72 20 73 65 74 75 70 73 2c 20 62 75 74 20 69 74 73 | or.client-server.setups,.but.its |
| 10cba0 | 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 6d 6f 64 65 20 72 65 6d 61 69 6e 73 20 61 20 72 65 6c | .site-to-site.mode.remains.a.rel |
| 10cbc0 | 61 74 69 76 65 6c 79 20 6f 62 73 63 75 72 65 20 66 65 61 74 75 72 65 2c 20 61 6e 64 20 6d 61 6e | atively.obscure.feature,.and.man |
| 10cbe0 | 79 20 72 6f 75 74 65 72 20 61 70 70 6c 69 61 6e 63 65 73 20 73 74 69 6c 6c 20 64 6f 6e 27 74 20 | y.router.appliances.still.don't. |
| 10cc00 | 73 75 70 70 6f 72 74 20 69 74 2e 20 48 6f 77 65 76 65 72 2c 20 69 74 27 73 20 76 65 72 79 20 75 | support.it..However,.it's.very.u |
| 10cc20 | 73 65 66 75 6c 20 66 6f 72 20 71 75 69 63 6b 6c 79 20 73 65 74 74 69 6e 67 20 75 70 20 74 75 6e | seful.for.quickly.setting.up.tun |
| 10cc40 | 6e 65 6c 73 20 62 65 74 77 65 65 6e 20 72 6f 75 74 65 72 73 2e 00 4f 70 65 6e 56 50 4e 20 73 74 | nels.between.routers..OpenVPN.st |
| 10cc60 | 61 74 75 73 20 63 61 6e 20 62 65 20 76 65 72 69 66 69 65 64 20 75 73 69 6e 67 20 74 68 65 20 60 | atus.can.be.verified.using.the.` |
| 10cc80 | 73 68 6f 77 20 6f 70 65 6e 76 70 6e 60 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 63 6f 6d 6d 61 6e | show.openvpn`.operational.comman |
| 10cca0 | 64 73 2e 20 53 65 65 20 74 68 65 20 62 75 69 6c 74 2d 69 6e 20 68 65 6c 70 20 66 6f 72 20 61 20 | ds..See.the.built-in.help.for.a. |
| 10ccc0 | 63 6f 6d 70 6c 65 74 65 20 6c 69 73 74 20 6f 66 20 6f 70 74 69 6f 6e 73 2e 00 4f 70 65 6e 63 6f | complete.list.of.options..Openco |
| 10cce0 | 6e 6e 65 63 74 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 4f 70 65 72 61 74 69 6e 67 20 4d 6f | nnect.Configuration.Operating.Mo |
| 10cd00 | 64 65 73 00 4f 70 65 72 61 74 69 6f 6e 00 4f 70 65 72 61 74 69 6f 6e 20 43 6f 6d 6d 61 6e 64 73 | des.Operation.Operation.Commands |
| 10cd20 | 00 4f 70 65 72 61 74 69 6f 6e 20 4d 6f 64 65 00 4f 70 65 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e | .Operation.Mode.Operation.comman |
| 10cd40 | 64 73 00 4f 70 65 72 61 74 69 6f 6e 20 6d 6f 64 65 20 6f 66 20 77 69 72 65 6c 65 73 73 20 72 61 | ds.Operation.mode.of.wireless.ra |
| 10cd60 | 64 69 6f 2e 00 4f 70 65 72 61 74 69 6f 6e 2d 6d 6f 64 65 00 4f 70 65 72 61 74 69 6f 6e 2d 6d 6f | dio..Operation-mode.Operation-mo |
| 10cd80 | 64 65 20 46 69 72 65 77 61 6c 6c 00 4f 70 65 72 61 74 69 6f 6e 61 6c 20 43 6f 6d 6d 61 6e 64 73 | de.Firewall.Operational.Commands |
| 10cda0 | 00 4f 70 65 72 61 74 69 6f 6e 61 6c 20 4d 6f 64 65 20 43 6f 6d 6d 61 6e 64 73 00 4f 70 65 72 61 | .Operational.Mode.Commands.Opera |
| 10cdc0 | 74 69 6f 6e 61 6c 20 63 6f 6d 6d 61 6e 64 73 00 4f 70 74 69 6f 6e 00 4f 70 74 69 6f 6e 20 34 33 | tional.commands.Option.Option.43 |
| 10cde0 | 20 66 6f 72 20 55 6e 69 46 49 00 4f 70 74 69 6f 6e 20 64 65 73 63 72 69 70 74 69 6f 6e 00 4f 70 | .for.UniFI.Option.description.Op |
| 10ce00 | 74 69 6f 6e 20 6e 75 6d 62 65 72 00 4f 70 74 69 6f 6e 20 73 70 65 63 69 66 79 69 6e 67 20 74 68 | tion.number.Option.specifying.th |
| 10ce20 | 65 20 72 61 74 65 20 69 6e 20 77 68 69 63 68 20 77 65 27 6c 6c 20 61 73 6b 20 6f 75 72 20 6c 69 | e.rate.in.which.we'll.ask.our.li |
| 10ce40 | 6e 6b 20 70 61 72 74 6e 65 72 20 74 6f 20 74 72 61 6e 73 6d 69 74 20 4c 41 43 50 44 55 20 70 61 | nk.partner.to.transmit.LACPDU.pa |
| 10ce60 | 63 6b 65 74 73 20 69 6e 20 38 30 32 2e 33 61 64 20 6d 6f 64 65 2e 00 4f 70 74 69 6f 6e 20 74 6f | ckets.in.802.3ad.mode..Option.to |
| 10ce80 | 20 64 69 73 61 62 6c 65 20 72 75 6c 65 2e 00 4f 70 74 69 6f 6e 20 74 6f 20 65 6e 61 62 6c 65 20 | .disable.rule..Option.to.enable. |
| 10cea0 | 6f 72 20 64 69 73 61 62 6c 65 20 6c 6f 67 20 6d 61 74 63 68 69 6e 67 20 72 75 6c 65 2e 00 4f 70 | or.disable.log.matching.rule..Op |
| 10cec0 | 74 69 6f 6e 20 74 6f 20 6c 6f 67 20 70 61 63 6b 65 74 73 20 68 69 74 74 69 6e 67 20 64 65 66 61 | tion.to.log.packets.hitting.defa |
| 10cee0 | 75 6c 74 2d 61 63 74 69 6f 6e 2e 00 4f 70 74 69 6f 6e 61 6c 00 4f 70 74 69 6f 6e 61 6c 20 43 6f | ult-action..Optional.Optional.Co |
| 10cf00 | 6e 66 69 67 75 72 61 74 69 6f 6e 00 4f 70 74 69 6f 6e 61 6c 20 70 61 72 61 6d 65 74 65 72 20 70 | nfiguration.Optional.parameter.p |
| 10cf20 | 72 65 66 69 78 2d 6c 69 73 74 20 63 61 6e 20 62 65 20 75 73 65 20 74 6f 20 63 6f 6e 74 72 6f 6c | refix-list.can.be.use.to.control |
| 10cf40 | 20 77 68 69 63 68 20 67 72 6f 75 70 73 20 74 6f 20 73 77 69 74 63 68 20 6f 72 20 6e 6f 74 20 73 | .which.groups.to.switch.or.not.s |
| 10cf60 | 77 69 74 63 68 2e 20 49 66 20 61 20 67 72 6f 75 70 20 69 73 20 50 45 52 4d 49 54 20 61 73 20 70 | witch..If.a.group.is.PERMIT.as.p |
| 10cf80 | 65 72 20 74 68 65 20 70 72 65 66 69 78 2d 6c 69 73 74 2c 20 74 68 65 6e 20 74 68 65 20 53 50 54 | er.the.prefix-list,.then.the.SPT |
| 10cfa0 | 20 73 77 69 74 63 68 6f 76 65 72 20 64 6f 65 73 20 6e 6f 74 20 68 61 70 70 65 6e 20 66 6f 72 20 | .switchover.does.not.happen.for. |
| 10cfc0 | 69 74 20 61 6e 64 20 69 66 20 69 74 20 69 73 20 44 45 4e 59 2c 20 74 68 65 6e 20 74 68 65 20 53 | it.and.if.it.is.DENY,.then.the.S |
| 10cfe0 | 50 54 20 73 77 69 74 63 68 6f 76 65 72 20 68 61 70 70 65 6e 73 2e 00 4f 70 74 69 6f 6e 61 6c 2c | PT.switchover.happens..Optional, |
| 10d000 | 20 69 66 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 65 6e 61 62 6c 65 20 75 70 6c 6f 61 64 73 2c 20 | .if.you.want.to.enable.uploads,. |
| 10d020 | 65 6c 73 65 20 54 46 54 50 20 73 65 72 76 65 72 20 77 69 6c 6c 20 61 63 74 20 61 73 20 61 20 72 | else.TFTP.server.will.act.as.a.r |
| 10d040 | 65 61 64 2d 6f 6e 6c 79 20 73 65 72 76 65 72 2e 00 4f 70 74 69 6f 6e 61 6c 2f 64 65 66 61 75 6c | ead-only.server..Optional/defaul |
| 10d060 | 74 20 73 65 74 74 69 6e 67 73 00 4f 70 74 69 6f 6e 61 6c 6c 79 20 73 65 74 20 61 20 73 70 65 63 | t.settings.Optionally.set.a.spec |
| 10d080 | 69 66 69 63 20 73 74 61 74 69 63 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 61 64 64 72 65 73 73 | ific.static.IPv4.or.IPv6.address |
| 10d0a0 | 20 66 6f 72 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 2e 20 54 68 69 73 20 61 64 64 72 65 73 73 | .for.the.container..This.address |
| 10d0c0 | 20 6d 75 73 74 20 62 65 20 77 69 74 68 69 6e 20 74 68 65 20 6e 61 6d 65 64 20 6e 65 74 77 6f 72 | .must.be.within.the.named.networ |
| 10d0e0 | 6b 20 70 72 65 66 69 78 2e 00 4f 70 74 69 6f 6e 73 00 4f 70 74 69 6f 6e 73 20 28 47 6c 6f 62 61 | k.prefix..Options.Options.(Globa |
| 10d100 | 6c 20 49 50 73 65 63 20 73 65 74 74 69 6e 67 73 29 20 41 74 74 72 69 62 75 74 65 73 00 4f 70 74 | l.IPsec.settings).Attributes.Opt |
| 10d120 | 69 6f 6e 73 20 75 73 65 64 20 66 6f 72 20 71 75 65 75 65 20 74 61 72 67 65 74 2e 20 41 63 74 69 | ions.used.for.queue.target..Acti |
| 10d140 | 6f 6e 20 71 75 65 75 65 20 6d 75 73 74 20 62 65 20 64 65 66 69 6e 65 64 20 74 6f 20 75 73 65 20 | on.queue.must.be.defined.to.use. |
| 10d160 | 74 68 69 73 20 73 65 74 74 69 6e 67 00 4f 72 20 2a 2a 62 69 6e 61 72 79 2a 2a 20 70 72 65 66 69 | this.setting.Or.**binary**.prefi |
| 10d180 | 78 65 73 2e 00 4f 72 2c 20 66 6f 72 20 65 78 61 6d 70 6c 65 20 66 74 70 2c 20 60 64 65 6c 65 74 | xes..Or,.for.example.ftp,.`delet |
| 10d1a0 | 65 20 73 79 73 74 65 6d 20 63 6f 6e 6e 74 72 61 63 6b 20 6d 6f 64 75 6c 65 73 20 66 74 70 60 2e | e.system.conntrack.modules.ftp`. |
| 10d1c0 | 00 4f 72 64 65 72 20 63 6f 6e 6e 74 72 61 63 6b 64 20 74 6f 20 72 65 71 75 65 73 74 20 61 20 63 | .Order.conntrackd.to.request.a.c |
| 10d1e0 | 6f 6d 70 6c 65 74 65 20 63 6f 6e 6e 74 72 61 63 6b 20 74 61 62 6c 65 20 72 65 73 79 6e 63 20 61 | omplete.conntrack.table.resync.a |
| 10d200 | 67 61 69 6e 73 74 20 74 68 65 20 6f 74 68 65 72 20 6e 6f 64 65 20 61 74 20 73 74 61 72 74 75 70 | gainst.the.other.node.at.startup |
| 10d220 | 2e 00 4f 72 69 67 69 6e 61 74 65 20 61 6e 20 41 53 2d 45 78 74 65 72 6e 61 6c 20 28 74 79 70 65 | ..Originate.an.AS-External.(type |
| 10d240 | 2d 35 29 20 4c 53 41 20 64 65 73 63 72 69 62 69 6e 67 20 61 20 64 65 66 61 75 6c 74 20 72 6f 75 | -5).LSA.describing.a.default.rou |
| 10d260 | 74 65 20 69 6e 74 6f 20 61 6c 6c 20 65 78 74 65 72 6e 61 6c 2d 72 6f 75 74 69 6e 67 20 63 61 70 | te.into.all.external-routing.cap |
| 10d280 | 61 62 6c 65 20 61 72 65 61 73 2c 20 6f 66 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 6d 65 74 | able.areas,.of.the.specified.met |
| 10d2a0 | 72 69 63 20 61 6e 64 20 6d 65 74 72 69 63 20 74 79 70 65 2e 20 49 66 20 74 68 65 20 3a 63 66 67 | ric.and.metric.type..If.the.:cfg |
| 10d2c0 | 63 6d 64 3a 60 61 6c 77 61 79 73 60 20 6b 65 79 77 6f 72 64 20 69 73 20 67 69 76 65 6e 20 74 68 | cmd:`always`.keyword.is.given.th |
| 10d2e0 | 65 6e 20 74 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 61 6c 77 61 79 73 20 61 64 76 65 72 74 69 | en.the.default.is.always.adverti |
| 10d300 | 73 65 64 2c 20 65 76 65 6e 20 77 68 65 6e 20 74 68 65 72 65 20 69 73 20 6e 6f 20 64 65 66 61 75 | sed,.even.when.there.is.no.defau |
| 10d320 | 6c 74 20 70 72 65 73 65 6e 74 20 69 6e 20 74 68 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 2e | lt.present.in.the.routing.table. |
| 10d340 | 20 54 68 65 20 61 72 67 75 6d 65 6e 74 20 3a 63 66 67 63 6d 64 3a 60 72 6f 75 74 65 2d 6d 61 70 | .The.argument.:cfgcmd:`route-map |
| 10d360 | 60 20 73 70 65 63 69 66 69 65 73 20 74 6f 20 61 64 76 65 72 74 69 73 65 20 74 68 65 20 64 65 66 | `.specifies.to.advertise.the.def |
| 10d380 | 61 75 6c 74 20 72 6f 75 74 65 20 69 66 20 74 68 65 20 72 6f 75 74 65 20 6d 61 70 20 69 73 20 73 | ault.route.if.the.route.map.is.s |
| 10d3a0 | 61 74 69 73 66 69 65 64 2e 00 4f 74 68 65 72 20 61 74 74 72 69 62 75 74 65 73 20 63 61 6e 20 62 | atisfied..Other.attributes.can.b |
| 10d3c0 | 65 20 75 73 65 64 2c 20 62 75 74 20 74 68 65 79 20 68 61 76 65 20 74 6f 20 62 65 20 69 6e 20 6f | e.used,.but.they.have.to.be.in.o |
| 10d3e0 | 6e 65 20 6f 66 20 74 68 65 20 64 69 63 74 69 6f 6e 61 72 69 65 73 20 69 6e 20 2a 2f 75 73 72 2f | ne.of.the.dictionaries.in.*/usr/ |
| 10d400 | 73 68 61 72 65 2f 61 63 63 65 6c 2d 70 70 70 2f 72 61 64 69 75 73 2a 2e 00 4f 75 72 20 63 6f 6e | share/accel-ppp/radius*..Our.con |
| 10d420 | 66 69 67 75 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 73 20 77 6f 75 6c 64 20 62 65 3a 00 4f 75 | figuration.commands.would.be:.Ou |
| 10d440 | 72 20 72 65 6d 6f 74 65 20 65 6e 64 20 6f 66 20 74 68 65 20 74 75 6e 6e 65 6c 20 66 6f 72 20 70 | r.remote.end.of.the.tunnel.for.p |
| 10d460 | 65 65 72 20 60 74 6f 2d 77 67 30 32 60 20 69 73 20 72 65 61 63 68 61 62 6c 65 20 61 74 20 31 39 | eer.`to-wg02`.is.reachable.at.19 |
| 10d480 | 32 2e 30 2e 32 2e 31 20 70 6f 72 74 20 35 31 38 32 30 00 4f 75 74 62 6f 75 6e 64 20 74 72 61 66 | 2.0.2.1.port.51820.Outbound.traf |
| 10d4a0 | 66 69 63 20 63 61 6e 20 62 65 20 62 61 6c 61 6e 63 65 64 20 62 65 74 77 65 65 6e 20 74 77 6f 20 | fic.can.be.balanced.between.two. |
| 10d4c0 | 6f 72 20 6d 6f 72 65 20 6f 75 74 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 73 2e 20 49 66 20 | or.more.outbound.interfaces..If. |
| 10d4e0 | 61 20 70 61 74 68 20 66 61 69 6c 73 2c 20 74 72 61 66 66 69 63 20 69 73 20 62 61 6c 61 6e 63 65 | a.path.fails,.traffic.is.balance |
| 10d500 | 64 20 61 63 72 6f 73 73 20 74 68 65 20 72 65 6d 61 69 6e 69 6e 67 20 68 65 61 6c 74 68 79 20 70 | d.across.the.remaining.healthy.p |
| 10d520 | 61 74 68 73 2c 20 61 20 72 65 63 6f 76 65 72 65 64 20 70 61 74 68 20 69 73 20 61 75 74 6f 6d 61 | aths,.a.recovered.path.is.automa |
| 10d540 | 74 69 63 61 6c 6c 79 20 61 64 64 65 64 20 62 61 63 6b 20 74 6f 20 74 68 65 20 72 6f 75 74 69 6e | tically.added.back.to.the.routin |
| 10d560 | 67 20 74 61 62 6c 65 20 61 6e 64 20 75 73 65 64 20 62 79 20 74 68 65 20 6c 6f 61 64 20 62 61 6c | g.table.and.used.by.the.load.bal |
| 10d580 | 61 6e 63 65 72 2e 20 54 68 65 20 6c 6f 61 64 20 62 61 6c 61 6e 63 65 72 20 61 75 74 6f 6d 61 74 | ancer..The.load.balancer.automat |
| 10d5a0 | 69 63 61 6c 6c 79 20 61 64 64 73 20 72 6f 75 74 65 73 20 66 6f 72 20 65 61 63 68 20 70 61 74 68 | ically.adds.routes.for.each.path |
| 10d5c0 | 20 74 6f 20 74 68 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 61 6e 64 20 62 61 6c 61 6e 63 | .to.the.routing.table.and.balanc |
| 10d5e0 | 65 73 20 74 72 61 66 66 69 63 20 61 63 72 6f 73 73 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 64 | es.traffic.across.the.configured |
| 10d600 | 20 69 6e 74 65 72 66 61 63 65 73 2c 20 64 65 74 65 72 6d 69 6e 65 64 20 62 79 20 69 6e 74 65 72 | .interfaces,.determined.by.inter |
| 10d620 | 66 61 63 65 20 68 65 61 6c 74 68 20 61 6e 64 20 77 65 69 67 68 74 2e 00 4f 75 74 67 6f 69 6e 67 | face.health.and.weight..Outgoing |
| 10d640 | 20 74 72 61 66 66 69 63 20 69 73 20 62 61 6c 61 6e 63 65 64 20 69 6e 20 61 20 66 6c 6f 77 2d 62 | .traffic.is.balanced.in.a.flow-b |
| 10d660 | 61 73 65 64 20 6d 61 6e 6e 65 72 2e 20 41 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 | ased.manner..A.connection.tracki |
| 10d680 | 6e 67 20 74 61 62 6c 65 20 69 73 20 75 73 65 64 20 74 6f 20 74 72 61 63 6b 20 66 6c 6f 77 73 20 | ng.table.is.used.to.track.flows. |
| 10d6a0 | 62 79 20 74 68 65 69 72 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 2c 20 64 65 73 74 69 6e 61 | by.their.source.address,.destina |
| 10d6c0 | 74 69 6f 6e 20 61 64 64 72 65 73 73 20 61 6e 64 20 70 6f 72 74 2e 20 45 61 63 68 20 66 6c 6f 77 | tion.address.and.port..Each.flow |
| 10d6e0 | 20 69 73 20 61 73 73 69 67 6e 65 64 20 74 6f 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 61 63 63 | .is.assigned.to.an.interface.acc |
| 10d700 | 6f 72 64 69 6e 67 20 74 6f 20 74 68 65 20 64 65 66 69 6e 65 64 20 62 61 6c 61 6e 63 69 6e 67 20 | ording.to.the.defined.balancing. |
| 10d720 | 72 75 6c 65 73 20 61 6e 64 20 73 75 62 73 65 71 75 65 6e 74 20 70 61 63 6b 65 74 73 20 61 72 65 | rules.and.subsequent.packets.are |
| 10d740 | 20 73 65 6e 74 20 74 68 72 6f 75 67 68 20 74 68 65 20 73 61 6d 65 20 69 6e 74 65 72 66 61 63 65 | .sent.through.the.same.interface |
| 10d760 | 2e 20 54 68 69 73 20 68 61 73 20 74 68 65 20 61 64 76 61 6e 74 61 67 65 20 74 68 61 74 20 70 61 | ..This.has.the.advantage.that.pa |
| 10d780 | 63 6b 65 74 73 20 61 6c 77 61 79 73 20 61 72 72 69 76 65 20 69 6e 20 6f 72 64 65 72 20 69 66 20 | ckets.always.arrive.in.order.if. |
| 10d7a0 | 6c 69 6e 6b 73 20 77 69 74 68 20 64 69 66 66 65 72 65 6e 74 20 73 70 65 65 64 73 20 61 72 65 20 | links.with.different.speeds.are. |
| 10d7c0 | 69 6e 20 75 73 65 2e 00 4f 75 74 70 75 74 20 66 72 6f 6d 20 60 65 74 68 30 60 20 6e 65 74 77 6f | in.use..Output.from.`eth0`.netwo |
| 10d7e0 | 72 6b 20 69 6e 74 65 72 66 61 63 65 00 4f 75 74 70 75 74 20 70 6c 75 67 69 6e 20 50 72 6f 6d 65 | rk.interface.Output.plugin.Prome |
| 10d800 | 74 68 65 75 73 20 63 6c 69 65 6e 74 00 4f 76 65 72 20 49 50 00 4f 76 65 72 20 49 50 53 65 63 2c | theus.client.Over.IP.Over.IPSec, |
| 10d820 | 20 4c 32 20 56 50 4e 20 28 62 72 69 64 67 65 29 00 4f 76 65 72 20 55 44 50 00 4f 76 65 72 72 69 | .L2.VPN.(bridge).Over.UDP.Overri |
| 10d840 | 64 65 20 73 74 61 74 69 63 2d 6d 61 70 70 69 6e 67 27 73 20 6e 61 6d 65 2d 73 65 72 76 65 72 20 | de.static-mapping's.name-server. |
| 10d860 | 77 69 74 68 20 61 20 63 75 73 74 6f 6d 20 6f 6e 65 20 74 68 61 74 20 77 69 6c 6c 20 62 65 20 73 | with.a.custom.one.that.will.be.s |
| 10d880 | 65 6e 74 20 6f 6e 6c 79 20 74 6f 20 74 68 69 73 20 68 6f 73 74 2e 00 4f 76 65 72 72 69 64 65 20 | ent.only.to.this.host..Override. |
| 10d8a0 | 74 68 65 20 64 65 66 61 75 6c 74 20 63 6f 6d 6d 61 6e 64 20 66 72 6f 6d 20 74 68 65 20 69 6d 61 | the.default.command.from.the.ima |
| 10d8c0 | 67 65 20 66 6f 72 20 61 20 63 6f 6e 74 61 69 6e 65 72 2e 00 4f 76 65 72 72 69 64 65 20 74 68 65 | ge.for.a.container..Override.the |
| 10d8e0 | 20 64 65 66 61 75 6c 74 20 65 6e 74 72 79 70 6f 69 6e 74 20 66 72 6f 6d 20 74 68 65 20 69 6d 61 | .default.entrypoint.from.the.ima |
| 10d900 | 67 65 20 66 6f 72 20 61 20 63 6f 6e 74 61 69 6e 65 72 2e 00 4f 76 65 72 76 69 65 77 00 4f 76 65 | ge.for.a.container..Overview.Ove |
| 10d920 | 72 76 69 65 77 20 61 6e 64 20 62 61 73 69 63 20 63 6f 6e 63 65 70 74 73 00 4f 76 65 72 76 69 65 | rview.and.basic.concepts.Overvie |
| 10d940 | 77 20 6f 66 20 64 65 66 69 6e 65 64 20 67 72 6f 75 70 73 2e 20 59 6f 75 20 73 65 65 20 74 68 65 | w.of.defined.groups..You.see.the |
| 10d960 | 20 66 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 20 6e 61 6d 65 2c 20 74 79 70 65 2c 20 72 65 66 65 | .firewall.group.name,.type,.refe |
| 10d980 | 72 65 6e 63 65 73 20 28 77 68 65 72 65 20 74 68 65 20 67 72 6f 75 70 20 69 73 20 75 73 65 64 29 | rences.(where.the.group.is.used) |
| 10d9a0 | 2c 20 6d 65 6d 62 65 72 73 2c 20 74 69 6d 65 6f 75 74 20 61 6e 64 20 65 78 70 69 72 61 74 69 6f | ,.members,.timeout.and.expiratio |
| 10d9c0 | 6e 20 28 6c 61 73 74 20 74 77 6f 20 6f 6e 6c 79 20 70 72 65 73 65 6e 74 20 69 6e 20 64 79 6e 61 | n.(last.two.only.present.in.dyna |
| 10d9e0 | 6d 69 63 20 66 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 73 29 2e 00 4f 76 65 72 76 69 65 77 20 6f | mic.firewall.groups)..Overview.o |
| 10da00 | 66 20 64 65 66 69 6e 65 64 20 67 72 6f 75 70 73 2e 20 59 6f 75 20 73 65 65 20 74 68 65 20 74 79 | f.defined.groups..You.see.the.ty |
| 10da20 | 70 65 2c 20 74 68 65 20 6d 65 6d 62 65 72 73 2c 20 61 6e 64 20 77 68 65 72 65 20 74 68 65 20 67 | pe,.the.members,.and.where.the.g |
| 10da40 | 72 6f 75 70 20 69 73 20 75 73 65 64 2e 00 4f 76 65 72 77 72 69 74 65 73 20 74 68 65 20 6c 6f 63 | roup.is.used..Overwrites.the.loc |
| 10da60 | 61 6c 20 73 79 73 74 65 6d 20 68 6f 73 74 20 6e 61 6d 65 20 75 73 65 64 20 69 6e 20 73 79 73 6c | al.system.host.name.used.in.sysl |
| 10da80 | 6f 67 73 2e 00 50 42 52 20 6d 75 6c 74 69 70 6c 65 20 75 70 6c 69 6e 6b 73 00 50 43 31 20 69 73 | ogs..PBR.multiple.uplinks.PC1.is |
| 10daa0 | 20 69 6e 20 74 68 65 20 60 60 64 65 66 61 75 6c 74 60 60 20 56 52 46 20 61 6e 64 20 61 63 74 69 | .in.the.``default``.VRF.and.acti |
| 10dac0 | 6e 67 20 61 73 20 65 2e 67 2e 20 61 20 22 66 69 6c 65 73 65 72 76 65 72 22 00 50 43 32 20 69 73 | ng.as.e.g..a."fileserver".PC2.is |
| 10dae0 | 20 69 6e 20 56 52 46 20 60 60 62 6c 75 65 60 60 20 77 68 69 63 68 20 69 73 20 74 68 65 20 64 65 | .in.VRF.``blue``.which.is.the.de |
| 10db00 | 76 65 6c 6f 70 6d 65 6e 74 20 64 65 70 61 72 74 6d 65 6e 74 00 50 43 33 20 61 6e 64 20 50 43 34 | velopment.department.PC3.and.PC4 |
| 10db20 | 20 61 72 65 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 61 20 62 72 69 64 67 65 20 64 65 76 69 63 | .are.connected.to.a.bridge.devic |
| 10db40 | 65 20 6f 6e 20 72 6f 75 74 65 72 20 60 60 52 31 60 60 20 77 68 69 63 68 20 69 73 20 69 6e 20 56 | e.on.router.``R1``.which.is.in.V |
| 10db60 | 52 46 20 60 60 72 65 64 60 60 2e 20 53 61 79 20 74 68 69 73 20 69 73 20 74 68 65 20 48 52 20 64 | RF.``red``..Say.this.is.the.HR.d |
| 10db80 | 65 70 61 72 74 6d 65 6e 74 2e 00 50 43 34 20 68 61 73 20 49 50 20 31 30 2e 30 2e 30 2e 34 2f 32 | epartment..PC4.has.IP.10.0.0.4/2 |
| 10dba0 | 34 20 61 6e 64 20 50 43 35 20 68 61 73 20 49 50 20 31 30 2e 30 2e 30 2e 35 2f 32 34 2c 20 73 6f | 4.and.PC5.has.IP.10.0.0.5/24,.so |
| 10dbc0 | 20 74 68 65 79 20 62 65 6c 69 65 76 65 20 74 68 65 79 20 61 72 65 20 69 6e 20 74 68 65 20 73 61 | .they.believe.they.are.in.the.sa |
| 10dbe0 | 6d 65 20 62 72 6f 61 64 63 61 73 74 20 64 6f 6d 61 69 6e 2e 00 50 43 35 20 72 65 63 65 69 76 65 | me.broadcast.domain..PC5.receive |
| 10dc00 | 73 20 74 68 65 20 70 69 6e 67 20 65 63 68 6f 2c 20 72 65 73 70 6f 6e 64 73 20 77 69 74 68 20 61 | s.the.ping.echo,.responds.with.a |
| 10dc20 | 6e 20 65 63 68 6f 20 72 65 70 6c 79 20 74 68 61 74 20 4c 65 61 66 33 20 72 65 63 65 69 76 65 73 | n.echo.reply.that.Leaf3.receives |
| 10dc40 | 20 61 6e 64 20 74 68 69 73 20 74 69 6d 65 20 66 6f 72 77 61 72 64 73 20 74 6f 20 4c 65 61 66 32 | .and.this.time.forwards.to.Leaf2 |
| 10dc60 | 27 73 20 75 6e 69 63 61 73 74 20 61 64 64 72 65 73 73 20 64 69 72 65 63 74 6c 79 20 62 65 63 61 | 's.unicast.address.directly.beca |
| 10dc80 | 75 73 65 20 69 74 20 6c 65 61 72 6e 65 64 20 74 68 65 20 6c 6f 63 61 74 69 6f 6e 20 6f 66 20 50 | use.it.learned.the.location.of.P |
| 10dca0 | 43 34 20 61 62 6f 76 65 2e 20 57 68 65 6e 20 4c 65 61 66 32 20 72 65 63 65 69 76 65 73 20 74 68 | C4.above..When.Leaf2.receives.th |
| 10dcc0 | 65 20 65 63 68 6f 20 72 65 70 6c 79 20 66 72 6f 6d 20 50 43 35 20 69 74 20 73 65 65 73 20 74 68 | e.echo.reply.from.PC5.it.sees.th |
| 10dce0 | 61 74 20 69 74 20 63 61 6d 65 20 66 72 6f 6d 20 4c 65 61 66 33 20 61 6e 64 20 73 6f 20 72 65 6d | at.it.came.from.Leaf3.and.so.rem |
| 10dd00 | 65 6d 62 65 72 73 20 74 68 61 74 20 50 43 35 20 69 73 20 72 65 61 63 68 61 62 6c 65 20 76 69 61 | embers.that.PC5.is.reachable.via |
| 10dd20 | 20 4c 65 61 66 33 2e 00 50 49 4d 20 28 50 72 6f 74 6f 63 6f 6c 20 49 6e 64 65 70 65 6e 64 65 6e | .Leaf3..PIM.(Protocol.Independen |
| 10dd40 | 74 20 4d 75 6c 74 69 63 61 73 74 29 20 6d 75 73 74 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 | t.Multicast).must.be.configured. |
| 10dd60 | 69 6e 20 65 76 65 72 79 20 69 6e 74 65 72 66 61 63 65 20 6f 66 20 65 76 65 72 79 20 70 61 72 74 | in.every.interface.of.every.part |
| 10dd80 | 69 63 69 70 61 74 69 6e 67 20 72 6f 75 74 65 72 2e 20 45 76 65 72 79 20 72 6f 75 74 65 72 20 6d | icipating.router..Every.router.m |
| 10dda0 | 75 73 74 20 61 6c 73 6f 20 68 61 76 65 20 74 68 65 20 6c 6f 63 61 74 69 6f 6e 20 6f 66 20 74 68 | ust.also.have.the.location.of.th |
| 10ddc0 | 65 20 52 65 6e 64 65 76 6f 75 7a 20 50 6f 69 6e 74 20 6d 61 6e 75 61 6c 6c 79 20 63 6f 6e 66 69 | e.Rendevouz.Point.manually.confi |
| 10dde0 | 67 75 72 65 64 2e 20 54 68 65 6e 2c 20 75 6e 69 64 69 72 65 63 74 69 6f 6e 61 6c 20 73 68 61 72 | gured..Then,.unidirectional.shar |
| 10de00 | 65 64 20 74 72 65 65 73 20 72 6f 6f 74 65 64 20 61 74 20 74 68 65 20 52 65 6e 64 65 76 6f 75 7a | ed.trees.rooted.at.the.Rendevouz |
| 10de20 | 20 50 6f 69 6e 74 20 77 69 6c 6c 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 62 65 20 62 75 69 | .Point.will.automatically.be.bui |
| 10de40 | 6c 74 20 66 6f 72 20 6d 75 6c 74 69 63 61 73 74 20 64 69 73 74 72 69 62 75 74 69 6f 6e 2e 00 50 | lt.for.multicast.distribution..P |
| 10de60 | 49 4d 20 61 6e 64 20 49 47 4d 50 00 50 49 4d 20 e2 80 93 20 50 72 6f 74 6f 63 6f 6c 20 49 6e 64 | IM.and.IGMP.PIM.....Protocol.Ind |
| 10de80 | 65 70 65 6e 64 65 6e 74 20 4d 75 6c 74 69 63 61 73 74 00 50 49 4d 2d 53 4d 20 2d 20 50 49 4d 20 | ependent.Multicast.PIM-SM.-.PIM. |
| 10dea0 | 53 70 61 72 73 65 20 4d 6f 64 65 00 50 49 4d 36 20 2d 20 50 72 6f 74 6f 63 6f 6c 20 49 6e 64 65 | Sparse.Mode.PIM6.-.Protocol.Inde |
| 10dec0 | 70 65 6e 64 65 6e 74 20 4d 75 6c 74 69 63 61 73 74 20 66 6f 72 20 49 50 76 36 00 50 49 4d 76 36 | pendent.Multicast.for.IPv6.PIMv6 |
| 10dee0 | 20 28 50 72 6f 74 6f 63 6f 6c 20 49 6e 64 65 70 65 6e 64 65 6e 74 20 4d 75 6c 74 69 63 61 73 74 | .(Protocol.Independent.Multicast |
| 10df00 | 20 66 6f 72 20 49 50 76 36 29 20 6d 75 73 74 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 69 6e | .for.IPv6).must.be.configured.in |
| 10df20 | 20 65 76 65 72 79 20 69 6e 74 65 72 66 61 63 65 20 6f 66 20 65 76 65 72 79 20 70 61 72 74 69 63 | .every.interface.of.every.partic |
| 10df40 | 69 70 61 74 69 6e 67 20 72 6f 75 74 65 72 2e 20 45 76 65 72 79 20 72 6f 75 74 65 72 20 6d 75 73 | ipating.router..Every.router.mus |
| 10df60 | 74 20 61 6c 73 6f 20 68 61 76 65 20 74 68 65 20 6c 6f 63 61 74 69 6f 6e 20 6f 66 20 74 68 65 20 | t.also.have.the.location.of.the. |
| 10df80 | 52 65 6e 64 65 76 6f 75 7a 20 50 6f 69 6e 74 20 6d 61 6e 75 61 6c 6c 79 20 63 6f 6e 66 69 67 75 | Rendevouz.Point.manually.configu |
| 10dfa0 | 72 65 64 2e 20 54 68 65 6e 2c 20 75 6e 69 64 69 72 65 63 74 69 6f 6e 61 6c 20 73 68 61 72 65 64 | red..Then,.unidirectional.shared |
| 10dfc0 | 20 74 72 65 65 73 20 72 6f 6f 74 65 64 20 61 74 20 74 68 65 20 52 65 6e 64 65 76 6f 75 7a 20 50 | .trees.rooted.at.the.Rendevouz.P |
| 10dfe0 | 6f 69 6e 74 20 77 69 6c 6c 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 62 65 20 62 75 69 6c 74 | oint.will.automatically.be.built |
| 10e000 | 20 66 6f 72 20 6d 75 6c 74 69 63 61 73 74 20 64 69 73 74 72 69 62 75 74 69 6f 6e 2e 00 50 4b 49 | .for.multicast.distribution..PKI |
| 10e020 | 00 50 50 44 55 00 50 50 50 20 41 64 76 61 6e 63 65 64 20 4f 70 74 69 6f 6e 73 00 50 50 50 20 53 | .PPDU.PPP.Advanced.Options.PPP.S |
| 10e040 | 65 74 74 69 6e 67 73 00 50 50 50 6f 45 00 50 50 50 6f 45 20 53 65 72 76 65 72 00 50 50 50 6f 45 | ettings.PPPoE.PPPoE.Server.PPPoE |
| 10e060 | 20 6f 70 74 69 6f 6e 73 00 50 50 54 50 2d 53 65 72 76 65 72 00 50 54 50 20 54 72 61 6e 73 70 6f | .options.PPTP-Server.PTP.Transpo |
| 10e080 | 72 74 20 6f 66 20 4e 54 50 20 50 61 63 6b 65 74 73 00 50 61 63 6b 65 74 20 4d 6f 64 69 66 69 63 | rt.of.NTP.Packets.Packet.Modific |
| 10e0a0 | 61 74 69 6f 6e 73 00 50 61 63 6b 65 74 2d 62 61 73 65 64 20 62 61 6c 61 6e 63 69 6e 67 20 63 61 | ations.Packet-based.balancing.ca |
| 10e0c0 | 6e 20 6c 65 61 64 20 74 6f 20 61 20 62 65 74 74 65 72 20 62 61 6c 61 6e 63 65 20 61 63 72 6f 73 | n.lead.to.a.better.balance.acros |
| 10e0e0 | 73 20 69 6e 74 65 72 66 61 63 65 73 20 77 68 65 6e 20 6f 75 74 20 6f 66 20 6f 72 64 65 72 20 70 | s.interfaces.when.out.of.order.p |
| 10e100 | 61 63 6b 65 74 73 20 61 72 65 20 6e 6f 20 69 73 73 75 65 2e 20 50 65 72 2d 70 61 63 6b 65 74 2d | ackets.are.no.issue..Per-packet- |
| 10e120 | 62 61 73 65 64 20 62 61 6c 61 6e 63 69 6e 67 20 63 61 6e 20 62 65 20 73 65 74 20 66 6f 72 20 61 | based.balancing.can.be.set.for.a |
| 10e140 | 20 62 61 6c 61 6e 63 69 6e 67 20 72 75 6c 65 20 77 69 74 68 3a 00 50 61 72 61 6d 65 74 65 72 73 | .balancing.rule.with:.Parameters |
| 10e160 | 20 62 65 67 69 6e 6e 69 6e 67 20 77 69 74 68 20 66 73 2e 6d 71 75 65 75 65 2e 2a 00 50 61 72 61 | .beginning.with.fs.mqueue.*.Para |
| 10e180 | 6d 65 74 65 72 73 20 62 65 67 69 6e 6e 69 6e 67 20 77 69 74 68 20 6e 65 74 2e 2a 20 28 6f 6e 6c | meters.beginning.with.net.*.(onl |
| 10e1a0 | 79 20 69 66 20 75 73 65 72 2d 64 65 66 69 6e 65 64 20 6e 65 74 77 6f 72 6b 20 69 73 20 75 73 65 | y.if.user-defined.network.is.use |
| 10e1c0 | 64 29 00 50 61 72 74 69 63 75 6c 61 72 6c 79 20 6c 61 72 67 65 20 6e 65 74 77 6f 72 6b 73 20 6d | d).Particularly.large.networks.m |
| 10e1e0 | 61 79 20 77 69 73 68 20 74 6f 20 72 75 6e 20 74 68 65 69 72 20 6f 77 6e 20 52 50 4b 49 20 63 65 | ay.wish.to.run.their.own.RPKI.ce |
| 10e200 | 72 74 69 66 69 63 61 74 65 20 61 75 74 68 6f 72 69 74 79 20 61 6e 64 20 70 75 62 6c 69 63 61 74 | rtificate.authority.and.publicat |
| 10e220 | 69 6f 6e 20 73 65 72 76 65 72 20 69 6e 73 74 65 61 64 20 6f 66 20 70 75 62 6c 69 73 68 69 6e 67 | ion.server.instead.of.publishing |
| 10e240 | 20 52 4f 41 73 20 76 69 61 20 74 68 65 69 72 20 52 49 52 2e 20 54 68 69 73 20 69 73 20 61 20 73 | .ROAs.via.their.RIR..This.is.a.s |
| 10e260 | 75 62 6a 65 63 74 20 66 61 72 20 62 65 79 6f 6e 64 20 74 68 65 20 73 63 6f 70 65 20 6f 66 20 56 | ubject.far.beyond.the.scope.of.V |
| 10e280 | 79 4f 53 27 20 64 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 2e 20 43 6f 6e 73 69 64 65 72 20 72 65 61 | yOS'.documentation..Consider.rea |
| 10e2a0 | 64 69 6e 67 20 61 62 6f 75 74 20 4b 72 69 6c 6c 5f 20 69 66 20 74 68 69 73 20 69 73 20 61 20 72 | ding.about.Krill_.if.this.is.a.r |
| 10e2c0 | 61 62 62 69 74 20 68 6f 6c 65 20 79 6f 75 20 6e 65 65 64 20 6f 72 20 65 73 70 65 63 69 61 6c 6c | abbit.hole.you.need.or.especiall |
| 10e2e0 | 79 20 77 61 6e 74 20 74 6f 20 64 69 76 65 20 64 6f 77 6e 2e 00 50 61 73 73 20 61 64 64 72 65 73 | y.want.to.dive.down..Pass.addres |
| 10e300 | 73 20 6f 66 20 55 6e 69 66 69 20 63 6f 6e 74 72 6f 6c 6c 65 72 20 61 74 20 60 60 31 37 32 2e 31 | s.of.Unifi.controller.at.``172.1 |
| 10e320 | 36 2e 31 30 30 2e 31 60 60 20 74 6f 20 61 6c 6c 20 63 6c 69 65 6e 74 73 20 6f 66 20 60 60 4e 45 | 6.100.1``.to.all.clients.of.``NE |
| 10e340 | 54 31 60 60 00 50 61 74 68 20 60 3c 63 6f 73 74 3e 60 20 76 61 6c 75 65 20 66 6f 72 20 53 70 61 | T1``.Path.`<cost>`.value.for.Spa |
| 10e360 | 6e 6e 69 6e 67 20 54 72 65 65 20 50 72 6f 74 6f 63 6f 6c 2e 20 45 61 63 68 20 69 6e 74 65 72 66 | nning.Tree.Protocol..Each.interf |
| 10e380 | 61 63 65 20 69 6e 20 61 20 62 72 69 64 67 65 20 63 6f 75 6c 64 20 68 61 76 65 20 61 20 64 69 66 | ace.in.a.bridge.could.have.a.dif |
| 10e3a0 | 66 65 72 65 6e 74 20 73 70 65 65 64 20 61 6e 64 20 74 68 69 73 20 76 61 6c 75 65 20 69 73 20 75 | ferent.speed.and.this.value.is.u |
| 10e3c0 | 73 65 64 20 77 68 65 6e 20 64 65 63 69 64 69 6e 67 20 77 68 69 63 68 20 6c 69 6e 6b 20 74 6f 20 | sed.when.deciding.which.link.to. |
| 10e3e0 | 75 73 65 2e 20 46 61 73 74 65 72 20 69 6e 74 65 72 66 61 63 65 73 20 73 68 6f 75 6c 64 20 68 61 | use..Faster.interfaces.should.ha |
| 10e400 | 76 65 20 6c 6f 77 65 72 20 63 6f 73 74 73 2e 00 50 61 74 68 20 74 6f 20 60 3c 66 69 6c 65 3e 60 | ve.lower.costs..Path.to.`<file>` |
| 10e420 | 20 70 6f 69 6e 74 69 6e 67 20 74 6f 20 74 68 65 20 63 65 72 74 69 66 69 63 61 74 65 20 61 75 74 | .pointing.to.the.certificate.aut |
| 10e440 | 68 6f 72 69 74 79 20 63 65 72 74 69 66 69 63 61 74 65 2e 00 50 61 74 68 20 74 6f 20 60 3c 66 69 | hority.certificate..Path.to.`<fi |
| 10e460 | 6c 65 3e 60 20 70 6f 69 6e 74 69 6e 67 20 74 6f 20 74 68 65 20 73 65 72 76 65 72 73 20 63 65 72 | le>`.pointing.to.the.servers.cer |
| 10e480 | 74 69 66 69 63 61 74 65 20 28 70 75 62 6c 69 63 20 70 6f 72 74 69 6f 6e 29 2e 00 50 65 65 72 20 | tificate.(public.portion)..Peer. |
| 10e4a0 | 2d 20 50 65 65 72 00 50 65 65 72 20 47 72 6f 75 70 73 00 50 65 65 72 20 49 50 20 61 64 64 72 65 | -.Peer.Peer.Groups.Peer.IP.addre |
| 10e4c0 | 73 73 20 74 6f 20 6d 61 74 63 68 2e 00 50 65 65 72 20 50 61 72 61 6d 65 74 65 72 73 00 50 65 65 | ss.to.match..Peer.Parameters.Pee |
| 10e4e0 | 72 20 67 72 6f 75 70 73 20 61 72 65 20 75 73 65 64 20 74 6f 20 68 65 6c 70 20 69 6d 70 72 6f 76 | r.groups.are.used.to.help.improv |
| 10e500 | 65 20 73 63 61 6c 69 6e 67 20 62 79 20 67 65 6e 65 72 61 74 69 6e 67 20 74 68 65 20 73 61 6d 65 | e.scaling.by.generating.the.same |
| 10e520 | 20 75 70 64 61 74 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 6f 20 61 6c 6c 20 6d 65 6d 62 65 | .update.information.to.all.membe |
| 10e540 | 72 73 20 6f 66 20 61 20 70 65 65 72 20 67 72 6f 75 70 2e 20 4e 6f 74 65 20 74 68 61 74 20 74 68 | rs.of.a.peer.group..Note.that.th |
| 10e560 | 69 73 20 6d 65 61 6e 73 20 74 68 61 74 20 74 68 65 20 72 6f 75 74 65 73 20 67 65 6e 65 72 61 74 | is.means.that.the.routes.generat |
| 10e580 | 65 64 20 62 79 20 61 20 6d 65 6d 62 65 72 20 6f 66 20 61 20 70 65 65 72 20 67 72 6f 75 70 20 77 | ed.by.a.member.of.a.peer.group.w |
| 10e5a0 | 69 6c 6c 20 62 65 20 73 65 6e 74 20 62 61 63 6b 20 74 6f 20 74 68 61 74 20 6f 72 69 67 69 6e 61 | ill.be.sent.back.to.that.origina |
| 10e5c0 | 74 69 6e 67 20 70 65 65 72 20 77 69 74 68 20 74 68 65 20 6f 72 69 67 69 6e 61 74 6f 72 20 69 64 | ting.peer.with.the.originator.id |
| 10e5e0 | 65 6e 74 69 66 69 65 72 20 61 74 74 72 69 62 75 74 65 20 73 65 74 20 74 6f 20 69 6e 64 69 63 61 | entifier.attribute.set.to.indica |
| 10e600 | 74 65 64 20 74 68 65 20 6f 72 69 67 69 6e 61 74 69 6e 67 20 70 65 65 72 2e 20 41 6c 6c 20 70 65 | ted.the.originating.peer..All.pe |
| 10e620 | 65 72 73 20 6e 6f 74 20 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 61 20 73 70 65 63 69 66 | ers.not.associated.with.a.specif |
| 10e640 | 69 63 20 70 65 65 72 20 67 72 6f 75 70 20 61 72 65 20 74 72 65 61 74 65 64 20 61 73 20 62 65 6c | ic.peer.group.are.treated.as.bel |
| 10e660 | 6f 6e 67 69 6e 67 20 74 6f 20 61 20 64 65 66 61 75 6c 74 20 70 65 65 72 20 67 72 6f 75 70 2c 20 | onging.to.a.default.peer.group,. |
| 10e680 | 61 6e 64 20 77 69 6c 6c 20 73 68 61 72 65 20 75 70 64 61 74 65 73 2e 00 50 65 65 72 20 74 6f 20 | and.will.share.updates..Peer.to. |
| 10e6a0 | 73 65 6e 64 20 75 6e 69 63 61 73 74 20 55 44 50 20 63 6f 6e 6e 74 72 61 63 6b 20 73 79 6e 63 20 | send.unicast.UDP.conntrack.sync. |
| 10e6c0 | 65 6e 74 69 72 65 73 20 74 6f 2c 20 69 66 20 6e 6f 74 20 75 73 69 6e 67 20 4d 75 6c 74 69 63 61 | entires.to,.if.not.using.Multica |
| 10e6e0 | 73 74 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 72 6f 6d 20 61 62 6f 76 65 20 61 62 6f 76 | st.configuration.from.above.abov |
| 10e700 | 65 2e 00 50 65 65 72 73 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 50 65 72 20 64 65 66 61 75 | e..Peers.Configuration.Per.defau |
| 10e720 | 6c 74 20 56 79 4f 53 73 20 68 61 73 20 6d 69 6e 69 6d 61 6c 20 73 79 73 6c 6f 67 20 6c 6f 67 67 | lt.VyOSs.has.minimal.syslog.logg |
| 10e740 | 69 6e 67 20 65 6e 61 62 6c 65 64 20 77 68 69 63 68 20 69 73 20 73 74 6f 72 65 64 20 61 6e 64 20 | ing.enabled.which.is.stored.and. |
| 10e760 | 72 6f 74 61 74 65 64 20 6c 6f 63 61 6c 6c 79 2e 20 45 72 72 6f 72 73 20 77 69 6c 6c 20 62 65 20 | rotated.locally..Errors.will.be. |
| 10e780 | 61 6c 77 61 79 73 20 6c 6f 67 67 65 64 20 74 6f 20 61 20 6c 6f 63 61 6c 20 66 69 6c 65 2c 20 77 | always.logged.to.a.local.file,.w |
| 10e7a0 | 68 69 63 68 20 69 6e 63 6c 75 64 65 73 20 60 6c 6f 63 61 6c 37 60 20 65 72 72 6f 72 20 6d 65 73 | hich.includes.`local7`.error.mes |
| 10e7c0 | 73 61 67 65 73 2c 20 65 6d 65 72 67 65 6e 63 79 20 6d 65 73 73 61 67 65 73 20 77 69 6c 6c 20 62 | sages,.emergency.messages.will.b |
| 10e7e0 | 65 20 73 65 6e 74 20 74 6f 20 74 68 65 20 63 6f 6e 73 6f 6c 65 2c 20 74 6f 6f 2e 00 50 65 72 20 | e.sent.to.the.console,.too..Per. |
| 10e800 | 64 65 66 61 75 6c 74 20 65 76 65 72 79 20 70 61 63 6b 65 74 20 69 73 20 73 61 6d 70 6c 65 64 20 | default.every.packet.is.sampled. |
| 10e820 | 28 74 68 61 74 20 69 73 2c 20 74 68 65 20 73 61 6d 70 6c 69 6e 67 20 72 61 74 65 20 69 73 20 31 | (that.is,.the.sampling.rate.is.1 |
| 10e840 | 29 2e 00 50 65 72 20 64 65 66 61 75 6c 74 20 74 68 65 20 75 73 65 72 20 73 65 73 73 69 6f 6e 20 | )..Per.default.the.user.session. |
| 10e860 | 69 73 20 62 65 69 6e 67 20 72 65 70 6c 61 63 65 64 20 69 66 20 61 20 73 65 63 6f 6e 64 20 61 75 | is.being.replaced.if.a.second.au |
| 10e880 | 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 72 65 71 75 65 73 74 20 73 75 63 63 65 65 64 73 2e 20 53 | thentication.request.succeeds..S |
| 10e8a0 | 75 63 68 20 73 65 73 73 69 6f 6e 20 72 65 71 75 65 73 74 73 20 63 61 6e 20 62 65 20 65 69 74 68 | uch.session.requests.can.be.eith |
| 10e8c0 | 65 72 20 64 65 6e 69 65 64 20 6f 72 20 61 6c 6c 6f 77 65 64 20 65 6e 74 69 72 65 6c 79 2c 20 77 | er.denied.or.allowed.entirely,.w |
| 10e8e0 | 68 69 63 68 20 77 6f 75 6c 64 20 61 6c 6c 6f 77 20 6d 75 6c 74 69 70 6c 65 20 73 65 73 73 69 6f | hich.would.allow.multiple.sessio |
| 10e900 | 6e 73 20 66 6f 72 20 61 20 75 73 65 72 20 69 6e 20 74 68 65 20 6c 61 74 74 65 72 20 63 61 73 65 | ns.for.a.user.in.the.latter.case |
| 10e920 | 2e 20 49 66 20 69 74 20 69 73 20 64 65 6e 69 65 64 2c 20 74 68 65 20 73 65 63 6f 6e 64 20 73 65 | ..If.it.is.denied,.the.second.se |
| 10e940 | 73 73 69 6f 6e 20 69 73 20 62 65 69 6e 67 20 72 65 6a 65 63 74 65 64 20 65 76 65 6e 20 69 66 20 | ssion.is.being.rejected.even.if. |
| 10e960 | 74 68 65 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 73 75 63 63 65 65 64 73 2c 20 74 68 65 | the.authentication.succeeds,.the |
| 10e980 | 20 75 73 65 72 20 68 61 73 20 74 6f 20 74 65 72 6d 69 6e 61 74 65 20 69 74 73 20 66 69 72 73 74 | .user.has.to.terminate.its.first |
| 10e9a0 | 20 73 65 73 73 69 6f 6e 20 61 6e 64 20 63 61 6e 20 74 68 65 6e 20 61 75 74 68 65 6e 74 69 63 61 | .session.and.can.then.authentica |
| 10e9c0 | 74 69 6f 6e 20 61 67 61 69 6e 2e 00 50 65 72 20 64 65 66 61 75 6c 74 2c 20 69 6e 74 65 72 66 61 | tion.again..Per.default,.interfa |
| 10e9e0 | 63 65 73 20 75 73 65 64 20 69 6e 20 61 20 6c 6f 61 64 20 62 61 6c 61 6e 63 69 6e 67 20 70 6f 6f | ces.used.in.a.load.balancing.poo |
| 10ea00 | 6c 20 72 65 70 6c 61 63 65 20 74 68 65 20 73 6f 75 72 63 65 20 49 50 20 6f 66 20 65 61 63 68 20 | l.replace.the.source.IP.of.each. |
| 10ea20 | 6f 75 74 67 6f 69 6e 67 20 70 61 63 6b 65 74 20 77 69 74 68 20 69 74 73 20 6f 77 6e 20 61 64 64 | outgoing.packet.with.its.own.add |
| 10ea40 | 72 65 73 73 20 74 6f 20 65 6e 73 75 72 65 20 74 68 61 74 20 72 65 70 6c 69 65 73 20 61 72 72 69 | ress.to.ensure.that.replies.arri |
| 10ea60 | 76 65 20 6f 6e 20 74 68 65 20 73 61 6d 65 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 69 73 20 77 | ve.on.the.same.interface..This.w |
| 10ea80 | 6f 72 6b 73 20 74 68 72 6f 75 67 68 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 67 65 6e 65 72 | orks.through.automatically.gener |
| 10eaa0 | 61 74 65 64 20 73 6f 75 72 63 65 20 4e 41 54 20 28 53 4e 41 54 29 20 72 75 6c 65 73 2c 20 74 68 | ated.source.NAT.(SNAT).rules,.th |
| 10eac0 | 65 73 65 20 72 75 6c 65 73 20 61 72 65 20 6f 6e 6c 79 20 61 70 70 6c 69 65 64 20 74 6f 20 62 61 | ese.rules.are.only.applied.to.ba |
| 10eae0 | 6c 61 6e 63 65 64 20 74 72 61 66 66 69 63 2e 20 49 6e 20 63 61 73 65 73 20 77 68 65 72 65 20 74 | lanced.traffic..In.cases.where.t |
| 10eb00 | 68 69 73 20 62 65 68 61 76 69 6f 75 72 20 69 73 20 6e 6f 74 20 64 65 73 69 72 65 64 2c 20 74 68 | his.behaviour.is.not.desired,.th |
| 10eb20 | 65 20 61 75 74 6f 6d 61 74 69 63 20 67 65 6e 65 72 61 74 69 6f 6e 20 6f 66 20 53 4e 41 54 20 72 | e.automatic.generation.of.SNAT.r |
| 10eb40 | 75 6c 65 73 20 63 61 6e 20 62 65 20 64 69 73 61 62 6c 65 64 3a 00 50 65 72 66 6f 72 6d 20 4e 41 | ules.can.be.disabled:.Perform.NA |
| 10eb60 | 54 20 6c 6f 6f 6b 75 70 20 62 65 66 6f 72 65 20 61 70 70 6c 79 69 6e 67 20 66 6c 6f 77 2d 69 73 | T.lookup.before.applying.flow-is |
| 10eb80 | 6f 6c 61 74 69 6f 6e 20 72 75 6c 65 73 2e 00 50 65 72 66 6f 72 6d 61 6e 63 65 00 50 65 72 69 6f | olation.rules..Performance.Perio |
| 10eba0 | 64 69 63 61 6c 6c 79 2c 20 61 20 68 65 6c 6c 6f 20 70 61 63 6b 65 74 20 69 73 20 73 65 6e 74 20 | dically,.a.hello.packet.is.sent. |
| 10ebc0 | 6f 75 74 20 62 79 20 74 68 65 20 52 6f 6f 74 20 42 72 69 64 67 65 20 61 6e 64 20 74 68 65 20 44 | out.by.the.Root.Bridge.and.the.D |
| 10ebe0 | 65 73 69 67 6e 61 74 65 64 20 42 72 69 64 67 65 73 2e 20 48 65 6c 6c 6f 20 70 61 63 6b 65 74 73 | esignated.Bridges..Hello.packets |
| 10ec00 | 20 61 72 65 20 75 73 65 64 20 74 6f 20 63 6f 6d 6d 75 6e 69 63 61 74 65 20 69 6e 66 6f 72 6d 61 | .are.used.to.communicate.informa |
| 10ec20 | 74 69 6f 6e 20 61 62 6f 75 74 20 74 68 65 20 74 6f 70 6f 6c 6f 67 79 20 74 68 72 6f 75 67 68 6f | tion.about.the.topology.througho |
| 10ec40 | 75 74 20 74 68 65 20 65 6e 74 69 72 65 20 42 72 69 64 67 65 64 20 4c 6f 63 61 6c 20 41 72 65 61 | ut.the.entire.Bridged.Local.Area |
| 10ec60 | 20 4e 65 74 77 6f 72 6b 2e 00 50 69 6e 67 20 63 6f 6d 6d 61 6e 64 20 63 61 6e 20 62 65 20 69 6e | .Network..Ping.command.can.be.in |
| 10ec80 | 74 65 72 72 75 70 74 65 64 20 61 74 20 61 6e 79 20 67 69 76 65 6e 20 74 69 6d 65 20 75 73 69 6e | terrupted.at.any.given.time.usin |
| 10eca0 | 67 20 60 60 3c 43 74 72 6c 3e 2b 63 60 60 2e 20 41 20 62 72 69 65 66 20 73 74 61 74 69 73 74 69 | g.``<Ctrl>+c``..A.brief.statisti |
| 10ecc0 | 63 20 69 73 20 73 68 6f 77 6e 20 61 66 74 65 72 77 61 72 64 73 2e 00 50 69 6e 67 20 75 73 65 73 | c.is.shown.afterwards..Ping.uses |
| 10ece0 | 20 49 43 4d 50 20 70 72 6f 74 6f 63 6f 6c 27 73 20 6d 61 6e 64 61 74 6f 72 79 20 45 43 48 4f 5f | .ICMP.protocol's.mandatory.ECHO_ |
| 10ed00 | 52 45 51 55 45 53 54 20 64 61 74 61 67 72 61 6d 20 74 6f 20 65 6c 69 63 69 74 20 61 6e 20 49 43 | REQUEST.datagram.to.elicit.an.IC |
| 10ed20 | 4d 50 20 45 43 48 4f 5f 52 45 53 50 4f 4e 53 45 20 66 72 6f 6d 20 61 20 68 6f 73 74 20 6f 72 20 | MP.ECHO_RESPONSE.from.a.host.or. |
| 10ed40 | 67 61 74 65 77 61 79 2e 20 45 43 48 4f 5f 52 45 51 55 45 53 54 20 64 61 74 61 67 72 61 6d 73 20 | gateway..ECHO_REQUEST.datagrams. |
| 10ed60 | 28 70 69 6e 67 73 29 20 77 69 6c 6c 20 68 61 76 65 20 61 6e 20 49 50 20 61 6e 64 20 49 43 4d 50 | (pings).will.have.an.IP.and.ICMP |
| 10ed80 | 20 68 65 61 64 65 72 2c 20 66 6f 6c 6c 6f 77 65 64 20 62 79 20 22 73 74 72 75 63 74 20 74 69 6d | .header,.followed.by."struct.tim |
| 10eda0 | 65 76 61 6c 22 20 61 6e 64 20 61 6e 20 61 72 62 69 74 72 61 72 79 20 6e 75 6d 62 65 72 20 6f 66 | eval".and.an.arbitrary.number.of |
| 10edc0 | 20 70 61 64 20 62 79 74 65 73 20 75 73 65 64 20 74 6f 20 66 69 6c 6c 20 6f 75 74 20 74 68 65 20 | .pad.bytes.used.to.fill.out.the. |
| 10ede0 | 70 61 63 6b 65 74 2e 00 50 69 6e 67 69 6e 67 20 28 49 50 76 36 29 20 74 68 65 20 6f 74 68 65 72 | packet..Pinging.(IPv6).the.other |
| 10ee00 | 20 68 6f 73 74 20 61 6e 64 20 69 6e 74 65 72 63 65 70 74 69 6e 67 20 74 68 65 20 74 72 61 66 66 | .host.and.intercepting.the.traff |
| 10ee20 | 69 63 20 69 6e 20 60 60 65 74 68 31 60 60 20 77 69 6c 6c 20 73 68 6f 77 20 79 6f 75 20 74 68 65 | ic.in.``eth1``.will.show.you.the |
| 10ee40 | 20 63 6f 6e 74 65 6e 74 20 69 73 20 65 6e 63 72 79 70 74 65 64 2e 00 50 6c 61 63 65 20 69 6e 74 | .content.is.encrypted..Place.int |
| 10ee60 | 65 72 66 61 63 65 20 69 6e 20 67 69 76 65 6e 20 56 52 46 20 69 6e 73 74 61 6e 63 65 2e 00 50 6c | erface.in.given.VRF.instance..Pl |
| 10ee80 | 61 79 20 61 6e 20 61 75 64 69 62 6c 65 20 62 65 65 70 20 74 6f 20 74 68 65 20 73 79 73 74 65 6d | ay.an.audible.beep.to.the.system |
| 10eea0 | 20 73 70 65 61 6b 65 72 20 77 68 65 6e 20 73 79 73 74 65 6d 20 69 73 20 72 65 61 64 79 2e 00 50 | .speaker.when.system.is.ready..P |
| 10eec0 | 6c 65 61 73 65 20 62 65 20 61 77 61 72 65 2c 20 64 75 65 20 74 6f 20 61 6e 20 75 70 73 74 72 65 | lease.be.aware,.due.to.an.upstre |
| 10eee0 | 61 6d 20 62 75 67 2c 20 63 6f 6e 66 69 67 20 63 68 61 6e 67 65 73 2f 63 6f 6d 6d 69 74 73 20 77 | am.bug,.config.changes/commits.w |
| 10ef00 | 69 6c 6c 20 72 65 73 74 61 72 74 20 74 68 65 20 70 70 70 20 64 61 65 6d 6f 6e 20 61 6e 64 20 77 | ill.restart.the.ppp.daemon.and.w |
| 10ef20 | 69 6c 6c 20 72 65 73 65 74 20 65 78 69 73 74 69 6e 67 20 49 50 6f 45 20 73 65 73 73 69 6f 6e 73 | ill.reset.existing.IPoE.sessions |
| 10ef40 | 2c 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 62 65 63 6f 6d 65 20 65 66 66 65 63 74 69 76 65 2e 00 | ,.in.order.to.become.effective.. |
| 10ef60 | 50 6c 65 61 73 65 20 62 65 20 61 77 61 72 65 2c 20 64 75 65 20 74 6f 20 61 6e 20 75 70 73 74 72 | Please.be.aware,.due.to.an.upstr |
| 10ef80 | 65 61 6d 20 62 75 67 2c 20 63 6f 6e 66 69 67 20 63 68 61 6e 67 65 73 2f 63 6f 6d 6d 69 74 73 20 | eam.bug,.config.changes/commits. |
| 10efa0 | 77 69 6c 6c 20 72 65 73 74 61 72 74 20 74 68 65 20 70 70 70 20 64 61 65 6d 6f 6e 20 61 6e 64 20 | will.restart.the.ppp.daemon.and. |
| 10efc0 | 77 69 6c 6c 20 72 65 73 65 74 20 65 78 69 73 74 69 6e 67 20 50 50 50 6f 45 20 63 6f 6e 6e 65 63 | will.reset.existing.PPPoE.connec |
| 10efe0 | 74 69 6f 6e 73 20 66 72 6f 6d 20 63 6f 6e 6e 65 63 74 65 64 20 75 73 65 72 73 2c 20 69 6e 20 6f | tions.from.connected.users,.in.o |
| 10f000 | 72 64 65 72 20 74 6f 20 62 65 63 6f 6d 65 20 65 66 66 65 63 74 69 76 65 2e 00 50 6c 65 61 73 65 | rder.to.become.effective..Please |
| 10f020 | 20 72 65 66 65 72 20 74 6f 20 74 68 65 20 3a 72 65 66 3a 60 69 70 73 65 63 60 20 64 6f 63 75 6d | .refer.to.the.:ref:`ipsec`.docum |
| 10f040 | 65 6e 74 61 74 69 6f 6e 20 66 6f 72 20 74 68 65 20 69 6e 64 69 76 69 64 75 61 6c 20 49 50 53 65 | entation.for.the.individual.IPSe |
| 10f060 | 63 20 72 65 6c 61 74 65 64 20 6f 70 74 69 6f 6e 73 2e 00 50 6c 65 61 73 65 20 72 65 66 65 72 20 | c.related.options..Please.refer. |
| 10f080 | 74 6f 20 74 68 65 20 3a 72 65 66 3a 60 74 75 6e 6e 65 6c 2d 69 6e 74 65 72 66 61 63 65 60 20 64 | to.the.:ref:`tunnel-interface`.d |
| 10f0a0 | 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 66 6f 72 20 74 68 65 20 69 6e 64 69 76 69 64 75 61 6c 20 | ocumentation.for.the.individual. |
| 10f0c0 | 74 75 6e 6e 65 6c 20 72 65 6c 61 74 65 64 20 6f 70 74 69 6f 6e 73 2e 00 50 6c 65 61 73 65 20 73 | tunnel.related.options..Please.s |
| 10f0e0 | 65 65 20 74 68 65 20 3a 72 65 66 3a 60 64 68 63 70 2d 64 6e 73 2d 71 75 69 63 6b 2d 73 74 61 72 | ee.the.:ref:`dhcp-dns-quick-star |
| 10f100 | 74 60 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 50 6c 65 61 73 65 20 74 61 6b 65 20 61 20 | t`.configuration..Please.take.a. |
| 10f120 | 6c 6f 6f 6b 20 61 74 20 74 68 65 20 3a 72 65 66 3a 60 76 79 6f 73 61 70 69 60 20 70 61 67 65 20 | look.at.the.:ref:`vyosapi`.page. |
| 10f140 | 66 6f 72 20 61 6e 20 64 65 74 61 69 6c 65 64 20 68 6f 77 2d 74 6f 2e 00 50 6c 65 61 73 65 20 74 | for.an.detailed.how-to..Please.t |
| 10f160 | 61 6b 65 20 61 20 6c 6f 6f 6b 20 61 74 20 74 68 65 20 43 6f 6e 74 72 69 62 75 74 69 6e 67 20 47 | ake.a.look.at.the.Contributing.G |
| 10f180 | 75 69 64 65 20 66 6f 72 20 6f 75 72 20 3a 72 65 66 3a 60 64 6f 63 75 6d 65 6e 74 61 74 69 6f 6e | uide.for.our.:ref:`documentation |
| 10f1a0 | 60 2e 00 50 6c 65 61 73 65 20 74 61 6b 65 20 61 20 6c 6f 6f 6b 20 69 6e 20 74 68 65 20 41 75 74 | `..Please.take.a.look.in.the.Aut |
| 10f1c0 | 6f 6d 61 74 69 6f 6e 20 73 65 63 74 69 6f 6e 20 74 6f 20 66 69 6e 64 20 73 6f 6d 65 20 75 73 65 | omation.section.to.find.some.use |
| 10f1e0 | 66 75 6c 6c 20 45 78 61 6d 70 6c 65 73 2e 00 50 6c 65 61 73 65 2c 20 72 65 66 65 72 20 74 6f 20 | full.Examples..Please,.refer.to. |
| 10f200 | 61 70 70 72 6f 70 69 61 74 65 20 73 65 63 74 69 6f 6e 20 66 6f 72 20 6d 6f 72 65 20 69 6e 66 6f | appropiate.section.for.more.info |
| 10f220 | 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 | rmation.about.firewall.configura |
| 10f240 | 74 69 6f 6e 3a 00 50 6c 65 61 73 65 2c 20 72 65 66 65 72 20 74 6f 20 61 70 70 72 6f 70 72 69 61 | tion:.Please,.refer.to.appropria |
| 10f260 | 74 65 20 73 65 63 74 69 6f 6e 20 66 6f 72 20 6d 6f 72 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 | te.section.for.more.information. |
| 10f280 | 61 62 6f 75 74 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 00 50 6f | about.firewall.configuration:.Po |
| 10f2a0 | 6c 69 63 69 65 73 20 61 72 65 20 75 73 65 64 20 66 6f 72 20 66 69 6c 74 65 72 69 6e 67 20 61 6e | licies.are.used.for.filtering.an |
| 10f2c0 | 64 20 74 72 61 66 66 69 63 20 6d 61 6e 61 67 65 6d 65 6e 74 2e 20 57 69 74 68 20 70 6f 6c 69 63 | d.traffic.management..With.polic |
| 10f2e0 | 69 65 73 2c 20 6e 65 74 77 6f 72 6b 20 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 73 20 63 6f 75 6c | ies,.network.administrators.coul |
| 10f300 | 64 20 66 69 6c 74 65 72 20 61 6e 64 20 74 72 65 61 74 20 74 72 61 66 66 69 63 20 61 63 63 6f 72 | d.filter.and.treat.traffic.accor |
| 10f320 | 64 69 6e 67 20 74 6f 20 74 68 65 69 72 20 6e 65 65 64 73 2e 00 50 6f 6c 69 63 69 65 73 20 66 6f | ding.to.their.needs..Policies.fo |
| 10f340 | 72 20 6c 6f 63 61 6c 20 74 72 61 66 66 69 63 20 61 72 65 20 64 65 66 69 6e 65 64 20 69 6e 20 74 | r.local.traffic.are.defined.in.t |
| 10f360 | 68 69 73 20 73 65 63 74 69 6f 6e 2e 00 50 6f 6c 69 63 69 65 73 2c 20 69 6e 20 56 79 4f 53 2c 20 | his.section..Policies,.in.VyOS,. |
| 10f380 | 61 72 65 20 69 6d 70 6c 65 6d 65 6e 74 65 64 20 75 73 69 6e 67 20 46 52 52 20 66 69 6c 74 65 72 | are.implemented.using.FRR.filter |
| 10f3a0 | 69 6e 67 20 61 6e 64 20 72 6f 75 74 65 20 6d 61 70 73 2e 20 44 65 74 61 69 6c 65 64 20 69 6e 66 | ing.and.route.maps..Detailed.inf |
| 10f3c0 | 6f 72 6d 61 74 69 6f 6e 20 6f 66 20 46 52 52 20 63 6f 75 6c 64 20 62 65 20 66 6f 75 6e 64 20 69 | ormation.of.FRR.could.be.found.i |
| 10f3e0 | 6e 20 68 74 74 70 3a 2f 2f 64 6f 63 73 2e 66 72 72 6f 75 74 69 6e 67 2e 6f 72 67 2f 00 50 6f 6c | n.http://docs.frrouting.org/.Pol |
| 10f400 | 69 63 79 00 50 6f 6c 69 63 79 20 53 65 63 74 69 6f 6e 73 00 50 6f 6c 69 63 79 20 66 6f 72 20 63 | icy.Policy.Sections.Policy.for.c |
| 10f420 | 68 65 63 6b 69 6e 67 20 74 61 72 67 65 74 73 00 50 6f 6c 69 63 79 20 74 6f 20 74 72 61 63 6b 20 | hecking.targets.Policy.to.track. |
| 10f440 | 70 72 65 76 69 6f 75 73 6c 79 20 65 73 74 61 62 6c 69 73 68 65 64 20 63 6f 6e 6e 65 63 74 69 6f | previously.established.connectio |
| 10f460 | 6e 73 2e 00 50 6f 6c 69 63 79 2d 42 61 73 65 64 20 52 6f 75 74 69 6e 67 20 77 69 74 68 20 6d 75 | ns..Policy-Based.Routing.with.mu |
| 10f480 | 6c 74 69 70 6c 65 20 49 53 50 20 75 70 6c 69 6e 6b 73 20 28 73 6f 75 72 63 65 20 2e 2f 64 72 61 | ltiple.ISP.uplinks.(source../dra |
| 10f4a0 | 77 2e 69 6f 2f 70 62 72 5f 65 78 61 6d 70 6c 65 5f 31 2e 64 72 61 77 69 6f 29 00 50 6f 72 74 20 | w.io/pbr_example_1.drawio).Port. |
| 10f4c0 | 47 72 6f 75 70 73 00 50 6f 72 74 20 4d 69 72 72 6f 72 20 28 53 50 41 4e 29 00 50 6f 72 74 20 63 | Groups.Port.Mirror.(SPAN).Port.c |
| 10f4e0 | 61 6c 63 75 6c 61 74 69 6f 6e 00 50 6f 72 74 20 66 6f 72 20 44 79 6e 61 6d 69 63 20 41 75 74 68 | alculation.Port.for.Dynamic.Auth |
| 10f500 | 6f 72 69 7a 61 74 69 6f 6e 20 45 78 74 65 6e 73 69 6f 6e 20 73 65 72 76 65 72 20 28 44 4d 2f 43 | orization.Extension.server.(DM/C |
| 10f520 | 6f 41 29 00 50 6f 72 74 20 67 72 6f 75 70 73 20 61 72 65 20 75 73 65 66 75 6c 20 77 68 65 6e 20 | oA).Port.groups.are.useful.when. |
| 10f540 | 79 6f 75 20 6e 65 65 64 20 74 6f 20 63 72 65 61 74 65 20 72 75 6c 65 73 20 74 68 61 74 20 61 70 | you.need.to.create.rules.that.ap |
| 10f560 | 70 6c 79 20 74 6f 20 73 70 65 63 69 66 69 63 20 70 6f 72 74 73 2e 20 46 6f 72 20 65 78 61 6d 70 | ply.to.specific.ports..For.examp |
| 10f580 | 6c 65 2c 20 69 66 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 63 72 65 61 74 65 20 61 20 72 75 6c 65 | le,.if.you.want.to.create.a.rule |
| 10f5a0 | 20 74 68 61 74 20 6d 6f 6e 69 74 6f 72 73 20 74 72 61 66 66 69 63 20 64 69 72 65 63 74 65 64 20 | .that.monitors.traffic.directed. |
| 10f5c0 | 74 6f 20 61 20 73 70 65 63 69 66 69 63 20 70 6f 72 74 20 6f 72 20 67 72 6f 75 70 20 6f 66 20 70 | to.a.specific.port.or.group.of.p |
| 10f5e0 | 6f 72 74 73 2c 20 79 6f 75 20 63 61 6e 20 75 73 65 20 74 68 65 20 67 72 6f 75 70 20 6e 61 6d 65 | orts,.you.can.use.the.group.name |
| 10f600 | 20 69 6e 73 74 65 61 64 20 6f 66 20 74 68 65 20 61 63 74 75 61 6c 20 70 6f 72 74 2e 20 54 68 69 | .instead.of.the.actual.port..Thi |
| 10f620 | 73 20 61 6c 73 6f 20 73 69 6d 70 6c 69 66 69 65 73 20 72 75 6c 65 20 6d 61 6e 61 67 65 6d 65 6e | s.also.simplifies.rule.managemen |
| 10f640 | 74 20 61 6e 64 20 6d 61 6b 65 73 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d 6f | t.and.makes.the.configuration.mo |
| 10f660 | 72 65 20 66 6c 65 78 69 62 6c 65 2e 00 50 6f 72 74 20 6b 6e 6f 63 6b 69 6e 67 20 65 78 61 6d 70 | re.flexible..Port.knocking.examp |
| 10f680 | 6c 65 00 50 6f 72 74 20 6e 61 6d 65 20 61 6e 64 20 64 65 73 63 72 69 70 74 69 6f 6e 00 50 6f 72 | le.Port.name.and.description.Por |
| 10f6a0 | 74 20 6e 75 6d 62 65 72 20 75 73 65 64 20 62 79 20 63 6f 6e 6e 65 63 74 69 6f 6e 2c 20 64 65 66 | t.number.used.by.connection,.def |
| 10f6c0 | 61 75 6c 74 20 69 73 20 60 60 39 32 37 33 60 60 00 50 6f 72 74 20 6e 75 6d 62 65 72 20 75 73 65 | ault.is.``9273``.Port.number.use |
| 10f6e0 | 64 20 62 79 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 50 6f 72 74 20 74 6f 20 6c 69 73 74 65 6e 20 | d.by.connection..Port.to.listen. |
| 10f700 | 66 6f 72 20 48 54 54 50 53 20 72 65 71 75 65 73 74 73 3b 20 64 65 66 61 75 6c 74 20 34 34 33 00 | for.HTTPS.requests;.default.443. |
| 10f720 | 50 6f 72 74 69 6f 6e 73 20 6f 66 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 77 68 69 63 68 20 61 72 | Portions.of.the.network.which.ar |
| 10f740 | 65 20 56 4c 41 4e 2d 61 77 61 72 65 20 28 69 2e 65 2e 2c 20 49 45 45 45 20 38 30 32 2e 31 71 5f | e.VLAN-aware.(i.e.,.IEEE.802.1q_ |
| 10f760 | 20 63 6f 6e 66 6f 72 6d 61 6e 74 29 20 63 61 6e 20 69 6e 63 6c 75 64 65 20 56 4c 41 4e 20 74 61 | .conformant).can.include.VLAN.ta |
| 10f780 | 67 73 2e 20 57 68 65 6e 20 61 20 66 72 61 6d 65 20 65 6e 74 65 72 73 20 74 68 65 20 56 4c 41 4e | gs..When.a.frame.enters.the.VLAN |
| 10f7a0 | 2d 61 77 61 72 65 20 70 6f 72 74 69 6f 6e 20 6f 66 20 74 68 65 20 6e 65 74 77 6f 72 6b 2c 20 61 | -aware.portion.of.the.network,.a |
| 10f7c0 | 20 74 61 67 20 69 73 20 61 64 64 65 64 20 74 6f 20 72 65 70 72 65 73 65 6e 74 20 74 68 65 20 56 | .tag.is.added.to.represent.the.V |
| 10f7e0 | 4c 41 4e 20 6d 65 6d 62 65 72 73 68 69 70 2e 20 45 61 63 68 20 66 72 61 6d 65 20 6d 75 73 74 20 | LAN.membership..Each.frame.must. |
| 10f800 | 62 65 20 64 69 73 74 69 6e 67 75 69 73 68 61 62 6c 65 20 61 73 20 62 65 69 6e 67 20 77 69 74 68 | be.distinguishable.as.being.with |
| 10f820 | 69 6e 20 65 78 61 63 74 6c 79 20 6f 6e 65 20 56 4c 41 4e 2e 20 41 20 66 72 61 6d 65 20 69 6e 20 | in.exactly.one.VLAN..A.frame.in. |
| 10f840 | 74 68 65 20 56 4c 41 4e 2d 61 77 61 72 65 20 70 6f 72 74 69 6f 6e 20 6f 66 20 74 68 65 20 6e 65 | the.VLAN-aware.portion.of.the.ne |
| 10f860 | 74 77 6f 72 6b 20 74 68 61 74 20 64 6f 65 73 20 6e 6f 74 20 63 6f 6e 74 61 69 6e 20 61 20 56 4c | twork.that.does.not.contain.a.VL |
| 10f880 | 41 4e 20 74 61 67 20 69 73 20 61 73 73 75 6d 65 64 20 74 6f 20 62 65 20 66 6c 6f 77 69 6e 67 20 | AN.tag.is.assumed.to.be.flowing. |
| 10f8a0 | 6f 6e 20 74 68 65 20 6e 61 74 69 76 65 20 56 4c 41 4e 2e 00 50 72 65 2d 73 68 61 72 65 64 20 6b | on.the.native.VLAN..Pre-shared.k |
| 10f8c0 | 65 79 73 00 50 72 65 63 65 64 65 6e 63 65 00 50 72 65 65 6d 70 74 69 6f 6e 00 50 72 65 66 65 72 | eys.Precedence.Preemption.Prefer |
| 10f8e0 | 20 61 20 73 70 65 63 69 66 69 63 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 20 72 6f 75 | .a.specific.routing.protocol.rou |
| 10f900 | 74 65 73 20 6f 76 65 72 20 61 6e 6f 74 68 65 72 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f | tes.over.another.routing.protoco |
| 10f920 | 6c 20 72 75 6e 6e 69 6e 67 20 6f 6e 20 74 68 65 20 73 61 6d 65 20 72 6f 75 74 65 72 2e 00 50 72 | l.running.on.the.same.router..Pr |
| 10f940 | 65 66 65 72 20 68 69 67 68 65 72 20 6c 6f 63 61 6c 20 70 72 65 66 65 72 65 6e 63 65 20 72 6f 75 | efer.higher.local.preference.rou |
| 10f960 | 74 65 73 20 74 6f 20 6c 6f 77 65 72 2e 00 50 72 65 66 65 72 20 68 69 67 68 65 72 20 6c 6f 63 61 | tes.to.lower..Prefer.higher.loca |
| 10f980 | 6c 20 77 65 69 67 68 74 20 72 6f 75 74 65 73 20 74 6f 20 6c 6f 77 65 72 20 72 6f 75 74 65 73 2e | l.weight.routes.to.lower.routes. |
| 10f9a0 | 00 50 72 65 66 65 72 20 6c 6f 63 61 6c 20 72 6f 75 74 65 73 20 28 73 74 61 74 69 63 73 2c 20 61 | .Prefer.local.routes.(statics,.a |
| 10f9c0 | 67 67 72 65 67 61 74 65 73 2c 20 72 65 64 69 73 74 72 69 62 75 74 65 64 29 20 74 6f 20 72 65 63 | ggregates,.redistributed).to.rec |
| 10f9e0 | 65 69 76 65 64 20 72 6f 75 74 65 73 2e 00 50 72 65 66 65 72 20 73 68 6f 72 74 65 73 74 20 68 6f | eived.routes..Prefer.shortest.ho |
| 10fa00 | 70 2d 63 6f 75 6e 74 20 41 53 5f 50 41 54 48 73 2e 00 50 72 65 66 65 72 20 74 68 65 20 6c 6f 77 | p-count.AS_PATHs..Prefer.the.low |
| 10fa20 | 65 73 74 20 6f 72 69 67 69 6e 20 74 79 70 65 20 72 6f 75 74 65 2e 20 54 68 61 74 20 69 73 2c 20 | est.origin.type.route..That.is,. |
| 10fa40 | 70 72 65 66 65 72 20 49 47 50 20 6f 72 69 67 69 6e 20 72 6f 75 74 65 73 20 74 6f 20 45 47 50 2c | prefer.IGP.origin.routes.to.EGP, |
| 10fa60 | 20 74 6f 20 49 6e 63 6f 6d 70 6c 65 74 65 20 72 6f 75 74 65 73 2e 00 50 72 65 66 65 72 20 74 68 | .to.Incomplete.routes..Prefer.th |
| 10fa80 | 65 20 72 6f 75 74 65 20 72 65 63 65 69 76 65 64 20 66 72 6f 6d 20 61 6e 20 65 78 74 65 72 6e 61 | e.route.received.from.an.externa |
| 10faa0 | 6c 2c 20 65 42 47 50 20 70 65 65 72 20 6f 76 65 72 20 72 6f 75 74 65 73 20 72 65 63 65 69 76 65 | l,.eBGP.peer.over.routes.receive |
| 10fac0 | 64 20 66 72 6f 6d 20 6f 74 68 65 72 20 74 79 70 65 73 20 6f 66 20 70 65 65 72 73 2e 00 50 72 65 | d.from.other.types.of.peers..Pre |
| 10fae0 | 66 65 72 20 74 68 65 20 72 6f 75 74 65 20 72 65 63 65 69 76 65 64 20 66 72 6f 6d 20 74 68 65 20 | fer.the.route.received.from.the. |
| 10fb00 | 70 65 65 72 20 77 69 74 68 20 74 68 65 20 68 69 67 68 65 72 20 74 72 61 6e 73 70 6f 72 74 20 6c | peer.with.the.higher.transport.l |
| 10fb20 | 61 79 65 72 20 61 64 64 72 65 73 73 2c 20 61 73 20 61 20 6c 61 73 74 2d 72 65 73 6f 72 74 20 74 | ayer.address,.as.a.last-resort.t |
| 10fb40 | 69 65 2d 62 72 65 61 6b 65 72 2e 00 50 72 65 66 65 72 20 74 68 65 20 72 6f 75 74 65 20 77 69 74 | ie-breaker..Prefer.the.route.wit |
| 10fb60 | 68 20 74 68 65 20 6c 6f 77 65 72 20 49 47 50 20 63 6f 73 74 2e 00 50 72 65 66 65 72 20 74 68 65 | h.the.lower.IGP.cost..Prefer.the |
| 10fb80 | 20 72 6f 75 74 65 20 77 69 74 68 20 74 68 65 20 6c 6f 77 65 73 74 20 60 72 6f 75 74 65 72 2d 49 | .route.with.the.lowest.`router-I |
| 10fba0 | 44 60 2e 20 49 66 20 74 68 65 20 72 6f 75 74 65 20 68 61 73 20 61 6e 20 60 4f 52 49 47 49 4e 41 | D`..If.the.route.has.an.`ORIGINA |
| 10fbc0 | 54 4f 52 5f 49 44 60 20 61 74 74 72 69 62 75 74 65 2c 20 74 68 72 6f 75 67 68 20 69 42 47 50 20 | TOR_ID`.attribute,.through.iBGP. |
| 10fbe0 | 72 65 66 6c 65 63 74 69 6f 6e 2c 20 74 68 65 6e 20 74 68 61 74 20 72 6f 75 74 65 72 20 49 44 20 | reflection,.then.that.router.ID. |
| 10fc00 | 69 73 20 75 73 65 64 2c 20 6f 74 68 65 72 77 69 73 65 20 74 68 65 20 60 72 6f 75 74 65 72 2d 49 | is.used,.otherwise.the.`router-I |
| 10fc20 | 44 60 20 6f 66 20 74 68 65 20 70 65 65 72 20 74 68 65 20 72 6f 75 74 65 20 77 61 73 20 72 65 63 | D`.of.the.peer.the.route.was.rec |
| 10fc40 | 65 69 76 65 64 20 66 72 6f 6d 20 69 73 20 75 73 65 64 2e 00 50 72 65 66 65 72 65 6e 63 65 20 61 | eived.from.is.used..Preference.a |
| 10fc60 | 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 74 68 65 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 | ssociated.with.the.default.route |
| 10fc80 | 72 00 50 72 65 66 69 78 20 43 6f 6e 76 65 72 73 69 6f 6e 00 50 72 65 66 69 78 20 44 65 6c 65 67 | r.Prefix.Conversion.Prefix.Deleg |
| 10fca0 | 61 74 69 6f 6e 00 50 72 65 66 69 78 20 4c 69 73 74 20 50 6f 6c 69 63 79 00 50 72 65 66 69 78 20 | ation.Prefix.List.Policy.Prefix. |
| 10fcc0 | 4c 69 73 74 73 00 50 72 65 66 69 78 20 63 61 6e 20 6e 6f 74 20 62 65 20 75 73 65 64 20 66 6f 72 | Lists.Prefix.can.not.be.used.for |
| 10fce0 | 20 6f 6e 2d 6c 69 6e 6b 20 64 65 74 65 72 6d 69 6e 61 74 69 6f 6e 00 50 72 65 66 69 78 20 63 61 | .on-link.determination.Prefix.ca |
| 10fd00 | 6e 20 6e 6f 74 20 62 65 20 75 73 65 64 20 66 6f 72 20 73 74 61 74 65 6c 65 73 73 20 61 64 64 72 | n.not.be.used.for.stateless.addr |
| 10fd20 | 65 73 73 20 61 75 74 6f 2d 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 50 72 65 66 69 78 20 66 69 | ess.auto-configuration.Prefix.fi |
| 10fd40 | 6c 74 65 72 69 6e 67 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 75 73 69 6e 67 20 70 72 65 66 69 78 | ltering.can.be.done.using.prefix |
| 10fd60 | 2d 6c 69 73 74 20 61 6e 64 20 70 72 65 66 69 78 2d 6c 69 73 74 36 2e 00 50 72 65 66 69 78 20 6c | -list.and.prefix-list6..Prefix.l |
| 10fd80 | 65 6e 67 74 68 20 69 6e 20 69 6e 74 65 72 66 61 63 65 20 6d 75 73 74 20 62 65 20 65 71 75 61 6c | ength.in.interface.must.be.equal |
| 10fda0 | 20 6f 72 20 62 69 67 67 65 72 20 28 69 2e 65 2e 20 73 6d 61 6c 6c 65 72 20 6e 65 74 77 6f 72 6b | .or.bigger.(i.e..smaller.network |
| 10fdc0 | 29 20 74 68 61 6e 20 70 72 65 66 69 78 20 6c 65 6e 67 74 68 20 69 6e 20 6e 65 74 77 6f 72 6b 20 | ).than.prefix.length.in.network. |
| 10fde0 | 73 74 61 74 65 6d 65 6e 74 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 73 74 61 74 65 6d 65 6e 74 | statement..For.example.statement |
| 10fe00 | 20 61 62 6f 76 65 20 64 6f 65 73 6e 27 74 20 65 6e 61 62 6c 65 20 6f 73 70 66 20 6f 6e 20 69 6e | .above.doesn't.enable.ospf.on.in |
| 10fe20 | 74 65 72 66 61 63 65 20 77 69 74 68 20 61 64 64 72 65 73 73 20 31 39 32 2e 31 36 38 2e 31 2e 31 | terface.with.address.192.168.1.1 |
| 10fe40 | 2f 32 33 2c 20 62 75 74 20 69 74 20 64 6f 65 73 20 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 77 69 | /23,.but.it.does.on.interface.wi |
| 10fe60 | 74 68 20 61 64 64 72 65 73 73 20 31 39 32 2e 31 36 38 2e 31 2e 31 32 39 2f 32 35 2e 00 50 72 65 | th.address.192.168.1.129/25..Pre |
| 10fe80 | 66 69 78 20 6c 69 73 74 73 20 70 72 6f 76 69 64 65 73 20 74 68 65 20 6d 6f 73 74 20 70 6f 77 65 | fix.lists.provides.the.most.powe |
| 10fea0 | 72 66 75 6c 20 70 72 65 66 69 78 20 62 61 73 65 64 20 66 69 6c 74 65 72 69 6e 67 20 6d 65 63 68 | rful.prefix.based.filtering.mech |
| 10fec0 | 61 6e 69 73 6d 2e 20 49 6e 20 61 64 64 69 74 69 6f 6e 20 74 6f 20 61 63 63 65 73 73 2d 6c 69 73 | anism..In.addition.to.access-lis |
| 10fee0 | 74 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 2c 20 69 70 20 70 72 65 66 69 78 2d 6c 69 73 74 20 | t.functionality,.ip.prefix-list. |
| 10ff00 | 68 61 73 20 70 72 65 66 69 78 20 6c 65 6e 67 74 68 20 72 61 6e 67 65 20 73 70 65 63 69 66 69 63 | has.prefix.length.range.specific |
| 10ff20 | 61 74 69 6f 6e 2e 00 50 72 65 66 69 78 20 74 6f 20 6d 61 74 63 68 20 61 67 61 69 6e 73 74 2e 00 | ation..Prefix.to.match.against.. |
| 10ff40 | 50 72 65 66 69 78 65 73 00 50 72 65 70 65 6e 64 20 74 68 65 20 65 78 69 73 74 69 6e 67 20 6c 61 | Prefixes.Prepend.the.existing.la |
| 10ff60 | 73 74 20 41 53 20 6e 75 6d 62 65 72 20 28 74 68 65 20 6c 65 66 74 6d 6f 73 74 20 41 53 4e 29 20 | st.AS.number.(the.leftmost.ASN). |
| 10ff80 | 74 6f 20 74 68 65 20 41 53 5f 50 41 54 48 2e 00 50 72 65 70 65 6e 64 20 74 68 65 20 67 69 76 65 | to.the.AS_PATH..Prepend.the.give |
| 10ffa0 | 6e 20 73 74 72 69 6e 67 20 6f 66 20 41 53 20 6e 75 6d 62 65 72 73 20 74 6f 20 74 68 65 20 41 53 | n.string.of.AS.numbers.to.the.AS |
| 10ffc0 | 5f 50 41 54 48 20 6f 66 20 74 68 65 20 42 47 50 20 70 61 74 68 27 73 20 4e 4c 52 49 2e 00 50 72 | _PATH.of.the.BGP.path's.NLRI..Pr |
| 10ffe0 | 69 6e 63 69 70 6c 65 20 6f 66 20 53 4e 4d 50 20 43 6f 6d 6d 75 6e 69 63 61 74 69 6f 6e 00 50 72 | inciple.of.SNMP.Communication.Pr |
| 110000 | 69 6e 74 20 61 20 73 75 6d 6d 61 72 79 20 6f 66 20 6e 65 69 67 68 62 6f 72 20 63 6f 6e 6e 65 63 | int.a.summary.of.neighbor.connec |
| 110020 | 74 69 6f 6e 73 20 66 6f 72 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 41 46 49 2f 53 41 46 49 | tions.for.the.specified.AFI/SAFI |
| 110040 | 20 63 6f 6d 62 69 6e 61 74 69 6f 6e 2e 00 50 72 69 6e 74 20 61 63 74 69 76 65 20 49 50 56 34 20 | .combination..Print.active.IPV4. |
| 110060 | 6f 72 20 49 50 56 36 20 72 6f 75 74 65 73 20 61 64 76 65 72 74 69 73 65 64 20 76 69 61 20 74 68 | or.IPV6.routes.advertised.via.th |
| 110080 | 65 20 56 50 4e 20 53 41 46 49 2e 00 50 72 69 6e 74 20 6f 75 74 20 74 68 65 20 6c 69 73 74 20 6f | e.VPN.SAFI..Print.out.the.list.o |
| 1100a0 | 66 20 65 78 69 73 74 69 6e 67 20 63 72 79 70 74 6f 20 70 6f 6c 69 63 69 65 73 00 50 72 69 6e 74 | f.existing.crypto.policies.Print |
| 1100c0 | 20 6f 75 74 20 74 68 65 20 6c 69 73 74 20 6f 66 20 65 78 69 73 74 69 6e 67 20 69 6e 2d 6b 65 72 | .out.the.list.of.existing.in-ker |
| 1100e0 | 6e 65 6c 20 63 72 79 70 74 6f 20 73 74 61 74 65 00 50 72 69 6f 72 69 74 79 00 50 72 69 6f 72 69 | nel.crypto.state.Priority.Priori |
| 110100 | 74 79 20 51 75 65 75 65 00 50 72 69 6f 72 69 74 79 20 51 75 65 75 65 2c 20 61 73 20 6f 74 68 65 | ty.Queue.Priority.Queue,.as.othe |
| 110120 | 72 20 6e 6f 6e 2d 73 68 61 70 69 6e 67 20 70 6f 6c 69 63 69 65 73 2c 20 69 73 20 6f 6e 6c 79 20 | r.non-shaping.policies,.is.only. |
| 110140 | 75 73 65 66 75 6c 20 69 66 20 79 6f 75 72 20 6f 75 74 67 6f 69 6e 67 20 69 6e 74 65 72 66 61 63 | useful.if.your.outgoing.interfac |
| 110160 | 65 20 69 73 20 72 65 61 6c 6c 79 20 66 75 6c 6c 2e 20 49 66 20 69 74 20 69 73 20 6e 6f 74 2c 20 | e.is.really.full..If.it.is.not,. |
| 110180 | 56 79 4f 53 20 77 69 6c 6c 20 6e 6f 74 20 6f 77 6e 20 74 68 65 20 71 75 65 75 65 20 61 6e 64 20 | VyOS.will.not.own.the.queue.and. |
| 1101a0 | 50 72 69 6f 72 69 74 79 20 51 75 65 75 65 20 77 69 6c 6c 20 68 61 76 65 20 6e 6f 20 65 66 66 65 | Priority.Queue.will.have.no.effe |
| 1101c0 | 63 74 2e 20 49 66 20 74 68 65 72 65 20 69 73 20 62 61 6e 64 77 69 64 74 68 20 61 76 61 69 6c 61 | ct..If.there.is.bandwidth.availa |
| 1101e0 | 62 6c 65 20 6f 6e 20 74 68 65 20 70 68 79 73 69 63 61 6c 20 6c 69 6e 6b 2c 20 79 6f 75 20 63 61 | ble.on.the.physical.link,.you.ca |
| 110200 | 6e 20 65 6d 62 65 64 5f 20 50 72 69 6f 72 69 74 79 20 51 75 65 75 65 20 69 6e 74 6f 20 61 20 63 | n.embed_.Priority.Queue.into.a.c |
| 110220 | 6c 61 73 73 66 75 6c 20 73 68 61 70 69 6e 67 20 70 6f 6c 69 63 79 20 74 6f 20 6d 61 6b 65 20 73 | lassful.shaping.policy.to.make.s |
| 110240 | 75 72 65 20 69 74 20 6f 77 6e 73 20 74 68 65 20 71 75 65 75 65 2e 20 49 6e 20 74 68 61 74 20 63 | ure.it.owns.the.queue..In.that.c |
| 110260 | 61 73 65 20 70 61 63 6b 65 74 73 20 63 61 6e 20 62 65 20 70 72 69 6f 72 69 74 69 7a 65 64 20 62 | ase.packets.can.be.prioritized.b |
| 110280 | 61 73 65 64 20 6f 6e 20 44 53 43 50 2e 00 50 72 69 76 61 74 65 20 56 4c 41 4e 20 70 72 6f 78 79 | ased.on.DSCP..Private.VLAN.proxy |
| 1102a0 | 20 61 72 70 2e 20 42 61 73 69 63 61 6c 6c 79 20 61 6c 6c 6f 77 20 70 72 6f 78 79 20 61 72 70 20 | .arp..Basically.allow.proxy.arp. |
| 1102c0 | 72 65 70 6c 69 65 73 20 62 61 63 6b 20 74 6f 20 74 68 65 20 73 61 6d 65 20 69 6e 74 65 72 66 61 | replies.back.to.the.same.interfa |
| 1102e0 | 63 65 20 28 66 72 6f 6d 20 77 68 69 63 68 20 74 68 65 20 41 52 50 20 72 65 71 75 65 73 74 2f 73 | ce.(from.which.the.ARP.request/s |
| 110300 | 6f 6c 69 63 69 74 61 74 69 6f 6e 20 77 61 73 20 72 65 63 65 69 76 65 64 29 2e 00 50 72 6f 66 69 | olicitation.was.received)..Profi |
| 110320 | 6c 65 20 67 65 6e 65 72 61 74 69 6f 6e 20 68 61 70 70 65 6e 73 20 66 72 6f 6d 20 74 68 65 20 6f | le.generation.happens.from.the.o |
| 110340 | 70 65 72 61 74 69 6f 6e 61 6c 20 6c 65 76 65 6c 20 61 6e 64 20 69 73 20 61 73 20 73 69 6d 70 6c | perational.level.and.is.as.simpl |
| 110360 | 65 20 61 73 20 69 73 73 75 69 6e 67 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 | e.as.issuing.the.following.comma |
| 110380 | 6e 64 20 74 6f 20 63 72 65 61 74 65 20 61 20 70 72 6f 66 69 6c 65 20 74 6f 20 63 6f 6e 6e 65 63 | nd.to.create.a.profile.to.connec |
| 1103a0 | 74 20 74 6f 20 74 68 65 20 49 4b 45 76 32 20 61 63 63 65 73 73 20 73 65 72 76 65 72 20 61 74 20 | t.to.the.IKEv2.access.server.at. |
| 1103c0 | 60 60 76 70 6e 2e 76 79 6f 73 2e 6e 65 74 60 60 20 77 69 74 68 20 74 68 65 20 63 6f 6e 66 69 67 | ``vpn.vyos.net``.with.the.config |
| 1103e0 | 75 72 61 74 69 6f 6e 20 66 6f 72 20 74 68 65 20 60 60 72 77 60 60 20 72 65 6d 6f 74 65 2d 61 63 | uration.for.the.``rw``.remote-ac |
| 110400 | 63 65 73 73 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 67 72 6f 75 70 2e 00 50 72 6f 6d 65 74 68 65 75 | cess.connection.group..Prometheu |
| 110420 | 73 2d 63 6c 69 65 6e 74 00 50 72 6f 74 65 63 74 73 20 68 6f 73 74 20 66 72 6f 6d 20 62 72 75 74 | s-client.Protects.host.from.brut |
| 110440 | 65 2d 66 6f 72 63 65 20 61 74 74 61 63 6b 73 20 61 67 61 69 6e 73 74 20 53 53 48 2e 20 4c 6f 67 | e-force.attacks.against.SSH..Log |
| 110460 | 20 6d 65 73 73 61 67 65 73 20 61 72 65 20 70 61 72 73 65 64 2c 20 6c 69 6e 65 2d 62 79 2d 6c 69 | .messages.are.parsed,.line-by-li |
| 110480 | 6e 65 2c 20 66 6f 72 20 72 65 63 6f 67 6e 69 7a 65 64 20 70 61 74 74 65 72 6e 73 2e 20 49 66 20 | ne,.for.recognized.patterns..If. |
| 1104a0 | 61 6e 20 61 74 74 61 63 6b 2c 20 73 75 63 68 20 61 73 20 73 65 76 65 72 61 6c 20 6c 6f 67 69 6e | an.attack,.such.as.several.login |
| 1104c0 | 20 66 61 69 6c 75 72 65 73 20 77 69 74 68 69 6e 20 61 20 66 65 77 20 73 65 63 6f 6e 64 73 2c 20 | .failures.within.a.few.seconds,. |
| 1104e0 | 69 73 20 64 65 74 65 63 74 65 64 2c 20 74 68 65 20 6f 66 66 65 6e 64 69 6e 67 20 49 50 20 69 73 | is.detected,.the.offending.IP.is |
| 110500 | 20 62 6c 6f 63 6b 65 64 2e 20 4f 66 66 65 6e 64 65 72 73 20 61 72 65 20 75 6e 62 6c 6f 63 6b 65 | .blocked..Offenders.are.unblocke |
| 110520 | 64 20 61 66 74 65 72 20 61 20 73 65 74 20 69 6e 74 65 72 76 61 6c 2e 00 50 72 6f 74 6f 63 6f 6c | d.after.a.set.interval..Protocol |
| 110540 | 20 66 6f 72 20 77 68 69 63 68 20 65 78 70 65 63 74 20 65 6e 74 72 69 65 73 20 6e 65 65 64 20 74 | .for.which.expect.entries.need.t |
| 110560 | 6f 20 62 65 20 73 79 6e 63 68 72 6f 6e 69 7a 65 64 2e 00 50 72 6f 74 6f 63 6f 6c 73 00 50 72 6f | o.be.synchronized..Protocols.Pro |
| 110580 | 74 6f 63 6f 6c 73 20 61 72 65 3a 20 74 63 70 2c 20 73 63 74 70 2c 20 64 63 63 70 2c 20 75 64 70 | tocols.are:.tcp,.sctp,.dccp,.udp |
| 1105a0 | 2c 20 69 63 6d 70 20 61 6e 64 20 69 70 76 36 2d 69 63 6d 70 2e 00 50 72 6f 76 69 64 65 20 54 46 | ,.icmp.and.ipv6-icmp..Provide.TF |
| 1105c0 | 54 50 20 73 65 72 76 65 72 20 6c 69 73 74 65 6e 69 6e 67 20 6f 6e 20 62 6f 74 68 20 49 50 76 34 | TP.server.listening.on.both.IPv4 |
| 1105e0 | 20 61 6e 64 20 49 50 76 36 20 61 64 64 72 65 73 73 65 73 20 60 60 31 39 32 2e 30 2e 32 2e 31 60 | .and.IPv6.addresses.``192.0.2.1` |
| 110600 | 60 20 61 6e 64 20 60 60 32 30 30 31 3a 64 62 38 3a 3a 31 60 60 20 73 65 72 76 69 6e 67 20 74 68 | `.and.``2001:db8::1``.serving.th |
| 110620 | 65 20 63 6f 6e 74 65 6e 74 20 66 72 6f 6d 20 60 60 2f 63 6f 6e 66 69 67 2f 74 66 74 70 62 6f 6f | e.content.from.``/config/tftpboo |
| 110640 | 74 60 60 2e 20 55 70 6c 6f 61 64 69 6e 67 20 76 69 61 20 54 46 54 50 20 74 6f 20 74 68 69 73 20 | t``..Uploading.via.TFTP.to.this. |
| 110660 | 73 65 72 76 65 72 20 69 73 20 64 69 73 61 62 6c 65 64 2e 00 50 72 6f 76 69 64 65 20 61 20 49 50 | server.is.disabled..Provide.a.IP |
| 110680 | 76 34 20 6f 72 20 49 50 76 36 20 61 64 64 72 65 73 73 20 67 72 6f 75 70 20 64 65 73 63 72 69 70 | v4.or.IPv6.address.group.descrip |
| 1106a0 | 74 69 6f 6e 00 50 72 6f 76 69 64 65 20 61 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 6e 65 74 77 | tion.Provide.a.IPv4.or.IPv6.netw |
| 1106c0 | 6f 72 6b 20 67 72 6f 75 70 20 64 65 73 63 72 69 70 74 69 6f 6e 2e 00 50 72 6f 76 69 64 65 20 61 | ork.group.description..Provide.a |
| 1106e0 | 20 64 65 73 63 72 69 70 74 69 6f 6e 20 66 6f 72 20 65 61 63 68 20 72 75 6c 65 2e 00 50 72 6f 76 | .description.for.each.rule..Prov |
| 110700 | 69 64 65 20 61 20 64 65 73 63 72 69 70 74 69 6f 6e 20 74 6f 20 74 68 65 20 66 6c 6f 77 20 74 61 | ide.a.description.to.the.flow.ta |
| 110720 | 62 6c 65 2e 00 50 72 6f 76 69 64 65 20 61 20 64 6f 6d 61 69 6e 20 67 72 6f 75 70 20 64 65 73 63 | ble..Provide.a.domain.group.desc |
| 110740 | 72 69 70 74 69 6f 6e 2e 00 50 72 6f 76 69 64 65 20 61 20 6d 61 63 20 67 72 6f 75 70 20 64 65 73 | ription..Provide.a.mac.group.des |
| 110760 | 63 72 69 70 74 69 6f 6e 2e 00 50 72 6f 76 69 64 65 20 61 20 70 6f 72 74 20 67 72 6f 75 70 20 64 | cription..Provide.a.port.group.d |
| 110780 | 65 73 63 72 69 70 74 69 6f 6e 2e 00 50 72 6f 76 69 64 65 20 61 20 72 75 6c 65 2d 73 65 74 20 64 | escription..Provide.a.rule-set.d |
| 1107a0 | 65 73 63 72 69 70 74 69 6f 6e 20 74 6f 20 61 20 63 75 73 74 6f 6d 20 66 69 72 65 77 61 6c 6c 20 | escription.to.a.custom.firewall. |
| 1107c0 | 63 68 61 69 6e 2e 00 50 72 6f 76 69 64 65 20 61 20 72 75 6c 65 2d 73 65 74 20 64 65 73 63 72 69 | chain..Provide.a.rule-set.descri |
| 1107e0 | 70 74 69 6f 6e 2e 00 50 72 6f 76 69 64 65 20 61 6e 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 6e | ption..Provide.an.IPv4.or.IPv6.n |
| 110800 | 65 74 77 6f 72 6b 20 67 72 6f 75 70 20 64 65 73 63 72 69 70 74 69 6f 6e 2e 00 50 72 6f 76 69 64 | etwork.group.description..Provid |
| 110820 | 65 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 67 72 6f 75 70 20 64 65 73 63 72 69 70 74 69 6f 6e | e.an.interface.group.description |
| 110840 | 00 50 72 6f 76 69 64 65 72 20 2d 20 43 75 73 74 6f 6d 65 72 00 50 72 6f 76 69 64 65 73 20 61 20 | .Provider.-.Customer.Provides.a. |
| 110860 | 62 61 63 6b 62 6f 6e 65 20 61 72 65 61 20 63 6f 68 65 72 65 6e 63 65 20 62 79 20 76 69 72 74 75 | backbone.area.coherence.by.virtu |
| 110880 | 61 6c 20 6c 69 6e 6b 20 65 73 74 61 62 6c 69 73 68 6d 65 6e 74 2e 00 50 72 6f 76 69 64 65 73 20 | al.link.establishment..Provides. |
| 1108a0 | 61 20 70 65 72 2d 64 65 76 69 63 65 20 63 6f 6e 74 72 6f 6c 20 74 6f 20 65 6e 61 62 6c 65 2f 64 | a.per-device.control.to.enable/d |
| 1108c0 | 69 73 61 62 6c 65 20 74 68 65 20 74 68 72 65 61 64 65 64 20 6d 6f 64 65 20 66 6f 72 20 61 6c 6c | isable.the.threaded.mode.for.all |
| 1108e0 | 20 74 68 65 20 4e 41 50 49 20 69 6e 73 74 61 6e 63 65 73 20 6f 66 20 74 68 65 20 67 69 76 65 6e | .the.NAPI.instances.of.the.given |
| 110900 | 20 6e 65 74 77 6f 72 6b 20 64 65 76 69 63 65 2c 20 77 69 74 68 6f 75 74 20 74 68 65 20 6e 65 65 | .network.device,.without.the.nee |
| 110920 | 64 20 66 6f 72 20 61 20 64 65 76 69 63 65 20 75 70 2f 64 6f 77 6e 2e 00 50 72 6f 78 79 20 61 75 | d.for.a.device.up/down..Proxy.au |
| 110940 | 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6d 65 74 68 6f 64 2c 20 63 75 72 72 65 6e 74 6c 79 20 6f | thentication.method,.currently.o |
| 110960 | 6e 6c 79 20 4c 44 41 50 20 69 73 20 73 75 70 70 6f 72 74 65 64 2e 00 50 73 65 75 64 6f 20 45 74 | nly.LDAP.is.supported..Pseudo.Et |
| 110980 | 68 65 72 6e 65 74 2f 4d 41 43 56 4c 41 4e 20 6f 70 74 69 6f 6e 73 00 50 73 65 75 64 6f 2d 45 74 | hernet/MACVLAN.options.Pseudo-Et |
| 1109a0 | 68 65 72 6e 65 74 20 69 6e 74 65 72 66 61 63 65 73 20 63 61 6e 20 6e 6f 74 20 62 65 20 72 65 61 | hernet.interfaces.can.not.be.rea |
| 1109c0 | 63 68 65 64 20 66 72 6f 6d 20 79 6f 75 72 20 69 6e 74 65 72 6e 61 6c 20 68 6f 73 74 2e 20 54 68 | ched.from.your.internal.host..Th |
| 1109e0 | 69 73 20 6d 65 61 6e 73 20 74 68 61 74 20 79 6f 75 20 63 61 6e 20 6e 6f 74 20 74 72 79 20 74 6f | is.means.that.you.can.not.try.to |
| 110a00 | 20 70 69 6e 67 20 61 20 50 73 65 75 64 6f 2d 45 74 68 65 72 6e 65 74 20 69 6e 74 65 72 66 61 63 | .ping.a.Pseudo-Ethernet.interfac |
| 110a20 | 65 20 66 72 6f 6d 20 74 68 65 20 68 6f 73 74 20 73 79 73 74 65 6d 20 6f 6e 20 77 68 69 63 68 20 | e.from.the.host.system.on.which. |
| 110a40 | 69 74 20 69 73 20 64 65 66 69 6e 65 64 2e 20 54 68 65 20 70 69 6e 67 20 77 69 6c 6c 20 62 65 20 | it.is.defined..The.ping.will.be. |
| 110a60 | 6c 6f 73 74 2e 00 50 73 65 75 64 6f 2d 45 74 68 65 72 6e 65 74 20 69 6e 74 65 72 66 61 63 65 73 | lost..Pseudo-Ethernet.interfaces |
| 110a80 | 20 6d 61 79 20 6e 6f 74 20 77 6f 72 6b 20 69 6e 20 65 6e 76 69 72 6f 6e 6d 65 6e 74 73 20 77 68 | .may.not.work.in.environments.wh |
| 110aa0 | 69 63 68 20 65 78 70 65 63 74 20 61 20 3a 61 62 62 72 3a 60 4e 49 43 20 28 4e 65 74 77 6f 72 6b | ich.expect.a.:abbr:`NIC.(Network |
| 110ac0 | 20 49 6e 74 65 72 66 61 63 65 20 43 61 72 64 29 60 20 74 6f 20 6f 6e 6c 79 20 68 61 76 65 20 61 | .Interface.Card)`.to.only.have.a |
| 110ae0 | 20 73 69 6e 67 6c 65 20 61 64 64 72 65 73 73 2e 20 54 68 69 73 20 61 70 70 6c 69 65 73 20 74 6f | .single.address..This.applies.to |
| 110b00 | 3a 20 2d 20 56 4d 77 61 72 65 20 6d 61 63 68 69 6e 65 73 20 75 73 69 6e 67 20 64 65 66 61 75 6c | :.-.VMware.machines.using.defaul |
| 110b20 | 74 20 73 65 74 74 69 6e 67 73 20 2d 20 4e 65 74 77 6f 72 6b 20 73 77 69 74 63 68 65 73 20 77 69 | t.settings.-.Network.switches.wi |
| 110b40 | 74 68 20 73 65 63 75 72 69 74 79 20 73 65 74 74 69 6e 67 73 20 61 6c 6c 6f 77 69 6e 67 20 6f 6e | th.security.settings.allowing.on |
| 110b60 | 6c 79 20 61 20 73 69 6e 67 6c 65 20 4d 41 43 20 61 64 64 72 65 73 73 20 2d 20 78 44 53 4c 20 6d | ly.a.single.MAC.address.-.xDSL.m |
| 110b80 | 6f 64 65 6d 73 20 74 68 61 74 20 74 72 79 20 74 6f 20 6c 65 61 72 6e 20 74 68 65 20 4d 41 43 20 | odems.that.try.to.learn.the.MAC. |
| 110ba0 | 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 4e 49 43 00 50 73 65 75 64 6f 2d 45 74 68 65 72 6e | address.of.the.NIC.Pseudo-Ethern |
| 110bc0 | 65 74 20 6f 72 20 4d 41 43 56 4c 41 4e 20 69 6e 74 65 72 66 61 63 65 73 20 63 61 6e 20 62 65 20 | et.or.MACVLAN.interfaces.can.be. |
| 110be0 | 73 65 65 6e 20 61 73 20 73 75 62 69 6e 74 65 72 66 61 63 65 73 20 74 6f 20 72 65 67 75 6c 61 72 | seen.as.subinterfaces.to.regular |
| 110c00 | 20 65 74 68 65 72 6e 65 74 20 69 6e 74 65 72 66 61 63 65 73 2e 20 45 61 63 68 20 61 6e 64 20 65 | .ethernet.interfaces..Each.and.e |
| 110c20 | 76 65 72 79 20 73 75 62 69 6e 74 65 72 66 61 63 65 20 69 73 20 63 72 65 61 74 65 64 20 61 20 64 | very.subinterface.is.created.a.d |
| 110c40 | 69 66 66 65 72 65 6e 74 20 6d 65 64 69 61 20 61 63 63 65 73 73 20 63 6f 6e 74 72 6f 6c 20 28 4d | ifferent.media.access.control.(M |
| 110c60 | 41 43 29 20 61 64 64 72 65 73 73 2c 20 66 6f 72 20 61 20 73 69 6e 67 6c 65 20 70 68 79 73 69 63 | AC).address,.for.a.single.physic |
| 110c80 | 61 6c 20 45 74 68 65 72 6e 65 74 20 70 6f 72 74 2e 20 50 73 65 75 64 6f 2d 20 45 74 68 65 72 6e | al.Ethernet.port..Pseudo-.Ethern |
| 110ca0 | 65 74 20 69 6e 74 65 72 66 61 63 65 73 20 68 61 76 65 20 6d 6f 73 74 20 6f 66 20 74 68 65 69 72 | et.interfaces.have.most.of.their |
| 110cc0 | 20 61 70 70 6c 69 63 61 74 69 6f 6e 20 69 6e 20 76 69 72 74 75 61 6c 69 7a 65 64 20 65 6e 76 69 | .application.in.virtualized.envi |
| 110ce0 | 72 6f 6e 6d 65 6e 74 73 2c 00 50 75 62 6c 69 73 68 20 61 20 70 6f 72 74 20 66 6f 72 20 74 68 65 | ronments,.Publish.a.port.for.the |
| 110d00 | 20 63 6f 6e 74 61 69 6e 65 72 2e 00 50 75 6c 6c 20 61 20 6e 65 77 20 69 6d 61 67 65 20 66 6f 72 | .container..Pull.a.new.image.for |
| 110d20 | 20 63 6f 6e 74 61 69 6e 65 72 00 51 69 6e 51 20 28 38 30 32 2e 31 61 64 29 00 51 6f 53 00 51 75 | .container.QinQ.(802.1ad).QoS.Qu |
| 110d40 | 65 75 65 20 73 69 7a 65 20 66 6f 72 20 6c 69 73 74 65 6e 69 6e 67 20 74 6f 20 6c 6f 63 61 6c 20 | eue.size.for.listening.to.local. |
| 110d60 | 63 6f 6e 6e 74 72 61 63 6b 20 65 76 65 6e 74 73 20 69 6e 20 4d 42 2e 00 51 75 65 75 65 20 73 69 | conntrack.events.in.MB..Queue.si |
| 110d80 | 7a 65 20 66 6f 72 20 73 79 6e 63 69 6e 67 20 63 6f 6e 6e 74 72 61 63 6b 20 65 6e 74 72 69 65 73 | ze.for.syncing.conntrack.entries |
| 110da0 | 20 69 6e 20 4d 42 2e 00 51 75 6f 74 65 73 20 63 61 6e 20 62 65 20 75 73 65 64 20 69 6e 73 69 64 | .in.MB..Quotes.can.be.used.insid |
| 110dc0 | 65 20 70 61 72 61 6d 65 74 65 72 20 76 61 6c 75 65 73 20 62 79 20 72 65 70 6c 61 63 69 6e 67 20 | e.parameter.values.by.replacing. |
| 110de0 | 61 6c 6c 20 71 75 6f 74 65 20 63 68 61 72 61 63 74 65 72 73 20 77 69 74 68 20 74 68 65 20 73 74 | all.quote.characters.with.the.st |
| 110e00 | 72 69 6e 67 20 60 60 26 71 75 6f 74 3b 60 60 2e 20 54 68 65 79 20 77 69 6c 6c 20 62 65 20 72 65 | ring.``"``..They.will.be.re |
| 110e20 | 70 6c 61 63 65 64 20 77 69 74 68 20 6c 69 74 65 72 61 6c 20 71 75 6f 74 65 20 63 68 61 72 61 63 | placed.with.literal.quote.charac |
| 110e40 | 74 65 72 73 20 77 68 65 6e 20 67 65 6e 65 72 61 74 69 6e 67 20 64 68 63 70 64 2e 63 6f 6e 66 2e | ters.when.generating.dhcpd.conf. |
| 110e60 | 00 52 31 20 68 61 73 20 31 39 32 2e 30 2e 32 2e 31 2f 32 34 20 26 20 32 30 30 31 3a 64 62 38 3a | .R1.has.192.0.2.1/24.&.2001:db8: |
| 110e80 | 3a 31 2f 36 34 00 52 31 20 69 73 20 6d 61 6e 61 67 65 64 20 74 68 72 6f 75 67 68 20 61 6e 20 6f | :1/64.R1.is.managed.through.an.o |
| 110ea0 | 75 74 2d 6f 66 2d 62 61 6e 64 20 6e 65 74 77 6f 72 6b 20 74 68 61 74 20 72 65 73 69 64 65 73 20 | ut-of-band.network.that.resides. |
| 110ec0 | 69 6e 20 56 52 46 20 60 60 6d 67 6d 74 60 60 00 52 31 3a 00 52 32 20 68 61 73 20 31 39 32 2e 30 | in.VRF.``mgmt``.R1:.R2.has.192.0 |
| 110ee0 | 2e 32 2e 32 2f 32 34 20 26 20 32 30 30 31 3a 64 62 38 3a 3a 32 2f 36 34 00 52 32 3a 00 52 41 44 | .2.2/24.&.2001:db8::2/64.R2:.RAD |
| 110f00 | 49 55 53 00 52 41 44 49 55 53 20 53 65 74 75 70 00 52 41 44 49 55 53 20 61 64 76 61 6e 63 65 64 | IUS.RADIUS.Setup.RADIUS.advanced |
| 110f20 | 20 66 65 61 74 75 72 65 73 00 52 41 44 49 55 53 20 61 64 76 61 6e 63 65 64 20 6f 70 74 69 6f 6e | .features.RADIUS.advanced.option |
| 110f40 | 73 00 52 41 44 49 55 53 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 00 52 41 44 49 55 53 20 62 | s.RADIUS.authentication.RADIUS.b |
| 110f60 | 61 6e 64 77 69 64 74 68 20 73 68 61 70 69 6e 67 20 61 74 74 72 69 62 75 74 65 00 52 41 44 49 55 | andwidth.shaping.attribute.RADIU |
| 110f80 | 53 20 70 72 6f 76 69 64 65 73 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 65 73 20 69 6e 20 74 | S.provides.the.IP.addresses.in.t |
| 110fa0 | 68 65 20 65 78 61 6d 70 6c 65 20 61 62 6f 76 65 20 76 69 61 20 46 72 61 6d 65 64 2d 49 50 2d 41 | he.example.above.via.Framed-IP-A |
| 110fc0 | 64 64 72 65 73 73 2e 00 52 41 44 49 55 53 20 73 65 72 76 65 72 20 61 74 20 60 60 31 39 32 2e 31 | ddress..RADIUS.server.at.``192.1 |
| 110fe0 | 36 38 2e 33 2e 31 30 60 60 20 77 69 74 68 20 73 68 61 72 65 64 2d 73 65 63 72 65 74 20 60 60 56 | 68.3.10``.with.shared-secret.``V |
| 111000 | 79 4f 53 50 61 73 73 77 6f 72 64 60 60 00 52 41 44 49 55 53 20 73 65 72 76 65 72 73 20 63 6f 75 | yOSPassword``.RADIUS.servers.cou |
| 111020 | 6c 64 20 62 65 20 68 61 72 64 65 6e 65 64 20 62 79 20 6f 6e 6c 79 20 61 6c 6c 6f 77 69 6e 67 20 | ld.be.hardened.by.only.allowing. |
| 111040 | 63 65 72 74 61 69 6e 20 49 50 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 63 6f 6e 6e 65 63 74 2e | certain.IP.addresses.to.connect. |
| 111060 | 20 41 73 20 6f 66 20 74 68 69 73 20 74 68 65 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 6f | .As.of.this.the.source.address.o |
| 111080 | 66 20 65 61 63 68 20 52 41 44 49 55 53 20 71 75 65 72 79 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 | f.each.RADIUS.query.can.be.confi |
| 1110a0 | 67 75 72 65 64 2e 00 52 41 44 49 55 53 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 00 52 45 51 | gured..RADIUS.source.address.REQ |
| 1110c0 | 20 32 3a 20 41 20 43 47 4e 20 6d 75 73 74 20 68 61 76 65 20 61 20 64 65 66 61 75 6c 74 20 22 49 | .2:.A.CGN.must.have.a.default."I |
| 1110e0 | 50 20 61 64 64 72 65 73 73 20 70 6f 6f 6c 69 6e 67 22 20 62 65 68 61 76 69 6f 72 20 6f 66 20 22 | P.address.pooling".behavior.of." |
| 111100 | 50 61 69 72 65 64 22 2e 20 43 47 4e 20 6d 75 73 74 20 75 73 65 20 74 68 65 20 73 61 6d 65 20 65 | Paired"..CGN.must.use.the.same.e |
| 111120 | 78 74 65 72 6e 61 6c 20 49 50 20 61 64 64 72 65 73 73 20 6d 61 70 70 69 6e 67 20 66 6f 72 20 61 | xternal.IP.address.mapping.for.a |
| 111140 | 6c 6c 20 73 65 73 73 69 6f 6e 73 20 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 74 68 65 20 | ll.sessions.associated.with.the. |
| 111160 | 73 61 6d 65 20 69 6e 74 65 72 6e 61 6c 20 49 50 20 61 64 64 72 65 73 73 2c 20 62 65 20 74 68 65 | same.internal.IP.address,.be.the |
| 111180 | 79 20 54 43 50 2c 20 55 44 50 2c 20 49 43 4d 50 2c 20 73 6f 6d 65 74 68 69 6e 67 20 65 6c 73 65 | y.TCP,.UDP,.ICMP,.something.else |
| 1111a0 | 2c 20 6f 72 20 61 20 6d 69 78 20 6f 66 20 64 69 66 66 65 72 65 6e 74 20 70 72 6f 74 6f 63 6f 6c | ,.or.a.mix.of.different.protocol |
| 1111c0 | 73 2e 00 52 45 51 20 33 3a 20 54 68 65 20 43 47 4e 20 66 75 6e 63 74 69 6f 6e 20 73 68 6f 75 6c | s..REQ.3:.The.CGN.function.shoul |
| 1111e0 | 64 20 6e 6f 74 20 68 61 76 65 20 61 6e 79 20 6c 69 6d 69 74 61 74 69 6f 6e 73 20 6f 6e 20 74 68 | d.not.have.any.limitations.on.th |
| 111200 | 65 20 73 69 7a 65 20 6f 72 20 74 68 65 20 63 6f 6e 74 69 67 75 69 74 79 20 6f 66 20 74 68 65 20 | e.size.or.the.contiguity.of.the. |
| 111220 | 65 78 74 65 72 6e 61 6c 20 61 64 64 72 65 73 73 20 70 6f 6f 6c 2e 00 52 45 51 20 34 3a 20 41 20 | external.address.pool..REQ.4:.A. |
| 111240 | 43 47 4e 20 6d 75 73 74 20 73 75 70 70 6f 72 74 20 6c 69 6d 69 74 69 6e 67 20 74 68 65 20 6e 75 | CGN.must.support.limiting.the.nu |
| 111260 | 6d 62 65 72 20 6f 66 20 65 78 74 65 72 6e 61 6c 20 70 6f 72 74 73 20 28 6f 72 2c 20 65 71 75 69 | mber.of.external.ports.(or,.equi |
| 111280 | 76 61 6c 65 6e 74 6c 79 2c 20 22 69 64 65 6e 74 69 66 69 65 72 73 22 20 66 6f 72 20 49 43 4d 50 | valently,."identifiers".for.ICMP |
| 1112a0 | 29 20 74 68 61 74 20 61 72 65 20 61 73 73 69 67 6e 65 64 20 70 65 72 20 73 75 62 73 63 72 69 62 | ).that.are.assigned.per.subscrib |
| 1112c0 | 65 72 00 52 45 53 54 00 52 46 43 20 33 37 36 38 20 63 72 65 61 74 65 73 20 61 20 76 69 72 74 75 | er.REST.RFC.3768.creates.a.virtu |
| 1112e0 | 61 6c 20 69 6e 74 65 72 66 61 63 65 2e 20 49 66 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 61 70 70 | al.interface..If.you.want.to.app |
| 111300 | 6c 79 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 4e 41 54 20 72 75 6c 65 20 74 6f 20 74 | ly.the.destination.NAT.rule.to.t |
| 111320 | 68 65 20 74 72 61 66 66 69 63 20 73 65 6e 74 20 74 6f 20 74 68 65 20 76 69 72 74 75 61 6c 20 4d | he.traffic.sent.to.the.virtual.M |
| 111340 | 41 43 2c 20 73 65 74 20 74 68 65 20 63 72 65 61 74 65 64 20 76 69 72 74 75 61 6c 20 69 6e 74 65 | AC,.set.the.created.virtual.inte |
| 111360 | 72 66 61 63 65 20 61 73 20 60 69 6e 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 60 2e 00 52 46 | rface.as.`inbound-interface`..RF |
| 111380 | 43 20 33 37 36 38 20 64 65 66 69 6e 65 73 20 61 20 76 69 72 74 75 61 6c 20 4d 41 43 20 61 64 64 | C.3768.defines.a.virtual.MAC.add |
| 1113a0 | 72 65 73 73 20 74 6f 20 65 61 63 68 20 56 52 52 50 20 76 69 72 74 75 61 6c 20 72 6f 75 74 65 72 | ress.to.each.VRRP.virtual.router |
| 1113c0 | 2e 20 54 68 69 73 20 76 69 72 74 75 61 6c 20 72 6f 75 74 65 72 20 4d 41 43 20 61 64 64 72 65 73 | ..This.virtual.router.MAC.addres |
| 1113e0 | 73 20 77 69 6c 6c 20 62 65 20 75 73 65 64 20 61 73 20 74 68 65 20 73 6f 75 72 63 65 20 69 6e 20 | s.will.be.used.as.the.source.in. |
| 111400 | 61 6c 6c 20 70 65 72 69 6f 64 69 63 20 56 52 52 50 20 6d 65 73 73 61 67 65 73 20 73 65 6e 74 20 | all.periodic.VRRP.messages.sent. |
| 111420 | 62 79 20 74 68 65 20 61 63 74 69 76 65 20 6e 6f 64 65 2e 20 57 68 65 6e 20 74 68 65 20 72 66 63 | by.the.active.node..When.the.rfc |
| 111440 | 33 37 36 38 2d 63 6f 6d 70 61 74 69 62 69 6c 69 74 79 20 6f 70 74 69 6f 6e 20 69 73 20 73 65 74 | 3768-compatibility.option.is.set |
| 111460 | 2c 20 61 20 6e 65 77 20 56 52 52 50 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 63 72 65 61 74 65 | ,.a.new.VRRP.interface.is.create |
| 111480 | 64 2c 20 74 6f 20 77 68 69 63 68 20 74 68 65 20 4d 41 43 20 61 64 64 72 65 73 73 20 61 6e 64 20 | d,.to.which.the.MAC.address.and. |
| 1114a0 | 74 68 65 20 76 69 72 74 75 61 6c 20 49 50 20 61 64 64 72 65 73 73 20 69 73 20 61 75 74 6f 6d 61 | the.virtual.IP.address.is.automa |
| 1114c0 | 74 69 63 61 6c 6c 79 20 61 73 73 69 67 6e 65 64 2e 00 52 46 43 20 38 36 38 20 74 69 6d 65 20 73 | tically.assigned..RFC.868.time.s |
| 1114e0 | 65 72 76 65 72 20 49 50 76 34 20 61 64 64 72 65 73 73 00 52 49 50 00 52 49 50 76 31 20 61 73 20 | erver.IPv4.address.RIP.RIPv1.as. |
| 111500 | 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 31 30 35 38 60 00 52 49 50 76 32 20 61 | described.in.:rfc:`1058`.RIPv2.a |
| 111520 | 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 32 34 35 33 60 00 52 50 4b 49 00 | s.described.in.:rfc:`2453`.RPKI. |
| 111540 | 52 53 2d 53 65 72 76 65 72 20 2d 20 52 53 2d 43 6c 69 65 6e 74 00 52 53 41 20 63 61 6e 20 62 65 | RS-Server.-.RS-Client.RSA.can.be |
| 111560 | 20 75 73 65 64 20 66 6f 72 20 73 65 72 76 69 63 65 73 20 73 75 63 68 20 61 73 20 6b 65 79 20 65 | .used.for.services.such.as.key.e |
| 111580 | 78 63 68 61 6e 67 65 73 20 61 6e 64 20 66 6f 72 20 65 6e 63 72 79 70 74 69 6f 6e 20 70 75 72 70 | xchanges.and.for.encryption.purp |
| 1115a0 | 6f 73 65 73 2e 20 54 6f 20 6d 61 6b 65 20 49 50 53 65 63 20 77 6f 72 6b 20 77 69 74 68 20 64 79 | oses..To.make.IPSec.work.with.dy |
| 1115c0 | 6e 61 6d 69 63 20 61 64 64 72 65 73 73 20 6f 6e 20 6f 6e 65 2f 62 6f 74 68 20 73 69 64 65 73 2c | namic.address.on.one/both.sides, |
| 1115e0 | 20 77 65 20 77 69 6c 6c 20 68 61 76 65 20 74 6f 20 75 73 65 20 52 53 41 20 6b 65 79 73 20 66 6f | .we.will.have.to.use.RSA.keys.fo |
| 111600 | 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2e 20 54 68 65 79 20 61 72 65 20 76 65 72 79 20 | r.authentication..They.are.very. |
| 111620 | 66 61 73 74 20 61 6e 64 20 65 61 73 79 20 74 6f 20 73 65 74 75 70 2e 00 52 53 41 2d 4b 65 79 73 | fast.and.easy.to.setup..RSA-Keys |
| 111640 | 00 52 61 6e 64 6f 6d 2d 44 65 74 65 63 74 00 52 61 6e 64 6f 6d 2d 44 65 74 65 63 74 20 63 6f 75 | .Random-Detect.Random-Detect.cou |
| 111660 | 6c 64 20 62 65 20 75 73 65 66 75 6c 20 66 6f 72 20 68 65 61 76 79 20 74 72 61 66 66 69 63 2e 20 | ld.be.useful.for.heavy.traffic.. |
| 111680 | 4f 6e 65 20 75 73 65 20 6f 66 20 74 68 69 73 20 61 6c 67 6f 72 69 74 68 6d 20 6d 69 67 68 74 20 | One.use.of.this.algorithm.might. |
| 1116a0 | 62 65 20 74 6f 20 70 72 65 76 65 6e 74 20 61 20 62 61 63 6b 62 6f 6e 65 20 6f 76 65 72 6c 6f 61 | be.to.prevent.a.backbone.overloa |
| 1116c0 | 64 2e 20 42 75 74 20 6f 6e 6c 79 20 66 6f 72 20 54 43 50 20 28 62 65 63 61 75 73 65 20 64 72 6f | d..But.only.for.TCP.(because.dro |
| 1116e0 | 70 70 65 64 20 70 61 63 6b 65 74 73 20 63 6f 75 6c 64 20 62 65 20 72 65 74 72 61 6e 73 6d 69 74 | pped.packets.could.be.retransmit |
| 111700 | 74 65 64 29 2c 20 6e 6f 74 20 66 6f 72 20 55 44 50 2e 00 52 61 6e 67 65 20 69 73 20 31 20 74 6f | ted),.not.for.UDP..Range.is.1.to |
| 111720 | 20 32 35 35 2c 20 64 65 66 61 75 6c 74 20 69 73 20 31 2e 00 52 61 6e 67 65 20 69 73 20 31 20 74 | .255,.default.is.1..Range.is.1.t |
| 111740 | 6f 20 33 30 30 2c 20 64 65 66 61 75 6c 74 20 69 73 20 31 30 2e 00 52 61 74 65 20 43 6f 6e 74 72 | o.300,.default.is.10..Rate.Contr |
| 111760 | 6f 6c 00 52 61 74 65 20 6c 69 6d 69 74 00 52 61 74 65 20 6c 69 6d 69 74 20 74 68 65 20 64 6f 77 | ol.Rate.limit.Rate.limit.the.dow |
| 111780 | 6e 6c 6f 61 64 20 62 61 6e 64 77 69 64 74 68 20 66 6f 72 20 60 3c 75 73 65 72 3e 60 20 74 6f 20 | nload.bandwidth.for.`<user>`.to. |
| 1117a0 | 60 3c 62 61 6e 64 77 69 64 74 68 3e 60 20 6b 62 69 74 2f 73 2e 00 52 61 74 65 20 6c 69 6d 69 74 | `<bandwidth>`.kbit/s..Rate.limit |
| 1117c0 | 20 74 68 65 20 75 70 6c 6f 61 64 20 62 61 6e 64 77 69 64 74 68 20 66 6f 72 20 60 3c 75 73 65 72 | .the.upload.bandwidth.for.`<user |
| 1117e0 | 3e 60 20 74 6f 20 60 3c 62 61 6e 64 77 69 64 74 68 3e 60 20 6b 62 69 74 2f 73 00 52 61 74 65 20 | >`.to.`<bandwidth>`.kbit/s.Rate. |
| 111800 | 6c 69 6d 69 74 20 74 68 65 20 75 70 6c 6f 61 64 20 62 61 6e 64 77 69 64 74 68 20 66 6f 72 20 60 | limit.the.upload.bandwidth.for.` |
| 111820 | 3c 75 73 65 72 3e 60 20 74 6f 20 60 3c 62 61 6e 64 77 69 64 74 68 3e 60 20 6b 62 69 74 2f 73 2e | <user>`.to.`<bandwidth>`.kbit/s. |
| 111840 | 00 52 61 74 65 2d 43 6f 6e 74 72 6f 6c 20 69 73 20 61 20 43 50 55 2d 66 72 69 65 6e 64 6c 79 20 | .Rate-Control.is.a.CPU-friendly. |
| 111860 | 70 6f 6c 69 63 79 2e 20 59 6f 75 20 6d 69 67 68 74 20 63 6f 6e 73 69 64 65 72 20 75 73 69 6e 67 | policy..You.might.consider.using |
| 111880 | 20 69 74 20 77 68 65 6e 20 79 6f 75 20 6a 75 73 74 20 73 69 6d 70 6c 79 20 77 61 6e 74 20 74 6f | .it.when.you.just.simply.want.to |
| 1118a0 | 20 73 6c 6f 77 20 74 72 61 66 66 69 63 20 64 6f 77 6e 2e 00 52 61 74 65 2d 43 6f 6e 74 72 6f 6c | .slow.traffic.down..Rate-Control |
| 1118c0 | 20 69 73 20 61 20 63 6c 61 73 73 6c 65 73 73 20 70 6f 6c 69 63 79 20 74 68 61 74 20 6c 69 6d 69 | .is.a.classless.policy.that.limi |
| 1118e0 | 74 73 20 74 68 65 20 70 61 63 6b 65 74 20 66 6c 6f 77 20 74 6f 20 61 20 73 65 74 20 72 61 74 65 | ts.the.packet.flow.to.a.set.rate |
| 111900 | 2e 20 49 74 20 69 73 20 61 20 70 75 72 65 20 73 68 61 70 65 72 2c 20 69 74 20 64 6f 65 73 20 6e | ..It.is.a.pure.shaper,.it.does.n |
| 111920 | 6f 74 20 73 63 68 65 64 75 6c 65 20 74 72 61 66 66 69 63 2e 20 54 72 61 66 66 69 63 20 69 73 20 | ot.schedule.traffic..Traffic.is. |
| 111940 | 66 69 6c 74 65 72 65 64 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 65 78 70 65 6e 64 69 74 75 72 | filtered.based.on.the.expenditur |
| 111960 | 65 20 6f 66 20 74 6f 6b 65 6e 73 2e 20 54 6f 6b 65 6e 73 20 72 6f 75 67 68 6c 79 20 63 6f 72 72 | e.of.tokens..Tokens.roughly.corr |
| 111980 | 65 73 70 6f 6e 64 20 74 6f 20 62 79 74 65 73 2e 00 52 61 77 20 50 61 72 61 6d 65 74 65 72 73 00 | espond.to.bytes..Raw.Parameters. |
| 1119a0 | 52 61 77 20 70 61 72 61 6d 65 74 65 72 73 20 63 61 6e 20 62 65 20 70 61 73 73 65 64 20 74 6f 20 | Raw.parameters.can.be.passed.to. |
| 1119c0 | 73 68 61 72 65 64 2d 6e 65 74 77 6f 72 6b 2d 6e 61 6d 65 2c 20 73 75 62 6e 65 74 20 61 6e 64 20 | shared-network-name,.subnet.and. |
| 1119e0 | 73 74 61 74 69 63 2d 6d 61 70 70 69 6e 67 3a 00 52 65 2d 67 65 6e 65 72 61 74 65 64 20 61 20 6b | static-mapping:.Re-generated.a.k |
| 111a00 | 6e 6f 77 6e 20 70 75 62 2f 70 72 69 76 61 74 65 20 6b 65 79 66 69 6c 65 20 77 68 69 63 68 20 63 | nown.pub/private.keyfile.which.c |
| 111a20 | 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 63 6f 6e 6e 65 63 74 20 74 6f 20 6f 74 68 65 72 20 73 | an.be.used.to.connect.to.other.s |
| 111a40 | 65 72 76 69 63 65 73 20 28 65 2e 67 2e 20 52 50 4b 49 20 63 61 63 68 65 29 2e 00 52 65 2d 67 65 | ervices.(e.g..RPKI.cache)..Re-ge |
| 111a60 | 6e 65 72 61 74 65 64 20 74 68 65 20 70 75 62 6c 69 63 2f 70 72 69 76 61 74 65 20 6b 65 79 70 6f | nerated.the.public/private.keypo |
| 111a80 | 72 74 69 6f 6e 20 77 68 69 63 68 20 53 53 48 20 75 73 65 73 20 74 6f 20 73 65 63 75 72 65 20 63 | rtion.which.SSH.uses.to.secure.c |
| 111aa0 | 6f 6e 6e 65 63 74 69 6f 6e 73 2e 00 52 65 61 63 68 61 62 6c 65 20 54 69 6d 65 00 52 65 61 6c 20 | onnections..Reachable.Time.Real. |
| 111ac0 | 73 65 72 76 65 72 00 52 65 61 6c 20 73 65 72 76 65 72 20 49 50 20 61 64 64 72 65 73 73 20 61 6e | server.Real.server.IP.address.an |
| 111ae0 | 64 20 70 6f 72 74 00 52 65 61 6c 20 73 65 72 76 65 72 20 69 73 20 61 75 74 6f 2d 65 78 63 6c 75 | d.port.Real.server.is.auto-exclu |
| 111b00 | 64 65 64 20 69 66 20 70 6f 72 74 20 63 68 65 63 6b 20 77 69 74 68 20 74 68 69 73 20 73 65 72 76 | ded.if.port.check.with.this.serv |
| 111b20 | 65 72 20 66 61 69 6c 2e 00 52 65 63 65 69 76 65 20 74 72 61 66 66 69 63 20 66 72 6f 6d 20 63 6f | er.fail..Receive.traffic.from.co |
| 111b40 | 6e 6e 65 63 74 69 6f 6e 73 20 63 72 65 61 74 65 64 20 62 79 20 74 68 65 20 73 65 72 76 65 72 20 | nnections.created.by.the.server. |
| 111b60 | 69 73 20 61 6c 73 6f 20 62 61 6c 61 6e 63 65 64 2e 20 57 68 65 6e 20 74 68 65 20 6c 6f 63 61 6c | is.also.balanced..When.the.local |
| 111b80 | 20 73 79 73 74 65 6d 20 73 65 6e 64 73 20 61 6e 20 41 52 50 20 52 65 71 75 65 73 74 20 74 68 65 | .system.sends.an.ARP.Request.the |
| 111ba0 | 20 62 6f 6e 64 69 6e 67 20 64 72 69 76 65 72 20 63 6f 70 69 65 73 20 61 6e 64 20 73 61 76 65 73 | .bonding.driver.copies.and.saves |
| 111bc0 | 20 74 68 65 20 70 65 65 72 27 73 20 49 50 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 72 6f 6d 20 | .the.peer's.IP.information.from. |
| 111be0 | 74 68 65 20 41 52 50 20 70 61 63 6b 65 74 2e 20 57 68 65 6e 20 74 68 65 20 41 52 50 20 52 65 70 | the.ARP.packet..When.the.ARP.Rep |
| 111c00 | 6c 79 20 61 72 72 69 76 65 73 20 66 72 6f 6d 20 74 68 65 20 70 65 65 72 2c 20 69 74 73 20 68 61 | ly.arrives.from.the.peer,.its.ha |
| 111c20 | 72 64 77 61 72 65 20 61 64 64 72 65 73 73 20 69 73 20 72 65 74 72 69 65 76 65 64 20 61 6e 64 20 | rdware.address.is.retrieved.and. |
| 111c40 | 74 68 65 20 62 6f 6e 64 69 6e 67 20 64 72 69 76 65 72 20 69 6e 69 74 69 61 74 65 73 20 61 6e 20 | the.bonding.driver.initiates.an. |
| 111c60 | 41 52 50 20 72 65 70 6c 79 20 74 6f 20 74 68 69 73 20 70 65 65 72 20 61 73 73 69 67 6e 69 6e 67 | ARP.reply.to.this.peer.assigning |
| 111c80 | 20 69 74 20 74 6f 20 6f 6e 65 20 6f 66 20 74 68 65 20 73 6c 61 76 65 73 20 69 6e 20 74 68 65 20 | .it.to.one.of.the.slaves.in.the. |
| 111ca0 | 62 6f 6e 64 2e 20 41 20 70 72 6f 62 6c 65 6d 61 74 69 63 20 6f 75 74 63 6f 6d 65 20 6f 66 20 75 | bond..A.problematic.outcome.of.u |
| 111cc0 | 73 69 6e 67 20 41 52 50 20 6e 65 67 6f 74 69 61 74 69 6f 6e 20 66 6f 72 20 62 61 6c 61 6e 63 69 | sing.ARP.negotiation.for.balanci |
| 111ce0 | 6e 67 20 69 73 20 74 68 61 74 20 65 61 63 68 20 74 69 6d 65 20 74 68 61 74 20 61 6e 20 41 52 50 | ng.is.that.each.time.that.an.ARP |
| 111d00 | 20 72 65 71 75 65 73 74 20 69 73 20 62 72 6f 61 64 63 61 73 74 20 69 74 20 75 73 65 73 20 74 68 | .request.is.broadcast.it.uses.th |
| 111d20 | 65 20 68 61 72 64 77 61 72 65 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 62 6f 6e 64 2e 20 | e.hardware.address.of.the.bond.. |
| 111d40 | 48 65 6e 63 65 2c 20 70 65 65 72 73 20 6c 65 61 72 6e 20 74 68 65 20 68 61 72 64 77 61 72 65 20 | Hence,.peers.learn.the.hardware. |
| 111d60 | 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 62 6f 6e 64 20 61 6e 64 20 74 68 65 20 62 61 6c 61 | address.of.the.bond.and.the.bala |
| 111d80 | 6e 63 69 6e 67 20 6f 66 20 72 65 63 65 69 76 65 20 74 72 61 66 66 69 63 20 63 6f 6c 6c 61 70 73 | ncing.of.receive.traffic.collaps |
| 111da0 | 65 73 20 74 6f 20 74 68 65 20 63 75 72 72 65 6e 74 20 73 6c 61 76 65 2e 20 54 68 69 73 20 69 73 | es.to.the.current.slave..This.is |
| 111dc0 | 20 68 61 6e 64 6c 65 64 20 62 79 20 73 65 6e 64 69 6e 67 20 75 70 64 61 74 65 73 20 28 41 52 50 | .handled.by.sending.updates.(ARP |
| 111de0 | 20 52 65 70 6c 69 65 73 29 20 74 6f 20 61 6c 6c 20 74 68 65 20 70 65 65 72 73 20 77 69 74 68 20 | .Replies).to.all.the.peers.with. |
| 111e00 | 74 68 65 69 72 20 69 6e 64 69 76 69 64 75 61 6c 6c 79 20 61 73 73 69 67 6e 65 64 20 68 61 72 64 | their.individually.assigned.hard |
| 111e20 | 77 61 72 65 20 61 64 64 72 65 73 73 20 73 75 63 68 20 74 68 61 74 20 74 68 65 20 74 72 61 66 66 | ware.address.such.that.the.traff |
| 111e40 | 69 63 20 69 73 20 72 65 64 69 73 74 72 69 62 75 74 65 64 2e 20 52 65 63 65 69 76 65 20 74 72 61 | ic.is.redistributed..Receive.tra |
| 111e60 | 66 66 69 63 20 69 73 20 61 6c 73 6f 20 72 65 64 69 73 74 72 69 62 75 74 65 64 20 77 68 65 6e 20 | ffic.is.also.redistributed.when. |
| 111e80 | 61 20 6e 65 77 20 73 6c 61 76 65 20 69 73 20 61 64 64 65 64 20 74 6f 20 74 68 65 20 62 6f 6e 64 | a.new.slave.is.added.to.the.bond |
| 111ea0 | 20 61 6e 64 20 77 68 65 6e 20 61 6e 20 69 6e 61 63 74 69 76 65 20 73 6c 61 76 65 20 69 73 20 72 | .and.when.an.inactive.slave.is.r |
| 111ec0 | 65 2d 61 63 74 69 76 61 74 65 64 2e 20 54 68 65 20 72 65 63 65 69 76 65 20 6c 6f 61 64 20 69 73 | e-activated..The.receive.load.is |
| 111ee0 | 20 64 69 73 74 72 69 62 75 74 65 64 20 73 65 71 75 65 6e 74 69 61 6c 6c 79 20 28 72 6f 75 6e 64 | .distributed.sequentially.(round |
| 111f00 | 20 72 6f 62 69 6e 29 20 61 6d 6f 6e 67 20 74 68 65 20 67 72 6f 75 70 20 6f 66 20 68 69 67 68 65 | .robin).among.the.group.of.highe |
| 111f20 | 73 74 20 73 70 65 65 64 20 73 6c 61 76 65 73 20 69 6e 20 74 68 65 20 62 6f 6e 64 2e 00 52 65 63 | st.speed.slaves.in.the.bond..Rec |
| 111f40 | 65 69 76 65 64 20 52 41 44 49 55 53 20 61 74 74 72 69 62 75 74 65 73 20 68 61 76 65 20 61 20 68 | eived.RADIUS.attributes.have.a.h |
| 111f60 | 69 67 68 65 72 20 70 72 69 6f 72 69 74 79 20 74 68 61 6e 20 70 61 72 61 6d 65 74 65 72 73 20 64 | igher.priority.than.parameters.d |
| 111f80 | 65 66 69 6e 65 64 20 77 69 74 68 69 6e 20 74 68 65 20 43 4c 49 20 63 6f 6e 66 69 67 75 72 61 74 | efined.within.the.CLI.configurat |
| 111fa0 | 69 6f 6e 2c 20 72 65 66 65 72 20 74 6f 20 74 68 65 20 65 78 70 6c 61 6e 61 74 69 6f 6e 20 62 65 | ion,.refer.to.the.explanation.be |
| 111fc0 | 6c 6f 77 2e 00 52 65 63 6f 6d 6d 65 6e 64 65 64 20 66 6f 72 20 6c 61 72 67 65 72 20 69 6e 73 74 | low..Recommended.for.larger.inst |
| 111fe0 | 61 6c 6c 61 74 69 6f 6e 73 2e 00 52 65 63 6f 72 64 20 74 79 70 65 73 00 52 65 64 69 72 65 63 74 | allations..Record.types.Redirect |
| 112000 | 20 48 54 54 50 20 74 6f 20 48 54 54 50 53 00 52 65 64 69 72 65 63 74 20 4d 69 63 72 6f 73 6f 66 | .HTTP.to.HTTPS.Redirect.Microsof |
| 112020 | 74 20 52 44 50 20 74 72 61 66 66 69 63 20 66 72 6f 6d 20 74 68 65 20 69 6e 74 65 72 6e 61 6c 20 | t.RDP.traffic.from.the.internal. |
| 112040 | 28 4c 41 4e 2c 20 70 72 69 76 61 74 65 29 20 6e 65 74 77 6f 72 6b 20 76 69 61 20 3a 72 65 66 3a | (LAN,.private).network.via.:ref: |
| 112060 | 60 64 65 73 74 69 6e 61 74 69 6f 6e 2d 6e 61 74 60 20 69 6e 20 72 75 6c 65 20 31 31 30 20 74 6f | `destination-nat`.in.rule.110.to |
| 112080 | 20 74 68 65 20 69 6e 74 65 72 6e 61 6c 2c 20 70 72 69 76 61 74 65 20 68 6f 73 74 20 31 39 32 2e | .the.internal,.private.host.192. |
| 1120a0 | 30 2e 32 2e 34 30 2e 20 57 65 20 61 6c 73 6f 20 6e 65 65 64 20 61 20 3a 72 65 66 3a 60 73 6f 75 | 0.2.40..We.also.need.a.:ref:`sou |
| 1120c0 | 72 63 65 2d 6e 61 74 60 20 72 75 6c 65 20 31 31 30 20 66 6f 72 20 74 68 65 20 72 65 76 65 72 73 | rce-nat`.rule.110.for.the.revers |
| 1120e0 | 65 20 70 61 74 68 20 6f 66 20 74 68 65 20 74 72 61 66 66 69 63 2e 20 54 68 65 20 69 6e 74 65 72 | e.path.of.the.traffic..The.inter |
| 112100 | 6e 61 6c 20 6e 65 74 77 6f 72 6b 20 31 39 32 2e 30 2e 32 2e 30 2f 32 34 20 69 73 20 72 65 61 63 | nal.network.192.0.2.0/24.is.reac |
| 112120 | 68 61 62 6c 65 20 76 69 61 20 69 6e 74 65 72 66 61 63 65 20 60 65 74 68 30 2e 31 30 60 2e 00 52 | hable.via.interface.`eth0.10`..R |
| 112140 | 65 64 69 72 65 63 74 20 4d 69 63 72 6f 73 6f 66 74 20 52 44 50 20 74 72 61 66 66 69 63 20 66 72 | edirect.Microsoft.RDP.traffic.fr |
| 112160 | 6f 6d 20 74 68 65 20 6f 75 74 73 69 64 65 20 28 57 41 4e 2c 20 65 78 74 65 72 6e 61 6c 29 20 77 | om.the.outside.(WAN,.external).w |
| 112180 | 6f 72 6c 64 20 76 69 61 20 3a 72 65 66 3a 60 64 65 73 74 69 6e 61 74 69 6f 6e 2d 6e 61 74 60 20 | orld.via.:ref:`destination-nat`. |
| 1121a0 | 69 6e 20 72 75 6c 65 20 31 30 30 20 74 6f 20 74 68 65 20 69 6e 74 65 72 6e 61 6c 2c 20 70 72 69 | in.rule.100.to.the.internal,.pri |
| 1121c0 | 76 61 74 65 20 68 6f 73 74 20 31 39 32 2e 30 2e 32 2e 34 30 2e 00 52 65 64 69 72 65 63 74 20 55 | vate.host.192.0.2.40..Redirect.U |
| 1121e0 | 52 4c 20 74 6f 20 61 20 6e 65 77 20 6c 6f 63 61 74 69 6f 6e 00 52 65 64 69 73 74 72 69 62 75 74 | RL.to.a.new.location.Redistribut |
| 112200 | 69 6f 6e 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 52 65 64 75 6e 64 61 6e 63 79 20 61 6e 64 | ion.Configuration.Redundancy.and |
| 112220 | 20 6c 6f 61 64 20 73 68 61 72 69 6e 67 2e 20 54 68 65 72 65 20 61 72 65 20 6d 75 6c 74 69 70 6c | .load.sharing..There.are.multipl |
| 112240 | 65 20 4e 41 54 36 36 20 64 65 76 69 63 65 73 20 61 74 20 74 68 65 20 65 64 67 65 20 6f 66 20 61 | e.NAT66.devices.at.the.edge.of.a |
| 112260 | 6e 20 49 50 76 36 20 6e 65 74 77 6f 72 6b 20 74 6f 20 61 6e 6f 74 68 65 72 20 49 50 76 36 20 6e | n.IPv6.network.to.another.IPv6.n |
| 112280 | 65 74 77 6f 72 6b 2e 20 54 68 65 20 70 61 74 68 20 74 68 72 6f 75 67 68 20 74 68 65 20 4e 41 54 | etwork..The.path.through.the.NAT |
| 1122a0 | 36 36 20 64 65 76 69 63 65 20 74 6f 20 61 6e 6f 74 68 65 72 20 49 50 76 36 20 6e 65 74 77 6f 72 | 66.device.to.another.IPv6.networ |
| 1122c0 | 6b 20 66 6f 72 6d 73 20 61 6e 20 65 71 75 69 76 61 6c 65 6e 74 20 72 6f 75 74 65 2c 20 61 6e 64 | k.forms.an.equivalent.route,.and |
| 1122e0 | 20 74 72 61 66 66 69 63 20 63 61 6e 20 62 65 20 6c 6f 61 64 2d 73 68 61 72 65 64 20 6f 6e 20 74 | .traffic.can.be.load-shared.on.t |
| 112300 | 68 65 73 65 20 4e 41 54 36 36 20 64 65 76 69 63 65 73 2e 20 49 6e 20 74 68 69 73 20 63 61 73 65 | hese.NAT66.devices..In.this.case |
| 112320 | 2c 20 79 6f 75 20 63 61 6e 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 73 61 6d 65 20 73 6f 75 | ,.you.can.configure.the.same.sou |
| 112340 | 72 63 65 20 61 64 64 72 65 73 73 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 72 75 6c 65 73 20 6f 6e | rce.address.translation.rules.on |
| 112360 | 20 74 68 65 73 65 20 4e 41 54 36 36 20 64 65 76 69 63 65 73 2c 20 73 6f 20 74 68 61 74 20 61 6e | .these.NAT66.devices,.so.that.an |
| 112380 | 79 20 4e 41 54 36 36 20 64 65 76 69 63 65 20 63 61 6e 20 68 61 6e 64 6c 65 20 49 50 76 36 20 74 | y.NAT66.device.can.handle.IPv6.t |
| 1123a0 | 72 61 66 66 69 63 20 62 65 74 77 65 65 6e 20 64 69 66 66 65 72 65 6e 74 20 73 69 74 65 73 2e 00 | raffic.between.different.sites.. |
| 1123c0 | 52 65 67 69 73 74 65 72 20 44 4e 53 20 72 65 63 6f 72 64 20 60 60 65 78 61 6d 70 6c 65 2e 76 79 | Register.DNS.record.``example.vy |
| 1123e0 | 6f 73 2e 69 6f 60 60 20 6f 6e 20 44 4e 53 20 73 65 72 76 65 72 20 60 60 6e 73 31 2e 76 79 6f 73 | os.io``.on.DNS.server.``ns1.vyos |
| 112400 | 2e 69 6f 60 60 00 52 65 67 75 6c 61 72 20 56 4c 41 4e 73 20 28 38 30 32 2e 31 71 29 00 52 65 67 | .io``.Regular.VLANs.(802.1q).Reg |
| 112420 | 75 6c 61 72 20 65 78 70 72 65 73 73 69 6f 6e 20 74 6f 20 6d 61 74 63 68 20 61 67 61 69 6e 73 74 | ular.expression.to.match.against |
| 112440 | 20 61 20 63 6f 6d 6d 75 6e 69 74 79 2d 6c 69 73 74 2e 00 52 65 67 75 6c 61 72 20 65 78 70 72 65 | .a.community-list..Regular.expre |
| 112460 | 73 73 69 6f 6e 20 74 6f 20 6d 61 74 63 68 20 61 67 61 69 6e 73 74 20 61 20 6c 61 72 67 65 20 63 | ssion.to.match.against.a.large.c |
| 112480 | 6f 6d 6d 75 6e 69 74 79 20 6c 69 73 74 2e 00 52 65 67 75 6c 61 72 20 65 78 70 72 65 73 73 69 6f | ommunity.list..Regular.expressio |
| 1124a0 | 6e 20 74 6f 20 6d 61 74 63 68 20 61 67 61 69 6e 73 74 20 61 6e 20 41 53 20 70 61 74 68 2e 20 46 | n.to.match.against.an.AS.path..F |
| 1124c0 | 6f 72 20 65 78 61 6d 70 6c 65 20 22 36 34 35 30 31 20 36 34 35 30 32 22 2e 00 52 65 67 75 6c 61 | or.example."64501.64502"..Regula |
| 1124e0 | 72 20 65 78 70 72 65 73 73 69 6f 6e 20 74 6f 20 6d 61 74 63 68 20 61 67 61 69 6e 73 74 20 61 6e | r.expression.to.match.against.an |
| 112500 | 20 65 78 74 65 6e 64 65 64 20 63 6f 6d 6d 75 6e 69 74 79 20 6c 69 73 74 2c 20 77 68 65 72 65 20 | .extended.community.list,.where. |
| 112520 | 74 65 78 74 20 63 6f 75 6c 64 20 62 65 3a 00 52 65 6a 65 63 74 20 44 48 43 50 20 6c 65 61 73 65 | text.could.be:.Reject.DHCP.lease |
| 112540 | 73 20 66 72 6f 6d 20 61 20 67 69 76 65 6e 20 61 64 64 72 65 73 73 20 6f 72 20 72 61 6e 67 65 2e | s.from.a.given.address.or.range. |
| 112560 | 20 54 68 69 73 20 69 73 20 75 73 65 66 75 6c 20 77 68 65 6e 20 61 20 6d 6f 64 65 6d 20 67 69 76 | .This.is.useful.when.a.modem.giv |
| 112580 | 65 73 20 61 20 6c 6f 63 61 6c 20 49 50 20 77 68 65 6e 20 66 69 72 73 74 20 73 74 61 72 74 69 6e | es.a.local.IP.when.first.startin |
| 1125a0 | 67 2e 00 52 65 6d 65 6d 62 65 72 20 73 6f 75 72 63 65 20 49 50 20 69 6e 20 73 65 63 6f 6e 64 73 | g..Remember.source.IP.in.seconds |
| 1125c0 | 20 62 65 66 6f 72 65 20 72 65 73 65 74 20 74 68 65 69 72 20 73 63 6f 72 65 2e 20 54 68 65 20 64 | .before.reset.their.score..The.d |
| 1125e0 | 65 66 61 75 6c 74 20 69 73 20 31 38 30 30 2e 00 52 65 6d 6f 74 65 20 41 63 63 65 73 73 00 52 65 | efault.is.1800..Remote.Access.Re |
| 112600 | 6d 6f 74 65 20 41 63 63 65 73 73 20 22 52 6f 61 64 57 61 72 72 69 6f 72 22 20 45 78 61 6d 70 6c | mote.Access."RoadWarrior".Exampl |
| 112620 | 65 00 52 65 6d 6f 74 65 20 41 63 63 65 73 73 20 22 52 6f 61 64 57 61 72 72 69 6f 72 22 20 63 6c | e.Remote.Access."RoadWarrior".cl |
| 112640 | 69 65 6e 74 73 00 52 65 6d 6f 74 65 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 2d 20 41 6e 6e | ients.Remote.Configuration.-.Ann |
| 112660 | 6f 74 61 74 65 64 3a 00 52 65 6d 6f 74 65 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 00 52 65 | otated:.Remote.Configuration:.Re |
| 112680 | 6d 6f 74 65 20 48 6f 73 74 00 52 65 6d 6f 74 65 20 4c 6f 6b 69 20 70 6f 72 74 00 52 65 6d 6f 74 | mote.Host.Remote.Loki.port.Remot |
| 1126a0 | 65 20 4c 6f 6b 69 20 75 72 6c 00 52 65 6d 6f 74 65 20 55 52 4c 00 52 65 6d 6f 74 65 20 55 52 4c | e.Loki.url.Remote.URL.Remote.URL |
| 1126c0 | 20 74 6f 20 53 70 6c 75 6e 6b 20 63 6f 6c 6c 65 63 74 6f 72 00 52 65 6d 6f 74 65 20 55 52 4c 2e | .to.Splunk.collector.Remote.URL. |
| 1126e0 | 00 52 65 6d 6f 74 65 20 60 60 49 6e 66 6c 75 78 44 42 60 60 20 62 75 63 6b 65 74 20 6e 61 6d 65 | .Remote.``InfluxDB``.bucket.name |
| 112700 | 00 52 65 6d 6f 74 65 20 64 61 74 61 62 61 73 65 20 6e 61 6d 65 2e 00 52 65 6d 6f 74 65 20 70 65 | .Remote.database.name..Remote.pe |
| 112720 | 65 72 20 49 50 20 60 3c 61 64 64 72 65 73 73 3e 60 20 6f 66 20 74 68 65 20 73 65 63 6f 6e 64 20 | er.IP.`<address>`.of.the.second. |
| 112740 | 44 48 43 50 20 73 65 72 76 65 72 20 69 6e 20 74 68 69 73 20 48 41 20 63 6c 75 73 74 65 72 2e 00 | DHCP.server.in.this.HA.cluster.. |
| 112760 | 52 65 6d 6f 74 65 20 70 65 65 72 20 49 50 20 60 3c 61 64 64 72 65 73 73 3e 60 20 6f 66 20 74 68 | Remote.peer.IP.`<address>`.of.th |
| 112780 | 65 20 73 65 63 6f 6e 64 20 44 48 43 50 20 73 65 72 76 65 72 20 69 6e 20 74 68 69 73 20 66 61 69 | e.second.DHCP.server.in.this.fai |
| 1127a0 | 6c 6f 76 65 72 20 63 6c 75 73 74 65 72 2e 00 52 65 6d 6f 74 65 20 70 6f 72 74 00 52 65 6d 6f 74 | lover.cluster..Remote.port.Remot |
| 1127c0 | 65 20 74 72 61 6e 73 6d 69 73 73 69 6f 6e 20 69 6e 74 65 72 76 61 6c 20 77 69 6c 6c 20 62 65 20 | e.transmission.interval.will.be. |
| 1127e0 | 6d 75 6c 74 69 70 6c 69 65 64 20 62 79 20 74 68 69 73 20 76 61 6c 75 65 00 52 65 6e 61 6d 69 6e | multiplied.by.this.value.Renamin |
| 112800 | 67 20 63 6c 69 65 6e 74 73 20 69 6e 74 65 72 66 61 63 65 73 20 62 79 20 52 41 44 49 55 53 00 52 | g.clients.interfaces.by.RADIUS.R |
| 112820 | 65 70 65 61 74 20 74 68 65 20 70 72 6f 63 65 64 75 72 65 20 6f 6e 20 74 68 65 20 6f 74 68 65 72 | epeat.the.procedure.on.the.other |
| 112840 | 20 72 6f 75 74 65 72 2e 00 52 65 70 6c 61 79 20 70 72 6f 74 65 63 74 69 6f 6e 00 52 65 71 75 65 | .router..Replay.protection.Reque |
| 112860 | 73 74 20 6f 6e 6c 79 20 61 20 74 65 6d 70 6f 72 61 72 79 20 61 64 64 72 65 73 73 20 61 6e 64 20 | st.only.a.temporary.address.and. |
| 112880 | 6e 6f 74 20 66 6f 72 6d 20 61 6e 20 49 41 5f 4e 41 20 28 49 64 65 6e 74 69 74 79 20 41 73 73 6f | not.form.an.IA_NA.(Identity.Asso |
| 1128a0 | 63 69 61 74 69 6f 6e 20 66 6f 72 20 4e 6f 6e 2d 74 65 6d 70 6f 72 61 72 79 20 41 64 64 72 65 73 | ciation.for.Non-temporary.Addres |
| 1128c0 | 73 65 73 29 20 70 61 72 74 6e 65 72 73 68 69 70 2e 00 52 65 71 75 65 73 74 73 20 61 72 65 20 66 | ses).partnership..Requests.are.f |
| 1128e0 | 6f 72 77 61 72 64 65 64 20 74 68 72 6f 75 67 68 20 60 60 65 74 68 32 60 60 20 61 73 20 74 68 65 | orwarded.through.``eth2``.as.the |
| 112900 | 20 60 75 70 73 74 72 65 61 6d 20 69 6e 74 65 72 66 61 63 65 60 00 52 65 71 75 69 72 65 20 74 68 | .`upstream.interface`.Require.th |
| 112920 | 65 20 70 65 65 72 20 74 6f 20 61 75 74 68 65 6e 74 69 63 61 74 65 20 69 74 73 65 6c 66 20 75 73 | e.peer.to.authenticate.itself.us |
| 112940 | 69 6e 67 20 6f 6e 65 20 6f 66 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 70 72 6f 74 6f 63 6f | ing.one.of.the.following.protoco |
| 112960 | 6c 73 3a 20 70 61 70 2c 20 63 68 61 70 2c 20 6d 73 63 68 61 70 2c 20 6d 73 63 68 61 70 2d 76 32 | ls:.pap,.chap,.mschap,.mschap-v2 |
| 112980 | 2e 00 52 65 71 75 69 72 65 6d 65 6e 74 73 00 52 65 71 75 69 72 65 6d 65 6e 74 73 20 74 6f 20 65 | ..Requirements.Requirements.to.e |
| 1129a0 | 6e 61 62 6c 65 20 73 79 6e 70 72 6f 78 79 3a 00 52 65 71 75 69 72 65 6d 65 6e 74 73 3a 00 52 65 | nable.synproxy:.Requirements:.Re |
| 1129c0 | 73 65 72 76 65 64 20 50 6f 72 74 73 3a 20 41 73 73 75 6d 65 20 31 30 32 34 20 70 6f 72 74 73 20 | served.Ports:.Assume.1024.ports. |
| 1129e0 | 61 72 65 20 72 65 73 65 72 76 65 64 20 66 6f 72 20 77 65 6c 6c 2d 6b 6e 6f 77 6e 20 73 65 72 76 | are.reserved.for.well-known.serv |
| 112a00 | 69 63 65 73 20 61 6e 64 20 61 64 6d 69 6e 69 73 74 72 61 74 69 76 65 20 70 75 72 70 6f 73 65 73 | ices.and.administrative.purposes |
| 112a20 | 2e 00 52 65 73 65 74 00 52 65 73 65 74 20 4f 70 65 6e 56 50 4e 00 52 65 73 65 74 20 61 6c 6c 20 | ..Reset.Reset.OpenVPN.Reset.all. |
| 112a40 | 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 49 50 53 65 63 20 56 50 4e 20 73 65 73 73 69 6f 6e 73 2e | site-to-site.IPSec.VPN.sessions. |
| 112a60 | 20 49 74 20 74 65 72 6d 69 6e 61 74 65 73 20 61 6c 6c 20 61 63 74 69 76 65 20 63 68 69 6c 64 5f | .It.terminates.all.active.child_ |
| 112a80 | 73 61 20 61 6e 64 20 72 65 69 6e 69 74 69 61 74 65 73 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f | sa.and.reinitiates.the.connectio |
| 112aa0 | 6e 2e 00 52 65 73 65 74 20 61 6c 6c 20 74 75 6e 6e 65 6c 73 20 66 6f 72 20 61 20 67 69 76 65 6e | n..Reset.all.tunnels.for.a.given |
| 112ac0 | 20 70 65 65 72 2c 20 63 61 6e 20 73 70 65 63 69 66 79 20 74 75 6e 6e 65 6c 20 6f 72 20 76 74 69 | .peer,.can.specify.tunnel.or.vti |
| 112ae0 | 20 69 6e 74 65 72 66 61 63 65 2e 20 49 74 20 74 65 72 6d 69 6e 61 74 65 73 20 61 20 73 70 65 63 | .interface..It.terminates.a.spec |
| 112b00 | 69 66 69 63 20 63 68 69 6c 64 5f 73 61 20 61 6e 64 20 72 65 69 6e 69 74 69 61 74 65 73 20 74 68 | ific.child_sa.and.reinitiates.th |
| 112b20 | 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 52 65 73 65 74 20 63 6f 6d 6d 61 6e 64 73 00 52 65 73 | e.connection..Reset.commands.Res |
| 112b40 | 65 74 73 20 74 68 65 20 6c 6f 63 61 6c 20 44 4e 53 20 66 6f 72 77 61 72 64 69 6e 67 20 63 61 63 | ets.the.local.DNS.forwarding.cac |
| 112b60 | 68 65 20 64 61 74 61 62 61 73 65 2e 20 59 6f 75 20 63 61 6e 20 72 65 73 65 74 20 74 68 65 20 63 | he.database..You.can.reset.the.c |
| 112b80 | 61 63 68 65 20 66 6f 72 20 61 6c 6c 20 65 6e 74 72 69 65 73 20 6f 72 20 6f 6e 6c 79 20 66 6f 72 | ache.for.all.entries.or.only.for |
| 112ba0 | 20 65 6e 74 72 69 65 73 20 74 6f 20 61 20 73 70 65 63 69 66 69 63 20 64 6f 6d 61 69 6e 2e 00 52 | .entries.to.a.specific.domain..R |
| 112bc0 | 65 73 74 61 72 74 00 52 65 73 74 61 72 74 20 44 48 43 50 20 72 65 6c 61 79 20 73 65 72 76 69 63 | estart.Restart.DHCP.relay.servic |
| 112be0 | 65 00 52 65 73 74 61 72 74 20 44 48 43 50 76 36 20 72 65 6c 61 79 20 61 67 65 6e 74 20 69 6d 6d | e.Restart.DHCPv6.relay.agent.imm |
| 112c00 | 65 64 69 61 74 65 6c 79 2e 00 52 65 73 74 61 72 74 20 61 20 67 69 76 65 6e 20 63 6f 6e 74 61 69 | ediately..Restart.a.given.contai |
| 112c20 | 6e 65 72 00 52 65 73 74 61 72 74 20 6d 44 4e 53 20 72 65 70 65 61 74 65 72 20 73 65 72 76 69 63 | ner.Restart.mDNS.repeater.servic |
| 112c40 | 65 2e 00 52 65 73 74 61 72 74 20 74 68 65 20 44 48 43 50 20 73 65 72 76 65 72 00 52 65 73 74 61 | e..Restart.the.DHCP.server.Resta |
| 112c60 | 72 74 20 74 68 65 20 49 47 4d 50 20 70 72 6f 78 79 20 70 72 6f 63 65 73 73 2e 00 52 65 73 74 61 | rt.the.IGMP.proxy.process..Resta |
| 112c80 | 72 74 20 74 68 65 20 49 50 73 65 63 20 56 50 4e 20 70 72 6f 63 65 73 73 20 61 6e 64 20 72 65 2d | rt.the.IPsec.VPN.process.and.re- |
| 112ca0 | 65 73 74 61 62 6c 69 73 68 65 73 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 52 65 73 74 | establishes.the.connection..Rest |
| 112cc0 | 61 72 74 20 74 68 65 20 53 53 48 20 64 61 65 6d 6f 6e 20 70 72 6f 63 65 73 73 2c 20 74 68 65 20 | art.the.SSH.daemon.process,.the. |
| 112ce0 | 63 75 72 72 65 6e 74 20 73 65 73 73 69 6f 6e 20 69 73 20 6e 6f 74 20 61 66 66 65 63 74 65 64 2c | current.session.is.not.affected, |
| 112d00 | 20 6f 6e 6c 79 20 74 68 65 20 62 61 63 6b 67 72 6f 75 6e 64 20 64 61 65 6d 6f 6e 20 69 73 20 72 | .only.the.background.daemon.is.r |
| 112d20 | 65 73 74 61 72 74 65 64 2e 00 52 65 73 74 61 72 74 73 20 74 68 65 20 44 4e 53 20 72 65 63 75 72 | estarted..Restarts.the.DNS.recur |
| 112d40 | 73 6f 72 20 70 72 6f 63 65 73 73 2e 20 54 68 69 73 20 61 6c 73 6f 20 69 6e 76 61 6c 69 64 61 74 | sor.process..This.also.invalidat |
| 112d60 | 65 73 20 74 68 65 20 6c 6f 63 61 6c 20 44 4e 53 20 66 6f 72 77 61 72 64 69 6e 67 20 63 61 63 68 | es.the.local.DNS.forwarding.cach |
| 112d80 | 65 2e 00 52 65 73 74 61 72 74 73 20 74 68 65 20 73 65 72 76 69 63 65 2e 20 49 74 20 63 68 65 63 | e..Restarts.the.service..It.chec |
| 112da0 | 6b 73 20 69 66 20 74 68 65 20 53 75 72 69 63 61 74 61 20 73 65 72 76 69 63 65 20 69 73 20 61 63 | ks.if.the.Suricata.service.is.ac |
| 112dc0 | 74 69 76 65 20 62 65 66 6f 72 65 20 61 74 74 65 6d 70 74 69 6e 67 20 74 6f 20 72 65 73 74 61 72 | tive.before.attempting.to.restar |
| 112de0 | 74 20 69 74 2e 20 49 66 20 69 74 20 69 73 20 6e 6f 74 20 61 63 74 69 76 65 2c 20 61 20 6d 65 73 | t.it..If.it.is.not.active,.a.mes |
| 112e00 | 73 61 67 65 20 69 6e 64 69 63 61 74 65 73 20 74 68 61 74 20 74 68 65 20 73 65 72 76 69 63 65 20 | sage.indicates.that.the.service. |
| 112e20 | 69 73 20 6e 6f 74 20 63 6f 6e 66 69 67 75 72 65 64 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 | is.not.configured..This.command. |
| 112e40 | 69 73 20 75 73 65 64 20 77 68 65 6e 20 61 64 64 69 6e 67 20 6e 65 77 20 72 75 6c 65 73 20 6d 61 | is.used.when.adding.new.rules.ma |
| 112e60 | 6e 75 61 6c 6c 79 2e 00 52 65 73 75 6c 74 69 6e 67 20 69 6e 00 52 65 73 75 6c 74 73 20 69 6e 3a | nually..Resulting.in.Results.in: |
| 112e80 | 00 52 65 74 72 61 6e 73 6d 69 74 20 54 69 6d 65 72 00 52 65 74 72 69 65 76 65 20 63 75 72 72 65 | .Retransmit.Timer.Retrieve.curre |
| 112ea0 | 6e 74 20 73 74 61 74 69 73 74 69 63 73 20 6f 66 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 | nt.statistics.of.connection.trac |
| 112ec0 | 6b 69 6e 67 20 73 75 62 73 79 73 74 65 6d 2e 00 52 65 74 72 69 65 76 65 20 63 75 72 72 65 6e 74 | king.subsystem..Retrieve.current |
| 112ee0 | 20 73 74 61 74 75 73 20 6f 66 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 73 | .status.of.connection.tracking.s |
| 112f00 | 75 62 73 79 73 74 65 6d 2e 00 52 65 74 72 69 65 76 65 20 70 75 62 6c 69 63 20 6b 65 79 20 70 6f | ubsystem..Retrieve.public.key.po |
| 112f20 | 72 74 69 6f 6e 20 66 72 6f 6d 20 63 6f 6e 66 69 67 75 72 65 64 20 57 49 72 65 47 75 61 72 64 20 | rtion.from.configured.WIreGuard. |
| 112f40 | 69 6e 74 65 72 66 61 63 65 2e 00 52 65 76 65 72 73 65 2d 70 72 6f 78 79 00 52 6f 75 6e 64 20 52 | interface..Reverse-proxy.Round.R |
| 112f60 | 6f 62 69 6e 00 52 6f 75 74 65 20 41 67 67 72 65 67 61 74 69 6f 6e 20 43 6f 6e 66 69 67 75 72 61 | obin.Route.Aggregation.Configura |
| 112f80 | 74 69 6f 6e 00 52 6f 75 74 65 20 44 61 6d 70 65 6e 69 6e 67 00 52 6f 75 74 65 20 46 69 6c 74 65 | tion.Route.Dampening.Route.Filte |
| 112fa0 | 72 69 6e 67 00 52 6f 75 74 65 20 46 69 6c 74 65 72 69 6e 67 20 43 6f 6e 66 69 67 75 72 61 74 69 | ring.Route.Filtering.Configurati |
| 112fc0 | 6f 6e 00 52 6f 75 74 65 20 4d 61 70 00 52 6f 75 74 65 20 4d 61 70 20 50 6f 6c 69 63 79 00 52 6f | on.Route.Map.Route.Map.Policy.Ro |
| 112fe0 | 75 74 65 20 52 65 64 69 73 74 72 69 62 75 74 69 6f 6e 00 52 6f 75 74 65 20 52 65 66 6c 65 63 74 | ute.Redistribution.Route.Reflect |
| 113000 | 6f 72 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 52 6f 75 74 65 20 53 65 6c 65 63 74 69 6f 6e | or.Configuration.Route.Selection |
| 113020 | 00 52 6f 75 74 65 20 53 65 6c 65 63 74 69 6f 6e 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 52 | .Route.Selection.Configuration.R |
| 113040 | 6f 75 74 65 20 61 6e 64 20 52 6f 75 74 65 36 20 50 6f 6c 69 63 79 00 52 6f 75 74 65 20 64 61 6d | oute.and.Route6.Policy.Route.dam |
| 113060 | 70 65 6e 69 6e 67 20 77 69 63 68 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 32 | pening.wich.described.in.:rfc:`2 |
| 113080 | 34 33 39 60 20 65 6e 61 62 6c 65 73 20 79 6f 75 20 74 6f 20 69 64 65 6e 74 69 66 79 20 72 6f 75 | 439`.enables.you.to.identify.rou |
| 1130a0 | 74 65 73 20 74 68 61 74 20 72 65 70 65 61 74 65 64 6c 79 20 66 61 69 6c 20 61 6e 64 20 72 65 74 | tes.that.repeatedly.fail.and.ret |
| 1130c0 | 75 72 6e 2e 20 49 66 20 72 6f 75 74 65 20 64 61 6d 70 65 6e 69 6e 67 20 69 73 20 65 6e 61 62 6c | urn..If.route.dampening.is.enabl |
| 1130e0 | 65 64 2c 20 61 6e 20 75 6e 73 74 61 62 6c 65 20 72 6f 75 74 65 20 61 63 63 75 6d 75 6c 61 74 65 | ed,.an.unstable.route.accumulate |
| 113100 | 73 20 70 65 6e 61 6c 74 69 65 73 20 65 61 63 68 20 74 69 6d 65 20 74 68 65 20 72 6f 75 74 65 20 | s.penalties.each.time.the.route. |
| 113120 | 66 61 69 6c 73 20 61 6e 64 20 72 65 74 75 72 6e 73 2e 20 49 66 20 74 68 65 20 61 63 63 75 6d 75 | fails.and.returns..If.the.accumu |
| 113140 | 6c 61 74 65 64 20 70 65 6e 61 6c 74 69 65 73 20 65 78 63 65 65 64 20 61 20 74 68 72 65 73 68 6f | lated.penalties.exceed.a.thresho |
| 113160 | 6c 64 2c 20 74 68 65 20 72 6f 75 74 65 20 69 73 20 6e 6f 20 6c 6f 6e 67 65 72 20 61 64 76 65 72 | ld,.the.route.is.no.longer.adver |
| 113180 | 74 69 73 65 64 2e 20 54 68 69 73 20 69 73 20 72 6f 75 74 65 20 73 75 70 70 72 65 73 73 69 6f 6e | tised..This.is.route.suppression |
| 1131a0 | 2e 20 52 6f 75 74 65 73 20 74 68 61 74 20 68 61 76 65 20 62 65 65 6e 20 73 75 70 70 72 65 73 73 | ..Routes.that.have.been.suppress |
| 1131c0 | 65 64 20 61 72 65 20 72 65 2d 65 6e 74 65 72 65 64 20 69 6e 74 6f 20 74 68 65 20 72 6f 75 74 69 | ed.are.re-entered.into.the.routi |
| 1131e0 | 6e 67 20 74 61 62 6c 65 20 6f 6e 6c 79 20 77 68 65 6e 20 74 68 65 20 61 6d 6f 75 6e 74 20 6f 66 | ng.table.only.when.the.amount.of |
| 113200 | 20 74 68 65 69 72 20 70 65 6e 61 6c 74 79 20 66 61 6c 6c 73 20 62 65 6c 6f 77 20 61 20 74 68 72 | .their.penalty.falls.below.a.thr |
| 113220 | 65 73 68 6f 6c 64 2e 00 52 6f 75 74 65 20 66 69 6c 74 65 72 20 63 61 6e 20 62 65 20 61 70 70 6c | eshold..Route.filter.can.be.appl |
| 113240 | 69 65 64 20 75 73 69 6e 67 20 61 20 72 6f 75 74 65 2d 6d 61 70 3a 00 52 6f 75 74 65 20 6d 61 70 | ied.using.a.route-map:.Route.map |
| 113260 | 20 69 73 20 61 20 70 6f 77 65 72 66 75 6c 6c 20 63 6f 6d 6d 61 6e 64 2c 20 74 68 61 74 20 67 69 | .is.a.powerfull.command,.that.gi |
| 113280 | 76 65 73 20 6e 65 74 77 6f 72 6b 20 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 73 20 61 20 76 65 72 | ves.network.administrators.a.ver |
| 1132a0 | 79 20 75 73 65 66 75 6c 20 61 6e 64 20 66 6c 65 78 69 62 6c 65 20 74 6f 6f 6c 20 66 6f 72 20 74 | y.useful.and.flexible.tool.for.t |
| 1132c0 | 72 61 66 66 69 63 20 6d 61 6e 69 70 75 6c 61 74 69 6f 6e 2e 00 52 6f 75 74 65 20 6d 61 70 73 20 | raffic.manipulation..Route.maps. |
| 1132e0 | 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 74 6f 20 6d 61 74 63 68 20 61 20 73 70 65 | can.be.configured.to.match.a.spe |
| 113300 | 63 69 66 69 63 20 52 50 4b 49 20 76 61 6c 69 64 61 74 69 6f 6e 20 73 74 61 74 65 2e 20 54 68 69 | cific.RPKI.validation.state..Thi |
| 113320 | 73 20 61 6c 6c 6f 77 73 20 74 68 65 20 63 72 65 61 74 69 6f 6e 20 6f 66 20 6c 6f 63 61 6c 20 70 | s.allows.the.creation.of.local.p |
| 113340 | 6f 6c 69 63 69 65 73 2c 20 77 68 69 63 68 20 68 61 6e 64 6c 65 20 42 47 50 20 72 6f 75 74 65 73 | olicies,.which.handle.BGP.routes |
| 113360 | 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 6f 75 74 63 6f 6d 65 20 6f 66 20 74 68 65 20 50 72 65 | .based.on.the.outcome.of.the.Pre |
| 113380 | 66 69 78 20 4f 72 69 67 69 6e 20 56 61 6c 69 64 61 74 69 6f 6e 2e 00 52 6f 75 74 65 20 6d 65 74 | fix.Origin.Validation..Route.met |
| 1133a0 | 72 69 63 00 52 6f 75 74 65 20 74 61 67 20 74 6f 20 6d 61 74 63 68 2e 00 52 6f 75 74 65 72 20 41 | ric.Route.tag.to.match..Router.A |
| 1133c0 | 64 76 65 72 74 69 73 65 6d 65 6e 74 73 00 52 6f 75 74 65 72 20 4c 69 66 65 74 69 6d 65 00 52 6f | dvertisements.Router.Lifetime.Ro |
| 1133e0 | 75 74 65 72 20 72 65 63 65 69 76 65 73 20 44 48 43 50 20 63 6c 69 65 6e 74 20 72 65 71 75 65 73 | uter.receives.DHCP.client.reques |
| 113400 | 74 73 20 6f 6e 20 60 60 65 74 68 31 60 60 20 61 6e 64 20 72 65 6c 61 79 73 20 74 68 65 6d 20 74 | ts.on.``eth1``.and.relays.them.t |
| 113420 | 6f 20 74 68 65 20 73 65 72 76 65 72 20 61 74 20 31 30 2e 30 2e 31 2e 34 20 6f 6e 20 60 60 65 74 | o.the.server.at.10.0.1.4.on.``et |
| 113440 | 68 32 60 60 2e 00 52 6f 75 74 65 73 20 65 78 70 6f 72 74 65 64 20 66 72 6f 6d 20 61 20 75 6e 69 | h2``..Routes.exported.from.a.uni |
| 113460 | 63 61 73 74 20 56 52 46 20 74 6f 20 74 68 65 20 56 50 4e 20 52 49 42 20 6d 75 73 74 20 62 65 20 | cast.VRF.to.the.VPN.RIB.must.be. |
| 113480 | 61 75 67 6d 65 6e 74 65 64 20 62 79 20 74 77 6f 20 70 61 72 61 6d 65 74 65 72 73 3a 00 52 6f 75 | augmented.by.two.parameters:.Rou |
| 1134a0 | 74 65 73 20 6f 6e 20 4e 6f 64 65 20 32 3a 00 52 6f 75 74 65 73 20 74 68 61 74 20 61 72 65 20 73 | tes.on.Node.2:.Routes.that.are.s |
| 1134c0 | 65 6e 74 20 66 72 6f 6d 20 70 72 6f 76 69 64 65 72 2c 20 72 73 2d 73 65 72 76 65 72 2c 20 6f 72 | ent.from.provider,.rs-server,.or |
| 1134e0 | 20 74 68 65 20 70 65 65 72 20 6c 6f 63 61 6c 2d 72 6f 6c 65 20 28 6f 72 20 69 66 20 72 65 63 65 | .the.peer.local-role.(or.if.rece |
| 113500 | 69 76 65 64 20 62 79 20 63 75 73 74 6f 6d 65 72 2c 20 72 73 2d 63 6c 69 65 6e 74 2c 20 6f 72 20 | ived.by.customer,.rs-client,.or. |
| 113520 | 74 68 65 20 70 65 65 72 20 6c 6f 63 61 6c 2d 72 6f 6c 65 29 20 77 69 6c 6c 20 62 65 20 6d 61 72 | the.peer.local-role).will.be.mar |
| 113540 | 6b 65 64 20 77 69 74 68 20 61 20 6e 65 77 20 4f 6e 6c 79 20 74 6f 20 43 75 73 74 6f 6d 65 72 20 | ked.with.a.new.Only.to.Customer. |
| 113560 | 28 4f 54 43 29 20 61 74 74 72 69 62 75 74 65 2e 00 52 6f 75 74 65 73 20 77 69 74 68 20 61 20 64 | (OTC).attribute..Routes.with.a.d |
| 113580 | 69 73 74 61 6e 63 65 20 6f 66 20 32 35 35 20 61 72 65 20 65 66 66 65 63 74 69 76 65 6c 79 20 64 | istance.of.255.are.effectively.d |
| 1135a0 | 69 73 61 62 6c 65 64 20 61 6e 64 20 6e 6f 74 20 69 6e 73 74 61 6c 6c 65 64 20 69 6e 74 6f 20 74 | isabled.and.not.installed.into.t |
| 1135c0 | 68 65 20 6b 65 72 6e 65 6c 2e 00 52 6f 75 74 65 73 20 77 69 74 68 20 74 68 69 73 20 61 74 74 72 | he.kernel..Routes.with.this.attr |
| 1135e0 | 69 62 75 74 65 20 63 61 6e 20 6f 6e 6c 79 20 62 65 20 73 65 6e 74 20 74 6f 20 79 6f 75 72 20 6e | ibute.can.only.be.sent.to.your.n |
| 113600 | 65 69 67 68 62 6f 72 20 69 66 20 79 6f 75 72 20 6c 6f 63 61 6c 2d 72 6f 6c 65 20 69 73 20 70 72 | eighbor.if.your.local-role.is.pr |
| 113620 | 6f 76 69 64 65 72 20 6f 72 20 72 73 2d 73 65 72 76 65 72 2e 20 52 6f 75 74 65 73 20 77 69 74 68 | ovider.or.rs-server..Routes.with |
| 113640 | 20 74 68 69 73 20 61 74 74 72 69 62 75 74 65 20 63 61 6e 20 62 65 20 72 65 63 65 69 76 65 64 20 | .this.attribute.can.be.received. |
| 113660 | 6f 6e 6c 79 20 69 66 20 79 6f 75 72 20 6c 6f 63 61 6c 2d 72 6f 6c 65 20 69 73 20 63 75 73 74 6f | only.if.your.local-role.is.custo |
| 113680 | 6d 65 72 20 6f 72 20 72 73 2d 63 6c 69 65 6e 74 2e 00 52 6f 75 74 69 6e 65 00 52 6f 75 74 69 6e | mer.or.rs-client..Routine.Routin |
| 1136a0 | 67 00 52 6f 75 74 69 6e 67 20 74 61 62 6c 65 73 20 74 68 61 74 20 77 69 6c 6c 20 62 65 20 75 73 | g.Routing.tables.that.will.be.us |
| 1136c0 | 65 64 20 69 6e 20 74 68 69 73 20 65 78 61 6d 70 6c 65 20 61 72 65 3a 00 52 75 6c 65 20 31 30 20 | ed.in.this.example.are:.Rule.10. |
| 1136e0 | 6d 61 74 63 68 65 73 20 72 65 71 75 65 73 74 73 20 77 69 74 68 20 74 68 65 20 64 6f 6d 61 69 6e | matches.requests.with.the.domain |
| 113700 | 20 6e 61 6d 65 20 60 60 6e 6f 64 65 31 2e 65 78 61 6d 70 6c 65 2e 63 6f 6d 60 60 20 66 6f 72 77 | .name.``node1.example.com``.forw |
| 113720 | 61 72 64 73 20 74 6f 20 74 68 65 20 62 61 63 6b 65 6e 64 20 60 60 62 6b 2d 61 70 69 2d 30 31 60 | ards.to.the.backend.``bk-api-01` |
| 113740 | 60 00 52 75 6c 65 20 31 30 20 6d 61 74 63 68 65 73 20 72 65 71 75 65 73 74 73 20 77 69 74 68 20 | `.Rule.10.matches.requests.with. |
| 113760 | 74 68 65 20 65 78 61 63 74 20 55 52 4c 20 70 61 74 68 20 60 60 2f 2e 77 65 6c 6c 2d 6b 6e 6f 77 | the.exact.URL.path.``/.well-know |
| 113780 | 6e 2f 78 78 78 60 60 20 61 6e 64 20 72 65 64 69 72 65 63 74 73 20 74 6f 20 6c 6f 63 61 74 69 6f | n/xxx``.and.redirects.to.locatio |
| 1137a0 | 6e 20 60 60 2f 63 65 72 74 73 2f 60 60 2e 00 52 75 6c 65 20 31 31 30 20 69 73 20 68 69 74 2c 20 | n.``/certs/``..Rule.110.is.hit,. |
| 1137c0 | 73 6f 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 69 73 20 61 63 63 65 70 74 65 64 2e 00 52 75 6c 65 20 | so.connection.is.accepted..Rule. |
| 1137e0 | 32 30 20 6d 61 74 63 68 65 73 20 72 65 71 75 65 73 74 73 20 77 69 74 68 20 55 52 4c 20 70 61 74 | 20.matches.requests.with.URL.pat |
| 113800 | 68 73 20 65 6e 64 69 6e 67 20 69 6e 20 60 60 2f 6d 61 69 6c 60 60 20 6f 72 20 65 78 61 63 74 20 | hs.ending.in.``/mail``.or.exact. |
| 113820 | 70 61 74 68 20 60 60 2f 65 6d 61 69 6c 2f 62 61 72 60 60 20 72 65 64 69 72 65 63 74 20 74 6f 20 | path.``/email/bar``.redirect.to. |
| 113840 | 6c 6f 63 61 74 69 6f 6e 20 60 60 2f 70 6f 73 74 66 69 78 2f 60 60 2e 00 52 75 6c 65 20 32 30 20 | location.``/postfix/``..Rule.20. |
| 113860 | 6d 61 74 63 68 65 73 20 72 65 71 75 65 73 74 73 20 77 69 74 68 20 74 68 65 20 64 6f 6d 61 69 6e | matches.requests.with.the.domain |
| 113880 | 20 6e 61 6d 65 20 60 60 6e 6f 64 65 32 2e 65 78 61 6d 70 6c 65 2e 63 6f 6d 60 60 20 66 6f 72 77 | .name.``node2.example.com``.forw |
| 1138a0 | 61 72 64 73 20 74 6f 20 74 68 65 20 62 61 63 6b 65 6e 64 20 60 60 62 6b 2d 61 70 69 2d 30 32 60 | ards.to.the.backend.``bk-api-02` |
| 1138c0 | 60 00 52 75 6c 65 20 53 74 61 74 75 73 00 52 75 6c 65 2d 53 65 74 73 00 52 75 6c 65 2d 73 65 74 | `.Rule.Status.Rule-Sets.Rule-set |
| 1138e0 | 20 6f 76 65 72 76 69 65 77 00 52 75 6c 65 73 00 52 75 6c 65 73 20 61 6c 6c 6f 77 20 74 6f 20 63 | .overview.Rules.Rules.allow.to.c |
| 113900 | 6f 6e 74 72 6f 6c 20 61 6e 64 20 72 6f 75 74 65 20 69 6e 63 6f 6d 69 6e 67 20 74 72 61 66 66 69 | ontrol.and.route.incoming.traffi |
| 113920 | 63 20 74 6f 20 73 70 65 63 69 66 69 63 20 62 61 63 6b 65 6e 64 20 62 61 73 65 64 20 6f 6e 20 70 | c.to.specific.backend.based.on.p |
| 113940 | 72 65 64 65 66 69 6e 65 64 20 63 6f 6e 64 69 74 69 6f 6e 73 2e 20 52 75 6c 65 73 20 61 6c 6c 6f | redefined.conditions..Rules.allo |
| 113960 | 77 20 74 6f 20 64 65 66 69 6e 65 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 20 61 6e | w.to.define.matching.criteria.an |
| 113980 | 64 20 70 65 72 66 6f 72 6d 20 61 63 74 69 6f 6e 20 61 63 63 6f 72 64 69 6e 67 6c 79 2e 00 52 75 | d.perform.action.accordingly..Ru |
| 1139a0 | 6c 65 73 20 77 69 6c 6c 20 62 65 20 63 72 65 61 74 65 64 20 66 6f 72 20 62 6f 74 68 20 3a 72 65 | les.will.be.created.for.both.:re |
| 1139c0 | 66 3a 60 73 6f 75 72 63 65 2d 6e 61 74 60 20 61 6e 64 20 3a 72 65 66 3a 60 64 65 73 74 69 6e 61 | f:`source-nat`.and.:ref:`destina |
| 1139e0 | 74 69 6f 6e 2d 6e 61 74 60 2e 00 52 75 6e 6e 69 6e 67 20 42 65 68 69 6e 64 20 4e 41 54 00 53 4e | tion-nat`..Running.Behind.NAT.SN |
| 113a00 | 41 54 00 53 4e 41 54 36 34 00 53 4e 41 54 36 36 00 53 4e 4d 50 00 53 4e 4d 50 20 45 78 74 65 6e | AT.SNAT64.SNAT66.SNMP.SNMP.Exten |
| 113a20 | 73 69 6f 6e 73 00 53 4e 4d 50 20 50 72 6f 74 6f 63 6f 6c 20 56 65 72 73 69 6f 6e 73 00 53 4e 4d | sions.SNMP.Protocol.Versions.SNM |
| 113a40 | 50 20 63 61 6e 20 77 6f 72 6b 20 73 79 6e 63 68 72 6f 6e 6f 75 73 6c 79 20 6f 72 20 61 73 79 6e | P.can.work.synchronously.or.asyn |
| 113a60 | 63 68 72 6f 6e 6f 75 73 6c 79 2e 20 49 6e 20 73 79 6e 63 68 72 6f 6e 6f 75 73 20 63 6f 6d 6d 75 | chronously..In.synchronous.commu |
| 113a80 | 6e 69 63 61 74 69 6f 6e 2c 20 74 68 65 20 6d 6f 6e 69 74 6f 72 69 6e 67 20 73 79 73 74 65 6d 20 | nication,.the.monitoring.system. |
| 113aa0 | 71 75 65 72 69 65 73 20 74 68 65 20 72 6f 75 74 65 72 20 70 65 72 69 6f 64 69 63 61 6c 6c 79 2e | queries.the.router.periodically. |
| 113ac0 | 20 49 6e 20 61 73 79 6e 63 68 72 6f 6e 6f 75 73 2c 20 74 68 65 20 72 6f 75 74 65 72 20 73 65 6e | .In.asynchronous,.the.router.sen |
| 113ae0 | 64 73 20 6e 6f 74 69 66 69 63 61 74 69 6f 6e 20 74 6f 20 74 68 65 20 22 74 72 61 70 22 20 28 74 | ds.notification.to.the."trap".(t |
| 113b00 | 68 65 20 6d 6f 6e 69 74 6f 72 69 6e 67 20 68 6f 73 74 29 2e 00 53 4e 4d 50 20 69 73 20 61 20 63 | he.monitoring.host)..SNMP.is.a.c |
| 113b20 | 6f 6d 70 6f 6e 65 6e 74 20 6f 66 20 74 68 65 20 49 6e 74 65 72 6e 65 74 20 50 72 6f 74 6f 63 6f | omponent.of.the.Internet.Protoco |
| 113b40 | 6c 20 53 75 69 74 65 20 61 73 20 64 65 66 69 6e 65 64 20 62 79 20 74 68 65 20 49 6e 74 65 72 6e | l.Suite.as.defined.by.the.Intern |
| 113b60 | 65 74 20 45 6e 67 69 6e 65 65 72 69 6e 67 20 54 61 73 6b 20 46 6f 72 63 65 20 28 49 45 54 46 29 | et.Engineering.Task.Force.(IETF) |
| 113b80 | 2e 20 49 74 20 63 6f 6e 73 69 73 74 73 20 6f 66 20 61 20 73 65 74 20 6f 66 20 73 74 61 6e 64 61 | ..It.consists.of.a.set.of.standa |
| 113ba0 | 72 64 73 20 66 6f 72 20 6e 65 74 77 6f 72 6b 20 6d 61 6e 61 67 65 6d 65 6e 74 2c 20 69 6e 63 6c | rds.for.network.management,.incl |
| 113bc0 | 75 64 69 6e 67 20 61 6e 20 61 70 70 6c 69 63 61 74 69 6f 6e 20 6c 61 79 65 72 20 70 72 6f 74 6f | uding.an.application.layer.proto |
| 113be0 | 63 6f 6c 2c 20 61 20 64 61 74 61 62 61 73 65 20 73 63 68 65 6d 61 2c 20 61 6e 64 20 61 20 73 65 | col,.a.database.schema,.and.a.se |
| 113c00 | 74 20 6f 66 20 64 61 74 61 20 6f 62 6a 65 63 74 73 2e 00 53 4e 4d 50 20 69 73 20 77 69 64 65 6c | t.of.data.objects..SNMP.is.widel |
| 113c20 | 79 20 75 73 65 64 20 69 6e 20 6e 65 74 77 6f 72 6b 20 6d 61 6e 61 67 65 6d 65 6e 74 20 66 6f 72 | y.used.in.network.management.for |
| 113c40 | 20 6e 65 74 77 6f 72 6b 20 6d 6f 6e 69 74 6f 72 69 6e 67 2e 20 53 4e 4d 50 20 65 78 70 6f 73 65 | .network.monitoring..SNMP.expose |
| 113c60 | 73 20 6d 61 6e 61 67 65 6d 65 6e 74 20 64 61 74 61 20 69 6e 20 74 68 65 20 66 6f 72 6d 20 6f 66 | s.management.data.in.the.form.of |
| 113c80 | 20 76 61 72 69 61 62 6c 65 73 20 6f 6e 20 74 68 65 20 6d 61 6e 61 67 65 64 20 73 79 73 74 65 6d | .variables.on.the.managed.system |
| 113ca0 | 73 20 6f 72 67 61 6e 69 7a 65 64 20 69 6e 20 61 20 6d 61 6e 61 67 65 6d 65 6e 74 20 69 6e 66 6f | s.organized.in.a.management.info |
| 113cc0 | 72 6d 61 74 69 6f 6e 20 62 61 73 65 20 28 4d 49 42 5f 29 20 77 68 69 63 68 20 64 65 73 63 72 69 | rmation.base.(MIB_).which.descri |
| 113ce0 | 62 65 20 74 68 65 20 73 79 73 74 65 6d 20 73 74 61 74 75 73 20 61 6e 64 20 63 6f 6e 66 69 67 75 | be.the.system.status.and.configu |
| 113d00 | 72 61 74 69 6f 6e 2e 20 54 68 65 73 65 20 76 61 72 69 61 62 6c 65 73 20 63 61 6e 20 74 68 65 6e | ration..These.variables.can.then |
| 113d20 | 20 62 65 20 72 65 6d 6f 74 65 6c 79 20 71 75 65 72 69 65 64 20 28 61 6e 64 2c 20 69 6e 20 73 6f | .be.remotely.queried.(and,.in.so |
| 113d40 | 6d 65 20 63 69 72 63 75 6d 73 74 61 6e 63 65 73 2c 20 6d 61 6e 69 70 75 6c 61 74 65 64 29 20 62 | me.circumstances,.manipulated).b |
| 113d60 | 79 20 6d 61 6e 61 67 69 6e 67 20 61 70 70 6c 69 63 61 74 69 6f 6e 73 2e 00 53 4e 4d 50 76 32 00 | y.managing.applications..SNMPv2. |
| 113d80 | 53 4e 4d 50 76 32 20 64 6f 65 73 20 6e 6f 74 20 73 75 70 70 6f 72 74 20 61 6e 79 20 61 75 74 68 | SNMPv2.does.not.support.any.auth |
| 113da0 | 65 6e 74 69 63 61 74 69 6f 6e 20 6d 65 63 68 61 6e 69 73 6d 73 2c 20 6f 74 68 65 72 20 74 68 61 | entication.mechanisms,.other.tha |
| 113dc0 | 6e 20 63 6c 69 65 6e 74 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 2c 20 73 6f 20 79 6f 75 20 | n.client.source.address,.so.you. |
| 113de0 | 73 68 6f 75 6c 64 20 73 70 65 63 69 66 79 20 61 64 64 72 65 73 73 65 73 20 6f 66 20 63 6c 69 65 | should.specify.addresses.of.clie |
| 113e00 | 6e 74 73 20 61 6c 6c 6f 77 65 64 20 74 6f 20 6d 6f 6e 69 74 6f 72 20 74 68 65 20 72 6f 75 74 65 | nts.allowed.to.monitor.the.route |
| 113e20 | 72 2e 20 4e 6f 74 65 20 74 68 61 74 20 53 4e 4d 50 76 32 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 | r..Note.that.SNMPv2.also.support |
| 113e40 | 73 20 6e 6f 20 65 6e 63 72 79 70 74 69 6f 6e 20 61 6e 64 20 61 6c 77 61 79 73 20 73 65 6e 64 73 | s.no.encryption.and.always.sends |
| 113e60 | 20 64 61 74 61 20 69 6e 20 70 6c 61 69 6e 20 74 65 78 74 2e 00 53 4e 4d 50 76 32 20 69 73 20 74 | .data.in.plain.text..SNMPv2.is.t |
| 113e80 | 68 65 20 6f 72 69 67 69 6e 61 6c 20 61 6e 64 20 6d 6f 73 74 20 63 6f 6d 6d 6f 6e 6c 79 20 75 73 | he.original.and.most.commonly.us |
| 113ea0 | 65 64 20 76 65 72 73 69 6f 6e 2e 20 46 6f 72 20 61 75 74 68 6f 72 69 7a 69 6e 67 20 63 6c 69 65 | ed.version..For.authorizing.clie |
| 113ec0 | 6e 74 73 2c 20 53 4e 4d 50 20 75 73 65 73 20 74 68 65 20 63 6f 6e 63 65 70 74 20 6f 66 20 63 6f | nts,.SNMP.uses.the.concept.of.co |
| 113ee0 | 6d 6d 75 6e 69 74 69 65 73 2e 20 43 6f 6d 6d 75 6e 69 74 69 65 73 20 6d 61 79 20 68 61 76 65 20 | mmunities..Communities.may.have. |
| 113f00 | 61 75 74 68 6f 72 69 7a 61 74 69 6f 6e 20 73 65 74 20 74 6f 20 72 65 61 64 20 6f 6e 6c 79 20 28 | authorization.set.to.read.only.( |
| 113f20 | 74 68 69 73 20 69 73 20 6d 6f 73 74 20 63 6f 6d 6d 6f 6e 29 20 6f 72 20 74 6f 20 72 65 61 64 20 | this.is.most.common).or.to.read. |
| 113f40 | 61 6e 64 20 77 72 69 74 65 20 28 74 68 69 73 20 6f 70 74 69 6f 6e 20 69 73 20 6e 6f 74 20 61 63 | and.write.(this.option.is.not.ac |
| 113f60 | 74 69 76 65 6c 79 20 75 73 65 64 20 69 6e 20 56 79 4f 53 29 2e 00 53 4e 4d 50 76 33 00 53 4e 4d | tively.used.in.VyOS)..SNMPv3.SNM |
| 113f80 | 50 76 33 20 28 76 65 72 73 69 6f 6e 20 33 20 6f 66 20 74 68 65 20 53 4e 4d 50 20 70 72 6f 74 6f | Pv3.(version.3.of.the.SNMP.proto |
| 113fa0 | 63 6f 6c 29 20 69 6e 74 72 6f 64 75 63 65 64 20 61 20 77 68 6f 6c 65 20 73 6c 65 77 20 6f 66 20 | col).introduced.a.whole.slew.of. |
| 113fc0 | 6e 65 77 20 73 65 63 75 72 69 74 79 20 72 65 6c 61 74 65 64 20 66 65 61 74 75 72 65 73 20 74 68 | new.security.related.features.th |
| 113fe0 | 61 74 20 68 61 76 65 20 62 65 65 6e 20 6d 69 73 73 69 6e 67 20 66 72 6f 6d 20 74 68 65 20 70 72 | at.have.been.missing.from.the.pr |
| 114000 | 65 76 69 6f 75 73 20 76 65 72 73 69 6f 6e 73 2e 20 53 65 63 75 72 69 74 79 20 77 61 73 20 6f 6e | evious.versions..Security.was.on |
| 114020 | 65 20 6f 66 20 74 68 65 20 62 69 67 67 65 73 74 20 77 65 61 6b 6e 65 73 73 20 6f 66 20 53 4e 4d | e.of.the.biggest.weakness.of.SNM |
| 114040 | 50 20 75 6e 74 69 6c 20 76 33 2e 20 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 69 6e 20 53 4e | P.until.v3..Authentication.in.SN |
| 114060 | 4d 50 20 56 65 72 73 69 6f 6e 73 20 31 20 61 6e 64 20 32 20 61 6d 6f 75 6e 74 73 20 74 6f 20 6e | MP.Versions.1.and.2.amounts.to.n |
| 114080 | 6f 74 68 69 6e 67 20 6d 6f 72 65 20 74 68 61 6e 20 61 20 70 61 73 73 77 6f 72 64 20 28 63 6f 6d | othing.more.than.a.password.(com |
| 1140a0 | 6d 75 6e 69 74 79 20 73 74 72 69 6e 67 29 20 73 65 6e 74 20 69 6e 20 63 6c 65 61 72 20 74 65 78 | munity.string).sent.in.clear.tex |
| 1140c0 | 74 20 62 65 74 77 65 65 6e 20 61 20 6d 61 6e 61 67 65 72 20 61 6e 64 20 61 67 65 6e 74 2e 20 45 | t.between.a.manager.and.agent..E |
| 1140e0 | 61 63 68 20 53 4e 4d 50 76 33 20 6d 65 73 73 61 67 65 20 63 6f 6e 74 61 69 6e 73 20 73 65 63 75 | ach.SNMPv3.message.contains.secu |
| 114100 | 72 69 74 79 20 70 61 72 61 6d 65 74 65 72 73 20 77 68 69 63 68 20 61 72 65 20 65 6e 63 6f 64 65 | rity.parameters.which.are.encode |
| 114120 | 64 20 61 73 20 61 6e 20 6f 63 74 65 74 20 73 74 72 69 6e 67 2e 20 54 68 65 20 6d 65 61 6e 69 6e | d.as.an.octet.string..The.meanin |
| 114140 | 67 20 6f 66 20 74 68 65 73 65 20 73 65 63 75 72 69 74 79 20 70 61 72 61 6d 65 74 65 72 73 20 64 | g.of.these.security.parameters.d |
| 114160 | 65 70 65 6e 64 73 20 6f 6e 20 74 68 65 20 73 65 63 75 72 69 74 79 20 6d 6f 64 65 6c 20 62 65 69 | epends.on.the.security.model.bei |
| 114180 | 6e 67 20 75 73 65 64 2e 00 53 50 41 4e 20 70 6f 72 74 20 6d 69 72 72 6f 72 69 6e 67 20 63 61 6e | ng.used..SPAN.port.mirroring.can |
| 1141a0 | 20 63 6f 70 79 20 74 68 65 20 69 6e 62 6f 75 6e 64 2f 6f 75 74 62 6f 75 6e 64 20 74 72 61 66 66 | .copy.the.inbound/outbound.traff |
| 1141c0 | 69 63 20 6f 66 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 74 68 65 20 73 70 65 63 69 | ic.of.the.interface.to.the.speci |
| 1141e0 | 66 69 65 64 20 69 6e 74 65 72 66 61 63 65 2c 20 75 73 75 61 6c 6c 79 20 74 68 65 20 69 6e 74 65 | fied.interface,.usually.the.inte |
| 114200 | 72 66 61 63 65 20 63 61 6e 20 62 65 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 73 6f 6d 65 20 73 | rface.can.be.connected.to.some.s |
| 114220 | 70 65 63 69 61 6c 20 65 71 75 69 70 6d 65 6e 74 2c 20 73 75 63 68 20 61 73 20 61 20 62 65 68 61 | pecial.equipment,.such.as.a.beha |
| 114240 | 76 69 6f 72 20 63 6f 6e 74 72 6f 6c 20 73 79 73 74 65 6d 2c 20 69 6e 74 72 75 73 69 6f 6e 20 64 | vior.control.system,.intrusion.d |
| 114260 | 65 74 65 63 74 69 6f 6e 20 73 79 73 74 65 6d 20 6f 72 20 74 72 61 66 66 69 63 20 63 6f 6c 6c 65 | etection.system.or.traffic.colle |
| 114280 | 63 74 6f 72 2c 20 61 6e 64 20 63 61 6e 20 63 6f 70 79 20 61 6c 6c 20 72 65 6c 61 74 65 64 20 74 | ctor,.and.can.copy.all.related.t |
| 1142a0 | 72 61 66 66 69 63 20 66 72 6f 6d 20 74 68 69 73 20 70 6f 72 74 2e 20 54 68 65 20 62 65 6e 65 66 | raffic.from.this.port..The.benef |
| 1142c0 | 69 74 20 6f 66 20 6d 69 72 72 6f 72 69 6e 67 20 74 68 65 20 74 72 61 66 66 69 63 20 69 73 20 74 | it.of.mirroring.the.traffic.is.t |
| 1142e0 | 68 61 74 20 74 68 65 20 61 70 70 6c 69 63 61 74 69 6f 6e 20 69 73 20 69 73 6f 6c 61 74 65 64 20 | hat.the.application.is.isolated. |
| 114300 | 66 72 6f 6d 20 74 68 65 20 73 6f 75 72 63 65 20 74 72 61 66 66 69 63 20 61 6e 64 20 73 6f 20 61 | from.the.source.traffic.and.so.a |
| 114320 | 70 70 6c 69 63 61 74 69 6f 6e 20 70 72 6f 63 65 73 73 69 6e 67 20 64 6f 65 73 20 6e 6f 74 20 61 | pplication.processing.does.not.a |
| 114340 | 66 66 65 63 74 20 74 68 65 20 74 72 61 66 66 69 63 20 6f 72 20 74 68 65 20 73 79 73 74 65 6d 20 | ffect.the.traffic.or.the.system. |
| 114360 | 70 65 72 66 6f 72 6d 61 6e 63 65 2e 00 53 50 41 4e 20 70 6f 72 74 20 6d 69 72 72 6f 72 69 6e 67 | performance..SPAN.port.mirroring |
| 114380 | 20 63 61 6e 20 63 6f 70 79 20 74 68 65 20 69 6e 62 6f 75 6e 64 2f 6f 75 74 62 6f 75 6e 64 20 74 | .can.copy.the.inbound/outbound.t |
| 1143a0 | 72 61 66 66 69 63 20 6f 66 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 74 68 65 20 73 | raffic.of.the.interface.to.the.s |
| 1143c0 | 70 65 63 69 66 69 65 64 20 69 6e 74 65 72 66 61 63 65 2c 20 75 73 75 61 6c 6c 79 20 74 68 65 20 | pecified.interface,.usually.the. |
| 1143e0 | 69 6e 74 65 72 66 61 63 65 20 63 61 6e 20 62 65 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 73 6f | interface.can.be.connected.to.so |
| 114400 | 6d 65 20 73 70 65 63 69 61 6c 20 65 71 75 69 70 6d 65 6e 74 2c 20 73 75 63 68 20 61 73 20 62 65 | me.special.equipment,.such.as.be |
| 114420 | 68 61 76 69 6f 72 20 63 6f 6e 74 72 6f 6c 20 73 79 73 74 65 6d 2c 20 69 6e 74 72 75 73 69 6f 6e | havior.control.system,.intrusion |
| 114440 | 20 64 65 74 65 63 74 69 6f 6e 20 73 79 73 74 65 6d 20 61 6e 64 20 74 72 61 66 66 69 63 20 63 6f | .detection.system.and.traffic.co |
| 114460 | 6c 6c 65 63 74 6f 72 2c 20 61 6e 64 20 63 61 6e 20 63 6f 70 79 20 61 6c 6c 20 72 65 6c 61 74 65 | llector,.and.can.copy.all.relate |
| 114480 | 64 20 74 72 61 66 66 69 63 20 66 72 6f 6d 20 74 68 69 73 20 70 6f 72 74 2e 20 54 68 65 20 62 65 | d.traffic.from.this.port..The.be |
| 1144a0 | 6e 65 66 69 74 20 6f 66 20 6d 69 72 72 6f 72 69 6e 67 20 74 68 65 20 74 72 61 66 66 69 63 20 69 | nefit.of.mirroring.the.traffic.i |
| 1144c0 | 73 20 74 68 61 74 20 74 68 65 20 61 70 70 6c 69 63 61 74 69 6f 6e 20 69 73 20 69 73 6f 6c 61 74 | s.that.the.application.is.isolat |
| 1144e0 | 65 64 20 66 72 6f 6d 20 74 68 65 20 73 6f 75 72 63 65 20 74 72 61 66 66 69 63 20 61 6e 64 20 73 | ed.from.the.source.traffic.and.s |
| 114500 | 6f 20 61 70 70 6c 69 63 61 74 69 6f 6e 20 70 72 6f 63 65 73 73 69 6e 67 20 64 6f 65 73 20 6e 6f | o.application.processing.does.no |
| 114520 | 74 20 61 66 66 65 63 74 20 74 68 65 20 74 72 61 66 66 69 63 20 6f 72 20 74 68 65 20 73 79 73 74 | t.affect.the.traffic.or.the.syst |
| 114540 | 65 6d 20 70 65 72 66 6f 72 6d 61 6e 63 65 2e 00 53 53 48 00 53 53 48 20 3a 72 65 66 3a 60 73 73 | em.performance..SSH.SSH.:ref:`ss |
| 114560 | 68 5f 6b 65 79 5f 62 61 73 65 64 5f 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 60 00 53 53 48 20 | h_key_based_authentication`.SSH. |
| 114580 | 3a 72 65 66 3a 60 73 73 68 5f 6f 70 65 72 61 74 69 6f 6e 60 00 53 53 48 20 63 6c 69 65 6e 74 00 | :ref:`ssh_operation`.SSH.client. |
| 1145a0 | 53 53 48 20 70 72 6f 76 69 64 65 73 20 61 20 73 65 63 75 72 65 20 63 68 61 6e 6e 65 6c 20 6f 76 | SSH.provides.a.secure.channel.ov |
| 1145c0 | 65 72 20 61 6e 20 75 6e 73 65 63 75 72 65 64 20 6e 65 74 77 6f 72 6b 20 69 6e 20 61 20 63 6c 69 | er.an.unsecured.network.in.a.cli |
| 1145e0 | 65 6e 74 2d 73 65 72 76 65 72 20 61 72 63 68 69 74 65 63 74 75 72 65 2c 20 63 6f 6e 6e 65 63 74 | ent-server.architecture,.connect |
| 114600 | 69 6e 67 20 61 6e 20 53 53 48 20 63 6c 69 65 6e 74 20 61 70 70 6c 69 63 61 74 69 6f 6e 20 77 69 | ing.an.SSH.client.application.wi |
| 114620 | 74 68 20 61 6e 20 53 53 48 20 73 65 72 76 65 72 2e 20 43 6f 6d 6d 6f 6e 20 61 70 70 6c 69 63 61 | th.an.SSH.server..Common.applica |
| 114640 | 74 69 6f 6e 73 20 69 6e 63 6c 75 64 65 20 72 65 6d 6f 74 65 20 63 6f 6d 6d 61 6e 64 2d 6c 69 6e | tions.include.remote.command-lin |
| 114660 | 65 20 6c 6f 67 69 6e 20 61 6e 64 20 72 65 6d 6f 74 65 20 63 6f 6d 6d 61 6e 64 20 65 78 65 63 75 | e.login.and.remote.command.execu |
| 114680 | 74 69 6f 6e 2c 20 62 75 74 20 61 6e 79 20 6e 65 74 77 6f 72 6b 20 73 65 72 76 69 63 65 20 63 61 | tion,.but.any.network.service.ca |
| 1146a0 | 6e 20 62 65 20 73 65 63 75 72 65 64 20 77 69 74 68 20 53 53 48 2e 20 54 68 65 20 70 72 6f 74 6f | n.be.secured.with.SSH..The.proto |
| 1146c0 | 63 6f 6c 20 73 70 65 63 69 66 69 63 61 74 69 6f 6e 20 64 69 73 74 69 6e 67 75 69 73 68 65 73 20 | col.specification.distinguishes. |
| 1146e0 | 62 65 74 77 65 65 6e 20 74 77 6f 20 6d 61 6a 6f 72 20 76 65 72 73 69 6f 6e 73 2c 20 72 65 66 65 | between.two.major.versions,.refe |
| 114700 | 72 72 65 64 20 74 6f 20 61 73 20 53 53 48 2d 31 20 61 6e 64 20 53 53 48 2d 32 2e 00 53 53 48 20 | rred.to.as.SSH-1.and.SSH-2..SSH. |
| 114720 | 75 73 65 72 6e 61 6d 65 20 74 6f 20 65 73 74 61 62 6c 69 73 68 20 61 6e 20 53 53 48 20 63 6f 6e | username.to.establish.an.SSH.con |
| 114740 | 6e 65 63 74 69 6f 6e 20 74 6f 20 74 68 65 20 63 61 63 68 65 20 73 65 72 76 65 72 2e 00 53 53 48 | nection.to.the.cache.server..SSH |
| 114760 | 20 77 61 73 20 64 65 73 69 67 6e 65 64 20 61 73 20 61 20 72 65 70 6c 61 63 65 6d 65 6e 74 20 66 | .was.designed.as.a.replacement.f |
| 114780 | 6f 72 20 54 65 6c 6e 65 74 20 61 6e 64 20 66 6f 72 20 75 6e 73 65 63 75 72 65 64 20 72 65 6d 6f | or.Telnet.and.for.unsecured.remo |
| 1147a0 | 74 65 20 73 68 65 6c 6c 20 70 72 6f 74 6f 63 6f 6c 73 20 73 75 63 68 20 61 73 20 74 68 65 20 42 | te.shell.protocols.such.as.the.B |
| 1147c0 | 65 72 6b 65 6c 65 79 20 72 6c 6f 67 69 6e 2c 20 72 73 68 2c 20 61 6e 64 20 72 65 78 65 63 20 70 | erkeley.rlogin,.rsh,.and.rexec.p |
| 1147e0 | 72 6f 74 6f 63 6f 6c 73 2e 20 54 68 6f 73 65 20 70 72 6f 74 6f 63 6f 6c 73 20 73 65 6e 64 20 69 | rotocols..Those.protocols.send.i |
| 114800 | 6e 66 6f 72 6d 61 74 69 6f 6e 2c 20 6e 6f 74 61 62 6c 79 20 70 61 73 73 77 6f 72 64 73 2c 20 69 | nformation,.notably.passwords,.i |
| 114820 | 6e 20 70 6c 61 69 6e 74 65 78 74 2c 20 72 65 6e 64 65 72 69 6e 67 20 74 68 65 6d 20 73 75 73 63 | n.plaintext,.rendering.them.susc |
| 114840 | 65 70 74 69 62 6c 65 20 74 6f 20 69 6e 74 65 72 63 65 70 74 69 6f 6e 20 61 6e 64 20 64 69 73 63 | eptible.to.interception.and.disc |
| 114860 | 6c 6f 73 75 72 65 20 75 73 69 6e 67 20 70 61 63 6b 65 74 20 61 6e 61 6c 79 73 69 73 2e 20 54 68 | losure.using.packet.analysis..Th |
| 114880 | 65 20 65 6e 63 72 79 70 74 69 6f 6e 20 75 73 65 64 20 62 79 20 53 53 48 20 69 73 20 69 6e 74 65 | e.encryption.used.by.SSH.is.inte |
| 1148a0 | 6e 64 65 64 20 74 6f 20 70 72 6f 76 69 64 65 20 63 6f 6e 66 69 64 65 6e 74 69 61 6c 69 74 79 20 | nded.to.provide.confidentiality. |
| 1148c0 | 61 6e 64 20 69 6e 74 65 67 72 69 74 79 20 6f 66 20 64 61 74 61 20 6f 76 65 72 20 61 6e 20 75 6e | and.integrity.of.data.over.an.un |
| 1148e0 | 73 65 63 75 72 65 64 20 6e 65 74 77 6f 72 6b 2c 20 73 75 63 68 20 61 73 20 74 68 65 20 49 6e 74 | secured.network,.such.as.the.Int |
| 114900 | 65 72 6e 65 74 2e 00 53 53 49 44 20 74 6f 20 62 65 20 75 73 65 64 20 69 6e 20 49 45 45 45 20 38 | ernet..SSID.to.be.used.in.IEEE.8 |
| 114920 | 30 32 2e 31 31 20 6d 61 6e 61 67 65 6d 65 6e 74 20 66 72 61 6d 65 73 00 53 53 4c 20 42 72 69 64 | 02.11.management.frames.SSL.Brid |
| 114940 | 67 69 6e 67 00 53 53 4c 20 43 65 72 74 69 66 69 63 61 74 65 73 00 53 53 4c 20 43 65 72 74 69 66 | ging.SSL.Certificates.SSL.Certif |
| 114960 | 69 63 61 74 65 73 20 67 65 6e 65 72 61 74 69 6f 6e 00 53 53 4c 20 6d 61 74 63 68 20 53 65 72 76 | icates.generation.SSL.match.Serv |
| 114980 | 65 72 20 4e 61 6d 65 20 49 6e 64 69 63 61 74 69 6f 6e 20 28 53 4e 49 29 20 6f 70 74 69 6f 6e 3a | er.Name.Indication.(SNI).option: |
| 1149a0 | 00 53 53 54 50 20 43 6c 69 65 6e 74 00 53 53 54 50 20 43 6c 69 65 6e 74 20 4f 70 74 69 6f 6e 73 | .SSTP.Client.SSTP.Client.Options |
| 1149c0 | 00 53 53 54 50 20 53 65 72 76 65 72 00 53 53 54 50 20 69 73 20 61 76 61 69 6c 61 62 6c 65 20 66 | .SSTP.Server.SSTP.is.available.f |
| 1149e0 | 6f 72 20 4c 69 6e 75 78 2c 20 42 53 44 2c 20 61 6e 64 20 57 69 6e 64 6f 77 73 2e 00 53 53 54 50 | or.Linux,.BSD,.and.Windows..SSTP |
| 114a00 | 20 72 65 6d 6f 74 65 20 73 65 72 76 65 72 20 74 6f 20 63 6f 6e 6e 65 63 74 20 74 6f 2e 20 43 61 | .remote.server.to.connect.to..Ca |
| 114a20 | 6e 20 62 65 20 65 69 74 68 65 72 20 61 6e 20 49 50 20 61 64 64 72 65 73 73 20 6f 72 20 46 51 44 | n.be.either.an.IP.address.or.FQD |
| 114a40 | 4e 2e 00 53 54 50 20 50 61 72 61 6d 65 74 65 72 00 53 61 6c 74 2d 4d 69 6e 69 6f 6e 00 53 61 6c | N..STP.Parameter.Salt-Minion.Sal |
| 114a60 | 74 53 74 61 63 6b 5f 20 69 73 20 50 79 74 68 6f 6e 2d 62 61 73 65 64 2c 20 6f 70 65 6e 2d 73 6f | tStack_.is.Python-based,.open-so |
| 114a80 | 75 72 63 65 20 73 6f 66 74 77 61 72 65 20 66 6f 72 20 65 76 65 6e 74 2d 64 72 69 76 65 6e 20 49 | urce.software.for.event-driven.I |
| 114aa0 | 54 20 61 75 74 6f 6d 61 74 69 6f 6e 2c 20 72 65 6d 6f 74 65 20 74 61 73 6b 20 65 78 65 63 75 74 | T.automation,.remote.task.execut |
| 114ac0 | 69 6f 6e 2c 20 61 6e 64 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d 61 6e 61 67 65 6d 65 6e | ion,.and.configuration.managemen |
| 114ae0 | 74 2e 20 53 75 70 70 6f 72 74 69 6e 67 20 74 68 65 20 22 69 6e 66 72 61 73 74 72 75 63 74 75 72 | t..Supporting.the."infrastructur |
| 114b00 | 65 20 61 73 20 63 6f 64 65 22 20 61 70 70 72 6f 61 63 68 20 74 6f 20 64 61 74 61 20 63 65 6e 74 | e.as.code".approach.to.data.cent |
| 114b20 | 65 72 20 73 79 73 74 65 6d 20 61 6e 64 20 6e 65 74 77 6f 72 6b 20 64 65 70 6c 6f 79 6d 65 6e 74 | er.system.and.network.deployment |
| 114b40 | 20 61 6e 64 20 6d 61 6e 61 67 65 6d 65 6e 74 2c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 61 | .and.management,.configuration.a |
| 114b60 | 75 74 6f 6d 61 74 69 6f 6e 2c 20 53 65 63 4f 70 73 20 6f 72 63 68 65 73 74 72 61 74 69 6f 6e 2c | utomation,.SecOps.orchestration, |
| 114b80 | 20 76 75 6c 6e 65 72 61 62 69 6c 69 74 79 20 72 65 6d 65 64 69 61 74 69 6f 6e 2c 20 61 6e 64 20 | .vulnerability.remediation,.and. |
| 114ba0 | 68 79 62 72 69 64 20 63 6c 6f 75 64 20 63 6f 6e 74 72 6f 6c 2e 00 53 61 6d 65 20 61 73 20 65 78 | hybrid.cloud.control..Same.as.ex |
| 114bc0 | 70 6f 72 74 2d 6c 69 73 74 2c 20 62 75 74 20 69 74 20 61 70 70 6c 69 65 73 20 74 6f 20 70 61 74 | port-list,.but.it.applies.to.pat |
| 114be0 | 68 73 20 61 6e 6e 6f 75 6e 63 65 64 20 69 6e 74 6f 20 73 70 65 63 69 66 69 65 64 20 61 72 65 61 | hs.announced.into.specified.area |
| 114c00 | 20 61 73 20 54 79 70 65 2d 33 20 73 75 6d 6d 61 72 79 2d 4c 53 41 73 2e 20 54 68 69 73 20 63 6f | .as.Type-3.summary-LSAs..This.co |
| 114c20 | 6d 6d 61 6e 64 20 6d 61 6b 65 73 20 73 65 6e 73 65 20 69 6e 20 41 42 52 20 6f 6e 6c 79 2e 00 53 | mmand.makes.sense.in.ABR.only..S |
| 114c40 | 61 6d 65 20 73 70 65 63 69 66 69 63 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 20 74 | ame.specific.matching.criteria.t |
| 114c60 | 68 61 74 20 63 61 6e 20 62 65 20 75 73 65 64 20 69 6e 20 62 72 69 64 67 65 20 66 69 72 65 77 61 | hat.can.be.used.in.bridge.firewa |
| 114c80 | 6c 6c 20 61 72 65 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e | ll.are.described.in.this.section |
| 114ca0 | 3a 00 53 61 6d 70 6c 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 66 20 53 56 44 20 77 69 | :.Sample.configuration.of.SVD.wi |
| 114cc0 | 74 68 20 56 4c 41 4e 20 74 6f 20 56 4e 49 20 6d 61 70 70 69 6e 67 73 20 69 73 20 73 68 6f 77 6e | th.VLAN.to.VNI.mappings.is.shown |
| 114ce0 | 20 62 65 6c 6f 77 2e 00 53 61 6d 70 6c 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 6f 20 | .below..Sample.configuration.to. |
| 114d00 | 73 65 74 75 70 20 4c 44 50 20 6f 6e 20 56 79 4f 53 00 53 63 61 6e 6e 69 6e 67 20 69 73 20 6e 6f | setup.LDP.on.VyOS.Scanning.is.no |
| 114d20 | 74 20 73 75 70 70 6f 72 74 65 64 20 6f 6e 20 61 6c 6c 20 77 69 72 65 6c 65 73 73 20 64 72 69 76 | t.supported.on.all.wireless.driv |
| 114d40 | 65 72 73 20 61 6e 64 20 77 69 72 65 6c 65 73 73 20 68 61 72 64 77 61 72 65 2e 20 52 65 66 65 72 | ers.and.wireless.hardware..Refer |
| 114d60 | 20 74 6f 20 79 6f 75 72 20 64 72 69 76 65 72 20 61 6e 64 20 77 69 72 65 6c 65 73 73 20 68 61 72 | .to.your.driver.and.wireless.har |
| 114d80 | 64 77 61 72 65 20 64 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 66 6f 72 20 66 75 72 74 68 65 72 20 | dware.documentation.for.further. |
| 114da0 | 64 65 74 61 69 6c 73 2e 00 53 63 72 69 70 74 20 65 78 65 63 75 74 69 6f 6e 00 53 63 72 69 70 74 | details..Script.execution.Script |
| 114dc0 | 20 74 6f 20 72 75 6e 20 62 65 66 6f 72 65 20 73 65 73 73 69 6f 6e 20 69 6e 74 65 72 66 61 63 65 | .to.run.before.session.interface |
| 114de0 | 20 63 6f 6d 65 73 20 75 70 00 53 63 72 69 70 74 20 74 6f 20 72 75 6e 20 62 65 66 6f 72 65 20 74 | .comes.up.Script.to.run.before.t |
| 114e00 | 68 65 20 73 65 73 73 69 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 63 6f 6d 65 73 20 75 70 00 53 63 | he.session.interface.comes.up.Sc |
| 114e20 | 72 69 70 74 20 74 6f 20 72 75 6e 20 77 68 65 6e 20 73 65 73 73 69 6f 6e 20 69 6e 74 65 72 66 61 | ript.to.run.when.session.interfa |
| 114e40 | 63 65 20 63 68 61 6e 67 65 64 20 62 79 20 52 41 44 49 55 53 20 43 6f 41 20 68 61 6e 64 6c 69 6e | ce.changed.by.RADIUS.CoA.handlin |
| 114e60 | 67 00 53 63 72 69 70 74 20 74 6f 20 72 75 6e 20 77 68 65 6e 20 73 65 73 73 69 6f 6e 20 69 6e 74 | g.Script.to.run.when.session.int |
| 114e80 | 65 72 66 61 63 65 20 67 6f 69 6e 67 20 74 6f 20 74 65 72 6d 69 6e 61 74 65 00 53 63 72 69 70 74 | erface.going.to.terminate.Script |
| 114ea0 | 20 74 6f 20 72 75 6e 20 77 68 65 6e 20 73 65 73 73 69 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 69 | .to.run.when.session.interface.i |
| 114ec0 | 73 20 63 6f 6d 70 6c 65 74 65 6c 79 20 63 6f 6e 66 69 67 75 72 65 64 20 61 6e 64 20 73 74 61 72 | s.completely.configured.and.star |
| 114ee0 | 74 65 64 00 53 63 72 69 70 74 20 74 6f 20 72 75 6e 20 77 68 65 6e 20 74 68 65 20 73 65 73 73 69 | ted.Script.to.run.when.the.sessi |
| 114f00 | 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 61 62 6f 75 74 20 74 6f 20 74 65 72 6d 69 6e 61 74 65 00 | on.interface.about.to.terminate. |
| 114f20 | 53 63 72 69 70 74 20 74 6f 20 72 75 6e 20 77 68 65 6e 20 74 68 65 20 73 65 73 73 69 6f 6e 20 69 | Script.to.run.when.the.session.i |
| 114f40 | 6e 74 65 72 66 61 63 65 20 69 73 20 61 62 6f 75 74 20 74 6f 20 74 65 72 6d 69 6e 61 74 65 00 53 | nterface.is.about.to.terminate.S |
| 114f60 | 63 72 69 70 74 20 74 6f 20 72 75 6e 20 77 68 65 6e 20 74 68 65 20 73 65 73 73 69 6f 6e 20 69 6e | cript.to.run.when.the.session.in |
| 114f80 | 74 65 72 66 61 63 65 20 69 73 20 63 68 61 6e 67 65 64 20 62 79 20 52 41 44 49 55 53 20 43 6f 41 | terface.is.changed.by.RADIUS.CoA |
| 114fa0 | 20 68 61 6e 64 6c 69 6e 67 00 53 63 72 69 70 74 20 74 6f 20 72 75 6e 20 77 68 65 6e 20 74 68 65 | .handling.Script.to.run.when.the |
| 114fc0 | 20 73 65 73 73 69 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 63 6f 6d 70 6c 65 74 65 6c 79 | .session.interface.is.completely |
| 114fe0 | 20 63 6f 6e 66 69 67 75 72 65 64 20 61 6e 64 20 73 74 61 72 74 65 64 00 53 63 72 69 70 74 69 6e | .configured.and.started.Scriptin |
| 115000 | 67 00 53 65 63 6f 6e 64 20 73 63 65 6e 61 72 69 6f 3a 20 61 70 70 6c 79 20 73 6f 75 72 63 65 20 | g.Second.scenario:.apply.source. |
| 115020 | 4e 41 54 20 66 6f 72 20 61 6c 6c 20 6f 75 74 67 6f 69 6e 67 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 | NAT.for.all.outgoing.connections |
| 115040 | 20 66 72 6f 6d 20 4c 41 4e 20 31 30 2e 30 2e 30 2e 30 2f 38 2c 20 75 73 69 6e 67 20 33 20 70 75 | .from.LAN.10.0.0.0/8,.using.3.pu |
| 115060 | 62 6c 69 63 20 61 64 64 72 65 73 73 65 73 20 61 6e 64 20 65 71 75 61 6c 20 64 69 73 74 72 69 62 | blic.addresses.and.equal.distrib |
| 115080 | 75 74 69 6f 6e 2e 20 57 65 20 77 69 6c 6c 20 67 65 6e 65 72 61 74 65 20 74 68 65 20 68 61 73 68 | ution..We.will.generate.the.hash |
| 1150a0 | 20 72 61 6e 64 6f 6d 6c 79 2e 00 53 65 63 6f 6e 64 6c 79 2c 20 77 65 20 63 72 65 61 74 65 20 74 | .randomly..Secondly,.we.create.t |
| 1150c0 | 68 65 20 69 6e 74 65 72 6d 65 64 69 61 72 79 20 63 65 72 74 69 66 69 63 61 74 65 20 61 75 74 68 | he.intermediary.certificate.auth |
| 1150e0 | 6f 72 69 74 69 65 73 2c 20 77 68 69 63 68 20 61 72 65 20 75 73 65 64 20 74 6f 20 73 69 67 6e 20 | orities,.which.are.used.to.sign. |
| 115100 | 74 68 65 20 6c 65 61 66 20 63 65 72 74 69 66 69 63 61 74 65 73 2e 00 53 65 63 72 65 74 20 66 6f | the.leaf.certificates..Secret.fo |
| 115120 | 72 20 44 79 6e 61 6d 69 63 20 41 75 74 68 6f 72 69 7a 61 74 69 6f 6e 20 45 78 74 65 6e 73 69 6f | r.Dynamic.Authorization.Extensio |
| 115140 | 6e 20 73 65 72 76 65 72 20 28 44 4d 2f 43 6f 41 29 00 53 65 63 75 72 69 74 79 00 53 65 63 75 72 | n.server.(DM/CoA).Security.Secur |
| 115160 | 69 74 79 2f 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6d 65 73 73 61 67 65 73 00 53 65 65 20 | ity/authentication.messages.See. |
| 115180 | 3a 72 66 63 3a 60 37 37 36 31 23 73 65 63 74 69 6f 6e 2d 34 2e 31 60 20 66 6f 72 20 64 65 74 61 | :rfc:`7761#section-4.1`.for.deta |
| 1151a0 | 69 6c 73 2e 00 53 65 65 20 62 65 6c 6f 77 20 74 68 65 20 64 69 66 66 65 72 65 6e 74 20 70 61 72 | ils..See.below.the.different.par |
| 1151c0 | 61 6d 65 74 65 72 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 74 68 65 20 49 50 76 34 20 2a | ameters.available.for.the.IPv4.* |
| 1151e0 | 2a 73 68 6f 77 2a 2a 20 63 6f 6d 6d 61 6e 64 3a 00 53 65 67 6d 65 6e 74 20 52 6f 75 74 69 6e 67 | *show**.command:.Segment.Routing |
| 115200 | 00 53 65 67 6d 65 6e 74 20 52 6f 75 74 69 6e 67 20 28 53 52 29 20 69 73 20 61 20 6e 65 74 77 6f | .Segment.Routing.(SR).is.a.netwo |
| 115220 | 72 6b 20 61 72 63 68 69 74 65 63 74 75 72 65 20 74 68 61 74 20 69 73 20 73 69 6d 69 6c 61 72 20 | rk.architecture.that.is.similar. |
| 115240 | 74 6f 20 73 6f 75 72 63 65 2d 72 6f 75 74 69 6e 67 20 2e 20 49 6e 20 74 68 69 73 20 61 72 63 68 | to.source-routing...In.this.arch |
| 115260 | 69 74 65 63 74 75 72 65 2c 20 74 68 65 20 69 6e 67 72 65 73 73 20 72 6f 75 74 65 72 20 61 64 64 | itecture,.the.ingress.router.add |
| 115280 | 73 20 61 20 6c 69 73 74 20 6f 66 20 73 65 67 6d 65 6e 74 73 2c 20 6b 6e 6f 77 6e 20 61 73 20 53 | s.a.list.of.segments,.known.as.S |
| 1152a0 | 49 44 73 2c 20 74 6f 20 74 68 65 20 70 61 63 6b 65 74 20 61 73 20 69 74 20 65 6e 74 65 72 73 20 | IDs,.to.the.packet.as.it.enters. |
| 1152c0 | 74 68 65 20 6e 65 74 77 6f 72 6b 2e 20 54 68 65 73 65 20 73 65 67 6d 65 6e 74 73 20 72 65 70 72 | the.network..These.segments.repr |
| 1152e0 | 65 73 65 6e 74 20 64 69 66 66 65 72 65 6e 74 20 70 6f 72 74 69 6f 6e 73 20 6f 66 20 74 68 65 20 | esent.different.portions.of.the. |
| 115300 | 6e 65 74 77 6f 72 6b 20 70 61 74 68 20 74 68 61 74 20 74 68 65 20 70 61 63 6b 65 74 20 77 69 6c | network.path.that.the.packet.wil |
| 115320 | 6c 20 74 61 6b 65 2e 00 53 65 67 6d 65 6e 74 20 52 6f 75 74 69 6e 67 20 63 61 6e 20 62 65 20 61 | l.take..Segment.Routing.can.be.a |
| 115340 | 70 70 6c 69 65 64 20 74 6f 20 61 6e 20 65 78 69 73 74 69 6e 67 20 4d 50 4c 53 2d 62 61 73 65 64 | pplied.to.an.existing.MPLS-based |
| 115360 | 20 64 61 74 61 20 70 6c 61 6e 65 20 61 6e 64 20 64 65 66 69 6e 65 73 20 61 20 63 6f 6e 74 72 6f | .data.plane.and.defines.a.contro |
| 115380 | 6c 20 70 6c 61 6e 65 20 6e 65 74 77 6f 72 6b 20 61 72 63 68 69 74 65 63 74 75 72 65 2e 20 49 6e | l.plane.network.architecture..In |
| 1153a0 | 20 4d 50 4c 53 20 6e 65 74 77 6f 72 6b 73 2c 20 73 65 67 6d 65 6e 74 73 20 61 72 65 20 65 6e 63 | .MPLS.networks,.segments.are.enc |
| 1153c0 | 6f 64 65 64 20 61 73 20 4d 50 4c 53 20 6c 61 62 65 6c 73 20 61 6e 64 20 61 72 65 20 61 64 64 65 | oded.as.MPLS.labels.and.are.adde |
| 1153e0 | 64 20 61 74 20 74 68 65 20 69 6e 67 72 65 73 73 20 72 6f 75 74 65 72 2e 20 54 68 65 73 65 20 4d | d.at.the.ingress.router..These.M |
| 115400 | 50 4c 53 20 6c 61 62 65 6c 73 20 61 72 65 20 74 68 65 6e 20 65 78 63 68 61 6e 67 65 64 20 61 6e | PLS.labels.are.then.exchanged.an |
| 115420 | 64 20 70 6f 70 75 6c 61 74 65 64 20 62 79 20 49 6e 74 65 72 69 6f 72 20 47 61 74 65 77 61 79 20 | d.populated.by.Interior.Gateway. |
| 115440 | 50 72 6f 74 6f 63 6f 6c 73 20 28 49 47 50 73 29 20 6c 69 6b 65 20 49 53 2d 49 53 20 6f 72 20 4f | Protocols.(IGPs).like.IS-IS.or.O |
| 115460 | 53 50 46 20 77 68 69 63 68 20 61 72 65 20 72 75 6e 6e 69 6e 67 20 6f 6e 20 6d 6f 73 74 20 49 53 | SPF.which.are.running.on.most.IS |
| 115480 | 50 73 2e 00 53 65 67 6d 65 6e 74 20 72 6f 75 74 69 6e 67 20 28 53 52 29 20 69 73 20 75 73 65 64 | Ps..Segment.routing.(SR).is.used |
| 1154a0 | 20 62 79 20 74 68 65 20 49 47 50 20 70 72 6f 74 6f 63 6f 6c 73 20 74 6f 20 69 6e 74 65 72 63 6f | .by.the.IGP.protocols.to.interco |
| 1154c0 | 6e 6e 65 63 74 20 6e 65 74 77 6f 72 6b 20 64 65 76 69 63 65 73 2c 20 62 65 6c 6f 77 20 63 6f 6e | nnect.network.devices,.below.con |
| 1154e0 | 66 69 67 75 72 61 74 69 6f 6e 20 73 68 6f 77 73 20 68 6f 77 20 74 6f 20 65 6e 61 62 6c 65 20 53 | figuration.shows.how.to.enable.S |
| 115500 | 52 20 6f 6e 20 49 53 2d 49 53 3a 00 53 65 67 6d 65 6e 74 20 72 6f 75 74 69 6e 67 20 28 53 52 29 | R.on.IS-IS:.Segment.routing.(SR) |
| 115520 | 20 69 73 20 75 73 65 64 20 62 79 20 74 68 65 20 49 47 50 20 70 72 6f 74 6f 63 6f 6c 73 20 74 6f | .is.used.by.the.IGP.protocols.to |
| 115540 | 20 69 6e 74 65 72 63 6f 6e 6e 65 63 74 20 6e 65 74 77 6f 72 6b 20 64 65 76 69 63 65 73 2c 20 62 | .interconnect.network.devices,.b |
| 115560 | 65 6c 6f 77 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 73 68 6f 77 73 20 68 6f 77 20 74 6f 20 | elow.configuration.shows.how.to. |
| 115580 | 65 6e 61 62 6c 65 20 53 52 20 6f 6e 20 4f 53 50 46 3a 00 53 65 67 6d 65 6e 74 20 72 6f 75 74 69 | enable.SR.on.OSPF:.Segment.routi |
| 1155a0 | 6e 67 20 64 65 66 69 6e 65 73 20 61 20 63 6f 6e 74 72 6f 6c 20 70 6c 61 6e 65 20 6e 65 74 77 6f | ng.defines.a.control.plane.netwo |
| 1155c0 | 72 6b 20 61 72 63 68 69 74 65 63 74 75 72 65 20 61 6e 64 20 63 61 6e 20 62 65 20 61 70 70 6c 69 | rk.architecture.and.can.be.appli |
| 1155e0 | 65 64 20 74 6f 20 61 6e 20 65 78 69 73 74 69 6e 67 20 4d 50 4c 53 20 62 61 73 65 64 20 64 61 74 | ed.to.an.existing.MPLS.based.dat |
| 115600 | 61 70 6c 61 6e 65 2e 20 49 6e 20 74 68 65 20 4d 50 4c 53 20 6e 65 74 77 6f 72 6b 73 2c 20 73 65 | aplane..In.the.MPLS.networks,.se |
| 115620 | 67 6d 65 6e 74 73 20 61 72 65 20 65 6e 63 6f 64 65 64 20 61 73 20 4d 50 4c 53 20 6c 61 62 65 6c | gments.are.encoded.as.MPLS.label |
| 115640 | 73 20 61 6e 64 20 61 72 65 20 69 6d 70 6f 73 65 64 20 61 74 20 74 68 65 20 69 6e 67 72 65 73 73 | s.and.are.imposed.at.the.ingress |
| 115660 | 20 72 6f 75 74 65 72 2e 20 4d 50 4c 53 20 6c 61 62 65 6c 73 20 61 72 65 20 65 78 63 68 61 6e 67 | .router..MPLS.labels.are.exchang |
| 115680 | 65 64 20 61 6e 64 20 70 6f 70 75 6c 61 74 65 64 20 62 79 20 49 47 50 73 20 6c 69 6b 65 20 49 53 | ed.and.populated.by.IGPs.like.IS |
| 1156a0 | 2d 49 53 2e 53 65 67 6d 65 6e 74 20 52 6f 75 74 69 6e 67 20 61 73 20 70 65 72 20 52 46 43 38 36 | -IS.Segment.Routing.as.per.RFC86 |
| 1156c0 | 36 37 20 66 6f 72 20 4d 50 4c 53 20 64 61 74 61 70 6c 61 6e 65 2e 20 49 74 20 73 75 70 70 6f 72 | 67.for.MPLS.dataplane..It.suppor |
| 1156e0 | 74 73 20 49 50 76 34 2c 20 49 50 76 36 20 61 6e 64 20 45 43 4d 50 20 61 6e 64 20 68 61 73 20 62 | ts.IPv4,.IPv6.and.ECMP.and.has.b |
| 115700 | 65 65 6e 20 74 65 73 74 65 64 20 61 67 61 69 6e 73 74 20 43 69 73 63 6f 20 26 20 4a 75 6e 69 70 | een.tested.against.Cisco.&.Junip |
| 115720 | 65 72 20 72 6f 75 74 65 72 73 2e 68 6f 77 65 76 65 72 2c 74 68 69 73 20 64 65 70 6c 6f 79 6d 65 | er.routers.however,this.deployme |
| 115740 | 6e 74 20 69 73 20 73 74 69 6c 6c 20 45 58 50 45 52 49 4d 45 4e 54 41 4c 20 66 6f 72 20 46 52 52 | nt.is.still.EXPERIMENTAL.for.FRR |
| 115760 | 2e 00 53 65 6c 65 63 74 20 54 4c 53 20 76 65 72 73 69 6f 6e 20 75 73 65 64 2e 00 53 65 6c 65 63 | ..Select.TLS.version.used..Selec |
| 115780 | 74 20 63 69 70 68 65 72 20 73 75 69 74 65 20 75 73 65 64 20 66 6f 72 20 63 72 79 70 74 6f 67 72 | t.cipher.suite.used.for.cryptogr |
| 1157a0 | 61 70 68 69 63 20 6f 70 65 72 61 74 69 6f 6e 73 2e 20 54 68 69 73 20 73 65 74 74 69 6e 67 20 69 | aphic.operations..This.setting.i |
| 1157c0 | 73 20 6d 61 6e 64 61 74 6f 72 79 2e 00 53 65 6c 65 63 74 20 68 6f 77 20 6c 61 62 65 6c 73 20 61 | s.mandatory..Select.how.labels.a |
| 1157e0 | 72 65 20 61 6c 6c 6f 63 61 74 65 64 20 69 6e 20 74 68 65 20 67 69 76 65 6e 20 56 52 46 2e 20 42 | re.allocated.in.the.given.VRF..B |
| 115800 | 79 20 64 65 66 61 75 6c 74 2c 20 74 68 65 20 70 65 72 2d 76 72 66 20 6d 6f 64 65 20 69 73 20 73 | y.default,.the.per-vrf.mode.is.s |
| 115820 | 65 6c 65 63 74 65 64 2c 20 61 6e 64 20 6f 6e 65 20 6c 61 62 65 6c 20 69 73 20 75 73 65 64 20 66 | elected,.and.one.label.is.used.f |
| 115840 | 6f 72 20 61 6c 6c 20 70 72 65 66 69 78 65 73 20 66 72 6f 6d 20 74 68 65 20 56 52 46 2e 20 54 68 | or.all.prefixes.from.the.VRF..Th |
| 115860 | 65 20 70 65 72 2d 6e 65 78 74 68 6f 70 20 77 69 6c 6c 20 75 73 65 20 61 20 75 6e 69 71 75 65 20 | e.per-nexthop.will.use.a.unique. |
| 115880 | 6c 61 62 65 6c 20 66 6f 72 20 61 6c 6c 20 70 72 65 66 69 78 65 73 20 74 68 61 74 20 61 72 65 20 | label.for.all.prefixes.that.are. |
| 1158a0 | 72 65 61 63 68 61 62 6c 65 20 76 69 61 20 74 68 65 20 73 61 6d 65 20 6e 65 78 74 68 6f 70 2e 00 | reachable.via.the.same.nexthop.. |
| 1158c0 | 53 65 6c 66 20 53 69 67 6e 65 64 20 43 41 00 53 65 6e 64 20 61 20 50 72 6f 78 79 20 50 72 6f 74 | Self.Signed.CA.Send.a.Proxy.Prot |
| 1158e0 | 6f 63 6f 6c 20 76 65 72 73 69 6f 6e 20 31 20 68 65 61 64 65 72 20 28 74 65 78 74 20 66 6f 72 6d | ocol.version.1.header.(text.form |
| 115900 | 61 74 29 00 53 65 6e 64 20 61 20 50 72 6f 78 79 20 50 72 6f 74 6f 63 6f 6c 20 76 65 72 73 69 6f | at).Send.a.Proxy.Protocol.versio |
| 115920 | 6e 20 32 20 68 65 61 64 65 72 20 28 62 69 6e 61 72 79 20 66 6f 72 6d 61 74 29 00 53 65 6e 64 20 | n.2.header.(binary.format).Send. |
| 115940 | 61 6c 6c 20 44 4e 53 20 71 75 65 72 69 65 73 20 74 6f 20 74 68 65 20 49 50 76 34 2f 49 50 76 36 | all.DNS.queries.to.the.IPv4/IPv6 |
| 115960 | 20 44 4e 53 20 73 65 72 76 65 72 20 73 70 65 63 69 66 69 65 64 20 75 6e 64 65 72 20 60 3c 61 64 | .DNS.server.specified.under.`<ad |
| 115980 | 64 72 65 73 73 3e 60 20 6f 6e 20 6f 70 74 69 6f 6e 61 6c 20 70 6f 72 74 20 73 70 65 63 69 66 69 | dress>`.on.optional.port.specifi |
| 1159a0 | 65 64 20 75 6e 64 65 72 20 60 3c 70 6f 72 74 3e 60 2e 20 54 68 65 20 70 6f 72 74 20 64 65 66 61 | ed.under.`<port>`..The.port.defa |
| 1159c0 | 75 6c 74 73 20 74 6f 20 35 33 2e 20 59 6f 75 20 63 61 6e 20 63 6f 6e 66 69 67 75 72 65 20 6d 75 | ults.to.53..You.can.configure.mu |
| 1159e0 | 6c 74 69 70 6c 65 20 6e 61 6d 65 73 65 72 76 65 72 73 20 68 65 72 65 2e 00 53 65 6e 64 20 65 6d | ltiple.nameservers.here..Send.em |
| 115a00 | 70 74 79 20 53 53 49 44 20 69 6e 20 62 65 61 63 6f 6e 73 20 61 6e 64 20 69 67 6e 6f 72 65 20 70 | pty.SSID.in.beacons.and.ignore.p |
| 115a20 | 72 6f 62 65 20 72 65 71 75 65 73 74 20 66 72 61 6d 65 73 20 74 68 61 74 20 64 6f 20 6e 6f 74 20 | robe.request.frames.that.do.not. |
| 115a40 | 73 70 65 63 69 66 79 20 66 75 6c 6c 20 53 53 49 44 2c 20 69 2e 65 2e 2c 20 72 65 71 75 69 72 65 | specify.full.SSID,.i.e.,.require |
| 115a60 | 20 73 74 61 74 69 6f 6e 73 20 74 6f 20 6b 6e 6f 77 20 53 53 49 44 2e 00 53 65 6e 64 20 65 6d 70 | .stations.to.know.SSID..Send.emp |
| 115a80 | 74 79 20 53 53 49 44 20 69 6e 20 62 65 61 63 6f 6e 73 20 61 6e 64 20 69 67 6e 6f 72 65 20 70 72 | ty.SSID.in.beacons.and.ignore.pr |
| 115aa0 | 6f 62 65 20 72 65 71 75 65 73 74 20 66 72 61 6d 65 73 20 74 68 61 74 20 64 6f 20 6e 6f 74 20 73 | obe.request.frames.that.do.not.s |
| 115ac0 | 70 65 63 69 66 79 20 66 75 6c 6c 20 53 53 49 44 2c 20 69 2e 65 2e 2c 20 72 65 71 75 69 72 65 20 | pecify.full.SSID,.i.e.,.require. |
| 115ae0 | 73 74 61 74 69 6f 6e 73 20 74 6f 20 6b 6e 6f 77 20 74 68 65 20 53 53 49 44 2e 00 53 65 6e 74 20 | stations.to.know.the.SSID..Sent. |
| 115b00 | 74 6f 20 74 68 65 20 63 6c 69 65 6e 74 20 28 4c 41 43 29 20 69 6e 20 74 68 65 20 48 6f 73 74 2d | to.the.client.(LAC).in.the.Host- |
| 115b20 | 4e 61 6d 65 20 61 74 74 72 69 62 75 74 65 00 53 65 72 69 61 6c 20 43 6f 6e 73 6f 6c 65 00 53 65 | Name.attribute.Serial.Console.Se |
| 115b40 | 72 69 61 6c 20 69 6e 74 65 72 66 61 63 65 73 20 63 61 6e 20 62 65 20 61 6e 79 20 69 6e 74 65 72 | rial.interfaces.can.be.any.inter |
| 115b60 | 66 61 63 65 20 77 68 69 63 68 20 69 73 20 64 69 72 65 63 74 6c 79 20 63 6f 6e 6e 65 63 74 65 64 | face.which.is.directly.connected |
| 115b80 | 20 74 6f 20 74 68 65 20 43 50 55 20 6f 72 20 63 68 69 70 73 65 74 20 28 6d 6f 73 74 6c 79 20 6b | .to.the.CPU.or.chipset.(mostly.k |
| 115ba0 | 6e 6f 77 6e 20 61 73 20 61 20 74 74 79 53 20 69 6e 74 65 72 66 61 63 65 20 69 6e 20 4c 69 6e 75 | nown.as.a.ttyS.interface.in.Linu |
| 115bc0 | 78 29 20 6f 72 20 61 6e 79 20 6f 74 68 65 72 20 55 53 42 20 74 6f 20 73 65 72 69 61 6c 20 63 6f | x).or.any.other.USB.to.serial.co |
| 115be0 | 6e 76 65 72 74 65 72 20 28 50 72 6f 6c 69 66 69 63 20 50 4c 32 33 30 33 20 6f 72 20 46 54 44 49 | nverter.(Prolific.PL2303.or.FTDI |
| 115c00 | 20 46 54 32 33 32 2f 46 54 34 32 33 32 20 62 61 73 65 64 20 63 68 69 70 73 29 2e 00 53 65 72 76 | .FT232/FT4232.based.chips)..Serv |
| 115c20 | 65 72 00 53 65 72 76 65 72 20 43 65 72 74 69 66 69 63 61 74 65 00 53 65 72 76 65 72 20 43 6f 6e | er.Server.Certificate.Server.Con |
| 115c40 | 66 69 67 75 72 61 74 69 6f 6e 00 53 65 72 76 65 72 20 53 69 64 65 00 53 65 72 76 65 72 20 53 69 | figuration.Server.Side.Server.Si |
| 115c60 | 64 65 3a 00 53 65 72 76 65 72 20 62 72 69 64 67 65 00 53 65 72 76 65 72 20 63 6f 6e 66 69 67 75 | de:.Server.bridge.Server.configu |
| 115c80 | 72 61 74 69 6f 6e 00 53 65 72 76 65 72 20 6e 61 6d 65 73 20 66 6f 72 20 76 69 72 74 75 61 6c 20 | ration.Server.names.for.virtual. |
| 115ca0 | 68 6f 73 74 73 20 69 74 20 63 61 6e 20 62 65 20 65 78 61 63 74 2c 20 77 69 6c 64 63 61 72 64 20 | hosts.it.can.be.exact,.wildcard. |
| 115cc0 | 6f 72 20 72 65 67 65 78 2e 00 53 65 72 76 65 72 3a 00 53 65 72 76 69 63 65 00 53 65 72 76 69 63 | or.regex..Server:.Service.Servic |
| 115ce0 | 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 73 20 72 65 73 70 6f 6e 73 69 62 6c 65 20 66 | e.configuration.is.responsible.f |
| 115d00 | 6f 72 20 62 69 6e 64 69 6e 67 20 74 6f 20 61 20 73 70 65 63 69 66 69 63 20 70 6f 72 74 2c 20 77 | or.binding.to.a.specific.port,.w |
| 115d20 | 68 69 6c 65 20 74 68 65 20 62 61 63 6b 65 6e 64 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 64 | hile.the.backend.configuration.d |
| 115d40 | 65 74 65 72 6d 69 6e 65 73 20 74 68 65 20 74 79 70 65 20 6f 66 20 6c 6f 61 64 20 62 61 6c 61 6e | etermines.the.type.of.load.balan |
| 115d60 | 63 69 6e 67 20 74 6f 20 62 65 20 61 70 70 6c 69 65 64 20 61 6e 64 20 73 70 65 63 69 66 69 65 73 | cing.to.be.applied.and.specifies |
| 115d80 | 20 74 68 65 20 72 65 61 6c 20 73 65 72 76 65 72 73 20 74 6f 20 62 65 20 75 74 69 6c 69 7a 65 64 | .the.real.servers.to.be.utilized |
| 115da0 | 2e 00 53 65 74 20 42 46 44 20 70 65 65 72 20 49 50 76 34 20 61 64 64 72 65 73 73 20 6f 72 20 49 | ..Set.BFD.peer.IPv4.address.or.I |
| 115dc0 | 50 76 36 20 61 64 64 72 65 73 73 00 53 65 74 20 42 47 50 20 63 6f 6d 6d 75 6e 69 74 79 2d 6c 69 | Pv6.address.Set.BGP.community-li |
| 115de0 | 73 74 20 74 6f 20 65 78 61 63 74 6c 79 20 6d 61 74 63 68 2e 00 53 65 74 20 42 47 50 20 6c 6f 63 | st.to.exactly.match..Set.BGP.loc |
| 115e00 | 61 6c 20 70 72 65 66 65 72 65 6e 63 65 20 61 74 74 72 69 62 75 74 65 2e 00 53 65 74 20 42 47 50 | al.preference.attribute..Set.BGP |
| 115e20 | 20 6f 72 69 67 69 6e 20 63 6f 64 65 2e 00 53 65 74 20 42 47 50 20 6f 72 69 67 69 6e 61 74 6f 72 | .origin.code..Set.BGP.originator |
| 115e40 | 20 49 44 20 61 74 74 72 69 62 75 74 65 2e 00 53 65 74 20 42 47 50 20 77 65 69 67 68 74 20 61 74 | .ID.attribute..Set.BGP.weight.at |
| 115e60 | 74 72 69 62 75 74 65 00 53 65 74 20 44 4e 41 54 20 72 75 6c 65 20 32 30 20 74 6f 20 6f 6e 6c 79 | tribute.Set.DNAT.rule.20.to.only |
| 115e80 | 20 4e 41 54 20 55 44 50 20 70 61 63 6b 65 74 73 00 53 65 74 20 49 50 20 66 72 61 67 6d 65 6e 74 | .NAT.UDP.packets.Set.IP.fragment |
| 115ea0 | 20 6d 61 74 63 68 2c 20 77 68 65 72 65 3a 00 53 65 74 20 49 50 53 65 63 20 69 6e 62 6f 75 6e 64 | .match,.where:.Set.IPSec.inbound |
| 115ec0 | 20 6d 61 74 63 68 20 63 72 69 74 65 72 69 61 73 2c 20 77 68 65 72 65 3a 00 53 65 74 20 4f 53 50 | .match.criterias,.where:.Set.OSP |
| 115ee0 | 46 20 65 78 74 65 72 6e 61 6c 20 6d 65 74 72 69 63 2d 74 79 70 65 2e 00 53 65 74 20 53 4e 41 54 | F.external.metric-type..Set.SNAT |
| 115f00 | 20 72 75 6c 65 20 32 30 20 74 6f 20 6f 6e 6c 79 20 4e 41 54 20 54 43 50 20 61 6e 64 20 55 44 50 | .rule.20.to.only.NAT.TCP.and.UDP |
| 115f20 | 20 70 61 63 6b 65 74 73 00 53 65 74 20 53 4e 41 54 20 72 75 6c 65 20 32 30 20 74 6f 20 6f 6e 6c | .packets.Set.SNAT.rule.20.to.onl |
| 115f40 | 79 20 4e 41 54 20 70 61 63 6b 65 74 73 20 61 72 72 69 76 69 6e 67 20 66 72 6f 6d 20 74 68 65 20 | y.NAT.packets.arriving.from.the. |
| 115f60 | 31 39 32 2e 30 2e 32 2e 30 2f 32 34 20 6e 65 74 77 6f 72 6b 00 53 65 74 20 53 4e 41 54 20 72 75 | 192.0.2.0/24.network.Set.SNAT.ru |
| 115f80 | 6c 65 20 33 30 20 74 6f 20 6f 6e 6c 79 20 4e 41 54 20 70 61 63 6b 65 74 73 20 61 72 72 69 76 69 | le.30.to.only.NAT.packets.arrivi |
| 115fa0 | 6e 67 20 66 72 6f 6d 20 74 68 65 20 32 30 33 2e 30 2e 31 31 33 2e 30 2f 32 34 20 6e 65 74 77 6f | ng.from.the.203.0.113.0/24.netwo |
| 115fc0 | 72 6b 20 77 69 74 68 20 61 20 73 6f 75 72 63 65 20 70 6f 72 74 20 6f 66 20 38 30 20 61 6e 64 20 | rk.with.a.source.port.of.80.and. |
| 115fe0 | 34 34 33 00 53 65 74 20 53 53 4c 20 63 65 72 74 65 66 69 63 61 74 65 20 3c 6e 61 6d 65 3e 20 66 | 443.Set.SSL.certeficate.<name>.f |
| 116000 | 6f 72 20 73 65 72 76 69 63 65 20 3c 6e 61 6d 65 3e 00 53 65 74 20 53 53 4c 20 63 65 72 74 69 66 | or.service.<name>.Set.SSL.certif |
| 116020 | 69 63 61 74 65 20 3c 6e 61 6d 65 3e 20 66 6f 72 20 73 65 72 76 69 63 65 20 3c 6e 61 6d 65 3e 00 | icate.<name>.for.service.<name>. |
| 116040 | 53 65 74 20 54 43 50 2d 4d 53 53 20 28 6d 61 78 69 6d 75 6d 20 73 65 67 6d 65 6e 74 20 73 69 7a | Set.TCP-MSS.(maximum.segment.siz |
| 116060 | 65 29 20 66 6f 72 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 00 53 65 74 20 54 54 4c 20 74 6f | e).for.the.connection.Set.TTL.to |
| 116080 | 20 33 30 30 20 73 65 63 6f 6e 64 73 00 53 65 74 20 56 69 72 74 75 61 6c 20 54 75 6e 6e 65 6c 20 | .300.seconds.Set.Virtual.Tunnel. |
| 1160a0 | 49 6e 74 65 72 66 61 63 65 00 53 65 74 20 61 20 63 6f 6e 74 61 69 6e 65 72 20 64 65 73 63 72 69 | Interface.Set.a.container.descri |
| 1160c0 | 70 74 69 6f 6e 00 53 65 74 20 61 20 64 65 73 63 72 69 70 74 69 6f 6e 20 66 6f 72 20 74 68 65 20 | ption.Set.a.description.for.the. |
| 1160e0 | 73 68 61 70 65 72 2e 00 53 65 74 20 61 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 6e 64 2f 6f 72 | shaper..Set.a.destination.and/or |
| 116100 | 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 2e 20 41 63 63 65 70 74 65 64 20 69 6e 70 75 74 20 | .source.address..Accepted.input. |
| 116120 | 66 6f 72 20 69 70 76 34 3a 00 53 65 74 20 61 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 6e 64 2f | for.ipv4:.Set.a.destination.and/ |
| 116140 | 6f 72 20 73 6f 75 72 63 65 20 70 6f 72 74 2e 20 41 63 63 65 70 74 65 64 20 69 6e 70 75 74 3a 00 | or.source.port..Accepted.input:. |
| 116160 | 53 65 74 20 61 20 68 75 6d 61 6e 20 72 65 61 64 61 62 6c 65 2c 20 64 65 73 63 72 69 70 74 69 76 | Set.a.human.readable,.descriptiv |
| 116180 | 65 20 61 6c 69 61 73 20 66 6f 72 20 74 68 69 73 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 20 41 6c 69 | e.alias.for.this.connection..Ali |
| 1161a0 | 61 73 20 69 73 20 75 73 65 64 20 62 79 20 65 2e 67 2e 20 74 68 65 20 3a 6f 70 63 6d 64 3a 60 73 | as.is.used.by.e.g..the.:opcmd:`s |
| 1161c0 | 68 6f 77 20 69 6e 74 65 72 66 61 63 65 73 60 20 63 6f 6d 6d 61 6e 64 20 6f 72 20 53 4e 4d 50 20 | how.interfaces`.command.or.SNMP. |
| 1161e0 | 62 61 73 65 64 20 6d 6f 6e 69 74 6f 72 69 6e 67 20 74 6f 6f 6c 73 2e 00 53 65 74 20 61 20 6c 69 | based.monitoring.tools..Set.a.li |
| 116200 | 6d 69 74 20 6f 6e 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 63 6f 6e | mit.on.the.maximum.number.of.con |
| 116220 | 63 75 72 72 65 6e 74 20 6c 6f 67 67 65 64 2d 69 6e 20 75 73 65 72 73 20 6f 6e 20 74 68 65 20 73 | current.logged-in.users.on.the.s |
| 116240 | 79 73 74 65 6d 2e 00 53 65 74 20 61 20 6d 65 61 6e 69 6e 67 66 75 6c 20 64 65 73 63 72 69 70 74 | ystem..Set.a.meaningful.descript |
| 116260 | 69 6f 6e 2e 00 53 65 74 20 61 20 6e 61 6d 65 64 20 61 70 69 20 6b 65 79 2e 20 45 76 65 72 79 20 | ion..Set.a.named.api.key..Every. |
| 116280 | 6b 65 79 20 68 61 73 20 74 68 65 20 73 61 6d 65 2c 20 66 75 6c 6c 20 70 65 72 6d 69 73 73 69 6f | key.has.the.same,.full.permissio |
| 1162a0 | 6e 73 20 6f 6e 20 74 68 65 20 73 79 73 74 65 6d 2e 00 53 65 74 20 61 20 72 75 6c 65 20 64 65 73 | ns.on.the.system..Set.a.rule.des |
| 1162c0 | 63 72 69 70 74 69 6f 6e 2e 00 53 65 74 20 61 20 73 70 65 63 69 66 69 63 20 63 6f 6e 6e 65 63 74 | cription..Set.a.specific.connect |
| 1162e0 | 69 6f 6e 20 6d 61 72 6b 2e 00 53 65 74 20 61 20 73 70 65 63 69 66 69 63 20 70 61 63 6b 65 74 20 | ion.mark..Set.a.specific.packet. |
| 116300 | 6d 61 72 6b 20 76 61 6c 75 65 2e 00 53 65 74 20 61 20 73 70 65 63 69 66 69 63 20 70 61 63 6b 65 | mark.value..Set.a.specific.packe |
| 116320 | 74 20 6d 61 72 6b 2e 00 53 65 74 20 61 20 73 70 65 63 69 66 69 63 20 76 61 6c 75 65 20 6f 66 20 | t.mark..Set.a.specific.value.of. |
| 116340 | 44 69 66 66 65 72 65 6e 74 69 61 74 65 64 20 53 65 72 76 69 63 65 73 20 43 6f 64 65 70 6f 69 6e | Differentiated.Services.Codepoin |
| 116360 | 74 20 28 44 53 43 50 29 2e 00 53 65 74 20 61 63 74 69 6f 6e 20 66 6f 72 20 74 68 65 20 72 6f 75 | t.(DSCP)..Set.action.for.the.rou |
| 116380 | 74 65 2d 6d 61 70 20 70 6f 6c 69 63 79 2e 00 53 65 74 20 61 63 74 69 6f 6e 20 74 6f 20 74 61 6b | te-map.policy..Set.action.to.tak |
| 1163a0 | 65 20 6f 6e 20 65 6e 74 72 69 65 73 20 6d 61 74 63 68 69 6e 67 20 74 68 69 73 20 72 75 6c 65 2e | e.on.entries.matching.this.rule. |
| 1163c0 | 00 53 65 74 20 61 6e 20 3a 61 62 62 72 3a 60 41 20 28 41 64 64 72 65 73 73 29 60 20 72 65 63 6f | .Set.an.:abbr:`A.(Address)`.reco |
| 1163e0 | 72 64 2e 20 53 75 70 70 6f 72 74 73 20 60 60 40 60 60 20 61 6e 64 20 60 60 61 6e 79 60 60 20 6b | rd..Supports.``@``.and.``any``.k |
| 116400 | 65 79 77 6f 72 64 73 2e 00 53 65 74 20 61 6e 20 3a 61 62 62 72 3a 60 41 41 41 41 20 28 49 50 76 | eywords..Set.an.:abbr:`AAAA.(IPv |
| 116420 | 36 20 41 64 64 72 65 73 73 29 60 20 72 65 63 6f 72 64 2e 20 53 75 70 70 6f 72 74 73 20 60 60 40 | 6.Address)`.record..Supports.``@ |
| 116440 | 60 60 20 61 6e 64 20 60 60 61 6e 79 60 60 20 6b 65 79 77 6f 72 64 73 2e 00 53 65 74 20 61 6e 20 | ``.and.``any``.keywords..Set.an. |
| 116460 | 3a 61 62 62 72 3a 60 43 4e 41 4d 45 20 28 43 61 6e 6f 6e 69 63 61 6c 20 6e 61 6d 65 29 60 20 72 | :abbr:`CNAME.(Canonical.name)`.r |
| 116480 | 65 63 6f 72 64 2e 20 53 75 70 70 6f 72 74 73 20 60 60 40 60 60 20 6b 65 79 77 6f 72 64 2e 00 53 | ecord..Supports.``@``.keyword..S |
| 1164a0 | 65 74 20 61 6e 20 3a 61 62 62 72 3a 60 4e 41 50 54 52 20 28 4e 61 6d 69 6e 67 20 61 75 74 68 6f | et.an.:abbr:`NAPTR.(Naming.autho |
| 1164c0 | 72 69 74 79 20 70 6f 69 6e 74 65 72 29 60 20 72 65 63 6f 72 64 2e 20 53 75 70 70 6f 72 74 73 20 | rity.pointer)`.record..Supports. |
| 1164e0 | 60 60 40 60 60 20 6b 65 79 77 6f 72 64 2e 20 4e 41 50 54 52 20 72 65 63 6f 72 64 73 20 73 75 70 | ``@``.keyword..NAPTR.records.sup |
| 116500 | 70 6f 72 74 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 6f 70 74 69 6f 6e 73 3a 00 53 65 74 20 | port.the.following.options:.Set. |
| 116520 | 61 6e 20 3a 61 62 62 72 3a 60 4e 53 20 28 4e 61 6d 65 73 65 72 76 65 72 29 60 20 72 65 63 6f 72 | an.:abbr:`NS.(Nameserver)`.recor |
| 116540 | 64 2e 00 53 65 74 20 61 6e 20 3a 61 62 62 72 3a 60 50 54 52 20 28 50 6f 69 6e 74 65 72 20 72 65 | d..Set.an.:abbr:`PTR.(Pointer.re |
| 116560 | 63 6f 72 64 29 60 20 72 65 63 6f 72 64 2e 20 53 75 70 70 6f 72 74 73 20 60 60 40 60 60 20 6b 65 | cord)`.record..Supports.``@``.ke |
| 116580 | 79 77 6f 72 64 2e 00 53 65 74 20 61 6e 20 3a 61 62 62 72 3a 60 53 50 46 20 28 53 65 6e 64 65 72 | yword..Set.an.:abbr:`SPF.(Sender |
| 1165a0 | 20 70 6f 6c 69 63 79 20 66 72 61 6d 65 77 6f 72 6b 29 60 20 72 65 63 6f 72 64 2e 20 53 75 70 70 | .policy.framework)`.record..Supp |
| 1165c0 | 6f 72 74 73 20 60 60 40 60 60 20 6b 65 79 77 6f 72 64 2e 00 53 65 74 20 61 6e 20 3a 61 62 62 72 | orts.``@``.keyword..Set.an.:abbr |
| 1165e0 | 3a 60 53 52 56 20 28 53 65 72 76 69 63 65 29 60 20 72 65 63 6f 72 64 2e 20 53 75 70 70 6f 72 74 | :`SRV.(Service)`.record..Support |
| 116600 | 73 20 60 60 40 60 60 20 6b 65 79 77 6f 72 64 2e 00 53 65 74 20 61 6e 20 3a 61 62 62 72 3a 60 54 | s.``@``.keyword..Set.an.:abbr:`T |
| 116620 | 58 54 20 28 54 65 78 74 29 60 20 72 65 63 6f 72 64 2e 20 53 75 70 70 6f 72 74 73 20 60 60 40 60 | XT.(Text)`.record..Supports.``@` |
| 116640 | 60 20 6b 65 79 77 6f 72 64 2e 00 53 65 74 20 61 6e 20 41 50 49 2d 4b 45 59 20 69 73 20 74 68 65 | `.keyword..Set.an.API-KEY.is.the |
| 116660 | 20 6d 69 6e 69 6d 61 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 6f 20 67 65 74 20 61 20 | .minimal.configuration.to.get.a. |
| 116680 | 77 6f 72 6b 69 6e 67 20 41 50 49 20 45 6e 64 70 6f 69 6e 74 2e 00 53 65 74 20 61 6e 20 65 78 74 | working.API.Endpoint..Set.an.ext |
| 1166a0 | 65 72 6e 61 6c 20 70 6f 72 74 2d 72 61 6e 67 65 20 66 6f 72 20 74 68 65 20 65 78 74 65 72 6e 61 | ernal.port-range.for.the.externa |
| 1166c0 | 6c 20 70 6f 6f 6c 2c 20 74 68 65 20 64 65 66 61 75 6c 74 20 72 61 6e 67 65 20 69 73 20 31 30 32 | l.pool,.the.default.range.is.102 |
| 1166e0 | 34 2d 36 35 35 33 35 2e 20 4d 75 6c 74 69 70 6c 65 20 65 6e 74 72 69 65 73 20 63 61 6e 20 62 65 | 4-65535..Multiple.entries.can.be |
| 116700 | 20 61 64 64 65 64 20 74 6f 20 74 68 65 20 73 61 6d 65 20 70 6f 6f 6c 2e 00 53 65 74 20 61 75 74 | .added.to.the.same.pool..Set.aut |
| 116720 | 68 65 6e 74 69 63 61 74 69 6f 6e 20 62 61 63 6b 65 6e 64 2e 20 54 68 65 20 63 6f 6e 66 69 67 75 | hentication.backend..The.configu |
| 116740 | 72 65 64 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 62 61 63 6b 65 6e 64 20 69 73 20 75 73 | red.authentication.backend.is.us |
| 116760 | 65 64 20 66 6f 72 20 61 6c 6c 20 71 75 65 72 69 65 73 2e 00 53 65 74 20 63 6f 6e 6e 65 63 74 69 | ed.for.all.queries..Set.connecti |
| 116780 | 6f 6e 20 6d 61 72 6b 20 76 61 6c 75 65 2e 00 53 65 74 20 63 6f 6e 74 61 69 6e 65 72 20 63 61 70 | on.mark.value..Set.container.cap |
| 1167a0 | 61 62 69 6c 69 74 69 65 73 20 6f 72 20 70 65 72 6d 69 73 73 69 6f 6e 73 2e 00 53 65 74 20 63 6f | abilities.or.permissions..Set.co |
| 1167c0 | 6e 74 61 69 6e 65 72 20 73 79 73 63 74 6c 20 76 61 6c 75 65 73 2e 00 53 65 74 20 63 75 73 74 6f | ntainer.sysctl.values..Set.custo |
| 1167e0 | 6d 20 48 54 54 50 20 68 65 61 64 65 72 73 20 74 6f 20 62 65 20 69 6e 63 6c 75 64 65 64 20 69 6e | m.HTTP.headers.to.be.included.in |
| 116800 | 20 61 6c 6c 20 72 65 73 70 6f 6e 73 65 73 00 53 65 74 20 63 75 73 74 6f 6d 20 48 54 54 50 20 68 | .all.responses.Set.custom.HTTP.h |
| 116820 | 65 61 64 65 72 73 20 74 6f 20 62 65 20 69 6e 63 6c 75 64 65 64 20 69 6e 20 61 6c 6c 20 72 65 73 | eaders.to.be.included.in.all.res |
| 116840 | 70 6f 6e 73 65 73 20 75 73 69 6e 67 20 74 68 65 20 62 61 63 6b 65 6e 64 00 53 65 74 20 64 65 6c | ponses.using.the.backend.Set.del |
| 116860 | 61 79 20 62 65 74 77 65 65 6e 20 67 72 61 74 75 69 74 6f 75 73 20 41 52 50 20 6d 65 73 73 61 67 | ay.between.gratuitous.ARP.messag |
| 116880 | 65 73 20 73 65 6e 74 20 6f 6e 20 61 6e 20 69 6e 74 65 72 66 61 63 65 2e 00 53 65 74 20 64 65 6c | es.sent.on.an.interface..Set.del |
| 1168a0 | 61 79 20 66 6f 72 20 73 65 63 6f 6e 64 20 73 65 74 20 6f 66 20 67 72 61 74 75 69 74 6f 75 73 20 | ay.for.second.set.of.gratuitous. |
| 1168c0 | 41 52 50 73 20 61 66 74 65 72 20 74 72 61 6e 73 69 74 69 6f 6e 20 74 6f 20 4d 41 53 54 45 52 2e | ARPs.after.transition.to.MASTER. |
| 1168e0 | 00 53 65 74 20 64 65 73 63 72 69 70 74 69 6f 6e 20 60 3c 74 65 78 74 3e 60 20 66 6f 72 20 64 79 | .Set.description.`<text>`.for.dy |
| 116900 | 6e 61 6d 69 63 20 44 4e 53 20 73 65 72 76 69 63 65 20 62 65 69 6e 67 20 63 6f 6e 66 69 67 75 72 | namic.DNS.service.being.configur |
| 116920 | 65 64 2e 00 53 65 74 20 64 65 73 63 72 69 70 74 69 6f 6e 20 66 6f 72 20 61 73 2d 70 61 74 68 2d | ed..Set.description.for.as-path- |
| 116940 | 6c 69 73 74 20 70 6f 6c 69 63 79 2e 00 53 65 74 20 64 65 73 63 72 69 70 74 69 6f 6e 20 66 6f 72 | list.policy..Set.description.for |
| 116960 | 20 63 6f 6d 6d 75 6e 69 74 79 2d 6c 69 73 74 20 70 6f 6c 69 63 79 2e 00 53 65 74 20 64 65 73 63 | .community-list.policy..Set.desc |
| 116980 | 72 69 70 74 69 6f 6e 20 66 6f 72 20 65 78 74 63 6f 6d 6d 75 6e 69 74 79 2d 6c 69 73 74 20 70 6f | ription.for.extcommunity-list.po |
| 1169a0 | 6c 69 63 79 2e 00 53 65 74 20 64 65 73 63 72 69 70 74 69 6f 6e 20 66 6f 72 20 6c 61 72 67 65 2d | licy..Set.description.for.large- |
| 1169c0 | 63 6f 6d 6d 75 6e 69 74 79 2d 6c 69 73 74 20 70 6f 6c 69 63 79 2e 00 53 65 74 20 64 65 73 63 72 | community-list.policy..Set.descr |
| 1169e0 | 69 70 74 69 6f 6e 20 66 6f 72 20 72 75 6c 65 20 69 6e 20 49 50 76 36 20 70 72 65 66 69 78 2d 6c | iption.for.rule.in.IPv6.prefix-l |
| 116a00 | 69 73 74 2e 00 53 65 74 20 64 65 73 63 72 69 70 74 69 6f 6e 20 66 6f 72 20 72 75 6c 65 20 69 6e | ist..Set.description.for.rule.in |
| 116a20 | 20 74 68 65 20 70 72 65 66 69 78 2d 6c 69 73 74 2e 00 53 65 74 20 64 65 73 63 72 69 70 74 69 6f | .the.prefix-list..Set.descriptio |
| 116a40 | 6e 20 66 6f 72 20 72 75 6c 65 2e 00 53 65 74 20 64 65 73 63 72 69 70 74 69 6f 6e 20 66 6f 72 20 | n.for.rule..Set.description.for. |
| 116a60 | 74 68 65 20 49 50 76 36 20 61 63 63 65 73 73 20 6c 69 73 74 2e 00 53 65 74 20 64 65 73 63 72 69 | the.IPv6.access.list..Set.descri |
| 116a80 | 70 74 69 6f 6e 20 66 6f 72 20 74 68 65 20 49 50 76 36 20 70 72 65 66 69 78 2d 6c 69 73 74 20 70 | ption.for.the.IPv6.prefix-list.p |
| 116aa0 | 6f 6c 69 63 79 2e 00 53 65 74 20 64 65 73 63 72 69 70 74 69 6f 6e 20 66 6f 72 20 74 68 65 20 61 | olicy..Set.description.for.the.a |
| 116ac0 | 63 63 65 73 73 20 6c 69 73 74 2e 00 53 65 74 20 64 65 73 63 72 69 70 74 69 6f 6e 20 66 6f 72 20 | ccess.list..Set.description.for. |
| 116ae0 | 74 68 65 20 70 72 65 66 69 78 2d 6c 69 73 74 20 70 6f 6c 69 63 79 2e 00 53 65 74 20 64 65 73 63 | the.prefix-list.policy..Set.desc |
| 116b00 | 72 69 70 74 69 6f 6e 20 66 6f 72 20 74 68 65 20 72 6f 75 74 65 2d 6d 61 70 20 70 6f 6c 69 63 79 | ription.for.the.route-map.policy |
| 116b20 | 2e 00 53 65 74 20 64 65 73 63 72 69 70 74 69 6f 6e 20 66 6f 72 20 74 68 65 20 72 75 6c 65 20 69 | ..Set.description.for.the.rule.i |
| 116b40 | 6e 20 74 68 65 20 72 6f 75 74 65 2d 6d 61 70 20 70 6f 6c 69 63 79 2e 00 53 65 74 20 64 65 73 63 | n.the.route-map.policy..Set.desc |
| 116b60 | 72 69 70 74 69 6f 6e 20 6f 66 20 74 68 65 20 70 65 65 72 20 6f 72 20 70 65 65 72 20 67 72 6f 75 | ription.of.the.peer.or.peer.grou |
| 116b80 | 70 2e 00 53 65 74 20 64 65 73 63 72 69 70 74 69 6f 6e 2e 00 53 65 74 20 64 65 73 74 69 6e 61 74 | p..Set.description..Set.destinat |
| 116ba0 | 69 6f 6e 20 61 64 64 72 65 73 73 20 6f 72 20 70 72 65 66 69 78 20 74 6f 20 6d 61 74 63 68 2e 00 | ion.address.or.prefix.to.match.. |
| 116bc0 | 53 65 74 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c | Set.destination.routing.protocol |
| 116be0 | 20 6d 65 74 72 69 63 2e 20 41 64 64 20 6f 72 20 73 75 62 74 72 61 63 74 20 6d 65 74 72 69 63 2c | .metric..Add.or.subtract.metric, |
| 116c00 | 20 6f 72 20 73 65 74 20 6d 65 74 72 69 63 20 76 61 6c 75 65 2e 00 53 65 74 20 65 74 68 31 20 74 | .or.set.metric.value..Set.eth1.t |
| 116c20 | 6f 20 62 65 20 74 68 65 20 6c 69 73 74 65 6e 69 6e 67 20 69 6e 74 65 72 66 61 63 65 20 66 6f 72 | o.be.the.listening.interface.for |
| 116c40 | 20 74 68 65 20 44 48 43 50 76 36 20 72 65 6c 61 79 2e 00 53 65 74 20 65 78 65 63 75 74 69 6f 6e | .the.DHCPv6.relay..Set.execution |
| 116c60 | 20 74 69 6d 65 20 69 6e 20 63 6f 6d 6d 6f 6e 20 63 72 6f 6e 5f 20 74 69 6d 65 20 66 6f 72 6d 61 | .time.in.common.cron_.time.forma |
| 116c80 | 74 2e 20 41 20 63 72 6f 6e 20 60 3c 73 70 65 63 3e 60 20 6f 66 20 60 60 33 30 20 2a 2f 36 20 2a | t..A.cron.`<spec>`.of.``30.*/6.* |
| 116ca0 | 20 2a 20 2a 60 60 20 77 6f 75 6c 64 20 65 78 65 63 75 74 65 20 74 68 65 20 60 3c 74 61 73 6b 3e | .*.*``.would.execute.the.`<task> |
| 116cc0 | 60 20 61 74 20 6d 69 6e 75 74 65 20 33 30 20 70 61 73 74 20 65 76 65 72 79 20 36 74 68 20 68 6f | `.at.minute.30.past.every.6th.ho |
| 116ce0 | 75 72 2e 00 53 65 74 20 65 78 74 63 6f 6d 6d 75 6e 69 74 79 20 62 61 6e 64 77 69 64 74 68 00 53 | ur..Set.extcommunity.bandwidth.S |
| 116d00 | 65 74 20 65 78 74 65 72 6e 61 6c 20 73 6f 75 72 63 65 20 70 6f 72 74 20 6c 69 6d 69 74 73 20 74 | et.external.source.port.limits.t |
| 116d20 | 68 61 74 20 77 69 6c 6c 20 62 65 20 61 6c 6c 6f 63 61 74 65 64 20 74 6f 20 65 61 63 68 20 73 75 | hat.will.be.allocated.to.each.su |
| 116d40 | 62 73 63 72 69 62 65 72 20 69 6e 64 69 76 69 64 75 61 6c 6c 79 2e 20 54 68 65 20 64 65 66 61 75 | bscriber.individually..The.defau |
| 116d60 | 6c 74 20 76 61 6c 75 65 20 69 73 20 32 30 30 30 2e 00 53 65 74 20 68 6f 70 20 6c 69 6d 69 74 20 | lt.value.is.2000..Set.hop.limit. |
| 116d80 | 76 61 6c 75 65 2e 00 53 65 74 20 69 66 20 61 6e 74 65 6e 6e 61 20 70 61 74 74 65 72 6e 20 64 6f | value..Set.if.antenna.pattern.do |
| 116da0 | 65 73 20 6e 6f 74 20 63 68 61 6e 67 65 20 64 75 72 69 6e 67 20 74 68 65 20 6c 69 66 65 74 69 6d | es.not.change.during.the.lifetim |
| 116dc0 | 65 20 6f 66 20 61 6e 20 61 73 73 6f 63 69 61 74 69 6f 6e 00 53 65 74 20 69 6e 62 6f 75 6e 64 20 | e.of.an.association.Set.inbound. |
| 116de0 | 69 6e 74 65 72 66 61 63 65 20 74 6f 20 6d 61 74 63 68 2e 00 53 65 74 20 69 6e 74 65 72 66 61 63 | interface.to.match..Set.interfac |
| 116e00 | 65 73 20 74 6f 20 61 20 7a 6f 6e 65 2e 20 41 20 7a 6f 6e 65 20 63 61 6e 20 68 61 76 65 20 6d 75 | es.to.a.zone..A.zone.can.have.mu |
| 116e20 | 6c 74 69 70 6c 65 20 69 6e 74 65 72 66 61 63 65 73 2e 20 42 75 74 20 61 6e 20 69 6e 74 65 72 66 | ltiple.interfaces..But.an.interf |
| 116e40 | 61 63 65 20 63 61 6e 20 6f 6e 6c 79 20 62 65 20 61 20 6d 65 6d 62 65 72 20 69 6e 20 6f 6e 65 20 | ace.can.only.be.a.member.in.one. |
| 116e60 | 7a 6f 6e 65 2e 00 53 65 74 20 6c 6f 63 61 6c 20 3a 61 62 62 72 3a 60 41 53 4e 20 28 41 75 74 6f | zone..Set.local.:abbr:`ASN.(Auto |
| 116e80 | 6e 6f 6d 6f 75 73 20 53 79 73 74 65 6d 20 4e 75 6d 62 65 72 29 60 20 74 68 61 74 20 74 68 69 73 | nomous.System.Number)`.that.this |
| 116ea0 | 20 72 6f 75 74 65 72 20 72 65 70 72 65 73 65 6e 74 73 2e 20 54 68 69 73 20 69 73 20 61 20 61 20 | .router.represents..This.is.a.a. |
| 116ec0 | 6d 61 6e 64 61 74 6f 72 79 20 6f 70 74 69 6f 6e 21 00 53 65 74 20 6c 6f 63 61 6c 20 61 75 74 6f | mandatory.option!.Set.local.auto |
| 116ee0 | 6e 6f 6d 6f 75 73 20 73 79 73 74 65 6d 20 6e 75 6d 62 65 72 20 74 68 61 74 20 74 68 69 73 20 72 | nomous.system.number.that.this.r |
| 116f00 | 6f 75 74 65 72 20 72 65 70 72 65 73 65 6e 74 73 2e 20 54 68 69 73 20 69 73 20 61 20 6d 61 6e 64 | outer.represents..This.is.a.mand |
| 116f20 | 61 74 6f 72 79 20 6f 70 74 69 6f 6e 21 00 53 65 74 20 6d 61 74 63 68 20 63 72 69 74 65 72 69 61 | atory.option!.Set.match.criteria |
| 116f40 | 20 62 61 73 65 64 20 6f 6e 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 6d 61 72 6b 2e 00 53 65 74 20 6d | .based.on.connection.mark..Set.m |
| 116f60 | 61 74 63 68 20 63 72 69 74 65 72 69 61 20 62 61 73 65 64 20 6f 6e 20 64 65 73 74 69 6e 61 74 69 | atch.criteria.based.on.destinati |
| 116f80 | 6f 6e 20 70 6f 72 74 2c 20 77 68 65 72 65 20 3c 6d 61 74 63 68 5f 63 72 69 74 65 72 69 61 3e 20 | on.port,.where.<match_criteria>. |
| 116fa0 | 63 6f 75 6c 64 20 62 65 3a 00 53 65 74 20 6d 61 74 63 68 20 63 72 69 74 65 72 69 61 20 62 61 73 | could.be:.Set.match.criteria.bas |
| 116fc0 | 65 64 20 6f 6e 20 73 65 73 73 69 6f 6e 20 73 74 61 74 65 2e 00 53 65 74 20 6d 61 74 63 68 20 63 | ed.on.session.state..Set.match.c |
| 116fe0 | 72 69 74 65 72 69 61 20 62 61 73 65 64 20 6f 6e 20 73 6f 75 72 63 65 20 6f 72 20 64 65 73 74 69 | riteria.based.on.source.or.desti |
| 117000 | 6e 61 74 69 6f 6e 20 67 72 6f 75 70 73 2c 20 77 68 65 72 65 20 3c 74 65 78 74 3e 20 77 6f 75 6c | nation.groups,.where.<text>.woul |
| 117020 | 64 20 62 65 20 74 68 65 20 67 72 6f 75 70 20 6e 61 6d 65 2f 69 64 65 6e 74 69 66 69 65 72 2e 20 | d.be.the.group.name/identifier.. |
| 117040 | 50 72 65 70 65 6e 64 20 63 68 61 72 61 63 74 65 72 20 27 21 27 20 66 6f 72 20 69 6e 76 65 72 74 | Prepend.character.'!'.for.invert |
| 117060 | 65 64 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 2e 00 53 65 74 20 6d 61 74 63 68 20 | ed.matching.criteria..Set.match. |
| 117080 | 63 72 69 74 65 72 69 61 20 62 61 73 65 64 20 6f 6e 20 73 6f 75 72 63 65 20 6f 72 20 64 65 73 74 | criteria.based.on.source.or.dest |
| 1170a0 | 69 6e 61 74 69 6f 6e 20 69 70 76 34 7c 69 70 76 36 20 61 64 64 72 65 73 73 2c 20 77 68 65 72 65 | ination.ipv4|ipv6.address,.where |
| 1170c0 | 20 3c 6d 61 74 63 68 5f 63 72 69 74 65 72 69 61 3e 20 63 6f 75 6c 64 20 62 65 3a 00 53 65 74 20 | .<match_criteria>.could.be:.Set. |
| 1170e0 | 6d 61 74 63 68 20 63 72 69 74 65 72 69 61 20 62 61 73 65 64 20 6f 6e 20 74 63 70 20 66 6c 61 67 | match.criteria.based.on.tcp.flag |
| 117100 | 73 2e 20 41 6c 6c 6f 77 65 64 20 76 61 6c 75 65 73 20 66 6f 72 20 54 43 50 20 66 6c 61 67 73 3a | s..Allowed.values.for.TCP.flags: |
| 117120 | 20 53 59 4e 20 41 43 4b 20 46 49 4e 20 52 53 54 20 55 52 47 20 50 53 48 20 41 4c 4c 2e 20 57 68 | .SYN.ACK.FIN.RST.URG.PSH.ALL..Wh |
| 117140 | 65 6e 20 73 70 65 63 69 66 79 69 6e 67 20 6d 6f 72 65 20 74 68 61 6e 20 6f 6e 65 20 66 6c 61 67 | en.specifying.more.than.one.flag |
| 117160 | 2c 20 66 6c 61 67 73 20 73 68 6f 75 6c 64 20 62 65 20 63 6f 6d 6d 61 2d 73 65 70 61 72 61 74 65 | ,.flags.should.be.comma-separate |
| 117180 | 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 3a 20 76 61 6c 75 65 20 6f 66 20 27 53 59 4e 2c 21 | d..For.example.:.value.of.'SYN,! |
| 1171a0 | 41 43 4b 2c 21 46 49 4e 2c 21 52 53 54 27 20 77 69 6c 6c 20 6f 6e 6c 79 20 6d 61 74 63 68 20 70 | ACK,!FIN,!RST'.will.only.match.p |
| 1171c0 | 61 63 6b 65 74 73 20 77 69 74 68 20 74 68 65 20 53 59 4e 20 66 6c 61 67 20 73 65 74 2c 20 61 6e | ackets.with.the.SYN.flag.set,.an |
| 1171e0 | 64 20 74 68 65 20 41 43 4b 2c 20 46 49 4e 20 61 6e 64 20 52 53 54 20 66 6c 61 67 73 20 75 6e 73 | d.the.ACK,.FIN.and.RST.flags.uns |
| 117200 | 65 74 2e 00 53 65 74 20 6d 61 78 69 6d 75 6d 20 60 3c 73 69 7a 65 3e 60 20 6f 66 20 44 48 43 50 | et..Set.maximum.`<size>`.of.DHCP |
| 117220 | 20 70 61 63 6b 65 74 73 20 69 6e 63 6c 75 64 69 6e 67 20 72 65 6c 61 79 20 61 67 65 6e 74 20 69 | .packets.including.relay.agent.i |
| 117240 | 6e 66 6f 72 6d 61 74 69 6f 6e 2e 20 49 66 20 61 20 44 48 43 50 20 70 61 63 6b 65 74 20 73 69 7a | nformation..If.a.DHCP.packet.siz |
| 117260 | 65 20 73 75 72 70 61 73 73 65 73 20 74 68 69 73 20 76 61 6c 75 65 20 69 74 20 77 69 6c 6c 20 62 | e.surpasses.this.value.it.will.b |
| 117280 | 65 20 66 6f 72 77 61 72 64 65 64 20 77 69 74 68 6f 75 74 20 61 70 70 65 6e 64 69 6e 67 20 72 65 | e.forwarded.without.appending.re |
| 1172a0 | 6c 61 79 20 61 67 65 6e 74 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2e 20 52 61 6e 67 65 20 36 34 2e | lay.agent.information..Range.64. |
| 1172c0 | 2e 2e 31 34 30 30 2c 20 64 65 66 61 75 6c 74 20 35 37 36 2e 00 53 65 74 20 6d 61 78 69 6d 75 6d | ..1400,.default.576..Set.maximum |
| 1172e0 | 20 61 76 65 72 61 67 65 20 6d 61 74 63 68 69 6e 67 20 72 61 74 65 2e 20 46 6f 72 6d 61 74 20 66 | .average.matching.rate..Format.f |
