summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorDibins <6020646+Dibins@users.noreply.github.com>2023-10-05 15:50:06 -0500
committerGitHub <noreply@github.com>2023-10-05 15:50:06 -0500
commit7d9792b510b69a1611f3e0b8eb3a63934ae41454 (patch)
tree3c8c3102c587967e3d4e0cacea05968d0f449e1c
parent7b89b50e3d0027c4a99f0002df098a72dc5a9853 (diff)
downloadvyos-documentation-7d9792b510b69a1611f3e0b8eb3a63934ae41454.tar.gz
vyos-documentation-7d9792b510b69a1611f3e0b8eb3a63934ae41454.zip
Update wireguard.rst
Adding proper syntax for 1.4 firewall commands
-rw-r--r--docs/configuration/interfaces/wireguard.rst20
1 files changed, 10 insertions, 10 deletions
diff --git a/docs/configuration/interfaces/wireguard.rst b/docs/configuration/interfaces/wireguard.rst
index d2916d9f..8b829b64 100644
--- a/docs/configuration/interfaces/wireguard.rst
+++ b/docs/configuration/interfaces/wireguard.rst
@@ -211,16 +211,16 @@ firewall exception.
.. code-block:: none
- set firewall name OUTSIDE_LOCAL rule 10 action accept
- set firewall name OUTSIDE_LOCAL rule 10 description 'Allow established/related'
- set firewall name OUTSIDE_LOCAL rule 10 state established enable
- set firewall name OUTSIDE_LOCAL rule 10 state related enable
- set firewall name OUTSIDE_LOCAL rule 20 action accept
- set firewall name OUTSIDE_LOCAL rule 20 description WireGuard_IN
- set firewall name OUTSIDE_LOCAL rule 20 destination port 51820
- set firewall name OUTSIDE_LOCAL rule 20 log enable
- set firewall name OUTSIDE_LOCAL rule 20 protocol udp
- set firewall name OUTSIDE_LOCAL rule 20 source
+ set firewall ipv4 name OUTSIDE_LOCAL rule 10 action accept
+ set firewall ipv4 name OUTSIDE_LOCAL rule 10 description 'Allow established/related'
+ set firewall ipv4 name OUTSIDE_LOCAL rule 10 state established enable
+ set firewall ipv4 name OUTSIDE_LOCAL rule 10 state related enable
+ set firewall ipv4 name OUTSIDE_LOCAL rule 20 action accept
+ set firewall ipv4 name OUTSIDE_LOCAL rule 20 description WireGuard_IN
+ set firewall ipv4 name OUTSIDE_LOCAL rule 20 destination port 51820
+ set firewall ipv4 name OUTSIDE_LOCAL rule 20 log enable
+ set firewall ipv4 name OUTSIDE_LOCAL rule 20 protocol udp
+ set firewall ipv4 name OUTSIDE_LOCAL rule 20 source
You should also ensure that the OUTISDE_LOCAL firewall group is applied to the
WAN interface and a direction (local).