diff options
| author | srividya0208 <68350089+srividya0208@users.noreply.github.com> | 2025-06-26 14:42:41 +0530 |
|---|---|---|
| committer | GitHub <noreply@github.com> | 2025-06-26 10:12:41 +0100 |
| commit | 711d71329f0e35cc78f39042deec02d0624ff00c (patch) | |
| tree | 1956fd32c2933be39c541bb37b1772889ebee788 /docs/configuration/interfaces/wireguard.rst | |
| parent | 1772d6700d1f71539595f0b93c1c27c897430599 (diff) | |
| download | vyos-documentation-711d71329f0e35cc78f39042deec02d0624ff00c.tar.gz vyos-documentation-711d71329f0e35cc78f39042deec02d0624ff00c.zip | |
Correction of firewall syntax in multiple pages (#1651)
Diffstat (limited to 'docs/configuration/interfaces/wireguard.rst')
| -rw-r--r-- | docs/configuration/interfaces/wireguard.rst | 7 |
1 files changed, 4 insertions, 3 deletions
diff --git a/docs/configuration/interfaces/wireguard.rst b/docs/configuration/interfaces/wireguard.rst index db2ff2c7..b4e4d8db 100644 --- a/docs/configuration/interfaces/wireguard.rst +++ b/docs/configuration/interfaces/wireguard.rst @@ -220,14 +220,15 @@ firewall exception. set firewall ipv4 name OUTSIDE_LOCAL rule 20 destination port 51820 set firewall ipv4 name OUTSIDE_LOCAL rule 20 log enable set firewall ipv4 name OUTSIDE_LOCAL rule 20 protocol udp - set firewall ipv4 name OUTSIDE_LOCAL rule 20 source You should also ensure that the OUTSIDE_LOCAL firewall group is applied to the -WAN interface and a direction (local). +WAN interface and in an input (local) direction. .. code-block:: none - set interfaces ethernet eth0 firewall local name 'OUTSIDE-LOCAL' + set firewall ipv4 input filter rule 10 action jump + set firewall ipv4 input filter rule 10 jump-target 'OUTSIDE_LOCAL' + set firewall ipv4 input filter rule 10 inbound-interface name 'eth0' Assure that your firewall rules allow the traffic, in which case you have a working VPN using WireGuard. |