| 117300 | 6f 72 20 72 61 74 65 3a 20 69 6e 74 65 67 65 72 2f 74 69 6d 65 5f 75 6e 69 74 2c 20 77 68 65 72 | or.rate:.integer/time_unit,.wher |
| 117320 | 65 20 74 69 6d 65 5f 75 6e 69 74 20 63 6f 75 6c 64 20 62 65 20 61 6e 79 20 6f 6e 65 20 6f 66 20 | e.time_unit.could.be.any.one.of. |
| 117340 | 73 65 63 6f 6e 64 2c 20 6d 69 6e 75 74 65 2c 20 68 6f 75 72 20 6f 72 20 64 61 79 2e 46 6f 72 20 | second,.minute,.hour.or.day.For. |
| 117360 | 65 78 61 6d 70 6c 65 20 31 2f 73 65 63 6f 6e 64 20 69 6d 70 6c 69 65 73 20 72 75 6c 65 20 74 6f | example.1/second.implies.rule.to |
| 117380 | 20 62 65 20 6d 61 74 63 68 65 64 20 61 74 20 61 6e 20 61 76 65 72 61 67 65 20 6f 66 20 6f 6e 63 | .be.matched.at.an.average.of.onc |
| 1173a0 | 65 20 70 65 72 20 73 65 63 6f 6e 64 2e 00 53 65 74 20 6d 61 78 69 6d 75 6d 20 68 6f 70 20 63 6f | e.per.second..Set.maximum.hop.co |
| 1173c0 | 75 6e 74 20 62 65 66 6f 72 65 20 70 61 63 6b 65 74 73 20 61 72 65 20 64 69 73 63 61 72 64 65 64 | unt.before.packets.are.discarded |
| 1173e0 | 2c 20 64 65 66 61 75 6c 74 3a 20 31 30 00 53 65 74 20 6d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 | ,.default:.10.Set.maximum.number |
| 117400 | 20 6f 66 20 70 61 63 6b 65 74 73 20 74 6f 20 61 6c 6f 77 20 69 6e 20 65 78 63 65 73 73 20 6f 66 | .of.packets.to.alow.in.excess.of |
| 117420 | 20 72 61 74 65 2e 00 53 65 74 20 6d 69 6e 69 6d 75 6d 20 74 69 6d 65 20 69 6e 74 65 72 76 61 6c | .rate..Set.minimum.time.interval |
| 117440 | 20 66 6f 72 20 72 65 66 72 65 73 68 69 6e 67 20 67 72 61 74 75 69 74 6f 75 73 20 41 52 50 73 20 | .for.refreshing.gratuitous.ARPs. |
| 117460 | 77 68 69 6c 65 20 4d 41 53 54 45 52 2e 00 53 65 74 20 6d 6f 64 65 20 66 6f 72 20 49 50 73 65 63 | while.MASTER..Set.mode.for.IPsec |
| 117480 | 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 62 65 74 77 65 65 6e 20 56 79 4f 53 20 61 6e 64 | .authentication.between.VyOS.and |
| 1174a0 | 20 4c 32 54 50 20 63 6c 69 65 6e 74 73 2e 00 53 65 74 20 6e 75 6d 62 65 72 20 6f 66 20 67 72 61 | .L2TP.clients..Set.number.of.gra |
| 1174c0 | 74 75 69 74 6f 75 73 20 41 52 50 20 6d 65 73 73 61 67 65 73 20 74 6f 20 73 65 6e 64 20 61 74 20 | tuitous.ARP.messages.to.send.at. |
| 1174e0 | 61 20 74 69 6d 65 20 61 66 74 65 72 20 74 72 61 6e 73 69 74 69 6f 6e 20 74 6f 20 4d 41 53 54 45 | a.time.after.transition.to.MASTE |
| 117500 | 52 2e 00 53 65 74 20 6e 75 6d 62 65 72 20 6f 66 20 67 72 61 74 75 69 74 6f 75 73 20 41 52 50 20 | R..Set.number.of.gratuitous.ARP. |
| 117520 | 6d 65 73 73 61 67 65 73 20 74 6f 20 73 65 6e 64 20 61 74 20 61 20 74 69 6d 65 20 77 68 69 6c 65 | messages.to.send.at.a.time.while |
| 117540 | 20 4d 41 53 54 45 52 2e 00 53 65 74 20 6e 75 6d 62 65 72 20 6f 66 20 73 65 63 6f 6e 64 73 20 66 | .MASTER..Set.number.of.seconds.f |
| 117560 | 6f 72 20 48 65 6c 6c 6f 20 49 6e 74 65 72 76 61 6c 20 74 69 6d 65 72 20 76 61 6c 75 65 2e 20 53 | or.Hello.Interval.timer.value..S |
| 117580 | 65 74 74 69 6e 67 20 74 68 69 73 20 76 61 6c 75 65 2c 20 48 65 6c 6c 6f 20 70 61 63 6b 65 74 20 | etting.this.value,.Hello.packet. |
| 1175a0 | 77 69 6c 6c 20 62 65 20 73 65 6e 74 20 65 76 65 72 79 20 74 69 6d 65 72 20 76 61 6c 75 65 20 73 | will.be.sent.every.timer.value.s |
| 1175c0 | 65 63 6f 6e 64 73 20 6f 6e 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 69 6e 74 65 72 66 61 63 | econds.on.the.specified.interfac |
| 1175e0 | 65 2e 20 54 68 69 73 20 76 61 6c 75 65 20 6d 75 73 74 20 62 65 20 74 68 65 20 73 61 6d 65 20 66 | e..This.value.must.be.the.same.f |
| 117600 | 6f 72 20 61 6c 6c 20 72 6f 75 74 65 72 73 20 61 74 74 61 63 68 65 64 20 74 6f 20 61 20 63 6f 6d | or.all.routers.attached.to.a.com |
| 117620 | 6d 6f 6e 20 6e 65 74 77 6f 72 6b 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 | mon.network..The.default.value.i |
| 117640 | 73 20 31 30 20 73 65 63 6f 6e 64 73 2e 20 54 68 65 20 69 6e 74 65 72 76 61 6c 20 72 61 6e 67 65 | s.10.seconds..The.interval.range |
| 117660 | 20 69 73 20 31 20 74 6f 20 36 35 35 33 35 2e 00 53 65 74 20 6e 75 6d 62 65 72 20 6f 66 20 73 65 | .is.1.to.65535..Set.number.of.se |
| 117680 | 63 6f 6e 64 73 20 66 6f 72 20 72 6f 75 74 65 72 20 44 65 61 64 20 49 6e 74 65 72 76 61 6c 20 74 | conds.for.router.Dead.Interval.t |
| 1176a0 | 69 6d 65 72 20 76 61 6c 75 65 20 75 73 65 64 20 66 6f 72 20 57 61 69 74 20 54 69 6d 65 72 20 61 | imer.value.used.for.Wait.Timer.a |
| 1176c0 | 6e 64 20 49 6e 61 63 74 69 76 69 74 79 20 54 69 6d 65 72 2e 20 54 68 69 73 20 76 61 6c 75 65 20 | nd.Inactivity.Timer..This.value. |
| 1176e0 | 6d 75 73 74 20 62 65 20 74 68 65 20 73 61 6d 65 20 66 6f 72 20 61 6c 6c 20 72 6f 75 74 65 72 73 | must.be.the.same.for.all.routers |
| 117700 | 20 61 74 74 61 63 68 65 64 20 74 6f 20 61 20 63 6f 6d 6d 6f 6e 20 6e 65 74 77 6f 72 6b 2e 20 54 | .attached.to.a.common.network..T |
| 117720 | 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 34 30 20 73 65 63 6f 6e 64 73 2e 20 | he.default.value.is.40.seconds.. |
| 117740 | 54 68 65 20 69 6e 74 65 72 76 61 6c 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 36 35 35 33 35 | The.interval.range.is.1.to.65535 |
| 117760 | 2e 00 53 65 74 20 70 61 63 6b 65 74 20 6d 6f 64 69 66 69 63 61 74 69 6f 6e 73 3a 20 45 78 70 6c | ..Set.packet.modifications:.Expl |
| 117780 | 69 63 69 74 6c 79 20 73 65 74 20 54 43 50 20 4d 61 78 69 6d 75 6d 20 73 65 67 6d 65 6e 74 20 73 | icitly.set.TCP.Maximum.segment.s |
| 1177a0 | 69 7a 65 20 76 61 6c 75 65 2e 00 53 65 74 20 70 61 63 6b 65 74 20 6d 6f 64 69 66 69 63 61 74 69 | ize.value..Set.packet.modificati |
| 1177c0 | 6f 6e 73 3a 20 50 61 63 6b 65 74 20 44 69 66 66 65 72 65 6e 74 69 61 74 65 64 20 53 65 72 76 69 | ons:.Packet.Differentiated.Servi |
| 1177e0 | 63 65 73 20 43 6f 64 65 70 6f 69 6e 74 20 28 44 53 43 50 29 00 53 65 74 20 70 61 72 61 6d 65 74 | ces.Codepoint.(DSCP).Set.paramet |
| 117800 | 65 72 73 20 66 6f 72 20 6d 61 74 63 68 69 6e 67 20 72 65 63 65 6e 74 6c 79 20 73 65 65 6e 20 73 | ers.for.matching.recently.seen.s |
| 117820 | 6f 75 72 63 65 73 2e 20 54 68 69 73 20 6d 61 74 63 68 20 63 6f 75 6c 64 20 62 65 20 75 73 65 64 | ources..This.match.could.be.used |
| 117840 | 20 62 79 20 73 65 65 74 69 6e 67 20 63 6f 75 6e 74 20 28 73 6f 75 72 63 65 20 61 64 64 72 65 73 | .by.seeting.count.(source.addres |
| 117860 | 73 20 73 65 65 6e 20 6d 6f 72 65 20 74 68 61 6e 20 3c 31 2d 32 35 35 3e 20 74 69 6d 65 73 29 20 | s.seen.more.than.<1-255>.times). |
| 117880 | 61 6e 64 2f 6f 72 20 74 69 6d 65 20 28 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 73 65 65 6e | and/or.time.(source.address.seen |
| 1178a0 | 20 69 6e 20 74 68 65 20 6c 61 73 74 20 3c 30 2d 34 32 39 34 39 36 37 32 39 35 3e 20 73 65 63 6f | .in.the.last.<0-4294967295>.seco |
| 1178c0 | 6e 64 73 29 2e 00 53 65 74 20 70 72 65 64 65 66 69 6e 65 64 20 73 68 61 72 65 64 20 73 65 63 72 | nds)..Set.predefined.shared.secr |
| 1178e0 | 65 74 20 70 68 72 61 73 65 2e 00 53 65 74 20 70 72 65 66 69 78 65 73 20 74 6f 20 74 61 62 6c 65 | et.phrase..Set.prefixes.to.table |
| 117900 | 2e 00 53 65 74 20 70 72 6f 78 79 20 66 6f 72 20 61 6c 6c 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 | ..Set.proxy.for.all.connections. |
| 117920 | 69 6e 69 74 69 61 74 65 64 20 62 79 20 56 79 4f 53 2c 20 69 6e 63 6c 75 64 69 6e 67 20 48 54 54 | initiated.by.VyOS,.including.HTT |
| 117940 | 50 2c 20 48 54 54 50 53 2c 20 61 6e 64 20 46 54 50 20 28 61 6e 6f 6e 79 6d 6f 75 73 20 66 74 70 | P,.HTTPS,.and.FTP.(anonymous.ftp |
| 117960 | 29 2e 00 53 65 74 20 72 6f 75 74 65 20 74 61 72 67 65 74 20 76 61 6c 75 65 20 69 6e 20 66 6f 72 | )..Set.route.target.value.in.for |
| 117980 | 6d 61 74 20 60 60 3c 30 2d 36 35 35 33 35 3a 30 2d 34 32 39 34 39 36 37 32 39 35 3e 60 60 20 6f | mat.``<0-65535:0-4294967295>``.o |
| 1179a0 | 72 20 60 60 3c 49 50 3a 30 2d 36 35 35 33 35 3e 60 60 2e 00 53 65 74 20 72 6f 75 74 69 6e 67 20 | r.``<IP:0-65535>``..Set.routing. |
| 1179c0 | 74 61 62 6c 65 20 74 6f 20 66 6f 72 77 61 72 64 20 70 61 63 6b 65 74 20 74 6f 2e 00 53 65 74 20 | table.to.forward.packet.to..Set. |
| 1179e0 | 72 75 6c 65 20 61 63 74 69 6f 6e 20 74 6f 20 64 72 6f 70 2e 00 53 65 74 20 73 65 72 76 69 63 65 | rule.action.to.drop..Set.service |
| 117a00 | 20 74 6f 20 62 69 6e 64 20 6f 6e 20 49 50 20 61 64 64 72 65 73 73 2c 20 62 79 20 64 65 66 61 75 | .to.bind.on.IP.address,.by.defau |
| 117a20 | 6c 74 20 6c 69 73 74 65 6e 20 6f 6e 20 61 6e 79 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 00 53 | lt.listen.on.any.IPv4.and.IPv6.S |
| 117a40 | 65 74 20 73 69 74 65 20 6f 66 20 6f 72 69 67 69 6e 20 76 61 6c 75 65 20 69 6e 20 66 6f 72 6d 61 | et.site.of.origin.value.in.forma |
| 117a60 | 74 20 60 60 3c 30 2d 36 35 35 33 35 3a 30 2d 34 32 39 34 39 36 37 32 39 35 3e 60 60 20 6f 72 20 | t.``<0-65535:0-4294967295>``.or. |
| 117a80 | 60 60 3c 49 50 3a 30 2d 36 35 35 33 35 3e 60 60 2e 00 53 65 74 20 73 6f 6d 65 20 61 74 74 72 69 | ``<IP:0-65535>``..Set.some.attri |
| 117aa0 | 62 75 74 65 73 20 28 6c 69 6b 65 20 41 53 20 50 41 54 48 20 6f 72 20 43 6f 6d 6d 75 6e 69 74 79 | butes.(like.AS.PATH.or.Community |
| 117ac0 | 20 76 61 6c 75 65 29 20 74 6f 20 61 64 76 65 72 74 69 73 65 64 20 72 6f 75 74 65 73 20 74 6f 20 | .value).to.advertised.routes.to. |
| 117ae0 | 6e 65 69 67 68 62 6f 72 73 2e 00 53 65 74 20 73 6f 6d 65 20 6d 65 74 72 69 63 20 74 6f 20 72 6f | neighbors..Set.some.metric.to.ro |
| 117b00 | 75 74 65 73 20 6c 65 61 72 6e 65 64 20 66 72 6f 6d 20 61 20 70 61 72 74 69 63 75 6c 61 72 20 6e | utes.learned.from.a.particular.n |
| 117b20 | 65 69 67 68 62 6f 72 2e 00 53 65 74 20 73 6f 75 72 63 65 20 49 50 2f 49 50 76 36 20 61 64 64 72 | eighbor..Set.source.IP/IPv6.addr |
| 117b40 | 65 73 73 20 66 6f 72 20 72 6f 75 74 65 2e 00 53 65 74 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 | ess.for.route..Set.source.addres |
| 117b60 | 73 20 6f 72 20 70 72 65 66 69 78 20 74 6f 20 6d 61 74 63 68 2e 00 53 65 74 20 73 6f 75 72 63 65 | s.or.prefix.to.match..Set.source |
| 117b80 | 2d 61 64 64 72 65 73 73 20 74 6f 20 79 6f 75 72 20 6c 6f 63 61 6c 20 49 50 20 28 4c 41 4e 29 2e | -address.to.your.local.IP.(LAN). |
| 117ba0 | 00 53 65 74 20 74 61 67 20 76 61 6c 75 65 20 66 6f 72 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f | .Set.tag.value.for.routing.proto |
| 117bc0 | 63 6f 6c 2e 00 53 65 74 20 74 68 65 20 22 72 65 63 75 72 73 69 6f 6e 20 64 65 73 69 72 65 64 22 | col..Set.the."recursion.desired" |
| 117be0 | 20 62 69 74 20 69 6e 20 72 65 71 75 65 73 74 73 20 74 6f 20 74 68 65 20 75 70 73 74 72 65 61 6d | .bit.in.requests.to.the.upstream |
| 117c00 | 20 6e 61 6d 65 73 65 72 76 65 72 2e 00 53 65 74 20 74 68 65 20 3a 61 62 62 72 3a 60 44 52 20 28 | .nameserver..Set.the.:abbr:`DR.( |
| 117c20 | 44 65 73 69 67 6e 61 74 65 64 20 52 6f 75 74 65 72 29 60 20 50 72 69 6f 72 69 74 79 20 66 6f 72 | Designated.Router)`.Priority.for |
| 117c40 | 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 | .the.interface..This.command.is. |
| 117c60 | 75 73 65 66 75 6c 20 74 6f 20 61 6c 6c 6f 77 20 74 68 65 20 75 73 65 72 20 74 6f 20 69 6e 66 6c | useful.to.allow.the.user.to.infl |
| 117c80 | 75 65 6e 63 65 20 77 68 61 74 20 6e 6f 64 65 20 62 65 63 6f 6d 65 73 20 74 68 65 20 44 52 20 66 | uence.what.node.becomes.the.DR.f |
| 117ca0 | 6f 72 20 61 20 4c 41 4e 20 73 65 67 6d 65 6e 74 2e 00 53 65 74 20 74 68 65 20 3a 61 62 62 72 3a | or.a.LAN.segment..Set.the.:abbr: |
| 117cc0 | 60 4d 52 55 20 28 4d 61 78 69 6d 75 6d 20 52 65 63 65 69 76 65 20 55 6e 69 74 29 60 20 74 6f 20 | `MRU.(Maximum.Receive.Unit)`.to. |
| 117ce0 | 60 6d 72 75 60 2e 20 50 50 50 64 20 77 69 6c 6c 20 61 73 6b 20 74 68 65 20 70 65 65 72 20 74 6f | `mru`..PPPd.will.ask.the.peer.to |
| 117d00 | 20 73 65 6e 64 20 70 61 63 6b 65 74 73 20 6f 66 20 6e 6f 20 6d 6f 72 65 20 74 68 61 6e 20 60 6d | .send.packets.of.no.more.than.`m |
| 117d20 | 72 75 60 20 62 79 74 65 73 2e 20 54 68 65 20 76 61 6c 75 65 20 6f 66 20 60 6d 72 75 60 20 6d 75 | ru`.bytes..The.value.of.`mru`.mu |
| 117d40 | 73 74 20 62 65 20 62 65 74 77 65 65 6e 20 31 32 38 20 61 6e 64 20 31 36 33 38 34 2e 00 53 65 74 | st.be.between.128.and.16384..Set |
| 117d60 | 20 74 68 65 20 3a 61 62 62 72 3a 60 54 54 4c 20 28 54 69 6d 65 2d 74 6f 2d 6c 69 76 65 29 60 20 | .the.:abbr:`TTL.(Time-to-live)`. |
| 117d80 | 66 6f 72 20 74 68 65 20 72 65 63 6f 72 64 20 69 6e 20 73 65 63 6f 6e 64 73 2e 20 44 65 66 61 75 | for.the.record.in.seconds..Defau |
| 117da0 | 6c 74 20 69 73 20 33 30 30 20 73 65 63 6f 6e 64 73 2e 00 53 65 74 20 74 68 65 20 42 47 50 20 6e | lt.is.300.seconds..Set.the.BGP.n |
| 117dc0 | 65 78 74 68 6f 70 20 61 64 64 72 65 73 73 20 74 6f 20 74 68 65 20 61 64 64 72 65 73 73 20 6f 66 | exthop.address.to.the.address.of |
| 117de0 | 20 74 68 65 20 70 65 65 72 2e 20 46 6f 72 20 61 6e 20 69 6e 63 6f 6d 69 6e 67 20 72 6f 75 74 65 | .the.peer..For.an.incoming.route |
| 117e00 | 2d 6d 61 70 20 74 68 69 73 20 6d 65 61 6e 73 20 74 68 65 20 69 70 20 61 64 64 72 65 73 73 20 6f | -map.this.means.the.ip.address.o |
| 117e20 | 66 20 6f 75 72 20 70 65 65 72 20 69 73 20 75 73 65 64 2e 20 46 6f 72 20 61 6e 20 6f 75 74 67 6f | f.our.peer.is.used..For.an.outgo |
| 117e40 | 69 6e 67 20 72 6f 75 74 65 2d 6d 61 70 20 74 68 69 73 20 6d 65 61 6e 73 20 74 68 65 20 69 70 20 | ing.route-map.this.means.the.ip. |
| 117e60 | 61 64 64 72 65 73 73 20 6f 66 20 6f 75 72 20 73 65 6c 66 20 69 73 20 75 73 65 64 20 74 6f 20 65 | address.of.our.self.is.used.to.e |
| 117e80 | 73 74 61 62 6c 69 73 68 20 74 68 65 20 70 65 65 72 69 6e 67 20 77 69 74 68 20 6f 75 72 20 6e 65 | stablish.the.peering.with.our.ne |
| 117ea0 | 69 67 68 62 6f 72 2e 00 53 65 74 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 | ighbor..Set.the.IP.address.of.th |
| 117ec0 | 65 20 6c 6f 63 61 6c 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 62 65 20 75 73 65 64 20 66 6f 72 | e.local.interface.to.be.used.for |
| 117ee0 | 20 74 68 65 20 74 75 6e 6e 65 6c 2e 00 53 65 74 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 | .the.tunnel..Set.the.IP.address. |
| 117f00 | 6f 66 20 74 68 65 20 72 65 6d 6f 74 65 20 70 65 65 72 2e 20 49 74 20 6d 61 79 20 62 65 20 73 70 | of.the.remote.peer..It.may.be.sp |
| 117f20 | 65 63 69 66 69 65 64 20 61 73 20 61 6e 20 49 50 76 34 20 61 64 64 72 65 73 73 20 6f 72 20 61 6e | ecified.as.an.IPv4.address.or.an |
| 117f40 | 20 49 50 76 36 20 61 64 64 72 65 73 73 2e 00 53 65 74 20 74 68 65 20 49 50 76 34 20 73 6f 75 72 | .IPv6.address..Set.the.IPv4.sour |
| 117f60 | 63 65 20 76 61 6c 69 64 61 74 69 6f 6e 20 6d 6f 64 65 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e | ce.validation.mode..The.followin |
| 117f80 | 67 20 73 79 73 74 65 6d 20 70 61 72 61 6d 65 74 65 72 20 77 69 6c 6c 20 62 65 20 61 6c 74 65 72 | g.system.parameter.will.be.alter |
| 117fa0 | 65 64 3a 00 53 65 74 20 74 68 65 20 4d 4c 44 20 6c 61 73 74 20 6d 65 6d 62 65 72 20 71 75 65 72 | ed:.Set.the.MLD.last.member.quer |
| 117fc0 | 79 20 63 6f 75 6e 74 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 32 2e | y.count..The.default.value.is.2. |
| 117fe0 | 00 53 65 74 20 74 68 65 20 4d 4c 44 20 6c 61 73 74 20 6d 65 6d 62 65 72 20 71 75 65 72 79 20 69 | .Set.the.MLD.last.member.query.i |
| 118000 | 6e 74 65 72 76 61 6c 20 69 6e 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 20 28 31 30 30 2d 36 35 35 | nterval.in.milliseconds.(100-655 |
| 118020 | 33 35 30 30 29 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 31 30 30 30 | 3500)..The.default.value.is.1000 |
| 118040 | 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 2e 00 53 65 74 20 74 68 65 20 4d 4c 44 20 71 75 65 72 79 | .milliseconds..Set.the.MLD.query |
| 118060 | 20 72 65 73 70 6f 6e 73 65 20 74 69 6d 65 6f 75 74 20 69 6e 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 | .response.timeout.in.millisecond |
| 118080 | 73 20 28 31 30 30 2d 36 35 35 33 35 30 30 29 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c | s.(100-6553500)..The.default.val |
| 1180a0 | 75 65 20 69 73 20 31 30 30 30 30 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 2e 00 53 65 74 20 74 68 | ue.is.10000.milliseconds..Set.th |
| 1180c0 | 65 20 4d 4c 44 20 76 65 72 73 69 6f 6e 20 75 73 65 64 20 6f 6e 20 74 68 69 73 20 69 6e 74 65 72 | e.MLD.version.used.on.this.inter |
| 1180e0 | 66 61 63 65 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 32 2e 00 53 65 | face..The.default.value.is.2..Se |
| 118100 | 74 20 74 68 65 20 4d 61 78 69 6d 75 6d 20 53 74 61 63 6b 20 44 65 70 74 68 20 73 75 70 70 6f 72 | t.the.Maximum.Stack.Depth.suppor |
| 118120 | 74 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 2e 20 54 68 65 20 76 61 6c 75 65 20 64 65 70 | ted.by.the.router..The.value.dep |
| 118140 | 65 6e 64 20 6f 66 20 74 68 65 20 4d 50 4c 53 20 64 61 74 61 70 6c 61 6e 65 2e 00 53 65 74 20 74 | end.of.the.MPLS.dataplane..Set.t |
| 118160 | 68 65 20 50 49 4d 20 68 65 6c 6c 6f 20 61 6e 64 20 68 6f 6c 64 20 69 6e 74 65 72 76 61 6c 20 66 | he.PIM.hello.and.hold.interval.f |
| 118180 | 6f 72 20 61 20 69 6e 74 65 72 66 61 63 65 2e 00 53 65 74 20 74 68 65 20 53 65 67 6d 65 6e 74 20 | or.a.interface..Set.the.Segment. |
| 1181a0 | 52 6f 75 74 69 6e 67 20 47 6c 6f 62 61 6c 20 42 6c 6f 63 6b 20 69 2e 65 2e 20 74 68 65 20 6c 61 | Routing.Global.Block.i.e..the.la |
| 1181c0 | 62 65 6c 20 72 61 6e 67 65 20 75 73 65 64 20 62 79 20 4d 50 4c 53 20 74 6f 20 73 74 6f 72 65 20 | bel.range.used.by.MPLS.to.store. |
| 1181e0 | 6c 61 62 65 6c 20 69 6e 20 74 68 65 20 4d 50 4c 53 20 46 49 42 20 66 6f 72 20 50 72 65 66 69 78 | label.in.the.MPLS.FIB.for.Prefix |
| 118200 | 20 53 49 44 2e 20 4e 6f 74 65 20 74 68 61 74 20 74 68 65 20 62 6c 6f 63 6b 20 73 69 7a 65 20 6d | .SID..Note.that.the.block.size.m |
| 118220 | 61 79 20 6e 6f 74 20 65 78 63 65 65 64 20 36 35 35 33 35 2e 00 53 65 74 20 74 68 65 20 53 65 67 | ay.not.exceed.65535..Set.the.Seg |
| 118240 | 6d 65 6e 74 20 52 6f 75 74 69 6e 67 20 47 6c 6f 62 61 6c 20 42 6c 6f 63 6b 20 69 2e 65 2e 20 74 | ment.Routing.Global.Block.i.e..t |
| 118260 | 68 65 20 6c 6f 77 20 6c 61 62 65 6c 20 72 61 6e 67 65 20 75 73 65 64 20 62 79 20 4d 50 4c 53 20 | he.low.label.range.used.by.MPLS. |
| 118280 | 74 6f 20 73 74 6f 72 65 20 6c 61 62 65 6c 20 69 6e 20 74 68 65 20 4d 50 4c 53 20 46 49 42 20 66 | to.store.label.in.the.MPLS.FIB.f |
| 1182a0 | 6f 72 20 50 72 65 66 69 78 20 53 49 44 2e 20 4e 6f 74 65 20 74 68 61 74 20 74 68 65 20 62 6c 6f | or.Prefix.SID..Note.that.the.blo |
| 1182c0 | 63 6b 20 73 69 7a 65 20 6d 61 79 20 6e 6f 74 20 65 78 63 65 65 64 20 36 35 35 33 35 2e 00 53 65 | ck.size.may.not.exceed.65535..Se |
| 1182e0 | 74 20 74 68 65 20 53 65 67 6d 65 6e 74 20 52 6f 75 74 69 6e 67 20 4c 6f 63 61 6c 20 42 6c 6f 63 | t.the.Segment.Routing.Local.Bloc |
| 118300 | 6b 20 69 2e 65 2e 20 74 68 65 20 6c 61 62 65 6c 20 72 61 6e 67 65 20 75 73 65 64 20 62 79 20 4d | k.i.e..the.label.range.used.by.M |
| 118320 | 50 4c 53 20 74 6f 20 73 74 6f 72 65 20 6c 61 62 65 6c 20 69 6e 20 74 68 65 20 4d 50 4c 53 20 46 | PLS.to.store.label.in.the.MPLS.F |
| 118340 | 49 42 20 66 6f 72 20 50 72 65 66 69 78 20 53 49 44 2e 20 4e 6f 74 65 20 74 68 61 74 20 74 68 65 | IB.for.Prefix.SID..Note.that.the |
| 118360 | 20 62 6c 6f 63 6b 20 73 69 7a 65 20 6d 61 79 20 6e 6f 74 20 65 78 63 65 65 64 20 36 35 35 33 35 | .block.size.may.not.exceed.65535 |
| 118380 | 2e 53 65 67 6d 65 6e 74 20 52 6f 75 74 69 6e 67 20 4c 6f 63 61 6c 20 42 6c 6f 63 6b 2c 20 54 68 | .Segment.Routing.Local.Block,.Th |
| 1183a0 | 65 20 6e 65 67 61 74 69 76 65 20 63 6f 6d 6d 61 6e 64 20 61 6c 77 61 79 73 20 75 6e 73 65 74 73 | e.negative.command.always.unsets |
| 1183c0 | 20 62 6f 74 68 2e 00 53 65 74 20 74 68 65 20 53 65 67 6d 65 6e 74 20 52 6f 75 74 69 6e 67 20 4c | .both..Set.the.Segment.Routing.L |
| 1183e0 | 6f 63 61 6c 20 42 6c 6f 63 6b 20 69 2e 65 2e 20 74 68 65 20 6c 6f 77 20 6c 61 62 65 6c 20 72 61 | ocal.Block.i.e..the.low.label.ra |
| 118400 | 6e 67 65 20 75 73 65 64 20 62 79 20 4d 50 4c 53 20 74 6f 20 73 74 6f 72 65 20 6c 61 62 65 6c 20 | nge.used.by.MPLS.to.store.label. |
| 118420 | 69 6e 20 74 68 65 20 4d 50 4c 53 20 46 49 42 20 66 6f 72 20 50 72 65 66 69 78 20 53 49 44 2e 20 | in.the.MPLS.FIB.for.Prefix.SID.. |
| 118440 | 4e 6f 74 65 20 74 68 61 74 20 74 68 65 20 62 6c 6f 63 6b 20 73 69 7a 65 20 6d 61 79 20 6e 6f 74 | Note.that.the.block.size.may.not |
| 118460 | 20 65 78 63 65 65 64 20 36 35 35 33 35 2e 53 65 67 6d 65 6e 74 20 52 6f 75 74 69 6e 67 20 4c 6f | .exceed.65535.Segment.Routing.Lo |
| 118480 | 63 61 6c 20 42 6c 6f 63 6b 2c 20 54 68 65 20 6e 65 67 61 74 69 76 65 20 63 6f 6d 6d 61 6e 64 20 | cal.Block,.The.negative.command. |
| 1184a0 | 61 6c 77 61 79 73 20 75 6e 73 65 74 73 20 62 6f 74 68 2e 00 53 65 74 20 74 68 65 20 54 43 50 2d | always.unsets.both..Set.the.TCP- |
| 1184c0 | 4d 53 53 20 28 54 43 50 20 6d 61 78 69 6d 75 6d 20 73 65 67 6d 65 6e 74 20 73 69 7a 65 29 20 66 | MSS.(TCP.maximum.segment.size).f |
| 1184e0 | 6f 72 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 53 65 74 20 74 68 65 20 54 43 50 2d 4d | or.the.connection..Set.the.TCP-M |
| 118500 | 53 53 20 28 6d 61 78 69 6d 75 6d 20 73 65 67 6d 65 6e 74 20 73 69 7a 65 29 20 66 6f 72 20 74 68 | SS.(maximum.segment.size).for.th |
| 118520 | 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 00 53 65 74 20 74 68 65 20 54 54 4c 20 28 54 69 6d 65 20 74 | e.connection.Set.the.TTL.(Time.t |
| 118540 | 6f 20 4c 69 76 65 29 20 76 61 6c 75 65 2e 00 53 65 74 20 74 68 65 20 55 73 65 72 20 49 44 20 6f | o.Live).value..Set.the.User.ID.o |
| 118560 | 72 20 47 72 6f 75 70 20 49 44 20 6f 66 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 00 53 65 74 20 | r.Group.ID.of.the.container.Set. |
| 118580 | 74 68 65 20 60 60 73 73 68 64 60 60 20 6c 6f 67 20 6c 65 76 65 6c 2e 20 54 68 65 20 64 65 66 61 | the.``sshd``.log.level..The.defa |
| 1185a0 | 75 6c 74 20 69 73 20 60 60 69 6e 66 6f 60 60 2e 00 53 65 74 20 74 68 65 20 61 64 64 72 65 73 73 | ult.is.``info``..Set.the.address |
| 1185c0 | 20 6f 66 20 74 68 65 20 62 61 63 6b 65 6e 64 20 70 6f 72 74 00 53 65 74 20 74 68 65 20 61 64 64 | .of.the.backend.port.Set.the.add |
| 1185e0 | 72 65 73 73 20 6f 66 20 74 68 65 20 62 61 63 6b 65 6e 64 20 73 65 72 76 65 72 20 74 6f 20 77 68 | ress.of.the.backend.server.to.wh |
| 118600 | 69 63 68 20 74 68 65 20 69 6e 63 6f 6d 69 6e 67 20 74 72 61 66 66 69 63 20 77 69 6c 6c 20 62 65 | ich.the.incoming.traffic.will.be |
| 118620 | 20 66 6f 72 77 61 72 64 65 64 00 53 65 74 20 74 68 65 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f | .forwarded.Set.the.authenticatio |
| 118640 | 6e 20 74 79 70 65 20 66 6f 72 20 47 72 61 70 68 51 4c 2c 20 64 65 66 61 75 6c 74 20 6f 70 74 69 | n.type.for.GraphQL,.default.opti |
| 118660 | 6f 6e 20 69 73 20 6b 65 79 2e 20 41 76 61 69 6c 61 62 6c 65 20 6f 70 74 69 6f 6e 73 20 61 72 65 | on.is.key..Available.options.are |
| 118680 | 3a 00 53 65 74 20 74 68 65 20 62 79 74 65 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 20 4a 57 54 | :.Set.the.byte.length.of.the.JWT |
| 1186a0 | 20 73 65 63 72 65 74 2e 20 44 65 66 61 75 6c 74 20 69 73 20 33 32 2e 00 53 65 74 20 74 68 65 20 | .secret..Default.is.32..Set.the. |
| 1186c0 | 63 6f 6d 6d 61 6e 64 20 61 72 67 75 6d 65 6e 74 73 20 66 6f 72 20 61 20 63 6f 6e 74 61 69 6e 65 | command.arguments.for.a.containe |
| 1186e0 | 72 2e 00 53 65 74 20 74 68 65 20 64 65 66 61 75 6c 74 20 56 52 52 50 20 76 65 72 73 69 6f 6e 20 | r..Set.the.default.VRRP.version. |
| 118700 | 74 6f 20 75 73 65 2e 20 54 68 69 73 20 64 65 66 61 75 6c 74 73 20 74 6f 20 32 2c 20 62 75 74 20 | to.use..This.defaults.to.2,.but. |
| 118720 | 49 50 76 36 20 69 6e 73 74 61 6e 63 65 73 20 77 69 6c 6c 20 61 6c 77 61 79 73 20 75 73 65 20 76 | IPv6.instances.will.always.use.v |
| 118740 | 65 72 73 69 6f 6e 20 33 2e 00 53 65 74 20 74 68 65 20 64 65 76 69 63 65 27 73 20 74 72 61 6e 73 | ersion.3..Set.the.device's.trans |
| 118760 | 6d 69 74 20 28 54 58 29 20 6b 65 79 2e 20 54 68 69 73 20 6b 65 79 20 6d 75 73 74 20 62 65 20 61 | mit.(TX).key..This.key.must.be.a |
| 118780 | 20 68 65 78 20 73 74 72 69 6e 67 20 74 68 61 74 20 69 73 20 31 36 2d 62 79 74 65 73 20 28 47 43 | .hex.string.that.is.16-bytes.(GC |
| 1187a0 | 4d 2d 41 45 53 2d 31 32 38 29 20 6f 72 20 33 32 2d 62 79 74 65 73 20 28 47 43 4d 2d 41 45 53 2d | M-AES-128).or.32-bytes.(GCM-AES- |
| 1187c0 | 32 35 36 29 2e 00 53 65 74 20 74 68 65 20 64 69 73 74 61 6e 63 65 20 66 6f 72 20 74 68 65 20 64 | 256)..Set.the.distance.for.the.d |
| 1187e0 | 65 66 61 75 6c 74 20 67 61 74 65 77 61 79 20 73 65 6e 74 20 62 79 20 74 68 65 20 44 48 43 50 20 | efault.gateway.sent.by.the.DHCP. |
| 118800 | 73 65 72 76 65 72 2e 00 53 65 74 20 74 68 65 20 64 69 73 74 61 6e 63 65 20 66 6f 72 20 74 68 65 | server..Set.the.distance.for.the |
| 118820 | 20 64 65 66 61 75 6c 74 20 67 61 74 65 77 61 79 20 73 65 6e 74 20 62 79 20 74 68 65 20 50 50 50 | .default.gateway.sent.by.the.PPP |
| 118840 | 6f 45 20 73 65 72 76 65 72 2e 00 53 65 74 20 74 68 65 20 64 69 73 74 61 6e 63 65 20 66 6f 72 20 | oE.server..Set.the.distance.for. |
| 118860 | 74 68 65 20 64 65 66 61 75 6c 74 20 67 61 74 65 77 61 79 20 73 65 6e 74 20 62 79 20 74 68 65 20 | the.default.gateway.sent.by.the. |
| 118880 | 53 53 54 50 20 73 65 72 76 65 72 2e 00 53 65 74 20 74 68 65 20 65 6e 63 61 70 73 75 6c 61 74 69 | SSTP.server..Set.the.encapsulati |
| 1188a0 | 6f 6e 20 74 79 70 65 20 6f 66 20 74 68 65 20 74 75 6e 6e 65 6c 2e 20 56 61 6c 69 64 20 76 61 6c | on.type.of.the.tunnel..Valid.val |
| 1188c0 | 75 65 73 20 66 6f 72 20 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e 20 61 72 65 3a 20 75 64 70 2c 20 | ues.for.encapsulation.are:.udp,. |
| 1188e0 | 69 70 2e 00 53 65 74 20 74 68 65 20 67 6c 6f 62 61 6c 20 73 65 74 74 69 6e 67 20 66 6f 72 20 61 | ip..Set.the.global.setting.for.a |
| 118900 | 6e 20 65 73 74 61 62 6c 69 73 68 65 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 53 65 74 20 74 68 | n.established.connection..Set.th |
| 118920 | 65 20 67 6c 6f 62 61 6c 20 73 65 74 74 69 6e 67 20 66 6f 72 20 69 6e 76 61 6c 69 64 20 70 61 63 | e.global.setting.for.invalid.pac |
| 118940 | 6b 65 74 73 2e 00 53 65 74 20 74 68 65 20 67 6c 6f 62 61 6c 20 73 65 74 74 69 6e 67 20 66 6f 72 | kets..Set.the.global.setting.for |
| 118960 | 20 72 65 6c 61 74 65 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2e 00 53 65 74 20 74 68 65 20 68 6f | .related.connections..Set.the.ho |
| 118980 | 73 74 20 6e 61 6d 65 20 66 6f 72 20 61 20 63 6f 6e 74 61 69 6e 65 72 2e 00 53 65 74 20 74 68 65 | st.name.for.a.container..Set.the |
| 1189a0 | 20 6c 69 66 65 74 69 6d 65 20 66 6f 72 20 4a 57 54 20 74 6f 6b 65 6e 73 20 69 6e 20 73 65 63 6f | .lifetime.for.JWT.tokens.in.seco |
| 1189c0 | 6e 64 73 2e 20 44 65 66 61 75 6c 74 20 69 73 20 33 36 30 30 20 73 65 63 6f 6e 64 73 2e 00 53 65 | nds..Default.is.3600.seconds..Se |
| 1189e0 | 74 20 74 68 65 20 6c 69 73 74 65 6e 20 70 6f 72 74 20 6f 66 20 74 68 65 20 6c 6f 63 61 6c 20 41 | t.the.listen.port.of.the.local.A |
| 118a00 | 50 49 2c 20 74 68 69 73 20 68 61 73 20 6e 6f 20 65 66 66 65 63 74 20 6f 6e 20 74 68 65 20 77 65 | PI,.this.has.no.effect.on.the.we |
| 118a20 | 62 73 65 72 76 65 72 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 70 6f 72 74 20 38 30 38 | bserver..The.default.is.port.808 |
| 118a40 | 30 00 53 65 74 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 68 6f 70 20 60 3c 63 6f 75 6e 74 3e 60 20 | 0.Set.the.maximum.hop.`<count>`. |
| 118a60 | 62 65 66 6f 72 65 20 70 61 63 6b 65 74 73 20 61 72 65 20 64 69 73 63 61 72 64 65 64 2e 20 52 61 | before.packets.are.discarded..Ra |
| 118a80 | 6e 67 65 20 30 2e 2e 2e 32 35 35 2c 20 64 65 66 61 75 6c 74 20 31 30 2e 00 53 65 74 20 74 68 65 | nge.0...255,.default.10..Set.the |
| 118aa0 | 20 6d 61 78 69 6d 75 6d 20 6c 65 6e 67 74 68 20 6f 66 20 41 2d 4d 50 44 55 20 70 72 65 2d 45 4f | .maximum.length.of.A-MPDU.pre-EO |
| 118ac0 | 46 20 70 61 64 64 69 6e 67 20 74 68 61 74 20 74 68 65 20 73 74 61 74 69 6f 6e 20 63 61 6e 20 72 | F.padding.that.the.station.can.r |
| 118ae0 | 65 63 65 69 76 65 00 53 65 74 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 | eceive.Set.the.maximum.number.of |
| 118b00 | 20 54 43 50 20 68 61 6c 66 2d 6f 70 65 6e 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2e 00 53 65 74 20 | .TCP.half-open.connections..Set. |
| 118b20 | 74 68 65 20 6d 61 78 69 6d 75 6d 20 72 65 71 75 65 73 74 20 62 6f 64 79 20 73 69 7a 65 20 69 6e | the.maximum.request.body.size.in |
| 118b40 | 20 6d 65 67 61 62 79 74 65 73 2e 20 44 65 66 61 75 6c 74 20 69 73 20 31 4d 42 2e 00 53 65 74 20 | .megabytes..Default.is.1MB..Set. |
| 118b60 | 74 68 65 20 6e 61 6d 65 20 6f 66 20 74 68 65 20 53 53 4c 20 3a 61 62 62 72 3a 60 43 41 20 28 43 | the.name.of.the.SSL.:abbr:`CA.(C |
| 118b80 | 65 72 74 69 66 69 63 61 74 65 20 41 75 74 68 6f 72 69 74 79 29 60 20 50 4b 49 20 65 6e 74 72 79 | ertificate.Authority)`.PKI.entry |
| 118ba0 | 20 75 73 65 64 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6f 66 20 74 68 65 20 | .used.for.authentication.of.the. |
| 118bc0 | 72 65 6d 6f 74 65 20 73 69 64 65 2e 20 49 66 20 61 6e 20 69 6e 74 65 72 6d 65 64 69 61 74 65 20 | remote.side..If.an.intermediate. |
| 118be0 | 43 41 20 63 65 72 74 69 66 69 63 61 74 65 20 69 73 20 73 70 65 63 69 66 69 65 64 2c 20 74 68 65 | CA.certificate.is.specified,.the |
| 118c00 | 6e 20 61 6c 6c 20 70 61 72 65 6e 74 20 43 41 20 63 65 72 74 69 66 69 63 61 74 65 73 20 74 68 61 | n.all.parent.CA.certificates.tha |
| 118c20 | 74 20 65 78 69 73 74 20 69 6e 20 74 68 65 20 50 4b 49 2c 20 73 75 63 68 20 61 73 20 74 68 65 20 | t.exist.in.the.PKI,.such.as.the. |
| 118c40 | 72 6f 6f 74 20 43 41 20 6f 72 20 61 64 64 69 74 69 6f 6e 61 6c 20 69 6e 74 65 72 6d 65 64 69 61 | root.CA.or.additional.intermedia |
| 118c60 | 74 65 20 43 41 73 2c 20 77 69 6c 6c 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 62 65 20 75 73 | te.CAs,.will.automatically.be.us |
| 118c80 | 65 64 20 64 75 72 69 6e 67 20 63 65 72 74 69 66 69 63 61 74 65 20 76 61 6c 69 64 61 74 69 6f 6e | ed.during.certificate.validation |
| 118ca0 | 20 74 6f 20 65 6e 73 75 72 65 20 74 68 61 74 20 74 68 65 20 66 75 6c 6c 20 63 68 61 69 6e 20 6f | .to.ensure.that.the.full.chain.o |
| 118cc0 | 66 20 74 72 75 73 74 20 69 73 20 61 76 61 69 6c 61 62 6c 65 2e 00 53 65 74 20 74 68 65 20 6e 61 | f.trust.is.available..Set.the.na |
| 118ce0 | 6d 65 20 6f 66 20 74 68 65 20 78 35 30 39 20 63 6c 69 65 6e 74 20 6b 65 79 70 61 69 72 20 75 73 | me.of.the.x509.client.keypair.us |
| 118d00 | 65 64 20 74 6f 20 61 75 74 68 65 6e 74 69 63 61 74 65 20 61 67 61 69 6e 73 74 20 74 68 65 20 38 | ed.to.authenticate.against.the.8 |
| 118d20 | 30 32 2e 31 78 20 73 79 73 74 65 6d 2e 20 41 6c 6c 20 70 61 72 65 6e 74 20 43 41 20 63 65 72 74 | 02.1x.system..All.parent.CA.cert |
| 118d40 | 69 66 69 63 61 74 65 73 20 6f 66 20 74 68 65 20 63 6c 69 65 6e 74 20 63 65 72 74 69 66 69 63 61 | ificates.of.the.client.certifica |
| 118d60 | 74 65 2c 20 73 75 63 68 20 61 73 20 69 6e 74 65 72 6d 65 64 69 61 74 65 20 61 6e 64 20 72 6f 6f | te,.such.as.intermediate.and.roo |
| 118d80 | 74 20 43 41 73 2c 20 77 69 6c 6c 20 62 65 20 73 65 6e 74 20 61 73 20 70 61 72 74 20 6f 66 20 74 | t.CAs,.will.be.sent.as.part.of.t |
| 118da0 | 68 65 20 45 41 50 2d 54 4c 53 20 68 61 6e 64 73 68 61 6b 65 2e 00 53 65 74 20 74 68 65 20 6e 61 | he.EAP-TLS.handshake..Set.the.na |
| 118dc0 | 74 69 76 65 20 56 4c 41 4e 20 49 44 20 66 6c 61 67 20 6f 66 20 74 68 65 20 69 6e 74 65 72 66 61 | tive.VLAN.ID.flag.of.the.interfa |
| 118de0 | 63 65 2e 20 57 68 65 6e 20 61 20 64 61 74 61 20 70 61 63 6b 65 74 20 77 69 74 68 6f 75 74 20 61 | ce..When.a.data.packet.without.a |
| 118e00 | 20 56 4c 41 4e 20 74 61 67 20 65 6e 74 65 72 73 20 74 68 65 20 70 6f 72 74 2c 20 74 68 65 20 64 | .VLAN.tag.enters.the.port,.the.d |
| 118e20 | 61 74 61 20 70 61 63 6b 65 74 20 77 69 6c 6c 20 62 65 20 66 6f 72 63 65 64 20 74 6f 20 61 64 64 | ata.packet.will.be.forced.to.add |
| 118e40 | 20 61 20 74 61 67 20 6f 66 20 61 20 73 70 65 63 69 66 69 63 20 76 6c 61 6e 20 69 64 2e 20 57 68 | .a.tag.of.a.specific.vlan.id..Wh |
| 118e60 | 65 6e 20 74 68 65 20 76 6c 61 6e 20 69 64 20 66 6c 61 67 20 66 6c 6f 77 73 20 6f 75 74 2c 20 74 | en.the.vlan.id.flag.flows.out,.t |
| 118e80 | 68 65 20 74 61 67 20 6f 66 20 74 68 65 20 76 6c 61 6e 20 69 64 20 77 69 6c 6c 20 62 65 20 73 74 | he.tag.of.the.vlan.id.will.be.st |
| 118ea0 | 72 69 70 70 65 64 00 53 65 74 20 74 68 65 20 6e 61 74 69 76 65 20 56 4c 41 4e 20 49 44 20 66 6c | ripped.Set.the.native.VLAN.ID.fl |
| 118ec0 | 61 67 20 6f 66 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 2e 20 57 68 65 6e 20 61 20 64 61 74 61 | ag.of.the.interface..When.a.data |
| 118ee0 | 20 70 61 63 6b 65 74 20 77 69 74 68 6f 75 74 20 61 20 56 4c 41 4e 20 74 61 67 20 65 6e 74 65 72 | .packet.without.a.VLAN.tag.enter |
| 118f00 | 73 20 74 68 65 20 70 6f 72 74 2c 20 74 68 65 20 64 61 74 61 20 70 61 63 6b 65 74 20 77 69 6c 6c | s.the.port,.the.data.packet.will |
| 118f20 | 20 68 61 76 65 20 61 20 73 70 65 63 69 66 69 63 20 76 6c 61 6e 20 69 64 20 61 64 64 65 64 20 74 | .have.a.specific.vlan.id.added.t |
| 118f40 | 6f 20 69 74 2e 20 57 68 65 6e 20 74 68 65 20 70 61 63 6b 65 74 20 66 6c 6f 77 73 20 6f 75 74 2c | o.it..When.the.packet.flows.out, |
| 118f60 | 20 74 68 65 20 6e 61 74 69 76 65 20 76 6c 61 6e 20 74 61 67 20 77 69 6c 6c 20 62 65 20 73 74 72 | .the.native.vlan.tag.will.be.str |
| 118f80 | 69 70 70 65 64 2e 00 53 65 74 20 74 68 65 20 6e 65 78 74 2d 68 6f 70 20 61 73 20 75 6e 63 68 61 | ipped..Set.the.next-hop.as.uncha |
| 118fa0 | 6e 67 65 64 2e 20 50 61 73 73 20 74 68 72 6f 75 67 68 20 74 68 65 20 72 6f 75 74 65 2d 6d 61 70 | nged..Pass.through.the.route-map |
| 118fc0 | 20 77 69 74 68 6f 75 74 20 63 68 61 6e 67 69 6e 67 20 69 74 73 20 76 61 6c 75 65 00 53 65 74 20 | .without.changing.its.value.Set. |
| 118fe0 | 74 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 54 43 50 20 6d 61 78 69 6d 75 6d 20 72 65 74 72 61 6e | the.number.of.TCP.maximum.retran |
| 119000 | 73 6d 69 74 20 61 74 74 65 6d 70 74 73 2e 00 53 65 74 20 74 68 65 20 6e 75 6d 62 65 72 20 6f 66 | smit.attempts..Set.the.number.of |
| 119020 | 20 68 65 61 6c 74 68 20 63 68 65 63 6b 20 66 61 69 6c 75 72 65 73 20 62 65 66 6f 72 65 20 61 6e | .health.check.failures.before.an |
| 119040 | 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 6d 61 72 6b 65 64 20 61 73 20 75 6e 61 76 61 69 6c 61 | .interface.is.marked.as.unavaila |
| 119060 | 62 6c 65 2c 20 72 61 6e 67 65 20 66 6f 72 20 6e 75 6d 62 65 72 20 69 73 20 31 20 74 6f 20 31 30 | ble,.range.for.number.is.1.to.10 |
| 119080 | 2c 20 64 65 66 61 75 6c 74 20 31 2e 20 4f 72 20 73 65 74 20 74 68 65 20 6e 75 6d 62 65 72 20 6f | ,.default.1..Or.set.the.number.o |
| 1190a0 | 66 20 73 75 63 63 65 73 73 66 75 6c 20 68 65 61 6c 74 68 20 63 68 65 63 6b 73 20 62 65 66 6f 72 | f.successful.health.checks.befor |
| 1190c0 | 65 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 61 64 64 65 64 20 62 61 63 6b 20 74 6f 20 | e.an.interface.is.added.back.to. |
| 1190e0 | 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 70 6f 6f 6c 2c 20 72 61 6e 67 65 20 66 6f 72 20 6e 75 | the.interface.pool,.range.for.nu |
| 119100 | 6d 62 65 72 20 69 73 20 31 20 74 6f 20 31 30 2c 20 64 65 66 61 75 6c 74 20 31 2e 00 53 65 74 20 | mber.is.1.to.10,.default.1..Set. |
| 119120 | 74 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 73 65 63 6f 6e 64 73 20 74 68 65 20 72 6f 75 74 65 72 | the.number.of.seconds.the.router |
| 119140 | 20 77 61 69 74 73 20 75 6e 74 69 6c 20 72 65 74 72 79 69 6e 67 20 74 6f 20 63 6f 6e 6e 65 63 74 | .waits.until.retrying.to.connect |
| 119160 | 20 74 6f 20 74 68 65 20 63 61 63 68 65 20 73 65 72 76 65 72 2e 00 53 65 74 20 74 68 65 20 6e 75 | .to.the.cache.server..Set.the.nu |
| 119180 | 6d 62 65 72 20 6f 66 20 73 65 63 6f 6e 64 73 20 74 68 65 20 72 6f 75 74 65 72 20 77 61 69 74 73 | mber.of.seconds.the.router.waits |
| 1191a0 | 20 75 6e 74 69 6c 20 74 68 65 20 72 6f 75 74 65 72 20 65 78 70 69 72 65 73 20 74 68 65 20 63 61 | .until.the.router.expires.the.ca |
| 1191c0 | 63 68 65 2e 00 53 65 74 20 74 68 65 20 6f 70 74 69 6f 6e 73 20 66 6f 72 20 74 68 69 73 20 70 75 | che..Set.the.options.for.this.pu |
| 1191e0 | 62 6c 69 63 20 6b 65 79 2e 20 53 65 65 20 74 68 65 20 73 73 68 20 60 60 61 75 74 68 6f 72 69 7a | blic.key..See.the.ssh.``authoriz |
| 119200 | 65 64 5f 6b 65 79 73 60 60 20 6d 61 6e 20 70 61 67 65 20 66 6f 72 20 64 65 74 61 69 6c 73 20 6f | ed_keys``.man.page.for.details.o |
| 119220 | 66 20 77 68 61 74 20 79 6f 75 20 63 61 6e 20 73 70 65 63 69 66 79 20 68 65 72 65 2e 20 54 6f 20 | f.what.you.can.specify.here..To. |
| 119240 | 70 6c 61 63 65 20 61 20 60 60 22 60 60 20 63 68 61 72 61 63 74 65 72 20 69 6e 20 74 68 65 20 6f | place.a.``"``.character.in.the.o |
| 119260 | 70 74 69 6f 6e 73 20 66 69 65 6c 64 2c 20 75 73 65 20 60 60 26 71 75 6f 74 3b 60 60 2c 20 66 6f | ptions.field,.use.``"``,.fo |
| 119280 | 72 20 65 78 61 6d 70 6c 65 20 60 60 66 72 6f 6d 3d 26 71 75 6f 74 3b 31 30 2e 30 2e 30 2e 30 2f | r.example.``from="10.0.0.0/ |
| 1192a0 | 32 34 26 71 75 6f 74 3b 60 60 20 74 6f 20 72 65 73 74 72 69 63 74 20 77 68 65 72 65 20 74 68 65 | 24"``.to.restrict.where.the |
| 1192c0 | 20 75 73 65 72 20 6d 61 79 20 63 6f 6e 6e 65 63 74 20 66 72 6f 6d 20 77 68 65 6e 20 75 73 69 6e | .user.may.connect.from.when.usin |
| 1192e0 | 67 20 74 68 69 73 20 6b 65 79 2e 00 53 65 74 20 74 68 65 20 70 61 72 69 74 79 20 6f 70 74 69 6f | g.this.key..Set.the.parity.optio |
| 119300 | 6e 20 66 6f 72 20 74 68 65 20 63 6f 6e 73 6f 6c 65 2e 20 49 66 20 75 6e 73 65 74 20 74 68 69 73 | n.for.the.console..If.unset.this |
| 119320 | 20 77 69 6c 6c 20 64 65 66 61 75 6c 74 20 74 6f 20 6e 6f 6e 65 2e 00 53 65 74 20 74 68 65 20 70 | .will.default.to.none..Set.the.p |
| 119340 | 65 65 72 27 73 20 4d 41 43 20 61 64 64 72 65 73 73 00 53 65 74 20 74 68 65 20 70 65 65 72 27 73 | eer's.MAC.address.Set.the.peer's |
| 119360 | 20 6b 65 79 20 75 73 65 64 20 74 6f 20 72 65 63 65 69 76 65 20 28 52 58 29 20 74 72 61 66 66 69 | .key.used.to.receive.(RX).traffi |
| 119380 | 63 00 53 65 74 20 74 68 65 20 70 65 65 72 2d 73 65 73 73 69 6f 6e 2d 69 64 2c 20 77 68 69 63 68 | c.Set.the.peer-session-id,.which |
| 1193a0 | 20 69 73 20 61 20 33 32 2d 62 69 74 20 69 6e 74 65 67 65 72 20 76 61 6c 75 65 20 61 73 73 69 67 | .is.a.32-bit.integer.value.assig |
| 1193c0 | 6e 65 64 20 74 6f 20 74 68 65 20 73 65 73 73 69 6f 6e 20 62 79 20 74 68 65 20 70 65 65 72 2e 20 | ned.to.the.session.by.the.peer.. |
| 1193e0 | 54 68 65 20 76 61 6c 75 65 20 75 73 65 64 20 6d 75 73 74 20 6d 61 74 63 68 20 74 68 65 20 73 65 | The.value.used.must.match.the.se |
| 119400 | 73 73 69 6f 6e 5f 69 64 20 76 61 6c 75 65 20 62 65 69 6e 67 20 75 73 65 64 20 61 74 20 74 68 65 | ssion_id.value.being.used.at.the |
| 119420 | 20 70 65 65 72 2e 00 53 65 74 20 74 68 65 20 72 61 6e 67 65 20 6f 66 20 65 78 74 65 72 6e 61 6c | .peer..Set.the.range.of.external |
| 119440 | 20 49 50 20 61 64 64 72 65 73 73 65 73 20 66 6f 72 20 74 68 65 20 43 47 4e 41 54 20 70 6f 6f 6c | .IP.addresses.for.the.CGNAT.pool |
| 119460 | 2e 00 53 65 74 20 74 68 65 20 72 61 6e 67 65 20 6f 66 20 65 78 74 65 72 6e 61 6c 20 49 50 20 61 | ..Set.the.range.of.external.IP.a |
| 119480 | 64 64 72 65 73 73 65 73 20 66 6f 72 20 74 68 65 20 43 47 4e 41 54 20 70 6f 6f 6c 2e 20 54 68 65 | ddresses.for.the.CGNAT.pool..The |
| 1194a0 | 20 73 65 71 75 65 6e 63 65 20 69 73 20 6f 70 74 69 6f 6e 61 6c 3b 20 69 66 20 73 65 74 2c 20 61 | .sequence.is.optional;.if.set,.a |
| 1194c0 | 20 6c 6f 77 65 72 20 76 61 6c 75 65 20 6d 65 61 6e 73 20 68 69 67 68 65 72 20 70 72 69 6f 72 69 | .lower.value.means.higher.priori |
| 1194e0 | 74 79 2e 00 53 65 74 20 74 68 65 20 72 61 6e 67 65 20 6f 66 20 69 6e 74 65 72 6e 61 6c 20 49 50 | ty..Set.the.range.of.internal.IP |
| 119500 | 20 61 64 64 72 65 73 73 65 73 20 66 6f 72 20 74 68 65 20 43 47 4e 41 54 20 70 6f 6f 6c 2e 00 53 | .addresses.for.the.CGNAT.pool..S |
| 119520 | 65 74 20 74 68 65 20 72 65 73 74 61 72 74 20 62 65 68 61 76 69 6f 72 20 6f 66 20 74 68 65 20 63 | et.the.restart.behavior.of.the.c |
| 119540 | 6f 6e 74 61 69 6e 65 72 2e 00 53 65 74 20 74 68 65 20 72 6f 75 74 65 20 6d 65 74 72 69 63 2e 20 | ontainer..Set.the.route.metric.. |
| 119560 | 57 68 65 6e 20 75 73 65 64 20 77 69 74 68 20 42 47 50 2c 20 73 65 74 20 74 68 65 20 42 47 50 20 | When.used.with.BGP,.set.the.BGP. |
| 119580 | 61 74 74 72 69 62 75 74 65 20 4d 45 44 20 74 6f 20 61 20 73 70 65 63 69 66 69 63 20 76 61 6c 75 | attribute.MED.to.a.specific.valu |
| 1195a0 | 65 2e 20 55 73 65 20 60 60 2b 2f 2d 60 60 20 74 6f 20 61 64 64 20 6f 72 20 73 75 62 74 72 61 63 | e..Use.``+/-``.to.add.or.subtrac |
| 1195c0 | 74 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 76 61 6c 75 65 20 74 6f 2f 66 72 6f 6d 20 74 68 | t.the.specified.value.to/from.th |
| 1195e0 | 65 20 65 78 69 73 74 69 6e 67 2f 4d 45 44 2e 20 55 73 65 20 60 60 72 74 74 60 60 20 74 6f 20 73 | e.existing/MED..Use.``rtt``.to.s |
| 119600 | 65 74 20 74 68 65 20 4d 45 44 20 74 6f 20 74 68 65 20 72 6f 75 6e 64 20 74 72 69 70 20 74 69 6d | et.the.MED.to.the.round.trip.tim |
| 119620 | 65 20 6f 72 20 60 60 2b 72 74 74 2f 2d 72 74 74 60 60 20 74 6f 20 61 64 64 2f 73 75 62 74 72 61 | e.or.``+rtt/-rtt``.to.add/subtra |
| 119640 | 63 74 20 74 68 65 20 72 6f 75 6e 64 20 74 72 69 70 20 74 69 6d 65 20 74 6f 2f 66 72 6f 6d 20 74 | ct.the.round.trip.time.to/from.t |
| 119660 | 68 65 20 4d 45 44 2e 00 53 65 74 20 74 68 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 74 6f | he.MED..Set.the.routing.table.to |
| 119680 | 20 66 6f 72 77 61 72 64 20 70 61 63 6b 65 74 20 77 69 74 68 2e 00 53 65 74 20 74 68 65 20 72 75 | .forward.packet.with..Set.the.ru |
| 1196a0 | 6c 65 20 66 6f 72 20 74 68 65 20 73 6f 75 72 63 65 20 70 6f 6f 6c 2e 00 53 65 74 20 74 68 65 20 | le.for.the.source.pool..Set.the. |
| 1196c0 | 72 75 6c 65 20 66 6f 72 20 74 68 65 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 70 6f 6f 6c 2e 00 53 | rule.for.the.translation.pool..S |
| 1196e0 | 65 74 20 74 68 65 20 73 65 73 73 69 6f 6e 20 69 64 2c 20 77 68 69 63 68 20 69 73 20 61 20 33 32 | et.the.session.id,.which.is.a.32 |
| 119700 | 2d 62 69 74 20 69 6e 74 65 67 65 72 20 76 61 6c 75 65 2e 20 55 6e 69 71 75 65 6c 79 20 69 64 65 | -bit.integer.value..Uniquely.ide |
| 119720 | 6e 74 69 66 69 65 73 20 74 68 65 20 73 65 73 73 69 6f 6e 20 62 65 69 6e 67 20 63 72 65 61 74 65 | ntifies.the.session.being.create |
| 119740 | 64 2e 20 54 68 65 20 76 61 6c 75 65 20 75 73 65 64 20 6d 75 73 74 20 6d 61 74 63 68 20 74 68 65 | d..The.value.used.must.match.the |
| 119760 | 20 70 65 65 72 5f 73 65 73 73 69 6f 6e 5f 69 64 20 76 61 6c 75 65 20 62 65 69 6e 67 20 75 73 65 | .peer_session_id.value.being.use |
| 119780 | 64 20 61 74 20 74 68 65 20 70 65 65 72 2e 00 53 65 74 20 74 68 65 20 73 68 61 70 65 72 20 62 61 | d.at.the.peer..Set.the.shaper.ba |
| 1197a0 | 6e 64 77 69 64 74 68 2c 20 65 69 74 68 65 72 20 61 73 20 61 6e 20 65 78 70 6c 69 63 69 74 20 62 | ndwidth,.either.as.an.explicit.b |
| 1197c0 | 69 74 72 61 74 65 20 6f 72 20 61 20 70 65 72 63 65 6e 74 61 67 65 20 6f 66 20 74 68 65 20 69 6e | itrate.or.a.percentage.of.the.in |
| 1197e0 | 74 65 72 66 61 63 65 20 62 61 6e 64 77 69 64 74 68 2e 00 53 65 74 20 74 68 65 20 73 69 7a 65 20 | terface.bandwidth..Set.the.size. |
| 119800 | 6f 66 20 74 68 65 20 68 61 73 68 20 74 61 62 6c 65 2e 20 54 68 65 20 63 6f 6e 6e 65 63 74 69 6f | of.the.hash.table..The.connectio |
| 119820 | 6e 20 74 72 61 63 6b 69 6e 67 20 68 61 73 68 20 74 61 62 6c 65 20 6d 61 6b 65 73 20 73 65 61 72 | n.tracking.hash.table.makes.sear |
| 119840 | 63 68 69 6e 67 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 74 61 | ching.the.connection.tracking.ta |
| 119860 | 62 6c 65 20 66 61 73 74 65 72 2e 20 54 68 65 20 68 61 73 68 20 74 61 62 6c 65 20 75 73 65 73 20 | ble.faster..The.hash.table.uses. |
| 119880 | e2 80 9c 62 75 63 6b 65 74 73 e2 80 9d 20 74 6f 20 72 65 63 6f 72 64 20 65 6e 74 72 69 65 73 20 | ...buckets....to.record.entries. |
| 1198a0 | 69 6e 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 74 61 62 6c 65 | in.the.connection.tracking.table |
| 1198c0 | 2e 00 53 65 74 20 74 68 65 20 73 6f 75 72 63 65 20 49 50 20 6f 66 20 66 6f 72 77 61 72 64 65 64 | ..Set.the.source.IP.of.forwarded |
| 1198e0 | 20 70 61 63 6b 65 74 73 2c 20 6f 74 68 65 72 77 69 73 65 20 6f 72 69 67 69 6e 61 6c 20 73 65 6e | .packets,.otherwise.original.sen |
| 119900 | 64 65 72 73 20 61 64 64 72 65 73 73 20 69 73 20 75 73 65 64 2e 00 53 65 74 20 74 68 65 20 74 69 | ders.address.is.used..Set.the.ti |
| 119920 | 6d 65 6f 75 74 20 69 6e 20 73 65 63 6f 6e 64 73 20 66 6f 72 20 61 20 70 72 6f 74 6f 63 6f 6c 20 | meout.in.seconds.for.a.protocol. |
| 119940 | 6f 72 20 73 74 61 74 65 20 69 6e 20 61 20 63 75 73 74 6f 6d 20 72 75 6c 65 2e 00 53 65 74 20 74 | or.state.in.a.custom.rule..Set.t |
| 119960 | 68 65 20 74 69 6d 65 6f 75 74 20 69 6e 20 73 65 63 6f 6e 64 73 20 66 6f 72 20 61 20 70 72 6f 74 | he.timeout.in.seconds.for.a.prot |
| 119980 | 6f 63 6f 6c 20 6f 72 20 73 74 61 74 65 2e 00 53 65 74 20 74 68 65 20 74 69 6d 65 6f 75 74 20 69 | ocol.or.state..Set.the.timeout.i |
| 1199a0 | 6e 20 73 65 63 6f 75 6e 64 73 20 66 6f 72 20 61 20 70 72 6f 74 6f 63 6f 6c 20 6f 72 20 73 74 61 | n.secounds.for.a.protocol.or.sta |
| 1199c0 | 74 65 20 69 6e 20 61 20 63 75 73 74 6f 6d 20 72 75 6c 65 2e 00 53 65 74 20 74 68 65 20 74 69 6d | te.in.a.custom.rule..Set.the.tim |
| 1199e0 | 65 6f 75 74 20 69 6e 20 73 65 63 6f 75 6e 64 73 20 66 6f 72 20 61 20 70 72 6f 74 6f 63 6f 6c 20 | eout.in.secounds.for.a.protocol. |
| 119a00 | 6f 72 20 73 74 61 74 65 2e 00 53 65 74 20 74 68 65 20 74 75 6e 6e 65 6c 20 69 64 2c 20 77 68 69 | or.state..Set.the.tunnel.id,.whi |
| 119a20 | 63 68 20 69 73 20 61 20 33 32 2d 62 69 74 20 69 6e 74 65 67 65 72 20 76 61 6c 75 65 2e 20 55 6e | ch.is.a.32-bit.integer.value..Un |
| 119a40 | 69 71 75 65 6c 79 20 69 64 65 6e 74 69 66 69 65 73 20 74 68 65 20 74 75 6e 6e 65 6c 20 69 6e 74 | iquely.identifies.the.tunnel.int |
| 119a60 | 6f 20 77 68 69 63 68 20 74 68 65 20 73 65 73 73 69 6f 6e 20 77 69 6c 6c 20 62 65 20 63 72 65 61 | o.which.the.session.will.be.crea |
| 119a80 | 74 65 64 2e 00 53 65 74 20 74 68 65 20 77 69 6e 64 6f 77 20 73 63 61 6c 65 20 66 61 63 74 6f 72 | ted..Set.the.window.scale.factor |
| 119aa0 | 20 66 6f 72 20 54 43 50 20 77 69 6e 64 6f 77 20 73 63 61 6c 69 6e 67 00 53 65 74 20 77 69 6e 64 | .for.TCP.window.scaling.Set.wind |
| 119ac0 | 6f 77 20 6f 66 20 63 6f 6e 63 75 72 72 65 6e 74 6c 79 20 76 61 6c 69 64 20 63 6f 64 65 73 2e 00 | ow.of.concurrently.valid.codes.. |
| 119ae0 | 53 65 74 73 20 74 68 65 20 48 54 54 50 20 6d 65 74 68 6f 64 20 74 6f 20 62 65 20 75 73 65 64 2c | Sets.the.HTTP.method.to.be.used, |
| 119b00 | 20 63 61 6e 20 62 65 20 65 69 74 68 65 72 3a 20 6f 70 74 69 6f 6e 2c 20 67 65 74 2c 20 70 6f 73 | .can.be.either:.option,.get,.pos |
| 119b20 | 74 2c 20 70 75 74 00 53 65 74 73 20 74 68 65 20 65 6e 64 70 6f 69 6e 74 20 74 6f 20 62 65 20 75 | t,.put.Sets.the.endpoint.to.be.u |
| 119b40 | 73 65 64 20 66 6f 72 20 68 65 61 6c 74 68 20 63 68 65 63 6b 73 00 53 65 74 73 20 74 68 65 20 65 | sed.for.health.checks.Sets.the.e |
| 119b60 | 78 70 65 63 74 65 64 20 72 65 73 75 6c 74 20 63 6f 6e 64 69 74 69 6f 6e 20 66 6f 72 20 63 6f 6e | xpected.result.condition.for.con |
| 119b80 | 73 69 64 65 72 69 6e 67 20 61 20 73 65 72 76 65 72 20 68 65 61 6c 74 68 79 2e 00 53 65 74 73 20 | sidering.a.server.healthy..Sets. |
| 119ba0 | 74 68 65 20 65 78 70 65 63 74 65 64 20 72 65 73 75 6c 74 20 63 6f 6e 64 69 74 69 6f 6e 20 66 6f | the.expected.result.condition.fo |
| 119bc0 | 72 20 63 6f 6e 73 69 64 65 72 69 6e 67 20 61 20 73 65 72 76 65 72 20 68 65 61 6c 74 68 79 2e 20 | r.considering.a.server.healthy.. |
| 119be0 | 53 6f 6d 65 20 70 6f 73 73 69 62 6c 65 20 65 78 61 6d 70 6c 65 73 20 61 72 65 3a 00 53 65 74 73 | Some.possible.examples.are:.Sets |
| 119c00 | 20 74 68 65 20 69 6d 61 67 65 20 6e 61 6d 65 20 69 6e 20 74 68 65 20 68 75 62 20 72 65 67 69 73 | .the.image.name.in.the.hub.regis |
| 119c20 | 74 72 79 00 53 65 74 73 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 6c 69 73 74 65 6e | try.Sets.the.interface.to.listen |
| 119c40 | 20 66 6f 72 20 6d 75 6c 74 69 63 61 73 74 20 70 61 63 6b 65 74 73 20 6f 6e 2e 20 43 6f 75 6c 64 | .for.multicast.packets.on..Could |
| 119c60 | 20 62 65 20 61 20 6c 6f 6f 70 62 61 63 6b 2c 20 6e 6f 74 20 79 65 74 20 74 65 73 74 65 64 2e 00 | .be.a.loopback,.not.yet.tested.. |
| 119c80 | 53 65 74 73 20 74 68 65 20 6c 69 73 74 65 6e 69 6e 67 20 70 6f 72 74 20 66 6f 72 20 61 20 6c 69 | Sets.the.listening.port.for.a.li |
| 119ca0 | 73 74 65 6e 69 6e 67 20 61 64 64 72 65 73 73 2e 20 54 68 69 73 20 6f 76 65 72 72 69 64 65 73 20 | stening.address..This.overrides. |
| 119cc0 | 74 68 65 20 64 65 66 61 75 6c 74 20 70 6f 72 74 20 6f 66 20 33 31 32 38 20 6f 6e 20 74 68 65 20 | the.default.port.of.3128.on.the. |
| 119ce0 | 73 70 65 63 69 66 69 63 20 6c 69 73 74 65 6e 20 61 64 64 72 65 73 73 2e 00 53 65 74 73 20 74 68 | specific.listen.address..Sets.th |
| 119d00 | 65 20 75 6e 69 71 75 65 20 69 64 20 66 6f 72 20 74 68 69 73 20 76 78 6c 61 6e 2d 69 6e 74 65 72 | e.unique.id.for.this.vxlan-inter |
| 119d20 | 66 61 63 65 2e 20 4e 6f 74 20 73 75 72 65 20 68 6f 77 20 69 74 20 63 6f 72 72 65 6c 61 74 65 73 | face..Not.sure.how.it.correlates |
| 119d40 | 20 77 69 74 68 20 6d 75 6c 74 69 63 61 73 74 2d 61 64 64 72 65 73 73 2e 00 53 65 74 74 69 6e 67 | .with.multicast-address..Setting |
| 119d60 | 20 52 45 53 54 20 41 50 49 20 61 6e 64 20 61 6e 20 41 50 49 2d 4b 45 59 20 69 73 20 74 68 65 20 | .REST.API.and.an.API-KEY.is.the. |
| 119d80 | 6d 69 6e 69 6d 61 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 6f 20 67 65 74 20 61 20 77 | minimal.configuration.to.get.a.w |
| 119da0 | 6f 72 6b 69 6e 67 20 41 50 49 20 45 6e 64 70 6f 69 6e 74 2e 00 53 65 74 74 69 6e 67 20 56 52 52 | orking.API.Endpoint..Setting.VRR |
| 119dc0 | 50 20 67 72 6f 75 70 20 70 72 69 6f 72 69 74 79 00 53 65 74 74 69 6e 67 20 6e 61 6d 65 00 53 65 | P.group.priority.Setting.name.Se |
| 119de0 | 74 74 69 6e 67 20 74 68 69 73 20 75 70 20 6f 6e 20 41 57 53 20 77 69 6c 6c 20 72 65 71 75 69 72 | tting.this.up.on.AWS.will.requir |
| 119e00 | 65 20 61 20 22 43 75 73 74 6f 6d 20 50 72 6f 74 6f 63 6f 6c 20 52 75 6c 65 22 20 66 6f 72 20 70 | e.a."Custom.Protocol.Rule".for.p |
| 119e20 | 72 6f 74 6f 63 6f 6c 20 6e 75 6d 62 65 72 20 22 34 37 22 20 28 47 52 45 29 20 41 6c 6c 6f 77 20 | rotocol.number."47".(GRE).Allow. |
| 119e40 | 52 75 6c 65 20 69 6e 20 54 57 4f 20 70 6c 61 63 65 73 2e 20 46 69 72 73 74 6c 79 20 6f 6e 20 74 | Rule.in.TWO.places..Firstly.on.t |
| 119e60 | 68 65 20 56 50 43 20 4e 65 74 77 6f 72 6b 20 41 43 4c 2c 20 61 6e 64 20 73 65 63 6f 6e 64 6c 79 | he.VPC.Network.ACL,.and.secondly |
| 119e80 | 20 6f 6e 20 74 68 65 20 73 65 63 75 72 69 74 79 20 67 72 6f 75 70 20 6e 65 74 77 6f 72 6b 20 41 | .on.the.security.group.network.A |
| 119ea0 | 43 4c 20 61 74 74 61 63 68 65 64 20 74 6f 20 74 68 65 20 45 43 32 20 69 6e 73 74 61 6e 63 65 2e | CL.attached.to.the.EC2.instance. |
| 119ec0 | 20 54 68 69 73 20 68 61 73 20 62 65 65 6e 20 74 65 73 74 65 64 20 61 73 20 77 6f 72 6b 69 6e 67 | .This.has.been.tested.as.working |
| 119ee0 | 20 66 6f 72 20 74 68 65 20 6f 66 66 69 63 69 61 6c 20 41 4d 49 20 69 6d 61 67 65 20 6f 6e 20 74 | .for.the.official.AMI.image.on.t |
| 119f00 | 68 65 20 41 57 53 20 4d 61 72 6b 65 74 70 6c 61 63 65 2e 20 28 4c 6f 63 61 74 65 20 74 68 65 20 | he.AWS.Marketplace..(Locate.the. |
| 119f20 | 63 6f 72 72 65 63 74 20 56 50 43 20 61 6e 64 20 73 65 63 75 72 69 74 79 20 67 72 6f 75 70 20 62 | correct.VPC.and.security.group.b |
| 119f40 | 79 20 6e 61 76 69 67 61 74 69 6e 67 20 74 68 72 6f 75 67 68 20 74 68 65 20 64 65 74 61 69 6c 73 | y.navigating.through.the.details |
| 119f60 | 20 70 61 6e 65 20 62 65 6c 6f 77 20 79 6f 75 72 20 45 43 32 20 69 6e 73 74 61 6e 63 65 20 69 6e | .pane.below.your.EC2.instance.in |
| 119f80 | 20 74 68 65 20 41 57 53 20 63 6f 6e 73 6f 6c 65 29 2e 00 53 65 74 74 69 6e 67 20 75 70 20 49 50 | .the.AWS.console)..Setting.up.IP |
| 119fa0 | 53 65 63 3a 00 53 65 74 74 69 6e 67 20 75 70 20 4f 70 65 6e 56 50 4e 00 53 65 74 74 69 6e 67 20 | Sec:.Setting.up.OpenVPN.Setting. |
| 119fc0 | 75 70 20 61 20 66 75 6c 6c 2d 62 6c 6f 77 6e 20 50 4b 49 20 77 69 74 68 20 61 20 43 41 20 63 65 | up.a.full-blown.PKI.with.a.CA.ce |
| 119fe0 | 72 74 69 66 69 63 61 74 65 20 77 6f 75 6c 64 20 61 72 67 75 61 62 6c 79 20 64 65 66 65 61 74 20 | rtificate.would.arguably.defeat. |
| 11a000 | 74 68 65 20 70 75 72 70 6f 73 65 20 6f 66 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 4f 70 65 6e | the.purpose.of.site-to-site.Open |
| 11a020 | 56 50 4e 2c 20 73 69 6e 63 65 20 69 74 73 20 6d 61 69 6e 20 67 6f 61 6c 20 69 73 20 73 75 70 70 | VPN,.since.its.main.goal.is.supp |
| 11a040 | 6f 73 65 64 20 74 6f 20 62 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 73 69 6d 70 6c 69 63 | osed.to.be.configuration.simplic |
| 11a060 | 69 74 79 2c 20 63 6f 6d 70 61 72 65 64 20 74 6f 20 73 65 72 76 65 72 20 73 65 74 75 70 73 20 74 | ity,.compared.to.server.setups.t |
| 11a080 | 68 61 74 20 6e 65 65 64 20 74 6f 20 73 75 70 70 6f 72 74 20 6d 75 6c 74 69 70 6c 65 20 63 6c 69 | hat.need.to.support.multiple.cli |
| 11a0a0 | 65 6e 74 73 2e 00 53 65 74 74 69 6e 67 20 75 70 20 63 65 72 74 69 66 69 63 61 74 65 73 00 53 65 | ents..Setting.up.certificates.Se |
| 11a0c0 | 74 74 69 6e 67 20 75 70 20 63 65 72 74 69 66 69 63 61 74 65 73 3a 00 53 65 74 74 69 6e 67 20 75 | tting.up.certificates:.Setting.u |
| 11a0e0 | 70 20 74 75 6e 6e 65 6c 3a 00 53 65 74 74 69 6e 67 20 77 69 6c 6c 20 6f 6e 6c 79 20 62 65 63 6f | p.tunnel:.Setting.will.only.beco |
| 11a100 | 6d 65 20 61 63 74 69 76 65 20 77 69 74 68 20 74 68 65 20 6e 65 78 74 20 72 65 62 6f 6f 74 21 00 | me.active.with.the.next.reboot!. |
| 11a120 | 53 65 74 75 70 20 44 48 43 50 20 48 41 20 66 6f 72 20 6e 65 74 77 6f 72 6b 20 31 39 32 2e 30 2e | Setup.DHCP.HA.for.network.192.0. |
| 11a140 | 32 2e 30 2f 32 34 00 53 65 74 75 70 20 44 48 43 50 20 66 61 69 6c 6f 76 65 72 20 66 6f 72 20 6e | 2.0/24.Setup.DHCP.failover.for.n |
| 11a160 | 65 74 77 6f 72 6b 20 31 39 32 2e 30 2e 32 2e 30 2f 32 34 00 53 65 74 75 70 20 65 6e 63 72 79 70 | etwork.192.0.2.0/24.Setup.encryp |
| 11a180 | 74 65 64 20 70 61 73 73 77 6f 72 64 20 66 6f 72 20 67 69 76 65 6e 20 75 73 65 72 6e 61 6d 65 2e | ted.password.for.given.username. |
| 11a1a0 | 20 54 68 69 73 20 69 73 20 75 73 65 66 75 6c 20 66 6f 72 20 74 72 61 6e 73 66 65 72 72 69 6e 67 | .This.is.useful.for.transferring |
| 11a1c0 | 20 61 20 68 61 73 68 65 64 20 70 61 73 73 77 6f 72 64 20 66 72 6f 6d 20 73 79 73 74 65 6d 20 74 | .a.hashed.password.from.system.t |
| 11a1e0 | 6f 20 73 79 73 74 65 6d 2e 00 53 65 74 75 70 20 74 68 65 20 60 3c 74 69 6d 65 6f 75 74 3e 60 20 | o.system..Setup.the.`<timeout>`. |
| 11a200 | 69 6e 20 73 65 63 6f 6e 64 73 20 77 68 65 6e 20 71 75 65 72 79 69 6e 67 20 74 68 65 20 52 41 44 | in.seconds.when.querying.the.RAD |
| 11a220 | 49 55 53 20 73 65 72 76 65 72 2e 00 53 65 74 75 70 20 74 68 65 20 60 3c 74 69 6d 65 6f 75 74 3e | IUS.server..Setup.the.`<timeout> |
| 11a240 | 60 20 69 6e 20 73 65 63 6f 6e 64 73 20 77 68 65 6e 20 71 75 65 72 79 69 6e 67 20 74 68 65 20 54 | `.in.seconds.when.querying.the.T |
| 11a260 | 41 43 41 43 53 20 73 65 72 76 65 72 2e 00 53 65 74 75 70 20 74 68 65 20 64 79 6e 61 6d 69 63 20 | ACACS.server..Setup.the.dynamic. |
| 11a280 | 44 4e 53 20 68 6f 73 74 6e 61 6d 65 20 60 3c 68 6f 73 74 6e 61 6d 65 3e 60 20 61 73 73 6f 63 69 | DNS.hostname.`<hostname>`.associ |
| 11a2a0 | 61 74 65 64 20 77 69 74 68 20 74 68 65 20 44 79 6e 44 4e 53 20 70 72 6f 76 69 64 65 72 20 69 64 | ated.with.the.DynDNS.provider.id |
| 11a2c0 | 65 6e 74 69 66 69 65 64 20 62 79 20 60 3c 73 65 72 76 69 63 65 2d 6e 61 6d 65 3e 60 2e 00 53 65 | entified.by.`<service-name>`..Se |
| 11a2e0 | 74 75 70 20 74 68 65 20 64 79 6e 61 6d 69 63 20 44 4e 53 20 68 6f 73 74 6e 61 6d 65 20 60 3c 68 | tup.the.dynamic.DNS.hostname.`<h |
| 11a300 | 6f 73 74 6e 61 6d 65 3e 60 20 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 74 68 65 20 44 79 | ostname>`.associated.with.the.Dy |
| 11a320 | 6e 44 4e 53 20 70 72 6f 76 69 64 65 72 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 60 3c 73 65 | nDNS.provider.identified.by.`<se |
| 11a340 | 72 76 69 63 65 3e 60 20 77 68 65 6e 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 6e 20 61 | rvice>`.when.the.IP.address.on.a |
| 11a360 | 64 64 72 65 73 73 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 20 63 68 61 6e 67 65 73 2e 00 53 65 | ddress.`<interface>`.changes..Se |
| 11a380 | 74 75 70 20 74 68 65 20 64 79 6e 61 6d 69 63 20 44 4e 53 20 68 6f 73 74 6e 61 6d 65 20 60 3c 68 | tup.the.dynamic.DNS.hostname.`<h |
| 11a3a0 | 6f 73 74 6e 61 6d 65 3e 60 20 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 74 68 65 20 44 79 | ostname>`.associated.with.the.Dy |
| 11a3c0 | 6e 44 4e 53 20 70 72 6f 76 69 64 65 72 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 60 3c 73 65 | nDNS.provider.identified.by.`<se |
| 11a3e0 | 72 76 69 63 65 3e 60 20 77 68 65 6e 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 6e 20 69 | rvice>`.when.the.IP.address.on.i |
| 11a400 | 6e 74 65 72 66 61 63 65 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 20 63 68 61 6e 67 65 73 2e 00 | nterface.`<interface>`.changes.. |
| 11a420 | 53 65 76 65 72 61 6c 20 63 6f 6d 6d 61 6e 64 73 20 75 74 69 6c 69 7a 65 20 63 55 52 4c 20 74 6f | Several.commands.utilize.cURL.to |
| 11a440 | 20 69 6e 69 74 69 61 74 65 20 74 72 61 6e 73 66 65 72 73 2e 20 43 6f 6e 66 69 67 75 72 65 20 74 | .initiate.transfers..Configure.t |
| 11a460 | 68 65 20 6c 6f 63 61 6c 20 73 6f 75 72 63 65 20 49 50 76 34 2f 49 50 76 36 20 61 64 64 72 65 73 | he.local.source.IPv4/IPv6.addres |
| 11a480 | 73 20 75 73 65 64 20 66 6f 72 20 61 6c 6c 20 63 55 52 4c 20 6f 70 65 72 61 74 69 6f 6e 73 2e 00 | s.used.for.all.cURL.operations.. |
| 11a4a0 | 53 65 76 65 72 61 6c 20 63 6f 6d 6d 61 6e 64 73 20 75 74 69 6c 69 7a 65 20 63 75 72 6c 20 74 6f | Several.commands.utilize.curl.to |
| 11a4c0 | 20 69 6e 69 74 69 61 74 65 20 74 72 61 6e 73 66 65 72 73 2e 20 43 6f 6e 66 69 67 75 72 65 20 74 | .initiate.transfers..Configure.t |
| 11a4e0 | 68 65 20 6c 6f 63 61 6c 20 73 6f 75 72 63 65 20 69 6e 74 65 72 66 61 63 65 20 75 73 65 64 20 66 | he.local.source.interface.used.f |
| 11a500 | 6f 72 20 61 6c 6c 20 43 55 52 4c 20 6f 70 65 72 61 74 69 6f 6e 73 2e 00 53 65 76 65 72 69 74 79 | or.all.CURL.operations..Severity |
| 11a520 | 00 53 65 76 65 72 69 74 79 20 4c 65 76 65 6c 00 53 68 61 70 65 72 00 53 68 6f 72 74 20 47 49 20 | .Severity.Level.Shaper.Short.GI. |
| 11a540 | 63 61 70 61 62 69 6c 69 74 69 65 73 00 53 68 6f 72 74 20 47 49 20 63 61 70 61 62 69 6c 69 74 69 | capabilities.Short.GI.capabiliti |
| 11a560 | 65 73 20 66 6f 72 20 32 30 20 61 6e 64 20 34 30 20 4d 48 7a 00 53 68 6f 72 74 20 62 75 72 73 74 | es.for.20.and.40.MHz.Short.burst |
| 11a580 | 73 20 63 61 6e 20 62 65 20 61 6c 6c 6f 77 65 64 20 74 6f 20 65 78 63 65 65 64 20 74 68 65 20 6c | s.can.be.allowed.to.exceed.the.l |
| 11a5a0 | 69 6d 69 74 2e 20 4f 6e 20 63 72 65 61 74 69 6f 6e 2c 20 74 68 65 20 52 61 74 65 2d 43 6f 6e 74 | imit..On.creation,.the.Rate-Cont |
| 11a5c0 | 72 6f 6c 20 74 72 61 66 66 69 63 20 69 73 20 73 74 6f 63 6b 65 64 20 77 69 74 68 20 74 6f 6b 65 | rol.traffic.is.stocked.with.toke |
| 11a5e0 | 6e 73 20 77 68 69 63 68 20 63 6f 72 72 65 73 70 6f 6e 64 20 74 6f 20 74 68 65 20 61 6d 6f 75 6e | ns.which.correspond.to.the.amoun |
| 11a600 | 74 20 6f 66 20 74 72 61 66 66 69 63 20 74 68 61 74 20 63 61 6e 20 62 65 20 62 75 72 73 74 20 69 | t.of.traffic.that.can.be.burst.i |
| 11a620 | 6e 20 6f 6e 65 20 67 6f 2e 20 54 6f 6b 65 6e 73 20 61 72 72 69 76 65 20 61 74 20 61 20 73 74 65 | n.one.go..Tokens.arrive.at.a.ste |
| 11a640 | 61 64 79 20 72 61 74 65 2c 20 75 6e 74 69 6c 20 74 68 65 20 62 75 63 6b 65 74 20 69 73 20 66 75 | ady.rate,.until.the.bucket.is.fu |
| 11a660 | 6c 6c 2e 00 53 68 6f 72 74 63 75 74 20 73 79 6e 74 61 78 20 66 6f 72 20 73 70 65 63 69 66 79 69 | ll..Shortcut.syntax.for.specifyi |
| 11a680 | 6e 67 20 61 75 74 6f 6d 61 74 69 63 20 6c 65 61 6b 69 6e 67 20 66 72 6f 6d 20 76 72 66 20 56 52 | ng.automatic.leaking.from.vrf.VR |
| 11a6a0 | 46 4e 41 4d 45 20 74 6f 20 74 68 65 20 63 75 72 72 65 6e 74 20 56 52 46 20 75 73 69 6e 67 20 74 | FNAME.to.the.current.VRF.using.t |
| 11a6c0 | 68 65 20 56 50 4e 20 52 49 42 20 61 73 20 69 6e 74 65 72 6d 65 64 69 61 72 79 2e 20 54 68 65 20 | he.VPN.RIB.as.intermediary..The. |
| 11a6e0 | 52 44 20 61 6e 64 20 52 54 20 61 72 65 20 61 75 74 6f 20 64 65 72 69 76 65 64 20 61 6e 64 20 73 | RD.and.RT.are.auto.derived.and.s |
| 11a700 | 68 6f 75 6c 64 20 6e 6f 74 20 62 65 20 73 70 65 63 69 66 69 65 64 20 65 78 70 6c 69 63 69 74 6c | hould.not.be.specified.explicitl |
| 11a720 | 79 20 66 6f 72 20 65 69 74 68 65 72 20 74 68 65 20 73 6f 75 72 63 65 20 6f 72 20 64 65 73 74 69 | y.for.either.the.source.or.desti |
| 11a740 | 6e 61 74 69 6f 6e 20 56 52 46 e2 80 99 73 2e 00 53 68 6f 77 00 53 68 6f 77 20 43 47 4e 41 54 20 | nation.VRF...s..Show.Show.CGNAT. |
| 11a760 | 61 6c 6c 6f 63 61 74 69 6f 6e 73 00 53 68 6f 77 20 44 48 43 50 20 73 65 72 76 65 72 20 64 61 65 | allocations.Show.DHCP.server.dae |
| 11a780 | 6d 6f 6e 20 6c 6f 67 20 66 69 6c 65 00 53 68 6f 77 20 44 48 43 50 76 36 20 73 65 72 76 65 72 20 | mon.log.file.Show.DHCPv6.server. |
| 11a7a0 | 64 61 65 6d 6f 6e 20 6c 6f 67 20 66 69 6c 65 00 53 68 6f 77 20 46 69 72 65 77 61 6c 6c 20 6c 6f | daemon.log.file.Show.Firewall.lo |
| 11a7c0 | 67 00 53 68 6f 77 20 4c 4c 44 50 20 6e 65 69 67 68 62 6f 72 73 20 63 6f 6e 6e 65 63 74 65 64 20 | g.Show.LLDP.neighbors.connected. |
| 11a7e0 | 76 69 61 20 69 6e 74 65 72 66 61 63 65 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 2e 00 53 68 6f | via.interface.`<interface>`..Sho |
| 11a800 | 77 20 53 53 48 20 64 79 6e 61 6d 69 63 2d 70 72 6f 74 65 63 74 69 6f 6e 20 6c 6f 67 2e 00 53 68 | w.SSH.dynamic-protection.log..Sh |
| 11a820 | 6f 77 20 53 53 48 20 73 65 72 76 65 72 20 6c 6f 67 2e 00 53 68 6f 77 20 53 53 48 20 73 65 72 76 | ow.SSH.server.log..Show.SSH.serv |
| 11a840 | 65 72 20 70 75 62 6c 69 63 20 6b 65 79 20 66 69 6e 67 65 72 70 72 69 6e 74 73 2c 20 69 6e 63 6c | er.public.key.fingerprints,.incl |
| 11a860 | 75 64 69 6e 67 20 61 20 76 69 73 75 61 6c 20 41 53 43 49 49 20 61 72 74 20 72 65 70 72 65 73 65 | uding.a.visual.ASCII.art.represe |
| 11a880 | 6e 74 61 74 69 6f 6e 2e 00 53 68 6f 77 20 53 53 48 20 73 65 72 76 65 72 20 70 75 62 6c 69 63 20 | ntation..Show.SSH.server.public. |
| 11a8a0 | 6b 65 79 20 66 69 6e 67 65 72 70 72 69 6e 74 73 2e 00 53 68 6f 77 20 57 41 4e 20 6c 6f 61 64 20 | key.fingerprints..Show.WAN.load. |
| 11a8c0 | 62 61 6c 61 6e 63 65 72 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 69 6e 63 6c 75 64 69 6e 67 20 74 | balancer.information.including.t |
| 11a8e0 | 65 73 74 20 74 79 70 65 73 20 61 6e 64 20 74 61 72 67 65 74 73 2e 20 41 20 63 68 61 72 61 63 74 | est.types.and.targets..A.charact |
| 11a900 | 65 72 20 61 74 20 74 68 65 20 73 74 61 72 74 20 6f 66 20 65 61 63 68 20 6c 69 6e 65 20 64 65 70 | er.at.the.start.of.each.line.dep |
| 11a920 | 69 63 74 73 20 74 68 65 20 73 74 61 74 65 20 6f 66 20 74 68 65 20 74 65 73 74 00 53 68 6f 77 20 | icts.the.state.of.the.test.Show. |
| 11a940 | 57 57 41 4e 20 6d 6f 64 75 6c 65 20 49 4d 45 49 2e 00 53 68 6f 77 20 57 57 41 4e 20 6d 6f 64 75 | WWAN.module.IMEI..Show.WWAN.modu |
| 11a960 | 6c 65 20 49 4d 53 49 2e 00 53 68 6f 77 20 57 57 41 4e 20 6d 6f 64 75 6c 65 20 4d 53 49 53 44 4e | le.IMSI..Show.WWAN.module.MSISDN |
| 11a980 | 2e 00 53 68 6f 77 20 57 57 41 4e 20 6d 6f 64 75 6c 65 20 53 49 4d 20 63 61 72 64 20 69 6e 66 6f | ..Show.WWAN.module.SIM.card.info |
| 11a9a0 | 72 6d 61 74 69 6f 6e 2e 00 53 68 6f 77 20 57 57 41 4e 20 6d 6f 64 75 6c 65 20 66 69 72 6d 77 61 | rmation..Show.WWAN.module.firmwa |
| 11a9c0 | 72 65 2e 00 53 68 6f 77 20 57 57 41 4e 20 6d 6f 64 75 6c 65 20 68 61 72 64 77 61 72 65 20 63 61 | re..Show.WWAN.module.hardware.ca |
| 11a9e0 | 70 61 62 69 6c 69 74 69 65 73 2e 00 53 68 6f 77 20 57 57 41 4e 20 6d 6f 64 75 6c 65 20 68 61 72 | pabilities..Show.WWAN.module.har |
| 11aa00 | 64 77 61 72 65 20 72 65 76 69 73 69 6f 6e 2e 00 53 68 6f 77 20 57 57 41 4e 20 6d 6f 64 75 6c 65 | dware.revision..Show.WWAN.module |
| 11aa20 | 20 6d 6f 64 65 6c 2e 00 53 68 6f 77 20 57 57 41 4e 20 6d 6f 64 75 6c 65 20 73 69 67 6e 61 6c 20 | .model..Show.WWAN.module.signal. |
| 11aa40 | 73 74 72 65 6e 67 74 68 2e 00 53 68 6f 77 20 61 20 64 65 74 61 69 6c 65 64 20 69 6e 66 6f 72 6d | strength..Show.a.detailed.inform |
| 11aa60 | 61 74 69 6f 6e 20 6f 66 20 61 6c 6c 20 61 63 74 69 76 65 20 49 50 73 65 63 20 53 65 63 75 72 69 | ation.of.all.active.IPsec.Securi |
| 11aa80 | 74 79 20 41 73 73 6f 63 69 61 74 69 6f 6e 73 20 28 53 41 29 20 69 6e 20 76 65 72 62 6f 73 65 20 | ty.Associations.(SA).in.verbose. |
| 11aaa0 | 66 6f 72 6d 61 74 2e 00 53 68 6f 77 20 61 20 6c 69 73 74 20 61 76 61 69 6c 61 62 6c 65 20 63 6f | format..Show.a.list.available.co |
| 11aac0 | 6e 74 61 69 6e 65 72 20 6e 65 74 77 6f 72 6b 73 00 53 68 6f 77 20 61 20 6c 69 73 74 20 6f 66 20 | ntainer.networks.Show.a.list.of. |
| 11aae0 | 69 6e 73 74 61 6c 6c 65 64 20 3a 61 62 62 72 3a 60 43 41 20 28 43 65 72 74 69 66 69 63 61 74 65 | installed.:abbr:`CA.(Certificate |
| 11ab00 | 20 41 75 74 68 6f 72 69 74 79 29 60 20 63 65 72 74 69 66 69 63 61 74 65 73 2e 00 53 68 6f 77 20 | .Authority)`.certificates..Show. |
| 11ab20 | 61 20 6c 69 73 74 20 6f 66 20 69 6e 73 74 61 6c 6c 65 64 20 3a 61 62 62 72 3a 60 43 52 4c 73 20 | a.list.of.installed.:abbr:`CRLs. |
| 11ab40 | 28 43 65 72 74 69 66 69 63 61 74 65 20 52 65 76 6f 63 61 74 69 6f 6e 20 4c 69 73 74 29 60 2e 00 | (Certificate.Revocation.List)`.. |
| 11ab60 | 53 68 6f 77 20 61 20 6c 69 73 74 20 6f 66 20 69 6e 73 74 61 6c 6c 65 64 20 63 65 72 74 69 66 69 | Show.a.list.of.installed.certifi |
| 11ab80 | 63 61 74 65 73 00 53 68 6f 77 20 61 64 64 72 65 73 73 20 61 6e 64 20 70 6f 72 74 20 61 6c 6c 6f | cates.Show.address.and.port.allo |
| 11aba0 | 63 61 74 69 6f 6e 73 00 53 68 6f 77 20 61 6c 6c 20 42 46 44 20 70 65 65 72 73 00 53 68 6f 77 20 | cations.Show.all.BFD.peers.Show. |
| 11abc0 | 61 6c 6c 20 61 63 74 69 76 65 20 49 50 73 65 63 20 53 65 63 75 72 69 74 79 20 41 73 73 6f 63 69 | all.active.IPsec.Security.Associ |
| 11abe0 | 61 74 69 6f 6e 73 20 28 53 41 29 00 53 68 6f 77 20 61 6c 6c 20 61 6c 6c 6f 63 61 74 69 6f 6e 73 | ations.(SA).Show.all.allocations |
| 11ac00 | 20 66 6f 72 20 61 6e 20 65 78 74 65 72 6e 61 6c 20 49 50 20 61 64 64 72 65 73 73 00 53 68 6f 77 | .for.an.external.IP.address.Show |
| 11ac20 | 20 61 6c 6c 20 61 6c 6c 6f 63 61 74 69 6f 6e 73 20 66 6f 72 20 61 6e 20 69 6e 74 65 72 6e 61 6c | .all.allocations.for.an.internal |
| 11ac40 | 20 49 50 20 61 64 64 72 65 73 73 00 53 68 6f 77 20 61 6c 6c 20 63 75 72 72 65 6e 74 6c 79 20 61 | .IP.address.Show.all.currently.a |
| 11ac60 | 63 74 69 76 65 20 49 4b 45 20 53 65 63 75 72 69 74 79 20 41 73 73 6f 63 69 61 74 69 6f 6e 73 20 | ctive.IKE.Security.Associations. |
| 11ac80 | 28 53 41 29 20 66 6f 72 20 61 20 73 70 65 63 69 66 69 63 20 70 65 65 72 2e 00 53 68 6f 77 20 61 | (SA).for.a.specific.peer..Show.a |
| 11aca0 | 6c 6c 20 63 75 72 72 65 6e 74 6c 79 20 61 63 74 69 76 65 20 49 4b 45 20 53 65 63 75 72 69 74 79 | ll.currently.active.IKE.Security |
| 11acc0 | 20 41 73 73 6f 63 69 61 74 69 6f 6e 73 20 28 53 41 29 20 74 68 61 74 20 61 72 65 20 75 73 69 6e | .Associations.(SA).that.are.usin |
| 11ace0 | 67 20 4e 41 54 20 54 72 61 76 65 72 73 61 6c 2e 00 53 68 6f 77 20 61 6c 6c 20 63 75 72 72 65 6e | g.NAT.Traversal..Show.all.curren |
| 11ad00 | 74 6c 79 20 61 63 74 69 76 65 20 49 4b 45 20 53 65 63 75 72 69 74 79 20 41 73 73 6f 63 69 61 74 | tly.active.IKE.Security.Associat |
| 11ad20 | 69 6f 6e 73 2e 00 53 68 6f 77 20 61 6c 6c 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 70 72 | ions..Show.all.the.configured.pr |
| 11ad40 | 65 2d 73 68 61 72 65 64 20 73 65 63 72 65 74 20 6b 65 79 73 2e 00 53 68 6f 77 20 61 76 61 69 6c | e-shared.secret.keys..Show.avail |
| 11ad60 | 61 62 6c 65 20 6f 66 66 6c 6f 61 64 69 6e 67 20 66 75 6e 63 74 69 6f 6e 73 20 6f 6e 20 67 69 76 | able.offloading.functions.on.giv |
| 11ad80 | 65 6e 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 00 53 68 6f 77 20 62 69 6e 64 65 64 20 71 61 74 | en.`<interface>`.Show.binded.qat |
| 11ada0 | 20 64 65 76 69 63 65 20 69 6e 74 65 72 72 75 70 74 73 20 74 6f 20 63 65 72 74 61 69 6e 20 63 6f | .device.interrupts.to.certain.co |
| 11adc0 | 72 65 2e 00 53 68 6f 77 20 62 72 69 64 67 65 20 60 3c 6e 61 6d 65 3e 60 20 66 64 62 20 64 69 73 | re..Show.bridge.`<name>`.fdb.dis |
| 11ade0 | 70 6c 61 79 73 20 74 68 65 20 63 75 72 72 65 6e 74 20 66 6f 72 77 61 72 64 69 6e 67 20 74 61 62 | plays.the.current.forwarding.tab |
| 11ae00 | 6c 65 3a 00 53 68 6f 77 20 62 72 69 64 67 65 20 60 3c 6e 61 6d 65 3e 60 20 6d 64 62 20 64 69 73 | le:.Show.bridge.`<name>`.mdb.dis |
| 11ae20 | 70 6c 61 79 73 20 74 68 65 20 63 75 72 72 65 6e 74 20 6d 75 6c 74 69 63 61 73 74 20 67 72 6f 75 | plays.the.current.multicast.grou |
| 11ae40 | 70 20 6d 65 6d 62 65 72 73 68 69 70 20 74 61 62 6c 65 2e 54 68 65 20 74 61 62 6c 65 20 69 73 20 | p.membership.table.The.table.is. |
| 11ae60 | 70 6f 70 75 6c 61 74 65 64 20 62 79 20 49 47 4d 50 20 61 6e 64 20 4d 4c 44 20 73 6e 6f 6f 70 69 | populated.by.IGMP.and.MLD.snoopi |
| 11ae80 | 6e 67 20 69 6e 20 74 68 65 20 62 72 69 64 67 65 20 64 72 69 76 65 72 20 61 75 74 6f 6d 61 74 69 | ng.in.the.bridge.driver.automati |
| 11aea0 | 63 61 6c 6c 79 2e 00 53 68 6f 77 20 62 72 69 65 66 20 69 6e 74 65 72 66 61 63 65 20 69 6e 66 6f | cally..Show.brief.interface.info |
| 11aec0 | 72 6d 61 74 69 6f 6e 2e 00 53 68 6f 77 20 63 6f 6d 6d 61 6e 64 73 00 53 68 6f 77 20 63 6f 6e 66 | rmation..Show.commands.Show.conf |
| 11aee0 | 69 67 75 72 65 64 20 73 65 72 69 61 6c 20 70 6f 72 74 73 20 61 6e 64 20 74 68 65 69 72 20 72 65 | igured.serial.ports.and.their.re |
| 11af00 | 73 70 65 63 74 69 76 65 20 69 6e 74 65 72 66 61 63 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e | spective.interface.configuration |
| 11af20 | 2e 00 53 68 6f 77 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 64 61 74 61 20 6f 66 20 6c 6f 61 64 20 62 | ..Show.connection.data.of.load.b |
| 11af40 | 61 6c 61 6e 63 65 64 20 74 72 61 66 66 69 63 3a 00 53 68 6f 77 20 63 6f 6e 6e 65 63 74 69 6f 6e | alanced.traffic:.Show.connection |
| 11af60 | 20 73 79 6e 63 69 6e 67 20 65 78 74 65 72 6e 61 6c 20 63 61 63 68 65 20 65 6e 74 72 69 65 73 00 | .syncing.external.cache.entries. |
| 11af80 | 53 68 6f 77 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 73 79 6e 63 69 6e 67 20 69 6e 74 65 72 6e 61 6c | Show.connection.syncing.internal |
| 11afa0 | 20 63 61 63 68 65 20 65 6e 74 72 69 65 73 00 53 68 6f 77 20 63 75 72 72 65 6e 74 6c 79 20 63 6f | .cache.entries.Show.currently.co |
| 11afc0 | 6e 6e 65 63 74 65 64 20 75 73 65 72 73 2e 00 53 68 6f 77 20 64 65 74 61 69 6c 65 64 20 69 6e 66 | nnected.users..Show.detailed.inf |
| 11afe0 | 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 61 6c 6c 20 6c 65 61 72 6e 65 64 20 53 65 67 6d 65 | ormation.about.all.learned.Segme |
| 11b000 | 6e 74 20 52 6f 75 74 69 6e 67 20 4e 6f 64 65 73 00 53 68 6f 77 20 64 65 74 61 69 6c 65 64 20 69 | nt.Routing.Nodes.Show.detailed.i |
| 11b020 | 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 70 72 65 66 69 78 2d 73 69 64 20 61 6e 64 20 | nformation.about.prefix-sid.and. |
| 11b040 | 6c 61 62 65 6c 20 6c 65 61 72 6e 65 64 00 53 68 6f 77 20 64 65 74 61 69 6c 65 64 20 69 6e 66 6f | label.learned.Show.detailed.info |
| 11b060 | 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 74 68 65 20 75 6e 64 65 72 6c 61 79 69 6e 67 20 70 68 | rmation.about.the.underlaying.ph |
| 11b080 | 79 73 69 63 61 6c 20 6c 69 6e 6b 73 20 6f 6e 20 67 69 76 65 6e 20 62 6f 6e 64 20 60 3c 69 6e 74 | ysical.links.on.given.bond.`<int |
| 11b0a0 | 65 72 66 61 63 65 3e 60 2e 00 53 68 6f 77 20 64 65 74 61 69 6c 65 64 20 69 6e 66 6f 72 6d 61 74 | erface>`..Show.detailed.informat |
| 11b0c0 | 69 6f 6e 20 6f 6e 20 67 69 76 65 6e 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 00 53 68 6f 77 20 | ion.on.given.`<interface>`.Show. |
| 11b0e0 | 64 65 74 61 69 6c 65 64 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 6e 20 74 68 65 20 67 69 76 65 | detailed.information.on.the.give |
| 11b100 | 6e 20 6c 6f 6f 70 62 61 63 6b 20 69 6e 74 65 72 66 61 63 65 20 60 6c 6f 60 2e 00 53 68 6f 77 20 | n.loopback.interface.`lo`..Show. |
| 11b120 | 64 65 74 61 69 6c 65 64 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 73 75 6d 6d 61 72 79 20 6f 6e 20 | detailed.information.summary.on. |
| 11b140 | 67 69 76 65 6e 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 00 53 68 6f 77 20 64 65 74 61 69 6c 73 | given.`<interface>`.Show.details |
| 11b160 | 20 6f 66 20 61 6c 6c 20 61 76 61 69 6c 61 62 6c 65 20 56 50 4e 20 63 6f 6e 6e 65 63 74 69 6f 6e | .of.all.available.VPN.connection |
| 11b180 | 73 00 53 68 6f 77 20 66 6c 6f 77 20 61 63 63 6f 75 6e 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 | s.Show.flow.accounting.informati |
| 11b1a0 | 6f 6e 20 66 6f 72 20 67 69 76 65 6e 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 20 66 6f 72 20 61 | on.for.given.`<interface>`.for.a |
| 11b1c0 | 20 73 70 65 63 69 66 69 63 20 68 6f 73 74 20 6f 6e 6c 79 2e 00 53 68 6f 77 20 66 6c 6f 77 20 61 | .specific.host.only..Show.flow.a |
| 11b1e0 | 63 63 6f 75 6e 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 6f 72 20 67 69 76 65 6e 20 | ccounting.information.for.given. |
| 11b200 | 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 2e 00 53 68 6f 77 20 67 65 6e 65 72 61 6c 20 69 6e 66 6f | `<interface>`..Show.general.info |
| 11b220 | 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 73 70 65 63 69 66 69 63 20 57 69 72 65 47 75 61 72 64 | rmation.about.specific.WireGuard |
| 11b240 | 20 69 6e 74 65 72 66 61 63 65 00 53 68 6f 77 20 69 6e 66 6f 20 61 62 6f 75 74 20 74 68 65 20 57 | .interface.Show.info.about.the.W |
| 11b260 | 69 72 65 67 75 61 72 64 20 73 65 72 76 69 63 65 2e 20 49 74 20 61 6c 73 6f 20 73 68 6f 77 73 20 | ireguard.service..It.also.shows. |
| 11b280 | 74 68 65 20 6c 61 74 65 73 74 20 68 61 6e 64 73 68 61 6b 65 2e 00 53 68 6f 77 20 69 6e 66 6f 72 | the.latest.handshake..Show.infor |
| 11b2a0 | 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 70 68 79 73 69 63 61 6c 20 60 3c 69 6e 74 65 72 66 61 63 | mation.about.physical.`<interfac |
| 11b2c0 | 65 3e 60 00 53 68 6f 77 20 6c 69 73 74 20 6f 66 20 49 50 73 20 63 75 72 72 65 6e 74 6c 79 20 62 | e>`.Show.list.of.IPs.currently.b |
| 11b2e0 | 6c 6f 63 6b 65 64 20 62 79 20 53 53 48 20 64 79 6e 61 6d 69 63 2d 70 72 6f 74 65 63 74 69 6f 6e | locked.by.SSH.dynamic-protection |
| 11b300 | 2e 00 53 68 6f 77 20 6c 6f 67 73 20 66 6f 72 20 49 50 73 65 63 00 53 68 6f 77 20 6c 6f 67 73 20 | ..Show.logs.for.IPsec.Show.logs. |
| 11b320 | 66 6f 72 20 6d 44 4e 53 20 72 65 70 65 61 74 65 72 20 73 65 72 76 69 63 65 2e 00 53 68 6f 77 20 | for.mDNS.repeater.service..Show. |
| 11b340 | 6c 6f 67 73 20 66 72 6f 6d 20 61 20 67 69 76 65 6e 20 63 6f 6e 74 61 69 6e 65 72 00 53 68 6f 77 | logs.from.a.given.container.Show |
| 11b360 | 20 6c 6f 67 73 20 66 72 6f 6d 20 61 6c 6c 20 44 48 43 50 20 63 6c 69 65 6e 74 20 70 72 6f 63 65 | .logs.from.all.DHCP.client.proce |
| 11b380 | 73 73 65 73 2e 00 53 68 6f 77 20 6c 6f 67 73 20 66 72 6f 6d 20 61 6c 6c 20 44 48 43 50 76 36 20 | sses..Show.logs.from.all.DHCPv6. |
| 11b3a0 | 63 6c 69 65 6e 74 20 70 72 6f 63 65 73 73 65 73 2e 00 53 68 6f 77 20 6c 6f 67 73 20 66 72 6f 6d | client.processes..Show.logs.from |
| 11b3c0 | 20 73 70 65 63 69 66 69 63 20 60 69 6e 74 65 72 66 61 63 65 60 20 44 48 43 50 20 63 6c 69 65 6e | .specific.`interface`.DHCP.clien |
| 11b3e0 | 74 20 70 72 6f 63 65 73 73 2e 00 53 68 6f 77 20 6c 6f 67 73 20 66 72 6f 6d 20 73 70 65 63 69 66 | t.process..Show.logs.from.specif |
| 11b400 | 69 63 20 60 69 6e 74 65 72 66 61 63 65 60 20 44 48 43 50 76 36 20 63 6c 69 65 6e 74 20 70 72 6f | ic.`interface`.DHCPv6.client.pro |
| 11b420 | 63 65 73 73 2e 00 53 68 6f 77 20 6f 6e 6c 79 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 6f 72 20 | cess..Show.only.information.for. |
| 11b440 | 73 70 65 63 69 66 69 65 64 20 43 65 72 74 69 66 69 63 61 74 65 20 41 75 74 68 6f 72 69 74 79 2e | specified.Certificate.Authority. |
| 11b460 | 00 53 68 6f 77 20 6f 6e 6c 79 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 6f 72 20 73 70 65 63 69 | .Show.only.information.for.speci |
| 11b480 | 66 69 65 64 20 63 65 72 74 69 66 69 63 61 74 65 2e 00 53 68 6f 77 20 6f 6e 6c 79 20 6c 65 61 73 | fied.certificate..Show.only.leas |
| 11b4a0 | 65 73 20 69 6e 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 70 6f 6f 6c 2e 00 53 68 6f 77 20 6f | es.in.the.specified.pool..Show.o |
| 11b4c0 | 6e 6c 79 20 6c 65 61 73 65 73 20 77 69 74 68 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 73 74 | nly.leases.with.the.specified.st |
| 11b4e0 | 61 74 65 2e 20 50 6f 73 73 69 62 6c 65 20 73 74 61 74 65 73 3a 20 61 62 61 6e 64 6f 6e 65 64 2c | ate..Possible.states:.abandoned, |
| 11b500 | 20 61 63 74 69 76 65 2c 20 61 6c 6c 2c 20 62 61 63 6b 75 70 2c 20 65 78 70 69 72 65 64 2c 20 66 | .active,.all,.backup,.expired,.f |
| 11b520 | 72 65 65 2c 20 72 65 6c 65 61 73 65 64 2c 20 72 65 73 65 74 20 28 64 65 66 61 75 6c 74 20 3d 20 | ree,.released,.reset.(default.=. |
| 11b540 | 61 63 74 69 76 65 29 00 53 68 6f 77 20 6f 6e 6c 79 20 6c 65 61 73 65 73 20 77 69 74 68 20 74 68 | active).Show.only.leases.with.th |
| 11b560 | 65 20 73 70 65 63 69 66 69 65 64 20 73 74 61 74 65 2e 20 50 6f 73 73 69 62 6c 65 20 73 74 61 74 | e.specified.state..Possible.stat |
| 11b580 | 65 73 3a 20 61 6c 6c 2c 20 61 63 74 69 76 65 2c 20 66 72 65 65 2c 20 65 78 70 69 72 65 64 2c 20 | es:.all,.active,.free,.expired,. |
| 11b5a0 | 72 65 6c 65 61 73 65 64 2c 20 61 62 61 6e 64 6f 6e 65 64 2c 20 72 65 73 65 74 2c 20 62 61 63 6b | released,.abandoned,.reset,.back |
| 11b5c0 | 75 70 20 28 64 65 66 61 75 6c 74 20 3d 20 61 63 74 69 76 65 29 00 53 68 6f 77 20 72 6f 75 74 69 | up.(default.=.active).Show.routi |
| 11b5e0 | 6e 67 20 74 61 62 6c 65 20 65 6e 74 72 79 20 66 6f 72 20 74 68 65 20 64 65 66 61 75 6c 74 20 72 | ng.table.entry.for.the.default.r |
| 11b600 | 6f 75 74 65 2e 00 53 68 6f 77 20 73 70 65 63 69 66 69 63 20 4d 41 43 73 65 63 20 69 6e 74 65 72 | oute..Show.specific.MACsec.inter |
| 11b620 | 66 61 63 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 00 53 68 6f 77 20 73 74 61 74 75 73 20 6f 66 20 | face.information.Show.status.of. |
| 11b640 | 6e 65 77 20 73 65 74 75 70 3a 00 53 68 6f 77 20 73 74 61 74 75 73 65 73 20 6f 66 20 61 6c 6c 20 | new.setup:.Show.statuses.of.all. |
| 11b660 | 61 63 74 69 76 65 20 6c 65 61 73 65 73 20 67 72 61 6e 74 65 64 20 62 79 20 6c 6f 63 61 6c 20 28 | active.leases.granted.by.local.( |
| 11b680 | 74 68 69 73 20 73 65 72 76 65 72 29 20 6f 72 20 72 65 6d 6f 74 65 20 28 66 61 69 6c 6f 76 65 72 | this.server).or.remote.(failover |
| 11b6a0 | 20 73 65 72 76 65 72 29 3a 00 53 68 6f 77 20 73 74 61 74 75 73 65 73 20 6f 66 20 61 6c 6c 20 61 | .server):.Show.statuses.of.all.a |
| 11b6c0 | 63 74 69 76 65 20 6c 65 61 73 65 73 3a 00 53 68 6f 77 20 74 68 65 20 44 48 43 50 20 73 65 72 76 | ctive.leases:.Show.the.DHCP.serv |
| 11b6e0 | 65 72 20 73 74 61 74 69 73 74 69 63 73 20 66 6f 72 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 | er.statistics.for.the.specified. |
| 11b700 | 70 6f 6f 6c 2e 00 53 68 6f 77 20 74 68 65 20 44 48 43 50 20 73 65 72 76 65 72 20 73 74 61 74 69 | pool..Show.the.DHCP.server.stati |
| 11b720 | 73 74 69 63 73 3a 00 53 68 6f 77 20 74 68 65 20 63 6f 6e 73 6f 6c 65 20 73 65 72 76 65 72 20 6c | stics:.Show.the.console.server.l |
| 11b740 | 6f 67 2e 00 53 68 6f 77 20 74 68 65 20 64 65 74 61 69 6c 65 64 20 73 74 61 74 75 73 20 69 6e 66 | og..Show.the.detailed.status.inf |
| 11b760 | 6f 72 6d 61 74 69 6f 6e 20 6f 66 20 49 4b 45 20 63 68 61 72 6f 6e 20 70 72 6f 63 65 73 73 2e 00 | ormation.of.IKE.charon.process.. |
| 11b780 | 53 68 6f 77 20 74 68 65 20 66 75 6c 6c 20 63 6f 6e 66 69 67 20 75 70 6c 6f 61 64 65 64 20 74 6f | Show.the.full.config.uploaded.to |
| 11b7a0 | 20 74 68 65 20 51 41 54 20 64 65 76 69 63 65 2e 00 53 68 6f 77 20 74 68 65 20 6c 69 73 74 20 6f | .the.QAT.device..Show.the.list.o |
| 11b7c0 | 66 20 61 6c 6c 20 61 63 74 69 76 65 20 63 6f 6e 74 61 69 6e 65 72 73 2e 00 53 68 6f 77 20 74 68 | f.all.active.containers..Show.th |
| 11b7e0 | 65 20 6c 6f 63 61 6c 20 63 6f 6e 74 61 69 6e 65 72 20 69 6d 61 67 65 73 2e 00 53 68 6f 77 20 74 | e.local.container.images..Show.t |
| 11b800 | 68 65 20 6c 6f 67 73 20 6f 66 20 61 20 73 70 65 63 69 66 69 63 20 52 75 6c 65 2d 53 65 74 2e 00 | he.logs.of.a.specific.Rule-Set.. |
| 11b820 | 53 68 6f 77 20 74 68 65 20 6c 6f 67 73 20 6f 66 20 61 6c 6c 20 66 69 72 65 77 61 6c 6c 3b 20 73 | Show.the.logs.of.all.firewall;.s |
| 11b840 | 68 6f 77 20 61 6c 6c 20 62 72 69 64 67 65 20 66 69 72 65 77 61 6c 6c 20 6c 6f 67 73 3b 20 73 68 | how.all.bridge.firewall.logs;.sh |
| 11b860 | 6f 77 20 61 6c 6c 20 6c 6f 67 73 20 66 6f 72 20 66 6f 72 77 61 72 64 20 68 6f 6f 6b 3b 20 73 68 | ow.all.logs.for.forward.hook;.sh |
| 11b880 | 6f 77 20 61 6c 6c 20 6c 6f 67 73 20 66 6f 72 20 66 6f 72 77 61 72 64 20 68 6f 6f 6b 20 61 6e 64 | ow.all.logs.for.forward.hook.and |
| 11b8a0 | 20 70 72 69 6f 72 69 74 79 20 66 69 6c 74 65 72 3b 20 73 68 6f 77 20 61 6c 6c 20 6c 6f 67 73 20 | .priority.filter;.show.all.logs. |
| 11b8c0 | 66 6f 72 20 70 61 72 74 69 63 75 6c 61 72 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 3b 20 73 68 6f | for.particular.custom.chain;.sho |
| 11b8e0 | 77 20 6c 6f 67 73 20 66 6f 72 20 73 70 65 63 69 66 69 63 20 52 75 6c 65 2d 53 65 74 2e 00 53 68 | w.logs.for.specific.Rule-Set..Sh |
| 11b900 | 6f 77 20 74 68 65 20 6c 6f 67 73 20 6f 66 20 61 6c 6c 20 66 69 72 65 77 61 6c 6c 3b 20 73 68 6f | ow.the.logs.of.all.firewall;.sho |
| 11b920 | 77 20 61 6c 6c 20 69 70 76 34 20 66 69 72 65 77 61 6c 6c 20 6c 6f 67 73 3b 20 73 68 6f 77 20 61 | w.all.ipv4.firewall.logs;.show.a |
| 11b940 | 6c 6c 20 6c 6f 67 73 20 66 6f 72 20 70 61 72 74 69 63 75 6c 61 72 20 68 6f 6f 6b 3b 20 73 68 6f | ll.logs.for.particular.hook;.sho |
| 11b960 | 77 20 61 6c 6c 20 6c 6f 67 73 20 66 6f 72 20 70 61 72 74 69 63 75 6c 61 72 20 68 6f 6f 6b 20 61 | w.all.logs.for.particular.hook.a |
| 11b980 | 6e 64 20 70 72 69 6f 72 69 74 79 3b 20 73 68 6f 77 20 61 6c 6c 20 6c 6f 67 73 20 66 6f 72 20 70 | nd.priority;.show.all.logs.for.p |
| 11b9a0 | 61 72 74 69 63 75 6c 61 72 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 3b 20 73 68 6f 77 20 6c 6f 67 | articular.custom.chain;.show.log |
| 11b9c0 | 73 20 66 6f 72 20 73 70 65 63 69 66 69 63 20 52 75 6c 65 2d 53 65 74 2e 00 53 68 6f 77 20 74 68 | s.for.specific.Rule-Set..Show.th |
| 11b9e0 | 65 20 6c 6f 67 73 20 6f 66 20 61 6c 6c 20 66 69 72 65 77 61 6c 6c 3b 20 73 68 6f 77 20 61 6c 6c | e.logs.of.all.firewall;.show.all |
| 11ba00 | 20 69 70 76 36 20 66 69 72 65 77 61 6c 6c 20 6c 6f 67 73 3b 20 73 68 6f 77 20 61 6c 6c 20 6c 6f | .ipv6.firewall.logs;.show.all.lo |
| 11ba20 | 67 73 20 66 6f 72 20 70 61 72 74 69 63 75 6c 61 72 20 68 6f 6f 6b 3b 20 73 68 6f 77 20 61 6c 6c | gs.for.particular.hook;.show.all |
| 11ba40 | 20 6c 6f 67 73 20 66 6f 72 20 70 61 72 74 69 63 75 6c 61 72 20 68 6f 6f 6b 20 61 6e 64 20 70 72 | .logs.for.particular.hook.and.pr |
| 11ba60 | 69 6f 72 69 74 79 3b 20 73 68 6f 77 20 61 6c 6c 20 6c 6f 67 73 20 66 6f 72 20 70 61 72 74 69 63 | iority;.show.all.logs.for.partic |
| 11ba80 | 75 6c 61 72 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 3b 20 73 68 6f 77 20 6c 6f 67 73 20 66 6f 72 | ular.custom.chain;.show.logs.for |
| 11baa0 | 20 73 70 65 63 69 66 69 63 20 52 75 6c 65 2d 53 65 74 2e 00 53 68 6f 77 20 74 68 65 20 72 6f 75 | .specific.Rule-Set..Show.the.rou |
| 11bac0 | 74 65 00 53 68 6f 77 20 74 68 65 20 73 74 61 74 75 73 20 6f 66 20 72 75 6e 6e 69 6e 67 20 49 50 | te.Show.the.status.of.running.IP |
| 11bae0 | 73 65 63 20 70 72 6f 63 65 73 73 20 61 6e 64 20 70 72 6f 63 65 73 73 20 49 44 2e 00 53 68 6f 77 | sec.process.and.process.ID..Show |
| 11bb00 | 20 74 72 61 6e 73 63 65 69 76 65 72 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 72 6f 6d 20 70 6c | .transceiver.information.from.pl |
| 11bb20 | 75 67 69 6e 20 6d 6f 64 75 6c 65 73 2c 20 65 2e 67 20 53 46 50 2b 2c 20 51 53 46 50 00 53 68 6f | ugin.modules,.e.g.SFP+,.QSFP.Sho |
| 11bb40 | 77 69 6e 67 20 42 46 44 20 6d 6f 6e 69 74 6f 72 65 64 20 73 74 61 74 69 63 20 72 6f 75 74 65 73 | wing.BFD.monitored.static.routes |
| 11bb60 | 00 53 68 6f 77 73 20 73 74 61 74 75 73 20 6f 66 20 61 6c 6c 20 61 73 73 69 67 6e 65 64 20 6c 65 | .Shows.status.of.all.assigned.le |
| 11bb80 | 61 73 65 73 3a 00 53 69 64 65 20 41 3a 00 53 69 64 65 20 42 3a 00 53 69 65 72 72 61 20 57 69 72 | ases:.Side.A:.Side.B:.Sierra.Wir |
| 11bba0 | 65 6c 65 73 73 20 41 69 72 50 72 69 6d 65 20 4d 43 37 33 30 34 20 6d 69 6e 69 50 43 49 65 20 63 | eless.AirPrime.MC7304.miniPCIe.c |
| 11bbc0 | 61 72 64 20 28 4c 54 45 29 00 53 69 65 72 72 61 20 57 69 72 65 6c 65 73 73 20 41 69 72 50 72 69 | ard.(LTE).Sierra.Wireless.AirPri |
| 11bbe0 | 6d 65 20 4d 43 37 34 33 30 20 6d 69 6e 69 50 43 49 65 20 63 61 72 64 20 28 4c 54 45 29 00 53 69 | me.MC7430.miniPCIe.card.(LTE).Si |
| 11bc00 | 65 72 72 61 20 57 69 72 65 6c 65 73 73 20 41 69 72 50 72 69 6d 65 20 4d 43 37 34 35 35 20 6d 69 | erra.Wireless.AirPrime.MC7455.mi |
| 11bc20 | 6e 69 50 43 49 65 20 63 61 72 64 20 28 4c 54 45 29 00 53 69 65 72 72 61 20 57 69 72 65 6c 65 73 | niPCIe.card.(LTE).Sierra.Wireles |
| 11bc40 | 73 20 41 69 72 50 72 69 6d 65 20 4d 43 37 37 31 30 20 6d 69 6e 69 50 43 49 65 20 63 61 72 64 20 | s.AirPrime.MC7710.miniPCIe.card. |
| 11bc60 | 28 4c 54 45 29 00 53 69 6d 69 6c 61 72 20 63 6f 6d 62 69 6e 61 74 69 6f 6e 73 20 61 72 65 20 61 | (LTE).Similar.combinations.are.a |
| 11bc80 | 70 70 6c 69 63 61 62 6c 65 20 66 6f 72 20 74 68 65 20 64 65 61 64 2d 70 65 65 72 2d 64 65 74 65 | pplicable.for.the.dead-peer-dete |
| 11bca0 | 63 74 69 6f 6e 2e 00 53 69 6d 69 6c 61 72 6c 79 20 74 72 61 66 66 69 63 20 72 65 63 65 69 76 65 | ction..Similarly.traffic.receive |
| 11bcc0 | 64 20 66 72 6f 6d 20 45 53 20 70 65 65 72 73 20 76 69 61 20 74 68 65 20 6f 76 65 72 6c 61 79 20 | d.from.ES.peers.via.the.overlay. |
| 11bce0 | 63 61 6e 6e 6f 74 20 62 65 20 66 6f 72 77 61 72 64 65 64 20 74 6f 20 74 68 65 20 73 65 72 76 65 | cannot.be.forwarded.to.the.serve |
| 11bd00 | 72 2e 20 54 68 69 73 20 69 73 20 73 70 6c 69 74 2d 68 6f 72 69 7a 6f 6e 2d 66 69 6c 74 65 72 69 | r..This.is.split-horizon-filteri |
| 11bd20 | 6e 67 20 77 69 74 68 20 6c 6f 63 61 6c 20 62 69 61 73 2e 00 53 69 6d 70 6c 65 20 42 61 62 65 6c | ng.with.local.bias..Simple.Babel |
| 11bd40 | 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 75 73 69 6e 67 20 32 20 6e 6f 64 65 73 20 61 6e 64 | .configuration.using.2.nodes.and |
| 11bd60 | 20 72 65 64 69 73 74 72 69 62 75 74 69 6e 67 20 63 6f 6e 6e 65 63 74 65 64 20 69 6e 74 65 72 66 | .redistributing.connected.interf |
| 11bd80 | 61 63 65 73 2e 00 53 69 6d 70 6c 65 20 52 49 50 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 75 | aces..Simple.RIP.configuration.u |
| 11bda0 | 73 69 6e 67 20 32 20 6e 6f 64 65 73 20 61 6e 64 20 72 65 64 69 73 74 72 69 62 75 74 69 6e 67 20 | sing.2.nodes.and.redistributing. |
| 11bdc0 | 63 6f 6e 6e 65 63 74 65 64 20 69 6e 74 65 72 66 61 63 65 73 2e 00 53 69 6d 70 6c 65 20 73 65 74 | connected.interfaces..Simple.set |
| 11bde0 | 75 70 20 77 69 74 68 20 6f 6e 65 20 75 73 65 72 20 61 64 64 65 64 20 61 6e 64 20 70 61 73 73 77 | up.with.one.user.added.and.passw |
| 11be00 | 6f 72 64 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 3a 00 53 69 6d 70 6c 65 20 74 65 78 74 20 | ord.authentication:.Simple.text. |
| 11be20 | 70 61 73 73 77 6f 72 64 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 69 73 20 69 6e 73 65 63 | password.authentication.is.insec |
| 11be40 | 75 72 65 20 61 6e 64 20 64 65 70 72 65 63 61 74 65 64 20 69 6e 20 66 61 76 6f 75 72 20 6f 66 20 | ure.and.deprecated.in.favour.of. |
| 11be60 | 4d 44 35 20 48 4d 41 43 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2e 00 53 69 6e 63 65 20 62 | MD5.HMAC.authentication..Since.b |
| 11be80 | 6f 74 68 20 72 6f 75 74 65 72 73 20 64 6f 20 6e 6f 74 20 6b 6e 6f 77 20 74 68 65 69 72 20 65 66 | oth.routers.do.not.know.their.ef |
| 11bea0 | 66 65 63 74 69 76 65 20 70 75 62 6c 69 63 20 61 64 64 72 65 73 73 65 73 2c 20 77 65 20 73 65 74 | fective.public.addresses,.we.set |
| 11bec0 | 20 74 68 65 20 6c 6f 63 61 6c 2d 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 70 65 65 72 20 74 | .the.local-address.of.the.peer.t |
| 11bee0 | 6f 20 22 61 6e 79 22 2e 00 53 69 6e 63 65 20 62 72 69 64 67 65 73 20 6f 70 65 72 61 74 65 73 20 | o."any"..Since.bridges.operates. |
| 11bf00 | 61 74 20 6c 61 79 65 72 20 32 2c 20 62 6f 74 68 20 6d 61 74 63 68 65 72 73 20 66 6f 72 20 49 50 | at.layer.2,.both.matchers.for.IP |
| 11bf20 | 76 34 20 61 6e 64 20 49 50 76 36 20 61 72 65 20 73 75 70 70 6f 72 74 65 64 20 69 6e 20 62 72 69 | v4.and.IPv6.are.supported.in.bri |
| 11bf40 | 64 67 65 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 20 53 61 6d 65 | dge.firewall.configuration..Same |
| 11bf60 | 20 61 70 70 6c 69 65 73 20 66 6f 72 20 66 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 73 2e 00 53 69 | .applies.for.firewall.groups..Si |
| 11bf80 | 6e 63 65 20 62 72 69 64 67 65 73 20 6f 70 65 72 61 74 73 20 61 74 20 6c 61 79 65 72 20 32 2c 20 | nce.bridges.operats.at.layer.2,. |
| 11bfa0 | 62 6f 74 68 20 6d 61 74 63 68 65 72 73 20 66 6f 72 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 | both.matchers.for.IPv4.and.IPv6. |
| 11bfc0 | 61 72 65 20 73 75 70 70 6f 72 74 65 64 20 69 6e 20 62 72 69 64 67 65 20 66 69 72 65 77 61 6c 6c | are.supported.in.bridge.firewall |
| 11bfe0 | 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 20 53 61 6d 65 20 61 70 70 6c 69 65 73 20 74 6f 20 | .configuration..Same.applies.to. |
| 11c000 | 66 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 73 2e 00 53 69 6e 63 65 20 69 74 27 73 20 61 20 48 51 | firewall.groups..Since.it's.a.HQ |
| 11c020 | 20 61 6e 64 20 62 72 61 6e 63 68 20 6f 66 66 69 63 65 73 20 73 65 74 75 70 2c 20 77 65 20 77 69 | .and.branch.offices.setup,.we.wi |
| 11c040 | 6c 6c 20 77 61 6e 74 20 61 6c 6c 20 63 6c 69 65 6e 74 73 20 74 6f 20 68 61 76 65 20 66 69 78 65 | ll.want.all.clients.to.have.fixe |
| 11c060 | 64 20 61 64 64 72 65 73 73 65 73 20 61 6e 64 20 77 65 20 77 69 6c 6c 20 72 6f 75 74 65 20 74 72 | d.addresses.and.we.will.route.tr |
| 11c080 | 61 66 66 69 63 20 74 6f 20 73 70 65 63 69 66 69 63 20 73 75 62 6e 65 74 73 20 74 68 72 6f 75 67 | affic.to.specific.subnets.throug |
| 11c0a0 | 68 20 74 68 65 6d 2e 20 57 65 20 6e 65 65 64 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 6f | h.them..We.need.configuration.fo |
| 11c0c0 | 72 20 65 61 63 68 20 63 6c 69 65 6e 74 20 74 6f 20 61 63 68 69 65 76 65 20 74 68 69 73 2e 00 53 | r.each.client.to.achieve.this..S |
| 11c0e0 | 69 6e 63 65 20 69 74 27 73 20 61 20 48 51 20 77 69 74 68 20 62 72 61 6e 63 68 20 6f 66 66 69 63 | ince.it's.a.HQ.with.branch.offic |
| 11c100 | 65 73 20 73 65 74 75 70 2c 20 77 65 20 77 69 6c 6c 20 77 61 6e 74 20 61 6c 6c 20 63 6c 69 65 6e | es.setup,.we.will.want.all.clien |
| 11c120 | 74 73 20 74 6f 20 68 61 76 65 20 66 69 78 65 64 20 61 64 64 72 65 73 73 65 73 20 61 6e 64 20 77 | ts.to.have.fixed.addresses.and.w |
| 11c140 | 65 20 77 69 6c 6c 20 72 6f 75 74 65 20 74 72 61 66 66 69 63 20 74 6f 20 73 70 65 63 69 66 69 63 | e.will.route.traffic.to.specific |
| 11c160 | 20 73 75 62 6e 65 74 73 20 74 68 72 6f 75 67 68 20 74 68 65 6d 2e 20 57 65 20 6e 65 65 64 20 63 | .subnets.through.them..We.need.c |
| 11c180 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 6f 72 20 65 61 63 68 20 63 6c 69 65 6e 74 20 74 6f 20 | onfiguration.for.each.client.to. |
| 11c1a0 | 61 63 68 69 65 76 65 20 74 68 69 73 2e 00 53 69 6e 63 65 20 74 68 65 20 52 41 44 49 55 53 20 73 | achieve.this..Since.the.RADIUS.s |
| 11c1c0 | 65 72 76 65 72 20 77 6f 75 6c 64 20 62 65 20 61 20 73 69 6e 67 6c 65 20 70 6f 69 6e 74 20 6f 66 | erver.would.be.a.single.point.of |
| 11c1e0 | 20 66 61 69 6c 75 72 65 2c 20 6d 75 6c 74 69 70 6c 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 | .failure,.multiple.RADIUS.server |
| 11c200 | 73 20 63 61 6e 20 62 65 20 73 65 74 75 70 20 61 6e 64 20 77 69 6c 6c 20 62 65 20 75 73 65 64 20 | s.can.be.setup.and.will.be.used. |
| 11c220 | 73 75 62 73 65 71 75 65 6e 74 69 61 6c 6c 79 2e 00 53 69 6e 63 65 20 74 68 65 20 52 41 44 49 55 | subsequentially..Since.the.RADIU |
| 11c240 | 53 20 73 65 72 76 65 72 20 77 6f 75 6c 64 20 62 65 20 61 20 73 69 6e 67 6c 65 20 70 6f 69 6e 74 | S.server.would.be.a.single.point |
| 11c260 | 20 6f 66 20 66 61 69 6c 75 72 65 2c 20 6d 75 6c 74 69 70 6c 65 20 52 41 44 49 55 53 20 73 65 72 | .of.failure,.multiple.RADIUS.ser |
| 11c280 | 76 65 72 73 20 63 61 6e 20 62 65 20 73 65 74 75 70 20 61 6e 64 20 77 69 6c 6c 20 62 65 20 75 73 | vers.can.be.setup.and.will.be.us |
| 11c2a0 | 65 64 20 73 75 62 73 65 71 75 65 6e 74 69 61 6c 6c 79 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 3a | ed.subsequentially..For.example: |
| 11c2c0 | 00 53 69 6e 63 65 20 74 68 65 20 6d 44 4e 53 20 70 72 6f 74 6f 63 6f 6c 20 73 65 6e 64 73 20 74 | .Since.the.mDNS.protocol.sends.t |
| 11c2e0 | 68 65 20 3a 61 62 62 72 3a 60 41 41 28 41 75 74 68 6f 72 69 74 61 74 69 76 65 20 41 6e 73 77 65 | he.:abbr:`AA(Authoritative.Answe |
| 11c300 | 72 29 60 20 72 65 63 6f 72 64 73 20 69 6e 20 74 68 65 20 70 61 63 6b 65 74 20 69 74 73 65 6c 66 | r)`.records.in.the.packet.itself |
| 11c320 | 2c 20 74 68 65 20 72 65 70 65 61 74 65 72 20 64 6f 65 73 20 6e 6f 74 20 6e 65 65 64 20 74 6f 20 | ,.the.repeater.does.not.need.to. |
| 11c340 | 66 6f 72 67 65 20 74 68 65 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 2e 20 49 6e 73 74 65 61 | forge.the.source.address..Instea |
| 11c360 | 64 2c 20 74 68 65 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 69 73 20 6f 66 20 74 68 65 20 | d,.the.source.address.is.of.the. |
| 11c380 | 69 6e 74 65 72 66 61 63 65 20 74 68 61 74 20 72 65 70 65 61 74 73 20 74 68 65 20 70 61 63 6b 65 | interface.that.repeats.the.packe |
| 11c3a0 | 74 2e 00 53 69 6e 63 65 20 74 68 65 20 6d 44 4e 53 20 70 72 6f 74 6f 63 6f 6c 20 73 65 6e 64 73 | t..Since.the.mDNS.protocol.sends |
| 11c3c0 | 20 74 68 65 20 41 41 20 72 65 63 6f 72 64 73 20 69 6e 20 74 68 65 20 70 61 63 6b 65 74 20 69 74 | .the.AA.records.in.the.packet.it |
| 11c3e0 | 73 65 6c 66 2c 20 74 68 65 20 72 65 70 65 61 74 65 72 20 64 6f 65 73 20 6e 6f 74 20 6e 65 65 64 | self,.the.repeater.does.not.need |
| 11c400 | 20 74 6f 20 66 6f 72 67 65 20 74 68 65 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 2e 20 49 6e | .to.forge.the.source.address..In |
| 11c420 | 73 74 65 61 64 2c 20 74 68 65 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 69 73 20 6f 66 20 | stead,.the.source.address.is.of. |
| 11c440 | 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 74 68 61 74 20 72 65 70 65 61 74 73 20 74 68 65 20 70 | the.interface.that.repeats.the.p |
| 11c460 | 61 63 6b 65 74 2e 00 53 69 6e 63 65 20 77 65 20 61 72 65 20 61 6e 61 6c 79 7a 69 6e 67 20 61 74 | acket..Since.we.are.analyzing.at |
| 11c480 | 74 61 63 6b 73 20 74 6f 20 61 6e 64 20 66 72 6f 6d 20 6f 75 72 20 69 6e 74 65 72 6e 61 6c 20 6e | tacks.to.and.from.our.internal.n |
| 11c4a0 | 65 74 77 6f 72 6b 2c 20 74 77 6f 20 74 79 70 65 73 20 6f 66 20 61 74 74 61 63 6b 73 20 63 61 6e | etwork,.two.types.of.attacks.can |
| 11c4c0 | 20 62 65 20 69 64 65 6e 74 69 66 69 65 64 2c 20 61 6e 64 20 64 69 66 66 65 72 65 6e 74 20 61 63 | .be.identified,.and.different.ac |
| 11c4e0 | 74 69 6f 6e 73 20 61 72 65 20 6e 65 65 64 65 64 3a 00 53 69 6e 63 65 20 77 65 20 61 72 65 20 61 | tions.are.needed:.Since.we.are.a |
| 11c500 | 6e 61 6c 79 7a 69 6e 67 20 61 74 74 61 63 6b 73 20 74 6f 20 61 6e 64 20 66 72 6f 6d 20 6f 75 72 | nalyzing.attacks.to.and.from.our |
| 11c520 | 20 69 6e 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 2c 20 74 77 6f 20 74 79 70 65 73 20 6f 66 20 | .internal.network,.two.types.of. |
| 11c540 | 61 74 74 61 63 6b 73 20 63 61 6e 20 62 65 20 69 64 65 6e 74 69 66 69 65 64 2c 20 61 6e 64 20 64 | attacks.can.be.identified,.and.d |
| 11c560 | 69 66 66 65 72 65 6e 74 73 20 61 63 74 69 6f 6e 73 20 61 72 65 20 6e 65 65 64 65 64 3a 00 53 69 | ifferents.actions.are.needed:.Si |
| 11c580 | 6e 67 6c 65 20 56 58 4c 41 4e 20 64 65 76 69 63 65 20 28 53 56 44 29 00 53 69 6e 67 6c 65 20 65 | ngle.VXLAN.device.(SVD).Single.e |
| 11c5a0 | 78 74 65 72 6e 61 6c 20 61 64 64 72 65 73 73 00 53 69 74 65 20 74 6f 20 53 69 74 65 20 56 50 4e | xternal.address.Site.to.Site.VPN |
| 11c5c0 | 00 53 69 74 65 2d 74 6f 2d 53 69 74 65 00 53 69 74 65 2d 74 6f 2d 73 69 74 65 20 6d 6f 64 65 20 | .Site-to-Site.Site-to-site.mode. |
| 11c5e0 | 70 72 6f 76 69 64 65 73 20 61 20 77 61 79 20 74 6f 20 61 64 64 20 72 65 6d 6f 74 65 20 70 65 65 | provides.a.way.to.add.remote.pee |
| 11c600 | 72 73 2c 20 77 68 69 63 68 20 63 6f 75 6c 64 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 74 6f | rs,.which.could.be.configured.to |
| 11c620 | 20 65 78 63 68 61 6e 67 65 20 65 6e 63 72 79 70 74 65 64 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 | .exchange.encrypted.information. |
| 11c640 | 62 65 74 77 65 65 6e 20 74 68 65 6d 20 61 6e 64 20 56 79 4f 53 20 69 74 73 65 6c 66 20 6f 72 20 | between.them.and.VyOS.itself.or. |
| 11c660 | 63 6f 6e 6e 65 63 74 65 64 2f 72 6f 75 74 65 64 20 6e 65 74 77 6f 72 6b 73 2e 00 53 69 74 65 2d | connected/routed.networks..Site- |
| 11c680 | 74 6f 2d 73 69 74 65 20 6d 6f 64 65 20 73 75 70 70 6f 72 74 73 20 78 2e 35 30 39 20 62 75 74 20 | to-site.mode.supports.x.509.but. |
| 11c6a0 | 64 6f 65 73 6e 27 74 20 72 65 71 75 69 72 65 20 69 74 20 61 6e 64 20 63 61 6e 20 61 6c 73 6f 20 | doesn't.require.it.and.can.also. |
| 11c6c0 | 77 6f 72 6b 20 77 69 74 68 20 73 74 61 74 69 63 20 6b 65 79 73 2c 20 77 68 69 63 68 20 69 73 20 | work.with.static.keys,.which.is. |
| 11c6e0 | 73 69 6d 70 6c 65 72 20 69 6e 20 6d 61 6e 79 20 63 61 73 65 73 2e 20 49 6e 20 74 68 69 73 20 65 | simpler.in.many.cases..In.this.e |
| 11c700 | 78 61 6d 70 6c 65 2c 20 77 65 27 6c 6c 20 63 6f 6e 66 69 67 75 72 65 20 61 20 73 69 6d 70 6c 65 | xample,.we'll.configure.a.simple |
| 11c720 | 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 4f 70 65 6e 56 50 4e 20 74 75 6e 6e 65 6c 20 75 73 69 | .site-to-site.OpenVPN.tunnel.usi |
| 11c740 | 6e 67 20 61 20 32 30 34 38 2d 62 69 74 20 70 72 65 2d 73 68 61 72 65 64 20 6b 65 79 2e 00 53 69 | ng.a.2048-bit.pre-shared.key..Si |
| 11c760 | 7a 65 20 6f 66 20 74 68 65 20 52 53 41 20 6b 65 79 2e 00 53 6c 61 76 65 20 73 65 6c 65 63 74 69 | ze.of.the.RSA.key..Slave.selecti |
| 11c780 | 6f 6e 20 66 6f 72 20 6f 75 74 67 6f 69 6e 67 20 74 72 61 66 66 69 63 20 69 73 20 64 6f 6e 65 20 | on.for.outgoing.traffic.is.done. |
| 11c7a0 | 61 63 63 6f 72 64 69 6e 67 20 74 6f 20 74 68 65 20 74 72 61 6e 73 6d 69 74 20 68 61 73 68 20 70 | according.to.the.transmit.hash.p |
| 11c7c0 | 6f 6c 69 63 79 2c 20 77 68 69 63 68 20 6d 61 79 20 62 65 20 63 68 61 6e 67 65 64 20 66 72 6f 6d | olicy,.which.may.be.changed.from |
| 11c7e0 | 20 74 68 65 20 64 65 66 61 75 6c 74 20 73 69 6d 70 6c 65 20 58 4f 52 20 70 6f 6c 69 63 79 20 76 | .the.default.simple.XOR.policy.v |
| 11c800 | 69 61 20 74 68 65 20 3a 63 66 67 63 6d 64 3a 60 68 61 73 68 2d 70 6f 6c 69 63 79 60 20 6f 70 74 | ia.the.:cfgcmd:`hash-policy`.opt |
| 11c820 | 69 6f 6e 2c 20 64 6f 63 75 6d 65 6e 74 65 64 20 62 65 6c 6f 77 2e 00 53 6f 20 69 6e 20 6f 75 72 | ion,.documented.below..So.in.our |
| 11c840 | 20 66 69 72 65 77 61 6c 6c 20 70 6f 6c 69 63 79 2c 20 77 65 20 77 61 6e 74 20 74 6f 20 61 6c 6c | .firewall.policy,.we.want.to.all |
| 11c860 | 6f 77 20 74 72 61 66 66 69 63 20 63 6f 6d 69 6e 67 20 69 6e 20 6f 6e 20 74 68 65 20 6f 75 74 73 | ow.traffic.coming.in.on.the.outs |
| 11c880 | 69 64 65 20 69 6e 74 65 72 66 61 63 65 2c 20 64 65 73 74 69 6e 65 64 20 66 6f 72 20 54 43 50 20 | ide.interface,.destined.for.TCP. |
| 11c8a0 | 70 6f 72 74 20 38 30 20 61 6e 64 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 31 39 | port.80.and.the.IP.address.of.19 |
| 11c8c0 | 32 2e 31 36 38 2e 30 2e 31 30 30 2e 00 53 6f 20 69 6e 20 6f 75 72 20 66 69 72 65 77 61 6c 6c 20 | 2.168.0.100..So.in.our.firewall. |
| 11c8e0 | 72 75 6c 65 73 65 74 2c 20 77 65 20 77 61 6e 74 20 74 6f 20 61 6c 6c 6f 77 20 74 72 61 66 66 69 | ruleset,.we.want.to.allow.traffi |
| 11c900 | 63 20 77 68 69 63 68 20 70 72 65 76 69 6f 75 73 6c 79 20 6d 61 74 63 68 65 64 20 61 20 64 65 73 | c.which.previously.matched.a.des |
| 11c920 | 74 69 6e 61 74 69 6f 6e 20 6e 61 74 20 72 75 6c 65 2e 20 49 6e 20 6f 72 64 65 72 20 74 6f 20 61 | tination.nat.rule..In.order.to.a |
| 11c940 | 76 6f 69 64 20 63 72 65 61 74 69 6e 67 20 6d 61 6e 79 20 72 75 6c 65 73 2c 20 6f 6e 65 20 66 6f | void.creating.many.rules,.one.fo |
| 11c960 | 72 20 65 61 63 68 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 6e 61 74 20 72 75 6c 65 2c 20 77 65 20 | r.each.destination.nat.rule,.we. |
| 11c980 | 63 61 6e 20 61 63 63 65 70 74 20 61 6c 6c 20 2a 2a 27 64 6e 61 74 27 2a 2a 20 63 6f 6e 6e 65 63 | can.accept.all.**'dnat'**.connec |
| 11c9a0 | 74 69 6f 6e 73 20 77 69 74 68 20 6f 6e 65 20 73 69 6d 70 6c 65 20 72 75 6c 65 2c 20 75 73 69 6e | tions.with.one.simple.rule,.usin |
| 11c9c0 | 67 20 60 60 63 6f 6e 6e 65 63 74 69 6f 6e 2d 73 74 61 74 75 73 60 60 20 6d 61 74 63 68 65 72 3a | g.``connection-status``.matcher: |
| 11c9e0 | 00 53 6f 2c 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6e 65 65 64 | .So,.firewall.configuration.need |
| 11ca00 | 65 64 20 66 6f 72 20 74 68 69 73 20 73 65 74 75 70 3a 00 53 6f 6c 61 72 57 69 6e 64 73 00 53 6f | ed.for.this.setup:.SolarWinds.So |
| 11ca20 | 6d 65 20 49 53 50 73 20 62 79 20 64 65 66 61 75 6c 74 20 6f 6e 6c 79 20 64 65 6c 65 67 61 74 65 | me.ISPs.by.default.only.delegate |
| 11ca40 | 20 61 20 2f 36 34 20 70 72 65 66 69 78 2e 20 54 6f 20 72 65 71 75 65 73 74 20 66 6f 72 20 61 20 | .a./64.prefix..To.request.for.a. |
| 11ca60 | 73 70 65 63 69 66 69 63 20 70 72 65 66 69 78 20 73 69 7a 65 20 75 73 65 20 74 68 69 73 20 6f 70 | specific.prefix.size.use.this.op |
| 11ca80 | 74 69 6f 6e 20 74 6f 20 72 65 71 75 65 73 74 20 66 6f 72 20 61 20 62 69 67 67 65 72 20 64 65 6c | tion.to.request.for.a.bigger.del |
| 11caa0 | 65 67 61 74 69 6f 6e 20 66 6f 72 20 74 68 69 73 20 70 64 20 60 3c 69 64 3e 60 2e 20 54 68 69 73 | egation.for.this.pd.`<id>`..This |
| 11cac0 | 20 76 61 6c 75 65 20 69 73 20 69 6e 20 74 68 65 20 72 61 6e 67 65 20 66 72 6f 6d 20 33 32 20 2d | .value.is.in.the.range.from.32.- |
| 11cae0 | 20 36 34 20 73 6f 20 79 6f 75 20 63 6f 75 6c 64 20 72 65 71 75 65 73 74 20 75 70 20 74 6f 20 61 | .64.so.you.could.request.up.to.a |
| 11cb00 | 20 2f 33 32 20 70 72 65 66 69 78 20 28 69 66 20 79 6f 75 72 20 49 53 50 20 61 6c 6c 6f 77 73 20 | ./32.prefix.(if.your.ISP.allows. |
| 11cb20 | 74 68 69 73 29 20 64 6f 77 6e 20 74 6f 20 61 20 2f 36 34 20 64 65 6c 65 67 61 74 69 6f 6e 2e 00 | this).down.to.a./64.delegation.. |
| 11cb40 | 53 6f 6d 65 20 49 54 20 65 6e 76 69 72 6f 6e 6d 65 6e 74 73 20 72 65 71 75 69 72 65 20 74 68 65 | Some.IT.environments.require.the |
| 11cb60 | 20 75 73 65 20 6f 66 20 61 20 70 72 6f 78 79 20 74 6f 20 63 6f 6e 6e 65 63 74 20 74 6f 20 74 68 | .use.of.a.proxy.to.connect.to.th |
| 11cb80 | 65 20 49 6e 74 65 72 6e 65 74 2e 20 57 69 74 68 6f 75 74 20 74 68 69 73 20 63 6f 6e 66 69 67 75 | e.Internet..Without.this.configu |
| 11cba0 | 72 61 74 69 6f 6e 20 56 79 4f 53 20 75 70 64 61 74 65 73 20 63 6f 75 6c 64 20 6e 6f 74 20 62 65 | ration.VyOS.updates.could.not.be |
| 11cbc0 | 20 69 6e 73 74 61 6c 6c 65 64 20 64 69 72 65 63 74 6c 79 20 62 79 20 75 73 69 6e 67 20 74 68 65 | .installed.directly.by.using.the |
| 11cbe0 | 20 3a 6f 70 63 6d 64 3a 60 61 64 64 20 73 79 73 74 65 6d 20 69 6d 61 67 65 60 20 63 6f 6d 6d 61 | .:opcmd:`add.system.image`.comma |
| 11cc00 | 6e 64 20 28 3a 72 65 66 3a 60 75 70 64 61 74 65 5f 76 79 6f 73 60 29 2e 00 53 6f 6d 65 20 52 41 | nd.(:ref:`update_vyos`)..Some.RA |
| 11cc20 | 44 49 55 53 20 73 65 76 65 72 73 20 75 73 65 20 61 6e 20 61 63 63 65 73 73 20 63 6f 6e 74 72 6f | DIUS.severs.use.an.access.contro |
| 11cc40 | 6c 20 6c 69 73 74 20 77 68 69 63 68 20 61 6c 6c 6f 77 73 20 6f 72 20 64 65 6e 69 65 73 20 71 75 | l.list.which.allows.or.denies.qu |
| 11cc60 | 65 72 69 65 73 2c 20 6d 61 6b 65 20 73 75 72 65 20 74 6f 20 61 64 64 20 79 6f 75 72 20 56 79 4f | eries,.make.sure.to.add.your.VyO |
| 11cc80 | 53 20 72 6f 75 74 65 72 20 74 6f 20 74 68 65 20 61 6c 6c 6f 77 65 64 20 63 6c 69 65 6e 74 20 6c | S.router.to.the.allowed.client.l |
| 11cca0 | 69 73 74 2e 00 53 6f 6d 65 20 52 41 44 49 55 53 5f 20 73 65 76 65 72 73 20 75 73 65 20 61 6e 20 | ist..Some.RADIUS_.severs.use.an. |
| 11ccc0 | 61 63 63 65 73 73 20 63 6f 6e 74 72 6f 6c 20 6c 69 73 74 20 77 68 69 63 68 20 61 6c 6c 6f 77 73 | access.control.list.which.allows |
| 11cce0 | 20 6f 72 20 64 65 6e 69 65 73 20 71 75 65 72 69 65 73 2c 20 6d 61 6b 65 20 73 75 72 65 20 74 6f | .or.denies.queries,.make.sure.to |
| 11cd00 | 20 61 64 64 20 79 6f 75 72 20 56 79 4f 53 20 72 6f 75 74 65 72 20 74 6f 20 74 68 65 20 61 6c 6c | .add.your.VyOS.router.to.the.all |
| 11cd20 | 6f 77 65 64 20 63 6c 69 65 6e 74 20 6c 69 73 74 2e 00 53 6f 6d 65 20 61 70 70 6c 69 63 61 74 69 | owed.client.list..Some.applicati |
| 11cd40 | 6f 6e 20 73 65 72 76 69 63 65 20 70 72 6f 76 69 64 65 72 73 20 28 41 53 50 73 29 20 6f 70 65 72 | on.service.providers.(ASPs).oper |
| 11cd60 | 61 74 65 20 61 20 56 50 4e 20 67 61 74 65 77 61 79 20 74 6f 20 70 72 6f 76 69 64 65 20 61 63 63 | ate.a.VPN.gateway.to.provide.acc |
| 11cd80 | 65 73 73 20 74 6f 20 74 68 65 69 72 20 69 6e 74 65 72 6e 61 6c 20 72 65 73 6f 75 72 63 65 73 2c | ess.to.their.internal.resources, |
| 11cda0 | 20 61 6e 64 20 72 65 71 75 69 72 65 20 74 68 61 74 20 61 20 63 6f 6e 6e 65 63 74 69 6e 67 20 6f | .and.require.that.a.connecting.o |
| 11cdc0 | 72 67 61 6e 69 73 61 74 69 6f 6e 20 74 72 61 6e 73 6c 61 74 65 20 61 6c 6c 20 74 72 61 66 66 69 | rganisation.translate.all.traffi |
| 11cde0 | 63 20 74 6f 20 74 68 65 20 73 65 72 76 69 63 65 20 70 72 6f 76 69 64 65 72 20 6e 65 74 77 6f 72 | c.to.the.service.provider.networ |
| 11ce00 | 6b 20 74 6f 20 61 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 70 72 6f 76 69 64 65 64 20 62 | k.to.a.source.address.provided.b |
| 11ce20 | 79 20 74 68 65 20 41 53 50 2e 00 53 6f 6d 65 20 63 6f 6e 74 61 69 6e 65 72 20 72 65 67 69 73 74 | y.the.ASP..Some.container.regist |
| 11ce40 | 72 69 65 73 20 72 65 71 75 69 72 65 20 63 72 65 64 65 6e 74 69 61 6c 73 20 74 6f 20 62 65 20 75 | ries.require.credentials.to.be.u |
| 11ce60 | 73 65 64 2e 00 53 6f 6d 65 20 66 69 72 65 77 61 6c 6c 20 73 65 74 74 69 6e 67 73 20 61 72 65 20 | sed..Some.firewall.settings.are. |
| 11ce80 | 67 6c 6f 62 61 6c 20 61 6e 64 20 68 61 76 65 20 61 6e 20 61 66 66 65 63 74 20 6f 6e 20 74 68 65 | global.and.have.an.affect.on.the |
| 11cea0 | 20 77 68 6f 6c 65 20 73 79 73 74 65 6d 2e 00 53 6f 6d 65 20 66 69 72 65 77 61 6c 6c 20 73 65 74 | .whole.system..Some.firewall.set |
| 11cec0 | 74 69 6e 67 73 20 61 72 65 20 67 6c 6f 62 61 6c 20 61 6e 64 20 68 61 76 65 20 61 6e 20 61 66 66 | tings.are.global.and.have.an.aff |
| 11cee0 | 65 63 74 20 6f 6e 20 74 68 65 20 77 68 6f 6c 65 20 73 79 73 74 65 6d 2e 20 49 6e 20 74 68 69 73 | ect.on.the.whole.system..In.this |
| 11cf00 | 20 73 65 63 74 69 6f 6e 20 74 68 65 72 65 27 73 20 75 73 65 66 75 6c 20 69 6e 66 6f 72 6d 61 74 | .section.there's.useful.informat |
| 11cf20 | 69 6f 6e 20 61 62 6f 75 74 20 74 68 65 73 65 20 67 6c 6f 62 61 6c 2d 6f 70 74 69 6f 6e 73 20 74 | ion.about.these.global-options.t |
| 11cf40 | 68 61 74 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 75 73 69 6e 67 20 76 79 6f 73 | hat.can.be.configured.using.vyos |
| 11cf60 | 20 63 6c 69 2e 00 53 6f 6d 65 20 70 6f 6c 69 63 69 65 73 20 61 6c 72 65 61 64 79 20 69 6e 63 6c | .cli..Some.policies.already.incl |
| 11cf80 | 75 64 65 20 6f 74 68 65 72 20 65 6d 62 65 64 64 65 64 20 70 6f 6c 69 63 69 65 73 20 69 6e 73 69 | ude.other.embedded.policies.insi |
| 11cfa0 | 64 65 2e 20 54 68 61 74 20 69 73 20 74 68 65 20 63 61 73 65 20 6f 66 20 53 68 61 70 65 72 5f 3a | de..That.is.the.case.of.Shaper_: |
| 11cfc0 | 20 65 61 63 68 20 6f 66 20 69 74 73 20 63 6c 61 73 73 65 73 20 75 73 65 20 66 61 69 72 2d 71 75 | .each.of.its.classes.use.fair-qu |
| 11cfe0 | 65 75 65 20 75 6e 6c 65 73 73 20 79 6f 75 20 63 68 61 6e 67 65 20 69 74 2e 00 53 6f 6d 65 20 70 | eue.unless.you.change.it..Some.p |
| 11d000 | 6f 6c 69 63 69 65 73 20 63 61 6e 20 62 65 20 63 6f 6d 62 69 6e 65 64 2c 20 79 6f 75 20 77 69 6c | olicies.can.be.combined,.you.wil |
| 11d020 | 6c 20 62 65 20 61 62 6c 65 20 74 6f 20 65 6d 62 65 64 5f 20 61 20 64 69 66 66 65 72 65 6e 74 20 | l.be.able.to.embed_.a.different. |
| 11d040 | 70 6f 6c 69 63 79 20 74 68 61 74 20 77 69 6c 6c 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 61 | policy.that.will.be.applied.to.a |
| 11d060 | 20 63 6c 61 73 73 20 6f 66 20 74 68 65 20 6d 61 69 6e 20 70 6f 6c 69 63 79 2e 00 53 6f 6d 65 20 | .class.of.the.main.policy..Some. |
| 11d080 | 70 6f 73 73 69 62 6c 65 20 65 78 61 6d 70 6c 65 73 20 61 72 65 3a 00 53 6f 6d 65 20 70 72 6f 78 | possible.examples.are:.Some.prox |
| 11d0a0 | 79 73 20 72 65 71 75 69 72 65 2f 73 75 70 70 6f 72 74 20 74 68 65 20 22 62 61 73 69 63 22 20 48 | ys.require/support.the."basic".H |
| 11d0c0 | 54 54 50 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 73 63 68 65 6d 65 20 61 73 20 70 65 72 | TTP.authentication.scheme.as.per |
| 11d0e0 | 20 3a 72 66 63 3a 60 37 36 31 37 60 2c 20 74 68 75 73 20 61 20 70 61 73 73 77 6f 72 64 20 63 61 | .:rfc:`7617`,.thus.a.password.ca |
| 11d100 | 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 2e 00 53 6f 6d 65 20 70 72 6f 78 79 73 20 72 65 71 | n.be.configured..Some.proxys.req |
| 11d120 | 75 69 72 65 2f 73 75 70 70 6f 72 74 20 74 68 65 20 22 62 61 73 69 63 22 20 48 54 54 50 20 61 75 | uire/support.the."basic".HTTP.au |
| 11d140 | 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 73 63 68 65 6d 65 20 61 73 20 70 65 72 20 3a 72 66 63 3a | thentication.scheme.as.per.:rfc: |
| 11d160 | 60 37 36 31 37 60 2c 20 74 68 75 73 20 61 20 75 73 65 72 6e 61 6d 65 20 63 61 6e 20 62 65 20 63 | `7617`,.thus.a.username.can.be.c |
| 11d180 | 6f 6e 66 69 67 75 72 65 64 2e 00 53 6f 6d 65 20 72 65 63 65 6e 74 20 49 53 50 73 20 72 65 71 75 | onfigured..Some.recent.ISPs.requ |
| 11d1a0 | 69 72 65 20 79 6f 75 20 74 6f 20 62 75 69 6c 64 20 74 68 65 20 50 50 50 6f 45 20 63 6f 6e 6e 65 | ire.you.to.build.the.PPPoE.conne |
| 11d1c0 | 63 74 69 6f 6e 20 74 68 72 6f 75 67 68 20 61 20 56 4c 41 4e 20 69 6e 74 65 72 66 61 63 65 2e 20 | ction.through.a.VLAN.interface.. |
| 11d1e0 | 4f 6e 65 20 6f 66 20 74 68 6f 73 65 20 49 53 50 73 20 69 73 20 65 2e 67 2e 20 44 65 75 74 73 63 | One.of.those.ISPs.is.e.g..Deutsc |
| 11d200 | 68 65 20 54 65 6c 65 6b 6f 6d 20 69 6e 20 47 65 72 6d 61 6e 79 2e 20 56 79 4f 53 20 63 61 6e 20 | he.Telekom.in.Germany..VyOS.can. |
| 11d220 | 65 61 73 69 6c 79 20 63 72 65 61 74 65 20 61 20 50 50 50 6f 45 20 73 65 73 73 69 6f 6e 20 74 68 | easily.create.a.PPPoE.session.th |
| 11d240 | 72 6f 75 67 68 20 61 6e 20 65 6e 63 61 70 73 75 6c 61 74 65 64 20 56 4c 41 4e 20 69 6e 74 65 72 | rough.an.encapsulated.VLAN.inter |
| 11d260 | 66 61 63 65 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f | face..The.following.configuratio |
| 11d280 | 6e 20 77 69 6c 6c 20 72 75 6e 20 79 6f 75 72 20 50 50 50 6f 45 20 63 6f 6e 6e 65 63 74 69 6f 6e | n.will.run.your.PPPoE.connection |
| 11d2a0 | 20 74 68 72 6f 75 67 68 20 56 4c 41 4e 37 20 77 68 69 63 68 20 69 73 20 74 68 65 20 64 65 66 61 | .through.VLAN7.which.is.the.defa |
| 11d2c0 | 75 6c 74 20 56 4c 41 4e 20 66 6f 72 20 44 65 75 74 73 63 68 65 20 54 65 6c 65 6b 6f 6d 3a 00 53 | ult.VLAN.for.Deutsche.Telekom:.S |
| 11d2e0 | 6f 6d 65 20 73 65 72 76 69 63 65 73 20 64 6f 6e 27 74 20 77 6f 72 6b 20 63 6f 72 72 65 63 74 6c | ome.services.don't.work.correctl |
| 11d300 | 79 20 77 68 65 6e 20 62 65 69 6e 67 20 68 61 6e 64 6c 65 64 20 76 69 61 20 61 20 77 65 62 20 70 | y.when.being.handled.via.a.web.p |
| 11d320 | 72 6f 78 79 2e 20 53 6f 20 73 6f 6d 65 74 69 6d 65 73 20 69 74 20 69 73 20 75 73 65 66 75 6c 20 | roxy..So.sometimes.it.is.useful. |
| 11d340 | 74 6f 20 62 79 70 61 73 73 20 61 20 74 72 61 6e 73 70 61 72 65 6e 74 20 70 72 6f 78 79 3a 00 53 | to.bypass.a.transparent.proxy:.S |
| 11d360 | 6f 6d 65 20 75 73 65 72 73 20 74 65 6e 64 20 74 6f 20 63 6f 6e 6e 65 63 74 20 74 68 65 69 72 20 | ome.users.tend.to.connect.their. |
| 11d380 | 6d 6f 62 69 6c 65 20 64 65 76 69 63 65 73 20 75 73 69 6e 67 20 57 69 72 65 47 75 61 72 64 20 74 | mobile.devices.using.WireGuard.t |
| 11d3a0 | 6f 20 74 68 65 69 72 20 56 79 4f 53 20 72 6f 75 74 65 72 2e 20 54 6f 20 65 61 73 65 20 64 65 70 | o.their.VyOS.router..To.ease.dep |
| 11d3c0 | 6c 6f 79 6d 65 6e 74 20 6f 6e 65 20 63 61 6e 20 67 65 6e 65 72 61 74 65 20 61 20 22 70 65 72 20 | loyment.one.can.generate.a."per. |
| 11d3e0 | 6d 6f 62 69 6c 65 22 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 72 6f 6d 20 74 68 65 20 56 | mobile".configuration.from.the.V |
| 11d400 | 79 4f 53 20 43 4c 49 2e 00 53 6f 6d 65 74 69 6d 65 73 20 6f 70 74 69 6f 6e 20 6c 69 6e 65 73 20 | yOS.CLI..Sometimes.option.lines. |
| 11d420 | 69 6e 20 74 68 65 20 67 65 6e 65 72 61 74 65 64 20 4f 70 65 6e 56 50 4e 20 63 6f 6e 66 69 67 75 | in.the.generated.OpenVPN.configu |
| 11d440 | 72 61 74 69 6f 6e 20 72 65 71 75 69 72 65 20 71 75 6f 74 65 73 2e 20 54 68 69 73 20 69 73 20 64 | ration.require.quotes..This.is.d |
| 11d460 | 6f 6e 65 20 74 68 72 6f 75 67 68 20 61 20 68 61 63 6b 20 6f 6e 20 6f 75 72 20 63 6f 6e 66 69 67 | one.through.a.hack.on.our.config |
| 11d480 | 20 67 65 6e 65 72 61 74 6f 72 2e 20 59 6f 75 20 63 61 6e 20 70 61 73 73 20 71 75 6f 74 65 73 20 | .generator..You.can.pass.quotes. |
| 11d4a0 | 75 73 69 6e 67 20 74 68 65 20 60 60 26 71 75 6f 74 3b 60 60 20 73 74 61 74 65 6d 65 6e 74 2e 00 | using.the.``"``.statement.. |
| 11d4c0 | 53 6f 72 74 20 74 68 65 20 6f 75 74 70 75 74 20 62 79 20 74 68 65 20 73 70 65 63 69 66 69 65 64 | Sort.the.output.by.the.specified |
| 11d4e0 | 20 6b 65 79 2e 20 50 6f 73 73 69 62 6c 65 20 6b 65 79 73 3a 20 65 78 70 69 72 65 73 2c 20 69 61 | .key..Possible.keys:.expires,.ia |
| 11d500 | 69 64 5f 64 75 69 64 2c 20 69 70 2c 20 6c 61 73 74 5f 63 6f 6d 6d 2c 20 70 6f 6f 6c 2c 20 72 65 | id_duid,.ip,.last_comm,.pool,.re |
| 11d520 | 6d 61 69 6e 69 6e 67 2c 20 73 74 61 74 65 2c 20 74 79 70 65 20 28 64 65 66 61 75 6c 74 20 3d 20 | maining,.state,.type.(default.=. |
| 11d540 | 69 70 29 00 53 6f 72 74 20 74 68 65 20 6f 75 74 70 75 74 20 62 79 20 74 68 65 20 73 70 65 63 69 | ip).Sort.the.output.by.the.speci |
| 11d560 | 66 69 65 64 20 6b 65 79 2e 20 50 6f 73 73 69 62 6c 65 20 6b 65 79 73 3a 20 69 70 2c 20 68 61 72 | fied.key..Possible.keys:.ip,.har |
| 11d580 | 64 77 61 72 65 5f 61 64 64 72 65 73 73 2c 20 73 74 61 74 65 2c 20 73 74 61 72 74 2c 20 65 6e 64 | dware_address,.state,.start,.end |
| 11d5a0 | 2c 20 72 65 6d 61 69 6e 69 6e 67 2c 20 70 6f 6f 6c 2c 20 68 6f 73 74 6e 61 6d 65 20 28 64 65 66 | ,.remaining,.pool,.hostname.(def |
| 11d5c0 | 61 75 6c 74 20 3d 20 69 70 29 00 53 6f 75 72 63 65 20 41 64 64 72 65 73 73 00 53 6f 75 72 63 65 | ault.=.ip).Source.Address.Source |
| 11d5e0 | 20 49 50 20 61 64 64 72 65 73 73 20 75 73 65 64 20 66 6f 72 20 56 58 4c 41 4e 20 75 6e 64 65 72 | .IP.address.used.for.VXLAN.under |
| 11d600 | 6c 61 79 2e 20 54 68 69 73 20 69 73 20 6d 61 6e 64 61 74 6f 72 79 20 77 68 65 6e 20 75 73 69 6e | lay..This.is.mandatory.when.usin |
| 11d620 | 67 20 56 58 4c 41 4e 20 76 69 61 20 4c 32 56 50 4e 2f 45 56 50 4e 2e 00 53 6f 75 72 63 65 20 49 | g.VXLAN.via.L2VPN/EVPN..Source.I |
| 11d640 | 50 76 34 20 61 64 64 72 65 73 73 20 75 73 65 64 20 69 6e 20 61 6c 6c 20 52 41 44 49 55 53 20 73 | Pv4.address.used.in.all.RADIUS.s |
| 11d660 | 65 72 76 65 72 20 71 75 65 69 72 65 73 2e 00 53 6f 75 72 63 65 20 4e 41 54 20 72 75 6c 65 73 00 | erver.queires..Source.NAT.rules. |
| 11d680 | 53 6f 75 72 63 65 20 50 72 65 66 69 78 00 53 6f 75 72 63 65 20 61 6c 6c 20 63 6f 6e 6e 65 63 74 | Source.Prefix.Source.all.connect |
| 11d6a0 | 69 6f 6e 73 20 74 6f 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 73 20 66 72 6f 6d 20 | ions.to.the.RADIUS.servers.from. |
| 11d6c0 | 67 69 76 65 6e 20 56 52 46 20 60 3c 6e 61 6d 65 3e 60 2e 00 53 6f 75 72 63 65 20 61 6c 6c 20 63 | given.VRF.`<name>`..Source.all.c |
| 11d6e0 | 6f 6e 6e 65 63 74 69 6f 6e 73 20 74 6f 20 74 68 65 20 54 41 43 41 43 53 20 73 65 72 76 65 72 73 | onnections.to.the.TACACS.servers |
| 11d700 | 20 66 72 6f 6d 20 67 69 76 65 6e 20 56 52 46 20 60 3c 6e 61 6d 65 3e 60 2e 00 53 6f 75 72 63 65 | .from.given.VRF.`<name>`..Source |
| 11d720 | 20 70 72 6f 74 6f 63 6f 6c 20 74 6f 20 6d 61 74 63 68 2e 00 53 6f 75 72 63 65 20 74 75 6e 6e 65 | .protocol.to.match..Source.tunne |
| 11d740 | 6c 20 66 72 6f 6d 20 64 75 6d 6d 79 20 69 6e 74 65 72 66 61 63 65 00 53 6f 75 72 63 65 20 74 75 | l.from.dummy.interface.Source.tu |
| 11d760 | 6e 6e 65 6c 20 66 72 6f 6d 20 6c 6f 6f 70 62 61 63 6b 73 00 53 70 61 6e 6e 69 6e 67 20 54 72 65 | nnel.from.loopbacks.Spanning.Tre |
| 11d780 | 65 20 50 72 6f 74 6f 63 6f 6c 20 66 6f 72 77 61 72 64 69 6e 67 20 60 3c 64 65 6c 61 79 3e 60 20 | e.Protocol.forwarding.`<delay>`. |
| 11d7a0 | 69 6e 20 73 65 63 6f 6e 64 73 20 28 64 65 66 61 75 6c 74 3a 20 31 35 29 2e 00 53 70 61 6e 6e 69 | in.seconds.(default:.15)..Spanni |
| 11d7c0 | 6e 67 20 54 72 65 65 20 50 72 6f 74 6f 63 6f 6c 20 68 65 6c 6c 6f 20 61 64 76 65 72 74 69 73 65 | ng.Tree.Protocol.hello.advertise |
| 11d7e0 | 6d 65 6e 74 20 60 3c 69 6e 74 65 72 76 61 6c 3e 60 20 69 6e 20 73 65 63 6f 6e 64 73 20 28 64 65 | ment.`<interval>`.in.seconds.(de |
| 11d800 | 66 61 75 6c 74 3a 20 32 29 2e 00 53 70 61 6e 6e 69 6e 67 20 54 72 65 65 20 50 72 6f 74 6f 63 6f | fault:.2)..Spanning.Tree.Protoco |
| 11d820 | 6c 20 69 73 20 6e 6f 74 20 65 6e 61 62 6c 65 64 20 62 79 20 64 65 66 61 75 6c 74 20 69 6e 20 56 | l.is.not.enabled.by.default.in.V |
| 11d840 | 79 4f 53 2e 20 3a 72 65 66 3a 60 73 74 70 60 20 63 61 6e 20 62 65 20 65 61 73 69 6c 79 20 65 6e | yOS..:ref:`stp`.can.be.easily.en |
| 11d860 | 61 62 6c 65 64 20 69 66 20 6e 65 65 64 65 64 2e 00 53 70 61 74 69 61 6c 20 4d 75 6c 74 69 70 6c | abled.if.needed..Spatial.Multipl |
| 11d880 | 65 78 69 6e 67 20 50 6f 77 65 72 20 53 61 76 65 20 28 53 4d 50 53 29 20 73 65 74 74 69 6e 67 73 | exing.Power.Save.(SMPS).settings |
| 11d8a0 | 00 53 70 65 63 66 79 69 6e 67 20 6e 68 73 20 6d 61 6b 65 73 20 61 6c 6c 20 6d 75 6c 74 69 63 61 | .Specfying.nhs.makes.all.multica |
| 11d8c0 | 73 74 20 70 61 63 6b 65 74 73 20 74 6f 20 62 65 20 72 65 70 65 61 74 65 64 20 74 6f 20 65 61 63 | st.packets.to.be.repeated.to.eac |
| 11d8e0 | 68 20 73 74 61 74 69 63 61 6c 6c 79 20 63 6f 6e 66 69 67 75 72 65 64 20 6e 65 78 74 20 68 6f 70 | h.statically.configured.next.hop |
| 11d900 | 2e 00 53 70 65 63 69 66 69 65 73 20 3a 61 62 62 72 3a 60 4d 50 50 45 20 28 4d 69 63 72 6f 73 6f | ..Specifies.:abbr:`MPPE.(Microso |
| 11d920 | 66 74 20 50 6f 69 6e 74 2d 74 6f 2d 50 6f 69 6e 74 20 45 6e 63 72 79 70 74 69 6f 6e 29 60 20 6e | ft.Point-to-Point.Encryption)`.n |
| 11d940 | 65 67 6f 74 69 61 74 69 6f 6e 20 70 72 65 66 65 72 65 6e 63 65 2e 00 53 70 65 63 69 66 69 65 73 | egotiation.preference..Specifies |
| 11d960 | 20 3a 61 62 62 72 3a 60 4d 50 50 45 20 28 4d 69 63 72 6f 73 6f 66 74 20 50 6f 69 6e 74 2d 74 6f | .:abbr:`MPPE.(Microsoft.Point-to |
| 11d980 | 2d 50 6f 69 6e 74 20 45 6e 63 72 79 70 74 69 6f 6e 29 60 20 6e 65 67 6f 74 69 6f 61 74 69 6f 6e | -Point.Encryption)`.negotioation |
| 11d9a0 | 20 70 72 65 66 65 72 65 6e 63 65 2e 00 53 70 65 63 69 66 69 65 73 20 49 50 20 61 64 64 72 65 73 | .preference..Specifies.IP.addres |
| 11d9c0 | 73 20 66 6f 72 20 44 79 6e 61 6d 69 63 20 41 75 74 68 6f 72 69 7a 61 74 69 6f 6e 20 45 78 74 65 | s.for.Dynamic.Authorization.Exte |
| 11d9e0 | 6e 73 69 6f 6e 20 73 65 72 76 65 72 20 28 44 4d 2f 43 6f 41 29 00 53 70 65 63 69 66 69 65 73 20 | nsion.server.(DM/CoA).Specifies. |
| 11da00 | 49 50 76 34 20 6e 65 67 6f 74 69 61 74 69 6f 6e 20 70 72 65 66 65 72 65 6e 63 65 2e 00 53 70 65 | IPv4.negotiation.preference..Spe |
| 11da20 | 63 69 66 69 65 73 20 49 50 76 36 20 6e 65 67 6f 74 69 61 74 69 6f 6e 20 70 72 65 66 65 72 65 6e | cifies.IPv6.negotiation.preferen |
| 11da40 | 63 65 2e 00 53 70 65 63 69 66 69 65 73 20 53 65 72 76 69 63 65 2d 4e 61 6d 65 20 74 6f 20 72 65 | ce..Specifies.Service-Name.to.re |
| 11da60 | 73 70 6f 6e 64 2e 20 49 66 20 61 62 73 65 6e 74 20 61 6e 79 20 53 65 72 76 69 63 65 2d 4e 61 6d | spond..If.absent.any.Service-Nam |
| 11da80 | 65 20 69 73 20 61 63 63 65 70 74 61 62 6c 65 20 61 6e 64 20 63 6c 69 65 6e 74 e2 80 99 73 20 53 | e.is.acceptable.and.client...s.S |
| 11daa0 | 65 72 76 69 63 65 2d 4e 61 6d 65 20 77 69 6c 6c 20 62 65 20 73 65 6e 74 20 62 61 63 6b 2e 20 41 | ervice-Name.will.be.sent.back..A |
| 11dac0 | 6c 73 6f 20 70 6f 73 73 69 62 6c 65 20 73 65 74 20 6d 75 6c 74 69 70 6c 65 20 73 65 72 76 69 63 | lso.possible.set.multiple.servic |
| 11dae0 | 65 2d 6e 61 6d 65 73 3a 20 60 73 6e 31 2c 73 6e 32 2c 73 6e 33 60 00 53 70 65 63 69 66 69 65 73 | e-names:.`sn1,sn2,sn3`.Specifies |
| 11db00 | 20 61 64 64 72 65 73 73 20 74 6f 20 62 65 20 75 73 65 64 20 61 73 20 73 65 72 76 65 72 20 69 70 | .address.to.be.used.as.server.ip |
| 11db20 | 20 61 64 64 72 65 73 73 20 69 66 20 72 61 64 69 75 73 20 63 61 6e 20 61 73 73 69 67 6e 20 6f 6e | .address.if.radius.can.assign.on |
| 11db40 | 6c 79 20 63 6c 69 65 6e 74 20 61 64 64 72 65 73 73 2e 20 49 6e 20 73 75 63 68 20 63 61 73 65 20 | ly.client.address..In.such.case. |
| 11db60 | 69 66 20 63 6c 69 65 6e 74 20 61 64 64 72 65 73 73 20 69 73 20 6d 61 74 63 68 65 64 20 6e 65 74 | if.client.address.is.matched.net |
| 11db80 | 77 6f 72 6b 20 61 6e 64 20 6d 61 73 6b 20 74 68 65 6e 20 73 70 65 63 69 66 69 65 64 20 61 64 64 | work.and.mask.then.specified.add |
| 11dba0 | 72 65 73 73 20 61 6e 64 20 6d 61 73 6b 20 77 69 6c 6c 20 62 65 20 75 73 65 64 2e 20 59 6f 75 20 | ress.and.mask.will.be.used..You. |
| 11dbc0 | 63 61 6e 20 73 70 65 63 69 66 79 20 6d 75 6c 74 69 70 6c 65 20 73 75 63 68 20 6f 70 74 69 6f 6e | can.specify.multiple.such.option |
| 11dbe0 | 73 2e 00 53 70 65 63 69 66 69 65 73 20 61 6e 20 6f 70 74 69 6f 6e 61 6c 20 72 6f 75 74 65 2d 6d | s..Specifies.an.optional.route-m |
| 11dc00 | 61 70 20 74 6f 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 72 6f 75 74 65 73 20 69 6d 70 6f 72 | ap.to.be.applied.to.routes.impor |
| 11dc20 | 74 65 64 20 6f 72 20 65 78 70 6f 72 74 65 64 20 62 65 74 77 65 65 6e 20 74 68 65 20 63 75 72 72 | ted.or.exported.between.the.curr |
| 11dc40 | 65 6e 74 20 75 6e 69 63 61 73 74 20 56 52 46 20 61 6e 64 20 56 50 4e 2e 00 53 70 65 63 69 66 69 | ent.unicast.VRF.and.VPN..Specifi |
| 11dc60 | 65 73 20 61 6e 20 75 70 73 74 72 65 61 6d 20 6e 65 74 77 6f 72 6b 20 60 3c 69 6e 74 65 72 66 61 | es.an.upstream.network.`<interfa |
| 11dc80 | 63 65 3e 60 20 66 72 6f 6d 20 77 68 69 63 68 20 72 65 70 6c 69 65 73 20 66 72 6f 6d 20 60 3c 73 | ce>`.from.which.replies.from.`<s |
| 11dca0 | 65 72 76 65 72 3e 60 20 61 6e 64 20 6f 74 68 65 72 20 72 65 6c 61 79 20 61 67 65 6e 74 73 20 77 | erver>`.and.other.relay.agents.w |
| 11dcc0 | 69 6c 6c 20 62 65 20 61 63 63 65 70 74 65 64 2e 00 53 70 65 63 69 66 69 65 73 20 66 69 78 65 64 | ill.be.accepted..Specifies.fixed |
| 11dce0 | 20 6f 72 20 72 61 6e 64 6f 6d 20 69 6e 74 65 72 66 61 63 65 20 69 64 65 6e 74 69 66 69 65 72 20 | .or.random.interface.identifier. |
| 11dd00 | 66 6f 72 20 49 50 76 36 2e 20 42 79 20 64 65 66 61 75 6c 74 20 69 73 20 66 69 78 65 64 2e 00 53 | for.IPv6..By.default.is.fixed..S |
| 11dd20 | 70 65 63 69 66 69 65 73 20 68 6f 77 20 6c 6f 6e 67 20 73 71 75 69 64 20 61 73 73 75 6d 65 73 20 | pecifies.how.long.squid.assumes. |
| 11dd40 | 61 6e 20 65 78 74 65 72 6e 61 6c 6c 79 20 76 61 6c 69 64 61 74 65 64 20 75 73 65 72 6e 61 6d 65 | an.externally.validated.username |
| 11dd60 | 3a 70 61 73 73 77 6f 72 64 20 70 61 69 72 20 69 73 20 76 61 6c 69 64 20 66 6f 72 20 2d 20 69 6e | :password.pair.is.valid.for.-.in |
| 11dd80 | 20 6f 74 68 65 72 20 77 6f 72 64 73 20 68 6f 77 20 6f 66 74 65 6e 20 74 68 65 20 68 65 6c 70 65 | .other.words.how.often.the.helpe |
| 11dda0 | 72 20 70 72 6f 67 72 61 6d 20 69 73 20 63 61 6c 6c 65 64 20 66 6f 72 20 74 68 61 74 20 75 73 65 | r.program.is.called.for.that.use |
| 11ddc0 | 72 2e 20 53 65 74 20 74 68 69 73 20 6c 6f 77 20 74 6f 20 66 6f 72 63 65 20 72 65 76 61 6c 69 64 | r..Set.this.low.to.force.revalid |
| 11dde0 | 61 74 69 6f 6e 20 77 69 74 68 20 73 68 6f 72 74 20 6c 69 76 65 64 20 70 61 73 73 77 6f 72 64 73 | ation.with.short.lived.passwords |
| 11de00 | 2e 00 53 70 65 63 69 66 69 65 73 20 69 66 20 61 20 66 69 78 65 64 20 6f 72 20 72 61 6e 64 6f 6d | ..Specifies.if.a.fixed.or.random |
| 11de20 | 20 69 6e 74 65 72 66 61 63 65 20 69 64 65 6e 74 69 66 69 65 72 20 69 73 20 75 73 65 64 20 66 6f | .interface.identifier.is.used.fo |
| 11de40 | 72 20 49 50 76 36 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 66 69 78 65 64 2e 00 53 70 | r.IPv6..The.default.is.fixed..Sp |
| 11de60 | 65 63 69 66 69 65 73 20 69 66 20 75 6e 6b 6e 6f 77 6e 20 73 6f 75 72 63 65 20 6c 69 6e 6b 20 6c | ecifies.if.unknown.source.link.l |
| 11de80 | 61 79 65 72 20 61 64 64 72 65 73 73 65 73 20 61 6e 64 20 49 50 20 61 64 64 72 65 73 73 65 73 20 | ayer.addresses.and.IP.addresses. |
| 11dea0 | 61 72 65 20 65 6e 74 65 72 65 64 20 69 6e 74 6f 20 74 68 65 20 56 58 4c 41 4e 20 64 65 76 69 63 | are.entered.into.the.VXLAN.devic |
| 11dec0 | 65 20 66 6f 72 77 61 72 64 69 6e 67 20 64 61 74 61 62 61 73 65 2e 00 53 70 65 63 69 66 69 65 73 | e.forwarding.database..Specifies |
| 11dee0 | 20 6e 75 6d 62 65 72 20 6f 66 20 69 6e 74 65 72 66 61 63 65 73 20 74 6f 20 63 61 63 68 65 2e 20 | .number.of.interfaces.to.cache.. |
| 11df00 | 54 68 69 73 20 70 72 65 76 65 6e 74 73 20 69 6e 74 65 72 66 61 63 65 73 20 66 72 6f 6d 20 62 65 | This.prevents.interfaces.from.be |
| 11df20 | 69 6e 67 20 72 65 6d 6f 76 65 64 20 6f 6e 63 65 20 74 68 65 20 63 6f 72 72 65 73 70 6f 6e 64 69 | ing.removed.once.the.correspondi |
| 11df40 | 6e 67 20 73 65 73 73 69 6f 6e 20 69 73 20 64 65 73 74 72 6f 79 65 64 2e 20 49 6e 73 74 65 61 64 | ng.session.is.destroyed..Instead |
| 11df60 | 2c 20 69 6e 74 65 72 66 61 63 65 73 20 61 72 65 20 63 61 63 68 65 64 20 66 6f 72 20 6c 61 74 65 | ,.interfaces.are.cached.for.late |
| 11df80 | 72 20 75 73 65 20 69 6e 20 6e 65 77 20 73 65 73 73 69 6f 6e 73 2e 20 54 68 69 73 20 73 68 6f 75 | r.use.in.new.sessions..This.shou |
| 11dfa0 | 6c 64 20 72 65 64 75 63 65 20 74 68 65 20 6b 65 72 6e 65 6c 2d 6c 65 76 65 6c 20 69 6e 74 65 72 | ld.reduce.the.kernel-level.inter |
| 11dfc0 | 66 61 63 65 20 63 72 65 61 74 69 6f 6e 2f 64 65 6c 65 74 69 6f 6e 20 72 61 74 65 2e 20 44 65 66 | face.creation/deletion.rate..Def |
| 11dfe0 | 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 2a 2a 30 2a 2a 2e 00 53 70 65 63 69 66 69 65 73 20 6e | ault.value.is.**0**..Specifies.n |
| 11e000 | 75 6d 62 65 72 20 6f 66 20 69 6e 74 65 72 66 61 63 65 73 20 74 6f 20 6b 65 65 70 20 69 6e 20 63 | umber.of.interfaces.to.keep.in.c |
| 11e020 | 61 63 68 65 2e 20 49 74 20 6d 65 61 6e 73 20 74 68 61 74 20 64 6f 6e e2 80 99 74 20 64 65 73 74 | ache..It.means.that.don...t.dest |
| 11e040 | 72 6f 79 20 69 6e 74 65 72 66 61 63 65 20 61 66 74 65 72 20 63 6f 72 72 65 73 70 6f 6e 64 69 6e | roy.interface.after.correspondin |
| 11e060 | 67 20 73 65 73 73 69 6f 6e 20 69 73 20 64 65 73 74 72 6f 79 65 64 2c 20 69 6e 73 74 65 61 64 20 | g.session.is.destroyed,.instead. |
| 11e080 | 70 6c 61 63 65 20 69 74 20 74 6f 20 63 61 63 68 65 20 61 6e 64 20 75 73 65 20 69 74 20 6c 61 74 | place.it.to.cache.and.use.it.lat |
| 11e0a0 | 65 72 20 66 6f 72 20 6e 65 77 20 73 65 73 73 69 6f 6e 73 20 72 65 70 65 61 74 65 64 6c 79 2e 20 | er.for.new.sessions.repeatedly.. |
| 11e0c0 | 54 68 69 73 20 73 68 6f 75 6c 64 20 72 65 64 75 63 65 20 6b 65 72 6e 65 6c 2d 6c 65 76 65 6c 20 | This.should.reduce.kernel-level. |
| 11e0e0 | 69 6e 74 65 72 66 61 63 65 20 63 72 65 61 74 69 6f 6e 2f 64 65 6c 65 74 69 6f 6e 20 72 61 74 65 | interface.creation/deletion.rate |
| 11e100 | 20 6c 61 63 6b 2e 20 44 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 2a 2a 30 2a 2a 2e 00 53 | .lack..Default.value.is.**0**..S |
| 11e120 | 70 65 63 69 66 69 65 73 20 6f 6e 65 20 6f 66 20 74 68 65 20 62 6f 6e 64 69 6e 67 20 70 6f 6c 69 | pecifies.one.of.the.bonding.poli |
| 11e140 | 63 69 65 73 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 38 30 32 2e 33 61 64 2e 20 50 6f | cies..The.default.is.802.3ad..Po |
| 11e160 | 73 73 69 62 6c 65 20 76 61 6c 75 65 73 20 61 72 65 3a 00 53 70 65 63 69 66 69 65 73 20 70 65 65 | ssible.values.are:.Specifies.pee |
| 11e180 | 72 20 69 6e 74 65 72 66 61 63 65 20 69 64 65 6e 74 69 66 69 65 72 20 66 6f 72 20 49 50 76 36 2e | r.interface.identifier.for.IPv6. |
| 11e1a0 | 20 42 79 20 64 65 66 61 75 6c 74 20 69 73 20 66 69 78 65 64 2e 00 53 70 65 63 69 66 69 65 73 20 | .By.default.is.fixed..Specifies. |
| 11e1c0 | 70 72 6f 78 79 20 73 65 72 76 69 63 65 20 6c 69 73 74 65 6e 69 6e 67 20 61 64 64 72 65 73 73 2e | proxy.service.listening.address. |
| 11e1e0 | 20 54 68 65 20 6c 69 73 74 65 6e 20 61 64 64 72 65 73 73 20 69 73 20 74 68 65 20 49 50 20 61 64 | .The.listen.address.is.the.IP.ad |
| 11e200 | 64 72 65 73 73 20 6f 6e 20 77 68 69 63 68 20 74 68 65 20 77 65 62 20 70 72 6f 78 79 20 73 65 72 | dress.on.which.the.web.proxy.ser |
| 11e220 | 76 69 63 65 20 6c 69 73 74 65 6e 73 20 66 6f 72 20 63 6c 69 65 6e 74 20 72 65 71 75 65 73 74 73 | vice.listens.for.client.requests |
| 11e240 | 2e 00 53 70 65 63 69 66 69 65 73 20 72 65 6c 61 79 20 61 67 65 6e 74 20 49 50 20 61 64 64 72 65 | ..Specifies.relay.agent.IP.addre |
| 11e260 | 00 53 70 65 63 69 66 69 65 73 20 73 69 6e 67 6c 65 20 60 3c 67 61 74 65 77 61 79 3e 60 20 49 50 | .Specifies.single.`<gateway>`.IP |
| 11e280 | 20 61 64 64 72 65 73 73 20 74 6f 20 62 65 20 75 73 65 64 20 61 73 20 6c 6f 63 61 6c 20 61 64 64 | .address.to.be.used.as.local.add |
| 11e2a0 | 72 65 73 73 20 6f 66 20 50 50 50 20 69 6e 74 65 72 66 61 63 65 73 2e 00 53 70 65 63 69 66 69 65 | ress.of.PPP.interfaces..Specifie |
| 11e2c0 | 73 20 74 68 61 74 20 74 68 65 20 3a 61 62 62 72 3a 60 4e 42 4d 41 20 28 4e 6f 6e 2d 62 72 6f 61 | s.that.the.:abbr:`NBMA.(Non-broa |
| 11e2e0 | 64 63 61 73 74 20 6d 75 6c 74 69 70 6c 65 2d 61 63 63 65 73 73 20 6e 65 74 77 6f 72 6b 29 60 20 | dcast.multiple-access.network)`. |
| 11e300 | 61 64 64 72 65 73 73 65 73 20 6f 66 20 74 68 65 20 6e 65 78 74 20 68 6f 70 20 73 65 72 76 65 72 | addresses.of.the.next.hop.server |
| 11e320 | 73 20 61 72 65 20 64 65 66 69 6e 65 64 20 69 6e 20 74 68 65 20 64 6f 6d 61 69 6e 20 6e 61 6d 65 | s.are.defined.in.the.domain.name |
| 11e340 | 20 6e 62 6d 61 2d 64 6f 6d 61 69 6e 2d 6e 61 6d 65 2e 20 46 6f 72 20 65 61 63 68 20 41 20 72 65 | .nbma-domain-name..For.each.A.re |
| 11e360 | 63 6f 72 64 20 6f 70 65 6e 6e 68 72 70 20 63 72 65 61 74 65 73 20 61 20 64 79 6e 61 6d 69 63 20 | cord.opennhrp.creates.a.dynamic. |
| 11e380 | 4e 48 53 20 65 6e 74 72 79 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 65 20 41 52 50 20 6c 69 6e | NHS.entry..Specifies.the.ARP.lin |
| 11e3a0 | 6b 20 6d 6f 6e 69 74 6f 72 69 6e 67 20 60 3c 74 69 6d 65 3e 60 20 69 6e 20 73 65 63 6f 6e 64 73 | k.monitoring.`<time>`.in.seconds |
| 11e3c0 | 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 | ..Specifies.the.IP.addresses.to. |
| 11e3e0 | 75 73 65 20 61 73 20 41 52 50 20 6d 6f 6e 69 74 6f 72 69 6e 67 20 70 65 65 72 73 20 77 68 65 6e | use.as.ARP.monitoring.peers.when |
| 11e400 | 20 3a 63 66 67 63 6d 64 3a 60 61 72 70 2d 6d 6f 6e 69 74 6f 72 20 69 6e 74 65 72 76 61 6c 60 20 | .:cfgcmd:`arp-monitor.interval`. |
| 11e420 | 6f 70 74 69 6f 6e 20 69 73 20 3e 20 30 2e 20 54 68 65 73 65 20 61 72 65 20 74 68 65 20 74 61 72 | option.is.>.0..These.are.the.tar |
| 11e440 | 67 65 74 73 20 6f 66 20 74 68 65 20 41 52 50 20 72 65 71 75 65 73 74 20 73 65 6e 74 20 74 6f 20 | gets.of.the.ARP.request.sent.to. |
| 11e460 | 64 65 74 65 72 6d 69 6e 65 20 74 68 65 20 68 65 61 6c 74 68 20 6f 66 20 74 68 65 20 6c 69 6e 6b | determine.the.health.of.the.link |
| 11e480 | 20 74 6f 20 74 68 65 20 74 61 72 67 65 74 73 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 65 20 61 | .to.the.targets..Specifies.the.a |
| 11e4a0 | 76 61 69 6c 61 62 6c 65 20 3a 61 62 62 72 3a 60 4d 41 43 20 28 4d 65 73 73 61 67 65 20 41 75 74 | vailable.:abbr:`MAC.(Message.Aut |
| 11e4c0 | 68 65 6e 74 69 63 61 74 69 6f 6e 20 43 6f 64 65 29 60 20 61 6c 67 6f 72 69 74 68 6d 73 2e 20 54 | hentication.Code)`.algorithms..T |
| 11e4e0 | 68 65 20 4d 41 43 20 61 6c 67 6f 72 69 74 68 6d 20 69 73 20 75 73 65 64 20 69 6e 20 70 72 6f 74 | he.MAC.algorithm.is.used.in.prot |
| 11e500 | 6f 63 6f 6c 20 76 65 72 73 69 6f 6e 20 32 20 66 6f 72 20 64 61 74 61 20 69 6e 74 65 67 72 69 74 | ocol.version.2.for.data.integrit |
| 11e520 | 79 20 70 72 6f 74 65 63 74 69 6f 6e 2e 20 4d 75 6c 74 69 70 6c 65 20 61 6c 67 6f 72 69 74 68 6d | y.protection..Multiple.algorithm |
| 11e540 | 73 20 63 61 6e 20 62 65 20 70 72 6f 76 69 64 65 64 20 62 79 20 75 73 69 6e 67 20 6d 75 6c 74 69 | s.can.be.provided.by.using.multi |
| 11e560 | 70 6c 65 20 63 6f 6d 6d 61 6e 64 73 2c 20 64 65 66 69 6e 69 6e 67 20 6f 6e 65 20 61 6c 67 6f 72 | ple.commands,.defining.one.algor |
| 11e580 | 69 74 68 6d 20 70 65 72 20 63 6f 6d 6d 61 6e 64 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 65 20 | ithm.per.command..Specifies.the. |
| 11e5a0 | 61 76 61 69 6c 61 62 6c 65 20 3a 61 62 62 72 3a 60 4d 41 43 20 28 4d 65 73 73 61 67 65 20 41 75 | available.:abbr:`MAC.(Message.Au |
| 11e5c0 | 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 43 6f 64 65 29 60 20 61 6c 67 6f 72 69 74 68 6d 73 2e 20 | thentication.Code)`.algorithms.. |
| 11e5e0 | 54 68 65 20 4d 41 43 20 61 6c 67 6f 72 69 74 68 6d 20 69 73 20 75 73 65 64 20 69 6e 20 70 72 6f | The.MAC.algorithm.is.used.in.pro |
| 11e600 | 74 6f 63 6f 6c 20 76 65 72 73 69 6f 6e 20 32 20 66 6f 72 20 64 61 74 61 20 69 6e 74 65 67 72 69 | tocol.version.2.for.data.integri |
| 11e620 | 74 79 20 70 72 6f 74 65 63 74 69 6f 6e 2e 20 4d 75 6c 74 69 70 6c 65 20 61 6c 67 6f 72 69 74 68 | ty.protection..Multiple.algorith |
| 11e640 | 6d 73 20 63 61 6e 20 62 65 20 70 72 6f 76 69 64 65 64 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 | ms.can.be.provided..Specifies.th |
| 11e660 | 65 20 62 61 73 65 20 44 4e 20 75 6e 64 65 72 20 77 68 69 63 68 20 74 68 65 20 75 73 65 72 73 20 | e.base.DN.under.which.the.users. |
| 11e680 | 61 72 65 20 6c 6f 63 61 74 65 64 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 65 20 63 6c 69 65 6e | are.located..Specifies.the.clien |
| 11e6a0 | 74 20 63 6f 6e 6e 65 63 74 69 76 69 74 79 20 6d 6f 64 65 2e 00 53 70 65 63 69 66 69 65 73 20 74 | t.connectivity.mode..Specifies.t |
| 11e6c0 | 68 65 20 63 6c 69 65 6e 74 73 20 73 75 62 6e 65 74 20 6d 61 73 6b 20 61 73 20 70 65 72 20 52 46 | he.clients.subnet.mask.as.per.RF |
| 11e6e0 | 43 20 39 35 30 2e 20 49 66 20 75 6e 73 65 74 2c 20 73 75 62 6e 65 74 20 64 65 63 6c 61 72 61 74 | C.950..If.unset,.subnet.declarat |
| 11e700 | 69 6f 6e 20 69 73 20 75 73 65 64 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 65 20 68 6f 6c 64 69 | ion.is.used..Specifies.the.holdi |
| 11e720 | 6e 67 20 74 69 6d 65 20 66 6f 72 20 4e 48 52 50 20 52 65 67 69 73 74 72 61 74 69 6f 6e 20 52 65 | ng.time.for.NHRP.Registration.Re |
| 11e740 | 71 75 65 73 74 73 20 61 6e 64 20 52 65 73 6f 6c 75 74 69 6f 6e 20 52 65 70 6c 69 65 73 20 73 65 | quests.and.Resolution.Replies.se |
| 11e760 | 6e 74 20 66 72 6f 6d 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 20 6f 72 20 73 68 6f 72 74 63 | nt.from.this.interface.or.shortc |
| 11e780 | 75 74 2d 74 61 72 67 65 74 2e 20 54 68 65 20 68 6f 6c 64 74 69 6d 65 20 69 73 20 73 70 65 63 69 | ut-target..The.holdtime.is.speci |
| 11e7a0 | 66 69 65 64 20 69 6e 20 73 65 63 6f 6e 64 73 20 61 6e 64 20 64 65 66 61 75 6c 74 73 20 74 6f 20 | fied.in.seconds.and.defaults.to. |
| 11e7c0 | 74 77 6f 20 68 6f 75 72 73 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 65 20 69 6e 74 65 72 76 61 | two.hours..Specifies.the.interva |
| 11e7e0 | 6c 20 61 74 20 77 68 69 63 68 20 4e 65 74 66 6c 6f 77 20 64 61 74 61 20 77 69 6c 6c 20 62 65 20 | l.at.which.Netflow.data.will.be. |
| 11e800 | 73 65 6e 74 20 74 6f 20 61 20 63 6f 6c 6c 65 63 74 6f 72 2e 20 41 73 20 70 65 72 20 64 65 66 61 | sent.to.a.collector..As.per.defa |
| 11e820 | 75 6c 74 2c 20 4e 65 74 66 6c 6f 77 20 64 61 74 61 20 77 69 6c 6c 20 62 65 20 73 65 6e 74 20 65 | ult,.Netflow.data.will.be.sent.e |
| 11e840 | 76 65 72 79 20 36 30 20 73 65 63 6f 6e 64 73 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 65 20 6d | very.60.seconds..Specifies.the.m |
| 11e860 | 61 78 69 6d 75 6d 20 73 69 7a 65 20 6f 66 20 61 20 72 65 70 6c 79 20 62 6f 64 79 20 69 6e 20 4b | aximum.size.of.a.reply.body.in.K |
| 11e880 | 42 2c 20 75 73 65 64 20 74 6f 20 6c 69 6d 69 74 20 74 68 65 20 72 65 70 6c 79 20 73 69 7a 65 2e | B,.used.to.limit.the.reply.size. |
| 11e8a0 | 00 53 70 65 63 69 66 69 65 73 20 74 68 65 20 6d 69 6e 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 | .Specifies.the.minimum.number.of |
| 11e8c0 | 20 6c 69 6e 6b 73 20 74 68 61 74 20 6d 75 73 74 20 62 65 20 61 63 74 69 76 65 20 62 65 66 6f 72 | .links.that.must.be.active.befor |
| 11e8e0 | 65 20 61 73 73 65 72 74 69 6e 67 20 63 61 72 72 69 65 72 2e 20 49 74 20 69 73 20 73 69 6d 69 6c | e.asserting.carrier..It.is.simil |
| 11e900 | 61 72 20 74 6f 20 74 68 65 20 43 69 73 63 6f 20 45 74 68 65 72 43 68 61 6e 6e 65 6c 20 6d 69 6e | ar.to.the.Cisco.EtherChannel.min |
| 11e920 | 2d 6c 69 6e 6b 73 20 66 65 61 74 75 72 65 2e 20 54 68 69 73 20 61 6c 6c 6f 77 73 20 73 65 74 74 | -links.feature..This.allows.sett |
| 11e940 | 69 6e 67 20 74 68 65 20 6d 69 6e 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 6d 65 6d 62 65 72 | ing.the.minimum.number.of.member |
| 11e960 | 20 70 6f 72 74 73 20 74 68 61 74 20 6d 75 73 74 20 62 65 20 75 70 20 28 6c 69 6e 6b 2d 75 70 20 | .ports.that.must.be.up.(link-up. |
| 11e980 | 73 74 61 74 65 29 20 62 65 66 6f 72 65 20 6d 61 72 6b 69 6e 67 20 74 68 65 20 62 6f 6e 64 20 64 | state).before.marking.the.bond.d |
| 11e9a0 | 65 76 69 63 65 20 61 73 20 75 70 20 28 63 61 72 72 69 65 72 20 6f 6e 29 2e 20 54 68 69 73 20 69 | evice.as.up.(carrier.on)..This.i |
| 11e9c0 | 73 20 75 73 65 66 75 6c 20 66 6f 72 20 73 69 74 75 61 74 69 6f 6e 73 20 77 68 65 72 65 20 68 69 | s.useful.for.situations.where.hi |
| 11e9e0 | 67 68 65 72 20 6c 65 76 65 6c 20 73 65 72 76 69 63 65 73 20 73 75 63 68 20 61 73 20 63 6c 75 73 | gher.level.services.such.as.clus |
| 11ea00 | 74 65 72 69 6e 67 20 77 61 6e 74 20 74 6f 20 65 6e 73 75 72 65 20 61 20 6d 69 6e 69 6d 75 6d 20 | tering.want.to.ensure.a.minimum. |
| 11ea20 | 6e 75 6d 62 65 72 20 6f 66 20 6c 6f 77 20 62 61 6e 64 77 69 64 74 68 20 6c 69 6e 6b 73 20 61 72 | number.of.low.bandwidth.links.ar |
| 11ea40 | 65 20 61 63 74 69 76 65 20 62 65 66 6f 72 65 20 73 77 69 74 63 68 6f 76 65 72 2e 00 53 70 65 63 | e.active.before.switchover..Spec |
| 11ea60 | 69 66 69 65 73 20 74 68 65 20 6e 61 6d 65 20 6f 66 20 74 68 65 20 44 4e 20 61 74 74 72 69 62 75 | ifies.the.name.of.the.DN.attribu |
| 11ea80 | 74 65 20 74 68 61 74 20 63 6f 6e 74 61 69 6e 73 20 74 68 65 20 75 73 65 72 6e 61 6d 65 2f 6c 6f | te.that.contains.the.username/lo |
| 11eaa0 | 67 69 6e 2e 20 43 6f 6d 62 69 6e 65 64 20 77 69 74 68 20 74 68 65 20 62 61 73 65 20 44 4e 20 74 | gin..Combined.with.the.base.DN.t |
| 11eac0 | 6f 20 63 6f 6e 73 74 72 75 63 74 20 74 68 65 20 75 73 65 72 73 20 44 4e 20 77 68 65 6e 20 6e 6f | o.construct.the.users.DN.when.no |
| 11eae0 | 20 73 65 61 72 63 68 20 66 69 6c 74 65 72 20 69 73 20 73 70 65 63 69 66 69 65 64 20 28 60 66 69 | .search.filter.is.specified.(`fi |
| 11eb00 | 6c 74 65 72 2d 65 78 70 72 65 73 73 69 6f 6e 60 29 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 65 | lter-expression`)..Specifies.the |
| 11eb20 | 20 70 65 65 72 20 69 6e 74 65 72 66 61 63 65 20 69 64 65 6e 74 69 66 69 65 72 20 66 6f 72 20 49 | .peer.interface.identifier.for.I |
| 11eb40 | 50 76 36 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 66 69 78 65 64 2e 00 53 70 65 63 69 | Pv6..The.default.is.fixed..Speci |
| 11eb60 | 66 69 65 73 20 74 68 65 20 70 68 79 73 69 63 61 6c 20 60 3c 65 74 68 58 3e 60 20 45 74 68 65 72 | fies.the.physical.`<ethX>`.Ether |
| 11eb80 | 6e 65 74 20 69 6e 74 65 72 66 61 63 65 20 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 61 20 | net.interface.associated.with.a. |
| 11eba0 | 50 73 65 75 64 6f 20 45 74 68 65 72 6e 65 74 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 2e 00 53 | Pseudo.Ethernet.`<interface>`..S |
| 11ebc0 | 70 65 63 69 66 69 65 73 20 74 68 65 20 70 6f 72 74 20 60 3c 70 6f 72 74 3e 60 20 74 68 61 74 20 | pecifies.the.port.`<port>`.that. |
| 11ebe0 | 74 68 65 20 53 53 54 50 20 70 6f 72 74 20 77 69 6c 6c 20 6c 69 73 74 65 6e 20 6f 6e 20 28 64 65 | the.SSTP.port.will.listen.on.(de |
| 11ec00 | 66 61 75 6c 74 20 34 34 33 29 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 65 20 70 72 6f 74 65 63 | fault.443)..Specifies.the.protec |
| 11ec20 | 74 69 6f 6e 20 73 63 6f 70 65 20 28 61 6b 61 20 72 65 61 6c 6d 20 6e 61 6d 65 29 20 77 68 69 63 | tion.scope.(aka.realm.name).whic |
| 11ec40 | 68 20 69 73 20 74 6f 20 62 65 20 72 65 70 6f 72 74 65 64 20 74 6f 20 74 68 65 20 63 6c 69 65 6e | h.is.to.be.reported.to.the.clien |
| 11ec60 | 74 20 66 6f 72 20 74 68 65 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 73 63 68 65 6d 65 2e | t.for.the.authentication.scheme. |
| 11ec80 | 20 49 74 20 69 73 20 63 6f 6d 6d 6f 6e 6c 79 20 70 61 72 74 20 6f 66 20 74 68 65 20 74 65 78 74 | .It.is.commonly.part.of.the.text |
| 11eca0 | 20 74 68 65 20 75 73 65 72 20 77 69 6c 6c 20 73 65 65 20 77 68 65 6e 20 70 72 6f 6d 70 74 65 64 | .the.user.will.see.when.prompted |
| 11ecc0 | 20 66 6f 72 20 74 68 65 69 72 20 75 73 65 72 6e 61 6d 65 20 61 6e 64 20 70 61 73 73 77 6f 72 64 | .for.their.username.and.password |
| 11ece0 | 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 65 20 72 6f 75 74 65 20 64 69 73 74 69 6e 67 75 69 73 | ..Specifies.the.route.distinguis |
| 11ed00 | 68 65 72 20 74 6f 20 62 65 20 61 64 64 65 64 20 74 6f 20 61 20 72 6f 75 74 65 20 65 78 70 6f 72 | her.to.be.added.to.a.route.expor |
| 11ed20 | 74 65 64 20 66 72 6f 6d 20 74 68 65 20 63 75 72 72 65 6e 74 20 75 6e 69 63 61 73 74 20 56 52 46 | ted.from.the.current.unicast.VRF |
| 11ed40 | 20 74 6f 20 56 50 4e 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 65 20 72 6f 75 74 65 2d 74 61 72 | .to.VPN..Specifies.the.route-tar |
| 11ed60 | 67 65 74 20 6c 69 73 74 20 74 6f 20 62 65 20 61 74 74 61 63 68 65 64 20 74 6f 20 61 20 72 6f 75 | get.list.to.be.attached.to.a.rou |
| 11ed80 | 74 65 20 28 65 78 70 6f 72 74 29 20 6f 72 20 74 68 65 20 72 6f 75 74 65 2d 74 61 72 67 65 74 20 | te.(export).or.the.route-target. |
| 11eda0 | 6c 69 73 74 20 74 6f 20 6d 61 74 63 68 20 61 67 61 69 6e 73 74 20 28 69 6d 70 6f 72 74 29 20 77 | list.to.match.against.(import).w |
| 11edc0 | 68 65 6e 20 65 78 70 6f 72 74 69 6e 67 2f 69 6d 70 6f 72 74 69 6e 67 20 62 65 74 77 65 65 6e 20 | hen.exporting/importing.between. |
| 11ede0 | 74 68 65 20 63 75 72 72 65 6e 74 20 75 6e 69 63 61 73 74 20 56 52 46 20 61 6e 64 20 56 50 4e 2e | the.current.unicast.VRF.and.VPN. |
| 11ee00 | 54 68 65 20 52 54 4c 49 53 54 20 69 73 20 61 20 73 70 61 63 65 2d 73 65 70 61 72 61 74 65 64 20 | The.RTLIST.is.a.space-separated. |
| 11ee20 | 6c 69 73 74 20 6f 66 20 72 6f 75 74 65 2d 74 61 72 67 65 74 73 2c 20 77 68 69 63 68 20 61 72 65 | list.of.route-targets,.which.are |
| 11ee40 | 20 42 47 50 20 65 78 74 65 6e 64 65 64 20 63 6f 6d 6d 75 6e 69 74 79 20 76 61 6c 75 65 73 20 61 | .BGP.extended.community.values.a |
| 11ee60 | 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 45 78 74 65 6e 64 65 64 20 43 6f 6d 6d 75 6e 69 74 | s.described.in.Extended.Communit |
| 11ee80 | 69 65 73 20 41 74 74 72 69 62 75 74 65 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 65 20 73 69 67 | ies.Attribute..Specifies.the.sig |
| 11eea0 | 6e 61 74 75 72 65 20 61 6c 67 6f 72 69 74 68 6d 73 20 74 68 61 74 20 77 69 6c 6c 20 62 65 20 61 | nature.algorithms.that.will.be.a |
| 11eec0 | 63 63 65 70 74 65 64 20 66 6f 72 20 70 75 62 6c 69 63 20 6b 65 79 20 61 75 74 68 65 6e 74 69 63 | ccepted.for.public.key.authentic |
| 11eee0 | 61 74 69 6f 6e 00 53 70 65 63 69 66 69 65 73 20 74 68 65 20 76 65 6e 64 6f 72 20 64 69 63 74 69 | ation.Specifies.the.vendor.dicti |
| 11ef00 | 6f 6e 61 72 79 2c 20 54 68 69 73 20 64 69 63 74 69 6f 6e 61 72 79 20 6e 65 65 64 73 20 74 6f 20 | onary,.This.dictionary.needs.to. |
| 11ef20 | 62 65 20 70 72 65 73 65 6e 74 20 69 6e 20 2f 75 73 72 2f 73 68 61 72 65 2f 61 63 63 65 6c 2d 70 | be.present.in./usr/share/accel-p |
| 11ef40 | 70 70 2f 72 61 64 69 75 73 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 65 20 76 65 6e 64 6f 72 20 | pp/radius..Specifies.the.vendor. |
| 11ef60 | 64 69 63 74 69 6f 6e 61 72 79 2c 20 64 69 63 74 69 6f 6e 61 72 79 20 6e 65 65 64 73 20 74 6f 20 | dictionary,.dictionary.needs.to. |
| 11ef80 | 62 65 20 69 6e 20 2f 75 73 72 2f 73 68 61 72 65 2f 61 63 63 65 6c 2d 70 70 70 2f 72 61 64 69 75 | be.in./usr/share/accel-ppp/radiu |
| 11efa0 | 73 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 65 20 76 65 6e 64 6f 72 20 64 69 63 74 69 6f 6e 61 | s..Specifies.the.vendor.dictiona |
| 11efc0 | 72 79 2e 20 54 68 69 73 20 64 69 63 74 69 6f 6e 61 72 79 20 6e 65 65 64 73 20 74 6f 20 62 65 20 | ry..This.dictionary.needs.to.be. |
| 11efe0 | 70 72 65 73 65 6e 74 20 69 6e 20 2f 75 73 72 2f 73 68 61 72 65 2f 61 63 63 65 6c 2d 70 70 70 2f | present.in./usr/share/accel-ppp/ |
| 11f000 | 72 61 64 69 75 73 2e 00 53 70 65 63 69 66 69 65 73 20 74 69 6d 65 6f 75 74 20 69 6e 20 73 65 63 | radius..Specifies.timeout.in.sec |
| 11f020 | 6f 6e 64 73 20 74 6f 20 77 61 69 74 20 66 6f 72 20 61 6e 79 20 70 65 65 72 20 61 63 74 69 76 69 | onds.to.wait.for.any.peer.activi |
| 11f040 | 74 79 2e 20 49 66 20 74 68 69 73 20 6f 70 74 69 6f 6e 20 69 73 20 73 70 65 63 69 66 69 65 64 20 | ty..If.this.option.is.specified. |
| 11f060 | 69 74 20 74 75 72 6e 73 20 6f 6e 20 61 64 61 70 74 69 76 65 20 6c 63 70 20 65 63 68 6f 20 66 75 | it.turns.on.adaptive.lcp.echo.fu |
| 11f080 | 6e 63 74 69 6f 6e 61 6c 69 74 79 20 61 6e 64 20 22 6c 63 70 2d 65 63 68 6f 2d 66 61 69 6c 75 72 | nctionality.and."lcp-echo-failur |
| 11f0a0 | 65 22 20 69 73 20 6e 6f 74 20 75 73 65 64 2e 20 44 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 | e".is.not.used..Default.value.is |
| 11f0c0 | 20 2a 2a 30 2a 2a 2e 00 53 70 65 63 69 66 69 65 73 20 74 69 6d 65 6f 75 74 20 69 6e 20 73 65 63 | .**0**..Specifies.timeout.in.sec |
| 11f0e0 | 6f 6e 64 73 20 74 6f 20 77 61 69 74 20 66 6f 72 20 61 6e 79 20 70 65 65 72 20 61 63 74 69 76 69 | onds.to.wait.for.any.peer.activi |
| 11f100 | 74 79 2e 20 49 66 20 74 68 69 73 20 6f 70 74 69 6f 6e 20 73 70 65 63 69 66 69 65 64 20 69 74 20 | ty..If.this.option.specified.it. |
| 11f120 | 74 75 72 6e 73 20 6f 6e 20 61 64 61 70 74 69 76 65 20 6c 63 70 20 65 63 68 6f 20 66 75 6e 63 74 | turns.on.adaptive.lcp.echo.funct |
| 11f140 | 69 6f 6e 61 6c 69 74 79 20 61 6e 64 20 22 6c 63 70 2d 65 63 68 6f 2d 66 61 69 6c 75 72 65 22 20 | ionality.and."lcp-echo-failure". |
| 11f160 | 69 73 20 6e 6f 74 20 75 73 65 64 2e 00 53 70 65 63 69 66 69 65 73 20 74 69 6d 65 6f 75 74 20 69 | is.not.used..Specifies.timeout.i |
| 11f180 | 6e 20 73 65 63 6f 6e 64 73 20 74 6f 20 77 61 69 74 20 66 6f 72 20 61 6e 79 20 70 65 65 72 20 61 | n.seconds.to.wait.for.any.peer.a |
| 11f1a0 | 63 74 69 76 69 74 79 2e 20 49 66 20 74 68 69 73 20 6f 70 74 69 6f 6e 20 73 70 65 63 69 66 69 65 | ctivity..If.this.option.specifie |
| 11f1c0 | 64 20 69 74 20 74 75 72 6e 73 20 6f 6e 20 61 64 61 70 74 69 76 65 20 6c 63 70 20 65 63 68 6f 20 | d.it.turns.on.adaptive.lcp.echo. |
| 11f1e0 | 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 20 61 6e 64 20 22 6c 63 70 2d 65 63 68 6f 2d 66 61 69 6c | functionality.and."lcp-echo-fail |
| 11f200 | 75 72 65 22 20 69 73 20 6e 6f 74 20 75 73 65 64 2e 20 44 65 66 61 75 6c 74 20 76 61 6c 75 65 20 | ure".is.not.used..Default.value. |
| 11f220 | 69 73 20 2a 2a 30 2a 2a 2e 00 53 70 65 63 69 66 69 65 73 20 77 68 65 74 68 65 72 20 61 6e 20 65 | is.**0**..Specifies.whether.an.e |
| 11f240 | 78 74 65 72 6e 61 6c 20 63 6f 6e 74 72 6f 6c 20 70 6c 61 6e 65 20 28 65 2e 67 2e 20 42 47 50 20 | xternal.control.plane.(e.g..BGP. |
| 11f260 | 4c 32 56 50 4e 2f 45 56 50 4e 29 20 6f 72 20 74 68 65 20 69 6e 74 65 72 6e 61 6c 20 46 44 42 20 | L2VPN/EVPN).or.the.internal.FDB. |
| 11f280 | 73 68 6f 75 6c 64 20 62 65 20 75 73 65 64 2e 00 53 70 65 63 69 66 69 65 73 20 77 68 65 74 68 65 | should.be.used..Specifies.whethe |
| 11f2a0 | 72 20 74 68 65 20 56 58 4c 41 4e 20 64 65 76 69 63 65 20 69 73 20 63 61 70 61 62 6c 65 20 6f 66 | r.the.VXLAN.device.is.capable.of |
| 11f2c0 | 20 76 6e 69 20 66 69 6c 74 65 72 69 6e 67 2e 00 53 70 65 63 69 66 69 65 73 20 77 68 65 74 68 65 | .vni.filtering..Specifies.whethe |
| 11f2e0 | 72 20 74 68 69 73 20 4e 53 53 41 20 62 6f 72 64 65 72 20 72 6f 75 74 65 72 20 77 69 6c 6c 20 75 | r.this.NSSA.border.router.will.u |
| 11f300 | 6e 63 6f 6e 64 69 74 69 6f 6e 61 6c 6c 79 20 74 72 61 6e 73 6c 61 74 65 20 54 79 70 65 2d 37 20 | nconditionally.translate.Type-7. |
| 11f320 | 4c 53 41 73 20 69 6e 74 6f 20 54 79 70 65 2d 35 20 4c 53 41 73 2e 20 57 68 65 6e 20 72 6f 6c 65 | LSAs.into.Type-5.LSAs..When.role |
| 11f340 | 20 69 73 20 41 6c 77 61 79 73 2c 20 54 79 70 65 2d 37 20 4c 53 41 73 20 61 72 65 20 74 72 61 6e | .is.Always,.Type-7.LSAs.are.tran |
| 11f360 | 73 6c 61 74 65 64 20 69 6e 74 6f 20 54 79 70 65 2d 35 20 4c 53 41 73 20 72 65 67 61 72 64 6c 65 | slated.into.Type-5.LSAs.regardle |
| 11f380 | 73 73 20 6f 66 20 74 68 65 20 74 72 61 6e 73 6c 61 74 6f 72 20 73 74 61 74 65 20 6f 66 20 6f 74 | ss.of.the.translator.state.of.ot |
| 11f3a0 | 68 65 72 20 4e 53 53 41 20 62 6f 72 64 65 72 20 72 6f 75 74 65 72 73 2e 20 57 68 65 6e 20 72 6f | her.NSSA.border.routers..When.ro |
| 11f3c0 | 6c 65 20 69 73 20 43 61 6e 64 69 64 61 74 65 2c 20 74 68 69 73 20 72 6f 75 74 65 72 20 70 61 72 | le.is.Candidate,.this.router.par |
| 11f3e0 | 74 69 63 69 70 61 74 65 73 20 69 6e 20 74 68 65 20 74 72 61 6e 73 6c 61 74 6f 72 20 65 6c 65 63 | ticipates.in.the.translator.elec |
| 11f400 | 74 69 6f 6e 20 74 6f 20 64 65 74 65 72 6d 69 6e 65 20 69 66 20 69 74 20 77 69 6c 6c 20 70 65 72 | tion.to.determine.if.it.will.per |
| 11f420 | 66 6f 72 6d 20 74 68 65 20 74 72 61 6e 73 6c 61 74 69 6f 6e 73 20 64 75 74 69 65 73 2e 20 57 68 | form.the.translations.duties..Wh |
| 11f440 | 65 6e 20 72 6f 6c 65 20 69 73 20 4e 65 76 65 72 2c 20 74 68 69 73 20 72 6f 75 74 65 72 20 77 69 | en.role.is.Never,.this.router.wi |
| 11f460 | 6c 6c 20 6e 65 76 65 72 20 74 72 61 6e 73 6c 61 74 65 20 54 79 70 65 2d 37 20 4c 53 41 73 20 69 | ll.never.translate.Type-7.LSAs.i |
| 11f480 | 6e 74 6f 20 54 79 70 65 2d 35 20 4c 53 41 73 2e 00 53 70 65 63 69 66 69 65 73 20 77 68 69 63 68 | nto.Type-5.LSAs..Specifies.which |
| 11f4a0 | 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 61 74 74 72 69 62 75 74 65 20 63 6f 6e 74 61 69 6e | .RADIUS.server.attribute.contain |
| 11f4c0 | 73 20 74 68 65 20 72 61 74 65 20 6c 69 6d 69 74 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2e 20 54 68 | s.the.rate.limit.information..Th |
| 11f4e0 | 65 20 64 65 66 61 75 6c 74 20 61 74 74 72 69 62 75 74 65 20 69 73 20 60 46 69 6c 74 65 72 2d 49 | e.default.attribute.is.`Filter-I |
| 11f500 | 64 60 2e 00 53 70 65 63 69 66 69 65 73 20 77 68 69 63 68 20 52 41 44 49 55 53 20 73 65 72 76 65 | d`..Specifies.which.RADIUS.serve |
| 11f520 | 72 20 61 74 74 72 69 62 75 74 65 20 63 6f 6e 74 61 69 6e 73 20 74 68 65 20 72 61 74 65 20 6c 69 | r.attribute.contains.the.rate.li |
| 11f540 | 6d 69 74 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 61 74 74 | mit.information..The.default.att |
| 11f560 | 72 69 62 75 74 65 20 69 73 20 60 60 46 69 6c 74 65 72 2d 49 64 60 60 2e 00 53 70 65 63 69 66 79 | ribute.is.``Filter-Id``..Specify |
| 11f580 | 20 44 48 43 50 76 34 20 72 65 6c 61 79 20 49 50 20 61 64 64 72 65 73 73 20 74 6f 20 70 61 73 73 | .DHCPv4.relay.IP.address.to.pass |
| 11f5a0 | 20 72 65 71 75 65 73 74 73 20 74 6f 2e 20 49 66 20 73 70 65 63 69 66 69 65 64 20 67 69 61 64 64 | .requests.to..If.specified.giadd |
| 11f5c0 | 72 20 69 73 20 61 6c 73 6f 20 6e 65 65 64 65 64 2e 00 53 70 65 63 69 66 79 20 49 50 76 34 20 61 | r.is.also.needed..Specify.IPv4.a |
| 11f5e0 | 6e 64 2f 6f 72 20 49 50 76 36 20 6e 65 74 77 6f 72 6b 73 20 74 68 61 74 20 73 68 6f 75 6c 64 20 | nd/or.IPv6.networks.that.should. |
| 11f600 | 62 65 20 70 72 6f 74 65 63 74 65 64 2f 6d 6f 6e 69 74 6f 72 65 64 2e 00 53 70 65 63 69 66 79 20 | be.protected/monitored..Specify. |
| 11f620 | 49 50 76 34 20 61 6e 64 2f 6f 72 20 49 50 76 36 20 6e 65 74 77 6f 72 6b 73 20 77 68 69 63 68 20 | IPv4.and/or.IPv6.networks.which. |
| 11f640 | 61 72 65 20 67 6f 69 6e 67 20 74 6f 20 62 65 20 65 78 63 6c 75 64 65 64 2e 00 53 70 65 63 69 66 | are.going.to.be.excluded..Specif |
| 11f660 | 79 20 49 50 76 34 2f 49 50 76 36 20 6c 69 73 74 65 6e 20 61 64 64 72 65 73 73 20 6f 66 20 53 53 | y.IPv4/IPv6.listen.address.of.SS |
| 11f680 | 48 20 73 65 72 76 65 72 2e 20 4d 75 6c 74 69 70 6c 65 20 61 64 64 72 65 73 73 65 73 20 63 61 6e | H.server..Multiple.addresses.can |
| 11f6a0 | 20 62 65 20 64 65 66 69 6e 65 64 2e 00 53 70 65 63 69 66 79 20 61 20 3a 61 62 62 72 3a 60 53 49 | .be.defined..Specify.a.:abbr:`SI |
| 11f6c0 | 50 20 28 53 65 73 73 69 6f 6e 20 49 6e 69 74 69 61 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c 29 60 | P.(Session.Initiation.Protocol)` |
| 11f6e0 | 20 73 65 72 76 65 72 20 62 79 20 49 50 76 36 20 61 64 64 72 65 73 73 20 6f 66 20 46 75 6c 6c 79 | .server.by.IPv6.address.of.Fully |
| 11f700 | 20 51 75 61 6c 69 66 69 65 64 20 44 6f 6d 61 69 6e 20 4e 61 6d 65 20 66 6f 72 20 61 6c 6c 20 44 | .Qualified.Domain.Name.for.all.D |
| 11f720 | 48 43 50 76 36 20 63 6c 69 65 6e 74 73 2e 00 53 70 65 63 69 66 79 20 61 20 46 75 6c 6c 79 20 51 | HCPv6.clients..Specify.a.Fully.Q |
| 11f740 | 75 61 6c 69 66 69 65 64 20 44 6f 6d 61 69 6e 20 4e 61 6d 65 20 61 73 20 73 6f 75 72 63 65 2f 64 | ualified.Domain.Name.as.source/d |
| 11f760 | 65 73 74 69 6e 61 74 69 6f 6e 20 6d 61 74 63 68 65 72 2e 20 45 6e 73 75 72 65 20 72 6f 75 74 65 | estination.matcher..Ensure.route |
| 11f780 | 72 20 69 73 20 61 62 6c 65 20 74 6f 20 72 65 73 6f 6c 76 65 20 73 75 63 68 20 64 6e 73 20 71 75 | r.is.able.to.resolve.such.dns.qu |
| 11f7a0 | 65 72 79 2e 00 53 70 65 63 69 66 79 20 61 20 46 75 6c 6c 79 20 51 75 61 6c 69 66 69 65 64 20 44 | ery..Specify.a.Fully.Qualified.D |
| 11f7c0 | 6f 6d 61 69 6e 20 4e 61 6d 65 20 61 73 20 73 6f 75 72 63 65 2f 64 65 73 74 69 6e 61 74 69 6f 6e | omain.Name.as.source/destination |
| 11f7e0 | 20 74 6f 20 6d 61 74 63 68 2e 20 45 6e 73 75 72 65 20 74 68 61 74 20 74 68 65 20 72 6f 75 74 65 | .to.match..Ensure.that.the.route |
| 11f800 | 72 20 69 73 20 61 62 6c 65 20 74 6f 20 72 65 73 6f 6c 76 65 20 74 68 69 73 20 64 6e 73 20 71 75 | r.is.able.to.resolve.this.dns.qu |
| 11f820 | 65 72 79 2e 00 53 70 65 63 69 66 79 20 61 20 4e 49 53 20 73 65 72 76 65 72 20 61 64 64 72 65 73 | ery..Specify.a.NIS.server.addres |
| 11f840 | 73 20 66 6f 72 20 44 48 43 50 76 36 20 63 6c 69 65 6e 74 73 2e 00 53 70 65 63 69 66 79 20 61 20 | s.for.DHCPv6.clients..Specify.a. |
| 11f860 | 4e 49 53 2b 20 73 65 72 76 65 72 20 61 64 64 72 65 73 73 20 66 6f 72 20 44 48 43 50 76 36 20 63 | NIS+.server.address.for.DHCPv6.c |
| 11f880 | 6c 69 65 6e 74 73 2e 00 53 70 65 63 69 66 79 20 61 20 72 61 6e 67 65 20 6f 66 20 67 72 6f 75 70 | lients..Specify.a.range.of.group |
| 11f8a0 | 20 61 64 64 72 65 73 73 65 73 20 76 69 61 20 61 20 70 72 65 66 69 78 2d 6c 69 73 74 20 74 68 61 | .addresses.via.a.prefix-list.tha |
| 11f8c0 | 74 20 66 6f 72 63 65 73 20 50 49 4d 20 74 6f 20 6e 65 76 65 72 20 64 6f 20 3a 61 62 62 72 3a 60 | t.forces.PIM.to.never.do.:abbr:` |
| 11f8e0 | 53 53 4d 20 28 53 6f 75 72 63 65 2d 53 70 65 63 69 66 69 63 20 4d 75 6c 74 69 63 61 73 74 29 60 | SSM.(Source-Specific.Multicast)` |
| 11f900 | 20 6f 76 65 72 2e 00 53 70 65 63 69 66 79 20 61 62 73 6f 6c 75 74 65 20 60 3c 70 61 74 68 3e 60 | .over..Specify.absolute.`<path>` |
| 11f920 | 20 74 6f 20 73 63 72 69 70 74 20 77 68 69 63 68 20 77 69 6c 6c 20 62 65 20 72 75 6e 20 77 68 65 | .to.script.which.will.be.run.whe |
| 11f940 | 6e 20 60 3c 74 61 73 6b 3e 60 20 69 73 20 65 78 65 63 75 74 65 64 2e 00 53 70 65 63 69 66 79 20 | n.`<task>`.is.executed..Specify. |
| 11f960 | 61 6c 6c 6f 77 65 64 20 3a 61 62 62 72 3a 60 4b 45 58 20 28 4b 65 79 20 45 78 63 68 61 6e 67 65 | allowed.:abbr:`KEX.(Key.Exchange |
| 11f980 | 29 60 20 61 6c 67 6f 72 69 74 68 6d 73 2e 00 53 70 65 63 69 66 79 20 61 6e 20 61 6c 74 65 72 6e | )`.algorithms..Specify.an.altern |
| 11f9a0 | 61 74 65 20 41 53 20 66 6f 72 20 74 68 69 73 20 42 47 50 20 70 72 6f 63 65 73 73 20 77 68 65 6e | ate.AS.for.this.BGP.process.when |
| 11f9c0 | 20 69 6e 74 65 72 61 63 74 69 6e 67 20 77 69 74 68 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 | .interacting.with.the.specified. |
| 11f9e0 | 70 65 65 72 20 6f 72 20 70 65 65 72 20 67 72 6f 75 70 2e 20 57 69 74 68 20 6e 6f 20 6d 6f 64 69 | peer.or.peer.group..With.no.modi |
| 11fa00 | 66 69 65 72 73 2c 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 6c 6f 63 61 6c 2d 61 73 20 69 73 | fiers,.the.specified.local-as.is |
| 11fa20 | 20 70 72 65 70 65 6e 64 65 64 20 74 6f 20 74 68 65 20 72 65 63 65 69 76 65 64 20 41 53 5f 50 41 | .prepended.to.the.received.AS_PA |
| 11fa40 | 54 48 20 77 68 65 6e 20 72 65 63 65 69 76 69 6e 67 20 72 6f 75 74 69 6e 67 20 75 70 64 61 74 65 | TH.when.receiving.routing.update |
| 11fa60 | 73 20 66 72 6f 6d 20 74 68 65 20 70 65 65 72 2c 20 61 6e 64 20 70 72 65 70 65 6e 64 65 64 20 74 | s.from.the.peer,.and.prepended.t |
| 11fa80 | 6f 20 74 68 65 20 6f 75 74 67 6f 69 6e 67 20 41 53 5f 50 41 54 48 20 28 61 66 74 65 72 20 74 68 | o.the.outgoing.AS_PATH.(after.th |
| 11faa0 | 65 20 70 72 6f 63 65 73 73 20 6c 6f 63 61 6c 20 41 53 29 20 77 68 65 6e 20 74 72 61 6e 73 6d 69 | e.process.local.AS).when.transmi |
| 11fac0 | 74 74 69 6e 67 20 6c 6f 63 61 6c 20 72 6f 75 74 65 73 20 74 6f 20 74 68 65 20 70 65 65 72 2e 00 | tting.local.routes.to.the.peer.. |
| 11fae0 | 53 70 65 63 69 66 79 20 61 6e 20 61 6c 74 65 72 6e 61 74 65 20 54 43 50 20 70 6f 72 74 20 77 68 | Specify.an.alternate.TCP.port.wh |
| 11fb00 | 65 72 65 20 74 68 65 20 6c 64 61 70 20 73 65 72 76 65 72 20 69 73 20 6c 69 73 74 65 6e 69 6e 67 | ere.the.ldap.server.is.listening |
| 11fb20 | 20 69 66 20 6f 74 68 65 72 20 74 68 61 6e 20 74 68 65 20 64 65 66 61 75 6c 74 20 4c 44 41 50 20 | .if.other.than.the.default.LDAP. |
| 11fb40 | 70 6f 72 74 20 33 38 39 2e 00 53 70 65 63 69 66 79 20 66 61 63 69 6c 69 74 79 20 61 6e 64 20 6c | port.389..Specify.facility.and.l |
| 11fb60 | 65 76 65 6c 20 66 6f 72 20 6c 6f 67 67 69 6e 67 2e 20 46 6f 72 20 61 6e 20 65 78 70 6c 61 6e 61 | evel.for.logging..For.an.explana |
| 11fb80 | 74 69 6f 6e 20 6f 6e 20 3a 72 65 66 3a 60 73 79 73 6c 6f 67 5f 66 61 63 69 6c 69 74 69 65 73 60 | tion.on.:ref:`syslog_facilities` |
| 11fba0 | 20 61 6e 64 20 3a 72 65 66 3a 60 73 79 73 6c 6f 67 5f 73 65 76 65 72 69 74 79 5f 6c 65 76 65 6c | .and.:ref:`syslog_severity_level |
| 11fbc0 | 60 20 73 65 65 20 74 61 62 6c 65 73 20 69 6e 20 73 79 73 6c 6f 67 20 63 6f 6e 66 69 67 75 72 61 | `.see.tables.in.syslog.configura |
| 11fbe0 | 74 69 6f 6e 20 73 65 63 74 69 6f 6e 2e 00 53 70 65 63 69 66 79 20 69 6e 74 65 72 76 61 6c 20 69 | tion.section..Specify.interval.i |
| 11fc00 | 6e 20 73 65 63 6f 6e 64 73 20 74 6f 20 77 61 69 74 20 62 65 74 77 65 65 6e 20 44 79 6e 61 6d 69 | n.seconds.to.wait.between.Dynami |
| 11fc20 | 63 20 44 4e 53 20 75 70 64 61 74 65 73 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 20 33 | c.DNS.updates..The.default.is..3 |
| 11fc40 | 30 30 20 73 65 63 6f 6e 64 73 2e 00 53 70 65 63 69 66 79 20 6c 6f 63 61 6c 20 72 61 6e 67 65 20 | 00.seconds..Specify.local.range. |
| 11fc60 | 6f 66 20 69 70 20 61 64 64 72 65 73 73 20 74 6f 20 67 69 76 65 20 74 6f 20 64 68 63 70 20 63 6c | of.ip.address.to.give.to.dhcp.cl |
| 11fc80 | 69 65 6e 74 73 2e 20 46 69 72 73 74 20 49 50 20 69 6e 20 72 61 6e 67 65 20 69 73 20 72 6f 75 74 | ients..First.IP.in.range.is.rout |
| 11fca0 | 65 72 20 49 50 2e 20 49 66 20 79 6f 75 20 6e 65 65 64 20 6d 6f 72 65 20 63 75 73 74 6f 6d 69 7a | er.IP..If.you.need.more.customiz |
| 11fcc0 | 61 74 69 6f 6e 20 75 73 65 20 60 63 6c 69 65 6e 74 2d 69 70 2d 70 6f 6f 6c 60 00 53 70 65 63 69 | ation.use.`client-ip-pool`.Speci |
| 11fce0 | 66 79 20 6e 61 6d 65 20 6f 66 20 74 68 65 20 3a 61 62 62 72 3a 60 56 52 46 20 28 56 69 72 74 75 | fy.name.of.the.:abbr:`VRF.(Virtu |
| 11fd00 | 61 6c 20 52 6f 75 74 69 6e 67 20 61 6e 64 20 46 6f 72 77 61 72 64 69 6e 67 29 60 20 69 6e 73 74 | al.Routing.and.Forwarding)`.inst |
| 11fd20 | 61 6e 63 65 2e 00 53 70 65 63 69 66 79 20 6e 65 78 74 68 6f 70 20 6f 6e 20 74 68 65 20 70 61 74 | ance..Specify.nexthop.on.the.pat |
| 11fd40 | 68 20 74 6f 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 2c 20 60 60 69 70 76 34 2d 61 64 64 | h.to.the.destination,.``ipv4-add |
| 11fd60 | 72 65 73 73 60 60 20 63 61 6e 20 62 65 20 73 65 74 20 74 6f 20 60 60 64 68 63 70 60 60 00 53 70 | ress``.can.be.set.to.``dhcp``.Sp |
| 11fd80 | 65 63 69 66 79 20 73 74 61 74 69 63 20 72 6f 75 74 65 20 69 6e 74 6f 20 74 68 65 20 72 6f 75 74 | ecify.static.route.into.the.rout |
| 11fda0 | 69 6e 67 20 74 61 62 6c 65 20 73 65 6e 64 69 6e 67 20 61 6c 6c 20 6e 6f 6e 20 6c 6f 63 61 6c 20 | ing.table.sending.all.non.local. |
| 11fdc0 | 74 72 61 66 66 69 63 20 74 6f 20 74 68 65 20 6e 65 78 74 68 6f 70 20 61 64 64 72 65 73 73 20 60 | traffic.to.the.nexthop.address.` |
| 11fde0 | 3c 61 64 64 72 65 73 73 3e 60 2e 00 53 70 65 63 69 66 79 20 74 68 65 20 49 50 20 60 3c 61 64 64 | <address>`..Specify.the.IP.`<add |
| 11fe00 | 72 65 73 73 3e 60 20 6f 66 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 75 73 65 72 | ress>`.of.the.RADIUS.server.user |
| 11fe20 | 20 77 69 74 68 20 74 68 65 20 70 72 65 2d 73 68 61 72 65 64 2d 73 65 63 72 65 74 20 67 69 76 65 | .with.the.pre-shared-secret.give |
| 11fe40 | 6e 20 69 6e 20 60 3c 73 65 63 72 65 74 3e 60 2e 00 53 70 65 63 69 66 79 20 74 68 65 20 49 50 20 | n.in.`<secret>`..Specify.the.IP. |
| 11fe60 | 60 3c 61 64 64 72 65 73 73 3e 60 20 6f 66 20 74 68 65 20 54 41 43 41 43 53 20 73 65 72 76 65 72 | `<address>`.of.the.TACACS.server |
| 11fe80 | 20 75 73 65 72 20 77 69 74 68 20 74 68 65 20 70 72 65 2d 73 68 61 72 65 64 2d 73 65 63 72 65 74 | .user.with.the.pre-shared-secret |
| 11fea0 | 20 67 69 76 65 6e 20 69 6e 20 60 3c 73 65 63 72 65 74 3e 60 2e 00 53 70 65 63 69 66 79 20 74 68 | .given.in.`<secret>`..Specify.th |
| 11fec0 | 65 20 49 50 76 34 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 74 6f 20 75 73 65 20 66 6f 72 | e.IPv4.source.address.to.use.for |
| 11fee0 | 20 74 68 65 20 42 47 50 20 73 65 73 73 69 6f 6e 20 74 6f 20 74 68 69 73 20 6e 65 69 67 68 62 6f | .the.BGP.session.to.this.neighbo |
| 11ff00 | 72 2c 20 6d 61 79 20 62 65 20 73 70 65 63 69 66 69 65 64 20 61 73 20 65 69 74 68 65 72 20 61 6e | r,.may.be.specified.as.either.an |
| 11ff20 | 20 49 50 76 34 20 61 64 64 72 65 73 73 20 64 69 72 65 63 74 6c 79 20 6f 72 20 61 73 20 61 6e 20 | .IPv4.address.directly.or.as.an. |
| 11ff40 | 69 6e 74 65 72 66 61 63 65 20 6e 61 6d 65 2e 00 53 70 65 63 69 66 79 20 74 68 65 20 4c 44 41 50 | interface.name..Specify.the.LDAP |
| 11ff60 | 20 73 65 72 76 65 72 20 74 6f 20 63 6f 6e 6e 65 63 74 20 74 6f 2e 00 53 70 65 63 69 66 79 20 74 | .server.to.connect.to..Specify.t |
| 11ff80 | 68 65 20 61 64 64 72 65 73 73 2c 20 41 50 49 20 6b 65 79 2c 20 74 69 6d 65 6f 75 74 20 61 6e 64 | he.address,.API.key,.timeout.and |
| 11ffa0 | 20 70 6f 72 74 20 6f 66 20 74 68 65 20 73 65 63 6f 6e 64 61 72 79 20 72 6f 75 74 65 72 2e 20 59 | .port.of.the.secondary.router..Y |
| 11ffc0 | 6f 75 20 6e 65 65 64 20 74 6f 20 65 6e 61 62 6c 65 20 61 6e 64 20 63 6f 6e 66 69 67 75 72 65 20 | ou.need.to.enable.and.configure. |
| 11ffe0 | 74 68 65 20 48 54 54 50 20 41 50 49 20 73 65 72 76 69 63 65 20 6f 6e 20 74 68 65 20 73 65 63 6f | the.HTTP.API.service.on.the.seco |
| 120000 | 6e 64 61 72 79 20 72 6f 75 74 65 72 20 66 6f 72 20 63 6f 6e 66 69 67 20 73 79 6e 63 20 74 6f 20 | ndary.router.for.config.sync.to. |
| 120020 | 6f 70 65 72 61 74 65 2e 00 53 70 65 63 69 66 79 20 74 68 65 20 69 64 65 6e 74 69 66 69 65 72 20 | operate..Specify.the.identifier. |
| 120040 | 76 61 6c 75 65 20 6f 66 20 74 68 65 20 73 69 74 65 2d 6c 65 76 65 6c 20 61 67 67 72 65 67 61 74 | value.of.the.site-level.aggregat |
| 120060 | 6f 72 20 28 53 4c 41 29 20 6f 6e 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 2e 20 49 44 20 6d 75 | or.(SLA).on.the.interface..ID.mu |
| 120080 | 73 74 20 62 65 20 61 20 64 65 63 69 6d 61 6c 20 6e 75 6d 62 65 72 20 67 72 65 61 74 65 72 20 74 | st.be.a.decimal.number.greater.t |
| 1200a0 | 68 65 6e 20 30 20 77 68 69 63 68 20 66 69 74 73 20 69 6e 20 74 68 65 20 6c 65 6e 67 74 68 20 6f | hen.0.which.fits.in.the.length.o |
| 1200c0 | 66 20 53 4c 41 20 49 44 73 20 28 73 65 65 20 62 65 6c 6f 77 29 2e 00 53 70 65 63 69 66 79 20 74 | f.SLA.IDs.(see.below)..Specify.t |
| 1200e0 | 68 65 20 69 6e 74 65 72 66 61 63 65 20 61 64 64 72 65 73 73 20 75 73 65 64 20 6c 6f 63 61 6c 6c | he.interface.address.used.locall |
| 120100 | 79 20 6f 6e 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 77 68 65 72 65 20 74 68 65 20 70 72 65 | y.on.the.interface.where.the.pre |
| 120120 | 66 69 78 20 68 61 73 20 62 65 65 6e 20 64 65 6c 65 67 61 74 65 64 20 74 6f 2e 20 49 44 20 6d 75 | fix.has.been.delegated.to..ID.mu |
| 120140 | 73 74 20 62 65 20 61 20 64 65 63 69 6d 61 6c 20 69 6e 74 65 67 65 72 2e 00 53 70 65 63 69 66 79 | st.be.a.decimal.integer..Specify |
| 120160 | 20 74 68 65 20 6d 69 6e 69 6d 75 6d 20 72 65 71 75 69 72 65 64 20 54 4c 53 20 76 65 72 73 69 6f | .the.minimum.required.TLS.versio |
| 120180 | 6e 20 31 2e 32 20 6f 72 20 31 2e 33 00 53 70 65 63 69 66 79 20 74 68 65 20 70 6c 61 69 6e 74 65 | n.1.2.or.1.3.Specify.the.plainte |
| 1201a0 | 78 74 20 70 61 73 73 77 6f 72 64 20 75 73 65 72 20 62 79 20 75 73 65 72 20 60 3c 6e 61 6d 65 3e | xt.password.user.by.user.`<name> |
| 1201c0 | 60 20 6f 6e 20 74 68 69 73 20 73 79 73 74 65 6d 2e 20 54 68 65 20 70 6c 61 69 6e 74 65 78 74 20 | `.on.this.system..The.plaintext. |
| 1201e0 | 70 61 73 73 77 6f 72 64 20 77 69 6c 6c 20 62 65 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 74 | password.will.be.automatically.t |
| 120200 | 72 61 6e 73 66 65 72 72 65 64 20 69 6e 74 6f 20 61 20 73 65 63 75 72 65 20 68 61 73 68 65 64 20 | ransferred.into.a.secure.hashed. |
| 120220 | 70 61 73 73 77 6f 72 64 20 61 6e 64 20 6e 6f 74 20 73 61 76 65 64 20 61 6e 79 77 68 65 72 65 20 | password.and.not.saved.anywhere. |
| 120240 | 69 6e 20 70 6c 61 69 6e 74 65 78 74 2e 00 53 70 65 63 69 66 79 20 74 68 65 20 70 6f 72 74 20 75 | in.plaintext..Specify.the.port.u |
| 120260 | 73 65 64 20 6f 6e 20 77 68 69 63 68 20 74 68 65 20 70 72 6f 78 79 20 73 65 72 76 69 63 65 20 69 | sed.on.which.the.proxy.service.i |
| 120280 | 73 20 6c 69 73 74 65 6e 69 6e 67 20 66 6f 72 20 72 65 71 75 65 73 74 73 2e 20 54 68 69 73 20 70 | s.listening.for.requests..This.p |
| 1202a0 | 6f 72 74 20 69 73 20 74 68 65 20 64 65 66 61 75 6c 74 20 70 6f 72 74 20 75 73 65 64 20 66 6f 72 | ort.is.the.default.port.used.for |
| 1202c0 | 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 6c 69 73 74 65 6e 2d 61 64 64 72 65 73 73 2e 00 53 | .the.specified.listen-address..S |
| 1202e0 | 70 65 63 69 66 79 20 74 68 65 20 73 65 63 74 69 6f 6e 20 6f 66 20 74 68 65 20 63 6f 6e 66 69 67 | pecify.the.section.of.the.config |
| 120300 | 75 72 61 74 69 6f 6e 20 74 6f 20 73 79 6e 63 68 72 6f 6e 69 7a 65 2e 20 49 66 20 6d 6f 72 65 20 | uration.to.synchronize..If.more. |
| 120320 | 74 68 61 6e 20 6f 6e 65 20 73 65 63 74 69 6f 6e 20 69 73 20 74 6f 20 62 65 20 73 79 6e 63 68 72 | than.one.section.is.to.be.synchr |
| 120340 | 6f 6e 69 7a 65 64 2c 20 72 65 70 65 61 74 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 61 64 | onized,.repeat.the.command.to.ad |
| 120360 | 64 20 61 64 64 69 74 69 6f 6e 61 6c 20 73 65 63 74 69 6f 6e 73 20 61 73 20 72 65 71 75 69 72 65 | d.additional.sections.as.require |
| 120380 | 64 2e 00 53 70 65 63 69 66 79 20 74 68 65 20 73 79 73 74 65 6d 73 20 60 3c 74 69 6d 65 7a 6f 6e | d..Specify.the.systems.`<timezon |
| 1203a0 | 65 3e 60 20 61 73 20 74 68 65 20 52 65 67 69 6f 6e 2f 4c 6f 63 61 74 69 6f 6e 20 74 68 61 74 20 | e>`.as.the.Region/Location.that. |
| 1203c0 | 62 65 73 74 20 64 65 66 69 6e 65 73 20 79 6f 75 72 20 6c 6f 63 61 74 69 6f 6e 2e 20 46 6f 72 20 | best.defines.your.location..For. |
| 1203e0 | 65 78 61 6d 70 6c 65 2c 20 73 70 65 63 69 66 79 69 6e 67 20 55 53 2f 50 61 63 69 66 69 63 20 73 | example,.specifying.US/Pacific.s |
| 120400 | 65 74 73 20 74 68 65 20 74 69 6d 65 20 7a 6f 6e 65 20 74 6f 20 55 53 20 50 61 63 69 66 69 63 20 | ets.the.time.zone.to.US.Pacific. |
| 120420 | 74 69 6d 65 2e 00 53 70 65 63 69 66 79 20 74 68 65 20 74 69 6d 65 20 69 6e 74 65 72 76 61 6c 20 | time..Specify.the.time.interval. |
| 120440 | 77 68 65 6e 20 60 3c 74 61 73 6b 3e 60 20 73 68 6f 75 6c 64 20 62 65 20 65 78 65 63 75 74 65 64 | when.`<task>`.should.be.executed |
| 120460 | 2e 20 54 68 65 20 69 6e 74 65 72 76 61 6c 20 69 73 20 73 70 65 63 69 66 69 65 64 20 61 73 20 6e | ..The.interval.is.specified.as.n |
| 120480 | 75 6d 62 65 72 20 77 69 74 68 20 6f 6e 65 20 6f 66 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 | umber.with.one.of.the.following. |
| 1204a0 | 73 75 66 66 69 78 65 73 3a 00 53 70 65 63 69 66 79 20 74 69 6d 65 6f 75 74 20 2f 20 75 70 64 61 | suffixes:.Specify.timeout./.upda |
| 1204c0 | 74 65 20 69 6e 74 65 72 76 61 6c 20 74 6f 20 63 68 65 63 6b 20 69 66 20 49 50 20 61 64 64 72 65 | te.interval.to.check.if.IP.addre |
| 1204e0 | 73 73 20 63 68 61 6e 67 65 64 2e 00 53 70 65 63 69 66 79 20 74 69 6d 65 6f 75 74 20 69 6e 74 65 | ss.changed..Specify.timeout.inte |
| 120500 | 72 76 61 6c 20 66 6f 72 20 6b 65 65 70 61 6c 69 76 65 20 6d 65 73 73 61 67 65 20 69 6e 20 73 65 | rval.for.keepalive.message.in.se |
| 120520 | 63 6f 6e 64 73 2e 00 53 70 65 63 69 66 79 20 77 68 65 72 65 20 69 6e 74 65 72 66 61 63 65 20 69 | conds..Specify.where.interface.i |
| 120540 | 73 20 73 68 61 72 65 64 20 62 79 20 6d 75 6c 74 69 70 6c 65 20 75 73 65 72 73 20 6f 72 20 69 74 | s.shared.by.multiple.users.or.it |
| 120560 | 20 69 73 20 76 6c 61 6e 2d 70 65 72 2d 75 73 65 72 2e 00 53 70 69 6e 65 31 20 69 73 20 61 20 43 | .is.vlan-per-user..Spine1.is.a.C |
| 120580 | 69 73 63 6f 20 49 4f 53 20 72 6f 75 74 65 72 20 72 75 6e 6e 69 6e 67 20 76 65 72 73 69 6f 6e 20 | isco.IOS.router.running.version. |
| 1205a0 | 31 35 2e 34 2c 20 4c 65 61 66 32 20 61 6e 64 20 4c 65 61 66 33 20 61 72 65 20 65 61 63 68 20 56 | 15.4,.Leaf2.and.Leaf3.are.each.V |
| 1205c0 | 79 4f 53 20 72 6f 75 74 65 72 73 20 72 75 6e 6e 69 6e 67 20 31 2e 32 2e 00 53 70 69 6e 65 31 20 | yOS.routers.running.1.2..Spine1. |
| 1205e0 | 69 73 20 61 20 43 69 73 63 6f 20 49 4f 53 20 72 6f 75 74 65 72 20 72 75 6e 6e 69 6e 67 20 76 65 | is.a.Cisco.IOS.router.running.ve |
| 120600 | 72 73 69 6f 6e 20 31 35 2e 34 2c 20 4c 65 61 66 32 20 61 6e 64 20 4c 65 61 66 33 20 69 73 20 65 | rsion.15.4,.Leaf2.and.Leaf3.is.e |
| 120620 | 61 63 68 20 61 20 56 79 4f 53 20 72 6f 75 74 65 72 20 72 75 6e 6e 69 6e 67 20 31 2e 32 2e 00 53 | ach.a.VyOS.router.running.1.2..S |
| 120640 | 70 6c 75 6e 6b 00 53 70 6f 6b 65 00 53 71 75 69 64 5f 20 69 73 20 61 20 63 61 63 68 69 6e 67 20 | plunk.Spoke.Squid_.is.a.caching. |
| 120660 | 61 6e 64 20 66 6f 72 77 61 72 64 69 6e 67 20 48 54 54 50 20 77 65 62 20 70 72 6f 78 79 2e 20 49 | and.forwarding.HTTP.web.proxy..I |
| 120680 | 74 20 68 61 73 20 61 20 77 69 64 65 20 76 61 72 69 65 74 79 20 6f 66 20 75 73 65 73 2c 20 69 6e | t.has.a.wide.variety.of.uses,.in |
| 1206a0 | 63 6c 75 64 69 6e 67 20 73 70 65 65 64 69 6e 67 20 75 70 20 61 20 77 65 62 20 73 65 72 76 65 72 | cluding.speeding.up.a.web.server |
| 1206c0 | 20 62 79 20 63 61 63 68 69 6e 67 20 72 65 70 65 61 74 65 64 20 72 65 71 75 65 73 74 73 2c 20 63 | .by.caching.repeated.requests,.c |
| 1206e0 | 61 63 68 69 6e 67 20 77 65 62 2c 20 44 4e 53 20 61 6e 64 20 6f 74 68 65 72 20 63 6f 6d 70 75 74 | aching.web,.DNS.and.other.comput |
| 120700 | 65 72 20 6e 65 74 77 6f 72 6b 20 6c 6f 6f 6b 75 70 73 20 66 6f 72 20 61 20 67 72 6f 75 70 20 6f | er.network.lookups.for.a.group.o |
| 120720 | 66 20 70 65 6f 70 6c 65 20 73 68 61 72 69 6e 67 20 6e 65 74 77 6f 72 6b 20 72 65 73 6f 75 72 63 | f.people.sharing.network.resourc |
| 120740 | 65 73 2c 20 61 6e 64 20 61 69 64 69 6e 67 20 73 65 63 75 72 69 74 79 20 62 79 20 66 69 6c 74 65 | es,.and.aiding.security.by.filte |
| 120760 | 72 69 6e 67 20 74 72 61 66 66 69 63 2e 20 41 6c 74 68 6f 75 67 68 20 70 72 69 6d 61 72 69 6c 79 | ring.traffic..Although.primarily |
| 120780 | 20 75 73 65 64 20 66 6f 72 20 48 54 54 50 20 61 6e 64 20 46 54 50 2c 20 53 71 75 69 64 20 69 6e | .used.for.HTTP.and.FTP,.Squid.in |
| 1207a0 | 63 6c 75 64 65 73 20 6c 69 6d 69 74 65 64 20 73 75 70 70 6f 72 74 20 66 6f 72 20 73 65 76 65 72 | cludes.limited.support.for.sever |
| 1207c0 | 61 6c 20 6f 74 68 65 72 20 70 72 6f 74 6f 63 6f 6c 73 20 69 6e 63 6c 75 64 69 6e 67 20 49 6e 74 | al.other.protocols.including.Int |
| 1207e0 | 65 72 6e 65 74 20 47 6f 70 68 65 72 2c 20 53 53 4c 2c 5b 36 5d 20 54 4c 53 20 61 6e 64 20 48 54 | ernet.Gopher,.SSL,[6].TLS.and.HT |
| 120800 | 54 50 53 2e 20 53 71 75 69 64 20 64 6f 65 73 20 6e 6f 74 20 73 75 70 70 6f 72 74 20 74 68 65 20 | TPS..Squid.does.not.support.the. |
| 120820 | 53 4f 43 4b 53 20 70 72 6f 74 6f 63 6f 6c 2e 00 53 74 61 72 74 20 57 65 62 73 65 72 76 65 72 20 | SOCKS.protocol..Start.Webserver. |
| 120840 | 69 6e 20 67 69 76 65 6e 20 20 56 52 46 2e 00 53 74 61 72 74 20 57 65 62 73 65 72 76 65 72 20 69 | in.given..VRF..Start.Webserver.i |
| 120860 | 6e 20 67 69 76 65 6e 20 56 52 46 2e 00 53 74 61 72 74 20 62 79 20 63 68 65 63 6b 69 6e 67 20 66 | n.given.VRF..Start.by.checking.f |
| 120880 | 6f 72 20 49 50 53 65 63 20 53 41 73 20 28 53 65 63 75 72 69 74 79 20 41 73 73 6f 63 69 61 74 69 | or.IPSec.SAs.(Security.Associati |
| 1208a0 | 6f 6e 73 29 20 77 69 74 68 3a 00 53 74 61 72 74 69 6e 67 20 66 72 6f 6d 20 2a 2a 56 79 4f 53 2d | ons).with:.Starting.from.**VyOS- |
| 1208c0 | 31 2e 35 2d 72 6f 6c 6c 69 6e 67 2d 32 30 32 34 31 30 30 36 30 30 30 37 2a 2a 2c 20 74 68 65 20 | 1.5-rolling-202410060007**,.the. |
| 1208e0 | 66 69 72 65 77 61 6c 6c 20 63 61 6e 20 6d 6f 64 69 66 79 20 70 61 63 6b 65 74 73 20 62 65 66 6f | firewall.can.modify.packets.befo |
| 120900 | 72 65 20 74 68 65 79 20 61 72 65 20 73 65 6e 74 20 6f 75 74 2e 20 54 68 69 73 20 66 65 61 75 72 | re.they.are.sent.out..This.feaur |
| 120920 | 65 20 70 72 6f 76 69 64 65 73 20 6d 6f 72 65 20 66 6c 65 78 69 62 69 6c 69 74 79 20 69 6e 20 70 | e.provides.more.flexibility.in.p |
| 120940 | 61 63 6b 65 74 20 68 61 6e 64 6c 69 6e 67 2e 00 53 74 61 72 74 69 6e 67 20 66 72 6f 6d 20 56 79 | acket.handling..Starting.from.Vy |
| 120960 | 4f 53 20 31 2e 34 2d 72 6f 6c 6c 69 6e 67 2d 32 30 32 33 30 38 30 34 30 35 35 37 2c 20 61 20 6e | OS.1.4-rolling-202308040557,.a.n |
| 120980 | 65 77 20 66 69 72 65 77 61 6c 6c 20 73 74 72 75 63 74 75 72 65 20 63 61 6e 20 62 65 20 66 6f 75 | ew.firewall.structure.can.be.fou |
| 1209a0 | 6e 64 20 6f 6e 20 61 6c 6c 20 56 79 4f 53 20 69 6e 73 74 61 6c 6c 61 74 69 6f 6e 73 2e 20 54 68 | nd.on.all.VyOS.installations..Th |
| 1209c0 | 65 20 5a 6f 6e 65 20 62 61 73 65 64 20 66 69 72 65 77 61 6c 6c 20 77 61 73 20 72 65 6d 6f 76 65 | e.Zone.based.firewall.was.remove |
| 1209e0 | 64 20 69 6e 20 74 68 61 74 20 76 65 72 73 69 6f 6e 2c 20 62 75 74 20 72 65 20 69 6e 74 72 6f 64 | d.in.that.version,.but.re.introd |
| 120a00 | 75 63 65 64 20 69 6e 20 56 79 4f 53 20 31 2e 34 20 61 6e 64 20 31 2e 35 2e 20 41 6c 6c 20 76 65 | uced.in.VyOS.1.4.and.1.5..All.ve |
| 120a20 | 72 73 69 6f 6e 73 20 62 75 69 6c 74 20 61 66 74 65 72 20 32 30 32 33 2d 31 30 2d 32 32 20 68 61 | rsions.built.after.2023-10-22.ha |
| 120a40 | 76 65 20 74 68 69 73 20 66 65 61 74 75 72 65 2e 20 44 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 66 | ve.this.feature..Documentation.f |
| 120a60 | 6f 72 20 6d 6f 73 74 20 6f 66 20 74 68 65 20 6e 65 77 20 66 69 72 65 77 61 6c 6c 20 43 4c 49 20 | or.most.of.the.new.firewall.CLI. |
| 120a80 | 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 69 6e 20 74 68 65 20 60 66 69 72 65 77 61 6c 6c 20 3c 68 | can.be.found.in.the.`firewall.<h |
| 120aa0 | 74 74 70 73 3a 2f 2f 64 6f 63 73 2e 76 79 6f 73 2e 69 6f 2f 65 6e 2f 6c 61 74 65 73 74 2f 63 6f | ttps://docs.vyos.io/en/latest/co |
| 120ac0 | 6e 66 69 67 75 72 61 74 69 6f 6e 2f 66 69 72 65 77 61 6c 6c 2f 67 65 6e 65 72 61 6c 2e 68 74 6d | nfiguration/firewall/general.htm |
| 120ae0 | 6c 3e 60 5f 20 63 68 61 70 74 65 72 2e 00 53 74 61 72 74 69 6e 67 20 66 72 6f 6d 20 56 79 4f 53 | l>`_.chapter..Starting.from.VyOS |
| 120b00 | 20 31 2e 34 2d 72 6f 6c 6c 69 6e 67 2d 32 30 32 33 30 38 30 34 30 35 35 37 2c 20 61 20 6e 65 77 | .1.4-rolling-202308040557,.a.new |
| 120b20 | 20 66 69 72 65 77 61 6c 6c 20 73 74 72 75 63 74 75 72 65 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 | .firewall.structure.can.be.found |
| 120b40 | 20 6f 6e 20 61 6c 6c 20 56 79 4f 53 20 69 6e 73 74 61 6c 6c 61 74 69 6f 6e 73 2e 20 54 68 65 20 | .on.all.VyOS.installations..The. |
| 120b60 | 5a 6f 6e 65 20 62 61 73 65 64 20 66 69 72 65 77 61 6c 6c 20 77 61 73 20 72 65 6d 6f 76 65 64 20 | Zone.based.firewall.was.removed. |
| 120b80 | 69 6e 20 74 68 61 74 20 76 65 72 73 69 6f 6e 2c 20 62 75 74 20 72 65 20 69 6e 74 72 6f 64 75 63 | in.that.version,.but.re.introduc |
| 120ba0 | 65 64 20 69 6e 20 56 79 4f 53 20 31 2e 34 20 61 6e 64 20 31 2e 35 2e 20 41 6c 6c 20 76 65 72 73 | ed.in.VyOS.1.4.and.1.5..All.vers |
| 120bc0 | 69 6f 6e 73 20 62 75 69 6c 74 20 61 66 74 65 72 20 32 30 32 33 2d 31 30 2d 32 32 20 68 61 76 65 | ions.built.after.2023-10-22.have |
| 120be0 | 20 74 68 69 73 20 66 65 61 74 75 72 65 2e 20 44 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 66 6f 72 | .this.feature..Documentation.for |
| 120c00 | 20 6d 6f 73 74 20 6f 66 20 74 68 65 20 6e 65 77 20 66 69 72 65 77 61 6c 6c 20 43 4c 49 20 63 61 | .most.of.the.new.firewall.CLI.ca |
| 120c20 | 6e 20 62 65 20 66 6f 75 6e 64 20 69 6e 20 74 68 65 20 60 66 69 72 65 77 61 6c 6c 20 3c 68 74 74 | n.be.found.in.the.`firewall.<htt |
| 120c40 | 70 73 3a 2f 2f 64 6f 63 73 2e 76 79 6f 73 2e 69 6f 2f 65 6e 2f 6c 61 74 65 73 74 2f 63 6f 6e 66 | ps://docs.vyos.io/en/latest/conf |
| 120c60 | 69 67 75 72 61 74 69 6f 6e 2f 66 69 72 65 77 61 6c 6c 2f 67 65 6e 65 72 61 6c 2e 68 74 6d 6c 3e | iguration/firewall/general.html> |
| 120c80 | 60 5f 20 63 68 61 70 74 65 72 2e 20 54 68 65 20 6c 65 67 61 63 79 20 66 69 72 65 77 61 6c 6c 20 | `_.chapter..The.legacy.firewall. |
| 120ca0 | 69 73 20 73 74 69 6c 6c 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 76 65 72 73 69 6f 6e 73 20 | is.still.available.for.versions. |
| 120cc0 | 62 65 66 6f 72 65 20 31 2e 34 2d 72 6f 6c 6c 69 6e 67 2d 32 30 32 33 30 38 30 34 30 35 35 37 20 | before.1.4-rolling-202308040557. |
| 120ce0 | 61 6e 64 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 69 6e 20 74 68 65 20 3a 64 6f 63 3a 60 6c 65 | and.can.be.found.in.the.:doc:`le |
| 120d00 | 67 61 63 79 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 3c 2f 63 6f | gacy.firewall.configuration.</co |
| 120d20 | 6e 66 69 67 75 72 61 74 69 6f 6e 2f 66 69 72 65 77 61 6c 6c 2f 67 65 6e 65 72 61 6c 2d 6c 65 67 | nfiguration/firewall/general-leg |
| 120d40 | 61 63 79 3e 60 20 63 68 61 70 74 65 72 2e 00 53 74 61 72 74 69 6e 67 20 66 72 6f 6d 20 56 79 4f | acy>`.chapter..Starting.from.VyO |
| 120d60 | 53 20 31 2e 34 2d 72 6f 6c 6c 69 6e 67 2d 32 30 32 33 30 38 30 34 30 35 35 37 2c 20 61 20 6e 65 | S.1.4-rolling-202308040557,.a.ne |
| 120d80 | 77 20 66 69 72 65 77 61 6c 6c 20 73 74 72 75 63 74 75 72 65 20 63 61 6e 20 62 65 20 66 6f 75 6e | w.firewall.structure.can.be.foun |
| 120da0 | 64 20 6f 6e 20 61 6c 6c 20 56 79 4f 53 20 69 6e 73 74 61 6c 6c 61 74 69 6f 6e 73 2e 20 5a 6f 6e | d.on.all.VyOS.installations..Zon |
| 120dc0 | 65 20 62 61 73 65 64 20 66 69 72 65 77 61 6c 6c 20 77 61 73 20 72 65 6d 6f 76 65 64 20 69 6e 20 | e.based.firewall.was.removed.in. |
| 120de0 | 74 68 61 74 20 76 65 72 73 69 6f 6e 2c 20 62 75 74 20 72 65 20 69 6e 74 72 6f 64 75 63 65 64 20 | that.version,.but.re.introduced. |
| 120e00 | 69 6e 20 56 79 4f 53 20 31 2e 34 20 61 6e 64 20 31 2e 35 2e 20 41 6c 6c 20 76 65 72 73 69 6f 6e | in.VyOS.1.4.and.1.5..All.version |
| 120e20 | 73 20 62 75 69 6c 74 20 61 66 74 65 72 20 32 30 32 33 2d 31 30 2d 32 32 20 68 61 73 20 74 68 69 | s.built.after.2023-10-22.has.thi |
| 120e40 | 73 20 66 65 61 74 75 72 65 2e 20 44 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 66 6f 72 20 6d 6f 73 | s.feature..Documentation.for.mos |
| 120e60 | 74 20 6f 66 20 74 68 65 20 6e 65 77 20 66 69 72 65 77 61 6c 6c 20 43 4c 49 20 63 61 6e 20 62 65 | t.of.the.new.firewall.CLI.can.be |
| 120e80 | 20 66 6f 75 6e 64 20 69 6e 20 74 68 65 20 60 66 69 72 65 77 61 6c 6c 20 3c 68 74 74 70 73 3a 2f | .found.in.the.`firewall.<https:/ |
| 120ea0 | 2f 64 6f 63 73 2e 76 79 6f 73 2e 69 6f 2f 65 6e 2f 6c 61 74 65 73 74 2f 63 6f 6e 66 69 67 75 72 | /docs.vyos.io/en/latest/configur |
| 120ec0 | 61 74 69 6f 6e 2f 66 69 72 65 77 61 6c 6c 2f 67 65 6e 65 72 61 6c 2e 68 74 6d 6c 3e 60 5f 20 63 | ation/firewall/general.html>`_.c |
| 120ee0 | 68 61 70 74 65 72 2e 20 54 68 65 20 6c 65 67 61 63 79 20 66 69 72 65 77 61 6c 6c 20 69 73 20 73 | hapter..The.legacy.firewall.is.s |
| 120f00 | 74 69 6c 6c 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 76 65 72 73 69 6f 6e 73 20 62 65 66 6f | till.available.for.versions.befo |
| 120f20 | 72 65 20 31 2e 34 2d 72 6f 6c 6c 69 6e 67 2d 32 30 32 33 30 38 30 34 30 35 35 37 20 61 6e 64 20 | re.1.4-rolling-202308040557.and. |
| 120f40 | 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 69 6e 20 74 68 65 20 3a 64 6f 63 3a 60 6c 65 67 61 63 79 | can.be.found.in.the.:doc:`legacy |
| 120f60 | 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 3c 2f 63 6f 6e 66 69 67 | .firewall.configuration.</config |
| 120f80 | 75 72 61 74 69 6f 6e 2f 66 69 72 65 77 61 6c 6c 2f 67 65 6e 65 72 61 6c 2d 6c 65 67 61 63 79 3e | uration/firewall/general-legacy> |
| 120fa0 | 60 20 63 68 61 70 74 65 72 2e 00 53 74 61 72 74 69 6e 67 20 66 72 6f 6d 20 56 79 4f 53 20 31 2e | `.chapter..Starting.from.VyOS.1. |
| 120fc0 | 34 2d 72 6f 6c 6c 69 6e 67 2d 32 30 32 33 30 38 30 34 30 35 35 37 2c 20 61 20 6e 65 77 20 66 69 | 4-rolling-202308040557,.a.new.fi |
| 120fe0 | 72 65 77 61 6c 6c 20 73 74 72 75 63 74 75 72 65 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 6f 6e | rewall.structure.can.be.found.on |
| 121000 | 20 61 6c 6c 20 76 79 6f 73 20 69 6e 73 74 61 6c 61 74 69 6f 6e 73 2c 20 61 6e 64 20 7a 6f 6e 65 | .all.vyos.instalations,.and.zone |
| 121020 | 20 62 61 73 65 64 20 66 69 72 65 77 61 6c 6c 20 69 73 20 6e 6f 20 6c 6f 6e 67 65 72 20 73 75 70 | .based.firewall.is.no.longer.sup |
| 121040 | 70 6f 72 74 65 64 2e 20 44 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 66 6f 72 20 6d 6f 73 74 20 6f | ported..Documentation.for.most.o |
| 121060 | 66 20 74 68 65 20 6e 65 77 20 66 69 72 65 77 61 6c 6c 20 43 4c 49 20 63 61 6e 20 62 65 20 66 6f | f.the.new.firewall.CLI.can.be.fo |
| 121080 | 75 6e 64 20 69 6e 20 74 68 65 20 60 66 69 72 65 77 61 6c 6c 20 3c 68 74 74 70 73 3a 2f 2f 64 6f | und.in.the.`firewall.<https://do |
| 1210a0 | 63 73 2e 76 79 6f 73 2e 69 6f 2f 65 6e 2f 6c 61 74 65 73 74 2f 63 6f 6e 66 69 67 75 72 61 74 69 | cs.vyos.io/en/latest/configurati |
| 1210c0 | 6f 6e 2f 66 69 72 65 77 61 6c 6c 2f 67 65 6e 65 72 61 6c 2e 68 74 6d 6c 3e 60 5f 20 63 68 61 70 | on/firewall/general.html>`_.chap |
| 1210e0 | 74 65 72 2e 20 54 68 65 20 6c 65 67 61 63 79 20 66 69 72 65 77 61 6c 6c 20 69 73 20 73 74 69 6c | ter..The.legacy.firewall.is.stil |
| 121100 | 6c 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 76 65 72 73 69 6f 6e 73 20 62 65 66 6f 72 65 20 | l.available.for.versions.before. |
| 121120 | 31 2e 34 2d 72 6f 6c 6c 69 6e 67 2d 32 30 32 33 30 38 30 34 30 35 35 37 20 61 6e 64 20 63 61 6e | 1.4-rolling-202308040557.and.can |
| 121140 | 20 62 65 20 66 6f 75 6e 64 20 69 6e 20 74 68 65 20 3a 72 65 66 3a 60 66 69 72 65 77 61 6c 6c 2d | .be.found.in.the.:ref:`firewall- |
| 121160 | 6c 65 67 61 63 79 60 20 63 68 61 70 74 65 72 2e 20 54 68 65 20 65 78 61 6d 70 6c 65 73 20 69 6e | legacy`.chapter..The.examples.in |
| 121180 | 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 75 73 65 20 74 68 65 20 6c 65 67 61 63 79 20 66 69 72 | .this.section.use.the.legacy.fir |
| 1211a0 | 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 73 2c 20 73 69 | ewall.configuration.commands,.si |
| 1211c0 | 6e 63 65 20 74 68 69 73 20 66 65 61 74 75 72 65 20 68 61 73 20 62 65 65 6e 20 72 65 6d 6f 76 65 | nce.this.feature.has.been.remove |
| 1211e0 | 64 20 69 6e 20 65 61 72 6c 69 65 72 20 72 65 6c 65 61 73 65 73 2e 00 53 74 61 72 74 69 6e 67 20 | d.in.earlier.releases..Starting. |
| 121200 | 66 72 6f 6d 20 56 79 4f 53 20 31 2e 34 2d 72 6f 6c 6c 69 6e 67 2d 32 30 32 33 30 38 30 34 30 35 | from.VyOS.1.4-rolling-2023080405 |
| 121220 | 35 37 2c 20 61 20 6e 65 77 20 66 69 72 65 77 61 6c 6c 20 73 74 72 75 63 74 75 72 65 20 63 61 6e | 57,.a.new.firewall.structure.can |
| 121240 | 20 62 65 20 66 6f 75 6e 64 20 6f 6e 20 61 6c 6c 20 76 79 6f 73 20 69 6e 73 74 61 6c 61 74 69 6f | .be.found.on.all.vyos.instalatio |
| 121260 | 6e 73 2e 20 5a 6f 6e 65 20 62 61 73 65 64 20 66 69 72 65 77 61 6c 6c 20 77 61 73 20 72 65 6d 6f | ns..Zone.based.firewall.was.remo |
| 121280 | 76 65 64 20 69 6e 20 74 68 61 74 20 76 65 72 73 69 6f 6e 2c 20 62 75 74 20 72 65 20 69 6e 74 72 | ved.in.that.version,.but.re.intr |
| 1212a0 | 6f 64 75 63 65 64 20 69 6e 20 56 79 4f 53 20 31 2e 34 20 61 6e 64 20 31 2e 35 2e 20 41 6c 6c 20 | oduced.in.VyOS.1.4.and.1.5..All. |
| 1212c0 | 76 65 72 73 69 6f 6e 73 20 62 75 69 6c 74 20 61 66 74 65 72 20 32 30 32 33 2d 31 30 2d 32 32 20 | versions.built.after.2023-10-22. |
| 1212e0 | 68 61 73 20 74 68 69 73 20 66 65 61 74 75 72 65 2e 20 44 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 | has.this.feature..Documentation. |
| 121300 | 66 6f 72 20 6d 6f 73 74 20 6f 66 20 74 68 65 20 6e 65 77 20 66 69 72 65 77 61 6c 6c 20 43 4c 49 | for.most.of.the.new.firewall.CLI |
| 121320 | 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 69 6e 20 74 68 65 20 60 66 69 72 65 77 61 6c 6c 20 3c | .can.be.found.in.the.`firewall.< |
| 121340 | 68 74 74 70 73 3a 2f 2f 64 6f 63 73 2e 76 79 6f 73 2e 69 6f 2f 65 6e 2f 6c 61 74 65 73 74 2f 63 | https://docs.vyos.io/en/latest/c |
| 121360 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 66 69 72 65 77 61 6c 6c 2f 67 65 6e 65 72 61 6c 2e 68 74 | onfiguration/firewall/general.ht |
| 121380 | 6d 6c 3e 60 5f 20 63 68 61 70 74 65 72 2e 20 54 68 65 20 6c 65 67 61 63 79 20 66 69 72 65 77 61 | ml>`_.chapter..The.legacy.firewa |
| 1213a0 | 6c 6c 20 69 73 20 73 74 69 6c 6c 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 76 65 72 73 69 6f | ll.is.still.available.for.versio |
| 1213c0 | 6e 73 20 62 65 66 6f 72 65 20 31 2e 34 2d 72 6f 6c 6c 69 6e 67 2d 32 30 32 33 30 38 30 34 30 35 | ns.before.1.4-rolling-2023080405 |
| 1213e0 | 35 37 20 61 6e 64 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 69 6e 20 74 68 65 20 3a 64 6f 63 3a | 57.and.can.be.found.in.the.:doc: |
| 121400 | 60 6c 65 67 61 63 79 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 3c | `legacy.firewall.configuration.< |
| 121420 | 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 66 69 72 65 77 61 6c 6c 2f 67 65 6e 65 72 61 6c 2d | /configuration/firewall/general- |
| 121440 | 6c 65 67 61 63 79 3e 60 20 63 68 61 70 74 65 72 2e 00 53 74 61 72 74 69 6e 67 20 66 72 6f 6d 20 | legacy>`.chapter..Starting.from. |
| 121460 | 56 79 4f 53 20 31 2e 34 2d 72 6f 6c 6c 69 6e 67 2d 32 30 32 33 30 38 30 34 30 35 35 37 2c 20 61 | VyOS.1.4-rolling-202308040557,.a |
| 121480 | 20 6e 65 77 20 66 69 72 65 77 61 6c 6c 20 73 74 72 75 63 74 75 72 65 20 63 61 6e 20 62 65 20 66 | .new.firewall.structure.can.be.f |
| 1214a0 | 6f 75 6e 64 20 6f 6e 20 61 6c 6c 20 76 79 6f 73 20 69 6e 73 74 61 6c 6c 61 74 69 6f 6e 73 2e 00 | ound.on.all.vyos.installations.. |
| 1214c0 | 53 74 61 72 74 69 6e 67 20 66 72 6f 6d 20 56 79 4f 53 20 31 2e 34 2d 72 6f 6c 6c 69 6e 67 2d 32 | Starting.from.VyOS.1.4-rolling-2 |
| 1214e0 | 30 32 33 30 38 30 34 30 35 35 37 2c 20 61 20 6e 65 77 20 66 69 72 65 77 61 6c 6c 20 73 74 72 75 | 02308040557,.a.new.firewall.stru |
| 121500 | 63 74 75 72 65 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 6f 6e 20 61 6c 6c 20 76 79 6f 73 20 69 | cture.can.be.found.on.all.vyos.i |
| 121520 | 6e 73 74 61 6c 6c 61 74 69 6f 6e 73 2e 20 44 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 66 6f 72 20 | nstallations..Documentation.for. |
| 121540 | 6d 6f 73 74 20 6e 65 77 20 66 69 72 65 77 61 6c 6c 20 63 6c 69 20 63 61 6e 20 62 65 20 66 6f 75 | most.new.firewall.cli.can.be.fou |
| 121560 | 6e 64 20 68 65 72 65 3a 00 53 74 61 72 74 69 6e 67 20 6f 66 20 77 69 74 68 20 56 79 4f 53 20 31 | nd.here:.Starting.of.with.VyOS.1 |
| 121580 | 2e 33 20 28 65 71 75 75 6c 65 75 73 29 20 77 65 20 61 64 64 65 64 20 73 75 70 70 6f 72 74 20 66 | .3.(equuleus).we.added.support.f |
| 1215a0 | 6f 72 20 72 75 6e 6e 69 6e 67 20 56 79 4f 53 20 61 73 20 61 6e 20 4f 75 74 2d 6f 66 2d 42 61 6e | or.running.VyOS.as.an.Out-of-Ban |
| 1215c0 | 64 20 4d 61 6e 61 67 65 6d 65 6e 74 20 64 65 76 69 63 65 20 77 68 69 63 68 20 70 72 6f 76 69 64 | d.Management.device.which.provid |
| 1215e0 | 65 73 20 72 65 6d 6f 74 65 20 61 63 63 65 73 73 20 62 79 20 6d 65 61 6e 73 20 6f 66 20 53 53 48 | es.remote.access.by.means.of.SSH |
| 121600 | 20 74 6f 20 64 69 72 65 63 74 6c 79 20 61 74 74 61 63 68 65 64 20 73 65 72 69 61 6c 20 69 6e 74 | .to.directly.attached.serial.int |
| 121620 | 65 72 66 61 63 65 73 2e 00 53 74 61 72 74 69 6e 67 20 77 69 74 68 20 56 79 4f 53 20 31 2e 32 20 | erfaces..Starting.with.VyOS.1.2. |
| 121640 | 61 20 3a 61 62 62 72 3a 60 6d 44 4e 53 20 28 4d 75 6c 74 69 63 61 73 74 20 44 4e 53 29 60 20 72 | a.:abbr:`mDNS.(Multicast.DNS)`.r |
| 121660 | 65 70 65 61 74 65 72 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 20 69 73 20 70 72 6f 76 69 64 65 | epeater.functionality.is.provide |
| 121680 | 64 2e 20 41 64 64 69 74 69 6f 6e 61 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 63 61 6e 20 62 65 | d..Additional.information.can.be |
| 1216a0 | 20 6f 62 74 61 69 6e 65 64 20 66 72 6f 6d 20 68 74 74 70 73 3a 2f 2f 65 6e 2e 77 69 6b 69 70 65 | .obtained.from.https://en.wikipe |
| 1216c0 | 64 69 61 2e 6f 72 67 2f 77 69 6b 69 2f 4d 75 6c 74 69 63 61 73 74 5f 44 4e 53 2e 00 53 74 61 74 | dia.org/wiki/Multicast_DNS..Stat |
| 1216e0 | 69 63 00 53 74 61 74 69 63 20 3a 61 62 62 72 3a 60 53 41 4b 20 28 53 65 63 75 72 65 20 41 75 74 | ic.Static.:abbr:`SAK.(Secure.Aut |
| 121700 | 68 65 6e 74 69 63 61 74 69 6f 6e 20 4b 65 79 29 60 20 6d 6f 64 65 20 63 61 6e 20 62 65 20 63 6f | hentication.Key)`.mode.can.be.co |
| 121720 | 6e 66 69 67 75 72 65 64 20 6d 61 6e 75 61 6c 6c 79 20 6f 6e 20 65 61 63 68 20 64 65 76 69 63 65 | nfigured.manually.on.each.device |
| 121740 | 20 77 69 73 68 69 6e 67 20 74 6f 20 75 73 65 20 4d 41 43 73 65 63 2e 20 4b 65 79 73 20 6d 75 73 | .wishing.to.use.MACsec..Keys.mus |
| 121760 | 74 20 62 65 20 73 65 74 20 73 74 61 74 69 63 61 6c 6c 79 20 6f 6e 20 61 6c 6c 20 64 65 76 69 63 | t.be.set.statically.on.all.devic |
| 121780 | 65 73 20 66 6f 72 20 74 72 61 66 66 69 63 20 74 6f 20 66 6c 6f 77 20 70 72 6f 70 65 72 6c 79 2e | es.for.traffic.to.flow.properly. |
| 1217a0 | 20 4b 65 79 20 72 6f 74 61 74 69 6f 6e 20 69 73 20 64 65 70 65 6e 64 65 6e 74 20 6f 6e 20 74 68 | .Key.rotation.is.dependent.on.th |
| 1217c0 | 65 20 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 20 75 70 64 61 74 69 6e 67 20 61 6c 6c 20 6b 65 79 | e.administrator.updating.all.key |
| 1217e0 | 73 20 6d 61 6e 75 61 6c 6c 79 20 61 63 72 6f 73 73 20 63 6f 6e 6e 65 63 74 65 64 20 64 65 76 69 | s.manually.across.connected.devi |
| 121800 | 63 65 73 2e 20 53 74 61 74 69 63 20 53 41 4b 20 6d 6f 64 65 20 63 61 6e 20 6e 6f 74 20 62 65 20 | ces..Static.SAK.mode.can.not.be. |
| 121820 | 75 73 65 64 20 77 69 74 68 20 4d 4b 41 2e 00 53 74 61 74 69 63 20 44 48 43 50 20 49 50 20 61 64 | used.with.MKA..Static.DHCP.IP.ad |
| 121840 | 64 72 65 73 73 20 61 73 73 69 67 6e 20 74 6f 20 68 6f 73 74 20 69 64 65 6e 74 69 66 69 65 64 20 | dress.assign.to.host.identified. |
| 121860 | 62 79 20 60 3c 64 65 73 63 72 69 70 74 69 6f 6e 3e 60 2e 20 49 50 20 61 64 64 72 65 73 73 20 6d | by.`<description>`..IP.address.m |
| 121880 | 75 73 74 20 62 65 20 69 6e 73 69 64 65 20 74 68 65 20 60 3c 73 75 62 6e 65 74 3e 60 20 77 68 69 | ust.be.inside.the.`<subnet>`.whi |
| 1218a0 | 63 68 20 69 73 20 64 65 66 69 6e 65 64 20 62 75 74 20 63 61 6e 20 62 65 20 6f 75 74 73 69 64 65 | ch.is.defined.but.can.be.outside |
| 1218c0 | 20 74 68 65 20 64 79 6e 61 6d 69 63 20 72 61 6e 67 65 20 63 72 65 61 74 65 64 20 77 69 74 68 20 | .the.dynamic.range.created.with. |
| 1218e0 | 3a 63 66 67 63 6d 64 3a 60 73 65 74 20 73 65 72 76 69 63 65 20 64 68 63 70 2d 73 65 72 76 65 72 | :cfgcmd:`set.service.dhcp-server |
| 121900 | 20 73 68 61 72 65 64 2d 6e 65 74 77 6f 72 6b 2d 6e 61 6d 65 20 3c 6e 61 6d 65 3e 20 73 75 62 6e | .shared-network-name.<name>.subn |
| 121920 | 65 74 20 3c 73 75 62 6e 65 74 3e 20 72 61 6e 67 65 20 3c 6e 3e 60 2e 20 49 66 20 6e 6f 20 69 70 | et.<subnet>.range.<n>`..If.no.ip |
| 121940 | 2d 61 64 64 72 65 73 73 20 69 73 20 73 70 65 63 69 66 69 65 64 2c 20 61 6e 20 49 50 20 66 72 6f | -address.is.specified,.an.IP.fro |
| 121960 | 6d 20 74 68 65 20 64 79 6e 61 6d 69 63 20 70 6f 6f 6c 20 69 73 20 75 73 65 64 2e 00 53 74 61 74 | m.the.dynamic.pool.is.used..Stat |
| 121980 | 69 63 20 48 6f 73 74 6e 61 6d 65 20 4d 61 70 70 69 6e 67 00 53 74 61 74 69 63 20 4b 65 79 73 00 | ic.Hostname.Mapping.Static.Keys. |
| 1219a0 | 53 74 61 74 69 63 20 52 6f 75 74 65 73 00 53 74 61 74 69 63 20 52 6f 75 74 69 6e 67 20 6f 72 20 | Static.Routes.Static.Routing.or. |
| 1219c0 | 6f 74 68 65 72 20 64 79 6e 61 6d 69 63 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 73 20 | other.dynamic.routing.protocols. |
| 1219e0 | 63 61 6e 20 62 65 20 75 73 65 64 20 6f 76 65 72 20 74 68 65 20 76 74 75 6e 20 69 6e 74 65 72 66 | can.be.used.over.the.vtun.interf |
| 121a00 | 61 63 65 00 53 74 61 74 69 63 20 52 6f 75 74 69 6e 67 3a 00 53 74 61 74 69 63 20 6d 61 70 70 69 | ace.Static.Routing:.Static.mappi |
