1 files changed, 19 insertions, 6 deletions

diff --git a/docs/services/dns-forwarding.rst b/docs/services/dns-forwarding.rst
index a8501c8f..4aaf6919 100644
--- a/docs/services/dns-forwarding.rst
+++ b/docs/services/dns-forwarding.rst
@@ -28,26 +28,37 @@ Setting a forwarding DNS server for a specific domain:
 .. code-block:: sh
 
   set service dns forwarding domain example.com server 192.0.2.1
+  
+Set which networks or clients are allowed to query the DNS Server. Allow from all:
+
+.. code-block:: sh
+
+  set service dns forwarding allow-from 0.0.0.0/0
 
 Example 1
 ^^^^^^^^^
 
-Router with two interfaces eth0 (WAN link) and eth1 (LAN). A DNS server for the
-local domain (example.com) is at 192.0.2.1, other DNS requests are forwarded
-to Google's DNS servers.
+Router with two interfaces eth0 (WAN link) and eth1 (LAN). Split DNS for example.com.
+
+* DNS request for a local domain (example.com) get forwarded to 192.0.2.1
+* Other DNS requests are forwarded to Google's DNS servers.
+* The IP address for the LAN interface is 192.168.0.1.
 
 .. code-block:: sh
 
   set service dns forwarding domain example.com server 192.0.2.1
   set service dns forwarding name-server 8.8.8.8
   set service dns forwarding name-server 8.8.4.4
-  set service dns forwarding listen-on 'eth1'
+  set service dns forwarding listen-address 192.168.0.1
+  set service dns forwarding allow-from 0.0.0.0/0
 
 Example 2
 ^^^^^^^^^
 
 Same as example 1 but with additional IPv6 addresses for Google's public DNS
-servers:
+servers.
+
+The IP addresses for the LAN interface are 192.168.0.1 and 2001:db8::1
 
 .. code-block:: sh
 
@@ -56,4 +67,6 @@ servers:
   set service dns forwarding name-server 8.8.4.4
   set service dns forwarding name-server 2001:4860:4860::8888
   set service dns forwarding name-server 2001:4860:4860::8844
-  set service dns forwarding listen-on 'eth1'
+  set service dns forwarding listen-address 2001:db8::1
+  set service dns forwarding listen-address 192.168.0.1 
+  set service dns forwarding allow-from 0.0.0.0/0