Update index.rst

author: showipintbri <40892800+showipintbri@users.noreply.github.com> 2021-10-08 10:24:13 -0400
committer: GitHub <noreply@github.com> 2021-10-08 10:24:13 -0400
commit: 689d1ee6f5cace5964f13fc4d44bf7be9e77d077 (patch)
tree: db56d8f000604d474fd820898e353b489c5a32b4 /docs/configuration/firewall/index.rst
parent: 6bf77c37f10147daf076f8abfc7cf1923a92a67b (diff)
download: vyos-documentation-689d1ee6f5cace5964f13fc4d44bf7be9e77d077.tar.gz
vyos-documentation-689d1ee6f5cace5964f13fc4d44bf7be9e77d077.zip
1 files changed, 5 insertions, 0 deletions
diff --git a/docs/configuration/firewall/index.rst b/docs/configuration/firewall/index.rst
index d52d6f2a..4d28d5f8 100644
--- a/docs/configuration/firewall/index.rst
+++ b/docs/configuration/firewall/index.rst
@@ -490,6 +490,11 @@ Applying a Rule-Set to a Zone
 Before you are able to apply a rule-set to a zone you have to create the zones 
 first.
 
+It helps to think of the syntax as: (see below). The 'rule-set' should be written from the perspective of: *Source Zone*-to->*Destination Zone*
+
+.. cfgcmd::  set zone-policy zone <Destination Zone> from <Source Zone> firewall name
+   <rule-set>
+
 .. cfgcmd::  set zone-policy zone <name> from <name> firewall name
    <rule-set>
 .. cfgcmd::  set zone-policy zone <name> from <name> firewall ipv6-name
author	showipintbri <40892800+showipintbri@users.noreply.github.com>	2021-10-08 10:24:13 -0400
committer	GitHub <noreply@github.com>	2021-10-08 10:24:13 -0400
commit	689d1ee6f5cace5964f13fc4d44bf7be9e77d077 (patch)
tree	db56d8f000604d474fd820898e353b489c5a32b4 /docs/configuration/firewall/index.rst
parent	6bf77c37f10147daf076f8abfc7cf1923a92a67b (diff)
download	vyos-documentation-689d1ee6f5cace5964f13fc4d44bf7be9e77d077.tar.gz vyos-documentation-689d1ee6f5cace5964f13fc4d44bf7be9e77d077.zip