| 121a20 | 6e 67 73 00 53 74 61 74 69 63 20 6d 61 70 70 69 6e 67 73 20 61 72 65 6e 27 74 20 73 68 6f 77 6e | ngs.Static.mappings.aren't.shown |
| 121a40 | 2e 20 54 6f 20 73 68 6f 77 20 61 6c 6c 20 73 74 61 74 65 73 2c 20 75 73 65 20 60 60 73 68 6f 77 | ..To.show.all.states,.use.``show |
| 121a60 | 20 64 68 63 70 20 73 65 72 76 65 72 20 6c 65 61 73 65 73 20 73 74 61 74 65 20 61 6c 6c 60 60 2e | .dhcp.server.leases.state.all``. |
| 121a80 | 00 53 74 61 74 69 63 20 72 6f 75 74 65 73 20 61 72 65 20 6d 61 6e 75 61 6c 6c 79 20 63 6f 6e 66 | .Static.routes.are.manually.conf |
| 121aa0 | 69 67 75 72 65 64 20 72 6f 75 74 65 73 2c 20 77 68 69 63 68 2c 20 69 6e 20 67 65 6e 65 72 61 6c | igured.routes,.which,.in.general |
| 121ac0 | 2c 20 63 61 6e 6e 6f 74 20 62 65 20 75 70 64 61 74 65 64 20 64 79 6e 61 6d 69 63 61 6c 6c 79 20 | ,.cannot.be.updated.dynamically. |
| 121ae0 | 66 72 6f 6d 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 56 79 4f 53 20 6c 65 61 72 6e 73 20 61 62 6f | from.information.VyOS.learns.abo |
| 121b00 | 75 74 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 74 6f 70 6f 6c 6f 67 79 20 66 72 6f 6d 20 6f 74 68 | ut.the.network.topology.from.oth |
| 121b20 | 65 72 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 73 2e 20 48 6f 77 65 76 65 72 2c 20 69 | er.routing.protocols..However,.i |
| 121b40 | 66 20 61 20 6c 69 6e 6b 20 66 61 69 6c 73 2c 20 74 68 65 20 72 6f 75 74 65 72 20 77 69 6c 6c 20 | f.a.link.fails,.the.router.will. |
| 121b60 | 72 65 6d 6f 76 65 20 72 6f 75 74 65 73 2c 20 69 6e 63 6c 75 64 69 6e 67 20 73 74 61 74 69 63 20 | remove.routes,.including.static. |
| 121b80 | 72 6f 75 74 65 73 2c 20 66 72 6f 6d 20 74 68 65 20 3a 61 62 62 72 3a 60 52 49 50 42 20 28 52 6f | routes,.from.the.:abbr:`RIPB.(Ro |
| 121ba0 | 75 74 69 6e 67 20 49 6e 66 6f 72 6d 61 74 69 6f 6e 20 42 61 73 65 29 60 20 74 68 61 74 20 75 73 | uting.Information.Base)`.that.us |
| 121bc0 | 65 64 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 72 65 61 63 68 20 74 68 65 20 6e | ed.this.interface.to.reach.the.n |
| 121be0 | 65 78 74 20 68 6f 70 2e 20 49 6e 20 67 65 6e 65 72 61 6c 2c 20 73 74 61 74 69 63 20 72 6f 75 74 | ext.hop..In.general,.static.rout |
| 121c00 | 65 73 20 73 68 6f 75 6c 64 20 6f 6e 6c 79 20 62 65 20 75 73 65 64 20 66 6f 72 20 76 65 72 79 20 | es.should.only.be.used.for.very. |
| 121c20 | 73 69 6d 70 6c 65 20 6e 65 74 77 6f 72 6b 20 74 6f 70 6f 6c 6f 67 69 65 73 2c 20 6f 72 20 74 6f | simple.network.topologies,.or.to |
| 121c40 | 20 6f 76 65 72 72 69 64 65 20 74 68 65 20 62 65 68 61 76 69 6f 72 20 6f 66 20 61 20 64 79 6e 61 | .override.the.behavior.of.a.dyna |
| 121c60 | 6d 69 63 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 20 66 6f 72 20 61 20 73 6d 61 6c 6c | mic.routing.protocol.for.a.small |
| 121c80 | 20 6e 75 6d 62 65 72 20 6f 66 20 72 6f 75 74 65 73 2e 20 54 68 65 20 63 6f 6c 6c 65 63 74 69 6f | .number.of.routes..The.collectio |
| 121ca0 | 6e 20 6f 66 20 61 6c 6c 20 72 6f 75 74 65 73 20 74 68 65 20 72 6f 75 74 65 72 20 68 61 73 20 6c | n.of.all.routes.the.router.has.l |
| 121cc0 | 65 61 72 6e 65 64 20 66 72 6f 6d 20 69 74 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 72 | earned.from.its.configuration.or |
| 121ce0 | 20 66 72 6f 6d 20 69 74 73 20 64 79 6e 61 6d 69 63 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 | .from.its.dynamic.routing.protoc |
| 121d00 | 6f 6c 73 20 69 73 20 73 74 6f 72 65 64 20 69 6e 20 74 68 65 20 52 49 42 2e 20 55 6e 69 63 61 73 | ols.is.stored.in.the.RIB..Unicas |
| 121d20 | 74 20 72 6f 75 74 65 73 20 61 72 65 20 64 69 72 65 63 74 6c 79 20 75 73 65 64 20 74 6f 20 64 65 | t.routes.are.directly.used.to.de |
| 121d40 | 74 65 72 6d 69 6e 65 20 74 68 65 20 66 6f 72 77 61 72 64 69 6e 67 20 74 61 62 6c 65 20 75 73 65 | termine.the.forwarding.table.use |
| 121d60 | 64 20 66 6f 72 20 75 6e 69 63 61 73 74 20 70 61 63 6b 65 74 20 66 6f 72 77 61 72 64 69 6e 67 2e | d.for.unicast.packet.forwarding. |
| 121d80 | 00 53 74 61 74 69 63 20 72 6f 75 74 65 73 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 | .Static.routes.can.be.configured |
| 121da0 | 20 72 65 66 65 72 65 6e 63 69 6e 67 20 74 68 65 20 74 75 6e 6e 65 6c 20 69 6e 74 65 72 66 61 63 | .referencing.the.tunnel.interfac |
| 121dc0 | 65 3b 20 66 6f 72 20 65 78 61 6d 70 6c 65 2c 20 74 68 65 20 6c 6f 63 61 6c 20 72 6f 75 74 65 72 | e;.for.example,.the.local.router |
| 121de0 | 20 77 69 6c 6c 20 75 73 65 20 61 20 6e 65 74 77 6f 72 6b 20 6f 66 20 31 30 2e 30 2e 30 2e 30 2f | .will.use.a.network.of.10.0.0.0/ |
| 121e00 | 31 36 2c 20 77 68 69 6c 65 20 74 68 65 20 72 65 6d 6f 74 65 20 68 61 73 20 61 20 6e 65 74 77 6f | 16,.while.the.remote.has.a.netwo |
| 121e20 | 72 6b 20 6f 66 20 31 30 2e 31 2e 30 2e 30 2f 31 36 3a 00 53 74 61 74 69 6f 6e 20 6d 6f 64 65 20 | rk.of.10.1.0.0/16:.Station.mode. |
| 121e40 | 61 63 74 73 20 61 73 20 61 20 57 69 2d 46 69 20 63 6c 69 65 6e 74 20 61 63 63 65 73 73 69 6e 67 | acts.as.a.Wi-Fi.client.accessing |
| 121e60 | 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 74 68 72 6f 75 67 68 20 61 6e 20 61 76 61 69 6c 61 62 6c | .the.network.through.an.availabl |
| 121e80 | 65 20 57 41 50 00 53 74 61 74 69 6f 6e 20 73 75 70 70 6f 72 74 73 20 72 65 63 65 69 76 69 6e 67 | e.WAP.Station.supports.receiving |
| 121ea0 | 20 56 48 54 20 76 61 72 69 61 6e 74 20 48 54 20 43 6f 6e 74 72 6f 6c 20 66 69 65 6c 64 00 53 74 | .VHT.variant.HT.Control.field.St |
| 121ec0 | 61 74 75 73 00 53 74 69 63 6b 79 20 43 6f 6e 6e 65 63 74 69 6f 6e 73 00 53 74 6f 72 61 67 65 20 | atus.Sticky.Connections.Storage. |
| 121ee0 | 6f 66 20 72 6f 75 74 65 20 75 70 64 61 74 65 73 20 75 73 65 73 20 6d 65 6d 6f 72 79 2e 20 49 66 | of.route.updates.uses.memory..If |
| 121f00 | 20 79 6f 75 20 65 6e 61 62 6c 65 20 73 6f 66 74 20 72 65 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e | .you.enable.soft.reconfiguration |
| 121f20 | 20 69 6e 62 6f 75 6e 64 20 66 6f 72 20 6d 75 6c 74 69 70 6c 65 20 6e 65 69 67 68 62 6f 72 73 2c | .inbound.for.multiple.neighbors, |
| 121f40 | 20 74 68 65 20 61 6d 6f 75 6e 74 20 6f 66 20 6d 65 6d 6f 72 79 20 75 73 65 64 20 63 61 6e 20 62 | .the.amount.of.memory.used.can.b |
| 121f60 | 65 63 6f 6d 65 20 73 69 67 6e 69 66 69 63 61 6e 74 2e 00 53 75 66 66 69 78 65 73 00 53 75 6d 6d | ecome.significant..Suffixes.Summ |
| 121f80 | 61 72 69 73 61 74 69 6f 6e 20 73 74 61 72 74 73 20 6f 6e 6c 79 20 61 66 74 65 72 20 74 68 69 73 | arisation.starts.only.after.this |
| 121fa0 | 20 64 65 6c 61 79 20 74 69 6d 65 72 20 65 78 70 69 72 79 2e 00 53 75 70 70 6f 72 74 65 64 20 4d | .delay.timer.expiry..Supported.M |
| 121fc0 | 6f 64 75 6c 65 73 00 53 75 70 70 6f 72 74 65 64 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 20 73 | odules.Supported.channel.width.s |
| 121fe0 | 65 74 2e 00 53 75 70 70 6f 72 74 65 64 20 64 61 65 6d 6f 6e 73 3a 00 53 75 70 70 6f 72 74 65 64 | et..Supported.daemons:.Supported |
| 122000 | 20 69 6e 74 65 72 66 61 63 65 20 74 79 70 65 73 3a 00 53 75 70 70 6f 72 74 65 64 20 72 65 6d 6f | .interface.types:.Supported.remo |
| 122020 | 74 65 20 70 72 6f 74 6f 63 6f 6c 73 20 61 72 65 20 46 54 50 2c 20 46 54 50 53 2c 20 48 54 54 50 | te.protocols.are.FTP,.FTPS,.HTTP |
| 122040 | 2c 20 48 54 54 50 53 2c 20 53 43 50 2f 53 46 54 50 20 61 6e 64 20 54 46 54 50 2e 00 53 75 70 70 | ,.HTTPS,.SCP/SFTP.and.TFTP..Supp |
| 122060 | 6f 72 74 65 64 20 76 65 72 73 69 6f 6e 73 20 6f 66 20 52 49 50 20 61 72 65 3a 00 53 75 70 70 6f | orted.versions.of.RIP.are:.Suppo |
| 122080 | 72 74 73 20 61 73 20 48 45 4c 50 45 52 20 66 6f 72 20 63 6f 6e 66 69 67 75 72 65 64 20 67 72 61 | rts.as.HELPER.for.configured.gra |
| 1220a0 | 63 65 20 70 65 72 69 6f 64 2e 00 53 75 70 70 6f 73 65 20 74 68 65 20 4c 45 46 54 20 72 6f 75 74 | ce.period..Suppose.the.LEFT.rout |
| 1220c0 | 65 72 20 68 61 73 20 65 78 74 65 72 6e 61 6c 20 61 64 64 72 65 73 73 20 31 39 32 2e 30 2e 32 2e | er.has.external.address.192.0.2. |
| 1220e0 | 31 30 20 6f 6e 20 69 74 73 20 65 74 68 30 20 69 6e 74 65 72 66 61 63 65 2c 20 61 6e 64 20 74 68 | 10.on.its.eth0.interface,.and.th |
| 122100 | 65 20 52 49 47 48 54 20 72 6f 75 74 65 72 20 69 73 20 32 30 33 2e 30 2e 31 31 33 2e 34 35 00 53 | e.RIGHT.router.is.203.0.113.45.S |
| 122120 | 75 70 70 6f 73 65 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 75 73 65 20 31 30 2e 32 33 2e 31 2e 30 | uppose.you.want.to.use.10.23.1.0 |
| 122140 | 2f 32 34 20 6e 65 74 77 6f 72 6b 20 66 6f 72 20 63 6c 69 65 6e 74 20 74 75 6e 6e 65 6c 20 65 6e | /24.network.for.client.tunnel.en |
| 122160 | 64 70 6f 69 6e 74 73 20 61 6e 64 20 61 6c 6c 20 63 6c 69 65 6e 74 20 73 75 62 6e 65 74 73 20 62 | dpoints.and.all.client.subnets.b |
| 122180 | 65 6c 6f 6e 67 20 74 6f 20 31 30 2e 32 33 2e 30 2e 30 2f 32 30 2e 20 41 6c 6c 20 63 6c 69 65 6e | elong.to.10.23.0.0/20..All.clien |
| 1221a0 | 74 73 20 6e 65 65 64 20 61 63 63 65 73 73 20 74 6f 20 74 68 65 20 31 39 32 2e 31 36 38 2e 30 2e | ts.need.access.to.the.192.168.0. |
| 1221c0 | 30 2f 31 36 20 6e 65 74 77 6f 72 6b 2e 00 53 75 70 70 72 65 73 73 20 73 65 6e 64 69 6e 67 20 43 | 0/16.network..Suppress.sending.C |
| 1221e0 | 61 70 61 62 69 6c 69 74 79 20 4e 65 67 6f 74 69 61 74 69 6f 6e 20 61 73 20 4f 50 45 4e 20 6d 65 | apability.Negotiation.as.OPEN.me |
| 122200 | 73 73 61 67 65 20 6f 70 74 69 6f 6e 61 6c 20 70 61 72 61 6d 65 74 65 72 20 74 6f 20 74 68 65 20 | ssage.optional.parameter.to.the. |
| 122220 | 70 65 65 72 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 6f 6e 6c 79 20 61 66 66 65 63 74 73 20 | peer..This.command.only.affects. |
| 122240 | 74 68 65 20 70 65 65 72 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 74 68 65 72 20 74 68 61 | the.peer.is.configured.other.tha |
| 122260 | 6e 20 49 50 76 34 20 75 6e 69 63 61 73 74 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 53 75 | n.IPv4.unicast.configuration..Su |
| 122280 | 72 69 63 61 74 61 20 46 65 61 74 75 72 65 73 00 53 75 72 69 63 61 74 61 20 61 6e 64 20 56 79 4f | ricata.Features.Suricata.and.VyO |
| 1222a0 | 53 20 61 72 65 20 70 6f 77 65 72 66 75 6c 20 74 6f 6f 6c 73 20 66 6f 72 20 65 6e 73 75 72 69 6e | S.are.powerful.tools.for.ensurin |
| 1222c0 | 67 20 6e 65 74 77 6f 72 6b 20 73 65 63 75 72 69 74 79 20 61 6e 64 20 74 72 61 66 66 69 63 20 6d | g.network.security.and.traffic.m |
| 1222e0 | 61 6e 61 67 65 6d 65 6e 74 2e 20 53 75 72 69 63 61 74 61 20 69 73 20 61 6e 20 6f 70 65 6e 2d 73 | anagement..Suricata.is.an.open-s |
| 122300 | 6f 75 72 63 65 20 69 6e 74 72 75 73 69 6f 6e 20 64 65 74 65 63 74 69 6f 6e 20 61 6e 64 20 70 72 | ource.intrusion.detection.and.pr |
| 122320 | 65 76 65 6e 74 69 6f 6e 20 73 79 73 74 65 6d 20 28 49 44 53 2f 49 50 53 29 20 74 68 61 74 20 61 | evention.system.(IDS/IPS).that.a |
| 122340 | 6e 61 6c 79 7a 65 73 20 6e 65 74 77 6f 72 6b 20 70 61 63 6b 65 74 73 20 69 6e 20 72 65 61 6c 2d | nalyzes.network.packets.in.real- |
| 122360 | 74 69 6d 65 2e 00 53 79 6e 61 6d 69 63 20 69 6e 73 74 72 75 63 74 73 20 74 6f 20 66 6f 72 77 61 | time..Synamic.instructs.to.forwa |
| 122380 | 72 64 20 74 6f 20 61 6c 6c 20 70 65 65 72 73 20 77 68 69 63 68 20 77 65 20 68 61 76 65 20 61 20 | rd.to.all.peers.which.we.have.a. |
| 1223a0 | 64 69 72 65 63 74 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 77 69 74 68 2e 20 41 6c 74 65 72 6e 61 74 | direct.connection.with..Alternat |
| 1223c0 | 69 76 65 6c 79 2c 20 79 6f 75 20 63 61 6e 20 73 70 65 63 69 66 79 20 74 68 65 20 64 69 72 65 63 | ively,.you.can.specify.the.direc |
| 1223e0 | 74 69 76 65 20 6d 75 6c 74 69 70 6c 65 20 74 69 6d 65 73 20 66 6f 72 20 65 61 63 68 20 70 72 6f | tive.multiple.times.for.each.pro |
| 122400 | 74 6f 63 6f 6c 2d 61 64 64 72 65 73 73 20 74 68 65 20 6d 75 6c 74 69 63 61 73 74 20 74 72 61 66 | tocol-address.the.multicast.traf |
| 122420 | 66 69 63 20 73 68 6f 75 6c 64 20 62 65 20 73 65 6e 74 20 74 6f 2e 00 53 79 6e 63 20 67 72 6f 75 | fic.should.be.sent.to..Sync.grou |
| 122440 | 70 73 00 53 79 6e 63 68 72 6f 6e 69 7a 65 20 74 68 65 20 74 69 6d 65 2d 7a 6f 6e 65 20 61 6e 64 | ps.Synchronize.the.time-zone.and |
| 122460 | 20 4f 53 50 46 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 72 6f 6d 20 52 6f 75 74 65 72 20 | .OSPF.configuration.from.Router. |
| 122480 | 41 20 74 6f 20 52 6f 75 74 65 72 20 42 00 53 79 6e 70 72 6f 78 79 00 53 79 6e 70 72 6f 78 79 20 | A.to.Router.B.Synproxy.Synproxy. |
| 1224a0 | 63 6f 6e 6e 65 63 74 69 6f 6e 73 00 53 79 6e 70 72 6f 78 79 20 72 65 6c 69 65 73 20 6f 6e 20 73 | connections.Synproxy.relies.on.s |
| 1224c0 | 79 6e 63 6f 6f 6b 69 65 73 20 61 6e 64 20 54 43 50 20 74 69 6d 65 73 74 61 6d 70 73 2c 20 65 6e | yncookies.and.TCP.timestamps,.en |
| 1224e0 | 73 75 72 65 20 74 68 65 73 65 20 61 72 65 20 65 6e 61 62 6c 65 64 00 53 79 6e 74 61 78 20 68 61 | sure.these.are.enabled.Syntax.ha |
| 122500 | 73 20 63 68 61 6e 67 65 64 20 66 72 6f 6d 20 56 79 4f 53 20 31 2e 32 20 28 63 72 75 78 29 20 61 | s.changed.from.VyOS.1.2.(crux).a |
| 122520 | 6e 64 20 69 74 20 77 69 6c 6c 20 62 65 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 6d 69 67 72 | nd.it.will.be.automatically.migr |
| 122540 | 61 74 65 64 20 64 75 72 69 6e 67 20 61 6e 20 75 70 67 72 61 64 65 2e 00 53 79 73 63 74 6c 00 53 | ated.during.an.upgrade..Sysctl.S |
| 122560 | 79 73 6c 6f 67 00 53 79 73 6c 6f 67 20 73 75 70 70 6f 72 74 73 20 6c 6f 67 67 69 6e 67 20 74 6f | yslog.Syslog.supports.logging.to |
| 122580 | 20 6d 75 6c 74 69 70 6c 65 20 74 61 72 67 65 74 73 2c 20 74 68 6f 73 65 20 74 61 72 67 65 74 73 | .multiple.targets,.those.targets |
| 1225a0 | 20 63 6f 75 6c 64 20 62 65 20 61 20 70 6c 61 69 6e 20 66 69 6c 65 20 6f 6e 20 79 6f 75 72 20 56 | .could.be.a.plain.file.on.your.V |
| 1225c0 | 79 4f 53 20 69 6e 73 74 61 6c 6c 61 74 69 6f 6e 20 69 74 73 65 6c 66 2c 20 61 20 73 65 72 69 61 | yOS.installation.itself,.a.seria |
| 1225e0 | 6c 20 63 6f 6e 73 6f 6c 65 20 6f 72 20 61 20 72 65 6d 6f 74 65 20 73 79 73 6c 6f 67 20 73 65 72 | l.console.or.a.remote.syslog.ser |
| 122600 | 76 65 72 20 77 68 69 63 68 20 69 73 20 72 65 61 63 68 65 64 20 76 69 61 20 3a 61 62 62 72 3a 60 | ver.which.is.reached.via.:abbr:` |
| 122620 | 49 50 20 28 49 6e 74 65 72 6e 65 74 20 50 72 6f 74 6f 63 6f 6c 29 60 20 55 44 50 2f 54 43 50 2e | IP.(Internet.Protocol)`.UDP/TCP. |
| 122640 | 00 53 79 73 6c 6f 67 20 75 73 65 73 20 6c 6f 67 72 6f 74 61 74 65 20 74 6f 20 72 6f 74 61 74 65 | .Syslog.uses.logrotate.to.rotate |
| 122660 | 20 6c 6f 67 66 69 6c 65 73 20 61 66 74 65 72 20 61 20 6e 75 6d 62 65 72 20 6f 66 20 67 69 76 65 | .logfiles.after.a.number.of.give |
| 122680 | 73 20 62 79 74 65 73 2e 20 57 65 20 6b 65 65 70 20 61 73 20 6d 61 6e 79 20 61 73 20 60 3c 6e 75 | s.bytes..We.keep.as.many.as.`<nu |
| 1226a0 | 6d 62 65 72 3e 60 20 72 6f 74 61 74 65 64 20 66 69 6c 65 20 62 65 66 6f 72 65 20 74 68 65 79 20 | mber>`.rotated.file.before.they. |
| 1226c0 | 61 72 65 20 64 65 6c 65 74 65 64 20 6f 6e 20 74 68 65 20 73 79 73 74 65 6d 2e 00 53 79 73 6c 6f | are.deleted.on.the.system..Syslo |
| 1226e0 | 67 20 75 73 65 73 20 6c 6f 67 72 6f 74 61 74 65 20 74 6f 20 72 6f 74 61 74 65 20 6c 6f 67 69 6c | g.uses.logrotate.to.rotate.logil |
| 122700 | 65 73 20 61 66 74 65 72 20 61 20 6e 75 6d 62 65 72 20 6f 66 20 67 69 76 65 73 20 62 79 74 65 73 | es.after.a.number.of.gives.bytes |
| 122720 | 2e 20 57 65 20 6b 65 65 70 20 61 73 20 6d 61 6e 79 20 61 73 20 60 3c 6e 75 6d 62 65 72 3e 60 20 | ..We.keep.as.many.as.`<number>`. |
| 122740 | 72 6f 74 61 74 65 64 20 66 69 6c 65 20 62 65 66 6f 72 65 20 74 68 65 79 20 61 72 65 20 64 65 6c | rotated.file.before.they.are.del |
| 122760 | 65 74 65 64 20 6f 6e 20 74 68 65 20 73 79 73 74 65 6d 2e 00 53 79 73 6c 6f 67 20 77 69 6c 6c 20 | eted.on.the.system..Syslog.will. |
| 122780 | 77 72 69 74 65 20 60 3c 73 69 7a 65 3e 60 20 6b 69 6c 6f 62 79 74 65 73 20 69 6e 74 6f 20 74 68 | write.`<size>`.kilobytes.into.th |
| 1227a0 | 65 20 66 69 6c 65 20 73 70 65 63 69 66 69 65 64 20 62 79 20 60 3c 66 69 6c 65 6e 61 6d 65 3e 60 | e.file.specified.by.`<filename>` |
| 1227c0 | 2e 20 41 66 74 65 72 20 74 68 69 73 20 6c 69 6d 69 74 20 68 61 73 20 62 65 65 6e 20 72 65 61 63 | ..After.this.limit.has.been.reac |
| 1227e0 | 68 65 64 2c 20 74 68 65 20 63 75 73 74 6f 6d 20 66 69 6c 65 20 69 73 20 22 72 6f 74 61 74 65 64 | hed,.the.custom.file.is."rotated |
| 122800 | 22 20 62 79 20 6c 6f 67 72 6f 74 61 74 65 20 61 6e 64 20 61 20 6e 65 77 20 63 75 73 74 6f 6d 20 | ".by.logrotate.and.a.new.custom. |
| 122820 | 66 69 6c 65 20 69 73 20 63 72 65 61 74 65 64 2e 00 53 79 73 74 65 6d 00 53 79 73 74 65 6d 20 44 | file.is.created..System.System.D |
| 122840 | 4e 53 00 53 79 73 74 65 6d 20 44 69 73 70 6c 61 79 20 28 4c 43 44 29 00 53 79 73 74 65 6d 20 4e | NS.System.Display.(LCD).System.N |
| 122860 | 61 6d 65 20 61 6e 64 20 44 65 73 63 72 69 70 74 69 6f 6e 00 53 79 73 74 65 6d 20 50 72 6f 78 79 | ame.and.Description.System.Proxy |
| 122880 | 00 53 79 73 74 65 6d 20 57 69 64 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 53 79 73 74 65 | .System.Wide.configuration.Syste |
| 1228a0 | 6d 20 63 61 70 61 62 69 6c 69 74 69 65 73 20 28 73 77 69 74 63 68 69 6e 67 2c 20 72 6f 75 74 69 | m.capabilities.(switching,.routi |
| 1228c0 | 6e 67 2c 20 65 74 63 2e 29 00 53 79 73 74 65 6d 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 | ng,.etc.).System.configuration.c |
| 1228e0 | 6f 6d 6d 61 6e 64 73 00 53 79 73 74 65 6d 20 64 61 65 6d 6f 6e 73 00 53 79 73 74 65 6d 20 69 64 | ommands.System.daemons.System.id |
| 122900 | 65 6e 74 69 66 69 65 72 3a 20 60 60 31 39 32 31 2e 36 38 30 30 2e 31 30 30 32 60 60 20 2d 20 66 | entifier:.``1921.6800.1002``.-.f |
| 122920 | 6f 72 20 73 79 73 74 65 6d 20 69 64 65 6e 74 69 66 69 65 72 73 20 77 65 20 72 65 63 6f 6d 6d 65 | or.system.identifiers.we.recomme |
| 122940 | 6e 64 20 74 6f 20 75 73 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 72 20 4d 41 43 20 61 64 64 72 | nd.to.use.IP.address.or.MAC.addr |
| 122960 | 65 73 73 20 6f 66 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 2e 20 54 68 65 20 77 61 | ess.of.the.router.itself..The.wa |
| 122980 | 79 20 74 6f 20 63 6f 6e 73 74 72 75 63 74 20 74 68 69 73 20 69 73 20 74 6f 20 6b 65 65 70 20 61 | y.to.construct.this.is.to.keep.a |
| 1229a0 | 6c 6c 20 6f 66 20 74 68 65 20 7a 65 72 6f 65 73 20 6f 66 20 74 68 65 20 72 6f 75 74 65 72 20 49 | ll.of.the.zeroes.of.the.router.I |
| 1229c0 | 50 20 61 64 64 72 65 73 73 2c 20 61 6e 64 20 74 68 65 6e 20 63 68 61 6e 67 65 20 74 68 65 20 70 | P.address,.and.then.change.the.p |
| 1229e0 | 65 72 69 6f 64 73 20 66 72 6f 6d 20 62 65 69 6e 67 20 65 76 65 72 79 20 74 68 72 65 65 20 6e 75 | eriods.from.being.every.three.nu |
| 122a00 | 6d 62 65 72 73 20 74 6f 20 65 76 65 72 79 20 66 6f 75 72 20 6e 75 6d 62 65 72 73 2e 20 54 68 65 | mbers.to.every.four.numbers..The |
| 122a20 | 20 61 64 64 72 65 73 73 20 74 68 61 74 20 69 73 20 6c 69 73 74 65 64 20 68 65 72 65 20 69 73 20 | .address.that.is.listed.here.is. |
| 122a40 | 60 60 31 39 32 2e 31 36 38 2e 31 2e 32 60 60 2c 20 77 68 69 63 68 20 69 66 20 65 78 70 61 6e 64 | ``192.168.1.2``,.which.if.expand |
| 122a60 | 65 64 20 77 69 6c 6c 20 74 75 72 6e 20 69 6e 74 6f 20 60 60 31 39 32 2e 31 36 38 2e 30 30 31 2e | ed.will.turn.into.``192.168.001. |
| 122a80 | 30 30 32 60 60 2e 20 54 68 65 6e 20 61 6c 6c 20 6f 6e 65 20 68 61 73 20 74 6f 20 64 6f 20 69 73 | 002``..Then.all.one.has.to.do.is |
| 122aa0 | 20 6d 6f 76 65 20 74 68 65 20 64 6f 74 73 20 74 6f 20 68 61 76 65 20 66 6f 75 72 20 6e 75 6d 62 | .move.the.dots.to.have.four.numb |
| 122ac0 | 65 72 73 20 69 6e 73 74 65 61 64 20 6f 66 20 74 68 72 65 65 2e 20 54 68 69 73 20 67 69 76 65 73 | ers.instead.of.three..This.gives |
| 122ae0 | 20 75 73 20 60 60 31 39 32 31 2e 36 38 30 30 2e 31 30 30 32 60 60 2e 00 53 79 73 74 65 6d 20 69 | .us.``1921.6800.1002``..System.i |
| 122b00 | 64 65 6e 74 69 66 69 65 72 3a 20 60 60 31 39 32 31 2e 36 38 30 30 2e 31 30 30 32 60 60 20 2d 20 | dentifier:.``1921.6800.1002``.-. |
| 122b20 | 66 6f 72 20 73 79 73 74 65 6d 20 69 64 65 74 69 66 69 65 72 73 20 77 65 20 72 65 63 6f 6d 6d 65 | for.system.idetifiers.we.recomme |
| 122b40 | 6e 64 20 74 6f 20 75 73 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 72 20 4d 41 43 20 61 64 64 72 | nd.to.use.IP.address.or.MAC.addr |
| 122b60 | 65 73 73 20 6f 66 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 2e 20 54 68 65 20 77 61 | ess.of.the.router.itself..The.wa |
| 122b80 | 79 20 74 6f 20 63 6f 6e 73 74 72 75 63 74 20 74 68 69 73 20 69 73 20 74 6f 20 6b 65 65 70 20 61 | y.to.construct.this.is.to.keep.a |
| 122ba0 | 6c 6c 20 6f 66 20 74 68 65 20 7a 65 72 6f 65 73 20 6f 66 20 74 68 65 20 72 6f 75 74 65 72 20 49 | ll.of.the.zeroes.of.the.router.I |
| 122bc0 | 50 20 61 64 64 72 65 73 73 2c 20 61 6e 64 20 74 68 65 6e 20 63 68 61 6e 67 65 20 74 68 65 20 70 | P.address,.and.then.change.the.p |
| 122be0 | 65 72 69 6f 64 73 20 66 72 6f 6d 20 62 65 69 6e 67 20 65 76 65 72 79 20 74 68 72 65 65 20 6e 75 | eriods.from.being.every.three.nu |
| 122c00 | 6d 62 65 72 73 20 74 6f 20 65 76 65 72 79 20 66 6f 75 72 20 6e 75 6d 62 65 72 73 2e 20 54 68 65 | mbers.to.every.four.numbers..The |
| 122c20 | 20 61 64 64 72 65 73 73 20 74 68 61 74 20 69 73 20 6c 69 73 74 65 64 20 68 65 72 65 20 69 73 20 | .address.that.is.listed.here.is. |
| 122c40 | 60 60 31 39 32 2e 31 36 38 2e 31 2e 32 60 60 2c 20 77 68 69 63 68 20 69 66 20 65 78 70 61 6e 64 | ``192.168.1.2``,.which.if.expand |
| 122c60 | 65 64 20 77 69 6c 6c 20 74 75 72 6e 20 69 6e 74 6f 20 60 60 31 39 32 2e 31 36 38 2e 30 30 31 2e | ed.will.turn.into.``192.168.001. |
| 122c80 | 30 30 32 60 60 2e 20 54 68 65 6e 20 61 6c 6c 20 6f 6e 65 20 68 61 73 20 74 6f 20 64 6f 20 69 73 | 002``..Then.all.one.has.to.do.is |
| 122ca0 | 20 6d 6f 76 65 20 74 68 65 20 64 6f 74 73 20 74 6f 20 68 61 76 65 20 66 6f 75 72 20 6e 75 6d 62 | .move.the.dots.to.have.four.numb |
| 122cc0 | 65 72 73 20 69 6e 73 74 65 61 64 20 6f 66 20 74 68 72 65 65 2e 20 54 68 69 73 20 67 69 76 65 73 | ers.instead.of.three..This.gives |
| 122ce0 | 20 75 73 20 60 60 31 39 32 31 2e 36 38 30 30 2e 31 30 30 32 60 60 2e 00 53 79 73 74 65 6d 20 69 | .us.``1921.6800.1002``..System.i |
| 122d00 | 73 20 75 6e 75 73 61 62 6c 65 20 2d 20 61 20 70 61 6e 69 63 20 63 6f 6e 64 69 74 69 6f 6e 00 54 | s.unusable.-.a.panic.condition.T |
| 122d20 | 41 43 41 43 53 20 45 78 61 6d 70 6c 65 00 54 41 43 41 43 53 20 69 73 20 64 65 66 69 6e 65 64 20 | ACACS.Example.TACACS.is.defined. |
| 122d40 | 69 6e 20 3a 72 66 63 3a 60 38 39 30 37 60 2e 00 54 41 43 41 43 53 20 73 65 72 76 65 72 73 20 63 | in.:rfc:`8907`..TACACS.servers.c |
| 122d60 | 6f 75 6c 64 20 62 65 20 68 61 72 64 65 6e 65 64 20 62 79 20 6f 6e 6c 79 20 61 6c 6c 6f 77 69 6e | ould.be.hardened.by.only.allowin |
| 122d80 | 67 20 63 65 72 74 61 69 6e 20 49 50 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 63 6f 6e 6e 65 63 | g.certain.IP.addresses.to.connec |
| 122da0 | 74 2e 20 41 73 20 6f 66 20 74 68 69 73 20 74 68 65 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 | t..As.of.this.the.source.address |
| 122dc0 | 20 6f 66 20 65 61 63 68 20 54 41 43 41 43 53 20 71 75 65 72 79 20 63 61 6e 20 62 65 20 63 6f 6e | .of.each.TACACS.query.can.be.con |
| 122de0 | 66 69 67 75 72 65 64 2e 00 54 41 43 41 43 53 2b 00 54 42 44 00 54 43 50 20 26 20 55 44 50 20 73 | figured..TACACS+.TBD.TCP.&.UDP.s |
| 122e00 | 65 72 76 69 63 65 73 20 72 75 6e 6e 69 6e 67 20 69 6e 20 74 68 65 20 64 65 66 61 75 6c 74 20 56 | ervices.running.in.the.default.V |
| 122e20 | 52 46 20 63 6f 6e 74 65 78 74 20 28 69 65 2e 2c 20 6e 6f 74 20 62 6f 75 6e 64 20 74 6f 20 61 6e | RF.context.(ie.,.not.bound.to.an |
| 122e40 | 79 20 56 52 46 20 64 65 76 69 63 65 29 20 63 61 6e 20 77 6f 72 6b 20 61 63 72 6f 73 73 20 61 6c | y.VRF.device).can.work.across.al |
| 122e60 | 6c 20 56 52 46 20 64 6f 6d 61 69 6e 73 20 62 79 20 65 6e 61 62 6c 69 6e 67 20 74 68 69 73 20 6f | l.VRF.domains.by.enabling.this.o |
| 122e80 | 70 74 69 6f 6e 2e 00 54 43 50 20 63 68 65 63 6b 73 00 54 46 54 50 20 53 65 72 76 65 72 00 54 61 | ption..TCP.checks.TFTP.Server.Ta |
| 122ea0 | 67 20 69 73 20 74 68 65 20 6f 70 74 69 6f 6e 61 6c 20 70 61 72 61 6d 65 74 65 72 2e 20 49 66 20 | g.is.the.optional.parameter..If. |
| 122ec0 | 74 61 67 20 63 6f 6e 66 69 67 75 72 65 64 20 53 75 6d 6d 61 72 79 20 72 6f 75 74 65 20 77 69 6c | tag.configured.Summary.route.wil |
| 122ee0 | 6c 20 62 65 20 6f 72 69 67 69 6e 61 74 65 64 20 77 69 74 68 20 74 68 65 20 63 6f 6e 66 69 67 75 | l.be.originated.with.the.configu |
| 122f00 | 72 65 64 20 74 61 67 2e 00 54 61 73 6b 20 53 63 68 65 64 75 6c 65 72 00 54 65 6c 65 67 72 61 66 | red.tag..Task.Scheduler.Telegraf |
| 122f20 | 00 54 65 6c 65 67 72 61 66 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 73 65 6e 64 20 6c 6f | .Telegraf.can.be.used.to.send.lo |
| 122f40 | 67 73 20 74 6f 20 4c 6f 6b 69 20 75 73 69 6e 67 20 74 61 67 73 20 61 73 20 6c 61 62 65 6c 73 2e | gs.to.Loki.using.tags.as.labels. |
| 122f60 | 00 54 65 6c 65 67 72 61 66 20 6f 75 74 70 75 74 20 70 6c 75 67 69 6e 20 61 7a 75 72 65 2d 64 61 | .Telegraf.output.plugin.azure-da |
| 122f80 | 74 61 2d 65 78 70 6c 6f 72 65 72 5f 00 54 65 6c 65 67 72 61 66 20 6f 75 74 70 75 74 20 70 6c 75 | ta-explorer_.Telegraf.output.plu |
| 122fa0 | 67 69 6e 20 70 72 6f 6d 65 74 68 65 75 73 2d 63 6c 69 65 6e 74 5f 00 54 65 6c 65 67 72 61 66 20 | gin.prometheus-client_.Telegraf. |
| 122fc0 | 6f 75 74 70 75 74 20 70 6c 75 67 69 6e 20 73 70 6c 75 6e 6b 5f 2e 20 48 54 54 50 20 45 76 65 6e | output.plugin.splunk_..HTTP.Even |
| 122fe0 | 74 20 43 6f 6c 6c 65 63 74 6f 72 2e 00 54 65 6c 6c 20 50 49 4d 20 74 68 61 74 20 77 65 20 77 6f | t.Collector..Tell.PIM.that.we.wo |
| 123000 | 75 6c 64 20 6e 6f 74 20 6c 69 6b 65 20 74 6f 20 75 73 65 20 74 68 69 73 20 69 6e 74 65 72 66 61 | uld.not.like.to.use.this.interfa |
| 123020 | 63 65 20 74 6f 20 70 72 6f 63 65 73 73 20 62 6f 6f 74 73 74 72 61 70 20 6d 65 73 73 61 67 65 73 | ce.to.process.bootstrap.messages |
| 123040 | 2e 00 54 65 6c 6c 20 50 49 4d 20 74 68 61 74 20 77 65 20 77 6f 75 6c 64 20 6e 6f 74 20 6c 69 6b | ..Tell.PIM.that.we.would.not.lik |
| 123060 | 65 20 74 6f 20 75 73 65 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 70 72 6f 63 65 | e.to.use.this.interface.to.proce |
| 123080 | 73 73 20 75 6e 69 63 61 73 74 20 62 6f 6f 74 73 74 72 61 70 20 6d 65 73 73 61 67 65 73 2e 00 54 | ss.unicast.bootstrap.messages..T |
| 1230a0 | 65 6c 6c 20 68 6f 73 74 73 20 74 6f 20 75 73 65 20 74 68 65 20 61 64 6d 69 6e 69 73 74 65 72 65 | ell.hosts.to.use.the.administere |
| 1230c0 | 64 20 28 73 74 61 74 65 66 75 6c 29 20 70 72 6f 74 6f 63 6f 6c 20 28 69 2e 65 2e 20 44 48 43 50 | d.(stateful).protocol.(i.e..DHCP |
| 1230e0 | 29 20 66 6f 72 20 61 75 74 6f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 66 20 6f 74 68 65 72 | ).for.autoconfiguration.of.other |
| 123100 | 20 28 6e 6f 6e 2d 61 64 64 72 65 73 73 29 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 00 54 65 6c 6c 20 | .(non-address).information.Tell. |
| 123120 | 68 6f 73 74 73 20 74 6f 20 75 73 65 20 74 68 65 20 61 64 6d 69 6e 69 73 74 65 72 65 64 20 73 74 | hosts.to.use.the.administered.st |
| 123140 | 61 74 65 66 75 6c 20 70 72 6f 74 6f 63 6f 6c 20 28 69 2e 65 2e 20 44 48 43 50 29 20 66 6f 72 20 | ateful.protocol.(i.e..DHCP).for. |
| 123160 | 61 75 74 6f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 54 65 6c 6c 20 74 68 65 20 41 50 20 74 68 | autoconfiguration.Tell.the.AP.th |
| 123180 | 61 74 20 61 6e 74 65 6e 6e 61 20 70 6f 73 69 74 69 6f 6e 73 20 61 72 65 20 66 69 78 65 64 20 61 | at.antenna.positions.are.fixed.a |
| 1231a0 | 6e 64 20 77 69 6c 6c 20 6e 6f 74 20 63 68 61 6e 67 65 20 64 75 72 69 6e 67 20 74 68 65 20 6c 69 | nd.will.not.change.during.the.li |
| 1231c0 | 66 65 74 69 6d 65 20 6f 66 20 61 6e 20 61 73 73 6f 63 69 61 74 69 6f 6e 2e 00 54 65 6d 70 6f 72 | fetime.of.an.association..Tempor |
| 1231e0 | 61 72 79 20 64 69 73 61 62 6c 65 20 74 68 69 73 20 52 41 44 49 55 53 20 73 65 72 76 65 72 2e 00 | ary.disable.this.RADIUS.server.. |
| 123200 | 54 65 6d 70 6f 72 61 72 79 20 64 69 73 61 62 6c 65 20 74 68 69 73 20 52 41 44 49 55 53 20 73 65 | Temporary.disable.this.RADIUS.se |
| 123220 | 72 76 65 72 2e 20 49 74 20 77 6f 6e 27 74 20 62 65 20 71 75 65 72 69 65 64 2e 00 54 65 6d 70 6f | rver..It.won't.be.queried..Tempo |
| 123240 | 72 61 72 79 20 64 69 73 61 62 6c 65 20 74 68 69 73 20 54 41 43 41 43 53 20 73 65 72 76 65 72 2e | rary.disable.this.TACACS.server. |
| 123260 | 20 49 74 20 77 6f 6e 27 74 20 62 65 20 71 75 65 72 69 65 64 2e 00 54 65 72 6d 69 6e 61 74 65 20 | .It.won't.be.queried..Terminate. |
| 123280 | 53 53 4c 00 54 65 73 74 20 63 6f 6e 6e 65 63 74 69 6e 67 20 67 69 76 65 6e 20 63 6f 6e 6e 65 63 | SSL.Test.connecting.given.connec |
| 1232a0 | 74 69 6f 6e 2d 6f 72 69 65 6e 74 65 64 20 69 6e 74 65 72 66 61 63 65 2e 20 60 3c 69 6e 74 65 72 | tion-oriented.interface..`<inter |
| 1232c0 | 66 61 63 65 3e 60 20 63 61 6e 20 62 65 20 60 60 70 70 70 6f 65 30 60 60 20 61 73 20 74 68 65 20 | face>`.can.be.``pppoe0``.as.the. |
| 1232e0 | 65 78 61 6d 70 6c 65 2e 00 54 65 73 74 20 63 6f 6e 6e 65 63 74 69 6e 67 20 67 69 76 65 6e 20 63 | example..Test.connecting.given.c |
| 123300 | 6f 6e 6e 65 63 74 69 6f 6e 2d 6f 72 69 65 6e 74 65 64 20 69 6e 74 65 72 66 61 63 65 2e 20 60 3c | onnection-oriented.interface..`< |
| 123320 | 69 6e 74 65 72 66 61 63 65 3e 60 20 63 61 6e 20 62 65 20 60 60 73 73 74 70 63 30 60 60 20 61 73 | interface>`.can.be.``sstpc0``.as |
| 123340 | 20 74 68 65 20 65 78 61 6d 70 6c 65 2e 00 54 65 73 74 20 64 69 73 63 6f 6e 6e 65 63 74 69 6e 67 | .the.example..Test.disconnecting |
| 123360 | 20 67 69 76 65 6e 20 63 6f 6e 6e 65 63 74 69 6f 6e 2d 6f 72 69 65 6e 74 65 64 20 69 6e 74 65 72 | .given.connection-oriented.inter |
| 123380 | 66 61 63 65 2e 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 20 63 61 6e 20 62 65 20 60 60 70 70 70 | face..`<interface>`.can.be.``ppp |
| 1233a0 | 6f 65 30 60 60 20 61 73 20 74 68 65 20 65 78 61 6d 70 6c 65 2e 00 54 65 73 74 20 64 69 73 63 6f | oe0``.as.the.example..Test.disco |
| 1233c0 | 6e 6e 65 63 74 69 6e 67 20 67 69 76 65 6e 20 63 6f 6e 6e 65 63 74 69 6f 6e 2d 6f 72 69 65 6e 74 | nnecting.given.connection-orient |
| 1233e0 | 65 64 20 69 6e 74 65 72 66 61 63 65 2e 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 20 63 61 6e 20 | ed.interface..`<interface>`.can. |
| 123400 | 62 65 20 60 60 73 73 74 70 63 30 60 60 20 61 73 20 74 68 65 20 65 78 61 6d 70 6c 65 2e 00 54 65 | be.``sstpc0``.as.the.example..Te |
| 123420 | 73 74 20 66 72 6f 6d 20 74 68 65 20 49 50 76 36 20 6f 6e 6c 79 20 63 6c 69 65 6e 74 3a 00 54 65 | st.from.the.IPv6.only.client:.Te |
| 123440 | 73 74 69 6e 67 20 53 53 54 50 00 54 65 73 74 69 6e 67 20 61 6e 64 20 56 61 6c 69 64 61 74 69 6f | sting.SSTP.Testing.and.Validatio |
| 123460 | 6e 00 54 68 61 6e 6b 73 20 74 6f 20 74 68 69 73 20 64 69 73 63 6f 76 65 72 79 2c 20 61 6e 79 20 | n.Thanks.to.this.discovery,.any. |
| 123480 | 73 75 62 73 65 71 75 65 6e 74 20 74 72 61 66 66 69 63 20 62 65 74 77 65 65 6e 20 50 43 34 20 61 | subsequent.traffic.between.PC4.a |
| 1234a0 | 6e 64 20 50 43 35 20 77 69 6c 6c 20 6e 6f 74 20 62 65 20 75 73 69 6e 67 20 74 68 65 20 6d 75 6c | nd.PC5.will.not.be.using.the.mul |
| 1234c0 | 74 69 63 61 73 74 2d 61 64 64 72 65 73 73 20 62 65 74 77 65 65 6e 20 74 68 65 20 6c 65 61 76 65 | ticast-address.between.the.leave |
| 1234e0 | 73 20 61 73 20 74 68 65 79 20 62 6f 74 68 20 6b 6e 6f 77 20 62 65 68 69 6e 64 20 77 68 69 63 68 | s.as.they.both.know.behind.which |
| 123500 | 20 4c 65 61 66 20 74 68 65 20 50 43 73 20 61 72 65 20 63 6f 6e 6e 65 63 74 65 64 2e 20 54 68 69 | .Leaf.the.PCs.are.connected..Thi |
| 123520 | 73 20 73 61 76 65 73 20 74 72 61 66 66 69 63 20 61 73 20 6c 65 73 73 20 6d 75 6c 74 69 63 61 73 | s.saves.traffic.as.less.multicas |
| 123540 | 74 20 70 61 63 6b 65 74 73 20 73 65 6e 74 20 72 65 64 75 63 65 73 20 74 68 65 20 6c 6f 61 64 20 | t.packets.sent.reduces.the.load. |
| 123560 | 6f 6e 20 74 68 65 20 6e 65 74 77 6f 72 6b 2c 20 77 68 69 63 68 20 69 6d 70 72 6f 76 65 73 20 73 | on.the.network,.which.improves.s |
| 123580 | 63 61 6c 61 62 69 6c 69 74 79 20 77 68 65 6e 20 6d 6f 72 65 20 6c 65 61 76 65 73 20 61 72 65 20 | calability.when.more.leaves.are. |
| 1235a0 | 61 64 64 65 64 2e 00 54 68 61 74 20 69 73 20 68 6f 77 20 69 74 20 69 73 20 70 6f 73 73 69 62 6c | added..That.is.how.it.is.possibl |
| 1235c0 | 65 20 74 6f 20 64 6f 20 74 68 65 20 73 6f 2d 63 61 6c 6c 65 64 20 22 69 6e 67 72 65 73 73 20 73 | e.to.do.the.so-called."ingress.s |
| 1235e0 | 68 61 70 69 6e 67 22 2e 00 54 68 61 74 20 6c 6f 6f 6b 73 20 67 6f 6f 64 20 2d 20 77 65 20 64 65 | haping"..That.looks.good.-.we.de |
| 123600 | 66 69 6e 65 64 20 32 20 74 75 6e 6e 65 6c 73 20 61 6e 64 20 74 68 65 79 27 72 65 20 62 6f 74 68 | fined.2.tunnels.and.they're.both |
| 123620 | 20 75 70 20 61 6e 64 20 72 75 6e 6e 69 6e 67 2e 00 54 68 65 20 3a 61 62 62 72 3a 60 41 53 4e 20 | .up.and.running..The.:abbr:`ASN. |
| 123640 | 28 41 75 74 6f 6e 6f 6d 6f 75 73 20 53 79 73 74 65 6d 20 4e 75 6d 62 65 72 29 60 20 69 73 20 6f | (Autonomous.System.Number)`.is.o |
| 123660 | 6e 65 20 6f 66 20 74 68 65 20 65 73 73 65 6e 74 69 61 6c 20 65 6c 65 6d 65 6e 74 73 20 6f 66 20 | ne.of.the.essential.elements.of. |
| 123680 | 42 47 50 2e 20 42 47 50 20 69 73 20 61 20 64 69 73 74 61 6e 63 65 20 76 65 63 74 6f 72 20 72 6f | BGP..BGP.is.a.distance.vector.ro |
| 1236a0 | 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 2c 20 61 6e 64 20 74 68 65 20 41 53 2d 50 61 74 68 20 | uting.protocol,.and.the.AS-Path. |
| 1236c0 | 66 72 61 6d 65 77 6f 72 6b 20 70 72 6f 76 69 64 65 73 20 64 69 73 74 61 6e 63 65 20 76 65 63 74 | framework.provides.distance.vect |
| 1236e0 | 6f 72 20 6d 65 74 72 69 63 20 61 6e 64 20 6c 6f 6f 70 20 64 65 74 65 63 74 69 6f 6e 20 74 6f 20 | or.metric.and.loop.detection.to. |
| 123700 | 42 47 50 2e 00 54 68 65 20 3a 61 62 62 72 3a 60 44 4e 50 54 76 36 20 28 44 65 73 74 69 6e 61 74 | BGP..The.:abbr:`DNPTv6.(Destinat |
| 123720 | 69 6f 6e 20 49 50 76 36 2d 74 6f 2d 49 50 76 36 20 4e 65 74 77 6f 72 6b 20 50 72 65 66 69 78 20 | ion.IPv6-to-IPv6.Network.Prefix. |
| 123740 | 54 72 61 6e 73 6c 61 74 69 6f 6e 29 60 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 | Translation)`.destination.addres |
| 123760 | 73 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 66 75 6e 63 74 69 6f 6e 20 69 73 20 75 73 65 64 20 69 | s.translation.function.is.used.i |
| 123780 | 6e 20 73 63 65 6e 61 72 69 6f 73 20 77 68 65 72 65 20 74 68 65 20 73 65 72 76 65 72 20 69 6e 20 | n.scenarios.where.the.server.in. |
| 1237a0 | 74 68 65 20 69 6e 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 20 70 72 6f 76 69 64 65 73 20 73 65 | the.internal.network.provides.se |
| 1237c0 | 72 76 69 63 65 73 20 74 6f 20 74 68 65 20 65 78 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 2c 20 | rvices.to.the.external.network,. |
| 1237e0 | 73 75 63 68 20 61 73 20 70 72 6f 76 69 64 69 6e 67 20 57 65 62 20 73 65 72 76 69 63 65 73 20 6f | such.as.providing.Web.services.o |
| 123800 | 72 20 46 54 50 20 73 65 72 76 69 63 65 73 20 74 6f 20 74 68 65 20 65 78 74 65 72 6e 61 6c 20 6e | r.FTP.services.to.the.external.n |
| 123820 | 65 74 77 6f 72 6b 2e 20 42 79 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 74 68 65 20 6d 61 70 70 69 | etwork..By.configuring.the.mappi |
| 123840 | 6e 67 20 72 65 6c 61 74 69 6f 6e 73 68 69 70 20 62 65 74 77 65 65 6e 20 74 68 65 20 69 6e 74 65 | ng.relationship.between.the.inte |
| 123860 | 72 6e 61 6c 20 73 65 72 76 65 72 20 61 64 64 72 65 73 73 20 61 6e 64 20 74 68 65 20 65 78 74 65 | rnal.server.address.and.the.exte |
| 123880 | 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 20 61 64 64 72 65 73 73 20 6f 6e 20 74 68 65 20 65 78 74 65 | rnal.network.address.on.the.exte |
| 1238a0 | 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 20 73 69 64 65 20 69 6e 74 65 72 66 61 63 65 20 6f 66 20 74 | rnal.network.side.interface.of.t |
| 1238c0 | 68 65 20 4e 41 54 36 36 20 64 65 76 69 63 65 2c 20 65 78 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 | he.NAT66.device,.external.networ |
| 1238e0 | 6b 20 75 73 65 72 73 20 63 61 6e 20 61 63 63 65 73 73 20 74 68 65 20 69 6e 74 65 72 6e 61 6c 20 | k.users.can.access.the.internal. |
| 123900 | 6e 65 74 77 6f 72 6b 20 73 65 72 76 65 72 20 74 68 72 6f 75 67 68 20 74 68 65 20 64 65 73 69 67 | network.server.through.the.desig |
| 123920 | 6e 61 74 65 64 20 65 78 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 20 61 64 64 72 65 73 73 2e 00 | nated.external.network.address.. |
| 123940 | 54 68 65 20 3a 61 62 62 72 3a 60 4d 50 4c 53 20 28 4d 75 6c 74 69 2d 50 72 6f 74 6f 63 6f 6c 20 | The.:abbr:`MPLS.(Multi-Protocol. |
| 123960 | 4c 61 62 65 6c 20 53 77 69 74 63 68 69 6e 67 29 60 20 61 72 63 68 69 74 65 63 74 75 72 65 20 64 | Label.Switching)`.architecture.d |
| 123980 | 6f 65 73 20 6e 6f 74 20 61 73 73 75 6d 65 20 61 20 73 69 6e 67 6c 65 20 70 72 6f 74 6f 63 6f 6c | oes.not.assume.a.single.protocol |
| 1239a0 | 20 74 6f 20 63 72 65 61 74 65 20 4d 50 4c 53 20 70 61 74 68 73 2e 20 56 79 4f 53 20 73 75 70 70 | .to.create.MPLS.paths..VyOS.supp |
| 1239c0 | 6f 72 74 73 20 74 68 65 20 4c 61 62 65 6c 20 44 69 73 74 72 69 62 75 74 69 6f 6e 20 50 72 6f 74 | orts.the.Label.Distribution.Prot |
| 1239e0 | 6f 63 6f 6c 20 28 4c 44 50 29 20 61 73 20 69 6d 70 6c 65 6d 65 6e 74 65 64 20 62 79 20 46 52 52 | ocol.(LDP).as.implemented.by.FRR |
| 123a00 | 2c 20 62 61 73 65 64 20 6f 6e 20 3a 72 66 63 3a 60 35 30 33 36 60 2e 00 54 68 65 20 3a 61 62 62 | ,.based.on.:rfc:`5036`..The.:abb |
| 123a20 | 72 3a 60 57 4c 41 4e 20 28 57 69 72 65 6c 65 73 73 20 4c 41 4e 29 60 20 69 6e 74 65 72 66 61 63 | r:`WLAN.(Wireless.LAN)`.interfac |
| 123a40 | 65 20 70 72 6f 76 69 64 65 73 20 38 30 32 2e 31 31 20 28 61 2f 62 2f 67 2f 6e 2f 61 63 29 20 77 | e.provides.802.11.(a/b/g/n/ac).w |
| 123a60 | 69 72 65 6c 65 73 73 20 73 75 70 70 6f 72 74 20 28 63 6f 6d 6d 6f 6e 6c 79 20 72 65 66 65 72 72 | ireless.support.(commonly.referr |
| 123a80 | 65 64 20 74 6f 20 61 73 20 57 69 2d 46 69 29 20 62 79 20 6d 65 61 6e 73 20 6f 66 20 63 6f 6d 70 | ed.to.as.Wi-Fi).by.means.of.comp |
| 123aa0 | 61 74 69 62 6c 65 20 68 61 72 64 77 61 72 65 2e 20 49 66 20 79 6f 75 72 20 68 61 72 64 77 61 72 | atible.hardware..If.your.hardwar |
| 123ac0 | 65 20 73 75 70 70 6f 72 74 73 20 69 74 2c 20 56 79 4f 53 20 73 75 70 70 6f 72 74 73 20 6d 75 6c | e.supports.it,.VyOS.supports.mul |
| 123ae0 | 74 69 70 6c 65 20 6c 6f 67 69 63 61 6c 20 77 69 72 65 6c 65 73 73 20 69 6e 74 65 72 66 61 63 65 | tiple.logical.wireless.interface |
| 123b00 | 73 20 70 65 72 20 70 68 79 73 69 63 61 6c 20 64 65 76 69 63 65 2e 00 54 68 65 20 3a 72 65 66 3a | s.per.physical.device..The.:ref: |
| 123b20 | 60 73 6f 75 72 63 65 2d 6e 61 74 36 36 60 20 72 75 6c 65 20 72 65 70 6c 61 63 65 73 20 74 68 65 | `source-nat66`.rule.replaces.the |
| 123b40 | 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 70 61 63 6b 65 74 20 61 6e | .source.address.of.the.packet.an |
| 123b60 | 64 20 63 61 6c 63 75 6c 61 74 65 73 20 74 68 65 20 63 6f 6e 76 65 72 74 65 64 20 61 64 64 72 65 | d.calculates.the.converted.addre |
| 123b80 | 73 73 20 75 73 69 6e 67 20 74 68 65 20 70 72 65 66 69 78 20 73 70 65 63 69 66 69 65 64 20 69 6e | ss.using.the.prefix.specified.in |
| 123ba0 | 20 74 68 65 20 72 75 6c 65 2e 00 54 68 65 20 41 52 50 20 6d 6f 6e 69 74 6f 72 20 77 6f 72 6b 73 | .the.rule..The.ARP.monitor.works |
| 123bc0 | 20 62 79 20 70 65 72 69 6f 64 69 63 61 6c 6c 79 20 63 68 65 63 6b 69 6e 67 20 74 68 65 20 73 6c | .by.periodically.checking.the.sl |
| 123be0 | 61 76 65 20 64 65 76 69 63 65 73 20 74 6f 20 64 65 74 65 72 6d 69 6e 65 20 77 68 65 74 68 65 72 | ave.devices.to.determine.whether |
| 123c00 | 20 74 68 65 79 20 68 61 76 65 20 73 65 6e 74 20 6f 72 20 72 65 63 65 69 76 65 64 20 74 72 61 66 | .they.have.sent.or.received.traf |
| 123c20 | 66 69 63 20 72 65 63 65 6e 74 6c 79 20 28 74 68 65 20 70 72 65 63 69 73 65 20 63 72 69 74 65 72 | fic.recently.(the.precise.criter |
| 123c40 | 69 61 20 64 65 70 65 6e 64 73 20 75 70 6f 6e 20 74 68 65 20 62 6f 6e 64 69 6e 67 20 6d 6f 64 65 | ia.depends.upon.the.bonding.mode |
| 123c60 | 2c 20 61 6e 64 20 74 68 65 20 73 74 61 74 65 20 6f 66 20 74 68 65 20 73 6c 61 76 65 29 2e 20 52 | ,.and.the.state.of.the.slave)..R |
| 123c80 | 65 67 75 6c 61 72 20 74 72 61 66 66 69 63 20 69 73 20 67 65 6e 65 72 61 74 65 64 20 76 69 61 20 | egular.traffic.is.generated.via. |
| 123ca0 | 41 52 50 20 70 72 6f 62 65 73 20 69 73 73 75 65 64 20 66 6f 72 20 74 68 65 20 61 64 64 72 65 73 | ARP.probes.issued.for.the.addres |
| 123cc0 | 73 65 73 20 73 70 65 63 69 66 69 65 64 20 62 79 20 74 68 65 20 3a 63 66 67 63 6d 64 3a 60 61 72 | ses.specified.by.the.:cfgcmd:`ar |
| 123ce0 | 70 2d 6d 6f 6e 69 74 6f 72 20 74 61 72 67 65 74 60 20 6f 70 74 69 6f 6e 2e 00 54 68 65 20 41 53 | p-monitor.target`.option..The.AS |
| 123d00 | 50 20 68 61 73 20 64 6f 63 75 6d 65 6e 74 65 64 20 74 68 65 69 72 20 49 50 53 65 63 20 72 65 71 | P.has.documented.their.IPSec.req |
| 123d20 | 75 69 72 65 6d 65 6e 74 73 3a 00 54 68 65 20 42 47 50 20 72 6f 75 74 65 72 20 63 61 6e 20 63 6f | uirements:.The.BGP.router.can.co |
| 123d40 | 6e 6e 65 63 74 20 74 6f 20 6f 6e 65 20 6f 72 20 6d 6f 72 65 20 52 50 4b 49 20 63 61 63 68 65 20 | nnect.to.one.or.more.RPKI.cache. |
| 123d60 | 73 65 72 76 65 72 73 20 74 6f 20 72 65 63 65 69 76 65 20 76 61 6c 69 64 61 74 65 64 20 70 72 65 | servers.to.receive.validated.pre |
| 123d80 | 66 69 78 20 74 6f 20 6f 72 69 67 69 6e 20 41 53 20 6d 61 70 70 69 6e 67 73 2e 20 41 64 76 61 6e | fix.to.origin.AS.mappings..Advan |
| 123da0 | 63 65 64 20 66 61 69 6c 6f 76 65 72 20 63 61 6e 20 62 65 20 69 6d 70 6c 65 6d 65 6e 74 65 64 20 | ced.failover.can.be.implemented. |
| 123dc0 | 62 79 20 73 65 72 76 65 72 20 73 6f 63 6b 65 74 73 20 77 69 74 68 20 64 69 66 66 65 72 65 6e 74 | by.server.sockets.with.different |
| 123de0 | 20 70 72 65 66 65 72 65 6e 63 65 20 76 61 6c 75 65 73 2e 00 54 68 65 20 43 4c 49 20 63 6f 6e 66 | .preference.values..The.CLI.conf |
| 123e00 | 69 67 75 72 61 74 69 6f 6e 20 69 73 20 73 61 6d 65 20 61 73 20 6d 65 6e 74 69 6f 6e 65 64 20 69 | iguration.is.same.as.mentioned.i |
| 123e20 | 6e 20 61 62 6f 76 65 20 61 72 74 69 63 6c 65 73 2e 20 54 68 65 20 6f 6e 6c 79 20 64 69 66 66 65 | n.above.articles..The.only.diffe |
| 123e40 | 72 65 6e 63 65 20 69 73 2c 20 74 68 61 74 20 65 61 63 68 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 | rence.is,.that.each.routing.prot |
| 123e60 | 6f 63 6f 6c 20 75 73 65 64 2c 20 6d 75 73 74 20 62 65 20 70 72 65 66 69 78 65 64 20 77 69 74 68 | ocol.used,.must.be.prefixed.with |
| 123e80 | 20 74 68 65 20 60 76 72 66 20 6e 61 6d 65 20 3c 6e 61 6d 65 3e 60 20 63 6f 6d 6d 61 6e 64 2e 00 | .the.`vrf.name.<name>`.command.. |
| 123ea0 | 54 68 65 20 43 4c 4e 53 20 61 64 64 72 65 73 73 20 63 6f 6e 73 69 73 74 73 20 6f 66 20 74 68 65 | The.CLNS.address.consists.of.the |
| 123ec0 | 20 66 6f 6c 6c 6f 77 69 6e 67 20 70 61 72 74 73 3a 00 54 68 65 20 44 46 20 70 72 65 66 65 72 65 | .following.parts:.The.DF.prefere |
| 123ee0 | 6e 63 65 20 69 73 20 63 6f 6e 66 69 67 75 72 61 62 6c 65 20 70 65 72 2d 45 53 2e 00 54 68 65 20 | nce.is.configurable.per-ES..The. |
| 123f00 | 44 48 43 50 20 75 6e 69 71 75 65 20 69 64 65 6e 74 69 66 69 65 72 20 28 44 55 49 44 29 20 69 73 | DHCP.unique.identifier.(DUID).is |
| 123f20 | 20 75 73 65 64 20 62 79 20 61 20 63 6c 69 65 6e 74 20 74 6f 20 67 65 74 20 61 6e 20 49 50 20 61 | .used.by.a.client.to.get.an.IP.a |
| 123f40 | 64 64 72 65 73 73 20 66 72 6f 6d 20 61 20 44 48 43 50 76 36 20 73 65 72 76 65 72 2e 20 49 74 20 | ddress.from.a.DHCPv6.server..It. |
| 123f60 | 68 61 73 20 61 20 32 2d 62 79 74 65 20 44 55 49 44 20 74 79 70 65 20 66 69 65 6c 64 2c 20 61 6e | has.a.2-byte.DUID.type.field,.an |
| 123f80 | 64 20 61 20 76 61 72 69 61 62 6c 65 2d 6c 65 6e 67 74 68 20 69 64 65 6e 74 69 66 69 65 72 20 66 | d.a.variable-length.identifier.f |
| 123fa0 | 69 65 6c 64 20 75 70 20 74 6f 20 31 32 38 20 62 79 74 65 73 2e 20 49 74 73 20 61 63 74 75 61 6c | ield.up.to.128.bytes..Its.actual |
| 123fc0 | 20 6c 65 6e 67 74 68 20 64 65 70 65 6e 64 73 20 6f 6e 20 69 74 73 20 74 79 70 65 2e 20 54 68 65 | .length.depends.on.its.type..The |
| 123fe0 | 20 73 65 72 76 65 72 20 63 6f 6d 70 61 72 65 73 20 74 68 65 20 44 55 49 44 20 77 69 74 68 20 69 | .server.compares.the.DUID.with.i |
| 124000 | 74 73 20 64 61 74 61 62 61 73 65 20 61 6e 64 20 64 65 6c 69 76 65 72 73 20 63 6f 6e 66 69 67 75 | ts.database.and.delivers.configu |
| 124020 | 72 61 74 69 6f 6e 20 64 61 74 61 20 28 61 64 64 72 65 73 73 2c 20 6c 65 61 73 65 20 74 69 6d 65 | ration.data.(address,.lease.time |
| 124040 | 73 2c 20 44 4e 53 20 73 65 72 76 65 72 73 2c 20 65 74 63 2e 29 20 74 6f 20 74 68 65 20 63 6c 69 | s,.DNS.servers,.etc.).to.the.cli |
| 124060 | 65 6e 74 2e 00 54 68 65 20 44 4e 20 61 6e 64 20 70 61 73 73 77 6f 72 64 20 74 6f 20 62 69 6e 64 | ent..The.DN.and.password.to.bind |
| 124080 | 20 61 73 20 77 68 69 6c 65 20 70 65 72 66 6f 72 6d 69 6e 67 20 73 65 61 72 63 68 65 73 2e 00 54 | .as.while.performing.searches..T |
| 1240a0 | 68 65 20 44 4e 20 61 6e 64 20 70 61 73 73 77 6f 72 64 20 74 6f 20 62 69 6e 64 20 61 73 20 77 68 | he.DN.and.password.to.bind.as.wh |
| 1240c0 | 69 6c 65 20 70 65 72 66 6f 72 6d 69 6e 67 20 73 65 61 72 63 68 65 73 2e 20 41 73 20 74 68 65 20 | ile.performing.searches..As.the. |
| 1240e0 | 70 61 73 73 77 6f 72 64 20 6e 65 65 64 73 20 74 6f 20 62 65 20 70 72 69 6e 74 65 64 20 69 6e 20 | password.needs.to.be.printed.in. |
| 124100 | 70 6c 61 69 6e 20 74 65 78 74 20 69 6e 20 79 6f 75 72 20 53 71 75 69 64 20 63 6f 6e 66 69 67 75 | plain.text.in.your.Squid.configu |
| 124120 | 72 61 74 69 6f 6e 20 69 74 20 69 73 20 73 74 72 6f 6e 67 6c 79 20 72 65 63 6f 6d 6d 65 6e 64 65 | ration.it.is.strongly.recommende |
| 124140 | 64 20 74 6f 20 75 73 65 20 61 20 61 63 63 6f 75 6e 74 20 77 69 74 68 20 6d 69 6e 69 6d 61 6c 20 | d.to.use.a.account.with.minimal. |
| 124160 | 61 73 73 6f 63 69 61 74 65 64 20 70 72 69 76 69 6c 65 67 65 73 2e 20 54 68 69 73 20 74 6f 20 6c | associated.privileges..This.to.l |
| 124180 | 69 6d 69 74 20 74 68 65 20 64 61 6d 61 67 65 20 69 6e 20 63 61 73 65 20 73 6f 6d 65 6f 6e 65 20 | imit.the.damage.in.case.someone. |
| 1241a0 | 63 6f 75 6c 64 20 67 65 74 20 68 6f 6c 64 20 6f 66 20 61 20 63 6f 70 79 20 6f 66 20 79 6f 75 72 | could.get.hold.of.a.copy.of.your |
| 1241c0 | 20 53 71 75 69 64 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 69 6c 65 2e 00 54 68 65 20 46 | .Squid.configuration.file..The.F |
| 1241e0 | 51 2d 43 6f 44 65 6c 20 70 6f 6c 69 63 79 20 64 69 73 74 72 69 62 75 74 65 73 20 74 68 65 20 74 | Q-CoDel.policy.distributes.the.t |
| 124200 | 72 61 66 66 69 63 20 69 6e 74 6f 20 31 30 32 34 20 46 49 46 4f 20 71 75 65 75 65 73 20 61 6e 64 | raffic.into.1024.FIFO.queues.and |
| 124220 | 20 74 72 69 65 73 20 74 6f 20 70 72 6f 76 69 64 65 20 67 6f 6f 64 20 73 65 72 76 69 63 65 20 62 | .tries.to.provide.good.service.b |
| 124240 | 65 74 77 65 65 6e 20 61 6c 6c 20 6f 66 20 74 68 65 6d 2e 20 49 74 20 61 6c 73 6f 20 74 72 69 65 | etween.all.of.them..It.also.trie |
| 124260 | 73 20 74 6f 20 6b 65 65 70 20 74 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 61 6c 6c 20 74 68 65 20 | s.to.keep.the.length.of.all.the. |
| 124280 | 71 75 65 75 65 73 20 73 68 6f 72 74 2e 00 54 68 65 20 48 54 54 50 20 73 65 72 76 69 63 65 20 6c | queues.short..The.HTTP.service.l |
| 1242a0 | 69 73 74 65 6e 20 6f 6e 20 54 43 50 20 70 6f 72 74 20 38 30 2e 00 54 68 65 20 49 50 20 61 64 64 | isten.on.TCP.port.80..The.IP.add |
| 1242c0 | 72 65 73 73 20 6f 66 20 74 68 65 20 69 6e 74 65 72 6e 61 6c 20 73 79 73 74 65 6d 20 77 65 20 77 | ress.of.the.internal.system.we.w |
| 1242e0 | 69 73 68 20 74 6f 20 66 6f 72 77 61 72 64 20 74 72 61 66 66 69 63 20 74 6f 2e 00 54 68 65 20 49 | ish.to.forward.traffic.to..The.I |
| 124300 | 6e 74 65 6c 20 41 58 32 30 30 20 63 61 72 64 20 64 6f 65 73 20 6e 6f 74 20 77 6f 72 6b 20 6f 75 | ntel.AX200.card.does.not.work.ou |
| 124320 | 74 20 6f 66 20 74 68 65 20 62 6f 78 20 69 6e 20 41 50 20 6d 6f 64 65 2c 20 73 65 65 20 68 74 74 | t.of.the.box.in.AP.mode,.see.htt |
| 124340 | 70 73 3a 2f 2f 75 6e 69 78 2e 73 74 61 63 6b 65 78 63 68 61 6e 67 65 2e 63 6f 6d 2f 71 75 65 73 | ps://unix.stackexchange.com/ques |
| 124360 | 74 69 6f 6e 73 2f 35 39 38 32 37 35 2f 69 6e 74 65 6c 2d 61 78 32 30 30 2d 61 70 2d 6d 6f 64 65 | tions/598275/intel-ax200-ap-mode |
| 124380 | 2e 20 59 6f 75 20 63 61 6e 20 73 74 69 6c 6c 20 70 75 74 20 74 68 69 73 20 63 61 72 64 20 69 6e | ..You.can.still.put.this.card.in |
| 1243a0 | 74 6f 20 41 50 20 6d 6f 64 65 20 75 73 69 6e 67 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 | to.AP.mode.using.the.following.c |
| 1243c0 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 00 54 68 65 20 4f 49 44 20 60 60 2e 31 2e 33 2e 36 2e 31 | onfiguration:.The.OID.``.1.3.6.1 |
| 1243e0 | 2e 34 2e 31 2e 38 30 37 32 2e 31 2e 33 2e 32 2e 33 2e 31 2e 31 2e 34 2e 31 31 36 2e 31 30 31 2e | .4.1.8072.1.3.2.3.1.1.4.116.101. |
| 124400 | 31 31 35 2e 31 31 36 60 60 2c 20 6f 6e 63 65 20 63 61 6c 6c 65 64 2c 20 77 69 6c 6c 20 63 6f 6e | 115.116``,.once.called,.will.con |
| 124420 | 74 61 69 6e 20 74 68 65 20 6f 75 74 70 75 74 20 6f 66 20 74 68 65 20 65 78 74 65 6e 73 69 6f 6e | tain.the.output.of.the.extension |
| 124440 | 2e 00 54 68 65 20 50 6f 69 6e 74 2d 74 6f 2d 50 6f 69 6e 74 20 54 75 6e 6e 65 6c 69 6e 67 20 50 | ..The.Point-to-Point.Tunneling.P |
| 124460 | 72 6f 74 6f 63 6f 6c 20 28 50 50 54 50 5f 29 20 68 61 73 20 62 65 65 6e 20 69 6d 70 6c 65 6d 65 | rotocol.(PPTP_).has.been.impleme |
| 124480 | 6e 74 65 64 20 69 6e 20 56 79 4f 53 20 6f 6e 6c 79 20 66 6f 72 20 62 61 63 6b 77 61 72 64 73 20 | nted.in.VyOS.only.for.backwards. |
| 1244a0 | 63 6f 6d 70 61 74 69 62 69 6c 69 74 79 2e 20 50 50 54 50 20 68 61 73 20 6d 61 6e 79 20 77 65 6c | compatibility..PPTP.has.many.wel |
| 1244c0 | 6c 20 6b 6e 6f 77 6e 20 73 65 63 75 72 69 74 79 20 69 73 73 75 65 73 20 61 6e 64 20 79 6f 75 20 | l.known.security.issues.and.you. |
| 1244e0 | 73 68 6f 75 6c 64 20 75 73 65 20 6f 6e 65 20 6f 66 20 74 68 65 20 6d 61 6e 79 20 6f 74 68 65 72 | should.use.one.of.the.many.other |
| 124500 | 20 6e 65 77 20 56 50 4e 20 69 6d 70 6c 65 6d 65 6e 74 61 74 69 6f 6e 73 2e 00 54 68 65 20 50 6f | .new.VPN.implementations..The.Po |
| 124520 | 77 65 72 44 4e 53 20 72 65 63 75 72 73 6f 72 20 68 61 73 20 35 20 64 69 66 66 65 72 65 6e 74 20 | werDNS.recursor.has.5.different. |
| 124540 | 6c 65 76 65 6c 73 20 6f 66 20 44 4e 53 53 45 43 20 70 72 6f 63 65 73 73 69 6e 67 2c 20 77 68 69 | levels.of.DNSSEC.processing,.whi |
| 124560 | 63 68 20 63 61 6e 20 62 65 20 73 65 74 20 77 69 74 68 20 74 68 65 20 64 6e 73 73 65 63 20 73 65 | ch.can.be.set.with.the.dnssec.se |
| 124580 | 74 74 69 6e 67 2e 20 49 6e 20 6f 72 64 65 72 20 66 72 6f 6d 20 6c 65 61 73 74 20 74 6f 20 6d 6f | tting..In.order.from.least.to.mo |
| 1245a0 | 73 74 20 70 72 6f 63 65 73 73 69 6e 67 2c 20 74 68 65 73 65 20 61 72 65 3a 00 54 68 65 20 50 72 | st.processing,.these.are:.The.Pr |
| 1245c0 | 65 63 69 73 69 6f 6e 20 54 69 6d 65 20 50 72 6f 74 6f 63 6f 6c 20 28 49 45 45 45 20 31 35 38 38 | ecision.Time.Protocol.(IEEE.1588 |
| 1245e0 | 29 20 69 73 20 61 20 6c 6f 63 61 6c 20 6e 65 74 77 6f 72 6b 20 74 69 6d 65 20 73 79 6e 63 68 72 | ).is.a.local.network.time.synchr |
| 124600 | 6f 6e 69 7a 61 74 69 6f 6e 20 70 72 6f 74 6f 63 6f 6c 20 74 68 61 74 20 70 72 6f 76 69 64 65 73 | onization.protocol.that.provides |
| 124620 | 20 68 69 67 68 20 70 72 65 63 69 73 69 6f 6e 20 74 69 6d 65 20 73 79 6e 63 68 72 6f 6e 69 7a 61 | .high.precision.time.synchroniza |
| 124640 | 74 69 6f 6e 20 62 79 20 6c 65 76 65 72 61 67 69 6e 67 20 68 61 72 64 77 61 72 65 20 63 6c 6f 63 | tion.by.leveraging.hardware.cloc |
| 124660 | 6b 73 20 69 6e 20 4e 49 43 73 20 61 6e 64 20 6f 74 68 65 72 20 6e 65 74 77 6f 72 6b 20 65 6c 65 | ks.in.NICs.and.other.network.ele |
| 124680 | 6d 65 6e 74 73 2e 20 56 79 4f 53 20 64 6f 65 73 20 6e 6f 74 20 63 75 72 72 65 6e 74 6c 79 20 73 | ments..VyOS.does.not.currently.s |
| 1246a0 | 75 70 70 6f 72 74 20 73 74 61 6e 64 61 72 64 73 2d 62 61 73 65 64 20 50 54 50 2c 20 77 68 69 63 | upport.standards-based.PTP,.whic |
| 1246c0 | 68 20 63 61 6e 20 62 65 20 64 65 70 6c 6f 79 65 64 20 69 6e 64 65 70 65 6e 64 65 6e 74 6c 79 20 | h.can.be.deployed.independently. |
| 1246e0 | 6f 66 20 4e 54 50 2e 00 54 68 65 20 50 72 69 6f 72 69 74 79 20 51 75 65 75 65 20 69 73 20 61 20 | of.NTP..The.Priority.Queue.is.a. |
| 124700 | 63 6c 61 73 73 66 75 6c 20 73 63 68 65 64 75 6c 69 6e 67 20 70 6f 6c 69 63 79 2e 20 49 74 20 64 | classful.scheduling.policy..It.d |
| 124720 | 6f 65 73 20 6e 6f 74 20 64 65 6c 61 79 20 70 61 63 6b 65 74 73 20 28 50 72 69 6f 72 69 74 79 20 | oes.not.delay.packets.(Priority. |
| 124740 | 51 75 65 75 65 20 69 73 20 6e 6f 74 20 61 20 73 68 61 70 69 6e 67 20 70 6f 6c 69 63 79 29 2c 20 | Queue.is.not.a.shaping.policy),. |
| 124760 | 69 74 20 73 69 6d 70 6c 79 20 64 65 71 75 65 75 65 73 20 70 61 63 6b 65 74 73 20 61 63 63 6f 72 | it.simply.dequeues.packets.accor |
| 124780 | 64 69 6e 67 20 74 6f 20 74 68 65 69 72 20 70 72 69 6f 72 69 74 79 2e 00 54 68 65 20 52 41 44 49 | ding.to.their.priority..The.RADI |
| 1247a0 | 55 53 20 61 63 63 6f 75 6e 74 69 6e 67 20 66 65 61 74 75 72 65 20 6d 75 73 74 20 62 65 20 75 73 | US.accounting.feature.must.be.us |
| 1247c0 | 65 64 20 77 69 74 68 20 74 68 65 20 4f 70 65 6e 43 6f 6e 6e 65 63 74 20 61 75 74 68 65 6e 74 69 | ed.with.the.OpenConnect.authenti |
| 1247e0 | 63 61 74 69 6f 6e 20 6d 6f 64 65 20 52 41 44 49 55 53 2e 20 49 74 20 63 61 6e 6e 6f 74 20 62 65 | cation.mode.RADIUS..It.cannot.be |
| 124800 | 20 75 73 65 64 20 77 69 74 68 20 6c 6f 63 61 6c 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2e | .used.with.local.authentication. |
| 124820 | 20 59 6f 75 20 6d 75 73 74 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 4f 70 65 6e 43 6f 6e 6e | .You.must.configure.the.OpenConn |
| 124840 | 65 63 74 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6d 6f 64 65 20 74 6f 20 22 72 61 64 69 | ect.authentication.mode.to."radi |
| 124860 | 75 73 22 2e 00 54 68 65 20 52 41 44 49 55 53 20 64 69 63 74 69 6f 6e 61 72 69 65 73 20 69 6e 20 | us"..The.RADIUS.dictionaries.in. |
| 124880 | 56 79 4f 53 20 61 72 65 20 6c 6f 63 61 74 65 64 20 61 74 20 60 60 2f 75 73 72 2f 73 68 61 72 65 | VyOS.are.located.at.``/usr/share |
| 1248a0 | 2f 61 63 63 65 6c 2d 70 70 70 2f 72 61 64 69 75 73 2f 60 60 00 54 68 65 20 53 52 20 73 65 67 6d | /accel-ppp/radius/``.The.SR.segm |
| 1248c0 | 65 6e 74 73 20 61 72 65 20 70 6f 72 74 69 6f 6e 73 20 6f 66 20 74 68 65 20 6e 65 74 77 6f 72 6b | ents.are.portions.of.the.network |
| 1248e0 | 20 70 61 74 68 20 74 61 6b 65 6e 20 62 79 20 74 68 65 20 70 61 63 6b 65 74 2c 20 61 6e 64 20 61 | .path.taken.by.the.packet,.and.a |
| 124900 | 72 65 20 63 61 6c 6c 65 64 20 53 49 44 73 2e 20 41 74 20 65 61 63 68 20 6e 6f 64 65 2c 20 74 68 | re.called.SIDs..At.each.node,.th |
| 124920 | 65 20 66 69 72 73 74 20 53 49 44 20 6f 66 20 74 68 65 20 6c 69 73 74 20 69 73 20 72 65 61 64 2c | e.first.SID.of.the.list.is.read, |
| 124940 | 20 65 78 65 63 75 74 65 64 20 61 73 20 61 20 66 6f 72 77 61 72 64 69 6e 67 20 66 75 6e 63 74 69 | .executed.as.a.forwarding.functi |
| 124960 | 6f 6e 2c 20 61 6e 64 20 6d 61 79 20 62 65 20 70 6f 70 70 65 64 20 74 6f 20 6c 65 74 20 74 68 65 | on,.and.may.be.popped.to.let.the |
| 124980 | 20 6e 65 78 74 20 6e 6f 64 65 20 72 65 61 64 20 74 68 65 20 6e 65 78 74 20 53 49 44 20 6f 66 20 | .next.node.read.the.next.SID.of. |
| 1249a0 | 74 68 65 20 6c 69 73 74 2e 20 54 68 65 20 53 49 44 20 6c 69 73 74 20 63 6f 6d 70 6c 65 74 65 6c | the.list..The.SID.list.completel |
| 1249c0 | 79 20 64 65 74 65 72 6d 69 6e 65 73 20 74 68 65 20 70 61 74 68 20 77 68 65 72 65 20 74 68 65 20 | y.determines.the.path.where.the. |
| 1249e0 | 70 61 63 6b 65 74 20 69 73 20 66 6f 72 77 61 72 64 65 64 2e 00 54 68 65 20 53 68 61 70 65 72 20 | packet.is.forwarded..The.Shaper. |
| 124a00 | 70 6f 6c 69 63 79 20 64 6f 65 73 20 6e 6f 74 20 67 75 61 72 61 6e 74 65 65 20 61 20 6c 6f 77 20 | policy.does.not.guarantee.a.low. |
| 124a20 | 64 65 6c 61 79 2c 20 62 75 74 20 69 74 20 64 6f 65 73 20 67 75 61 72 61 6e 74 65 65 20 62 61 6e | delay,.but.it.does.guarantee.ban |
| 124a40 | 64 77 69 64 74 68 20 74 6f 20 64 69 66 66 65 72 65 6e 74 20 74 72 61 66 66 69 63 20 63 6c 61 73 | dwidth.to.different.traffic.clas |
| 124a60 | 73 65 73 20 61 6e 64 20 61 6c 73 6f 20 6c 65 74 73 20 79 6f 75 20 64 65 63 69 64 65 20 68 6f 77 | ses.and.also.lets.you.decide.how |
| 124a80 | 20 74 6f 20 61 6c 6c 6f 63 61 74 65 20 6d 6f 72 65 20 74 72 61 66 66 69 63 20 6f 6e 63 65 20 74 | .to.allocate.more.traffic.once.t |
| 124aa0 | 68 65 20 67 75 61 72 61 6e 74 65 65 73 20 61 72 65 20 6d 65 74 2e 00 54 68 65 20 55 44 50 20 70 | he.guarantees.are.met..The.UDP.p |
| 124ac0 | 6f 72 74 20 6e 75 6d 62 65 72 20 75 73 65 64 20 62 79 20 79 6f 75 72 20 61 70 6c 6c 69 63 61 74 | ort.number.used.by.your.apllicat |
| 124ae0 | 69 6f 6e 2e 20 49 74 20 69 73 20 6d 61 6e 64 61 74 6f 72 79 20 66 6f 72 20 74 68 69 73 20 6b 69 | ion..It.is.mandatory.for.this.ki |
| 124b00 | 6e 64 20 6f 66 20 6f 70 65 72 61 74 69 6f 6e 2e 00 54 68 65 20 55 44 50 20 70 6f 72 74 20 6e 75 | nd.of.operation..The.UDP.port.nu |
| 124b20 | 6d 62 65 72 20 75 73 65 64 20 62 79 20 79 6f 75 72 20 61 70 70 6c 69 63 61 74 69 6f 6e 2e 20 49 | mber.used.by.your.application..I |
| 124b40 | 74 20 69 73 20 6d 61 6e 64 61 74 6f 72 79 20 66 6f 72 20 74 68 69 73 20 6b 69 6e 64 20 6f 66 20 | t.is.mandatory.for.this.kind.of. |
| 124b60 | 6f 70 65 72 61 74 69 6f 6e 2e 00 54 68 65 20 56 58 4c 41 4e 20 73 70 65 63 69 66 69 63 61 74 69 | operation..The.VXLAN.specificati |
| 124b80 | 6f 6e 20 77 61 73 20 6f 72 69 67 69 6e 61 6c 6c 79 20 63 72 65 61 74 65 64 20 62 79 20 56 4d 77 | on.was.originally.created.by.VMw |
| 124ba0 | 61 72 65 2c 20 41 72 69 73 74 61 20 4e 65 74 77 6f 72 6b 73 20 61 6e 64 20 43 69 73 63 6f 2e 20 | are,.Arista.Networks.and.Cisco.. |
| 124bc0 | 4f 74 68 65 72 20 62 61 63 6b 65 72 73 20 6f 66 20 74 68 65 20 56 58 4c 41 4e 20 74 65 63 68 6e | Other.backers.of.the.VXLAN.techn |
| 124be0 | 6f 6c 6f 67 79 20 69 6e 63 6c 75 64 65 20 48 75 61 77 65 69 2c 20 42 72 6f 61 64 63 6f 6d 2c 20 | ology.include.Huawei,.Broadcom,. |
| 124c00 | 43 69 74 72 69 78 2c 20 50 69 63 61 38 2c 20 42 69 67 20 53 77 69 74 63 68 20 4e 65 74 77 6f 72 | Citrix,.Pica8,.Big.Switch.Networ |
| 124c20 | 6b 73 2c 20 43 75 6d 75 6c 75 73 20 4e 65 74 77 6f 72 6b 73 2c 20 44 65 6c 6c 20 45 4d 43 2c 20 | ks,.Cumulus.Networks,.Dell.EMC,. |
| 124c40 | 45 72 69 63 73 73 6f 6e 2c 20 4d 65 6c 6c 61 6e 6f 78 2c 20 46 72 65 65 42 53 44 2c 20 4f 70 65 | Ericsson,.Mellanox,.FreeBSD,.Ope |
| 124c60 | 6e 42 53 44 2c 20 52 65 64 20 48 61 74 2c 20 4a 6f 79 65 6e 74 2c 20 61 6e 64 20 4a 75 6e 69 70 | nBSD,.Red.Hat,.Joyent,.and.Junip |
| 124c80 | 65 72 20 4e 65 74 77 6f 72 6b 73 2e 00 54 68 65 20 56 79 4f 53 20 44 4e 53 20 66 6f 72 77 61 72 | er.Networks..The.VyOS.DNS.forwar |
| 124ca0 | 64 65 72 20 63 61 6e 20 61 6c 73 6f 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 74 6f 20 68 6f | der.can.also.be.configured.to.ho |
| 124cc0 | 73 74 20 61 75 74 68 6f 72 69 74 61 74 69 76 65 20 72 65 63 6f 72 64 73 20 66 6f 72 20 61 20 64 | st.authoritative.records.for.a.d |
| 124ce0 | 6f 6d 61 69 6e 2e 00 54 68 65 20 56 79 4f 53 20 44 4e 53 20 66 6f 72 77 61 72 64 65 72 20 64 6f | omain..The.VyOS.DNS.forwarder.do |
| 124d00 | 65 73 20 6e 6f 74 20 72 65 71 75 69 72 65 20 61 6e 20 75 70 73 74 72 65 61 6d 20 44 4e 53 20 73 | es.not.require.an.upstream.DNS.s |
| 124d20 | 65 72 76 65 72 2e 20 49 74 20 63 61 6e 20 73 65 72 76 65 20 61 73 20 61 20 66 75 6c 6c 20 72 65 | erver..It.can.serve.as.a.full.re |
| 124d40 | 63 75 72 73 69 76 65 20 44 4e 53 20 73 65 72 76 65 72 20 2d 20 62 75 74 20 69 74 20 63 61 6e 20 | cursive.DNS.server.-.but.it.can. |
| 124d60 | 61 6c 73 6f 20 66 6f 72 77 61 72 64 20 71 75 65 72 69 65 73 20 74 6f 20 63 6f 6e 66 69 67 75 72 | also.forward.queries.to.configur |
| 124d80 | 61 62 6c 65 20 75 70 73 74 72 65 61 6d 20 44 4e 53 20 73 65 72 76 65 72 73 2e 20 42 79 20 6e 6f | able.upstream.DNS.servers..By.no |
| 124da0 | 74 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 61 6e 79 20 75 70 73 74 72 65 61 6d 20 44 4e 53 20 73 | t.configuring.any.upstream.DNS.s |
| 124dc0 | 65 72 76 65 72 73 20 79 6f 75 20 61 6c 73 6f 20 61 76 6f 69 64 20 62 65 69 6e 67 20 74 72 61 63 | ervers.you.also.avoid.being.trac |
| 124de0 | 6b 65 64 20 62 79 20 74 68 65 20 70 72 6f 76 69 64 65 72 20 6f 66 20 79 6f 75 72 20 75 70 73 74 | ked.by.the.provider.of.your.upst |
| 124e00 | 72 65 61 6d 20 44 4e 53 20 73 65 72 76 65 72 2e 00 54 68 65 20 56 79 4f 53 20 44 4e 53 20 66 6f | ream.DNS.server..The.VyOS.DNS.fo |
| 124e20 | 72 77 61 72 64 65 72 20 77 69 6c 6c 20 6f 6e 6c 79 20 61 63 63 65 70 74 20 6c 6f 6f 6b 75 70 20 | rwarder.will.only.accept.lookup. |
| 124e40 | 72 65 71 75 65 73 74 73 20 66 72 6f 6d 20 74 68 65 20 4c 41 4e 20 73 75 62 6e 65 74 73 20 2d 20 | requests.from.the.LAN.subnets.-. |
| 124e60 | 31 39 32 2e 31 36 38 2e 31 2e 30 2f 32 34 20 61 6e 64 20 32 30 30 31 3a 64 62 38 3a 3a 2f 36 34 | 192.168.1.0/24.and.2001:db8::/64 |
| 124e80 | 00 54 68 65 20 56 79 4f 53 20 44 4e 53 20 66 6f 72 77 61 72 64 65 72 20 77 69 6c 6c 20 6f 6e 6c | .The.VyOS.DNS.forwarder.will.onl |
| 124ea0 | 79 20 6c 69 73 74 65 6e 20 66 6f 72 20 72 65 71 75 65 73 74 73 20 6f 6e 20 74 68 65 20 65 74 68 | y.listen.for.requests.on.the.eth |
| 124ec0 | 31 20 28 4c 41 4e 29 20 69 6e 74 65 72 66 61 63 65 20 61 64 64 72 65 73 73 65 73 20 2d 20 31 39 | 1.(LAN).interface.addresses.-.19 |
| 124ee0 | 32 2e 31 36 38 2e 31 2e 32 35 34 20 66 6f 72 20 49 50 76 34 20 61 6e 64 20 32 30 30 31 3a 64 62 | 2.168.1.254.for.IPv4.and.2001:db |
| 124f00 | 38 3a 3a 66 66 66 66 20 66 6f 72 20 49 50 76 36 00 54 68 65 20 56 79 4f 53 20 44 4e 53 20 66 6f | 8::ffff.for.IPv6.The.VyOS.DNS.fo |
| 124f20 | 72 77 61 72 64 65 72 20 77 69 6c 6c 20 70 61 73 73 20 72 65 76 65 72 73 65 20 6c 6f 6f 6b 75 70 | rwarder.will.pass.reverse.lookup |
| 124f40 | 73 20 66 6f 72 20 20 31 30 2e 69 6e 2d 61 64 64 72 2e 61 72 70 61 2c 20 31 36 38 2e 31 39 32 2e | s.for..10.in-addr.arpa,.168.192. |
| 124f60 | 69 6e 2d 61 64 64 72 2e 61 72 70 61 2c 20 31 36 2d 33 31 2e 31 37 32 2e 69 6e 2d 61 64 64 72 2e | in-addr.arpa,.16-31.172.in-addr. |
| 124f80 | 61 72 70 61 20 7a 6f 6e 65 73 20 74 6f 20 75 70 73 74 72 65 61 6d 20 73 65 72 76 65 72 2e 00 54 | arpa.zones.to.upstream.server..T |
| 124fa0 | 68 65 20 56 79 4f 53 20 50 4b 49 20 73 75 62 73 79 73 74 65 6d 20 63 61 6e 20 61 6c 73 6f 20 62 | he.VyOS.PKI.subsystem.can.also.b |
| 124fc0 | 65 20 75 73 65 64 20 74 6f 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 72 65 74 72 69 65 76 65 | e.used.to.automatically.retrieve |
| 124fe0 | 20 43 65 72 74 69 66 69 63 61 74 65 73 20 75 73 69 6e 67 20 74 68 65 20 3a 61 62 62 72 3a 60 41 | .Certificates.using.the.:abbr:`A |
| 125000 | 43 4d 45 20 28 41 75 74 6f 6d 61 74 69 63 20 43 65 72 74 69 66 69 63 61 74 65 20 4d 61 6e 61 67 | CME.(Automatic.Certificate.Manag |
| 125020 | 65 6d 65 6e 74 20 45 6e 76 69 72 6f 6e 6d 65 6e 74 29 60 20 70 72 6f 74 6f 63 6f 6c 2e 00 54 68 | ement.Environment)`.protocol..Th |
| 125040 | 65 20 56 79 4f 53 20 63 6f 6e 74 61 69 6e 65 72 20 69 6d 70 6c 65 6d 65 6e 74 61 74 69 6f 6e 20 | e.VyOS.container.implementation. |
| 125060 | 69 73 20 62 61 73 65 64 20 6f 6e 20 60 50 6f 64 6d 61 6e 20 3c 68 74 74 70 73 3a 2f 2f 70 6f 64 | is.based.on.`Podman.<https://pod |
| 125080 | 6d 61 6e 2e 69 6f 2f 3e 60 5f 20 61 73 20 61 20 64 65 61 6d 6f 6e 6c 65 73 73 20 63 6f 6e 74 61 | man.io/>`_.as.a.deamonless.conta |
| 1250a0 | 69 6e 65 72 20 65 6e 67 69 6e 65 2e 00 54 68 65 20 56 79 4f 53 20 63 6f 6e 74 61 69 6e 65 72 20 | iner.engine..The.VyOS.container. |
| 1250c0 | 69 6d 70 6c 65 6d 65 6e 74 61 74 69 6f 6e 20 69 73 20 62 61 73 65 64 20 6f 6e 20 60 50 6f 64 6d | implementation.is.based.on.`Podm |
| 1250e0 | 61 6e 3c 68 74 74 70 73 3a 2f 2f 70 6f 64 6d 61 6e 2e 69 6f 2f 3e 60 20 61 73 20 61 20 64 65 61 | an<https://podman.io/>`.as.a.dea |
| 125100 | 6d 6f 6e 6c 65 73 73 20 63 6f 6e 74 61 69 6e 65 72 20 65 6e 67 69 6e 65 2e 00 54 68 65 20 57 41 | monless.container.engine..The.WA |
| 125120 | 50 20 69 6e 20 74 68 69 73 20 65 78 61 6d 70 6c 65 20 68 61 73 20 74 68 65 20 66 6f 6c 6c 6f 77 | P.in.this.example.has.the.follow |
| 125140 | 69 6e 67 20 63 68 61 72 61 63 74 65 72 69 73 74 69 63 73 3a 00 54 68 65 20 57 69 72 65 6c 65 73 | ing.characteristics:.The.Wireles |
| 125160 | 73 20 57 69 64 65 2d 41 72 65 61 2d 4e 65 74 77 6f 72 6b 20 69 6e 74 65 72 66 61 63 65 20 70 72 | s.Wide-Area-Network.interface.pr |
| 125180 | 6f 76 69 64 65 73 20 61 63 63 65 73 73 20 28 74 68 72 6f 75 67 68 20 61 20 77 69 72 65 6c 65 73 | ovides.access.(through.a.wireles |
| 1251a0 | 73 20 6d 6f 64 65 6d 2f 77 77 61 6e 29 20 74 6f 20 77 69 72 65 6c 65 73 73 20 6e 65 74 77 6f 72 | s.modem/wwan).to.wireless.networ |
| 1251c0 | 6b 73 20 70 72 6f 76 69 64 65 64 20 62 79 20 76 61 72 69 6f 75 73 20 63 65 6c 6c 75 6c 61 72 20 | ks.provided.by.various.cellular. |
| 1251e0 | 70 72 6f 76 69 64 65 72 73 2e 00 54 68 65 20 60 60 43 44 60 60 2d 62 69 74 20 69 73 20 68 6f 6e | providers..The.``CD``-bit.is.hon |
| 125200 | 6f 72 65 64 20 63 6f 72 72 65 63 74 6c 79 20 66 6f 72 20 70 72 6f 63 65 73 73 20 61 6e 64 20 76 | ored.correctly.for.process.and.v |
| 125220 | 61 6c 69 64 61 74 65 2e 20 46 6f 72 20 6c 6f 67 2d 66 61 69 6c 2c 20 66 61 69 6c 75 72 65 73 20 | alidate..For.log-fail,.failures. |
| 125240 | 77 69 6c 6c 20 62 65 20 6c 6f 67 67 65 64 20 74 6f 6f 2e 00 54 68 65 20 60 60 61 64 64 72 65 73 | will.be.logged.too..The.``addres |
| 125260 | 73 60 60 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 65 69 74 68 65 72 20 6f 6e 20 | s``.can.be.configured.either.on. |
| 125280 | 74 68 65 20 56 52 52 50 20 69 6e 74 65 72 66 61 63 65 20 6f 72 20 6f 6e 20 6e 6f 74 20 56 52 52 | the.VRRP.interface.or.on.not.VRR |
| 1252a0 | 50 20 69 6e 74 65 72 66 61 63 65 2e 00 54 68 65 20 60 60 61 64 64 72 65 73 73 60 60 20 70 61 72 | P.interface..The.``address``.par |
| 1252c0 | 61 6d 65 74 65 72 20 63 61 6e 20 62 65 20 65 69 74 68 65 72 20 61 6e 20 49 50 76 34 20 6f 72 20 | ameter.can.be.either.an.IPv4.or. |
| 1252e0 | 49 50 76 36 20 61 64 64 72 65 73 73 2c 20 62 75 74 20 79 6f 75 20 63 61 6e 20 6e 6f 74 20 6d 69 | IPv6.address,.but.you.can.not.mi |
| 125300 | 78 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 69 6e 20 74 68 65 20 73 61 6d 65 20 67 72 6f 75 | x.IPv4.and.IPv6.in.the.same.grou |
| 125320 | 70 2c 20 61 6e 64 20 77 69 6c 6c 20 6e 65 65 64 20 74 6f 20 63 72 65 61 74 65 20 67 72 6f 75 70 | p,.and.will.need.to.create.group |
| 125340 | 73 20 77 69 74 68 20 64 69 66 66 65 72 65 6e 74 20 56 52 49 44 73 20 73 70 65 63 69 61 6c 6c 79 | s.with.different.VRIDs.specially |
| 125360 | 20 66 6f 72 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 2e 20 49 66 20 79 6f 75 20 77 61 6e 74 20 | .for.IPv4.and.IPv6..If.you.want. |
| 125380 | 74 6f 20 75 73 65 20 49 50 76 34 20 2b 20 49 50 76 36 20 61 64 64 72 65 73 73 20 79 6f 75 20 63 | to.use.IPv4.+.IPv6.address.you.c |
| 1253a0 | 61 6e 20 75 73 65 20 6f 70 74 69 6f 6e 20 60 60 65 78 63 6c 75 64 65 64 2d 61 64 64 72 65 73 73 | an.use.option.``excluded-address |
| 1253c0 | 60 60 00 54 68 65 20 60 60 62 6b 2d 62 72 69 64 67 65 2d 73 73 6c 60 60 20 62 61 63 6b 65 6e 64 | ``.The.``bk-bridge-ssl``.backend |
| 1253e0 | 20 63 6f 6e 6e 65 63 74 73 20 74 6f 20 73 72 30 31 20 73 65 72 76 65 72 20 6f 6e 20 70 6f 72 74 | .connects.to.sr01.server.on.port |
| 125400 | 20 34 34 33 20 76 69 61 20 48 54 54 50 53 20 61 6e 64 20 63 68 65 63 6b 73 20 62 61 63 6b 65 6e | .443.via.HTTPS.and.checks.backen |
| 125420 | 64 20 73 65 72 76 65 72 20 68 61 73 20 61 20 76 61 6c 69 64 20 63 65 72 74 69 66 69 63 61 74 65 | d.server.has.a.valid.certificate |
| 125440 | 20 74 72 75 73 74 65 64 20 62 79 20 43 41 20 60 60 63 61 63 65 72 74 60 60 00 54 68 65 20 60 60 | .trusted.by.CA.``cacert``.The.`` |
| 125460 | 68 74 74 70 60 60 20 73 65 72 76 69 63 65 20 69 73 20 6c 65 73 74 65 6e 73 20 6f 6e 20 70 6f 72 | http``.service.is.lestens.on.por |
| 125480 | 74 20 38 30 20 61 6e 64 20 66 6f 72 63 65 20 72 65 64 69 72 65 63 74 73 20 66 72 6f 6d 20 48 54 | t.80.and.force.redirects.from.HT |
| 1254a0 | 54 50 20 74 6f 20 48 54 54 50 53 2e 00 54 68 65 20 60 60 68 74 74 70 60 60 20 73 65 72 76 69 63 | TP.to.HTTPS..The.``http``.servic |
| 1254c0 | 65 20 69 73 20 6c 69 73 74 65 6e 73 20 6f 6e 20 70 6f 72 74 20 38 30 20 61 6e 64 20 66 6f 72 63 | e.is.listens.on.port.80.and.forc |
| 1254e0 | 65 20 72 65 64 69 72 65 63 74 73 20 66 72 6f 6d 20 48 54 54 50 20 74 6f 20 48 54 54 50 53 2e 00 | e.redirects.from.HTTP.to.HTTPS.. |
| 125500 | 54 68 65 20 60 60 68 74 74 70 73 60 60 20 73 65 72 76 69 63 65 20 6c 69 73 74 65 6e 73 20 6f 6e | The.``https``.service.listens.on |
| 125520 | 20 70 6f 72 74 20 34 34 33 20 77 69 74 68 20 62 61 63 6b 65 6e 64 20 60 60 62 6b 2d 62 72 69 64 | .port.443.with.backend.``bk-brid |
| 125540 | 67 65 2d 73 73 6c 60 60 20 74 6f 20 68 61 6e 64 6c 65 20 48 54 54 50 53 20 74 72 61 66 66 69 63 | ge-ssl``.to.handle.HTTPS.traffic |
| 125560 | 2e 20 49 74 20 75 73 65 73 20 63 65 72 74 69 66 69 63 61 74 65 20 6e 61 6d 65 64 20 60 60 63 65 | ..It.uses.certificate.named.``ce |
| 125580 | 72 74 60 60 20 66 6f 72 20 53 53 4c 20 74 65 72 6d 69 6e 61 74 69 6f 6e 2e 00 54 68 65 20 60 60 | rt``.for.SSL.termination..The.`` |
| 1255a0 | 68 74 74 70 73 60 60 20 73 65 72 76 69 63 65 20 6c 69 73 74 65 6e 73 20 6f 6e 20 70 6f 72 74 20 | https``.service.listens.on.port. |
| 1255c0 | 34 34 33 20 77 69 74 68 20 62 61 63 6b 65 6e 64 20 60 60 62 6b 2d 64 65 66 61 75 6c 74 60 60 20 | 443.with.backend.``bk-default``. |
| 1255e0 | 74 6f 20 68 61 6e 64 6c 65 20 48 54 54 50 53 20 74 72 61 66 66 69 63 2e 20 49 74 20 75 73 65 73 | to.handle.HTTPS.traffic..It.uses |
| 125600 | 20 63 65 72 74 69 66 69 63 61 74 65 20 6e 61 6d 65 64 20 60 60 63 65 72 74 60 60 20 66 6f 72 20 | .certificate.named.``cert``.for. |
| 125620 | 53 53 4c 20 74 65 72 6d 69 6e 61 74 69 6f 6e 2e 00 54 68 65 20 60 60 68 74 74 70 73 60 60 20 73 | SSL.termination..The.``https``.s |
| 125640 | 65 72 76 69 63 65 20 6c 69 73 74 65 6e 73 20 6f 6e 20 70 6f 72 74 20 34 34 33 20 77 69 74 68 20 | ervice.listens.on.port.443.with. |
| 125660 | 62 61 63 6b 65 6e 64 20 60 60 62 6b 2d 64 65 66 61 75 6c 74 60 60 20 74 6f 20 68 61 6e 64 6c 65 | backend.``bk-default``.to.handle |
| 125680 | 20 48 54 54 50 53 20 74 72 61 66 66 69 63 2e 20 49 74 20 75 73 65 73 20 63 65 72 74 69 66 69 63 | .HTTPS.traffic..It.uses.certific |
| 1256a0 | 61 74 65 20 6e 61 6d 65 64 20 60 60 63 65 72 74 60 60 20 66 6f 72 20 53 53 4c 20 74 65 72 6d 69 | ate.named.``cert``.for.SSL.termi |
| 1256c0 | 6e 61 74 69 6f 6e 2e 20 48 53 54 53 20 68 65 61 64 65 72 20 69 73 20 73 65 74 20 77 69 74 68 20 | nation..HSTS.header.is.set.with. |
| 1256e0 | 61 20 31 2d 79 65 61 72 20 65 78 70 69 72 79 2c 20 74 6f 20 74 65 6c 6c 20 62 72 6f 77 73 65 72 | a.1-year.expiry,.to.tell.browser |
| 125700 | 73 20 74 6f 20 61 6c 77 61 79 73 20 75 73 65 20 53 53 4c 20 66 6f 72 20 73 69 74 65 2e 00 54 68 | s.to.always.use.SSL.for.site..Th |
| 125720 | 65 20 60 60 68 74 74 70 73 60 60 20 73 65 72 76 69 63 65 20 6c 69 73 74 65 6e 73 20 6f 6e 20 70 | e.``https``.service.listens.on.p |
| 125740 | 6f 72 74 20 34 34 33 20 77 69 74 68 20 62 61 63 6b 65 6e 64 20 60 62 6b 2d 64 65 66 61 75 6c 74 | ort.443.with.backend.`bk-default |
| 125760 | 60 20 74 6f 20 68 61 6e 64 6c 65 20 48 54 54 50 53 20 74 72 61 66 66 69 63 2e 20 49 74 20 75 73 | `.to.handle.HTTPS.traffic..It.us |
| 125780 | 65 73 20 63 65 72 74 69 66 69 63 61 74 65 20 6e 61 6d 65 64 20 60 60 63 65 72 74 60 60 20 66 6f | es.certificate.named.``cert``.fo |
| 1257a0 | 72 20 53 53 4c 20 74 65 72 6d 69 6e 61 74 69 6f 6e 2e 00 54 68 65 20 60 60 70 65 72 73 69 73 74 | r.SSL.termination..The.``persist |
| 1257c0 | 65 6e 74 2d 74 75 6e 6e 65 6c 60 60 20 64 69 72 65 63 74 69 76 65 20 77 69 6c 6c 20 61 6c 6c 6f | ent-tunnel``.directive.will.allo |
| 1257e0 | 77 20 75 73 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 75 6e 6e 65 6c 2d 72 65 6c 61 74 65 64 | w.us.to.configure.tunnel-related |
| 125800 | 20 61 74 74 72 69 62 75 74 65 73 2c 20 73 75 63 68 20 61 73 20 66 69 72 65 77 61 6c 6c 20 70 6f | .attributes,.such.as.firewall.po |
| 125820 | 6c 69 63 79 20 61 73 20 77 65 20 77 6f 75 6c 64 20 6f 6e 20 61 6e 79 20 6e 6f 72 6d 61 6c 20 6e | licy.as.we.would.on.any.normal.n |
| 125840 | 65 74 77 6f 72 6b 20 69 6e 74 65 72 66 61 63 65 2e 00 54 68 65 20 60 60 73 6f 75 72 63 65 2d 61 | etwork.interface..The.``source-a |
| 125860 | 64 64 72 65 73 73 60 60 20 6d 75 73 74 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 6f | ddress``.must.be.configured.on.o |
| 125880 | 6e 65 20 6f 66 20 56 79 4f 53 20 69 6e 74 65 72 66 61 63 65 2e 20 42 65 73 74 20 70 72 61 63 74 | ne.of.VyOS.interface..Best.pract |
| 1258a0 | 69 63 65 20 77 6f 75 6c 64 20 62 65 20 61 20 6c 6f 6f 70 62 61 63 6b 20 6f 72 20 64 75 6d 6d 79 | ice.would.be.a.loopback.or.dummy |
| 1258c0 | 20 69 6e 74 65 72 66 61 63 65 2e 00 54 68 65 20 60 60 73 6f 75 72 63 65 2d 61 64 64 72 65 73 73 | .interface..The.``source-address |
| 1258e0 | 60 60 20 6d 75 73 74 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 74 6f 20 74 68 61 74 20 6f 66 | ``.must.be.configured.to.that.of |
| 125900 | 20 61 6e 20 69 6e 74 65 72 66 61 63 65 2e 20 42 65 73 74 20 70 72 61 63 74 69 63 65 20 77 6f 75 | .an.interface..Best.practice.wou |
| 125920 | 6c 64 20 62 65 20 61 20 6c 6f 6f 70 62 61 63 6b 20 6f 72 20 64 75 6d 6d 79 20 69 6e 74 65 72 66 | ld.be.a.loopback.or.dummy.interf |
| 125940 | 61 63 65 2e 00 54 68 65 20 60 73 68 6f 77 20 62 72 69 64 67 65 60 20 6f 70 65 72 61 74 69 6f 6e | ace..The.`show.bridge`.operation |
| 125960 | 61 6c 20 63 6f 6d 6d 61 6e 64 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 64 69 73 70 6c 61 | al.command.can.be.used.to.displa |
| 125980 | 79 20 63 6f 6e 66 69 67 75 72 65 64 20 62 72 69 64 67 65 73 3a 00 54 68 65 20 61 62 6f 76 65 20 | y.configured.bridges:.The.above. |
| 1259a0 | 64 69 72 65 63 74 6f 72 79 20 61 6e 64 20 64 65 66 61 75 6c 74 2d 63 6f 6e 66 69 67 20 6d 75 73 | directory.and.default-config.mus |
| 1259c0 | 74 20 62 65 20 61 20 63 68 69 6c 64 20 64 69 72 65 63 74 6f 72 79 20 6f 66 20 2f 63 6f 6e 66 69 | t.be.a.child.directory.of./confi |
| 1259e0 | 67 2f 61 75 74 68 2c 20 73 69 6e 63 65 20 66 69 6c 65 73 20 6f 75 74 73 69 64 65 20 74 68 69 73 | g/auth,.since.files.outside.this |
| 125a00 | 20 64 69 72 65 63 74 6f 72 79 20 61 72 65 20 6e 6f 74 20 70 65 72 73 69 73 74 65 64 20 61 66 74 | .directory.are.not.persisted.aft |
| 125a20 | 65 72 20 61 6e 20 69 6d 61 67 65 20 75 70 67 72 61 64 65 2e 00 54 68 65 20 61 63 74 69 6f 6e 20 | er.an.image.upgrade..The.action. |
| 125a40 | 63 61 6e 20 62 65 20 3a 00 54 68 65 20 61 64 64 72 65 73 73 20 6f 66 20 52 6f 75 74 65 72 20 42 | can.be.:.The.address.of.Router.B |
| 125a60 | 20 69 73 20 31 30 2e 30 2e 32 30 2e 31 31 32 20 61 6e 64 20 74 68 65 20 70 6f 72 74 20 75 73 65 | .is.10.0.20.112.and.the.port.use |
| 125a80 | 64 20 69 73 20 38 34 34 33 00 54 68 65 20 61 64 64 72 65 73 73 20 74 68 65 20 73 65 72 76 65 72 | d.is.8443.The.address.the.server |
| 125aa0 | 20 6c 69 73 74 65 6e 73 20 74 6f 20 64 75 72 69 6e 67 20 68 74 74 70 2d 30 31 20 63 68 61 6c 6c | .listens.to.during.http-01.chall |
| 125ac0 | 65 6e 67 65 00 54 68 65 20 61 64 76 61 6e 74 61 67 65 20 6f 66 20 74 68 69 73 20 69 73 20 74 68 | enge.The.advantage.of.this.is.th |
| 125ae0 | 61 74 20 74 68 65 20 72 6f 75 74 65 2d 73 65 6c 65 63 74 69 6f 6e 20 28 61 74 20 74 68 69 73 20 | at.the.route-selection.(at.this. |
| 125b00 | 70 6f 69 6e 74 29 20 77 69 6c 6c 20 62 65 20 6d 6f 72 65 20 64 65 74 65 72 6d 69 6e 69 73 74 69 | point).will.be.more.deterministi |
| 125b20 | 63 2e 20 54 68 65 20 64 69 73 61 64 76 61 6e 74 61 67 65 20 69 73 20 74 68 61 74 20 61 20 66 65 | c..The.disadvantage.is.that.a.fe |
| 125b40 | 77 20 6f 72 20 65 76 65 6e 20 6f 6e 65 20 6c 6f 77 65 73 74 2d 49 44 20 72 6f 75 74 65 72 20 6d | w.or.even.one.lowest-ID.router.m |
| 125b60 | 61 79 20 61 74 74 72 61 63 74 20 61 6c 6c 20 74 72 61 66 66 69 63 20 74 6f 20 6f 74 68 65 72 77 | ay.attract.all.traffic.to.otherw |
| 125b80 | 69 73 65 2d 65 71 75 61 6c 20 70 61 74 68 73 20 62 65 63 61 75 73 65 20 6f 66 20 74 68 69 73 20 | ise-equal.paths.because.of.this. |
| 125ba0 | 63 68 65 63 6b 2e 20 49 74 20 6d 61 79 20 69 6e 63 72 65 61 73 65 20 74 68 65 20 70 6f 73 73 69 | check..It.may.increase.the.possi |
| 125bc0 | 62 69 6c 69 74 79 20 6f 66 20 4d 45 44 20 6f 72 20 49 47 50 20 6f 73 63 69 6c 6c 61 74 69 6f 6e | bility.of.MED.or.IGP.oscillation |
| 125be0 | 2c 20 75 6e 6c 65 73 73 20 6f 74 68 65 72 20 6d 65 61 73 75 72 65 73 20 77 65 72 65 20 74 61 6b | ,.unless.other.measures.were.tak |
| 125c00 | 65 6e 20 74 6f 20 61 76 6f 69 64 20 74 68 65 73 65 2e 20 54 68 65 20 65 78 61 63 74 20 62 65 68 | en.to.avoid.these..The.exact.beh |
| 125c20 | 61 76 69 6f 75 72 20 77 69 6c 6c 20 62 65 20 73 65 6e 73 69 74 69 76 65 20 74 6f 20 74 68 65 20 | aviour.will.be.sensitive.to.the. |
| 125c40 | 69 42 47 50 20 61 6e 64 20 72 65 66 6c 65 63 74 69 6f 6e 20 74 6f 70 6f 6c 6f 67 79 2e 00 54 68 | iBGP.and.reflection.topology..Th |
| 125c60 | 65 20 61 6c 6c 6f 63 61 74 65 64 20 61 64 64 72 65 73 73 20 62 6c 6f 63 6b 20 69 73 20 31 30 30 | e.allocated.address.block.is.100 |
| 125c80 | 2e 36 34 2e 30 2e 30 2f 31 30 2e 00 54 68 65 20 61 6d 6f 75 6e 74 20 6f 66 20 44 75 70 6c 69 63 | .64.0.0/10..The.amount.of.Duplic |
| 125ca0 | 61 74 65 20 41 64 64 72 65 73 73 20 44 65 74 65 63 74 69 6f 6e 20 70 72 6f 62 65 73 20 74 6f 20 | ate.Address.Detection.probes.to. |
| 125cc0 | 73 65 6e 64 2e 00 54 68 65 20 61 74 74 72 69 62 75 74 65 73 20 3a 63 66 67 63 6d 64 3a 60 70 72 | send..The.attributes.:cfgcmd:`pr |
| 125ce0 | 65 66 69 78 2d 6c 69 73 74 60 20 61 6e 64 20 3a 63 66 67 63 6d 64 3a 60 64 69 73 74 72 69 62 75 | efix-list`.and.:cfgcmd:`distribu |
| 125d00 | 74 65 2d 6c 69 73 74 60 20 61 72 65 20 6d 75 74 75 61 6c 6c 79 20 65 78 63 6c 75 73 69 76 65 2c | te-list`.are.mutually.exclusive, |
| 125d20 | 20 61 6e 64 20 6f 6e 6c 79 20 6f 6e 65 20 63 6f 6d 6d 61 6e 64 20 28 64 69 73 74 72 69 62 75 74 | .and.only.one.command.(distribut |
| 125d40 | 65 2d 6c 69 73 74 20 6f 72 20 70 72 65 66 69 78 2d 6c 69 73 74 29 20 63 61 6e 20 62 65 20 61 70 | e-list.or.prefix-list).can.be.ap |
| 125d60 | 70 6c 69 65 64 20 74 6f 20 65 61 63 68 20 69 6e 62 6f 75 6e 64 20 6f 72 20 6f 75 74 62 6f 75 6e | plied.to.each.inbound.or.outboun |
| 125d80 | 64 20 64 69 72 65 63 74 69 6f 6e 20 66 6f 72 20 61 20 70 61 72 74 69 63 75 6c 61 72 20 6e 65 69 | d.direction.for.a.particular.nei |
| 125da0 | 67 68 62 6f 72 2e 00 54 68 65 20 61 76 61 69 6c 61 62 6c 65 20 6d 6f 64 65 73 20 61 72 65 3a 00 | ghbor..The.available.modes.are:. |
| 125dc0 | 54 68 65 20 61 76 61 69 6c 61 62 6c 65 20 6f 70 74 69 6f 6e 73 20 66 6f 72 20 3c 6d 61 74 63 68 | The.available.options.for.<match |
| 125de0 | 3e 20 61 72 65 3a 00 54 68 65 20 62 61 73 65 20 63 68 61 69 6e 20 66 6f 72 20 74 72 61 66 66 69 | >.are:.The.base.chain.for.traffi |
| 125e00 | 63 20 74 6f 77 61 72 64 73 20 74 68 65 20 72 6f 75 74 65 72 20 69 73 20 60 60 73 65 74 20 66 69 | c.towards.the.router.is.``set.fi |
| 125e20 | 72 65 77 61 6c 6c 20 69 70 76 34 20 69 6e 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 00 54 | rewall.ipv4.input.filter....``.T |
| 125e40 | 68 65 20 62 61 73 65 20 63 68 61 69 6e 20 66 6f 72 20 74 72 61 66 66 69 63 20 74 6f 77 61 72 64 | he.base.chain.for.traffic.toward |
| 125e60 | 73 20 74 68 65 20 72 6f 75 74 65 72 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 | s.the.router.is.``set.firewall.i |
| 125e80 | 70 76 36 20 69 6e 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 00 54 68 65 20 62 61 73 65 20 | pv6.input.filter....``.The.base. |
| 125ea0 | 66 69 72 65 77 61 6c 6c 20 63 68 61 69 6e 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 66 69 6c 74 | firewall.chain.to.configure.filt |
| 125ec0 | 65 72 69 6e 67 20 72 75 6c 65 73 20 66 6f 72 20 74 72 61 6e 73 69 74 20 74 72 61 66 66 69 63 20 | ering.rules.for.transit.traffic. |
| 125ee0 | 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 66 6f 72 77 61 72 64 20 66 | is.``set.firewall.ipv4.forward.f |
| 125f00 | 69 6c 74 65 72 20 2e 2e 2e 60 60 2c 20 77 68 69 63 68 20 68 61 70 70 65 6e 73 20 69 6e 20 73 74 | ilter....``,.which.happens.in.st |
| 125f20 | 61 67 65 20 35 2c 20 68 69 67 68 6c 69 67 68 74 65 64 20 69 6e 20 74 68 65 20 63 6f 6c 6f 72 20 | age.5,.highlighted.in.the.color. |
| 125f40 | 72 65 64 2e 00 54 68 65 20 62 61 73 65 20 66 69 72 65 77 61 6c 6c 20 63 68 61 69 6e 20 74 6f 20 | red..The.base.firewall.chain.to. |
| 125f60 | 63 6f 6e 66 69 67 75 72 65 20 66 69 6c 74 65 72 69 6e 67 20 72 75 6c 65 73 20 66 6f 72 20 74 72 | configure.filtering.rules.for.tr |
| 125f80 | 61 6e 73 69 74 20 74 72 61 66 66 69 63 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 | ansit.traffic.is.``set.firewall. |
| 125fa0 | 69 70 76 36 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2c 20 77 68 69 63 68 | ipv6.forward.filter....``,.which |
| 125fc0 | 20 68 61 70 70 65 6e 73 20 69 6e 20 73 74 61 67 65 20 35 2c 20 68 69 67 68 6c 69 67 68 74 65 64 | .happens.in.stage.5,.highlighted |
| 125fe0 | 20 69 6e 20 74 68 65 20 63 6f 6c 6f 72 20 72 65 64 2e 00 54 68 65 20 62 65 6c 6f 77 20 72 65 66 | .in.the.color.red..The.below.ref |
| 126000 | 65 72 65 6e 63 65 64 20 49 50 20 61 64 64 72 65 73 73 20 60 31 39 32 2e 30 2e 32 2e 31 60 20 69 | erenced.IP.address.`192.0.2.1`.i |
| 126020 | 73 20 75 73 65 64 20 61 73 20 65 78 61 6d 70 6c 65 20 61 64 64 72 65 73 73 20 72 65 70 72 65 73 | s.used.as.example.address.repres |
| 126040 | 65 6e 74 69 6e 67 20 61 20 67 6c 6f 62 61 6c 20 75 6e 69 63 61 73 74 20 61 64 64 72 65 73 73 20 | enting.a.global.unicast.address. |
| 126060 | 75 6e 64 65 72 20 77 68 69 63 68 20 74 68 65 20 48 55 42 20 63 61 6e 20 62 65 20 63 6f 6e 74 61 | under.which.the.HUB.can.be.conta |
| 126080 | 63 74 65 64 20 62 79 20 65 61 63 68 20 61 6e 64 20 65 76 65 72 79 20 69 6e 64 69 76 69 64 75 61 | cted.by.each.and.every.individua |
| 1260a0 | 6c 20 73 70 6f 6b 65 2e 00 54 68 65 20 62 6f 6e 64 69 6e 67 20 69 6e 74 65 72 66 61 63 65 20 70 | l.spoke..The.bonding.interface.p |
| 1260c0 | 72 6f 76 69 64 65 73 20 61 20 6d 65 74 68 6f 64 20 66 6f 72 20 61 67 67 72 65 67 61 74 69 6e 67 | rovides.a.method.for.aggregating |
| 1260e0 | 20 6d 75 6c 74 69 70 6c 65 20 6e 65 74 77 6f 72 6b 20 69 6e 74 65 72 66 61 63 65 73 20 69 6e 74 | .multiple.network.interfaces.int |
| 126100 | 6f 20 61 20 73 69 6e 67 6c 65 20 6c 6f 67 69 63 61 6c 20 22 62 6f 6e 64 65 64 22 20 69 6e 74 65 | o.a.single.logical."bonded".inte |
| 126120 | 72 66 61 63 65 2c 20 6f 72 20 4c 41 47 2c 20 6f 72 20 65 74 68 65 72 2d 63 68 61 6e 6e 65 6c 2c | rface,.or.LAG,.or.ether-channel, |
| 126140 | 20 6f 72 20 70 6f 72 74 2d 63 68 61 6e 6e 65 6c 2e 20 54 68 65 20 62 65 68 61 76 69 6f 72 20 6f | .or.port-channel..The.behavior.o |
| 126160 | 66 20 74 68 65 20 62 6f 6e 64 65 64 20 69 6e 74 65 72 66 61 63 65 73 20 64 65 70 65 6e 64 73 20 | f.the.bonded.interfaces.depends. |
| 126180 | 75 70 6f 6e 20 74 68 65 20 6d 6f 64 65 3b 20 67 65 6e 65 72 61 6c 6c 79 20 73 70 65 61 6b 69 6e | upon.the.mode;.generally.speakin |
| 1261a0 | 67 2c 20 6d 6f 64 65 73 20 70 72 6f 76 69 64 65 20 65 69 74 68 65 72 20 68 6f 74 20 73 74 61 6e | g,.modes.provide.either.hot.stan |
| 1261c0 | 64 62 79 20 6f 72 20 6c 6f 61 64 20 62 61 6c 61 6e 63 69 6e 67 20 73 65 72 76 69 63 65 73 2e 20 | dby.or.load.balancing.services.. |
| 1261e0 | 41 64 64 69 74 69 6f 6e 61 6c 6c 79 2c 20 6c 69 6e 6b 20 69 6e 74 65 67 72 69 74 79 20 6d 6f 6e | Additionally,.link.integrity.mon |
| 126200 | 69 74 6f 72 69 6e 67 20 6d 61 79 20 62 65 20 70 65 72 66 6f 72 6d 65 64 2e 00 54 68 65 20 63 61 | itoring.may.be.performed..The.ca |
| 126220 | 73 65 20 6f 66 20 69 6e 67 72 65 73 73 20 73 68 61 70 69 6e 67 00 54 68 65 20 63 68 72 6f 6e 79 | se.of.ingress.shaping.The.chrony |
| 126240 | 20 64 61 65 6d 6f 6e 20 6f 6e 20 56 79 4f 53 20 63 61 6e 20 6c 65 76 65 72 61 67 65 20 4e 49 43 | .daemon.on.VyOS.can.leverage.NIC |
| 126260 | 20 68 61 72 64 77 61 72 65 20 63 61 70 61 62 69 6c 69 74 69 65 73 20 74 6f 20 72 65 63 6f 72 64 | .hardware.capabilities.to.record |
| 126280 | 20 74 68 65 20 65 78 61 63 74 20 74 69 6d 65 20 70 61 63 6b 65 74 73 20 61 72 65 20 72 65 63 65 | .the.exact.time.packets.are.rece |
| 1262a0 | 69 76 65 64 20 6f 6e 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 2c 20 61 73 20 77 65 6c 6c 20 61 | ived.on.the.interface,.as.well.a |
| 1262c0 | 73 20 77 68 65 6e 20 70 61 63 6b 65 74 73 20 77 65 72 65 20 61 63 74 75 61 6c 6c 79 20 74 72 61 | s.when.packets.were.actually.tra |
| 1262e0 | 6e 73 6d 69 74 74 65 64 2e 20 54 68 69 73 20 70 72 6f 76 69 64 65 73 20 69 6d 70 72 6f 76 65 64 | nsmitted..This.provides.improved |
| 126300 | 20 61 63 63 75 72 61 63 79 20 61 6e 64 20 73 74 61 62 69 6c 69 74 79 20 77 68 65 6e 20 74 68 65 | .accuracy.and.stability.when.the |
| 126320 | 20 73 79 73 74 65 6d 20 69 73 20 75 6e 64 65 72 20 6c 6f 61 64 2c 20 61 73 20 71 75 65 75 69 6e | .system.is.under.load,.as.queuin |
| 126340 | 67 20 61 6e 64 20 4f 53 20 63 6f 6e 74 65 78 74 20 73 77 69 74 63 68 69 6e 67 20 63 61 6e 20 69 | g.and.OS.context.switching.can.i |
| 126360 | 6e 74 72 6f 64 75 63 65 20 61 20 76 61 72 69 61 62 6c 65 20 64 65 6c 61 79 20 62 65 74 77 65 65 | ntroduce.a.variable.delay.betwee |
| 126380 | 6e 20 77 68 65 6e 20 74 68 65 20 70 61 63 6b 65 74 20 69 73 20 72 65 63 65 69 76 65 64 20 6f 6e | n.when.the.packet.is.received.on |
| 1263a0 | 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 61 6e 64 20 77 68 65 6e 20 69 74 20 69 73 20 61 63 74 75 | .the.network.and.when.it.is.actu |
| 1263c0 | 61 6c 6c 79 20 70 72 6f 63 65 73 73 65 64 20 62 79 20 74 68 65 20 4e 54 50 20 64 61 65 6d 6f 6e | ally.processed.by.the.NTP.daemon |
| 1263e0 | 2e 00 54 68 65 20 63 6c 69 65 6e 74 27 73 20 69 6e 74 65 72 66 61 63 65 20 63 61 6e 20 62 65 20 | ..The.client's.interface.can.be. |
| 126400 | 70 75 74 20 69 6e 74 6f 20 61 20 56 52 46 20 63 6f 6e 74 65 78 74 20 76 69 61 20 61 20 52 41 44 | put.into.a.VRF.context.via.a.RAD |
| 126420 | 49 55 53 20 41 63 63 65 73 73 2d 41 63 63 65 70 74 20 70 61 63 6b 65 74 2c 20 6f 72 20 63 68 61 | IUS.Access-Accept.packet,.or.cha |
| 126440 | 6e 67 65 64 20 76 69 61 20 52 41 44 49 55 53 20 43 6f 41 2e 20 60 60 41 63 63 65 6c 2d 56 52 46 | nged.via.RADIUS.CoA..``Accel-VRF |
| 126460 | 2d 4e 61 6d 65 60 60 20 69 73 20 75 73 65 64 20 66 6f 72 20 74 68 65 73 65 20 70 75 72 70 6f 73 | -Name``.is.used.for.these.purpos |
| 126480 | 65 73 2e 20 54 68 69 73 20 69 73 20 61 20 63 75 73 74 6f 6d 20 60 41 43 43 45 4c 2d 50 50 50 20 | es..This.is.a.custom.`ACCEL-PPP. |
| 1264a0 | 61 74 74 72 69 62 75 74 65 60 5f 2e 20 44 65 66 69 6e 65 20 69 74 20 69 6e 20 79 6f 75 72 20 52 | attribute`_..Define.it.in.your.R |
| 1264c0 | 41 44 49 55 53 20 73 65 72 76 65 72 2e 00 54 68 65 20 63 6c 69 65 6e 74 2c 20 6f 6e 63 65 20 73 | ADIUS.server..The.client,.once.s |
| 1264e0 | 75 63 63 65 73 73 66 75 6c 6c 79 20 61 75 74 68 65 6e 74 69 63 61 74 65 64 2c 20 77 69 6c 6c 20 | uccessfully.authenticated,.will. |
| 126500 | 72 65 63 65 69 76 65 20 61 6e 20 49 50 76 34 20 61 6e 64 20 61 6e 20 49 50 76 36 20 2f 36 34 20 | receive.an.IPv4.and.an.IPv6./64. |
| 126520 | 61 64 64 72 65 73 73 20 74 6f 20 74 65 72 6d 69 6e 61 74 65 20 74 68 65 20 50 50 50 6f 45 20 65 | address.to.terminate.the.PPPoE.e |
| 126540 | 6e 64 70 6f 69 6e 74 20 6f 6e 20 74 68 65 20 63 6c 69 65 6e 74 20 73 69 64 65 20 61 6e 64 20 61 | ndpoint.on.the.client.side.and.a |
| 126560 | 20 2f 35 36 20 73 75 62 6e 65 74 20 66 6f 72 20 74 68 65 20 63 6c 69 65 6e 74 73 20 69 6e 74 65 | ./56.subnet.for.the.clients.inte |
| 126580 | 72 6e 61 6c 20 75 73 65 2e 00 54 68 65 20 63 6c 69 65 6e 74 2c 20 6f 6e 63 65 20 73 75 63 63 65 | rnal.use..The.client,.once.succe |
| 1265a0 | 73 73 66 75 6c 6c 79 20 61 75 74 68 65 6e 74 69 63 61 74 65 64 2c 20 77 69 6c 6c 20 72 65 63 65 | ssfully.authenticated,.will.rece |
| 1265c0 | 69 76 65 20 61 6e 20 49 50 76 34 20 61 6e 64 20 61 6e 20 49 50 76 36 20 2f 36 34 20 61 64 64 72 | ive.an.IPv4.and.an.IPv6./64.addr |
| 1265e0 | 65 73 73 20 74 6f 20 74 65 72 6d 69 6e 61 74 65 20 74 68 65 20 70 70 70 6f 65 20 65 6e 64 70 6f | ess.to.terminate.the.pppoe.endpo |
| 126600 | 69 6e 74 20 6f 6e 20 74 68 65 20 63 6c 69 65 6e 74 20 73 69 64 65 20 61 6e 64 20 61 20 2f 35 36 | int.on.the.client.side.and.a./56 |
| 126620 | 20 73 75 62 6e 65 74 20 66 6f 72 20 74 68 65 20 63 6c 69 65 6e 74 73 20 69 6e 74 65 72 6e 61 6c | .subnet.for.the.clients.internal |
| 126640 | 20 75 73 65 2e 00 54 68 65 20 63 6c 69 65 6e 74 73 20 3a 61 62 62 72 3a 60 43 50 45 20 28 43 75 | .use..The.clients.:abbr:`CPE.(Cu |
| 126660 | 73 74 6f 6d 65 72 20 50 72 65 6d 69 73 65 73 20 45 71 75 69 70 6d 65 6e 74 29 60 20 63 61 6e 20 | stomer.Premises.Equipment)`.can. |
| 126680 | 6e 6f 77 20 63 6f 6d 6d 75 6e 69 63 61 74 65 20 76 69 61 20 49 50 76 34 20 6f 72 20 49 50 76 36 | now.communicate.via.IPv4.or.IPv6 |
| 1266a0 | 2e 20 41 6c 6c 20 64 65 76 69 63 65 73 20 62 65 68 69 6e 64 20 60 60 32 30 30 31 3a 64 62 38 3a | ..All.devices.behind.``2001:db8: |
| 1266c0 | 3a 61 30 30 3a 32 37 66 66 3a 66 65 32 66 3a 64 38 30 36 2f 36 34 60 60 20 63 61 6e 20 75 73 65 | :a00:27ff:fe2f:d806/64``.can.use |
| 1266e0 | 20 61 64 64 72 65 73 73 65 73 20 66 72 6f 6d 20 60 60 32 30 30 31 3a 64 62 38 3a 31 3a 3a 2f 35 | .addresses.from.``2001:db8:1::/5 |
| 126700 | 36 60 60 20 61 6e 64 20 63 61 6e 20 67 6c 6f 62 61 6c 6c 79 20 63 6f 6d 6d 75 6e 69 63 61 74 65 | 6``.and.can.globally.communicate |
| 126720 | 20 77 69 74 68 6f 75 74 20 74 68 65 20 6e 65 65 64 20 6f 66 20 61 6e 79 20 4e 41 54 20 72 75 6c | .without.the.need.of.any.NAT.rul |
| 126740 | 65 73 2e 00 54 68 65 20 63 6f 6d 6d 61 6e 64 20 3a 6f 70 63 6d 64 3a 60 73 68 6f 77 20 69 6e 74 | es..The.command.:opcmd:`show.int |
| 126760 | 65 72 66 61 63 65 73 20 77 69 72 65 67 75 61 72 64 20 77 67 30 31 20 70 75 62 6c 69 63 2d 6b 65 | erfaces.wireguard.wg01.public-ke |
| 126780 | 79 60 20 77 69 6c 6c 20 74 68 65 6e 20 73 68 6f 77 20 74 68 65 20 70 75 62 6c 69 63 20 6b 65 79 | y`.will.then.show.the.public.key |
| 1267a0 | 2c 20 77 68 69 63 68 20 6e 65 65 64 73 20 74 6f 20 62 65 20 73 68 61 72 65 64 20 77 69 74 68 20 | ,.which.needs.to.be.shared.with. |
| 1267c0 | 74 68 65 20 70 65 65 72 2e 00 54 68 65 20 63 6f 6d 6d 61 6e 64 20 61 6c 73 6f 20 67 65 6e 65 72 | the.peer..The.command.also.gener |
| 1267e0 | 61 74 65 73 20 61 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 73 6e 69 70 70 65 64 20 77 68 69 | ates.a.configuration.snipped.whi |
| 126800 | 63 68 20 63 61 6e 20 62 65 20 63 6f 70 79 2f 70 61 73 74 65 64 20 69 6e 74 6f 20 74 68 65 20 56 | ch.can.be.copy/pasted.into.the.V |
| 126820 | 79 4f 53 20 43 4c 49 20 69 66 20 6e 65 65 64 65 64 2e 20 54 68 65 20 73 75 70 70 6c 69 65 64 20 | yOS.CLI.if.needed..The.supplied. |
| 126840 | 60 60 3c 6e 61 6d 65 3e 60 60 20 6f 6e 20 74 68 65 20 43 4c 49 20 77 69 6c 6c 20 62 65 63 6f 6d | ``<name>``.on.the.CLI.will.becom |
| 126860 | 65 20 74 68 65 20 70 65 65 72 20 6e 61 6d 65 20 69 6e 20 74 68 65 20 73 6e 69 70 70 65 74 2e 00 | e.the.peer.name.in.the.snippet.. |
| 126880 | 54 68 65 20 63 6f 6d 6d 61 6e 64 20 61 6c 73 6f 20 67 65 6e 65 72 61 74 65 73 20 61 20 63 6f 6e | The.command.also.generates.a.con |
| 1268a0 | 66 69 67 75 72 61 74 69 6f 6e 20 73 6e 69 70 70 65 74 20 77 68 69 63 68 20 63 61 6e 20 62 65 20 | figuration.snippet.which.can.be. |
| 1268c0 | 63 6f 70 79 2f 70 61 73 74 65 64 20 69 6e 74 6f 20 74 68 65 20 56 79 4f 53 20 43 4c 49 20 69 66 | copy/pasted.into.the.VyOS.CLI.if |
| 1268e0 | 20 6e 65 65 64 65 64 2e 20 54 68 65 20 73 75 70 70 6c 69 65 64 20 60 60 3c 6e 61 6d 65 3e 60 60 | .needed..The.supplied.``<name>`` |
| 126900 | 20 6f 6e 20 74 68 65 20 43 4c 49 20 77 69 6c 6c 20 62 65 63 6f 6d 65 20 74 68 65 20 70 65 65 72 | .on.the.CLI.will.become.the.peer |
| 126920 | 20 6e 61 6d 65 20 69 6e 20 74 68 65 20 73 6e 69 70 70 65 74 2e 00 54 68 65 20 63 6f 6d 6d 61 6e | .name.in.the.snippet..The.comman |
| 126940 | 64 20 62 65 6c 6f 77 20 65 6e 61 62 6c 65 73 20 69 74 2c 20 61 73 73 75 6d 69 6e 67 20 74 68 65 | d.below.enables.it,.assuming.the |
| 126960 | 20 52 41 44 49 55 53 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 68 61 73 20 62 65 65 6e 20 73 65 74 75 | .RADIUS.connection.has.been.setu |
| 126980 | 70 20 61 6e 64 20 69 73 20 77 6f 72 6b 69 6e 67 2e 00 54 68 65 20 63 6f 6d 6d 61 6e 64 20 64 69 | p.and.is.working..The.command.di |
| 1269a0 | 73 70 6c 61 79 73 20 63 75 72 72 65 6e 74 20 52 49 50 20 73 74 61 74 75 73 2e 20 49 74 20 69 6e | splays.current.RIP.status..It.in |
| 1269c0 | 63 6c 75 64 65 73 20 52 49 50 20 74 69 6d 65 72 2c 20 66 69 6c 74 65 72 69 6e 67 2c 20 76 65 72 | cludes.RIP.timer,.filtering,.ver |
| 1269e0 | 73 69 6f 6e 2c 20 52 49 50 20 65 6e 61 62 6c 65 64 20 69 6e 74 65 72 66 61 63 65 20 61 6e 64 20 | sion,.RIP.enabled.interface.and. |
| 126a00 | 52 49 50 20 70 65 65 72 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2e 00 54 68 65 20 63 6f 6d 6d 61 6e | RIP.peer.information..The.comman |
| 126a20 | 64 20 70 6f 6e 20 54 45 53 54 55 4e 4e 45 4c 20 65 73 74 61 62 6c 69 73 68 65 73 20 74 68 65 20 | d.pon.TESTUNNEL.establishes.the. |
| 126a40 | 50 50 54 50 20 74 75 6e 6e 65 6c 20 74 6f 20 74 68 65 20 72 65 6d 6f 74 65 20 73 79 73 74 65 6d | PPTP.tunnel.to.the.remote.system |
| 126a60 | 2e 00 54 68 65 20 63 6f 6d 6d 61 6e 64 20 74 72 61 6e 73 6c 61 74 65 73 20 74 6f 20 22 2d 2d 63 | ..The.command.translates.to."--c |
| 126a80 | 70 75 73 3d 3c 6e 75 6d 3e 22 20 77 68 65 6e 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 20 69 73 | pus=<num>".when.the.container.is |
| 126aa0 | 20 63 72 65 61 74 65 64 2e 00 54 68 65 20 63 6f 6d 6d 61 6e 64 20 74 72 61 6e 73 6c 61 74 65 73 | .created..The.command.translates |
| 126ac0 | 20 74 6f 20 22 2d 2d 6e 65 74 20 68 6f 73 74 22 20 77 68 65 6e 20 74 68 65 20 63 6f 6e 74 61 69 | .to."--net.host".when.the.contai |
| 126ae0 | 6e 65 72 20 69 73 20 63 72 65 61 74 65 64 2e 00 54 68 65 20 63 6f 6d 6d 61 6e 64 20 74 72 61 6e | ner.is.created..The.command.tran |
| 126b00 | 73 6c 61 74 65 73 20 74 6f 20 22 2d 2d 70 69 64 20 68 6f 73 74 22 20 77 68 65 6e 20 74 68 65 20 | slates.to."--pid.host".when.the. |
| 126b20 | 63 6f 6e 74 61 69 6e 65 72 20 69 73 20 63 72 65 61 74 65 64 2e 00 54 68 65 20 63 6f 6d 70 75 74 | container.is.created..The.comput |
| 126b40 | 65 72 73 20 6f 6e 20 61 6e 20 69 6e 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 20 63 61 6e 20 75 | ers.on.an.internal.network.can.u |
| 126b60 | 73 65 20 61 6e 79 20 6f 66 20 74 68 65 20 61 64 64 72 65 73 73 65 73 20 73 65 74 20 61 73 69 64 | se.any.of.the.addresses.set.asid |
| 126b80 | 65 20 62 79 20 74 68 65 20 3a 61 62 62 72 3a 60 49 41 4e 41 20 28 49 6e 74 65 72 6e 65 74 20 41 | e.by.the.:abbr:`IANA.(Internet.A |
| 126ba0 | 73 73 69 67 6e 65 64 20 4e 75 6d 62 65 72 73 20 41 75 74 68 6f 72 69 74 79 29 60 20 66 6f 72 20 | ssigned.Numbers.Authority)`.for. |
| 126bc0 | 70 72 69 76 61 74 65 20 61 64 64 72 65 73 73 69 6e 67 20 28 73 65 65 20 3a 72 66 63 3a 60 31 39 | private.addressing.(see.:rfc:`19 |
| 126be0 | 31 38 60 29 2e 20 54 68 65 73 65 20 72 65 73 65 72 76 65 64 20 49 50 20 61 64 64 72 65 73 73 65 | 18`)..These.reserved.IP.addresse |
| 126c00 | 73 20 61 72 65 20 6e 6f 74 20 69 6e 20 75 73 65 20 6f 6e 20 74 68 65 20 49 6e 74 65 72 6e 65 74 | s.are.not.in.use.on.the.Internet |
| 126c20 | 2c 20 73 6f 20 61 6e 20 65 78 74 65 72 6e 61 6c 20 6d 61 63 68 69 6e 65 20 77 69 6c 6c 20 6e 6f | ,.so.an.external.machine.will.no |
| 126c40 | 74 20 64 69 72 65 63 74 6c 79 20 72 6f 75 74 65 20 74 6f 20 74 68 65 6d 2e 20 54 68 65 20 66 6f | t.directly.route.to.them..The.fo |
| 126c60 | 6c 6c 6f 77 69 6e 67 20 61 64 64 72 65 73 73 65 73 20 61 72 65 20 72 65 73 65 72 76 65 64 20 66 | llowing.addresses.are.reserved.f |
| 126c80 | 6f 72 20 70 72 69 76 61 74 65 20 75 73 65 3a 00 54 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f | or.private.use:.The.configuratio |
| 126ca0 | 6e 20 77 69 6c 6c 20 6c 6f 6f 6b 20 61 73 20 66 6f 6c 6c 6f 77 73 3a 00 54 68 65 20 63 6f 6e 66 | n.will.look.as.follows:.The.conf |
| 126cc0 | 69 67 75 72 61 74 69 6f 6e 73 20 61 62 6f 76 65 20 77 69 6c 6c 20 64 65 66 61 75 6c 74 20 74 6f | igurations.above.will.default.to |
| 126ce0 | 20 75 73 69 6e 67 20 32 35 36 2d 62 69 74 20 41 45 53 20 69 6e 20 47 43 4d 20 6d 6f 64 65 20 66 | .using.256-bit.AES.in.GCM.mode.f |
| 126d00 | 6f 72 20 65 6e 63 72 79 70 74 69 6f 6e 20 28 69 66 20 62 6f 74 68 20 73 69 64 65 73 20 73 75 70 | or.encryption.(if.both.sides.sup |
| 126d20 | 70 6f 72 74 20 4e 43 50 29 20 61 6e 64 20 53 48 41 2d 31 20 66 6f 72 20 48 4d 41 43 20 61 75 74 | port.NCP).and.SHA-1.for.HMAC.aut |
| 126d40 | 68 65 6e 74 69 63 61 74 69 6f 6e 2e 20 53 48 41 2d 31 20 69 73 20 63 6f 6e 73 69 64 65 72 65 64 | hentication..SHA-1.is.considered |
| 126d60 | 20 77 65 61 6b 2c 20 62 75 74 20 6f 74 68 65 72 20 68 61 73 68 69 6e 67 20 61 6c 67 6f 72 69 74 | .weak,.but.other.hashing.algorit |
| 126d80 | 68 6d 73 20 61 72 65 20 61 76 61 69 6c 61 62 6c 65 2c 20 61 73 20 61 72 65 20 65 6e 63 72 79 70 | hms.are.available,.as.are.encryp |
| 126da0 | 74 69 6f 6e 20 61 6c 67 6f 72 69 74 68 6d 73 3a 00 54 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 | tion.algorithms:.The.configurati |
| 126dc0 | 6f 6e 73 20 61 62 6f 76 65 20 77 69 6c 6c 20 64 65 66 61 75 6c 74 20 74 6f 20 75 73 69 6e 67 20 | ons.above.will.default.to.using. |
| 126de0 | 32 35 36 2d 62 69 74 20 41 45 53 20 69 6e 20 47 43 4d 20 6d 6f 64 65 20 66 6f 72 20 65 6e 63 72 | 256-bit.AES.in.GCM.mode.for.encr |
| 126e00 | 79 70 74 69 6f 6e 20 28 69 66 20 62 6f 74 68 20 73 69 64 65 73 20 73 75 70 70 6f 72 74 20 64 61 | yption.(if.both.sides.support.da |
| 126e20 | 74 61 20 63 69 70 68 65 72 20 6e 65 67 6f 74 69 61 74 69 6f 6e 29 20 61 6e 64 20 53 48 41 2d 31 | ta.cipher.negotiation).and.SHA-1 |
| 126e40 | 20 66 6f 72 20 48 4d 41 43 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2e 20 53 48 41 2d 31 20 | .for.HMAC.authentication..SHA-1. |
| 126e60 | 69 73 20 63 6f 6e 73 69 64 65 72 65 64 20 77 65 61 6b 2c 20 62 75 74 20 6f 74 68 65 72 20 68 61 | is.considered.weak,.but.other.ha |
| 126e80 | 73 68 69 6e 67 20 61 6c 67 6f 72 69 74 68 6d 73 20 61 72 65 20 61 76 61 69 6c 61 62 6c 65 2c 20 | shing.algorithms.are.available,. |
| 126ea0 | 61 73 20 61 72 65 20 65 6e 63 72 79 70 74 69 6f 6e 20 61 6c 67 6f 72 69 74 68 6d 73 3a 00 54 68 | as.are.encryption.algorithms:.Th |
| 126ec0 | 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 73 74 61 74 65 20 68 6f 77 65 76 65 72 20 69 73 20 63 6f | e.connection.state.however.is.co |
| 126ee0 | 6d 70 6c 65 74 65 6c 79 20 69 6e 64 65 70 65 6e 64 65 6e 74 20 6f 66 20 61 6e 79 20 75 70 70 65 | mpletely.independent.of.any.uppe |
| 126f00 | 72 2d 6c 65 76 65 6c 20 73 74 61 74 65 2c 20 73 75 63 68 20 61 73 20 54 43 50 27 73 20 6f 72 20 | r-level.state,.such.as.TCP's.or. |
| 126f20 | 53 43 54 50 27 73 20 73 74 61 74 65 2e 20 50 61 72 74 20 6f 66 20 74 68 65 20 72 65 61 73 6f 6e | SCTP's.state..Part.of.the.reason |
| 126f40 | 20 66 6f 72 20 74 68 69 73 20 69 73 20 74 68 61 74 20 77 68 65 6e 20 6d 65 72 65 6c 79 20 66 6f | .for.this.is.that.when.merely.fo |
| 126f60 | 72 77 61 72 64 69 6e 67 20 70 61 63 6b 65 74 73 2c 20 69 2e 65 2e 20 6e 6f 20 6c 6f 63 61 6c 20 | rwarding.packets,.i.e..no.local. |
| 126f80 | 64 65 6c 69 76 65 72 79 2c 20 74 68 65 20 54 43 50 20 65 6e 67 69 6e 65 20 6d 61 79 20 6e 6f 74 | delivery,.the.TCP.engine.may.not |
| 126fa0 | 20 6e 65 63 65 73 73 61 72 69 6c 79 20 62 65 20 69 6e 76 6f 6b 65 64 20 61 74 20 61 6c 6c 2e 20 | .necessarily.be.invoked.at.all.. |
| 126fc0 | 45 76 65 6e 20 63 6f 6e 6e 65 63 74 69 6f 6e 6c 65 73 73 2d 6d 6f 64 65 20 74 72 61 6e 73 6d 69 | Even.connectionless-mode.transmi |
| 126fe0 | 73 73 69 6f 6e 73 20 73 75 63 68 20 61 73 20 55 44 50 2c 20 49 50 73 65 63 20 28 41 48 2f 45 53 | ssions.such.as.UDP,.IPsec.(AH/ES |
| 127000 | 50 29 2c 20 47 52 45 20 61 6e 64 20 6f 74 68 65 72 20 74 75 6e 6e 65 6c 69 6e 67 20 70 72 6f 74 | P),.GRE.and.other.tunneling.prot |
| 127020 | 6f 63 6f 6c 73 20 68 61 76 65 2c 20 61 74 20 6c 65 61 73 74 2c 20 61 20 70 73 65 75 64 6f 20 63 | ocols.have,.at.least,.a.pseudo.c |
| 127040 | 6f 6e 6e 65 63 74 69 6f 6e 20 73 74 61 74 65 2e 20 54 68 65 20 68 65 75 72 69 73 74 69 63 20 66 | onnection.state..The.heuristic.f |
| 127060 | 6f 72 20 73 75 63 68 20 70 72 6f 74 6f 63 6f 6c 73 20 69 73 20 6f 66 74 65 6e 20 62 61 73 65 64 | or.such.protocols.is.often.based |
| 127080 | 20 75 70 6f 6e 20 61 20 70 72 65 73 65 74 20 74 69 6d 65 6f 75 74 20 76 61 6c 75 65 20 66 6f 72 | .upon.a.preset.timeout.value.for |
| 1270a0 | 20 69 6e 61 63 74 69 76 69 74 79 2c 20 61 66 74 65 72 20 77 68 6f 73 65 20 65 78 70 69 72 61 74 | .inactivity,.after.whose.expirat |
| 1270c0 | 69 6f 6e 20 61 20 4e 65 74 66 69 6c 74 65 72 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 69 73 20 64 72 | ion.a.Netfilter.connection.is.dr |
| 1270e0 | 6f 70 70 65 64 2e 00 54 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 65 | opped..The.connection.tracking.e |
| 127100 | 78 70 65 63 74 20 74 61 62 6c 65 20 63 6f 6e 74 61 69 6e 73 20 6f 6e 65 20 65 6e 74 72 79 20 66 | xpect.table.contains.one.entry.f |
| 127120 | 6f 72 20 65 61 63 68 20 65 78 70 65 63 74 65 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 72 65 6c 61 | or.each.expected.connection.rela |
| 127140 | 74 65 64 20 74 6f 20 61 6e 20 65 78 69 73 74 69 6e 67 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 20 54 | ted.to.an.existing.connection..T |
| 127160 | 68 65 73 65 20 61 72 65 20 67 65 6e 65 72 61 6c 6c 79 20 75 73 65 64 20 62 79 20 e2 80 9c 63 6f | hese.are.generally.used.by....co |
| 127180 | 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 68 65 6c 70 65 72 e2 80 9d 20 6d 6f 64 75 | nnection.tracking.helper....modu |
| 1271a0 | 6c 65 73 20 73 75 63 68 20 61 73 20 46 54 50 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 73 69 7a | les.such.as.FTP..The.default.siz |
| 1271c0 | 65 20 6f 66 20 74 68 65 20 65 78 70 65 63 74 20 74 61 62 6c 65 20 69 73 20 32 30 34 38 20 65 6e | e.of.the.expect.table.is.2048.en |
| 1271e0 | 74 72 69 65 73 2e 00 54 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 74 | tries..The.connection.tracking.t |
| 127200 | 61 62 6c 65 20 63 6f 6e 74 61 69 6e 73 20 6f 6e 65 20 65 6e 74 72 79 20 66 6f 72 20 65 61 63 68 | able.contains.one.entry.for.each |
| 127220 | 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 62 65 69 6e 67 20 74 72 61 63 6b 65 64 20 62 79 20 74 68 65 | .connection.being.tracked.by.the |
| 127240 | 20 73 79 73 74 65 6d 2e 00 54 68 65 20 63 6f 6e 74 61 69 6e 65 72 20 61 6e 64 20 74 68 65 20 68 | .system..The.container.and.the.h |
| 127260 | 6f 73 74 20 73 68 61 72 65 20 74 68 65 20 73 61 6d 65 20 70 72 6f 63 65 73 73 20 6e 61 6d 65 73 | ost.share.the.same.process.names |
| 127280 | 70 61 63 65 2e 20 54 68 69 73 20 6d 65 61 6e 73 20 74 68 61 74 20 70 72 6f 63 65 73 73 65 73 20 | pace..This.means.that.processes. |
| 1272a0 | 72 75 6e 6e 69 6e 67 20 6f 6e 20 74 68 65 20 68 6f 73 74 20 61 72 65 20 76 69 73 69 62 6c 65 20 | running.on.the.host.are.visible. |
| 1272c0 | 69 6e 73 69 64 65 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 2c 20 61 6e 64 20 70 72 6f 63 65 73 | inside.the.container,.and.proces |
| 1272e0 | 73 65 73 20 69 6e 73 69 64 65 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 20 61 72 65 20 76 69 73 | ses.inside.the.container.are.vis |
| 127300 | 69 62 6c 65 20 6f 6e 20 74 68 65 20 68 6f 73 74 2e 00 54 68 65 20 63 75 72 72 65 6e 74 20 61 74 | ible.on.the.host..The.current.at |
| 127320 | 74 72 69 62 75 74 65 20 27 46 69 6c 74 65 72 2d 49 64 27 20 69 73 20 62 65 69 6e 67 20 75 73 65 | tribute.'Filter-Id'.is.being.use |
| 127340 | 64 20 61 73 20 64 65 66 61 75 6c 74 20 61 6e 64 20 63 61 6e 20 62 65 20 73 65 74 75 70 20 77 69 | d.as.default.and.can.be.setup.wi |
| 127360 | 74 68 69 6e 20 52 41 44 49 55 53 3a 00 54 68 65 20 63 75 72 72 65 6e 74 20 61 74 74 72 69 62 75 | thin.RADIUS:.The.current.attribu |
| 127380 | 74 65 20 60 60 46 69 6c 74 65 72 2d 49 64 60 60 20 69 73 20 62 65 69 6e 67 20 75 73 65 64 20 61 | te.``Filter-Id``.is.being.used.a |
| 1273a0 | 73 20 64 65 66 61 75 6c 74 20 61 6e 64 20 63 61 6e 20 62 65 20 73 65 74 75 70 20 77 69 74 68 69 | s.default.and.can.be.setup.withi |
| 1273c0 | 6e 20 52 41 44 49 55 53 3a 00 54 68 65 20 63 75 72 72 65 6e 74 20 70 72 6f 74 6f 63 6f 6c 20 69 | n.RADIUS:.The.current.protocol.i |
| 1273e0 | 73 20 76 65 72 73 69 6f 6e 20 34 20 28 4e 54 50 76 34 29 2c 20 77 68 69 63 68 20 69 73 20 61 20 | s.version.4.(NTPv4),.which.is.a. |
| 127400 | 70 72 6f 70 6f 73 65 64 20 73 74 61 6e 64 61 72 64 20 61 73 20 64 6f 63 75 6d 65 6e 74 65 64 20 | proposed.standard.as.documented. |
| 127420 | 69 6e 20 3a 72 66 63 3a 60 35 39 30 35 60 2e 20 49 74 20 69 73 20 62 61 63 6b 77 61 72 64 20 63 | in.:rfc:`5905`..It.is.backward.c |
| 127440 | 6f 6d 70 61 74 69 62 6c 65 20 77 69 74 68 20 76 65 72 73 69 6f 6e 20 33 2c 20 73 70 65 63 69 66 | ompatible.with.version.3,.specif |
| 127460 | 69 65 64 20 69 6e 20 3a 72 66 63 3a 60 31 33 30 35 60 2e 00 54 68 65 20 64 61 65 6d 6f 6e 20 64 | ied.in.:rfc:`1305`..The.daemon.d |
| 127480 | 6f 75 62 6c 65 73 20 74 68 65 20 73 69 7a 65 20 6f 66 20 74 68 65 20 6e 65 74 6c 69 6e 6b 20 65 | oubles.the.size.of.the.netlink.e |
| 1274a0 | 76 65 6e 74 20 73 6f 63 6b 65 74 20 62 75 66 66 65 72 20 73 69 7a 65 20 69 66 20 69 74 20 64 65 | vent.socket.buffer.size.if.it.de |
| 1274c0 | 74 65 63 74 73 20 6e 65 74 6c 69 6e 6b 20 65 76 65 6e 74 20 6d 65 73 73 61 67 65 20 64 72 6f 70 | tects.netlink.event.message.drop |
| 1274e0 | 70 69 6e 67 2e 20 54 68 69 73 20 63 6c 61 75 73 65 20 73 65 74 73 20 74 68 65 20 6d 61 78 69 6d | ping..This.clause.sets.the.maxim |
| 127500 | 75 6d 20 62 75 66 66 65 72 20 73 69 7a 65 20 67 72 6f 77 74 68 20 74 68 61 74 20 63 61 6e 20 62 | um.buffer.size.growth.that.can.b |
| 127520 | 65 20 72 65 61 63 68 65 64 2e 00 54 68 65 20 64 65 66 61 75 6c 74 20 52 41 44 49 55 53 20 61 74 | e.reached..The.default.RADIUS.at |
| 127540 | 74 72 69 62 75 74 65 20 66 6f 72 20 72 61 74 65 20 6c 69 6d 69 74 69 6e 67 20 69 73 20 60 60 46 | tribute.for.rate.limiting.is.``F |
| 127560 | 69 6c 74 65 72 2d 49 64 60 60 2c 20 62 75 74 20 79 6f 75 20 6d 61 79 20 61 6c 73 6f 20 72 65 64 | ilter-Id``,.but.you.may.also.red |
| 127580 | 65 66 69 6e 65 20 69 74 2e 00 54 68 65 20 64 65 66 61 75 6c 74 20 56 79 4f 53 20 75 73 65 72 20 | efine.it..The.default.VyOS.user. |
| 1275a0 | 61 63 63 6f 75 6e 74 20 28 60 76 79 6f 73 60 29 2c 20 61 73 20 77 65 6c 6c 20 61 73 20 6e 65 77 | account.(`vyos`),.as.well.as.new |
| 1275c0 | 6c 79 20 63 72 65 61 74 65 64 20 75 73 65 72 20 61 63 63 6f 75 6e 74 73 2c 20 68 61 76 65 20 61 | ly.created.user.accounts,.have.a |
| 1275e0 | 6c 6c 20 63 61 70 61 62 69 6c 69 74 69 65 73 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 | ll.capabilities.to.configure.the |
| 127600 | 20 73 79 73 74 65 6d 2e 20 41 6c 6c 20 61 63 63 6f 75 6e 74 73 20 68 61 76 65 20 73 75 64 6f 20 | .system..All.accounts.have.sudo. |
| 127620 | 63 61 70 61 62 69 6c 69 74 69 65 73 20 61 6e 64 20 74 68 65 72 65 66 6f 72 65 20 63 61 6e 20 6f | capabilities.and.therefore.can.o |
| 127640 | 70 65 72 61 74 65 20 61 73 20 72 6f 6f 74 20 6f 6e 20 74 68 65 20 73 79 73 74 65 6d 2e 00 54 68 | perate.as.root.on.the.system..Th |
| 127660 | 65 20 64 65 66 61 75 6c 74 20 68 6f 73 74 6e 61 6d 65 20 75 73 65 64 20 69 73 20 60 76 79 6f 73 | e.default.hostname.used.is.`vyos |
| 127680 | 60 2e 00 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 31 34 39 32 2e 00 54 68 65 20 64 65 66 61 | `..The.default.is.1492..The.defa |
| 1276a0 | 75 6c 74 20 69 73 20 60 60 38 30 32 2e 31 71 60 60 2e 00 54 68 65 20 64 65 66 61 75 6c 74 20 6c | ult.is.``802.1q``..The.default.l |
| 1276c0 | 65 61 73 65 20 74 69 6d 65 20 66 6f 72 20 44 48 43 50 76 36 20 6c 65 61 73 65 73 20 69 73 20 32 | ease.time.for.DHCPv6.leases.is.2 |
| 1276e0 | 34 20 68 6f 75 72 73 2e 20 54 68 69 73 20 63 61 6e 20 62 65 20 63 68 61 6e 67 65 64 20 62 79 20 | 4.hours..This.can.be.changed.by. |
| 127700 | 73 75 70 70 6c 79 69 6e 67 20 61 20 60 60 64 65 66 61 75 6c 74 2d 74 69 6d 65 60 60 2c 20 60 60 | supplying.a.``default-time``,.`` |
| 127720 | 6d 61 78 69 6d 75 6d 2d 74 69 6d 65 60 60 20 61 6e 64 20 60 60 6d 69 6e 69 6d 75 6d 2d 74 69 6d | maximum-time``.and.``minimum-tim |
| 127740 | 65 60 60 2e 20 41 6c 6c 20 76 61 6c 75 65 73 20 6e 65 65 64 20 74 6f 20 62 65 20 73 75 70 70 6c | e``..All.values.need.to.be.suppl |
| 127760 | 69 65 64 20 69 6e 20 73 65 63 6f 6e 64 73 2e 00 54 68 65 20 64 65 66 61 75 6c 74 20 70 6f 72 74 | ied.in.seconds..The.default.port |
| 127780 | 20 75 64 70 20 69 73 20 73 65 74 20 74 6f 20 38 34 37 32 2e 20 49 74 20 63 61 6e 20 62 65 20 63 | .udp.is.set.to.8472..It.can.be.c |
| 1277a0 | 68 61 6e 67 65 64 20 77 69 74 68 20 60 60 73 65 74 20 69 6e 74 65 72 66 61 63 65 20 76 78 6c 61 | hanged.with.``set.interface.vxla |
| 1277c0 | 6e 20 3c 76 78 6c 61 6e 4e 3e 20 70 6f 72 74 20 3c 70 6f 72 74 3e 60 60 00 54 68 65 20 64 65 66 | n.<vxlanN>.port.<port>``.The.def |
| 1277e0 | 61 75 6c 74 20 74 69 6d 65 20 69 73 20 36 30 20 73 65 63 6f 6e 64 73 2e 00 54 68 65 20 64 65 66 | ault.time.is.60.seconds..The.def |
| 127800 | 61 75 6c 74 20 76 61 6c 75 65 20 63 6f 72 72 65 73 70 6f 6e 64 73 20 74 6f 20 36 34 2e 00 54 68 | ault.value.corresponds.to.64..Th |
| 127820 | 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 30 2e 20 54 68 69 73 20 77 69 6c 6c 20 | e.default.value.is.0..This.will. |
| 127840 | 63 61 75 73 65 20 74 68 65 20 63 61 72 72 69 65 72 20 74 6f 20 62 65 20 61 73 73 65 72 74 65 64 | cause.the.carrier.to.be.asserted |
| 127860 | 20 28 66 6f 72 20 38 30 32 2e 33 61 64 20 6d 6f 64 65 29 20 77 68 65 6e 65 76 65 72 20 74 68 65 | .(for.802.3ad.mode).whenever.the |
| 127880 | 72 65 20 69 73 20 61 6e 20 61 63 74 69 76 65 20 61 67 67 72 65 67 61 74 6f 72 2c 20 72 65 67 61 | re.is.an.active.aggregator,.rega |
| 1278a0 | 72 64 6c 65 73 73 20 6f 66 20 74 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 61 76 61 69 6c 61 62 6c | rdless.of.the.number.of.availabl |
| 1278c0 | 65 20 6c 69 6e 6b 73 20 69 6e 20 74 68 61 74 20 61 67 67 72 65 67 61 74 6f 72 2e 00 54 68 65 20 | e.links.in.that.aggregator..The. |
| 1278e0 | 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 33 20 70 61 63 6b 65 74 73 2e 00 54 68 65 20 | default.value.is.3.packets..The. |
| 127900 | 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 33 2e 00 54 68 65 20 64 65 66 61 75 6c 74 20 | default.value.is.3..The.default. |
| 127920 | 76 61 6c 75 65 20 69 73 20 33 30 30 20 73 65 63 6f 6e 64 73 2e 00 54 68 65 20 64 65 66 61 75 6c | value.is.300.seconds..The.defaul |
| 127940 | 74 20 76 61 6c 75 65 20 69 73 20 36 30 30 20 73 65 63 6f 6e 64 73 2e 00 54 68 65 20 64 65 66 61 | t.value.is.600.seconds..The.defa |
| 127960 | 75 6c 74 20 76 61 6c 75 65 20 69 73 20 37 32 30 30 20 73 65 63 6f 6e 64 73 2e 00 54 68 65 20 64 | ult.value.is.7200.seconds..The.d |
| 127980 | 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 38 36 34 30 30 20 73 65 63 6f 6e 64 73 20 77 68 | efault.value.is.86400.seconds.wh |
| 1279a0 | 69 63 68 20 63 6f 72 72 65 73 70 6f 6e 64 73 20 74 6f 20 6f 6e 65 20 64 61 79 2e 00 54 68 65 20 | ich.corresponds.to.one.day..The. |
| 1279c0 | 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 73 6c 6f 77 2e 00 54 68 65 20 64 65 66 61 75 | default.value.is.slow..The.defau |
| 1279e0 | 6c 74 20 76 61 6c 75 65 73 20 66 6f 72 20 74 68 65 20 6d 69 6e 69 6d 75 6d 2d 74 68 72 65 73 68 | lt.values.for.the.minimum-thresh |
| 127a00 | 6f 6c 64 20 64 65 70 65 6e 64 20 6f 6e 20 49 50 20 70 72 65 63 65 64 65 6e 63 65 3a 00 54 68 65 | old.depend.on.IP.precedence:.The |
| 127a20 | 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 70 6f 72 74 20 75 73 65 64 20 66 6f 72 20 63 72 65 61 74 | .destination.port.used.for.creat |
| 127a40 | 69 6e 67 20 61 20 56 58 4c 41 4e 20 69 6e 74 65 72 66 61 63 65 20 69 6e 20 4c 69 6e 75 78 20 64 | ing.a.VXLAN.interface.in.Linux.d |
| 127a60 | 65 66 61 75 6c 74 73 20 74 6f 20 69 74 73 20 70 72 65 2d 73 74 61 6e 64 61 72 64 20 76 61 6c 75 | efaults.to.its.pre-standard.valu |
| 127a80 | 65 20 6f 66 20 38 34 37 32 20 74 6f 20 70 72 65 73 65 72 76 65 20 62 61 63 6b 77 61 72 64 20 63 | e.of.8472.to.preserve.backward.c |
| 127aa0 | 6f 6d 70 61 74 69 62 69 6c 69 74 79 2e 20 41 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 64 69 | ompatibility..A.configuration.di |
| 127ac0 | 72 65 63 74 69 76 65 20 74 6f 20 73 75 70 70 6f 72 74 20 61 20 75 73 65 72 2d 73 70 65 63 69 66 | rective.to.support.a.user-specif |
| 127ae0 | 69 65 64 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 70 6f 72 74 20 74 6f 20 6f 76 65 72 72 69 64 65 | ied.destination.port.to.override |
| 127b00 | 20 74 68 61 74 20 62 65 68 61 76 69 6f 72 20 69 73 20 61 76 61 69 6c 61 62 6c 65 20 75 73 69 6e | .that.behavior.is.available.usin |
| 127b20 | 67 20 74 68 65 20 61 62 6f 76 65 20 63 6f 6d 6d 61 6e 64 2e 00 54 68 65 20 64 65 76 69 63 65 20 | g.the.above.command..The.device. |
| 127b40 | 63 61 6e 20 6f 6e 6c 79 20 72 65 63 65 69 76 65 20 70 61 63 6b 65 74 73 20 77 69 74 68 20 56 4e | can.only.receive.packets.with.VN |
| 127b60 | 49 73 20 63 6f 6e 66 69 67 75 72 65 64 20 69 6e 20 74 68 65 20 56 4e 49 20 66 69 6c 74 65 72 69 | Is.configured.in.the.VNI.filteri |
| 127b80 | 6e 67 20 74 61 62 6c 65 2e 00 54 68 65 20 64 69 61 6c 6f 67 75 65 20 62 65 74 77 65 65 6e 20 48 | ng.table..The.dialogue.between.H |
| 127ba0 | 41 20 70 61 72 74 6e 65 72 73 20 69 73 20 6e 65 69 74 68 65 72 20 65 6e 63 72 79 70 74 65 64 20 | A.partners.is.neither.encrypted. |
| 127bc0 | 6e 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 65 64 2e 20 53 69 6e 63 65 20 6d 6f 73 74 20 44 48 | nor.authenticated..Since.most.DH |
| 127be0 | 43 50 20 73 65 72 76 65 72 73 20 65 78 69 73 74 20 77 69 74 68 69 6e 20 61 6e 20 6f 72 67 61 6e | CP.servers.exist.within.an.organ |
| 127c00 | 69 73 61 74 69 6f 6e 27 73 20 6f 77 6e 20 73 65 63 75 72 65 20 49 6e 74 72 61 6e 65 74 2c 20 74 | isation's.own.secure.Intranet,.t |
| 127c20 | 68 69 73 20 77 6f 75 6c 64 20 62 65 20 61 6e 20 75 6e 6e 65 63 65 73 73 61 72 79 20 6f 76 65 72 | his.would.be.an.unnecessary.over |
| 127c40 | 68 65 61 64 2e 20 48 6f 77 65 76 65 72 2c 20 69 66 20 79 6f 75 20 68 61 76 65 20 44 48 43 50 20 | head..However,.if.you.have.DHCP. |
| 127c60 | 48 41 20 70 65 65 72 73 20 77 68 6f 73 65 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6f 6e 73 20 74 72 | HA.peers.whose.communications.tr |
| 127c80 | 61 76 65 72 73 65 20 69 6e 73 65 63 75 72 65 20 6e 65 74 77 6f 72 6b 73 2c 20 74 68 65 6e 20 77 | averse.insecure.networks,.then.w |
| 127ca0 | 65 20 72 65 63 6f 6d 6d 65 6e 64 20 74 68 61 74 20 79 6f 75 20 63 6f 6e 73 69 64 65 72 20 74 68 | e.recommend.that.you.consider.th |
| 127cc0 | 65 20 75 73 65 20 6f 66 20 56 50 4e 20 74 75 6e 6e 65 6c 69 6e 67 20 62 65 74 77 65 65 6e 20 74 | e.use.of.VPN.tunneling.between.t |
| 127ce0 | 68 65 6d 20 74 6f 20 65 6e 73 75 72 65 20 74 68 61 74 20 74 68 65 20 48 41 20 70 61 72 74 6e 65 | hem.to.ensure.that.the.HA.partne |
| 127d00 | 72 73 68 69 70 20 69 73 20 69 6d 6d 75 6e 65 20 74 6f 20 64 69 73 72 75 70 74 69 6f 6e 20 28 61 | rship.is.immune.to.disruption.(a |
| 127d20 | 63 63 69 64 65 6e 74 61 6c 20 6f 72 20 6f 74 68 65 72 77 69 73 65 29 20 76 69 61 20 74 68 69 72 | ccidental.or.otherwise).via.thir |
| 127d40 | 64 20 70 61 72 74 69 65 73 2e 00 54 68 65 20 64 69 61 6c 6f 67 75 65 20 62 65 74 77 65 65 6e 20 | d.parties..The.dialogue.between. |
| 127d60 | 66 61 69 6c 6f 76 65 72 20 70 61 72 74 6e 65 72 73 20 69 73 20 6e 65 69 74 68 65 72 20 65 6e 63 | failover.partners.is.neither.enc |
| 127d80 | 72 79 70 74 65 64 20 6e 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 65 64 2e 20 53 69 6e 63 65 20 | rypted.nor.authenticated..Since. |
| 127da0 | 6d 6f 73 74 20 44 48 43 50 20 73 65 72 76 65 72 73 20 65 78 69 73 74 20 77 69 74 68 69 6e 20 61 | most.DHCP.servers.exist.within.a |
| 127dc0 | 6e 20 6f 72 67 61 6e 69 73 61 74 69 6f 6e 27 73 20 6f 77 6e 20 73 65 63 75 72 65 20 49 6e 74 72 | n.organisation's.own.secure.Intr |
| 127de0 | 61 6e 65 74 2c 20 74 68 69 73 20 77 6f 75 6c 64 20 62 65 20 61 6e 20 75 6e 6e 65 63 65 73 73 61 | anet,.this.would.be.an.unnecessa |
| 127e00 | 72 79 20 6f 76 65 72 68 65 61 64 2e 20 48 6f 77 65 76 65 72 2c 20 69 66 20 79 6f 75 20 68 61 76 | ry.overhead..However,.if.you.hav |
| 127e20 | 65 20 44 48 43 50 20 66 61 69 6c 6f 76 65 72 20 70 65 65 72 73 20 77 68 6f 73 65 20 63 6f 6d 6d | e.DHCP.failover.peers.whose.comm |
| 127e40 | 75 6e 69 63 61 74 69 6f 6e 73 20 74 72 61 76 65 72 73 65 20 69 6e 73 65 63 75 72 65 20 6e 65 74 | unications.traverse.insecure.net |
| 127e60 | 77 6f 72 6b 73 2c 20 74 68 65 6e 20 77 65 20 72 65 63 6f 6d 6d 65 6e 64 20 74 68 61 74 20 79 6f | works,.then.we.recommend.that.yo |
| 127e80 | 75 20 63 6f 6e 73 69 64 65 72 20 74 68 65 20 75 73 65 20 6f 66 20 56 50 4e 20 74 75 6e 6e 65 6c | u.consider.the.use.of.VPN.tunnel |
| 127ea0 | 69 6e 67 20 62 65 74 77 65 65 6e 20 74 68 65 6d 20 74 6f 20 65 6e 73 75 72 65 20 74 68 61 74 20 | ing.between.them.to.ensure.that. |
| 127ec0 | 74 68 65 20 66 61 69 6c 6f 76 65 72 20 70 61 72 74 6e 65 72 73 68 69 70 20 69 73 20 69 6d 6d 75 | the.failover.partnership.is.immu |
| 127ee0 | 6e 65 20 74 6f 20 64 69 73 72 75 70 74 69 6f 6e 20 28 61 63 63 69 64 65 6e 74 61 6c 20 6f 72 20 | ne.to.disruption.(accidental.or. |
| 127f00 | 6f 74 68 65 72 77 69 73 65 29 20 76 69 61 20 74 68 69 72 64 20 70 61 72 74 69 65 73 2e 00 54 68 | otherwise).via.third.parties..Th |
| 127f20 | 65 20 64 6f 6d 61 69 6e 2d 6e 61 6d 65 20 70 61 72 61 6d 65 74 65 72 20 73 68 6f 75 6c 64 20 62 | e.domain-name.parameter.should.b |
| 127f40 | 65 20 74 68 65 20 64 6f 6d 61 69 6e 20 6e 61 6d 65 20 74 68 61 74 20 77 69 6c 6c 20 62 65 20 61 | e.the.domain.name.that.will.be.a |
| 127f60 | 70 70 65 6e 64 65 64 20 74 6f 20 74 68 65 20 63 6c 69 65 6e 74 27 73 20 68 6f 73 74 6e 61 6d 65 | ppended.to.the.client's.hostname |
| 127f80 | 20 74 6f 20 66 6f 72 6d 20 61 20 66 75 6c 6c 79 2d 71 75 61 6c 69 66 69 65 64 20 64 6f 6d 61 69 | .to.form.a.fully-qualified.domai |
| 127fa0 | 6e 2d 6e 61 6d 65 20 28 46 51 44 4e 29 20 28 44 48 43 50 20 4f 70 74 69 6f 6e 20 30 31 35 29 2e | n-name.(FQDN).(DHCP.Option.015). |
| 127fc0 | 00 54 68 65 20 64 6f 6d 61 69 6e 2d 6e 61 6d 65 20 70 61 72 61 6d 65 74 65 72 20 73 68 6f 75 6c | .The.domain-name.parameter.shoul |
| 127fe0 | 64 20 62 65 20 74 68 65 20 64 6f 6d 61 69 6e 20 6e 61 6d 65 20 75 73 65 64 20 77 68 65 6e 20 63 | d.be.the.domain.name.used.when.c |
| 128000 | 6f 6d 70 6c 65 74 69 6e 67 20 44 4e 53 20 72 65 71 75 65 73 74 20 77 68 65 72 65 20 6e 6f 20 66 | ompleting.DNS.request.where.no.f |
| 128020 | 75 6c 6c 20 46 51 44 4e 20 69 73 20 70 61 73 73 65 64 2e 20 54 68 69 73 20 6f 70 74 69 6f 6e 20 | ull.FQDN.is.passed..This.option. |
| 128040 | 63 61 6e 20 62 65 20 67 69 76 65 6e 20 6d 75 6c 74 69 70 6c 65 20 74 69 6d 65 73 20 69 66 20 79 | can.be.given.multiple.times.if.y |
| 128060 | 6f 75 20 6e 65 65 64 20 6d 75 6c 74 69 70 6c 65 20 73 65 61 72 63 68 20 64 6f 6d 61 69 6e 73 20 | ou.need.multiple.search.domains. |
| 128080 | 28 44 48 43 50 20 4f 70 74 69 6f 6e 20 31 31 39 29 2e 00 54 68 65 20 64 75 6d 6d 79 20 69 6e 74 | (DHCP.Option.119)..The.dummy.int |
| 1280a0 | 65 72 66 61 63 65 20 61 6c 6c 6f 77 73 20 75 73 20 74 6f 20 68 61 76 65 20 61 6e 20 65 71 75 69 | erface.allows.us.to.have.an.equi |
| 1280c0 | 76 61 6c 65 6e 74 20 6f 66 20 74 68 65 20 43 69 73 63 6f 20 49 4f 53 20 4c 6f 6f 70 62 61 63 6b | valent.of.the.Cisco.IOS.Loopback |
| 1280e0 | 20 69 6e 74 65 72 66 61 63 65 20 2d 20 61 20 72 6f 75 74 65 72 2d 69 6e 74 65 72 6e 61 6c 20 69 | .interface.-.a.router-internal.i |
| 128100 | 6e 74 65 72 66 61 63 65 20 77 65 20 63 61 6e 20 75 73 65 20 66 6f 72 20 49 50 20 61 64 64 72 65 | nterface.we.can.use.for.IP.addre |
| 128120 | 73 73 65 73 20 74 68 65 20 72 6f 75 74 65 72 20 6d 75 73 74 20 6b 6e 6f 77 20 61 62 6f 75 74 2c | sses.the.router.must.know.about, |
| 128140 | 20 62 75 74 20 77 68 69 63 68 20 61 72 65 20 6e 6f 74 20 61 63 74 75 61 6c 6c 79 20 61 73 73 69 | .but.which.are.not.actually.assi |
| 128160 | 67 6e 65 64 20 74 6f 20 61 20 72 65 61 6c 20 6e 65 74 77 6f 72 6b 2e 00 54 68 65 20 64 75 6d 6d | gned.to.a.real.network..The.dumm |
| 128180 | 79 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 72 65 61 6c 6c 79 20 61 20 6c 69 74 74 6c 65 20 65 | y.interface.is.really.a.little.e |
| 1281a0 | 78 6f 74 69 63 2c 20 62 75 74 20 72 61 74 68 65 72 20 75 73 65 66 75 6c 20 6e 65 76 65 72 74 68 | xotic,.but.rather.useful.neverth |
| 1281c0 | 65 6c 65 73 73 2e 20 44 75 6d 6d 79 20 69 6e 74 65 72 66 61 63 65 73 20 61 72 65 20 6d 75 63 68 | eless..Dummy.interfaces.are.much |
| 1281e0 | 20 6c 69 6b 65 20 74 68 65 20 3a 72 65 66 3a 60 6c 6f 6f 70 62 61 63 6b 2d 69 6e 74 65 72 66 61 | .like.the.:ref:`loopback-interfa |
| 128200 | 63 65 60 20 69 6e 74 65 72 66 61 63 65 2c 20 65 78 63 65 70 74 20 79 6f 75 20 63 61 6e 20 68 61 | ce`.interface,.except.you.can.ha |
| 128220 | 76 65 20 61 73 20 6d 61 6e 79 20 61 73 20 79 6f 75 20 77 61 6e 74 2e 00 54 68 65 20 65 6d 62 65 | ve.as.many.as.you.want..The.embe |
| 128240 | 64 64 65 64 20 53 71 75 69 64 20 70 72 6f 78 79 20 63 61 6e 20 75 73 65 20 4c 44 41 50 20 74 6f | dded.Squid.proxy.can.use.LDAP.to |
| 128260 | 20 61 75 74 68 65 6e 74 69 63 61 74 65 20 75 73 65 72 73 20 61 67 61 69 6e 73 74 20 61 20 63 6f | .authenticate.users.against.a.co |
| 128280 | 6d 70 61 6e 79 20 77 69 64 65 20 64 69 72 65 63 74 6f 72 79 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 | mpany.wide.directory..The.follow |
| 1282a0 | 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 73 20 61 6e 20 65 78 61 6d 70 6c 65 20 | ing.configuration.is.an.example. |
| 1282c0 | 6f 66 20 68 6f 77 20 74 6f 20 75 73 65 20 41 63 74 69 76 65 20 44 69 72 65 63 74 6f 72 79 20 61 | of.how.to.use.Active.Directory.a |
| 1282e0 | 73 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 62 61 63 6b 65 6e 64 2e 20 51 75 65 72 69 65 | s.authentication.backend..Querie |
| 128300 | 73 20 61 72 65 20 64 6f 6e 65 20 76 69 61 20 4c 44 41 50 2e 00 54 68 65 20 65 78 61 6d 70 6c 65 | s.are.done.via.LDAP..The.example |
| 128320 | 20 61 62 6f 76 65 20 75 73 65 73 20 31 39 32 2e 30 2e 32 2e 32 20 61 73 20 65 78 74 65 72 6e 61 | .above.uses.192.0.2.2.as.externa |
| 128340 | 6c 20 49 50 20 61 64 64 72 65 73 73 2e 20 41 20 4c 41 43 20 6e 6f 72 6d 61 6c 6c 79 20 72 65 71 | l.IP.address..A.LAC.normally.req |
| 128360 | 75 69 72 65 73 20 61 6e 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 70 61 73 73 77 6f 72 64 | uires.an.authentication.password |
| 128380 | 2c 20 77 68 69 63 68 20 69 73 20 73 65 74 20 69 6e 20 74 68 65 20 65 78 61 6d 70 6c 65 20 63 6f | ,.which.is.set.in.the.example.co |
| 1283a0 | 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 6f 20 60 60 6c 6e 73 20 73 68 61 72 65 64 2d 73 65 63 72 | nfiguration.to.``lns.shared-secr |
| 1283c0 | 65 74 20 27 73 65 63 72 65 74 27 60 60 2e 20 54 68 69 73 20 73 65 74 75 70 20 72 65 71 75 69 72 | et.'secret'``..This.setup.requir |
| 1283e0 | 65 73 20 74 68 65 20 43 6f 6d 70 72 65 73 73 69 6f 6e 20 43 6f 6e 74 72 6f 6c 20 50 72 6f 74 6f | es.the.Compression.Control.Proto |
| 128400 | 63 6f 6c 20 28 43 43 50 29 20 62 65 69 6e 67 20 64 69 73 61 62 6c 65 64 2c 20 74 68 65 20 63 6f | col.(CCP).being.disabled,.the.co |
| 128420 | 6d 6d 61 6e 64 20 60 60 73 65 74 20 76 70 6e 20 6c 32 74 70 20 72 65 6d 6f 74 65 2d 61 63 63 65 | mmand.``set.vpn.l2tp.remote-acce |
| 128440 | 73 73 20 63 63 70 2d 64 69 73 61 62 6c 65 60 60 20 61 63 63 6f 6d 70 6c 69 73 68 65 73 20 74 68 | ss.ccp-disable``.accomplishes.th |
| 128460 | 61 74 2e 00 54 68 65 20 65 78 61 6d 70 6c 65 20 62 65 6c 6f 77 20 63 6f 76 65 72 73 20 61 20 64 | at..The.example.below.covers.a.d |
| 128480 | 75 61 6c 2d 73 74 61 63 6b 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 76 69 61 20 70 70 70 6f | ual-stack.configuration.via.pppo |
| 1284a0 | 65 2d 73 65 72 76 65 72 2e 00 54 68 65 20 65 78 61 6d 70 6c 65 20 62 65 6c 6f 77 20 63 6f 76 65 | e-server..The.example.below.cove |
| 1284c0 | 72 73 20 61 20 64 75 61 6c 2d 73 74 61 63 6b 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 54 | rs.a.dual-stack.configuration..T |
| 1284e0 | 68 65 20 65 78 61 6d 70 6c 65 20 62 65 6c 6f 77 20 75 73 65 73 20 41 43 4e 20 61 73 20 61 63 63 | he.example.below.uses.ACN.as.acc |
| 128500 | 65 73 73 2d 63 6f 6e 63 65 6e 74 72 61 74 6f 72 20 6e 61 6d 65 2c 20 61 73 73 69 67 6e 73 20 61 | ess-concentrator.name,.assigns.a |
| 128520 | 6e 20 61 64 64 72 65 73 73 20 66 72 6f 6d 20 74 68 65 20 70 6f 6f 6c 20 31 30 2e 31 2e 31 2e 31 | n.address.from.the.pool.10.1.1.1 |
| 128540 | 30 30 2d 31 31 31 2c 20 74 65 72 6d 69 6e 61 74 65 73 20 61 74 20 74 68 65 20 6c 6f 63 61 6c 20 | 00-111,.terminates.at.the.local. |
| 128560 | 65 6e 64 70 6f 69 6e 74 20 31 30 2e 31 2e 31 2e 31 20 61 6e 64 20 73 65 72 76 65 73 20 72 65 71 | endpoint.10.1.1.1.and.serves.req |
| 128580 | 75 65 73 74 73 20 6f 6e 6c 79 20 6f 6e 20 65 74 68 31 2e 00 54 68 65 20 65 78 61 6d 70 6c 65 20 | uests.only.on.eth1..The.example. |
| 1285a0 | 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 62 65 6c 6f 77 20 77 69 6c 6c 20 61 73 73 69 67 6e 20 | configuration.below.will.assign. |
| 1285c0 | 61 6e 20 49 50 20 74 6f 20 74 68 65 20 63 6c 69 65 6e 74 20 6f 6e 20 74 68 65 20 69 6e 63 6f 6d | an.IP.to.the.client.on.the.incom |
| 1285e0 | 69 6e 67 20 69 6e 74 65 72 66 61 63 65 20 65 74 68 31 20 77 69 74 68 20 74 68 65 20 63 6c 69 65 | ing.interface.eth1.with.the.clie |
| 128600 | 6e 74 20 6d 61 63 20 61 64 64 72 65 73 73 20 30 30 3a 35 30 3a 37 39 3a 36 36 3a 36 38 3a 30 30 | nt.mac.address.00:50:79:66:68:00 |
| 128620 | 2e 20 4f 74 68 65 72 20 44 48 43 50 20 64 69 73 63 6f 76 65 72 79 20 72 65 71 75 65 73 74 73 20 | ..Other.DHCP.discovery.requests. |
| 128640 | 77 69 6c 6c 20 62 65 20 69 67 6e 6f 72 65 64 2c 20 75 6e 6c 65 73 73 20 74 68 65 20 63 6c 69 65 | will.be.ignored,.unless.the.clie |
| 128660 | 6e 74 20 6d 61 63 20 68 61 73 20 62 65 65 6e 20 65 6e 61 62 6c 65 64 20 69 6e 20 74 68 65 20 63 | nt.mac.has.been.enabled.in.the.c |
| 128680 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 54 68 65 20 65 78 61 6d 70 6c 65 20 63 6f 6e 66 69 67 | onfiguration..The.example.config |
| 1286a0 | 75 72 61 74 69 6f 6e 20 62 65 6c 6f 77 20 77 69 6c 6c 20 61 73 73 69 67 6e 20 61 6e 20 49 50 20 | uration.below.will.assign.an.IP. |
| 1286c0 | 74 6f 20 74 68 65 20 63 6c 69 65 6e 74 20 6f 6e 20 74 68 65 20 69 6e 63 6f 6d 69 6e 67 20 69 6e | to.the.client.on.the.incoming.in |
| 1286e0 | 74 65 72 66 61 63 65 20 65 74 68 32 20 77 69 74 68 20 74 68 65 20 63 6c 69 65 6e 74 20 6d 61 63 | terface.eth2.with.the.client.mac |
| 128700 | 20 61 64 64 72 65 73 73 20 30 38 3a 30 30 3a 32 37 3a 32 66 3a 64 38 3a 30 36 2e 20 4f 74 68 65 | .address.08:00:27:2f:d8:06..Othe |
| 128720 | 72 20 44 48 43 50 20 64 69 73 63 6f 76 65 72 79 20 72 65 71 75 65 73 74 73 20 77 69 6c 6c 20 62 | r.DHCP.discovery.requests.will.b |
| 128740 | 65 20 69 67 6e 6f 72 65 64 2c 20 75 6e 6c 65 73 73 20 74 68 65 20 63 6c 69 65 6e 74 20 6d 61 63 | e.ignored,.unless.the.client.mac |
| 128760 | 20 68 61 73 20 62 65 65 6e 20 65 6e 61 62 6c 65 64 20 69 6e 20 74 68 65 20 63 6f 6e 66 69 67 75 | .has.been.enabled.in.the.configu |
| 128780 | 72 61 74 69 6f 6e 2e 00 54 68 65 20 65 78 61 6d 70 6c 65 20 63 72 65 61 74 65 73 20 61 20 77 69 | ration..The.example.creates.a.wi |
| 1287a0 | 72 65 6c 65 73 73 20 73 74 61 74 69 6f 6e 20 28 63 6f 6d 6d 6f 6e 6c 79 20 72 65 66 65 72 72 65 | reless.station.(commonly.referre |
| 1287c0 | 64 20 74 6f 20 61 73 20 57 69 2d 46 69 20 63 6c 69 65 6e 74 29 20 74 68 61 74 20 61 63 63 65 73 | d.to.as.Wi-Fi.client).that.acces |
| 1287e0 | 73 65 73 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 74 68 72 6f 75 67 68 20 74 68 65 20 57 41 50 20 | ses.the.network.through.the.WAP. |
| 128800 | 64 65 66 69 6e 65 64 20 69 6e 20 74 68 65 20 61 62 6f 76 65 20 65 78 61 6d 70 6c 65 2e 20 54 68 | defined.in.the.above.example..Th |
| 128820 | 65 20 64 65 66 61 75 6c 74 20 70 68 79 73 69 63 61 6c 20 64 65 76 69 63 65 20 28 60 60 70 68 79 | e.default.physical.device.(``phy |
| 128840 | 30 60 60 29 20 69 73 20 75 73 65 64 2e 00 54 68 65 20 65 78 74 65 72 6e 61 6c 20 49 50 20 61 64 | 0``).is.used..The.external.IP.ad |
| 128860 | 64 72 65 73 73 20 74 6f 20 74 72 61 6e 73 6c 61 74 65 20 74 6f 00 54 68 65 20 66 69 72 65 77 61 | dress.to.translate.to.The.firewa |
| 128880 | 6c 6c 20 73 75 70 70 6f 72 74 73 20 74 68 65 20 63 72 65 61 74 69 6f 6e 20 6f 66 20 67 72 6f 75 | ll.supports.the.creation.of.grou |
| 1288a0 | 70 73 20 66 6f 72 20 61 64 64 72 65 73 73 65 73 2c 20 64 6f 6d 61 69 6e 73 2c 20 69 6e 74 65 72 | ps.for.addresses,.domains,.inter |
| 1288c0 | 66 61 63 65 73 2c 20 6d 61 63 2d 61 64 64 72 65 73 73 65 73 2c 20 6e 65 74 77 6f 72 6b 73 20 61 | faces,.mac-addresses,.networks.a |
| 1288e0 | 6e 64 20 70 6f 72 74 20 67 72 6f 75 70 73 2e 20 54 68 69 73 20 67 72 6f 75 70 73 20 63 61 6e 20 | nd.port.groups..This.groups.can. |
| 128900 | 62 65 20 75 73 65 64 20 6c 61 74 65 72 20 69 6e 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 65 | be.used.later.in.firewall.rulese |
| 128920 | 74 20 61 73 20 64 65 73 69 72 65 64 2e 00 54 68 65 20 66 69 72 65 77 61 6c 6c 20 73 75 70 70 6f | t.as.desired..The.firewall.suppo |
| 128940 | 72 74 73 20 74 68 65 20 63 72 65 61 74 69 6f 6e 20 6f 66 20 67 72 6f 75 70 73 20 66 6f 72 20 70 | rts.the.creation.of.groups.for.p |
| 128960 | 6f 72 74 73 2c 20 61 64 64 72 65 73 73 65 73 2c 20 61 6e 64 20 6e 65 74 77 6f 72 6b 73 20 28 69 | orts,.addresses,.and.networks.(i |
| 128980 | 6d 70 6c 65 6d 65 6e 74 65 64 20 75 73 69 6e 67 20 6e 65 74 66 69 6c 74 65 72 20 69 70 73 65 74 | mplemented.using.netfilter.ipset |
| 1289a0 | 29 20 61 6e 64 20 74 68 65 20 6f 70 74 69 6f 6e 20 6f 66 20 69 6e 74 65 72 66 61 63 65 20 6f 72 | ).and.the.option.of.interface.or |
| 1289c0 | 20 7a 6f 6e 65 20 62 61 73 65 64 20 66 69 72 65 77 61 6c 6c 20 70 6f 6c 69 63 79 2e 00 54 68 65 | .zone.based.firewall.policy..The |
| 1289e0 | 20 66 69 72 73 74 20 49 50 20 69 6e 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 20 6e 65 74 77 6f | .first.IP.in.the.container.netwo |
| 128a00 | 72 6b 20 69 73 20 72 65 73 65 72 76 65 64 20 62 79 20 74 68 65 20 65 6e 67 69 6e 65 20 61 6e 64 | rk.is.reserved.by.the.engine.and |
| 128a20 | 20 63 61 6e 6e 6f 74 20 62 65 20 75 73 65 64 00 54 68 65 20 66 69 72 73 74 20 61 64 64 72 65 73 | .cannot.be.used.The.first.addres |
| 128a40 | 73 20 6f 66 20 74 68 65 20 70 61 72 61 6d 65 74 65 72 20 60 60 63 6c 69 65 6e 74 2d 73 75 62 6e | s.of.the.parameter.``client-subn |
| 128a60 | 65 74 60 60 2c 20 77 69 6c 6c 20 62 65 20 75 73 65 64 20 61 73 20 74 68 65 20 64 65 66 61 75 6c | et``,.will.be.used.as.the.defaul |
| 128a80 | 74 20 67 61 74 65 77 61 79 2e 20 43 6f 6e 6e 65 63 74 65 64 20 73 65 73 73 69 6f 6e 73 20 63 61 | t.gateway..Connected.sessions.ca |
| 128aa0 | 6e 20 62 65 20 63 68 65 63 6b 65 64 20 76 69 61 20 74 68 65 20 60 60 73 68 6f 77 20 69 70 6f 65 | n.be.checked.via.the.``show.ipoe |
| 128ac0 | 2d 73 65 72 76 65 72 20 73 65 73 73 69 6f 6e 73 60 60 20 63 6f 6d 6d 61 6e 64 2e 00 54 68 65 20 | -server.sessions``.command..The. |
| 128ae0 | 66 69 72 73 74 20 61 6e 64 20 61 72 67 75 61 62 6c 79 20 63 6c 65 61 6e 65 72 20 6f 70 74 69 6f | first.and.arguably.cleaner.optio |
| 128b00 | 6e 20 69 73 20 74 6f 20 6d 61 6b 65 20 79 6f 75 72 20 49 50 73 65 63 20 70 6f 6c 69 63 79 20 6d | n.is.to.make.your.IPsec.policy.m |
| 128b20 | 61 74 63 68 20 47 52 45 20 70 61 63 6b 65 74 73 20 62 65 74 77 65 65 6e 20 65 78 74 65 72 6e 61 | atch.GRE.packets.between.externa |
| 128b40 | 6c 20 61 64 64 72 65 73 73 65 73 20 6f 66 20 79 6f 75 72 20 72 6f 75 74 65 72 73 2e 20 54 68 69 | l.addresses.of.your.routers..Thi |
| 128b60 | 73 20 69 73 20 74 68 65 20 62 65 73 74 20 6f 70 74 69 6f 6e 20 69 66 20 62 6f 74 68 20 72 6f 75 | s.is.the.best.option.if.both.rou |
| 128b80 | 74 65 72 73 20 68 61 76 65 20 73 74 61 74 69 63 20 65 78 74 65 72 6e 61 6c 20 61 64 64 72 65 73 | ters.have.static.external.addres |
| 128ba0 | 73 65 73 2e 00 54 68 65 20 66 69 72 73 74 20 66 6c 6f 77 20 63 6f 6e 74 72 6f 6c 20 6d 65 63 68 | ses..The.first.flow.control.mech |
| 128bc0 | 61 6e 69 73 6d 2c 20 74 68 65 20 70 61 75 73 65 20 66 72 61 6d 65 2c 20 77 61 73 20 64 65 66 69 | anism,.the.pause.frame,.was.defi |
| 128be0 | 6e 65 64 20 62 79 20 74 68 65 20 49 45 45 45 20 38 30 32 2e 33 78 20 73 74 61 6e 64 61 72 64 2e | ned.by.the.IEEE.802.3x.standard. |
| 128c00 | 00 54 68 65 20 66 69 72 73 74 20 69 70 20 61 64 64 72 65 73 73 20 69 73 20 74 68 65 20 52 50 27 | .The.first.ip.address.is.the.RP' |
| 128c20 | 73 20 61 64 64 72 65 73 73 20 61 6e 64 20 74 68 65 20 73 65 63 6f 6e 64 20 76 61 6c 75 65 20 69 | s.address.and.the.second.value.i |
| 128c40 | 73 20 74 68 65 20 6d 61 74 63 68 69 6e 67 20 70 72 65 66 69 78 20 6f 66 20 67 72 6f 75 70 20 72 | s.the.matching.prefix.of.group.r |
| 128c60 | 61 6e 67 65 73 20 63 6f 76 65 72 65 64 2e 00 54 68 65 20 66 69 72 73 74 20 72 65 67 69 73 74 72 | anges.covered..The.first.registr |
| 128c80 | 61 74 69 6f 6e 20 72 65 71 75 65 73 74 20 69 73 20 73 65 6e 74 20 74 6f 20 74 68 65 20 70 72 6f | ation.request.is.sent.to.the.pro |
| 128ca0 | 74 6f 63 6f 6c 20 62 72 6f 61 64 63 61 73 74 20 61 64 64 72 65 73 73 2c 20 61 6e 64 20 74 68 65 | tocol.broadcast.address,.and.the |
| 128cc0 | 20 73 65 72 76 65 72 27 73 20 72 65 61 6c 20 70 72 6f 74 6f 63 6f 6c 20 61 64 64 72 65 73 73 20 | .server's.real.protocol.address. |
| 128ce0 | 69 73 20 64 79 6e 61 6d 69 63 61 6c 6c 79 20 64 65 74 65 63 74 65 64 20 66 72 6f 6d 20 74 68 65 | is.dynamically.detected.from.the |
| 128d00 | 20 66 69 72 73 74 20 72 65 67 69 73 74 72 61 74 69 6f 6e 20 72 65 70 6c 79 2e 00 54 68 65 20 66 | .first.registration.reply..The.f |
| 128d20 | 6f 6c 6c 6f 77 69 6e 67 20 50 50 50 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 65 73 74 73 | ollowing.PPP.configuration.tests |
| 128d40 | 20 4d 53 43 48 41 50 2d 76 32 3a 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 60 72 65 63 65 69 | .MSCHAP-v2:.The.following.`recei |
| 128d60 | 76 65 2d 66 69 6c 74 65 72 60 20 6d 6f 64 65 73 20 63 61 6e 20 62 65 20 73 65 6c 65 63 74 65 64 | ve-filter`.modes.can.be.selected |
| 128d80 | 3a 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 20 63 61 6e 20 62 65 20 75 | :.The.following.command.can.be.u |
| 128da0 | 73 65 64 20 74 6f 20 67 65 6e 65 72 61 74 65 20 74 68 65 20 4f 54 50 20 6b 65 79 20 61 73 20 77 | sed.to.generate.the.OTP.key.as.w |
| 128dc0 | 65 6c 6c 20 61 73 20 74 68 65 20 43 4c 49 20 63 6f 6d 6d 61 6e 64 73 20 74 6f 20 63 6f 6e 66 69 | ell.as.the.CLI.commands.to.confi |
| 128de0 | 67 75 72 65 20 74 68 65 6d 3a 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 | gure.them:.The.following.command |
| 128e00 | 20 75 73 65 73 20 74 68 65 20 65 78 70 6c 69 63 69 74 2d 6e 75 6c 6c 20 6c 61 62 65 6c 20 76 61 | .uses.the.explicit-null.label.va |
| 128e20 | 6c 75 65 20 66 6f 72 20 61 6c 6c 20 74 68 65 20 42 47 50 20 69 6e 73 74 61 6e 63 65 73 2e 00 54 | lue.for.all.the.BGP.instances..T |
| 128e40 | 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 73 20 6c 65 74 20 79 6f 75 20 63 68 | he.following.commands.let.you.ch |
| 128e60 | 65 63 6b 20 74 75 6e 6e 65 6c 20 73 74 61 74 75 73 2e 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 | eck.tunnel.status..The.following |
| 128e80 | 20 63 6f 6d 6d 61 6e 64 73 20 6c 65 74 20 79 6f 75 20 72 65 73 65 74 20 4f 70 65 6e 56 50 4e 2e | .commands.let.you.reset.OpenVPN. |
| 128ea0 | 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 73 20 74 72 61 6e 73 6c 61 74 | .The.following.commands.translat |
| 128ec0 | 65 20 74 6f 20 22 2d 2d 6e 65 74 20 68 6f 73 74 22 20 77 68 65 6e 20 74 68 65 20 63 6f 6e 74 61 | e.to."--net.host".when.the.conta |
| 128ee0 | 69 6e 65 72 20 69 73 20 63 72 65 61 74 65 64 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f | iner.is.created.The.following.co |
| 128f00 | 6d 6d 61 6e 64 73 20 77 6f 75 6c 64 20 62 65 20 72 65 71 75 69 72 65 64 20 74 6f 20 73 65 74 20 | mmands.would.be.required.to.set. |
| 128f20 | 6f 70 74 69 6f 6e 73 20 66 6f 72 20 61 20 67 69 76 65 6e 20 64 79 6e 61 6d 69 63 20 72 6f 75 74 | options.for.a.given.dynamic.rout |
| 128f40 | 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 20 69 6e 73 69 64 65 20 61 20 67 69 76 65 6e 20 76 72 66 3a | ing.protocol.inside.a.given.vrf: |
| 128f60 | 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 64 65 6d | .The.following.configuration.dem |
| 128f80 | 6f 6e 73 74 72 61 74 65 73 20 68 6f 77 20 74 6f 20 75 73 65 20 56 79 4f 53 20 74 6f 20 61 63 68 | onstrates.how.to.use.VyOS.to.ach |
| 128fa0 | 69 65 76 65 20 6c 6f 61 64 20 62 61 6c 61 6e 63 69 6e 67 20 62 61 73 65 64 20 6f 6e 20 74 68 65 | ieve.load.balancing.based.on.the |
| 128fc0 | 20 64 6f 6d 61 69 6e 20 6e 61 6d 65 2e 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6e 66 | .domain.name..The.following.conf |
| 128fe0 | 69 67 75 72 61 74 69 6f 6e 20 65 78 70 6c 69 63 69 74 6c 79 20 6a 6f 69 6e 73 20 6d 75 6c 74 69 | iguration.explicitly.joins.multi |
| 129000 | 63 61 73 74 20 67 72 6f 75 70 20 60 66 66 31 35 3a 3a 31 32 33 34 60 20 6f 6e 20 69 6e 74 65 72 | cast.group.`ff15::1234`.on.inter |
| 129020 | 66 61 63 65 20 60 65 74 68 31 60 20 61 6e 64 20 73 6f 75 72 63 65 2d 73 70 65 63 69 66 69 63 20 | face.`eth1`.and.source-specific. |
| 129040 | 6d 75 6c 74 69 63 61 73 74 20 67 72 6f 75 70 20 60 66 66 31 35 3a 3a 35 36 37 38 60 20 77 69 74 | multicast.group.`ff15::5678`.wit |
| 129060 | 68 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 60 32 30 30 31 3a 64 62 38 3a 3a 31 60 20 6f | h.source.address.`2001:db8::1`.o |
| 129080 | 6e 20 69 6e 74 65 72 66 61 63 65 20 60 65 74 68 31 60 3a 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e | n.interface.`eth1`:.The.followin |
| 1290a0 | 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 6e 20 56 79 4f 53 20 61 70 70 6c 69 65 73 20 | g.configuration.on.VyOS.applies. |
| 1290c0 | 74 6f 20 61 6c 6c 20 66 6f 6c 6c 6f 77 69 6e 67 20 33 72 64 20 70 61 72 74 79 20 76 65 6e 64 6f | to.all.following.3rd.party.vendo |
| 1290e0 | 72 73 2e 20 49 74 20 63 72 65 61 74 65 73 20 61 20 62 6f 6e 64 20 77 69 74 68 20 74 77 6f 20 6c | rs..It.creates.a.bond.with.two.l |
| 129100 | 69 6e 6b 73 20 61 6e 64 20 56 4c 41 4e 20 31 30 2c 20 31 30 30 20 6f 6e 20 74 68 65 20 62 6f 6e | inks.and.VLAN.10,.100.on.the.bon |
| 129120 | 64 65 64 20 69 6e 74 65 72 66 61 63 65 73 20 77 69 74 68 20 61 20 70 65 72 20 56 49 46 20 49 50 | ded.interfaces.with.a.per.VIF.IP |
| 129140 | 76 34 20 61 64 64 72 65 73 73 2e 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6e 66 69 67 | v4.address..The.following.config |
| 129160 | 75 72 61 74 69 6f 6e 20 72 65 76 65 72 73 65 2d 70 72 6f 78 79 20 74 65 72 6d 69 6e 61 74 65 20 | uration.reverse-proxy.terminate. |
| 129180 | 53 53 4c 2e 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e | SSL..The.following.configuration |
| 1291a0 | 20 74 65 72 6d 69 6e 61 74 65 73 20 53 53 4c 20 6f 6e 20 74 68 65 20 72 6f 75 74 65 72 2e 00 54 | .terminates.SSL.on.the.router..T |
| 1291c0 | 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 65 72 6d 69 | he.following.configuration.termi |
| 1291e0 | 6e 61 74 65 73 20 69 6e 63 6f 6d 69 6e 67 20 48 54 54 50 53 20 74 72 61 66 66 69 63 20 6f 6e 20 | nates.incoming.HTTPS.traffic.on. |
| 129200 | 74 68 65 20 72 6f 75 74 65 72 2c 20 74 68 65 6e 20 72 65 2d 65 6e 63 72 79 70 74 73 20 74 68 65 | the.router,.then.re-encrypts.the |
| 129220 | 20 74 72 61 66 66 69 63 20 61 6e 64 20 73 65 6e 64 73 20 74 6f 20 74 68 65 20 62 61 63 6b 65 6e | .traffic.and.sends.to.the.backen |
| 129240 | 64 20 73 65 72 76 65 72 20 76 69 61 20 48 54 54 50 53 2e 20 54 68 69 73 20 69 73 20 75 73 65 66 | d.server.via.HTTPS..This.is.usef |
| 129260 | 75 6c 20 69 66 20 65 6e 63 72 79 70 74 69 6f 6e 20 69 73 20 72 65 71 75 69 72 65 64 20 66 6f 72 | ul.if.encryption.is.required.for |
| 129280 | 20 62 6f 74 68 20 6c 65 67 73 2c 20 62 75 74 20 79 6f 75 20 64 6f 20 6e 6f 74 20 77 61 6e 74 20 | .both.legs,.but.you.do.not.want. |
| 1292a0 | 74 6f 20 69 6e 73 74 61 6c 6c 20 70 75 62 6c 69 63 6c 79 20 74 72 75 73 74 65 64 20 63 65 72 74 | to.install.publicly.trusted.cert |
| 1292c0 | 69 66 69 63 61 74 65 73 20 6f 6e 20 65 61 63 68 20 62 61 63 6b 65 6e 64 20 73 65 72 76 65 72 2e | ificates.on.each.backend.server. |
| 1292e0 | 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 77 69 6c | .The.following.configuration.wil |
| 129300 | 6c 20 61 73 73 69 67 6e 20 61 20 2f 36 34 20 70 72 65 66 69 78 20 6f 75 74 20 6f 66 20 61 20 2f | l.assign.a./64.prefix.out.of.a./ |
| 129320 | 35 36 20 64 65 6c 65 67 61 74 69 6f 6e 20 74 6f 20 65 74 68 30 2e 20 54 68 65 20 49 50 76 36 20 | 56.delegation.to.eth0..The.IPv6. |
| 129340 | 61 64 64 72 65 73 73 20 61 73 73 69 67 6e 65 64 20 74 6f 20 65 74 68 30 20 77 69 6c 6c 20 62 65 | address.assigned.to.eth0.will.be |
| 129360 | 20 3c 70 72 65 66 69 78 3e 3a 3a 66 66 66 66 2f 36 34 2e 20 49 66 20 79 6f 75 20 64 6f 20 6e 6f | .<prefix>::ffff/64..If.you.do.no |
| 129380 | 74 20 6b 6e 6f 77 20 74 68 65 20 70 72 65 66 69 78 20 73 69 7a 65 20 64 65 6c 65 67 61 74 65 64 | t.know.the.prefix.size.delegated |
| 1293a0 | 20 74 6f 20 79 6f 75 2c 20 73 74 61 72 74 20 77 69 74 68 20 73 6c 61 2d 6c 65 6e 20 30 2e 00 54 | .to.you,.start.with.sla-len.0..T |
| 1293c0 | 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 77 69 6c 6c 20 | he.following.configuration.will. |
| 1293e0 | 73 65 74 75 70 20 61 20 50 50 50 6f 45 20 73 65 73 73 69 6f 6e 20 73 6f 75 72 63 65 20 66 72 6f | setup.a.PPPoE.session.source.fro |
| 129400 | 6d 20 65 74 68 31 20 61 6e 64 20 61 73 73 69 67 6e 20 61 20 2f 36 34 20 70 72 65 66 69 78 20 6f | m.eth1.and.assign.a./64.prefix.o |
| 129420 | 75 74 20 6f 66 20 61 20 2f 35 36 20 64 65 6c 65 67 61 74 69 6f 6e 20 28 72 65 71 75 65 73 74 65 | ut.of.a./56.delegation.(requeste |
| 129440 | 64 20 66 72 6f 6d 20 74 68 65 20 49 53 50 29 20 74 6f 20 65 74 68 30 2e 20 54 68 65 20 49 50 76 | d.from.the.ISP).to.eth0..The.IPv |
| 129460 | 36 20 61 64 64 72 65 73 73 20 61 73 73 69 67 6e 65 64 20 74 6f 20 65 74 68 30 20 77 69 6c 6c 20 | 6.address.assigned.to.eth0.will. |
| 129480 | 62 65 20 3c 70 72 65 66 69 78 3e 3a 3a 31 2f 36 34 2e 20 49 66 20 79 6f 75 20 64 6f 20 6e 6f 74 | be.<prefix>::1/64..If.you.do.not |
| 1294a0 | 20 6b 6e 6f 77 20 74 68 65 20 70 72 65 66 69 78 20 73 69 7a 65 20 64 65 6c 65 67 61 74 65 64 20 | .know.the.prefix.size.delegated. |
| 1294c0 | 74 6f 20 79 6f 75 2c 20 73 74 61 72 74 20 77 69 74 68 20 73 6c 61 2d 6c 65 6e 20 30 2e 00 54 68 | to.you,.start.with.sla-len.0..Th |
| 1294e0 | 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 6c 65 20 61 6c 6c 6f 77 73 20 56 79 4f 53 20 | e.following.example.allows.VyOS. |
| 129500 | 74 6f 20 75 73 65 20 3a 61 62 62 72 3a 60 50 42 52 20 28 50 6f 6c 69 63 79 2d 42 61 73 65 64 20 | to.use.:abbr:`PBR.(Policy-Based. |
| 129520 | 52 6f 75 74 69 6e 67 29 60 20 66 6f 72 20 74 72 61 66 66 69 63 2c 20 77 68 69 63 68 20 6f 72 69 | Routing)`.for.traffic,.which.ori |
| 129540 | 67 69 6e 61 74 65 64 20 66 72 6f 6d 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 2e 20 | ginated.from.the.router.itself.. |
| 129560 | 54 68 61 74 20 73 6f 6c 75 74 69 6f 6e 20 66 6f 72 20 6d 75 6c 74 69 70 6c 65 20 49 53 50 27 73 | That.solution.for.multiple.ISP's |
| 129580 | 20 61 6e 64 20 56 79 4f 53 20 72 6f 75 74 65 72 20 77 69 6c 6c 20 72 65 73 70 6f 6e 64 20 66 72 | .and.VyOS.router.will.respond.fr |
| 1295a0 | 6f 6d 20 74 68 65 20 73 61 6d 65 20 69 6e 74 65 72 66 61 63 65 20 74 68 61 74 20 74 68 65 20 70 | om.the.same.interface.that.the.p |
| 1295c0 | 61 63 6b 65 74 20 77 61 73 20 72 65 63 65 69 76 65 64 2e 20 41 6c 73 6f 2c 20 69 74 20 75 73 65 | acket.was.received..Also,.it.use |
| 1295e0 | 64 2c 20 69 66 20 77 65 20 77 61 6e 74 20 74 68 61 74 20 6f 6e 65 20 56 50 4e 20 74 75 6e 6e 65 | d,.if.we.want.that.one.VPN.tunne |
| 129600 | 6c 20 74 6f 20 62 65 20 74 68 72 6f 75 67 68 20 6f 6e 65 20 70 72 6f 76 69 64 65 72 2c 20 61 6e | l.to.be.through.one.provider,.an |
| 129620 | 64 20 74 68 65 20 73 65 63 6f 6e 64 20 74 68 72 6f 75 67 68 20 61 6e 6f 74 68 65 72 2e 00 54 68 | d.the.second.through.another..Th |
| 129640 | 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 6c 65 20 63 72 65 61 74 65 73 20 61 20 57 41 | e.following.example.creates.a.WA |
| 129660 | 50 2e 20 57 68 65 6e 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 6d 75 6c 74 69 70 6c 65 20 57 41 50 | P..When.configuring.multiple.WAP |
| 129680 | 20 69 6e 74 65 72 66 61 63 65 73 2c 20 79 6f 75 20 6d 75 73 74 20 73 70 65 63 69 66 79 20 75 6e | .interfaces,.you.must.specify.un |
| 1296a0 | 69 71 75 65 20 49 50 20 61 64 64 72 65 73 73 65 73 2c 20 63 68 61 6e 6e 65 6c 73 2c 20 4e 65 74 | ique.IP.addresses,.channels,.Net |
| 1296c0 | 77 6f 72 6b 20 49 44 73 20 63 6f 6d 6d 6f 6e 6c 79 20 72 65 66 65 72 72 65 64 20 74 6f 20 61 73 | work.IDs.commonly.referred.to.as |
| 1296e0 | 20 3a 61 62 62 72 3a 60 53 53 49 44 20 28 53 65 72 76 69 63 65 20 53 65 74 20 49 64 65 6e 74 69 | .:abbr:`SSID.(Service.Set.Identi |
| 129700 | 66 69 65 72 29 60 2c 20 61 6e 64 20 4d 41 43 20 61 64 64 72 65 73 73 65 73 2e 00 54 68 65 20 66 | fier)`,.and.MAC.addresses..The.f |
| 129720 | 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 6c 65 20 69 73 20 62 61 73 65 64 20 6f 6e 20 61 20 53 | ollowing.example.is.based.on.a.S |
| 129740 | 69 65 72 72 61 20 57 69 72 65 6c 65 73 73 20 4d 43 37 37 31 30 20 6d 69 6e 69 50 43 49 65 20 63 | ierra.Wireless.MC7710.miniPCIe.c |
| 129760 | 61 72 64 20 28 6f 6e 6c 79 20 74 68 65 20 66 6f 72 6d 20 66 61 63 74 6f 72 20 69 6e 20 72 65 61 | ard.(only.the.form.factor.in.rea |
| 129780 | 6c 69 74 79 20 69 74 20 72 75 6e 73 20 55 42 53 29 20 61 6e 64 20 44 65 75 74 73 63 68 65 20 54 | lity.it.runs.UBS).and.Deutsche.T |
| 1297a0 | 65 6c 65 6b 6f 6d 20 61 73 20 49 53 50 2e 20 54 68 65 20 63 61 72 64 20 69 73 20 61 73 73 65 6d | elekom.as.ISP..The.card.is.assem |
| 1297c0 | 62 6c 65 64 20 69 6e 74 6f 20 61 20 3a 72 65 66 3a 60 70 63 2d 65 6e 67 69 6e 65 73 2d 61 70 75 | bled.into.a.:ref:`pc-engines-apu |
| 1297e0 | 34 60 2e 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 6c 65 20 74 6f 70 6f 6c 6f | 4`..The.following.example.topolo |
| 129800 | 67 79 20 77 61 73 20 62 75 69 6c 74 20 75 73 69 6e 67 20 45 56 45 2d 4e 47 2e 00 54 68 65 20 66 | gy.was.built.using.EVE-NG..The.f |
| 129820 | 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 6c 65 20 77 69 6c 6c 20 73 68 6f 77 20 68 6f 77 20 56 | ollowing.example.will.show.how.V |
| 129840 | 79 4f 53 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 72 65 64 69 72 65 63 74 20 77 65 62 20 | yOS.can.be.used.to.redirect.web. |
| 129860 | 74 72 61 66 66 69 63 20 74 6f 20 61 6e 20 65 78 74 65 72 6e 61 6c 20 74 72 61 6e 73 70 61 72 65 | traffic.to.an.external.transpare |
| 129880 | 6e 74 20 70 72 6f 78 79 3a 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 6c 65 73 | nt.proxy:.The.following.examples |
| 1298a0 | 20 73 68 6f 77 20 68 6f 77 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 4e 41 54 36 34 20 6f 6e 20 | .show.how.to.configure.NAT64.on. |
| 1298c0 | 61 20 56 79 4f 53 20 72 6f 75 74 65 72 2e 20 54 68 65 20 31 39 32 2e 30 2e 32 2e 31 30 20 61 64 | a.VyOS.router..The.192.0.2.10.ad |
| 1298e0 | 64 72 65 73 73 20 69 73 20 75 73 65 64 20 61 73 20 74 68 65 20 49 50 76 34 20 61 64 64 72 65 73 | dress.is.used.as.the.IPv4.addres |
| 129900 | 73 20 66 6f 72 20 74 68 65 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 70 6f 6f 6c 2e 00 54 68 65 20 | s.for.the.translation.pool..The. |
| 129920 | 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 6c 65 73 20 77 69 6c 6c 20 73 68 6f 77 20 76 61 6c | following.examples.will.show.val |
| 129940 | 69 64 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 73 20 66 6f 72 20 57 69 46 69 2d 36 20 28 32 2e | id.configurations.for.WiFi-6.(2. |
| 129960 | 34 47 48 7a 29 20 61 6e 64 20 57 69 46 69 2d 36 65 20 28 36 47 48 7a 29 20 41 63 63 65 73 73 2d | 4GHz).and.WiFi-6e.(6GHz).Access- |
| 129980 | 50 6f 69 6e 74 73 20 77 69 74 68 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 68 61 72 61 63 | Points.with.the.following.charac |
| 1299a0 | 74 65 72 69 73 74 69 63 73 3a 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 68 61 72 64 77 61 72 | teristics:.The.following.hardwar |
| 1299c0 | 65 20 6d 6f 64 75 6c 65 73 20 68 61 76 65 20 62 65 65 6e 20 74 65 73 74 65 64 20 73 75 63 63 65 | e.modules.have.been.tested.succe |
| 1299e0 | 73 73 66 75 6c 6c 79 20 69 6e 20 61 6e 20 3a 72 65 66 3a 60 70 63 2d 65 6e 67 69 6e 65 73 2d 61 | ssfully.in.an.:ref:`pc-engines-a |
| 129a00 | 70 75 34 60 20 62 6f 61 72 64 3a 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 69 73 20 74 68 65 | pu4`.board:.The.following.is.the |
| 129a20 | 20 63 6f 6e 66 69 67 20 66 6f 72 20 74 68 65 20 69 50 68 6f 6e 65 20 70 65 65 72 20 61 62 6f 76 | .config.for.the.iPhone.peer.abov |
| 129a40 | 65 2e 20 49 74 27 73 20 69 6d 70 6f 72 74 61 6e 74 20 74 6f 20 6e 6f 74 65 20 74 68 61 74 20 74 | e..It's.important.to.note.that.t |
| 129a60 | 68 65 20 60 60 41 6c 6c 6f 77 65 64 49 50 73 60 60 20 77 69 6c 64 63 61 72 64 20 73 65 74 74 69 | he.``AllowedIPs``.wildcard.setti |
| 129a80 | 6e 67 20 64 69 72 65 63 74 73 20 61 6c 6c 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 74 72 61 | ng.directs.all.IPv4.and.IPv6.tra |
| 129aa0 | 66 66 69 63 20 74 68 72 6f 75 67 68 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 54 68 65 | ffic.through.the.connection..The |
| 129ac0 | 20 66 6f 6c 6c 6f 77 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 73 20 63 61 6e 20 62 65 20 75 73 65 64 | .following.protocols.can.be.used |
| 129ae0 | 3a 20 61 6e 79 2c 20 62 61 62 65 6c 2c 20 62 67 70 2c 20 63 6f 6e 6e 65 63 74 65 64 2c 20 65 69 | :.any,.babel,.bgp,.connected,.ei |
| 129b00 | 67 72 70 2c 20 69 73 69 73 2c 20 6b 65 72 6e 65 6c 2c 20 6f 73 70 66 2c 20 72 69 70 2c 20 73 74 | grp,.isis,.kernel,.ospf,.rip,.st |
| 129b20 | 61 74 69 63 2c 20 74 61 62 6c 65 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 70 72 6f 74 6f 63 | atic,.table.The.following.protoc |
| 129b40 | 6f 6c 73 20 63 61 6e 20 62 65 20 75 73 65 64 3a 20 61 6e 79 2c 20 62 61 62 65 6c 2c 20 62 67 70 | ols.can.be.used:.any,.babel,.bgp |
| 129b60 | 2c 20 63 6f 6e 6e 65 63 74 65 64 2c 20 69 73 69 73 2c 20 6b 65 72 6e 65 6c 2c 20 6f 73 70 66 76 | ,.connected,.isis,.kernel,.ospfv |
| 129b80 | 33 2c 20 72 69 70 6e 67 2c 20 73 74 61 74 69 63 2c 20 74 61 62 6c 65 00 54 68 65 20 66 6f 6c 6c | 3,.ripng,.static,.table.The.foll |
| 129ba0 | 6f 77 69 6e 67 20 73 74 72 75 63 74 75 72 65 20 72 65 73 70 72 65 73 65 6e 74 20 74 68 65 20 63 | owing.structure.respresent.the.c |
| 129bc0 | 6c 69 20 73 74 72 75 63 74 75 72 65 2e 00 54 68 65 20 66 6f 72 6d 75 6c 61 20 66 6f 72 20 75 6e | li.structure..The.formula.for.un |
| 129be0 | 66 72 61 67 6d 65 6e 74 65 64 20 54 43 50 20 61 6e 64 20 55 44 50 20 70 61 63 6b 65 74 73 20 69 | fragmented.TCP.and.UDP.packets.i |
| 129c00 | 73 00 54 68 65 20 66 6f 72 77 61 72 64 69 6e 67 20 64 65 6c 61 79 20 74 69 6d 65 20 69 73 20 74 | s.The.forwarding.delay.time.is.t |
| 129c20 | 68 65 20 74 69 6d 65 20 73 70 65 6e 74 20 69 6e 20 65 61 63 68 20 6f 66 20 74 68 65 20 6c 69 73 | he.time.spent.in.each.of.the.lis |
| 129c40 | 74 65 6e 69 6e 67 20 61 6e 64 20 6c 65 61 72 6e 69 6e 67 20 73 74 61 74 65 73 20 62 65 66 6f 72 | tening.and.learning.states.befor |
| 129c60 | 65 20 74 68 65 20 46 6f 72 77 61 72 64 69 6e 67 20 73 74 61 74 65 20 69 73 20 65 6e 74 65 72 65 | e.the.Forwarding.state.is.entere |
| 129c80 | 64 2e 20 54 68 69 73 20 64 65 6c 61 79 20 69 73 20 73 6f 20 74 68 61 74 20 77 68 65 6e 20 61 20 | d..This.delay.is.so.that.when.a. |
| 129ca0 | 6e 65 77 20 62 72 69 64 67 65 20 63 6f 6d 65 73 20 6f 6e 74 6f 20 61 20 62 75 73 79 20 6e 65 74 | new.bridge.comes.onto.a.busy.net |
| 129cc0 | 77 6f 72 6b 20 69 74 20 6c 6f 6f 6b 73 20 61 74 20 73 6f 6d 65 20 74 72 61 66 66 69 63 20 62 65 | work.it.looks.at.some.traffic.be |
| 129ce0 | 66 6f 72 65 20 70 61 72 74 69 63 69 70 61 74 69 6e 67 2e 00 54 68 65 20 67 65 6e 65 72 61 74 65 | fore.participating..The.generate |
| 129d00 | 64 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 77 69 6c 6c 20 6c 6f 6f 6b 20 6c 69 6b 65 3a 00 | d.configuration.will.look.like:. |
| 129d20 | 54 68 65 20 67 65 6e 65 72 61 74 65 64 20 70 61 72 61 6d 65 74 65 72 73 20 61 72 65 20 74 68 65 | The.generated.parameters.are.the |
| 129d40 | 6e 20 6f 75 74 70 75 74 20 74 6f 20 74 68 65 20 63 6f 6e 73 6f 6c 65 2e 00 54 68 65 20 67 65 6e | n.output.to.the.console..The.gen |
| 129d60 | 65 72 69 63 20 6e 61 6d 65 20 6f 66 20 51 75 61 6c 69 74 79 20 6f 66 20 53 65 72 76 69 63 65 20 | eric.name.of.Quality.of.Service. |
| 129d80 | 6f 72 20 54 72 61 66 66 69 63 20 43 6f 6e 74 72 6f 6c 20 69 6e 76 6f 6c 76 65 73 20 74 68 69 6e | or.Traffic.Control.involves.thin |
| 129da0 | 67 73 20 6c 69 6b 65 20 73 68 61 70 69 6e 67 20 74 72 61 66 66 69 63 2c 20 73 63 68 65 64 75 6c | gs.like.shaping.traffic,.schedul |
| 129dc0 | 69 6e 67 20 6f 72 20 64 72 6f 70 70 69 6e 67 20 70 61 63 6b 65 74 73 2c 20 77 68 69 63 68 20 61 | ing.or.dropping.packets,.which.a |
| 129de0 | 72 65 20 74 68 65 20 6b 69 6e 64 20 6f 66 20 74 68 69 6e 67 73 20 79 6f 75 20 6d 61 79 20 77 61 | re.the.kind.of.things.you.may.wa |
| 129e00 | 6e 74 20 74 6f 20 70 6c 61 79 20 77 69 74 68 20 77 68 65 6e 20 79 6f 75 20 68 61 76 65 2c 20 66 | nt.to.play.with.when.you.have,.f |
| 129e20 | 6f 72 20 69 6e 73 74 61 6e 63 65 2c 20 61 20 62 61 6e 64 77 69 64 74 68 20 62 6f 74 74 6c 65 6e | or.instance,.a.bandwidth.bottlen |
| 129e40 | 65 63 6b 20 69 6e 20 61 20 6c 69 6e 6b 20 61 6e 64 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 73 6f | eck.in.a.link.and.you.want.to.so |
| 129e60 | 6d 65 68 6f 77 20 70 72 69 6f 72 69 74 69 7a 65 20 73 6f 6d 65 20 74 79 70 65 20 6f 66 20 74 72 | mehow.prioritize.some.type.of.tr |
| 129e80 | 61 66 66 69 63 20 6f 76 65 72 20 61 6e 6f 74 68 65 72 2e 00 54 68 65 20 68 61 73 68 20 74 79 70 | affic.over.another..The.hash.typ |
| 129ea0 | 65 20 75 73 65 64 20 77 68 65 6e 20 64 69 73 63 6f 76 65 72 69 6e 67 20 66 69 6c 65 20 6f 6e 20 | e.used.when.discovering.file.on. |
| 129ec0 | 6d 61 73 74 65 72 20 73 65 72 76 65 72 20 28 64 65 66 61 75 6c 74 3a 20 73 68 61 32 35 36 29 00 | master.server.(default:.sha256). |
| 129ee0 | 54 68 65 20 68 65 61 6c 74 68 20 6f 66 20 69 6e 74 65 72 66 61 63 65 73 20 61 6e 64 20 70 61 74 | The.health.of.interfaces.and.pat |
| 129f00 | 68 73 20 61 73 73 69 67 6e 65 64 20 74 6f 20 74 68 65 20 6c 6f 61 64 20 62 61 6c 61 6e 63 65 72 | hs.assigned.to.the.load.balancer |
| 129f20 | 20 69 73 20 70 65 72 69 6f 64 69 63 61 6c 6c 79 20 63 68 65 63 6b 65 64 20 62 79 20 73 65 6e 64 | .is.periodically.checked.by.send |
| 129f40 | 69 6e 67 20 49 43 4d 50 20 70 61 63 6b 65 74 73 20 28 70 69 6e 67 29 20 74 6f 20 72 65 6d 6f 74 | ing.ICMP.packets.(ping).to.remot |
| 129f60 | 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 73 2c 20 61 20 54 54 4c 20 74 65 73 74 20 6f 72 20 74 68 | e.destinations,.a.TTL.test.or.th |
| 129f80 | 65 20 65 78 65 63 75 74 69 6f 6e 20 6f 66 20 61 20 75 73 65 72 20 64 65 66 69 6e 65 64 20 73 63 | e.execution.of.a.user.defined.sc |
| 129fa0 | 72 69 70 74 2e 20 49 66 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 66 61 69 6c 73 20 74 68 65 20 | ript..If.an.interface.fails.the. |
| 129fc0 | 68 65 61 6c 74 68 20 63 68 65 63 6b 20 69 74 20 69 73 20 72 65 6d 6f 76 65 64 20 66 72 6f 6d 20 | health.check.it.is.removed.from. |
| 129fe0 | 74 68 65 20 6c 6f 61 64 20 62 61 6c 61 6e 63 65 72 27 73 20 70 6f 6f 6c 20 6f 66 20 69 6e 74 65 | the.load.balancer's.pool.of.inte |
| 12a000 | 72 66 61 63 65 73 2e 20 54 6f 20 65 6e 61 62 6c 65 20 68 65 61 6c 74 68 20 63 68 65 63 6b 69 6e | rfaces..To.enable.health.checkin |
| 12a020 | 67 20 66 6f 72 20 61 6e 20 69 6e 74 65 72 66 61 63 65 3a 00 54 68 65 20 68 65 6c 6c 6f 2d 6d 75 | g.for.an.interface:.The.hello-mu |
| 12a040 | 6c 74 69 70 6c 69 65 72 20 73 70 65 63 69 66 69 65 73 20 68 6f 77 20 6d 61 6e 79 20 48 65 6c 6c | ltiplier.specifies.how.many.Hell |
| 12a060 | 6f 73 20 74 6f 20 73 65 6e 64 20 70 65 72 20 73 65 63 6f 6e 64 2c 20 66 72 6f 6d 20 31 20 28 65 | os.to.send.per.second,.from.1.(e |
| 12a080 | 76 65 72 79 20 73 65 63 6f 6e 64 29 20 74 6f 20 31 30 20 28 65 76 65 72 79 20 31 30 30 6d 73 29 | very.second).to.10.(every.100ms) |
| 12a0a0 | 2e 20 54 68 75 73 20 6f 6e 65 20 63 61 6e 20 68 61 76 65 20 31 73 20 63 6f 6e 76 65 72 67 65 6e | ..Thus.one.can.have.1s.convergen |
| 12a0c0 | 63 65 20 74 69 6d 65 20 66 6f 72 20 4f 53 50 46 2e 20 49 66 20 74 68 69 73 20 66 6f 72 6d 20 69 | ce.time.for.OSPF..If.this.form.i |
| 12a0e0 | 73 20 73 70 65 63 69 66 69 65 64 2c 20 74 68 65 6e 20 74 68 65 20 68 65 6c 6c 6f 2d 69 6e 74 65 | s.specified,.then.the.hello-inte |
| 12a100 | 72 76 61 6c 20 61 64 76 65 72 74 69 73 65 64 20 69 6e 20 48 65 6c 6c 6f 20 70 61 63 6b 65 74 73 | rval.advertised.in.Hello.packets |
| 12a120 | 20 69 73 20 73 65 74 20 74 6f 20 30 20 61 6e 64 20 74 68 65 20 68 65 6c 6c 6f 2d 69 6e 74 65 72 | .is.set.to.0.and.the.hello-inter |
| 12a140 | 76 61 6c 20 6f 6e 20 72 65 63 65 69 76 65 64 20 48 65 6c 6c 6f 20 70 61 63 6b 65 74 73 20 69 73 | val.on.received.Hello.packets.is |
| 12a160 | 20 6e 6f 74 20 63 68 65 63 6b 65 64 2c 20 74 68 75 73 20 74 68 65 20 68 65 6c 6c 6f 2d 6d 75 6c | .not.checked,.thus.the.hello-mul |
| 12a180 | 74 69 70 6c 69 65 72 20 6e 65 65 64 20 4e 4f 54 20 62 65 20 74 68 65 20 73 61 6d 65 20 61 63 72 | tiplier.need.NOT.be.the.same.acr |
| 12a1a0 | 6f 73 73 20 6d 75 6c 74 69 70 6c 65 20 72 6f 75 74 65 72 73 20 6f 6e 20 61 20 63 6f 6d 6d 6f 6e | oss.multiple.routers.on.a.common |
| 12a1c0 | 20 6c 69 6e 6b 2e 00 54 68 65 20 68 6f 73 74 6e 61 6d 65 20 63 61 6e 20 62 65 20 75 70 20 74 6f | .link..The.hostname.can.be.up.to |
| 12a1e0 | 20 36 33 20 63 68 61 72 61 63 74 65 72 73 2e 20 41 20 68 6f 73 74 6e 61 6d 65 20 6d 75 73 74 20 | .63.characters..A.hostname.must. |
| 12a200 | 73 74 61 72 74 20 61 6e 64 20 65 6e 64 20 77 69 74 68 20 61 20 6c 65 74 74 65 72 20 6f 72 20 64 | start.and.end.with.a.letter.or.d |
| 12a220 | 69 67 69 74 2c 20 61 6e 64 20 68 61 76 65 20 61 73 20 69 6e 74 65 72 69 6f 72 20 63 68 61 72 61 | igit,.and.have.as.interior.chara |
| 12a240 | 63 74 65 72 73 20 6f 6e 6c 79 20 6c 65 74 74 65 72 73 2c 20 64 69 67 69 74 73 2c 20 6f 72 20 61 | cters.only.letters,.digits,.or.a |
| 12a260 | 20 68 79 70 68 65 6e 2e 00 54 68 65 20 68 6f 73 74 6e 61 6d 65 20 6f 72 20 49 50 20 61 64 64 72 | .hyphen..The.hostname.or.IP.addr |
| 12a280 | 65 73 73 20 6f 66 20 74 68 65 20 6d 61 73 74 65 72 00 54 68 65 20 69 64 65 6e 74 69 66 69 65 72 | ess.of.the.master.The.identifier |
| 12a2a0 | 20 69 73 20 74 68 65 20 64 65 76 69 63 65 27 73 20 44 55 49 44 3a 20 63 6f 6c 6f 6e 2d 73 65 70 | .is.the.device's.DUID:.colon-sep |
| 12a2c0 | 61 72 61 74 65 64 20 68 65 78 20 6c 69 73 74 20 28 61 73 20 75 73 65 64 20 62 79 20 69 73 63 2d | arated.hex.list.(as.used.by.isc- |
| 12a2e0 | 64 68 63 70 20 6f 70 74 69 6f 6e 20 64 68 63 70 76 36 2e 63 6c 69 65 6e 74 2d 69 64 29 2e 20 49 | dhcp.option.dhcpv6.client-id)..I |
| 12a300 | 66 20 74 68 65 20 64 65 76 69 63 65 20 61 6c 72 65 61 64 79 20 68 61 73 20 61 20 64 79 6e 61 6d | f.the.device.already.has.a.dynam |
| 12a320 | 69 63 20 6c 65 61 73 65 20 66 72 6f 6d 20 74 68 65 20 44 48 43 50 76 36 20 73 65 72 76 65 72 2c | ic.lease.from.the.DHCPv6.server, |
| 12a340 | 20 69 74 73 20 44 55 49 44 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 77 69 74 68 20 60 60 73 68 | .its.DUID.can.be.found.with.``sh |
| 12a360 | 6f 77 20 73 65 72 76 69 63 65 20 64 68 63 70 76 36 20 73 65 72 76 65 72 20 6c 65 61 73 65 73 60 | ow.service.dhcpv6.server.leases` |
| 12a380 | 60 2e 20 54 68 65 20 44 55 49 44 20 62 65 67 69 6e 73 20 61 74 20 74 68 65 20 35 74 68 20 6f 63 | `..The.DUID.begins.at.the.5th.oc |
| 12a3a0 | 74 65 74 20 28 61 66 74 65 72 20 74 68 65 20 34 74 68 20 63 6f 6c 6f 6e 29 20 6f 66 20 49 41 49 | tet.(after.the.4th.colon).of.IAI |
| 12a3c0 | 44 5f 44 55 49 44 2e 00 54 68 65 20 69 6e 64 69 76 69 64 75 61 6c 20 73 70 6f 6b 65 20 63 6f 6e | D_DUID..The.individual.spoke.con |
| 12a3e0 | 66 69 67 75 72 61 74 69 6f 6e 73 20 6f 6e 6c 79 20 64 69 66 66 65 72 20 69 6e 20 74 68 65 20 6c | figurations.only.differ.in.the.l |
| 12a400 | 6f 63 61 6c 20 49 50 20 61 64 64 72 65 73 73 20 6f 6e 20 74 68 65 20 60 60 74 75 6e 31 30 60 60 | ocal.IP.address.on.the.``tun10`` |
| 12a420 | 20 69 6e 74 65 72 66 61 63 65 2e 20 53 65 65 20 74 68 65 20 61 62 6f 76 65 20 64 69 61 67 72 61 | .interface..See.the.above.diagra |
| 12a440 | 6d 20 66 6f 72 20 74 68 65 20 69 6e 64 69 76 69 64 75 61 6c 20 49 50 20 61 64 64 72 65 73 73 65 | m.for.the.individual.IP.addresse |
| 12a460 | 73 2e 00 54 68 65 20 69 6e 6e 65 72 20 74 61 67 20 69 73 20 74 68 65 20 74 61 67 20 77 68 69 63 | s..The.inner.tag.is.the.tag.whic |
| 12a480 | 68 20 69 73 20 63 6c 6f 73 65 73 74 20 74 6f 20 74 68 65 20 70 61 79 6c 6f 61 64 20 70 6f 72 74 | h.is.closest.to.the.payload.port |
| 12a4a0 | 69 6f 6e 20 6f 66 20 74 68 65 20 66 72 61 6d 65 2e 20 49 74 20 69 73 20 6f 66 66 69 63 69 61 6c | ion.of.the.frame..It.is.official |
| 12a4c0 | 6c 79 20 63 61 6c 6c 65 64 20 43 2d 54 41 47 20 28 63 75 73 74 6f 6d 65 72 20 74 61 67 2c 20 77 | ly.called.C-TAG.(customer.tag,.w |
| 12a4e0 | 69 74 68 20 65 74 68 65 72 74 79 70 65 20 30 78 38 31 30 30 29 2e 20 54 68 65 20 6f 75 74 65 72 | ith.ethertype.0x8100)..The.outer |
| 12a500 | 20 74 61 67 20 69 73 20 74 68 65 20 6f 6e 65 20 63 6c 6f 73 65 72 2f 63 6c 6f 73 65 73 74 20 74 | .tag.is.the.one.closer/closest.t |
| 12a520 | 6f 20 74 68 65 20 45 74 68 65 72 6e 65 74 20 68 65 61 64 65 72 2c 20 69 74 73 20 6e 61 6d 65 20 | o.the.Ethernet.header,.its.name. |
| 12a540 | 69 73 20 53 2d 54 41 47 20 28 73 65 72 76 69 63 65 20 74 61 67 20 77 69 74 68 20 45 74 68 65 72 | is.S-TAG.(service.tag.with.Ether |
| 12a560 | 6e 65 74 20 54 79 70 65 20 3d 20 30 78 38 38 61 38 29 2e 00 54 68 65 20 69 6e 74 65 72 66 61 63 | net.Type.=.0x88a8)..The.interfac |
| 12a580 | 65 20 74 68 61 74 20 77 69 6c 6c 20 62 65 20 6d 6f 6e 69 74 6f 72 65 64 20 62 79 20 74 68 65 20 | e.that.will.be.monitored.by.the. |
| 12a5a0 | 53 75 72 69 63 61 74 61 20 73 65 72 76 69 63 65 2e 00 54 68 65 20 69 6e 74 65 72 66 61 63 65 20 | Suricata.service..The.interface. |
| 12a5c0 | 74 72 61 66 66 69 63 20 77 69 6c 6c 20 62 65 20 63 6f 6d 69 6e 67 20 69 6e 20 6f 6e 3b 00 54 68 | traffic.will.be.coming.in.on;.Th |
| 12a5e0 | 65 20 69 6e 74 65 72 66 61 63 65 20 75 73 65 64 20 74 6f 20 72 65 63 65 69 76 65 20 61 6e 64 20 | e.interface.used.to.receive.and. |
| 12a600 | 72 65 6c 61 79 20 69 6e 64 69 76 69 64 75 61 6c 20 62 72 6f 61 64 63 61 73 74 20 70 61 63 6b 65 | relay.individual.broadcast.packe |
| 12a620 | 74 73 2e 20 49 66 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 72 65 63 65 69 76 65 2f 72 65 6c 61 79 | ts..If.you.want.to.receive/relay |
| 12a640 | 20 70 61 63 6b 65 74 73 20 6f 6e 20 62 6f 74 68 20 60 65 74 68 31 60 20 61 6e 64 20 60 65 74 68 | .packets.on.both.`eth1`.and.`eth |
| 12a660 | 32 60 20 62 6f 74 68 20 69 6e 74 65 72 66 61 63 65 73 20 6e 65 65 64 20 74 6f 20 62 65 20 61 64 | 2`.both.interfaces.need.to.be.ad |
| 12a680 | 64 65 64 2e 00 54 68 65 20 69 6e 74 65 72 6e 61 6c 20 49 50 20 61 64 64 72 65 73 73 65 73 20 77 | ded..The.internal.IP.addresses.w |
| 12a6a0 | 65 20 77 61 6e 74 20 74 6f 20 74 72 61 6e 73 6c 61 74 65 00 54 68 65 20 69 6e 76 65 72 73 65 20 | e.want.to.translate.The.inverse. |
| 12a6c0 | 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 68 61 73 20 74 6f 20 62 65 20 61 70 70 6c 69 65 64 20 | configuration.has.to.be.applied. |
| 12a6e0 | 74 6f 20 74 68 65 20 72 65 6d 6f 74 65 20 73 69 64 65 2e 00 54 68 65 20 6c 61 72 67 65 73 74 20 | to.the.remote.side..The.largest. |
| 12a700 | 4d 54 55 20 73 69 7a 65 20 79 6f 75 20 63 61 6e 20 75 73 65 20 77 69 74 68 20 44 53 4c 20 69 73 | MTU.size.you.can.use.with.DSL.is |
| 12a720 | 20 31 34 39 32 20 64 75 65 20 74 6f 20 50 50 50 6f 45 20 6f 76 65 72 68 65 61 64 2e 20 49 66 20 | .1492.due.to.PPPoE.overhead..If. |
| 12a740 | 79 6f 75 20 61 72 65 20 73 77 69 74 63 68 69 6e 67 20 66 72 6f 6d 20 61 20 44 48 43 50 20 62 61 | you.are.switching.from.a.DHCP.ba |
| 12a760 | 73 65 64 20 49 53 50 20 6c 69 6b 65 20 63 61 62 6c 65 20 74 68 65 6e 20 62 65 20 61 77 61 72 65 | sed.ISP.like.cable.then.be.aware |
| 12a780 | 20 74 68 61 74 20 74 68 69 6e 67 73 20 6c 69 6b 65 20 56 50 4e 20 6c 69 6e 6b 73 20 6d 61 79 20 | .that.things.like.VPN.links.may. |
| 12a7a0 | 6e 65 65 64 20 74 6f 20 68 61 76 65 20 74 68 65 69 72 20 4d 54 55 20 73 69 7a 65 73 20 61 64 6a | need.to.have.their.MTU.sizes.adj |
| 12a7c0 | 75 73 74 65 64 20 74 6f 20 77 6f 72 6b 20 77 69 74 68 69 6e 20 74 68 69 73 20 6c 69 6d 69 74 2e | usted.to.work.within.this.limit. |
| 12a7e0 | 00 54 68 65 20 6c 61 73 74 20 73 74 65 70 20 69 73 20 74 6f 20 64 65 66 69 6e 65 20 61 6e 20 69 | .The.last.step.is.to.define.an.i |
| 12a800 | 6e 74 65 72 66 61 63 65 20 72 6f 75 74 65 20 66 6f 72 20 31 39 32 2e 31 36 38 2e 32 2e 30 2f 32 | nterface.route.for.192.168.2.0/2 |
| 12a820 | 34 20 74 6f 20 67 65 74 20 74 68 72 6f 75 67 68 20 74 68 65 20 57 69 72 65 47 75 61 72 64 20 69 | 4.to.get.through.the.WireGuard.i |
| 12a840 | 6e 74 65 72 66 61 63 65 20 60 77 67 30 31 60 2e 20 4d 75 6c 74 69 70 6c 65 20 49 50 73 20 6f 72 | nterface.`wg01`..Multiple.IPs.or |
| 12a860 | 20 6e 65 74 77 6f 72 6b 73 20 63 61 6e 20 62 65 20 64 65 66 69 6e 65 64 20 61 6e 64 20 72 6f 75 | .networks.can.be.defined.and.rou |
| 12a880 | 74 65 64 2e 20 54 68 65 20 6c 61 73 74 20 63 68 65 63 6b 20 69 73 20 61 6c 6c 6f 77 65 64 2d 69 | ted..The.last.check.is.allowed-i |
| 12a8a0 | 70 73 20 77 68 69 63 68 20 65 69 74 68 65 72 20 70 72 65 76 65 6e 74 73 20 6f 72 20 61 6c 6c 6f | ps.which.either.prevents.or.allo |
| 12a8c0 | 77 73 20 74 68 65 20 74 72 61 66 66 69 63 2e 00 54 68 65 20 6c 65 67 61 63 79 20 61 6e 64 20 7a | ws.the.traffic..The.legacy.and.z |
| 12a8e0 | 6f 6e 65 2d 62 61 73 65 64 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e | one-based.firewall.configuration |
| 12a900 | 20 6f 70 74 69 6f 6e 73 20 69 73 20 6e 6f 74 20 6c 6f 6e 67 65 72 20 73 75 70 70 6f 72 74 65 64 | .options.is.not.longer.supported |
| 12a920 | 2e 20 54 68 65 79 20 61 72 65 20 68 65 72 65 20 66 6f 72 20 72 65 66 65 72 65 6e 63 65 20 70 75 | ..They.are.here.for.reference.pu |
| 12a940 | 72 70 6f 73 65 73 20 6f 6e 6c 79 2e 00 54 68 65 20 6c 69 6d 69 74 65 72 20 70 65 72 66 6f 72 6d | rposes.only..The.limiter.perform |
| 12a960 | 73 20 62 61 73 69 63 20 69 6e 67 72 65 73 73 20 70 6f 6c 69 63 69 6e 67 20 6f 66 20 74 72 61 66 | s.basic.ingress.policing.of.traf |
| 12a980 | 66 69 63 20 66 6c 6f 77 73 2e 20 4d 75 6c 74 69 70 6c 65 20 63 6c 61 73 73 65 73 20 6f 66 20 74 | fic.flows..Multiple.classes.of.t |
| 12a9a0 | 72 61 66 66 69 63 20 63 61 6e 20 62 65 20 64 65 66 69 6e 65 64 20 61 6e 64 20 74 72 61 66 66 69 | raffic.can.be.defined.and.traffi |
| 12a9c0 | 63 20 6c 69 6d 69 74 73 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 65 61 63 68 20 | c.limits.can.be.applied.to.each. |
| 12a9e0 | 63 6c 61 73 73 2e 20 41 6c 74 68 6f 75 67 68 20 74 68 65 20 70 6f 6c 69 63 65 72 20 75 73 65 73 | class..Although.the.policer.uses |
| 12aa00 | 20 61 20 74 6f 6b 65 6e 20 62 75 63 6b 65 74 20 6d 65 63 68 61 6e 69 73 6d 20 69 6e 74 65 72 6e | .a.token.bucket.mechanism.intern |
| 12aa20 | 61 6c 6c 79 2c 20 69 74 20 64 6f 65 73 20 6e 6f 74 20 68 61 76 65 20 74 68 65 20 63 61 70 61 62 | ally,.it.does.not.have.the.capab |
| 12aa40 | 69 6c 69 74 79 20 74 6f 20 64 65 6c 61 79 20 61 20 70 61 63 6b 65 74 20 61 73 20 61 20 73 68 61 | ility.to.delay.a.packet.as.a.sha |
| 12aa60 | 70 69 6e 67 20 6d 65 63 68 61 6e 69 73 6d 20 64 6f 65 73 2e 20 54 72 61 66 66 69 63 20 65 78 63 | ping.mechanism.does..Traffic.exc |
| 12aa80 | 65 65 64 69 6e 67 20 74 68 65 20 64 65 66 69 6e 65 64 20 62 61 6e 64 77 69 64 74 68 20 6c 69 6d | eeding.the.defined.bandwidth.lim |
| 12aaa0 | 69 74 73 20 69 73 20 64 69 72 65 63 74 6c 79 20 64 72 6f 70 70 65 64 2e 20 41 20 6d 61 78 69 6d | its.is.directly.dropped..A.maxim |
| 12aac0 | 75 6d 20 61 6c 6c 6f 77 65 64 20 62 75 72 73 74 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 | um.allowed.burst.can.be.configur |
| 12aae0 | 65 64 20 74 6f 6f 2e 00 54 68 65 20 6c 69 6e 6b 20 62 61 6e 64 77 69 64 74 68 20 65 78 74 65 6e | ed.too..The.link.bandwidth.exten |
| 12ab00 | 64 65 64 20 63 6f 6d 6d 75 6e 69 74 79 20 69 73 20 65 6e 63 6f 64 65 64 20 61 73 20 6e 6f 6e 2d | ded.community.is.encoded.as.non- |
| 12ab20 | 74 72 61 6e 73 69 74 69 76 65 00 54 68 65 20 6c 6f 63 61 6c 20 49 50 76 34 20 6f 72 20 49 50 76 | transitive.The.local.IPv4.or.IPv |
| 12ab40 | 36 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 62 69 6e 64 20 74 68 65 20 44 4e 53 20 66 6f 72 77 | 6.addresses.to.bind.the.DNS.forw |
| 12ab60 | 61 72 64 65 72 20 74 6f 2e 20 54 68 65 20 66 6f 72 77 61 72 64 65 72 20 77 69 6c 6c 20 6c 69 73 | arder.to..The.forwarder.will.lis |
| 12ab80 | 74 65 6e 20 6f 6e 20 74 68 69 73 20 61 64 64 72 65 73 73 20 66 6f 72 20 69 6e 63 6f 6d 69 6e 67 | ten.on.this.address.for.incoming |
| 12aba0 | 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2e 00 54 68 65 20 6c 6f 63 61 6c 20 49 50 76 34 20 6f 72 20 | .connections..The.local.IPv4.or. |
| 12abc0 | 49 50 76 36 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 75 73 65 20 61 73 20 61 20 73 6f 75 72 63 | IPv6.addresses.to.use.as.a.sourc |
| 12abe0 | 65 20 61 64 64 72 65 73 73 20 66 6f 72 20 73 65 6e 64 69 6e 67 20 71 75 65 72 69 65 73 2e 20 54 | e.address.for.sending.queries..T |
| 12ac00 | 68 65 20 66 6f 72 77 61 72 64 65 72 20 77 69 6c 6c 20 73 65 6e 64 20 66 6f 72 77 61 72 64 65 64 | he.forwarder.will.send.forwarded |
| 12ac20 | 20 6f 75 74 62 6f 75 6e 64 20 44 4e 53 20 72 65 71 75 65 73 74 73 20 66 72 6f 6d 20 74 68 69 73 | .outbound.DNS.requests.from.this |
| 12ac40 | 20 61 64 64 72 65 73 73 2e 00 54 68 65 20 6c 6f 63 61 6c 20 73 69 74 65 20 77 69 6c 6c 20 68 61 | .address..The.local.site.will.ha |
| 12ac60 | 76 65 20 61 20 73 75 62 6e 65 74 20 6f 66 20 31 30 2e 30 2e 30 2e 30 2f 31 36 2e 00 54 68 65 20 | ve.a.subnet.of.10.0.0.0/16..The. |
| 12ac80 | 6c 6f 6f 70 62 61 63 6b 20 6e 65 74 77 6f 72 6b 69 6e 67 20 69 6e 74 65 72 66 61 63 65 20 69 73 | loopback.networking.interface.is |
| 12aca0 | 20 61 20 76 69 72 74 75 61 6c 20 6e 65 74 77 6f 72 6b 20 64 65 76 69 63 65 20 69 6d 70 6c 65 6d | .a.virtual.network.device.implem |
| 12acc0 | 65 6e 74 65 64 20 65 6e 74 69 72 65 6c 79 20 69 6e 20 73 6f 66 74 77 61 72 65 2e 20 41 6c 6c 20 | ented.entirely.in.software..All. |
| 12ace0 | 74 72 61 66 66 69 63 20 73 65 6e 74 20 74 6f 20 69 74 20 22 6c 6f 6f 70 73 20 62 61 63 6b 22 20 | traffic.sent.to.it."loops.back". |
| 12ad00 | 61 6e 64 20 6a 75 73 74 20 74 61 72 67 65 74 73 20 73 65 72 76 69 63 65 73 20 6f 6e 20 79 6f 75 | and.just.targets.services.on.you |
| 12ad20 | 72 20 6c 6f 63 61 6c 20 6d 61 63 68 69 6e 65 2e 00 54 68 65 20 6d 61 69 6e 20 62 65 6e 65 66 69 | r.local.machine..The.main.benefi |
| 12ad40 | 74 20 74 6f 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 73 79 6e 63 68 72 6f 6e 69 7a 61 74 69 | t.to.configuration.synchronizati |
| 12ad60 | 6f 6e 20 69 73 20 74 68 61 74 20 69 74 20 65 6c 69 6d 69 6e 61 74 65 73 20 68 61 76 69 6e 67 20 | on.is.that.it.eliminates.having. |
| 12ad80 | 74 6f 20 6d 61 6e 75 61 6c 6c 79 20 72 65 70 6c 69 63 61 74 65 20 63 6f 6e 66 69 67 75 72 61 74 | to.manually.replicate.configurat |
| 12ada0 | 69 6f 6e 20 63 68 61 6e 67 65 73 20 6d 61 64 65 20 6f 6e 20 74 68 65 20 70 72 69 6d 61 72 79 20 | ion.changes.made.on.the.primary. |
| 12adc0 | 72 6f 75 74 65 72 20 74 6f 20 74 68 65 20 73 65 63 6f 6e 64 61 72 79 20 28 72 65 70 6c 69 63 61 | router.to.the.secondary.(replica |
| 12ade0 | 29 20 72 6f 75 74 65 72 2e 00 54 68 65 20 6d 61 69 6e 20 70 6f 69 6e 74 73 20 72 65 67 61 72 64 | ).router..The.main.points.regard |
| 12ae00 | 69 6e 67 20 74 68 69 73 20 70 61 63 6b 65 74 20 66 6c 6f 77 20 61 6e 64 20 74 65 72 6d 69 6e 6f | ing.this.packet.flow.and.termino |
| 12ae20 | 6c 6f 67 79 20 75 73 65 64 20 69 6e 20 56 79 4f 53 20 66 69 72 65 77 61 6c 6c 20 61 72 65 20 63 | logy.used.in.VyOS.firewall.are.c |
| 12ae40 | 6f 76 65 72 65 64 20 62 65 6c 6f 77 3a 00 54 68 65 20 6d 61 69 6e 20 73 74 72 75 63 74 75 72 65 | overed.below:.The.main.structure |
| 12ae60 | 20 56 79 4f 53 20 66 69 72 65 77 61 6c 6c 20 63 6c 69 20 69 73 20 73 68 6f 77 6e 20 6e 65 78 74 | .VyOS.firewall.cli.is.shown.next |
| 12ae80 | 3a 00 54 68 65 20 6d 61 69 6e 20 73 74 72 75 63 74 75 72 65 20 6f 66 20 74 68 65 20 56 79 4f 53 | :.The.main.structure.of.the.VyOS |
| 12aea0 | 20 66 69 72 65 77 61 6c 6c 20 43 4c 49 20 69 73 20 73 68 6f 77 6e 20 6e 65 78 74 3a 00 54 68 65 | .firewall.CLI.is.shown.next:.The |
| 12aec0 | 20 6d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 74 61 72 67 65 74 73 20 74 68 61 74 20 | .maximum.number.of.targets.that. |
| 12aee0 | 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 20 69 73 20 31 36 2e 20 54 68 65 20 64 65 66 61 | can.be.specified.is.16..The.defa |
| 12af00 | 75 6c 74 20 76 61 6c 75 65 20 69 73 20 6e 6f 20 49 50 20 61 64 64 72 65 73 73 2e 00 54 68 65 20 | ult.value.is.no.IP.address..The. |
| 12af20 | 6d 65 61 6e 69 6e 67 20 6f 66 20 74 68 65 20 43 6c 61 73 73 20 49 44 20 69 73 20 6e 6f 74 20 74 | meaning.of.the.Class.ID.is.not.t |
| 12af40 | 68 65 20 73 61 6d 65 20 66 6f 72 20 65 76 65 72 79 20 74 79 70 65 20 6f 66 20 70 6f 6c 69 63 79 | he.same.for.every.type.of.policy |
| 12af60 | 2e 20 4e 6f 72 6d 61 6c 6c 79 20 70 6f 6c 69 63 69 65 73 20 6a 75 73 74 20 6e 65 65 64 20 61 20 | ..Normally.policies.just.need.a. |
| 12af80 | 6d 65 61 6e 69 6e 67 6c 65 73 73 20 6e 75 6d 62 65 72 20 74 6f 20 69 64 65 6e 74 69 66 79 20 61 | meaningless.number.to.identify.a |
| 12afa0 | 20 63 6c 61 73 73 20 28 43 6c 61 73 73 20 49 44 29 2c 20 62 75 74 20 74 68 61 74 20 64 6f 65 73 | .class.(Class.ID),.but.that.does |
| 12afc0 | 20 6e 6f 74 20 61 70 70 6c 79 20 74 6f 20 65 76 65 72 79 20 70 6f 6c 69 63 79 2e 20 54 68 65 20 | .not.apply.to.every.policy..The. |
| 12afe0 | 6e 75 6d 62 65 72 20 6f 66 20 61 20 63 6c 61 73 73 20 69 6e 20 61 20 50 72 69 6f 72 69 74 79 20 | number.of.a.class.in.a.Priority. |
| 12b000 | 51 75 65 75 65 20 69 74 20 64 6f 65 73 20 6e 6f 74 20 6f 6e 6c 79 20 69 64 65 6e 74 69 66 79 20 | Queue.it.does.not.only.identify. |
| 12b020 | 69 74 2c 20 69 74 20 61 6c 73 6f 20 64 65 66 69 6e 65 73 20 69 74 73 20 70 72 69 6f 72 69 74 79 | it,.it.also.defines.its.priority |
| 12b040 | 2e 00 54 68 65 20 6d 65 6d 62 65 72 20 69 6e 74 65 72 66 61 63 65 20 60 65 74 68 31 60 20 69 73 | ..The.member.interface.`eth1`.is |
| 12b060 | 20 61 20 74 72 75 6e 6b 20 74 68 61 74 20 61 6c 6c 6f 77 73 20 56 4c 41 4e 20 31 30 20 74 6f 20 | .a.trunk.that.allows.VLAN.10.to. |
| 12b080 | 70 61 73 73 00 54 68 65 20 6d 65 74 72 69 63 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 31 36 | pass.The.metric.range.is.1.to.16 |
| 12b0a0 | 37 37 37 32 31 35 20 28 4d 61 78 20 76 61 6c 75 65 20 64 65 70 65 6e 64 20 69 66 20 6d 65 74 72 | 777215.(Max.value.depend.if.metr |
| 12b0c0 | 69 63 20 73 75 70 70 6f 72 74 20 6e 61 72 72 6f 77 20 6f 72 20 77 69 64 65 20 76 61 6c 75 65 29 | ic.support.narrow.or.wide.value) |
| 12b0e0 | 2e 00 54 68 65 20 6d 69 6e 69 6d 61 6c 20 65 63 68 6f 20 72 65 63 65 69 76 65 20 74 72 61 6e 73 | ..The.minimal.echo.receive.trans |
| 12b100 | 6d 69 73 73 69 6f 6e 20 69 6e 74 65 72 76 61 6c 20 74 68 61 74 20 74 68 69 73 20 73 79 73 74 65 | mission.interval.that.this.syste |
| 12b120 | 6d 20 69 73 20 63 61 70 61 62 6c 65 20 6f 66 20 68 61 6e 64 6c 69 6e 67 00 54 68 65 20 6d 6f 73 | m.is.capable.of.handling.The.mos |
| 12b140 | 74 20 76 69 73 69 62 6c 65 20 61 70 70 6c 69 63 61 74 69 6f 6e 20 6f 66 20 74 68 65 20 70 72 6f | t.visible.application.of.the.pro |
| 12b160 | 74 6f 63 6f 6c 20 69 73 20 66 6f 72 20 61 63 63 65 73 73 20 74 6f 20 73 68 65 6c 6c 20 61 63 63 | tocol.is.for.access.to.shell.acc |
| 12b180 | 6f 75 6e 74 73 20 6f 6e 20 55 6e 69 78 2d 6c 69 6b 65 20 6f 70 65 72 61 74 69 6e 67 20 73 79 73 | ounts.on.Unix-like.operating.sys |
| 12b1a0 | 74 65 6d 73 2c 20 62 75 74 20 69 74 20 73 65 65 73 20 73 6f 6d 65 20 6c 69 6d 69 74 65 64 20 75 | tems,.but.it.sees.some.limited.u |
| 12b1c0 | 73 65 20 6f 6e 20 57 69 6e 64 6f 77 73 20 61 73 20 77 65 6c 6c 2e 20 49 6e 20 32 30 31 35 2c 20 | se.on.Windows.as.well..In.2015,. |
| 12b1e0 | 4d 69 63 72 6f 73 6f 66 74 20 61 6e 6e 6f 75 6e 63 65 64 20 74 68 61 74 20 74 68 65 79 20 77 6f | Microsoft.announced.that.they.wo |
| 12b200 | 75 6c 64 20 69 6e 63 6c 75 64 65 20 6e 61 74 69 76 65 20 73 75 70 70 6f 72 74 20 66 6f 72 20 53 | uld.include.native.support.for.S |
| 12b220 | 53 48 20 69 6e 20 61 20 66 75 74 75 72 65 20 72 65 6c 65 61 73 65 2e 00 54 68 65 20 6d 75 6c 74 | SH.in.a.future.release..The.mult |
| 12b240 | 69 63 61 73 74 2d 67 72 6f 75 70 20 75 73 65 64 20 62 79 20 61 6c 6c 20 6c 65 61 76 65 73 20 66 | icast-group.used.by.all.leaves.f |
| 12b260 | 6f 72 20 74 68 69 73 20 76 6c 61 6e 20 65 78 74 65 6e 73 69 6f 6e 2e 20 48 61 73 20 74 6f 20 62 | or.this.vlan.extension..Has.to.b |
| 12b280 | 65 20 74 68 65 20 73 61 6d 65 20 6f 6e 20 61 6c 6c 20 6c 65 61 76 65 73 20 74 68 61 74 20 68 61 | e.the.same.on.all.leaves.that.ha |
| 12b2a0 | 73 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 2e 00 54 68 65 20 6e 61 6d 65 20 6f 66 20 74 68 | s.this.interface..The.name.of.th |
| 12b2c0 | 65 20 73 65 72 76 69 63 65 20 63 61 6e 20 62 65 20 64 69 66 66 65 72 65 6e 74 2c 20 69 6e 20 74 | e.service.can.be.different,.in.t |
| 12b2e0 | 68 69 73 20 65 78 61 6d 70 6c 65 20 69 74 20 69 73 20 6f 6e 6c 79 20 66 6f 72 20 63 6f 6e 76 65 | his.example.it.is.only.for.conve |
| 12b300 | 6e 69 65 6e 63 65 2e 00 54 68 65 20 6e 65 74 6d 61 73 6b 20 6f 72 20 64 6f 6d 61 69 6e 20 74 68 | nience..The.netmask.or.domain.th |
| 12b320 | 61 74 20 45 44 4e 53 20 43 6c 69 65 6e 74 20 53 75 62 6e 65 74 20 73 68 6f 75 6c 64 20 62 65 20 | at.EDNS.Client.Subnet.should.be. |
| 12b340 | 65 6e 61 62 6c 65 64 20 66 6f 72 20 69 6e 20 6f 75 74 67 6f 69 6e 67 20 71 75 65 72 69 65 73 2e | enabled.for.in.outgoing.queries. |
| 12b360 | 00 54 68 65 20 6e 65 74 77 6f 72 6b 20 74 6f 70 6f 6c 6f 67 79 20 69 73 20 64 65 63 6c 61 72 65 | .The.network.topology.is.declare |
| 12b380 | 64 20 62 79 20 73 68 61 72 65 64 2d 6e 65 74 77 6f 72 6b 2d 6e 61 6d 65 20 61 6e 64 20 74 68 65 | d.by.shared-network-name.and.the |
| 12b3a0 | 20 73 75 62 6e 65 74 20 64 65 63 6c 61 72 61 74 69 6f 6e 73 2e 20 54 68 65 20 44 48 43 50 20 73 | .subnet.declarations..The.DHCP.s |
| 12b3c0 | 65 72 76 69 63 65 20 63 61 6e 20 73 65 72 76 65 20 6d 75 6c 74 69 70 6c 65 20 73 68 61 72 65 64 | ervice.can.serve.multiple.shared |
| 12b3e0 | 20 6e 65 74 77 6f 72 6b 73 2c 20 77 69 74 68 20 65 61 63 68 20 73 68 61 72 65 64 20 6e 65 74 77 | .networks,.with.each.shared.netw |
| 12b400 | 6f 72 6b 20 68 61 76 69 6e 67 20 31 20 6f 72 20 6d 6f 72 65 20 73 75 62 6e 65 74 73 2e 20 45 61 | ork.having.1.or.more.subnets..Ea |
| 12b420 | 63 68 20 73 75 62 6e 65 74 20 6d 75 73 74 20 62 65 20 70 72 65 73 65 6e 74 20 6f 6e 20 61 6e 20 | ch.subnet.must.be.present.on.an. |
| 12b440 | 69 6e 74 65 72 66 61 63 65 2e 20 41 20 72 61 6e 67 65 20 63 61 6e 20 62 65 20 64 65 63 6c 61 72 | interface..A.range.can.be.declar |
| 12b460 | 65 64 20 69 6e 73 69 64 65 20 61 20 73 75 62 6e 65 74 20 74 6f 20 64 65 66 69 6e 65 20 61 20 70 | ed.inside.a.subnet.to.define.a.p |
| 12b480 | 6f 6f 6c 20 6f 66 20 64 79 6e 61 6d 69 63 20 61 64 64 72 65 73 73 65 73 2e 20 4d 75 6c 74 69 70 | ool.of.dynamic.addresses..Multip |
| 12b4a0 | 6c 65 20 72 61 6e 67 65 73 20 63 61 6e 20 62 65 20 64 65 66 69 6e 65 64 20 61 6e 64 20 63 61 6e | le.ranges.can.be.defined.and.can |
| 12b4c0 | 20 63 6f 6e 74 61 69 6e 20 68 6f 6c 65 73 2e 20 53 74 61 74 69 63 20 6d 61 70 70 69 6e 67 73 20 | .contain.holes..Static.mappings. |
| 12b4e0 | 63 61 6e 20 62 65 20 73 65 74 20 74 6f 20 61 73 73 69 67 6e 20 22 73 74 61 74 69 63 22 20 61 64 | can.be.set.to.assign."static".ad |
| 12b500 | 64 72 65 73 73 65 73 20 74 6f 20 63 6c 69 65 6e 74 73 20 62 61 73 65 64 20 6f 6e 20 74 68 65 69 | dresses.to.clients.based.on.thei |
| 12b520 | 72 20 4d 41 43 20 61 64 64 72 65 73 73 2e 00 54 68 65 20 6e 65 78 74 20 65 78 61 6d 70 6c 65 20 | r.MAC.address..The.next.example. |
| 12b540 | 69 73 20 61 20 73 69 6d 70 6c 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 66 20 63 6f 6e | is.a.simple.configuration.of.con |
| 12b560 | 6e 74 72 61 63 6b 2d 73 79 6e 63 2e 00 54 68 65 20 6e 65 78 74 20 73 74 65 70 20 69 73 20 74 6f | ntrack-sync..The.next.step.is.to |
| 12b580 | 20 63 6f 6e 66 69 67 75 72 65 20 79 6f 75 72 20 6c 6f 63 61 6c 20 73 69 64 65 20 61 73 20 77 65 | .configure.your.local.side.as.we |
| 12b5a0 | 6c 6c 20 61 73 20 74 68 65 20 70 6f 6c 69 63 79 20 62 61 73 65 64 20 74 72 75 73 74 65 64 20 64 | ll.as.the.policy.based.trusted.d |
| 12b5c0 | 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 65 73 2e 20 49 66 20 79 6f 75 20 6f 6e 6c | estination.addresses..If.you.onl |
| 12b5e0 | 79 20 69 6e 69 74 69 61 74 65 20 61 20 63 6f 6e 6e 65 63 74 69 6f 6e 2c 20 74 68 65 20 6c 69 73 | y.initiate.a.connection,.the.lis |
| 12b600 | 74 65 6e 20 70 6f 72 74 20 61 6e 64 20 61 64 64 72 65 73 73 2f 70 6f 72 74 20 69 73 20 6f 70 74 | ten.port.and.address/port.is.opt |
| 12b620 | 69 6f 6e 61 6c 3b 20 68 6f 77 65 76 65 72 2c 20 69 66 20 79 6f 75 20 61 63 74 20 6c 69 6b 65 20 | ional;.however,.if.you.act.like. |
| 12b640 | 61 20 73 65 72 76 65 72 20 61 6e 64 20 65 6e 64 70 6f 69 6e 74 73 20 69 6e 69 74 69 61 74 65 20 | a.server.and.endpoints.initiate. |
| 12b660 | 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 74 6f 20 79 6f 75 72 20 73 79 73 74 65 6d 2c 20 | the.connections.to.your.system,. |
| 12b680 | 79 6f 75 20 6e 65 65 64 20 74 6f 20 64 65 66 69 6e 65 20 61 20 70 6f 72 74 20 79 6f 75 72 20 63 | you.need.to.define.a.port.your.c |
| 12b6a0 | 6c 69 65 6e 74 73 20 63 61 6e 20 63 6f 6e 6e 65 63 74 20 74 6f 2c 20 6f 74 68 65 72 77 69 73 65 | lients.can.connect.to,.otherwise |
| 12b6c0 | 20 74 68 65 20 70 6f 72 74 20 69 73 20 72 61 6e 64 6f 6d 6c 79 20 63 68 6f 73 65 6e 20 61 6e 64 | .the.port.is.randomly.chosen.and |
| 12b6e0 | 20 6d 61 79 20 6d 61 6b 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 64 69 66 66 69 63 75 6c 74 20 77 | .may.make.connection.difficult.w |
| 12b700 | 69 74 68 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 2c 20 73 69 6e 63 65 20 74 68 65 20 70 6f | ith.firewall.rules,.since.the.po |
| 12b720 | 72 74 20 6d 61 79 20 62 65 20 64 69 66 66 65 72 65 6e 74 20 65 61 63 68 20 74 69 6d 65 20 74 68 | rt.may.be.different.each.time.th |
| 12b740 | 65 20 73 79 73 74 65 6d 20 69 73 20 72 65 62 6f 6f 74 65 64 2e 00 54 68 65 20 6e 6f 74 65 64 20 | e.system.is.rebooted..The.noted. |
| 12b760 | 70 75 62 6c 69 63 20 6b 65 79 73 20 73 68 6f 75 6c 64 20 62 65 20 65 6e 74 65 72 65 64 20 6f 6e | public.keys.should.be.entered.on |
| 12b780 | 20 74 68 65 20 6f 70 70 6f 73 69 74 65 20 72 6f 75 74 65 72 73 2e 00 54 68 65 20 6e 75 6d 62 65 | .the.opposite.routers..The.numbe |
| 12b7a0 | 72 20 6f 66 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 20 74 6f 20 77 61 69 74 20 66 6f 72 20 61 20 | r.of.milliseconds.to.wait.for.a. |
| 12b7c0 | 72 65 6d 6f 74 65 20 61 75 74 68 6f 72 69 74 61 74 69 76 65 20 73 65 72 76 65 72 20 74 6f 20 72 | remote.authoritative.server.to.r |
| 12b7e0 | 65 73 70 6f 6e 64 20 62 65 66 6f 72 65 20 74 69 6d 69 6e 67 20 6f 75 74 20 61 6e 64 20 72 65 73 | espond.before.timing.out.and.res |
| 12b800 | 70 6f 6e 64 69 6e 67 20 77 69 74 68 20 53 45 52 56 46 41 49 4c 2e 00 54 68 65 20 6e 75 6d 62 65 | ponding.with.SERVFAIL..The.numbe |
| 12b820 | 72 20 70 61 72 61 6d 65 74 65 72 20 28 31 2d 31 30 29 20 63 6f 6e 66 69 67 75 72 65 73 20 74 68 | r.parameter.(1-10).configures.th |
| 12b840 | 65 20 61 6d 6f 75 6e 74 20 6f 66 20 61 63 63 65 70 74 65 64 20 6f 63 63 75 72 65 6e 63 65 73 20 | e.amount.of.accepted.occurences. |
| 12b860 | 6f 66 20 74 68 65 20 73 79 73 74 65 6d 20 41 53 20 6e 75 6d 62 65 72 20 69 6e 20 41 53 20 70 61 | of.the.system.AS.number.in.AS.pa |
| 12b880 | 74 68 2e 00 54 68 65 20 6f 66 66 69 63 69 61 6c 20 70 6f 72 74 20 66 6f 72 20 4f 70 65 6e 56 50 | th..The.official.port.for.OpenVP |
| 12b8a0 | 4e 20 69 73 20 31 31 39 34 2c 20 77 68 69 63 68 20 77 65 20 72 65 73 65 72 76 65 20 66 6f 72 20 | N.is.1194,.which.we.reserve.for. |
| 12b8c0 | 63 6c 69 65 6e 74 20 56 50 4e 3b 20 77 65 20 77 69 6c 6c 20 75 73 65 20 31 31 39 35 20 66 6f 72 | client.VPN;.we.will.use.1195.for |
| 12b8e0 | 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 56 50 4e 2e 00 54 68 65 20 6f 6e 6c 79 20 73 74 61 67 | .site-to-site.VPN..The.only.stag |
| 12b900 | 65 73 20 56 79 4f 53 20 77 69 6c 6c 20 70 72 6f 63 65 73 73 20 61 73 20 70 61 72 74 20 6f 66 20 | es.VyOS.will.process.as.part.of. |
| 12b920 | 74 68 65 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 73 20 74 68 | the.firewall.configuration.is.th |
| 12b940 | 65 20 60 66 6f 72 77 61 72 64 60 20 28 46 34 20 73 74 61 67 65 29 2c 20 60 69 6e 70 75 74 60 20 | e.`forward`.(F4.stage),.`input`. |
| 12b960 | 28 4c 34 20 73 74 61 67 65 29 2c 20 61 6e 64 20 60 6f 75 74 70 75 74 60 20 28 4c 35 20 73 74 61 | (L4.stage),.and.`output`.(L5.sta |
| 12b980 | 67 65 29 2e 20 41 6c 6c 20 74 68 65 20 6f 74 68 65 72 20 73 74 61 67 65 73 20 61 6e 64 20 73 74 | ge)..All.the.other.stages.and.st |
| 12b9a0 | 65 70 73 20 61 72 65 20 66 6f 72 20 72 65 66 65 72 65 6e 63 65 20 61 6e 64 20 63 61 6e 74 20 62 | eps.are.for.reference.and.cant.b |
| 12b9c0 | 65 20 6d 61 6e 69 70 75 6c 61 74 65 64 20 74 68 72 6f 75 67 68 20 56 79 4f 53 2e 00 54 68 65 20 | e.manipulated.through.VyOS..The. |
| 12b9e0 | 6f 70 74 69 6f 6e 61 6c 20 60 64 69 73 61 62 6c 65 60 20 6f 70 74 69 6f 6e 20 61 6c 6c 6f 77 73 | optional.`disable`.option.allows |
| 12ba00 | 20 74 6f 20 65 78 63 6c 75 64 65 20 69 6e 74 65 72 66 61 63 65 20 66 72 6f 6d 20 70 61 73 73 69 | .to.exclude.interface.from.passi |
| 12ba20 | 76 65 20 73 74 61 74 65 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 75 73 65 64 20 69 | ve.state..This.command.is.used.i |
| 12ba40 | 66 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 3a 63 66 67 63 6d 64 3a 60 70 61 73 73 69 76 65 2d 69 | f.the.command.:cfgcmd:`passive-i |
| 12ba60 | 6e 74 65 72 66 61 63 65 20 64 65 66 61 75 6c 74 60 20 77 61 73 20 63 6f 6e 66 69 67 75 72 65 64 | nterface.default`.was.configured |
| 12ba80 | 2e 00 54 68 65 20 6f 70 74 69 6f 6e 61 6c 20 70 61 72 61 6d 65 74 65 72 20 72 65 67 69 73 74 65 | ..The.optional.parameter.registe |
| 12baa0 | 72 20 73 70 65 63 69 66 69 65 73 20 74 68 61 74 20 52 65 67 69 73 74 72 61 74 69 6f 6e 20 52 65 | r.specifies.that.Registration.Re |
| 12bac0 | 71 75 65 73 74 20 73 68 6f 75 6c 64 20 62 65 20 73 65 6e 74 20 74 6f 20 74 68 69 73 20 70 65 65 | quest.should.be.sent.to.this.pee |
| 12bae0 | 72 20 6f 6e 20 73 74 61 72 74 75 70 2e 00 54 68 65 20 6f 72 69 67 69 6e 61 6c 20 38 30 32 2e 31 | r.on.startup..The.original.802.1 |
| 12bb00 | 71 5f 20 73 70 65 63 69 66 69 63 61 74 69 6f 6e 20 61 6c 6c 6f 77 73 20 61 20 73 69 6e 67 6c 65 | q_.specification.allows.a.single |
| 12bb20 | 20 56 69 72 74 75 61 6c 20 4c 6f 63 61 6c 20 41 72 65 61 20 4e 65 74 77 6f 72 6b 20 28 56 4c 41 | .Virtual.Local.Area.Network.(VLA |
| 12bb40 | 4e 29 20 68 65 61 64 65 72 20 74 6f 20 62 65 20 69 6e 73 65 72 74 65 64 20 69 6e 74 6f 20 61 6e | N).header.to.be.inserted.into.an |
| 12bb60 | 20 45 74 68 65 72 6e 65 74 20 66 72 61 6d 65 2e 20 51 69 6e 51 20 61 6c 6c 6f 77 73 20 6d 75 6c | .Ethernet.frame..QinQ.allows.mul |
| 12bb80 | 74 69 70 6c 65 20 56 4c 41 4e 20 74 61 67 73 20 74 6f 20 62 65 20 69 6e 73 65 72 74 65 64 20 69 | tiple.VLAN.tags.to.be.inserted.i |
| 12bba0 | 6e 74 6f 20 61 20 73 69 6e 67 6c 65 20 66 72 61 6d 65 2c 20 61 6e 20 65 73 73 65 6e 74 69 61 6c | nto.a.single.frame,.an.essential |
| 12bbc0 | 20 63 61 70 61 62 69 6c 69 74 79 20 66 6f 72 20 69 6d 70 6c 65 6d 65 6e 74 69 6e 67 20 4d 65 74 | .capability.for.implementing.Met |
| 12bbe0 | 72 6f 20 45 74 68 65 72 6e 65 74 20 6e 65 74 77 6f 72 6b 20 74 6f 70 6f 6c 6f 67 69 65 73 2e 20 | ro.Ethernet.network.topologies.. |
| 12bc00 | 4a 75 73 74 20 61 73 20 51 69 6e 51 20 65 78 74 65 6e 64 73 20 38 30 32 2e 31 51 2c 20 51 69 6e | Just.as.QinQ.extends.802.1Q,.Qin |
| 12bc20 | 51 20 69 74 73 65 6c 66 20 69 73 20 65 78 74 65 6e 64 65 64 20 62 79 20 6f 74 68 65 72 20 4d 65 | Q.itself.is.extended.by.other.Me |
| 12bc40 | 74 72 6f 20 45 74 68 65 72 6e 65 74 20 70 72 6f 74 6f 63 6f 6c 73 2e 00 54 68 65 20 6f 75 74 67 | tro.Ethernet.protocols..The.outg |
| 12bc60 | 6f 69 6e 67 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 70 65 72 66 6f 72 6d 20 74 68 65 20 74 72 | oing.interface.to.perform.the.tr |
| 12bc80 | 61 6e 73 6c 61 74 69 6f 6e 20 6f 6e 00 54 68 65 20 70 65 65 72 20 6e 61 6d 65 20 6d 75 73 74 20 | anslation.on.The.peer.name.must. |
| 12bca0 | 62 65 20 61 6e 20 61 6c 70 68 61 6e 75 6d 65 72 69 63 20 61 6e 64 20 63 61 6e 20 68 61 76 65 20 | be.an.alphanumeric.and.can.have. |
| 12bcc0 | 68 79 70 65 6e 20 6f 72 20 75 6e 64 65 72 73 63 6f 72 65 20 61 73 20 73 70 65 63 69 61 6c 20 63 | hypen.or.underscore.as.special.c |
| 12bce0 | 68 61 72 61 63 74 65 72 73 2e 20 49 74 20 69 73 20 70 75 72 65 6c 79 20 69 6e 66 6f 72 6d 61 74 | haracters..It.is.purely.informat |
| 12bd00 | 69 6f 6e 61 6c 2e 00 54 68 65 20 70 65 65 72 20 6e 61 6d 65 73 20 52 49 47 48 54 20 61 6e 64 20 | ional..The.peer.names.RIGHT.and. |
| 12bd20 | 4c 45 46 54 20 61 72 65 20 75 73 65 64 20 61 73 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 61 6c 20 74 | LEFT.are.used.as.informational.t |
| 12bd40 | 65 78 74 2e 00 54 68 65 20 70 65 65 72 20 77 69 74 68 20 6c 6f 77 65 72 20 70 72 69 6f 72 69 74 | ext..The.peer.with.lower.priorit |
| 12bd60 | 79 20 77 69 6c 6c 20 62 65 63 6f 6d 65 20 74 68 65 20 6b 65 79 20 73 65 72 76 65 72 20 61 6e 64 | y.will.become.the.key.server.and |
| 12bd80 | 20 73 74 61 72 74 20 64 69 73 74 72 69 62 75 74 69 6e 67 20 53 41 4b 73 2e 00 54 68 65 20 70 69 | .start.distributing.SAKs..The.pi |
| 12bda0 | 6e 67 20 63 6f 6d 6d 61 6e 64 20 69 73 20 75 73 65 64 20 74 6f 20 74 65 73 74 20 77 68 65 74 68 | ng.command.is.used.to.test.wheth |
| 12bdc0 | 65 72 20 61 20 6e 65 74 77 6f 72 6b 20 68 6f 73 74 20 69 73 20 72 65 61 63 68 61 62 6c 65 20 6f | er.a.network.host.is.reachable.o |
| 12bde0 | 72 20 6e 6f 74 2e 00 54 68 65 20 70 6f 70 75 6c 61 72 20 55 6e 69 78 2f 4c 69 6e 75 78 20 60 60 | r.not..The.popular.Unix/Linux.`` |
| 12be00 | 64 69 67 60 60 20 74 6f 6f 6c 20 73 65 74 73 20 74 68 65 20 41 44 2d 62 69 74 20 69 6e 20 74 68 | dig``.tool.sets.the.AD-bit.in.th |
| 12be20 | 65 20 71 75 65 72 79 2e 20 54 68 69 73 20 6d 69 67 68 74 20 6c 65 61 64 20 74 6f 20 75 6e 65 78 | e.query..This.might.lead.to.unex |
| 12be40 | 70 65 63 74 65 64 20 71 75 65 72 79 20 72 65 73 75 6c 74 73 20 77 68 65 6e 20 74 65 73 74 69 6e | pected.query.results.when.testin |
| 12be60 | 67 2e 20 53 65 74 20 60 60 2b 6e 6f 61 64 60 60 20 6f 6e 20 74 68 65 20 60 60 64 69 67 60 60 20 | g..Set.``+noad``.on.the.``dig``. |
| 12be80 | 63 6f 6d 6d 61 6e 64 20 6c 69 6e 65 20 77 68 65 6e 20 74 68 69 73 20 69 73 20 74 68 65 20 63 61 | command.line.when.this.is.the.ca |
| 12bea0 | 73 65 2e 00 54 68 65 20 70 72 65 2d 73 68 61 72 65 64 20 6b 65 79 20 6d 6f 64 65 20 69 73 20 64 | se..The.pre-shared.key.mode.is.d |
| 12bec0 | 65 70 72 65 63 61 74 65 64 20 61 6e 64 20 77 69 6c 6c 20 62 65 20 72 65 6d 6f 76 65 64 20 66 72 | eprecated.and.will.be.removed.fr |
| 12bee0 | 6f 6d 20 66 75 74 75 72 65 20 4f 70 65 6e 56 50 4e 20 76 65 72 73 69 6f 6e 73 2c 20 73 6f 20 56 | om.future.OpenVPN.versions,.so.V |
| 12bf00 | 79 4f 53 20 77 69 6c 6c 20 68 61 76 65 20 74 6f 20 72 65 6d 6f 76 65 20 73 75 70 70 6f 72 74 20 | yOS.will.have.to.remove.support. |
| 12bf20 | 66 6f 72 20 74 68 61 74 20 6f 70 74 69 6f 6e 20 61 73 20 77 65 6c 6c 2e 20 54 68 65 20 72 65 61 | for.that.option.as.well..The.rea |
| 12bf40 | 73 6f 6e 20 69 73 20 74 68 61 74 20 75 73 69 6e 67 20 70 72 65 2d 73 68 61 72 65 64 20 6b 65 79 | son.is.that.using.pre-shared.key |
| 12bf60 | 73 20 69 73 20 73 69 67 6e 69 66 69 63 61 6e 74 6c 79 20 6c 65 73 73 20 73 65 63 75 72 65 20 74 | s.is.significantly.less.secure.t |
| 12bf80 | 68 61 6e 20 75 73 69 6e 67 20 54 4c 53 2e 00 54 68 65 20 70 72 65 66 69 78 20 61 6e 64 20 41 53 | han.using.TLS..The.prefix.and.AS |
| 12bfa0 | 4e 20 74 68 61 74 20 6f 72 69 67 69 6e 61 74 65 64 20 69 74 20 6d 61 74 63 68 20 61 20 73 69 67 | N.that.originated.it.match.a.sig |
| 12bfc0 | 6e 65 64 20 52 4f 41 2e 20 54 68 65 73 65 20 61 72 65 20 70 72 6f 62 61 62 6c 79 20 74 72 75 73 | ned.ROA..These.are.probably.trus |
| 12bfe0 | 74 77 6f 72 74 68 79 20 72 6f 75 74 65 20 61 6e 6e 6f 75 6e 63 65 6d 65 6e 74 73 2e 00 54 68 65 | tworthy.route.announcements..The |
| 12c000 | 20 70 72 65 66 69 78 20 6f 72 20 70 72 65 66 69 78 20 6c 65 6e 67 74 68 20 61 6e 64 20 41 53 4e | .prefix.or.prefix.length.and.ASN |
| 12c020 | 20 74 68 61 74 20 6f 72 69 67 69 6e 61 74 65 64 20 69 74 20 64 6f 65 73 6e 27 74 20 6d 61 74 63 | .that.originated.it.doesn't.matc |
| 12c040 | 68 20 61 6e 79 20 65 78 69 73 74 69 6e 67 20 52 4f 41 2e 20 54 68 69 73 20 63 6f 75 6c 64 20 62 | h.any.existing.ROA..This.could.b |
| 12c060 | 65 20 74 68 65 20 72 65 73 75 6c 74 20 6f 66 20 61 20 70 72 65 66 69 78 20 68 69 6a 61 63 6b 2c | e.the.result.of.a.prefix.hijack, |
| 12c080 | 20 6f 72 20 6d 65 72 65 6c 79 20 61 20 6d 69 73 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2c 20 62 | .or.merely.a.misconfiguration,.b |
| 12c0a0 | 75 74 20 73 68 6f 75 6c 64 20 70 72 6f 62 61 62 6c 79 20 62 65 20 74 72 65 61 74 65 64 20 61 73 | ut.should.probably.be.treated.as |
| 12c0c0 | 20 75 6e 74 72 75 73 74 77 6f 72 74 68 79 20 72 6f 75 74 65 20 61 6e 6e 6f 75 6e 63 65 6d 65 6e | .untrustworthy.route.announcemen |
| 12c0e0 | 74 73 2e 00 54 68 65 20 70 72 69 6d 61 72 79 20 44 48 43 50 20 73 65 72 76 65 72 20 75 73 65 73 | ts..The.primary.DHCP.server.uses |
| 12c100 | 20 61 64 64 72 65 73 73 20 60 31 39 32 2e 31 36 38 2e 31 38 39 2e 32 35 32 60 00 54 68 65 20 70 | .address.`192.168.189.252`.The.p |
| 12c120 | 72 69 6d 61 72 79 20 61 6e 64 20 73 65 63 6f 6e 64 61 72 79 20 73 74 61 74 65 6d 65 6e 74 73 20 | rimary.and.secondary.statements. |
| 12c140 | 64 65 74 65 72 6d 69 6e 65 73 20 77 68 65 74 68 65 72 20 74 68 65 20 73 65 72 76 65 72 20 69 73 | determines.whether.the.server.is |
| 12c160 | 20 70 72 69 6d 61 72 79 20 6f 72 20 73 65 63 6f 6e 64 61 72 79 2e 00 54 68 65 20 70 72 69 6d 61 | .primary.or.secondary..The.prima |
