summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorGanawa Juanah <ganawa@juanah.com>2022-10-08 16:19:31 -0500
committerGanawa Juanah <ganawa@juanah.com>2022-10-08 16:19:31 -0500
commitdeb95e79ca495beb70d1be87b41f53a6a7dd03e0 (patch)
treedebd004f2d10a29810f829833c460433d6cc5181
parentd5bb462db1bd0e51b3e8d13a459c6980f7beed82 (diff)
downloadvyos-documentation-deb95e79ca495beb70d1be87b41f53a6a7dd03e0.tar.gz
vyos-documentation-deb95e79ca495beb70d1be87b41f53a6a7dd03e0.zip
firewall: correct rule-set interface assignment
Diffstat
-rw-r--r--docs/configuration/firewall/general.rst12
1 files changed, 6 insertions, 6 deletions
diff --git a/docs/configuration/firewall/general.rst b/docs/configuration/firewall/general.rst
index cfd7a8ce..8851cc2a 100644
--- a/docs/configuration/firewall/general.rst
+++ b/docs/configuration/firewall/general.rst
@@ -591,17 +591,17 @@ A Rule-Set can be applied to every interface:
* ``out``: Ruleset for forwarded packets on an outbound interface
* ``local``: Ruleset for packets destined for this router
-.. cfgcmd:: set interface ethernet <ethN> firewall [in | out | local]
- [name | ipv6-name] <rule-set>
+.. cfgcmd:: set firewall interface <interface> [in | out | local] [name | ipv6-name] <rule-set>
+
Here are some examples for applying a rule-set to an interface
.. code-block:: none
- set interface ethernet eth1 vif 100 firewall in name LANv4-IN
- set interface ethernet eth1 vif 100 firewall out name LANv4-OUT
- set interface bonding bond0 firewall in name LANv4-IN
- set interfaces openvpn vtun1 firewall in name Lanv4-IN
+ set firewall interface eth1.100 in name LANv4-IN
+ set firewall interface eth1.100 out name LANv4-OUT
+ set firewall interface bond0 in name LANv4-IN
+ set firewall interfac vtun1 in name LANv4-IN
.. note::
As you can see in the example here, you can assign the same rule-set to
generated by cgit v1.2.3 (git 2.39.1) at 2024-11-10 15:02:41 +0000