| 12c180 | 72 79 20 6f 70 74 69 6f 6e 20 69 73 20 6f 6e 6c 79 20 76 61 6c 69 64 20 66 6f 72 20 61 63 74 69 | ry.option.is.only.valid.for.acti |
| 12c1a0 | 76 65 2d 62 61 63 6b 75 70 2c 20 74 72 61 6e 73 6d 69 74 2d 6c 6f 61 64 2d 62 61 6c 61 6e 63 65 | ve-backup,.transmit-load-balance |
| 12c1c0 | 2c 20 61 6e 64 20 61 64 61 70 74 69 76 65 2d 6c 6f 61 64 2d 62 61 6c 61 6e 63 65 20 6d 6f 64 65 | ,.and.adaptive-load-balance.mode |
| 12c1e0 | 2e 00 54 68 65 20 70 72 69 6f 72 69 74 79 20 6d 75 73 74 20 62 65 20 61 6e 20 69 6e 74 65 67 65 | ..The.priority.must.be.an.intege |
| 12c200 | 72 20 6e 75 6d 62 65 72 20 66 72 6f 6d 20 31 20 74 6f 20 32 35 35 2e 20 48 69 67 68 65 72 20 70 | r.number.from.1.to.255..Higher.p |
| 12c220 | 72 69 6f 72 69 74 79 20 76 61 6c 75 65 20 69 6e 63 72 65 61 73 65 73 20 72 6f 75 74 65 72 27 73 | riority.value.increases.router's |
| 12c240 | 20 70 72 65 63 65 64 65 6e 63 65 20 69 6e 20 74 68 65 20 6d 61 73 74 65 72 20 65 6c 65 63 74 69 | .precedence.in.the.master.electi |
| 12c260 | 6f 6e 73 2e 00 54 68 65 20 70 72 6f 63 65 64 75 72 65 20 74 6f 20 73 70 65 63 69 66 79 20 61 20 | ons..The.procedure.to.specify.a. |
| 12c280 | 3a 61 62 62 72 3a 60 4e 49 53 2b 20 28 4e 65 74 77 6f 72 6b 20 49 6e 66 6f 72 6d 61 74 69 6f 6e | :abbr:`NIS+.(Network.Information |
| 12c2a0 | 20 53 65 72 76 69 63 65 20 50 6c 75 73 29 60 20 64 6f 6d 61 69 6e 20 69 73 20 73 69 6d 69 6c 61 | .Service.Plus)`.domain.is.simila |
| 12c2c0 | 72 20 74 6f 20 74 68 65 20 4e 49 53 20 64 6f 6d 61 69 6e 20 6f 6e 65 3a 00 54 68 65 20 70 72 6f | r.to.the.NIS.domain.one:.The.pro |
| 12c2e0 | 6d 70 74 20 69 73 20 61 64 6a 75 73 74 65 64 20 74 6f 20 72 65 66 6c 65 63 74 20 74 68 69 73 20 | mpt.is.adjusted.to.reflect.this. |
| 12c300 | 63 68 61 6e 67 65 20 69 6e 20 62 6f 74 68 20 63 6f 6e 66 69 67 20 61 6e 64 20 6f 70 2d 6d 6f 64 | change.in.both.config.and.op-mod |
| 12c320 | 65 2e 00 54 68 65 20 70 72 6f 74 6f 63 6f 6c 20 61 6e 64 20 70 6f 72 74 20 77 65 20 77 69 73 68 | e..The.protocol.and.port.we.wish |
| 12c340 | 20 74 6f 20 66 6f 72 77 61 72 64 3b 00 54 68 65 20 70 72 6f 74 6f 63 6f 6c 20 69 73 20 75 73 75 | .to.forward;.The.protocol.is.usu |
| 12c360 | 61 6c 6c 79 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 74 65 72 6d 73 20 6f 66 20 61 20 63 6c 69 | ally.described.in.terms.of.a.cli |
| 12c380 | 65 6e 74 2d 73 65 72 76 65 72 20 6d 6f 64 65 6c 2c 20 62 75 74 20 63 61 6e 20 61 73 20 65 61 73 | ent-server.model,.but.can.as.eas |
| 12c3a0 | 69 6c 79 20 62 65 20 75 73 65 64 20 69 6e 20 70 65 65 72 2d 74 6f 2d 70 65 65 72 20 72 65 6c 61 | ily.be.used.in.peer-to-peer.rela |
| 12c3c0 | 74 69 6f 6e 73 68 69 70 73 20 77 68 65 72 65 20 62 6f 74 68 20 70 65 65 72 73 20 63 6f 6e 73 69 | tionships.where.both.peers.consi |
| 12c3e0 | 64 65 72 20 74 68 65 20 6f 74 68 65 72 20 74 6f 20 62 65 20 61 20 70 6f 74 65 6e 74 69 61 6c 20 | der.the.other.to.be.a.potential. |
| 12c400 | 74 69 6d 65 20 73 6f 75 72 63 65 2e 20 49 6d 70 6c 65 6d 65 6e 74 61 74 69 6f 6e 73 20 73 65 6e | time.source..Implementations.sen |
| 12c420 | 64 20 61 6e 64 20 72 65 63 65 69 76 65 20 74 69 6d 65 73 74 61 6d 70 73 20 75 73 69 6e 67 20 3a | d.and.receive.timestamps.using.: |
| 12c440 | 61 62 62 72 3a 60 55 44 50 20 28 55 73 65 72 20 44 61 74 61 67 72 61 6d 20 50 72 6f 74 6f 63 6f | abbr:`UDP.(User.Datagram.Protoco |
| 12c460 | 6c 29 60 20 6f 6e 20 70 6f 72 74 20 6e 75 6d 62 65 72 20 31 32 33 2e 00 54 68 65 20 70 72 6f 74 | l)`.on.port.number.123..The.prot |
| 12c480 | 6f 63 6f 6c 20 6f 76 65 72 68 65 61 64 20 6f 66 20 4c 32 54 50 76 33 20 69 73 20 61 6c 73 6f 20 | ocol.overhead.of.L2TPv3.is.also. |
| 12c4a0 | 73 69 67 6e 69 66 69 63 61 6e 74 6c 79 20 62 69 67 67 65 72 20 74 68 61 6e 20 4d 50 4c 53 2e 00 | significantly.bigger.than.MPLS.. |
| 12c4c0 | 54 68 65 20 70 72 6f 78 79 20 73 65 72 76 69 63 65 20 69 6e 20 56 79 4f 53 20 69 73 20 62 61 73 | The.proxy.service.in.VyOS.is.bas |
| 12c4e0 | 65 64 20 6f 6e 20 53 71 75 69 64 5f 20 61 6e 64 20 73 6f 6d 65 20 72 65 6c 61 74 65 64 20 6d 6f | ed.on.Squid_.and.some.related.mo |
| 12c500 | 64 75 6c 65 73 2e 00 54 68 65 20 70 75 62 6c 69 63 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 | dules..The.public.IP.address.of. |
| 12c520 | 74 68 65 20 6c 6f 63 61 6c 20 73 69 64 65 20 6f 66 20 74 68 65 20 56 50 4e 20 77 69 6c 6c 20 62 | the.local.side.of.the.VPN.will.b |
| 12c540 | 65 20 31 39 38 2e 35 31 2e 31 30 30 2e 31 30 2e 00 54 68 65 20 70 75 62 6c 69 63 20 49 50 20 61 | e.198.51.100.10..The.public.IP.a |
| 12c560 | 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 72 65 6d 6f 74 65 20 73 69 64 65 20 6f 66 20 74 68 65 | ddress.of.the.remote.side.of.the |
| 12c580 | 20 56 50 4e 20 77 69 6c 6c 20 62 65 20 32 30 33 2e 30 2e 31 31 33 2e 31 31 2e 00 54 68 65 20 72 | .VPN.will.be.203.0.113.11..The.r |
| 12c5a0 | 61 74 65 2d 6c 69 6d 69 74 20 69 73 20 73 65 74 20 69 6e 20 6b 62 69 74 2f 73 65 63 2e 00 54 68 | ate-limit.is.set.in.kbit/sec..Th |
| 12c5c0 | 65 20 72 65 67 75 6c 61 72 20 65 78 70 72 65 73 73 69 6f 6e 20 6d 61 74 63 68 65 73 20 69 66 20 | e.regular.expression.matches.if. |
| 12c5e0 | 61 6e 64 20 6f 6e 6c 79 20 69 66 20 74 68 65 20 65 6e 74 69 72 65 20 73 74 72 69 6e 67 20 6d 61 | and.only.if.the.entire.string.ma |
| 12c600 | 74 63 68 65 73 20 74 68 65 20 70 61 74 74 65 72 6e 2e 00 54 68 65 20 72 65 6d 6f 74 65 20 70 65 | tches.the.pattern..The.remote.pe |
| 12c620 | 65 72 20 60 74 6f 2d 77 67 30 32 60 20 75 73 65 73 20 58 4d 72 6c 50 79 6b 61 78 68 64 41 41 69 | er.`to-wg02`.uses.XMrlPykaxhdAAi |
| 12c640 | 53 6a 68 74 50 6c 76 69 33 30 4e 56 6b 76 4c 51 6c 69 51 75 4b 50 37 41 49 37 43 79 49 3d 20 61 | SjhtPlvi30NVkvLQliQuKP7AI7CyI=.a |
| 12c660 | 73 20 69 74 73 20 70 75 62 6c 69 63 20 6b 65 79 20 70 6f 72 74 69 6f 6e 00 54 68 65 20 72 65 6d | s.its.public.key.portion.The.rem |
| 12c680 | 6f 74 65 20 73 69 74 65 20 77 69 6c 6c 20 68 61 76 65 20 61 20 73 75 62 6e 65 74 20 6f 66 20 31 | ote.site.will.have.a.subnet.of.1 |
| 12c6a0 | 30 2e 31 2e 30 2e 30 2f 31 36 2e 00 54 68 65 20 72 65 6d 6f 74 65 20 75 73 65 72 20 77 69 6c 6c | 0.1.0.0/16..The.remote.user.will |
| 12c6c0 | 20 75 73 65 20 74 68 65 20 6f 70 65 6e 63 6f 6e 6e 65 63 74 20 63 6c 69 65 6e 74 20 74 6f 20 63 | .use.the.openconnect.client.to.c |
| 12c6e0 | 6f 6e 6e 65 63 74 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 20 61 6e 64 20 77 69 6c 6c 20 72 65 | onnect.to.the.router.and.will.re |
| 12c700 | 63 65 69 76 65 20 61 6e 20 49 50 20 61 64 64 72 65 73 73 20 66 72 6f 6d 20 61 20 56 50 4e 20 70 | ceive.an.IP.address.from.a.VPN.p |
| 12c720 | 6f 6f 6c 2c 20 61 6c 6c 6f 77 69 6e 67 20 66 75 6c 6c 20 61 63 63 65 73 73 20 74 6f 20 74 68 65 | ool,.allowing.full.access.to.the |
| 12c740 | 20 6e 65 74 77 6f 72 6b 2e 00 54 68 65 20 72 65 71 75 65 73 74 6f 72 20 6e 65 74 6d 61 73 6b 20 | .network..The.requestor.netmask. |
| 12c760 | 66 6f 72 20 77 68 69 63 68 20 74 68 65 20 72 65 71 75 65 73 74 6f 72 20 49 50 20 41 64 64 72 65 | for.which.the.requestor.IP.Addre |
| 12c780 | 73 73 20 73 68 6f 75 6c 64 20 62 65 20 75 73 65 64 20 61 73 20 74 68 65 20 45 44 4e 53 20 43 6c | ss.should.be.used.as.the.EDNS.Cl |
| 12c7a0 | 69 65 6e 74 20 53 75 62 6e 65 74 20 66 6f 72 20 6f 75 74 67 6f 69 6e 67 20 71 75 65 72 69 65 73 | ient.Subnet.for.outgoing.queries |
| 12c7c0 | 2e 00 54 68 65 20 72 65 71 75 69 72 65 64 20 63 6f 6e 66 69 67 20 66 69 6c 65 20 6d 61 79 20 6c | ..The.required.config.file.may.l |
| 12c7e0 | 6f 6f 6b 20 6c 69 6b 65 20 74 68 69 73 3a 00 54 68 65 20 72 65 71 75 69 72 65 64 20 63 6f 6e 66 | ook.like.this:.The.required.conf |
| 12c800 | 69 67 75 72 61 74 69 6f 6e 20 63 61 6e 20 62 65 20 62 72 6f 6b 65 6e 20 64 6f 77 6e 20 69 6e 74 | iguration.can.be.broken.down.int |
| 12c820 | 6f 20 34 20 6d 61 6a 6f 72 20 70 69 65 63 65 73 3a 00 54 68 65 20 72 65 73 75 6c 74 69 6e 67 20 | o.4.major.pieces:.The.resulting. |
| 12c840 | 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 77 69 6c 6c 20 6c 6f 6f 6b 20 6c 69 6b 65 3a 00 54 68 | configuration.will.look.like:.Th |
| 12c860 | 65 20 72 6f 6f 74 20 63 61 75 73 65 20 6f 66 20 74 68 65 20 70 72 6f 62 6c 65 6d 20 69 73 20 74 | e.root.cause.of.the.problem.is.t |
| 12c880 | 68 61 74 20 66 6f 72 20 56 54 49 20 74 75 6e 6e 65 6c 73 20 74 6f 20 77 6f 72 6b 2c 20 74 68 65 | hat.for.VTI.tunnels.to.work,.the |
| 12c8a0 | 69 72 20 74 72 61 66 66 69 63 20 73 65 6c 65 63 74 6f 72 73 20 68 61 76 65 20 74 6f 20 62 65 20 | ir.traffic.selectors.have.to.be. |
| 12c8c0 | 73 65 74 20 74 6f 20 30 2e 30 2e 30 2e 30 2f 30 20 66 6f 72 20 74 72 61 66 66 69 63 20 74 6f 20 | set.to.0.0.0.0/0.for.traffic.to. |
| 12c8e0 | 6d 61 74 63 68 20 74 68 65 20 74 75 6e 6e 65 6c 2c 20 65 76 65 6e 20 74 68 6f 75 67 68 20 61 63 | match.the.tunnel,.even.though.ac |
| 12c900 | 74 75 61 6c 20 72 6f 75 74 69 6e 67 20 64 65 63 69 73 69 6f 6e 20 69 73 20 6d 61 64 65 20 61 63 | tual.routing.decision.is.made.ac |
| 12c920 | 63 6f 72 64 69 6e 67 20 74 6f 20 6e 65 74 66 69 6c 74 65 72 20 6d 61 72 6b 73 2e 20 55 6e 6c 65 | cording.to.netfilter.marks..Unle |
| 12c940 | 73 73 20 72 6f 75 74 65 20 69 6e 73 65 72 74 69 6f 6e 20 69 73 20 64 69 73 61 62 6c 65 64 20 65 | ss.route.insertion.is.disabled.e |
| 12c960 | 6e 74 69 72 65 6c 79 2c 20 53 74 72 6f 6e 67 53 57 41 4e 20 74 68 75 73 20 6d 69 73 74 61 6b 65 | ntirely,.StrongSWAN.thus.mistake |
| 12c980 | 6e 6c 79 20 69 6e 73 65 72 74 73 20 61 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 20 74 68 72 6f | nly.inserts.a.default.route.thro |
| 12c9a0 | 75 67 68 20 74 68 65 20 56 54 49 20 70 65 65 72 20 61 64 64 72 65 73 73 2c 20 77 68 69 63 68 20 | ugh.the.VTI.peer.address,.which. |
| 12c9c0 | 6d 61 6b 65 73 20 61 6c 6c 20 74 72 61 66 66 69 63 20 72 6f 75 74 65 64 20 74 6f 20 6e 6f 77 68 | makes.all.traffic.routed.to.nowh |
| 12c9e0 | 65 72 65 2e 00 54 68 65 20 72 6f 75 6e 64 2d 72 6f 62 69 6e 20 70 6f 6c 69 63 79 20 69 73 20 61 | ere..The.round-robin.policy.is.a |
| 12ca00 | 20 63 6c 61 73 73 66 75 6c 20 73 63 68 65 64 75 6c 65 72 20 74 68 61 74 20 64 69 76 69 64 65 73 | .classful.scheduler.that.divides |
| 12ca20 | 20 74 72 61 66 66 69 63 20 69 6e 20 64 69 66 66 65 72 65 6e 74 20 63 6c 61 73 73 65 73 5f 20 79 | .traffic.in.different.classes_.y |
| 12ca40 | 6f 75 20 63 61 6e 20 63 6f 6e 66 69 67 75 72 65 20 28 75 70 20 74 6f 20 34 30 39 36 29 2e 20 59 | ou.can.configure.(up.to.4096)..Y |
| 12ca60 | 6f 75 20 63 61 6e 20 65 6d 62 65 64 5f 20 61 20 6e 65 77 20 70 6f 6c 69 63 79 20 69 6e 74 6f 20 | ou.can.embed_.a.new.policy.into. |
| 12ca80 | 65 61 63 68 20 6f 66 20 74 68 6f 73 65 20 63 6c 61 73 73 65 73 20 28 64 65 66 61 75 6c 74 20 69 | each.of.those.classes.(default.i |
| 12caa0 | 6e 63 6c 75 64 65 64 29 2e 00 54 68 65 20 72 6f 75 74 65 20 73 65 6c 65 63 74 69 6f 6e 20 70 72 | ncluded)..The.route.selection.pr |
| 12cac0 | 6f 63 65 73 73 20 75 73 65 64 20 62 79 20 46 52 52 27 73 20 42 47 50 20 69 6d 70 6c 65 6d 65 6e | ocess.used.by.FRR's.BGP.implemen |
| 12cae0 | 74 61 74 69 6f 6e 20 75 73 65 73 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 64 65 63 69 73 69 | tation.uses.the.following.decisi |
| 12cb00 | 6f 6e 20 63 72 69 74 65 72 69 6f 6e 2c 20 73 74 61 72 74 69 6e 67 20 61 74 20 74 68 65 20 74 6f | on.criterion,.starting.at.the.to |
| 12cb20 | 70 20 6f 66 20 74 68 65 20 6c 69 73 74 20 61 6e 64 20 67 6f 69 6e 67 20 74 6f 77 61 72 64 73 20 | p.of.the.list.and.going.towards. |
| 12cb40 | 74 68 65 20 62 6f 74 74 6f 6d 20 75 6e 74 69 6c 20 6f 6e 65 20 6f 66 20 74 68 65 20 66 61 63 74 | the.bottom.until.one.of.the.fact |
| 12cb60 | 6f 72 73 20 63 61 6e 20 62 65 20 75 73 65 64 2e 00 54 68 65 20 72 6f 75 74 65 20 77 69 74 68 20 | ors.can.be.used..The.route.with. |
| 12cb80 | 74 68 65 20 73 68 6f 72 74 65 73 74 20 63 6c 75 73 74 65 72 2d 6c 69 73 74 20 6c 65 6e 67 74 68 | the.shortest.cluster-list.length |
| 12cba0 | 20 69 73 20 75 73 65 64 2e 20 54 68 65 20 63 6c 75 73 74 65 72 2d 6c 69 73 74 20 72 65 66 6c 65 | .is.used..The.cluster-list.refle |
| 12cbc0 | 63 74 73 20 74 68 65 20 69 42 47 50 20 72 65 66 6c 65 63 74 69 6f 6e 20 70 61 74 68 20 74 68 65 | cts.the.iBGP.reflection.path.the |
| 12cbe0 | 20 72 6f 75 74 65 20 68 61 73 20 74 61 6b 65 6e 2e 00 54 68 65 20 72 6f 75 74 65 72 20 61 75 74 | .route.has.taken..The.router.aut |
| 12cc00 | 6f 6d 61 74 69 63 61 6c 6c 79 20 75 70 64 61 74 65 73 20 6c 69 6e 6b 2d 73 74 61 74 65 20 69 6e | omatically.updates.link-state.in |
| 12cc20 | 66 6f 72 6d 61 74 69 6f 6e 20 77 69 74 68 20 69 74 73 20 6e 65 69 67 68 62 6f 72 73 2e 20 4f 6e | formation.with.its.neighbors..On |
| 12cc40 | 6c 79 20 61 6e 20 6f 62 73 6f 6c 65 74 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 69 73 20 75 70 | ly.an.obsolete.information.is.up |
| 12cc60 | 64 61 74 65 64 20 77 68 69 63 68 20 61 67 65 20 68 61 73 20 65 78 63 65 65 64 65 64 20 61 20 73 | dated.which.age.has.exceeded.a.s |
| 12cc80 | 70 65 63 69 66 69 63 20 74 68 72 65 73 68 6f 6c 64 2e 20 54 68 69 73 20 70 61 72 61 6d 65 74 65 | pecific.threshold..This.paramete |
| 12cca0 | 72 20 63 68 61 6e 67 65 73 20 61 20 74 68 72 65 73 68 6f 6c 64 20 76 61 6c 75 65 2c 20 77 68 69 | r.changes.a.threshold.value,.whi |
| 12ccc0 | 63 68 20 62 79 20 64 65 66 61 75 6c 74 20 69 73 20 31 38 30 30 20 73 65 63 6f 6e 64 73 20 28 68 | ch.by.default.is.1800.seconds.(h |
| 12cce0 | 61 6c 66 20 61 6e 20 68 6f 75 72 29 2e 20 54 68 65 20 76 61 6c 75 65 20 69 73 20 61 70 70 6c 69 | alf.an.hour)..The.value.is.appli |
| 12cd00 | 65 64 20 74 6f 20 74 68 65 20 77 68 6f 6c 65 20 4f 53 50 46 20 72 6f 75 74 65 72 2e 20 54 68 65 | ed.to.the.whole.OSPF.router..The |
| 12cd20 | 20 74 69 6d 65 72 20 72 61 6e 67 65 20 69 73 20 31 30 20 74 6f 20 31 38 30 30 2e 00 54 68 65 20 | .timer.range.is.10.to.1800..The. |
| 12cd40 | 72 6f 75 74 65 72 20 73 68 6f 75 6c 64 20 64 69 73 63 61 72 64 20 44 48 43 50 20 70 61 63 6b 61 | router.should.discard.DHCP.packa |
| 12cd60 | 67 65 73 20 61 6c 72 65 61 64 79 20 63 6f 6e 74 61 69 6e 69 6e 67 20 72 65 6c 61 79 20 61 67 65 | ges.already.containing.relay.age |
| 12cd80 | 6e 74 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 6f 20 65 6e 73 75 72 65 20 74 68 61 74 20 6f 6e | nt.information.to.ensure.that.on |
| 12cda0 | 6c 79 20 72 65 71 75 65 73 74 73 20 66 72 6f 6d 20 44 48 43 50 20 63 6c 69 65 6e 74 73 20 61 72 | ly.requests.from.DHCP.clients.ar |
| 12cdc0 | 65 20 66 6f 72 77 61 72 64 65 64 2e 00 54 68 65 20 73 46 6c 6f 77 20 61 63 63 6f 75 6e 74 69 6e | e.forwarded..The.sFlow.accountin |
| 12cde0 | 67 20 62 61 73 65 64 20 6f 6e 20 68 73 66 6c 6f 77 64 20 68 74 74 70 73 3a 2f 2f 73 66 6c 6f 77 | g.based.on.hsflowd.https://sflow |
| 12ce00 | 2e 6e 65 74 2f 00 54 68 65 20 73 61 6d 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 70 74 | .net/.The.same.configuration.opt |
| 12ce20 | 69 6f 6e 73 20 61 70 70 6c 79 20 77 68 65 6e 20 49 64 65 6e 74 69 74 79 20 62 61 73 65 64 20 63 | ions.apply.when.Identity.based.c |
| 12ce40 | 6f 6e 66 69 67 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 20 69 6e 20 67 72 6f 75 70 20 6d 6f 64 | onfig.is.configured.in.group.mod |
| 12ce60 | 65 20 65 78 63 65 70 74 20 74 68 61 74 20 67 72 6f 75 70 20 6d 6f 64 65 20 63 61 6e 20 6f 6e 6c | e.except.that.group.mode.can.onl |
| 12ce80 | 79 20 62 65 20 75 73 65 64 20 77 69 74 68 20 52 41 44 49 55 53 20 61 75 74 68 65 6e 74 69 63 61 | y.be.used.with.RADIUS.authentica |
| 12cea0 | 74 69 6f 6e 2e 00 54 68 65 20 73 63 68 65 6d 65 20 61 62 6f 76 65 20 64 6f 65 73 6e 27 74 20 77 | tion..The.scheme.above.doesn't.w |
| 12cec0 | 6f 72 6b 20 77 68 65 6e 20 6f 6e 65 20 6f 66 20 74 68 65 20 72 6f 75 74 65 72 73 20 68 61 73 20 | ork.when.one.of.the.routers.has. |
| 12cee0 | 61 20 64 79 6e 61 6d 69 63 20 65 78 74 65 72 6e 61 6c 20 61 64 64 72 65 73 73 20 74 68 6f 75 67 | a.dynamic.external.address.thoug |
| 12cf00 | 68 2e 20 54 68 65 20 63 6c 61 73 73 69 63 20 77 6f 72 6b 61 72 6f 75 6e 64 20 66 6f 72 20 74 68 | h..The.classic.workaround.for.th |
| 12cf20 | 69 73 20 69 73 20 74 6f 20 73 65 74 75 70 20 61 6e 20 61 64 64 72 65 73 73 20 6f 6e 20 61 20 6c | is.is.to.setup.an.address.on.a.l |
| 12cf40 | 6f 6f 70 62 61 63 6b 20 69 6e 74 65 72 66 61 63 65 20 61 6e 64 20 75 73 65 20 69 74 20 61 73 20 | oopback.interface.and.use.it.as. |
| 12cf60 | 61 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 66 6f 72 20 74 68 65 20 47 52 45 20 74 75 6e | a.source.address.for.the.GRE.tun |
| 12cf80 | 6e 65 6c 2c 20 74 68 65 6e 20 73 65 74 75 70 20 61 6e 20 49 50 73 65 63 20 70 6f 6c 69 63 79 20 | nel,.then.setup.an.IPsec.policy. |
| 12cfa0 | 74 6f 20 6d 61 74 63 68 20 74 68 6f 73 65 20 6c 6f 6f 70 62 61 63 6b 20 61 64 64 72 65 73 73 65 | to.match.those.loopback.addresse |
| 12cfc0 | 73 2e 00 54 68 65 20 73 65 61 72 63 68 20 66 69 6c 74 65 72 20 63 61 6e 20 63 6f 6e 74 61 69 6e | s..The.search.filter.can.contain |
| 12cfe0 | 20 75 70 20 74 6f 20 31 35 20 6f 63 63 75 72 72 65 6e 63 65 73 20 6f 66 20 25 73 20 77 68 69 63 | .up.to.15.occurrences.of.%s.whic |
| 12d000 | 68 20 77 69 6c 6c 20 62 65 20 72 65 70 6c 61 63 65 64 20 62 79 20 74 68 65 20 75 73 65 72 6e 61 | h.will.be.replaced.by.the.userna |
| 12d020 | 6d 65 2c 20 61 73 20 69 6e 20 22 75 69 64 3d 25 73 22 20 66 6f 72 20 3a 72 66 63 3a 60 32 30 33 | me,.as.in."uid=%s".for.:rfc:`203 |
| 12d040 | 37 60 20 64 69 72 65 63 74 6f 72 69 65 73 2e 20 46 6f 72 20 61 20 64 65 74 61 69 6c 65 64 20 64 | 7`.directories..For.a.detailed.d |
| 12d060 | 65 73 63 72 69 70 74 69 6f 6e 20 6f 66 20 4c 44 41 50 20 73 65 61 72 63 68 20 66 69 6c 74 65 72 | escription.of.LDAP.search.filter |
| 12d080 | 20 73 79 6e 74 61 78 20 73 65 65 20 3a 72 66 63 3a 60 32 32 35 34 60 2e 00 54 68 65 20 73 65 63 | .syntax.see.:rfc:`2254`..The.sec |
| 12d0a0 | 6f 6e 64 61 72 79 20 44 48 43 50 20 73 65 72 76 65 72 20 75 73 65 73 20 61 64 64 72 65 73 73 20 | ondary.DHCP.server.uses.address. |
| 12d0c0 | 60 31 39 32 2e 31 36 38 2e 31 38 39 2e 32 35 33 60 00 54 68 65 20 73 65 63 75 72 69 74 79 20 61 | `192.168.189.253`.The.security.a |
| 12d0e0 | 70 70 72 6f 61 63 68 20 69 6e 20 53 4e 4d 50 76 33 20 74 61 72 67 65 74 73 3a 00 54 68 65 20 73 | pproach.in.SNMPv3.targets:.The.s |
| 12d100 | 65 71 75 65 6e 63 65 20 60 60 5e 45 63 3f 60 60 20 74 72 61 6e 73 6c 61 74 65 73 20 74 6f 3a 20 | equence.``^Ec?``.translates.to:. |
| 12d120 | 60 60 43 74 72 6c 2b 45 20 63 20 3f 60 60 2e 20 54 6f 20 71 75 69 74 20 74 68 65 20 73 65 73 73 | ``Ctrl+E.c.?``..To.quit.the.sess |
| 12d140 | 69 6f 6e 20 75 73 65 3a 20 60 60 43 74 72 6c 2b 45 20 63 20 2e 60 60 00 54 68 65 20 73 65 74 75 | ion.use:.``Ctrl+E.c..``.The.setu |
| 12d160 | 70 20 69 73 20 74 68 69 73 3a 20 4c 65 61 66 32 20 2d 20 53 70 69 6e 65 31 20 2d 20 4c 65 61 66 | p.is.this:.Leaf2.-.Spine1.-.Leaf |
| 12d180 | 33 00 54 68 65 20 73 69 7a 65 20 6f 66 20 74 68 65 20 6f 6e 2d 64 69 73 6b 20 50 72 6f 78 79 20 | 3.The.size.of.the.on-disk.Proxy. |
| 12d1a0 | 63 61 63 68 65 20 69 73 20 75 73 65 72 20 63 6f 6e 66 69 67 75 72 61 62 6c 65 2e 20 54 68 65 20 | cache.is.user.configurable..The. |
| 12d1c0 | 50 72 6f 78 69 65 73 20 64 65 66 61 75 6c 74 20 63 61 63 68 65 2d 73 69 7a 65 20 69 73 20 63 6f | Proxies.default.cache-size.is.co |
| 12d1e0 | 6e 66 69 67 75 72 65 64 20 74 6f 20 31 30 30 20 4d 42 2e 00 54 68 65 20 73 70 65 65 64 20 28 62 | nfigured.to.100.MB..The.speed.(b |
| 12d200 | 61 75 64 72 61 74 65 29 20 6f 66 20 74 68 65 20 63 6f 6e 73 6f 6c 65 20 64 65 76 69 63 65 2e 20 | audrate).of.the.console.device.. |
| 12d220 | 53 75 70 70 6f 72 74 65 64 20 76 61 6c 75 65 73 20 61 72 65 3a 00 54 68 65 20 73 74 61 6e 64 61 | Supported.values.are:.The.standa |
| 12d240 | 72 64 20 77 61 73 20 64 65 76 65 6c 6f 70 65 64 20 62 79 20 49 45 45 45 20 38 30 32 2e 31 2c 20 | rd.was.developed.by.IEEE.802.1,. |
| 12d260 | 61 20 77 6f 72 6b 69 6e 67 20 67 72 6f 75 70 20 6f 66 20 74 68 65 20 49 45 45 45 20 38 30 32 20 | a.working.group.of.the.IEEE.802. |
| 12d280 | 73 74 61 6e 64 61 72 64 73 20 63 6f 6d 6d 69 74 74 65 65 2c 20 61 6e 64 20 63 6f 6e 74 69 6e 75 | standards.committee,.and.continu |
| 12d2a0 | 65 73 20 74 6f 20 62 65 20 61 63 74 69 76 65 6c 79 20 72 65 76 69 73 65 64 2e 20 4f 6e 65 20 6f | es.to.be.actively.revised..One.o |
| 12d2c0 | 66 20 74 68 65 20 6e 6f 74 61 62 6c 65 20 72 65 76 69 73 69 6f 6e 73 20 69 73 20 38 30 32 2e 31 | f.the.notable.revisions.is.802.1 |
| 12d2e0 | 51 2d 32 30 31 34 20 77 68 69 63 68 20 69 6e 63 6f 72 70 6f 72 61 74 65 64 20 49 45 45 45 20 38 | Q-2014.which.incorporated.IEEE.8 |
| 12d300 | 30 32 2e 31 61 71 20 28 53 68 6f 72 74 65 73 74 20 50 61 74 68 20 42 72 69 64 67 69 6e 67 29 20 | 02.1aq.(Shortest.Path.Bridging). |
| 12d320 | 61 6e 64 20 6d 75 63 68 20 6f 66 20 74 68 65 20 49 45 45 45 20 38 30 32 2e 31 64 20 73 74 61 6e | and.much.of.the.IEEE.802.1d.stan |
| 12d340 | 64 61 72 64 2e 00 54 68 65 20 73 75 62 73 65 74 20 6f 66 20 70 6f 73 73 69 62 6c 65 20 70 61 72 | dard..The.subset.of.possible.par |
| 12d360 | 61 6d 65 74 65 72 73 20 61 72 65 3a 00 54 68 65 20 73 75 70 70 6f 72 74 65 64 20 76 61 6c 75 65 | ameters.are:.The.supported.value |
| 12d380 | 73 20 66 6f 72 20 61 20 73 70 65 63 69 66 69 63 20 69 6e 74 65 72 66 61 63 65 20 63 61 6e 20 62 | s.for.a.specific.interface.can.b |
| 12d3a0 | 65 20 6f 62 74 61 69 6e 65 64 20 77 69 74 68 3a 20 60 65 74 68 74 6f 6f 6c 20 2d 67 20 3c 69 6e | e.obtained.with:.`ethtool.-g.<in |
| 12d3c0 | 74 65 72 66 61 63 65 3e 60 00 54 68 65 20 73 79 73 2d 6d 61 63 20 61 6e 64 20 6c 6f 63 61 6c 20 | terface>`.The.sys-mac.and.local. |
| 12d3e0 | 64 69 73 63 72 69 6d 69 6e 61 74 6f 72 20 61 72 65 20 75 73 65 64 20 66 6f 72 20 67 65 6e 65 72 | discriminator.are.used.for.gener |
| 12d400 | 61 74 69 6e 67 20 61 20 31 30 2d 62 79 74 65 2c 20 54 79 70 65 2d 33 20 45 74 68 65 72 6e 65 74 | ating.a.10-byte,.Type-3.Ethernet |
| 12d420 | 20 53 65 67 6d 65 6e 74 20 49 44 2e 20 45 53 49 4e 41 4d 45 20 69 73 20 61 20 31 30 2d 62 79 74 | .Segment.ID..ESINAME.is.a.10-byt |
| 12d440 | 65 2c 20 54 79 70 65 2d 30 20 45 74 68 65 72 6e 65 74 20 53 65 67 6d 65 6e 74 20 49 44 20 2d 20 | e,.Type-0.Ethernet.Segment.ID.-. |
| 12d460 | 22 30 30 3a 41 41 3a 42 42 3a 43 43 3a 44 44 3a 45 45 3a 46 46 3a 47 47 3a 48 48 3a 49 49 22 2e | "00:AA:BB:CC:DD:EE:FF:GG:HH:II". |
| 12d480 | 00 54 68 65 20 73 79 73 74 65 6d 20 4c 43 44 20 3a 61 62 62 72 3a 60 4c 43 44 20 28 4c 69 71 75 | .The.system.LCD.:abbr:`LCD.(Liqu |
| 12d4a0 | 69 64 2d 63 72 79 73 74 61 6c 20 64 69 73 70 6c 61 79 29 60 20 6f 70 74 69 6f 6e 20 69 73 20 66 | id-crystal.display)`.option.is.f |
| 12d4c0 | 6f 72 20 75 73 65 72 73 20 72 75 6e 6e 69 6e 67 20 56 79 4f 53 20 6f 6e 20 68 61 72 64 77 61 72 | or.users.running.VyOS.on.hardwar |
| 12d4e0 | 65 20 74 68 61 74 20 66 65 61 74 75 72 65 73 20 61 6e 20 4c 43 44 20 64 69 73 70 6c 61 79 2e 20 | e.that.features.an.LCD.display.. |
| 12d500 | 54 68 69 73 20 69 73 20 74 79 70 69 63 61 6c 6c 79 20 61 20 73 6d 61 6c 6c 20 64 69 73 70 6c 61 | This.is.typically.a.small.displa |
| 12d520 | 79 20 62 75 69 6c 74 20 69 6e 20 61 6e 20 31 39 20 69 6e 63 68 20 72 61 63 6b 2d 6d 6f 75 6e 74 | y.built.in.an.19.inch.rack-mount |
| 12d540 | 61 62 6c 65 20 61 70 70 6c 69 61 6e 63 65 2e 20 54 68 6f 73 65 20 64 69 73 70 6c 61 79 73 20 61 | able.appliance..Those.displays.a |
| 12d560 | 72 65 20 75 73 65 64 20 74 6f 20 73 68 6f 77 20 72 75 6e 74 69 6d 65 20 64 61 74 61 2e 00 54 68 | re.used.to.show.runtime.data..Th |
| 12d580 | 65 20 73 79 73 74 65 6d 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 20 74 6f 20 61 74 74 65 6d 70 | e.system.is.configured.to.attemp |
| 12d5a0 | 74 20 64 6f 6d 61 69 6e 20 63 6f 6d 70 6c 65 74 69 6f 6e 20 69 6e 20 74 68 65 20 66 6f 6c 6c 6f | t.domain.completion.in.the.follo |
| 12d5c0 | 77 69 6e 67 20 6f 72 64 65 72 3a 20 76 79 6f 73 2e 69 6f 20 28 66 69 72 73 74 29 2c 20 76 79 6f | wing.order:.vyos.io.(first),.vyo |
| 12d5e0 | 73 2e 6e 65 74 20 28 73 65 63 6f 6e 64 29 20 61 6e 64 20 76 79 6f 73 2e 6e 65 74 77 6f 72 6b 20 | s.net.(second).and.vyos.network. |
| 12d600 | 28 6c 61 73 74 29 3a 00 54 68 65 20 74 61 62 6c 65 20 63 6f 6e 73 69 73 74 73 20 6f 66 20 66 6f | (last):.The.table.consists.of.fo |
| 12d620 | 6c 6c 6f 77 69 6e 67 20 64 61 74 61 3a 00 54 68 65 20 74 61 73 6b 20 73 63 68 65 64 75 6c 65 72 | llowing.data:.The.task.scheduler |
| 12d640 | 20 61 6c 6c 6f 77 73 20 79 6f 75 20 74 6f 20 65 78 65 63 75 74 65 20 74 61 73 6b 73 20 6f 6e 20 | .allows.you.to.execute.tasks.on. |
| 12d660 | 61 20 67 69 76 65 6e 20 73 63 68 65 64 75 6c 65 2e 20 49 74 20 6d 61 6b 65 73 20 75 73 65 20 6f | a.given.schedule..It.makes.use.o |
| 12d680 | 66 20 55 4e 49 58 20 63 72 6f 6e 5f 2e 00 54 68 65 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 61 64 | f.UNIX.cron_..The.translation.ad |
| 12d6a0 | 64 72 65 73 73 20 6d 75 73 74 20 62 65 20 73 65 74 20 74 6f 20 6f 6e 65 20 6f 66 20 74 68 65 20 | dress.must.be.set.to.one.of.the. |
| 12d6c0 | 61 76 61 69 6c 61 62 6c 65 20 61 64 64 72 65 73 73 65 73 20 6f 6e 20 74 68 65 20 63 6f 6e 66 69 | available.addresses.on.the.confi |
| 12d6e0 | 67 75 72 65 64 20 60 6f 75 74 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 60 20 6f 72 20 69 74 | gured.`outbound-interface`.or.it |
| 12d700 | 20 6d 75 73 74 20 62 65 20 73 65 74 20 74 6f 20 60 6d 61 73 71 75 65 72 61 64 65 60 20 77 68 69 | .must.be.set.to.`masquerade`.whi |
| 12d720 | 63 68 20 77 69 6c 6c 20 75 73 65 20 74 68 65 20 70 72 69 6d 61 72 79 20 49 50 20 61 64 64 72 65 | ch.will.use.the.primary.IP.addre |
| 12d740 | 73 73 20 6f 66 20 74 68 65 20 60 6f 75 74 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 60 20 61 | ss.of.the.`outbound-interface`.a |
| 12d760 | 73 20 69 74 73 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 61 64 64 72 65 73 73 2e 00 54 68 65 20 74 | s.its.translation.address..The.t |
| 12d780 | 75 6e 6e 65 6c 20 77 69 6c 6c 20 75 73 65 20 31 30 2e 32 35 35 2e 31 2e 31 20 66 6f 72 20 74 68 | unnel.will.use.10.255.1.1.for.th |
| 12d7a0 | 65 20 6c 6f 63 61 6c 20 49 50 20 61 6e 64 20 31 30 2e 32 35 35 2e 31 2e 32 20 66 6f 72 20 74 68 | e.local.IP.and.10.255.1.2.for.th |
| 12d7c0 | 65 20 72 65 6d 6f 74 65 2e 00 54 68 65 20 74 79 70 65 20 63 61 6e 20 62 65 20 74 68 65 20 66 6f | e.remote..The.type.can.be.the.fo |
| 12d7e0 | 6c 6c 6f 77 69 6e 67 3a 20 61 73 62 72 2d 73 75 6d 6d 61 72 79 2c 20 65 78 74 65 72 6e 61 6c 2c | llowing:.asbr-summary,.external, |
| 12d800 | 20 6e 65 74 77 6f 72 6b 2c 20 6e 73 73 61 2d 65 78 74 65 72 6e 61 6c 2c 20 6f 70 61 71 75 65 2d | .network,.nssa-external,.opaque- |
| 12d820 | 61 72 65 61 2c 20 6f 70 61 71 75 65 2d 61 73 2c 20 6f 70 61 71 75 65 2d 6c 69 6e 6b 2c 20 72 6f | area,.opaque-as,.opaque-link,.ro |
| 12d840 | 75 74 65 72 2c 20 73 75 6d 6d 61 72 79 2e 00 54 68 65 20 75 6c 74 69 6d 61 74 65 20 67 6f 61 6c | uter,.summary..The.ultimate.goal |
| 12d860 | 20 6f 66 20 63 6c 61 73 73 69 66 79 69 6e 67 20 74 72 61 66 66 69 63 20 69 73 20 74 6f 20 67 69 | .of.classifying.traffic.is.to.gi |
| 12d880 | 76 65 20 65 61 63 68 20 63 6c 61 73 73 20 61 20 64 69 66 66 65 72 65 6e 74 20 74 72 65 61 74 6d | ve.each.class.a.different.treatm |
| 12d8a0 | 65 6e 74 2e 00 54 68 65 20 75 73 65 20 6f 66 20 49 50 6f 45 20 61 64 64 72 65 73 73 65 73 20 74 | ent..The.use.of.IPoE.addresses.t |
| 12d8c0 | 68 65 20 64 69 73 61 64 76 61 6e 74 61 67 65 20 74 68 61 74 20 50 50 50 20 69 73 20 75 6e 73 75 | he.disadvantage.that.PPP.is.unsu |
| 12d8e0 | 69 74 65 64 20 66 6f 72 20 6d 75 6c 74 69 63 61 73 74 20 64 65 6c 69 76 65 72 79 20 74 6f 20 6d | ited.for.multicast.delivery.to.m |
| 12d900 | 75 6c 74 69 70 6c 65 20 75 73 65 72 73 2e 20 54 79 70 69 63 61 6c 6c 79 2c 20 49 50 6f 45 20 75 | ultiple.users..Typically,.IPoE.u |
| 12d920 | 73 65 73 20 44 79 6e 61 6d 69 63 20 48 6f 73 74 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 50 | ses.Dynamic.Host.Configuration.P |
| 12d940 | 72 6f 74 6f 63 6f 6c 20 61 6e 64 20 45 78 74 65 6e 73 69 62 6c 65 20 41 75 74 68 65 6e 74 69 63 | rotocol.and.Extensible.Authentic |
| 12d960 | 61 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c 20 74 6f 20 70 72 6f 76 69 64 65 20 74 68 65 20 73 61 | ation.Protocol.to.provide.the.sa |
| 12d980 | 6d 65 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 20 61 73 20 50 50 50 6f 45 2c 20 62 75 74 20 69 | me.functionality.as.PPPoE,.but.i |
| 12d9a0 | 6e 20 61 20 6c 65 73 73 20 72 6f 62 75 73 74 20 6d 61 6e 6e 65 72 2e 00 54 68 65 20 76 61 6c 75 | n.a.less.robust.manner..The.valu |
| 12d9c0 | 65 20 6f 66 20 74 68 65 20 61 74 74 72 69 62 75 74 65 20 60 60 4e 41 53 2d 50 6f 72 74 2d 49 64 | e.of.the.attribute.``NAS-Port-Id |
| 12d9e0 | 60 60 20 6d 75 73 74 20 62 65 20 6c 65 73 73 20 74 68 61 6e 20 31 36 20 63 68 61 72 61 63 74 65 | ``.must.be.less.than.16.characte |
| 12da00 | 72 73 2c 20 6f 74 68 65 72 77 69 73 65 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 77 6f 6e 27 | rs,.otherwise.the.interface.won' |
| 12da20 | 74 20 62 65 20 72 65 6e 61 6d 65 64 2e 00 54 68 65 20 76 65 6e 64 6f 72 2d 63 6c 61 73 73 2d 69 | t.be.renamed..The.vendor-class-i |
| 12da40 | 64 20 6f 70 74 69 6f 6e 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 72 65 71 75 65 73 74 20 | d.option.can.be.used.to.request. |
| 12da60 | 61 20 73 70 65 63 69 66 69 63 20 63 6c 61 73 73 20 6f 66 20 76 65 6e 64 6f 72 20 6f 70 74 69 6f | a.specific.class.of.vendor.optio |
| 12da80 | 6e 73 20 66 72 6f 6d 20 74 68 65 20 73 65 72 76 65 72 2e 00 54 68 65 20 76 65 74 68 20 64 65 76 | ns.from.the.server..The.veth.dev |
| 12daa0 | 69 63 65 73 20 61 72 65 20 76 69 72 74 75 61 6c 20 45 74 68 65 72 6e 65 74 20 64 65 76 69 63 65 | ices.are.virtual.Ethernet.device |
| 12dac0 | 73 2e 20 54 68 65 79 20 63 61 6e 20 61 63 74 20 61 73 20 74 75 6e 6e 65 6c 73 20 62 65 74 77 65 | s..They.can.act.as.tunnels.betwe |
| 12dae0 | 65 6e 20 6e 65 74 77 6f 72 6b 20 6e 61 6d 65 73 70 61 63 65 73 20 74 6f 20 63 72 65 61 74 65 20 | en.network.namespaces.to.create. |
| 12db00 | 61 20 62 72 69 64 67 65 20 74 6f 20 61 20 70 68 79 73 69 63 61 6c 20 6e 65 74 77 6f 72 6b 20 64 | a.bridge.to.a.physical.network.d |
| 12db20 | 65 76 69 63 65 20 69 6e 20 61 6e 6f 74 68 65 72 20 6e 61 6d 65 73 70 61 63 65 20 6f 72 20 56 52 | evice.in.another.namespace.or.VR |
| 12db40 | 46 2c 20 62 75 74 20 63 61 6e 20 61 6c 73 6f 20 62 65 20 75 73 65 64 20 61 73 20 73 74 61 6e 64 | F,.but.can.also.be.used.as.stand |
| 12db60 | 61 6c 6f 6e 65 20 6e 65 74 77 6f 72 6b 20 64 65 76 69 63 65 73 2e 00 54 68 65 20 77 65 6c 6c 20 | alone.network.devices..The.well. |
| 12db80 | 6b 6e 6f 77 6e 20 4e 41 54 36 34 20 70 72 65 66 69 78 20 69 73 20 60 60 36 34 3a 66 66 39 62 3a | known.NAT64.prefix.is.``64:ff9b: |
| 12dba0 | 3a 2f 39 36 60 60 00 54 68 65 20 77 69 6e 64 6f 77 20 73 69 7a 65 20 6d 75 73 74 20 62 65 20 62 | :/96``.The.window.size.must.be.b |
| 12dbc0 | 65 74 77 65 65 6e 20 31 20 61 6e 64 20 32 31 2e 00 54 68 65 20 77 69 72 65 6c 65 73 73 20 63 6c | etween.1.and.21..The.wireless.cl |
| 12dbe0 | 69 65 6e 74 20 28 73 75 70 70 6c 69 63 61 6e 74 29 20 61 75 74 68 65 6e 74 69 63 61 74 65 73 20 | ient.(supplicant).authenticates. |
| 12dc00 | 61 67 61 69 6e 73 74 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 28 61 75 74 68 65 | against.the.RADIUS.server.(authe |
| 12dc20 | 6e 74 69 63 61 74 69 6f 6e 20 73 65 72 76 65 72 29 20 75 73 69 6e 67 20 61 6e 20 3a 61 62 62 72 | ntication.server).using.an.:abbr |
| 12dc40 | 3a 60 45 41 50 20 28 45 78 74 65 6e 73 69 62 6c 65 20 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e | :`EAP.(Extensible.Authentication |
| 12dc60 | 20 50 72 6f 74 6f 63 6f 6c 29 60 20 20 6d 65 74 68 6f 64 20 63 6f 6e 66 69 67 75 72 65 64 20 6f | .Protocol)`..method.configured.o |
| 12dc80 | 6e 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 2e 20 54 68 65 20 57 41 50 20 28 61 6c | n.the.RADIUS.server..The.WAP.(al |
| 12dca0 | 73 6f 20 72 65 66 65 72 72 65 64 20 74 6f 20 61 73 20 61 75 74 68 65 6e 74 69 63 61 74 6f 72 29 | so.referred.to.as.authenticator) |
| 12dcc0 | 20 72 6f 6c 65 20 69 73 20 74 6f 20 73 65 6e 64 20 61 6c 6c 20 61 75 74 68 65 6e 74 69 63 61 74 | .role.is.to.send.all.authenticat |
| 12dce0 | 69 6f 6e 20 6d 65 73 73 61 67 65 73 20 62 65 74 77 65 65 6e 20 74 68 65 20 73 75 70 70 6c 69 63 | ion.messages.between.the.supplic |
| 12dd00 | 61 6e 74 20 61 6e 64 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 61 75 74 68 65 6e 74 69 63 | ant.and.the.configured.authentic |
| 12dd20 | 61 74 69 6f 6e 20 73 65 72 76 65 72 2c 20 74 68 75 73 20 74 68 65 20 52 41 44 49 55 53 20 73 65 | ation.server,.thus.the.RADIUS.se |
| 12dd40 | 72 76 65 72 20 69 73 20 72 65 73 70 6f 6e 73 69 62 6c 65 20 66 6f 72 20 61 75 74 68 65 6e 74 69 | rver.is.responsible.for.authenti |
| 12dd60 | 63 61 74 69 6e 67 20 74 68 65 20 75 73 65 72 73 2e 00 54 68 65 20 77 69 72 65 6c 65 73 73 20 63 | cating.the.users..The.wireless.c |
| 12dd80 | 6c 69 65 6e 74 20 28 73 75 70 70 6c 69 63 61 6e 74 29 20 61 75 74 68 65 6e 74 69 63 61 74 65 73 | lient.(supplicant).authenticates |
| 12dda0 | 20 61 67 61 69 6e 73 74 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 28 61 75 74 68 | .against.the.RADIUS.server.(auth |
| 12ddc0 | 65 6e 74 69 63 61 74 69 6f 6e 20 73 65 72 76 65 72 29 20 75 73 69 6e 67 20 61 6e 20 3a 61 62 62 | entication.server).using.an.:abb |
| 12dde0 | 72 3a 60 45 41 50 20 28 45 78 74 65 6e 73 69 62 6c 65 20 41 75 74 68 65 6e 74 69 63 61 74 69 6f | r:`EAP.(Extensible.Authenticatio |
| 12de00 | 6e 20 50 72 6f 74 6f 63 6f 6c 29 60 20 6d 65 74 68 6f 64 20 63 6f 6e 66 69 67 75 72 65 64 20 6f | n.Protocol)`.method.configured.o |
| 12de20 | 6e 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 2e 20 54 68 65 20 57 41 50 20 28 61 6c | n.the.RADIUS.server..The.WAP.(al |
| 12de40 | 73 6f 20 72 65 66 65 72 72 65 64 20 74 6f 20 61 73 20 61 75 74 68 65 6e 74 69 63 61 74 6f 72 29 | so.referred.to.as.authenticator) |
| 12de60 | 20 72 6f 6c 65 20 69 73 20 74 6f 20 73 65 6e 64 20 61 6c 6c 20 61 75 74 68 65 6e 74 69 63 61 74 | .role.is.to.send.all.authenticat |
| 12de80 | 69 6f 6e 20 6d 65 73 73 61 67 65 73 20 62 65 74 77 65 65 6e 20 74 68 65 20 73 75 70 70 6c 69 63 | ion.messages.between.the.supplic |
| 12dea0 | 61 6e 74 20 61 6e 64 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 61 75 74 68 65 6e 74 69 63 | ant.and.the.configured.authentic |
| 12dec0 | 61 74 69 6f 6e 20 73 65 72 76 65 72 2c 20 74 68 75 73 20 74 68 65 20 52 41 44 49 55 53 20 73 65 | ation.server,.thus.the.RADIUS.se |
| 12dee0 | 72 76 65 72 20 69 73 20 72 65 73 70 6f 6e 73 69 62 6c 65 20 66 6f 72 20 61 75 74 68 65 6e 74 69 | rver.is.responsible.for.authenti |
| 12df00 | 63 61 74 69 6e 67 20 74 68 65 20 75 73 65 72 73 2e 00 54 68 65 20 77 72 69 74 69 6e 67 20 6f 66 | cating.the.users..The.writing.of |
| 12df20 | 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 6f 20 74 68 65 20 73 65 63 6f 6e 64 | .the.configuration.to.the.second |
| 12df40 | 61 72 79 20 72 6f 75 74 65 72 20 69 73 20 70 65 72 66 6f 72 6d 65 64 20 74 68 72 6f 75 67 68 20 | ary.router.is.performed.through. |
| 12df60 | 74 68 65 20 56 79 4f 53 20 48 54 54 50 20 41 50 49 2e 20 54 68 65 20 75 73 65 72 20 63 61 6e 20 | the.VyOS.HTTP.API..The.user.can. |
| 12df80 | 73 70 65 63 69 66 79 20 77 68 69 63 68 20 70 6f 72 74 69 6f 6e 28 73 29 20 6f 66 20 74 68 65 20 | specify.which.portion(s).of.the. |
| 12dfa0 | 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 77 69 6c 6c 20 62 65 20 73 79 6e 63 68 72 6f 6e 69 7a | configuration.will.be.synchroniz |
| 12dfc0 | 65 64 20 61 6e 64 20 74 68 65 20 6d 6f 64 65 20 74 6f 20 75 73 65 20 2d 20 77 68 65 74 68 65 72 | ed.and.the.mode.to.use.-.whether |
| 12dfe0 | 20 74 6f 20 72 65 70 6c 61 63 65 20 6f 72 20 61 64 64 2e 00 54 68 65 6e 20 61 20 63 6f 72 72 65 | .to.replace.or.add..Then.a.corre |
| 12e000 | 73 70 6f 6e 64 69 6e 67 20 53 4e 41 54 20 72 75 6c 65 20 69 73 20 63 72 65 61 74 65 64 20 74 6f | sponding.SNAT.rule.is.created.to |
| 12e020 | 20 4e 41 54 20 6f 75 74 67 6f 69 6e 67 20 74 72 61 66 66 69 63 20 66 6f 72 20 74 68 65 20 69 6e | .NAT.outgoing.traffic.for.the.in |
| 12e040 | 74 65 72 6e 61 6c 20 49 50 20 74 6f 20 61 20 72 65 73 65 72 76 65 64 20 65 78 74 65 72 6e 61 6c | ternal.IP.to.a.reserved.external |
| 12e060 | 20 49 50 2e 20 54 68 69 73 20 64 65 64 69 63 61 74 65 73 20 61 6e 20 65 78 74 65 72 6e 61 6c 20 | .IP..This.dedicates.an.external. |
| 12e080 | 49 50 20 61 64 64 72 65 73 73 20 74 6f 20 61 6e 20 69 6e 74 65 72 6e 61 6c 20 49 50 20 61 64 64 | IP.address.to.an.internal.IP.add |
| 12e0a0 | 72 65 73 73 20 61 6e 64 20 69 73 20 75 73 65 66 75 6c 20 66 6f 72 20 70 72 6f 74 6f 63 6f 6c 73 | ress.and.is.useful.for.protocols |
| 12e0c0 | 20 77 68 69 63 68 20 64 6f 6e 27 74 20 68 61 76 65 20 74 68 65 20 6e 6f 74 69 6f 6e 20 6f 66 20 | .which.don't.have.the.notion.of. |
| 12e0e0 | 70 6f 72 74 73 2c 20 73 75 63 68 20 61 73 20 47 52 45 2e 00 54 68 65 6e 20 77 65 20 6e 65 65 64 | ports,.such.as.GRE..Then.we.need |
| 12e100 | 20 74 6f 20 67 65 6e 65 72 61 74 65 2c 20 61 64 64 20 61 6e 64 20 73 70 65 63 69 66 79 20 74 68 | .to.generate,.add.and.specify.th |
| 12e120 | 65 20 6e 61 6d 65 73 20 6f 66 20 74 68 65 20 63 72 79 70 74 6f 67 72 61 70 68 69 63 20 6d 61 74 | e.names.of.the.cryptographic.mat |
| 12e140 | 65 72 69 61 6c 73 2e 20 45 61 63 68 20 6f 66 20 74 68 65 20 69 6e 73 74 61 6c 6c 20 63 6f 6d 6d | erials..Each.of.the.install.comm |
| 12e160 | 61 6e 64 20 73 68 6f 75 6c 64 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 74 68 65 20 63 6f 6e | and.should.be.applied.to.the.con |
| 12e180 | 66 69 67 75 72 61 74 69 6f 6e 20 61 6e 64 20 63 6f 6d 6d 69 74 65 64 20 62 65 66 6f 72 65 20 75 | figuration.and.commited.before.u |
| 12e1a0 | 73 69 6e 67 20 75 6e 64 65 72 20 74 68 65 20 6f 70 65 6e 76 70 6e 20 69 6e 74 65 72 66 61 63 65 | sing.under.the.openvpn.interface |
| 12e1c0 | 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 54 68 65 6e 20 77 65 20 6e 65 65 64 20 74 6f 20 | .configuration..Then.we.need.to. |
| 12e1e0 | 67 65 6e 65 72 61 74 65 2c 20 61 64 64 20 61 6e 64 20 73 70 65 63 69 66 79 20 74 68 65 20 6e 61 | generate,.add.and.specify.the.na |
| 12e200 | 6d 65 73 20 6f 66 20 74 68 65 20 63 72 79 70 74 6f 67 72 61 70 68 69 63 20 6d 61 74 65 72 69 61 | mes.of.the.cryptographic.materia |
| 12e220 | 6c 73 2e 20 45 61 63 68 20 6f 66 20 74 68 65 20 69 6e 73 74 61 6c 6c 20 63 6f 6d 6d 61 6e 64 73 | ls..Each.of.the.install.commands |
| 12e240 | 20 73 68 6f 75 6c 64 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 74 68 65 20 63 6f 6e 66 69 67 | .should.be.applied.to.the.config |
| 12e260 | 75 72 61 74 69 6f 6e 20 61 6e 64 20 63 6f 6d 6d 69 74 65 64 20 62 65 66 6f 72 65 20 75 73 69 6e | uration.and.commited.before.usin |
| 12e280 | 67 20 75 6e 64 65 72 20 74 68 65 20 6f 70 65 6e 76 70 6e 20 69 6e 74 65 72 66 61 63 65 20 63 6f | g.under.the.openvpn.interface.co |
| 12e2a0 | 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 54 68 65 6e 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 69 6e | nfiguration..Then.you.need.to.in |
| 12e2c0 | 73 74 61 6c 6c 20 74 68 65 20 6b 65 79 20 6f 6e 20 74 68 65 20 72 65 6d 6f 74 65 20 72 6f 75 74 | stall.the.key.on.the.remote.rout |
| 12e2e0 | 65 72 3a 00 54 68 65 6e 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 73 65 74 20 74 68 65 20 6b 65 79 | er:.Then.you.need.to.set.the.key |
| 12e300 | 20 69 6e 20 79 6f 75 72 20 4f 70 65 6e 56 50 4e 20 69 6e 74 65 72 66 61 63 65 20 73 65 74 74 69 | .in.your.OpenVPN.interface.setti |
| 12e320 | 6e 67 73 3a 00 54 68 65 6e 2c 20 46 61 73 74 4e 65 74 4d 6f 6e 20 63 6f 6e 66 69 67 75 72 61 74 | ngs:.Then,.FastNetMon.configurat |
| 12e340 | 69 6f 6e 3a 00 54 68 65 72 65 20 61 72 65 20 33 20 64 65 66 61 75 6c 74 20 4e 54 50 20 73 65 72 | ion:.There.are.3.default.NTP.ser |
| 12e360 | 76 65 72 20 73 65 74 2e 20 59 6f 75 20 61 72 65 20 61 62 6c 65 20 74 6f 20 63 68 61 6e 67 65 20 | ver.set..You.are.able.to.change. |
| 12e380 | 74 68 65 6d 2e 00 54 68 65 72 65 20 61 72 65 20 61 20 6c 6f 74 20 6f 66 20 6d 61 74 63 68 69 6e | them..There.are.a.lot.of.matchin |
| 12e3a0 | 67 20 63 72 69 74 65 72 69 61 20 61 67 61 69 6e 73 74 20 77 68 69 63 68 20 74 68 65 20 70 61 63 | g.criteria.against.which.the.pac |
| 12e3c0 | 6b 61 67 65 20 63 61 6e 20 62 65 20 74 65 73 74 65 64 2e 00 54 68 65 72 65 20 61 72 65 20 61 20 | kage.can.be.tested..There.are.a. |
| 12e3e0 | 6c 6f 74 20 6f 66 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 20 61 67 61 69 6e 73 74 | lot.of.matching.criteria.against |
| 12e400 | 20 77 68 69 63 68 20 74 68 65 20 70 61 63 6b 65 74 20 63 61 6e 20 62 65 20 74 65 73 74 65 64 2e | .which.the.packet.can.be.tested. |
| 12e420 | 00 54 68 65 72 65 20 61 72 65 20 61 20 6c 6f 74 20 6f 66 20 6d 61 74 63 68 69 6e 67 20 63 72 69 | .There.are.a.lot.of.matching.cri |
| 12e440 | 74 65 72 69 61 20 61 67 61 69 6e 73 74 20 77 68 69 63 68 20 74 68 65 20 70 61 63 6b 65 74 20 63 | teria.against.which.the.packet.c |
| 12e460 | 61 6e 20 62 65 20 74 65 73 74 65 64 2e 20 50 6c 65 61 73 65 20 72 65 66 65 72 20 74 6f 20 3a 64 | an.be.tested..Please.refer.to.:d |
| 12e480 | 6f 63 3a 60 49 50 76 34 3c 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 66 69 72 65 77 61 6c 6c | oc:`IPv4</configuration/firewall |
| 12e4a0 | 2f 69 70 76 34 3e 60 20 61 6e 64 20 3a 64 6f 63 3a 60 49 50 76 36 3c 2f 63 6f 6e 66 69 67 75 72 | /ipv4>`.and.:doc:`IPv6</configur |
| 12e4c0 | 61 74 69 6f 6e 2f 66 69 72 65 77 61 6c 6c 2f 69 70 76 36 3e 60 20 6d 61 74 63 68 69 6e 67 20 63 | ation/firewall/ipv6>`.matching.c |
| 12e4e0 | 72 69 74 65 72 69 61 20 66 6f 72 20 6d 6f 72 65 20 64 65 74 61 69 6c 73 2e 00 54 68 65 72 65 20 | riteria.for.more.details..There. |
| 12e500 | 61 72 65 20 61 20 6c 6f 74 20 6f 66 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 20 6f | are.a.lot.of.matching.criteria.o |
| 12e520 | 70 74 69 6f 6e 73 20 61 76 61 69 6c 61 62 6c 65 2c 20 62 6f 74 68 20 66 6f 72 20 60 60 70 6f 6c | ptions.available,.both.for.``pol |
| 12e540 | 69 63 79 20 72 6f 75 74 65 60 60 20 61 6e 64 20 60 60 70 6f 6c 69 63 79 20 72 6f 75 74 65 36 60 | icy.route``.and.``policy.route6` |
| 12e560 | 60 2e 20 54 68 65 73 65 20 6f 70 74 69 6f 6e 73 20 61 72 65 20 6c 69 73 74 65 64 20 69 6e 20 74 | `..These.options.are.listed.in.t |
| 12e580 | 68 69 73 20 73 65 63 74 69 6f 6e 2e 00 54 68 65 72 65 20 61 72 65 20 64 69 66 66 65 72 65 6e 74 | his.section..There.are.different |
| 12e5a0 | 20 70 61 72 61 6d 65 74 65 72 73 20 66 6f 72 20 67 65 74 74 69 6e 67 20 70 72 65 66 69 78 2d 6c | .parameters.for.getting.prefix-l |
| 12e5c0 | 69 73 74 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 3a 00 54 68 65 72 65 20 61 72 65 20 6c 69 6d 69 74 | ist.information:.There.are.limit |
| 12e5e0 | 73 20 6f 6e 20 77 68 69 63 68 20 63 68 61 6e 6e 65 6c 73 20 63 61 6e 20 62 65 20 75 73 65 64 20 | s.on.which.channels.can.be.used. |
| 12e600 | 77 69 74 68 20 48 54 34 30 2d 20 61 6e 64 20 48 54 34 30 2b 2e 20 46 6f 6c 6c 6f 77 69 6e 67 20 | with.HT40-.and.HT40+..Following. |
| 12e620 | 74 61 62 6c 65 20 73 68 6f 77 73 20 74 68 65 20 63 68 61 6e 6e 65 6c 73 20 74 68 61 74 20 6d 61 | table.shows.the.channels.that.ma |
| 12e640 | 79 20 62 65 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 48 54 34 30 2d 20 61 6e 64 20 48 54 34 | y.be.available.for.HT40-.and.HT4 |
| 12e660 | 30 2b 20 75 73 65 20 70 65 72 20 49 45 45 45 20 38 30 32 2e 31 31 6e 20 41 6e 6e 65 78 20 4a 3a | 0+.use.per.IEEE.802.11n.Annex.J: |
| 12e680 | 00 54 68 65 72 65 20 61 72 65 20 6d 61 6e 79 20 70 61 72 61 6d 65 74 65 72 73 20 79 6f 75 20 77 | .There.are.many.parameters.you.w |
| 12e6a0 | 69 6c 6c 20 62 65 20 61 62 6c 65 20 74 6f 20 75 73 65 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 6d | ill.be.able.to.use.in.order.to.m |
| 12e6c0 | 61 74 63 68 20 74 68 65 20 74 72 61 66 66 69 63 20 79 6f 75 20 77 61 6e 74 20 66 6f 72 20 61 20 | atch.the.traffic.you.want.for.a. |
| 12e6e0 | 63 6c 61 73 73 3a 00 54 68 65 72 65 20 61 72 65 20 6d 75 6c 74 69 70 6c 65 20 76 65 72 73 69 6f | class:.There.are.multiple.versio |
| 12e700 | 6e 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 74 68 65 20 4e 65 74 46 6c 6f 77 20 64 61 74 | ns.available.for.the.NetFlow.dat |
| 12e720 | 61 2e 20 54 68 65 20 60 3c 76 65 72 73 69 6f 6e 3e 60 20 75 73 65 64 20 69 6e 20 74 68 65 20 65 | a..The.`<version>`.used.in.the.e |
| 12e740 | 78 70 6f 72 74 65 64 20 66 6c 6f 77 20 64 61 74 61 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 | xported.flow.data.can.be.configu |
| 12e760 | 72 65 64 20 68 65 72 65 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 76 65 72 73 69 6f 6e 73 | red.here..The.following.versions |
| 12e780 | 20 61 72 65 20 73 75 70 70 6f 72 74 65 64 3a 00 54 68 65 72 65 20 61 72 65 20 72 61 74 65 2d 6c | .are.supported:.There.are.rate-l |
| 12e7a0 | 69 6d 69 74 65 64 20 61 6e 64 20 6e 6f 6e 20 72 61 74 65 2d 6c 69 6d 69 74 65 64 20 75 73 65 72 | imited.and.non.rate-limited.user |
| 12e7c0 | 73 20 28 4d 41 43 73 29 00 54 68 65 72 65 20 61 72 65 20 73 6f 6d 65 20 73 63 65 6e 61 72 69 6f | s.(MACs).There.are.some.scenario |
| 12e7e0 | 73 20 77 68 65 72 65 20 73 65 72 69 61 6c 20 63 6f 6e 73 6f 6c 65 73 20 61 72 65 20 75 73 65 66 | s.where.serial.consoles.are.usef |
| 12e800 | 75 6c 2e 20 53 79 73 74 65 6d 20 61 64 6d 69 6e 69 73 74 72 61 74 69 6f 6e 20 6f 66 20 72 65 6d | ul..System.administration.of.rem |
| 12e820 | 6f 74 65 20 63 6f 6d 70 75 74 65 72 73 20 69 73 20 75 73 75 61 6c 6c 79 20 64 6f 6e 65 20 75 73 | ote.computers.is.usually.done.us |
| 12e840 | 69 6e 67 20 3a 72 65 66 3a 60 73 73 68 60 2c 20 62 75 74 20 74 68 65 72 65 20 61 72 65 20 74 69 | ing.:ref:`ssh`,.but.there.are.ti |
| 12e860 | 6d 65 73 20 77 68 65 6e 20 61 63 63 65 73 73 20 74 6f 20 74 68 65 20 63 6f 6e 73 6f 6c 65 20 69 | mes.when.access.to.the.console.i |
| 12e880 | 73 20 74 68 65 20 6f 6e 6c 79 20 77 61 79 20 74 6f 20 64 69 61 67 6e 6f 73 65 20 61 6e 64 20 63 | s.the.only.way.to.diagnose.and.c |
| 12e8a0 | 6f 72 72 65 63 74 20 73 6f 66 74 77 61 72 65 20 66 61 69 6c 75 72 65 73 2e 20 4d 61 6a 6f 72 20 | orrect.software.failures..Major. |
| 12e8c0 | 75 70 67 72 61 64 65 73 20 74 6f 20 74 68 65 20 69 6e 73 74 61 6c 6c 65 64 20 64 69 73 74 72 69 | upgrades.to.the.installed.distri |
| 12e8e0 | 62 75 74 69 6f 6e 20 6d 61 79 20 61 6c 73 6f 20 72 65 71 75 69 72 65 20 63 6f 6e 73 6f 6c 65 20 | bution.may.also.require.console. |
| 12e900 | 61 63 63 65 73 73 2e 00 54 68 65 72 65 20 61 72 65 20 74 68 72 65 65 20 6d 6f 64 65 73 20 6f 66 | access..There.are.three.modes.of |
| 12e920 | 20 6f 70 65 72 61 74 69 6f 6e 20 66 6f 72 20 61 20 77 69 72 65 6c 65 73 73 20 69 6e 74 65 72 66 | .operation.for.a.wireless.interf |
| 12e940 | 61 63 65 3a 00 54 68 65 72 65 20 61 72 65 20 74 77 6f 20 74 79 70 65 73 20 6f 66 20 4e 65 74 77 | ace:.There.are.two.types.of.Netw |
| 12e960 | 6f 72 6b 20 41 64 6d 69 6e 73 20 77 68 6f 20 64 65 61 6c 20 77 69 74 68 20 42 47 50 2c 20 74 68 | ork.Admins.who.deal.with.BGP,.th |
| 12e980 | 6f 73 65 20 77 68 6f 20 68 61 76 65 20 63 72 65 61 74 65 64 20 61 6e 20 69 6e 74 65 72 6e 61 74 | ose.who.have.created.an.internat |
| 12e9a0 | 69 6f 6e 61 6c 20 69 6e 63 69 64 65 6e 74 20 61 6e 64 2f 6f 72 20 6f 75 74 61 67 65 2c 20 61 6e | ional.incident.and/or.outage,.an |
| 12e9c0 | 64 20 74 68 6f 73 65 20 77 68 6f 20 61 72 65 20 6c 79 69 6e 67 00 54 68 65 72 65 20 61 72 65 20 | d.those.who.are.lying.There.are. |
| 12e9e0 | 74 77 6f 20 77 61 79 73 20 74 68 61 74 20 68 65 6c 70 20 75 73 20 74 6f 20 6d 69 74 69 67 61 74 | two.ways.that.help.us.to.mitigat |
| 12ea00 | 65 20 74 68 65 20 42 47 50 73 20 66 75 6c 6c 2d 6d 65 73 68 20 72 65 71 75 69 72 65 6d 65 6e 74 | e.the.BGPs.full-mesh.requirement |
| 12ea20 | 20 69 6e 20 61 20 6e 65 74 77 6f 72 6b 3a 00 54 68 65 72 65 20 63 61 6e 20 6f 6e 6c 79 20 62 65 | .in.a.network:.There.can.only.be |
| 12ea40 | 20 6f 6e 65 20 6c 6f 6f 70 62 61 63 6b 20 60 60 6c 6f 60 60 20 69 6e 74 65 72 66 61 63 65 20 6f | .one.loopback.``lo``.interface.o |
| 12ea60 | 6e 20 74 68 65 20 73 79 73 74 65 6d 2e 20 49 66 20 79 6f 75 20 6e 65 65 64 20 6d 75 6c 74 69 70 | n.the.system..If.you.need.multip |
| 12ea80 | 6c 65 20 69 6e 74 65 72 66 61 63 65 73 2c 20 70 6c 65 61 73 65 20 75 73 65 20 74 68 65 20 3a 72 | le.interfaces,.please.use.the.:r |
| 12eaa0 | 65 66 3a 60 64 75 6d 6d 79 2d 69 6e 74 65 72 66 61 63 65 60 20 69 6e 74 65 72 66 61 63 65 20 74 | ef:`dummy-interface`.interface.t |
| 12eac0 | 79 70 65 2e 00 54 68 65 72 65 20 63 6f 75 6c 64 20 62 65 20 61 20 77 69 64 65 20 72 61 6e 67 65 | ype..There.could.be.a.wide.range |
| 12eae0 | 20 6f 66 20 72 6f 75 74 69 6e 67 20 70 6f 6c 69 63 69 65 73 2e 20 53 6f 6d 65 20 65 78 61 6d 70 | .of.routing.policies..Some.examp |
| 12eb00 | 6c 65 73 20 61 72 65 20 6c 69 73 74 65 64 20 62 65 6c 6f 77 3a 00 54 68 65 72 65 20 69 73 20 61 | les.are.listed.below:.There.is.a |
| 12eb20 | 20 76 65 72 79 20 6e 69 63 65 20 70 69 63 74 75 72 65 2f 65 78 70 6c 61 6e 61 74 69 6f 6e 20 69 | .very.nice.picture/explanation.i |
| 12eb40 | 6e 20 74 68 65 20 56 79 61 74 74 61 20 64 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 77 68 69 63 68 | n.the.Vyatta.documentation.which |
| 12eb60 | 20 73 68 6f 75 6c 64 20 62 65 20 72 65 77 72 69 74 74 65 6e 20 68 65 72 65 2e 00 54 68 65 72 65 | .should.be.rewritten.here..There |
| 12eb80 | 20 69 73 20 61 6c 73 6f 20 61 20 47 52 45 20 6f 76 65 72 20 49 50 76 36 20 65 6e 63 61 70 73 75 | .is.also.a.GRE.over.IPv6.encapsu |
| 12eba0 | 6c 61 74 69 6f 6e 20 61 76 61 69 6c 61 62 6c 65 2c 20 69 74 20 69 73 20 63 61 6c 6c 65 64 3a 20 | lation.available,.it.is.called:. |
| 12ebc0 | 60 60 69 70 36 67 72 65 60 60 2e 00 54 68 65 72 65 20 69 73 20 61 6e 20 65 6e 74 69 72 65 20 63 | ``ip6gre``..There.is.an.entire.c |
| 12ebe0 | 68 61 70 74 65 72 20 61 62 6f 75 74 20 68 6f 77 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 | hapter.about.how.to.configure.a. |
| 12ec00 | 3a 72 65 66 3a 60 76 72 66 60 2c 20 70 6c 65 61 73 65 20 63 68 65 63 6b 20 74 68 69 73 20 66 6f | :ref:`vrf`,.please.check.this.fo |
| 12ec20 | 72 20 61 64 64 69 74 69 6f 6e 61 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2e 00 54 68 65 72 65 27 | r.additional.information..There' |
| 12ec40 | 73 20 61 20 76 61 72 69 65 74 79 20 6f 66 20 63 6c 69 65 6e 74 20 47 55 49 20 66 72 6f 6e 74 65 | s.a.variety.of.client.GUI.fronte |
| 12ec60 | 6e 64 73 20 66 6f 72 20 61 6e 79 20 70 6c 61 74 66 6f 72 6d 00 54 68 65 73 65 20 61 72 65 20 74 | nds.for.any.platform.These.are.t |
| 12ec80 | 68 65 20 63 6f 6d 6d 61 6e 64 73 20 66 6f 72 20 61 20 62 61 73 69 63 20 73 65 74 75 70 2e 00 54 | he.commands.for.a.basic.setup..T |
| 12eca0 | 68 65 73 65 20 63 6f 6d 6d 61 6e 64 73 20 61 6c 6c 6f 77 20 74 68 65 20 56 4c 41 4e 31 30 20 61 | hese.commands.allow.the.VLAN10.a |
| 12ecc0 | 6e 64 20 56 4c 41 4e 31 31 20 68 6f 73 74 73 20 74 6f 20 63 6f 6d 6d 75 6e 69 63 61 74 65 20 77 | nd.VLAN11.hosts.to.communicate.w |
| 12ece0 | 69 74 68 20 65 61 63 68 20 6f 74 68 65 72 20 75 73 69 6e 67 20 74 68 65 20 6d 61 69 6e 20 72 6f | ith.each.other.using.the.main.ro |
| 12ed00 | 75 74 69 6e 67 20 74 61 62 6c 65 2e 00 54 68 65 73 65 20 63 6f 6d 6d 61 6e 64 73 20 63 72 65 61 | uting.table..These.commands.crea |
| 12ed20 | 74 65 20 61 20 66 6c 65 78 69 62 6c 65 20 69 6e 74 65 72 66 61 63 65 20 66 6f 72 20 63 6f 6e 66 | te.a.flexible.interface.for.conf |
| 12ed40 | 69 67 75 72 69 6e 67 20 74 68 65 20 53 75 72 69 63 61 74 61 20 73 65 72 76 69 63 65 2c 20 61 6c | iguring.the.Suricata.service,.al |
| 12ed60 | 6c 6f 77 69 6e 67 20 75 73 65 72 73 20 74 6f 20 73 70 65 63 69 66 79 20 61 64 64 72 65 73 73 65 | lowing.users.to.specify.addresse |
| 12ed80 | 73 2c 20 70 6f 72 74 73 2c 20 61 6e 64 20 6c 6f 67 67 69 6e 67 20 70 61 72 61 6d 65 74 65 72 73 | s,.ports,.and.logging.parameters |
| 12eda0 | 2e 00 54 68 65 73 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 73 20 6e 6f 74 20 6d 61 6e | ..These.configuration.is.not.man |
| 12edc0 | 64 61 74 6f 72 79 20 61 6e 64 20 69 6e 20 6d 6f 73 74 20 63 61 73 65 73 20 74 68 65 72 65 27 73 | datory.and.in.most.cases.there's |
| 12ede0 | 20 6e 6f 20 6e 65 65 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 69 74 2e 20 42 75 74 20 69 66 | .no.need.to.configure.it..But.if |
| 12ee00 | 20 6e 65 63 65 73 73 61 72 79 2c 20 47 72 61 74 75 69 74 6f 75 73 20 41 52 50 20 63 61 6e 20 62 | .necessary,.Gratuitous.ARP.can.b |
| 12ee20 | 65 20 63 6f 6e 66 69 67 75 72 65 64 20 69 6e 20 60 60 67 6c 6f 62 61 6c 2d 70 61 72 61 6d 65 74 | e.configured.in.``global-paramet |
| 12ee40 | 65 72 73 60 60 20 61 6e 64 2f 6f 72 20 69 6e 20 60 60 67 72 6f 75 70 60 60 20 73 65 63 74 69 6f | ers``.and/or.in.``group``.sectio |
| 12ee60 | 6e 2e 00 54 68 65 73 65 20 70 61 72 61 6d 65 74 65 72 73 20 61 72 65 20 70 61 73 73 65 64 20 61 | n..These.parameters.are.passed.a |
| 12ee80 | 73 2d 69 73 20 74 6f 20 69 73 63 2d 64 68 63 70 27 73 20 64 68 63 70 64 2e 63 6f 6e 66 20 75 6e | s-is.to.isc-dhcp's.dhcpd.conf.un |
| 12eea0 | 64 65 72 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6e 6f 64 65 20 74 68 65 79 20 | der.the.configuration.node.they. |
| 12eec0 | 61 72 65 20 64 65 66 69 6e 65 64 20 69 6e 2e 20 54 68 65 79 20 61 72 65 20 6e 6f 74 20 76 61 6c | are.defined.in..They.are.not.val |
| 12eee0 | 69 64 61 74 65 64 20 73 6f 20 61 6e 20 65 72 72 6f 72 20 69 6e 20 74 68 65 20 72 61 77 20 70 61 | idated.so.an.error.in.the.raw.pa |
| 12ef00 | 72 61 6d 65 74 65 72 73 20 77 6f 6e 27 74 20 62 65 20 63 61 75 67 68 74 20 62 79 20 76 79 6f 73 | rameters.won't.be.caught.by.vyos |
| 12ef20 | 27 73 20 73 63 72 69 70 74 73 20 61 6e 64 20 77 69 6c 6c 20 63 61 75 73 65 20 64 68 63 70 64 20 | 's.scripts.and.will.cause.dhcpd. |
| 12ef40 | 74 6f 20 66 61 69 6c 20 74 6f 20 73 74 61 72 74 2e 20 41 6c 77 61 79 73 20 76 65 72 69 66 79 20 | to.fail.to.start..Always.verify. |
| 12ef60 | 74 68 61 74 20 74 68 65 20 70 61 72 61 6d 65 74 65 72 73 20 61 72 65 20 63 6f 72 72 65 63 74 20 | that.the.parameters.are.correct. |
| 12ef80 | 62 65 66 6f 72 65 20 63 6f 6d 6d 69 74 74 69 6e 67 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 | before.committing.the.configurat |
| 12efa0 | 69 6f 6e 2e 20 52 65 66 65 72 20 74 6f 20 69 73 63 2d 64 68 63 70 27 73 20 64 68 63 70 64 2e 63 | ion..Refer.to.isc-dhcp's.dhcpd.c |
| 12efc0 | 6f 6e 66 20 6d 61 6e 75 61 6c 20 66 6f 72 20 6d 6f 72 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 3a | onf.manual.for.more.information: |
| 12efe0 | 20 68 74 74 70 73 3a 2f 2f 6b 62 2e 69 73 63 2e 6f 72 67 2f 64 6f 63 73 2f 69 73 63 2d 64 68 63 | .https://kb.isc.org/docs/isc-dhc |
| 12f000 | 70 2d 34 34 2d 6d 61 6e 75 61 6c 2d 70 61 67 65 73 2d 64 68 63 70 64 63 6f 6e 66 00 54 68 65 73 | p-44-manual-pages-dhcpdconf.Thes |
| 12f020 | 65 20 70 61 72 61 6d 65 74 65 72 73 20 6e 65 65 64 20 74 6f 20 62 65 20 70 61 72 74 20 6f 66 20 | e.parameters.need.to.be.part.of. |
| 12f040 | 74 68 65 20 44 48 43 50 20 67 6c 6f 62 61 6c 20 6f 70 74 69 6f 6e 73 2e 20 54 68 65 79 20 73 74 | the.DHCP.global.options..They.st |
| 12f060 | 61 79 20 75 6e 63 68 61 6e 67 65 64 2e 00 54 68 65 79 20 63 61 6e 20 62 65 20 2a 2a 64 65 63 69 | ay.unchanged..They.can.be.**deci |
| 12f080 | 6d 61 6c 2a 2a 20 70 72 65 66 69 78 65 73 2e 00 54 68 69 6e 67 73 20 74 6f 20 62 65 20 63 6f 6e | mal**.prefixes..Things.to.be.con |
| 12f0a0 | 73 69 64 65 72 65 64 20 69 6e 20 74 68 69 73 20 73 65 74 75 70 3a 00 54 68 69 6e 67 73 20 74 6f | sidered.in.this.setup:.Things.to |
| 12f0c0 | 20 62 65 20 63 6f 6e 73 69 64 72 65 64 20 69 6e 20 74 68 69 73 20 73 65 74 75 70 3a 00 54 68 69 | .be.considred.in.this.setup:.Thi |
| 12f0e0 | 73 20 61 64 64 72 65 73 73 20 6d 75 73 74 20 62 65 20 74 68 65 20 61 64 64 72 65 73 73 20 6f 66 | s.address.must.be.the.address.of |
| 12f100 | 20 61 20 6c 6f 63 61 6c 20 69 6e 74 65 72 66 61 63 65 2e 20 49 74 20 6d 61 79 20 62 65 20 73 70 | .a.local.interface..It.may.be.sp |
| 12f120 | 65 63 69 66 69 65 64 20 61 73 20 61 6e 20 49 50 76 34 20 61 64 64 72 65 73 73 20 6f 72 20 61 6e | ecified.as.an.IPv4.address.or.an |
| 12f140 | 20 49 50 76 36 20 61 64 64 72 65 73 73 2e 00 54 68 69 73 20 61 6c 67 6f 72 69 74 68 6d 20 69 73 | .IPv6.address..This.algorithm.is |
| 12f160 | 20 38 30 32 2e 33 61 64 20 63 6f 6d 70 6c 69 61 6e 74 2e 00 54 68 69 73 20 61 6c 67 6f 72 69 74 | .802.3ad.compliant..This.algorit |
| 12f180 | 68 6d 20 69 73 20 6e 6f 74 20 66 75 6c 6c 79 20 38 30 32 2e 33 61 64 20 63 6f 6d 70 6c 69 61 6e | hm.is.not.fully.802.3ad.complian |
| 12f1a0 | 74 2e 20 41 20 73 69 6e 67 6c 65 20 54 43 50 20 6f 72 20 55 44 50 20 63 6f 6e 76 65 72 73 61 74 | t..A.single.TCP.or.UDP.conversat |
| 12f1c0 | 69 6f 6e 20 63 6f 6e 74 61 69 6e 69 6e 67 20 62 6f 74 68 20 66 72 61 67 6d 65 6e 74 65 64 20 61 | ion.containing.both.fragmented.a |
| 12f1e0 | 6e 64 20 75 6e 66 72 61 67 6d 65 6e 74 65 64 20 70 61 63 6b 65 74 73 20 77 69 6c 6c 20 73 65 65 | nd.unfragmented.packets.will.see |
| 12f200 | 20 70 61 63 6b 65 74 73 20 73 74 72 69 70 65 64 20 61 63 72 6f 73 73 20 74 77 6f 20 69 6e 74 65 | .packets.striped.across.two.inte |
| 12f220 | 72 66 61 63 65 73 2e 20 54 68 69 73 20 6d 61 79 20 72 65 73 75 6c 74 20 69 6e 20 6f 75 74 20 6f | rfaces..This.may.result.in.out.o |
| 12f240 | 66 20 6f 72 64 65 72 20 64 65 6c 69 76 65 72 79 2e 20 4d 6f 73 74 20 74 72 61 66 66 69 63 20 74 | f.order.delivery..Most.traffic.t |
| 12f260 | 79 70 65 73 20 77 69 6c 6c 20 6e 6f 74 20 6d 65 65 74 20 74 68 65 73 65 20 63 72 69 74 65 72 69 | ypes.will.not.meet.these.criteri |
| 12f280 | 61 2c 20 61 73 20 54 43 50 20 72 61 72 65 6c 79 20 66 72 61 67 6d 65 6e 74 73 20 74 72 61 66 66 | a,.as.TCP.rarely.fragments.traff |
| 12f2a0 | 69 63 2c 20 61 6e 64 20 6d 6f 73 74 20 55 44 50 20 74 72 61 66 66 69 63 20 69 73 20 6e 6f 74 20 | ic,.and.most.UDP.traffic.is.not. |
| 12f2c0 | 69 6e 76 6f 6c 76 65 64 20 69 6e 20 65 78 74 65 6e 64 65 64 20 63 6f 6e 76 65 72 73 61 74 69 6f | involved.in.extended.conversatio |
| 12f2e0 | 6e 73 2e 20 4f 74 68 65 72 20 69 6d 70 6c 65 6d 65 6e 74 61 74 69 6f 6e 73 20 6f 66 20 38 30 32 | ns..Other.implementations.of.802 |
| 12f300 | 2e 33 61 64 20 6d 61 79 20 6f 72 20 6d 61 79 20 6e 6f 74 20 74 6f 6c 65 72 61 74 65 20 74 68 69 | .3ad.may.or.may.not.tolerate.thi |
| 12f320 | 73 20 6e 6f 6e 63 6f 6d 70 6c 69 61 6e 63 65 2e 00 54 68 69 73 20 61 6c 67 6f 72 69 74 68 6d 20 | s.noncompliance..This.algorithm. |
| 12f340 | 77 69 6c 6c 20 70 6c 61 63 65 20 61 6c 6c 20 74 72 61 66 66 69 63 20 74 6f 20 61 20 70 61 72 74 | will.place.all.traffic.to.a.part |
| 12f360 | 69 63 75 6c 61 72 20 6e 65 74 77 6f 72 6b 20 70 65 65 72 20 6f 6e 20 74 68 65 20 73 61 6d 65 20 | icular.network.peer.on.the.same. |
| 12f380 | 73 6c 61 76 65 2e 00 54 68 69 73 20 61 6c 67 6f 72 69 74 68 6d 20 77 69 6c 6c 20 70 6c 61 63 65 | slave..This.algorithm.will.place |
| 12f3a0 | 20 61 6c 6c 20 74 72 61 66 66 69 63 20 74 6f 20 61 20 70 61 72 74 69 63 75 6c 61 72 20 6e 65 74 | .all.traffic.to.a.particular.net |
| 12f3c0 | 77 6f 72 6b 20 70 65 65 72 20 6f 6e 20 74 68 65 20 73 61 6d 65 20 73 6c 61 76 65 2e 20 46 6f 72 | work.peer.on.the.same.slave..For |
| 12f3e0 | 20 6e 6f 6e 2d 49 50 20 74 72 61 66 66 69 63 2c 20 74 68 65 20 66 6f 72 6d 75 6c 61 20 69 73 20 | .non-IP.traffic,.the.formula.is. |
| 12f400 | 74 68 65 20 73 61 6d 65 20 61 73 20 66 6f 72 20 74 68 65 20 6c 61 79 65 72 32 20 74 72 61 6e 73 | the.same.as.for.the.layer2.trans |
| 12f420 | 6d 69 74 20 68 61 73 68 20 70 6f 6c 69 63 79 2e 00 54 68 69 73 20 61 6c 6c 6f 77 73 20 61 76 6f | mit.hash.policy..This.allows.avo |
| 12f440 | 69 64 69 6e 67 20 74 68 65 20 74 69 6d 65 72 73 20 64 65 66 69 6e 65 64 20 69 6e 20 42 47 50 20 | iding.the.timers.defined.in.BGP. |
| 12f460 | 61 6e 64 20 4f 53 50 46 20 70 72 6f 74 6f 63 6f 6c 20 74 6f 20 65 78 70 69 72 65 73 2e 00 54 68 | and.OSPF.protocol.to.expires..Th |
| 12f480 | 69 73 20 61 6c 6c 6f 77 73 20 74 68 65 20 6f 70 65 72 61 74 6f 72 20 74 6f 20 63 6f 6e 74 72 6f | is.allows.the.operator.to.contro |
| 12f4a0 | 6c 20 74 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 6f 70 65 6e 20 66 69 6c 65 20 64 65 73 63 72 69 | l.the.number.of.open.file.descri |
| 12f4c0 | 70 74 6f 72 73 20 65 61 63 68 20 64 61 65 6d 6f 6e 20 69 73 20 61 6c 6c 6f 77 65 64 20 74 6f 20 | ptors.each.daemon.is.allowed.to. |
| 12f4e0 | 73 74 61 72 74 20 77 69 74 68 2e 20 49 66 20 74 68 65 20 6f 70 65 72 61 74 6f 72 20 70 6c 61 6e | start.with..If.the.operator.plan |
| 12f500 | 73 20 74 6f 20 72 75 6e 20 62 67 70 20 77 69 74 68 20 73 65 76 65 72 61 6c 20 74 68 6f 75 73 61 | s.to.run.bgp.with.several.thousa |
| 12f520 | 6e 64 73 20 6f 66 20 70 65 65 72 73 20 74 68 65 6e 20 74 68 69 73 20 69 73 20 77 68 65 72 65 20 | nds.of.peers.then.this.is.where. |
| 12f540 | 77 65 20 77 6f 75 6c 64 20 6d 6f 64 69 66 79 20 46 52 52 20 74 6f 20 61 6c 6c 6f 77 20 74 68 69 | we.would.modify.FRR.to.allow.thi |
| 12f560 | 73 20 74 6f 20 68 61 70 70 65 6e 2e 00 54 68 69 73 20 61 6c 73 6f 20 77 6f 72 6b 73 20 66 6f 72 | s.to.happen..This.also.works.for |
| 12f580 | 20 72 65 76 65 72 73 65 2d 6c 6f 6f 6b 75 70 20 7a 6f 6e 65 73 20 28 60 60 31 38 2e 31 37 32 2e | .reverse-lookup.zones.(``18.172. |
| 12f5a0 | 69 6e 2d 61 64 64 72 2e 61 72 70 61 60 60 29 2e 00 54 68 69 73 20 61 72 74 69 63 6c 65 20 74 6f | in-addr.arpa``)..This.article.to |
| 12f5c0 | 75 63 68 65 73 20 6f 6e 20 27 63 6c 61 73 73 69 63 27 20 49 50 20 74 75 6e 6e 65 6c 69 6e 67 20 | uches.on.'classic'.IP.tunneling. |
| 12f5e0 | 70 72 6f 74 6f 63 6f 6c 73 2e 00 54 68 69 73 20 62 6c 75 65 70 72 69 6e 74 20 75 73 65 73 20 56 | protocols..This.blueprint.uses.V |
| 12f600 | 79 4f 53 20 61 73 20 74 68 65 20 44 4d 56 50 4e 20 48 75 62 20 61 6e 64 20 43 69 73 63 6f 20 28 | yOS.as.the.DMVPN.Hub.and.Cisco.( |
| 12f620 | 37 32 30 36 56 58 52 29 20 61 6e 64 20 56 79 4f 53 20 61 73 20 6d 75 6c 74 69 70 6c 65 20 73 70 | 7206VXR).and.VyOS.as.multiple.sp |
| 12f640 | 6f 6b 65 20 73 69 74 65 73 2e 20 54 68 65 20 6c 61 62 20 77 61 73 20 62 75 69 6c 64 20 75 73 69 | oke.sites..The.lab.was.build.usi |
| 12f660 | 6e 67 20 3a 61 62 62 72 3a 60 45 56 45 2d 4e 47 20 28 45 6d 75 6c 61 74 65 64 20 56 69 72 74 75 | ng.:abbr:`EVE-NG.(Emulated.Virtu |
| 12f680 | 61 6c 20 45 6e 76 69 72 6f 6e 6d 65 6e 74 20 4e 47 29 60 2e 00 54 68 69 73 20 62 6c 75 65 70 72 | al.Environment.NG)`..This.bluepr |
| 12f6a0 | 69 6e 74 20 75 73 65 73 20 56 79 4f 53 20 61 73 20 74 68 65 20 44 4d 56 50 4e 20 48 75 62 20 61 | int.uses.VyOS.as.the.DMVPN.Hub.a |
| 12f6c0 | 6e 64 20 43 69 73 63 6f 20 28 37 32 30 36 56 58 52 29 20 61 6e 64 20 56 79 4f 53 20 61 73 20 6d | nd.Cisco.(7206VXR).and.VyOS.as.m |
| 12f6e0 | 75 6c 74 69 70 6c 65 20 73 70 6f 6b 65 20 73 69 74 65 73 2e 20 54 68 65 20 6c 61 62 20 77 61 73 | ultiple.spoke.sites..The.lab.was |
| 12f700 | 20 62 75 69 6c 74 20 75 73 69 6e 67 20 3a 61 62 62 72 3a 60 45 56 45 2d 4e 47 20 28 45 6d 75 6c | .built.using.:abbr:`EVE-NG.(Emul |
| 12f720 | 61 74 65 64 20 56 69 72 74 75 61 6c 20 45 6e 76 69 72 6f 6e 6d 65 6e 74 20 4e 47 29 60 2e 00 54 | ated.Virtual.Environment.NG)`..T |
| 12f740 | 68 69 73 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 72 6d 65 64 20 75 73 69 6e 67 20 74 68 65 20 60 | his.can.be.confirmed.using.the.` |
| 12f760 | 60 73 68 6f 77 20 69 70 20 72 6f 75 74 65 20 74 61 62 6c 65 20 31 30 30 60 60 20 6f 70 65 72 61 | `show.ip.route.table.100``.opera |
| 12f780 | 74 69 6f 6e 61 6c 20 63 6f 6d 6d 61 6e 64 2e 00 54 68 69 73 20 63 61 6e 20 6f 6e 6c 79 20 62 65 | tional.command..This.can.only.be |
| 12f7a0 | 20 64 6f 6e 65 20 69 66 20 61 6c 6c 20 79 6f 75 72 20 75 73 65 72 73 20 61 72 65 20 6c 6f 63 61 | .done.if.all.your.users.are.loca |
| 12f7c0 | 74 65 64 20 64 69 72 65 63 74 6c 79 20 75 6e 64 65 72 20 74 68 65 20 73 61 6d 65 20 70 6f 73 69 | ted.directly.under.the.same.posi |
| 12f7e0 | 74 69 6f 6e 20 69 6e 20 74 68 65 20 4c 44 41 50 20 74 72 65 65 20 61 6e 64 20 74 68 65 20 6c 6f | tion.in.the.LDAP.tree.and.the.lo |
| 12f800 | 67 69 6e 20 6e 61 6d 65 20 69 73 20 75 73 65 64 20 66 6f 72 20 6e 61 6d 69 6e 67 20 65 61 63 68 | gin.name.is.used.for.naming.each |
| 12f820 | 20 75 73 65 72 20 6f 62 6a 65 63 74 2e 20 49 66 20 79 6f 75 72 20 4c 44 41 50 20 74 72 65 65 20 | .user.object..If.your.LDAP.tree. |
| 12f840 | 64 6f 65 73 20 6e 6f 74 20 6d 61 74 63 68 20 74 68 65 73 65 20 63 72 69 74 65 72 69 61 73 20 6f | does.not.match.these.criterias.o |
| 12f860 | 72 20 69 66 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 66 69 6c 74 65 72 20 77 68 6f 20 61 72 65 20 | r.if.you.want.to.filter.who.are. |
| 12f880 | 76 61 6c 69 64 20 75 73 65 72 73 20 74 68 65 6e 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 75 73 65 | valid.users.then.you.need.to.use |
| 12f8a0 | 20 61 20 73 65 61 72 63 68 20 66 69 6c 74 65 72 20 74 6f 20 73 65 61 72 63 68 20 66 6f 72 20 79 | .a.search.filter.to.search.for.y |
| 12f8c0 | 6f 75 72 20 75 73 65 72 73 20 44 4e 20 28 60 66 69 6c 74 65 72 2d 65 78 70 72 65 73 73 69 6f 6e | our.users.DN.(`filter-expression |
| 12f8e0 | 60 29 2e 00 54 68 69 73 20 63 68 61 70 65 74 65 72 20 64 65 73 63 72 69 62 65 73 20 68 6f 77 20 | `)..This.chapeter.describes.how. |
| 12f900 | 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 6b 65 72 6e 65 6c 20 70 61 72 61 6d 65 74 65 72 73 20 61 | to.configure.kernel.parameters.a |
| 12f920 | 74 20 72 75 6e 74 69 6d 65 2e 00 54 68 69 73 20 63 68 61 70 74 65 72 20 64 65 73 63 72 69 62 65 | t.runtime..This.chapter.describe |
| 12f940 | 20 74 68 65 20 70 6f 73 73 69 62 69 6c 69 74 69 65 73 20 6f 66 20 61 64 76 61 6e 63 65 64 20 73 | .the.possibilities.of.advanced.s |
| 12f960 | 79 73 74 65 6d 20 62 65 68 61 76 69 6f 72 2e 00 54 68 69 73 20 63 6f 6d 6d 61 64 20 73 65 74 73 | ystem.behavior..This.commad.sets |
| 12f980 | 20 6e 65 74 77 6f 72 6b 20 65 6e 74 69 74 79 20 74 69 74 6c 65 20 28 4e 45 54 29 20 70 72 6f 76 | .network.entity.title.(NET).prov |
| 12f9a0 | 69 64 65 64 20 69 6e 20 49 53 4f 20 66 6f 72 6d 61 74 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 | ided.in.ISO.format..This.command |
| 12f9c0 | 20 61 63 63 65 70 74 20 69 6e 63 6f 6d 69 6e 67 20 72 6f 75 74 65 73 20 77 69 74 68 20 41 53 20 | .accept.incoming.routes.with.AS. |
| 12f9e0 | 70 61 74 68 20 63 6f 6e 74 61 69 6e 69 6e 67 20 41 53 20 6e 75 6d 62 65 72 20 77 69 74 68 20 74 | path.containing.AS.number.with.t |
| 12fa00 | 68 65 20 73 61 6d 65 20 76 61 6c 75 65 20 61 73 20 74 68 65 20 63 75 72 72 65 6e 74 20 73 79 73 | he.same.value.as.the.current.sys |
| 12fa20 | 74 65 6d 20 41 53 2e 20 54 68 69 73 20 69 73 20 75 73 65 64 20 77 68 65 6e 20 79 6f 75 20 77 61 | tem.AS..This.is.used.when.you.wa |
| 12fa40 | 6e 74 20 74 6f 20 75 73 65 20 74 68 65 20 73 61 6d 65 20 41 53 20 6e 75 6d 62 65 72 20 69 6e 20 | nt.to.use.the.same.AS.number.in. |
| 12fa60 | 79 6f 75 72 20 73 69 74 65 73 2c 20 62 75 74 20 79 6f 75 20 63 61 6e e2 80 99 74 20 63 6f 6e 6e | your.sites,.but.you.can...t.conn |
| 12fa80 | 65 63 74 20 74 68 65 6d 20 64 69 72 65 63 74 6c 79 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 | ect.them.directly..This.command. |
| 12faa0 | 61 6c 6c 6f 77 20 6f 76 65 72 72 69 64 65 20 74 68 65 20 72 65 73 75 6c 74 20 6f 66 20 43 61 70 | allow.override.the.result.of.Cap |
| 12fac0 | 61 62 69 6c 69 74 79 20 4e 65 67 6f 74 69 61 74 69 6f 6e 20 77 69 74 68 20 6c 6f 63 61 6c 20 63 | ability.Negotiation.with.local.c |
| 12fae0 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 20 49 67 6e 6f 72 65 20 72 65 6d 6f 74 65 20 70 65 65 72 | onfiguration..Ignore.remote.peer |
| 12fb00 | e2 80 99 73 20 63 61 70 61 62 69 6c 69 74 79 20 76 61 6c 75 65 2e 00 54 68 69 73 20 63 6f 6d 6d | ...s.capability.value..This.comm |
| 12fb20 | 61 6e 64 20 61 6c 6c 6f 77 73 20 70 65 65 72 69 6e 67 73 20 62 65 74 77 65 65 6e 20 64 69 72 65 | and.allows.peerings.between.dire |
| 12fb40 | 63 74 6c 79 20 63 6f 6e 6e 65 63 74 65 64 20 65 42 47 50 20 70 65 65 72 73 20 75 73 69 6e 67 20 | ctly.connected.eBGP.peers.using. |
| 12fb60 | 6c 6f 6f 70 62 61 63 6b 20 61 64 64 72 65 73 73 65 73 20 77 69 74 68 6f 75 74 20 61 64 6a 75 73 | loopback.addresses.without.adjus |
| 12fb80 | 74 69 6e 67 20 74 68 65 20 64 65 66 61 75 6c 74 20 54 54 4c 20 6f 66 20 31 2e 00 54 68 69 73 20 | ting.the.default.TTL.of.1..This. |
| 12fba0 | 63 6f 6d 6d 61 6e 64 20 61 6c 6c 6f 77 73 20 73 65 73 73 69 6f 6e 73 20 74 6f 20 62 65 20 65 73 | command.allows.sessions.to.be.es |
| 12fbc0 | 74 61 62 6c 69 73 68 65 64 20 77 69 74 68 20 65 42 47 50 20 6e 65 69 67 68 62 6f 72 73 20 77 68 | tablished.with.eBGP.neighbors.wh |
| 12fbe0 | 65 6e 20 74 68 65 79 20 61 72 65 20 6d 75 6c 74 69 70 6c 65 20 68 6f 70 73 20 61 77 61 79 2e 20 | en.they.are.multiple.hops.away.. |
| 12fc00 | 57 68 65 6e 20 74 68 65 20 6e 65 69 67 68 62 6f 72 20 69 73 20 6e 6f 74 20 64 69 72 65 63 74 6c | When.the.neighbor.is.not.directl |
| 12fc20 | 79 20 63 6f 6e 6e 65 63 74 65 64 20 61 6e 64 20 74 68 69 73 20 6b 6e 6f 62 20 69 73 20 6e 6f 74 | y.connected.and.this.knob.is.not |
| 12fc40 | 20 65 6e 61 62 6c 65 64 2c 20 74 68 65 20 73 65 73 73 69 6f 6e 20 77 69 6c 6c 20 6e 6f 74 20 65 | .enabled,.the.session.will.not.e |
| 12fc60 | 73 74 61 62 6c 69 73 68 2e 20 54 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 68 6f 70 73 20 72 61 6e | stablish..The.number.of.hops.ran |
| 12fc80 | 67 65 20 69 73 20 31 20 74 6f 20 32 35 35 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 | ge.is.1.to.255..This.command.is. |
| 12fca0 | 6d 75 74 75 61 6c 6c 79 20 65 78 63 6c 75 73 69 76 65 20 77 69 74 68 20 3a 63 66 67 63 6d 64 3a | mutually.exclusive.with.:cfgcmd: |
| 12fcc0 | 60 74 74 6c 2d 73 65 63 75 72 69 74 79 20 68 6f 70 73 60 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e | `ttl-security.hops`..This.comman |
| 12fce0 | 64 20 61 6c 6c 6f 77 73 20 74 68 65 20 72 6f 75 74 65 72 20 74 6f 20 70 72 65 66 65 72 20 72 6f | d.allows.the.router.to.prefer.ro |
| 12fd00 | 75 74 65 20 74 6f 20 73 70 65 63 69 66 69 65 64 20 70 72 65 66 69 78 20 6c 65 61 72 6e 65 64 20 | ute.to.specified.prefix.learned. |
| 12fd20 | 76 69 61 20 49 47 50 20 74 68 72 6f 75 67 68 20 62 61 63 6b 64 6f 6f 72 20 6c 69 6e 6b 20 69 6e | via.IGP.through.backdoor.link.in |
| 12fd40 | 73 74 65 61 64 20 6f 66 20 61 20 72 6f 75 74 65 20 74 6f 20 74 68 65 20 73 61 6d 65 20 70 72 65 | stead.of.a.route.to.the.same.pre |
| 12fd60 | 66 69 78 20 6c 65 61 72 6e 65 64 20 76 69 61 20 45 42 47 50 2e 00 54 68 69 73 20 63 6f 6d 6d 61 | fix.learned.via.EBGP..This.comma |
| 12fd80 | 6e 64 20 61 6c 6c 6f 77 73 20 74 6f 20 6c 6f 67 20 63 68 61 6e 67 65 73 20 69 6e 20 61 64 6a 61 | nd.allows.to.log.changes.in.adja |
| 12fda0 | 63 65 6e 63 79 2e 20 57 69 74 68 20 74 68 65 20 6f 70 74 69 6f 6e 61 6c 20 3a 63 66 67 63 6d 64 | cency..With.the.optional.:cfgcmd |
| 12fdc0 | 3a 60 64 65 74 61 69 6c 60 20 61 72 67 75 6d 65 6e 74 2c 20 61 6c 6c 20 63 68 61 6e 67 65 73 20 | :`detail`.argument,.all.changes. |
| 12fde0 | 69 6e 20 61 64 6a 61 63 65 6e 63 79 20 73 74 61 74 75 73 20 61 72 65 20 73 68 6f 77 6e 2e 20 57 | in.adjacency.status.are.shown..W |
| 12fe00 | 69 74 68 6f 75 74 20 3a 63 66 67 63 6d 64 3a 60 64 65 74 61 69 6c 60 2c 20 6f 6e 6c 79 20 63 68 | ithout.:cfgcmd:`detail`,.only.ch |
| 12fe20 | 61 6e 67 65 73 20 74 6f 20 66 75 6c 6c 20 6f 72 20 72 65 67 72 65 73 73 69 6f 6e 73 20 61 72 65 | anges.to.full.or.regressions.are |
| 12fe40 | 20 73 68 6f 77 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 6c 6c 6f 77 73 20 74 6f 20 73 | .shown..This.command.allows.to.s |
| 12fe60 | 70 65 63 69 66 79 20 74 68 65 20 64 69 73 74 72 69 62 75 74 69 6f 6e 20 74 79 70 65 20 66 6f 72 | pecify.the.distribution.type.for |
| 12fe80 | 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 74 68 69 73 20 69 | .the.network.connected.to.this.i |
| 12fea0 | 6e 74 65 72 66 61 63 65 3a 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 6c 6c 6f 77 73 20 74 6f | nterface:.This.command.allows.to |
| 12fec0 | 20 75 73 65 20 72 6f 75 74 65 20 6d 61 70 20 74 6f 20 66 69 6c 74 65 72 20 72 65 64 69 73 74 72 | .use.route.map.to.filter.redistr |
| 12fee0 | 69 62 75 74 65 64 20 72 6f 75 74 65 73 20 66 72 6f 6d 20 67 69 76 65 6e 20 72 6f 75 74 65 20 73 | ibuted.routes.from.given.route.s |
| 12ff00 | 6f 75 72 63 65 2e 20 54 68 65 72 65 20 61 72 65 20 66 69 76 65 20 6d 6f 64 65 73 20 61 76 61 69 | ource..There.are.five.modes.avai |
| 12ff20 | 6c 61 62 6c 65 20 66 6f 72 20 72 6f 75 74 65 20 73 6f 75 72 63 65 3a 20 62 67 70 2c 20 63 6f 6e | lable.for.route.source:.bgp,.con |
| 12ff40 | 6e 65 63 74 65 64 2c 20 6b 65 72 6e 65 6c 2c 20 72 69 70 6e 67 2c 20 73 74 61 74 69 63 2e 00 54 | nected,.kernel,.ripng,.static..T |
| 12ff60 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 6c 6c 6f 77 73 20 74 6f 20 75 73 65 20 72 6f 75 74 65 20 | his.command.allows.to.use.route. |
| 12ff80 | 6d 61 70 20 74 6f 20 66 69 6c 74 65 72 20 72 65 64 69 73 74 72 69 62 75 74 65 64 20 72 6f 75 74 | map.to.filter.redistributed.rout |
| 12ffa0 | 65 73 20 66 72 6f 6d 20 74 68 65 20 67 69 76 65 6e 20 72 6f 75 74 65 20 73 6f 75 72 63 65 2e 20 | es.from.the.given.route.source.. |
| 12ffc0 | 54 68 65 72 65 20 61 72 65 20 66 69 76 65 20 6d 6f 64 65 73 20 61 76 61 69 6c 61 62 6c 65 20 66 | There.are.five.modes.available.f |
| 12ffe0 | 6f 72 20 72 6f 75 74 65 20 73 6f 75 72 63 65 3a 20 62 67 70 2c 20 63 6f 6e 6e 65 63 74 65 64 2c | or.route.source:.bgp,.connected, |
| 130000 | 20 6b 65 72 6e 65 6c 2c 20 6f 73 70 66 2c 20 73 74 61 74 69 63 2e 00 54 68 69 73 20 63 6f 6d 6d | .kernel,.ospf,.static..This.comm |
| 130020 | 61 6e 64 20 61 6c 6c 6f 77 73 20 74 6f 20 75 73 65 20 72 6f 75 74 65 20 6d 61 70 20 74 6f 20 66 | and.allows.to.use.route.map.to.f |
| 130040 | 69 6c 74 65 72 20 72 65 64 69 73 74 72 69 62 75 74 65 64 20 72 6f 75 74 65 73 20 66 72 6f 6d 20 | ilter.redistributed.routes.from. |
| 130060 | 74 68 65 20 67 69 76 65 6e 20 72 6f 75 74 65 20 73 6f 75 72 63 65 2e 20 54 68 65 72 65 20 61 72 | the.given.route.source..There.ar |
| 130080 | 65 20 66 69 76 65 20 6d 6f 64 65 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 72 6f 75 74 65 | e.five.modes.available.for.route |
| 1300a0 | 20 73 6f 75 72 63 65 3a 20 62 67 70 2c 20 63 6f 6e 6e 65 63 74 65 64 2c 20 6b 65 72 6e 65 6c 2c | .source:.bgp,.connected,.kernel, |
| 1300c0 | 20 72 69 70 2c 20 73 74 61 74 69 63 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 6c 6c 6f 77 | .rip,.static..This.command.allow |
| 1300e0 | 73 20 74 6f 20 75 73 65 20 72 6f 75 74 65 20 6d 61 70 20 74 6f 20 66 69 6c 74 65 72 20 72 65 64 | s.to.use.route.map.to.filter.red |
| 130100 | 69 73 74 72 69 62 75 74 65 64 20 72 6f 75 74 65 73 20 66 72 6f 6d 20 74 68 65 20 67 69 76 65 6e | istributed.routes.from.the.given |
| 130120 | 20 72 6f 75 74 65 20 73 6f 75 72 63 65 2e 20 54 68 65 72 65 20 61 72 65 20 73 69 78 20 6d 6f 64 | .route.source..There.are.six.mod |
| 130140 | 65 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 72 6f 75 74 65 20 73 6f 75 72 63 65 3a 20 62 | es.available.for.route.source:.b |
| 130160 | 67 70 2c 20 63 6f 6e 6e 65 63 74 65 64 2c 20 6b 65 72 6e 65 6c 2c 20 6f 73 70 66 2c 20 72 69 70 | gp,.connected,.kernel,.ospf,.rip |
| 130180 | 2c 20 73 74 61 74 69 63 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 6c 6c 6f 77 73 20 74 6f | ,.static..This.command.allows.to |
| 1301a0 | 20 75 73 65 20 72 6f 75 74 65 20 6d 61 70 20 74 6f 20 66 69 6c 74 65 72 20 72 65 64 69 73 74 72 | .use.route.map.to.filter.redistr |
| 1301c0 | 69 62 75 74 65 64 20 72 6f 75 74 65 73 2e 20 54 68 65 72 65 20 61 72 65 20 73 69 78 20 6d 6f 64 | ibuted.routes..There.are.six.mod |
| 1301e0 | 65 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 72 6f 75 74 65 20 73 6f 75 72 63 65 3a 20 63 | es.available.for.route.source:.c |
| 130200 | 6f 6e 6e 65 63 74 65 64 2c 20 6b 65 72 6e 65 6c 2c 20 6f 73 70 66 2c 20 72 69 70 2c 20 73 74 61 | onnected,.kernel,.ospf,.rip,.sta |
| 130220 | 74 69 63 2c 20 74 61 62 6c 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 6c 6c 6f 77 73 20 | tic,.table..This.command.allows. |
| 130240 | 79 6f 75 20 61 70 70 6c 79 20 61 63 63 65 73 73 20 6c 69 73 74 73 20 74 6f 20 61 20 63 68 6f 73 | you.apply.access.lists.to.a.chos |
| 130260 | 65 6e 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 66 69 6c 74 65 72 20 74 68 65 20 42 61 62 65 6c | en.interface.to.filter.the.Babel |
| 130280 | 20 72 6f 75 74 65 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 6c 6c 6f 77 73 20 79 6f 75 | .routes..This.command.allows.you |
| 1302a0 | 20 61 70 70 6c 79 20 61 63 63 65 73 73 20 6c 69 73 74 73 20 74 6f 20 61 20 63 68 6f 73 65 6e 20 | .apply.access.lists.to.a.chosen. |
| 1302c0 | 69 6e 74 65 72 66 61 63 65 20 74 6f 20 66 69 6c 74 65 72 20 74 68 65 20 52 49 50 20 70 61 74 68 | interface.to.filter.the.RIP.path |
| 1302e0 | 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 6c 6c 6f 77 73 20 79 6f 75 20 61 70 70 6c 79 20 | ..This.command.allows.you.apply. |
| 130300 | 70 72 65 66 69 78 20 6c 69 73 74 73 20 74 6f 20 61 20 63 68 6f 73 65 6e 20 69 6e 74 65 72 66 61 | prefix.lists.to.a.chosen.interfa |
| 130320 | 63 65 20 74 6f 20 66 69 6c 74 65 72 20 74 68 65 20 42 61 62 65 6c 20 72 6f 75 74 65 73 2e 00 54 | ce.to.filter.the.Babel.routes..T |
| 130340 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 6c 6c 6f 77 73 20 79 6f 75 20 61 70 70 6c 79 20 70 72 65 | his.command.allows.you.apply.pre |
| 130360 | 66 69 78 20 6c 69 73 74 73 20 74 6f 20 61 20 63 68 6f 73 65 6e 20 69 6e 74 65 72 66 61 63 65 20 | fix.lists.to.a.chosen.interface. |
| 130380 | 74 6f 20 66 69 6c 74 65 72 20 74 68 65 20 52 49 50 20 70 61 74 68 2e 00 54 68 69 73 20 63 6f 6d | to.filter.the.RIP.path..This.com |
| 1303a0 | 6d 61 6e 64 20 61 6c 6c 6f 77 73 20 79 6f 75 20 74 6f 20 73 65 6c 65 63 74 20 61 20 73 70 65 63 | mand.allows.you.to.select.a.spec |
| 1303c0 | 69 66 69 63 20 61 63 63 65 73 73 20 63 6f 6e 63 65 6e 74 72 61 74 6f 72 20 77 68 65 6e 20 79 6f | ific.access.concentrator.when.yo |
| 1303e0 | 75 20 6b 6e 6f 77 20 74 68 65 20 61 63 63 65 73 73 20 63 6f 6e 63 65 6e 74 72 61 74 6f 72 73 20 | u.know.the.access.concentrators. |
| 130400 | 60 3c 6e 61 6d 65 3e 60 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 70 70 6c 69 65 73 20 72 | `<name>`..This.command.applies.r |
| 130420 | 6f 75 74 65 2d 6d 61 70 20 74 6f 20 73 65 6c 65 63 74 69 76 65 6c 79 20 75 6e 73 75 70 70 72 65 | oute-map.to.selectively.unsuppre |
| 130440 | 73 73 20 70 72 65 66 69 78 65 73 20 73 75 70 70 72 65 73 73 65 64 20 62 79 20 73 75 6d 6d 61 72 | ss.prefixes.suppressed.by.summar |
| 130460 | 69 73 61 74 69 6f 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 70 70 6c 69 65 73 20 74 68 | isation..This.command.applies.th |
| 130480 | 65 20 41 53 20 70 61 74 68 20 61 63 63 65 73 73 20 6c 69 73 74 20 66 69 6c 74 65 72 73 20 6e 61 | e.AS.path.access.list.filters.na |
| 1304a0 | 6d 65 64 20 69 6e 20 3c 6e 61 6d 65 3e 20 74 6f 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 42 | med.in.<name>.to.the.specified.B |
| 1304c0 | 47 50 20 6e 65 69 67 68 62 6f 72 20 74 6f 20 72 65 73 74 72 69 63 74 20 74 68 65 20 72 6f 75 74 | GP.neighbor.to.restrict.the.rout |
| 1304e0 | 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 68 61 74 20 42 47 50 20 6c 65 61 72 6e 73 20 | ing.information.that.BGP.learns. |
| 130500 | 61 6e 64 2f 6f 72 20 61 64 76 65 72 74 69 73 65 73 2e 20 54 68 65 20 61 72 67 75 6d 65 6e 74 73 | and/or.advertises..The.arguments |
| 130520 | 20 3a 63 66 67 63 6d 64 3a 60 65 78 70 6f 72 74 60 20 61 6e 64 20 3a 63 66 67 63 6d 64 3a 60 69 | .:cfgcmd:`export`.and.:cfgcmd:`i |
| 130540 | 6d 70 6f 72 74 60 20 73 70 65 63 69 66 79 20 74 68 65 20 64 69 72 65 63 74 69 6f 6e 20 69 6e 20 | mport`.specify.the.direction.in. |
| 130560 | 77 68 69 63 68 20 74 68 65 20 41 53 20 70 61 74 68 20 61 63 63 65 73 73 20 6c 69 73 74 20 61 72 | which.the.AS.path.access.list.ar |
| 130580 | 65 20 61 70 70 6c 69 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 70 70 6c 69 65 73 20 | e.applied..This.command.applies. |
| 1305a0 | 74 68 65 20 61 63 63 65 73 73 20 6c 69 73 74 20 66 69 6c 74 65 72 73 20 6e 61 6d 65 64 20 69 6e | the.access.list.filters.named.in |
| 1305c0 | 20 3c 6e 75 6d 62 65 72 3e 20 74 6f 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 42 47 50 20 6e | .<number>.to.the.specified.BGP.n |
| 1305e0 | 65 69 67 68 62 6f 72 20 74 6f 20 72 65 73 74 72 69 63 74 20 74 68 65 20 72 6f 75 74 69 6e 67 20 | eighbor.to.restrict.the.routing. |
| 130600 | 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 68 61 74 20 42 47 50 20 6c 65 61 72 6e 73 20 61 6e 64 2f | information.that.BGP.learns.and/ |
| 130620 | 6f 72 20 61 64 76 65 72 74 69 73 65 73 2e 20 54 68 65 20 61 72 67 75 6d 65 6e 74 73 20 3a 63 66 | or.advertises..The.arguments.:cf |
| 130640 | 67 63 6d 64 3a 60 65 78 70 6f 72 74 60 20 61 6e 64 20 3a 63 66 67 63 6d 64 3a 60 69 6d 70 6f 72 | gcmd:`export`.and.:cfgcmd:`impor |
| 130660 | 74 60 20 73 70 65 63 69 66 79 20 74 68 65 20 64 69 72 65 63 74 69 6f 6e 20 69 6e 20 77 68 69 63 | t`.specify.the.direction.in.whic |
| 130680 | 68 20 74 68 65 20 61 63 63 65 73 73 20 6c 69 73 74 20 61 72 65 20 61 70 70 6c 69 65 64 2e 00 54 | h.the.access.list.are.applied..T |
| 1306a0 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 70 70 6c 69 65 73 20 74 68 65 20 70 72 66 65 66 69 78 20 | his.command.applies.the.prfefix. |
| 1306c0 | 6c 69 73 74 20 66 69 6c 74 65 72 73 20 6e 61 6d 65 64 20 69 6e 20 3c 6e 61 6d 65 3e 20 74 6f 20 | list.filters.named.in.<name>.to. |
| 1306e0 | 74 68 65 20 73 70 65 63 69 66 69 65 64 20 42 47 50 20 6e 65 69 67 68 62 6f 72 20 74 6f 20 72 65 | the.specified.BGP.neighbor.to.re |
| 130700 | 73 74 72 69 63 74 20 74 68 65 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 | strict.the.routing.information.t |
| 130720 | 68 61 74 20 42 47 50 20 6c 65 61 72 6e 73 20 61 6e 64 2f 6f 72 20 61 64 76 65 72 74 69 73 65 73 | hat.BGP.learns.and/or.advertises |
| 130740 | 2e 20 54 68 65 20 61 72 67 75 6d 65 6e 74 73 20 3a 63 66 67 63 6d 64 3a 60 65 78 70 6f 72 74 60 | ..The.arguments.:cfgcmd:`export` |
| 130760 | 20 61 6e 64 20 3a 63 66 67 63 6d 64 3a 60 69 6d 70 6f 72 74 60 20 73 70 65 63 69 66 79 20 74 68 | .and.:cfgcmd:`import`.specify.th |
| 130780 | 65 20 64 69 72 65 63 74 69 6f 6e 20 69 6e 20 77 68 69 63 68 20 74 68 65 20 70 72 65 66 69 78 20 | e.direction.in.which.the.prefix. |
| 1307a0 | 6c 69 73 74 20 61 72 65 20 61 70 70 6c 69 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 | list.are.applied..This.command.a |
| 1307c0 | 70 70 6c 69 65 73 20 74 68 65 20 72 6f 75 74 65 20 6d 61 70 20 6e 61 6d 65 64 20 69 6e 20 3c 6e | pplies.the.route.map.named.in.<n |
| 1307e0 | 61 6d 65 3e 20 74 6f 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 42 47 50 20 6e 65 69 67 68 62 | ame>.to.the.specified.BGP.neighb |
| 130800 | 6f 72 20 74 6f 20 63 6f 6e 74 72 6f 6c 20 61 6e 64 20 6d 6f 64 69 66 79 20 72 6f 75 74 69 6e 67 | or.to.control.and.modify.routing |
| 130820 | 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 68 61 74 20 69 73 20 65 78 63 68 61 6e 67 65 64 20 62 | .information.that.is.exchanged.b |
| 130840 | 65 74 77 65 65 6e 20 70 65 65 72 73 2e 20 54 68 65 20 61 72 67 75 6d 65 6e 74 73 20 3a 63 66 67 | etween.peers..The.arguments.:cfg |
| 130860 | 63 6d 64 3a 60 65 78 70 6f 72 74 60 20 61 6e 64 20 3a 63 66 67 63 6d 64 3a 60 69 6d 70 6f 72 74 | cmd:`export`.and.:cfgcmd:`import |
| 130880 | 60 20 73 70 65 63 69 66 79 20 74 68 65 20 64 69 72 65 63 74 69 6f 6e 20 69 6e 20 77 68 69 63 68 | `.specify.the.direction.in.which |
| 1308a0 | 20 74 68 65 20 72 6f 75 74 65 20 6d 61 70 20 61 72 65 20 61 70 70 6c 69 65 64 2e 00 54 68 69 73 | .the.route.map.are.applied..This |
| 1308c0 | 20 63 6f 6d 6d 61 6e 64 20 62 69 6e 64 20 73 70 65 63 69 66 69 63 20 70 65 65 72 20 74 6f 20 70 | .command.bind.specific.peer.to.p |
| 1308e0 | 65 65 72 20 67 72 6f 75 70 20 77 69 74 68 20 61 20 67 69 76 65 6e 20 6e 61 6d 65 2e 00 54 68 69 | eer.group.with.a.given.name..Thi |
| 130900 | 73 20 63 6f 6d 6d 61 6e 64 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 66 69 6c 74 65 72 20 | s.command.can.be.used.to.filter. |
| 130920 | 74 68 65 20 42 61 62 65 6c 20 72 6f 75 74 65 73 20 75 73 69 6e 67 20 61 63 63 65 73 73 20 6c 69 | the.Babel.routes.using.access.li |
| 130940 | 73 74 73 2e 20 3a 63 66 67 63 6d 64 3a 60 69 6e 60 20 61 6e 64 20 3a 63 66 67 63 6d 64 3a 60 6f | sts..:cfgcmd:`in`.and.:cfgcmd:`o |
| 130960 | 75 74 60 20 74 68 69 73 20 69 73 20 74 68 65 20 64 69 72 65 63 74 69 6f 6e 20 69 6e 20 77 68 69 | ut`.this.is.the.direction.in.whi |
| 130980 | 63 68 20 74 68 65 20 61 63 63 65 73 73 20 6c 69 73 74 73 20 61 72 65 20 61 70 70 6c 69 65 64 2e | ch.the.access.lists.are.applied. |
| 1309a0 | 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 66 69 6c | .This.command.can.be.used.to.fil |
| 1309c0 | 74 65 72 20 74 68 65 20 42 61 62 65 6c 20 72 6f 75 74 65 73 20 75 73 69 6e 67 20 70 72 65 66 69 | ter.the.Babel.routes.using.prefi |
| 1309e0 | 78 20 6c 69 73 74 73 2e 20 3a 63 66 67 63 6d 64 3a 60 69 6e 60 20 61 6e 64 20 3a 63 66 67 63 6d | x.lists..:cfgcmd:`in`.and.:cfgcm |
| 130a00 | 64 3a 60 6f 75 74 60 20 74 68 69 73 20 69 73 20 74 68 65 20 64 69 72 65 63 74 69 6f 6e 20 69 6e | d:`out`.this.is.the.direction.in |
| 130a20 | 20 77 68 69 63 68 20 74 68 65 20 70 72 65 66 69 78 20 6c 69 73 74 73 20 61 72 65 20 61 70 70 6c | .which.the.prefix.lists.are.appl |
| 130a40 | 69 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f | ied..This.command.can.be.used.to |
| 130a60 | 20 66 69 6c 74 65 72 20 74 68 65 20 52 49 50 20 70 61 74 68 20 75 73 69 6e 67 20 61 63 63 65 73 | .filter.the.RIP.path.using.acces |
| 130a80 | 73 20 6c 69 73 74 73 2e 20 3a 63 66 67 63 6d 64 3a 60 69 6e 60 20 61 6e 64 20 3a 63 66 67 63 6d | s.lists..:cfgcmd:`in`.and.:cfgcm |
| 130aa0 | 64 3a 60 6f 75 74 60 20 74 68 69 73 20 69 73 20 74 68 65 20 64 69 72 65 63 74 69 6f 6e 20 69 6e | d:`out`.this.is.the.direction.in |
| 130ac0 | 20 77 68 69 63 68 20 74 68 65 20 61 63 63 65 73 73 20 6c 69 73 74 73 20 61 72 65 20 61 70 70 6c | .which.the.access.lists.are.appl |
| 130ae0 | 69 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f | ied..This.command.can.be.used.to |
| 130b00 | 20 66 69 6c 74 65 72 20 74 68 65 20 52 49 50 20 70 61 74 68 20 75 73 69 6e 67 20 70 72 65 66 69 | .filter.the.RIP.path.using.prefi |
| 130b20 | 78 20 6c 69 73 74 73 2e 20 3a 63 66 67 63 6d 64 3a 60 69 6e 60 20 61 6e 64 20 3a 63 66 67 63 6d | x.lists..:cfgcmd:`in`.and.:cfgcm |
| 130b40 | 64 3a 60 6f 75 74 60 20 74 68 69 73 20 69 73 20 74 68 65 20 64 69 72 65 63 74 69 6f 6e 20 69 6e | d:`out`.this.is.the.direction.in |
| 130b60 | 20 77 68 69 63 68 20 74 68 65 20 70 72 65 66 69 78 20 6c 69 73 74 73 20 61 72 65 20 61 70 70 6c | .which.the.prefix.lists.are.appl |
| 130b80 | 69 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 61 6e 20 62 65 20 75 73 65 64 20 77 69 | ied..This.command.can.be.used.wi |
| 130ba0 | 74 68 20 70 72 65 76 69 6f 75 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 65 74 73 20 64 65 66 61 | th.previous.command.to.sets.defa |
| 130bc0 | 75 6c 74 20 52 49 50 20 64 69 73 74 61 6e 63 65 20 74 6f 20 73 70 65 63 69 66 69 65 64 20 76 61 | ult.RIP.distance.to.specified.va |
| 130be0 | 6c 75 65 20 77 68 65 6e 20 74 68 65 20 72 6f 75 74 65 20 73 6f 75 72 63 65 20 49 50 20 61 64 64 | lue.when.the.route.source.IP.add |
| 130c00 | 72 65 73 73 20 6d 61 74 63 68 65 73 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 70 72 65 66 69 | ress.matches.the.specified.prefi |
| 130c20 | 78 20 61 6e 64 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 61 63 63 65 73 73 2d 6c 69 73 74 2e | x.and.the.specified.access-list. |
| 130c40 | 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 68 61 6e 67 65 20 64 69 73 74 61 6e 63 65 20 76 61 | .This.command.change.distance.va |
| 130c60 | 6c 75 65 20 6f 66 20 42 47 50 2e 20 54 68 65 20 61 72 67 75 6d 65 6e 74 73 20 61 72 65 20 74 68 | lue.of.BGP..The.arguments.are.th |
| 130c80 | 65 20 64 69 73 74 61 6e 63 65 20 76 61 6c 75 65 73 20 66 6f 72 20 65 78 74 65 72 6e 61 6c 20 72 | e.distance.values.for.external.r |
| 130ca0 | 6f 75 74 65 73 2c 20 69 6e 74 65 72 6e 61 6c 20 72 6f 75 74 65 73 20 61 6e 64 20 6c 6f 63 61 6c | outes,.internal.routes.and.local |
| 130cc0 | 20 72 6f 75 74 65 73 20 72 65 73 70 65 63 74 69 76 65 6c 79 2e 20 54 68 65 20 64 69 73 74 61 6e | .routes.respectively..The.distan |
| 130ce0 | 63 65 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 32 35 35 2e 00 54 68 69 73 20 63 6f 6d 6d 61 | ce.range.is.1.to.255..This.comma |
| 130d00 | 6e 64 20 63 68 61 6e 67 65 20 64 69 73 74 61 6e 63 65 20 76 61 6c 75 65 20 6f 66 20 4f 53 50 46 | nd.change.distance.value.of.OSPF |
| 130d20 | 20 67 6c 6f 62 61 6c 6c 79 2e 20 54 68 65 20 64 69 73 74 61 6e 63 65 20 72 61 6e 67 65 20 69 73 | .globally..The.distance.range.is |
| 130d40 | 20 31 20 74 6f 20 32 35 35 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 68 61 6e 67 65 20 64 | .1.to.255..This.command.change.d |
| 130d60 | 69 73 74 61 6e 63 65 20 76 61 6c 75 65 20 6f 66 20 4f 53 50 46 2e 20 54 68 65 20 61 72 67 75 6d | istance.value.of.OSPF..The.argum |
| 130d80 | 65 6e 74 73 20 61 72 65 20 74 68 65 20 64 69 73 74 61 6e 63 65 20 76 61 6c 75 65 73 20 66 6f 72 | ents.are.the.distance.values.for |
| 130da0 | 20 65 78 74 65 72 6e 61 6c 20 72 6f 75 74 65 73 2c 20 69 6e 74 65 72 2d 61 72 65 61 20 72 6f 75 | .external.routes,.inter-area.rou |
| 130dc0 | 74 65 73 20 61 6e 64 20 69 6e 74 72 61 2d 61 72 65 61 20 72 6f 75 74 65 73 20 72 65 73 70 65 63 | tes.and.intra-area.routes.respec |
| 130de0 | 74 69 76 65 6c 79 2e 20 54 68 65 20 64 69 73 74 61 6e 63 65 20 72 61 6e 67 65 20 69 73 20 31 20 | tively..The.distance.range.is.1. |
| 130e00 | 74 6f 20 32 35 35 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 68 61 6e 67 65 20 64 69 73 74 | to.255..This.command.change.dist |
| 130e20 | 61 6e 63 65 20 76 61 6c 75 65 20 6f 66 20 4f 53 50 46 76 33 20 67 6c 6f 62 61 6c 6c 79 2e 20 54 | ance.value.of.OSPFv3.globally..T |
| 130e40 | 68 65 20 64 69 73 74 61 6e 63 65 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 32 35 35 2e 00 54 | he.distance.range.is.1.to.255..T |
| 130e60 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 68 61 6e 67 65 20 64 69 73 74 61 6e 63 65 20 76 61 6c 75 | his.command.change.distance.valu |
| 130e80 | 65 20 6f 66 20 4f 53 50 46 76 33 2e 20 54 68 65 20 61 72 67 75 6d 65 6e 74 73 20 61 72 65 20 74 | e.of.OSPFv3..The.arguments.are.t |
| 130ea0 | 68 65 20 64 69 73 74 61 6e 63 65 20 76 61 6c 75 65 73 20 66 6f 72 20 65 78 74 65 72 6e 61 6c 20 | he.distance.values.for.external. |
| 130ec0 | 72 6f 75 74 65 73 2c 20 69 6e 74 65 72 2d 61 72 65 61 20 72 6f 75 74 65 73 20 61 6e 64 20 69 6e | routes,.inter-area.routes.and.in |
| 130ee0 | 74 72 61 2d 61 72 65 61 20 72 6f 75 74 65 73 20 72 65 73 70 65 63 74 69 76 65 6c 79 2e 20 54 68 | tra-area.routes.respectively..Th |
| 130f00 | 65 20 64 69 73 74 61 6e 63 65 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 32 35 35 2e 00 54 68 | e.distance.range.is.1.to.255..Th |
| 130f20 | 69 73 20 63 6f 6d 6d 61 6e 64 20 63 68 61 6e 67 65 20 74 68 65 20 64 69 73 74 61 6e 63 65 20 76 | is.command.change.the.distance.v |
| 130f40 | 61 6c 75 65 20 6f 66 20 52 49 50 2e 20 54 68 65 20 64 69 73 74 61 6e 63 65 20 72 61 6e 67 65 20 | alue.of.RIP..The.distance.range. |
| 130f60 | 69 73 20 31 20 74 6f 20 32 35 35 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 68 61 6e 67 65 | is.1.to.255..This.command.change |
| 130f80 | 73 20 74 68 65 20 65 42 47 50 20 62 65 68 61 76 69 6f 72 20 6f 66 20 46 52 52 2e 20 42 79 20 64 | s.the.eBGP.behavior.of.FRR..By.d |
| 130fa0 | 65 66 61 75 6c 74 20 46 52 52 20 65 6e 61 62 6c 65 73 20 3a 72 66 63 3a 60 38 32 31 32 60 20 66 | efault.FRR.enables.:rfc:`8212`.f |
| 130fc0 | 75 6e 63 74 69 6f 6e 61 6c 69 74 79 20 77 68 69 63 68 20 61 66 66 65 63 74 73 20 68 6f 77 20 65 | unctionality.which.affects.how.e |
| 130fe0 | 42 47 50 20 72 6f 75 74 65 73 20 61 72 65 20 61 64 76 65 72 74 69 73 65 64 2c 20 6e 61 6d 65 6c | BGP.routes.are.advertised,.namel |
| 131000 | 79 20 6e 6f 20 72 6f 75 74 65 73 20 61 72 65 20 61 64 76 65 72 74 69 73 65 64 20 61 63 72 6f 73 | y.no.routes.are.advertised.acros |
| 131020 | 73 20 65 42 47 50 20 73 65 73 73 69 6f 6e 73 20 77 69 74 68 6f 75 74 20 73 6f 6d 65 20 73 6f 72 | s.eBGP.sessions.without.some.sor |
| 131040 | 74 20 6f 66 20 65 67 72 65 73 73 20 72 6f 75 74 65 2d 6d 61 70 2f 70 6f 6c 69 63 79 20 69 6e 20 | t.of.egress.route-map/policy.in. |
| 131060 | 70 6c 61 63 65 2e 20 49 6e 20 56 79 4f 53 20 68 6f 77 65 76 65 72 20 77 65 20 68 61 76 65 20 74 | place..In.VyOS.however.we.have.t |
| 131080 | 68 69 73 20 52 46 43 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 20 64 69 73 61 62 6c 65 64 20 62 | his.RFC.functionality.disabled.b |
| 1310a0 | 79 20 64 65 66 61 75 6c 74 20 73 6f 20 74 68 61 74 20 77 65 20 63 61 6e 20 70 72 65 73 65 72 76 | y.default.so.that.we.can.preserv |
| 1310c0 | 65 20 62 61 63 6b 77 61 72 64 73 20 63 6f 6d 70 61 74 69 62 69 6c 69 74 79 20 77 69 74 68 20 6f | e.backwards.compatibility.with.o |
| 1310e0 | 6c 64 65 72 20 76 65 72 73 69 6f 6e 73 20 6f 66 20 56 79 4f 53 2e 20 57 69 74 68 20 74 68 69 73 | lder.versions.of.VyOS..With.this |
| 131100 | 20 6f 70 74 69 6f 6e 20 6f 6e 65 20 63 61 6e 20 65 6e 61 62 6c 65 20 3a 72 66 63 3a 60 38 32 31 | .option.one.can.enable.:rfc:`821 |
| 131120 | 32 60 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 20 74 6f 20 6f 70 65 72 61 74 65 2e 00 54 68 69 | 2`.functionality.to.operate..Thi |
| 131140 | 73 20 63 6f 6d 6d 61 6e 64 20 63 6f 6e 66 69 67 75 72 65 73 20 70 61 64 64 69 6e 67 20 6f 6e 20 | s.command.configures.padding.on. |
| 131160 | 68 65 6c 6c 6f 20 70 61 63 6b 65 74 73 20 74 6f 20 61 63 63 6f 6d 6d 6f 64 61 74 65 20 61 73 79 | hello.packets.to.accommodate.asy |
| 131180 | 6d 6d 65 74 72 69 63 61 6c 20 6d 61 78 69 6d 75 6d 20 74 72 61 6e 73 66 65 72 20 75 6e 69 74 73 | mmetrical.maximum.transfer.units |
| 1311a0 | 20 28 4d 54 55 73 29 20 66 72 6f 6d 20 64 69 66 66 65 72 65 6e 74 20 68 6f 73 74 73 20 61 73 20 | .(MTUs).from.different.hosts.as. |
| 1311c0 | 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 33 37 31 39 60 2e 20 54 68 69 73 20 68 | described.in.:rfc:`3719`..This.h |
| 1311e0 | 65 6c 70 73 20 74 6f 20 70 72 65 76 65 6e 74 20 61 20 70 72 65 6d 61 74 75 72 65 20 61 64 6a 61 | elps.to.prevent.a.premature.adja |
| 131200 | 63 65 6e 63 79 20 55 70 20 73 74 61 74 65 20 77 68 65 6e 20 6f 6e 65 20 72 6f 75 74 69 6e 67 20 | cency.Up.state.when.one.routing. |
| 131220 | 64 65 76 69 63 65 73 20 4d 54 55 20 64 6f 65 73 20 6e 6f 74 20 6d 65 65 74 20 74 68 65 20 72 65 | devices.MTU.does.not.meet.the.re |
| 131240 | 71 75 69 72 65 6d 65 6e 74 73 20 74 6f 20 65 73 74 61 62 6c 69 73 68 20 74 68 65 20 61 64 6a 61 | quirements.to.establish.the.adja |
| 131260 | 63 65 6e 63 79 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 6f 6e 66 69 67 75 72 65 73 20 74 | cency..This.command.configures.t |
| 131280 | 68 65 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 70 61 73 73 77 6f 72 64 20 66 6f 72 20 61 | he.authentication.password.for.a |
| 1312a0 | 20 72 6f 75 74 69 6e 67 20 64 6f 6d 61 69 6e 2c 20 61 73 20 63 6c 65 61 72 20 74 65 78 74 20 6f | .routing.domain,.as.clear.text.o |
| 1312c0 | 72 20 6d 64 35 20 6f 6e 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 6f 6e 66 69 67 75 72 | r.md5.one..This.command.configur |
| 1312e0 | 65 73 20 74 68 65 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 70 61 73 73 77 6f 72 64 20 66 | es.the.authentication.password.f |
| 131300 | 6f 72 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 | or.the.interface..This.command.c |
| 131320 | 6f 6e 66 69 67 75 72 65 73 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 73 69 7a 65 20 6f 66 20 67 65 | onfigures.the.maximum.size.of.ge |
| 131340 | 6e 65 72 61 74 65 64 20 3a 61 62 62 72 3a 60 4c 53 50 73 20 28 4c 69 6e 6b 20 53 74 61 74 65 20 | nerated.:abbr:`LSPs.(Link.State. |
| 131360 | 50 44 55 73 29 60 2c 20 69 6e 20 62 79 74 65 73 2e 20 54 68 65 20 73 69 7a 65 20 72 61 6e 67 65 | PDUs)`,.in.bytes..The.size.range |
| 131380 | 20 69 73 20 31 32 38 20 74 6f 20 34 33 35 32 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 6f | .is.128.to.4352..This.command.co |
| 1313a0 | 6e 66 69 67 75 72 65 73 20 74 68 65 20 70 61 73 73 69 76 65 20 6d 6f 64 65 20 66 6f 72 20 74 68 | nfigures.the.passive.mode.for.th |
| 1313c0 | 69 73 20 69 6e 74 65 72 66 61 63 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 72 65 61 74 | is.interface..This.command.creat |
| 1313e0 | 65 73 20 61 20 6e 65 77 20 6e 65 69 67 68 62 6f 72 20 77 68 6f 73 65 20 72 65 6d 6f 74 65 2d 61 | es.a.new.neighbor.whose.remote-a |
| 131400 | 73 20 69 73 20 3c 6e 61 73 6e 3e 2e 20 54 68 65 20 6e 65 69 67 68 62 6f 72 20 61 64 64 72 65 73 | s.is.<nasn>..The.neighbor.addres |
| 131420 | 73 20 63 61 6e 20 62 65 20 61 6e 20 49 50 76 34 20 61 64 64 72 65 73 73 20 6f 72 20 61 6e 20 49 | s.can.be.an.IPv4.address.or.an.I |
| 131440 | 50 76 36 20 61 64 64 72 65 73 73 20 6f 72 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 75 | Pv6.address.or.an.interface.to.u |
| 131460 | 73 65 20 66 6f 72 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 20 54 68 65 20 63 6f 6d 6d 61 | se.for.the.connection..The.comma |
| 131480 | 6e 64 20 69 73 20 61 70 70 6c 69 63 61 62 6c 65 20 66 6f 72 20 70 65 65 72 20 61 6e 64 20 70 65 | nd.is.applicable.for.peer.and.pe |
| 1314a0 | 65 72 20 67 72 6f 75 70 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 72 65 61 74 65 73 20 61 | er.group..This.command.creates.a |
| 1314c0 | 20 6e 65 77 20 72 6f 75 74 65 2d 6d 61 70 20 70 6f 6c 69 63 79 2c 20 69 64 65 6e 74 69 66 69 65 | .new.route-map.policy,.identifie |
| 1314e0 | 64 20 62 79 20 3c 74 65 78 74 3e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 72 65 61 74 65 | d.by.<text>..This.command.create |
| 131500 | 73 20 61 20 6e 65 77 20 72 75 6c 65 20 69 6e 20 74 68 65 20 49 50 76 36 20 61 63 63 65 73 73 20 | s.a.new.rule.in.the.IPv6.access. |
| 131520 | 6c 69 73 74 20 61 6e 64 20 64 65 66 69 6e 65 73 20 61 6e 20 61 63 74 69 6f 6e 2e 00 54 68 69 73 | list.and.defines.an.action..This |
| 131540 | 20 63 6f 6d 6d 61 6e 64 20 63 72 65 61 74 65 73 20 61 20 6e 65 77 20 72 75 6c 65 20 69 6e 20 74 | .command.creates.a.new.rule.in.t |
| 131560 | 68 65 20 49 50 76 36 20 70 72 65 66 69 78 2d 6c 69 73 74 20 61 6e 64 20 64 65 66 69 6e 65 73 20 | he.IPv6.prefix-list.and.defines. |
| 131580 | 61 6e 20 61 63 74 69 6f 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 72 65 61 74 65 73 20 | an.action..This.command.creates. |
| 1315a0 | 61 20 6e 65 77 20 72 75 6c 65 20 69 6e 20 74 68 65 20 61 63 63 65 73 73 20 6c 69 73 74 20 61 6e | a.new.rule.in.the.access.list.an |
| 1315c0 | 64 20 64 65 66 69 6e 65 73 20 61 6e 20 61 63 74 69 6f 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e | d.defines.an.action..This.comman |
| 1315e0 | 64 20 63 72 65 61 74 65 73 20 61 20 6e 65 77 20 72 75 6c 65 20 69 6e 20 74 68 65 20 70 72 65 66 | d.creates.a.new.rule.in.the.pref |
| 131600 | 69 78 2d 6c 69 73 74 20 61 6e 64 20 64 65 66 69 6e 65 73 20 61 6e 20 61 63 74 69 6f 6e 2e 00 54 | ix-list.and.defines.an.action..T |
| 131620 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 72 65 61 74 65 73 20 74 68 65 20 6e 65 77 20 49 50 76 36 | his.command.creates.the.new.IPv6 |
| 131640 | 20 61 63 63 65 73 73 20 6c 69 73 74 2c 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 3c 74 65 78 | .access.list,.identified.by.<tex |
| 131660 | 74 3e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 72 65 61 74 65 73 20 74 68 65 20 6e 65 77 20 | t>.This.command.creates.the.new. |
| 131680 | 49 50 76 36 20 70 72 65 66 69 78 2d 6c 69 73 74 20 70 6f 6c 69 63 79 2c 20 69 64 65 6e 74 69 66 | IPv6.prefix-list.policy,.identif |
| 1316a0 | 69 65 64 20 62 79 20 3c 74 65 78 74 3e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 72 65 61 | ied.by.<text>..This.command.crea |
| 1316c0 | 74 65 73 20 74 68 65 20 6e 65 77 20 61 63 63 65 73 73 20 6c 69 73 74 20 70 6f 6c 69 63 79 2c 20 | tes.the.new.access.list.policy,. |
| 1316e0 | 77 68 65 72 65 20 3c 61 63 6c 5f 6e 75 6d 62 65 72 3e 20 6d 75 73 74 20 62 65 20 61 20 6e 75 6d | where.<acl_number>.must.be.a.num |
| 131700 | 62 65 72 20 66 72 6f 6d 20 31 20 74 6f 20 32 36 39 39 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 | ber.from.1.to.2699..This.command |
| 131720 | 20 63 72 65 61 74 65 73 20 74 68 65 20 6e 65 77 20 70 72 65 66 69 78 2d 6c 69 73 74 20 70 6f 6c | .creates.the.new.prefix-list.pol |
| 131740 | 69 63 79 2c 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 3c 74 65 78 74 3e 2e 00 54 68 69 73 20 | icy,.identified.by.<text>..This. |
| 131760 | 63 6f 6d 6d 61 6e 64 20 64 65 66 69 6e 65 73 20 61 20 6e 65 77 20 70 65 65 72 20 67 72 6f 75 70 | command.defines.a.new.peer.group |
| 131780 | 2e 20 59 6f 75 20 63 61 6e 20 73 70 65 63 69 66 79 20 74 6f 20 74 68 65 20 67 72 6f 75 70 20 74 | ..You.can.specify.to.the.group.t |
| 1317a0 | 68 65 20 73 61 6d 65 20 70 61 72 61 6d 65 74 65 72 73 20 74 68 61 74 20 79 6f 75 20 63 61 6e 20 | he.same.parameters.that.you.can. |
| 1317c0 | 73 70 65 63 69 66 79 20 66 6f 72 20 73 70 65 63 69 66 69 63 20 6e 65 69 67 68 62 6f 72 73 2e 00 | specify.for.specific.neighbors.. |
| 1317e0 | 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 65 66 69 6e 65 73 20 6d 61 74 63 68 69 6e 67 20 70 61 | This.command.defines.matching.pa |
| 131800 | 72 61 6d 65 74 65 72 73 20 66 6f 72 20 49 50 76 36 20 61 63 63 65 73 73 20 6c 69 73 74 20 72 75 | rameters.for.IPv6.access.list.ru |
| 131820 | 6c 65 2e 20 4d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 20 63 6f 75 6c 64 20 62 65 20 61 | le..Matching.criteria.could.be.a |
| 131840 | 70 70 6c 69 65 64 20 74 6f 20 73 6f 75 72 63 65 20 70 61 72 61 6d 65 74 65 72 73 3a 00 54 68 69 | pplied.to.source.parameters:.Thi |
| 131860 | 73 20 63 6f 6d 6d 61 6e 64 20 64 65 66 69 6e 65 73 20 6d 61 74 63 68 69 6e 67 20 70 61 72 61 6d | s.command.defines.matching.param |
| 131880 | 65 74 65 72 73 20 66 6f 72 20 61 63 63 65 73 73 20 6c 69 73 74 20 72 75 6c 65 2e 20 4d 61 74 63 | eters.for.access.list.rule..Matc |
| 1318a0 | 68 69 6e 67 20 63 72 69 74 65 72 69 61 20 63 6f 75 6c 64 20 62 65 20 61 70 70 6c 69 65 64 20 74 | hing.criteria.could.be.applied.t |
| 1318c0 | 6f 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 6f 72 20 73 6f 75 72 63 65 20 70 61 72 61 6d 65 74 65 | o.destination.or.source.paramete |
| 1318e0 | 72 73 3a 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 65 66 69 6e 65 73 20 74 68 65 20 49 53 2d | rs:.This.command.defines.the.IS- |
| 131900 | 49 53 20 72 6f 75 74 65 72 20 62 65 68 61 76 69 6f 72 3a 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 | IS.router.behavior:.This.command |
| 131920 | 20 64 65 66 69 6e 65 73 20 74 68 65 20 61 63 63 75 6d 75 6c 61 74 65 64 20 70 65 6e 61 6c 74 79 | .defines.the.accumulated.penalty |
| 131940 | 20 61 6d 6f 75 6e 74 20 61 74 20 77 68 69 63 68 20 74 68 65 20 72 6f 75 74 65 20 69 73 20 72 65 | .amount.at.which.the.route.is.re |
| 131960 | 2d 61 64 76 65 72 74 69 73 65 64 2e 20 54 68 65 20 70 65 6e 61 6c 74 79 20 72 61 6e 67 65 20 69 | -advertised..The.penalty.range.i |
| 131980 | 73 20 31 20 74 6f 20 32 30 30 30 30 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 65 66 69 6e | s.1.to.20000..This.command.defin |
| 1319a0 | 65 73 20 74 68 65 20 61 63 63 75 6d 75 6c 61 74 65 64 20 70 65 6e 61 6c 74 79 20 61 6d 6f 75 6e | es.the.accumulated.penalty.amoun |
| 1319c0 | 74 20 61 74 20 77 68 69 63 68 20 74 68 65 20 72 6f 75 74 65 20 69 73 20 73 75 70 70 72 65 73 73 | t.at.which.the.route.is.suppress |
| 1319e0 | 65 64 2e 20 54 68 65 20 70 65 6e 61 6c 74 79 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 32 30 | ed..The.penalty.range.is.1.to.20 |
| 131a00 | 30 30 30 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 65 66 69 6e 65 73 20 74 68 65 20 61 6d | 000..This.command.defines.the.am |
| 131a20 | 6f 75 6e 74 20 6f 66 20 74 69 6d 65 20 69 6e 20 6d 69 6e 75 74 65 73 20 61 66 74 65 72 20 77 68 | ount.of.time.in.minutes.after.wh |
| 131a40 | 69 63 68 20 61 20 70 65 6e 61 6c 74 79 20 69 73 20 72 65 64 75 63 65 64 20 62 79 20 68 61 6c 66 | ich.a.penalty.is.reduced.by.half |
| 131a60 | 2e 20 54 68 65 20 74 69 6d 65 72 20 72 61 6e 67 65 20 69 73 20 31 30 20 74 6f 20 34 35 20 6d 69 | ..The.timer.range.is.10.to.45.mi |
| 131a80 | 6e 75 74 65 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 65 66 69 6e 65 73 20 74 68 65 20 | nutes..This.command.defines.the. |
| 131aa0 | 6d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 70 61 72 61 6c 6c 65 6c 20 72 6f 75 74 65 | maximum.number.of.parallel.route |
| 131ac0 | 73 20 74 68 61 74 20 74 68 65 20 42 47 50 20 63 61 6e 20 73 75 70 70 6f 72 74 2e 20 49 6e 20 6f | s.that.the.BGP.can.support..In.o |
| 131ae0 | 72 64 65 72 20 66 6f 72 20 42 47 50 20 74 6f 20 75 73 65 20 74 68 65 20 73 65 63 6f 6e 64 20 70 | rder.for.BGP.to.use.the.second.p |
| 131b00 | 61 74 68 2c 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 61 74 74 72 69 62 75 74 65 73 20 68 61 | ath,.the.following.attributes.ha |
| 131b20 | 76 65 20 74 6f 20 6d 61 74 63 68 3a 20 57 65 69 67 68 74 2c 20 4c 6f 63 61 6c 20 50 72 65 66 65 | ve.to.match:.Weight,.Local.Prefe |
| 131b40 | 72 65 6e 63 65 2c 20 41 53 20 50 61 74 68 20 28 62 6f 74 68 20 41 53 20 6e 75 6d 62 65 72 20 61 | rence,.AS.Path.(both.AS.number.a |
| 131b60 | 6e 64 20 41 53 20 70 61 74 68 20 6c 65 6e 67 74 68 29 2c 20 4f 72 69 67 69 6e 20 63 6f 64 65 2c | nd.AS.path.length),.Origin.code, |
| 131b80 | 20 4d 45 44 2c 20 49 47 50 20 6d 65 74 72 69 63 2e 20 41 6c 73 6f 2c 20 74 68 65 20 6e 65 78 74 | .MED,.IGP.metric..Also,.the.next |
| 131ba0 | 20 68 6f 70 20 61 64 64 72 65 73 73 20 66 6f 72 20 65 61 63 68 20 70 61 74 68 20 6d 75 73 74 20 | .hop.address.for.each.path.must. |
| 131bc0 | 62 65 20 64 69 66 66 65 72 65 6e 74 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 65 66 69 6e | be.different..This.command.defin |
| 131be0 | 65 73 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 74 69 6d 65 20 69 6e 20 6d 69 6e 75 74 65 73 20 74 | es.the.maximum.time.in.minutes.t |
| 131c00 | 68 61 74 20 61 20 72 6f 75 74 65 20 69 73 20 73 75 70 70 72 65 73 73 65 64 2e 20 54 68 65 20 74 | hat.a.route.is.suppressed..The.t |
| 131c20 | 69 6d 65 72 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 32 35 35 20 6d 69 6e 75 74 65 73 2e 00 | imer.range.is.1.to.255.minutes.. |
| 131c40 | 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 61 62 6c 65 20 74 68 65 20 70 65 65 72 20 6f 72 | This.command.disable.the.peer.or |
| 131c60 | 20 70 65 65 72 20 67 72 6f 75 70 2e 20 54 6f 20 72 65 65 6e 61 62 6c 65 20 74 68 65 20 70 65 65 | .peer.group..To.reenable.the.pee |
| 131c80 | 72 20 75 73 65 20 74 68 65 20 64 65 6c 65 74 65 20 66 6f 72 6d 20 6f 66 20 74 68 69 73 20 63 6f | r.use.the.delete.form.of.this.co |
| 131ca0 | 6d 6d 61 6e 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 61 62 6c 65 73 20 49 47 50 | mmand..This.command.disables.IGP |
| 131cc0 | 2d 4c 44 50 20 73 79 6e 63 20 66 6f 72 20 74 68 69 73 20 73 70 65 63 69 66 69 63 20 69 6e 74 65 | -LDP.sync.for.this.specific.inte |
| 131ce0 | 72 66 61 63 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 61 62 6c 65 73 20 54 68 72 | rface..This.command.disables.Thr |
| 131d00 | 65 65 2d 57 61 79 20 48 61 6e 64 73 68 61 6b 65 20 66 6f 72 20 50 32 50 20 61 64 6a 61 63 65 6e | ee-Way.Handshake.for.P2P.adjacen |
| 131d20 | 63 69 65 73 20 77 68 69 63 68 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 35 33 | cies.which.described.in.:rfc:`53 |
| 131d40 | 30 33 60 2e 20 54 68 72 65 65 2d 57 61 79 20 48 61 6e 64 73 68 61 6b 65 20 69 73 20 65 6e 61 62 | 03`..Three-Way.Handshake.is.enab |
| 131d60 | 6c 65 64 20 62 79 20 64 65 66 61 75 6c 74 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 | led.by.default..This.command.dis |
| 131d80 | 61 62 6c 65 73 20 63 68 65 63 6b 20 6f 66 20 74 68 65 20 4d 54 55 20 76 61 6c 75 65 20 69 6e 20 | ables.check.of.the.MTU.value.in. |
| 131da0 | 74 68 65 20 4f 53 50 46 20 44 42 44 20 70 61 63 6b 65 74 73 2e 20 54 68 75 73 2c 20 75 73 65 20 | the.OSPF.DBD.packets..Thus,.use. |
| 131dc0 | 6f 66 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 6c 6c 6f 77 73 20 74 68 65 20 4f 53 50 46 20 | of.this.command.allows.the.OSPF. |
| 131de0 | 61 64 6a 61 63 65 6e 63 79 20 74 6f 20 72 65 61 63 68 20 74 68 65 20 46 55 4c 4c 20 73 74 61 74 | adjacency.to.reach.the.FULL.stat |
| 131e00 | 65 20 65 76 65 6e 20 74 68 6f 75 67 68 20 74 68 65 72 65 20 69 73 20 61 6e 20 69 6e 74 65 72 66 | e.even.though.there.is.an.interf |
| 131e20 | 61 63 65 20 4d 54 55 20 6d 69 73 6d 61 74 63 68 20 62 65 74 77 65 65 6e 20 74 77 6f 20 4f 53 50 | ace.MTU.mismatch.between.two.OSP |
| 131e40 | 46 20 72 6f 75 74 65 72 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 61 62 6c 65 73 | F.routers..This.command.disables |
| 131e60 | 20 69 74 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 61 62 6c 65 73 20 72 6f 75 74 65 | .it..This.command.disables.route |
| 131e80 | 20 72 65 66 6c 65 63 74 69 6f 6e 20 62 65 74 77 65 65 6e 20 72 6f 75 74 65 20 72 65 66 6c 65 63 | .reflection.between.route.reflec |
| 131ea0 | 74 6f 72 20 63 6c 69 65 6e 74 73 2e 20 42 79 20 64 65 66 61 75 6c 74 2c 20 74 68 65 20 63 6c 69 | tor.clients..By.default,.the.cli |
| 131ec0 | 65 6e 74 73 20 6f 66 20 61 20 72 6f 75 74 65 20 72 65 66 6c 65 63 74 6f 72 20 61 72 65 20 6e 6f | ents.of.a.route.reflector.are.no |
| 131ee0 | 74 20 72 65 71 75 69 72 65 64 20 74 6f 20 62 65 20 66 75 6c 6c 79 20 6d 65 73 68 65 64 20 61 6e | t.required.to.be.fully.meshed.an |
| 131f00 | 64 20 74 68 65 20 72 6f 75 74 65 73 20 66 72 6f 6d 20 61 20 63 6c 69 65 6e 74 20 61 72 65 20 72 | d.the.routes.from.a.client.are.r |
| 131f20 | 65 66 6c 65 63 74 65 64 20 74 6f 20 6f 74 68 65 72 20 63 6c 69 65 6e 74 73 2e 20 48 6f 77 65 76 | eflected.to.other.clients..Howev |
| 131f40 | 65 72 2c 20 69 66 20 74 68 65 20 63 6c 69 65 6e 74 73 20 61 72 65 20 66 75 6c 6c 79 20 6d 65 73 | er,.if.the.clients.are.fully.mes |
| 131f60 | 68 65 64 2c 20 72 6f 75 74 65 20 72 65 66 6c 65 63 74 69 6f 6e 20 69 73 20 6e 6f 74 20 72 65 71 | hed,.route.reflection.is.not.req |
| 131f80 | 75 69 72 65 64 2e 20 49 6e 20 74 68 69 73 20 63 61 73 65 2c 20 75 73 65 20 74 68 65 20 3a 63 66 | uired..In.this.case,.use.the.:cf |
| 131fa0 | 67 63 6d 64 3a 60 6e 6f 2d 63 6c 69 65 6e 74 2d 74 6f 2d 63 6c 69 65 6e 74 2d 72 65 66 6c 65 63 | gcmd:`no-client-to-client-reflec |
| 131fc0 | 74 69 6f 6e 60 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 69 73 61 62 6c 65 20 63 6c 69 65 6e 74 2d | tion`.command.to.disable.client- |
| 131fe0 | 74 6f 2d 63 6c 69 65 6e 74 20 72 65 66 6c 65 63 74 69 6f 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 | to-client.reflection..This.comma |
| 132000 | 6e 64 20 64 69 73 61 62 6c 65 73 20 73 70 6c 69 74 2d 68 6f 72 69 7a 6f 6e 20 6f 6e 20 74 68 65 | nd.disables.split-horizon.on.the |
| 132020 | 20 69 6e 74 65 72 66 61 63 65 2e 20 42 79 20 64 65 66 61 75 6c 74 2c 20 56 79 4f 53 20 64 6f 65 | .interface..By.default,.VyOS.doe |
| 132040 | 73 20 6e 6f 74 20 61 64 76 65 72 74 69 73 65 20 52 49 50 20 72 6f 75 74 65 73 20 6f 75 74 20 74 | s.not.advertise.RIP.routes.out.t |
| 132060 | 68 65 20 69 6e 74 65 72 66 61 63 65 20 6f 76 65 72 20 77 68 69 63 68 20 74 68 65 79 20 77 65 72 | he.interface.over.which.they.wer |
| 132080 | 65 20 6c 65 61 72 6e 65 64 20 28 73 70 6c 69 74 20 68 6f 72 69 7a 6f 6e 29 2e 33 00 54 68 69 73 | e.learned.(split.horizon).3.This |
| 1320a0 | 20 63 6f 6d 6d 61 6e 64 20 64 69 73 61 62 6c 65 73 20 74 68 65 20 6c 6f 61 64 20 73 68 61 72 69 | .command.disables.the.load.shari |
| 1320c0 | 6e 67 20 61 63 72 6f 73 73 20 6d 75 6c 74 69 70 6c 65 20 4c 46 41 20 62 61 63 6b 75 70 73 2e 00 | ng.across.multiple.LFA.backups.. |
| 1320e0 | 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 42 47 50 20 64 61 6d 70 65 6e | This.command.displays.BGP.dampen |
| 132100 | 65 64 20 72 6f 75 74 65 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 | ed.routes..This.command.displays |
| 132120 | 20 42 47 50 20 72 65 63 65 69 76 65 64 2d 72 6f 75 74 65 73 20 74 68 61 74 20 61 72 65 20 61 63 | .BGP.received-routes.that.are.ac |
| 132140 | 63 65 70 74 65 64 20 61 66 74 65 72 20 66 69 6c 74 65 72 69 6e 67 2e 00 54 68 69 73 20 63 6f 6d | cepted.after.filtering..This.com |
| 132160 | 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 42 47 50 20 72 6f 75 74 65 73 20 61 64 76 65 72 74 69 | mand.displays.BGP.routes.adverti |
| 132180 | 73 65 64 20 74 6f 20 61 20 6e 65 69 67 68 62 6f 72 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 | sed.to.a.neighbor..This.command. |
| 1321a0 | 64 69 73 70 6c 61 79 73 20 42 47 50 20 72 6f 75 74 65 73 20 61 6c 6c 6f 77 65 64 20 62 79 20 74 | displays.BGP.routes.allowed.by.t |
| 1321c0 | 68 65 20 73 70 65 63 69 66 69 65 64 20 41 53 20 50 61 74 68 20 61 63 63 65 73 73 20 6c 69 73 74 | he.specified.AS.Path.access.list |
| 1321e0 | 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 42 47 50 20 72 6f 75 74 | ..This.command.displays.BGP.rout |
| 132200 | 65 73 20 6f 72 69 67 69 6e 61 74 69 6e 67 20 66 72 6f 6d 20 74 68 65 20 73 70 65 63 69 66 69 65 | es.originating.from.the.specifie |
| 132220 | 64 20 42 47 50 20 6e 65 69 67 68 62 6f 72 20 62 65 66 6f 72 65 20 69 6e 62 6f 75 6e 64 20 70 6f | d.BGP.neighbor.before.inbound.po |
| 132240 | 6c 69 63 79 20 69 73 20 61 70 70 6c 69 65 64 2e 20 54 6f 20 75 73 65 20 74 68 69 73 20 63 6f 6d | licy.is.applied..To.use.this.com |
| 132260 | 6d 61 6e 64 20 69 6e 62 6f 75 6e 64 20 73 6f 66 74 20 72 65 63 6f 6e 66 69 67 75 72 61 74 69 6f | mand.inbound.soft.reconfiguratio |
| 132280 | 6e 20 6d 75 73 74 20 62 65 20 65 6e 61 62 6c 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 | n.must.be.enabled..This.command. |
| 1322a0 | 64 69 73 70 6c 61 79 73 20 4c 53 41 73 20 69 6e 20 4d 61 78 41 67 65 20 6c 69 73 74 2e 00 54 68 | displays.LSAs.in.MaxAge.list..Th |
| 1322c0 | 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 52 49 50 20 72 6f 75 74 65 73 2e 00 | is.command.displays.RIP.routes.. |
| 1322e0 | 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 61 20 64 61 74 61 62 61 73 65 | This.command.displays.a.database |
| 132300 | 20 63 6f 6e 74 65 6e 74 73 20 66 6f 72 20 61 20 73 70 65 63 69 66 69 63 20 6c 69 6e 6b 20 61 64 | .contents.for.a.specific.link.ad |
| 132320 | 76 65 72 74 69 73 65 6d 65 6e 74 20 74 79 70 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 | vertisement.type..This.command.d |
| 132340 | 69 73 70 6c 61 79 73 20 61 20 73 75 6d 6d 61 72 79 20 74 61 62 6c 65 20 77 69 74 68 20 61 20 64 | isplays.a.summary.table.with.a.d |
| 132360 | 61 74 61 62 61 73 65 20 63 6f 6e 74 65 6e 74 73 20 28 4c 53 41 29 2e 00 54 68 69 73 20 63 6f 6d | atabase.contents.(LSA)..This.com |
| 132380 | 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 61 20 74 61 62 6c 65 20 6f 66 20 70 61 74 68 73 20 74 | mand.displays.a.table.of.paths.t |
| 1323a0 | 6f 20 61 72 65 61 20 62 6f 75 6e 64 61 72 79 20 61 6e 64 20 61 75 74 6f 6e 6f 6d 6f 75 73 20 73 | o.area.boundary.and.autonomous.s |
| 1323c0 | 79 73 74 65 6d 20 62 6f 75 6e 64 61 72 79 20 72 6f 75 74 65 72 73 2e 00 54 68 69 73 20 63 6f 6d | ystem.boundary.routers..This.com |
| 1323e0 | 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 61 6c 6c 20 65 6e 74 72 69 65 73 20 69 6e 20 42 47 50 | mand.displays.all.entries.in.BGP |
| 132400 | 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 | .routing.table..This.command.dis |
| 132420 | 70 6c 61 79 73 20 64 61 6d 70 65 6e 65 64 20 72 6f 75 74 65 73 20 72 65 63 65 69 76 65 64 20 66 | plays.dampened.routes.received.f |
| 132440 | 72 6f 6d 20 42 47 50 20 6e 65 69 67 68 62 6f 72 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 | rom.BGP.neighbor..This.command.d |
| 132460 | 69 73 70 6c 61 79 73 20 65 78 74 65 72 6e 61 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 72 65 64 | isplays.external.information.red |
| 132480 | 69 73 74 72 69 62 75 74 65 64 20 69 6e 74 6f 20 4f 53 50 46 76 33 00 54 68 69 73 20 63 6f 6d 6d | istributed.into.OSPFv3.This.comm |
| 1324a0 | 61 6e 64 20 64 69 73 70 6c 61 79 73 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 42 | and.displays.information.about.B |
| 1324c0 | 47 50 20 72 6f 75 74 65 73 20 77 68 6f 73 65 20 41 53 20 70 61 74 68 20 6d 61 74 63 68 65 73 20 | GP.routes.whose.AS.path.matches. |
| 1324e0 | 74 68 65 20 73 70 65 63 69 66 69 65 64 20 72 65 67 75 6c 61 72 20 65 78 70 72 65 73 73 69 6f 6e | the.specified.regular.expression |
| 132500 | 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 69 6e 66 6f 72 6d 61 74 | ..This.command.displays.informat |
| 132520 | 69 6f 6e 20 61 62 6f 75 74 20 66 6c 61 70 70 69 6e 67 20 42 47 50 20 72 6f 75 74 65 73 2e 00 54 | ion.about.flapping.BGP.routes..T |
| 132540 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 69 6e 66 6f 72 6d 61 74 69 6f 6e | his.command.displays.information |
| 132560 | 20 61 62 6f 75 74 20 74 68 65 20 70 61 72 74 69 63 75 6c 61 72 20 65 6e 74 72 79 20 69 6e 20 74 | .about.the.particular.entry.in.t |
| 132580 | 68 65 20 42 47 50 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 | he.BGP.routing.table..This.comma |
| 1325a0 | 6e 64 20 64 69 73 70 6c 61 79 73 20 72 6f 75 74 65 73 20 74 68 61 74 20 61 72 65 20 70 65 72 6d | nd.displays.routes.that.are.perm |
| 1325c0 | 69 74 74 65 64 20 62 79 20 74 68 65 20 42 47 50 20 63 6f 6d 6d 75 6e 69 74 79 20 6c 69 73 74 2e | itted.by.the.BGP.community.list. |
| 1325e0 | 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 72 6f 75 74 65 73 20 74 68 | .This.command.displays.routes.th |
| 132600 | 61 74 20 62 65 6c 6f 6e 67 20 74 6f 20 73 70 65 63 69 66 69 65 64 20 42 47 50 20 63 6f 6d 6d 75 | at.belong.to.specified.BGP.commu |
| 132620 | 6e 69 74 69 65 73 2e 20 56 61 6c 69 64 20 76 61 6c 75 65 20 69 73 20 61 20 63 6f 6d 6d 75 6e 69 | nities..Valid.value.is.a.communi |
| 132640 | 74 79 20 6e 75 6d 62 65 72 20 69 6e 20 74 68 65 20 72 61 6e 67 65 20 66 72 6f 6d 20 31 20 74 6f | ty.number.in.the.range.from.1.to |
| 132660 | 20 34 32 39 34 39 36 37 32 30 30 2c 20 6f 72 20 41 41 3a 4e 4e 20 28 61 75 74 6f 6e 6f 6d 6f 75 | .4294967200,.or.AA:NN.(autonomou |
| 132680 | 73 20 73 79 73 74 65 6d 2d 63 6f 6d 6d 75 6e 69 74 79 20 6e 75 6d 62 65 72 2f 32 2d 62 79 74 65 | s.system-community.number/2-byte |
| 1326a0 | 20 6e 75 6d 62 65 72 29 2c 20 6e 6f 2d 65 78 70 6f 72 74 2c 20 6c 6f 63 61 6c 2d 61 73 2c 20 6f | .number),.no-export,.local-as,.o |
| 1326c0 | 72 20 6e 6f 2d 61 64 76 65 72 74 69 73 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 | r.no-advertise..This.command.dis |
| 1326e0 | 70 6c 61 79 73 20 72 6f 75 74 65 73 20 77 69 74 68 20 63 6c 61 73 73 6c 65 73 73 20 69 6e 74 65 | plays.routes.with.classless.inte |
| 132700 | 72 64 6f 6d 61 69 6e 20 72 6f 75 74 69 6e 67 20 28 43 49 44 52 29 2e 00 54 68 69 73 20 63 6f 6d | rdomain.routing.(CIDR)..This.com |
| 132720 | 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 73 74 61 74 65 20 61 6e 64 20 63 6f 6e 66 69 67 75 72 | mand.displays.state.and.configur |
| 132740 | 61 74 69 6f 6e 20 6f 66 20 4f 53 50 46 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 69 6e 74 65 | ation.of.OSPF.the.specified.inte |
| 132760 | 72 66 61 63 65 2c 20 6f 72 20 61 6c 6c 20 69 6e 74 65 72 66 61 63 65 73 20 69 66 20 6e 6f 20 69 | rface,.or.all.interfaces.if.no.i |
| 132780 | 6e 74 65 72 66 61 63 65 20 69 73 20 67 69 76 65 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 | nterface.is.given..This.command. |
| 1327a0 | 64 69 73 70 6c 61 79 73 20 73 74 61 74 65 20 61 6e 64 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e | displays.state.and.configuration |
| 1327c0 | 20 6f 66 20 4f 53 50 46 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 69 6e 74 65 72 66 61 63 65 | .of.OSPF.the.specified.interface |
| 1327e0 | 2c 20 6f 72 20 61 6c 6c 20 69 6e 74 65 72 66 61 63 65 73 20 69 66 20 6e 6f 20 69 6e 74 65 72 66 | ,.or.all.interfaces.if.no.interf |
| 132800 | 61 63 65 20 69 73 20 67 69 76 65 6e 2e 20 57 68 69 74 68 20 74 68 65 20 61 72 67 75 6d 65 6e 74 | ace.is.given..Whith.the.argument |
| 132820 | 20 3a 63 66 67 63 6d 64 3a 60 70 72 65 66 69 78 60 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 | .:cfgcmd:`prefix`.this.command.s |
| 132840 | 68 6f 77 73 20 63 6f 6e 6e 65 63 74 65 64 20 70 72 65 66 69 78 65 73 20 74 6f 20 61 64 76 65 72 | hows.connected.prefixes.to.adver |
| 132860 | 74 69 73 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 74 68 65 20 | tise..This.command.displays.the. |
| 132880 | 4f 53 50 46 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 2c 20 61 73 20 64 65 74 65 72 6d 69 6e 65 | OSPF.routing.table,.as.determine |
| 1328a0 | 64 20 62 79 20 74 68 65 20 6d 6f 73 74 20 72 65 63 65 6e 74 20 53 50 46 20 63 61 6c 63 75 6c 61 | d.by.the.most.recent.SPF.calcula |
| 1328c0 | 74 69 6f 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 74 68 65 20 | tion..This.command.displays.the. |
| 1328e0 | 4f 53 50 46 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 2c 20 61 73 20 64 65 74 65 72 6d 69 6e 65 | OSPF.routing.table,.as.determine |
| 132900 | 64 20 62 79 20 74 68 65 20 6d 6f 73 74 20 72 65 63 65 6e 74 20 53 50 46 20 63 61 6c 63 75 6c 61 | d.by.the.most.recent.SPF.calcula |
| 132920 | 74 69 6f 6e 2e 20 57 69 74 68 20 74 68 65 20 6f 70 74 69 6f 6e 61 6c 20 3a 63 66 67 63 6d 64 3a | tion..With.the.optional.:cfgcmd: |
| 132940 | 60 64 65 74 61 69 6c 60 20 61 72 67 75 6d 65 6e 74 2c 20 65 61 63 68 20 72 6f 75 74 65 20 69 74 | `detail`.argument,.each.route.it |
| 132960 | 65 6d 27 73 20 61 64 76 65 72 74 69 73 65 72 20 72 6f 75 74 65 72 20 61 6e 64 20 6e 65 74 77 6f | em's.advertiser.router.and.netwo |
| 132980 | 72 6b 20 61 74 74 72 69 62 75 74 65 20 77 69 6c 6c 20 62 65 20 73 68 6f 77 6e 2e 00 54 68 69 73 | rk.attribute.will.be.shown..This |
| 1329a0 | 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 74 68 65 20 6e 65 69 67 68 62 6f 72 20 44 | .command.displays.the.neighbor.D |
| 1329c0 | 52 20 63 68 6f 69 63 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 | R.choice.information..This.comma |
| 1329e0 | 6e 64 20 64 69 73 70 6c 61 79 73 20 74 68 65 20 6e 65 69 67 68 62 6f 72 73 20 69 6e 66 6f 72 6d | nd.displays.the.neighbors.inform |
| 132a00 | 61 74 69 6f 6e 20 69 6e 20 61 20 64 65 74 61 69 6c 65 64 20 66 6f 72 6d 20 66 6f 72 20 61 20 6e | ation.in.a.detailed.form.for.a.n |
| 132a20 | 65 69 67 68 62 6f 72 20 77 68 6f 73 65 20 49 50 20 61 64 64 72 65 73 73 20 69 73 20 73 70 65 63 | eighbor.whose.IP.address.is.spec |
| 132a40 | 69 66 69 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 74 68 65 | ified..This.command.displays.the |
| 132a60 | 20 6e 65 69 67 68 62 6f 72 73 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 69 6e 20 61 20 64 65 74 61 | .neighbors.information.in.a.deta |
| 132a80 | 69 6c 65 64 20 66 6f 72 6d 2c 20 6e 6f 74 20 6a 75 73 74 20 61 20 73 75 6d 6d 61 72 79 20 74 61 | iled.form,.not.just.a.summary.ta |
| 132aa0 | 62 6c 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 74 68 65 20 6e | ble..This.command.displays.the.n |
| 132ac0 | 65 69 67 68 62 6f 72 73 20 73 74 61 74 75 73 20 66 6f 72 20 61 20 6e 65 69 67 68 62 6f 72 20 6f | eighbors.status.for.a.neighbor.o |
| 132ae0 | 6e 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 69 6e 74 65 72 66 61 63 65 2e 00 54 68 69 73 20 | n.the.specified.interface..This. |
| 132b00 | 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 74 68 65 20 6e 65 69 67 68 62 6f 72 73 20 73 | command.displays.the.neighbors.s |
| 132b20 | 74 61 74 75 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 74 68 65 | tatus..This.command.displays.the |
| 132b40 | 20 73 74 61 74 75 73 20 6f 66 20 61 6c 6c 20 42 47 50 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2e 00 | .status.of.all.BGP.connections.. |
| 132b60 | 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 65 6e 61 62 6c 65 20 6c 6f 67 67 69 6e 67 20 6e 65 69 67 | This.command.enable.logging.neig |
| 132b80 | 68 62 6f 72 20 75 70 2f 64 6f 77 6e 20 63 68 61 6e 67 65 73 20 61 6e 64 20 72 65 73 65 74 20 72 | hbor.up/down.changes.and.reset.r |
| 132ba0 | 65 61 73 6f 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 65 6e 61 62 6c 65 2f 64 69 73 61 62 | eason..This.command.enable/disab |
| 132bc0 | 6c 65 73 20 73 75 6d 6d 61 72 69 73 61 74 69 6f 6e 20 66 6f 72 20 74 68 65 20 63 6f 6e 66 69 67 | les.summarisation.for.the.config |
| 132be0 | 75 72 65 64 20 61 64 64 72 65 73 73 20 72 61 6e 67 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 | ured.address.range..This.command |
| 132c00 | 20 65 6e 61 62 6c 65 73 20 3a 61 62 62 72 3a 60 42 46 44 20 28 42 69 64 69 72 65 63 74 69 6f 6e | .enables.:abbr:`BFD.(Bidirection |
| 132c20 | 61 6c 20 46 6f 72 77 61 72 64 69 6e 67 20 44 65 74 65 63 74 69 6f 6e 29 60 20 6f 6e 20 74 68 69 | al.Forwarding.Detection)`.on.thi |
| 132c40 | 73 20 4f 53 50 46 20 6c 69 6e 6b 20 69 6e 74 65 72 66 61 63 65 2e 00 54 68 69 73 20 63 6f 6d 6d | s.OSPF.link.interface..This.comm |
| 132c60 | 61 6e 64 20 65 6e 61 62 6c 65 73 20 3a 72 66 63 3a 60 36 32 33 32 60 20 70 75 72 67 65 20 6f 72 | and.enables.:rfc:`6232`.purge.or |
| 132c80 | 69 67 69 6e 61 74 6f 72 20 69 64 65 6e 74 69 66 69 63 61 74 69 6f 6e 2e 00 54 68 69 73 20 63 6f | iginator.identification..This.co |
| 132ca0 | 6d 6d 61 6e 64 20 65 6e 61 62 6c 65 73 20 3a 72 66 63 3a 60 36 32 33 32 60 20 70 75 72 67 65 20 | mmand.enables.:rfc:`6232`.purge. |
| 132cc0 | 6f 72 69 67 69 6e 61 74 6f 72 20 69 64 65 6e 74 69 66 69 63 61 74 69 6f 6e 2e 20 45 6e 61 62 6c | originator.identification..Enabl |
| 132ce0 | 65 20 70 75 72 67 65 20 6f 72 69 67 69 6e 61 74 6f 72 20 69 64 65 6e 74 69 66 69 63 61 74 69 6f | e.purge.originator.identificatio |
| 132d00 | 6e 20 28 50 4f 49 29 20 62 79 20 61 64 64 69 6e 67 20 74 68 65 20 74 79 70 65 2c 20 6c 65 6e 67 | n.(POI).by.adding.the.type,.leng |
| 132d20 | 74 68 20 61 6e 64 20 76 61 6c 75 65 20 28 54 4c 56 29 20 77 69 74 68 20 74 68 65 20 49 6e 74 65 | th.and.value.(TLV).with.the.Inte |
| 132d40 | 72 6d 65 64 69 61 74 65 20 53 79 73 74 65 6d 20 28 49 53 29 20 69 64 65 6e 74 69 66 69 63 61 74 | rmediate.System.(IS).identificat |
| 132d60 | 69 6f 6e 20 74 6f 20 74 68 65 20 4c 53 50 73 20 74 68 61 74 20 64 6f 20 6e 6f 74 20 63 6f 6e 74 | ion.to.the.LSPs.that.do.not.cont |
| 132d80 | 61 69 6e 20 50 4f 49 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2e 20 49 66 20 61 6e 20 49 53 20 67 65 | ain.POI.information..If.an.IS.ge |
| 132da0 | 6e 65 72 61 74 65 73 20 61 20 70 75 72 67 65 2c 20 56 79 4f 53 20 61 64 64 73 20 74 68 69 73 20 | nerates.a.purge,.VyOS.adds.this. |
| 132dc0 | 54 4c 56 20 77 69 74 68 20 74 68 65 20 73 79 73 74 65 6d 20 49 44 20 6f 66 20 74 68 65 20 49 53 | TLV.with.the.system.ID.of.the.IS |
| 132de0 | 20 74 6f 20 74 68 65 20 70 75 72 67 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 65 6e 61 62 | .to.the.purge..This.command.enab |
| 132e00 | 6c 65 73 20 49 50 20 66 61 73 74 20 72 65 2d 72 6f 75 74 69 6e 67 20 74 68 61 74 20 69 73 20 70 | les.IP.fast.re-routing.that.is.p |
| 132e20 | 61 72 74 20 6f 66 20 3a 72 66 63 3a 60 35 32 38 36 60 2e 20 53 70 65 63 69 66 69 63 61 6c 6c 79 | art.of.:rfc:`5286`..Specifically |
| 132e40 | 20 74 68 69 73 20 69 73 20 61 20 70 72 65 66 69 78 20 6c 69 73 74 20 77 68 69 63 68 20 72 65 66 | .this.is.a.prefix.list.which.ref |
| 132e60 | 65 72 65 6e 63 65 73 20 61 20 70 72 65 66 69 78 20 69 6e 20 77 68 69 63 68 20 77 69 6c 6c 20 73 | erences.a.prefix.in.which.will.s |
| 132e80 | 65 6c 65 63 74 20 65 6c 69 67 69 62 6c 65 20 50 51 20 6e 6f 64 65 73 20 66 6f 72 20 72 65 6d 6f | elect.eligible.PQ.nodes.for.remo |
| 132ea0 | 74 65 20 4c 46 41 20 62 61 63 6b 75 70 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 65 6e 61 | te.LFA.backups..This.command.ena |
| 132ec0 | 62 6c 65 73 20 49 53 2d 49 53 20 6f 6e 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 2c 20 61 6e | bles.IS-IS.on.this.interface,.an |
| 132ee0 | 64 20 61 6c 6c 6f 77 73 20 66 6f 72 20 61 64 6a 61 63 65 6e 63 79 20 74 6f 20 6f 63 63 75 72 2e | d.allows.for.adjacency.to.occur. |
| 132f00 | 20 4e 6f 74 65 20 74 68 61 74 20 74 68 65 20 6e 61 6d 65 20 6f 66 20 49 53 2d 49 53 20 69 6e 73 | .Note.that.the.name.of.IS-IS.ins |
| 132f20 | 74 61 6e 63 65 20 6d 75 73 74 20 62 65 20 74 68 65 20 73 61 6d 65 20 61 73 20 74 68 65 20 6f 6e | tance.must.be.the.same.as.the.on |
| 132f40 | 65 20 75 73 65 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 49 53 2d 49 53 20 70 72 | e.used.to.configure.the.IS-IS.pr |
| 132f60 | 6f 63 65 73 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 65 6e 61 62 6c 65 73 20 4f 70 65 6e | ocess..This.command.enables.Open |
| 132f80 | 46 61 62 72 69 63 20 69 6e 73 74 61 6e 63 65 20 77 69 74 68 20 3c 4e 41 4d 45 3e 20 6f 6e 20 74 | Fabric.instance.with.<NAME>.on.t |
| 132fa0 | 68 69 73 20 69 6e 74 65 72 66 61 63 65 2c 20 61 6e 64 20 61 6c 6c 6f 77 73 20 66 6f 72 20 61 64 | his.interface,.and.allows.for.ad |
| 132fc0 | 6a 61 63 65 6e 63 79 20 74 6f 20 6f 63 63 75 72 20 66 6f 72 20 61 64 64 72 65 73 73 20 66 61 6d | jacency.to.occur.for.address.fam |
| 132fe0 | 69 6c 79 20 28 49 50 76 34 20 6f 72 20 49 50 76 36 20 6f 72 20 62 6f 74 68 29 2e 00 54 68 69 73 | ily.(IPv4.or.IPv6.or.both)..This |
| 133000 | 20 63 6f 6d 6d 61 6e 64 20 65 6e 61 62 6c 65 73 20 52 49 50 20 61 6e 64 20 73 65 74 73 20 74 68 | .command.enables.RIP.and.sets.th |
| 133020 | 65 20 52 49 50 20 65 6e 61 62 6c 65 20 69 6e 74 65 72 66 61 63 65 20 62 79 20 4e 45 54 57 4f 52 | e.RIP.enable.interface.by.NETWOR |
| 133040 | 4b 2e 20 54 68 65 20 69 6e 74 65 72 66 61 63 65 73 20 77 68 69 63 68 20 68 61 76 65 20 61 64 64 | K..The.interfaces.which.have.add |
| 133060 | 72 65 73 73 65 73 20 6d 61 74 63 68 69 6e 67 20 77 69 74 68 20 4e 45 54 57 4f 52 4b 20 61 72 65 | resses.matching.with.NETWORK.are |
| 133080 | 20 65 6e 61 62 6c 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 65 6e 61 62 6c 65 73 20 70 | .enabled..This.command.enables.p |
| 1330a0 | 6f 69 73 6f 6e 2d 72 65 76 65 72 73 65 20 6f 6e 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 2e 20 | oison-reverse.on.the.interface.. |
| 1330c0 | 49 66 20 62 6f 74 68 20 70 6f 69 73 6f 6e 20 72 65 76 65 72 73 65 20 61 6e 64 20 73 70 6c 69 74 | If.both.poison.reverse.and.split |
| 1330e0 | 20 68 6f 72 69 7a 6f 6e 20 61 72 65 20 65 6e 61 62 6c 65 64 2c 20 74 68 65 6e 20 56 79 4f 53 20 | .horizon.are.enabled,.then.VyOS. |
| 133100 | 61 64 76 65 72 74 69 73 65 73 20 74 68 65 20 6c 65 61 72 6e 65 64 20 72 6f 75 74 65 73 20 61 73 | advertises.the.learned.routes.as |
| 133120 | 20 75 6e 72 65 61 63 68 61 62 6c 65 20 6f 76 65 72 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 | .unreachable.over.the.interface. |
| 133140 | 6f 6e 20 77 68 69 63 68 20 74 68 65 20 72 6f 75 74 65 20 77 61 73 20 6c 65 61 72 6e 65 64 2e 00 | on.which.the.route.was.learned.. |
| 133160 | 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 65 6e 61 62 6c 65 73 20 72 6f 75 74 69 6e 67 20 75 73 69 | This.command.enables.routing.usi |
| 133180 | 6e 67 20 72 61 64 69 6f 20 66 72 65 71 75 65 6e 63 79 20 64 69 76 65 72 73 69 74 79 2e 20 54 68 | ng.radio.frequency.diversity..Th |
| 1331a0 | 69 73 20 69 73 20 68 69 67 68 6c 79 20 72 65 63 6f 6d 6d 65 6e 64 65 64 20 69 6e 20 6e 65 74 77 | is.is.highly.recommended.in.netw |
| 1331c0 | 6f 72 6b 73 20 77 69 74 68 20 6d 61 6e 79 20 77 69 72 65 6c 65 73 73 20 6e 6f 64 65 73 2e 00 54 | orks.with.many.wireless.nodes..T |
| 1331e0 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 65 6e 61 62 6c 65 73 20 73 65 6e 64 69 6e 67 20 74 69 6d 65 | his.command.enables.sending.time |
| 133200 | 73 74 61 6d 70 73 20 77 69 74 68 20 65 61 63 68 20 48 65 6c 6c 6f 20 61 6e 64 20 49 48 55 20 6d | stamps.with.each.Hello.and.IHU.m |
| 133220 | 65 73 73 61 67 65 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 63 6f 6d 70 75 74 65 20 52 54 54 20 76 | essage.in.order.to.compute.RTT.v |
| 133240 | 61 6c 75 65 73 2e 20 49 74 20 69 73 20 72 65 63 6f 6d 6d 65 6e 64 65 64 20 74 6f 20 65 6e 61 62 | alues..It.is.recommended.to.enab |
| 133260 | 6c 65 20 74 69 6d 65 73 74 61 6d 70 73 20 6f 6e 20 74 75 6e 6e 65 6c 20 69 6e 74 65 72 66 61 63 | le.timestamps.on.tunnel.interfac |
| 133280 | 65 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 65 6e 61 62 6c 65 73 20 73 75 70 70 6f 72 74 | es..This.command.enables.support |
| 1332a0 | 20 66 6f 72 20 64 79 6e 61 6d 69 63 20 68 6f 73 74 6e 61 6d 65 20 54 4c 56 2e 20 44 79 6e 61 6d | .for.dynamic.hostname.TLV..Dynam |
| 1332c0 | 69 63 20 68 6f 73 74 6e 61 6d 65 20 6d 61 70 70 69 6e 67 20 64 65 74 65 72 6d 69 6e 65 64 20 61 | ic.hostname.mapping.determined.a |
| 1332e0 | 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 32 37 36 33 60 2c 20 44 79 6e 61 | s.described.in.:rfc:`2763`,.Dyna |
| 133300 | 6d 69 63 20 48 6f 73 74 6e 61 6d 65 20 45 78 63 68 61 6e 67 65 20 4d 65 63 68 61 6e 69 73 6d 20 | mic.Hostname.Exchange.Mechanism. |
| 133320 | 66 6f 72 20 49 53 2d 49 53 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 65 6e 61 62 6c 65 73 20 | for.IS-IS..This.command.enables. |
| 133340 | 74 68 65 20 49 50 76 34 20 66 69 72 65 77 61 6c 6c 20 66 6f 72 20 62 72 69 64 67 65 64 20 74 72 | the.IPv4.firewall.for.bridged.tr |
| 133360 | 61 66 66 69 63 2e 20 49 66 20 74 68 69 73 20 6f 70 74 69 6f 6e 73 20 69 73 20 75 73 65 64 2c 20 | affic..If.this.options.is.used,. |
| 133380 | 74 68 65 6e 20 70 61 63 6b 65 74 20 77 69 6c 6c 20 61 6c 73 6f 20 62 65 20 70 61 72 73 65 64 20 | then.packet.will.also.be.parsed. |
| 1333a0 | 62 79 20 72 75 6c 65 73 20 64 65 66 69 6e 65 64 20 69 6e 20 60 60 73 65 74 20 66 69 72 65 77 61 | by.rules.defined.in.``set.firewa |
| 1333c0 | 6c 6c 20 69 70 76 34 20 2e 2e 2e 60 60 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 65 6e 61 62 6c | ll.ipv4....``.This.command.enabl |
| 1333e0 | 65 73 20 74 68 65 20 49 50 76 36 20 66 69 72 65 77 61 6c 6c 20 66 6f 72 20 62 72 69 64 67 65 64 | es.the.IPv6.firewall.for.bridged |
| 133400 | 20 74 72 61 66 66 69 63 2e 20 49 66 20 74 68 69 73 20 6f 70 74 69 6f 6e 73 20 69 73 20 75 73 65 | .traffic..If.this.options.is.use |
| 133420 | 64 2c 20 74 68 65 6e 20 70 61 63 6b 65 74 20 77 69 6c 6c 20 61 6c 73 6f 20 62 65 20 70 61 72 73 | d,.then.packet.will.also.be.pars |
| 133440 | 65 64 20 62 79 20 72 75 6c 65 73 20 64 65 66 69 6e 65 64 20 69 6e 20 60 60 73 65 74 20 66 69 72 | ed.by.rules.defined.in.``set.fir |
| 133460 | 65 77 61 6c 6c 20 69 70 76 36 20 2e 2e 2e 60 60 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 65 6e | ewall.ipv6....``.This.command.en |
| 133480 | 61 62 6c 65 73 20 74 68 65 20 4f 52 46 20 63 61 70 61 62 69 6c 69 74 79 20 28 64 65 73 63 72 69 | ables.the.ORF.capability.(descri |
| 1334a0 | 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 35 32 39 31 60 29 20 6f 6e 20 74 68 65 20 6c 6f 63 61 6c | bed.in.:rfc:`5291`).on.the.local |
| 1334c0 | 20 72 6f 75 74 65 72 2c 20 61 6e 64 20 65 6e 61 62 6c 65 73 20 4f 52 46 20 63 61 70 61 62 69 6c | .router,.and.enables.ORF.capabil |
| 1334e0 | 69 74 79 20 61 64 76 65 72 74 69 73 65 6d 65 6e 74 20 74 6f 20 74 68 65 20 73 70 65 63 69 66 69 | ity.advertisement.to.the.specifi |
| 133500 | 65 64 20 42 47 50 20 70 65 65 72 2e 20 54 68 65 20 3a 63 66 67 63 6d 64 3a 60 72 65 63 65 69 76 | ed.BGP.peer..The.:cfgcmd:`receiv |
| 133520 | 65 60 20 6b 65 79 77 6f 72 64 20 63 6f 6e 66 69 67 75 72 65 73 20 61 20 72 6f 75 74 65 72 20 74 | e`.keyword.configures.a.router.t |
| 133540 | 6f 20 61 64 76 65 72 74 69 73 65 20 4f 52 46 20 72 65 63 65 69 76 65 20 63 61 70 61 62 69 6c 69 | o.advertise.ORF.receive.capabili |
| 133560 | 74 69 65 73 2e 20 54 68 65 20 3a 63 66 67 63 6d 64 3a 60 73 65 6e 64 60 20 6b 65 79 77 6f 72 64 | ties..The.:cfgcmd:`send`.keyword |
| 133580 | 20 63 6f 6e 66 69 67 75 72 65 73 20 61 20 72 6f 75 74 65 72 20 74 6f 20 61 64 76 65 72 74 69 73 | .configures.a.router.to.advertis |
| 1335a0 | 65 20 4f 52 46 20 73 65 6e 64 20 63 61 70 61 62 69 6c 69 74 69 65 73 2e 20 54 6f 20 61 64 76 65 | e.ORF.send.capabilities..To.adve |
| 1335c0 | 72 74 69 73 65 20 61 20 66 69 6c 74 65 72 20 66 72 6f 6d 20 61 20 73 65 6e 64 65 72 2c 20 79 6f | rtise.a.filter.from.a.sender,.yo |
| 1335e0 | 75 20 6d 75 73 74 20 63 72 65 61 74 65 20 61 6e 20 49 50 20 70 72 65 66 69 78 20 6c 69 73 74 20 | u.must.create.an.IP.prefix.list. |
| 133600 | 66 6f 72 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 42 47 50 20 70 65 65 72 20 61 70 70 6c 69 | for.the.specified.BGP.peer.appli |
| 133620 | 65 64 20 69 6e 20 69 6e 62 6f 75 6e 64 20 64 65 72 65 63 74 69 6f 6e 2e 00 54 68 69 73 20 63 6f | ed.in.inbound.derection..This.co |
| 133640 | 6d 6d 61 6e 64 20 65 6e 61 62 6c 65 73 20 74 68 65 20 70 61 73 73 69 76 65 20 6d 6f 64 65 20 66 | mmand.enables.the.passive.mode.f |
| 133660 | 6f 72 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 | or.this.interface..This.command. |
| 133680 | 65 6e 66 6f 72 63 65 73 20 47 65 6e 65 72 61 6c 69 7a 65 64 20 54 54 4c 20 53 65 63 75 72 69 74 | enforces.Generalized.TTL.Securit |
| 1336a0 | 79 20 4d 65 63 68 61 6e 69 73 6d 20 28 47 54 53 4d 29 2c 20 61 73 20 73 70 65 63 69 66 69 65 64 | y.Mechanism.(GTSM),.as.specified |
| 1336c0 | 20 69 6e 20 3a 72 66 63 3a 60 35 30 38 32 60 2e 20 57 69 74 68 20 74 68 69 73 20 63 6f 6d 6d 61 | .in.:rfc:`5082`..With.this.comma |
| 1336e0 | 6e 64 2c 20 6f 6e 6c 79 20 6e 65 69 67 68 62 6f 72 73 20 74 68 61 74 20 61 72 65 20 73 70 65 63 | nd,.only.neighbors.that.are.spec |
| 133700 | 69 66 69 65 64 20 6e 75 6d 62 65 72 20 6f 66 20 68 6f 70 73 20 61 77 61 79 20 77 69 6c 6c 20 62 | ified.number.of.hops.away.will.b |
| 133720 | 65 20 61 6c 6c 6f 77 65 64 20 74 6f 20 62 65 63 6f 6d 65 20 6e 65 69 67 68 62 6f 72 73 2e 20 54 | e.allowed.to.become.neighbors..T |
| 133740 | 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 68 6f 70 73 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 | he.number.of.hops.range.is.1.to. |
| 133760 | 32 35 34 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 6d 75 74 75 61 6c 6c 79 20 65 78 | 254..This.command.is.mutually.ex |
| 133780 | 63 6c 75 73 69 76 65 20 77 69 74 68 20 3a 63 66 67 63 6d 64 3a 60 65 62 67 70 2d 6d 75 6c 74 69 | clusive.with.:cfgcmd:`ebgp-multi |
| 1337a0 | 68 6f 70 60 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 66 6f 72 63 65 73 20 73 74 72 69 63 74 | hop`..This.command.forces.strict |
| 1337c0 | 6c 79 20 63 6f 6d 70 61 72 65 20 72 65 6d 6f 74 65 20 63 61 70 61 62 69 6c 69 74 69 65 73 20 61 | ly.compare.remote.capabilities.a |
| 1337e0 | 6e 64 20 6c 6f 63 61 6c 20 63 61 70 61 62 69 6c 69 74 69 65 73 2e 20 49 66 20 63 61 70 61 62 69 | nd.local.capabilities..If.capabi |
| 133800 | 6c 69 74 69 65 73 20 61 72 65 20 64 69 66 66 65 72 65 6e 74 2c 20 73 65 6e 64 20 55 6e 73 75 70 | lities.are.different,.send.Unsup |
| 133820 | 70 6f 72 74 65 64 20 43 61 70 61 62 69 6c 69 74 79 20 65 72 72 6f 72 20 74 68 65 6e 20 72 65 73 | ported.Capability.error.then.res |
| 133840 | 65 74 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 66 6f 72 63 | et.connection..This.command.forc |
| 133860 | 65 73 20 74 68 65 20 42 47 50 20 73 70 65 61 6b 65 72 20 74 6f 20 72 65 70 6f 72 74 20 69 74 73 | es.the.BGP.speaker.to.report.its |
| 133880 | 65 6c 66 20 61 73 20 74 68 65 20 6e 65 78 74 20 68 6f 70 20 66 6f 72 20 61 6e 20 61 64 76 65 72 | elf.as.the.next.hop.for.an.adver |
| 1338a0 | 74 69 73 65 64 20 72 6f 75 74 65 20 69 74 20 61 64 76 65 72 74 69 73 65 64 20 74 6f 20 61 20 6e | tised.route.it.advertised.to.a.n |
| 1338c0 | 65 69 67 68 62 6f 72 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 67 65 6e 65 72 61 74 65 20 61 | eighbor..This.command.generate.a |
| 1338e0 | 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 20 69 6e 74 6f 20 74 68 65 20 52 49 50 2e 00 54 68 69 | .default.route.into.the.RIP..Thi |
| 133900 | 73 20 63 6f 6d 6d 61 6e 64 20 67 69 76 65 73 20 61 20 62 72 69 65 66 20 73 74 61 74 75 73 20 6f | s.command.gives.a.brief.status.o |
| 133920 | 76 65 72 76 69 65 77 20 6f 66 20 61 20 73 70 65 63 69 66 69 65 64 20 77 69 72 65 6c 65 73 73 20 | verview.of.a.specified.wireless. |
| 133940 | 69 6e 74 65 72 66 61 63 65 2e 20 54 68 65 20 77 69 72 65 6c 65 73 73 20 69 6e 74 65 72 66 61 63 | interface..The.wireless.interfac |
| 133960 | 65 20 69 64 65 6e 74 69 66 69 65 72 20 63 61 6e 20 72 61 6e 67 65 20 66 72 6f 6d 20 77 6c 61 6e | e.identifier.can.range.from.wlan |
| 133980 | 30 20 74 6f 20 77 6c 61 6e 39 39 39 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 67 6f 65 73 20 | 0.to.wlan999..This.command.goes. |
| 1339a0 | 68 61 6e 64 20 69 6e 20 68 61 6e 64 20 77 69 74 68 20 74 68 65 20 6c 69 73 74 65 6e 20 72 61 6e | hand.in.hand.with.the.listen.ran |
| 1339c0 | 67 65 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 6c 69 6d 69 74 20 74 68 65 20 61 6d 6f 75 6e 74 20 6f | ge.command.to.limit.the.amount.o |
| 1339e0 | 66 20 42 47 50 20 6e 65 69 67 68 62 6f 72 73 20 74 68 61 74 20 61 72 65 20 61 6c 6c 6f 77 65 64 | f.BGP.neighbors.that.are.allowed |
| 133a00 | 20 74 6f 20 63 6f 6e 6e 65 63 74 20 74 6f 20 74 68 65 20 6c 6f 63 61 6c 20 72 6f 75 74 65 72 2e | .to.connect.to.the.local.router. |
| 133a20 | 20 54 68 65 20 6c 69 6d 69 74 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 35 30 30 30 2e 00 54 | .The.limit.range.is.1.to.5000..T |
| 133a40 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 67 6f 74 20 61 64 64 65 64 20 69 6e 20 56 79 4f 53 20 31 2e | his.command.got.added.in.VyOS.1. |
| 133a60 | 34 20 61 6e 64 20 69 6e 76 65 72 74 73 20 74 68 65 20 6c 6f 67 69 63 20 66 72 6f 6d 20 74 68 65 | 4.and.inverts.the.logic.from.the |
| 133a80 | 20 6f 6c 64 20 60 60 64 65 66 61 75 6c 74 2d 72 6f 75 74 65 60 60 20 43 4c 49 20 6f 70 74 69 6f | .old.``default-route``.CLI.optio |
| 133aa0 | 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 6e 73 74 65 61 64 20 6f 66 20 73 75 6d 6d 61 | n..This.command.instead.of.summa |
| 133ac0 | 72 69 7a 69 6e 67 20 69 6e 74 72 61 20 61 72 65 61 20 70 61 74 68 73 20 66 69 6c 74 65 72 20 74 | rizing.intra.area.paths.filter.t |
| 133ae0 | 68 65 6d 20 2d 20 69 2e 65 2e 20 69 6e 74 72 61 20 61 72 65 61 20 70 61 74 68 73 20 66 72 6f 6d | hem.-.i.e..intra.area.paths.from |
| 133b00 | 20 74 68 69 73 20 72 61 6e 67 65 20 61 72 65 20 6e 6f 74 20 61 64 76 65 72 74 69 73 65 64 20 69 | .this.range.are.not.advertised.i |
| 133b20 | 6e 74 6f 20 6f 74 68 65 72 20 61 72 65 61 73 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 6d 61 | nto.other.areas..This.command.ma |
| 133b40 | 6b 65 73 20 73 65 6e 73 65 20 69 6e 20 41 42 52 20 6f 6e 6c 79 2e 00 54 68 69 73 20 63 6f 6d 6d | kes.sense.in.ABR.only..This.comm |
| 133b60 | 61 6e 64 20 69 73 20 61 6c 73 6f 20 75 73 65 64 20 74 6f 20 65 6e 61 62 6c 65 20 74 68 65 20 4f | and.is.also.used.to.enable.the.O |
| 133b80 | 53 50 46 20 70 72 6f 63 65 73 73 2e 20 54 68 65 20 61 72 65 61 20 6e 75 6d 62 65 72 20 63 61 6e | SPF.process..The.area.number.can |
| 133ba0 | 20 62 65 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 64 65 63 69 6d 61 6c 20 6e 6f 74 61 74 69 6f | .be.specified.in.decimal.notatio |
| 133bc0 | 6e 20 69 6e 20 74 68 65 20 72 61 6e 67 65 20 66 72 6f 6d 20 30 20 74 6f 20 34 32 39 34 39 36 37 | n.in.the.range.from.0.to.4294967 |
| 133be0 | 32 39 35 2e 20 4f 72 20 69 74 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 64 | 295..Or.it.can.be.specified.in.d |
| 133c00 | 6f 74 74 65 64 20 64 65 63 69 6d 61 6c 20 6e 6f 74 61 74 69 6f 6e 20 73 69 6d 69 6c 61 72 20 74 | otted.decimal.notation.similar.t |
| 133c20 | 6f 20 69 70 20 61 64 64 72 65 73 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 6f 6e | o.ip.address..This.command.is.on |
| 133c40 | 6c 79 20 61 6c 6c 6f 77 65 64 20 66 6f 72 20 65 42 47 50 20 70 65 65 72 73 2e 00 54 68 69 73 20 | ly.allowed.for.eBGP.peers..This. |
| 133c60 | 63 6f 6d 6d 61 6e 64 20 69 73 20 6f 6e 6c 79 20 61 6c 6c 6f 77 65 64 20 66 6f 72 20 65 42 47 50 | command.is.only.allowed.for.eBGP |
| 133c80 | 20 70 65 65 72 73 2e 20 49 74 20 69 73 20 6e 6f 74 20 61 70 70 6c 69 63 61 62 6c 65 20 66 6f 72 | .peers..It.is.not.applicable.for |
| 133ca0 | 20 70 65 65 72 20 67 72 6f 75 70 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 6f 6e | .peer.groups..This.command.is.on |
| 133cc0 | 6c 79 20 75 73 65 66 75 6c 20 61 74 20 73 63 61 6c 65 20 77 68 65 6e 20 79 6f 75 20 63 61 6e 20 | ly.useful.at.scale.when.you.can. |
| 133ce0 | 70 6f 73 73 69 62 6c 79 20 68 61 76 65 20 61 20 6c 61 72 67 65 20 6e 75 6d 62 65 72 20 6f 66 20 | possibly.have.a.large.number.of. |
| 133d00 | 50 49 4d 20 63 6f 6e 74 72 6f 6c 20 70 61 63 6b 65 74 73 20 66 6c 6f 77 69 6e 67 2e 00 54 68 69 | PIM.control.packets.flowing..Thi |
| 133d20 | 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 73 70 65 63 69 66 69 63 20 74 6f 20 46 52 52 20 61 6e 64 | s.command.is.specific.to.FRR.and |
| 133d40 | 20 56 79 4f 53 2e 20 54 68 65 20 72 6f 75 74 65 20 63 6f 6d 6d 61 6e 64 20 6d 61 6b 65 73 20 61 | .VyOS..The.route.command.makes.a |
| 133d60 | 20 73 74 61 74 69 63 20 72 6f 75 74 65 20 6f 6e 6c 79 20 69 6e 73 69 64 65 20 52 49 50 2e 20 54 | .static.route.only.inside.RIP..T |
| 133d80 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 68 6f 75 6c 64 20 62 65 20 75 73 65 64 20 6f 6e 6c 79 20 | his.command.should.be.used.only. |
| 133da0 | 62 79 20 61 64 76 61 6e 63 65 64 20 75 73 65 72 73 20 77 68 6f 20 61 72 65 20 70 61 72 74 69 63 | by.advanced.users.who.are.partic |
| 133dc0 | 75 6c 61 72 6c 79 20 6b 6e 6f 77 6c 65 64 67 65 61 62 6c 65 20 61 62 6f 75 74 20 74 68 65 20 52 | ularly.knowledgeable.about.the.R |
| 133de0 | 49 50 20 70 72 6f 74 6f 63 6f 6c 2e 20 49 6e 20 6d 6f 73 74 20 63 61 73 65 73 2c 20 77 65 20 72 | IP.protocol..In.most.cases,.we.r |
| 133e00 | 65 63 6f 6d 6d 65 6e 64 20 63 72 65 61 74 69 6e 67 20 61 20 73 74 61 74 69 63 20 72 6f 75 74 65 | ecommend.creating.a.static.route |
| 133e20 | 20 69 6e 20 56 79 4f 53 20 61 6e 64 20 72 65 64 69 73 74 72 69 62 75 74 69 6e 67 20 69 74 20 69 | .in.VyOS.and.redistributing.it.i |
| 133e40 | 6e 20 52 49 50 20 75 73 69 6e 67 20 3a 63 66 67 63 6d 64 3a 60 72 65 64 69 73 74 72 69 62 75 74 | n.RIP.using.:cfgcmd:`redistribut |
| 133e60 | 65 20 73 74 61 74 69 63 60 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 75 73 65 64 20 | e.static`..This.command.is.used. |
| 133e80 | 66 6f 72 20 61 64 76 65 72 74 69 73 69 6e 67 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 6e 65 74 | for.advertising.IPv4.or.IPv6.net |
| 133ea0 | 77 6f 72 6b 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 75 73 65 64 20 74 6f 20 72 | works..This.command.is.used.to.r |
| 133ec0 | 65 74 72 69 65 76 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 57 41 50 20 77 69 | etrieve.information.about.WAP.wi |
| 133ee0 | 74 68 69 6e 20 74 68 65 20 72 61 6e 67 65 20 6f 66 20 79 6f 75 72 20 77 69 72 65 6c 65 73 73 20 | thin.the.range.of.your.wireless. |
| 133f00 | 69 6e 74 65 72 66 61 63 65 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 75 73 65 66 75 | interface..This.command.is.usefu |
| 133f20 | 6c 20 6f 6e 20 77 69 72 65 6c 65 73 73 20 69 6e 74 65 72 66 61 63 65 73 20 63 6f 6e 66 69 67 75 | l.on.wireless.interfaces.configu |
| 133f40 | 72 65 64 20 69 6e 20 73 74 61 74 69 6f 6e 20 6d 6f 64 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e | red.in.station.mode..This.comman |
| 133f60 | 64 20 69 73 20 75 73 65 66 75 6c 20 69 66 20 6f 6e 65 20 64 65 73 69 72 65 73 20 74 6f 20 6c 6f | d.is.useful.if.one.desires.to.lo |
| 133f80 | 6f 73 65 6e 20 74 68 65 20 72 65 71 75 69 72 65 6d 65 6e 74 20 66 6f 72 20 42 47 50 20 74 6f 20 | osen.the.requirement.for.BGP.to. |
| 133fa0 | 68 61 76 65 20 73 74 72 69 63 74 6c 79 20 64 65 66 69 6e 65 64 20 6e 65 69 67 68 62 6f 72 73 2e | have.strictly.defined.neighbors. |
| 133fc0 | 20 53 70 65 63 69 66 69 63 61 6c 6c 79 20 77 68 61 74 20 69 73 20 61 6c 6c 6f 77 65 64 20 69 73 | .Specifically.what.is.allowed.is |
| 133fe0 | 20 66 6f 72 20 74 68 65 20 6c 6f 63 61 6c 20 72 6f 75 74 65 72 20 74 6f 20 6c 69 73 74 65 6e 20 | .for.the.local.router.to.listen. |
| 134000 | 74 6f 20 61 20 72 61 6e 67 65 20 6f 66 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 61 64 64 72 65 | to.a.range.of.IPv4.or.IPv6.addre |
| 134020 | 73 73 65 73 20 64 65 66 69 6e 65 64 20 62 79 20 61 20 70 72 65 66 69 78 20 61 6e 64 20 74 6f 20 | sses.defined.by.a.prefix.and.to. |
| 134040 | 61 63 63 65 70 74 20 42 47 50 20 6f 70 65 6e 20 6d 65 73 73 61 67 65 73 2e 20 57 68 65 6e 20 61 | accept.BGP.open.messages..When.a |
| 134060 | 20 54 43 50 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 28 61 6e 64 20 73 75 62 73 65 71 75 65 6e 74 6c | .TCP.connection.(and.subsequentl |
| 134080 | 79 20 61 20 42 47 50 20 6f 70 65 6e 20 6d 65 73 73 61 67 65 29 20 66 72 6f 6d 20 77 69 74 68 69 | y.a.BGP.open.message).from.withi |
| 1340a0 | 6e 20 74 68 69 73 20 72 61 6e 67 65 20 74 72 69 65 73 20 74 6f 20 63 6f 6e 6e 65 63 74 20 74 68 | n.this.range.tries.to.connect.th |
| 1340c0 | 65 20 6c 6f 63 61 6c 20 72 6f 75 74 65 72 20 74 68 65 6e 20 74 68 65 20 6c 6f 63 61 6c 20 72 6f | e.local.router.then.the.local.ro |
| 1340e0 | 75 74 65 72 20 77 69 6c 6c 20 72 65 73 70 6f 6e 64 20 61 6e 64 20 63 6f 6e 6e 65 63 74 20 77 69 | uter.will.respond.and.connect.wi |
| 134100 | 74 68 20 74 68 65 20 70 61 72 61 6d 65 74 65 72 73 20 74 68 61 74 20 61 72 65 20 64 65 66 69 6e | th.the.parameters.that.are.defin |
| 134120 | 65 64 20 77 69 74 68 69 6e 20 74 68 65 20 70 65 65 72 20 67 72 6f 75 70 2e 20 4f 6e 65 20 6d 75 | ed.within.the.peer.group..One.mu |
| 134140 | 73 74 20 64 65 66 69 6e 65 20 61 20 70 65 65 72 2d 67 72 6f 75 70 20 66 6f 72 20 65 61 63 68 20 | st.define.a.peer-group.for.each. |
| 134160 | 72 61 6e 67 65 20 74 68 61 74 20 69 73 20 6c 69 73 74 65 64 2e 20 49 66 20 6e 6f 20 70 65 65 72 | range.that.is.listed..If.no.peer |
| 134180 | 2d 67 72 6f 75 70 20 69 73 20 64 65 66 69 6e 65 64 20 74 68 65 6e 20 61 6e 20 65 72 72 6f 72 20 | -group.is.defined.then.an.error. |
| 1341a0 | 77 69 6c 6c 20 6b 65 65 70 20 79 6f 75 20 66 72 6f 6d 20 63 6f 6d 6d 69 74 74 69 6e 67 20 74 68 | will.keep.you.from.committing.th |
| 1341c0 | 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 6d 6f | e.configuration..This.command.mo |
| 1341e0 | 64 69 66 69 65 73 20 74 68 65 20 64 65 66 61 75 6c 74 20 6d 65 74 72 69 63 20 28 68 6f 70 20 63 | difies.the.default.metric.(hop.c |
| 134200 | 6f 75 6e 74 29 20 76 61 6c 75 65 20 66 6f 72 20 72 65 64 69 73 74 72 69 62 75 74 65 64 20 72 6f | ount).value.for.redistributed.ro |
| 134220 | 75 74 65 73 2e 20 54 68 65 20 6d 65 74 72 69 63 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 31 | utes..The.metric.range.is.1.to.1 |
| 134240 | 36 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 31 2e 20 54 68 69 73 20 | 6..The.default.value.is.1..This. |
| 134260 | 63 6f 6d 6d 61 6e 64 20 64 6f 65 73 20 6e 6f 74 20 61 66 66 65 63 74 20 63 6f 6e 6e 65 63 74 65 | command.does.not.affect.connecte |
| 134280 | 64 20 72 6f 75 74 65 20 65 76 65 6e 20 69 66 20 69 74 20 69 73 20 72 65 64 69 73 74 72 69 62 75 | d.route.even.if.it.is.redistribu |
| 1342a0 | 74 65 64 20 62 79 20 3a 63 66 67 63 6d 64 3a 60 72 65 64 69 73 74 72 69 62 75 74 65 20 63 6f 6e | ted.by.:cfgcmd:`redistribute.con |
| 1342c0 | 6e 65 63 74 65 64 60 2e 20 54 6f 20 6d 6f 64 69 66 79 20 63 6f 6e 6e 65 63 74 65 64 20 72 6f 75 | nected`..To.modify.connected.rou |
| 1342e0 | 74 65 73 20 6d 65 74 72 69 63 20 76 61 6c 75 65 2c 20 70 6c 65 61 73 65 20 75 73 65 20 3a 63 66 | tes.metric.value,.please.use.:cf |
| 134300 | 67 63 6d 64 3a 60 72 65 64 69 73 74 72 69 62 75 74 65 20 63 6f 6e 6e 65 63 74 65 64 20 6d 65 74 | gcmd:`redistribute.connected.met |
| 134320 | 72 69 63 60 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 6f 76 65 72 72 69 64 65 20 41 53 20 6e | ric`..This.command.override.AS.n |
| 134340 | 75 6d 62 65 72 20 6f 66 20 74 68 65 20 6f 72 69 67 69 6e 61 74 69 6e 67 20 72 6f 75 74 65 72 20 | umber.of.the.originating.router. |
| 134360 | 77 69 74 68 20 74 68 65 20 6c 6f 63 61 6c 20 41 53 20 6e 75 6d 62 65 72 2e 00 54 68 69 73 20 63 | with.the.local.AS.number..This.c |
| 134380 | 6f 6d 6d 61 6e 64 20 70 72 65 76 65 6e 74 73 20 66 72 6f 6d 20 73 65 6e 64 69 6e 67 20 62 61 63 | ommand.prevents.from.sending.bac |
| 1343a0 | 6b 20 70 72 65 66 69 78 65 73 20 6c 65 61 72 6e 65 64 20 66 72 6f 6d 20 74 68 65 20 6e 65 69 67 | k.prefixes.learned.from.the.neig |
| 1343c0 | 68 62 6f 72 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 70 72 6f 76 69 64 65 73 20 74 6f 20 63 | hbor..This.command.provides.to.c |
| 1343e0 | 6f 6d 70 61 72 65 20 64 69 66 66 65 72 65 6e 74 20 4d 45 44 20 76 61 6c 75 65 73 20 74 68 61 74 | ompare.different.MED.values.that |
| 134400 | 20 61 64 76 65 72 74 69 73 65 64 20 62 79 20 6e 65 69 67 68 62 6f 75 72 73 20 69 6e 20 74 68 65 | .advertised.by.neighbours.in.the |
| 134420 | 20 73 61 6d 65 20 41 53 20 66 6f 72 20 72 6f 75 74 65 73 20 73 65 6c 65 63 74 69 6f 6e 2e 20 57 | .same.AS.for.routes.selection..W |
| 134440 | 68 65 6e 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 65 6e 61 62 6c 65 64 2c 20 72 6f 75 | hen.this.command.is.enabled,.rou |
| 134460 | 74 65 73 20 66 72 6f 6d 20 74 68 65 20 73 61 6d 65 20 61 75 74 6f 6e 6f 6d 6f 75 73 20 73 79 73 | tes.from.the.same.autonomous.sys |
| 134480 | 74 65 6d 20 61 72 65 20 67 72 6f 75 70 65 64 20 74 6f 67 65 74 68 65 72 2c 20 61 6e 64 20 74 68 | tem.are.grouped.together,.and.th |
| 1344a0 | 65 20 62 65 73 74 20 65 6e 74 72 69 65 73 20 6f 66 20 65 61 63 68 20 67 72 6f 75 70 20 61 72 65 | e.best.entries.of.each.group.are |
| 1344c0 | 20 63 6f 6d 70 61 72 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 70 72 6f 76 69 64 65 73 | .compared..This.command.provides |
| 1344e0 | 20 74 6f 20 63 6f 6d 70 61 72 65 20 74 68 65 20 4d 45 44 20 6f 6e 20 72 6f 75 74 65 73 2c 20 65 | .to.compare.the.MED.on.routes,.e |
| 134500 | 76 65 6e 20 77 68 65 6e 20 74 68 65 79 20 77 65 72 65 20 72 65 63 65 69 76 65 64 20 66 72 6f 6d | ven.when.they.were.received.from |
| 134520 | 20 64 69 66 66 65 72 65 6e 74 20 6e 65 69 67 68 62 6f 75 72 69 6e 67 20 41 53 65 73 2e 20 53 65 | .different.neighbouring.ASes..Se |
| 134540 | 74 74 69 6e 67 20 74 68 69 73 20 6f 70 74 69 6f 6e 20 6d 61 6b 65 73 20 74 68 65 20 6f 72 64 65 | tting.this.option.makes.the.orde |
| 134560 | 72 20 6f 66 20 70 72 65 66 65 72 65 6e 63 65 20 6f 66 20 72 6f 75 74 65 73 20 6d 6f 72 65 20 64 | r.of.preference.of.routes.more.d |
| 134580 | 65 66 69 6e 65 64 2c 20 61 6e 64 20 73 68 6f 75 6c 64 20 65 6c 69 6d 69 6e 61 74 65 20 4d 45 44 | efined,.and.should.eliminate.MED |
| 1345a0 | 20 69 6e 64 75 63 65 64 20 6f 73 63 69 6c 6c 61 74 69 6f 6e 73 2e 00 54 68 69 73 20 63 6f 6d 6d | .induced.oscillations..This.comm |
| 1345c0 | 61 6e 64 20 72 65 64 69 73 74 72 69 62 75 74 65 73 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f 72 6d | and.redistributes.routing.inform |
| 1345e0 | 61 74 69 6f 6e 20 66 72 6f 6d 20 74 68 65 20 67 69 76 65 6e 20 72 6f 75 74 65 20 73 6f 75 72 63 | ation.from.the.given.route.sourc |
| 134600 | 65 20 69 6e 74 6f 20 74 68 65 20 49 53 49 53 20 64 61 74 61 62 61 73 65 20 61 73 20 4c 65 76 65 | e.into.the.ISIS.database.as.Leve |
| 134620 | 6c 2d 31 2e 20 54 68 65 72 65 20 61 72 65 20 73 69 78 20 6d 6f 64 65 73 20 61 76 61 69 6c 61 62 | l-1..There.are.six.modes.availab |
| 134640 | 6c 65 20 66 6f 72 20 72 6f 75 74 65 20 73 6f 75 72 63 65 3a 20 62 67 70 2c 20 63 6f 6e 6e 65 63 | le.for.route.source:.bgp,.connec |
| 134660 | 74 65 64 2c 20 6b 65 72 6e 65 6c 2c 20 6f 73 70 66 2c 20 72 69 70 2c 20 73 74 61 74 69 63 2e 00 | ted,.kernel,.ospf,.rip,.static.. |
| 134680 | 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 72 65 64 69 73 74 72 69 62 75 74 65 73 20 72 6f 75 74 69 | This.command.redistributes.routi |
| 1346a0 | 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 72 6f 6d 20 74 68 65 20 67 69 76 65 6e 20 72 6f | ng.information.from.the.given.ro |
| 1346c0 | 75 74 65 20 73 6f 75 72 63 65 20 69 6e 74 6f 20 74 68 65 20 49 53 49 53 20 64 61 74 61 62 61 73 | ute.source.into.the.ISIS.databas |
| 1346e0 | 65 20 61 73 20 4c 65 76 65 6c 2d 32 2e 20 54 68 65 72 65 20 61 72 65 20 73 69 78 20 6d 6f 64 65 | e.as.Level-2..There.are.six.mode |
| 134700 | 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 72 6f 75 74 65 20 73 6f 75 72 63 65 3a 20 62 67 | s.available.for.route.source:.bg |
| 134720 | 70 2c 20 63 6f 6e 6e 65 63 74 65 64 2c 20 6b 65 72 6e 65 6c 2c 20 6f 73 70 66 2c 20 72 69 70 2c | p,.connected,.kernel,.ospf,.rip, |
| 134740 | 20 73 74 61 74 69 63 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 72 65 64 69 73 74 72 69 62 75 | .static..This.command.redistribu |
| 134760 | 74 65 73 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 72 6f 6d 20 74 68 65 | tes.routing.information.from.the |
| 134780 | 20 67 69 76 65 6e 20 72 6f 75 74 65 20 73 6f 75 72 63 65 20 69 6e 74 6f 20 74 68 65 20 52 49 50 | .given.route.source.into.the.RIP |
| 1347a0 | 20 74 61 62 6c 65 73 2e 20 54 68 65 72 65 20 61 72 65 20 66 69 76 65 20 6d 6f 64 65 73 20 61 76 | .tables..There.are.five.modes.av |
| 1347c0 | 61 69 6c 61 62 6c 65 20 66 6f 72 20 72 6f 75 74 65 20 73 6f 75 72 63 65 3a 20 62 67 70 2c 20 63 | ailable.for.route.source:.bgp,.c |
| 1347e0 | 6f 6e 6e 65 63 74 65 64 2c 20 6b 65 72 6e 65 6c 2c 20 6f 73 70 66 2c 20 73 74 61 74 69 63 2e 00 | onnected,.kernel,.ospf,.static.. |
| 134800 | 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 72 65 64 69 73 74 72 69 62 75 74 65 73 20 72 6f 75 74 69 | This.command.redistributes.routi |
| 134820 | 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 72 6f 6d 20 74 68 65 20 67 69 76 65 6e 20 72 6f | ng.information.from.the.given.ro |
| 134840 | 75 74 65 20 73 6f 75 72 63 65 20 74 6f 20 74 68 65 20 42 47 50 20 70 72 6f 63 65 73 73 2e 20 54 | ute.source.to.the.BGP.process..T |
| 134860 | 68 65 72 65 20 61 72 65 20 73 69 78 20 6d 6f 64 65 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 | here.are.six.modes.available.for |
| 134880 | 20 72 6f 75 74 65 20 73 6f 75 72 63 65 3a 20 63 6f 6e 6e 65 63 74 65 64 2c 20 6b 65 72 6e 65 6c | .route.source:.connected,.kernel |
| 1348a0 | 2c 20 6f 73 70 66 2c 20 72 69 70 2c 20 73 74 61 74 69 63 2c 20 74 61 62 6c 65 2e 00 54 68 69 73 | ,.ospf,.rip,.static,.table..This |
| 1348c0 | 20 63 6f 6d 6d 61 6e 64 20 72 65 64 69 73 74 72 69 62 75 74 65 73 20 72 6f 75 74 69 6e 67 20 69 | .command.redistributes.routing.i |
| 1348e0 | 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 72 6f 6d 20 74 68 65 20 67 69 76 65 6e 20 72 6f 75 74 65 20 | nformation.from.the.given.route. |
| 134900 | 73 6f 75 72 63 65 20 74 6f 20 74 68 65 20 42 61 62 65 6c 20 70 72 6f 63 65 73 73 2e 00 54 68 69 | source.to.the.Babel.process..Thi |
| 134920 | 73 20 63 6f 6d 6d 61 6e 64 20 72 65 64 69 73 74 72 69 62 75 74 65 73 20 72 6f 75 74 69 6e 67 20 | s.command.redistributes.routing. |
| 134940 | 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 72 6f 6d 20 74 68 65 20 67 69 76 65 6e 20 72 6f 75 74 65 | information.from.the.given.route |
| 134960 | 20 73 6f 75 72 63 65 20 74 6f 20 74 68 65 20 4f 53 50 46 20 70 72 6f 63 65 73 73 2e 20 54 68 65 | .source.to.the.OSPF.process..The |
| 134980 | 72 65 20 61 72 65 20 66 69 76 65 20 6d 6f 64 65 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 | re.are.five.modes.available.for. |
| 1349a0 | 72 6f 75 74 65 20 73 6f 75 72 63 65 3a 20 62 67 70 2c 20 63 6f 6e 6e 65 63 74 65 64 2c 20 6b 65 | route.source:.bgp,.connected,.ke |
| 1349c0 | 72 6e 65 6c 2c 20 72 69 70 2c 20 73 74 61 74 69 63 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 | rnel,.rip,.static..This.command. |
| 1349e0 | 72 65 64 69 73 74 72 69 62 75 74 65 73 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f | redistributes.routing.informatio |
| 134a00 | 6e 20 66 72 6f 6d 20 74 68 65 20 67 69 76 65 6e 20 72 6f 75 74 65 20 73 6f 75 72 63 65 20 74 6f | n.from.the.given.route.source.to |
| 134a20 | 20 74 68 65 20 4f 53 50 46 76 33 20 70 72 6f 63 65 73 73 2e 20 54 68 65 72 65 20 61 72 65 20 66 | .the.OSPFv3.process..There.are.f |
| 134a40 | 69 76 65 20 6d 6f 64 65 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 72 6f 75 74 65 20 73 6f | ive.modes.available.for.route.so |
| 134a60 | 75 72 63 65 3a 20 62 67 70 2c 20 63 6f 6e 6e 65 63 74 65 64 2c 20 6b 65 72 6e 65 6c 2c 20 72 69 | urce:.bgp,.connected,.kernel,.ri |
| 134a80 | 70 6e 67 2c 20 73 74 61 74 69 63 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 72 65 6d 6f 76 65 | png,.static..This.command.remove |
| 134aa0 | 73 20 74 68 65 20 70 72 69 76 61 74 65 20 41 53 4e 20 6f 66 20 72 6f 75 74 65 73 20 74 68 61 74 | s.the.private.ASN.of.routes.that |
| 134ac0 | 20 61 72 65 20 61 64 76 65 72 74 69 73 65 64 20 74 6f 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 | .are.advertised.to.the.configure |
| 134ae0 | 64 20 70 65 65 72 2e 20 49 74 20 72 65 6d 6f 76 65 73 20 6f 6e 6c 79 20 70 72 69 76 61 74 65 20 | d.peer..It.removes.only.private. |
| 134b00 | 41 53 4e 73 20 6f 6e 20 72 6f 75 74 65 73 20 61 64 76 65 72 74 69 73 65 64 20 74 6f 20 45 42 47 | ASNs.on.routes.advertised.to.EBG |
| 134b20 | 50 20 70 65 65 72 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 72 65 73 65 74 73 20 42 47 50 | P.peers..This.command.resets.BGP |
| 134b40 | 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 74 6f 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 6e 65 | .connections.to.the.specified.ne |
| 134b60 | 69 67 68 62 6f 72 20 49 50 20 61 64 64 72 65 73 73 2e 20 57 69 74 68 20 61 72 67 75 6d 65 6e 74 | ighbor.IP.address..With.argument |
| 134b80 | 20 3a 63 66 67 63 6d 64 3a 60 73 6f 66 74 60 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 6e 69 | .:cfgcmd:`soft`.this.command.ini |
| 134ba0 | 74 69 61 74 65 73 20 61 20 73 6f 66 74 20 72 65 73 65 74 2e 20 49 66 20 79 6f 75 20 64 6f 20 6e | tiates.a.soft.reset..If.you.do.n |
| 134bc0 | 6f 74 20 73 70 65 63 69 66 79 20 74 68 65 20 3a 63 66 67 63 6d 64 3a 60 69 6e 60 20 6f 72 20 3a | ot.specify.the.:cfgcmd:`in`.or.: |
| 134be0 | 63 66 67 63 6d 64 3a 60 6f 75 74 60 20 6f 70 74 69 6f 6e 73 2c 20 62 6f 74 68 20 69 6e 62 6f 75 | cfgcmd:`out`.options,.both.inbou |
| 134c00 | 6e 64 20 61 6e 64 20 6f 75 74 62 6f 75 6e 64 20 73 6f 66 74 20 72 65 63 6f 6e 66 69 67 75 72 61 | nd.and.outbound.soft.reconfigura |
| 134c20 | 74 69 6f 6e 20 61 72 65 20 74 72 69 67 67 65 72 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 | tion.are.triggered..This.command |
| 134c40 | 20 72 65 73 65 74 73 20 42 47 50 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 74 6f 20 74 68 65 20 73 | .resets.BGP.connections.to.the.s |
| 134c60 | 70 65 63 69 66 69 65 64 20 70 65 65 72 20 67 72 6f 75 70 2e 20 57 69 74 68 20 61 72 67 75 6d 65 | pecified.peer.group..With.argume |
| 134c80 | 6e 74 20 3a 63 66 67 63 6d 64 3a 60 73 6f 66 74 60 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 | nt.:cfgcmd:`soft`.this.command.i |
| 134ca0 | 6e 69 74 69 61 74 65 73 20 61 20 73 6f 66 74 20 72 65 73 65 74 2e 20 49 66 20 79 6f 75 20 64 6f | nitiates.a.soft.reset..If.you.do |
| 134cc0 | 20 6e 6f 74 20 73 70 65 63 69 66 79 20 74 68 65 20 3a 63 66 67 63 6d 64 3a 60 69 6e 60 20 6f 72 | .not.specify.the.:cfgcmd:`in`.or |
| 134ce0 | 20 3a 63 66 67 63 6d 64 3a 60 6f 75 74 60 20 6f 70 74 69 6f 6e 73 2c 20 62 6f 74 68 20 69 6e 62 | .:cfgcmd:`out`.options,.both.inb |
| 134d00 | 6f 75 6e 64 20 61 6e 64 20 6f 75 74 62 6f 75 6e 64 20 73 6f 66 74 20 72 65 63 6f 6e 66 69 67 75 | ound.and.outbound.soft.reconfigu |
| 134d20 | 72 61 74 69 6f 6e 20 61 72 65 20 74 72 69 67 67 65 72 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 | ration.are.triggered..This.comma |
| 134d40 | 6e 64 20 72 65 73 65 74 73 20 61 6c 6c 20 42 47 50 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 6f 66 | nd.resets.all.BGP.connections.of |
| 134d60 | 20 67 69 76 65 6e 20 72 6f 75 74 65 72 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 72 65 73 65 | .given.router..This.command.rese |
| 134d80 | 74 73 20 61 6c 6c 20 65 78 74 65 72 6e 61 6c 20 42 47 50 20 70 65 65 72 73 20 6f 66 20 67 69 76 | ts.all.external.BGP.peers.of.giv |
| 134da0 | 65 6e 20 72 6f 75 74 65 72 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 6c 65 63 74 73 20 | en.router..This.command.selects. |
| 134dc0 | 41 42 52 20 6d 6f 64 65 6c 2e 20 4f 53 50 46 20 72 6f 75 74 65 72 20 73 75 70 70 6f 72 74 73 20 | ABR.model..OSPF.router.supports. |
| 134de0 | 66 6f 75 72 20 41 42 52 20 6d 6f 64 65 6c 73 3a 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 | four.ABR.models:.This.command.se |
| 134e00 | 74 20 64 65 66 61 75 6c 74 20 6d 65 74 72 69 63 20 66 6f 72 20 63 69 72 63 75 69 74 2e 00 54 68 | t.default.metric.for.circuit..Th |
| 134e20 | 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 20 74 68 65 20 63 68 61 6e 6e 65 6c 20 6e 75 6d 62 65 | is.command.set.the.channel.numbe |
| 134e40 | 72 20 74 68 61 74 20 64 69 76 65 72 73 69 74 79 20 72 6f 75 74 69 6e 67 20 75 73 65 73 20 66 6f | r.that.diversity.routing.uses.fo |
| 134e60 | 72 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 20 28 73 65 65 20 64 69 76 65 72 73 69 74 79 20 | r.this.interface.(see.diversity. |
| 134e80 | 6f 70 74 69 6f 6e 20 61 62 6f 76 65 29 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 | option.above)..This.command.sets |
| 134ea0 | 20 41 54 54 20 62 69 74 20 74 6f 20 31 20 69 6e 20 4c 65 76 65 6c 31 20 4c 53 50 73 2e 20 49 74 | .ATT.bit.to.1.in.Level1.LSPs..It |
| 134ec0 | 20 69 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 33 37 38 37 60 2e 00 54 68 | .is.described.in.:rfc:`3787`..Th |
| 134ee0 | 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 43 6f 6d 70 6c 65 74 65 20 53 65 71 75 65 6e 63 | is.command.sets.Complete.Sequenc |
| 134f00 | 65 20 4e 75 6d 62 65 72 20 50 61 63 6b 65 74 73 20 28 43 53 4e 50 29 20 69 6e 74 65 72 76 61 6c | e.Number.Packets.(CSNP).interval |
| 134f20 | 20 69 6e 20 73 65 63 6f 6e 64 73 2e 20 54 68 65 20 69 6e 74 65 72 76 61 6c 20 72 61 6e 67 65 20 | .in.seconds..The.interval.range. |
| 134f40 | 69 73 20 31 20 74 6f 20 36 30 30 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 4c | is.1.to.600..This.command.sets.L |
| 134f60 | 53 50 20 6d 61 78 69 6d 75 6d 20 4c 53 50 20 6c 69 66 65 74 69 6d 65 20 69 6e 20 73 65 63 6f 6e | SP.maximum.LSP.lifetime.in.secon |
| 134f80 | 64 73 2e 20 54 68 65 20 69 6e 74 65 72 76 61 6c 20 72 61 6e 67 65 20 69 73 20 33 35 30 20 74 6f | ds..The.interval.range.is.350.to |
| 134fa0 | 20 36 35 35 33 35 2e 20 4c 53 50 73 20 72 65 6d 61 69 6e 20 69 6e 20 61 20 64 61 74 61 62 61 73 | .65535..LSPs.remain.in.a.databas |
| 134fc0 | 65 20 66 6f 72 20 31 32 30 30 20 73 65 63 6f 6e 64 73 20 62 79 20 64 65 66 61 75 6c 74 2e 20 49 | e.for.1200.seconds.by.default..I |
| 134fe0 | 66 20 74 68 65 79 20 61 72 65 20 6e 6f 74 20 72 65 66 72 65 73 68 65 64 20 62 79 20 74 68 61 74 | f.they.are.not.refreshed.by.that |
| 135000 | 20 74 69 6d 65 2c 20 74 68 65 79 20 61 72 65 20 64 65 6c 65 74 65 64 2e 20 59 6f 75 20 63 61 6e | .time,.they.are.deleted..You.can |
| 135020 | 20 63 68 61 6e 67 65 20 74 68 65 20 4c 53 50 20 72 65 66 72 65 73 68 20 69 6e 74 65 72 76 61 6c | .change.the.LSP.refresh.interval |
| 135040 | 20 6f 72 20 74 68 65 20 4c 53 50 20 6c 69 66 65 74 69 6d 65 2e 20 54 68 65 20 4c 53 50 20 72 65 | .or.the.LSP.lifetime..The.LSP.re |
| 135060 | 66 72 65 73 68 20 69 6e 74 65 72 76 61 6c 20 73 68 6f 75 6c 64 20 62 65 20 6c 65 73 73 20 74 68 | fresh.interval.should.be.less.th |
| 135080 | 61 6e 20 74 68 65 20 4c 53 50 20 6c 69 66 65 74 69 6d 65 20 6f 72 20 65 6c 73 65 20 4c 53 50 73 | an.the.LSP.lifetime.or.else.LSPs |
| 1350a0 | 20 77 69 6c 6c 20 74 69 6d 65 20 6f 75 74 20 62 65 66 6f 72 65 20 74 68 65 79 20 61 72 65 20 72 | .will.time.out.before.they.are.r |
| 1350c0 | 65 66 72 65 73 68 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 4c 53 50 20 | efreshed..This.command.sets.LSP. |
| 1350e0 | 6d 61 78 69 6d 75 6d 20 4c 53 50 20 6c 69 66 65 74 69 6d 65 20 69 6e 20 73 65 63 6f 6e 64 73 2e | maximum.LSP.lifetime.in.seconds. |
| 135100 | 20 54 68 65 20 69 6e 74 65 72 76 61 6c 20 72 61 6e 67 65 20 69 73 20 33 36 30 20 74 6f 20 36 35 | .The.interval.range.is.360.to.65 |
| 135120 | 35 33 35 2e 20 4c 53 50 73 20 72 65 6d 61 69 6e 20 69 6e 20 61 20 64 61 74 61 62 61 73 65 20 66 | 535..LSPs.remain.in.a.database.f |
| 135140 | 6f 72 20 31 32 30 30 20 73 65 63 6f 6e 64 73 20 62 79 20 64 65 66 61 75 6c 74 2e 20 49 66 20 74 | or.1200.seconds.by.default..If.t |
| 135160 | 68 65 79 20 61 72 65 20 6e 6f 74 20 72 65 66 72 65 73 68 65 64 20 62 79 20 74 68 61 74 20 74 69 | hey.are.not.refreshed.by.that.ti |
| 135180 | 6d 65 2c 20 74 68 65 79 20 61 72 65 20 64 65 6c 65 74 65 64 2e 20 59 6f 75 20 63 61 6e 20 63 68 | me,.they.are.deleted..You.can.ch |
| 1351a0 | 61 6e 67 65 20 74 68 65 20 4c 53 50 20 72 65 66 72 65 73 68 20 69 6e 74 65 72 76 61 6c 20 6f 72 | ange.the.LSP.refresh.interval.or |
| 1351c0 | 20 74 68 65 20 4c 53 50 20 6c 69 66 65 74 69 6d 65 2e 20 54 68 65 20 4c 53 50 20 72 65 66 72 65 | .the.LSP.lifetime..The.LSP.refre |
| 1351e0 | 73 68 20 69 6e 74 65 72 76 61 6c 20 73 68 6f 75 6c 64 20 62 65 20 6c 65 73 73 20 74 68 61 6e 20 | sh.interval.should.be.less.than. |
| 135200 | 74 68 65 20 4c 53 50 20 6c 69 66 65 74 69 6d 65 20 6f 72 20 65 6c 73 65 20 4c 53 50 73 20 77 69 | the.LSP.lifetime.or.else.LSPs.wi |
| 135220 | 6c 6c 20 74 69 6d 65 20 6f 75 74 20 62 65 66 6f 72 65 20 74 68 65 79 20 61 72 65 20 72 65 66 72 | ll.time.out.before.they.are.refr |
| 135240 | 65 73 68 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 4c 53 50 20 72 65 66 | eshed..This.command.sets.LSP.ref |
| 135260 | 72 65 73 68 20 69 6e 74 65 72 76 61 6c 20 69 6e 20 73 65 63 6f 6e 64 73 2e 20 49 53 2d 49 53 20 | resh.interval.in.seconds..IS-IS. |
| 135280 | 67 65 6e 65 72 61 74 65 73 20 4c 53 50 73 20 77 68 65 6e 20 74 68 65 20 73 74 61 74 65 20 6f 66 | generates.LSPs.when.the.state.of |
| 1352a0 | 20 61 20 6c 69 6e 6b 20 63 68 61 6e 67 65 73 2e 20 48 6f 77 65 76 65 72 2c 20 74 6f 20 65 6e 73 | .a.link.changes..However,.to.ens |
| 1352c0 | 75 72 65 20 74 68 61 74 20 72 6f 75 74 69 6e 67 20 64 61 74 61 62 61 73 65 73 20 6f 6e 20 61 6c | ure.that.routing.databases.on.al |
| 1352e0 | 6c 20 72 6f 75 74 65 72 73 20 72 65 6d 61 69 6e 20 63 6f 6e 76 65 72 67 65 64 2c 20 4c 53 50 73 | l.routers.remain.converged,.LSPs |
| 135300 | 20 69 6e 20 73 74 61 62 6c 65 20 6e 65 74 77 6f 72 6b 73 20 61 72 65 20 67 65 6e 65 72 61 74 65 | .in.stable.networks.are.generate |
| 135320 | 64 20 6f 6e 20 61 20 72 65 67 75 6c 61 72 20 62 61 73 69 73 20 65 76 65 6e 20 74 68 6f 75 67 68 | d.on.a.regular.basis.even.though |
| 135340 | 20 74 68 65 72 65 20 68 61 73 20 62 65 65 6e 20 6e 6f 20 63 68 61 6e 67 65 20 74 6f 20 74 68 65 | .there.has.been.no.change.to.the |
| 135360 | 20 73 74 61 74 65 20 6f 66 20 74 68 65 20 6c 69 6e 6b 73 2e 20 54 68 65 20 69 6e 74 65 72 76 61 | .state.of.the.links..The.interva |
| 135380 | 6c 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 36 35 32 33 35 2e 20 54 68 65 20 64 65 66 61 75 | l.range.is.1.to.65235..The.defau |
| 1353a0 | 6c 74 20 76 61 6c 75 65 20 69 73 20 39 30 30 20 73 65 63 6f 6e 64 73 2e 00 54 68 69 73 20 63 6f | lt.value.is.900.seconds..This.co |
| 1353c0 | 6d 6d 61 6e 64 20 73 65 74 73 20 4c 53 50 20 72 65 66 72 65 73 68 20 69 6e 74 65 72 76 61 6c 20 | mmand.sets.LSP.refresh.interval. |
| 1353e0 | 69 6e 20 73 65 63 6f 6e 64 73 2e 20 54 68 65 20 69 6e 74 65 72 76 61 6c 20 72 61 6e 67 65 20 69 | in.seconds..The.interval.range.i |
| 135400 | 73 20 31 20 74 6f 20 36 35 32 33 35 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 | s.1.to.65235..This.command.sets. |
| 135420 | 4f 53 50 46 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6b 65 79 20 74 6f 20 61 20 73 69 6d | OSPF.authentication.key.to.a.sim |
| 135440 | 70 6c 65 20 70 61 73 73 77 6f 72 64 2e 20 41 66 74 65 72 20 73 65 74 74 69 6e 67 2c 20 61 6c 6c | ple.password..After.setting,.all |
| 135460 | 20 4f 53 50 46 20 70 61 63 6b 65 74 73 20 61 72 65 20 61 75 74 68 65 6e 74 69 63 61 74 65 64 2e | .OSPF.packets.are.authenticated. |
| 135480 | 20 4b 65 79 20 68 61 73 20 6c 65 6e 67 74 68 20 75 70 20 74 6f 20 38 20 63 68 61 72 73 2e 00 54 | .Key.has.length.up.to.8.chars..T |
| 1354a0 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 50 53 4e 50 20 69 6e 74 65 72 76 61 6c 20 69 | his.command.sets.PSNP.interval.i |
| 1354c0 | 6e 20 73 65 63 6f 6e 64 73 2e 20 54 68 65 20 69 6e 74 65 72 76 61 6c 20 72 61 6e 67 65 20 69 73 | n.seconds..The.interval.range.is |
| 1354e0 | 20 30 20 74 6f 20 31 32 37 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 50 61 72 | .0.to.127..This.command.sets.Par |
| 135500 | 74 69 61 6c 20 53 65 71 75 65 6e 63 65 20 4e 75 6d 62 65 72 20 50 61 63 6b 65 74 73 20 28 50 53 | tial.Sequence.Number.Packets.(PS |
| 135520 | 4e 50 29 20 69 6e 74 65 72 76 61 6c 20 69 6e 20 73 65 63 6f 6e 64 73 2e 20 54 68 65 20 69 6e 74 | NP).interval.in.seconds..The.int |
| 135540 | 65 72 76 61 6c 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 31 32 30 2e 00 54 68 69 73 20 63 6f | erval.range.is.1.to.120..This.co |
| 135560 | 6d 6d 61 6e 64 20 73 65 74 73 20 52 6f 75 74 65 72 20 50 72 69 6f 72 69 74 79 20 69 6e 74 65 67 | mmand.sets.Router.Priority.integ |
| 135580 | 65 72 20 76 61 6c 75 65 2e 20 54 68 65 20 72 6f 75 74 65 72 20 77 69 74 68 20 74 68 65 20 68 69 | er.value..The.router.with.the.hi |
| 1355a0 | 67 68 65 73 74 20 70 72 69 6f 72 69 74 79 20 77 69 6c 6c 20 62 65 20 6d 6f 72 65 20 65 6c 69 67 | ghest.priority.will.be.more.elig |
| 1355c0 | 69 62 6c 65 20 74 6f 20 62 65 63 6f 6d 65 20 44 65 73 69 67 6e 61 74 65 64 20 52 6f 75 74 65 72 | ible.to.become.Designated.Router |
| 1355e0 | 2e 20 53 65 74 74 69 6e 67 20 74 68 65 20 76 61 6c 75 65 20 74 6f 20 30 2c 20 6d 61 6b 65 73 20 | ..Setting.the.value.to.0,.makes. |
| 135600 | 74 68 65 20 72 6f 75 74 65 72 20 69 6e 65 6c 69 67 69 62 6c 65 20 74 6f 20 62 65 63 6f 6d 65 20 | the.router.ineligible.to.become. |
| 135620 | 44 65 73 69 67 6e 61 74 65 64 20 52 6f 75 74 65 72 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 | Designated.Router..The.default.v |
| 135640 | 61 6c 75 65 20 69 73 20 31 2e 20 54 68 65 20 69 6e 74 65 72 76 61 6c 20 72 61 6e 67 65 20 69 73 | alue.is.1..The.interval.range.is |
| 135660 | 20 30 20 74 6f 20 32 35 35 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 61 20 73 | .0.to.255..This.command.sets.a.s |
| 135680 | 74 61 74 69 63 20 74 69 65 72 20 6e 75 6d 62 65 72 20 74 6f 20 61 64 76 65 72 74 69 73 65 20 61 | tatic.tier.number.to.advertise.a |
| 1356a0 | 73 20 6c 6f 63 61 74 69 6f 6e 20 69 6e 20 74 68 65 20 66 61 62 72 69 63 2e 00 54 68 69 73 20 63 | s.location.in.the.fabric..This.c |
| 1356c0 | 6f 6d 6d 61 6e 64 20 73 65 74 73 20 64 65 66 61 75 6c 74 20 52 49 50 20 64 69 73 74 61 6e 63 65 | ommand.sets.default.RIP.distance |
| 1356e0 | 20 74 6f 20 61 20 73 70 65 63 69 66 69 65 64 20 76 61 6c 75 65 20 77 68 65 6e 20 74 68 65 20 72 | .to.a.specified.value.when.the.r |
| 135700 | 6f 75 74 65 73 20 73 6f 75 72 63 65 20 49 50 20 61 64 64 72 65 73 73 20 6d 61 74 63 68 65 73 20 | outes.source.IP.address.matches. |
| 135720 | 74 68 65 20 73 70 65 63 69 66 69 65 64 20 70 72 65 66 69 78 2e 00 54 68 69 73 20 63 6f 6d 6d 61 | the.specified.prefix..This.comma |
| 135740 | 6e 64 20 73 65 74 73 20 64 65 66 61 75 6c 74 20 6d 65 74 72 69 63 20 66 6f 72 20 63 69 72 63 75 | nd.sets.default.metric.for.circu |
| 135760 | 69 74 2e 20 54 68 65 20 6d 65 74 72 69 63 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 31 36 37 | it..The.metric.range.is.1.to.167 |
| 135780 | 37 37 32 31 35 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 68 65 6c 6c 6f 20 69 | 77215..This.command.sets.hello.i |
| 1357a0 | 6e 74 65 72 76 61 6c 20 69 6e 20 73 65 63 6f 6e 64 73 20 6f 6e 20 61 20 67 69 76 65 6e 20 69 6e | nterval.in.seconds.on.a.given.in |
| 1357c0 | 74 65 72 66 61 63 65 2e 20 54 68 65 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 36 30 30 2e 00 | terface..The.range.is.1.to.600.. |
| 1357e0 | 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 68 65 6c 6c 6f 20 69 6e 74 65 72 76 61 6c | This.command.sets.hello.interval |
| 135800 | 20 69 6e 20 73 65 63 6f 6e 64 73 20 6f 6e 20 61 20 67 69 76 65 6e 20 69 6e 74 65 72 66 61 63 65 | .in.seconds.on.a.given.interface |
| 135820 | 2e 20 54 68 65 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 36 30 30 2e 20 48 65 6c 6c 6f 20 70 | ..The.range.is.1.to.600..Hello.p |
| 135840 | 61 63 6b 65 74 73 20 61 72 65 20 75 73 65 64 20 74 6f 20 65 73 74 61 62 6c 69 73 68 20 61 6e 64 | ackets.are.used.to.establish.and |
| 135860 | 20 6d 61 69 6e 74 61 69 6e 20 61 64 6a 61 63 65 6e 63 79 20 62 65 74 77 65 65 6e 20 4f 70 65 6e | .maintain.adjacency.between.Open |
| 135880 | 46 61 62 72 69 63 20 6e 65 69 67 68 62 6f 72 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 | Fabric.neighbors..This.command.s |
| 1358a0 | 65 74 73 20 6c 69 6e 6b 20 63 6f 73 74 20 66 6f 72 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 | ets.link.cost.for.the.specified. |
| 1358c0 | 69 6e 74 65 72 66 61 63 65 2e 20 54 68 65 20 63 6f 73 74 20 76 61 6c 75 65 20 69 73 20 73 65 74 | interface..The.cost.value.is.set |
| 1358e0 | 20 74 6f 20 72 6f 75 74 65 72 2d 4c 53 41 e2 80 99 73 20 6d 65 74 72 69 63 20 66 69 65 6c 64 20 | .to.router-LSA...s.metric.field. |
| 135900 | 61 6e 64 20 75 73 65 64 20 66 6f 72 20 53 50 46 20 63 61 6c 63 75 6c 61 74 69 6f 6e 2e 20 54 68 | and.used.for.SPF.calculation..Th |
| 135920 | 65 20 63 6f 73 74 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 36 35 35 33 35 2e 00 54 68 69 73 | e.cost.range.is.1.to.65535..This |
| 135940 | 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 6d 69 6e 69 6d 75 6d 20 69 6e 74 65 72 76 61 6c 20 61 | .command.sets.minimum.interval.a |
| 135960 | 74 20 77 68 69 63 68 20 6c 69 6e 6b 2d 73 74 61 74 65 20 70 61 63 6b 65 74 73 20 28 4c 53 50 73 | t.which.link-state.packets.(LSPs |
| 135980 | 29 20 61 72 65 20 67 65 6e 65 72 61 74 65 64 2e 20 54 68 65 20 69 6e 74 65 72 76 61 6c 20 72 61 | ).are.generated..The.interval.ra |
| 1359a0 | 6e 67 65 20 69 73 20 31 20 74 6f 20 31 32 30 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 | nge.is.1.to.120..This.command.se |
| 1359c0 | 74 73 20 6d 69 6e 69 6d 75 6d 20 69 6e 74 65 72 76 61 6c 20 62 65 74 77 65 65 6e 20 63 6f 6e 73 | ts.minimum.interval.between.cons |
| 1359e0 | 65 63 75 74 69 76 65 20 53 50 46 20 63 61 6c 63 75 6c 61 74 69 6f 6e 73 20 69 6e 20 73 65 63 6f | ecutive.SPF.calculations.in.seco |
| 135a00 | 6e 64 73 2e 54 68 65 20 69 6e 74 65 72 76 61 6c 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 31 | nds.The.interval.range.is.1.to.1 |
| 135a20 | 32 30 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 6d 69 6e 69 6d 75 6d 20 69 6e | 20..This.command.sets.minimum.in |
| 135a40 | 74 65 72 76 61 6c 20 62 65 74 77 65 65 6e 20 63 6f 6e 73 65 63 75 74 69 76 65 20 73 68 6f 72 74 | terval.between.consecutive.short |
| 135a60 | 65 73 74 20 70 61 74 68 20 66 69 72 73 74 20 28 53 50 46 29 20 63 61 6c 63 75 6c 61 74 69 6f 6e | est.path.first.(SPF).calculation |
| 135a80 | 73 20 69 6e 20 73 65 63 6f 6e 64 73 2e 54 68 65 20 69 6e 74 65 72 76 61 6c 20 72 61 6e 67 65 20 | s.in.seconds.The.interval.range. |
| 135aa0 | 69 73 20 31 20 74 6f 20 31 32 30 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 6d | is.1.to.120..This.command.sets.m |
| 135ac0 | 69 6e 69 6d 75 6d 20 69 6e 74 65 72 76 61 6c 20 69 6e 20 73 65 63 6f 6e 64 73 20 62 65 74 77 65 | inimum.interval.in.seconds.betwe |
| 135ae0 | 65 6e 20 72 65 67 65 6e 65 72 61 74 69 6e 67 20 73 61 6d 65 20 4c 53 50 2e 20 54 68 65 20 69 6e | en.regenerating.same.LSP..The.in |
| 135b00 | 74 65 72 76 61 6c 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 31 32 30 2e 00 54 68 69 73 20 63 | terval.range.is.1.to.120..This.c |
| 135b20 | 6f 6d 6d 61 6e 64 20 73 65 74 73 20 6d 75 6c 74 69 70 6c 69 65 72 20 66 6f 72 20 68 65 6c 6c 6f | ommand.sets.multiplier.for.hello |
| 135b40 | 20 68 6f 6c 64 69 6e 67 20 74 69 6d 65 20 6f 6e 20 61 20 67 69 76 65 6e 20 69 6e 74 65 72 66 61 | .holding.time.on.a.given.interfa |
| 135b60 | 63 65 2e 20 54 68 65 20 72 61 6e 67 65 20 69 73 20 32 20 74 6f 20 31 30 30 2e 00 54 68 69 73 20 | ce..The.range.is.2.to.100..This. |
| 135b80 | 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 6e 65 74 77 6f 72 6b 20 65 6e 74 69 74 79 20 74 69 74 6c | command.sets.network.entity.titl |
| 135ba0 | 65 20 28 4e 45 54 29 20 70 72 6f 76 69 64 65 64 20 69 6e 20 49 53 4f 20 66 6f 72 6d 61 74 2e 00 | e.(NET).provided.in.ISO.format.. |
| 135bc0 | 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 6e 75 6d 62 65 72 20 6f 66 20 73 65 63 6f | This.command.sets.number.of.seco |
| 135be0 | 6e 64 73 20 66 6f 72 20 49 6e 66 54 72 61 6e 73 44 65 6c 61 79 20 76 61 6c 75 65 2e 20 49 74 20 | nds.for.InfTransDelay.value..It. |
| 135c00 | 61 6c 6c 6f 77 73 20 74 6f 20 73 65 74 20 61 6e 64 20 61 64 6a 75 73 74 20 66 6f 72 20 65 61 63 | allows.to.set.and.adjust.for.eac |
| 135c20 | 68 20 69 6e 74 65 72 66 61 63 65 20 74 68 65 20 64 65 6c 61 79 20 69 6e 74 65 72 76 61 6c 20 62 | h.interface.the.delay.interval.b |
| 135c40 | 65 66 6f 72 65 20 73 74 61 72 74 69 6e 67 20 74 68 65 20 73 79 6e 63 68 72 6f 6e 69 7a 69 6e 67 | efore.starting.the.synchronizing |
| 135c60 | 20 70 72 6f 63 65 73 73 20 6f 66 20 74 68 65 20 72 6f 75 74 65 72 27 73 20 64 61 74 61 62 61 73 | .process.of.the.router's.databas |
| 135c80 | 65 20 77 69 74 68 20 61 6c 6c 20 6e 65 69 67 68 62 6f 72 73 2e 20 54 68 65 20 64 65 66 61 75 6c | e.with.all.neighbors..The.defaul |
| 135ca0 | 74 20 76 61 6c 75 65 20 69 73 20 31 20 73 65 63 6f 6e 64 73 2e 20 54 68 65 20 69 6e 74 65 72 76 | t.value.is.1.seconds..The.interv |
| 135cc0 | 61 6c 20 72 61 6e 67 65 20 69 73 20 33 20 74 6f 20 36 35 35 33 35 2e 00 54 68 69 73 20 63 6f 6d | al.range.is.3.to.65535..This.com |
| 135ce0 | 6d 61 6e 64 20 73 65 74 73 20 6e 75 6d 62 65 72 20 6f 66 20 73 65 63 6f 6e 64 73 20 66 6f 72 20 | mand.sets.number.of.seconds.for. |
| 135d00 | 52 78 6d 74 49 6e 74 65 72 76 61 6c 20 74 69 6d 65 72 20 76 61 6c 75 65 2e 20 54 68 69 73 20 76 | RxmtInterval.timer.value..This.v |
| 135d20 | 61 6c 75 65 20 69 73 20 75 73 65 64 20 77 68 65 6e 20 72 65 74 72 61 6e 73 6d 69 74 74 69 6e 67 | alue.is.used.when.retransmitting |
| 135d40 | 20 44 61 74 61 62 61 73 65 20 44 65 73 63 72 69 70 74 69 6f 6e 20 61 6e 64 20 4c 69 6e 6b 20 53 | .Database.Description.and.Link.S |
| 135d60 | 74 61 74 65 20 52 65 71 75 65 73 74 20 70 61 63 6b 65 74 73 20 69 66 20 61 63 6b 6e 6f 77 6c 65 | tate.Request.packets.if.acknowle |
| 135d80 | 64 67 65 20 77 61 73 20 6e 6f 74 20 72 65 63 65 69 76 65 64 2e 20 54 68 65 20 64 65 66 61 75 6c | dge.was.not.received..The.defaul |
| 135da0 | 74 20 76 61 6c 75 65 20 69 73 20 35 20 73 65 63 6f 6e 64 73 2e 20 54 68 65 20 69 6e 74 65 72 76 | t.value.is.5.seconds..The.interv |
| 135dc0 | 61 6c 20 72 61 6e 67 65 20 69 73 20 33 20 74 6f 20 36 35 35 33 35 2e 00 54 68 69 73 20 63 6f 6d | al.range.is.3.to.65535..This.com |
| 135de0 | 6d 61 6e 64 20 73 65 74 73 20 6f 6c 64 2d 73 74 79 6c 65 20 28 49 53 4f 20 31 30 35 38 39 29 20 | mand.sets.old-style.(ISO.10589). |
| 135e00 | 6f 72 20 6e 65 77 20 73 74 79 6c 65 20 70 61 63 6b 65 74 20 66 6f 72 6d 61 74 73 3a 00 54 68 69 | or.new.style.packet.formats:.Thi |
| 135e20 | 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 6f 74 68 65 72 20 63 6f 6e 66 65 64 65 72 61 74 69 | s.command.sets.other.confederati |
| 135e40 | 6f 6e 73 20 3c 6e 73 75 62 61 73 6e 3e 20 61 73 20 6d 65 6d 62 65 72 73 20 6f 66 20 61 75 74 6f | ons.<nsubasn>.as.members.of.auto |
| 135e60 | 6e 6f 6d 6f 75 73 20 73 79 73 74 65 6d 20 73 70 65 63 69 66 69 65 64 20 62 79 20 3a 63 66 67 63 | nomous.system.specified.by.:cfgc |
| 135e80 | 6d 64 3a 60 63 6f 6e 66 65 64 65 72 61 74 69 6f 6e 20 69 64 65 6e 74 69 66 69 65 72 20 3c 61 73 | md:`confederation.identifier.<as |
| 135ea0 | 6e 3e 60 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 6f 76 65 72 6c 6f 61 64 20 | n>`..This.command.sets.overload. |
| 135ec0 | 62 69 74 20 74 6f 20 61 76 6f 69 64 20 61 6e 79 20 74 72 61 6e 73 69 74 20 74 72 61 66 66 69 63 | bit.to.avoid.any.transit.traffic |
| 135ee0 | 20 74 68 72 6f 75 67 68 20 74 68 69 73 20 72 6f 75 74 65 72 2e 00 54 68 69 73 20 63 6f 6d 6d 61 | .through.this.router..This.comma |
| 135f00 | 6e 64 20 73 65 74 73 20 6f 76 65 72 6c 6f 61 64 20 62 69 74 20 74 6f 20 61 76 6f 69 64 20 61 6e | nd.sets.overload.bit.to.avoid.an |
| 135f20 | 79 20 74 72 61 6e 73 69 74 20 74 72 61 66 66 69 63 20 74 68 72 6f 75 67 68 20 74 68 69 73 20 72 | y.transit.traffic.through.this.r |
| 135f40 | 6f 75 74 65 72 2e 20 49 74 20 69 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 | outer..It.is.described.in.:rfc:` |
| 135f60 | 33 37 38 37 60 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 70 72 69 6f 72 69 74 | 3787`..This.command.sets.priorit |
| 135f80 | 79 20 66 6f 72 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 66 6f 72 20 3a 61 62 62 72 3a 60 44 | y.for.the.interface.for.:abbr:`D |
| 135fa0 | 49 53 20 28 44 65 73 69 67 6e 61 74 65 64 20 49 6e 74 65 72 6d 65 64 69 61 74 65 20 53 79 73 74 | IS.(Designated.Intermediate.Syst |
| 135fc0 | 65 6d 29 60 20 65 6c 65 63 74 69 6f 6e 2e 20 54 68 65 20 70 72 69 6f 72 69 74 79 20 72 61 6e 67 | em)`.election..The.priority.rang |
| 135fe0 | 65 20 69 73 20 30 20 74 6f 20 31 32 37 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 | e.is.0.to.127..This.command.sets |
| 136000 | 20 74 68 65 20 61 64 6d 69 6e 69 73 74 72 61 74 69 76 65 20 64 69 73 74 61 6e 63 65 20 66 6f 72 | .the.administrative.distance.for |
| 136020 | 20 61 20 70 61 72 74 69 63 75 6c 61 72 20 72 6f 75 74 65 2e 20 54 68 65 20 64 69 73 74 61 6e 63 | .a.particular.route..The.distanc |
| 136040 | 65 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 32 35 35 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e | e.range.is.1.to.255..This.comman |
| 136060 | 64 20 73 65 74 73 20 74 68 65 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 70 61 73 73 77 6f | d.sets.the.authentication.passwo |
| 136080 | 72 64 20 66 6f 72 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 | rd.for.the.interface..This.comma |
| 1360a0 | 6e 64 20 73 65 74 73 20 74 68 65 20 63 6f 73 74 20 6f 66 20 64 65 66 61 75 6c 74 2d 73 75 6d 6d | nd.sets.the.cost.of.default-summ |
| 1360c0 | 61 72 79 20 4c 53 41 73 20 61 6e 6e 6f 75 6e 63 65 64 20 74 6f 20 73 74 75 62 62 79 20 61 72 65 | ary.LSAs.announced.to.stubby.are |
| 1360e0 | 61 73 2e 20 54 68 65 20 63 6f 73 74 20 72 61 6e 67 65 20 69 73 20 30 20 74 6f 20 31 36 37 37 37 | as..The.cost.range.is.0.to.16777 |
| 136100 | 32 31 35 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 74 68 65 20 64 65 66 61 75 | 215..This.command.sets.the.defau |
| 136120 | 6c 74 20 63 6f 73 74 20 6f 66 20 4c 53 41 73 20 61 6e 6e 6f 75 6e 63 65 64 20 74 6f 20 4e 53 53 | lt.cost.of.LSAs.announced.to.NSS |
| 136140 | 41 20 61 72 65 61 73 2e 20 54 68 65 20 63 6f 73 74 20 72 61 6e 67 65 20 69 73 20 30 20 74 6f 20 | A.areas..The.cost.range.is.0.to. |
| 136160 | 31 36 37 37 37 32 31 35 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 74 68 65 20 | 16777215..This.command.sets.the. |
| 136180 | 69 6e 69 74 69 61 6c 20 64 65 6c 61 79 2c 20 74 68 65 20 69 6e 69 74 69 61 6c 2d 68 6f 6c 64 74 | initial.delay,.the.initial-holdt |
| 1361a0 | 69 6d 65 20 61 6e 64 20 74 68 65 20 6d 61 78 69 6d 75 6d 2d 68 6f 6c 64 74 69 6d 65 20 62 65 74 | ime.and.the.maximum-holdtime.bet |
| 1361c0 | 77 65 65 6e 20 77 68 65 6e 20 53 50 46 20 69 73 20 63 61 6c 63 75 6c 61 74 65 64 20 61 6e 64 20 | ween.when.SPF.is.calculated.and. |
| 1361e0 | 74 68 65 20 65 76 65 6e 74 20 77 68 69 63 68 20 74 72 69 67 67 65 72 65 64 20 74 68 65 20 63 61 | the.event.which.triggered.the.ca |
| 136200 | 6c 63 75 6c 61 74 69 6f 6e 2e 20 54 68 65 20 74 69 6d 65 73 20 61 72 65 20 73 70 65 63 69 66 69 | lculation..The.times.are.specifi |
| 136220 | 65 64 20 69 6e 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 20 61 6e 64 20 6d 75 73 74 20 62 65 20 69 | ed.in.milliseconds.and.must.be.i |
| 136240 | 6e 20 74 68 65 20 72 61 6e 67 65 20 6f 66 20 30 20 74 6f 20 36 30 30 30 30 30 20 6d 69 6c 6c 69 | n.the.range.of.0.to.600000.milli |
| 136260 | 73 65 63 6f 6e 64 73 2e 20 3a 63 66 67 63 6d 64 3a 60 64 65 6c 61 79 60 20 73 65 74 73 20 74 68 | seconds..:cfgcmd:`delay`.sets.th |
| 136280 | 65 20 69 6e 69 74 69 61 6c 20 53 50 46 20 73 63 68 65 64 75 6c 65 20 64 65 6c 61 79 20 69 6e 20 | e.initial.SPF.schedule.delay.in. |
| 1362a0 | 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 | milliseconds..The.default.value. |
| 1362c0 | 69 73 20 32 30 30 20 6d 73 2e 20 3a 63 66 67 63 6d 64 3a 60 69 6e 69 74 69 61 6c 2d 68 6f 6c 64 | is.200.ms..:cfgcmd:`initial-hold |
| 1362e0 | 74 69 6d 65 60 20 73 65 74 73 20 74 68 65 20 6d 69 6e 69 6d 75 6d 20 68 6f 6c 64 20 74 69 6d 65 | time`.sets.the.minimum.hold.time |
| 136300 | 20 62 65 74 77 65 65 6e 20 74 77 6f 20 63 6f 6e 73 65 63 75 74 69 76 65 20 53 50 46 20 63 61 6c | .between.two.consecutive.SPF.cal |
| 136320 | 63 75 6c 61 74 69 6f 6e 73 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 | culations..The.default.value.is. |
| 136340 | 31 30 30 30 20 6d 73 2e 20 3a 63 66 67 63 6d 64 3a 60 6d 61 78 2d 68 6f 6c 64 74 69 6d 65 60 20 | 1000.ms..:cfgcmd:`max-holdtime`. |
| 136360 | 73 65 74 73 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 77 61 69 74 20 74 69 6d 65 20 62 65 74 77 65 | sets.the.maximum.wait.time.betwe |
| 136380 | 65 6e 20 74 77 6f 20 63 6f 6e 73 65 63 75 74 69 76 65 20 53 50 46 20 63 61 6c 63 75 6c 61 74 69 | en.two.consecutive.SPF.calculati |
| 1363a0 | 6f 6e 73 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 31 30 30 30 30 20 | ons..The.default.value.is.10000. |
| 1363c0 | 6d 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 74 68 65 20 69 6e 74 65 72 66 | ms..This.command.sets.the.interf |
| 1363e0 | 61 63 65 20 62 61 6e 64 77 69 64 74 68 20 66 6f 72 20 63 6f 73 74 20 63 61 6c 63 75 6c 61 74 69 | ace.bandwidth.for.cost.calculati |
| 136400 | 6f 6e 73 2c 20 77 68 65 72 65 20 62 61 6e 64 77 69 64 74 68 20 63 61 6e 20 62 65 20 69 6e 20 72 | ons,.where.bandwidth.can.be.in.r |
| 136420 | 61 6e 67 65 20 66 72 6f 6d 20 31 20 74 6f 20 31 30 30 30 30 30 2c 20 73 70 65 63 69 66 69 65 64 | ange.from.1.to.100000,.specified |
| 136440 | 20 69 6e 20 4d 62 69 74 73 2f 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 74 | .in.Mbits/s..This.command.sets.t |
| 136460 | 68 65 20 69 6e 74 65 72 66 61 63 65 20 74 79 70 65 3a 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 | he.interface.type:.This.command. |
| 136480 | 73 65 74 73 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 77 69 74 68 20 52 49 50 20 4d 44 35 20 | sets.the.interface.with.RIP.MD5. |
| 1364a0 | 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 6c 73 | authentication..This.command.als |
| 1364c0 | 6f 20 73 65 74 73 20 4d 44 35 20 4b 65 79 2e 20 54 68 65 20 6b 65 79 20 6d 75 73 74 20 62 65 20 | o.sets.MD5.Key..The.key.must.be. |
| 1364e0 | 73 68 6f 72 74 65 72 20 74 68 61 6e 20 31 36 20 63 68 61 72 61 63 74 65 72 73 2e 00 54 68 69 73 | shorter.than.16.characters..This |
| 136500 | 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 77 69 74 68 | .command.sets.the.interface.with |
| 136520 | 20 52 49 50 20 73 69 6d 70 6c 65 20 70 61 73 73 77 6f 72 64 20 61 75 74 68 65 6e 74 69 63 61 74 | .RIP.simple.password.authenticat |
| 136540 | 69 6f 6e 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 6c 73 6f 20 73 65 74 73 20 61 75 74 68 | ion..This.command.also.sets.auth |
| 136560 | 65 6e 74 69 63 61 74 69 6f 6e 20 73 74 72 69 6e 67 2e 20 54 68 65 20 73 74 72 69 6e 67 20 6d 75 | entication.string..The.string.mu |
| 136580 | 73 74 20 62 65 20 73 68 6f 72 74 65 72 20 74 68 61 6e 20 31 36 20 63 68 61 72 61 63 74 65 72 73 | st.be.shorter.than.16.characters |
| 1365a0 | 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 74 68 65 20 6d 75 6c 74 69 70 6c 69 | ..This.command.sets.the.multipli |
| 1365c0 | 63 61 74 69 76 65 20 66 61 63 74 6f 72 20 75 73 65 64 20 66 6f 72 20 64 69 76 65 72 73 69 74 79 | cative.factor.used.for.diversity |
| 1365e0 | 20 72 6f 75 74 69 6e 67 2c 20 69 6e 20 75 6e 69 74 73 20 6f 66 20 31 2f 32 35 36 3b 20 6c 6f 77 | .routing,.in.units.of.1/256;.low |
| 136600 | 65 72 20 76 61 6c 75 65 73 20 63 61 75 73 65 20 64 69 76 65 72 73 69 74 79 20 74 6f 20 70 6c 61 | er.values.cause.diversity.to.pla |
| 136620 | 79 20 61 20 6d 6f 72 65 20 69 6d 70 6f 72 74 61 6e 74 20 72 6f 6c 65 20 69 6e 20 72 6f 75 74 65 | y.a.more.important.role.in.route |
| 136640 | 20 73 65 6c 65 63 74 69 6f 6e 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 69 74 20 32 35 36 2c 20 | .selection..The.default.it.256,. |
| 136660 | 77 68 69 63 68 20 6d 65 61 6e 73 20 74 68 61 74 20 64 69 76 65 72 73 69 74 79 20 70 6c 61 79 73 | which.means.that.diversity.plays |
| 136680 | 20 6e 6f 20 72 6f 6c 65 20 69 6e 20 72 6f 75 74 65 20 73 65 6c 65 63 74 69 6f 6e 3b 20 79 6f 75 | .no.role.in.route.selection;.you |
| 1366a0 | 20 77 69 6c 6c 20 70 72 6f 62 61 62 6c 79 20 77 61 6e 74 20 74 6f 20 73 65 74 20 74 68 61 74 20 | .will.probably.want.to.set.that. |
| 1366c0 | 74 6f 20 31 32 38 20 6f 72 20 6c 65 73 73 20 6f 6e 20 6e 6f 64 65 73 20 77 69 74 68 20 6d 75 6c | to.128.or.less.on.nodes.with.mul |
| 1366e0 | 74 69 70 6c 65 20 69 6e 64 65 70 65 6e 64 65 6e 74 20 72 61 64 69 6f 73 2e 00 54 68 69 73 20 63 | tiple.independent.radios..This.c |
| 136700 | 6f 6d 6d 61 6e 64 20 73 65 74 73 20 74 68 65 20 72 65 66 65 72 65 6e 63 65 20 62 61 6e 64 77 69 | ommand.sets.the.reference.bandwi |
| 136720 | 64 74 68 20 66 6f 72 20 63 6f 73 74 20 63 61 6c 63 75 6c 61 74 69 6f 6e 73 2c 20 77 68 65 72 65 | dth.for.cost.calculations,.where |
| 136740 | 20 62 61 6e 64 77 69 64 74 68 20 63 61 6e 20 62 65 20 69 6e 20 72 61 6e 67 65 20 66 72 6f 6d 20 | .bandwidth.can.be.in.range.from. |
| 136760 | 31 20 74 6f 20 34 32 39 34 39 36 37 2c 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 4d 62 69 74 73 | 1.to.4294967,.specified.in.Mbits |
| 136780 | 2f 73 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 31 30 30 4d 62 69 74 2f 73 20 28 69 2e | /s..The.default.is.100Mbit/s.(i. |
| 1367a0 | 65 2e 20 61 20 6c 69 6e 6b 20 6f 66 20 62 61 6e 64 77 69 64 74 68 20 31 30 30 4d 62 69 74 2f 73 | e..a.link.of.bandwidth.100Mbit/s |
| 1367c0 | 20 6f 72 20 68 69 67 68 65 72 20 77 69 6c 6c 20 68 61 76 65 20 61 20 63 6f 73 74 20 6f 66 20 31 | .or.higher.will.have.a.cost.of.1 |
| 1367e0 | 2e 20 43 6f 73 74 20 6f 66 20 6c 6f 77 65 72 20 62 61 6e 64 77 69 64 74 68 20 6c 69 6e 6b 73 20 | ..Cost.of.lower.bandwidth.links. |
| 136800 | 77 69 6c 6c 20 62 65 20 73 63 61 6c 65 64 20 77 69 74 68 20 72 65 66 65 72 65 6e 63 65 20 74 6f | will.be.scaled.with.reference.to |
| 136820 | 20 74 68 69 73 20 63 6f 73 74 29 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 74 | .this.cost)..This.command.sets.t |
| 136840 | 68 65 20 72 6f 75 74 65 72 2d 49 44 20 6f 66 20 74 68 65 20 4f 53 50 46 20 70 72 6f 63 65 73 73 | he.router-ID.of.the.OSPF.process |
| 136860 | 2e 20 54 68 65 20 72 6f 75 74 65 72 2d 49 44 20 6d 61 79 20 62 65 20 61 6e 20 49 50 20 61 64 64 | ..The.router-ID.may.be.an.IP.add |
| 136880 | 72 65 73 73 20 6f 66 20 74 68 65 20 72 6f 75 74 65 72 2c 20 62 75 74 20 6e 65 65 64 20 6e 6f 74 | ress.of.the.router,.but.need.not |
| 1368a0 | 20 62 65 20 e2 80 93 20 69 74 20 63 61 6e 20 62 65 20 61 6e 79 20 61 72 62 69 74 72 61 72 79 20 | .be.....it.can.be.any.arbitrary. |
| 1368c0 | 33 32 62 69 74 20 6e 75 6d 62 65 72 2e 20 48 6f 77 65 76 65 72 20 69 74 20 4d 55 53 54 20 62 65 | 32bit.number..However.it.MUST.be |
| 1368e0 | 20 75 6e 69 71 75 65 20 77 69 74 68 69 6e 20 74 68 65 20 65 6e 74 69 72 65 20 4f 53 50 46 20 64 | .unique.within.the.entire.OSPF.d |
| 136900 | 6f 6d 61 69 6e 20 74 6f 20 74 68 65 20 4f 53 50 46 20 73 70 65 61 6b 65 72 20 e2 80 93 20 62 61 | omain.to.the.OSPF.speaker.....ba |
| 136920 | 64 20 74 68 69 6e 67 73 20 77 69 6c 6c 20 68 61 70 70 65 6e 20 69 66 20 6d 75 6c 74 69 70 6c 65 | d.things.will.happen.if.multiple |
| 136940 | 20 4f 53 50 46 20 73 70 65 61 6b 65 72 73 20 61 72 65 20 63 6f 6e 66 69 67 75 72 65 64 20 77 69 | .OSPF.speakers.are.configured.wi |
| 136960 | 74 68 20 74 68 65 20 73 61 6d 65 20 72 6f 75 74 65 72 2d 49 44 21 00 54 68 69 73 20 63 6f 6d 6d | th.the.same.router-ID!.This.comm |
| 136980 | 61 6e 64 20 73 65 74 73 20 74 68 65 20 72 6f 75 74 65 72 2d 49 44 20 6f 66 20 74 68 65 20 4f 53 | and.sets.the.router-ID.of.the.OS |
| 1369a0 | 50 46 76 33 20 70 72 6f 63 65 73 73 2e 20 54 68 65 20 72 6f 75 74 65 72 2d 49 44 20 6d 61 79 20 | PFv3.process..The.router-ID.may. |
| 1369c0 | 62 65 20 61 6e 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 72 6f 75 74 65 72 2c 20 | be.an.IP.address.of.the.router,. |
| 1369e0 | 62 75 74 20 6e 65 65 64 20 6e 6f 74 20 62 65 20 e2 80 93 20 69 74 20 63 61 6e 20 62 65 20 61 6e | but.need.not.be.....it.can.be.an |
| 136a00 | 79 20 61 72 62 69 74 72 61 72 79 20 33 32 62 69 74 20 6e 75 6d 62 65 72 2e 20 48 6f 77 65 76 65 | y.arbitrary.32bit.number..Howeve |
| 136a20 | 72 20 69 74 20 4d 55 53 54 20 62 65 20 75 6e 69 71 75 65 20 77 69 74 68 69 6e 20 74 68 65 20 65 | r.it.MUST.be.unique.within.the.e |
| 136a40 | 6e 74 69 72 65 20 4f 53 50 46 76 33 20 64 6f 6d 61 69 6e 20 74 6f 20 74 68 65 20 4f 53 50 46 76 | ntire.OSPFv3.domain.to.the.OSPFv |
| 136a60 | 33 20 73 70 65 61 6b 65 72 20 e2 80 93 20 62 61 64 20 74 68 69 6e 67 73 20 77 69 6c 6c 20 68 61 | 3.speaker.....bad.things.will.ha |
| 136a80 | 70 70 65 6e 20 69 66 20 6d 75 6c 74 69 70 6c 65 20 4f 53 50 46 76 33 20 73 70 65 61 6b 65 72 73 | ppen.if.multiple.OSPFv3.speakers |
| 136aa0 | 20 61 72 65 20 63 6f 6e 66 69 67 75 72 65 64 20 77 69 74 68 20 74 68 65 20 73 61 6d 65 20 72 6f | .are.configured.with.the.same.ro |
| 136ac0 | 75 74 65 72 2d 49 44 21 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 74 68 65 20 73 | uter-ID!.This.command.sets.the.s |
| 136ae0 | 70 65 63 69 66 69 65 64 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 70 61 73 73 69 76 65 20 6d 6f | pecified.interface.to.passive.mo |
| 136b00 | 64 65 2e 20 4f 6e 20 70 61 73 73 69 76 65 20 6d 6f 64 65 20 69 6e 74 65 72 66 61 63 65 2c 20 61 | de..On.passive.mode.interface,.a |
| 136b20 | 6c 6c 20 72 65 63 65 69 76 69 6e 67 20 70 61 63 6b 65 74 73 20 61 72 65 20 70 72 6f 63 65 73 73 | ll.receiving.packets.are.process |
| 136b40 | 65 64 20 61 73 20 6e 6f 72 6d 61 6c 20 61 6e 64 20 56 79 4f 53 20 64 6f 65 73 20 6e 6f 74 20 73 | ed.as.normal.and.VyOS.does.not.s |
| 136b60 | 65 6e 64 20 65 69 74 68 65 72 20 6d 75 6c 74 69 63 61 73 74 20 6f 72 20 75 6e 69 63 61 73 74 20 | end.either.multicast.or.unicast. |
| 136b80 | 52 49 50 20 70 61 63 6b 65 74 73 20 65 78 63 65 70 74 20 74 6f 20 52 49 50 20 6e 65 69 67 68 62 | RIP.packets.except.to.RIP.neighb |
| 136ba0 | 6f 72 73 20 73 70 65 63 69 66 69 65 64 20 77 69 74 68 20 6e 65 69 67 68 62 6f 72 20 63 6f 6d 6d | ors.specified.with.neighbor.comm |
| 136bc0 | 61 6e 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 68 6f 75 6c 64 20 4e 4f 54 20 62 65 20 | and..This.command.should.NOT.be. |
| 136be0 | 73 65 74 20 6e 6f 72 6d 61 6c 6c 79 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 68 6f 77 73 | set.normally..This.command.shows |
| 136c00 | 20 62 6f 74 68 20 73 74 61 74 75 73 20 61 6e 64 20 73 74 61 74 69 73 74 69 63 73 20 6f 6e 20 74 | .both.status.and.statistics.on.t |
| 136c20 | 68 65 20 73 70 65 63 69 66 69 65 64 20 77 69 72 65 6c 65 73 73 20 69 6e 74 65 72 66 61 63 65 2e | he.specified.wireless.interface. |
| 136c40 | 20 54 68 65 20 77 69 72 65 6c 65 73 73 20 69 6e 74 65 72 66 61 63 65 20 69 64 65 6e 74 69 66 69 | .The.wireless.interface.identifi |
| 136c60 | 65 72 20 63 61 6e 20 72 61 6e 67 65 20 66 72 6f 6d 20 77 6c 61 6e 30 20 74 6f 20 77 6c 61 6e 39 | er.can.range.from.wlan0.to.wlan9 |
| 136c80 | 39 39 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 61 20 42 47 50 | 99..This.command.specifies.a.BGP |
| 136ca0 | 20 63 6f 6e 66 65 64 65 72 61 74 69 6f 6e 20 69 64 65 6e 74 69 66 69 65 72 2e 20 3c 61 73 6e 3e | .confederation.identifier..<asn> |
| 136cc0 | 20 69 73 20 74 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 74 68 65 20 61 75 74 6f 6e 6f 6d 6f 75 73 | .is.the.number.of.the.autonomous |
| 136ce0 | 20 73 79 73 74 65 6d 20 74 68 61 74 20 69 6e 74 65 72 6e 61 6c 6c 79 20 69 6e 63 6c 75 64 65 73 | .system.that.internally.includes |
| 136d00 | 20 6d 75 6c 74 69 70 6c 65 20 73 75 62 2d 61 75 74 6f 6e 6f 6d 6f 75 73 20 73 79 73 74 65 6d 73 | .multiple.sub-autonomous.systems |
| 136d20 | 20 28 61 20 63 6f 6e 66 65 64 65 72 61 74 69 6f 6e 29 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 | .(a.confederation)..This.command |
| 136d40 | 20 73 70 65 63 69 66 69 65 73 20 61 20 42 61 62 65 6c 20 65 6e 61 62 6c 65 64 20 69 6e 74 65 72 | .specifies.a.Babel.enabled.inter |
| 136d60 | 66 61 63 65 20 62 79 20 69 6e 74 65 72 66 61 63 65 20 6e 61 6d 65 2e 20 42 6f 74 68 20 74 68 65 | face.by.interface.name..Both.the |
| 136d80 | 20 73 65 6e 64 69 6e 67 20 61 6e 64 20 72 65 63 65 69 76 69 6e 67 20 6f 66 20 42 61 62 65 6c 20 | .sending.and.receiving.of.Babel. |
| 136da0 | 70 61 63 6b 65 74 73 20 77 69 6c 6c 20 62 65 20 65 6e 61 62 6c 65 64 20 6f 6e 20 74 68 65 20 69 | packets.will.be.enabled.on.the.i |
| 136dc0 | 6e 74 65 72 66 61 63 65 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 74 68 69 73 20 63 6f 6d 6d 61 | nterface.specified.in.this.comma |
| 136de0 | 6e 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 61 20 4d 44 35 | nd..This.command.specifies.a.MD5 |
| 136e00 | 20 70 61 73 73 77 6f 72 64 20 74 6f 20 62 65 20 75 73 65 64 20 77 69 74 68 20 74 68 65 20 74 63 | .password.to.be.used.with.the.tc |
| 136e20 | 70 20 73 6f 63 6b 65 74 20 74 68 61 74 20 69 73 20 62 65 69 6e 67 20 75 73 65 64 20 74 6f 20 63 | p.socket.that.is.being.used.to.c |
| 136e40 | 6f 6e 6e 65 63 74 20 74 6f 20 74 68 65 20 72 65 6d 6f 74 65 20 70 65 65 72 2e 00 54 68 69 73 20 | onnect.to.the.remote.peer..This. |
| 136e60 | 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 61 20 52 49 50 20 65 6e 61 62 6c 65 64 20 | command.specifies.a.RIP.enabled. |
| 136e80 | 69 6e 74 65 72 66 61 63 65 20 62 79 20 69 6e 74 65 72 66 61 63 65 20 6e 61 6d 65 2e 20 42 6f 74 | interface.by.interface.name..Bot |
| 136ea0 | 68 20 74 68 65 20 73 65 6e 64 69 6e 67 20 61 6e 64 20 72 65 63 65 69 76 69 6e 67 20 6f 66 20 52 | h.the.sending.and.receiving.of.R |
| 136ec0 | 49 50 20 70 61 63 6b 65 74 73 20 77 69 6c 6c 20 62 65 20 65 6e 61 62 6c 65 64 20 6f 6e 20 74 68 | IP.packets.will.be.enabled.on.th |
| 136ee0 | 65 20 70 6f 72 74 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 | e.port.specified.in.this.command |
| 136f00 | 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 61 20 52 49 50 20 6e | ..This.command.specifies.a.RIP.n |
| 136f20 | 65 69 67 68 62 6f 72 2e 20 57 68 65 6e 20 61 20 6e 65 69 67 68 62 6f 72 20 64 6f 65 73 6e e2 80 | eighbor..When.a.neighbor.doesn.. |
| 136f40 | 99 74 20 75 6e 64 65 72 73 74 61 6e 64 20 6d 75 6c 74 69 63 61 73 74 2c 20 74 68 69 73 20 63 6f | .t.understand.multicast,.this.co |
| 136f60 | 6d 6d 61 6e 64 20 69 73 20 75 73 65 64 20 74 6f 20 73 70 65 63 69 66 79 20 6e 65 69 67 68 62 6f | mmand.is.used.to.specify.neighbo |
| 136f80 | 72 73 2e 20 49 6e 20 73 6f 6d 65 20 63 61 73 65 73 2c 20 6e 6f 74 20 61 6c 6c 20 72 6f 75 74 65 | rs..In.some.cases,.not.all.route |
| 136fa0 | 72 73 20 77 69 6c 6c 20 62 65 20 61 62 6c 65 20 74 6f 20 75 6e 64 65 72 73 74 61 6e 64 20 6d 75 | rs.will.be.able.to.understand.mu |
| 136fc0 | 6c 74 69 63 61 73 74 69 6e 67 2c 20 77 68 65 72 65 20 70 61 63 6b 65 74 73 20 61 72 65 20 73 65 | lticasting,.where.packets.are.se |
| 136fe0 | 6e 74 20 74 6f 20 61 20 6e 65 74 77 6f 72 6b 20 6f 72 20 61 20 67 72 6f 75 70 20 6f 66 20 61 64 | nt.to.a.network.or.a.group.of.ad |
| 137000 | 64 72 65 73 73 65 73 2e 20 49 6e 20 61 20 73 69 74 75 61 74 69 6f 6e 20 77 68 65 72 65 20 61 20 | dresses..In.a.situation.where.a. |
| 137020 | 6e 65 69 67 68 62 6f 72 20 63 61 6e 6e 6f 74 20 70 72 6f 63 65 73 73 20 6d 75 6c 74 69 63 61 73 | neighbor.cannot.process.multicas |
| 137040 | 74 20 70 61 63 6b 65 74 73 2c 20 69 74 20 69 73 20 6e 65 63 65 73 73 61 72 79 20 74 6f 20 65 73 | t.packets,.it.is.necessary.to.es |
| 137060 | 74 61 62 6c 69 73 68 20 61 20 64 69 72 65 63 74 20 6c 69 6e 6b 20 62 65 74 77 65 65 6e 20 72 6f | tablish.a.direct.link.between.ro |
| 137080 | 75 74 65 72 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 61 20 | uters..This.command.specifies.a. |
| 1370a0 | 64 65 66 61 75 6c 74 20 77 65 69 67 68 74 20 76 61 6c 75 65 20 66 6f 72 20 74 68 65 20 6e 65 69 | default.weight.value.for.the.nei |
| 1370c0 | 67 68 62 6f 72 e2 80 99 73 20 72 6f 75 74 65 73 2e 20 54 68 65 20 6e 75 6d 62 65 72 20 72 61 6e | ghbor...s.routes..The.number.ran |
| 1370e0 | 67 65 20 69 73 20 31 20 74 6f 20 36 35 35 33 35 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 | ge.is.1.to.65535..This.command.s |
| 137100 | 70 65 63 69 66 69 65 73 20 61 20 6d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 70 72 65 | pecifies.a.maximum.number.of.pre |
| 137120 | 66 69 78 65 73 20 77 65 20 63 61 6e 20 72 65 63 65 69 76 65 20 66 72 6f 6d 20 61 20 67 69 76 65 | fixes.we.can.receive.from.a.give |
| 137140 | 6e 20 70 65 65 72 2e 20 49 66 20 74 68 69 73 20 6e 75 6d 62 65 72 20 69 73 20 65 78 63 65 65 64 | n.peer..If.this.number.is.exceed |
| 137160 | 65 64 2c 20 74 68 65 20 42 47 50 20 73 65 73 73 69 6f 6e 20 77 69 6c 6c 20 62 65 20 64 65 73 74 | ed,.the.BGP.session.will.be.dest |
| 137180 | 72 6f 79 65 64 2e 20 54 68 65 20 6e 75 6d 62 65 72 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 | royed..The.number.range.is.1.to. |
| 1371a0 | 34 32 39 34 39 36 37 32 39 35 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 | 4294967295..This.command.specifi |
| 1371c0 | 65 73 20 61 6c 6c 20 69 6e 74 65 72 66 61 63 65 73 20 61 73 20 70 61 73 73 69 76 65 20 62 79 20 | es.all.interfaces.as.passive.by. |
| 1371e0 | 64 65 66 61 75 6c 74 2e 20 42 65 63 61 75 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 68 | default..Because.this.command.ch |
| 137200 | 61 6e 67 65 73 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6c 6f 67 69 63 20 74 6f | anges.the.configuration.logic.to |
| 137220 | 20 61 20 64 65 66 61 75 6c 74 20 70 61 73 73 69 76 65 3b 20 74 68 65 72 65 66 6f 72 65 2c 20 69 | .a.default.passive;.therefore,.i |
| 137240 | 6e 74 65 72 66 61 63 65 73 20 77 68 65 72 65 20 72 6f 75 74 65 72 20 61 64 6a 61 63 65 6e 63 69 | nterfaces.where.router.adjacenci |
| 137260 | 65 73 20 61 72 65 20 65 78 70 65 63 74 65 64 20 6e 65 65 64 20 74 6f 20 62 65 20 63 6f 6e 66 69 | es.are.expected.need.to.be.confi |
| 137280 | 67 75 72 65 64 20 77 69 74 68 20 74 68 65 20 3a 63 66 67 63 6d 64 3a 60 70 61 73 73 69 76 65 2d | gured.with.the.:cfgcmd:`passive- |
| 1372a0 | 69 6e 74 65 72 66 61 63 65 2d 65 78 63 6c 75 64 65 60 20 63 6f 6d 6d 61 6e 64 2e 00 54 68 69 73 | interface-exclude`.command..This |
| 1372c0 | 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 61 6c 6c 20 69 6e 74 65 72 66 61 63 65 | .command.specifies.all.interface |
| 1372e0 | 73 20 74 6f 20 70 61 73 73 69 76 65 20 6d 6f 64 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 | s.to.passive.mode..This.command. |
| 137300 | 73 70 65 63 69 66 69 65 73 20 61 6e 20 61 67 67 72 65 67 61 74 65 20 61 64 64 72 65 73 73 20 61 | specifies.an.aggregate.address.a |
| 137320 | 6e 64 20 70 72 6f 76 69 64 65 73 20 74 68 61 74 20 6c 6f 6e 67 65 72 2d 70 72 65 66 69 78 65 73 | nd.provides.that.longer-prefixes |
| 137340 | 20 69 6e 73 69 64 65 20 6f 66 20 74 68 65 20 61 67 67 72 65 67 61 74 65 20 61 64 64 72 65 73 73 | .inside.of.the.aggregate.address |
| 137360 | 20 61 72 65 20 73 75 70 70 72 65 73 73 65 64 20 62 65 66 6f 72 65 20 73 65 6e 64 69 6e 67 20 42 | .are.suppressed.before.sending.B |
| 137380 | 47 50 20 75 70 64 61 74 65 73 20 6f 75 74 20 74 6f 20 70 65 65 72 73 2e 00 54 68 69 73 20 63 6f | GP.updates.out.to.peers..This.co |
| 1373a0 | 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 61 6e 20 61 67 67 72 65 67 61 74 65 20 61 64 64 | mmand.specifies.an.aggregate.add |
| 1373c0 | 72 65 73 73 20 77 69 74 68 20 61 20 6d 61 74 68 65 6d 61 74 69 63 61 6c 20 73 65 74 20 6f 66 20 | ress.with.a.mathematical.set.of. |
| 1373e0 | 61 75 74 6f 6e 6f 6d 6f 75 73 20 73 79 73 74 65 6d 73 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 | autonomous.systems..This.command |
| 137400 | 20 73 75 6d 6d 61 72 69 7a 65 73 20 74 68 65 20 41 53 5f 50 41 54 48 20 61 74 74 72 69 62 75 74 | .summarizes.the.AS_PATH.attribut |
| 137420 | 65 73 20 6f 66 20 61 6c 6c 20 74 68 65 20 69 6e 64 69 76 69 64 75 61 6c 20 72 6f 75 74 65 73 2e | es.of.all.the.individual.routes. |
| 137440 | 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 61 6e 20 61 67 67 72 65 | .This.command.specifies.an.aggre |
| 137460 | 67 61 74 65 20 61 64 64 72 65 73 73 2e 20 54 68 65 20 72 6f 75 74 65 72 20 77 69 6c 6c 20 61 6c | gate.address..The.router.will.al |
| 137480 | 73 6f 20 61 6e 6e 6f 75 6e 63 65 20 6c 6f 6e 67 65 72 2d 70 72 65 66 69 78 65 73 20 69 6e 73 69 | so.announce.longer-prefixes.insi |
| 1374a0 | 64 65 20 6f 66 20 74 68 65 20 61 67 67 72 65 67 61 74 65 20 61 64 64 72 65 73 73 2e 00 54 68 69 | de.of.the.aggregate.address..Thi |
| 1374c0 | 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 61 74 74 72 69 62 75 74 65 73 20 74 | s.command.specifies.attributes.t |
| 1374e0 | 6f 20 62 65 20 6c 65 66 74 20 75 6e 63 68 61 6e 67 65 64 20 66 6f 72 20 61 64 76 65 72 74 69 73 | o.be.left.unchanged.for.advertis |
| 137500 | 65 6d 65 6e 74 73 20 73 65 6e 74 20 74 6f 20 61 20 70 65 65 72 20 6f 72 20 70 65 65 72 20 67 72 | ements.sent.to.a.peer.or.peer.gr |
| 137520 | 6f 75 70 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 63 69 72 63 | oup..This.command.specifies.circ |
| 137540 | 75 69 74 20 74 79 70 65 20 66 6f 72 20 69 6e 74 65 72 66 61 63 65 3a 00 54 68 69 73 20 63 6f 6d | uit.type.for.interface:.This.com |
| 137560 | 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 63 6c 75 73 74 65 72 20 49 44 20 77 68 69 63 68 20 | mand.specifies.cluster.ID.which. |
| 137580 | 69 64 65 6e 74 69 66 69 65 73 20 61 20 63 6f 6c 6c 65 63 74 69 6f 6e 20 6f 66 20 72 6f 75 74 65 | identifies.a.collection.of.route |
| 1375a0 | 20 72 65 66 6c 65 63 74 6f 72 73 20 61 6e 64 20 74 68 65 69 72 20 63 6c 69 65 6e 74 73 2c 20 61 | .reflectors.and.their.clients,.a |
| 1375c0 | 6e 64 20 69 73 20 75 73 65 64 20 62 79 20 72 6f 75 74 65 20 72 65 66 6c 65 63 74 6f 72 73 20 74 | nd.is.used.by.route.reflectors.t |
| 1375e0 | 6f 20 61 76 6f 69 64 20 6c 6f 6f 70 69 6e 67 2e 20 42 79 20 64 65 66 61 75 6c 74 20 63 6c 75 73 | o.avoid.looping..By.default.clus |
| 137600 | 74 65 72 20 49 44 20 69 73 20 73 65 74 20 74 6f 20 74 68 65 20 42 47 50 20 72 6f 75 74 65 72 20 | ter.ID.is.set.to.the.BGP.router. |
| 137620 | 69 64 20 76 61 6c 75 65 2c 20 62 75 74 20 63 61 6e 20 62 65 20 73 65 74 20 74 6f 20 61 6e 20 61 | id.value,.but.can.be.set.to.an.a |
| 137640 | 72 62 69 74 72 61 72 79 20 33 32 2d 62 69 74 20 76 61 6c 75 65 2e 00 54 68 69 73 20 63 6f 6d 6d | rbitrary.32-bit.value..This.comm |
| 137660 | 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 68 6f 6c 64 2d 74 69 6d 65 20 69 6e 20 73 65 63 6f 6e | and.specifies.hold-time.in.secon |
| 137680 | 64 73 2e 20 54 68 65 20 74 69 6d 65 72 20 72 61 6e 67 65 20 69 73 20 34 20 74 6f 20 36 35 35 33 | ds..The.timer.range.is.4.to.6553 |
| 1376a0 | 35 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 31 38 30 20 73 65 63 6f | 5..The.default.value.is.180.seco |
| 1376c0 | 6e 64 2e 20 49 66 20 79 6f 75 20 73 65 74 20 76 61 6c 75 65 20 74 6f 20 30 20 56 79 4f 53 20 77 | nd..If.you.set.value.to.0.VyOS.w |
| 1376e0 | 69 6c 6c 20 6e 6f 74 20 68 6f 6c 64 20 72 6f 75 74 65 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e | ill.not.hold.routes..This.comman |
| 137700 | 64 20 73 70 65 63 69 66 69 65 73 20 69 6e 74 65 72 66 61 63 65 20 61 73 20 70 61 73 73 69 76 65 | d.specifies.interface.as.passive |
| 137720 | 2e 20 50 61 73 73 69 76 65 20 69 6e 74 65 72 66 61 63 65 20 61 64 76 65 72 74 69 73 65 73 20 69 | ..Passive.interface.advertises.i |
| 137740 | 74 73 20 61 64 64 72 65 73 73 2c 20 62 75 74 20 64 6f 65 73 20 6e 6f 74 20 72 75 6e 20 74 68 65 | ts.address,.but.does.not.run.the |
| 137760 | 20 4f 53 50 46 20 70 72 6f 74 6f 63 6f 6c 20 28 61 64 6a 61 63 65 6e 63 69 65 73 20 61 72 65 20 | .OSPF.protocol.(adjacencies.are. |
| 137780 | 6e 6f 74 20 66 6f 72 6d 65 64 20 61 6e 64 20 68 65 6c 6c 6f 20 70 61 63 6b 65 74 73 20 61 72 65 | not.formed.and.hello.packets.are |
| 1377a0 | 20 6e 6f 74 20 67 65 6e 65 72 61 74 65 64 29 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 | .not.generated)..This.command.sp |
| 1377c0 | 65 63 69 66 69 65 73 20 6b 65 65 70 2d 61 6c 69 76 65 20 74 69 6d 65 20 69 6e 20 73 65 63 6f 6e | ecifies.keep-alive.time.in.secon |
| 1377e0 | 64 73 2e 20 54 68 65 20 74 69 6d 65 72 20 63 61 6e 20 72 61 6e 67 65 20 66 72 6f 6d 20 34 20 74 | ds..The.timer.can.range.from.4.t |
| 137800 | 6f 20 36 35 35 33 35 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 36 30 | o.65535..The.default.value.is.60 |
| 137820 | 20 73 65 63 6f 6e 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 | .second..This.command.specifies. |
| 137840 | 6d 65 74 72 69 63 20 28 4d 45 44 29 20 66 6f 72 20 72 65 64 69 73 74 72 69 62 75 74 65 64 20 72 | metric.(MED).for.redistributed.r |
| 137860 | 6f 75 74 65 73 2e 20 54 68 65 20 6d 65 74 72 69 63 20 72 61 6e 67 65 20 69 73 20 30 20 74 6f 20 | outes..The.metric.range.is.0.to. |
| 137880 | 34 32 39 34 39 36 37 32 39 35 2e 20 54 68 65 72 65 20 61 72 65 20 73 69 78 20 6d 6f 64 65 73 20 | 4294967295..There.are.six.modes. |
| 1378a0 | 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 72 6f 75 74 65 20 73 6f 75 72 63 65 3a 20 63 6f 6e 6e | available.for.route.source:.conn |
| 1378c0 | 65 63 74 65 64 2c 20 6b 65 72 6e 65 6c 2c 20 6f 73 70 66 2c 20 72 69 70 2c 20 73 74 61 74 69 63 | ected,.kernel,.ospf,.rip,.static |
| 1378e0 | 2c 20 74 61 62 6c 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 | ,.table..This.command.specifies. |
| 137900 | 6d 65 74 72 69 63 20 66 6f 72 20 72 65 64 69 73 74 72 69 62 75 74 65 64 20 72 6f 75 74 65 73 20 | metric.for.redistributed.routes. |
| 137920 | 66 72 6f 6d 20 74 68 65 20 67 69 76 65 6e 20 72 6f 75 74 65 20 73 6f 75 72 63 65 2e 20 54 68 65 | from.the.given.route.source..The |
| 137940 | 72 65 20 61 72 65 20 66 69 76 65 20 6d 6f 64 65 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 | re.are.five.modes.available.for. |
| 137960 | 72 6f 75 74 65 20 73 6f 75 72 63 65 3a 20 62 67 70 2c 20 63 6f 6e 6e 65 63 74 65 64 2c 20 6b 65 | route.source:.bgp,.connected,.ke |
| 137980 | 72 6e 65 6c 2c 20 6f 73 70 66 2c 20 73 74 61 74 69 63 2e 20 54 68 65 20 6d 65 74 72 69 63 20 72 | rnel,.ospf,.static..The.metric.r |
| 1379a0 | 61 6e 67 65 20 69 73 20 31 20 74 6f 20 31 36 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 | ange.is.1.to.16..This.command.sp |
| 1379c0 | 65 63 69 66 69 65 73 20 6d 65 74 72 69 63 20 66 6f 72 20 72 65 64 69 73 74 72 69 62 75 74 65 64 | ecifies.metric.for.redistributed |
| 1379e0 | 20 72 6f 75 74 65 73 20 66 72 6f 6d 20 74 68 65 20 67 69 76 65 6e 20 72 6f 75 74 65 20 73 6f 75 | .routes.from.the.given.route.sou |
| 137a00 | 72 63 65 2e 20 54 68 65 72 65 20 61 72 65 20 66 69 76 65 20 6d 6f 64 65 73 20 61 76 61 69 6c 61 | rce..There.are.five.modes.availa |
| 137a20 | 62 6c 65 20 66 6f 72 20 72 6f 75 74 65 20 73 6f 75 72 63 65 3a 20 62 67 70 2c 20 63 6f 6e 6e 65 | ble.for.route.source:.bgp,.conne |
| 137a40 | 63 74 65 64 2c 20 6b 65 72 6e 65 6c 2c 20 72 69 70 2c 20 73 74 61 74 69 63 2e 20 54 68 65 20 6d | cted,.kernel,.rip,.static..The.m |
| 137a60 | 65 74 72 69 63 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 31 36 37 37 37 32 31 34 2e 00 54 68 | etric.range.is.1.to.16777214..Th |
| 137a80 | 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 6d 65 74 72 69 63 20 66 6f 72 20 | is.command.specifies.metric.for. |
| 137aa0 | 72 65 64 69 73 74 72 69 62 75 74 65 64 20 72 6f 75 74 65 73 20 66 72 6f 6d 20 74 68 65 20 67 69 | redistributed.routes.from.the.gi |
| 137ac0 | 76 65 6e 20 72 6f 75 74 65 20 73 6f 75 72 63 65 2e 20 54 68 65 72 65 20 61 72 65 20 73 69 78 20 | ven.route.source..There.are.six. |
| 137ae0 | 6d 6f 64 65 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 72 6f 75 74 65 20 73 6f 75 72 63 65 | modes.available.for.route.source |
| 137b00 | 3a 20 62 67 70 2c 20 63 6f 6e 6e 65 63 74 65 64 2c 20 6b 65 72 6e 65 6c 2c 20 6f 73 70 66 2c 20 | :.bgp,.connected,.kernel,.ospf,. |
| 137b20 | 72 69 70 2c 20 73 74 61 74 69 63 2e 20 54 68 65 20 6d 65 74 72 69 63 20 72 61 6e 67 65 20 69 73 | rip,.static..The.metric.range.is |
| 137b40 | 20 31 20 74 6f 20 31 36 37 37 37 32 31 35 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 | .1.to.16777215..This.command.spe |
| 137b60 | 63 69 66 69 65 73 20 6d 65 74 72 69 63 20 74 79 70 65 20 66 6f 72 20 72 65 64 69 73 74 72 69 62 | cifies.metric.type.for.redistrib |
| 137b80 | 75 74 65 64 20 72 6f 75 74 65 73 2e 20 44 69 66 66 65 72 65 6e 63 65 20 62 65 74 77 65 65 6e 20 | uted.routes..Difference.between. |
| 137ba0 | 74 77 6f 20 6d 65 74 72 69 63 20 74 79 70 65 73 20 74 68 61 74 20 6d 65 74 72 69 63 20 74 79 70 | two.metric.types.that.metric.typ |
| 137bc0 | 65 20 31 20 69 73 20 61 20 6d 65 74 72 69 63 20 77 68 69 63 68 20 69 73 20 22 63 6f 6d 6d 65 6e | e.1.is.a.metric.which.is."commen |
| 137be0 | 73 75 72 61 62 6c 65 22 20 77 69 74 68 20 69 6e 6e 65 72 20 4f 53 50 46 20 6c 69 6e 6b 73 2e 20 | surable".with.inner.OSPF.links.. |
| 137c00 | 57 68 65 6e 20 63 61 6c 63 75 6c 61 74 69 6e 67 20 61 20 6d 65 74 72 69 63 20 74 6f 20 74 68 65 | When.calculating.a.metric.to.the |
| 137c20 | 20 65 78 74 65 72 6e 61 6c 20 64 65 73 74 69 6e 61 74 69 6f 6e 2c 20 74 68 65 20 66 75 6c 6c 20 | .external.destination,.the.full. |
| 137c40 | 70 61 74 68 20 6d 65 74 72 69 63 20 69 73 20 63 61 6c 63 75 6c 61 74 65 64 20 61 73 20 61 20 6d | path.metric.is.calculated.as.a.m |
| 137c60 | 65 74 72 69 63 20 73 75 6d 20 70 61 74 68 20 6f 66 20 61 20 72 6f 75 74 65 72 20 77 68 69 63 68 | etric.sum.path.of.a.router.which |
| 137c80 | 20 68 61 64 20 61 64 76 65 72 74 69 73 65 64 20 74 68 69 73 20 6c 69 6e 6b 20 70 6c 75 73 20 74 | .had.advertised.this.link.plus.t |
| 137ca0 | 68 65 20 6c 69 6e 6b 20 6d 65 74 72 69 63 2e 20 54 68 75 73 2c 20 61 20 72 6f 75 74 65 20 77 69 | he.link.metric..Thus,.a.route.wi |
| 137cc0 | 74 68 20 74 68 65 20 6c 65 61 73 74 20 73 75 6d 6d 61 72 79 20 6d 65 74 72 69 63 20 77 69 6c 6c | th.the.least.summary.metric.will |
| 137ce0 | 20 62 65 20 73 65 6c 65 63 74 65 64 2e 20 49 66 20 65 78 74 65 72 6e 61 6c 20 6c 69 6e 6b 20 69 | .be.selected..If.external.link.i |
| 137d00 | 73 20 61 64 76 65 72 74 69 73 65 64 20 77 69 74 68 20 6d 65 74 72 69 63 20 74 79 70 65 20 32 20 | s.advertised.with.metric.type.2. |
| 137d20 | 74 68 65 20 70 61 74 68 20 69 73 20 73 65 6c 65 63 74 65 64 20 77 68 69 63 68 20 6c 69 65 73 20 | the.path.is.selected.which.lies. |
| 137d40 | 74 68 72 6f 75 67 68 20 74 68 65 20 72 6f 75 74 65 72 20 77 68 69 63 68 20 61 64 76 65 72 74 69 | through.the.router.which.adverti |
| 137d60 | 73 65 64 20 74 68 69 73 20 6c 69 6e 6b 20 77 69 74 68 20 74 68 65 20 6c 65 61 73 74 20 6d 65 74 | sed.this.link.with.the.least.met |
| 137d80 | 72 69 63 20 64 65 73 70 69 74 65 20 6f 66 20 74 68 65 20 66 61 63 74 20 74 68 61 74 20 69 6e 74 | ric.despite.of.the.fact.that.int |
| 137da0 | 65 72 6e 61 6c 20 70 61 74 68 20 74 6f 20 74 68 69 73 20 72 6f 75 74 65 72 20 69 73 20 6c 6f 6e | ernal.path.to.this.router.is.lon |
| 137dc0 | 67 65 72 20 28 77 69 74 68 20 6d 6f 72 65 20 63 6f 73 74 29 2e 20 48 6f 77 65 76 65 72 2c 20 69 | ger.(with.more.cost)..However,.i |
| 137de0 | 66 20 74 77 6f 20 72 6f 75 74 65 72 73 20 61 64 76 65 72 74 69 73 65 64 20 61 6e 20 65 78 74 65 | f.two.routers.advertised.an.exte |
| 137e00 | 72 6e 61 6c 20 6c 69 6e 6b 20 61 6e 64 20 77 69 74 68 20 6d 65 74 72 69 63 20 74 79 70 65 20 32 | rnal.link.and.with.metric.type.2 |
| 137e20 | 20 74 68 65 20 70 72 65 66 65 72 65 6e 63 65 20 69 73 20 67 69 76 65 6e 20 74 6f 20 74 68 65 20 | .the.preference.is.given.to.the. |
| 137e40 | 70 61 74 68 20 77 68 69 63 68 20 6c 69 65 73 20 74 68 72 6f 75 67 68 20 74 68 65 20 72 6f 75 74 | path.which.lies.through.the.rout |
| 137e60 | 65 72 20 77 69 74 68 20 61 20 73 68 6f 72 74 65 72 20 69 6e 74 65 72 6e 61 6c 20 70 61 74 68 2e | er.with.a.shorter.internal.path. |
| 137e80 | 20 49 66 20 74 77 6f 20 64 69 66 66 65 72 65 6e 74 20 72 6f 75 74 65 72 73 20 61 64 76 65 72 74 | .If.two.different.routers.advert |
| 137ea0 | 69 73 65 64 20 74 77 6f 20 6c 69 6e 6b 73 20 74 6f 20 74 68 65 20 73 61 6d 65 20 65 78 74 65 72 | ised.two.links.to.the.same.exter |
| 137ec0 | 6e 61 6c 20 64 65 73 74 69 6d 61 74 69 6f 6e 20 62 75 74 20 77 69 74 68 20 64 69 66 66 65 72 65 | nal.destimation.but.with.differe |
| 137ee0 | 6e 74 20 6d 65 74 72 69 63 20 74 79 70 65 2c 20 6d 65 74 72 69 63 20 74 79 70 65 20 31 20 69 73 | nt.metric.type,.metric.type.1.is |
| 137f00 | 20 70 72 65 66 65 72 72 65 64 2e 20 49 66 20 74 79 70 65 20 6f 66 20 61 20 6d 65 74 72 69 63 20 | .preferred..If.type.of.a.metric. |
| 137f20 | 6c 65 66 74 20 75 6e 64 65 66 69 6e 65 64 20 74 68 65 20 72 6f 75 74 65 72 20 77 69 6c 6c 20 63 | left.undefined.the.router.will.c |
| 137f40 | 6f 6e 73 69 64 65 72 20 74 68 65 73 65 20 65 78 74 65 72 6e 61 6c 20 6c 69 6e 6b 73 20 74 6f 20 | onsider.these.external.links.to. |
| 137f60 | 68 61 76 65 20 61 20 64 65 66 61 75 6c 74 20 6d 65 74 72 69 63 20 74 79 70 65 20 32 2e 00 54 68 | have.a.default.metric.type.2..Th |
| 137f80 | 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 6e 65 74 77 6f 72 6b 20 74 79 70 | is.command.specifies.network.typ |
| 137fa0 | 65 20 74 6f 20 50 6f 69 6e 74 2d 74 6f 2d 50 6f 69 6e 74 2e 20 54 68 65 20 64 65 66 61 75 6c 74 | e.to.Point-to-Point..The.default |
| 137fc0 | 20 6e 65 74 77 6f 72 6b 20 74 79 70 65 20 69 73 20 62 72 6f 61 64 63 61 73 74 2e 00 54 68 69 73 | .network.type.is.broadcast..This |
| 137fe0 | 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 61 74 20 42 47 50 20 63 6f 6e 73 | .command.specifies.that.BGP.cons |
| 138000 | 69 64 65 72 73 20 74 68 65 20 4d 45 44 20 77 68 65 6e 20 63 6f 6d 70 61 72 69 6e 67 20 72 6f 75 | iders.the.MED.when.comparing.rou |
| 138020 | 74 65 73 20 6f 72 69 67 69 6e 61 74 65 64 20 66 72 6f 6d 20 64 69 66 66 65 72 65 6e 74 20 73 75 | tes.originated.from.different.su |
| 138040 | 62 2d 41 53 73 20 77 69 74 68 69 6e 20 74 68 65 20 63 6f 6e 66 65 64 65 72 61 74 69 6f 6e 20 74 | b-ASs.within.the.confederation.t |
| 138060 | 6f 20 77 68 69 63 68 20 74 68 69 73 20 42 47 50 20 73 70 65 61 6b 65 72 20 62 65 6c 6f 6e 67 73 | o.which.this.BGP.speaker.belongs |
| 138080 | 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 73 74 61 74 65 2c 20 77 68 65 72 65 20 74 68 65 20 4d | ..The.default.state,.where.the.M |
| 1380a0 | 45 44 20 61 74 74 72 69 62 75 74 65 20 69 73 20 6e 6f 74 20 63 6f 6e 73 69 64 65 72 65 64 2e 00 | ED.attribute.is.not.considered.. |
| 1380c0 | 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 61 74 20 42 47 50 20 | This.command.specifies.that.BGP. |
| 1380e0 | 64 65 63 69 73 69 6f 6e 20 70 72 6f 63 65 73 73 20 73 68 6f 75 6c 64 20 63 6f 6e 73 69 64 65 72 | decision.process.should.consider |
| 138100 | 20 70 61 74 68 73 20 6f 66 20 65 71 75 61 6c 20 41 53 5f 50 41 54 48 20 6c 65 6e 67 74 68 20 63 | .paths.of.equal.AS_PATH.length.c |
| 138120 | 61 6e 64 69 64 61 74 65 73 20 66 6f 72 20 6d 75 6c 74 69 70 61 74 68 20 63 6f 6d 70 75 74 61 74 | andidates.for.multipath.computat |
| 138140 | 69 6f 6e 2e 20 57 69 74 68 6f 75 74 20 74 68 65 20 6b 6e 6f 62 2c 20 74 68 65 20 65 6e 74 69 72 | ion..Without.the.knob,.the.entir |
| 138160 | 65 20 41 53 5f 50 41 54 48 20 6d 75 73 74 20 6d 61 74 63 68 20 66 6f 72 20 6d 75 6c 74 69 70 61 | e.AS_PATH.must.match.for.multipa |
| 138180 | 74 68 20 63 6f 6d 70 75 74 61 74 69 6f 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 | th.computation..This.command.spe |
| 1381a0 | 63 69 66 69 65 73 20 74 68 61 74 20 61 20 72 6f 75 74 65 20 77 69 74 68 20 61 20 4d 45 44 20 69 | cifies.that.a.route.with.a.MED.i |
| 1381c0 | 73 20 61 6c 77 61 79 73 20 63 6f 6e 73 69 64 65 72 65 64 20 74 6f 20 62 65 20 62 65 74 74 65 72 | s.always.considered.to.be.better |
| 1381e0 | 20 74 68 61 6e 20 61 20 72 6f 75 74 65 20 77 69 74 68 6f 75 74 20 61 20 4d 45 44 20 62 79 20 63 | .than.a.route.without.a.MED.by.c |
| 138200 | 61 75 73 69 6e 67 20 74 68 65 20 6d 69 73 73 69 6e 67 20 4d 45 44 20 61 74 74 72 69 62 75 74 65 | ausing.the.missing.MED.attribute |
| 138220 | 20 74 6f 20 68 61 76 65 20 61 20 76 61 6c 75 65 20 6f 66 20 69 6e 66 69 6e 69 74 79 2e 20 54 68 | .to.have.a.value.of.infinity..Th |
| 138240 | 65 20 64 65 66 61 75 6c 74 20 73 74 61 74 65 2c 20 77 68 65 72 65 20 74 68 65 20 6d 69 73 73 69 | e.default.state,.where.the.missi |
| 138260 | 6e 67 20 4d 45 44 20 61 74 74 72 69 62 75 74 65 20 69 73 20 63 6f 6e 73 69 64 65 72 65 64 20 74 | ng.MED.attribute.is.considered.t |
| 138280 | 6f 20 68 61 76 65 20 61 20 76 61 6c 75 65 20 6f 66 20 7a 65 72 6f 2e 00 54 68 69 73 20 63 6f 6d | o.have.a.value.of.zero..This.com |
| 1382a0 | 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 61 74 20 72 6f 75 74 65 20 75 70 64 61 74 65 | mand.specifies.that.route.update |
| 1382c0 | 73 20 72 65 63 65 69 76 65 64 20 66 72 6f 6d 20 74 68 69 73 20 6e 65 69 67 68 62 6f 72 20 77 69 | s.received.from.this.neighbor.wi |
| 1382e0 | 6c 6c 20 62 65 20 73 74 6f 72 65 64 20 75 6e 6d 6f 64 69 66 69 65 64 2c 20 72 65 67 61 72 64 6c | ll.be.stored.unmodified,.regardl |
| 138300 | 65 73 73 20 6f 66 20 74 68 65 20 69 6e 62 6f 75 6e 64 20 70 6f 6c 69 63 79 2e 20 57 68 65 6e 20 | ess.of.the.inbound.policy..When. |
| 138320 | 69 6e 62 6f 75 6e 64 20 73 6f 66 74 20 72 65 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 73 20 | inbound.soft.reconfiguration.is. |
| 138340 | 65 6e 61 62 6c 65 64 2c 20 74 68 65 20 73 74 6f 72 65 64 20 75 70 64 61 74 65 73 20 61 72 65 20 | enabled,.the.stored.updates.are. |
| 138360 | 70 72 6f 63 65 73 73 65 64 20 62 79 20 74 68 65 20 6e 65 77 20 70 6f 6c 69 63 79 20 63 6f 6e 66 | processed.by.the.new.policy.conf |
| 138380 | 69 67 75 72 61 74 69 6f 6e 20 74 6f 20 63 72 65 61 74 65 20 6e 65 77 20 69 6e 62 6f 75 6e 64 20 | iguration.to.create.new.inbound. |
| 1383a0 | 75 70 64 61 74 65 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 | updates..This.command.specifies. |
| 1383c0 | 74 68 61 74 20 73 69 6d 70 6c 65 20 70 61 73 73 77 6f 72 64 20 61 75 74 68 65 6e 74 69 63 61 74 | that.simple.password.authenticat |
| 1383e0 | 69 6f 6e 20 73 68 6f 75 6c 64 20 62 65 20 75 73 65 64 20 66 6f 72 20 74 68 65 20 67 69 76 65 6e | ion.should.be.used.for.the.given |
| 138400 | 20 61 72 65 61 2e 20 54 68 65 20 70 61 73 73 77 6f 72 64 20 6d 75 73 74 20 61 6c 73 6f 20 62 65 | .area..The.password.must.also.be |
| 138420 | 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 61 20 70 65 72 2d 69 6e 74 65 72 66 61 63 65 20 62 | .configured.on.a.per-interface.b |
| 138440 | 61 73 69 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 61 | asis..This.command.specifies.tha |
| 138460 | 74 20 74 68 65 20 63 6f 6d 6d 75 6e 69 74 79 20 61 74 74 72 69 62 75 74 65 20 73 68 6f 75 6c 64 | t.the.community.attribute.should |
| 138480 | 20 6e 6f 74 20 62 65 20 73 65 6e 74 20 69 6e 20 72 6f 75 74 65 20 75 70 64 61 74 65 73 20 74 6f | .not.be.sent.in.route.updates.to |
| 1384a0 | 20 61 20 70 65 65 72 2e 20 42 79 20 64 65 66 61 75 6c 74 20 63 6f 6d 6d 75 6e 69 74 79 20 61 74 | .a.peer..By.default.community.at |
| 1384c0 | 74 72 69 62 75 74 65 20 69 73 20 73 65 6e 74 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 | tribute.is.sent..This.command.sp |
| 1384e0 | 65 63 69 66 69 65 73 20 74 68 61 74 20 74 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 63 6f 6e 66 65 | ecifies.that.the.length.of.confe |
| 138500 | 64 65 72 61 74 69 6f 6e 20 70 61 74 68 20 73 65 74 73 20 61 6e 64 20 73 65 71 75 65 6e 63 65 73 | deration.path.sets.and.sequences |
| 138520 | 20 73 68 6f 75 6c 64 20 62 65 20 74 61 6b 65 6e 20 69 6e 74 6f 20 61 63 63 6f 75 6e 74 20 64 75 | .should.be.taken.into.account.du |
| 138540 | 72 69 6e 67 20 74 68 65 20 42 47 50 20 62 65 73 74 20 70 61 74 68 20 64 65 63 69 73 69 6f 6e 20 | ring.the.BGP.best.path.decision. |
| 138560 | 70 72 6f 63 65 73 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 | process..This.command.specifies. |
| 138580 | 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 6e 65 69 67 68 62 6f 72 69 6e | the.IP.address.of.the.neighborin |
| 1385a0 | 67 20 64 65 76 69 63 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 | g.device..This.command.specifies |
| 1385c0 | 20 74 68 65 20 4f 53 50 46 20 65 6e 61 62 6c 65 64 20 69 6e 74 65 72 66 61 63 65 28 73 29 2e 20 | .the.OSPF.enabled.interface(s).. |
| 1385e0 | 49 66 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 68 61 73 20 61 6e 20 61 64 64 72 65 73 73 20 | If.the.interface.has.an.address. |
| 138600 | 66 72 6f 6d 20 64 65 66 69 6e 65 64 20 72 61 6e 67 65 20 74 68 65 6e 20 74 68 65 20 63 6f 6d 6d | from.defined.range.then.the.comm |
| 138620 | 61 6e 64 20 65 6e 61 62 6c 65 73 20 4f 53 50 46 20 6f 6e 20 74 68 69 73 20 69 6e 74 65 72 66 61 | and.enables.OSPF.on.this.interfa |
| 138640 | 63 65 20 73 6f 20 72 6f 75 74 65 72 20 63 61 6e 20 70 72 6f 76 69 64 65 20 6e 65 74 77 6f 72 6b | ce.so.router.can.provide.network |
| 138660 | 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 6f 20 74 68 65 20 6f 74 68 65 72 20 6f 73 70 66 20 72 | .information.to.the.other.ospf.r |
| 138680 | 6f 75 74 65 72 73 20 76 69 61 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 2e 00 54 68 69 73 20 | outers.via.this.interface..This. |
| 1386a0 | 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 4f 53 50 46 76 33 20 65 6e 61 | command.specifies.the.OSPFv3.ena |
| 1386c0 | 62 6c 65 64 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 | bled.interface..This.command.is. |
| 1386e0 | 61 6c 73 6f 20 75 73 65 64 20 74 6f 20 65 6e 61 62 6c 65 20 74 68 65 20 4f 53 50 46 20 70 72 6f | also.used.to.enable.the.OSPF.pro |
| 138700 | 63 65 73 73 2e 20 54 68 65 20 61 72 65 61 20 6e 75 6d 62 65 72 20 63 61 6e 20 62 65 20 73 70 65 | cess..The.area.number.can.be.spe |
| 138720 | 63 69 66 69 65 64 20 69 6e 20 64 65 63 69 6d 61 6c 20 6e 6f 74 61 74 69 6f 6e 20 69 6e 20 74 68 | cified.in.decimal.notation.in.th |
| 138740 | 65 20 72 61 6e 67 65 20 66 72 6f 6d 20 30 20 74 6f 20 34 32 39 34 39 36 37 32 39 35 2e 20 4f 72 | e.range.from.0.to.4294967295..Or |
| 138760 | 20 69 74 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 64 6f 74 74 65 64 20 64 | .it.can.be.specified.in.dotted.d |
| 138780 | 65 63 69 6d 61 6c 20 6e 6f 74 61 74 69 6f 6e 20 73 69 6d 69 6c 61 72 20 74 6f 20 69 70 20 61 64 | ecimal.notation.similar.to.ip.ad |
| 1387a0 | 64 72 65 73 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 | dress..This.command.specifies.th |
| 1387c0 | 65 20 61 72 65 61 20 74 6f 20 62 65 20 61 20 4e 53 53 41 20 54 6f 74 61 6c 6c 79 20 53 74 75 62 | e.area.to.be.a.NSSA.Totally.Stub |
| 1387e0 | 20 41 72 65 61 2e 20 41 42 52 73 20 66 6f 72 20 73 75 63 68 20 61 6e 20 61 72 65 61 20 64 6f 20 | .Area..ABRs.for.such.an.area.do. |
| 138800 | 6e 6f 74 20 6e 65 65 64 20 74 6f 20 70 61 73 73 20 4e 65 74 77 6f 72 6b 2d 53 75 6d 6d 61 72 79 | not.need.to.pass.Network-Summary |
| 138820 | 20 28 74 79 70 65 2d 33 29 20 4c 53 41 73 20 28 65 78 63 65 70 74 20 74 68 65 20 64 65 66 61 75 | .(type-3).LSAs.(except.the.defau |
| 138840 | 6c 74 20 73 75 6d 6d 61 72 79 20 72 6f 75 74 65 29 2c 20 41 53 42 52 2d 53 75 6d 6d 61 72 79 20 | lt.summary.route),.ASBR-Summary. |
| 138860 | 4c 53 41 73 20 28 74 79 70 65 2d 34 29 20 61 6e 64 20 41 53 2d 45 78 74 65 72 6e 61 6c 20 4c 53 | LSAs.(type-4).and.AS-External.LS |
| 138880 | 41 73 20 28 74 79 70 65 2d 35 29 20 69 6e 74 6f 20 74 68 65 20 61 72 65 61 2e 20 42 75 74 20 54 | As.(type-5).into.the.area..But.T |
| 1388a0 | 79 70 65 2d 37 20 4c 53 41 73 20 74 68 61 74 20 63 6f 6e 76 65 72 74 20 74 6f 20 54 79 70 65 2d | ype-7.LSAs.that.convert.to.Type- |
| 1388c0 | 35 20 61 74 20 74 68 65 20 4e 53 53 41 20 41 42 52 20 61 72 65 20 61 6c 6c 6f 77 65 64 2e 00 54 | 5.at.the.NSSA.ABR.are.allowed..T |
| 1388e0 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 61 72 65 61 20 74 | his.command.specifies.the.area.t |
| 138900 | 6f 20 62 65 20 61 20 4e 6f 74 20 53 6f 20 53 74 75 62 62 79 20 41 72 65 61 2e 20 45 78 74 65 72 | o.be.a.Not.So.Stubby.Area..Exter |
| 138920 | 6e 61 6c 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 69 73 20 69 6d 70 6f 72 | nal.routing.information.is.impor |
| 138940 | 74 65 64 20 69 6e 74 6f 20 61 6e 20 4e 53 53 41 20 69 6e 20 54 79 70 65 2d 37 20 4c 53 41 73 2e | ted.into.an.NSSA.in.Type-7.LSAs. |
| 138960 | 20 54 79 70 65 2d 37 20 4c 53 41 73 20 61 72 65 20 73 69 6d 69 6c 61 72 20 74 6f 20 54 79 70 65 | .Type-7.LSAs.are.similar.to.Type |
| 138980 | 2d 35 20 41 53 2d 65 78 74 65 72 6e 61 6c 20 4c 53 41 73 2c 20 65 78 63 65 70 74 20 74 68 61 74 | -5.AS-external.LSAs,.except.that |
| 1389a0 | 20 74 68 65 79 20 63 61 6e 20 6f 6e 6c 79 20 62 65 20 66 6c 6f 6f 64 65 64 20 69 6e 74 6f 20 74 | .they.can.only.be.flooded.into.t |
| 1389c0 | 68 65 20 4e 53 53 41 2e 20 49 6e 20 6f 72 64 65 72 20 74 6f 20 66 75 72 74 68 65 72 20 70 72 6f | he.NSSA..In.order.to.further.pro |
| 1389e0 | 70 61 67 61 74 65 20 74 68 65 20 4e 53 53 41 20 65 78 74 65 72 6e 61 6c 20 69 6e 66 6f 72 6d 61 | pagate.the.NSSA.external.informa |
| 138a00 | 74 69 6f 6e 2c 20 74 68 65 20 54 79 70 65 2d 37 20 4c 53 41 20 6d 75 73 74 20 62 65 20 74 72 61 | tion,.the.Type-7.LSA.must.be.tra |
| 138a20 | 6e 73 6c 61 74 65 64 20 74 6f 20 61 20 54 79 70 65 2d 35 20 41 53 2d 65 78 74 65 72 6e 61 6c 2d | nslated.to.a.Type-5.AS-external- |
| 138a40 | 4c 53 41 20 62 79 20 74 68 65 20 4e 53 53 41 20 41 42 52 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e | LSA.by.the.NSSA.ABR..This.comman |
| 138a60 | 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 61 72 65 61 20 74 6f 20 62 65 20 61 20 53 74 75 | d.specifies.the.area.to.be.a.Stu |
| 138a80 | 62 20 41 72 65 61 2e 20 54 68 61 74 20 69 73 2c 20 61 6e 20 61 72 65 61 20 77 68 65 72 65 20 6e | b.Area..That.is,.an.area.where.n |
| 138aa0 | 6f 20 72 6f 75 74 65 72 20 6f 72 69 67 69 6e 61 74 65 73 20 72 6f 75 74 65 73 20 65 78 74 65 72 | o.router.originates.routes.exter |
| 138ac0 | 6e 61 6c 20 74 6f 20 4f 53 50 46 20 61 6e 64 20 68 65 6e 63 65 20 61 6e 20 61 72 65 61 20 77 68 | nal.to.OSPF.and.hence.an.area.wh |
| 138ae0 | 65 72 65 20 61 6c 6c 20 65 78 74 65 72 6e 61 6c 20 72 6f 75 74 65 73 20 61 72 65 20 76 69 61 20 | ere.all.external.routes.are.via. |
| 138b00 | 74 68 65 20 41 42 52 28 73 29 2e 20 48 65 6e 63 65 2c 20 41 42 52 73 20 66 6f 72 20 73 75 63 68 | the.ABR(s)..Hence,.ABRs.for.such |
| 138b20 | 20 61 6e 20 61 72 65 61 20 64 6f 20 6e 6f 74 20 6e 65 65 64 20 74 6f 20 70 61 73 73 20 41 53 2d | .an.area.do.not.need.to.pass.AS- |
| 138b40 | 45 78 74 65 72 6e 61 6c 20 4c 53 41 73 20 28 74 79 70 65 2d 35 29 20 6f 72 20 41 53 42 52 2d 53 | External.LSAs.(type-5).or.ASBR-S |
| 138b60 | 75 6d 6d 61 72 79 20 4c 53 41 73 20 28 74 79 70 65 2d 34 29 20 69 6e 74 6f 20 74 68 65 20 61 72 | ummary.LSAs.(type-4).into.the.ar |
| 138b80 | 65 61 2e 20 54 68 65 79 20 6e 65 65 64 20 6f 6e 6c 79 20 70 61 73 73 20 4e 65 74 77 6f 72 6b 2d | ea..They.need.only.pass.Network- |
| 138ba0 | 53 75 6d 6d 61 72 79 20 28 74 79 70 65 2d 33 29 20 4c 53 41 73 20 69 6e 74 6f 20 73 75 63 68 20 | Summary.(type-3).LSAs.into.such. |
| 138bc0 | 61 6e 20 61 72 65 61 2c 20 61 6c 6f 6e 67 20 77 69 74 68 20 61 20 64 65 66 61 75 6c 74 2d 72 6f | an.area,.along.with.a.default-ro |
| 138be0 | 75 74 65 20 73 75 6d 6d 61 72 79 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 | ute.summary..This.command.specif |
| 138c00 | 69 65 73 20 74 68 65 20 61 72 65 61 20 74 6f 20 62 65 20 61 20 54 6f 74 61 6c 6c 79 20 53 74 75 | ies.the.area.to.be.a.Totally.Stu |
| 138c20 | 62 20 41 72 65 61 2e 20 49 6e 20 61 64 64 69 74 69 6f 6e 20 74 6f 20 73 74 75 62 20 61 72 65 61 | b.Area..In.addition.to.stub.area |
| 138c40 | 20 6c 69 6d 69 74 61 74 69 6f 6e 73 20 74 68 69 73 20 61 72 65 61 20 74 79 70 65 20 70 72 65 76 | .limitations.this.area.type.prev |
| 138c60 | 65 6e 74 73 20 61 6e 20 41 42 52 20 66 72 6f 6d 20 69 6e 6a 65 63 74 69 6e 67 20 4e 65 74 77 6f | ents.an.ABR.from.injecting.Netwo |
| 138c80 | 72 6b 2d 53 75 6d 6d 61 72 79 20 28 74 79 70 65 2d 33 29 20 4c 53 41 73 20 69 6e 74 6f 20 74 68 | rk-Summary.(type-3).LSAs.into.th |
| 138ca0 | 65 20 73 70 65 63 69 66 69 65 64 20 73 74 75 62 20 61 72 65 61 2e 20 4f 6e 6c 79 20 64 65 66 61 | e.specified.stub.area..Only.defa |
| 138cc0 | 75 6c 74 20 73 75 6d 6d 61 72 79 20 72 6f 75 74 65 20 69 73 20 61 6c 6c 6f 77 65 64 2e 00 54 68 | ult.summary.route.is.allowed..Th |
| 138ce0 | 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 62 61 73 65 20 72 65 | is.command.specifies.the.base.re |
| 138d00 | 63 65 69 76 65 20 63 6f 73 74 20 66 6f 72 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 2e 20 46 | ceive.cost.for.this.interface..F |
| 138d20 | 6f 72 20 77 69 72 65 6c 65 73 73 20 69 6e 74 65 72 66 61 63 65 73 2c 20 69 74 20 73 70 65 63 69 | or.wireless.interfaces,.it.speci |
| 138d40 | 66 69 65 73 20 74 68 65 20 6d 75 6c 74 69 70 6c 69 65 72 20 75 73 65 64 20 66 6f 72 20 63 6f 6d | fies.the.multiplier.used.for.com |
| 138d60 | 70 75 74 69 6e 67 20 74 68 65 20 45 54 58 20 72 65 63 65 70 74 69 6f 6e 20 63 6f 73 74 20 28 64 | puting.the.ETX.reception.cost.(d |
| 138d80 | 65 66 61 75 6c 74 20 32 35 36 29 3b 20 66 6f 72 20 77 69 72 65 64 20 69 6e 74 65 72 66 61 63 65 | efault.256);.for.wired.interface |
| 138da0 | 73 2c 20 69 74 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 63 6f 73 74 20 74 68 61 74 20 77 69 | s,.it.specifies.the.cost.that.wi |
| 138dc0 | 6c 6c 20 62 65 20 61 64 76 65 72 74 69 73 65 64 20 74 6f 20 6e 65 69 67 68 62 6f 75 72 73 2e 00 | ll.be.advertised.to.neighbours.. |
| 138de0 | 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 64 65 63 61 79 | This.command.specifies.the.decay |
| 138e00 | 20 66 61 63 74 6f 72 20 66 6f 72 20 74 68 65 20 65 78 70 6f 6e 65 6e 74 69 61 6c 20 6d 6f 76 69 | .factor.for.the.exponential.movi |
| 138e20 | 6e 67 20 61 76 65 72 61 67 65 20 6f 66 20 52 54 54 20 73 61 6d 70 6c 65 73 2c 20 69 6e 20 75 6e | ng.average.of.RTT.samples,.in.un |
| 138e40 | 69 74 73 20 6f 66 20 31 2f 32 35 36 2e 20 48 69 67 68 65 72 20 76 61 6c 75 65 73 20 64 69 73 63 | its.of.1/256..Higher.values.disc |
| 138e60 | 61 72 64 20 6f 6c 64 20 73 61 6d 70 6c 65 73 20 66 61 73 74 65 72 2e 20 54 68 65 20 64 65 66 61 | ard.old.samples.faster..The.defa |
| 138e80 | 75 6c 74 20 69 73 20 34 32 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 | ult.is.42..This.command.specifie |
| 138ea0 | 73 20 74 68 65 20 64 65 66 61 75 6c 74 20 6c 6f 63 61 6c 20 70 72 65 66 65 72 65 6e 63 65 20 76 | s.the.default.local.preference.v |
| 138ec0 | 61 6c 75 65 2e 20 54 68 65 20 6c 6f 63 61 6c 20 70 72 65 66 65 72 65 6e 63 65 20 72 61 6e 67 65 | alue..The.local.preference.range |
| 138ee0 | 20 69 73 20 30 20 74 6f 20 34 32 39 34 39 36 37 32 39 35 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e | .is.0.to.4294967295..This.comman |
| 138f00 | 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 64 65 66 61 75 6c 74 20 6d 65 74 72 69 63 20 76 | d.specifies.the.default.metric.v |
| 138f20 | 61 6c 75 65 20 6f 66 20 72 65 64 69 73 74 72 69 62 75 74 65 64 20 72 6f 75 74 65 73 2e 20 54 68 | alue.of.redistributed.routes..Th |
| 138f40 | 65 20 6d 65 74 72 69 63 20 72 61 6e 67 65 20 69 73 20 30 20 74 6f 20 31 36 37 37 37 32 31 34 2e | e.metric.range.is.0.to.16777214. |
| 138f60 | 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 67 61 72 62 | .This.command.specifies.the.garb |
| 138f80 | 61 67 65 2d 63 6f 6c 6c 65 63 74 69 6f 6e 20 74 69 6d 65 72 2e 20 55 70 6f 6e 20 65 78 70 69 72 | age-collection.timer..Upon.expir |
| 138fa0 | 61 74 69 6f 6e 20 6f 66 20 74 68 65 20 67 61 72 62 61 67 65 2d 63 6f 6c 6c 65 63 74 69 6f 6e 20 | ation.of.the.garbage-collection. |
| 138fc0 | 74 69 6d 65 72 2c 20 74 68 65 20 72 6f 75 74 65 20 69 73 20 66 69 6e 61 6c 6c 79 20 72 65 6d 6f | timer,.the.route.is.finally.remo |
| 138fe0 | 76 65 64 20 66 72 6f 6d 20 74 68 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 2e 20 54 68 65 20 | ved.from.the.routing.table..The. |
| 139000 | 74 69 6d 65 20 72 61 6e 67 65 20 69 73 20 35 20 74 6f 20 32 31 34 37 34 38 33 36 34 37 2e 20 54 | time.range.is.5.to.2147483647..T |
| 139020 | 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 31 32 30 20 73 65 63 6f 6e 64 73 2e | he.default.value.is.120.seconds. |
| 139040 | 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 67 69 76 65 | .This.command.specifies.the.give |
| 139060 | 6e 20 6e 65 69 67 68 62 6f 72 20 61 73 20 72 6f 75 74 65 20 72 65 66 6c 65 63 74 6f 72 20 63 6c | n.neighbor.as.route.reflector.cl |
| 139080 | 69 65 6e 74 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 | ient..This.command.specifies.the |
| 1390a0 | 20 6c 65 6e 67 74 68 20 6f 66 20 74 69 6d 65 2c 20 69 6e 20 73 65 63 6f 6e 64 73 2c 20 62 65 66 | .length.of.time,.in.seconds,.bef |
| 1390c0 | 6f 72 65 20 74 68 65 20 72 6f 75 74 69 6e 67 20 64 65 76 69 63 65 20 73 65 6e 64 73 20 68 65 6c | ore.the.routing.device.sends.hel |
| 1390e0 | 6c 6f 20 70 61 63 6b 65 74 73 20 6f 75 74 20 6f 66 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 | lo.packets.out.of.the.interface. |
| 139100 | 62 65 66 6f 72 65 20 69 74 20 65 73 74 61 62 6c 69 73 68 65 73 20 61 64 6a 61 63 65 6e 63 79 20 | before.it.establishes.adjacency. |
| 139120 | 77 69 74 68 20 61 20 6e 65 69 67 68 62 6f 72 2e 20 54 68 65 20 72 61 6e 67 65 20 69 73 20 31 20 | with.a.neighbor..The.range.is.1. |
| 139140 | 74 6f 20 36 35 35 33 35 20 73 65 63 6f 6e 64 73 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 | to.65535.seconds..The.default.va |
| 139160 | 6c 75 65 20 69 73 20 36 30 20 73 65 63 6f 6e 64 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 | lue.is.60.seconds..This.command. |
| 139180 | 73 70 65 63 69 66 69 65 73 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 52 54 54 2c 20 69 6e 20 6d 69 | specifies.the.maximum.RTT,.in.mi |
| 1391a0 | 6c 6c 69 73 65 63 6f 6e 64 73 2c 20 61 62 6f 76 65 20 77 68 69 63 68 20 77 65 20 64 6f 6e 27 74 | lliseconds,.above.which.we.don't |
| 1391c0 | 20 69 6e 63 72 65 61 73 65 20 74 68 65 20 63 6f 73 74 20 74 6f 20 61 20 6e 65 69 67 68 62 6f 75 | .increase.the.cost.to.a.neighbou |
| 1391e0 | 72 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 31 32 30 20 6d 73 2e 00 54 68 69 73 20 63 | r..The.default.is.120.ms..This.c |
| 139200 | 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 63 6f 73 | ommand.specifies.the.maximum.cos |
| 139220 | 74 20 61 64 64 65 64 20 74 6f 20 61 20 6e 65 69 67 68 62 6f 75 72 20 62 65 63 61 75 73 65 20 6f | t.added.to.a.neighbour.because.o |
| 139240 | 66 20 52 54 54 2c 20 69 2e 65 2e 20 77 68 65 6e 20 74 68 65 20 52 54 54 20 69 73 20 68 69 67 68 | f.RTT,.i.e..when.the.RTT.is.high |
| 139260 | 65 72 20 6f 72 20 65 71 75 61 6c 20 74 68 61 6e 20 72 74 74 2d 6d 61 78 2e 20 54 68 65 20 64 65 | er.or.equal.than.rtt-max..The.de |
| 139280 | 66 61 75 6c 74 20 69 73 20 31 35 30 2e 20 53 65 74 74 69 6e 67 20 69 74 20 74 6f 20 30 20 65 66 | fault.is.150..Setting.it.to.0.ef |
| 1392a0 | 66 65 63 74 69 76 65 6c 79 20 64 69 73 61 62 6c 65 73 20 74 68 65 20 75 73 65 20 6f 66 20 61 20 | fectively.disables.the.use.of.a. |
| 1392c0 | 52 54 54 2d 62 61 73 65 64 20 63 6f 73 74 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 | RTT-based.cost..This.command.spe |
| 1392e0 | 63 69 66 69 65 73 20 74 68 65 20 6d 69 6e 69 6d 75 6d 20 52 54 54 2c 20 69 6e 20 6d 69 6c 6c 69 | cifies.the.minimum.RTT,.in.milli |
| 139300 | 73 65 63 6f 6e 64 73 2c 20 73 74 61 72 74 69 6e 67 20 66 72 6f 6d 20 77 68 69 63 68 20 77 65 20 | seconds,.starting.from.which.we. |
| 139320 | 69 6e 63 72 65 61 73 65 20 74 68 65 20 63 6f 73 74 20 74 6f 20 61 20 6e 65 69 67 68 62 6f 75 72 | increase.the.cost.to.a.neighbour |
| 139340 | 2e 20 54 68 65 20 61 64 64 69 74 69 6f 6e 61 6c 20 63 6f 73 74 20 69 73 20 6c 69 6e 65 61 72 20 | ..The.additional.cost.is.linear. |
| 139360 | 69 6e 20 28 72 74 74 20 2d 20 72 74 74 2d 6d 69 6e 29 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 | in.(rtt.-.rtt-min)..The.default. |
| 139380 | 69 73 20 31 30 20 6d 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 | is.10.ms..This.command.specifies |
| 1393a0 | 20 74 68 65 20 6d 69 6e 69 6d 75 6d 20 72 6f 75 74 65 20 61 64 76 65 72 74 69 73 65 6d 65 6e 74 | .the.minimum.route.advertisement |
| 1393c0 | 20 69 6e 74 65 72 76 61 6c 20 66 6f 72 20 74 68 65 20 70 65 65 72 2e 20 54 68 65 20 69 6e 74 65 | .interval.for.the.peer..The.inte |
| 1393e0 | 72 76 61 6c 20 76 61 6c 75 65 20 69 73 20 30 20 74 6f 20 36 30 30 20 73 65 63 6f 6e 64 73 2c 20 | rval.value.is.0.to.600.seconds,. |
| 139400 | 77 69 74 68 20 74 68 65 20 64 65 66 61 75 6c 74 20 61 64 76 65 72 74 69 73 65 6d 65 6e 74 20 69 | with.the.default.advertisement.i |
| 139420 | 6e 74 65 72 76 61 6c 20 62 65 69 6e 67 20 30 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 | nterval.being.0..This.command.sp |
| 139440 | 65 63 69 66 69 65 73 20 74 68 65 20 72 6f 75 74 65 72 20 70 72 69 6f 72 69 74 79 20 76 61 6c 75 | ecifies.the.router.priority.valu |
| 139460 | 65 20 6f 66 20 74 68 65 20 6e 6f 6e 62 72 6f 61 64 63 61 73 74 20 6e 65 69 67 68 62 6f 72 20 61 | e.of.the.nonbroadcast.neighbor.a |
| 139480 | 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 73 70 | ssociated.with.the.IP.address.sp |
| 1394a0 | 65 63 69 66 69 65 64 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 30 2e 20 54 68 69 73 20 | ecified..The.default.is.0..This. |
| 1394c0 | 6b 65 79 77 6f 72 64 20 64 6f 65 73 20 6e 6f 74 20 61 70 70 6c 79 20 74 6f 20 70 6f 69 6e 74 2d | keyword.does.not.apply.to.point- |
| 1394e0 | 74 6f 2d 6d 75 6c 74 69 70 6f 69 6e 74 20 69 6e 74 65 72 66 61 63 65 73 2e 00 54 68 69 73 20 63 | to-multipoint.interfaces..This.c |
| 139500 | 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 72 6f 75 74 65 72 2d 49 44 2e 20 | ommand.specifies.the.router-ID.. |
| 139520 | 49 66 20 72 6f 75 74 65 72 20 49 44 20 69 73 20 6e 6f 74 20 73 70 65 63 69 66 69 65 64 20 69 74 | If.router.ID.is.not.specified.it |
| 139540 | 20 77 69 6c 6c 20 75 73 65 20 74 68 65 20 68 69 67 68 65 73 74 20 69 6e 74 65 72 66 61 63 65 20 | .will.use.the.highest.interface. |
| 139560 | 49 50 20 61 64 64 72 65 73 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 | IP.address..This.command.specifi |
| 139580 | 65 73 20 74 68 65 20 74 69 6d 65 20 63 6f 6e 73 74 61 6e 74 2c 20 69 6e 20 73 65 63 6f 6e 64 73 | es.the.time.constant,.in.seconds |
| 1395a0 | 2c 20 6f 66 20 74 68 65 20 73 6d 6f 6f 74 68 69 6e 67 20 61 6c 67 6f 72 69 74 68 6d 20 75 73 65 | ,.of.the.smoothing.algorithm.use |
| 1395c0 | 64 20 66 6f 72 20 69 6d 70 6c 65 6d 65 6e 74 69 6e 67 20 68 79 73 74 65 72 65 73 69 73 2e 20 4c | d.for.implementing.hysteresis..L |
| 1395e0 | 61 72 67 65 72 20 76 61 6c 75 65 73 20 72 65 64 75 63 65 20 72 6f 75 74 65 20 6f 73 63 69 6c 6c | arger.values.reduce.route.oscill |
| 139600 | 61 74 69 6f 6e 20 61 74 20 74 68 65 20 63 6f 73 74 20 6f 66 20 76 65 72 79 20 73 6c 69 67 68 74 | ation.at.the.cost.of.very.slight |
| 139620 | 6c 79 20 69 6e 63 72 65 61 73 69 6e 67 20 63 6f 6e 76 65 72 67 65 6e 63 65 20 74 69 6d 65 2e 20 | ly.increasing.convergence.time.. |
| 139640 | 54 68 65 20 76 61 6c 75 65 20 30 20 64 69 73 61 62 6c 65 73 20 68 79 73 74 65 72 65 73 69 73 2c | The.value.0.disables.hysteresis, |
| 139660 | 20 61 6e 64 20 69 73 20 73 75 69 74 61 62 6c 65 20 66 6f 72 20 77 69 72 65 64 20 6e 65 74 77 6f | .and.is.suitable.for.wired.netwo |
| 139680 | 72 6b 73 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 34 20 73 2e 00 54 68 69 73 20 63 6f | rks..The.default.is.4.s..This.co |
| 1396a0 | 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 74 69 6d 65 20 69 6e 20 6d 69 6c 6c | mmand.specifies.the.time.in.mill |
| 1396c0 | 69 73 65 63 6f 6e 64 73 20 61 66 74 65 72 20 77 68 69 63 68 20 61 6e 20 27 69 6d 70 6f 72 74 61 | iseconds.after.which.an.'importa |
| 1396e0 | 6e 74 27 20 72 65 71 75 65 73 74 20 6f 72 20 75 70 64 61 74 65 20 77 69 6c 6c 20 62 65 20 72 65 | nt'.request.or.update.will.be.re |
| 139700 | 73 65 6e 74 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 32 30 30 30 20 6d 73 2e 00 54 68 | sent..The.default.is.2000.ms..Th |
| 139720 | 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 74 69 6d 65 20 69 6e | is.command.specifies.the.time.in |
| 139740 | 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 20 62 65 74 77 65 65 6e 20 74 77 6f 20 73 63 68 65 64 75 | .milliseconds.between.two.schedu |
| 139760 | 6c 65 64 20 68 65 6c 6c 6f 73 2e 20 4f 6e 20 77 69 72 65 64 20 6c 69 6e 6b 73 2c 20 42 61 62 65 | led.hellos..On.wired.links,.Babe |
| 139780 | 6c 20 6e 6f 74 69 63 65 73 20 61 20 6c 69 6e 6b 20 66 61 69 6c 75 72 65 20 77 69 74 68 69 6e 20 | l.notices.a.link.failure.within. |
| 1397a0 | 74 77 6f 20 68 65 6c 6c 6f 20 69 6e 74 65 72 76 61 6c 73 3b 20 6f 6e 20 77 69 72 65 6c 65 73 73 | two.hello.intervals;.on.wireless |
| 1397c0 | 20 6c 69 6e 6b 73 2c 20 74 68 65 20 6c 69 6e 6b 20 71 75 61 6c 69 74 79 20 76 61 6c 75 65 20 69 | .links,.the.link.quality.value.i |
| 1397e0 | 73 20 72 65 65 73 74 69 6d 61 74 65 64 20 61 74 20 65 76 65 72 79 20 68 65 6c 6c 6f 20 69 6e 74 | s.reestimated.at.every.hello.int |
| 139800 | 65 72 76 61 6c 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 34 30 30 30 20 6d 73 2e 00 54 | erval..The.default.is.4000.ms..T |
| 139820 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 74 69 6d 65 20 69 | his.command.specifies.the.time.i |
| 139840 | 6e 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 20 62 65 74 77 65 65 6e 20 74 77 6f 20 73 63 68 65 64 | n.milliseconds.between.two.sched |
| 139860 | 75 6c 65 64 20 75 70 64 61 74 65 73 2e 20 53 69 6e 63 65 20 42 61 62 65 6c 20 6d 61 6b 65 73 20 | uled.updates..Since.Babel.makes. |
| 139880 | 65 78 74 65 6e 73 69 76 65 20 75 73 65 20 6f 66 20 74 72 69 67 67 65 72 65 64 20 75 70 64 61 74 | extensive.use.of.triggered.updat |
| 1398a0 | 65 73 2c 20 74 68 69 73 20 63 61 6e 20 62 65 20 73 65 74 20 74 6f 20 66 61 69 72 6c 79 20 68 69 | es,.this.can.be.set.to.fairly.hi |
| 1398c0 | 67 68 20 76 61 6c 75 65 73 20 6f 6e 20 6c 69 6e 6b 73 20 77 69 74 68 20 6c 69 74 74 6c 65 20 70 | gh.values.on.links.with.little.p |
| 1398e0 | 61 63 6b 65 74 20 6c 6f 73 73 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 32 30 30 30 30 | acket.loss..The.default.is.20000 |
| 139900 | 20 6d 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 | .ms..This.command.specifies.the. |
| 139920 | 74 69 6d 65 6f 75 74 20 74 69 6d 65 72 2e 20 55 70 6f 6e 20 65 78 70 69 72 61 74 69 6f 6e 20 6f | timeout.timer..Upon.expiration.o |
| 139940 | 66 20 74 68 65 20 74 69 6d 65 6f 75 74 2c 20 74 68 65 20 72 6f 75 74 65 20 69 73 20 6e 6f 20 6c | f.the.timeout,.the.route.is.no.l |
| 139960 | 6f 6e 67 65 72 20 76 61 6c 69 64 3b 20 68 6f 77 65 76 65 72 2c 20 69 74 20 69 73 20 72 65 74 61 | onger.valid;.however,.it.is.reta |
| 139980 | 69 6e 65 64 20 69 6e 20 74 68 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 66 6f 72 20 61 20 | ined.in.the.routing.table.for.a. |
| 1399a0 | 73 68 6f 72 74 20 74 69 6d 65 20 73 6f 20 74 68 61 74 20 6e 65 69 67 68 62 6f 72 73 20 63 61 6e | short.time.so.that.neighbors.can |
| 1399c0 | 20 62 65 20 6e 6f 74 69 66 69 65 64 20 74 68 61 74 20 74 68 65 20 72 6f 75 74 65 20 68 61 73 20 | .be.notified.that.the.route.has. |
| 1399e0 | 62 65 65 6e 20 64 72 6f 70 70 65 64 2e 20 54 68 65 20 74 69 6d 65 20 72 61 6e 67 65 20 69 73 20 | been.dropped..The.time.range.is. |
| 139a00 | 35 20 74 6f 20 32 31 34 37 34 38 33 36 34 37 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c | 5.to.2147483647..The.default.val |
| 139a20 | 75 65 20 69 73 20 31 38 30 20 73 65 63 6f 6e 64 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 | ue.is.180.seconds..This.command. |
| 139a40 | 73 70 65 63 69 66 69 65 73 20 74 68 65 20 75 70 64 61 74 65 20 74 69 6d 65 72 2e 20 45 76 65 72 | specifies.the.update.timer..Ever |
| 139a60 | 79 20 75 70 64 61 74 65 20 74 69 6d 65 72 20 73 65 63 6f 6e 64 73 2c 20 74 68 65 20 52 49 50 20 | y.update.timer.seconds,.the.RIP. |
| 139a80 | 70 72 6f 63 65 73 73 20 69 73 20 61 77 61 6b 65 6e 65 64 20 74 6f 20 73 65 6e 64 20 61 6e 20 75 | process.is.awakened.to.send.an.u |
| 139aa0 | 6e 73 6f 6c 69 63 69 74 65 64 20 72 65 73 70 6f 6e 73 65 20 6d 65 73 73 61 67 65 20 63 6f 6e 74 | nsolicited.response.message.cont |
| 139ac0 | 61 69 6e 69 6e 67 20 74 68 65 20 63 6f 6d 70 6c 65 74 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c | aining.the.complete.routing.tabl |
| 139ae0 | 65 20 74 6f 20 61 6c 6c 20 6e 65 69 67 68 62 6f 72 69 6e 67 20 52 49 50 20 72 6f 75 74 65 72 73 | e.to.all.neighboring.RIP.routers |
| 139b00 | 2e 20 54 68 65 20 74 69 6d 65 20 72 61 6e 67 65 20 69 73 20 35 20 74 6f 20 32 31 34 37 34 38 33 | ..The.time.range.is.5.to.2147483 |
| 139b20 | 36 34 37 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 33 30 20 73 65 63 | 647..The.default.value.is.30.sec |
| 139b40 | 6f 6e 64 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 77 68 65 | onds..This.command.specifies.whe |
| 139b60 | 74 68 65 72 20 74 6f 20 70 65 72 66 6f 72 6d 20 73 70 6c 69 74 2d 68 6f 72 69 7a 6f 6e 20 6f 6e | ther.to.perform.split-horizon.on |
| 139b80 | 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 2e 20 53 70 65 63 69 66 79 69 6e 67 20 6e 6f 20 62 61 | .the.interface..Specifying.no.ba |
| 139ba0 | 62 65 6c 20 73 70 6c 69 74 2d 68 6f 72 69 7a 6f 6e 20 69 73 20 61 6c 77 61 79 73 20 63 6f 72 72 | bel.split-horizon.is.always.corr |
| 139bc0 | 65 63 74 2c 20 77 68 69 6c 65 20 62 61 62 65 6c 20 73 70 6c 69 74 2d 68 6f 72 69 7a 6f 6e 20 69 | ect,.while.babel.split-horizon.i |
| 139be0 | 73 20 61 6e 20 6f 70 74 69 6d 69 73 61 74 69 6f 6e 20 74 68 61 74 20 73 68 6f 75 6c 64 20 6f 6e | s.an.optimisation.that.should.on |
| 139c00 | 6c 79 20 62 65 20 75 73 65 64 20 6f 6e 20 73 79 6d 6d 65 74 72 69 63 20 61 6e 64 20 74 72 61 6e | ly.be.used.on.symmetric.and.tran |
| 139c20 | 73 69 74 69 76 65 20 28 77 69 72 65 64 29 20 6e 65 74 77 6f 72 6b 73 2e 00 54 68 69 73 20 63 6f | sitive.(wired).networks..This.co |
| 139c40 | 6d 6d 61 6e 64 20 73 70 65 63 69 66 79 20 74 68 61 74 20 4f 53 50 46 20 70 61 63 6b 65 74 73 20 | mmand.specify.that.OSPF.packets. |
| 139c60 | 6d 75 73 74 20 62 65 20 61 75 74 68 65 6e 74 69 63 61 74 65 64 20 77 69 74 68 20 4d 44 35 20 48 | must.be.authenticated.with.MD5.H |
| 139c80 | 4d 41 43 73 20 77 69 74 68 69 6e 20 74 68 65 20 67 69 76 65 6e 20 61 72 65 61 2e 20 4b 65 79 69 | MACs.within.the.given.area..Keyi |
| 139ca0 | 6e 67 20 6d 61 74 65 72 69 61 6c 20 6d 75 73 74 20 61 6c 73 6f 20 62 65 20 63 6f 6e 66 69 67 75 | ng.material.must.also.be.configu |
| 139cc0 | 72 65 64 20 6f 6e 20 61 20 70 65 72 2d 69 6e 74 65 72 66 61 63 65 20 62 61 73 69 73 2e 00 54 68 | red.on.a.per-interface.basis..Th |
| 139ce0 | 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 79 73 20 74 68 61 74 20 4d 44 35 20 48 4d 41 | is.command.specifys.that.MD5.HMA |
| 139d00 | 43 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6d 75 73 74 20 62 65 20 75 73 65 64 20 6f 6e | C.authentication.must.be.used.on |
| 139d20 | 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 2e 20 49 74 20 73 65 74 73 20 4f 53 50 46 20 61 75 | .this.interface..It.sets.OSPF.au |
| 139d40 | 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6b 65 79 20 74 6f 20 61 20 63 72 79 70 74 6f 67 72 61 70 | thentication.key.to.a.cryptograp |
| 139d60 | 68 69 63 20 70 61 73 73 77 6f 72 64 2e 20 4b 65 79 2d 69 64 20 69 64 65 6e 74 69 66 69 65 73 20 | hic.password..Key-id.identifies. |
| 139d80 | 73 65 63 72 65 74 20 6b 65 79 20 75 73 65 64 20 74 6f 20 63 72 65 61 74 65 20 74 68 65 20 6d 65 | secret.key.used.to.create.the.me |
| 139da0 | 73 73 61 67 65 20 64 69 67 65 73 74 2e 20 54 68 69 73 20 49 44 20 69 73 20 70 61 72 74 20 6f 66 | ssage.digest..This.ID.is.part.of |
| 139dc0 | 20 74 68 65 20 70 72 6f 74 6f 63 6f 6c 20 61 6e 64 20 6d 75 73 74 20 62 65 20 63 6f 6e 73 69 73 | .the.protocol.and.must.be.consis |
| 139de0 | 74 65 6e 74 20 61 63 72 6f 73 73 20 72 6f 75 74 65 72 73 20 6f 6e 20 61 20 6c 69 6e 6b 2e 20 54 | tent.across.routers.on.a.link..T |
| 139e00 | 68 65 20 6b 65 79 20 63 61 6e 20 62 65 20 6c 6f 6e 67 20 75 70 20 74 6f 20 31 36 20 63 68 61 72 | he.key.can.be.long.up.to.16.char |
| 139e20 | 73 20 28 6c 61 72 67 65 72 20 73 74 72 69 6e 67 73 20 77 69 6c 6c 20 62 65 20 74 72 75 6e 63 61 | s.(larger.strings.will.be.trunca |
| 139e40 | 74 65 64 29 2c 20 61 6e 64 20 69 73 20 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 74 68 65 | ted),.and.is.associated.with.the |
| 139e60 | 20 67 69 76 65 6e 20 6b 65 79 2d 69 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 75 6d 6d | .given.key-id..This.command.summ |
| 139e80 | 61 72 69 7a 65 73 20 69 6e 74 72 61 20 61 72 65 61 20 70 61 74 68 73 20 66 72 6f 6d 20 73 70 65 | arizes.intra.area.paths.from.spe |
| 139ea0 | 63 69 66 69 65 64 20 61 72 65 61 20 69 6e 74 6f 20 6f 6e 65 20 54 79 70 65 2d 33 20 49 6e 74 65 | cified.area.into.one.Type-3.Inte |
| 139ec0 | 72 2d 41 72 65 61 20 50 72 65 66 69 78 20 4c 53 41 20 61 6e 6e 6f 75 6e 63 65 64 20 74 6f 20 6f | r-Area.Prefix.LSA.announced.to.o |
| 139ee0 | 74 68 65 72 20 61 72 65 61 73 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 61 6e 20 62 65 20 | ther.areas..This.command.can.be. |
| 139f00 | 75 73 65 64 20 6f 6e 6c 79 20 69 6e 20 41 42 52 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 | used.only.in.ABR..This.command.s |
| 139f20 | 75 6d 6d 61 72 69 7a 65 73 20 69 6e 74 72 61 20 61 72 65 61 20 70 61 74 68 73 20 66 72 6f 6d 20 | ummarizes.intra.area.paths.from. |
| 139f40 | 73 70 65 63 69 66 69 65 64 20 61 72 65 61 20 69 6e 74 6f 20 6f 6e 65 20 73 75 6d 6d 61 72 79 2d | specified.area.into.one.summary- |
| 139f60 | 4c 53 41 20 28 54 79 70 65 2d 33 29 20 61 6e 6e 6f 75 6e 63 65 64 20 74 6f 20 6f 74 68 65 72 20 | LSA.(Type-3).announced.to.other. |
| 139f80 | 61 72 65 61 73 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 61 6e 20 62 65 20 75 73 65 64 20 | areas..This.command.can.be.used. |
| 139fa0 | 6f 6e 6c 79 20 69 6e 20 41 42 52 20 61 6e 64 20 4f 4e 4c 59 20 72 6f 75 74 65 72 2d 4c 53 41 73 | only.in.ABR.and.ONLY.router-LSAs |
| 139fc0 | 20 28 54 79 70 65 2d 31 29 20 61 6e 64 20 6e 65 74 77 6f 72 6b 2d 4c 53 41 73 20 28 54 79 70 65 | .(Type-1).and.network-LSAs.(Type |
| 139fe0 | 2d 32 29 20 28 69 2e 65 2e 20 4c 53 41 73 20 77 69 74 68 20 73 63 6f 70 65 20 61 72 65 61 29 20 | -2).(i.e..LSAs.with.scope.area). |
| 13a000 | 63 61 6e 20 62 65 20 73 75 6d 6d 61 72 69 7a 65 64 2e 20 41 53 2d 65 78 74 65 72 6e 61 6c 2d 4c | can.be.summarized..AS-external-L |
| 13a020 | 53 41 73 20 28 54 79 70 65 2d 35 29 20 63 61 6e e2 80 99 74 20 62 65 20 73 75 6d 6d 61 72 69 7a | SAs.(Type-5).can...t.be.summariz |
| 13a040 | 65 64 20 2d 20 74 68 65 69 72 20 73 63 6f 70 65 20 69 73 20 41 53 2e 20 54 68 65 20 6f 70 74 69 | ed.-.their.scope.is.AS..The.opti |
| 13a060 | 6f 6e 61 6c 20 61 72 67 75 6d 65 6e 74 20 3a 63 66 67 63 6d 64 3a 60 63 6f 73 74 60 20 73 70 65 | onal.argument.:cfgcmd:`cost`.spe |
| 13a080 | 63 69 66 69 65 73 20 74 68 65 20 61 67 67 72 65 67 61 74 65 64 20 6c 69 6e 6b 20 6d 65 74 72 69 | cifies.the.aggregated.link.metri |
| 13a0a0 | 63 2e 20 54 68 65 20 6d 65 74 72 69 63 20 72 61 6e 67 65 20 69 73 20 30 20 74 6f 20 31 36 37 37 | c..The.metric.range.is.0.to.1677 |
| 13a0c0 | 37 32 31 35 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 65 6e 73 75 72 65 20 6e 6f 74 | 7215..This.command.to.ensure.not |
| 13a0e0 | 20 61 64 76 65 72 74 69 73 65 20 74 68 65 20 73 75 6d 6d 61 72 79 20 6c 73 61 20 66 6f 72 20 74 | .advertise.the.summary.lsa.for.t |
| 13a100 | 68 65 20 6d 61 74 63 68 65 64 20 65 78 74 65 72 6e 61 6c 20 4c 53 41 73 2e 00 54 68 69 73 20 63 | he.matched.external.LSAs..This.c |
| 13a120 | 6f 6d 6d 61 6e 64 20 75 73 65 73 20 74 6f 20 63 6c 65 61 72 20 42 47 50 20 72 6f 75 74 65 20 64 | ommand.uses.to.clear.BGP.route.d |
| 13a140 | 61 6d 70 65 6e 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 6e 64 20 74 6f 20 75 6e 73 75 | ampening.information.and.to.unsu |
| 13a160 | 70 70 72 65 73 73 20 73 75 70 70 72 65 73 73 65 64 20 72 6f 75 74 65 73 2e 00 54 68 69 73 20 63 | ppress.suppressed.routes..This.c |
| 13a180 | 6f 6d 6d 61 6e 64 20 77 61 73 20 69 6e 74 72 6f 64 75 63 65 64 20 69 6e 20 56 79 4f 53 20 31 2e | ommand.was.introduced.in.VyOS.1. |
| 13a1a0 | 34 20 2d 20 69 74 20 77 61 73 20 70 72 65 76 69 6f 75 73 6c 79 20 63 61 6c 6c 65 64 3a 20 60 60 | 4.-.it.was.previously.called:.`` |
| 13a1c0 | 73 65 74 20 66 69 72 65 77 61 6c 6c 20 6f 70 74 69 6f 6e 73 20 69 6e 74 65 72 66 61 63 65 20 3c | set.firewall.options.interface.< |
| 13a1e0 | 6e 61 6d 65 3e 20 61 64 6a 75 73 74 2d 6d 73 73 20 3c 76 61 6c 75 65 3e 60 60 00 54 68 69 73 20 | name>.adjust-mss.<value>``.This. |
| 13a200 | 63 6f 6d 6d 61 6e 64 20 77 61 73 20 69 6e 74 72 6f 64 75 63 65 64 20 69 6e 20 56 79 4f 53 20 31 | command.was.introduced.in.VyOS.1 |
| 13a220 | 2e 34 20 2d 20 69 74 20 77 61 73 20 70 72 65 76 69 6f 75 73 6c 79 20 63 61 6c 6c 65 64 3a 20 60 | .4.-.it.was.previously.called:.` |
| 13a240 | 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 6f 70 74 69 6f 6e 73 20 69 6e 74 65 72 66 61 63 65 20 | `set.firewall.options.interface. |
| 13a260 | 3c 6e 61 6d 65 3e 20 61 64 6a 75 73 74 2d 6d 73 73 36 20 3c 76 61 6c 75 65 3e 60 60 00 54 68 69 | <name>.adjust-mss6.<value>``.Thi |
| 13a280 | 73 20 63 6f 6d 6d 61 6e 64 20 77 69 6c 6c 20 63 68 61 6e 67 65 20 74 68 65 20 68 6f 6c 64 20 64 | s.command.will.change.the.hold.d |
| 13a2a0 | 6f 77 6e 20 76 61 6c 75 65 20 66 6f 72 20 49 47 50 2d 4c 44 50 20 73 79 6e 63 68 72 6f 6e 69 7a | own.value.for.IGP-LDP.synchroniz |
| 13a2c0 | 61 74 69 6f 6e 20 64 75 72 69 6e 67 20 63 6f 6e 76 65 72 67 65 6e 63 65 2f 69 6e 74 65 72 66 61 | ation.during.convergence/interfa |
| 13a2e0 | 63 65 20 66 6c 61 70 20 65 76 65 6e 74 73 2c 20 62 75 74 20 66 6f 72 20 74 68 69 73 20 69 6e 74 | ce.flap.events,.but.for.this.int |
| 13a300 | 65 72 66 61 63 65 20 6f 6e 6c 79 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 77 69 6c 6c 20 63 | erface.only..This.command.will.c |
| 13a320 | 68 61 6e 67 65 20 74 68 65 20 68 6f 6c 64 20 64 6f 77 6e 20 76 61 6c 75 65 20 67 6c 6f 62 61 6c | hange.the.hold.down.value.global |
| 13a340 | 6c 79 20 66 6f 72 20 49 47 50 2d 4c 44 50 20 73 79 6e 63 68 72 6f 6e 69 7a 61 74 69 6f 6e 20 64 | ly.for.IGP-LDP.synchronization.d |
| 13a360 | 75 72 69 6e 67 20 63 6f 6e 76 65 72 67 65 6e 63 65 2f 69 6e 74 65 72 66 61 63 65 20 66 6c 61 70 | uring.convergence/interface.flap |
| 13a380 | 20 65 76 65 6e 74 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 77 69 6c 6c 20 63 6f 6e 66 69 | .events..This.command.will.confi |
| 13a3a0 | 67 75 72 65 20 61 20 74 69 65 2d 62 72 65 61 6b 65 72 20 66 6f 72 20 6d 75 6c 74 69 70 6c 65 20 | gure.a.tie-breaker.for.multiple. |
| 13a3c0 | 6c 6f 63 61 6c 20 4c 46 41 20 62 61 63 6b 75 70 73 2e 20 54 68 65 20 6c 6f 77 65 72 20 69 6e 64 | local.LFA.backups..The.lower.ind |
| 13a3e0 | 65 78 20 6e 75 6d 62 65 72 73 20 77 69 6c 6c 20 62 65 20 70 72 6f 63 65 73 73 65 64 20 66 69 72 | ex.numbers.will.be.processed.fir |
| 13a400 | 73 74 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 77 69 6c 6c 20 65 6e 61 62 6c 65 20 49 47 50 | st..This.command.will.enable.IGP |
| 13a420 | 2d 4c 44 50 20 73 79 6e 63 68 72 6f 6e 69 7a 61 74 69 6f 6e 20 67 6c 6f 62 61 6c 6c 79 20 66 6f | -LDP.synchronization.globally.fo |
| 13a440 | 72 20 49 53 49 53 2e 20 54 68 69 73 20 72 65 71 75 69 72 65 73 20 66 6f 72 20 4c 44 50 20 74 6f | r.ISIS..This.requires.for.LDP.to |
| 13a460 | 20 62 65 20 66 75 6e 63 74 69 6f 6e 61 6c 2e 20 54 68 69 73 20 69 73 20 64 65 73 63 72 69 62 65 | .be.functional..This.is.describe |
| 13a480 | 64 20 69 6e 20 3a 72 66 63 3a 60 35 34 34 33 60 2e 20 42 79 20 64 65 66 61 75 6c 74 20 61 6c 6c | d.in.:rfc:`5443`..By.default.all |
| 13a4a0 | 20 69 6e 74 65 72 66 61 63 65 73 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 69 6e 20 49 53 2d 49 53 | .interfaces.operational.in.IS-IS |
| 13a4c0 | 20 61 72 65 20 65 6e 61 62 6c 65 64 20 66 6f 72 20 73 79 6e 63 68 72 6f 6e 69 7a 61 74 69 6f 6e | .are.enabled.for.synchronization |
| 13a4e0 | 2e 20 4c 6f 6f 70 62 61 63 6b 73 20 61 72 65 20 65 78 65 6d 70 74 2e 00 54 68 69 73 20 63 6f 6d | ..Loopbacks.are.exempt..This.com |
| 13a500 | 6d 61 6e 64 20 77 69 6c 6c 20 65 6e 61 62 6c 65 20 49 47 50 2d 4c 44 50 20 73 79 6e 63 68 72 6f | mand.will.enable.IGP-LDP.synchro |
| 13a520 | 6e 69 7a 61 74 69 6f 6e 20 67 6c 6f 62 61 6c 6c 79 20 66 6f 72 20 4f 53 50 46 2e 20 54 68 69 73 | nization.globally.for.OSPF..This |
| 13a540 | 20 72 65 71 75 69 72 65 73 20 66 6f 72 20 4c 44 50 20 74 6f 20 62 65 20 66 75 6e 63 74 69 6f 6e | .requires.for.LDP.to.be.function |
| 13a560 | 61 6c 2e 20 54 68 69 73 20 69 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 35 | al..This.is.described.in.:rfc:`5 |
| 13a580 | 34 34 33 60 2e 20 42 79 20 64 65 66 61 75 6c 74 20 61 6c 6c 20 69 6e 74 65 72 66 61 63 65 73 20 | 443`..By.default.all.interfaces. |
| 13a5a0 | 6f 70 65 72 61 74 69 6f 6e 61 6c 20 69 6e 20 4f 53 50 46 20 61 72 65 20 65 6e 61 62 6c 65 64 20 | operational.in.OSPF.are.enabled. |
| 13a5c0 | 66 6f 72 20 73 79 6e 63 68 72 6f 6e 69 7a 61 74 69 6f 6e 2e 20 4c 6f 6f 70 62 61 63 6b 73 20 61 | for.synchronization..Loopbacks.a |
| 13a5e0 | 72 65 20 65 78 65 6d 70 74 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 77 69 6c 6c 20 67 65 6e | re.exempt..This.command.will.gen |
| 13a600 | 65 72 61 74 65 20 61 20 64 65 66 61 75 6c 74 2d 72 6f 75 74 65 20 69 6e 20 4c 31 20 64 61 74 61 | erate.a.default-route.in.L1.data |
| 13a620 | 62 61 73 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 77 69 6c 6c 20 67 65 6e 65 72 61 74 65 | base..This.command.will.generate |
| 13a640 | 20 61 20 64 65 66 61 75 6c 74 2d 72 6f 75 74 65 20 69 6e 20 4c 32 20 64 61 74 61 62 61 73 65 2e | .a.default-route.in.L2.database. |
| 13a660 | 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 77 69 6c 6c 20 67 69 76 65 20 61 6e 20 6f 76 65 72 76 | .This.command.will.give.an.overv |
| 13a680 | 69 65 77 20 6f 66 20 61 20 72 75 6c 65 20 69 6e 20 61 20 73 69 6e 67 6c 65 20 72 75 6c 65 2d 73 | iew.of.a.rule.in.a.single.rule-s |
| 13a6a0 | 65 74 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 77 69 6c 6c 20 67 69 76 65 20 61 6e 20 6f 76 65 | et.This.command.will.give.an.ove |
| 13a6c0 | 72 76 69 65 77 20 6f 66 20 61 20 72 75 6c 65 20 69 6e 20 61 20 73 69 6e 67 6c 65 20 72 75 6c 65 | rview.of.a.rule.in.a.single.rule |
| 13a6e0 | 2d 73 65 74 2c 20 70 6c 75 73 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 6f 72 20 64 65 66 61 75 | -set,.plus.information.for.defau |
| 13a700 | 6c 74 20 61 63 74 69 6f 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 77 69 6c 6c 20 67 69 76 | lt.action..This.command.will.giv |
| 13a720 | 65 20 61 6e 20 6f 76 65 72 76 69 65 77 20 6f 66 20 61 20 72 75 6c 65 20 69 6e 20 61 20 73 69 6e | e.an.overview.of.a.rule.in.a.sin |
| 13a740 | 67 6c 65 20 72 75 6c 65 2d 73 65 74 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 77 69 6c 6c 20 | gle.rule-set..This.command.will. |
| 13a760 | 67 69 76 65 20 61 6e 20 6f 76 65 72 76 69 65 77 20 6f 66 20 61 20 73 69 6e 67 6c 65 20 72 75 6c | give.an.overview.of.a.single.rul |
| 13a780 | 65 2d 73 65 74 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 77 69 6c 6c 20 6c 69 6d 69 74 20 4c | e-set..This.command.will.limit.L |
| 13a7a0 | 46 41 20 62 61 63 6b 75 70 20 63 6f 6d 70 75 74 61 74 69 6f 6e 20 75 70 20 74 6f 20 74 68 65 20 | FA.backup.computation.up.to.the. |
| 13a7c0 | 73 70 65 63 69 66 69 65 64 20 70 72 65 66 69 78 20 70 72 69 6f 72 69 74 79 2e 00 54 68 69 73 20 | specified.prefix.priority..This. |
| 13a7e0 | 63 6f 6d 6d 61 6e 64 20 77 6f 75 6c 64 20 61 6c 6c 6f 77 20 74 68 65 20 64 79 6e 61 6d 69 63 20 | command.would.allow.the.dynamic. |
| 13a800 | 75 70 64 61 74 65 20 6f 66 20 63 61 70 61 62 69 6c 69 74 69 65 73 20 6f 76 65 72 20 61 6e 20 65 | update.of.capabilities.over.an.e |
| 13a820 | 73 74 61 62 6c 69 73 68 65 64 20 42 47 50 20 73 65 73 73 69 6f 6e 2e 00 54 68 69 73 20 63 6f 6d | stablished.BGP.session..This.com |
| 13a840 | 6d 61 6e 64 73 20 63 72 65 61 74 65 73 20 61 20 62 72 69 64 67 65 20 74 68 61 74 20 69 73 20 75 | mands.creates.a.bridge.that.is.u |
| 13a860 | 73 65 64 20 74 6f 20 62 69 6e 64 20 74 72 61 66 66 69 63 20 6f 6e 20 65 74 68 31 20 76 6c 61 6e | sed.to.bind.traffic.on.eth1.vlan |
| 13a880 | 20 32 34 31 20 77 69 74 68 20 74 68 65 20 76 78 6c 61 6e 32 34 31 2d 69 6e 74 65 72 66 61 63 65 | .241.with.the.vxlan241-interface |
| 13a8a0 | 2e 20 54 68 65 20 49 50 20 61 64 64 72 65 73 73 20 69 73 20 6e 6f 74 20 72 65 71 75 69 72 65 64 | ..The.IP.address.is.not.required |
| 13a8c0 | 2e 20 49 74 20 6d 61 79 20 68 6f 77 65 76 65 72 20 62 65 20 75 73 65 64 20 61 73 20 61 20 64 65 | ..It.may.however.be.used.as.a.de |
| 13a8e0 | 66 61 75 6c 74 20 67 61 74 65 77 61 79 20 66 6f 72 20 65 61 63 68 20 4c 65 61 66 20 77 68 69 63 | fault.gateway.for.each.Leaf.whic |
| 13a900 | 68 20 61 6c 6c 6f 77 73 20 64 65 76 69 63 65 73 20 6f 6e 20 74 68 65 20 76 6c 61 6e 20 74 6f 20 | h.allows.devices.on.the.vlan.to. |
| 13a920 | 72 65 61 63 68 20 6f 74 68 65 72 20 73 75 62 6e 65 74 73 2e 20 54 68 69 73 20 72 65 71 75 69 72 | reach.other.subnets..This.requir |
| 13a940 | 65 73 20 74 68 61 74 20 74 68 65 20 73 75 62 6e 65 74 73 20 61 72 65 20 72 65 64 69 73 74 72 69 | es.that.the.subnets.are.redistri |
| 13a960 | 62 75 74 65 64 20 62 79 20 4f 53 50 46 20 73 6f 20 74 68 61 74 20 74 68 65 20 53 70 69 6e 65 20 | buted.by.OSPF.so.that.the.Spine. |
| 13a980 | 77 69 6c 6c 20 6c 65 61 72 6e 20 68 6f 77 20 74 6f 20 72 65 61 63 68 20 69 74 2e 20 54 6f 20 64 | will.learn.how.to.reach.it..To.d |
| 13a9a0 | 6f 20 74 68 69 73 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 63 68 61 6e 67 65 20 74 68 65 20 4f 53 | o.this.you.need.to.change.the.OS |
| 13a9c0 | 50 46 20 6e 65 74 77 6f 72 6b 20 66 72 6f 6d 20 27 31 30 2e 30 2e 30 2e 30 2f 38 27 20 74 6f 20 | PF.network.from.'10.0.0.0/8'.to. |
| 13a9e0 | 27 30 2e 30 2e 30 2e 30 2f 30 27 20 74 6f 20 61 6c 6c 6f 77 20 31 37 32 2e 31 36 2f 31 32 2d 6e | '0.0.0.0/0'.to.allow.172.16/12-n |
| 13aa00 | 65 74 77 6f 72 6b 73 20 74 6f 20 62 65 20 61 64 76 65 72 74 69 73 65 64 2e 00 54 68 69 73 20 63 | etworks.to.be.advertised..This.c |
| 13aa20 | 6f 6d 6d 61 6e 64 73 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 46 69 6e 69 74 65 20 53 74 61 | ommands.specifies.the.Finite.Sta |
| 13aa40 | 74 65 20 4d 61 63 68 69 6e 65 20 28 46 53 4d 29 20 69 6e 74 65 6e 64 65 64 20 74 6f 20 63 6f 6e | te.Machine.(FSM).intended.to.con |
| 13aa60 | 74 72 6f 6c 20 74 68 65 20 74 69 6d 69 6e 67 20 6f 66 20 74 68 65 20 65 78 65 63 75 74 69 6f 6e | trol.the.timing.of.the.execution |
| 13aa80 | 20 6f 66 20 53 50 46 20 63 61 6c 63 75 6c 61 74 69 6f 6e 73 20 69 6e 20 72 65 73 70 6f 6e 73 65 | .of.SPF.calculations.in.response |
| 13aaa0 | 20 74 6f 20 49 47 50 20 65 76 65 6e 74 73 2e 20 54 68 65 20 70 72 6f 63 65 73 73 20 64 65 73 63 | .to.IGP.events..The.process.desc |
| 13aac0 | 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 38 34 30 35 60 2e 00 54 68 69 73 20 63 6f 6e 66 69 | ribed.in.:rfc:`8405`..This.confi |
| 13aae0 | 67 75 72 61 74 69 6f 6e 20 65 6e 61 62 6c 65 73 20 48 54 54 50 20 68 65 61 6c 74 68 20 63 68 65 | guration.enables.HTTP.health.che |
| 13ab00 | 63 6b 73 20 6f 6e 20 62 61 63 6b 65 6e 64 20 73 65 72 76 65 72 73 2e 00 54 68 69 73 20 63 6f 6e | cks.on.backend.servers..This.con |
| 13ab20 | 66 69 67 75 72 61 74 69 6f 6e 20 65 6e 61 62 6c 65 73 20 74 68 65 20 54 43 50 20 72 65 76 65 72 | figuration.enables.the.TCP.rever |
| 13ab40 | 73 65 20 70 72 6f 78 79 20 66 6f 72 20 74 68 65 20 22 6d 79 2d 74 63 70 2d 61 70 69 22 20 73 65 | se.proxy.for.the."my-tcp-api".se |
| 13ab60 | 72 76 69 63 65 2e 20 49 6e 63 6f 6d 69 6e 67 20 54 43 50 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 | rvice..Incoming.TCP.connections. |
| 13ab80 | 6f 6e 20 70 6f 72 74 20 38 38 38 38 20 77 69 6c 6c 20 62 65 20 6c 6f 61 64 20 62 61 6c 61 6e 63 | on.port.8888.will.be.load.balanc |
| 13aba0 | 65 64 20 61 63 72 6f 73 73 20 74 68 65 20 62 61 63 6b 65 6e 64 20 73 65 72 76 65 72 73 20 28 73 | ed.across.the.backend.servers.(s |
| 13abc0 | 72 76 30 31 20 61 6e 64 20 73 72 76 30 32 29 20 75 73 69 6e 67 20 74 68 65 20 72 6f 75 6e 64 2d | rv01.and.srv02).using.the.round- |
| 13abe0 | 72 6f 62 69 6e 20 6c 6f 61 64 2d 62 61 6c 61 6e 63 69 6e 67 20 61 6c 67 6f 72 69 74 68 6d 2e 00 | robin.load-balancing.algorithm.. |
| 13ac00 | 54 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 67 65 6e 65 72 61 74 65 73 20 26 20 69 | This.configuration.generates.&.i |
| 13ac20 | 6e 73 74 61 6c 6c 73 20 69 6e 74 6f 20 74 68 65 20 56 79 4f 53 20 50 4b 49 20 73 79 73 74 65 6d | nstalls.into.the.VyOS.PKI.system |
| 13ac40 | 20 61 20 72 6f 6f 74 20 63 65 72 74 69 66 69 63 61 74 65 20 61 75 74 68 6f 72 69 74 79 2c 20 61 | .a.root.certificate.authority,.a |
| 13ac60 | 6c 6f 6e 67 73 69 64 65 20 74 77 6f 20 69 6e 74 65 72 6d 65 64 69 61 72 79 20 63 65 72 74 69 66 | longside.two.intermediary.certif |
| 13ac80 | 69 63 61 74 65 20 61 75 74 68 6f 72 69 74 69 65 73 20 66 6f 72 20 63 6c 69 65 6e 74 20 26 20 73 | icate.authorities.for.client.&.s |
| 13aca0 | 65 72 76 65 72 20 63 65 72 74 69 66 69 63 61 74 65 73 2e 20 54 68 65 73 65 20 43 41 73 20 61 72 | erver.certificates..These.CAs.ar |
| 13acc0 | 65 20 74 68 65 6e 20 75 73 65 64 20 74 6f 20 67 65 6e 65 72 61 74 65 20 61 20 73 65 72 76 65 72 | e.then.used.to.generate.a.server |
| 13ace0 | 20 63 65 72 74 69 66 69 63 61 74 65 20 66 6f 72 20 74 68 65 20 72 6f 75 74 65 72 2c 20 61 6e 64 | .certificate.for.the.router,.and |
| 13ad00 | 20 61 20 63 6c 69 65 6e 74 20 63 65 72 74 69 66 69 63 61 74 65 20 66 6f 72 20 61 20 75 73 65 72 | .a.client.certificate.for.a.user |
| 13ad20 | 2e 00 54 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6c 69 73 74 65 6e 20 6f 6e 20 70 | ..This.configuration.listen.on.p |
| 13ad40 | 6f 72 74 20 38 30 20 61 6e 64 20 72 65 64 69 72 65 63 74 20 69 6e 63 6f 6d 69 6e 67 20 72 65 71 | ort.80.and.redirect.incoming.req |
| 13ad60 | 75 65 73 74 73 20 74 6f 20 48 54 54 50 53 3a 00 54 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 | uests.to.HTTPS:.This.configurati |
| 13ad80 | 6f 6e 20 6d 6f 64 69 66 69 65 73 20 74 68 65 20 62 65 68 61 76 69 6f 72 20 6f 66 20 74 68 65 20 | on.modifies.the.behavior.of.the. |
| 13ada0 | 6e 65 74 77 6f 72 6b 20 73 74 61 74 65 6d 65 6e 74 2e 20 49 66 20 79 6f 75 20 68 61 76 65 20 74 | network.statement..If.you.have.t |
| 13adc0 | 68 69 73 20 63 6f 6e 66 69 67 75 72 65 64 20 74 68 65 20 75 6e 64 65 72 6c 79 69 6e 67 20 6e 65 | his.configured.the.underlying.ne |
| 13ade0 | 74 77 6f 72 6b 20 6d 75 73 74 20 65 78 69 73 74 20 69 6e 20 74 68 65 20 72 6f 75 74 69 6e 67 20 | twork.must.exist.in.the.routing. |
| 13ae00 | 74 61 62 6c 65 2e 00 54 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 70 61 72 61 6d 65 | table..This.configuration.parame |
| 13ae20 | 74 65 72 20 69 73 20 72 65 71 75 69 72 65 64 20 61 6e 64 20 6d 75 73 74 20 62 65 20 75 6e 69 71 | ter.is.required.and.must.be.uniq |
| 13ae40 | 75 65 20 74 6f 20 65 61 63 68 20 73 75 62 6e 65 74 2e 20 49 74 20 69 73 20 72 65 71 75 69 72 65 | ue.to.each.subnet..It.is.require |
| 13ae60 | 64 20 74 6f 20 6d 61 70 20 73 75 62 6e 65 74 73 20 74 6f 20 6c 65 61 73 65 20 66 69 6c 65 20 65 | d.to.map.subnets.to.lease.file.e |
| 13ae80 | 6e 74 72 69 65 73 2e 00 54 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 70 61 72 61 6d | ntries..This.configuration.param |
| 13aea0 | 65 74 65 72 20 6c 65 74 73 20 74 68 65 20 44 48 43 50 20 73 65 72 76 65 72 20 74 6f 20 6c 69 73 | eter.lets.the.DHCP.server.to.lis |
| 13aec0 | 74 65 6e 20 66 6f 72 20 44 48 43 50 20 72 65 71 75 65 73 74 73 20 73 65 6e 74 20 74 6f 20 74 68 | ten.for.DHCP.requests.sent.to.th |
| 13aee0 | 65 20 73 70 65 63 69 66 69 65 64 20 61 64 64 72 65 73 73 2c 20 69 74 20 69 73 20 6f 6e 6c 79 20 | e.specified.address,.it.is.only. |
| 13af00 | 72 65 61 6c 69 73 74 69 63 61 6c 6c 79 20 75 73 65 66 75 6c 20 66 6f 72 20 61 20 73 65 72 76 65 | realistically.useful.for.a.serve |
| 13af20 | 72 20 77 68 6f 73 65 20 6f 6e 6c 79 20 63 6c 69 65 6e 74 73 20 61 72 65 20 72 65 61 63 68 65 64 | r.whose.only.clients.are.reached |
| 13af40 | 20 76 69 61 20 75 6e 69 63 61 73 74 73 2c 20 73 75 63 68 20 61 73 20 76 69 61 20 44 48 43 50 20 | .via.unicasts,.such.as.via.DHCP. |
| 13af60 | 72 65 6c 61 79 20 61 67 65 6e 74 73 2e 00 54 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e | relay.agents..This.configuration |
| 13af80 | 20 70 61 72 61 6d 65 74 65 72 20 6c 65 74 73 20 79 6f 75 20 73 70 65 63 69 66 79 20 61 20 76 65 | .parameter.lets.you.specify.a.ve |
| 13afa0 | 6e 64 6f 72 2d 6f 70 74 69 6f 6e 20 66 6f 72 20 74 68 65 20 65 6e 74 69 72 65 20 73 68 61 72 65 | ndor-option.for.the.entire.share |
| 13afc0 | 64 20 6e 65 74 77 6f 72 6b 20 64 65 66 69 6e 69 74 69 6f 6e 2e 20 41 6c 6c 20 73 75 62 6e 65 74 | d.network.definition..All.subnet |
| 13afe0 | 73 20 77 69 6c 6c 20 69 6e 68 65 72 69 74 20 74 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f | s.will.inherit.this.configuratio |
| 13b000 | 6e 20 69 74 65 6d 20 69 66 20 6e 6f 74 20 73 70 65 63 69 66 69 65 64 20 6c 6f 63 61 6c 6c 79 2e | n.item.if.not.specified.locally. |
| 13b020 | 20 41 6e 20 65 78 61 6d 70 6c 65 20 66 6f 72 20 55 62 69 71 75 69 74 69 20 69 73 20 73 68 6f 77 | .An.example.for.Ubiquiti.is.show |
| 13b040 | 6e 20 62 65 6c 6f 77 3a 00 54 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 70 61 72 61 | n.below:.This.configuration.para |
| 13b060 | 6d 65 74 65 72 20 6c 65 74 73 20 79 6f 75 20 73 70 65 63 69 66 79 20 61 20 76 65 6e 64 6f 72 2d | meter.lets.you.specify.a.vendor- |
| 13b080 | 6f 70 74 69 6f 6e 20 66 6f 72 20 74 68 65 20 73 75 62 6e 65 74 20 73 70 65 63 69 66 69 65 64 20 | option.for.the.subnet.specified. |
| 13b0a0 | 77 69 74 68 69 6e 20 74 68 65 20 73 68 61 72 65 64 20 6e 65 74 77 6f 72 6b 20 64 65 66 69 6e 69 | within.the.shared.network.defini |
| 13b0c0 | 74 69 6f 6e 2e 20 41 6e 20 65 78 61 6d 70 6c 65 20 66 6f 72 20 55 62 69 71 75 69 74 69 20 69 73 | tion..An.example.for.Ubiquiti.is |
| 13b0e0 | 20 73 68 6f 77 6e 20 62 65 6c 6f 77 3a 00 54 68 69 73 20 63 6f 75 6c 64 20 62 65 20 68 65 6c 70 | .shown.below:.This.could.be.help |
| 13b100 | 66 75 6c 20 69 66 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 74 65 73 74 20 68 6f 77 20 61 6e 20 61 | ful.if.you.want.to.test.how.an.a |
| 13b120 | 70 70 6c 69 63 61 74 69 6f 6e 20 62 65 68 61 76 65 73 20 75 6e 64 65 72 20 63 65 72 74 61 69 6e | pplication.behaves.under.certain |
| 13b140 | 20 6e 65 74 77 6f 72 6b 20 63 6f 6e 64 69 74 69 6f 6e 73 2e 00 54 68 69 73 20 63 72 65 61 74 65 | .network.conditions..This.create |
| 13b160 | 73 20 61 20 72 6f 75 74 65 20 70 6f 6c 69 63 79 20 63 61 6c 6c 65 64 20 46 49 4c 54 45 52 2d 57 | s.a.route.policy.called.FILTER-W |
| 13b180 | 45 42 20 77 69 74 68 20 6f 6e 65 20 72 75 6c 65 20 74 6f 20 73 65 74 20 74 68 65 20 72 6f 75 74 | EB.with.one.rule.to.set.the.rout |
| 13b1a0 | 69 6e 67 20 74 61 62 6c 65 20 66 6f 72 20 6d 61 74 63 68 69 6e 67 20 74 72 61 66 66 69 63 20 28 | ing.table.for.matching.traffic.( |
| 13b1c0 | 54 43 50 20 70 6f 72 74 20 38 30 29 20 74 6f 20 74 61 62 6c 65 20 49 44 20 31 30 30 20 69 6e 73 | TCP.port.80).to.table.ID.100.ins |
| 13b1e0 | 74 65 61 64 20 6f 66 20 74 68 65 20 64 65 66 61 75 6c 74 20 72 6f 75 74 69 6e 67 20 74 61 62 6c | tead.of.the.default.routing.tabl |
| 13b200 | 65 2e 00 54 68 69 73 20 64 65 66 61 75 6c 74 73 20 74 6f 20 31 30 30 30 30 2e 00 54 68 69 73 20 | e..This.defaults.to.10000..This. |
| 13b220 | 64 65 66 61 75 6c 74 73 20 74 6f 20 31 38 31 32 2e 00 54 68 69 73 20 64 65 66 61 75 6c 74 73 20 | defaults.to.1812..This.defaults. |
| 13b240 | 74 6f 20 32 30 30 37 2e 00 54 68 69 73 20 64 65 66 61 75 6c 74 73 20 74 6f 20 33 30 20 73 65 63 | to.2007..This.defaults.to.30.sec |
| 13b260 | 6f 6e 64 73 2e 00 54 68 69 73 20 64 65 66 61 75 6c 74 73 20 74 6f 20 33 30 30 20 73 65 63 6f 6e | onds..This.defaults.to.300.secon |
| 13b280 | 64 73 2e 00 54 68 69 73 20 64 65 66 61 75 6c 74 73 20 74 6f 20 34 39 2e 00 54 68 69 73 20 64 65 | ds..This.defaults.to.49..This.de |
| 13b2a0 | 66 61 75 6c 74 73 20 74 6f 20 35 2e 00 54 68 69 73 20 64 65 66 61 75 6c 74 73 20 74 6f 20 55 44 | faults.to.5..This.defaults.to.UD |
| 13b2c0 | 50 00 54 68 69 73 20 64 65 66 61 75 6c 74 73 20 74 6f 20 62 6f 74 68 20 31 2e 32 20 61 6e 64 20 | P.This.defaults.to.both.1.2.and. |
| 13b2e0 | 31 2e 33 2e 00 54 68 69 73 20 64 65 66 61 75 6c 74 73 20 74 6f 20 68 74 74 70 73 3a 2f 2f 61 63 | 1.3..This.defaults.to.https://ac |
| 13b300 | 6d 65 2d 76 30 32 2e 61 70 69 2e 6c 65 74 73 65 6e 63 72 79 70 74 2e 6f 72 67 2f 64 69 72 65 63 | me-v02.api.letsencrypt.org/direc |
| 13b320 | 74 6f 72 79 00 54 68 69 73 20 64 65 66 61 75 6c 74 73 20 74 6f 20 70 68 79 30 2e 00 54 68 69 73 | tory.This.defaults.to.phy0..This |
| 13b340 | 20 64 65 70 65 6e 64 73 20 6f 6e 20 74 68 65 20 64 72 69 76 65 72 20 63 61 70 61 62 69 6c 69 74 | .depends.on.the.driver.capabilit |
| 13b360 | 69 65 73 20 61 6e 64 20 6d 61 79 20 6e 6f 74 20 62 65 20 61 76 61 69 6c 61 62 6c 65 20 77 69 74 | ies.and.may.not.be.available.wit |
| 13b380 | 68 20 61 6c 6c 20 64 72 69 76 65 72 73 2e 00 54 68 69 73 20 64 69 61 62 6c 65 20 74 68 65 20 65 | h.all.drivers..This.diable.the.e |
| 13b3a0 | 78 74 65 72 6e 61 6c 20 63 61 63 68 65 20 61 6e 64 20 64 69 72 65 63 74 6c 79 20 69 6e 6a 65 63 | xternal.cache.and.directly.injec |
| 13b3c0 | 74 73 20 74 68 65 20 66 6c 6f 77 2d 73 74 61 74 65 73 20 69 6e 74 6f 20 74 68 65 20 69 6e 2d 6b | ts.the.flow-states.into.the.in-k |
| 13b3e0 | 65 72 6e 65 6c 20 43 6f 6e 6e 65 63 74 69 6f 6e 20 54 72 61 63 6b 69 6e 67 20 53 79 73 74 65 6d | ernel.Connection.Tracking.System |
| 13b400 | 20 6f 66 20 74 68 65 20 62 61 63 6b 75 70 20 66 69 72 65 77 61 6c 6c 2e 00 54 68 69 73 20 64 69 | .of.the.backup.firewall..This.di |
| 13b420 | 61 67 72 61 6d 20 63 6f 72 72 65 73 70 6f 6e 64 73 20 77 69 74 68 20 74 68 65 20 65 78 61 6d 70 | agram.corresponds.with.the.examp |
| 13b440 | 6c 65 20 73 69 74 65 20 74 6f 20 73 69 74 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 62 65 | le.site.to.site.configuration.be |
| 13b460 | 6c 6f 77 2e 00 54 68 69 73 20 65 6e 61 62 6c 65 73 20 3a 72 66 63 3a 60 33 31 33 37 60 20 73 75 | low..This.enables.:rfc:`3137`.su |
| 13b480 | 70 70 6f 72 74 2c 20 77 68 65 72 65 20 74 68 65 20 4f 53 50 46 20 70 72 6f 63 65 73 73 20 64 65 | pport,.where.the.OSPF.process.de |
| 13b4a0 | 73 63 72 69 62 65 73 20 69 74 73 20 74 72 61 6e 73 69 74 20 6c 69 6e 6b 73 20 69 6e 20 69 74 73 | scribes.its.transit.links.in.its |
| 13b4c0 | 20 72 6f 75 74 65 72 2d 4c 53 41 20 61 73 20 68 61 76 69 6e 67 20 69 6e 66 69 6e 69 74 65 20 64 | .router-LSA.as.having.infinite.d |
| 13b4e0 | 69 73 74 61 6e 63 65 20 73 6f 20 74 68 61 74 20 6f 74 68 65 72 20 72 6f 75 74 65 72 73 20 77 69 | istance.so.that.other.routers.wi |
| 13b500 | 6c 6c 20 61 76 6f 69 64 20 63 61 6c 63 75 6c 61 74 69 6e 67 20 74 72 61 6e 73 69 74 20 70 61 74 | ll.avoid.calculating.transit.pat |
| 13b520 | 68 73 20 74 68 72 6f 75 67 68 20 74 68 65 20 72 6f 75 74 65 72 20 77 68 69 6c 65 20 73 74 69 6c | hs.through.the.router.while.stil |
| 13b540 | 6c 20 62 65 69 6e 67 20 61 62 6c 65 20 74 6f 20 72 65 61 63 68 20 6e 65 74 77 6f 72 6b 73 20 74 | l.being.able.to.reach.networks.t |
| 13b560 | 68 72 6f 75 67 68 20 74 68 65 20 72 6f 75 74 65 72 2e 00 54 68 69 73 20 65 6e 61 62 6c 65 73 20 | hrough.the.router..This.enables. |
| 13b580 | 74 68 65 20 67 72 65 65 6e 66 69 65 6c 64 20 6f 70 74 69 6f 6e 20 77 68 69 63 68 20 73 65 74 73 | the.greenfield.option.which.sets |
| 13b5a0 | 20 74 68 65 20 60 60 5b 47 46 5d 60 60 20 6f 70 74 69 6f 6e 00 54 68 69 73 20 65 73 74 61 62 6c | .the.``[GF]``.option.This.establ |
| 13b5c0 | 69 73 68 65 73 20 6f 75 72 20 50 6f 72 74 20 46 6f 72 77 61 72 64 20 72 75 6c 65 2c 20 62 75 74 | ishes.our.Port.Forward.rule,.but |
| 13b5e0 | 20 69 66 20 77 65 20 63 72 65 61 74 65 64 20 61 20 66 69 72 65 77 61 6c 6c 20 70 6f 6c 69 63 79 | .if.we.created.a.firewall.policy |
| 13b600 | 20 69 74 20 77 69 6c 6c 20 6c 69 6b 65 6c 79 20 62 6c 6f 63 6b 20 74 68 65 20 74 72 61 66 66 69 | .it.will.likely.block.the.traffi |
| 13b620 | 63 2e 00 54 68 69 73 20 65 78 61 6d 70 6c 65 20 63 72 65 61 74 65 73 20 61 6e 20 49 50 76 34 20 | c..This.example.creates.an.IPv4. |
| 13b640 | 70 72 65 66 69 78 2d 6c 69 73 74 20 6e 61 6d 65 64 20 50 4c 34 2d 45 58 41 4d 50 4c 45 2d 4e 41 | prefix-list.named.PL4-EXAMPLE-NA |
| 13b660 | 4d 45 2c 20 64 65 66 69 6e 65 73 20 33 20 72 75 6c 65 73 20 65 61 63 68 20 77 69 74 68 20 31 20 | ME,.defines.3.rules.each.with.1. |
| 13b680 | 70 72 65 66 69 78 2c 20 61 6e 64 20 6d 61 74 63 68 65 73 20 6c 65 20 28 6c 65 73 73 20 74 68 61 | prefix,.and.matches.le.(less.tha |
| 13b6a0 | 6e 2f 65 71 75 61 6c 20 74 6f 29 20 2f 33 32 2e 00 54 68 69 73 20 65 78 61 6d 70 6c 65 20 73 68 | n/equal.to)./32..This.example.sh |
| 13b6c0 | 6f 77 73 20 68 6f 77 20 74 6f 20 74 61 72 67 65 74 20 61 6e 20 4d 53 53 20 63 6c 61 6d 70 20 28 | ows.how.to.target.an.MSS.clamp.( |
| 13b6e0 | 69 6e 20 6f 75 72 20 65 78 61 6d 70 6c 65 20 74 6f 20 31 33 36 30 20 62 79 74 65 73 29 20 74 6f | in.our.example.to.1360.bytes).to |
| 13b700 | 20 61 20 73 70 65 63 69 66 69 63 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 49 50 2e 00 54 68 69 73 | .a.specific.destination.IP..This |
| 13b720 | 20 65 78 61 6d 70 6c 65 20 75 73 65 73 20 43 41 43 65 72 74 20 61 73 20 63 65 72 74 69 66 69 63 | .example.uses.CACert.as.certific |
| 13b740 | 61 74 65 20 61 75 74 68 6f 72 69 74 79 2e 00 54 68 69 73 20 66 65 61 74 75 72 65 20 63 6c 6f 73 | ate.authority..This.feature.clos |
| 13b760 | 65 6c 79 20 77 6f 72 6b 73 20 74 6f 67 65 74 68 65 72 20 77 69 74 68 20 3a 72 65 66 3a 60 70 6b | ely.works.together.with.:ref:`pk |
| 13b780 | 69 60 20 73 75 62 73 79 73 74 65 6d 20 61 73 20 79 6f 75 20 72 65 71 75 69 72 65 64 20 61 20 78 | i`.subsystem.as.you.required.a.x |
| 13b7a0 | 35 30 39 20 63 65 72 74 69 66 69 63 61 74 65 2e 00 54 68 69 73 20 66 65 61 74 75 72 65 20 73 65 | 509.certificate..This.feature.se |
| 13b7c0 | 72 76 65 73 20 74 68 65 20 70 75 72 70 6f 73 65 20 6f 66 20 74 68 69 67 68 74 65 6e 69 6e 67 20 | rves.the.purpose.of.thightening. |
| 13b7e0 | 74 68 65 20 70 61 63 6b 65 74 20 76 61 6c 69 64 61 74 69 6f 6e 20 72 65 71 75 69 72 65 6d 65 6e | the.packet.validation.requiremen |
| 13b800 | 74 73 20 74 6f 20 61 76 6f 69 64 20 72 65 63 65 69 76 69 6e 67 20 42 46 44 20 63 6f 6e 74 72 6f | ts.to.avoid.receiving.BFD.contro |
| 13b820 | 6c 20 70 61 63 6b 65 74 73 20 66 72 6f 6d 20 6f 74 68 65 72 20 73 65 73 73 69 6f 6e 73 2e 00 54 | l.packets.from.other.sessions..T |
| 13b840 | 68 69 73 20 66 65 61 74 75 72 65 20 73 75 6d 6d 61 72 69 73 65 73 20 6f 72 69 67 69 6e 61 74 65 | his.feature.summarises.originate |
| 13b860 | 64 20 65 78 74 65 72 6e 61 6c 20 4c 53 41 73 20 28 54 79 70 65 2d 35 20 61 6e 64 20 54 79 70 65 | d.external.LSAs.(Type-5.and.Type |
| 13b880 | 2d 37 29 2e 20 53 75 6d 6d 61 72 79 20 52 6f 75 74 65 20 77 69 6c 6c 20 62 65 20 6f 72 69 67 69 | -7)..Summary.Route.will.be.origi |
| 13b8a0 | 6e 61 74 65 64 20 6f 6e 2d 62 65 68 61 6c 66 20 6f 66 20 61 6c 6c 20 6d 61 74 63 68 65 64 20 65 | nated.on-behalf.of.all.matched.e |
| 13b8c0 | 78 74 65 72 6e 61 6c 20 4c 53 41 73 2e 00 54 68 69 73 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 | xternal.LSAs..This.functionality |
| 13b8e0 | 20 69 73 20 63 6f 6e 74 72 6f 6c 6c 65 64 20 62 79 20 61 64 64 69 6e 67 20 74 68 65 20 66 6f 6c | .is.controlled.by.adding.the.fol |
| 13b900 | 6c 6f 77 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 00 54 68 69 73 20 66 75 6e 63 74 | lowing.configuration:.This.funct |
| 13b920 | 69 6f 6e 73 20 66 6f 72 20 62 6f 74 68 20 69 6e 64 69 76 69 64 75 61 6c 20 61 64 64 72 65 73 73 | ions.for.both.individual.address |
| 13b940 | 65 73 20 61 6e 64 20 61 64 64 72 65 73 73 20 67 72 6f 75 70 73 2e 00 54 68 69 73 20 67 69 76 65 | es.and.address.groups..This.give |
| 13b960 | 73 20 75 73 20 49 47 50 2d 4c 44 50 20 73 79 6e 63 68 72 6f 6e 69 7a 61 74 69 6f 6e 20 66 6f 72 | s.us.IGP-LDP.synchronization.for |
| 13b980 | 20 61 6c 6c 20 6e 6f 6e 2d 6c 6f 6f 70 62 61 63 6b 20 69 6e 74 65 72 66 61 63 65 73 20 77 69 74 | .all.non-loopback.interfaces.wit |
| 13b9a0 | 68 20 61 20 68 6f 6c 64 64 6f 77 6e 20 74 69 6d 65 72 20 6f 66 20 7a 65 72 6f 20 73 65 63 6f 6e | h.a.holddown.timer.of.zero.secon |
| 13b9c0 | 64 73 3a 00 54 68 69 73 20 67 69 76 65 73 20 75 73 20 4d 50 4c 53 20 73 65 67 6d 65 6e 74 20 72 | ds:.This.gives.us.MPLS.segment.r |
| 13b9e0 | 6f 75 74 69 6e 67 20 65 6e 61 62 6c 65 64 20 61 6e 64 20 6c 61 62 65 6c 73 20 66 6f 72 20 66 61 | outing.enabled.and.labels.for.fa |
| 13ba00 | 72 20 65 6e 64 20 6c 6f 6f 70 62 61 63 6b 73 3a 00 54 68 69 73 20 67 69 76 65 73 20 75 73 20 74 | r.end.loopbacks:.This.gives.us.t |
| 13ba20 | 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 6e 65 69 67 68 62 6f 72 73 68 69 70 73 2c 20 4c 65 76 65 | he.following.neighborships,.Leve |
| 13ba40 | 6c 20 31 20 61 6e 64 20 4c 65 76 65 6c 20 32 3a 00 54 68 69 73 20 67 69 76 65 73 20 75 73 20 74 | l.1.and.Level.2:.This.gives.us.t |
| 13ba60 | 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 6e 65 69 67 68 62 6f 72 73 68 69 70 73 3a 00 54 68 69 73 | he.following.neighborships:.This |
| 13ba80 | 20 69 6e 73 74 72 75 63 74 73 20 6f 70 65 6e 6e 68 72 70 20 74 6f 20 72 65 70 6c 79 20 77 69 74 | .instructs.opennhrp.to.reply.wit |
| 13baa0 | 68 20 61 75 74 68 6f 72 61 74 69 76 65 20 61 6e 73 77 65 72 73 20 6f 6e 20 4e 48 52 50 20 52 65 | h.authorative.answers.on.NHRP.Re |
| 13bac0 | 73 6f 6c 75 74 69 6f 6e 20 52 65 71 75 65 73 74 73 20 64 65 73 74 69 6e 69 65 64 20 74 6f 20 61 | solution.Requests.destinied.to.a |
| 13bae0 | 64 64 72 65 73 73 65 73 20 69 6e 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 20 28 69 6e 73 74 | ddresses.in.this.interface.(inst |
| 13bb00 | 65 61 64 20 6f 66 20 66 6f 72 77 61 72 64 69 6e 67 20 74 68 65 20 70 61 63 6b 65 74 73 29 2e 20 | ead.of.forwarding.the.packets).. |
| 13bb20 | 54 68 69 73 20 65 66 66 65 63 74 69 76 65 6c 79 20 61 6c 6c 6f 77 73 20 74 68 65 20 63 72 65 61 | This.effectively.allows.the.crea |
| 13bb40 | 74 69 6f 6e 20 6f 66 20 73 68 6f 72 74 63 75 74 20 72 6f 75 74 65 73 20 74 6f 20 73 75 62 6e 65 | tion.of.shortcut.routes.to.subne |
| 13bb60 | 74 73 20 6c 6f 63 61 74 65 64 20 6f 6e 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 2e 00 54 68 69 | ts.located.on.the.interface..Thi |
| 13bb80 | 73 20 69 73 20 61 20 63 6f 6d 6d 6f 6e 20 73 63 65 6e 61 72 69 6f 20 77 68 65 72 65 20 62 6f 74 | s.is.a.common.scenario.where.bot |
| 13bba0 | 68 20 3a 72 65 66 3a 60 73 6f 75 72 63 65 2d 6e 61 74 60 20 61 6e 64 20 3a 72 65 66 3a 60 64 65 | h.:ref:`source-nat`.and.:ref:`de |
| 13bbc0 | 73 74 69 6e 61 74 69 6f 6e 2d 6e 61 74 60 20 61 72 65 20 63 6f 6e 66 69 67 75 72 65 64 20 61 74 | stination-nat`.are.configured.at |
| 13bbe0 | 20 74 68 65 20 73 61 6d 65 20 74 69 6d 65 2e 20 49 74 27 73 20 63 6f 6d 6d 6f 6e 6c 79 20 75 73 | .the.same.time..It's.commonly.us |
| 13bc00 | 65 64 20 77 68 65 6e 20 69 6e 74 65 72 6e 61 6c 20 28 70 72 69 76 61 74 65 29 20 68 6f 73 74 73 | ed.when.internal.(private).hosts |
| 13bc20 | 20 6e 65 65 64 20 74 6f 20 65 73 74 61 62 6c 69 73 68 20 61 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 | .need.to.establish.a.connection. |
| 13bc40 | 77 69 74 68 20 65 78 74 65 72 6e 61 6c 20 72 65 73 6f 75 72 63 65 73 20 61 6e 64 20 65 78 74 65 | with.external.resources.and.exte |
| 13bc60 | 72 6e 61 6c 20 73 79 73 74 65 6d 73 20 6e 65 65 64 20 74 6f 20 61 63 63 65 73 73 20 69 6e 74 65 | rnal.systems.need.to.access.inte |
| 13bc80 | 72 6e 61 6c 20 28 70 72 69 76 61 74 65 29 20 72 65 73 6f 75 72 63 65 73 2e 00 54 68 69 73 20 69 | rnal.(private).resources..This.i |
| 13bca0 | 73 20 61 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 70 61 72 61 6d 65 74 65 72 20 66 6f 72 20 | s.a.configuration.parameter.for. |
| 13bcc0 | 74 68 65 20 60 3c 73 75 62 6e 65 74 3e 60 2c 20 73 61 79 69 6e 67 20 74 68 61 74 20 61 73 20 70 | the.`<subnet>`,.saying.that.as.p |
| 13bce0 | 61 72 74 20 6f 66 20 74 68 65 20 72 65 73 70 6f 6e 73 65 2c 20 74 65 6c 6c 20 74 68 65 20 63 6c | art.of.the.response,.tell.the.cl |
| 13bd00 | 69 65 6e 74 20 74 68 61 74 20 74 68 65 20 64 65 66 61 75 6c 74 20 67 61 74 65 77 61 79 20 63 61 | ient.that.the.default.gateway.ca |
| 13bd20 | 6e 20 62 65 20 72 65 61 63 68 65 64 20 61 74 20 60 3c 61 64 64 72 65 73 73 3e 60 2e 00 54 68 69 | n.be.reached.at.`<address>`..Thi |
| 13bd40 | 73 20 69 73 20 61 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 70 61 72 61 6d 65 74 65 72 20 66 | s.is.a.configuration.parameter.f |
| 13bd60 | 6f 72 20 74 68 65 20 73 75 62 6e 65 74 2c 20 73 61 79 69 6e 67 20 74 68 61 74 20 61 73 20 70 61 | or.the.subnet,.saying.that.as.pa |
| 13bd80 | 72 74 20 6f 66 20 74 68 65 20 72 65 73 70 6f 6e 73 65 2c 20 74 65 6c 6c 20 74 68 65 20 63 6c 69 | rt.of.the.response,.tell.the.cli |
| 13bda0 | 65 6e 74 20 74 68 61 74 20 74 68 65 20 44 4e 53 20 73 65 72 76 65 72 20 63 61 6e 20 62 65 20 66 | ent.that.the.DNS.server.can.be.f |
| 13bdc0 | 6f 75 6e 64 20 61 74 20 60 3c 61 64 64 72 65 73 73 3e 60 2e 00 54 68 69 73 20 69 73 20 61 20 6d | ound.at.`<address>`..This.is.a.m |
| 13bde0 | 61 6e 64 61 74 6f 72 79 20 63 6f 6d 6d 61 6e 64 2e 20 53 65 74 73 20 72 65 67 75 6c 61 72 20 65 | andatory.command..Sets.regular.e |
| 13be00 | 78 70 72 65 73 73 69 6f 6e 20 74 6f 20 6d 61 74 63 68 20 61 67 61 69 6e 73 74 20 6c 6f 67 20 73 | xpression.to.match.against.log.s |
| 13be20 | 74 72 69 6e 67 20 6d 65 73 73 61 67 65 2e 00 54 68 69 73 20 69 73 20 61 20 6d 61 6e 64 61 74 6f | tring.message..This.is.a.mandato |
| 13be40 | 72 79 20 63 6f 6d 6d 61 6e 64 2e 20 53 65 74 73 20 74 68 65 20 66 75 6c 6c 20 70 61 74 68 20 74 | ry.command..Sets.the.full.path.t |
| 13be60 | 6f 20 74 68 65 20 73 63 72 69 70 74 2e 20 54 68 65 20 73 63 72 69 70 74 20 66 69 6c 65 20 6d 75 | o.the.script..The.script.file.mu |
| 13be80 | 73 74 20 62 65 20 65 78 65 63 75 74 61 62 6c 65 2e 00 54 68 69 73 20 69 73 20 61 20 6d 61 6e 64 | st.be.executable..This.is.a.mand |
| 13bea0 | 61 74 6f 72 79 20 6f 70 74 69 6f 6e 00 54 68 69 73 20 69 73 20 61 20 6d 61 6e 64 61 74 6f 72 79 | atory.option.This.is.a.mandatory |
| 13bec0 | 20 73 65 74 74 69 6e 67 2e 00 54 68 69 73 20 69 73 20 61 63 68 69 65 76 65 64 20 62 79 20 75 73 | .setting..This.is.achieved.by.us |
| 13bee0 | 69 6e 67 20 74 68 65 20 66 69 72 73 74 20 74 68 72 65 65 20 62 69 74 73 20 6f 66 20 74 68 65 20 | ing.the.first.three.bits.of.the. |
| 13bf00 | 54 6f 53 20 28 54 79 70 65 20 6f 66 20 53 65 72 76 69 63 65 29 20 66 69 65 6c 64 20 74 6f 20 63 | ToS.(Type.of.Service).field.to.c |
| 13bf20 | 61 74 65 67 6f 72 69 7a 65 20 64 61 74 61 20 73 74 72 65 61 6d 73 20 61 6e 64 2c 20 69 6e 20 61 | ategorize.data.streams.and,.in.a |
| 13bf40 | 63 63 6f 72 64 61 6e 63 65 20 77 69 74 68 20 74 68 65 20 64 65 66 69 6e 65 64 20 70 72 65 63 65 | ccordance.with.the.defined.prece |
| 13bf60 | 64 65 6e 63 65 20 70 61 72 61 6d 65 74 65 72 73 2c 20 61 20 64 65 63 69 73 69 6f 6e 20 69 73 20 | dence.parameters,.a.decision.is. |
| 13bf80 | 6d 61 64 65 2e 00 54 68 69 73 20 69 73 20 61 6c 73 6f 20 6b 6e 6f 77 6e 20 61 73 20 74 68 65 20 | made..This.is.also.known.as.the. |
| 13bfa0 | 48 55 42 73 20 49 50 20 61 64 64 72 65 73 73 20 6f 72 20 46 51 44 4e 2e 00 54 68 69 73 20 69 73 | HUBs.IP.address.or.FQDN..This.is |
| 13bfc0 | 20 61 6e 20 6f 70 74 69 6f 6e 61 6c 20 63 6f 6d 6d 61 6e 64 20 62 65 63 61 75 73 65 20 74 68 65 | .an.optional.command.because.the |
| 13bfe0 | 20 65 76 65 6e 74 20 68 61 6e 64 6c 65 72 20 77 69 6c 6c 20 62 65 20 61 75 74 6f 6d 61 74 69 63 | .event.handler.will.be.automatic |
| 13c000 | 61 6c 6c 79 20 63 72 65 61 74 65 64 20 61 66 74 65 72 20 61 6e 79 20 6f 66 20 74 68 65 20 6e 65 | ally.created.after.any.of.the.ne |
| 13c020 | 78 74 20 63 6f 6d 6d 61 6e 64 73 2e 00 54 68 69 73 20 69 73 20 61 6e 20 6f 70 74 69 6f 6e 61 6c | xt.commands..This.is.an.optional |
| 13c040 | 20 63 6f 6d 6d 61 6e 64 2e 20 41 64 64 73 20 61 72 67 75 6d 65 6e 74 73 20 74 6f 20 74 68 65 20 | .command..Adds.arguments.to.the. |
| 13c060 | 73 63 72 69 70 74 2e 20 41 72 67 75 6d 65 6e 74 73 20 6d 75 73 74 20 62 65 20 73 65 70 61 72 61 | script..Arguments.must.be.separa |
| 13c080 | 74 65 64 20 62 79 20 73 70 61 63 65 73 2e 00 54 68 69 73 20 69 73 20 61 6e 20 6f 70 74 69 6f 6e | ted.by.spaces..This.is.an.option |
| 13c0a0 | 61 6c 20 63 6f 6d 6d 61 6e 64 2e 20 41 64 64 73 20 65 6e 76 69 72 6f 6e 6d 65 6e 74 20 61 6e 64 | al.command..Adds.environment.and |
| 13c0c0 | 20 69 74 73 20 76 61 6c 75 65 20 74 6f 20 74 68 65 20 73 63 72 69 70 74 2e 20 55 73 65 20 73 65 | .its.value.to.the.script..Use.se |
| 13c0e0 | 70 61 72 61 74 65 20 63 6f 6d 6d 61 6e 64 73 20 66 6f 72 20 65 61 63 68 20 65 6e 76 69 72 6f 6e | parate.commands.for.each.environ |
| 13c100 | 6d 65 6e 74 2e 00 54 68 69 73 20 69 73 20 61 6e 20 6f 70 74 69 6f 6e 61 6c 20 63 6f 6d 6d 61 6e | ment..This.is.an.optional.comman |
| 13c120 | 64 2e 20 46 69 6c 74 65 72 73 20 6c 6f 67 20 6d 65 73 73 61 67 65 73 20 62 79 20 73 79 73 6c 6f | d..Filters.log.messages.by.syslo |
| 13c140 | 67 2d 69 64 65 6e 74 69 66 69 65 72 2e 00 54 68 69 73 20 69 73 20 64 6f 6e 65 20 74 6f 20 73 75 | g-identifier..This.is.done.to.su |
| 13c160 | 70 70 6f 72 74 20 28 65 74 68 65 72 6e 65 74 29 20 73 77 69 74 63 68 20 66 65 61 74 75 72 65 73 | pport.(ethernet).switch.features |
| 13c180 | 2c 20 6c 69 6b 65 20 3a 72 66 63 3a 60 33 30 36 39 60 2c 20 77 68 65 72 65 20 74 68 65 20 69 6e | ,.like.:rfc:`3069`,.where.the.in |
| 13c1a0 | 64 69 76 69 64 75 61 6c 20 70 6f 72 74 73 20 61 72 65 20 4e 4f 54 20 61 6c 6c 6f 77 65 64 20 74 | dividual.ports.are.NOT.allowed.t |
| 13c1c0 | 6f 20 63 6f 6d 6d 75 6e 69 63 61 74 65 20 77 69 74 68 20 65 61 63 68 20 6f 74 68 65 72 2c 20 62 | o.communicate.with.each.other,.b |
| 13c1e0 | 75 74 20 74 68 65 79 20 61 72 65 20 61 6c 6c 6f 77 65 64 20 74 6f 20 74 61 6c 6b 20 74 6f 20 74 | ut.they.are.allowed.to.talk.to.t |
| 13c200 | 68 65 20 75 70 73 74 72 65 61 6d 20 72 6f 75 74 65 72 2e 20 41 73 20 64 65 73 63 72 69 62 65 64 | he.upstream.router..As.described |
| 13c220 | 20 69 6e 20 3a 72 66 63 3a 60 33 30 36 39 60 2c 20 69 74 20 69 73 20 70 6f 73 73 69 62 6c 65 20 | .in.:rfc:`3069`,.it.is.possible. |
| 13c240 | 74 6f 20 61 6c 6c 6f 77 20 74 68 65 73 65 20 68 6f 73 74 73 20 74 6f 20 63 6f 6d 6d 75 6e 69 63 | to.allow.these.hosts.to.communic |
| 13c260 | 61 74 65 20 74 68 72 6f 75 67 68 20 74 68 65 20 75 70 73 74 72 65 61 6d 20 72 6f 75 74 65 72 20 | ate.through.the.upstream.router. |
| 13c280 | 62 79 20 70 72 6f 78 79 5f 61 72 70 27 69 6e 67 2e 00 54 68 69 73 20 69 73 20 65 73 70 65 63 69 | by.proxy_arp'ing..This.is.especi |
| 13c2a0 | 61 6c 6c 79 20 75 73 65 66 75 6c 20 66 6f 72 20 74 68 65 20 75 70 73 74 72 65 61 6d 20 69 6e 74 | ally.useful.for.the.upstream.int |
| 13c2c0 | 65 72 66 61 63 65 2c 20 73 69 6e 63 65 20 74 68 65 20 73 6f 75 72 63 65 20 66 6f 72 20 6d 75 6c | erface,.since.the.source.for.mul |
| 13c2e0 | 74 69 63 61 73 74 20 74 72 61 66 66 69 63 20 69 73 20 6f 66 74 65 6e 20 66 72 6f 6d 20 61 20 72 | ticast.traffic.is.often.from.a.r |
| 13c300 | 65 6d 6f 74 65 20 6c 6f 63 61 74 69 6f 6e 2e 00 54 68 69 73 20 69 73 20 6f 6e 65 20 6f 66 20 74 | emote.location..This.is.one.of.t |
| 13c320 | 68 65 20 73 69 6d 70 6c 65 73 74 20 74 79 70 65 73 20 6f 66 20 74 75 6e 6e 65 6c 73 2c 20 61 73 | he.simplest.types.of.tunnels,.as |
| 13c340 | 20 64 65 66 69 6e 65 64 20 62 79 20 3a 72 66 63 3a 60 32 30 30 33 60 2e 20 49 74 20 74 61 6b 65 | .defined.by.:rfc:`2003`..It.take |
| 13c360 | 73 20 61 6e 20 49 50 76 34 20 70 61 63 6b 65 74 20 61 6e 64 20 73 65 6e 64 73 20 69 74 20 61 73 | s.an.IPv4.packet.and.sends.it.as |
| 13c380 | 20 61 20 70 61 79 6c 6f 61 64 20 6f 66 20 61 6e 6f 74 68 65 72 20 49 50 76 34 20 70 61 63 6b 65 | .a.payload.of.another.IPv4.packe |
| 13c3a0 | 74 2e 20 46 6f 72 20 74 68 69 73 20 72 65 61 73 6f 6e 2c 20 74 68 65 72 65 20 61 72 65 20 6e 6f | t..For.this.reason,.there.are.no |
| 13c3c0 | 20 6f 74 68 65 72 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 70 74 69 6f 6e 73 20 66 6f 72 | .other.configuration.options.for |
| 13c3e0 | 20 74 68 69 73 20 6b 69 6e 64 20 6f 66 20 74 75 6e 6e 65 6c 2e 00 54 68 69 73 20 69 73 20 6f 70 | .this.kind.of.tunnel..This.is.op |
| 13c400 | 74 69 6f 6e 61 6c 2e 00 54 68 69 73 20 69 73 20 73 69 6d 69 6c 61 72 20 74 6f 20 74 68 65 20 6e | tional..This.is.similar.to.the.n |
| 13c420 | 65 74 77 6f 72 6b 20 67 72 6f 75 70 73 20 70 61 72 74 2c 20 62 75 74 20 68 65 72 65 20 79 6f 75 | etwork.groups.part,.but.here.you |
| 13c440 | 20 61 72 65 20 61 62 6c 65 20 74 6f 20 6e 65 67 61 74 65 20 74 68 65 20 6d 61 74 63 68 69 6e 67 | .are.able.to.negate.the.matching |
| 13c460 | 20 61 64 64 72 65 73 73 65 73 2e 00 54 68 69 73 20 69 73 20 74 68 65 20 49 50 76 36 20 63 6f 75 | .addresses..This.is.the.IPv6.cou |
| 13c480 | 6e 74 65 72 70 61 72 74 20 6f 66 20 49 50 49 50 2e 20 49 27 6d 20 6e 6f 74 20 61 77 61 72 65 20 | nterpart.of.IPIP..I'm.not.aware. |
| 13c4a0 | 6f 66 20 61 6e 20 52 46 43 20 74 68 61 74 20 64 65 66 69 6e 65 73 20 74 68 69 73 20 65 6e 63 61 | of.an.RFC.that.defines.this.enca |
| 13c4c0 | 70 73 75 6c 61 74 69 6f 6e 20 73 70 65 63 69 66 69 63 61 6c 6c 79 2c 20 62 75 74 20 69 74 27 73 | psulation.specifically,.but.it's |
| 13c4e0 | 20 61 20 6e 61 74 75 72 61 6c 20 73 70 65 63 69 66 69 63 20 63 61 73 65 20 6f 66 20 49 50 76 36 | .a.natural.specific.case.of.IPv6 |
| 13c500 | 20 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e 20 6d 65 63 68 61 6e 69 73 6d 73 20 64 65 73 63 72 69 | .encapsulation.mechanisms.descri |
| 13c520 | 62 65 64 20 69 6e 20 3a 72 66 63 3a 32 34 37 33 60 2e 00 54 68 69 73 20 69 73 20 74 68 65 20 4c | bed.in.:rfc:2473`..This.is.the.L |
| 13c540 | 41 4e 20 65 78 74 65 6e 73 69 6f 6e 20 75 73 65 20 63 61 73 65 2e 20 54 68 65 20 65 74 68 30 20 | AN.extension.use.case..The.eth0. |
| 13c560 | 70 6f 72 74 20 6f 66 20 74 68 65 20 64 69 73 74 61 6e 74 20 56 50 4e 20 70 65 65 72 73 20 77 69 | port.of.the.distant.VPN.peers.wi |
| 13c580 | 6c 6c 20 62 65 20 64 69 72 65 63 74 6c 79 20 63 6f 6e 6e 65 63 74 65 64 20 6c 69 6b 65 20 69 66 | ll.be.directly.connected.like.if |
| 13c5a0 | 20 74 68 65 72 65 20 77 61 73 20 61 20 73 77 69 74 63 68 20 62 65 74 77 65 65 6e 20 74 68 65 6d | .there.was.a.switch.between.them |
| 13c5c0 | 2e 00 54 68 69 73 20 69 73 20 74 68 65 20 4c 43 44 20 6d 6f 64 65 6c 20 75 73 65 64 20 69 6e 20 | ..This.is.the.LCD.model.used.in. |
| 13c5e0 | 79 6f 75 72 20 73 79 73 74 65 6d 2e 00 54 68 69 73 20 69 73 20 74 68 65 20 63 6f 6e 66 69 67 75 | your.system..This.is.the.configu |
| 13c600 | 72 61 74 69 6f 6e 20 70 61 72 61 6d 65 74 65 72 20 66 6f 72 20 74 68 65 20 65 6e 74 69 72 65 20 | ration.parameter.for.the.entire. |
| 13c620 | 73 68 61 72 65 64 20 6e 65 74 77 6f 72 6b 20 64 65 66 69 6e 69 74 69 6f 6e 2e 20 41 6c 6c 20 73 | shared.network.definition..All.s |
| 13c640 | 75 62 6e 65 74 73 20 77 69 6c 6c 20 69 6e 68 65 72 69 74 20 74 68 69 73 20 63 6f 6e 66 69 67 75 | ubnets.will.inherit.this.configu |
| 13c660 | 72 61 74 69 6f 6e 20 69 74 65 6d 20 69 66 20 6e 6f 74 20 73 70 65 63 69 66 69 65 64 20 6c 6f 63 | ration.item.if.not.specified.loc |
| 13c680 | 61 6c 6c 79 2e 00 54 68 69 73 20 69 73 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 | ally..This.is.the.configuration. |
| 13c6a0 | 70 61 72 61 6d 65 74 65 72 20 66 6f 72 20 74 68 65 20 65 6e 74 69 72 65 20 73 68 61 72 65 64 20 | parameter.for.the.entire.shared. |
| 13c6c0 | 6e 65 74 77 6f 72 6b 20 64 65 66 69 6e 69 74 69 6f 6e 2e 20 41 6c 6c 20 73 75 62 6e 65 74 73 20 | network.definition..All.subnets. |
| 13c6e0 | 77 69 6c 6c 20 69 6e 68 65 72 69 74 20 74 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 | will.inherit.this.configuration. |
| 13c700 | 69 74 65 6d 20 69 66 20 6e 6f 74 20 73 70 65 63 69 66 69 65 64 20 6c 6f 63 61 6c 6c 79 2e 20 4d | item.if.not.specified.locally..M |
| 13c720 | 75 6c 74 69 70 6c 65 20 44 4e 53 20 73 65 72 76 65 72 73 20 63 61 6e 20 62 65 20 64 65 66 69 6e | ultiple.DNS.servers.can.be.defin |
| 13c740 | 65 64 2e 00 54 68 69 73 20 69 73 20 74 68 65 20 65 71 75 69 76 61 6c 65 6e 74 20 6f 66 20 74 68 | ed..This.is.the.equivalent.of.th |
| 13c760 | 65 20 68 6f 73 74 20 62 6c 6f 63 6b 20 69 6e 20 64 68 63 70 64 2e 63 6f 6e 66 20 6f 66 20 69 73 | e.host.block.in.dhcpd.conf.of.is |
| 13c780 | 63 2d 64 68 63 70 64 2e 00 54 68 69 73 20 69 73 20 74 68 65 20 6e 61 6d 65 20 6f 66 20 74 68 65 | c-dhcpd..This.is.the.name.of.the |
| 13c7a0 | 20 70 68 79 73 69 63 61 6c 20 69 6e 74 65 72 66 61 63 65 20 75 73 65 64 20 74 6f 20 63 6f 6e 6e | .physical.interface.used.to.conn |
| 13c7c0 | 65 63 74 20 74 6f 20 79 6f 75 72 20 4c 43 44 20 64 69 73 70 6c 61 79 2e 20 54 61 62 20 63 6f 6d | ect.to.your.LCD.display..Tab.com |
| 13c7e0 | 70 6c 65 74 69 6f 6e 20 69 73 20 73 75 70 70 6f 72 74 65 64 20 61 6e 64 20 69 74 20 77 69 6c 6c | pletion.is.supported.and.it.will |
| 13c800 | 20 6c 69 73 74 20 79 6f 75 20 61 6c 6c 20 61 76 61 69 6c 61 62 6c 65 20 73 65 72 69 61 6c 20 69 | .list.you.all.available.serial.i |
| 13c820 | 6e 74 65 72 66 61 63 65 2e 00 54 68 69 73 20 69 73 20 74 68 65 20 70 6f 6c 69 63 79 20 74 68 61 | nterface..This.is.the.policy.tha |
| 13c840 | 74 20 72 65 71 75 69 65 72 65 73 20 74 68 65 20 6c 6f 77 65 73 74 20 72 65 73 6f 75 72 63 65 73 | t.requieres.the.lowest.resources |
| 13c860 | 20 66 6f 72 20 74 68 65 20 73 61 6d 65 20 61 6d 6f 75 6e 74 20 6f 66 20 74 72 61 66 66 69 63 2e | .for.the.same.amount.of.traffic. |
| 13c880 | 20 42 75 74 20 2a 2a 76 65 72 79 20 6c 69 6b 65 6c 79 20 79 6f 75 20 64 6f 20 6e 6f 74 20 6e 65 | .But.**very.likely.you.do.not.ne |
| 13c8a0 | 65 64 20 69 74 20 61 73 20 79 6f 75 20 63 61 6e 6e 6f 74 20 67 65 74 20 6d 75 63 68 20 66 72 6f | ed.it.as.you.cannot.get.much.fro |
| 13c8c0 | 6d 20 69 74 2e 20 53 6f 6d 65 74 69 6d 65 73 20 69 74 20 69 73 20 75 73 65 64 20 6a 75 73 74 20 | m.it..Sometimes.it.is.used.just. |
| 13c8e0 | 74 6f 20 65 6e 61 62 6c 65 20 6c 6f 67 67 69 6e 67 2e 2a 2a 00 54 68 69 73 20 69 73 20 74 68 65 | to.enable.logging.**.This.is.the |
| 13c900 | 20 70 6f 6c 69 63 79 20 74 68 61 74 20 72 65 71 75 69 72 65 73 20 74 68 65 20 6c 6f 77 65 73 74 | .policy.that.requires.the.lowest |
| 13c920 | 20 72 65 73 6f 75 72 63 65 73 20 66 6f 72 20 74 68 65 20 73 61 6d 65 20 61 6d 6f 75 6e 74 20 6f | .resources.for.the.same.amount.o |
| 13c940 | 66 20 74 72 61 66 66 69 63 2e 20 42 75 74 20 2a 2a 76 65 72 79 20 6c 69 6b 65 6c 79 20 79 6f 75 | f.traffic..But.**very.likely.you |
| 13c960 | 20 64 6f 20 6e 6f 74 20 6e 65 65 64 20 69 74 20 61 73 20 79 6f 75 20 63 61 6e 6e 6f 74 20 67 65 | .do.not.need.it.as.you.cannot.ge |
| 13c980 | 74 20 6d 75 63 68 20 66 72 6f 6d 20 69 74 2e 20 53 6f 6d 65 74 69 6d 65 73 20 69 74 20 69 73 20 | t.much.from.it..Sometimes.it.is. |
| 13c9a0 | 75 73 65 64 20 6a 75 73 74 20 74 6f 20 65 6e 61 62 6c 65 20 6c 6f 67 67 69 6e 67 2e 2a 2a 00 54 | used.just.to.enable.logging.**.T |
| 13c9c0 | 68 69 73 20 69 73 20 75 73 65 66 75 6c 2c 20 66 6f 72 20 65 78 61 6d 70 6c 65 2c 20 69 6e 20 63 | his.is.useful,.for.example,.in.c |
| 13c9e0 | 6f 6d 62 69 6e 61 74 69 6f 6e 20 77 69 74 68 20 68 6f 73 74 66 69 6c 65 20 75 70 64 61 74 65 2e | ombination.with.hostfile.update. |
| 13ca00 | 00 54 68 69 73 20 69 73 20 77 68 65 72 65 20 22 55 44 50 20 62 72 6f 61 64 63 61 73 74 20 72 65 | .This.is.where."UDP.broadcast.re |
| 13ca20 | 6c 61 79 22 20 63 6f 6d 65 73 20 69 6e 74 6f 20 70 6c 61 79 21 20 49 74 20 77 69 6c 6c 20 66 6f | lay".comes.into.play!.It.will.fo |
| 13ca40 | 72 77 61 72 64 20 72 65 63 65 69 76 65 64 20 62 72 6f 61 64 63 61 73 74 73 20 74 6f 20 6f 74 68 | rward.received.broadcasts.to.oth |
| 13ca60 | 65 72 20 63 6f 6e 66 69 67 75 72 65 64 20 6e 65 74 77 6f 72 6b 73 2e 00 54 68 69 73 20 6d 61 6b | er.configured.networks..This.mak |
| 13ca80 | 65 73 20 74 68 65 20 73 65 72 76 65 72 20 61 75 74 68 6f 72 69 74 61 74 69 76 65 6c 79 20 6e 6f | es.the.server.authoritatively.no |
| 13caa0 | 74 20 61 77 61 72 65 20 6f 66 3a 20 31 30 2e 69 6e 2d 61 64 64 72 2e 61 72 70 61 2c 20 31 36 38 | t.aware.of:.10.in-addr.arpa,.168 |
| 13cac0 | 2e 31 39 32 2e 69 6e 2d 61 64 64 72 2e 61 72 70 61 2c 20 31 36 2d 33 31 2e 31 37 32 2e 69 6e 2d | .192.in-addr.arpa,.16-31.172.in- |
| 13cae0 | 61 64 64 72 2e 61 72 70 61 2c 20 77 68 69 63 68 20 65 6e 61 62 6c 69 6e 67 20 75 70 73 74 72 65 | addr.arpa,.which.enabling.upstre |
| 13cb00 | 61 6d 20 44 4e 53 20 73 65 72 76 65 72 28 73 29 20 74 6f 20 62 65 20 75 73 65 64 20 66 6f 72 20 | am.DNS.server(s).to.be.used.for. |
| 13cb20 | 72 65 76 65 72 73 65 20 6c 6f 6f 6b 75 70 73 20 6f 66 20 74 68 65 73 65 20 7a 6f 6e 65 73 2e 00 | reverse.lookups.of.these.zones.. |
| 13cb40 | 54 68 69 73 20 6d 65 74 68 6f 64 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 64 69 73 61 62 6c | This.method.automatically.disabl |
| 13cb60 | 65 73 20 49 50 76 36 20 74 72 61 66 66 69 63 20 66 6f 72 77 61 72 64 69 6e 67 20 6f 6e 20 74 68 | es.IPv6.traffic.forwarding.on.th |
| 13cb80 | 65 20 69 6e 74 65 72 66 61 63 65 20 69 6e 20 71 75 65 73 74 69 6f 6e 2e 00 54 68 69 73 20 6d 6f | e.interface.in.question..This.mo |
| 13cba0 | 64 65 20 70 72 6f 76 69 64 65 73 20 66 61 75 6c 74 20 74 6f 6c 65 72 61 6e 63 65 2e 00 54 68 69 | de.provides.fault.tolerance..Thi |
| 13cbc0 | 73 20 6d 6f 64 65 20 70 72 6f 76 69 64 65 73 20 66 61 75 6c 74 20 74 6f 6c 65 72 61 6e 63 65 2e | s.mode.provides.fault.tolerance. |
| 13cbe0 | 20 54 68 65 20 3a 63 66 67 63 6d 64 3a 60 70 72 69 6d 61 72 79 60 20 6f 70 74 69 6f 6e 2c 20 64 | .The.:cfgcmd:`primary`.option,.d |
| 13cc00 | 6f 63 75 6d 65 6e 74 65 64 20 62 65 6c 6f 77 2c 20 61 66 66 65 63 74 73 20 74 68 65 20 62 65 68 | ocumented.below,.affects.the.beh |
| 13cc20 | 61 76 69 6f 72 20 6f 66 20 74 68 69 73 20 6d 6f 64 65 2e 00 54 68 69 73 20 6d 6f 64 65 20 70 72 | avior.of.this.mode..This.mode.pr |
| 13cc40 | 6f 76 69 64 65 73 20 6c 6f 61 64 20 62 61 6c 61 6e 63 69 6e 67 20 61 6e 64 20 66 61 75 6c 74 20 | ovides.load.balancing.and.fault. |
| 13cc60 | 74 6f 6c 65 72 61 6e 63 65 2e 00 54 68 69 73 20 6f 70 74 69 6f 6e 20 61 64 64 73 20 50 6f 77 65 | tolerance..This.option.adds.Powe |
| 13cc80 | 72 20 43 6f 6e 73 74 72 61 69 6e 74 20 65 6c 65 6d 65 6e 74 20 77 68 65 6e 20 61 70 70 6c 69 63 | r.Constraint.element.when.applic |
| 13cca0 | 61 62 6c 65 20 61 6e 64 20 43 6f 75 6e 74 72 79 20 65 6c 65 6d 65 6e 74 20 69 73 20 61 64 64 65 | able.and.Country.element.is.adde |
| 13ccc0 | 64 2e 20 50 6f 77 65 72 20 43 6f 6e 73 74 72 61 69 6e 74 20 65 6c 65 6d 65 6e 74 20 69 73 20 72 | d..Power.Constraint.element.is.r |
| 13cce0 | 65 71 75 69 72 65 64 20 62 79 20 54 72 61 6e 73 6d 69 74 20 50 6f 77 65 72 20 43 6f 6e 74 72 6f | equired.by.Transmit.Power.Contro |
| 13cd00 | 6c 2e 00 54 68 69 73 20 6f 70 74 69 6f 6e 20 61 64 64 73 20 74 68 65 20 50 6f 77 65 72 20 43 6f | l..This.option.adds.the.Power.Co |
| 13cd20 | 6e 73 74 72 61 69 6e 74 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 65 6c 65 6d 65 6e 74 20 77 68 65 | nstraint.information.element.whe |
| 13cd40 | 6e 20 61 70 70 6c 69 63 61 62 6c 65 20 61 6e 64 20 74 68 65 20 43 6f 75 6e 74 72 79 20 69 6e 66 | n.applicable.and.the.Country.inf |
| 13cd60 | 6f 72 6d 61 74 69 6f 6e 20 65 6c 65 6d 65 6e 74 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 2e 20 | ormation.element.is.configured.. |
| 13cd80 | 54 68 65 20 50 6f 77 65 72 20 43 6f 6e 73 74 72 61 69 6e 74 20 65 6c 65 6d 65 6e 74 20 69 73 20 | The.Power.Constraint.element.is. |
| 13cda0 | 72 65 71 75 69 72 65 64 20 62 79 20 54 72 61 6e 73 6d 69 74 20 50 6f 77 65 72 20 43 6f 6e 74 72 | required.by.Transmit.Power.Contr |
| 13cdc0 | 6f 6c 2e 00 54 68 69 73 20 6f 70 74 69 6f 6e 20 61 6c 6c 6f 77 20 74 6f 20 73 70 65 63 69 66 69 | ol..This.option.allow.to.specifi |
| 13cde0 | 65 73 20 74 68 65 20 38 30 32 2e 33 61 64 20 73 79 73 74 65 6d 20 4d 41 43 20 61 64 64 72 65 73 | es.the.802.3ad.system.MAC.addres |
| 13ce00 | 73 2e 59 6f 75 20 63 61 6e 20 73 65 74 20 61 20 72 61 6e 64 6f 6d 20 6d 61 63 2d 61 64 64 72 65 | s.You.can.set.a.random.mac-addre |
| 13ce20 | 73 73 20 74 68 61 74 20 63 61 6e 20 62 65 20 75 73 65 64 20 66 6f 72 20 74 68 65 73 65 20 4c 41 | ss.that.can.be.used.for.these.LA |
| 13ce40 | 43 50 44 55 20 65 78 63 68 61 6e 67 65 73 2e 00 54 68 69 73 20 6f 70 74 69 6f 6e 20 63 61 6e 20 | CPDU.exchanges..This.option.can. |
| 13ce60 | 62 65 20 73 70 65 63 69 66 69 65 64 20 6d 75 6c 74 69 70 6c 65 20 74 69 6d 65 73 2e 00 54 68 69 | be.specified.multiple.times..Thi |
| 13ce80 | 73 20 6f 70 74 69 6f 6e 20 63 61 6e 20 62 65 20 73 75 70 70 6c 69 65 64 20 6d 75 6c 74 69 70 6c | s.option.can.be.supplied.multipl |
| 13cea0 | 65 20 74 69 6d 65 73 2e 00 54 68 69 73 20 6f 70 74 69 6f 6e 20 69 73 20 6d 61 6e 64 61 74 6f 72 | e.times..This.option.is.mandator |
| 13cec0 | 79 20 69 6e 20 41 63 63 65 73 73 2d 50 6f 69 6e 74 20 6d 6f 64 65 2e 00 54 68 69 73 20 6f 70 74 | y.in.Access-Point.mode..This.opt |
| 13cee0 | 69 6f 6e 20 69 73 20 72 65 71 75 69 72 65 64 20 77 68 65 6e 20 72 75 6e 6e 69 6e 67 20 61 20 44 | ion.is.required.when.running.a.D |
| 13cf00 | 4d 56 50 4e 20 73 70 6f 6b 65 2e 00 54 68 69 73 20 6f 70 74 69 6f 6e 20 69 73 20 75 73 65 64 20 | MVPN.spoke..This.option.is.used. |
| 13cf20 | 62 79 20 73 6f 6d 65 20 44 48 43 50 20 63 6c 69 65 6e 74 73 20 61 73 20 61 20 77 61 79 20 66 6f | by.some.DHCP.clients.as.a.way.fo |
| 13cf40 | 72 20 75 73 65 72 73 20 74 6f 20 73 70 65 63 69 66 79 20 69 64 65 6e 74 69 66 79 69 6e 67 20 69 | r.users.to.specify.identifying.i |
| 13cf60 | 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 6f 20 74 68 65 20 63 6c 69 65 6e 74 2e 20 54 68 69 73 20 63 | nformation.to.the.client..This.c |
| 13cf80 | 61 6e 20 62 65 20 75 73 65 64 20 69 6e 20 61 20 73 69 6d 69 6c 61 72 20 77 61 79 20 74 6f 20 74 | an.be.used.in.a.similar.way.to.t |
| 13cfa0 | 68 65 20 76 65 6e 64 6f 72 2d 63 6c 61 73 73 2d 69 64 65 6e 74 69 66 69 65 72 20 6f 70 74 69 6f | he.vendor-class-identifier.optio |
| 13cfc0 | 6e 2c 20 62 75 74 20 74 68 65 20 76 61 6c 75 65 20 6f 66 20 74 68 65 20 6f 70 74 69 6f 6e 20 69 | n,.but.the.value.of.the.option.i |
| 13cfe0 | 73 20 73 70 65 63 69 66 69 65 64 20 62 79 20 74 68 65 20 75 73 65 72 2c 20 6e 6f 74 20 74 68 65 | s.specified.by.the.user,.not.the |
| 13d000 | 20 76 65 6e 64 6f 72 2e 00 54 68 69 73 20 6f 70 74 69 6f 6e 20 69 73 20 75 73 65 64 20 62 79 20 | .vendor..This.option.is.used.by. |
| 13d020 | 73 6f 6d 65 20 44 48 43 50 20 63 6c 69 65 6e 74 73 20 74 6f 20 69 64 65 6e 74 69 66 79 20 74 68 | some.DHCP.clients.to.identify.th |
| 13d040 | 65 20 76 65 6e 64 6f 72 20 74 79 70 65 20 61 6e 64 20 70 6f 73 73 69 62 6c 79 20 74 68 65 20 63 | e.vendor.type.and.possibly.the.c |
| 13d060 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 66 20 61 20 44 48 43 50 20 63 6c 69 65 6e 74 2e 20 54 | onfiguration.of.a.DHCP.client..T |
| 13d080 | 68 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 69 73 20 61 20 73 74 72 69 6e 67 20 6f 66 20 62 79 | he.information.is.a.string.of.by |
| 13d0a0 | 74 65 73 20 77 68 6f 73 65 20 63 6f 6e 74 65 6e 74 73 20 61 72 65 20 73 70 65 63 69 66 69 63 20 | tes.whose.contents.are.specific. |
| 13d0c0 | 74 6f 20 74 68 65 20 76 65 6e 64 6f 72 20 61 6e 64 20 61 72 65 20 6e 6f 74 20 73 70 65 63 69 66 | to.the.vendor.and.are.not.specif |
| 13d0e0 | 69 65 64 20 69 6e 20 61 20 73 74 61 6e 64 61 72 64 2e 00 54 68 69 73 20 6f 70 74 69 6f 6e 20 6d | ied.in.a.standard..This.option.m |
| 13d100 | 75 73 74 20 62 65 20 75 73 65 64 20 77 69 74 68 20 60 60 74 69 6d 65 6f 75 74 60 60 20 6f 70 74 | ust.be.used.with.``timeout``.opt |
| 13d120 | 69 6f 6e 2e 00 54 68 69 73 20 6f 70 74 69 6f 6e 20 6f 6e 6c 79 20 61 66 66 65 63 74 73 20 38 30 | ion..This.option.only.affects.80 |
| 13d140 | 32 2e 33 61 64 20 6d 6f 64 65 2e 00 54 68 69 73 20 6f 70 74 69 6f 6e 20 72 65 71 75 69 72 65 73 | 2.3ad.mode..This.option.requires |
| 13d160 | 20 3a 61 62 62 72 3a 60 4d 46 50 20 28 4d 61 6e 61 67 65 6d 65 6e 74 20 46 72 61 6d 65 20 50 72 | .:abbr:`MFP.(Management.Frame.Pr |
| 13d180 | 6f 74 65 63 74 69 6f 6e 29 60 20 74 6f 20 62 65 20 65 6e 61 62 6c 65 64 2e 00 54 68 69 73 20 6f | otection)`.to.be.enabled..This.o |
| 13d1a0 | 70 74 69 6f 6e 20 73 70 65 63 69 66 69 65 73 20 61 20 64 65 6c 61 79 20 69 6e 20 73 65 63 6f 6e | ption.specifies.a.delay.in.secon |
| 13d1c0 | 64 73 20 62 65 66 6f 72 65 20 76 72 72 70 20 69 6e 73 74 61 6e 63 65 73 20 73 74 61 72 74 20 75 | ds.before.vrrp.instances.start.u |
| 13d1e0 | 70 20 61 66 74 65 72 20 6b 65 65 70 61 6c 69 76 65 64 20 73 74 61 72 74 73 2e 00 54 68 69 73 20 | p.after.keepalived.starts..This. |
| 13d200 | 6f 70 74 69 6f 6e 20 77 61 73 20 63 61 6c 6c 65 64 20 2d 2d 6e 63 70 2d 63 69 70 68 65 72 73 20 | option.was.called.--ncp-ciphers. |
| 13d220 | 69 6e 20 4f 70 65 6e 56 50 4e 20 32 2e 34 20 62 75 74 20 68 61 73 20 62 65 65 6e 20 72 65 6e 61 | in.OpenVPN.2.4.but.has.been.rena |
| 13d240 | 6d 65 64 20 74 6f 20 2d 2d 64 61 74 61 2d 63 69 70 68 65 72 73 20 69 6e 20 4f 70 65 6e 56 50 4e | med.to.--data-ciphers.in.OpenVPN |
| 13d260 | 20 32 2e 35 20 74 6f 20 6d 6f 72 65 20 61 63 63 75 72 61 74 65 6c 79 20 72 65 66 6c 65 63 74 20 | .2.5.to.more.accurately.reflect. |
| 13d280 | 69 74 73 20 6d 65 61 6e 69 6e 67 2e 20 54 68 65 20 66 69 72 73 74 20 63 69 70 68 65 72 20 69 6e | its.meaning..The.first.cipher.in |
| 13d2a0 | 20 74 68 61 74 20 6c 69 73 74 20 74 68 61 74 20 69 73 20 61 6c 73 6f 20 69 6e 20 74 68 65 20 63 | .that.list.that.is.also.in.the.c |
| 13d2c0 | 6c 69 65 6e 74 27 73 20 2d 2d 64 61 74 61 2d 63 69 70 68 65 72 73 20 6c 69 73 74 20 69 73 20 63 | lient's.--data-ciphers.list.is.c |
| 13d2e0 | 68 6f 73 65 6e 2e 20 49 66 20 6e 6f 20 63 6f 6d 6d 6f 6e 20 63 69 70 68 65 72 20 69 73 20 66 6f | hosen..If.no.common.cipher.is.fo |
| 13d300 | 75 6e 64 20 74 68 65 20 63 6c 69 65 6e 74 20 69 73 20 72 65 6a 65 63 74 65 64 2e 00 54 68 69 73 | und.the.client.is.rejected..This |
| 13d320 | 20 6f 70 74 69 6f 6e 73 20 64 65 66 61 75 6c 74 73 20 74 6f 20 32 30 34 38 00 54 68 69 73 20 70 | .options.defaults.to.2048.This.p |
| 13d340 | 61 72 61 6d 65 74 65 72 20 61 6c 6c 6f 77 73 20 74 6f 20 22 73 68 6f 72 74 63 75 74 22 20 72 6f | arameter.allows.to."shortcut".ro |
| 13d360 | 75 74 65 73 20 28 6e 6f 6e 2d 62 61 63 6b 62 6f 6e 65 29 20 66 6f 72 20 69 6e 74 65 72 2d 61 72 | utes.(non-backbone).for.inter-ar |
| 13d380 | 65 61 20 72 6f 75 74 65 73 2e 20 54 68 65 72 65 20 61 72 65 20 74 68 72 65 65 20 6d 6f 64 65 73 | ea.routes..There.are.three.modes |
| 13d3a0 | 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 72 6f 75 74 65 73 20 73 68 6f 72 74 63 75 74 74 69 | .available.for.routes.shortcutti |
| 13d3c0 | 6e 67 3a 00 54 68 69 73 20 70 6f 6c 69 63 79 20 69 73 20 69 6e 74 65 6e 64 65 64 20 74 6f 20 70 | ng:.This.policy.is.intended.to.p |
| 13d3e0 | 72 6f 76 69 64 65 20 61 20 6d 6f 72 65 20 62 61 6c 61 6e 63 65 64 20 64 69 73 74 72 69 62 75 74 | rovide.a.more.balanced.distribut |
| 13d400 | 69 6f 6e 20 6f 66 20 74 72 61 66 66 69 63 20 74 68 61 6e 20 6c 61 79 65 72 32 20 61 6c 6f 6e 65 | ion.of.traffic.than.layer2.alone |
| 13d420 | 2c 20 65 73 70 65 63 69 61 6c 6c 79 20 69 6e 20 65 6e 76 69 72 6f 6e 6d 65 6e 74 73 20 77 68 65 | ,.especially.in.environments.whe |
| 13d440 | 72 65 20 61 20 6c 61 79 65 72 33 20 67 61 74 65 77 61 79 20 64 65 76 69 63 65 20 69 73 20 72 65 | re.a.layer3.gateway.device.is.re |
| 13d460 | 71 75 69 72 65 64 20 74 6f 20 72 65 61 63 68 20 6d 6f 73 74 20 64 65 73 74 69 6e 61 74 69 6f 6e | quired.to.reach.most.destination |
| 13d480 | 73 2e 00 54 68 69 73 20 70 72 6f 6d 70 74 65 64 20 73 6f 6d 65 20 49 53 50 73 20 74 6f 20 64 65 | s..This.prompted.some.ISPs.to.de |
| 13d4a0 | 76 65 6c 6f 70 20 61 20 70 6f 6c 69 63 79 20 77 69 74 68 69 6e 20 74 68 65 20 3a 61 62 62 72 3a | velop.a.policy.within.the.:abbr: |
| 13d4c0 | 60 41 52 49 4e 20 28 41 6d 65 72 69 63 61 6e 20 52 65 67 69 73 74 72 79 20 66 6f 72 20 49 6e 74 | `ARIN.(American.Registry.for.Int |
| 13d4e0 | 65 72 6e 65 74 20 4e 75 6d 62 65 72 73 29 60 20 74 6f 20 61 6c 6c 6f 63 61 74 65 20 6e 65 77 20 | ernet.Numbers)`.to.allocate.new. |
| 13d500 | 70 72 69 76 61 74 65 20 61 64 64 72 65 73 73 20 73 70 61 63 65 20 66 6f 72 20 43 47 4e 73 2c 20 | private.address.space.for.CGNs,. |
| 13d520 | 62 75 74 20 41 52 49 4e 20 64 65 66 65 72 72 65 64 20 74 6f 20 74 68 65 20 49 45 54 46 20 62 65 | but.ARIN.deferred.to.the.IETF.be |
| 13d540 | 66 6f 72 65 20 69 6d 70 6c 65 6d 65 6e 74 69 6e 67 20 74 68 65 20 70 6f 6c 69 63 79 20 69 6e 64 | fore.implementing.the.policy.ind |
| 13d560 | 69 63 61 74 69 6e 67 20 74 68 61 74 20 74 68 65 20 6d 61 74 74 65 72 20 77 61 73 20 6e 6f 74 20 | icating.that.the.matter.was.not. |
| 13d580 | 61 20 74 79 70 69 63 61 6c 20 61 6c 6c 6f 63 61 74 69 6f 6e 20 69 73 73 75 65 20 62 75 74 20 61 | a.typical.allocation.issue.but.a |
| 13d5a0 | 20 72 65 73 65 72 76 61 74 69 6f 6e 20 6f 66 20 61 64 64 72 65 73 73 65 73 20 66 6f 72 20 74 65 | .reservation.of.addresses.for.te |
| 13d5c0 | 63 68 6e 69 63 61 6c 20 70 75 72 70 6f 73 65 73 20 28 70 65 72 20 3a 72 66 63 3a 60 32 38 36 30 | chnical.purposes.(per.:rfc:`2860 |
| 13d5e0 | 60 29 2e 00 54 68 69 73 20 72 65 71 75 69 72 65 64 20 73 65 74 74 69 6e 67 20 64 65 66 69 6e 65 | `)..This.required.setting.define |
| 13d600 | 73 20 74 68 65 20 61 63 74 69 6f 6e 20 6f 66 20 74 68 65 20 63 75 72 72 65 6e 74 20 72 75 6c 65 | s.the.action.of.the.current.rule |
| 13d620 | 2e 20 49 66 20 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 60 60 6a 75 6d 70 60 60 2c 20 | ..If.action.is.set.to.``jump``,. |
| 13d640 | 74 68 65 6e 20 60 60 6a 75 6d 70 2d 74 61 72 67 65 74 60 60 20 69 73 20 61 6c 73 6f 20 6e 65 65 | then.``jump-target``.is.also.nee |
| 13d660 | 64 65 64 2e 00 54 68 69 73 20 72 65 71 75 69 72 65 64 20 73 65 74 74 69 6e 67 20 64 65 66 69 6e | ded..This.required.setting.defin |
| 13d680 | 65 73 20 74 68 65 20 61 63 74 69 6f 6e 20 6f 66 20 74 68 65 20 63 75 72 72 65 6e 74 20 72 75 6c | es.the.action.of.the.current.rul |
| 13d6a0 | 65 2e 20 49 66 20 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 6a 75 6d 70 2c 20 74 68 65 | e..If.action.is.set.to.jump,.the |
| 13d6c0 | 6e 20 6a 75 6d 70 2d 74 61 72 67 65 74 20 69 73 20 61 6c 73 6f 20 6e 65 65 64 65 64 2e 00 54 68 | n.jump-target.is.also.needed..Th |
| 13d6e0 | 69 73 20 72 65 71 75 69 72 65 64 20 73 65 74 74 69 6e 67 20 64 65 66 69 6e 65 73 20 74 68 65 20 | is.required.setting.defines.the. |
| 13d700 | 61 63 74 69 6f 6e 20 6f 66 20 74 68 65 20 63 75 72 72 65 6e 74 20 72 75 6c 65 2e 20 49 66 20 74 | action.of.the.current.rule..If.t |
| 13d720 | 68 65 20 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 6a 75 6d 70 2c 20 74 68 65 6e 20 61 | he.action.is.set.to.jump,.then.a |
| 13d740 | 20 6a 75 6d 70 2d 74 61 72 67 65 74 20 69 73 20 61 6c 73 6f 20 6e 65 65 64 65 64 2e 00 54 68 69 | .jump-target.is.also.needed..Thi |
| 13d760 | 73 20 72 65 71 75 69 72 65 73 20 74 77 6f 20 66 69 6c 65 73 2c 20 6f 6e 65 20 74 6f 20 63 72 65 | s.requires.two.files,.one.to.cre |
| 13d780 | 61 74 65 20 74 68 65 20 64 65 76 69 63 65 20 28 58 58 58 2e 6e 65 74 64 65 76 29 20 61 6e 64 20 | ate.the.device.(XXX.netdev).and. |
| 13d7a0 | 6f 6e 65 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 6f 6e 20 | one.to.configure.the.network.on. |
| 13d7c0 | 74 68 65 20 64 65 76 69 63 65 20 28 58 58 58 2e 6e 65 74 77 6f 72 6b 29 00 54 68 69 73 20 72 65 | the.device.(XXX.network).This.re |
| 13d7e0 | 73 75 6c 74 73 20 69 6e 20 74 68 65 20 61 63 74 69 76 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f | sults.in.the.active.configuratio |
| 13d800 | 6e 3a 00 54 68 69 73 20 73 61 79 73 20 74 68 61 74 20 74 68 69 73 20 64 65 76 69 63 65 20 69 73 | n:.This.says.that.this.device.is |
| 13d820 | 20 74 68 65 20 6f 6e 6c 79 20 44 48 43 50 20 73 65 72 76 65 72 20 66 6f 72 20 74 68 69 73 20 6e | .the.only.DHCP.server.for.this.n |
| 13d840 | 65 74 77 6f 72 6b 2e 20 49 66 20 6f 74 68 65 72 20 64 65 76 69 63 65 73 20 61 72 65 20 74 72 79 | etwork..If.other.devices.are.try |
| 13d860 | 69 6e 67 20 74 6f 20 6f 66 66 65 72 20 44 48 43 50 20 6c 65 61 73 65 73 2c 20 74 68 69 73 20 6d | ing.to.offer.DHCP.leases,.this.m |
| 13d880 | 61 63 68 69 6e 65 20 77 69 6c 6c 20 73 65 6e 64 20 27 44 48 43 50 4e 41 4b 27 20 74 6f 20 61 6e | achine.will.send.'DHCPNAK'.to.an |
| 13d8a0 | 79 20 64 65 76 69 63 65 20 74 72 79 69 6e 67 20 74 6f 20 72 65 71 75 65 73 74 20 61 6e 20 49 50 | y.device.trying.to.request.an.IP |
| 13d8c0 | 20 61 64 64 72 65 73 73 20 74 68 61 74 20 69 73 20 6e 6f 74 20 76 61 6c 69 64 20 66 6f 72 20 74 | .address.that.is.not.valid.for.t |
| 13d8e0 | 68 69 73 20 6e 65 74 77 6f 72 6b 2e 00 54 68 69 73 20 73 65 63 74 69 6f 6e 20 64 65 73 63 72 69 | his.network..This.section.descri |
| 13d900 | 62 65 73 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 44 4e 53 20 6f 6e 20 74 68 65 20 73 79 73 74 65 | bes.configuring.DNS.on.the.syste |
| 13d920 | 6d 2c 20 6e 61 6d 65 6c 79 3a 00 54 68 69 73 20 73 65 63 74 69 6f 6e 20 64 65 73 63 72 69 62 65 | m,.namely:.This.section.describe |
| 13d940 | 73 20 74 68 65 20 73 79 73 74 65 6d 27 73 20 68 6f 73 74 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 | s.the.system's.host.information. |
| 13d960 | 61 6e 64 20 68 6f 77 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 6d 2c 20 69 74 20 63 6f | and.how.to.configure.them,.it.co |
| 13d980 | 76 65 72 73 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 74 6f 70 69 63 73 3a 00 54 68 69 73 20 | vers.the.following.topics:.This. |
| 13d9a0 | 73 65 63 74 69 6f 6e 20 6e 65 65 64 73 20 69 6d 70 72 6f 76 65 6d 65 6e 74 73 2c 20 65 78 61 6d | section.needs.improvements,.exam |
| 13d9c0 | 70 6c 65 73 20 61 6e 64 20 65 78 70 6c 61 6e 61 74 69 6f 6e 73 2e 00 54 68 69 73 20 73 65 74 20 | ples.and.explanations..This.set. |
| 13d9e0 | 74 68 65 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 6f 66 20 74 68 65 20 72 75 6c 65 2d 73 | the.default.action.of.the.rule-s |
| 13da00 | 65 74 20 69 66 20 6e 6f 20 72 75 6c 65 20 6d 61 74 63 68 65 64 20 61 20 70 61 63 6b 65 74 20 63 | et.if.no.rule.matched.a.packet.c |
| 13da20 | 72 69 74 65 72 69 61 2e 20 49 66 20 64 65 66 61 63 75 6c 74 2d 61 63 74 69 6f 6e 20 69 73 20 73 | riteria..If.defacult-action.is.s |
| 13da40 | 65 74 20 74 6f 20 60 60 6a 75 6d 70 60 60 2c 20 74 68 65 6e 20 60 60 64 65 66 61 75 6c 74 2d 6a | et.to.``jump``,.then.``default-j |
| 13da60 | 75 6d 70 2d 74 61 72 67 65 74 60 60 20 69 73 20 61 6c 73 6f 20 6e 65 65 64 65 64 2e 00 54 68 69 | ump-target``.is.also.needed..Thi |
| 13da80 | 73 20 73 65 74 20 74 68 65 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 6f 66 20 74 68 65 20 | s.set.the.default.action.of.the. |
| 13daa0 | 72 75 6c 65 2d 73 65 74 20 69 66 20 6e 6f 20 72 75 6c 65 20 6d 61 74 63 68 65 64 20 61 20 70 61 | rule-set.if.no.rule.matched.a.pa |
| 13dac0 | 63 6b 65 74 20 63 72 69 74 65 72 69 61 2e 20 49 66 20 64 65 66 61 63 75 6c 74 2d 61 63 74 69 6f | cket.criteria..If.defacult-actio |
| 13dae0 | 6e 20 69 73 20 73 65 74 20 74 6f 20 60 60 6a 75 6d 70 60 60 2c 20 74 68 65 6e 20 60 60 64 65 66 | n.is.set.to.``jump``,.then.``def |
| 13db00 | 61 75 6c 74 2d 6a 75 6d 70 2d 74 61 72 67 65 74 60 60 20 69 73 20 61 6c 73 6f 20 6e 65 65 64 65 | ault-jump-target``.is.also.neede |
| 13db20 | 64 2e 20 4e 6f 74 65 20 74 68 61 74 20 66 6f 72 20 62 61 73 65 20 63 68 61 69 6e 73 2c 20 64 65 | d..Note.that.for.base.chains,.de |
| 13db40 | 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 63 61 6e 20 6f 6e 6c 79 20 62 65 20 73 65 74 20 74 6f 20 | fault.action.can.only.be.set.to. |
| 13db60 | 60 60 61 63 63 65 70 74 60 60 20 6f 72 20 60 60 64 72 6f 70 60 60 2c 20 77 68 69 6c 65 20 6f 6e | ``accept``.or.``drop``,.while.on |
| 13db80 | 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 2c 20 6d 6f 72 65 20 61 63 74 69 6f 6e 73 20 61 72 65 20 | .custom.chain,.more.actions.are. |
| 13dba0 | 61 76 61 69 6c 61 62 6c 65 2e 00 54 68 69 73 20 73 65 74 20 74 68 65 20 64 65 66 61 75 6c 74 20 | available..This.set.the.default. |
| 13dbc0 | 61 63 74 69 6f 6e 20 6f 66 20 74 68 65 20 72 75 6c 65 2d 73 65 74 20 69 66 20 6e 6f 20 72 75 6c | action.of.the.rule-set.if.no.rul |
| 13dbe0 | 65 20 6d 61 74 63 68 65 64 20 61 20 70 61 63 6b 65 74 20 63 72 69 74 65 72 69 61 2e 20 49 66 20 | e.matched.a.packet.criteria..If. |
| 13dc00 | 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 60 60 6a 75 6d 70 60 | default-action.is.set.to.``jump` |
| 13dc20 | 60 2c 20 74 68 65 6e 20 60 60 64 65 66 61 75 6c 74 2d 6a 75 6d 70 2d 74 61 72 67 65 74 60 60 20 | `,.then.``default-jump-target``. |
| 13dc40 | 69 73 20 61 6c 73 6f 20 6e 65 65 64 65 64 2e 20 4e 6f 74 65 20 74 68 61 74 20 66 6f 72 20 62 61 | is.also.needed..Note.that.for.ba |
| 13dc60 | 73 65 20 63 68 61 69 6e 73 2c 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 63 61 6e 20 6f 6e | se.chains,.default.action.can.on |
| 13dc80 | 6c 79 20 62 65 20 73 65 74 20 74 6f 20 60 60 61 63 63 65 70 74 60 60 20 6f 72 20 60 60 64 72 6f | ly.be.set.to.``accept``.or.``dro |
| 13dca0 | 70 60 60 2c 20 77 68 69 6c 65 20 6f 6e 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 2c 20 6d 6f 72 65 | p``,.while.on.custom.chain,.more |
| 13dcc0 | 20 61 63 74 69 6f 6e 73 20 61 72 65 20 61 76 61 69 6c 61 62 6c 65 2e 00 54 68 69 73 20 73 65 74 | .actions.are.available..This.set |
| 13dce0 | 73 20 74 68 65 20 61 63 63 65 70 74 65 64 20 63 69 70 68 65 72 73 20 74 6f 20 75 73 65 20 77 68 | s.the.accepted.ciphers.to.use.wh |
| 13dd00 | 65 6e 20 76 65 72 73 69 6f 6e 20 3d 3e 20 32 2e 34 2e 30 20 61 6e 64 20 4e 43 50 20 69 73 20 65 | en.version.=>.2.4.0.and.NCP.is.e |
| 13dd20 | 6e 61 62 6c 65 64 20 28 77 68 69 63 68 20 69 73 20 74 68 65 20 64 65 66 61 75 6c 74 29 2e 20 44 | nabled.(which.is.the.default)..D |
| 13dd40 | 65 66 61 75 6c 74 20 4e 43 50 20 63 69 70 68 65 72 20 66 6f 72 20 76 65 72 73 69 6f 6e 73 20 3e | efault.NCP.cipher.for.versions.> |
| 13dd60 | 3d 20 32 2e 34 2e 30 20 69 73 20 61 65 73 32 35 36 67 63 6d 2e 20 54 68 65 20 66 69 72 73 74 20 | =.2.4.0.is.aes256gcm..The.first. |
| 13dd80 | 63 69 70 68 65 72 20 69 6e 20 74 68 69 73 20 6c 69 73 74 20 69 73 20 77 68 61 74 20 73 65 72 76 | cipher.in.this.list.is.what.serv |
| 13dda0 | 65 72 20 70 75 73 68 65 73 20 74 6f 20 63 6c 69 65 6e 74 73 2e 00 54 68 69 73 20 73 65 74 73 20 | er.pushes.to.clients..This.sets. |
| 13ddc0 | 74 68 65 20 63 69 70 68 65 72 20 77 68 65 6e 20 4e 43 50 20 28 4e 65 67 6f 74 69 61 62 6c 65 20 | the.cipher.when.NCP.(Negotiable. |
| 13dde0 | 43 72 79 70 74 6f 20 50 61 72 61 6d 65 74 65 72 73 29 20 69 73 20 64 69 73 61 62 6c 65 64 20 6f | Crypto.Parameters).is.disabled.o |
| 13de00 | 72 20 4f 70 65 6e 56 50 4e 20 76 65 72 73 69 6f 6e 20 3c 20 32 2e 34 2e 30 2e 00 54 68 69 73 20 | r.OpenVPN.version.<.2.4.0..This. |
| 13de20 | 73 65 74 73 20 74 68 65 20 63 69 70 68 65 72 20 77 68 65 6e 20 4e 43 50 20 28 4e 65 67 6f 74 69 | sets.the.cipher.when.NCP.(Negoti |
| 13de40 | 61 62 6c 65 20 43 72 79 70 74 6f 20 50 61 72 61 6d 65 74 65 72 73 29 20 69 73 20 64 69 73 61 62 | able.Crypto.Parameters).is.disab |
| 13de60 | 6c 65 64 20 6f 72 20 4f 70 65 6e 56 50 4e 20 76 65 72 73 69 6f 6e 20 3c 20 32 2e 34 2e 30 2e 20 | led.or.OpenVPN.version.<.2.4.0.. |
| 13de80 | 54 68 69 73 20 6f 70 74 69 6f 6e 20 73 68 6f 75 6c 64 20 6e 6f 74 20 62 65 20 75 73 65 64 20 61 | This.option.should.not.be.used.a |
| 13dea0 | 6e 79 20 6c 6f 6e 67 65 72 20 69 6e 20 54 4c 53 20 6d 6f 64 65 20 61 6e 64 20 73 74 69 6c 6c 20 | ny.longer.in.TLS.mode.and.still. |
| 13dec0 | 65 78 69 73 74 73 20 66 6f 72 20 63 6f 6d 70 61 74 69 62 69 6c 69 74 79 20 77 69 74 68 20 6f 6c | exists.for.compatibility.with.ol |
| 13dee0 | 64 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 73 2e 00 54 68 69 73 20 73 65 74 73 20 74 68 65 20 | d.configurations..This.sets.the. |
| 13df00 | 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 6f 66 20 74 68 65 20 72 75 6c 65 2d 73 65 74 20 69 | default.action.of.the.rule-set.i |
| 13df20 | 66 20 61 20 70 61 63 6b 65 74 20 64 6f 65 73 20 6e 6f 74 20 6d 61 74 63 68 20 61 6e 79 20 6f 66 | f.a.packet.does.not.match.any.of |
| 13df40 | 20 74 68 65 20 72 75 6c 65 73 20 69 6e 20 74 68 61 74 20 63 68 61 69 6e 2e 20 49 66 20 64 65 66 | .the.rules.in.that.chain..If.def |
| 13df60 | 61 75 6c 74 2d 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 60 60 6a 75 6d 70 60 60 2c 20 | ault-action.is.set.to.``jump``,. |
| 13df80 | 74 68 65 6e 20 60 60 64 65 66 61 75 6c 74 2d 6a 75 6d 70 2d 74 61 72 67 65 74 60 60 20 69 73 20 | then.``default-jump-target``.is. |
| 13dfa0 | 61 6c 73 6f 20 6e 65 65 64 65 64 2e 20 4e 6f 74 65 20 74 68 61 74 20 66 6f 72 20 62 61 73 65 20 | also.needed..Note.that.for.base. |
| 13dfc0 | 63 68 61 69 6e 73 2c 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 63 61 6e 20 6f 6e 6c 79 20 | chains,.default.action.can.only. |
| 13dfe0 | 62 65 20 73 65 74 20 74 6f 20 60 60 61 63 63 65 70 74 60 60 20 6f 72 20 60 60 64 72 6f 70 60 60 | be.set.to.``accept``.or.``drop`` |
| 13e000 | 2c 20 77 68 69 6c 65 20 6f 6e 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 73 20 6d 6f 72 65 20 61 63 | ,.while.on.custom.chains.more.ac |
| 13e020 | 74 69 6f 6e 73 20 61 72 65 20 61 76 61 69 6c 61 62 6c 65 2e 00 54 68 69 73 20 73 65 74 73 20 74 | tions.are.available..This.sets.t |
| 13e040 | 68 65 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 6f 66 20 74 68 65 20 72 75 6c 65 2d 73 65 | he.default.action.of.the.rule-se |
| 13e060 | 74 20 69 66 20 61 20 70 61 63 6b 65 74 20 64 6f 65 73 20 6e 6f 74 20 6d 61 74 63 68 20 74 68 65 | t.if.a.packet.does.not.match.the |
| 13e080 | 20 63 72 69 74 65 72 69 61 20 6f 66 20 61 6e 79 20 72 75 6c 65 2e 20 49 66 20 64 65 66 61 75 6c | .criteria.of.any.rule..If.defaul |
| 13e0a0 | 74 2d 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 60 60 6a 75 6d 70 60 60 2c 20 74 68 65 | t-action.is.set.to.``jump``,.the |
| 13e0c0 | 6e 20 60 60 64 65 66 61 75 6c 74 2d 6a 75 6d 70 2d 74 61 72 67 65 74 60 60 20 69 73 20 61 6c 73 | n.``default-jump-target``.is.als |
| 13e0e0 | 6f 20 6e 65 65 64 65 64 2e 20 4e 6f 74 65 20 74 68 61 74 20 66 6f 72 20 62 61 73 65 20 63 68 61 | o.needed..Note.that.for.base.cha |
| 13e100 | 69 6e 73 2c 20 74 68 65 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 63 61 6e 20 6f 6e 6c 79 | ins,.the.default.action.can.only |
| 13e120 | 20 62 65 20 73 65 74 20 74 6f 20 60 60 61 63 63 65 70 74 60 60 20 6f 72 20 60 60 64 72 6f 70 60 | .be.set.to.``accept``.or.``drop` |
| 13e140 | 60 2c 20 77 68 69 6c 65 20 6f 6e 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 73 2c 20 6d 6f 72 65 20 | `,.while.on.custom.chains,.more. |
| 13e160 | 61 63 74 69 6f 6e 73 20 61 72 65 20 61 76 61 69 6c 61 62 6c 65 2e 00 54 68 69 73 20 73 65 74 74 | actions.are.available..This.sett |
| 13e180 | 69 6e 67 20 63 6f 6e 66 69 67 75 72 65 73 20 53 70 61 63 69 61 6c 20 53 74 72 65 61 6d 20 61 6e | ing.configures.Spacial.Stream.an |
| 13e1a0 | 64 20 4d 6f 64 75 6c 61 74 69 6f 6e 20 43 6f 64 69 6e 67 20 53 63 68 65 6d 65 20 73 65 74 74 69 | d.Modulation.Coding.Scheme.setti |
| 13e1c0 | 6e 67 73 20 66 6f 72 20 48 45 20 6d 6f 64 65 20 28 48 45 2d 4d 43 53 29 2e 20 49 74 20 69 73 20 | ngs.for.HE.mode.(HE-MCS)..It.is. |
| 13e1e0 | 75 73 75 61 6c 6c 79 20 6e 6f 74 20 6e 65 65 64 65 64 20 74 6f 20 73 65 74 20 74 68 69 73 20 65 | usually.not.needed.to.set.this.e |
| 13e200 | 78 70 6c 69 63 69 74 6c 79 2c 20 62 75 74 20 69 74 20 6d 69 67 68 74 20 68 65 6c 70 20 77 69 74 | xplicitly,.but.it.might.help.wit |
| 13e220 | 68 20 73 6f 6d 65 20 57 69 46 69 20 61 64 61 70 74 65 72 73 2e 00 54 68 69 73 20 73 65 74 74 69 | h.some.WiFi.adapters..This.setti |
| 13e240 | 6e 67 20 64 65 66 61 75 6c 74 73 20 74 6f 20 31 35 30 30 20 61 6e 64 20 69 73 20 76 61 6c 69 64 | ng.defaults.to.1500.and.is.valid |
| 13e260 | 20 62 65 74 77 65 65 6e 20 31 30 20 61 6e 64 20 36 30 30 30 30 2e 00 54 68 69 73 20 73 65 74 74 | .between.10.and.60000..This.sett |
| 13e280 | 69 6e 67 20 65 6e 61 62 6c 65 20 6f 72 20 64 69 73 61 62 6c 65 20 74 68 65 20 72 65 73 70 6f 6e | ing.enable.or.disable.the.respon |
| 13e2a0 | 73 65 20 6f 66 20 69 63 6d 70 20 62 72 6f 61 64 63 61 73 74 20 6d 65 73 73 61 67 65 73 2e 20 54 | se.of.icmp.broadcast.messages..T |
| 13e2c0 | 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 79 73 74 65 6d 20 70 61 72 61 6d 65 74 65 72 20 77 69 | he.following.system.parameter.wi |
| 13e2e0 | 6c 6c 20 62 65 20 61 6c 74 65 72 65 64 3a 00 54 68 69 73 20 73 65 74 74 69 6e 67 20 65 6e 61 62 | ll.be.altered:.This.setting.enab |
| 13e300 | 6c 65 73 20 6f 72 20 64 69 73 61 62 6c 65 73 20 74 68 65 20 72 65 73 70 6f 6e 73 65 20 74 6f 20 | les.or.disables.the.response.to. |
| 13e320 | 69 63 6d 70 20 62 72 6f 61 64 63 61 73 74 20 6d 65 73 73 61 67 65 73 2e 20 54 68 65 20 66 6f 6c | icmp.broadcast.messages..The.fol |
| 13e340 | 6c 6f 77 69 6e 67 20 73 79 73 74 65 6d 20 70 61 72 61 6d 65 74 65 72 20 77 69 6c 6c 20 62 65 20 | lowing.system.parameter.will.be. |
| 13e360 | 61 6c 74 65 72 65 64 3a 00 54 68 69 73 20 73 65 74 74 69 6e 67 20 68 61 6e 64 6c 65 20 69 66 20 | altered:.This.setting.handle.if. |
| 13e380 | 56 79 4f 53 20 61 63 63 65 70 74 20 70 61 63 6b 65 74 73 20 77 69 74 68 20 61 20 73 6f 75 72 63 | VyOS.accept.packets.with.a.sourc |
| 13e3a0 | 65 20 72 6f 75 74 65 20 6f 70 74 69 6f 6e 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 79 | e.route.option..The.following.sy |
| 13e3c0 | 73 74 65 6d 20 70 61 72 61 6d 65 74 65 72 20 77 69 6c 6c 20 62 65 20 61 6c 74 65 72 65 64 3a 00 | stem.parameter.will.be.altered:. |
| 13e3e0 | 54 68 69 73 20 73 65 74 74 69 6e 67 20 68 61 6e 64 6c 65 73 20 69 66 20 56 79 4f 53 20 61 63 63 | This.setting.handles.if.VyOS.acc |
| 13e400 | 65 70 74 73 20 70 61 63 6b 65 74 73 20 77 69 74 68 20 61 20 73 6f 75 72 63 65 20 72 6f 75 74 65 | epts.packets.with.a.source.route |
| 13e420 | 20 6f 70 74 69 6f 6e 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 79 73 74 65 6d 20 70 61 | .option..The.following.system.pa |
| 13e440 | 72 61 6d 65 74 65 72 73 20 77 69 6c 6c 20 62 65 20 61 6c 74 65 72 65 64 3a 00 54 68 69 73 20 73 | rameters.will.be.altered:.This.s |
| 13e460 | 65 74 74 69 6e 67 2c 20 77 68 69 63 68 20 64 65 66 61 75 6c 74 73 20 74 6f 20 33 36 30 30 20 73 | etting,.which.defaults.to.3600.s |
| 13e480 | 65 63 6f 6e 64 73 2c 20 70 75 74 73 20 61 20 6d 61 78 69 6d 75 6d 20 6f 6e 20 74 68 65 20 61 6d | econds,.puts.a.maximum.on.the.am |
| 13e4a0 | 6f 75 6e 74 20 6f 66 20 74 69 6d 65 20 6e 65 67 61 74 69 76 65 20 65 6e 74 72 69 65 73 20 61 72 | ount.of.time.negative.entries.ar |
| 13e4c0 | 65 20 63 61 63 68 65 64 2e 00 54 68 69 73 20 73 65 74 75 70 20 77 69 6c 6c 20 6d 61 6b 65 20 74 | e.cached..This.setup.will.make.t |
| 13e4e0 | 68 65 20 56 52 52 50 20 70 72 6f 63 65 73 73 20 65 78 65 63 75 74 65 20 74 68 65 20 60 60 2f 63 | he.VRRP.process.execute.the.``/c |
| 13e500 | 6f 6e 66 69 67 2f 73 63 72 69 70 74 73 2f 76 72 72 70 2d 63 68 65 63 6b 2e 73 68 20 73 63 72 69 | onfig/scripts/vrrp-check.sh.scri |
| 13e520 | 70 74 60 60 20 65 76 65 72 79 20 36 30 20 73 65 63 6f 6e 64 73 2c 20 61 6e 64 20 74 72 61 6e 73 | pt``.every.60.seconds,.and.trans |
| 13e540 | 69 74 69 6f 6e 20 74 68 65 20 67 72 6f 75 70 20 74 6f 20 74 68 65 20 66 61 75 6c 74 20 73 74 61 | ition.the.group.to.the.fault.sta |
| 13e560 | 74 65 20 69 66 20 69 74 20 66 61 69 6c 73 20 28 69 2e 65 2e 20 65 78 69 74 73 20 77 69 74 68 20 | te.if.it.fails.(i.e..exits.with. |
| 13e580 | 6e 6f 6e 2d 7a 65 72 6f 20 73 74 61 74 75 73 29 20 74 68 72 65 65 20 74 69 6d 65 73 3a 00 54 68 | non-zero.status).three.times:.Th |
| 13e5a0 | 69 73 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 43 50 55 20 72 | is.specifies.the.number.of.CPU.r |
| 13e5c0 | 65 73 6f 75 72 63 65 73 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 20 63 61 6e 20 75 73 65 2e 00 | esources.the.container.can.use.. |
| 13e5e0 | 54 68 69 73 20 73 74 61 67 65 20 69 6e 63 6c 75 64 65 73 3a 00 54 68 69 73 20 73 74 61 74 65 6d | This.stage.includes:.This.statem |
| 13e600 | 65 6e 74 20 73 70 65 63 69 66 69 65 73 20 64 68 63 70 36 63 20 74 6f 20 6f 6e 6c 79 20 65 78 63 | ent.specifies.dhcp6c.to.only.exc |
| 13e620 | 68 61 6e 67 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 61 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f | hange.informational.configuratio |
| 13e640 | 6e 20 70 61 72 61 6d 65 74 65 72 73 20 77 69 74 68 20 73 65 72 76 65 72 73 2e 20 41 20 6c 69 73 | n.parameters.with.servers..A.lis |
| 13e660 | 74 20 6f 66 20 44 4e 53 20 73 65 72 76 65 72 20 61 64 64 72 65 73 73 65 73 20 69 73 20 61 6e 20 | t.of.DNS.server.addresses.is.an. |
| 13e680 | 65 78 61 6d 70 6c 65 20 6f 66 20 73 75 63 68 20 70 61 72 61 6d 65 74 65 72 73 2e 20 54 68 69 73 | example.of.such.parameters..This |
| 13e6a0 | 20 73 74 61 74 65 6d 65 6e 74 20 69 73 20 75 73 65 66 75 6c 20 77 68 65 6e 20 74 68 65 20 63 6c | .statement.is.useful.when.the.cl |
| 13e6c0 | 69 65 6e 74 20 64 6f 65 73 20 6e 6f 74 20 6e 65 65 64 20 73 74 61 74 65 66 75 6c 20 63 6f 6e 66 | ient.does.not.need.stateful.conf |
| 13e6e0 | 69 67 75 72 61 74 69 6f 6e 20 70 61 72 61 6d 65 74 65 72 73 20 73 75 63 68 20 61 73 20 49 50 76 | iguration.parameters.such.as.IPv |
| 13e700 | 36 20 61 64 64 72 65 73 73 65 73 20 6f 72 20 70 72 65 66 69 78 65 73 2e 00 54 68 69 73 20 73 75 | 6.addresses.or.prefixes..This.su |
| 13e720 | 70 70 6f 72 74 20 6d 61 79 20 62 65 20 65 6e 61 62 6c 65 64 20 61 64 6d 69 6e 69 73 74 72 61 74 | pport.may.be.enabled.administrat |
| 13e740 | 69 76 65 6c 79 20 28 61 6e 64 20 69 6e 64 65 66 69 6e 69 74 65 6c 79 29 20 77 69 74 68 20 74 68 | ively.(and.indefinitely).with.th |
| 13e760 | 65 20 3a 63 66 67 63 6d 64 3a 60 61 64 6d 69 6e 69 73 74 72 61 74 69 76 65 60 20 63 6f 6d 6d 61 | e.:cfgcmd:`administrative`.comma |
| 13e780 | 6e 64 2e 20 49 74 20 6d 61 79 20 61 6c 73 6f 20 62 65 20 65 6e 61 62 6c 65 64 20 63 6f 6e 64 69 | nd..It.may.also.be.enabled.condi |
| 13e7a0 | 74 69 6f 6e 61 6c 6c 79 2e 20 43 6f 6e 64 69 74 69 6f 6e 61 6c 20 65 6e 61 62 6c 69 6e 67 20 6f | tionally..Conditional.enabling.o |
| 13e7c0 | 66 20 6d 61 78 2d 6d 65 74 72 69 63 20 72 6f 75 74 65 72 2d 6c 73 61 73 20 63 61 6e 20 62 65 20 | f.max-metric.router-lsas.can.be. |
| 13e7e0 | 66 6f 72 20 61 20 70 65 72 69 6f 64 20 6f 66 20 73 65 63 6f 6e 64 73 20 61 66 74 65 72 20 73 74 | for.a.period.of.seconds.after.st |
| 13e800 | 61 72 74 75 70 20 77 69 74 68 20 74 68 65 20 3a 63 66 67 63 6d 64 3a 60 6f 6e 2d 73 74 61 72 74 | artup.with.the.:cfgcmd:`on-start |
| 13e820 | 75 70 20 3c 73 65 63 6f 6e 64 73 3e 60 20 63 6f 6d 6d 61 6e 64 20 61 6e 64 2f 6f 72 20 66 6f 72 | up.<seconds>`.command.and/or.for |
| 13e840 | 20 61 20 70 65 72 69 6f 64 20 6f 66 20 73 65 63 6f 6e 64 73 20 70 72 69 6f 72 20 74 6f 20 73 68 | .a.period.of.seconds.prior.to.sh |
| 13e860 | 75 74 64 6f 77 6e 20 77 69 74 68 20 74 68 65 20 3a 63 66 67 63 6d 64 3a 60 6f 6e 2d 73 68 75 74 | utdown.with.the.:cfgcmd:`on-shut |
| 13e880 | 64 6f 77 6e 20 3c 73 65 63 6f 6e 64 73 3e 60 20 63 6f 6d 6d 61 6e 64 2e 20 54 68 65 20 74 69 6d | down.<seconds>`.command..The.tim |
| 13e8a0 | 65 20 72 61 6e 67 65 20 69 73 20 35 20 74 6f 20 38 36 34 30 30 2e 00 54 68 69 73 20 74 65 63 68 | e.range.is.5.to.86400..This.tech |
| 13e8c0 | 6e 69 71 75 65 20 69 73 20 63 6f 6d 6d 6f 6e 6c 79 20 72 65 66 65 72 72 65 64 20 74 6f 20 61 73 | nique.is.commonly.referred.to.as |
| 13e8e0 | 20 4e 41 54 20 52 65 66 6c 65 63 74 69 6f 6e 20 6f 72 20 48 61 69 72 70 69 6e 20 4e 41 54 2e 00 | .NAT.Reflection.or.Hairpin.NAT.. |
| 13e900 | 54 68 69 73 20 74 65 63 68 6e 6f 6c 6f 67 79 20 69 73 20 6b 6e 6f 77 6e 20 62 79 20 64 69 66 66 | This.technology.is.known.by.diff |
| 13e920 | 65 72 65 6e 74 20 6e 61 6d 65 73 3a 00 54 68 69 73 20 74 68 65 20 73 69 6d 70 6c 65 73 74 20 71 | erent.names:.This.the.simplest.q |
| 13e940 | 75 65 75 65 20 70 6f 73 73 69 62 6c 65 20 79 6f 75 20 63 61 6e 20 61 70 70 6c 79 20 74 6f 20 79 | ueue.possible.you.can.apply.to.y |
| 13e960 | 6f 75 72 20 74 72 61 66 66 69 63 2e 20 54 72 61 66 66 69 63 20 6d 75 73 74 20 67 6f 20 74 68 72 | our.traffic..Traffic.must.go.thr |
| 13e980 | 6f 75 67 68 20 61 20 66 69 6e 69 74 65 20 71 75 65 75 65 20 62 65 66 6f 72 65 20 69 74 20 69 73 | ough.a.finite.queue.before.it.is |
| 13e9a0 | 20 61 63 74 75 61 6c 6c 79 20 73 65 6e 74 2e 20 59 6f 75 20 6d 75 73 74 20 64 65 66 69 6e 65 20 | .actually.sent..You.must.define. |
| 13e9c0 | 68 6f 77 20 6d 61 6e 79 20 70 61 63 6b 65 74 73 20 74 68 61 74 20 71 75 65 75 65 20 63 61 6e 20 | how.many.packets.that.queue.can. |
| 13e9e0 | 63 6f 6e 74 61 69 6e 2e 00 54 68 69 73 20 74 6f 70 6f 6c 6f 67 79 20 77 61 73 20 62 75 69 6c 74 | contain..This.topology.was.built |
| 13ea00 | 20 75 73 69 6e 67 20 47 4e 53 33 2e 00 54 68 69 73 20 77 69 6c 6c 20 61 64 64 20 74 68 65 20 66 | .using.GNS3..This.will.add.the.f |
| 13ea20 | 6f 6c 6c 6f 77 69 6e 67 20 6f 70 74 69 6f 6e 20 74 6f 20 74 68 65 20 4b 65 72 6e 65 6c 20 63 6f | ollowing.option.to.the.Kernel.co |
| 13ea40 | 6d 6d 61 6e 64 6c 69 6e 65 3a 00 54 68 69 73 20 77 69 6c 6c 20 61 64 64 20 74 68 65 20 66 6f 6c | mmandline:.This.will.add.the.fol |
| 13ea60 | 6c 6f 77 69 6e 67 20 74 77 6f 20 6f 70 74 69 6f 6e 73 20 74 6f 20 74 68 65 20 4b 65 72 6e 65 6c | lowing.two.options.to.the.Kernel |
| 13ea80 | 20 63 6f 6d 6d 61 6e 64 6c 69 6e 65 3a 00 54 68 69 73 20 77 69 6c 6c 20 62 65 20 74 68 65 20 6d | .commandline:.This.will.be.the.m |
| 13eaa0 | 6f 73 74 20 77 69 64 65 6c 79 20 75 73 65 64 20 69 6e 74 65 72 66 61 63 65 20 6f 6e 20 61 20 72 | ost.widely.used.interface.on.a.r |
| 13eac0 | 6f 75 74 65 72 20 63 61 72 72 79 69 6e 67 20 74 72 61 66 66 69 63 20 74 6f 20 74 68 65 20 72 65 | outer.carrying.traffic.to.the.re |
| 13eae0 | 61 6c 20 77 6f 72 6c 64 2e 00 54 68 69 73 20 77 69 6c 6c 20 63 6f 6e 66 69 67 75 72 65 20 61 20 | al.world..This.will.configure.a. |
| 13eb00 | 73 74 61 74 69 63 20 41 52 50 20 65 6e 74 72 79 20 61 6c 77 61 79 73 20 72 65 73 6f 6c 76 69 6e | static.ARP.entry.always.resolvin |
| 13eb20 | 67 20 60 3c 61 64 64 72 65 73 73 3e 60 20 74 6f 20 60 3c 6d 61 63 3e 60 20 66 6f 72 20 69 6e 74 | g.`<address>`.to.`<mac>`.for.int |
| 13eb40 | 65 72 66 61 63 65 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 2e 00 54 68 69 73 20 77 69 6c 6c 20 | erface.`<interface>`..This.will. |
| 13eb60 | 6d 61 74 63 68 20 54 43 50 20 74 72 61 66 66 69 63 20 77 69 74 68 20 73 6f 75 72 63 65 20 70 6f | match.TCP.traffic.with.source.po |
| 13eb80 | 72 74 20 38 30 2e 00 54 68 69 73 20 77 69 6c 6c 20 72 65 6e 64 65 72 20 74 68 65 20 66 6f 6c 6c | rt.80..This.will.render.the.foll |
| 13eba0 | 6f 77 69 6e 67 20 64 64 63 6c 69 65 6e 74 5f 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 65 6e | owing.ddclient_.configuration.en |
| 13ebc0 | 74 72 79 3a 00 54 68 69 73 20 77 69 6c 6c 20 73 68 6f 77 20 79 6f 75 20 61 20 62 61 73 69 63 20 | try:.This.will.show.you.a.basic. |
| 13ebe0 | 66 69 72 65 77 61 6c 6c 20 6f 76 65 72 76 69 65 77 00 54 68 69 73 20 77 69 6c 6c 20 73 68 6f 77 | firewall.overview.This.will.show |
| 13ec00 | 20 79 6f 75 20 61 20 62 61 73 69 63 20 66 69 72 65 77 61 6c 6c 20 6f 76 65 72 76 69 65 77 2c 20 | .you.a.basic.firewall.overview,. |
| 13ec20 | 66 6f 72 20 61 6c 6c 20 72 75 6c 65 2d 73 65 74 73 2c 20 61 6e 64 20 6e 6f 74 20 6f 6e 6c 79 20 | for.all.rule-sets,.and.not.only. |
| 13ec40 | 66 6f 72 20 69 70 76 34 00 54 68 69 73 20 77 69 6c 6c 20 73 68 6f 77 20 79 6f 75 20 61 20 62 61 | for.ipv4.This.will.show.you.a.ba |
| 13ec60 | 73 69 63 20 66 69 72 65 77 61 6c 6c 20 6f 76 65 72 76 69 65 77 2c 20 66 6f 72 20 61 6c 6c 20 72 | sic.firewall.overview,.for.all.r |
| 13ec80 | 75 6c 65 2d 73 65 74 73 2c 20 61 6e 64 20 6e 6f 74 20 6f 6e 6c 79 20 66 6f 72 20 69 70 76 36 00 | ule-sets,.and.not.only.for.ipv6. |
| 13eca0 | 54 68 69 73 20 77 69 6c 6c 20 73 68 6f 77 20 79 6f 75 20 61 20 62 61 73 69 63 20 66 69 72 65 77 | This.will.show.you.a.basic.firew |
| 13ecc0 | 61 6c 6c 20 6f 76 65 72 76 69 65 77 2c 20 66 6f 72 20 61 6c 6c 20 72 75 6c 65 73 65 74 2c 20 61 | all.overview,.for.all.ruleset,.a |
| 13ece0 | 6e 64 20 6e 6f 74 20 6f 6e 6c 79 20 66 6f 72 20 69 70 76 34 00 54 68 69 73 20 77 69 6c 6c 20 73 | nd.not.only.for.ipv4.This.will.s |
| 13ed00 | 68 6f 77 20 79 6f 75 20 61 20 62 61 73 69 63 20 73 75 6d 6d 61 72 79 20 6f 66 20 61 20 70 61 72 | how.you.a.basic.summary.of.a.par |
| 13ed20 | 74 69 63 75 6c 61 72 20 7a 6f 6e 65 2e 00 54 68 69 73 20 77 69 6c 6c 20 73 68 6f 77 20 79 6f 75 | ticular.zone..This.will.show.you |
| 13ed40 | 20 61 20 62 61 73 69 63 20 73 75 6d 6d 61 72 79 20 6f 66 20 74 68 65 20 7a 6f 6e 65 20 63 6f 6e | .a.basic.summary.of.the.zone.con |
| 13ed60 | 66 69 67 75 72 61 74 69 6f 6e 2e 00 54 68 69 73 20 77 69 6c 6c 20 73 68 6f 77 20 79 6f 75 20 61 | figuration..This.will.show.you.a |
| 13ed80 | 20 62 61 73 69 63 20 73 75 6d 6d 61 72 79 20 6f 66 20 7a 6f 6e 65 73 20 63 6f 6e 66 69 67 75 72 | .basic.summary.of.zones.configur |
| 13eda0 | 61 74 69 6f 6e 2e 00 54 68 69 73 20 77 69 6c 6c 20 73 68 6f 77 20 79 6f 75 20 61 20 72 75 6c 65 | ation..This.will.show.you.a.rule |
| 13edc0 | 2d 73 65 74 20 73 74 61 74 69 73 74 69 63 20 73 69 6e 63 65 20 74 68 65 20 6c 61 73 74 20 62 6f | -set.statistic.since.the.last.bo |
| 13ede0 | 6f 74 2e 00 54 68 69 73 20 77 69 6c 6c 20 73 68 6f 77 20 79 6f 75 20 61 20 73 74 61 74 69 73 74 | ot..This.will.show.you.a.statist |
| 13ee00 | 69 63 20 6f 66 20 61 6c 6c 20 72 75 6c 65 2d 73 65 74 73 20 73 69 6e 63 65 20 74 68 65 20 6c 61 | ic.of.all.rule-sets.since.the.la |
| 13ee20 | 73 74 20 62 6f 6f 74 2e 00 54 68 69 73 20 77 69 6c 6c 20 73 68 6f 77 20 79 6f 75 20 61 20 73 75 | st.boot..This.will.show.you.a.su |
| 13ee40 | 6d 6d 61 72 79 20 6f 66 20 72 75 6c 65 2d 73 65 74 73 20 61 6e 64 20 67 72 6f 75 70 73 00 54 68 | mmary.of.rule-sets.and.groups.Th |
| 13ee60 | 69 73 20 77 6f 72 6b 61 72 6f 75 6e 64 20 6c 65 74 73 20 79 6f 75 20 61 70 70 6c 79 20 61 20 73 | is.workaround.lets.you.apply.a.s |
| 13ee80 | 68 61 70 69 6e 67 20 70 6f 6c 69 63 79 20 74 6f 20 74 68 65 20 69 6e 67 72 65 73 73 20 74 72 61 | haping.policy.to.the.ingress.tra |
| 13eea0 | 66 66 69 63 20 62 79 20 66 69 72 73 74 20 72 65 64 69 72 65 63 74 69 6e 67 20 69 74 20 74 6f 20 | ffic.by.first.redirecting.it.to. |
| 13eec0 | 61 6e 20 69 6e 2d 62 65 74 77 65 65 6e 20 76 69 72 74 75 61 6c 20 69 6e 74 65 72 66 61 63 65 20 | an.in-between.virtual.interface. |
| 13eee0 | 28 60 49 6e 74 65 72 6d 65 64 69 61 74 65 20 46 75 6e 63 74 69 6f 6e 61 6c 20 42 6c 6f 63 6b 60 | (`Intermediate.Functional.Block` |
| 13ef00 | 5f 29 2e 20 54 68 65 72 65 2c 20 69 6e 20 74 68 61 74 20 76 69 72 74 75 61 6c 20 69 6e 74 65 72 | _)..There,.in.that.virtual.inter |
| 13ef20 | 66 61 63 65 2c 20 79 6f 75 20 77 69 6c 6c 20 62 65 20 61 62 6c 65 20 74 6f 20 61 70 70 6c 79 20 | face,.you.will.be.able.to.apply. |
| 13ef40 | 61 6e 79 20 6f 66 20 74 68 65 20 70 6f 6c 69 63 69 65 73 20 74 68 61 74 20 77 6f 72 6b 20 66 6f | any.of.the.policies.that.work.fo |
| 13ef60 | 72 20 6f 75 74 62 6f 75 6e 64 20 74 72 61 66 66 69 63 2c 20 66 6f 72 20 69 6e 73 74 61 6e 63 65 | r.outbound.traffic,.for.instance |
| 13ef80 | 2c 20 61 20 73 68 61 70 69 6e 67 20 6f 6e 65 2e 00 54 68 69 73 20 77 6f 75 6c 64 20 67 65 6e 65 | ,.a.shaping.one..This.would.gene |
| 13efa0 | 72 61 74 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e | rate.the.following.configuration |
| 13efc0 | 3a 00 54 68 72 65 65 20 73 69 67 6e 69 66 69 63 61 6e 74 20 76 65 72 73 69 6f 6e 73 20 6f 66 20 | :.Three.significant.versions.of. |
| 13efe0 | 53 4e 4d 50 20 68 61 76 65 20 62 65 65 6e 20 64 65 76 65 6c 6f 70 65 64 20 61 6e 64 20 64 65 70 | SNMP.have.been.developed.and.dep |
| 13f000 | 6c 6f 79 65 64 2e 20 53 4e 4d 50 76 31 20 69 73 20 74 68 65 20 6f 72 69 67 69 6e 61 6c 20 76 65 | loyed..SNMPv1.is.the.original.ve |
| 13f020 | 72 73 69 6f 6e 20 6f 66 20 74 68 65 20 70 72 6f 74 6f 63 6f 6c 2e 20 4d 6f 72 65 20 72 65 63 65 | rsion.of.the.protocol..More.rece |
| 13f040 | 6e 74 20 76 65 72 73 69 6f 6e 73 2c 20 53 4e 4d 50 76 32 63 20 61 6e 64 20 53 4e 4d 50 76 33 2c | nt.versions,.SNMPv2c.and.SNMPv3, |
| 13f060 | 20 66 65 61 74 75 72 65 20 69 6d 70 72 6f 76 65 6d 65 6e 74 73 20 69 6e 20 70 65 72 66 6f 72 6d | .feature.improvements.in.perform |
| 13f080 | 61 6e 63 65 2c 20 66 6c 65 78 69 62 69 6c 69 74 79 20 61 6e 64 20 73 65 63 75 72 69 74 79 2e 00 | ance,.flexibility.and.security.. |
| 13f0a0 | 54 69 6d 65 20 5a 6f 6e 65 00 54 69 6d 65 20 5a 6f 6e 65 20 73 65 74 74 69 6e 67 20 69 73 20 76 | Time.Zone.Time.Zone.setting.is.v |
| 13f0c0 | 65 72 79 20 69 6d 70 6f 72 74 61 6e 74 20 61 73 20 65 2e 67 20 61 6c 6c 20 79 6f 75 72 20 6c 6f | ery.important.as.e.g.all.your.lo |
| 13f0e0 | 67 66 69 6c 65 20 65 6e 74 72 69 65 73 20 77 69 6c 6c 20 62 65 20 62 61 73 65 64 20 6f 6e 20 74 | gfile.entries.will.be.based.on.t |
| 13f100 | 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 7a 6f 6e 65 2e 20 57 69 74 68 6f 75 74 20 70 72 6f 70 | he.configured.zone..Without.prop |
| 13f120 | 65 72 20 74 69 6d 65 20 7a 6f 6e 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 74 20 77 69 | er.time.zone.configuration.it.wi |
| 13f140 | 6c 6c 20 62 65 20 76 65 72 79 20 64 69 66 66 69 63 75 6c 74 20 74 6f 20 63 6f 6d 70 61 72 65 20 | ll.be.very.difficult.to.compare. |
| 13f160 | 6c 6f 67 66 69 6c 65 73 20 66 72 6f 6d 20 64 69 66 66 65 72 65 6e 74 20 73 79 73 74 65 6d 73 2e | logfiles.from.different.systems. |
| 13f180 | 00 54 69 6d 65 20 69 6e 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 20 62 65 74 77 65 65 6e 20 72 65 | .Time.in.milliseconds.between.re |
| 13f1a0 | 74 72 61 6e 73 6d 69 74 74 65 64 20 4e 65 69 67 68 62 6f 72 20 53 6f 6c 69 63 69 74 61 74 69 6f | transmitted.Neighbor.Solicitatio |
| 13f1c0 | 6e 20 6d 65 73 73 61 67 65 73 00 54 69 6d 65 20 69 6e 20 73 65 63 6f 6e 64 73 20 74 68 61 74 20 | n.messages.Time.in.seconds.that. |
| 13f1e0 | 74 68 65 20 70 72 65 66 69 78 20 77 69 6c 6c 20 72 65 6d 61 69 6e 20 70 72 65 66 65 72 72 65 64 | the.prefix.will.remain.preferred |
| 13f200 | 20 28 64 65 66 61 75 6c 74 20 34 20 68 6f 75 72 73 29 00 54 69 6d 65 20 69 6e 20 73 65 63 6f 6e | .(default.4.hours).Time.in.secon |
| 13f220 | 64 73 20 74 68 61 74 20 74 68 65 20 70 72 65 66 69 78 20 77 69 6c 6c 20 72 65 6d 61 69 6e 20 76 | ds.that.the.prefix.will.remain.v |
| 13f240 | 61 6c 69 64 20 28 64 65 66 61 75 6c 74 3a 20 33 30 20 64 61 79 73 29 00 54 69 6d 65 20 69 6e 20 | alid.(default:.30.days).Time.in. |
| 13f260 | 73 65 63 6f 6e 64 73 20 74 68 61 74 20 74 68 65 20 70 72 65 66 69 78 20 77 69 6c 6c 20 72 65 6d | seconds.that.the.prefix.will.rem |
| 13f280 | 61 69 6e 20 76 61 6c 69 64 20 28 64 65 66 61 75 6c 74 3a 20 36 35 35 32 38 20 73 65 63 6f 6e 64 | ain.valid.(default:.65528.second |
| 13f2a0 | 73 29 00 54 69 6d 65 20 69 73 20 69 6e 20 6d 69 6e 75 74 65 73 20 61 6e 64 20 64 65 66 61 75 6c | s).Time.is.in.minutes.and.defaul |
| 13f2c0 | 74 73 20 74 6f 20 36 30 2e 00 54 69 6d 65 20 74 6f 20 6d 61 74 63 68 20 74 68 65 20 64 65 66 69 | ts.to.60..Time.to.match.the.defi |
| 13f2e0 | 6e 65 64 20 72 75 6c 65 2e 00 54 69 6d 65 2c 20 69 6e 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 2c | ned.rule..Time,.in.milliseconds, |
| 13f300 | 20 74 68 61 74 20 61 20 6e 6f 64 65 20 61 73 73 75 6d 65 73 20 61 20 6e 65 69 67 68 62 6f 72 20 | .that.a.node.assumes.a.neighbor. |
| 13f320 | 69 73 20 72 65 61 63 68 61 62 6c 65 20 61 66 74 65 72 20 68 61 76 69 6e 67 20 72 65 63 65 69 76 | is.reachable.after.having.receiv |
| 13f340 | 65 64 20 61 20 72 65 61 63 68 61 62 69 6c 69 74 79 20 63 6f 6e 66 69 72 6d 61 74 69 6f 6e 00 54 | ed.a.reachability.confirmation.T |
| 13f360 | 69 6d 65 6f 75 74 20 63 61 6e 20 62 65 20 64 65 66 69 6e 65 64 20 75 73 69 6e 67 20 73 65 63 6f | imeout.can.be.defined.using.seco |
| 13f380 | 6e 64 73 2c 20 6d 69 6e 75 74 65 73 2c 20 68 6f 75 72 73 20 6f 72 20 64 61 79 73 3a 00 54 69 6d | nds,.minutes,.hours.or.days:.Tim |
| 13f3a0 | 65 6f 75 74 20 69 6e 20 73 65 63 6f 6e 64 73 00 54 69 6d 65 6f 75 74 20 69 6e 20 73 65 63 6f 6e | eout.in.seconds.Timeout.in.secon |
| 13f3c0 | 64 73 20 62 65 74 77 65 65 6e 20 68 65 61 6c 74 68 20 74 61 72 67 65 74 20 63 68 65 63 6b 73 2e | ds.between.health.target.checks. |
| 13f3e0 | 00 54 69 6d 65 6f 75 74 20 74 6f 20 77 61 69 74 20 72 65 70 6c 79 20 66 6f 72 20 49 6e 74 65 72 | .Timeout.to.wait.reply.for.Inter |
| 13f400 | 69 6d 2d 55 70 64 61 74 65 20 70 61 63 6b 65 74 73 2e 20 28 64 65 66 61 75 6c 74 20 33 20 73 65 | im-Update.packets..(default.3.se |
| 13f420 | 63 6f 6e 64 73 29 00 54 69 6d 65 6f 75 74 20 74 6f 20 77 61 69 74 20 72 65 73 70 6f 6e 73 65 20 | conds).Timeout.to.wait.response. |
| 13f440 | 66 72 6f 6d 20 73 65 72 76 65 72 20 28 73 65 63 6f 6e 64 73 29 00 54 69 6d 65 72 73 00 54 6f 20 | from.server.(seconds).Timers.To. |
| 13f460 | 61 63 74 69 76 61 74 65 20 74 68 65 20 56 4c 41 4e 20 61 77 61 72 65 20 62 72 69 64 67 65 2c 20 | activate.the.VLAN.aware.bridge,. |
| 13f480 | 79 6f 75 20 6d 75 73 74 20 61 63 74 69 76 61 74 65 20 74 68 69 73 20 73 65 74 74 69 6e 67 20 74 | you.must.activate.this.setting.t |
| 13f4a0 | 6f 20 75 73 65 20 56 4c 41 4e 20 73 65 74 74 69 6e 67 73 20 66 6f 72 20 74 68 65 20 62 72 69 64 | o.use.VLAN.settings.for.the.brid |
| 13f4c0 | 67 65 00 54 6f 20 61 6c 6c 6f 77 20 56 50 4e 2d 63 6c 69 65 6e 74 73 20 61 63 63 65 73 73 20 76 | ge.To.allow.VPN-clients.access.v |
| 13f4e0 | 69 61 20 79 6f 75 72 20 65 78 74 65 72 6e 61 6c 20 61 64 64 72 65 73 73 2c 20 61 20 4e 41 54 20 | ia.your.external.address,.a.NAT. |
| 13f500 | 72 75 6c 65 20 69 73 20 72 65 71 75 69 72 65 64 3a 00 54 6f 20 61 6c 6c 6f 77 20 6c 69 73 74 69 | rule.is.required:.To.allow.listi |
| 13f520 | 6e 67 20 61 64 64 69 74 69 6f 6e 61 6c 20 63 75 73 74 6f 6d 20 64 6f 6d 61 69 6e 2c 20 66 6f 72 | ng.additional.custom.domain,.for |
| 13f540 | 20 65 78 61 6d 70 6c 65 20 60 60 6f 70 65 6e 74 68 72 65 61 64 2e 74 68 72 65 61 64 2e 68 6f 6d | .example.``openthread.thread.hom |
| 13f560 | 65 2e 61 72 70 61 60 60 2c 20 73 6f 20 74 68 61 74 20 69 74 20 63 61 6e 20 72 65 66 6c 65 63 74 | e.arpa``,.so.that.it.can.reflect |
| 13f580 | 65 64 20 69 6e 20 61 64 64 69 74 69 6f 6e 20 74 6f 20 74 68 65 20 64 65 66 61 75 6c 74 20 60 60 | ed.in.addition.to.the.default.`` |
| 13f5a0 | 6c 6f 63 61 6c 60 60 2c 20 75 73 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 | local``,.use.the.following.comma |
| 13f5c0 | 6e 64 3a 00 54 6f 20 61 6c 6c 6f 77 20 6f 6e 6c 79 20 73 70 65 63 69 66 69 63 20 73 65 72 76 69 | nd:.To.allow.only.specific.servi |
| 13f5e0 | 63 65 73 2c 20 66 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 5f 61 69 72 70 6c 61 79 2e 5f 74 63 70 | ces,.for.example.``_airplay._tcp |
| 13f600 | 60 60 20 6f 72 20 60 60 5f 69 70 70 2e 5f 74 63 70 60 60 2c 20 28 69 6e 73 74 65 61 64 20 6f 66 | ``.or.``_ipp._tcp``,.(instead.of |
| 13f620 | 20 61 6c 6c 20 73 65 72 76 69 63 65 73 29 20 74 6f 20 62 65 20 72 65 2d 62 72 6f 61 64 63 61 73 | .all.services).to.be.re-broadcas |
| 13f640 | 74 65 64 2c 20 75 73 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 3a 00 | ted,.use.the.following.command:. |
| 13f660 | 54 6f 20 61 6c 6c 6f 77 20 74 72 61 66 66 69 63 20 74 6f 20 70 61 73 73 20 74 68 72 6f 75 67 68 | To.allow.traffic.to.pass.through |
| 13f680 | 20 74 6f 20 63 6c 69 65 6e 74 73 2c 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 61 64 64 20 74 68 65 | .to.clients,.you.need.to.add.the |
| 13f6a0 | 20 66 6f 6c 6c 6f 77 69 6e 67 20 72 75 6c 65 73 2e 20 28 69 66 20 79 6f 75 20 75 73 65 64 20 74 | .following.rules..(if.you.used.t |
| 13f6c0 | 68 65 20 64 65 66 61 75 6c 74 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 61 74 20 74 68 65 20 | he.default.configuration.at.the. |
| 13f6e0 | 74 6f 70 20 6f 66 20 74 68 69 73 20 70 61 67 65 29 00 54 6f 20 61 70 70 6c 79 20 74 68 69 73 20 | top.of.this.page).To.apply.this. |
| 13f700 | 70 6f 6c 69 63 79 20 74 6f 20 74 68 65 20 63 6f 72 72 65 63 74 20 69 6e 74 65 72 66 61 63 65 2c | policy.to.the.correct.interface, |
| 13f720 | 20 63 6f 6e 66 69 67 75 72 65 20 69 74 20 6f 6e 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 74 | .configure.it.on.the.interface.t |
| 13f740 | 68 65 20 69 6e 62 6f 75 6e 64 20 6c 6f 63 61 6c 20 68 6f 73 74 20 77 69 6c 6c 20 73 65 6e 64 20 | he.inbound.local.host.will.send. |
| 13f760 | 74 68 72 6f 75 67 68 20 74 6f 20 72 65 61 63 68 20 6f 75 72 20 64 65 73 74 69 6e 65 64 20 74 61 | through.to.reach.our.destined.ta |
| 13f780 | 72 67 65 74 20 68 6f 73 74 20 28 69 6e 20 6f 75 72 20 65 78 61 6d 70 6c 65 20 65 74 68 31 29 2e | rget.host.(in.our.example.eth1). |
| 13f7a0 | 00 54 6f 20 61 75 74 6f 20 75 70 64 61 74 65 20 74 68 65 20 62 6c 61 63 6b 6c 69 73 74 20 66 69 | .To.auto.update.the.blacklist.fi |
| 13f7c0 | 6c 65 73 00 54 6f 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 61 73 73 69 67 6e 20 74 68 65 20 | les.To.automatically.assign.the. |
| 13f7e0 | 63 6c 69 65 6e 74 20 61 6e 20 49 50 20 61 64 64 72 65 73 73 20 61 73 20 74 75 6e 6e 65 6c 20 65 | client.an.IP.address.as.tunnel.e |
| 13f800 | 6e 64 70 6f 69 6e 74 2c 20 61 20 63 6c 69 65 6e 74 20 49 50 20 70 6f 6f 6c 20 69 73 20 6e 65 65 | ndpoint,.a.client.IP.pool.is.nee |
| 13f820 | 64 65 64 2e 20 54 68 65 20 73 6f 75 72 63 65 20 63 61 6e 20 62 65 20 65 69 74 68 65 72 20 52 41 | ded..The.source.can.be.either.RA |
| 13f840 | 44 49 55 53 20 6f 72 20 61 20 6c 6f 63 61 6c 20 73 75 62 6e 65 74 20 6f 72 20 49 50 20 72 61 6e | DIUS.or.a.local.subnet.or.IP.ran |
| 13f860 | 67 65 20 64 65 66 69 6e 69 74 69 6f 6e 2e 00 54 6f 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 | ge.definition..To.automatically. |
| 13f880 | 61 73 73 69 67 6e 20 74 68 65 20 63 6c 69 65 6e 74 20 61 6e 20 49 50 20 61 64 64 72 65 73 73 20 | assign.the.client.an.IP.address. |
| 13f8a0 | 61 73 20 74 75 6e 6e 65 6c 20 65 6e 64 70 6f 69 6e 74 2c 20 61 20 63 6c 69 65 6e 74 20 49 50 20 | as.tunnel.endpoint,.a.client.IP. |
| 13f8c0 | 70 6f 6f 6c 20 69 73 20 6e 65 65 64 65 64 2e 20 54 68 65 20 73 6f 75 72 63 65 20 63 61 6e 20 62 | pool.is.needed..The.source.can.b |
| 13f8e0 | 65 20 65 69 74 68 65 72 20 52 41 44 49 55 53 20 6f 72 20 61 20 6e 61 6d 65 64 20 70 6f 6f 6c 2e | e.either.RADIUS.or.a.named.pool. |
| 13f900 | 20 54 68 65 72 65 20 69 73 20 70 6f 73 73 69 62 69 6c 69 74 79 20 74 6f 20 63 72 65 61 74 65 20 | .There.is.possibility.to.create. |
| 13f920 | 6d 75 6c 74 69 70 6c 65 20 6e 61 6d 65 64 20 70 6f 6f 6c 73 2e 20 45 61 63 68 20 6e 61 6d 65 64 | multiple.named.pools..Each.named |
| 13f940 | 20 70 6f 6f 6c 20 63 61 6e 20 69 6e 63 6c 75 64 65 20 6f 6e 6c 79 20 6f 6e 65 20 61 64 64 72 65 | .pool.can.include.only.one.addre |
| 13f960 | 73 73 20 72 61 6e 67 65 2e 20 54 6f 20 75 73 65 20 6d 75 6c 74 69 70 6c 65 20 61 64 64 72 65 73 | ss.range..To.use.multiple.addres |
| 13f980 | 73 20 72 61 6e 67 65 73 20 63 6f 6e 66 69 67 75 72 65 20 60 60 6e 65 78 74 2d 70 6f 6f 6c 60 60 | s.ranges.configure.``next-pool`` |
| 13f9a0 | 20 6f 70 74 69 6f 6e 2e 00 54 6f 20 62 65 20 75 73 65 64 20 6f 6e 6c 79 20 77 68 65 6e 20 60 60 | .option..To.be.used.only.when.`` |
| 13f9c0 | 61 63 74 69 6f 6e 60 60 20 69 73 20 73 65 74 20 74 6f 20 60 60 6a 75 6d 70 60 60 2e 20 55 73 65 | action``.is.set.to.``jump``..Use |
| 13f9e0 | 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 70 65 63 69 66 79 20 6a 75 6d 70 20 74 61 | .this.command.to.specify.jump.ta |
| 13fa00 | 72 67 65 74 2e 00 54 6f 20 62 65 20 75 73 65 64 20 6f 6e 6c 79 20 77 68 65 6e 20 60 60 64 65 66 | rget..To.be.used.only.when.``def |
| 13fa20 | 61 75 6c 74 2d 61 63 74 69 6f 6e 60 60 20 69 73 20 73 65 74 20 74 6f 20 60 60 6a 75 6d 70 60 60 | ault-action``.is.set.to.``jump`` |
| 13fa40 | 2e 20 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 70 65 63 69 66 79 20 6a 75 | ..Use.this.command.to.specify.ju |
| 13fa60 | 6d 70 20 74 61 72 67 65 74 20 66 6f 72 20 64 65 66 61 75 6c 74 20 72 75 6c 65 2e 00 54 6f 20 62 | mp.target.for.default.rule..To.b |
| 13fa80 | 65 20 75 73 65 64 20 6f 6e 6c 79 20 77 68 65 6e 20 60 60 64 65 66 61 75 6c 74 2d 61 63 74 69 6f | e.used.only.when.``default-actio |
| 13faa0 | 6e 60 60 20 69 73 20 73 65 74 20 74 6f 20 60 60 6a 75 6d 70 60 60 2e 20 55 73 65 20 74 68 69 73 | n``.is.set.to.``jump``..Use.this |
| 13fac0 | 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 70 65 63 69 66 79 20 74 68 65 20 6a 75 6d 70 20 74 61 72 | .command.to.specify.the.jump.tar |
| 13fae0 | 67 65 74 20 66 6f 72 20 74 68 65 20 64 65 66 61 75 6c 74 20 72 75 6c 65 2e 00 54 6f 20 62 65 20 | get.for.the.default.rule..To.be. |
| 13fb00 | 75 73 65 64 20 6f 6e 6c 79 20 77 68 65 6e 20 60 60 64 65 66 75 6c 74 2d 61 63 74 69 6f 6e 60 60 | used.only.when.``defult-action`` |
| 13fb20 | 20 69 73 20 73 65 74 20 74 6f 20 60 60 6a 75 6d 70 60 60 2e 20 55 73 65 20 74 68 69 73 20 63 6f | .is.set.to.``jump``..Use.this.co |
| 13fb40 | 6d 6d 61 6e 64 20 74 6f 20 73 70 65 63 69 66 79 20 6a 75 6d 70 20 74 61 72 67 65 74 20 66 6f 72 | mmand.to.specify.jump.target.for |
| 13fb60 | 20 64 65 66 61 75 6c 74 20 72 75 6c 65 2e 00 54 6f 20 62 65 20 75 73 65 64 20 6f 6e 6c 79 20 77 | .default.rule..To.be.used.only.w |
| 13fb80 | 68 65 6e 20 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 60 60 6a 75 6d 70 60 60 2e 20 55 | hen.action.is.set.to.``jump``..U |
| 13fba0 | 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 70 65 63 69 66 79 20 6a 75 6d 70 20 | se.this.command.to.specify.jump. |
| 13fbc0 | 74 61 72 67 65 74 2e 00 54 6f 20 62 65 20 75 73 65 64 20 6f 6e 6c 79 20 77 68 65 6e 20 61 63 74 | target..To.be.used.only.when.act |
| 13fbe0 | 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 60 60 6a 75 6d 70 60 60 2e 20 55 73 65 20 74 68 69 73 | ion.is.set.to.``jump``..Use.this |
| 13fc00 | 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 70 65 63 69 66 79 20 74 68 65 20 6a 75 6d 70 20 74 61 72 | .command.to.specify.the.jump.tar |
| 13fc20 | 67 65 74 2e 00 54 6f 20 62 65 20 75 73 65 64 20 6f 6e 6c 79 20 77 68 65 6e 20 61 63 74 69 6f 6e | get..To.be.used.only.when.action |
| 13fc40 | 20 69 73 20 73 65 74 20 74 6f 20 60 60 71 75 65 75 65 60 60 2e 20 55 73 65 20 74 68 69 73 20 63 | .is.set.to.``queue``..Use.this.c |
| 13fc60 | 6f 6d 6d 61 6e 64 20 74 6f 20 64 69 73 74 72 69 62 75 74 65 20 70 61 63 6b 65 74 73 20 62 65 74 | ommand.to.distribute.packets.bet |
| 13fc80 | 77 65 65 6e 20 73 65 76 65 72 61 6c 20 71 75 65 75 65 73 2e 00 54 6f 20 62 65 20 75 73 65 64 20 | ween.several.queues..To.be.used. |
| 13fca0 | 6f 6e 6c 79 20 77 68 65 6e 20 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 60 60 71 75 65 | only.when.action.is.set.to.``que |
| 13fcc0 | 75 65 60 60 2e 20 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 6c 65 74 20 70 61 | ue``..Use.this.command.to.let.pa |
| 13fce0 | 63 6b 65 74 20 67 6f 20 74 68 72 6f 75 67 68 20 66 69 72 65 77 61 6c 6c 20 77 68 65 6e 20 6e 6f | cket.go.through.firewall.when.no |
| 13fd00 | 20 75 73 65 72 73 70 61 63 65 20 73 6f 66 74 77 61 72 65 20 69 73 20 63 6f 6e 6e 65 63 74 65 64 | .userspace.software.is.connected |
| 13fd20 | 20 74 6f 20 74 68 65 20 71 75 65 75 65 2e 00 54 6f 20 62 65 20 75 73 65 64 20 6f 6e 6c 79 20 77 | .to.the.queue..To.be.used.only.w |
| 13fd40 | 68 65 6e 20 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 60 60 71 75 65 75 65 60 60 2e 20 | hen.action.is.set.to.``queue``.. |
| 13fd60 | 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 6c 65 74 20 74 68 65 20 70 61 63 6b | Use.this.command.to.let.the.pack |
| 13fd80 | 65 74 20 67 6f 20 74 68 72 6f 75 67 68 20 66 69 72 65 77 61 6c 6c 20 77 68 65 6e 20 6e 6f 20 75 | et.go.through.firewall.when.no.u |
| 13fda0 | 73 65 72 73 70 61 63 65 20 73 6f 66 74 77 61 72 65 20 69 73 20 63 6f 6e 6e 65 63 74 65 64 20 74 | serspace.software.is.connected.t |
| 13fdc0 | 6f 20 74 68 65 20 71 75 65 75 65 2e 00 54 6f 20 62 65 20 75 73 65 64 20 6f 6e 6c 79 20 77 68 65 | o.the.queue..To.be.used.only.whe |
| 13fde0 | 6e 20 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 60 60 71 75 65 75 65 60 60 2e 20 55 73 | n.action.is.set.to.``queue``..Us |
| 13fe00 | 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 70 65 63 69 66 79 20 71 75 65 75 65 20 | e.this.command.to.specify.queue. |
| 13fe20 | 74 61 72 67 65 74 20 74 6f 20 75 73 65 2e 20 51 75 65 75 65 20 72 61 6e 67 65 20 69 73 20 61 6c | target.to.use..Queue.range.is.al |
| 13fe40 | 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 00 54 6f 20 62 65 20 75 73 65 64 20 6f 6e 6c 79 20 77 68 | so.supported..To.be.used.only.wh |
| 13fe60 | 65 6e 20 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 60 60 71 75 65 75 65 60 60 2e 20 55 | en.action.is.set.to.``queue``..U |
| 13fe80 | 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 70 65 63 69 66 79 20 74 68 65 20 71 | se.this.command.to.specify.the.q |
| 13fea0 | 75 65 75 65 20 74 61 72 67 65 74 20 74 6f 20 75 73 65 2e 20 51 75 65 75 65 20 72 61 6e 67 65 20 | ueue.target.to.use..Queue.range. |
| 13fec0 | 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 00 54 6f 20 62 65 20 75 73 65 64 20 6f 6e | is.also.supported..To.be.used.on |
| 13fee0 | 6c 79 20 77 68 65 6e 20 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 6a 75 6d 70 2e 20 55 | ly.when.action.is.set.to.jump..U |
| 13ff00 | 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 70 65 63 69 66 79 20 6a 75 6d 70 20 | se.this.command.to.specify.jump. |
| 13ff20 | 74 61 72 67 65 74 2e 00 54 6f 20 62 79 70 61 73 73 20 74 68 65 20 70 72 6f 78 79 20 66 6f 72 20 | target..To.bypass.the.proxy.for. |
| 13ff40 | 65 76 65 72 79 20 72 65 71 75 65 73 74 20 74 68 61 74 20 69 73 20 63 6f 6d 69 6e 67 20 66 72 6f | every.request.that.is.coming.fro |
| 13ff60 | 6d 20 61 20 73 70 65 63 69 66 69 63 20 73 6f 75 72 63 65 3a 00 54 6f 20 62 79 70 61 73 73 20 74 | m.a.specific.source:.To.bypass.t |
| 13ff80 | 68 65 20 70 72 6f 78 79 20 66 6f 72 20 65 76 65 72 79 20 72 65 71 75 65 73 74 20 74 68 61 74 20 | he.proxy.for.every.request.that. |
| 13ffa0 | 69 73 20 64 69 72 65 63 74 65 64 20 74 6f 20 61 20 73 70 65 63 69 66 69 63 20 64 65 73 74 69 6e | is.directed.to.a.specific.destin |
| 13ffc0 | 61 74 69 6f 6e 3a 00 54 6f 20 63 6f 6e 66 69 67 75 72 65 20 49 50 76 36 20 61 73 73 69 67 6e 6d | ation:.To.configure.IPv6.assignm |
| 13ffe0 | 65 6e 74 73 20 66 6f 72 20 63 6c 69 65 6e 74 73 2c 20 74 77 6f 20 6f 70 74 69 6f 6e 73 20 6e 65 | ents.for.clients,.two.options.ne |
| 140000 | 65 64 20 74 6f 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 2e 20 41 20 67 6c 6f 62 61 6c 20 70 72 | ed.to.be.configured..A.global.pr |
| 140020 | 65 66 69 78 20 77 68 69 63 68 20 69 73 20 74 65 72 6d 69 6e 61 74 65 64 20 6f 6e 20 74 68 65 20 | efix.which.is.terminated.on.the. |
| 140040 | 63 6c 69 65 6e 74 73 20 63 70 65 20 61 6e 64 20 61 20 64 65 6c 65 67 61 74 65 64 20 70 72 65 66 | clients.cpe.and.a.delegated.pref |
| 140060 | 69 78 2c 20 74 68 65 20 63 6c 69 65 6e 74 20 63 61 6e 20 75 73 65 20 66 6f 72 20 64 65 76 69 63 | ix,.the.client.can.use.for.devic |
| 140080 | 65 73 20 72 6f 75 74 65 64 20 76 69 61 20 74 68 65 20 63 6c 69 65 6e 74 73 20 63 70 65 2e 00 54 | es.routed.via.the.clients.cpe..T |
| 1400a0 | 6f 20 63 6f 6e 66 69 67 75 72 65 20 56 79 4f 53 20 77 69 74 68 20 74 68 65 20 3a 64 6f 63 3a 60 | o.configure.VyOS.with.the.:doc:` |
| 1400c0 | 6c 65 67 61 63 79 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 3c 2f | legacy.firewall.configuration.</ |
| 1400e0 | 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 66 69 72 65 77 61 6c 6c 2f 67 65 6e 65 72 61 6c 2d 6c | configuration/firewall/general-l |
| 140100 | 65 67 61 63 79 3e 60 00 54 6f 20 63 6f 6e 66 69 67 75 72 65 20 56 79 4f 53 20 77 69 74 68 20 74 | egacy>`.To.configure.VyOS.with.t |
| 140120 | 68 65 20 3a 64 6f 63 3a 60 7a 6f 6e 65 2d 62 61 73 65 64 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e | he.:doc:`zone-based.firewall.con |
| 140140 | 66 69 67 75 72 61 74 69 6f 6e 20 3c 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 66 69 72 65 77 | figuration.</configuration/firew |
| 140160 | 61 6c 6c 2f 7a 6f 6e 65 3e 60 00 54 6f 20 63 6f 6e 66 69 67 75 72 65 20 56 79 4f 53 20 77 69 74 | all/zone>`.To.configure.VyOS.wit |
| 140180 | 68 20 74 68 65 20 6e 65 77 20 3a 64 6f 63 3a 60 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 | h.the.new.:doc:`firewall.configu |
| 1401a0 | 72 61 74 69 6f 6e 20 3c 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 66 69 72 65 77 61 6c 6c 2f | ration.</configuration/firewall/ |
| 1401c0 | 67 65 6e 65 72 61 6c 3e 60 00 54 6f 20 63 6f 6e 66 69 67 75 72 65 20 62 6c 6f 63 6b 69 6e 67 20 | general>`.To.configure.blocking. |
| 1401e0 | 61 64 64 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 74 6f 20 74 68 65 20 63 6f 6e 66 69 67 75 | add.the.following.to.the.configu |
| 140200 | 72 61 74 69 6f 6e 00 54 6f 20 63 6f 6e 66 69 67 75 72 65 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 | ration.To.configure.site-to-site |
| 140220 | 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 61 64 64 20 70 65 65 72 | .connection.you.need.to.add.peer |
| 140240 | 73 20 77 69 74 68 20 74 68 65 20 60 60 73 65 74 20 76 70 6e 20 69 70 73 65 63 20 73 69 74 65 2d | s.with.the.``set.vpn.ipsec.site- |
| 140260 | 74 6f 2d 73 69 74 65 20 70 65 65 72 20 3c 6e 61 6d 65 3e 60 60 20 63 6f 6d 6d 61 6e 64 2e 00 54 | to-site.peer.<name>``.command..T |
| 140280 | 6f 20 63 6f 6e 66 69 67 75 72 65 20 73 79 73 6c 6f 67 2c 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 | o.configure.syslog,.you.need.to. |
| 1402a0 | 73 77 69 74 63 68 20 69 6e 74 6f 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d 6f 64 65 2e 00 | switch.into.configuration.mode.. |
| 1402c0 | 54 6f 20 63 6f 6e 66 69 67 75 72 65 20 79 6f 75 72 20 4c 43 44 20 64 69 73 70 6c 61 79 20 79 6f | To.configure.your.LCD.display.yo |
| 1402e0 | 75 20 6d 75 73 74 20 66 69 72 73 74 20 69 64 65 6e 74 69 66 79 20 74 68 65 20 75 73 65 64 20 68 | u.must.first.identify.the.used.h |
| 140300 | 61 72 64 77 61 72 65 2c 20 61 6e 64 20 63 6f 6e 6e 65 63 74 69 76 69 74 79 20 6f 66 20 74 68 65 | ardware,.and.connectivity.of.the |
| 140320 | 20 64 69 73 70 6c 61 79 20 74 6f 20 79 6f 75 72 20 73 79 73 74 65 6d 2e 20 54 68 69 73 20 63 61 | .display.to.your.system..This.ca |
| 140340 | 6e 20 62 65 20 61 6e 79 20 73 65 72 69 61 6c 20 70 6f 72 74 20 28 60 74 74 79 53 78 78 60 29 20 | n.be.any.serial.port.(`ttySxx`). |
| 140360 | 6f 72 20 73 65 72 69 61 6c 20 76 69 61 20 55 53 42 20 6f 72 20 65 76 65 6e 20 6f 6c 64 20 70 61 | or.serial.via.USB.or.even.old.pa |
| 140380 | 72 61 6c 6c 65 6c 20 70 6f 72 74 20 69 6e 74 65 72 66 61 63 65 73 2e 00 54 6f 20 63 72 65 61 74 | rallel.port.interfaces..To.creat |
| 1403a0 | 65 20 56 4c 41 4e 73 20 70 65 72 20 75 73 65 72 20 64 75 72 69 6e 67 20 72 75 6e 74 69 6d 65 2c | e.VLANs.per.user.during.runtime, |
| 1403c0 | 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 65 74 74 69 6e 67 73 20 61 72 65 20 72 65 71 75 | .the.following.settings.are.requ |
| 1403e0 | 69 72 65 64 20 6f 6e 20 61 20 70 65 72 20 69 6e 74 65 72 66 61 63 65 20 62 61 73 69 73 2e 20 56 | ired.on.a.per.interface.basis..V |
| 140400 | 4c 41 4e 20 49 44 20 61 6e 64 20 56 4c 41 4e 20 72 61 6e 67 65 20 63 61 6e 20 62 65 20 70 72 65 | LAN.ID.and.VLAN.range.can.be.pre |
| 140420 | 73 65 6e 74 20 69 6e 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 61 74 20 74 68 65 | sent.in.the.configuration.at.the |
| 140440 | 20 73 61 6d 65 20 74 69 6d 65 2e 00 54 6f 20 63 72 65 61 74 65 20 61 20 6e 65 77 20 6c 69 6e 65 | .same.time..To.create.a.new.line |
| 140460 | 20 69 6e 20 79 6f 75 72 20 6c 6f 67 69 6e 20 6d 65 73 73 61 67 65 20 79 6f 75 20 6e 65 65 64 20 | .in.your.login.message.you.need. |
| 140480 | 74 6f 20 65 73 63 61 70 65 20 74 68 65 20 6e 65 77 20 6c 69 6e 65 20 63 68 61 72 61 63 74 65 72 | to.escape.the.new.line.character |
| 1404a0 | 20 62 79 20 75 73 69 6e 67 20 60 60 5c 5c 6e 60 60 2e 00 54 6f 20 63 72 65 61 74 65 20 6d 6f 72 | .by.using.``\\n``..To.create.mor |
| 1404c0 | 65 20 74 68 61 6e 20 6f 6e 65 20 74 75 6e 6e 65 6c 2c 20 75 73 65 20 64 69 73 74 69 6e 63 74 20 | e.than.one.tunnel,.use.distinct. |
| 1404e0 | 55 44 50 20 70 6f 72 74 73 2e 00 54 6f 20 63 72 65 61 74 65 20 72 6f 75 74 69 6e 67 20 74 61 62 | UDP.ports..To.create.routing.tab |
| 140500 | 6c 65 20 31 30 30 20 61 6e 64 20 61 64 64 20 61 20 6e 65 77 20 64 65 66 61 75 6c 74 20 67 61 74 | le.100.and.add.a.new.default.gat |
| 140520 | 65 77 61 79 20 74 6f 20 62 65 20 75 73 65 64 20 62 79 20 74 72 61 66 66 69 63 20 6d 61 74 63 68 | eway.to.be.used.by.traffic.match |
| 140540 | 69 6e 67 20 6f 75 72 20 72 6f 75 74 65 20 70 6f 6c 69 63 79 3a 00 54 6f 20 64 65 66 69 6e 65 20 | ing.our.route.policy:.To.define. |
| 140560 | 61 20 7a 6f 6e 65 20 73 65 74 75 70 20 65 69 74 68 65 72 20 6f 6e 65 20 77 69 74 68 20 69 6e 74 | a.zone.setup.either.one.with.int |
| 140580 | 65 72 66 61 63 65 73 20 6f 72 20 61 20 6c 6f 63 61 6c 20 7a 6f 6e 65 2e 00 54 6f 20 64 69 73 61 | erfaces.or.a.local.zone..To.disa |
| 1405a0 | 62 6c 65 20 61 64 76 65 72 74 69 73 65 6d 65 6e 74 73 20 77 69 74 68 6f 75 74 20 64 65 6c 65 74 | ble.advertisements.without.delet |
| 1405c0 | 69 6e 67 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 00 54 6f 20 64 69 73 70 6c 61 | ing.the.configuration:.To.displa |
| 1405e0 | 79 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 4f 54 50 20 75 73 65 72 20 6b 65 79 2c 20 75 | y.the.configured.OTP.user.key,.u |
| 140600 | 73 65 20 74 68 65 20 63 6f 6d 6d 61 6e 64 3a 00 54 6f 20 64 69 73 70 6c 61 79 20 74 68 65 20 63 | se.the.command:.To.display.the.c |
| 140620 | 6f 6e 66 69 67 75 72 65 64 20 4f 54 50 20 75 73 65 72 20 73 65 74 74 69 6e 67 73 2c 20 75 73 65 | onfigured.OTP.user.settings,.use |
| 140640 | 20 74 68 65 20 63 6f 6d 6d 61 6e 64 3a 00 54 6f 20 65 6e 61 62 6c 65 20 4d 4c 44 20 72 65 70 6f | .the.command:.To.enable.MLD.repo |
| 140660 | 72 74 73 20 61 6e 64 20 71 75 65 72 79 20 6f 6e 20 69 6e 74 65 72 66 61 63 65 73 20 60 65 74 68 | rts.and.query.on.interfaces.`eth |
| 140680 | 30 60 20 61 6e 64 20 60 65 74 68 31 60 3a 00 54 6f 20 65 6e 61 62 6c 65 20 52 41 44 49 55 53 20 | 0`.and.`eth1`:.To.enable.RADIUS. |
| 1406a0 | 62 61 73 65 64 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2c 20 74 68 65 20 61 75 74 68 65 6e | based.authentication,.the.authen |
| 1406c0 | 74 69 63 61 74 69 6f 6e 20 6d 6f 64 65 20 6e 65 65 64 73 20 74 6f 20 62 65 20 63 68 61 6e 67 65 | tication.mode.needs.to.be.change |
| 1406e0 | 64 20 77 69 74 68 69 6e 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 20 50 72 65 76 | d.within.the.configuration..Prev |
| 140700 | 69 6f 75 73 20 73 65 74 74 69 6e 67 73 20 6c 69 6b 65 20 74 68 65 20 6c 6f 63 61 6c 20 75 73 65 | ious.settings.like.the.local.use |
| 140720 | 72 73 20 73 74 69 6c 6c 20 65 78 69 73 74 20 77 69 74 68 69 6e 20 74 68 65 20 63 6f 6e 66 69 67 | rs.still.exist.within.the.config |
| 140740 | 75 72 61 74 69 6f 6e 2c 20 68 6f 77 65 76 65 72 20 74 68 65 79 20 61 72 65 20 6e 6f 74 20 75 73 | uration,.however.they.are.not.us |
| 140760 | 65 64 20 69 66 20 74 68 65 20 6d 6f 64 65 20 68 61 73 20 62 65 65 6e 20 63 68 61 6e 67 65 64 20 | ed.if.the.mode.has.been.changed. |
| 140780 | 66 72 6f 6d 20 6c 6f 63 61 6c 20 74 6f 20 72 61 64 69 75 73 2e 20 4f 6e 63 65 20 63 68 61 6e 67 | from.local.to.radius..Once.chang |
| 1407a0 | 65 64 20 62 61 63 6b 20 74 6f 20 6c 6f 63 61 6c 2c 20 69 74 20 77 69 6c 6c 20 75 73 65 20 61 6c | ed.back.to.local,.it.will.use.al |
| 1407c0 | 6c 20 6c 6f 63 61 6c 20 61 63 63 6f 75 6e 74 73 20 61 67 61 69 6e 2e 00 54 6f 20 65 6e 61 62 6c | l.local.accounts.again..To.enabl |
| 1407e0 | 65 20 52 41 44 49 55 53 20 62 61 73 65 64 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2c 20 74 | e.RADIUS.based.authentication,.t |
| 140800 | 68 65 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6d 6f 64 65 20 6e 65 65 64 73 20 74 6f 20 | he.authentication.mode.needs.to. |
| 140820 | 62 65 20 63 68 61 6e 67 65 64 20 77 69 74 68 69 6e 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 | be.changed.within.the.configurat |
| 140840 | 69 6f 6e 2e 20 50 72 65 76 69 6f 75 73 20 73 65 74 74 69 6e 67 73 20 6c 69 6b 65 20 74 68 65 20 | ion..Previous.settings.like.the. |
| 140860 | 6c 6f 63 61 6c 20 75 73 65 72 73 2c 20 73 74 69 6c 6c 20 65 78 69 73 74 73 20 77 69 74 68 69 6e | local.users,.still.exists.within |
| 140880 | 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2c 20 68 6f 77 65 76 65 72 20 74 68 65 79 | .the.configuration,.however.they |
| 1408a0 | 20 61 72 65 20 6e 6f 74 20 75 73 65 64 20 69 66 20 74 68 65 20 6d 6f 64 65 20 68 61 73 20 62 65 | .are.not.used.if.the.mode.has.be |
| 1408c0 | 65 6e 20 63 68 61 6e 67 65 64 20 66 72 6f 6d 20 6c 6f 63 61 6c 20 74 6f 20 72 61 64 69 75 73 2e | en.changed.from.local.to.radius. |
| 1408e0 | 20 4f 6e 63 65 20 63 68 61 6e 67 65 64 20 62 61 63 6b 20 74 6f 20 6c 6f 63 61 6c 2c 20 69 74 20 | .Once.changed.back.to.local,.it. |
| 140900 | 77 69 6c 6c 20 75 73 65 20 61 6c 6c 20 6c 6f 63 61 6c 20 61 63 63 6f 75 6e 74 73 20 61 67 61 69 | will.use.all.local.accounts.agai |
| 140920 | 6e 2e 00 54 6f 20 65 6e 61 62 6c 65 20 62 61 6e 64 77 69 64 74 68 20 73 68 61 70 69 6e 67 20 76 | n..To.enable.bandwidth.shaping.v |
| 140940 | 69 61 20 52 41 44 49 55 53 2c 20 74 68 65 20 6f 70 74 69 6f 6e 20 72 61 74 65 2d 6c 69 6d 69 74 | ia.RADIUS,.the.option.rate-limit |
| 140960 | 20 6e 65 65 64 73 20 74 6f 20 62 65 20 65 6e 61 62 6c 65 64 2e 00 54 6f 20 65 6e 61 62 6c 65 20 | .needs.to.be.enabled..To.enable. |
| 140980 | 64 65 62 75 67 20 6d 65 73 73 61 67 65 73 2e 20 41 76 61 69 6c 61 62 6c 65 20 76 69 61 20 3a 6f | debug.messages..Available.via.:o |
| 1409a0 | 70 63 6d 64 3a 60 73 68 6f 77 20 6c 6f 67 60 20 6f 72 20 3a 6f 70 63 6d 64 3a 60 6d 6f 6e 69 74 | pcmd:`show.log`.or.:opcmd:`monit |
| 1409c0 | 6f 72 20 6c 6f 67 60 00 54 6f 20 65 6e 61 62 6c 65 20 6d 44 4e 53 20 72 65 70 65 61 74 65 72 20 | or.log`.To.enable.mDNS.repeater. |
| 1409e0 | 79 6f 75 20 6e 65 65 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 74 20 6c 65 61 73 74 20 74 | you.need.to.configure.at.least.t |
| 140a00 | 77 6f 20 69 6e 74 65 72 66 61 63 65 73 20 73 6f 20 74 68 61 74 20 61 6c 6c 20 69 6e 63 6f 6d 69 | wo.interfaces.so.that.all.incomi |
| 140a20 | 6e 67 20 6d 44 4e 53 20 70 61 63 6b 65 74 73 20 66 72 6f 6d 20 6f 6e 65 20 69 6e 74 65 72 66 61 | ng.mDNS.packets.from.one.interfa |
| 140a40 | 63 65 20 63 6f 6e 66 69 67 75 72 65 64 20 68 65 72 65 20 63 61 6e 20 62 65 20 72 65 2d 62 72 6f | ce.configured.here.can.be.re-bro |
| 140a60 | 61 64 63 61 73 74 65 64 20 74 6f 20 61 6e 79 20 6f 74 68 65 72 20 69 6e 74 65 72 66 61 63 65 28 | adcasted.to.any.other.interface( |
| 140a80 | 73 29 20 63 6f 6e 66 69 67 75 72 65 64 20 75 6e 64 65 72 20 74 68 69 73 20 73 65 63 74 69 6f 6e | s).configured.under.this.section |
| 140aa0 | 2e 00 54 6f 20 65 6e 61 62 6c 65 20 6d 44 4e 53 20 72 65 70 65 61 74 65 72 20 79 6f 75 20 6e 65 | ..To.enable.mDNS.repeater.you.ne |
| 140ac0 | 65 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 74 20 6c 65 61 73 74 20 74 77 6f 20 69 6e 74 | ed.to.configure.at.least.two.int |
| 140ae0 | 65 72 66 61 63 65 73 2e 20 54 6f 20 72 65 2d 62 72 6f 61 64 63 61 73 74 20 61 6c 6c 20 69 6e 63 | erfaces..To.re-broadcast.all.inc |
| 140b00 | 6f 6d 69 6e 67 20 6d 44 4e 53 20 70 61 63 6b 65 74 73 20 66 72 6f 6d 20 61 6e 79 20 69 6e 74 65 | oming.mDNS.packets.from.any.inte |
| 140b20 | 72 66 61 63 65 20 63 6f 6e 66 69 67 75 72 65 64 20 68 65 72 65 20 74 6f 20 61 6e 79 20 6f 74 68 | rface.configured.here.to.any.oth |
| 140b40 | 65 72 20 69 6e 74 65 72 66 61 63 65 20 63 6f 6e 66 69 67 75 72 65 64 20 75 6e 64 65 72 20 74 68 | er.interface.configured.under.th |
| 140b60 | 69 73 20 73 65 63 74 69 6f 6e 2e 00 54 6f 20 65 6e 61 62 6c 65 20 74 68 65 20 48 54 54 50 20 73 | is.section..To.enable.the.HTTP.s |
| 140b80 | 65 63 75 72 69 74 79 20 68 65 61 64 65 72 73 20 69 6e 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 | ecurity.headers.in.the.configura |
| 140ba0 | 74 69 6f 6e 20 66 69 6c 65 2c 20 75 73 65 20 74 68 65 20 63 6f 6d 6d 61 6e 64 3a 00 54 6f 20 65 | tion.file,.use.the.command:.To.e |
| 140bc0 | 6e 61 62 6c 65 2f 64 69 73 61 62 6c 65 20 68 65 6c 70 65 72 20 73 75 70 70 6f 72 74 20 66 6f 72 | nable/disable.helper.support.for |
| 140be0 | 20 61 20 73 70 65 63 69 66 69 63 20 6e 65 69 67 68 62 6f 75 72 2c 20 74 68 65 20 72 6f 75 74 65 | .a.specific.neighbour,.the.route |
| 140c00 | 72 2d 69 64 20 28 41 2e 42 2e 43 2e 44 29 20 68 61 73 20 74 6f 20 62 65 20 73 70 65 63 69 66 69 | r-id.(A.B.C.D).has.to.be.specifi |
| 140c20 | 65 64 2e 00 54 6f 20 65 78 63 6c 75 64 65 20 74 72 61 66 66 69 63 20 66 72 6f 6d 20 6c 6f 61 64 | ed..To.exclude.traffic.from.load |
| 140c40 | 20 62 61 6c 61 6e 63 69 6e 67 2c 20 74 72 61 66 66 69 63 20 6d 61 74 63 68 69 6e 67 20 61 6e 20 | .balancing,.traffic.matching.an. |
| 140c60 | 65 78 63 6c 75 64 65 20 72 75 6c 65 20 69 73 20 6e 6f 74 20 62 61 6c 61 6e 63 65 64 20 62 75 74 | exclude.rule.is.not.balanced.but |
| 140c80 | 20 72 6f 75 74 65 64 20 74 68 72 6f 75 67 68 20 74 68 65 20 73 79 73 74 65 6d 20 72 6f 75 74 69 | .routed.through.the.system.routi |
| 140ca0 | 6e 67 20 74 61 62 6c 65 20 69 6e 73 74 65 61 64 3a 00 54 6f 20 65 78 70 6c 61 69 6e 20 74 68 65 | ng.table.instead:.To.explain.the |
| 140cc0 | 20 75 73 61 67 65 20 6f 66 20 4c 4e 53 20 66 6f 6c 6c 6f 77 20 6f 75 72 20 62 6c 75 65 70 72 69 | .usage.of.LNS.follow.our.bluepri |
| 140ce0 | 6e 74 20 3a 72 65 66 3a 60 65 78 61 6d 70 6c 65 73 2d 6c 61 63 2d 6c 6e 73 60 2e 00 54 6f 20 65 | nt.:ref:`examples-lac-lns`..To.e |
| 140d00 | 78 74 65 6e 64 20 53 4e 4d 50 20 61 67 65 6e 74 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 2c 20 | xtend.SNMP.agent.functionality,. |
| 140d20 | 63 75 73 74 6f 6d 20 73 63 72 69 70 74 73 20 63 61 6e 20 62 65 20 65 78 65 63 75 74 65 64 20 65 | custom.scripts.can.be.executed.e |
| 140d40 | 76 65 72 79 20 74 69 6d 65 20 74 68 65 20 61 67 65 6e 74 20 69 73 20 62 65 69 6e 67 20 63 61 6c | very.time.the.agent.is.being.cal |
| 140d60 | 6c 65 64 2e 20 54 68 69 73 20 63 61 6e 20 62 65 20 61 63 68 69 65 76 65 64 20 62 79 20 75 73 69 | led..This.can.be.achieved.by.usi |
| 140d80 | 6e 67 20 60 60 61 72 62 69 74 72 61 72 79 20 65 78 74 65 6e 73 69 6f 6e 63 6f 6d 6d 61 6e 64 73 | ng.``arbitrary.extensioncommands |
| 140da0 | 60 60 2e 20 54 68 65 20 66 69 72 73 74 20 73 74 65 70 20 69 73 20 74 6f 20 63 72 65 61 74 65 20 | ``..The.first.step.is.to.create. |
| 140dc0 | 61 20 66 75 6e 63 74 69 6f 6e 61 6c 20 73 63 72 69 70 74 20 6f 66 20 63 6f 75 72 73 65 2c 20 74 | a.functional.script.of.course,.t |
| 140de0 | 68 65 6e 20 75 70 6c 6f 61 64 20 69 74 20 74 6f 20 79 6f 75 72 20 56 79 4f 53 20 69 6e 73 74 61 | hen.upload.it.to.your.VyOS.insta |
| 140e00 | 6e 63 65 20 76 69 61 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 60 60 73 63 70 20 79 6f 75 72 5f 73 | nce.via.the.command.``scp.your_s |
| 140e20 | 63 72 69 70 74 2e 73 68 20 76 79 6f 73 40 79 6f 75 72 5f 72 6f 75 74 65 72 3a 2f 63 6f 6e 66 69 | cript.sh.vyos@your_router:/confi |
| 140e40 | 67 2f 75 73 65 72 2d 64 61 74 61 60 60 2e 20 4f 6e 63 65 20 74 68 65 20 73 63 72 69 70 74 20 69 | g/user-data``..Once.the.script.i |
| 140e60 | 73 20 75 70 6c 6f 61 64 65 64 2c 20 69 74 20 6e 65 65 64 73 20 74 6f 20 62 65 20 63 6f 6e 66 69 | s.uploaded,.it.needs.to.be.confi |
| 140e80 | 67 75 72 65 64 20 76 69 61 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 62 65 6c 6f 77 2e 00 54 6f 20 | gured.via.the.command.below..To. |
| 140ea0 | 66 6f 72 77 61 72 64 20 61 6c 6c 20 62 72 6f 61 64 63 61 73 74 20 70 61 63 6b 65 74 73 20 72 65 | forward.all.broadcast.packets.re |
| 140ec0 | 63 65 69 76 65 64 20 6f 6e 20 60 55 44 50 20 70 6f 72 74 20 31 39 30 30 60 20 6f 6e 20 60 65 74 | ceived.on.`UDP.port.1900`.on.`et |
| 140ee0 | 68 33 60 2c 20 60 65 74 68 34 60 20 6f 72 20 60 65 74 68 35 60 20 74 6f 20 61 6c 6c 20 6f 74 68 | h3`,.`eth4`.or.`eth5`.to.all.oth |
| 140f00 | 65 72 20 69 6e 74 65 72 66 61 63 65 73 20 69 6e 20 74 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 | er.interfaces.in.this.configurat |
| 140f20 | 69 6f 6e 2e 00 54 6f 20 67 65 6e 65 72 61 74 65 20 74 68 65 20 43 41 2c 20 74 68 65 20 73 65 72 | ion..To.generate.the.CA,.the.ser |
| 140f40 | 76 65 72 20 70 72 69 76 61 74 65 20 6b 65 79 20 61 6e 64 20 63 65 72 74 69 66 69 63 61 74 65 73 | ver.private.key.and.certificates |
| 140f60 | 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 73 20 63 61 6e 20 62 65 20 75 | .the.following.commands.can.be.u |
| 140f80 | 73 65 64 2e 00 54 6f 20 67 65 74 20 69 74 20 74 6f 20 77 6f 72 6b 20 61 73 20 61 6e 20 61 63 63 | sed..To.get.it.to.work.as.an.acc |
| 140fa0 | 65 73 73 20 70 6f 69 6e 74 20 77 69 74 68 20 74 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f | ess.point.with.this.configuratio |
| 140fc0 | 6e 20 79 6f 75 20 77 69 6c 6c 20 6e 65 65 64 20 74 6f 20 73 65 74 20 75 70 20 61 20 44 48 43 50 | n.you.will.need.to.set.up.a.DHCP |
| 140fe0 | 20 73 65 72 76 65 72 20 74 6f 20 77 6f 72 6b 20 77 69 74 68 20 74 68 61 74 20 6e 65 74 77 6f 72 | .server.to.work.with.that.networ |
| 141000 | 6b 2e 20 59 6f 75 20 63 61 6e 20 2d 20 6f 66 20 63 6f 75 72 73 65 20 2d 20 61 6c 73 6f 20 62 72 | k..You.can.-.of.course.-.also.br |
| 141020 | 69 64 67 65 20 74 68 65 20 57 69 72 65 6c 65 73 73 20 69 6e 74 65 72 66 61 63 65 20 77 69 74 68 | idge.the.Wireless.interface.with |
| 141040 | 20 61 6e 79 20 63 6f 6e 66 69 67 75 72 65 64 20 62 72 69 64 67 65 20 28 3a 72 65 66 3a 60 62 72 | .any.configured.bridge.(:ref:`br |
| 141060 | 69 64 67 65 2d 69 6e 74 65 72 66 61 63 65 60 29 20 6f 6e 20 74 68 65 20 73 79 73 74 65 6d 2e 00 | idge-interface`).on.the.system.. |
| 141080 | 54 6f 20 68 61 6e 64 20 6f 75 74 20 69 6e 64 69 76 69 64 75 61 6c 20 70 72 65 66 69 78 65 73 20 | To.hand.out.individual.prefixes. |
| 1410a0 | 74 6f 20 79 6f 75 72 20 63 6c 69 65 6e 74 73 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f | to.your.clients.the.following.co |
| 1410c0 | 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 73 20 75 73 65 64 3a 00 54 6f 20 69 6d 70 6f 72 74 20 69 | nfiguration.is.used:.To.import.i |
| 1410e0 | 74 20 66 72 6f 6d 20 74 68 65 20 66 69 6c 65 73 79 73 74 65 6d 20 75 73 65 3a 00 54 6f 20 6b 6e | t.from.the.filesystem.use:.To.kn |
| 141100 | 6f 77 20 6d 6f 72 65 20 61 62 6f 75 74 20 73 63 72 69 70 74 69 6e 67 2c 20 63 68 65 63 6b 20 74 | ow.more.about.scripting,.check.t |
| 141120 | 68 65 20 3a 72 65 66 3a 60 63 6f 6d 6d 61 6e 64 2d 73 63 72 69 70 74 69 6e 67 60 20 73 65 63 74 | he.:ref:`command-scripting`.sect |
| 141140 | 69 6f 6e 2e 00 54 6f 20 6c 69 73 74 65 6e 20 6f 6e 20 62 6f 74 68 20 60 65 74 68 30 60 20 61 6e | ion..To.listen.on.both.`eth0`.an |
| 141160 | 64 20 60 65 74 68 31 60 20 6d 44 4e 53 20 70 61 63 6b 65 74 73 20 61 6e 64 20 61 6c 73 6f 20 72 | d.`eth1`.mDNS.packets.and.also.r |
| 141180 | 65 70 65 61 74 20 70 61 63 6b 65 74 73 20 72 65 63 65 69 76 65 64 20 6f 6e 20 60 65 74 68 30 60 | epeat.packets.received.on.`eth0` |
| 1411a0 | 20 74 6f 20 60 65 74 68 31 60 20 28 61 6e 64 20 76 69 63 65 2d 76 65 72 73 61 29 20 75 73 65 20 | .to.`eth1`.(and.vice-versa).use. |
| 1411c0 | 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 73 3a 00 54 6f 20 6d 61 6e 69 70 | the.following.commands:.To.manip |
| 1411e0 | 75 6c 61 74 65 20 6f 72 20 64 69 73 70 6c 61 79 20 41 52 50 5f 20 74 61 62 6c 65 20 65 6e 74 72 | ulate.or.display.ARP_.table.entr |
| 141200 | 69 65 73 2c 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 73 20 61 72 65 20 | ies,.the.following.commands.are. |
| 141220 | 69 6d 70 6c 65 6d 65 6e 74 65 64 2e 00 54 6f 20 70 65 72 66 6f 72 6d 20 61 20 67 72 61 63 65 66 | implemented..To.perform.a.gracef |
| 141240 | 75 6c 20 73 68 75 74 64 6f 77 6e 2c 20 74 68 65 20 46 52 52 20 60 60 67 72 61 63 65 66 75 6c 2d | ul.shutdown,.the.FRR.``graceful- |
| 141260 | 72 65 73 74 61 72 74 20 70 72 65 70 61 72 65 20 69 70 20 6f 73 70 66 60 60 20 45 58 45 43 2d 6c | restart.prepare.ip.ospf``.EXEC-l |
| 141280 | 65 76 65 6c 20 63 6f 6d 6d 61 6e 64 20 6e 65 65 64 73 20 74 6f 20 62 65 20 69 73 73 75 65 64 20 | evel.command.needs.to.be.issued. |
| 1412a0 | 62 65 66 6f 72 65 20 72 65 73 74 61 72 74 69 6e 67 20 74 68 65 20 6f 73 70 66 64 20 64 61 65 6d | before.restarting.the.ospfd.daem |
| 1412c0 | 6f 6e 2e 00 54 6f 20 70 72 65 76 65 6e 74 20 69 73 73 75 65 73 20 77 69 74 68 20 64 69 76 65 72 | on..To.prevent.issues.with.diver |
| 1412e0 | 67 65 6e 74 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 73 20 62 65 74 77 65 65 6e 20 74 68 65 20 | gent.configurations.between.the. |
| 141300 | 70 61 69 72 20 6f 66 20 72 6f 75 74 65 72 73 2c 20 73 79 6e 63 68 72 6f 6e 69 7a 61 74 69 6f 6e | pair.of.routers,.synchronization |
| 141320 | 20 69 73 20 73 74 72 69 63 74 6c 79 20 75 6e 69 64 69 72 65 63 74 69 6f 6e 61 6c 20 66 72 6f 6d | .is.strictly.unidirectional.from |
| 141340 | 20 70 72 69 6d 61 72 79 20 74 6f 20 72 65 70 6c 69 63 61 2e 20 42 6f 74 68 20 72 6f 75 74 65 72 | .primary.to.replica..Both.router |
| 141360 | 73 20 73 68 6f 75 6c 64 20 62 65 20 6f 6e 6c 69 6e 65 20 61 6e 64 20 72 75 6e 20 74 68 65 20 73 | s.should.be.online.and.run.the.s |
| 141380 | 61 6d 65 20 76 65 72 73 69 6f 6e 20 6f 66 20 56 79 4f 53 2e 00 54 6f 20 72 65 71 75 65 73 74 20 | ame.version.of.VyOS..To.request. |
| 1413a0 | 61 20 2f 35 36 20 70 72 65 66 69 78 20 66 72 6f 6d 20 79 6f 75 72 20 49 53 50 20 75 73 65 3a 00 | a./56.prefix.from.your.ISP.use:. |
| 1413c0 | 54 6f 20 72 65 73 74 61 72 74 20 74 68 65 20 44 48 43 50 76 36 20 73 65 72 76 65 72 00 54 6f 20 | To.restart.the.DHCPv6.server.To. |
| 1413e0 | 73 65 74 75 70 20 53 4e 41 54 2c 20 77 65 20 6e 65 65 64 20 74 6f 20 6b 6e 6f 77 3a 00 54 6f 20 | setup.SNAT,.we.need.to.know:.To. |
| 141400 | 73 65 74 75 70 20 61 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 4e 41 54 20 72 75 6c 65 20 77 65 20 | setup.a.destination.NAT.rule.we. |
| 141420 | 6e 65 65 64 20 74 6f 20 67 61 74 68 65 72 3a 00 54 6f 20 75 70 64 61 74 65 20 74 68 65 20 66 69 | need.to.gather:.To.update.the.fi |
| 141440 | 72 6d 77 61 72 65 2c 20 56 79 4f 53 20 61 6c 73 6f 20 73 68 69 70 73 20 74 68 65 20 60 71 6d 69 | rmware,.VyOS.also.ships.the.`qmi |
| 141460 | 2d 66 69 72 6d 77 61 72 65 2d 75 70 64 61 74 65 60 20 62 69 6e 61 72 79 2e 20 54 6f 20 75 70 67 | -firmware-update`.binary..To.upg |
| 141480 | 72 61 64 65 20 74 68 65 20 66 69 72 6d 77 61 72 65 20 6f 66 20 61 6e 20 65 2e 67 2e 20 53 69 65 | rade.the.firmware.of.an.e.g..Sie |
| 1414a0 | 72 72 61 20 57 69 72 65 6c 65 73 73 20 4d 43 37 37 31 30 20 6d 6f 64 75 6c 65 20 74 6f 20 74 68 | rra.Wireless.MC7710.module.to.th |
| 1414c0 | 65 20 66 69 72 6d 77 61 72 65 20 70 72 6f 76 69 64 65 64 20 69 6e 20 74 68 65 20 66 69 6c 65 20 | e.firmware.provided.in.the.file. |
| 1414e0 | 60 60 39 39 39 39 39 39 39 5f 39 39 39 39 39 39 39 5f 39 32 30 30 5f 30 33 2e 30 35 2e 31 34 2e | ``9999999_9999999_9200_03.05.14. |
| 141500 | 30 30 5f 30 30 5f 67 65 6e 65 72 69 63 5f 30 30 30 2e 30 30 30 5f 30 30 31 5f 53 50 4b 47 5f 4d | 00_00_generic_000.000_001_SPKG_M |
| 141520 | 43 2e 63 77 65 60 60 20 75 73 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e | C.cwe``.use.the.following.comman |
| 141540 | 64 3a 00 54 6f 20 75 73 65 20 61 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 66 6f 72 20 61 75 | d:.To.use.a.RADIUS.server.for.au |
| 141560 | 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 61 6e 64 20 62 61 6e 64 77 69 64 74 68 2d 73 68 61 70 69 | thentication.and.bandwidth-shapi |
| 141580 | 6e 67 2c 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 6c 65 20 63 6f 6e 66 69 67 | ng,.the.following.example.config |
| 1415a0 | 75 72 61 74 69 6f 6e 20 63 61 6e 20 62 65 20 75 73 65 64 2e 00 54 6f 20 75 73 65 20 61 20 72 61 | uration.can.be.used..To.use.a.ra |
| 1415c0 | 64 69 75 73 20 73 65 72 76 65 72 2c 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 73 77 69 74 63 68 20 | dius.server,.you.need.to.switch. |
| 1415e0 | 74 6f 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6d 6f 64 65 20 52 41 44 49 55 53 20 61 6e | to.authentication.mode.RADIUS.an |
| 141600 | 64 20 74 68 65 6e 20 63 6f 6e 66 69 67 75 72 65 20 69 74 2e 00 54 6f 20 75 73 65 20 73 75 63 68 | d.then.configure.it..To.use.such |
| 141620 | 20 61 20 73 65 72 76 69 63 65 2c 20 6f 6e 65 20 6d 75 73 74 20 64 65 66 69 6e 65 20 61 20 6c 6f | .a.service,.one.must.define.a.lo |
| 141640 | 67 69 6e 2c 20 70 61 73 73 77 6f 72 64 2c 20 6f 6e 65 20 6f 72 20 6d 75 6c 74 69 70 6c 65 20 68 | gin,.password,.one.or.multiple.h |
| 141660 | 6f 73 74 6e 61 6d 65 73 2c 20 70 72 6f 74 6f 63 6f 6c 20 61 6e 64 20 73 65 72 76 65 72 2e 00 54 | ostnames,.protocol.and.server..T |
| 141680 | 6f 20 75 73 65 20 74 68 65 20 53 61 6c 74 2d 4d 69 6e 69 6f 6e 2c 20 61 20 72 75 6e 6e 69 6e 67 | o.use.the.Salt-Minion,.a.running |
| 1416a0 | 20 53 61 6c 74 2d 4d 61 73 74 65 72 20 69 73 20 72 65 71 75 69 72 65 64 2e 20 59 6f 75 20 63 61 | .Salt-Master.is.required..You.ca |
| 1416c0 | 6e 20 66 69 6e 64 20 6d 6f 72 65 20 69 6e 20 74 68 65 20 60 53 61 6c 74 20 50 6f 6a 65 63 74 20 | n.find.more.in.the.`Salt.Poject. |
| 1416e0 | 44 6f 63 75 6d 65 6e 74 61 69 6f 6e 20 3c 68 74 74 70 73 3a 2f 2f 64 6f 63 73 2e 73 61 6c 74 70 | Documentaion.<https://docs.saltp |
| 141700 | 72 6f 6a 65 63 74 2e 69 6f 2f 65 6e 2f 6c 61 74 65 73 74 2f 63 6f 6e 74 65 6e 74 73 2e 68 74 6d | roject.io/en/latest/contents.htm |
| 141720 | 6c 3e 60 5f 00 54 6f 20 75 73 65 20 74 68 65 20 53 61 6c 74 2d 4d 69 6e 69 6f 6e 2c 20 61 20 72 | l>`_.To.use.the.Salt-Minion,.a.r |
| 141740 | 75 6e 6e 69 6e 67 20 53 61 6c 74 2d 4d 61 73 74 65 72 20 69 73 20 72 65 71 75 69 72 65 64 2e 20 | unning.Salt-Master.is.required.. |
| 141760 | 59 6f 75 20 63 61 6e 20 66 69 6e 64 20 6d 6f 72 65 20 69 6e 20 74 68 65 20 60 53 61 6c 74 20 50 | You.can.find.more.in.the.`Salt.P |
| 141780 | 72 6f 6a 65 63 74 20 44 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 3c 68 74 74 70 73 3a 2f 2f 64 6f | roject.Documentation.<https://do |
| 1417a0 | 63 73 2e 73 61 6c 74 70 72 6f 6a 65 63 74 2e 69 6f 2f 65 6e 2f 6c 61 74 65 73 74 2f 63 6f 6e 74 | cs.saltproject.io/en/latest/cont |
| 1417c0 | 65 6e 74 73 2e 68 74 6d 6c 3e 60 5f 00 54 6f 20 75 73 65 20 74 68 69 73 20 66 75 6c 6c 20 63 6f | ents.html>`_.To.use.this.full.co |
| 1417e0 | 6e 66 69 67 75 72 61 74 69 6f 6e 20 77 65 20 61 73 75 6d 65 20 61 20 70 75 62 6c 69 63 20 61 63 | nfiguration.we.asume.a.public.ac |
| 141800 | 63 65 73 73 69 62 6c 65 20 68 6f 73 74 6e 61 6d 65 2e 00 54 6f 70 6f 6c 6f 67 79 3a 00 54 6f 70 | cessible.hostname..Topology:.Top |
| 141820 | 6f 6c 6f 67 79 3a 20 50 43 34 20 2d 20 4c 65 61 66 32 20 2d 20 53 70 69 6e 65 31 20 2d 20 4c 65 | ology:.PC4.-.Leaf2.-.Spine1.-.Le |
| 141840 | 61 66 33 20 2d 20 50 43 35 00 54 6f 74 61 6c 20 50 6f 72 74 73 3a 20 36 35 35 33 36 20 28 30 20 | af3.-.PC5.Total.Ports:.65536.(0. |
| 141860 | 74 6f 20 36 35 35 33 35 29 00 54 6f 75 62 6c 65 73 68 6f 6f 74 69 6e 67 00 54 72 61 63 6b 00 54 | to.65535).Toubleshooting.Track.T |
| 141880 | 72 61 63 6b 20 6f 70 74 69 6f 6e 20 74 6f 20 74 72 61 63 6b 20 6e 6f 6e 20 56 52 52 50 20 69 6e | rack.option.to.track.non.VRRP.in |
| 1418a0 | 74 65 72 66 61 63 65 20 73 74 61 74 65 73 2e 20 56 52 52 50 20 63 68 61 6e 67 65 73 20 73 74 61 | terface.states..VRRP.changes.sta |
| 1418c0 | 74 75 73 20 74 6f 20 60 60 46 41 55 4c 54 60 60 20 69 66 20 6f 6e 65 20 6f 66 20 74 68 65 20 74 | tus.to.``FAULT``.if.one.of.the.t |
| 1418e0 | 72 61 63 6b 20 69 6e 74 65 72 66 61 63 65 73 20 69 6e 20 73 74 61 74 65 20 60 60 64 6f 77 6e 60 | rack.interfaces.in.state.``down` |
| 141900 | 60 2e 00 54 72 61 64 69 74 69 6f 6e 61 6c 20 42 47 50 20 64 69 64 20 6e 6f 74 20 68 61 76 65 20 | `..Traditional.BGP.did.not.have. |
| 141920 | 74 68 65 20 66 65 61 74 75 72 65 20 74 6f 20 64 65 74 65 63 74 20 61 20 72 65 6d 6f 74 65 20 70 | the.feature.to.detect.a.remote.p |
| 141940 | 65 65 72 27 73 20 63 61 70 61 62 69 6c 69 74 69 65 73 2c 20 65 2e 67 2e 20 77 68 65 74 68 65 72 | eer's.capabilities,.e.g..whether |
| 141960 | 20 69 74 20 63 61 6e 20 68 61 6e 64 6c 65 20 70 72 65 66 69 78 20 74 79 70 65 73 20 6f 74 68 65 | .it.can.handle.prefix.types.othe |
| 141980 | 72 20 74 68 61 6e 20 49 50 76 34 20 75 6e 69 63 61 73 74 20 72 6f 75 74 65 73 2e 20 54 68 69 73 | r.than.IPv4.unicast.routes..This |
| 1419a0 | 20 77 61 73 20 61 20 62 69 67 20 70 72 6f 62 6c 65 6d 20 75 73 69 6e 67 20 4d 75 6c 74 69 70 72 | .was.a.big.problem.using.Multipr |
| 1419c0 | 6f 74 6f 63 6f 6c 20 45 78 74 65 6e 73 69 6f 6e 20 66 6f 72 20 42 47 50 20 69 6e 20 61 6e 20 6f | otocol.Extension.for.BGP.in.an.o |
| 1419e0 | 70 65 72 61 74 69 6f 6e 61 6c 20 6e 65 74 77 6f 72 6b 2e 20 3a 72 66 63 3a 60 32 38 34 32 60 20 | perational.network..:rfc:`2842`. |
| 141a00 | 61 64 6f 70 74 65 64 20 61 20 66 65 61 74 75 72 65 20 63 61 6c 6c 65 64 20 43 61 70 61 62 69 6c | adopted.a.feature.called.Capabil |
| 141a20 | 69 74 79 20 4e 65 67 6f 74 69 61 74 69 6f 6e 2e 20 2a 62 67 70 64 2a 20 75 73 65 20 74 68 69 73 | ity.Negotiation..*bgpd*.use.this |
| 141a40 | 20 43 61 70 61 62 69 6c 69 74 79 20 4e 65 67 6f 74 69 61 74 69 6f 6e 20 74 6f 20 64 65 74 65 63 | .Capability.Negotiation.to.detec |
| 141a60 | 74 20 74 68 65 20 72 65 6d 6f 74 65 20 70 65 65 72 27 73 20 63 61 70 61 62 69 6c 69 74 69 65 73 | t.the.remote.peer's.capabilities |
| 141a80 | 2e 20 49 66 20 61 20 70 65 65 72 20 69 73 20 6f 6e 6c 79 20 63 6f 6e 66 69 67 75 72 65 64 20 61 | ..If.a.peer.is.only.configured.a |
| 141aa0 | 73 20 61 6e 20 49 50 76 34 20 75 6e 69 63 61 73 74 20 6e 65 69 67 68 62 6f 72 2c 20 2a 62 67 70 | s.an.IPv4.unicast.neighbor,.*bgp |
| 141ac0 | 64 2a 20 64 6f 65 73 20 6e 6f 74 20 73 65 6e 64 20 74 68 65 73 65 20 43 61 70 61 62 69 6c 69 74 | d*.does.not.send.these.Capabilit |
| 141ae0 | 79 20 4e 65 67 6f 74 69 61 74 69 6f 6e 20 70 61 63 6b 65 74 73 20 28 61 74 20 6c 65 61 73 74 20 | y.Negotiation.packets.(at.least. |
| 141b00 | 6e 6f 74 20 75 6e 6c 65 73 73 20 6f 74 68 65 72 20 6f 70 74 69 6f 6e 61 6c 20 42 47 50 20 66 65 | not.unless.other.optional.BGP.fe |
| 141b20 | 61 74 75 72 65 73 20 72 65 71 75 69 72 65 20 63 61 70 61 62 69 6c 69 74 79 20 6e 65 67 6f 74 69 | atures.require.capability.negoti |
| 141b40 | 61 74 69 6f 6e 29 2e 00 54 72 61 64 69 74 69 6f 6e 61 6c 6c 79 20 66 69 72 65 77 61 6c 6c 73 20 | ation)..Traditionally.firewalls. |
| 141b60 | 77 65 65 72 65 20 63 6f 6e 66 69 67 75 72 65 64 20 77 69 74 68 20 74 68 65 20 63 6f 6e 63 65 70 | weere.configured.with.the.concep |
| 141b80 | 74 20 6f 66 20 64 61 74 61 20 67 6f 69 6e 67 20 69 6e 20 61 6e 64 20 6f 75 74 20 6f 66 20 61 6e | t.of.data.going.in.and.out.of.an |
| 141ba0 | 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 65 20 72 6f 75 74 65 72 20 6a 75 73 74 20 6c 69 73 74 | .interface..The.router.just.list |
| 141bc0 | 65 6e 65 64 20 74 6f 20 74 68 65 20 64 61 74 61 20 66 6c 6f 77 69 6e 67 20 74 68 72 6f 75 67 68 | ened.to.the.data.flowing.through |
| 141be0 | 20 61 6e 64 20 72 65 73 70 6f 6e 64 69 6e 67 20 61 73 20 72 65 71 75 69 72 65 64 20 69 66 20 69 | .and.responding.as.required.if.i |
| 141c00 | 74 20 77 61 73 20 64 69 72 65 63 74 65 64 20 61 74 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 | t.was.directed.at.the.router.its |
| 141c20 | 65 6c 66 2e 00 54 72 61 64 69 74 69 6f 6e 61 6c 6c 79 20 68 61 72 64 77 61 72 65 20 72 6f 75 74 | elf..Traditionally.hardware.rout |
| 141c40 | 65 72 73 20 69 6d 70 6c 65 6d 65 6e 74 20 49 50 73 65 63 20 65 78 63 6c 75 73 69 76 65 6c 79 20 | ers.implement.IPsec.exclusively. |
| 141c60 | 64 75 65 20 74 6f 20 72 65 6c 61 74 69 76 65 20 65 61 73 65 20 6f 66 20 69 6d 70 6c 65 6d 65 6e | due.to.relative.ease.of.implemen |
| 141c80 | 74 69 6e 67 20 69 74 20 69 6e 20 68 61 72 64 77 61 72 65 20 61 6e 64 20 69 6e 73 75 66 66 69 63 | ting.it.in.hardware.and.insuffic |
| 141ca0 | 69 65 6e 74 20 43 50 55 20 70 6f 77 65 72 20 66 6f 72 20 64 6f 69 6e 67 20 65 6e 63 72 79 70 74 | ient.CPU.power.for.doing.encrypt |
| 141cc0 | 69 6f 6e 20 69 6e 20 73 6f 66 74 77 61 72 65 2e 20 53 69 6e 63 65 20 56 79 4f 53 20 69 73 20 61 | ion.in.software..Since.VyOS.is.a |
| 141ce0 | 20 73 6f 66 74 77 61 72 65 20 72 6f 75 74 65 72 2c 20 74 68 69 73 20 69 73 20 6c 65 73 73 20 6f | .software.router,.this.is.less.o |
| 141d00 | 66 20 61 20 63 6f 6e 63 65 72 6e 2e 20 4f 70 65 6e 56 50 4e 20 68 61 73 20 62 65 65 6e 20 77 69 | f.a.concern..OpenVPN.has.been.wi |
| 141d20 | 64 65 6c 79 20 75 73 65 64 20 6f 6e 20 55 4e 49 58 20 70 6c 61 74 66 6f 72 6d 20 66 6f 72 20 61 | dely.used.on.UNIX.platform.for.a |
| 141d40 | 20 6c 6f 6e 67 20 74 69 6d 65 20 61 6e 64 20 69 73 20 61 20 70 6f 70 75 6c 61 72 20 6f 70 74 69 | .long.time.and.is.a.popular.opti |
| 141d60 | 6f 6e 20 66 6f 72 20 72 65 6d 6f 74 65 20 61 63 63 65 73 73 20 56 50 4e 2c 20 74 68 6f 75 67 68 | on.for.remote.access.VPN,.though |
| 141d80 | 20 69 74 27 73 20 61 6c 73 6f 20 63 61 70 61 62 6c 65 20 6f 66 20 73 69 74 65 2d 74 6f 2d 73 69 | .it's.also.capable.of.site-to-si |
| 141da0 | 74 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2e 00 54 72 61 64 69 74 69 6f 6e 61 6c 6c 79 20 68 61 | te.connections..Traditionally.ha |
| 141dc0 | 72 64 77 61 72 65 20 72 6f 75 74 65 72 73 20 69 6d 70 6c 65 6d 65 6e 74 20 49 50 73 65 63 20 65 | rdware.routers.implement.IPsec.e |
| 141de0 | 78 63 6c 75 73 69 76 65 6c 79 20 64 75 65 20 74 6f 20 72 65 6c 61 74 69 76 65 20 65 61 73 65 20 | xclusively.due.to.relative.ease. |
| 141e00 | 6f 66 20 69 6d 70 6c 65 6d 65 6e 74 69 6e 67 20 69 74 20 69 6e 20 68 61 72 64 77 61 72 65 20 61 | of.implementing.it.in.hardware.a |
| 141e20 | 6e 64 20 69 6e 73 75 66 66 69 63 69 65 6e 74 20 43 50 55 20 70 6f 77 65 72 20 66 6f 72 20 64 6f | nd.insufficient.CPU.power.for.do |
| 141e40 | 69 6e 67 20 65 6e 63 72 79 70 74 69 6f 6e 20 69 6e 20 73 6f 66 74 77 61 72 65 2e 20 53 69 6e 63 | ing.encryption.in.software..Sinc |
| 141e60 | 65 20 56 79 4f 53 20 69 73 20 61 20 73 6f 66 74 77 61 72 65 20 72 6f 75 74 65 72 2c 20 74 68 69 | e.VyOS.is.a.software.router,.thi |
| 141e80 | 73 20 69 73 20 6c 65 73 73 20 6f 66 20 61 20 63 6f 6e 63 65 72 6e 2e 20 4f 70 65 6e 56 50 4e 20 | s.is.less.of.a.concern..OpenVPN. |
| 141ea0 | 68 61 73 20 62 65 65 6e 20 77 69 64 65 6c 79 20 75 73 65 64 20 6f 6e 20 74 68 65 20 55 4e 49 58 | has.been.widely.used.on.the.UNIX |
| 141ec0 | 20 70 6c 61 74 66 6f 72 6d 20 66 6f 72 20 61 20 6c 6f 6e 67 20 74 69 6d 65 20 61 6e 64 20 69 73 | .platform.for.a.long.time.and.is |
| 141ee0 | 20 61 20 70 6f 70 75 6c 61 72 20 6f 70 74 69 6f 6e 20 66 6f 72 20 72 65 6d 6f 74 65 20 61 63 63 | .a.popular.option.for.remote.acc |
| 141f00 | 65 73 73 20 56 50 4e 2c 20 74 68 6f 75 67 68 20 69 74 27 73 20 61 6c 73 6f 20 63 61 70 61 62 6c | ess.VPN,.though.it's.also.capabl |
| 141f20 | 65 20 6f 66 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2e 00 54 | e.of.site-to-site.connections..T |
| 141f40 | 72 61 66 66 69 63 20 46 69 6c 74 65 72 73 00 54 72 61 66 66 69 63 20 46 69 6c 74 65 72 73 20 61 | raffic.Filters.Traffic.Filters.a |
| 141f60 | 72 65 20 75 73 65 64 20 74 6f 20 63 6f 6e 74 72 6f 6c 20 77 68 69 63 68 20 70 61 63 6b 65 74 73 | re.used.to.control.which.packets |
| 141f80 | 20 77 69 6c 6c 20 68 61 76 65 20 74 68 65 20 64 65 66 69 6e 65 64 20 4e 41 54 20 72 75 6c 65 73 | .will.have.the.defined.NAT.rules |
| 141fa0 | 20 61 70 70 6c 69 65 64 2e 20 46 69 76 65 20 64 69 66 66 65 72 65 6e 74 20 66 69 6c 74 65 72 73 | .applied..Five.different.filters |
| 141fc0 | 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 64 20 77 69 74 68 69 6e 20 61 20 4e 41 54 20 72 75 6c | .can.be.applied.within.a.NAT.rul |
| 141fe0 | 65 2e 00 54 72 61 66 66 69 63 20 4d 61 74 63 68 20 47 72 6f 75 70 00 54 72 61 66 66 69 63 20 50 | e..Traffic.Match.Group.Traffic.P |
| 142000 | 6f 6c 69 63 79 00 54 72 61 66 66 69 63 20 63 61 6e 6e 6f 74 20 66 6c 6f 77 20 62 65 74 77 65 65 | olicy.Traffic.cannot.flow.betwee |
| 142020 | 6e 20 61 20 7a 6f 6e 65 20 6d 65 6d 62 65 72 20 69 6e 74 65 72 66 61 63 65 20 61 6e 64 20 61 6e | n.a.zone.member.interface.and.an |
| 142040 | 79 20 69 6e 74 65 72 66 61 63 65 20 74 68 61 74 20 69 73 20 6e 6f 74 20 61 20 7a 6f 6e 65 20 6d | y.interface.that.is.not.a.zone.m |
| 142060 | 65 6d 62 65 72 2e 00 54 72 61 66 66 69 63 20 63 61 6e 6e 6f 74 20 66 6c 6f 77 20 62 65 74 77 65 | ember..Traffic.cannot.flow.betwe |
| 142080 | 65 6e 20 7a 6f 6e 65 20 6d 65 6d 62 65 72 20 69 6e 74 65 72 66 61 63 65 20 61 6e 64 20 61 6e 79 | en.zone.member.interface.and.any |
| 1420a0 | 20 69 6e 74 65 72 66 61 63 65 20 74 68 61 74 20 69 73 20 6e 6f 74 20 61 20 7a 6f 6e 65 20 6d 65 | .interface.that.is.not.a.zone.me |
| 1420c0 | 6d 62 65 72 2e 00 54 72 61 66 66 69 63 20 66 72 6f 6d 20 6d 75 6c 74 69 63 61 73 74 20 73 6f 75 | mber..Traffic.from.multicast.sou |
| 1420e0 | 72 63 65 73 20 77 69 6c 6c 20 67 6f 20 74 6f 20 74 68 65 20 52 65 6e 64 65 7a 76 6f 75 73 20 50 | rces.will.go.to.the.Rendezvous.P |
| 142100 | 6f 69 6e 74 2c 20 61 6e 64 20 72 65 63 65 69 76 65 72 73 20 77 69 6c 6c 20 70 75 6c 6c 20 69 74 | oint,.and.receivers.will.pull.it |
| 142120 | 20 66 72 6f 6d 20 61 20 73 68 61 72 65 64 20 74 72 65 65 20 75 73 69 6e 67 20 3a 61 62 62 72 3a | .from.a.shared.tree.using.:abbr: |
| 142140 | 60 49 47 4d 50 20 28 49 6e 74 65 72 6e 65 74 20 47 72 6f 75 70 20 4d 61 6e 61 67 65 6d 65 6e 74 | `IGMP.(Internet.Group.Management |
| 142160 | 20 50 72 6f 74 6f 63 6f 6c 29 60 2e 00 54 72 61 66 66 69 63 20 66 72 6f 6d 20 6d 75 6c 74 69 63 | .Protocol)`..Traffic.from.multic |
| 142180 | 61 73 74 20 73 6f 75 72 63 65 73 20 77 69 6c 6c 20 67 6f 20 74 6f 20 74 68 65 20 52 65 6e 64 65 | ast.sources.will.go.to.the.Rende |
| 1421a0 | 7a 76 6f 75 73 20 50 6f 69 6e 74 2c 20 61 6e 64 20 72 65 63 65 69 76 65 72 73 20 77 69 6c 6c 20 | zvous.Point,.and.receivers.will. |
| 1421c0 | 70 75 6c 6c 20 69 74 20 66 72 6f 6d 20 61 20 73 68 61 72 65 64 20 74 72 65 65 20 75 73 69 6e 67 | pull.it.from.a.shared.tree.using |
| 1421e0 | 20 49 47 4d 50 20 28 49 6e 74 65 72 6e 65 74 20 47 72 6f 75 70 20 4d 61 6e 61 67 65 6d 65 6e 74 | .IGMP.(Internet.Group.Management |
| 142200 | 20 50 72 6f 74 6f 63 6f 6c 29 2e 00 54 72 61 66 66 69 63 20 66 72 6f 6d 20 6d 75 6c 74 69 63 61 | .Protocol)..Traffic.from.multica |
| 142220 | 73 74 20 73 6f 75 72 63 65 73 20 77 69 6c 6c 20 67 6f 20 74 6f 20 74 68 65 20 52 65 6e 64 65 7a | st.sources.will.go.to.the.Rendez |
| 142240 | 76 6f 75 73 20 50 6f 69 6e 74 2c 20 61 6e 64 20 72 65 63 65 69 76 65 72 73 20 77 69 6c 6c 20 70 | vous.Point,.and.receivers.will.p |
| 142260 | 75 6c 6c 20 69 74 20 66 72 6f 6d 20 61 20 73 68 61 72 65 64 20 74 72 65 65 20 75 73 69 6e 67 20 | ull.it.from.a.shared.tree.using. |
| 142280 | 4d 4c 44 20 28 4d 75 6c 74 69 63 61 73 74 20 4c 69 73 74 65 6e 65 72 20 44 69 73 63 6f 76 65 72 | MLD.(Multicast.Listener.Discover |
| 1422a0 | 79 29 2e 00 54 72 61 66 66 69 63 20 6d 75 73 74 20 62 65 20 73 79 6d 6d 65 74 72 69 63 00 54 72 | y)..Traffic.must.be.symmetric.Tr |
| 1422c0 | 61 66 66 69 63 20 77 68 69 63 68 20 69 73 20 72 65 63 65 69 76 65 64 20 62 79 20 74 68 65 20 72 | affic.which.is.received.by.the.r |
| 1422e0 | 6f 75 74 65 72 20 6f 6e 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 77 68 69 63 68 20 69 73 20 6d | outer.on.an.interface.which.is.m |
| 142300 | 65 6d 62 65 72 20 6f 66 20 61 20 62 72 69 64 67 65 20 69 73 20 70 72 6f 63 65 73 73 65 64 20 6f | ember.of.a.bridge.is.processed.o |
| 142320 | 6e 20 74 68 65 20 2a 2a 42 72 69 64 67 65 20 4c 61 79 65 72 2a 2a 2e 20 41 20 73 69 6d 70 6c 69 | n.the.**Bridge.Layer**..A.simpli |
| 142340 | 66 69 65 64 20 70 61 63 6b 65 74 20 66 6c 6f 77 20 64 69 61 67 72 61 6d 20 66 6f 72 20 74 68 69 | fied.packet.flow.diagram.for.thi |
| 142360 | 73 20 6c 61 79 65 72 20 69 73 20 73 68 6f 77 6e 20 6e 65 78 74 3a 00 54 72 61 66 66 69 63 20 77 | s.layer.is.shown.next:.Traffic.w |
| 142380 | 68 69 63 68 20 69 73 20 72 65 63 65 69 76 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 20 6f | hich.is.received.by.the.router.o |
| 1423a0 | 6e 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 77 68 69 63 68 20 69 73 20 6d 65 6d 62 65 72 20 6f | n.an.interface.which.is.member.o |
| 1423c0 | 66 20 61 20 62 72 69 64 67 65 20 69 73 20 70 72 6f 63 65 73 73 65 64 20 6f 6e 20 74 68 65 20 2a | f.a.bridge.is.processed.on.the.* |
| 1423e0 | 2a 42 72 69 64 67 65 20 4c 61 79 65 72 2a 2a 2e 20 42 65 66 6f 72 65 20 74 68 65 20 62 72 69 64 | *Bridge.Layer**..Before.the.brid |
| 142400 | 67 65 20 64 65 63 69 73 69 6f 6e 20 69 73 20 6d 61 64 65 2c 20 61 6c 6c 20 70 61 63 6b 65 74 73 | ge.decision.is.made,.all.packets |
| 142420 | 20 61 72 65 20 61 6e 61 6c 79 7a 65 64 20 61 74 20 2a 2a 50 72 65 72 6f 75 74 69 6e 67 2a 2a 2e | .are.analyzed.at.**Prerouting**. |
| 142440 | 20 46 69 72 73 74 20 66 69 6c 74 65 72 73 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 64 20 68 65 | .First.filters.can.be.applied.he |
| 142460 | 72 65 2c 20 61 6e 64 20 61 6c 73 6f 20 72 75 6c 65 73 20 66 6f 72 20 69 67 6e 6f 72 69 6e 67 20 | re,.and.also.rules.for.ignoring. |
| 142480 | 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 73 79 73 74 65 6d 20 63 61 6e 20 62 | connection.tracking.system.can.b |
| 1424a0 | 65 20 63 6f 6e 66 69 67 75 72 65 64 2e 20 54 68 65 20 72 65 6c 65 76 61 6e 74 20 63 6f 6e 66 69 | e.configured..The.relevant.confi |
| 1424c0 | 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 61 63 74 73 20 69 6e 20 2a 2a 70 72 65 72 6f 75 74 69 | guration.that.acts.in.**prerouti |
| 1424e0 | 6e 67 2a 2a 20 69 73 3a 00 54 72 61 6e 73 69 74 69 6f 6e 20 73 63 72 69 70 74 73 00 54 72 61 6e | ng**.is:.Transition.scripts.Tran |
| 142500 | 73 69 74 69 6f 6e 20 73 63 72 69 70 74 73 20 63 61 6e 20 68 65 6c 70 20 79 6f 75 20 69 6d 70 6c | sition.scripts.can.help.you.impl |
| 142520 | 65 6d 65 6e 74 20 76 61 72 69 6f 75 73 20 66 69 78 75 70 73 2c 20 73 75 63 68 20 61 73 20 73 74 | ement.various.fixups,.such.as.st |
| 142540 | 61 72 74 69 6e 67 20 61 6e 64 20 73 74 6f 70 70 69 6e 67 20 73 65 72 76 69 63 65 73 2c 20 6f 72 | arting.and.stopping.services,.or |
| 142560 | 20 65 76 65 6e 20 6d 6f 64 69 66 79 69 6e 67 20 74 68 65 20 56 79 4f 53 20 63 6f 6e 66 69 67 20 | .even.modifying.the.VyOS.config. |
| 142580 | 6f 6e 20 56 52 52 50 20 74 72 61 6e 73 69 74 69 6f 6e 2e 20 54 68 69 73 20 73 65 74 75 70 20 77 | on.VRRP.transition..This.setup.w |
| 1425a0 | 69 6c 6c 20 6d 61 6b 65 20 74 68 65 20 56 52 52 50 20 70 72 6f 63 65 73 73 20 65 78 65 63 75 74 | ill.make.the.VRRP.process.execut |
| 1425c0 | 65 20 74 68 65 20 60 60 2f 63 6f 6e 66 69 67 2f 73 63 72 69 70 74 73 2f 76 72 72 70 2d 66 61 69 | e.the.``/config/scripts/vrrp-fai |
| 1425e0 | 6c 2e 73 68 60 60 20 77 69 74 68 20 61 72 67 75 6d 65 6e 74 20 60 60 46 6f 6f 60 60 20 77 68 65 | l.sh``.with.argument.``Foo``.whe |
| 142600 | 6e 20 56 52 52 50 20 66 61 69 6c 73 2c 20 61 6e 64 20 74 68 65 20 60 60 2f 63 6f 6e 66 69 67 2f | n.VRRP.fails,.and.the.``/config/ |
| 142620 | 73 63 72 69 70 74 73 2f 76 72 72 70 2d 6d 61 73 74 65 72 2e 73 68 60 60 20 77 68 65 6e 20 74 68 | scripts/vrrp-master.sh``.when.th |
| 142640 | 65 20 72 6f 75 74 65 72 20 62 65 63 6f 6d 65 73 20 74 68 65 20 6d 61 73 74 65 72 3a 00 54 72 61 | e.router.becomes.the.master:.Tra |
| 142660 | 6e 73 70 61 72 65 6e 74 20 50 72 6f 78 79 00 54 72 6f 75 62 6c 65 73 68 6f 6f 74 69 6e 67 00 54 | nsparent.Proxy.Troubleshooting.T |
| 142680 | 75 6e 69 6e 67 20 63 6f 6d 6d 61 6e 64 73 00 54 75 6e 6e 65 6c 00 54 75 6e 6e 65 6c 20 6b 65 79 | uning.commands.Tunnel.Tunnel.key |
| 1426a0 | 73 00 54 75 6e 6e 65 6c 20 70 61 73 73 77 6f 72 64 20 75 73 65 64 20 74 6f 20 61 75 74 68 65 6e | s.Tunnel.password.used.to.authen |
| 1426c0 | 74 69 63 61 74 65 20 74 68 65 20 63 6c 69 65 6e 74 20 28 4c 41 43 29 00 54 75 72 6e 20 6f 6e 20 | ticate.the.client.(LAC).Turn.on. |
| 1426e0 | 66 6c 6f 77 2d 62 61 73 65 64 20 74 69 6d 65 73 74 61 6d 70 20 65 78 74 65 6e 73 69 6f 6e 2e 00 | flow-based.timestamp.extension.. |
| 142700 | 54 77 6f 20 65 6e 76 69 72 6f 6e 6d 65 6e 74 20 76 61 72 69 61 62 6c 65 73 20 61 72 65 20 61 76 | Two.environment.variables.are.av |
| 142720 | 61 69 6c 61 62 6c 65 3a 00 54 77 6f 20 69 6e 74 65 72 66 61 63 65 73 20 61 72 65 20 67 6f 69 6e | ailable:.Two.interfaces.are.goin |
| 142740 | 67 20 74 6f 20 62 65 20 75 73 65 64 20 69 6e 20 74 68 65 20 66 6c 6f 77 74 61 62 6c 65 73 3a 20 | g.to.be.used.in.the.flowtables:. |
| 142760 | 65 74 68 30 20 61 6e 64 20 65 74 68 31 00 54 77 6f 20 6e 65 77 20 66 69 6c 65 73 20 60 60 2f 63 | eth0.and.eth1.Two.new.files.``/c |
| 142780 | 6f 6e 66 69 67 2f 61 75 74 68 2f 69 64 5f 72 73 61 5f 72 70 6b 69 60 60 20 61 6e 64 20 60 60 2f | onfig/auth/id_rsa_rpki``.and.``/ |
| 1427a0 | 63 6f 6e 66 69 67 2f 61 75 74 68 2f 69 64 5f 72 73 61 5f 72 70 6b 69 2e 70 75 62 60 60 20 77 69 | config/auth/id_rsa_rpki.pub``.wi |
| 1427c0 | 6c 6c 20 62 65 20 63 72 65 61 74 65 64 2e 00 54 77 6f 20 6f 70 74 69 6f 6e 73 20 61 72 65 20 61 | ll.be.created..Two.options.are.a |
| 1427e0 | 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 60 6d 6f 64 65 60 3a 20 65 69 74 68 65 72 20 60 6c 6f 61 | vailable.for.`mode`:.either.`loa |
| 142800 | 64 60 20 61 6e 64 20 72 65 70 6c 61 63 65 20 6f 72 20 60 73 65 74 60 20 74 68 65 20 63 6f 6e 66 | d`.and.replace.or.`set`.the.conf |
| 142820 | 69 67 75 72 61 74 69 6f 6e 20 73 65 63 74 69 6f 6e 2e 00 54 77 6f 20 72 6f 75 74 65 72 73 20 63 | iguration.section..Two.routers.c |
| 142840 | 6f 6e 6e 65 63 74 65 64 20 62 6f 74 68 20 76 69 61 20 65 74 68 31 20 74 68 72 6f 75 67 68 20 61 | onnected.both.via.eth1.through.a |
| 142860 | 6e 20 75 6e 74 72 75 73 74 65 64 20 73 77 69 74 63 68 00 54 79 70 65 20 6f 66 20 6d 65 74 72 69 | n.untrusted.switch.Type.of.metri |
| 142880 | 63 73 20 67 72 6f 75 70 69 6e 67 20 77 68 65 6e 20 70 75 73 68 20 74 6f 20 41 7a 75 72 65 20 44 | cs.grouping.when.push.to.Azure.D |
| 1428a0 | 61 74 61 20 45 78 70 6c 6f 72 65 72 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 60 60 74 | ata.Explorer..The.default.is.``t |
| 1428c0 | 61 62 6c 65 2d 70 65 72 2d 6d 65 74 72 69 63 60 60 2e 00 54 79 70 65 2d 31 20 28 45 41 44 2d 70 | able-per-metric``..Type-1.(EAD-p |
| 1428e0 | 65 72 2d 45 53 20 61 6e 64 20 45 41 44 2d 70 65 72 2d 45 56 49 29 20 72 6f 75 74 65 73 20 61 72 | er-ES.and.EAD-per-EVI).routes.ar |
| 142900 | 65 20 75 73 65 64 20 74 6f 20 61 64 76 65 72 74 69 73 65 20 74 68 65 20 6c 6f 63 61 6c 6c 79 20 | e.used.to.advertise.the.locally. |
| 142920 | 61 74 74 61 63 68 65 64 20 45 53 73 20 61 6e 64 20 74 6f 20 6c 65 61 72 6e 20 6f 66 66 20 72 65 | attached.ESs.and.to.learn.off.re |
| 142940 | 6d 6f 74 65 20 45 53 73 20 69 6e 20 74 68 65 20 6e 65 74 77 6f 72 6b 2e 20 4c 6f 63 61 6c 20 54 | mote.ESs.in.the.network..Local.T |
| 142960 | 79 70 65 2d 32 2f 4d 41 43 2d 49 50 20 72 6f 75 74 65 73 20 61 72 65 20 61 6c 73 6f 20 61 64 76 | ype-2/MAC-IP.routes.are.also.adv |
| 142980 | 65 72 74 69 73 65 64 20 77 69 74 68 20 61 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 45 53 49 20 61 | ertised.with.a.destination.ESI.a |
| 1429a0 | 6c 6c 6f 77 69 6e 67 20 66 6f 72 20 4d 41 43 2d 49 50 20 73 79 6e 63 69 6e 67 20 62 65 74 77 65 | llowing.for.MAC-IP.syncing.betwe |
| 1429c0 | 65 6e 20 45 74 68 65 72 6e 65 74 20 53 65 67 6d 65 6e 74 20 70 65 65 72 73 2e 20 52 65 66 65 72 | en.Ethernet.Segment.peers..Refer |
| 1429e0 | 65 6e 63 65 3a 20 52 46 43 20 37 34 33 32 2c 20 52 46 43 20 38 33 36 35 00 54 79 70 65 2d 34 20 | ence:.RFC.7432,.RFC.8365.Type-4. |
| 142a00 | 28 45 53 52 29 20 72 6f 75 74 65 73 20 61 72 65 20 75 73 65 64 20 66 6f 72 20 44 65 73 69 67 6e | (ESR).routes.are.used.for.Design |
| 142a20 | 61 74 65 64 20 46 6f 72 77 61 72 64 65 72 20 28 44 46 29 20 65 6c 65 63 74 69 6f 6e 2e 20 44 46 | ated.Forwarder.(DF).election..DF |
| 142a40 | 73 20 66 6f 72 77 61 72 64 20 42 55 4d 20 74 72 61 66 66 69 63 20 72 65 63 65 69 76 65 64 20 76 | s.forward.BUM.traffic.received.v |
| 142a60 | 69 61 20 74 68 65 20 6f 76 65 72 6c 61 79 20 6e 65 74 77 6f 72 6b 2e 20 54 68 69 73 20 69 6d 70 | ia.the.overlay.network..This.imp |
| 142a80 | 6c 65 6d 65 6e 74 61 74 69 6f 6e 20 75 73 65 73 20 61 20 70 72 65 66 65 72 65 6e 63 65 20 62 61 | lementation.uses.a.preference.ba |
| 142aa0 | 73 65 64 20 44 46 20 65 6c 65 63 74 69 6f 6e 20 73 70 65 63 69 66 69 65 64 20 62 79 20 64 72 61 | sed.DF.election.specified.by.dra |
| 142ac0 | 66 74 2d 69 65 74 66 2d 62 65 73 73 2d 65 76 70 6e 2d 70 72 65 66 2d 64 66 2e 00 54 79 70 69 63 | ft-ietf-bess-evpn-pref-df..Typic |
| 142ae0 | 61 6c 6c 79 2c 20 61 20 31 2d 74 6f 2d 31 20 4e 41 54 20 72 75 6c 65 20 6f 6d 69 74 73 20 74 68 | ally,.a.1-to-1.NAT.rule.omits.th |
| 142b00 | 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 70 6f 72 74 20 28 61 6c 6c 20 70 6f 72 74 73 29 20 61 | e.destination.port.(all.ports).a |
| 142b20 | 6e 64 20 72 65 70 6c 61 63 65 73 20 74 68 65 20 70 72 6f 74 6f 63 6f 6c 20 77 69 74 68 20 65 69 | nd.replaces.the.protocol.with.ei |
| 142b40 | 74 68 65 72 20 2a 2a 61 6c 6c 2a 2a 20 6f 72 20 2a 2a 69 70 2a 2a 2e 00 55 44 50 20 42 72 6f 61 | ther.**all**.or.**ip**..UDP.Broa |
| 142b60 | 64 63 61 73 74 20 52 65 6c 61 79 00 55 44 50 20 6d 6f 64 65 20 77 6f 72 6b 73 20 62 65 74 74 65 | dcast.Relay.UDP.mode.works.bette |
| 142b80 | 72 20 77 69 74 68 20 4e 41 54 3a 00 55 44 50 20 70 6f 72 74 20 31 37 30 31 20 66 6f 72 20 49 50 | r.with.NAT:.UDP.port.1701.for.IP |
| 142ba0 | 73 65 63 00 55 44 50 20 70 6f 72 74 20 34 35 30 30 20 28 4e 41 54 2d 54 29 00 55 44 50 20 70 6f | sec.UDP.port.4500.(NAT-T).UDP.po |
| 142bc0 | 72 74 20 35 30 30 20 28 49 4b 45 29 00 55 52 4c 20 46 69 6c 74 65 72 69 6e 67 20 69 73 20 70 72 | rt.500.(IKE).URL.Filtering.is.pr |
| 142be0 | 6f 76 69 64 65 64 20 62 79 20 53 71 75 69 64 47 75 61 72 64 5f 2e 00 55 52 4c 20 66 69 6c 74 65 | ovided.by.SquidGuard_..URL.filte |
| 142c00 | 72 69 6e 67 00 55 52 4c 20 77 69 74 68 20 73 69 67 6e 61 74 75 72 65 20 6f 66 20 6d 61 73 74 65 | ring.URL.with.signature.of.maste |
| 142c20 | 72 20 66 6f 72 20 61 75 74 68 20 72 65 70 6c 79 20 76 65 72 69 66 69 63 61 74 69 6f 6e 00 55 53 | r.for.auth.reply.verification.US |
| 142c40 | 42 20 74 6f 20 73 65 72 69 61 6c 20 63 6f 6e 76 65 72 74 65 72 73 20 77 69 6c 6c 20 68 61 6e 64 | B.to.serial.converters.will.hand |
| 142c60 | 6c 65 20 6d 6f 73 74 20 6f 66 20 74 68 65 69 72 20 77 6f 72 6b 20 69 6e 20 73 6f 66 74 77 61 72 | le.most.of.their.work.in.softwar |
| 142c80 | 65 20 73 6f 20 79 6f 75 20 73 68 6f 75 6c 64 20 62 65 20 63 61 72 65 66 75 6c 6c 20 77 69 74 68 | e.so.you.should.be.carefull.with |
| 142ca0 | 20 74 68 65 20 73 65 6c 65 63 74 65 64 20 62 61 75 64 72 61 74 65 20 61 73 20 73 6f 6d 65 20 74 | .the.selected.baudrate.as.some.t |
| 142cc0 | 69 6d 65 73 20 74 68 65 79 20 63 61 6e 27 74 20 63 6f 70 65 20 77 69 74 68 20 74 68 65 20 65 78 | imes.they.can't.cope.with.the.ex |
| 142ce0 | 70 65 63 74 65 64 20 73 70 65 65 64 2e 00 55 55 43 50 20 73 75 62 73 79 73 74 65 6d 00 55 6e 64 | pected.speed..UUCP.subsystem.Und |
| 142d00 | 65 72 20 73 6f 6d 65 20 63 69 72 63 75 6d 73 74 61 6e 63 65 73 2c 20 4c 52 4f 20 69 73 20 6b 6e | er.some.circumstances,.LRO.is.kn |
| 142d20 | 6f 77 6e 20 74 6f 20 6d 6f 64 69 66 79 20 74 68 65 20 70 61 63 6b 65 74 20 68 65 61 64 65 72 73 | own.to.modify.the.packet.headers |
| 142d40 | 20 6f 66 20 66 6f 72 77 61 72 64 65 64 20 74 72 61 66 66 69 63 2c 20 77 68 69 63 68 20 62 72 65 | .of.forwarded.traffic,.which.bre |
| 142d60 | 61 6b 73 20 74 68 65 20 65 6e 64 2d 74 6f 2d 65 6e 64 20 70 72 69 6e 63 69 70 6c 65 20 6f 66 20 | aks.the.end-to-end.principle.of. |
| 142d80 | 63 6f 6d 70 75 74 65 72 20 6e 65 74 77 6f 72 6b 69 6e 67 2e 20 4c 52 4f 20 69 73 20 61 6c 73 6f | computer.networking..LRO.is.also |
| 142da0 | 20 6f 6e 6c 79 20 61 62 6c 65 20 74 6f 20 6f 66 66 6c 6f 61 64 20 54 43 50 20 73 65 67 6d 65 6e | .only.able.to.offload.TCP.segmen |
| 142dc0 | 74 73 20 65 6e 63 61 70 73 75 6c 61 74 65 64 20 69 6e 20 49 50 76 34 20 70 61 63 6b 65 74 73 2e | ts.encapsulated.in.IPv4.packets. |
| 142de0 | 20 44 75 65 20 74 6f 20 74 68 65 73 65 20 6c 69 6d 69 74 61 74 69 6f 6e 73 2c 20 69 74 20 69 73 | .Due.to.these.limitations,.it.is |
| 142e00 | 20 72 65 63 6f 6d 6d 65 6e 64 65 64 20 74 6f 20 75 73 65 20 47 52 4f 20 28 47 65 6e 65 72 69 63 | .recommended.to.use.GRO.(Generic |
| 142e20 | 20 52 65 63 65 69 76 65 20 4f 66 66 6c 6f 61 64 29 20 77 68 65 72 65 20 70 6f 73 73 69 62 6c 65 | .Receive.Offload).where.possible |
| 142e40 | 2e 20 4d 6f 72 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 6e 20 74 68 65 20 6c 69 6d 69 74 61 | ..More.information.on.the.limita |
| 142e60 | 74 69 6f 6e 73 20 6f 66 20 4c 52 4f 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 68 65 72 65 3a 20 | tions.of.LRO.can.be.found.here:. |
| 142e80 | 68 74 74 70 73 3a 2f 2f 6c 77 6e 2e 6e 65 74 2f 41 72 74 69 63 6c 65 73 2f 33 35 38 39 31 30 2f | https://lwn.net/Articles/358910/ |
| 142ea0 | 00 55 6e 69 63 61 73 74 00 55 6e 69 63 61 73 74 20 56 52 52 50 00 55 6e 69 63 61 73 74 20 56 58 | .Unicast.Unicast.VRRP.Unicast.VX |
| 142ec0 | 4c 41 4e 00 55 6e 69 74 20 6f 66 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 4d 42 2e 00 | LAN.Unit.of.this.command.is.MB.. |
| 142ee0 | 55 6e 69 74 73 00 55 6e 74 69 6c 20 56 79 4f 53 20 31 2e 34 2c 20 74 68 65 20 6f 6e 6c 79 20 6f | Units.Until.VyOS.1.4,.the.only.o |
| 142f00 | 70 74 69 6f 6e 20 66 6f 72 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 4f 70 65 6e 56 50 4e 20 77 | ption.for.site-to-site.OpenVPN.w |
| 142f20 | 69 74 68 6f 75 74 20 50 4b 49 20 77 61 73 20 74 6f 20 75 73 65 20 70 72 65 2d 73 68 61 72 65 64 | ithout.PKI.was.to.use.pre-shared |
| 142f40 | 20 6b 65 79 73 2e 20 54 68 61 74 20 6f 70 74 69 6f 6e 20 69 73 20 73 74 69 6c 6c 20 61 76 61 69 | .keys..That.option.is.still.avai |
| 142f60 | 6c 61 62 6c 65 20 62 75 74 20 69 74 20 69 73 20 64 65 70 72 65 63 61 74 65 64 20 61 6e 64 20 77 | lable.but.it.is.deprecated.and.w |
| 142f80 | 69 6c 6c 20 62 65 20 72 65 6d 6f 76 65 64 20 69 6e 20 74 68 65 20 66 75 74 75 72 65 2e 20 48 6f | ill.be.removed.in.the.future..Ho |
| 142fa0 | 77 65 76 65 72 2c 20 69 66 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 73 65 74 20 75 70 20 61 20 74 | wever,.if.you.need.to.set.up.a.t |
| 142fc0 | 75 6e 6e 65 6c 20 74 6f 20 61 6e 20 6f 6c 64 65 72 20 56 79 4f 53 20 76 65 72 73 69 6f 6e 20 6f | unnel.to.an.older.VyOS.version.o |
| 142fe0 | 72 20 61 20 73 79 73 74 65 6d 20 77 69 74 68 20 6f 6c 64 65 72 20 4f 70 65 6e 56 50 4e 2c 20 79 | r.a.system.with.older.OpenVPN,.y |
| 143000 | 6f 75 20 6e 65 65 64 20 74 6f 20 73 74 69 6c 6c 20 6e 65 65 64 20 74 6f 20 6b 6e 6f 77 20 68 6f | ou.need.to.still.need.to.know.ho |
| 143020 | 77 20 74 6f 20 75 73 65 20 69 74 2e 00 55 70 20 74 6f 20 73 65 76 65 6e 20 71 75 65 75 65 73 20 | w.to.use.it..Up.to.seven.queues. |
| 143040 | 2d 64 65 66 69 6e 65 64 20 61 73 20 63 6c 61 73 73 65 73 5f 20 77 69 74 68 20 64 69 66 66 65 72 | -defined.as.classes_.with.differ |
| 143060 | 65 6e 74 20 70 72 69 6f 72 69 74 69 65 73 2d 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 | ent.priorities-.can.be.configure |
| 143080 | 64 2e 20 50 61 63 6b 65 74 73 20 61 72 65 20 70 6c 61 63 65 64 20 69 6e 74 6f 20 71 75 65 75 65 | d..Packets.are.placed.into.queue |
| 1430a0 | 73 20 62 61 73 65 64 20 6f 6e 20 61 73 73 6f 63 69 61 74 65 64 20 6d 61 74 63 68 20 63 72 69 74 | s.based.on.associated.match.crit |
| 1430c0 | 65 72 69 61 2e 20 50 61 63 6b 65 74 73 20 61 72 65 20 74 72 61 6e 73 6d 69 74 74 65 64 20 66 72 | eria..Packets.are.transmitted.fr |
| 1430e0 | 6f 6d 20 74 68 65 20 71 75 65 75 65 73 20 69 6e 20 70 72 69 6f 72 69 74 79 20 6f 72 64 65 72 2e | om.the.queues.in.priority.order. |
| 143100 | 20 49 66 20 63 6c 61 73 73 65 73 20 77 69 74 68 20 61 20 68 69 67 68 65 72 20 70 72 69 6f 72 69 | .If.classes.with.a.higher.priori |
| 143120 | 74 79 20 61 72 65 20 62 65 69 6e 67 20 66 69 6c 6c 65 64 20 77 69 74 68 20 70 61 63 6b 65 74 73 | ty.are.being.filled.with.packets |
| 143140 | 20 63 6f 6e 74 69 6e 75 6f 75 73 6c 79 2c 20 70 61 63 6b 65 74 73 20 66 72 6f 6d 20 6c 6f 77 65 | .continuously,.packets.from.lowe |
| 143160 | 72 20 70 72 69 6f 72 69 74 79 20 63 6c 61 73 73 65 73 20 77 69 6c 6c 20 6f 6e 6c 79 20 62 65 20 | r.priority.classes.will.only.be. |
| 143180 | 74 72 61 6e 73 6d 69 74 74 65 64 20 61 66 74 65 72 20 74 72 61 66 66 69 63 20 76 6f 6c 75 6d 65 | transmitted.after.traffic.volume |
| 1431a0 | 20 66 72 6f 6d 20 68 69 67 68 65 72 20 70 72 69 6f 72 69 74 79 20 63 6c 61 73 73 65 73 20 64 65 | .from.higher.priority.classes.de |
| 1431c0 | 63 72 65 61 73 65 73 2e 00 55 70 64 61 74 65 00 55 70 64 61 74 65 20 63 6f 6e 74 61 69 6e 65 72 | creases..Update.Update.container |
| 1431e0 | 20 69 6d 61 67 65 00 55 70 64 61 74 65 20 67 65 6f 69 70 20 64 61 74 61 62 61 73 65 00 55 70 64 | .image.Update.geoip.database.Upd |
| 143200 | 61 74 65 73 00 55 70 64 61 74 65 73 20 66 72 6f 6d 20 74 68 65 20 52 50 4b 49 20 63 61 63 68 65 | ates.Updates.from.the.RPKI.cache |
| 143220 | 20 73 65 72 76 65 72 73 20 61 72 65 20 64 69 72 65 63 74 6c 79 20 61 70 70 6c 69 65 64 20 61 6e | .servers.are.directly.applied.an |
| 143240 | 64 20 70 61 74 68 20 73 65 6c 65 63 74 69 6f 6e 20 69 73 20 75 70 64 61 74 65 64 20 61 63 63 6f | d.path.selection.is.updated.acco |
| 143260 | 72 64 69 6e 67 6c 79 2e 20 28 53 6f 66 74 20 72 65 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d | rdingly..(Soft.reconfiguration.m |
| 143280 | 75 73 74 20 62 65 20 65 6e 61 62 6c 65 64 20 66 6f 72 20 74 68 69 73 20 74 6f 20 77 6f 72 6b 29 | ust.be.enabled.for.this.to.work) |
| 1432a0 | 2e 00 55 70 6c 69 6e 6b 2f 43 6f 72 65 20 74 72 61 63 6b 69 6e 67 2e 00 55 70 6c 6f 61 64 20 62 | ..Uplink/Core.tracking..Upload.b |
| 1432c0 | 61 6e 64 77 69 64 74 68 20 6c 69 6d 69 74 20 69 6e 20 6b 62 69 74 2f 73 20 66 6f 72 20 60 3c 75 | andwidth.limit.in.kbit/s.for.`<u |
| 1432e0 | 73 65 72 3e 60 2e 00 55 70 6c 6f 61 64 20 62 61 6e 64 77 69 64 74 68 20 6c 69 6d 69 74 20 69 6e | ser>`..Upload.bandwidth.limit.in |
| 143300 | 20 6b 62 69 74 2f 73 20 66 6f 72 20 66 6f 72 20 75 73 65 72 20 6f 6e 20 69 6e 74 65 72 66 61 63 | .kbit/s.for.for.user.on.interfac |
| 143320 | 65 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 2e 00 55 70 6f 6e 20 72 65 63 65 70 74 69 6f 6e 20 | e.`<interface>`..Upon.reception. |
| 143340 | 6f 66 20 61 6e 20 69 6e 63 6f 6d 69 6e 67 20 70 61 63 6b 65 74 2c 20 77 68 65 6e 20 61 20 72 65 | of.an.incoming.packet,.when.a.re |
| 143360 | 73 70 6f 6e 73 65 20 69 73 20 73 65 6e 74 2c 20 69 74 20 6d 69 67 68 74 20 62 65 20 64 65 73 69 | sponse.is.sent,.it.might.be.desi |
| 143380 | 72 65 64 20 74 6f 20 65 6e 73 75 72 65 20 74 68 61 74 20 69 74 20 6c 65 61 76 65 73 20 66 72 6f | red.to.ensure.that.it.leaves.fro |
| 1433a0 | 6d 20 74 68 65 20 73 61 6d 65 20 69 6e 74 65 72 66 61 63 65 20 61 73 20 74 68 65 20 69 6e 62 6f | m.the.same.interface.as.the.inbo |
| 1433c0 | 75 6e 64 20 6f 6e 65 2e 20 54 68 69 73 20 63 61 6e 20 62 65 20 61 63 68 69 65 76 65 64 20 62 79 | und.one..This.can.be.achieved.by |
| 1433e0 | 20 65 6e 61 62 6c 69 6e 67 20 73 74 69 63 6b 79 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 69 6e 20 | .enabling.sticky.connections.in. |
| 143400 | 74 68 65 20 6c 6f 61 64 20 62 61 6c 61 6e 63 69 6e 67 3a 00 55 70 6f 6e 20 73 68 75 74 64 6f 77 | the.load.balancing:.Upon.shutdow |
| 143420 | 6e 2c 20 74 68 69 73 20 6f 70 74 69 6f 6e 20 77 69 6c 6c 20 64 65 70 72 65 63 61 74 65 20 74 68 | n,.this.option.will.deprecate.th |
| 143440 | 65 20 70 72 65 66 69 78 20 62 79 20 61 6e 6e 6f 75 6e 63 69 6e 67 20 69 74 20 69 6e 20 74 68 65 | e.prefix.by.announcing.it.in.the |
| 143460 | 20 73 68 75 74 64 6f 77 6e 20 52 41 00 55 73 61 62 6c 65 20 50 6f 72 74 73 20 2f 20 50 6f 72 74 | .shutdown.RA.Usable.Ports./.Port |
| 143480 | 73 20 70 65 72 20 53 75 62 73 63 72 69 62 65 72 00 55 73 61 62 6c 65 20 50 6f 72 74 73 3a 20 36 | s.per.Subscriber.Usable.Ports:.6 |
| 1434a0 | 35 35 33 36 20 2d 20 31 30 32 34 20 3d 20 36 34 35 31 32 00 55 73 65 20 38 30 32 2e 31 31 61 78 | 5536.-.1024.=.64512.Use.802.11ax |
| 1434c0 | 20 70 72 6f 74 6f 63 6f 6c 00 55 73 65 20 38 30 32 2e 31 31 6e 20 70 72 6f 74 6f 63 6f 6c 00 55 | .protocol.Use.802.11n.protocol.U |
| 1434e0 | 73 65 20 3a 61 62 62 72 3a 60 44 48 20 28 44 69 66 66 69 65 e2 80 93 48 65 6c 6c 6d 61 6e 29 60 | se.:abbr:`DH.(Diffie...Hellman)` |
| 143500 | 20 70 61 72 61 6d 65 74 65 72 73 20 66 72 6f 6d 20 50 4b 49 20 73 75 62 73 79 73 74 65 6d 2e 20 | .parameters.from.PKI.subsystem.. |
| 143520 | 4d 75 73 74 20 62 65 20 61 74 20 6c 65 61 73 74 20 32 30 34 38 20 62 69 74 73 20 69 6e 20 6c 65 | Must.be.at.least.2048.bits.in.le |
| 143540 | 6e 67 74 68 2e 00 55 73 65 20 43 41 20 63 65 72 74 69 66 69 63 61 74 65 20 66 72 6f 6d 20 50 4b | ngth..Use.CA.certificate.from.PK |
| 143560 | 49 20 73 75 62 73 79 73 74 65 6d 00 55 73 65 20 44 79 6e 44 4e 53 20 61 73 20 79 6f 75 72 20 70 | I.subsystem.Use.DynDNS.as.your.p |
| 143580 | 72 65 66 65 72 72 65 64 20 70 72 6f 76 69 64 65 72 3a 00 55 73 65 20 49 50 20 66 69 72 65 77 61 | referred.provider:.Use.IP.firewa |
| 1435a0 | 6c 6c 00 55 73 65 20 54 4c 53 20 62 75 74 20 73 6b 69 70 20 68 6f 73 74 20 76 61 6c 69 64 61 74 | ll.Use.TLS.but.skip.host.validat |
| 1435c0 | 69 6f 6e 00 55 73 65 20 54 4c 53 20 65 6e 63 72 79 70 74 69 6f 6e 2e 00 55 73 65 20 60 3c 73 75 | ion.Use.TLS.encryption..Use.`<su |
| 1435e0 | 62 6e 65 74 3e 60 20 61 73 20 74 68 65 20 49 50 20 70 6f 6f 6c 20 66 6f 72 20 61 6c 6c 20 63 6f | bnet>`.as.the.IP.pool.for.all.co |
| 143600 | 6e 6e 65 63 74 69 6e 67 20 63 6c 69 65 6e 74 73 2e 00 55 73 65 20 60 60 73 68 6f 77 20 6c 6f 67 | nnecting.clients..Use.``show.log |
| 143620 | 20 7c 20 73 74 72 69 70 2d 70 72 69 76 61 74 65 60 60 20 69 66 20 79 6f 75 20 77 61 6e 74 20 74 | .|.strip-private``.if.you.want.t |
| 143640 | 6f 20 68 69 64 65 20 70 72 69 76 61 74 65 20 64 61 74 61 20 77 68 65 6e 20 73 68 61 72 69 6e 67 | o.hide.private.data.when.sharing |
| 143660 | 20 79 6f 75 72 20 6c 6f 67 73 2e 00 55 73 65 20 60 64 65 6c 65 74 65 20 73 79 73 74 65 6d 20 63 | .your.logs..Use.`delete.system.c |
| 143680 | 6f 6e 6e 74 72 61 63 6b 20 6d 6f 64 75 6c 65 73 60 20 74 6f 20 64 65 61 63 74 69 76 65 20 61 6c | onntrack.modules`.to.deactive.al |
| 1436a0 | 6c 20 6d 6f 64 75 6c 65 73 2e 00 55 73 65 20 61 20 70 65 72 73 69 73 74 65 6e 74 20 4c 44 41 50 | l.modules..Use.a.persistent.LDAP |
| 1436c0 | 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 20 4e 6f 72 6d 61 6c 6c 79 20 74 68 65 20 4c 44 41 50 20 63 | .connection..Normally.the.LDAP.c |
| 1436e0 | 6f 6e 6e 65 63 74 69 6f 6e 20 69 73 20 6f 6e 6c 79 20 6f 70 65 6e 20 77 68 69 6c 65 20 76 61 6c | onnection.is.only.open.while.val |
| 143700 | 69 64 61 74 69 6e 67 20 61 20 75 73 65 72 6e 61 6d 65 20 74 6f 20 70 72 65 73 65 72 76 65 20 72 | idating.a.username.to.preserve.r |
| 143720 | 65 73 6f 75 72 63 65 73 20 61 74 20 74 68 65 20 4c 44 41 50 20 73 65 72 76 65 72 2e 20 54 68 69 | esources.at.the.LDAP.server..Thi |
| 143740 | 73 20 6f 70 74 69 6f 6e 20 63 61 75 73 65 73 20 74 68 65 20 4c 44 41 50 20 63 6f 6e 6e 65 63 74 | s.option.causes.the.LDAP.connect |
| 143760 | 69 6f 6e 20 74 6f 20 62 65 20 6b 65 70 74 20 6f 70 65 6e 2c 20 61 6c 6c 6f 77 69 6e 67 20 69 74 | ion.to.be.kept.open,.allowing.it |
| 143780 | 20 74 6f 20 62 65 20 72 65 75 73 65 64 20 66 6f 72 20 66 75 72 74 68 65 72 20 75 73 65 72 20 76 | .to.be.reused.for.further.user.v |
| 1437a0 | 61 6c 69 64 61 74 69 6f 6e 73 2e 00 55 73 65 20 61 20 73 70 65 63 69 66 69 63 20 61 64 64 72 65 | alidations..Use.a.specific.addre |
| 1437c0 | 73 73 2d 67 72 6f 75 70 2e 20 50 72 65 70 65 6e 64 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 | ss-group..Prepend.character.``!` |
| 1437e0 | 60 20 66 6f 72 20 69 6e 76 65 72 74 65 64 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 | `.for.inverted.matching.criteria |
| 143800 | 2e 00 55 73 65 20 61 20 73 70 65 63 69 66 69 63 20 61 64 64 72 65 73 73 2d 67 72 6f 75 70 2e 20 | ..Use.a.specific.address-group.. |
| 143820 | 50 72 65 70 65 6e 64 69 6e 67 20 74 68 65 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 74 | Prepending.the.character.``!``.t |
| 143840 | 6f 20 69 6e 76 65 72 74 20 74 68 65 20 63 72 69 74 65 72 69 61 20 74 6f 20 6d 61 74 63 68 20 69 | o.invert.the.criteria.to.match.i |
| 143860 | 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 00 55 73 65 20 61 20 73 70 65 63 69 66 69 63 | s.also.supported..Use.a.specific |
| 143880 | 20 64 6f 6d 61 69 6e 2d 67 72 6f 75 70 2e 20 50 72 65 70 65 6e 64 20 63 68 61 72 61 63 74 65 72 | .domain-group..Prepend.character |
| 1438a0 | 20 60 60 21 60 60 20 66 6f 72 20 69 6e 76 65 72 74 65 64 20 6d 61 74 63 68 69 6e 67 20 63 72 69 | .``!``.for.inverted.matching.cri |
| 1438c0 | 74 65 72 69 61 2e 00 55 73 65 20 61 20 73 70 65 63 69 66 69 63 20 64 6f 6d 61 69 6e 2d 67 72 6f | teria..Use.a.specific.domain-gro |
| 1438e0 | 75 70 2e 20 50 72 65 70 65 6e 64 69 6e 67 20 74 68 65 20 63 68 61 72 61 63 74 65 72 20 60 60 21 | up..Prepending.the.character.``! |
| 143900 | 60 60 20 74 6f 20 69 6e 76 65 72 74 20 74 68 65 20 63 72 69 74 65 72 69 61 20 74 6f 20 6d 61 74 | ``.to.invert.the.criteria.to.mat |
| 143920 | 63 68 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 00 55 73 65 20 61 20 73 70 65 63 | ch.is.also.supported..Use.a.spec |
| 143940 | 69 66 69 63 20 64 79 6e 61 6d 69 63 2d 61 64 64 72 65 73 73 2d 67 72 6f 75 70 2e 20 50 72 65 70 | ific.dynamic-address-group..Prep |
| 143960 | 65 6e 64 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 66 6f 72 20 69 6e 76 65 72 74 65 64 | end.character.``!``.for.inverted |
| 143980 | 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 2e 00 55 73 65 20 61 20 73 70 65 63 69 66 | .matching.criteria..Use.a.specif |
| 1439a0 | 69 63 20 64 79 6e 61 6d 69 63 2d 61 64 64 72 65 73 73 2d 67 72 6f 75 70 2e 20 50 72 65 70 65 6e | ic.dynamic-address-group..Prepen |
| 1439c0 | 64 69 6e 67 20 74 68 65 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 74 6f 20 69 6e 76 65 | ding.the.character.``!``.to.inve |
| 1439e0 | 72 74 20 74 68 65 20 63 72 69 74 65 72 69 61 20 74 6f 20 6d 61 74 63 68 20 69 73 20 61 6c 73 6f | rt.the.criteria.to.match.is.also |
| 143a00 | 20 73 75 70 70 6f 72 74 65 64 2e 00 55 73 65 20 61 20 73 70 65 63 69 66 69 63 20 6d 61 63 2d 67 | .supported..Use.a.specific.mac-g |
| 143a20 | 72 6f 75 70 2e 20 50 72 65 70 65 6e 64 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 66 6f | roup..Prepend.character.``!``.fo |
| 143a40 | 72 20 69 6e 76 65 72 74 65 64 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 2e 00 55 73 | r.inverted.matching.criteria..Us |
| 143a60 | 65 20 61 20 73 70 65 63 69 66 69 63 20 6d 61 63 2d 67 72 6f 75 70 2e 20 50 72 65 70 65 6e 64 69 | e.a.specific.mac-group..Prependi |
| 143a80 | 6e 67 20 74 68 65 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 74 6f 20 69 6e 76 65 72 74 | ng.the.character.``!``.to.invert |
| 143aa0 | 20 74 68 65 20 63 72 69 74 65 72 69 61 20 74 6f 20 6d 61 74 63 68 20 69 73 20 61 6c 73 6f 20 73 | .the.criteria.to.match.is.also.s |
| 143ac0 | 75 70 70 6f 72 74 65 64 2e 00 55 73 65 20 61 20 73 70 65 63 69 66 69 63 20 6e 65 74 77 6f 72 6b | upported..Use.a.specific.network |
| 143ae0 | 2d 67 72 6f 75 70 2e 20 50 72 65 70 65 6e 64 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 | -group..Prepend.character.``!``. |
| 143b00 | 66 6f 72 20 69 6e 76 65 72 74 65 64 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 2e 00 | for.inverted.matching.criteria.. |
| 143b20 | 55 73 65 20 61 20 73 70 65 63 69 66 69 63 20 6e 65 74 77 6f 72 6b 2d 67 72 6f 75 70 2e 20 50 72 | Use.a.specific.network-group..Pr |
| 143b40 | 65 70 65 6e 64 69 6e 67 20 74 68 65 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 74 6f 20 | epending.the.character.``!``.to. |
| 143b60 | 69 6e 76 65 72 74 20 74 68 65 20 63 72 69 74 65 72 69 61 20 74 6f 20 6d 61 74 63 68 20 69 73 20 | invert.the.criteria.to.match.is. |
| 143b80 | 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 00 55 73 65 20 61 20 73 70 65 63 69 66 69 63 20 70 | also.supported..Use.a.specific.p |
| 143ba0 | 6f 72 74 2d 67 72 6f 75 70 2e 20 50 72 65 70 65 6e 64 20 63 68 61 72 61 63 74 65 72 20 60 60 21 | ort-group..Prepend.character.``! |
| 143bc0 | 60 60 20 66 6f 72 20 69 6e 76 65 72 74 65 64 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 | ``.for.inverted.matching.criteri |
| 143be0 | 61 2e 00 55 73 65 20 61 20 73 70 65 63 69 66 69 63 20 70 6f 72 74 2d 67 72 6f 75 70 2e 20 50 72 | a..Use.a.specific.port-group..Pr |
| 143c00 | 65 70 65 6e 64 69 6e 67 20 74 68 65 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 74 6f 20 | epending.the.character.``!``.to. |
| 143c20 | 69 6e 76 65 72 74 20 74 68 65 20 63 72 69 74 65 72 69 61 20 74 6f 20 6d 61 74 63 68 20 69 73 20 | invert.the.criteria.to.match.is. |
| 143c40 | 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 00 55 73 65 20 61 63 74 69 76 65 2d 61 63 74 69 76 | also.supported..Use.active-activ |
| 143c60 | 65 20 48 41 20 6d 6f 64 65 2e 00 55 73 65 20 61 64 64 72 65 73 73 20 60 6d 61 73 71 75 65 72 61 | e.HA.mode..Use.address.`masquera |
| 143c80 | 64 65 60 20 28 74 68 65 20 69 6e 74 65 72 66 61 63 65 73 20 70 72 69 6d 61 72 79 20 61 64 64 72 | de`.(the.interfaces.primary.addr |
| 143ca0 | 65 73 73 29 20 6f 6e 20 72 75 6c 65 20 33 30 00 55 73 65 20 61 6e 20 61 75 74 6f 6d 61 74 69 63 | ess).on.rule.30.Use.an.automatic |
| 143cc0 | 61 6c 6c 79 20 67 65 6e 65 72 61 74 65 64 20 73 65 6c 66 2d 73 69 67 6e 65 64 20 63 65 72 74 69 | ally.generated.self-signed.certi |
| 143ce0 | 66 69 63 61 74 65 00 55 73 65 20 61 6e 79 20 6c 6f 63 61 6c 20 61 64 64 72 65 73 73 2c 20 63 6f | ficate.Use.any.local.address,.co |
| 143d00 | 6e 66 69 67 75 72 65 64 20 6f 6e 20 61 6e 79 20 69 6e 74 65 72 66 61 63 65 20 69 66 20 74 68 69 | nfigured.on.any.interface.if.thi |
| 143d20 | 73 20 69 73 20 6e 6f 74 20 73 65 74 2e 00 55 73 65 20 61 75 74 68 20 6b 65 79 20 66 69 6c 65 20 | s.is.not.set..Use.auth.key.file. |
| 143d40 | 61 74 20 60 60 2f 63 6f 6e 66 69 67 2f 61 75 74 68 2f 6d 79 2e 6b 65 79 60 60 00 55 73 65 20 63 | at.``/config/auth/my.key``.Use.c |
| 143d60 | 65 72 74 69 66 69 63 61 74 65 20 66 72 6f 6d 20 50 4b 49 20 73 75 62 73 79 73 74 65 6d 00 55 73 | ertificate.from.PKI.subsystem.Us |
| 143d80 | 65 20 63 6f 6e 66 69 67 75 72 65 64 20 60 3c 75 72 6c 3e 60 20 74 6f 20 64 65 74 65 72 6d 69 6e | e.configured.`<url>`.to.determin |
| 143da0 | 65 20 79 6f 75 72 20 49 50 20 61 64 64 72 65 73 73 2e 20 64 64 63 6c 69 65 6e 74 5f 20 77 69 6c | e.your.IP.address..ddclient_.wil |
| 143dc0 | 6c 20 6c 6f 61 64 20 60 3c 75 72 6c 3e 60 20 61 6e 64 20 74 72 69 65 73 20 74 6f 20 65 78 74 72 | l.load.`<url>`.and.tries.to.extr |
| 143de0 | 61 63 74 20 79 6f 75 72 20 49 50 20 61 64 64 72 65 73 73 20 66 72 6f 6d 20 74 68 65 20 72 65 73 | act.your.IP.address.from.the.res |
| 143e00 | 70 6f 6e 73 65 2e 00 55 73 65 20 64 65 53 45 43 20 28 64 65 64 79 6e 2e 69 6f 29 20 61 73 20 79 | ponse..Use.deSEC.(dedyn.io).as.y |
| 143e20 | 6f 75 72 20 70 72 65 66 65 72 72 65 64 20 70 72 6f 76 69 64 65 72 3a 00 55 73 65 20 69 6e 76 65 | our.preferred.provider:.Use.inve |
| 143e40 | 72 73 65 2d 6d 61 74 63 68 20 74 6f 20 6d 61 74 63 68 20 61 6e 79 74 68 69 6e 67 20 65 78 63 65 | rse-match.to.match.anything.exce |
| 143e60 | 70 74 20 74 68 65 20 67 69 76 65 6e 20 63 6f 75 6e 74 72 79 2d 63 6f 64 65 73 2e 00 55 73 65 20 | pt.the.given.country-codes..Use. |
| 143e80 | 6c 6f 63 61 6c 20 73 6f 63 6b 65 74 20 66 6f 72 20 41 50 49 00 55 73 65 20 6c 6f 63 61 6c 20 75 | local.socket.for.API.Use.local.u |
| 143ea0 | 73 65 72 20 60 66 6f 6f 60 20 77 69 74 68 20 70 61 73 73 77 6f 72 64 20 60 62 61 72 60 00 55 73 | ser.`foo`.with.password.`bar`.Us |
| 143ec0 | 65 20 74 61 62 20 63 6f 6d 70 6c 65 74 69 6f 6e 20 74 6f 20 67 65 74 20 61 20 6c 69 73 74 20 6f | e.tab.completion.to.get.a.list.o |
| 143ee0 | 66 20 63 61 74 65 67 6f 72 69 65 73 2e 00 55 73 65 20 74 68 65 20 51 52 20 63 6f 64 65 20 74 6f | f.categories..Use.the.QR.code.to |
| 143f00 | 20 61 64 64 20 74 68 65 20 75 73 65 72 20 61 63 63 6f 75 6e 74 20 69 6e 20 47 6f 6f 67 6c 65 20 | .add.the.user.account.in.Google. |
| 143f20 | 61 75 74 68 65 6e 74 69 63 61 74 6f 72 20 61 70 70 6c 69 63 61 74 69 6f 6e 20 61 6e 64 20 6f 6e | authenticator.application.and.on |
| 143f40 | 20 63 6c 69 65 6e 74 20 73 69 64 65 2c 20 75 73 65 20 74 68 65 20 4f 54 50 20 6e 75 6d 62 65 72 | .client.side,.use.the.OTP.number |
| 143f60 | 20 61 73 20 70 61 73 73 77 6f 72 64 2e 00 55 73 65 20 74 68 65 20 61 64 64 72 65 73 73 20 6f 66 | .as.password..Use.the.address.of |
| 143f80 | 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 69 6e 74 65 72 66 61 63 65 20 6f 6e 20 74 68 65 20 | .the.specified.interface.on.the. |
| 143fa0 | 6c 6f 63 61 6c 20 6d 61 63 68 69 6e 65 20 61 73 20 74 68 65 20 73 6f 75 72 63 65 20 61 64 64 72 | local.machine.as.the.source.addr |
| 143fc0 | 65 73 73 20 6f 66 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 55 73 65 20 74 68 65 20 66 | ess.of.the.connection..Use.the.f |
| 143fe0 | 6f 6c 6c 6f 77 69 6e 67 20 74 6f 70 6f 6c 6f 67 79 20 74 6f 20 62 75 69 6c 64 20 61 20 6e 61 74 | ollowing.topology.to.build.a.nat |
| 144000 | 36 36 20 62 61 73 65 64 20 69 73 6f 6c 61 74 65 64 20 6e 65 74 77 6f 72 6b 20 62 65 74 77 65 65 | 66.based.isolated.network.betwee |
| 144020 | 6e 20 69 6e 74 65 72 6e 61 6c 20 61 6e 64 20 65 78 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 73 | n.internal.and.external.networks |
| 144040 | 20 28 64 79 6e 61 6d 69 63 20 70 72 65 66 69 78 20 69 73 20 6e 6f 74 20 73 75 70 70 6f 72 74 65 | .(dynamic.prefix.is.not.supporte |
| 144060 | 64 29 3a 00 55 73 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 74 6f 70 6f 6c 6f 67 79 20 74 | d):.Use.the.following.topology.t |
| 144080 | 6f 20 74 72 61 6e 73 6c 61 74 65 20 69 6e 74 65 72 6e 61 6c 20 75 73 65 72 20 6c 6f 63 61 6c 20 | o.translate.internal.user.local. |
| 1440a0 | 61 64 64 72 65 73 73 65 73 20 28 60 60 66 63 3a 3a 2f 37 60 60 29 20 74 6f 20 44 48 43 50 76 36 | addresses.(``fc::/7``).to.DHCPv6 |
| 1440c0 | 2d 50 44 20 70 72 6f 76 69 64 65 64 20 70 72 65 66 69 78 65 73 20 66 72 6f 6d 20 61 6e 20 49 53 | -PD.provided.prefixes.from.an.IS |
| 1440e0 | 50 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 61 20 56 79 4f 53 20 48 41 20 70 61 69 72 2e 00 55 | P.connected.to.a.VyOS.HA.pair..U |
| 144100 | 73 65 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 61 64 64 72 65 73 73 20 6f 6e 20 74 68 65 20 | se.the.specified.address.on.the. |
| 144120 | 6c 6f 63 61 6c 20 6d 61 63 68 69 6e 65 20 61 73 20 74 68 65 20 73 6f 75 72 63 65 20 61 64 64 72 | local.machine.as.the.source.addr |
| 144140 | 65 73 73 20 6f 66 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 20 4f 6e 6c 79 20 75 73 65 66 | ess.of.the.connection..Only.usef |
| 144160 | 75 6c 20 6f 6e 20 73 79 73 74 65 6d 73 20 77 69 74 68 20 6d 6f 72 65 20 74 68 61 6e 20 6f 6e 65 | ul.on.systems.with.more.than.one |
| 144180 | 20 61 64 64 72 65 73 73 2e 00 55 73 65 20 74 68 65 73 65 20 63 6f 6d 6d 61 6e 64 73 20 69 66 20 | .address..Use.these.commands.if. |
| 1441a0 | 79 6f 75 20 77 6f 75 6c 64 20 6c 69 6b 65 20 74 6f 20 73 65 74 20 74 68 65 20 64 69 73 63 6f 76 | you.would.like.to.set.the.discov |
| 1441c0 | 65 72 79 20 68 65 6c 6c 6f 20 61 6e 64 20 68 6f 6c 64 20 74 69 6d 65 20 70 61 72 61 6d 65 74 65 | ery.hello.and.hold.time.paramete |
| 1441e0 | 72 73 20 66 6f 72 20 74 68 65 20 74 61 72 67 65 74 65 64 20 4c 44 50 20 6e 65 69 67 68 62 6f 72 | rs.for.the.targeted.LDP.neighbor |
| 144200 | 73 2e 00 55 73 65 20 74 68 65 73 65 20 63 6f 6d 6d 61 6e 64 73 20 69 66 20 79 6f 75 20 77 6f 75 | s..Use.these.commands.if.you.wou |
| 144220 | 6c 64 20 6c 69 6b 65 20 74 6f 20 73 65 74 20 74 68 65 20 64 69 73 63 6f 76 65 72 79 20 68 65 6c | ld.like.to.set.the.discovery.hel |
| 144240 | 6c 6f 20 61 6e 64 20 68 6f 6c 64 20 74 69 6d 65 20 70 61 72 61 6d 65 74 65 72 73 2e 00 55 73 65 | lo.and.hold.time.parameters..Use |
| 144260 | 20 74 68 65 73 65 20 63 6f 6d 6d 61 6e 64 73 20 74 6f 20 61 6c 73 6f 20 75 73 65 20 49 50 76 34 | .these.commands.to.also.use.IPv4 |
| 144280 | 2c 20 6f 72 20 49 50 76 36 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 20 66 6f 72 20 62 72 69 | ,.or.IPv6.firewall.rules.for.bri |
| 1442a0 | 64 67 65 64 20 74 72 61 66 66 69 63 00 55 73 65 20 74 68 65 73 65 20 63 6f 6d 6d 61 6e 64 73 20 | dged.traffic.Use.these.commands. |
| 1442c0 | 74 6f 20 63 6f 6e 74 72 6f 6c 20 74 68 65 20 65 78 70 6f 72 74 69 6e 67 20 6f 66 20 66 6f 72 77 | to.control.the.exporting.of.forw |
| 1442e0 | 61 72 64 69 6e 67 20 65 71 75 69 76 61 6c 65 6e 63 65 20 63 6c 61 73 73 65 73 20 28 46 45 43 73 | arding.equivalence.classes.(FECs |
| 144300 | 29 20 66 6f 72 20 4c 44 50 20 74 6f 20 6e 65 69 67 68 62 6f 72 73 2e 20 54 68 69 73 20 77 6f 75 | ).for.LDP.to.neighbors..This.wou |
| 144320 | 6c 64 20 62 65 20 75 73 65 66 75 6c 20 66 6f 72 20 65 78 61 6d 70 6c 65 20 6f 6e 20 6f 6e 6c 79 | ld.be.useful.for.example.on.only |
| 144340 | 20 61 6e 6e 6f 75 6e 63 69 6e 67 20 74 68 65 20 6c 61 62 65 6c 65 64 20 72 6f 75 74 65 73 20 74 | .announcing.the.labeled.routes.t |
| 144360 | 68 61 74 20 61 72 65 20 6e 65 65 64 65 64 20 61 6e 64 20 6e 6f 74 20 6f 6e 65 73 20 74 68 61 74 | hat.are.needed.and.not.ones.that |
| 144380 | 20 61 72 65 20 6e 6f 74 20 6e 65 65 64 65 64 2c 20 73 75 63 68 20 61 73 20 61 6e 6e 6f 75 6e 63 | .are.not.needed,.such.as.announc |
| 1443a0 | 69 6e 67 20 6c 6f 6f 70 62 61 63 6b 20 69 6e 74 65 72 66 61 63 65 73 20 61 6e 64 20 6e 6f 20 6f | ing.loopback.interfaces.and.no.o |
| 1443c0 | 74 68 65 72 73 2e 00 55 73 65 20 74 68 65 73 65 20 63 6f 6d 6d 61 6e 64 73 20 74 6f 20 63 6f 6e | thers..Use.these.commands.to.con |
| 1443e0 | 74 72 6f 6c 20 74 68 65 20 69 6d 70 6f 72 74 69 6e 67 20 6f 66 20 66 6f 72 77 61 72 64 69 6e 67 | trol.the.importing.of.forwarding |
| 144400 | 20 65 71 75 69 76 61 6c 65 6e 63 65 20 63 6c 61 73 73 65 73 20 28 46 45 43 73 29 20 66 6f 72 20 | .equivalence.classes.(FECs).for. |
| 144420 | 4c 44 50 20 66 72 6f 6d 20 6e 65 69 67 68 62 6f 72 73 2e 20 54 68 69 73 20 77 6f 75 6c 64 20 62 | LDP.from.neighbors..This.would.b |
| 144440 | 65 20 75 73 65 66 75 6c 20 66 6f 72 20 65 78 61 6d 70 6c 65 20 6f 6e 20 6f 6e 6c 79 20 61 63 63 | e.useful.for.example.on.only.acc |
| 144460 | 65 70 74 69 6e 67 20 74 68 65 20 6c 61 62 65 6c 65 64 20 72 6f 75 74 65 73 20 74 68 61 74 20 61 | epting.the.labeled.routes.that.a |
| 144480 | 72 65 20 6e 65 65 64 65 64 20 61 6e 64 20 6e 6f 74 20 6f 6e 65 73 20 74 68 61 74 20 61 72 65 20 | re.needed.and.not.ones.that.are. |
| 1444a0 | 6e 6f 74 20 6e 65 65 64 65 64 2c 20 73 75 63 68 20 61 73 20 61 63 63 65 70 74 69 6e 67 20 6c 6f | not.needed,.such.as.accepting.lo |
| 1444c0 | 6f 70 62 61 63 6b 20 69 6e 74 65 72 66 61 63 65 73 20 61 6e 64 20 72 65 6a 65 63 74 69 6e 67 20 | opback.interfaces.and.rejecting. |
| 1444e0 | 61 6c 6c 20 6f 74 68 65 72 73 2e 00 55 73 65 20 74 68 69 73 20 50 49 4d 20 63 6f 6d 6d 61 6e 64 | all.others..Use.this.PIM.command |
| 144500 | 20 69 6e 20 74 68 65 20 73 65 6c 65 63 74 65 64 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 73 65 | .in.the.selected.interface.to.se |
| 144520 | 74 20 74 68 65 20 70 72 69 6f 72 69 74 79 20 28 31 2d 34 32 39 34 39 36 37 32 39 35 29 20 79 6f | t.the.priority.(1-4294967295).yo |
| 144540 | 75 20 77 61 6e 74 20 74 6f 20 69 6e 66 6c 75 65 6e 63 65 20 69 6e 20 74 68 65 20 65 6c 65 63 74 | u.want.to.influence.in.the.elect |
| 144560 | 69 6f 6e 20 6f 66 20 61 20 6e 6f 64 65 20 74 6f 20 62 65 63 6f 6d 65 20 74 68 65 20 44 65 73 69 | ion.of.a.node.to.become.the.Desi |
| 144580 | 67 6e 61 74 65 64 20 52 6f 75 74 65 72 20 66 6f 72 20 61 20 4c 41 4e 20 73 65 67 6d 65 6e 74 2e | gnated.Router.for.a.LAN.segment. |
| 1445a0 | 20 54 68 65 20 64 65 66 61 75 6c 74 20 70 72 69 6f 72 69 74 79 20 69 73 20 31 2c 20 73 65 74 20 | .The.default.priority.is.1,.set. |
| 1445c0 | 61 20 20 68 69 67 68 65 72 20 76 61 6c 75 65 20 74 6f 20 67 69 76 65 20 74 68 65 20 72 6f 75 74 | a..higher.value.to.give.the.rout |
| 1445e0 | 65 72 20 6d 6f 72 65 20 70 72 65 66 65 72 65 6e 63 65 20 69 6e 20 74 68 65 20 44 52 20 65 6c 65 | er.more.preference.in.the.DR.ele |
| 144600 | 63 74 69 6f 6e 20 70 72 6f 63 65 73 73 2e 00 55 73 65 20 74 68 69 73 20 50 49 4d 20 63 6f 6d 6d | ction.process..Use.this.PIM.comm |
| 144620 | 61 6e 64 20 74 6f 20 6d 6f 64 69 66 79 20 74 68 65 20 74 69 6d 65 20 6f 75 74 20 76 61 6c 75 65 | and.to.modify.the.time.out.value |
| 144640 | 20 28 33 31 2d 36 30 30 30 30 20 73 65 63 6f 6e 64 73 29 20 66 6f 72 20 61 6e 20 60 28 53 2c 47 | .(31-60000.seconds).for.an.`(S,G |
| 144660 | 29 20 3c 68 74 74 70 73 3a 2f 2f 74 6f 6f 6c 73 2e 69 65 74 66 2e 6f 72 67 2f 68 74 6d 6c 2f 72 | ).<https://tools.ietf.org/html/r |
| 144680 | 66 63 37 37 36 31 23 73 65 63 74 69 6f 6e 2d 34 2e 31 3e 60 5f 20 66 6c 6f 77 2e 20 33 31 20 73 | fc7761#section-4.1>`_.flow..31.s |
| 1446a0 | 65 63 6f 6e 64 73 20 69 73 20 63 68 6f 73 65 6e 20 66 6f 72 20 61 20 6c 6f 77 65 72 20 62 6f 75 | econds.is.chosen.for.a.lower.bou |
| 1446c0 | 6e 64 20 61 73 20 73 6f 6d 65 20 68 61 72 64 77 61 72 65 20 70 6c 61 74 66 6f 72 6d 73 20 63 61 | nd.as.some.hardware.platforms.ca |
| 1446e0 | 6e 6e 6f 74 20 73 65 65 20 64 61 74 61 20 66 6c 6f 77 69 6e 67 20 69 6e 20 62 65 74 74 65 72 20 | nnot.see.data.flowing.in.better. |
| 144700 | 74 68 61 6e 20 33 30 20 73 65 63 6f 6e 64 73 20 63 68 75 6e 6b 73 2e 00 55 73 65 20 74 68 69 73 | than.30.seconds.chunks..Use.this |
| 144720 | 20 63 6f 6d 61 6e 64 20 74 6f 20 73 65 74 20 74 68 65 20 49 50 76 36 20 61 64 64 72 65 73 73 20 | .comand.to.set.the.IPv6.address. |
| 144740 | 70 6f 6f 6c 20 66 72 6f 6d 20 77 68 69 63 68 20 61 20 50 50 50 6f 45 20 63 6c 69 65 6e 74 20 77 | pool.from.which.a.PPPoE.client.w |
| 144760 | 69 6c 6c 20 67 65 74 20 61 6e 20 49 50 76 36 20 70 72 65 66 69 78 20 6f 66 20 79 6f 75 72 20 64 | ill.get.an.IPv6.prefix.of.your.d |
| 144780 | 65 66 69 6e 65 64 20 6c 65 6e 67 74 68 20 28 6d 61 73 6b 29 20 74 6f 20 74 65 72 6d 69 6e 61 74 | efined.length.(mask).to.terminat |
| 1447a0 | 65 20 74 68 65 20 50 50 50 6f 45 20 65 6e 64 70 6f 69 6e 74 20 61 74 20 74 68 65 69 72 20 73 69 | e.the.PPPoE.endpoint.at.their.si |
| 1447c0 | 64 65 2e 20 54 68 65 20 6d 61 73 6b 20 6c 65 6e 67 74 68 20 63 61 6e 20 62 65 20 73 65 74 20 66 | de..The.mask.length.can.be.set.f |
| 1447e0 | 72 6f 6d 20 34 38 20 74 6f 20 31 32 38 20 62 69 74 20 6c 6f 6e 67 2c 20 74 68 65 20 64 65 66 61 | rom.48.to.128.bit.long,.the.defa |
| 144800 | 75 6c 74 20 76 61 6c 75 65 20 69 73 20 36 34 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 61 6e 64 | ult.value.is.64..Use.this.comand |
| 144820 | 20 74 6f 20 73 65 74 20 74 68 65 20 49 50 76 36 20 61 64 64 72 65 73 73 20 70 6f 6f 6c 20 66 72 | .to.set.the.IPv6.address.pool.fr |
| 144840 | 6f 6d 20 77 68 69 63 68 20 61 6e 20 49 50 6f 45 20 63 6c 69 65 6e 74 20 77 69 6c 6c 20 67 65 74 | om.which.an.IPoE.client.will.get |
| 144860 | 20 61 6e 20 49 50 76 36 20 70 72 65 66 69 78 20 6f 66 20 79 6f 75 72 20 64 65 66 69 6e 65 64 20 | .an.IPv6.prefix.of.your.defined. |
| 144880 | 6c 65 6e 67 74 68 20 28 6d 61 73 6b 29 20 74 6f 20 74 65 72 6d 69 6e 61 74 65 20 74 68 65 20 49 | length.(mask).to.terminate.the.I |
| 1448a0 | 50 6f 45 20 65 6e 64 70 6f 69 6e 74 20 61 74 20 74 68 65 69 72 20 73 69 64 65 2e 20 54 68 65 20 | PoE.endpoint.at.their.side..The. |
| 1448c0 | 6d 61 73 6b 20 6c 65 6e 67 74 68 20 63 61 6e 20 62 65 20 73 65 74 20 66 72 6f 6d 20 34 38 20 74 | mask.length.can.be.set.from.48.t |
| 1448e0 | 6f 20 31 32 38 20 62 69 74 20 6c 6f 6e 67 2c 20 74 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 | o.128.bit.long,.the.default.valu |
| 144900 | 65 20 69 73 20 36 34 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 61 6e 64 20 74 6f 20 73 65 74 20 | e.is.64..Use.this.comand.to.set. |
| 144920 | 74 68 65 20 49 50 76 36 20 61 64 64 72 65 73 73 20 70 6f 6f 6c 20 66 72 6f 6d 20 77 68 69 63 68 | the.IPv6.address.pool.from.which |
| 144940 | 20 61 6e 20 50 50 50 6f 45 20 63 6c 69 65 6e 74 20 77 69 6c 6c 20 67 65 74 20 61 6e 20 49 50 76 | .an.PPPoE.client.will.get.an.IPv |
| 144960 | 36 20 70 72 65 66 69 78 20 6f 66 20 79 6f 75 72 20 64 65 66 69 6e 65 64 20 6c 65 6e 67 74 68 20 | 6.prefix.of.your.defined.length. |
| 144980 | 28 6d 61 73 6b 29 20 74 6f 20 74 65 72 6d 69 6e 61 74 65 20 74 68 65 20 50 50 50 6f 45 20 65 6e | (mask).to.terminate.the.PPPoE.en |
| 1449a0 | 64 70 6f 69 6e 74 20 61 74 20 74 68 65 69 72 20 73 69 64 65 2e 20 54 68 65 20 6d 61 73 6b 20 6c | dpoint.at.their.side..The.mask.l |
| 1449c0 | 65 6e 67 74 68 20 63 61 6e 20 62 65 20 73 65 74 20 66 72 6f 6d 20 34 38 20 74 6f 20 31 32 38 20 | ength.can.be.set.from.48.to.128. |
| 1449e0 | 62 69 74 20 6c 6f 6e 67 2c 20 74 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 36 | bit.long,.the.default.value.is.6 |
| 144a00 | 34 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 61 6e 64 20 74 6f 20 73 65 74 20 74 68 65 20 49 50 | 4..Use.this.comand.to.set.the.IP |
| 144a20 | 76 36 20 61 64 64 72 65 73 73 20 70 6f 6f 6c 20 66 72 6f 6d 20 77 68 69 63 68 20 61 6e 20 50 50 | v6.address.pool.from.which.an.PP |
| 144a40 | 54 50 20 63 6c 69 65 6e 74 20 77 69 6c 6c 20 67 65 74 20 61 6e 20 49 50 76 36 20 70 72 65 66 69 | TP.client.will.get.an.IPv6.prefi |
| 144a60 | 78 20 6f 66 20 79 6f 75 72 20 64 65 66 69 6e 65 64 20 6c 65 6e 67 74 68 20 28 6d 61 73 6b 29 20 | x.of.your.defined.length.(mask). |
| 144a80 | 74 6f 20 74 65 72 6d 69 6e 61 74 65 20 74 68 65 20 50 50 54 50 20 65 6e 64 70 6f 69 6e 74 20 61 | to.terminate.the.PPTP.endpoint.a |
| 144aa0 | 74 20 74 68 65 69 72 20 73 69 64 65 2e 20 54 68 65 20 6d 61 73 6b 20 6c 65 6e 67 74 68 20 63 61 | t.their.side..The.mask.length.ca |
| 144ac0 | 6e 20 62 65 20 73 65 74 20 66 72 6f 6d 20 34 38 20 74 6f 20 31 32 38 20 62 69 74 20 6c 6f 6e 67 | n.be.set.from.48.to.128.bit.long |
| 144ae0 | 2c 20 74 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 36 34 2e 00 55 73 65 20 74 | ,.the.default.value.is.64..Use.t |
| 144b00 | 68 69 73 20 63 6f 6d 61 6e 64 20 74 6f 20 73 65 74 20 74 68 65 20 49 50 76 36 20 61 64 64 72 65 | his.comand.to.set.the.IPv6.addre |
| 144b20 | 73 73 20 70 6f 6f 6c 20 66 72 6f 6d 20 77 68 69 63 68 20 61 6e 20 53 53 54 50 20 63 6c 69 65 6e | ss.pool.from.which.an.SSTP.clien |
| 144b40 | 74 20 77 69 6c 6c 20 67 65 74 20 61 6e 20 49 50 76 36 20 70 72 65 66 69 78 20 6f 66 20 79 6f 75 | t.will.get.an.IPv6.prefix.of.you |
| 144b60 | 72 20 64 65 66 69 6e 65 64 20 6c 65 6e 67 74 68 20 28 6d 61 73 6b 29 20 74 6f 20 74 65 72 6d 69 | r.defined.length.(mask).to.termi |
| 144b80 | 6e 61 74 65 20 74 68 65 20 53 53 54 50 20 65 6e 64 70 6f 69 6e 74 20 61 74 20 74 68 65 69 72 20 | nate.the.SSTP.endpoint.at.their. |
| 144ba0 | 73 69 64 65 2e 20 54 68 65 20 6d 61 73 6b 20 6c 65 6e 67 74 68 20 63 61 6e 20 62 65 20 73 65 74 | side..The.mask.length.can.be.set |
| 144bc0 | 20 62 65 74 77 65 65 6e 20 34 38 20 61 6e 64 20 31 32 38 20 62 69 74 73 20 6c 6f 6e 67 2c 20 74 | .between.48.and.128.bits.long,.t |
| 144be0 | 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 36 34 2e 00 55 73 65 20 74 68 69 73 | he.default.value.is.64..Use.this |
| 144c00 | 20 63 6f 6d 61 6e 64 20 74 6f 20 73 65 74 20 74 68 65 20 49 50 76 36 20 61 64 64 72 65 73 73 20 | .comand.to.set.the.IPv6.address. |
| 144c20 | 70 6f 6f 6c 20 66 72 6f 6d 20 77 68 69 63 68 20 61 6e 20 53 53 54 50 20 63 6c 69 65 6e 74 20 77 | pool.from.which.an.SSTP.client.w |
| 144c40 | 69 6c 6c 20 67 65 74 20 61 6e 20 49 50 76 36 20 70 72 65 66 69 78 20 6f 66 20 79 6f 75 72 20 64 | ill.get.an.IPv6.prefix.of.your.d |
| 144c60 | 65 66 69 6e 65 64 20 6c 65 6e 67 74 68 20 28 6d 61 73 6b 29 20 74 6f 20 74 65 72 6d 69 6e 61 74 | efined.length.(mask).to.terminat |
| 144c80 | 65 20 74 68 65 20 53 53 54 50 20 65 6e 64 70 6f 69 6e 74 20 61 74 20 74 68 65 69 72 20 73 69 64 | e.the.SSTP.endpoint.at.their.sid |
| 144ca0 | 65 2e 20 54 68 65 20 6d 61 73 6b 20 6c 65 6e 67 74 68 20 63 61 6e 20 62 65 20 73 65 74 20 66 72 | e..The.mask.length.can.be.set.fr |
| 144cc0 | 6f 6d 20 34 38 20 74 6f 20 31 32 38 20 62 69 74 20 6c 6f 6e 67 2c 20 74 68 65 20 64 65 66 61 75 | om.48.to.128.bit.long,.the.defau |
| 144ce0 | 6c 74 20 76 61 6c 75 65 20 69 73 20 36 34 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 61 6e 64 20 | lt.value.is.64..Use.this.comand. |
| 144d00 | 74 6f 20 73 65 74 20 74 68 65 20 49 50 76 36 20 61 64 64 72 65 73 73 20 70 6f 6f 6c 20 66 72 6f | to.set.the.IPv6.address.pool.fro |
| 144d20 | 6d 20 77 68 69 63 68 20 61 6e 20 6c 32 74 70 20 63 6c 69 65 6e 74 20 77 69 6c 6c 20 67 65 74 20 | m.which.an.l2tp.client.will.get. |
| 144d40 | 61 6e 20 49 50 76 36 20 70 72 65 66 69 78 20 6f 66 20 79 6f 75 72 20 64 65 66 69 6e 65 64 20 6c | an.IPv6.prefix.of.your.defined.l |
| 144d60 | 65 6e 67 74 68 20 28 6d 61 73 6b 29 20 74 6f 20 74 65 72 6d 69 6e 61 74 65 20 74 68 65 20 6c 32 | ength.(mask).to.terminate.the.l2 |
| 144d80 | 74 70 20 65 6e 64 70 6f 69 6e 74 20 61 74 20 74 68 65 69 72 20 73 69 64 65 2e 20 54 68 65 20 6d | tp.endpoint.at.their.side..The.m |
| 144da0 | 61 73 6b 20 6c 65 6e 67 74 68 20 63 61 6e 20 62 65 20 73 65 74 20 62 65 74 77 65 65 6e 20 34 38 | ask.length.can.be.set.between.48 |
| 144dc0 | 20 61 6e 64 20 31 32 38 20 62 69 74 73 20 6c 6f 6e 67 2c 20 74 68 65 20 64 65 66 61 75 6c 74 20 | .and.128.bits.long,.the.default. |
| 144de0 | 76 61 6c 75 65 20 69 73 20 36 34 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 61 6e 64 20 74 6f 20 | value.is.64..Use.this.comand.to. |
| 144e00 | 73 65 74 20 74 68 65 20 49 50 76 36 20 61 64 64 72 65 73 73 20 70 6f 6f 6c 20 66 72 6f 6d 20 77 | set.the.IPv6.address.pool.from.w |
| 144e20 | 68 69 63 68 20 61 6e 20 6c 32 74 70 20 63 6c 69 65 6e 74 20 77 69 6c 6c 20 67 65 74 20 61 6e 20 | hich.an.l2tp.client.will.get.an. |
| 144e40 | 49 50 76 36 20 70 72 65 66 69 78 20 6f 66 20 79 6f 75 72 20 64 65 66 69 6e 65 64 20 6c 65 6e 67 | IPv6.prefix.of.your.defined.leng |
| 144e60 | 74 68 20 28 6d 61 73 6b 29 20 74 6f 20 74 65 72 6d 69 6e 61 74 65 20 74 68 65 20 6c 32 74 70 20 | th.(mask).to.terminate.the.l2tp. |
| 144e80 | 65 6e 64 70 6f 69 6e 74 20 61 74 20 74 68 65 69 72 20 73 69 64 65 2e 20 54 68 65 20 6d 61 73 6b | endpoint.at.their.side..The.mask |
| 144ea0 | 20 6c 65 6e 67 74 68 20 63 61 6e 20 62 65 20 73 65 74 20 66 72 6f 6d 20 34 38 20 74 6f 20 31 32 | .length.can.be.set.from.48.to.12 |
| 144ec0 | 38 20 62 69 74 20 6c 6f 6e 67 2c 20 74 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 | 8.bit.long,.the.default.value.is |
| 144ee0 | 20 36 34 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 66 6f 72 20 65 76 65 72 79 20 | .64..Use.this.command.for.every. |
| 144f00 | 70 6f 6f 6c 20 6f 66 20 63 6c 69 65 6e 74 20 49 50 20 61 64 64 72 65 73 73 65 73 20 79 6f 75 20 | pool.of.client.IP.addresses.you. |
| 144f20 | 77 61 6e 74 20 74 6f 20 64 65 66 69 6e 65 2e 20 54 68 65 20 61 64 64 72 65 73 73 65 73 20 6f 66 | want.to.define..The.addresses.of |
| 144f40 | 20 74 68 69 73 20 70 6f 6f 6c 20 77 69 6c 6c 20 62 65 20 67 69 76 65 6e 20 74 6f 20 50 50 50 6f | .this.pool.will.be.given.to.PPPo |
| 144f60 | 45 20 63 6c 69 65 6e 74 73 2e 20 59 6f 75 20 6d 75 73 74 20 75 73 65 20 43 49 44 52 20 6e 6f 74 | E.clients..You.must.use.CIDR.not |
| 144f80 | 61 74 69 6f 6e 20 61 6e 64 20 69 74 20 6d 75 73 74 20 62 65 20 77 69 74 68 69 6e 20 61 20 2f 32 | ation.and.it.must.be.within.a./2 |
| 144fa0 | 34 20 73 75 62 6e 65 74 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 66 6f 72 20 65 | 4.subnet..Use.this.command.for.e |
| 144fc0 | 76 65 72 79 20 70 6f 6f 6c 20 6f 66 20 63 6c 69 65 6e 74 20 49 50 20 61 64 64 72 65 73 73 65 73 | very.pool.of.client.IP.addresses |
| 144fe0 | 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 64 65 66 69 6e 65 2e 20 54 68 65 20 61 64 64 72 65 73 73 | .you.want.to.define..The.address |
| 145000 | 65 73 20 6f 66 20 74 68 69 73 20 70 6f 6f 6c 20 77 69 6c 6c 20 62 65 20 67 69 76 65 6e 20 74 6f | es.of.this.pool.will.be.given.to |
| 145020 | 20 50 50 50 6f 45 20 63 6c 69 65 6e 74 73 2e 20 59 6f 75 20 6d 75 73 74 20 75 73 65 20 43 49 44 | .PPPoE.clients..You.must.use.CID |
| 145040 | 52 20 6e 6f 74 61 74 69 6f 6e 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 66 20 | R.notation..Use.this.command.if. |
| 145060 | 79 6f 75 20 77 6f 75 6c 64 20 6c 69 6b 65 20 66 6f 72 20 74 68 65 20 72 6f 75 74 65 72 20 74 6f | you.would.like.for.the.router.to |
| 145080 | 20 61 64 76 65 72 74 69 73 65 20 46 45 43 73 20 77 69 74 68 20 61 20 6c 61 62 65 6c 20 6f 66 20 | .advertise.FECs.with.a.label.of. |
| 1450a0 | 30 20 66 6f 72 20 65 78 70 6c 69 63 69 74 20 6e 75 6c 6c 20 6f 70 65 72 61 74 69 6f 6e 73 2e 00 | 0.for.explicit.null.operations.. |
| 1450c0 | 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 66 20 79 6f 75 20 77 6f 75 6c 64 20 6c 69 | Use.this.command.if.you.would.li |
| 1450e0 | 6b 65 20 74 6f 20 63 6f 6e 74 72 6f 6c 20 74 68 65 20 6c 6f 63 61 6c 20 46 45 43 20 61 6c 6c 6f | ke.to.control.the.local.FEC.allo |
| 145100 | 63 61 74 69 6f 6e 73 20 66 6f 72 20 4c 44 50 2e 20 41 20 67 6f 6f 64 20 65 78 61 6d 70 6c 65 20 | cations.for.LDP..A.good.example. |
| 145120 | 77 6f 75 6c 64 20 62 65 20 66 6f 72 20 79 6f 75 72 20 6c 6f 63 61 6c 20 72 6f 75 74 65 72 20 74 | would.be.for.your.local.router.t |
| 145140 | 6f 20 6e 6f 74 20 61 6c 6c 6f 63 61 74 65 20 61 20 6c 61 62 65 6c 20 66 6f 72 20 65 76 65 72 79 | o.not.allocate.a.label.for.every |
| 145160 | 74 68 69 6e 67 2e 20 4a 75 73 74 20 61 20 6c 61 62 65 6c 20 66 6f 72 20 77 68 61 74 20 69 74 27 | thing..Just.a.label.for.what.it' |
| 145180 | 73 20 75 73 65 66 75 6c 2e 20 41 20 67 6f 6f 64 20 65 78 61 6d 70 6c 65 20 77 6f 75 6c 64 20 62 | s.useful..A.good.example.would.b |
| 1451a0 | 65 20 6a 75 73 74 20 61 20 6c 6f 6f 70 62 61 63 6b 20 6c 61 62 65 6c 2e 00 55 73 65 20 74 68 69 | e.just.a.loopback.label..Use.thi |
| 1451c0 | 73 20 63 6f 6d 6d 61 6e 64 20 69 66 20 79 6f 75 20 77 6f 75 6c 64 20 6c 69 6b 65 20 74 6f 20 73 | s.command.if.you.would.like.to.s |
| 1451e0 | 65 74 20 74 68 65 20 54 43 50 20 73 65 73 73 69 6f 6e 20 68 6f 6c 64 20 74 69 6d 65 20 69 6e 74 | et.the.TCP.session.hold.time.int |
| 145200 | 65 72 76 61 6c 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 61 6c 6c 6f | ervals..Use.this.command.to.allo |
| 145220 | 77 20 74 68 65 20 73 65 6c 65 63 74 65 64 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 6a 6f 69 6e | w.the.selected.interface.to.join |
| 145240 | 20 61 20 6d 75 6c 74 69 63 61 73 74 20 67 72 6f 75 70 20 64 65 66 69 6e 69 6e 67 20 74 68 65 20 | .a.multicast.group.defining.the. |
| 145260 | 6d 75 6c 74 69 63 61 73 74 20 61 64 64 72 65 73 73 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 6a 6f | multicast.address.you.want.to.jo |
| 145280 | 69 6e 20 61 6e 64 20 74 68 65 20 73 6f 75 72 63 65 20 49 50 20 61 64 64 72 65 73 73 20 74 6f 6f | in.and.the.source.IP.address.too |
| 1452a0 | 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 61 6c 6c 6f 77 20 74 68 65 20 | ..Use.this.command.to.allow.the. |
| 1452c0 | 73 65 6c 65 63 74 65 64 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 6a 6f 69 6e 20 61 20 6d 75 6c | selected.interface.to.join.a.mul |
| 1452e0 | 74 69 63 61 73 74 20 67 72 6f 75 70 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 | ticast.group..Use.this.command.t |
| 145300 | 6f 20 61 6c 6c 6f 77 20 74 68 65 20 73 65 6c 65 63 74 65 64 20 69 6e 74 65 72 66 61 63 65 20 74 | o.allow.the.selected.interface.t |
| 145320 | 6f 20 6a 6f 69 6e 20 61 20 73 6f 75 72 63 65 2d 73 70 65 63 69 66 69 63 20 6d 75 6c 74 69 63 61 | o.join.a.source-specific.multica |
| 145340 | 73 74 20 67 72 6f 75 70 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 68 | st.group..Use.this.command.to.ch |
| 145360 | 65 63 6b 20 6c 6f 67 20 6d 65 73 73 61 67 65 73 20 73 70 65 63 69 66 69 63 20 74 6f 20 61 6e 20 | eck.log.messages.specific.to.an. |
| 145380 | 69 6e 74 65 72 66 61 63 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 | interface..Use.this.command.to.c |
| 1453a0 | 68 65 63 6b 20 6c 6f 67 20 6d 65 73 73 61 67 65 73 20 77 68 69 63 68 20 69 6e 63 6c 75 64 65 20 | heck.log.messages.which.include. |
| 1453c0 | 65 6e 74 72 69 65 73 20 66 6f 72 20 73 75 63 63 65 73 73 66 75 6c 20 63 6f 6e 6e 65 63 74 69 6f | entries.for.successful.connectio |
| 1453e0 | 6e 73 20 61 73 20 77 65 6c 6c 20 61 73 20 66 61 69 6c 75 72 65 73 20 61 6e 64 20 65 72 72 6f 72 | ns.as.well.as.failures.and.error |
| 145400 | 73 20 72 65 6c 61 74 65 64 20 74 6f 20 61 6c 6c 20 4f 70 65 6e 56 50 4e 20 69 6e 74 65 72 66 61 | s.related.to.all.OpenVPN.interfa |
| 145420 | 63 65 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 68 65 63 6b 20 74 | ces..Use.this.command.to.check.t |
| 145440 | 68 65 20 74 75 6e 6e 65 6c 20 73 74 61 74 75 73 20 66 6f 72 20 4f 70 65 6e 56 50 4e 20 63 6c 69 | he.tunnel.status.for.OpenVPN.cli |
| 145460 | 65 6e 74 20 69 6e 74 65 72 66 61 63 65 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 | ent.interfaces..Use.this.command |
| 145480 | 20 74 6f 20 63 68 65 63 6b 20 74 68 65 20 74 75 6e 6e 65 6c 20 73 74 61 74 75 73 20 66 6f 72 20 | .to.check.the.tunnel.status.for. |
| 1454a0 | 4f 70 65 6e 56 50 4e 20 73 65 72 76 65 72 20 69 6e 74 65 72 66 61 63 65 73 2e 00 55 73 65 20 74 | OpenVPN.server.interfaces..Use.t |
| 1454c0 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 68 65 63 6b 20 74 68 65 20 74 75 6e 6e 65 6c 20 | his.command.to.check.the.tunnel. |
| 1454e0 | 73 74 61 74 75 73 20 66 6f 72 20 4f 70 65 6e 56 50 4e 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 | status.for.OpenVPN.site-to-site. |
| 145500 | 69 6e 74 65 72 66 61 63 65 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 | interfaces..Use.this.command.to. |
| 145520 | 63 6c 65 61 72 20 42 6f 72 64 65 72 20 47 61 74 65 77 61 79 20 50 72 6f 74 6f 63 6f 6c 20 73 74 | clear.Border.Gateway.Protocol.st |
| 145540 | 61 74 69 73 74 69 63 73 20 6f 72 20 73 74 61 74 75 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d | atistics.or.status..Use.this.com |
| 145560 | 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 44 48 43 50 76 36 20 50 72 65 66 69 78 20 | mand.to.configure.DHCPv6.Prefix. |
| 145580 | 44 65 6c 65 67 61 74 69 6f 6e 20 28 52 46 43 33 36 33 33 29 20 6f 6e 20 49 50 6f 45 2e 20 59 6f | Delegation.(RFC3633).on.IPoE..Yo |
| 1455a0 | 75 20 77 69 6c 6c 20 68 61 76 65 20 74 6f 20 73 65 74 20 79 6f 75 72 20 49 50 76 36 20 70 6f 6f | u.will.have.to.set.your.IPv6.poo |
| 1455c0 | 6c 20 61 6e 64 20 74 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 20 64 65 6c 65 67 61 74 69 | l.and.the.length.of.the.delegati |
| 1455e0 | 6f 6e 20 70 72 65 66 69 78 2e 20 46 72 6f 6d 20 74 68 65 20 64 65 66 69 6e 65 64 20 49 50 76 36 | on.prefix..From.the.defined.IPv6 |
| 145600 | 20 70 6f 6f 6c 20 79 6f 75 20 77 69 6c 6c 20 62 65 20 68 61 6e 64 69 6e 67 20 6f 75 74 20 6e 65 | .pool.you.will.be.handing.out.ne |
| 145620 | 74 77 6f 72 6b 73 20 6f 66 20 74 68 65 20 64 65 66 69 6e 65 64 20 6c 65 6e 67 74 68 20 28 64 65 | tworks.of.the.defined.length.(de |
| 145640 | 6c 65 67 61 74 69 6f 6e 2d 70 72 65 66 69 78 29 2e 20 54 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 | legation-prefix)..The.length.of. |
| 145660 | 74 68 65 20 64 65 6c 65 67 61 74 69 6f 6e 20 70 72 65 66 69 78 20 63 61 6e 20 62 65 20 73 65 74 | the.delegation.prefix.can.be.set |
| 145680 | 20 66 72 6f 6d 20 33 32 20 74 6f 20 36 34 20 62 69 74 20 6c 6f 6e 67 2e 00 55 73 65 20 74 68 69 | .from.32.to.64.bit.long..Use.thi |
| 1456a0 | 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 44 48 43 50 76 36 20 50 72 | s.command.to.configure.DHCPv6.Pr |
| 1456c0 | 65 66 69 78 20 44 65 6c 65 67 61 74 69 6f 6e 20 28 52 46 43 33 36 33 33 29 20 6f 6e 20 50 50 50 | efix.Delegation.(RFC3633).on.PPP |
| 1456e0 | 6f 45 2e 20 59 6f 75 20 77 69 6c 6c 20 68 61 76 65 20 74 6f 20 73 65 74 20 79 6f 75 72 20 49 50 | oE..You.will.have.to.set.your.IP |
| 145700 | 76 36 20 70 6f 6f 6c 20 61 6e 64 20 74 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 20 64 65 | v6.pool.and.the.length.of.the.de |
| 145720 | 6c 65 67 61 74 69 6f 6e 20 70 72 65 66 69 78 2e 20 46 72 6f 6d 20 74 68 65 20 64 65 66 69 6e 65 | legation.prefix..From.the.define |
| 145740 | 64 20 49 50 76 36 20 70 6f 6f 6c 20 79 6f 75 20 77 69 6c 6c 20 62 65 20 68 61 6e 64 69 6e 67 20 | d.IPv6.pool.you.will.be.handing. |
| 145760 | 6f 75 74 20 6e 65 74 77 6f 72 6b 73 20 6f 66 20 74 68 65 20 64 65 66 69 6e 65 64 20 6c 65 6e 67 | out.networks.of.the.defined.leng |
| 145780 | 74 68 20 28 64 65 6c 65 67 61 74 69 6f 6e 2d 70 72 65 66 69 78 29 2e 20 54 68 65 20 6c 65 6e 67 | th.(delegation-prefix)..The.leng |
| 1457a0 | 74 68 20 6f 66 20 74 68 65 20 64 65 6c 65 67 61 74 69 6f 6e 20 70 72 65 66 69 78 20 63 61 6e 20 | th.of.the.delegation.prefix.can. |
| 1457c0 | 62 65 20 73 65 74 20 66 72 6f 6d 20 33 32 20 74 6f 20 36 34 20 62 69 74 20 6c 6f 6e 67 2e 00 55 | be.set.from.32.to.64.bit.long..U |
| 1457e0 | 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 44 48 43 | se.this.command.to.configure.DHC |
| 145800 | 50 76 36 20 50 72 65 66 69 78 20 44 65 6c 65 67 61 74 69 6f 6e 20 28 52 46 43 33 36 33 33 29 20 | Pv6.Prefix.Delegation.(RFC3633). |
| 145820 | 6f 6e 20 50 50 54 50 2e 20 59 6f 75 20 77 69 6c 6c 20 68 61 76 65 20 74 6f 20 73 65 74 20 79 6f | on.PPTP..You.will.have.to.set.yo |
| 145840 | 75 72 20 49 50 76 36 20 70 6f 6f 6c 20 61 6e 64 20 74 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 74 | ur.IPv6.pool.and.the.length.of.t |
| 145860 | 68 65 20 64 65 6c 65 67 61 74 69 6f 6e 20 70 72 65 66 69 78 2e 20 46 72 6f 6d 20 74 68 65 20 64 | he.delegation.prefix..From.the.d |
| 145880 | 65 66 69 6e 65 64 20 49 50 76 36 20 70 6f 6f 6c 20 79 6f 75 20 77 69 6c 6c 20 62 65 20 68 61 6e | efined.IPv6.pool.you.will.be.han |
| 1458a0 | 64 69 6e 67 20 6f 75 74 20 6e 65 74 77 6f 72 6b 73 20 6f 66 20 74 68 65 20 64 65 66 69 6e 65 64 | ding.out.networks.of.the.defined |
| 1458c0 | 20 6c 65 6e 67 74 68 20 28 64 65 6c 65 67 61 74 69 6f 6e 2d 70 72 65 66 69 78 29 2e 20 54 68 65 | .length.(delegation-prefix)..The |
| 1458e0 | 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 20 64 65 6c 65 67 61 74 69 6f 6e 20 70 72 65 66 69 78 | .length.of.the.delegation.prefix |
| 145900 | 20 63 61 6e 20 62 65 20 73 65 74 20 66 72 6f 6d 20 33 32 20 74 6f 20 36 34 20 62 69 74 20 6c 6f | .can.be.set.from.32.to.64.bit.lo |
| 145920 | 6e 67 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 | ng..Use.this.command.to.configur |
| 145940 | 65 20 44 48 43 50 76 36 20 50 72 65 66 69 78 20 44 65 6c 65 67 61 74 69 6f 6e 20 28 52 46 43 33 | e.DHCPv6.Prefix.Delegation.(RFC3 |
| 145960 | 36 33 33 29 20 6f 6e 20 53 53 54 50 2e 20 59 6f 75 20 77 69 6c 6c 20 68 61 76 65 20 74 6f 20 73 | 633).on.SSTP..You.will.have.to.s |
| 145980 | 65 74 20 79 6f 75 72 20 49 50 76 36 20 70 6f 6f 6c 20 61 6e 64 20 74 68 65 20 6c 65 6e 67 74 68 | et.your.IPv6.pool.and.the.length |
| 1459a0 | 20 6f 66 20 74 68 65 20 64 65 6c 65 67 61 74 69 6f 6e 20 70 72 65 66 69 78 2e 20 46 72 6f 6d 20 | .of.the.delegation.prefix..From. |
| 1459c0 | 74 68 65 20 64 65 66 69 6e 65 64 20 49 50 76 36 20 70 6f 6f 6c 20 79 6f 75 20 77 69 6c 6c 20 62 | the.defined.IPv6.pool.you.will.b |
| 1459e0 | 65 20 68 61 6e 64 69 6e 67 20 6f 75 74 20 6e 65 74 77 6f 72 6b 73 20 6f 66 20 74 68 65 20 64 65 | e.handing.out.networks.of.the.de |
| 145a00 | 66 69 6e 65 64 20 6c 65 6e 67 74 68 20 28 64 65 6c 65 67 61 74 69 6f 6e 2d 70 72 65 66 69 78 29 | fined.length.(delegation-prefix) |
| 145a20 | 2e 20 54 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 20 64 65 6c 65 67 61 74 69 6f 6e 20 70 | ..The.length.of.the.delegation.p |
| 145a40 | 72 65 66 69 78 20 63 61 6e 20 62 65 20 73 65 74 20 62 65 74 77 65 65 6e 20 33 32 20 61 6e 64 20 | refix.can.be.set.between.32.and. |
| 145a60 | 36 34 20 62 69 74 73 20 6c 6f 6e 67 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 | 64.bits.long..Use.this.command.t |
| 145a80 | 6f 20 63 6f 6e 66 69 67 75 72 65 20 44 48 43 50 76 36 20 50 72 65 66 69 78 20 44 65 6c 65 67 61 | o.configure.DHCPv6.Prefix.Delega |
| 145aa0 | 74 69 6f 6e 20 28 52 46 43 33 36 33 33 29 20 6f 6e 20 53 53 54 50 2e 20 59 6f 75 20 77 69 6c 6c | tion.(RFC3633).on.SSTP..You.will |
| 145ac0 | 20 68 61 76 65 20 74 6f 20 73 65 74 20 79 6f 75 72 20 49 50 76 36 20 70 6f 6f 6c 20 61 6e 64 20 | .have.to.set.your.IPv6.pool.and. |
| 145ae0 | 74 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 20 64 65 6c 65 67 61 74 69 6f 6e 20 70 72 65 | the.length.of.the.delegation.pre |
| 145b00 | 66 69 78 2e 20 46 72 6f 6d 20 74 68 65 20 64 65 66 69 6e 65 64 20 49 50 76 36 20 70 6f 6f 6c 20 | fix..From.the.defined.IPv6.pool. |
| 145b20 | 79 6f 75 20 77 69 6c 6c 20 62 65 20 68 61 6e 64 69 6e 67 20 6f 75 74 20 6e 65 74 77 6f 72 6b 73 | you.will.be.handing.out.networks |
| 145b40 | 20 6f 66 20 74 68 65 20 64 65 66 69 6e 65 64 20 6c 65 6e 67 74 68 20 28 64 65 6c 65 67 61 74 69 | .of.the.defined.length.(delegati |
| 145b60 | 6f 6e 2d 70 72 65 66 69 78 29 2e 20 54 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 20 64 65 | on-prefix)..The.length.of.the.de |
| 145b80 | 6c 65 67 61 74 69 6f 6e 20 70 72 65 66 69 78 20 63 61 6e 20 62 65 20 73 65 74 20 66 72 6f 6d 20 | legation.prefix.can.be.set.from. |
| 145ba0 | 33 32 20 74 6f 20 36 34 20 62 69 74 20 6c 6f 6e 67 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d | 32.to.64.bit.long..Use.this.comm |
| 145bc0 | 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 44 48 43 50 76 36 20 50 72 65 66 69 78 20 44 | and.to.configure.DHCPv6.Prefix.D |
| 145be0 | 65 6c 65 67 61 74 69 6f 6e 20 28 52 46 43 33 36 33 33 29 20 6f 6e 20 6c 32 74 70 2e 20 59 6f 75 | elegation.(RFC3633).on.l2tp..You |
| 145c00 | 20 77 69 6c 6c 20 68 61 76 65 20 74 6f 20 73 65 74 20 79 6f 75 72 20 49 50 76 36 20 70 6f 6f 6c | .will.have.to.set.your.IPv6.pool |
| 145c20 | 20 61 6e 64 20 74 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 20 64 65 6c 65 67 61 74 69 6f | .and.the.length.of.the.delegatio |
| 145c40 | 6e 20 70 72 65 66 69 78 2e 20 46 72 6f 6d 20 74 68 65 20 64 65 66 69 6e 65 64 20 49 50 76 36 20 | n.prefix..From.the.defined.IPv6. |
| 145c60 | 70 6f 6f 6c 20 79 6f 75 20 77 69 6c 6c 20 62 65 20 68 61 6e 64 69 6e 67 20 6f 75 74 20 6e 65 74 | pool.you.will.be.handing.out.net |
| 145c80 | 77 6f 72 6b 73 20 6f 66 20 74 68 65 20 64 65 66 69 6e 65 64 20 6c 65 6e 67 74 68 20 28 64 65 6c | works.of.the.defined.length.(del |
| 145ca0 | 65 67 61 74 69 6f 6e 2d 70 72 65 66 69 78 29 2e 20 54 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 74 | egation-prefix)..The.length.of.t |
| 145cc0 | 68 65 20 64 65 6c 65 67 61 74 69 6f 6e 20 70 72 65 66 69 78 20 63 61 6e 20 62 65 20 62 65 74 77 | he.delegation.prefix.can.be.betw |
| 145ce0 | 65 65 6e 20 33 32 20 61 6e 64 20 36 34 20 62 69 74 73 20 6c 6f 6e 67 2e 00 55 73 65 20 74 68 69 | een.32.and.64.bits.long..Use.thi |
| 145d00 | 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 44 48 43 50 76 36 20 50 72 | s.command.to.configure.DHCPv6.Pr |
| 145d20 | 65 66 69 78 20 44 65 6c 65 67 61 74 69 6f 6e 20 28 52 46 43 33 36 33 33 29 20 6f 6e 20 6c 32 74 | efix.Delegation.(RFC3633).on.l2t |
| 145d40 | 70 2e 20 59 6f 75 20 77 69 6c 6c 20 68 61 76 65 20 74 6f 20 73 65 74 20 79 6f 75 72 20 49 50 76 | p..You.will.have.to.set.your.IPv |
| 145d60 | 36 20 70 6f 6f 6c 20 61 6e 64 20 74 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 20 64 65 6c | 6.pool.and.the.length.of.the.del |
| 145d80 | 65 67 61 74 69 6f 6e 20 70 72 65 66 69 78 2e 20 46 72 6f 6d 20 74 68 65 20 64 65 66 69 6e 65 64 | egation.prefix..From.the.defined |
| 145da0 | 20 49 50 76 36 20 70 6f 6f 6c 20 79 6f 75 20 77 69 6c 6c 20 62 65 20 68 61 6e 64 69 6e 67 20 6f | .IPv6.pool.you.will.be.handing.o |
| 145dc0 | 75 74 20 6e 65 74 77 6f 72 6b 73 20 6f 66 20 74 68 65 20 64 65 66 69 6e 65 64 20 6c 65 6e 67 74 | ut.networks.of.the.defined.lengt |
| 145de0 | 68 20 28 64 65 6c 65 67 61 74 69 6f 6e 2d 70 72 65 66 69 78 29 2e 20 54 68 65 20 6c 65 6e 67 74 | h.(delegation-prefix)..The.lengt |
| 145e00 | 68 20 6f 66 20 74 68 65 20 64 65 6c 65 67 61 74 69 6f 6e 20 70 72 65 66 69 78 20 63 61 6e 20 62 | h.of.the.delegation.prefix.can.b |
| 145e20 | 65 20 73 65 74 20 66 72 6f 6d 20 33 32 20 74 6f 20 36 34 20 62 69 74 20 6c 6f 6e 67 2e 00 55 73 | e.set.from.32.to.64.bit.long..Us |
| 145e40 | 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 44 48 43 50 | e.this.command.to.configure.DHCP |
| 145e60 | 76 36 20 50 72 65 66 69 78 20 44 65 6c 65 67 61 74 69 6f 6e 20 28 52 46 43 33 36 33 33 29 2e 20 | v6.Prefix.Delegation.(RFC3633).. |
| 145e80 | 59 6f 75 20 77 69 6c 6c 20 68 61 76 65 20 74 6f 20 73 65 74 20 79 6f 75 72 20 49 50 76 36 20 70 | You.will.have.to.set.your.IPv6.p |
| 145ea0 | 6f 6f 6c 20 61 6e 64 20 74 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 20 64 65 6c 65 67 61 | ool.and.the.length.of.the.delega |
| 145ec0 | 74 69 6f 6e 20 70 72 65 66 69 78 2e 20 46 72 6f 6d 20 74 68 65 20 64 65 66 69 6e 65 64 20 49 50 | tion.prefix..From.the.defined.IP |
| 145ee0 | 76 36 20 70 6f 6f 6c 20 79 6f 75 20 77 69 6c 6c 20 62 65 20 68 61 6e 64 69 6e 67 20 6f 75 74 20 | v6.pool.you.will.be.handing.out. |
| 145f00 | 6e 65 74 77 6f 72 6b 73 20 6f 66 20 74 68 65 20 64 65 66 69 6e 65 64 20 6c 65 6e 67 74 68 20 28 | networks.of.the.defined.length.( |
| 145f20 | 64 65 6c 65 67 61 74 69 6f 6e 2d 70 72 65 66 69 78 29 2e 20 54 68 65 20 6c 65 6e 67 74 68 20 6f | delegation-prefix)..The.length.o |
| 145f40 | 66 20 74 68 65 20 64 65 6c 65 67 61 74 69 6f 6e 20 70 72 65 66 69 78 20 63 61 6e 20 62 65 20 73 | f.the.delegation.prefix.can.be.s |
| 145f60 | 65 74 20 66 72 6f 6d 20 33 32 20 74 6f 20 36 34 20 62 69 74 20 6c 6f 6e 67 2e 00 55 73 65 20 74 | et.from.32.to.64.bit.long..Use.t |
| 145f80 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 44 79 6e 61 6d 69 63 | his.command.to.configure.Dynamic |
| 145fa0 | 20 41 75 74 68 6f 72 69 7a 61 74 69 6f 6e 20 45 78 74 65 6e 73 69 6f 6e 73 20 74 6f 20 52 41 44 | .Authorization.Extensions.to.RAD |
| 145fc0 | 49 55 53 20 73 6f 20 74 68 61 74 20 79 6f 75 20 63 61 6e 20 72 65 6d 6f 74 65 6c 79 20 64 69 73 | IUS.so.that.you.can.remotely.dis |
| 145fe0 | 63 6f 6e 6e 65 63 74 20 73 65 73 73 69 6f 6e 73 20 61 6e 64 20 63 68 61 6e 67 65 20 73 6f 6d 65 | connect.sessions.and.change.some |
| 146000 | 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 70 61 72 61 6d 65 74 65 72 73 2e 00 55 73 65 20 | .authentication.parameters..Use. |
| 146020 | 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 22 62 6c 61 | this.command.to.configure.a."bla |
| 146040 | 63 6b 2d 68 6f 6c 65 22 20 72 6f 75 74 65 20 6f 6e 20 74 68 65 20 72 6f 75 74 65 72 2e 20 41 20 | ck-hole".route.on.the.router..A. |
| 146060 | 62 6c 61 63 6b 2d 68 6f 6c 65 20 72 6f 75 74 65 20 69 73 20 61 20 72 6f 75 74 65 20 66 6f 72 20 | black-hole.route.is.a.route.for. |
| 146080 | 77 68 69 63 68 20 74 68 65 20 73 79 73 74 65 6d 20 73 69 6c 65 6e 74 6c 79 20 64 69 73 63 61 72 | which.the.system.silently.discar |
| 1460a0 | 64 20 70 61 63 6b 65 74 73 20 74 68 61 74 20 61 72 65 20 6d 61 74 63 68 65 64 2e 20 54 68 69 73 | d.packets.that.are.matched..This |
| 1460c0 | 20 70 72 65 76 65 6e 74 73 20 6e 65 74 77 6f 72 6b 73 20 6c 65 61 6b 69 6e 67 20 6f 75 74 20 70 | .prevents.networks.leaking.out.p |
| 1460e0 | 75 62 6c 69 63 20 69 6e 74 65 72 66 61 63 65 73 2c 20 62 75 74 20 69 74 20 64 6f 65 73 20 6e 6f | ublic.interfaces,.but.it.does.no |
| 146100 | 74 20 70 72 65 76 65 6e 74 20 74 68 65 6d 20 66 72 6f 6d 20 62 65 69 6e 67 20 75 73 65 64 20 61 | t.prevent.them.from.being.used.a |
| 146120 | 73 20 61 20 6d 6f 72 65 20 73 70 65 63 69 66 69 63 20 72 6f 75 74 65 20 69 6e 73 69 64 65 20 79 | s.a.more.specific.route.inside.y |
| 146140 | 6f 75 72 20 6e 65 74 77 6f 72 6b 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f | our.network..Use.this.command.to |
| 146160 | 20 63 6f 6e 66 69 67 75 72 65 20 61 20 4e 65 74 77 6f 72 6b 20 45 6d 75 6c 61 74 6f 72 20 70 6f | .configure.a.Network.Emulator.po |
| 146180 | 6c 69 63 79 20 64 65 66 69 6e 69 6e 67 20 69 74 73 20 6e 61 6d 65 20 61 6e 64 20 74 68 65 20 66 | licy.defining.its.name.and.the.f |
| 1461a0 | 69 78 65 64 20 61 6d 6f 75 6e 74 20 6f 66 20 74 69 6d 65 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 | ixed.amount.of.time.you.want.to. |
| 1461c0 | 61 64 64 20 74 6f 20 61 6c 6c 20 70 61 63 6b 65 74 20 67 6f 69 6e 67 20 6f 75 74 20 6f 66 20 74 | add.to.all.packet.going.out.of.t |
| 1461e0 | 68 65 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 65 20 6c 61 74 65 6e 63 79 20 77 69 6c 6c 20 62 | he.interface..The.latency.will.b |
| 146200 | 65 20 61 64 64 65 64 20 74 68 72 6f 75 67 68 20 74 68 65 20 54 6f 6b 65 6e 20 42 75 63 6b 65 74 | e.added.through.the.Token.Bucket |
| 146220 | 20 46 69 6c 74 65 72 20 71 64 69 73 63 2e 20 49 74 20 77 69 6c 6c 20 6f 6e 6c 79 20 74 61 6b 65 | .Filter.qdisc..It.will.only.take |
| 146240 | 20 65 66 66 65 63 74 20 69 66 20 79 6f 75 20 68 61 76 65 20 63 6f 6e 66 69 67 75 72 65 64 20 69 | .effect.if.you.have.configured.i |
| 146260 | 74 73 20 62 61 6e 64 77 69 64 74 68 20 74 6f 6f 2e 20 59 6f 75 20 63 61 6e 20 75 73 65 20 73 65 | ts.bandwidth.too..You.can.use.se |
| 146280 | 63 73 2c 20 6d 73 20 61 6e 64 20 75 73 2e 20 44 65 66 61 75 6c 74 3a 20 35 30 6d 73 2e 00 55 73 | cs,.ms.and.us..Default:.50ms..Us |
| 1462a0 | 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 50 72 | e.this.command.to.configure.a.Pr |
| 1462c0 | 69 6f 72 69 74 79 20 51 75 65 75 65 20 70 6f 6c 69 63 79 2c 20 73 65 74 20 69 74 73 20 6e 61 6d | iority.Queue.policy,.set.its.nam |
| 1462e0 | 65 2c 20 73 65 74 20 61 20 63 6c 61 73 73 20 77 69 74 68 20 61 20 70 72 69 6f 72 69 74 79 20 66 | e,.set.a.class.with.a.priority.f |
| 146300 | 72 6f 6d 20 31 20 74 6f 20 37 20 61 6e 64 20 64 65 66 69 6e 65 20 61 20 68 61 72 64 20 6c 69 6d | rom.1.to.7.and.define.a.hard.lim |
| 146320 | 69 74 20 6f 6e 20 74 68 65 20 72 65 61 6c 20 71 75 65 75 65 20 73 69 7a 65 2e 20 57 68 65 6e 20 | it.on.the.real.queue.size..When. |
| 146340 | 74 68 69 73 20 6c 69 6d 69 74 20 69 73 20 72 65 61 63 68 65 64 2c 20 6e 65 77 20 70 61 63 6b 65 | this.limit.is.reached,.new.packe |
| 146360 | 74 73 20 61 72 65 20 64 72 6f 70 70 65 64 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 | ts.are.dropped..Use.this.command |
| 146380 | 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 52 61 6e 64 6f 6d 2d 44 65 74 65 63 74 20 70 6f | .to.configure.a.Random-Detect.po |
| 1463a0 | 6c 69 63 79 20 61 6e 64 20 73 65 74 20 69 74 73 20 6e 61 6d 65 2c 20 74 68 65 6e 20 6e 61 6d 65 | licy.and.set.its.name,.then.name |
| 1463c0 | 20 74 68 65 20 49 50 20 50 72 65 63 65 64 65 6e 63 65 20 66 6f 72 20 74 68 65 20 76 69 72 74 75 | .the.IP.Precedence.for.the.virtu |
| 1463e0 | 61 6c 20 71 75 65 75 65 20 79 6f 75 20 61 72 65 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 61 6e 64 | al.queue.you.are.configuring.and |
| 146400 | 20 77 68 61 74 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 73 69 7a 65 20 6f 66 20 69 74 73 20 71 75 | .what.the.maximum.size.of.its.qu |
| 146420 | 65 75 65 20 77 69 6c 6c 20 62 65 20 28 66 72 6f 6d 20 31 20 74 6f 20 31 2d 34 32 39 34 39 36 37 | eue.will.be.(from.1.to.1-4294967 |
| 146440 | 32 39 35 20 70 61 63 6b 65 74 73 29 2e 20 50 61 63 6b 65 74 73 20 61 72 65 20 64 72 6f 70 70 65 | 295.packets)..Packets.are.droppe |
| 146460 | 64 20 77 68 65 6e 20 74 68 65 20 63 75 72 72 65 6e 74 20 71 75 65 75 65 20 6c 65 6e 67 74 68 20 | d.when.the.current.queue.length. |
| 146480 | 72 65 61 63 68 65 73 20 74 68 69 73 20 76 61 6c 75 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d | reaches.this.value..Use.this.com |
| 1464a0 | 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 52 61 6e 64 6f 6d 2d 44 65 74 65 63 | mand.to.configure.a.Random-Detec |
| 1464c0 | 74 20 70 6f 6c 69 63 79 20 61 6e 64 20 73 65 74 20 69 74 73 20 6e 61 6d 65 2c 20 74 68 65 6e 20 | t.policy.and.set.its.name,.then. |
| 1464e0 | 73 74 61 74 65 20 74 68 65 20 49 50 20 50 72 65 63 65 64 65 6e 63 65 20 66 6f 72 20 74 68 65 20 | state.the.IP.Precedence.for.the. |
| 146500 | 76 69 72 74 75 61 6c 20 71 75 65 75 65 20 79 6f 75 20 61 72 65 20 63 6f 6e 66 69 67 75 72 69 6e | virtual.queue.you.are.configurin |
| 146520 | 67 20 61 6e 64 20 77 68 61 74 20 69 74 73 20 6d 61 72 6b 20 28 64 72 6f 70 29 20 70 72 6f 62 61 | g.and.what.its.mark.(drop).proba |
| 146540 | 62 69 6c 69 74 79 20 77 69 6c 6c 20 62 65 2e 20 53 65 74 20 74 68 65 20 70 72 6f 62 61 62 69 6c | bility.will.be..Set.the.probabil |
| 146560 | 69 74 79 20 62 79 20 67 69 76 69 6e 67 20 74 68 65 20 4e 20 76 61 6c 75 65 20 6f 66 20 74 68 65 | ity.by.giving.the.N.value.of.the |
| 146580 | 20 66 72 61 63 74 69 6f 6e 20 31 2f 4e 20 28 64 65 66 61 75 6c 74 3a 20 31 30 29 2e 00 55 73 65 | .fraction.1/N.(default:.10)..Use |
| 1465a0 | 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 52 61 6e | .this.command.to.configure.a.Ran |
| 1465c0 | 64 6f 6d 2d 44 65 74 65 63 74 20 70 6f 6c 69 63 79 20 61 6e 64 20 73 65 74 20 69 74 73 20 6e 61 | dom-Detect.policy.and.set.its.na |
| 1465e0 | 6d 65 2c 20 74 68 65 6e 20 73 74 61 74 65 20 74 68 65 20 49 50 20 50 72 65 63 65 64 65 6e 63 65 | me,.then.state.the.IP.Precedence |
| 146600 | 20 66 6f 72 20 74 68 65 20 76 69 72 74 75 61 6c 20 71 75 65 75 65 20 79 6f 75 20 61 72 65 20 63 | .for.the.virtual.queue.you.are.c |
| 146620 | 6f 6e 66 69 67 75 72 69 6e 67 20 61 6e 64 20 77 68 61 74 20 69 74 73 20 6d 61 78 69 6d 75 6d 20 | onfiguring.and.what.its.maximum. |
| 146640 | 74 68 72 65 73 68 6f 6c 64 20 66 6f 72 20 72 61 6e 64 6f 6d 20 64 65 74 65 63 74 69 6f 6e 20 77 | threshold.for.random.detection.w |
| 146660 | 69 6c 6c 20 62 65 20 28 66 72 6f 6d 20 30 20 74 6f 20 34 30 39 36 20 70 61 63 6b 65 74 73 2c 20 | ill.be.(from.0.to.4096.packets,. |
| 146680 | 64 65 66 61 75 6c 74 3a 20 31 38 29 2e 20 41 74 20 74 68 69 73 20 73 69 7a 65 2c 20 74 68 65 20 | default:.18)..At.this.size,.the. |
| 1466a0 | 6d 61 72 6b 69 6e 67 20 28 64 72 6f 70 29 20 70 72 6f 62 61 62 69 6c 69 74 79 20 69 73 20 6d 61 | marking.(drop).probability.is.ma |
| 1466c0 | 78 69 6d 61 6c 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 | ximal..Use.this.command.to.confi |
| 1466e0 | 67 75 72 65 20 61 20 52 61 6e 64 6f 6d 2d 44 65 74 65 63 74 20 70 6f 6c 69 63 79 20 61 6e 64 20 | gure.a.Random-Detect.policy.and. |
| 146700 | 73 65 74 20 69 74 73 20 6e 61 6d 65 2c 20 74 68 65 6e 20 73 74 61 74 65 20 74 68 65 20 49 50 20 | set.its.name,.then.state.the.IP. |
| 146720 | 50 72 65 63 65 64 65 6e 63 65 20 66 6f 72 20 74 68 65 20 76 69 72 74 75 61 6c 20 71 75 65 75 65 | Precedence.for.the.virtual.queue |
| 146740 | 20 79 6f 75 20 61 72 65 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 61 6e 64 20 77 68 61 74 20 69 74 | .you.are.configuring.and.what.it |
| 146760 | 73 20 6d 69 6e 69 6d 75 6d 20 74 68 72 65 73 68 6f 6c 64 20 66 6f 72 20 72 61 6e 64 6f 6d 20 64 | s.minimum.threshold.for.random.d |
| 146780 | 65 74 65 63 74 69 6f 6e 20 77 69 6c 6c 20 62 65 20 28 66 72 6f 6d 20 30 20 74 6f 20 34 30 39 36 | etection.will.be.(from.0.to.4096 |
| 1467a0 | 20 70 61 63 6b 65 74 73 29 2e 20 20 49 66 20 74 68 69 73 20 76 61 6c 75 65 20 69 73 20 65 78 63 | .packets)...If.this.value.is.exc |
| 1467c0 | 65 65 64 65 64 2c 20 70 61 63 6b 65 74 73 20 73 74 61 72 74 20 62 65 69 6e 67 20 65 6c 69 67 69 | eeded,.packets.start.being.eligi |
| 1467e0 | 62 6c 65 20 66 6f 72 20 62 65 69 6e 67 20 64 72 6f 70 70 65 64 2e 00 55 73 65 20 74 68 69 73 20 | ble.for.being.dropped..Use.this. |
| 146800 | 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 52 61 6e 64 6f 6d 2d 44 65 | command.to.configure.a.Random-De |
| 146820 | 74 65 63 74 20 70 6f 6c 69 63 79 20 61 6e 64 20 73 65 74 20 69 74 73 20 6e 61 6d 65 2c 20 74 68 | tect.policy.and.set.its.name,.th |
| 146840 | 65 6e 20 73 74 61 74 65 20 74 68 65 20 49 50 20 50 72 65 63 65 64 65 6e 63 65 20 66 6f 72 20 74 | en.state.the.IP.Precedence.for.t |
| 146860 | 68 65 20 76 69 72 74 75 61 6c 20 71 75 65 75 65 20 79 6f 75 20 61 72 65 20 63 6f 6e 66 69 67 75 | he.virtual.queue.you.are.configu |
| 146880 | 72 69 6e 67 20 61 6e 64 20 77 68 61 74 20 74 68 65 20 73 69 7a 65 20 6f 66 20 69 74 73 20 61 76 | ring.and.what.the.size.of.its.av |
| 1468a0 | 65 72 61 67 65 2d 70 61 63 6b 65 74 20 73 68 6f 75 6c 64 20 62 65 20 28 69 6e 20 62 79 74 65 73 | erage-packet.should.be.(in.bytes |
| 1468c0 | 2c 20 64 65 66 61 75 6c 74 3a 20 31 30 32 34 29 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 | ,.default:.1024)..Use.this.comma |
| 1468e0 | 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 52 61 6e 64 6f 6d 2d 44 65 74 65 63 74 20 | nd.to.configure.a.Random-Detect. |
| 146900 | 70 6f 6c 69 63 79 2c 20 73 65 74 20 69 74 73 20 6e 61 6d 65 20 61 6e 64 20 73 65 74 20 74 68 65 | policy,.set.its.name.and.set.the |
| 146920 | 20 61 76 61 69 6c 61 62 6c 65 20 62 61 6e 64 77 69 64 74 68 20 66 6f 72 20 74 68 69 73 20 70 6f | .available.bandwidth.for.this.po |
| 146940 | 6c 69 63 79 2e 20 49 74 20 69 73 20 75 73 65 64 20 66 6f 72 20 63 61 6c 63 75 6c 61 74 69 6e 67 | licy..It.is.used.for.calculating |
| 146960 | 20 74 68 65 20 61 76 65 72 61 67 65 20 71 75 65 75 65 20 73 69 7a 65 20 61 66 74 65 72 20 73 6f | .the.average.queue.size.after.so |
| 146980 | 6d 65 20 69 64 6c 65 20 74 69 6d 65 2e 20 49 74 20 73 68 6f 75 6c 64 20 62 65 20 73 65 74 20 74 | me.idle.time..It.should.be.set.t |
| 1469a0 | 6f 20 74 68 65 20 62 61 6e 64 77 69 64 74 68 20 6f 66 20 79 6f 75 72 20 69 6e 74 65 72 66 61 63 | o.the.bandwidth.of.your.interfac |
| 1469c0 | 65 2e 20 52 61 6e 64 6f 6d 20 44 65 74 65 63 74 20 69 73 20 6e 6f 74 20 61 20 73 68 61 70 69 6e | e..Random.Detect.is.not.a.shapin |
| 1469e0 | 67 20 70 6f 6c 69 63 79 2c 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 77 69 6c 6c 20 6e 6f 74 20 | g.policy,.this.command.will.not. |
| 146a00 | 73 68 61 70 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 | shape..Use.this.command.to.confi |
| 146a20 | 67 75 72 65 20 61 20 52 61 74 65 2d 43 6f 6e 74 72 6f 6c 20 70 6f 6c 69 63 79 2c 20 73 65 74 20 | gure.a.Rate-Control.policy,.set. |
| 146a40 | 69 74 73 20 6e 61 6d 65 20 61 6e 64 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 61 6d 6f 75 6e 74 20 | its.name.and.the.maximum.amount. |
| 146a60 | 6f 66 20 74 69 6d 65 20 61 20 70 61 63 6b 65 74 20 63 61 6e 20 62 65 20 71 75 65 75 65 64 20 28 | of.time.a.packet.can.be.queued.( |
| 146a80 | 64 65 66 61 75 6c 74 3a 20 35 30 20 6d 73 29 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e | default:.50.ms)..Use.this.comman |
| 146aa0 | 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 52 61 74 65 2d 43 6f 6e 74 72 6f 6c 20 70 6f | d.to.configure.a.Rate-Control.po |
| 146ac0 | 6c 69 63 79 2c 20 73 65 74 20 69 74 73 20 6e 61 6d 65 20 61 6e 64 20 74 68 65 20 72 61 74 65 20 | licy,.set.its.name.and.the.rate. |
| 146ae0 | 6c 69 6d 69 74 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 68 61 76 65 2e 00 55 73 65 20 74 68 69 73 | limit.you.want.to.have..Use.this |
| 146b00 | 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 52 61 74 65 2d 43 6f 6e | .command.to.configure.a.Rate-Con |
| 146b20 | 74 72 6f 6c 20 70 6f 6c 69 63 79 2c 20 73 65 74 20 69 74 73 20 6e 61 6d 65 20 61 6e 64 20 74 68 | trol.policy,.set.its.name.and.th |
| 146b40 | 65 20 73 69 7a 65 20 6f 66 20 74 68 65 20 62 75 63 6b 65 74 20 69 6e 20 62 79 74 65 73 20 77 68 | e.size.of.the.bucket.in.bytes.wh |
| 146b60 | 69 63 68 20 77 69 6c 6c 20 62 65 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 62 75 72 73 74 2e | ich.will.be.available.for.burst. |
| 146b80 | 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 | .Use.this.command.to.configure.a |
| 146ba0 | 20 52 6f 75 6e 64 2d 52 6f 62 69 6e 20 70 6f 6c 69 63 79 2c 20 73 65 74 20 69 74 73 20 6e 61 6d | .Round-Robin.policy,.set.its.nam |
| 146bc0 | 65 2c 20 73 65 74 20 61 20 63 6c 61 73 73 20 49 44 2c 20 61 6e 64 20 74 68 65 20 71 75 61 6e 74 | e,.set.a.class.ID,.and.the.quant |
| 146be0 | 75 6d 20 66 6f 72 20 74 68 61 74 20 63 6c 61 73 73 2e 20 54 68 65 20 64 65 66 69 63 69 74 20 63 | um.for.that.class..The.deficit.c |
| 146c00 | 6f 75 6e 74 65 72 20 77 69 6c 6c 20 61 64 64 20 74 68 61 74 20 76 61 6c 75 65 20 65 61 63 68 20 | ounter.will.add.that.value.each. |
| 146c20 | 72 6f 75 6e 64 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 | round..Use.this.command.to.confi |
| 146c40 | 67 75 72 65 20 61 20 52 6f 75 6e 64 2d 52 6f 62 69 6e 20 70 6f 6c 69 63 79 2c 20 73 65 74 20 69 | gure.a.Round-Robin.policy,.set.i |
| 146c60 | 74 73 20 6e 61 6d 65 2c 20 73 65 74 20 61 20 63 6c 61 73 73 20 49 44 2c 20 61 6e 64 20 74 68 65 | ts.name,.set.a.class.ID,.and.the |
| 146c80 | 20 71 75 65 75 65 20 73 69 7a 65 20 69 6e 20 70 61 63 6b 65 74 73 2e 00 55 73 65 20 74 68 69 73 | .queue.size.in.packets..Use.this |
| 146ca0 | 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 53 68 61 70 65 72 20 70 | .command.to.configure.a.Shaper.p |
| 146cc0 | 6f 6c 69 63 79 2c 20 73 65 74 20 69 74 73 20 6e 61 6d 65 20 61 6e 64 20 74 68 65 20 6d 61 78 69 | olicy,.set.its.name.and.the.maxi |
| 146ce0 | 6d 75 6d 20 62 61 6e 64 77 69 64 74 68 20 66 6f 72 20 61 6c 6c 20 63 6f 6d 62 69 6e 65 64 20 74 | mum.bandwidth.for.all.combined.t |
| 146d00 | 72 61 66 66 69 63 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 | raffic..Use.this.command.to.conf |
| 146d20 | 69 67 75 72 65 20 61 20 53 68 61 70 65 72 20 70 6f 6c 69 63 79 2c 20 73 65 74 20 69 74 73 20 6e | igure.a.Shaper.policy,.set.its.n |
| 146d40 | 61 6d 65 2c 20 64 65 66 69 6e 65 20 61 20 63 6c 61 73 73 20 61 6e 64 20 73 65 74 20 74 68 65 20 | ame,.define.a.class.and.set.the. |
| 146d60 | 67 75 61 72 61 6e 74 65 65 64 20 74 72 61 66 66 69 63 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 61 | guaranteed.traffic.you.want.to.a |
| 146d80 | 6c 6c 6f 63 61 74 65 20 74 6f 20 74 68 61 74 20 63 6c 61 73 73 2e 00 55 73 65 20 74 68 69 73 20 | llocate.to.that.class..Use.this. |
| 146da0 | 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 53 68 61 70 65 72 20 70 6f | command.to.configure.a.Shaper.po |
| 146dc0 | 6c 69 63 79 2c 20 73 65 74 20 69 74 73 20 6e 61 6d 65 2c 20 64 65 66 69 6e 65 20 61 20 63 6c 61 | licy,.set.its.name,.define.a.cla |
| 146de0 | 73 73 20 61 6e 64 20 73 65 74 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 73 70 65 65 64 20 70 6f 73 | ss.and.set.the.maximum.speed.pos |
| 146e00 | 73 69 62 6c 65 20 66 6f 72 20 74 68 69 73 20 63 6c 61 73 73 2e 20 54 68 65 20 64 65 66 61 75 6c | sible.for.this.class..The.defaul |
| 146e20 | 74 20 63 65 69 6c 69 6e 67 20 76 61 6c 75 65 20 69 73 20 74 68 65 20 62 61 6e 64 77 69 64 74 68 | t.ceiling.value.is.the.bandwidth |
| 146e40 | 20 76 61 6c 75 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 | .value..Use.this.command.to.conf |
| 146e60 | 69 67 75 72 65 20 61 20 53 68 61 70 65 72 20 70 6f 6c 69 63 79 2c 20 73 65 74 20 69 74 73 20 6e | igure.a.Shaper.policy,.set.its.n |
| 146e80 | 61 6d 65 2c 20 64 65 66 69 6e 65 20 61 20 63 6c 61 73 73 20 61 6e 64 20 73 65 74 20 74 68 65 20 | ame,.define.a.class.and.set.the. |
| 146ea0 | 70 72 69 6f 72 69 74 79 20 66 6f 72 20 75 73 61 67 65 20 6f 66 20 61 76 61 69 6c 61 62 6c 65 20 | priority.for.usage.of.available. |
| 146ec0 | 62 61 6e 64 77 69 64 74 68 20 6f 6e 63 65 20 67 75 61 72 61 6e 74 65 65 73 20 68 61 76 65 20 62 | bandwidth.once.guarantees.have.b |
| 146ee0 | 65 65 6e 20 6d 65 74 2e 20 54 68 65 20 6c 6f 77 65 72 20 74 68 65 20 70 72 69 6f 72 69 74 79 20 | een.met..The.lower.the.priority. |
| 146f00 | 6e 75 6d 62 65 72 2c 20 74 68 65 20 68 69 67 68 65 72 20 74 68 65 20 70 72 69 6f 72 69 74 79 2e | number,.the.higher.the.priority. |
| 146f20 | 20 54 68 65 20 64 65 66 61 75 6c 74 20 70 72 69 6f 72 69 74 79 20 76 61 6c 75 65 20 69 73 20 30 | .The.default.priority.value.is.0 |
| 146f40 | 2c 20 74 68 65 20 68 69 67 68 65 73 74 20 70 72 69 6f 72 69 74 79 2e 00 55 73 65 20 74 68 69 73 | ,.the.highest.priority..Use.this |
| 146f60 | 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 53 68 61 70 65 72 20 70 | .command.to.configure.a.Shaper.p |
| 146f80 | 6f 6c 69 63 79 2c 20 73 65 74 20 69 74 73 20 6e 61 6d 65 2c 20 64 65 66 69 6e 65 20 61 20 63 6c | olicy,.set.its.name,.define.a.cl |
| 146fa0 | 61 73 73 20 61 6e 64 20 73 65 74 20 74 68 65 20 73 69 7a 65 20 6f 66 20 74 68 65 20 60 74 6f 63 | ass.and.set.the.size.of.the.`toc |
| 146fc0 | 6b 65 6e 20 62 75 63 6b 65 74 60 5f 20 69 6e 20 62 79 74 65 73 2c 20 77 68 69 63 68 20 77 69 6c | ken.bucket`_.in.bytes,.which.wil |
| 146fe0 | 6c 20 62 65 20 61 76 61 69 6c 61 62 6c 65 20 74 6f 20 62 65 20 73 65 6e 74 20 61 74 20 63 65 69 | l.be.available.to.be.sent.at.cei |
| 147000 | 6c 69 6e 67 20 73 70 65 65 64 20 28 64 65 66 61 75 6c 74 3a 20 31 35 4b 62 29 2e 00 55 73 65 20 | ling.speed.(default:.15Kb)..Use. |
| 147020 | 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 64 61 74 61 | this.command.to.configure.a.data |
| 147040 | 2d 72 61 74 65 20 6c 69 6d 69 74 20 74 6f 20 50 50 50 4f 6f 45 20 63 6c 69 65 6e 74 73 20 66 6f | -rate.limit.to.PPPOoE.clients.fo |
| 147060 | 72 20 74 72 61 66 66 69 63 20 64 6f 77 6e 6c 6f 61 64 20 6f 72 20 75 70 6c 6f 61 64 2e 20 54 68 | r.traffic.download.or.upload..Th |
| 147080 | 65 20 72 61 74 65 2d 6c 69 6d 69 74 20 69 73 20 73 65 74 20 69 6e 20 6b 62 69 74 2f 73 65 63 2e | e.rate-limit.is.set.in.kbit/sec. |
| 1470a0 | 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 | .Use.this.command.to.configure.a |
| 1470c0 | 20 64 72 6f 70 2d 74 61 69 6c 20 70 6f 6c 69 63 79 20 28 50 46 49 46 4f 29 2e 20 43 68 6f 6f 73 | .drop-tail.policy.(PFIFO)..Choos |
| 1470e0 | 65 20 61 20 75 6e 69 71 75 65 20 6e 61 6d 65 20 66 6f 72 20 74 68 69 73 20 70 6f 6c 69 63 79 20 | e.a.unique.name.for.this.policy. |
| 147100 | 61 6e 64 20 74 68 65 20 73 69 7a 65 20 6f 66 20 74 68 65 20 71 75 65 75 65 20 62 79 20 73 65 74 | and.the.size.of.the.queue.by.set |
| 147120 | 74 69 6e 67 20 74 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 70 61 63 6b 65 74 73 20 69 74 20 63 61 | ting.the.number.of.packets.it.ca |
| 147140 | 6e 20 63 6f 6e 74 61 69 6e 20 28 6d 61 78 69 6d 75 6d 20 34 32 39 34 39 36 37 32 39 35 29 2e 00 | n.contain.(maximum.4294967295).. |
| 147160 | 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 | Use.this.command.to.configure.a. |
| 147180 | 73 70 65 63 69 66 69 63 20 73 65 73 73 69 6f 6e 20 68 6f 6c 64 20 74 69 6d 65 20 66 6f 72 20 4c | specific.session.hold.time.for.L |
| 1471a0 | 44 50 20 70 65 65 72 73 2e 20 53 65 74 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 | DP.peers..Set.the.IP.address.of. |
| 1471c0 | 74 68 65 20 4c 44 50 20 70 65 65 72 20 61 6e 64 20 61 20 73 65 73 73 69 6f 6e 20 68 6f 6c 64 20 | the.LDP.peer.and.a.session.hold. |
| 1471e0 | 74 69 6d 65 20 74 68 61 74 20 73 68 6f 75 6c 64 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 66 | time.that.should.be.configured.f |
| 147200 | 6f 72 20 69 74 2e 20 59 6f 75 20 6d 61 79 20 68 61 76 65 20 74 6f 20 72 65 73 65 74 20 74 68 65 | or.it..You.may.have.to.reset.the |
| 147220 | 20 6e 65 69 67 68 62 6f 72 20 66 6f 72 20 74 68 69 73 20 74 6f 20 77 6f 72 6b 2e 00 55 73 65 20 | .neighbor.for.this.to.work..Use. |
| 147240 | 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 6e 20 49 6e 67 | this.command.to.configure.an.Ing |
| 147260 | 72 65 73 73 20 50 6f 6c 69 63 65 72 2c 20 64 65 66 69 6e 69 6e 67 20 69 74 73 20 6e 61 6d 65 20 | ress.Policer,.defining.its.name. |
| 147280 | 61 6e 64 20 74 68 65 20 62 75 72 73 74 20 73 69 7a 65 20 69 6e 20 62 79 74 65 73 20 28 64 65 66 | and.the.burst.size.in.bytes.(def |
| 1472a0 | 61 75 6c 74 3a 20 31 35 29 20 66 6f 72 20 69 74 73 20 64 65 66 61 75 6c 74 20 70 6f 6c 69 63 79 | ault:.15).for.its.default.policy |
| 1472c0 | 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 | ..Use.this.command.to.configure. |
| 1472e0 | 61 6e 20 49 6e 67 72 65 73 73 20 50 6f 6c 69 63 65 72 2c 20 64 65 66 69 6e 69 6e 67 20 69 74 73 | an.Ingress.Policer,.defining.its |
| 147300 | 20 6e 61 6d 65 20 61 6e 64 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 61 6c 6c 6f 77 65 64 20 62 61 | .name.and.the.maximum.allowed.ba |
| 147320 | 6e 64 77 69 64 74 68 20 66 6f 72 20 69 74 73 20 64 65 66 61 75 6c 74 20 70 6f 6c 69 63 79 2e 00 | ndwidth.for.its.default.policy.. |
| 147340 | 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 6e | Use.this.command.to.configure.an |
| 147360 | 20 49 6e 67 72 65 73 73 20 50 6f 6c 69 63 65 72 2c 20 64 65 66 69 6e 69 6e 67 20 69 74 73 20 6e | .Ingress.Policer,.defining.its.n |
| 147380 | 61 6d 65 2c 20 61 20 63 6c 61 73 73 20 69 64 65 6e 74 69 66 69 65 72 20 28 31 2d 34 30 39 30 29 | ame,.a.class.identifier.(1-4090) |
| 1473a0 | 20 61 6e 64 20 74 68 65 20 62 75 72 73 74 20 73 69 7a 65 20 69 6e 20 62 79 74 65 73 20 66 6f 72 | .and.the.burst.size.in.bytes.for |
| 1473c0 | 20 74 68 69 73 20 63 6c 61 73 73 20 28 64 65 66 61 75 6c 74 3a 20 31 35 29 2e 00 55 73 65 20 74 | .this.class.(default:.15)..Use.t |
| 1473e0 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 6e 20 49 6e 67 72 | his.command.to.configure.an.Ingr |
| 147400 | 65 73 73 20 50 6f 6c 69 63 65 72 2c 20 64 65 66 69 6e 69 6e 67 20 69 74 73 20 6e 61 6d 65 2c 20 | ess.Policer,.defining.its.name,. |
| 147420 | 61 20 63 6c 61 73 73 20 69 64 65 6e 74 69 66 69 65 72 20 28 31 2d 34 30 39 30 29 20 61 6e 64 20 | a.class.identifier.(1-4090).and. |
| 147440 | 74 68 65 20 6d 61 78 69 6d 75 6d 20 61 6c 6c 6f 77 65 64 20 62 61 6e 64 77 69 64 74 68 20 66 6f | the.maximum.allowed.bandwidth.fo |
| 147460 | 72 20 74 68 69 73 20 63 6c 61 73 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 | r.this.class..Use.this.command.t |
| 147480 | 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 6e 20 49 6e 67 72 65 73 73 20 50 6f 6c 69 63 65 72 2c 20 | o.configure.an.Ingress.Policer,. |
| 1474a0 | 64 65 66 69 6e 69 6e 67 20 69 74 73 20 6e 61 6d 65 2c 20 61 20 63 6c 61 73 73 20 69 64 65 6e 74 | defining.its.name,.a.class.ident |
| 1474c0 | 69 66 69 65 72 20 28 31 2d 34 30 39 30 29 2c 20 61 20 63 6c 61 73 73 20 6d 61 74 63 68 69 6e 67 | ifier.(1-4090),.a.class.matching |
| 1474e0 | 20 72 75 6c 65 20 6e 61 6d 65 20 61 6e 64 20 69 74 73 20 64 65 73 63 72 69 70 74 69 6f 6e 2e 00 | .rule.name.and.its.description.. |
| 147500 | 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 6e | Use.this.command.to.configure.an |
| 147520 | 20 49 6e 67 72 65 73 73 20 50 6f 6c 69 63 65 72 2c 20 64 65 66 69 6e 69 6e 67 20 69 74 73 20 6e | .Ingress.Policer,.defining.its.n |
| 147540 | 61 6d 65 2c 20 61 20 63 6c 61 73 73 20 69 64 65 6e 74 69 66 69 65 72 20 28 31 2d 34 30 39 30 29 | ame,.a.class.identifier.(1-4090) |
| 147560 | 2c 20 61 6e 64 20 74 68 65 20 70 72 69 6f 72 69 74 79 20 28 30 2d 32 30 2c 20 64 65 66 61 75 6c | ,.and.the.priority.(0-20,.defaul |
| 147580 | 74 20 32 30 29 20 69 6e 20 77 68 69 63 68 20 74 68 65 20 72 75 6c 65 20 69 73 20 65 76 61 6c 75 | t.20).in.which.the.rule.is.evalu |
| 1475a0 | 61 74 65 64 20 28 74 68 65 20 6c 6f 77 65 72 20 74 68 65 20 6e 75 6d 62 65 72 2c 20 74 68 65 20 | ated.(the.lower.the.number,.the. |
| 1475c0 | 68 69 67 68 65 72 20 74 68 65 20 70 72 69 6f 72 69 74 79 29 2e 00 55 73 65 20 74 68 69 73 20 63 | higher.the.priority)..Use.this.c |
| 1475e0 | 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 6e 20 66 71 2d 63 6f 64 65 6c 20 | ommand.to.configure.an.fq-codel. |
| 147600 | 70 6f 6c 69 63 79 2c 20 73 65 74 20 69 74 73 20 6e 61 6d 65 20 61 6e 64 20 74 68 65 20 6d 61 78 | policy,.set.its.name.and.the.max |
| 147620 | 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 62 79 74 65 73 20 28 64 65 66 61 75 6c 74 3a 20 31 | imum.number.of.bytes.(default:.1 |
| 147640 | 35 31 34 29 20 74 6f 20 62 65 20 64 65 71 75 65 75 65 64 20 66 72 6f 6d 20 61 20 71 75 65 75 65 | 514).to.be.dequeued.from.a.queue |
| 147660 | 20 61 74 20 6f 6e 63 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f | .at.once..Use.this.command.to.co |
| 147680 | 6e 66 69 67 75 72 65 20 61 6e 20 66 71 2d 63 6f 64 65 6c 20 70 6f 6c 69 63 79 2c 20 73 65 74 20 | nfigure.an.fq-codel.policy,.set. |
| 1476a0 | 69 74 73 20 6e 61 6d 65 20 61 6e 64 20 74 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 73 75 62 2d 71 | its.name.and.the.number.of.sub-q |
| 1476c0 | 75 65 75 65 73 20 28 64 65 66 61 75 6c 74 3a 20 31 30 32 34 29 20 69 6e 74 6f 20 77 68 69 63 68 | ueues.(default:.1024).into.which |
| 1476e0 | 20 70 61 63 6b 65 74 73 20 61 72 65 20 63 6c 61 73 73 69 66 69 65 64 2e 00 55 73 65 20 74 68 69 | .packets.are.classified..Use.thi |
| 147700 | 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 6e 20 66 71 2d 63 6f 64 | s.command.to.configure.an.fq-cod |
| 147720 | 65 6c 20 70 6f 6c 69 63 79 2c 20 73 65 74 20 69 74 73 20 6e 61 6d 65 20 61 6e 64 20 74 68 65 20 | el.policy,.set.its.name.and.the. |
| 147740 | 74 69 6d 65 20 70 65 72 69 6f 64 20 75 73 65 64 20 62 79 20 74 68 65 20 63 6f 6e 74 72 6f 6c 20 | time.period.used.by.the.control. |
| 147760 | 6c 6f 6f 70 20 6f 66 20 43 6f 44 65 6c 20 74 6f 20 64 65 74 65 63 74 20 77 68 65 6e 20 61 20 70 | loop.of.CoDel.to.detect.when.a.p |
| 147780 | 65 72 73 69 73 74 65 6e 74 20 71 75 65 75 65 20 69 73 20 64 65 76 65 6c 6f 70 69 6e 67 2c 20 65 | ersistent.queue.is.developing,.e |
| 1477a0 | 6e 73 75 72 69 6e 67 20 74 68 61 74 20 74 68 65 20 6d 65 61 73 75 72 65 64 20 6d 69 6e 69 6d 75 | nsuring.that.the.measured.minimu |
| 1477c0 | 6d 20 64 65 6c 61 79 20 64 6f 65 73 20 6e 6f 74 20 62 65 63 6f 6d 65 20 74 6f 6f 20 73 74 61 6c | m.delay.does.not.become.too.stal |
| 1477e0 | 65 20 28 64 65 66 61 75 6c 74 3a 20 31 30 30 6d 73 29 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d | e.(default:.100ms)..Use.this.com |
| 147800 | 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 6e 20 66 71 2d 63 6f 64 65 6c 20 70 6f | mand.to.configure.an.fq-codel.po |
| 147820 | 6c 69 63 79 2c 20 73 65 74 20 69 74 73 20 6e 61 6d 65 2c 20 61 6e 64 20 64 65 66 69 6e 65 20 61 | licy,.set.its.name,.and.define.a |
| 147840 | 20 68 61 72 64 20 6c 69 6d 69 74 20 6f 6e 20 74 68 65 20 72 65 61 6c 20 71 75 65 75 65 20 73 69 | .hard.limit.on.the.real.queue.si |
| 147860 | 7a 65 2e 20 57 68 65 6e 20 74 68 69 73 20 6c 69 6d 69 74 20 69 73 20 72 65 61 63 68 65 64 2c 20 | ze..When.this.limit.is.reached,. |
| 147880 | 6e 65 77 20 70 61 63 6b 65 74 73 20 61 72 65 20 64 72 6f 70 70 65 64 20 28 64 65 66 61 75 6c 74 | new.packets.are.dropped.(default |
| 1478a0 | 3a 20 31 30 32 34 30 20 70 61 63 6b 65 74 73 29 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 | :.10240.packets)..Use.this.comma |
| 1478c0 | 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 6e 20 66 71 2d 63 6f 64 65 6c 20 70 6f 6c 69 | nd.to.configure.an.fq-codel.poli |
| 1478e0 | 63 79 2c 20 73 65 74 20 69 74 73 20 6e 61 6d 65 2c 20 61 6e 64 20 64 65 66 69 6e 65 20 74 68 65 | cy,.set.its.name,.and.define.the |
| 147900 | 20 61 63 63 65 70 74 61 62 6c 65 20 6d 69 6e 69 6d 75 6d 20 73 74 61 6e 64 69 6e 67 2f 70 65 72 | .acceptable.minimum.standing/per |
| 147920 | 73 69 73 74 65 6e 74 20 71 75 65 75 65 20 64 65 6c 61 79 2e 20 54 68 69 73 20 6d 69 6e 69 6d 75 | sistent.queue.delay..This.minimu |
| 147940 | 6d 20 64 65 6c 61 79 20 69 73 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 74 72 61 63 6b 69 6e | m.delay.is.identified.by.trackin |
| 147960 | 67 20 74 68 65 20 6c 6f 63 61 6c 20 6d 69 6e 69 6d 75 6d 20 71 75 65 75 65 20 64 65 6c 61 79 20 | g.the.local.minimum.queue.delay. |
| 147980 | 74 68 61 74 20 70 61 63 6b 65 74 73 20 65 78 70 65 72 69 65 6e 63 65 20 28 64 65 66 61 75 6c 74 | that.packets.experience.(default |
| 1479a0 | 3a 20 35 6d 73 29 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 | :.5ms)..Use.this.command.to.conf |
| 1479c0 | 69 67 75 72 65 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 77 69 74 68 20 49 47 4d 50 20 73 6f 20 | igure.an.interface.with.IGMP.so. |
| 1479e0 | 74 68 61 74 20 50 49 4d 20 63 61 6e 20 72 65 63 65 69 76 65 20 49 47 4d 50 20 72 65 70 6f 72 74 | that.PIM.can.receive.IGMP.report |
| 147a00 | 73 20 61 6e 64 20 71 75 65 72 79 20 6f 6e 20 74 68 65 20 73 65 6c 65 63 74 65 64 20 69 6e 74 65 | s.and.query.on.the.selected.inte |
| 147a20 | 72 66 61 63 65 2e 20 42 79 20 64 65 66 61 75 6c 74 20 49 47 4d 50 20 76 65 72 73 69 6f 6e 20 33 | rface..By.default.IGMP.version.3 |
| 147a40 | 20 77 69 6c 6c 20 62 65 20 75 73 65 64 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 | .will.be.used..Use.this.command. |
| 147a60 | 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 66 6f 72 20 | to.configure.authentication.for. |
| 147a80 | 4c 44 50 20 70 65 65 72 73 2e 20 53 65 74 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 | LDP.peers..Set.the.IP.address.of |
| 147aa0 | 20 74 68 65 20 4c 44 50 20 70 65 65 72 20 61 6e 64 20 61 20 70 61 73 73 77 6f 72 64 20 74 68 61 | .the.LDP.peer.and.a.password.tha |
| 147ac0 | 74 20 73 68 6f 75 6c 64 20 62 65 20 73 68 61 72 65 64 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 62 | t.should.be.shared.in.order.to.b |
| 147ae0 | 65 63 6f 6d 65 20 6e 65 69 67 68 62 6f 72 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e | ecome.neighbors..Use.this.comman |
| 147b00 | 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 69 6e 20 74 68 65 20 73 65 6c 65 63 74 65 64 20 69 | d.to.configure.in.the.selected.i |
| 147b20 | 6e 74 65 72 66 61 63 65 20 74 68 65 20 49 47 4d 50 20 68 6f 73 74 20 71 75 65 72 79 20 69 6e 74 | nterface.the.IGMP.host.query.int |
| 147b40 | 65 72 76 61 6c 20 28 31 2d 31 38 30 30 29 20 69 6e 20 73 65 63 6f 6e 64 73 20 74 68 61 74 20 50 | erval.(1-1800).in.seconds.that.P |
| 147b60 | 49 4d 20 77 69 6c 6c 20 75 73 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f | IM.will.use..Use.this.command.to |
| 147b80 | 20 63 6f 6e 66 69 67 75 72 65 20 69 6e 20 74 68 65 20 73 65 6c 65 63 74 65 64 20 69 6e 74 65 72 | .configure.in.the.selected.inter |
| 147ba0 | 66 61 63 65 20 74 68 65 20 49 47 4d 50 20 71 75 65 72 79 20 72 65 73 70 6f 6e 73 65 20 74 69 6d | face.the.IGMP.query.response.tim |
| 147bc0 | 65 6f 75 74 20 76 61 6c 75 65 20 28 31 30 2d 32 35 30 29 20 69 6e 20 64 65 63 69 73 65 63 6f 6e | eout.value.(10-250).in.decisecon |
| 147be0 | 64 73 2e 20 49 66 20 61 20 72 65 70 6f 72 74 20 69 73 20 6e 6f 74 20 72 65 74 75 72 6e 65 64 20 | ds..If.a.report.is.not.returned. |
| 147c00 | 69 6e 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 74 69 6d 65 2c 20 69 74 20 77 69 6c 6c 20 62 | in.the.specified.time,.it.will.b |
| 147c20 | 65 20 61 73 73 75 6d 65 64 20 74 68 65 20 28 53 2c 47 29 20 6f 72 20 28 2a 2c 47 29 20 73 74 61 | e.assumed.the.(S,G).or.(*,G).sta |
| 147c40 | 74 65 20 3a 72 66 63 3a 60 37 37 36 31 23 73 65 63 74 69 6f 6e 2d 34 2e 31 60 20 68 61 73 20 74 | te.:rfc:`7761#section-4.1`.has.t |
| 147c60 | 69 6d 65 64 20 6f 75 74 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f | imed.out..Use.this.command.to.co |
| 147c80 | 6e 66 69 67 75 72 65 20 69 6e 20 74 68 65 20 73 65 6c 65 63 74 65 64 20 69 6e 74 65 72 66 61 63 | nfigure.in.the.selected.interfac |
| 147ca0 | 65 20 74 68 65 20 49 47 4d 50 20 71 75 65 72 79 20 72 65 73 70 6f 6e 73 65 20 74 69 6d 65 6f 75 | e.the.IGMP.query.response.timeou |
| 147cc0 | 74 20 76 61 6c 75 65 20 28 31 30 2d 32 35 30 29 20 69 6e 20 64 65 63 69 73 65 63 6f 6e 64 73 2e | t.value.(10-250).in.deciseconds. |
| 147ce0 | 20 49 66 20 61 20 72 65 70 6f 72 74 20 69 73 20 6e 6f 74 20 72 65 74 75 72 6e 65 64 20 69 6e 20 | .If.a.report.is.not.returned.in. |
| 147d00 | 74 68 65 20 73 70 65 63 69 66 69 65 64 20 74 69 6d 65 2c 20 69 74 20 77 69 6c 6c 20 62 65 20 61 | the.specified.time,.it.will.be.a |
| 147d20 | 73 73 75 6d 65 64 20 74 68 65 20 28 53 2c 47 29 20 6f 72 20 28 5c 2a 2c 47 29 20 73 74 61 74 65 | ssumed.the.(S,G).or.(\*,G).state |
| 147d40 | 20 3a 72 66 63 3a 60 37 37 36 31 23 73 65 63 74 69 6f 6e 2d 34 2e 31 60 20 68 61 73 20 74 69 6d | .:rfc:`7761#section-4.1`.has.tim |
| 147d60 | 65 64 20 6f 75 74 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 | ed.out..Use.this.command.to.conf |
| 147d80 | 69 67 75 72 65 20 69 6e 20 74 68 65 20 73 65 6c 65 63 74 65 64 20 69 6e 74 65 72 66 61 63 65 20 | igure.in.the.selected.interface. |
| 147da0 | 74 68 65 20 49 47 4d 50 20 71 75 65 72 79 20 72 65 73 70 6f 6e 73 65 20 74 69 6d 65 6f 75 74 20 | the.IGMP.query.response.timeout. |
| 147dc0 | 76 61 6c 75 65 20 28 31 30 2d 32 35 30 29 20 69 6e 20 64 65 63 69 73 65 63 6f 6e 64 73 2e 20 49 | value.(10-250).in.deciseconds..I |
| 147de0 | 66 20 61 20 72 65 70 6f 72 74 20 69 73 20 6e 6f 74 20 72 65 74 75 72 6e 65 64 20 69 6e 20 74 68 | f.a.report.is.not.returned.in.th |
| 147e00 | 65 20 73 70 65 63 69 66 69 65 64 20 74 69 6d 65 2c 20 69 74 20 77 69 6c 6c 20 62 65 20 61 73 73 | e.specified.time,.it.will.be.ass |
| 147e20 | 75 6d 65 64 20 74 68 65 20 60 28 53 2c 47 29 20 6f 72 20 28 2a 2c 47 29 20 73 74 61 74 65 20 3c | umed.the.`(S,G).or.(*,G).state.< |
| 147e40 | 68 74 74 70 73 3a 2f 2f 74 6f 6f 6c 73 2e 69 65 74 66 2e 6f 72 67 2f 68 74 6d 6c 2f 72 66 63 37 | https://tools.ietf.org/html/rfc7 |
| 147e60 | 37 36 31 23 73 65 63 74 69 6f 6e 2d 34 2e 31 3e 60 5f 20 68 61 73 20 74 69 6d 65 64 20 6f 75 74 | 761#section-4.1>`_.has.timed.out |
| 147e80 | 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 | ..Use.this.command.to.configure. |
| 147ea0 | 69 6e 20 74 68 65 20 73 65 6c 65 63 74 65 64 20 69 6e 74 65 72 66 61 63 65 20 74 68 65 20 4d 4c | in.the.selected.interface.the.ML |
| 147ec0 | 44 20 68 6f 73 74 20 71 75 65 72 79 20 69 6e 74 65 72 76 61 6c 20 28 31 2d 36 35 35 33 35 29 20 | D.host.query.interval.(1-65535). |
| 147ee0 | 69 6e 20 73 65 63 6f 6e 64 73 20 74 68 61 74 20 50 49 4d 20 77 69 6c 6c 20 75 73 65 2e 20 54 68 | in.seconds.that.PIM.will.use..Th |
| 147f00 | 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 31 32 35 20 73 65 63 6f 6e 64 73 2e 00 | e.default.value.is.125.seconds.. |
| 147f20 | 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 | Use.this.command.to.configure.th |
| 147f40 | 65 20 20 73 61 6d 70 6c 69 6e 67 20 72 61 74 65 20 66 6f 72 20 66 6c 6f 77 20 61 63 63 6f 75 6e | e..sampling.rate.for.flow.accoun |
| 147f60 | 74 69 6e 67 2e 20 54 68 65 20 73 79 73 74 65 6d 20 73 61 6d 70 6c 65 73 20 6f 6e 65 20 69 6e 20 | ting..The.system.samples.one.in. |
| 147f80 | 65 76 65 72 79 20 60 3c 72 61 74 65 3e 60 20 70 61 63 6b 65 74 73 2c 20 77 68 65 72 65 20 60 3c | every.`<rate>`.packets,.where.`< |
| 147fa0 | 72 61 74 65 3e 60 20 69 73 20 74 68 65 20 76 61 6c 75 65 20 63 6f 6e 66 69 67 75 72 65 64 20 66 | rate>`.is.the.value.configured.f |
| 147fc0 | 6f 72 20 74 68 65 20 73 61 6d 70 6c 69 6e 67 2d 72 61 74 65 20 6f 70 74 69 6f 6e 2e 20 54 68 65 | or.the.sampling-rate.option..The |
| 147fe0 | 20 61 64 76 61 6e 74 61 67 65 20 6f 66 20 73 61 6d 70 6c 69 6e 67 20 65 76 65 72 79 20 6e 20 70 | .advantage.of.sampling.every.n.p |
| 148000 | 61 63 6b 65 74 73 2c 20 77 68 65 72 65 20 6e 20 3e 20 31 2c 20 61 6c 6c 6f 77 73 20 79 6f 75 20 | ackets,.where.n.>.1,.allows.you. |
| 148020 | 74 6f 20 64 65 63 72 65 61 73 65 20 74 68 65 20 61 6d 6f 75 6e 74 20 6f 66 20 70 72 6f 63 65 73 | to.decrease.the.amount.of.proces |
| 148040 | 73 69 6e 67 20 72 65 73 6f 75 72 63 65 73 20 72 65 71 75 69 72 65 64 20 66 6f 72 20 66 6c 6f 77 | sing.resources.required.for.flow |
| 148060 | 20 61 63 63 6f 75 6e 74 69 6e 67 2e 20 54 68 65 20 64 69 73 61 64 76 61 6e 74 61 67 65 20 6f 66 | .accounting..The.disadvantage.of |
| 148080 | 20 6e 6f 74 20 73 61 6d 70 6c 69 6e 67 20 65 76 65 72 79 20 70 61 63 6b 65 74 20 69 73 20 74 68 | .not.sampling.every.packet.is.th |
| 1480a0 | 61 74 20 74 68 65 20 73 74 61 74 69 73 74 69 63 73 20 70 72 6f 64 75 63 65 64 20 61 72 65 20 65 | at.the.statistics.produced.are.e |
| 1480c0 | 73 74 69 6d 61 74 65 73 20 6f 66 20 61 63 74 75 61 6c 20 64 61 74 61 20 66 6c 6f 77 73 2e 00 55 | stimates.of.actual.data.flows..U |
| 1480e0 | 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 | se.this.command.to.configure.the |
| 148100 | 20 49 50 20 61 64 64 72 65 73 73 20 61 6e 64 20 74 68 65 20 73 68 61 72 65 64 20 73 65 63 72 65 | .IP.address.and.the.shared.secre |
| 148120 | 74 20 6b 65 79 20 6f 66 20 79 6f 75 72 20 52 41 44 49 55 53 20 73 65 72 76 65 72 2e 20 20 59 6f | t.key.of.your.RADIUS.server...Yo |
| 148140 | 75 20 63 61 6e 20 68 61 76 65 20 6d 75 6c 74 69 70 6c 65 20 52 41 44 49 55 53 20 73 65 72 76 65 | u.can.have.multiple.RADIUS.serve |
| 148160 | 72 73 20 63 6f 6e 66 69 67 75 72 65 64 20 69 66 20 79 6f 75 20 77 69 73 68 20 74 6f 20 61 63 68 | rs.configured.if.you.wish.to.ach |
| 148180 | 69 65 76 65 20 72 65 64 75 6e 64 61 6e 63 79 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e | ieve.redundancy..Use.this.comman |
| 1481a0 | 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 75 73 | d.to.configure.the.IP.address.us |
| 1481c0 | 65 64 20 61 73 20 74 68 65 20 4c 44 50 20 72 6f 75 74 65 72 2d 69 64 20 6f 66 20 74 68 65 20 6c | ed.as.the.LDP.router-id.of.the.l |
| 1481e0 | 6f 63 61 6c 20 64 65 76 69 63 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f | ocal.device..Use.this.command.to |
| 148200 | 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 50 49 4d 20 68 65 6c 6c 6f 20 69 6e 74 65 72 76 61 | .configure.the.PIM.hello.interva |
| 148220 | 6c 20 69 6e 20 73 65 63 6f 6e 64 73 20 28 31 2d 31 38 30 29 20 66 6f 72 20 74 68 65 20 73 65 6c | l.in.seconds.(1-180).for.the.sel |
| 148240 | 65 63 74 65 64 20 69 6e 74 65 72 66 61 63 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e | ected.interface..Use.this.comman |
| 148260 | 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 62 75 72 73 74 20 73 69 7a 65 20 6f 66 | d.to.configure.the.burst.size.of |
| 148280 | 20 74 68 65 20 74 72 61 66 66 69 63 20 69 6e 20 61 20 4e 65 74 77 6f 72 6b 20 45 6d 75 6c 61 74 | .the.traffic.in.a.Network.Emulat |
| 1482a0 | 6f 72 20 70 6f 6c 69 63 79 2e 20 44 65 66 69 6e 65 20 74 68 65 20 6e 61 6d 65 20 6f 66 20 74 68 | or.policy..Define.the.name.of.th |
| 1482c0 | 65 20 4e 65 74 77 6f 72 6b 20 45 6d 75 6c 61 74 6f 72 20 70 6f 6c 69 63 79 20 61 6e 64 20 69 74 | e.Network.Emulator.policy.and.it |
| 1482e0 | 73 20 74 72 61 66 66 69 63 20 62 75 72 73 74 20 73 69 7a 65 20 28 69 74 20 77 69 6c 6c 20 62 65 | s.traffic.burst.size.(it.will.be |
| 148300 | 20 63 6f 6e 66 69 67 75 72 65 64 20 74 68 72 6f 75 67 68 20 74 68 65 20 54 6f 6b 65 6e 20 42 75 | .configured.through.the.Token.Bu |
| 148320 | 63 6b 65 74 20 46 69 6c 74 65 72 20 71 64 69 73 63 29 2e 20 44 65 66 61 75 6c 74 3a 31 35 6b 62 | cket.Filter.qdisc)..Default:15kb |
| 148340 | 2e 20 49 74 20 77 69 6c 6c 20 6f 6e 6c 79 20 74 61 6b 65 20 65 66 66 65 63 74 20 69 66 20 79 6f | ..It.will.only.take.effect.if.yo |
| 148360 | 75 20 68 61 76 65 20 63 6f 6e 66 69 67 75 72 65 64 20 69 74 73 20 62 61 6e 64 77 69 64 74 68 20 | u.have.configured.its.bandwidth. |
| 148380 | 74 6f 6f 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 | too..Use.this.command.to.configu |
| 1483a0 | 72 65 20 74 68 65 20 6c 6f 63 61 6c 20 67 61 74 65 77 61 79 20 49 50 20 61 64 64 72 65 73 73 2e | re.the.local.gateway.IP.address. |
| 1483c0 | 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 | .Use.this.command.to.configure.t |
| 1483e0 | 68 65 20 6d 61 78 69 6d 75 6d 20 72 61 74 65 20 61 74 20 77 68 69 63 68 20 74 72 61 66 66 69 63 | he.maximum.rate.at.which.traffic |
| 148400 | 20 77 69 6c 6c 20 62 65 20 73 68 61 70 65 64 20 69 6e 20 61 20 4e 65 74 77 6f 72 6b 20 45 6d 75 | .will.be.shaped.in.a.Network.Emu |
| 148420 | 6c 61 74 6f 72 20 70 6f 6c 69 63 79 2e 20 44 65 66 69 6e 65 20 74 68 65 20 6e 61 6d 65 20 6f 66 | lator.policy..Define.the.name.of |
| 148440 | 20 74 68 65 20 70 6f 6c 69 63 79 20 61 6e 64 20 74 68 65 20 72 61 74 65 2e 00 55 73 65 20 74 68 | .the.policy.and.the.rate..Use.th |
| 148460 | 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 73 61 6d 70 | is.command.to.configure.the.samp |
| 148480 | 6c 69 6e 67 20 72 61 74 65 20 66 6f 72 20 73 46 6c 6f 77 20 61 63 63 6f 75 6e 74 69 6e 67 20 28 | ling.rate.for.sFlow.accounting.( |
| 1484a0 | 64 65 66 61 75 6c 74 3a 20 31 30 30 30 29 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 | default:.1000).Use.this.command. |
| 1484c0 | 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 75 73 65 72 6e 61 6d 65 20 61 6e 64 20 74 68 | to.configure.the.username.and.th |
| 1484e0 | 65 20 70 61 73 73 77 6f 72 64 20 6f 66 20 61 20 6c 6f 63 61 6c 6c 79 20 63 6f 6e 66 69 67 75 72 | e.password.of.a.locally.configur |
| 148500 | 65 64 20 75 73 65 72 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e | ed.user..Use.this.command.to.con |
| 148520 | 74 72 6f 6c 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 65 71 75 61 6c | trol.the.maximum.number.of.equal |
| 148540 | 20 63 6f 73 74 20 70 61 74 68 73 20 74 6f 20 72 65 61 63 68 20 61 20 73 70 65 63 69 66 69 63 20 | .cost.paths.to.reach.a.specific. |
| 148560 | 64 65 73 74 69 6e 61 74 69 6f 6e 2e 20 54 68 65 20 75 70 70 65 72 20 6c 69 6d 69 74 20 6d 61 79 | destination..The.upper.limit.may |
| 148580 | 20 64 69 66 66 65 72 20 69 66 20 79 6f 75 20 63 68 61 6e 67 65 20 74 68 65 20 76 61 6c 75 65 20 | .differ.if.you.change.the.value. |
| 1485a0 | 6f 66 20 4d 55 4c 54 49 50 41 54 48 5f 4e 55 4d 20 64 75 72 69 6e 67 20 63 6f 6d 70 69 6c 61 74 | of.MULTIPATH_NUM.during.compilat |
| 1485c0 | 69 6f 6e 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 4d 55 4c 54 49 50 41 54 48 5f 4e 55 | ion..The.default.is.MULTIPATH_NU |
| 1485e0 | 4d 20 28 36 34 29 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 72 65 61 | M.(64)..Use.this.command.to.crea |
| 148600 | 74 65 20 61 20 46 61 69 72 2d 51 75 65 75 65 20 70 6f 6c 69 63 79 20 61 6e 64 20 67 69 76 65 20 | te.a.Fair-Queue.policy.and.give. |
| 148620 | 69 74 20 61 20 6e 61 6d 65 2e 20 49 74 20 69 73 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 53 74 | it.a.name..It.is.based.on.the.St |
| 148640 | 6f 63 68 61 73 74 69 63 20 46 61 69 72 6e 65 73 73 20 51 75 65 75 65 69 6e 67 20 61 6e 64 20 63 | ochastic.Fairness.Queueing.and.c |
| 148660 | 61 6e 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 6f 75 74 62 6f 75 6e 64 20 74 72 61 66 66 69 | an.be.applied.to.outbound.traffi |
| 148680 | 63 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 49 50 | c..Use.this.command.to.define.IP |
| 1486a0 | 73 65 63 20 69 6e 74 65 72 66 61 63 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 | sec.interface..Use.this.command. |
| 1486c0 | 74 6f 20 64 65 66 69 6e 65 20 61 20 46 61 69 72 2d 51 75 65 75 65 20 70 6f 6c 69 63 79 2c 20 62 | to.define.a.Fair-Queue.policy,.b |
| 1486e0 | 61 73 65 64 20 6f 6e 20 74 68 65 20 53 74 6f 63 68 61 73 74 69 63 20 46 61 69 72 6e 65 73 73 20 | ased.on.the.Stochastic.Fairness. |
| 148700 | 51 75 65 75 65 69 6e 67 2c 20 61 6e 64 20 73 65 74 20 74 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 | Queueing,.and.set.the.number.of. |
| 148720 | 6d 61 78 69 6d 75 6d 20 70 61 63 6b 65 74 73 20 61 6c 6c 6f 77 65 64 20 74 6f 20 77 61 69 74 20 | maximum.packets.allowed.to.wait. |
| 148740 | 69 6e 20 74 68 65 20 71 75 65 75 65 2e 20 41 6e 79 20 6f 74 68 65 72 20 70 61 63 6b 65 74 20 77 | in.the.queue..Any.other.packet.w |
| 148760 | 69 6c 6c 20 62 65 20 64 72 6f 70 70 65 64 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 | ill.be.dropped..Use.this.command |
| 148780 | 20 74 6f 20 64 65 66 69 6e 65 20 61 20 46 61 69 72 2d 51 75 65 75 65 20 70 6f 6c 69 63 79 2c 20 | .to.define.a.Fair-Queue.policy,. |
| 1487a0 | 62 61 73 65 64 20 6f 6e 20 74 68 65 20 53 74 6f 63 68 61 73 74 69 63 20 46 61 69 72 6e 65 73 73 | based.on.the.Stochastic.Fairness |
| 1487c0 | 20 51 75 65 75 65 69 6e 67 2c 20 61 6e 64 20 73 65 74 20 74 68 65 20 6e 75 6d 62 65 72 20 6f 66 | .Queueing,.and.set.the.number.of |
| 1487e0 | 20 73 65 63 6f 6e 64 73 20 61 74 20 77 68 69 63 68 20 61 20 6e 65 77 20 71 75 65 75 65 20 61 6c | .seconds.at.which.a.new.queue.al |
| 148800 | 67 6f 72 69 74 68 6d 20 70 65 72 74 75 72 62 61 74 69 6f 6e 20 77 69 6c 6c 20 6f 63 63 75 72 20 | gorithm.perturbation.will.occur. |
| 148820 | 28 6d 61 78 69 6d 75 6d 20 34 32 39 34 39 36 37 32 39 35 29 2e 00 55 73 65 20 74 68 69 73 20 63 | (maximum.4294967295)..Use.this.c |
| 148840 | 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 64 65 66 61 75 6c 74 20 49 50 76 36 20 61 64 | ommand.to.define.default.IPv6.ad |
| 148860 | 64 72 65 73 73 20 70 6f 6f 6c 20 6e 61 6d 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e | dress.pool.name..Use.this.comman |
| 148880 | 64 20 74 6f 20 64 65 66 69 6e 65 20 64 65 66 61 75 6c 74 20 61 64 64 72 65 73 73 20 70 6f 6f 6c | d.to.define.default.address.pool |
| 1488a0 | 20 6e 61 6d 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e | .name..Use.this.command.to.defin |
| 1488c0 | 65 20 64 6f 6d 61 69 6e 73 2c 20 6f 6e 65 20 61 74 20 61 20 74 69 6d 65 2c 20 73 6f 20 74 68 61 | e.domains,.one.at.a.time,.so.tha |
| 1488e0 | 74 20 74 68 65 20 73 79 73 74 65 6d 20 75 73 65 73 20 74 68 65 6d 20 74 6f 20 63 6f 6d 70 6c 65 | t.the.system.uses.them.to.comple |
| 148900 | 74 65 20 75 6e 71 75 61 6c 69 66 69 65 64 20 68 6f 73 74 20 6e 61 6d 65 73 2e 20 4d 61 78 69 6d | te.unqualified.host.names..Maxim |
| 148920 | 75 6d 3a 20 36 20 65 6e 74 72 69 65 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 | um:.6.entries..Use.this.command. |
| 148940 | 74 6f 20 64 65 66 69 6e 65 20 69 6e 20 74 68 65 20 73 65 6c 65 63 74 65 64 20 69 6e 74 65 72 66 | to.define.in.the.selected.interf |
| 148960 | 61 63 65 20 77 68 65 74 68 65 72 20 79 6f 75 20 63 68 6f 6f 73 65 20 49 47 4d 50 20 76 65 72 73 | ace.whether.you.choose.IGMP.vers |
| 148980 | 69 6f 6e 20 32 20 6f 72 20 33 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 | ion.2.or.3..Use.this.command.to. |
| 1489a0 | 64 65 66 69 6e 65 20 69 6e 20 74 68 65 20 73 65 6c 65 63 74 65 64 20 69 6e 74 65 72 66 61 63 65 | define.in.the.selected.interface |
| 1489c0 | 20 77 68 65 74 68 65 72 20 79 6f 75 20 63 68 6f 6f 73 65 20 49 47 4d 50 20 76 65 72 73 69 6f 6e | .whether.you.choose.IGMP.version |
| 1489e0 | 20 32 20 6f 72 20 33 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 33 2e | .2.or.3..The.default.value.is.3. |
| 148a00 | 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 74 68 65 20 | .Use.this.command.to.define.the. |
| 148a20 | 49 50 20 61 64 64 72 65 73 73 20 72 61 6e 67 65 20 74 6f 20 62 65 20 67 69 76 65 6e 20 74 6f 20 | IP.address.range.to.be.given.to. |
| 148a40 | 50 50 50 6f 45 20 63 6c 69 65 6e 74 73 2e 20 49 66 20 6e 6f 74 61 74 69 6f 6e 20 60 60 78 2e 78 | PPPoE.clients..If.notation.``x.x |
| 148a60 | 2e 78 2e 78 2d 78 2e 78 2e 78 2e 78 60 60 2c 20 69 74 20 6d 75 73 74 20 62 65 20 77 69 74 68 69 | .x.x-x.x.x.x``,.it.must.be.withi |
| 148a80 | 6e 20 61 20 2f 32 34 20 73 75 62 6e 65 74 2e 20 49 66 20 6e 6f 74 61 74 69 6f 6e 20 60 60 78 2e | n.a./24.subnet..If.notation.``x. |
| 148aa0 | 78 2e 78 2e 78 2f 78 60 60 20 69 73 20 75 73 65 64 20 74 68 65 72 65 20 69 73 20 70 6f 73 73 69 | x.x.x/x``.is.used.there.is.possi |
| 148ac0 | 62 69 6c 69 74 79 20 74 6f 20 73 65 74 20 68 6f 73 74 2f 6e 65 74 6d 61 73 6b 2e 00 55 73 65 20 | bility.to.set.host/netmask..Use. |
| 148ae0 | 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 74 68 65 20 66 69 72 73 74 | this.command.to.define.the.first |
| 148b00 | 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 61 20 70 6f 6f 6c 20 6f 66 20 61 64 64 72 65 73 73 | .IP.address.of.a.pool.of.address |
| 148b20 | 65 73 20 74 6f 20 62 65 20 67 69 76 65 6e 20 74 6f 20 49 50 6f 45 20 63 6c 69 65 6e 74 73 2e 20 | es.to.be.given.to.IPoE.clients.. |
| 148b40 | 49 66 20 6e 6f 74 61 74 69 6f 6e 20 60 60 78 2e 78 2e 78 2e 78 2d 78 2e 78 2e 78 2e 78 60 60 2c | If.notation.``x.x.x.x-x.x.x.x``, |
| 148b60 | 20 69 74 20 6d 75 73 74 20 62 65 20 77 69 74 68 69 6e 20 61 20 2f 32 34 20 73 75 62 6e 65 74 2e | .it.must.be.within.a./24.subnet. |
| 148b80 | 20 49 66 20 6e 6f 74 61 74 69 6f 6e 20 60 60 78 2e 78 2e 78 2e 78 2f 78 60 60 20 69 73 20 75 73 | .If.notation.``x.x.x.x/x``.is.us |
| 148ba0 | 65 64 20 74 68 65 72 65 20 69 73 20 70 6f 73 73 69 62 69 6c 69 74 79 20 74 6f 20 73 65 74 20 68 | ed.there.is.possibility.to.set.h |
| 148bc0 | 6f 73 74 2f 6e 65 74 6d 61 73 6b 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f | ost/netmask..Use.this.command.to |
| 148be0 | 20 64 65 66 69 6e 65 20 74 68 65 20 66 69 72 73 74 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 | .define.the.first.IP.address.of. |
| 148c00 | 61 20 70 6f 6f 6c 20 6f 66 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 62 65 20 67 69 76 65 6e 20 | a.pool.of.addresses.to.be.given. |
| 148c20 | 74 6f 20 50 50 50 6f 45 20 63 6c 69 65 6e 74 73 2e 20 49 74 20 6d 75 73 74 20 62 65 20 77 69 74 | to.PPPoE.clients..It.must.be.wit |
| 148c40 | 68 69 6e 20 61 20 2f 32 34 20 73 75 62 6e 65 74 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 | hin.a./24.subnet..Use.this.comma |
| 148c60 | 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 74 68 65 20 66 69 72 73 74 20 49 50 20 61 64 64 72 65 73 | nd.to.define.the.first.IP.addres |
| 148c80 | 73 20 6f 66 20 61 20 70 6f 6f 6c 20 6f 66 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 62 65 20 67 | s.of.a.pool.of.addresses.to.be.g |
| 148ca0 | 69 76 65 6e 20 74 6f 20 50 50 54 50 20 63 6c 69 65 6e 74 73 2e 20 49 66 20 6e 6f 74 61 74 69 6f | iven.to.PPTP.clients..If.notatio |
| 148cc0 | 6e 20 60 60 78 2e 78 2e 78 2e 78 2d 78 2e 78 2e 78 2e 78 60 60 2c 20 69 74 20 6d 75 73 74 20 62 | n.``x.x.x.x-x.x.x.x``,.it.must.b |
| 148ce0 | 65 20 77 69 74 68 69 6e 20 61 20 2f 32 34 20 73 75 62 6e 65 74 2e 20 49 66 20 6e 6f 74 61 74 69 | e.within.a./24.subnet..If.notati |
| 148d00 | 6f 6e 20 60 60 78 2e 78 2e 78 2e 78 2f 78 60 60 20 69 73 20 75 73 65 64 20 74 68 65 72 65 20 69 | on.``x.x.x.x/x``.is.used.there.i |
| 148d20 | 73 20 70 6f 73 73 69 62 69 6c 69 74 79 20 74 6f 20 73 65 74 20 68 6f 73 74 2f 6e 65 74 6d 61 73 | s.possibility.to.set.host/netmas |
| 148d40 | 6b 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 74 68 | k..Use.this.command.to.define.th |
| 148d60 | 65 20 66 69 72 73 74 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 61 20 70 6f 6f 6c 20 6f 66 20 | e.first.IP.address.of.a.pool.of. |
| 148d80 | 61 64 64 72 65 73 73 65 73 20 74 6f 20 62 65 20 67 69 76 65 6e 20 74 6f 20 53 53 54 50 20 63 6c | addresses.to.be.given.to.SSTP.cl |
| 148da0 | 69 65 6e 74 73 2e 20 49 66 20 6e 6f 74 61 74 69 6f 6e 20 60 60 78 2e 78 2e 78 2e 78 2d 78 2e 78 | ients..If.notation.``x.x.x.x-x.x |
| 148dc0 | 2e 78 2e 78 60 60 2c 20 69 74 20 6d 75 73 74 20 62 65 20 77 69 74 68 69 6e 20 61 20 2f 32 34 20 | .x.x``,.it.must.be.within.a./24. |
| 148de0 | 73 75 62 6e 65 74 2e 20 49 66 20 6e 6f 74 61 74 69 6f 6e 20 60 60 78 2e 78 2e 78 2e 78 2f 78 60 | subnet..If.notation.``x.x.x.x/x` |
| 148e00 | 60 20 69 73 20 75 73 65 64 20 74 68 65 72 65 20 69 73 20 70 6f 73 73 69 62 69 6c 69 74 79 20 74 | `.is.used.there.is.possibility.t |
| 148e20 | 6f 20 73 65 74 20 68 6f 73 74 2f 6e 65 74 6d 61 73 6b 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d | o.set.host/netmask..Use.this.com |
| 148e40 | 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 74 68 65 20 66 69 72 73 74 20 49 50 20 61 64 64 72 | mand.to.define.the.first.IP.addr |
| 148e60 | 65 73 73 20 6f 66 20 61 20 70 6f 6f 6c 20 6f 66 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 62 65 | ess.of.a.pool.of.addresses.to.be |
| 148e80 | 20 67 69 76 65 6e 20 74 6f 20 6c 32 74 70 20 63 6c 69 65 6e 74 73 2e 20 49 66 20 6e 6f 74 61 74 | .given.to.l2tp.clients..If.notat |
| 148ea0 | 69 6f 6e 20 60 60 78 2e 78 2e 78 2e 78 2d 78 2e 78 2e 78 2e 78 60 60 2c 20 69 74 20 6d 75 73 74 | ion.``x.x.x.x-x.x.x.x``,.it.must |
| 148ec0 | 20 62 65 20 77 69 74 68 69 6e 20 61 20 2f 32 34 20 73 75 62 6e 65 74 2e 20 49 66 20 6e 6f 74 61 | .be.within.a./24.subnet..If.nota |
| 148ee0 | 74 69 6f 6e 20 60 60 78 2e 78 2e 78 2e 78 2f 78 60 60 20 69 73 20 75 73 65 64 20 74 68 65 72 65 | tion.``x.x.x.x/x``.is.used.there |
| 148f00 | 20 69 73 20 70 6f 73 73 69 62 69 6c 69 74 79 20 74 6f 20 73 65 74 20 68 6f 73 74 2f 6e 65 74 6d | .is.possibility.to.set.host/netm |
| 148f20 | 61 73 6b 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 | ask..Use.this.command.to.define. |
| 148f40 | 74 68 65 20 66 69 72 73 74 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 61 20 70 6f 6f 6c 20 6f | the.first.IP.address.of.a.pool.o |
| 148f60 | 66 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 62 65 20 67 69 76 65 6e 20 74 6f 20 70 70 70 6f 65 | f.addresses.to.be.given.to.pppoe |
| 148f80 | 20 63 6c 69 65 6e 74 73 2e 20 49 66 20 6e 6f 74 61 74 69 6f 6e 20 60 60 78 2e 78 2e 78 2e 78 2d | .clients..If.notation.``x.x.x.x- |
| 148fa0 | 78 2e 78 2e 78 2e 78 60 60 2c 20 69 74 20 6d 75 73 74 20 62 65 20 77 69 74 68 69 6e 20 61 20 2f | x.x.x.x``,.it.must.be.within.a./ |
| 148fc0 | 32 34 20 73 75 62 6e 65 74 2e 20 49 66 20 6e 6f 74 61 74 69 6f 6e 20 60 60 78 2e 78 2e 78 2e 78 | 24.subnet..If.notation.``x.x.x.x |
| 148fe0 | 2f 78 60 60 20 69 73 20 75 73 65 64 20 74 68 65 72 65 20 69 73 20 70 6f 73 73 69 62 69 6c 69 74 | /x``.is.used.there.is.possibilit |
| 149000 | 79 20 74 6f 20 73 65 74 20 68 6f 73 74 2f 6e 65 74 6d 61 73 6b 2e 00 55 73 65 20 74 68 69 73 20 | y.to.set.host/netmask..Use.this. |
| 149020 | 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 | command.to.define.the.interface. |
| 149040 | 74 68 65 20 50 50 50 6f 45 20 73 65 72 76 65 72 20 77 69 6c 6c 20 75 73 65 20 74 6f 20 6c 69 73 | the.PPPoE.server.will.use.to.lis |
| 149060 | 74 65 6e 20 66 6f 72 20 50 50 50 6f 45 20 63 6c 69 65 6e 74 73 2e 00 55 73 65 20 74 68 69 73 20 | ten.for.PPPoE.clients..Use.this. |
| 149080 | 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 74 68 65 20 6c 61 73 74 20 49 50 20 61 64 | command.to.define.the.last.IP.ad |
| 1490a0 | 64 72 65 73 73 20 6f 66 20 61 20 70 6f 6f 6c 20 6f 66 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 | dress.of.a.pool.of.addresses.to. |
| 1490c0 | 62 65 20 67 69 76 65 6e 20 74 6f 20 50 50 50 6f 45 20 63 6c 69 65 6e 74 73 2e 20 49 74 20 6d 75 | be.given.to.PPPoE.clients..It.mu |
| 1490e0 | 73 74 20 62 65 20 77 69 74 68 69 6e 20 61 20 2f 32 34 20 73 75 62 6e 65 74 2e 00 55 73 65 20 74 | st.be.within.a./24.subnet..Use.t |
| 149100 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 74 68 65 20 6c 65 6e 67 74 68 | his.command.to.define.the.length |
| 149120 | 20 6f 66 20 74 68 65 20 71 75 65 75 65 20 6f 66 20 79 6f 75 72 20 4e 65 74 77 6f 72 6b 20 45 6d | .of.the.queue.of.your.Network.Em |
| 149140 | 75 6c 61 74 6f 72 20 70 6f 6c 69 63 79 2e 20 53 65 74 20 74 68 65 20 70 6f 6c 69 63 79 20 6e 61 | ulator.policy..Set.the.policy.na |
| 149160 | 6d 65 20 61 6e 64 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 70 61 63 | me.and.the.maximum.number.of.pac |
| 149180 | 6b 65 74 73 20 28 31 2d 34 32 39 34 39 36 37 32 39 35 29 20 74 68 65 20 71 75 65 75 65 20 6d 61 | kets.(1-4294967295).the.queue.ma |
| 1491a0 | 79 20 68 6f 6c 64 20 71 75 65 75 65 64 20 61 74 20 61 20 74 69 6d 65 2e 00 55 73 65 20 74 68 69 | y.hold.queued.at.a.time..Use.thi |
| 1491c0 | 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 | s.command.to.define.the.maximum. |
| 1491e0 | 6e 75 6d 62 65 72 20 6f 66 20 65 6e 74 72 69 65 73 20 74 6f 20 6b 65 65 70 20 69 6e 20 74 68 65 | number.of.entries.to.keep.in.the |
| 149200 | 20 41 52 50 20 63 61 63 68 65 20 28 31 30 32 34 2c 20 32 30 34 38 2c 20 34 30 39 36 2c 20 38 31 | .ARP.cache.(1024,.2048,.4096,.81 |
| 149220 | 39 32 2c 20 31 36 33 38 34 2c 20 33 32 37 36 38 29 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d | 92,.16384,.32768)..Use.this.comm |
| 149240 | 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 | and.to.define.the.maximum.number |
| 149260 | 20 6f 66 20 65 6e 74 72 69 65 73 20 74 6f 20 6b 65 65 70 20 69 6e 20 74 68 65 20 4e 65 69 67 68 | .of.entries.to.keep.in.the.Neigh |
| 149280 | 62 6f 72 20 63 61 63 68 65 20 28 31 30 32 34 2c 20 32 30 34 38 2c 20 34 30 39 36 2c 20 38 31 39 | bor.cache.(1024,.2048,.4096,.819 |
| 1492a0 | 32 2c 20 31 36 33 38 34 2c 20 33 32 37 36 38 29 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 | 2,.16384,.32768)..Use.this.comma |
| 1492c0 | 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 74 68 65 20 6e 65 78 74 20 61 64 64 72 65 73 73 20 70 6f | nd.to.define.the.next.address.po |
| 1492e0 | 6f 6c 20 6e 61 6d 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 | ol.name..Use.this.command.to.def |
| 149300 | 69 6e 65 20 77 68 65 74 68 65 72 20 79 6f 75 72 20 50 50 50 6f 45 20 63 6c 69 65 6e 74 73 20 77 | ine.whether.your.PPPoE.clients.w |
| 149320 | 69 6c 6c 20 6c 6f 63 61 6c 6c 79 20 61 75 74 68 65 6e 74 69 63 61 74 65 20 69 6e 20 79 6f 75 72 | ill.locally.authenticate.in.your |
| 149340 | 20 56 79 4f 53 20 73 79 73 74 65 6d 20 6f 72 20 69 6e 20 52 41 44 49 55 53 20 73 65 72 76 65 72 | .VyOS.system.or.in.RADIUS.server |
| 149360 | 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 69 72 65 63 74 20 61 6e 20 | ..Use.this.command.to.direct.an. |
| 149380 | 69 6e 74 65 72 66 61 63 65 20 74 6f 20 6e 6f 74 20 64 65 74 65 63 74 20 61 6e 79 20 70 68 79 73 | interface.to.not.detect.any.phys |
| 1493a0 | 69 63 61 6c 20 73 74 61 74 65 20 63 68 61 6e 67 65 73 20 6f 6e 20 61 20 6c 69 6e 6b 2c 20 66 6f | ical.state.changes.on.a.link,.fo |
| 1493c0 | 72 20 65 78 61 6d 70 6c 65 2c 20 77 68 65 6e 20 74 68 65 20 63 61 62 6c 65 20 69 73 20 75 6e 70 | r.example,.when.the.cable.is.unp |
| 1493e0 | 6c 75 67 67 65 64 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 69 73 61 | lugged..Use.this.command.to.disa |
| 149400 | 62 6c 65 20 49 50 76 34 20 64 69 72 65 63 74 65 64 20 62 72 6f 61 64 63 61 73 74 20 66 6f 72 77 | ble.IPv4.directed.broadcast.forw |
| 149420 | 61 72 64 69 6e 67 20 6f 6e 20 61 6c 6c 20 69 6e 74 65 72 66 61 63 65 73 2e 00 55 73 65 20 74 68 | arding.on.all.interfaces..Use.th |
| 149440 | 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 69 73 61 62 6c 65 20 49 50 76 34 20 66 6f 72 77 61 | is.command.to.disable.IPv4.forwa |
| 149460 | 72 64 69 6e 67 20 6f 6e 20 61 6c 6c 20 69 6e 74 65 72 66 61 63 65 73 2e 00 55 73 65 20 74 68 69 | rding.on.all.interfaces..Use.thi |
| 149480 | 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 69 73 61 62 6c 65 20 49 50 76 36 20 66 6f 72 77 61 72 | s.command.to.disable.IPv6.forwar |
| 1494a0 | 64 69 6e 67 20 6f 6e 20 61 6c 6c 20 69 6e 74 65 72 66 61 63 65 73 2e 00 55 73 65 20 74 68 69 73 | ding.on.all.interfaces..Use.this |
| 1494c0 | 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 69 73 61 62 6c 65 20 49 50 76 36 20 6f 70 65 72 61 74 69 | .command.to.disable.IPv6.operati |
| 1494e0 | 6f 6e 20 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 77 68 65 6e 20 44 75 70 6c 69 63 61 74 65 20 41 | on.on.interface.when.Duplicate.A |
| 149500 | 64 64 72 65 73 73 20 44 65 74 65 63 74 69 6f 6e 20 66 61 69 6c 73 20 6f 6e 20 4c 69 6e 6b 2d 4c | ddress.Detection.fails.on.Link-L |
| 149520 | 6f 63 61 6c 20 61 64 64 72 65 73 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 | ocal.address..Use.this.command.t |
| 149540 | 6f 20 64 69 73 61 62 6c 65 20 74 68 65 20 67 65 6e 65 72 61 74 69 6f 6e 20 6f 66 20 45 74 68 65 | o.disable.the.generation.of.Ethe |
| 149560 | 72 6e 65 74 20 66 6c 6f 77 20 63 6f 6e 74 72 6f 6c 20 28 70 61 75 73 65 20 66 72 61 6d 65 73 29 | rnet.flow.control.(pause.frames) |
| 149580 | 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 65 6d 75 6c 61 74 65 20 6e 6f | ..Use.this.command.to.emulate.no |
| 1495a0 | 69 73 65 20 69 6e 20 61 20 4e 65 74 77 6f 72 6b 20 45 6d 75 6c 61 74 6f 72 20 70 6f 6c 69 63 79 | ise.in.a.Network.Emulator.policy |
| 1495c0 | 2e 20 53 65 74 20 74 68 65 20 70 6f 6c 69 63 79 20 6e 61 6d 65 20 61 6e 64 20 74 68 65 20 70 65 | ..Set.the.policy.name.and.the.pe |
| 1495e0 | 72 63 65 6e 74 61 67 65 20 6f 66 20 63 6f 72 72 75 70 74 65 64 20 70 61 63 6b 65 74 73 20 79 6f | rcentage.of.corrupted.packets.yo |
| 149600 | 75 20 77 61 6e 74 2e 20 41 20 72 61 6e 64 6f 6d 20 65 72 72 6f 72 20 77 69 6c 6c 20 62 65 20 69 | u.want..A.random.error.will.be.i |
| 149620 | 6e 74 72 6f 64 75 63 65 64 20 69 6e 20 61 20 72 61 6e 64 6f 6d 20 70 6f 73 69 74 69 6f 6e 20 66 | ntroduced.in.a.random.position.f |
| 149640 | 6f 72 20 74 68 65 20 63 68 6f 73 65 6e 20 70 65 72 63 65 6e 74 20 6f 66 20 70 61 63 6b 65 74 73 | or.the.chosen.percent.of.packets |
| 149660 | 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 65 6d 75 6c 61 74 65 20 70 61 | ..Use.this.command.to.emulate.pa |
| 149680 | 63 6b 65 74 2d 6c 6f 73 73 20 63 6f 6e 64 69 74 69 6f 6e 73 20 69 6e 20 61 20 4e 65 74 77 6f 72 | cket-loss.conditions.in.a.Networ |
| 1496a0 | 6b 20 45 6d 75 6c 61 74 6f 72 20 70 6f 6c 69 63 79 2e 20 53 65 74 20 74 68 65 20 70 6f 6c 69 63 | k.Emulator.policy..Set.the.polic |
| 1496c0 | 79 20 6e 61 6d 65 20 61 6e 64 20 74 68 65 20 70 65 72 63 65 6e 74 61 67 65 20 6f 66 20 6c 6f 73 | y.name.and.the.percentage.of.los |
| 1496e0 | 73 20 70 61 63 6b 65 74 73 20 79 6f 75 72 20 74 72 61 66 66 69 63 20 77 69 6c 6c 20 73 75 66 66 | s.packets.your.traffic.will.suff |
| 149700 | 65 72 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 65 6d 75 6c 61 74 65 20 | er..Use.this.command.to.emulate. |
| 149720 | 70 61 63 6b 65 74 2d 72 65 6f 72 64 65 72 69 6e 67 20 63 6f 6e 64 69 74 69 6f 6e 73 20 69 6e 20 | packet-reordering.conditions.in. |
| 149740 | 61 20 4e 65 74 77 6f 72 6b 20 45 6d 75 6c 61 74 6f 72 20 70 6f 6c 69 63 79 2e 20 53 65 74 20 74 | a.Network.Emulator.policy..Set.t |
| 149760 | 68 65 20 70 6f 6c 69 63 79 20 6e 61 6d 65 20 61 6e 64 20 74 68 65 20 70 65 72 63 65 6e 74 61 67 | he.policy.name.and.the.percentag |
| 149780 | 65 20 6f 66 20 72 65 6f 72 64 65 72 65 64 20 70 61 63 6b 65 74 73 20 79 6f 75 72 20 74 72 61 66 | e.of.reordered.packets.your.traf |
| 1497a0 | 66 69 63 20 77 69 6c 6c 20 73 75 66 66 65 72 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e | fic.will.suffer..Use.this.comman |
| 1497c0 | 64 20 74 6f 20 65 6e 61 62 6c 65 20 4c 44 50 20 6f 6e 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 | d.to.enable.LDP.on.the.interface |
| 1497e0 | 20 79 6f 75 20 64 65 66 69 6e 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f | .you.define..Use.this.command.to |
| 149800 | 20 65 6e 61 62 6c 65 20 4d 50 4c 53 20 70 72 6f 63 65 73 73 69 6e 67 20 6f 6e 20 74 68 65 20 69 | .enable.MPLS.processing.on.the.i |
| 149820 | 6e 74 65 72 66 61 63 65 20 79 6f 75 20 64 65 66 69 6e 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f | nterface.you.define..Use.this.co |
| 149840 | 6d 6d 61 6e 64 20 74 6f 20 65 6e 61 62 6c 65 20 50 49 4d 20 69 6e 20 74 68 65 20 73 65 6c 65 63 | mmand.to.enable.PIM.in.the.selec |
| 149860 | 74 65 64 20 69 6e 74 65 72 66 61 63 65 20 73 6f 20 74 68 61 74 20 69 74 20 63 61 6e 20 63 6f 6d | ted.interface.so.that.it.can.com |
| 149880 | 6d 75 6e 69 63 61 74 65 20 77 69 74 68 20 50 49 4d 20 6e 65 69 67 68 62 6f 72 73 2e 00 55 73 65 | municate.with.PIM.neighbors..Use |
| 1498a0 | 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 65 6e 61 62 6c 65 20 50 49 4d 76 36 20 69 6e | .this.command.to.enable.PIMv6.in |
| 1498c0 | 20 74 68 65 20 73 65 6c 65 63 74 65 64 20 69 6e 74 65 72 66 61 63 65 20 73 6f 20 74 68 61 74 20 | .the.selected.interface.so.that. |
| 1498e0 | 69 74 20 63 61 6e 20 63 6f 6d 6d 75 6e 69 63 61 74 65 20 77 69 74 68 20 50 49 4d 76 36 20 6e 65 | it.can.communicate.with.PIMv6.ne |
| 149900 | 69 67 68 62 6f 72 73 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 6c 73 6f 20 65 6e 61 62 6c | ighbors..This.command.also.enabl |
| 149920 | 65 73 20 4d 4c 44 20 72 65 70 6f 72 74 73 20 61 6e 64 20 71 75 65 72 79 20 6f 6e 20 74 68 65 20 | es.MLD.reports.and.query.on.the. |
| 149940 | 69 6e 74 65 72 66 61 63 65 20 75 6e 6c 65 73 73 20 3a 63 66 67 63 6d 64 3a 60 6d 6c 64 20 64 69 | interface.unless.:cfgcmd:`mld.di |
| 149960 | 73 61 62 6c 65 60 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 2e 00 55 73 65 20 74 68 69 73 20 63 | sable`.is.configured..Use.this.c |
| 149980 | 6f 6d 6d 61 6e 64 20 74 6f 20 65 6e 61 62 6c 65 20 61 63 71 75 69 73 69 74 69 6f 6e 20 6f 66 20 | ommand.to.enable.acquisition.of. |
| 1499a0 | 49 50 76 36 20 61 64 64 72 65 73 73 20 75 73 69 6e 67 20 73 74 61 74 65 6c 65 73 73 20 61 75 74 | IPv6.address.using.stateless.aut |
| 1499c0 | 6f 63 6f 6e 66 69 67 20 28 53 4c 41 41 43 29 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e | oconfig.(SLAAC)..Use.this.comman |
| 1499e0 | 64 20 74 6f 20 65 6e 61 62 6c 65 20 62 61 6e 64 77 69 64 74 68 20 73 68 61 70 69 6e 67 20 76 69 | d.to.enable.bandwidth.shaping.vi |
| 149a00 | 61 20 52 41 44 49 55 53 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 65 6e | a.RADIUS..Use.this.command.to.en |
| 149a20 | 61 62 6c 65 20 70 72 6f 78 79 20 41 64 64 72 65 73 73 20 52 65 73 6f 6c 75 74 69 6f 6e 20 50 72 | able.proxy.Address.Resolution.Pr |
| 149a40 | 6f 74 6f 63 6f 6c 20 28 41 52 50 29 20 6f 6e 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 2e 20 | otocol.(ARP).on.this.interface.. |
| 149a60 | 50 72 6f 78 79 20 41 52 50 20 61 6c 6c 6f 77 73 20 61 6e 20 45 74 68 65 72 6e 65 74 20 69 6e 74 | Proxy.ARP.allows.an.Ethernet.int |
| 149a80 | 65 72 66 61 63 65 20 74 6f 20 72 65 73 70 6f 6e 64 20 77 69 74 68 20 69 74 73 20 6f 77 6e 20 3a | erface.to.respond.with.its.own.: |
| 149aa0 | 61 62 62 72 3a 60 4d 41 43 20 28 4d 65 64 69 61 20 41 63 63 65 73 73 20 43 6f 6e 74 72 6f 6c 29 | abbr:`MAC.(Media.Access.Control) |
| 149ac0 | 60 20 61 64 64 72 65 73 73 20 74 6f 20 41 52 50 20 72 65 71 75 65 73 74 73 20 66 6f 72 20 64 65 | `.address.to.ARP.requests.for.de |
| 149ae0 | 73 74 69 6e 61 74 69 6f 6e 20 49 50 20 61 64 64 72 65 73 73 65 73 20 6f 6e 20 73 75 62 6e 65 74 | stination.IP.addresses.on.subnet |
| 149b00 | 73 20 61 74 74 61 63 68 65 64 20 74 6f 20 6f 74 68 65 72 20 69 6e 74 65 72 66 61 63 65 73 20 6f | s.attached.to.other.interfaces.o |
| 149b20 | 6e 20 74 68 65 20 73 79 73 74 65 6d 2e 20 53 75 62 73 65 71 75 65 6e 74 20 70 61 63 6b 65 74 73 | n.the.system..Subsequent.packets |
| 149b40 | 20 73 65 6e 74 20 74 6f 20 74 68 6f 73 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 49 50 20 61 64 | .sent.to.those.destination.IP.ad |
| 149b60 | 64 72 65 73 73 65 73 20 61 72 65 20 66 6f 72 77 61 72 64 65 64 20 61 70 70 72 6f 70 72 69 61 74 | dresses.are.forwarded.appropriat |
| 149b80 | 65 6c 79 20 62 79 20 74 68 65 20 73 79 73 74 65 6d 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d | ely.by.the.system..Use.this.comm |
| 149ba0 | 61 6e 64 20 74 6f 20 65 6e 61 62 6c 65 20 74 61 72 67 65 74 65 64 20 4c 44 50 20 73 65 73 73 69 | and.to.enable.targeted.LDP.sessi |
| 149bc0 | 6f 6e 73 20 74 6f 20 74 68 65 20 6c 6f 63 61 6c 20 72 6f 75 74 65 72 2e 20 54 68 65 20 72 6f 75 | ons.to.the.local.router..The.rou |
| 149be0 | 74 65 72 20 77 69 6c 6c 20 74 68 65 6e 20 72 65 73 70 6f 6e 64 20 74 6f 20 61 6e 79 20 73 65 73 | ter.will.then.respond.to.any.ses |
| 149c00 | 73 69 6f 6e 73 20 74 68 61 74 20 61 72 65 20 74 72 79 69 6e 67 20 74 6f 20 63 6f 6e 6e 65 63 74 | sions.that.are.trying.to.connect |
| 149c20 | 20 74 6f 20 69 74 20 74 68 61 74 20 61 72 65 20 6e 6f 74 20 61 20 6c 69 6e 6b 20 6c 6f 63 61 6c | .to.it.that.are.not.a.link.local |
| 149c40 | 20 74 79 70 65 20 6f 66 20 54 43 50 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 55 73 65 20 74 68 69 | .type.of.TCP.connection..Use.thi |
| 149c60 | 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 65 6e 61 62 6c 65 20 74 68 65 20 64 65 6c 61 79 20 6f 66 | s.command.to.enable.the.delay.of |
| 149c80 | 20 50 41 44 4f 20 28 50 50 50 6f 45 20 41 63 74 69 76 65 20 44 69 73 63 6f 76 65 72 79 20 4f 66 | .PADO.(PPPoE.Active.Discovery.Of |
| 149ca0 | 66 65 72 29 20 70 61 63 6b 65 74 73 2c 20 77 68 69 63 68 20 63 61 6e 20 62 65 20 75 73 65 64 20 | fer).packets,.which.can.be.used. |
| 149cc0 | 61 73 20 61 20 73 65 73 73 69 6f 6e 20 62 61 6c 61 6e 63 69 6e 67 20 6d 65 63 68 61 6e 69 73 6d | as.a.session.balancing.mechanism |
| 149ce0 | 20 77 69 74 68 20 6f 74 68 65 72 20 50 50 50 6f 45 20 73 65 72 76 65 72 73 2e 00 55 73 65 20 74 | .with.other.PPPoE.servers..Use.t |
| 149d00 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 65 6e 61 62 6c 65 20 74 68 65 20 6c 6f 63 61 6c 20 | his.command.to.enable.the.local. |
| 149d20 | 72 6f 75 74 65 72 20 74 6f 20 74 72 79 20 61 6e 64 20 63 6f 6e 6e 65 63 74 20 77 69 74 68 20 61 | router.to.try.and.connect.with.a |
| 149d40 | 20 74 61 72 67 65 74 65 64 20 4c 44 50 20 73 65 73 73 69 6f 6e 20 74 6f 20 61 6e 6f 74 68 65 72 | .targeted.LDP.session.to.another |
| 149d60 | 20 72 6f 75 74 65 72 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 65 6e 61 | .router..Use.this.command.to.ena |
| 149d80 | 62 6c 65 20 74 68 65 20 6c 6f 67 67 69 6e 67 20 6f 66 20 74 68 65 20 64 65 66 61 75 6c 74 20 61 | ble.the.logging.of.the.default.a |
| 149da0 | 63 74 69 6f 6e 20 6f 6e 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 73 2e 00 55 73 65 20 74 68 69 73 | ction.on.custom.chains..Use.this |
| 149dc0 | 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 65 6e 61 62 6c 65 20 74 68 65 20 6c 6f 67 67 69 6e 67 20 6f | .command.to.enable.the.logging.o |
| 149de0 | 66 20 74 68 65 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 6f 6e 20 74 68 65 20 73 70 65 63 | f.the.default.action.on.the.spec |
| 149e00 | 69 66 69 65 64 20 63 68 61 69 6e 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f | ified.chain..Use.this.command.to |
| 149e20 | 20 65 6e 61 62 6c 65 20 74 68 65 20 6c 6f 67 67 69 6e 67 20 6f 66 20 74 68 65 20 64 65 66 61 75 | .enable.the.logging.of.the.defau |
| 149e40 | 6c 74 20 61 63 74 69 6f 6e 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 65 | lt.action..Use.this.command.to.e |
| 149e60 | 6e 61 62 6c 65 2c 20 64 69 73 61 62 6c 65 2c 20 6f 72 20 73 70 65 63 69 66 79 20 68 6f 70 20 63 | nable,.disable,.or.specify.hop.c |
| 149e80 | 6f 75 6e 74 20 66 6f 72 20 54 54 4c 20 73 65 63 75 72 69 74 79 20 66 6f 72 20 4c 44 50 20 70 65 | ount.for.TTL.security.for.LDP.pe |
| 149ea0 | 65 72 73 2e 20 42 79 20 64 65 66 61 75 6c 74 20 74 68 65 20 76 61 6c 75 65 20 69 73 20 73 65 74 | ers..By.default.the.value.is.set |
| 149ec0 | 20 74 6f 20 32 35 35 20 28 6f 72 20 6d 61 78 20 54 54 4c 29 2e 00 55 73 65 20 74 68 69 73 20 63 | .to.255.(or.max.TTL)..Use.this.c |
| 149ee0 | 6f 6d 6d 61 6e 64 20 74 6f 20 66 6c 75 73 68 20 74 68 65 20 6b 65 72 6e 65 6c 20 49 50 76 36 20 | ommand.to.flush.the.kernel.IPv6. |
| 149f00 | 72 6f 75 74 65 20 63 61 63 68 65 2e 20 41 6e 20 61 64 64 72 65 73 73 20 63 61 6e 20 62 65 20 61 | route.cache..An.address.can.be.a |
| 149f20 | 64 64 65 64 20 74 6f 20 66 6c 75 73 68 20 69 74 20 6f 6e 6c 79 20 66 6f 72 20 74 68 61 74 20 72 | dded.to.flush.it.only.for.that.r |
| 149f40 | 6f 75 74 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 67 65 74 20 61 6e | oute..Use.this.command.to.get.an |
| 149f60 | 20 6f 76 65 72 76 69 65 77 20 6f 66 20 61 20 7a 6f 6e 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f | .overview.of.a.zone..Use.this.co |
| 149f80 | 6d 6d 61 6e 64 20 74 6f 20 67 65 74 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 4f | mmand.to.get.information.about.O |
| 149fa0 | 53 50 46 76 33 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 67 65 74 20 69 | SPFv3..Use.this.command.to.get.i |
| 149fc0 | 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 74 68 65 20 52 49 50 4e 47 20 70 72 6f 74 6f | nformation.about.the.RIPNG.proto |
| 149fe0 | 63 6f 6c 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 69 6e 73 74 72 75 63 74 | col.Use.this.command.to.instruct |
| 14a000 | 20 74 68 65 20 73 79 73 74 65 6d 20 74 6f 20 65 73 74 61 62 6c 69 73 68 20 61 20 50 50 50 6f 45 | .the.system.to.establish.a.PPPoE |
| 14a020 | 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 6f 6e 63 65 20 74 | .connection.automatically.once.t |
| 14a040 | 72 61 66 66 69 63 20 70 61 73 73 65 73 20 74 68 72 6f 75 67 68 20 74 68 65 20 69 6e 74 65 72 66 | raffic.passes.through.the.interf |
| 14a060 | 61 63 65 2e 20 41 20 64 69 73 61 62 6c 65 64 20 6f 6e 2d 64 65 6d 61 6e 64 20 63 6f 6e 6e 65 63 | ace..A.disabled.on-demand.connec |
| 14a080 | 74 69 6f 6e 20 69 73 20 65 73 74 61 62 6c 69 73 68 65 64 20 61 74 20 62 6f 6f 74 20 74 69 6d 65 | tion.is.established.at.boot.time |
| 14a0a0 | 20 61 6e 64 20 72 65 6d 61 69 6e 73 20 75 70 2e 20 49 66 20 74 68 65 20 6c 69 6e 6b 20 66 61 69 | .and.remains.up..If.the.link.fai |
| 14a0c0 | 6c 73 20 66 6f 72 20 61 6e 79 20 72 65 61 73 6f 6e 2c 20 74 68 65 20 6c 69 6e 6b 20 69 73 20 62 | ls.for.any.reason,.the.link.is.b |
| 14a0e0 | 72 6f 75 67 68 74 20 62 61 63 6b 20 75 70 20 69 6d 6d 65 64 69 61 74 65 6c 79 2e 00 55 73 65 20 | rought.back.up.immediately..Use. |
| 14a100 | 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 6c 69 6e 6b 20 74 68 65 20 50 50 50 6f 45 20 63 | this.command.to.link.the.PPPoE.c |
| 14a120 | 6f 6e 6e 65 63 74 69 6f 6e 20 74 6f 20 61 20 70 68 79 73 69 63 61 6c 20 69 6e 74 65 72 66 61 63 | onnection.to.a.physical.interfac |
| 14a140 | 65 2e 20 45 61 63 68 20 50 50 50 6f 45 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 6d 75 73 74 20 62 65 | e..Each.PPPoE.connection.must.be |
| 14a160 | 20 65 73 74 61 62 6c 69 73 68 65 64 20 6f 76 65 72 20 61 20 70 68 79 73 69 63 61 6c 20 69 6e 74 | .established.over.a.physical.int |
| 14a180 | 65 72 66 61 63 65 2e 20 49 6e 74 65 72 66 61 63 65 73 20 63 61 6e 20 62 65 20 72 65 67 75 6c 61 | erface..Interfaces.can.be.regula |
| 14a1a0 | 72 20 45 74 68 65 72 6e 65 74 20 69 6e 74 65 72 66 61 63 65 73 2c 20 56 49 46 73 20 6f 72 20 62 | r.Ethernet.interfaces,.VIFs.or.b |
| 14a1c0 | 6f 6e 64 69 6e 67 20 69 6e 74 65 72 66 61 63 65 73 2f 56 49 46 73 2e 00 55 73 65 20 74 68 69 73 | onding.interfaces/VIFs..Use.this |
| 14a1e0 | 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 6c 6f 63 61 6c 6c 79 20 63 68 65 63 6b 20 74 68 65 20 61 63 | .command.to.locally.check.the.ac |
| 14a200 | 74 69 76 65 20 73 65 73 73 69 6f 6e 73 20 69 6e 20 74 68 65 20 49 50 6f 45 20 73 65 72 76 65 72 | tive.sessions.in.the.IPoE.server |
| 14a220 | 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 6c 6f 63 61 6c 6c 79 20 63 68 | ..Use.this.command.to.locally.ch |
| 14a240 | 65 63 6b 20 74 68 65 20 61 63 74 69 76 65 20 73 65 73 73 69 6f 6e 73 20 69 6e 20 74 68 65 20 50 | eck.the.active.sessions.in.the.P |
| 14a260 | 50 50 6f 45 20 73 65 72 76 65 72 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f | PPoE.server..Use.this.command.to |
| 14a280 | 20 6c 6f 63 61 6c 6c 79 20 63 68 65 63 6b 20 74 68 65 20 61 63 74 69 76 65 20 73 65 73 73 69 6f | .locally.check.the.active.sessio |
| 14a2a0 | 6e 73 20 69 6e 20 74 68 65 20 50 50 54 50 20 73 65 72 76 65 72 2e 00 55 73 65 20 74 68 69 73 20 | ns.in.the.PPTP.server..Use.this. |
| 14a2c0 | 63 6f 6d 6d 61 6e 64 20 74 6f 20 6c 6f 63 61 6c 6c 79 20 63 68 65 63 6b 20 74 68 65 20 61 63 74 | command.to.locally.check.the.act |
| 14a2e0 | 69 76 65 20 73 65 73 73 69 6f 6e 73 20 69 6e 20 74 68 65 20 53 53 54 50 20 73 65 72 76 65 72 2e | ive.sessions.in.the.SSTP.server. |
| 14a300 | 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 6d 61 6e 75 61 6c 6c 79 20 63 6f | .Use.this.command.to.manually.co |
| 14a320 | 6e 66 69 67 75 72 65 20 61 20 52 65 6e 64 65 7a 76 6f 75 73 20 50 6f 69 6e 74 20 66 6f 72 20 50 | nfigure.a.Rendezvous.Point.for.P |
| 14a340 | 49 4d 20 73 6f 20 74 68 61 74 20 6a 6f 69 6e 20 6d 65 73 73 61 67 65 73 20 63 61 6e 20 62 65 20 | IM.so.that.join.messages.can.be. |
| 14a360 | 73 65 6e 74 20 74 68 65 72 65 2e 20 53 65 74 20 74 68 65 20 52 65 6e 64 65 76 6f 75 7a 20 50 6f | sent.there..Set.the.Rendevouz.Po |
| 14a380 | 69 6e 74 20 61 64 64 72 65 73 73 20 61 6e 64 20 74 68 65 20 6d 61 74 63 68 69 6e 67 20 70 72 65 | int.address.and.the.matching.pre |
| 14a3a0 | 66 69 78 20 6f 66 20 67 72 6f 75 70 20 72 61 6e 67 65 73 20 63 6f 76 65 72 65 64 2e 20 54 68 65 | fix.of.group.ranges.covered..The |
| 14a3c0 | 73 65 20 76 61 6c 75 65 73 20 6d 75 73 74 20 62 65 20 73 68 61 72 65 64 20 77 69 74 68 20 65 76 | se.values.must.be.shared.with.ev |
| 14a3e0 | 65 72 79 20 72 6f 75 74 65 72 20 70 61 72 74 69 63 69 70 61 74 69 6e 67 20 69 6e 20 74 68 65 20 | ery.router.participating.in.the. |
| 14a400 | 50 49 4d 20 6e 65 74 77 6f 72 6b 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f | PIM.network..Use.this.command.to |
| 14a420 | 20 6e 6f 74 20 69 6e 73 74 61 6c 6c 20 61 64 76 65 72 74 69 73 65 64 20 44 4e 53 20 6e 61 6d 65 | .not.install.advertised.DNS.name |
| 14a440 | 73 65 72 76 65 72 73 20 69 6e 74 6f 20 74 68 65 20 6c 6f 63 61 6c 20 73 79 73 74 65 6d 2e 00 55 | servers.into.the.local.system..U |
| 14a460 | 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 70 72 65 66 65 72 20 49 50 76 34 20 66 | se.this.command.to.prefer.IPv4.f |
| 14a480 | 6f 72 20 54 43 50 20 70 65 65 72 20 74 72 61 6e 73 70 6f 72 74 20 63 6f 6e 6e 65 63 74 69 6f 6e | or.TCP.peer.transport.connection |
| 14a4a0 | 20 66 6f 72 20 4c 44 50 20 77 68 65 6e 20 62 6f 74 68 20 61 6e 20 49 50 76 34 20 61 6e 64 20 49 | .for.LDP.when.both.an.IPv4.and.I |
| 14a4c0 | 50 76 36 20 4c 44 50 20 61 64 64 72 65 73 73 20 61 72 65 20 63 6f 6e 66 69 67 75 72 65 64 20 6f | Pv6.LDP.address.are.configured.o |
| 14a4e0 | 6e 20 74 68 65 20 73 61 6d 65 20 69 6e 74 65 72 66 61 63 65 2e 00 55 73 65 20 74 68 69 73 20 63 | n.the.same.interface..Use.this.c |
| 14a500 | 6f 6d 6d 61 6e 64 20 74 6f 20 72 65 73 65 74 20 49 50 76 36 20 4e 65 69 67 68 62 6f 72 20 44 69 | ommand.to.reset.IPv6.Neighbor.Di |
| 14a520 | 73 63 6f 76 65 72 79 20 50 72 6f 74 6f 63 6f 6c 20 63 61 63 68 65 20 66 6f 72 20 61 6e 20 61 64 | scovery.Protocol.cache.for.an.ad |
| 14a540 | 64 72 65 73 73 20 6f 72 20 69 6e 74 65 72 66 61 63 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d | dress.or.interface..Use.this.com |
| 14a560 | 6d 61 6e 64 20 74 6f 20 72 65 73 65 74 20 61 6e 20 4c 44 50 20 6e 65 69 67 68 62 6f 72 2f 54 43 | mand.to.reset.an.LDP.neighbor/TC |
| 14a580 | 50 20 73 65 73 73 69 6f 6e 20 74 68 61 74 20 69 73 20 65 73 74 61 62 6c 69 73 68 65 64 00 55 73 | P.session.that.is.established.Us |
| 14a5a0 | 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 72 65 73 65 74 20 74 68 65 20 4f 70 65 6e | e.this.command.to.reset.the.Open |
| 14a5c0 | 56 50 4e 20 70 72 6f 63 65 73 73 20 6f 6e 20 61 20 73 70 65 63 69 66 69 63 20 69 6e 74 65 72 66 | VPN.process.on.a.specific.interf |
| 14a5e0 | 61 63 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 72 65 73 65 74 20 74 | ace..Use.this.command.to.reset.t |
| 14a600 | 68 65 20 73 70 65 63 69 66 69 65 64 20 4f 70 65 6e 56 50 4e 20 63 6c 69 65 6e 74 2e 00 55 73 65 | he.specified.OpenVPN.client..Use |
| 14a620 | 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 72 65 73 74 72 69 63 74 20 74 68 65 20 50 50 | .this.command.to.restrict.the.PP |
| 14a640 | 50 6f 45 20 73 65 73 73 69 6f 6e 20 6f 6e 20 61 20 67 69 76 65 6e 20 61 63 63 65 73 73 20 63 6f | PoE.session.on.a.given.access.co |
| 14a660 | 6e 63 65 6e 74 72 61 74 6f 72 2e 20 4e 6f 72 6d 61 6c 6c 79 2c 20 61 20 68 6f 73 74 20 73 65 6e | ncentrator..Normally,.a.host.sen |
| 14a680 | 64 73 20 61 20 50 50 50 6f 45 20 69 6e 69 74 69 61 74 69 6f 6e 20 70 61 63 6b 65 74 20 74 6f 20 | ds.a.PPPoE.initiation.packet.to. |
| 14a6a0 | 73 74 61 72 74 20 74 68 65 20 50 50 50 6f 45 20 64 69 73 63 6f 76 65 72 79 20 70 72 6f 63 65 73 | start.the.PPPoE.discovery.proces |
| 14a6c0 | 73 2c 20 61 20 6e 75 6d 62 65 72 20 6f 66 20 61 63 63 65 73 73 20 63 6f 6e 63 65 6e 74 72 61 74 | s,.a.number.of.access.concentrat |
| 14a6e0 | 6f 72 73 20 72 65 73 70 6f 6e 64 20 77 69 74 68 20 6f 66 66 65 72 20 70 61 63 6b 65 74 73 20 61 | ors.respond.with.offer.packets.a |
| 14a700 | 6e 64 20 74 68 65 20 68 6f 73 74 20 73 65 6c 65 63 74 73 20 6f 6e 65 20 6f 66 20 74 68 65 20 72 | nd.the.host.selects.one.of.the.r |
| 14a720 | 65 73 70 6f 6e 64 69 6e 67 20 61 63 63 65 73 73 20 63 6f 6e 63 65 6e 74 72 61 74 6f 72 73 20 74 | esponding.access.concentrators.t |
| 14a740 | 6f 20 73 65 72 76 65 20 74 68 69 73 20 73 65 73 73 69 6f 6e 2e 00 55 73 65 20 74 68 69 73 20 63 | o.serve.this.session..Use.this.c |
| 14a760 | 6f 6d 6d 61 6e 64 20 74 6f 20 73 65 65 20 4c 44 50 20 69 6e 74 65 72 66 61 63 65 20 69 6e 66 6f | ommand.to.see.LDP.interface.info |
| 14a780 | 72 6d 61 74 69 6f 6e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 65 65 20 | rmation.Use.this.command.to.see. |
| 14a7a0 | 4c 44 50 20 6e 65 69 67 68 62 6f 72 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 00 55 73 65 20 74 68 69 | LDP.neighbor.information.Use.thi |
| 14a7c0 | 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 65 65 20 64 65 74 61 69 6c 65 64 20 4c 44 50 20 6e 65 | s.command.to.see.detailed.LDP.ne |
| 14a7e0 | 69 67 68 62 6f 72 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d | ighbor.information.Use.this.comm |
| 14a800 | 61 6e 64 20 74 6f 20 73 65 65 20 64 69 73 63 6f 76 65 72 79 20 68 65 6c 6c 6f 20 69 6e 66 6f 72 | and.to.see.discovery.hello.infor |
| 14a820 | 6d 61 74 69 6f 6e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 65 65 20 74 | mation.Use.this.command.to.see.t |
| 14a840 | 68 65 20 4c 61 62 65 6c 20 49 6e 66 6f 72 6d 61 74 69 6f 6e 20 42 61 73 65 2e 00 55 73 65 20 74 | he.Label.Information.Base..Use.t |
| 14a860 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 65 74 20 61 20 6e 61 6d 65 20 66 6f 72 20 74 68 | his.command.to.set.a.name.for.th |
| 14a880 | 69 73 20 50 50 50 6f 45 2d 73 65 72 76 65 72 20 61 63 63 65 73 73 20 63 6f 6e 63 65 6e 74 72 61 | is.PPPoE-server.access.concentra |
| 14a8a0 | 74 6f 72 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 65 74 20 72 65 2d | tor..Use.this.command.to.set.re- |
| 14a8c0 | 64 69 61 6c 20 64 65 6c 61 79 20 74 69 6d 65 20 74 6f 20 62 65 20 75 73 65 64 20 77 69 74 68 20 | dial.delay.time.to.be.used.with. |
| 14a8e0 | 70 65 72 73 69 73 74 20 50 50 50 6f 45 20 73 65 73 73 69 6f 6e 73 2e 20 57 68 65 6e 20 74 68 65 | persist.PPPoE.sessions..When.the |
| 14a900 | 20 50 50 50 6f 45 20 73 65 73 73 69 6f 6e 20 69 73 20 74 65 72 6d 69 6e 61 74 65 64 20 62 79 20 | .PPPoE.session.is.terminated.by. |
| 14a920 | 70 65 65 72 2c 20 61 6e 64 20 6f 6e 2d 64 65 6d 61 6e 64 20 6f 70 74 69 6f 6e 20 69 73 20 6e 6f | peer,.and.on-demand.option.is.no |
| 14a940 | 74 20 73 65 74 2c 20 74 68 65 20 72 6f 75 74 65 72 20 77 69 6c 6c 20 61 74 74 65 6d 70 74 20 74 | t.set,.the.router.will.attempt.t |
| 14a960 | 6f 20 72 65 2d 65 73 74 61 62 6c 69 73 68 20 74 68 65 20 50 50 50 6f 45 20 6c 69 6e 6b 2e 00 55 | o.re-establish.the.PPPoE.link..U |
| 14a980 | 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 65 74 20 74 68 65 20 49 50 20 61 64 | se.this.command.to.set.the.IP.ad |
| 14a9a0 | 64 72 65 73 73 20 6f 66 20 74 68 65 20 6c 6f 63 61 6c 20 65 6e 64 70 6f 69 6e 74 20 6f 66 20 61 | dress.of.the.local.endpoint.of.a |
| 14a9c0 | 20 50 50 50 6f 45 20 73 65 73 73 69 6f 6e 2e 20 49 66 20 69 74 20 69 73 20 6e 6f 74 20 73 65 74 | .PPPoE.session..If.it.is.not.set |
| 14a9e0 | 20 69 74 20 77 69 6c 6c 20 62 65 20 6e 65 67 6f 74 69 61 74 65 64 2e 00 55 73 65 20 74 68 69 73 | .it.will.be.negotiated..Use.this |
| 14aa00 | 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 65 74 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 6f | .command.to.set.the.IP.address.o |
| 14aa20 | 66 20 74 68 65 20 72 65 6d 6f 74 65 20 65 6e 64 70 6f 69 6e 74 20 6f 66 20 61 20 50 50 50 6f 45 | f.the.remote.endpoint.of.a.PPPoE |
| 14aa40 | 20 73 65 73 73 69 6f 6e 2e 20 49 66 20 69 74 20 69 73 20 6e 6f 74 20 73 65 74 20 69 74 20 77 69 | .session..If.it.is.not.set.it.wi |
| 14aa60 | 6c 6c 20 62 65 20 6e 65 67 6f 74 69 61 74 65 64 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 | ll.be.negotiated..Use.this.comma |
| 14aa80 | 6e 64 20 74 6f 20 73 65 74 20 74 68 65 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 61 64 64 72 65 | nd.to.set.the.IPv4.or.IPv6.addre |
| 14aaa0 | 73 73 20 6f 66 20 65 76 65 72 79 20 44 6f 6d 61 6e 20 4e 61 6d 65 20 53 65 72 76 65 72 20 79 6f | ss.of.every.Doman.Name.Server.yo |
| 14aac0 | 75 20 77 61 6e 74 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 2e 20 54 68 65 79 20 77 69 6c 6c 20 62 | u.want.to.configure..They.will.b |
| 14aae0 | 65 20 70 72 6f 70 61 67 61 74 65 64 20 74 6f 20 50 50 50 6f 45 20 63 6c 69 65 6e 74 73 2e 00 55 | e.propagated.to.PPPoE.clients..U |
| 14ab00 | 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 65 74 20 74 68 65 20 49 50 76 34 20 | se.this.command.to.set.the.IPv4. |
| 14ab20 | 6f 72 20 49 50 76 36 20 74 72 61 6e 73 70 6f 72 74 2d 61 64 64 72 65 73 73 20 75 73 65 64 20 62 | or.IPv6.transport-address.used.b |
| 14ab40 | 79 20 4c 44 50 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 65 74 20 74 | y.LDP..Use.this.command.to.set.t |
| 14ab60 | 68 65 20 69 64 6c 65 20 74 69 6d 65 6f 75 74 20 69 6e 74 65 72 76 61 6c 20 74 6f 20 62 65 20 75 | he.idle.timeout.interval.to.be.u |
| 14ab80 | 73 65 64 20 77 69 74 68 20 6f 6e 2d 64 65 6d 61 6e 64 20 50 50 50 6f 45 20 73 65 73 73 69 6f 6e | sed.with.on-demand.PPPoE.session |
| 14aba0 | 73 2e 20 57 68 65 6e 20 61 6e 20 6f 6e 2d 64 65 6d 61 6e 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 | s..When.an.on-demand.connection. |
| 14abc0 | 69 73 20 65 73 74 61 62 6c 69 73 68 65 64 2c 20 74 68 65 20 6c 69 6e 6b 20 69 73 20 62 72 6f 75 | is.established,.the.link.is.brou |
| 14abe0 | 67 68 74 20 75 70 20 6f 6e 6c 79 20 77 68 65 6e 20 74 72 61 66 66 69 63 20 69 73 20 73 65 6e 74 | ght.up.only.when.traffic.is.sent |
| 14ac00 | 20 61 6e 64 20 69 73 20 64 69 73 61 62 6c 65 64 20 77 68 65 6e 20 74 68 65 20 6c 69 6e 6b 20 69 | .and.is.disabled.when.the.link.i |
| 14ac20 | 73 20 69 64 6c 65 20 66 6f 72 20 74 68 65 20 69 6e 74 65 72 76 61 6c 20 73 70 65 63 69 66 69 65 | s.idle.for.the.interval.specifie |
| 14ac40 | 64 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 65 74 20 74 68 65 20 70 | d..Use.this.command.to.set.the.p |
| 14ac60 | 61 73 73 77 6f 72 64 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6e 67 20 77 69 74 68 20 | assword.for.authenticating.with. |
| 14ac80 | 61 20 72 65 6d 6f 74 65 20 50 50 50 6f 45 20 65 6e 64 70 6f 69 6e 74 2e 20 41 75 74 68 65 6e 74 | a.remote.PPPoE.endpoint..Authent |
| 14aca0 | 69 63 61 74 69 6f 6e 20 69 73 20 6f 70 74 69 6f 6e 61 6c 20 66 72 6f 6d 20 74 68 65 20 73 79 73 | ication.is.optional.from.the.sys |
| 14acc0 | 74 65 6d 27 73 20 70 6f 69 6e 74 20 6f 66 20 76 69 65 77 20 62 75 74 20 6d 6f 73 74 20 73 65 72 | tem's.point.of.view.but.most.ser |
| 14ace0 | 76 69 63 65 20 70 72 6f 76 69 64 65 72 73 20 72 65 71 75 69 72 65 20 69 74 2e 00 55 73 65 20 74 | vice.providers.require.it..Use.t |
| 14ad00 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 65 74 20 74 68 65 20 74 61 72 67 65 74 20 74 6f | his.command.to.set.the.target.to |
| 14ad20 | 20 75 73 65 2e 20 41 63 74 69 6f 6e 20 71 75 65 75 65 20 6d 75 73 74 20 62 65 20 64 65 66 69 6e | .use..Action.queue.must.be.defin |
| 14ad40 | 65 64 20 74 6f 20 75 73 65 20 74 68 69 73 20 73 65 74 74 69 6e 67 00 55 73 65 20 74 68 69 73 20 | ed.to.use.this.setting.Use.this. |
| 14ad60 | 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 65 74 20 74 68 65 20 75 73 65 72 6e 61 6d 65 20 66 6f 72 20 | command.to.set.the.username.for. |
| 14ad80 | 61 75 74 68 65 6e 74 69 63 61 74 69 6e 67 20 77 69 74 68 20 61 20 72 65 6d 6f 74 65 20 50 50 50 | authenticating.with.a.remote.PPP |
| 14ada0 | 6f 45 20 65 6e 64 70 6f 69 6e 74 2e 20 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 69 73 20 6f | oE.endpoint..Authentication.is.o |
| 14adc0 | 70 74 69 6f 6e 61 6c 20 66 72 6f 6d 20 74 68 65 20 73 79 73 74 65 6d 27 73 20 70 6f 69 6e 74 20 | ptional.from.the.system's.point. |
| 14ade0 | 6f 66 20 76 69 65 77 20 62 75 74 20 6d 6f 73 74 20 73 65 72 76 69 63 65 20 70 72 6f 76 69 64 65 | of.view.but.most.service.provide |
| 14ae00 | 72 73 20 72 65 71 75 69 72 65 20 69 74 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 | rs.require.it..Use.this.command. |
| 14ae20 | 74 6f 20 73 68 6f 77 20 49 50 76 36 20 42 6f 72 64 65 72 20 47 61 74 65 77 61 79 20 50 72 6f 74 | to.show.IPv6.Border.Gateway.Prot |
| 14ae40 | 6f 63 6f 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 | ocol.information..Use.this.comma |
| 14ae60 | 6e 64 20 74 6f 20 73 68 6f 77 20 49 50 76 36 20 4e 65 69 67 68 62 6f 72 20 44 69 73 63 6f 76 65 | nd.to.show.IPv6.Neighbor.Discove |
| 14ae80 | 72 79 20 50 72 6f 74 6f 63 6f 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2e 00 55 73 65 20 74 68 69 | ry.Protocol.information..Use.thi |
| 14aea0 | 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 68 6f 77 20 49 50 76 36 20 66 6f 72 77 61 72 64 69 6e | s.command.to.show.IPv6.forwardin |
| 14aec0 | 67 20 73 74 61 74 75 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 68 | g.status..Use.this.command.to.sh |
| 14aee0 | 6f 77 20 49 50 76 36 20 6d 75 6c 74 69 63 61 73 74 20 67 72 6f 75 70 20 6d 65 6d 62 65 72 73 68 | ow.IPv6.multicast.group.membersh |
| 14af00 | 69 70 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 68 6f 77 20 49 50 76 | ip..Use.this.command.to.show.IPv |
| 14af20 | 36 20 72 6f 75 74 65 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 68 | 6.routes..Use.this.command.to.sh |
| 14af40 | 6f 77 20 61 6c 6c 20 49 50 76 36 20 61 63 63 65 73 73 20 6c 69 73 74 73 00 55 73 65 20 74 68 69 | ow.all.IPv6.access.lists.Use.thi |
| 14af60 | 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 68 6f 77 20 61 6c 6c 20 49 50 76 36 20 70 72 65 66 69 | s.command.to.show.all.IPv6.prefi |
| 14af80 | 78 20 6c 69 73 74 73 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 68 6f 77 | x.lists.Use.this.command.to.show |
| 14afa0 | 20 74 68 65 20 73 74 61 74 75 73 20 6f 66 20 74 68 65 20 52 49 50 4e 47 20 70 72 6f 74 6f 63 6f | .the.status.of.the.RIPNG.protoco |
| 14afc0 | 6c 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 70 65 63 69 66 79 20 61 20 | l.Use.this.command.to.specify.a. |
| 14afe0 | 44 4e 53 20 73 65 72 76 65 72 20 66 6f 72 20 74 68 65 20 73 79 73 74 65 6d 20 74 6f 20 62 65 20 | DNS.server.for.the.system.to.be. |
| 14b000 | 75 73 65 64 20 66 6f 72 20 44 4e 53 20 6c 6f 6f 6b 75 70 73 2e 20 4d 6f 72 65 20 74 68 61 6e 20 | used.for.DNS.lookups..More.than. |
| 14b020 | 6f 6e 65 20 44 4e 53 20 73 65 72 76 65 72 20 63 61 6e 20 62 65 20 61 64 64 65 64 2c 20 63 6f 6e | one.DNS.server.can.be.added,.con |
| 14b040 | 66 69 67 75 72 69 6e 67 20 6f 6e 65 20 61 74 20 61 20 74 69 6d 65 2e 20 42 6f 74 68 20 49 50 76 | figuring.one.at.a.time..Both.IPv |
| 14b060 | 34 20 61 6e 64 20 49 50 76 36 20 61 64 64 72 65 73 73 65 73 20 61 72 65 20 73 75 70 70 6f 72 74 | 4.and.IPv6.addresses.are.support |
| 14b080 | 65 64 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 70 65 63 69 66 79 20 | ed..Use.this.command.to.specify. |
| 14b0a0 | 61 20 64 6f 6d 61 69 6e 20 6e 61 6d 65 20 74 6f 20 62 65 20 61 70 70 65 6e 64 65 64 20 74 6f 20 | a.domain.name.to.be.appended.to. |
| 14b0c0 | 64 6f 6d 61 69 6e 2d 6e 61 6d 65 73 20 77 69 74 68 69 6e 20 55 52 4c 73 20 74 68 61 74 20 64 6f | domain-names.within.URLs.that.do |
| 14b0e0 | 20 6e 6f 74 20 69 6e 63 6c 75 64 65 20 61 20 64 6f 74 20 60 60 2e 60 60 20 74 68 65 20 64 6f 6d | .not.include.a.dot.``.``.the.dom |
| 14b100 | 61 69 6e 20 69 73 20 61 70 70 65 6e 64 65 64 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e | ain.is.appended..Use.this.comman |
| 14b120 | 64 20 74 6f 20 73 70 65 63 69 66 79 20 61 20 73 65 72 76 69 63 65 20 6e 61 6d 65 20 62 79 20 77 | d.to.specify.a.service.name.by.w |
| 14b140 | 68 69 63 68 20 74 68 65 20 6c 6f 63 61 6c 20 50 50 50 6f 45 20 69 6e 74 65 72 66 61 63 65 20 63 | hich.the.local.PPPoE.interface.c |
| 14b160 | 61 6e 20 73 65 6c 65 63 74 20 61 63 63 65 73 73 20 63 6f 6e 63 65 6e 74 72 61 74 6f 72 73 20 74 | an.select.access.concentrators.t |
| 14b180 | 6f 20 63 6f 6e 6e 65 63 74 20 77 69 74 68 2e 20 49 74 20 77 69 6c 6c 20 63 6f 6e 6e 65 63 74 20 | o.connect.with..It.will.connect. |
| 14b1a0 | 74 6f 20 61 6e 79 20 61 63 63 65 73 73 20 63 6f 6e 63 65 6e 74 72 61 74 6f 72 20 69 66 20 6e 6f | to.any.access.concentrator.if.no |
| 14b1c0 | 74 20 73 65 74 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 75 73 65 20 4c | t.set..Use.this.command.to.use.L |
| 14b1e0 | 61 79 65 72 20 34 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 6f 72 20 49 50 76 34 20 45 43 4d 50 | ayer.4.information.for.IPv4.ECMP |
| 14b200 | 20 68 61 73 68 69 6e 67 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 75 73 | .hashing..Use.this.command.to.us |
| 14b220 | 65 20 61 20 43 69 73 63 6f 20 6e 6f 6e 2d 63 6f 6d 70 6c 69 61 6e 74 20 66 6f 72 6d 61 74 20 74 | e.a.Cisco.non-compliant.format.t |
| 14b240 | 6f 20 73 65 6e 64 20 61 6e 64 20 69 6e 74 65 72 70 72 65 74 20 74 68 65 20 44 75 61 6c 2d 53 74 | o.send.and.interpret.the.Dual-St |
| 14b260 | 61 63 6b 20 63 61 70 61 62 69 6c 69 74 79 20 54 4c 56 20 66 6f 72 20 49 50 76 36 20 4c 44 50 20 | ack.capability.TLV.for.IPv6.LDP. |
| 14b280 | 63 6f 6d 6d 75 6e 69 63 61 74 69 6f 6e 73 2e 20 54 68 69 73 20 69 73 20 72 65 6c 61 74 65 64 20 | communications..This.is.related. |
| 14b2a0 | 74 6f 20 3a 72 66 63 3a 60 37 35 35 32 60 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 | to.:rfc:`7552`..Use.this.command |
| 14b2c0 | 20 74 6f 20 75 73 65 20 6f 72 64 65 72 65 64 20 6c 61 62 65 6c 20 64 69 73 74 72 69 62 75 74 69 | .to.use.ordered.label.distributi |
| 14b2e0 | 6f 6e 20 63 6f 6e 74 72 6f 6c 20 6d 6f 64 65 2e 20 46 52 52 20 62 79 20 64 65 66 61 75 6c 74 20 | on.control.mode..FRR.by.default. |
| 14b300 | 75 73 65 73 20 69 6e 64 65 70 65 6e 64 65 6e 74 20 6c 61 62 65 6c 20 64 69 73 74 72 69 62 75 74 | uses.independent.label.distribut |
| 14b320 | 69 6f 6e 20 63 6f 6e 74 72 6f 6c 20 6d 6f 64 65 20 66 6f 72 20 6c 61 62 65 6c 20 64 69 73 74 72 | ion.control.mode.for.label.distr |
| 14b340 | 69 62 75 74 69 6f 6e 2e 20 20 54 68 69 73 20 69 73 20 72 65 6c 61 74 65 64 20 74 6f 20 3a 72 66 | ibution...This.is.related.to.:rf |
| 14b360 | 63 3a 60 35 30 33 36 60 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 75 73 | c:`5036`..Use.this.command.to.us |
| 14b380 | 65 72 20 4c 61 79 65 72 20 34 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 6f 72 20 45 43 4d 50 20 | er.Layer.4.information.for.ECMP. |
| 14b3a0 | 68 61 73 68 69 6e 67 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 76 69 65 | hashing..Use.this.command.to.vie |
| 14b3c0 | 77 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 73 74 61 74 75 73 20 61 6e 64 20 64 65 74 61 69 6c 73 | w.operational.status.and.details |
| 14b3e0 | 20 77 69 72 65 6c 65 73 73 2d 73 70 65 63 69 66 69 63 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 | .wireless-specific.information.a |
| 14b400 | 62 6f 75 74 20 61 6c 6c 20 77 69 72 65 6c 65 73 73 20 69 6e 74 65 72 66 61 63 65 73 2e 00 55 73 | bout.all.wireless.interfaces..Us |
| 14b420 | 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 76 69 65 77 20 6f 70 65 72 61 74 69 6f 6e | e.this.command.to.view.operation |
| 14b440 | 61 6c 20 73 74 61 74 75 73 20 61 6e 64 20 77 69 72 65 6c 65 73 73 2d 73 70 65 63 69 66 69 63 20 | al.status.and.wireless-specific. |
| 14b460 | 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 61 6c 6c 20 77 69 72 65 6c 65 73 73 20 69 | information.about.all.wireless.i |
| 14b480 | 6e 74 65 72 66 61 63 65 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 76 | nterfaces..Use.this.command.to.v |
| 14b4a0 | 69 65 77 20 77 69 72 65 6c 65 73 73 20 69 6e 74 65 72 66 61 63 65 20 71 75 65 75 65 20 69 6e 66 | iew.wireless.interface.queue.inf |
| 14b4c0 | 6f 72 6d 61 74 69 6f 6e 2e 20 54 68 65 20 77 69 72 65 6c 65 73 73 20 69 6e 74 65 72 66 61 63 65 | ormation..The.wireless.interface |
| 14b4e0 | 20 69 64 65 6e 74 69 66 69 65 72 20 63 61 6e 20 72 61 6e 67 65 20 66 72 6f 6d 20 77 6c 61 6e 30 | .identifier.can.range.from.wlan0 |
| 14b500 | 20 74 6f 20 77 6c 61 6e 39 39 39 2e 00 55 73 65 64 20 66 6f 72 20 74 72 6f 75 62 6c 65 73 68 6f | .to.wlan999..Used.for.troublesho |
| 14b520 | 6f 74 69 6e 67 2e 00 55 73 65 64 20 74 6f 20 62 6c 6f 63 6b 20 61 20 73 70 65 63 69 66 69 63 20 | oting..Used.to.block.a.specific. |
| 14b540 | 6d 69 6d 65 2d 74 79 70 65 2e 00 55 73 65 64 20 74 6f 20 62 6c 6f 63 6b 20 73 70 65 63 69 66 69 | mime-type..Used.to.block.specifi |
| 14b560 | 63 20 64 6f 6d 61 69 6e 73 20 62 79 20 74 68 65 20 50 72 6f 78 79 2e 20 53 70 65 63 69 66 79 69 | c.domains.by.the.Proxy..Specifyi |
| 14b580 | 6e 67 20 22 76 79 6f 73 2e 6e 65 74 22 20 77 69 6c 6c 20 62 6c 6f 63 6b 20 61 6c 6c 20 61 63 63 | ng."vyos.net".will.block.all.acc |
| 14b5a0 | 65 73 73 20 74 6f 20 76 79 6f 73 2e 6e 65 74 2c 20 61 6e 64 20 73 70 65 63 69 66 79 69 6e 67 20 | ess.to.vyos.net,.and.specifying. |
| 14b5c0 | 22 2e 78 78 78 22 20 77 69 6c 6c 20 62 6c 6f 63 6b 20 61 6c 6c 20 61 63 63 65 73 73 20 74 6f 20 | ".xxx".will.block.all.access.to. |
| 14b5e0 | 55 52 4c 73 20 68 61 76 69 6e 67 20 61 6e 20 55 52 4c 20 65 6e 64 69 6e 67 20 6f 6e 20 2e 78 78 | URLs.having.an.URL.ending.on..xx |
| 14b600 | 78 2e 00 55 73 65 72 20 69 6e 74 65 72 66 61 63 65 20 63 61 6e 20 62 65 20 70 75 74 20 74 6f 20 | x..User.interface.can.be.put.to. |
| 14b620 | 56 52 46 20 63 6f 6e 74 65 78 74 20 76 69 61 20 52 41 44 49 55 53 20 41 63 63 65 73 73 2d 41 63 | VRF.context.via.RADIUS.Access-Ac |
| 14b640 | 63 65 70 74 20 70 61 63 6b 65 74 2c 20 6f 72 20 63 68 61 6e 67 65 20 69 74 20 76 69 61 20 52 41 | cept.packet,.or.change.it.via.RA |
| 14b660 | 44 49 55 53 20 43 6f 41 2e 20 60 60 41 63 63 65 6c 2d 56 52 46 2d 4e 61 6d 65 60 60 20 69 73 20 | DIUS.CoA..``Accel-VRF-Name``.is. |
| 14b680 | 75 73 65 64 20 66 72 6f 6d 20 74 68 65 73 65 20 70 75 72 70 6f 73 65 73 2e 20 49 74 20 69 73 20 | used.from.these.purposes..It.is. |
| 14b6a0 | 63 75 73 74 6f 6d 20 60 41 43 43 45 4c 2d 50 50 50 20 61 74 74 72 69 62 75 74 65 60 5f 2e 20 44 | custom.`ACCEL-PPP.attribute`_..D |
| 14b6c0 | 65 66 69 6e 65 20 69 74 20 69 6e 20 79 6f 75 72 20 52 41 44 49 55 53 20 73 65 72 76 65 72 2e 00 | efine.it.in.your.RADIUS.server.. |
| 14b6e0 | 55 73 65 72 2d 6c 65 76 65 6c 20 6d 65 73 73 61 67 65 73 00 55 73 69 6e 67 20 27 73 6f 66 74 2d | User-level.messages.Using.'soft- |
| 14b700 | 72 65 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 27 20 77 65 20 67 65 74 20 74 68 65 20 70 6f 6c 69 | reconfiguration'.we.get.the.poli |
| 14b720 | 63 79 20 75 70 64 61 74 65 20 77 69 74 68 6f 75 74 20 62 6f 75 6e 63 69 6e 67 20 74 68 65 20 6e | cy.update.without.bouncing.the.n |
| 14b740 | 65 69 67 68 62 6f 72 2e 00 55 73 69 6e 67 20 2a 2a 6f 70 65 6e 76 70 6e 2d 6f 70 74 69 6f 6e 20 | eighbor..Using.**openvpn-option. |
| 14b760 | 2d 72 65 6e 65 67 2d 73 65 63 2a 2a 20 63 61 6e 20 62 65 20 74 72 69 63 6b 79 2e 20 54 68 69 73 | -reneg-sec**.can.be.tricky..This |
| 14b780 | 20 6f 70 74 69 6f 6e 20 69 73 20 75 73 65 64 20 74 6f 20 72 65 6e 65 67 6f 74 69 61 74 65 20 64 | .option.is.used.to.renegotiate.d |
| 14b7a0 | 61 74 61 20 63 68 61 6e 6e 65 6c 20 61 66 74 65 72 20 6e 20 73 65 63 6f 6e 64 73 2e 20 57 68 65 | ata.channel.after.n.seconds..Whe |
| 14b7c0 | 6e 20 75 73 65 64 20 61 74 20 62 6f 74 68 20 73 65 72 76 65 72 20 61 6e 64 20 63 6c 69 65 6e 74 | n.used.at.both.server.and.client |
| 14b7e0 | 2c 20 74 68 65 20 6c 6f 77 65 72 20 76 61 6c 75 65 20 77 69 6c 6c 20 74 72 69 67 67 65 72 20 74 | ,.the.lower.value.will.trigger.t |
| 14b800 | 68 65 20 72 65 6e 65 67 6f 74 69 61 74 69 6f 6e 2e 20 49 66 20 79 6f 75 20 73 65 74 20 69 74 20 | he.renegotiation..If.you.set.it. |
| 14b820 | 74 6f 20 30 20 6f 6e 20 6f 6e 65 20 73 69 64 65 20 6f 66 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 | to.0.on.one.side.of.the.connecti |
| 14b840 | 6f 6e 20 28 74 6f 20 64 69 73 61 62 6c 65 20 69 74 29 2c 20 74 68 65 20 63 68 6f 73 65 6e 20 76 | on.(to.disable.it),.the.chosen.v |
| 14b860 | 61 6c 75 65 20 6f 6e 20 74 68 65 20 6f 74 68 65 72 20 73 69 64 65 20 77 69 6c 6c 20 64 65 74 65 | alue.on.the.other.side.will.dete |
| 14b880 | 72 6d 69 6e 65 20 77 68 65 6e 20 74 68 65 20 72 65 6e 65 67 6f 74 69 61 74 69 6f 6e 20 77 69 6c | rmine.when.the.renegotiation.wil |
| 14b8a0 | 6c 20 6f 63 63 75 72 2e 00 55 73 69 6e 67 20 2a 2a 6f 70 65 6e 76 70 6e 2d 6f 70 74 69 6f 6e 20 | l.occur..Using.**openvpn-option. |
| 14b8c0 | 2d 72 65 6e 65 67 2d 73 65 63 2a 2a 20 63 61 6e 20 62 65 20 74 72 69 63 6b 79 2e 20 54 68 69 73 | -reneg-sec**.can.be.tricky..This |
| 14b8e0 | 20 6f 70 74 69 6f 6e 20 69 73 20 75 73 65 64 20 74 6f 20 72 65 6e 65 67 6f 74 69 61 74 65 20 64 | .option.is.used.to.renegotiate.d |
| 14b900 | 61 74 61 20 63 68 61 6e 6e 65 6c 20 61 66 74 65 72 20 6e 20 73 65 63 6f 6e 64 73 2e 20 57 68 65 | ata.channel.after.n.seconds..Whe |
| 14b920 | 6e 20 75 73 65 64 20 6f 6e 20 62 6f 74 68 20 74 68 65 20 73 65 72 76 65 72 20 61 6e 64 20 63 6c | n.used.on.both.the.server.and.cl |
| 14b940 | 69 65 6e 74 2c 20 74 68 65 20 6c 6f 77 65 72 20 76 61 6c 75 65 20 77 69 6c 6c 20 74 72 69 67 67 | ient,.the.lower.value.will.trigg |
| 14b960 | 65 72 20 74 68 65 20 72 65 6e 65 67 6f 74 69 61 74 69 6f 6e 2e 20 49 66 20 79 6f 75 20 73 65 74 | er.the.renegotiation..If.you.set |
| 14b980 | 20 69 74 20 74 6f 20 30 20 6f 6e 20 6f 6e 65 20 73 69 64 65 20 6f 66 20 74 68 65 20 63 6f 6e 6e | .it.to.0.on.one.side.of.the.conn |
| 14b9a0 | 65 63 74 69 6f 6e 20 28 74 6f 20 64 69 73 61 62 6c 65 20 69 74 29 2c 20 74 68 65 20 63 68 6f 73 | ection.(to.disable.it),.the.chos |
| 14b9c0 | 65 6e 20 76 61 6c 75 65 20 6f 6e 20 74 68 65 20 6f 74 68 65 72 20 73 69 64 65 20 77 69 6c 6c 20 | en.value.on.the.other.side.will. |
| 14b9e0 | 64 65 74 65 72 6d 69 6e 65 20 77 68 65 6e 20 74 68 65 20 72 65 6e 65 67 6f 74 69 61 74 69 6f 6e | determine.when.the.renegotiation |
| 14ba00 | 20 77 69 6c 6c 20 6f 63 63 75 72 2e 00 55 73 69 6e 67 20 42 47 50 20 63 6f 6e 66 65 64 65 72 61 | .will.occur..Using.BGP.confedera |
| 14ba20 | 74 69 6f 6e 00 55 73 69 6e 67 20 42 47 50 20 72 6f 75 74 65 2d 72 65 66 6c 65 63 74 6f 72 73 00 | tion.Using.BGP.route-reflectors. |
| 14ba40 | 55 73 69 6e 67 20 44 79 6e 61 6d 69 63 20 46 69 72 65 77 61 6c 6c 20 47 72 6f 75 70 73 00 55 73 | Using.Dynamic.Firewall.Groups.Us |
| 14ba60 | 69 6e 67 20 4e 65 74 46 6c 6f 77 20 6f 6e 20 72 6f 75 74 65 72 73 20 77 69 74 68 20 68 69 67 68 | ing.NetFlow.on.routers.with.high |
| 14ba80 | 20 74 72 61 66 66 69 63 20 6c 65 76 65 6c 73 20 6d 61 79 20 6c 65 61 64 20 74 6f 20 68 69 67 68 | .traffic.levels.may.lead.to.high |
| 14baa0 | 20 43 50 55 20 75 73 61 67 65 20 61 6e 64 20 6d 61 79 20 61 66 66 65 63 74 20 74 68 65 20 72 6f | .CPU.usage.and.may.affect.the.ro |
| 14bac0 | 75 74 65 72 27 73 20 70 65 72 66 6f 72 6d 61 6e 63 65 2e 20 49 6e 20 73 75 63 68 20 63 61 73 65 | uter's.performance..In.such.case |
| 14bae0 | 73 2c 20 63 6f 6e 73 69 64 65 72 20 75 73 69 6e 67 20 73 46 6c 6f 77 20 69 6e 73 74 65 61 64 2e | s,.consider.using.sFlow.instead. |
| 14bb00 | 00 55 73 69 6e 67 20 56 4c 41 4e 20 61 77 61 72 65 20 42 72 69 64 67 65 00 55 73 69 6e 67 20 61 | .Using.VLAN.aware.Bridge.Using.a |
| 14bb20 | 64 64 72 65 73 73 20 61 6e 64 20 70 6f 72 74 20 67 72 6f 75 70 73 20 61 6c 6c 6f 77 73 20 79 6f | ddress.and.port.groups.allows.yo |
| 14bb40 | 75 20 74 6f 20 6d 61 6b 65 20 79 6f 75 72 20 53 75 72 69 63 61 74 61 20 63 6f 6e 66 69 67 75 72 | u.to.make.your.Suricata.configur |
| 14bb60 | 61 74 69 6f 6e 20 6d 6f 72 65 20 66 6c 65 78 69 62 6c 65 20 61 6e 64 20 6d 61 6e 61 67 65 61 62 | ation.more.flexible.and.manageab |
| 14bb80 | 6c 65 2e 20 49 6e 73 74 65 61 64 20 6f 66 20 73 70 65 63 69 66 79 69 6e 67 20 49 50 20 61 64 64 | le..Instead.of.specifying.IP.add |
| 14bba0 | 72 65 73 73 65 73 20 61 6e 64 20 70 6f 72 74 73 20 64 69 72 65 63 74 6c 79 20 69 6e 20 65 61 63 | resses.and.ports.directly.in.eac |
| 14bbc0 | 68 20 72 75 6c 65 2c 20 79 6f 75 20 63 61 6e 20 64 65 66 69 6e 65 20 74 68 65 6d 20 6f 6e 63 65 | h.rule,.you.can.define.them.once |
| 14bbe0 | 20 69 6e 20 74 68 65 20 76 61 72 73 20 73 65 63 74 69 6f 6e 20 61 6e 64 20 74 68 65 6e 20 72 65 | .in.the.vars.section.and.then.re |
| 14bc00 | 66 65 72 65 6e 63 65 20 74 68 65 6d 20 62 79 20 67 72 6f 75 70 20 6e 61 6d 65 73 2e 20 54 68 69 | ference.them.by.group.names..Thi |
| 14bc20 | 73 20 69 73 20 65 73 70 65 63 69 61 6c 6c 79 20 75 73 65 66 75 6c 20 69 6e 20 6c 61 72 67 65 20 | s.is.especially.useful.in.large. |
| 14bc40 | 6e 65 74 77 6f 72 6b 73 20 61 6e 64 20 63 6f 6d 70 6c 65 78 20 63 6f 6e 66 69 67 75 72 61 74 69 | networks.and.complex.configurati |
| 14bc60 | 6f 6e 73 20 77 68 65 72 65 20 6d 75 6c 74 69 70 6c 65 20 49 50 20 61 64 64 72 65 73 73 65 73 20 | ons.where.multiple.IP.addresses. |
| 14bc80 | 61 6e 64 20 70 6f 72 74 73 20 6e 65 65 64 20 74 6f 20 62 65 20 6d 6f 6e 69 74 6f 72 65 64 2e 00 | and.ports.need.to.be.monitored.. |
| 14bca0 | 55 73 69 6e 67 20 64 79 6e 61 6d 69 63 20 66 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 73 2c 20 77 | Using.dynamic.firewall.groups,.w |
| 14bcc0 | 65 20 63 61 6e 20 73 65 63 75 72 65 20 61 63 63 65 73 73 20 74 6f 20 74 68 65 20 72 6f 75 74 65 | e.can.secure.access.to.the.route |
| 14bce0 | 72 2c 20 6f 72 20 61 6e 79 20 6f 74 68 65 72 20 64 65 76 69 63 65 20 69 66 20 6e 65 65 64 65 64 | r,.or.any.other.device.if.needed |
| 14bd00 | 2c 20 62 79 20 75 73 69 6e 67 20 74 68 65 20 74 65 63 68 6e 69 71 75 65 20 6f 66 20 70 6f 72 74 | ,.by.using.the.technique.of.port |
| 14bd20 | 20 6b 6e 6f 63 6b 69 6e 67 2e 00 55 73 69 6e 67 20 6f 75 72 20 64 6f 63 75 6d 65 6e 74 61 74 69 | .knocking..Using.our.documentati |
| 14bd40 | 6f 6e 20 63 68 61 70 74 65 72 20 2d 20 3a 72 65 66 3a 60 70 6b 69 60 20 67 65 6e 65 72 61 74 65 | on.chapter.-.:ref:`pki`.generate |
| 14bd60 | 20 61 6e 64 20 69 6e 73 74 61 6c 6c 20 43 41 20 61 6e 64 20 53 65 72 76 65 72 20 63 65 72 74 69 | .and.install.CA.and.Server.certi |
| 14bd80 | 66 69 63 61 74 65 00 55 73 69 6e 67 20 74 68 65 20 6f 70 65 72 61 74 69 6f 6e 20 6d 6f 64 65 20 | ficate.Using.the.operation.mode. |
| 14bda0 | 63 6f 6d 6d 61 6e 64 20 74 6f 20 76 69 65 77 20 42 72 69 64 67 65 20 49 6e 66 6f 72 6d 61 74 69 | command.to.view.Bridge.Informati |
| 14bdc0 | 6f 6e 00 55 73 69 6e 67 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 2c 20 79 6f 75 20 77 69 6c 6c 20 | on.Using.this.command,.you.will. |
| 14bde0 | 63 72 65 61 74 65 20 61 20 6e 65 77 20 63 6c 69 65 6e 74 20 63 6f 6e 66 69 67 75 72 61 74 69 6f | create.a.new.client.configuratio |
| 14be00 | 6e 20 77 68 69 63 68 20 63 61 6e 20 63 6f 6e 6e 65 63 74 20 74 6f 20 60 60 69 6e 74 65 72 66 61 | n.which.can.connect.to.``interfa |
| 14be20 | 63 65 60 60 20 6f 6e 20 74 68 69 73 20 72 6f 75 74 65 72 2e 20 54 68 65 20 70 75 62 6c 69 63 20 | ce``.on.this.router..The.public. |
| 14be40 | 6b 65 79 20 66 72 6f 6d 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 69 6e 74 65 72 66 61 63 65 | key.from.the.specified.interface |
| 14be60 | 20 69 73 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 65 78 74 72 61 63 74 65 64 20 61 6e 64 20 | .is.automatically.extracted.and. |
| 14be80 | 65 6d 62 65 64 64 65 64 20 69 6e 74 6f 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e | embedded.into.the.configuration. |
| 14bea0 | 00 55 73 75 61 6c 6c 79 20 74 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 73 20 75 | .Usually.this.configuration.is.u |
| 14bec0 | 73 65 64 20 69 6e 20 50 45 73 20 28 50 72 6f 76 69 64 65 72 20 45 64 67 65 29 20 74 6f 20 72 65 | sed.in.PEs.(Provider.Edge).to.re |
| 14bee0 | 70 6c 61 63 65 20 74 68 65 20 69 6e 63 6f 6d 69 6e 67 20 63 75 73 74 6f 6d 65 72 20 41 53 20 6e | place.the.incoming.customer.AS.n |
| 14bf00 | 75 6d 62 65 72 20 73 6f 20 74 68 65 20 63 6f 6e 6e 65 63 74 65 64 20 43 45 20 28 20 43 75 73 74 | umber.so.the.connected.CE.(.Cust |
| 14bf20 | 6f 6d 65 72 20 45 64 67 65 29 20 63 61 6e 20 75 73 65 20 74 68 65 20 73 61 6d 65 20 41 53 20 6e | omer.Edge).can.use.the.same.AS.n |
| 14bf40 | 75 6d 62 65 72 20 61 73 20 74 68 65 20 6f 74 68 65 72 20 63 75 73 74 6f 6d 65 72 20 73 69 74 65 | umber.as.the.other.customer.site |
| 14bf60 | 73 2e 20 54 68 69 73 20 61 6c 6c 6f 77 73 20 63 75 73 74 6f 6d 65 72 73 20 6f 66 20 74 68 65 20 | s..This.allows.customers.of.the. |
| 14bf80 | 70 72 6f 76 69 64 65 72 20 6e 65 74 77 6f 72 6b 20 74 6f 20 75 73 65 20 74 68 65 20 73 61 6d 65 | provider.network.to.use.the.same |
| 14bfa0 | 20 41 53 20 6e 75 6d 62 65 72 20 61 63 72 6f 73 73 20 74 68 65 69 72 20 73 69 74 65 73 2e 00 56 | .AS.number.across.their.sites..V |
| 14bfc0 | 48 54 20 28 56 65 72 79 20 48 69 67 68 20 54 68 72 6f 75 67 68 70 75 74 29 20 63 61 70 61 62 69 | HT.(Very.High.Throughput).capabi |
| 14bfe0 | 6c 69 74 69 65 73 20 28 38 30 32 2e 31 31 61 63 29 00 56 48 54 20 6c 69 6e 6b 20 61 64 61 70 74 | lities.(802.11ac).VHT.link.adapt |
| 14c000 | 61 74 69 6f 6e 20 63 61 70 61 62 69 6c 69 74 69 65 73 00 56 48 54 20 6f 70 65 72 61 74 69 6e 67 | ation.capabilities.VHT.operating |
| 14c020 | 20 63 68 61 6e 6e 65 6c 20 63 65 6e 74 65 72 20 66 72 65 71 75 65 6e 63 79 20 2d 20 63 65 6e 74 | .channel.center.frequency.-.cent |
| 14c040 | 65 72 20 66 72 65 71 20 31 20 28 66 6f 72 20 75 73 65 20 77 69 74 68 20 38 30 2c 20 38 30 2b 38 | er.freq.1.(for.use.with.80,.80+8 |
| 14c060 | 30 20 61 6e 64 20 31 36 30 20 6d 6f 64 65 73 29 00 56 48 54 20 6f 70 65 72 61 74 69 6e 67 20 63 | 0.and.160.modes).VHT.operating.c |
| 14c080 | 68 61 6e 6e 65 6c 20 63 65 6e 74 65 72 20 66 72 65 71 75 65 6e 63 79 20 2d 20 63 65 6e 74 65 72 | hannel.center.frequency.-.center |
| 14c0a0 | 20 66 72 65 71 20 32 20 28 66 6f 72 20 75 73 65 20 77 69 74 68 20 74 68 65 20 38 30 2b 38 30 20 | .freq.2.(for.use.with.the.80+80. |
| 14c0c0 | 6d 6f 64 65 29 00 56 4c 41 4e 00 56 4c 41 4e 20 31 30 20 6f 6e 20 6d 65 6d 62 65 72 20 69 6e 74 | mode).VLAN.VLAN.10.on.member.int |
| 14c0e0 | 65 72 66 61 63 65 20 60 65 74 68 32 60 20 28 41 43 43 45 53 53 20 6d 6f 64 65 29 00 56 4c 41 4e | erface.`eth2`.(ACCESS.mode).VLAN |
| 14c100 | 20 45 78 61 6d 70 6c 65 00 56 4c 41 4e 20 4f 70 74 69 6f 6e 73 00 56 4c 41 4e 20 6d 6f 6e 69 74 | .Example.VLAN.Options.VLAN.monit |
| 14c120 | 6f 72 20 66 6f 72 20 61 75 74 6f 6d 61 74 69 63 20 63 72 65 61 74 69 6f 6e 20 6f 66 20 56 4c 41 | or.for.automatic.creation.of.VLA |
| 14c140 | 4e 20 69 6e 74 65 72 66 61 63 65 73 20 66 6f 72 20 73 70 65 63 69 66 69 63 20 75 73 65 72 20 6f | N.interfaces.for.specific.user.o |
| 14c160 | 6e 20 73 70 65 63 69 66 69 63 20 3c 69 6e 74 65 72 66 61 63 65 3e 00 56 4c 41 4e 20 6e 61 6d 65 | n.specific.<interface>.VLAN.name |
| 14c180 | 00 56 4c 41 4e 27 73 20 63 61 6e 20 62 65 20 63 72 65 61 74 65 64 20 62 79 20 41 63 63 65 6c 2d | .VLAN's.can.be.created.by.Accel- |
| 14c1a0 | 70 70 70 20 6f 6e 20 74 68 65 20 66 6c 79 20 76 69 61 20 74 68 65 20 75 73 65 20 6f 66 20 61 20 | ppp.on.the.fly.via.the.use.of.a. |
| 14c1c0 | 4b 65 72 6e 65 6c 20 6d 6f 64 75 6c 65 20 6e 61 6d 65 64 20 60 60 76 6c 61 6e 5f 6d 6f 6e 60 60 | Kernel.module.named.``vlan_mon`` |
| 14c1e0 | 2c 20 77 68 69 63 68 20 69 73 20 6d 6f 6e 69 74 6f 72 69 6e 67 20 69 6e 63 6f 6d 69 6e 67 20 76 | ,.which.is.monitoring.incoming.v |
| 14c200 | 6c 61 6e 73 20 61 6e 64 20 63 72 65 61 74 65 73 20 74 68 65 20 6e 65 63 65 73 73 61 72 79 20 56 | lans.and.creates.the.necessary.V |
| 14c220 | 4c 41 4e 20 69 66 20 72 65 71 75 69 72 65 64 20 61 6e 64 20 61 6c 6c 6f 77 65 64 2e 20 56 79 4f | LAN.if.required.and.allowed..VyO |
| 14c240 | 53 20 73 75 70 70 6f 72 74 73 20 74 68 65 20 75 73 65 20 6f 66 20 65 69 74 68 65 72 20 56 4c 41 | S.supports.the.use.of.either.VLA |
| 14c260 | 4e 20 49 44 27 73 20 6f 72 20 65 6e 74 69 72 65 20 72 61 6e 67 65 73 2c 20 62 6f 74 68 20 76 61 | N.ID's.or.entire.ranges,.both.va |
| 14c280 | 6c 75 65 73 20 63 61 6e 20 62 65 20 64 65 66 69 6e 65 64 20 61 74 20 74 68 65 20 73 61 6d 65 20 | lues.can.be.defined.at.the.same. |
| 14c2a0 | 74 69 6d 65 20 66 6f 72 20 61 6e 20 69 6e 74 65 72 66 61 63 65 2e 00 56 4c 41 4e 27 73 20 63 61 | time.for.an.interface..VLAN's.ca |
| 14c2c0 | 6e 20 62 65 20 63 72 65 61 74 65 64 20 62 79 20 41 63 63 65 6c 2d 70 70 70 20 6f 6e 20 74 68 65 | n.be.created.by.Accel-ppp.on.the |
| 14c2e0 | 20 66 6c 79 20 76 69 61 20 74 68 65 20 75 73 65 20 6f 66 20 61 20 4b 65 72 6e 65 6c 20 6d 6f 64 | .fly.via.the.use.of.a.Kernel.mod |
| 14c300 | 75 6c 65 20 6e 61 6d 65 64 20 60 76 6c 61 6e 5f 6d 6f 6e 60 2c 20 77 68 69 63 68 20 69 73 20 6d | ule.named.`vlan_mon`,.which.is.m |
| 14c320 | 6f 6e 69 74 6f 72 69 6e 67 20 69 6e 63 6f 6d 69 6e 67 20 76 6c 61 6e 73 20 61 6e 64 20 63 72 65 | onitoring.incoming.vlans.and.cre |
| 14c340 | 61 74 65 73 20 74 68 65 20 6e 65 63 65 73 73 61 72 79 20 56 4c 41 4e 20 69 66 20 72 65 71 75 69 | ates.the.necessary.VLAN.if.requi |
| 14c360 | 72 65 64 20 61 6e 64 20 61 6c 6c 6f 77 65 64 2e 20 56 79 4f 53 20 73 75 70 70 6f 72 74 73 20 74 | red.and.allowed..VyOS.supports.t |
| 14c380 | 68 65 20 75 73 65 20 6f 66 20 65 69 74 68 65 72 20 56 4c 41 4e 20 49 44 27 73 20 6f 72 20 65 6e | he.use.of.either.VLAN.ID's.or.en |
| 14c3a0 | 74 69 72 65 20 72 61 6e 67 65 73 2c 20 62 6f 74 68 20 76 61 6c 75 65 73 20 63 61 6e 20 62 65 20 | tire.ranges,.both.values.can.be. |
| 14c3c0 | 64 65 66 69 6e 65 64 20 61 74 20 74 68 65 20 73 61 6d 65 20 74 69 6d 65 20 66 6f 72 20 61 6e 20 | defined.at.the.same.time.for.an. |
| 14c3e0 | 69 6e 74 65 72 66 61 63 65 2e 00 56 4d 77 61 72 65 20 75 73 65 72 73 20 73 68 6f 75 6c 64 20 65 | interface..VMware.users.should.e |
| 14c400 | 6e 73 75 72 65 20 74 68 61 74 20 61 20 56 4d 58 4e 45 54 33 20 61 64 61 70 74 65 72 20 69 73 20 | nsure.that.a.VMXNET3.adapter.is. |
| 14c420 | 75 73 65 64 2e 20 45 31 30 30 30 20 61 64 61 70 74 65 72 73 20 68 61 76 65 20 6b 6e 6f 77 6e 20 | used..E1000.adapters.have.known. |
| 14c440 | 69 73 73 75 65 73 20 77 69 74 68 20 47 52 45 20 70 72 6f 63 65 73 73 69 6e 67 2e 00 56 50 4e 00 | issues.with.GRE.processing..VPN. |
| 14c460 | 56 50 4e 2d 63 6c 69 65 6e 74 73 20 77 69 6c 6c 20 72 65 71 75 65 73 74 20 63 6f 6e 66 69 67 75 | VPN-clients.will.request.configu |
| 14c480 | 72 61 74 69 6f 6e 20 70 61 72 61 6d 65 74 65 72 73 2c 20 6f 70 74 69 6f 6e 61 6c 6c 79 20 79 6f | ration.parameters,.optionally.yo |
| 14c4a0 | 75 20 63 61 6e 20 44 4e 53 20 70 61 72 61 6d 65 74 65 72 20 74 6f 20 74 68 65 20 63 6c 69 65 6e | u.can.DNS.parameter.to.the.clien |
| 14c4c0 | 74 2e 00 56 52 46 00 56 52 46 20 52 6f 75 74 65 20 4c 65 61 6b 69 6e 67 00 56 52 46 20 61 6e 64 | t..VRF.VRF.Route.Leaking.VRF.and |
| 14c4e0 | 20 4e 41 54 00 56 52 46 20 62 6c 75 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 00 56 52 46 20 | .NAT.VRF.blue.routing.table.VRF. |
| 14c500 | 64 65 66 61 75 6c 74 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 00 56 52 46 20 72 65 64 20 72 6f | default.routing.table.VRF.red.ro |
| 14c520 | 75 74 69 6e 67 20 74 61 62 6c 65 00 56 52 46 20 72 6f 75 74 65 20 6c 65 61 6b 69 6e 67 00 56 52 | uting.table.VRF.route.leaking.VR |
| 14c540 | 46 20 74 6f 70 6f 6c 6f 67 79 20 65 78 61 6d 70 6c 65 00 56 52 52 50 20 28 56 69 72 74 75 61 6c | F.topology.example.VRRP.(Virtual |
| 14c560 | 20 52 6f 75 74 65 72 20 52 65 64 75 6e 64 61 6e 63 79 20 50 72 6f 74 6f 63 6f 6c 29 20 70 72 6f | .Router.Redundancy.Protocol).pro |
| 14c580 | 76 69 64 65 73 20 61 63 74 69 76 65 2f 62 61 63 6b 75 70 20 72 65 64 75 6e 64 61 6e 63 79 20 66 | vides.active/backup.redundancy.f |
| 14c5a0 | 6f 72 20 72 6f 75 74 65 72 73 2e 20 45 76 65 72 79 20 56 52 52 50 20 72 6f 75 74 65 72 20 68 61 | or.routers..Every.VRRP.router.ha |
| 14c5c0 | 73 20 61 20 70 68 79 73 69 63 61 6c 20 49 50 2f 49 50 76 36 20 61 64 64 72 65 73 73 2c 20 61 6e | s.a.physical.IP/IPv6.address,.an |
| 14c5e0 | 64 20 61 20 76 69 72 74 75 61 6c 20 61 64 64 72 65 73 73 2e 20 4f 6e 20 73 74 61 72 74 75 70 2c | d.a.virtual.address..On.startup, |
| 14c600 | 20 72 6f 75 74 65 72 73 20 65 6c 65 63 74 20 74 68 65 20 6d 61 73 74 65 72 2c 20 61 6e 64 20 74 | .routers.elect.the.master,.and.t |
| 14c620 | 68 65 20 72 6f 75 74 65 72 20 77 69 74 68 20 74 68 65 20 68 69 67 68 65 73 74 20 70 72 69 6f 72 | he.router.with.the.highest.prior |
| 14c640 | 69 74 79 20 62 65 63 6f 6d 65 73 20 74 68 65 20 6d 61 73 74 65 72 20 61 6e 64 20 61 73 73 69 67 | ity.becomes.the.master.and.assig |
| 14c660 | 6e 73 20 74 68 65 20 76 69 72 74 75 61 6c 20 61 64 64 72 65 73 73 20 74 6f 20 69 74 73 20 69 6e | ns.the.virtual.address.to.its.in |
| 14c680 | 74 65 72 66 61 63 65 2e 20 41 6c 6c 20 72 6f 75 74 65 72 73 20 77 69 74 68 20 6c 6f 77 65 72 20 | terface..All.routers.with.lower. |
| 14c6a0 | 70 72 69 6f 72 69 74 69 65 73 20 62 65 63 6f 6d 65 20 62 61 63 6b 75 70 20 72 6f 75 74 65 72 73 | priorities.become.backup.routers |
| 14c6c0 | 2e 20 54 68 65 20 6d 61 73 74 65 72 20 74 68 65 6e 20 73 74 61 72 74 73 20 73 65 6e 64 69 6e 67 | ..The.master.then.starts.sending |
| 14c6e0 | 20 6b 65 65 70 61 6c 69 76 65 20 70 61 63 6b 65 74 73 20 74 6f 20 6e 6f 74 69 66 79 20 6f 74 68 | .keepalive.packets.to.notify.oth |
| 14c700 | 65 72 20 72 6f 75 74 65 72 73 20 74 68 61 74 20 69 74 27 73 20 61 76 61 69 6c 61 62 6c 65 2e 20 | er.routers.that.it's.available.. |
| 14c720 | 49 66 20 74 68 65 20 6d 61 73 74 65 72 20 66 61 69 6c 73 20 61 6e 64 20 73 74 6f 70 73 20 73 65 | If.the.master.fails.and.stops.se |
| 14c740 | 6e 64 69 6e 67 20 6b 65 65 70 61 6c 69 76 65 20 70 61 63 6b 65 74 73 2c 20 74 68 65 20 72 6f 75 | nding.keepalive.packets,.the.rou |
| 14c760 | 74 65 72 20 77 69 74 68 20 74 68 65 20 6e 65 78 74 20 68 69 67 68 65 73 74 20 70 72 69 6f 72 69 | ter.with.the.next.highest.priori |
| 14c780 | 74 79 20 62 65 63 6f 6d 65 73 20 74 68 65 20 6e 65 77 20 6d 61 73 74 65 72 20 61 6e 64 20 74 61 | ty.becomes.the.new.master.and.ta |
| 14c7a0 | 6b 65 73 20 6f 76 65 72 20 74 68 65 20 76 69 72 74 75 61 6c 20 61 64 64 72 65 73 73 2e 00 56 52 | kes.over.the.virtual.address..VR |
| 14c7c0 | 52 50 20 63 61 6e 20 75 73 65 20 74 77 6f 20 6d 6f 64 65 73 3a 20 70 72 65 65 6d 70 74 69 76 65 | RP.can.use.two.modes:.preemptive |
| 14c7e0 | 20 61 6e 64 20 6e 6f 6e 2d 70 72 65 65 6d 70 74 69 76 65 2e 20 49 6e 20 74 68 65 20 70 72 65 65 | .and.non-preemptive..In.the.pree |
| 14c800 | 6d 70 74 69 76 65 20 6d 6f 64 65 2c 20 69 66 20 61 20 72 6f 75 74 65 72 20 77 69 74 68 20 61 20 | mptive.mode,.if.a.router.with.a. |
| 14c820 | 68 69 67 68 65 72 20 70 72 69 6f 72 69 74 79 20 66 61 69 6c 73 20 61 6e 64 20 74 68 65 6e 20 63 | higher.priority.fails.and.then.c |
| 14c840 | 6f 6d 65 73 20 62 61 63 6b 2c 20 72 6f 75 74 65 72 73 20 77 69 74 68 20 6c 6f 77 65 72 20 70 72 | omes.back,.routers.with.lower.pr |
| 14c860 | 69 6f 72 69 74 79 20 77 69 6c 6c 20 67 69 76 65 20 75 70 20 74 68 65 69 72 20 6d 61 73 74 65 72 | iority.will.give.up.their.master |
| 14c880 | 20 73 74 61 74 75 73 2e 20 49 6e 20 6e 6f 6e 2d 70 72 65 65 6d 70 74 69 76 65 20 6d 6f 64 65 2c | .status..In.non-preemptive.mode, |
| 14c8a0 | 20 74 68 65 20 6e 65 77 6c 79 20 65 6c 65 63 74 65 64 20 6d 61 73 74 65 72 20 77 69 6c 6c 20 6b | .the.newly.elected.master.will.k |
| 14c8c0 | 65 65 70 20 74 68 65 20 6d 61 73 74 65 72 20 73 74 61 74 75 73 20 61 6e 64 20 74 68 65 20 76 69 | eep.the.master.status.and.the.vi |
| 14c8e0 | 72 74 75 61 6c 20 61 64 64 72 65 73 73 20 69 6e 64 65 66 69 6e 69 74 65 6c 79 2e 00 56 52 52 50 | rtual.address.indefinitely..VRRP |
| 14c900 | 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 20 63 61 6e 20 62 65 20 65 78 74 65 6e 64 65 64 20 77 | .functionality.can.be.extended.w |
| 14c920 | 69 74 68 20 73 63 72 69 70 74 73 2e 20 56 79 4f 53 20 73 75 70 70 6f 72 74 73 20 74 77 6f 20 6b | ith.scripts..VyOS.supports.two.k |
| 14c940 | 69 6e 64 73 20 6f 66 20 73 63 72 69 70 74 73 3a 20 68 65 61 6c 74 68 20 63 68 65 63 6b 20 73 63 | inds.of.scripts:.health.check.sc |
| 14c960 | 72 69 70 74 73 20 61 6e 64 20 74 72 61 6e 73 69 74 69 6f 6e 20 73 63 72 69 70 74 73 2e 20 48 65 | ripts.and.transition.scripts..He |
| 14c980 | 61 6c 74 68 20 63 68 65 63 6b 20 73 63 72 69 70 74 73 20 65 78 65 63 75 74 65 20 63 75 73 74 6f | alth.check.scripts.execute.custo |
| 14c9a0 | 6d 20 63 68 65 63 6b 73 20 69 6e 20 61 64 64 69 74 69 6f 6e 20 74 6f 20 74 68 65 20 6d 61 73 74 | m.checks.in.addition.to.the.mast |
| 14c9c0 | 65 72 20 72 6f 75 74 65 72 20 72 65 61 63 68 61 62 69 6c 69 74 79 2e 20 54 72 61 6e 73 69 74 69 | er.router.reachability..Transiti |
| 14c9e0 | 6f 6e 20 73 63 72 69 70 74 73 20 61 72 65 20 65 78 65 63 75 74 65 64 20 77 68 65 6e 20 56 52 52 | on.scripts.are.executed.when.VRR |
| 14ca00 | 50 20 73 74 61 74 65 20 63 68 61 6e 67 65 73 20 66 72 6f 6d 20 6d 61 73 74 65 72 20 74 6f 20 62 | P.state.changes.from.master.to.b |
| 14ca20 | 61 63 6b 75 70 20 6f 72 20 66 61 75 6c 74 20 61 6e 64 20 76 69 63 65 20 76 65 72 73 61 20 61 6e | ackup.or.fault.and.vice.versa.an |
| 14ca40 | 64 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 65 6e 61 62 6c 65 20 6f 72 20 64 69 73 61 62 | d.can.be.used.to.enable.or.disab |
| 14ca60 | 6c 65 20 63 65 72 74 61 69 6e 20 73 65 72 76 69 63 65 73 2c 20 66 6f 72 20 65 78 61 6d 70 6c 65 | le.certain.services,.for.example |
| 14ca80 | 2e 00 56 52 52 50 20 67 72 6f 75 70 73 20 61 72 65 20 63 72 65 61 74 65 64 20 77 69 74 68 20 74 | ..VRRP.groups.are.created.with.t |
| 14caa0 | 68 65 20 60 60 73 65 74 20 68 69 67 68 2d 61 76 61 69 6c 61 62 69 6c 69 74 79 20 76 72 72 70 20 | he.``set.high-availability.vrrp. |
| 14cac0 | 67 72 6f 75 70 20 24 47 52 4f 55 50 5f 4e 41 4d 45 60 60 20 63 6f 6d 6d 61 6e 64 73 2e 20 54 68 | group.$GROUP_NAME``.commands..Th |
| 14cae0 | 65 20 72 65 71 75 69 72 65 64 20 70 61 72 61 6d 65 74 65 72 73 20 61 72 65 20 69 6e 74 65 72 66 | e.required.parameters.are.interf |
| 14cb00 | 61 63 65 2c 20 76 72 69 64 2c 20 61 6e 64 20 61 64 64 72 65 73 73 2e 00 56 52 52 50 20 6b 65 65 | ace,.vrid,.and.address..VRRP.kee |
| 14cb20 | 70 61 6c 69 76 65 20 70 61 63 6b 65 74 73 20 75 73 65 20 6d 75 6c 74 69 63 61 73 74 2c 20 61 6e | palive.packets.use.multicast,.an |
| 14cb40 | 64 20 56 52 52 50 20 73 65 74 75 70 73 20 61 72 65 20 6c 69 6d 69 74 65 64 20 74 6f 20 61 20 73 | d.VRRP.setups.are.limited.to.a.s |
| 14cb60 | 69 6e 67 6c 65 20 64 61 74 61 6c 69 6e 6b 20 6c 61 79 65 72 20 73 65 67 6d 65 6e 74 2e 20 59 6f | ingle.datalink.layer.segment..Yo |
| 14cb80 | 75 20 63 61 6e 20 73 65 74 75 70 20 6d 75 6c 74 69 70 6c 65 20 56 52 52 50 20 67 72 6f 75 70 73 | u.can.setup.multiple.VRRP.groups |
| 14cba0 | 20 28 61 6c 73 6f 20 63 61 6c 6c 65 64 20 76 69 72 74 75 61 6c 20 72 6f 75 74 65 72 73 29 2e 20 | .(also.called.virtual.routers).. |
| 14cbc0 | 56 69 72 74 75 61 6c 20 72 6f 75 74 65 72 73 20 61 72 65 20 69 64 65 6e 74 69 66 69 65 64 20 62 | Virtual.routers.are.identified.b |
| 14cbe0 | 79 20 61 20 56 52 49 44 20 28 56 69 72 74 75 61 6c 20 52 6f 75 74 65 72 20 49 44 65 6e 74 69 66 | y.a.VRID.(Virtual.Router.IDentif |
| 14cc00 | 69 65 72 29 2e 20 49 66 20 79 6f 75 20 73 65 74 75 70 20 6d 75 6c 74 69 70 6c 65 20 67 72 6f 75 | ier)..If.you.setup.multiple.grou |
| 14cc20 | 70 73 20 6f 6e 20 74 68 65 20 73 61 6d 65 20 69 6e 74 65 72 66 61 63 65 2c 20 74 68 65 69 72 20 | ps.on.the.same.interface,.their. |
| 14cc40 | 56 52 49 44 73 20 6d 75 73 74 20 62 65 20 75 6e 69 71 75 65 20 69 66 20 74 68 65 79 20 75 73 65 | VRIDs.must.be.unique.if.they.use |
| 14cc60 | 20 74 68 65 20 73 61 6d 65 20 61 64 64 72 65 73 73 20 66 61 6d 69 6c 79 2c 20 62 75 74 20 69 74 | .the.same.address.family,.but.it |
| 14cc80 | 27 73 20 70 6f 73 73 69 62 6c 65 20 28 65 76 65 6e 20 69 66 20 6e 6f 74 20 72 65 63 6f 6d 6d 65 | 's.possible.(even.if.not.recomme |
| 14cca0 | 6e 64 65 64 20 66 6f 72 20 72 65 61 64 61 62 69 6c 69 74 79 20 72 65 61 73 6f 6e 73 29 20 74 6f | nded.for.readability.reasons).to |
| 14ccc0 | 20 75 73 65 20 64 75 70 6c 69 63 61 74 65 20 56 52 49 44 73 20 6f 6e 20 64 69 66 66 65 72 65 6e | .use.duplicate.VRIDs.on.differen |
| 14cce0 | 74 20 69 6e 74 65 72 66 61 63 65 73 2e 00 56 52 52 50 20 70 72 69 6f 72 69 74 79 20 63 61 6e 20 | t.interfaces..VRRP.priority.can. |
| 14cd00 | 62 65 20 73 65 74 20 77 69 74 68 20 60 60 70 72 69 6f 72 69 74 79 60 60 20 6f 70 74 69 6f 6e 3a | be.set.with.``priority``.option: |
| 14cd20 | 00 56 54 49 20 2d 20 56 69 72 74 75 61 6c 20 54 75 6e 6e 65 6c 20 49 6e 74 65 72 66 61 63 65 00 | .VTI.-.Virtual.Tunnel.Interface. |
| 14cd40 | 56 58 4c 41 4e 00 56 58 4c 41 4e 20 69 73 20 61 6e 20 65 76 6f 6c 75 74 69 6f 6e 20 6f 66 20 65 | VXLAN.VXLAN.is.an.evolution.of.e |
| 14cd60 | 66 66 6f 72 74 73 20 74 6f 20 73 74 61 6e 64 61 72 64 69 7a 65 20 61 6e 20 6f 76 65 72 6c 61 79 | fforts.to.standardize.an.overlay |
| 14cd80 | 20 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e 20 70 72 6f 74 6f 63 6f 6c 2e 20 49 74 20 69 6e 63 72 | .encapsulation.protocol..It.incr |
| 14cda0 | 65 61 73 65 73 20 74 68 65 20 73 63 61 6c 61 62 69 6c 69 74 79 20 75 70 20 74 6f 20 31 36 20 6d | eases.the.scalability.up.to.16.m |
| 14cdc0 | 69 6c 6c 69 6f 6e 20 6c 6f 67 69 63 61 6c 20 6e 65 74 77 6f 72 6b 73 20 61 6e 64 20 61 6c 6c 6f | illion.logical.networks.and.allo |
| 14cde0 | 77 73 20 66 6f 72 20 6c 61 79 65 72 20 32 20 61 64 6a 61 63 65 6e 63 79 20 61 63 72 6f 73 73 20 | ws.for.layer.2.adjacency.across. |
| 14ce00 | 49 50 20 6e 65 74 77 6f 72 6b 73 2e 20 4d 75 6c 74 69 63 61 73 74 20 6f 72 20 75 6e 69 63 61 73 | IP.networks..Multicast.or.unicas |
| 14ce20 | 74 20 77 69 74 68 20 68 65 61 64 2d 65 6e 64 20 72 65 70 6c 69 63 61 74 69 6f 6e 20 28 48 45 52 | t.with.head-end.replication.(HER |
| 14ce40 | 29 20 69 73 20 75 73 65 64 20 74 6f 20 66 6c 6f 6f 64 20 62 72 6f 61 64 63 61 73 74 2c 20 75 6e | ).is.used.to.flood.broadcast,.un |
| 14ce60 | 6b 6e 6f 77 6e 20 75 6e 69 63 61 73 74 2c 20 61 6e 64 20 6d 75 6c 74 69 63 61 73 74 20 28 42 55 | known.unicast,.and.multicast.(BU |
| 14ce80 | 4d 29 20 74 72 61 66 66 69 63 2e 00 56 58 4c 41 4e 20 73 70 65 63 69 66 69 63 20 6f 70 74 69 6f | M).traffic..VXLAN.specific.optio |
| 14cea0 | 6e 73 00 56 58 4c 41 4e 20 77 61 73 20 6f 66 66 69 63 69 61 6c 6c 79 20 64 6f 63 75 6d 65 6e 74 | ns.VXLAN.was.officially.document |
| 14cec0 | 65 64 20 62 79 20 74 68 65 20 49 45 54 46 20 69 6e 20 3a 72 66 63 3a 60 37 33 34 38 60 2e 00 56 | ed.by.the.IETF.in.:rfc:`7348`..V |
| 14cee0 | 61 6c 69 64 20 76 61 6c 75 65 73 20 61 72 65 20 30 2e 2e 32 35 35 2e 00 56 61 6c 69 64 20 76 61 | alid.values.are.0..255..Valid.va |
| 14cf00 | 6c 75 65 73 20 61 72 65 20 31 2e 2e 36 33 00 56 61 6c 75 65 00 56 61 6c 75 65 20 74 6f 20 73 65 | lues.are.1..63.Value.Value.to.se |
| 14cf20 | 6e 64 20 74 6f 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 69 6e 20 4e 41 53 2d 49 50 2d 41 64 | nd.to.RADIUS.server.in.NAS-IP-Ad |
| 14cf40 | 64 72 65 73 73 20 61 74 74 72 69 62 75 74 65 20 61 6e 64 20 74 6f 20 62 65 20 6d 61 74 63 68 65 | dress.attribute.and.to.be.matche |
| 14cf60 | 64 20 69 6e 20 44 4d 2f 43 6f 41 20 72 65 71 75 65 73 74 73 2e 20 41 6c 73 6f 20 44 4d 2f 43 6f | d.in.DM/CoA.requests..Also.DM/Co |
| 14cf80 | 41 20 73 65 72 76 65 72 20 77 69 6c 6c 20 62 69 6e 64 20 74 6f 20 74 68 61 74 20 61 64 64 72 65 | A.server.will.bind.to.that.addre |
| 14cfa0 | 73 73 2e 00 56 61 6c 75 65 20 74 6f 20 73 65 6e 64 20 74 6f 20 52 41 44 49 55 53 20 73 65 72 76 | ss..Value.to.send.to.RADIUS.serv |
| 14cfc0 | 65 72 20 69 6e 20 4e 41 53 2d 49 64 65 6e 74 69 66 69 65 72 20 61 74 74 72 69 62 75 74 65 20 61 | er.in.NAS-Identifier.attribute.a |
| 14cfe0 | 6e 64 20 74 6f 20 62 65 20 6d 61 74 63 68 65 64 20 69 6e 20 44 4d 2f 43 6f 41 20 72 65 71 75 65 | nd.to.be.matched.in.DM/CoA.reque |
| 14d000 | 73 74 73 2e 00 56 65 72 69 66 69 63 61 74 69 6f 6e 00 56 65 72 69 66 69 63 61 74 69 6f 6e 3a 00 | sts..Verification.Verification:. |
| 14d020 | 56 65 72 69 66 79 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 68 61 6e 67 65 73 20 68 61 76 | Verify.configuration.changes.hav |
| 14d040 | 65 20 62 65 65 6e 20 72 65 70 6c 69 63 61 74 65 64 20 74 6f 20 52 6f 75 74 65 72 20 42 00 56 65 | e.been.replicated.to.Router.B.Ve |
| 14d060 | 72 69 66 79 20 74 68 61 74 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 61 72 65 20 68 69 74 74 69 6e | rify.that.connections.are.hittin |
| 14d080 | 67 20 74 68 65 20 72 75 6c 65 20 6f 6e 20 62 6f 74 68 20 73 69 64 65 73 3a 00 56 65 72 73 69 6f | g.the.rule.on.both.sides:.Versio |
| 14d0a0 | 6e 00 56 69 72 74 75 61 6c 20 45 74 68 65 72 6e 65 74 00 56 69 72 74 75 61 6c 20 53 65 72 76 65 | n.Virtual.Ethernet.Virtual.Serve |
| 14d0c0 | 72 20 61 6c 6c 6f 77 73 20 74 6f 20 4c 6f 61 64 2d 62 61 6c 61 6e 63 65 20 74 72 61 66 66 69 63 | r.allows.to.Load-balance.traffic |
| 14d0e0 | 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 76 69 72 74 75 61 6c 2d 61 64 64 72 65 73 73 3a 70 6f 72 | .destination.virtual-address:por |
| 14d100 | 74 20 62 65 74 77 65 65 6e 20 73 65 76 65 72 61 6c 20 72 65 61 6c 20 73 65 72 76 65 72 73 2e 00 | t.between.several.real.servers.. |
| 14d120 | 56 69 72 74 75 61 6c 2d 73 65 72 76 65 72 00 56 69 72 74 75 61 6c 2d 73 65 72 76 65 72 20 63 61 | Virtual-server.Virtual-server.ca |
| 14d140 | 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 77 69 74 68 20 56 52 52 50 20 76 69 72 74 75 61 | n.be.configured.with.VRRP.virtua |
| 14d160 | 6c 20 61 64 64 72 65 73 73 20 6f 72 20 77 69 74 68 6f 75 74 20 56 52 52 50 2e 00 56 6f 6c 75 6d | l.address.or.without.VRRP..Volum |
| 14d180 | 65 20 69 73 20 65 69 74 68 65 72 20 6d 6f 75 6e 74 65 64 20 61 73 20 72 77 20 28 72 65 61 64 2d | e.is.either.mounted.as.rw.(read- |
| 14d1a0 | 77 72 69 74 65 20 2d 20 64 65 66 61 75 6c 74 29 20 6f 72 20 72 6f 20 28 72 65 61 64 2d 6f 6e 6c | write.-.default).or.ro.(read-onl |
| 14d1c0 | 79 29 00 56 79 4f 53 20 31 2e 31 20 73 75 70 70 6f 72 74 65 64 20 6c 6f 67 69 6e 20 61 73 20 75 | y).VyOS.1.1.supported.login.as.u |
| 14d1e0 | 73 65 72 20 60 60 72 6f 6f 74 60 60 2e 20 54 68 69 73 20 68 61 73 20 62 65 65 6e 20 72 65 6d 6f | ser.``root``..This.has.been.remo |
| 14d200 | 76 65 64 20 64 75 65 20 74 6f 20 74 69 67 68 74 65 72 20 73 65 63 75 72 69 74 79 20 69 6e 20 56 | ved.due.to.tighter.security.in.V |
| 14d220 | 79 4f 53 20 31 2e 32 2e 00 56 79 4f 53 20 31 2e 33 20 28 65 71 75 75 6c 65 75 73 29 20 73 75 70 | yOS.1.2..VyOS.1.3.(equuleus).sup |
| 14d240 | 70 6f 72 74 73 20 44 48 43 50 76 36 2d 50 44 20 28 3a 72 66 63 3a 60 33 36 33 33 60 29 2e 20 44 | ports.DHCPv6-PD.(:rfc:`3633`)..D |
| 14d260 | 48 43 50 76 36 20 50 72 65 66 69 78 20 44 65 6c 65 67 61 74 69 6f 6e 20 69 73 20 73 75 70 70 6f | HCPv6.Prefix.Delegation.is.suppo |
| 14d280 | 72 74 65 64 20 62 79 20 6d 6f 73 74 20 49 53 50 73 20 77 68 6f 20 70 72 6f 76 69 64 65 20 6e 61 | rted.by.most.ISPs.who.provide.na |
| 14d2a0 | 74 69 76 65 20 49 50 76 36 20 66 6f 72 20 63 6f 6e 73 75 6d 65 72 73 20 6f 6e 20 66 69 78 65 64 | tive.IPv6.for.consumers.on.fixed |
| 14d2c0 | 20 6e 65 74 77 6f 72 6b 73 2e 00 56 79 4f 53 20 31 2e 34 20 28 73 61 67 69 74 74 61 29 20 69 6e | .networks..VyOS.1.4.(sagitta).in |
| 14d2e0 | 74 72 6f 64 75 63 65 64 20 64 79 6e 61 6d 69 63 20 72 6f 75 74 69 6e 67 20 73 75 70 70 6f 72 74 | troduced.dynamic.routing.support |
| 14d300 | 20 66 6f 72 20 56 52 46 73 2e 00 56 79 4f 53 20 31 2e 34 20 63 68 61 6e 67 65 64 20 74 68 65 20 | .for.VRFs..VyOS.1.4.changed.the. |
| 14d320 | 77 61 79 20 69 6e 20 68 6f 77 20 65 6e 63 72 79 70 74 69 6f 6e 20 6b 65 79 73 20 6f 72 20 63 65 | way.in.how.encryption.keys.or.ce |
| 14d340 | 72 74 69 66 69 63 61 74 65 73 20 61 72 65 20 73 74 6f 72 65 64 20 6f 6e 20 74 68 65 20 73 79 73 | rtificates.are.stored.on.the.sys |
| 14d360 | 74 65 6d 2e 20 49 6e 20 74 68 65 20 70 72 65 20 56 79 4f 53 20 31 2e 34 20 65 72 61 2c 20 63 65 | tem..In.the.pre.VyOS.1.4.era,.ce |
| 14d380 | 72 74 69 66 69 63 61 74 65 73 20 67 6f 74 20 73 74 6f 72 65 64 20 75 6e 64 65 72 20 2f 63 6f 6e | rtificates.got.stored.under./con |
| 14d3a0 | 66 69 67 20 61 6e 64 20 65 76 65 72 79 20 73 65 72 76 69 63 65 20 72 65 66 65 72 65 6e 63 65 64 | fig.and.every.service.referenced |
| 14d3c0 | 20 61 20 66 69 6c 65 2e 20 54 68 61 74 20 6d 61 64 65 20 63 6f 70 79 69 6e 67 20 61 20 72 75 6e | .a.file..That.made.copying.a.run |
| 14d3e0 | 6e 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 72 6f 6d 20 73 79 73 74 65 6d 20 41 | ning.configuration.from.system.A |
| 14d400 | 20 74 6f 20 73 79 73 74 65 6d 20 42 20 61 20 62 69 74 20 68 61 72 64 65 72 2c 20 61 73 20 79 6f | .to.system.B.a.bit.harder,.as.yo |
| 14d420 | 75 20 68 61 64 20 74 6f 20 63 6f 70 79 20 74 68 65 20 66 69 6c 65 73 20 61 6e 64 20 74 68 65 69 | u.had.to.copy.the.files.and.thei |
| 14d440 | 72 20 70 65 72 6d 69 73 73 69 6f 6e 73 20 62 79 20 68 61 6e 64 2e 00 56 79 4f 53 20 31 2e 34 20 | r.permissions.by.hand..VyOS.1.4. |
| 14d460 | 63 68 61 6e 67 65 64 20 74 68 65 20 77 61 79 20 69 6e 20 68 6f 77 20 65 6e 63 72 79 74 69 6f 6e | changed.the.way.in.how.encrytion |
| 14d480 | 20 6b 65 79 73 20 6f 72 20 63 65 72 74 69 66 69 63 61 74 65 73 20 61 72 65 20 73 74 6f 72 65 64 | .keys.or.certificates.are.stored |
| 14d4a0 | 20 6f 6e 20 74 68 65 20 73 79 73 74 65 6d 2e 20 49 6e 20 74 68 65 20 70 72 65 20 56 79 4f 53 20 | .on.the.system..In.the.pre.VyOS. |
| 14d4c0 | 31 2e 34 20 65 72 61 2c 20 63 65 72 74 69 66 69 63 61 74 65 73 20 67 6f 74 20 73 74 6f 72 65 64 | 1.4.era,.certificates.got.stored |
| 14d4e0 | 20 75 6e 64 65 72 20 2f 63 6f 6e 66 69 67 20 61 6e 64 20 65 76 65 72 79 20 73 65 72 76 69 63 65 | .under./config.and.every.service |
| 14d500 | 20 72 65 66 65 72 65 6e 63 65 64 20 61 20 66 69 6c 65 2e 20 54 68 61 74 20 6d 61 64 65 20 63 6f | .referenced.a.file..That.made.co |
| 14d520 | 70 79 69 6e 67 20 61 20 72 75 6e 6e 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 72 | pying.a.running.configuration.fr |
| 14d540 | 6f 6d 20 73 79 73 74 65 6d 20 41 20 74 6f 20 73 79 73 74 65 6d 20 42 20 61 20 62 69 74 20 68 61 | om.system.A.to.system.B.a.bit.ha |
| 14d560 | 72 64 65 72 2c 20 61 73 20 79 6f 75 20 68 61 64 20 74 6f 20 63 6f 70 79 20 74 68 65 20 66 69 6c | rder,.as.you.had.to.copy.the.fil |
| 14d580 | 65 73 20 61 6e 64 20 74 68 65 69 72 20 70 65 72 6d 69 73 73 69 6f 6e 73 20 62 79 20 68 61 6e 64 | es.and.their.permissions.by.hand |
| 14d5a0 | 2e 00 56 79 4f 53 20 31 2e 34 20 75 73 65 73 20 63 68 72 6f 6e 79 20 69 6e 73 74 65 61 64 20 6f | ..VyOS.1.4.uses.chrony.instead.o |
| 14d5c0 | 66 20 6e 74 70 64 20 28 73 65 65 20 3a 76 79 74 61 73 6b 3a 60 54 33 30 30 38 60 29 20 77 68 69 | f.ntpd.(see.:vytask:`T3008`).whi |
| 14d5e0 | 63 68 20 77 69 6c 6c 20 6e 6f 20 6c 6f 6e 67 65 72 20 61 63 63 65 70 74 20 61 6e 6f 6e 79 6d 6f | ch.will.no.longer.accept.anonymo |
| 14d600 | 75 73 20 4e 54 50 20 72 65 71 75 65 73 74 73 20 61 73 20 69 6e 20 56 79 4f 53 20 31 2e 33 2e 20 | us.NTP.requests.as.in.VyOS.1.3.. |
| 14d620 | 41 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 73 20 77 69 6c 6c 20 62 65 20 6d 69 67 72 61 | All.configurations.will.be.migra |
| 14d640 | 74 65 64 20 74 6f 20 6b 65 65 70 20 74 68 65 20 61 6e 6f 6e 79 6d 6f 75 73 20 66 75 6e 63 74 69 | ted.to.keep.the.anonymous.functi |
| 14d660 | 6f 6e 61 6c 69 74 79 2e 20 46 6f 72 20 6e 65 77 20 73 65 74 75 70 73 20 69 66 20 79 6f 75 20 68 | onality..For.new.setups.if.you.h |
| 14d680 | 61 76 65 20 63 6c 69 65 6e 74 73 20 75 73 69 6e 67 20 79 6f 75 72 20 56 79 4f 53 20 69 6e 73 74 | ave.clients.using.your.VyOS.inst |
| 14d6a0 | 61 6c 6c 61 74 69 6f 6e 20 61 73 20 4e 54 50 20 73 65 72 76 65 72 2c 20 79 6f 75 20 6d 75 73 74 | allation.as.NTP.server,.you.must |
| 14d6c0 | 20 73 70 65 63 69 66 79 20 74 68 65 20 60 61 6c 6c 6f 77 2d 63 6c 69 65 6e 74 60 20 64 69 72 65 | .specify.the.`allow-client`.dire |
| 14d6e0 | 63 74 69 76 65 2e 00 56 79 4f 53 20 41 72 69 73 74 61 20 45 4f 53 20 73 65 74 75 70 00 56 79 4f | ctive..VyOS.Arista.EOS.setup.VyO |
| 14d700 | 53 20 45 53 50 20 67 72 6f 75 70 20 68 61 73 20 74 68 65 20 6e 65 78 74 20 6f 70 74 69 6f 6e 73 | S.ESP.group.has.the.next.options |
| 14d720 | 3a 00 56 79 4f 53 20 46 69 65 6c 64 00 56 79 4f 53 20 49 4b 45 20 67 72 6f 75 70 20 68 61 73 20 | :.VyOS.Field.VyOS.IKE.group.has. |
| 14d740 | 74 68 65 20 6e 65 78 74 20 6f 70 74 69 6f 6e 73 3a 00 56 79 4f 53 20 4d 49 42 73 00 56 79 4f 53 | the.next.options:.VyOS.MIBs.VyOS |
| 14d760 | 20 4e 41 54 36 36 20 44 48 43 50 76 36 20 75 73 69 6e 67 20 61 20 64 75 6d 6d 79 20 69 6e 74 65 | .NAT66.DHCPv6.using.a.dummy.inte |
| 14d780 | 72 66 61 63 65 00 56 79 4f 53 20 4e 41 54 36 36 20 53 69 6d 70 6c 65 20 43 6f 6e 66 69 67 75 72 | rface.VyOS.NAT66.Simple.Configur |
| 14d7a0 | 65 00 56 79 4f 53 20 4e 65 74 77 6f 72 6b 20 45 6d 75 6c 61 74 6f 72 20 70 6f 6c 69 63 79 20 65 | e.VyOS.Network.Emulator.policy.e |
| 14d7c0 | 6d 75 6c 61 74 65 73 20 74 68 65 20 63 6f 6e 64 69 74 69 6f 6e 73 20 79 6f 75 20 63 61 6e 20 73 | mulates.the.conditions.you.can.s |
| 14d7e0 | 75 66 66 65 72 20 69 6e 20 61 20 72 65 61 6c 20 6e 65 74 77 6f 72 6b 2e 20 59 6f 75 20 77 69 6c | uffer.in.a.real.network..You.wil |
| 14d800 | 6c 20 62 65 20 61 62 6c 65 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 69 6e 67 73 20 6c 69 | l.be.able.to.configure.things.li |
| 14d820 | 6b 65 20 72 61 74 65 2c 20 62 75 72 73 74 2c 20 64 65 6c 61 79 2c 20 70 61 63 6b 65 74 20 6c 6f | ke.rate,.burst,.delay,.packet.lo |
| 14d840 | 73 73 2c 20 70 61 63 6b 65 74 20 63 6f 72 72 75 70 74 69 6f 6e 20 6f 72 20 70 61 63 6b 65 74 20 | ss,.packet.corruption.or.packet. |
| 14d860 | 72 65 6f 72 64 65 72 69 6e 67 2e 00 56 79 4f 53 20 4f 70 74 69 6f 6e 00 56 79 4f 53 20 50 6f 6c | reordering..VyOS.Option.VyOS.Pol |
| 14d880 | 69 63 79 2d 42 61 73 65 64 20 52 6f 75 74 69 6e 67 20 28 50 42 52 29 20 77 6f 72 6b 73 20 62 79 | icy-Based.Routing.(PBR).works.by |
| 14d8a0 | 20 6d 61 74 63 68 69 6e 67 20 73 6f 75 72 63 65 20 49 50 20 61 64 64 72 65 73 73 20 72 61 6e 67 | .matching.source.IP.address.rang |
| 14d8c0 | 65 73 20 61 6e 64 20 66 6f 72 77 61 72 64 69 6e 67 20 74 68 65 20 74 72 61 66 66 69 63 20 75 73 | es.and.forwarding.the.traffic.us |
| 14d8e0 | 69 6e 67 20 64 69 66 66 65 72 65 6e 74 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 73 2e 00 56 79 | ing.different.routing.tables..Vy |
| 14d900 | 4f 53 20 53 4e 4d 50 20 73 75 70 70 6f 72 74 73 20 62 6f 74 68 20 49 50 76 34 20 61 6e 64 20 49 | OS.SNMP.supports.both.IPv4.and.I |
| 14d920 | 50 76 36 2e 00 56 79 4f 53 20 61 6c 73 6f 20 63 6f 6d 65 73 20 77 69 74 68 20 61 20 62 75 69 6c | Pv6..VyOS.also.comes.with.a.buil |
| 14d940 | 64 20 69 6e 20 53 53 54 50 20 73 65 72 76 65 72 2c 20 73 65 65 20 3a 72 65 66 3a 60 73 73 74 70 | d.in.SSTP.server,.see.:ref:`sstp |
| 14d960 | 60 2e 00 56 79 4f 53 20 61 6c 73 6f 20 70 72 6f 76 69 64 65 73 20 44 48 43 50 76 36 20 73 65 72 | `..VyOS.also.provides.DHCPv6.ser |
| 14d980 | 76 65 72 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 20 77 68 69 63 68 20 69 73 20 64 65 73 63 72 | ver.functionality.which.is.descr |
| 14d9a0 | 69 62 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 2e 00 56 79 4f 53 20 61 6c 73 6f 20 | ibed.in.this.section..VyOS.also. |
| 14d9c0 | 73 75 70 70 6f 72 74 73 20 28 63 75 72 72 65 6e 74 6c 79 29 20 74 77 6f 20 64 69 66 66 65 72 65 | supports.(currently).two.differe |
| 14d9e0 | 6e 74 20 6d 6f 64 65 73 20 6f 66 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2c 20 6c 6f 63 61 | nt.modes.of.authentication,.loca |
| 14da00 | 6c 20 61 6e 64 20 52 41 44 49 55 53 2e 20 54 6f 20 63 72 65 61 74 65 20 61 20 6e 65 77 20 6c 6f | l.and.RADIUS..To.create.a.new.lo |
| 14da20 | 63 61 6c 20 75 73 65 72 20 6e 61 6d 65 64 20 60 60 76 79 6f 73 60 60 20 77 69 74 68 20 70 61 73 | cal.user.named.``vyos``.with.pas |
| 14da40 | 73 77 6f 72 64 20 60 60 76 79 6f 73 60 60 20 75 73 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 | sword.``vyos``.use.the.following |
| 14da60 | 20 63 6f 6d 6d 61 6e 64 73 2e 00 56 79 4f 53 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 73 20 74 77 | .commands..VyOS.also.supports.tw |
| 14da80 | 6f 20 64 69 66 66 65 72 65 6e 74 20 6d 6f 64 65 73 20 6f 66 20 61 75 74 68 65 6e 74 69 63 61 74 | o.different.modes.of.authenticat |
| 14daa0 | 69 6f 6e 2c 20 6c 6f 63 61 6c 20 61 6e 64 20 52 41 44 49 55 53 2e 20 54 6f 20 63 72 65 61 74 65 | ion,.local.and.RADIUS..To.create |
| 14dac0 | 20 61 20 6e 65 77 20 6c 6f 63 61 6c 20 75 73 65 72 20 6e 61 6d 65 64 20 22 76 79 6f 73 22 20 77 | .a.new.local.user.named."vyos".w |
| 14dae0 | 69 74 68 20 61 20 70 61 73 73 77 6f 72 64 20 6f 66 20 22 76 79 6f 73 22 20 75 73 65 20 74 68 65 | ith.a.password.of."vyos".use.the |
| 14db00 | 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 73 2e 00 56 79 4f 53 20 63 61 6e 20 61 6c | .following.commands..VyOS.can.al |
| 14db20 | 73 6f 20 72 75 6e 20 69 6e 20 44 4d 56 50 4e 20 73 70 6f 6b 65 20 6d 6f 64 65 2e 00 56 79 4f 53 | so.run.in.DMVPN.spoke.mode..VyOS |
| 14db40 | 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 74 6f 20 74 72 61 63 6b 20 63 6f 6e 6e | .can.be.configured.to.track.conn |
| 14db60 | 65 63 74 69 6f 6e 73 20 75 73 69 6e 67 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 | ections.using.the.connection.tra |
| 14db80 | 63 6b 69 6e 67 20 73 75 62 73 79 73 74 65 6d 2e 20 43 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 | cking.subsystem..Connection.trac |
| 14dba0 | 6b 69 6e 67 20 62 65 63 6f 6d 65 73 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 6f 6e 63 65 20 65 69 | king.becomes.operational.once.ei |
| 14dbc0 | 74 68 65 72 20 73 74 61 74 65 66 75 6c 20 66 69 72 65 77 61 6c 6c 20 6f 72 20 4e 41 54 20 69 73 | ther.stateful.firewall.or.NAT.is |
| 14dbe0 | 20 63 6f 6e 66 69 67 75 72 65 64 2e 00 56 79 4f 53 20 63 61 6e 20 6e 6f 74 20 6f 6e 6c 79 20 61 | .configured..VyOS.can.not.only.a |
| 14dc00 | 63 74 20 61 73 20 61 6e 20 4f 70 65 6e 56 50 4e 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 6f 72 | ct.as.an.OpenVPN.site-to-site.or |
| 14dc20 | 20 73 65 72 76 65 72 20 66 6f 72 20 6d 75 6c 74 69 70 6c 65 20 63 6c 69 65 6e 74 73 20 62 75 74 | .server.for.multiple.clients.but |
| 14dc40 | 20 79 6f 75 20 63 61 6e 20 61 6c 73 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 6e 79 20 56 79 4f 53 | .you.can.also.configure.any.VyOS |
| 14dc60 | 20 4f 70 65 6e 56 50 4e 20 69 6e 74 65 72 66 61 63 65 20 61 73 20 61 6e 20 4f 70 65 6e 56 50 4e | .OpenVPN.interface.as.an.OpenVPN |
| 14dc80 | 20 63 6c 69 65 6e 74 20 74 68 61 74 20 63 6f 6e 6e 65 63 74 73 20 74 6f 20 61 20 56 79 4f 53 20 | .client.that.connects.to.a.VyOS. |
| 14dca0 | 4f 70 65 6e 56 50 4e 20 73 65 72 76 65 72 20 6f 72 20 61 6e 79 20 6f 74 68 65 72 20 4f 70 65 6e | OpenVPN.server.or.any.other.Open |
| 14dcc0 | 56 50 4e 20 73 65 72 76 65 72 2e 00 56 79 4f 53 20 63 61 6e 20 6e 6f 74 20 6f 6e 6c 79 20 61 63 | VPN.server..VyOS.can.not.only.ac |
| 14dce0 | 74 20 61 73 20 61 6e 20 4f 70 65 6e 56 50 4e 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 6f 72 20 | t.as.an.OpenVPN.site-to-site.or. |
| 14dd00 | 73 65 72 76 65 72 20 66 6f 72 20 6d 75 6c 74 69 70 6c 65 20 63 6c 69 65 6e 74 73 2e 20 59 6f 75 | server.for.multiple.clients..You |
| 14dd20 | 20 63 61 6e 20 69 6e 64 65 65 64 20 61 6c 73 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 6e 79 20 56 | .can.indeed.also.configure.any.V |
| 14dd40 | 79 4f 53 20 4f 70 65 6e 56 50 4e 20 69 6e 74 65 72 66 61 63 65 20 61 73 20 61 6e 20 4f 70 65 6e | yOS.OpenVPN.interface.as.an.Open |
| 14dd60 | 56 50 4e 20 63 6c 69 65 6e 74 20 63 6f 6e 6e 65 63 74 69 6e 67 20 74 6f 20 61 20 56 79 4f 53 20 | VPN.client.connecting.to.a.VyOS. |
| 14dd80 | 4f 70 65 6e 56 50 4e 20 73 65 72 76 65 72 20 6f 72 20 61 6e 79 20 6f 74 68 65 72 20 4f 70 65 6e | OpenVPN.server.or.any.other.Open |
| 14dda0 | 56 50 4e 20 73 65 72 76 65 72 2e 00 56 79 4f 53 20 64 65 66 61 75 6c 74 20 77 69 6c 6c 20 62 65 | VPN.server..VyOS.default.will.be |
| 14ddc0 | 20 60 61 75 74 6f 60 2e 00 56 79 4f 53 20 64 6f 65 73 20 6e 6f 74 20 68 61 76 65 20 61 20 73 70 | .`auto`..VyOS.does.not.have.a.sp |
| 14dde0 | 65 63 69 61 6c 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 74 61 72 74 20 74 68 65 20 42 61 62 65 6c | ecial.command.to.start.the.Babel |
| 14de00 | 20 70 72 6f 63 65 73 73 2e 20 54 68 65 20 42 61 62 65 6c 20 70 72 6f 63 65 73 73 20 73 74 61 72 | .process..The.Babel.process.star |
| 14de20 | 74 73 20 77 68 65 6e 20 74 68 65 20 66 69 72 73 74 20 42 61 62 65 6c 20 65 6e 61 62 6c 65 64 20 | ts.when.the.first.Babel.enabled. |
| 14de40 | 69 6e 74 65 72 66 61 63 65 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 2e 00 56 79 4f 53 20 64 6f | interface.is.configured..VyOS.do |
| 14de60 | 65 73 20 6e 6f 74 20 68 61 76 65 20 61 20 73 70 65 63 69 61 6c 20 63 6f 6d 6d 61 6e 64 20 74 6f | es.not.have.a.special.command.to |
| 14de80 | 20 73 74 61 72 74 20 74 68 65 20 4f 53 50 46 20 70 72 6f 63 65 73 73 2e 20 54 68 65 20 4f 53 50 | .start.the.OSPF.process..The.OSP |
| 14dea0 | 46 20 70 72 6f 63 65 73 73 20 73 74 61 72 74 73 20 77 68 65 6e 20 74 68 65 20 66 69 72 73 74 20 | F.process.starts.when.the.first. |
| 14dec0 | 6f 73 70 66 20 65 6e 61 62 6c 65 64 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 63 6f 6e 66 69 67 | ospf.enabled.interface.is.config |
| 14dee0 | 75 72 65 64 2e 00 56 79 4f 53 20 64 6f 65 73 20 6e 6f 74 20 68 61 76 65 20 61 20 73 70 65 63 69 | ured..VyOS.does.not.have.a.speci |
| 14df00 | 61 6c 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 74 61 72 74 20 74 68 65 20 4f 53 50 46 76 33 20 70 | al.command.to.start.the.OSPFv3.p |
| 14df20 | 72 6f 63 65 73 73 2e 20 54 68 65 20 4f 53 50 46 76 33 20 70 72 6f 63 65 73 73 20 73 74 61 72 74 | rocess..The.OSPFv3.process.start |
| 14df40 | 73 20 77 68 65 6e 20 74 68 65 20 66 69 72 73 74 20 6f 73 70 66 20 65 6e 61 62 6c 65 64 20 69 6e | s.when.the.first.ospf.enabled.in |
| 14df60 | 74 65 72 66 61 63 65 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 2e 00 56 79 4f 53 20 66 61 63 69 | terface.is.configured..VyOS.faci |
| 14df80 | 6c 69 74 61 74 65 73 20 49 50 20 4d 75 6c 74 69 63 61 73 74 20 62 79 20 73 75 70 70 6f 72 74 69 | litates.IP.Multicast.by.supporti |
| 14dfa0 | 6e 67 20 2a 2a 50 49 4d 20 53 70 61 72 73 65 20 4d 6f 64 65 2a 2a 2c 20 2a 2a 49 47 4d 50 2a 2a | ng.**PIM.Sparse.Mode**,.**IGMP** |
| 14dfc0 | 20 61 6e 64 20 2a 2a 49 47 4d 50 2d 50 72 6f 78 79 2a 2a 2e 00 56 79 4f 53 20 66 61 63 69 6c 69 | .and.**IGMP-Proxy**..VyOS.facili |
| 14dfe0 | 74 61 74 65 73 20 49 50 76 36 20 4d 75 6c 74 69 63 61 73 74 20 62 79 20 73 75 70 70 6f 72 74 69 | tates.IPv6.Multicast.by.supporti |
| 14e000 | 6e 67 20 2a 2a 50 49 4d 76 36 2a 2a 20 61 6e 64 20 2a 2a 4d 4c 44 2a 2a 2e 00 56 79 4f 53 20 69 | ng.**PIMv6**.and.**MLD**..VyOS.i |
| 14e020 | 6e 63 6c 75 64 65 73 20 74 68 65 20 46 61 73 74 4e 65 74 4d 6f 6e 20 43 6f 6d 6d 75 6e 69 74 79 | ncludes.the.FastNetMon.Community |
| 14e040 | 20 45 64 69 74 69 6f 6e 2e 00 56 79 4f 53 20 69 73 20 61 62 6c 65 20 74 6f 20 75 70 64 61 74 65 | .Edition..VyOS.is.able.to.update |
| 14e060 | 20 61 20 72 65 6d 6f 74 65 20 44 4e 53 20 72 65 63 6f 72 64 20 77 68 65 6e 20 61 6e 20 69 6e 74 | .a.remote.DNS.record.when.an.int |
| 14e080 | 65 72 66 61 63 65 20 67 65 74 73 20 61 20 6e 65 77 20 49 50 20 61 64 64 72 65 73 73 2e 20 49 6e | erface.gets.a.new.IP.address..In |
| 14e0a0 | 20 6f 72 64 65 72 20 74 6f 20 64 6f 20 73 6f 2c 20 56 79 4f 53 20 69 6e 63 6c 75 64 65 73 20 64 | .order.to.do.so,.VyOS.includes.d |
| 14e0c0 | 64 63 6c 69 65 6e 74 5f 2c 20 61 20 50 65 72 6c 20 73 63 72 69 70 74 20 77 72 69 74 74 65 6e 20 | dclient_,.a.Perl.script.written. |
| 14e0e0 | 66 6f 72 20 74 68 69 73 20 6f 6e 6c 79 20 6f 6e 65 20 70 75 72 70 6f 73 65 2e 00 56 79 4f 53 20 | for.this.only.one.purpose..VyOS. |
| 14e100 | 69 73 20 61 6c 73 6f 20 61 62 6c 65 20 74 6f 20 75 73 65 20 61 6e 79 20 73 65 72 76 69 63 65 20 | is.also.able.to.use.any.service. |
| 14e120 | 72 65 6c 79 69 6e 67 20 6f 6e 20 70 72 6f 74 6f 63 6f 6c 73 20 73 75 70 70 6f 72 74 65 64 20 62 | relying.on.protocols.supported.b |
| 14e140 | 79 20 64 64 63 6c 69 65 6e 74 2e 00 56 79 4f 53 20 69 74 73 65 6c 66 20 73 75 70 70 6f 72 74 73 | y.ddclient..VyOS.itself.supports |
| 14e160 | 20 53 4e 4d 50 76 32 5f 20 28 76 65 72 73 69 6f 6e 20 32 29 20 61 6e 64 20 53 4e 4d 50 76 33 5f | .SNMPv2_.(version.2).and.SNMPv3_ |
| 14e180 | 20 28 76 65 72 73 69 6f 6e 20 33 29 20 77 68 65 72 65 20 74 68 65 20 6c 61 74 65 72 20 69 73 20 | .(version.3).where.the.later.is. |
| 14e1a0 | 72 65 63 6f 6d 6d 65 6e 64 65 64 20 62 65 63 61 75 73 65 20 6f 66 20 69 6d 70 72 6f 76 65 64 20 | recommended.because.of.improved. |
| 14e1c0 | 73 65 63 75 72 69 74 79 20 28 6f 70 74 69 6f 6e 61 6c 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f | security.(optional.authenticatio |
| 14e1e0 | 6e 20 61 6e 64 20 65 6e 63 72 79 70 74 69 6f 6e 29 2e 00 56 79 4f 53 20 6c 65 74 73 20 79 6f 75 | n.and.encryption)..VyOS.lets.you |
| 14e200 | 20 63 6f 6e 74 72 6f 6c 20 74 72 61 66 66 69 63 20 69 6e 20 6d 61 6e 79 20 64 69 66 66 65 72 65 | .control.traffic.in.many.differe |
| 14e220 | 6e 74 20 77 61 79 73 2c 20 68 65 72 65 20 77 65 20 77 69 6c 6c 20 63 6f 76 65 72 20 65 76 65 72 | nt.ways,.here.we.will.cover.ever |
| 14e240 | 79 20 70 6f 73 73 69 62 69 6c 69 74 79 2e 20 59 6f 75 20 63 61 6e 20 63 6f 6e 66 69 67 75 72 65 | y.possibility..You.can.configure |
| 14e260 | 20 61 73 20 6d 61 6e 79 20 70 6f 6c 69 63 69 65 73 20 61 73 20 79 6f 75 20 77 61 6e 74 2c 20 62 | .as.many.policies.as.you.want,.b |
| 14e280 | 75 74 20 79 6f 75 20 77 69 6c 6c 20 6f 6e 6c 79 20 62 65 20 61 62 6c 65 20 74 6f 20 61 70 70 6c | ut.you.will.only.be.able.to.appl |
| 14e2a0 | 79 20 6f 6e 65 20 70 6f 6c 69 63 79 20 70 65 72 20 69 6e 74 65 72 66 61 63 65 20 61 6e 64 20 64 | y.one.policy.per.interface.and.d |
| 14e2c0 | 69 72 65 63 74 69 6f 6e 20 28 69 6e 62 6f 75 6e 64 20 6f 72 20 6f 75 74 62 6f 75 6e 64 29 2e 00 | irection.(inbound.or.outbound).. |
| 14e2e0 | 56 79 4f 53 20 6d 61 6b 65 73 20 75 73 65 20 6f 66 20 3a 61 62 62 72 3a 60 46 52 52 20 28 46 72 | VyOS.makes.use.of.:abbr:`FRR.(Fr |
| 14e300 | 65 65 20 52 61 6e 67 65 20 52 6f 75 74 69 6e 67 29 60 20 61 6e 64 20 77 65 20 77 6f 75 6c 64 20 | ee.Range.Routing)`.and.we.would. |
| 14e320 | 6c 69 6b 65 20 74 6f 20 74 68 61 6e 6b 20 74 68 65 6d 20 66 6f 72 20 74 68 65 69 72 20 65 66 66 | like.to.thank.them.for.their.eff |
| 14e340 | 6f 72 74 21 00 56 79 4f 53 20 6d 61 6b 65 73 20 75 73 65 20 6f 66 20 4c 69 6e 75 78 20 60 6e 65 | ort!.VyOS.makes.use.of.Linux.`ne |
| 14e360 | 74 66 69 6c 74 65 72 20 3c 68 74 74 70 73 3a 2f 2f 6e 65 74 66 69 6c 74 65 72 2e 6f 72 67 2f 3e | tfilter.<https://netfilter.org/> |
| 14e380 | 60 5f 20 66 6f 72 20 70 61 63 6b 65 74 20 66 69 6c 74 65 72 69 6e 67 2e 00 56 79 4f 53 20 6e 6f | `_.for.packet.filtering..VyOS.no |
| 14e3a0 | 74 20 6f 6e 6c 79 20 63 61 6e 20 6e 6f 77 20 6d 61 6e 61 67 65 20 63 65 72 74 69 66 69 63 61 74 | t.only.can.now.manage.certificat |
| 14e3c0 | 65 73 20 69 73 73 75 65 64 20 62 79 20 33 72 64 20 70 61 72 74 79 20 43 65 72 74 69 66 69 63 61 | es.issued.by.3rd.party.Certifica |
| 14e3e0 | 74 65 20 41 75 74 68 6f 72 69 74 69 65 73 2c 20 69 74 20 63 61 6e 20 61 6c 73 6f 20 61 63 74 20 | te.Authorities,.it.can.also.act. |
| 14e400 | 61 73 20 61 20 43 41 20 6f 6e 20 69 74 73 20 6f 77 6e 2e 20 59 6f 75 20 63 61 6e 20 63 72 65 61 | as.a.CA.on.its.own..You.can.crea |
| 14e420 | 74 65 20 79 6f 75 72 20 6f 77 6e 20 72 6f 6f 74 20 43 41 20 61 6e 64 20 73 69 67 6e 20 6b 65 79 | te.your.own.root.CA.and.sign.key |
| 14e440 | 73 20 77 69 74 68 20 69 74 20 62 79 20 6d 61 6b 69 6e 67 20 75 73 65 20 6f 66 20 73 6f 6d 65 20 | s.with.it.by.making.use.of.some. |
| 14e460 | 73 69 6d 70 6c 65 20 6f 70 2d 6d 6f 64 65 20 63 6f 6d 6d 61 6e 64 73 2e 00 56 79 4f 53 20 6e 6f | simple.op-mode.commands..VyOS.no |
| 14e480 | 77 20 61 6c 73 6f 20 68 61 73 20 74 68 65 20 61 62 69 6c 69 74 79 20 74 6f 20 63 72 65 61 74 65 | w.also.has.the.ability.to.create |
| 14e4a0 | 20 43 41 73 2c 20 6b 65 79 73 2c 20 44 69 66 66 69 65 2d 48 65 6c 6c 6d 61 6e 20 61 6e 64 20 6f | .CAs,.keys,.Diffie-Hellman.and.o |
| 14e4c0 | 74 68 65 72 20 6b 65 79 70 61 69 72 73 20 66 72 6f 6d 20 61 6e 20 65 61 73 79 20 74 6f 20 61 63 | ther.keypairs.from.an.easy.to.ac |
| 14e4e0 | 63 65 73 73 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 6c 65 76 65 6c 20 63 6f 6d 6d 61 6e 64 2e 00 | cess.operational.level.command.. |
| 14e500 | 56 79 4f 53 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 6d 6f 64 65 20 63 6f 6d 6d 61 6e 64 73 20 61 | VyOS.operational.mode.commands.a |
| 14e520 | 72 65 20 6e 6f 74 20 6f 6e 6c 79 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 67 65 6e 65 72 61 | re.not.only.available.for.genera |
| 14e540 | 74 69 6e 67 20 6b 65 79 73 20 62 75 74 20 61 6c 73 6f 20 74 6f 20 64 69 73 70 6c 61 79 20 74 68 | ting.keys.but.also.to.display.th |
| 14e560 | 65 6d 2e 00 56 79 4f 53 20 70 72 6f 76 69 64 65 20 61 6e 20 48 54 54 50 20 41 50 49 2e 20 59 6f | em..VyOS.provide.an.HTTP.API..Yo |
| 14e580 | 75 20 63 61 6e 20 75 73 65 20 69 74 20 74 6f 20 65 78 65 63 75 74 65 20 6f 70 2d 6d 6f 64 65 20 | u.can.use.it.to.execute.op-mode. |
| 14e5a0 | 63 6f 6d 6d 61 6e 64 73 2c 20 75 70 64 61 74 65 20 56 79 4f 53 2c 20 73 65 74 20 6f 72 20 64 65 | commands,.update.VyOS,.set.or.de |
| 14e5c0 | 6c 65 74 65 20 63 6f 6e 66 69 67 2e 00 56 79 4f 53 20 70 72 6f 76 69 64 65 73 20 44 4e 53 20 69 | lete.config..VyOS.provides.DNS.i |
| 14e5e0 | 6e 66 72 61 73 74 72 75 63 74 75 72 65 20 66 6f 72 20 73 6d 61 6c 6c 20 6e 65 74 77 6f 72 6b 73 | nfrastructure.for.small.networks |
| 14e600 | 2e 20 49 74 20 69 73 20 64 65 73 69 67 6e 65 64 20 74 6f 20 62 65 20 6c 69 67 68 74 77 65 69 67 | ..It.is.designed.to.be.lightweig |
| 14e620 | 68 74 20 61 6e 64 20 68 61 76 65 20 61 20 73 6d 61 6c 6c 20 66 6f 6f 74 70 72 69 6e 74 2c 20 73 | ht.and.have.a.small.footprint,.s |
| 14e640 | 75 69 74 61 62 6c 65 20 66 6f 72 20 72 65 73 6f 75 72 63 65 20 63 6f 6e 73 74 72 61 69 6e 65 64 | uitable.for.resource.constrained |
| 14e660 | 20 72 6f 75 74 65 72 73 20 61 6e 64 20 66 69 72 65 77 61 6c 6c 73 2e 20 46 6f 72 20 74 68 69 73 | .routers.and.firewalls..For.this |
| 14e680 | 20 77 65 20 75 74 69 6c 69 7a 65 20 50 6f 77 65 72 44 4e 53 20 72 65 63 75 72 73 6f 72 2e 00 56 | .we.utilize.PowerDNS.recursor..V |
| 14e6a0 | 79 4f 53 20 70 72 6f 76 69 64 65 73 20 48 69 67 68 20 41 76 61 69 6c 61 62 69 6c 69 74 79 20 73 | yOS.provides.High.Availability.s |
| 14e6c0 | 75 70 70 6f 72 74 20 66 6f 72 20 44 48 43 50 20 73 65 72 76 65 72 2e 20 44 48 43 50 20 48 69 67 | upport.for.DHCP.server..DHCP.Hig |
| 14e6e0 | 68 20 41 76 61 69 6c 61 62 69 6c 69 74 79 20 63 61 6e 20 61 63 74 20 69 6e 20 74 77 6f 20 64 69 | h.Availability.can.act.in.two.di |
| 14e700 | 66 66 65 72 65 6e 74 20 6d 6f 64 65 73 3a 00 56 79 4f 53 20 70 72 6f 76 69 64 65 73 20 61 20 63 | fferent.modes:.VyOS.provides.a.c |
| 14e720 | 6f 6d 6d 61 6e 64 20 74 6f 20 67 65 6e 65 72 61 74 65 20 61 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 | ommand.to.generate.a.connection. |
| 14e740 | 70 72 6f 66 69 6c 65 20 75 73 65 64 20 62 79 20 57 69 6e 64 6f 77 73 20 63 6c 69 65 6e 74 73 20 | profile.used.by.Windows.clients. |
| 14e760 | 74 68 61 74 20 77 69 6c 6c 20 63 6f 6e 6e 65 63 74 20 74 6f 20 74 68 65 20 22 72 77 22 20 63 6f | that.will.connect.to.the."rw".co |
| 14e780 | 6e 6e 65 63 74 69 6f 6e 20 6f 6e 20 6f 75 72 20 56 79 4f 53 20 73 65 72 76 65 72 2e 00 56 79 4f | nnection.on.our.VyOS.server..VyO |
| 14e7a0 | 53 20 70 72 6f 76 69 64 65 73 20 70 6f 6c 69 63 69 65 73 20 63 6f 6d 6d 61 6e 64 73 20 65 78 63 | S.provides.policies.commands.exc |
| 14e7c0 | 6c 75 73 69 76 65 6c 79 20 66 6f 72 20 42 47 50 20 74 72 61 66 66 69 63 20 66 69 6c 74 65 72 69 | lusively.for.BGP.traffic.filteri |
| 14e7e0 | 6e 67 20 61 6e 64 20 6d 61 6e 69 70 75 6c 61 74 69 6f 6e 3a 20 2a 2a 61 73 2d 70 61 74 68 2d 6c | ng.and.manipulation:.**as-path-l |
| 14e800 | 69 73 74 2a 2a 20 69 73 20 6f 6e 65 20 6f 66 20 74 68 65 6d 2e 00 56 79 4f 53 20 70 72 6f 76 69 | ist**.is.one.of.them..VyOS.provi |
| 14e820 | 64 65 73 20 70 6f 6c 69 63 69 65 73 20 63 6f 6d 6d 61 6e 64 73 20 65 78 63 6c 75 73 69 76 65 6c | des.policies.commands.exclusivel |
| 14e840 | 79 20 66 6f 72 20 42 47 50 20 74 72 61 66 66 69 63 20 66 69 6c 74 65 72 69 6e 67 20 61 6e 64 20 | y.for.BGP.traffic.filtering.and. |
| 14e860 | 6d 61 6e 69 70 75 6c 61 74 69 6f 6e 3a 20 2a 2a 63 6f 6d 6d 75 6e 69 74 79 2d 6c 69 73 74 2a 2a | manipulation:.**community-list** |
| 14e880 | 20 69 73 20 6f 6e 65 20 6f 66 20 74 68 65 6d 2e 00 56 79 4f 53 20 70 72 6f 76 69 64 65 73 20 70 | .is.one.of.them..VyOS.provides.p |
| 14e8a0 | 6f 6c 69 63 69 65 73 20 63 6f 6d 6d 61 6e 64 73 20 65 78 63 6c 75 73 69 76 65 6c 79 20 66 6f 72 | olicies.commands.exclusively.for |
| 14e8c0 | 20 42 47 50 20 74 72 61 66 66 69 63 20 66 69 6c 74 65 72 69 6e 67 20 61 6e 64 20 6d 61 6e 69 70 | .BGP.traffic.filtering.and.manip |
| 14e8e0 | 75 6c 61 74 69 6f 6e 3a 20 2a 2a 65 78 74 63 6f 6d 6d 75 6e 69 74 79 2d 6c 69 73 74 2a 2a 20 69 | ulation:.**extcommunity-list**.i |
| 14e900 | 73 20 6f 6e 65 20 6f 66 20 74 68 65 6d 2e 00 56 79 4f 53 20 70 72 6f 76 69 64 65 73 20 70 6f 6c | s.one.of.them..VyOS.provides.pol |
| 14e920 | 69 63 69 65 73 20 63 6f 6d 6d 61 6e 64 73 20 65 78 63 6c 75 73 69 76 65 6c 79 20 66 6f 72 20 42 | icies.commands.exclusively.for.B |
| 14e940 | 47 50 20 74 72 61 66 66 69 63 20 66 69 6c 74 65 72 69 6e 67 20 61 6e 64 20 6d 61 6e 69 70 75 6c | GP.traffic.filtering.and.manipul |
| 14e960 | 61 74 69 6f 6e 3a 20 2a 2a 6c 61 72 67 65 2d 63 6f 6d 6d 75 6e 69 74 79 2d 6c 69 73 74 2a 2a 20 | ation:.**large-community-list**. |
| 14e980 | 69 73 20 6f 6e 65 20 6f 66 20 74 68 65 6d 2e 00 56 79 4f 53 20 70 72 6f 76 69 64 65 73 20 73 6f | is.one.of.them..VyOS.provides.so |
| 14e9a0 | 6d 65 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 63 6f 6d 6d 61 6e 64 73 20 6f 6e 20 4f 70 65 6e 56 | me.operational.commands.on.OpenV |
| 14e9c0 | 50 4e 2e 00 56 79 4f 53 20 70 72 6f 76 69 64 65 73 20 73 75 70 70 6f 72 74 20 66 6f 72 20 44 48 | PN..VyOS.provides.support.for.DH |
| 14e9e0 | 43 50 20 66 61 69 6c 6f 76 65 72 2e 20 44 48 43 50 20 66 61 69 6c 6f 76 65 72 20 6d 75 73 74 20 | CP.failover..DHCP.failover.must. |
| 14ea00 | 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 65 78 70 6c 69 63 69 74 6c 79 20 62 79 20 74 68 65 20 | be.configured.explicitly.by.the. |
| 14ea20 | 66 6f 6c 6c 6f 77 69 6e 67 20 73 74 61 74 65 6d 65 6e 74 73 2e 00 56 79 4f 53 20 70 72 6f 76 69 | following.statements..VyOS.provi |
| 14ea40 | 64 65 73 20 74 68 69 73 20 75 74 69 6c 69 74 79 20 74 6f 20 69 6d 70 6f 72 74 20 65 78 69 73 74 | des.this.utility.to.import.exist |
| 14ea60 | 69 6e 67 20 63 65 72 74 69 66 69 63 61 74 65 73 2f 6b 65 79 20 66 69 6c 65 73 20 64 69 72 65 63 | ing.certificates/key.files.direc |
| 14ea80 | 74 6c 79 20 69 6e 74 6f 20 50 4b 49 20 66 72 6f 6d 20 6f 70 2d 6d 6f 64 65 2e 20 50 72 65 76 69 | tly.into.PKI.from.op-mode..Previ |
| 14eaa0 | 6f 75 73 20 74 6f 20 56 79 4f 53 20 31 2e 34 2c 20 63 65 72 74 69 66 69 63 61 74 65 73 20 77 65 | ous.to.VyOS.1.4,.certificates.we |
| 14eac0 | 72 65 20 73 74 6f 72 65 64 20 75 6e 64 65 72 20 74 68 65 20 2f 63 6f 6e 66 69 67 20 66 6f 6c 64 | re.stored.under.the./config.fold |
| 14eae0 | 65 72 20 70 65 72 6d 61 6e 65 6e 74 6c 79 20 61 6e 64 20 77 69 6c 6c 20 62 65 20 72 65 74 61 69 | er.permanently.and.will.be.retai |
| 14eb00 | 6e 65 64 20 70 6f 73 74 20 75 70 67 72 61 64 65 2e 00 56 79 4f 53 20 72 65 76 65 72 73 65 2d 70 | ned.post.upgrade..VyOS.reverse-p |
| 14eb20 | 72 6f 78 79 20 69 73 20 62 61 6c 61 6e 63 65 72 20 61 6e 64 20 70 72 6f 78 79 20 73 65 72 76 65 | roxy.is.balancer.and.proxy.serve |
| 14eb40 | 72 20 74 68 61 74 20 70 72 6f 76 69 64 65 73 20 68 69 67 68 2d 61 76 61 69 6c 61 62 69 6c 69 74 | r.that.provides.high-availabilit |
| 14eb60 | 79 2c 20 6c 6f 61 64 20 62 61 6c 61 6e 63 69 6e 67 20 61 6e 64 20 70 72 6f 78 79 69 6e 67 20 66 | y,.load.balancing.and.proxying.f |
| 14eb80 | 6f 72 20 54 43 50 20 28 6c 65 76 65 6c 20 34 29 20 61 6e 64 20 48 54 54 50 2d 62 61 73 65 64 20 | or.TCP.(level.4).and.HTTP-based. |
| 14eba0 | 28 6c 65 76 65 6c 20 37 29 20 61 70 70 6c 69 63 61 74 69 6f 6e 73 2e 00 56 79 4f 53 20 73 75 70 | (level.7).applications..VyOS.sup |
| 14ebc0 | 70 6f 72 74 73 20 3a 61 62 62 72 3a 60 50 49 4d 2d 53 4d 20 28 50 49 4d 20 53 70 61 72 73 65 20 | ports.:abbr:`PIM-SM.(PIM.Sparse. |
| 14ebe0 | 4d 6f 64 65 29 60 20 61 73 20 77 65 6c 6c 20 61 73 20 3a 61 62 62 72 3a 60 49 47 4d 50 20 28 49 | Mode)`.as.well.as.:abbr:`IGMP.(I |
| 14ec00 | 6e 74 65 72 6e 65 74 20 47 72 6f 75 70 20 4d 61 6e 61 67 65 6d 65 6e 74 20 50 72 6f 74 6f 63 6f | nternet.Group.Management.Protoco |
| 14ec20 | 6c 29 60 20 76 32 20 61 6e 64 20 76 33 00 56 79 4f 53 20 73 75 70 70 6f 72 74 73 20 62 6f 74 68 | l)`.v2.and.v3.VyOS.supports.both |
| 14ec40 | 20 49 47 4d 50 20 76 65 72 73 69 6f 6e 20 32 20 61 6e 64 20 76 65 72 73 69 6f 6e 20 33 20 28 77 | .IGMP.version.2.and.version.3.(w |
| 14ec60 | 68 69 63 68 20 61 6c 6c 6f 77 73 20 73 6f 75 72 63 65 2d 73 70 65 63 69 66 69 63 20 6d 75 6c 74 | hich.allows.source-specific.mult |
| 14ec80 | 69 63 61 73 74 29 2e 00 56 79 4f 53 20 73 75 70 70 6f 72 74 73 20 62 6f 74 68 20 4d 4c 44 20 76 | icast)..VyOS.supports.both.MLD.v |
| 14eca0 | 65 72 73 69 6f 6e 20 31 20 61 6e 64 20 76 65 72 73 69 6f 6e 20 32 20 28 77 68 69 63 68 20 61 6c | ersion.1.and.version.2.(which.al |
| 14ecc0 | 6c 6f 77 73 20 73 6f 75 72 63 65 2d 73 70 65 63 69 66 69 63 20 6d 75 6c 74 69 63 61 73 74 29 2e | lows.source-specific.multicast). |
| 14ece0 | 00 56 79 4f 53 20 73 75 70 70 6f 72 74 73 20 66 6c 6f 77 2d 61 63 63 6f 75 6e 74 69 6e 67 20 66 | .VyOS.supports.flow-accounting.f |
| 14ed00 | 6f 72 20 62 6f 74 68 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 74 72 61 66 66 69 63 2e 20 54 | or.both.IPv4.and.IPv6.traffic..T |
| 14ed20 | 68 65 20 73 79 73 74 65 6d 20 61 63 74 73 20 61 73 20 61 20 66 6c 6f 77 20 65 78 70 6f 72 74 65 | he.system.acts.as.a.flow.exporte |
| 14ed40 | 72 2c 20 61 6e 64 20 79 6f 75 20 61 72 65 20 66 72 65 65 20 74 6f 20 75 73 65 20 69 74 20 77 69 | r,.and.you.are.free.to.use.it.wi |
| 14ed60 | 74 68 20 61 6e 79 20 63 6f 6d 70 61 74 69 62 6c 65 20 63 6f 6c 6c 65 63 74 6f 72 2e 00 56 79 4f | th.any.compatible.collector..VyO |
| 14ed80 | 53 20 73 75 70 70 6f 72 74 73 20 6d 75 6c 74 69 2d 66 61 63 74 6f 72 20 61 75 74 68 65 6e 74 69 | S.supports.multi-factor.authenti |
| 14eda0 | 63 61 74 69 6f 6e 20 28 4d 46 41 29 20 6f 72 20 74 77 6f 2d 66 61 63 74 6f 72 20 61 75 74 68 65 | cation.(MFA).or.two-factor.authe |
| 14edc0 | 6e 74 69 63 61 74 69 6f 6e 20 75 73 69 6e 67 20 54 69 6d 65 2d 62 61 73 65 64 20 4f 6e 65 2d 54 | ntication.using.Time-based.One-T |
| 14ede0 | 69 6d 65 20 50 61 73 73 77 6f 72 64 20 28 54 4f 54 50 29 2e 20 43 6f 6d 70 61 74 69 62 6c 65 20 | ime.Password.(TOTP)..Compatible. |
| 14ee00 | 77 69 74 68 20 47 6f 6f 67 6c 65 20 41 75 74 68 65 6e 74 69 63 61 74 6f 72 20 73 6f 66 74 77 61 | with.Google.Authenticator.softwa |
| 14ee20 | 72 65 20 74 6f 6b 65 6e 2c 20 6f 74 68 65 72 20 73 6f 66 74 77 61 72 65 20 74 6f 6b 65 6e 73 2e | re.token,.other.software.tokens. |
| 14ee40 | 00 56 79 4f 53 20 73 75 70 70 6f 72 74 73 20 6d 75 6c 74 69 70 6c 65 20 49 4b 45 76 32 20 72 65 | .VyOS.supports.multiple.IKEv2.re |
| 14ee60 | 6d 6f 74 65 2d 61 63 63 65 73 73 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2e 20 45 76 65 72 79 20 63 | mote-access.connections..Every.c |
| 14ee80 | 6f 6e 6e 65 63 74 69 6f 6e 20 63 61 6e 20 68 61 76 65 20 69 74 73 20 64 65 64 69 63 61 74 65 64 | onnection.can.have.its.dedicated |
| 14eea0 | 20 49 4b 45 2f 45 53 50 20 63 69 70 68 65 72 73 2c 20 63 65 72 74 69 66 69 63 61 74 65 73 20 6f | .IKE/ESP.ciphers,.certificates.o |
| 14eec0 | 72 20 6c 6f 63 61 6c 20 6c 69 73 74 65 6e 20 61 64 64 72 65 73 73 20 66 6f 72 20 65 2e 67 2e 20 | r.local.listen.address.for.e.g.. |
| 14eee0 | 69 6e 62 6f 75 6e 64 20 6c 6f 61 64 20 62 61 6c 61 6e 63 69 6e 67 2e 00 56 79 4f 53 20 73 75 70 | inbound.load.balancing..VyOS.sup |
| 14ef00 | 70 6f 72 74 73 20 6d 75 6c 74 69 70 6c 65 20 49 4b 45 76 32 20 72 65 6d 6f 74 65 2d 61 63 63 65 | ports.multiple.IKEv2.remote-acce |
| 14ef20 | 73 73 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2e 20 45 76 65 72 79 20 63 6f 6e 6e 65 63 74 69 6f 6e | ss.connections..Every.connection |
| 14ef40 | 20 63 61 6e 20 68 61 76 65 20 69 74 73 20 6f 77 6e 20 64 65 64 69 63 61 74 65 64 20 49 4b 45 2f | .can.have.its.own.dedicated.IKE/ |
| 14ef60 | 45 53 50 20 63 69 70 68 65 72 73 2c 20 63 65 72 74 69 66 69 63 61 74 65 73 20 6f 72 20 6c 6f 63 | ESP.ciphers,.certificates.or.loc |
| 14ef80 | 61 6c 20 6c 69 73 74 65 6e 20 61 64 64 72 65 73 73 20 66 6f 72 20 65 2e 67 2e 20 69 6e 62 6f 75 | al.listen.address.for.e.g..inbou |
| 14efa0 | 6e 64 20 6c 6f 61 64 20 62 61 6c 61 6e 63 69 6e 67 2e 00 56 79 4f 53 20 73 75 70 70 6f 72 74 73 | nd.load.balancing..VyOS.supports |
| 14efc0 | 20 6f 6e 6c 69 6e 65 20 63 68 65 63 6b 69 6e 67 20 66 6f 72 20 75 70 64 61 74 65 73 00 56 79 4f | .online.checking.for.updates.VyO |
| 14efe0 | 53 20 73 75 70 70 6f 72 74 73 20 73 46 6c 6f 77 20 61 63 63 6f 75 6e 74 69 6e 67 20 66 6f 72 20 | S.supports.sFlow.accounting.for. |
| 14f000 | 62 6f 74 68 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 74 72 61 66 66 69 63 2e 20 54 68 65 20 | both.IPv4.and.IPv6.traffic..The. |
| 14f020 | 73 79 73 74 65 6d 20 61 63 74 73 20 61 73 20 61 20 66 6c 6f 77 20 65 78 70 6f 72 74 65 72 2c 20 | system.acts.as.a.flow.exporter,. |
| 14f040 | 61 6e 64 20 79 6f 75 20 61 72 65 20 66 72 65 65 20 74 6f 20 75 73 65 20 69 74 20 77 69 74 68 20 | and.you.are.free.to.use.it.with. |
| 14f060 | 61 6e 79 20 63 6f 6d 70 61 74 69 62 6c 65 20 63 6f 6c 6c 65 63 74 6f 72 2e 00 56 79 4f 53 20 73 | any.compatible.collector..VyOS.s |
| 14f080 | 75 70 70 6f 72 74 73 20 73 65 74 74 69 6e 67 20 74 69 6d 65 6f 75 74 73 20 66 6f 72 20 63 6f 6e | upports.setting.timeouts.for.con |
| 14f0a0 | 6e 65 63 74 69 6f 6e 73 20 61 63 63 6f 72 64 69 6e 67 20 74 6f 20 74 68 65 20 63 6f 6e 6e 65 63 | nections.according.to.the.connec |
| 14f0c0 | 74 69 6f 6e 20 74 79 70 65 2e 20 59 6f 75 20 63 61 6e 20 73 65 74 20 74 69 6d 65 6f 75 74 20 76 | tion.type..You.can.set.timeout.v |
| 14f0e0 | 61 6c 75 65 73 20 66 6f 72 20 67 65 6e 65 72 69 63 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2c 20 66 | alues.for.generic.connections,.f |
| 14f100 | 6f 72 20 49 43 4d 50 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2c 20 55 44 50 20 63 6f 6e 6e 65 63 74 | or.ICMP.connections,.UDP.connect |
| 14f120 | 69 6f 6e 73 2c 20 6f 72 20 66 6f 72 20 54 43 50 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 69 6e 20 | ions,.or.for.TCP.connections.in. |
| 14f140 | 61 20 6e 75 6d 62 65 72 20 6f 66 20 64 69 66 66 65 72 65 6e 74 20 73 74 61 74 65 73 2e 00 56 79 | a.number.of.different.states..Vy |
| 14f160 | 4f 53 20 73 75 70 70 6f 72 74 73 20 73 65 74 74 69 6e 67 20 75 70 20 50 50 50 6f 45 20 69 6e 20 | OS.supports.setting.up.PPPoE.in. |
| 14f180 | 74 77 6f 20 64 69 66 66 65 72 65 6e 74 20 77 61 79 73 20 74 6f 20 61 20 50 50 50 6f 45 20 69 6e | two.different.ways.to.a.PPPoE.in |
| 14f1a0 | 74 65 72 6e 65 74 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 20 54 68 69 73 20 69 73 20 62 65 63 61 75 | ternet.connection..This.is.becau |
| 14f1c0 | 73 65 20 6d 6f 73 74 20 49 53 50 73 20 70 72 6f 76 69 64 65 20 61 20 6d 6f 64 65 6d 20 74 68 61 | se.most.ISPs.provide.a.modem.tha |
| 14f1e0 | 74 20 69 73 20 61 6c 73 6f 20 61 20 77 69 72 65 6c 65 73 73 20 72 6f 75 74 65 72 2e 00 56 79 4f | t.is.also.a.wireless.router..VyO |
| 14f200 | 53 20 75 73 65 73 20 49 53 43 20 44 48 43 50 20 73 65 72 76 65 72 20 66 6f 72 20 62 6f 74 68 20 | S.uses.ISC.DHCP.server.for.both. |
| 14f220 | 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 61 64 64 72 65 73 73 20 61 73 73 69 67 6e 6d 65 6e 74 | IPv4.and.IPv6.address.assignment |
| 14f240 | 2e 00 56 79 4f 53 20 75 73 65 73 20 4b 65 61 20 44 48 43 50 20 73 65 72 76 65 72 20 66 6f 72 20 | ..VyOS.uses.Kea.DHCP.server.for. |
| 14f260 | 62 6f 74 68 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 61 64 64 72 65 73 73 20 61 73 73 69 67 | both.IPv4.and.IPv6.address.assig |
| 14f280 | 6e 6d 65 6e 74 2e 00 56 79 4f 53 20 75 73 65 73 20 5b 46 52 52 6f 75 74 69 6e 67 5d 28 68 74 74 | nment..VyOS.uses.[FRRouting](htt |
| 14f2a0 | 70 73 3a 2f 2f 66 72 72 6f 75 74 69 6e 67 2e 6f 72 67 2f 29 20 61 73 20 74 68 65 20 63 6f 6e 74 | ps://frrouting.org/).as.the.cont |
| 14f2c0 | 72 6f 6c 20 70 6c 61 6e 65 20 66 6f 72 20 64 79 6e 61 6d 69 63 20 61 6e 64 20 73 74 61 74 69 63 | rol.plane.for.dynamic.and.static |
| 14f2e0 | 20 72 6f 75 74 69 6e 67 2e 20 54 68 65 20 72 6f 75 74 69 6e 67 20 64 61 65 6d 6f 6e 20 62 65 68 | .routing..The.routing.daemon.beh |
| 14f300 | 61 76 69 6f 72 20 63 61 6e 20 62 65 20 61 64 6a 75 73 74 65 64 20 64 75 72 69 6e 67 20 72 75 6e | avior.can.be.adjusted.during.run |
| 14f320 | 74 69 6d 65 2c 20 62 75 74 20 72 65 71 75 69 72 65 20 65 69 74 68 65 72 20 61 20 72 65 73 74 61 | time,.but.require.either.a.resta |
| 14f340 | 72 74 20 6f 66 20 74 68 65 20 72 6f 75 74 69 6e 67 20 64 61 65 6d 6f 6e 2c 20 6f 72 20 61 20 72 | rt.of.the.routing.daemon,.or.a.r |
| 14f360 | 65 62 6f 6f 74 20 6f 66 20 74 68 65 20 73 79 73 74 65 6d 2e 00 56 79 4f 53 20 75 73 65 73 20 74 | eboot.of.the.system..VyOS.uses.t |
| 14f380 | 68 65 20 60 69 6e 74 65 72 66 61 63 65 73 20 77 77 61 6e 60 20 73 75 62 73 79 73 74 65 6d 20 66 | he.`interfaces.wwan`.subsystem.f |
| 14f3a0 | 6f 72 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 56 79 4f 53 20 75 73 65 73 20 74 68 65 20 | or.configuration..VyOS.uses.the. |
| 14f3c0 | 60 6d 69 72 72 6f 72 60 20 6f 70 74 69 6f 6e 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 70 6f 72 | `mirror`.option.to.configure.por |
| 14f3e0 | 74 20 6d 69 72 72 6f 72 69 6e 67 2e 20 54 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 | t.mirroring..The.configuration.i |
| 14f400 | 73 20 64 69 76 69 64 65 64 20 69 6e 74 6f 20 32 20 64 69 66 66 65 72 65 6e 74 20 64 69 72 65 63 | s.divided.into.2.different.direc |
| 14f420 | 74 69 6f 6e 73 2e 20 44 65 73 74 69 6e 61 74 69 6f 6e 20 70 6f 72 74 73 20 73 68 6f 75 6c 64 20 | tions..Destination.ports.should. |
| 14f440 | 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 66 6f 72 20 64 69 66 66 65 72 65 6e 74 20 74 72 61 66 | be.configured.for.different.traf |
| 14f460 | 66 69 63 20 64 69 72 65 63 74 69 6f 6e 73 2e 00 56 79 4f 53 20 75 74 69 6c 69 7a 65 73 20 60 61 | fic.directions..VyOS.utilizes.`a |
| 14f480 | 63 63 65 6c 2d 70 70 70 60 5f 20 74 6f 20 70 72 6f 76 69 64 65 20 3a 61 62 62 72 3a 60 49 50 6f | ccel-ppp`_.to.provide.:abbr:`IPo |
| 14f4a0 | 45 20 28 49 6e 74 65 72 6e 65 74 20 50 72 6f 74 6f 63 6f 6c 20 6f 76 65 72 20 45 74 68 65 72 6e | E.(Internet.Protocol.over.Ethern |
| 14f4c0 | 65 74 29 60 20 73 65 72 76 65 72 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 2e 20 49 74 20 63 61 | et)`.server.functionality..It.ca |
| 14f4e0 | 6e 20 62 65 20 75 73 65 64 20 77 69 74 68 20 6c 6f 63 61 6c 20 61 75 74 68 65 6e 74 69 63 61 74 | n.be.used.with.local.authenticat |
| 14f500 | 69 6f 6e 20 28 6d 61 63 2d 61 64 64 72 65 73 73 29 20 6f 72 20 61 20 63 6f 6e 6e 65 63 74 65 64 | ion.(mac-address).or.a.connected |
| 14f520 | 20 52 41 44 49 55 53 20 73 65 72 76 65 72 2e 00 56 79 4f 53 20 75 74 69 6c 69 7a 65 73 20 60 61 | .RADIUS.server..VyOS.utilizes.`a |
| 14f540 | 63 63 65 6c 2d 70 70 70 60 5f 20 74 6f 20 70 72 6f 76 69 64 65 20 50 50 50 6f 45 20 73 65 72 76 | ccel-ppp`_.to.provide.PPPoE.serv |
| 14f560 | 65 72 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 2e 20 49 74 20 63 61 6e 20 62 65 20 75 73 65 64 | er.functionality..It.can.be.used |
| 14f580 | 20 77 69 74 68 20 6c 6f 63 61 6c 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6f 72 20 61 20 | .with.local.authentication.or.a. |
| 14f5a0 | 63 6f 6e 6e 65 63 74 65 64 20 52 41 44 49 55 53 20 73 65 72 76 65 72 2e 00 56 79 4f 53 20 75 74 | connected.RADIUS.server..VyOS.ut |
| 14f5c0 | 69 6c 69 7a 65 73 20 61 63 63 65 6c 2d 70 70 70 5f 20 74 6f 20 70 72 6f 76 69 64 65 20 4c 32 54 | ilizes.accel-ppp_.to.provide.L2T |
| 14f5e0 | 50 20 73 65 72 76 65 72 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 2e 20 49 74 20 63 61 6e 20 62 | P.server.functionality..It.can.b |
| 14f600 | 65 20 75 73 65 64 20 77 69 74 68 20 6c 6f 63 61 6c 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e | e.used.with.local.authentication |
| 14f620 | 20 6f 72 20 61 20 63 6f 6e 6e 65 63 74 65 64 20 52 41 44 49 55 53 20 73 65 72 76 65 72 2e 00 56 | .or.a.connected.RADIUS.server..V |
| 14f640 | 79 4f 53 20 75 74 69 6c 69 7a 65 73 20 61 63 63 65 6c 2d 70 70 70 5f 20 74 6f 20 70 72 6f 76 69 | yOS.utilizes.accel-ppp_.to.provi |
| 14f660 | 64 65 20 53 53 54 50 20 73 65 72 76 65 72 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 2e 20 57 65 | de.SSTP.server.functionality..We |
| 14f680 | 20 73 75 70 70 6f 72 74 20 62 6f 74 68 20 6c 6f 63 61 6c 20 61 6e 64 20 52 41 44 49 55 53 20 61 | .support.both.local.and.RADIUS.a |
| 14f6a0 | 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2e 00 57 41 4e 20 4c 6f 61 64 20 42 61 6c 61 63 69 6e 67 | uthentication..WAN.Load.Balacing |
| 14f6c0 | 20 73 68 6f 75 6c 64 20 6e 6f 74 20 62 65 20 75 73 65 64 20 77 68 65 6e 20 64 79 6e 61 6d 69 63 | .should.not.be.used.when.dynamic |
| 14f6e0 | 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 20 69 73 20 75 73 65 64 2f 6e 65 65 64 65 64 | .routing.protocol.is.used/needed |
| 14f700 | 2e 20 54 68 69 73 20 66 65 61 74 75 72 65 20 63 72 65 61 74 65 73 20 63 75 73 74 6f 6d 69 7a 65 | ..This.feature.creates.customize |
| 14f720 | 64 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 73 20 61 6e 64 20 66 69 72 65 77 61 6c 6c 20 72 75 | d.routing.tables.and.firewall.ru |
| 14f740 | 6c 65 73 2c 20 74 68 61 74 20 6d 61 6b 65 73 20 69 74 20 69 6e 63 6f 6d 70 61 74 69 62 6c 65 20 | les,.that.makes.it.incompatible. |
| 14f760 | 74 6f 20 75 73 65 20 77 69 74 68 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 73 2e 00 57 | to.use.with.routing.protocols..W |
| 14f780 | 41 4e 20 69 6e 74 65 72 66 61 63 65 20 6f 6e 20 60 65 74 68 31 60 00 57 41 4e 20 6c 6f 61 64 20 | AN.interface.on.`eth1`.WAN.load. |
| 14f7a0 | 62 61 6c 61 6e 63 69 6e 67 00 57 4c 41 4e 2f 57 49 46 49 20 2d 20 57 69 72 65 6c 65 73 73 20 4c | balancing.WLAN/WIFI.-.Wireless.L |
| 14f7c0 | 41 4e 00 57 4d 4d 2d 50 53 20 55 6e 73 63 68 65 64 75 6c 65 64 20 41 75 74 6f 6d 61 74 69 63 20 | AN.WMM-PS.Unscheduled.Automatic. |
| 14f7e0 | 50 6f 77 65 72 20 53 61 76 65 20 44 65 6c 69 76 65 72 79 20 5b 55 2d 41 50 53 44 5d 00 57 50 41 | Power.Save.Delivery.[U-APSD].WPA |
| 14f800 | 20 70 61 73 73 70 68 72 61 73 65 20 60 60 31 32 33 34 35 36 37 38 60 60 00 57 50 41 20 70 61 73 | .passphrase.``12345678``.WPA.pas |
| 14f820 | 73 70 68 72 61 73 65 20 60 60 73 75 70 65 72 2d 64 6f 6f 70 65 72 2d 73 65 63 75 72 65 2d 70 61 | sphrase.``super-dooper-secure-pa |
| 14f840 | 73 73 70 68 72 61 73 65 60 60 00 57 57 41 4e 20 2d 20 57 69 72 65 6c 65 73 73 20 57 69 64 65 2d | ssphrase``.WWAN.-.Wireless.Wide- |
| 14f860 | 41 72 65 61 2d 4e 65 74 77 6f 72 6b 00 57 61 72 6e 69 6e 67 00 57 61 72 6e 69 6e 67 20 63 6f 6e | Area-Network.Warning.Warning.con |
| 14f880 | 64 69 74 69 6f 6e 73 00 57 65 20 61 73 73 75 6d 65 20 74 68 61 74 20 74 68 65 20 4c 45 46 54 20 | ditions.We.assume.that.the.LEFT. |
| 14f8a0 | 72 6f 75 74 65 72 20 68 61 73 20 73 74 61 74 69 63 20 31 39 32 2e 30 2e 32 2e 31 30 20 61 64 64 | router.has.static.192.0.2.10.add |
| 14f8c0 | 72 65 73 73 20 6f 6e 20 65 74 68 30 2c 20 61 6e 64 20 74 68 65 20 52 49 47 48 54 20 72 6f 75 74 | ress.on.eth0,.and.the.RIGHT.rout |
| 14f8e0 | 65 72 20 68 61 73 20 61 20 64 79 6e 61 6d 69 63 20 61 64 64 72 65 73 73 20 6f 6e 20 65 74 68 30 | er.has.a.dynamic.address.on.eth0 |
| 14f900 | 2e 00 57 65 20 63 61 6e 20 61 6c 73 6f 20 63 72 65 61 74 65 20 74 68 65 20 63 65 72 74 69 66 69 | ..We.can.also.create.the.certifi |
| 14f920 | 63 61 74 65 73 20 75 73 69 6e 67 20 43 65 72 62 6f 72 74 20 77 68 69 63 68 20 69 73 20 61 6e 20 | cates.using.Cerbort.which.is.an. |
| 14f940 | 65 61 73 79 2d 74 6f 2d 75 73 65 20 63 6c 69 65 6e 74 20 74 68 61 74 20 66 65 74 63 68 65 73 20 | easy-to-use.client.that.fetches. |
| 14f960 | 61 20 63 65 72 74 69 66 69 63 61 74 65 20 66 72 6f 6d 20 4c 65 74 27 73 20 45 6e 63 72 79 70 74 | a.certificate.from.Let's.Encrypt |
| 14f980 | 20 61 6e 20 6f 70 65 6e 20 63 65 72 74 69 66 69 63 61 74 65 20 61 75 74 68 6f 72 69 74 79 20 6c | .an.open.certificate.authority.l |
| 14f9a0 | 61 75 6e 63 68 65 64 20 62 79 20 74 68 65 20 45 46 46 2c 20 4d 6f 7a 69 6c 6c 61 2c 20 61 6e 64 | aunched.by.the.EFF,.Mozilla,.and |
| 14f9c0 | 20 6f 74 68 65 72 73 20 61 6e 64 20 64 65 70 6c 6f 79 73 20 69 74 20 74 6f 20 61 20 77 65 62 20 | .others.and.deploys.it.to.a.web. |
| 14f9e0 | 73 65 72 76 65 72 2e 00 57 65 20 63 61 6e 20 61 6c 73 6f 20 63 72 65 61 74 65 20 74 68 65 20 63 | server..We.can.also.create.the.c |
| 14fa00 | 65 72 74 69 66 69 63 61 74 65 73 20 75 73 69 6e 67 20 43 65 72 74 62 6f 74 20 77 68 69 63 68 20 | ertificates.using.Certbot.which. |
| 14fa20 | 69 73 20 61 6e 20 65 61 73 79 2d 74 6f 2d 75 73 65 20 63 6c 69 65 6e 74 20 74 68 61 74 20 66 65 | is.an.easy-to-use.client.that.fe |
| 14fa40 | 74 63 68 65 73 20 61 20 63 65 72 74 69 66 69 63 61 74 65 20 66 72 6f 6d 20 4c 65 74 27 73 20 45 | tches.a.certificate.from.Let's.E |
| 14fa60 | 6e 63 72 79 70 74 20 61 6e 20 6f 70 65 6e 20 63 65 72 74 69 66 69 63 61 74 65 20 61 75 74 68 6f | ncrypt.an.open.certificate.autho |
| 14fa80 | 72 69 74 79 20 6c 61 75 6e 63 68 65 64 20 62 79 20 74 68 65 20 45 46 46 2c 20 4d 6f 7a 69 6c 6c | rity.launched.by.the.EFF,.Mozill |
| 14faa0 | 61 2c 20 61 6e 64 20 6f 74 68 65 72 73 20 61 6e 64 20 64 65 70 6c 6f 79 73 20 69 74 20 74 6f 20 | a,.and.others.and.deploys.it.to. |
| 14fac0 | 61 20 77 65 62 20 73 65 72 76 65 72 2e 00 57 65 20 63 61 6e 20 62 75 69 6c 64 20 72 6f 75 74 65 | a.web.server..We.can.build.route |
| 14fae0 | 2d 6d 61 70 73 20 66 6f 72 20 69 6d 70 6f 72 74 20 62 61 73 65 64 20 6f 6e 20 74 68 65 73 65 20 | -maps.for.import.based.on.these. |
| 14fb00 | 73 74 61 74 65 73 2e 20 48 65 72 65 20 69 73 20 61 20 73 69 6d 70 6c 65 20 52 50 4b 49 20 63 6f | states..Here.is.a.simple.RPKI.co |
| 14fb20 | 6e 66 69 67 75 72 61 74 69 6f 6e 2c 20 77 68 65 72 65 20 60 72 6f 75 74 69 6e 61 74 6f 72 60 20 | nfiguration,.where.`routinator`. |
| 14fb40 | 69 73 20 74 68 65 20 52 50 4b 49 2d 76 61 6c 69 64 61 74 69 6e 67 20 22 63 61 63 68 65 22 20 73 | is.the.RPKI-validating."cache".s |
| 14fb60 | 65 72 76 65 72 20 77 69 74 68 20 69 70 20 60 31 39 32 2e 30 2e 32 2e 31 60 3a 00 57 65 20 63 61 | erver.with.ip.`192.0.2.1`:.We.ca |
| 14fb80 | 6e 27 74 20 73 75 70 70 6f 72 74 20 61 6c 6c 20 64 69 73 70 6c 61 79 73 20 66 72 6f 6d 20 74 68 | n't.support.all.displays.from.th |
| 14fba0 | 65 20 62 65 67 69 6e 6e 69 6e 67 2e 20 49 66 20 79 6f 75 72 20 64 69 73 70 6c 61 79 20 74 79 70 | e.beginning..If.your.display.typ |
| 14fbc0 | 65 20 69 73 20 6d 69 73 73 69 6e 67 2c 20 70 6c 65 61 73 65 20 63 72 65 61 74 65 20 61 20 66 65 | e.is.missing,.please.create.a.fe |
| 14fbe0 | 61 74 75 72 65 20 72 65 71 75 65 73 74 20 76 69 61 20 50 68 61 62 72 69 63 61 74 6f 72 5f 2e 00 | ature.request.via.Phabricator_.. |
| 14fc00 | 57 65 20 63 6f 6e 66 69 67 75 72 65 20 61 20 6e 65 77 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 6e 61 | We.configure.a.new.connection.na |
| 14fc20 | 6d 65 64 20 60 60 72 77 60 60 20 66 6f 72 20 72 6f 61 64 2d 77 61 72 72 69 6f 72 2c 20 74 68 61 | med.``rw``.for.road-warrior,.tha |
| 14fc40 | 74 20 69 64 65 6e 74 69 66 69 65 73 20 69 74 73 65 6c 66 20 61 73 20 60 60 31 39 32 2e 30 2e 32 | t.identifies.itself.as.``192.0.2 |
| 14fc60 | 2e 31 60 60 20 74 6f 20 74 68 65 20 63 6c 69 65 6e 74 73 20 61 6e 64 20 75 73 65 73 20 74 68 65 | .1``.to.the.clients.and.uses.the |
| 14fc80 | 20 60 60 76 79 6f 73 60 60 20 63 65 72 74 69 66 69 63 61 74 65 20 73 69 67 6e 65 64 20 62 79 20 | .``vyos``.certificate.signed.by. |
| 14fca0 | 74 68 65 20 60 43 41 63 65 72 74 5f 43 6c 61 73 73 33 5f 52 6f 6f 74 60 60 20 69 6e 74 65 72 6d | the.`CAcert_Class3_Root``.interm |
| 14fcc0 | 65 64 69 61 74 65 20 43 41 2e 20 57 65 20 73 65 6c 65 63 74 20 6f 75 72 20 70 72 65 76 69 6f 75 | ediate.CA..We.select.our.previou |
| 14fce0 | 73 6c 79 20 73 70 65 63 69 66 69 65 64 20 49 4b 45 2f 45 53 50 20 67 72 6f 75 70 73 20 61 6e 64 | sly.specified.IKE/ESP.groups.and |
| 14fd00 | 20 61 6c 73 6f 20 6c 69 6e 6b 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 70 6f 6f 6c 20 74 | .also.link.the.IP.address.pool.t |
| 14fd20 | 6f 20 64 72 61 77 20 61 64 64 72 65 73 73 65 73 20 66 72 6f 6d 2e 00 57 65 20 63 6f 75 6c 64 20 | o.draw.addresses.from..We.could. |
| 14fd40 | 65 78 70 61 6e 64 20 6f 6e 20 74 68 69 73 20 61 6e 64 20 61 6c 73 6f 20 64 65 6e 79 20 6c 69 6e | expand.on.this.and.also.deny.lin |
| 14fd60 | 6b 20 6c 6f 63 61 6c 20 61 6e 64 20 6d 75 6c 74 69 63 61 73 74 20 69 6e 20 74 68 65 20 72 75 6c | k.local.and.multicast.in.the.rul |
| 14fd80 | 65 20 32 30 20 61 63 74 69 6f 6e 20 64 65 6e 79 2e 00 57 65 20 64 6f 20 6e 6f 74 20 68 61 76 65 | e.20.action.deny..We.do.not.have |
| 14fda0 | 20 43 4c 49 20 6e 6f 64 65 73 20 66 6f 72 20 65 76 65 72 79 20 73 69 6e 67 6c 65 20 4f 70 65 6e | .CLI.nodes.for.every.single.Open |
| 14fdc0 | 56 50 4e 20 6f 70 74 69 6f 6e 2e 20 49 66 20 61 6e 20 6f 70 74 69 6f 6e 20 69 73 20 6d 69 73 73 | VPN.option..If.an.option.is.miss |
| 14fde0 | 69 6e 67 2c 20 61 20 66 65 61 74 75 72 65 20 72 65 71 75 65 73 74 20 73 68 6f 75 6c 64 20 62 65 | ing,.a.feature.request.should.be |
| 14fe00 | 20 6f 70 65 6e 65 64 20 61 74 20 50 68 61 62 72 69 63 61 74 6f 72 5f 20 73 6f 20 61 6c 6c 20 75 | .opened.at.Phabricator_.so.all.u |
| 14fe20 | 73 65 72 73 20 63 61 6e 20 62 65 6e 65 66 69 74 20 66 72 6f 6d 20 69 74 20 28 73 65 65 20 3a 72 | sers.can.benefit.from.it.(see.:r |
| 14fe40 | 65 66 3a 60 69 73 73 75 65 73 5f 66 65 61 74 75 72 65 73 60 29 2e 00 57 65 20 64 6f 6e 27 74 20 | ef:`issues_features`)..We.don't. |
| 14fe60 | 72 65 63 6f 6d 65 6e 64 20 74 6f 20 75 73 65 20 61 72 67 75 6d 65 6e 74 73 2e 20 55 73 69 6e 67 | recomend.to.use.arguments..Using |
| 14fe80 | 20 65 6e 76 69 72 6f 6e 6d 65 6e 74 73 20 69 73 20 6d 6f 72 65 20 70 72 65 66 66 65 72 65 62 6c | .environments.is.more.prefferebl |
| 14fea0 | 65 2e 00 57 65 20 67 65 6e 65 72 61 74 65 20 61 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 70 72 6f 66 | e..We.generate.a.connection.prof |
| 14fec0 | 69 6c 65 20 75 73 65 64 20 62 79 20 57 69 6e 64 6f 77 73 20 63 6c 69 65 6e 74 73 20 74 68 61 74 | ile.used.by.Windows.clients.that |
| 14fee0 | 20 77 69 6c 6c 20 63 6f 6e 6e 65 63 74 20 74 6f 20 74 68 65 20 22 72 77 22 20 63 6f 6e 6e 65 63 | .will.connect.to.the."rw".connec |
| 14ff00 | 74 69 6f 6e 20 6f 6e 20 6f 75 72 20 56 79 4f 53 20 73 65 72 76 65 72 20 6f 6e 20 74 68 65 20 56 | tion.on.our.VyOS.server.on.the.V |
| 14ff20 | 50 4e 20 73 65 72 76 65 72 73 20 49 50 20 61 64 64 72 65 73 73 2f 66 71 64 6e 20 60 76 70 6e 2e | PN.servers.IP.address/fqdn.`vpn. |
| 14ff40 | 76 79 6f 73 2e 6e 65 74 60 2e 00 57 65 20 6c 69 73 74 65 6e 20 6f 6e 20 70 6f 72 74 20 35 31 38 | vyos.net`..We.listen.on.port.518 |
| 14ff60 | 32 30 00 57 65 20 6e 65 65 64 20 74 6f 20 67 65 6e 65 72 61 74 65 20 74 68 65 20 63 65 72 74 69 | 20.We.need.to.generate.the.certi |
| 14ff80 | 66 69 63 61 74 65 20 77 68 69 63 68 20 61 75 74 68 65 6e 74 69 63 61 74 65 73 20 75 73 65 72 73 | ficate.which.authenticates.users |
| 14ffa0 | 20 77 68 6f 20 61 74 74 65 6d 70 74 20 74 6f 20 61 63 63 65 73 73 20 74 68 65 20 6e 65 74 77 6f | .who.attempt.to.access.the.netwo |
| 14ffc0 | 72 6b 20 72 65 73 6f 75 72 63 65 20 74 68 72 6f 75 67 68 20 74 68 65 20 53 53 4c 20 56 50 4e 20 | rk.resource.through.the.SSL.VPN. |
| 14ffe0 | 74 75 6e 6e 65 6c 73 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 73 20 | tunnels..The.following.commands. |
| 150000 | 77 69 6c 6c 20 63 72 65 61 74 65 20 61 20 73 65 6c 66 20 73 69 67 6e 65 64 20 63 65 72 74 69 66 | will.create.a.self.signed.certif |
| 150020 | 69 63 61 74 65 73 20 61 6e 64 20 77 69 6c 6c 20 62 65 20 73 74 6f 72 65 64 20 69 6e 20 63 6f 6e | icates.and.will.be.stored.in.con |
| 150040 | 66 69 67 75 72 61 74 69 6f 6e 3a 00 57 65 20 6e 6f 77 20 75 74 69 6c 69 7a 65 20 60 74 75 6e 65 | figuration:.We.now.utilize.`tune |
| 150060 | 64 60 20 66 6f 72 20 64 79 6e 61 6d 69 63 20 72 65 73 6f 75 72 63 65 20 62 61 6c 61 6e 63 69 6e | d`.for.dynamic.resource.balancin |
| 150080 | 67 20 62 61 73 65 64 20 6f 6e 20 70 72 6f 66 69 6c 65 73 2e 00 57 65 20 6f 6e 6c 79 20 61 6c 6c | g.based.on.profiles..We.only.all |
| 1500a0 | 6f 77 20 74 68 65 20 31 39 32 2e 31 36 38 2e 32 2e 30 2f 32 34 20 73 75 62 6e 65 74 20 74 6f 20 | ow.the.192.168.2.0/24.subnet.to. |
| 1500c0 | 74 72 61 76 65 6c 20 6f 76 65 72 20 74 68 65 20 74 75 6e 6e 65 6c 00 57 65 20 6f 6e 6c 79 20 6e | travel.over.the.tunnel.We.only.n |
| 1500e0 | 65 65 64 20 61 20 73 69 6e 67 6c 65 20 73 74 65 70 20 66 6f 72 20 74 68 69 73 20 69 6e 74 65 72 | eed.a.single.step.for.this.inter |
| 150100 | 66 61 63 65 3a 00 57 65 20 72 6f 75 74 65 20 61 6c 6c 20 74 72 61 66 66 69 63 20 66 6f 72 20 74 | face:.We.route.all.traffic.for.t |
| 150120 | 68 65 20 31 39 32 2e 31 36 38 2e 32 2e 30 2f 32 34 20 6e 65 74 77 6f 72 6b 20 74 6f 20 69 6e 74 | he.192.168.2.0/24.network.to.int |
| 150140 | 65 72 66 61 63 65 20 60 77 67 30 31 60 00 57 65 20 75 73 65 20 61 20 76 6f 6e 74 61 69 6e 65 72 | erface.`wg01`.We.use.a.vontainer |
| 150160 | 20 70 72 6f 76 69 64 69 6e 67 20 74 68 65 20 54 41 43 41 43 53 20 73 65 72 76 65 20 72 69 6e 20 | .providing.the.TACACS.serve.rin. |
| 150180 | 74 68 69 73 20 65 78 61 6d 70 6c 65 2e 00 57 65 20 77 69 6c 6c 20 6f 6e 6c 79 20 61 63 63 65 70 | this.example..We.will.only.accep |
| 1501a0 | 74 20 74 72 61 66 66 69 63 20 63 6f 6d 69 6e 67 20 66 72 6f 6d 20 69 6e 74 65 72 66 61 63 65 20 | t.traffic.coming.from.interface. |
| 1501c0 | 65 74 68 30 2c 20 70 72 6f 74 6f 63 6f 6c 20 74 63 70 20 61 6e 64 20 64 65 73 74 69 6e 61 74 69 | eth0,.protocol.tcp.and.destinati |
| 1501e0 | 6f 6e 20 70 6f 72 74 20 31 31 32 32 2e 20 41 6c 6c 20 6f 74 68 65 72 20 74 72 61 66 66 69 63 20 | on.port.1122..All.other.traffic. |
| 150200 | 74 72 65 73 70 61 73 73 69 6e 67 20 74 68 65 20 72 6f 75 74 65 72 20 73 68 6f 75 6c 64 20 62 65 | trespassing.the.router.should.be |
| 150220 | 20 62 6c 6f 63 6b 65 64 2e 00 57 65 20 77 69 6c 6c 20 6f 6e 6c 79 20 61 63 63 65 70 74 20 74 72 | .blocked..We.will.only.accept.tr |
| 150240 | 61 66 66 69 63 20 63 6f 6d 6d 69 6e 67 20 66 72 6f 6d 20 69 6e 74 65 72 66 61 63 65 20 65 74 68 | affic.comming.from.interface.eth |
| 150260 | 30 2c 20 70 72 6f 74 6f 63 6f 6c 20 74 63 70 20 61 6e 64 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 | 0,.protocol.tcp.and.destination. |
| 150280 | 70 6f 72 74 20 31 31 32 32 2e 20 41 6c 6c 20 6f 74 68 65 72 20 74 72 61 66 66 69 63 20 74 72 61 | port.1122..All.other.traffic.tra |
| 1502a0 | 73 70 61 73 73 69 6e 67 20 74 68 65 20 72 6f 75 74 65 72 20 73 68 6f 75 6c 64 20 62 65 20 62 6c | spassing.the.router.should.be.bl |
| 1502c0 | 6f 63 6b 65 64 2e 00 57 65 27 6c 6c 20 63 6f 6e 66 69 67 75 72 65 20 4f 70 65 6e 56 50 4e 20 75 | ocked..We'll.configure.OpenVPN.u |
| 1502e0 | 73 69 6e 67 20 73 65 6c 66 2d 73 69 67 6e 65 64 20 63 65 72 74 69 66 69 63 61 74 65 73 2c 20 61 | sing.self-signed.certificates,.a |
| 150300 | 6e 64 20 74 68 65 6e 20 64 69 73 63 75 73 73 20 74 68 65 20 6c 65 67 61 63 79 20 70 72 65 2d 73 | nd.then.discuss.the.legacy.pre-s |
| 150320 | 68 61 72 65 64 20 6b 65 79 20 6d 6f 64 65 2e 00 57 65 27 6c 6c 20 75 73 65 20 74 68 65 20 49 4b | hared.key.mode..We'll.use.the.IK |
| 150340 | 45 20 61 6e 64 20 45 53 50 20 67 72 6f 75 70 73 20 63 72 65 61 74 65 64 20 61 62 6f 76 65 20 66 | E.and.ESP.groups.created.above.f |
| 150360 | 6f 72 20 74 68 69 73 20 56 50 4e 2e 20 42 65 63 61 75 73 65 20 77 65 20 6e 65 65 64 20 61 63 63 | or.this.VPN..Because.we.need.acc |
| 150380 | 65 73 73 20 74 6f 20 32 20 64 69 66 66 65 72 65 6e 74 20 73 75 62 6e 65 74 73 20 6f 6e 20 74 68 | ess.to.2.different.subnets.on.th |
| 1503a0 | 65 20 66 61 72 20 73 69 64 65 2c 20 77 65 20 77 69 6c 6c 20 6e 65 65 64 20 74 77 6f 20 64 69 66 | e.far.side,.we.will.need.two.dif |
| 1503c0 | 66 65 72 65 6e 74 20 74 75 6e 6e 65 6c 73 2e 20 49 66 20 79 6f 75 20 63 68 61 6e 67 65 64 20 74 | ferent.tunnels..If.you.changed.t |
| 1503e0 | 68 65 20 6e 61 6d 65 73 20 6f 66 20 74 68 65 20 45 53 50 20 67 72 6f 75 70 20 61 6e 64 20 49 4b | he.names.of.the.ESP.group.and.IK |
| 150400 | 45 20 67 72 6f 75 70 20 69 6e 20 74 68 65 20 70 72 65 76 69 6f 75 73 20 73 74 65 70 2c 20 6d 61 | E.group.in.the.previous.step,.ma |
| 150420 | 6b 65 20 73 75 72 65 20 79 6f 75 20 75 73 65 20 74 68 65 20 63 6f 72 72 65 63 74 20 6e 61 6d 65 | ke.sure.you.use.the.correct.name |
| 150440 | 73 20 68 65 72 65 20 74 6f 6f 2e 00 57 65 62 20 50 72 6f 78 79 20 41 75 74 6f 64 69 73 63 6f 76 | s.here.too..Web.Proxy.Autodiscov |
| 150460 | 65 72 79 20 28 57 50 41 44 29 20 55 52 4c 00 57 65 62 70 72 6f 78 79 00 57 65 62 73 65 72 76 65 | ery.(WPAD).URL.Webproxy.Webserve |
| 150480 | 72 20 73 68 6f 75 6c 64 20 6c 69 73 74 65 6e 20 6f 6e 20 73 70 65 63 69 66 69 65 64 20 70 6f 72 | r.should.listen.on.specified.por |
| 1504a0 | 74 2e 00 57 65 62 73 65 72 76 65 72 20 73 68 6f 75 6c 64 20 6f 6e 6c 79 20 6c 69 73 74 65 6e 20 | t..Webserver.should.only.listen. |
| 1504c0 | 6f 6e 20 73 70 65 63 69 66 69 65 64 20 49 50 20 61 64 64 72 65 73 73 00 57 68 65 6e 20 4c 44 50 | on.specified.IP.address.When.LDP |
| 1504e0 | 20 69 73 20 77 6f 72 6b 69 6e 67 2c 20 79 6f 75 20 77 69 6c 6c 20 62 65 20 61 62 6c 65 20 74 6f | .is.working,.you.will.be.able.to |
| 150500 | 20 73 65 65 20 6c 61 62 65 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 69 6e 20 74 68 65 20 6f 75 | .see.label.information.in.the.ou |
| 150520 | 74 63 6f 6d 65 20 6f 66 20 60 60 73 68 6f 77 20 69 70 20 72 6f 75 74 65 60 60 2e 20 42 65 73 69 | tcome.of.``show.ip.route``..Besi |
| 150540 | 64 65 73 20 74 68 61 74 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2c 20 74 68 65 72 65 20 61 72 65 20 | des.that.information,.there.are. |
| 150560 | 61 6c 73 6f 20 73 70 65 63 69 66 69 63 20 2a 73 68 6f 77 2a 20 63 6f 6d 6d 61 6e 64 73 20 66 6f | also.specific.*show*.commands.fo |
| 150580 | 72 20 4c 44 50 3a 00 57 68 65 6e 20 50 49 4d 20 72 65 63 65 69 76 65 73 20 61 20 72 65 67 69 73 | r.LDP:.When.PIM.receives.a.regis |
| 1505a0 | 74 65 72 20 70 61 63 6b 65 74 20 74 68 65 20 73 6f 75 72 63 65 20 6f 66 20 74 68 65 20 70 61 63 | ter.packet.the.source.of.the.pac |
| 1505c0 | 6b 65 74 20 77 69 6c 6c 20 62 65 20 63 6f 6d 70 61 72 65 64 20 74 6f 20 74 68 65 20 70 72 65 66 | ket.will.be.compared.to.the.pref |
| 1505e0 | 69 78 2d 6c 69 73 74 20 73 70 65 63 69 66 69 65 64 2c 20 61 6e 64 20 69 66 20 61 20 70 65 72 6d | ix-list.specified,.and.if.a.perm |
| 150600 | 69 74 20 69 73 20 72 65 63 65 69 76 65 64 20 6e 6f 72 6d 61 6c 20 70 72 6f 63 65 73 73 69 6e 67 | it.is.received.normal.processing |
| 150620 | 20 63 6f 6e 74 69 6e 75 65 73 2e 20 49 66 20 61 20 64 65 6e 79 20 69 73 20 72 65 74 75 72 6e 65 | .continues..If.a.deny.is.returne |
| 150640 | 64 20 66 6f 72 20 74 68 65 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 | d.for.the.source.address.of.the. |
| 150660 | 72 65 67 69 73 74 65 72 20 70 61 63 6b 65 74 20 61 20 72 65 67 69 73 74 65 72 20 73 74 6f 70 20 | register.packet.a.register.stop. |
| 150680 | 6d 65 73 73 61 67 65 20 69 73 20 73 65 6e 74 20 74 6f 20 74 68 65 20 73 6f 75 72 63 65 2e 00 57 | message.is.sent.to.the.source..W |
| 1506a0 | 68 65 6e 20 56 52 46 73 20 61 72 65 20 75 73 65 64 20 69 74 20 69 73 20 6e 6f 74 20 6f 6e 6c 79 | hen.VRFs.are.used.it.is.not.only |
| 1506c0 | 20 6d 61 6e 64 61 74 6f 72 79 20 74 6f 20 63 72 65 61 74 65 20 61 20 56 52 46 20 62 75 74 20 61 | .mandatory.to.create.a.VRF.but.a |
| 1506e0 | 6c 73 6f 20 74 68 65 20 56 52 46 20 69 74 73 65 6c 66 20 6e 65 65 64 73 20 74 6f 20 62 65 20 61 | lso.the.VRF.itself.needs.to.be.a |
| 150700 | 73 73 69 67 6e 65 64 20 74 6f 20 61 6e 20 69 6e 74 65 72 66 61 63 65 2e 00 57 68 65 6e 20 61 20 | ssigned.to.an.interface..When.a. |
| 150720 | 60 60 63 75 73 74 6f 6d 60 60 20 44 79 6e 44 4e 53 20 70 72 6f 76 69 64 65 72 20 69 73 20 75 73 | ``custom``.DynDNS.provider.is.us |
| 150740 | 65 64 20 74 68 65 20 60 3c 73 65 72 76 65 72 3e 60 20 77 68 65 72 65 20 75 70 64 61 74 65 20 72 | ed.the.`<server>`.where.update.r |
| 150760 | 65 71 75 65 73 74 73 20 61 72 65 20 62 65 69 6e 67 20 73 65 6e 74 20 74 6f 20 6d 75 73 74 20 62 | equests.are.being.sent.to.must.b |
| 150780 | 65 20 73 70 65 63 69 66 69 65 64 2e 00 57 68 65 6e 20 61 20 60 60 63 75 73 74 6f 6d 60 60 20 44 | e.specified..When.a.``custom``.D |
| 1507a0 | 79 6e 44 4e 53 20 70 72 6f 76 69 64 65 72 20 69 73 20 75 73 65 64 20 74 68 65 20 70 72 6f 74 6f | ynDNS.provider.is.used.the.proto |
| 1507c0 | 63 6f 6c 20 75 73 65 64 20 66 6f 72 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6e 67 20 74 6f 20 74 68 | col.used.for.communicating.to.th |
| 1507e0 | 65 20 70 72 6f 76 69 64 65 72 20 6d 75 73 74 20 62 65 20 73 70 65 63 69 66 69 65 64 20 75 6e 64 | e.provider.must.be.specified.und |
| 150800 | 65 72 20 60 3c 70 72 6f 74 6f 63 6f 6c 3e 60 2e 20 53 65 65 20 74 68 65 20 65 6d 62 65 64 64 65 | er.`<protocol>`..See.the.embedde |
| 150820 | 64 20 63 6f 6d 70 6c 65 74 69 6f 6e 20 68 65 6c 70 65 72 20 66 6f 72 20 61 76 61 69 6c 61 62 6c | d.completion.helper.for.availabl |
| 150840 | 65 20 70 72 6f 74 6f 63 6f 6c 73 2e 00 57 68 65 6e 20 61 20 60 60 63 75 73 74 6f 6d 60 60 20 44 | e.protocols..When.a.``custom``.D |
| 150860 | 79 6e 44 4e 53 20 70 72 6f 76 69 64 65 72 20 69 73 20 75 73 65 64 2c 20 74 68 65 20 70 72 6f 74 | ynDNS.provider.is.used,.the.prot |
| 150880 | 6f 63 6f 6c 20 75 73 65 64 20 66 6f 72 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6e 67 20 74 6f 20 74 | ocol.used.for.communicating.to.t |
| 1508a0 | 68 65 20 70 72 6f 76 69 64 65 72 20 6d 75 73 74 20 62 65 20 73 70 65 63 69 66 69 65 64 20 75 6e | he.provider.must.be.specified.un |
| 1508c0 | 64 65 72 20 60 3c 70 72 6f 74 6f 63 6f 6c 3e 60 2e 20 53 65 65 20 74 68 65 20 65 6d 62 65 64 64 | der.`<protocol>`..See.the.embedd |
| 1508e0 | 65 64 20 63 6f 6d 70 6c 65 74 69 6f 6e 20 68 65 6c 70 65 72 20 77 68 65 6e 20 65 6e 74 65 72 69 | ed.completion.helper.when.enteri |
| 150900 | 6e 67 20 61 62 6f 76 65 20 63 6f 6d 6d 61 6e 64 20 66 6f 72 20 61 76 61 69 6c 61 62 6c 65 20 70 | ng.above.command.for.available.p |
| 150920 | 72 6f 74 6f 63 6f 6c 73 2e 00 57 68 65 6e 20 61 20 66 61 69 6c 6f 76 65 72 20 6f 63 63 75 72 73 | rotocols..When.a.failover.occurs |
| 150940 | 20 69 6e 20 61 63 74 69 76 65 2d 62 61 63 6b 75 70 20 6d 6f 64 65 2c 20 62 6f 6e 64 69 6e 67 20 | .in.active-backup.mode,.bonding. |
| 150960 | 77 69 6c 6c 20 69 73 73 75 65 20 6f 6e 65 20 6f 72 20 6d 6f 72 65 20 67 72 61 74 75 69 74 6f 75 | will.issue.one.or.more.gratuitou |
| 150980 | 73 20 41 52 50 73 20 6f 6e 20 74 68 65 20 6e 65 77 6c 79 20 61 63 74 69 76 65 20 73 6c 61 76 65 | s.ARPs.on.the.newly.active.slave |
| 1509a0 | 2e 20 4f 6e 65 20 67 72 61 74 75 69 74 6f 75 73 20 41 52 50 20 69 73 20 69 73 73 75 65 64 20 66 | ..One.gratuitous.ARP.is.issued.f |
| 1509c0 | 6f 72 20 74 68 65 20 62 6f 6e 64 69 6e 67 20 6d 61 73 74 65 72 20 69 6e 74 65 72 66 61 63 65 20 | or.the.bonding.master.interface. |
| 1509e0 | 61 6e 64 20 65 61 63 68 20 56 4c 41 4e 20 69 6e 74 65 72 66 61 63 65 73 20 63 6f 6e 66 69 67 75 | and.each.VLAN.interfaces.configu |
| 150a00 | 72 65 64 20 61 62 6f 76 65 20 69 74 2c 20 70 72 6f 76 69 64 65 64 20 74 68 61 74 20 74 68 65 20 | red.above.it,.provided.that.the. |
| 150a20 | 69 6e 74 65 72 66 61 63 65 20 68 61 73 20 61 74 20 6c 65 61 73 74 20 6f 6e 65 20 49 50 20 61 64 | interface.has.at.least.one.IP.ad |
| 150a40 | 64 72 65 73 73 20 63 6f 6e 66 69 67 75 72 65 64 2e 20 47 72 61 74 75 69 74 6f 75 73 20 41 52 50 | dress.configured..Gratuitous.ARP |
| 150a60 | 73 20 69 73 73 75 65 64 20 66 6f 72 20 56 4c 41 4e 20 69 6e 74 65 72 66 61 63 65 73 20 61 72 65 | s.issued.for.VLAN.interfaces.are |
| 150a80 | 20 74 61 67 67 65 64 20 77 69 74 68 20 74 68 65 20 61 70 70 72 6f 70 72 69 61 74 65 20 56 4c 41 | .tagged.with.the.appropriate.VLA |
| 150aa0 | 4e 20 69 64 2e 00 57 68 65 6e 20 61 20 6c 69 6e 6b 20 69 73 20 72 65 63 6f 6e 6e 65 63 74 65 64 | N.id..When.a.link.is.reconnected |
| 150ac0 | 20 6f 72 20 61 20 6e 65 77 20 73 6c 61 76 65 20 6a 6f 69 6e 73 20 74 68 65 20 62 6f 6e 64 20 74 | .or.a.new.slave.joins.the.bond.t |
| 150ae0 | 68 65 20 72 65 63 65 69 76 65 20 74 72 61 66 66 69 63 20 69 73 20 72 65 64 69 73 74 72 69 62 75 | he.receive.traffic.is.redistribu |
| 150b00 | 74 65 64 20 61 6d 6f 6e 67 20 61 6c 6c 20 61 63 74 69 76 65 20 73 6c 61 76 65 73 20 69 6e 20 74 | ted.among.all.active.slaves.in.t |
| 150b20 | 68 65 20 62 6f 6e 64 20 62 79 20 69 6e 69 74 69 61 74 69 6e 67 20 41 52 50 20 52 65 70 6c 69 65 | he.bond.by.initiating.ARP.Replie |
| 150b40 | 73 20 77 69 74 68 20 74 68 65 20 73 65 6c 65 63 74 65 64 20 4d 41 43 20 61 64 64 72 65 73 73 20 | s.with.the.selected.MAC.address. |
| 150b60 | 74 6f 20 65 61 63 68 20 6f 66 20 74 68 65 20 63 6c 69 65 6e 74 73 2e 20 54 68 65 20 75 70 64 65 | to.each.of.the.clients..The.upde |
| 150b80 | 6c 61 79 20 70 61 72 61 6d 65 74 65 72 20 28 64 65 74 61 69 6c 65 64 20 62 65 6c 6f 77 29 20 6d | lay.parameter.(detailed.below).m |
| 150ba0 | 75 73 74 20 62 65 20 73 65 74 20 74 6f 20 61 20 76 61 6c 75 65 20 65 71 75 61 6c 20 6f 72 20 67 | ust.be.set.to.a.value.equal.or.g |
| 150bc0 | 72 65 61 74 65 72 20 74 68 61 6e 20 74 68 65 20 73 77 69 74 63 68 27 73 20 66 6f 72 77 61 72 64 | reater.than.the.switch's.forward |
| 150be0 | 69 6e 67 20 64 65 6c 61 79 20 73 6f 20 74 68 61 74 20 74 68 65 20 41 52 50 20 52 65 70 6c 69 65 | ing.delay.so.that.the.ARP.Replie |
| 150c00 | 73 20 73 65 6e 74 20 74 6f 20 74 68 65 20 70 65 65 72 73 20 77 69 6c 6c 20 6e 6f 74 20 62 65 20 | s.sent.to.the.peers.will.not.be. |
| 150c20 | 62 6c 6f 63 6b 65 64 20 62 79 20 74 68 65 20 73 77 69 74 63 68 2e 00 57 68 65 6e 20 61 20 70 61 | blocked.by.the.switch..When.a.pa |
| 150c40 | 63 6b 65 74 20 69 73 20 74 6f 20 62 65 20 73 65 6e 74 2c 20 69 74 20 77 69 6c 6c 20 68 61 76 65 | cket.is.to.be.sent,.it.will.have |
| 150c60 | 20 74 6f 20 67 6f 20 74 68 72 6f 75 67 68 20 74 68 61 74 20 71 75 65 75 65 2c 20 73 6f 20 74 68 | .to.go.through.that.queue,.so.th |
| 150c80 | 65 20 70 61 63 6b 65 74 20 77 69 6c 6c 20 62 65 20 70 6c 61 63 65 64 20 61 74 20 74 68 65 20 74 | e.packet.will.be.placed.at.the.t |
| 150ca0 | 61 69 6c 20 6f 66 20 69 74 2e 20 57 68 65 6e 20 74 68 65 20 70 61 63 6b 65 74 20 63 6f 6d 70 6c | ail.of.it..When.the.packet.compl |
| 150cc0 | 65 74 65 6c 79 20 67 6f 65 73 20 74 68 72 6f 75 67 68 20 69 74 2c 20 69 74 20 77 69 6c 6c 20 62 | etely.goes.through.it,.it.will.b |
| 150ce0 | 65 20 64 65 71 75 65 75 65 64 20 65 6d 70 74 79 69 6e 67 20 69 74 73 20 70 6c 61 63 65 20 69 6e | e.dequeued.emptying.its.place.in |
| 150d00 | 20 74 68 65 20 71 75 65 75 65 20 61 6e 64 20 62 65 69 6e 67 20 65 76 65 6e 74 75 61 6c 6c 79 20 | .the.queue.and.being.eventually. |
| 150d20 | 68 61 6e 64 65 64 20 74 6f 20 74 68 65 20 4e 49 43 20 74 6f 20 62 65 20 61 63 74 75 61 6c 6c 79 | handed.to.the.NIC.to.be.actually |
| 150d40 | 20 73 65 6e 74 20 6f 75 74 2e 00 57 68 65 6e 20 61 20 70 65 65 72 20 72 65 63 65 69 76 65 73 20 | .sent.out..When.a.peer.receives. |
| 150d60 | 61 20 6d 61 72 74 69 61 6e 20 6e 65 78 74 68 6f 70 20 61 73 20 70 61 72 74 20 6f 66 20 74 68 65 | a.martian.nexthop.as.part.of.the |
| 150d80 | 20 4e 4c 52 49 20 66 6f 72 20 61 20 72 6f 75 74 65 20 70 65 72 6d 69 74 20 74 68 65 20 6e 65 78 | .NLRI.for.a.route.permit.the.nex |
| 150da0 | 74 68 6f 70 20 74 6f 20 62 65 20 75 73 65 64 20 61 73 20 73 75 63 68 2c 20 69 6e 73 74 65 61 64 | thop.to.be.used.as.such,.instead |
| 150dc0 | 20 6f 66 20 72 65 6a 65 63 74 69 6e 67 20 61 6e 64 20 72 65 73 65 74 74 69 6e 67 20 74 68 65 20 | .of.rejecting.and.resetting.the. |
| 150de0 | 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 57 68 65 6e 20 61 20 72 6f 75 74 65 20 66 61 69 6c 73 2c 20 | connection..When.a.route.fails,. |
| 150e00 | 61 20 72 6f 75 74 69 6e 67 20 75 70 64 61 74 65 20 69 73 20 73 65 6e 74 20 74 6f 20 77 69 74 68 | a.routing.update.is.sent.to.with |
| 150e20 | 64 72 61 77 20 74 68 65 20 72 6f 75 74 65 20 66 72 6f 6d 20 74 68 65 20 6e 65 74 77 6f 72 6b 27 | draw.the.route.from.the.network' |
| 150e40 | 73 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 73 2e 20 57 68 65 6e 20 74 68 65 20 72 6f 75 74 65 | s.routing.tables..When.the.route |
| 150e60 | 20 69 73 20 72 65 2d 65 6e 61 62 6c 65 64 2c 20 74 68 65 20 63 68 61 6e 67 65 20 69 6e 20 61 76 | .is.re-enabled,.the.change.in.av |
| 150e80 | 61 69 6c 61 62 69 6c 69 74 79 20 69 73 20 61 6c 73 6f 20 61 64 76 65 72 74 69 73 65 64 2e 20 41 | ailability.is.also.advertised..A |
| 150ea0 | 20 72 6f 75 74 65 20 74 68 61 74 20 63 6f 6e 74 69 6e 75 61 6c 6c 79 20 66 61 69 6c 73 20 61 6e | .route.that.continually.fails.an |
| 150ec0 | 64 20 72 65 74 75 72 6e 73 20 72 65 71 75 69 72 65 73 20 61 20 67 72 65 61 74 20 64 65 61 6c 20 | d.returns.requires.a.great.deal. |
| 150ee0 | 6f 66 20 6e 65 74 77 6f 72 6b 20 74 72 61 66 66 69 63 20 74 6f 20 75 70 64 61 74 65 20 74 68 65 | of.network.traffic.to.update.the |
| 150f00 | 20 6e 65 74 77 6f 72 6b 20 61 62 6f 75 74 20 74 68 65 20 72 6f 75 74 65 27 73 20 73 74 61 74 75 | .network.about.the.route's.statu |
| 150f20 | 73 2e 00 57 68 65 6e 20 61 64 64 69 6e 67 20 49 50 76 36 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f | s..When.adding.IPv6.routing.info |
| 150f40 | 72 6d 61 74 69 6f 6e 20 65 78 63 68 61 6e 67 65 20 66 65 61 74 75 72 65 20 74 6f 20 42 47 50 2e | rmation.exchange.feature.to.BGP. |
| 150f60 | 20 54 68 65 72 65 20 77 65 72 65 20 73 6f 6d 65 20 70 72 6f 70 6f 73 61 6c 73 2e 20 3a 61 62 62 | .There.were.some.proposals..:abb |
| 150f80 | 72 3a 60 49 45 54 46 20 28 49 6e 74 65 72 6e 65 74 20 45 6e 67 69 6e 65 65 72 69 6e 67 20 54 61 | r:`IETF.(Internet.Engineering.Ta |
| 150fa0 | 73 6b 20 46 6f 72 63 65 29 60 20 3a 61 62 62 72 3a 60 49 44 52 20 28 49 6e 74 65 72 20 44 6f 6d | sk.Force)`.:abbr:`IDR.(Inter.Dom |
| 150fc0 | 61 69 6e 20 52 6f 75 74 69 6e 67 29 60 20 61 64 6f 70 74 65 64 20 61 20 70 72 6f 70 6f 73 61 6c | ain.Routing)`.adopted.a.proposal |
| 150fe0 | 20 63 61 6c 6c 65 64 20 4d 75 6c 74 69 70 72 6f 74 6f 63 6f 6c 20 45 78 74 65 6e 73 69 6f 6e 20 | .called.Multiprotocol.Extension. |
| 151000 | 66 6f 72 20 42 47 50 2e 20 54 68 65 20 73 70 65 63 69 66 69 63 61 74 69 6f 6e 20 69 73 20 64 65 | for.BGP..The.specification.is.de |
| 151020 | 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 32 32 38 33 60 2e 20 54 68 65 20 70 72 6f 74 | scribed.in.:rfc:`2283`..The.prot |
| 151040 | 6f 63 6f 6c 20 64 6f 65 73 20 6e 6f 74 20 64 65 66 69 6e 65 20 6e 65 77 20 70 72 6f 74 6f 63 6f | ocol.does.not.define.new.protoco |
| 151060 | 6c 73 2e 20 49 74 20 64 65 66 69 6e 65 73 20 6e 65 77 20 61 74 74 72 69 62 75 74 65 73 20 74 6f | ls..It.defines.new.attributes.to |
| 151080 | 20 65 78 69 73 74 69 6e 67 20 42 47 50 2e 20 57 68 65 6e 20 69 74 20 69 73 20 75 73 65 64 20 65 | .existing.BGP..When.it.is.used.e |
| 1510a0 | 78 63 68 61 6e 67 69 6e 67 20 49 50 76 36 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 | xchanging.IPv6.routing.informati |
| 1510c0 | 6f 6e 20 69 74 20 69 73 20 63 61 6c 6c 65 64 20 42 47 50 2d 34 2b 2e 20 57 68 65 6e 20 69 74 20 | on.it.is.called.BGP-4+..When.it. |
| 1510e0 | 69 73 20 75 73 65 64 20 66 6f 72 20 65 78 63 68 61 6e 67 69 6e 67 20 6d 75 6c 74 69 63 61 73 74 | is.used.for.exchanging.multicast |
| 151100 | 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 69 74 20 69 73 20 63 61 6c 6c 65 | .routing.information.it.is.calle |
| 151120 | 64 20 4d 42 47 50 2e 00 57 68 65 6e 20 61 6c 6c 20 74 68 65 20 75 6e 64 65 72 6c 61 79 20 6c 69 | d.MBGP..When.all.the.underlay.li |
| 151140 | 6e 6b 73 20 67 6f 20 64 6f 77 6e 20 74 68 65 20 50 45 20 6e 6f 20 6c 6f 6e 67 65 72 20 68 61 73 | nks.go.down.the.PE.no.longer.has |
| 151160 | 20 61 63 63 65 73 73 20 74 6f 20 74 68 65 20 56 78 4c 41 4e 20 2b 6f 76 65 72 6c 61 79 2e 20 54 | .access.to.the.VxLAN.+overlay..T |
| 151180 | 6f 20 70 72 65 76 65 6e 74 20 62 6c 61 63 6b 68 6f 6c 69 6e 67 20 6f 66 20 74 72 61 66 66 69 63 | o.prevent.blackholing.of.traffic |
| 1511a0 | 20 74 68 65 20 73 65 72 76 65 72 2f 45 53 20 6c 69 6e 6b 73 20 61 72 65 20 70 72 6f 74 6f 64 6f | .the.server/ES.links.are.protodo |
| 1511c0 | 77 6e 65 64 20 6f 6e 20 74 68 65 20 50 45 2e 00 57 68 65 6e 20 61 6e 20 61 75 74 68 6f 72 69 74 | wned.on.the.PE..When.an.authorit |
| 1511e0 | 61 74 69 76 65 20 73 65 72 76 65 72 20 64 6f 65 73 20 6e 6f 74 20 61 6e 73 77 65 72 20 61 20 71 | ative.server.does.not.answer.a.q |
| 151200 | 75 65 72 79 20 6f 72 20 73 65 6e 64 73 20 61 20 72 65 70 6c 79 20 74 68 65 20 72 65 63 75 72 73 | uery.or.sends.a.reply.the.recurs |
| 151220 | 6f 72 20 64 6f 65 73 20 6e 6f 74 20 6c 69 6b 65 2c 20 69 74 20 69 73 20 74 68 72 6f 74 74 6c 65 | or.does.not.like,.it.is.throttle |
| 151240 | 64 2e 20 41 6e 79 20 73 65 72 76 65 72 73 20 6d 61 74 63 68 69 6e 67 20 74 68 65 20 73 75 70 70 | d..Any.servers.matching.the.supp |
| 151260 | 6c 69 65 64 20 6e 65 74 6d 61 73 6b 73 20 77 69 6c 6c 20 6e 65 76 65 72 20 62 65 20 74 68 72 6f | lied.netmasks.will.never.be.thro |
| 151280 | 74 74 6c 65 64 2e 00 57 68 65 6e 20 63 6f 6e 66 69 67 75 72 65 64 2c 20 50 50 50 6f 45 20 77 69 | ttled..When.configured,.PPPoE.wi |
| 1512a0 | 6c 6c 20 63 72 65 61 74 65 20 74 68 65 20 6e 65 63 65 73 73 61 72 79 20 56 4c 41 4e 73 20 77 68 | ll.create.the.necessary.VLANs.wh |
| 1512c0 | 65 6e 20 72 65 71 75 69 72 65 64 2e 20 4f 6e 63 65 20 74 68 65 20 75 73 65 72 20 73 65 73 73 69 | en.required..Once.the.user.sessi |
| 1512e0 | 6f 6e 20 68 61 73 20 62 65 65 6e 20 63 61 6e 63 65 6c 6c 65 64 20 61 6e 64 20 74 68 65 20 56 4c | on.has.been.cancelled.and.the.VL |
| 151300 | 41 4e 20 69 73 20 6e 6f 74 20 6e 65 65 64 65 64 20 61 6e 79 6d 6f 72 65 2c 20 56 79 4f 53 20 77 | AN.is.not.needed.anymore,.VyOS.w |
| 151320 | 69 6c 6c 20 72 65 6d 6f 76 65 20 69 74 20 61 67 61 69 6e 2e 00 57 68 65 6e 20 63 6f 6e 66 69 67 | ill.remove.it.again..When.config |
| 151340 | 75 72 69 6e 67 20 61 20 52 61 6e 64 6f 6d 2d 44 65 74 65 63 74 20 70 6f 6c 69 63 79 3a 20 2a 2a | uring.a.Random-Detect.policy:.** |
| 151360 | 74 68 65 20 68 69 67 68 65 72 20 74 68 65 20 70 72 65 63 65 64 65 6e 63 65 20 6e 75 6d 62 65 72 | the.higher.the.precedence.number |
| 151380 | 2c 20 74 68 65 20 68 69 67 68 65 72 20 74 68 65 20 70 72 69 6f 72 69 74 79 2a 2a 2e 00 57 68 65 | ,.the.higher.the.priority**..Whe |
| 1513a0 | 6e 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 79 6f 75 72 20 66 69 6c 74 65 72 2c 20 79 6f 75 20 63 | n.configuring.your.filter,.you.c |
| 1513c0 | 61 6e 20 75 73 65 20 74 68 65 20 60 60 54 61 62 60 60 20 6b 65 79 20 74 6f 20 73 65 65 20 74 68 | an.use.the.``Tab``.key.to.see.th |
| 1513e0 | 65 20 6d 61 6e 79 20 64 69 66 66 65 72 65 6e 74 20 70 61 72 61 6d 65 74 65 72 73 20 79 6f 75 20 | e.many.different.parameters.you. |
| 151400 | 63 61 6e 20 63 6f 6e 66 69 67 75 72 65 2e 00 57 68 65 6e 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 | can.configure..When.configuring. |
| 151420 | 79 6f 75 72 20 74 72 61 66 66 69 63 20 70 6f 6c 69 63 79 2c 20 79 6f 75 20 77 69 6c 6c 20 68 61 | your.traffic.policy,.you.will.ha |
| 151440 | 76 65 20 74 6f 20 73 65 74 20 64 61 74 61 20 72 61 74 65 20 76 61 6c 75 65 73 2c 20 77 61 74 63 | ve.to.set.data.rate.values,.watc |
| 151460 | 68 20 6f 75 74 20 74 68 65 20 75 6e 69 74 73 20 79 6f 75 20 61 72 65 20 6d 61 6e 61 67 69 6e 67 | h.out.the.units.you.are.managing |
| 151480 | 2c 20 69 74 20 69 73 20 65 61 73 79 20 74 6f 20 67 65 74 20 63 6f 6e 66 75 73 65 64 20 77 69 74 | ,.it.is.easy.to.get.confused.wit |
| 1514a0 | 68 20 74 68 65 20 64 69 66 66 65 72 65 6e 74 20 70 72 65 66 69 78 65 73 20 61 6e 64 20 73 75 66 | h.the.different.prefixes.and.suf |
| 1514c0 | 66 69 78 65 73 20 79 6f 75 20 63 61 6e 20 75 73 65 2e 20 56 79 4f 53 20 77 69 6c 6c 20 61 6c 77 | fixes.you.can.use..VyOS.will.alw |
| 1514e0 | 61 79 73 20 73 68 6f 77 20 79 6f 75 20 74 68 65 20 64 69 66 66 65 72 65 6e 74 20 75 6e 69 74 73 | ays.show.you.the.different.units |
| 151500 | 20 79 6f 75 20 63 61 6e 20 75 73 65 2e 00 57 68 65 6e 20 64 65 66 69 6e 69 6e 67 20 61 20 72 75 | .you.can.use..When.defining.a.ru |
| 151520 | 6c 65 2c 20 69 74 20 69 73 20 65 6e 61 62 6c 65 20 62 79 20 64 65 66 61 75 6c 74 2e 20 49 6e 20 | le,.it.is.enable.by.default..In. |
| 151540 | 73 6f 6d 65 20 63 61 73 65 73 2c 20 69 74 20 69 73 20 75 73 65 66 75 6c 20 74 6f 20 6a 75 73 74 | some.cases,.it.is.useful.to.just |
| 151560 | 20 64 69 73 61 62 6c 65 20 74 68 65 20 72 75 6c 65 2c 20 72 61 74 68 65 72 20 74 68 61 6e 20 72 | .disable.the.rule,.rather.than.r |
| 151580 | 65 6d 6f 76 69 6e 67 20 69 74 2e 00 57 68 65 6e 20 64 65 66 69 6e 69 6e 67 20 61 20 72 75 6c 65 | emoving.it..When.defining.a.rule |
| 1515a0 | 2c 20 69 74 20 69 73 20 65 6e 61 62 6c 65 64 20 62 79 20 64 65 66 61 75 6c 74 2e 20 49 6e 20 73 | ,.it.is.enabled.by.default..In.s |
| 1515c0 | 6f 6d 65 20 63 61 73 65 73 2c 20 69 74 20 69 73 20 75 73 65 66 75 6c 20 74 6f 20 6a 75 73 74 20 | ome.cases,.it.is.useful.to.just. |
| 1515e0 | 64 69 73 61 62 6c 65 20 74 68 65 20 72 75 6c 65 2c 20 72 61 74 68 65 72 20 74 68 61 6e 20 72 65 | disable.the.rule,.rather.than.re |
| 151600 | 6d 6f 76 69 6e 67 20 69 74 2e 00 57 68 65 6e 20 64 65 66 69 6e 69 6e 67 20 74 68 65 20 74 72 61 | moving.it..When.defining.the.tra |
| 151620 | 6e 73 6c 61 74 65 64 20 61 64 64 72 65 73 73 2c 20 63 61 6c 6c 65 64 20 60 60 62 61 63 6b 65 6e | nslated.address,.called.``backen |
| 151640 | 64 73 60 60 2c 20 61 20 60 60 77 65 69 67 68 74 60 60 20 6d 75 73 74 20 62 65 20 63 6f 6e 66 69 | ds``,.a.``weight``.must.be.confi |
| 151660 | 67 75 72 65 64 2e 20 54 68 69 73 20 6c 65 74 73 20 74 68 65 20 75 73 65 72 20 64 65 66 69 6e 65 | gured..This.lets.the.user.define |
| 151680 | 20 6c 6f 61 64 20 62 61 6c 61 6e 63 65 20 64 69 73 74 72 69 62 75 74 69 6f 6e 20 61 63 63 6f 72 | .load.balance.distribution.accor |
| 1516a0 | 64 69 6e 67 20 74 6f 20 74 68 65 69 72 20 6e 65 65 64 73 2e 20 54 68 65 6d 20 73 75 6d 20 6f 66 | ding.to.their.needs..Them.sum.of |
| 1516c0 | 20 61 6c 6c 20 74 68 65 20 77 65 69 67 68 74 73 20 64 65 66 69 6e 65 64 20 66 6f 72 20 74 68 65 | .all.the.weights.defined.for.the |
| 1516e0 | 20 62 61 63 6b 65 6e 64 73 20 73 68 6f 75 6c 64 20 62 65 20 65 71 75 61 6c 20 74 6f 20 31 30 30 | .backends.should.be.equal.to.100 |
| 151700 | 2e 20 49 6e 20 6f 64 65 72 20 77 6f 72 64 73 2c 20 74 68 65 20 77 65 69 67 68 74 20 64 65 66 69 | ..In.oder.words,.the.weight.defi |
| 151720 | 6e 65 64 20 66 6f 72 20 74 68 65 20 62 61 63 6b 65 6e 64 20 69 73 20 74 68 65 20 70 65 72 63 65 | ned.for.the.backend.is.the.perce |
| 151740 | 6e 74 61 67 65 20 6f 66 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 74 68 61 74 20 77 69 | ntage.of.the.connections.that.wi |
| 151760 | 6c 6c 20 72 65 63 65 69 76 65 20 73 75 63 68 20 62 61 63 6b 65 6e 64 2e 00 57 68 65 6e 20 64 65 | ll.receive.such.backend..When.de |
| 151780 | 71 75 65 75 69 6e 67 2c 20 65 61 63 68 20 68 61 73 68 2d 62 75 63 6b 65 74 20 77 69 74 68 20 64 | queuing,.each.hash-bucket.with.d |
| 1517a0 | 61 74 61 20 69 73 20 71 75 65 72 69 65 64 20 69 6e 20 61 20 72 6f 75 6e 64 20 72 6f 62 69 6e 20 | ata.is.queried.in.a.round.robin. |
| 1517c0 | 66 61 73 68 69 6f 6e 2e 20 59 6f 75 20 63 61 6e 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 6c | fashion..You.can.configure.the.l |
| 1517e0 | 65 6e 67 74 68 20 6f 66 20 74 68 65 20 71 75 65 75 65 2e 00 57 68 65 6e 20 64 65 73 69 67 6e 69 | ength.of.the.queue..When.designi |
| 151800 | 6e 67 20 79 6f 75 72 20 4e 41 54 20 72 75 6c 65 73 65 74 20 6c 65 61 76 65 20 73 6f 6d 65 20 73 | ng.your.NAT.ruleset.leave.some.s |
| 151820 | 70 61 63 65 20 62 65 74 77 65 65 6e 20 63 6f 6e 73 65 63 75 74 69 76 65 20 72 75 6c 65 73 20 66 | pace.between.consecutive.rules.f |
| 151840 | 6f 72 20 6c 61 74 65 72 20 65 78 74 65 6e 73 69 6f 6e 2e 20 59 6f 75 72 20 72 75 6c 65 73 65 74 | or.later.extension..Your.ruleset |
| 151860 | 20 63 6f 75 6c 64 20 73 74 61 72 74 20 77 69 74 68 20 6e 75 6d 62 65 72 73 20 31 30 2c 20 32 30 | .could.start.with.numbers.10,.20 |
| 151880 | 2c 20 33 30 2e 20 59 6f 75 20 74 68 75 73 20 63 61 6e 20 6c 61 74 65 72 20 65 78 74 65 6e 64 20 | ,.30..You.thus.can.later.extend. |
| 1518a0 | 74 68 65 20 72 75 6c 65 73 65 74 20 61 6e 64 20 70 6c 61 63 65 20 6e 65 77 20 72 75 6c 65 73 20 | the.ruleset.and.place.new.rules. |
| 1518c0 | 62 65 74 77 65 65 6e 20 65 78 69 73 74 69 6e 67 20 6f 6e 65 73 2e 00 57 68 65 6e 20 64 6f 69 6e | between.existing.ones..When.doin |
| 1518e0 | 67 20 66 61 75 6c 74 20 69 73 6f 6c 61 74 69 6f 6e 20 77 69 74 68 20 70 69 6e 67 2c 20 79 6f 75 | g.fault.isolation.with.ping,.you |
| 151900 | 20 73 68 6f 75 6c 64 20 66 69 72 73 74 20 72 75 6e 20 69 74 20 6f 6e 20 74 68 65 20 6c 6f 63 61 | .should.first.run.it.on.the.loca |
| 151920 | 6c 20 68 6f 73 74 2c 20 74 6f 20 76 65 72 69 66 79 20 74 68 61 74 20 74 68 65 20 6c 6f 63 61 6c | l.host,.to.verify.that.the.local |
| 151940 | 20 6e 65 74 77 6f 72 6b 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 75 70 20 61 6e 64 20 72 75 6e | .network.interface.is.up.and.run |
| 151960 | 6e 69 6e 67 2e 20 54 68 65 6e 2c 20 63 6f 6e 74 69 6e 75 65 20 77 69 74 68 20 68 6f 73 74 73 20 | ning..Then,.continue.with.hosts. |
| 151980 | 61 6e 64 20 67 61 74 65 77 61 79 73 20 66 75 72 74 68 65 72 20 64 6f 77 6e 20 74 68 65 20 72 6f | and.gateways.further.down.the.ro |
| 1519a0 | 61 64 20 74 6f 77 61 72 64 73 20 79 6f 75 72 20 64 65 73 74 69 6e 61 74 69 6f 6e 2e 20 52 6f 75 | ad.towards.your.destination..Rou |
| 1519c0 | 6e 64 2d 74 72 69 70 20 74 69 6d 65 20 61 6e 64 20 70 61 63 6b 65 74 20 6c 6f 73 73 20 73 74 61 | nd-trip.time.and.packet.loss.sta |
| 1519e0 | 74 69 73 74 69 63 73 20 61 72 65 20 63 6f 6d 70 75 74 65 64 2e 00 57 68 65 6e 20 66 69 72 73 74 | tistics.are.computed..When.first |
| 151a00 | 20 63 6f 6e 6e 65 63 74 69 6e 67 20 74 6f 20 74 68 65 20 6e 65 77 20 56 50 4e 20 74 68 65 20 75 | .connecting.to.the.new.VPN.the.u |
| 151a20 | 73 65 72 20 69 73 20 70 72 6f 6d 70 74 65 64 20 74 6f 20 65 6e 74 65 72 20 70 72 6f 70 65 72 20 | ser.is.prompted.to.enter.proper. |
| 151a40 | 63 72 65 64 65 6e 74 69 61 6c 73 2e 00 57 68 65 6e 20 69 6d 70 6c 65 6d 65 6e 74 69 6e 67 20 43 | credentials..When.implementing.C |
| 151a60 | 47 4e 41 54 2c 20 65 6e 73 75 72 69 6e 67 20 74 68 61 74 20 74 68 65 72 65 20 61 72 65 20 65 6e | GNAT,.ensuring.that.there.are.en |
| 151a80 | 6f 75 67 68 20 70 6f 72 74 73 20 61 6c 6c 6f 63 61 74 65 64 20 70 65 72 20 73 75 62 73 63 72 69 | ough.ports.allocated.per.subscri |
| 151aa0 | 62 65 72 20 69 73 20 63 72 69 74 69 63 61 6c 2e 20 42 65 6c 6f 77 20 69 73 20 61 20 73 75 6d 6d | ber.is.critical..Below.is.a.summ |
| 151ac0 | 61 72 79 20 62 61 73 65 64 20 6f 6e 20 52 46 43 20 36 38 38 38 2e 00 57 68 65 6e 20 6c 6f 61 64 | ary.based.on.RFC.6888..When.load |
| 151ae0 | 69 6e 67 20 74 68 65 20 63 65 72 74 69 66 69 63 61 74 65 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 | ing.the.certificate.you.need.to. |
| 151b00 | 6d 61 6e 75 61 6c 6c 79 20 73 74 72 69 70 20 74 68 65 20 60 60 2d 2d 2d 2d 2d 42 45 47 49 4e 20 | manually.strip.the.``-----BEGIN. |
| 151b20 | 43 45 52 54 49 46 49 43 41 54 45 2d 2d 2d 2d 2d 60 60 20 61 6e 64 20 60 60 2d 2d 2d 2d 2d 45 4e | CERTIFICATE-----``.and.``-----EN |
| 151b40 | 44 20 43 45 52 54 49 46 49 43 41 54 45 2d 2d 2d 2d 2d 60 60 20 74 61 67 73 2e 20 41 6c 73 6f 2c | D.CERTIFICATE-----``.tags..Also, |
| 151b60 | 20 74 68 65 20 63 65 72 74 69 66 69 63 61 74 65 2f 6b 65 79 20 6e 65 65 64 73 20 74 6f 20 62 65 | .the.certificate/key.needs.to.be |
| 151b80 | 20 70 72 65 73 65 6e 74 65 64 20 69 6e 20 61 20 73 69 6e 67 6c 65 20 6c 69 6e 65 20 77 69 74 68 | .presented.in.a.single.line.with |
| 151ba0 | 6f 75 74 20 6c 69 6e 65 20 62 72 65 61 6b 73 20 28 60 60 5c 6e 60 60 29 2c 20 74 68 69 73 20 63 | out.line.breaks.(``\n``),.this.c |
| 151bc0 | 61 6e 20 62 65 20 64 6f 6e 65 20 75 73 69 6e 67 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 | an.be.done.using.the.following.s |
| 151be0 | 68 65 6c 6c 20 63 6f 6d 6d 61 6e 64 3a 00 57 68 65 6e 20 6c 6f 61 64 69 6e 67 20 74 68 65 20 63 | hell.command:.When.loading.the.c |
| 151c00 | 65 72 74 69 66 69 63 61 74 65 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 6d 61 6e 75 61 6c 6c 79 20 | ertificate.you.need.to.manually. |
| 151c20 | 73 74 72 69 70 20 74 68 65 20 60 60 2d 2d 2d 2d 2d 42 45 47 49 4e 20 4b 45 59 2d 2d 2d 2d 2d 60 | strip.the.``-----BEGIN.KEY-----` |
| 151c40 | 60 20 61 6e 64 20 60 60 2d 2d 2d 2d 2d 45 4e 44 20 4b 45 59 2d 2d 2d 2d 2d 60 60 20 74 61 67 73 | `.and.``-----END.KEY-----``.tags |
| 151c60 | 2e 20 41 6c 73 6f 2c 20 74 68 65 20 63 65 72 74 69 66 69 63 61 74 65 2f 6b 65 79 20 6e 65 65 64 | ..Also,.the.certificate/key.need |
| 151c80 | 73 20 74 6f 20 62 65 20 70 72 65 73 65 6e 74 65 64 20 69 6e 20 61 20 73 69 6e 67 6c 65 20 6c 69 | s.to.be.presented.in.a.single.li |
| 151ca0 | 6e 65 20 77 69 74 68 6f 75 74 20 6c 69 6e 65 20 62 72 65 61 6b 73 20 28 60 60 5c 6e 60 60 29 2c | ne.without.line.breaks.(``\n``), |
| 151cc0 | 20 74 68 69 73 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 75 73 69 6e 67 20 74 68 65 20 66 6f 6c 6c | .this.can.be.done.using.the.foll |
| 151ce0 | 6f 77 69 6e 67 20 73 68 65 6c 6c 20 63 6f 6d 6d 61 6e 64 3a 00 57 68 65 6e 20 6d 61 74 68 63 69 | owing.shell.command:.When.mathci |
| 151d00 | 6e 67 20 61 6c 6c 20 70 61 74 74 65 72 6e 73 20 64 65 66 69 6e 65 64 20 69 6e 20 61 20 72 75 6c | ng.all.patterns.defined.in.a.rul |
| 151d20 | 65 2c 20 74 68 65 6e 20 64 69 66 66 65 72 65 6e 74 20 61 63 74 69 6f 6e 73 20 63 61 6e 20 62 65 | e,.then.different.actions.can.be |
| 151d40 | 20 6d 61 64 65 2e 20 54 68 69 73 20 69 6e 63 6c 75 64 65 73 20 64 72 6f 70 69 6e 67 20 74 68 65 | .made..This.includes.droping.the |
| 151d60 | 20 70 61 63 6b 65 74 2c 20 6d 6f 64 69 66 79 69 6e 67 20 63 65 72 74 61 69 6e 20 64 61 74 61 2c | .packet,.modifying.certain.data, |
| 151d80 | 20 6f 72 20 73 65 74 74 69 6e 67 20 61 20 64 69 66 66 65 72 65 6e 74 20 72 6f 75 74 69 6e 67 20 | .or.setting.a.different.routing. |
| 151da0 | 74 61 62 6c 65 2e 00 57 68 65 6e 20 6e 6f 20 6f 70 74 69 6f 6e 73 2f 70 61 72 61 6d 65 74 65 72 | table..When.no.options/parameter |
| 151dc0 | 73 20 61 72 65 20 75 73 65 64 2c 20 74 68 65 20 63 6f 6e 74 65 6e 74 73 20 6f 66 20 74 68 65 20 | s.are.used,.the.contents.of.the. |
| 151de0 | 6d 61 69 6e 20 73 79 73 6c 6f 67 20 66 69 6c 65 20 61 72 65 20 64 69 73 70 6c 61 79 65 64 2e 00 | main.syslog.file.are.displayed.. |
| 151e00 | 57 68 65 6e 20 6e 6f 2d 72 65 6c 65 61 73 65 20 69 73 20 73 70 65 63 69 66 69 65 64 2c 20 64 68 | When.no-release.is.specified,.dh |
| 151e20 | 63 70 36 63 20 77 69 6c 6c 20 61 76 6f 69 64 20 73 65 6e 64 69 6e 67 20 61 20 72 65 6c 65 61 73 | cp6c.will.avoid.sending.a.releas |
| 151e40 | 65 20 6d 65 73 73 61 67 65 20 6f 6e 20 63 6c 69 65 6e 74 20 65 78 69 74 20 69 6e 20 6f 72 64 65 | e.message.on.client.exit.in.orde |
| 151e60 | 72 20 74 6f 20 70 72 65 76 65 6e 74 20 6c 6f 73 69 6e 67 20 61 6e 20 61 73 73 69 67 6e 65 64 20 | r.to.prevent.losing.an.assigned. |
| 151e80 | 61 64 64 72 65 73 73 20 6f 72 20 70 72 65 66 69 78 2e 00 57 68 65 6e 20 6e 6f 2d 72 65 6c 65 61 | address.or.prefix..When.no-relea |
| 151ea0 | 73 65 20 69 73 20 73 70 65 63 69 66 69 65 64 2c 20 64 68 63 70 36 63 20 77 69 6c 6c 20 73 65 6e | se.is.specified,.dhcp6c.will.sen |
| 151ec0 | 64 20 61 20 72 65 6c 65 61 73 65 20 6d 65 73 73 61 67 65 20 6f 6e 20 63 6c 69 65 6e 74 20 65 78 | d.a.release.message.on.client.ex |
| 151ee0 | 69 74 20 74 6f 20 70 72 65 76 65 6e 74 20 6c 6f 73 69 6e 67 20 61 6e 20 61 73 73 69 67 6e 65 64 | it.to.prevent.losing.an.assigned |
| 151f00 | 20 61 64 64 72 65 73 73 20 6f 72 20 70 72 65 66 69 78 2e 00 57 68 65 6e 20 70 72 6f 63 65 73 73 | .address.or.prefix..When.process |
| 151f20 | 69 6e 67 20 70 61 63 6b 65 74 73 20 66 72 6f 6d 20 61 20 6e 65 69 67 68 62 6f 72 20 70 72 6f 63 | ing.packets.from.a.neighbor.proc |
| 151f40 | 65 73 73 20 74 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 70 61 63 6b 65 74 73 20 69 6e 63 6f 6d 69 | ess.the.number.of.packets.incomi |
| 151f60 | 6e 67 20 61 74 20 6f 6e 65 20 74 69 6d 65 20 62 65 66 6f 72 65 20 6d 6f 76 69 6e 67 20 6f 6e 20 | ng.at.one.time.before.moving.on. |
| 151f80 | 74 6f 20 74 68 65 20 6e 65 78 74 20 74 61 73 6b 2e 00 57 68 65 6e 20 72 61 70 69 64 2d 63 6f 6d | to.the.next.task..When.rapid-com |
| 151fa0 | 6d 69 74 20 69 73 20 73 70 65 63 69 66 69 65 64 2c 20 64 68 63 70 36 63 20 77 69 6c 6c 20 69 6e | mit.is.specified,.dhcp6c.will.in |
| 151fc0 | 63 6c 75 64 65 20 61 20 72 61 70 69 64 2d 63 6f 6d 6d 69 74 20 6f 70 74 69 6f 6e 20 69 6e 20 73 | clude.a.rapid-commit.option.in.s |
| 151fe0 | 6f 6c 69 63 69 74 20 6d 65 73 73 61 67 65 73 20 61 6e 64 20 77 61 69 74 20 66 6f 72 20 61 6e 20 | olicit.messages.and.wait.for.an. |
| 152000 | 69 6d 6d 65 64 69 61 74 65 20 72 65 70 6c 79 20 69 6e 73 74 65 61 64 20 6f 66 20 61 64 76 65 72 | immediate.reply.instead.of.adver |
| 152020 | 74 69 73 65 6d 65 6e 74 73 2e 00 57 68 65 6e 20 72 65 6d 6f 74 65 20 70 65 65 72 20 64 6f 65 73 | tisements..When.remote.peer.does |
| 152040 | 20 6e 6f 74 20 68 61 76 65 20 63 61 70 61 62 69 6c 69 74 79 20 6e 65 67 6f 74 69 61 74 69 6f 6e | .not.have.capability.negotiation |
| 152060 | 20 66 65 61 74 75 72 65 2c 20 72 65 6d 6f 74 65 20 70 65 65 72 20 77 69 6c 6c 20 6e 6f 74 20 73 | .feature,.remote.peer.will.not.s |
| 152080 | 65 6e 64 20 61 6e 79 20 63 61 70 61 62 69 6c 69 74 69 65 73 20 61 74 20 61 6c 6c 2e 20 49 6e 20 | end.any.capabilities.at.all..In. |
| 1520a0 | 74 68 61 74 20 63 61 73 65 2c 20 62 67 70 20 63 6f 6e 66 69 67 75 72 65 73 20 74 68 65 20 70 65 | that.case,.bgp.configures.the.pe |
| 1520c0 | 65 72 20 77 69 74 68 20 63 6f 6e 66 69 67 75 72 65 64 20 63 61 70 61 62 69 6c 69 74 69 65 73 2e | er.with.configured.capabilities. |
| 1520e0 | 00 57 68 65 6e 20 72 75 6e 6e 69 6e 67 20 69 74 20 61 74 20 31 47 62 69 74 20 61 6e 64 20 6c 6f | .When.running.it.at.1Gbit.and.lo |
| 152100 | 77 65 72 2c 20 79 6f 75 20 6d 61 79 20 77 61 6e 74 20 74 6f 20 72 65 64 75 63 65 20 74 68 65 20 | wer,.you.may.want.to.reduce.the. |
| 152120 | 60 71 75 65 75 65 2d 6c 69 6d 69 74 60 20 74 6f 20 31 30 30 30 20 70 61 63 6b 65 74 73 20 6f 72 | `queue-limit`.to.1000.packets.or |
| 152140 | 20 6c 65 73 73 2e 20 49 6e 20 72 61 74 65 73 20 6c 69 6b 65 20 31 30 4d 62 69 74 2c 20 79 6f 75 | .less..In.rates.like.10Mbit,.you |
| 152160 | 20 6d 61 79 20 77 61 6e 74 20 74 6f 20 73 65 74 20 69 74 20 74 6f 20 36 30 30 20 70 61 63 6b 65 | .may.want.to.set.it.to.600.packe |
| 152180 | 74 73 2e 00 57 68 65 6e 20 73 65 6e 64 69 6e 67 20 50 49 4d 20 68 65 6c 6c 6f 20 70 61 63 6b 65 | ts..When.sending.PIM.hello.packe |
| 1521a0 | 74 73 20 74 65 6c 6c 20 50 49 4d 20 74 6f 20 6e 6f 74 20 73 65 6e 64 20 61 6e 79 20 76 36 20 73 | ts.tell.PIM.to.not.send.any.v6.s |
| 1521c0 | 65 63 6f 6e 64 61 72 79 20 61 64 64 72 65 73 73 65 73 20 6f 6e 20 74 68 65 20 69 6e 74 65 72 66 | econdary.addresses.on.the.interf |
| 1521e0 | 61 63 65 2e 20 54 68 69 73 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 69 73 20 75 73 65 64 20 74 6f | ace..This.information.is.used.to |
| 152200 | 20 61 6c 6c 6f 77 20 50 49 4d 20 74 6f 20 75 73 65 20 76 36 20 6e 65 78 74 68 6f 70 73 20 69 6e | .allow.PIM.to.use.v6.nexthops.in |
| 152220 | 20 69 74 27 73 20 64 65 63 69 73 69 6f 6e 20 66 6f 72 20 3a 61 62 62 72 3a 60 52 50 46 20 28 52 | .it's.decision.for.:abbr:`RPF.(R |
| 152240 | 65 76 65 72 73 65 20 50 61 74 68 20 46 6f 72 77 61 72 64 69 6e 67 29 60 20 6c 6f 6f 6b 75 70 20 | everse.Path.Forwarding)`.lookup. |
| 152260 | 69 66 20 74 68 69 73 20 6f 70 74 69 6f 6e 20 69 73 20 6e 6f 74 20 73 65 74 20 28 64 65 66 61 75 | if.this.option.is.not.set.(defau |
| 152280 | 6c 74 29 2e 00 57 68 65 6e 20 73 65 74 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 65 | lt)..When.set.the.interface.is.e |
| 1522a0 | 6e 61 62 6c 65 64 20 66 6f 72 20 22 64 69 61 6c 2d 6f 6e 2d 64 65 6d 61 6e 64 22 2e 00 57 68 65 | nabled.for."dial-on-demand"..Whe |
| 1522c0 | 6e 20 73 70 65 63 69 66 69 65 64 2c 20 74 68 69 73 20 73 68 6f 75 6c 64 20 62 65 20 74 68 65 20 | n.specified,.this.should.be.the. |
| 1522e0 | 6f 6e 6c 79 20 6b 65 79 77 6f 72 64 20 66 6f 72 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 2e 00 | only.keyword.for.the.interface.. |
| 152300 | 57 68 65 6e 20 73 74 61 72 74 69 6e 67 20 61 20 56 79 4f 53 20 6c 69 76 65 20 73 79 73 74 65 6d | When.starting.a.VyOS.live.system |
| 152320 | 20 28 74 68 65 20 69 6e 73 74 61 6c 6c 61 74 69 6f 6e 20 43 44 29 20 74 68 65 20 63 6f 6e 66 69 | .(the.installation.CD).the.confi |
| 152340 | 67 75 72 65 64 20 6b 65 79 62 6f 61 72 64 20 6c 61 79 6f 75 74 20 64 65 66 61 75 6c 74 73 20 74 | gured.keyboard.layout.defaults.t |
| 152360 | 6f 20 55 53 2e 20 41 73 20 74 68 69 73 20 6d 69 67 68 74 20 6e 6f 74 20 73 75 69 74 65 20 65 76 | o.US..As.this.might.not.suite.ev |
| 152380 | 65 72 79 6f 6e 65 27 73 20 75 73 65 20 63 61 73 65 20 79 6f 75 20 63 61 6e 20 61 64 6a 75 73 74 | eryone's.use.case.you.can.adjust |
| 1523a0 | 20 74 68 65 20 75 73 65 64 20 6b 65 79 62 6f 61 72 64 20 6c 61 79 6f 75 74 20 6f 6e 20 74 68 65 | .the.used.keyboard.layout.on.the |
| 1523c0 | 20 73 79 73 74 65 6d 20 63 6f 6e 73 6f 6c 65 2e 00 57 68 65 6e 20 73 74 61 72 74 69 6e 67 20 61 | .system.console..When.starting.a |
| 1523e0 | 20 56 79 4f 53 20 6c 69 76 65 20 73 79 73 74 65 6d 20 28 74 68 65 20 69 6e 73 74 61 6c 6c 61 74 | .VyOS.live.system.(the.installat |
| 152400 | 69 6f 6e 20 43 44 29 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 6b 65 79 62 6f 61 72 64 20 | ion.CD).the.configured.keyboard. |
| 152420 | 6c 61 79 6f 75 74 20 64 65 66 61 75 6c 74 73 20 74 6f 20 55 53 2e 20 41 73 20 74 68 69 73 20 6d | layout.defaults.to.US..As.this.m |
| 152440 | 69 67 68 74 20 6e 6f 74 20 73 75 69 74 65 20 65 76 65 72 79 6f 6e 65 73 20 75 73 65 20 63 61 73 | ight.not.suite.everyones.use.cas |
| 152460 | 65 20 79 6f 75 20 63 61 6e 20 61 64 6a 75 73 74 20 74 68 65 20 75 73 65 64 20 6b 65 79 62 6f 61 | e.you.can.adjust.the.used.keyboa |
| 152480 | 72 64 20 6c 61 79 6f 75 74 20 6f 6e 20 74 68 65 20 73 79 73 74 65 6d 20 63 6f 6e 73 6f 6c 65 2e | rd.layout.on.the.system.console. |
| 1524a0 | 00 57 68 65 6e 20 74 68 65 20 44 48 43 50 20 73 65 72 76 65 72 20 69 73 20 63 6f 6e 73 69 64 65 | .When.the.DHCP.server.is.conside |
| 1524c0 | 72 69 6e 67 20 64 79 6e 61 6d 69 63 61 6c 6c 79 20 61 6c 6c 6f 63 61 74 69 6e 67 20 61 6e 20 49 | ring.dynamically.allocating.an.I |
| 1524e0 | 50 20 61 64 64 72 65 73 73 20 74 6f 20 61 20 63 6c 69 65 6e 74 2c 20 69 74 20 66 69 72 73 74 20 | P.address.to.a.client,.it.first. |
| 152500 | 73 65 6e 64 73 20 61 6e 20 49 43 4d 50 20 45 63 68 6f 20 72 65 71 75 65 73 74 20 28 61 20 70 69 | sends.an.ICMP.Echo.request.(a.pi |
| 152520 | 6e 67 29 20 74 6f 20 74 68 65 20 61 64 64 72 65 73 73 20 62 65 69 6e 67 20 61 73 73 69 67 6e 65 | ng).to.the.address.being.assigne |
| 152540 | 64 2e 20 49 74 20 77 61 69 74 73 20 66 6f 72 20 61 20 73 65 63 6f 6e 64 2c 20 61 6e 64 20 69 66 | d..It.waits.for.a.second,.and.if |
| 152560 | 20 6e 6f 20 49 43 4d 50 20 45 63 68 6f 20 72 65 73 70 6f 6e 73 65 20 68 61 73 20 62 65 65 6e 20 | .no.ICMP.Echo.response.has.been. |
| 152580 | 68 65 61 72 64 2c 20 69 74 20 61 73 73 69 67 6e 73 20 74 68 65 20 61 64 64 72 65 73 73 2e 00 57 | heard,.it.assigns.the.address..W |
| 1525a0 | 68 65 6e 20 74 68 65 20 63 6c 6f 73 65 2d 61 63 74 69 6f 6e 20 6f 70 74 69 6f 6e 20 69 73 20 73 | hen.the.close-action.option.is.s |
| 1525c0 | 65 74 20 6f 6e 20 74 68 65 20 70 65 65 72 73 2c 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 2d | et.on.the.peers,.the.connection- |
| 1525e0 | 74 79 70 65 20 6f 66 20 65 61 63 68 20 70 65 65 72 20 68 61 73 20 74 6f 20 63 6f 6e 73 69 64 65 | type.of.each.peer.has.to.conside |
| 152600 | 72 65 64 20 63 61 72 65 66 75 6c 6c 79 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 2c 20 69 66 20 74 | red.carefully..For.example,.if.t |
| 152620 | 68 65 20 6f 70 74 69 6f 6e 20 69 73 20 73 65 74 20 6f 6e 20 62 6f 74 68 20 70 65 65 72 73 2c 20 | he.option.is.set.on.both.peers,. |
| 152640 | 74 68 65 6e 20 62 6f 74 68 20 77 6f 75 6c 64 20 61 74 74 65 6d 70 74 20 74 6f 20 69 6e 69 74 69 | then.both.would.attempt.to.initi |
| 152660 | 61 74 65 20 61 6e 64 20 68 6f 6c 64 20 6f 70 65 6e 20 6d 75 6c 74 69 70 6c 65 20 63 6f 70 69 65 | ate.and.hold.open.multiple.copie |
| 152680 | 73 20 6f 66 20 65 61 63 68 20 63 68 69 6c 64 20 53 41 2e 20 54 68 69 73 20 6d 69 67 68 74 20 6c | s.of.each.child.SA..This.might.l |
| 1526a0 | 65 61 64 20 74 6f 20 69 6e 73 74 61 62 69 6c 69 74 79 20 6f 66 20 74 68 65 20 64 65 76 69 63 65 | ead.to.instability.of.the.device |
| 1526c0 | 20 6f 72 20 63 70 75 2f 6d 65 6d 6f 72 79 20 75 74 69 6c 69 7a 61 74 69 6f 6e 2e 00 57 68 65 6e | .or.cpu/memory.utilization..When |
| 1526e0 | 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 61 62 6f 76 65 20 69 73 20 73 65 74 2c 20 56 79 4f 53 20 | .the.command.above.is.set,.VyOS. |
| 152700 | 77 69 6c 6c 20 61 6e 73 77 65 72 20 65 76 65 72 79 20 49 43 4d 50 20 65 63 68 6f 20 72 65 71 75 | will.answer.every.ICMP.echo.requ |
| 152720 | 65 73 74 20 61 64 64 72 65 73 73 65 64 20 74 6f 20 69 74 73 65 6c 66 2c 20 62 75 74 20 74 68 61 | est.addressed.to.itself,.but.tha |
| 152740 | 74 20 77 69 6c 6c 20 6f 6e 6c 79 20 68 61 70 70 65 6e 20 69 66 20 6e 6f 20 6f 74 68 65 72 20 72 | t.will.only.happen.if.no.other.r |
| 152760 | 75 6c 65 20 69 73 20 61 70 70 6c 69 65 64 20 64 72 6f 70 70 69 6e 67 20 6f 72 20 72 65 6a 65 63 | ule.is.applied.dropping.or.rejec |
| 152780 | 74 69 6e 67 20 6c 6f 63 61 6c 20 65 63 68 6f 20 72 65 71 75 65 73 74 73 2e 20 49 6e 20 63 61 73 | ting.local.echo.requests..In.cas |
| 1527a0 | 65 20 6f 66 20 63 6f 6e 66 6c 69 63 74 2c 20 56 79 4f 53 20 77 69 6c 6c 20 6e 6f 74 20 61 6e 73 | e.of.conflict,.VyOS.will.not.ans |
| 1527c0 | 77 65 72 20 49 43 4d 50 20 65 63 68 6f 20 72 65 71 75 65 73 74 73 2e 00 57 68 65 6e 20 74 68 65 | wer.ICMP.echo.requests..When.the |
| 1527e0 | 20 63 6f 6d 6d 61 6e 64 20 61 62 6f 76 65 20 69 73 20 73 65 74 2c 20 56 79 4f 53 20 77 69 6c 6c | .command.above.is.set,.VyOS.will |
| 152800 | 20 61 6e 73 77 65 72 20 6e 6f 20 49 43 4d 50 20 65 63 68 6f 20 72 65 71 75 65 73 74 20 61 64 64 | .answer.no.ICMP.echo.request.add |
| 152820 | 72 65 73 73 65 64 20 74 6f 20 69 74 73 65 6c 66 20 61 74 20 61 6c 6c 2c 20 6e 6f 20 6d 61 74 74 | ressed.to.itself.at.all,.no.matt |
| 152840 | 65 72 20 77 68 65 72 65 20 69 74 20 63 6f 6d 65 73 20 66 72 6f 6d 20 6f 72 20 77 68 65 74 68 65 | er.where.it.comes.from.or.whethe |
| 152860 | 72 20 6d 6f 72 65 20 73 70 65 63 69 66 69 63 20 72 75 6c 65 73 20 61 72 65 20 62 65 69 6e 67 20 | r.more.specific.rules.are.being. |
| 152880 | 61 70 70 6c 69 65 64 20 74 6f 20 61 63 63 65 70 74 20 74 68 65 6d 2e 00 57 68 65 6e 20 74 68 65 | applied.to.accept.them..When.the |
| 1528a0 | 20 76 72 72 70 20 67 72 6f 75 70 20 69 73 20 61 20 6d 65 6d 62 65 72 20 6f 66 20 74 68 65 20 73 | .vrrp.group.is.a.member.of.the.s |
| 1528c0 | 79 6e 63 20 67 72 6f 75 70 20 77 69 6c 6c 20 75 73 65 20 6f 6e 6c 79 20 74 68 65 20 73 79 6e 63 | ync.group.will.use.only.the.sync |
| 1528e0 | 20 67 72 6f 75 70 20 68 65 61 6c 74 68 20 63 68 65 63 6b 20 73 63 72 69 70 74 2e 20 54 68 69 73 | .group.health.check.script..This |
| 152900 | 20 65 78 61 6d 70 6c 65 20 73 68 6f 77 73 20 68 6f 77 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 | .example.shows.how.to.configure. |
| 152920 | 69 74 20 66 6f 72 20 74 68 65 20 73 79 6e 63 20 67 72 6f 75 70 3a 00 57 68 65 6e 20 74 69 6d 65 | it.for.the.sync.group:.When.time |
| 152940 | 73 74 61 6d 70 69 6e 67 20 69 73 20 65 6e 61 62 6c 65 64 20 6f 6e 20 61 6e 20 69 6e 74 65 72 66 | stamping.is.enabled.on.an.interf |
| 152960 | 61 63 65 2c 20 63 68 72 6f 6e 79 27 73 20 64 65 66 61 75 6c 74 20 62 65 68 61 76 69 6f 72 20 69 | ace,.chrony's.default.behavior.i |
| 152980 | 73 20 74 6f 20 74 72 79 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 69 6e 74 65 72 66 | s.to.try.to.configure.the.interf |
| 1529a0 | 61 63 65 20 74 6f 20 6f 6e 6c 79 20 74 69 6d 65 73 74 61 6d 70 20 4e 54 50 20 70 61 63 6b 65 74 | ace.to.only.timestamp.NTP.packet |
| 1529c0 | 73 2e 20 49 66 20 74 68 69 73 20 6d 6f 64 65 20 69 73 20 6e 6f 74 20 73 75 70 70 6f 72 74 65 64 | s..If.this.mode.is.not.supported |
| 1529e0 | 2c 20 63 68 72 6f 6e 79 20 77 69 6c 6c 20 61 74 74 65 6d 70 74 20 74 6f 20 73 65 74 20 69 74 20 | ,.chrony.will.attempt.to.set.it. |
| 152a00 | 74 6f 20 74 69 6d 65 73 74 61 6d 70 20 61 6c 6c 20 70 61 63 6b 65 74 73 2e 20 49 66 20 6e 65 69 | to.timestamp.all.packets..If.nei |
| 152a20 | 74 68 65 72 20 6f 70 74 69 6f 6e 20 69 73 20 73 75 70 70 6f 72 74 65 64 20 28 65 2e 67 2e 20 74 | ther.option.is.supported.(e.g..t |
| 152a40 | 68 65 20 4e 49 43 20 63 61 6e 20 6f 6e 6c 79 20 74 69 6d 65 73 74 61 6d 70 20 72 65 63 65 69 76 | he.NIC.can.only.timestamp.receiv |
| 152a60 | 65 64 20 50 54 50 20 70 61 63 6b 65 74 73 29 2c 20 63 68 72 6f 6e 79 20 77 69 6c 6c 20 6c 65 76 | ed.PTP.packets),.chrony.will.lev |
| 152a80 | 65 72 61 67 65 20 74 69 6d 65 73 74 61 6d 70 69 6e 67 20 6f 6e 20 74 72 61 6e 73 6d 69 74 74 65 | erage.timestamping.on.transmitte |
| 152aa0 | 64 20 70 61 63 6b 65 74 73 20 6f 6e 6c 79 2c 20 77 68 69 63 68 20 73 74 69 6c 6c 20 70 72 6f 76 | d.packets.only,.which.still.prov |
| 152ac0 | 69 64 65 73 20 73 6f 6d 65 20 62 65 6e 65 66 69 74 2e 00 57 68 65 6e 20 75 73 69 6e 67 20 44 48 | ides.some.benefit..When.using.DH |
| 152ae0 | 43 50 20 74 6f 20 72 65 74 72 69 65 76 65 20 49 50 76 34 20 61 64 64 72 65 73 73 20 61 6e 64 20 | CP.to.retrieve.IPv4.address.and. |
| 152b00 | 69 66 20 6c 6f 63 61 6c 20 63 75 73 74 6f 6d 69 7a 61 74 69 6f 6e 73 20 61 72 65 20 6e 65 65 64 | if.local.customizations.are.need |
| 152b20 | 65 64 2c 20 74 68 65 79 20 73 68 6f 75 6c 64 20 62 65 20 70 6f 73 73 69 62 6c 65 20 75 73 69 6e | ed,.they.should.be.possible.usin |
| 152b40 | 67 20 74 68 65 20 65 6e 74 65 72 20 61 6e 64 20 65 78 69 74 20 68 6f 6f 6b 73 20 70 72 6f 76 69 | g.the.enter.and.exit.hooks.provi |
| 152b60 | 64 65 64 2e 20 54 68 65 20 68 6f 6f 6b 20 64 69 72 73 20 61 72 65 3a 00 57 68 65 6e 20 75 73 69 | ded..The.hook.dirs.are:.When.usi |
| 152b80 | 6e 67 20 45 56 45 2d 4e 47 20 74 6f 20 6c 61 62 20 74 68 69 73 20 65 6e 76 69 72 6f 6e 6d 65 6e | ng.EVE-NG.to.lab.this.environmen |
| 152ba0 | 74 20 65 6e 73 75 72 65 20 79 6f 75 20 61 72 65 20 75 73 69 6e 67 20 65 31 30 30 30 20 61 73 20 | t.ensure.you.are.using.e1000.as. |
| 152bc0 | 74 68 65 20 64 65 73 69 72 65 64 20 64 72 69 76 65 72 20 66 6f 72 20 79 6f 75 72 20 56 79 4f 53 | the.desired.driver.for.your.VyOS |
| 152be0 | 20 6e 65 74 77 6f 72 6b 20 69 6e 74 65 72 66 61 63 65 73 2e 20 57 68 65 6e 20 75 73 69 6e 67 20 | .network.interfaces..When.using. |
| 152c00 | 74 68 65 20 72 65 67 75 6c 61 72 20 76 69 72 74 69 6f 20 6e 65 74 77 6f 72 6b 20 64 72 69 76 65 | the.regular.virtio.network.drive |
| 152c20 | 72 20 6e 6f 20 4c 41 43 50 20 50 44 55 73 20 77 69 6c 6c 20 62 65 20 73 65 6e 74 20 62 79 20 56 | r.no.LACP.PDUs.will.be.sent.by.V |
| 152c40 | 79 4f 53 20 74 68 75 73 20 74 68 65 20 70 6f 72 74 2d 63 68 61 6e 6e 65 6c 20 77 69 6c 6c 20 6e | yOS.thus.the.port-channel.will.n |
| 152c60 | 65 76 65 72 20 62 65 63 6f 6d 65 20 61 63 74 69 76 65 21 00 57 68 65 6e 20 75 73 69 6e 67 20 4e | ever.become.active!.When.using.N |
| 152c80 | 41 54 20 66 6f 72 20 61 20 6c 61 72 67 65 20 6e 75 6d 62 65 72 20 6f 66 20 68 6f 73 74 20 73 79 | AT.for.a.large.number.of.host.sy |
| 152ca0 | 73 74 65 6d 73 20 69 74 20 72 65 63 6f 6d 6d 65 6e 64 65 64 20 74 68 61 74 20 61 20 6d 69 6e 69 | stems.it.recommended.that.a.mini |
| 152cc0 | 6d 75 6d 20 6f 66 20 31 20 49 50 20 61 64 64 72 65 73 73 20 69 73 20 75 73 65 64 20 74 6f 20 4e | mum.of.1.IP.address.is.used.to.N |
| 152ce0 | 41 54 20 65 76 65 72 79 20 32 35 36 20 68 6f 73 74 20 73 79 73 74 65 6d 73 2e 20 54 68 69 73 20 | AT.every.256.host.systems..This. |
| 152d00 | 69 73 20 64 75 65 20 74 6f 20 74 68 65 20 6c 69 6d 69 74 20 6f 66 20 36 35 2c 30 30 30 20 70 6f | is.due.to.the.limit.of.65,000.po |
| 152d20 | 72 74 20 6e 75 6d 62 65 72 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 75 6e 69 71 75 65 20 | rt.numbers.available.for.unique. |
| 152d40 | 74 72 61 6e 73 6c 61 74 69 6f 6e 73 20 61 6e 64 20 61 20 72 65 73 65 72 76 69 6e 67 20 61 6e 20 | translations.and.a.reserving.an. |
| 152d60 | 61 76 65 72 61 67 65 20 6f 66 20 32 30 30 2d 33 30 30 20 73 65 73 73 69 6f 6e 73 20 70 65 72 20 | average.of.200-300.sessions.per. |
| 152d80 | 68 6f 73 74 20 73 79 73 74 65 6d 2e 00 57 68 65 6e 20 75 73 69 6e 67 20 4e 41 54 20 66 6f 72 20 | host.system..When.using.NAT.for. |
| 152da0 | 61 20 6c 61 72 67 65 20 6e 75 6d 62 65 72 20 6f 66 20 68 6f 73 74 20 73 79 73 74 65 6d 73 20 69 | a.large.number.of.host.systems.i |
| 152dc0 | 74 20 72 65 63 6f 6d 6d 65 6e 64 65 64 20 74 68 61 74 20 61 20 6d 69 6e 69 6d 75 6d 20 6f 66 20 | t.recommended.that.a.minimum.of. |
| 152de0 | 31 20 49 50 20 61 64 64 72 65 73 73 20 69 73 20 75 73 65 64 20 74 6f 20 4e 41 54 20 65 76 65 72 | 1.IP.address.is.used.to.NAT.ever |
| 152e00 | 79 20 32 35 36 20 70 72 69 76 61 74 65 20 68 6f 73 74 20 73 79 73 74 65 6d 73 2e 20 54 68 69 73 | y.256.private.host.systems..This |
| 152e20 | 20 69 73 20 64 75 65 20 74 6f 20 74 68 65 20 6c 69 6d 69 74 20 6f 66 20 36 35 2c 30 30 30 20 70 | .is.due.to.the.limit.of.65,000.p |
| 152e40 | 6f 72 74 20 6e 75 6d 62 65 72 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 75 6e 69 71 75 65 | ort.numbers.available.for.unique |
| 152e60 | 20 74 72 61 6e 73 6c 61 74 69 6f 6e 73 20 61 6e 64 20 61 20 72 65 73 65 72 76 69 6e 67 20 61 6e | .translations.and.a.reserving.an |
| 152e80 | 20 61 76 65 72 61 67 65 20 6f 66 20 32 30 30 2d 33 30 30 20 73 65 73 73 69 6f 6e 73 20 70 65 72 | .average.of.200-300.sessions.per |
| 152ea0 | 20 68 6f 73 74 20 73 79 73 74 65 6d 2e 00 57 68 65 6e 20 75 73 69 6e 67 20 53 53 48 2c 20 6b 6e | .host.system..When.using.SSH,.kn |
| 152ec0 | 6f 77 6e 2d 68 6f 73 74 73 2d 66 69 6c 65 2c 20 70 72 69 76 61 74 65 2d 6b 65 79 2d 66 69 6c 65 | own-hosts-file,.private-key-file |
| 152ee0 | 20 61 6e 64 20 70 75 62 6c 69 63 2d 6b 65 79 2d 66 69 6c 65 20 61 72 65 20 6d 61 6e 64 61 74 6f | .and.public-key-file.are.mandato |
| 152f00 | 72 79 20 6f 70 74 69 6f 6e 73 2e 00 57 68 65 6e 20 75 73 69 6e 67 20 53 53 48 2c 20 70 72 69 76 | ry.options..When.using.SSH,.priv |
| 152f20 | 61 74 65 2d 6b 65 79 2d 66 69 6c 65 20 61 6e 64 20 70 75 62 6c 69 63 2d 6b 65 79 2d 66 69 6c 65 | ate-key-file.and.public-key-file |
| 152f40 | 20 61 72 65 20 6d 61 6e 64 61 74 6f 72 79 20 6f 70 74 69 6f 6e 73 2e 00 57 68 65 6e 20 75 73 69 | .are.mandatory.options..When.usi |
| 152f60 | 6e 67 20 54 69 6d 65 2d 62 61 73 65 64 20 6f 6e 65 2d 74 69 6d 65 20 70 61 73 73 77 6f 72 64 20 | ng.Time-based.one-time.password. |
| 152f80 | 28 54 4f 54 50 29 20 28 4f 54 50 20 48 4f 54 50 2d 74 69 6d 65 29 2c 20 62 65 20 73 75 72 65 20 | (TOTP).(OTP.HOTP-time),.be.sure. |
| 152fa0 | 74 68 61 74 20 74 68 65 20 74 69 6d 65 20 6f 6e 20 74 68 65 20 73 65 72 76 65 72 20 61 6e 64 20 | that.the.time.on.the.server.and. |
| 152fc0 | 74 68 65 20 4f 54 50 20 74 6f 6b 65 6e 20 67 65 6e 65 72 61 74 6f 72 20 61 72 65 20 73 79 6e 63 | the.OTP.token.generator.are.sync |
| 152fe0 | 68 72 6f 6e 69 7a 65 64 20 62 79 20 4e 54 50 00 57 68 65 6e 20 75 73 69 6e 67 20 73 69 74 65 2d | hronized.by.NTP.When.using.site- |
| 153000 | 74 6f 2d 73 69 74 65 20 49 50 73 65 63 20 77 69 74 68 20 56 54 49 20 69 6e 74 65 72 66 61 63 65 | to-site.IPsec.with.VTI.interface |
| 153020 | 73 2c 20 62 65 20 73 75 72 65 20 74 6f 20 64 69 73 61 62 6c 65 20 72 6f 75 74 65 20 61 75 74 6f | s,.be.sure.to.disable.route.auto |
| 153040 | 69 6e 73 74 61 6c 6c 00 57 68 65 6e 20 75 73 69 6e 67 20 74 68 65 20 49 50 76 36 20 70 72 6f 74 | install.When.using.the.IPv6.prot |
| 153060 | 6f 63 6f 6c 2c 20 4d 52 55 20 6d 75 73 74 20 62 65 20 61 74 20 6c 65 61 73 74 20 31 32 38 30 20 | ocol,.MRU.must.be.at.least.1280. |
| 153080 | 62 79 74 65 73 2e 00 57 68 65 6e 20 75 74 69 6c 69 7a 69 6e 67 20 56 79 4f 53 20 69 6e 20 61 6e | bytes..When.utilizing.VyOS.in.an |
| 1530a0 | 20 65 6e 76 69 72 6f 6e 6d 65 6e 74 20 77 69 74 68 20 41 72 69 73 74 61 20 67 65 61 72 20 79 6f | .environment.with.Arista.gear.yo |
| 1530c0 | 75 20 63 61 6e 20 75 73 65 20 74 68 69 73 20 62 6c 75 65 20 70 72 69 6e 74 20 61 73 20 61 6e 20 | u.can.use.this.blue.print.as.an. |
| 1530e0 | 69 6e 69 74 69 61 6c 20 73 65 74 75 70 20 74 6f 20 67 65 74 20 61 6e 20 4c 41 43 50 20 62 6f 6e | initial.setup.to.get.an.LACP.bon |
| 153100 | 64 20 2f 20 70 6f 72 74 2d 63 68 61 6e 6e 65 6c 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 62 65 74 | d./.port-channel.operational.bet |
| 153120 | 77 65 65 6e 20 74 68 6f 73 65 20 74 77 6f 20 64 65 76 69 63 65 73 2e 00 57 68 65 72 65 20 62 6f | ween.those.two.devices..Where.bo |
| 153140 | 74 68 20 72 6f 75 74 65 73 20 77 65 72 65 20 72 65 63 65 69 76 65 64 20 66 72 6f 6d 20 65 42 47 | th.routes.were.received.from.eBG |
| 153160 | 50 20 70 65 65 72 73 2c 20 74 68 65 6e 20 70 72 65 66 65 72 20 74 68 65 20 72 6f 75 74 65 20 77 | P.peers,.then.prefer.the.route.w |
| 153180 | 68 69 63 68 20 69 73 20 61 6c 72 65 61 64 79 20 73 65 6c 65 63 74 65 64 2e 20 4e 6f 74 65 20 74 | hich.is.already.selected..Note.t |
| 1531a0 | 68 61 74 20 74 68 69 73 20 63 68 65 63 6b 20 69 73 20 6e 6f 74 20 61 70 70 6c 69 65 64 20 69 66 | hat.this.check.is.not.applied.if |
| 1531c0 | 20 3a 63 66 67 63 6d 64 3a 60 62 67 70 20 62 65 73 74 70 61 74 68 20 63 6f 6d 70 61 72 65 2d 72 | .:cfgcmd:`bgp.bestpath.compare-r |
| 1531e0 | 6f 75 74 65 72 69 64 60 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 2e 20 54 68 69 73 20 63 68 65 | outerid`.is.configured..This.che |
| 153200 | 63 6b 20 63 61 6e 20 70 72 65 76 65 6e 74 20 73 6f 6d 65 20 63 61 73 65 73 20 6f 66 20 6f 73 63 | ck.can.prevent.some.cases.of.osc |
| 153220 | 69 6c 6c 61 74 69 6f 6e 2e 00 57 68 65 72 65 20 66 69 72 65 77 61 6c 6c 20 62 61 73 65 20 63 68 | illation..Where.firewall.base.ch |
| 153240 | 61 69 6e 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 66 69 72 65 77 61 6c 6c 20 66 69 6c 74 65 72 | ain.to.configure.firewall.filter |
| 153260 | 69 6e 67 20 72 75 6c 65 73 20 66 6f 72 20 74 72 61 6e 73 69 74 20 74 72 61 66 66 69 63 20 69 73 | ing.rules.for.transit.traffic.is |
| 153280 | 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 66 6f 72 77 61 72 64 20 66 69 6c | .``set.firewall.ipv4.forward.fil |
| 1532a0 | 74 65 72 20 2e 2e 2e 60 60 2c 20 77 68 69 63 68 20 68 61 70 70 65 6e 73 20 69 6e 20 73 74 61 67 | ter....``,.which.happens.in.stag |
| 1532c0 | 65 20 35 2c 20 68 69 67 68 6c 69 67 68 74 65 64 20 77 69 74 68 20 72 65 64 20 63 6f 6c 6f 72 2e | e.5,.highlighted.with.red.color. |
| 1532e0 | 00 57 68 65 72 65 20 66 69 72 65 77 61 6c 6c 20 62 61 73 65 20 63 68 61 69 6e 20 74 6f 20 63 6f | .Where.firewall.base.chain.to.co |
| 153300 | 6e 66 69 67 75 72 65 20 66 69 72 65 77 61 6c 6c 20 66 69 6c 74 65 72 69 6e 67 20 72 75 6c 65 73 | nfigure.firewall.filtering.rules |
| 153320 | 20 66 6f 72 20 74 72 61 6e 73 69 74 20 74 72 61 66 66 69 63 20 69 73 20 60 60 73 65 74 20 66 69 | .for.transit.traffic.is.``set.fi |
| 153340 | 72 65 77 61 6c 6c 20 69 70 76 34 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 | rewall.ipv4.forward.filter....`` |
| 153360 | 2c 20 77 68 69 63 68 20 68 61 70 70 65 6e 73 20 69 6e 20 73 74 61 67 65 20 35 2c 20 68 69 67 68 | ,.which.happens.in.stage.5,.high |
| 153380 | 6c 69 67 68 74 65 6e 65 64 20 77 69 74 68 20 72 65 64 20 63 6f 6c 6f 72 2e 00 57 68 65 72 65 20 | lightened.with.red.color..Where. |
| 1533a0 | 66 69 72 65 77 61 6c 6c 20 62 61 73 65 20 63 68 61 69 6e 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 | firewall.base.chain.to.configure |
| 1533c0 | 20 66 69 72 65 77 61 6c 6c 20 66 69 6c 74 65 72 69 6e 67 20 72 75 6c 65 73 20 66 6f 72 20 74 72 | .firewall.filtering.rules.for.tr |
| 1533e0 | 61 6e 73 69 74 20 74 72 61 66 66 69 63 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 | ansit.traffic.is.``set.firewall. |
| 153400 | 69 70 76 36 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2c 20 77 68 69 63 68 | ipv6.forward.filter....``,.which |
| 153420 | 20 68 61 70 70 65 6e 73 20 69 6e 20 73 74 61 67 65 20 35 2c 20 68 69 67 68 6c 69 67 68 74 65 64 | .happens.in.stage.5,.highlighted |
| 153440 | 20 77 69 74 68 20 72 65 64 20 63 6f 6c 6f 72 2e 00 57 68 65 72 65 20 66 69 72 65 77 61 6c 6c 20 | .with.red.color..Where.firewall. |
| 153460 | 62 61 73 65 20 63 68 61 69 6e 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 66 69 72 65 77 61 6c 6c | base.chain.to.configure.firewall |
| 153480 | 20 66 69 6c 74 65 72 69 6e 67 20 72 75 6c 65 73 20 66 6f 72 20 74 72 61 6e 73 69 74 20 74 72 61 | .filtering.rules.for.transit.tra |
| 1534a0 | 66 66 69 63 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 66 6f 72 77 | ffic.is.``set.firewall.ipv6.forw |
| 1534c0 | 61 72 64 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2c 20 77 68 69 63 68 20 68 61 70 70 65 6e 73 20 | ard.filter....``,.which.happens. |
| 1534e0 | 69 6e 20 73 74 61 67 65 20 35 2c 20 68 69 67 68 6c 69 67 68 74 65 6e 65 64 20 77 69 74 68 20 72 | in.stage.5,.highlightened.with.r |
| 153500 | 65 64 20 63 6f 6c 6f 72 2e 00 57 68 65 72 65 20 72 6f 75 74 65 73 20 77 69 74 68 20 61 20 4d 45 | ed.color..Where.routes.with.a.ME |
| 153520 | 44 20 77 65 72 65 20 72 65 63 65 69 76 65 64 20 66 72 6f 6d 20 74 68 65 20 73 61 6d 65 20 41 53 | D.were.received.from.the.same.AS |
| 153540 | 2c 20 70 72 65 66 65 72 20 74 68 65 20 72 6f 75 74 65 20 77 69 74 68 20 74 68 65 20 6c 6f 77 65 | ,.prefer.the.route.with.the.lowe |
| 153560 | 73 74 20 4d 45 44 2e 00 57 68 65 72 65 2c 20 6d 61 69 6e 20 6b 65 79 20 77 6f 72 64 73 20 61 6e | st.MED..Where,.main.key.words.an |
| 153580 | 64 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 70 61 74 68 73 20 74 68 61 74 20 6e 65 65 64 73 | d.configuration.paths.that.needs |
| 1535a0 | 20 74 6f 20 62 65 20 75 6e 64 65 72 73 74 6f 6f 64 3a 00 57 68 65 74 68 65 72 20 74 6f 20 61 63 | .to.be.understood:.Whether.to.ac |
| 1535c0 | 63 65 70 74 20 44 41 44 20 28 44 75 70 6c 69 63 61 74 65 20 41 64 64 72 65 73 73 20 44 65 74 65 | cept.DAD.(Duplicate.Address.Dete |
| 1535e0 | 63 74 69 6f 6e 29 2e 00 57 68 69 63 68 20 67 65 6e 65 72 61 74 65 73 20 74 68 65 20 66 6f 6c 6c | ction)..Which.generates.the.foll |
| 153600 | 6f 77 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 00 57 68 69 63 68 20 72 65 73 75 6c | owing.configuration:.Which.resul |
| 153620 | 74 73 20 69 6e 20 61 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 66 3a 00 57 68 69 63 68 20 | ts.in.a.configuration.of:.Which. |
| 153640 | 77 6f 75 6c 64 20 67 65 6e 65 72 61 74 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 4e 41 54 | would.generate.the.following.NAT |
| 153660 | 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 00 57 68 69 6c | .destination.configuration:.Whil |
| 153680 | 65 20 2a 2a 6e 65 74 77 6f 72 6b 20 67 72 6f 75 70 73 2a 2a 20 61 63 63 65 70 74 20 49 50 20 6e | e.**network.groups**.accept.IP.n |
| 1536a0 | 65 74 77 6f 72 6b 73 20 69 6e 20 43 49 44 52 20 6e 6f 74 61 74 69 6f 6e 2c 20 73 70 65 63 69 66 | etworks.in.CIDR.notation,.specif |
| 1536c0 | 69 63 20 49 50 20 61 64 64 72 65 73 73 65 73 20 63 61 6e 20 62 65 20 61 64 64 65 64 20 61 73 20 | ic.IP.addresses.can.be.added.as. |
| 1536e0 | 61 20 33 32 2d 62 69 74 20 70 72 65 66 69 78 2e 20 49 66 20 79 6f 75 20 66 6f 72 65 73 65 65 20 | a.32-bit.prefix..If.you.foresee. |
| 153700 | 74 68 65 20 6e 65 65 64 20 74 6f 20 61 64 64 20 61 20 6d 69 78 20 6f 66 20 61 64 64 72 65 73 73 | the.need.to.add.a.mix.of.address |
| 153720 | 65 73 20 61 6e 64 20 6e 65 74 77 6f 72 6b 73 2c 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 67 72 6f | es.and.networks,.the.network.gro |
| 153740 | 75 70 20 69 73 20 72 65 63 6f 6d 6d 65 6e 64 65 64 2e 00 57 68 69 6c 65 20 2a 2a 6e 65 74 77 6f | up.is.recommended..While.**netwo |
| 153760 | 72 6b 20 67 72 6f 75 70 73 2a 2a 20 61 63 63 65 70 74 20 49 50 20 6e 65 74 77 6f 72 6b 73 20 69 | rk.groups**.accept.IP.networks.i |
| 153780 | 6e 20 43 49 44 52 20 6e 6f 74 61 74 69 6f 6e 2c 20 73 70 65 63 69 66 69 63 20 49 50 20 61 64 64 | n.CIDR.notation,.specific.IP.add |
| 1537a0 | 72 65 73 73 65 73 20 63 61 6e 20 62 65 20 61 64 64 65 64 20 61 73 20 61 20 33 32 2d 62 69 74 20 | resses.can.be.added.as.a.32-bit. |
| 1537c0 | 70 72 65 66 69 78 2e 20 49 66 20 79 6f 75 20 66 6f 72 65 73 65 65 20 74 68 65 20 6e 65 65 64 20 | prefix..If.you.foresee.the.need. |
| 1537e0 | 74 6f 20 61 64 64 20 61 20 6d 69 78 20 6f 66 20 61 64 64 72 65 73 73 65 73 20 61 6e 64 20 6e 65 | to.add.a.mix.of.addresses.and.ne |
| 153800 | 74 77 6f 72 6b 73 2c 20 74 68 65 6e 20 61 20 6e 65 74 77 6f 72 6b 20 67 72 6f 75 70 20 69 73 20 | tworks,.then.a.network.group.is. |
| 153820 | 72 65 63 6f 6d 6d 65 6e 64 65 64 2e 00 57 68 69 6c 65 20 6d 61 6e 79 20 61 72 65 20 61 77 61 72 | recommended..While.many.are.awar |
| 153840 | 65 20 6f 66 20 4f 70 65 6e 56 50 4e 20 61 73 20 61 20 43 6c 69 65 6e 74 20 56 50 4e 20 73 6f 6c | e.of.OpenVPN.as.a.Client.VPN.sol |
| 153860 | 75 74 69 6f 6e 2c 20 69 74 20 69 73 20 6f 66 74 65 6e 20 6f 76 65 72 6c 6f 6f 6b 65 64 20 61 73 | ution,.it.is.often.overlooked.as |
| 153880 | 20 61 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 56 50 4e 20 73 6f 6c 75 74 69 6f 6e 20 64 75 65 | .a.site-to-site.VPN.solution.due |
| 1538a0 | 20 74 6f 20 6c 61 63 6b 20 6f 66 20 73 75 70 70 6f 72 74 20 66 6f 72 20 74 68 69 73 20 6d 6f 64 | .to.lack.of.support.for.this.mod |
| 1538c0 | 65 20 69 6e 20 6d 61 6e 79 20 72 6f 75 74 65 72 20 70 6c 61 74 66 6f 72 6d 73 2e 00 57 68 69 6c | e.in.many.router.platforms..Whil |
| 1538e0 | 65 20 6e 6f 72 6d 61 6c 20 47 52 45 20 69 73 20 66 6f 72 20 6c 61 79 65 72 20 33 2c 20 47 52 45 | e.normal.GRE.is.for.layer.3,.GRE |
| 153900 | 54 41 50 20 69 73 20 66 6f 72 20 6c 61 79 65 72 20 32 2e 20 47 52 45 54 41 50 20 63 61 6e 20 65 | TAP.is.for.layer.2..GRETAP.can.e |
| 153920 | 6e 63 61 70 73 75 6c 61 74 65 20 45 74 68 65 72 6e 65 74 20 66 72 61 6d 65 73 2c 20 74 68 75 73 | ncapsulate.Ethernet.frames,.thus |
| 153940 | 20 69 74 20 63 61 6e 20 62 65 20 62 72 69 64 67 65 64 20 77 69 74 68 20 6f 74 68 65 72 20 69 6e | .it.can.be.bridged.with.other.in |
| 153960 | 74 65 72 66 61 63 65 73 20 74 6f 20 63 72 65 61 74 65 20 64 61 74 61 6c 69 6e 6b 20 6c 61 79 65 | terfaces.to.create.datalink.laye |
| 153980 | 72 20 73 65 67 6d 65 6e 74 73 20 74 68 61 74 20 73 70 61 6e 20 6d 75 6c 74 69 70 6c 65 20 72 65 | r.segments.that.span.multiple.re |
| 1539a0 | 6d 6f 74 65 20 73 69 74 65 73 2e 00 57 68 69 74 65 6c 69 73 74 20 6f 66 20 61 64 64 72 65 73 73 | mote.sites..Whitelist.of.address |
| 1539c0 | 65 73 20 61 6e 64 20 6e 65 74 77 6f 72 6b 73 2e 20 41 6c 77 61 79 73 20 61 6c 6c 6f 77 20 69 6e | es.and.networks..Always.allow.in |
| 1539e0 | 62 6f 75 6e 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 66 72 6f 6d 20 74 68 65 73 65 20 73 79 73 | bound.connections.from.these.sys |
| 153a00 | 74 65 6d 73 2e 00 57 69 46 69 2d 36 28 65 29 20 2d 20 38 30 32 2e 31 31 61 78 00 57 69 6c 6c 20 | tems..WiFi-6(e).-.802.11ax.Will. |
| 153a20 | 61 64 64 20 60 60 70 65 72 73 69 73 74 2d 6b 65 79 60 60 20 74 6f 20 74 68 65 20 67 65 6e 65 72 | add.``persist-key``.to.the.gener |
| 153a40 | 61 74 65 64 20 4f 70 65 6e 56 50 4e 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 20 50 6c 65 61 | ated.OpenVPN.configuration..Plea |
| 153a60 | 73 65 20 75 73 65 20 74 68 69 73 20 6f 6e 6c 79 20 61 73 20 6c 61 73 74 20 72 65 73 6f 72 74 20 | se.use.this.only.as.last.resort. |
| 153a80 | 2d 20 74 68 69 6e 67 73 20 6d 69 67 68 74 20 62 72 65 61 6b 20 61 6e 64 20 4f 70 65 6e 56 50 4e | -.things.might.break.and.OpenVPN |
| 153aa0 | 20 77 6f 6e 27 74 20 73 74 61 72 74 20 69 66 20 79 6f 75 20 70 61 73 73 20 69 6e 76 61 6c 69 64 | .won't.start.if.you.pass.invalid |
| 153ac0 | 20 6f 70 74 69 6f 6e 73 2f 73 79 6e 74 61 78 2e 00 57 69 6c 6c 20 61 64 64 20 60 60 70 65 72 73 | .options/syntax..Will.add.``pers |
| 153ae0 | 69 73 74 65 6e 74 2d 6b 65 79 60 60 20 61 74 20 74 68 65 20 65 6e 64 20 6f 66 20 74 68 65 20 67 | istent-key``.at.the.end.of.the.g |
| 153b00 | 65 6e 65 72 61 74 65 64 20 4f 70 65 6e 56 50 4e 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 20 | enerated.OpenVPN.configuration.. |
| 153b20 | 50 6c 65 61 73 65 20 75 73 65 20 74 68 69 73 20 6f 6e 6c 79 20 61 73 20 6c 61 73 74 20 72 65 73 | Please.use.this.only.as.last.res |
| 153b40 | 6f 72 74 20 2d 20 74 68 69 6e 67 73 20 6d 69 67 68 74 20 62 72 65 61 6b 20 61 6e 64 20 4f 70 65 | ort.-.things.might.break.and.Ope |
| 153b60 | 6e 56 50 4e 20 77 6f 6e 27 74 20 73 74 61 72 74 20 69 66 20 79 6f 75 20 70 61 73 73 20 69 6e 76 | nVPN.won't.start.if.you.pass.inv |
| 153b80 | 61 6c 69 64 20 6f 70 74 69 6f 6e 73 2f 73 79 6e 74 61 78 2e 00 57 69 6c 6c 20 61 64 64 20 60 60 | alid.options/syntax..Will.add.`` |
| 153ba0 | 70 75 73 68 20 22 6b 65 65 70 61 6c 69 76 65 20 31 20 31 30 22 60 60 20 74 6f 20 74 68 65 20 67 | push."keepalive.1.10"``.to.the.g |
| 153bc0 | 65 6e 65 72 61 74 65 64 20 4f 70 65 6e 56 50 4e 20 63 6f 6e 66 69 67 20 66 69 6c 65 2e 00 57 69 | enerated.OpenVPN.config.file..Wi |
| 153be0 | 6c 6c 20 61 64 64 20 60 60 72 6f 75 74 65 2d 75 70 20 22 2f 63 6f 6e 66 69 67 2f 61 75 74 68 2f | ll.add.``route-up."/config/auth/ |
| 153c00 | 74 75 6e 5f 75 70 2e 73 68 20 61 72 67 31 22 60 60 20 74 6f 20 74 68 65 20 67 65 6e 65 72 61 74 | tun_up.sh.arg1"``.to.the.generat |
| 153c20 | 65 64 20 4f 70 65 6e 56 50 4e 20 63 6f 6e 66 69 67 20 66 69 6c 65 2e 20 54 68 65 20 70 61 74 68 | ed.OpenVPN.config.file..The.path |
| 153c40 | 20 61 6e 64 20 61 72 67 75 6d 65 6e 74 73 20 6e 65 65 64 20 74 6f 20 62 65 20 73 69 6e 67 6c 65 | .and.arguments.need.to.be.single |
| 153c60 | 2d 20 6f 72 20 64 6f 75 62 6c 65 2d 71 75 6f 74 65 64 2e 00 57 69 6c 6c 20 62 65 20 72 65 63 6f | -.or.double-quoted..Will.be.reco |
| 153c80 | 72 64 65 64 20 6f 6e 6c 79 20 70 61 63 6b 65 74 73 2f 66 6c 6f 77 73 20 6f 6e 20 2a 2a 69 6e 63 | rded.only.packets/flows.on.**inc |
| 153ca0 | 6f 6d 69 6e 67 2a 2a 20 64 69 72 65 63 74 69 6f 6e 20 69 6e 20 63 6f 6e 66 69 67 75 72 65 64 20 | oming**.direction.in.configured. |
| 153cc0 | 69 6e 74 65 72 66 61 63 65 73 20 62 79 20 64 65 66 61 75 6c 74 2e 00 57 69 6c 6c 20 64 72 6f 70 | interfaces.by.default..Will.drop |
| 153ce0 | 20 60 3c 73 68 61 72 65 64 2d 6e 65 74 77 6f 72 6b 2d 6e 61 6d 65 3e 5f 60 20 66 72 6f 6d 20 63 | .`<shared-network-name>_`.from.c |
| 153d00 | 6c 69 65 6e 74 20 44 4e 53 20 72 65 63 6f 72 64 2c 20 75 73 69 6e 67 20 6f 6e 6c 79 20 74 68 65 | lient.DNS.record,.using.only.the |
| 153d20 | 20 68 6f 73 74 20 64 65 63 6c 61 72 61 74 69 6f 6e 20 6e 61 6d 65 20 61 6e 64 20 64 6f 6d 61 69 | .host.declaration.name.and.domai |
| 153d40 | 6e 3a 20 60 3c 68 6f 73 74 6e 61 6d 65 3e 2e 3c 64 6f 6d 61 69 6e 2d 6e 61 6d 65 3e 60 00 57 69 | n:.`<hostname>.<domain-name>`.Wi |
| 153d60 | 6e 64 6f 77 73 20 31 30 20 64 6f 65 73 20 6e 6f 74 20 61 6c 6c 6f 77 20 61 20 75 73 65 72 20 74 | ndows.10.does.not.allow.a.user.t |
| 153d80 | 6f 20 63 68 6f 6f 73 65 20 74 68 65 20 69 6e 74 65 67 72 69 74 79 20 61 6e 64 20 65 6e 63 72 79 | o.choose.the.integrity.and.encry |
| 153da0 | 70 74 69 6f 6e 20 63 69 70 68 65 72 73 20 75 73 69 6e 67 20 74 68 65 20 47 55 49 20 61 6e 64 20 | ption.ciphers.using.the.GUI.and. |
| 153dc0 | 69 74 20 75 73 65 73 20 73 6f 6d 65 20 6f 6c 64 65 72 20 70 72 6f 70 6f 73 61 6c 73 20 62 79 20 | it.uses.some.older.proposals.by. |
| 153de0 | 64 65 66 61 75 6c 74 2e 20 41 20 75 73 65 72 20 63 61 6e 20 6f 6e 6c 79 20 63 68 61 6e 67 65 20 | default..A.user.can.only.change. |
| 153e00 | 74 68 65 20 70 72 6f 70 6f 73 61 6c 73 20 6f 6e 20 74 68 65 20 63 6c 69 65 6e 74 20 73 69 64 65 | the.proposals.on.the.client.side |
| 153e20 | 20 62 79 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 74 68 65 20 49 50 53 65 63 20 63 6f 6e 6e 65 63 | .by.configuring.the.IPSec.connec |
| 153e40 | 74 69 6f 6e 20 70 72 6f 66 69 6c 65 20 76 69 61 20 50 6f 77 65 72 53 68 65 6c 6c 2e 00 57 69 6e | tion.profile.via.PowerShell..Win |
| 153e60 | 64 6f 77 73 20 49 6e 74 65 72 6e 65 74 20 4e 61 6d 65 20 53 65 72 76 69 63 65 20 28 57 49 4e 53 | dows.Internet.Name.Service.(WINS |
| 153e80 | 29 20 73 65 72 76 65 72 73 20 70 72 6f 70 61 67 61 74 65 64 20 74 6f 20 63 6c 69 65 6e 74 00 57 | ).servers.propagated.to.client.W |
| 153ea0 | 69 6e 64 6f 77 73 20 65 78 70 65 63 74 73 20 74 68 65 20 73 65 72 76 65 72 20 6e 61 6d 65 20 74 | indows.expects.the.server.name.t |
| 153ec0 | 6f 20 62 65 20 61 6c 73 6f 20 75 73 65 64 20 69 6e 20 74 68 65 20 73 65 72 76 65 72 27 73 20 63 | o.be.also.used.in.the.server's.c |
| 153ee0 | 65 72 74 69 66 69 63 61 74 65 20 63 6f 6d 6d 6f 6e 20 6e 61 6d 65 2c 20 73 6f 20 69 74 27 73 20 | ertificate.common.name,.so.it's. |
| 153f00 | 62 65 73 74 20 74 6f 20 75 73 65 20 74 68 69 73 20 44 4e 53 20 6e 61 6d 65 20 66 6f 72 20 79 6f | best.to.use.this.DNS.name.for.yo |
| 153f20 | 75 72 20 56 50 4e 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 57 69 72 65 47 75 61 72 64 00 57 69 72 | ur.VPN.connection..WireGuard.Wir |
| 153f40 | 65 47 75 61 72 64 20 43 6c 69 65 6e 74 20 51 52 20 63 6f 64 65 00 57 69 72 65 47 75 61 72 64 20 | eGuard.Client.QR.code.WireGuard. |
| 153f60 | 69 6e 74 65 72 66 61 63 65 20 69 74 73 65 6c 66 20 75 73 65 73 20 61 64 64 72 65 73 73 20 31 30 | interface.itself.uses.address.10 |
| 153f80 | 2e 31 2e 30 2e 31 2f 33 30 00 57 69 72 65 47 75 61 72 64 20 69 73 20 61 6e 20 65 78 74 72 65 6d | .1.0.1/30.WireGuard.is.an.extrem |
| 153fa0 | 65 6c 79 20 73 69 6d 70 6c 65 20 79 65 74 20 66 61 73 74 20 61 6e 64 20 6d 6f 64 65 72 6e 20 56 | ely.simple.yet.fast.and.modern.V |
| 153fc0 | 50 4e 20 74 68 61 74 20 75 74 69 6c 69 7a 65 73 20 73 74 61 74 65 2d 6f 66 2d 74 68 65 2d 61 72 | PN.that.utilizes.state-of-the-ar |
| 153fe0 | 74 20 63 72 79 70 74 6f 67 72 61 70 68 79 2e 20 53 65 65 20 68 74 74 70 73 3a 2f 2f 77 77 77 2e | t.cryptography..See.https://www. |
| 154000 | 77 69 72 65 67 75 61 72 64 2e 63 6f 6d 20 66 6f 72 20 6d 6f 72 65 20 69 6e 66 6f 72 6d 61 74 69 | wireguard.com.for.more.informati |
| 154020 | 6f 6e 2e 00 57 69 72 65 47 75 61 72 64 20 72 65 71 75 69 72 65 73 20 74 68 65 20 67 65 6e 65 72 | on..WireGuard.requires.the.gener |
| 154040 | 61 74 69 6f 6e 20 6f 66 20 61 20 6b 65 79 70 61 69 72 2c 20 77 68 69 63 68 20 69 6e 63 6c 75 64 | ation.of.a.keypair,.which.includ |
| 154060 | 65 73 20 61 20 70 72 69 76 61 74 65 20 6b 65 79 20 74 6f 20 64 65 63 72 79 70 74 20 69 6e 63 6f | es.a.private.key.to.decrypt.inco |
| 154080 | 6d 69 6e 67 20 74 72 61 66 66 69 63 2c 20 61 6e 64 20 61 20 70 75 62 6c 69 63 20 6b 65 79 20 66 | ming.traffic,.and.a.public.key.f |
| 1540a0 | 6f 72 20 70 65 65 72 28 73 29 20 74 6f 20 65 6e 63 72 79 70 74 20 74 72 61 66 66 69 63 2e 00 57 | or.peer(s).to.encrypt.traffic..W |
| 1540c0 | 69 72 65 6c 65 73 73 20 63 68 61 6e 6e 65 6c 20 60 60 31 31 60 60 20 66 6f 72 20 32 2e 34 47 48 | ireless.channel.``11``.for.2.4GH |
| 1540e0 | 7a 00 57 69 72 65 6c 65 73 73 20 63 68 61 6e 6e 65 6c 20 60 60 31 60 60 00 57 69 72 65 6c 65 73 | z.Wireless.channel.``1``.Wireles |
| 154100 | 73 20 63 68 61 6e 6e 65 6c 20 60 60 35 60 60 20 66 6f 72 20 36 47 48 7a 00 57 69 72 65 6c 65 73 | s.channel.``5``.for.6GHz.Wireles |
| 154120 | 73 20 64 65 76 69 63 65 20 74 79 70 65 20 66 6f 72 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 | s.device.type.for.this.interface |
| 154140 | 00 57 69 72 65 6c 65 73 73 20 68 61 72 64 77 61 72 65 20 64 65 76 69 63 65 20 75 73 65 64 20 61 | .Wireless.hardware.device.used.a |
| 154160 | 73 20 75 6e 64 65 72 6c 61 79 20 72 61 64 69 6f 2e 00 57 69 72 65 6c 65 73 73 20 6f 70 74 69 6f | s.underlay.radio..Wireless.optio |
| 154180 | 6e 73 00 57 69 72 65 6c 65 73 73 20 6f 70 74 69 6f 6e 73 20 28 53 74 61 74 69 6f 6e 2f 43 6c 69 | ns.Wireless.options.(Station/Cli |
| 1541a0 | 65 6e 74 29 00 57 69 72 65 6c 65 73 73 4d 6f 64 65 6d 20 28 57 57 41 4e 29 20 6f 70 74 69 6f 6e | ent).WirelessModem.(WWAN).option |
| 1541c0 | 73 00 57 69 74 68 20 56 79 4f 53 20 62 65 69 6e 67 20 62 61 73 65 64 20 6f 6e 20 74 6f 70 20 6f | s.With.VyOS.being.based.on.top.o |
| 1541e0 | 66 20 4c 69 6e 75 78 20 61 6e 64 20 69 74 73 20 6b 65 72 6e 65 6c 2c 20 74 68 65 20 4e 65 74 66 | f.Linux.and.its.kernel,.the.Netf |
| 154200 | 69 6c 74 65 72 20 70 72 6f 6a 65 63 74 20 63 72 65 61 74 65 64 20 74 68 65 20 69 70 74 61 62 6c | ilter.project.created.the.iptabl |
| 154220 | 65 73 20 61 6e 64 20 6e 6f 77 20 74 68 65 20 73 75 63 63 65 73 73 6f 72 20 6e 66 74 61 62 6c 65 | es.and.now.the.successor.nftable |
| 154240 | 73 20 66 6f 72 20 74 68 65 20 4c 69 6e 75 78 20 6b 65 72 6e 65 6c 20 74 6f 20 77 6f 72 6b 20 64 | s.for.the.Linux.kernel.to.work.d |
| 154260 | 69 72 65 63 74 6c 79 20 6f 6e 20 74 68 65 20 64 61 74 61 20 66 6c 6f 77 73 2e 20 54 68 69 73 20 | irectly.on.the.data.flows..This. |
| 154280 | 6e 6f 77 20 65 78 74 65 6e 64 73 20 74 68 65 20 63 6f 6e 63 65 70 74 20 6f 66 20 7a 6f 6e 65 2d | now.extends.the.concept.of.zone- |
| 1542a0 | 62 61 73 65 64 20 73 65 63 75 72 69 74 79 20 74 6f 20 61 6c 6c 6f 77 20 66 6f 72 20 6d 61 6e 69 | based.security.to.allow.for.mani |
| 1542c0 | 70 75 6c 61 74 69 6e 67 20 74 68 65 20 64 61 74 61 20 61 74 20 6d 75 6c 74 69 70 6c 65 20 73 74 | pulating.the.data.at.multiple.st |
| 1542e0 | 61 67 65 73 20 6f 6e 63 65 20 61 63 63 65 70 74 65 64 20 62 79 20 74 68 65 20 6e 65 74 77 6f 72 | ages.once.accepted.by.the.networ |
| 154300 | 6b 20 69 6e 74 65 72 66 61 63 65 20 61 6e 64 20 74 68 65 20 64 72 69 76 65 72 20 62 65 66 6f 72 | k.interface.and.the.driver.befor |
| 154320 | 65 20 62 65 69 6e 67 20 68 61 6e 64 65 64 20 6f 66 66 20 74 6f 20 74 68 65 20 64 65 73 74 69 6e | e.being.handed.off.to.the.destin |
| 154340 | 61 74 69 6f 6e 20 28 65 2e 67 2e 20 61 20 77 65 62 20 73 65 72 76 65 72 20 4f 52 20 61 6e 6f 74 | ation.(e.g..a.web.server.OR.anot |
| 154360 | 68 65 72 20 64 65 76 69 63 65 29 2e 00 57 69 74 68 20 57 69 72 65 47 75 61 72 64 2c 20 61 20 52 | her.device)..With.WireGuard,.a.R |
| 154380 | 6f 61 64 20 57 61 72 72 69 6f 72 20 56 50 4e 20 63 6f 6e 66 69 67 20 69 73 20 73 69 6d 69 6c 61 | oad.Warrior.VPN.config.is.simila |
| 1543a0 | 72 20 74 6f 20 61 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 56 50 4e 2e 20 49 74 20 6a 75 73 74 | r.to.a.site-to-site.VPN..It.just |
| 1543c0 | 20 6c 61 63 6b 73 20 74 68 65 20 60 60 61 64 64 72 65 73 73 60 60 20 61 6e 64 20 60 60 70 6f 72 | .lacks.the.``address``.and.``por |
| 1543e0 | 74 60 60 20 73 74 61 74 65 6d 65 6e 74 73 2e 00 57 69 74 68 20 74 68 65 20 60 60 6e 61 6d 65 2d | t``.statements..With.the.``name- |
| 154400 | 73 65 72 76 65 72 60 60 20 6f 70 74 69 6f 6e 20 73 65 74 20 74 6f 20 60 60 6e 6f 6e 65 60 60 2c | server``.option.set.to.``none``, |
| 154420 | 20 56 79 4f 53 20 77 69 6c 6c 20 69 67 6e 6f 72 65 20 74 68 65 20 6e 61 6d 65 73 65 72 76 65 72 | .VyOS.will.ignore.the.nameserver |
| 154440 | 73 20 79 6f 75 72 20 49 53 50 20 73 65 6e 64 73 20 79 6f 75 20 61 6e 64 20 74 68 75 73 20 79 6f | s.your.ISP.sends.you.and.thus.yo |
| 154460 | 75 20 63 61 6e 20 66 75 6c 6c 79 20 72 65 6c 79 20 6f 6e 20 74 68 65 20 6f 6e 65 73 20 79 6f 75 | u.can.fully.rely.on.the.ones.you |
| 154480 | 20 68 61 76 65 20 63 6f 6e 66 69 67 75 72 65 64 20 73 74 61 74 69 63 61 6c 6c 79 2e 00 57 69 74 | .have.configured.statically..Wit |
| 1544a0 | 68 20 74 68 65 20 66 69 72 65 77 61 6c 6c 20 79 6f 75 20 63 61 6e 20 73 65 74 20 72 75 6c 65 73 | h.the.firewall.you.can.set.rules |
| 1544c0 | 20 74 6f 20 61 63 63 65 70 74 2c 20 64 72 6f 70 20 6f 72 20 72 65 6a 65 63 74 20 49 43 4d 50 20 | .to.accept,.drop.or.reject.ICMP. |
| 1544e0 | 69 6e 2c 20 6f 75 74 20 6f 72 20 6c 6f 63 61 6c 20 74 72 61 66 66 69 63 2e 20 59 6f 75 20 63 61 | in,.out.or.local.traffic..You.ca |
| 154500 | 6e 20 61 6c 73 6f 20 75 73 65 20 74 68 65 20 67 65 6e 65 72 61 6c 20 2a 2a 66 69 72 65 77 61 6c | n.also.use.the.general.**firewal |
| 154520 | 6c 20 61 6c 6c 2d 70 69 6e 67 2a 2a 20 63 6f 6d 6d 61 6e 64 2e 20 54 68 69 73 20 63 6f 6d 6d 61 | l.all-ping**.command..This.comma |
| 154540 | 6e 64 20 61 66 66 65 63 74 73 20 6f 6e 6c 79 20 74 6f 20 4c 4f 43 41 4c 20 28 70 61 63 6b 65 74 | nd.affects.only.to.LOCAL.(packet |
| 154560 | 73 20 64 65 73 74 69 6e 65 64 20 66 6f 72 20 79 6f 75 72 20 56 79 4f 53 20 73 79 73 74 65 6d 29 | s.destined.for.your.VyOS.system) |
| 154580 | 2c 20 6e 6f 74 20 74 6f 20 49 4e 20 6f 72 20 4f 55 54 20 74 72 61 66 66 69 63 2e 00 57 69 74 68 | ,.not.to.IN.or.OUT.traffic..With |
| 1545a0 | 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 2c 20 79 6f 75 20 63 61 6e 20 73 70 65 63 69 66 79 20 68 | .this.command,.you.can.specify.h |
| 1545c0 | 6f 77 20 74 68 65 20 55 52 4c 20 70 61 74 68 20 73 68 6f 75 6c 64 20 62 65 20 6d 61 74 63 68 65 | ow.the.URL.path.should.be.matche |
| 1545e0 | 64 20 61 67 61 69 6e 73 74 20 69 6e 63 6f 6d 69 6e 67 20 72 65 71 75 65 73 74 73 2e 00 57 69 74 | d.against.incoming.requests..Wit |
| 154600 | 68 20 74 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2c 20 69 6e 20 6f 72 64 65 72 20 74 | h.this.configuration,.in.order.t |
| 154620 | 6f 20 67 65 74 20 73 73 68 20 61 63 63 65 73 73 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 2c 20 | o.get.ssh.access.to.the.router,. |
| 154640 | 74 68 65 20 75 73 65 72 20 6e 65 65 64 73 20 74 6f 3a 00 57 69 74 68 20 74 68 69 73 20 63 6f 6e | the.user.needs.to:.With.this.con |
| 154660 | 66 69 67 75 72 61 74 69 6f 6e 2c 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 67 65 74 20 73 73 68 20 | figuration,.in.order.to.get.ssh. |
| 154680 | 61 63 63 65 73 73 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 2c 20 75 73 65 72 20 6e 65 65 64 73 | access.to.the.router,.user.needs |
| 1546a0 | 20 74 6f 3a 00 57 69 74 68 20 7a 6f 6e 65 2d 62 61 73 65 64 20 66 69 72 65 77 61 6c 6c 73 20 61 | .to:.With.zone-based.firewalls.a |
| 1546c0 | 20 6e 65 77 20 63 6f 6e 63 65 70 74 20 77 61 73 20 69 6d 70 6c 65 6d 65 6e 74 65 64 2c 20 69 6e | .new.concept.was.implemented,.in |
| 1546e0 | 20 61 64 64 69 74 69 6f 6e 20 74 6f 20 74 68 65 20 73 74 61 6e 64 61 72 64 20 69 6e 20 61 6e 64 | .addition.to.the.standard.in.and |
| 154700 | 20 6f 75 74 20 74 72 61 66 66 69 63 20 66 6c 6f 77 73 2c 20 61 20 6c 6f 63 61 6c 20 66 6c 6f 77 | .out.traffic.flows,.a.local.flow |
| 154720 | 20 77 61 73 20 61 64 64 65 64 2e 20 54 68 69 73 20 6c 6f 63 61 6c 20 66 6c 6f 77 20 77 61 73 20 | .was.added..This.local.flow.was. |
| 154740 | 66 6f 72 20 74 72 61 66 66 69 63 20 6f 72 69 67 69 6e 61 74 69 6e 67 20 61 6e 64 20 64 65 73 74 | for.traffic.originating.and.dest |
| 154760 | 69 6e 65 64 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 2e 20 57 68 69 63 68 | ined.to.the.router.itself..Which |
| 154780 | 20 6d 65 61 6e 73 20 74 68 61 74 20 61 64 64 69 74 69 6f 6e 61 6c 20 72 75 6c 65 73 20 77 65 72 | .means.that.additional.rules.wer |
| 1547a0 | 65 20 72 65 71 75 69 72 65 64 20 74 6f 20 73 65 63 75 72 65 20 74 68 65 20 66 69 72 65 77 61 6c | e.required.to.secure.the.firewal |
| 1547c0 | 6c 20 69 74 73 65 6c 66 20 66 72 6f 6d 20 74 68 65 20 6e 65 74 77 6f 72 6b 2c 20 69 6e 20 61 64 | l.itself.from.the.network,.in.ad |
| 1547e0 | 64 69 74 69 6f 6e 20 74 6f 20 74 68 65 20 65 78 69 73 74 69 6e 67 20 69 6e 62 6f 75 6e 64 20 61 | dition.to.the.existing.inbound.a |
| 154800 | 6e 64 20 6f 75 74 62 6f 75 6e 64 20 72 75 6c 65 73 20 66 72 6f 6d 20 74 68 65 20 74 72 61 64 69 | nd.outbound.rules.from.the.tradi |
| 154820 | 74 69 6f 6e 61 6c 20 63 6f 6e 63 65 70 74 20 61 62 6f 76 65 2e 00 57 69 74 68 20 7a 6f 6e 65 2d | tional.concept.above..With.zone- |
| 154840 | 62 61 73 65 64 20 66 69 72 65 77 61 6c 6c 73 20 61 20 6e 65 77 20 63 6f 6e 63 65 70 74 20 77 61 | based.firewalls.a.new.concept.wa |
| 154860 | 73 20 69 6d 70 6c 65 6d 65 6e 74 65 64 2c 20 69 6e 20 61 64 64 69 74 69 6f 6e 20 74 6f 20 74 68 | s.implemented,.in.addition.to.th |
| 154880 | 65 20 73 74 61 6e 64 61 72 64 20 69 6e 20 61 6e 64 20 6f 75 74 20 74 72 61 66 66 69 63 20 66 6c | e.standard.in.and.out.traffic.fl |
| 1548a0 | 6f 77 73 2c 20 61 20 6c 6f 63 61 6c 20 66 6c 6f 77 20 77 61 73 20 61 64 64 65 64 2e 20 54 68 69 | ows,.a.local.flow.was.added..Thi |
| 1548c0 | 73 20 6c 6f 63 61 6c 20 77 61 73 20 66 6f 72 20 74 72 61 66 66 69 63 20 6f 72 69 67 69 6e 61 74 | s.local.was.for.traffic.originat |
| 1548e0 | 69 6e 67 20 61 6e 64 20 64 65 73 74 69 6e 65 64 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 20 69 | ing.and.destined.to.the.router.i |
| 154900 | 74 73 65 6c 66 2e 20 57 68 69 63 68 20 6d 65 61 6e 73 20 61 64 64 69 74 69 6f 6e 61 6c 20 72 75 | tself..Which.means.additional.ru |
| 154920 | 6c 65 73 20 77 65 72 65 20 72 65 71 75 69 72 65 64 20 74 6f 20 73 65 63 75 72 65 20 74 68 65 20 | les.were.required.to.secure.the. |
| 154940 | 66 69 72 65 77 61 6c 6c 20 69 74 73 65 6c 66 20 66 72 6f 6d 20 74 68 65 20 6e 65 74 77 6f 72 6b | firewall.itself.from.the.network |
| 154960 | 2c 20 69 6e 20 61 64 64 69 74 69 6f 6e 20 74 6f 20 74 68 65 20 65 78 69 73 74 69 6e 67 20 69 6e | ,.in.addition.to.the.existing.in |
| 154980 | 62 6f 75 6e 64 20 61 6e 64 20 6f 75 74 62 6f 75 6e 64 20 72 75 6c 65 73 20 66 72 6f 6d 20 74 68 | bound.and.outbound.rules.from.th |
| 1549a0 | 65 20 74 72 61 64 69 74 69 6f 6e 61 6c 20 63 6f 6e 63 65 70 74 20 61 62 6f 76 65 2e 00 57 69 74 | e.traditional.concept.above..Wit |
| 1549c0 | 68 20 7a 6f 6e 65 2d 62 61 73 65 64 20 66 69 72 65 77 61 6c 6c 73 20 61 20 6e 65 77 20 63 6f 6e | h.zone-based.firewalls.a.new.con |
| 1549e0 | 63 65 70 74 20 77 61 73 20 69 6d 70 6c 65 6d 65 6e 74 65 64 2c 20 69 6e 20 61 64 64 74 69 6f 6e | cept.was.implemented,.in.addtion |
| 154a00 | 20 74 6f 20 74 68 65 20 73 74 61 6e 64 61 72 64 20 69 6e 20 61 6e 64 20 6f 75 74 20 74 72 61 66 | .to.the.standard.in.and.out.traf |
| 154a20 | 66 69 63 20 66 6c 6f 77 73 2c 20 61 20 6c 6f 63 61 6c 20 66 6c 6f 77 20 77 61 73 20 61 64 64 65 | fic.flows,.a.local.flow.was.adde |
| 154a40 | 64 2e 20 54 68 69 73 20 6c 6f 63 61 6c 20 77 61 73 20 66 6f 72 20 74 72 61 66 66 69 63 20 6f 72 | d..This.local.was.for.traffic.or |
| 154a60 | 69 67 69 6e 61 74 69 6e 67 20 61 6e 64 20 64 65 73 74 69 6e 65 64 20 74 6f 20 74 68 65 20 72 6f | iginating.and.destined.to.the.ro |
| 154a80 | 75 74 65 72 20 69 74 73 65 6c 66 2e 20 57 68 69 63 68 20 6d 65 61 6e 73 20 61 64 64 69 74 69 6f | uter.itself..Which.means.additio |
| 154aa0 | 6e 61 6c 20 72 75 6c 65 73 20 77 65 72 65 20 72 65 71 75 69 72 65 64 20 74 6f 20 73 65 63 75 72 | nal.rules.were.required.to.secur |
| 154ac0 | 65 20 74 68 65 20 66 69 72 65 77 61 6c 6c 20 69 74 73 65 6c 66 20 66 72 6f 6d 20 74 68 65 20 6e | e.the.firewall.itself.from.the.n |
| 154ae0 | 65 74 77 6f 72 6b 2c 20 69 6e 20 61 64 64 69 74 69 6f 6e 20 74 6f 20 74 68 65 20 65 78 69 73 74 | etwork,.in.addition.to.the.exist |
| 154b00 | 69 6e 67 20 69 6e 62 6f 75 6e 64 20 61 6e 64 20 6f 75 74 62 6f 75 6e 64 20 72 75 6c 65 73 20 66 | ing.inbound.and.outbound.rules.f |
| 154b20 | 72 6f 6d 20 74 68 65 20 74 72 61 64 69 74 69 6f 6e 61 6c 20 63 6f 6e 63 65 70 74 20 61 62 6f 76 | rom.the.traditional.concept.abov |
| 154b40 | 65 2e 00 59 00 59 6f 75 20 61 70 70 6c 79 20 61 20 72 75 6c 65 2d 73 65 74 20 61 6c 77 61 79 73 | e..Y.You.apply.a.rule-set.always |
| 154b60 | 20 74 6f 20 61 20 7a 6f 6e 65 20 66 72 6f 6d 20 61 6e 20 6f 74 68 65 72 20 7a 6f 6e 65 2c 20 69 | .to.a.zone.from.an.other.zone,.i |
| 154b80 | 74 20 69 73 20 72 65 63 6f 6d 6d 65 6e 64 65 64 20 74 6f 20 63 72 65 61 74 65 20 6f 6e 65 20 72 | t.is.recommended.to.create.one.r |
| 154ba0 | 75 6c 65 2d 73 65 74 20 66 6f 72 20 65 61 63 68 20 7a 6f 6e 65 20 70 61 69 72 2e 00 59 6f 75 20 | ule-set.for.each.zone.pair..You. |
| 154bc0 | 61 72 65 20 61 62 6c 65 20 74 6f 20 73 65 74 20 70 6f 73 74 2d 6c 6f 67 69 6e 20 6f 72 20 70 72 | are.able.to.set.post-login.or.pr |
| 154be0 | 65 2d 6c 6f 67 69 6e 20 62 61 6e 6e 65 72 20 6d 65 73 73 61 67 65 73 20 74 6f 20 64 69 73 70 6c | e-login.banner.messages.to.displ |
| 154c00 | 61 79 20 63 65 72 74 61 69 6e 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 6f 72 20 74 68 69 73 20 | ay.certain.information.for.this. |
| 154c20 | 73 79 73 74 65 6d 2e 00 59 6f 75 20 61 72 65 20 62 65 20 61 62 6c 65 20 74 6f 20 64 6f 77 6e 6c | system..You.are.be.able.to.downl |
| 154c40 | 6f 61 64 20 74 68 65 20 66 69 6c 65 73 20 75 73 69 6e 67 20 53 43 50 2c 20 6f 6e 63 65 20 74 68 | oad.the.files.using.SCP,.once.th |
| 154c60 | 65 20 53 53 48 20 73 65 72 76 69 63 65 20 68 61 73 20 62 65 65 6e 20 61 63 74 69 76 61 74 65 64 | e.SSH.service.has.been.activated |
| 154c80 | 20 6c 69 6b 65 20 73 6f 00 59 6f 75 20 63 61 6e 20 61 6c 73 6f 20 63 6f 6e 66 69 67 75 72 65 20 | .like.so.You.can.also.configure. |
| 154ca0 | 74 68 65 20 74 69 6d 65 20 69 6e 74 65 72 76 61 6c 20 66 6f 72 20 70 72 65 65 6d 70 74 69 6f 6e | the.time.interval.for.preemption |
| 154cc0 | 20 77 69 74 68 20 74 68 65 20 22 70 72 65 65 6d 70 74 2d 64 65 6c 61 79 22 20 6f 70 74 69 6f 6e | .with.the."preempt-delay".option |
| 154ce0 | 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 2c 20 74 6f 20 73 65 74 20 74 68 65 20 68 69 67 68 65 72 | ..For.example,.to.set.the.higher |
| 154d00 | 20 70 72 69 6f 72 69 74 79 20 72 6f 75 74 65 72 20 74 6f 20 74 61 6b 65 20 6f 76 65 72 20 69 6e | .priority.router.to.take.over.in |
| 154d20 | 20 31 38 30 20 73 65 63 6f 6e 64 73 2c 20 75 73 65 3a 00 59 6f 75 20 63 61 6e 20 61 6c 73 6f 20 | .180.seconds,.use:.You.can.also. |
| 154d40 | 64 65 66 69 6e 65 20 63 75 73 74 6f 6d 20 74 69 6d 65 6f 75 74 20 76 61 6c 75 65 73 20 74 6f 20 | define.custom.timeout.values.to. |
| 154d60 | 61 70 70 6c 79 20 74 6f 20 61 20 73 70 65 63 69 66 69 63 20 73 75 62 73 65 74 20 6f 66 20 63 6f | apply.to.a.specific.subset.of.co |
| 154d80 | 6e 6e 65 63 74 69 6f 6e 73 2c 20 62 61 73 65 64 20 6f 6e 20 61 20 70 61 63 6b 65 74 20 61 6e 64 | nnections,.based.on.a.packet.and |
| 154da0 | 20 66 6c 6f 77 20 73 65 6c 65 63 74 6f 72 2e 20 54 6f 20 64 6f 20 74 68 69 73 2c 20 79 6f 75 20 | .flow.selector..To.do.this,.you. |
| 154dc0 | 6e 65 65 64 20 74 6f 20 63 72 65 61 74 65 20 61 20 72 75 6c 65 20 64 65 66 69 6e 69 6e 67 20 74 | need.to.create.a.rule.defining.t |
| 154de0 | 68 65 20 70 61 63 6b 65 74 20 61 6e 64 20 66 6c 6f 77 20 73 65 6c 65 63 74 6f 72 2e 00 59 6f 75 | he.packet.and.flow.selector..You |
| 154e00 | 20 63 61 6e 20 61 6c 73 6f 20 6b 65 65 70 20 64 69 66 66 65 72 65 6e 74 20 44 4e 53 20 7a 6f 6e | .can.also.keep.different.DNS.zon |
| 154e20 | 65 20 75 70 64 61 74 65 64 2e 20 4a 75 73 74 20 63 72 65 61 74 65 20 61 20 6e 65 77 20 63 6f 6e | e.updated..Just.create.a.new.con |
| 154e40 | 66 69 67 20 6e 6f 64 65 3a 20 60 60 73 65 74 20 73 65 72 76 69 63 65 20 64 6e 73 20 64 79 6e 61 | fig.node:.``set.service.dns.dyna |
| 154e60 | 6d 69 63 20 69 6e 74 65 72 66 61 63 65 20 3c 69 6e 74 65 72 66 61 63 65 3e 20 72 66 63 32 31 33 | mic.interface.<interface>.rfc213 |
| 154e80 | 36 20 3c 6f 74 68 65 72 2d 73 65 72 76 69 63 65 2d 6e 61 6d 65 3e 60 60 00 59 6f 75 20 63 61 6e | 6.<other-service-name>``.You.can |
| 154ea0 | 20 61 6c 73 6f 20 6f 70 74 20 66 6f 72 20 75 73 69 6e 67 20 60 3a 3a 2f 36 34 60 20 61 73 20 70 | .also.opt.for.using.`::/64`.as.p |
| 154ec0 | 72 65 66 69 78 20 66 6f 72 20 79 6f 75 72 20 3a 61 62 62 72 3a 60 52 41 73 20 28 52 6f 75 74 65 | refix.for.your.:abbr:`RAs.(Route |
| 154ee0 | 72 20 41 64 76 65 72 74 69 73 65 6d 65 6e 74 73 29 60 2e 20 54 68 69 73 20 77 69 6c 6c 20 74 61 | r.Advertisements)`..This.will.ta |
| 154f00 | 6b 65 20 74 68 65 20 49 50 76 36 20 47 55 41 20 70 72 65 66 69 78 20 61 73 73 69 67 6e 65 64 20 | ke.the.IPv6.GUA.prefix.assigned. |
| 154f20 | 74 6f 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 2c 20 77 68 69 63 68 20 63 6f 6d 65 73 20 69 6e | to.the.interface,.which.comes.in |
| 154f40 | 20 68 61 6e 64 79 20 77 68 65 6e 20 75 73 69 6e 67 20 44 48 43 50 76 36 2d 50 44 2e 00 59 6f 75 | .handy.when.using.DHCPv6-PD..You |
| 154f60 | 20 63 61 6e 20 61 6c 73 6f 20 73 70 65 63 69 66 79 20 77 68 69 63 68 20 49 50 76 36 20 61 63 63 | .can.also.specify.which.IPv6.acc |
| 154f80 | 65 73 73 2d 6c 69 73 74 20 73 68 6f 75 6c 64 20 62 65 20 73 68 6f 77 6e 3a 00 59 6f 75 20 63 61 | ess-list.should.be.shown:.You.ca |
| 154fa0 | 6e 20 61 6c 73 6f 20 74 75 6e 65 20 6d 75 6c 74 69 63 61 73 74 20 77 69 74 68 20 74 68 65 20 66 | n.also.tune.multicast.with.the.f |
| 154fc0 | 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 73 2e 00 59 6f 75 20 63 61 6e 20 61 6c 73 6f 20 | ollowing.commands..You.can.also. |
| 154fe0 | 75 73 65 20 61 6e 6f 74 68 65 72 20 61 74 74 72 69 62 75 74 65 73 20 66 6f 72 20 69 64 65 6e 74 | use.another.attributes.for.ident |
| 155000 | 69 66 79 20 63 6c 69 65 6e 74 20 66 6f 72 20 64 69 73 63 6f 6e 6e 65 63 74 2c 20 6c 69 6b 65 20 | ify.client.for.disconnect,.like. |
| 155020 | 46 72 61 6d 65 64 2d 49 50 2d 41 64 64 72 65 73 73 2c 20 41 63 63 74 2d 53 65 73 73 69 6f 6e 2d | Framed-IP-Address,.Acct-Session- |
| 155040 | 49 64 2c 20 65 74 63 2e 20 52 65 73 75 6c 74 20 63 6f 6d 6d 61 6e 64 73 20 61 70 70 65 61 72 73 | Id,.etc..Result.commands.appears |
| 155060 | 20 69 6e 20 6c 6f 67 2e 00 59 6f 75 20 63 61 6e 20 61 6c 73 6f 20 77 72 69 74 65 20 61 20 64 65 | .in.log..You.can.also.write.a.de |
| 155080 | 73 63 72 69 70 74 69 6f 6e 20 66 6f 72 20 61 20 66 69 6c 74 65 72 3a 00 59 6f 75 20 63 61 6e 20 | scription.for.a.filter:.You.can. |
| 1550a0 | 61 73 73 69 67 6e 20 6d 75 6c 74 69 70 6c 65 20 6b 65 79 73 20 74 6f 20 74 68 65 20 73 61 6d 65 | assign.multiple.keys.to.the.same |
| 1550c0 | 20 75 73 65 72 20 62 79 20 75 73 69 6e 67 20 61 20 75 6e 69 71 75 65 20 69 64 65 6e 74 69 66 69 | .user.by.using.a.unique.identifi |
| 1550e0 | 65 72 20 70 65 72 20 53 53 48 20 6b 65 79 2e 00 59 6f 75 20 63 61 6e 20 61 76 6f 69 64 20 74 68 | er.per.SSH.key..You.can.avoid.th |
| 155100 | 65 20 22 6c 65 61 6b 79 22 20 62 65 68 61 76 69 6f 72 20 62 79 20 75 73 69 6e 67 20 61 20 66 69 | e."leaky".behavior.by.using.a.fi |
| 155120 | 72 65 77 61 6c 6c 20 70 6f 6c 69 63 79 20 74 68 61 74 20 64 72 6f 70 73 20 22 69 6e 76 61 6c 69 | rewall.policy.that.drops."invali |
| 155140 | 64 22 20 73 74 61 74 65 20 70 61 63 6b 65 74 73 2e 00 59 6f 75 20 63 61 6e 20 63 68 65 63 6b 20 | d".state.packets..You.can.check. |
| 155160 | 79 6f 75 72 20 4e 49 43 20 64 72 69 76 65 72 20 62 79 20 69 73 73 75 69 6e 67 20 3a 6f 70 63 6d | your.NIC.driver.by.issuing.:opcm |
| 155180 | 64 3a 60 73 68 6f 77 20 69 6e 74 65 72 66 61 63 65 73 20 65 74 68 65 72 6e 65 74 20 65 74 68 30 | d:`show.interfaces.ethernet.eth0 |
| 1551a0 | 20 70 68 79 73 69 63 61 6c 20 7c 20 67 72 65 70 20 2d 69 20 64 72 69 76 65 72 60 00 59 6f 75 20 | .physical.|.grep.-i.driver`.You. |
| 1551c0 | 63 61 6e 20 63 6f 6e 66 69 67 75 72 65 20 61 20 70 6f 6c 69 63 79 20 69 6e 74 6f 20 61 20 63 6c | can.configure.a.policy.into.a.cl |
| 1551e0 | 61 73 73 20 74 68 72 6f 75 67 68 20 74 68 65 20 60 60 71 75 65 75 65 2d 74 79 70 65 60 60 20 73 | ass.through.the.``queue-type``.s |
| 155200 | 65 74 74 69 6e 67 2e 00 59 6f 75 20 63 61 6e 20 63 6f 6e 66 69 67 75 72 65 20 63 6c 61 73 73 65 | etting..You.can.configure.classe |
| 155220 | 73 20 28 75 70 20 74 6f 20 34 30 39 30 29 20 77 69 74 68 20 64 69 66 66 65 72 65 6e 74 20 73 65 | s.(up.to.4090).with.different.se |
| 155240 | 74 74 69 6e 67 73 20 61 6e 64 20 61 20 64 65 66 61 75 6c 74 20 70 6f 6c 69 63 79 20 77 68 69 63 | ttings.and.a.default.policy.whic |
| 155260 | 68 20 77 69 6c 6c 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 61 6e 79 20 74 72 61 66 66 69 63 | h.will.be.applied.to.any.traffic |
| 155280 | 20 6e 6f 74 20 6d 61 74 63 68 69 6e 67 20 61 6e 79 20 6f 66 20 74 68 65 20 63 6f 6e 66 69 67 75 | .not.matching.any.of.the.configu |
| 1552a0 | 72 65 64 20 63 6c 61 73 73 65 73 2e 00 59 6f 75 20 63 61 6e 20 63 6f 6e 66 69 67 75 72 65 20 6d | red.classes..You.can.configure.m |
| 1552c0 | 75 6c 74 69 70 6c 65 20 69 6e 74 65 72 66 61 63 65 73 20 77 68 69 63 68 20 77 68 6f 75 6c 64 20 | ultiple.interfaces.which.whould. |
| 1552e0 | 70 61 72 74 69 63 69 70 61 74 65 20 69 6e 20 66 6c 6f 77 20 61 63 63 6f 75 6e 74 69 6e 67 2e 00 | participate.in.flow.accounting.. |
| 155300 | 59 6f 75 20 63 61 6e 20 63 6f 6e 66 69 67 75 72 65 20 6d 75 6c 74 69 70 6c 65 20 69 6e 74 65 72 | You.can.configure.multiple.inter |
| 155320 | 66 61 63 65 73 20 77 68 69 63 68 20 77 68 6f 75 6c 64 20 70 61 72 74 69 63 69 70 61 74 65 20 69 | faces.which.whould.participate.i |
| 155340 | 6e 20 73 66 6c 6f 77 20 61 63 63 6f 75 6e 74 69 6e 67 2e 00 59 6f 75 20 63 61 6e 20 63 6f 6e 66 | n.sflow.accounting..You.can.conf |
| 155360 | 69 67 75 72 65 20 6d 75 6c 74 69 70 6c 65 20 69 6e 74 65 72 66 61 63 65 73 20 77 68 69 63 68 20 | igure.multiple.interfaces.which. |
| 155380 | 77 6f 75 6c 64 20 70 61 72 74 69 63 69 70 61 74 65 20 69 6e 20 66 6c 6f 77 20 61 63 63 6f 75 6e | would.participate.in.flow.accoun |
| 1553a0 | 74 69 6e 67 2e 00 59 6f 75 20 63 61 6e 20 63 6f 6e 66 69 67 75 72 65 20 6d 75 6c 74 69 70 6c 65 | ting..You.can.configure.multiple |
| 1553c0 | 20 69 6e 74 65 72 66 61 63 65 73 20 77 68 69 63 68 20 77 6f 75 6c 64 20 70 61 72 74 69 63 69 70 | .interfaces.which.would.particip |
| 1553e0 | 61 74 65 20 69 6e 20 73 66 6c 6f 77 20 61 63 63 6f 75 6e 74 69 6e 67 2e 00 59 6f 75 20 63 61 6e | ate.in.sflow.accounting..You.can |
| 155400 | 20 63 72 65 61 74 65 20 6d 75 6c 74 69 70 6c 65 20 56 4c 41 4e 20 69 6e 74 65 72 66 61 63 65 73 | .create.multiple.VLAN.interfaces |
| 155420 | 20 6f 6e 20 61 20 70 68 79 73 69 63 61 6c 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 65 20 56 4c | .on.a.physical.interface..The.VL |
| 155440 | 41 4e 20 49 44 20 72 61 6e 67 65 20 69 73 20 66 72 6f 6d 20 30 20 74 6f 20 34 30 39 34 2e 00 59 | AN.ID.range.is.from.0.to.4094..Y |
| 155460 | 6f 75 20 63 61 6e 20 64 65 66 69 6e 65 20 63 75 73 74 6f 6d 20 74 69 6d 65 6f 75 74 20 76 61 6c | ou.can.define.custom.timeout.val |
| 155480 | 75 65 73 20 74 6f 20 61 70 70 6c 79 20 74 6f 20 61 20 73 70 65 63 69 66 69 63 20 73 75 62 73 65 | ues.to.apply.to.a.specific.subse |
| 1554a0 | 74 20 6f 66 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2c 20 62 61 73 65 64 20 6f 6e 20 61 20 70 61 63 | t.of.connections,.based.on.a.pac |
| 1554c0 | 6b 65 74 20 61 6e 64 20 66 6c 6f 77 20 73 65 6c 65 63 74 6f 72 2e 20 54 6f 20 64 6f 20 74 68 69 | ket.and.flow.selector..To.do.thi |
| 1554e0 | 73 2c 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 63 72 65 61 74 65 20 61 20 72 75 6c 65 20 64 65 66 | s,.you.need.to.create.a.rule.def |
| 155500 | 69 6e 69 6e 67 20 74 68 65 20 70 61 63 6b 65 74 20 61 6e 64 20 66 6c 6f 77 20 73 65 6c 65 63 74 | ining.the.packet.and.flow.select |
| 155520 | 6f 72 2e 00 59 6f 75 20 63 61 6e 20 64 69 73 61 62 6c 65 20 61 20 56 52 52 50 20 67 72 6f 75 70 | or..You.can.disable.a.VRRP.group |
| 155540 | 20 77 69 74 68 20 60 60 64 69 73 61 62 6c 65 60 60 20 6f 70 74 69 6f 6e 3a 00 59 6f 75 20 63 61 | .with.``disable``.option:.You.ca |
| 155560 | 6e 20 67 65 74 20 6d 6f 72 65 20 73 70 65 63 69 66 69 63 20 4f 53 50 46 76 33 20 69 6e 66 6f 72 | n.get.more.specific.OSPFv3.infor |
| 155580 | 6d 61 74 69 6f 6e 20 62 79 20 75 73 69 6e 67 20 74 68 65 20 70 61 72 61 6d 65 74 65 72 73 20 73 | mation.by.using.the.parameters.s |
| 1555a0 | 68 6f 77 6e 20 62 65 6c 6f 77 3a 00 59 6f 75 20 63 61 6e 20 6e 6f 74 20 61 73 73 69 67 6e 20 74 | hown.below:.You.can.not.assign.t |
| 1555c0 | 68 65 20 73 61 6d 65 20 61 6c 6c 6f 77 65 64 2d 69 70 73 20 73 74 61 74 65 6d 65 6e 74 20 74 6f | he.same.allowed-ips.statement.to |
| 1555e0 | 20 6d 75 6c 74 69 70 6c 65 20 57 69 72 65 47 75 61 72 64 20 70 65 65 72 73 2e 20 54 68 69 73 20 | .multiple.WireGuard.peers..This. |
| 155600 | 61 20 64 65 73 69 67 6e 20 64 65 63 69 73 69 6f 6e 2e 20 46 6f 72 20 6d 6f 72 65 20 69 6e 66 6f | a.design.decision..For.more.info |
| 155620 | 72 6d 61 74 69 6f 6e 20 70 6c 65 61 73 65 20 63 68 65 63 6b 20 74 68 65 20 60 57 69 72 65 47 75 | rmation.please.check.the.`WireGu |
| 155640 | 61 72 64 20 6d 61 69 6c 69 6e 67 20 6c 69 73 74 60 5f 2e 00 59 6f 75 20 63 61 6e 20 6e 6f 74 20 | ard.mailing.list`_..You.can.not. |
| 155660 | 72 75 6e 20 74 68 69 73 20 69 6e 20 61 20 56 52 52 50 20 73 65 74 75 70 2c 20 69 66 20 6d 75 6c | run.this.in.a.VRRP.setup,.if.mul |
| 155680 | 74 69 70 6c 65 20 6d 44 4e 53 20 72 65 70 65 61 74 65 72 73 20 61 72 65 20 6c 61 75 6e 63 68 65 | tiple.mDNS.repeaters.are.launche |
| 1556a0 | 64 20 69 6e 20 61 20 73 75 62 6e 65 74 20 79 6f 75 20 77 69 6c 6c 20 65 78 70 65 72 69 65 6e 63 | d.in.a.subnet.you.will.experienc |
| 1556c0 | 65 20 74 68 65 20 6d 44 4e 53 20 70 61 63 6b 65 74 20 73 74 6f 72 6d 20 64 65 61 74 68 21 00 59 | e.the.mDNS.packet.storm.death!.Y |
| 1556e0 | 6f 75 20 63 61 6e 20 6e 6f 77 20 22 64 69 61 6c 22 20 74 68 65 20 70 65 65 72 20 77 69 74 68 20 | ou.can.now."dial".the.peer.with. |
| 155700 | 74 68 65 20 66 6f 6c 6c 77 6f 69 6e 67 20 63 6f 6d 6d 61 6e 64 3a 20 60 60 73 73 74 70 63 20 2d | the.follwoing.command:.``sstpc.- |
| 155720 | 2d 6c 6f 67 2d 6c 65 76 65 6c 20 34 20 2d 2d 6c 6f 67 2d 73 74 64 65 72 72 20 2d 2d 75 73 65 72 | -log-level.4.--log-stderr.--user |
| 155740 | 20 76 79 6f 73 20 2d 2d 70 61 73 73 77 6f 72 64 20 76 79 6f 73 20 76 70 6e 2e 65 78 61 6d 70 6c | .vyos.--password.vyos.vpn.exampl |
| 155760 | 65 2e 63 6f 6d 20 2d 2d 20 63 61 6c 6c 20 76 79 6f 73 60 60 2e 00 59 6f 75 20 63 61 6e 20 6e 6f | e.com.--.call.vyos``..You.can.no |
| 155780 | 77 20 53 53 48 20 69 6e 74 6f 20 79 6f 75 72 20 73 79 73 74 65 6d 20 75 73 69 6e 67 20 61 64 6d | w.SSH.into.your.system.using.adm |
| 1557a0 | 69 6e 2f 61 64 6d 69 6e 20 61 73 20 61 20 64 65 66 61 75 6c 74 20 75 73 65 72 20 73 75 70 70 6c | in/admin.as.a.default.user.suppl |
| 1557c0 | 69 65 64 20 66 72 6f 6d 20 74 68 65 20 60 60 6c 66 6b 65 69 74 65 6c 2f 74 61 63 61 63 73 5f 70 | ied.from.the.``lfkeitel/tacacs_p |
| 1557e0 | 6c 75 73 3a 6c 61 74 65 73 74 60 60 20 63 6f 6e 74 61 69 6e 65 72 2e 00 59 6f 75 20 63 61 6e 20 | lus:latest``.container..You.can. |
| 155800 | 6f 6e 6c 79 20 61 70 70 6c 79 20 6f 6e 65 20 70 6f 6c 69 63 79 20 70 65 72 20 69 6e 74 65 72 66 | only.apply.one.policy.per.interf |
| 155820 | 61 63 65 20 61 6e 64 20 64 69 72 65 63 74 69 6f 6e 2c 20 62 75 74 20 79 6f 75 20 63 6f 75 6c 64 | ace.and.direction,.but.you.could |
| 155840 | 20 72 65 75 73 65 20 61 20 70 6f 6c 69 63 79 20 6f 6e 20 64 69 66 66 65 72 65 6e 74 20 69 6e 74 | .reuse.a.policy.on.different.int |
| 155860 | 65 72 66 61 63 65 73 20 61 6e 64 20 64 69 72 65 63 74 69 6f 6e 73 3a 00 59 6f 75 20 63 61 6e 20 | erfaces.and.directions:.You.can. |
| 155880 | 6f 6e 6c 79 20 73 70 65 63 69 66 79 20 61 20 73 6f 75 72 63 65 20 6d 61 63 2d 61 64 64 72 65 73 | only.specify.a.source.mac-addres |
| 1558a0 | 73 20 74 6f 20 6d 61 74 63 68 2e 00 59 6f 75 20 63 61 6e 20 72 75 6e 20 74 68 65 20 55 44 50 20 | s.to.match..You.can.run.the.UDP. |
| 1558c0 | 62 72 6f 61 64 63 61 73 74 20 72 65 6c 61 79 20 73 65 72 76 69 63 65 20 6f 6e 20 6d 75 6c 74 69 | broadcast.relay.service.on.multi |
| 1558e0 | 70 6c 65 20 72 6f 75 74 65 72 73 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 61 20 73 75 62 6e 65 | ple.routers.connected.to.a.subne |
| 155900 | 74 2e 20 54 68 65 72 65 20 69 73 20 2a 2a 4e 4f 2a 2a 20 55 44 50 20 62 72 6f 61 64 63 61 73 74 | t..There.is.**NO**.UDP.broadcast |
| 155920 | 20 72 65 6c 61 79 20 70 61 63 6b 65 74 20 73 74 6f 72 6d 21 00 59 6f 75 20 63 61 6e 20 73 70 65 | .relay.packet.storm!.You.can.spe |
| 155940 | 63 69 66 79 20 61 20 73 74 61 74 69 63 20 44 48 43 50 20 61 73 73 69 67 6e 6d 65 6e 74 20 6f 6e | cify.a.static.DHCP.assignment.on |
| 155960 | 20 61 20 70 65 72 20 68 6f 73 74 20 62 61 73 69 73 2e 20 59 6f 75 20 77 69 6c 6c 20 6e 65 65 64 | .a.per.host.basis..You.will.need |
| 155980 | 20 74 68 65 20 4d 41 43 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 73 74 61 74 69 6f 6e 20 | .the.MAC.address.of.the.station. |
| 1559a0 | 61 6e 64 20 79 6f 75 72 20 64 65 73 69 72 65 64 20 49 50 20 61 64 64 72 65 73 73 2e 20 54 68 65 | and.your.desired.IP.address..The |
| 1559c0 | 20 61 64 64 72 65 73 73 20 6d 75 73 74 20 62 65 20 69 6e 73 69 64 65 20 74 68 65 20 73 75 62 6e | .address.must.be.inside.the.subn |
| 1559e0 | 65 74 20 64 65 66 69 6e 69 74 69 6f 6e 20 62 75 74 20 63 61 6e 20 62 65 20 6f 75 74 73 69 64 65 | et.definition.but.can.be.outside |
| 155a00 | 20 6f 66 20 74 68 65 20 72 61 6e 67 65 20 73 74 61 74 65 6d 65 6e 74 2e 00 59 6f 75 20 63 61 6e | .of.the.range.statement..You.can |
| 155a20 | 20 74 65 73 74 20 74 68 65 20 53 4e 4d 50 76 33 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 20 66 | .test.the.SNMPv3.functionality.f |
| 155a40 | 72 6f 6d 20 61 6e 79 20 6c 69 6e 75 78 20 62 61 73 65 64 20 73 79 73 74 65 6d 2c 20 6a 75 73 74 | rom.any.linux.based.system,.just |
| 155a60 | 20 72 75 6e 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 3a 20 60 60 73 6e | .run.the.following.command:.``sn |
| 155a80 | 6d 70 77 61 6c 6b 20 2d 76 20 33 20 2d 75 20 76 79 6f 73 20 2d 61 20 53 48 41 20 2d 41 20 76 79 | mpwalk.-v.3.-u.vyos.-a.SHA.-A.vy |
| 155aa0 | 6f 73 31 32 33 34 35 36 37 38 20 2d 78 20 41 45 53 20 2d 58 20 76 79 6f 73 31 32 33 34 35 36 37 | os12345678.-x.AES.-X.vyos1234567 |
| 155ac0 | 38 20 2d 6c 20 61 75 74 68 50 72 69 76 20 31 39 32 2e 30 2e 32 2e 31 20 2e 31 60 60 00 59 6f 75 | 8.-l.authPriv.192.0.2.1..1``.You |
| 155ae0 | 20 63 61 6e 20 75 73 65 20 77 69 6c 64 63 61 72 64 20 60 60 2a 60 60 20 74 6f 20 6d 61 74 63 68 | .can.use.wildcard.``*``.to.match |
| 155b00 | 20 61 20 67 72 6f 75 70 20 6f 66 20 69 6e 74 65 72 66 61 63 65 73 2e 00 59 6f 75 20 63 61 6e 20 | .a.group.of.interfaces..You.can. |
| 155b20 | 76 65 72 69 66 79 20 79 6f 75 72 20 56 52 52 50 20 67 72 6f 75 70 20 73 74 61 74 75 73 20 77 69 | verify.your.VRRP.group.status.wi |
| 155b40 | 74 68 20 74 68 65 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 6d 6f 64 65 20 60 60 72 75 6e 20 73 68 | th.the.operational.mode.``run.sh |
| 155b60 | 6f 77 20 76 72 72 70 60 60 20 63 6f 6d 6d 61 6e 64 3a 00 59 6f 75 20 63 61 6e 20 76 69 65 77 20 | ow.vrrp``.command:.You.can.view. |
| 155b80 | 74 68 61 74 20 74 68 65 20 70 6f 6c 69 63 79 20 69 73 20 62 65 69 6e 67 20 63 6f 72 72 65 63 74 | that.the.policy.is.being.correct |
| 155ba0 | 6c 79 20 28 6f 72 20 69 6e 63 6f 72 72 65 63 74 6c 79 29 20 75 74 69 6c 69 73 65 64 20 77 69 74 | ly.(or.incorrectly).utilised.wit |
| 155bc0 | 68 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 3a 00 59 6f 75 20 63 61 6e | h.the.following.command:.You.can |
| 155be0 | 6e 6f 74 20 65 61 73 69 6c 79 20 72 65 64 69 73 74 72 69 62 75 74 65 20 49 50 76 36 20 72 6f 75 | not.easily.redistribute.IPv6.rou |
| 155c00 | 74 65 73 20 76 69 61 20 4f 53 50 46 76 33 20 6f 6e 20 61 20 57 69 72 65 47 75 61 72 64 20 69 6e | tes.via.OSPFv3.on.a.WireGuard.in |
| 155c20 | 74 65 72 66 61 63 65 20 6c 69 6e 6b 2e 20 54 68 69 73 20 72 65 71 75 69 72 65 73 20 79 6f 75 20 | terface.link..This.requires.you. |
| 155c40 | 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 6c 69 6e 6b 2d 6c 6f 63 61 6c 20 61 64 64 72 65 73 73 65 | to.configure.link-local.addresse |
| 155c60 | 73 20 6d 61 6e 75 61 6c 6c 79 20 6f 6e 20 74 68 65 20 57 69 72 65 47 75 61 72 64 20 69 6e 74 65 | s.manually.on.the.WireGuard.inte |
| 155c80 | 72 66 61 63 65 73 2c 20 73 65 65 20 3a 76 79 74 61 73 6b 3a 60 54 31 34 38 33 60 2e 00 59 6f 75 | rfaces,.see.:vytask:`T1483`..You |
| 155ca0 | 20 64 6f 20 2a 2a 6e 6f 74 2a 2a 20 6e 65 65 64 20 74 6f 20 63 6f 70 79 20 74 68 65 20 63 65 72 | .do.**not**.need.to.copy.the.cer |
| 155cc0 | 74 69 66 69 63 61 74 65 20 74 6f 20 74 68 65 20 6f 74 68 65 72 20 72 6f 75 74 65 72 2e 20 49 6e | tificate.to.the.other.router..In |
| 155ce0 | 73 74 65 61 64 2c 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 72 65 74 72 69 65 76 65 20 69 74 73 20 | stead,.you.need.to.retrieve.its. |
| 155d00 | 53 48 41 2d 32 35 36 20 66 69 6e 67 65 72 70 72 69 6e 74 2e 20 4f 70 65 6e 56 50 4e 20 6f 6e 6c | SHA-256.fingerprint..OpenVPN.onl |
| 155d20 | 79 20 73 75 70 70 6f 72 74 73 20 53 48 41 2d 32 35 36 20 66 69 6e 67 65 72 70 72 69 6e 74 73 20 | y.supports.SHA-256.fingerprints. |
| 155d40 | 61 74 20 74 68 65 20 6d 6f 6d 65 6e 74 2c 20 73 6f 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 75 73 | at.the.moment,.so.you.need.to.us |
| 155d60 | 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 3a 00 59 6f 75 20 6d 61 79 | e.the.following.command:.You.may |
| 155d80 | 20 61 6c 73 6f 20 61 64 64 69 74 69 6f 6e 61 6c 6c 79 20 63 6f 6e 66 69 67 75 72 65 20 74 69 6d | .also.additionally.configure.tim |
| 155da0 | 65 6f 75 74 73 20 66 6f 72 20 64 69 66 66 65 72 65 6e 74 20 74 79 70 65 73 20 6f 66 20 63 6f 6e | eouts.for.different.types.of.con |
| 155dc0 | 6e 65 63 74 69 6f 6e 73 2e 00 59 6f 75 20 6d 61 79 20 65 78 70 65 63 74 20 72 65 61 6c 20 74 68 | nections..You.may.expect.real.th |
| 155de0 | 72 6f 75 67 68 70 75 74 73 20 61 72 6f 75 6e 64 20 31 30 4d 42 79 74 65 73 2f 73 20 6f 72 20 68 | roughputs.around.10MBytes/s.or.h |
| 155e00 | 69 67 68 65 72 20 69 6e 20 63 72 6f 77 64 65 64 20 61 72 65 61 73 2e 00 59 6f 75 20 6d 61 79 20 | igher.in.crowded.areas..You.may. |
| 155e20 | 65 78 70 65 63 74 20 72 65 61 6c 20 74 68 72 6f 75 67 68 70 75 74 73 20 61 72 6f 75 6e 64 20 35 | expect.real.throughputs.around.5 |
| 155e40 | 30 4d 42 79 74 65 73 2f 73 20 74 6f 20 31 35 30 4d 42 79 74 65 73 2f 73 2c 20 64 65 70 65 6e 64 | 0MBytes/s.to.150MBytes/s,.depend |
| 155e60 | 69 6e 67 20 6f 6e 20 6f 62 73 74 72 75 63 74 69 6f 6e 73 20 62 79 20 77 61 6c 6c 73 2c 20 77 61 | ing.on.obstructions.by.walls,.wa |
| 155e80 | 74 65 72 2c 20 6d 65 74 61 6c 20 6f 72 20 6f 74 68 65 72 20 6d 61 74 65 72 69 61 6c 73 20 77 69 | ter,.metal.or.other.materials.wi |
| 155ea0 | 74 68 20 68 69 67 68 20 65 6c 65 63 74 72 6f 2d 6d 61 67 6e 65 74 69 63 20 64 61 6d 70 65 6e 69 | th.high.electro-magnetic.dampeni |
| 155ec0 | 6e 67 20 61 74 20 36 47 48 7a 2e 20 42 65 73 74 20 72 65 73 75 6c 74 73 20 61 72 65 20 61 63 68 | ng.at.6GHz..Best.results.are.ach |
| 155ee0 | 69 65 76 65 64 20 77 69 74 68 20 74 68 65 20 41 50 20 62 65 69 6e 67 20 69 6e 20 74 68 65 20 73 | ieved.with.the.AP.being.in.the.s |
| 155f00 | 61 6d 65 20 72 6f 6f 6d 20 61 6e 64 20 69 6e 20 6c 69 6e 65 2d 6f 66 2d 73 69 67 68 74 2e 00 59 | ame.room.and.in.line-of-sight..Y |
| 155f20 | 6f 75 20 6d 61 79 20 70 72 65 66 65 72 20 6c 6f 63 61 6c 6c 79 20 63 6f 6e 66 69 67 75 72 65 64 | ou.may.prefer.locally.configured |
| 155f40 | 20 63 61 70 61 62 69 6c 69 74 69 65 73 20 6d 6f 72 65 20 74 68 61 6e 20 74 68 65 20 6e 65 67 6f | .capabilities.more.than.the.nego |
| 155f60 | 74 69 61 74 65 64 20 63 61 70 61 62 69 6c 69 74 69 65 73 20 65 76 65 6e 20 74 68 6f 75 67 68 20 | tiated.capabilities.even.though. |
| 155f80 | 72 65 6d 6f 74 65 20 70 65 65 72 20 73 65 6e 64 73 20 63 61 70 61 62 69 6c 69 74 69 65 73 2e 20 | remote.peer.sends.capabilities.. |
| 155fa0 | 49 66 20 74 68 65 20 70 65 65 72 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 20 62 79 20 3a 63 66 | If.the.peer.is.configured.by.:cf |
| 155fc0 | 67 63 6d 64 3a 60 6f 76 65 72 72 69 64 65 2d 63 61 70 61 62 69 6c 69 74 79 60 2c 20 56 79 4f 53 | gcmd:`override-capability`,.VyOS |
| 155fe0 | 20 69 67 6e 6f 72 65 73 20 72 65 63 65 69 76 65 64 20 63 61 70 61 62 69 6c 69 74 69 65 73 20 74 | .ignores.received.capabilities.t |
| 156000 | 68 65 6e 20 6f 76 65 72 72 69 64 65 20 6e 65 67 6f 74 69 61 74 65 64 20 63 61 70 61 62 69 6c 69 | hen.override.negotiated.capabili |
| 156020 | 74 69 65 73 20 77 69 74 68 20 63 6f 6e 66 69 67 75 72 65 64 20 76 61 6c 75 65 73 2e 00 59 6f 75 | ties.with.configured.values..You |
| 156040 | 20 6d 61 79 20 77 61 6e 74 20 74 6f 20 64 69 73 61 62 6c 65 20 73 65 6e 64 69 6e 67 20 43 61 70 | .may.want.to.disable.sending.Cap |
| 156060 | 61 62 69 6c 69 74 79 20 4e 65 67 6f 74 69 61 74 69 6f 6e 20 4f 50 45 4e 20 6d 65 73 73 61 67 65 | ability.Negotiation.OPEN.message |
| 156080 | 20 6f 70 74 69 6f 6e 61 6c 20 70 61 72 61 6d 65 74 65 72 20 74 6f 20 74 68 65 20 70 65 65 72 20 | .optional.parameter.to.the.peer. |
| 1560a0 | 77 68 65 6e 20 72 65 6d 6f 74 65 20 70 65 65 72 20 64 6f 65 73 20 6e 6f 74 20 69 6d 70 6c 65 6d | when.remote.peer.does.not.implem |
| 1560c0 | 65 6e 74 20 43 61 70 61 62 69 6c 69 74 79 20 4e 65 67 6f 74 69 61 74 69 6f 6e 2e 20 50 6c 65 61 | ent.Capability.Negotiation..Plea |
| 1560e0 | 73 65 20 75 73 65 20 3a 63 66 67 63 6d 64 3a 60 64 69 73 61 62 6c 65 2d 63 61 70 61 62 69 6c 69 | se.use.:cfgcmd:`disable-capabili |
| 156100 | 74 79 2d 6e 65 67 6f 74 69 61 74 69 6f 6e 60 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 69 73 61 62 | ty-negotiation`.command.to.disab |
| 156120 | 6c 65 20 74 68 65 20 66 65 61 74 75 72 65 2e 00 59 6f 75 20 6e 65 65 64 20 32 20 73 65 70 61 72 | le.the.feature..You.need.2.separ |
| 156140 | 61 74 65 20 66 69 72 65 77 61 6c 6c 73 20 74 6f 20 64 65 66 69 6e 65 20 74 72 61 66 66 69 63 3a | ate.firewalls.to.define.traffic: |
| 156160 | 20 6f 6e 65 20 66 6f 72 20 65 61 63 68 20 64 69 72 65 63 74 69 6f 6e 2e 00 59 6f 75 20 6e 65 65 | .one.for.each.direction..You.nee |
| 156180 | 64 20 74 6f 20 64 69 73 61 62 6c 65 20 74 68 65 20 69 6e 2d 6d 65 6d 6f 72 79 20 74 61 62 6c 65 | d.to.disable.the.in-memory.table |
| 1561a0 | 20 69 6e 20 70 72 6f 64 75 63 74 69 6f 6e 20 65 6e 76 69 72 6f 6e 6d 65 6e 74 73 21 20 55 73 69 | .in.production.environments!.Usi |
| 1561c0 | 6e 67 20 3a 61 62 62 72 3a 60 49 4d 54 20 28 49 6e 2d 4d 65 6d 6f 72 79 20 54 61 62 6c 65 29 60 | ng.:abbr:`IMT.(In-Memory.Table)` |
| 1561e0 | 20 6d 61 79 20 6c 65 61 64 20 74 6f 20 68 65 61 76 79 20 43 50 55 20 6f 76 65 72 6c 6f 61 64 69 | .may.lead.to.heavy.CPU.overloadi |
| 156200 | 6e 67 20 61 6e 64 20 75 6e 73 74 61 62 6c 65 20 66 6c 6f 77 2d 61 63 63 6f 75 6e 74 69 6e 67 20 | ng.and.unstable.flow-accounting. |
| 156220 | 62 65 68 61 76 69 6f 72 2e 00 59 6f 75 20 6e 65 65 64 20 79 6f 75 72 20 50 50 50 6f 45 20 63 72 | behavior..You.need.your.PPPoE.cr |
| 156240 | 65 64 65 6e 74 69 61 6c 73 20 66 72 6f 6d 20 79 6f 75 72 20 44 53 4c 20 49 53 50 20 69 6e 20 6f | edentials.from.your.DSL.ISP.in.o |
| 156260 | 72 64 65 72 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 69 73 2e 20 54 68 65 20 75 73 75 61 | rder.to.configure.this..The.usua |
| 156280 | 6c 20 75 73 65 72 6e 61 6d 65 20 69 73 20 69 6e 20 74 68 65 20 66 6f 72 6d 20 6f 66 20 6e 61 6d | l.username.is.in.the.form.of.nam |
| 1562a0 | 65 40 68 6f 73 74 2e 6e 65 74 20 62 75 74 20 6d 61 79 20 76 61 72 79 20 64 65 70 65 6e 64 69 6e | e@host.net.but.may.vary.dependin |
| 1562c0 | 67 20 6f 6e 20 49 53 50 2e 00 59 6f 75 20 6e 6f 77 20 73 65 65 20 74 68 65 20 6c 6f 6e 67 65 72 | g.on.ISP..You.now.see.the.longer |
| 1562e0 | 20 41 53 20 70 61 74 68 2e 00 59 6f 75 20 73 68 6f 75 6c 64 20 61 64 64 20 61 20 66 69 72 65 77 | .AS.path..You.should.add.a.firew |
| 156300 | 61 6c 6c 20 74 6f 20 79 6f 75 72 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 61 62 6f 76 65 20 | all.to.your.configuration.above. |
| 156320 | 61 73 20 77 65 6c 6c 20 62 79 20 61 73 73 69 67 6e 69 6e 67 20 69 74 20 74 6f 20 74 68 65 20 70 | as.well.by.assigning.it.to.the.p |
| 156340 | 70 70 6f 65 30 20 69 74 73 65 6c 66 20 61 73 20 73 68 6f 77 6e 20 68 65 72 65 3a 00 59 6f 75 20 | ppoe0.itself.as.shown.here:.You. |
| 156360 | 73 68 6f 75 6c 64 20 61 6c 73 6f 20 65 6e 73 75 72 65 20 74 68 61 74 20 74 68 65 20 4f 55 54 49 | should.also.ensure.that.the.OUTI |
| 156380 | 53 44 45 5f 4c 4f 43 41 4c 20 66 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 20 69 73 20 61 70 70 6c | SDE_LOCAL.firewall.group.is.appl |
| 1563a0 | 69 65 64 20 74 6f 20 74 68 65 20 57 41 4e 20 69 6e 74 65 72 66 61 63 65 20 61 6e 64 20 61 20 64 | ied.to.the.WAN.interface.and.a.d |
| 1563c0 | 69 72 65 63 74 69 6f 6e 20 28 6c 6f 63 61 6c 29 2e 00 59 6f 75 20 73 68 6f 75 6c 64 20 61 6c 73 | irection.(local)..You.should.als |
| 1563e0 | 6f 20 65 6e 73 75 72 65 20 74 68 61 74 20 74 68 65 20 4f 55 54 53 49 44 45 5f 4c 4f 43 41 4c 20 | o.ensure.that.the.OUTSIDE_LOCAL. |
| 156400 | 66 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 20 69 73 20 61 70 70 6c 69 65 64 20 74 6f 20 74 68 65 | firewall.group.is.applied.to.the |
| 156420 | 20 57 41 4e 20 69 6e 74 65 72 66 61 63 65 20 61 6e 64 20 61 20 64 69 72 65 63 74 69 6f 6e 20 28 | .WAN.interface.and.a.direction.( |
| 156440 | 6c 6f 63 61 6c 29 2e 00 59 6f 75 20 77 69 6c 6c 20 61 6c 73 6f 20 6e 65 65 64 20 74 68 65 20 70 | local)..You.will.also.need.the.p |
| 156460 | 75 62 6c 69 63 20 6b 65 79 20 6f 66 20 79 6f 75 72 20 70 65 65 72 20 61 73 20 77 65 6c 6c 20 61 | ublic.key.of.your.peer.as.well.a |
| 156480 | 73 20 74 68 65 20 6e 65 74 77 6f 72 6b 28 73 29 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 74 75 6e | s.the.network(s).you.want.to.tun |
| 1564a0 | 6e 65 6c 20 28 61 6c 6c 6f 77 65 64 2d 69 70 73 29 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 | nel.(allowed-ips).to.configure.a |
| 1564c0 | 20 57 69 72 65 47 75 61 72 64 20 74 75 6e 6e 65 6c 2e 20 54 68 65 20 70 75 62 6c 69 63 20 6b 65 | .WireGuard.tunnel..The.public.ke |
| 1564e0 | 79 20 62 65 6c 6f 77 20 69 73 20 61 6c 77 61 79 73 20 74 68 65 20 70 75 62 6c 69 63 20 6b 65 79 | y.below.is.always.the.public.key |
| 156500 | 20 66 72 6f 6d 20 79 6f 75 72 20 70 65 65 72 2c 20 6e 6f 74 20 79 6f 75 72 20 6c 6f 63 61 6c 20 | .from.your.peer,.not.your.local. |
| 156520 | 6f 6e 65 2e 00 59 6f 75 72 20 49 53 50 73 20 6d 6f 64 65 6d 20 69 73 20 63 6f 6e 6e 65 63 74 65 | one..Your.ISPs.modem.is.connecte |
| 156540 | 64 20 74 6f 20 70 6f 72 74 20 60 60 65 74 68 30 60 60 20 6f 66 20 79 6f 75 72 20 56 79 4f 53 20 | d.to.port.``eth0``.of.your.VyOS. |
| 156560 | 62 6f 78 2e 00 59 6f 75 72 20 4c 41 4e 20 63 6f 6e 6e 65 63 74 65 64 20 6f 6e 20 65 74 68 30 20 | box..Your.LAN.connected.on.eth0. |
| 156580 | 75 73 65 73 20 70 72 65 66 69 78 20 60 60 32 30 30 31 3a 64 62 38 3a 62 65 65 66 3a 32 3a 3a 2f | uses.prefix.``2001:db8:beef:2::/ |
| 1565a0 | 36 34 60 60 20 77 69 74 68 20 74 68 65 20 72 6f 75 74 65 72 20 62 65 65 69 6e 67 20 60 60 32 30 | 64``.with.the.router.beeing.``20 |
| 1565c0 | 30 31 3a 64 62 38 3a 62 65 65 66 3a 32 3a 3a 31 60 60 00 5a 65 62 72 61 20 73 75 70 70 6f 72 74 | 01:db8:beef:2::1``.Zebra.support |
| 1565e0 | 73 20 70 72 65 66 69 78 2d 6c 69 73 74 73 20 61 6e 64 20 52 6f 75 74 65 20 4d 61 70 73 20 74 6f | s.prefix-lists.and.Route.Maps.to |
| 156600 | 20 6d 61 74 63 68 20 72 6f 75 74 65 73 20 72 65 63 65 69 76 65 64 20 66 72 6f 6d 20 6f 74 68 65 | .match.routes.received.from.othe |
| 156620 | 72 20 46 52 52 20 63 6f 6d 70 6f 6e 65 6e 74 73 2e 20 54 68 65 20 70 65 72 6d 69 74 2f 64 65 6e | r.FRR.components..The.permit/den |
| 156640 | 79 20 66 61 63 69 6c 69 74 69 65 73 20 70 72 6f 76 69 64 65 64 20 62 79 20 74 68 65 73 65 20 63 | y.facilities.provided.by.these.c |
| 156660 | 6f 6d 6d 61 6e 64 73 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 66 69 6c 74 65 72 20 77 68 | ommands.can.be.used.to.filter.wh |
| 156680 | 69 63 68 20 72 6f 75 74 65 73 20 7a 65 62 72 61 20 77 69 6c 6c 20 69 6e 73 74 61 6c 6c 20 69 6e | ich.routes.zebra.will.install.in |
| 1566a0 | 20 74 68 65 20 6b 65 72 6e 65 6c 2e 00 5a 65 62 72 61 20 73 75 70 70 6f 72 74 73 20 70 72 65 66 | .the.kernel..Zebra.supports.pref |
| 1566c0 | 69 78 2d 6c 69 73 74 73 20 61 6e 64 20 52 6f 75 74 65 20 4d 61 70 73 73 20 74 6f 20 6d 61 74 63 | ix-lists.and.Route.Mapss.to.matc |
| 1566e0 | 68 20 72 6f 75 74 65 73 20 72 65 63 65 69 76 65 64 20 66 72 6f 6d 20 6f 74 68 65 72 20 46 52 52 | h.routes.received.from.other.FRR |
| 156700 | 20 63 6f 6d 70 6f 6e 65 6e 74 73 2e 20 54 68 65 20 70 65 72 6d 69 74 2f 64 65 6e 79 20 66 61 63 | .components..The.permit/deny.fac |
| 156720 | 69 6c 69 74 69 65 73 20 70 72 6f 76 69 64 65 64 20 62 79 20 74 68 65 73 65 20 63 6f 6d 6d 61 6e | ilities.provided.by.these.comman |
| 156740 | 64 73 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 66 69 6c 74 65 72 20 77 68 69 63 68 20 72 | ds.can.be.used.to.filter.which.r |
| 156760 | 6f 75 74 65 73 20 7a 65 62 72 61 20 77 69 6c 6c 20 69 6e 73 74 61 6c 6c 20 69 6e 20 74 68 65 20 | outes.zebra.will.install.in.the. |
| 156780 | 6b 65 72 6e 65 6c 2e 00 5a 65 62 72 61 2f 4b 65 72 6e 65 6c 20 72 6f 75 74 65 20 66 69 6c 74 65 | kernel..Zebra/Kernel.route.filte |
| 1567a0 | 72 69 6e 67 00 5a 6f 6e 65 20 42 61 73 65 64 20 46 69 72 65 77 61 6c 6c 00 5a 6f 6e 65 20 42 61 | ring.Zone.Based.Firewall.Zone.Ba |
| 1567c0 | 73 65 64 20 46 69 72 65 77 61 6c 6c 20 28 44 65 70 72 65 63 61 74 65 64 29 00 5a 6f 6e 65 2d 50 | sed.Firewall.(Deprecated).Zone-P |
| 1567e0 | 6f 6c 69 63 79 20 4f 76 65 72 76 69 65 77 00 5a 6f 6e 65 2d 62 61 73 65 64 20 66 69 72 65 77 61 | olicy.Overview.Zone-based.firewa |
| 156800 | 6c 6c 00 5b 41 2e 42 2e 43 2e 44 5d 20 e2 80 93 20 6c 69 6e 6b 2d 73 74 61 74 65 2d 69 64 2e 20 | ll.[A.B.C.D].....link-state-id.. |
| 156820 | 57 69 74 68 20 74 68 69 73 20 73 70 65 63 69 66 69 65 64 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 | With.this.specified.the.command. |
| 156840 | 64 69 73 70 6c 61 79 73 20 70 6f 72 74 69 6f 6e 20 6f 66 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 | displays.portion.of.the.network. |
| 156860 | 65 6e 76 69 72 6f 6e 6d 65 6e 74 20 74 68 61 74 20 69 73 20 62 65 69 6e 67 20 64 65 73 63 72 69 | environment.that.is.being.descri |
| 156880 | 62 65 64 20 62 79 20 74 68 65 20 61 64 76 65 72 74 69 73 65 6d 65 6e 74 2e 20 54 68 65 20 76 61 | bed.by.the.advertisement..The.va |
| 1568a0 | 6c 75 65 20 65 6e 74 65 72 65 64 20 64 65 70 65 6e 64 73 20 6f 6e 20 74 68 65 20 61 64 76 65 72 | lue.entered.depends.on.the.adver |
| 1568c0 | 74 69 73 65 6d 65 6e 74 e2 80 99 73 20 4c 53 20 74 79 70 65 2e 20 49 74 20 6d 75 73 74 20 62 65 | tisement...s.LS.type..It.must.be |
| 1568e0 | 20 65 6e 74 65 72 65 64 20 69 6e 20 74 68 65 20 66 6f 72 6d 20 6f 66 20 61 6e 20 49 50 20 61 64 | .entered.in.the.form.of.an.IP.ad |
| 156900 | 64 72 65 73 73 2e 00 60 31 2e 20 43 72 65 61 74 65 20 61 6e 20 65 76 65 6e 74 20 68 61 6e 64 6c | dress..`1..Create.an.event.handl |
| 156920 | 65 72 60 5f 00 60 32 2e 20 41 64 64 20 72 65 67 65 78 20 74 6f 20 74 68 65 20 73 63 72 69 70 74 | er`_.`2..Add.regex.to.the.script |
| 156940 | 60 5f 00 60 33 2e 20 41 64 64 20 61 20 66 75 6c 6c 20 70 61 74 68 20 74 6f 20 74 68 65 20 73 63 | `_.`3..Add.a.full.path.to.the.sc |
| 156960 | 72 69 70 74 60 5f 00 60 34 2e 20 41 64 64 20 6f 70 74 69 6f 6e 61 6c 20 70 61 72 61 6d 65 74 65 | ript`_.`4..Add.optional.paramete |
| 156980 | 72 73 60 5f 00 60 3c 6e 61 6d 65 3e 60 20 6d 75 73 74 20 62 65 20 69 64 65 6e 74 69 63 61 6c 20 | rs`_.`<name>`.must.be.identical. |
| 1569a0 | 6f 6e 20 62 6f 74 68 20 73 69 64 65 73 21 00 60 43 6f 6d 6d 6f 6e 20 41 70 70 6c 69 63 61 74 69 | on.both.sides!.`Common.Applicati |
| 1569c0 | 6f 6e 73 20 4b 65 70 74 20 45 6e 68 61 6e 63 65 64 60 5f 20 28 43 41 4b 45 29 20 69 73 20 61 20 | ons.Kept.Enhanced`_.(CAKE).is.a. |
| 1569e0 | 63 6f 6d 70 72 65 68 65 6e 73 69 76 65 20 71 75 65 75 65 20 6d 61 6e 61 67 65 6d 65 6e 74 20 73 | comprehensive.queue.management.s |
| 156a00 | 79 73 74 65 6d 2c 20 69 6d 70 6c 65 6d 65 6e 74 65 64 20 61 73 20 61 20 71 75 65 75 65 20 64 69 | ystem,.implemented.as.a.queue.di |
| 156a20 | 73 63 69 70 6c 69 6e 65 20 28 71 64 69 73 63 29 20 66 6f 72 20 74 68 65 20 4c 69 6e 75 78 20 6b | scipline.(qdisc).for.the.Linux.k |
| 156a40 | 65 72 6e 65 6c 2e 20 49 74 20 69 73 20 64 65 73 69 67 6e 65 64 20 74 6f 20 72 65 70 6c 61 63 65 | ernel..It.is.designed.to.replace |
| 156a60 | 20 61 6e 64 20 69 6d 70 72 6f 76 65 20 75 70 6f 6e 20 74 68 65 20 63 6f 6d 70 6c 65 78 20 68 69 | .and.improve.upon.the.complex.hi |
| 156a80 | 65 72 61 72 63 68 79 20 6f 66 20 73 69 6d 70 6c 65 20 71 64 69 73 63 73 20 70 72 65 73 65 6e 74 | erarchy.of.simple.qdiscs.present |
| 156aa0 | 6c 79 20 72 65 71 75 69 72 65 64 20 74 6f 20 65 66 66 65 63 74 69 76 65 6c 79 20 74 61 63 6b 6c | ly.required.to.effectively.tackl |
| 156ac0 | 65 20 74 68 65 20 62 75 66 66 65 72 62 6c 6f 61 74 20 70 72 6f 62 6c 65 6d 20 61 74 20 74 68 65 | e.the.bufferbloat.problem.at.the |
| 156ae0 | 20 6e 65 74 77 6f 72 6b 20 65 64 67 65 2e 00 60 60 24 20 74 61 69 6c 20 2d 6e 20 2b 32 20 63 61 | .network.edge..``$.tail.-n.+2.ca |
| 156b00 | 2e 6b 65 79 20 7c 20 68 65 61 64 20 2d 6e 20 2d 31 20 7c 20 74 72 20 2d 64 20 27 5c 6e 27 60 60 | .key.|.head.-n.-1.|.tr.-d.'\n'`` |
| 156b20 | 00 60 60 24 20 74 61 69 6c 20 2d 6e 20 2b 32 20 63 61 2e 70 65 6d 20 7c 20 68 65 61 64 20 2d 6e | .``$.tail.-n.+2.ca.pem.|.head.-n |
| 156b40 | 20 2d 31 20 7c 20 74 72 20 2d 64 20 27 5c 6e 27 60 60 00 60 60 24 20 74 61 69 6c 20 2d 6e 20 2b | .-1.|.tr.-d.'\n'``.``$.tail.-n.+ |
| 156b60 | 32 20 63 65 72 74 2e 6b 65 79 20 7c 20 68 65 61 64 20 2d 6e 20 2d 31 20 7c 20 74 72 20 2d 64 20 | 2.cert.key.|.head.-n.-1.|.tr.-d. |
| 156b80 | 27 5c 6e 27 60 60 00 60 60 24 20 74 61 69 6c 20 2d 6e 20 2b 32 20 63 65 72 74 2e 70 65 6d 20 7c | '\n'``.``$.tail.-n.+2.cert.pem.| |
| 156ba0 | 20 68 65 61 64 20 2d 6e 20 2d 31 20 7c 20 74 72 20 2d 64 20 27 5c 6e 27 60 60 00 60 60 2b 60 60 | .head.-n.-1.|.tr.-d.'\n'``.``+`` |
| 156bc0 | 20 73 75 63 63 65 73 73 66 75 6c 00 60 60 2d 60 60 20 66 61 69 6c 65 64 00 60 60 2f 63 6f 6e 66 | .successful.``-``.failed.``/conf |
| 156be0 | 69 67 2f 73 63 72 69 70 74 73 2f 64 68 63 70 2d 63 6c 69 65 6e 74 2f 70 6f 73 74 2d 68 6f 6f 6b | ig/scripts/dhcp-client/post-hook |
| 156c00 | 73 2e 64 2f 60 60 00 60 60 2f 63 6f 6e 66 69 67 2f 73 63 72 69 70 74 73 2f 64 68 63 70 2d 63 6c | s.d/``.``/config/scripts/dhcp-cl |
| 156c20 | 69 65 6e 74 2f 70 72 65 2d 68 6f 6f 6b 73 2e 64 2f 60 60 00 60 60 30 2e 70 6f 6f 6c 2e 6e 74 70 | ient/pre-hooks.d/``.``0.pool.ntp |
| 156c40 | 2e 6f 72 67 60 60 00 60 60 30 60 60 20 2d 20 32 30 20 6f 72 20 34 30 20 4d 48 7a 20 63 68 61 6e | .org``.``0``.-.20.or.40.MHz.chan |
| 156c60 | 6e 65 6c 20 77 69 64 74 68 20 28 64 65 66 61 75 6c 74 29 00 60 60 30 60 60 20 2d 20 48 45 2d 4d | nel.width.(default).``0``.-.HE-M |
| 156c80 | 43 53 20 30 2d 37 00 60 60 30 60 60 3a 20 4e 6f 20 72 65 70 6c 61 79 20 77 69 6e 64 6f 77 2c 20 | CS.0-7.``0``:.No.replay.window,. |
| 156ca0 | 73 74 72 69 63 74 20 63 68 65 63 6b 00 60 60 31 2d 34 32 39 34 39 36 37 32 39 35 60 60 3a 20 4e | strict.check.``1-4294967295``:.N |
| 156cc0 | 75 6d 62 65 72 20 6f 66 20 70 61 63 6b 65 74 73 20 74 68 61 74 20 63 6f 75 6c 64 20 62 65 20 6d | umber.of.packets.that.could.be.m |
| 156ce0 | 69 73 6f 72 64 65 72 65 64 00 60 60 31 2e 70 6f 6f 6c 2e 6e 74 70 2e 6f 72 67 60 60 00 60 60 31 | isordered.``1.pool.ntp.org``.``1 |
| 156d00 | 31 35 32 30 30 60 60 20 2d 20 31 31 35 2c 32 30 30 20 62 70 73 20 28 64 65 66 61 75 6c 74 20 66 | 15200``.-.115,200.bps.(default.f |
| 156d20 | 6f 72 20 73 65 72 69 61 6c 20 63 6f 6e 73 6f 6c 65 29 00 60 60 31 32 30 30 60 60 20 2d 20 31 32 | or.serial.console).``1200``.-.12 |
| 156d40 | 30 30 20 62 70 73 00 60 60 31 33 31 60 60 20 2d 20 32 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 | 00.bps.``131``.-.20.MHz.channel. |
| 156d60 | 77 69 64 74 68 00 60 60 31 33 31 60 60 20 2d 20 32 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 77 | width.``131``.-.20.MHz.channel.w |
| 156d80 | 69 64 74 68 20 28 36 47 48 7a 29 00 60 60 31 33 32 60 60 20 2d 20 34 30 20 4d 48 7a 20 63 68 61 | idth.(6GHz).``132``.-.40.MHz.cha |
| 156da0 | 6e 6e 65 6c 20 77 69 64 74 68 00 60 60 31 33 32 60 60 20 2d 20 34 30 20 4d 48 7a 20 63 68 61 6e | nnel.width.``132``.-.40.MHz.chan |
| 156dc0 | 6e 65 6c 20 77 69 64 74 68 20 28 36 47 48 7a 29 00 60 60 31 33 33 60 60 20 2d 20 38 30 20 4d 48 | nel.width.(6GHz).``133``.-.80.MH |
| 156de0 | 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 00 60 60 31 33 33 60 60 20 2d 20 38 30 20 4d 48 7a | z.channel.width.``133``.-.80.MHz |
| 156e00 | 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 20 28 36 47 48 7a 29 00 60 60 31 33 34 60 60 20 2d 20 | .channel.width.(6GHz).``134``.-. |
| 156e20 | 31 36 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 00 60 60 31 33 34 60 60 20 2d 20 | 160.MHz.channel.width.``134``.-. |
| 156e40 | 31 36 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 20 28 36 47 48 7a 29 00 60 60 31 | 160.MHz.channel.width.(6GHz).``1 |
| 156e60 | 33 35 60 60 20 2d 20 38 30 2b 38 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 00 60 | 35``.-.80+80.MHz.channel.width.` |
| 156e80 | 60 31 33 35 60 60 20 2d 20 38 30 2b 38 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 | `135``.-.80+80.MHz.channel.width |
| 156ea0 | 20 28 36 47 48 7a 29 00 60 60 31 39 32 2e 31 36 38 2e 32 2e 32 35 34 60 60 20 49 50 20 61 64 64 | .(6GHz).``192.168.2.254``.IP.add |
| 156ec0 | 72 65 65 73 73 20 6f 6e 20 56 79 4f 53 20 65 74 68 32 20 66 72 6f 6d 20 49 53 50 32 00 60 60 31 | reess.on.VyOS.eth2.from.ISP2.``1 |
| 156ee0 | 39 32 30 30 60 60 20 2d 20 31 39 2c 32 30 30 20 62 70 73 00 60 60 31 60 60 20 2d 20 38 30 20 4d | 9200``.-.19,200.bps.``1``.-.80.M |
| 156f00 | 48 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 00 60 60 31 60 60 20 2d 20 48 45 2d 4d 43 53 20 | Hz.channel.width.``1``.-.HE-MCS. |
| 156f20 | 30 2d 39 00 60 60 32 2e 70 6f 6f 6c 2e 6e 74 70 2e 6f 72 67 60 60 00 60 60 32 30 33 2e 30 2e 31 | 0-9.``2.pool.ntp.org``.``203.0.1 |
| 156f40 | 31 33 2e 32 35 34 60 60 20 49 50 20 61 64 64 72 65 65 73 73 20 6f 6e 20 56 79 4f 53 20 65 74 68 | 13.254``.IP.addreess.on.VyOS.eth |
| 156f60 | 31 20 66 72 6f 6d 20 49 53 50 31 00 60 60 32 34 30 30 60 60 20 2d 20 32 34 30 30 20 62 70 73 00 | 1.from.ISP1.``2400``.-.2400.bps. |
| 156f80 | 60 60 32 60 60 20 2d 20 31 36 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 00 60 60 | ``2``.-.160.MHz.channel.width.`` |
| 156fa0 | 32 60 60 20 2d 20 48 45 2d 4d 43 53 20 30 2d 31 31 00 60 60 33 38 34 30 30 60 60 20 2d 20 33 38 | 2``.-.HE-MCS.0-11.``38400``.-.38 |
| 156fc0 | 2c 34 30 30 20 62 70 73 20 28 64 65 66 61 75 6c 74 20 66 6f 72 20 58 65 6e 20 63 6f 6e 73 6f 6c | ,400.bps.(default.for.Xen.consol |
| 156fe0 | 65 29 00 60 60 33 60 60 20 2d 20 38 30 2b 38 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 | e).``3``.-.80+80.MHz.channel.wid |
| 157000 | 74 68 00 60 60 33 60 60 20 2d 20 48 45 2d 4d 43 53 20 69 73 20 6e 6f 74 20 73 75 70 70 6f 72 74 | th.``3``.-.HE-MCS.is.not.support |
| 157020 | 65 64 00 60 60 34 38 30 30 60 60 20 2d 20 34 38 30 30 20 62 70 73 00 60 60 35 37 36 30 30 60 60 | ed.``4800``.-.4800.bps.``57600`` |
| 157040 | 20 2d 20 35 37 2c 36 30 30 20 62 70 73 00 60 60 36 34 3a 66 66 39 62 3a 3a 2f 39 36 60 60 20 69 | .-.57,600.bps.``64:ff9b::/96``.i |
| 157060 | 73 20 74 68 65 20 77 65 6c 6c 2d 6b 6e 6f 77 6e 20 70 72 65 66 69 78 20 66 6f 72 20 49 50 76 34 | s.the.well-known.prefix.for.IPv4 |
| 157080 | 2d 65 6d 62 65 64 64 65 64 20 49 50 76 36 20 61 64 64 72 65 73 73 65 73 2e 20 54 68 65 20 70 72 | -embedded.IPv6.addresses..The.pr |
| 1570a0 | 65 66 69 78 20 69 73 20 75 73 65 64 20 74 6f 20 72 65 70 72 65 73 65 6e 74 20 49 50 76 34 20 61 | efix.is.used.to.represent.IPv4.a |
| 1570c0 | 64 64 72 65 73 73 65 73 20 69 6e 20 61 6e 20 49 50 76 36 20 61 64 64 72 65 73 73 20 66 6f 72 6d | ddresses.in.an.IPv6.address.form |
| 1570e0 | 61 74 2e 20 54 68 65 20 49 50 76 34 20 61 64 64 72 65 73 73 20 69 73 20 65 6e 63 6f 64 65 64 20 | at..The.IPv4.address.is.encoded. |
| 157100 | 69 6e 20 74 68 65 20 6c 6f 77 2d 6f 72 64 65 72 20 33 32 20 62 69 74 73 20 6f 66 20 74 68 65 20 | in.the.low-order.32.bits.of.the. |
| 157120 | 49 50 76 36 20 61 64 64 72 65 73 73 2e 20 54 68 65 20 68 69 67 68 2d 6f 72 64 65 72 20 33 32 20 | IPv6.address..The.high-order.32. |
| 157140 | 62 69 74 73 20 61 72 65 20 73 65 74 20 74 6f 20 74 68 65 20 77 65 6c 6c 2d 6b 6e 6f 77 6e 20 70 | bits.are.set.to.the.well-known.p |
| 157160 | 72 65 66 69 78 20 36 34 3a 66 66 39 62 3a 3a 2f 39 36 2e 00 60 60 38 30 32 2e 33 61 64 60 60 20 | refix.64:ff9b::/96..``802.3ad``. |
| 157180 | 2d 20 49 45 45 45 20 38 30 32 2e 33 61 64 20 44 79 6e 61 6d 69 63 20 6c 69 6e 6b 20 61 67 67 72 | -.IEEE.802.3ad.Dynamic.link.aggr |
| 1571a0 | 65 67 61 74 69 6f 6e 2e 20 43 72 65 61 74 65 73 20 61 67 67 72 65 67 61 74 69 6f 6e 20 67 72 6f | egation..Creates.aggregation.gro |
| 1571c0 | 75 70 73 20 74 68 61 74 20 73 68 61 72 65 20 74 68 65 20 73 61 6d 65 20 73 70 65 65 64 20 61 6e | ups.that.share.the.same.speed.an |
| 1571e0 | 64 20 64 75 70 6c 65 78 20 73 65 74 74 69 6e 67 73 2e 20 55 74 69 6c 69 7a 65 73 20 61 6c 6c 20 | d.duplex.settings..Utilizes.all. |
| 157200 | 73 6c 61 76 65 73 20 69 6e 20 74 68 65 20 61 63 74 69 76 65 20 61 67 67 72 65 67 61 74 6f 72 20 | slaves.in.the.active.aggregator. |
| 157220 | 61 63 63 6f 72 64 69 6e 67 20 74 6f 20 74 68 65 20 38 30 32 2e 33 61 64 20 73 70 65 63 69 66 69 | according.to.the.802.3ad.specifi |
| 157240 | 63 61 74 69 6f 6e 2e 00 60 60 38 31 60 60 20 2d 20 32 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 | cation..``81``.-.20.MHz.channel. |
| 157260 | 77 69 64 74 68 20 28 32 2e 34 47 48 7a 29 00 60 60 38 33 60 60 20 2d 20 34 30 20 4d 48 7a 20 63 | width.(2.4GHz).``83``.-.40.MHz.c |
| 157280 | 68 61 6e 6e 65 6c 20 77 69 64 74 68 2c 20 73 65 63 6f 6e 64 61 72 79 20 32 30 4d 48 7a 20 63 68 | hannel.width,.secondary.20MHz.ch |
| 1572a0 | 61 6e 6e 65 6c 20 61 62 6f 76 65 20 70 72 69 6d 61 72 79 20 63 68 61 6e 6e 65 6c 20 28 32 2e 34 | annel.above.primary.channel.(2.4 |
| 1572c0 | 47 48 7a 29 00 60 60 38 34 60 60 20 2d 20 34 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 | GHz).``84``.-.40.MHz.channel.wid |
| 1572e0 | 74 68 2c 20 73 65 63 6f 6e 64 61 72 79 20 32 30 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 62 65 6c 6f | th,.secondary.20MHz.channel.belo |
| 157300 | 77 20 70 72 69 6d 61 72 79 20 63 68 61 6e 6e 65 6c 20 28 32 2e 34 47 48 7a 29 00 60 60 39 36 30 | w.primary.channel.(2.4GHz).``960 |
| 157320 | 30 60 60 20 2d 20 39 36 30 30 20 62 70 73 00 60 60 3c 20 64 68 2d 67 72 6f 75 70 20 3e 60 60 20 | 0``.-.9600.bps.``<.dh-group.>``. |
| 157340 | 64 65 66 69 6e 65 73 20 61 20 44 69 66 66 69 65 2d 48 65 6c 6c 6d 61 6e 20 67 72 6f 75 70 20 66 | defines.a.Diffie-Hellman.group.f |
| 157360 | 6f 72 20 50 46 53 3b 00 60 60 40 60 60 20 55 73 65 20 40 20 61 73 20 72 65 63 6f 72 64 20 6e 61 | or.PFS;.``@``.Use.@.as.record.na |
| 157380 | 6d 65 20 74 6f 20 73 65 74 20 74 68 65 20 72 65 63 6f 72 64 20 66 6f 72 20 74 68 65 20 72 6f 6f | me.to.set.the.record.for.the.roo |
| 1573a0 | 74 20 64 6f 6d 61 69 6e 2e 00 60 60 4b 6e 6f 77 6e 20 6c 69 6d 69 74 61 74 69 6f 6e 73 3a 60 60 | t.domain..``Known.limitations:`` |
| 1573c0 | 00 60 60 53 74 61 74 65 66 75 6c 2d 49 50 76 36 2d 41 64 64 72 65 73 73 2d 50 6f 6f 6c 60 60 20 | .``Stateful-IPv6-Address-Pool``. |
| 1573e0 | 61 6e 64 20 60 60 44 65 6c 65 67 61 74 65 64 2d 49 50 76 36 2d 50 72 65 66 69 78 2d 50 6f 6f 6c | and.``Delegated-IPv6-Prefix-Pool |
| 157400 | 60 60 20 61 72 65 20 64 65 66 69 6e 65 64 20 69 6e 20 52 46 43 36 39 31 31 2e 20 49 66 20 74 68 | ``.are.defined.in.RFC6911..If.th |
| 157420 | 65 79 20 61 72 65 20 6e 6f 74 20 64 65 66 69 6e 65 64 20 69 6e 20 79 6f 75 72 20 52 41 44 49 55 | ey.are.not.defined.in.your.RADIU |
| 157440 | 53 20 73 65 72 76 65 72 2c 20 61 64 64 20 6e 65 77 20 64 69 63 74 69 6f 6e 61 72 79 5f 2e 00 60 | S.server,.add.new.dictionary_..` |
| 157460 | 60 57 4c 42 5f 49 4e 54 45 52 46 41 43 45 5f 4e 41 4d 45 3d 5b 69 6e 74 65 72 66 61 63 65 6e 61 | `WLB_INTERFACE_NAME=[interfacena |
| 157480 | 6d 65 5d 60 60 3a 20 49 6e 74 65 72 66 61 63 65 20 74 6f 20 62 65 20 6d 6f 6e 69 74 6f 72 65 64 | me]``:.Interface.to.be.monitored |
| 1574a0 | 00 60 60 57 4c 42 5f 49 4e 54 45 52 46 41 43 45 5f 53 54 41 54 45 3d 5b 41 43 54 49 56 45 7c 46 | .``WLB_INTERFACE_STATE=[ACTIVE|F |
| 1574c0 | 41 49 4c 45 44 5d 60 60 3a 20 49 6e 74 65 72 66 61 63 65 20 73 74 61 74 65 00 60 60 61 60 60 20 | AILED]``:.Interface.state.``a``. |
| 1574e0 | 2d 20 38 30 32 2e 31 31 61 20 2d 20 35 34 20 4d 62 69 74 73 2f 73 65 63 00 60 60 61 63 60 60 20 | -.802.11a.-.54.Mbits/sec.``ac``. |
| 157500 | 2d 20 38 30 32 2e 31 31 61 63 20 2d 20 31 33 30 30 20 4d 62 69 74 73 2f 73 65 63 00 60 60 61 63 | -.802.11ac.-.1300.Mbits/sec.``ac |
| 157520 | 63 65 70 74 2d 6f 77 6e 2d 6e 65 78 74 68 6f 70 60 60 20 2d 20 20 20 20 20 20 20 20 20 20 20 57 | cept-own-nexthop``.-...........W |
| 157540 | 65 6c 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d 75 6e 69 74 69 65 73 20 76 61 6c 75 65 20 61 63 63 65 | ell-known.communities.value.acce |
| 157560 | 70 74 2d 6f 77 6e 2d 6e 65 78 74 68 6f 70 20 30 78 46 46 46 46 30 30 30 38 00 60 60 61 63 63 65 | pt-own-nexthop.0xFFFF0008.``acce |
| 157580 | 70 74 2d 6f 77 6e 60 60 20 2d 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 57 65 6c | pt-own``.-...................Wel |
| 1575a0 | 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d 75 6e 69 74 69 65 73 20 76 61 6c 75 65 20 41 43 43 45 50 54 | l-known.communities.value.ACCEPT |
| 1575c0 | 5f 4f 57 4e 20 30 78 46 46 46 46 30 30 30 31 00 60 60 61 63 63 65 70 74 60 60 3a 20 61 63 63 65 | _OWN.0xFFFF0001.``accept``:.acce |
| 1575e0 | 70 74 20 74 68 65 20 70 61 63 6b 65 74 2e 00 60 60 61 63 63 65 73 73 2d 70 6f 69 6e 74 60 60 20 | pt.the.packet..``access-point``. |
| 157600 | 2d 20 41 63 63 65 73 73 2d 70 6f 69 6e 74 20 66 6f 72 77 61 72 64 73 20 70 61 63 6b 65 74 73 20 | -.Access-point.forwards.packets. |
| 157620 | 62 65 74 77 65 65 6e 20 6f 74 68 65 72 20 6e 6f 64 65 73 00 60 60 61 63 74 69 6f 6e 60 60 20 6b | between.other.nodes.``action``.k |
| 157640 | 65 65 70 2d 61 6c 69 76 65 20 66 61 69 6c 75 72 65 20 61 63 74 69 6f 6e 3a 00 60 60 61 63 74 69 | eep-alive.failure.action:.``acti |
| 157660 | 76 65 2d 62 61 63 6b 75 70 60 60 20 2d 20 41 63 74 69 76 65 2d 62 61 63 6b 75 70 20 70 6f 6c 69 | ve-backup``.-.Active-backup.poli |
| 157680 | 63 79 3a 20 4f 6e 6c 79 20 6f 6e 65 20 73 6c 61 76 65 20 69 6e 20 74 68 65 20 62 6f 6e 64 20 69 | cy:.Only.one.slave.in.the.bond.i |
| 1576a0 | 73 20 61 63 74 69 76 65 2e 20 41 20 64 69 66 66 65 72 65 6e 74 20 73 6c 61 76 65 20 62 65 63 6f | s.active..A.different.slave.beco |
| 1576c0 | 6d 65 73 20 61 63 74 69 76 65 20 69 66 2c 20 61 6e 64 20 6f 6e 6c 79 20 69 66 2c 20 74 68 65 20 | mes.active.if,.and.only.if,.the. |
| 1576e0 | 61 63 74 69 76 65 20 73 6c 61 76 65 20 66 61 69 6c 73 2e 20 54 68 65 20 62 6f 6e 64 27 73 20 4d | active.slave.fails..The.bond's.M |
| 157700 | 41 43 20 61 64 64 72 65 73 73 20 69 73 20 65 78 74 65 72 6e 61 6c 6c 79 20 76 69 73 69 62 6c 65 | AC.address.is.externally.visible |
| 157720 | 20 6f 6e 20 6f 6e 6c 79 20 6f 6e 65 20 70 6f 72 74 20 28 6e 65 74 77 6f 72 6b 20 61 64 61 70 74 | .on.only.one.port.(network.adapt |
| 157740 | 65 72 29 20 74 6f 20 61 76 6f 69 64 20 63 6f 6e 66 75 73 69 6e 67 20 74 68 65 20 73 77 69 74 63 | er).to.avoid.confusing.the.switc |
| 157760 | 68 2e 00 60 60 61 63 74 69 76 65 60 60 20 54 68 69 73 20 69 73 20 74 68 65 20 6c 6f 77 2d 6c 65 | h..``active``.This.is.the.low-le |
| 157780 | 76 65 6c 20 66 69 72 6d 77 61 72 65 20 63 6f 6e 74 72 6f 6c 20 6d 6f 64 65 20 62 61 73 65 64 20 | vel.firmware.control.mode.based. |
| 1577a0 | 6f 6e 20 74 68 65 20 70 72 6f 66 69 6c 65 20 73 65 74 20 61 6e 64 20 74 68 65 20 73 79 73 74 65 | on.the.profile.set.and.the.syste |
| 1577c0 | 6d 20 67 6f 76 65 72 6e 6f 72 20 68 61 73 20 6e 6f 20 65 66 66 65 63 74 2e 00 60 60 61 64 61 70 | m.governor.has.no.effect..``adap |
| 1577e0 | 74 69 76 65 2d 6c 6f 61 64 2d 62 61 6c 61 6e 63 65 60 60 20 2d 20 41 64 61 70 74 69 76 65 20 6c | tive-load-balance``.-.Adaptive.l |
| 157800 | 6f 61 64 20 62 61 6c 61 6e 63 69 6e 67 3a 20 69 6e 63 6c 75 64 65 73 20 74 72 61 6e 73 6d 69 74 | oad.balancing:.includes.transmit |
| 157820 | 2d 6c 6f 61 64 2d 62 61 6c 61 6e 63 65 20 70 6c 75 73 20 72 65 63 65 69 76 65 20 6c 6f 61 64 20 | -load-balance.plus.receive.load. |
| 157840 | 62 61 6c 61 6e 63 69 6e 67 20 66 6f 72 20 49 50 56 34 20 74 72 61 66 66 69 63 2c 20 61 6e 64 20 | balancing.for.IPV4.traffic,.and. |
| 157860 | 64 6f 65 73 20 6e 6f 74 20 72 65 71 75 69 72 65 20 61 6e 79 20 73 70 65 63 69 61 6c 20 73 77 69 | does.not.require.any.special.swi |
| 157880 | 74 63 68 20 73 75 70 70 6f 72 74 2e 20 54 68 65 20 72 65 63 65 69 76 65 20 6c 6f 61 64 20 62 61 | tch.support..The.receive.load.ba |
| 1578a0 | 6c 61 6e 63 69 6e 67 20 69 73 20 61 63 68 69 65 76 65 64 20 62 79 20 41 52 50 20 6e 65 67 6f 74 | lancing.is.achieved.by.ARP.negot |
| 1578c0 | 69 61 74 69 6f 6e 2e 20 54 68 65 20 62 6f 6e 64 69 6e 67 20 64 72 69 76 65 72 20 69 6e 74 65 72 | iation..The.bonding.driver.inter |
| 1578e0 | 63 65 70 74 73 20 74 68 65 20 41 52 50 20 52 65 70 6c 69 65 73 20 73 65 6e 74 20 62 79 20 74 68 | cepts.the.ARP.Replies.sent.by.th |
| 157900 | 65 20 6c 6f 63 61 6c 20 73 79 73 74 65 6d 20 6f 6e 20 74 68 65 69 72 20 77 61 79 20 6f 75 74 20 | e.local.system.on.their.way.out. |
| 157920 | 61 6e 64 20 6f 76 65 72 77 72 69 74 65 73 20 74 68 65 20 73 6f 75 72 63 65 20 68 61 72 64 77 61 | and.overwrites.the.source.hardwa |
| 157940 | 72 65 20 61 64 64 72 65 73 73 20 77 69 74 68 20 74 68 65 20 75 6e 69 71 75 65 20 68 61 72 64 77 | re.address.with.the.unique.hardw |
| 157960 | 61 72 65 20 61 64 64 72 65 73 73 20 6f 66 20 6f 6e 65 20 6f 66 20 74 68 65 20 73 6c 61 76 65 73 | are.address.of.one.of.the.slaves |
| 157980 | 20 69 6e 20 74 68 65 20 62 6f 6e 64 20 73 75 63 68 20 74 68 61 74 20 64 69 66 66 65 72 65 6e 74 | .in.the.bond.such.that.different |
| 1579a0 | 20 70 65 65 72 73 20 75 73 65 20 64 69 66 66 65 72 65 6e 74 20 68 61 72 64 77 61 72 65 20 61 64 | .peers.use.different.hardware.ad |
| 1579c0 | 64 72 65 73 73 65 73 20 66 6f 72 20 74 68 65 20 73 65 72 76 65 72 2e 00 60 60 61 64 64 72 65 73 | dresses.for.the.server..``addres |
| 1579e0 | 73 60 60 20 49 50 20 61 64 64 72 65 73 73 20 6f 72 20 73 75 62 6e 65 74 2e 00 60 60 61 67 67 72 | s``.IP.address.or.subnet..``aggr |
| 157a00 | 65 73 73 69 76 65 60 60 20 75 73 65 20 41 67 67 72 65 73 73 69 76 65 20 6d 6f 64 65 20 66 6f 72 | essive``.use.Aggressive.mode.for |
| 157a20 | 20 4b 65 79 20 45 78 63 68 61 6e 67 65 73 20 69 6e 20 74 68 65 20 49 4b 45 76 31 20 70 72 6f 74 | .Key.Exchanges.in.the.IKEv1.prot |
| 157a40 | 6f 63 6f 6c 20 61 67 67 72 65 73 73 69 76 65 20 6d 6f 64 65 20 69 73 20 6d 75 63 68 20 6d 6f 72 | ocol.aggressive.mode.is.much.mor |
| 157a60 | 65 20 69 6e 73 65 63 75 72 65 20 63 6f 6d 70 61 72 65 64 20 74 6f 20 4d 61 69 6e 20 6d 6f 64 65 | e.insecure.compared.to.Main.mode |
| 157a80 | 3b 00 60 60 61 6c 6c 2d 61 76 61 69 6c 61 62 6c 65 60 60 20 61 6c 6c 20 63 68 65 63 6b 69 6e 67 | ;.``all-available``.all.checking |
| 157aa0 | 20 74 61 72 67 65 74 20 61 64 64 72 65 73 73 65 73 20 6d 75 73 74 20 62 65 20 61 76 61 69 6c 61 | .target.addresses.must.be.availa |
| 157ac0 | 62 6c 65 20 74 6f 20 70 61 73 73 20 74 68 69 73 20 63 68 65 63 6b 00 60 60 61 6d 64 5f 70 73 74 | ble.to.pass.this.check.``amd_pst |
| 157ae0 | 61 74 65 3d 7b 6d 6f 64 65 7d 60 60 20 53 65 74 73 20 74 68 65 20 70 2d 73 74 61 74 65 20 6d 6f | ate={mode}``.Sets.the.p-state.mo |
| 157b00 | 64 65 00 60 60 61 6e 79 2d 61 76 61 69 6c 61 62 6c 65 60 60 20 61 6e 79 20 6f 66 20 74 68 65 20 | de.``any-available``.any.of.the. |
| 157b20 | 63 68 65 63 6b 69 6e 67 20 74 61 72 67 65 74 20 61 64 64 72 65 73 73 65 73 20 6d 75 73 74 20 62 | checking.target.addresses.must.b |
| 157b40 | 65 20 61 76 61 69 6c 61 62 6c 65 20 74 6f 20 70 61 73 73 20 74 68 69 73 20 63 68 65 63 6b 00 60 | e.available.to.pass.this.check.` |
| 157b60 | 60 61 6e 79 60 60 20 55 73 65 20 61 6e 79 20 61 73 20 72 65 63 6f 72 64 20 6e 61 6d 65 20 74 6f | `any``.Use.any.as.record.name.to |
| 157b80 | 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 72 65 63 6f 72 64 20 61 73 20 61 20 77 69 6c 64 63 | .configure.the.record.as.a.wildc |
| 157ba0 | 61 72 64 2e 00 60 60 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6c 6f 63 61 6c 2d 69 64 2f 72 | ard..``authentication.local-id/r |
| 157bc0 | 65 6d 6f 74 65 2d 69 64 60 60 20 2d 20 49 4b 45 20 69 64 65 6e 74 69 66 69 63 61 74 69 6f 6e 20 | emote-id``.-.IKE.identification. |
| 157be0 | 69 73 20 75 73 65 64 20 66 6f 72 20 76 61 6c 69 64 61 74 69 6f 6e 20 6f 66 20 56 50 4e 20 70 65 | is.used.for.validation.of.VPN.pe |
| 157c00 | 65 72 20 64 65 76 69 63 65 73 20 64 75 72 69 6e 67 20 49 4b 45 20 6e 65 67 6f 74 69 61 74 69 6f | er.devices.during.IKE.negotiatio |
| 157c20 | 6e 2e 20 49 66 20 79 6f 75 20 64 6f 20 6e 6f 74 20 63 6f 6e 66 69 67 75 72 65 20 6c 6f 63 61 6c | n..If.you.do.not.configure.local |
| 157c40 | 2f 72 65 6d 6f 74 65 2d 69 64 65 6e 74 69 74 79 2c 20 74 68 65 20 64 65 76 69 63 65 20 75 73 65 | /remote-identity,.the.device.use |
| 157c60 | 73 20 74 68 65 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 61 64 64 72 65 73 73 20 74 68 61 74 20 | s.the.IPv4.or.IPv6.address.that. |
| 157c80 | 63 6f 72 72 65 73 70 6f 6e 64 73 20 74 6f 20 74 68 65 20 6c 6f 63 61 6c 2f 72 65 6d 6f 74 65 20 | corresponds.to.the.local/remote. |
| 157ca0 | 70 65 65 72 20 62 79 20 64 65 66 61 75 6c 74 2e 20 49 6e 20 63 65 72 74 61 69 6e 20 6e 65 74 77 | peer.by.default..In.certain.netw |
| 157cc0 | 6f 72 6b 20 73 65 74 75 70 73 20 28 6c 69 6b 65 20 69 70 73 65 63 20 69 6e 74 65 72 66 61 63 65 | ork.setups.(like.ipsec.interface |
| 157ce0 | 20 77 69 74 68 20 64 79 6e 61 6d 69 63 20 61 64 64 72 65 73 73 2c 20 6f 72 20 62 65 68 69 6e 64 | .with.dynamic.address,.or.behind |
| 157d00 | 20 74 68 65 20 4e 41 54 20 29 2c 20 74 68 65 20 49 4b 45 20 49 44 20 72 65 63 65 69 76 65 64 20 | .the.NAT.),.the.IKE.ID.received. |
| 157d20 | 66 72 6f 6d 20 74 68 65 20 70 65 65 72 20 64 6f 65 73 20 6e 6f 74 20 6d 61 74 63 68 20 74 68 65 | from.the.peer.does.not.match.the |
| 157d40 | 20 49 4b 45 20 67 61 74 65 77 61 79 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 74 68 65 20 64 | .IKE.gateway.configured.on.the.d |
| 157d60 | 65 76 69 63 65 2e 20 54 68 69 73 20 63 61 6e 20 6c 65 61 64 20 74 6f 20 61 20 50 68 61 73 65 20 | evice..This.can.lead.to.a.Phase. |
| 157d80 | 31 20 76 61 6c 69 64 61 74 69 6f 6e 20 66 61 69 6c 75 72 65 2e 20 53 6f 2c 20 6d 61 6b 65 20 73 | 1.validation.failure..So,.make.s |
| 157da0 | 75 72 65 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 6c 6f 63 61 6c 2f 72 65 6d 6f 74 | ure.to.configure.the.local/remot |
| 157dc0 | 65 20 69 64 20 65 78 70 6c 69 63 69 74 6c 79 20 61 6e 64 20 65 6e 73 75 72 65 20 74 68 61 74 20 | e.id.explicitly.and.ensure.that. |
| 157de0 | 74 68 65 20 49 4b 45 20 49 44 20 69 73 20 74 68 65 20 73 61 6d 65 20 61 73 20 74 68 65 20 72 65 | the.IKE.ID.is.the.same.as.the.re |
| 157e00 | 6d 6f 74 65 2d 69 64 65 6e 74 69 74 79 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 74 68 65 20 | mote-identity.configured.on.the. |
| 157e20 | 70 65 65 72 20 64 65 76 69 63 65 2e 00 60 60 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 60 60 20 | peer.device..``authentication``. |
| 157e40 | 2d 20 63 6f 6e 66 69 67 75 72 65 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 62 65 74 77 65 | -.configure.authentication.betwe |
| 157e60 | 65 6e 20 56 79 4f 53 20 61 6e 64 20 61 20 72 65 6d 6f 74 65 20 70 65 65 72 2e 20 49 66 20 70 72 | en.VyOS.and.a.remote.peer..If.pr |
| 157e80 | 65 2d 73 68 61 72 65 64 2d 73 65 63 72 65 74 20 6d 6f 64 65 20 69 73 20 75 73 65 64 2c 20 74 68 | e-shared-secret.mode.is.used,.th |
| 157ea0 | 65 20 73 65 63 72 65 74 20 6b 65 79 20 6d 75 73 74 20 62 65 20 64 65 66 69 6e 65 64 20 69 6e 20 | e.secret.key.must.be.defined.in. |
| 157ec0 | 60 60 73 65 74 20 76 70 6e 20 69 70 73 65 63 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 60 60 | ``set.vpn.ipsec.authentication`` |
| 157ee0 | 20 61 6e 64 20 73 75 62 6f 70 74 69 6f 6e 73 3a 00 60 60 61 75 74 68 65 6e 74 69 63 61 74 69 6f | .and.suboptions:.``authenticatio |
| 157f00 | 6e 60 60 20 2d 20 63 6f 6e 66 69 67 75 72 65 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 62 | n``.-.configure.authentication.b |
| 157f20 | 65 74 77 65 65 6e 20 56 79 4f 53 20 61 6e 64 20 61 20 72 65 6d 6f 74 65 20 70 65 65 72 2e 20 53 | etween.VyOS.and.a.remote.peer..S |
| 157f40 | 75 62 6f 70 74 69 6f 6e 73 3a 00 60 60 61 78 60 60 20 2d 20 38 30 32 2e 31 31 61 78 20 2d 20 65 | uboptions:.``ax``.-.802.11ax.-.e |
| 157f60 | 78 63 65 65 64 73 20 31 47 42 69 74 2f 73 65 63 00 60 60 62 60 60 20 2d 20 38 30 32 2e 31 31 62 | xceeds.1GBit/sec.``b``.-.802.11b |
| 157f80 | 20 2d 20 31 31 20 4d 62 69 74 73 2f 73 65 63 00 60 60 62 61 62 65 6c 60 60 20 2d 20 42 61 62 65 | .-.11.Mbits/sec.``babel``.-.Babe |
| 157fa0 | 6c 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 20 28 42 61 62 65 6c 29 00 60 60 62 65 67 | l.routing.protocol.(Babel).``beg |
| 157fc0 | 69 6e 60 60 20 4d 61 74 63 68 65 73 20 74 68 65 20 62 65 67 69 6e 6e 69 6e 67 20 6f 66 20 74 68 | in``.Matches.the.beginning.of.th |
| 157fe0 | 65 20 55 52 4c 20 70 61 74 68 00 60 60 62 67 70 60 60 20 2d 20 42 6f 72 64 65 72 20 47 61 74 65 | e.URL.path.``bgp``.-.Border.Gate |
| 158000 | 77 61 79 20 50 72 6f 74 6f 63 6f 6c 20 28 42 47 50 29 00 60 60 62 69 6e 64 60 60 20 2d 20 73 65 | way.Protocol.(BGP).``bind``.-.se |
| 158020 | 6c 65 63 74 20 61 20 56 54 49 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 62 69 6e 64 20 74 6f 20 | lect.a.VTI.interface.to.bind.to. |
| 158040 | 74 68 69 73 20 70 65 65 72 3b 00 60 60 62 6c 61 63 6b 68 6f 6c 65 60 60 20 2d 20 20 20 20 20 20 | this.peer;.``blackhole``.-...... |
| 158060 | 20 20 20 20 20 20 20 20 20 20 20 20 20 20 57 65 6c 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d 75 6e 69 | ..............Well-known.communi |
| 158080 | 74 69 65 73 20 76 61 6c 75 65 20 42 4c 41 43 4b 48 4f 4c 45 20 30 78 46 46 46 46 30 32 39 41 00 | ties.value.BLACKHOLE.0xFFFF029A. |
| 1580a0 | 60 60 62 72 6f 61 64 63 61 73 74 60 60 20 2d 20 42 72 6f 61 64 63 61 73 74 20 70 6f 6c 69 63 79 | ``broadcast``.-.Broadcast.policy |
| 1580c0 | 3a 20 74 72 61 6e 73 6d 69 74 73 20 65 76 65 72 79 74 68 69 6e 67 20 6f 6e 20 61 6c 6c 20 73 6c | :.transmits.everything.on.all.sl |
| 1580e0 | 61 76 65 20 69 6e 74 65 72 66 61 63 65 73 2e 00 60 60 62 75 72 73 74 60 60 3a 20 4e 75 6d 62 65 | ave.interfaces..``burst``:.Numbe |
| 158100 | 72 20 6f 66 20 70 61 63 6b 65 74 73 20 61 6c 6c 6f 77 65 64 20 74 6f 20 6f 76 65 72 73 68 6f 6f | r.of.packets.allowed.to.overshoo |
| 158120 | 74 20 74 68 65 20 6c 69 6d 69 74 20 77 69 74 68 69 6e 20 60 60 70 65 72 69 6f 64 60 60 2e 20 44 | t.the.limit.within.``period``..D |
| 158140 | 65 66 61 75 6c 74 20 35 2e 00 60 60 63 61 2d 63 65 72 74 2d 66 69 6c 65 60 60 20 2d 20 43 41 20 | efault.5..``ca-cert-file``.-.CA. |
| 158160 | 63 65 72 74 69 66 69 63 61 74 65 20 66 69 6c 65 2e 20 55 73 69 6e 67 20 66 6f 72 20 61 75 74 68 | certificate.file..Using.for.auth |
| 158180 | 65 6e 74 69 63 61 74 69 6e 67 20 72 65 6d 6f 74 65 20 70 65 65 72 3b 00 60 60 63 61 2d 63 65 72 | enticating.remote.peer;.``ca-cer |
| 1581a0 | 74 69 66 69 63 61 74 65 60 60 20 2d 20 43 41 20 63 65 72 74 69 66 69 63 61 74 65 20 69 6e 20 50 | tificate``.-.CA.certificate.in.P |
| 1581c0 | 4b 49 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 20 55 73 69 6e 67 20 66 6f 72 20 61 75 74 68 | KI.configuration..Using.for.auth |
| 1581e0 | 65 6e 74 69 63 61 74 69 6e 67 20 72 65 6d 6f 74 65 20 70 65 65 72 3b 00 60 60 63 64 70 60 60 20 | enticating.remote.peer;.``cdp``. |
| 158200 | 2d 20 4c 69 73 74 65 6e 20 66 6f 72 20 43 44 50 20 66 6f 72 20 43 69 73 63 6f 20 72 6f 75 74 65 | -.Listen.for.CDP.for.Cisco.route |
| 158220 | 72 73 2f 73 77 69 74 63 68 65 73 00 60 60 63 65 72 74 2d 66 69 6c 65 60 60 20 2d 20 63 65 72 74 | rs/switches.``cert-file``.-.cert |
| 158240 | 69 66 69 63 61 74 65 20 66 69 6c 65 2c 20 77 68 69 63 68 20 77 69 6c 6c 20 62 65 20 75 73 65 64 | ificate.file,.which.will.be.used |
| 158260 | 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6e 67 20 6c 6f 63 61 6c 20 72 6f 75 74 65 72 | .for.authenticating.local.router |
| 158280 | 20 6f 6e 20 72 65 6d 6f 74 65 20 70 65 65 72 3b 00 60 60 63 65 72 74 69 66 69 63 61 74 65 60 60 | .on.remote.peer;.``certificate`` |
| 1582a0 | 20 2d 20 63 65 72 74 69 66 69 63 61 74 65 20 66 69 6c 65 20 69 6e 20 50 4b 49 20 63 6f 6e 66 69 | .-.certificate.file.in.PKI.confi |
| 1582c0 | 67 75 72 61 74 69 6f 6e 2c 20 77 68 69 63 68 20 77 69 6c 6c 20 62 65 20 75 73 65 64 20 66 6f 72 | guration,.which.will.be.used.for |
| 1582e0 | 20 61 75 74 68 65 6e 74 69 63 61 74 69 6e 67 20 6c 6f 63 61 6c 20 72 6f 75 74 65 72 20 6f 6e 20 | .authenticating.local.router.on. |
| 158300 | 72 65 6d 6f 74 65 20 70 65 65 72 3b 00 60 60 63 6c 65 61 72 60 60 20 63 6c 6f 73 65 73 20 74 68 | remote.peer;.``clear``.closes.th |
| 158320 | 65 20 43 48 49 4c 44 5f 53 41 20 61 6e 64 20 64 6f 65 73 20 6e 6f 74 20 74 61 6b 65 20 66 75 72 | e.CHILD_SA.and.does.not.take.fur |
| 158340 | 74 68 65 72 20 61 63 74 69 6f 6e 20 28 64 65 66 61 75 6c 74 29 3b 00 60 60 63 6c 65 61 72 60 60 | ther.action.(default);.``clear`` |
| 158360 | 20 73 65 74 20 61 63 74 69 6f 6e 20 74 6f 20 63 6c 65 61 72 3b 00 60 60 63 6c 6f 73 65 2d 61 63 | .set.action.to.clear;.``close-ac |
| 158380 | 74 69 6f 6e 20 3d 20 6e 6f 6e 65 20 7c 20 63 6c 65 61 72 20 7c 20 68 6f 6c 64 20 7c 20 72 65 73 | tion.=.none.|.clear.|.hold.|.res |
| 1583a0 | 74 61 72 74 60 60 20 2d 20 64 65 66 69 6e 65 73 20 74 68 65 20 61 63 74 69 6f 6e 20 74 6f 20 74 | tart``.-.defines.the.action.to.t |
| 1583c0 | 61 6b 65 20 69 66 20 74 68 65 20 72 65 6d 6f 74 65 20 70 65 65 72 20 75 6e 65 78 70 65 63 74 65 | ake.if.the.remote.peer.unexpecte |
| 1583e0 | 64 6c 79 20 63 6c 6f 73 65 73 20 61 20 43 48 49 4c 44 5f 53 41 20 28 73 65 65 20 61 62 6f 76 65 | dly.closes.a.CHILD_SA.(see.above |
| 158400 | 20 66 6f 72 20 6d 65 61 6e 69 6e 67 20 6f 66 20 76 61 6c 75 65 73 29 2e 20 41 20 63 6c 6f 73 65 | .for.meaning.of.values)..A.close |
| 158420 | 61 63 74 69 6f 6e 20 73 68 6f 75 6c 64 20 6e 6f 74 20 62 65 20 75 73 65 64 20 69 66 20 74 68 65 | action.should.not.be.used.if.the |
| 158440 | 20 70 65 65 72 20 75 73 65 73 20 72 65 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6f 72 20 75 | .peer.uses.reauthentication.or.u |
| 158460 | 6e 69 71 75 65 69 64 73 2e 00 60 60 63 6c 6f 73 65 2d 61 63 74 69 6f 6e 20 3d 20 6e 6f 6e 65 20 | niqueids..``close-action.=.none. |
| 158480 | 7c 20 63 6c 65 61 72 20 7c 20 74 72 61 70 20 7c 20 73 74 61 72 74 60 60 20 2d 20 64 65 66 69 6e | |.clear.|.trap.|.start``.-.defin |
| 1584a0 | 65 73 20 74 68 65 20 61 63 74 69 6f 6e 20 74 6f 20 74 61 6b 65 20 69 66 20 74 68 65 20 72 65 6d | es.the.action.to.take.if.the.rem |
| 1584c0 | 6f 74 65 20 70 65 65 72 20 75 6e 65 78 70 65 63 74 65 64 6c 79 20 63 6c 6f 73 65 73 20 61 20 43 | ote.peer.unexpectedly.closes.a.C |
| 1584e0 | 48 49 4c 44 5f 53 41 20 28 73 65 65 20 61 62 6f 76 65 20 66 6f 72 20 6d 65 61 6e 69 6e 67 20 6f | HILD_SA.(see.above.for.meaning.o |
| 158500 | 66 20 76 61 6c 75 65 73 29 2e 20 41 20 63 6c 6f 73 65 61 63 74 69 6f 6e 20 73 68 6f 75 6c 64 20 | f.values)..A.closeaction.should. |
| 158520 | 6e 6f 74 20 62 65 20 75 73 65 64 20 69 66 20 74 68 65 20 70 65 65 72 20 75 73 65 73 20 72 65 61 | not.be.used.if.the.peer.uses.rea |
| 158540 | 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6f 72 20 75 6e 69 71 75 65 69 64 73 2e 00 60 60 63 6c | uthentication.or.uniqueids..``cl |
| 158560 | 6f 73 65 2d 61 63 74 69 6f 6e 60 60 20 64 65 66 69 6e 65 73 20 74 68 65 20 61 63 74 69 6f 6e 20 | ose-action``.defines.the.action. |
| 158580 | 74 6f 20 74 61 6b 65 20 69 66 20 74 68 65 20 72 65 6d 6f 74 65 20 70 65 65 72 20 75 6e 65 78 70 | to.take.if.the.remote.peer.unexp |
| 1585a0 | 65 63 74 65 64 6c 79 20 63 6c 6f 73 65 73 20 61 20 43 48 49 4c 44 5f 53 41 3a 00 60 60 63 6f 6d | ectedly.closes.a.CHILD_SA:.``com |
| 1585c0 | 70 72 65 73 73 69 6f 6e 60 60 20 20 45 6e 61 62 6c 65 73 20 74 68 65 20 20 49 50 43 6f 6d 70 28 | pression``..Enables.the..IPComp( |
| 1585e0 | 49 50 20 50 61 79 6c 6f 61 64 20 43 6f 6d 70 72 65 73 73 69 6f 6e 29 20 70 72 6f 74 6f 63 6f 6c | IP.Payload.Compression).protocol |
| 158600 | 20 77 68 69 63 68 20 61 6c 6c 6f 77 73 20 63 6f 6d 70 72 65 73 73 69 6e 67 20 74 68 65 20 63 6f | .which.allows.compressing.the.co |
| 158620 | 6e 74 65 6e 74 20 6f 66 20 49 50 20 70 61 63 6b 65 74 73 2e 00 60 60 63 6f 6d 70 72 65 73 73 69 | ntent.of.IP.packets..``compressi |
| 158640 | 6f 6e 60 60 20 77 68 65 74 68 65 72 20 49 50 43 6f 6d 70 20 63 6f 6d 70 72 65 73 73 69 6f 6e 20 | on``.whether.IPComp.compression. |
| 158660 | 6f 66 20 63 6f 6e 74 65 6e 74 20 69 73 20 70 72 6f 70 6f 73 65 64 20 6f 6e 20 74 68 65 20 63 6f | of.content.is.proposed.on.the.co |
| 158680 | 6e 6e 65 63 74 69 6f 6e 3a 00 60 60 63 6f 6e 6e 65 63 74 65 64 60 60 20 2d 20 43 6f 6e 6e 65 63 | nnection:.``connected``.-.Connec |
| 1586a0 | 74 65 64 20 72 6f 75 74 65 73 20 28 64 69 72 65 63 74 6c 79 20 61 74 74 61 63 68 65 64 20 73 75 | ted.routes.(directly.attached.su |
| 1586c0 | 62 6e 65 74 20 6f 72 20 68 6f 73 74 29 00 60 60 63 6f 6e 6e 65 63 74 69 6f 6e 2d 74 79 70 65 60 | bnet.or.host).``connection-type` |
| 1586e0 | 60 20 2d 20 68 6f 77 20 74 6f 20 68 61 6e 64 6c 65 20 74 68 69 73 20 63 6f 6e 6e 65 63 74 69 6f | `.-.how.to.handle.this.connectio |
| 158700 | 6e 20 70 72 6f 63 65 73 73 2e 20 50 6f 73 73 69 62 6c 65 20 76 61 72 69 61 6e 74 73 3a 00 60 60 | n.process..Possible.variants:.`` |
| 158720 | 63 6f 6e 74 69 6e 75 65 60 60 3a 20 63 6f 6e 74 69 6e 75 65 20 70 61 72 73 69 6e 67 20 6e 65 78 | continue``:.continue.parsing.nex |
| 158740 | 74 20 72 75 6c 65 2e 00 60 60 63 72 6c 2d 66 69 6c 65 60 60 20 2d 20 66 69 6c 65 20 77 69 74 68 | t.rule..``crl-file``.-.file.with |
| 158760 | 20 74 68 65 20 43 65 72 74 69 66 69 63 61 74 65 20 52 65 76 6f 63 61 74 69 6f 6e 20 4c 69 73 74 | .the.Certificate.Revocation.List |
| 158780 | 2e 20 55 73 69 6e 67 20 74 6f 20 63 68 65 63 6b 20 69 66 20 61 20 63 65 72 74 69 66 69 63 61 74 | ..Using.to.check.if.a.certificat |
| 1587a0 | 65 20 66 6f 72 20 74 68 65 20 72 65 6d 6f 74 65 20 70 65 65 72 20 69 73 20 76 61 6c 69 64 20 6f | e.for.the.remote.peer.is.valid.o |
| 1587c0 | 72 20 72 65 76 6f 6b 65 64 3b 00 60 60 64 60 60 20 2d 20 45 78 65 63 75 74 69 6f 6e 20 69 6e 74 | r.revoked;.``d``.-.Execution.int |
| 1587e0 | 65 72 76 61 6c 20 69 6e 20 64 61 79 73 00 60 60 64 65 61 64 2d 70 65 65 72 2d 64 65 74 65 63 74 | erval.in.days.``dead-peer-detect |
| 158800 | 69 6f 6e 20 61 63 74 69 6f 6e 20 3d 20 63 6c 65 61 72 20 7c 20 68 6f 6c 64 20 7c 20 72 65 73 74 | ion.action.=.clear.|.hold.|.rest |
| 158820 | 61 72 74 60 60 20 2d 20 52 5f 55 5f 54 48 45 52 45 20 6e 6f 74 69 66 69 63 61 74 69 6f 6e 20 6d | art``.-.R_U_THERE.notification.m |
| 158840 | 65 73 73 61 67 65 73 28 49 4b 45 76 31 29 20 6f 72 20 65 6d 70 74 79 20 49 4e 46 4f 52 4d 41 54 | essages(IKEv1).or.empty.INFORMAT |
| 158860 | 49 4f 4e 41 4c 20 6d 65 73 73 61 67 65 73 20 28 49 4b 45 76 32 29 20 61 72 65 20 70 65 72 69 6f | IONAL.messages.(IKEv2).are.perio |
| 158880 | 64 69 63 61 6c 6c 79 20 73 65 6e 74 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 63 68 65 63 6b 20 74 | dically.sent.in.order.to.check.t |
| 1588a0 | 68 65 20 6c 69 76 65 6c 69 6e 65 73 73 20 6f 66 20 74 68 65 20 49 50 73 65 63 20 70 65 65 72 2e | he.liveliness.of.the.IPsec.peer. |
| 1588c0 | 20 54 68 65 20 76 61 6c 75 65 73 20 63 6c 65 61 72 2c 20 68 6f 6c 64 2c 20 61 6e 64 20 72 65 73 | .The.values.clear,.hold,.and.res |
| 1588e0 | 74 61 72 74 20 61 6c 6c 20 61 63 74 69 76 61 74 65 20 44 50 44 20 61 6e 64 20 64 65 74 65 72 6d | tart.all.activate.DPD.and.determ |
| 158900 | 69 6e 65 20 74 68 65 20 61 63 74 69 6f 6e 20 74 6f 20 70 65 72 66 6f 72 6d 20 6f 6e 20 61 20 74 | ine.the.action.to.perform.on.a.t |
| 158920 | 69 6d 65 6f 75 74 2e 20 57 69 74 68 20 60 60 63 6c 65 61 72 60 60 20 74 68 65 20 63 6f 6e 6e 65 | imeout..With.``clear``.the.conne |
| 158940 | 63 74 69 6f 6e 20 69 73 20 63 6c 6f 73 65 64 20 77 69 74 68 20 6e 6f 20 66 75 72 74 68 65 72 20 | ction.is.closed.with.no.further. |
| 158960 | 61 63 74 69 6f 6e 73 20 74 61 6b 65 6e 2e 20 60 60 68 6f 6c 64 60 60 20 69 6e 73 74 61 6c 6c 73 | actions.taken..``hold``.installs |
| 158980 | 20 61 20 74 72 61 70 20 70 6f 6c 69 63 79 2c 20 77 68 69 63 68 20 77 69 6c 6c 20 63 61 74 63 68 | .a.trap.policy,.which.will.catch |
| 1589a0 | 20 6d 61 74 63 68 69 6e 67 20 74 72 61 66 66 69 63 20 61 6e 64 20 74 72 69 65 73 20 74 6f 20 72 | .matching.traffic.and.tries.to.r |
| 1589c0 | 65 2d 6e 65 67 6f 74 69 61 74 65 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 6f 6e 20 64 65 | e-negotiate.the.connection.on.de |
| 1589e0 | 6d 61 6e 64 2e 20 60 60 72 65 73 74 61 72 74 60 60 20 77 69 6c 6c 20 69 6d 6d 65 64 69 61 74 65 | mand..``restart``.will.immediate |
| 158a00 | 6c 79 20 74 72 69 67 67 65 72 20 61 6e 20 61 74 74 65 6d 70 74 20 74 6f 20 72 65 2d 6e 65 67 6f | ly.trigger.an.attempt.to.re-nego |
| 158a20 | 74 69 61 74 65 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 60 60 64 65 61 64 2d 70 65 65 | tiate.the.connection..``dead-pee |
| 158a40 | 72 2d 64 65 74 65 63 74 69 6f 6e 20 61 63 74 69 6f 6e 20 3d 20 63 6c 65 61 72 20 7c 20 74 72 61 | r-detection.action.=.clear.|.tra |
| 158a60 | 70 20 7c 20 72 65 73 74 61 72 74 60 60 20 2d 20 52 5f 55 5f 54 48 45 52 45 20 6e 6f 74 69 66 69 | p.|.restart``.-.R_U_THERE.notifi |
| 158a80 | 63 61 74 69 6f 6e 20 6d 65 73 73 61 67 65 73 28 49 4b 45 76 31 29 20 6f 72 20 65 6d 70 74 79 20 | cation.messages(IKEv1).or.empty. |
| 158aa0 | 49 4e 46 4f 52 4d 41 54 49 4f 4e 41 4c 20 6d 65 73 73 61 67 65 73 20 28 49 4b 45 76 32 29 20 61 | INFORMATIONAL.messages.(IKEv2).a |
| 158ac0 | 72 65 20 70 65 72 69 6f 64 69 63 61 6c 6c 79 20 73 65 6e 74 20 69 6e 20 6f 72 64 65 72 20 74 6f | re.periodically.sent.in.order.to |
| 158ae0 | 20 63 68 65 63 6b 20 74 68 65 20 6c 69 76 65 6c 69 6e 65 73 73 20 6f 66 20 74 68 65 20 49 50 73 | .check.the.liveliness.of.the.IPs |
| 158b00 | 65 63 20 70 65 65 72 2e 20 54 68 65 20 76 61 6c 75 65 73 20 63 6c 65 61 72 2c 20 74 72 61 70 2c | ec.peer..The.values.clear,.trap, |
| 158b20 | 20 61 6e 64 20 72 65 73 74 61 72 74 20 61 6c 6c 20 61 63 74 69 76 61 74 65 20 44 50 44 20 61 6e | .and.restart.all.activate.DPD.an |
| 158b40 | 64 20 64 65 74 65 72 6d 69 6e 65 20 74 68 65 20 61 63 74 69 6f 6e 20 74 6f 20 70 65 72 66 6f 72 | d.determine.the.action.to.perfor |
| 158b60 | 6d 20 6f 6e 20 61 20 74 69 6d 65 6f 75 74 2e 20 57 69 74 68 20 60 60 63 6c 65 61 72 60 60 20 74 | m.on.a.timeout..With.``clear``.t |
| 158b80 | 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 69 73 20 63 6c 6f 73 65 64 20 77 69 74 68 20 6e 6f 20 | he.connection.is.closed.with.no. |
| 158ba0 | 66 75 72 74 68 65 72 20 61 63 74 69 6f 6e 73 20 74 61 6b 65 6e 2e 20 60 60 74 72 61 70 60 60 20 | further.actions.taken..``trap``. |
| 158bc0 | 69 6e 73 74 61 6c 6c 73 20 61 20 74 72 61 70 20 70 6f 6c 69 63 79 2c 20 77 68 69 63 68 20 77 69 | installs.a.trap.policy,.which.wi |
| 158be0 | 6c 6c 20 63 61 74 63 68 20 6d 61 74 63 68 69 6e 67 20 74 72 61 66 66 69 63 20 61 6e 64 20 74 72 | ll.catch.matching.traffic.and.tr |
| 158c00 | 69 65 73 20 74 6f 20 72 65 2d 6e 65 67 6f 74 69 61 74 65 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 | ies.to.re-negotiate.the.connecti |
| 158c20 | 6f 6e 20 6f 6e 20 64 65 6d 61 6e 64 2e 20 60 60 72 65 73 74 61 72 74 60 60 20 77 69 6c 6c 20 69 | on.on.demand..``restart``.will.i |
| 158c40 | 6d 6d 65 64 69 61 74 65 6c 79 20 74 72 69 67 67 65 72 20 61 6e 20 61 74 74 65 6d 70 74 20 74 6f | mmediately.trigger.an.attempt.to |
| 158c60 | 20 72 65 2d 6e 65 67 6f 74 69 61 74 65 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 60 60 | .re-negotiate.the.connection..`` |
| 158c80 | 64 65 61 64 2d 70 65 65 72 2d 64 65 74 65 63 74 69 6f 6e 60 60 20 63 6f 6e 74 72 6f 6c 73 20 74 | dead-peer-detection``.controls.t |
| 158ca0 | 68 65 20 75 73 65 20 6f 66 20 74 68 65 20 44 65 61 64 20 50 65 65 72 20 44 65 74 65 63 74 69 6f | he.use.of.the.Dead.Peer.Detectio |
| 158cc0 | 6e 20 70 72 6f 74 6f 63 6f 6c 20 28 44 50 44 2c 20 52 46 43 20 33 37 30 36 29 20 77 68 65 72 65 | n.protocol.(DPD,.RFC.3706).where |
| 158ce0 | 20 52 5f 55 5f 54 48 45 52 45 20 6e 6f 74 69 66 69 63 61 74 69 6f 6e 20 6d 65 73 73 61 67 65 73 | .R_U_THERE.notification.messages |
| 158d00 | 20 28 49 4b 45 76 31 29 20 6f 72 20 65 6d 70 74 79 20 49 4e 46 4f 52 4d 41 54 49 4f 4e 41 4c 20 | .(IKEv1).or.empty.INFORMATIONAL. |
| 158d20 | 6d 65 73 73 61 67 65 73 20 28 49 4b 45 76 32 29 20 61 72 65 20 70 65 72 69 6f 64 69 63 61 6c 6c | messages.(IKEv2).are.periodicall |
| 158d40 | 79 20 73 65 6e 74 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 63 68 65 63 6b 20 74 68 65 20 6c 69 76 | y.sent.in.order.to.check.the.liv |
| 158d60 | 65 6c 69 6e 65 73 73 20 6f 66 20 74 68 65 20 49 50 73 65 63 20 70 65 65 72 3a 00 60 60 64 65 66 | eliness.of.the.IPsec.peer:.``def |
| 158d80 | 61 75 6c 74 2d 65 73 70 2d 67 72 6f 75 70 60 60 20 2d 20 45 53 50 20 67 72 6f 75 70 20 74 6f 20 | ault-esp-group``.-.ESP.group.to. |
| 158da0 | 75 73 65 20 62 79 20 64 65 66 61 75 6c 74 20 66 6f 72 20 74 72 61 66 66 69 63 20 65 6e 63 72 79 | use.by.default.for.traffic.encry |
| 158dc0 | 70 74 69 6f 6e 2e 20 4d 69 67 68 74 20 62 65 20 6f 76 65 72 77 72 69 74 74 65 6e 20 62 79 20 69 | ption..Might.be.overwritten.by.i |
| 158de0 | 6e 64 69 76 69 64 75 61 6c 20 73 65 74 74 69 6e 67 73 20 66 6f 72 20 74 75 6e 6e 65 6c 20 6f 72 | ndividual.settings.for.tunnel.or |
| 158e00 | 20 56 54 49 20 69 6e 74 65 72 66 61 63 65 20 62 69 6e 64 69 6e 67 3b 00 60 60 64 65 73 63 72 69 | .VTI.interface.binding;.``descri |
| 158e20 | 70 74 69 6f 6e 60 60 20 2d 20 64 65 73 63 72 69 70 74 69 6f 6e 20 66 6f 72 20 74 68 69 73 20 70 | ption``.-.description.for.this.p |
| 158e40 | 65 65 72 3b 00 60 60 64 68 2d 67 72 6f 75 70 60 60 20 64 68 2d 67 72 6f 75 70 3b 00 60 60 64 68 | eer;.``dh-group``.dh-group;.``dh |
| 158e60 | 63 70 2d 69 6e 74 65 72 66 61 63 65 60 60 20 2d 20 49 44 20 66 6f 72 20 61 75 74 68 65 6e 74 69 | cp-interface``.-.ID.for.authenti |
| 158e80 | 63 61 74 69 6f 6e 20 67 65 6e 65 72 61 74 65 64 20 66 72 6f 6d 20 44 48 43 50 20 61 64 64 72 65 | cation.generated.from.DHCP.addre |
| 158ea0 | 73 73 20 64 79 6e 61 6d 69 63 61 6c 6c 79 3b 00 60 60 64 68 63 70 2d 69 6e 74 65 72 66 61 63 65 | ss.dynamically;.``dhcp-interface |
| 158ec0 | 60 60 20 2d 20 75 73 65 20 61 6e 20 49 50 20 61 64 64 72 65 73 73 2c 20 72 65 63 65 69 76 65 64 | ``.-.use.an.IP.address,.received |
| 158ee0 | 20 66 72 6f 6d 20 44 48 43 50 20 66 6f 72 20 49 50 53 65 63 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 | .from.DHCP.for.IPSec.connection. |
| 158f00 | 77 69 74 68 20 74 68 69 73 20 70 65 65 72 2c 20 69 6e 73 74 65 61 64 20 6f 66 20 60 60 6c 6f 63 | with.this.peer,.instead.of.``loc |
| 158f20 | 61 6c 2d 61 64 64 72 65 73 73 60 60 3b 00 60 60 64 69 73 61 62 6c 65 2d 6d 6f 62 69 6b 65 60 60 | al-address``;.``disable-mobike`` |
| 158f40 | 20 64 69 73 61 62 6c 65 73 20 4d 4f 42 49 4b 45 20 53 75 70 70 6f 72 74 2e 20 4d 4f 42 49 4b 45 | .disables.MOBIKE.Support..MOBIKE |
| 158f60 | 20 69 73 20 6f 6e 6c 79 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 49 4b 45 76 32 20 61 6e 64 | .is.only.available.for.IKEv2.and |
| 158f80 | 20 65 6e 61 62 6c 65 64 20 62 79 20 64 65 66 61 75 6c 74 2e 00 60 60 64 69 73 61 62 6c 65 2d 72 | .enabled.by.default..``disable-r |
| 158fa0 | 65 6b 65 79 60 60 20 44 6f 20 6e 6f 74 20 6c 6f 63 61 6c 6c 79 20 69 6e 69 74 69 61 74 65 20 61 | ekey``.Do.not.locally.initiate.a |
| 158fc0 | 20 72 65 2d 6b 65 79 20 6f 66 20 74 68 65 20 53 41 2c 20 72 65 6d 6f 74 65 20 70 65 65 72 20 6d | .re-key.of.the.SA,.remote.peer.m |
| 158fe0 | 75 73 74 20 72 65 2d 6b 65 79 20 62 65 66 6f 72 65 20 65 78 70 69 72 61 74 69 6f 6e 2e 00 60 60 | ust.re-key.before.expiration..`` |
| 159000 | 64 69 73 61 62 6c 65 2d 72 6f 75 74 65 2d 61 75 74 6f 69 6e 73 74 61 6c 6c 60 60 20 2d 20 54 68 | disable-route-autoinstall``.-.Th |
| 159020 | 69 73 20 6f 70 74 69 6f 6e 20 77 68 65 6e 20 63 6f 6e 66 69 67 75 72 65 64 20 64 69 73 61 62 6c | is.option.when.configured.disabl |
| 159040 | 65 73 20 74 68 65 20 72 6f 75 74 65 73 20 69 6e 73 74 61 6c 6c 65 64 20 69 6e 20 74 68 65 20 64 | es.the.routes.installed.in.the.d |
| 159060 | 65 66 61 75 6c 74 20 74 61 62 6c 65 20 32 32 30 20 66 6f 72 20 73 69 74 65 2d 74 6f 2d 73 69 74 | efault.table.220.for.site-to-sit |
| 159080 | 65 20 69 70 73 65 63 2e 20 49 74 20 69 73 20 6d 6f 73 74 6c 79 20 75 73 65 64 20 77 69 74 68 20 | e.ipsec..It.is.mostly.used.with. |
| 1590a0 | 56 54 49 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 60 60 64 69 73 61 62 6c 65 2d 72 6f 75 | VTI.configuration..``disable-rou |
| 1590c0 | 74 65 2d 61 75 74 6f 69 6e 73 74 61 6c 6c 60 60 20 44 6f 20 6e 6f 74 20 61 75 74 6f 6d 61 74 69 | te-autoinstall``.Do.not.automati |
| 1590e0 | 63 61 6c 6c 79 20 69 6e 73 74 61 6c 6c 20 72 6f 75 74 65 73 20 74 6f 20 72 65 6d 6f 74 65 00 60 | cally.install.routes.to.remote.` |
| 159100 | 60 64 69 73 61 62 6c 65 2d 72 6f 75 74 65 2d 61 75 74 6f 69 6e 73 74 61 6c 6c 60 60 20 44 6f 20 | `disable-route-autoinstall``.Do. |
| 159120 | 6e 6f 74 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 69 6e 73 74 61 6c 6c 20 72 6f 75 74 65 73 | not.automatically.install.routes |
| 159140 | 20 74 6f 20 72 65 6d 6f 74 65 20 6e 65 74 77 6f 72 6b 73 3b 00 60 60 64 69 73 61 62 6c 65 60 60 | .to.remote.networks;.``disable`` |
| 159160 | 20 2d 20 64 69 73 61 62 6c 65 20 74 68 69 73 20 74 75 6e 6e 65 6c 3b 00 60 60 64 69 73 61 62 6c | .-.disable.this.tunnel;.``disabl |
| 159180 | 65 60 60 20 44 69 73 61 62 6c 65 20 50 46 53 3b 00 60 60 64 69 73 61 62 6c 65 60 60 20 64 69 73 | e``.Disable.PFS;.``disable``.dis |
| 1591a0 | 61 62 6c 65 20 49 50 43 6f 6d 70 20 63 6f 6d 70 72 65 73 73 69 6f 6e 20 28 64 65 66 61 75 6c 74 | able.IPComp.compression.(default |
| 1591c0 | 29 3b 00 60 60 64 69 73 61 62 6c 65 60 60 20 64 69 73 61 62 6c 65 20 4d 4f 42 49 4b 45 3b 00 60 | );.``disable``.disable.MOBIKE;.` |
| 1591e0 | 60 64 72 6f 70 60 60 3a 20 64 72 6f 70 20 74 68 65 20 70 61 63 6b 65 74 2e 00 60 60 65 63 64 73 | `drop``:.drop.the.packet..``ecds |
| 159200 | 61 2d 73 68 61 32 2d 6e 69 73 74 70 32 35 36 60 60 00 60 60 65 63 64 73 61 2d 73 68 61 32 2d 6e | a-sha2-nistp256``.``ecdsa-sha2-n |
| 159220 | 69 73 74 70 33 38 34 60 60 00 60 60 65 63 64 73 61 2d 73 68 61 32 2d 6e 69 73 74 70 35 32 31 60 | istp384``.``ecdsa-sha2-nistp521` |
| 159240 | 60 00 60 60 65 64 70 60 60 20 2d 20 4c 69 73 74 65 6e 20 66 6f 72 20 45 44 50 20 66 6f 72 20 45 | `.``edp``.-.Listen.for.EDP.for.E |
| 159260 | 78 74 72 65 6d 65 20 72 6f 75 74 65 72 73 2f 73 77 69 74 63 68 65 73 00 60 60 65 6e 61 62 6c 65 | xtreme.routers/switches.``enable |
| 159280 | 60 60 20 49 6e 68 65 72 69 74 20 44 69 66 66 69 65 2d 48 65 6c 6c 6d 61 6e 20 67 72 6f 75 70 20 | ``.Inherit.Diffie-Hellman.group. |
| 1592a0 | 66 72 6f 6d 20 49 4b 45 20 67 72 6f 75 70 20 28 64 65 66 61 75 6c 74 29 3b 00 60 60 65 6e 61 62 | from.IKE.group.(default);.``enab |
| 1592c0 | 6c 65 60 60 20 65 6e 61 62 6c 65 20 49 50 43 6f 6d 70 20 63 6f 6d 70 72 65 73 73 69 6f 6e 3b 00 | le``.enable.IPComp.compression;. |
| 1592e0 | 60 60 65 6e 61 62 6c 65 60 60 20 65 6e 61 62 6c 65 20 4d 4f 42 49 4b 45 20 28 64 65 66 61 75 6c | ``enable``.enable.MOBIKE.(defaul |
| 159300 | 74 20 66 6f 72 20 49 4b 45 76 32 29 3b 00 60 60 65 6e 63 72 79 70 74 69 6f 6e 60 60 20 65 6e 63 | t.for.IKEv2);.``encryption``.enc |
| 159320 | 72 79 70 74 69 6f 6e 20 61 6c 67 6f 72 69 74 68 6d 20 28 64 65 66 61 75 6c 74 20 31 32 38 20 62 | ryption.algorithm.(default.128.b |
| 159340 | 69 74 20 41 45 53 2d 43 42 43 29 3b 00 60 60 65 6e 63 72 79 70 74 69 6f 6e 60 60 20 65 6e 63 72 | it.AES-CBC);.``encryption``.encr |
| 159360 | 79 70 74 69 6f 6e 20 61 6c 67 6f 72 69 74 68 6d 3b 00 60 60 65 6e 64 60 60 20 4d 61 74 63 68 65 | yption.algorithm;.``end``.Matche |
| 159380 | 73 20 74 68 65 20 65 6e 64 20 6f 66 20 74 68 65 20 55 52 4c 20 70 61 74 68 2e 00 60 60 65 73 70 | s.the.end.of.the.URL.path..``esp |
| 1593a0 | 2d 67 72 6f 75 70 60 60 20 2d 20 64 65 66 69 6e 65 20 45 53 50 20 67 72 6f 75 70 20 66 6f 72 20 | -group``.-.define.ESP.group.for. |
| 1593c0 | 65 6e 63 72 79 70 74 20 74 72 61 66 66 69 63 2c 20 64 65 66 69 6e 65 64 20 62 79 20 74 68 69 73 | encrypt.traffic,.defined.by.this |
| 1593e0 | 20 74 75 6e 6e 65 6c 3b 00 60 60 65 73 70 2d 67 72 6f 75 70 60 60 20 2d 20 64 65 66 69 6e 65 20 | .tunnel;.``esp-group``.-.define. |
| 159400 | 45 53 50 20 67 72 6f 75 70 20 66 6f 72 20 65 6e 63 72 79 70 74 20 74 72 61 66 66 69 63 2c 20 70 | ESP.group.for.encrypt.traffic,.p |
| 159420 | 61 73 73 65 64 20 74 68 69 73 20 56 54 49 20 69 6e 74 65 72 66 61 63 65 2e 00 60 60 65 78 61 63 | assed.this.VTI.interface..``exac |
| 159440 | 74 60 60 20 52 65 71 75 69 72 65 73 20 61 6e 20 65 78 61 63 74 6c 79 20 6d 61 74 63 68 20 6f 66 | t``.Requires.an.exactly.match.of |
| 159460 | 20 74 68 65 20 55 52 4c 20 70 61 74 68 00 60 60 66 64 70 60 60 20 2d 20 4c 69 73 74 65 6e 20 66 | .the.URL.path.``fdp``.-.Listen.f |
| 159480 | 6f 72 20 46 44 50 20 66 6f 72 20 46 6f 75 6e 64 72 79 20 72 6f 75 74 65 72 73 2f 73 77 69 74 63 | or.FDP.for.Foundry.routers/switc |
| 1594a0 | 68 65 73 00 60 60 66 69 6c 65 60 60 20 2d 20 70 61 74 68 20 74 6f 20 74 68 65 20 6b 65 79 20 66 | hes.``file``.-.path.to.the.key.f |
| 1594c0 | 69 6c 65 3b 00 60 60 66 69 6c 65 6e 61 6d 65 60 60 20 20 4c 6f 67 20 66 69 6c 65 20 28 64 65 66 | ile;.``filename``..Log.file.(def |
| 1594e0 | 61 75 6c 74 3a 20 65 76 65 2e 6a 73 6f 6e 29 2e 00 60 60 66 69 6c 65 74 79 70 65 60 60 20 20 45 | ault:.eve.json)..``filetype``..E |
| 159500 | 56 45 20 6c 6f 67 67 69 6e 67 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 28 64 65 66 61 75 6c 74 3a | VE.logging.destination.(default: |
| 159520 | 20 72 65 67 75 6c 61 72 29 2e 00 60 60 66 6c 65 78 76 70 6e 60 60 20 41 6c 6c 6f 77 20 46 6c 65 | .regular)..``flexvpn``.Allow.Fle |
| 159540 | 78 56 50 4e 20 76 65 6e 64 6f 72 20 49 44 20 70 61 79 6c 6f 61 64 20 28 49 4b 45 76 32 20 6f 6e | xVPN.vendor.ID.payload.(IKEv2.on |
| 159560 | 6c 79 29 2e 20 53 65 6e 64 20 74 68 65 20 43 69 73 63 6f 20 46 6c 65 78 56 50 4e 20 76 65 6e 64 | ly)..Send.the.Cisco.FlexVPN.vend |
| 159580 | 6f 72 20 49 44 20 70 61 79 6c 6f 61 64 20 28 49 4b 45 76 32 20 6f 6e 6c 79 29 2c 20 77 68 69 63 | or.ID.payload.(IKEv2.only),.whic |
| 1595a0 | 68 20 69 73 20 72 65 71 75 69 72 65 64 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 6d 61 6b 65 20 43 | h.is.required.in.order.to.make.C |
| 1595c0 | 69 73 63 6f 20 62 72 61 6e 64 20 64 65 76 69 63 65 73 20 61 6c 6c 6f 77 20 6e 65 67 6f 74 69 61 | isco.brand.devices.allow.negotia |
| 1595e0 | 74 69 6e 67 20 61 20 6c 6f 63 61 6c 20 74 72 61 66 66 69 63 20 73 65 6c 65 63 74 6f 72 20 28 66 | ting.a.local.traffic.selector.(f |
| 159600 | 72 6f 6d 20 73 74 72 6f 6e 67 53 77 61 6e 27 73 20 70 6f 69 6e 74 20 6f 66 20 76 69 65 77 29 20 | rom.strongSwan's.point.of.view). |
| 159620 | 74 68 61 74 20 69 73 20 6e 6f 74 20 74 68 65 20 61 73 73 69 67 6e 65 64 20 76 69 72 74 75 61 6c | that.is.not.the.assigned.virtual |
| 159640 | 20 49 50 20 61 64 64 72 65 73 73 20 69 66 20 73 75 63 68 20 61 6e 20 61 64 64 72 65 73 73 20 69 | .IP.address.if.such.an.address.i |
| 159660 | 73 20 72 65 71 75 65 73 74 65 64 20 62 79 20 73 74 72 6f 6e 67 53 77 61 6e 2e 20 53 65 6e 64 69 | s.requested.by.strongSwan..Sendi |
| 159680 | 6e 67 20 74 68 65 20 43 69 73 63 6f 20 46 6c 65 78 56 50 4e 20 76 65 6e 64 6f 72 20 49 44 20 70 | ng.the.Cisco.FlexVPN.vendor.ID.p |
| 1596a0 | 72 65 76 65 6e 74 73 20 74 68 65 20 70 65 65 72 20 66 72 6f 6d 20 6e 61 72 72 6f 77 69 6e 67 20 | revents.the.peer.from.narrowing. |
| 1596c0 | 74 68 65 20 69 6e 69 74 69 61 74 6f 72 27 73 20 6c 6f 63 61 6c 20 74 72 61 66 66 69 63 20 73 65 | the.initiator's.local.traffic.se |
| 1596e0 | 6c 65 63 74 6f 72 20 61 6e 64 20 61 6c 6c 6f 77 73 20 69 74 20 74 6f 20 65 2e 67 2e 20 6e 65 67 | lector.and.allows.it.to.e.g..neg |
| 159700 | 6f 74 69 61 74 65 20 61 20 54 53 20 6f 66 20 30 2e 30 2e 30 2e 30 2f 30 20 3d 3d 20 30 2e 30 2e | otiate.a.TS.of.0.0.0.0/0.==.0.0. |
| 159720 | 30 2e 30 2f 30 20 69 6e 73 74 65 61 64 2e 20 54 68 69 73 20 68 61 73 20 62 65 65 6e 20 74 65 73 | 0.0/0.instead..This.has.been.tes |
| 159740 | 74 65 64 20 77 69 74 68 20 61 20 22 74 75 6e 6e 65 6c 20 6d 6f 64 65 20 69 70 73 65 63 20 69 70 | ted.with.a."tunnel.mode.ipsec.ip |
| 159760 | 76 34 22 20 43 69 73 63 6f 20 74 65 6d 70 6c 61 74 65 20 62 75 74 20 73 68 6f 75 6c 64 20 61 6c | v4".Cisco.template.but.should.al |
| 159780 | 73 6f 20 77 6f 72 6b 20 66 6f 72 20 47 52 45 20 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e 3b 00 60 | so.work.for.GRE.encapsulation;.` |
| 1597a0 | 60 66 6c 65 78 76 70 6e 60 60 20 41 6c 6c 6f 77 73 20 46 6c 65 78 56 50 4e 20 76 65 6e 64 6f 72 | `flexvpn``.Allows.FlexVPN.vendor |
| 1597c0 | 20 49 44 20 70 61 79 6c 6f 61 64 20 28 49 4b 45 76 32 20 6f 6e 6c 79 29 2e 20 53 65 6e 64 20 74 | .ID.payload.(IKEv2.only)..Send.t |
| 1597e0 | 68 65 20 43 69 73 63 6f 00 60 60 66 6c 65 78 76 70 6e 60 60 20 41 6c 6c 6f 77 73 20 46 6c 65 78 | he.Cisco.``flexvpn``.Allows.Flex |
| 159800 | 56 50 4e 20 76 65 6e 64 6f 72 20 49 44 20 70 61 79 6c 6f 61 64 20 28 49 4b 45 76 32 20 6f 6e 6c | VPN.vendor.ID.payload.(IKEv2.onl |
| 159820 | 79 29 2e 20 53 65 6e 64 20 74 68 65 20 43 69 73 63 6f 20 46 6c 65 78 56 50 4e 20 76 65 6e 64 6f | y)..Send.the.Cisco.FlexVPN.vendo |
| 159840 | 72 20 49 44 20 70 61 79 6c 6f 61 64 20 28 49 4b 45 76 32 20 6f 6e 6c 79 29 2c 20 77 68 69 63 68 | r.ID.payload.(IKEv2.only),.which |
| 159860 | 20 69 73 20 72 65 71 75 69 72 65 64 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 6d 61 6b 65 20 43 69 | .is.required.in.order.to.make.Ci |
| 159880 | 73 63 6f 20 62 72 61 6e 64 20 64 65 76 69 63 65 73 20 61 6c 6c 6f 77 20 6e 65 67 6f 74 69 61 74 | sco.brand.devices.allow.negotiat |
| 1598a0 | 69 6e 67 20 61 20 6c 6f 63 61 6c 20 74 72 61 66 66 69 63 20 73 65 6c 65 63 74 6f 72 20 28 66 72 | ing.a.local.traffic.selector.(fr |
| 1598c0 | 6f 6d 20 73 74 72 6f 6e 67 53 77 61 6e 27 73 20 70 6f 69 6e 74 20 6f 66 20 76 69 65 77 29 20 74 | om.strongSwan's.point.of.view).t |
| 1598e0 | 68 61 74 20 69 73 20 6e 6f 74 20 74 68 65 20 61 73 73 69 67 6e 65 64 20 76 69 72 74 75 61 6c 20 | hat.is.not.the.assigned.virtual. |
| 159900 | 49 50 20 61 64 64 72 65 73 73 20 69 66 20 73 75 63 68 20 61 6e 20 61 64 64 72 65 73 73 20 69 73 | IP.address.if.such.an.address.is |
| 159920 | 20 72 65 71 75 65 73 74 65 64 20 62 79 20 73 74 72 6f 6e 67 53 77 61 6e 2e 20 53 65 6e 64 69 6e | .requested.by.strongSwan..Sendin |
| 159940 | 67 20 74 68 65 20 43 69 73 63 6f 20 46 6c 65 78 56 50 4e 20 76 65 6e 64 6f 72 20 49 44 20 70 72 | g.the.Cisco.FlexVPN.vendor.ID.pr |
| 159960 | 65 76 65 6e 74 73 20 74 68 65 20 70 65 65 72 20 66 72 6f 6d 20 6e 61 72 72 6f 77 69 6e 67 20 74 | events.the.peer.from.narrowing.t |
| 159980 | 68 65 20 69 6e 69 74 69 61 74 6f 72 27 73 20 6c 6f 63 61 6c 20 74 72 61 66 66 69 63 20 73 65 6c | he.initiator's.local.traffic.sel |
| 1599a0 | 65 63 74 6f 72 20 61 6e 64 20 61 6c 6c 6f 77 73 20 69 74 20 74 6f 20 65 2e 67 2e 20 6e 65 67 6f | ector.and.allows.it.to.e.g..nego |
| 1599c0 | 74 69 61 74 65 20 61 20 54 53 20 6f 66 20 30 2e 30 2e 30 2e 30 2f 30 20 3d 3d 20 30 2e 30 2e 30 | tiate.a.TS.of.0.0.0.0/0.==.0.0.0 |
| 1599e0 | 2e 30 2f 30 20 69 6e 73 74 65 61 64 2e 20 54 68 69 73 20 68 61 73 20 62 65 65 6e 20 74 65 73 74 | .0/0.instead..This.has.been.test |
| 159a00 | 65 64 20 77 69 74 68 20 61 20 22 74 75 6e 6e 65 6c 20 6d 6f 64 65 20 69 70 73 65 63 20 69 70 76 | ed.with.a."tunnel.mode.ipsec.ipv |
| 159a20 | 34 22 20 43 69 73 63 6f 20 74 65 6d 70 6c 61 74 65 20 62 75 74 20 73 68 6f 75 6c 64 20 61 6c 73 | 4".Cisco.template.but.should.als |
| 159a40 | 6f 20 77 6f 72 6b 20 66 6f 72 20 47 52 45 20 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e 3b 00 60 60 | o.work.for.GRE.encapsulation;.`` |
| 159a60 | 66 6f 72 63 65 2d 75 64 70 2d 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e 60 60 20 2d 20 66 6f 72 63 | force-udp-encapsulation``.-.forc |
| 159a80 | 65 20 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e 20 6f 66 20 45 53 50 20 69 6e 74 6f 20 55 44 50 20 | e.encapsulation.of.ESP.into.UDP. |
| 159aa0 | 64 61 74 61 67 72 61 6d 73 2e 20 55 73 65 66 75 6c 20 69 6e 20 63 61 73 65 20 69 66 20 62 65 74 | datagrams..Useful.in.case.if.bet |
| 159ac0 | 77 65 65 6e 20 6c 6f 63 61 6c 20 61 6e 64 20 72 65 6d 6f 74 65 20 73 69 64 65 20 69 73 20 66 69 | ween.local.and.remote.side.is.fi |
| 159ae0 | 72 65 77 61 6c 6c 20 6f 72 20 4e 41 54 2c 20 77 68 69 63 68 20 6e 6f 74 20 61 6c 6c 6f 77 73 20 | rewall.or.NAT,.which.not.allows. |
| 159b00 | 70 61 73 73 69 6e 67 20 70 6c 61 69 6e 20 45 53 50 20 70 61 63 6b 65 74 73 20 62 65 74 77 65 65 | passing.plain.ESP.packets.betwee |
| 159b20 | 6e 20 74 68 65 6d 3b 00 60 60 67 60 60 20 2d 20 38 30 32 2e 31 31 67 20 2d 20 35 34 20 4d 62 69 | n.them;.``g``.-.802.11g.-.54.Mbi |
| 159b40 | 74 73 2f 73 65 63 20 28 64 65 66 61 75 6c 74 29 00 60 60 67 72 61 63 65 66 75 6c 2d 73 68 75 74 | ts/sec.(default).``graceful-shut |
| 159b60 | 64 6f 77 6e 60 60 20 2d 20 20 20 20 20 20 20 20 20 20 20 20 57 65 6c 6c 2d 6b 6e 6f 77 6e 20 63 | down``.-............Well-known.c |
| 159b80 | 6f 6d 6d 75 6e 69 74 69 65 73 20 76 61 6c 75 65 20 47 52 41 43 45 46 55 4c 5f 53 48 55 54 44 4f | ommunities.value.GRACEFUL_SHUTDO |
| 159ba0 | 57 4e 20 30 78 46 46 46 46 30 30 30 30 00 60 60 67 72 6f 75 70 60 60 20 20 41 64 64 72 65 73 73 | WN.0xFFFF0000.``group``..Address |
| 159bc0 | 20 67 72 6f 75 70 2e 00 60 60 67 72 6f 75 70 60 60 20 20 50 6f 72 74 20 67 72 6f 75 70 2e 00 60 | .group..``group``..Port.group..` |
| 159be0 | 60 67 75 69 64 65 64 60 60 20 54 68 65 20 64 72 69 76 65 72 20 61 6c 6c 6f 77 73 20 74 6f 20 73 | `guided``.The.driver.allows.to.s |
| 159c00 | 65 74 20 64 65 73 69 72 65 64 20 70 65 72 66 6f 72 6d 61 6e 63 65 20 6c 65 76 65 6c 73 20 61 6e | et.desired.performance.levels.an |
| 159c20 | 64 20 74 68 65 20 66 69 72 6d 77 61 72 65 20 73 65 6c 65 63 74 73 20 61 20 70 65 72 66 6f 72 6d | d.the.firmware.selects.a.perform |
| 159c40 | 61 6e 63 65 20 6c 65 76 65 6c 20 69 6e 20 74 68 69 73 20 72 61 6e 67 65 20 61 6e 64 20 66 69 74 | ance.level.in.this.range.and.fit |
| 159c60 | 74 69 6e 67 20 74 6f 20 74 68 65 20 63 75 72 72 65 6e 74 20 77 6f 72 6b 6c 6f 61 64 2e 00 60 60 | ting.to.the.current.workload..`` |
| 159c80 | 68 60 60 20 2d 20 45 78 65 63 75 74 69 6f 6e 20 69 6e 74 65 72 76 61 6c 20 69 6e 20 68 6f 75 72 | h``.-.Execution.interval.in.hour |
| 159ca0 | 73 00 60 60 68 61 73 68 60 60 20 68 61 73 68 20 61 6c 67 6f 72 69 74 68 6d 20 28 64 65 66 61 75 | s.``hash``.hash.algorithm.(defau |
| 159cc0 | 6c 74 20 73 68 61 31 29 2e 00 60 60 68 61 73 68 60 60 20 68 61 73 68 20 61 6c 67 6f 72 69 74 68 | lt.sha1)..``hash``.hash.algorith |
| 159ce0 | 6d 2e 00 60 60 68 6f 6c 64 60 60 20 73 65 74 20 61 63 74 69 6f 6e 20 74 6f 20 68 6f 6c 64 20 28 | m..``hold``.set.action.to.hold.( |
| 159d00 | 64 65 66 61 75 6c 74 29 00 60 60 68 6f 6c 64 60 60 20 73 65 74 20 61 63 74 69 6f 6e 20 74 6f 20 | default).``hold``.set.action.to. |
| 159d20 | 68 6f 6c 64 3b 00 60 60 68 74 32 30 60 60 20 2d 20 32 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 | hold;.``ht20``.-.20.MHz.channel. |
| 159d40 | 77 69 64 74 68 00 60 60 68 74 34 30 2b 60 60 20 2d 20 42 6f 74 68 20 32 30 20 4d 48 7a 20 61 6e | width.``ht40+``.-.Both.20.MHz.an |
| 159d60 | 64 20 34 30 20 4d 48 7a 20 77 69 74 68 20 73 65 63 6f 6e 64 61 72 79 20 63 68 61 6e 6e 65 6c 20 | d.40.MHz.with.secondary.channel. |
| 159d80 | 61 62 6f 76 65 20 74 68 65 20 70 72 69 6d 61 72 79 20 63 68 61 6e 6e 65 6c 00 60 60 68 74 34 30 | above.the.primary.channel.``ht40 |
| 159da0 | 2d 60 60 20 2d 20 42 6f 74 68 20 32 30 20 4d 48 7a 20 61 6e 64 20 34 30 20 4d 48 7a 20 77 69 74 | -``.-.Both.20.MHz.and.40.MHz.wit |
| 159dc0 | 68 20 73 65 63 6f 6e 64 61 72 79 20 63 68 61 6e 6e 65 6c 20 62 65 6c 6f 77 20 74 68 65 20 70 72 | h.secondary.channel.below.the.pr |
| 159de0 | 69 6d 61 72 79 20 63 68 61 6e 6e 65 6c 00 60 60 68 76 63 30 60 60 20 2d 20 58 65 6e 20 63 6f 6e | imary.channel.``hvc0``.-.Xen.con |
| 159e00 | 73 6f 6c 65 00 60 60 69 64 60 60 20 2d 20 73 74 61 74 69 63 20 49 44 27 73 20 66 6f 72 20 61 75 | sole.``id``.-.static.ID's.for.au |
| 159e20 | 74 68 65 6e 74 69 63 61 74 69 6f 6e 2e 20 49 6e 20 67 65 6e 65 72 61 6c 20 6c 6f 63 61 6c 20 61 | thentication..In.general.local.a |
| 159e40 | 6e 64 20 72 65 6d 6f 74 65 20 61 64 64 72 65 73 73 20 60 60 3c 78 2e 78 2e 78 2e 78 3e 60 60 2c | nd.remote.address.``<x.x.x.x>``, |
| 159e60 | 20 60 60 3c 68 3a 68 3a 68 3a 68 3a 68 3a 68 3a 68 3a 68 3e 60 60 20 6f 72 20 60 60 25 61 6e 79 | .``<h:h:h:h:h:h:h:h>``.or.``%any |
| 159e80 | 60 60 3b 00 60 60 69 6b 65 2d 67 72 6f 75 70 60 60 20 2d 20 49 4b 45 20 67 72 6f 75 70 20 74 6f | ``;.``ike-group``.-.IKE.group.to |
| 159ea0 | 20 75 73 65 20 66 6f 72 20 6b 65 79 20 65 78 63 68 61 6e 67 65 73 3b 00 60 60 69 6b 65 76 31 60 | .use.for.key.exchanges;.``ikev1` |
| 159ec0 | 60 20 75 73 65 20 49 4b 45 76 31 20 66 6f 72 20 4b 65 79 20 45 78 63 68 61 6e 67 65 3b 00 60 60 | `.use.IKEv1.for.Key.Exchange;.`` |
| 159ee0 | 69 6b 65 76 32 2d 72 65 61 75 74 68 60 60 20 2d 20 72 65 61 75 74 68 65 6e 74 69 63 61 74 65 20 | ikev2-reauth``.-.reauthenticate. |
| 159f00 | 72 65 6d 6f 74 65 20 70 65 65 72 20 64 75 72 69 6e 67 20 74 68 65 20 72 65 6b 65 79 69 6e 67 20 | remote.peer.during.the.rekeying. |
| 159f20 | 70 72 6f 63 65 73 73 2e 20 43 61 6e 20 62 65 20 75 73 65 64 20 6f 6e 6c 79 20 77 69 74 68 20 49 | process..Can.be.used.only.with.I |
| 159f40 | 4b 45 76 32 2e 20 43 72 65 61 74 65 20 61 20 6e 65 77 20 49 4b 45 5f 53 41 20 66 72 6f 6d 20 74 | KEv2..Create.a.new.IKE_SA.from.t |
| 159f60 | 68 65 20 73 63 72 61 74 63 68 20 61 6e 64 20 74 72 79 20 74 6f 20 72 65 63 72 65 61 74 65 20 61 | he.scratch.and.try.to.recreate.a |
| 159f80 | 6c 6c 20 49 50 73 65 63 20 53 41 73 3b 00 60 60 69 6b 65 76 32 2d 72 65 61 75 74 68 60 60 20 77 | ll.IPsec.SAs;.``ikev2-reauth``.w |
| 159fa0 | 68 65 74 68 65 72 20 72 65 6b 65 79 69 6e 67 20 6f 66 20 61 6e 20 49 4b 45 5f 53 41 20 73 68 6f | hether.rekeying.of.an.IKE_SA.sho |
| 159fc0 | 75 6c 64 20 61 6c 73 6f 20 72 65 61 75 74 68 65 6e 74 69 63 61 74 65 20 74 68 65 20 70 65 65 72 | uld.also.reauthenticate.the.peer |
| 159fe0 | 2e 20 49 6e 20 49 4b 45 76 31 2c 20 72 65 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 69 73 20 | ..In.IKEv1,.reauthentication.is. |
| 15a000 | 61 6c 77 61 79 73 20 64 6f 6e 65 2e 20 53 65 74 74 69 6e 67 20 74 68 69 73 20 70 61 72 61 6d 65 | always.done..Setting.this.parame |
| 15a020 | 74 65 72 20 65 6e 61 62 6c 65 73 20 72 65 6d 6f 74 65 20 68 6f 73 74 20 72 65 2d 61 75 74 68 65 | ter.enables.remote.host.re-authe |
| 15a040 | 6e 74 69 63 61 74 69 6f 6e 20 64 75 72 69 6e 67 20 61 6e 20 49 4b 45 20 72 65 6b 65 79 2e 00 60 | ntication.during.an.IKE.rekey..` |
| 15a060 | 60 69 6b 65 76 32 2d 72 65 61 75 74 68 60 60 20 77 68 65 74 68 65 72 20 72 65 6b 65 79 69 6e 67 | `ikev2-reauth``.whether.rekeying |
| 15a080 | 20 6f 66 20 61 6e 20 49 4b 45 5f 53 41 20 73 68 6f 75 6c 64 20 61 6c 73 6f 20 72 65 61 75 74 68 | .of.an.IKE_SA.should.also.reauth |
| 15a0a0 | 65 6e 74 69 63 61 74 65 20 74 68 65 20 70 65 65 72 2e 20 49 6e 20 49 4b 45 76 31 2c 20 72 65 61 | enticate.the.peer..In.IKEv1,.rea |
| 15a0c0 | 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 69 73 20 61 6c 77 61 79 73 20 64 6f 6e 65 3a 00 60 60 | uthentication.is.always.done:.`` |
| 15a0e0 | 69 6b 65 76 32 60 60 20 75 73 65 20 49 4b 45 76 32 20 66 6f 72 20 4b 65 79 20 45 78 63 68 61 6e | ikev2``.use.IKEv2.for.Key.Exchan |
| 15a100 | 67 65 3b 00 60 60 69 6e 60 60 3a 20 52 75 6c 65 73 65 74 20 66 6f 72 20 66 6f 72 77 61 72 64 65 | ge;.``in``:.Ruleset.for.forwarde |
| 15a120 | 64 20 70 61 63 6b 65 74 73 20 6f 6e 20 61 6e 20 69 6e 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 | d.packets.on.an.inbound.interfac |
| 15a140 | 65 00 60 60 69 6e 69 74 63 61 6c 6c 5f 62 6c 61 63 6b 6c 69 73 74 3d 61 63 70 69 5f 63 70 75 66 | e.``initcall_blacklist=acpi_cpuf |
| 15a160 | 72 65 71 5f 69 6e 69 74 60 60 20 44 69 73 61 62 6c 65 20 64 65 66 61 75 6c 74 20 41 43 50 49 20 | req_init``.Disable.default.ACPI. |
| 15a180 | 43 50 55 20 66 72 65 71 75 65 6e 63 79 20 73 63 61 6c 65 00 60 60 69 6e 69 74 69 61 74 65 60 60 | CPU.frequency.scale.``initiate`` |
| 15a1a0 | 20 2d 20 64 6f 65 73 20 69 6e 69 74 69 61 6c 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 6f 20 72 65 | .-.does.initial.connection.to.re |
| 15a1c0 | 6d 6f 74 65 20 70 65 65 72 20 69 6d 6d 65 64 69 61 74 65 6c 79 20 61 66 74 65 72 20 63 6f 6e 66 | mote.peer.immediately.after.conf |
| 15a1e0 | 69 67 75 72 69 6e 67 20 61 6e 64 20 61 66 74 65 72 20 62 6f 6f 74 2e 20 49 6e 20 74 68 69 73 20 | iguring.and.after.boot..In.this. |
| 15a200 | 6d 6f 64 65 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 77 69 6c 6c 20 6e 6f 74 20 62 65 20 | mode.the.connection.will.not.be. |
| 15a220 | 72 65 73 74 61 72 74 65 64 20 69 6e 20 63 61 73 65 20 6f 66 20 64 69 73 63 6f 6e 6e 65 63 74 69 | restarted.in.case.of.disconnecti |
| 15a240 | 6f 6e 2c 20 74 68 65 72 65 66 6f 72 65 20 73 68 6f 75 6c 64 20 62 65 20 75 73 65 64 20 6f 6e 6c | on,.therefore.should.be.used.onl |
| 15a260 | 79 20 74 6f 67 65 74 68 65 72 20 77 69 74 68 20 44 50 44 20 6f 72 20 61 6e 6f 74 68 65 72 20 73 | y.together.with.DPD.or.another.s |
| 15a280 | 65 73 73 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 6d 65 74 68 6f 64 73 3b 00 60 60 69 6e 74 65 6c | ession.tracking.methods;.``intel |
| 15a2a0 | 5f 69 64 6c 65 2e 6d 61 78 5f 63 73 74 61 74 65 3d 30 60 60 20 44 69 73 61 62 6c 65 20 69 6e 74 | _idle.max_cstate=0``.Disable.int |
| 15a2c0 | 65 6c 5f 69 64 6c 65 20 61 6e 64 20 66 61 6c 6c 20 62 61 63 6b 20 6f 6e 20 61 63 70 69 5f 69 64 | el_idle.and.fall.back.on.acpi_id |
| 15a2e0 | 6c 65 00 60 60 69 6e 74 65 72 66 61 63 65 60 60 20 49 6e 74 65 72 66 61 63 65 20 4e 61 6d 65 20 | le.``interface``.Interface.Name. |
| 15a300 | 74 6f 20 75 73 65 2e 20 54 68 65 20 6e 61 6d 65 20 6f 66 20 74 68 65 20 69 6e 74 65 72 66 61 63 | to.use..The.name.of.the.interfac |
| 15a320 | 65 20 6f 6e 20 77 68 69 63 68 00 60 60 69 6e 74 65 72 66 61 63 65 60 60 20 49 6e 74 65 72 66 61 | e.on.which.``interface``.Interfa |
| 15a340 | 63 65 20 4e 61 6d 65 20 74 6f 20 75 73 65 2e 20 54 68 65 20 6e 61 6d 65 20 6f 66 20 74 68 65 20 | ce.Name.to.use..The.name.of.the. |
| 15a360 | 69 6e 74 65 72 66 61 63 65 20 6f 6e 20 77 68 69 63 68 20 76 69 72 74 75 61 6c 20 49 50 20 61 64 | interface.on.which.virtual.IP.ad |
| 15a380 | 64 72 65 73 73 65 73 20 73 68 6f 75 6c 64 20 62 65 20 69 6e 73 74 61 6c 6c 65 64 2e 20 49 66 20 | dresses.should.be.installed..If. |
| 15a3a0 | 6e 6f 74 20 73 70 65 63 69 66 69 65 64 20 74 68 65 20 61 64 64 72 65 73 73 65 73 20 77 69 6c 6c | not.specified.the.addresses.will |
| 15a3c0 | 20 62 65 20 69 6e 73 74 61 6c 6c 65 64 20 6f 6e 20 74 68 65 20 6f 75 74 62 6f 75 6e 64 20 69 6e | .be.installed.on.the.outbound.in |
| 15a3e0 | 74 65 72 66 61 63 65 3b 00 60 60 69 6e 74 65 72 66 61 63 65 60 60 20 69 73 20 75 73 65 64 20 66 | terface;.``interface``.is.used.f |
| 15a400 | 6f 72 20 74 68 65 20 56 79 4f 53 20 43 4c 49 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 69 64 65 6e 74 | or.the.VyOS.CLI.command.to.ident |
| 15a420 | 69 66 79 20 74 68 65 20 57 69 72 65 47 75 61 72 64 20 69 6e 74 65 72 66 61 63 65 20 77 68 65 72 | ify.the.WireGuard.interface.wher |
| 15a440 | 65 20 74 68 69 73 20 70 72 69 76 61 74 65 20 6b 65 79 20 69 73 20 74 6f 20 62 65 20 75 73 65 64 | e.this.private.key.is.to.be.used |
| 15a460 | 2e 00 60 60 69 6e 74 65 72 6c 65 61 76 65 60 60 20 65 6e 61 62 6c 65 73 20 4e 54 50 20 69 6e 74 | ..``interleave``.enables.NTP.int |
| 15a480 | 65 72 6c 65 61 76 65 64 20 6d 6f 64 65 20 28 73 65 65 20 60 64 72 61 66 74 2d 6e 74 70 2d 69 6e | erleaved.mode.(see.`draft-ntp-in |
| 15a4a0 | 74 65 72 6c 65 61 76 65 64 2d 6d 6f 64 65 73 60 5f 29 2c 20 77 68 69 63 68 20 63 61 6e 20 69 6d | terleaved-modes`_),.which.can.im |
| 15a4c0 | 70 72 6f 76 65 20 73 79 6e 63 68 72 6f 6e 69 7a 61 74 69 6f 6e 20 61 63 63 75 72 61 63 79 20 61 | prove.synchronization.accuracy.a |
| 15a4e0 | 6e 64 20 73 74 61 62 69 6c 69 74 79 20 77 68 65 6e 20 73 75 70 70 6f 72 74 65 64 20 62 79 20 62 | nd.stability.when.supported.by.b |
| 15a500 | 6f 74 68 20 70 61 72 74 69 65 73 2e 00 60 60 69 6e 74 65 72 6e 65 74 60 60 20 2d 20 20 20 20 20 | oth.parties..``internet``.-..... |
| 15a520 | 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 57 65 6c 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d 75 | ................Well-known.commu |
| 15a540 | 6e 69 74 69 65 73 20 76 61 6c 75 65 20 30 00 60 60 69 6e 74 65 72 76 61 6c 60 60 20 6b 65 65 70 | nities.value.0.``interval``.keep |
| 15a560 | 2d 61 6c 69 76 65 20 69 6e 74 65 72 76 61 6c 20 69 6e 20 73 65 63 6f 6e 64 73 20 3c 32 2d 38 36 | -alive.interval.in.seconds.<2-86 |
| 15a580 | 34 30 30 3e 20 28 64 65 66 61 75 6c 74 20 33 30 29 3b 00 60 60 69 73 69 73 60 60 20 2d 20 49 6e | 400>.(default.30);.``isis``.-.In |
| 15a5a0 | 74 65 72 6d 65 64 69 61 74 65 20 53 79 73 74 65 6d 20 74 6f 20 49 6e 74 65 72 6d 65 64 69 61 74 | termediate.System.to.Intermediat |
| 15a5c0 | 65 20 53 79 73 74 65 6d 20 28 49 53 2d 49 53 29 00 60 60 6a 75 6d 70 60 60 3a 20 6a 75 6d 70 20 | e.System.(IS-IS).``jump``:.jump. |
| 15a5e0 | 74 6f 20 61 6e 6f 74 68 65 72 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 2e 00 60 60 6b 65 72 6e 65 | to.another.custom.chain..``kerne |
| 15a600 | 6c 60 60 20 2d 20 4b 65 72 6e 65 6c 20 72 6f 75 74 65 73 00 60 60 6b 65 79 2d 65 78 63 68 61 6e | l``.-.Kernel.routes.``key-exchan |
| 15a620 | 67 65 60 60 20 77 68 69 63 68 20 70 72 6f 74 6f 63 6f 6c 20 73 68 6f 75 6c 64 20 62 65 20 75 73 | ge``.which.protocol.should.be.us |
| 15a640 | 65 64 20 74 6f 20 69 6e 69 74 69 61 6c 69 7a 65 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 | ed.to.initialize.the.connection. |
| 15a660 | 49 66 20 6e 6f 74 20 73 65 74 20 62 6f 74 68 20 70 72 6f 74 6f 63 6f 6c 73 20 61 72 65 20 68 61 | If.not.set.both.protocols.are.ha |
| 15a680 | 6e 64 6c 65 64 20 61 6e 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 77 69 6c 6c 20 75 73 65 20 49 | ndled.and.connections.will.use.I |
| 15a6a0 | 4b 45 76 32 20 77 68 65 6e 20 69 6e 69 74 69 61 74 69 6e 67 2c 20 62 75 74 20 61 63 63 65 70 74 | KEv2.when.initiating,.but.accept |
| 15a6c0 | 20 61 6e 79 20 70 72 6f 74 6f 63 6f 6c 20 76 65 72 73 69 6f 6e 20 77 68 65 6e 20 72 65 73 70 6f | .any.protocol.version.when.respo |
| 15a6e0 | 6e 64 69 6e 67 3a 00 60 60 6b 65 79 60 60 20 2d 20 61 20 70 72 69 76 61 74 65 20 6b 65 79 2c 20 | nding:.``key``.-.a.private.key,. |
| 15a700 | 77 68 69 63 68 20 77 69 6c 6c 20 62 65 20 75 73 65 64 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 | which.will.be.used.for.authentic |
| 15a720 | 61 74 69 6e 67 20 6c 6f 63 61 6c 20 72 6f 75 74 65 72 20 6f 6e 20 72 65 6d 6f 74 65 20 70 65 65 | ating.local.router.on.remote.pee |
| 15a740 | 72 3a 00 60 60 6b 65 79 60 60 20 75 73 65 20 41 50 49 20 6b 65 79 73 20 63 6f 6e 66 69 67 75 72 | r:.``key``.use.API.keys.configur |
| 15a760 | 65 64 20 69 6e 20 60 60 73 65 72 76 69 63 65 20 68 74 74 70 73 20 61 70 69 20 6b 65 79 73 60 60 | ed.in.``service.https.api.keys`` |
| 15a780 | 00 60 60 6c 61 74 65 6e 63 79 60 60 3a 20 41 20 73 65 72 76 65 72 20 70 72 6f 66 69 6c 65 20 66 | .``latency``:.A.server.profile.f |
| 15a7a0 | 6f 63 75 73 65 64 20 6f 6e 20 6c 6f 77 65 72 69 6e 67 20 6e 65 74 77 6f 72 6b 20 6c 61 74 65 6e | ocused.on.lowering.network.laten |
| 15a7c0 | 63 79 2e 20 54 68 69 73 20 70 72 6f 66 69 6c 65 20 66 61 76 6f 72 73 20 70 65 72 66 6f 72 6d 61 | cy..This.profile.favors.performa |
| 15a7e0 | 6e 63 65 20 6f 76 65 72 20 70 6f 77 65 72 20 73 61 76 69 6e 67 73 20 62 79 20 73 65 74 74 69 6e | nce.over.power.savings.by.settin |
| 15a800 | 67 20 60 60 69 6e 74 65 6c 5f 70 73 74 61 74 65 60 60 20 61 6e 64 20 60 60 6d 69 6e 5f 70 65 72 | g.``intel_pstate``.and.``min_per |
| 15a820 | 66 5f 70 63 74 3d 31 30 30 60 60 2e 00 60 60 6c 64 61 70 60 60 20 4c 44 41 50 20 70 72 6f 74 6f | f_pct=100``..``ldap``.LDAP.proto |
| 15a840 | 63 6f 6c 20 63 68 65 63 6b 2e 00 60 60 6c 65 61 73 74 2d 63 6f 6e 6e 65 63 74 69 6f 6e 60 60 20 | col.check..``least-connection``. |
| 15a860 | 44 69 73 74 72 69 62 75 74 65 73 20 72 65 71 75 65 73 74 73 20 74 6f 20 74 68 65 20 73 65 72 76 | Distributes.requests.to.the.serv |
| 15a880 | 65 72 20 77 69 74 68 20 74 68 65 20 66 65 77 65 73 74 20 61 63 74 69 76 65 20 63 6f 6e 6e 65 63 | er.with.the.fewest.active.connec |
| 15a8a0 | 74 69 6f 6e 73 00 60 60 6c 65 61 73 74 2d 63 6f 6e 6e 65 63 74 69 6f 6e 60 60 20 44 69 73 74 72 | tions.``least-connection``.Distr |
| 15a8c0 | 69 62 75 74 65 73 20 72 65 71 75 65 73 74 73 20 74 70 20 74 6a 65 20 73 65 72 76 65 72 20 77 6f | ibutes.requests.tp.tje.server.wo |
| 15a8e0 | 74 6a 20 74 68 65 20 66 65 77 65 73 74 20 61 63 74 69 76 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 | tj.the.fewest.active.connections |
| 15a900 | 00 60 60 6c 69 66 65 2d 62 79 74 65 73 60 60 20 45 53 50 20 6c 69 66 65 20 69 6e 20 62 79 74 65 | .``life-bytes``.ESP.life.in.byte |
| 15a920 | 73 20 3c 31 30 32 34 2d 32 36 38 34 33 35 34 35 36 30 30 30 30 30 3e 2e 20 4e 75 6d 62 65 72 20 | s.<1024-26843545600000>..Number. |
| 15a940 | 6f 66 20 62 79 74 65 73 20 74 72 61 6e 73 6d 69 74 74 65 64 20 6f 76 65 72 20 61 6e 20 49 50 73 | of.bytes.transmitted.over.an.IPs |
| 15a960 | 65 63 20 53 41 20 62 65 66 6f 72 65 20 69 74 20 65 78 70 69 72 65 73 3b 00 60 60 6c 69 66 65 2d | ec.SA.before.it.expires;.``life- |
| 15a980 | 70 61 63 6b 65 74 73 60 60 20 45 53 50 20 6c 69 66 65 20 69 6e 20 70 61 63 6b 65 74 73 20 3c 31 | packets``.ESP.life.in.packets.<1 |
| 15a9a0 | 30 30 30 2d 32 36 38 34 33 35 34 35 36 30 30 30 30 30 3e 2e 20 4e 75 6d 62 65 72 20 6f 66 20 70 | 000-26843545600000>..Number.of.p |
| 15a9c0 | 61 63 6b 65 74 73 20 74 72 61 6e 73 6d 69 74 74 65 64 20 6f 76 65 72 20 61 6e 20 49 50 73 65 63 | ackets.transmitted.over.an.IPsec |
| 15a9e0 | 20 53 41 20 62 65 66 6f 72 65 20 69 74 20 65 78 70 69 72 65 73 3b 00 60 60 6c 69 66 65 74 69 6d | .SA.before.it.expires;.``lifetim |
| 15aa00 | 65 60 60 20 45 53 50 20 6c 69 66 65 74 69 6d 65 20 69 6e 20 73 65 63 6f 6e 64 73 20 3c 33 30 2d | e``.ESP.lifetime.in.seconds.<30- |
| 15aa20 | 38 36 34 30 30 3e 20 28 64 65 66 61 75 6c 74 20 33 36 30 30 29 2e 20 48 6f 77 20 6c 6f 6e 67 20 | 86400>.(default.3600)..How.long. |
| 15aa40 | 61 20 70 61 72 74 69 63 75 6c 61 72 20 69 6e 73 74 61 6e 63 65 20 6f 66 20 61 20 63 6f 6e 6e 65 | a.particular.instance.of.a.conne |
| 15aa60 | 63 74 69 6f 6e 20 28 61 20 73 65 74 20 6f 66 20 65 6e 63 72 79 70 74 69 6f 6e 2f 61 75 74 68 65 | ction.(a.set.of.encryption/authe |
| 15aa80 | 6e 74 69 63 61 74 69 6f 6e 20 6b 65 79 73 20 66 6f 72 20 75 73 65 72 20 70 61 63 6b 65 74 73 29 | ntication.keys.for.user.packets) |
| 15aaa0 | 20 73 68 6f 75 6c 64 20 6c 61 73 74 2c 20 66 72 6f 6d 20 73 75 63 63 65 73 73 66 75 6c 20 6e 65 | .should.last,.from.successful.ne |
| 15aac0 | 67 6f 74 69 61 74 69 6f 6e 20 74 6f 20 65 78 70 69 72 79 3b 00 60 60 6c 69 66 65 74 69 6d 65 60 | gotiation.to.expiry;.``lifetime` |
| 15aae0 | 60 20 49 4b 45 20 6c 69 66 65 74 69 6d 65 20 69 6e 20 73 65 63 6f 6e 64 73 20 3c 30 2d 38 36 34 | `.IKE.lifetime.in.seconds.<0-864 |
| 15ab00 | 30 30 3e 20 28 64 65 66 61 75 6c 74 20 32 38 38 30 30 29 3b 00 60 60 6c 69 66 65 74 69 6d 65 60 | 00>.(default.28800);.``lifetime` |
| 15ab20 | 60 20 49 4b 45 20 6c 69 66 65 74 69 6d 65 20 69 6e 20 73 65 63 6f 6e 64 73 20 3c 33 30 2d 38 36 | `.IKE.lifetime.in.seconds.<30-86 |
| 15ab40 | 34 30 30 3e 20 28 64 65 66 61 75 6c 74 20 32 38 38 30 30 29 3b 00 60 60 6c 6c 67 72 2d 73 74 61 | 400>.(default.28800);.``llgr-sta |
| 15ab60 | 6c 65 60 60 20 2d 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 57 65 6c 6c 2d 6b 6e | le``.-...................Well-kn |
| 15ab80 | 6f 77 6e 20 63 6f 6d 6d 75 6e 69 74 69 65 73 20 76 61 6c 75 65 20 4c 4c 47 52 5f 53 54 41 4c 45 | own.communities.value.LLGR_STALE |
| 15aba0 | 20 30 78 46 46 46 46 30 30 30 36 00 60 60 6c 6f 63 61 6c 2d 61 64 64 72 65 73 73 60 60 20 2d 20 | .0xFFFF0006.``local-address``.-. |
| 15abc0 | 6c 6f 63 61 6c 20 49 50 20 61 64 64 72 65 73 73 20 66 6f 72 20 49 50 53 65 63 20 63 6f 6e 6e 65 | local.IP.address.for.IPSec.conne |
| 15abe0 | 63 74 69 6f 6e 20 77 69 74 68 20 74 68 69 73 20 70 65 65 72 2e 20 49 66 20 64 65 66 69 6e 65 64 | ction.with.this.peer..If.defined |
| 15ac00 | 20 60 60 61 6e 79 60 60 2c 20 74 68 65 6e 20 61 6e 20 49 50 20 61 64 64 72 65 73 73 20 77 68 69 | .``any``,.then.an.IP.address.whi |
| 15ac20 | 63 68 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 77 69 74 68 20 | ch.configured.on.interface.with. |
| 15ac40 | 64 65 66 61 75 6c 74 20 72 6f 75 74 65 20 77 69 6c 6c 20 62 65 20 75 73 65 64 3b 00 60 60 6c 6f | default.route.will.be.used;.``lo |
| 15ac60 | 63 61 6c 2d 61 73 60 60 20 2d 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 57 | cal-as``.-.....................W |
| 15ac80 | 65 6c 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d 75 6e 69 74 69 65 73 20 76 61 6c 75 65 20 4e 4f 5f 45 | ell-known.communities.value.NO_E |
| 15aca0 | 58 50 4f 52 54 5f 53 55 42 43 4f 4e 46 45 44 20 30 78 46 46 46 46 46 46 30 33 00 60 60 6c 6f 63 | XPORT_SUBCONFED.0xFFFFFF03.``loc |
| 15acc0 | 61 6c 2d 69 64 60 60 20 2d 20 49 44 20 66 6f 72 20 74 68 65 20 6c 6f 63 61 6c 20 56 79 4f 53 20 | al-id``.-.ID.for.the.local.VyOS. |
| 15ace0 | 72 6f 75 74 65 72 2e 20 49 66 20 64 65 66 69 6e 65 64 2c 20 64 75 72 69 6e 67 20 74 68 65 20 61 | router..If.defined,.during.the.a |
| 15ad00 | 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 69 74 20 77 69 6c 6c 20 62 65 20 73 65 6e 64 20 74 6f | uthentication.it.will.be.send.to |
| 15ad20 | 20 72 65 6d 6f 74 65 20 70 65 65 72 3b 00 60 60 6c 6f 63 61 6c 2d 6b 65 79 60 60 20 2d 20 6e 61 | .remote.peer;.``local-key``.-.na |
| 15ad40 | 6d 65 20 6f 66 20 50 4b 49 20 6b 65 79 2d 70 61 69 72 20 77 69 74 68 20 6c 6f 63 61 6c 20 70 72 | me.of.PKI.key-pair.with.local.pr |
| 15ad60 | 69 76 61 74 65 20 6b 65 79 00 60 60 6c 6f 63 61 6c 60 60 20 2d 20 64 65 66 69 6e 65 20 61 20 6c | ivate.key.``local``.-.define.a.l |
| 15ad80 | 6f 63 61 6c 20 73 6f 75 72 63 65 20 66 6f 72 20 6d 61 74 63 68 20 74 72 61 66 66 69 63 2c 20 77 | ocal.source.for.match.traffic,.w |
| 15ada0 | 68 69 63 68 20 73 68 6f 75 6c 64 20 62 65 20 65 6e 63 72 79 70 74 65 64 20 61 6e 64 20 73 65 6e | hich.should.be.encrypted.and.sen |
| 15adc0 | 64 20 74 6f 20 74 68 69 73 20 70 65 65 72 3a 00 60 60 6c 6f 63 61 6c 60 60 3a 20 52 75 6c 65 73 | d.to.this.peer:.``local``:.Rules |
| 15ade0 | 65 74 20 66 6f 72 20 70 61 63 6b 65 74 73 20 64 65 73 74 69 6e 65 64 20 66 6f 72 20 74 68 69 73 | et.for.packets.destined.for.this |
| 15ae00 | 20 72 6f 75 74 65 72 00 60 60 6d 60 60 20 2d 20 45 78 65 63 75 74 69 6f 6e 20 69 6e 74 65 72 76 | .router.``m``.-.Execution.interv |
| 15ae20 | 61 6c 20 69 6e 20 6d 69 6e 75 74 65 73 00 60 60 6d 61 69 6e 60 60 20 52 6f 75 74 69 6e 67 20 74 | al.in.minutes.``main``.Routing.t |
| 15ae40 | 61 62 6c 65 20 75 73 65 64 20 62 79 20 56 79 4f 53 20 61 6e 64 20 6f 74 68 65 72 20 69 6e 74 65 | able.used.by.VyOS.and.other.inte |
| 15ae60 | 72 66 61 63 65 73 20 6e 6f 74 20 70 61 72 74 69 63 69 70 61 74 69 6e 67 20 69 6e 20 50 42 52 00 | rfaces.not.participating.in.PBR. |
| 15ae80 | 60 60 6d 61 69 6e 60 60 20 75 73 65 20 4d 61 69 6e 20 6d 6f 64 65 20 66 6f 72 20 4b 65 79 20 45 | ``main``.use.Main.mode.for.Key.E |
| 15aea0 | 78 63 68 61 6e 67 65 73 20 69 6e 20 74 68 65 20 49 4b 45 76 31 20 50 72 6f 74 6f 63 6f 6c 20 28 | xchanges.in.the.IKEv1.Protocol.( |
| 15aec0 | 52 65 63 6f 6d 6d 65 6e 64 65 64 20 44 65 66 61 75 6c 74 29 3b 00 60 60 6d 65 73 73 61 67 65 60 | Recommended.Default);.``message` |
| 15aee0 | 60 3a 20 46 75 6c 6c 20 6d 65 73 73 61 67 65 20 74 68 61 74 20 68 61 73 20 74 72 69 67 67 65 72 | `:.Full.message.that.has.trigger |
| 15af00 | 65 64 20 74 68 65 20 73 63 72 69 70 74 2e 00 60 60 6d 69 74 69 67 61 74 69 6f 6e 73 3d 6f 66 66 | ed.the.script..``mitigations=off |
| 15af20 | 60 60 00 60 60 6d 6f 62 69 6b 65 60 60 20 65 6e 61 62 6c 65 20 4d 4f 42 49 4b 45 20 53 75 70 70 | ``.``mobike``.enable.MOBIKE.Supp |
| 15af40 | 6f 72 74 2e 20 4d 4f 42 49 4b 45 20 69 73 20 6f 6e 6c 79 20 61 76 61 69 6c 61 62 6c 65 20 66 6f | ort..MOBIKE.is.only.available.fo |
| 15af60 | 72 20 49 4b 45 76 32 3a 00 60 60 6d 6f 64 65 60 60 20 2d 20 6d 6f 64 65 20 66 6f 72 20 61 75 74 | r.IKEv2:.``mode``.-.mode.for.aut |
| 15af80 | 68 65 6e 74 69 63 61 74 69 6f 6e 20 62 65 74 77 65 65 6e 20 56 79 4f 53 20 61 6e 64 20 72 65 6d | hentication.between.VyOS.and.rem |
| 15afa0 | 6f 74 65 20 70 65 65 72 3a 00 60 60 6d 6f 64 65 60 60 20 49 4b 45 76 31 20 50 68 61 73 65 20 31 | ote.peer:.``mode``.IKEv1.Phase.1 |
| 15afc0 | 20 4d 6f 64 65 20 53 65 6c 65 63 74 69 6f 6e 3a 00 60 60 6d 6f 64 65 60 60 20 74 68 65 20 74 79 | .Mode.Selection:.``mode``.the.ty |
| 15afe0 | 70 65 20 6f 66 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 3a 00 60 60 6d 6f 6e 69 74 6f 72 60 | pe.of.the.connection:.``monitor` |
| 15b000 | 60 20 2d 20 50 61 73 73 69 76 65 6c 79 20 6d 6f 6e 69 74 6f 72 20 61 6c 6c 20 70 61 63 6b 65 74 | `.-.Passively.monitor.all.packet |
| 15b020 | 73 20 6f 6e 20 74 68 65 20 66 72 65 71 75 65 6e 63 79 2f 63 68 61 6e 6e 65 6c 00 60 60 6d 75 6c | s.on.the.frequency/channel.``mul |
| 15b040 | 74 69 2d 75 73 65 72 2d 62 65 61 6d 66 6f 72 6d 65 65 60 60 20 2d 20 53 75 70 70 6f 72 74 20 66 | ti-user-beamformee``.-.Support.f |
| 15b060 | 6f 72 20 6f 70 65 72 61 74 69 6f 6e 20 61 73 20 6d 75 6c 74 69 20 75 73 65 72 20 62 65 61 6d 66 | or.operation.as.multi.user.beamf |
| 15b080 | 6f 72 6d 65 65 00 60 60 6d 75 6c 74 69 2d 75 73 65 72 2d 62 65 61 6d 66 6f 72 6d 65 65 60 60 20 | ormee.``multi-user-beamformee``. |
| 15b0a0 | 2d 20 53 75 70 70 6f 72 74 20 66 6f 72 20 6f 70 65 72 61 74 69 6f 6e 20 61 73 20 73 69 6e 67 6c | -.Support.for.operation.as.singl |
| 15b0c0 | 65 20 75 73 65 72 20 62 65 61 6d 66 6f 72 6d 65 72 00 60 60 6d 75 6c 74 69 2d 75 73 65 72 2d 62 | e.user.beamformer.``multi-user-b |
| 15b0e0 | 65 61 6d 66 6f 72 6d 65 72 60 60 20 2d 20 53 75 70 70 6f 72 74 20 66 6f 72 20 6f 70 65 72 61 74 | eamformer``.-.Support.for.operat |
| 15b100 | 69 6f 6e 20 61 73 20 6d 75 6c 74 69 20 75 73 65 72 20 62 65 61 6d 66 6f 72 6d 65 72 00 60 60 6d | ion.as.multi.user.beamformer.``m |
| 15b120 | 75 6c 74 69 2d 75 73 65 72 2d 62 65 61 6d 66 6f 72 6d 65 72 60 60 20 2d 20 53 75 70 70 6f 72 74 | ulti-user-beamformer``.-.Support |
| 15b140 | 20 66 6f 72 20 6f 70 65 72 61 74 69 6f 6e 20 61 73 20 73 69 6e 67 6c 65 20 75 73 65 72 20 62 65 | .for.operation.as.single.user.be |
| 15b160 | 61 6d 66 6f 72 6d 65 72 00 60 60 6d 79 73 71 6c 60 60 20 4d 79 53 51 4c 20 70 72 6f 74 6f 63 6f | amformer.``mysql``.MySQL.protoco |
| 15b180 | 6c 20 63 68 65 63 6b 2e 00 60 60 6e 60 60 20 2d 20 38 30 32 2e 31 31 6e 20 2d 20 36 30 30 20 4d | l.check..``n``.-.802.11n.-.600.M |
| 15b1a0 | 62 69 74 73 2f 73 65 63 00 60 60 6e 61 6d 65 60 60 20 69 73 20 75 73 65 64 20 66 6f 72 20 74 68 | bits/sec.``name``.is.used.for.th |
| 15b1c0 | 65 20 56 79 4f 53 20 43 4c 49 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 69 64 65 6e 74 69 66 79 20 74 | e.VyOS.CLI.command.to.identify.t |
| 15b1e0 | 68 69 73 20 6b 65 79 2e 20 54 68 69 73 20 6b 65 79 20 60 60 6e 61 6d 65 60 60 20 69 73 20 74 68 | his.key..This.key.``name``.is.th |
| 15b200 | 65 6e 20 75 73 65 64 20 69 6e 20 74 68 65 20 43 4c 49 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e | en.used.in.the.CLI.configuration |
| 15b220 | 20 74 6f 20 72 65 66 65 72 65 6e 63 65 20 74 68 65 20 6b 65 79 20 69 6e 73 74 61 6e 63 65 2e 00 | .to.reference.the.key.instance.. |
| 15b240 | 60 60 6e 65 74 2e 69 70 76 34 2e 63 6f 6e 66 2e 61 6c 6c 2e 61 63 63 65 70 74 5f 72 65 64 69 72 | ``net.ipv4.conf.all.accept_redir |
| 15b260 | 65 63 74 73 60 60 00 60 60 6e 65 74 2e 69 70 76 34 2e 63 6f 6e 66 2e 61 6c 6c 2e 61 63 63 65 70 | ects``.``net.ipv4.conf.all.accep |
| 15b280 | 74 5f 73 6f 75 72 63 65 5f 72 6f 75 74 65 60 60 00 60 60 6e 65 74 2e 69 70 76 34 2e 63 6f 6e 66 | t_source_route``.``net.ipv4.conf |
| 15b2a0 | 2e 61 6c 6c 2e 6c 6f 67 5f 6d 61 72 74 69 61 6e 73 60 60 00 60 60 6e 65 74 2e 69 70 76 34 2e 63 | .all.log_martians``.``net.ipv4.c |
| 15b2c0 | 6f 6e 66 2e 61 6c 6c 2e 72 70 5f 66 69 6c 74 65 72 60 60 00 60 60 6e 65 74 2e 69 70 76 34 2e 63 | onf.all.rp_filter``.``net.ipv4.c |
| 15b2e0 | 6f 6e 66 2e 61 6c 6c 2e 73 65 6e 64 5f 72 65 64 69 72 65 63 74 73 60 60 00 60 60 6e 65 74 2e 69 | onf.all.send_redirects``.``net.i |
| 15b300 | 70 76 34 2e 69 63 6d 70 5f 65 63 68 6f 5f 69 67 6e 6f 72 65 5f 62 72 6f 61 64 63 61 73 74 73 60 | pv4.icmp_echo_ignore_broadcasts` |
| 15b320 | 60 00 60 60 6e 65 74 2e 69 70 76 34 2e 74 63 70 5f 72 66 63 31 33 33 37 60 60 00 60 60 6e 65 74 | `.``net.ipv4.tcp_rfc1337``.``net |
| 15b340 | 2e 69 70 76 34 2e 74 63 70 5f 73 79 6e 63 6f 6f 6b 69 65 73 60 60 00 60 60 6e 65 74 2e 69 70 76 | .ipv4.tcp_syncookies``.``net.ipv |
| 15b360 | 36 2e 63 6f 6e 66 2e 61 6c 6c 2e 61 63 63 65 70 74 5f 72 65 64 69 72 65 63 74 73 60 60 00 60 60 | 6.conf.all.accept_redirects``.`` |
| 15b380 | 6e 65 74 2e 69 70 76 36 2e 63 6f 6e 66 2e 61 6c 6c 2e 61 63 63 65 70 74 5f 73 6f 75 72 63 65 5f | net.ipv6.conf.all.accept_source_ |
| 15b3a0 | 72 6f 75 74 65 60 60 00 60 60 6e 6f 2d 61 64 76 65 72 74 69 73 65 60 60 20 2d 20 20 20 20 20 20 | route``.``no-advertise``.-...... |
| 15b3c0 | 20 20 20 20 20 20 20 20 20 20 20 57 65 6c 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d 75 6e 69 74 69 65 | ...........Well-known.communitie |
| 15b3e0 | 73 20 76 61 6c 75 65 20 4e 4f 5f 41 44 56 45 52 54 49 53 45 20 30 78 46 46 46 46 46 46 30 32 00 | s.value.NO_ADVERTISE.0xFFFFFF02. |
| 15b400 | 60 60 6e 6f 2d 65 78 70 6f 72 74 60 60 20 2d 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 | ``no-export``.-................. |
| 15b420 | 20 20 20 57 65 6c 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d 75 6e 69 74 69 65 73 20 76 61 6c 75 65 20 | ...Well-known.communities.value. |
| 15b440 | 4e 4f 5f 45 58 50 4f 52 54 20 30 78 46 46 46 46 46 46 30 31 00 60 60 6e 6f 2d 6c 6c 67 72 60 60 | NO_EXPORT.0xFFFFFF01.``no-llgr`` |
| 15b460 | 20 2d 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 57 65 6c 6c 2d 6b 6e 6f | .-......................Well-kno |
| 15b480 | 77 6e 20 63 6f 6d 6d 75 6e 69 74 69 65 73 20 76 61 6c 75 65 20 4e 4f 5f 4c 4c 47 52 20 30 78 46 | wn.communities.value.NO_LLGR.0xF |
| 15b4a0 | 46 46 46 30 30 30 37 00 60 60 6e 6f 2d 70 65 65 72 60 60 20 2d 20 20 20 20 20 20 20 20 20 20 20 | FFF0007.``no-peer``.-........... |
| 15b4c0 | 20 20 20 20 20 20 20 20 20 20 20 57 65 6c 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d 75 6e 69 74 69 65 | ...........Well-known.communitie |
| 15b4e0 | 73 20 76 61 6c 75 65 20 4e 4f 50 45 45 52 20 30 78 46 46 46 46 46 46 30 34 00 60 60 6e 6f 60 60 | s.value.NOPEER.0xFFFFFF04.``no`` |
| 15b500 | 20 64 69 73 61 62 6c 65 20 72 65 6d 6f 74 65 20 68 6f 73 74 20 72 65 2d 61 75 74 68 65 6e 74 69 | .disable.remote.host.re-authenti |
| 15b520 | 63 61 74 6f 6e 20 64 75 72 69 6e 67 20 61 6e 20 49 4b 45 20 72 65 6b 65 79 3b 00 60 60 6e 6f 6e | caton.during.an.IKE.rekey;.``non |
| 15b540 | 65 60 60 20 2d 20 45 78 65 63 75 74 69 6f 6e 20 69 6e 74 65 72 76 61 6c 20 69 6e 20 6d 69 6e 75 | e``.-.Execution.interval.in.minu |
| 15b560 | 74 65 73 00 60 60 6e 6f 6e 65 60 60 20 2d 20 6c 6f 61 64 73 20 74 68 65 20 63 6f 6e 6e 65 63 74 | tes.``none``.-.loads.the.connect |
| 15b580 | 69 6f 6e 20 6f 6e 6c 79 2c 20 77 68 69 63 68 20 74 68 65 6e 20 63 61 6e 20 62 65 20 6d 61 6e 75 | ion.only,.which.then.can.be.manu |
| 15b5a0 | 61 6c 6c 79 20 69 6e 69 74 69 61 74 65 64 20 6f 72 20 75 73 65 64 20 61 73 20 61 20 72 65 73 70 | ally.initiated.or.used.as.a.resp |
| 15b5c0 | 6f 6e 64 65 72 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 60 60 6e 6f 6e 65 60 60 20 73 65 | onder.configuration..``none``.se |
| 15b5e0 | 74 20 61 63 74 69 6f 6e 20 74 6f 20 6e 6f 6e 65 20 28 64 65 66 61 75 6c 74 29 3b 00 60 60 6e 6f | t.action.to.none.(default);.``no |
| 15b600 | 73 65 6c 65 63 74 60 60 20 6d 61 72 6b 73 20 74 68 65 20 73 65 72 76 65 72 20 61 73 20 75 6e 75 | select``.marks.the.server.as.unu |
| 15b620 | 73 65 64 2c 20 65 78 63 65 70 74 20 66 6f 72 20 64 69 73 70 6c 61 79 20 70 75 72 70 6f 73 65 73 | sed,.except.for.display.purposes |
| 15b640 | 2e 20 54 68 65 20 73 65 72 76 65 72 20 69 73 20 64 69 73 63 61 72 64 65 64 20 62 79 20 74 68 65 | ..The.server.is.discarded.by.the |
| 15b660 | 20 73 65 6c 65 63 74 69 6f 6e 20 61 6c 67 6f 72 69 74 68 6d 2e 00 60 60 6e 6f 74 72 61 63 6b 60 | .selection.algorithm..``notrack` |
| 15b680 | 60 3a 20 69 67 6e 6f 72 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 73 79 | `:.ignore.connection.tracking.sy |
| 15b6a0 | 73 74 65 6d 2e 20 54 68 69 73 20 61 63 74 69 6f 6e 20 69 73 20 6f 6e 6c 79 20 61 76 61 69 6c 61 | stem..This.action.is.only.availa |
| 15b6c0 | 62 6c 65 20 69 6e 20 70 72 65 72 6f 75 74 69 6e 67 20 63 68 61 69 6e 2e 00 60 60 6e 74 73 60 60 | ble.in.prerouting.chain..``nts`` |
| 15b6e0 | 20 65 6e 61 62 6c 65 73 20 4e 65 74 77 6f 72 6b 20 54 69 6d 65 20 53 65 63 75 72 69 74 79 20 28 | .enables.Network.Time.Security.( |
| 15b700 | 4e 54 53 29 20 66 6f 72 20 74 68 65 20 73 65 72 76 65 72 20 61 73 20 73 70 65 63 69 66 69 65 64 | NTS).for.the.server.as.specified |
| 15b720 | 20 69 6e 20 3a 72 66 63 3a 60 38 39 31 35 60 00 60 60 6f 70 74 69 6f 6e 73 60 60 00 60 60 6f 73 | .in.:rfc:`8915`.``options``.``os |
| 15b740 | 70 66 60 60 20 2d 20 4f 70 65 6e 20 53 68 6f 72 74 65 73 74 20 50 61 74 68 20 46 69 72 73 74 20 | pf``.-.Open.Shortest.Path.First. |
| 15b760 | 28 4f 53 50 46 76 32 29 00 60 60 6f 73 70 66 76 33 60 60 20 2d 20 4f 70 65 6e 20 53 68 6f 72 74 | (OSPFv2).``ospfv3``.-.Open.Short |
| 15b780 | 65 73 74 20 50 61 74 68 20 46 69 72 73 74 20 28 49 50 76 36 29 20 28 4f 53 50 46 76 33 29 00 60 | est.Path.First.(IPv6).(OSPFv3).` |
| 15b7a0 | 60 6f 75 74 60 60 3a 20 52 75 6c 65 73 65 74 20 66 6f 72 20 66 6f 72 77 61 72 64 65 64 20 70 61 | `out``:.Ruleset.for.forwarded.pa |
| 15b7c0 | 63 6b 65 74 73 20 6f 6e 20 61 6e 20 6f 75 74 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 00 60 | ckets.on.an.outbound.interface.` |
| 15b7e0 | 60 70 61 73 73 69 76 65 60 60 20 54 68 65 20 64 72 69 76 65 72 20 61 6c 6c 6f 77 73 20 74 68 65 | `passive``.The.driver.allows.the |
| 15b800 | 20 73 79 73 74 65 6d 20 67 6f 76 65 72 6e 6f 72 20 74 6f 20 6d 61 6e 61 67 65 20 43 50 55 20 66 | .system.governor.to.manage.CPU.f |
| 15b820 | 72 65 71 75 65 6e 63 79 20 77 68 69 6c 65 20 70 72 6f 76 69 64 69 6e 67 20 61 76 61 69 6c 61 62 | requency.while.providing.availab |
| 15b840 | 6c 65 20 70 65 72 66 6f 72 6d 61 6e 63 65 20 73 74 61 74 65 73 2e 00 60 60 70 61 73 73 70 68 72 | le.performance.states..``passphr |
| 15b860 | 61 73 65 60 60 20 2d 20 6c 6f 63 61 6c 20 70 72 69 76 61 74 65 20 6b 65 79 20 70 61 73 73 70 68 | ase``.-.local.private.key.passph |
| 15b880 | 72 61 73 65 00 60 60 70 61 73 73 70 68 72 61 73 65 60 60 20 2d 20 70 72 69 76 61 74 65 20 6b 65 | rase.``passphrase``.-.private.ke |
| 15b8a0 | 79 20 70 61 73 73 70 68 72 61 73 65 2c 20 69 66 20 6e 65 65 64 65 64 2e 00 60 60 70 61 73 73 77 | y.passphrase,.if.needed..``passw |
| 15b8c0 | 6f 72 64 60 60 20 2d 20 70 61 73 73 70 68 72 61 73 65 20 70 72 69 76 61 74 65 20 6b 65 79 2c 20 | ord``.-.passphrase.private.key,. |
| 15b8e0 | 69 66 20 6e 65 65 64 65 64 2e 00 60 60 70 65 65 72 60 60 20 69 73 20 75 73 65 64 20 66 6f 72 20 | if.needed..``peer``.is.used.for. |
| 15b900 | 74 68 65 20 56 79 4f 53 20 43 4c 49 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 69 64 65 6e 74 69 66 79 | the.VyOS.CLI.command.to.identify |
| 15b920 | 20 74 68 65 20 57 69 72 65 47 75 61 72 64 20 70 65 65 72 20 77 68 65 72 65 20 74 68 69 73 20 73 | .the.WireGuard.peer.where.this.s |
| 15b940 | 65 63 72 65 64 20 69 73 20 74 6f 20 62 65 20 75 73 65 64 2e 00 60 60 70 65 65 72 60 60 20 69 73 | ecred.is.to.be.used..``peer``.is |
| 15b960 | 20 75 73 65 64 20 66 6f 72 20 74 68 65 20 56 79 4f 53 20 43 4c 49 20 63 6f 6d 6d 61 6e 64 20 74 | .used.for.the.VyOS.CLI.command.t |
| 15b980 | 6f 20 69 64 65 6e 74 69 66 79 20 74 68 65 20 57 69 72 65 47 75 61 72 64 20 70 65 65 72 20 77 68 | o.identify.the.WireGuard.peer.wh |
| 15b9a0 | 65 72 65 20 74 68 69 73 20 73 65 63 72 65 74 20 69 73 20 74 6f 20 62 65 20 75 73 65 64 2e 00 60 | ere.this.secret.is.to.be.used..` |
| 15b9c0 | 60 70 65 72 69 6f 64 60 60 3a 20 54 69 6d 65 20 77 69 6e 64 6f 77 20 66 6f 72 20 72 61 74 65 20 | `period``:.Time.window.for.rate. |
| 15b9e0 | 63 61 6c 63 75 6c 61 74 69 6f 6e 2e 20 50 6f 73 73 69 62 6c 65 20 76 61 6c 75 65 73 3a 20 60 60 | calculation..Possible.values:.`` |
| 15ba00 | 73 65 63 6f 6e 64 60 60 20 28 6f 6e 65 20 73 65 63 6f 6e 64 29 2c 20 60 60 6d 69 6e 75 74 65 60 | second``.(one.second),.``minute` |
| 15ba20 | 60 20 28 6f 6e 65 20 6d 69 6e 75 74 65 29 2c 20 60 60 68 6f 75 72 60 60 20 28 6f 6e 65 20 68 6f | `.(one.minute),.``hour``.(one.ho |
| 15ba40 | 75 72 29 2e 20 44 65 66 61 75 6c 74 20 69 73 20 60 60 73 65 63 6f 6e 64 60 60 2e 00 60 60 70 66 | ur)..Default.is.``second``..``pf |
| 15ba60 | 73 60 60 20 77 68 65 74 68 65 72 20 50 65 72 66 65 63 74 20 46 6f 72 77 61 72 64 20 53 65 63 72 | s``.whether.Perfect.Forward.Secr |
| 15ba80 | 65 63 79 20 6f 66 20 6b 65 79 73 20 69 73 20 64 65 73 69 72 65 64 20 6f 6e 20 74 68 65 20 63 6f | ecy.of.keys.is.desired.on.the.co |
| 15baa0 | 6e 6e 65 63 74 69 6f 6e 27 73 20 6b 65 79 69 6e 67 20 63 68 61 6e 6e 65 6c 20 61 6e 64 20 64 65 | nnection's.keying.channel.and.de |
| 15bac0 | 66 69 6e 65 73 20 61 20 44 69 66 66 69 65 2d 48 65 6c 6c 6d 61 6e 20 67 72 6f 75 70 20 66 6f 72 | fines.a.Diffie-Hellman.group.for |
| 15bae0 | 20 50 46 53 3a 00 60 60 70 67 73 71 6c 60 60 20 50 6f 73 74 67 72 65 53 51 4c 20 70 72 6f 74 6f | .PFS:.``pgsql``.PostgreSQL.proto |
| 15bb00 | 63 6f 6c 20 63 68 65 63 6b 2e 00 60 60 70 6f 6f 6c 60 60 20 6d 6f 62 69 6c 69 7a 65 73 20 70 65 | col.check..``pool``.mobilizes.pe |
| 15bb20 | 72 73 69 73 74 65 6e 74 20 63 6c 69 65 6e 74 20 6d 6f 64 65 20 61 73 73 6f 63 69 61 74 69 6f 6e | rsistent.client.mode.association |
| 15bb40 | 20 77 69 74 68 20 61 20 6e 75 6d 62 65 72 20 6f 66 20 72 65 6d 6f 74 65 20 73 65 72 76 65 72 73 | .with.a.number.of.remote.servers |
| 15bb60 | 2e 00 60 60 70 6f 72 74 60 60 20 20 50 6f 72 74 20 6e 75 6d 62 65 72 2e 00 60 60 70 6f 72 74 60 | ..``port``..Port.number..``port` |
| 15bb80 | 60 20 2d 20 64 65 66 69 6e 65 20 70 6f 72 74 2e 20 48 61 76 65 20 65 66 66 65 63 74 20 6f 6e 6c | `.-.define.port..Have.effect.onl |
| 15bba0 | 79 20 77 68 65 6e 20 75 73 65 64 20 74 6f 67 65 74 68 65 72 20 77 69 74 68 20 60 60 70 72 65 66 | y.when.used.together.with.``pref |
| 15bbc0 | 69 78 60 60 3b 00 60 60 70 72 65 2d 73 68 61 72 65 64 2d 73 65 63 72 65 74 60 60 20 2d 20 75 73 | ix``;.``pre-shared-secret``.-.us |
| 15bbe0 | 65 20 70 72 65 64 65 66 69 6e 65 64 20 73 68 61 72 65 64 20 73 65 63 72 65 74 20 70 68 72 61 73 | e.predefined.shared.secret.phras |
| 15bc00 | 65 3b 00 60 60 70 72 65 66 65 72 60 60 20 6d 61 72 6b 73 20 74 68 65 20 73 65 72 76 65 72 20 61 | e;.``prefer``.marks.the.server.a |
| 15bc20 | 73 20 70 72 65 66 65 72 72 65 64 2e 20 41 6c 6c 20 6f 74 68 65 72 20 74 68 69 6e 67 73 20 62 65 | s.preferred..All.other.things.be |
| 15bc40 | 69 6e 67 20 65 71 75 61 6c 2c 20 74 68 69 73 20 68 6f 73 74 20 77 69 6c 6c 20 62 65 20 63 68 6f | ing.equal,.this.host.will.be.cho |
| 15bc60 | 73 65 6e 20 66 6f 72 20 73 79 6e 63 68 72 6f 6e 69 7a 61 74 69 6f 6e 20 61 6d 6f 6e 67 20 61 20 | sen.for.synchronization.among.a. |
| 15bc80 | 73 65 74 20 6f 66 20 63 6f 72 72 65 63 74 6c 79 20 6f 70 65 72 61 74 69 6e 67 20 68 6f 73 74 73 | set.of.correctly.operating.hosts |
| 15bca0 | 2e 00 60 60 70 72 65 66 69 78 60 60 20 2d 20 49 50 20 6e 65 74 77 6f 72 6b 20 61 74 20 6c 6f 63 | ..``prefix``.-.IP.network.at.loc |
| 15bcc0 | 61 6c 20 73 69 64 65 2e 00 60 60 70 72 65 66 69 78 60 60 20 2d 20 49 50 20 6e 65 74 77 6f 72 6b | al.side..``prefix``.-.IP.network |
| 15bce0 | 20 61 74 20 72 65 6d 6f 74 65 20 73 69 64 65 2e 00 60 60 70 72 66 60 60 20 70 73 65 75 64 6f 2d | .at.remote.side..``prf``.pseudo- |
| 15bd00 | 72 61 6e 64 6f 6d 20 66 75 6e 63 74 69 6f 6e 2e 00 60 60 70 72 69 6f 72 69 74 79 60 60 20 2d 20 | random.function..``priority``.-. |
| 15bd20 | 41 64 64 20 70 72 69 6f 72 69 74 79 20 66 6f 72 20 70 6f 6c 69 63 79 2d 62 61 73 65 64 20 49 50 | Add.priority.for.policy-based.IP |
| 15bd40 | 53 65 63 20 56 50 4e 20 74 75 6e 6e 65 6c 73 28 6c 6f 77 65 73 74 20 76 61 6c 75 65 20 6d 6f 72 | Sec.VPN.tunnels(lowest.value.mor |
| 15bd60 | 65 20 70 72 65 66 65 72 61 62 6c 65 29 00 60 60 70 72 6f 63 65 73 73 6f 72 2e 6d 61 78 5f 63 73 | e.preferable).``processor.max_cs |
| 15bd80 | 74 61 74 65 3d 31 60 60 20 4c 69 6d 69 74 20 70 72 6f 63 65 73 73 6f 72 20 74 6f 20 6d 61 78 69 | tate=1``.Limit.processor.to.maxi |
| 15bda0 | 6d 75 6d 20 43 2d 73 74 61 74 65 20 31 00 60 60 70 72 6f 70 6f 73 61 6c 60 60 20 45 53 50 2d 67 | mum.C-state.1.``proposal``.ESP-g |
| 15bdc0 | 72 6f 75 70 20 70 72 6f 70 6f 73 61 6c 20 77 69 74 68 20 6e 75 6d 62 65 72 20 3c 31 2d 36 35 35 | roup.proposal.with.number.<1-655 |
| 15bde0 | 33 35 3e 3a 00 60 60 70 72 6f 70 6f 73 61 6c 60 60 20 74 68 65 20 6c 69 73 74 20 6f 66 20 70 72 | 35>:.``proposal``.the.list.of.pr |
| 15be00 | 6f 70 6f 73 61 6c 73 20 61 6e 64 20 74 68 65 69 72 20 70 61 72 61 6d 65 74 65 72 73 3a 00 60 60 | oposals.and.their.parameters:.`` |
| 15be20 | 70 72 6f 74 6f 63 6f 6c 60 60 20 2d 20 64 65 66 69 6e 65 20 74 68 65 20 70 72 6f 74 6f 63 6f 6c | protocol``.-.define.the.protocol |
| 15be40 | 20 66 6f 72 20 6d 61 74 63 68 20 74 72 61 66 66 69 63 2c 20 77 68 69 63 68 20 73 68 6f 75 6c 64 | .for.match.traffic,.which.should |
| 15be60 | 20 62 65 20 65 6e 63 72 79 70 74 65 64 20 61 6e 64 20 73 65 6e 64 20 74 6f 20 74 68 69 73 20 70 | .be.encrypted.and.send.to.this.p |
| 15be80 | 65 65 72 3b 00 60 60 70 73 6b 60 60 20 2d 20 50 72 65 73 68 61 72 65 64 20 73 65 63 72 65 74 20 | eer;.``psk``.-.Preshared.secret. |
| 15bea0 | 6b 65 79 20 6e 61 6d 65 3a 00 60 60 70 74 70 60 60 20 65 6e 61 62 6c 65 73 20 74 68 65 20 50 54 | key.name:.``ptp``.enables.the.PT |
| 15bec0 | 50 20 74 72 61 6e 73 70 6f 72 74 20 66 6f 72 20 74 68 69 73 20 73 65 72 76 65 72 20 28 73 65 65 | P.transport.for.this.server.(see |
| 15bee0 | 20 3a 72 65 66 3a 60 70 74 70 2d 74 72 61 6e 73 70 6f 72 74 60 29 2e 00 60 60 71 75 65 75 65 60 | .:ref:`ptp-transport`)..``queue` |
| 15bf00 | 60 3a 20 45 6e 71 75 65 75 65 20 70 61 63 6b 65 74 20 74 6f 20 75 73 65 72 73 70 61 63 65 2e 00 | `:.Enqueue.packet.to.userspace.. |
| 15bf20 | 60 60 72 61 74 65 60 60 3a 20 4e 75 6d 62 65 72 20 6f 66 20 70 61 63 6b 65 74 73 2e 20 44 65 66 | ``rate``:.Number.of.packets..Def |
| 15bf40 | 61 75 6c 74 20 35 2e 00 60 60 72 65 63 65 69 76 65 2d 66 69 6c 74 65 72 20 5b 61 6c 6c 7c 6e 74 | ault.5..``receive-filter.[all|nt |
| 15bf60 | 70 7c 70 74 70 7c 6e 6f 6e 65 5d 60 60 20 73 65 6c 65 63 74 73 20 74 68 65 20 72 65 63 65 69 76 | p|ptp|none]``.selects.the.receiv |
| 15bf80 | 65 20 66 69 6c 74 65 72 20 6d 6f 64 65 2c 20 77 68 69 63 68 20 63 6f 6e 74 72 6f 6c 73 20 77 68 | e.filter.mode,.which.controls.wh |
| 15bfa0 | 69 63 68 20 69 6e 62 6f 75 6e 64 20 70 61 63 6b 65 74 73 20 74 68 65 20 4e 49 43 20 61 70 70 6c | ich.inbound.packets.the.NIC.appl |
| 15bfc0 | 69 65 73 20 74 69 6d 65 73 74 61 6d 70 73 20 74 6f 2e 20 54 68 65 20 73 65 6c 65 63 74 65 64 20 | ies.timestamps.to..The.selected. |
| 15bfe0 | 6d 6f 64 65 20 6d 75 73 74 20 62 65 20 73 75 70 70 6f 72 74 65 64 20 62 79 20 74 68 65 20 4e 49 | mode.must.be.supported.by.the.NI |
| 15c000 | 43 2c 20 6f 72 20 74 69 6d 65 73 74 61 6d 70 69 6e 67 20 77 69 6c 6c 20 62 65 20 64 69 73 61 62 | C,.or.timestamping.will.be.disab |
| 15c020 | 6c 65 64 20 66 6f 72 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 2e 00 60 60 72 65 64 69 73 60 60 | led.for.the.interface..``redis`` |
| 15c040 | 20 52 65 64 69 73 20 70 72 6f 74 6f 63 6f 6c 20 63 68 65 63 6b 2e 00 60 60 72 65 6a 65 63 74 60 | .Redis.protocol.check..``reject` |
| 15c060 | 60 3a 20 72 65 6a 65 63 74 20 74 68 65 20 70 61 63 6b 65 74 2e 00 60 60 72 65 6d 6f 74 65 2d 61 | `:.reject.the.packet..``remote-a |
| 15c080 | 64 64 72 65 73 73 60 60 20 2d 20 72 65 6d 6f 74 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 72 20 | ddress``.-.remote.IP.address.or. |
| 15c0a0 | 68 6f 73 74 6e 61 6d 65 20 66 6f 72 20 49 50 53 65 63 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 20 49 | hostname.for.IPSec.connection..I |
| 15c0c0 | 50 76 34 20 6f 72 20 49 50 76 36 20 61 64 64 72 65 73 73 20 69 73 20 75 73 65 64 20 77 68 65 6e | Pv4.or.IPv6.address.is.used.when |
| 15c0e0 | 20 61 20 70 65 65 72 20 68 61 73 20 61 20 70 75 62 6c 69 63 20 73 74 61 74 69 63 20 49 50 20 61 | .a.peer.has.a.public.static.IP.a |
| 15c100 | 64 64 72 65 73 73 2e 20 48 6f 73 74 6e 61 6d 65 20 69 73 20 61 20 44 4e 53 20 6e 61 6d 65 20 77 | ddress..Hostname.is.a.DNS.name.w |
| 15c120 | 68 69 63 68 20 63 6f 75 6c 64 20 62 65 20 75 73 65 64 20 77 68 65 6e 20 61 20 70 65 65 72 20 68 | hich.could.be.used.when.a.peer.h |
| 15c140 | 61 73 20 61 20 70 75 62 6c 69 63 20 49 50 20 61 64 64 72 65 73 73 20 61 6e 64 20 44 4e 53 20 6e | as.a.public.IP.address.and.DNS.n |
| 15c160 | 61 6d 65 2c 20 62 75 74 20 61 6e 20 49 50 20 61 64 64 72 65 73 73 20 63 6f 75 6c 64 20 62 65 20 | ame,.but.an.IP.address.could.be. |
| 15c180 | 63 68 61 6e 67 65 64 20 66 72 6f 6d 20 74 69 6d 65 20 74 6f 20 74 69 6d 65 2e 00 60 60 72 65 6d | changed.from.time.to.time..``rem |
| 15c1a0 | 6f 74 65 2d 69 64 60 60 20 2d 20 64 65 66 69 6e 65 20 61 6e 20 49 44 20 66 6f 72 20 72 65 6d 6f | ote-id``.-.define.an.ID.for.remo |
| 15c1c0 | 74 65 20 70 65 65 72 2c 20 69 6e 73 74 65 61 64 20 6f 66 20 75 73 69 6e 67 20 70 65 65 72 20 6e | te.peer,.instead.of.using.peer.n |
| 15c1e0 | 61 6d 65 20 6f 72 20 61 64 64 72 65 73 73 2e 20 55 73 65 66 75 6c 20 69 6e 20 63 61 73 65 20 69 | ame.or.address..Useful.in.case.i |
| 15c200 | 66 20 74 68 65 20 72 65 6d 6f 74 65 20 70 65 65 72 20 69 73 20 62 65 68 69 6e 64 20 4e 41 54 20 | f.the.remote.peer.is.behind.NAT. |
| 15c220 | 6f 72 20 69 66 20 60 60 6d 6f 64 65 20 78 35 30 39 60 60 20 69 73 20 75 73 65 64 3b 00 60 60 72 | or.if.``mode.x509``.is.used;.``r |
| 15c240 | 65 6d 6f 74 65 2d 6b 65 79 60 60 20 2d 20 6e 61 6d 65 20 6f 66 20 50 4b 49 20 6b 65 79 2d 70 61 | emote-key``.-.name.of.PKI.key-pa |
| 15c260 | 69 72 20 77 69 74 68 20 72 65 6d 6f 74 65 20 70 75 62 6c 69 63 20 6b 65 79 00 60 60 72 65 6d 6f | ir.with.remote.public.key.``remo |
| 15c280 | 74 65 60 60 20 2d 20 64 65 66 69 6e 65 20 74 68 65 20 72 65 6d 6f 74 65 20 64 65 73 74 69 6e 61 | te``.-.define.the.remote.destina |
| 15c2a0 | 74 69 6f 6e 20 66 6f 72 20 6d 61 74 63 68 20 74 72 61 66 66 69 63 2c 20 77 68 69 63 68 20 73 68 | tion.for.match.traffic,.which.sh |
| 15c2c0 | 6f 75 6c 64 20 62 65 20 65 6e 63 72 79 70 74 65 64 20 61 6e 64 20 73 65 6e 64 20 74 6f 20 74 68 | ould.be.encrypted.and.send.to.th |
| 15c2e0 | 69 73 20 70 65 65 72 3a 00 60 60 72 65 70 6c 61 79 2d 77 69 6e 64 6f 77 60 60 20 2d 20 49 50 73 | is.peer:.``replay-window``.-.IPs |
| 15c300 | 65 63 20 72 65 70 6c 61 79 20 77 69 6e 64 6f 77 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 66 6f | ec.replay.window.to.configure.fo |
| 15c320 | 72 20 74 68 69 73 20 43 48 49 4c 44 5f 53 41 20 28 64 65 66 61 75 6c 74 3a 20 33 32 29 2c 20 61 | r.this.CHILD_SA.(default:.32),.a |
| 15c340 | 20 76 61 6c 75 65 20 6f 66 20 30 20 64 69 73 61 62 6c 65 73 20 49 50 73 65 63 20 72 65 70 6c 61 | .value.of.0.disables.IPsec.repla |
| 15c360 | 79 20 70 72 6f 74 65 63 74 69 6f 6e 00 60 60 72 65 71 2d 73 73 6c 2d 73 6e 69 60 60 20 53 53 4c | y.protection.``req-ssl-sni``.SSL |
| 15c380 | 20 53 65 72 76 65 72 20 4e 61 6d 65 20 49 6e 64 69 63 61 74 69 6f 6e 20 28 53 4e 49 29 20 72 65 | .Server.Name.Indication.(SNI).re |
| 15c3a0 | 71 75 65 73 74 20 6d 61 74 63 68 00 60 60 72 65 73 70 2d 74 69 6d 65 60 60 3a 20 74 68 65 20 6d | quest.match.``resp-time``:.the.m |
| 15c3c0 | 61 78 69 6d 75 6d 20 72 65 73 70 6f 6e 73 65 20 74 69 6d 65 20 66 6f 72 20 70 69 6e 67 20 69 6e | aximum.response.time.for.ping.in |
| 15c3e0 | 20 73 65 63 6f 6e 64 73 2e 20 52 61 6e 67 65 20 31 2e 2e 2e 33 30 2c 20 64 65 66 61 75 6c 74 20 | .seconds..Range.1...30,.default. |
| 15c400 | 35 00 60 60 72 65 73 70 6f 6e 64 60 60 20 2d 20 64 6f 65 73 20 6e 6f 74 20 74 72 79 20 74 6f 20 | 5.``respond``.-.does.not.try.to. |
| 15c420 | 69 6e 69 74 69 61 74 65 20 61 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 6f 20 61 20 72 65 6d 6f 74 | initiate.a.connection.to.a.remot |
| 15c440 | 65 20 70 65 65 72 2e 20 49 6e 20 74 68 69 73 20 6d 6f 64 65 2c 20 74 68 65 20 49 50 53 65 63 20 | e.peer..In.this.mode,.the.IPSec. |
| 15c460 | 73 65 73 73 69 6f 6e 20 77 69 6c 6c 20 62 65 20 65 73 74 61 62 6c 69 73 68 65 64 20 6f 6e 6c 79 | session.will.be.established.only |
| 15c480 | 20 61 66 74 65 72 20 69 6e 69 74 69 61 74 69 6f 6e 20 66 72 6f 6d 20 61 20 72 65 6d 6f 74 65 20 | .after.initiation.from.a.remote. |
| 15c4a0 | 70 65 65 72 2e 20 43 6f 75 6c 64 20 62 65 20 75 73 65 66 75 6c 20 77 68 65 6e 20 74 68 65 72 65 | peer..Could.be.useful.when.there |
| 15c4c0 | 20 69 73 20 6e 6f 20 64 69 72 65 63 74 20 63 6f 6e 6e 65 63 74 69 76 69 74 79 20 74 6f 20 74 68 | .is.no.direct.connectivity.to.th |
| 15c4e0 | 65 20 70 65 65 72 20 64 75 65 20 74 6f 20 66 69 72 65 77 61 6c 6c 20 6f 72 20 4e 41 54 20 69 6e | e.peer.due.to.firewall.or.NAT.in |
| 15c500 | 20 74 68 65 20 6d 69 64 64 6c 65 20 6f 66 20 74 68 65 20 6c 6f 63 61 6c 20 61 6e 64 20 72 65 6d | .the.middle.of.the.local.and.rem |
| 15c520 | 6f 74 65 20 73 69 64 65 2e 00 60 60 72 65 73 74 61 72 74 60 60 20 69 6d 6d 65 64 69 61 74 65 6c | ote.side..``restart``.immediatel |
| 15c540 | 79 20 74 72 69 65 73 20 74 6f 20 72 65 2d 6e 65 67 6f 74 69 61 74 65 20 74 68 65 20 43 48 49 4c | y.tries.to.re-negotiate.the.CHIL |
| 15c560 | 44 5f 53 41 20 75 6e 64 65 72 20 61 20 66 72 65 73 68 20 49 4b 45 5f 53 41 3b 00 60 60 72 65 73 | D_SA.under.a.fresh.IKE_SA;.``res |
| 15c580 | 74 61 72 74 60 60 20 73 65 74 20 61 63 74 69 6f 6e 20 74 6f 20 72 65 73 74 61 72 74 3b 00 60 60 | tart``.set.action.to.restart;.`` |
| 15c5a0 | 72 65 74 75 72 6e 60 60 3a 20 52 65 74 75 72 6e 20 66 72 6f 6d 20 74 68 65 20 63 75 72 72 65 6e | return``:.Return.from.the.curren |
| 15c5c0 | 74 20 63 68 61 69 6e 20 61 6e 64 20 63 6f 6e 74 69 6e 75 65 20 61 74 20 74 68 65 20 6e 65 78 74 | t.chain.and.continue.at.the.next |
| 15c5e0 | 20 72 75 6c 65 20 6f 66 20 74 68 65 20 6c 61 73 74 20 63 68 61 69 6e 2e 00 60 60 72 69 70 60 60 | .rule.of.the.last.chain..``rip`` |
| 15c600 | 20 2d 20 52 6f 75 74 69 6e 67 20 49 6e 66 6f 72 6d 61 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c 20 | .-.Routing.Information.Protocol. |
| 15c620 | 28 52 49 50 29 00 60 60 72 69 70 6e 67 60 60 20 2d 20 52 6f 75 74 69 6e 67 20 49 6e 66 6f 72 6d | (RIP).``ripng``.-.Routing.Inform |
| 15c640 | 61 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c 20 6e 65 78 74 2d 67 65 6e 65 72 61 74 69 6f 6e 20 28 | ation.Protocol.next-generation.( |
| 15c660 | 49 50 76 36 29 20 28 52 49 50 6e 67 29 00 60 60 72 6f 75 6e 64 2d 72 6f 62 69 6e 60 60 20 2d 20 | IPv6).(RIPng).``round-robin``.-. |
| 15c680 | 52 6f 75 6e 64 2d 72 6f 62 69 6e 20 70 6f 6c 69 63 79 3a 20 54 72 61 6e 73 6d 69 74 20 70 61 63 | Round-robin.policy:.Transmit.pac |
| 15c6a0 | 6b 65 74 73 20 69 6e 20 73 65 71 75 65 6e 74 69 61 6c 20 6f 72 64 65 72 20 66 72 6f 6d 20 74 68 | kets.in.sequential.order.from.th |
| 15c6c0 | 65 20 66 69 72 73 74 20 61 76 61 69 6c 61 62 6c 65 20 73 6c 61 76 65 20 74 68 72 6f 75 67 68 20 | e.first.available.slave.through. |
| 15c6e0 | 74 68 65 20 6c 61 73 74 2e 00 60 60 72 6f 75 6e 64 2d 72 6f 62 69 6e 60 60 20 44 69 73 74 72 69 | the.last..``round-robin``.Distri |
| 15c700 | 62 75 74 65 73 20 72 65 71 75 65 73 74 73 20 69 6e 20 61 20 63 69 72 63 75 6c 61 72 20 6d 61 6e | butes.requests.in.a.circular.man |
| 15c720 | 6e 65 72 2c 20 73 65 71 75 65 6e 74 69 61 6c 6c 79 20 73 65 6e 64 69 6e 67 20 65 61 63 68 20 72 | ner,.sequentially.sending.each.r |
| 15c740 | 65 71 75 65 73 74 20 74 6f 20 74 68 65 20 6e 65 78 74 20 73 65 72 76 65 72 20 69 6e 20 6c 69 6e | equest.to.the.next.server.in.lin |
| 15c760 | 65 00 60 60 72 6f 75 74 65 2d 66 69 6c 74 65 72 2d 74 72 61 6e 73 6c 61 74 65 64 2d 76 34 60 60 | e.``route-filter-translated-v4`` |
| 15c780 | 20 2d 20 20 20 57 65 6c 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d 75 6e 69 74 69 65 73 20 76 61 6c 75 | .-...Well-known.communities.valu |
| 15c7a0 | 65 20 52 4f 55 54 45 5f 46 49 4c 54 45 52 5f 54 52 41 4e 53 4c 41 54 45 44 5f 76 34 20 30 78 46 | e.ROUTE_FILTER_TRANSLATED_v4.0xF |
| 15c7c0 | 46 46 46 30 30 30 32 00 60 60 72 6f 75 74 65 2d 66 69 6c 74 65 72 2d 74 72 61 6e 73 6c 61 74 65 | FFF0002.``route-filter-translate |
| 15c7e0 | 64 2d 76 36 60 60 20 2d 20 20 20 57 65 6c 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d 75 6e 69 74 69 65 | d-v6``.-...Well-known.communitie |
| 15c800 | 73 20 76 61 6c 75 65 20 52 4f 55 54 45 5f 46 49 4c 54 45 52 5f 54 52 41 4e 53 4c 41 54 45 44 5f | s.value.ROUTE_FILTER_TRANSLATED_ |
| 15c820 | 76 36 20 30 78 46 46 46 46 30 30 30 34 00 60 60 72 6f 75 74 65 2d 66 69 6c 74 65 72 2d 76 34 60 | v6.0xFFFF0004.``route-filter-v4` |
| 15c840 | 60 20 2d 20 20 20 20 20 20 20 20 20 20 20 20 20 20 57 65 6c 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d | `.-..............Well-known.comm |
| 15c860 | 75 6e 69 74 69 65 73 20 76 61 6c 75 65 20 52 4f 55 54 45 5f 46 49 4c 54 45 52 5f 76 34 20 30 78 | unities.value.ROUTE_FILTER_v4.0x |
| 15c880 | 46 46 46 46 30 30 30 33 00 60 60 72 6f 75 74 65 2d 66 69 6c 74 65 72 2d 76 36 60 60 20 2d 20 20 | FFFF0003.``route-filter-v6``.-.. |
| 15c8a0 | 20 20 20 20 20 20 20 20 20 20 20 20 57 65 6c 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d 75 6e 69 74 69 | ............Well-known.communiti |
| 15c8c0 | 65 73 20 76 61 6c 75 65 20 52 4f 55 54 45 5f 46 49 4c 54 45 52 5f 76 36 20 30 78 46 46 46 46 30 | es.value.ROUTE_FILTER_v6.0xFFFF0 |
| 15c8e0 | 30 30 35 00 60 60 72 73 61 2d 6b 65 79 2d 6e 61 6d 65 60 60 20 2d 20 73 68 61 72 65 64 20 52 53 | 005.``rsa-key-name``.-.shared.RS |
| 15c900 | 41 20 6b 65 79 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2e 20 54 68 65 20 6b 65 | A.key.for.authentication..The.ke |
| 15c920 | 79 20 6d 75 73 74 20 62 65 20 64 65 66 69 6e 65 64 20 69 6e 20 74 68 65 20 60 60 73 65 74 20 76 | y.must.be.defined.in.the.``set.v |
| 15c940 | 70 6e 20 72 73 61 2d 6b 65 79 73 60 60 20 73 65 63 74 69 6f 6e 3b 00 60 60 72 73 61 60 60 20 2d | pn.rsa-keys``.section;.``rsa``.- |
| 15c960 | 20 6f 70 74 69 6f 6e 73 20 66 6f 72 20 52 53 41 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 | .options.for.RSA.authentication. |
| 15c980 | 6d 6f 64 65 3a 00 60 60 72 73 61 60 60 20 2d 20 75 73 65 20 73 69 6d 70 6c 65 20 73 68 61 72 65 | mode:.``rsa``.-.use.simple.share |
| 15c9a0 | 64 20 52 53 41 20 6b 65 79 2e 00 60 60 72 73 61 60 60 20 2d 20 75 73 65 20 73 69 6d 70 6c 65 20 | d.RSA.key..``rsa``.-.use.simple. |
| 15c9c0 | 73 68 61 72 65 64 20 52 53 41 20 6b 65 79 2e 20 54 68 65 20 6b 65 79 20 6d 75 73 74 20 62 65 20 | shared.RSA.key..The.key.must.be. |
| 15c9e0 | 64 65 66 69 6e 65 64 20 69 6e 20 74 68 65 20 60 60 73 65 74 20 76 70 6e 20 72 73 61 2d 6b 65 79 | defined.in.the.``set.vpn.rsa-key |
| 15ca00 | 73 60 60 20 73 65 63 74 69 6f 6e 3b 00 60 60 73 65 63 72 65 74 60 60 20 2d 20 70 72 65 64 65 66 | s``.section;.``secret``.-.predef |
| 15ca20 | 69 6e 65 64 20 73 68 61 72 65 64 20 73 65 63 72 65 74 2e 20 55 73 65 64 20 69 66 20 63 6f 6e 66 | ined.shared.secret..Used.if.conf |
| 15ca40 | 69 67 75 72 65 64 20 6d 6f 64 65 20 60 60 70 72 65 2d 73 68 61 72 65 64 2d 73 65 63 72 65 74 60 | igured.mode.``pre-shared-secret` |
| 15ca60 | 60 3b 00 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 62 72 69 64 67 65 20 66 6f 72 77 61 72 64 | `;.``set.firewall.bridge.forward |
| 15ca80 | 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2e 00 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 62 72 | .filter....``..``set.firewall.br |
| 15caa0 | 69 64 67 65 20 69 6e 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2e 00 60 60 73 65 74 20 66 | idge.input.filter....``..``set.f |
| 15cac0 | 69 72 65 77 61 6c 6c 20 62 72 69 64 67 65 20 6f 75 74 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e | irewall.bridge.output.filter.... |
| 15cae0 | 60 60 2e 00 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 62 72 69 64 67 65 20 70 72 65 72 6f 75 | ``..``set.firewall.bridge.prerou |
| 15cb00 | 74 69 6e 67 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2e 00 60 60 73 65 74 20 66 69 72 65 77 61 6c | ting.filter....``..``set.firewal |
| 15cb20 | 6c 20 69 70 76 34 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2e 00 60 60 73 | l.ipv4.forward.filter....``..``s |
| 15cb40 | 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 69 6e 70 75 74 20 66 69 6c 74 65 72 20 2e 2e | et.firewall.ipv4.input.filter... |
| 15cb60 | 2e 60 60 2e 00 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 6f 75 74 70 75 74 20 | .``..``set.firewall.ipv4.output. |
| 15cb80 | 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2e 00 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 | filter....``..``set.firewall.ipv |
| 15cba0 | 36 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2e 00 60 60 73 65 74 20 66 69 | 6.forward.filter....``..``set.fi |
| 15cbc0 | 72 65 77 61 6c 6c 20 69 70 76 36 20 69 6e 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2e 00 | rewall.ipv6.input.filter....``.. |
| 15cbe0 | 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 6f 75 74 70 75 74 20 66 69 6c 74 65 | ``set.firewall.ipv6.output.filte |
| 15cc00 | 72 20 2e 2e 2e 60 60 2e 00 60 60 73 69 6e 67 6c 65 2d 75 73 65 72 2d 62 65 61 6d 66 6f 72 6d 65 | r....``..``single-user-beamforme |
| 15cc20 | 65 60 60 20 2d 20 53 75 70 70 6f 72 74 20 66 6f 72 20 6f 70 65 72 61 74 69 6f 6e 20 61 73 20 73 | e``.-.Support.for.operation.as.s |
| 15cc40 | 69 6e 67 6c 65 20 75 73 65 72 20 62 65 61 6d 66 6f 72 6d 65 65 00 60 60 73 69 6e 67 6c 65 2d 75 | ingle.user.beamformee.``single-u |
| 15cc60 | 73 65 72 2d 62 65 61 6d 66 6f 72 6d 65 72 60 60 20 2d 20 53 75 70 70 6f 72 74 20 66 6f 72 20 6f | ser-beamformer``.-.Support.for.o |
| 15cc80 | 70 65 72 61 74 69 6f 6e 20 61 73 20 73 69 6e 67 6c 65 20 75 73 65 72 20 62 65 61 6d 66 6f 72 6d | peration.as.single.user.beamform |
| 15cca0 | 65 72 00 60 60 73 6d 74 70 60 60 20 53 4d 54 50 20 70 72 6f 74 6f 63 6f 6c 20 63 68 65 63 6b 2e | er.``smtp``.SMTP.protocol.check. |
| 15ccc0 | 00 60 60 73 6f 6e 6d 70 60 60 20 2d 20 4c 69 73 74 65 6e 20 66 6f 72 20 53 4f 4e 4d 50 20 66 6f | .``sonmp``.-.Listen.for.SONMP.fo |
| 15cce0 | 72 20 4e 6f 72 74 65 6c 20 72 6f 75 74 65 72 73 2f 73 77 69 74 63 68 65 73 00 60 60 73 6f 75 72 | r.Nortel.routers/switches.``sour |
| 15cd00 | 63 65 2d 61 64 64 72 65 73 73 60 60 20 44 69 73 74 72 69 62 75 74 65 73 20 72 65 71 75 65 73 74 | ce-address``.Distributes.request |
| 15cd20 | 73 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 73 6f 75 72 63 65 20 49 50 20 61 64 64 72 65 73 73 | s.based.on.the.source.IP.address |
| 15cd40 | 20 6f 66 20 74 68 65 20 63 6c 69 65 6e 74 00 60 60 73 73 68 2d 64 73 73 60 60 00 60 60 73 73 68 | .of.the.client.``ssh-dss``.``ssh |
| 15cd60 | 2d 65 64 32 35 35 31 39 60 60 00 60 60 73 73 68 2d 72 73 61 20 41 41 41 41 42 33 4e 7a 61 43 31 | -ed25519``.``ssh-rsa.AAAAB3NzaC1 |
| 15cd80 | 79 63 32 45 41 41 41 41 42 41 41 2e 2e 2e 56 42 44 35 6c 4b 77 45 57 42 20 75 73 65 72 6e 61 6d | yc2EAAAABAA...VBD5lKwEWB.usernam |
| 15cda0 | 65 40 68 6f 73 74 2e 65 78 61 6d 70 6c 65 2e 63 6f 6d 60 60 00 60 60 73 73 68 2d 72 73 61 60 60 | e@host.example.com``.``ssh-rsa`` |
| 15cdc0 | 00 60 60 73 73 6c 2d 66 63 2d 73 6e 69 2d 65 6e 64 60 60 20 53 53 4c 20 66 72 6f 6e 74 65 6e 64 | .``ssl-fc-sni-end``.SSL.frontend |
| 15cde0 | 20 6d 61 74 63 68 20 65 6e 64 20 6f 66 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 53 65 72 76 65 72 20 | .match.end.of.connection.Server. |
| 15ce00 | 4e 61 6d 65 00 60 60 73 73 6c 2d 66 63 2d 73 6e 69 60 60 20 53 53 4c 20 66 72 6f 6e 74 65 6e 64 | Name.``ssl-fc-sni``.SSL.frontend |
| 15ce20 | 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 53 65 72 76 65 72 20 4e 61 6d 65 20 49 6e 64 69 63 61 74 69 | .connection.Server.Name.Indicati |
| 15ce40 | 6f 6e 20 6d 61 74 63 68 00 60 60 73 74 61 72 74 60 60 20 74 72 69 65 73 20 74 6f 20 69 6d 6d 65 | on.match.``start``.tries.to.imme |
| 15ce60 | 64 69 61 74 65 6c 79 20 72 65 2d 63 72 65 61 74 65 20 74 68 65 20 43 48 49 4c 44 5f 53 41 3b 00 | diately.re-create.the.CHILD_SA;. |
| 15ce80 | 60 60 73 74 61 74 69 63 60 60 20 2d 20 53 74 61 74 69 63 61 6c 6c 79 20 63 6f 6e 66 69 67 75 72 | ``static``.-.Statically.configur |
| 15cea0 | 65 64 20 72 6f 75 74 65 73 00 60 60 73 74 61 74 69 6f 6e 60 60 20 2d 20 43 6f 6e 6e 65 63 74 73 | ed.routes.``station``.-.Connects |
| 15cec0 | 20 74 6f 20 61 6e 6f 74 68 65 72 20 61 63 63 65 73 73 20 70 6f 69 6e 74 00 60 60 73 74 61 74 75 | .to.another.access.point.``statu |
| 15cee0 | 73 20 32 30 30 2d 33 39 39 60 60 20 45 78 70 65 63 74 69 6e 67 20 61 20 6e 6f 6e 2d 66 61 69 6c | s.200-399``.Expecting.a.non-fail |
| 15cf00 | 75 72 65 20 72 65 73 70 6f 6e 73 65 20 63 6f 64 65 00 60 60 73 74 61 74 75 73 20 32 30 30 60 60 | ure.response.code.``status.200`` |
| 15cf20 | 20 45 78 70 65 63 74 69 6e 67 20 61 20 32 30 30 20 72 65 73 70 6f 6e 73 65 20 63 6f 64 65 00 60 | .Expecting.a.200.response.code.` |
| 15cf40 | 60 73 74 72 69 6e 67 20 73 75 63 63 65 73 73 60 60 20 45 78 70 65 63 74 69 6e 67 20 74 68 65 20 | `string.success``.Expecting.the. |
| 15cf60 | 73 74 72 69 6e 67 20 60 73 75 63 63 65 73 73 60 20 69 6e 20 74 68 65 20 72 65 73 70 6f 6e 73 65 | string.`success`.in.the.response |
| 15cf80 | 20 62 6f 64 79 00 60 60 73 79 6e 70 72 6f 78 79 60 60 3a 20 73 79 6e 70 72 6f 78 79 20 74 68 65 | .body.``synproxy``:.synproxy.the |
| 15cfa0 | 20 70 61 63 6b 65 74 2e 00 60 60 73 79 73 63 74 6c 60 60 20 69 73 20 75 73 65 64 20 74 6f 20 6d | .packet..``sysctl``.is.used.to.m |
| 15cfc0 | 6f 64 69 66 79 20 6b 65 72 6e 65 6c 20 70 61 72 61 6d 65 74 65 72 73 20 61 74 20 72 75 6e 74 69 | odify.kernel.parameters.at.runti |
| 15cfe0 | 6d 65 2e 20 20 54 68 65 20 70 61 72 61 6d 65 74 65 72 73 20 61 76 61 69 6c 61 62 6c 65 20 61 72 | me...The.parameters.available.ar |
| 15d000 | 65 20 74 68 6f 73 65 20 6c 69 73 74 65 64 20 75 6e 64 65 72 20 2f 70 72 6f 63 2f 73 79 73 2f 2e | e.those.listed.under./proc/sys/. |
| 15d020 | 00 60 60 74 61 62 6c 65 20 31 30 60 60 20 52 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 75 73 65 64 | .``table.10``.Routing.table.used |
| 15d040 | 20 66 6f 72 20 49 53 50 31 00 60 60 74 61 62 6c 65 20 31 30 60 60 20 52 6f 75 74 69 6e 67 20 74 | .for.ISP1.``table.10``.Routing.t |
| 15d060 | 61 62 6c 65 20 75 73 65 64 20 66 6f 72 20 56 4c 41 4e 20 31 30 20 28 31 39 32 2e 31 36 38 2e 31 | able.used.for.VLAN.10.(192.168.1 |
| 15d080 | 38 38 2e 30 2f 32 34 29 00 60 60 74 61 62 6c 65 20 31 31 60 60 20 52 6f 75 74 69 6e 67 20 74 61 | 88.0/24).``table.11``.Routing.ta |
| 15d0a0 | 62 6c 65 20 75 73 65 64 20 66 6f 72 20 49 53 50 32 00 60 60 74 61 62 6c 65 20 31 31 60 60 20 52 | ble.used.for.ISP2.``table.11``.R |
| 15d0c0 | 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 75 73 65 64 20 66 6f 72 20 56 4c 41 4e 20 31 31 20 28 31 | outing.table.used.for.VLAN.11.(1 |
| 15d0e0 | 39 32 2e 31 36 38 2e 31 38 39 2e 30 2f 32 34 29 00 60 60 74 61 62 6c 65 60 60 20 2d 20 4e 6f 6e | 92.168.189.0/24).``table``.-.Non |
| 15d100 | 2d 6d 61 69 6e 20 4b 65 72 6e 65 6c 20 52 6f 75 74 69 6e 67 20 54 61 62 6c 65 00 60 60 74 61 72 | -main.Kernel.Routing.Table.``tar |
| 15d120 | 67 65 74 60 60 3a 20 74 68 65 20 74 61 72 67 65 74 20 74 6f 20 62 65 20 73 65 6e 74 20 49 43 4d | get``:.the.target.to.be.sent.ICM |
| 15d140 | 50 20 70 61 63 6b 65 74 73 20 74 6f 2c 20 61 64 64 72 65 73 73 20 63 61 6e 20 62 65 20 61 6e 20 | P.packets.to,.address.can.be.an. |
| 15d160 | 49 50 76 34 20 61 64 64 72 65 73 73 20 6f 72 20 68 6f 73 74 6e 61 6d 65 00 60 60 74 65 73 74 2d | IPv4.address.or.hostname.``test- |
| 15d180 | 73 63 72 69 70 74 60 60 3a 20 41 20 75 73 65 72 20 64 65 66 69 6e 65 64 20 73 63 72 69 70 74 20 | script``:.A.user.defined.script. |
| 15d1a0 | 6d 75 73 74 20 72 65 74 75 72 6e 20 30 20 74 6f 20 62 65 20 63 6f 6e 73 69 64 65 72 65 64 20 73 | must.return.0.to.be.considered.s |
| 15d1c0 | 75 63 63 65 73 73 66 75 6c 20 61 6e 64 20 6e 6f 6e 2d 7a 65 72 6f 20 74 6f 20 66 61 69 6c 2e 20 | uccessful.and.non-zero.to.fail.. |
| 15d1e0 | 53 63 72 69 70 74 73 20 61 72 65 20 6c 6f 63 61 74 65 64 20 69 6e 20 2f 63 6f 6e 66 69 67 2f 73 | Scripts.are.located.in./config/s |
| 15d200 | 63 72 69 70 74 73 2c 20 66 6f 72 20 64 69 66 66 65 72 65 6e 74 20 6c 6f 63 61 74 69 6f 6e 73 20 | cripts,.for.different.locations. |
| 15d220 | 74 68 65 20 66 75 6c 6c 20 70 61 74 68 20 6e 65 65 64 73 20 74 6f 20 62 65 20 70 72 6f 76 69 64 | the.full.path.needs.to.be.provid |
| 15d240 | 65 64 00 60 60 74 68 72 65 73 68 6f 6c 64 60 60 3a 20 60 60 62 65 6c 6f 77 60 60 20 6f 72 20 60 | ed.``threshold``:.``below``.or.` |
| 15d260 | 60 61 62 6f 76 65 60 60 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 72 61 74 65 20 6c 69 6d 69 | `above``.the.specified.rate.limi |
| 15d280 | 74 2e 00 60 60 74 68 72 6f 75 67 68 70 75 74 60 60 3a 20 41 20 73 65 72 76 65 72 20 70 72 6f 66 | t..``throughput``:.A.server.prof |
| 15d2a0 | 69 6c 65 20 66 6f 63 75 73 65 64 20 6f 6e 20 69 6d 70 72 6f 76 69 6e 67 20 6e 65 74 77 6f 72 6b | ile.focused.on.improving.network |
| 15d2c0 | 20 74 68 72 6f 75 67 68 70 75 74 2e 20 54 68 69 73 20 70 72 6f 66 69 6c 65 20 66 61 76 6f 72 73 | .throughput..This.profile.favors |
| 15d2e0 | 20 70 65 72 66 6f 72 6d 61 6e 63 65 20 6f 76 65 72 20 70 6f 77 65 72 20 73 61 76 69 6e 67 73 20 | .performance.over.power.savings. |
| 15d300 | 62 79 20 73 65 74 74 69 6e 67 20 60 60 69 6e 74 65 6c 5f 70 73 74 61 74 65 60 60 20 61 6e 64 20 | by.setting.``intel_pstate``.and. |
| 15d320 | 60 60 6d 61 78 5f 70 65 72 66 5f 70 63 74 3d 31 30 30 60 60 20 61 6e 64 20 69 6e 63 72 65 61 73 | ``max_perf_pct=100``.and.increas |
| 15d340 | 69 6e 67 20 6b 65 72 6e 65 6c 20 6e 65 74 77 6f 72 6b 20 62 75 66 66 65 72 20 73 69 7a 65 73 2e | ing.kernel.network.buffer.sizes. |
| 15d360 | 00 60 60 74 69 6d 65 31 2e 76 79 6f 73 2e 6e 65 74 60 60 00 60 60 74 69 6d 65 32 2e 76 79 6f 73 | .``time1.vyos.net``.``time2.vyos |
| 15d380 | 2e 6e 65 74 60 60 00 60 60 74 69 6d 65 33 2e 76 79 6f 73 2e 6e 65 74 60 60 00 60 60 74 69 6d 65 | .net``.``time3.vyos.net``.``time |
| 15d3a0 | 6f 75 74 60 60 20 6b 65 65 70 2d 61 6c 69 76 65 20 74 69 6d 65 6f 75 74 20 69 6e 20 73 65 63 6f | out``.keep-alive.timeout.in.seco |
| 15d3c0 | 6e 64 73 20 3c 32 2d 38 36 34 30 30 3e 20 28 64 65 66 61 75 6c 74 20 31 32 30 29 20 49 4b 45 76 | nds.<2-86400>.(default.120).IKEv |
| 15d3e0 | 31 20 6f 6e 6c 79 00 60 60 74 6f 6b 65 6e 60 60 20 75 73 65 20 4a 57 54 20 74 6f 6b 65 6e 73 2e | 1.only.``token``.use.JWT.tokens. |
| 15d400 | 00 60 60 74 72 61 6e 73 6d 69 74 2d 6c 6f 61 64 2d 62 61 6c 61 6e 63 65 60 60 20 2d 20 41 64 61 | .``transmit-load-balance``.-.Ada |
| 15d420 | 70 74 69 76 65 20 74 72 61 6e 73 6d 69 74 20 6c 6f 61 64 20 62 61 6c 61 6e 63 69 6e 67 3a 20 63 | ptive.transmit.load.balancing:.c |
| 15d440 | 68 61 6e 6e 65 6c 20 62 6f 6e 64 69 6e 67 20 74 68 61 74 20 64 6f 65 73 20 6e 6f 74 20 72 65 71 | hannel.bonding.that.does.not.req |
| 15d460 | 75 69 72 65 20 61 6e 79 20 73 70 65 63 69 61 6c 20 73 77 69 74 63 68 20 73 75 70 70 6f 72 74 2e | uire.any.special.switch.support. |
| 15d480 | 00 60 60 74 72 61 6e 73 70 6f 72 74 60 60 20 74 72 61 6e 73 70 6f 72 74 20 6d 6f 64 65 3b 00 60 | .``transport``.transport.mode;.` |
| 15d4a0 | 60 74 72 61 70 60 60 20 20 69 6e 73 74 61 6c 6c 73 20 61 20 74 72 61 70 20 70 6f 6c 69 63 79 2c | `trap``..installs.a.trap.policy, |
| 15d4c0 | 20 77 68 69 63 68 20 77 69 6c 6c 20 63 61 74 63 68 20 6d 61 74 63 68 69 6e 67 20 74 72 61 66 66 | .which.will.catch.matching.traff |
| 15d4e0 | 69 63 20 61 6e 64 20 74 72 69 65 73 20 74 6f 20 72 65 2d 6e 65 67 6f 74 69 61 74 65 20 74 68 65 | ic.and.tries.to.re-negotiate.the |
| 15d500 | 20 74 75 6e 6e 65 6c 20 6f 6e 2d 64 65 6d 61 6e 64 3b 00 60 60 74 72 61 70 60 60 20 69 6e 73 74 | .tunnel.on-demand;.``trap``.inst |
| 15d520 | 61 6c 6c 73 20 61 20 74 72 61 70 20 70 6f 6c 69 63 79 20 66 6f 72 20 74 68 65 20 43 48 49 4c 44 | alls.a.trap.policy.for.the.CHILD |
| 15d540 | 5f 53 41 3b 00 60 60 74 74 6c 2d 6c 69 6d 69 74 60 60 3a 20 46 6f 72 20 74 68 65 20 55 44 50 20 | _SA;.``ttl-limit``:.For.the.UDP. |
| 15d560 | 54 54 4c 20 6c 69 6d 69 74 20 74 65 73 74 20 74 68 65 20 68 6f 70 20 63 6f 75 6e 74 20 6c 69 6d | TTL.limit.test.the.hop.count.lim |
| 15d580 | 69 74 20 6d 75 73 74 20 62 65 20 73 70 65 63 69 66 69 65 64 2e 20 54 68 65 20 6c 69 6d 69 74 20 | it.must.be.specified..The.limit. |
| 15d5a0 | 6d 75 73 74 20 62 65 20 73 68 6f 72 74 65 72 20 74 68 61 6e 20 74 68 65 20 70 61 74 68 20 6c 65 | must.be.shorter.than.the.path.le |
| 15d5c0 | 6e 67 74 68 2c 20 61 6e 20 49 43 4d 50 20 74 69 6d 65 20 65 78 70 69 72 65 64 20 6d 65 73 73 61 | ngth,.an.ICMP.time.expired.messa |
| 15d5e0 | 67 65 20 69 73 20 6e 65 65 64 65 64 20 74 6f 20 62 65 20 72 65 74 75 72 6e 65 64 20 66 6f 72 20 | ge.is.needed.to.be.returned.for. |
| 15d600 | 61 20 73 75 63 63 65 73 73 66 75 6c 20 74 65 73 74 2e 20 64 65 66 61 75 6c 74 20 31 00 60 60 74 | a.successful.test..default.1.``t |
| 15d620 | 74 79 53 4e 60 60 20 2d 20 53 65 72 69 61 6c 20 64 65 76 69 63 65 20 6e 61 6d 65 00 60 60 74 74 | tySN``.-.Serial.device.name.``tt |
| 15d640 | 79 55 53 42 58 60 60 20 2d 20 55 53 42 20 53 65 72 69 61 6c 20 64 65 76 69 63 65 20 6e 61 6d 65 | yUSBX``.-.USB.Serial.device.name |
| 15d660 | 00 60 60 74 75 6e 6e 65 6c 60 60 20 2d 20 64 65 66 69 6e 65 20 63 72 69 74 65 72 69 61 20 66 6f | .``tunnel``.-.define.criteria.fo |
| 15d680 | 72 20 74 72 61 66 66 69 63 20 74 6f 20 62 65 20 6d 61 74 63 68 65 64 20 66 6f 72 20 65 6e 63 72 | r.traffic.to.be.matched.for.encr |
| 15d6a0 | 79 70 74 69 6e 67 20 61 6e 64 20 73 65 6e 64 20 69 74 20 74 6f 20 61 20 70 65 65 72 3a 00 60 60 | ypting.and.send.it.to.a.peer:.`` |
| 15d6c0 | 74 75 6e 6e 65 6c 60 60 20 74 75 6e 6e 65 6c 20 6d 6f 64 65 20 28 64 65 66 61 75 6c 74 29 3b 00 | tunnel``.tunnel.mode.(default);. |
| 15d6e0 | 60 60 74 79 70 65 60 60 20 20 4c 6f 67 20 74 79 70 65 73 2e 00 60 60 74 79 70 65 60 60 3a 20 53 | ``type``..Log.types..``type``:.S |
| 15d700 | 70 65 63 69 66 79 20 74 68 65 20 74 79 70 65 20 6f 66 20 74 65 73 74 2e 20 74 79 70 65 20 63 61 | pecify.the.type.of.test..type.ca |
| 15d720 | 6e 20 62 65 20 70 69 6e 67 2c 20 74 74 6c 20 6f 72 20 61 20 75 73 65 72 20 64 65 66 69 6e 65 64 | n.be.ping,.ttl.or.a.user.defined |
| 15d740 | 20 73 63 72 69 70 74 00 60 60 75 73 65 2d 78 35 30 39 2d 69 64 60 60 20 2d 20 75 73 65 20 6c 6f | .script.``use-x509-id``.-.use.lo |
| 15d760 | 63 61 6c 20 49 44 20 66 72 6f 6d 20 78 35 30 39 20 63 65 72 74 69 66 69 63 61 74 65 2e 20 43 61 | cal.ID.from.x509.certificate..Ca |
| 15d780 | 6e 6e 6f 74 20 62 65 20 75 73 65 64 20 77 68 65 6e 20 60 60 69 64 60 60 20 69 73 20 64 65 66 69 | nnot.be.used.when.``id``.is.defi |
| 15d7a0 | 6e 65 64 3b 00 60 60 76 69 72 74 75 61 6c 2d 61 64 64 72 65 73 73 60 60 20 2d 20 44 65 66 69 6e | ned;.``virtual-address``.-.Defin |
| 15d7c0 | 65 73 20 61 20 76 69 72 74 75 61 6c 20 49 50 20 61 64 64 72 65 73 73 20 77 68 69 63 68 20 69 73 | es.a.virtual.IP.address.which.is |
| 15d7e0 | 20 72 65 71 75 65 73 74 65 64 20 62 79 20 74 68 65 20 69 6e 69 74 69 61 74 6f 72 20 61 6e 64 20 | .requested.by.the.initiator.and. |
| 15d800 | 6f 6e 65 20 6f 72 20 73 65 76 65 72 61 6c 20 49 50 76 34 20 61 6e 64 2f 6f 72 20 49 50 76 36 20 | one.or.several.IPv4.and/or.IPv6. |
| 15d820 | 61 64 64 72 65 73 73 65 73 20 61 72 65 20 61 73 73 69 67 6e 65 64 20 66 72 6f 6d 20 6d 75 6c 74 | addresses.are.assigned.from.mult |
| 15d840 | 69 70 6c 65 20 70 6f 6f 6c 73 20 62 79 20 74 68 65 20 72 65 73 70 6f 6e 64 65 72 2e 00 60 60 76 | iple.pools.by.the.responder..``v |
| 15d860 | 69 72 74 75 61 6c 2d 69 70 60 60 20 41 6c 6c 6f 77 20 69 6e 73 74 61 6c 6c 20 76 69 72 74 75 61 | irtual-ip``.Allow.install.virtua |
| 15d880 | 6c 2d 69 70 20 61 64 64 72 65 73 73 65 73 2e 20 43 6f 6d 6d 61 20 73 65 70 61 72 61 74 65 64 20 | l-ip.addresses..Comma.separated. |
| 15d8a0 | 6c 69 73 74 20 6f 66 20 76 69 72 74 75 61 6c 20 49 50 73 20 74 6f 20 72 65 71 75 65 73 74 20 69 | list.of.virtual.IPs.to.request.i |
| 15d8c0 | 6e 20 49 4b 45 76 32 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 70 61 79 6c 6f 61 64 73 20 6f | n.IKEv2.configuration.payloads.o |
| 15d8e0 | 72 20 49 4b 45 76 31 20 4d 6f 64 65 20 43 6f 6e 66 69 67 2e 20 54 68 65 20 77 69 6c 64 63 61 72 | r.IKEv1.Mode.Config..The.wildcar |
| 15d900 | 64 20 61 64 64 72 65 73 73 65 73 20 30 2e 30 2e 30 2e 30 20 61 6e 64 20 3a 3a 20 72 65 71 75 65 | d.addresses.0.0.0.0.and.::.reque |
| 15d920 | 73 74 20 61 6e 20 61 72 62 69 74 72 61 72 79 20 61 64 64 72 65 73 73 2c 20 73 70 65 63 69 66 69 | st.an.arbitrary.address,.specifi |
| 15d940 | 63 20 61 64 64 72 65 73 73 65 73 20 6d 61 79 20 62 65 20 64 65 66 69 6e 65 64 2e 20 54 68 65 20 | c.addresses.may.be.defined..The. |
| 15d960 | 72 65 73 70 6f 6e 64 65 72 20 6d 61 79 20 72 65 74 75 72 6e 20 61 20 64 69 66 66 65 72 65 6e 74 | responder.may.return.a.different |
| 15d980 | 20 61 64 64 72 65 73 73 2c 20 74 68 6f 75 67 68 2c 20 6f 72 20 6e 6f 6e 65 20 61 74 20 61 6c 6c | .address,.though,.or.none.at.all |
| 15d9a0 | 2e 00 60 60 76 69 72 74 75 61 6c 2d 69 70 60 60 20 41 6c 6c 6f 77 73 20 74 68 65 20 69 6e 73 74 | ..``virtual-ip``.Allows.the.inst |
| 15d9c0 | 61 6c 6c 61 74 69 6f 6e 20 6f 66 20 76 69 72 74 75 61 6c 2d 69 70 20 61 64 64 72 65 73 73 65 73 | allation.of.virtual-ip.addresses |
| 15d9e0 | 2e 20 41 20 63 6f 6d 6d 61 00 60 60 76 69 72 74 75 61 6c 2d 69 70 60 60 20 41 6c 6c 6f 77 73 20 | ..A.comma.``virtual-ip``.Allows. |
| 15da00 | 74 6f 20 69 6e 73 74 61 6c 6c 20 76 69 72 74 75 61 6c 2d 69 70 20 61 64 64 72 65 73 73 65 73 2e | to.install.virtual-ip.addresses. |
| 15da20 | 20 43 6f 6d 6d 61 20 73 65 70 61 72 61 74 65 64 20 6c 69 73 74 20 6f 66 20 76 69 72 74 75 61 6c | .Comma.separated.list.of.virtual |
| 15da40 | 20 49 50 73 20 74 6f 20 72 65 71 75 65 73 74 20 69 6e 20 49 4b 45 76 32 20 63 6f 6e 66 69 67 75 | .IPs.to.request.in.IKEv2.configu |
| 15da60 | 72 61 74 69 6f 6e 20 70 61 79 6c 6f 61 64 73 20 6f 72 20 49 4b 45 76 31 20 4d 6f 64 65 20 43 6f | ration.payloads.or.IKEv1.Mode.Co |
| 15da80 | 6e 66 69 67 2e 20 54 68 65 20 77 69 6c 64 63 61 72 64 20 61 64 64 72 65 73 73 65 73 20 30 2e 30 | nfig..The.wildcard.addresses.0.0 |
| 15daa0 | 2e 30 2e 30 20 61 6e 64 20 3a 3a 20 72 65 71 75 65 73 74 20 61 6e 20 61 72 62 69 74 72 61 72 79 | .0.0.and.::.request.an.arbitrary |
| 15dac0 | 20 61 64 64 72 65 73 73 2c 20 73 70 65 63 69 66 69 63 20 61 64 64 72 65 73 73 65 73 20 6d 61 79 | .address,.specific.addresses.may |
| 15dae0 | 20 62 65 20 64 65 66 69 6e 65 64 2e 20 54 68 65 20 72 65 73 70 6f 6e 64 65 72 20 6d 61 79 20 72 | .be.defined..The.responder.may.r |
| 15db00 | 65 74 75 72 6e 20 61 20 64 69 66 66 65 72 65 6e 74 20 61 64 64 72 65 73 73 2c 20 74 68 6f 75 67 | eturn.a.different.address,.thoug |
| 15db20 | 68 2c 20 6f 72 20 6e 6f 6e 65 20 61 74 20 61 6c 6c 2e 20 44 65 66 69 6e 65 20 74 68 65 20 60 60 | h,.or.none.at.all..Define.the.`` |
| 15db40 | 76 69 72 74 75 61 6c 2d 61 64 64 72 65 73 73 60 60 20 6f 70 74 69 6f 6e 20 74 6f 20 63 6f 6e 66 | virtual-address``.option.to.conf |
| 15db60 | 69 67 75 72 65 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 69 6e 20 73 69 74 65 2d 74 6f 2d | igure.the.IP.address.in.site-to- |
| 15db80 | 73 69 74 65 20 68 69 65 72 61 72 63 68 79 2e 00 60 60 76 6e 63 60 60 20 2d 20 56 69 72 74 75 61 | site.hierarchy..``vnc``.-.Virtua |
| 15dba0 | 6c 20 4e 65 74 77 6f 72 6b 20 43 6f 6e 74 72 6f 6c 20 28 56 4e 43 29 00 60 60 76 74 69 60 60 20 | l.Network.Control.(VNC).``vti``. |
| 15dbc0 | 2d 20 75 73 65 20 61 20 56 54 49 20 69 6e 74 65 72 66 61 63 65 20 66 6f 72 20 74 72 61 66 66 69 | -.use.a.VTI.interface.for.traffi |
| 15dbe0 | 63 20 65 6e 63 72 79 70 74 69 6f 6e 2e 20 41 6e 79 20 74 72 61 66 66 69 63 2c 20 77 68 69 63 68 | c.encryption..Any.traffic,.which |
| 15dc00 | 20 77 69 6c 6c 20 62 65 20 73 65 6e 64 20 74 6f 20 56 54 49 20 69 6e 74 65 72 66 61 63 65 20 77 | .will.be.send.to.VTI.interface.w |
| 15dc20 | 69 6c 6c 20 62 65 20 65 6e 63 72 79 70 74 65 64 20 61 6e 64 20 73 65 6e 64 20 74 6f 20 74 68 69 | ill.be.encrypted.and.send.to.thi |
| 15dc40 | 73 20 70 65 65 72 2e 20 55 73 69 6e 67 20 56 54 49 20 6d 61 6b 65 73 20 49 50 53 65 63 20 63 6f | s.peer..Using.VTI.makes.IPSec.co |
| 15dc60 | 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d 75 63 68 20 66 6c 65 78 69 62 6c 65 20 61 6e 64 20 65 61 | nfiguration.much.flexible.and.ea |
| 15dc80 | 73 69 65 72 20 69 6e 20 63 6f 6d 70 6c 65 78 20 73 69 74 75 61 74 69 6f 6e 2c 20 61 6e 64 20 61 | sier.in.complex.situation,.and.a |
| 15dca0 | 6c 6c 6f 77 73 20 74 6f 20 64 79 6e 61 6d 69 63 61 6c 6c 79 20 61 64 64 2f 64 65 6c 65 74 65 20 | llows.to.dynamically.add/delete. |
| 15dcc0 | 72 65 6d 6f 74 65 20 6e 65 74 77 6f 72 6b 73 2c 20 72 65 61 63 68 61 62 6c 65 20 76 69 61 20 61 | remote.networks,.reachable.via.a |
| 15dce0 | 20 70 65 65 72 2c 20 61 73 20 69 6e 20 74 68 69 73 20 6d 6f 64 65 20 72 6f 75 74 65 72 20 64 6f | .peer,.as.in.this.mode.router.do |
| 15dd00 | 6e 27 74 20 6e 65 65 64 20 74 6f 20 63 72 65 61 74 65 20 61 64 64 69 74 69 6f 6e 61 6c 20 53 41 | n't.need.to.create.additional.SA |
| 15dd20 | 2f 70 6f 6c 69 63 79 20 66 6f 72 20 65 61 63 68 20 72 65 6d 6f 74 65 20 6e 65 74 77 6f 72 6b 3a | /policy.for.each.remote.network: |
| 15dd40 | 00 60 60 76 79 6f 73 5f 63 65 72 74 60 60 20 69 73 20 61 20 6c 65 61 66 20 73 65 72 76 65 72 20 | .``vyos_cert``.is.a.leaf.server. |
| 15dd60 | 63 65 72 74 69 66 69 63 61 74 65 20 75 73 65 64 20 74 6f 20 69 64 65 6e 74 69 66 79 20 74 68 65 | certificate.used.to.identify.the |
| 15dd80 | 20 56 79 4f 53 20 72 6f 75 74 65 72 2c 20 73 69 67 6e 65 64 20 62 79 20 74 68 65 20 73 65 72 76 | .VyOS.router,.signed.by.the.serv |
| 15dda0 | 65 72 20 69 6e 74 65 72 6d 65 64 69 61 72 79 20 43 41 2e 00 60 60 76 79 6f 73 5f 63 6c 69 65 6e | er.intermediary.CA..``vyos_clien |
| 15ddc0 | 74 5f 63 61 60 60 20 61 6e 64 20 60 60 76 79 6f 73 5f 73 65 72 76 65 72 5f 63 61 60 60 20 61 72 | t_ca``.and.``vyos_server_ca``.ar |
| 15dde0 | 65 20 69 6e 74 65 72 6d 65 64 69 61 72 79 20 63 65 72 74 69 66 69 63 61 74 65 20 61 75 74 68 6f | e.intermediary.certificate.autho |
| 15de00 | 72 69 74 69 65 73 2c 20 77 68 69 63 68 20 61 72 65 20 73 69 67 6e 65 64 20 62 79 20 74 68 65 20 | rities,.which.are.signed.by.the. |
| 15de20 | 72 6f 6f 74 20 43 41 2e 00 60 60 76 79 6f 73 5f 65 78 61 6d 70 6c 65 5f 75 73 65 72 60 60 20 69 | root.CA..``vyos_example_user``.i |
| 15de40 | 73 20 61 20 6c 65 61 66 20 63 6c 69 65 6e 74 20 63 65 72 74 69 66 69 63 61 74 65 20 75 73 65 64 | s.a.leaf.client.certificate.used |
| 15de60 | 20 74 6f 20 69 64 65 6e 74 69 66 79 20 61 20 75 73 65 72 2c 20 73 69 67 6e 65 64 20 62 79 20 63 | .to.identify.a.user,.signed.by.c |
| 15de80 | 6c 69 65 6e 74 20 69 6e 74 65 72 6d 65 64 69 61 72 79 20 43 41 2e 00 60 60 76 79 6f 73 5f 72 6f | lient.intermediary.CA..``vyos_ro |
| 15dea0 | 6f 74 5f 63 61 60 60 20 69 73 20 74 68 65 20 72 6f 6f 74 20 63 65 72 74 69 66 69 63 61 74 65 20 | ot_ca``.is.the.root.certificate. |
| 15dec0 | 61 75 74 68 6f 72 69 74 79 2e 00 60 60 78 35 30 39 60 60 20 2d 20 6f 70 74 69 6f 6e 73 20 66 6f | authority..``x509``.-.options.fo |
| 15dee0 | 72 20 78 35 30 39 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6d 6f 64 65 3a 00 60 60 78 35 | r.x509.authentication.mode:.``x5 |
| 15df00 | 30 39 60 60 20 2d 20 75 73 65 20 63 65 72 74 69 66 69 63 61 74 65 73 20 69 6e 66 72 61 73 74 72 | 09``.-.use.certificates.infrastr |
| 15df20 | 75 63 74 75 72 65 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2e 00 60 60 78 6f 72 | ucture.for.authentication..``xor |
| 15df40 | 2d 68 61 73 68 60 60 20 2d 20 58 4f 52 20 70 6f 6c 69 63 79 3a 20 54 72 61 6e 73 6d 69 74 20 62 | -hash``.-.XOR.policy:.Transmit.b |
| 15df60 | 61 73 65 64 20 6f 6e 20 74 68 65 20 73 65 6c 65 63 74 65 64 20 74 72 61 6e 73 6d 69 74 20 68 61 | ased.on.the.selected.transmit.ha |
| 15df80 | 73 68 20 70 6f 6c 69 63 79 2e 20 20 54 68 65 20 64 65 66 61 75 6c 74 20 70 6f 6c 69 63 79 20 69 | sh.policy...The.default.policy.i |
| 15dfa0 | 73 20 61 20 73 69 6d 70 6c 65 20 5b 28 73 6f 75 72 63 65 20 4d 41 43 20 61 64 64 72 65 73 73 20 | s.a.simple.[(source.MAC.address. |
| 15dfc0 | 58 4f 52 27 64 20 77 69 74 68 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 4d 41 43 20 61 64 64 72 65 | XOR'd.with.destination.MAC.addre |
| 15dfe0 | 73 73 20 58 4f 52 20 70 61 63 6b 65 74 20 74 79 70 65 20 49 44 29 20 6d 6f 64 75 6c 6f 20 73 6c | ss.XOR.packet.type.ID).modulo.sl |
| 15e000 | 61 76 65 20 63 6f 75 6e 74 5d 2e 20 41 6c 74 65 72 6e 61 74 65 20 74 72 61 6e 73 6d 69 74 20 70 | ave.count]..Alternate.transmit.p |
| 15e020 | 6f 6c 69 63 69 65 73 20 6d 61 79 20 62 65 20 73 65 6c 65 63 74 65 64 20 76 69 61 20 74 68 65 20 | olicies.may.be.selected.via.the. |
| 15e040 | 3a 63 66 67 63 6d 64 3a 60 68 61 73 68 2d 70 6f 6c 69 63 79 60 20 6f 70 74 69 6f 6e 2c 20 64 65 | :cfgcmd:`hash-policy`.option,.de |
| 15e060 | 73 63 72 69 62 65 64 20 62 65 6c 6f 77 2e 00 60 60 79 65 73 60 60 20 65 6e 61 62 6c 65 20 72 65 | scribed.below..``yes``.enable.re |
| 15e080 | 6d 6f 74 65 20 68 6f 73 74 20 72 65 2d 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 64 75 72 69 | mote.host.re-authentication.duri |
| 15e0a0 | 6e 67 20 61 6e 20 49 4b 45 20 72 65 6b 65 79 3b 00 60 61 6c 6c 60 3a 20 41 6c 6c 20 72 65 63 65 | ng.an.IKE.rekey;.`all`:.All.rece |
| 15e0c0 | 69 76 65 64 20 70 61 63 6b 65 74 73 20 77 69 6c 6c 20 62 65 20 74 69 6d 65 73 74 61 6d 70 65 64 | ived.packets.will.be.timestamped |
| 15e0e0 | 2e 00 60 69 67 6e 6f 72 65 60 3a 20 4e 6f 20 63 6f 72 72 65 63 74 69 6f 6e 20 69 73 20 61 70 70 | ..`ignore`:.No.correction.is.app |
| 15e100 | 6c 69 65 64 20 74 6f 20 74 68 65 20 63 6c 6f 63 6b 20 66 6f 72 20 74 68 65 20 6c 65 61 70 20 73 | lied.to.the.clock.for.the.leap.s |
| 15e120 | 65 63 6f 6e 64 2e 20 54 68 65 20 63 6c 6f 63 6b 20 77 69 6c 6c 20 62 65 20 63 6f 72 72 65 63 74 | econd..The.clock.will.be.correct |
| 15e140 | 65 64 20 6c 61 74 65 72 20 69 6e 20 6e 6f 72 6d 61 6c 20 6f 70 65 72 61 74 69 6f 6e 20 77 68 65 | ed.later.in.normal.operation.whe |
| 15e160 | 6e 20 6e 65 77 20 6d 65 61 73 75 72 65 6d 65 6e 74 73 20 61 72 65 20 6d 61 64 65 20 61 6e 64 20 | n.new.measurements.are.made.and. |
| 15e180 | 74 68 65 20 65 73 74 69 6d 61 74 65 64 20 6f 66 66 73 65 74 20 69 6e 63 6c 75 64 65 73 20 74 68 | the.estimated.offset.includes.th |
| 15e1a0 | 65 20 6f 6e 65 20 73 65 63 6f 6e 64 20 65 72 72 6f 72 2e 00 60 6e 6f 6e 65 60 3a 20 4e 6f 20 72 | e.one.second.error..`none`:.No.r |
| 15e1c0 | 65 63 65 69 76 65 64 20 70 61 63 6b 65 74 73 20 77 69 6c 6c 20 62 65 20 74 69 6d 65 73 74 61 6d | eceived.packets.will.be.timestam |
| 15e1e0 | 70 65 64 2e 20 48 61 72 64 77 61 72 65 20 74 69 6d 65 73 74 61 6d 70 69 6e 67 20 6f 66 20 74 72 | ped..Hardware.timestamping.of.tr |
| 15e200 | 61 6e 73 6d 69 74 74 65 64 20 70 61 63 6b 65 74 73 20 77 69 6c 6c 20 73 74 69 6c 6c 20 62 65 20 | ansmitted.packets.will.still.be. |
| 15e220 | 6c 65 76 65 72 61 67 65 64 2c 20 69 66 20 73 75 70 70 6f 72 74 65 64 20 62 79 20 74 68 65 20 4e | leveraged,.if.supported.by.the.N |
| 15e240 | 49 43 2e 00 60 6e 74 70 60 3a 20 4f 6e 6c 79 20 72 65 63 65 69 76 65 64 20 20 4e 54 50 20 70 72 | IC..`ntp`:.Only.received..NTP.pr |
| 15e260 | 6f 74 6f 63 6f 6c 20 70 61 63 6b 65 74 73 20 77 69 6c 6c 20 62 65 20 74 69 6d 65 73 74 61 6d 70 | otocol.packets.will.be.timestamp |
| 15e280 | 65 64 2e 00 60 70 74 70 60 3a 20 4f 6e 6c 79 20 72 65 63 65 69 76 65 64 20 50 54 50 20 70 72 6f | ed..`ptp`:.Only.received.PTP.pro |
| 15e2a0 | 74 6f 63 6f 6c 20 70 61 63 6b 65 74 73 20 77 69 6c 6c 20 62 65 20 74 69 6d 65 73 74 61 6d 70 65 | tocol.packets.will.be.timestampe |
| 15e2c0 | 64 2e 20 43 6f 6d 62 69 6e 65 64 20 77 69 74 68 20 74 68 65 20 50 54 50 20 74 72 61 6e 73 70 6f | d..Combined.with.the.PTP.transpo |
| 15e2e0 | 72 74 20 66 6f 72 20 4e 54 50 20 70 61 63 6b 65 74 73 2c 20 74 68 69 73 20 63 61 6e 20 62 65 20 | rt.for.NTP.packets,.this.can.be. |
| 15e300 | 6c 65 76 65 72 61 67 65 64 20 74 6f 20 74 61 6b 65 20 61 64 76 61 6e 74 61 67 65 20 6f 66 20 68 | leveraged.to.take.advantage.of.h |
| 15e320 | 61 72 64 77 61 72 65 20 74 69 6d 65 73 74 61 6d 70 69 6e 67 20 6f 6e 20 4e 49 43 73 20 74 68 61 | ardware.timestamping.on.NICs.tha |
| 15e340 | 74 20 6f 6e 6c 79 20 73 75 70 70 6f 72 74 20 74 68 65 20 70 74 70 20 66 69 6c 74 65 72 20 6d 6f | t.only.support.the.ptp.filter.mo |
| 15e360 | 64 65 2e 00 60 73 6d 65 61 72 60 3a 20 57 68 65 6e 20 73 6d 65 61 72 69 6e 67 20 61 20 6c 65 61 | de..`smear`:.When.smearing.a.lea |
| 15e380 | 70 20 73 65 63 6f 6e 64 2c 20 74 68 65 20 6c 65 61 70 20 73 74 61 74 75 73 20 69 73 20 73 75 70 | p.second,.the.leap.status.is.sup |
| 15e3a0 | 70 72 65 73 73 65 64 20 6f 6e 20 74 68 65 20 73 65 72 76 65 72 20 61 6e 64 20 74 68 65 20 73 65 | pressed.on.the.server.and.the.se |
| 15e3c0 | 72 76 65 64 20 74 69 6d 65 20 69 73 20 63 6f 72 72 65 63 74 65 64 20 73 6c 6f 77 6c 79 20 62 79 | rved.time.is.corrected.slowly.by |
| 15e3e0 | 20 73 6c 65 77 69 6e 67 20 69 6e 73 74 65 61 64 20 6f 66 20 73 74 65 70 70 69 6e 67 2e 20 54 68 | .slewing.instead.of.stepping..Th |
| 15e400 | 65 20 63 6c 69 65 6e 74 73 20 64 6f 20 6e 6f 74 20 6e 65 65 64 20 61 6e 79 20 73 70 65 63 69 61 | e.clients.do.not.need.any.specia |
| 15e420 | 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 61 73 20 74 68 65 79 20 64 6f 20 6e 6f 74 20 6b | l.configuration.as.they.do.not.k |
| 15e440 | 6e 6f 77 20 74 68 65 72 65 20 69 73 20 61 6e 79 20 6c 65 61 70 20 73 65 63 6f 6e 64 20 61 6e 64 | now.there.is.any.leap.second.and |
| 15e460 | 20 74 68 65 79 20 66 6f 6c 6c 6f 77 20 74 68 65 20 73 65 72 76 65 72 20 74 69 6d 65 20 77 68 69 | .they.follow.the.server.time.whi |
| 15e480 | 63 68 20 65 76 65 6e 74 75 61 6c 6c 79 20 62 72 69 6e 67 73 20 74 68 65 6d 20 62 61 63 6b 20 74 | ch.eventually.brings.them.back.t |
| 15e4a0 | 6f 20 55 54 43 2e 20 43 61 72 65 20 6d 75 73 74 20 62 65 20 74 61 6b 65 6e 20 74 6f 20 65 6e 73 | o.UTC..Care.must.be.taken.to.ens |
| 15e4c0 | 75 72 65 20 74 68 65 79 20 75 73 65 20 6f 6e 6c 79 20 4e 54 50 20 73 65 72 76 65 72 73 20 77 68 | ure.they.use.only.NTP.servers.wh |
| 15e4e0 | 69 63 68 20 73 6d 65 61 72 20 74 68 65 20 6c 65 61 70 20 73 65 63 6f 6e 64 20 69 6e 20 65 78 61 | ich.smear.the.leap.second.in.exa |
| 15e500 | 63 74 6c 79 20 74 68 65 20 73 61 6d 65 20 77 61 79 20 66 6f 72 20 73 79 6e 63 68 72 6f 6e 69 73 | ctly.the.same.way.for.synchronis |
| 15e520 | 61 74 69 6f 6e 2e 00 60 73 6f 75 72 63 65 2d 61 64 64 72 65 73 73 60 20 61 6e 64 20 60 73 6f 75 | ation..`source-address`.and.`sou |
| 15e540 | 72 63 65 2d 69 6e 74 65 72 66 61 63 65 60 20 63 61 6e 20 6e 6f 74 20 62 65 20 75 73 65 64 20 61 | rce-interface`.can.not.be.used.a |
| 15e560 | 74 20 74 68 65 20 73 61 6d 65 20 74 69 6d 65 2e 00 60 73 79 73 74 65 6d 60 3a 20 57 68 65 6e 20 | t.the.same.time..`system`:.When. |
| 15e580 | 69 6e 73 65 72 74 69 6e 67 20 61 20 6c 65 61 70 20 73 65 63 6f 6e 64 2c 20 74 68 65 20 6b 65 72 | inserting.a.leap.second,.the.ker |
| 15e5a0 | 6e 65 6c 20 73 74 65 70 73 20 74 68 65 20 73 79 73 74 65 6d 20 63 6c 6f 63 6b 20 62 61 63 6b 77 | nel.steps.the.system.clock.backw |
| 15e5c0 | 61 72 64 73 20 62 79 20 6f 6e 65 20 73 65 63 6f 6e 64 20 77 68 65 6e 20 74 68 65 20 63 6c 6f 63 | ards.by.one.second.when.the.cloc |
| 15e5e0 | 6b 20 67 65 74 73 20 74 6f 20 30 30 3a 30 30 3a 30 30 20 55 54 43 2e 20 57 68 65 6e 20 64 65 6c | k.gets.to.00:00:00.UTC..When.del |
| 15e600 | 65 74 69 6e 67 20 61 20 6c 65 61 70 20 73 65 63 6f 6e 64 2c 20 69 74 20 73 74 65 70 73 20 66 6f | eting.a.leap.second,.it.steps.fo |
| 15e620 | 72 77 61 72 64 20 62 79 20 6f 6e 65 20 73 65 63 6f 6e 64 20 77 68 65 6e 20 74 68 65 20 63 6c 6f | rward.by.one.second.when.the.clo |
| 15e640 | 63 6b 20 67 65 74 73 20 74 6f 20 32 33 3a 35 39 3a 35 39 20 55 54 43 2e 00 60 74 69 6d 65 7a 6f | ck.gets.to.23:59:59.UTC..`timezo |
| 15e660 | 6e 65 60 3a 20 54 68 69 73 20 64 69 72 65 63 74 69 76 65 20 73 70 65 63 69 66 69 65 73 20 61 20 | ne`:.This.directive.specifies.a. |
| 15e680 | 74 69 6d 65 7a 6f 6e 65 20 69 6e 20 74 68 65 20 73 79 73 74 65 6d 20 74 69 6d 65 7a 6f 6e 65 20 | timezone.in.the.system.timezone. |
| 15e6a0 | 64 61 74 61 62 61 73 65 20 77 68 69 63 68 20 63 68 72 6f 6e 79 64 20 63 61 6e 20 75 73 65 20 74 | database.which.chronyd.can.use.t |
| 15e6c0 | 6f 20 64 65 74 65 72 6d 69 6e 65 20 77 68 65 6e 20 77 69 6c 6c 20 74 68 65 20 6e 65 78 74 20 6c | o.determine.when.will.the.next.l |
| 15e6e0 | 65 61 70 20 73 65 63 6f 6e 64 20 6f 63 63 75 72 20 61 6e 64 20 77 68 61 74 20 69 73 20 74 68 65 | eap.second.occur.and.what.is.the |
| 15e700 | 20 63 75 72 72 65 6e 74 20 6f 66 66 73 65 74 20 62 65 74 77 65 65 6e 20 54 41 49 20 61 6e 64 20 | .current.offset.between.TAI.and. |
| 15e720 | 55 54 43 2e 20 49 74 20 77 69 6c 6c 20 70 65 72 69 6f 64 69 63 61 6c 6c 79 20 63 68 65 63 6b 20 | UTC..It.will.periodically.check. |
| 15e740 | 69 66 20 32 33 3a 35 39 3a 35 39 20 61 6e 64 20 32 33 3a 35 39 3a 36 30 20 61 72 65 20 76 61 6c | if.23:59:59.and.23:59:60.are.val |
| 15e760 | 69 64 20 74 69 6d 65 73 20 69 6e 20 74 68 65 20 74 69 6d 65 7a 6f 6e 65 2e 20 54 68 69 73 20 6e | id.times.in.the.timezone..This.n |
| 15e780 | 6f 72 6d 61 6c 6c 79 20 77 6f 72 6b 73 20 77 69 74 68 20 74 68 65 20 72 69 67 68 74 2f 55 54 43 | ormally.works.with.the.right/UTC |
| 15e7a0 | 20 74 69 6d 65 7a 6f 6e 65 20 77 68 69 63 68 20 69 73 20 74 68 65 20 64 65 66 61 75 6c 74 00 60 | .timezone.which.is.the.default.` |
| 15e7c0 | 74 77 65 65 74 20 62 79 20 45 76 69 6c 4d 6f 67 60 5f 2c 20 32 30 32 30 2d 30 32 2d 32 31 00 61 | tweet.by.EvilMog`_,.2020-02-21.a |
| 15e7e0 | 20 62 61 6e 64 77 69 64 74 68 20 74 65 73 74 20 6f 76 65 72 20 74 68 65 20 56 50 4e 20 67 6f 74 | .bandwidth.test.over.the.VPN.got |
| 15e800 | 20 74 68 65 73 65 20 72 65 73 75 6c 74 73 3a 00 61 20 62 6c 61 6e 6b 20 69 6e 64 69 63 61 74 65 | .these.results:.a.blank.indicate |
| 15e820 | 73 20 74 68 61 74 20 6e 6f 20 74 65 73 74 20 68 61 73 20 62 65 65 6e 20 63 61 72 72 69 65 64 20 | s.that.no.test.has.been.carried. |
| 15e840 | 6f 75 74 00 61 65 73 32 35 36 20 45 6e 63 72 79 70 74 69 6f 6e 00 61 6c 65 72 74 00 61 6c 6c 00 | out.aes256.Encryption.alert.all. |
| 15e860 | 61 6e 20 52 44 20 2f 20 52 54 4c 49 53 54 00 61 6e 20 69 6e 74 65 72 66 61 63 65 20 77 69 74 68 | an.RD./.RTLIST.an.interface.with |
| 15e880 | 20 61 20 6e 65 78 74 68 6f 70 00 61 6e 79 3a 20 61 6e 79 20 49 50 20 61 64 64 72 65 73 73 20 74 | .a.nexthop.any:.any.IP.address.t |
| 15e8a0 | 6f 20 6d 61 74 63 68 2e 00 61 6e 79 3a 20 61 6e 79 20 49 50 76 36 20 61 64 64 72 65 73 73 20 74 | o.match..any:.any.IPv6.address.t |
| 15e8c0 | 6f 20 6d 61 74 63 68 2e 00 61 75 74 68 00 61 75 74 68 6f 72 69 7a 61 74 69 6f 6e 00 61 75 74 6f | o.match..auth.authorization.auto |
| 15e8e0 | 20 2d 20 69 6e 74 65 72 66 61 63 65 20 64 75 70 6c 65 78 20 73 65 74 74 69 6e 67 20 69 73 20 61 | .-.interface.duplex.setting.is.a |
| 15e900 | 75 74 6f 2d 6e 65 67 6f 74 69 61 74 65 64 00 61 75 74 6f 20 2d 20 69 6e 74 65 72 66 61 63 65 20 | uto-negotiated.auto.-.interface. |
| 15e920 | 73 70 65 65 64 20 69 73 20 61 75 74 6f 2d 6e 65 67 6f 74 69 61 74 65 64 00 62 67 70 64 00 62 6f | speed.is.auto-negotiated.bgpd.bo |
| 15e940 | 6e 64 69 6e 67 00 62 6f 6f 74 2d 73 69 7a 65 00 62 6f 6f 74 66 69 6c 65 2d 6e 61 6d 65 00 62 6f | nding.boot-size.bootfile-name.bo |
| 15e960 | 6f 74 66 69 6c 65 2d 6e 61 6d 65 2c 20 66 69 6c 65 6e 61 6d 65 00 62 6f 6f 74 66 69 6c 65 2d 73 | otfile-name,.filename.bootfile-s |
| 15e980 | 65 72 76 65 72 00 62 6f 6f 74 66 69 6c 65 2d 73 69 7a 65 00 62 72 69 64 67 65 00 63 6c 69 65 6e | erver.bootfile-size.bridge.clien |
| 15e9a0 | 74 20 65 78 61 6d 70 6c 65 20 28 64 65 62 69 61 6e 20 39 29 00 63 6c 69 65 6e 74 2d 70 72 65 66 | t.example.(debian.9).client-pref |
| 15e9c0 | 69 78 2d 6c 65 6e 67 74 68 00 63 6c 6f 63 6b 00 63 6c 6f 63 6b 20 64 61 65 6d 6f 6e 20 28 6e 6f | ix-length.clock.clock.daemon.(no |
| 15e9e0 | 74 65 20 32 29 00 63 72 69 74 00 63 72 6f 6e 00 64 61 65 6d 6f 6e 00 64 64 63 6c 69 65 6e 74 5f | te.2).crit.cron.daemon.ddclient_ |
| 15ea00 | 20 68 61 73 20 61 6e 6f 74 68 65 72 20 77 61 79 20 74 6f 20 64 65 74 65 72 6d 69 6e 65 20 74 68 | .has.another.way.to.determine.th |
| 15ea20 | 65 20 57 41 4e 20 49 50 20 61 64 64 72 65 73 73 2e 20 54 68 69 73 20 69 73 20 63 6f 6e 74 72 6f | e.WAN.IP.address..This.is.contro |
| 15ea40 | 6c 6c 65 64 20 62 79 3a 00 64 64 63 6c 69 65 6e 74 5f 20 75 73 65 73 20 74 77 6f 20 6d 65 74 68 | lled.by:.ddclient_.uses.two.meth |
| 15ea60 | 6f 64 73 20 74 6f 20 75 70 64 61 74 65 20 61 20 44 4e 53 20 72 65 63 6f 72 64 2e 20 54 68 65 20 | ods.to.update.a.DNS.record..The. |
| 15ea80 | 66 69 72 73 74 20 6f 6e 65 20 77 69 6c 6c 20 73 65 6e 64 20 75 70 64 61 74 65 73 20 64 69 72 65 | first.one.will.send.updates.dire |
| 15eaa0 | 63 74 6c 79 20 74 6f 20 74 68 65 20 44 4e 53 20 64 61 65 6d 6f 6e 2c 20 69 6e 20 63 6f 6d 70 6c | ctly.to.the.DNS.daemon,.in.compl |
| 15eac0 | 69 61 6e 63 65 20 77 69 74 68 20 3a 72 66 63 3a 60 32 31 33 36 60 2e 20 54 68 65 20 73 65 63 6f | iance.with.:rfc:`2136`..The.seco |
| 15eae0 | 6e 64 20 6f 6e 65 20 69 6e 76 6f 6c 76 65 73 20 61 20 74 68 69 72 64 20 70 61 72 74 79 20 73 65 | nd.one.involves.a.third.party.se |
| 15eb00 | 72 76 69 63 65 2c 20 6c 69 6b 65 20 44 79 6e 44 4e 53 2e 63 6f 6d 20 6f 72 20 61 6e 79 20 6f 74 | rvice,.like.DynDNS.com.or.any.ot |
| 15eb20 | 68 65 72 20 73 69 6d 69 6c 61 72 20 77 65 62 73 69 74 65 2e 20 54 68 69 73 20 6d 65 74 68 6f 64 | her.similar.website..This.method |
| 15eb40 | 20 75 73 65 73 20 48 54 54 50 20 72 65 71 75 65 73 74 73 20 74 6f 20 74 72 61 6e 73 6d 69 74 20 | .uses.HTTP.requests.to.transmit. |
| 15eb60 | 74 68 65 20 6e 65 77 20 49 50 20 61 64 64 72 65 73 73 2e 20 59 6f 75 20 63 61 6e 20 63 6f 6e 66 | the.new.IP.address..You.can.conf |
| 15eb80 | 69 67 75 72 65 20 62 6f 74 68 20 69 6e 20 56 79 4f 53 2e 00 64 64 63 6c 69 65 6e 74 5f 20 75 73 | igure.both.in.VyOS..ddclient_.us |
| 15eba0 | 65 73 20 74 77 6f 20 6d 65 74 68 6f 64 73 20 74 6f 20 75 70 64 61 74 65 20 61 20 44 4e 53 20 72 | es.two.methods.to.update.a.DNS.r |
| 15ebc0 | 65 63 6f 72 64 2e 20 54 68 65 20 66 69 72 73 74 20 6f 6e 65 20 77 69 6c 6c 20 73 65 6e 64 20 75 | ecord..The.first.one.will.send.u |
| 15ebe0 | 70 64 61 74 65 73 20 64 69 72 65 63 74 6c 79 20 74 6f 20 74 68 65 20 44 4e 53 20 64 61 65 6d 6f | pdates.directly.to.the.DNS.daemo |
| 15ec00 | 6e 2c 20 69 6e 20 63 6f 6d 70 6c 69 61 6e 63 65 20 77 69 74 68 20 3a 72 66 63 3a 60 32 31 33 36 | n,.in.compliance.with.:rfc:`2136 |
| 15ec20 | 60 2e 20 54 68 65 20 73 65 63 6f 6e 64 20 6f 6e 65 20 69 6e 76 6f 6c 76 65 73 20 61 20 74 68 69 | `..The.second.one.involves.a.thi |
| 15ec40 | 72 64 20 70 61 72 74 79 20 73 65 72 76 69 63 65 2c 20 6c 69 6b 65 20 44 79 6e 44 4e 53 2e 63 6f | rd.party.service,.like.DynDNS.co |
| 15ec60 | 6d 20 6f 72 20 61 6e 79 20 6f 74 68 65 72 20 73 75 63 68 20 73 65 72 76 69 63 65 20 70 72 6f 76 | m.or.any.other.such.service.prov |
| 15ec80 | 69 64 65 72 2e 20 54 68 69 73 20 6d 65 74 68 6f 64 20 75 73 65 73 20 48 54 54 50 20 72 65 71 75 | ider..This.method.uses.HTTP.requ |
| 15eca0 | 65 73 74 73 20 74 6f 20 74 72 61 6e 73 6d 69 74 20 74 68 65 20 6e 65 77 20 49 50 20 61 64 64 72 | ests.to.transmit.the.new.IP.addr |
| 15ecc0 | 65 73 73 2e 20 59 6f 75 20 63 61 6e 20 63 6f 6e 66 69 67 75 72 65 20 62 6f 74 68 20 69 6e 20 56 | ess..You.can.configure.both.in.V |
| 15ece0 | 79 4f 53 2e 00 64 64 63 6c 69 65 6e 74 5f 20 77 69 6c 6c 20 73 6b 69 70 20 61 6e 79 20 61 64 64 | yOS..ddclient_.will.skip.any.add |
| 15ed00 | 72 65 73 73 20 6c 6f 63 61 74 65 64 20 62 65 66 6f 72 65 20 74 68 65 20 73 74 72 69 6e 67 20 73 | ress.located.before.the.string.s |
| 15ed20 | 65 74 20 69 6e 20 60 3c 70 61 74 74 65 72 6e 3e 60 2e 00 64 65 62 75 67 00 64 65 63 72 65 6d 65 | et.in.`<pattern>`..debug.decreme |
| 15ed40 | 6e 74 2d 6c 69 66 65 74 69 6d 65 00 64 65 66 61 75 6c 74 20 6d 69 6e 2d 74 68 72 65 73 68 6f 6c | nt-lifetime.default.min-threshol |
| 15ed60 | 64 00 64 65 66 61 75 6c 74 2d 6c 65 61 73 65 2d 74 69 6d 65 2c 20 6d 61 78 2d 6c 65 61 73 65 2d | d.default-lease-time,.max-lease- |
| 15ed80 | 74 69 6d 65 00 64 65 66 61 75 6c 74 2d 6c 69 66 65 74 69 6d 65 00 64 65 66 61 75 6c 74 2d 70 72 | time.default-lifetime.default-pr |
| 15eda0 | 65 66 65 72 65 6e 63 65 00 64 65 66 61 75 6c 74 2d 72 6f 75 74 65 72 00 64 65 70 72 65 63 61 74 | eference.default-router.deprecat |
| 15edc0 | 65 2d 70 72 65 66 69 78 00 64 65 73 74 69 6e 61 74 69 6f 6e 2d 68 61 73 68 69 6e 67 00 64 68 63 | e-prefix.destination-hashing.dhc |
| 15ede0 | 70 2d 73 65 72 76 65 72 2d 69 64 65 6e 74 69 66 69 65 72 00 64 69 72 65 63 74 00 64 69 72 65 63 | p-server-identifier.direct.direc |
| 15ee00 | 74 6f 72 79 00 64 69 73 61 62 6c 65 3a 20 4e 6f 20 73 6f 75 72 63 65 20 76 61 6c 69 64 61 74 69 | tory.disable:.No.source.validati |
| 15ee20 | 6f 6e 00 64 6e 73 73 6c 00 64 6f 6d 61 69 6e 2d 6e 61 6d 65 00 64 6f 6d 61 69 6e 2d 6e 61 6d 65 | on.dnssl.domain-name.domain-name |
| 15ee40 | 2d 73 65 72 76 65 72 73 00 64 6f 6d 61 69 6e 2d 73 65 61 72 63 68 00 65 6d 65 72 67 00 65 6e 61 | -servers.domain-search.emerg.ena |
| 15ee60 | 62 6c 65 20 6f 72 20 64 69 73 61 62 6c 65 20 20 49 43 4d 50 76 34 20 72 65 64 69 72 65 63 74 20 | ble.or.disable..ICMPv4.redirect. |
| 15ee80 | 6d 65 73 73 61 67 65 73 20 73 65 6e 64 20 62 79 20 56 79 4f 53 20 54 68 65 20 66 6f 6c 6c 6f 77 | messages.send.by.VyOS.The.follow |
| 15eea0 | 69 6e 67 20 73 79 73 74 65 6d 20 70 61 72 61 6d 65 74 65 72 20 77 69 6c 6c 20 62 65 20 61 6c 74 | ing.system.parameter.will.be.alt |
| 15eec0 | 65 72 65 64 3a 00 65 6e 61 62 6c 65 20 6f 72 20 64 69 73 61 62 6c 65 20 49 43 4d 50 76 34 20 72 | ered:.enable.or.disable.ICMPv4.r |
| 15eee0 | 65 64 69 72 65 63 74 20 6d 65 73 73 61 67 65 73 20 73 65 6e 64 20 62 79 20 56 79 4f 53 20 54 68 | edirect.messages.send.by.VyOS.Th |
| 15ef00 | 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 79 73 74 65 6d 20 70 61 72 61 6d 65 74 65 72 20 77 69 6c | e.following.system.parameter.wil |
| 15ef20 | 6c 20 62 65 20 61 6c 74 65 72 65 64 3a 00 65 6e 61 62 6c 65 20 6f 72 20 64 69 73 61 62 6c 65 20 | l.be.altered:.enable.or.disable. |
| 15ef40 | 6f 66 20 49 43 4d 50 76 34 20 6f 72 20 49 43 4d 50 76 36 20 72 65 64 69 72 65 63 74 20 6d 65 73 | of.ICMPv4.or.ICMPv6.redirect.mes |
| 15ef60 | 73 61 67 65 73 20 61 63 63 65 70 74 65 64 20 62 79 20 56 79 4f 53 2e 20 54 68 65 20 66 6f 6c 6c | sages.accepted.by.VyOS..The.foll |
| 15ef80 | 6f 77 69 6e 67 20 73 79 73 74 65 6d 20 70 61 72 61 6d 65 74 65 72 20 77 69 6c 6c 20 62 65 20 61 | owing.system.parameter.will.be.a |
| 15efa0 | 6c 74 65 72 65 64 3a 00 65 6e 61 62 6c 65 20 6f 72 20 64 69 73 61 62 6c 65 20 74 68 65 20 6c 6f | ltered:.enable.or.disable.the.lo |
| 15efc0 | 67 67 69 6e 67 20 6f 66 20 6d 61 72 74 69 61 6e 20 49 50 76 34 20 70 61 63 6b 65 74 73 2e 20 54 | gging.of.martian.IPv4.packets..T |
| 15efe0 | 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 79 73 74 65 6d 20 70 61 72 61 6d 65 74 65 72 20 77 69 | he.following.system.parameter.wi |
| 15f000 | 6c 6c 20 62 65 20 61 6c 74 65 72 65 64 3a 00 65 72 72 00 65 74 68 65 72 6e 65 74 00 65 78 61 63 | ll.be.altered:.err.ethernet.exac |
| 15f020 | 74 2d 6d 61 74 63 68 3a 20 65 78 61 63 74 20 6d 61 74 63 68 20 6f 66 20 74 68 65 20 6e 65 74 77 | t-match:.exact.match.of.the.netw |
| 15f040 | 6f 72 6b 20 70 72 65 66 69 78 65 73 2e 00 65 78 63 6c 75 64 65 00 66 61 69 6c 6f 76 65 72 00 66 | ork.prefixes..exclude.failover.f |
| 15f060 | 61 73 74 3a 20 52 65 71 75 65 73 74 20 70 61 72 74 6e 65 72 20 74 6f 20 74 72 61 6e 73 6d 69 74 | ast:.Request.partner.to.transmit |
| 15f080 | 20 4c 41 43 50 44 55 73 20 65 76 65 72 79 20 31 20 73 65 63 6f 6e 64 00 66 69 6c 65 20 3c 66 69 | .LACPDUs.every.1.second.file.<fi |
| 15f0a0 | 6c 65 20 6e 61 6d 65 3e 00 66 69 6c 74 65 72 2d 6c 69 73 74 00 66 74 70 00 66 75 6c 6c 20 2d 20 | le.name>.filter-list.ftp.full.-. |
| 15f0c0 | 61 6c 77 61 79 73 20 75 73 65 20 66 75 6c 6c 2d 64 75 70 6c 65 78 00 67 65 6e 65 76 65 00 68 61 | always.use.full-duplex.geneve.ha |
| 15f0e0 | 6c 66 20 2d 20 61 6c 77 61 79 73 20 75 73 65 20 68 61 6c 66 2d 64 75 70 6c 65 78 00 68 6f 70 2d | lf.-.always.use.half-duplex.hop- |
| 15f100 | 6c 69 6d 69 74 00 68 6f 73 74 3a 20 73 69 6e 67 6c 65 20 68 6f 73 74 20 49 50 20 61 64 64 72 65 | limit.host:.single.host.IP.addre |
| 15f120 | 73 73 20 74 6f 20 6d 61 74 63 68 2e 00 68 74 74 70 73 3a 2f 2f 61 63 63 65 73 73 2e 72 65 64 68 | ss.to.match..https://access.redh |
| 15f140 | 61 74 2e 63 6f 6d 2f 73 69 74 65 73 2f 64 65 66 61 75 6c 74 2f 66 69 6c 65 73 2f 61 74 74 61 63 | at.com/sites/default/files/attac |
| 15f160 | 68 6d 65 6e 74 73 2f 32 30 31 35 30 31 2d 70 65 72 66 2d 62 72 69 65 66 2d 6c 6f 77 2d 6c 61 74 | hments/201501-perf-brief-low-lat |
| 15f180 | 65 6e 63 79 2d 74 75 6e 69 6e 67 2d 72 68 65 6c 37 2d 76 32 2e 31 2e 70 64 66 00 68 74 74 70 73 | ency-tuning-rhel7-v2.1.pdf.https |
| 15f1a0 | 3a 2f 2f 63 6f 6d 6d 75 6e 69 74 79 2e 6f 70 65 6e 76 70 6e 2e 6e 65 74 2f 6f 70 65 6e 76 70 6e | ://community.openvpn.net/openvpn |
| 15f1c0 | 2f 77 69 6b 69 2f 44 61 74 61 43 68 61 6e 6e 65 6c 4f 66 66 6c 6f 61 64 2f 46 65 61 74 75 72 65 | /wiki/DataChannelOffload/Feature |
| 15f1e0 | 73 00 68 74 74 70 73 3a 2f 2f 64 6f 63 73 2e 6b 65 72 6e 65 6c 2e 6f 72 67 2f 61 64 6d 69 6e 2d | s.https://docs.kernel.org/admin- |
| 15f200 | 67 75 69 64 65 2f 70 6d 2f 61 6d 64 2d 70 73 74 61 74 65 2e 68 74 6d 6c 00 69 66 20 74 68 65 72 | guide/pm/amd-pstate.html.if.ther |
| 15f220 | 65 20 69 73 20 61 20 73 75 70 70 6f 72 74 65 64 20 64 65 76 69 63 65 2c 20 65 6e 61 62 6c 65 20 | e.is.a.supported.device,.enable. |
| 15f240 | 49 6e 74 65 6c c2 ae 20 51 41 54 00 69 66 20 74 68 65 72 65 20 69 73 20 6e 6f 6e 20 64 65 76 69 | Intel...QAT.if.there.is.non.devi |
| 15f260 | 63 65 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 77 69 6c 6c 20 73 68 6f 77 20 60 60 60 4e 6f 20 51 | ce.the.command.will.show.```No.Q |
| 15f280 | 41 54 20 64 65 76 69 63 65 20 66 6f 75 6e 64 60 60 60 00 69 6e 66 6f 00 69 6e 68 65 72 69 74 20 | AT.device.found```.info.inherit. |
| 15f2a0 | 6d 61 74 63 68 65 73 20 66 72 6f 6d 20 61 6e 6f 74 68 65 72 20 67 72 6f 75 70 00 69 6e 74 65 72 | matches.from.another.group.inter |
| 15f2c0 | 76 61 6c 00 69 6e 76 61 6c 69 64 00 69 6e 76 65 72 73 65 2d 6d 61 74 63 68 3a 20 6e 65 74 77 6f | val.invalid.inverse-match:.netwo |
| 15f2e0 | 72 6b 2f 6e 65 74 6d 61 73 6b 20 74 6f 20 6d 61 74 63 68 20 28 72 65 71 75 69 72 65 73 20 6e 65 | rk/netmask.to.match.(requires.ne |
| 15f300 | 74 77 6f 72 6b 20 62 65 20 64 65 66 69 6e 65 64 29 2e 00 69 70 2d 66 6f 72 77 61 72 64 69 6e 67 | twork.be.defined)..ip-forwarding |
| 15f320 | 00 69 73 69 73 64 00 69 74 20 63 61 6e 20 62 65 20 75 73 65 64 20 77 69 74 68 20 61 6e 79 20 4e | .isisd.it.can.be.used.with.any.N |
| 15f340 | 49 43 00 69 74 20 63 61 6e 20 62 65 20 75 73 65 64 20 77 69 74 68 20 61 6e 79 20 4e 49 43 2c 00 | IC.it.can.be.used.with.any.NIC,. |
| 15f360 | 69 74 20 64 6f 65 73 20 6e 6f 74 20 69 6e 63 72 65 61 73 65 20 68 61 72 64 77 61 72 65 20 64 65 | it.does.not.increase.hardware.de |
| 15f380 | 76 69 63 65 20 69 6e 74 65 72 72 75 70 74 20 72 61 74 65 20 28 61 6c 74 68 6f 75 67 68 20 69 74 | vice.interrupt.rate.(although.it |
| 15f3a0 | 20 64 6f 65 73 20 69 6e 74 72 6f 64 75 63 65 20 69 6e 74 65 72 2d 70 72 6f 63 65 73 73 6f 72 20 | .does.introduce.inter-processor. |
| 15f3c0 | 69 6e 74 65 72 72 75 70 74 73 20 28 49 50 49 73 29 29 2e 00 69 74 20 64 6f 65 73 20 6e 6f 74 20 | interrupts.(IPIs))..it.does.not. |
| 15f3e0 | 69 6e 63 72 65 61 73 65 20 68 61 72 64 77 61 72 65 20 64 65 76 69 63 65 20 69 6e 74 65 72 72 75 | increase.hardware.device.interru |
| 15f400 | 70 74 20 72 61 74 65 2c 20 61 6c 74 68 6f 75 67 68 20 69 74 20 64 6f 65 73 20 69 6e 74 72 6f 64 | pt.rate,.although.it.does.introd |
| 15f420 | 75 63 65 20 69 6e 74 65 72 2d 70 72 6f 63 65 73 73 6f 72 20 69 6e 74 65 72 72 75 70 74 73 20 28 | uce.inter-processor.interrupts.( |
| 15f440 | 49 50 49 73 29 00 6b 65 72 6e 00 6c 32 74 70 76 33 00 6c 64 70 64 00 6c 65 61 73 65 00 6c 65 61 | IPIs).kern.l2tpv3.ldpd.lease.lea |
| 15f460 | 73 74 2d 63 6f 6e 6e 65 63 74 69 6f 6e 00 6c 65 66 74 20 6c 6f 63 61 6c 5f 69 70 3a 20 31 39 32 | st-connection.left.local_ip:.192 |
| 15f480 | 2e 31 36 38 2e 30 2e 31 30 20 23 20 56 50 4e 20 47 61 74 65 77 61 79 2c 20 62 65 68 69 6e 64 20 | .168.0.10.#.VPN.Gateway,.behind. |
| 15f4a0 | 4e 41 54 20 64 65 76 69 63 65 00 6c 65 66 74 20 6c 6f 63 61 6c 5f 69 70 3a 20 60 31 39 38 2e 35 | NAT.device.left.local_ip:.`198.5 |
| 15f4c0 | 31 2e 31 30 30 2e 33 60 20 23 20 73 65 72 76 65 72 20 73 69 64 65 20 57 41 4e 20 49 50 00 6c 65 | 1.100.3`.#.server.side.WAN.IP.le |
| 15f4e0 | 66 74 20 70 75 62 6c 69 63 5f 69 70 3a 31 37 32 2e 31 38 2e 32 30 31 2e 31 30 00 6c 65 66 74 20 | ft.public_ip:172.18.201.10.left. |
| 15f500 | 73 75 62 6e 65 74 3a 20 60 31 39 32 2e 31 36 38 2e 30 2e 30 2f 32 34 60 20 73 69 74 65 31 2c 20 | subnet:.`192.168.0.0/24`.site1,. |
| 15f520 | 73 65 72 76 65 72 20 73 69 64 65 20 28 69 2e 65 2e 20 6c 6f 63 61 6c 69 74 79 2c 20 61 63 74 75 | server.side.(i.e..locality,.actu |
| 15f540 | 61 6c 6c 79 20 74 68 65 72 65 20 69 73 20 6e 6f 20 63 6c 69 65 6e 74 20 6f 72 20 73 65 72 76 65 | ally.there.is.no.client.or.serve |
| 15f560 | 72 20 72 6f 6c 65 73 29 00 6c 69 6e 6b 2d 6d 74 75 00 6c 6f 63 61 6c 20 75 73 65 20 30 20 28 6c | r.roles).link-mtu.local.use.0.(l |
| 15f580 | 6f 63 61 6c 30 29 00 6c 6f 63 61 6c 20 75 73 65 20 31 20 28 6c 6f 63 61 6c 31 29 00 6c 6f 63 61 | ocal0).local.use.1.(local1).loca |
| 15f5a0 | 6c 20 75 73 65 20 32 20 28 6c 6f 63 61 6c 32 29 00 6c 6f 63 61 6c 20 75 73 65 20 33 20 28 6c 6f | l.use.2.(local2).local.use.3.(lo |
| 15f5c0 | 63 61 6c 33 29 00 6c 6f 63 61 6c 20 75 73 65 20 34 20 28 6c 6f 63 61 6c 34 29 00 6c 6f 63 61 6c | cal3).local.use.4.(local4).local |
| 15f5e0 | 20 75 73 65 20 35 20 28 6c 6f 63 61 6c 35 29 00 6c 6f 63 61 6c 20 75 73 65 20 37 20 28 6c 6f 63 | .use.5.(local5).local.use.7.(loc |
| 15f600 | 61 6c 37 29 00 6c 6f 63 61 6c 30 00 6c 6f 63 61 6c 31 00 6c 6f 63 61 6c 32 00 6c 6f 63 61 6c 33 | al7).local0.local1.local2.local3 |
| 15f620 | 00 6c 6f 63 61 6c 34 00 6c 6f 63 61 6c 35 00 6c 6f 63 61 6c 36 00 6c 6f 63 61 6c 37 00 6c 6f 63 | .local4.local5.local6.local7.loc |
| 15f640 | 61 6c 69 74 79 2d 62 61 73 65 64 2d 6c 65 61 73 74 2d 63 6f 6e 6e 65 63 74 69 6f 6e 00 6c 6f 67 | ality-based-least-connection.log |
| 15f660 | 61 6c 65 72 74 00 6c 6f 67 61 75 64 69 74 00 6c 6f 6f 73 65 3a 20 45 61 63 68 20 69 6e 63 6f 6d | alert.logaudit.loose:.Each.incom |
| 15f680 | 69 6e 67 20 70 61 63 6b 65 74 27 73 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 69 73 20 61 | ing.packet's.source.address.is.a |
| 15f6a0 | 6c 73 6f 20 74 65 73 74 65 64 20 61 67 61 69 6e 73 74 20 74 68 65 20 46 49 42 20 61 6e 64 20 69 | lso.tested.against.the.FIB.and.i |
| 15f6c0 | 66 20 74 68 65 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 69 73 20 6e 6f 74 20 72 65 61 63 | f.the.source.address.is.not.reac |
| 15f6e0 | 68 61 62 6c 65 20 76 69 61 20 61 6e 79 20 69 6e 74 65 72 66 61 63 65 20 74 68 65 20 70 61 63 6b | hable.via.any.interface.the.pack |
| 15f700 | 65 74 20 63 68 65 63 6b 20 77 69 6c 6c 20 66 61 69 6c 2e 00 6c 70 72 00 6d 44 4e 53 20 52 65 70 | et.check.will.fail..lpr.mDNS.Rep |
| 15f720 | 65 61 74 65 72 00 6d 44 4e 53 20 72 65 70 65 61 74 65 72 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 | eater.mDNS.repeater.can.be.confi |
| 15f740 | 67 75 72 65 64 20 74 6f 20 72 65 2d 62 72 6f 61 64 63 61 73 74 20 6f 6e 6c 79 20 73 70 65 63 69 | gured.to.re-broadcast.only.speci |
| 15f760 | 66 69 63 20 73 65 72 76 69 63 65 73 2e 20 42 79 20 64 65 66 61 75 6c 74 2c 20 61 6c 6c 20 73 65 | fic.services..By.default,.all.se |
| 15f780 | 72 76 69 63 65 73 20 61 72 65 20 72 65 2d 62 72 6f 61 64 63 61 73 74 65 64 2e 00 6d 44 4e 53 20 | rvices.are.re-broadcasted..mDNS. |
| 15f7a0 | 72 65 70 65 61 74 65 72 20 63 61 6e 20 62 65 20 65 6e 61 62 6c 65 64 20 65 69 74 68 65 72 20 6f | repeater.can.be.enabled.either.o |
| 15f7c0 | 6e 20 49 50 76 34 20 73 6f 63 6b 65 74 20 6f 72 20 6f 6e 20 49 50 76 36 20 73 6f 63 6b 65 74 20 | n.IPv4.socket.or.on.IPv6.socket. |
| 15f7e0 | 6f 72 20 62 6f 74 68 20 74 6f 20 72 65 2d 62 72 6f 61 64 63 61 73 74 2e 20 42 79 20 64 65 66 61 | or.both.to.re-broadcast..By.defa |
| 15f800 | 75 6c 74 2c 20 6d 44 4e 53 20 72 65 70 65 61 74 65 72 20 77 69 6c 6c 20 6c 69 73 74 65 6e 20 6f | ult,.mDNS.repeater.will.listen.o |
| 15f820 | 6e 20 62 6f 74 68 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 2e 00 6d 44 4e 53 20 72 65 70 65 61 | n.both.IPv4.and.IPv6..mDNS.repea |
| 15f840 | 74 65 72 20 63 61 6e 20 62 65 20 74 65 6d 70 6f 72 61 72 69 6c 79 20 64 69 73 61 62 6c 65 64 20 | ter.can.be.temporarily.disabled. |
| 15f860 | 77 69 74 68 6f 75 74 20 64 65 6c 65 74 69 6e 67 20 74 68 65 20 73 65 72 76 69 63 65 20 75 73 69 | without.deleting.the.service.usi |
| 15f880 | 6e 67 00 6d 61 69 6c 00 6d 61 6e 61 67 65 64 2d 66 6c 61 67 00 6d 61 74 63 68 2d 66 72 61 67 3a | ng.mail.managed-flag.match-frag: |
| 15f8a0 | 20 53 65 63 6f 6e 64 20 61 6e 64 20 66 75 72 74 68 65 72 20 66 72 61 67 6d 65 6e 74 73 20 6f 66 | .Second.and.further.fragments.of |
| 15f8c0 | 20 66 72 61 67 6d 65 6e 74 65 64 20 70 61 63 6b 65 74 73 2e 00 6d 61 74 63 68 2d 69 70 73 65 63 | .fragmented.packets..match-ipsec |
| 15f8e0 | 3a 20 6d 61 74 63 68 20 69 6e 62 6f 75 6e 64 20 49 50 73 65 63 20 70 61 63 6b 65 74 73 2e 00 6d | :.match.inbound.IPsec.packets..m |
| 15f900 | 61 74 63 68 2d 6e 6f 6e 2d 66 72 61 67 3a 20 48 65 61 64 20 66 72 61 67 6d 65 6e 74 73 20 6f 72 | atch-non-frag:.Head.fragments.or |
| 15f920 | 20 75 6e 66 72 61 67 6d 65 6e 74 65 64 20 70 61 63 6b 65 74 73 2e 00 6d 61 74 63 68 2d 6e 6f 6e | .unfragmented.packets..match-non |
| 15f940 | 65 3a 20 6d 61 74 63 68 20 69 6e 62 6f 75 6e 64 20 6e 6f 6e 2d 49 50 73 65 63 20 70 61 63 6b 65 | e:.match.inbound.non-IPsec.packe |
| 15f960 | 74 73 2e 00 6d 69 6e 69 6d 61 6c 20 63 6f 6e 66 69 67 00 6d 6f 72 65 20 69 6e 66 6f 72 6d 61 74 | ts..minimal.config.more.informat |
| 15f980 | 69 6f 6e 20 72 65 6c 61 74 65 64 20 49 47 50 20 20 2d 20 3a 72 65 66 3a 60 72 6f 75 74 69 6e 67 | ion.related.IGP..-.:ref:`routing |
| 15f9a0 | 2d 69 73 69 73 60 00 6d 6f 72 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 72 65 6c 61 74 65 64 20 | -isis`.more.information.related. |
| 15f9c0 | 49 47 50 20 20 2d 20 3a 72 65 66 3a 60 72 6f 75 74 69 6e 67 2d 6f 73 70 66 60 00 6e 61 6d 65 2d | IGP..-.:ref:`routing-ospf`.name- |
| 15f9e0 | 73 65 72 76 65 72 00 6e 65 74 62 69 6f 73 2d 6e 61 6d 65 2d 73 65 72 76 65 72 73 00 6e 65 74 77 | server.netbios-name-servers.netw |
| 15fa00 | 6f 72 6b 3a 20 6e 65 74 77 6f 72 6b 2f 6e 65 74 6d 61 73 6b 20 74 6f 20 6d 61 74 63 68 20 28 72 | ork:.network/netmask.to.match.(r |
| 15fa20 | 65 71 75 69 72 65 73 20 69 6e 76 65 72 73 65 2d 6d 61 74 63 68 20 62 65 20 64 65 66 69 6e 65 64 | equires.inverse-match.be.defined |
| 15fa40 | 29 20 42 55 47 2c 20 4e 4f 20 69 6e 76 65 72 74 2d 6d 61 74 63 68 20 6f 70 74 69 6f 6e 20 69 6e | ).BUG,.NO.invert-match.option.in |
| 15fa60 | 20 61 63 63 65 73 73 2d 6c 69 73 74 36 00 6e 65 74 77 6f 72 6b 3a 20 6e 65 74 77 6f 72 6b 2f 6e | .access-list6.network:.network/n |
| 15fa80 | 65 74 6d 61 73 6b 20 74 6f 20 6d 61 74 63 68 20 28 72 65 71 75 69 72 65 73 20 69 6e 76 65 72 73 | etmask.to.match.(requires.invers |
| 15faa0 | 65 2d 6d 61 74 63 68 20 62 65 20 64 65 66 69 6e 65 64 29 2e 00 6e 65 74 77 6f 72 6b 73 3b 00 6e | e-match.be.defined)..networks;.n |
| 15fac0 | 65 77 73 00 6e 65 78 74 2d 73 65 72 76 65 72 00 6e 6f 2d 61 75 74 6f 6e 6f 6d 6f 75 73 2d 66 6c | ews.next-server.no-autonomous-fl |
| 15fae0 | 61 67 00 6e 6f 2d 6f 6e 2d 6c 69 6e 6b 2d 66 6c 61 67 00 6e 6f 74 66 6f 75 6e 64 00 6e 6f 74 69 | ag.no-on-link-flag.notfound.noti |
| 15fb00 | 63 65 00 6e 74 70 00 6e 74 70 2d 73 65 72 76 65 72 00 6e 74 70 2d 73 65 72 76 65 72 73 00 6f 6e | ce.ntp.ntp-server.ntp-servers.on |
| 15fb20 | 65 20 72 75 6c 65 20 77 69 74 68 20 61 20 4c 41 4e 20 28 69 6e 62 6f 75 6e 64 2d 69 6e 74 65 72 | e.rule.with.a.LAN.(inbound-inter |
| 15fb40 | 66 61 63 65 29 20 61 6e 64 20 74 68 65 20 57 41 4e 20 28 69 6e 74 65 72 66 61 63 65 29 2e 00 6f | face).and.the.WAN.(interface)..o |
| 15fb60 | 70 65 6e 76 70 6e 00 6f 73 70 66 36 64 00 6f 73 70 66 64 00 6f 73 70 66 64 20 73 75 70 70 6f 72 | penvpn.ospf6d.ospfd.ospfd.suppor |
| 15fb80 | 74 73 20 4f 70 61 71 75 65 20 4c 53 41 20 3a 72 66 63 3a 60 32 33 37 30 60 20 61 73 20 70 61 72 | ts.Opaque.LSA.:rfc:`2370`.as.par |
| 15fba0 | 74 69 61 6c 20 73 75 70 70 6f 72 74 20 66 6f 72 20 4d 50 4c 53 20 54 72 61 66 66 69 63 20 45 6e | tial.support.for.MPLS.Traffic.En |
| 15fbc0 | 67 69 6e 65 65 72 69 6e 67 20 4c 53 41 73 2e 20 54 68 65 20 6f 70 61 71 75 65 2d 6c 73 61 20 63 | gineering.LSAs..The.opaque-lsa.c |
| 15fbe0 | 61 70 61 62 69 6c 69 74 79 20 6d 75 73 74 20 62 65 20 65 6e 61 62 6c 65 64 20 69 6e 20 74 68 65 | apability.must.be.enabled.in.the |
| 15fc00 | 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 6f 74 68 65 72 2d 63 6f 6e 66 69 67 2d 66 6c 61 | .configuration..other-config-fla |
| 15fc20 | 67 00 70 61 67 65 73 20 74 6f 20 73 6f 72 74 00 70 6f 6c 69 63 79 20 61 73 2d 70 61 74 68 2d 6c | g.pages.to.sort.policy.as-path-l |
| 15fc40 | 69 73 74 00 70 6f 6c 69 63 79 20 63 6f 6d 6d 75 6e 69 74 79 2d 6c 69 73 74 00 70 6f 6c 69 63 79 | ist.policy.community-list.policy |
| 15fc60 | 20 65 78 74 63 6f 6d 6d 75 6e 69 74 79 2d 6c 69 73 74 00 70 6f 6c 69 63 79 20 6c 61 72 67 65 2d | .extcommunity-list.policy.large- |
| 15fc80 | 63 6f 6d 6d 75 6e 69 74 79 2d 6c 69 73 74 00 70 6f 70 2d 73 65 72 76 65 72 00 70 72 65 66 65 72 | community-list.pop-server.prefer |
| 15fca0 | 72 65 64 2d 6c 69 66 65 74 69 6d 65 00 70 72 65 66 69 78 2d 6c 69 73 74 2c 20 64 69 73 74 72 69 | red-lifetime.prefix-list,.distri |
| 15fcc0 | 62 75 74 65 2d 6c 69 73 74 00 70 73 65 75 64 6f 2d 65 74 68 65 72 6e 65 74 00 72 61 6e 67 65 00 | bute-list.pseudo-ethernet.range. |
| 15fce0 | 72 65 61 63 68 61 62 6c 65 2d 74 69 6d 65 00 72 65 73 65 74 20 63 6f 6d 6d 61 6e 64 73 00 72 65 | reachable-time.reset.commands.re |
| 15fd00 | 74 72 61 6e 73 2d 74 69 6d 65 72 00 72 66 63 33 34 34 32 2d 73 74 61 74 69 63 2d 72 6f 75 74 65 | trans-timer.rfc3442-static-route |
| 15fd20 | 2c 20 77 69 6e 64 6f 77 73 2d 73 74 61 74 69 63 2d 72 6f 75 74 65 00 72 66 63 33 37 36 38 2d 63 | ,.windows-static-route.rfc3768-c |
| 15fd40 | 6f 6d 70 61 74 69 62 69 6c 69 74 79 00 72 69 67 68 74 20 6c 6f 63 61 6c 5f 69 70 3a 20 31 37 32 | ompatibility.right.local_ip:.172 |
| 15fd60 | 2e 31 38 2e 32 30 32 2e 31 30 20 23 20 72 69 67 68 74 20 73 69 64 65 20 57 41 4e 20 49 50 00 72 | .18.202.10.#.right.side.WAN.IP.r |
| 15fd80 | 69 67 68 74 20 6c 6f 63 61 6c 5f 69 70 3a 20 60 32 30 33 2e 30 2e 31 31 33 2e 32 60 20 23 20 72 | ight.local_ip:.`203.0.113.2`.#.r |
| 15fda0 | 65 6d 6f 74 65 20 6f 66 66 69 63 65 20 73 69 64 65 20 57 41 4e 20 49 50 00 72 69 67 68 74 20 73 | emote.office.side.WAN.IP.right.s |
| 15fdc0 | 75 62 6e 65 74 3a 20 60 31 30 2e 30 2e 30 2e 30 2f 32 34 60 20 73 69 74 65 32 2c 72 65 6d 6f 74 | ubnet:.`10.0.0.0/24`.site2,remot |
| 15fde0 | 65 20 6f 66 66 69 63 65 20 73 69 64 65 00 72 69 70 64 00 72 6f 75 6e 64 2d 72 6f 62 69 6e 00 72 | e.office.side.ripd.round-robin.r |
| 15fe00 | 6f 75 74 65 2d 6d 61 70 00 72 6f 75 74 65 72 73 00 73 46 6c 6f 77 00 73 46 6c 6f 77 20 69 73 20 | oute-map.routers.sFlow.sFlow.is. |
| 15fe20 | 61 20 74 65 63 68 6e 6f 6c 6f 67 79 20 74 68 61 74 20 65 6e 61 62 6c 65 73 20 6d 6f 6e 69 74 6f | a.technology.that.enables.monito |
| 15fe40 | 72 69 6e 67 20 6f 66 20 6e 65 74 77 6f 72 6b 20 74 72 61 66 66 69 63 20 62 79 20 73 65 6e 64 69 | ring.of.network.traffic.by.sendi |
| 15fe60 | 6e 67 20 73 61 6d 70 6c 65 64 20 70 61 63 6b 65 74 73 20 74 6f 20 61 20 63 6f 6c 6c 65 63 74 6f | ng.sampled.packets.to.a.collecto |
| 15fe80 | 72 20 64 65 76 69 63 65 2e 00 73 65 63 75 72 69 74 79 00 73 65 70 61 72 61 74 65 64 20 6c 69 73 | r.device..security.separated.lis |
| 15fea0 | 74 20 6f 66 20 76 69 72 74 75 61 6c 20 49 50 73 20 74 6f 20 72 65 71 75 65 73 74 20 69 6e 20 49 | t.of.virtual.IPs.to.request.in.I |
| 15fec0 | 4b 45 76 32 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 70 61 79 6c 6f 61 64 73 20 6f 72 20 49 | KEv2.configuration.payloads.or.I |
| 15fee0 | 4b 45 76 31 20 4d 6f 64 65 20 43 6f 6e 66 69 67 2e 20 54 68 65 20 77 69 6c 64 63 61 72 64 20 61 | KEv1.Mode.Config..The.wildcard.a |
| 15ff00 | 64 64 72 65 73 73 65 73 20 30 2e 30 2e 30 2e 30 20 61 6e 64 20 3a 3a 20 72 65 71 75 65 73 74 20 | ddresses.0.0.0.0.and.::.request. |
| 15ff20 | 61 6e 20 61 72 62 69 74 72 61 72 79 20 61 64 64 72 65 73 73 2c 20 73 70 65 63 69 66 69 63 20 61 | an.arbitrary.address,.specific.a |
| 15ff40 | 64 64 72 65 73 73 65 73 20 6d 61 79 20 62 65 20 64 65 66 69 6e 65 64 2e 20 54 68 65 20 72 65 73 | ddresses.may.be.defined..The.res |
| 15ff60 | 70 6f 6e 64 65 72 20 6d 61 79 20 72 65 74 75 72 6e 20 61 20 64 69 66 66 65 72 65 6e 74 20 61 64 | ponder.may.return.a.different.ad |
| 15ff80 | 64 72 65 73 73 2c 20 6f 72 20 6e 6f 6e 65 20 61 74 20 61 6c 6c 2e 20 44 65 66 69 6e 65 20 74 68 | dress,.or.none.at.all..Define.th |
| 15ffa0 | 65 20 60 60 76 69 72 74 75 61 6c 2d 61 64 64 72 65 73 73 60 60 20 6f 70 74 69 6f 6e 20 74 6f 20 | e.``virtual-address``.option.to. |
| 15ffc0 | 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 69 6e 20 61 20 73 69 | configure.the.IP.address.in.a.si |
| 15ffe0 | 74 65 2d 74 6f 2d 73 69 74 65 20 68 69 65 72 61 72 63 68 79 2e 00 73 65 72 76 65 72 20 65 78 61 | te-to-site.hierarchy..server.exa |
| 160000 | 6d 70 6c 65 00 73 65 72 76 65 72 2d 69 64 65 6e 74 69 66 69 65 72 00 73 65 74 20 61 20 64 65 73 | mple.server-identifier.set.a.des |
| 160020 | 74 69 6e 61 74 69 6f 6e 20 61 6e 64 2f 6f 72 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 2e 20 | tination.and/or.source.address.. |
| 160040 | 41 63 63 65 70 74 65 64 20 69 6e 70 75 74 3a 00 73 68 61 32 35 36 20 48 61 73 68 65 73 00 73 68 | Accepted.input:.sha256.Hashes.sh |
| 160060 | 6f 77 20 63 6f 6d 6d 61 6e 64 73 00 73 69 61 64 64 72 00 73 6c 6f 77 3a 20 52 65 71 75 65 73 74 | ow.commands.siaddr.slow:.Request |
| 160080 | 20 70 61 72 74 6e 65 72 20 74 6f 20 74 72 61 6e 73 6d 69 74 20 4c 41 43 50 44 55 73 20 65 76 65 | .partner.to.transmit.LACPDUs.eve |
| 1600a0 | 72 79 20 33 30 20 73 65 63 6f 6e 64 73 00 73 6d 74 70 2d 73 65 72 76 65 72 00 73 6f 66 74 77 61 | ry.30.seconds.smtp-server.softwa |
| 1600c0 | 72 65 20 66 69 6c 74 65 72 73 20 63 61 6e 20 65 61 73 69 6c 79 20 62 65 20 61 64 64 65 64 20 74 | re.filters.can.easily.be.added.t |
| 1600e0 | 6f 20 68 61 73 68 20 6f 76 65 72 20 6e 65 77 20 70 72 6f 74 6f 63 6f 6c 73 00 73 6f 66 74 77 61 | o.hash.over.new.protocols.softwa |
| 160100 | 72 65 20 66 69 6c 74 65 72 73 20 63 61 6e 20 65 61 73 69 6c 79 20 62 65 20 61 64 64 65 64 20 74 | re.filters.can.easily.be.added.t |
| 160120 | 6f 20 68 61 73 68 20 6f 76 65 72 20 6e 65 77 20 70 72 6f 74 6f 63 6f 6c 73 2c 00 73 6f 75 72 63 | o.hash.over.new.protocols,.sourc |
| 160140 | 65 2d 68 61 73 68 69 6e 67 00 73 70 6f 6b 65 30 31 2d 73 70 6f 6b 65 30 34 00 73 70 6f 6b 65 30 | e-hashing.spoke01-spoke04.spoke0 |
| 160160 | 35 00 73 74 61 74 69 63 2d 6d 61 70 70 69 6e 67 00 73 74 61 74 69 63 2d 72 6f 75 74 65 00 73 74 | 5.static-mapping.static-route.st |
| 160180 | 72 69 63 74 3a 20 45 61 63 68 20 69 6e 63 6f 6d 69 6e 67 20 70 61 63 6b 65 74 20 69 73 20 74 65 | rict:.Each.incoming.packet.is.te |
| 1601a0 | 73 74 65 64 20 61 67 61 69 6e 73 74 20 74 68 65 20 46 49 42 20 61 6e 64 20 69 66 20 74 68 65 20 | sted.against.the.FIB.and.if.the. |
| 1601c0 | 69 6e 74 65 72 66 61 63 65 20 69 73 20 6e 6f 74 20 74 68 65 20 62 65 73 74 20 72 65 76 65 72 73 | interface.is.not.the.best.revers |
| 1601e0 | 65 20 70 61 74 68 20 74 68 65 20 70 61 63 6b 65 74 20 63 68 65 63 6b 20 77 69 6c 6c 20 66 61 69 | e.path.the.packet.check.will.fai |
| 160200 | 6c 2e 20 42 79 20 64 65 66 61 75 6c 74 20 66 61 69 6c 65 64 20 70 61 63 6b 65 74 73 20 61 72 65 | l..By.default.failed.packets.are |
| 160220 | 20 64 69 73 63 61 72 64 65 64 2e 00 73 75 62 6e 65 74 2d 6d 61 73 6b 00 73 75 72 69 63 61 74 61 | .discarded..subnet-mask.suricata |
| 160240 | 00 73 79 73 6c 6f 67 00 74 61 69 6c 00 74 63 5f 20 69 73 20 61 20 70 6f 77 65 72 66 75 6c 20 74 | .syslog.tail.tc_.is.a.powerful.t |
| 160260 | 6f 6f 6c 20 66 6f 72 20 54 72 61 66 66 69 63 20 43 6f 6e 74 72 6f 6c 20 66 6f 75 6e 64 20 61 74 | ool.for.Traffic.Control.found.at |
| 160280 | 20 74 68 65 20 4c 69 6e 75 78 20 6b 65 72 6e 65 6c 2e 20 48 6f 77 65 76 65 72 2c 20 69 74 73 20 | .the.Linux.kernel..However,.its. |
| 1602a0 | 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 73 20 6f 66 74 65 6e 20 63 6f 6e 73 69 64 65 72 65 | configuration.is.often.considere |
| 1602c0 | 64 20 61 20 63 75 6d 62 65 72 73 6f 6d 65 20 74 61 73 6b 2e 20 46 6f 72 74 75 6e 61 74 65 6c 79 | d.a.cumbersome.task..Fortunately |
| 1602e0 | 2c 20 56 79 4f 53 20 65 61 73 65 73 20 74 68 65 20 6a 6f 62 20 74 68 72 6f 75 67 68 20 69 74 73 | ,.VyOS.eases.the.job.through.its |
| 160300 | 20 43 4c 49 2c 20 77 68 69 6c 65 20 75 73 69 6e 67 20 60 60 74 63 60 60 20 61 73 20 62 61 63 6b | .CLI,.while.using.``tc``.as.back |
| 160320 | 65 6e 64 2e 00 74 66 74 70 2d 73 65 72 76 65 72 2d 6e 61 6d 65 00 74 68 69 73 20 6f 70 74 69 6f | end..tftp-server-name.this.optio |
| 160340 | 6e 20 61 6c 6c 6f 77 73 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 70 72 65 66 69 78 2d 73 69 64 | n.allows.to.configure.prefix-sid |
| 160360 | 20 6f 6e 20 53 52 2e 20 54 68 65 20 e2 80 98 6e 6f 2d 70 68 70 2d 66 6c 61 67 e2 80 99 20 6d 65 | .on.SR..The....no-php-flag....me |
| 160380 | 61 6e 73 20 4e 4f 20 50 65 6e 75 6c 74 69 6d 61 74 65 20 48 6f 70 20 50 6f 70 70 69 6e 67 20 74 | ans.NO.Penultimate.Hop.Popping.t |
| 1603a0 | 68 61 74 20 61 6c 6c 6f 77 73 20 53 52 20 6e 6f 64 65 20 74 6f 20 72 65 71 75 65 73 74 20 74 6f | hat.allows.SR.node.to.request.to |
| 1603c0 | 20 69 74 73 20 6e 65 69 67 68 62 6f 72 20 74 6f 20 6e 6f 74 20 70 6f 70 20 74 68 65 20 6c 61 62 | .its.neighbor.to.not.pop.the.lab |
| 1603e0 | 65 6c 2e 20 54 68 65 20 e2 80 98 65 78 70 6c 69 63 69 74 2d 6e 75 6c 6c e2 80 99 20 66 6c 61 67 | el..The....explicit-null....flag |
| 160400 | 20 61 6c 6c 6f 77 73 20 53 52 20 6e 6f 64 65 20 74 6f 20 72 65 71 75 65 73 74 20 74 6f 20 69 74 | .allows.SR.node.to.request.to.it |
| 160420 | 73 20 6e 65 69 67 68 62 6f 72 20 74 6f 20 73 65 6e 64 20 49 50 20 70 61 63 6b 65 74 20 77 69 74 | s.neighbor.to.send.IP.packet.wit |
| 160440 | 68 20 74 68 65 20 45 58 50 4c 49 43 49 54 2d 4e 55 4c 4c 20 6c 61 62 65 6c 2e 20 54 68 65 20 e2 | h.the.EXPLICIT-NULL.label..The.. |
| 160460 | 80 98 6e 2d 66 6c 61 67 2d 63 6c 65 61 72 e2 80 99 20 6f 70 74 69 6f 6e 20 63 61 6e 20 62 65 20 | ..n-flag-clear....option.can.be. |
| 160480 | 75 73 65 64 20 74 6f 20 65 78 70 6c 69 63 69 74 6c 79 20 63 6c 65 61 72 20 74 68 65 20 4e 6f 64 | used.to.explicitly.clear.the.Nod |
| 1604a0 | 65 20 66 6c 61 67 20 74 68 61 74 20 69 73 20 73 65 74 20 62 79 20 64 65 66 61 75 6c 74 20 66 6f | e.flag.that.is.set.by.default.fo |
| 1604c0 | 72 20 50 72 65 66 69 78 2d 53 49 44 73 20 61 73 73 6f 63 69 61 74 65 64 20 74 6f 20 6c 6f 6f 70 | r.Prefix-SIDs.associated.to.loop |
| 1604e0 | 62 61 63 6b 20 61 64 64 72 65 73 73 65 73 2e 20 54 68 69 73 20 6f 70 74 69 6f 6e 20 69 73 20 6e | back.addresses..This.option.is.n |
| 160500 | 65 63 65 73 73 61 72 79 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 41 6e 79 63 61 73 74 2d 53 49 | ecessary.to.configure.Anycast-SI |
| 160520 | 44 73 2e 00 74 69 6d 65 2d 6f 66 66 73 65 74 00 74 69 6d 65 2d 73 65 72 76 65 72 00 74 69 6d 65 | Ds..time-offset.time-server.time |
| 160540 | 2d 73 65 72 76 65 72 73 00 74 75 6e 6e 65 6c 00 75 73 65 20 36 20 28 6c 6f 63 61 6c 36 29 00 75 | -servers.tunnel.use.6.(local6).u |
| 160560 | 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 68 65 63 6b 20 69 66 20 74 68 65 72 | se.this.command.to.check.if.ther |
| 160580 | 65 20 69 73 20 61 6e 20 49 6e 74 65 6c c2 ae 20 51 41 54 20 73 75 70 70 6f 72 74 65 64 20 50 72 | e.is.an.Intel...QAT.supported.Pr |
| 1605a0 | 6f 63 65 73 73 6f 72 20 69 6e 20 79 6f 75 72 20 73 79 73 74 65 6d 2e 00 75 73 65 72 00 75 75 63 | ocessor.in.your.system..user.uuc |
| 1605c0 | 70 00 76 61 6c 69 64 00 76 61 6c 69 64 2d 6c 69 66 65 74 69 6d 65 00 76 65 74 68 20 69 6e 74 65 | p.valid.valid-lifetime.veth.inte |
| 1605e0 | 72 66 61 63 65 73 20 6e 65 65 64 20 74 6f 20 62 65 20 63 72 65 61 74 65 64 20 69 6e 20 70 61 69 | rfaces.need.to.be.created.in.pai |
| 160600 | 72 73 20 2d 20 69 74 27 73 20 63 61 6c 6c 65 64 20 74 68 65 20 70 65 65 72 20 6e 61 6d 65 00 76 | rs.-.it's.called.the.peer.name.v |
| 160620 | 69 72 74 75 61 6c 20 49 50 20 61 64 64 72 65 73 73 65 73 20 73 68 6f 75 6c 64 20 62 65 20 69 6e | irtual.IP.addresses.should.be.in |
| 160640 | 73 74 61 6c 6c 65 64 2e 20 49 66 20 6e 6f 74 20 73 70 65 63 69 66 69 65 64 20 74 68 65 20 61 64 | stalled..If.not.specified.the.ad |
| 160660 | 64 72 65 73 73 65 73 20 77 69 6c 6c 20 62 65 20 69 6e 73 74 61 6c 6c 65 64 20 6f 6e 20 74 68 65 | dresses.will.be.installed.on.the |
| 160680 | 20 6f 75 74 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 3b 00 76 78 6c 61 6e 00 77 61 72 6e 69 | .outbound.interface;.vxlan.warni |
| 1606a0 | 6e 67 00 77 65 20 64 65 73 63 72 69 62 65 64 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f | ng.we.described.the.configuratio |
| 1606c0 | 6e 20 53 52 20 49 53 49 53 20 2f 20 53 52 20 4f 53 50 46 20 75 73 69 6e 67 20 32 20 63 6f 6e 6e | n.SR.ISIS./.SR.OSPF.using.2.conn |
| 1606e0 | 65 63 74 65 64 20 77 69 74 68 20 74 68 65 6d 20 74 6f 20 73 68 61 72 65 20 6c 61 62 65 6c 20 69 | ected.with.them.to.share.label.i |
| 160700 | 6e 66 6f 72 6d 61 74 69 6f 6e 2e 00 77 65 69 67 68 74 65 64 2d 6c 65 61 73 74 2d 63 6f 6e 6e 65 | nformation..weighted-least-conne |
| 160720 | 63 74 69 6f 6e 00 77 65 69 67 68 74 65 64 2d 72 6f 75 6e 64 2d 72 6f 62 69 6e 00 77 68 69 6c 65 | ction.weighted-round-robin.while |
| 160740 | 20 61 20 2a 62 79 74 65 2a 20 69 73 20 77 72 69 74 74 65 6e 20 61 73 20 61 20 73 69 6e 67 6c 65 | .a.*byte*.is.written.as.a.single |
| 160760 | 20 2a 2a 62 2a 2a 2e 00 77 69 6e 73 2d 73 65 72 76 65 72 00 77 69 72 65 67 75 61 72 64 00 77 69 | .**b**..wins-server.wireguard.wi |
| 160780 | 72 65 6c 65 73 73 00 77 69 74 68 20 3a 63 66 67 63 6d 64 3a 60 73 65 74 20 73 79 73 74 65 6d 20 | reless.with.:cfgcmd:`set.system. |
| 1607a0 | 61 63 63 65 6c 65 72 61 74 69 6f 6e 20 71 61 74 60 20 6f 6e 20 62 6f 74 68 20 73 79 73 74 65 6d | acceleration.qat`.on.both.system |
| 1607c0 | 73 20 74 68 65 20 62 61 6e 64 77 69 64 74 68 20 69 6e 63 72 65 61 73 65 73 2e 00 77 70 61 64 2d | s.the.bandwidth.increases..wpad- |
| 1607e0 | 75 72 6c 00 77 70 61 64 2d 75 72 6c 2c 20 77 70 61 64 2d 75 72 6c 20 63 6f 64 65 20 32 35 32 20 | url.wpad-url,.wpad-url.code.252. |
| 160800 | 3d 20 74 65 78 74 00 77 77 61 6e 00 7a 65 62 72 61 00 | =.text.wwan.zebra. |
 |
index : vyos-documentation.git | |
| VyOS readthedocs (mirror of https://github.com/marekm72/vyos-documentation.git) |
| summaryrefslogtreecommitdiff |
blob: 1a71ae3f0dd98819379c552417796b09eceb88f6 (plain)